From bfb71a3405eeefa483ae5fd3f07813f9e312ac48 Mon Sep 17 00:00:00 2001
From: SmithThe4th <gsmith@bitwarden.com>
Date: Fri, 27 Jun 2025 09:59:38 -0400
Subject: [PATCH 001/239] [PM-22996] Failed to decrypt ciphers: TypeError:
 this.uriChecksum is null (#15355)

---
 libs/common/src/vault/models/domain/login-uri.ts | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/libs/common/src/vault/models/domain/login-uri.ts b/libs/common/src/vault/models/domain/login-uri.ts
index b3e6fad70dd..5874d99c99d 100644
--- a/libs/common/src/vault/models/domain/login-uri.ts
+++ b/libs/common/src/vault/models/domain/login-uri.ts
@@ -97,8 +97,8 @@ export class LoginUri extends Domain {
    */
   toSdkLoginUri(): SdkLoginUri {
     return {
-      uri: this.uri.toJSON(),
-      uriChecksum: this.uriChecksum.toJSON(),
+      uri: this.uri?.toJSON(),
+      uriChecksum: this.uriChecksum?.toJSON(),
       match: this.match,
     };
   }

From f7ca5b78189d17253ae4446d338fbfc2873e7339 Mon Sep 17 00:00:00 2001
From: Colton Hurst <colton@coltonhurst.com>
Date: Fri, 27 Jun 2025 10:28:35 -0400
Subject: [PATCH 002/239] Small Typo & Lint Fix (#15313)

* Small typo and lint fix

* Removes extra line
---
 apps/desktop/src/platform/services/desktop-settings.service.ts  | 2 +-
 .../components/access-selector/access-selector.component.html   | 2 --
 2 files changed, 1 insertion(+), 3 deletions(-)

diff --git a/apps/desktop/src/platform/services/desktop-settings.service.ts b/apps/desktop/src/platform/services/desktop-settings.service.ts
index 37a1fe73829..e8f311e56f6 100644
--- a/apps/desktop/src/platform/services/desktop-settings.service.ts
+++ b/apps/desktop/src/platform/services/desktop-settings.service.ts
@@ -108,7 +108,7 @@ export class DesktopSettingsService {
 
   private readonly closeToTrayState = this.stateProvider.getGlobal(CLOSE_TO_TRAY_KEY);
   /**
-   * Tha applications setting for whether or not to close the application into the system tray.
+   * The applications setting for whether or not to close the application into the system tray.
    */
   closeToTray$ = this.closeToTrayState.state$.pipe(map(Boolean));
 
diff --git a/apps/web/src/app/admin-console/organizations/shared/components/access-selector/access-selector.component.html b/apps/web/src/app/admin-console/organizations/shared/components/access-selector/access-selector.component.html
index 088b5051fb1..e9b7ba39aa5 100644
--- a/apps/web/src/app/admin-console/organizations/shared/components/access-selector/access-selector.component.html
+++ b/apps/web/src/app/admin-console/organizations/shared/components/access-selector/access-selector.component.html
@@ -1,5 +1,3 @@
-<!-- Please remove this disable statement when editing this file! -->
-<!-- eslint-disable tailwindcss/no-custom-classname -->
 <div class="tw-flex" *ngIf="!hideMultiSelect">
   <bit-form-field *ngIf="permissionMode == 'edit'" class="tw-mr-3 tw-shrink-0 tw-basis-2/5">
     <bit-label>{{ "permission" | i18n }}</bit-label>

From 62750a06ec2739033e0a4f597afdd99af80945ea Mon Sep 17 00:00:00 2001
From: Jordan Aasen <166539328+jaasen-livefront@users.noreply.github.com>
Date: Fri, 27 Jun 2025 08:16:59 -0700
Subject: [PATCH 003/239] [PM-36] - [Tech Debt] Move SearchService to
 libs/common/vault (#15251)

* wip - migrate search service to vault

* fix import
---
 .../autofill/popup/fido2/fido2.component.ts   |  2 +-
 .../browser/src/background/main.background.ts |  4 ++--
 .../popup/send-v2/send-v2.component.spec.ts   |  2 +-
 .../vault-header-v2.component.spec.ts         |  2 +-
 .../vault-popup-items.service.spec.ts         |  2 +-
 .../services/vault-popup-items.service.ts     |  2 +-
 apps/cli/src/commands/get.command.ts          |  2 +-
 apps/cli/src/commands/list.command.ts         |  2 +-
 .../service-container/service-container.ts    |  2 +-
 .../src/tools/send/commands/get.command.ts    |  2 +-
 .../src/tools/send/commands/list.command.ts   |  2 +-
 apps/desktop/src/app/app.component.ts         |  2 +-
 .../src/app/tools/send/send.component.ts      |  2 +-
 .../app/vault/vault-items-v2.component.ts     |  2 +-
 .../vault/app/vault/vault-items.component.ts  |  2 +-
 .../collections/vault.component.ts            |  2 +-
 apps/web/src/app/app.component.ts             |  2 +-
 apps/web/src/app/tools/send/send.component.ts |  2 +-
 .../vault/individual-vault/vault.component.ts |  2 +-
 .../src/services/jslib-services.module.ts     |  4 ++--
 libs/angular/src/tools/send/send.component.ts |  2 +-
 .../vault/components/vault-items.component.ts |  2 +-
 .../services/vault-timeout.service.spec.ts    |  2 +-
 .../services/vault-timeout.service.ts         |  2 +-
 .../abstractions/search.service.ts            |  6 +++---
 .../src/vault/services/cipher.service.spec.ts |  2 +-
 .../src/vault/services/cipher.service.ts      |  2 +-
 .../{ => vault}/services/search.service.ts    | 20 +++++++++----------
 .../src/services/send-items.service.spec.ts   |  2 +-
 .../src/services/send-items.service.ts        |  2 +-
 30 files changed, 43 insertions(+), 43 deletions(-)
 rename libs/common/src/{ => vault}/abstractions/search.service.ts (82%)
 rename libs/common/src/{ => vault}/services/search.service.ts (96%)

diff --git a/apps/browser/src/autofill/popup/fido2/fido2.component.ts b/apps/browser/src/autofill/popup/fido2/fido2.component.ts
index 3107b60f475..ac38fe2f894 100644
--- a/apps/browser/src/autofill/popup/fido2/fido2.component.ts
+++ b/apps/browser/src/autofill/popup/fido2/fido2.component.ts
@@ -18,13 +18,13 @@ import {
 } from "rxjs";
 
 import { JslibModule } from "@bitwarden/angular/jslib.module";
-import { SearchService } from "@bitwarden/common/abstractions/search.service";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { getUserId } from "@bitwarden/common/auth/services/account.service";
 import { DomainSettingsService } from "@bitwarden/common/autofill/services/domain-settings.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
+import { SearchService } from "@bitwarden/common/vault/abstractions/search.service";
 import { SecureNoteType, CipherType } from "@bitwarden/common/vault/enums";
 import { CipherRepromptType } from "@bitwarden/common/vault/enums/cipher-reprompt-type";
 import { CardView } from "@bitwarden/common/vault/models/view/card.view";
diff --git a/apps/browser/src/background/main.background.ts b/apps/browser/src/background/main.background.ts
index 2e4818a8b0c..2f423895f9f 100644
--- a/apps/browser/src/background/main.background.ts
+++ b/apps/browser/src/background/main.background.ts
@@ -22,7 +22,6 @@ import { ApiService as ApiServiceAbstraction } from "@bitwarden/common/abstracti
 import { AuditService as AuditServiceAbstraction } from "@bitwarden/common/abstractions/audit.service";
 import { EventCollectionService as EventCollectionServiceAbstraction } from "@bitwarden/common/abstractions/event/event-collection.service";
 import { EventUploadService as EventUploadServiceAbstraction } from "@bitwarden/common/abstractions/event/event-upload.service";
-import { SearchService as SearchServiceAbstraction } from "@bitwarden/common/abstractions/search.service";
 import { InternalOrganizationServiceAbstraction } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
 import { PolicyApiServiceAbstraction } from "@bitwarden/common/admin-console/abstractions/policy/policy-api.service.abstraction";
 import { InternalPolicyService as InternalPolicyServiceAbstraction } from "@bitwarden/common/admin-console/abstractions/policy/policy.service.abstraction";
@@ -174,7 +173,6 @@ import { ApiService } from "@bitwarden/common/services/api.service";
 import { AuditService } from "@bitwarden/common/services/audit.service";
 import { EventCollectionService } from "@bitwarden/common/services/event/event-collection.service";
 import { EventUploadService } from "@bitwarden/common/services/event/event-upload.service";
-import { SearchService } from "@bitwarden/common/services/search.service";
 import {
   PasswordStrengthService,
   PasswordStrengthServiceAbstraction,
@@ -190,6 +188,7 @@ import { CipherService as CipherServiceAbstraction } from "@bitwarden/common/vau
 import { CipherFileUploadService as CipherFileUploadServiceAbstraction } from "@bitwarden/common/vault/abstractions/file-upload/cipher-file-upload.service";
 import { FolderApiServiceAbstraction } from "@bitwarden/common/vault/abstractions/folder/folder-api.service.abstraction";
 import { InternalFolderService as InternalFolderServiceAbstraction } from "@bitwarden/common/vault/abstractions/folder/folder.service.abstraction";
+import { SearchService as SearchServiceAbstraction } from "@bitwarden/common/vault/abstractions/search.service";
 import { TotpService as TotpServiceAbstraction } from "@bitwarden/common/vault/abstractions/totp.service";
 import { VaultSettingsService as VaultSettingsServiceAbstraction } from "@bitwarden/common/vault/abstractions/vault-settings/vault-settings.service";
 import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
@@ -207,6 +206,7 @@ import { CipherFileUploadService } from "@bitwarden/common/vault/services/file-u
 import { FolderApiService } from "@bitwarden/common/vault/services/folder/folder-api.service";
 import { FolderService } from "@bitwarden/common/vault/services/folder/folder.service";
 import { RestrictedItemTypesService } from "@bitwarden/common/vault/services/restricted-item-types.service";
+import { SearchService } from "@bitwarden/common/vault/services/search.service";
 import { TotpService } from "@bitwarden/common/vault/services/totp.service";
 import { VaultSettingsService } from "@bitwarden/common/vault/services/vault-settings/vault-settings.service";
 import { DefaultTaskService, TaskService } from "@bitwarden/common/vault/tasks";
diff --git a/apps/browser/src/tools/popup/send-v2/send-v2.component.spec.ts b/apps/browser/src/tools/popup/send-v2/send-v2.component.spec.ts
index 6fc4793f5c0..63ede7ba357 100644
--- a/apps/browser/src/tools/popup/send-v2/send-v2.component.spec.ts
+++ b/apps/browser/src/tools/popup/send-v2/send-v2.component.spec.ts
@@ -6,7 +6,6 @@ import { MockProxy, mock } from "jest-mock-extended";
 import { of, BehaviorSubject } from "rxjs";
 
 import { JslibModule } from "@bitwarden/angular/jslib.module";
-import { SearchService } from "@bitwarden/common/abstractions/search.service";
 import { PolicyService } from "@bitwarden/common/admin-console/abstractions/policy/policy.service.abstraction";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { AuthService } from "@bitwarden/common/auth/abstractions/auth.service";
@@ -21,6 +20,7 @@ import { SendType } from "@bitwarden/common/tools/send/enums/send-type";
 import { SendView } from "@bitwarden/common/tools/send/models/view/send.view";
 import { SendApiService } from "@bitwarden/common/tools/send/services/send-api.service.abstraction";
 import { SendService } from "@bitwarden/common/tools/send/services/send.service.abstraction";
+import { SearchService } from "@bitwarden/common/vault/abstractions/search.service";
 import { ButtonModule, NoItemsModule } from "@bitwarden/components";
 import {
   NewSendDropdownComponent,
diff --git a/apps/browser/src/vault/popup/components/vault-v2/vault-header/vault-header-v2.component.spec.ts b/apps/browser/src/vault/popup/components/vault-v2/vault-header/vault-header-v2.component.spec.ts
index cda055176e8..9564aeadc09 100644
--- a/apps/browser/src/vault/popup/components/vault-v2/vault-header/vault-header-v2.component.spec.ts
+++ b/apps/browser/src/vault/popup/components/vault-v2/vault-header/vault-header-v2.component.spec.ts
@@ -7,7 +7,6 @@ import { mock } from "jest-mock-extended";
 import { BehaviorSubject, Subject } from "rxjs";
 
 import { CollectionService } from "@bitwarden/admin-console/common";
-import { SearchService } from "@bitwarden/common/abstractions/search.service";
 import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
 import { PolicyService } from "@bitwarden/common/admin-console/abstractions/policy/policy.service.abstraction";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
@@ -19,6 +18,7 @@ import { StateProvider } from "@bitwarden/common/platform/state";
 import { SyncService } from "@bitwarden/common/platform/sync";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
 import { FolderService } from "@bitwarden/common/vault/abstractions/folder/folder.service.abstraction";
+import { SearchService } from "@bitwarden/common/vault/abstractions/search.service";
 import { VaultSettingsService } from "@bitwarden/common/vault/abstractions/vault-settings/vault-settings.service";
 import { PasswordRepromptService } from "@bitwarden/vault";
 
diff --git a/apps/browser/src/vault/popup/services/vault-popup-items.service.spec.ts b/apps/browser/src/vault/popup/services/vault-popup-items.service.spec.ts
index a573f99d3c1..63cd0d90d05 100644
--- a/apps/browser/src/vault/popup/services/vault-popup-items.service.spec.ts
+++ b/apps/browser/src/vault/popup/services/vault-popup-items.service.spec.ts
@@ -4,7 +4,6 @@ import { mock } from "jest-mock-extended";
 import { BehaviorSubject, firstValueFrom, timeout } from "rxjs";
 
 import { CollectionService, CollectionView } from "@bitwarden/admin-console/common";
-import { SearchService } from "@bitwarden/common/abstractions/search.service";
 import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
 import { Organization } from "@bitwarden/common/admin-console/models/domain/organization";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
@@ -14,6 +13,7 @@ import { SyncService } from "@bitwarden/common/platform/sync";
 import { ObservableTracker, mockAccountServiceWith } from "@bitwarden/common/spec";
 import { CipherId, UserId } from "@bitwarden/common/types/guid";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
+import { SearchService } from "@bitwarden/common/vault/abstractions/search.service";
 import { VaultSettingsService } from "@bitwarden/common/vault/abstractions/vault-settings/vault-settings.service";
 import { CipherType } from "@bitwarden/common/vault/enums";
 import { CipherData } from "@bitwarden/common/vault/models/data/cipher.data";
diff --git a/apps/browser/src/vault/popup/services/vault-popup-items.service.ts b/apps/browser/src/vault/popup/services/vault-popup-items.service.ts
index c1dd9b30c68..20bdbd2eefe 100644
--- a/apps/browser/src/vault/popup/services/vault-popup-items.service.ts
+++ b/apps/browser/src/vault/popup/services/vault-popup-items.service.ts
@@ -20,7 +20,6 @@ import {
 } from "rxjs";
 
 import { CollectionService } from "@bitwarden/admin-console/common";
-import { SearchService } from "@bitwarden/common/abstractions/search.service";
 import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { getUserId } from "@bitwarden/common/auth/services/account.service";
@@ -28,6 +27,7 @@ import { Utils } from "@bitwarden/common/platform/misc/utils";
 import { SyncService } from "@bitwarden/common/platform/sync";
 import { CollectionId, OrganizationId, UserId } from "@bitwarden/common/types/guid";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
+import { SearchService } from "@bitwarden/common/vault/abstractions/search.service";
 import { VaultSettingsService } from "@bitwarden/common/vault/abstractions/vault-settings/vault-settings.service";
 import { CipherType } from "@bitwarden/common/vault/enums";
 import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
diff --git a/apps/cli/src/commands/get.command.ts b/apps/cli/src/commands/get.command.ts
index 28a5680da77..3b1e0de4f15 100644
--- a/apps/cli/src/commands/get.command.ts
+++ b/apps/cli/src/commands/get.command.ts
@@ -6,7 +6,6 @@ import { CollectionService, CollectionView } from "@bitwarden/admin-console/comm
 import { ApiService } from "@bitwarden/common/abstractions/api.service";
 import { AuditService } from "@bitwarden/common/abstractions/audit.service";
 import { EventCollectionService } from "@bitwarden/common/abstractions/event/event-collection.service";
-import { SearchService } from "@bitwarden/common/abstractions/search.service";
 import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
 import { Organization } from "@bitwarden/common/admin-console/models/domain/organization";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
@@ -30,6 +29,7 @@ import { SendType } from "@bitwarden/common/tools/send/enums/send-type";
 import { CipherId, OrganizationId, UserId } from "@bitwarden/common/types/guid";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
 import { FolderService } from "@bitwarden/common/vault/abstractions/folder/folder.service.abstraction";
+import { SearchService } from "@bitwarden/common/vault/abstractions/search.service";
 import { TotpService } from "@bitwarden/common/vault/abstractions/totp.service";
 import { CipherType } from "@bitwarden/common/vault/enums";
 import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
diff --git a/apps/cli/src/commands/list.command.ts b/apps/cli/src/commands/list.command.ts
index 49ec7689b20..517050728c0 100644
--- a/apps/cli/src/commands/list.command.ts
+++ b/apps/cli/src/commands/list.command.ts
@@ -10,7 +10,6 @@ import {
 } from "@bitwarden/admin-console/common";
 import { ApiService } from "@bitwarden/common/abstractions/api.service";
 import { EventCollectionService } from "@bitwarden/common/abstractions/event/event-collection.service";
-import { SearchService } from "@bitwarden/common/abstractions/search.service";
 import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { getUserId } from "@bitwarden/common/auth/services/account.service";
@@ -19,6 +18,7 @@ import { ListResponse as ApiListResponse } from "@bitwarden/common/models/respon
 import { Utils } from "@bitwarden/common/platform/misc/utils";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
 import { FolderService } from "@bitwarden/common/vault/abstractions/folder/folder.service.abstraction";
+import { SearchService } from "@bitwarden/common/vault/abstractions/search.service";
 import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
 
 import { CollectionResponse } from "../admin-console/models/response/collection.response";
diff --git a/apps/cli/src/service-container/service-container.ts b/apps/cli/src/service-container/service-container.ts
index 099ce503fac..df019520250 100644
--- a/apps/cli/src/service-container/service-container.ts
+++ b/apps/cli/src/service-container/service-container.ts
@@ -132,7 +132,6 @@ import { DefaultSyncService } from "@bitwarden/common/platform/sync/internal";
 import { AuditService } from "@bitwarden/common/services/audit.service";
 import { EventCollectionService } from "@bitwarden/common/services/event/event-collection.service";
 import { EventUploadService } from "@bitwarden/common/services/event/event-upload.service";
-import { SearchService } from "@bitwarden/common/services/search.service";
 import {
   PasswordStrengthService,
   PasswordStrengthServiceAbstraction,
@@ -153,6 +152,7 @@ import { CipherFileUploadService } from "@bitwarden/common/vault/services/file-u
 import { FolderApiService } from "@bitwarden/common/vault/services/folder/folder-api.service";
 import { FolderService } from "@bitwarden/common/vault/services/folder/folder.service";
 import { RestrictedItemTypesService } from "@bitwarden/common/vault/services/restricted-item-types.service";
+import { SearchService } from "@bitwarden/common/vault/services/search.service";
 import { TotpService } from "@bitwarden/common/vault/services/totp.service";
 import {
   legacyPasswordGenerationServiceFactory,
diff --git a/apps/cli/src/tools/send/commands/get.command.ts b/apps/cli/src/tools/send/commands/get.command.ts
index 1d651c50bf0..1b3a8f6c500 100644
--- a/apps/cli/src/tools/send/commands/get.command.ts
+++ b/apps/cli/src/tools/send/commands/get.command.ts
@@ -4,12 +4,12 @@ import { OptionValues } from "commander";
 import { firstValueFrom } from "rxjs";
 
 import { ApiService } from "@bitwarden/common/abstractions/api.service";
-import { SearchService } from "@bitwarden/common/abstractions/search.service";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
 import { EnvironmentService } from "@bitwarden/common/platform/abstractions/environment.service";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
 import { SendView } from "@bitwarden/common/tools/send/models/view/send.view";
 import { SendService } from "@bitwarden/common/tools/send/services/send.service.abstraction";
+import { SearchService } from "@bitwarden/common/vault/abstractions/search.service";
 
 import { DownloadCommand } from "../../../commands/download.command";
 import { Response } from "../../../models/response";
diff --git a/apps/cli/src/tools/send/commands/list.command.ts b/apps/cli/src/tools/send/commands/list.command.ts
index ab8a4dcb1c5..f611cb3f5dc 100644
--- a/apps/cli/src/tools/send/commands/list.command.ts
+++ b/apps/cli/src/tools/send/commands/list.command.ts
@@ -1,8 +1,8 @@
 import { firstValueFrom } from "rxjs";
 
-import { SearchService } from "@bitwarden/common/abstractions/search.service";
 import { EnvironmentService } from "@bitwarden/common/platform/abstractions/environment.service";
 import { SendService } from "@bitwarden/common/tools/send/services/send.service.abstraction";
+import { SearchService } from "@bitwarden/common/vault/abstractions/search.service";
 
 import { Response } from "../../../models/response";
 import { ListResponse } from "../../../models/response/list.response";
diff --git a/apps/desktop/src/app/app.component.ts b/apps/desktop/src/app/app.component.ts
index dc1621210de..b5c34cc95a3 100644
--- a/apps/desktop/src/app/app.component.ts
+++ b/apps/desktop/src/app/app.component.ts
@@ -35,7 +35,6 @@ import {
   UserDecryptionOptionsServiceAbstraction,
 } from "@bitwarden/auth/common";
 import { EventUploadService } from "@bitwarden/common/abstractions/event/event-upload.service";
-import { SearchService } from "@bitwarden/common/abstractions/search.service";
 import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
 import { InternalPolicyService } from "@bitwarden/common/admin-console/abstractions/policy/policy.service.abstraction";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
@@ -67,6 +66,7 @@ import { SyncService } from "@bitwarden/common/platform/sync";
 import { UserId } from "@bitwarden/common/types/guid";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
 import { InternalFolderService } from "@bitwarden/common/vault/abstractions/folder/folder.service.abstraction";
+import { SearchService } from "@bitwarden/common/vault/abstractions/search.service";
 import { CipherType } from "@bitwarden/common/vault/enums";
 import { DialogRef, DialogService, ToastOptions, ToastService } from "@bitwarden/components";
 import { CredentialGeneratorHistoryDialogComponent } from "@bitwarden/generator-components";
diff --git a/apps/desktop/src/app/tools/send/send.component.ts b/apps/desktop/src/app/tools/send/send.component.ts
index 3ca26780853..0146a5e62ea 100644
--- a/apps/desktop/src/app/tools/send/send.component.ts
+++ b/apps/desktop/src/app/tools/send/send.component.ts
@@ -6,7 +6,6 @@ import { FormsModule } from "@angular/forms";
 
 import { JslibModule } from "@bitwarden/angular/jslib.module";
 import { SendComponent as BaseSendComponent } from "@bitwarden/angular/tools/send/send.component";
-import { SearchService } from "@bitwarden/common/abstractions/search.service";
 import { PolicyService } from "@bitwarden/common/admin-console/abstractions/policy/policy.service.abstraction";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { BroadcasterService } from "@bitwarden/common/platform/abstractions/broadcaster.service";
@@ -17,6 +16,7 @@ import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/pl
 import { SendView } from "@bitwarden/common/tools/send/models/view/send.view";
 import { SendApiService } from "@bitwarden/common/tools/send/services/send-api.service.abstraction";
 import { SendService } from "@bitwarden/common/tools/send/services/send.service.abstraction";
+import { SearchService } from "@bitwarden/common/vault/abstractions/search.service";
 import { DialogService, ToastService } from "@bitwarden/components";
 
 import { invokeMenu, RendererMenuItem } from "../../../utils";
diff --git a/apps/desktop/src/vault/app/vault/vault-items-v2.component.ts b/apps/desktop/src/vault/app/vault/vault-items-v2.component.ts
index 1256c9e52e8..21b857b551a 100644
--- a/apps/desktop/src/vault/app/vault/vault-items-v2.component.ts
+++ b/apps/desktop/src/vault/app/vault/vault-items-v2.component.ts
@@ -6,9 +6,9 @@ import { distinctUntilChanged } from "rxjs";
 
 import { JslibModule } from "@bitwarden/angular/jslib.module";
 import { VaultItemsComponent as BaseVaultItemsComponent } from "@bitwarden/angular/vault/components/vault-items.component";
-import { SearchService } from "@bitwarden/common/abstractions/search.service";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
+import { SearchService } from "@bitwarden/common/vault/abstractions/search.service";
 import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
 import { RestrictedItemTypesService } from "@bitwarden/common/vault/services/restricted-item-types.service";
 import { MenuModule } from "@bitwarden/components";
diff --git a/apps/desktop/src/vault/app/vault/vault-items.component.ts b/apps/desktop/src/vault/app/vault/vault-items.component.ts
index 8bf4955343d..c37a29833d9 100644
--- a/apps/desktop/src/vault/app/vault/vault-items.component.ts
+++ b/apps/desktop/src/vault/app/vault/vault-items.component.ts
@@ -4,9 +4,9 @@ import { Component } from "@angular/core";
 import { distinctUntilChanged } from "rxjs";
 
 import { VaultItemsComponent as BaseVaultItemsComponent } from "@bitwarden/angular/vault/components/vault-items.component";
-import { SearchService } from "@bitwarden/common/abstractions/search.service";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
+import { SearchService } from "@bitwarden/common/vault/abstractions/search.service";
 import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
 import { RestrictedItemTypesService } from "@bitwarden/common/vault/services/restricted-item-types.service";
 
diff --git a/apps/web/src/app/admin-console/organizations/collections/vault.component.ts b/apps/web/src/app/admin-console/organizations/collections/vault.component.ts
index bc0f517d1fb..8ad0f6cf499 100644
--- a/apps/web/src/app/admin-console/organizations/collections/vault.component.ts
+++ b/apps/web/src/app/admin-console/organizations/collections/vault.component.ts
@@ -35,7 +35,6 @@ import {
 import { SearchPipe } from "@bitwarden/angular/pipes/search.pipe";
 import { ApiService } from "@bitwarden/common/abstractions/api.service";
 import { EventCollectionService } from "@bitwarden/common/abstractions/event/event-collection.service";
-import { SearchService } from "@bitwarden/common/abstractions/search.service";
 import { OrganizationApiServiceAbstraction } from "@bitwarden/common/admin-console/abstractions/organization/organization-api.service.abstraction";
 import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
 import { Organization } from "@bitwarden/common/admin-console/models/domain/organization";
@@ -55,6 +54,7 @@ import { Utils } from "@bitwarden/common/platform/misc/utils";
 import { SyncService } from "@bitwarden/common/platform/sync";
 import { CipherId, CollectionId, OrganizationId, UserId } from "@bitwarden/common/types/guid";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
+import { SearchService } from "@bitwarden/common/vault/abstractions/search.service";
 import { TotpService } from "@bitwarden/common/vault/abstractions/totp.service";
 import { CipherType } from "@bitwarden/common/vault/enums";
 import { CipherRepromptType } from "@bitwarden/common/vault/enums/cipher-reprompt-type";
diff --git a/apps/web/src/app/app.component.ts b/apps/web/src/app/app.component.ts
index b9f3b8c05b7..ada73dd0059 100644
--- a/apps/web/src/app/app.component.ts
+++ b/apps/web/src/app/app.component.ts
@@ -9,7 +9,6 @@ import { CollectionService } from "@bitwarden/admin-console/common";
 import { DeviceTrustToastService } from "@bitwarden/angular/auth/services/device-trust-toast.service.abstraction";
 import { DocumentLangSetter } from "@bitwarden/angular/platform/i18n";
 import { EventUploadService } from "@bitwarden/common/abstractions/event/event-upload.service";
-import { SearchService } from "@bitwarden/common/abstractions/search.service";
 import { InternalOrganizationServiceAbstraction } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { AuthService } from "@bitwarden/common/auth/abstractions/auth.service";
@@ -26,6 +25,7 @@ import { NotificationsService } from "@bitwarden/common/platform/notifications";
 import { StateEventRunnerService } from "@bitwarden/common/platform/state";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
 import { InternalFolderService } from "@bitwarden/common/vault/abstractions/folder/folder.service.abstraction";
+import { SearchService } from "@bitwarden/common/vault/abstractions/search.service";
 import { DialogService, ToastService } from "@bitwarden/components";
 import { KeyService, BiometricStateService } from "@bitwarden/key-management";
 
diff --git a/apps/web/src/app/tools/send/send.component.ts b/apps/web/src/app/tools/send/send.component.ts
index 3d42b3182f8..b74a3b80ee3 100644
--- a/apps/web/src/app/tools/send/send.component.ts
+++ b/apps/web/src/app/tools/send/send.component.ts
@@ -4,7 +4,6 @@ import { Component, NgZone, OnInit, OnDestroy } from "@angular/core";
 import { lastValueFrom } from "rxjs";
 
 import { SendComponent as BaseSendComponent } from "@bitwarden/angular/tools/send/send.component";
-import { SearchService } from "@bitwarden/common/abstractions/search.service";
 import { PolicyService } from "@bitwarden/common/admin-console/abstractions/policy/policy.service.abstraction";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { BroadcasterService } from "@bitwarden/common/platform/abstractions/broadcaster.service";
@@ -16,6 +15,7 @@ import { SendView } from "@bitwarden/common/tools/send/models/view/send.view";
 import { SendApiService } from "@bitwarden/common/tools/send/services/send-api.service.abstraction";
 import { SendService } from "@bitwarden/common/tools/send/services/send.service.abstraction";
 import { SendId } from "@bitwarden/common/types/guid";
+import { SearchService } from "@bitwarden/common/vault/abstractions/search.service";
 import {
   DialogRef,
   DialogService,
diff --git a/apps/web/src/app/vault/individual-vault/vault.component.ts b/apps/web/src/app/vault/individual-vault/vault.component.ts
index 29ad0ead621..51d59b54369 100644
--- a/apps/web/src/app/vault/individual-vault/vault.component.ts
+++ b/apps/web/src/app/vault/individual-vault/vault.component.ts
@@ -36,7 +36,6 @@ import {
 import { SearchPipe } from "@bitwarden/angular/pipes/search.pipe";
 import { ApiService } from "@bitwarden/common/abstractions/api.service";
 import { EventCollectionService } from "@bitwarden/common/abstractions/event/event-collection.service";
-import { SearchService } from "@bitwarden/common/abstractions/search.service";
 import { OrganizationApiServiceAbstraction } from "@bitwarden/common/admin-console/abstractions/organization/organization-api.service.abstraction";
 import {
   getOrganizationById,
@@ -60,6 +59,7 @@ import { Utils } from "@bitwarden/common/platform/misc/utils";
 import { SyncService } from "@bitwarden/common/platform/sync";
 import { CipherId, CollectionId, OrganizationId, UserId } from "@bitwarden/common/types/guid";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
+import { SearchService } from "@bitwarden/common/vault/abstractions/search.service";
 import { TotpService } from "@bitwarden/common/vault/abstractions/totp.service";
 import { CipherType } from "@bitwarden/common/vault/enums";
 import { CipherRepromptType } from "@bitwarden/common/vault/enums/cipher-reprompt-type";
diff --git a/libs/angular/src/services/jslib-services.module.ts b/libs/angular/src/services/jslib-services.module.ts
index bec32ac1157..780604f048d 100644
--- a/libs/angular/src/services/jslib-services.module.ts
+++ b/libs/angular/src/services/jslib-services.module.ts
@@ -59,7 +59,6 @@ import { ApiService as ApiServiceAbstraction } from "@bitwarden/common/abstracti
 import { AuditService as AuditServiceAbstraction } from "@bitwarden/common/abstractions/audit.service";
 import { EventCollectionService as EventCollectionServiceAbstraction } from "@bitwarden/common/abstractions/event/event-collection.service";
 import { EventUploadService as EventUploadServiceAbstraction } from "@bitwarden/common/abstractions/event/event-upload.service";
-import { SearchService as SearchServiceAbstraction } from "@bitwarden/common/abstractions/search.service";
 import { OrganizationApiServiceAbstraction } from "@bitwarden/common/admin-console/abstractions/organization/organization-api.service.abstraction";
 import {
   InternalOrganizationServiceAbstraction,
@@ -257,7 +256,6 @@ import { ApiService } from "@bitwarden/common/services/api.service";
 import { AuditService } from "@bitwarden/common/services/audit.service";
 import { EventCollectionService } from "@bitwarden/common/services/event/event-collection.service";
 import { EventUploadService } from "@bitwarden/common/services/event/event-upload.service";
-import { SearchService } from "@bitwarden/common/services/search.service";
 import {
   PasswordStrengthService,
   PasswordStrengthServiceAbstraction,
@@ -279,6 +277,7 @@ import {
   FolderService as FolderServiceAbstraction,
   InternalFolderService,
 } from "@bitwarden/common/vault/abstractions/folder/folder.service.abstraction";
+import { SearchService as SearchServiceAbstraction } from "@bitwarden/common/vault/abstractions/search.service";
 import { TotpService as TotpServiceAbstraction } from "@bitwarden/common/vault/abstractions/totp.service";
 import { VaultSettingsService as VaultSettingsServiceAbstraction } from "@bitwarden/common/vault/abstractions/vault-settings/vault-settings.service";
 import {
@@ -295,6 +294,7 @@ import { CipherFileUploadService } from "@bitwarden/common/vault/services/file-u
 import { FolderApiService } from "@bitwarden/common/vault/services/folder/folder-api.service";
 import { FolderService } from "@bitwarden/common/vault/services/folder/folder.service";
 import { RestrictedItemTypesService } from "@bitwarden/common/vault/services/restricted-item-types.service";
+import { SearchService } from "@bitwarden/common/vault/services/search.service";
 import { TotpService } from "@bitwarden/common/vault/services/totp.service";
 import { VaultSettingsService } from "@bitwarden/common/vault/services/vault-settings/vault-settings.service";
 import { DefaultTaskService, TaskService } from "@bitwarden/common/vault/tasks";
diff --git a/libs/angular/src/tools/send/send.component.ts b/libs/angular/src/tools/send/send.component.ts
index 5dbf3686b7d..e96bdd8e31a 100644
--- a/libs/angular/src/tools/send/send.component.ts
+++ b/libs/angular/src/tools/send/send.component.ts
@@ -12,7 +12,6 @@ import {
   combineLatest,
 } from "rxjs";
 
-import { SearchService } from "@bitwarden/common/abstractions/search.service";
 import { PolicyService } from "@bitwarden/common/admin-console/abstractions/policy/policy.service.abstraction";
 import { PolicyType } from "@bitwarden/common/admin-console/enums";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
@@ -25,6 +24,7 @@ import { SendType } from "@bitwarden/common/tools/send/enums/send-type";
 import { SendView } from "@bitwarden/common/tools/send/models/view/send.view";
 import { SendApiService } from "@bitwarden/common/tools/send/services/send-api.service.abstraction";
 import { SendService } from "@bitwarden/common/tools/send/services/send.service.abstraction";
+import { SearchService } from "@bitwarden/common/vault/abstractions/search.service";
 import { DialogService, ToastService } from "@bitwarden/components";
 
 @Directive()
diff --git a/libs/angular/src/vault/components/vault-items.component.ts b/libs/angular/src/vault/components/vault-items.component.ts
index 424243fe118..cf017899774 100644
--- a/libs/angular/src/vault/components/vault-items.component.ts
+++ b/libs/angular/src/vault/components/vault-items.component.ts
@@ -15,11 +15,11 @@ import {
   takeUntil,
 } from "rxjs";
 
-import { SearchService } from "@bitwarden/common/abstractions/search.service";
 import { Organization } from "@bitwarden/common/admin-console/models/domain/organization";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { getUserId } from "@bitwarden/common/auth/services/account.service";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
+import { SearchService } from "@bitwarden/common/vault/abstractions/search.service";
 import { CipherType } from "@bitwarden/common/vault/enums";
 import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
 import { RestrictedItemTypesService } from "@bitwarden/common/vault/services/restricted-item-types.service";
diff --git a/libs/common/src/key-management/vault-timeout/services/vault-timeout.service.spec.ts b/libs/common/src/key-management/vault-timeout/services/vault-timeout.service.spec.ts
index 5ce7e37778d..9963e7d24f8 100644
--- a/libs/common/src/key-management/vault-timeout/services/vault-timeout.service.spec.ts
+++ b/libs/common/src/key-management/vault-timeout/services/vault-timeout.service.spec.ts
@@ -14,7 +14,6 @@ import { LogoutReason } from "@bitwarden/auth/common";
 import { BiometricsService } from "@bitwarden/key-management";
 
 import { FakeAccountService, mockAccountServiceWith } from "../../../../spec";
-import { SearchService } from "../../../abstractions/search.service";
 import { AccountInfo } from "../../../auth/abstractions/account.service";
 import { AuthService } from "../../../auth/abstractions/auth.service";
 import { AuthenticationStatus } from "../../../auth/enums/authentication-status";
@@ -28,6 +27,7 @@ import { StateEventRunnerService } from "../../../platform/state";
 import { UserId } from "../../../types/guid";
 import { CipherService } from "../../../vault/abstractions/cipher.service";
 import { FolderService } from "../../../vault/abstractions/folder/folder.service.abstraction";
+import { SearchService } from "../../../vault/abstractions/search.service";
 import { FakeMasterPasswordService } from "../../master-password/services/fake-master-password.service";
 import { VaultTimeoutAction } from "../enums/vault-timeout-action.enum";
 import { VaultTimeout, VaultTimeoutStringType } from "../types/vault-timeout.type";
diff --git a/libs/common/src/key-management/vault-timeout/services/vault-timeout.service.ts b/libs/common/src/key-management/vault-timeout/services/vault-timeout.service.ts
index 04769567db2..b5ee6a1fc0f 100644
--- a/libs/common/src/key-management/vault-timeout/services/vault-timeout.service.ts
+++ b/libs/common/src/key-management/vault-timeout/services/vault-timeout.service.ts
@@ -12,7 +12,6 @@ import { LogoutReason } from "@bitwarden/auth/common";
 // eslint-disable-next-line no-restricted-imports
 import { BiometricsService } from "@bitwarden/key-management";
 
-import { SearchService } from "../../../abstractions/search.service";
 import { AccountService } from "../../../auth/abstractions/account.service";
 import { AuthService } from "../../../auth/abstractions/auth.service";
 import { AuthenticationStatus } from "../../../auth/enums/authentication-status";
@@ -25,6 +24,7 @@ import { StateEventRunnerService } from "../../../platform/state";
 import { UserId } from "../../../types/guid";
 import { CipherService } from "../../../vault/abstractions/cipher.service";
 import { FolderService } from "../../../vault/abstractions/folder/folder.service.abstraction";
+import { SearchService } from "../../../vault/abstractions/search.service";
 import { InternalMasterPasswordServiceAbstraction } from "../../master-password/abstractions/master-password.service.abstraction";
 import { VaultTimeoutSettingsService } from "../abstractions/vault-timeout-settings.service";
 import { VaultTimeoutService as VaultTimeoutServiceAbstraction } from "../abstractions/vault-timeout.service";
diff --git a/libs/common/src/abstractions/search.service.ts b/libs/common/src/vault/abstractions/search.service.ts
similarity index 82%
rename from libs/common/src/abstractions/search.service.ts
rename to libs/common/src/vault/abstractions/search.service.ts
index 2bff33bf2db..c981aa748a4 100644
--- a/libs/common/src/abstractions/search.service.ts
+++ b/libs/common/src/vault/abstractions/search.service.ts
@@ -2,9 +2,9 @@
 // @ts-strict-ignore
 import { Observable } from "rxjs";
 
-import { SendView } from "../tools/send/models/view/send.view";
-import { IndexedEntityId, UserId } from "../types/guid";
-import { CipherView } from "../vault/models/view/cipher.view";
+import { SendView } from "../../tools/send/models/view/send.view";
+import { IndexedEntityId, UserId } from "../../types/guid";
+import { CipherView } from "../models/view/cipher.view";
 
 export abstract class SearchService {
   indexedEntityId$: (userId: UserId) => Observable<IndexedEntityId | null>;
diff --git a/libs/common/src/vault/services/cipher.service.spec.ts b/libs/common/src/vault/services/cipher.service.spec.ts
index 1a0b1568775..2fd9b03a37e 100644
--- a/libs/common/src/vault/services/cipher.service.spec.ts
+++ b/libs/common/src/vault/services/cipher.service.spec.ts
@@ -10,7 +10,6 @@ import { FakeAccountService, mockAccountServiceWith } from "../../../spec/fake-a
 import { FakeStateProvider } from "../../../spec/fake-state-provider";
 import { makeStaticByteArray, makeSymmetricCryptoKey } from "../../../spec/utils";
 import { ApiService } from "../../abstractions/api.service";
-import { SearchService } from "../../abstractions/search.service";
 import { AutofillSettingsService } from "../../autofill/services/autofill-settings.service";
 import { DomainSettingsService } from "../../autofill/services/domain-settings.service";
 import { BulkEncryptService } from "../../key-management/crypto/abstractions/bulk-encrypt.service";
@@ -29,6 +28,7 @@ import { CipherKey, OrgKey, UserKey } from "../../types/key";
 import { CipherEncryptionService } from "../abstractions/cipher-encryption.service";
 import { EncryptionContext } from "../abstractions/cipher.service";
 import { CipherFileUploadService } from "../abstractions/file-upload/cipher-file-upload.service";
+import { SearchService } from "../abstractions/search.service";
 import { FieldType } from "../enums";
 import { CipherRepromptType } from "../enums/cipher-reprompt-type";
 import { CipherType } from "../enums/cipher-type";
diff --git a/libs/common/src/vault/services/cipher.service.ts b/libs/common/src/vault/services/cipher.service.ts
index d8d180a7c3e..b4f79b2467e 100644
--- a/libs/common/src/vault/services/cipher.service.ts
+++ b/libs/common/src/vault/services/cipher.service.ts
@@ -9,7 +9,6 @@ import { LogService } from "@bitwarden/common/platform/abstractions/log.service"
 import { KeyService } from "@bitwarden/key-management";
 
 import { ApiService } from "../../abstractions/api.service";
-import { SearchService } from "../../abstractions/search.service";
 import { AccountService } from "../../auth/abstractions/account.service";
 import { AutofillSettingsServiceAbstraction } from "../../autofill/services/autofill-settings.service";
 import { DomainSettingsService } from "../../autofill/services/domain-settings.service";
@@ -38,6 +37,7 @@ import {
   EncryptionContext,
 } from "../abstractions/cipher.service";
 import { CipherFileUploadService } from "../abstractions/file-upload/cipher-file-upload.service";
+import { SearchService } from "../abstractions/search.service";
 import { FieldType } from "../enums";
 import { CipherType } from "../enums/cipher-type";
 import { CipherData } from "../models/data/cipher.data";
diff --git a/libs/common/src/services/search.service.ts b/libs/common/src/vault/services/search.service.ts
similarity index 96%
rename from libs/common/src/services/search.service.ts
rename to libs/common/src/vault/services/search.service.ts
index 3e6a070195a..4b7a26b6a31 100644
--- a/libs/common/src/services/search.service.ts
+++ b/libs/common/src/vault/services/search.service.ts
@@ -4,21 +4,21 @@ import * as lunr from "lunr";
 import { Observable, firstValueFrom, map } from "rxjs";
 import { Jsonify } from "type-fest";
 
-import { SearchService as SearchServiceAbstraction } from "../abstractions/search.service";
-import { UriMatchStrategy } from "../models/domain/domain-service";
-import { I18nService } from "../platform/abstractions/i18n.service";
-import { LogService } from "../platform/abstractions/log.service";
+import { UriMatchStrategy } from "../../models/domain/domain-service";
+import { I18nService } from "../../platform/abstractions/i18n.service";
+import { LogService } from "../../platform/abstractions/log.service";
 import {
   SingleUserState,
   StateProvider,
   UserKeyDefinition,
   VAULT_SEARCH_MEMORY,
-} from "../platform/state";
-import { SendView } from "../tools/send/models/view/send.view";
-import { IndexedEntityId, UserId } from "../types/guid";
-import { FieldType } from "../vault/enums";
-import { CipherType } from "../vault/enums/cipher-type";
-import { CipherView } from "../vault/models/view/cipher.view";
+} from "../../platform/state";
+import { SendView } from "../../tools/send/models/view/send.view";
+import { IndexedEntityId, UserId } from "../../types/guid";
+import { SearchService as SearchServiceAbstraction } from "../abstractions/search.service";
+import { FieldType } from "../enums";
+import { CipherType } from "../enums/cipher-type";
+import { CipherView } from "../models/view/cipher.view";
 
 export type SerializedLunrIndex = {
   version: string;
diff --git a/libs/tools/send/send-ui/src/services/send-items.service.spec.ts b/libs/tools/send/send-ui/src/services/send-items.service.spec.ts
index 77e3725e813..cf46c909da5 100644
--- a/libs/tools/send/send-ui/src/services/send-items.service.spec.ts
+++ b/libs/tools/send/send-ui/src/services/send-items.service.spec.ts
@@ -2,11 +2,11 @@ import { TestBed } from "@angular/core/testing";
 import { mock } from "jest-mock-extended";
 import { BehaviorSubject, first, Subject } from "rxjs";
 
-import { SearchService } from "@bitwarden/common/abstractions/search.service";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { SendView } from "@bitwarden/common/tools/send/models/view/send.view";
 import { SendService } from "@bitwarden/common/tools/send/services/send.service.abstraction";
 import { UserId } from "@bitwarden/common/types/guid";
+import { SearchService } from "@bitwarden/common/vault/abstractions/search.service";
 
 import { mockAccountServiceWith } from "../../../../../common/spec";
 
diff --git a/libs/tools/send/send-ui/src/services/send-items.service.ts b/libs/tools/send/send-ui/src/services/send-items.service.ts
index 1ade6f37f71..52e1e3d669e 100644
--- a/libs/tools/send/send-ui/src/services/send-items.service.ts
+++ b/libs/tools/send/send-ui/src/services/send-items.service.ts
@@ -14,11 +14,11 @@ import {
   tap,
 } from "rxjs";
 
-import { SearchService } from "@bitwarden/common/abstractions/search.service";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { getUserId } from "@bitwarden/common/auth/services/account.service";
 import { SendView } from "@bitwarden/common/tools/send/models/view/send.view";
 import { SendService } from "@bitwarden/common/tools/send/services/send.service.abstraction";
+import { SearchService } from "@bitwarden/common/vault/abstractions/search.service";
 
 import { SendListFiltersService } from "./send-list-filters.service";
 

From 652f673a3c14f1c5ba451e0afed3bf2c29cb019f Mon Sep 17 00:00:00 2001
From: Brandon Treston <btreston@bitwarden.com>
Date: Fri, 27 Jun 2025 11:49:58 -0400
Subject: [PATCH 004/239] [PM-23086] fix My Items collection name (#15366)

* fix My Items collection name

* clean up
---
 .../services/organization-user/organization-user.service.ts    | 2 +-
 apps/web/src/locales/en/messages.json                          | 3 +++
 2 files changed, 4 insertions(+), 1 deletion(-)

diff --git a/apps/web/src/app/admin-console/organizations/members/services/organization-user/organization-user.service.ts b/apps/web/src/app/admin-console/organizations/members/services/organization-user/organization-user.service.ts
index 31dfa865005..79efeebca2a 100644
--- a/apps/web/src/app/admin-console/organizations/members/services/organization-user/organization-user.service.ts
+++ b/apps/web/src/app/admin-console/organizations/members/services/organization-user/organization-user.service.ts
@@ -43,7 +43,7 @@ export class OrganizationUserService {
   ): Observable<void> {
     const encryptedCollectionName$ = this.orgKey$(organization).pipe(
       switchMap((orgKey) =>
-        this.encryptService.encryptString(this.i18nService.t("My Itmes"), orgKey),
+        this.encryptService.encryptString(this.i18nService.t("myItems"), orgKey),
       ),
     );
 
diff --git a/apps/web/src/locales/en/messages.json b/apps/web/src/locales/en/messages.json
index 79197f1eb06..5c9b02e5287 100644
--- a/apps/web/src/locales/en/messages.json
+++ b/apps/web/src/locales/en/messages.json
@@ -3276,6 +3276,9 @@
   "defaultCollection": {
     "message": "Default collection"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "getHelp": {
     "message": "Get help"
   },

From 4e3d83147e3e4dbdaa5b78a44d47e95426bf4c60 Mon Sep 17 00:00:00 2001
From: Ketan Mehta <45426198+ketanMehtaa@users.noreply.github.com>
Date: Fri, 27 Jun 2025 21:26:14 +0530
Subject: [PATCH 005/239] fixed ui name collection overlap (#15241)

Co-authored-by: Daniel James Smith <2670567+djsmith85@users.noreply.github.com>
---
 .../components/vault-items/vault-items.component.html     | 8 ++------
 1 file changed, 2 insertions(+), 6 deletions(-)

diff --git a/apps/web/src/app/vault/components/vault-items/vault-items.component.html b/apps/web/src/app/vault/components/vault-items/vault-items.component.html
index 992c9c26bf3..ef928903a72 100644
--- a/apps/web/src/app/vault/components/vault-items/vault-items.component.html
+++ b/apps/web/src/app/vault/components/vault-items/vault-items.component.html
@@ -22,16 +22,12 @@
           bitCell
           bitSortable="name"
           [fn]="sortByName"
-          [class]="showExtraColumn ? 'lg:tw-w-3/5' : 'tw-w-full'"
+          [class]="showExtraColumn ? 'tw-w-3/5' : 'tw-w-full'"
         >
           {{ "name" | i18n }}
         </th>
         <!-- Individual vault -->
-        <th
-          *ngIf="!showAdminActions"
-          bitCell
-          [class]="showExtraColumn ? 'lg:tw-w-3/5' : 'tw-w-full'"
-        >
+        <th *ngIf="!showAdminActions" bitCell [class]="showExtraColumn ? 'tw-w-3/5' : 'tw-w-full'">
           {{ "name" | i18n }}
         </th>
         <th bitCell *ngIf="showOwner" class="tw-hidden tw-w-2/5 lg:tw-table-cell">

From cb36b96855bb8ad05e9fc7837224336086e5ed1a Mon Sep 17 00:00:00 2001
From: Nick Krantz <125900171+nick-livefront@users.noreply.github.com>
Date: Fri, 27 Jun 2025 12:55:20 -0500
Subject: [PATCH 006/239] [PM-22178] Add `WebBrowserInteractionService`
 (#15261)

* add `WebBrowserInteractionService` and check for the extension observable

* update checkForExtension to use observables rather than window timeouts

* add open extension to WebBrowserInteractionService

* add at-risk-passwords to `PopupPageUrls`

* refactor `PopupPageUrls` to `ExtensionPageUrls`

* add test for passing a page

* refactor `Default` to `Index`

* clean up complete/next issue using `race`

* refactor page to url

* continue listening for messages from the extension after subscribed

* mark risk passwords a deprecated

* remove takeUntilDestroyed

* add back `takeUntilDestroyed` for internal `messages`

* removed null filter - unneeded

* add tap to send message for extension installation

* add check for accepted urls to prevent any bad actors from opening the extension
---
 .../abstractions/content-message-handler.ts   |   3 +
 .../content/content-message-handler.ts        |   8 ++
 .../browser/src/background/main.background.ts |  35 +++++-
 .../src/background/runtime.background.ts      |   4 +
 .../web-browser-interaction.service.spec.ts   | 111 ++++++++++++++++++
 .../web-browser-interaction.service.ts        |  76 ++++++++++++
 .../vault/enums/extension-page-urls.enum.ts   |  12 ++
 libs/common/src/vault/enums/index.ts          |   1 +
 .../src/vault/enums/vault-messages.enum.ts    |   2 +
 9 files changed, 250 insertions(+), 2 deletions(-)
 create mode 100644 apps/web/src/app/vault/services/web-browser-interaction.service.spec.ts
 create mode 100644 apps/web/src/app/vault/services/web-browser-interaction.service.ts
 create mode 100644 libs/common/src/vault/enums/extension-page-urls.enum.ts

diff --git a/apps/browser/src/autofill/content/abstractions/content-message-handler.ts b/apps/browser/src/autofill/content/abstractions/content-message-handler.ts
index 8231bd688c9..f413ace9432 100644
--- a/apps/browser/src/autofill/content/abstractions/content-message-handler.ts
+++ b/apps/browser/src/autofill/content/abstractions/content-message-handler.ts
@@ -1,3 +1,5 @@
+import { ExtensionPageUrls } from "@bitwarden/common/vault/enums";
+
 type ContentMessageWindowData = {
   command: string;
   lastpass?: boolean;
@@ -5,6 +7,7 @@ type ContentMessageWindowData = {
   state?: string;
   data?: string;
   remember?: boolean;
+  url?: ExtensionPageUrls;
 };
 type ContentMessageWindowEventParams = {
   data: ContentMessageWindowData;
diff --git a/apps/browser/src/autofill/content/content-message-handler.ts b/apps/browser/src/autofill/content/content-message-handler.ts
index 60f093f8c10..c57b2d959f3 100644
--- a/apps/browser/src/autofill/content/content-message-handler.ts
+++ b/apps/browser/src/autofill/content/content-message-handler.ts
@@ -1,3 +1,4 @@
+import { ExtensionPageUrls } from "@bitwarden/common/vault/enums";
 import { VaultMessages } from "@bitwarden/common/vault/enums/vault-messages.enum";
 
 import {
@@ -18,6 +19,8 @@ const windowMessageHandlers: ContentMessageWindowEventHandlers = {
   duoResult: ({ data, referrer }: { data: any; referrer: string }) =>
     handleDuoResultMessage(data, referrer),
   [VaultMessages.OpenAtRiskPasswords]: () => handleOpenAtRiskPasswordsMessage(),
+  [VaultMessages.OpenBrowserExtensionToUrl]: ({ data }) =>
+    handleOpenBrowserExtensionToUrlMessage(data),
 };
 
 /**
@@ -73,10 +76,15 @@ function handleWebAuthnResultMessage(data: ContentMessageWindowData, referrer: s
   sendExtensionRuntimeMessage({ command, data: data.data, remember, referrer });
 }
 
+/** @deprecated use {@link handleOpenBrowserExtensionToUrlMessage} */
 function handleOpenAtRiskPasswordsMessage() {
   sendExtensionRuntimeMessage({ command: VaultMessages.OpenAtRiskPasswords });
 }
 
+function handleOpenBrowserExtensionToUrlMessage({ url }: { url?: ExtensionPageUrls }) {
+  sendExtensionRuntimeMessage({ command: VaultMessages.OpenBrowserExtensionToUrl, url });
+}
+
 /**
  * Handles the window message event.
  *
diff --git a/apps/browser/src/background/main.background.ts b/apps/browser/src/background/main.background.ts
index 2f423895f9f..c6d68a9f047 100644
--- a/apps/browser/src/background/main.background.ts
+++ b/apps/browser/src/background/main.background.ts
@@ -191,6 +191,7 @@ import { InternalFolderService as InternalFolderServiceAbstraction } from "@bitw
 import { SearchService as SearchServiceAbstraction } from "@bitwarden/common/vault/abstractions/search.service";
 import { TotpService as TotpServiceAbstraction } from "@bitwarden/common/vault/abstractions/totp.service";
 import { VaultSettingsService as VaultSettingsServiceAbstraction } from "@bitwarden/common/vault/abstractions/vault-settings/vault-settings.service";
+import { ExtensionPageUrls } from "@bitwarden/common/vault/enums";
 import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
 import {
   DefaultEndUserNotificationService,
@@ -1694,14 +1695,44 @@ export default class MainBackground {
       // Set route of the popup before attempting to open it.
       // If the vault is locked, this won't have an effect as the auth guards will
       // redirect the user to the login page.
-      await browserAction.setPopup({ popup: "popup/index.html#/at-risk-passwords" });
+      await browserAction.setPopup({ popup: ExtensionPageUrls.AtRiskPasswords });
 
       await this.openPopup();
     } finally {
       // Reset the popup route to the default route so any subsequent
       // popup openings will not open to the at-risk-passwords page.
       await browserAction.setPopup({
-        popup: "popup/index.html#/",
+        popup: ExtensionPageUrls.Index,
+      });
+    }
+  }
+
+  /**
+   * Opens the popup to the given page
+   * @default ExtensionPageUrls.Index
+   */
+  async openTheExtensionToPage(url: ExtensionPageUrls = ExtensionPageUrls.Index) {
+    const isValidUrl = Object.values(ExtensionPageUrls).includes(url);
+
+    // If a non-defined URL is provided, return early.
+    if (!isValidUrl) {
+      return;
+    }
+
+    const browserAction = BrowserApi.getBrowserAction();
+
+    try {
+      // Set route of the popup before attempting to open it.
+      // If the vault is locked, this won't have an effect as the auth guards will
+      // redirect the user to the login page.
+      await browserAction.setPopup({ popup: url });
+
+      await this.openPopup();
+    } finally {
+      // Reset the popup route to the default route so any subsequent
+      // popup openings will not open to the at-risk-passwords page.
+      await browserAction.setPopup({
+        popup: ExtensionPageUrls.Index,
       });
     }
   }
diff --git a/apps/browser/src/background/runtime.background.ts b/apps/browser/src/background/runtime.background.ts
index cca17730a22..54fb8326cfb 100644
--- a/apps/browser/src/background/runtime.background.ts
+++ b/apps/browser/src/background/runtime.background.ts
@@ -296,6 +296,10 @@ export default class RuntimeBackground {
         await this.main.openAtRisksPasswordsPage();
         this.announcePopupOpen();
         break;
+      case VaultMessages.OpenBrowserExtensionToUrl:
+        await this.main.openTheExtensionToPage(msg.url);
+        this.announcePopupOpen();
+        break;
       case "bgUpdateContextMenu":
       case "editedCipher":
       case "addedCipher":
diff --git a/apps/web/src/app/vault/services/web-browser-interaction.service.spec.ts b/apps/web/src/app/vault/services/web-browser-interaction.service.spec.ts
new file mode 100644
index 00000000000..68a9ca6d099
--- /dev/null
+++ b/apps/web/src/app/vault/services/web-browser-interaction.service.spec.ts
@@ -0,0 +1,111 @@
+import { fakeAsync, TestBed, tick } from "@angular/core/testing";
+
+import { ExtensionPageUrls } from "@bitwarden/common/vault/enums";
+import { VaultMessages } from "@bitwarden/common/vault/enums/vault-messages.enum";
+
+import { WebBrowserInteractionService } from "./web-browser-interaction.service";
+
+describe("WebBrowserInteractionService", () => {
+  let service: WebBrowserInteractionService;
+  const postMessage = jest.fn();
+  window.postMessage = postMessage;
+
+  const dispatchEvent = (command: string) => {
+    window.dispatchEvent(new MessageEvent("message", { data: { command } }));
+  };
+
+  beforeEach(() => {
+    TestBed.configureTestingModule({
+      providers: [WebBrowserInteractionService],
+    });
+
+    postMessage.mockClear();
+
+    service = TestBed.inject(WebBrowserInteractionService);
+  });
+
+  describe("extensionInstalled$", () => {
+    it("posts a message to check for the extension", () => {
+      service.extensionInstalled$.subscribe();
+
+      expect(postMessage).toHaveBeenCalledWith({
+        command: VaultMessages.checkBwInstalled,
+      });
+    });
+
+    it("returns false after the timeout", fakeAsync(() => {
+      service.extensionInstalled$.subscribe((installed) => {
+        expect(installed).toBe(false);
+      });
+
+      tick(1500);
+    }));
+
+    it("returns true when the extension is installed", (done) => {
+      service.extensionInstalled$.subscribe((installed) => {
+        expect(installed).toBe(true);
+        done();
+      });
+
+      dispatchEvent(VaultMessages.HasBwInstalled);
+    });
+
+    it("continues to listen for extension state changes after the first response", fakeAsync(() => {
+      const results: boolean[] = [];
+
+      service.extensionInstalled$.subscribe((installed) => {
+        results.push(installed);
+      });
+
+      // initial timeout, should emit false
+      tick(1500);
+      expect(results[0]).toBe(false);
+
+      // then emit `HasBwInstalled`
+      dispatchEvent(VaultMessages.HasBwInstalled);
+      tick();
+      expect(results[1]).toBe(true);
+    }));
+  });
+
+  describe("openExtension", () => {
+    it("posts a message to open the extension", fakeAsync(() => {
+      service.openExtension().catch(() => {});
+
+      expect(postMessage).toHaveBeenCalledWith({
+        command: VaultMessages.OpenBrowserExtensionToUrl,
+      });
+
+      tick(1500);
+    }));
+
+    it("posts a message with the passed page", fakeAsync(() => {
+      service.openExtension(ExtensionPageUrls.Index).catch(() => {});
+
+      expect(postMessage).toHaveBeenCalledWith({
+        command: VaultMessages.OpenBrowserExtensionToUrl,
+        url: ExtensionPageUrls.Index,
+      });
+
+      tick(1500);
+    }));
+
+    it("resolves when the extension opens", async () => {
+      const openExtensionPromise = service.openExtension().catch(() => {
+        fail();
+      });
+
+      dispatchEvent(VaultMessages.PopupOpened);
+
+      await openExtensionPromise;
+    });
+
+    it("rejects if the extension does not open within the timeout", fakeAsync(() => {
+      service.openExtension().catch((error) => {
+        expect(error).toBe("Failed to open the extension");
+      });
+
+      tick(1500);
+    }));
+  });
+});
diff --git a/apps/web/src/app/vault/services/web-browser-interaction.service.ts b/apps/web/src/app/vault/services/web-browser-interaction.service.ts
new file mode 100644
index 00000000000..46c566140e4
--- /dev/null
+++ b/apps/web/src/app/vault/services/web-browser-interaction.service.ts
@@ -0,0 +1,76 @@
+import { DestroyRef, inject, Injectable } from "@angular/core";
+import { takeUntilDestroyed } from "@angular/core/rxjs-interop";
+import { concatWith, filter, fromEvent, map, Observable, race, take, tap, timer } from "rxjs";
+
+import { ExtensionPageUrls } from "@bitwarden/common/vault/enums";
+import { VaultMessages } from "@bitwarden/common/vault/enums/vault-messages.enum";
+
+/**
+ * The amount of time in milliseconds to wait for a response from the browser extension.
+ * NOTE: This value isn't computed by any means, it is just a reasonable timeout for the extension to respond.
+ */
+const MESSAGE_RESPONSE_TIMEOUT_MS = 1500;
+
+@Injectable({
+  providedIn: "root",
+})
+export class WebBrowserInteractionService {
+  destroyRef = inject(DestroyRef);
+
+  private messages$ = fromEvent<MessageEvent>(window, "message").pipe(
+    takeUntilDestroyed(this.destroyRef),
+  );
+
+  /** Emits the installation status of the extension. */
+  extensionInstalled$ = this.checkForExtension().pipe(
+    concatWith(
+      this.messages$.pipe(
+        filter((event) => event.data.command === VaultMessages.HasBwInstalled),
+        map(() => true),
+      ),
+    ),
+  );
+
+  /** Attempts to open the extension, rejects if the extension is not installed or it fails to open.  */
+  openExtension = (url?: ExtensionPageUrls) => {
+    return new Promise<void>((resolve, reject) => {
+      race(
+        this.messages$.pipe(
+          filter((event) => event.data.command === VaultMessages.PopupOpened),
+          map(() => true),
+        ),
+        timer(MESSAGE_RESPONSE_TIMEOUT_MS).pipe(map(() => false)),
+      )
+        .pipe(take(1))
+        .subscribe((didOpen) => {
+          if (!didOpen) {
+            return reject("Failed to open the extension");
+          }
+
+          resolve();
+        });
+
+      window.postMessage({ command: VaultMessages.OpenBrowserExtensionToUrl, url });
+    });
+  };
+
+  /** Sends a message via the window object to check if the extension is installed */
+  private checkForExtension(): Observable<boolean> {
+    const checkForExtension$ = race(
+      this.messages$.pipe(
+        filter((event) => event.data.command === VaultMessages.HasBwInstalled),
+        map(() => true),
+      ),
+      timer(MESSAGE_RESPONSE_TIMEOUT_MS).pipe(map(() => false)),
+    ).pipe(
+      tap({
+        subscribe: () => {
+          window.postMessage({ command: VaultMessages.checkBwInstalled });
+        },
+      }),
+      take(1),
+    );
+
+    return checkForExtension$;
+  }
+}
diff --git a/libs/common/src/vault/enums/extension-page-urls.enum.ts b/libs/common/src/vault/enums/extension-page-urls.enum.ts
new file mode 100644
index 00000000000..95f9e0a21df
--- /dev/null
+++ b/libs/common/src/vault/enums/extension-page-urls.enum.ts
@@ -0,0 +1,12 @@
+import { UnionOfValues } from "../types/union-of-values";
+
+/**
+ * Available pages within the extension by their URL.
+ * Useful when opening a specific page within the popup.
+ */
+export const ExtensionPageUrls: Record<string, `popup/index.html#/${string}`> = {
+  Index: "popup/index.html#/",
+  AtRiskPasswords: "popup/index.html#/at-risk-passwords",
+} as const;
+
+export type ExtensionPageUrls = UnionOfValues<typeof ExtensionPageUrls>;
diff --git a/libs/common/src/vault/enums/index.ts b/libs/common/src/vault/enums/index.ts
index d7d1d06d2b9..c996a14a81a 100644
--- a/libs/common/src/vault/enums/index.ts
+++ b/libs/common/src/vault/enums/index.ts
@@ -3,3 +3,4 @@ export * from "./cipher-type";
 export * from "./field-type.enum";
 export * from "./linked-id-type.enum";
 export * from "./secure-note-type.enum";
+export * from "./extension-page-urls.enum";
diff --git a/libs/common/src/vault/enums/vault-messages.enum.ts b/libs/common/src/vault/enums/vault-messages.enum.ts
index 73272564432..fe76cd72427 100644
--- a/libs/common/src/vault/enums/vault-messages.enum.ts
+++ b/libs/common/src/vault/enums/vault-messages.enum.ts
@@ -1,7 +1,9 @@
 const VaultMessages = {
   HasBwInstalled: "hasBwInstalled",
   checkBwInstalled: "checkIfBWExtensionInstalled",
+  /** @deprecated use {@link OpenBrowserExtensionToUrl} */
   OpenAtRiskPasswords: "openAtRiskPasswords",
+  OpenBrowserExtensionToUrl: "openBrowserExtensionToUrl",
   PopupOpened: "popupOpened",
 } as const;
 

From 64f8073fdf443147b728454ea8beaddace27b8de Mon Sep 17 00:00:00 2001
From: Jared McCannon <jmccannon@bitwarden.com>
Date: Fri, 27 Jun 2025 14:13:21 -0400
Subject: [PATCH 007/239] Removed feature flag for
 OptimizeNestedTraverseTypescript and vnext methods related to it. (#15314)

---
 .../collections/utils/collection-utils.ts     | 25 --------
 .../collections/vault.component.ts            | 19 ++----
 .../vault/individual-vault/vault.component.ts | 13 +---
 libs/common/src/enums/feature-flag.enum.ts    |  2 -
 libs/common/src/vault/service-utils.spec.ts   | 18 ------
 libs/common/src/vault/service-utils.ts        | 64 +------------------
 6 files changed, 9 insertions(+), 132 deletions(-)

diff --git a/apps/web/src/app/admin-console/organizations/collections/utils/collection-utils.ts b/apps/web/src/app/admin-console/organizations/collections/utils/collection-utils.ts
index f19c3f64530..95ae911bbf6 100644
--- a/apps/web/src/app/admin-console/organizations/collections/utils/collection-utils.ts
+++ b/apps/web/src/app/admin-console/organizations/collections/utils/collection-utils.ts
@@ -37,31 +37,6 @@ export function getNestedCollectionTree(
   return nodes;
 }
 
-export function getNestedCollectionTree_vNext(
-  collections: (CollectionView | CollectionAdminView)[],
-): TreeNode<CollectionView | CollectionAdminView>[] {
-  if (!collections) {
-    return [];
-  }
-
-  // Collections need to be cloned because ServiceUtils.nestedTraverse actively
-  // modifies the names of collections.
-  // These changes risk affecting collections store in StateService.
-  const clonedCollections = collections
-    .sort((a, b) => a.name.localeCompare(b.name))
-    .map(cloneCollection);
-
-  const nodes: TreeNode<CollectionView | CollectionAdminView>[] = [];
-  clonedCollections.forEach((collection) => {
-    const parts =
-      collection.name != null
-        ? collection.name.replace(/^\/+|\/+$/g, "").split(NestingDelimiter)
-        : [];
-    ServiceUtils.nestedTraverse_vNext(nodes, 0, parts, collection, null, NestingDelimiter);
-  });
-  return nodes;
-}
-
 export function getFlatCollectionTree(
   nodes: TreeNode<CollectionAdminView>[],
 ): CollectionAdminView[];
diff --git a/apps/web/src/app/admin-console/organizations/collections/vault.component.ts b/apps/web/src/app/admin-console/organizations/collections/vault.component.ts
index 8ad0f6cf499..5846209e4c6 100644
--- a/apps/web/src/app/admin-console/organizations/collections/vault.component.ts
+++ b/apps/web/src/app/admin-console/organizations/collections/vault.component.ts
@@ -125,11 +125,7 @@ import {
   BulkCollectionsDialogResult,
 } from "./bulk-collections-dialog";
 import { CollectionAccessRestrictedComponent } from "./collection-access-restricted.component";
-import {
-  getNestedCollectionTree,
-  getFlatCollectionTree,
-  getNestedCollectionTree_vNext,
-} from "./utils";
+import { getNestedCollectionTree, getFlatCollectionTree } from "./utils";
 import { VaultFilterModule } from "./vault-filter/vault-filter.module";
 import { VaultHeaderComponent } from "./vault-header/vault-header.component";
 
@@ -423,16 +419,9 @@ export class VaultComponent implements OnInit, OnDestroy {
       }),
     );
 
-    const nestedCollections$ = combineLatest([
-      allCollections$,
-      this.configService.getFeatureFlag$(FeatureFlag.OptimizeNestedTraverseTypescript),
-    ]).pipe(
-      map(
-        ([collections, shouldOptimize]) =>
-          (shouldOptimize
-            ? getNestedCollectionTree_vNext(collections)
-            : getNestedCollectionTree(collections)) as TreeNode<CollectionAdminView>[],
-      ),
+    const nestedCollections$ = allCollections$.pipe(
+      map((collections) => getNestedCollectionTree(collections)),
+      shareReplay({ refCount: true, bufferSize: 1 }),
     );
 
     const collections$ = combineLatest([
diff --git a/apps/web/src/app/vault/individual-vault/vault.component.ts b/apps/web/src/app/vault/individual-vault/vault.component.ts
index 51d59b54369..52c4bcef01b 100644
--- a/apps/web/src/app/vault/individual-vault/vault.component.ts
+++ b/apps/web/src/app/vault/individual-vault/vault.component.ts
@@ -48,7 +48,6 @@ import { OrganizationBillingServiceAbstraction } from "@bitwarden/common/billing
 import { BillingAccountProfileStateService } from "@bitwarden/common/billing/abstractions/account/billing-account-profile-state.service";
 import { BillingApiServiceAbstraction } from "@bitwarden/common/billing/abstractions/billing-api.service.abstraction";
 import { EventType } from "@bitwarden/common/enums";
-import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
 import { BroadcasterService } from "@bitwarden/common/platform/abstractions/broadcaster.service";
 import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
@@ -85,7 +84,6 @@ import {
 import {
   getNestedCollectionTree,
   getFlatCollectionTree,
-  getNestedCollectionTree_vNext,
 } from "../../admin-console/organizations/collections";
 import {
   CollectionDialogAction,
@@ -331,15 +329,8 @@ export class VaultComponent implements OnInit, OnDestroy {
 
     const filter$ = this.routedVaultFilterService.filter$;
     const allCollections$ = this.collectionService.decryptedCollections$;
-    const nestedCollections$ = combineLatest([
-      allCollections$,
-      this.configService.getFeatureFlag$(FeatureFlag.OptimizeNestedTraverseTypescript),
-    ]).pipe(
-      map(([collections, shouldOptimize]) =>
-        shouldOptimize
-          ? getNestedCollectionTree_vNext(collections)
-          : getNestedCollectionTree(collections),
-      ),
+    const nestedCollections$ = allCollections$.pipe(
+      map((collections) => getNestedCollectionTree(collections)),
     );
 
     this.searchText$
diff --git a/libs/common/src/enums/feature-flag.enum.ts b/libs/common/src/enums/feature-flag.enum.ts
index 8322dba03c6..55c96c2334c 100644
--- a/libs/common/src/enums/feature-flag.enum.ts
+++ b/libs/common/src/enums/feature-flag.enum.ts
@@ -12,7 +12,6 @@ import { ServerConfig } from "../platform/abstractions/config/server-config";
 export enum FeatureFlag {
   /* Admin Console Team */
   SeparateCustomRolePermissions = "pm-19917-separate-custom-role-permissions",
-  OptimizeNestedTraverseTypescript = "pm-21695-optimize-nested-traverse-typescript",
   CreateDefaultLocation = "pm-19467-create-default-location",
 
   /* Auth */
@@ -77,7 +76,6 @@ const FALSE = false as boolean;
 export const DefaultFeatureFlagValue = {
   /* Admin Console Team */
   [FeatureFlag.SeparateCustomRolePermissions]: FALSE,
-  [FeatureFlag.OptimizeNestedTraverseTypescript]: FALSE,
   [FeatureFlag.CreateDefaultLocation]: FALSE,
 
   /* Autofill */
diff --git a/libs/common/src/vault/service-utils.spec.ts b/libs/common/src/vault/service-utils.spec.ts
index 619d3d72ee6..db414da76d7 100644
--- a/libs/common/src/vault/service-utils.spec.ts
+++ b/libs/common/src/vault/service-utils.spec.ts
@@ -36,24 +36,6 @@ describe("serviceUtils", () => {
     });
   });
 
-  describe("nestedTraverse_vNext", () => {
-    it("should traverse a tree and add a node at the correct position given a valid path", () => {
-      const nodeToBeAdded: FakeObject = { id: "1.2.1", name: "1.2.1" };
-      const path = ["1", "1.2", "1.2.1"];
-
-      ServiceUtils.nestedTraverse_vNext(nodeTree, 0, path, nodeToBeAdded, null, "/");
-      expect(nodeTree[0].children[1].children[0].node).toEqual(nodeToBeAdded);
-    });
-
-    it("should combine the path for missing nodes and use as the added node name given an invalid path", () => {
-      const nodeToBeAdded: FakeObject = { id: "blank", name: "blank" };
-      const path = ["3", "3.1", "3.1.1"];
-
-      ServiceUtils.nestedTraverse_vNext(nodeTree, 0, path, nodeToBeAdded, null, "/");
-      expect(nodeTree[2].children[0].node.name).toEqual("3.1/3.1.1");
-    });
-  });
-
   describe("getTreeNodeObject", () => {
     it("should return a matching node given a single tree branch and a valid id", () => {
       const id = "1.1.1";
diff --git a/libs/common/src/vault/service-utils.ts b/libs/common/src/vault/service-utils.ts
index 9595434223f..0d863e6ad0b 100644
--- a/libs/common/src/vault/service-utils.ts
+++ b/libs/common/src/vault/service-utils.ts
@@ -4,64 +4,6 @@
 import { ITreeNodeObject, TreeNode } from "./models/domain/tree-node";
 
 export class ServiceUtils {
-  static nestedTraverse(
-    nodeTree: TreeNode<ITreeNodeObject>[],
-    partIndex: number,
-    parts: string[],
-    obj: ITreeNodeObject,
-    parent: TreeNode<ITreeNodeObject> | undefined,
-    delimiter: string,
-  ) {
-    if (parts.length <= partIndex) {
-      return;
-    }
-
-    const end: boolean = partIndex === parts.length - 1;
-    const partName: string = parts[partIndex];
-
-    for (let i = 0; i < nodeTree.length; i++) {
-      if (nodeTree[i].node.name !== partName) {
-        continue;
-      }
-      if (end && nodeTree[i].node.id !== obj.id) {
-        // Another node exists with the same name as the node being added
-        nodeTree.push(new TreeNode(obj, parent, partName));
-        return;
-      }
-      // Move down the tree to the next level
-      ServiceUtils.nestedTraverse(
-        nodeTree[i].children,
-        partIndex + 1,
-        parts,
-        obj,
-        nodeTree[i],
-        delimiter,
-      );
-      return;
-    }
-
-    // If there's no node here with the same name...
-    if (nodeTree.filter((n) => n.node.name === partName).length === 0) {
-      // And we're at the end of the path given, add the node
-      if (end) {
-        nodeTree.push(new TreeNode(obj, parent, partName));
-        return;
-      }
-      // And we're not at the end of the path, combine the current name with the next name
-      // 1, *1.2, 1.2.1 becomes
-      // 1, *1.2/1.2.1
-      const newPartName = partName + delimiter + parts[partIndex + 1];
-      ServiceUtils.nestedTraverse(
-        nodeTree,
-        0,
-        [newPartName, ...parts.slice(partIndex + 2)],
-        obj,
-        parent,
-        delimiter,
-      );
-    }
-  }
-
   /**
    * Recursively adds a node to nodeTree
    * @param {TreeNode<ITreeNodeObject>[]} nodeTree - An array of TreeNodes that the node will be added to
@@ -71,7 +13,7 @@ export class ServiceUtils {
    * @param {ITreeNodeObject} parent - The parent node of the `obj` node
    * @param {string} delimiter - The delimiter used to split the path string, will be used to combine the path for missing nodes
    */
-  static nestedTraverse_vNext(
+  static nestedTraverse(
     nodeTree: TreeNode<ITreeNodeObject>[],
     partIndex: number,
     parts: string[],
@@ -104,7 +46,7 @@ export class ServiceUtils {
       // 1, *1.2, 1.2.1 becomes
       // 1, *1.2/1.2.1
       const newPartName = partName + delimiter + parts[partIndex + 1];
-      ServiceUtils.nestedTraverse_vNext(
+      ServiceUtils.nestedTraverse(
         nodeTree,
         0,
         [newPartName, ...parts.slice(partIndex + 2)],
@@ -114,7 +56,7 @@ export class ServiceUtils {
       );
     } else {
       // There is a node here with the same name, descend into it
-      ServiceUtils.nestedTraverse_vNext(
+      ServiceUtils.nestedTraverse(
         matchingNodes[0].children,
         partIndex + 1,
         parts,

From 7500fe32bbcfaf7d1155b626c0dadf1f61b53a83 Mon Sep 17 00:00:00 2001
From: rr-bw <102181210+rr-bw@users.noreply.github.com>
Date: Fri, 27 Jun 2025 11:19:13 -0700
Subject: [PATCH 008/239] fix(auth-guard): [PM-22822] fix infinite redirect
 loop (#15371)

---
 libs/angular/src/auth/guards/auth.guard.ts | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/libs/angular/src/auth/guards/auth.guard.ts b/libs/angular/src/auth/guards/auth.guard.ts
index a172c45d6f9..cf4f9dc2034 100644
--- a/libs/angular/src/auth/guards/auth.guard.ts
+++ b/libs/angular/src/auth/guards/auth.guard.ts
@@ -100,10 +100,10 @@ export const authGuard: CanActivateFn = async (
 
   // Post- Account Recovery or Weak Password on login
   if (
-    forceSetPasswordReason === ForceSetPasswordReason.AdminForcePasswordReset ||
-    (forceSetPasswordReason === ForceSetPasswordReason.WeakMasterPassword &&
-      !routerState.url.includes("update-temp-password") &&
-      !routerState.url.includes("change-password"))
+    (forceSetPasswordReason === ForceSetPasswordReason.AdminForcePasswordReset ||
+      forceSetPasswordReason === ForceSetPasswordReason.WeakMasterPassword) &&
+    !routerState.url.includes("update-temp-password") &&
+    !routerState.url.includes("change-password")
   ) {
     const route = isChangePasswordFlagOn ? "/change-password" : "/update-temp-password";
     return router.createUrlTree([route]);

From 780ce6a762e5d90a4282354e07222a712086d6c9 Mon Sep 17 00:00:00 2001
From: Colton Hurst <colton@coltonhurst.com>
Date: Fri, 27 Jun 2025 14:45:39 -0400
Subject: [PATCH 009/239] Add comment to desktop-settings.service.ts based on
 direction from platform (#15373)

---
 .../src/platform/services/desktop-settings.service.ts  | 10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/apps/desktop/src/platform/services/desktop-settings.service.ts b/apps/desktop/src/platform/services/desktop-settings.service.ts
index e8f311e56f6..c11f10646d7 100644
--- a/apps/desktop/src/platform/services/desktop-settings.service.ts
+++ b/apps/desktop/src/platform/services/desktop-settings.service.ts
@@ -1,3 +1,13 @@
+/*
+    -- Note --
+    
+    As of June 2025, settings should only be added here if they are owned
+    by the platform team. Other settings should be added to the relevant service
+    owned by the team that owns the setting.
+
+    More info: https://bitwarden.atlassian.net/browse/PM-23126
+*/
+
 import { Observable, map } from "rxjs";
 
 import {

From 029713fe28f2825c8f85e300c7661f16d2c1c3ea Mon Sep 17 00:00:00 2001
From: tangowithfoxtrot <5676771+tangowithfoxtrot@users.noreply.github.com>
Date: Fri, 27 Jun 2025 12:22:49 -0700
Subject: [PATCH 010/239] allow disabling hardware acceleration with env var
 (#14768)

---
 apps/desktop/src/main.ts | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/apps/desktop/src/main.ts b/apps/desktop/src/main.ts
index 7d97805e9be..4821b018148 100644
--- a/apps/desktop/src/main.ts
+++ b/apps/desktop/src/main.ts
@@ -394,7 +394,7 @@ export class Main {
       this.desktopSettingsService.hardwareAcceleration$,
     );
 
-    if (!hardwareAcceleration) {
+    if (!hardwareAcceleration || process.env.ELECTRON_DISABLE_GPU) {
       this.logService.warning("Hardware acceleration is disabled");
       app.disableHardwareAcceleration();
     } else if (isMacAppStore()) {

From 7a1bb81c5f562094d589d09267e589d397199a74 Mon Sep 17 00:00:00 2001
From: Jason Ng <jng@bitwarden.com>
Date: Fri, 27 Jun 2025 15:49:49 -0400
Subject: [PATCH 011/239] [PM-21719] update desktop to address personal items
 who cant assign to collections (#15369)

---
 apps/desktop/src/vault/app/vault/vault-v2.component.ts | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/apps/desktop/src/vault/app/vault/vault-v2.component.ts b/apps/desktop/src/vault/app/vault/vault-v2.component.ts
index 849899bfe66..1248f32d1ac 100644
--- a/apps/desktop/src/vault/app/vault/vault-v2.component.ts
+++ b/apps/desktop/src/vault/app/vault/vault-v2.component.ts
@@ -482,7 +482,9 @@ export class VaultV2Component implements OnInit, OnDestroy, CopyClickListener {
         });
       }
 
-      if (cipher.canAssignToCollections) {
+      const hasEditableCollections = this.allCollections.some((collection) => !collection.readOnly);
+
+      if (cipher.canAssignToCollections && hasEditableCollections) {
         menu.push({
           label: this.i18nService.t("assignToCollections"),
           click: () =>

From 700f54357c1212aac620916f6578e8838a08dfa6 Mon Sep 17 00:00:00 2001
From: Nick Krantz <125900171+nick-livefront@users.noreply.github.com>
Date: Fri, 27 Jun 2025 16:04:51 -0500
Subject: [PATCH 012/239] [PM-20041] Marking Task as complete (#14980)

* When saving a cipher, mark any associated security tasks as complete

* fix test error from encryption refactor

* hide security tasks that are associated with deleted ciphers (#15247)

* account for deleted ciphers for atRiskPasswordDescriptions
---
 .../at-risk-password-callout.component.ts     |  23 ++-
 .../at-risk-passwords.component.spec.ts       |  27 +++
 .../at-risk-passwords.component.ts            |  17 +-
 .../default-cipher-form.service.spec.ts       | 161 ++++++++++++++++++
 .../services/default-cipher-form.service.ts   |  51 +++++-
 5 files changed, 268 insertions(+), 11 deletions(-)
 create mode 100644 libs/vault/src/cipher-form/services/default-cipher-form.service.spec.ts

diff --git a/apps/browser/src/vault/popup/components/at-risk-callout/at-risk-password-callout.component.ts b/apps/browser/src/vault/popup/components/at-risk-callout/at-risk-password-callout.component.ts
index 18482706272..3c3270e557c 100644
--- a/apps/browser/src/vault/popup/components/at-risk-callout/at-risk-password-callout.component.ts
+++ b/apps/browser/src/vault/popup/components/at-risk-callout/at-risk-password-callout.component.ts
@@ -1,10 +1,11 @@
 import { CommonModule } from "@angular/common";
 import { Component, inject } from "@angular/core";
 import { RouterModule } from "@angular/router";
-import { map, switchMap } from "rxjs";
+import { combineLatest, map, switchMap } from "rxjs";
 
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { getUserId } from "@bitwarden/common/auth/services/account.service";
+import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
 import { SecurityTaskType, TaskService } from "@bitwarden/common/vault/tasks";
 import { AnchorLinkDirective, CalloutModule } from "@bitwarden/components";
 import { I18nPipe } from "@bitwarden/ui-common";
@@ -16,10 +17,26 @@ import { I18nPipe } from "@bitwarden/ui-common";
 })
 export class AtRiskPasswordCalloutComponent {
   private taskService = inject(TaskService);
+  private cipherService = inject(CipherService);
   private activeAccount$ = inject(AccountService).activeAccount$.pipe(getUserId);
 
   protected pendingTasks$ = this.activeAccount$.pipe(
-    switchMap((userId) => this.taskService.pendingTasks$(userId)),
-    map((tasks) => tasks.filter((t) => t.type === SecurityTaskType.UpdateAtRiskCredential)),
+    switchMap((userId) =>
+      combineLatest([
+        this.taskService.pendingTasks$(userId),
+        this.cipherService.cipherViews$(userId),
+      ]),
+    ),
+    map(([tasks, ciphers]) =>
+      tasks.filter((t) => {
+        const associatedCipher = ciphers.find((c) => c.id === t.cipherId);
+
+        return (
+          t.type === SecurityTaskType.UpdateAtRiskCredential &&
+          associatedCipher &&
+          !associatedCipher.isDeleted
+        );
+      }),
+    ),
   );
 }
diff --git a/apps/browser/src/vault/popup/components/at-risk-passwords/at-risk-passwords.component.spec.ts b/apps/browser/src/vault/popup/components/at-risk-passwords/at-risk-passwords.component.spec.ts
index dae00ba6c2b..eaa10aba624 100644
--- a/apps/browser/src/vault/popup/components/at-risk-passwords/at-risk-passwords.component.spec.ts
+++ b/apps/browser/src/vault/popup/components/at-risk-passwords/at-risk-passwords.component.spec.ts
@@ -203,6 +203,20 @@ describe("AtRiskPasswordsComponent", () => {
       expect(items).toHaveLength(1);
       expect(items[0].name).toBe("Item 1");
     });
+
+    it("should not show tasks associated with deleted ciphers", async () => {
+      mockCiphers$.next([
+        {
+          id: "cipher",
+          organizationId: "org",
+          name: "Item 1",
+          isDeleted: true,
+        } as CipherView,
+      ]);
+
+      const items = await firstValueFrom(component["atRiskItems$"]);
+      expect(items).toHaveLength(0);
+    });
   });
 
   describe("pageDescription$", () => {
@@ -245,6 +259,19 @@ describe("AtRiskPasswordsComponent", () => {
           type: SecurityTaskType.UpdateAtRiskCredential,
         } as SecurityTask,
       ]);
+      mockCiphers$.next([
+        {
+          id: "cipher",
+          organizationId: "org",
+          name: "Item 1",
+        } as CipherView,
+        {
+          id: "cipher2",
+          organizationId: "org2",
+          name: "Item 2",
+        } as CipherView,
+      ]);
+
       const description = await firstValueFrom(component["pageDescription$"]);
       expect(description).toBe("atRiskPasswordsDescMultiOrgPlural");
     });
diff --git a/apps/browser/src/vault/popup/components/at-risk-passwords/at-risk-passwords.component.ts b/apps/browser/src/vault/popup/components/at-risk-passwords/at-risk-passwords.component.ts
index dc6712aa23f..1bfb65a15cc 100644
--- a/apps/browser/src/vault/popup/components/at-risk-passwords/at-risk-passwords.component.ts
+++ b/apps/browser/src/vault/popup/components/at-risk-passwords/at-risk-passwords.component.ts
@@ -155,32 +155,35 @@ export class AtRiskPasswordsComponent implements OnInit {
           (t) =>
             t.type === SecurityTaskType.UpdateAtRiskCredential &&
             t.cipherId != null &&
-            ciphers[t.cipherId] != null,
+            ciphers[t.cipherId] != null &&
+            !ciphers[t.cipherId].isDeleted,
         )
         .map((t) => ciphers[t.cipherId!]),
     ),
   );
 
-  protected pageDescription$ = this.activeUserData$.pipe(
-    switchMap(({ tasks, userId }) => {
-      const orgIds = new Set(tasks.map((t) => t.organizationId));
+  protected pageDescription$ = combineLatest([this.activeUserData$, this.atRiskItems$]).pipe(
+    switchMap(([{ userId }, atRiskCiphers]) => {
+      const orgIds = new Set(
+        atRiskCiphers.filter((c) => c.organizationId).map((c) => c.organizationId),
+      ) as Set<string>;
       if (orgIds.size === 1) {
         const [orgId] = orgIds;
         return this.organizationService.organizations$(userId).pipe(
           getOrganizationById(orgId),
           map((org) =>
             this.i18nService.t(
-              tasks.length === 1
+              atRiskCiphers.length === 1
                 ? "atRiskPasswordDescSingleOrg"
                 : "atRiskPasswordsDescSingleOrgPlural",
               org?.name,
-              tasks.length,
+              atRiskCiphers.length,
             ),
           ),
         );
       }
 
-      return of(this.i18nService.t("atRiskPasswordsDescMultiOrgPlural", tasks.length));
+      return of(this.i18nService.t("atRiskPasswordsDescMultiOrgPlural", atRiskCiphers.length));
     }),
   );
 
diff --git a/libs/vault/src/cipher-form/services/default-cipher-form.service.spec.ts b/libs/vault/src/cipher-form/services/default-cipher-form.service.spec.ts
new file mode 100644
index 00000000000..3b2573b8f94
--- /dev/null
+++ b/libs/vault/src/cipher-form/services/default-cipher-form.service.spec.ts
@@ -0,0 +1,161 @@
+import { TestBed } from "@angular/core/testing";
+import { mock } from "jest-mock-extended";
+import { of } from "rxjs";
+
+import { Account, AccountService } from "@bitwarden/common/auth/abstractions/account.service";
+import { UserId } from "@bitwarden/common/types/guid";
+import {
+  CipherService,
+  EncryptionContext,
+} from "@bitwarden/common/vault/abstractions/cipher.service";
+import { Cipher } from "@bitwarden/common/vault/models/domain/cipher";
+import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
+import { LoginView } from "@bitwarden/common/vault/models/view/login.view";
+import { SecurityTaskType, TaskService } from "@bitwarden/common/vault/tasks";
+import { CipherType } from "@bitwarden/sdk-internal";
+
+import { CipherFormConfig } from "../abstractions/cipher-form-config.service";
+
+import { DefaultCipherFormService } from "./default-cipher-form.service";
+
+describe("DefaultCipherFormService", () => {
+  let service: DefaultCipherFormService;
+  let testBed: TestBed;
+  const cipherServiceMock = mock<CipherService>();
+
+  let markAsCompleteMock: jest.Mock;
+  let pendingTasks$: jest.Mock;
+
+  beforeEach(() => {
+    markAsCompleteMock = jest.fn().mockResolvedValue(undefined);
+    pendingTasks$ = jest.fn().mockReturnValue(of([]));
+    cipherServiceMock.encrypt.mockResolvedValue({} as EncryptionContext);
+
+    testBed = TestBed.configureTestingModule({
+      providers: [
+        { provide: CipherService, useValue: cipherServiceMock },
+        { provide: TaskService, useValue: { markAsComplete: markAsCompleteMock, pendingTasks$ } },
+        {
+          provide: AccountService,
+          useValue: { activeAccount$: of({ id: "user-1" as UserId } as Account) },
+        },
+        DefaultCipherFormService,
+      ],
+    });
+
+    service = testBed.inject(DefaultCipherFormService);
+  });
+
+  describe("markAssociatedTaskAsComplete", () => {
+    it("does not call markAsComplete when the cipher is not a login", async () => {
+      pendingTasks$.mockReturnValueOnce(
+        of([
+          {
+            type: SecurityTaskType.UpdateAtRiskCredential,
+            cipherId: "cipher-1",
+            userId: "user-1" as UserId,
+          },
+        ]),
+      );
+
+      const cardCipher = new CipherView();
+      cardCipher.type = CipherType.Card;
+      cardCipher.id = "cipher-1";
+
+      await service.saveCipher(cardCipher, {
+        originalCipher: new Cipher(),
+        admin: false,
+      } as CipherFormConfig);
+
+      expect(markAsCompleteMock).not.toHaveBeenCalled();
+    });
+
+    it("does not call markAsComplete when there is no associated credential tasks", async () => {
+      pendingTasks$.mockReturnValueOnce(of([]));
+
+      const originalCipher = new Cipher();
+      originalCipher.type = CipherType.Login;
+
+      const cipher = new CipherView();
+      cipher.type = CipherType.Login;
+      cipher.id = "cipher-1";
+      cipher.login = new LoginView();
+      cipher.login.password = "password123";
+
+      cipherServiceMock.decrypt.mockResolvedValue({
+        ...cipher,
+        login: {
+          ...cipher.login,
+          password: "newPassword123",
+        },
+      } as CipherView);
+
+      await service.saveCipher(cipher, {
+        originalCipher: originalCipher,
+        admin: false,
+      } as CipherFormConfig);
+
+      expect(markAsCompleteMock).not.toHaveBeenCalled();
+    });
+
+    it("does not call markAsComplete when the password has not changed", async () => {
+      pendingTasks$.mockReturnValueOnce(
+        of([
+          {
+            type: SecurityTaskType.UpdateAtRiskCredential,
+            cipherId: "cipher-1",
+            userId: "user-1" as UserId,
+          },
+        ]),
+      );
+
+      const cipher = new CipherView();
+      cipher.type = CipherType.Login;
+      cipher.id = "cipher-1";
+      cipher.login = new LoginView();
+      cipher.login.password = "password123";
+
+      cipherServiceMock.decrypt.mockResolvedValue(cipher);
+
+      await service.saveCipher(cipher, {
+        originalCipher: new Cipher(),
+        admin: false,
+      } as CipherFormConfig);
+
+      expect(markAsCompleteMock).not.toHaveBeenCalled();
+    });
+
+    it("calls markAsComplete when the cipher password has changed and there is an associated credential task", async () => {
+      pendingTasks$.mockReturnValueOnce(
+        of([
+          {
+            type: SecurityTaskType.UpdateAtRiskCredential,
+            cipherId: "cipher-1",
+            userId: "user-1" as UserId,
+          },
+        ]),
+      );
+
+      const cipher = new CipherView();
+      cipher.type = CipherType.Login;
+      cipher.id = "cipher-1";
+      cipher.login = new LoginView();
+      cipher.login.password = "password123";
+
+      cipherServiceMock.decrypt.mockResolvedValue({
+        ...cipher,
+        login: {
+          ...cipher.login,
+          password: "newPassword123",
+        },
+      } as CipherView);
+
+      await service.saveCipher(cipher, {
+        originalCipher: new Cipher(),
+        admin: false,
+      } as CipherFormConfig);
+
+      expect(markAsCompleteMock).toHaveBeenCalled();
+    });
+  });
+});
diff --git a/libs/vault/src/cipher-form/services/default-cipher-form.service.ts b/libs/vault/src/cipher-form/services/default-cipher-form.service.ts
index 99f853d4c86..5228c85c3f7 100644
--- a/libs/vault/src/cipher-form/services/default-cipher-form.service.ts
+++ b/libs/vault/src/cipher-form/services/default-cipher-form.service.ts
@@ -1,13 +1,16 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
 import { inject, Injectable } from "@angular/core";
-import { firstValueFrom } from "rxjs";
+import { firstValueFrom, map } from "rxjs";
 
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { getUserId } from "@bitwarden/common/auth/services/account.service";
+import { UserId } from "@bitwarden/common/types/guid";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
+import { CipherType } from "@bitwarden/common/vault/enums";
 import { Cipher } from "@bitwarden/common/vault/models/domain/cipher";
 import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
+import { SecurityTaskType, TaskService } from "@bitwarden/common/vault/tasks";
 
 import { CipherFormConfig } from "../abstractions/cipher-form-config.service";
 import { CipherFormService } from "../abstractions/cipher-form.service";
@@ -20,6 +23,7 @@ function isSetEqual(a: Set<string>, b: Set<string>) {
 export class DefaultCipherFormService implements CipherFormService {
   private cipherService: CipherService = inject(CipherService);
   private accountService: AccountService = inject(AccountService);
+  private taskService: TaskService = inject(TaskService);
 
   async decryptCipher(cipher: Cipher): Promise<CipherView> {
     const activeUserId = await firstValueFrom(this.accountService.activeAccount$.pipe(getUserId));
@@ -89,6 +93,8 @@ export class DefaultCipherFormService implements CipherFormService {
       }
     }
 
+    await this.markAssociatedTaskAsComplete(activeUserId, cipher, config);
+
     // Its possible the cipher was made no longer available due to collection assignment changes
     // e.g. The cipher was moved to a collection that the user no longer has access to
     if (savedCipher == null) {
@@ -97,4 +103,47 @@ export class DefaultCipherFormService implements CipherFormService {
 
     return await this.cipherService.decrypt(savedCipher, activeUserId);
   }
+
+  /**
+   * When a cipher has an associated pending `UpdateAtRiskCredential` task
+   * and the password has changed, mark the task as complete.
+   */
+  private async markAssociatedTaskAsComplete(
+    userId: UserId,
+    updatedCipher: CipherView,
+    config: CipherFormConfig,
+  ) {
+    const decryptedOriginalCipherCipher = await this.cipherService.decrypt(
+      config.originalCipher,
+      userId,
+    );
+
+    const associatedPendingTask = await firstValueFrom(
+      this.taskService
+        .pendingTasks$(userId)
+        .pipe(
+          map((tasks) =>
+            tasks.find(
+              (task) =>
+                task.type === SecurityTaskType.UpdateAtRiskCredential &&
+                task.cipherId === updatedCipher.id,
+            ),
+          ),
+        ),
+    );
+
+    const passwordHasChanged =
+      updatedCipher.type === CipherType.Login &&
+      updatedCipher.login.password &&
+      updatedCipher.login.password !== decryptedOriginalCipherCipher?.login?.password;
+
+    // When there is not an associated pending task or the password has not changed,
+    // no action needed-return early.
+    if (!associatedPendingTask || !passwordHasChanged) {
+      return;
+    }
+
+    // If the cipher is a login and the password has changed, mark the associated task as complete
+    await this.taskService.markAsComplete(associatedPendingTask.id, userId);
+  }
 }

From 031c9bc947672847b6507ac5da0ed7c8009f735b Mon Sep 17 00:00:00 2001
From: rr-bw <102181210+rr-bw@users.noreply.github.com>
Date: Fri, 27 Jun 2025 15:24:12 -0700
Subject: [PATCH 013/239] fix(auth-guard): [PM-22822] remove
 SsoNewJitProvisionedUser case (#15376)

---
 libs/angular/src/auth/guards/auth.guard.spec.ts |  5 -----
 libs/angular/src/auth/guards/auth.guard.ts      | 10 ----------
 2 files changed, 15 deletions(-)

diff --git a/libs/angular/src/auth/guards/auth.guard.spec.ts b/libs/angular/src/auth/guards/auth.guard.spec.ts
index f64d6cf769d..a2e1613c6c1 100644
--- a/libs/angular/src/auth/guards/auth.guard.spec.ts
+++ b/libs/angular/src/auth/guards/auth.guard.spec.ts
@@ -127,7 +127,6 @@ describe("AuthGuard", () => {
   describe("given user is Unlocked", () => {
     describe("given the PM16117_SetInitialPasswordRefactor feature flag is ON", () => {
       const tests = [
-        ForceSetPasswordReason.SsoNewJitProvisionedUser,
         ForceSetPasswordReason.TdeUserWithoutPasswordHasPasswordResetPermission,
         ForceSetPasswordReason.TdeOffboarding,
       ];
@@ -167,10 +166,6 @@ describe("AuthGuard", () => {
 
     describe("given the PM16117_SetInitialPasswordRefactor feature flag is OFF", () => {
       const tests = [
-        {
-          reason: ForceSetPasswordReason.SsoNewJitProvisionedUser,
-          url: "/set-password-jit",
-        },
         {
           reason: ForceSetPasswordReason.TdeUserWithoutPasswordHasPasswordResetPermission,
           url: "/set-password",
diff --git a/libs/angular/src/auth/guards/auth.guard.ts b/libs/angular/src/auth/guards/auth.guard.ts
index cf4f9dc2034..f99a91fda34 100644
--- a/libs/angular/src/auth/guards/auth.guard.ts
+++ b/libs/angular/src/auth/guards/auth.guard.ts
@@ -67,16 +67,6 @@ export const authGuard: CanActivateFn = async (
     FeatureFlag.PM16117_ChangeExistingPasswordRefactor,
   );
 
-  // User JIT provisioned into a master-password-encryption org
-  if (
-    forceSetPasswordReason === ForceSetPasswordReason.SsoNewJitProvisionedUser &&
-    !routerState.url.includes("set-password-jit") &&
-    !routerState.url.includes("set-initial-password")
-  ) {
-    const route = isSetInitialPasswordFlagOn ? "/set-initial-password" : "/set-password-jit";
-    return router.createUrlTree([route]);
-  }
-
   // TDE org user has "manage account recovery" permission
   if (
     forceSetPasswordReason ===

From 7646f3e1e7edb54f8bd0dc8a3c6de12287b9df27 Mon Sep 17 00:00:00 2001
From: "bw-ghapp[bot]" <178206702+bw-ghapp[bot]@users.noreply.github.com>
Date: Mon, 30 Jun 2025 09:57:52 +0000
Subject: [PATCH 014/239] Autosync the updated translations (#15391)

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>
---
 apps/desktop/src/locales/az/messages.json |  4 +-
 apps/desktop/src/locales/ca/messages.json |  2 +-
 apps/desktop/src/locales/es/messages.json | 36 +++++++--------
 apps/desktop/src/locales/ja/messages.json | 56 +++++++++++------------
 apps/desktop/src/locales/pl/messages.json |  2 +-
 5 files changed, 50 insertions(+), 50 deletions(-)

diff --git a/apps/desktop/src/locales/az/messages.json b/apps/desktop/src/locales/az/messages.json
index 29022fc9789..e1b46ef3170 100644
--- a/apps/desktop/src/locales/az/messages.json
+++ b/apps/desktop/src/locales/az/messages.json
@@ -1717,10 +1717,10 @@
     "message": "Hesab məhdudlaşdırıldı"
   },
   "restrictCardTypeImport": {
-    "message": "Cannot import card item types"
+    "message": "Kart element növləri daxilə köçürülə bilmir"
   },
   "restrictCardTypeImportDesc": {
-    "message": "A policy set by 1 or more organizations prevents you from importing cards to your vaults."
+    "message": "1 və ya daha çox təşkilat tərəfindən təyin edilən bir siyasət, kartların seyfinizə köçürülməsini əngəlləyir."
   },
   "filePasswordAndConfirmFilePasswordDoNotMatch": {
     "message": "\"Fayl parolu\" və \"Fayl parolunu təsdiqlə\" uyuşmur."
diff --git a/apps/desktop/src/locales/ca/messages.json b/apps/desktop/src/locales/ca/messages.json
index 2ce95c78d47..fda4e073bd0 100644
--- a/apps/desktop/src/locales/ca/messages.json
+++ b/apps/desktop/src/locales/ca/messages.json
@@ -3746,7 +3746,7 @@
     "message": "Nom de la carpeta"
   },
   "folderHintText": {
-    "message": "Nest a folder by adding the parent folder's name followed by a “/”. Example: Social/Forums"
+    "message": "Imbriqueu una carpeta afegint el nom de la carpeta principal seguit d'una \"/\". Exemple: Social/Fòrums"
   },
   "sendsTitleNoItems": {
     "message": "Send sensitive information safely",
diff --git a/apps/desktop/src/locales/es/messages.json b/apps/desktop/src/locales/es/messages.json
index a14ea40f0b6..78b6502bb29 100644
--- a/apps/desktop/src/locales/es/messages.json
+++ b/apps/desktop/src/locales/es/messages.json
@@ -226,7 +226,7 @@
     "message": "Introducir la contraseña"
   },
   "sshAgentUnlockRequired": {
-    "message": "Please unlock your vault to approve the SSH key request."
+    "message": "Por favor, desbloquea tu caja fuerte para aprobar la solicitud de clave SSH."
   },
   "sshAgentUnlockTimeout": {
     "message": "SSH key request timed out."
@@ -1019,7 +1019,7 @@
     "message": "URL del servidor"
   },
   "authenticationTimeout": {
-    "message": "Authentication timeout"
+    "message": "Tiempo de autenticación agotado"
   },
   "authenticationSessionTimedOut": {
     "message": "The authentication session timed out. Please restart the login process."
@@ -1215,7 +1215,7 @@
     "message": "Timeout"
   },
   "vaultTimeoutDesc": {
-    "message": "Elije cuando se agotará el tiempo de espera de tu caja fuerte y se ejecutará la acción seleccionada."
+    "message": "Elige cuando se agotará el tiempo de espera de tu caja fuerte y se ejecutará la acción seleccionada."
   },
   "immediately": {
     "message": "Inmediatamente"
@@ -1465,7 +1465,7 @@
     "message": "Comprar Premium"
   },
   "premiumPurchaseAlertV2": {
-    "message": "Puedes comprar el Premium desde la configuración de tu cuenta en la aplicación web de Bitwarden."
+    "message": "Puedes comprar el Premium desde los ajustes de tu cuenta en la aplicación web de Bitwarden."
   },
   "premiumCurrentMember": {
     "message": "¡Eres un miembro Premium!"
@@ -1588,7 +1588,7 @@
     }
   },
   "copySuccessful": {
-    "message": "Copy Successful"
+    "message": "Copia Exitosa"
   },
   "errorRefreshingAccessToken": {
     "message": "Error de actualización del token de acceso"
@@ -3176,7 +3176,7 @@
     "message": "Falta el correo electrónico del usuario"
   },
   "activeUserEmailNotFoundLoggingYouOut": {
-    "message": "Active user email not found. Logging you out."
+    "message": "Correo electrónico del usuario activo no encontrado. Cerrando sesión."
   },
   "deviceTrusted": {
     "message": "Dispositivo de confianza"
@@ -3600,7 +3600,7 @@
     "message": "Envío de texto"
   },
   "ssoError": {
-    "message": "No free ports could be found for the sso login."
+    "message": "No se encontraron puertos libres para el inicio de sesión sso."
   },
   "securePasswordGenerated": {
     "message": "¡Contraseña segura generada! No olvides actualizar tu contraseña en el sitio web."
@@ -3614,19 +3614,19 @@
     "description": "This will be used as part of a larger sentence, broken up to include the generator icon. The full sentence will read 'Use the generator [GENERATOR_ICON] to create a strong unique password'"
   },
   "biometricsStatusHelptextUnlockNeeded": {
-    "message": "Biometric unlock is unavailable because PIN or password unlock is required first."
+    "message": "El desbloqueo biométrico no está disponible porque primero es necesario desbloquear con PIN o contraseña."
   },
   "biometricsStatusHelptextHardwareUnavailable": {
-    "message": "Biometric unlock is currently unavailable."
+    "message": "El desbloqueo biométrico no está disponible actualmente."
   },
   "biometricsStatusHelptextAutoSetupNeeded": {
-    "message": "Biometric unlock is unavailable due to misconfigured system files."
+    "message": "El desbloqueo biométrico no está disponible por archivos del sistema mal configurados."
   },
   "biometricsStatusHelptextManualSetupNeeded": {
-    "message": "Biometric unlock is unavailable due to misconfigured system files."
+    "message": "El desbloqueo biométrico no está disponible por archivos del sistema mal configurados."
   },
   "biometricsStatusHelptextNotEnabledLocally": {
-    "message": "Biometric unlock is unavailable because it is not enabled for $EMAIL$ in the Bitwarden desktop app.",
+    "message": "El desbloqueo biométrico no está disponible porque no está habilitado para $EMAIL$ en la aplicación de escritorio Bitwarden.",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3635,7 +3635,7 @@
     }
   },
   "biometricsStatusHelptextUnavailableReasonUnknown": {
-    "message": "Biometric unlock is currently unavailable for an unknown reason."
+    "message": "El desbloqueo biométrico no está disponible actualmente por una razón desconocida."
   },
   "itemDetails": {
     "message": "Detalles del elemento"
@@ -3644,7 +3644,7 @@
     "message": "Nombre del elemento"
   },
   "loginCredentials": {
-    "message": "Login credentials"
+    "message": "Credenciales de inicio de sesión"
   },
   "additionalOptions": {
     "message": "Opciones adicionales"
@@ -3774,7 +3774,7 @@
     "description": "Aria label for the body content of the generator nudge"
   },
   "newLoginNudgeTitle": {
-    "message": "Ahora tiempo con autocompletado"
+    "message": "Ahorra tiempo con el autocompletado"
   },
   "newLoginNudgeBodyOne": {
     "message": "Incluír un",
@@ -3856,7 +3856,7 @@
     }
   },
   "selectCollectionsToAssign": {
-    "message": "Select collections to assign"
+    "message": "Selecciona colecciones para asignar"
   },
   "personalItemsTransferWarning": {
     "message": "$PERSONAL_ITEMS_COUNT$ serán transferidos permanentemente a la organización seleccionada. Ya no serás el propietario de estos elementos.",
@@ -3893,10 +3893,10 @@
     }
   },
   "successfullyAssignedCollections": {
-    "message": "Successfully assigned collections"
+    "message": "Colecciones asignadas correctamente"
   },
   "nothingSelected": {
-    "message": "You have not selected anything."
+    "message": "No has seleccionado nada."
   },
   "itemsMovedToOrg": {
     "message": "Elementos movidos a $ORGNAME$",
diff --git a/apps/desktop/src/locales/ja/messages.json b/apps/desktop/src/locales/ja/messages.json
index f4d2123c197..ca07f36eb9e 100644
--- a/apps/desktop/src/locales/ja/messages.json
+++ b/apps/desktop/src/locales/ja/messages.json
@@ -24,7 +24,7 @@
     "message": "ID"
   },
   "typeNote": {
-    "message": "Note"
+    "message": "メモ"
   },
   "typeSecureNote": {
     "message": "セキュアメモ"
@@ -241,22 +241,22 @@
     "message": "SSH エージェントとは、Bitwarden 保管庫から直接 SSH リクエストに署名できる、開発者を対象としたサービスです。"
   },
   "sshAgentPromptBehavior": {
-    "message": "Ask for authorization when using SSH agent"
+    "message": "SSHエージェントを使用する際に認証を要求する"
   },
   "sshAgentPromptBehaviorDesc": {
-    "message": "Choose how to handle SSH-agent authorization requests."
+    "message": "SSHエージェント認可リクエストの処理方法を選択します。"
   },
   "sshAgentPromptBehaviorHelp": {
-    "message": "Remember SSH authorizations"
+    "message": "SSH認可を記憶する"
   },
   "sshAgentPromptBehaviorAlways": {
-    "message": "Always"
+    "message": "常に表示する"
   },
   "sshAgentPromptBehaviorNever": {
-    "message": "Never"
+    "message": "表示しない"
   },
   "sshAgentPromptBehaviorRememberUntilLock": {
-    "message": "Remember until vault is locked"
+    "message": "保管庫がロックされるまで記憶する"
   },
   "premiumRequired": {
     "message": "プレミアム会員専用"
@@ -409,16 +409,16 @@
     "message": "認証キー (TOTP)"
   },
   "authenticatorKey": {
-    "message": "Authenticator key"
+    "message": "認証キー"
   },
   "autofillOptions": {
-    "message": "Autofill options"
+    "message": "自動入力のオプション"
   },
   "websiteUri": {
-    "message": "Website (URI)"
+    "message": "ウェブサイト (URI)"
   },
   "websiteUriCount": {
-    "message": "Website (URI) $COUNT$",
+    "message": "ウェブサイト (URI) $COUNT$",
     "description": "Label for an input field that contains a website URI. The input field is part of a list of fields, and the count indicates the position of the field in the list.",
     "placeholders": {
       "count": {
@@ -428,49 +428,49 @@
     }
   },
   "websiteAdded": {
-    "message": "Website added"
+    "message": "ウェブサイトを追加しました"
   },
   "addWebsite": {
-    "message": "Add website"
+    "message": "ウェブサイトを追加"
   },
   "deleteWebsite": {
-    "message": "Delete website"
+    "message": "ウェブサイトを削除"
   },
   "owner": {
-    "message": "Owner"
+    "message": "所有者"
   },
   "addField": {
-    "message": "Add field"
+    "message": "フィールドを追加"
   },
   "editField": {
-    "message": "Edit field"
+    "message": "フィールドを編集"
   },
   "permanentlyDeleteAttachmentConfirmation": {
-    "message": "Are you sure you want to permanently delete this attachment?"
+    "message": "この添付ファイルを完全に削除してもよろしいですか？"
   },
   "fieldType": {
-    "message": "Field type"
+    "message": "フィールドの種類"
   },
   "fieldLabel": {
-    "message": "Field label"
+    "message": "フィールドのラベル"
   },
   "add": {
-    "message": "Add"
+    "message": "追加"
   },
   "textHelpText": {
-    "message": "Use text fields for data like security questions"
+    "message": "秘密の質問などのデータには、テキストフィールドを使用します"
   },
   "hiddenHelpText": {
-    "message": "Use hidden fields for sensitive data like a password"
+    "message": "パスワードのような機密データには、非表示フィールドを使用します"
   },
   "checkBoxHelpText": {
-    "message": "Use checkboxes if you'd like to autofill a form's checkbox, like a remember email"
+    "message": "「メールアドレスを記憶する」などのフォームのチェックボックスを自動入力する場合は、チェックボックスを使用します"
   },
   "linkedHelpText": {
-    "message": "Use a linked field when you are experiencing autofill issues for a specific website."
+    "message": "特定のウェブサイトで自動入力の問題が発生している場合は、リンクされたフィールドを使用します。"
   },
   "linkedLabelHelpText": {
-    "message": "Enter the the field's html id, name, aria-label, or placeholder."
+    "message": "フィールドの HTML の id、name、aria-label、placeholder を入力します。"
   },
   "folder": {
     "message": "フォルダー"
@@ -498,7 +498,7 @@
     "description": "This describes a field that is 'linked' (related) to another field."
   },
   "cfTypeCheckbox": {
-    "message": "Checkbox"
+    "message": "チェックボックス"
   },
   "linkedValue": {
     "message": "リンクされた値",
@@ -695,7 +695,7 @@
     "message": "最大ファイルサイズは500MBです。"
   },
   "legacyEncryptionUnsupported": {
-    "message": "Legacy encryption is no longer supported. Please contact support to recover your account."
+    "message": "従来の暗号化はサポートされていません。アカウントを復元するにはサポートにお問い合わせください。"
   },
   "editedFolder": {
     "message": "フォルダーを編集しました"
diff --git a/apps/desktop/src/locales/pl/messages.json b/apps/desktop/src/locales/pl/messages.json
index 0d70760eff8..df90ab92af7 100644
--- a/apps/desktop/src/locales/pl/messages.json
+++ b/apps/desktop/src/locales/pl/messages.json
@@ -27,7 +27,7 @@
     "message": "Note"
   },
   "typeSecureNote": {
-    "message": "Bezpieczna notatka"
+    "message": "Notatka"
   },
   "typeSshKey": {
     "message": "Klucz SSH"

From f0a7592036a986c97f1e02af3b0506f66e240dfd Mon Sep 17 00:00:00 2001
From: "bw-ghapp[bot]" <178206702+bw-ghapp[bot]@users.noreply.github.com>
Date: Mon, 30 Jun 2025 09:58:02 +0000
Subject: [PATCH 015/239] Autosync the updated translations (#15390)

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>
---
 apps/browser/src/_locales/az/messages.json |   6 +-
 apps/browser/src/_locales/es/messages.json | 102 ++++++++++-----------
 apps/browser/src/_locales/pl/messages.json |   2 +-
 3 files changed, 55 insertions(+), 55 deletions(-)

diff --git a/apps/browser/src/_locales/az/messages.json b/apps/browser/src/_locales/az/messages.json
index e189b3ba292..ddf82f37d2f 100644
--- a/apps/browser/src/_locales/az/messages.json
+++ b/apps/browser/src/_locales/az/messages.json
@@ -2488,10 +2488,10 @@
     "message": "Bir təşkilat siyasəti, elementlərin fərdi seyfinizə köçürülməsini əngəllədi."
   },
   "restrictCardTypeImport": {
-    "message": "Cannot import card item types"
+    "message": "Kart element növləri daxilə köçürülə bilmir"
   },
   "restrictCardTypeImportDesc": {
-    "message": "A policy set by 1 or more organizations prevents you from importing cards to your vaults."
+    "message": "1 və ya daha çox təşkilat tərəfindən təyin edilən bir siyasət, kartların seyfinizə köçürülməsini əngəlləyir."
   },
   "domainsTitle": {
     "message": "Domenlər",
@@ -5072,7 +5072,7 @@
     "message": "PIN ilə kilid açma təyini"
   },
   "unlockWithBiometricSet": {
-    "message": "Unlock with biometrics set"
+    "message": "Kilidi biometriklə aç ayarı"
   },
   "authenticating": {
     "message": "Kimlik doğrulama"
diff --git a/apps/browser/src/_locales/es/messages.json b/apps/browser/src/_locales/es/messages.json
index 89d5b928f25..250aa3430e0 100644
--- a/apps/browser/src/_locales/es/messages.json
+++ b/apps/browser/src/_locales/es/messages.json
@@ -1083,7 +1083,7 @@
     "message": "Nueva notificación"
   },
   "labelWithNotification": {
-    "message": "$LABEL$: New notification",
+    "message": "$LABEL$: Nueva notificación",
     "description": "Label for the notification with a new login suggestion.",
     "placeholders": {
       "label": {
@@ -1121,7 +1121,7 @@
     "description": "Button text for updating an existing login entry."
   },
   "unlockToSave": {
-    "message": "Unlock to save this login",
+    "message": "Desbloquea para guardar este inicio de sesión",
     "description": "User prompt to take action in order to save the login they just entered."
   },
   "saveLogin": {
@@ -1141,7 +1141,7 @@
     "description": "Message displayed when login details are successfully updated."
   },
   "loginUpdateTaskSuccess": {
-    "message": "Great job! You took the steps to make you and $ORGANIZATION$ more secure.",
+    "message": "¡Buen trabajo! Has dado los pasos para que tú y $ORGANIZATION$ seáis más seguros.",
     "placeholders": {
       "organization": {
         "content": "$1"
@@ -1150,7 +1150,7 @@
     "description": "Shown to user after login is updated."
   },
   "loginUpdateTaskSuccessAdditional": {
-    "message": "Thank you for making $ORGANIZATION$ more secure. You have $TASK_COUNT$ more passwords to update.",
+    "message": "Gracias por hacer $ORGANIZATION$ más seguro. Tienes $TASK_COUNT$ contraseñas más que actualizar.",
     "placeholders": {
       "organization": {
         "content": "$1"
@@ -1162,7 +1162,7 @@
     "description": "Shown to user after login is updated."
   },
   "nextSecurityTaskAction": {
-    "message": "Change next password",
+    "message": "Cambiar siguiente contraseña",
     "description": "Message prompting user to undertake completion of another security task."
   },
   "saveFailure": {
@@ -1170,7 +1170,7 @@
     "description": "Error message shown when the system fails to save login details."
   },
   "saveFailureDetails": {
-    "message": "Oh no! We couldn't save this. Try entering the details manually.",
+    "message": "¡Oh no! No pudimos guardar esto. Intenta introducir los datos manualmente.",
     "description": "Detailed error message shown when saving login details fails."
   },
   "enableChangedPasswordNotification": {
@@ -1366,7 +1366,7 @@
     "message": "Característica no disponible"
   },
   "legacyEncryptionUnsupported": {
-    "message": "Legacy encryption is no longer supported. Please contact support to recover your account."
+    "message": "La encriptación antigua ya no está soportada. Por favor, contacta con soporte para recuperar tu cuenta."
   },
   "premiumMembership": {
     "message": "Membresía Premium"
@@ -1411,7 +1411,7 @@
     "message": "Comprar Premium"
   },
   "premiumPurchaseAlertV2": {
-    "message": "You can purchase Premium from your account settings on the Bitwarden web app."
+    "message": "Puedes comprar el Premium desde los ajustes de tu cuenta en la aplicación web de Bitwarden."
   },
   "premiumCurrentMember": {
     "message": "¡Eres un miembro Premium!"
@@ -1474,7 +1474,7 @@
     }
   },
   "dontAskAgainOnThisDeviceFor30Days": {
-    "message": "Don't ask again on this device for 30 days"
+    "message": "No volver a preguntar en este dispositivo durante 30 días"
   },
   "selectAnotherMethod": {
     "message": "Selecciona otro método",
@@ -1511,7 +1511,7 @@
     "message": "Opciones de la autenticación en dos pasos"
   },
   "selectTwoStepLoginMethod": {
-    "message": "Select two-step login method"
+    "message": "Selecciona un método de inicio de sesión en dos pasos"
   },
   "recoveryCodeDesc": {
     "message": "¿Has perdido el acceso a todos tus métodos de autenticación en dos pasos? Utiliza tu código de recuperación para deshabilitar todos los métodos de autenticación en dos pasos de tu cuenta."
@@ -1600,13 +1600,13 @@
     "message": "Sugerencias de autocompletar"
   },
   "autofillSpotlightTitle": {
-    "message": "Easily find autofill suggestions"
+    "message": "Encuentra fácilmente sugerencias de autocompletado"
   },
   "autofillSpotlightDesc": {
-    "message": "Turn off your browser's autofill settings, so they don't conflict with Bitwarden."
+    "message": "Desactiva los ajustes de autocompletado de tu navegador para que no entren en conflicto con Bitwarden."
   },
   "turnOffBrowserAutofill": {
-    "message": "Turn off $BROWSER$ autofill",
+    "message": "Desactivar autocompletado de $BROWSER$",
     "placeholders": {
       "browser": {
         "content": "$1",
@@ -1615,22 +1615,22 @@
     }
   },
   "turnOffAutofill": {
-    "message": "Turn off autofill"
+    "message": "Desactivar autocompletado"
   },
   "showInlineMenuLabel": {
-    "message": "Show autofill suggestions on form fields"
+    "message": "Mostrar sugerencias de autocompletado en campos de formulario"
   },
   "showInlineMenuIdentitiesLabel": {
-    "message": "Display identities as suggestions"
+    "message": "Mostrar identidades como sugerencias"
   },
   "showInlineMenuCardsLabel": {
     "message": "Mostrar tarjetas como sugerencias"
   },
   "showInlineMenuOnIconSelectionLabel": {
-    "message": "Display suggestions when icon is selected"
+    "message": "Mostrar sugerencias cuando el icono esté seleccionado"
   },
   "showInlineMenuOnFormFieldsDescAlt": {
-    "message": "Applies to all logged in accounts."
+    "message": "Se aplica a todas las cuentas a las que se haya iniciado sesión."
   },
   "turnOffBrowserBuiltInPasswordManagerSettings": {
     "message": "Desactive la configuración del gestor de contraseñas del navegador para evitar conflictos."
@@ -1693,13 +1693,13 @@
     "message": "Abrir caja fuerte en la barra lateral"
   },
   "commandAutofillLoginDesc": {
-    "message": "Autofill the last used login for the current website"
+    "message": "Autocompletar el último inicio de sesión usado para el sitio web actual"
   },
   "commandAutofillCardDesc": {
-    "message": "Autofill the last used card for the current website"
+    "message": "Autocompletar la última tarjeta usada para el sitio web actual"
   },
   "commandAutofillIdentityDesc": {
-    "message": "Autofill the last used identity for the current website"
+    "message": "Autocompletar la última identidad usada para el sitio web actual"
   },
   "commandGeneratePasswordDesc": {
     "message": "Generar y copiar una nueva contraseña aleatoria al portapapeles."
@@ -2491,7 +2491,7 @@
     "message": "Cannot import card item types"
   },
   "restrictCardTypeImportDesc": {
-    "message": "A policy set by 1 or more organizations prevents you from importing cards to your vaults."
+    "message": "Una política establecida en 1 o más organizaciones te impide importar tarjetas a tus cajas fuertes."
   },
   "domainsTitle": {
     "message": "Dominios",
@@ -2991,7 +2991,7 @@
     }
   },
   "vaultTimeoutPolicyInEffect1": {
-    "message": "$HOURS$ hour(s) and $MINUTES$ minute(s) maximum.",
+    "message": "$HOURS$ hora(s) y $MINUTES$ minuto(s) como máximo.",
     "placeholders": {
       "hours": {
         "content": "$1",
@@ -3621,7 +3621,7 @@
     "message": "Falta el correo electrónico del usuario"
   },
   "activeUserEmailNotFoundLoggingYouOut": {
-    "message": "Active user email not found. Logging you out."
+    "message": "Correo electrónico del usuario activo no encontrado. Cerrando sesión."
   },
   "deviceTrusted": {
     "message": "Dispositivo de confianza"
@@ -3651,11 +3651,11 @@
     "message": "Confiar con el usuario"
   },
   "sendsTitleNoItems": {
-    "message": "Send sensitive information safely",
+    "message": "Envía información sensible de forma segura",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendsBodyNoItems": {
-    "message": "Share files and data securely with anyone, on any platform. Your information will remain end-to-end encrypted while limiting exposure.",
+    "message": "Comparte archivos y datos de forma segura con cualquiera, en cualquier plataforma. Tu información permanecerá encriptada de extremo a extremo, limitando su exposición.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "inputRequired": {
@@ -3820,7 +3820,7 @@
     "description": "Button text to display in overlay when the account is locked."
   },
   "unlockAccountAria": {
-    "message": "Unlock your account, opens in a new window",
+    "message": "Desbloquea tu cuenta, se abre en una nueva ventana",
     "description": "Screen reader text (aria-label) for unlock account button in overlay"
   },
   "totpCodeAria": {
@@ -3828,7 +3828,7 @@
     "description": "Aria label for the totp code displayed in the inline menu for autofill"
   },
   "totpSecondsSpanAria": {
-    "message": "Time remaining before current TOTP expires",
+    "message": "Tiempo restante antes de que el TOTP actual expire",
     "description": "Aria label for the totp seconds displayed in the inline menu for autofill"
   },
   "fillCredentialsFor": {
@@ -3856,7 +3856,7 @@
     "description": "Button text to display within inline menu when there are no matching items on a login field"
   },
   "addNewLoginItemAria": {
-    "message": "Add new vault login item, opens in a new window",
+    "message": "Añadir nuevo elemento de inicio de sesión a la caja fuerte, se abre en una nueva ventana",
     "description": "Screen reader text (aria-label) for new login button within inline menu"
   },
   "newCard": {
@@ -4081,7 +4081,7 @@
     "message": "No hay inicios de sesión coincidentes para este sitio"
   },
   "searchSavePasskeyNewLogin": {
-    "message": "Search or save passkey as new login"
+    "message": "Busca o guarda la clave de acceso como nuevo inicio de sesión"
   },
   "confirm": {
     "message": "Confirmar"
@@ -4093,10 +4093,10 @@
     "message": "Guardar clave de acceso como nuevo inicio de sesión"
   },
   "chooseCipherForPasskeySave": {
-    "message": "Choose a login to save this passkey to"
+    "message": "Elige un inicio de sesión al que guardar esta clave de acceso"
   },
   "chooseCipherForPasskeyAuth": {
-    "message": "Choose a passkey to log in with"
+    "message": "Elige una clave de acceso para iniciar sesión en"
   },
   "passkeyItem": {
     "message": "Elemento de clave de acceso"
@@ -4245,7 +4245,7 @@
     "description": "Label indicating the most common import formats"
   },
   "confirmContinueToBrowserSettingsTitle": {
-    "message": "Continue to browser settings?",
+    "message": "¿Continuar a los ajustes del navegador?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
   },
   "confirmContinueToHelpCenter": {
@@ -4325,7 +4325,7 @@
     "message": "Sugerencias de autocompletado"
   },
   "itemSuggestions": {
-    "message": "Suggested items"
+    "message": "Elementos sugeridos"
   },
   "autofillSuggestionsTip": {
     "message": "Guarda un elemento de inicio de sesión para este sitio para autocompletar"
@@ -4767,7 +4767,7 @@
     "message": "Solo los miembros de la organización con acceso a estas colecciones podrán ver los elementos."
   },
   "bulkCollectionAssignmentWarning": {
-    "message": "You have selected $TOTAL_COUNT$ items. You cannot update $READONLY_COUNT$ of the items because you do not have edit permissions.",
+    "message": "Has seleccionado $TOTAL_COUNT$ elementos. No puedes actualizar $READONLY_COUNT$ de los elementos porque no tienes permisos de edición.",
     "placeholders": {
       "total_count": {
         "content": "$1",
@@ -4865,10 +4865,10 @@
     }
   },
   "selectCollectionsToAssign": {
-    "message": "Select collections to assign"
+    "message": "Selecciona colecciones para asignar"
   },
   "personalItemTransferWarningSingular": {
-    "message": "1 item will be permanently transferred to the selected organization. You will no longer own this item."
+    "message": "1 elemento será transferido permanentemente a la organización seleccionada. Ya no serás el propietario de este elemento."
   },
   "personalItemsTransferWarningPlural": {
     "message": "$PERSONAL_ITEMS_COUNT$ items will be permanently transferred to the selected organization. You will no longer own these items.",
@@ -4902,13 +4902,13 @@
     }
   },
   "successfullyAssignedCollections": {
-    "message": "Successfully assigned collections"
+    "message": "Colecciones asignadas correctamente"
   },
   "nothingSelected": {
-    "message": "You have not selected anything."
+    "message": "No has seleccionado nada."
   },
   "itemsMovedToOrg": {
-    "message": "Items moved to $ORGNAME$",
+    "message": "Elementos movidos a $ORGNAME$",
     "placeholders": {
       "orgname": {
         "content": "$1",
@@ -4917,7 +4917,7 @@
     }
   },
   "itemMovedToOrg": {
-    "message": "Item moved to $ORGNAME$",
+    "message": "Elemento movido a $ORGNAME$",
     "placeholders": {
       "orgname": {
         "content": "$1",
@@ -4961,13 +4961,13 @@
     "message": "Acciones de cuenta"
   },
   "showNumberOfAutofillSuggestions": {
-    "message": "Show number of login autofill suggestions on extension icon"
+    "message": "Mostrar número de sugerencias de autocompletado de inicios de sesión en el icono de la extensión"
   },
   "showQuickCopyActions": {
     "message": "Show quick copy actions on Vault"
   },
   "systemDefault": {
-    "message": "System default"
+    "message": "Predeterminado del sistema"
   },
   "enterprisePolicyRequirementsApplied": {
     "message": "Enterprise policy requirements have been applied to this setting"
@@ -5009,10 +5009,10 @@
     "message": "File saved to device. Manage from your device downloads."
   },
   "showCharacterCount": {
-    "message": "Show character count"
+    "message": "Mostrar número de caracteres"
   },
   "hideCharacterCount": {
-    "message": "Hide character count"
+    "message": "Ocultar número de caracteres"
   },
   "itemsInTrash": {
     "message": "Elementos en la papelera"
@@ -5069,10 +5069,10 @@
     "message": "You can customize your unlock and timeout settings to more quickly access your vault."
   },
   "unlockPinSet": {
-    "message": "Unlock PIN set"
+    "message": "Desbloqueo con PIN establecido"
   },
   "unlockWithBiometricSet": {
-    "message": "Unlock with biometrics set"
+    "message": "Desbloqueo con biometría establecido"
   },
   "authenticating": {
     "message": "Autenticando"
@@ -5309,7 +5309,7 @@
     "message": "Quick and easy login"
   },
   "quickLoginBody": {
-    "message": "Set up biometric unlock and autofill to log into your accounts without typing a single letter."
+    "message": "Configura el desbloqueo biométrico y el autocompletado para iniciar sesión en tus cuentas sin tener que escribir ni una sola letra."
   },
   "secureUser": {
     "message": "Level up your logins"
@@ -5318,7 +5318,7 @@
     "message": "Utilice el generador para crear y guardar contraseñas fuertes y únicas para todas sus cuentas."
   },
   "secureDevices": {
-    "message": "Your data, when and where you need it"
+    "message": "Tus datos, dónde y cuándo los necesites"
   },
   "secureDevicesBody": {
     "message": "Guarda contraseñas ilimitadas a través de dispositivos ilimitados con aplicaciones móviles, de navegador y de escritorio de Bitwarden."
@@ -5348,7 +5348,7 @@
     "message": "Search your vault for something else"
   },
   "newLoginNudgeTitle": {
-    "message": "Save time with autofill"
+    "message": "Ahorra tiempo con el autocompletado"
   },
   "newLoginNudgeBodyOne": {
     "message": "Include a",
@@ -5372,7 +5372,7 @@
     "message": "With cards, easily autofill payment forms securely and accurately."
   },
   "newIdentityNudgeTitle": {
-    "message": "Simplify creating accounts"
+    "message": "Simplifica la creación de cuentas"
   },
   "newIdentityNudgeBody": {
     "message": "With identities, quickly autofill long registration or contact forms."
diff --git a/apps/browser/src/_locales/pl/messages.json b/apps/browser/src/_locales/pl/messages.json
index 9bb4d992b37..dba3a21d160 100644
--- a/apps/browser/src/_locales/pl/messages.json
+++ b/apps/browser/src/_locales/pl/messages.json
@@ -14,7 +14,7 @@
     "description": "Extension description, MUST be less than 112 characters (Safari restriction)"
   },
   "loginOrCreateNewAccount": {
-    "message": "Zaloguj się lub utwórz nowe konto, aby uzyskać dostęp do Twojego bezpiecznego sejfu."
+    "message": "Zaloguj się lub utwórz nowe konto, aby uzyskać dostęp do bezpiecznego sejfu."
   },
   "inviteAccepted": {
     "message": "Zaproszenie zostało zaakceptowane"

From a05776c989f2d9839eb66bdf6715eb2b7a8c1b73 Mon Sep 17 00:00:00 2001
From: "bw-ghapp[bot]" <178206702+bw-ghapp[bot]@users.noreply.github.com>
Date: Mon, 30 Jun 2025 09:58:29 +0000
Subject: [PATCH 016/239] Autosync the updated translations (#15392)

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>
---
 apps/web/src/locales/af/messages.json    |  3 +++
 apps/web/src/locales/ar/messages.json    |  3 +++
 apps/web/src/locales/az/messages.json    | 23 +++++++++++++----------
 apps/web/src/locales/be/messages.json    |  3 +++
 apps/web/src/locales/bg/messages.json    |  5 ++++-
 apps/web/src/locales/bn/messages.json    |  3 +++
 apps/web/src/locales/bs/messages.json    |  3 +++
 apps/web/src/locales/ca/messages.json    |  5 ++++-
 apps/web/src/locales/cs/messages.json    |  3 +++
 apps/web/src/locales/cy/messages.json    |  3 +++
 apps/web/src/locales/da/messages.json    |  3 +++
 apps/web/src/locales/de/messages.json    |  3 +++
 apps/web/src/locales/el/messages.json    |  3 +++
 apps/web/src/locales/en_GB/messages.json |  3 +++
 apps/web/src/locales/en_IN/messages.json |  3 +++
 apps/web/src/locales/eo/messages.json    |  3 +++
 apps/web/src/locales/es/messages.json    |  3 +++
 apps/web/src/locales/et/messages.json    |  3 +++
 apps/web/src/locales/eu/messages.json    |  3 +++
 apps/web/src/locales/fa/messages.json    |  3 +++
 apps/web/src/locales/fi/messages.json    |  3 +++
 apps/web/src/locales/fil/messages.json   |  3 +++
 apps/web/src/locales/fr/messages.json    |  3 +++
 apps/web/src/locales/gl/messages.json    |  3 +++
 apps/web/src/locales/he/messages.json    |  3 +++
 apps/web/src/locales/hi/messages.json    |  3 +++
 apps/web/src/locales/hr/messages.json    |  3 +++
 apps/web/src/locales/hu/messages.json    |  3 +++
 apps/web/src/locales/id/messages.json    |  3 +++
 apps/web/src/locales/it/messages.json    |  3 +++
 apps/web/src/locales/ja/messages.json    |  3 +++
 apps/web/src/locales/ka/messages.json    |  3 +++
 apps/web/src/locales/km/messages.json    |  3 +++
 apps/web/src/locales/kn/messages.json    |  3 +++
 apps/web/src/locales/ko/messages.json    |  3 +++
 apps/web/src/locales/lv/messages.json    |  3 +++
 apps/web/src/locales/ml/messages.json    |  3 +++
 apps/web/src/locales/mr/messages.json    |  3 +++
 apps/web/src/locales/my/messages.json    |  3 +++
 apps/web/src/locales/nb/messages.json    |  3 +++
 apps/web/src/locales/ne/messages.json    |  3 +++
 apps/web/src/locales/nl/messages.json    |  3 +++
 apps/web/src/locales/nn/messages.json    |  3 +++
 apps/web/src/locales/or/messages.json    |  3 +++
 apps/web/src/locales/pl/messages.json    |  3 +++
 apps/web/src/locales/pt_BR/messages.json |  3 +++
 apps/web/src/locales/pt_PT/messages.json |  3 +++
 apps/web/src/locales/ro/messages.json    |  3 +++
 apps/web/src/locales/ru/messages.json    |  3 +++
 apps/web/src/locales/si/messages.json    |  3 +++
 apps/web/src/locales/sk/messages.json    |  3 +++
 apps/web/src/locales/sl/messages.json    |  3 +++
 apps/web/src/locales/sr_CS/messages.json |  3 +++
 apps/web/src/locales/sr_CY/messages.json | 19 +++++++++++--------
 apps/web/src/locales/sv/messages.json    |  3 +++
 apps/web/src/locales/te/messages.json    |  3 +++
 apps/web/src/locales/th/messages.json    |  3 +++
 apps/web/src/locales/tr/messages.json    |  3 +++
 apps/web/src/locales/uk/messages.json    |  3 +++
 apps/web/src/locales/vi/messages.json    |  3 +++
 apps/web/src/locales/zh_CN/messages.json |  9 ++++++---
 apps/web/src/locales/zh_TW/messages.json |  3 +++
 62 files changed, 209 insertions(+), 23 deletions(-)

diff --git a/apps/web/src/locales/af/messages.json b/apps/web/src/locales/af/messages.json
index 33c8aec11af..9350bcfc0ff 100644
--- a/apps/web/src/locales/af/messages.json
+++ b/apps/web/src/locales/af/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Verstekversameling"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "getHelp": {
     "message": "Kry Hulp"
   },
diff --git a/apps/web/src/locales/ar/messages.json b/apps/web/src/locales/ar/messages.json
index c96c0565eed..f8a6dc1288b 100644
--- a/apps/web/src/locales/ar/messages.json
+++ b/apps/web/src/locales/ar/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Default collection"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "getHelp": {
     "message": "المساعدة"
   },
diff --git a/apps/web/src/locales/az/messages.json b/apps/web/src/locales/az/messages.json
index ac1280d6ad0..062f0f35ff4 100644
--- a/apps/web/src/locales/az/messages.json
+++ b/apps/web/src/locales/az/messages.json
@@ -2154,16 +2154,16 @@
     "message": "İki addımlı girişi qurmaq, Bitwarden hesabınızı birdəfəlik kilidləyə bilər. Geri qaytarma kodu, normal iki addımlı giriş provayderinizi artıq istifadə edə bilmədiyiniz hallarda (məs. cihazınızı itirəndə) hesabınıza müraciət etməyinizə imkan verir. Hesabınıza müraciəti itirsəniz, Bitwarden dəstəyi sizə kömək edə bilməyəcək. Geri qaytarma kodunuzu bir yerə yazmağınızı və ya çap etməyinizi və onu etibarlı bir yerdə saxlamağınızı məsləhət görürük."
   },
   "restrictedItemTypePolicy": {
-    "message": "Remove card item type"
+    "message": "Kart element növünü sil"
   },
   "restrictedItemTypePolicyDesc": {
-    "message": "Do not allow members to create card item types. Existing cards will be automatically removed."
+    "message": "Üzvlərin kart element növlərini yaratmasına icazə verməyin. Mövcud kartlar avtomatik silinəcək."
   },
   "restrictCardTypeImport": {
-    "message": "Cannot import card item types"
+    "message": "Kart element növləri daxilə köçürülə bilmir"
   },
   "restrictCardTypeImportDesc": {
-    "message": "A policy set by 1 or more organizations prevents you from importing cards to your vaults."
+    "message": "1 və ya daha çox təşkilat tərəfindən təyin edilən bir siyasət, kartların seyfinizə köçürülməsini əngəlləyir."
   },
   "yourSingleUseRecoveryCode": {
     "message": "İki addımlı giriş provayderinizə müraciəti itirdiyiniz halda, iki addımlı girişi söndürmək üçün təkistifadəlik geri qaytarma kodunu istifadə edə bilərsiniz. Bitwarden tövsiyə edir ki, geri qaytarma kodunuzu bir yerə yazıb güvənli bir yerdə saxlayın."
@@ -2225,7 +2225,7 @@
     "message": "Sıradan çıxart"
   },
   "orgUserDetailsNotFound": {
-    "message": "Member details not found."
+    "message": "Üzv təfsilatları tapılmadı."
   },
   "revokeAccess": {
     "message": "Müraciəti ləğv et"
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "İlkin kolleksiya"
   },
+  "myItems": {
+    "message": "Elementlərim"
+  },
   "getHelp": {
     "message": "Kömək alın"
   },
@@ -5373,7 +5376,7 @@
     "message": "Fövqəladə hal müraciəti rədd edildi"
   },
   "grantorDetailsNotFound": {
-    "message": "Grantor details not found"
+    "message": "Qrant verən təfsilatları tapılmadı"
   },
   "passwordResetFor": {
     "message": "$USER$ üçün parol sıfırlandı. Artıq yeni parol ilə giriş edə bilərsiniz.",
@@ -5385,7 +5388,7 @@
     }
   },
   "organizationDataOwnership": {
-    "message": "Enforce organization data ownership"
+    "message": "Təşkilata data üzərində məcburi sahiblik ver"
   },
   "personalOwnership": {
     "message": "Fərdi sahiblik"
@@ -5779,7 +5782,7 @@
     }
   },
   "emergencyAccessLoggedOutWarning": {
-    "message": "Proceeding will log $NAME$ out of their current session, requiring them to log back in. Active sessions on other devices may continue to remain active for up to one hour.",
+    "message": "Davam etsəniz, $NAME$ üçün hazırkı seans bitəcək, təkrar giriş etməsi tələb olunacaq. Digər cihazlardakı aktiv seanslar, bir saata qədər aktiv qalmağa davam edə bilər.",
     "placeholders": {
       "name": {
         "content": "$1",
@@ -5794,7 +5797,7 @@
     "message": "Bir və ya daha çox təşkilat siyasəti, aşağıdakı tələbləri qarşılamaq üçün ana parolu tələb edir:"
   },
   "changePasswordDelegationMasterPasswordPolicyInEffect": {
-    "message": "One or more organization policies require the master password to meet the following requirements:"
+    "message": "Bir və ya daha çox təşkilat siyasəti, aşağıdakı tələbləri qarşılamaq üçün ana parolu tələb edir:"
   },
   "resetPasswordSuccess": {
     "message": "Parol sıfırlama uğurludur!"
@@ -10678,7 +10681,7 @@
     }
   },
   "billingAddressRequiredToAddCredit": {
-    "message": "Billing address required to add credit.",
+    "message": "Kredit əlavə etmək üçün faktura ünvanı tələb olunur.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
   }
 }
diff --git a/apps/web/src/locales/be/messages.json b/apps/web/src/locales/be/messages.json
index f0fc9db94c3..05c49e30b44 100644
--- a/apps/web/src/locales/be/messages.json
+++ b/apps/web/src/locales/be/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Прадвызначаная калекцыя"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "getHelp": {
     "message": "Атрымаць даведку"
   },
diff --git a/apps/web/src/locales/bg/messages.json b/apps/web/src/locales/bg/messages.json
index e059002f5ff..d3c7604f2d7 100644
--- a/apps/web/src/locales/bg/messages.json
+++ b/apps/web/src/locales/bg/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Стандартна колекция"
   },
+  "myItems": {
+    "message": "Моите елементи"
+  },
   "getHelp": {
     "message": "Помощ"
   },
@@ -5385,7 +5388,7 @@
     }
   },
   "organizationDataOwnership": {
-    "message": "Enforce organization data ownership"
+    "message": "Задължителна собственост на организационните данни"
   },
   "personalOwnership": {
     "message": "Индивидуално притежание"
diff --git a/apps/web/src/locales/bn/messages.json b/apps/web/src/locales/bn/messages.json
index 39f883a7be6..c8539b19f79 100644
--- a/apps/web/src/locales/bn/messages.json
+++ b/apps/web/src/locales/bn/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Default collection"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "getHelp": {
     "message": "Get help"
   },
diff --git a/apps/web/src/locales/bs/messages.json b/apps/web/src/locales/bs/messages.json
index 4bf2dd3c8c8..7c611e9ad5a 100644
--- a/apps/web/src/locales/bs/messages.json
+++ b/apps/web/src/locales/bs/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Default collection"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "getHelp": {
     "message": "Get help"
   },
diff --git a/apps/web/src/locales/ca/messages.json b/apps/web/src/locales/ca/messages.json
index 5ba0d84fcdb..0b5d5e96988 100644
--- a/apps/web/src/locales/ca/messages.json
+++ b/apps/web/src/locales/ca/messages.json
@@ -502,7 +502,7 @@
     "message": "Nom de la carpeta"
   },
   "folderHintText": {
-    "message": "Nest a folder by adding the parent folder's name followed by a “/”. Example: Social/Forums"
+    "message": "Imbriqueu una carpeta afegint el nom de la carpeta principal seguit d'una \"/\". Exemple: Social/Fòrums"
   },
   "deleteFolderPermanently": {
     "message": "Are you sure you want to permanently delete this folder?"
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Col·lecció per defecte"
   },
+  "myItems": {
+    "message": "Els meus elements"
+  },
   "getHelp": {
     "message": "Obteniu ajuda"
   },
diff --git a/apps/web/src/locales/cs/messages.json b/apps/web/src/locales/cs/messages.json
index 5e022396a0e..8a80664c6c2 100644
--- a/apps/web/src/locales/cs/messages.json
+++ b/apps/web/src/locales/cs/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Výchozí sbírka"
   },
+  "myItems": {
+    "message": "Moje položky"
+  },
   "getHelp": {
     "message": "Získat nápovědu"
   },
diff --git a/apps/web/src/locales/cy/messages.json b/apps/web/src/locales/cy/messages.json
index 9e9521a6869..b8e3ccd5d25 100644
--- a/apps/web/src/locales/cy/messages.json
+++ b/apps/web/src/locales/cy/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Default collection"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "getHelp": {
     "message": "Get help"
   },
diff --git a/apps/web/src/locales/da/messages.json b/apps/web/src/locales/da/messages.json
index 7c4f7459886..1f288af356f 100644
--- a/apps/web/src/locales/da/messages.json
+++ b/apps/web/src/locales/da/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Standardsamling"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "getHelp": {
     "message": "Få hjælp"
   },
diff --git a/apps/web/src/locales/de/messages.json b/apps/web/src/locales/de/messages.json
index da3d2bd081f..c065f26f98d 100644
--- a/apps/web/src/locales/de/messages.json
+++ b/apps/web/src/locales/de/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Standardsammlung"
   },
+  "myItems": {
+    "message": "Meine Einträge"
+  },
   "getHelp": {
     "message": "Hilfe erhalten"
   },
diff --git a/apps/web/src/locales/el/messages.json b/apps/web/src/locales/el/messages.json
index 815c58a25ec..b8efb914a34 100644
--- a/apps/web/src/locales/el/messages.json
+++ b/apps/web/src/locales/el/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Προεπιλεγμένη Συλλογή"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "getHelp": {
     "message": "Ζητήστε Βοήθεια"
   },
diff --git a/apps/web/src/locales/en_GB/messages.json b/apps/web/src/locales/en_GB/messages.json
index e3f279af8f4..bf15dd133f9 100644
--- a/apps/web/src/locales/en_GB/messages.json
+++ b/apps/web/src/locales/en_GB/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Default collection"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "getHelp": {
     "message": "Get help"
   },
diff --git a/apps/web/src/locales/en_IN/messages.json b/apps/web/src/locales/en_IN/messages.json
index 4d5f5ff177d..d290ea148ad 100644
--- a/apps/web/src/locales/en_IN/messages.json
+++ b/apps/web/src/locales/en_IN/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Default collection"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "getHelp": {
     "message": "Get help"
   },
diff --git a/apps/web/src/locales/eo/messages.json b/apps/web/src/locales/eo/messages.json
index 1366fc7c492..49924ab03fe 100644
--- a/apps/web/src/locales/eo/messages.json
+++ b/apps/web/src/locales/eo/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Implicita kolekto"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "getHelp": {
     "message": "Akiri helpon"
   },
diff --git a/apps/web/src/locales/es/messages.json b/apps/web/src/locales/es/messages.json
index 2bc0abb9c00..253507109a8 100644
--- a/apps/web/src/locales/es/messages.json
+++ b/apps/web/src/locales/es/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Colección por defecto"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "getHelp": {
     "message": "Consigue ayuda"
   },
diff --git a/apps/web/src/locales/et/messages.json b/apps/web/src/locales/et/messages.json
index c718b718d15..04b51e7c23b 100644
--- a/apps/web/src/locales/et/messages.json
+++ b/apps/web/src/locales/et/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Vaikekogumik"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "getHelp": {
     "message": "Klienditugi"
   },
diff --git a/apps/web/src/locales/eu/messages.json b/apps/web/src/locales/eu/messages.json
index 1b41987012c..30f3f5488d7 100644
--- a/apps/web/src/locales/eu/messages.json
+++ b/apps/web/src/locales/eu/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Bilduma lehenetsia"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "getHelp": {
     "message": "Jaso laguntza"
   },
diff --git a/apps/web/src/locales/fa/messages.json b/apps/web/src/locales/fa/messages.json
index 63ef193879a..99cdefe5695 100644
--- a/apps/web/src/locales/fa/messages.json
+++ b/apps/web/src/locales/fa/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "مجموعه پیش‌فرض"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "getHelp": {
     "message": "کمک گرفتن"
   },
diff --git a/apps/web/src/locales/fi/messages.json b/apps/web/src/locales/fi/messages.json
index 607b17d7749..9f6afee3713 100644
--- a/apps/web/src/locales/fi/messages.json
+++ b/apps/web/src/locales/fi/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Oletuskokoelma"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "getHelp": {
     "message": "Hanki apua"
   },
diff --git a/apps/web/src/locales/fil/messages.json b/apps/web/src/locales/fil/messages.json
index c8689d54bbc..4794aef1d99 100644
--- a/apps/web/src/locales/fil/messages.json
+++ b/apps/web/src/locales/fil/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Default na koleksyon"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "getHelp": {
     "message": "Humingi ng tulong"
   },
diff --git a/apps/web/src/locales/fr/messages.json b/apps/web/src/locales/fr/messages.json
index 0ebdfaa611c..3abcdf9a999 100644
--- a/apps/web/src/locales/fr/messages.json
+++ b/apps/web/src/locales/fr/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Collection par défaut"
   },
+  "myItems": {
+    "message": "Mes éléments"
+  },
   "getHelp": {
     "message": "Obtenir de l'aide"
   },
diff --git a/apps/web/src/locales/gl/messages.json b/apps/web/src/locales/gl/messages.json
index ad59838cc77..9ed6e922300 100644
--- a/apps/web/src/locales/gl/messages.json
+++ b/apps/web/src/locales/gl/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Default collection"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "getHelp": {
     "message": "Get help"
   },
diff --git a/apps/web/src/locales/he/messages.json b/apps/web/src/locales/he/messages.json
index 59f5dbc404b..e569d94437e 100644
--- a/apps/web/src/locales/he/messages.json
+++ b/apps/web/src/locales/he/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "אוסף ברירת מחדל"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "getHelp": {
     "message": "קבל עזרה"
   },
diff --git a/apps/web/src/locales/hi/messages.json b/apps/web/src/locales/hi/messages.json
index 250d68f1f0a..f6e2e491f49 100644
--- a/apps/web/src/locales/hi/messages.json
+++ b/apps/web/src/locales/hi/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Default collection"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "getHelp": {
     "message": "Get help"
   },
diff --git a/apps/web/src/locales/hr/messages.json b/apps/web/src/locales/hr/messages.json
index d322231d2ad..ef5730fb6b6 100644
--- a/apps/web/src/locales/hr/messages.json
+++ b/apps/web/src/locales/hr/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Zadana zbirka"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "getHelp": {
     "message": "Potraži pomoć"
   },
diff --git a/apps/web/src/locales/hu/messages.json b/apps/web/src/locales/hu/messages.json
index 211e99d3234..4ad900a4bae 100644
--- a/apps/web/src/locales/hu/messages.json
+++ b/apps/web/src/locales/hu/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Alapértelmezett gyűjtemény"
   },
+  "myItems": {
+    "message": "Saját elemek"
+  },
   "getHelp": {
     "message": "Segítségkérés"
   },
diff --git a/apps/web/src/locales/id/messages.json b/apps/web/src/locales/id/messages.json
index bb0fbad9361..fffe374b44b 100644
--- a/apps/web/src/locales/id/messages.json
+++ b/apps/web/src/locales/id/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Koleksi Default"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "getHelp": {
     "message": "Dapatkan Bantuan"
   },
diff --git a/apps/web/src/locales/it/messages.json b/apps/web/src/locales/it/messages.json
index 30cd8bb6d53..a861f368366 100644
--- a/apps/web/src/locales/it/messages.json
+++ b/apps/web/src/locales/it/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Raccolta predefinita"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "getHelp": {
     "message": "Ottieni aiuto"
   },
diff --git a/apps/web/src/locales/ja/messages.json b/apps/web/src/locales/ja/messages.json
index 95e2cc71644..9af2943f1da 100644
--- a/apps/web/src/locales/ja/messages.json
+++ b/apps/web/src/locales/ja/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "既定のコレクション"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "getHelp": {
     "message": "ヘルプを参照する"
   },
diff --git a/apps/web/src/locales/ka/messages.json b/apps/web/src/locales/ka/messages.json
index 4ebfca7db2c..d5ae3e1978c 100644
--- a/apps/web/src/locales/ka/messages.json
+++ b/apps/web/src/locales/ka/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Default collection"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "getHelp": {
     "message": "Get help"
   },
diff --git a/apps/web/src/locales/km/messages.json b/apps/web/src/locales/km/messages.json
index bdcdf5ed237..f422e74a569 100644
--- a/apps/web/src/locales/km/messages.json
+++ b/apps/web/src/locales/km/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Default collection"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "getHelp": {
     "message": "Get help"
   },
diff --git a/apps/web/src/locales/kn/messages.json b/apps/web/src/locales/kn/messages.json
index 9abfaf0329b..b400d0ca863 100644
--- a/apps/web/src/locales/kn/messages.json
+++ b/apps/web/src/locales/kn/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "ಡೀಫಾಲ್ಟ್ ಸಂಗ್ರಹ"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "getHelp": {
     "message": "ಸಹಾಯ ಪಡೆ"
   },
diff --git a/apps/web/src/locales/ko/messages.json b/apps/web/src/locales/ko/messages.json
index 8ae6e906dea..8293750eed3 100644
--- a/apps/web/src/locales/ko/messages.json
+++ b/apps/web/src/locales/ko/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "기본 컬렉션"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "getHelp": {
     "message": "문의하기"
   },
diff --git a/apps/web/src/locales/lv/messages.json b/apps/web/src/locales/lv/messages.json
index 0c738d66de2..b17131cf2ef 100644
--- a/apps/web/src/locales/lv/messages.json
+++ b/apps/web/src/locales/lv/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Noklusējuma krājums"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "getHelp": {
     "message": "Saņemt palīdzību"
   },
diff --git a/apps/web/src/locales/ml/messages.json b/apps/web/src/locales/ml/messages.json
index 2b93514d5ad..ef1bb77feb4 100644
--- a/apps/web/src/locales/ml/messages.json
+++ b/apps/web/src/locales/ml/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Default Collection"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "getHelp": {
     "message": "Get Help"
   },
diff --git a/apps/web/src/locales/mr/messages.json b/apps/web/src/locales/mr/messages.json
index 338c0228fcf..97eb93dd3eb 100644
--- a/apps/web/src/locales/mr/messages.json
+++ b/apps/web/src/locales/mr/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Default collection"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "getHelp": {
     "message": "Get help"
   },
diff --git a/apps/web/src/locales/my/messages.json b/apps/web/src/locales/my/messages.json
index bdcdf5ed237..f422e74a569 100644
--- a/apps/web/src/locales/my/messages.json
+++ b/apps/web/src/locales/my/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Default collection"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "getHelp": {
     "message": "Get help"
   },
diff --git a/apps/web/src/locales/nb/messages.json b/apps/web/src/locales/nb/messages.json
index 7221018aca0..68cd7725bd5 100644
--- a/apps/web/src/locales/nb/messages.json
+++ b/apps/web/src/locales/nb/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Standardsamling"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "getHelp": {
     "message": "Få hjelp"
   },
diff --git a/apps/web/src/locales/ne/messages.json b/apps/web/src/locales/ne/messages.json
index 4b401cd67a8..f74848f0aee 100644
--- a/apps/web/src/locales/ne/messages.json
+++ b/apps/web/src/locales/ne/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Default collection"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "getHelp": {
     "message": "Get help"
   },
diff --git a/apps/web/src/locales/nl/messages.json b/apps/web/src/locales/nl/messages.json
index 556ef03ada0..fc2b6e9593c 100644
--- a/apps/web/src/locales/nl/messages.json
+++ b/apps/web/src/locales/nl/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Standaardverzameling"
   },
+  "myItems": {
+    "message": "Mijn items"
+  },
   "getHelp": {
     "message": "Hulp vragen"
   },
diff --git a/apps/web/src/locales/nn/messages.json b/apps/web/src/locales/nn/messages.json
index 0707b948a38..79700ff65e3 100644
--- a/apps/web/src/locales/nn/messages.json
+++ b/apps/web/src/locales/nn/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Default collection"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "getHelp": {
     "message": "Get help"
   },
diff --git a/apps/web/src/locales/or/messages.json b/apps/web/src/locales/or/messages.json
index bdcdf5ed237..f422e74a569 100644
--- a/apps/web/src/locales/or/messages.json
+++ b/apps/web/src/locales/or/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Default collection"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "getHelp": {
     "message": "Get help"
   },
diff --git a/apps/web/src/locales/pl/messages.json b/apps/web/src/locales/pl/messages.json
index b70804f2b6f..13e67f9d33c 100644
--- a/apps/web/src/locales/pl/messages.json
+++ b/apps/web/src/locales/pl/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Domyślna kolekcja"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "getHelp": {
     "message": "Uzyskaj pomoc"
   },
diff --git a/apps/web/src/locales/pt_BR/messages.json b/apps/web/src/locales/pt_BR/messages.json
index dbd11b62095..da4180ee0e6 100644
--- a/apps/web/src/locales/pt_BR/messages.json
+++ b/apps/web/src/locales/pt_BR/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Coleção Padrão"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "getHelp": {
     "message": "Obter Ajuda"
   },
diff --git a/apps/web/src/locales/pt_PT/messages.json b/apps/web/src/locales/pt_PT/messages.json
index 33ac3148a1c..eb06f4b7390 100644
--- a/apps/web/src/locales/pt_PT/messages.json
+++ b/apps/web/src/locales/pt_PT/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Coleção predefinida"
   },
+  "myItems": {
+    "message": "Os meus itens"
+  },
   "getHelp": {
     "message": "Obter ajuda"
   },
diff --git a/apps/web/src/locales/ro/messages.json b/apps/web/src/locales/ro/messages.json
index add0453a747..569faf4e9a8 100644
--- a/apps/web/src/locales/ro/messages.json
+++ b/apps/web/src/locales/ro/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Colecție implicită"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "getHelp": {
     "message": "Obținere ajutor"
   },
diff --git a/apps/web/src/locales/ru/messages.json b/apps/web/src/locales/ru/messages.json
index 146c9659ce0..d57bdc8ed45 100644
--- a/apps/web/src/locales/ru/messages.json
+++ b/apps/web/src/locales/ru/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Коллекция по умолчанию"
   },
+  "myItems": {
+    "message": "Мои элементы"
+  },
   "getHelp": {
     "message": "Получить помощь"
   },
diff --git a/apps/web/src/locales/si/messages.json b/apps/web/src/locales/si/messages.json
index 412960c2453..80dd700f848 100644
--- a/apps/web/src/locales/si/messages.json
+++ b/apps/web/src/locales/si/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Default collection"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "getHelp": {
     "message": "Get help"
   },
diff --git a/apps/web/src/locales/sk/messages.json b/apps/web/src/locales/sk/messages.json
index 752f088a92c..c3f204beaf3 100644
--- a/apps/web/src/locales/sk/messages.json
+++ b/apps/web/src/locales/sk/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Predvolená kolekcia"
   },
+  "myItems": {
+    "message": "Moje položky"
+  },
   "getHelp": {
     "message": "Získať pomoc"
   },
diff --git a/apps/web/src/locales/sl/messages.json b/apps/web/src/locales/sl/messages.json
index dca8c4d1161..5b68d7e21af 100644
--- a/apps/web/src/locales/sl/messages.json
+++ b/apps/web/src/locales/sl/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Default collection"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "getHelp": {
     "message": "Pomoč"
   },
diff --git a/apps/web/src/locales/sr_CS/messages.json b/apps/web/src/locales/sr_CS/messages.json
index 71af7ca2062..c0681d1224f 100644
--- a/apps/web/src/locales/sr_CS/messages.json
+++ b/apps/web/src/locales/sr_CS/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Default collection"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "getHelp": {
     "message": "Get help"
   },
diff --git a/apps/web/src/locales/sr_CY/messages.json b/apps/web/src/locales/sr_CY/messages.json
index 0f84a52f849..837b8c706b8 100644
--- a/apps/web/src/locales/sr_CY/messages.json
+++ b/apps/web/src/locales/sr_CY/messages.json
@@ -2154,10 +2154,10 @@
     "message": "Омогућавање пријаве у два корака може вас трајно закључати са вашег Bitwarden-а налога. Код за опоравак омогућава вам приступ вашем налогу у случају да више не можете да користите свог уобичајеног добављача услуге пријављивања у два корака (нпр. ако изгубите уређај). Подршка Bitwarden-а неће вам моћи помоћи ако изгубите приступ свом налогу. Препоручујемо да запишете или одштампате код за опоравак и сачувате га на сигурном месту."
   },
   "restrictedItemTypePolicy": {
-    "message": "Remove card item type"
+    "message": "Уклоните тип ставке картице"
   },
   "restrictedItemTypePolicyDesc": {
-    "message": "Do not allow members to create card item types. Existing cards will be automatically removed."
+    "message": "Не дозволите члановима да креирају врсте предмета картице. Постојеће картице ће се аутоматски уклонити."
   },
   "restrictCardTypeImport": {
     "message": "Не могу увозити врсте картица"
@@ -2225,7 +2225,7 @@
     "message": "Онемогући"
   },
   "orgUserDetailsNotFound": {
-    "message": "Member details not found."
+    "message": "Детаљи чланова нису пронађени."
   },
   "revokeAccess": {
     "message": "Опозови Приступ"
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Стандардна колекција"
   },
+  "myItems": {
+    "message": "Моји предмети"
+  },
   "getHelp": {
     "message": "Потражи помоћ"
   },
@@ -5373,7 +5376,7 @@
     "message": "Одбијен хитни приступ"
   },
   "grantorDetailsNotFound": {
-    "message": "Grantor details not found"
+    "message": "Детаљи одобравања нису пронађени"
   },
   "passwordResetFor": {
     "message": "Ресетовање лозинке за $USER$. Сада се можете пријавити помоћу нове лозинке.",
@@ -5385,7 +5388,7 @@
     }
   },
   "organizationDataOwnership": {
-    "message": "Enforce organization data ownership"
+    "message": "Спровести власништво података о организацији"
   },
   "personalOwnership": {
     "message": "Лично власништво"
@@ -5779,7 +5782,7 @@
     }
   },
   "emergencyAccessLoggedOutWarning": {
-    "message": "Proceeding will log $NAME$ out of their current session, requiring them to log back in. Active sessions on other devices may continue to remain active for up to one hour.",
+    "message": "Ако наставите, објавићете $NAME$ са тренутне сесије, захтевајући их да се поново пријаве. Активне сесије на другим уређајима могу наставити да остају активне до једног сата.",
     "placeholders": {
       "name": {
         "content": "$1",
@@ -5794,7 +5797,7 @@
     "message": "Једна или више смерница организације захтевају главну лозинку да би испуњавали следеће захтеве:"
   },
   "changePasswordDelegationMasterPasswordPolicyInEffect": {
-    "message": "One or more organization policies require the master password to meet the following requirements:"
+    "message": "Једна или више смерница организације захтевају главну лозинку да би испуњавали следеће захтеве:"
   },
   "resetPasswordSuccess": {
     "message": "Успешно ресетовање лозинке!"
@@ -10678,7 +10681,7 @@
     }
   },
   "billingAddressRequiredToAddCredit": {
-    "message": "Billing address required to add credit.",
+    "message": "Адреса за наплату је потребна за додавање кредита.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
   }
 }
diff --git a/apps/web/src/locales/sv/messages.json b/apps/web/src/locales/sv/messages.json
index a81335284a1..41813e5edc0 100644
--- a/apps/web/src/locales/sv/messages.json
+++ b/apps/web/src/locales/sv/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Standardsamling"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "getHelp": {
     "message": "Få hjälp"
   },
diff --git a/apps/web/src/locales/te/messages.json b/apps/web/src/locales/te/messages.json
index bdcdf5ed237..f422e74a569 100644
--- a/apps/web/src/locales/te/messages.json
+++ b/apps/web/src/locales/te/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Default collection"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "getHelp": {
     "message": "Get help"
   },
diff --git a/apps/web/src/locales/th/messages.json b/apps/web/src/locales/th/messages.json
index 48cedb1c4d5..c47c6caca85 100644
--- a/apps/web/src/locales/th/messages.json
+++ b/apps/web/src/locales/th/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Default collection"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "getHelp": {
     "message": "Get help"
   },
diff --git a/apps/web/src/locales/tr/messages.json b/apps/web/src/locales/tr/messages.json
index af3d51faa3e..211851f8450 100644
--- a/apps/web/src/locales/tr/messages.json
+++ b/apps/web/src/locales/tr/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Varsayılan koleksiyon"
   },
+  "myItems": {
+    "message": "Kayıtlarım"
+  },
   "getHelp": {
     "message": "Yardım al"
   },
diff --git a/apps/web/src/locales/uk/messages.json b/apps/web/src/locales/uk/messages.json
index c67b8d62ceb..4ddcfa3c463 100644
--- a/apps/web/src/locales/uk/messages.json
+++ b/apps/web/src/locales/uk/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Типова збірка"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "getHelp": {
     "message": "Отримати допомогу"
   },
diff --git a/apps/web/src/locales/vi/messages.json b/apps/web/src/locales/vi/messages.json
index 6b9cb8d0ac0..c3bbf855a38 100644
--- a/apps/web/src/locales/vi/messages.json
+++ b/apps/web/src/locales/vi/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "Default collection"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "getHelp": {
     "message": "Nhận trợ giúp"
   },
diff --git a/apps/web/src/locales/zh_CN/messages.json b/apps/web/src/locales/zh_CN/messages.json
index 55579121b4b..550d4d56bdd 100644
--- a/apps/web/src/locales/zh_CN/messages.json
+++ b/apps/web/src/locales/zh_CN/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "默认集合"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "getHelp": {
     "message": "获取帮助"
   },
@@ -8725,13 +8728,13 @@
     "message": "管理组织的集合行为"
   },
   "limitCollectionCreationDesc": {
-    "message": "限制为所有者和管理员可以创建集合"
+    "message": "仅限所有者和管理员可以创建集合"
   },
   "limitCollectionDeletionDesc": {
-    "message": "限制为所有者和管理员可以删除集合"
+    "message": "仅限所有者和管理员可以删除集合"
   },
   "limitItemDeletionDescription": {
-    "message": "限制为具有「管理集合」权限的成员可以删项目"
+    "message": "仅限具有「管理集合」权限的成员可以删除项目"
   },
   "allowAdminAccessToAllCollectionItemsDesc": {
     "message": "所有者和管理员可以管理所有集合和项目"
diff --git a/apps/web/src/locales/zh_TW/messages.json b/apps/web/src/locales/zh_TW/messages.json
index a44d7eb5f28..2193c9503ab 100644
--- a/apps/web/src/locales/zh_TW/messages.json
+++ b/apps/web/src/locales/zh_TW/messages.json
@@ -3275,6 +3275,9 @@
   "defaultCollection": {
     "message": "預設集合"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "getHelp": {
     "message": "尋求幫助"
   },

From 8fec95671d1f39c863e9977542c95c80fc5957c2 Mon Sep 17 00:00:00 2001
From: Maciej Zieniuk <167752252+mzieniukbw@users.noreply.github.com>
Date: Mon, 30 Jun 2025 12:38:51 +0200
Subject: [PATCH 017/239] [PM-22090] Delete password on Windows desktop throws
 incorrect error (#15070)

* delete password on Windows desktop throws incorrect error

* delete password on Windows desktop throws incorrect error

* napi documentation improvements

* napi documentation update

* better logging verbosity

* desktop native clippy errors

* unit test coverage

* napi TS documentation JS language friendly

* fixing merge conflicts
---
 .../desktop_native/core/src/password/macos.rs |  25 ++--
 .../desktop_native/core/src/password/mod.rs   |   2 +
 .../desktop_native/core/src/password/unix.rs  |   9 +-
 .../core/src/password/windows.rs              |  11 +-
 apps/desktop/desktop_native/napi/index.d.ts   |  17 ++-
 apps/desktop/desktop_native/napi/src/lib.rs   |  10 +-
 .../main-biometrics-ipc.listener.ts           |   2 +-
 .../biometrics/main-biometrics.service.ts     |   3 +-
 .../os-biometrics-linux.service.spec.ts       |  86 +++++++++++++
 .../biometrics/os-biometrics-linux.service.ts |  16 ++-
 .../os-biometrics-mac.service.spec.ts         |  78 ++++++++++++
 .../biometrics/os-biometrics-mac.service.ts   |  20 ++-
 .../os-biometrics-windows.service.spec.ts     | 115 +++++++++++++++++-
 .../os-biometrics-windows.service.ts          |  43 ++++++-
 .../desktop-credential-storage-listener.ts    |  10 +-
 15 files changed, 407 insertions(+), 40 deletions(-)
 create mode 100644 apps/desktop/src/key-management/biometrics/os-biometrics-linux.service.spec.ts
 create mode 100644 apps/desktop/src/key-management/biometrics/os-biometrics-mac.service.spec.ts

diff --git a/apps/desktop/desktop_native/core/src/password/macos.rs b/apps/desktop/desktop_native/core/src/password/macos.rs
index 1af005acb4d..3075dce3b88 100644
--- a/apps/desktop/desktop_native/core/src/password/macos.rs
+++ b/apps/desktop/desktop_native/core/src/password/macos.rs
@@ -1,10 +1,12 @@
+use crate::password::PASSWORD_NOT_FOUND;
 use anyhow::Result;
 use security_framework::passwords::{
     delete_generic_password, get_generic_password, set_generic_password,
 };
 
 pub async fn get_password(service: &str, account: &str) -> Result<String> {
-    let result = String::from_utf8(get_generic_password(service, account)?)?;
+    let password = get_generic_password(service, account).map_err(convert_error)?;
+    let result = String::from_utf8(password)?;
     Ok(result)
 }
 
@@ -14,7 +16,7 @@ pub async fn set_password(service: &str, account: &str, password: &str) -> Resul
 }
 
 pub async fn delete_password(service: &str, account: &str) -> Result<()> {
-    delete_generic_password(service, account)?;
+    delete_generic_password(service, account).map_err(convert_error)?;
     Ok(())
 }
 
@@ -22,6 +24,15 @@ pub async fn is_available() -> Result<bool> {
     Ok(true)
 }
 
+fn convert_error(e: security_framework::base::Error) -> anyhow::Error {
+    match e.code() {
+        security_framework_sys::base::errSecItemNotFound => {
+            anyhow::anyhow!(PASSWORD_NOT_FOUND)
+        }
+        _ => anyhow::anyhow!(e),
+    }
+}
+
 #[cfg(test)]
 mod tests {
     use super::*;
@@ -44,10 +55,7 @@ mod tests {
         // Ensure password is deleted
         match get_password("BitwardenTest", "BitwardenTest").await {
             Ok(_) => panic!("Got a result"),
-            Err(e) => assert_eq!(
-                "The specified item could not be found in the keychain.",
-                e.to_string()
-            ),
+            Err(e) => assert_eq!(PASSWORD_NOT_FOUND, e.to_string()),
         }
     }
 
@@ -55,10 +63,7 @@ mod tests {
     async fn test_error_no_password() {
         match get_password("Unknown", "Unknown").await {
             Ok(_) => panic!("Got a result"),
-            Err(e) => assert_eq!(
-                "The specified item could not be found in the keychain.",
-                e.to_string()
-            ),
+            Err(e) => assert_eq!(PASSWORD_NOT_FOUND, e.to_string()),
         }
     }
 }
diff --git a/apps/desktop/desktop_native/core/src/password/mod.rs b/apps/desktop/desktop_native/core/src/password/mod.rs
index 351e896c40e..93c91072dd2 100644
--- a/apps/desktop/desktop_native/core/src/password/mod.rs
+++ b/apps/desktop/desktop_native/core/src/password/mod.rs
@@ -1,3 +1,5 @@
+pub const PASSWORD_NOT_FOUND: &str = "Password not found.";
+
 #[allow(clippy::module_inception)]
 #[cfg_attr(target_os = "linux", path = "unix.rs")]
 #[cfg_attr(target_os = "windows", path = "windows.rs")]
diff --git a/apps/desktop/desktop_native/core/src/password/unix.rs b/apps/desktop/desktop_native/core/src/password/unix.rs
index a40f4d8ed43..0b1c59e7724 100644
--- a/apps/desktop/desktop_native/core/src/password/unix.rs
+++ b/apps/desktop/desktop_native/core/src/password/unix.rs
@@ -1,3 +1,4 @@
+use crate::password::PASSWORD_NOT_FOUND;
 use anyhow::{anyhow, Result};
 use oo7::dbus::{self};
 use std::collections::HashMap;
@@ -20,7 +21,7 @@ async fn get_password_new(service: &str, account: &str) -> Result<String> {
             let secret = res.secret().await?;
             Ok(String::from_utf8(secret.to_vec())?)
         }
-        None => Err(anyhow!("no result")),
+        None => Err(anyhow!(PASSWORD_NOT_FOUND)),
     }
 }
 
@@ -46,7 +47,7 @@ async fn get_password_legacy(service: &str, account: &str) -> Result<String> {
             set_password(service, account, &secret_string).await?;
             Ok(secret_string)
         }
-        None => Err(anyhow!("no result")),
+        None => Err(anyhow!(PASSWORD_NOT_FOUND)),
     }
 }
 
@@ -152,7 +153,7 @@ mod tests {
             Ok(_) => {
                 panic!("Got a result")
             }
-            Err(e) => assert_eq!("no result", e.to_string()),
+            Err(e) => assert_eq!(PASSWORD_NOT_FOUND, e.to_string()),
         }
     }
 
@@ -160,7 +161,7 @@ mod tests {
     async fn test_error_no_password() {
         match get_password("Unknown", "Unknown").await {
             Ok(_) => panic!("Got a result"),
-            Err(e) => assert_eq!("no result", e.to_string()),
+            Err(e) => assert_eq!(PASSWORD_NOT_FOUND, e.to_string()),
         }
     }
 }
diff --git a/apps/desktop/desktop_native/core/src/password/windows.rs b/apps/desktop/desktop_native/core/src/password/windows.rs
index f0dcc3fb1eb..ee2361a832f 100644
--- a/apps/desktop/desktop_native/core/src/password/windows.rs
+++ b/apps/desktop/desktop_native/core/src/password/windows.rs
@@ -1,3 +1,4 @@
+use crate::password::PASSWORD_NOT_FOUND;
 use anyhow::{anyhow, Result};
 use widestring::{U16CString, U16String};
 use windows::{
@@ -79,7 +80,9 @@ pub async fn set_password(service: &str, account: &str, password: &str) -> Resul
 pub async fn delete_password(service: &str, account: &str) -> Result<()> {
     let target_name = U16CString::from_str(target_name(service, account))?;
 
-    unsafe { CredDeleteW(PCWSTR(target_name.as_ptr()), CRED_TYPE_GENERIC, None)? };
+    let result = unsafe { CredDeleteW(PCWSTR(target_name.as_ptr()), CRED_TYPE_GENERIC, None) };
+
+    result.map_err(|e| anyhow!(convert_error(e)))?;
 
     Ok(())
 }
@@ -95,7 +98,7 @@ fn target_name(service: &str, account: &str) -> String {
 // Convert the internal WIN32 errors to descriptive messages
 fn convert_error(e: windows::core::Error) -> String {
     if e == ERROR_NOT_FOUND.into() {
-        return "Password not found.".to_string();
+        return PASSWORD_NOT_FOUND.to_string();
     }
     e.to_string()
 }
@@ -122,7 +125,7 @@ mod tests {
         // Ensure password is deleted
         match get_password("BitwardenTest", "BitwardenTest").await {
             Ok(_) => panic!("Got a result"),
-            Err(e) => assert_eq!("Password not found.", e.to_string()),
+            Err(e) => assert_eq!(PASSWORD_NOT_FOUND, e.to_string()),
         }
     }
 
@@ -130,7 +133,7 @@ mod tests {
     async fn test_error_no_password() {
         match get_password("BitwardenTest", "BitwardenTest").await {
             Ok(_) => panic!("Got a result"),
-            Err(e) => assert_eq!("Password not found.", e.to_string()),
+            Err(e) => assert_eq!(PASSWORD_NOT_FOUND, e.to_string()),
         }
     }
 }
diff --git a/apps/desktop/desktop_native/napi/index.d.ts b/apps/desktop/desktop_native/napi/index.d.ts
index b3c6f715e98..cb9430290e3 100644
--- a/apps/desktop/desktop_native/napi/index.d.ts
+++ b/apps/desktop/desktop_native/napi/index.d.ts
@@ -4,18 +4,31 @@
 /* auto-generated by NAPI-RS */
 
 export declare namespace passwords {
-  /** Fetch the stored password from the keychain. */
+  /** The error message returned when a password is not found during retrieval or deletion. */
+  export const PASSWORD_NOT_FOUND: string
+  /**
+   * Fetch the stored password from the keychain.
+   * Throws {@link Error} with message {@link PASSWORD_NOT_FOUND} if the password does not exist.
+   */
   export function getPassword(service: string, account: string): Promise<string>
   /** Save the password to the keychain. Adds an entry if none exists otherwise updates the existing entry. */
   export function setPassword(service: string, account: string, password: string): Promise<void>
-  /** Delete the stored password from the keychain. */
+  /**
+   * Delete the stored password from the keychain.
+   * Throws {@link Error} with message {@link PASSWORD_NOT_FOUND} if the password does not exist.
+   */
   export function deletePassword(service: string, account: string): Promise<void>
+  /** Checks if the os secure storage is available */
   export function isAvailable(): Promise<boolean>
 }
 export declare namespace biometrics {
   export function prompt(hwnd: Buffer, message: string): Promise<boolean>
   export function available(): Promise<boolean>
   export function setBiometricSecret(service: string, account: string, secret: string, keyMaterial: KeyMaterial | undefined | null, ivB64: string): Promise<string>
+  /**
+   * Retrieves the biometric secret for the given service and account.
+   * Throws Error with message [`passwords::PASSWORD_NOT_FOUND`] if the secret does not exist.
+   */
   export function getBiometricSecret(service: string, account: string, keyMaterial?: KeyMaterial | undefined | null): Promise<string>
   /**
    * Derives key material from biometric data. Returns a string encoded with a
diff --git a/apps/desktop/desktop_native/napi/src/lib.rs b/apps/desktop/desktop_native/napi/src/lib.rs
index 079872a3b03..e538dc8d432 100644
--- a/apps/desktop/desktop_native/napi/src/lib.rs
+++ b/apps/desktop/desktop_native/napi/src/lib.rs
@@ -6,7 +6,12 @@ mod registry;
 
 #[napi]
 pub mod passwords {
+    /// The error message returned when a password is not found during retrieval or deletion.
+    #[napi]
+    pub const PASSWORD_NOT_FOUND: &str = desktop_core::password::PASSWORD_NOT_FOUND;
+
     /// Fetch the stored password from the keychain.
+    /// Throws {@link Error} with message {@link PASSWORD_NOT_FOUND} if the password does not exist.
     #[napi]
     pub async fn get_password(service: String, account: String) -> napi::Result<String> {
         desktop_core::password::get_password(&service, &account)
@@ -27,6 +32,7 @@ pub mod passwords {
     }
 
     /// Delete the stored password from the keychain.
+    /// Throws {@link Error} with message {@link PASSWORD_NOT_FOUND} if the password does not exist.
     #[napi]
     pub async fn delete_password(service: String, account: String) -> napi::Result<()> {
         desktop_core::password::delete_password(&service, &account)
@@ -34,7 +40,7 @@ pub mod passwords {
             .map_err(|e| napi::Error::from_reason(e.to_string()))
     }
 
-    // Checks if the os secure storage is available
+    /// Checks if the os secure storage is available
     #[napi]
     pub async fn is_available() -> napi::Result<bool> {
         desktop_core::password::is_available()
@@ -84,6 +90,8 @@ pub mod biometrics {
         .map_err(|e| napi::Error::from_reason(e.to_string()))
     }
 
+    /// Retrieves the biometric secret for the given service and account.
+    /// Throws Error with message [`passwords::PASSWORD_NOT_FOUND`] if the secret does not exist.
     #[napi]
     pub async fn get_biometric_secret(
         service: String,
diff --git a/apps/desktop/src/key-management/biometrics/main-biometrics-ipc.listener.ts b/apps/desktop/src/key-management/biometrics/main-biometrics-ipc.listener.ts
index e270c4cc50f..d4ce01f53f4 100644
--- a/apps/desktop/src/key-management/biometrics/main-biometrics-ipc.listener.ts
+++ b/apps/desktop/src/key-management/biometrics/main-biometrics-ipc.listener.ts
@@ -55,7 +55,7 @@ export class MainBiometricsIPCListener {
             return;
         }
       } catch (e) {
-        this.logService.info(e);
+        this.logService.error("[Main Biometrics IPC Listener] %s failed", message.action, e);
       }
     });
   }
diff --git a/apps/desktop/src/key-management/biometrics/main-biometrics.service.ts b/apps/desktop/src/key-management/biometrics/main-biometrics.service.ts
index a6a0e532655..1de8e3cd12d 100644
--- a/apps/desktop/src/key-management/biometrics/main-biometrics.service.ts
+++ b/apps/desktop/src/key-management/biometrics/main-biometrics.service.ts
@@ -40,7 +40,7 @@ export class MainBiometricsService extends DesktopBiometricsService {
     } else if (platform === "darwin") {
       // eslint-disable-next-line
       const OsBiometricsServiceMac = require("./os-biometrics-mac.service").default;
-      this.osBiometricsService = new OsBiometricsServiceMac(this.i18nService);
+      this.osBiometricsService = new OsBiometricsServiceMac(this.i18nService, this.logService);
     } else if (platform === "linux") {
       // eslint-disable-next-line
       const OsBiometricsServiceLinux = require("./os-biometrics-linux.service").default;
@@ -48,6 +48,7 @@ export class MainBiometricsService extends DesktopBiometricsService {
         this.biometricStateService,
         this.encryptService,
         this.cryptoFunctionService,
+        this.logService,
       );
     } else {
       throw new Error("Unsupported platform");
diff --git a/apps/desktop/src/key-management/biometrics/os-biometrics-linux.service.spec.ts b/apps/desktop/src/key-management/biometrics/os-biometrics-linux.service.spec.ts
new file mode 100644
index 00000000000..64af0cc625e
--- /dev/null
+++ b/apps/desktop/src/key-management/biometrics/os-biometrics-linux.service.spec.ts
@@ -0,0 +1,86 @@
+import { mock } from "jest-mock-extended";
+
+import { CryptoFunctionService } from "@bitwarden/common/key-management/crypto/abstractions/crypto-function.service";
+import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
+import { UserId } from "@bitwarden/common/types/guid";
+import { passwords } from "@bitwarden/desktop-napi";
+import { BiometricStateService } from "@bitwarden/key-management";
+
+import OsBiometricsServiceLinux from "./os-biometrics-linux.service";
+
+jest.mock("@bitwarden/desktop-napi", () => ({
+  biometrics: {
+    setBiometricSecret: jest.fn(),
+    getBiometricSecret: jest.fn(),
+    deleteBiometricSecret: jest.fn(),
+    prompt: jest.fn(),
+    available: jest.fn(),
+    deriveKeyMaterial: jest.fn(),
+  },
+  passwords: {
+    deletePassword: jest.fn(),
+    getPassword: jest.fn(),
+    isAvailable: jest.fn(),
+    PASSWORD_NOT_FOUND: "Password not found",
+  },
+}));
+
+describe("OsBiometricsServiceLinux", () => {
+  let service: OsBiometricsServiceLinux;
+  let logService: LogService;
+
+  const mockUserId = "test-user-id" as UserId;
+
+  beforeEach(() => {
+    const biometricStateService = mock<BiometricStateService>();
+    const encryptService = mock<EncryptService>();
+    const cryptoFunctionService = mock<CryptoFunctionService>();
+    logService = mock<LogService>();
+    service = new OsBiometricsServiceLinux(
+      biometricStateService,
+      encryptService,
+      cryptoFunctionService,
+      logService,
+    );
+  });
+
+  afterEach(() => {
+    jest.clearAllMocks();
+  });
+
+  describe("deleteBiometricKey", () => {
+    const serviceName = "Bitwarden_biometric";
+    const keyName = "test-user-id_user_biometric";
+
+    it("should delete biometric key successfully", async () => {
+      await service.deleteBiometricKey(mockUserId);
+
+      expect(passwords.deletePassword).toHaveBeenCalledWith(serviceName, keyName);
+    });
+
+    it("should not throw error if key not found", async () => {
+      passwords.deletePassword = jest
+        .fn()
+        .mockRejectedValueOnce(new Error(passwords.PASSWORD_NOT_FOUND));
+
+      await service.deleteBiometricKey(mockUserId);
+
+      expect(passwords.deletePassword).toHaveBeenCalledWith(serviceName, keyName);
+      expect(logService.debug).toHaveBeenCalledWith(
+        "[OsBiometricService] Biometric key %s not found for service %s.",
+        keyName,
+        serviceName,
+      );
+    });
+
+    it("should throw error for unexpected errors", async () => {
+      const error = new Error("Unexpected error");
+      passwords.deletePassword = jest.fn().mockRejectedValueOnce(error);
+
+      await expect(service.deleteBiometricKey(mockUserId)).rejects.toThrow(error);
+
+      expect(passwords.deletePassword).toHaveBeenCalledWith(serviceName, keyName);
+    });
+  });
+});
diff --git a/apps/desktop/src/key-management/biometrics/os-biometrics-linux.service.ts b/apps/desktop/src/key-management/biometrics/os-biometrics-linux.service.ts
index 8d3c8e9795f..3f13682f1b7 100644
--- a/apps/desktop/src/key-management/biometrics/os-biometrics-linux.service.ts
+++ b/apps/desktop/src/key-management/biometrics/os-biometrics-linux.service.ts
@@ -2,6 +2,7 @@ import { spawn } from "child_process";
 
 import { CryptoFunctionService } from "@bitwarden/common/key-management/crypto/abstractions/crypto-function.service";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
 import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
@@ -42,6 +43,7 @@ export default class OsBiometricsServiceLinux implements OsBiometricService {
     private biometricStateService: BiometricStateService,
     private encryptService: EncryptService,
     private cryptoFunctionService: CryptoFunctionService,
+    private logService: LogService,
   ) {}
   private _iv: string | null = null;
   // Use getKeyMaterial helper instead of direct access
@@ -62,7 +64,19 @@ export default class OsBiometricsServiceLinux implements OsBiometricService {
     );
   }
   async deleteBiometricKey(userId: UserId): Promise<void> {
-    await passwords.deletePassword(SERVICE, getLookupKeyForUser(userId));
+    try {
+      await passwords.deletePassword(SERVICE, getLookupKeyForUser(userId));
+    } catch (e) {
+      if (e instanceof Error && e.message === passwords.PASSWORD_NOT_FOUND) {
+        this.logService.debug(
+          "[OsBiometricService] Biometric key %s not found for service %s.",
+          getLookupKeyForUser(userId),
+          SERVICE,
+        );
+      } else {
+        throw e;
+      }
+    }
   }
 
   async getBiometricKey(userId: UserId): Promise<SymmetricCryptoKey | null> {
diff --git a/apps/desktop/src/key-management/biometrics/os-biometrics-mac.service.spec.ts b/apps/desktop/src/key-management/biometrics/os-biometrics-mac.service.spec.ts
new file mode 100644
index 00000000000..6d20095d8bb
--- /dev/null
+++ b/apps/desktop/src/key-management/biometrics/os-biometrics-mac.service.spec.ts
@@ -0,0 +1,78 @@
+import { mock } from "jest-mock-extended";
+
+import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
+import { UserId } from "@bitwarden/common/types/guid";
+import { passwords } from "@bitwarden/desktop-napi";
+
+import OsBiometricsServiceMac from "./os-biometrics-mac.service";
+
+jest.mock("@bitwarden/desktop-napi", () => ({
+  biometrics: {
+    setBiometricSecret: jest.fn(),
+    getBiometricSecret: jest.fn(),
+    deleteBiometricSecret: jest.fn(),
+    prompt: jest.fn(),
+    available: jest.fn(),
+    deriveKeyMaterial: jest.fn(),
+  },
+  passwords: {
+    deletePassword: jest.fn(),
+    getPassword: jest.fn(),
+    isAvailable: jest.fn(),
+    PASSWORD_NOT_FOUND: "Password not found",
+  },
+}));
+
+describe("OsBiometricsServiceMac", () => {
+  let service: OsBiometricsServiceMac;
+  let i18nService: I18nService;
+  let logService: LogService;
+
+  const mockUserId = "test-user-id" as UserId;
+
+  beforeEach(() => {
+    i18nService = mock<I18nService>();
+    logService = mock<LogService>();
+    service = new OsBiometricsServiceMac(i18nService, logService);
+  });
+
+  afterEach(() => {
+    jest.clearAllMocks();
+  });
+
+  describe("deleteBiometricKey", () => {
+    const serviceName = "Bitwarden_biometric";
+    const keyName = "test-user-id_user_biometric";
+
+    it("should delete biometric key successfully", async () => {
+      await service.deleteBiometricKey(mockUserId);
+
+      expect(passwords.deletePassword).toHaveBeenCalledWith(serviceName, keyName);
+    });
+
+    it("should not throw error if key not found", async () => {
+      passwords.deletePassword = jest
+        .fn()
+        .mockRejectedValueOnce(new Error(passwords.PASSWORD_NOT_FOUND));
+
+      await service.deleteBiometricKey(mockUserId);
+
+      expect(passwords.deletePassword).toHaveBeenCalledWith(serviceName, keyName);
+      expect(logService.debug).toHaveBeenCalledWith(
+        "[OsBiometricService] Biometric key %s not found for service %s.",
+        keyName,
+        serviceName,
+      );
+    });
+
+    it("should throw error for unexpected errors", async () => {
+      const error = new Error("Unexpected error");
+      passwords.deletePassword = jest.fn().mockRejectedValueOnce(error);
+
+      await expect(service.deleteBiometricKey(mockUserId)).rejects.toThrow(error);
+
+      expect(passwords.deletePassword).toHaveBeenCalledWith(serviceName, keyName);
+    });
+  });
+});
diff --git a/apps/desktop/src/key-management/biometrics/os-biometrics-mac.service.ts b/apps/desktop/src/key-management/biometrics/os-biometrics-mac.service.ts
index 004495b6da9..1dc64f1bcd5 100644
--- a/apps/desktop/src/key-management/biometrics/os-biometrics-mac.service.ts
+++ b/apps/desktop/src/key-management/biometrics/os-biometrics-mac.service.ts
@@ -1,6 +1,7 @@
 import { systemPreferences } from "electron";
 
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import { UserId } from "@bitwarden/common/types/guid";
 import { passwords } from "@bitwarden/desktop-napi";
@@ -14,7 +15,10 @@ function getLookupKeyForUser(userId: UserId): string {
 }
 
 export default class OsBiometricsServiceMac implements OsBiometricService {
-  constructor(private i18nservice: I18nService) {}
+  constructor(
+    private i18nservice: I18nService,
+    private logService: LogService,
+  ) {}
 
   async supportsBiometrics(): Promise<boolean> {
     return systemPreferences.canPromptTouchID();
@@ -52,7 +56,19 @@ export default class OsBiometricsServiceMac implements OsBiometricService {
   }
 
   async deleteBiometricKey(user: UserId): Promise<void> {
-    return await passwords.deletePassword(SERVICE, getLookupKeyForUser(user));
+    try {
+      return await passwords.deletePassword(SERVICE, getLookupKeyForUser(user));
+    } catch (e) {
+      if (e instanceof Error && e.message === passwords.PASSWORD_NOT_FOUND) {
+        this.logService.debug(
+          "[OsBiometricService] Biometric key %s not found for service %s.",
+          getLookupKeyForUser(user),
+          SERVICE,
+        );
+      } else {
+        throw e;
+      }
+    }
   }
 
   private async valueUpToDate(user: UserId, key: SymmetricCryptoKey): Promise<boolean> {
diff --git a/apps/desktop/src/key-management/biometrics/os-biometrics-windows.service.spec.ts b/apps/desktop/src/key-management/biometrics/os-biometrics-windows.service.spec.ts
index d0fd8682f2a..674d97bf696 100644
--- a/apps/desktop/src/key-management/biometrics/os-biometrics-windows.service.spec.ts
+++ b/apps/desktop/src/key-management/biometrics/os-biometrics-windows.service.spec.ts
@@ -6,8 +6,11 @@ import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.servic
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import { UserId } from "@bitwarden/common/types/guid";
+import { passwords } from "@bitwarden/desktop-napi";
 import { BiometricsStatus, BiometricStateService } from "@bitwarden/key-management";
 
+import { WindowMain } from "../../main/window.main";
+
 import OsBiometricsServiceWindows from "./os-biometrics-windows.service";
 
 jest.mock("@bitwarden/desktop-napi", () => ({
@@ -15,28 +18,37 @@ jest.mock("@bitwarden/desktop-napi", () => ({
     available: jest.fn(),
     setBiometricSecret: jest.fn(),
     getBiometricSecret: jest.fn(),
-    deriveKeyMaterial: jest.fn(),
+    deleteBiometricSecret: jest.fn(),
     prompt: jest.fn(),
+    deriveKeyMaterial: jest.fn(),
   },
   passwords: {
     getPassword: jest.fn(),
     deletePassword: jest.fn(),
+    isAvailable: jest.fn(),
+    PASSWORD_NOT_FOUND: "Password not found",
   },
 }));
 
 describe("OsBiometricsServiceWindows", () => {
   let service: OsBiometricsServiceWindows;
+  let i18nService: I18nService;
+  let windowMain: WindowMain;
+  let logService: LogService;
   let biometricStateService: BiometricStateService;
 
+  const mockUserId = "test-user-id" as UserId;
+
   beforeEach(() => {
-    const i18nService = mock<I18nService>();
-    const logService = mock<LogService>();
+    i18nService = mock<I18nService>();
+    windowMain = mock<WindowMain>();
+    logService = mock<LogService>();
     biometricStateService = mock<BiometricStateService>();
     const encryptionService = mock<EncryptService>();
     const cryptoFunctionService = mock<CryptoFunctionService>();
     service = new OsBiometricsServiceWindows(
       i18nService,
-      null,
+      windowMain,
       logService,
       biometricStateService,
       encryptionService,
@@ -81,7 +93,7 @@ describe("OsBiometricsServiceWindows", () => {
       cryptoFunctionService = mock<CryptoFunctionService>();
       service = new OsBiometricsServiceWindows(
         mock<I18nService>(),
-        null,
+        windowMain,
         mock<LogService>(),
         biometricStateService,
         encryptionService,
@@ -140,4 +152,97 @@ describe("OsBiometricsServiceWindows", () => {
       expect((service as any).clientKeyHalves.get(userId.toString())).toBeNull();
     });
   });
+
+  describe("deleteBiometricKey", () => {
+    const serviceName = "Bitwarden_biometric";
+    const keyName = "test-user-id_user_biometric";
+    const witnessKeyName = "test-user-id_user_biometric_witness";
+
+    it("should delete biometric key successfully", async () => {
+      await service.deleteBiometricKey(mockUserId);
+
+      expect(passwords.deletePassword).toHaveBeenCalledWith(serviceName, keyName);
+      expect(passwords.deletePassword).toHaveBeenCalledWith(serviceName, witnessKeyName);
+    });
+
+    it.each([
+      [false, false],
+      [false, true],
+      [true, false],
+    ])(
+      "should not throw error if key found: %s and witness key found: %s",
+      async (keyFound, witnessKeyFound) => {
+        passwords.deletePassword = jest.fn().mockImplementation((_, account) => {
+          if (account === keyName) {
+            if (!keyFound) {
+              throw new Error(passwords.PASSWORD_NOT_FOUND);
+            }
+            return Promise.resolve();
+          }
+          if (account === witnessKeyName) {
+            if (!witnessKeyFound) {
+              throw new Error(passwords.PASSWORD_NOT_FOUND);
+            }
+            return Promise.resolve();
+          }
+          throw new Error("Unexpected key");
+        });
+
+        await service.deleteBiometricKey(mockUserId);
+
+        expect(passwords.deletePassword).toHaveBeenCalledWith(serviceName, keyName);
+        expect(passwords.deletePassword).toHaveBeenCalledWith(serviceName, witnessKeyName);
+        if (!keyFound) {
+          expect(logService.debug).toHaveBeenCalledWith(
+            "[OsBiometricService] Biometric key %s not found for service %s.",
+            keyName,
+            serviceName,
+          );
+        }
+        if (!witnessKeyFound) {
+          expect(logService.debug).toHaveBeenCalledWith(
+            "[OsBiometricService] Biometric witness key %s not found for service %s.",
+            witnessKeyName,
+            serviceName,
+          );
+        }
+      },
+    );
+
+    it("should throw error when deletePassword for key throws unexpected errors", async () => {
+      const error = new Error("Unexpected error");
+      passwords.deletePassword = jest.fn().mockImplementation((_, account) => {
+        if (account === keyName) {
+          throw error;
+        }
+        if (account === witnessKeyName) {
+          return Promise.resolve();
+        }
+        throw new Error("Unexpected key");
+      });
+
+      await expect(service.deleteBiometricKey(mockUserId)).rejects.toThrow(error);
+
+      expect(passwords.deletePassword).toHaveBeenCalledWith(serviceName, keyName);
+      expect(passwords.deletePassword).not.toHaveBeenCalledWith(serviceName, witnessKeyName);
+    });
+
+    it("should throw error when deletePassword for witness key throws unexpected errors", async () => {
+      const error = new Error("Unexpected error");
+      passwords.deletePassword = jest.fn().mockImplementation((_, account) => {
+        if (account === keyName) {
+          return Promise.resolve();
+        }
+        if (account === witnessKeyName) {
+          throw error;
+        }
+        throw new Error("Unexpected key");
+      });
+
+      await expect(service.deleteBiometricKey(mockUserId)).rejects.toThrow(error);
+
+      expect(passwords.deletePassword).toHaveBeenCalledWith(serviceName, keyName);
+      expect(passwords.deletePassword).toHaveBeenCalledWith(serviceName, witnessKeyName);
+    });
+  });
 });
diff --git a/apps/desktop/src/key-management/biometrics/os-biometrics-windows.service.ts b/apps/desktop/src/key-management/biometrics/os-biometrics-windows.service.ts
index dc4f8674d7f..b1726644b0a 100644
--- a/apps/desktop/src/key-management/biometrics/os-biometrics-windows.service.ts
+++ b/apps/desktop/src/key-management/biometrics/os-biometrics-windows.service.ts
@@ -116,8 +116,32 @@ export default class OsBiometricsServiceWindows implements OsBiometricService {
   }
 
   async deleteBiometricKey(userId: UserId): Promise<void> {
-    await passwords.deletePassword(SERVICE, getLookupKeyForUser(userId));
-    await passwords.deletePassword(SERVICE, getLookupKeyForUser(userId) + KEY_WITNESS_SUFFIX);
+    try {
+      await passwords.deletePassword(SERVICE, getLookupKeyForUser(userId));
+    } catch (e) {
+      if (e instanceof Error && e.message === passwords.PASSWORD_NOT_FOUND) {
+        this.logService.debug(
+          "[OsBiometricService] Biometric key %s not found for service %s.",
+          getLookupKeyForUser(userId),
+          SERVICE,
+        );
+      } else {
+        throw e;
+      }
+    }
+    try {
+      await passwords.deletePassword(SERVICE, getLookupKeyForUser(userId) + KEY_WITNESS_SUFFIX);
+    } catch (e) {
+      if (e instanceof Error && e.message === passwords.PASSWORD_NOT_FOUND) {
+        this.logService.debug(
+          "[OsBiometricService] Biometric witness key %s not found for service %s.",
+          getLookupKeyForUser(userId) + KEY_WITNESS_SUFFIX,
+          SERVICE,
+        );
+      } else {
+        throw e;
+      }
+    }
   }
 
   async authenticateBiometric(): Promise<boolean> {
@@ -227,8 +251,19 @@ export default class OsBiometricsServiceWindows implements OsBiometricService {
         storageKey + KEY_WITNESS_SUFFIX,
         witnessKeyMaterial,
       );
-    } catch {
-      this.logService.debug("Error retrieving witness key, assuming value is not up to date.");
+    } catch (e) {
+      if (e instanceof Error && e.message === passwords.PASSWORD_NOT_FOUND) {
+        this.logService.debug(
+          "[OsBiometricService] Biometric witness key %s not found for service %s, value is not up to date.",
+          storageKey + KEY_WITNESS_SUFFIX,
+          service,
+        );
+      } else {
+        this.logService.error(
+          "[OsBiometricService] Error retrieving witness key, assuming value is not up to date.",
+          e,
+        );
+      }
       return false;
     }
 
diff --git a/apps/desktop/src/platform/main/desktop-credential-storage-listener.ts b/apps/desktop/src/platform/main/desktop-credential-storage-listener.ts
index ca4d9a2d3ca..6922911e367 100644
--- a/apps/desktop/src/platform/main/desktop-credential-storage-listener.ts
+++ b/apps/desktop/src/platform/main/desktop-credential-storage-listener.ts
@@ -35,13 +35,13 @@ export class DesktopCredentialStorageListener {
         }
         return val;
       } catch (e) {
-        if (
-          e.message === "Password not found." ||
-          e.message === "The specified item could not be found in the keychain."
-        ) {
+        if (e instanceof Error && e.message === passwords.PASSWORD_NOT_FOUND) {
+          if (message.action === "hasPassword") {
+            return false;
+          }
           return null;
         }
-        this.logService.info(e);
+        this.logService.error("[Credential Storage Listener] %s failed", message.action, e);
       }
     });
   }

From 043d8b353315ae01d64aa84c12d0cf8b8ed33ea5 Mon Sep 17 00:00:00 2001
From: cyprain-okeke <108260115+cyprain-okeke@users.noreply.github.com>
Date: Mon, 30 Jun 2025 13:58:41 +0100
Subject: [PATCH 018/239] Dont skip payment details if triallength is zero
 (#15268)

---
 .../complete-trial-initiation.component.html              | 8 ++++++--
 .../complete-trial-initiation.component.ts                | 3 ++-
 2 files changed, 8 insertions(+), 3 deletions(-)

diff --git a/apps/web/src/app/billing/trial-initiation/complete-trial-initiation/complete-trial-initiation.component.html b/apps/web/src/app/billing/trial-initiation/complete-trial-initiation/complete-trial-initiation.component.html
index 7f093842b6a..7a1ca2cd83d 100644
--- a/apps/web/src/app/billing/trial-initiation/complete-trial-initiation/complete-trial-initiation.component.html
+++ b/apps/web/src/app/billing/trial-initiation/complete-trial-initiation/complete-trial-initiation.component.html
@@ -38,13 +38,17 @@
           [loading]="loading && (trialPaymentOptional$ | async)"
           (click)="orgNameEntrySubmit()"
         >
-          {{ (trialPaymentOptional$ | async) ? ("startTrial" | i18n) : ("next" | i18n) }}
+          {{
+            (trialPaymentOptional$ | async) && trialLength > 0
+              ? ("startTrial" | i18n)
+              : ("next" | i18n)
+          }}
         </button>
       </app-vertical-step>
       <app-vertical-step
         label="Billing"
         [subLabel]="billingSubLabel"
-        *ngIf="!(trialPaymentOptional$ | async) && !isSecretsManagerFree"
+        *ngIf="(trialPaymentOptional$ | async) && trialLength === 0 && !isSecretsManagerFree"
       >
         <app-trial-billing-step
           *ngIf="stepper.selectedIndex === 2"
diff --git a/apps/web/src/app/billing/trial-initiation/complete-trial-initiation/complete-trial-initiation.component.ts b/apps/web/src/app/billing/trial-initiation/complete-trial-initiation/complete-trial-initiation.component.ts
index d730d7db775..b965f816a76 100644
--- a/apps/web/src/app/billing/trial-initiation/complete-trial-initiation/complete-trial-initiation.component.ts
+++ b/apps/web/src/app/billing/trial-initiation/complete-trial-initiation/complete-trial-initiation.component.ts
@@ -225,7 +225,8 @@ export class CompleteTrialInitiationComponent implements OnInit, OnDestroy {
   async orgNameEntrySubmit(): Promise<void> {
     const isTrialPaymentOptional = await firstValueFrom(this.trialPaymentOptional$);
 
-    if (isTrialPaymentOptional) {
+    /** Only skip payment if the flag is on AND trialLength > 0 */
+    if (isTrialPaymentOptional && this.trialLength > 0) {
       await this.createOrganizationOnTrial();
     } else {
       await this.conditionallyCreateOrganization();

From 0772e5c316536c567a503d8a217c770afbdc12c8 Mon Sep 17 00:00:00 2001
From: Github Actions <actions@github.com>
Date: Mon, 30 Jun 2025 13:13:00 +0000
Subject: [PATCH 019/239] Bumped client version(s)

---
 apps/web/package.json | 2 +-
 package-lock.json     | 8 ++++++--
 2 files changed, 7 insertions(+), 3 deletions(-)

diff --git a/apps/web/package.json b/apps/web/package.json
index 4dfcd58cce4..f672e44a80b 100644
--- a/apps/web/package.json
+++ b/apps/web/package.json
@@ -1,6 +1,6 @@
 {
   "name": "@bitwarden/web-vault",
-  "version": "2025.6.1",
+  "version": "2025.7.0",
   "scripts": {
     "build:oss": "cross-env NODE_OPTIONS=\"--max-old-space-size=8192\" webpack",
     "build:bit": "cross-env NODE_OPTIONS=\"--max-old-space-size=8192\" webpack -c ../../bitwarden_license/bit-web/webpack.config.js",
diff --git a/package-lock.json b/package-lock.json
index c83580dd0d5..0855df67e8b 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -191,7 +191,7 @@
         "webpack-node-externals": "3.0.0"
       },
       "engines": {
-        "node": "~20",
+        "node": "~22",
         "npm": "~10"
       }
     },
@@ -235,6 +235,10 @@
       },
       "bin": {
         "bw": "build/bw.js"
+      },
+      "engines": {
+        "node": "~20",
+        "npm": "~10"
       }
     },
     "apps/cli/node_modules/define-lazy-prop": {
@@ -300,7 +304,7 @@
     },
     "apps/web": {
       "name": "@bitwarden/web-vault",
-      "version": "2025.6.1"
+      "version": "2025.7.0"
     },
     "libs/admin-console": {
       "name": "@bitwarden/admin-console",

From 04ddea5bf3bd75400455d13bedf7760ea2b30a4c Mon Sep 17 00:00:00 2001
From: Vicki League <vleague@bitwarden.com>
Date: Mon, 30 Jun 2025 09:39:39 -0400
Subject: [PATCH 020/239] [CL-473] Adjust popup page max width and scroll
 containers (#14853)

---
 .../platform/popup/layout/popup-layout.mdx    |  19 ++++
 .../popup/layout/popup-layout.stories.ts      | 100 ++++++++++++++++--
 .../popup/layout/popup-page.component.html    |  30 ++++--
 .../popup/layout/popup-page.component.ts      |   3 +-
 apps/browser/src/popup/scss/base.scss         |   8 --
 .../vault-list-items-container.component.html |   5 +-
 .../vault-list-items-container.component.ts   |   2 +
 .../vault-v2/vault-v2.component.html          |  10 +-
 .../src/stories/virtual-scrolling.mdx         |  42 +++++++-
 libs/components/src/tw-theme.css              |   2 +
 10 files changed, 181 insertions(+), 40 deletions(-)

diff --git a/apps/browser/src/platform/popup/layout/popup-layout.mdx b/apps/browser/src/platform/popup/layout/popup-layout.mdx
index 017ee20b344..a2725350a8f 100644
--- a/apps/browser/src/platform/popup/layout/popup-layout.mdx
+++ b/apps/browser/src/platform/popup/layout/popup-layout.mdx
@@ -54,6 +54,9 @@ page looks nice when the extension is popped out.
     `false`.
 - `loadingText`
   - Custom text to be applied to the loading element for screenreaders only. Defaults to "Loading".
+- `disablePadding`
+  - When `true`, disables the padding of the scrollable region inside of `main`. You will need to
+    add your own padding to the element you place inside of this area.
 
 Basic usage example:
 
@@ -169,6 +172,22 @@ When the browser extension is popped out, the "popout" button should not be pass
 
 <Canvas of={stories.PoppedOut} />
 
+## With Virtual Scroll
+
+If you are using a virtual scrolling container inside of the popup page, you'll want to apply the
+`bitScrollLayout` directive to the `cdk-virtual-scroll-viewport` element. This tells the virtual
+scroll viewport to use the popup page's scroll layout div as the scrolling container.
+
+See the code in the example below.
+
+<Canvas of={stories.WithVirtualScrollChild} />
+
+### Known Virtual Scroll Issues
+
+See [Virtual Scrolling](?path=/docs/documentation-virtual-scrolling--docs#known-footgun) for more
+information about how to structure virtual scrolling containers with layout components and avoid a
+known issue with template construction.
+
 # Other stories
 
 ## Centered Content
diff --git a/apps/browser/src/platform/popup/layout/popup-layout.stories.ts b/apps/browser/src/platform/popup/layout/popup-layout.stories.ts
index aecbaf673dc..894ab13dd19 100644
--- a/apps/browser/src/platform/popup/layout/popup-layout.stories.ts
+++ b/apps/browser/src/platform/popup/layout/popup-layout.stories.ts
@@ -1,5 +1,4 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
+import { ScrollingModule } from "@angular/cdk/scrolling";
 import { CommonModule } from "@angular/common";
 import { Component, importProvidersFrom } from "@angular/core";
 import { RouterModule } from "@angular/router";
@@ -20,6 +19,7 @@ import {
   NoItemsModule,
   SearchModule,
   SectionComponent,
+  ScrollLayoutDirective,
 } from "@bitwarden/components";
 
 import { PopupRouterCacheService } from "../view-cache/popup-router-cache.service";
@@ -39,6 +39,17 @@ import { PopupTabNavigationComponent } from "./popup-tab-navigation.component";
 })
 class ExtensionContainerComponent {}
 
+@Component({
+  selector: "extension-popped-container",
+  template: `
+    <div class="tw-h-[640px] tw-w-[900px] tw-border tw-border-solid tw-border-secondary-300">
+      <ng-content></ng-content>
+    </div>
+  `,
+  standalone: true,
+})
+class ExtensionPoppedContainerComponent {}
+
 @Component({
   selector: "vault-placeholder",
   template: /*html*/ `
@@ -295,6 +306,7 @@ export default {
   decorators: [
     moduleMetadata({
       imports: [
+        ScrollLayoutDirective,
         PopupTabNavigationComponent,
         PopupHeaderComponent,
         PopupPageComponent,
@@ -302,6 +314,7 @@ export default {
         CommonModule,
         RouterModule,
         ExtensionContainerComponent,
+        ExtensionPoppedContainerComponent,
         MockBannerComponent,
         MockSearchComponent,
         MockVaultSubpageComponent,
@@ -312,6 +325,11 @@ export default {
         MockVaultPagePoppedComponent,
         NoItemsModule,
         VaultComponent,
+        ScrollingModule,
+        ItemModule,
+        SectionComponent,
+        IconButtonModule,
+        BadgeModule,
       ],
       providers: [
         {
@@ -495,7 +513,21 @@ export const CompactMode: Story = {
       const compact = canvasEl.querySelector(
         `#${containerId} [data-testid=popup-layout-scroll-region]`,
       );
+
+      if (!compact) {
+        // eslint-disable-next-line
+        console.error(`#${containerId} [data-testid=popup-layout-scroll-region] not found`);
+        return;
+      }
+
       const label = canvasEl.querySelector(`#${containerId} .example-label`);
+
+      if (!label) {
+        // eslint-disable-next-line
+        console.error(`#${containerId} .example-label not found`);
+        return;
+      }
+
       const percentVisible =
         100 -
         Math.round((100 * (compact.scrollHeight - compact.clientHeight)) / compact.scrollHeight);
@@ -510,9 +542,9 @@ export const PoppedOut: Story = {
   render: (args) => ({
     props: args,
     template: /* HTML */ `
-      <div class="tw-h-[640px] tw-w-[900px] tw-border tw-border-solid tw-border-secondary-300">
+      <extension-popped-container>
         <mock-vault-page-popped></mock-vault-page-popped>
-      </div>
+      </extension-popped-container>
     `,
   }),
 };
@@ -560,10 +592,9 @@ export const TransparentHeader: Story = {
     template: /* HTML */ `
       <extension-container>
         <popup-page>
-          <popup-header slot="header" background="alt"
-            ><span class="tw-italic tw-text-main">🤠 Custom Content</span></popup-header
-          >
-
+          <popup-header slot="header" background="alt">
+            <span class="tw-italic tw-text-main">🤠 Custom Content</span>
+          </popup-header>
           <vault-placeholder></vault-placeholder>
         </popup-page>
       </extension-container>
@@ -608,3 +639,56 @@ export const WidthOptions: Story = {
     `,
   }),
 };
+
+export const WithVirtualScrollChild: Story = {
+  render: (args) => ({
+    props: { ...args, data: Array.from(Array(20).keys()) },
+    template: /* HTML */ `
+      <extension-popped-container>
+        <popup-page>
+          <popup-header slot="header" pageTitle="Test"> </popup-header>
+          <mock-search slot="above-scroll-area"></mock-search>
+          <bit-section>
+            @defer (on immediate) {
+            <bit-item-group aria-label="Mock Vault Items">
+              <cdk-virtual-scroll-viewport itemSize="61" bitScrollLayout>
+                <bit-item *cdkVirtualFor="let item of data; index as i">
+                  <button type="button" bit-item-content>
+                    <i
+                      slot="start"
+                      class="bwi bwi-globe tw-text-3xl tw-text-muted"
+                      aria-hidden="true"
+                    ></i>
+                    {{ i }} of {{ data.length - 1 }}
+                    <span slot="secondary">Bar</span>
+                  </button>
+
+                  <ng-container slot="end">
+                    <bit-item-action>
+                      <button type="button" bitBadge variant="primary">Fill</button>
+                    </bit-item-action>
+                    <bit-item-action>
+                      <button
+                        type="button"
+                        bitIconButton="bwi-clone"
+                        aria-label="Copy item"
+                      ></button>
+                    </bit-item-action>
+                    <bit-item-action>
+                      <button
+                        type="button"
+                        bitIconButton="bwi-ellipsis-v"
+                        aria-label="More options"
+                      ></button>
+                    </bit-item-action>
+                  </ng-container>
+                </bit-item>
+              </cdk-virtual-scroll-viewport>
+            </bit-item-group>
+            }
+          </bit-section>
+        </popup-page>
+      </extension-popped-container>
+    `,
+  }),
+};
diff --git a/apps/browser/src/platform/popup/layout/popup-page.component.html b/apps/browser/src/platform/popup/layout/popup-page.component.html
index 2313b942a38..b53ef6e97eb 100644
--- a/apps/browser/src/platform/popup/layout/popup-page.component.html
+++ b/apps/browser/src/platform/popup/layout/popup-page.component.html
@@ -1,29 +1,39 @@
 <ng-content select="[slot=header]"></ng-content>
 <main class="tw-flex-1 tw-overflow-hidden tw-flex tw-flex-col tw-relative tw-bg-background-alt">
   <ng-content select="[slot=full-width-notice]"></ng-content>
+  <!-- 
+    x padding on this container is designed to always be a minimum of 0.75rem (equivalent to tailwind's tw-px-3), or 0.5rem (equivalent
+    to tailwind's tw-px-2) in compact mode, but stretch to fill the remainder of the container when the content reaches a maximum of
+    640px in width (equivalent to tailwind's `sm` breakpoint)
+  -->
   <div
     #nonScrollable
-    class="tw-transition-colors tw-duration-200 tw-border-0 tw-border-b tw-border-solid tw-p-3 bit-compact:tw-p-2"
+    class="tw-transition-colors tw-duration-200 tw-border-0 tw-border-b tw-border-solid tw-py-3 bit-compact:tw-py-2 tw-px-[max(0.75rem,calc((100%-(var(--tw-sm-breakpoint)))/2))] bit-compact:tw-px-[max(0.5rem,calc((100%-(var(--tw-sm-breakpoint)))/2))]"
     [ngClass]="{
-      'tw-invisible !tw-p-0': loading || nonScrollable.childElementCount === 0,
+      'tw-invisible !tw-p-0 !tw-border-none': loading || nonScrollable.childElementCount === 0,
       'tw-border-secondary-300': scrolled(),
       'tw-border-transparent': !scrolled(),
     }"
   >
     <ng-content select="[slot=above-scroll-area]"></ng-content>
   </div>
+  <!-- 
+    x padding on this container is designed to always be a minimum of 0.75rem (equivalent to tailwind's tw-px-3), or 0.5rem (equivalent
+    to tailwind's tw-px-2) in compact mode, but stretch to fill the remainder of the container when the content reaches a maximum of
+    640px in width (equivalent to tailwind's `sm` breakpoint)
+  -->
   <div
-    class="tw-max-w-screen-sm tw-mx-auto tw-overflow-y-auto tw-flex tw-flex-col tw-size-full tw-styled-scrollbar"
+    class="tw-overflow-y-auto tw-size-full tw-styled-scrollbar"
     data-testid="popup-layout-scroll-region"
     (scroll)="handleScroll($event)"
-    [ngClass]="{ 'tw-invisible': loading }"
+    [ngClass]="{
+      'tw-invisible': loading,
+      'tw-py-3 bit-compact:tw-py-2 tw-px-[max(0.75rem,calc((100%-(var(--tw-sm-breakpoint)))/2))] bit-compact:tw-px-[max(0.5rem,calc((100%-(var(--tw-sm-breakpoint)))/2))]':
+        !disablePadding,
+    }"
+    bitScrollLayoutHost
   >
-    <div
-      class="tw-max-w-screen-sm tw-mx-auto tw-flex-1 tw-flex tw-flex-col tw-w-full"
-      [ngClass]="{ 'tw-p-3 bit-compact:tw-p-2': !disablePadding }"
-    >
-      <ng-content></ng-content>
-    </div>
+    <ng-content></ng-content>
   </div>
   <span
     class="tw-absolute tw-inset-0 tw-flex tw-items-center tw-justify-center tw-text-main"
diff --git a/apps/browser/src/platform/popup/layout/popup-page.component.ts b/apps/browser/src/platform/popup/layout/popup-page.component.ts
index 12bd000ca55..e7675978622 100644
--- a/apps/browser/src/platform/popup/layout/popup-page.component.ts
+++ b/apps/browser/src/platform/popup/layout/popup-page.component.ts
@@ -2,6 +2,7 @@ import { CommonModule } from "@angular/common";
 import { booleanAttribute, Component, inject, Input, signal } from "@angular/core";
 
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+import { ScrollLayoutHostDirective } from "@bitwarden/components";
 
 @Component({
   selector: "popup-page",
@@ -9,7 +10,7 @@ import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.servic
   host: {
     class: "tw-h-full tw-flex tw-flex-col tw-overflow-y-hidden",
   },
-  imports: [CommonModule],
+  imports: [CommonModule, ScrollLayoutHostDirective],
 })
 export class PopupPageComponent {
   protected i18nService = inject(I18nService);
diff --git a/apps/browser/src/popup/scss/base.scss b/apps/browser/src/popup/scss/base.scss
index 80ada61f868..2b625678b89 100644
--- a/apps/browser/src/popup/scss/base.scss
+++ b/apps/browser/src/popup/scss/base.scss
@@ -381,14 +381,6 @@ app-root {
   }
 }
 
-// Adds padding on each side of the content if opened in a tab
-@media only screen and (min-width: 601px) {
-  header,
-  main {
-    padding: 0 calc((100% - 500px) / 2);
-  }
-}
-
 main:not(popup-page main) {
   position: absolute;
   top: 44px;
diff --git a/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.html b/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.html
index a55bba622e4..87d13d4d18a 100644
--- a/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.html
+++ b/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.html
@@ -89,10 +89,7 @@
         </h3>
       </ng-container>
 
-      <cdk-virtual-scroll-viewport
-        [itemSize]="itemHeight$ | async"
-        class="tw-overflow-visible [&>.cdk-virtual-scroll-content-wrapper]:[contain:layout_style]"
-      >
+      <cdk-virtual-scroll-viewport [itemSize]="itemHeight$ | async" bitScrollLayout>
         <bit-item *cdkVirtualFor="let cipher of group.ciphers">
           <button
             bit-item-content
diff --git a/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.ts b/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.ts
index 8a11a70097d..7c99e4e68b8 100644
--- a/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.ts
+++ b/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.ts
@@ -42,6 +42,7 @@ import {
   SectionComponent,
   SectionHeaderComponent,
   TypographyModule,
+  ScrollLayoutDirective,
 } from "@bitwarden/components";
 import {
   DecryptionFailureDialogComponent,
@@ -74,6 +75,7 @@ import { ItemMoreOptionsComponent } from "../item-more-options/item-more-options
     ScrollingModule,
     DisclosureComponent,
     DisclosureTriggerForDirective,
+    ScrollLayoutDirective,
   ],
   selector: "app-vault-list-items-container",
   templateUrl: "vault-list-items-container.component.html",
diff --git a/apps/browser/src/vault/popup/components/vault-v2/vault-v2.component.html b/apps/browser/src/vault/popup/components/vault-v2/vault-v2.component.html
index ddd26b77425..a56eef4dfc1 100644
--- a/apps/browser/src/vault/popup/components/vault-v2/vault-v2.component.html
+++ b/apps/browser/src/vault/popup/components/vault-v2/vault-v2.component.html
@@ -1,4 +1,4 @@
-<popup-page [loading]="loading$ | async" disablePadding>
+<popup-page [loading]="loading$ | async">
   <popup-header slot="header" [pageTitle]="'vault' | i18n">
     <ng-container slot="end">
       <app-new-item-dropdown [initialValues]="newItemItemValues$ | async"></app-new-item-dropdown>
@@ -84,11 +84,7 @@
       </div>
     </div>
 
-    <div
-      *ngIf="vaultState === null"
-      cdkVirtualScrollingElement
-      class="tw-h-full tw-p-3 bit-compact:tw-p-2 tw-styled-scrollbar"
-    >
+    <ng-container *ngIf="vaultState === null">
       <app-autofill-vault-list-items></app-autofill-vault-list-items>
       <app-vault-list-items-container
         [title]="'favorites' | i18n"
@@ -103,6 +99,6 @@
         disableSectionMargin
         collapsibleKey="allItems"
       ></app-vault-list-items-container>
-    </div>
+    </ng-container>
   </ng-container>
 </popup-page>
diff --git a/libs/components/src/stories/virtual-scrolling.mdx b/libs/components/src/stories/virtual-scrolling.mdx
index 94a86090dce..ab51d9865db 100644
--- a/libs/components/src/stories/virtual-scrolling.mdx
+++ b/libs/components/src/stories/virtual-scrolling.mdx
@@ -16,7 +16,7 @@ We export a similar directive, `bitScrollLayout`, that integrates with `bit-layo
 and should be used instead of `scrollWindow`.
 
 ```html
-<!-- Descendant of bit-layout -->
+<!-- Descendant of bit-layout or popup-page -->
 <cdk-virtual-scroll-viewport bitScrollLayout>
   <!-- virtual scroll implementation here -->
 </cdk-virtual-scroll-viewport>
@@ -27,7 +27,10 @@ and should be used instead of `scrollWindow`.
 Due to the initialization order of Angular components and their templates, `bitScrollLayout` will
 error if it is used _in the same template_ as the layout component:
 
+With `bit-layout`:
+
 ```html
+<!-- Will cause `bitScrollLayout` to error -->
 <bit-layout>
   <cdk-virtual-scroll-viewport bitScrollLayout>
     <!-- virtual scroll implementation here -->
@@ -35,20 +38,43 @@ error if it is used _in the same template_ as the layout component:
 </bit-layout>
 ```
 
+With `popup-page`:
+
+```html
+<!-- Will cause `bitScrollLayout` to error -->
+<popup-page>
+  <cdk-virtual-scroll-viewport bitScrollLayout>
+    <!-- virtual scroll implementation here -->
+  </cdk-virtual-scroll-viewport>
+</popup-page>
+```
+
 In this particular composition, the child content gets constructed before the template of
-`bit-layout` and thus has no scroll container to reference. Workarounds include:
+`bit-layout` (or `popup-page`) and thus has no scroll container to reference. Workarounds include:
 
 1. Wrap the child in another component. (This tends to happen by default when the layout is
    integrated with a `router-outlet`.)
 
+With `bit-layout`:
+
 ```html
 <bit-layout>
   <component-that-contains-bitScrollLayout></component-that-contains-bitScrollLayout>
 </bit-layout>
 ```
 
+With `popup-page`:
+
+```html
+<popup-page>
+  <component-that-contains-bitScrollLayout></component-that-contains-bitScrollLayout>
+</popup-page>
+```
+
 2. Use a `defer` block.
 
+With `bit-layout`:
+
 ```html
 <bit-layout>
   @defer (on immediate) {
@@ -58,3 +84,15 @@ In this particular composition, the child content gets constructed before the te
   }
 </bit-layout>
 ```
+
+With `popup-page`:
+
+```html
+<popup-page>
+  @defer (on immediate) {
+    <cdk-virtual-scroll-viewport bitScrollLayout>
+      <!-- virtual scroll implementation here -->
+    </div>
+  }
+</popup-page>
+```
diff --git a/libs/components/src/tw-theme.css b/libs/components/src/tw-theme.css
index 103b90e0752..c8de973c3d1 100644
--- a/libs/components/src/tw-theme.css
+++ b/libs/components/src/tw-theme.css
@@ -58,6 +58,8 @@
   --color-marketing-logo: 23 93 220;
 
   --tw-ring-offset-color: #ffffff;
+
+  --tw-sm-breakpoint: 640px;
 }
 
 .theme_light {

From a2fd4a37793dfa110b744c01fc023b7b852b02d9 Mon Sep 17 00:00:00 2001
From: Vicki League <vleague@bitwarden.com>
Date: Mon, 30 Jun 2025 11:03:24 -0400
Subject: [PATCH 021/239] [PM-16291] Prevent parent components from closing
 when esc key is pressed on select and menu (#15214)

---
 .../src/menu/menu-trigger-for.directive.ts      |  8 ++++++++
 .../components/src/select/select.component.html |  1 +
 libs/components/src/select/select.component.ts  | 17 +++++++++++++++++
 3 files changed, 26 insertions(+)

diff --git a/libs/components/src/menu/menu-trigger-for.directive.ts b/libs/components/src/menu/menu-trigger-for.directive.ts
index bc174d14d23..528697600c4 100644
--- a/libs/components/src/menu/menu-trigger-for.directive.ts
+++ b/libs/components/src/menu/menu-trigger-for.directive.ts
@@ -1,5 +1,6 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
+import { hasModifierKey } from "@angular/cdk/keycodes";
 import { Overlay, OverlayConfig, OverlayRef } from "@angular/cdk/overlay";
 import { TemplatePortal } from "@angular/cdk/portal";
 import {
@@ -76,6 +77,13 @@ export class MenuTriggerForDirective implements OnDestroy {
     this.overlayRef.attach(templatePortal);
 
     this.closedEventsSub = this.getClosedEvents().subscribe((event: KeyboardEvent | undefined) => {
+      // Closing the menu is handled in this.destroyMenu, so we want to prevent the escape key
+      // from doing its normal default action, which would otherwise cause a parent component
+      // (like a dialog) or extension window to close
+      if (event?.key === "Escape" && !hasModifierKey(event)) {
+        event.preventDefault();
+      }
+
       if (["Tab", "Escape"].includes(event?.key)) {
         // Required to ensure tab order resumes correctly
         this.elementRef.nativeElement.focus();
diff --git a/libs/components/src/select/select.component.html b/libs/components/src/select/select.component.html
index 84de9827b97..6d4c431f234 100644
--- a/libs/components/src/select/select.component.html
+++ b/libs/components/src/select/select.component.html
@@ -9,6 +9,7 @@
   [clearable]="false"
   (close)="onClose()"
   appendTo="body"
+  [keyDownFn]="onKeyDown"
 >
   <ng-template ng-option-tmp let-item="item">
     <div class="tw-flex" [title]="item.label">
diff --git a/libs/components/src/select/select.component.ts b/libs/components/src/select/select.component.ts
index d2c48bf0f6e..909566bf1f8 100644
--- a/libs/components/src/select/select.component.ts
+++ b/libs/components/src/select/select.component.ts
@@ -1,6 +1,7 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
 
+import { hasModifierKey } from "@angular/cdk/keycodes";
 import {
   Component,
   ContentChildren,
@@ -185,4 +186,20 @@ export class SelectComponent<T> implements BitFormFieldControl, ControlValueAcce
   protected onClose() {
     this.closed.emit();
   }
+
+  /**
+   * Prevent Escape key press from propagating to parent components
+   * (for example, parent dialog should not close when Escape is pressed in the select)
+   *
+   * @returns true to keep default key behavior; false to prevent default key behavior
+   *
+   * Needs to be arrow function to retain `this` scope.
+   */
+  protected onKeyDown = (event: KeyboardEvent) => {
+    if (this.select.isOpen && event.key === "Escape" && !hasModifierKey(event)) {
+      event.stopPropagation();
+    }
+
+    return true;
+  };
 }

From 4bfcc9d076f812cee703d4ed473c4cb17163ebd8 Mon Sep 17 00:00:00 2001
From: SmithThe4th <gsmith@bitwarden.com>
Date: Mon, 30 Jun 2025 11:32:19 -0400
Subject: [PATCH 022/239] [PM-23008] Error when attempting to export vault 
 (#15397)

* moved restrictedItemTypesService creation before export service is created

* Fixed cliRestrictedItemTypesService arrangement
---
 .../service-container/service-container.ts    | 22 +++++++++----------
 1 file changed, 11 insertions(+), 11 deletions(-)

diff --git a/apps/cli/src/service-container/service-container.ts b/apps/cli/src/service-container/service-container.ts
index df019520250..f27c69cf47b 100644
--- a/apps/cli/src/service-container/service-container.ts
+++ b/apps/cli/src/service-container/service-container.ts
@@ -795,6 +795,17 @@ export class ServiceContainer {
 
     this.totpService = new TotpService(this.sdkService);
 
+    this.restrictedItemTypesService = new RestrictedItemTypesService(
+      this.configService,
+      this.accountService,
+      this.organizationService,
+      this.policyService,
+    );
+
+    this.cliRestrictedItemTypesService = new CliRestrictedItemTypesService(
+      this.restrictedItemTypesService,
+    );
+
     this.importApiService = new ImportApiService(this.apiService);
 
     this.importService = new ImportService(
@@ -875,17 +886,6 @@ export class ServiceContainer {
     );
 
     this.masterPasswordApiService = new MasterPasswordApiService(this.apiService, this.logService);
-
-    this.restrictedItemTypesService = new RestrictedItemTypesService(
-      this.configService,
-      this.accountService,
-      this.organizationService,
-      this.policyService,
-    );
-
-    this.cliRestrictedItemTypesService = new CliRestrictedItemTypesService(
-      this.restrictedItemTypesService,
-    );
   }
 
   async logout() {

From 80116c7e5453f483f5a03486318e73cbd0cec633 Mon Sep 17 00:00:00 2001
From: Thomas Rittson <31796059+eliykat@users.noreply.github.com>
Date: Tue, 1 Jul 2025 02:18:56 +1000
Subject: [PATCH 023/239] Use organizations$ observable instead of class member
 (#15377)

---
 .../organizations/members/members.component.ts           | 9 ++++++---
 1 file changed, 6 insertions(+), 3 deletions(-)

diff --git a/apps/web/src/app/admin-console/organizations/members/members.component.ts b/apps/web/src/app/admin-console/organizations/members/members.component.ts
index 633f45ae9a3..0247a8c881b 100644
--- a/apps/web/src/app/admin-console/organizations/members/members.component.ts
+++ b/apps/web/src/app/admin-console/organizations/members/members.component.ts
@@ -248,10 +248,13 @@ export class MembersComponent extends BaseMembersComponent<OrganizationUserView>
     const separateCustomRolePermissionsEnabled$ = this.configService.getFeatureFlag$(
       FeatureFlag.SeparateCustomRolePermissions,
     );
-    this.showUserManagementControls$ = separateCustomRolePermissionsEnabled$.pipe(
+    this.showUserManagementControls$ = combineLatest([
+      separateCustomRolePermissionsEnabled$,
+      organization$,
+    ]).pipe(
       map(
-        (separateCustomRolePermissionsEnabled) =>
-          !separateCustomRolePermissionsEnabled || this.organization.canManageUsers,
+        ([separateCustomRolePermissionsEnabled, organization]) =>
+          !separateCustomRolePermissionsEnabled || organization.canManageUsers,
       ),
     );
   }

From 62981a1bec37aae5bb0e9d9c489e88bc57e2e95c Mon Sep 17 00:00:00 2001
From: SmithThe4th <gsmith@bitwarden.com>
Date: Mon, 30 Jun 2025 13:02:18 -0400
Subject: [PATCH 024/239] Migrate vault filter service from active user state
 to single user state (#15089)

---
 .../deprecated-vault-filter.service.ts        | 18 +++++++++------
 .../components/vault-filter.component.ts      | 20 ++++++++++++++---
 .../services/vault-filter.service.ts          | 22 +++++++++++--------
 3 files changed, 41 insertions(+), 19 deletions(-)

diff --git a/libs/angular/src/vault/abstractions/deprecated-vault-filter.service.ts b/libs/angular/src/vault/abstractions/deprecated-vault-filter.service.ts
index 21528b1ddd5..9a1a31b6068 100644
--- a/libs/angular/src/vault/abstractions/deprecated-vault-filter.service.ts
+++ b/libs/angular/src/vault/abstractions/deprecated-vault-filter.service.ts
@@ -6,6 +6,7 @@ import { Observable } from "rxjs";
 // eslint-disable-next-line no-restricted-imports
 import { CollectionView } from "@bitwarden/admin-console/common";
 import { Organization } from "@bitwarden/common/admin-console/models/domain/organization";
+import { UserId } from "@bitwarden/common/types/guid";
 import { FolderView } from "@bitwarden/common/vault/models/view/folder.view";
 
 import { DynamicTreeNode } from "../vault-filter/models/dynamic-tree-node.model";
@@ -14,11 +15,14 @@ import { DynamicTreeNode } from "../vault-filter/models/dynamic-tree-node.model"
  * @deprecated August 30 2022: Use new VaultFilterService with observables
  */
 export abstract class DeprecatedVaultFilterService {
-  buildOrganizations: () => Promise<Organization[]>;
-  buildNestedFolders: (organizationId?: string) => Observable<DynamicTreeNode<FolderView>>;
-  buildCollections: (organizationId?: string) => Promise<DynamicTreeNode<CollectionView>>;
-  buildCollapsedFilterNodes: () => Promise<Set<string>>;
-  storeCollapsedFilterNodes: (collapsedFilterNodes: Set<string>) => Promise<void>;
-  checkForSingleOrganizationPolicy: () => Promise<boolean>;
-  checkForOrganizationDataOwnershipPolicy: () => Promise<boolean>;
+  abstract buildOrganizations(): Promise<Organization[]>;
+  abstract buildNestedFolders(organizationId?: string): Observable<DynamicTreeNode<FolderView>>;
+  abstract buildCollections(organizationId?: string): Promise<DynamicTreeNode<CollectionView>>;
+  abstract buildCollapsedFilterNodes(userId: UserId): Promise<Set<string>>;
+  abstract storeCollapsedFilterNodes(
+    collapsedFilterNodes: Set<string>,
+    userId: UserId,
+  ): Promise<void>;
+  abstract checkForSingleOrganizationPolicy(): Promise<boolean>;
+  abstract checkForOrganizationDataOwnershipPolicy(): Promise<boolean>;
 }
diff --git a/libs/angular/src/vault/vault-filter/components/vault-filter.component.ts b/libs/angular/src/vault/vault-filter/components/vault-filter.component.ts
index 936d606b936..0b0cb14bbb8 100644
--- a/libs/angular/src/vault/vault-filter/components/vault-filter.component.ts
+++ b/libs/angular/src/vault/vault-filter/components/vault-filter.component.ts
@@ -7,6 +7,9 @@ import { firstValueFrom, Observable } from "rxjs";
 // eslint-disable-next-line no-restricted-imports
 import { CollectionView } from "@bitwarden/admin-console/common";
 import { Organization } from "@bitwarden/common/admin-console/models/domain/organization";
+import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
+import { getUserId } from "@bitwarden/common/auth/services/account.service";
+import { UserId } from "@bitwarden/common/types/guid";
 import { ITreeNodeObject } from "@bitwarden/common/vault/models/domain/tree-node";
 import { FolderView } from "@bitwarden/common/vault/models/view/folder.view";
 
@@ -29,6 +32,8 @@ export class VaultFilterComponent implements OnInit {
   @Output() onAddFolder = new EventEmitter<never>();
   @Output() onEditFolder = new EventEmitter<FolderView>();
 
+  private activeUserId: UserId;
+
   isLoaded = false;
   collapsedFilterNodes: Set<string>;
   organizations: Organization[];
@@ -37,14 +42,20 @@ export class VaultFilterComponent implements OnInit {
   collections: DynamicTreeNode<CollectionView>;
   folders$: Observable<DynamicTreeNode<FolderView>>;
 
-  constructor(protected vaultFilterService: DeprecatedVaultFilterService) {}
+  constructor(
+    protected vaultFilterService: DeprecatedVaultFilterService,
+    protected accountService: AccountService,
+  ) {}
 
   get displayCollections() {
     return this.collections?.fullList != null && this.collections.fullList.length > 0;
   }
 
   async ngOnInit(): Promise<void> {
-    this.collapsedFilterNodes = await this.vaultFilterService.buildCollapsedFilterNodes();
+    this.activeUserId = await firstValueFrom(this.accountService.activeAccount$.pipe(getUserId));
+    this.collapsedFilterNodes = await this.vaultFilterService.buildCollapsedFilterNodes(
+      this.activeUserId,
+    );
     this.organizations = await this.vaultFilterService.buildOrganizations();
     if (this.organizations != null && this.organizations.length > 0) {
       this.activeOrganizationDataOwnershipPolicy =
@@ -68,7 +79,10 @@ export class VaultFilterComponent implements OnInit {
     } else {
       this.collapsedFilterNodes.add(node.id);
     }
-    await this.vaultFilterService.storeCollapsedFilterNodes(this.collapsedFilterNodes);
+    await this.vaultFilterService.storeCollapsedFilterNodes(
+      this.collapsedFilterNodes,
+      this.activeUserId,
+    );
   }
 
   async applyFilter(filter: VaultFilter) {
diff --git a/libs/angular/src/vault/vault-filter/services/vault-filter.service.ts b/libs/angular/src/vault/vault-filter/services/vault-filter.service.ts
index a4114e63285..3317f0c9002 100644
--- a/libs/angular/src/vault/vault-filter/services/vault-filter.service.ts
+++ b/libs/angular/src/vault/vault-filter/services/vault-filter.service.ts
@@ -12,7 +12,7 @@ import { PolicyType } from "@bitwarden/common/admin-console/enums";
 import { Organization } from "@bitwarden/common/admin-console/models/domain/organization";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { getUserId } from "@bitwarden/common/auth/services/account.service";
-import { ActiveUserState, StateProvider } from "@bitwarden/common/platform/state";
+import { SingleUserState, StateProvider } from "@bitwarden/common/platform/state";
 import { UserId } from "@bitwarden/common/types/guid";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
 import { FolderService } from "@bitwarden/common/vault/abstractions/folder/folder.service.abstraction";
@@ -28,10 +28,9 @@ const NestingDelimiter = "/";
 
 @Injectable()
 export class VaultFilterService implements DeprecatedVaultFilterServiceAbstraction {
-  private collapsedGroupingsState: ActiveUserState<string[]> =
-    this.stateProvider.getActive(COLLAPSED_GROUPINGS);
-  private readonly collapsedGroupings$: Observable<Set<string>> =
-    this.collapsedGroupingsState.state$.pipe(map((c) => new Set(c)));
+  private collapsedGroupingsState(userId: UserId): SingleUserState<string[]> {
+    return this.stateProvider.getUser(userId, COLLAPSED_GROUPINGS);
+  }
 
   constructor(
     protected organizationService: OrganizationService,
@@ -43,12 +42,17 @@ export class VaultFilterService implements DeprecatedVaultFilterServiceAbstracti
     protected accountService: AccountService,
   ) {}
 
-  async storeCollapsedFilterNodes(collapsedFilterNodes: Set<string>): Promise<void> {
-    await this.collapsedGroupingsState.update(() => Array.from(collapsedFilterNodes));
+  async storeCollapsedFilterNodes(
+    collapsedFilterNodes: Set<string>,
+    userId: UserId,
+  ): Promise<void> {
+    await this.collapsedGroupingsState(userId).update(() => Array.from(collapsedFilterNodes));
   }
 
-  async buildCollapsedFilterNodes(): Promise<Set<string>> {
-    return await firstValueFrom(this.collapsedGroupings$);
+  async buildCollapsedFilterNodes(userId: UserId): Promise<Set<string>> {
+    return await firstValueFrom(
+      this.collapsedGroupingsState(userId).state$.pipe(map((c) => new Set(c))),
+    );
   }
 
   async buildOrganizations(): Promise<Organization[]> {

From ea5224da259b24442d7746f38b89db22196f2587 Mon Sep 17 00:00:00 2001
From: SmithThe4th <gsmith@bitwarden.com>
Date: Mon, 30 Jun 2025 13:04:01 -0400
Subject: [PATCH 025/239] Properly converted date strings during imports and
 provided default values (#15398)

---
 libs/common/src/models/export/cipher.export.ts | 6 +++---
 libs/common/src/vault/models/domain/cipher.ts  | 4 ++--
 2 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/libs/common/src/models/export/cipher.export.ts b/libs/common/src/models/export/cipher.export.ts
index 7d0ef9e9c34..fa050375391 100644
--- a/libs/common/src/models/export/cipher.export.ts
+++ b/libs/common/src/models/export/cipher.export.ts
@@ -124,9 +124,9 @@ export class CipherExport {
       domain.passwordHistory = req.passwordHistory.map((ph) => PasswordHistoryExport.toDomain(ph));
     }
 
-    domain.creationDate = req.creationDate;
-    domain.revisionDate = req.revisionDate;
-    domain.deletedDate = req.deletedDate;
+    domain.creationDate = req.creationDate ? new Date(req.creationDate) : null;
+    domain.revisionDate = req.revisionDate ? new Date(req.revisionDate) : null;
+    domain.deletedDate = req.deletedDate ? new Date(req.deletedDate) : null;
     return domain;
   }
 
diff --git a/libs/common/src/vault/models/domain/cipher.ts b/libs/common/src/vault/models/domain/cipher.ts
index e6d11a82b69..9cc9226cd46 100644
--- a/libs/common/src/vault/models/domain/cipher.ts
+++ b/libs/common/src/vault/models/domain/cipher.ts
@@ -353,14 +353,14 @@ export class Cipher extends Domain implements Decryptable<CipherView> {
       type: this.type,
       favorite: this.favorite ?? false,
       organizationUseTotp: this.organizationUseTotp ?? false,
-      edit: this.edit,
+      edit: this.edit ?? true,
       permissions: this.permissions
         ? {
             delete: this.permissions.delete,
             restore: this.permissions.restore,
           }
         : undefined,
-      viewPassword: this.viewPassword,
+      viewPassword: this.viewPassword ?? true,
       localData: this.localData
         ? {
             lastUsedDate: this.localData.lastUsedDate

From 64eb9b56d7634cc6804f3125b14781e363499f6e Mon Sep 17 00:00:00 2001
From: Jared Snider <116684653+JaredSnider-Bitwarden@users.noreply.github.com>
Date: Mon, 30 Jun 2025 13:47:31 -0400
Subject: [PATCH 026/239] feat(anon-layout): [Auth/PM-17737] AnonLayout -
 Consolidate and extend max width control (#15362)

* PM-17737 - feat(anon-layout-width) - consolidate width setting to control title, subtitle, and content together for a unified UX. Removes all titleAreaMaxWidth usages and the titleAreaMaxWidth property entirely.

* PM-17737 - AnonLayout - consolidate stories into playground (w/ the exception of default icon story b/c I can't figure how to omit the icon conditionally).

* PM-17737 - AnonLayoutStories - show secondary content by default

* PM-17737 - Per PR feedback, adjust maxWidthClass logic to remove string concatenation as it can result in tailwind classes not being compiled and available at run time.

* PM-17737 - Per PR feedback, refactor stories to use configuration to generate all the scenarios so we can still track them via snapshots

* PM-17737 - Fix anon layout mdx reference

* PM-17737 - Make AnonLayoutMaxWidths singular

* PM-17737 - When inside of a max width container, the icon container needs explicit width to be able to scale viewbox icons that don't have defined heights / widths
---
 apps/web/src/app/oss-routing.module.ts        |   2 -
 .../anon-layout-wrapper.component.html        |   1 -
 .../anon-layout-wrapper.component.ts          |  13 +-
 .../anon-layout/anon-layout.component.html    |  11 +-
 .../src/anon-layout/anon-layout.component.ts  |  31 +-
 .../src/anon-layout/anon-layout.mdx           |   2 +-
 .../src/anon-layout/anon-layout.stories.ts    | 340 +++++++++---------
 7 files changed, 198 insertions(+), 202 deletions(-)

diff --git a/apps/web/src/app/oss-routing.module.ts b/apps/web/src/app/oss-routing.module.ts
index 783fe6ada0a..0733d1ef289 100644
--- a/apps/web/src/app/oss-routing.module.ts
+++ b/apps/web/src/app/oss-routing.module.ts
@@ -347,7 +347,6 @@ const routes: Routes = [
           pageSubtitle: {
             key: "singleSignOnEnterOrgIdentifierText",
           },
-          titleAreaMaxWidth: "md",
           pageIcon: SsoKeyIcon,
         } satisfies RouteDataProperties & AnonLayoutWrapperData,
         children: [
@@ -381,7 +380,6 @@ const routes: Routes = [
           pageTitle: {
             key: "verifyYourIdentity",
           },
-          titleAreaMaxWidth: "md",
         } satisfies RouteDataProperties & AnonLayoutWrapperData,
       },
       {
diff --git a/libs/components/src/anon-layout/anon-layout-wrapper.component.html b/libs/components/src/anon-layout/anon-layout-wrapper.component.html
index 2cba7ca7783..0d393b30362 100644
--- a/libs/components/src/anon-layout/anon-layout-wrapper.component.html
+++ b/libs/components/src/anon-layout/anon-layout-wrapper.component.html
@@ -4,7 +4,6 @@
   [icon]="pageIcon"
   [showReadonlyHostname]="showReadonlyHostname"
   [maxWidth]="maxWidth"
-  [titleAreaMaxWidth]="titleAreaMaxWidth"
   [hideCardWrapper]="hideCardWrapper"
 >
   <router-outlet></router-outlet>
diff --git a/libs/components/src/anon-layout/anon-layout-wrapper.component.ts b/libs/components/src/anon-layout/anon-layout-wrapper.component.ts
index ea6a518f70d..20380f137a6 100644
--- a/libs/components/src/anon-layout/anon-layout-wrapper.component.ts
+++ b/libs/components/src/anon-layout/anon-layout-wrapper.component.ts
@@ -10,7 +10,7 @@ import { Translation } from "../dialog";
 import { Icon } from "../icon";
 
 import { AnonLayoutWrapperDataService } from "./anon-layout-wrapper-data.service";
-import { AnonLayoutComponent } from "./anon-layout.component";
+import { AnonLayoutComponent, AnonLayoutMaxWidth } from "./anon-layout.component";
 
 export interface AnonLayoutWrapperData {
   /**
@@ -36,11 +36,7 @@ export interface AnonLayoutWrapperData {
   /**
    * Optional flag to set the max-width of the page. Defaults to 'md' if not provided.
    */
-  maxWidth?: "md" | "3xl";
-  /**
-   * Optional flag to set the max-width of the title area. Defaults to null if not provided.
-   */
-  titleAreaMaxWidth?: "md";
+  maxWidth?: AnonLayoutMaxWidth;
   /**
    * Hide the card that wraps the default content. Defaults to false.
    */
@@ -58,8 +54,7 @@ export class AnonLayoutWrapperComponent implements OnInit, OnDestroy {
   protected pageSubtitle: string;
   protected pageIcon: Icon;
   protected showReadonlyHostname: boolean;
-  protected maxWidth: "md" | "3xl";
-  protected titleAreaMaxWidth: "md";
+  protected maxWidth: AnonLayoutMaxWidth;
   protected hideCardWrapper: boolean;
 
   constructor(
@@ -111,7 +106,6 @@ export class AnonLayoutWrapperComponent implements OnInit, OnDestroy {
 
     this.showReadonlyHostname = Boolean(firstChildRouteData["showReadonlyHostname"]);
     this.maxWidth = firstChildRouteData["maxWidth"];
-    this.titleAreaMaxWidth = firstChildRouteData["titleAreaMaxWidth"];
     this.hideCardWrapper = Boolean(firstChildRouteData["hideCardWrapper"]);
   }
 
@@ -174,7 +168,6 @@ export class AnonLayoutWrapperComponent implements OnInit, OnDestroy {
     this.pageIcon = null;
     this.showReadonlyHostname = null;
     this.maxWidth = null;
-    this.titleAreaMaxWidth = null;
     this.hideCardWrapper = null;
   }
 
diff --git a/libs/components/src/anon-layout/anon-layout.component.html b/libs/components/src/anon-layout/anon-layout.component.html
index a8e091e6e72..4dfde5e7ef3 100644
--- a/libs/components/src/anon-layout/anon-layout.component.html
+++ b/libs/components/src/anon-layout/anon-layout.component.html
@@ -13,11 +13,8 @@
     <bit-icon [icon]="logo" [ariaLabel]="'appLogoLabel' | i18n"></bit-icon>
   </a>
 
-  <div
-    class="tw-text-center tw-mb-4 sm:tw-mb-6"
-    [ngClass]="{ 'tw-max-w-md tw-mx-auto': titleAreaMaxWidth === 'md' }"
-  >
-    <div *ngIf="!hideIcon" class="tw-mx-auto tw-max-w-24 sm:tw-max-w-28 md:tw-max-w-32">
+  <div class="tw-text-center tw-mb-4 sm:tw-mb-6 tw-mx-auto" [ngClass]="maxWidthClass">
+    <div *ngIf="!hideIcon" class="tw-w-24 sm:tw-w-28 md:tw-w-32 tw-mx-auto">
       <bit-icon [icon]="icon"></bit-icon>
     </div>
 
@@ -36,8 +33,8 @@
   </div>
 
   <div
-    class="tw-grow tw-w-full tw-max-w-md tw-mx-auto tw-flex tw-flex-col tw-items-center sm:tw-min-w-[28rem]"
-    [ngClass]="{ 'tw-max-w-md': maxWidth === 'md', 'tw-max-w-3xl': maxWidth === '3xl' }"
+    class="tw-grow tw-w-full tw-mx-auto tw-flex tw-flex-col tw-items-center sm:tw-min-w-[28rem]"
+    [ngClass]="maxWidthClass"
   >
     @if (hideCardWrapper) {
       <div class="tw-mb-6 sm:tw-mb-10">
diff --git a/libs/components/src/anon-layout/anon-layout.component.ts b/libs/components/src/anon-layout/anon-layout.component.ts
index abde48649af..ee3a7ca7bee 100644
--- a/libs/components/src/anon-layout/anon-layout.component.ts
+++ b/libs/components/src/anon-layout/anon-layout.component.ts
@@ -14,6 +14,8 @@ import { BitwardenLogo, BitwardenShield } from "../icon/icons";
 import { SharedModule } from "../shared";
 import { TypographyModule } from "../typography";
 
+export type AnonLayoutMaxWidth = "md" | "lg" | "xl" | "2xl" | "3xl";
+
 @Component({
   selector: "auth-anon-layout",
   templateUrl: "./anon-layout.component.html",
@@ -36,27 +38,35 @@ export class AnonLayoutComponent implements OnInit, OnChanges {
   @Input() hideCardWrapper: boolean = false;
 
   /**
-   * Max width of the title area content
-   *
-   * @default null
-   */
-  @Input() titleAreaMaxWidth?: "md";
-
-  /**
-   * Max width of the layout content
+   * Max width of the anon layout title, subtitle, and content areas.
    *
    * @default 'md'
    */
-  @Input() maxWidth: "md" | "3xl" = "md";
+  @Input() maxWidth: AnonLayoutMaxWidth = "md";
 
   protected logo = BitwardenLogo;
-  protected year = "2024";
+  protected year: string;
   protected clientType: ClientType;
   protected hostname: string;
   protected version: string;
 
   protected hideYearAndVersion = false;
 
+  get maxWidthClass(): string {
+    switch (this.maxWidth) {
+      case "md":
+        return "tw-max-w-md";
+      case "lg":
+        return "tw-max-w-lg";
+      case "xl":
+        return "tw-max-w-xl";
+      case "2xl":
+        return "tw-max-w-2xl";
+      case "3xl":
+        return "tw-max-w-3xl";
+    }
+  }
+
   constructor(
     private environmentService: EnvironmentService,
     private platformUtilsService: PlatformUtilsService,
@@ -68,7 +78,6 @@ export class AnonLayoutComponent implements OnInit, OnChanges {
 
   async ngOnInit() {
     this.maxWidth = this.maxWidth ?? "md";
-    this.titleAreaMaxWidth = this.titleAreaMaxWidth ?? null;
     this.hostname = (await firstValueFrom(this.environmentService.environment$)).getHostname();
     this.version = await this.platformUtilsService.getApplicationVersion();
 
diff --git a/libs/components/src/anon-layout/anon-layout.mdx b/libs/components/src/anon-layout/anon-layout.mdx
index 039a1aa5f28..9d40d617b0d 100644
--- a/libs/components/src/anon-layout/anon-layout.mdx
+++ b/libs/components/src/anon-layout/anon-layout.mdx
@@ -165,4 +165,4 @@ import { EnvironmentSelectorComponent } from "./components/environment-selector/
 
 ---
 
-<Story of={stories.WithSecondaryContent} />
+<Story of={stories.SecondaryContent} />
diff --git a/libs/components/src/anon-layout/anon-layout.stories.ts b/libs/components/src/anon-layout/anon-layout.stories.ts
index 1f4ac5bb14f..24aaf10f7ba 100644
--- a/libs/components/src/anon-layout/anon-layout.stories.ts
+++ b/libs/components/src/anon-layout/anon-layout.stories.ts
@@ -8,6 +8,7 @@ import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.servic
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
 
 import { ButtonModule } from "../button";
+import { Icon } from "../icon";
 import { LockIcon } from "../icon/icons";
 import { I18nMockService } from "../utils/i18n-mock.service";
 
@@ -18,6 +19,23 @@ class MockPlatformUtilsService implements Partial<PlatformUtilsService> {
   getClientType = () => ClientType.Web;
 }
 
+type StoryArgs = Pick<
+  AnonLayoutComponent,
+  | "title"
+  | "subtitle"
+  | "showReadonlyHostname"
+  | "hideCardWrapper"
+  | "hideIcon"
+  | "hideLogo"
+  | "hideFooter"
+  | "maxWidth"
+> & {
+  contentLength: "normal" | "long" | "thin";
+  showSecondary: boolean;
+  useDefaultIcon: boolean;
+  icon: Icon;
+};
+
 export default {
   title: "Component Library/Anon Layout",
   component: AnonLayoutComponent,
@@ -31,12 +49,11 @@ export default {
         },
         {
           provide: I18nService,
-          useFactory: () => {
-            return new I18nMockService({
+          useFactory: () =>
+            new I18nMockService({
               accessing: "Accessing",
               appLogoLabel: "app logo label",
-            });
-          },
+            }),
         },
         {
           provide: EnvironmentService,
@@ -55,196 +72,179 @@ export default {
       ],
     }),
   ],
+
+  render: (args: StoryArgs) => {
+    const { useDefaultIcon, icon, ...rest } = args;
+    return {
+      props: {
+        ...rest,
+        icon: useDefaultIcon ? null : icon,
+      },
+      template: `
+        <auth-anon-layout
+          [title]="title"
+          [subtitle]="subtitle"
+          [icon]="icon"
+          [showReadonlyHostname]="showReadonlyHostname"
+          [maxWidth]="maxWidth"
+          [hideCardWrapper]="hideCardWrapper"
+          [hideIcon]="hideIcon"
+          [hideLogo]="hideLogo"
+          [hideFooter]="hideFooter"
+        >
+          <ng-container [ngSwitch]="contentLength">
+            <div *ngSwitchCase="'thin'" class="tw-text-center">  <div class="tw-font-bold">Thin Content</div></div>
+            <div *ngSwitchCase="'long'">
+              <div class="tw-font-bold">Long Content</div>
+              <div>Sed ut perspiciatis unde omnis iste natus error sit voluptatem accusantium doloremque laudantium, totam rem aperiam, eaque ipsa quae ab illo inventore veritatis et quasi architecto beatae vitae dicta sunt explicabo. Nemo enim ipsam voluptatem quia voluptas sit aspernatur aut odit aut fugit, sed quia consequuntur magni dolores eos qui ratione voluptatem sequi nesciunt. Neque porro quisquam est, qui dolorem ipsum quia dolor sit amet, consectetur, adipisci velit, sed quia non numquam eius modi tempora incidunt ut labore et dolore magnam aliquam quaerat voluptatem. Ut enim ad minima veniam, quis nostrum exercitationem ullam corporis suscipit laboriosam, nisi ut aliquid ex ea commodi consequatur? Quis autem vel eum iure reprehenderit qui in ea voluptate velit esse quam nihil molestiae consequatur, vel illum qui dolorem eum fugiat quo voluptas nulla pariatur?</div>
+              <div>Sed ut perspiciatis unde omnis iste natus error sit voluptatem accusantium doloremque laudantium, totam rem aperiam, eaque ipsa quae ab illo inventore veritatis et quasi architecto beatae vitae dicta sunt explicabo. Nemo enim ipsam voluptatem quia voluptas sit aspernatur aut odit aut fugit, sed quia consequuntur magni dolores eos qui ratione voluptatem sequi nesciunt. Neque porro quisquam est, qui dolorem ipsum quia dolor sit amet, consectetur, adipisci velit, sed quia non numquam eius modi tempora incidunt ut labore et dolore magnam aliquam quaerat voluptatem. Ut enim ad minima veniam, quis nostrum exercitationem ullam corporis suscipit laboriosam, nisi ut aliquid ex ea commodi consequatur? Quis autem vel eum iure reprehenderit qui in ea voluptate velit esse quam nihil molestiae consequatur, vel illum qui dolorem eum fugiat quo voluptas nulla pariatur?</div>
+            </div>
+            <div *ngSwitchDefault>
+              <div class="tw-font-bold">Normal Content</div>
+              <div>Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi ut aliquip ex ea commodo consequat. </div>
+            </div>
+          </ng-container>
+
+          <div *ngIf="showSecondary" slot="secondary" class="tw-text-center">
+            <div class="tw-font-bold tw-mb-2">
+              Secondary Projected Content (optional)
+            </div>
+            <button bitButton>Perform Action</button>
+          </div>
+        </auth-anon-layout>
+      `,
+    };
+  },
+
+  argTypes: {
+    title: { control: "text" },
+    subtitle: { control: "text" },
+
+    icon: { control: false, table: { disable: true } },
+    useDefaultIcon: {
+      control: false,
+      table: { disable: true },
+      description: "If true, passes null so component falls back to its built-in icon",
+    },
+
+    showReadonlyHostname: { control: "boolean" },
+    maxWidth: {
+      control: "select",
+      options: ["md", "lg", "xl", "2xl", "3xl"],
+    },
+
+    hideCardWrapper: { control: "boolean" },
+    hideIcon: { control: "boolean" },
+    hideLogo: { control: "boolean" },
+    hideFooter: { control: "boolean" },
+
+    contentLength: {
+      control: "radio",
+      options: ["normal", "long", "thin"],
+    },
+
+    showSecondary: { control: "boolean" },
+  },
+
   args: {
     title: "The Page Title",
     subtitle: "The subtitle (optional)",
-    showReadonlyHostname: true,
     icon: LockIcon,
-    hideLogo: false,
+    useDefaultIcon: false,
+    showReadonlyHostname: false,
+    maxWidth: "md",
     hideCardWrapper: false,
+    hideIcon: false,
+    hideLogo: false,
+    hideFooter: false,
+    contentLength: "normal",
+    showSecondary: false,
   },
-} as Meta;
+} as Meta<StoryArgs>;
 
-type Story = StoryObj<AnonLayoutComponent>;
+type Story = StoryObj<StoryArgs>;
 
-export const WithPrimaryContent: Story = {
-  render: (args) => ({
-    props: args,
-    template:
-      // Projected content (the <div>) and styling is just a sample and can be replaced with any content/styling.
-      `
-      <auth-anon-layout [title]="title" [subtitle]="subtitle" [showReadonlyHostname]="showReadonlyHostname" [hideLogo]="hideLogo" >
-        <div>
-          <div class="tw-font-bold">Primary Projected Content Area (customizable)</div>
-          <div>Lorem ipsum dolor sit amet consectetur adipisicing elit. Necessitatibus illum vero, placeat recusandae esse ratione eius minima veniam nemo, quas beatae! Impedit molestiae alias sapiente explicabo. Sapiente corporis ipsa numquam?</div>
-        </div>
-      </auth-anon-layout>
-    `,
-  }),
+export const NormalPrimaryContent: Story = {
+  args: {
+    contentLength: "normal",
+  },
 };
 
-export const WithSecondaryContent: Story = {
-  render: (args) => ({
-    props: args,
-    template:
-      // Projected content (the <div>'s) and styling is just a sample and can be replaced with any content/styling.
-      // Notice that slot="secondary" is requred to project any secondary content.
-      `
-      <auth-anon-layout [title]="title" [subtitle]="subtitle" [showReadonlyHostname]="showReadonlyHostname" [hideLogo]="hideLogo" >
-        <div>
-          <div class="tw-font-bold">Primary Projected Content Area (customizable)</div>
-          <div>Lorem ipsum dolor sit amet consectetur adipisicing elit. Necessitatibus illum vero, placeat recusandae esse ratione eius minima veniam nemo, quas beatae! Impedit molestiae alias sapiente explicabo. Sapiente corporis ipsa numquam?</div>
-        </div>
-
-        <div slot="secondary" class="tw-text-center">
-          <div class="tw-font-bold tw-mb-2">Secondary Projected Content (optional)</div>
-          <button bitButton>Perform Action</button>
-        </div>
-      </auth-anon-layout>
-    `,
-  }),
+export const LongPrimaryContent: Story = {
+  args: {
+    contentLength: "long",
+  },
 };
 
-export const WithLongContent: Story = {
-  render: (args) => ({
-    props: args,
-    template:
-      // Projected content (the <div>'s) and styling is just a sample and can be replaced with any content/styling.
-      `
-      <auth-anon-layout title="Page Title lorem ipsum dolor consectetur sit amet expedita quod est" subtitle="Subtitle here Lorem ipsum dolor sit amet consectetur adipisicing elit. Expedita, quod est?" [showReadonlyHostname]="showReadonlyHostname" [hideLogo]="hideLogo" >
-        <div>
-          <div class="tw-font-bold">Primary Projected Content Area (customizable)</div>
-          <div>Lorem ipsum dolor sit amet consectetur adipisicing elit. Necessitatibus illum vero, placeat recusandae esse ratione eius minima veniam nemo, quas beatae! Impedit molestiae alias sapiente explicabo. Sapiente corporis ipsa numquam? Lorem ipsum dolor sit amet consectetur adipisicing elit. Lorem ipsum dolor sit amet consectetur adipisicing elit. Lorem ipsum dolor sit amet consectetur adipisicing elit. Lorem ipsum dolor sit amet consectetur adipisicing elit. Lorem ipsum dolor sit amet consectetur adipisicing elit. Lorem ipsum dolor sit amet consectetur adipisicing elit. Lorem ipsum dolor sit amet consectetur adipisicing elit. Lorem ipsum dolor sit amet consectetur adipisicing elit. Lorem ipsum dolor sit amet consectetur adipisicing elit.</div>
-        </div>
-
-        <div slot="secondary" class="tw-text-center">
-          <div class="tw-font-bold tw-mb-2">Secondary Projected Content (optional)</div>
-          <p>Lorem ipsum dolor sit amet consectetur adipisicing elit. Molestias laborum nostrum natus. Lorem ipsum dolor sit amet consectetur adipisicing elit. Molestias laborum nostrum natus. Expedita, quod est?          </p>
-          <button bitButton>Perform Action</button>
-        </div>
-      </auth-anon-layout>
-    `,
-  }),
+export const ThinPrimaryContent: Story = {
+  args: {
+    contentLength: "thin",
+  },
 };
 
-export const WithThinPrimaryContent: Story = {
-  render: (args) => ({
-    props: args,
-    template:
-      // Projected content (the <div>'s) and styling is just a sample and can be replaced with any content/styling.
-      `
-      <auth-anon-layout [title]="title" [subtitle]="subtitle" [showReadonlyHostname]="showReadonlyHostname" [hideLogo]="hideLogo" >
-        <div class="tw-text-center">Lorem ipsum</div>
-
-        <div slot="secondary" class="tw-text-center">
-          <div class="tw-font-bold tw-mb-2">Secondary Projected Content (optional)</div>
-          <button bitButton>Perform Action</button>
-        </div>
-      </auth-anon-layout>
-    `,
-  }),
+export const LongContentAndTitlesAndDefaultWidth: Story = {
+  args: {
+    title:
+      "This is a very long title that might not fit in the default width. It's really long and descriptive, so it might take up more space than usual.",
+    subtitle:
+      "This is a very long subtitle that might not fit in the default width. It's really long and descriptive, so it might take up more space than usual.",
+    contentLength: "long",
+  },
 };
 
-export const WithCustomIcon: Story = {
-  render: (args) => ({
-    props: args,
-    template:
-      // Projected content (the <div>) and styling is just a sample and can be replaced with any content/styling.
-      `
-      <auth-anon-layout [title]="title" [subtitle]="subtitle" [icon]="icon" [showReadonlyHostname]="showReadonlyHostname">
-        <div>
-          <div class="tw-font-bold">Primary Projected Content Area (customizable)</div>
-          <div>Lorem ipsum dolor sit amet consectetur adipisicing elit. Necessitatibus illum vero, placeat recusandae esse ratione eius minima veniam nemo, quas beatae! Impedit molestiae alias sapiente explicabo. Sapiente corporis ipsa numquam?</div>
-        </div>
-      </auth-anon-layout>
-    `,
-  }),
+export const LongContentAndTitlesAndLargestWidth: Story = {
+  args: {
+    title:
+      "This is a very long title that might not fit in the default width. It's really long and descriptive, so it might take up more space than usual.",
+    subtitle:
+      "This is a very long subtitle that might not fit in the default width. It's really long and descriptive, so it might take up more space than usual.",
+    contentLength: "long",
+    maxWidth: "3xl",
+  },
 };
 
-export const HideCardWrapper: Story = {
-  render: (args) => ({
-    props: {
-      ...args,
-      hideCardWrapper: true,
-    },
-    template: `
-      <auth-anon-layout [title]="title" [subtitle]="subtitle" [showReadonlyHostname]="showReadonlyHostname" [hideLogo]="hideLogo" [hideCardWrapper]="hideCardWrapper">
-        <div>
-          <div class="tw-font-bold">Primary Projected Content Area (customizable)</div>
-          <div>Lorem ipsum dolor sit amet consectetur adipisicing elit. Necessitatibus illum vero, placeat recusandae esse ratione eius minima veniam nemo, quas beatae! Impedit molestiae alias sapiente explicabo. Sapiente corporis ipsa numquam?</div>
-        </div>
-        <div slot="secondary" class="tw-text-center">
-          <div class="tw-font-bold tw-mb-2">Secondary Projected Content (optional)</div>
-          <button bitButton>Perform Action</button>
-        </div>
-      </auth-anon-layout>
-    `,
-  }),
+export const SecondaryContent: Story = {
+  args: {
+    showSecondary: true,
+  },
 };
 
-export const HideIcon: Story = {
-  render: (args) => ({
-    props: args,
-    template:
-      // Projected content (the <div>) and styling is just a sample and can be replaced with any content/styling.
-      `
-      <auth-anon-layout [title]="title" [subtitle]="subtitle" [showReadonlyHostname]="showReadonlyHostname" [hideIcon]="true" >
-        <div>
-          <div class="tw-font-bold">Primary Projected Content Area (customizable)</div>
-          <div>Lorem ipsum dolor sit amet consectetur adipisicing elit. Necessitatibus illum vero, placeat recusandae esse ratione eius minima veniam nemo, quas beatae! Impedit molestiae alias sapiente explicabo. Sapiente corporis ipsa numquam?</div>
-        </div>
-      </auth-anon-layout>
-    `,
-  }),
+export const NoTitle: Story = { args: { title: undefined } };
+
+export const NoSubtitle: Story = { args: { subtitle: undefined } };
+
+export const NoWrapper: Story = {
+  args: { hideCardWrapper: true },
 };
 
-export const HideLogo: Story = {
-  render: (args) => ({
-    props: args,
-    template:
-      // Projected content (the <div>) and styling is just a sample and can be replaced with any content/styling.
-      `
-      <auth-anon-layout [title]="title" [subtitle]="subtitle" [showReadonlyHostname]="showReadonlyHostname" [hideLogo]="true" >
-        <div>
-          <div class="tw-font-bold">Primary Projected Content Area (customizable)</div>
-          <div>Lorem ipsum dolor sit amet consectetur adipisicing elit. Necessitatibus illum vero, placeat recusandae esse ratione eius minima veniam nemo, quas beatae! Impedit molestiae alias sapiente explicabo. Sapiente corporis ipsa numquam?</div>
-        </div>
-      </auth-anon-layout>
-    `,
-  }),
+export const DefaultIcon: Story = {
+  args: { useDefaultIcon: true },
 };
 
-export const HideFooter: Story = {
-  render: (args) => ({
-    props: args,
-    template:
-      // Projected content (the <div>) and styling is just a sample and can be replaced with any content/styling.
-      `
-      <auth-anon-layout [title]="title" [subtitle]="subtitle" [showReadonlyHostname]="showReadonlyHostname" [hideFooter]="true" [hideLogo]="hideLogo" >
-        <div>
-          <div class="tw-font-bold">Primary Projected Content Area (customizable)</div>
-          <div>Lorem ipsum dolor sit amet consectetur adipisicing elit. Necessitatibus illum vero, placeat recusandae esse ratione eius minima veniam nemo, quas beatae! Impedit molestiae alias sapiente explicabo. Sapiente corporis ipsa numquam?</div>
-        </div>
-      </auth-anon-layout>
-    `,
-  }),
+export const NoIcon: Story = {
+  args: { hideIcon: true },
 };
 
-export const WithTitleAreaMaxWidth: Story = {
-  render: (args) => ({
-    props: {
-      ...args,
-      title: "This is a very long long title to demonstrate titleAreaMaxWidth set to 'md'",
-      subtitle:
-        "This is a very long subtitle that demonstrates how the max width container handles longer text content with the titleAreaMaxWidth input set to 'md'. Lorem ipsum dolor sit amet consectetur adipisicing elit. Expedita, quod est?",
-    },
-    template: `
-      <auth-anon-layout [title]="title" [subtitle]="subtitle" [showReadonlyHostname]="showReadonlyHostname" [hideLogo]="hideLogo" [titleAreaMaxWidth]="'md'">
-        <div>
-          <div class="tw-font-bold">Primary Projected Content Area (customizable)</div>
-          <div>Lorem ipsum dolor sit amet consectetur adipisicing elit. Necessitatibus illum vero, placeat recusandae esse ratione eius minima veniam nemo, quas beatae! Impedit molestiae alias sapiente explicabo. Sapiente corporis ipsa numquam?</div>
-        </div>
-      </auth-anon-layout>
-    `,
-  }),
+export const NoLogo: Story = {
+  args: { hideLogo: true },
+};
+
+export const NoFooter: Story = {
+  args: { hideFooter: true },
+};
+
+export const ReadonlyHostname: Story = {
+  args: { showReadonlyHostname: true },
+};
+
+export const MinimalState: Story = {
+  args: {
+    title: undefined,
+    subtitle: undefined,
+    contentLength: "normal",
+    hideCardWrapper: true,
+    hideIcon: true,
+    hideLogo: true,
+    hideFooter: true,
+  },
 };

From 782dc930ad16aaa9b94c3663b98b9b985497de96 Mon Sep 17 00:00:00 2001
From: Addison Beck <github@addisonbeck.com>
Date: Mon, 30 Jun 2025 13:56:26 -0400
Subject: [PATCH 027/239] refactor(storage-test-utils): cut a new library for
 storage test tools (#15259)

* refactor(platform): generate a storage-test-utils library

* refactor(storage-test-utils): move FakeStorageService out of common
---
 .github/CODEOWNERS                            |   1 +
 libs/common/spec/fake-storage.service.ts      | 120 +-----------------
 libs/storage-test-utils/README.md             |   5 +
 libs/storage-test-utils/eslint.config.mjs     |   3 +
 libs/storage-test-utils/jest.config.js        |  10 ++
 libs/storage-test-utils/package.json          |  11 ++
 libs/storage-test-utils/project.json          |  33 +++++
 .../src/fake-storage.service.ts               | 119 +++++++++++++++++
 libs/storage-test-utils/src/index.ts          |   1 +
 .../src/storage-test-utils.spec.ts            |   8 ++
 libs/storage-test-utils/tsconfig.json         |  13 ++
 libs/storage-test-utils/tsconfig.lib.json     |  10 ++
 libs/storage-test-utils/tsconfig.spec.json    |  10 ++
 package-lock.json                             |  11 +-
 tsconfig.base.json                            |   1 +
 15 files changed, 235 insertions(+), 121 deletions(-)
 create mode 100644 libs/storage-test-utils/README.md
 create mode 100644 libs/storage-test-utils/eslint.config.mjs
 create mode 100644 libs/storage-test-utils/jest.config.js
 create mode 100644 libs/storage-test-utils/package.json
 create mode 100644 libs/storage-test-utils/project.json
 create mode 100644 libs/storage-test-utils/src/fake-storage.service.ts
 create mode 100644 libs/storage-test-utils/src/index.ts
 create mode 100644 libs/storage-test-utils/src/storage-test-utils.spec.ts
 create mode 100644 libs/storage-test-utils/tsconfig.json
 create mode 100644 libs/storage-test-utils/tsconfig.lib.json
 create mode 100644 libs/storage-test-utils/tsconfig.spec.json

diff --git a/.github/CODEOWNERS b/.github/CODEOWNERS
index 17a1cb5720e..db60ad6a93b 100644
--- a/.github/CODEOWNERS
+++ b/.github/CODEOWNERS
@@ -91,6 +91,7 @@ libs/common/spec @bitwarden/team-platform-dev
 libs/common/src/state-migrations @bitwarden/team-platform-dev
 libs/platform @bitwarden/team-platform-dev
 libs/storage-core @bitwarden/team-platform-dev
+libs/storage-test-utils @bitwarden/team-platform-dev
 # Web utils used across app and connectors
 apps/web/src/utils/ @bitwarden/team-platform-dev
 # Web core and shared files
diff --git a/libs/common/spec/fake-storage.service.ts b/libs/common/spec/fake-storage.service.ts
index c6d989c5abf..1eae3dbfbe3 100644
--- a/libs/common/spec/fake-storage.service.ts
+++ b/libs/common/spec/fake-storage.service.ts
@@ -1,119 +1 @@
-import { MockProxy, mock } from "jest-mock-extended";
-import { Subject } from "rxjs";
-
-import {
-  AbstractStorageService,
-  ObservableStorageService,
-  StorageUpdate,
-} from "../src/platform/abstractions/storage.service";
-import { StorageOptions } from "../src/platform/models/domain/storage-options";
-
-const INTERNAL_KEY = "__internal__";
-
-export class FakeStorageService implements AbstractStorageService, ObservableStorageService {
-  private store: Record<string, unknown>;
-  private updatesSubject = new Subject<StorageUpdate>();
-  private _valuesRequireDeserialization = false;
-
-  /**
-   * Returns a mock of a {@see AbstractStorageService} for asserting the expected
-   * amount of calls. It is not recommended to use this to mock implementations as
-   * they are not respected.
-   */
-  mock: MockProxy<AbstractStorageService>;
-
-  constructor(initial?: Record<string, unknown>) {
-    this.store = initial ?? {};
-    this.mock = mock<AbstractStorageService>();
-  }
-
-  /**
-   * Updates the internal store for this fake implementation, this bypasses any mock calls
-   * or updates to the {@link updates$} observable.
-   * @param store
-   */
-  internalUpdateStore(store: Record<string, unknown>) {
-    this.store = store;
-  }
-
-  get internalStore() {
-    return this.store;
-  }
-
-  internalUpdateValuesRequireDeserialization(value: boolean) {
-    this._valuesRequireDeserialization = value;
-  }
-
-  get valuesRequireDeserialization(): boolean {
-    return this._valuesRequireDeserialization;
-  }
-
-  get updates$() {
-    return this.updatesSubject.asObservable();
-  }
-
-  get<T>(key: string, options?: StorageOptions): Promise<T> {
-    // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-    // eslint-disable-next-line @typescript-eslint/no-floating-promises
-    this.mock.get(key, options);
-    const value = this.store[key] as T;
-    return Promise.resolve(value);
-  }
-  has(key: string, options?: StorageOptions): Promise<boolean> {
-    // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-    // eslint-disable-next-line @typescript-eslint/no-floating-promises
-    this.mock.has(key, options);
-    return Promise.resolve(this.store[key] != null);
-  }
-  async save<T>(key: string, obj: T, options?: StorageOptions): Promise<void> {
-    // These exceptions are copied from https://github.com/sindresorhus/conf/blob/608adb0c46fb1680ddbd9833043478367a64c120/source/index.ts#L193-L203
-    // which is a library that is used by `ElectronStorageService`. We add them here to ensure that the behavior in our testing mirrors the real world.
-    if (typeof key !== "string" && typeof key !== "object") {
-      throw new TypeError(
-        `Expected \`key\` to be of type \`string\` or \`object\`, got ${typeof key}`,
-      );
-    }
-
-    // We don't throw this error because ElectronStorageService automatically detects this case
-    // and calls `delete()` instead of `set()`.
-    // if (typeof key !== "object" && obj === undefined) {
-    //   throw new TypeError("Use `delete()` to clear values");
-    // }
-
-    if (this._containsReservedKey(key)) {
-      throw new TypeError(
-        `Please don't use the ${INTERNAL_KEY} key, as it's used to manage this module internal operations.`,
-      );
-    }
-
-    // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-    // eslint-disable-next-line @typescript-eslint/no-floating-promises
-    this.mock.save(key, obj, options);
-    this.store[key] = obj;
-    this.updatesSubject.next({ key: key, updateType: "save" });
-  }
-  remove(key: string, options?: StorageOptions): Promise<void> {
-    // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-    // eslint-disable-next-line @typescript-eslint/no-floating-promises
-    this.mock.remove(key, options);
-    delete this.store[key];
-    this.updatesSubject.next({ key: key, updateType: "remove" });
-    return Promise.resolve();
-  }
-
-  private _containsReservedKey(key: string | Partial<unknown>): boolean {
-    if (typeof key === "object") {
-      const firsKey = Object.keys(key)[0];
-
-      if (firsKey === INTERNAL_KEY) {
-        return true;
-      }
-    }
-
-    if (typeof key !== "string") {
-      return false;
-    }
-
-    return false;
-  }
-}
+export { FakeStorageService } from "@bitwarden/storage-test-utils";
diff --git a/libs/storage-test-utils/README.md b/libs/storage-test-utils/README.md
new file mode 100644
index 00000000000..2be8817e402
--- /dev/null
+++ b/libs/storage-test-utils/README.md
@@ -0,0 +1,5 @@
+# storage-test-utils
+
+Owned by: platform
+
+Test tools for the storage library
diff --git a/libs/storage-test-utils/eslint.config.mjs b/libs/storage-test-utils/eslint.config.mjs
new file mode 100644
index 00000000000..9c37d10e3ff
--- /dev/null
+++ b/libs/storage-test-utils/eslint.config.mjs
@@ -0,0 +1,3 @@
+import baseConfig from "../../eslint.config.mjs";
+
+export default [...baseConfig];
diff --git a/libs/storage-test-utils/jest.config.js b/libs/storage-test-utils/jest.config.js
new file mode 100644
index 00000000000..a145b5b2f4c
--- /dev/null
+++ b/libs/storage-test-utils/jest.config.js
@@ -0,0 +1,10 @@
+module.exports = {
+  displayName: "storage-test-utils",
+  preset: "../../jest.preset.js",
+  testEnvironment: "node",
+  transform: {
+    "^.+\\.[tj]s$": ["ts-jest", { tsconfig: "<rootDir>/tsconfig.spec.json" }],
+  },
+  moduleFileExtensions: ["ts", "js", "html"],
+  coverageDirectory: "../../coverage/libs/storage-test-utils",
+};
diff --git a/libs/storage-test-utils/package.json b/libs/storage-test-utils/package.json
new file mode 100644
index 00000000000..22d83f2334e
--- /dev/null
+++ b/libs/storage-test-utils/package.json
@@ -0,0 +1,11 @@
+{
+  "name": "@bitwarden/storage-test-utils",
+  "version": "0.0.1",
+  "description": "Test tools for the storage library",
+  "private": true,
+  "type": "commonjs",
+  "main": "dist/index.js",
+  "types": "dist/index.d.ts",
+  "license": "GPL-3.0",
+  "author": "platform"
+}
diff --git a/libs/storage-test-utils/project.json b/libs/storage-test-utils/project.json
new file mode 100644
index 00000000000..f1aad63c9e3
--- /dev/null
+++ b/libs/storage-test-utils/project.json
@@ -0,0 +1,33 @@
+{
+  "name": "storage-test-utils",
+  "$schema": "../../node_modules/nx/schemas/project-schema.json",
+  "sourceRoot": "libs/storage-test-utils/src",
+  "projectType": "library",
+  "tags": [],
+  "targets": {
+    "build": {
+      "executor": "@nx/js:tsc",
+      "outputs": ["{options.outputPath}"],
+      "options": {
+        "outputPath": "dist/libs/storage-test-utils",
+        "main": "libs/storage-test-utils/src/index.ts",
+        "tsConfig": "libs/storage-test-utils/tsconfig.lib.json",
+        "assets": ["libs/storage-test-utils/*.md"]
+      }
+    },
+    "lint": {
+      "executor": "@nx/eslint:lint",
+      "outputs": ["{options.outputFile}"],
+      "options": {
+        "lintFilePatterns": ["libs/storage-test-utils/**/*.ts"]
+      }
+    },
+    "test": {
+      "executor": "@nx/jest:jest",
+      "outputs": ["{workspaceRoot}/coverage/{projectRoot}"],
+      "options": {
+        "jestConfig": "libs/storage-test-utils/jest.config.js"
+      }
+    }
+  }
+}
diff --git a/libs/storage-test-utils/src/fake-storage.service.ts b/libs/storage-test-utils/src/fake-storage.service.ts
new file mode 100644
index 00000000000..aa902cf0da8
--- /dev/null
+++ b/libs/storage-test-utils/src/fake-storage.service.ts
@@ -0,0 +1,119 @@
+import { MockProxy, mock } from "jest-mock-extended";
+import { Subject } from "rxjs";
+
+import {
+  AbstractStorageService,
+  ObservableStorageService,
+  StorageUpdate,
+  StorageOptions,
+} from "@bitwarden/storage-core";
+
+const INTERNAL_KEY = "__internal__";
+
+export class FakeStorageService implements AbstractStorageService, ObservableStorageService {
+  private store: Record<string, unknown>;
+  private updatesSubject = new Subject<StorageUpdate>();
+  private _valuesRequireDeserialization = false;
+
+  /**
+   * Returns a mock of a {@see AbstractStorageService} for asserting the expected
+   * amount of calls. It is not recommended to use this to mock implementations as
+   * they are not respected.
+   */
+  mock: MockProxy<AbstractStorageService>;
+
+  constructor(initial?: Record<string, unknown>) {
+    this.store = initial ?? {};
+    this.mock = mock<AbstractStorageService>();
+  }
+
+  /**
+   * Updates the internal store for this fake implementation, this bypasses any mock calls
+   * or updates to the {@link updates$} observable.
+   * @param store
+   */
+  internalUpdateStore(store: Record<string, unknown>) {
+    this.store = store;
+  }
+
+  get internalStore() {
+    return this.store;
+  }
+
+  internalUpdateValuesRequireDeserialization(value: boolean) {
+    this._valuesRequireDeserialization = value;
+  }
+
+  get valuesRequireDeserialization(): boolean {
+    return this._valuesRequireDeserialization;
+  }
+
+  get updates$() {
+    return this.updatesSubject.asObservable();
+  }
+
+  get<T>(key: string, options?: StorageOptions): Promise<T> {
+    // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
+    // eslint-disable-next-line @typescript-eslint/no-floating-promises
+    this.mock.get(key, options);
+    const value = this.store[key] as T;
+    return Promise.resolve(value);
+  }
+  has(key: string, options?: StorageOptions): Promise<boolean> {
+    // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
+    // eslint-disable-next-line @typescript-eslint/no-floating-promises
+    this.mock.has(key, options);
+    return Promise.resolve(this.store[key] != null);
+  }
+  async save<T>(key: string, obj: T, options?: StorageOptions): Promise<void> {
+    // These exceptions are copied from https://github.com/sindresorhus/conf/blob/608adb0c46fb1680ddbd9833043478367a64c120/source/index.ts#L193-L203
+    // which is a library that is used by `ElectronStorageService`. We add them here to ensure that the behavior in our testing mirrors the real world.
+    if (typeof key !== "string" && typeof key !== "object") {
+      throw new TypeError(
+        `Expected \`key\` to be of type \`string\` or \`object\`, got ${typeof key}`,
+      );
+    }
+
+    // We don't throw this error because ElectronStorageService automatically detects this case
+    // and calls `delete()` instead of `set()`.
+    // if (typeof key !== "object" && obj === undefined) {
+    //   throw new TypeError("Use `delete()` to clear values");
+    // }
+
+    if (this._containsReservedKey(key)) {
+      throw new TypeError(
+        `Please don't use the ${INTERNAL_KEY} key, as it's used to manage this module internal operations.`,
+      );
+    }
+
+    // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
+    // eslint-disable-next-line @typescript-eslint/no-floating-promises
+    this.mock.save(key, obj, options);
+    this.store[key] = obj;
+    this.updatesSubject.next({ key: key, updateType: "save" });
+  }
+  remove(key: string, options?: StorageOptions): Promise<void> {
+    // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
+    // eslint-disable-next-line @typescript-eslint/no-floating-promises
+    this.mock.remove(key, options);
+    delete this.store[key];
+    this.updatesSubject.next({ key: key, updateType: "remove" });
+    return Promise.resolve();
+  }
+
+  private _containsReservedKey(key: string | Partial<unknown>): boolean {
+    if (typeof key === "object") {
+      const firsKey = Object.keys(key)[0];
+
+      if (firsKey === INTERNAL_KEY) {
+        return true;
+      }
+    }
+
+    if (typeof key !== "string") {
+      return false;
+    }
+
+    return false;
+  }
+}
diff --git a/libs/storage-test-utils/src/index.ts b/libs/storage-test-utils/src/index.ts
new file mode 100644
index 00000000000..dc5fdc1125b
--- /dev/null
+++ b/libs/storage-test-utils/src/index.ts
@@ -0,0 +1 @@
+export * from "./fake-storage.service";
diff --git a/libs/storage-test-utils/src/storage-test-utils.spec.ts b/libs/storage-test-utils/src/storage-test-utils.spec.ts
new file mode 100644
index 00000000000..c323d4ce386
--- /dev/null
+++ b/libs/storage-test-utils/src/storage-test-utils.spec.ts
@@ -0,0 +1,8 @@
+import * as lib from "./index";
+
+describe("storage-test-utils", () => {
+  // This test will fail until something is exported from index.ts
+  it("should work", () => {
+    expect(lib).toBeDefined();
+  });
+});
diff --git a/libs/storage-test-utils/tsconfig.json b/libs/storage-test-utils/tsconfig.json
new file mode 100644
index 00000000000..62ebbd94647
--- /dev/null
+++ b/libs/storage-test-utils/tsconfig.json
@@ -0,0 +1,13 @@
+{
+  "extends": "../../tsconfig.base.json",
+  "files": [],
+  "include": [],
+  "references": [
+    {
+      "path": "./tsconfig.lib.json"
+    },
+    {
+      "path": "./tsconfig.spec.json"
+    }
+  ]
+}
diff --git a/libs/storage-test-utils/tsconfig.lib.json b/libs/storage-test-utils/tsconfig.lib.json
new file mode 100644
index 00000000000..9cbf6736007
--- /dev/null
+++ b/libs/storage-test-utils/tsconfig.lib.json
@@ -0,0 +1,10 @@
+{
+  "extends": "./tsconfig.json",
+  "compilerOptions": {
+    "outDir": "../../dist/out-tsc",
+    "declaration": true,
+    "types": ["node"]
+  },
+  "include": ["src/**/*.ts"],
+  "exclude": ["jest.config.js", "src/**/*.spec.ts"]
+}
diff --git a/libs/storage-test-utils/tsconfig.spec.json b/libs/storage-test-utils/tsconfig.spec.json
new file mode 100644
index 00000000000..901c72378dd
--- /dev/null
+++ b/libs/storage-test-utils/tsconfig.spec.json
@@ -0,0 +1,10 @@
+{
+  "extends": "./tsconfig.json",
+  "compilerOptions": {
+    "outDir": "../..//dist/out-tsc",
+    "module": "commonjs",
+    "moduleResolution": "node10",
+    "types": ["jest", "node"]
+  },
+  "include": ["jest.config.ts", "src/**/*.test.ts", "src/**/*.spec.ts", "src/**/*.d.ts"]
+}
diff --git a/package-lock.json b/package-lock.json
index 0855df67e8b..176aa40a650 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -250,8 +250,6 @@
     },
     "apps/cli/node_modules/is-docker": {
       "version": "2.2.1",
-      "resolved": "https://registry.npmjs.org/is-docker/-/is-docker-2.2.1.tgz",
-      "integrity": "sha512-F+i2BKsFrH66iaUFc0woD8sLy8getkwTwtOBjvs56Cx4CgJDeKQeqfz8wAYiSb8JOprWhHH5p77PbmYCvvUuXQ==",
       "license": "MIT",
       "bin": {
         "is-docker": "cli.js"
@@ -375,6 +373,11 @@
       "version": "0.0.1",
       "license": "GPL-3.0"
     },
+    "libs/storage-test-utils": {
+      "name": "@bitwarden/storage-test-utils",
+      "version": "0.0.1",
+      "license": "GPL-3.0"
+    },
     "libs/tools/export/vault-export/vault-export-core": {
       "name": "@bitwarden/vault-export-core",
       "version": "0.0.0",
@@ -4621,6 +4624,10 @@
       "resolved": "libs/storage-core",
       "link": true
     },
+    "node_modules/@bitwarden/storage-test-utils": {
+      "resolved": "libs/storage-test-utils",
+      "link": true
+    },
     "node_modules/@bitwarden/ui-common": {
       "resolved": "libs/ui/common",
       "link": true
diff --git a/tsconfig.base.json b/tsconfig.base.json
index fd3f898b319..b826d51e66e 100644
--- a/tsconfig.base.json
+++ b/tsconfig.base.json
@@ -43,6 +43,7 @@
       "@bitwarden/platform/*": ["./libs/platform/src/*"],
       "@bitwarden/send-ui": ["./libs/tools/send/send-ui/src"],
       "@bitwarden/storage-core": ["libs/storage-core/src/index.ts"],
+      "@bitwarden/storage-test-utils": ["libs/storage-test-utils/src/index.ts"],
       "@bitwarden/ui-common": ["./libs/ui/common/src"],
       "@bitwarden/ui-common/setup-jest": ["./libs/ui/common/src/setup-jest"],
       "@bitwarden/vault": ["./libs/vault/src"],

From 7eb7507229cec9dbf0fe0a2c69139970cd970ac5 Mon Sep 17 00:00:00 2001
From: Bernd Schoolmann <mail@quexten.com>
Date: Mon, 30 Jun 2025 20:04:31 +0200
Subject: [PATCH 028/239] Enable ptrace prevention on Linux (except snap)
 (#15204)

---
 apps/desktop/src/main/window.main.ts | 15 +++++++++++----
 1 file changed, 11 insertions(+), 4 deletions(-)

diff --git a/apps/desktop/src/main/window.main.ts b/apps/desktop/src/main/window.main.ts
index f1a55866079..4d9438b588d 100644
--- a/apps/desktop/src/main/window.main.ts
+++ b/apps/desktop/src/main/window.main.ts
@@ -16,7 +16,15 @@ import { BiometricStateService } from "@bitwarden/key-management";
 import { WindowState } from "../platform/models/domain/window-state";
 import { applyMainWindowStyles, applyPopupModalStyles } from "../platform/popup-modal-styles";
 import { DesktopSettingsService } from "../platform/services/desktop-settings.service";
-import { cleanUserAgent, isDev, isLinux, isMac, isMacAppStore, isWindows } from "../utils";
+import {
+  cleanUserAgent,
+  isDev,
+  isLinux,
+  isMac,
+  isMacAppStore,
+  isSnapStore,
+  isWindows,
+} from "../utils";
 
 const mainWindowSizeKey = "mainWindowSize";
 const WindowEventHandlingDelay = 100;
@@ -156,9 +164,8 @@ export class WindowMain {
               }
             }
 
-            // this currently breaks the file portal, so should only be used when
-            // no files are needed but security requirements are super high https://github.com/flatpak/xdg-desktop-portal/issues/785
-            if (process.env.EXPERIMENTAL_PREVENT_DEBUGGER_MEMORY_ACCESS === "true") {
+            // this currently breaks the file portal for snap https://github.com/flatpak/xdg-desktop-portal/issues/785
+            if (!isSnapStore()) {
               this.logService.info("Disabling memory dumps in main process");
               try {
                 await processisolations.disableMemoryAccess();

From f9d0e6fe4a89834c458d59cfcb1029fcf54462e5 Mon Sep 17 00:00:00 2001
From: Jason Ng <jng@bitwarden.com>
Date: Mon, 30 Jun 2025 15:10:01 -0400
Subject: [PATCH 029/239] [CL-572] adding new colors for icons, update icon
 docs (#15367)

* adding new colors for icons, update icon docs, remove art from colors mdx
---
 libs/components/src/icon/icon.mdx       | 24 +++++++++++++-----------
 libs/components/src/stories/colors.mdx  | 10 ++++++++--
 libs/components/src/tw-theme.css        | 16 ++++++++++++++++
 libs/components/tailwind.config.base.js |  9 +++++++++
 4 files changed, 46 insertions(+), 13 deletions(-)

diff --git a/libs/components/src/icon/icon.mdx b/libs/components/src/icon/icon.mdx
index d1809c81cd2..01f03d1861b 100644
--- a/libs/components/src/icon/icon.mdx
+++ b/libs/components/src/icon/icon.mdx
@@ -41,12 +41,14 @@ import { IconModule } from "@bitwarden/components";
 
    - A non-comprehensive list of common colors and their associated classes is below:
 
-     | Hardcoded Value                                                                                                                          | Tailwind Stroke Class     | Tailwind Fill Class     | Tailwind Variable       |
-     | ---------------------------------------------------------------------------------------------------------------------------------------- | ------------------------- | ----------------------- | ----------------------- |
-     | `#020F66` <span style={{ display: "inline-block", width: "8px", height: "8px", borderRadius: "50%", backgroundColor: "#020F66"}}></span> | `tw-stroke-art-primary`   | `tw-fill-art-primary`   | `--color-art-primary`   |
-     | `#10949D` <span style={{ display: "inline-block", width: "8px", height: "8px", borderRadius: "50%", backgroundColor: "#10949D"}}></span> | `tw-stroke-art-accent`    | `tw-fill-art-accent`    | `--color-art-accent`    |
-     | `#2CDDE9` <span style={{ display: "inline-block", width: "8px", height: "8px", borderRadius: "50%", backgroundColor: "#2CDDE9"}}></span> | `tw-stroke-art-accent`    | `tw-fill-art-accent`    | `--color-art-accent`    |
-     | `#89929F` <span style={{ display: "inline-block", width: "8px", height: "8px", borderRadius: "50%", backgroundColor: "#89929F"}}></span> | `tw-stroke-secondary-600` | `tw-fill-secondary-600` | `--color-secondary-600` |
+     | Hardcoded Value                                                                                                                          | Tailwind Stroke Class                 | Tailwind Fill Class                 | Tailwind Variable                   |
+     | ---------------------------------------------------------------------------------------------------------------------------------------- | ------------------------------------- | ----------------------------------- | ----------------------------------- |
+     | `#020F66` <span style={{ display: "inline-block", width: "8px", height: "8px", borderRadius: "50%", backgroundColor: "#020F66"}}></span> | `tw-stroke-illustration-outline`      | `tw-fill-illustration-outline`      | `--color-illustration-outline`      |
+     | `#DBE5F6` <span style={{ display: "inline-block", width: "8px", height: "8px", borderRadius: "50%", backgroundColor: "#DBE5F6"}}></span> | `tw-stroke-illustration-bg-primary`   | `tw-fill-illustration-bg-primary`   | `--color-illustration-bg-primary`   |
+     | `#AAC3EF` <span style={{ display: "inline-block", width: "8px", height: "8px", borderRadius: "50%", backgroundColor: "#AAC3EF"}}></span> | `tw-stroke-illustration-bg-secondary` | `tw-fill-illustration-bg-secondary` | `--color-illustration-bg-secondary` |
+     | `#FFFFFF` <span style={{ display: "inline-block", width: "8px", height: "8px", borderRadius: "50%", backgroundColor: "#FFFFFF"}}></span> | `tw-stroke-illustration-bg-tertiary`  | `tw-fill-illustration-bg-tertiary`  | `--color-illustration-bg-tertiary`  |
+     | `#FFBF00` <span style={{ display: "inline-block", width: "8px", height: "8px", borderRadius: "50%", backgroundColor: "#FFBF00"}}></span> | `tw-stroke-illustration-tertiary`     | `tw-fill-illustration-tertiary`     | `--color-illustration-tertiary`     |
+     | `#175DDC` <span style={{ display: "inline-block", width: "8px", height: "8px", borderRadius: "50%", backgroundColor: "#175DDC"}}></span> | `tw-stroke-illustration-logo`         | `tw-fill-illustration-logo`         | `--color-illustration-logo`         |
 
    - If the hex that you have on an SVG path is not listed above, there are a few ways to figure out
      the appropriate Tailwind class:
@@ -56,20 +58,20 @@ import { IconModule } from "@bitwarden/components";
        - Click on an individual path on the SVG until you see the path's properties in the
          right-hand panel.
        - Scroll down to the Colors section.
-         - Example: `Color/Art/Primary`
+         - Example: `Color/Illustration/Outline`
          - This also includes Hex or RGB values that can be used to find the appropriate Tailwind
            variable as well if you follow the manual search option below.
        - Create the appropriate stroke or fill class from the color used.
-         - Example: `Color/Art/Primary` corresponds to `--color-art-primary` which corresponds to
-           `tw-stroke-art-primary` or `tw-fill-art-primary`.
+         - Example: `Color/Illustration/Outline` corresponds to `--color-illustration-outline` which
+           corresponds to `tw-stroke-illustration-outline` or `tw-fill-illustration-outline`.
      - **Option 2: Manual Search**
        - Take the path's stroke or fill hex value and convert it to RGB using a tool like
          [Hex to RGB](https://www.rgbtohex.net/hex-to-rgb/).
        - Search for the RGB value without commas in our `tw-theme.css` to find the Tailwind variable
          that corresponds to the color.
        - Create the appropriate stroke or fill class using the Tailwind variable.
-         - Example: `--color-art-primary` corresponds to `tw-stroke-art-primary` or
-           `tw-fill-art-primary`.
+         - Example: `--color-illustration-outline` corresponds to `tw-stroke-illustration-outline`
+           or `tw-fill-illustration-outline`.
 
 6. **Remove any hardcoded width or height attributes** if your SVG has a configured
    [viewBox](https://developer.mozilla.org/en-US/docs/Web/SVG/Attribute/viewBox) attribute in order
diff --git a/libs/components/src/stories/colors.mdx b/libs/components/src/stories/colors.mdx
index 3a4a4f0fe3a..87ca673797b 100644
--- a/libs/components/src/stories/colors.mdx
+++ b/libs/components/src/stories/colors.mdx
@@ -62,9 +62,14 @@ export const Table = (args) => (
       {Row("notification-600")}
     </tbody>
     <tbody>
-      {Row("art-primary")}
-      {Row("art-accent")}
+      {Row("illustration-outline")}
+      {Row("illustration-bg-primary")}
+      {Row("illustration-bg-secondary")}
+      {Row("illustration-bg-tertiary")}
+      {Row("illustration-tertiary")}
+      {Row("illustration-logo")}
     </tbody>
+
     <thead>
       <tr>
         <th>Text</th>
@@ -78,6 +83,7 @@ export const Table = (args) => (
       {Row("text-alt2")}
       {Row("text-code")}
     </tbody>
+
   </table>
 );
 
diff --git a/libs/components/src/tw-theme.css b/libs/components/src/tw-theme.css
index c8de973c3d1..078357491e5 100644
--- a/libs/components/src/tw-theme.css
+++ b/libs/components/src/tw-theme.css
@@ -46,6 +46,7 @@
   --color-notification-100: 255 225 247;
   --color-notification-600: 192 17 118;
 
+  /*art styles deprecated, use 'illustration' instead*/
   --color-art-primary: 2 15 102;
   --color-art-accent: 44 221 223;
 
@@ -60,6 +61,13 @@
   --tw-ring-offset-color: #ffffff;
 
   --tw-sm-breakpoint: 640px;
+
+  --color-illustration-outline: 2 15 102;
+  --color-illustration-bg-primary: 219 229 246;
+  --color-illustration-bg-secondary: 170 195 239;
+  --color-illustration-bg-tertiary: 255 255 255;
+  --color-illustration-tertiary: 255 191 0;
+  --color-illustration-logo: 23 93 220;
 }
 
 .theme_light {
@@ -106,6 +114,7 @@
   --color-notification-100: 117 37 83;
   --color-notification-600: 255 143 208;
 
+  /*art styles deprecated, use 'illustration' instead*/
   --color-art-primary: 243 246 249;
   --color-art-accent: 44 221 233;
 
@@ -118,6 +127,13 @@
   --color-marketing-logo: 255 255 255;
 
   --tw-ring-offset-color: #1f242e;
+
+  --color-illustration-outline: 23 93 220;
+  --color-illustration-bg-primary: 170 195 239;
+  --color-illustration-bg-secondary: 121 161 233;
+  --color-illustration-bg-tertiary: 243 246 249;
+  --color-illustration-tertiary: 255 191 0;
+  --color-illustration-logo: 255 255 255;
 }
 
 /**
diff --git a/libs/components/tailwind.config.base.js b/libs/components/tailwind.config.base.js
index fde59f4a089..c38515cf775 100644
--- a/libs/components/tailwind.config.base.js
+++ b/libs/components/tailwind.config.base.js
@@ -63,6 +63,7 @@ module.exports = {
         100: rgba("--color-notification-100"),
         600: rgba("--color-notification-600"),
       },
+      // art styles deprecated, use 'illustration' instead
       art: {
         primary: rgba("--color-art-primary"),
         accent: rgba("--color-art-accent"),
@@ -83,6 +84,14 @@ module.exports = {
         alt4: rgba("--color-background-alt4"),
       },
       "marketing-logo": rgba("--color-marketing-logo"),
+      illustration: {
+        outline: rgba("--color-illustration-outline"),
+        "bg-primary": rgba("--color-illustration-bg-primary"),
+        "bg-secondary": rgba("--color-illustration-bg-secondary"),
+        "bg-tertiary": rgba("--color-illustration-bg-tertiary"),
+        tertiary: rgba("--color-illustration-tertiary"),
+        logo: rgba("--color-illustration-logo"),
+      },
     },
     textColor: {
       main: rgba("--color-text-main"),

From 5639668d3fa72643f540b29c51191fe3f6e453b5 Mon Sep 17 00:00:00 2001
From: rr-bw <102181210+rr-bw@users.noreply.github.com>
Date: Mon, 30 Jun 2025 12:39:53 -0700
Subject: [PATCH 030/239] feat:(set-initial-password): [Auth/PM-18457] Create
 SetInitialPasswordComponent (#14186)

Creates a `SetInitialPasswordComponent` to be used in scenarios where an existing and authed user must set an initial password.

Feature Flag: `PM16117_SetInitialPasswordRefactor`
---
 apps/browser/src/_locales/en/messages.json    |   3 +
 apps/browser/src/popup/app-routing.module.ts  |  11 +
 apps/desktop/src/app/app-routing.module.ts    |  10 +
 .../src/app/services/services.module.ts       |  19 +
 ...sktop-set-initial-password.service.spec.ts | 177 +++++
 .../desktop-set-initial-password.service.ts   |  59 ++
 apps/desktop/src/locales/en/messages.json     |   3 +
 apps/web/src/app/auth/core/services/index.ts  |   1 +
 .../services/password-management/index.ts     |   1 +
 .../web-set-initial-password.service.spec.ts  | 208 ++++++
 .../web-set-initial-password.service.ts       |  83 +++
 apps/web/src/app/core/core.module.ts          |  20 +
 apps/web/src/app/oss-routing.module.ts        |  11 +
 apps/web/src/locales/en/messages.json         |   3 +
 libs/angular/src/auth/guards/auth.guard.ts    |  39 +-
 ...initial-password.service.implementation.ts | 248 +++++++
 ...fault-set-initial-password.service.spec.ts | 633 ++++++++++++++++++
 .../set-initial-password.component.html       |  29 +
 .../set-initial-password.component.ts         | 249 +++++++
 ...et-initial-password.service.abstraction.ts |  64 ++
 .../src/services/jslib-services.module.ts     |  18 +
 21 files changed, 1876 insertions(+), 13 deletions(-)
 create mode 100644 apps/desktop/src/app/services/set-initial-password/desktop-set-initial-password.service.spec.ts
 create mode 100644 apps/desktop/src/app/services/set-initial-password/desktop-set-initial-password.service.ts
 create mode 100644 apps/web/src/app/auth/core/services/password-management/index.ts
 create mode 100644 apps/web/src/app/auth/core/services/password-management/set-initial-password/web-set-initial-password.service.spec.ts
 create mode 100644 apps/web/src/app/auth/core/services/password-management/set-initial-password/web-set-initial-password.service.ts
 create mode 100644 libs/angular/src/auth/password-management/set-initial-password/default-set-initial-password.service.implementation.ts
 create mode 100644 libs/angular/src/auth/password-management/set-initial-password/default-set-initial-password.service.spec.ts
 create mode 100644 libs/angular/src/auth/password-management/set-initial-password/set-initial-password.component.html
 create mode 100644 libs/angular/src/auth/password-management/set-initial-password/set-initial-password.component.ts
 create mode 100644 libs/angular/src/auth/password-management/set-initial-password/set-initial-password.service.abstraction.ts

diff --git a/apps/browser/src/_locales/en/messages.json b/apps/browser/src/_locales/en/messages.json
index b6a8d1834b4..ce5787c46bd 100644
--- a/apps/browser/src/_locales/en/messages.json
+++ b/apps/browser/src/_locales/en/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "You must verify your email to use this feature. You can verify your email in the web vault."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Updated master password"
   },
diff --git a/apps/browser/src/popup/app-routing.module.ts b/apps/browser/src/popup/app-routing.module.ts
index e3574c4e142..f836f5ffac7 100644
--- a/apps/browser/src/popup/app-routing.module.ts
+++ b/apps/browser/src/popup/app-routing.module.ts
@@ -15,6 +15,8 @@ import {
   tdeDecryptionRequiredGuard,
   unauthGuardFn,
 } from "@bitwarden/angular/auth/guards";
+import { SetInitialPasswordComponent } from "@bitwarden/angular/auth/password-management/set-initial-password/set-initial-password.component";
+import { canAccessFeature } from "@bitwarden/angular/platform/guard/feature-flag.guard";
 import {
   DevicesIcon,
   LoginComponent,
@@ -38,6 +40,7 @@ import {
   UserLockIcon,
   VaultIcon,
 } from "@bitwarden/auth/angular";
+import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
 import { AnonLayoutWrapperComponent, AnonLayoutWrapperData, Icons } from "@bitwarden/components";
 import { LockComponent } from "@bitwarden/key-management-ui";
 
@@ -376,6 +379,14 @@ const routes: Routes = [
           },
         ],
       },
+      {
+        path: "set-initial-password",
+        canActivate: [canAccessFeature(FeatureFlag.PM16117_SetInitialPasswordRefactor), authGuard],
+        component: SetInitialPasswordComponent,
+        data: {
+          elevation: 1,
+        } satisfies RouteDataProperties,
+      },
       {
         path: "login",
         canActivate: [unauthGuardFn(unauthRouteOverrides), IntroCarouselGuard],
diff --git a/apps/desktop/src/app/app-routing.module.ts b/apps/desktop/src/app/app-routing.module.ts
index d90f3cf0d26..42846878d03 100644
--- a/apps/desktop/src/app/app-routing.module.ts
+++ b/apps/desktop/src/app/app-routing.module.ts
@@ -14,6 +14,8 @@ import {
   tdeDecryptionRequiredGuard,
   unauthGuardFn,
 } from "@bitwarden/angular/auth/guards";
+import { SetInitialPasswordComponent } from "@bitwarden/angular/auth/password-management/set-initial-password/set-initial-password.component";
+import { canAccessFeature } from "@bitwarden/angular/platform/guard/feature-flag.guard";
 import { featureFlaggedRoute } from "@bitwarden/angular/platform/utils/feature-flagged-route";
 import {
   LoginComponent,
@@ -315,6 +317,14 @@ const routes: Routes = [
           },
         } satisfies AnonLayoutWrapperData,
       },
+      {
+        path: "set-initial-password",
+        canActivate: [canAccessFeature(FeatureFlag.PM16117_SetInitialPasswordRefactor), authGuard],
+        component: SetInitialPasswordComponent,
+        data: {
+          maxWidth: "lg",
+        } satisfies AnonLayoutWrapperData,
+      },
       {
         path: "2fa",
         canActivate: [unauthGuardFn(), TwoFactorAuthGuard],
diff --git a/apps/desktop/src/app/services/services.module.ts b/apps/desktop/src/app/services/services.module.ts
index 06c42c5b0bc..0abd810bd18 100644
--- a/apps/desktop/src/app/services/services.module.ts
+++ b/apps/desktop/src/app/services/services.module.ts
@@ -5,6 +5,7 @@ import { Router } from "@angular/router";
 import { Subject, merge } from "rxjs";
 
 import { OrganizationUserApiService } from "@bitwarden/admin-console/common";
+import { SetInitialPasswordService } from "@bitwarden/angular/auth/password-management/set-initial-password/set-initial-password.service.abstraction";
 import { SafeProvider, safeProvider } from "@bitwarden/angular/platform/utils/safe-provider";
 import {
   SECURE_STORAGE,
@@ -140,6 +141,7 @@ import { DesktopSetPasswordJitService } from "./desktop-set-password-jit.service
 import { InitService } from "./init.service";
 import { NativeMessagingManifestService } from "./native-messaging-manifest.service";
 import { RendererCryptoFunctionService } from "./renderer-crypto-function.service";
+import { DesktopSetInitialPasswordService } from "./set-initial-password/desktop-set-initial-password.service";
 
 const RELOAD_CALLBACK = new SafeInjectionToken<() => any>("RELOAD_CALLBACK");
 
@@ -392,6 +394,23 @@ const safeProviders: SafeProvider[] = [
       InternalUserDecryptionOptionsServiceAbstraction,
     ],
   }),
+  safeProvider({
+    provide: SetInitialPasswordService,
+    useClass: DesktopSetInitialPasswordService,
+    deps: [
+      ApiService,
+      EncryptService,
+      I18nServiceAbstraction,
+      KdfConfigService,
+      KeyService,
+      MasterPasswordApiService,
+      InternalMasterPasswordServiceAbstraction,
+      OrganizationApiServiceAbstraction,
+      OrganizationUserApiService,
+      InternalUserDecryptionOptionsServiceAbstraction,
+      MessagingServiceAbstraction,
+    ],
+  }),
   safeProvider({
     provide: SsoUrlService,
     useClass: SsoUrlService,
diff --git a/apps/desktop/src/app/services/set-initial-password/desktop-set-initial-password.service.spec.ts b/apps/desktop/src/app/services/set-initial-password/desktop-set-initial-password.service.spec.ts
new file mode 100644
index 00000000000..02438300e94
--- /dev/null
+++ b/apps/desktop/src/app/services/set-initial-password/desktop-set-initial-password.service.spec.ts
@@ -0,0 +1,177 @@
+import { MockProxy, mock } from "jest-mock-extended";
+import { BehaviorSubject, of } from "rxjs";
+
+import { OrganizationUserApiService } from "@bitwarden/admin-console/common";
+import {
+  SetInitialPasswordCredentials,
+  SetInitialPasswordService,
+  SetInitialPasswordUserType,
+} from "@bitwarden/angular/auth/password-management/set-initial-password/set-initial-password.service.abstraction";
+import {
+  FakeUserDecryptionOptions as UserDecryptionOptions,
+  InternalUserDecryptionOptionsServiceAbstraction,
+} from "@bitwarden/auth/common";
+import { ApiService } from "@bitwarden/common/abstractions/api.service";
+import { OrganizationApiServiceAbstraction } from "@bitwarden/common/admin-console/abstractions/organization/organization-api.service.abstraction";
+import { MasterPasswordApiService } from "@bitwarden/common/auth/abstractions/master-password-api.service.abstraction";
+import { SetPasswordRequest } from "@bitwarden/common/auth/models/request/set-password.request";
+import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import { InternalMasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
+import { KeysRequest } from "@bitwarden/common/models/request/keys.request";
+import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
+import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
+import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
+import { CsprngArray } from "@bitwarden/common/types/csprng";
+import { UserId } from "@bitwarden/common/types/guid";
+import { MasterKey, UserKey } from "@bitwarden/common/types/key";
+import { DEFAULT_KDF_CONFIG, KdfConfigService, KeyService } from "@bitwarden/key-management";
+
+import { DesktopSetInitialPasswordService } from "./desktop-set-initial-password.service";
+
+describe("DesktopSetInitialPasswordService", () => {
+  let sut: SetInitialPasswordService;
+
+  let apiService: MockProxy<ApiService>;
+  let encryptService: MockProxy<EncryptService>;
+  let i18nService: MockProxy<I18nService>;
+  let kdfConfigService: MockProxy<KdfConfigService>;
+  let keyService: MockProxy<KeyService>;
+  let masterPasswordApiService: MockProxy<MasterPasswordApiService>;
+  let masterPasswordService: MockProxy<InternalMasterPasswordServiceAbstraction>;
+  let organizationApiService: MockProxy<OrganizationApiServiceAbstraction>;
+  let organizationUserApiService: MockProxy<OrganizationUserApiService>;
+  let userDecryptionOptionsService: MockProxy<InternalUserDecryptionOptionsServiceAbstraction>;
+  let messagingService: MockProxy<MessagingService>;
+
+  beforeEach(() => {
+    apiService = mock<ApiService>();
+    encryptService = mock<EncryptService>();
+    i18nService = mock<I18nService>();
+    kdfConfigService = mock<KdfConfigService>();
+    keyService = mock<KeyService>();
+    masterPasswordApiService = mock<MasterPasswordApiService>();
+    masterPasswordService = mock<InternalMasterPasswordServiceAbstraction>();
+    organizationApiService = mock<OrganizationApiServiceAbstraction>();
+    organizationUserApiService = mock<OrganizationUserApiService>();
+    userDecryptionOptionsService = mock<InternalUserDecryptionOptionsServiceAbstraction>();
+    messagingService = mock<MessagingService>();
+
+    sut = new DesktopSetInitialPasswordService(
+      apiService,
+      encryptService,
+      i18nService,
+      kdfConfigService,
+      keyService,
+      masterPasswordApiService,
+      masterPasswordService,
+      organizationApiService,
+      organizationUserApiService,
+      userDecryptionOptionsService,
+      messagingService,
+    );
+  });
+
+  it("should instantiate", () => {
+    expect(sut).not.toBeFalsy();
+  });
+
+  describe("setInitialPassword(...)", () => {
+    // Mock function parameters
+    let credentials: SetInitialPasswordCredentials;
+    let userType: SetInitialPasswordUserType;
+    let userId: UserId;
+
+    // Mock other function data
+    let userKey: UserKey;
+    let userKeyEncString: EncString;
+    let masterKeyEncryptedUserKey: [UserKey, EncString];
+
+    let keyPair: [string, EncString];
+    let keysRequest: KeysRequest;
+
+    let userDecryptionOptions: UserDecryptionOptions;
+    let userDecryptionOptionsSubject: BehaviorSubject<UserDecryptionOptions>;
+    let setPasswordRequest: SetPasswordRequest;
+
+    beforeEach(() => {
+      // Mock function parameters
+      credentials = {
+        newMasterKey: new SymmetricCryptoKey(new Uint8Array(32).buffer as CsprngArray) as MasterKey,
+        newServerMasterKeyHash: "newServerMasterKeyHash",
+        newLocalMasterKeyHash: "newLocalMasterKeyHash",
+        newPasswordHint: "newPasswordHint",
+        kdfConfig: DEFAULT_KDF_CONFIG,
+        orgSsoIdentifier: "orgSsoIdentifier",
+        orgId: "orgId",
+        resetPasswordAutoEnroll: false,
+      };
+      userId = "userId" as UserId;
+      userType = SetInitialPasswordUserType.JIT_PROVISIONED_MP_ORG_USER;
+
+      // Mock other function data
+      userKey = new SymmetricCryptoKey(new Uint8Array(64).buffer as CsprngArray) as UserKey;
+      userKeyEncString = new EncString("masterKeyEncryptedUserKey");
+      masterKeyEncryptedUserKey = [userKey, userKeyEncString];
+
+      keyPair = ["publicKey", new EncString("privateKey")];
+      keysRequest = new KeysRequest(keyPair[0], keyPair[1].encryptedString);
+
+      userDecryptionOptions = new UserDecryptionOptions({ hasMasterPassword: true });
+      userDecryptionOptionsSubject = new BehaviorSubject(userDecryptionOptions);
+      userDecryptionOptionsService.userDecryptionOptions$ = userDecryptionOptionsSubject;
+
+      setPasswordRequest = new SetPasswordRequest(
+        credentials.newServerMasterKeyHash,
+        masterKeyEncryptedUserKey[1].encryptedString,
+        credentials.newPasswordHint,
+        credentials.orgSsoIdentifier,
+        keysRequest,
+        credentials.kdfConfig.kdfType,
+        credentials.kdfConfig.iterations,
+      );
+    });
+
+    function setupMocks() {
+      // Mock makeMasterKeyEncryptedUserKey() values
+      keyService.userKey$.mockReturnValue(of(userKey));
+      keyService.encryptUserKeyWithMasterKey.mockResolvedValue(masterKeyEncryptedUserKey);
+
+      // Mock keyPair values
+      keyService.userPrivateKey$.mockReturnValue(of(null));
+      keyService.userPublicKey$.mockReturnValue(of(null));
+      keyService.makeKeyPair.mockResolvedValue(keyPair);
+    }
+
+    describe("given the initial password was successfully set", () => {
+      it("should send a 'redrawMenu' message", async () => {
+        // Arrange
+        setupMocks();
+
+        // Act
+        await sut.setInitialPassword(credentials, userType, userId);
+
+        // Assert
+        expect(masterPasswordApiService.setPassword).toHaveBeenCalledWith(setPasswordRequest);
+        expect(messagingService.send).toHaveBeenCalledTimes(1);
+        expect(messagingService.send).toHaveBeenCalledWith("redrawMenu");
+      });
+    });
+
+    describe("given the initial password was NOT successfully set (due to some error in setInitialPassword())", () => {
+      it("should NOT send a 'redrawMenu' message", async () => {
+        // Arrange
+        credentials.newMasterKey = null; // will trigger an error in setInitialPassword()
+        setupMocks();
+
+        // Act
+        const promise = sut.setInitialPassword(credentials, userType, userId);
+
+        // Assert
+        await expect(promise).rejects.toThrow();
+        expect(masterPasswordApiService.setPassword).not.toHaveBeenCalled();
+        expect(messagingService.send).not.toHaveBeenCalled();
+      });
+    });
+  });
+});
diff --git a/apps/desktop/src/app/services/set-initial-password/desktop-set-initial-password.service.ts b/apps/desktop/src/app/services/set-initial-password/desktop-set-initial-password.service.ts
new file mode 100644
index 00000000000..8de7e73fafe
--- /dev/null
+++ b/apps/desktop/src/app/services/set-initial-password/desktop-set-initial-password.service.ts
@@ -0,0 +1,59 @@
+import { OrganizationUserApiService } from "@bitwarden/admin-console/common";
+import { DefaultSetInitialPasswordService } from "@bitwarden/angular/auth/password-management/set-initial-password/default-set-initial-password.service.implementation";
+import {
+  SetInitialPasswordCredentials,
+  SetInitialPasswordService,
+  SetInitialPasswordUserType,
+} from "@bitwarden/angular/auth/password-management/set-initial-password/set-initial-password.service.abstraction";
+import { InternalUserDecryptionOptionsServiceAbstraction } from "@bitwarden/auth/common";
+import { ApiService } from "@bitwarden/common/abstractions/api.service";
+import { OrganizationApiServiceAbstraction } from "@bitwarden/common/admin-console/abstractions/organization/organization-api.service.abstraction";
+import { MasterPasswordApiService } from "@bitwarden/common/auth/abstractions/master-password-api.service.abstraction";
+import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import { InternalMasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
+import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
+import { UserId } from "@bitwarden/common/types/guid";
+import { KdfConfigService, KeyService } from "@bitwarden/key-management";
+
+export class DesktopSetInitialPasswordService
+  extends DefaultSetInitialPasswordService
+  implements SetInitialPasswordService
+{
+  constructor(
+    protected apiService: ApiService,
+    protected encryptService: EncryptService,
+    protected i18nService: I18nService,
+    protected kdfConfigService: KdfConfigService,
+    protected keyService: KeyService,
+    protected masterPasswordApiService: MasterPasswordApiService,
+    protected masterPasswordService: InternalMasterPasswordServiceAbstraction,
+    protected organizationApiService: OrganizationApiServiceAbstraction,
+    protected organizationUserApiService: OrganizationUserApiService,
+    protected userDecryptionOptionsService: InternalUserDecryptionOptionsServiceAbstraction,
+    private messagingService: MessagingService,
+  ) {
+    super(
+      apiService,
+      encryptService,
+      i18nService,
+      kdfConfigService,
+      keyService,
+      masterPasswordApiService,
+      masterPasswordService,
+      organizationApiService,
+      organizationUserApiService,
+      userDecryptionOptionsService,
+    );
+  }
+
+  override async setInitialPassword(
+    credentials: SetInitialPasswordCredentials,
+    userType: SetInitialPasswordUserType,
+    userId: UserId,
+  ) {
+    await super.setInitialPassword(credentials, userType, userId);
+
+    this.messagingService.send("redrawMenu");
+  }
+}
diff --git a/apps/desktop/src/locales/en/messages.json b/apps/desktop/src/locales/en/messages.json
index f67de2d51d7..ac9307c482c 100644
--- a/apps/desktop/src/locales/en/messages.json
+++ b/apps/desktop/src/locales/en/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "This action is protected. To continue, please re-enter your master password to verify your identity."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Updated master password"
   },
diff --git a/apps/web/src/app/auth/core/services/index.ts b/apps/web/src/app/auth/core/services/index.ts
index 5539e3b76ea..8c556986225 100644
--- a/apps/web/src/app/auth/core/services/index.ts
+++ b/apps/web/src/app/auth/core/services/index.ts
@@ -2,6 +2,7 @@ export * from "./change-password";
 export * from "./login";
 export * from "./login-decryption-options";
 export * from "./webauthn-login";
+export * from "./password-management";
 export * from "./set-password-jit";
 export * from "./registration";
 export * from "./two-factor-auth";
diff --git a/apps/web/src/app/auth/core/services/password-management/index.ts b/apps/web/src/app/auth/core/services/password-management/index.ts
new file mode 100644
index 00000000000..1444fd024af
--- /dev/null
+++ b/apps/web/src/app/auth/core/services/password-management/index.ts
@@ -0,0 +1 @@
+export * from "./set-initial-password/web-set-initial-password.service";
diff --git a/apps/web/src/app/auth/core/services/password-management/set-initial-password/web-set-initial-password.service.spec.ts b/apps/web/src/app/auth/core/services/password-management/set-initial-password/web-set-initial-password.service.spec.ts
new file mode 100644
index 00000000000..b90d0624b3f
--- /dev/null
+++ b/apps/web/src/app/auth/core/services/password-management/set-initial-password/web-set-initial-password.service.spec.ts
@@ -0,0 +1,208 @@
+import { MockProxy, mock } from "jest-mock-extended";
+import { BehaviorSubject, of } from "rxjs";
+
+import { OrganizationUserApiService } from "@bitwarden/admin-console/common";
+import {
+  SetInitialPasswordCredentials,
+  SetInitialPasswordService,
+  SetInitialPasswordUserType,
+} from "@bitwarden/angular/auth/password-management/set-initial-password/set-initial-password.service.abstraction";
+import {
+  FakeUserDecryptionOptions as UserDecryptionOptions,
+  InternalUserDecryptionOptionsServiceAbstraction,
+} from "@bitwarden/auth/common";
+import { ApiService } from "@bitwarden/common/abstractions/api.service";
+import { OrganizationApiServiceAbstraction } from "@bitwarden/common/admin-console/abstractions/organization/organization-api.service.abstraction";
+import { MasterPasswordApiService } from "@bitwarden/common/auth/abstractions/master-password-api.service.abstraction";
+import { SetPasswordRequest } from "@bitwarden/common/auth/models/request/set-password.request";
+import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import { InternalMasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
+import { KeysRequest } from "@bitwarden/common/models/request/keys.request";
+import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
+import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
+import { CsprngArray } from "@bitwarden/common/types/csprng";
+import { UserId } from "@bitwarden/common/types/guid";
+import { MasterKey, UserKey } from "@bitwarden/common/types/key";
+import { DEFAULT_KDF_CONFIG, KdfConfigService, KeyService } from "@bitwarden/key-management";
+import { AcceptOrganizationInviteService } from "@bitwarden/web-vault/app/auth/organization-invite/accept-organization.service";
+import { RouterService } from "@bitwarden/web-vault/app/core";
+
+import { WebSetInitialPasswordService } from "./web-set-initial-password.service";
+
+describe("WebSetInitialPasswordService", () => {
+  let sut: SetInitialPasswordService;
+
+  let apiService: MockProxy<ApiService>;
+  let encryptService: MockProxy<EncryptService>;
+  let i18nService: MockProxy<I18nService>;
+  let kdfConfigService: MockProxy<KdfConfigService>;
+  let keyService: MockProxy<KeyService>;
+  let masterPasswordApiService: MockProxy<MasterPasswordApiService>;
+  let masterPasswordService: MockProxy<InternalMasterPasswordServiceAbstraction>;
+  let organizationApiService: MockProxy<OrganizationApiServiceAbstraction>;
+  let organizationUserApiService: MockProxy<OrganizationUserApiService>;
+  let userDecryptionOptionsService: MockProxy<InternalUserDecryptionOptionsServiceAbstraction>;
+  let acceptOrganizationInviteService: MockProxy<AcceptOrganizationInviteService>;
+  let routerService: MockProxy<RouterService>;
+
+  beforeEach(() => {
+    apiService = mock<ApiService>();
+    encryptService = mock<EncryptService>();
+    i18nService = mock<I18nService>();
+    kdfConfigService = mock<KdfConfigService>();
+    keyService = mock<KeyService>();
+    masterPasswordApiService = mock<MasterPasswordApiService>();
+    masterPasswordService = mock<InternalMasterPasswordServiceAbstraction>();
+    organizationApiService = mock<OrganizationApiServiceAbstraction>();
+    organizationUserApiService = mock<OrganizationUserApiService>();
+    userDecryptionOptionsService = mock<InternalUserDecryptionOptionsServiceAbstraction>();
+    acceptOrganizationInviteService = mock<AcceptOrganizationInviteService>();
+    routerService = mock<RouterService>();
+
+    sut = new WebSetInitialPasswordService(
+      apiService,
+      encryptService,
+      i18nService,
+      kdfConfigService,
+      keyService,
+      masterPasswordApiService,
+      masterPasswordService,
+      organizationApiService,
+      organizationUserApiService,
+      userDecryptionOptionsService,
+      acceptOrganizationInviteService,
+      routerService,
+    );
+  });
+
+  it("should instantiate", () => {
+    expect(sut).not.toBeFalsy();
+  });
+
+  describe("setInitialPassword(...)", () => {
+    // Mock function parameters
+    let credentials: SetInitialPasswordCredentials;
+    let userType: SetInitialPasswordUserType;
+    let userId: UserId;
+
+    // Mock other function data
+    let userKey: UserKey;
+    let userKeyEncString: EncString;
+    let masterKeyEncryptedUserKey: [UserKey, EncString];
+
+    let keyPair: [string, EncString];
+    let keysRequest: KeysRequest;
+
+    let userDecryptionOptions: UserDecryptionOptions;
+    let userDecryptionOptionsSubject: BehaviorSubject<UserDecryptionOptions>;
+    let setPasswordRequest: SetPasswordRequest;
+
+    beforeEach(() => {
+      // Mock function parameters
+      credentials = {
+        newMasterKey: new SymmetricCryptoKey(new Uint8Array(32).buffer as CsprngArray) as MasterKey,
+        newServerMasterKeyHash: "newServerMasterKeyHash",
+        newLocalMasterKeyHash: "newLocalMasterKeyHash",
+        newPasswordHint: "newPasswordHint",
+        kdfConfig: DEFAULT_KDF_CONFIG,
+        orgSsoIdentifier: "orgSsoIdentifier",
+        orgId: "orgId",
+        resetPasswordAutoEnroll: false,
+      };
+      userId = "userId" as UserId;
+      userType = SetInitialPasswordUserType.JIT_PROVISIONED_MP_ORG_USER;
+
+      // Mock other function data
+      userKey = new SymmetricCryptoKey(new Uint8Array(64).buffer as CsprngArray) as UserKey;
+      userKeyEncString = new EncString("masterKeyEncryptedUserKey");
+      masterKeyEncryptedUserKey = [userKey, userKeyEncString];
+
+      keyPair = ["publicKey", new EncString("privateKey")];
+      keysRequest = new KeysRequest(keyPair[0], keyPair[1].encryptedString);
+
+      userDecryptionOptions = new UserDecryptionOptions({ hasMasterPassword: true });
+      userDecryptionOptionsSubject = new BehaviorSubject(userDecryptionOptions);
+      userDecryptionOptionsService.userDecryptionOptions$ = userDecryptionOptionsSubject;
+
+      setPasswordRequest = new SetPasswordRequest(
+        credentials.newServerMasterKeyHash,
+        masterKeyEncryptedUserKey[1].encryptedString,
+        credentials.newPasswordHint,
+        credentials.orgSsoIdentifier,
+        keysRequest,
+        credentials.kdfConfig.kdfType,
+        credentials.kdfConfig.iterations,
+      );
+    });
+
+    function setupMocks() {
+      // Mock makeMasterKeyEncryptedUserKey() values
+      keyService.userKey$.mockReturnValue(of(userKey));
+      keyService.encryptUserKeyWithMasterKey.mockResolvedValue(masterKeyEncryptedUserKey);
+
+      // Mock keyPair values
+      keyService.userPrivateKey$.mockReturnValue(of(null));
+      keyService.userPublicKey$.mockReturnValue(of(null));
+      keyService.makeKeyPair.mockResolvedValue(keyPair);
+    }
+
+    describe("given the initial password was successfully set", () => {
+      it("should call routerService.getAndClearLoginRedirectUrl()", async () => {
+        // Arrange
+        setupMocks();
+
+        // Act
+        await sut.setInitialPassword(credentials, userType, userId);
+
+        // Assert
+        expect(masterPasswordApiService.setPassword).toHaveBeenCalledWith(setPasswordRequest);
+        expect(routerService.getAndClearLoginRedirectUrl).toHaveBeenCalledTimes(1);
+      });
+
+      it("should call acceptOrganizationInviteService.clearOrganizationInvitation()", async () => {
+        // Arrange
+        setupMocks();
+
+        // Act
+        await sut.setInitialPassword(credentials, userType, userId);
+
+        // Assert
+        expect(masterPasswordApiService.setPassword).toHaveBeenCalledWith(setPasswordRequest);
+        expect(acceptOrganizationInviteService.clearOrganizationInvitation).toHaveBeenCalledTimes(
+          1,
+        );
+      });
+    });
+
+    describe("given the initial password was NOT successfully set (due to some error in setInitialPassword())", () => {
+      it("should NOT call routerService.getAndClearLoginRedirectUrl()", async () => {
+        // Arrange
+        credentials.newMasterKey = null; // will trigger an error in setInitialPassword()
+        setupMocks();
+
+        // Act
+        const promise = sut.setInitialPassword(credentials, userType, userId);
+
+        // Assert
+        await expect(promise).rejects.toThrow();
+        expect(masterPasswordApiService.setPassword).not.toHaveBeenCalled();
+        expect(routerService.getAndClearLoginRedirectUrl).not.toHaveBeenCalled();
+      });
+
+      it("should NOT call acceptOrganizationInviteService.clearOrganizationInvitation()", async () => {
+        // Arrange
+        credentials.newMasterKey = null; // will trigger an error in setInitialPassword()
+        setupMocks();
+
+        // Act
+        const promise = sut.setInitialPassword(credentials, userType, userId);
+
+        // Assert
+        await expect(promise).rejects.toThrow();
+        expect(masterPasswordApiService.setPassword).not.toHaveBeenCalled();
+        expect(acceptOrganizationInviteService.clearOrganizationInvitation).not.toHaveBeenCalled();
+      });
+    });
+  });
+});
diff --git a/apps/web/src/app/auth/core/services/password-management/set-initial-password/web-set-initial-password.service.ts b/apps/web/src/app/auth/core/services/password-management/set-initial-password/web-set-initial-password.service.ts
new file mode 100644
index 00000000000..41e7e8ad4ab
--- /dev/null
+++ b/apps/web/src/app/auth/core/services/password-management/set-initial-password/web-set-initial-password.service.ts
@@ -0,0 +1,83 @@
+import { OrganizationUserApiService } from "@bitwarden/admin-console/common";
+import { DefaultSetInitialPasswordService } from "@bitwarden/angular/auth/password-management/set-initial-password/default-set-initial-password.service.implementation";
+import {
+  SetInitialPasswordCredentials,
+  SetInitialPasswordService,
+  SetInitialPasswordUserType,
+} from "@bitwarden/angular/auth/password-management/set-initial-password/set-initial-password.service.abstraction";
+import { InternalUserDecryptionOptionsServiceAbstraction } from "@bitwarden/auth/common";
+import { ApiService } from "@bitwarden/common/abstractions/api.service";
+import { OrganizationApiServiceAbstraction } from "@bitwarden/common/admin-console/abstractions/organization/organization-api.service.abstraction";
+import { MasterPasswordApiService } from "@bitwarden/common/auth/abstractions/master-password-api.service.abstraction";
+import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import { InternalMasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
+import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+import { UserId } from "@bitwarden/common/types/guid";
+import { KdfConfigService, KeyService } from "@bitwarden/key-management";
+import { AcceptOrganizationInviteService } from "@bitwarden/web-vault/app/auth/organization-invite/accept-organization.service";
+import { RouterService } from "@bitwarden/web-vault/app/core";
+
+export class WebSetInitialPasswordService
+  extends DefaultSetInitialPasswordService
+  implements SetInitialPasswordService
+{
+  constructor(
+    protected apiService: ApiService,
+    protected encryptService: EncryptService,
+    protected i18nService: I18nService,
+    protected kdfConfigService: KdfConfigService,
+    protected keyService: KeyService,
+    protected masterPasswordApiService: MasterPasswordApiService,
+    protected masterPasswordService: InternalMasterPasswordServiceAbstraction,
+    protected organizationApiService: OrganizationApiServiceAbstraction,
+    protected organizationUserApiService: OrganizationUserApiService,
+    protected userDecryptionOptionsService: InternalUserDecryptionOptionsServiceAbstraction,
+    private acceptOrganizationInviteService: AcceptOrganizationInviteService,
+    private routerService: RouterService,
+  ) {
+    super(
+      apiService,
+      encryptService,
+      i18nService,
+      kdfConfigService,
+      keyService,
+      masterPasswordApiService,
+      masterPasswordService,
+      organizationApiService,
+      organizationUserApiService,
+      userDecryptionOptionsService,
+    );
+  }
+
+  override async setInitialPassword(
+    credentials: SetInitialPasswordCredentials,
+    userType: SetInitialPasswordUserType,
+    userId: UserId,
+  ) {
+    await super.setInitialPassword(credentials, userType, userId);
+
+    /**
+     * TODO: Investigate refactoring the following logic in https://bitwarden.atlassian.net/browse/PM-22615
+     * ---
+     * When a user has been invited to an org, they can be accepted into the org in two different ways:
+     *
+     *  1) By clicking the email invite link, which triggers the normal AcceptOrganizationComponent flow
+     *     a. This flow sets an org invite in state
+     *     b. However, if the user does not already have an account AND the org has SSO enabled AND the require
+     *        SSO policy enabled, the AcceptOrganizationComponent will send the user to /sso to accelerate
+     *        the user through the SSO JIT provisioning process (see #2 below)
+     *
+     *  2) By logging in via SSO, which triggers the JIT provisioning process
+     *     a. This flow does NOT (itself) set an org invite in state
+     *     b. The set initial password process on the server accepts the user into the org after successfully
+     *        setting the password (see server - SetInitialMasterPasswordCommand.cs)
+     *
+     * If a user clicks the email link but gets accelerated through the SSO JIT process (see 1b),
+     * the SSO JIT process will accept the user into the org upon setting their initial password (see 2b),
+     * at which point we must remember to clear the deep linked URL used for accepting the org invite, as well
+     * as clear the org invite itself that was originally set in state by the AcceptOrganizationComponent.
+     */
+    await this.routerService.getAndClearLoginRedirectUrl();
+    await this.acceptOrganizationInviteService.clearOrganizationInvitation();
+  }
+}
diff --git a/apps/web/src/app/core/core.module.ts b/apps/web/src/app/core/core.module.ts
index 46435981a5e..b6a6ca102d8 100644
--- a/apps/web/src/app/core/core.module.ts
+++ b/apps/web/src/app/core/core.module.ts
@@ -10,6 +10,7 @@ import {
   OrganizationUserApiService,
   CollectionService,
 } from "@bitwarden/admin-console/common";
+import { SetInitialPasswordService } from "@bitwarden/angular/auth/password-management/set-initial-password/set-initial-password.service.abstraction";
 import { SafeProvider, safeProvider } from "@bitwarden/angular/platform/utils/safe-provider";
 import {
   CLIENT_TYPE,
@@ -117,6 +118,7 @@ import {
   WebLoginDecryptionOptionsService,
   WebTwoFactorAuthDuoComponentService,
   LinkSsoService,
+  WebSetInitialPasswordService,
 } from "../auth";
 import { WebSsoComponentService } from "../auth/core/services/login/web-sso-component.service";
 import { AcceptOrganizationInviteService } from "../auth/organization-invite/accept-organization.service";
@@ -283,6 +285,24 @@ const safeProviders: SafeProvider[] = [
       InternalUserDecryptionOptionsServiceAbstraction,
     ],
   }),
+  safeProvider({
+    provide: SetInitialPasswordService,
+    useClass: WebSetInitialPasswordService,
+    deps: [
+      ApiService,
+      EncryptService,
+      I18nServiceAbstraction,
+      KdfConfigService,
+      KeyServiceAbstraction,
+      MasterPasswordApiService,
+      InternalMasterPasswordServiceAbstraction,
+      OrganizationApiServiceAbstraction,
+      OrganizationUserApiService,
+      InternalUserDecryptionOptionsServiceAbstraction,
+      AcceptOrganizationInviteService,
+      RouterService,
+    ],
+  }),
   safeProvider({
     provide: AppIdService,
     useClass: DefaultAppIdService,
diff --git a/apps/web/src/app/oss-routing.module.ts b/apps/web/src/app/oss-routing.module.ts
index 0733d1ef289..615bb545811 100644
--- a/apps/web/src/app/oss-routing.module.ts
+++ b/apps/web/src/app/oss-routing.module.ts
@@ -10,6 +10,8 @@ import {
   unauthGuardFn,
   activeAuthGuard,
 } from "@bitwarden/angular/auth/guards";
+import { SetInitialPasswordComponent } from "@bitwarden/angular/auth/password-management/set-initial-password/set-initial-password.component";
+import { canAccessFeature } from "@bitwarden/angular/platform/guard/feature-flag.guard";
 import {
   PasswordHintComponent,
   RegistrationFinishComponent,
@@ -36,6 +38,7 @@ import {
   NewDeviceVerificationComponent,
   DeviceVerificationIcon,
 } from "@bitwarden/auth/angular";
+import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
 import { AnonLayoutWrapperComponent, AnonLayoutWrapperData, Icons } from "@bitwarden/components";
 import { LockComponent } from "@bitwarden/key-management-ui";
 import { VaultIcons } from "@bitwarden/vault";
@@ -305,6 +308,14 @@ const routes: Routes = [
           },
         ],
       },
+      {
+        path: "set-initial-password",
+        canActivate: [canAccessFeature(FeatureFlag.PM16117_SetInitialPasswordRefactor), authGuard],
+        component: SetInitialPasswordComponent,
+        data: {
+          maxWidth: "lg",
+        } satisfies AnonLayoutWrapperData,
+      },
       {
         path: "set-password-jit",
         component: SetPasswordJitComponent,
diff --git a/apps/web/src/locales/en/messages.json b/apps/web/src/locales/en/messages.json
index 5c9b02e5287..eed2757eacc 100644
--- a/apps/web/src/locales/en/messages.json
+++ b/apps/web/src/locales/en/messages.json
@@ -6065,6 +6065,9 @@
   "add": {
     "message": "Add"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Master password saved"
   },
diff --git a/libs/angular/src/auth/guards/auth.guard.ts b/libs/angular/src/auth/guards/auth.guard.ts
index f99a91fda34..7b8c21fef62 100644
--- a/libs/angular/src/auth/guards/auth.guard.ts
+++ b/libs/angular/src/auth/guards/auth.guard.ts
@@ -39,7 +39,32 @@ export const authGuard: CanActivateFn = async (
     return false;
   }
 
-  if (authStatus === AuthenticationStatus.Locked) {
+  const userId = (await firstValueFrom(accountService.activeAccount$)).id;
+  const forceSetPasswordReason = await firstValueFrom(
+    masterPasswordService.forceSetPasswordReason$(userId),
+  );
+
+  const isSetInitialPasswordFlagOn = await configService.getFeatureFlag(
+    FeatureFlag.PM16117_SetInitialPasswordRefactor,
+  );
+  const isChangePasswordFlagOn = await configService.getFeatureFlag(
+    FeatureFlag.PM16117_ChangeExistingPasswordRefactor,
+  );
+
+  // User JIT provisioned into a master-password-encryption org
+  if (
+    authStatus === AuthenticationStatus.Locked &&
+    forceSetPasswordReason === ForceSetPasswordReason.SsoNewJitProvisionedUser &&
+    !routerState.url.includes("set-initial-password") &&
+    isSetInitialPasswordFlagOn
+  ) {
+    return router.createUrlTree(["/set-initial-password"]);
+  }
+
+  if (
+    authStatus === AuthenticationStatus.Locked &&
+    forceSetPasswordReason !== ForceSetPasswordReason.SsoNewJitProvisionedUser
+  ) {
     if (routerState != null) {
       messagingService.send("lockedUrl", { url: routerState.url });
     }
@@ -55,18 +80,6 @@ export const authGuard: CanActivateFn = async (
     return router.createUrlTree(["/remove-password"]);
   }
 
-  const userId = (await firstValueFrom(accountService.activeAccount$)).id;
-  const forceSetPasswordReason = await firstValueFrom(
-    masterPasswordService.forceSetPasswordReason$(userId),
-  );
-
-  const isSetInitialPasswordFlagOn = await configService.getFeatureFlag(
-    FeatureFlag.PM16117_SetInitialPasswordRefactor,
-  );
-  const isChangePasswordFlagOn = await configService.getFeatureFlag(
-    FeatureFlag.PM16117_ChangeExistingPasswordRefactor,
-  );
-
   // TDE org user has "manage account recovery" permission
   if (
     forceSetPasswordReason ===
diff --git a/libs/angular/src/auth/password-management/set-initial-password/default-set-initial-password.service.implementation.ts b/libs/angular/src/auth/password-management/set-initial-password/default-set-initial-password.service.implementation.ts
new file mode 100644
index 00000000000..1c5edb00c8c
--- /dev/null
+++ b/libs/angular/src/auth/password-management/set-initial-password/default-set-initial-password.service.implementation.ts
@@ -0,0 +1,248 @@
+import { firstValueFrom } from "rxjs";
+
+// This import has been flagged as unallowed for this class. It may be involved in a circular dependency loop.
+// eslint-disable-next-line no-restricted-imports
+import {
+  OrganizationUserApiService,
+  OrganizationUserResetPasswordEnrollmentRequest,
+} from "@bitwarden/admin-console/common";
+// This import has been flagged as unallowed for this class. It may be involved in a circular dependency loop.
+// eslint-disable-next-line no-restricted-imports
+import { InternalUserDecryptionOptionsServiceAbstraction } from "@bitwarden/auth/common";
+import { ApiService } from "@bitwarden/common/abstractions/api.service";
+import { OrganizationApiServiceAbstraction } from "@bitwarden/common/admin-console/abstractions/organization/organization-api.service.abstraction";
+import { MasterPasswordApiService } from "@bitwarden/common/auth/abstractions/master-password-api.service.abstraction";
+import { ForceSetPasswordReason } from "@bitwarden/common/auth/models/domain/force-set-password-reason";
+import { SetPasswordRequest } from "@bitwarden/common/auth/models/request/set-password.request";
+import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import { InternalMasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
+import { KeysRequest } from "@bitwarden/common/models/request/keys.request";
+import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+import { Utils } from "@bitwarden/common/platform/misc/utils";
+import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
+import { UserId } from "@bitwarden/common/types/guid";
+import { MasterKey, UserKey } from "@bitwarden/common/types/key";
+import { KdfConfigService, KeyService, KdfConfig } from "@bitwarden/key-management";
+
+import {
+  SetInitialPasswordService,
+  SetInitialPasswordCredentials,
+  SetInitialPasswordUserType,
+} from "./set-initial-password.service.abstraction";
+
+export class DefaultSetInitialPasswordService implements SetInitialPasswordService {
+  constructor(
+    protected apiService: ApiService,
+    protected encryptService: EncryptService,
+    protected i18nService: I18nService,
+    protected kdfConfigService: KdfConfigService,
+    protected keyService: KeyService,
+    protected masterPasswordApiService: MasterPasswordApiService,
+    protected masterPasswordService: InternalMasterPasswordServiceAbstraction,
+    protected organizationApiService: OrganizationApiServiceAbstraction,
+    protected organizationUserApiService: OrganizationUserApiService,
+    protected userDecryptionOptionsService: InternalUserDecryptionOptionsServiceAbstraction,
+  ) {}
+
+  async setInitialPassword(
+    credentials: SetInitialPasswordCredentials,
+    userType: SetInitialPasswordUserType,
+    userId: UserId,
+  ): Promise<void> {
+    const {
+      newMasterKey,
+      newServerMasterKeyHash,
+      newLocalMasterKeyHash,
+      newPasswordHint,
+      kdfConfig,
+      orgSsoIdentifier,
+      orgId,
+      resetPasswordAutoEnroll,
+    } = credentials;
+
+    for (const [key, value] of Object.entries(credentials)) {
+      if (value == null) {
+        throw new Error(`${key} not found. Could not set password.`);
+      }
+    }
+    if (userId == null) {
+      throw new Error("userId not found. Could not set password.");
+    }
+    if (userType == null) {
+      throw new Error("userType not found. Could not set password.");
+    }
+
+    const masterKeyEncryptedUserKey = await this.makeMasterKeyEncryptedUserKey(
+      newMasterKey,
+      userId,
+    );
+    if (masterKeyEncryptedUserKey == null || !masterKeyEncryptedUserKey[1].encryptedString) {
+      throw new Error("masterKeyEncryptedUserKey not found. Could not set password.");
+    }
+
+    let keyPair: [string, EncString] | null = null;
+    let keysRequest: KeysRequest | null = null;
+
+    if (userType === SetInitialPasswordUserType.JIT_PROVISIONED_MP_ORG_USER) {
+      /**
+       * A user being JIT provisioned into a MP encryption org does not yet have a user
+       * asymmetric key pair, so we create it for them here.
+       *
+       * Sidenote:
+       *   In the case of a TDE user whose permissions require that they have a MP - that user
+       *   will already have a user asymmetric key pair by this point, so we skip this if-block
+       *   so that we don't create a new key pair for them.
+       */
+
+      // Extra safety check (see description on https://github.com/bitwarden/clients/pull/10180):
+      //   In case we have have a local private key and are not sure whether it has been posted to the server,
+      //   we post the local private key instead of generating a new one
+      const existingUserPrivateKey = (await firstValueFrom(
+        this.keyService.userPrivateKey$(userId),
+      )) as Uint8Array;
+
+      const existingUserPublicKey = await firstValueFrom(this.keyService.userPublicKey$(userId));
+
+      if (existingUserPrivateKey != null && existingUserPublicKey != null) {
+        const existingUserPublicKeyB64 = Utils.fromBufferToB64(existingUserPublicKey);
+
+        // Existing key pair
+        keyPair = [
+          existingUserPublicKeyB64,
+          await this.encryptService.wrapDecapsulationKey(
+            existingUserPrivateKey,
+            masterKeyEncryptedUserKey[0],
+          ),
+        ];
+      } else {
+        // New key pair
+        keyPair = await this.keyService.makeKeyPair(masterKeyEncryptedUserKey[0]);
+      }
+
+      if (keyPair == null) {
+        throw new Error("keyPair not found. Could not set password.");
+      }
+      if (!keyPair[1].encryptedString) {
+        throw new Error("encrypted private key not found. Could not set password.");
+      }
+
+      keysRequest = new KeysRequest(keyPair[0], keyPair[1].encryptedString);
+    }
+
+    const request = new SetPasswordRequest(
+      newServerMasterKeyHash,
+      masterKeyEncryptedUserKey[1].encryptedString,
+      newPasswordHint,
+      orgSsoIdentifier,
+      keysRequest,
+      kdfConfig.kdfType,
+      kdfConfig.iterations,
+    );
+
+    await this.masterPasswordApiService.setPassword(request);
+
+    // Clear force set password reason to allow navigation back to vault.
+    await this.masterPasswordService.setForceSetPasswordReason(ForceSetPasswordReason.None, userId);
+
+    // User now has a password so update account decryption options in state
+    await this.updateAccountDecryptionProperties(
+      newMasterKey,
+      kdfConfig,
+      masterKeyEncryptedUserKey,
+      userId,
+    );
+
+    /**
+     * Set the private key only for new JIT provisioned users in MP encryption orgs.
+     * (Existing TDE users will have their private key set on sync or on login.)
+     */
+    if (keyPair != null && userType === SetInitialPasswordUserType.JIT_PROVISIONED_MP_ORG_USER) {
+      if (!keyPair[1].encryptedString) {
+        throw new Error("encrypted private key not found. Could not set private key in state.");
+      }
+      await this.keyService.setPrivateKey(keyPair[1].encryptedString, userId);
+    }
+
+    await this.masterPasswordService.setMasterKeyHash(newLocalMasterKeyHash, userId);
+
+    if (resetPasswordAutoEnroll) {
+      await this.handleResetPasswordAutoEnroll(newServerMasterKeyHash, orgId, userId);
+    }
+  }
+
+  private async makeMasterKeyEncryptedUserKey(
+    masterKey: MasterKey,
+    userId: UserId,
+  ): Promise<[UserKey, EncString]> {
+    let masterKeyEncryptedUserKey: [UserKey, EncString] | null = null;
+
+    const userKey = await firstValueFrom(this.keyService.userKey$(userId));
+
+    if (userKey == null) {
+      masterKeyEncryptedUserKey = await this.keyService.makeUserKey(masterKey);
+    } else {
+      masterKeyEncryptedUserKey = await this.keyService.encryptUserKeyWithMasterKey(masterKey);
+    }
+
+    return masterKeyEncryptedUserKey;
+  }
+
+  private async updateAccountDecryptionProperties(
+    masterKey: MasterKey,
+    kdfConfig: KdfConfig,
+    masterKeyEncryptedUserKey: [UserKey, EncString],
+    userId: UserId,
+  ) {
+    const userDecryptionOpts = await firstValueFrom(
+      this.userDecryptionOptionsService.userDecryptionOptions$,
+    );
+    userDecryptionOpts.hasMasterPassword = true;
+    await this.userDecryptionOptionsService.setUserDecryptionOptions(userDecryptionOpts);
+    await this.kdfConfigService.setKdfConfig(userId, kdfConfig);
+    await this.masterPasswordService.setMasterKey(masterKey, userId);
+    await this.keyService.setUserKey(masterKeyEncryptedUserKey[0], userId);
+  }
+
+  private async handleResetPasswordAutoEnroll(
+    masterKeyHash: string,
+    orgId: string,
+    userId: UserId,
+  ) {
+    const organizationKeys = await this.organizationApiService.getKeys(orgId);
+
+    if (organizationKeys == null) {
+      throw new Error(
+        "Organization keys response is null. Could not handle reset password auto enroll.",
+      );
+    }
+
+    const orgPublicKey = Utils.fromB64ToArray(organizationKeys.publicKey);
+    const userKey = await firstValueFrom(this.keyService.userKey$(userId));
+
+    if (userKey == null) {
+      throw new Error("userKey not found. Could not handle reset password auto enroll.");
+    }
+
+    // RSA encrypt user key with organization public key
+    const orgPublicKeyEncryptedUserKey = await this.encryptService.encapsulateKeyUnsigned(
+      userKey,
+      orgPublicKey,
+    );
+
+    if (orgPublicKeyEncryptedUserKey == null || !orgPublicKeyEncryptedUserKey.encryptedString) {
+      throw new Error(
+        "orgPublicKeyEncryptedUserKey not found. Could not handle reset password auto enroll.",
+      );
+    }
+
+    const enrollmentRequest = new OrganizationUserResetPasswordEnrollmentRequest();
+    enrollmentRequest.masterPasswordHash = masterKeyHash;
+    enrollmentRequest.resetPasswordKey = orgPublicKeyEncryptedUserKey.encryptedString;
+
+    await this.organizationUserApiService.putOrganizationUserResetPasswordEnrollment(
+      orgId,
+      userId,
+      enrollmentRequest,
+    );
+  }
+}
diff --git a/libs/angular/src/auth/password-management/set-initial-password/default-set-initial-password.service.spec.ts b/libs/angular/src/auth/password-management/set-initial-password/default-set-initial-password.service.spec.ts
new file mode 100644
index 00000000000..ca4d9adbd67
--- /dev/null
+++ b/libs/angular/src/auth/password-management/set-initial-password/default-set-initial-password.service.spec.ts
@@ -0,0 +1,633 @@
+import { MockProxy, mock } from "jest-mock-extended";
+import { BehaviorSubject, of } from "rxjs";
+
+// This import has been flagged as unallowed for this class. It may be involved in a circular dependency loop.
+// eslint-disable-next-line no-restricted-imports
+import {
+  OrganizationUserApiService,
+  OrganizationUserResetPasswordEnrollmentRequest,
+} from "@bitwarden/admin-console/common";
+// This import has been flagged as unallowed for this class. It may be involved in a circular dependency loop.
+// eslint-disable-next-line no-restricted-imports
+import {
+  FakeUserDecryptionOptions as UserDecryptionOptions,
+  InternalUserDecryptionOptionsServiceAbstraction,
+} from "@bitwarden/auth/common";
+import { ApiService } from "@bitwarden/common/abstractions/api.service";
+import { OrganizationApiServiceAbstraction } from "@bitwarden/common/admin-console/abstractions/organization/organization-api.service.abstraction";
+import { OrganizationKeysResponse } from "@bitwarden/common/admin-console/models/response/organization-keys.response";
+import { MasterPasswordApiService } from "@bitwarden/common/auth/abstractions/master-password-api.service.abstraction";
+import { ForceSetPasswordReason } from "@bitwarden/common/auth/models/domain/force-set-password-reason";
+import { SetPasswordRequest } from "@bitwarden/common/auth/models/request/set-password.request";
+import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import { InternalMasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
+import { KeysRequest } from "@bitwarden/common/models/request/keys.request";
+import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+import { Utils } from "@bitwarden/common/platform/misc/utils";
+import { EncryptedString, EncString } from "@bitwarden/common/platform/models/domain/enc-string";
+import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
+import { CsprngArray } from "@bitwarden/common/types/csprng";
+import { UserId } from "@bitwarden/common/types/guid";
+import { MasterKey, UserKey, UserPrivateKey, UserPublicKey } from "@bitwarden/common/types/key";
+import { DEFAULT_KDF_CONFIG, KdfConfigService, KeyService } from "@bitwarden/key-management";
+
+import { DefaultSetInitialPasswordService } from "./default-set-initial-password.service.implementation";
+import {
+  SetInitialPasswordCredentials,
+  SetInitialPasswordService,
+  SetInitialPasswordUserType,
+} from "./set-initial-password.service.abstraction";
+
+describe("DefaultSetInitialPasswordService", () => {
+  let sut: SetInitialPasswordService;
+
+  let apiService: MockProxy<ApiService>;
+  let encryptService: MockProxy<EncryptService>;
+  let i18nService: MockProxy<I18nService>;
+  let kdfConfigService: MockProxy<KdfConfigService>;
+  let keyService: MockProxy<KeyService>;
+  let masterPasswordApiService: MockProxy<MasterPasswordApiService>;
+  let masterPasswordService: MockProxy<InternalMasterPasswordServiceAbstraction>;
+  let organizationApiService: MockProxy<OrganizationApiServiceAbstraction>;
+  let organizationUserApiService: MockProxy<OrganizationUserApiService>;
+  let userDecryptionOptionsService: MockProxy<InternalUserDecryptionOptionsServiceAbstraction>;
+
+  beforeEach(() => {
+    apiService = mock<ApiService>();
+    encryptService = mock<EncryptService>();
+    i18nService = mock<I18nService>();
+    kdfConfigService = mock<KdfConfigService>();
+    keyService = mock<KeyService>();
+    masterPasswordApiService = mock<MasterPasswordApiService>();
+    masterPasswordService = mock<InternalMasterPasswordServiceAbstraction>();
+    organizationApiService = mock<OrganizationApiServiceAbstraction>();
+    organizationUserApiService = mock<OrganizationUserApiService>();
+    userDecryptionOptionsService = mock<InternalUserDecryptionOptionsServiceAbstraction>();
+
+    sut = new DefaultSetInitialPasswordService(
+      apiService,
+      encryptService,
+      i18nService,
+      kdfConfigService,
+      keyService,
+      masterPasswordApiService,
+      masterPasswordService,
+      organizationApiService,
+      organizationUserApiService,
+      userDecryptionOptionsService,
+    );
+  });
+
+  it("should instantiate", () => {
+    expect(sut).not.toBeFalsy();
+  });
+
+  describe("setInitialPassword(...)", () => {
+    // Mock function parameters
+    let credentials: SetInitialPasswordCredentials;
+    let userType: SetInitialPasswordUserType;
+    let userId: UserId;
+
+    // Mock other function data
+    let userKey: UserKey;
+    let userKeyEncString: EncString;
+    let masterKeyEncryptedUserKey: [UserKey, EncString];
+
+    let existingUserPublicKey: UserPublicKey;
+    let existingUserPrivateKey: UserPrivateKey;
+    let userKeyEncryptedPrivateKey: EncString;
+
+    let keyPair: [string, EncString];
+    let keysRequest: KeysRequest;
+
+    let organizationKeys: OrganizationKeysResponse;
+    let orgPublicKeyEncryptedUserKey: EncString;
+
+    let userDecryptionOptions: UserDecryptionOptions;
+    let userDecryptionOptionsSubject: BehaviorSubject<UserDecryptionOptions>;
+    let setPasswordRequest: SetPasswordRequest;
+
+    let enrollmentRequest: OrganizationUserResetPasswordEnrollmentRequest;
+
+    beforeEach(() => {
+      // Mock function parameters
+      credentials = {
+        newMasterKey: new SymmetricCryptoKey(new Uint8Array(32).buffer as CsprngArray) as MasterKey,
+        newServerMasterKeyHash: "newServerMasterKeyHash",
+        newLocalMasterKeyHash: "newLocalMasterKeyHash",
+        newPasswordHint: "newPasswordHint",
+        kdfConfig: DEFAULT_KDF_CONFIG,
+        orgSsoIdentifier: "orgSsoIdentifier",
+        orgId: "orgId",
+        resetPasswordAutoEnroll: false,
+      };
+      userId = "userId" as UserId;
+      userType = SetInitialPasswordUserType.JIT_PROVISIONED_MP_ORG_USER;
+
+      // Mock other function data
+      userKey = new SymmetricCryptoKey(new Uint8Array(64).buffer as CsprngArray) as UserKey;
+      userKeyEncString = new EncString("masterKeyEncryptedUserKey");
+      masterKeyEncryptedUserKey = [userKey, userKeyEncString];
+
+      existingUserPublicKey = Utils.fromB64ToArray("existingUserPublicKey") as UserPublicKey;
+      existingUserPrivateKey = Utils.fromB64ToArray("existingUserPrivateKey") as UserPrivateKey;
+      userKeyEncryptedPrivateKey = new EncString("userKeyEncryptedPrivateKey");
+
+      keyPair = ["publicKey", new EncString("privateKey")];
+      keysRequest = new KeysRequest(keyPair[0], keyPair[1].encryptedString);
+
+      organizationKeys = {
+        privateKey: "orgPrivateKey",
+        publicKey: "orgPublicKey",
+      } as OrganizationKeysResponse;
+      orgPublicKeyEncryptedUserKey = new EncString("orgPublicKeyEncryptedUserKey");
+
+      userDecryptionOptions = new UserDecryptionOptions({ hasMasterPassword: true });
+      userDecryptionOptionsSubject = new BehaviorSubject(userDecryptionOptions);
+      userDecryptionOptionsService.userDecryptionOptions$ = userDecryptionOptionsSubject;
+
+      setPasswordRequest = new SetPasswordRequest(
+        credentials.newServerMasterKeyHash,
+        masterKeyEncryptedUserKey[1].encryptedString,
+        credentials.newPasswordHint,
+        credentials.orgSsoIdentifier,
+        keysRequest,
+        credentials.kdfConfig.kdfType,
+        credentials.kdfConfig.iterations,
+      );
+
+      enrollmentRequest = new OrganizationUserResetPasswordEnrollmentRequest();
+      enrollmentRequest.masterPasswordHash = credentials.newServerMasterKeyHash;
+      enrollmentRequest.resetPasswordKey = orgPublicKeyEncryptedUserKey.encryptedString;
+    });
+
+    interface MockConfig {
+      userType: SetInitialPasswordUserType;
+      userHasUserKey: boolean;
+      userHasLocalKeyPair: boolean;
+      resetPasswordAutoEnroll: boolean;
+    }
+
+    const defaultMockConfig: MockConfig = {
+      userType: SetInitialPasswordUserType.JIT_PROVISIONED_MP_ORG_USER,
+      userHasUserKey: true,
+      userHasLocalKeyPair: false,
+      resetPasswordAutoEnroll: false,
+    };
+
+    function setupMocks(config: MockConfig = defaultMockConfig) {
+      // Mock makeMasterKeyEncryptedUserKey() values
+      if (config.userHasUserKey) {
+        keyService.userKey$.mockReturnValue(of(userKey));
+        keyService.encryptUserKeyWithMasterKey.mockResolvedValue(masterKeyEncryptedUserKey);
+      } else {
+        keyService.userKey$.mockReturnValue(of(null));
+        keyService.makeUserKey.mockResolvedValue(masterKeyEncryptedUserKey);
+      }
+
+      // Mock keyPair values
+      if (config.userType === SetInitialPasswordUserType.JIT_PROVISIONED_MP_ORG_USER) {
+        if (config.userHasLocalKeyPair) {
+          keyService.userPrivateKey$.mockReturnValue(of(existingUserPrivateKey));
+          keyService.userPublicKey$.mockReturnValue(of(existingUserPublicKey));
+          encryptService.wrapDecapsulationKey.mockResolvedValue(userKeyEncryptedPrivateKey);
+        } else {
+          keyService.userPrivateKey$.mockReturnValue(of(null));
+          keyService.userPublicKey$.mockReturnValue(of(null));
+          keyService.makeKeyPair.mockResolvedValue(keyPair);
+        }
+      }
+
+      // Mock handleResetPasswordAutoEnroll() values
+      if (config.resetPasswordAutoEnroll) {
+        organizationApiService.getKeys.mockResolvedValue(organizationKeys);
+        encryptService.encapsulateKeyUnsigned.mockResolvedValue(orgPublicKeyEncryptedUserKey);
+        keyService.userKey$.mockReturnValue(of(userKey));
+      }
+    }
+
+    describe("general error handling", () => {
+      [
+        "newMasterKey",
+        "newServerMasterKeyHash",
+        "newLocalMasterKeyHash",
+        "newPasswordHint",
+        "kdfConfig",
+        "orgSsoIdentifier",
+        "orgId",
+        "resetPasswordAutoEnroll",
+      ].forEach((key) => {
+        it(`should throw if ${key} is not provided on the SetInitialPasswordCredentials object`, async () => {
+          // Arrange
+          const invalidCredentials: SetInitialPasswordCredentials = {
+            ...credentials,
+            [key]: null,
+          };
+
+          // Act
+          const promise = sut.setInitialPassword(invalidCredentials, userType, userId);
+
+          // Assert
+          await expect(promise).rejects.toThrow(`${key} not found. Could not set password.`);
+        });
+      });
+
+      ["userId", "userType"].forEach((param) => {
+        it(`should throw if ${param} was not passed in`, async () => {
+          // Arrange & Act
+          const promise = sut.setInitialPassword(
+            credentials,
+            param === "userType" ? null : userType,
+            param === "userId" ? null : userId,
+          );
+
+          // Assert
+          await expect(promise).rejects.toThrow(`${param} not found. Could not set password.`);
+        });
+      });
+    });
+
+    describe("given SetInitialPasswordUserType.JIT_PROVISIONED_MP_ORG_USER", () => {
+      beforeEach(() => {
+        userType = SetInitialPasswordUserType.JIT_PROVISIONED_MP_ORG_USER;
+      });
+
+      describe("given the user has an existing local key pair", () => {
+        it("should NOT create a brand new key pair for the user", async () => {
+          // Arrange
+          setPasswordRequest.keys = {
+            encryptedPrivateKey: userKeyEncryptedPrivateKey.encryptedString,
+            publicKey: Utils.fromBufferToB64(existingUserPublicKey),
+          };
+
+          setupMocks({ ...defaultMockConfig, userHasLocalKeyPair: true });
+
+          // Act
+          await sut.setInitialPassword(credentials, userType, userId);
+
+          // Assert
+          expect(masterPasswordApiService.setPassword).toHaveBeenCalledWith(setPasswordRequest);
+          expect(keyService.userPrivateKey$).toHaveBeenCalledWith(userId);
+          expect(keyService.userPublicKey$).toHaveBeenCalledWith(userId);
+          expect(encryptService.wrapDecapsulationKey).toHaveBeenCalledWith(
+            existingUserPrivateKey,
+            masterKeyEncryptedUserKey[0],
+          );
+          expect(keyService.makeKeyPair).not.toHaveBeenCalled();
+        });
+      });
+
+      describe("given the user has a userKey", () => {
+        it("should successfully set an initial password", async () => {
+          // Arrange
+          setupMocks();
+
+          // Act
+          await sut.setInitialPassword(credentials, userType, userId);
+
+          // Assert
+          expect(masterPasswordApiService.setPassword).toHaveBeenCalledWith(setPasswordRequest);
+        });
+      });
+
+      describe("given the user does NOT have a userKey", () => {
+        it("should successfully set an initial password", async () => {
+          // Arrange
+          setupMocks({ ...defaultMockConfig, userHasUserKey: false });
+
+          // Act
+          await sut.setInitialPassword(credentials, userType, userId);
+
+          // Assert
+          expect(masterPasswordApiService.setPassword).toHaveBeenCalledWith(setPasswordRequest);
+        });
+      });
+
+      it("should throw if a key pair is not found", async () => {
+        // Arrange
+        keyPair = null;
+
+        setupMocks();
+
+        // Act
+        const promise = sut.setInitialPassword(credentials, userType, userId);
+
+        // Assert
+        await expect(promise).rejects.toThrow("keyPair not found. Could not set password.");
+        expect(masterPasswordApiService.setPassword).not.toHaveBeenCalled();
+      });
+
+      it("should throw if an encrypted private key is not found", async () => {
+        // Arrange
+        keyPair[1].encryptedString = "" as EncryptedString;
+
+        setupMocks();
+
+        // Act
+        const promise = sut.setInitialPassword(credentials, userType, userId);
+
+        // Assert
+        await expect(promise).rejects.toThrow(
+          "encrypted private key not found. Could not set password.",
+        );
+        expect(masterPasswordApiService.setPassword).not.toHaveBeenCalled();
+      });
+
+      describe("given the initial password has been successfully set", () => {
+        it("should clear the ForceSetPasswordReason by setting it to None", async () => {
+          // Arrange
+          setupMocks();
+
+          // Act
+          await sut.setInitialPassword(credentials, userType, userId);
+
+          // Assert
+          expect(masterPasswordApiService.setPassword).toHaveBeenCalledWith(setPasswordRequest);
+          expect(masterPasswordService.setForceSetPasswordReason).toHaveBeenCalledWith(
+            ForceSetPasswordReason.None,
+            userId,
+          );
+        });
+
+        it("should update account decryption properties", async () => {
+          // Arrange
+          setupMocks();
+
+          // Act
+          await sut.setInitialPassword(credentials, userType, userId);
+
+          // Assert
+          expect(masterPasswordApiService.setPassword).toHaveBeenCalledWith(setPasswordRequest);
+          expect(userDecryptionOptionsService.setUserDecryptionOptions).toHaveBeenCalledWith(
+            userDecryptionOptions,
+          );
+          expect(kdfConfigService.setKdfConfig).toHaveBeenCalledWith(userId, credentials.kdfConfig);
+          expect(masterPasswordService.setMasterKey).toHaveBeenCalledWith(
+            credentials.newMasterKey,
+            userId,
+          );
+          expect(keyService.setUserKey).toHaveBeenCalledWith(masterKeyEncryptedUserKey[0], userId);
+        });
+
+        it("should set the private key to state", async () => {
+          // Arrange
+          setupMocks();
+
+          // Act
+          await sut.setInitialPassword(credentials, userType, userId);
+
+          // Assert
+          expect(masterPasswordApiService.setPassword).toHaveBeenCalledWith(setPasswordRequest);
+          expect(keyService.setPrivateKey).toHaveBeenCalledWith(keyPair[1].encryptedString, userId);
+        });
+
+        it("should set the local master key hash to state", async () => {
+          // Arrange
+          setupMocks();
+
+          // Act
+          await sut.setInitialPassword(credentials, userType, userId);
+
+          // Assert
+          expect(masterPasswordApiService.setPassword).toHaveBeenCalledWith(setPasswordRequest);
+          expect(masterPasswordService.setMasterKeyHash).toHaveBeenCalledWith(
+            credentials.newLocalMasterKeyHash,
+            userId,
+          );
+        });
+
+        describe("given resetPasswordAutoEnroll is true", () => {
+          it(`should handle reset password (account recovery) auto enroll`, async () => {
+            // Arrange
+            credentials.resetPasswordAutoEnroll = true;
+
+            setupMocks({ ...defaultMockConfig, resetPasswordAutoEnroll: true });
+
+            // Act
+            await sut.setInitialPassword(credentials, userType, userId);
+
+            // Assert
+            expect(masterPasswordApiService.setPassword).toHaveBeenCalledWith(setPasswordRequest);
+            expect(
+              organizationUserApiService.putOrganizationUserResetPasswordEnrollment,
+            ).toHaveBeenCalledWith(credentials.orgId, userId, enrollmentRequest);
+          });
+
+          it("should throw if organization keys are not found", async () => {
+            // Arrange
+            credentials.resetPasswordAutoEnroll = true;
+            organizationKeys = null;
+
+            setupMocks({ ...defaultMockConfig, resetPasswordAutoEnroll: true });
+
+            // Act
+            const promise = sut.setInitialPassword(credentials, userType, userId);
+
+            // Assert
+            await expect(promise).rejects.toThrow(
+              "Organization keys response is null. Could not handle reset password auto enroll.",
+            );
+            expect(masterPasswordApiService.setPassword).toHaveBeenCalledWith(setPasswordRequest);
+            expect(
+              organizationUserApiService.putOrganizationUserResetPasswordEnrollment,
+            ).not.toHaveBeenCalled();
+          });
+
+          ["orgPublicKeyEncryptedUserKey", "orgPublicKeyEncryptedUserKey.encryptedString"].forEach(
+            (property) => {
+              it("should throw if orgPublicKeyEncryptedUserKey is not found", async () => {
+                // Arrange
+                credentials.resetPasswordAutoEnroll = true;
+
+                if (property === "orgPublicKeyEncryptedUserKey") {
+                  orgPublicKeyEncryptedUserKey = null;
+                } else {
+                  orgPublicKeyEncryptedUserKey.encryptedString = "" as EncryptedString;
+                }
+
+                setupMocks({ ...defaultMockConfig, resetPasswordAutoEnroll: true });
+
+                // Act
+                const promise = sut.setInitialPassword(credentials, userType, userId);
+
+                // Assert
+                await expect(promise).rejects.toThrow(
+                  "orgPublicKeyEncryptedUserKey not found. Could not handle reset password auto enroll.",
+                );
+                expect(masterPasswordApiService.setPassword).toHaveBeenCalledWith(
+                  setPasswordRequest,
+                );
+                expect(
+                  organizationUserApiService.putOrganizationUserResetPasswordEnrollment,
+                ).not.toHaveBeenCalled();
+              });
+            },
+          );
+        });
+
+        describe("given resetPasswordAutoEnroll is false", () => {
+          it(`should NOT handle reset password (account recovery) auto enroll`, async () => {
+            // Arrange
+            credentials.resetPasswordAutoEnroll = false;
+
+            setupMocks();
+
+            // Act
+            await sut.setInitialPassword(credentials, userType, userId);
+
+            // Assert
+            expect(masterPasswordApiService.setPassword).toHaveBeenCalledWith(setPasswordRequest);
+            expect(
+              organizationUserApiService.putOrganizationUserResetPasswordEnrollment,
+            ).not.toHaveBeenCalled();
+          });
+        });
+      });
+    });
+
+    describe("given SetInitialPasswordUserType.TDE_ORG_USER_RESET_PASSWORD_PERMISSION_REQUIRES_MP", () => {
+      beforeEach(() => {
+        userType = SetInitialPasswordUserType.TDE_ORG_USER_RESET_PASSWORD_PERMISSION_REQUIRES_MP;
+        setPasswordRequest.keys = null;
+      });
+
+      it("should NOT generate a keyPair", async () => {
+        // Arrange
+        setupMocks({ ...defaultMockConfig, userType });
+
+        // Act
+        await sut.setInitialPassword(credentials, userType, userId);
+
+        // Assert
+        expect(keyService.userPrivateKey$).not.toHaveBeenCalled();
+        expect(keyService.userPublicKey$).not.toHaveBeenCalled();
+        expect(encryptService.wrapDecapsulationKey).not.toHaveBeenCalled();
+        expect(keyService.makeKeyPair).not.toHaveBeenCalled();
+      });
+
+      describe("given the user has a userKey", () => {
+        it("should successfully set an initial password", async () => {
+          // Arrange
+          setupMocks({ ...defaultMockConfig, userType });
+
+          // Act
+          await sut.setInitialPassword(credentials, userType, userId);
+
+          // Assert
+          expect(masterPasswordApiService.setPassword).toHaveBeenCalledWith(setPasswordRequest);
+        });
+      });
+
+      describe("given the user does NOT have a userKey", () => {
+        it("should successfully set an initial password", async () => {
+          // Arrange
+          setupMocks({ ...defaultMockConfig, userType });
+
+          // Act
+          await sut.setInitialPassword(credentials, userType, userId);
+
+          // Assert
+          expect(masterPasswordApiService.setPassword).toHaveBeenCalledWith(setPasswordRequest);
+        });
+      });
+
+      describe("given the initial password has been successfully set", () => {
+        it("should clear the ForceSetPasswordReason by setting it to None", async () => {
+          // Arrange
+          setupMocks({ ...defaultMockConfig, userType });
+
+          // Act
+          await sut.setInitialPassword(credentials, userType, userId);
+
+          // Assert
+          expect(masterPasswordApiService.setPassword).toHaveBeenCalledWith(setPasswordRequest);
+          expect(masterPasswordService.setForceSetPasswordReason).toHaveBeenCalledWith(
+            ForceSetPasswordReason.None,
+            userId,
+          );
+        });
+
+        it("should update account decryption properties", async () => {
+          // Arrange
+          setupMocks({ ...defaultMockConfig, userType });
+
+          // Act
+          await sut.setInitialPassword(credentials, userType, userId);
+
+          // Assert
+          expect(masterPasswordApiService.setPassword).toHaveBeenCalledWith(setPasswordRequest);
+          expect(userDecryptionOptionsService.setUserDecryptionOptions).toHaveBeenCalledWith(
+            userDecryptionOptions,
+          );
+          expect(kdfConfigService.setKdfConfig).toHaveBeenCalledWith(userId, credentials.kdfConfig);
+          expect(masterPasswordService.setMasterKey).toHaveBeenCalledWith(
+            credentials.newMasterKey,
+            userId,
+          );
+          expect(keyService.setUserKey).toHaveBeenCalledWith(masterKeyEncryptedUserKey[0], userId);
+        });
+
+        it("should NOT set the private key to state", async () => {
+          // Arrange
+          setupMocks({ ...defaultMockConfig, userType });
+
+          // Act
+          await sut.setInitialPassword(credentials, userType, userId);
+
+          // Assert
+          expect(masterPasswordApiService.setPassword).toHaveBeenCalledWith(setPasswordRequest);
+          expect(keyService.setPrivateKey).not.toHaveBeenCalled();
+        });
+
+        it("should set the local master key hash to state", async () => {
+          // Arrange
+          setupMocks({ ...defaultMockConfig, userType });
+
+          // Act
+          await sut.setInitialPassword(credentials, userType, userId);
+
+          // Assert
+          expect(masterPasswordApiService.setPassword).toHaveBeenCalledWith(setPasswordRequest);
+          expect(masterPasswordService.setMasterKeyHash).toHaveBeenCalledWith(
+            credentials.newLocalMasterKeyHash,
+            userId,
+          );
+        });
+
+        describe("given resetPasswordAutoEnroll is true", () => {
+          it(`should handle reset password (account recovery) auto enroll`, async () => {
+            // Arrange
+            credentials.resetPasswordAutoEnroll = true;
+
+            setupMocks({ ...defaultMockConfig, userType, resetPasswordAutoEnroll: true });
+
+            // Act
+            await sut.setInitialPassword(credentials, userType, userId);
+
+            // Assert
+            expect(masterPasswordApiService.setPassword).toHaveBeenCalledWith(setPasswordRequest);
+            expect(
+              organizationUserApiService.putOrganizationUserResetPasswordEnrollment,
+            ).toHaveBeenCalledWith(credentials.orgId, userId, enrollmentRequest);
+          });
+        });
+
+        describe("given resetPasswordAutoEnroll is false", () => {
+          it(`should NOT handle reset password (account recovery) auto enroll`, async () => {
+            // Arrange
+            setupMocks({ ...defaultMockConfig, userType });
+
+            // Act
+            await sut.setInitialPassword(credentials, userType, userId);
+
+            // Assert
+            expect(masterPasswordApiService.setPassword).toHaveBeenCalledWith(setPasswordRequest);
+            expect(
+              organizationUserApiService.putOrganizationUserResetPasswordEnrollment,
+            ).not.toHaveBeenCalled();
+          });
+        });
+      });
+    });
+  });
+});
diff --git a/libs/angular/src/auth/password-management/set-initial-password/set-initial-password.component.html b/libs/angular/src/auth/password-management/set-initial-password/set-initial-password.component.html
new file mode 100644
index 00000000000..c83cbbe3521
--- /dev/null
+++ b/libs/angular/src/auth/password-management/set-initial-password/set-initial-password.component.html
@@ -0,0 +1,29 @@
+@if (initializing) {
+  <div class="tw-flex tw-items-center tw-justify-center">
+    <i
+      class="bwi bwi-spinner bwi-spin bwi-3x"
+      title="{{ 'loading' | i18n }}"
+      aria-hidden="true"
+    ></i>
+  </div>
+} @else {
+  <bit-callout
+    *ngIf="resetPasswordAutoEnroll"
+    type="warning"
+    title="{{ 'resetPasswordPolicyAutoEnroll' | i18n }}"
+  >
+    {{ "resetPasswordAutoEnrollInviteWarning" | i18n }}
+  </bit-callout>
+
+  <auth-input-password
+    [flow]="inputPasswordFlow"
+    [email]="email"
+    [userId]="userId"
+    [loading]="submitting"
+    [masterPasswordPolicyOptions]="masterPasswordPolicyOptions"
+    [primaryButtonText]="{ key: 'createAccount' }"
+    [secondaryButtonText]="{ key: 'logOut' }"
+    (onPasswordFormSubmit)="handlePasswordFormSubmit($event)"
+    (onSecondaryButtonClick)="logout()"
+  ></auth-input-password>
+}
diff --git a/libs/angular/src/auth/password-management/set-initial-password/set-initial-password.component.ts b/libs/angular/src/auth/password-management/set-initial-password/set-initial-password.component.ts
new file mode 100644
index 00000000000..fbab9eaa2c3
--- /dev/null
+++ b/libs/angular/src/auth/password-management/set-initial-password/set-initial-password.component.ts
@@ -0,0 +1,249 @@
+import { CommonModule } from "@angular/common";
+import { Component, OnInit } from "@angular/core";
+import { ActivatedRoute, Router } from "@angular/router";
+import { firstValueFrom } from "rxjs";
+
+// This import has been flagged as unallowed for this class. It may be involved in a circular dependency loop.
+// eslint-disable-next-line no-restricted-imports
+import {
+  InputPasswordComponent,
+  InputPasswordFlow,
+  PasswordInputResult,
+} from "@bitwarden/auth/angular";
+import { OrganizationApiServiceAbstraction } from "@bitwarden/common/admin-console/abstractions/organization/organization-api.service.abstraction";
+import { PolicyApiServiceAbstraction } from "@bitwarden/common/admin-console/abstractions/policy/policy-api.service.abstraction";
+import { MasterPasswordPolicyOptions } from "@bitwarden/common/admin-console/models/domain/master-password-policy-options";
+import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
+import { SsoLoginServiceAbstraction } from "@bitwarden/common/auth/abstractions/sso-login.service.abstraction";
+import { ForceSetPasswordReason } from "@bitwarden/common/auth/models/domain/force-set-password-reason";
+import { InternalMasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
+import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
+import { ValidationService } from "@bitwarden/common/platform/abstractions/validation.service";
+import { SyncService } from "@bitwarden/common/platform/sync";
+import { UserId } from "@bitwarden/common/types/guid";
+import {
+  AnonLayoutWrapperDataService,
+  CalloutComponent,
+  DialogService,
+  ToastService,
+} from "@bitwarden/components";
+import { I18nPipe } from "@bitwarden/ui-common";
+
+import {
+  SetInitialPasswordCredentials,
+  SetInitialPasswordService,
+  SetInitialPasswordUserType,
+} from "./set-initial-password.service.abstraction";
+
+@Component({
+  standalone: true,
+  templateUrl: "set-initial-password.component.html",
+  imports: [CalloutComponent, CommonModule, InputPasswordComponent, I18nPipe],
+})
+export class SetInitialPasswordComponent implements OnInit {
+  protected inputPasswordFlow = InputPasswordFlow.SetInitialPasswordAuthedUser;
+
+  protected email?: string;
+  protected forceSetPasswordReason?: ForceSetPasswordReason;
+  protected initializing = true;
+  protected masterPasswordPolicyOptions: MasterPasswordPolicyOptions | null = null;
+  protected orgId?: string;
+  protected orgSsoIdentifier?: string;
+  protected resetPasswordAutoEnroll?: boolean;
+  protected submitting = false;
+  protected userId?: UserId;
+  protected userType?: SetInitialPasswordUserType;
+
+  constructor(
+    private accountService: AccountService,
+    private activatedRoute: ActivatedRoute,
+    private anonLayoutWrapperDataService: AnonLayoutWrapperDataService,
+    private dialogService: DialogService,
+    private i18nService: I18nService,
+    private masterPasswordService: InternalMasterPasswordServiceAbstraction,
+    private messagingService: MessagingService,
+    private organizationApiService: OrganizationApiServiceAbstraction,
+    private policyApiService: PolicyApiServiceAbstraction,
+    private router: Router,
+    private setInitialPasswordService: SetInitialPasswordService,
+    private ssoLoginService: SsoLoginServiceAbstraction,
+    private syncService: SyncService,
+    private toastService: ToastService,
+    private validationService: ValidationService,
+  ) {}
+
+  async ngOnInit() {
+    await this.syncService.fullSync(true);
+
+    const activeAccount = await firstValueFrom(this.accountService.activeAccount$);
+    this.userId = activeAccount?.id;
+    this.email = activeAccount?.email;
+
+    await this.determineUserType();
+    await this.handleQueryParams();
+
+    this.initializing = false;
+  }
+
+  private async determineUserType() {
+    if (!this.userId) {
+      throw new Error("userId not found. Could not determine user type.");
+    }
+
+    this.forceSetPasswordReason = await firstValueFrom(
+      this.masterPasswordService.forceSetPasswordReason$(this.userId),
+    );
+
+    if (
+      this.forceSetPasswordReason ===
+      ForceSetPasswordReason.TdeUserWithoutPasswordHasPasswordResetPermission
+    ) {
+      this.userType = SetInitialPasswordUserType.TDE_ORG_USER_RESET_PASSWORD_PERMISSION_REQUIRES_MP;
+      this.anonLayoutWrapperDataService.setAnonLayoutWrapperData({
+        pageTitle: { key: "setMasterPassword" },
+        pageSubtitle: { key: "orgPermissionsUpdatedMustSetPassword" },
+      });
+    } else {
+      this.userType = SetInitialPasswordUserType.JIT_PROVISIONED_MP_ORG_USER;
+      this.anonLayoutWrapperDataService.setAnonLayoutWrapperData({
+        pageTitle: { key: "joinOrganization" },
+        pageSubtitle: { key: "finishJoiningThisOrganizationBySettingAMasterPassword" },
+      });
+    }
+  }
+
+  private async handleQueryParams() {
+    if (!this.userId) {
+      throw new Error("userId not found. Could not handle query params.");
+    }
+
+    const qParams = await firstValueFrom(this.activatedRoute.queryParams);
+
+    this.orgSsoIdentifier =
+      qParams.identifier ??
+      (await this.ssoLoginService.getActiveUserOrganizationSsoIdentifier(this.userId));
+
+    if (this.orgSsoIdentifier != null) {
+      try {
+        const autoEnrollStatus = await this.organizationApiService.getAutoEnrollStatus(
+          this.orgSsoIdentifier,
+        );
+        this.orgId = autoEnrollStatus.id;
+        this.resetPasswordAutoEnroll = autoEnrollStatus.resetPasswordEnabled;
+        this.masterPasswordPolicyOptions =
+          await this.policyApiService.getMasterPasswordPolicyOptsForOrgUser(this.orgId);
+      } catch {
+        this.toastService.showToast({
+          variant: "error",
+          title: "",
+          message: this.i18nService.t("errorOccurred"),
+        });
+      }
+    }
+  }
+
+  protected async handlePasswordFormSubmit(passwordInputResult: PasswordInputResult) {
+    this.submitting = true;
+
+    if (!passwordInputResult.newMasterKey) {
+      throw new Error("newMasterKey not found. Could not set initial password.");
+    }
+    if (!passwordInputResult.newServerMasterKeyHash) {
+      throw new Error("newServerMasterKeyHash not found. Could not set initial password.");
+    }
+    if (!passwordInputResult.newLocalMasterKeyHash) {
+      throw new Error("newLocalMasterKeyHash not found. Could not set initial password.");
+    }
+    // newPasswordHint can have an empty string as a valid value, so we specifically check for null or undefined
+    if (passwordInputResult.newPasswordHint == null) {
+      throw new Error("newPasswordHint not found. Could not set initial password.");
+    }
+    if (!passwordInputResult.kdfConfig) {
+      throw new Error("kdfConfig not found. Could not set initial password.");
+    }
+    if (!this.userId) {
+      throw new Error("userId not found. Could not set initial password.");
+    }
+    if (!this.userType) {
+      throw new Error("userType not found. Could not set initial password.");
+    }
+    if (!this.orgSsoIdentifier) {
+      throw new Error("orgSsoIdentifier not found. Could not set initial password.");
+    }
+    if (!this.orgId) {
+      throw new Error("orgId not found. Could not set initial password.");
+    }
+    // resetPasswordAutoEnroll can have `false` as a valid value, so we specifically check for null or undefined
+    if (this.resetPasswordAutoEnroll == null) {
+      throw new Error("resetPasswordAutoEnroll not found. Could not set initial password.");
+    }
+
+    try {
+      const credentials: SetInitialPasswordCredentials = {
+        newMasterKey: passwordInputResult.newMasterKey,
+        newServerMasterKeyHash: passwordInputResult.newServerMasterKeyHash,
+        newLocalMasterKeyHash: passwordInputResult.newLocalMasterKeyHash,
+        newPasswordHint: passwordInputResult.newPasswordHint,
+        kdfConfig: passwordInputResult.kdfConfig,
+        orgSsoIdentifier: this.orgSsoIdentifier,
+        orgId: this.orgId,
+        resetPasswordAutoEnroll: this.resetPasswordAutoEnroll,
+      };
+
+      await this.setInitialPasswordService.setInitialPassword(
+        credentials,
+        this.userType,
+        this.userId,
+      );
+
+      this.showSuccessToastByUserType();
+
+      this.submitting = false;
+      await this.router.navigate(["vault"]);
+    } catch (e) {
+      this.validationService.showError(e);
+      this.submitting = false;
+    }
+  }
+
+  private showSuccessToastByUserType() {
+    if (this.userType === SetInitialPasswordUserType.JIT_PROVISIONED_MP_ORG_USER) {
+      this.toastService.showToast({
+        variant: "success",
+        title: "",
+        message: this.i18nService.t("accountSuccessfullyCreated"),
+      });
+
+      this.toastService.showToast({
+        variant: "success",
+        title: "",
+        message: this.i18nService.t("inviteAccepted"),
+      });
+    }
+
+    if (
+      this.userType ===
+      SetInitialPasswordUserType.TDE_ORG_USER_RESET_PASSWORD_PERMISSION_REQUIRES_MP
+    ) {
+      this.toastService.showToast({
+        variant: "success",
+        title: "",
+        message: this.i18nService.t("masterPasswordSuccessfullySet"),
+      });
+    }
+  }
+
+  protected async logout() {
+    const confirmed = await this.dialogService.openSimpleDialog({
+      title: { key: "logOut" },
+      content: { key: "logOutConfirmation" },
+      acceptButtonText: { key: "logOut" },
+      type: "warning",
+    });
+
+    if (confirmed) {
+      this.messagingService.send("logout");
+    }
+  }
+}
diff --git a/libs/angular/src/auth/password-management/set-initial-password/set-initial-password.service.abstraction.ts b/libs/angular/src/auth/password-management/set-initial-password/set-initial-password.service.abstraction.ts
new file mode 100644
index 00000000000..e594053a906
--- /dev/null
+++ b/libs/angular/src/auth/password-management/set-initial-password/set-initial-password.service.abstraction.ts
@@ -0,0 +1,64 @@
+import { UserId } from "@bitwarden/common/types/guid";
+import { MasterKey } from "@bitwarden/common/types/key";
+import { KdfConfig } from "@bitwarden/key-management";
+
+export const _SetInitialPasswordUserType = {
+  /**
+   * A user being "just-in-time" (JIT) provisioned into a master-password-encryption org
+   */
+  JIT_PROVISIONED_MP_ORG_USER: "jit_provisioned_mp_org_user",
+
+  /**
+   * Could be one of two scenarios:
+   *  1. A user being "just-in-time" (JIT) provisioned into a trusted-device-encryption org
+   *     with the reset password permission granted ("manage account recovery"), which requires
+   *     that the user sets a master password
+   *  2. An user in a trusted-device-encryption org whose permissions were upgraded to include
+   *     the reset password permission ("manage account recovery"), which requires that the user
+   *     sets a master password
+   */
+  TDE_ORG_USER_RESET_PASSWORD_PERMISSION_REQUIRES_MP:
+    "tde_org_user_reset_password_permission_requires_mp",
+} as const;
+
+type _SetInitialPasswordUserType = typeof _SetInitialPasswordUserType;
+
+export type SetInitialPasswordUserType =
+  _SetInitialPasswordUserType[keyof _SetInitialPasswordUserType];
+export const SetInitialPasswordUserType: Readonly<{
+  [K in keyof typeof _SetInitialPasswordUserType]: SetInitialPasswordUserType;
+}> = Object.freeze(_SetInitialPasswordUserType);
+
+export interface SetInitialPasswordCredentials {
+  newMasterKey: MasterKey;
+  newServerMasterKeyHash: string;
+  newLocalMasterKeyHash: string;
+  newPasswordHint: string;
+  kdfConfig: KdfConfig;
+  orgSsoIdentifier: string;
+  orgId: string;
+  resetPasswordAutoEnroll: boolean;
+}
+
+/**
+ * Handles setting an initial password for an existing authed user.
+ *
+ * To see the different scenarios where an existing authed user needs to set an
+ * initial password, see {@link SetInitialPasswordUserType}
+ */
+export abstract class SetInitialPasswordService {
+  /**
+   * Sets an initial password for an existing authed user who is either:
+   * - {@link SetInitialPasswordUserType.JIT_PROVISIONED_MP_ORG_USER}
+   * - {@link SetInitialPasswordUserType.TDE_ORG_USER_RESET_PASSWORD_PERMISSION_REQUIRES_MP}
+   *
+   * @param credentials An object of the credentials needed to set the initial password
+   * @throws If any property on the `credentials` object is null or undefined, or if a
+   *         masterKeyEncryptedUserKey or newKeyPair could not be created.
+   */
+  abstract setInitialPassword: (
+    credentials: SetInitialPasswordCredentials,
+    userType: SetInitialPasswordUserType,
+    userId: UserId,
+  ) => Promise<void>;
+}
diff --git a/libs/angular/src/services/jslib-services.module.ts b/libs/angular/src/services/jslib-services.module.ts
index 780604f048d..96a95de501e 100644
--- a/libs/angular/src/services/jslib-services.module.ts
+++ b/libs/angular/src/services/jslib-services.module.ts
@@ -339,6 +339,8 @@ import {
   VaultExportServiceAbstraction,
 } from "@bitwarden/vault-export-core";
 
+import { DefaultSetInitialPasswordService } from "../auth/password-management/set-initial-password/default-set-initial-password.service.implementation";
+import { SetInitialPasswordService } from "../auth/password-management/set-initial-password/set-initial-password.service.abstraction";
 import { DeviceTrustToastService as DeviceTrustToastServiceAbstraction } from "../auth/services/device-trust-toast.service.abstraction";
 import { DeviceTrustToastService } from "../auth/services/device-trust-toast.service.implementation";
 import { FormValidationErrorsService as FormValidationErrorsServiceAbstraction } from "../platform/abstractions/form-validation-errors.service";
@@ -1419,6 +1421,22 @@ const safeProviders: SafeProvider[] = [
       InternalUserDecryptionOptionsServiceAbstraction,
     ],
   }),
+  safeProvider({
+    provide: SetInitialPasswordService,
+    useClass: DefaultSetInitialPasswordService,
+    deps: [
+      ApiServiceAbstraction,
+      EncryptService,
+      I18nServiceAbstraction,
+      KdfConfigService,
+      KeyService,
+      MasterPasswordApiServiceAbstraction,
+      InternalMasterPasswordServiceAbstraction,
+      OrganizationApiServiceAbstraction,
+      OrganizationUserApiService,
+      InternalUserDecryptionOptionsServiceAbstraction,
+    ],
+  }),
   safeProvider({
     provide: DefaultServerSettingsService,
     useClass: DefaultServerSettingsService,

From 6b627502bea44314910d64ddb1915c23fdbec824 Mon Sep 17 00:00:00 2001
From: Daniel James Smith <2670567+djsmith85@users.noreply.github.com>
Date: Tue, 1 Jul 2025 15:52:04 +0200
Subject: [PATCH 031/239] [PM-18668] Create importer for xml files from
 Password Depot 17 (#14760)

* Create importer for xml file from Password Depot 17

- Create importer
- Create test data
- Create unit tests

* Add support for parsing credit cards

* Update comment on importer class

* Wire up the importer to be selectable in the UI

* Import and set favorites based on export file

* Refactor: Extract method for parsing login fields

* Parse comment on credit cards

* Add support for parsing identity records

* Add support for parsing rdp records

* Remove html decoding of password field

* Include setting credit card brand

* Create type to describe the different source item types

* Add support for SoftwareLicense item type

* Add support for teamviewer item type

* Add support for Putty item type

* Skip processing historical entries

* Add support for banking item type

* Add support for information item type

* Add support for certificate into login type

* Rename encrypted-file.xml to noop-encrypted-file due to a source type with the same name

* Add support for encrypted file item type

* Add support for document type

* Add mapping of source field types to bitwarden custom field types

* Remove duplicate code (copy-pasta mistake)

* Added missing docs

* Adding fallback to support MacOS Password Depot 17 xml files

Instead of a version node they have a dataformat node which contains the file format version

* Add support to parse export files from the MacOS client

* Skip creating a folder if it has no name

* Fix recognition and assignment to folders/collections

---------

Co-authored-by: Daniel James Smith <djsmith85@users.noreply.github.com>
---
 .../src/components/import.component.html      |   6 +
 libs/importer/src/importers/index.ts          |   1 +
 .../src/importers/password-depot/index.ts     |   1 +
 ...ssword-depot-17-macos-xml-importer.spec.ts |  62 +++
 .../password-depot-17-xml-importer.spec.ts    | 496 +++++++++++++++++
 .../password-depot-17-xml-importer.ts         | 500 ++++++++++++++++++
 .../importers/password-depot/types/index.ts   |   2 +
 .../types/password-depot-custom-field-type.ts |  15 +
 .../types/password-depot-item-type.ts         |  19 +
 .../password-depot-xml/banking.xml.ts         | 283 ++++++++++
 .../password-depot-xml/certificate.xml.ts     |  76 +++
 .../password-depot-xml/credit-card.xml.ts     | 148 ++++++
 .../password-depot-xml/document.xml.ts        |  99 ++++
 .../password-depot-xml/encrypted-file.xml.ts  |  76 +++
 .../password-depot-xml/identity.xml.ts        | 197 +++++++
 .../spec-data/password-depot-xml/index.ts     |  19 +
 .../password-depot-xml/information.xml.ts     |  85 +++
 .../macos-customfields.xml.ts                 |  42 ++
 .../macos-multiple-folders.xml.ts             | 215 ++++++++
 .../macos-wrong-version.xml.ts                |  21 +
 .../missing-passwords-node.xml.ts             |  25 +
 .../missing-root-node.xml.ts                  |  28 +
 .../noop-encrypted-file.xml.ts                |  27 +
 .../password-depot-xml/password.xml.ts        | 222 ++++++++
 .../spec-data/password-depot-xml/putty.xml.ts | 106 ++++
 .../spec-data/password-depot-xml/rdp.xml.ts   |  76 +++
 .../software-license.xml.ts                   | 169 ++++++
 .../password-depot-xml/team-viewer.xml.ts     |  85 +++
 .../password-depot-xml/wrong-version.xml.ts   |  28 +
 libs/importer/src/models/import-options.ts    |   1 +
 libs/importer/src/services/import.service.ts  |   3 +
 31 files changed, 3133 insertions(+)
 create mode 100644 libs/importer/src/importers/password-depot/index.ts
 create mode 100644 libs/importer/src/importers/password-depot/password-depot-17-macos-xml-importer.spec.ts
 create mode 100644 libs/importer/src/importers/password-depot/password-depot-17-xml-importer.spec.ts
 create mode 100644 libs/importer/src/importers/password-depot/password-depot-17-xml-importer.ts
 create mode 100644 libs/importer/src/importers/password-depot/types/index.ts
 create mode 100644 libs/importer/src/importers/password-depot/types/password-depot-custom-field-type.ts
 create mode 100644 libs/importer/src/importers/password-depot/types/password-depot-item-type.ts
 create mode 100644 libs/importer/src/importers/spec-data/password-depot-xml/banking.xml.ts
 create mode 100644 libs/importer/src/importers/spec-data/password-depot-xml/certificate.xml.ts
 create mode 100644 libs/importer/src/importers/spec-data/password-depot-xml/credit-card.xml.ts
 create mode 100644 libs/importer/src/importers/spec-data/password-depot-xml/document.xml.ts
 create mode 100644 libs/importer/src/importers/spec-data/password-depot-xml/encrypted-file.xml.ts
 create mode 100644 libs/importer/src/importers/spec-data/password-depot-xml/identity.xml.ts
 create mode 100644 libs/importer/src/importers/spec-data/password-depot-xml/index.ts
 create mode 100644 libs/importer/src/importers/spec-data/password-depot-xml/information.xml.ts
 create mode 100644 libs/importer/src/importers/spec-data/password-depot-xml/macos-customfields.xml.ts
 create mode 100644 libs/importer/src/importers/spec-data/password-depot-xml/macos-multiple-folders.xml.ts
 create mode 100644 libs/importer/src/importers/spec-data/password-depot-xml/macos-wrong-version.xml.ts
 create mode 100644 libs/importer/src/importers/spec-data/password-depot-xml/missing-passwords-node.xml.ts
 create mode 100644 libs/importer/src/importers/spec-data/password-depot-xml/missing-root-node.xml.ts
 create mode 100644 libs/importer/src/importers/spec-data/password-depot-xml/noop-encrypted-file.xml.ts
 create mode 100644 libs/importer/src/importers/spec-data/password-depot-xml/password.xml.ts
 create mode 100644 libs/importer/src/importers/spec-data/password-depot-xml/putty.xml.ts
 create mode 100644 libs/importer/src/importers/spec-data/password-depot-xml/rdp.xml.ts
 create mode 100644 libs/importer/src/importers/spec-data/password-depot-xml/software-license.xml.ts
 create mode 100644 libs/importer/src/importers/spec-data/password-depot-xml/team-viewer.xml.ts
 create mode 100644 libs/importer/src/importers/spec-data/password-depot-xml/wrong-version.xml.ts

diff --git a/libs/importer/src/components/import.component.html b/libs/importer/src/components/import.component.html
index 59ab6739c06..f6d6603dca9 100644
--- a/libs/importer/src/components/import.component.html
+++ b/libs/importer/src/components/import.component.html
@@ -435,6 +435,12 @@
           and select Export items &rarr; Enter your Master Password and select Continue. &rarr; Save
           the CSV file on your device.
         </ng-container>
+        <ng-container *ngIf="format === 'passworddepot17xml'">
+          On the desktop application, go to Tools &rarr; Export &rarr; Enter your master password
+          &rarr; Select XML Format (*.xml) as Export format &rarr; Click on next &rarr; Choose which
+          entries should be included in the export &rarr; Click on next to export into the location
+          previously chosen.
+        </ng-container>
       </bit-callout>
       <import-lastpass
         *ngIf="showLastPassOptions"
diff --git a/libs/importer/src/importers/index.ts b/libs/importer/src/importers/index.ts
index c9b4c4c9c19..a1e2c46868f 100644
--- a/libs/importer/src/importers/index.ts
+++ b/libs/importer/src/importers/index.ts
@@ -42,6 +42,7 @@ export { PassmanJsonImporter } from "./passman-json-importer";
 export { PasspackCsvImporter } from "./passpack-csv-importer";
 export { PasswordAgentCsvImporter } from "./passwordagent-csv-importer";
 export { PasswordBossJsonImporter } from "./passwordboss-json-importer";
+export { PasswordDepot17XmlImporter } from "./password-depot";
 export { PasswordDragonXmlImporter } from "./passworddragon-xml-importer";
 export { PasswordSafeXmlImporter } from "./passwordsafe-xml-importer";
 export { PasswordWalletTxtImporter } from "./passwordwallet-txt-importer";
diff --git a/libs/importer/src/importers/password-depot/index.ts b/libs/importer/src/importers/password-depot/index.ts
new file mode 100644
index 00000000000..ef43ad11d96
--- /dev/null
+++ b/libs/importer/src/importers/password-depot/index.ts
@@ -0,0 +1 @@
+export { PasswordDepot17XmlImporter } from "./password-depot-17-xml-importer";
diff --git a/libs/importer/src/importers/password-depot/password-depot-17-macos-xml-importer.spec.ts b/libs/importer/src/importers/password-depot/password-depot-17-macos-xml-importer.spec.ts
new file mode 100644
index 00000000000..6740e040996
--- /dev/null
+++ b/libs/importer/src/importers/password-depot/password-depot-17-macos-xml-importer.spec.ts
@@ -0,0 +1,62 @@
+import {
+  MacOS_MultipleFolders,
+  MacOS_PasswordDepotXmlFile,
+  MacOS_WrongVersion,
+} from "../spec-data/password-depot-xml";
+
+import { PasswordDepot17XmlImporter } from "./password-depot-17-xml-importer";
+
+describe("Password Depot 17 MacOS Xml Importer", () => {
+  it("should return error with invalid export version", async () => {
+    const importer = new PasswordDepot17XmlImporter();
+    const result = await importer.parse(MacOS_WrongVersion);
+    expect(result.errorMessage).toBe(
+      "Unsupported export version detected - (only 17.0 is supported)",
+    );
+  });
+
+  it("should not create a folder/collection if the group fingerprint is null", async () => {
+    const importer = new PasswordDepot17XmlImporter();
+    const result = await importer.parse(MacOS_PasswordDepotXmlFile);
+    expect(result.folders.length).toBe(0);
+  });
+
+  it("should create folders and with correct assignments", async () => {
+    const importer = new PasswordDepot17XmlImporter();
+    const result = await importer.parse(MacOS_MultipleFolders);
+
+    // Expect 10 ciphers, 5 without a folder and 3 within 'folder macos' and 2 with 'folder 2'
+    expect(result.ciphers.length).toBe(10);
+
+    expect(result.folders.length).toBe(2);
+    expect(result.folders[0].name).toBe("folder macos");
+    expect(result.folders[1].name).toBe("folder 2");
+
+    // 3 items within 'folder macos'
+    expect(result.folderRelationships[0]).toEqual([5, 0]);
+    expect(result.folderRelationships[1]).toEqual([6, 0]);
+    expect(result.folderRelationships[2]).toEqual([7, 0]);
+
+    //2 items with 'folder 2'
+    expect(result.folderRelationships[3]).toEqual([8, 1]);
+    expect(result.folderRelationships[4]).toEqual([9, 1]);
+  });
+
+  it("should parse custom fields from a MacOS exported file", async () => {
+    const importer = new PasswordDepot17XmlImporter();
+    const result = await importer.parse(MacOS_PasswordDepotXmlFile);
+
+    const cipher = result.ciphers.shift();
+    expect(cipher.name).toBe("card 1");
+    expect(cipher.notes).toBe("comment");
+
+    expect(cipher.card).not.toBeNull();
+
+    expect(cipher.card.cardholderName).toBe("some CC holder");
+    expect(cipher.card.number).toBe("4242424242424242");
+    expect(cipher.card.brand).toBe("Visa");
+    expect(cipher.card.expMonth).toBe("8");
+    expect(cipher.card.expYear).toBe("2028");
+    expect(cipher.card.code).toBe("125");
+  });
+});
diff --git a/libs/importer/src/importers/password-depot/password-depot-17-xml-importer.spec.ts b/libs/importer/src/importers/password-depot/password-depot-17-xml-importer.spec.ts
new file mode 100644
index 00000000000..ea84603aef4
--- /dev/null
+++ b/libs/importer/src/importers/password-depot/password-depot-17-xml-importer.spec.ts
@@ -0,0 +1,496 @@
+// This import has been flagged as unallowed for this class. It may be involved in a circular dependency loop.
+// eslint-disable-next-line no-restricted-imports
+import { CollectionView } from "@bitwarden/admin-console/common";
+import { FieldType, SecureNoteType } from "@bitwarden/common/vault/enums";
+import { FolderView } from "@bitwarden/common/vault/models/view/folder.view";
+import { CipherType } from "@bitwarden/sdk-internal";
+
+import {
+  EncryptedFileData,
+  InvalidRootNodeData,
+  InvalidVersionData,
+  CreditCardTestData,
+  MissingPasswordsNodeData,
+  PasswordTestData,
+  IdentityTestData,
+  RDPTestData,
+  SoftwareLicenseTestData,
+  TeamViewerTestData,
+  PuttyTestData,
+  BankingTestData,
+  InformationTestData,
+  CertificateTestData,
+  EncryptedFileTestData,
+  DocumentTestData,
+} from "../spec-data/password-depot-xml";
+
+import { PasswordDepot17XmlImporter } from "./password-depot-17-xml-importer";
+
+describe("Password Depot 17 Xml Importer", () => {
+  it("should return error with missing root tag", async () => {
+    const importer = new PasswordDepot17XmlImporter();
+    const result = await importer.parse(InvalidRootNodeData);
+    expect(result.errorMessage).toBe("Missing `passwordfile` node.");
+  });
+
+  it("should return error with invalid export version", async () => {
+    const importer = new PasswordDepot17XmlImporter();
+    const result = await importer.parse(InvalidVersionData);
+    expect(result.errorMessage).toBe(
+      "Unsupported export version detected - (only 17.0 is supported)",
+    );
+  });
+
+  it("should return error if file is marked as encrypted", async () => {
+    const importer = new PasswordDepot17XmlImporter();
+    const result = await importer.parse(EncryptedFileData);
+    expect(result.errorMessage).toBe("Encrypted Password Depot files are not supported.");
+  });
+
+  it("should return error with missing passwords node tag", async () => {
+    const importer = new PasswordDepot17XmlImporter();
+    const result = await importer.parse(MissingPasswordsNodeData);
+    expect(result.success).toBe(false);
+    expect(result.errorMessage).toBe("Missing `passwordfile > passwords` node.");
+  });
+
+  it("should parse groups nodes into folders", async () => {
+    const importer = new PasswordDepot17XmlImporter();
+    const folder = new FolderView();
+    folder.name = "tempDB";
+    const actual = [folder];
+
+    const result = await importer.parse(PasswordTestData);
+    expect(result.folders).toEqual(actual);
+  });
+
+  it("should parse password type into logins", async () => {
+    const importer = new PasswordDepot17XmlImporter();
+    const result = await importer.parse(PasswordTestData);
+
+    const cipher = result.ciphers.shift();
+
+    expect(cipher.type).toEqual(CipherType.Login);
+    expect(cipher.name).toBe("password type");
+    expect(cipher.notes).toBe("someComment");
+
+    expect(cipher.login).not.toBeNull();
+    expect(cipher.login.username).toBe("someUser");
+    expect(cipher.login.password).toBe("p6J<]fmjv!:H&iJ7/Mwt@3i8");
+    expect(cipher.login.uri).toBe("http://example.com");
+  });
+
+  it("should parse any unmapped fields as custom fields", async () => {
+    const importer = new PasswordDepot17XmlImporter();
+    const result = await importer.parse(PasswordTestData);
+
+    const cipher = result.ciphers.shift();
+
+    expect(cipher.type).toBe(CipherType.Login);
+    expect(cipher.name).toBe("password type");
+
+    expect(cipher.fields).not.toBeNull();
+
+    expect(cipher.fields[0].name).toBe("lastmodified");
+    expect(cipher.fields[0].value).toBe("07.05.2025 13:37:56");
+    expect(cipher.fields[0].type).toBe(FieldType.Text);
+
+    expect(cipher.fields[1].name).toBe("expirydate");
+    expect(cipher.fields[1].value).toBe("07.05.2025");
+    expect(cipher.fields[0].type).toBe(FieldType.Text);
+
+    expect(cipher.fields[2].name).toBe("importance");
+    expect(cipher.fields[2].value).toBe("0");
+
+    let customField = cipher.fields.find((f) => f.name === "passwort");
+    expect(customField).toBeDefined();
+    expect(customField.value).toEqual("password");
+    expect(customField.type).toEqual(FieldType.Hidden);
+
+    customField = cipher.fields.find((f) => f.name === "memo");
+    expect(customField).toBeDefined();
+    expect(customField.value).toEqual("memo");
+    expect(customField.type).toEqual(FieldType.Text);
+
+    customField = cipher.fields.find((f) => f.name === "datum");
+    expect(customField).toBeDefined();
+    const expectedDate = new Date("2025-05-13T00:00:00Z");
+    expect(customField.value).toEqual(expectedDate.toLocaleDateString());
+    expect(customField.type).toEqual(FieldType.Text);
+
+    customField = cipher.fields.find((f) => f.name === "nummer");
+    expect(customField).toBeDefined();
+    expect(customField.value).toEqual("1");
+    expect(customField.type).toEqual(FieldType.Text);
+
+    customField = cipher.fields.find((f) => f.name === "boolean");
+    expect(customField).toBeDefined();
+    expect(customField.value).toEqual("1");
+    expect(customField.type).toEqual(FieldType.Boolean);
+
+    customField = cipher.fields.find((f) => f.name === "decimal");
+    expect(customField).toBeDefined();
+    expect(customField.value).toEqual("1,01");
+    expect(customField.type).toEqual(FieldType.Text);
+
+    customField = cipher.fields.find((f) => f.name === "email");
+    expect(customField).toBeDefined();
+    expect(customField.value).toEqual("who@cares.com");
+    expect(customField.type).toEqual(FieldType.Text);
+
+    customField = cipher.fields.find((f) => f.name === "url");
+    expect(customField).toBeDefined();
+    expect(customField.value).toEqual("example.com");
+    expect(customField.type).toEqual(FieldType.Text);
+  });
+
+  it("should parse credit cards", async () => {
+    const importer = new PasswordDepot17XmlImporter();
+    const result = await importer.parse(CreditCardTestData);
+
+    const cipher = result.ciphers.shift();
+    expect(cipher.name).toBe("some CreditCard");
+    expect(cipher.notes).toBe("someComment");
+
+    expect(cipher.card).not.toBeNull();
+
+    expect(cipher.card.cardholderName).toBe("some CC holder");
+    expect(cipher.card.number).toBe("4222422242224222");
+    expect(cipher.card.brand).toBe("Visa");
+    expect(cipher.card.expMonth).toBe("5");
+    expect(cipher.card.expYear).toBe("2026");
+    expect(cipher.card.code).toBe("123");
+  });
+
+  it("should parse identity type", async () => {
+    const importer = new PasswordDepot17XmlImporter();
+    const result = await importer.parse(IdentityTestData);
+
+    const cipher = result.ciphers.shift();
+    expect(cipher.name).toBe("identity type");
+    expect(cipher.notes).toBe("someNote");
+
+    expect(cipher.identity).not.toBeNull();
+
+    expect(cipher.identity.firstName).toBe("firstName");
+    expect(cipher.identity.lastName).toBe("surName");
+    expect(cipher.identity.email).toBe("email");
+    expect(cipher.identity.company).toBe("someCompany");
+    expect(cipher.identity.address1).toBe("someStreet");
+    expect(cipher.identity.address2).toBe("address 2");
+    expect(cipher.identity.city).toBe("town");
+    expect(cipher.identity.state).toBe("state");
+    expect(cipher.identity.postalCode).toBe("zipCode");
+    expect(cipher.identity.country).toBe("country");
+    expect(cipher.identity.phone).toBe("phoneNumber");
+  });
+
+  it("should parse RDP type", async () => {
+    const importer = new PasswordDepot17XmlImporter();
+    const result = await importer.parse(RDPTestData);
+
+    const cipher = result.ciphers.shift();
+    expect(cipher.type).toEqual(CipherType.Login);
+    expect(cipher.name).toBe("rdp type");
+    expect(cipher.notes).toBe("someNote");
+
+    expect(cipher.login).not.toBeNull();
+    expect(cipher.login.username).toBe("someUser");
+    expect(cipher.login.password).toBe("somePassword");
+    expect(cipher.login.uri).toBe("ms-rd:subscribe?url=https://contoso.com");
+  });
+
+  it("should parse software license into secure notes", async () => {
+    const importer = new PasswordDepot17XmlImporter();
+    const result = await importer.parse(SoftwareLicenseTestData);
+
+    const cipher = result.ciphers.shift();
+
+    expect(cipher.type).toEqual(CipherType.SecureNote);
+    expect(cipher.name).toBe("software-license type");
+    expect(cipher.notes).toBe("someComment");
+
+    expect(cipher.secureNote).not.toBeNull();
+    expect(cipher.secureNote.type).toBe(SecureNoteType.Generic);
+
+    let customField = cipher.fields.find((f) => f.name === "IDS_LicenseProduct");
+    expect(customField).toBeDefined();
+    expect(customField.value).toEqual("someProduct");
+
+    customField = cipher.fields.find((f) => f.name === "IDS_LicenseVersion");
+    expect(customField).toBeDefined();
+    expect(customField.value).toEqual("someVersion");
+
+    customField = cipher.fields.find((f) => f.name === "IDS_LicenseName");
+    expect(customField).toBeDefined();
+    expect(customField.value).toEqual("some User");
+
+    customField = cipher.fields.find((f) => f.name === "IDS_LicenseKey");
+    expect(customField).toBeDefined();
+    expect(customField.value).toEqual("license-key");
+
+    customField = cipher.fields.find((f) => f.name === "IDS_LicenseAdditionalKey");
+    expect(customField).toBeDefined();
+    expect(customField.value).toEqual("additional-license-key");
+
+    customField = cipher.fields.find((f) => f.name === "IDS_LicenseURL");
+    expect(customField).toBeDefined();
+    expect(customField.value).toEqual("example.com");
+
+    customField = cipher.fields.find((f) => f.name === "IDS_LicenseProtected");
+    expect(customField).toBeDefined();
+    expect(customField.value).toEqual("1");
+
+    customField = cipher.fields.find((f) => f.name === "IDS_LicenseUserName");
+    expect(customField).toBeDefined();
+    expect(customField.value).toEqual("someUserName");
+
+    customField = cipher.fields.find((f) => f.name === "IDS_LicensePassword");
+    expect(customField).toBeDefined();
+    expect(customField.value).toEqual("somePassword");
+
+    customField = cipher.fields.find((f) => f.name === "IDS_LicensePurchaseDate");
+    expect(customField).toBeDefined();
+    const expectedDate = new Date("2025-05-12T00:00:00Z");
+    expect(customField.value).toEqual(expectedDate.toLocaleDateString());
+
+    customField = cipher.fields.find((f) => f.name === "IDS_LicenseOrderNumber");
+    expect(customField).toBeDefined();
+    expect(customField.value).toEqual("order number");
+
+    customField = cipher.fields.find((f) => f.name === "IDS_LicenseEmail");
+    expect(customField).toBeDefined();
+    expect(customField.value).toEqual("someEmail");
+
+    customField = cipher.fields.find((f) => f.name === "IDS_LicenseExpires");
+    expect(customField).toBeDefined();
+    expect(customField.value).toEqual("Nie");
+  });
+
+  it("should parse team viewer into login type", async () => {
+    const importer = new PasswordDepot17XmlImporter();
+    const result = await importer.parse(TeamViewerTestData);
+
+    const cipher = result.ciphers.shift();
+
+    expect(cipher.type).toEqual(CipherType.Login);
+    expect(cipher.name).toBe("TeamViewer type");
+    expect(cipher.notes).toBe("someNote");
+
+    expect(cipher.login).not.toBeNull();
+    expect(cipher.login.password).toBe("somePassword");
+    expect(cipher.login.username).toBe("");
+    expect(cipher.login.uri).toBe("partnerId");
+
+    const customField = cipher.fields.find((f) => f.name === "IDS_TeamViewerMode");
+    expect(customField).toBeDefined();
+    expect(customField.value).toEqual("0");
+  });
+
+  it("should parse putty into login type", async () => {
+    const importer = new PasswordDepot17XmlImporter();
+    const result = await importer.parse(PuttyTestData);
+
+    const cipher = result.ciphers.shift();
+
+    expect(cipher.type).toEqual(CipherType.Login);
+    expect(cipher.name).toBe("Putty type");
+    expect(cipher.notes).toBe("someNote");
+
+    expect(cipher.login).not.toBeNull();
+    expect(cipher.login.password).toBe("somePassword");
+    expect(cipher.login.username).toBe("someUser");
+    expect(cipher.login.uri).toBe("localhost");
+
+    let customField = cipher.fields.find((f) => f.name === "IDS_PuTTyProtocol");
+    expect(customField).toBeDefined();
+    expect(customField.value).toEqual("0");
+
+    customField = cipher.fields.find((f) => f.name === "IDS_PuTTyKeyFile");
+    expect(customField).toBeDefined();
+    expect(customField.value).toEqual("pathToKeyFile");
+
+    customField = cipher.fields.find((f) => f.name === "IDS_PuTTyKeyPassword");
+    expect(customField).toBeDefined();
+    expect(customField.value).toEqual("passwordForKeyFile");
+
+    customField = cipher.fields.find((f) => f.name === "IDS_PuTTyPort");
+    expect(customField).toBeDefined();
+    expect(customField.value).toEqual("8080");
+  });
+
+  it("should parse banking item type into login type", async () => {
+    const importer = new PasswordDepot17XmlImporter();
+    const result = await importer.parse(BankingTestData);
+
+    const cipher = result.ciphers.shift();
+
+    expect(cipher.type).toEqual(CipherType.Login);
+    expect(cipher.name).toBe("banking type");
+    expect(cipher.notes).toBe("someNote");
+
+    expect(cipher.login).not.toBeNull();
+    expect(cipher.login.password).toBe("somePassword");
+    expect(cipher.login.username).toBe("someUser");
+    expect(cipher.login.uri).toBe("http://some-bank.com");
+
+    let customField = cipher.fields.find((f) => f.name === "IDS_ECHolder");
+    expect(customField).toBeDefined();
+    expect(customField.value).toEqual("account holder");
+
+    customField = cipher.fields.find((f) => f.name === "IDS_ECAccountNumber");
+    expect(customField).toBeDefined();
+    expect(customField.value).toEqual("1234567890");
+
+    customField = cipher.fields.find((f) => f.name === "IDS_ECBLZ");
+    expect(customField).toBeDefined();
+    expect(customField.value).toEqual("12345678");
+
+    customField = cipher.fields.find((f) => f.name === "IDS_ECBankName");
+    expect(customField).toBeDefined();
+    expect(customField.value).toEqual("someBank");
+
+    customField = cipher.fields.find((f) => f.name === "IDS_ECBIC");
+    expect(customField).toBeDefined();
+    expect(customField.value).toEqual("bic");
+
+    customField = cipher.fields.find((f) => f.name === "IDS_ECIBAN");
+    expect(customField).toBeDefined();
+    expect(customField.value).toEqual("iban");
+
+    customField = cipher.fields.find((f) => f.name === "IDS_ECCardNumber");
+    expect(customField).toBeDefined();
+    expect(customField.value).toEqual("12345678");
+
+    customField = cipher.fields.find((f) => f.name === "IDS_ECPhone");
+    expect(customField).toBeDefined();
+    expect(customField.value).toEqual("0049");
+
+    customField = cipher.fields.find((f) => f.name === "IDS_ECLegitimacyID");
+    expect(customField).toBeDefined();
+    expect(customField.value).toEqual("1234");
+
+    customField = cipher.fields.find((f) => f.name === "IDS_ECPIN");
+    expect(customField).toBeDefined();
+    expect(customField.value).toEqual("123");
+
+    customField = cipher.fields.find((f) => f.name === "tan_1_value");
+    expect(customField).toBeDefined();
+    expect(customField.value).toEqual("1234");
+
+    customField = cipher.fields.find((f) => f.name === "tan_1_used");
+    expect(customField).toBeDefined();
+    expect(customField.value).toEqual("12.05.2025 15:10:54");
+
+    // TAN entries
+    customField = cipher.fields.find((f) => f.name === "tan_1_amount");
+    expect(customField).toBeDefined();
+    expect(customField.value).toEqual(" 100,00");
+
+    customField = cipher.fields.find((f) => f.name === "tan_1_comment");
+    expect(customField).toBeDefined();
+    expect(customField.value).toEqual("some TAN note");
+
+    customField = cipher.fields.find((f) => f.name === "tan_1_ccode");
+    expect(customField).toBeDefined();
+    expect(customField.value).toEqual("123");
+
+    customField = cipher.fields.find((f) => f.name === "tan_2_value");
+    expect(customField).toBeDefined();
+    expect(customField.value).toEqual("4321");
+
+    customField = cipher.fields.find((f) => f.name === "tan_2_amount");
+    expect(customField).toBeDefined();
+    expect(customField.value).toEqual(" 0,00");
+  });
+
+  it("should parse information into secure note type", async () => {
+    const importer = new PasswordDepot17XmlImporter();
+    const result = await importer.parse(InformationTestData);
+
+    const cipher = result.ciphers.shift();
+
+    expect(cipher.type).toEqual(CipherType.SecureNote);
+    expect(cipher.name).toBe("information type");
+    expect(cipher.notes).toBe("some note content");
+  });
+
+  it("should parse certificate into login type", async () => {
+    const importer = new PasswordDepot17XmlImporter();
+    const result = await importer.parse(CertificateTestData);
+
+    const cipher = result.ciphers.shift();
+
+    expect(cipher.type).toEqual(CipherType.Login);
+    expect(cipher.name).toBe("certificate type");
+    expect(cipher.notes).toBe("someNote");
+
+    expect(cipher.login).not.toBeNull();
+    expect(cipher.login.password).toBe("somePassword");
+  });
+
+  it("should parse encrypted file into login type", async () => {
+    const importer = new PasswordDepot17XmlImporter();
+    const result = await importer.parse(EncryptedFileTestData);
+
+    const cipher = result.ciphers.shift();
+
+    expect(cipher.type).toEqual(CipherType.Login);
+    expect(cipher.name).toBe("encrypted file type");
+    expect(cipher.notes).toBe("some comment");
+
+    expect(cipher.login).not.toBeNull();
+    expect(cipher.login.password).toBe("somePassword");
+  });
+
+  it("should parse document type into secure note", async () => {
+    const importer = new PasswordDepot17XmlImporter();
+    const result = await importer.parse(DocumentTestData);
+
+    const cipher = result.ciphers.shift();
+
+    expect(cipher.type).toEqual(CipherType.SecureNote);
+    expect(cipher.name).toBe("document type");
+    expect(cipher.notes).toBe("document comment");
+
+    let customField = cipher.fields.find((f) => f.name === "IDS_DocumentSize");
+    expect(customField).toBeDefined();
+    expect(customField.value).toEqual("27071");
+
+    customField = cipher.fields.find((f) => f.name === "IDS_DocumentFolder");
+    expect(customField).toBeDefined();
+    expect(customField.value).toEqual("C:\\Users\\DJSMI\\Downloads\\");
+
+    customField = cipher.fields.find((f) => f.name === "IDS_DocumentFile");
+    expect(customField).toBeDefined();
+    expect(customField.value).toEqual("C:\\Users\\DJSMI\\Downloads\\some.pdf");
+  });
+
+  it("should parse favourites and set them on the target item", async () => {
+    const importer = new PasswordDepot17XmlImporter();
+    const result = await importer.parse(PasswordTestData);
+
+    let cipher = result.ciphers.shift();
+    expect(cipher.name).toBe("password type");
+    expect(cipher.favorite).toBe(false);
+
+    cipher = result.ciphers.shift();
+    expect(cipher.name).toBe("password type (2)");
+    expect(cipher.favorite).toBe(true);
+
+    cipher = result.ciphers.shift();
+    expect(cipher.name).toBe("password type (3)");
+    expect(cipher.favorite).toBe(true);
+  });
+
+  it("should parse groups nodes into collections when importing into an organization", async () => {
+    const importer = new PasswordDepot17XmlImporter();
+    importer.organizationId = "someOrgId";
+    const collection = new CollectionView();
+    collection.name = "tempDB";
+    const actual = [collection];
+
+    const result = await importer.parse(PasswordTestData);
+    expect(result.collections).toEqual(actual);
+  });
+});
diff --git a/libs/importer/src/importers/password-depot/password-depot-17-xml-importer.ts b/libs/importer/src/importers/password-depot/password-depot-17-xml-importer.ts
new file mode 100644
index 00000000000..ab1f6b4689f
--- /dev/null
+++ b/libs/importer/src/importers/password-depot/password-depot-17-xml-importer.ts
@@ -0,0 +1,500 @@
+// FIXME: Update this file to be type safe and remove this and next line
+// @ts-strict-ignore
+import { CipherType, FieldType, SecureNoteType } from "@bitwarden/common/vault/enums";
+import { CardView } from "@bitwarden/common/vault/models/view/card.view";
+import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
+import { FieldView } from "@bitwarden/common/vault/models/view/field.view";
+import { FolderView } from "@bitwarden/common/vault/models/view/folder.view";
+import { IdentityView } from "@bitwarden/common/vault/models/view/identity.view";
+import { LoginView } from "@bitwarden/common/vault/models/view/login.view";
+import { SecureNoteView } from "@bitwarden/common/vault/models/view/secure-note.view";
+
+import { ImportResult } from "../../models/import-result";
+import { BaseImporter } from "../base-importer";
+import { Importer } from "../importer";
+
+import { PasswordDepotItemType, PasswordDepotCustomFieldType } from "./types";
+
+/**
+ * Importer for Password Depot 17 xml files.
+ * @see https://www.password-depot.de/
+ * It provides methods to parse the XML data, extract relevant information, and create cipher objects
+ */
+export class PasswordDepot17XmlImporter extends BaseImporter implements Importer {
+  result = new ImportResult();
+
+  _favouritesLookupTable = new Set<string>();
+
+  // Parse the XML data from the Password Depot export file and extracts the relevant information
+  parse(data: string): Promise<ImportResult> {
+    const doc: XMLDocument = this.parseXml(data);
+    if (doc == null) {
+      this.result.success = false;
+      return Promise.resolve(this.result);
+    }
+
+    // Check if the root node is present
+    const rootNode = doc.querySelector("passwordfile");
+    if (rootNode == null) {
+      this.result.errorMessage = "Missing `passwordfile` node.";
+      this.result.success = false;
+      return Promise.resolve(this.result);
+    }
+
+    // Check if the version is supported
+    const headerNode = this.querySelectorDirectChild(rootNode, "header");
+    if (headerNode == null) {
+      this.result.success = false;
+      return Promise.resolve(this.result);
+    }
+
+    let versionNode = this.querySelectorDirectChild(headerNode, "version");
+    if (versionNode == null) {
+      // Adding a fallback for MacOS Password Depot 17.0 export files
+      // These files do not have a version node, but a dataformat node instead
+      versionNode = this.querySelectorDirectChild(headerNode, "dataformat");
+      if (versionNode == null) {
+        this.result.success = false;
+        return Promise.resolve(this.result);
+      }
+    }
+
+    const version = versionNode.textContent;
+    if (!version.startsWith("17")) {
+      this.result.errorMessage = "Unsupported export version detected - (only 17.0 is supported)";
+      this.result.success = false;
+      return Promise.resolve(this.result);
+    }
+
+    // Abort import if the file is encrypted
+    const encryptedNode = this.querySelectorDirectChild(headerNode, "encrypted");
+    if (encryptedNode != null && encryptedNode.textContent == "True") {
+      this.result.errorMessage = "Encrypted Password Depot files are not supported.";
+      this.result.success = false;
+      return Promise.resolve(this.result);
+    }
+
+    // Check if the passwords node is present
+    // This node contains all the password entries
+    const passwordsNode = rootNode.querySelector("passwords");
+    if (passwordsNode == null) {
+      this.result.errorMessage = "Missing `passwordfile > passwords` node.";
+      this.result.success = false;
+      return Promise.resolve(this.result);
+    }
+
+    this.buildFavouritesLookupTable(rootNode);
+
+    this.querySelectorAllDirectChild(passwordsNode, "group").forEach((group) => {
+      this.traverse(group, "");
+    });
+
+    if (this.organization) {
+      this.moveFoldersToCollections(this.result);
+    }
+
+    this.result.success = true;
+    return Promise.resolve(this.result);
+  }
+
+  // Traverses the XML tree and processes each node
+  // It starts from the root node and goes through each group and item
+  // This method is recursive and handles nested groups
+  private traverse(node: Element, groupPrefixName: string) {
+    const folderIndex = this.result.folders.length;
+    let groupName = groupPrefixName;
+
+    if (groupName !== "") {
+      groupName += "/";
+    }
+
+    // Check if the group has a fingerprint attribute (GUID of a folder)
+    const groupFingerprint = node.attributes.getNamedItem("fingerprint");
+    if (groupFingerprint?.textContent != "" && groupFingerprint.textContent != "null") {
+      const nameEl = node.attributes.getNamedItem("name");
+      groupName += nameEl == null ? "-" : nameEl.textContent;
+      const folder = new FolderView();
+      folder.name = groupName;
+      this.result.folders.push(folder);
+    }
+
+    this.querySelectorAllDirectChild(node, "item").forEach((entry) => {
+      const cipherIndex = this.result.ciphers.length;
+
+      const cipher = this.initLoginCipher();
+      //Set default item type similar how we default to Login in other importers
+      let sourceType: PasswordDepotItemType = PasswordDepotItemType.Password;
+
+      const entryFields = entry.children;
+      for (let i = 0; i < entryFields.length; i++) {
+        const entryField = entryFields[i];
+
+        // Skip processing historical entries
+        if (entryField.tagName === "hitems") {
+          continue;
+        }
+
+        if (entryField.tagName === "description") {
+          cipher.name = entryField.textContent;
+          continue;
+        }
+
+        if (entryField.tagName === "comment") {
+          cipher.notes = entryField.textContent;
+          continue;
+        }
+
+        if (entryField.tagName === "type") {
+          sourceType = entryField.textContent as PasswordDepotItemType;
+          switch (sourceType) {
+            case PasswordDepotItemType.Password:
+            case PasswordDepotItemType.RDP:
+            case PasswordDepotItemType.Putty:
+            case PasswordDepotItemType.TeamViewer:
+            case PasswordDepotItemType.Banking:
+            case PasswordDepotItemType.Certificate:
+            case PasswordDepotItemType.EncryptedFile:
+              cipher.type = CipherType.Login;
+              cipher.login = new LoginView();
+              break;
+            case PasswordDepotItemType.CreditCard:
+              cipher.type = CipherType.Card;
+              cipher.card = new CardView();
+              break;
+            case PasswordDepotItemType.SoftwareLicense:
+            case PasswordDepotItemType.Information:
+            case PasswordDepotItemType.Document:
+              cipher.type = CipherType.SecureNote;
+              cipher.secureNote = new SecureNoteView();
+              cipher.secureNote.type = SecureNoteType.Generic;
+              break;
+            case PasswordDepotItemType.Identity:
+              cipher.type = CipherType.Identity;
+              cipher.identity = new IdentityView();
+              break;
+          }
+          continue;
+        }
+
+        if (
+          sourceType === PasswordDepotItemType.Password ||
+          sourceType === PasswordDepotItemType.RDP ||
+          sourceType === PasswordDepotItemType.Putty ||
+          sourceType === PasswordDepotItemType.TeamViewer ||
+          sourceType === PasswordDepotItemType.Banking ||
+          sourceType === PasswordDepotItemType.Certificate ||
+          sourceType === PasswordDepotItemType.EncryptedFile
+        ) {
+          if (this.parseLoginFields(entryField, cipher)) {
+            continue;
+          }
+        }
+
+        // fingerprint is the GUID of the entry
+        // Base on the previously parsed favourites, we can identify an entry and set the favorite flag accordingly
+        if (entryField.tagName === "fingerprint") {
+          if (this._favouritesLookupTable.has(entryField.textContent)) {
+            cipher.favorite = true;
+          }
+        }
+
+        if (entryField.tagName === "customfields") {
+          this.parseCustomFields(entryField, sourceType, cipher);
+          continue;
+        }
+
+        if (sourceType === PasswordDepotItemType.Banking && entryField.tagName === "tans") {
+          this.querySelectorAllDirectChild(entryField, "tan").forEach((tanEntry) => {
+            this.parseBankingTANs(tanEntry, cipher);
+          });
+          continue;
+        }
+
+        this.processKvp(cipher, entryField.tagName, entryField.textContent, FieldType.Text);
+      }
+
+      this.cleanupCipher(cipher);
+      this.result.ciphers.push(cipher);
+
+      if (groupName !== "") {
+        this.result.folderRelationships.push([cipherIndex, folderIndex]);
+      }
+    });
+
+    this.querySelectorAllDirectChild(node, "group").forEach((group) => {
+      this.traverse(group, groupName);
+    });
+  }
+
+  // Parses custom fields and adds them to the cipher
+  // It iterates through all the custom fields and adds them to the cipher
+  private parseCustomFields(
+    entryField: Element,
+    sourceType: PasswordDepotItemType,
+    cipher: CipherView,
+  ) {
+    this.querySelectorAllDirectChild(entryField, "field").forEach((customField) => {
+      const customFieldObject = this.parseCustomField(customField);
+      if (customFieldObject == null) {
+        return;
+      }
+
+      switch (sourceType) {
+        case PasswordDepotItemType.CreditCard:
+          if (this.parseCreditCardCustomFields(customFieldObject, cipher)) {
+            return;
+          }
+          break;
+        case PasswordDepotItemType.Identity:
+          if (this.parseIdentityCustomFields(customFieldObject, cipher)) {
+            return;
+          }
+          break;
+        case PasswordDepotItemType.Information:
+          if (this.parseInformationCustomFields(customFieldObject, cipher)) {
+            return;
+          }
+          break;
+        default:
+          // For other types, we will process the custom field as a regular key-value pair
+          break;
+      }
+
+      this.processKvp(
+        cipher,
+        customFieldObject.name,
+        customFieldObject.value,
+        customFieldObject.type,
+      );
+    });
+  }
+
+  // Parses login fields and adds them to the cipher
+  private parseLoginFields(entryField: Element, cipher: CipherView): boolean {
+    if (entryField.tagName === "username") {
+      cipher.login.username = entryField.textContent;
+      return true;
+    }
+
+    if (entryField.tagName === "password") {
+      cipher.login.password = entryField.textContent;
+      return true;
+    }
+
+    if (entryField.tagName === "url") {
+      cipher.login.uris = this.makeUriArray(entryField.textContent);
+      return true;
+    }
+
+    return false;
+  }
+
+  // Parses a custom field and adds it to the cipher
+  private parseCustomField(customField: Element): FieldView | null {
+    let key: string = undefined;
+    let value: string = undefined;
+    let sourceFieldType: PasswordDepotCustomFieldType = PasswordDepotCustomFieldType.Memo;
+    let visible: string = undefined;
+    // A custom field is represented by a <field> element
+    // On exports from the Windows clients: It contains a <name>, <value>, and optionally a <type> and <visible> element
+    // On exports from the MacOs clients the key-values are defined as xml attributes instead of child nodes
+    if (customField.hasAttributes()) {
+      key = customField.getAttribute("name");
+      if (key == null) {
+        return null;
+      }
+
+      value = customField.getAttribute("value");
+
+      const typeAttr = customField.getAttribute("type");
+      sourceFieldType =
+        typeAttr != null
+          ? (typeAttr as PasswordDepotCustomFieldType)
+          : PasswordDepotCustomFieldType.Memo;
+
+      visible = customField.getAttribute("visible");
+    } else {
+      const keyEl = this.querySelectorDirectChild(customField, "name");
+      key = keyEl != null ? keyEl.textContent : null;
+
+      if (key == null) {
+        return null;
+      }
+
+      const valueEl = this.querySelectorDirectChild(customField, "value");
+      value = valueEl != null ? valueEl.textContent : null;
+
+      const typeEl = this.querySelectorDirectChild(customField, "type");
+      sourceFieldType =
+        typeEl != null
+          ? (typeEl.textContent as PasswordDepotCustomFieldType)
+          : PasswordDepotCustomFieldType.Memo;
+
+      const visibleEl = this.querySelectorDirectChild(customField, "visible");
+      visible = visibleEl != null ? visibleEl.textContent : null;
+    }
+
+    if (sourceFieldType === PasswordDepotCustomFieldType.Date) {
+      if (!isNaN(value as unknown as number)) {
+        // Convert excel date format to JavaScript date
+        const numericValue = parseInt(value);
+        const secondsInDay = 86400;
+        const missingLeapYearDays = secondsInDay * 1000;
+        value = new Date((numericValue - (25567 + 2)) * missingLeapYearDays).toLocaleDateString();
+      }
+    }
+
+    if (sourceFieldType === PasswordDepotCustomFieldType.Password) {
+      return { name: key, value: value, type: FieldType.Hidden, linkedId: null } as FieldView;
+    }
+
+    if (sourceFieldType === PasswordDepotCustomFieldType.Boolean) {
+      return { name: key, value: value, type: FieldType.Boolean, linkedId: null } as FieldView;
+    }
+
+    if (visible == "0") {
+      return { name: key, value: value, type: FieldType.Hidden, linkedId: null } as FieldView;
+    }
+
+    return { name: key, value: value, type: FieldType.Text, linkedId: null } as FieldView;
+  }
+
+  // Parses credit card fields and adds them to the cipher
+  private parseCreditCardCustomFields(customField: FieldView, cipher: CipherView): boolean {
+    if (customField.name === "IDS_CardHolder") {
+      cipher.card.cardholderName = customField.value;
+      return true;
+    }
+
+    if (customField.name === "IDS_CardNumber") {
+      cipher.card.number = customField.value;
+      cipher.card.brand = CardView.getCardBrandByPatterns(cipher.card.number);
+      return true;
+    }
+
+    if (customField.name === "IDS_CardExpires") {
+      this.setCardExpiration(cipher, customField.value);
+      return true;
+    }
+
+    if (customField.name === "IDS_CardCode") {
+      cipher.card.code = customField.value;
+      return true;
+    }
+
+    return false;
+  }
+
+  // Parses identity fields and adds them to the cipher
+  private parseIdentityCustomFields(customField: FieldView, cipher: CipherView): boolean {
+    if (customField.name === "IDS_IdentityName") {
+      this.processFullName(cipher, customField.value);
+      return true;
+    }
+
+    if (customField.name === "IDS_IdentityEmail") {
+      cipher.identity.email = customField.value;
+      return true;
+    }
+
+    if (customField.name === "IDS_IdentityFirstName") {
+      cipher.identity.firstName = customField.value;
+      return true;
+    }
+
+    if (customField.name === "IDS_IdentityLastName") {
+      cipher.identity.lastName = customField.value;
+      return true;
+    }
+
+    if (customField.name === "IDS_IdentityCompany") {
+      cipher.identity.company = customField.value;
+      return true;
+    }
+
+    if (customField.name === "IDS_IdentityAddress1") {
+      cipher.identity.address1 = customField.value;
+      return true;
+    }
+
+    if (customField.name === "IDS_IdentityAddress2") {
+      cipher.identity.address2 = customField.value;
+      return true;
+    }
+
+    if (customField.name === "IDS_IdentityCity") {
+      cipher.identity.city = customField.value;
+      return true;
+    }
+
+    if (customField.name === "IDS_IdentityState") {
+      cipher.identity.state = customField.value;
+      return true;
+    }
+
+    if (customField.name === "IDS_IdentityZIP") {
+      cipher.identity.postalCode = customField.value;
+      return true;
+    }
+
+    if (customField.name === "IDS_IdentityCountry") {
+      cipher.identity.country = customField.value;
+      return true;
+    }
+
+    if (customField.name === "IDS_IdentityPhone") {
+      cipher.identity.phone = customField.value;
+      return true;
+    }
+
+    return false;
+  }
+
+  // Parses information custom fields and adds them to the cipher
+  private parseInformationCustomFields(customField: FieldView, cipher: CipherView): boolean {
+    if (customField.name === "IDS_InformationText") {
+      cipher.notes = customField.value;
+      return true;
+    }
+
+    return false;
+  }
+
+  // Parses TAN objects and adds them to the cipher
+  // It iterates through all the TAN fields and adds them to the cipher
+  private parseBankingTANs(TANsField: Element, cipher: CipherView) {
+    let tanNumber = "0";
+    const entryFields = TANsField.children;
+    for (let i = 0; i < entryFields.length; i++) {
+      const entryField = entryFields[i];
+
+      if (entryField.tagName === "number") {
+        tanNumber = entryField.textContent;
+        continue;
+      }
+
+      this.processKvp(cipher, `tan_${tanNumber}_${entryField.tagName}`, entryField.textContent);
+    }
+  }
+
+  // Parses the favourites-node from the XML file, which contains a base64 encoded string
+  // The string contains the fingerprints/GUIDs of the favourited entries, separated by new lines
+  private buildFavouritesLookupTable(rootNode: Element): void {
+    const favouritesNode = this.querySelectorDirectChild(rootNode, "favorites");
+    if (favouritesNode == null) {
+      return;
+    }
+
+    const decodedBase64String = atob(favouritesNode.textContent);
+    if (decodedBase64String.indexOf("\r\n") > 0) {
+      decodedBase64String.split("\r\n").forEach((line) => {
+        this._favouritesLookupTable.add(line);
+      });
+      return;
+    }
+
+    decodedBase64String.split("\n").forEach((line) => {
+      this._favouritesLookupTable.add(line);
+    });
+  }
+}
diff --git a/libs/importer/src/importers/password-depot/types/index.ts b/libs/importer/src/importers/password-depot/types/index.ts
new file mode 100644
index 00000000000..709e5992ae8
--- /dev/null
+++ b/libs/importer/src/importers/password-depot/types/index.ts
@@ -0,0 +1,2 @@
+export * from "./password-depot-item-type";
+export * from "./password-depot-custom-field-type";
diff --git a/libs/importer/src/importers/password-depot/types/password-depot-custom-field-type.ts b/libs/importer/src/importers/password-depot/types/password-depot-custom-field-type.ts
new file mode 100644
index 00000000000..166378b38b4
--- /dev/null
+++ b/libs/importer/src/importers/password-depot/types/password-depot-custom-field-type.ts
@@ -0,0 +1,15 @@
+/** This object represents the different custom field types in Password Depot */
+export const PasswordDepotCustomFieldType = Object.freeze({
+  Password: "1",
+  Memo: "2",
+  Date: "3",
+  Number: "4",
+  Boolean: "5",
+  Decimal: "6",
+  Email: "7",
+  URL: "8",
+} as const);
+
+/** This type represents the different custom field types in Password Depot */
+export type PasswordDepotCustomFieldType =
+  (typeof PasswordDepotCustomFieldType)[keyof typeof PasswordDepotCustomFieldType];
diff --git a/libs/importer/src/importers/password-depot/types/password-depot-item-type.ts b/libs/importer/src/importers/password-depot/types/password-depot-item-type.ts
new file mode 100644
index 00000000000..04ec3a48c85
--- /dev/null
+++ b/libs/importer/src/importers/password-depot/types/password-depot-item-type.ts
@@ -0,0 +1,19 @@
+/** This object represents the different item types in Password Depot */
+export const PasswordDepotItemType = Object.freeze({
+  Password: "0",
+  CreditCard: "1",
+  SoftwareLicense: "2",
+  Identity: "3",
+  Information: "4",
+  Banking: "5",
+  EncryptedFile: "6",
+  Document: "7",
+  RDP: "8",
+  Putty: "9",
+  TeamViewer: "10",
+  Certificate: "11",
+} as const);
+
+/** This type represents the different item types in Password Depot */
+export type PasswordDepotItemType =
+  (typeof PasswordDepotItemType)[keyof typeof PasswordDepotItemType];
diff --git a/libs/importer/src/importers/spec-data/password-depot-xml/banking.xml.ts b/libs/importer/src/importers/spec-data/password-depot-xml/banking.xml.ts
new file mode 100644
index 00000000000..3a2da1c27bf
--- /dev/null
+++ b/libs/importer/src/importers/spec-data/password-depot-xml/banking.xml.ts
@@ -0,0 +1,283 @@
+export const BankingTestData = `<?xml version="1.0" encoding="utf-8"?>
+<passwordfile xmlns="https://www.password-depot.de/schemas/passwordfile/17.0/passwordfile.xsd">
+    <header>
+        <application>Password Depot</application>
+        <version>17.0.0</version>
+        <comments></comments>
+        <hint></hint>
+        <fingerprint>CCDA8015-7F21-4344-BDF0-9EA6AF8AE31D</fingerprint>
+        <datetime fmt="dd.mm.yyyy hh:mm:ss">12.05.2025 15:16:11</datetime>
+        <encrypted>False</encrypted>
+        <backupinterval>0</backupinterval>
+        <lastbackup fmt="dd.mm.yyyy hh:mm:ss">30.12.1899 00:00:00</lastbackup>
+        <hash></hash>
+    </header>
+    <passwords>
+        <group name="tempDB" fingerprint="CCDA8015-7F21-4344-BDF0-9EA6AF8AE31D">            
+            <item>
+                <description>banking type</description>
+                <type>5</type>
+                <password>somePassword</password>
+                <username>someUser</username>
+                <url>some-bank.com</url>
+                <comment>someNote</comment>
+                <lastmodified fmt="dd.mm.yyyy hh:mm:ss">12.05.2025 15:11:29</lastmodified>
+                <expirydate fmt="dd.mm.yyyy">02.05.2027</expirydate>
+                <importance>1</importance>
+                <fingerprint>DEB91652-52C6-402E-9D44-3557829BC6DF</fingerprint>
+                <template>&lt;USER&gt;&lt;TAB&gt;&lt;PASS&gt;&lt;ENTER&gt;</template>
+                <imageindex>127</imageindex>
+                <imagecustom>0</imagecustom>
+                <wndtitle></wndtitle>
+                <paramstr></paramstr>
+                <category>Allgemein</category>
+                <custombrowser></custombrowser>
+                <autocompletemethod>0</autocompletemethod>
+                <loginid></loginid>
+                <passid></passid>
+                <created fmt="dd.mm.yyyy hh:mm:ss">12.05.2025 15:09:17</created>
+                <lastaccessed fmt="dd.mm.yyyy hh:mm:ss">12.05.2025 15:09:17</lastaccessed>
+                <donotaddon>0</donotaddon>
+                <markassafe>0</markassafe>
+                <safemode>0</safemode>
+                <rndtype>1</rndtype>
+                <rndcustom></rndcustom>
+                <usagecount>0</usagecount>
+                <keephistory>2</keephistory>
+                <tags></tags>
+                <author>DJSMI</author>
+                <ownerid></ownerid>
+                <warnmsg></warnmsg>
+                <warnlvl>0</warnlvl>
+                <warnverify></warnverify>
+                <serverrqrd>0</serverrqrd>
+                <secret></secret>
+                <istemplate>0</istemplate>
+                <infotemplate></infotemplate>
+                <usetabs>161</usetabs>
+                <islink>0</islink>
+                <linkeditem></linkeditem>
+                <customfields>
+                    <field>
+                        <name>IDS_ECHolder</name>
+                        <value>account holder</value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>0</type>
+                    </field>
+                    <field>
+                        <name>IDS_ECAccountNumber</name>
+                        <value>1234567890</value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>0</type>
+                    </field>
+                    <field>
+                        <name>IDS_ECBLZ</name>
+                        <value>12345678</value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>0</type>
+                    </field>
+                    <field>
+                        <name>IDS_ECBankName</name>
+                        <value>someBank</value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>0</type>
+                    </field>
+                    <field>
+                        <name>IDS_ECBIC</name>
+                        <value>bic</value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>0</type>
+                    </field>
+                    <field>
+                        <name>IDS_ECIBAN</name>
+                        <value>iban</value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>0</type>
+                    </field>
+                    <field>
+                        <name>IDS_ECCardNumber</name>
+                        <value>12345678</value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>10</type>
+                    </field>
+                    <field>
+                        <name>IDS_ECPhone</name>
+                        <value>0049</value>
+                        <visible>0</visible>
+                        <kind>0</kind>
+                        <type>0</type>
+                    </field>
+                    <field>
+                        <name>IDS_ECLegitimacyID</name>
+                        <value>1234</value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>0</type>
+                    </field>
+                    <field>
+                        <name>IDS_ECPIN</name>
+                        <value>123</value>
+                        <visible>0</visible>
+                        <kind>0</kind>
+                        <type>1</type>
+                    </field>
+                </customfields>
+                <tans>
+                    <tan>
+                        <number>1</number>
+                        <value>1234</value>
+                        <used fmt="dd.mm.yyyy hh:mm:ss">12.05.2025 15:10:54</used>
+                        <amount> 100,00</amount>
+                        <comment>some TAN note</comment>
+                        <ccode>123</ccode>
+                    </tan>
+                    <tan>
+                        <number>2</number>
+                        <value>4321</value>
+                        <amount> 0,00</amount>
+                        <comment></comment>
+                        <ccode></ccode>
+                    </tan>
+                </tans>
+                <hitems>
+                    <hitem>
+                        <description>banking type</description>
+                        <type>5</type>
+                        <password>somePassword</password>
+                        <username>someUser</username>
+                        <url>some-bank.com</url>
+                        <comment>someNote</comment>
+                        <lastmodified fmt="dd.mm.yyyy hh:mm:ss">12.05.2025 15:10:35</lastmodified>
+                        <expirydate fmt="dd.mm.yyyy">02.05.2027</expirydate>
+                        <importance>1</importance>
+                        <fingerprint>DEB91652-52C6-402E-9D44-3557829BC6DF</fingerprint>
+                        <template>&lt;USER&gt;&lt;TAB&gt;&lt;PASS&gt;&lt;ENTER&gt;</template>
+                        <imageindex>127</imageindex>
+                        <imagecustom>0</imagecustom>
+                        <wndtitle></wndtitle>
+                        <paramstr></paramstr>
+                        <category>Allgemein</category>
+                        <custombrowser></custombrowser>
+                        <autocompletemethod>0</autocompletemethod>
+                        <loginid></loginid>
+                        <passid></passid>
+                        <created fmt="dd.mm.yyyy hh:mm:ss">12.05.2025 15:09:17</created>
+                        <lastaccessed fmt="dd.mm.yyyy hh:mm:ss">12.05.2025 15:09:17</lastaccessed>
+                        <donotaddon>0</donotaddon>
+                        <markassafe>0</markassafe>
+                        <safemode>0</safemode>
+                        <rndtype>1</rndtype>
+                        <rndcustom></rndcustom>
+                        <usagecount>0</usagecount>
+                        <keephistory>2</keephistory>
+                        <tags></tags>
+                        <author>DJSMI</author>
+                        <ownerid></ownerid>
+                        <warnmsg></warnmsg>
+                        <warnlvl>0</warnlvl>
+                        <warnverify></warnverify>
+                        <serverrqrd>0</serverrqrd>
+                        <secret></secret>
+                        <istemplate>0</istemplate>
+                        <infotemplate></infotemplate>
+                        <usetabs>161</usetabs>
+                        <islink>0</islink>
+                        <linkeditem></linkeditem>
+                        <customfields>
+                            <field>
+                                <name>IDS_ECHolder</name>
+                                <value>account holder</value>
+                                <visible>-1</visible>
+                                <kind>0</kind>
+                                <type>0</type>
+                            </field>
+                            <field>
+                                <name>IDS_ECAccountNumber</name>
+                                <value>1234567890</value>
+                                <visible>-1</visible>
+                                <kind>0</kind>
+                                <type>0</type>
+                            </field>
+                            <field>
+                                <name>IDS_ECBLZ</name>
+                                <value>12345678</value>
+                                <visible>-1</visible>
+                                <kind>0</kind>
+                                <type>0</type>
+                            </field>
+                            <field>
+                                <name>IDS_ECBankName</name>
+                                <value>someBank</value>
+                                <visible>-1</visible>
+                                <kind>0</kind>
+                                <type>0</type>
+                            </field>
+                            <field>
+                                <name>IDS_ECBIC</name>
+                                <value>bic</value>
+                                <visible>-1</visible>
+                                <kind>0</kind>
+                                <type>0</type>
+                            </field>
+                            <field>
+                                <name>IDS_ECIBAN</name>
+                                <value>iban</value>
+                                <visible>-1</visible>
+                                <kind>0</kind>
+                                <type>0</type>
+                            </field>
+                            <field>
+                                <name>IDS_ECCardNumber</name>
+                                <value>12345678</value>
+                                <visible>-1</visible>
+                                <kind>0</kind>
+                                <type>10</type>
+                            </field>
+                            <field>
+                                <name>IDS_ECPhone</name>
+                                <value>0049</value>
+                                <visible>0</visible>
+                                <kind>0</kind>
+                                <type>0</type>
+                            </field>
+                            <field>
+                                <name>IDS_ECLegitimacyID</name>
+                                <value>1234</value>
+                                <visible>-1</visible>
+                                <kind>0</kind>
+                                <type>0</type>
+                            </field>
+                            <field>
+                                <name>IDS_ECPIN</name>
+                                <value>123</value>
+                                <visible>0</visible>
+                                <kind>0</kind>
+                                <type>1</type>
+                            </field>
+                        </customfields>
+                    </hitem>
+                </hitems>
+            </item>
+        </group>
+    </passwords>
+    <recyclebin>
+    </recyclebin>
+    <infotemplates>
+    </infotemplates>
+    <favorites>
+        QUY3NEZGODYtRkUzOS00NTg0LThFOTYtRkU5NTBDMjg5REY4DQo=
+    </favorites>
+    <sitestoignore>
+
+    </sitestoignore>
+    <categories>
+        QWxsZ2VtZWluDQpIb21lIEJhbmtpbmcNCkludGVybmV0DQpQcml2YXQNCldpbmRvd3MNCg==
+    </categories>
+</passwordfile>`;
diff --git a/libs/importer/src/importers/spec-data/password-depot-xml/certificate.xml.ts b/libs/importer/src/importers/spec-data/password-depot-xml/certificate.xml.ts
new file mode 100644
index 00000000000..eb8c463d57f
--- /dev/null
+++ b/libs/importer/src/importers/spec-data/password-depot-xml/certificate.xml.ts
@@ -0,0 +1,76 @@
+export const CertificateTestData = `<?xml version="1.0" encoding="utf-8"?>
+<passwordfile xmlns="https://www.password-depot.de/schemas/passwordfile/17.0/passwordfile.xsd">
+    <header>
+        <application>Password Depot</application>
+        <version>17.0.0</version>
+        <comments></comments>
+        <hint></hint>
+        <fingerprint>CCDA8015-7F21-4344-BDF0-9EA6AF8AE31D</fingerprint>
+        <datetime fmt="dd.mm.yyyy hh:mm:ss">12.05.2025 15:16:11</datetime>
+        <encrypted>False</encrypted>
+        <backupinterval>0</backupinterval>
+        <lastbackup fmt="dd.mm.yyyy hh:mm:ss">30.12.1899 00:00:00</lastbackup>
+        <hash></hash>
+    </header>
+    <passwords>
+        <group name="tempDB" fingerprint="CCDA8015-7F21-4344-BDF0-9EA6AF8AE31D">            
+            <item>
+                <description>certificate type</description>
+                <type>11</type>
+                <password>somePassword</password>
+                <username></username>
+                <url></url>
+                <comment>someNote</comment>
+                <lastmodified fmt="dd.mm.yyyy hh:mm:ss">12.05.2025 15:15:57</lastmodified>
+                <expirydate fmt="dd.mm.yyyy">00.00.0000</expirydate>
+                <importance>1</importance>
+                <fingerprint>21288702-B042-46D9-9DDF-B44A5CD04A72</fingerprint>
+                <template></template>
+                <imageindex>130</imageindex>
+                <imagecustom>0</imagecustom>
+                <wndtitle></wndtitle>
+                <paramstr></paramstr>
+                <category>Allgemein</category>
+                <custombrowser></custombrowser>
+                <autocompletemethod>0</autocompletemethod>
+                <loginid></loginid>
+                <passid></passid>
+                <created fmt="dd.mm.yyyy hh:mm:ss">12.05.2025 15:15:26</created>
+                <lastaccessed fmt="dd.mm.yyyy hh:mm:ss">12.05.2025 15:15:26</lastaccessed>
+                <donotaddon>0</donotaddon>
+                <markassafe>0</markassafe>
+                <safemode>0</safemode>
+                <rndtype>1</rndtype>
+                <rndcustom></rndcustom>
+                <usagecount>0</usagecount>
+                <keephistory>2</keephistory>
+                <tags>someTag</tags>
+                <author>DJSMI</author>
+                <ownerid></ownerid>
+                <warnmsg></warnmsg>
+                <warnlvl>0</warnlvl>
+                <warnverify></warnverify>
+                <serverrqrd>0</serverrqrd>
+                <secret></secret>
+                <istemplate>0</istemplate>
+                <infotemplate></infotemplate>
+                <usetabs>161</usetabs>
+                <islink>0</islink>
+                <linkeditem></linkeditem>
+            </item>
+        </group>
+    </passwords>
+    <recyclebin>
+    </recyclebin>
+    <infotemplates>
+    </infotemplates>
+    <favorites>
+        QUY3NEZGODYtRkUzOS00NTg0LThFOTYtRkU5NTBDMjg5REY4DQo=
+    </favorites>
+    <sitestoignore>
+
+    </sitestoignore>
+    <categories>
+        QWxsZ2VtZWluDQpIb21lIEJhbmtpbmcNCkludGVybmV0DQpQcml2YXQNCldpbmRvd3MNCg==
+    </categories>
+</passwordfile>`;
diff --git a/libs/importer/src/importers/spec-data/password-depot-xml/credit-card.xml.ts b/libs/importer/src/importers/spec-data/password-depot-xml/credit-card.xml.ts
new file mode 100644
index 00000000000..f0af49bbfae
--- /dev/null
+++ b/libs/importer/src/importers/spec-data/password-depot-xml/credit-card.xml.ts
@@ -0,0 +1,148 @@
+export const CreditCardTestData = `<?xml version="1.0" encoding="utf-8"?>
+<passwordfile xmlns="https://www.password-depot.de/schemas/passwordfile/17.0/passwordfile.xsd">
+    <header>
+        <application>Password Depot</application>
+        <version>17.0.0</version>
+        <comments></comments>
+        <hint></hint>
+        <fingerprint>CCDA8015-7F21-4344-BDF0-9EA6AF8AE31D</fingerprint>
+        <datetime fmt="dd.mm.yyyy hh:mm:ss">12.05.2025 15:16:11</datetime>
+        <encrypted>False</encrypted>
+        <backupinterval>0</backupinterval>
+        <lastbackup fmt="dd.mm.yyyy hh:mm:ss">30.12.1899 00:00:00</lastbackup>
+        <hash></hash>
+    </header>
+    <passwords>
+        <group name="tempDB" fingerprint="CCDA8015-7F21-4344-BDF0-9EA6AF8AE31D">
+            <item>
+                <description>some CreditCard</description>
+                <type>1</type>
+                <password>4222422242224222</password>
+                <username>some CC holder</username>
+                <url></url>
+                <comment>someComment</comment>
+                <lastmodified fmt="dd.mm.yyyy hh:mm:ss">08.05.2025 12:09:47</lastmodified>
+                <expirydate fmt="dd.mm.yyyy">08.05.2026</expirydate>
+                <importance>1</importance>
+                <fingerprint>DD9B52F8-B2CE-42C2-A891-5E20DA23EA20</fingerprint>
+                <template></template>
+                <imageindex>126</imageindex>
+                <imagecustom>0</imagecustom>
+                <wndtitle></wndtitle>
+                <paramstr></paramstr>
+                <category></category>
+                <custombrowser></custombrowser>
+                <autocompletemethod>0</autocompletemethod>
+                <loginid></loginid>
+                <passid></passid>
+                <created fmt="dd.mm.yyyy hh:mm:ss">08.05.2025 12:08:48</created>
+                <lastaccessed fmt="dd.mm.yyyy hh:mm:ss">08.05.2025 12:08:48</lastaccessed>
+                <donotaddon>0</donotaddon>
+                <markassafe>0</markassafe>
+                <safemode>0</safemode>
+                <rndtype>1</rndtype>
+                <rndcustom></rndcustom>
+                <usagecount>0</usagecount>
+                <keephistory>2</keephistory>
+                <tags></tags>
+                <author>DJSMI</author>
+                <ownerid></ownerid>
+                <warnmsg></warnmsg>
+                <warnlvl>0</warnlvl>
+                <warnverify></warnverify>
+                <serverrqrd>0</serverrqrd>
+                <secret></secret>
+                <istemplate>0</istemplate>
+                <infotemplate></infotemplate>
+                <usetabs>161</usetabs>
+                <islink>0</islink>
+                <linkeditem></linkeditem>
+                <customfields>
+                    <field>
+                        <name>IDS_CardType</name>
+                        <value>0</value>
+                        <visible>0</visible>
+                        <kind>0</kind>
+                        <type>4</type>
+                    </field>
+                    <field>
+                        <name>IDS_CardHolder</name>
+                        <value>some CC holder</value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>0</type>
+                    </field>
+                    <field>
+                        <name>IDS_CardNumber</name>
+                        <value>4222422242224222</value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>10</type>
+                    </field>
+                    <field>
+                        <name>IDS_CardExpires</name>
+                        <value>05/2026</value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>3</type>
+                    </field>
+                    <field>
+                        <name>IDS_CardCode</name>
+                        <value>123</value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>0</type>
+                    </field>
+                    <field>
+                        <name>IDS_CardPhone</name>
+                        <value></value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>0</type>
+                    </field>
+                    <field>
+                        <name>IDS_CardURL</name>
+                        <value></value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>8</type>
+                    </field>
+                    <field>
+                        <name>IDS_CardAdditionalCode</name>
+                        <value></value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>0</type>
+                    </field>
+                    <field>
+                        <name>IDS_CardAdditionalInfo</name>
+                        <value></value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>0</type>
+                    </field>
+                    <field>
+                        <name>IDS_CardPIN</name>
+                        <value>123</value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>1</type>
+                    </field>
+                </customfields>
+            </item>
+        </group>
+    </passwords>
+    <recyclebin>
+    </recyclebin>
+    <infotemplates>
+    </infotemplates>
+    <favorites>
+        QUY3NEZGODYtRkUzOS00NTg0LThFOTYtRkU5NTBDMjg5REY4DQo=
+    </favorites>
+    <sitestoignore>
+
+    </sitestoignore>
+    <categories>
+        QWxsZ2VtZWluDQpIb21lIEJhbmtpbmcNCkludGVybmV0DQpQcml2YXQNCldpbmRvd3MNCg==
+    </categories>
+</passwordfile>`;
diff --git a/libs/importer/src/importers/spec-data/password-depot-xml/document.xml.ts b/libs/importer/src/importers/spec-data/password-depot-xml/document.xml.ts
new file mode 100644
index 00000000000..4f607c9b048
--- /dev/null
+++ b/libs/importer/src/importers/spec-data/password-depot-xml/document.xml.ts
@@ -0,0 +1,99 @@
+export const DocumentTestData = `<?xml version="1.0" encoding="utf-8"?>
+<passwordfile xmlns="https://www.password-depot.de/schemas/passwordfile/17.0/passwordfile.xsd">
+    <header>
+        <application>Password Depot</application>
+        <version>17.0.0</version>
+        <comments></comments>
+        <hint></hint>
+        <fingerprint>CCDA8015-7F21-4344-BDF0-9EA6AF8AE31D</fingerprint>
+        <datetime fmt="dd.mm.yyyy hh:mm:ss">12.05.2025 15:16:11</datetime>
+        <encrypted>False</encrypted>
+        <backupinterval>0</backupinterval>
+        <lastbackup fmt="dd.mm.yyyy hh:mm:ss">30.12.1899 00:00:00</lastbackup>
+        <hash></hash>
+    </header>
+    <passwords>
+        <group name="tempDB" fingerprint="CCDA8015-7F21-4344-BDF0-9EA6AF8AE31D">
+            <item>
+                <description>document type</description>
+                <type>7</type>
+                <password></password>
+                <username></username>
+                <url></url>
+                <comment>document comment</comment>
+                <lastmodified fmt="dd.mm.yyyy hh:mm:ss">03.06.2025 17:45:30</lastmodified>
+                <expirydate fmt="dd.mm.yyyy">00.00.0000</expirydate>
+                <importance>1</importance>
+                <fingerprint>1B8E7F2C-9229-43C6-AB89-42101809C822</fingerprint>
+                <template></template>
+                <imageindex>133</imageindex>
+                <imagecustom>0</imagecustom>
+                <wndtitle></wndtitle>
+                <paramstr></paramstr>
+                <category>Allgemein</category>
+                <custombrowser></custombrowser>
+                <autocompletemethod>0</autocompletemethod>
+                <loginid></loginid>
+                <passid></passid>
+                <created fmt="dd.mm.yyyy hh:mm:ss">05.06.2025 21:49:49</created>
+                <lastaccessed fmt="dd.mm.yyyy hh:mm:ss">30.12.1899 00:00:00</lastaccessed>
+                <donotaddon>0</donotaddon>
+                <markassafe>0</markassafe>
+                <safemode>0</safemode>
+                <rndtype>1</rndtype>
+                <rndcustom></rndcustom>
+                <usagecount>0</usagecount>
+                <keephistory>2</keephistory>
+                <tags></tags>
+                <author>DJSMI</author>
+                <ownerid></ownerid>
+                <warnmsg></warnmsg>
+                <warnlvl>0</warnlvl>
+                <warnverify></warnverify>
+                <serverrqrd>0</serverrqrd>
+                <secret></secret>
+                <istemplate>0</istemplate>
+                <infotemplate></infotemplate>
+                <usetabs>161</usetabs>
+                <islink>0</islink>
+                <linkeditem></linkeditem>
+                <customfields>
+                    <field>
+                        <name>IDS_DocumentSize</name>
+                        <value>27071</value>
+                        <visible>0</visible>
+                        <kind>0</kind>
+                        <type>4</type>
+                    </field>
+                    <field>
+                        <name>IDS_DocumentFolder</name>
+                        <value>C:\\Users\\DJSMI\\Downloads\\</value>
+                        <visible>0</visible>
+                        <kind>0</kind>
+                        <type>0</type>
+                    </field>
+                    <field>
+                        <name>IDS_DocumentFile</name>
+                        <value>C:\\Users\\DJSMI\\Downloads\\some.pdf</value>
+                        <visible>0</visible>
+                        <kind>0</kind>
+                        <type>0</type>
+                    </field>
+                </customfields>
+            </item>
+        </group>
+    </passwords>
+    <recyclebin>
+    </recyclebin>
+    <infotemplates>
+    </infotemplates>
+    <favorites>
+        QUY3NEZGODYtRkUzOS00NTg0LThFOTYtRkU5NTBDMjg5REY4DQo=
+    </favorites>
+    <sitestoignore>
+
+    </sitestoignore>
+    <categories>
+        QWxsZ2VtZWluDQpIb21lIEJhbmtpbmcNCkludGVybmV0DQpQcml2YXQNCldpbmRvd3MNCg==
+    </categories>
+</passwordfile>`;
diff --git a/libs/importer/src/importers/spec-data/password-depot-xml/encrypted-file.xml.ts b/libs/importer/src/importers/spec-data/password-depot-xml/encrypted-file.xml.ts
new file mode 100644
index 00000000000..2d2e929440a
--- /dev/null
+++ b/libs/importer/src/importers/spec-data/password-depot-xml/encrypted-file.xml.ts
@@ -0,0 +1,76 @@
+export const EncryptedFileTestData = `<?xml version="1.0" encoding="utf-8"?>
+<passwordfile xmlns="https://www.password-depot.de/schemas/passwordfile/17.0/passwordfile.xsd">
+    <header>
+        <application>Password Depot</application>
+        <version>17.0.0</version>
+        <comments></comments>
+        <hint></hint>
+        <fingerprint>CCDA8015-7F21-4344-BDF0-9EA6AF8AE31D</fingerprint>
+        <datetime fmt="dd.mm.yyyy hh:mm:ss">12.05.2025 15:16:11</datetime>
+        <encrypted>False</encrypted>
+        <backupinterval>0</backupinterval>
+        <lastbackup fmt="dd.mm.yyyy hh:mm:ss">30.12.1899 00:00:00</lastbackup>
+        <hash></hash>
+    </header>
+    <passwords>
+        <group name="tempDB" fingerprint="CCDA8015-7F21-4344-BDF0-9EA6AF8AE31D">            
+            <item>
+                <description>encrypted file type</description>
+                <type>6</type>
+                <password>somePassword</password>
+                <username></username>
+                <url></url>
+                <comment>some comment</comment>
+                <lastmodified fmt="dd.mm.yyyy hh:mm:ss">12.05.2025 15:15:17</lastmodified>
+                <expirydate fmt="dd.mm.yyyy">00.00.0000</expirydate>
+                <importance>1</importance>
+                <fingerprint>E4CA245D-A326-4359-9488-CC207B33C6C0</fingerprint>
+                <template></template>
+                <imageindex>132</imageindex>
+                <imagecustom>0</imagecustom>
+                <wndtitle></wndtitle>
+                <paramstr></paramstr>
+                <category>Allgemein</category>
+                <custombrowser></custombrowser>
+                <autocompletemethod>0</autocompletemethod>
+                <loginid></loginid>
+                <passid></passid>
+                <created fmt="dd.mm.yyyy hh:mm:ss">12.05.2025 15:14:58</created>
+                <lastaccessed fmt="dd.mm.yyyy hh:mm:ss">12.05.2025 15:14:58</lastaccessed>
+                <donotaddon>0</donotaddon>
+                <markassafe>0</markassafe>
+                <safemode>0</safemode>
+                <rndtype>1</rndtype>
+                <rndcustom></rndcustom>
+                <usagecount>0</usagecount>
+                <keephistory>2</keephistory>
+                <tags></tags>
+                <author>DJSMI</author>
+                <ownerid></ownerid>
+                <warnmsg></warnmsg>
+                <warnlvl>0</warnlvl>
+                <warnverify></warnverify>
+                <serverrqrd>0</serverrqrd>
+                <secret></secret>
+                <istemplate>0</istemplate>
+                <infotemplate></infotemplate>
+                <usetabs>161</usetabs>
+                <islink>0</islink>
+                <linkeditem></linkeditem>
+            </item>
+        </group>
+    </passwords>
+    <recyclebin>
+    </recyclebin>
+    <infotemplates>
+    </infotemplates>
+    <favorites>
+        QUY3NEZGODYtRkUzOS00NTg0LThFOTYtRkU5NTBDMjg5REY4DQo=
+    </favorites>
+    <sitestoignore>
+
+    </sitestoignore>
+    <categories>
+        QWxsZ2VtZWluDQpIb21lIEJhbmtpbmcNCkludGVybmV0DQpQcml2YXQNCldpbmRvd3MNCg==
+    </categories>
+</passwordfile>`;
diff --git a/libs/importer/src/importers/spec-data/password-depot-xml/identity.xml.ts b/libs/importer/src/importers/spec-data/password-depot-xml/identity.xml.ts
new file mode 100644
index 00000000000..dfa275aa778
--- /dev/null
+++ b/libs/importer/src/importers/spec-data/password-depot-xml/identity.xml.ts
@@ -0,0 +1,197 @@
+export const IdentityTestData = `<?xml version="1.0" encoding="utf-8"?>
+<passwordfile xmlns="https://www.password-depot.de/schemas/passwordfile/17.0/passwordfile.xsd">
+    <header>
+        <application>Password Depot</application>
+        <version>17.0.0</version>
+        <comments></comments>
+        <hint></hint>
+        <fingerprint>CCDA8015-7F21-4344-BDF0-9EA6AF8AE31D</fingerprint>
+        <datetime fmt="dd.mm.yyyy hh:mm:ss">12.05.2025 15:16:11</datetime>
+        <encrypted>False</encrypted>
+        <backupinterval>0</backupinterval>
+        <lastbackup fmt="dd.mm.yyyy hh:mm:ss">30.12.1899 00:00:00</lastbackup>
+        <hash></hash>
+    </header>
+    <passwords>
+        <group name="tempDB" fingerprint="CCDA8015-7F21-4344-BDF0-9EA6AF8AE31D">
+            <item>
+                <description>identity type</description>
+                <type>3</type>
+                <password></password>
+                <username>account-name/id</username>
+                <url>website</url>
+                <comment>someNote</comment>
+                <lastmodified fmt="dd.mm.yyyy hh:mm:ss">12.05.2025 15:14:33</lastmodified>
+                <expirydate fmt="dd.mm.yyyy">00.00.0000</expirydate>
+                <importance>1</importance>
+                <fingerprint>0E6085E9-7560-4826-814E-EFE1724E1377</fingerprint>
+                <template></template>
+                <imageindex>129</imageindex>
+                <imagecustom>0</imagecustom>
+                <wndtitle></wndtitle>
+                <paramstr></paramstr>
+                <category>Allgemein</category>
+                <custombrowser></custombrowser>
+                <autocompletemethod>0</autocompletemethod>
+                <loginid></loginid>
+                <passid></passid>
+                <created fmt="dd.mm.yyyy hh:mm:ss">12.05.2025 15:12:52</created>
+                <lastaccessed fmt="dd.mm.yyyy hh:mm:ss">12.05.2025 15:12:52</lastaccessed>
+                <donotaddon>0</donotaddon>
+                <markassafe>0</markassafe>
+                <safemode>0</safemode>
+                <rndtype>1</rndtype>
+                <rndcustom></rndcustom>
+                <usagecount>0</usagecount>
+                <keephistory>2</keephistory>
+                <tags></tags>
+                <author>DJSMI</author>
+                <ownerid></ownerid>
+                <warnmsg></warnmsg>
+                <warnlvl>0</warnlvl>
+                <warnverify></warnverify>
+                <serverrqrd>0</serverrqrd>
+                <secret></secret>
+                <istemplate>0</istemplate>
+                <infotemplate></infotemplate>
+                <usetabs>161</usetabs>
+                <islink>0</islink>
+                <linkeditem></linkeditem>
+                <customfields>
+                    <field>
+                        <name>IDS_IdentityName</name>
+                        <value>account-name/id</value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>0</type>
+                    </field>
+                    <field>
+                        <name>IDS_IdentityEmail</name>
+                        <value>email</value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>0</type>
+                    </field>
+                    <field>
+                        <name>IDS_IdentityFirstName</name>
+                        <value>firstName</value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>0</type>
+                    </field>
+                    <field>
+                        <name>IDS_IdentityLastName</name>
+                        <value>surName</value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>0</type>
+                    </field>
+                    <field>
+                        <name>IDS_IdentityCompany</name>
+                        <value>someCompany</value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>0</type>
+                    </field>
+                    <field>
+                        <name>IDS_IdentityAddress1</name>
+                        <value>someStreet</value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>0</type>
+                    </field>
+                    <field>
+                        <name>IDS_IdentityAddress2</name>
+                        <value>address 2</value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>0</type>
+                    </field>
+                    <field>
+                        <name>IDS_IdentityCity</name>
+                        <value>town</value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>0</type>
+                    </field>
+                    <field>
+                        <name>IDS_IdentityState</name>
+                        <value>state</value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>0</type>
+                    </field>
+                    <field>
+                        <name>IDS_IdentityZIP</name>
+                        <value>zipCode</value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>0</type>
+                    </field>
+                    <field>
+                        <name>IDS_IdentityCountry</name>
+                        <value>country</value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>0</type>
+                    </field>
+                    <field>
+                        <name>IDS_IdentityPhone</name>
+                        <value>phoneNumber</value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>0</type>
+                    </field>
+                    <field>
+                        <name>IDS_IdentityWebsite</name>
+                        <value>website</value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>8</type>
+                    </field>
+                    <field>
+                        <name>IDS_IdentityBirthDate</name>
+                        <value>45789</value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>3</type>
+                    </field>
+                    <field>
+                        <name>IDS_IdentityMobile</name>
+                        <value>mobileNumber</value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>0</type>
+                    </field>
+                    <field>
+                        <name>IDS_IdentityFax</name>
+                        <value>faxNumber</value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>0</type>
+                    </field>
+                    <field>
+                        <name>IDS_IdentityHouseNumber</name>
+                        <value>123</value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>0</type>
+                    </field>
+                </customfields>
+            </item>
+        </group>
+    </passwords>
+    <recyclebin>
+    </recyclebin>
+    <infotemplates>
+    </infotemplates>
+    <favorites>
+        QUY3NEZGODYtRkUzOS00NTg0LThFOTYtRkU5NTBDMjg5REY4DQo=
+    </favorites>
+    <sitestoignore>
+
+    </sitestoignore>
+    <categories>
+        QWxsZ2VtZWluDQpIb21lIEJhbmtpbmcNCkludGVybmV0DQpQcml2YXQNCldpbmRvd3MNCg==
+    </categories>
+</passwordfile>`;
diff --git a/libs/importer/src/importers/spec-data/password-depot-xml/index.ts b/libs/importer/src/importers/spec-data/password-depot-xml/index.ts
new file mode 100644
index 00000000000..6d5903ed471
--- /dev/null
+++ b/libs/importer/src/importers/spec-data/password-depot-xml/index.ts
@@ -0,0 +1,19 @@
+export { InvalidRootNodeData } from "./missing-root-node.xml";
+export { MissingPasswordsNodeData } from "./missing-passwords-node.xml";
+export { InvalidVersionData } from "./wrong-version.xml";
+export { EncryptedFileData } from "./noop-encrypted-file.xml";
+export { PasswordTestData } from "./password.xml";
+export { CreditCardTestData } from "./credit-card.xml";
+export { IdentityTestData } from "./identity.xml";
+export { RDPTestData } from "./rdp.xml";
+export { SoftwareLicenseTestData } from "./software-license.xml";
+export { TeamViewerTestData } from "./team-viewer.xml";
+export { PuttyTestData } from "./putty.xml";
+export { BankingTestData } from "./banking.xml";
+export { InformationTestData } from "./information.xml";
+export { CertificateTestData } from "./certificate.xml";
+export { EncryptedFileTestData } from "./encrypted-file.xml";
+export { DocumentTestData } from "./document.xml";
+export { MacOS_WrongVersion } from "./macos-wrong-version.xml";
+export { MacOS_PasswordDepotXmlFile } from "./macos-customfields.xml";
+export { MacOS_MultipleFolders } from "./macos-multiple-folders.xml";
diff --git a/libs/importer/src/importers/spec-data/password-depot-xml/information.xml.ts b/libs/importer/src/importers/spec-data/password-depot-xml/information.xml.ts
new file mode 100644
index 00000000000..1f07882ea64
--- /dev/null
+++ b/libs/importer/src/importers/spec-data/password-depot-xml/information.xml.ts
@@ -0,0 +1,85 @@
+export const InformationTestData = `<?xml version="1.0" encoding="utf-8"?>
+<passwordfile xmlns="https://www.password-depot.de/schemas/passwordfile/17.0/passwordfile.xsd">
+    <header>
+        <application>Password Depot</application>
+        <version>17.0.0</version>
+        <comments></comments>
+        <hint></hint>
+        <fingerprint>CCDA8015-7F21-4344-BDF0-9EA6AF8AE31D</fingerprint>
+        <datetime fmt="dd.mm.yyyy hh:mm:ss">12.05.2025 15:16:11</datetime>
+        <encrypted>False</encrypted>
+        <backupinterval>0</backupinterval>
+        <lastbackup fmt="dd.mm.yyyy hh:mm:ss">30.12.1899 00:00:00</lastbackup>
+        <hash></hash>
+    </header>
+    <passwords>
+        <group name="tempDB" fingerprint="CCDA8015-7F21-4344-BDF0-9EA6AF8AE31D">            
+            <item>
+                <description>information type</description>
+                <type>4</type>
+                <password></password>
+                <username></username>
+                <url></url>
+                <comment></comment>
+                <lastmodified fmt="dd.mm.yyyy hh:mm:ss">12.05.2025 15:14:54</lastmodified>
+                <expirydate fmt="dd.mm.yyyy">00.00.0000</expirydate>
+                <importance>1</importance>
+                <fingerprint>546AFAE7-6F64-4040-838B-AFE691580356</fingerprint>
+                <template></template>
+                <imageindex>131</imageindex>
+                <imagecustom>0</imagecustom>
+                <wndtitle></wndtitle>
+                <paramstr></paramstr>
+                <category>Allgemein</category>
+                <custombrowser></custombrowser>
+                <autocompletemethod>0</autocompletemethod>
+                <loginid></loginid>
+                <passid></passid>
+                <created fmt="dd.mm.yyyy hh:mm:ss">12.05.2025 15:14:39</created>
+                <lastaccessed fmt="dd.mm.yyyy hh:mm:ss">12.05.2025 15:14:39</lastaccessed>
+                <donotaddon>0</donotaddon>
+                <markassafe>0</markassafe>
+                <safemode>0</safemode>
+                <rndtype>1</rndtype>
+                <rndcustom></rndcustom>
+                <usagecount>0</usagecount>
+                <keephistory>2</keephistory>
+                <tags></tags>
+                <author>DJSMI</author>
+                <ownerid></ownerid>
+                <warnmsg></warnmsg>
+                <warnlvl>0</warnlvl>
+                <warnverify></warnverify>
+                <serverrqrd>0</serverrqrd>
+                <secret></secret>
+                <istemplate>0</istemplate>
+                <infotemplate></infotemplate>
+                <usetabs>161</usetabs>
+                <islink>0</islink>
+                <linkeditem></linkeditem>
+                <customfields>
+                    <field>
+                        <name>IDS_InformationText</name>
+                        <value>some note content</value>
+                        <visible>0</visible>
+                        <kind>0</kind>
+                        <type>2</type>
+                    </field>
+                </customfields>
+            </item>
+        </group>
+    </passwords>
+    <recyclebin>
+    </recyclebin>
+    <infotemplates>
+    </infotemplates>
+    <favorites>
+        QUY3NEZGODYtRkUzOS00NTg0LThFOTYtRkU5NTBDMjg5REY4DQo=
+    </favorites>
+    <sitestoignore>
+
+    </sitestoignore>
+    <categories>
+        QWxsZ2VtZWluDQpIb21lIEJhbmtpbmcNCkludGVybmV0DQpQcml2YXQNCldpbmRvd3MNCg==
+    </categories>
+</passwordfile>`;
diff --git a/libs/importer/src/importers/spec-data/password-depot-xml/macos-customfields.xml.ts b/libs/importer/src/importers/spec-data/password-depot-xml/macos-customfields.xml.ts
new file mode 100644
index 00000000000..d83eae6bb6d
--- /dev/null
+++ b/libs/importer/src/importers/spec-data/password-depot-xml/macos-customfields.xml.ts
@@ -0,0 +1,42 @@
+export const MacOS_PasswordDepotXmlFile = `<?xml version="1.0" encoding="utf-8"?>
+<passwordfile xmlns="https://www.password-depot.de/schemas/passwordfile/12.0/passwordfile.xsd">
+    <header>
+        <application>Password Depot</application>
+        <encrypted>0</encrypted>
+        <compressed>0</compressed>
+        <authtype>0</authtype>
+        <enctype>1</enctype>
+        <kdftype>1</kdftype>
+        <dataformat>17</dataformat>
+        <lastsynctime FMT="dd.MM.yyyy hh:mm:ss">30.12.1899 00:00:00</lastsynctime>
+        <lastmodified FMT="dd.MM.yyyy hh:mm:ss">23.06.2025 16:30:50</lastmodified>
+        <datetime FMT="dd.MM.yyyy hh:mm:ss">25.06.2025 14:30:47</datetime>
+        <fingerprint>2C1A154A-3BB0-4871-9537-3634DE303F8E</fingerprint>
+        <maxhistory>7</maxhistory>
+    </header>
+    <passwords>
+        <group name="null" fingerprint="null">            
+            <item>
+                <description>card 1</description>
+                <type>1</type>
+                <comment>comment</comment>
+                <lastmodified FMT="dd.MM.yyyy hh:mm:ss">23.06.2025 16:14:33</lastmodified>
+                <fingerprint>EBF4AC3D-86C9-49BE-826B-BAE5FF9E3575</fingerprint>
+                <created FMT="dd.MM.yyyy hh:mm:ss">23.06.2025 16:13:40</created>
+                <lastaccessed FMT="dd.MM.yyyy hh:mm:ss">25.06.2025 14:17:10</lastaccessed>
+                <customfields>
+                    <field name="IDS_CardType" value="2" />
+                    <field name="IDS_CardHolder" value="some CC holder" visible="1" />
+                    <field name="IDS_CardNumber" value="4242424242424242" visible="1" />
+                    <field name="IDS_CardExpires" value="8/2028" visible="1" />
+                    <field name="IDS_CardCode" value="125" visible="1" />
+                    <field name="IDS_CardPhone" visible="1" />
+                    <field name="IDS_CardURL" value="fede.com" visible="1" />
+                    <field name="IDS_CardAdditionalCode" visible="1" />
+                    <field name="IDS_CardAdditionalInfo" visible="1" />
+                    <field name="IDS_CardPIN" value="1122" visible="1" />
+                </customfields>                
+            </item>            
+        </group>
+    </passwords>
+</passwordfile>`;
diff --git a/libs/importer/src/importers/spec-data/password-depot-xml/macos-multiple-folders.xml.ts b/libs/importer/src/importers/spec-data/password-depot-xml/macos-multiple-folders.xml.ts
new file mode 100644
index 00000000000..174e9415fa1
--- /dev/null
+++ b/libs/importer/src/importers/spec-data/password-depot-xml/macos-multiple-folders.xml.ts
@@ -0,0 +1,215 @@
+export const MacOS_MultipleFolders = `<?xml version="1.0" encoding="utf-8"?>
+<passwordfile xmlns="https://www.password-depot.de/schemas/passwordfile/12.0/passwordfile.xsd">
+    <header>
+        <application>Password Depot</application>
+        <encrypted>0</encrypted>
+        <compressed>0</compressed>
+        <authtype>0</authtype>
+        <enctype>1</enctype>
+        <kdftype>1</kdftype>
+        <dataformat>17</dataformat>
+        <lastsynctime FMT="dd.MM.yyyy hh:mm:ss">30.12.1899 00:00:00</lastsynctime>
+        <lastmodified FMT="dd.MM.yyyy hh:mm:ss">27.06.2025 10:39:07</lastmodified>
+        <datetime FMT="dd.MM.yyyy hh:mm:ss">27.06.2025 10:39:27</datetime>
+        <fingerprint>7DCDD3FA-F512-4CD4-AEED-DE2A4C8375CF</fingerprint>
+        <maxhistory>7</maxhistory>
+    </header>
+    <passwords>
+        <group name="null" fingerprint="null">
+            <item>
+                <description>remote desktop</description>
+                <type>8</type>
+                <password>pass</password>
+                <username>username</username>
+                <url>compjter</url>
+                <comment>comment</comment>
+                <lastmodified FMT="dd.MM.yyyy hh:mm:ss">26.06.2025 16:04:57</lastmodified>
+                <fingerprint>81316050-9B9C-4D9B-9549-45B52A0BE6BB</fingerprint>
+                <template>&lt;USER&gt;&lt;TAB&gt;&lt;PASS&gt;&lt;ENTER&gt;</template>
+                <category>Private</category>
+                <created FMT="dd.MM.yyyy hh:mm:ss">26.06.2025 16:04:32</created>
+                <lastaccessed FMT="dd.MM.yyyy hh:mm:ss">27.06.2025 10:28:02</lastaccessed>
+                <tags>tgmac</tags>                
+            </item>
+            <item>
+                <description>teamviewer</description>
+                <type>10</type>
+                <password>pass</password>
+                <url>partnerid</url>
+                <comment>comment</comment>
+                <lastmodified FMT="dd.MM.yyyy hh:mm:ss">26.06.2025 16:05:28</lastmodified>
+                <expirydate FMT="dd.MM.yyyy">26.06.2025</expirydate>
+                <fingerprint>8AAACC16-4FD4-4E52-9C1F-6979B051B510</fingerprint>
+                <category>Internet</category>
+                <created FMT="dd.MM.yyyy hh:mm:ss">26.06.2025 16:05:03</created>
+                <lastaccessed FMT="dd.MM.yyyy hh:mm:ss">27.06.2025 10:28:02</lastaccessed>
+                <tags>tag</tags>
+                <customfields>
+                    <field name="IDS_TeamViewerMode" value="0" visible="1" />
+                </customfields>
+            </item>
+            <item>
+                <description>ec card</description>
+                <type>5</type>
+                <password>pass</password>
+                <username>user</username>
+                <url>url</url>
+                <lastmodified FMT="dd.MM.yyyy hh:mm:ss">26.06.2025 16:08:35</lastmodified>
+                <fingerprint>B5C148A4-C408-427C-B69C-F88E7C529FA4</fingerprint>
+                <template>&lt;USER&gt;&lt;TAB&gt;&lt;PASS&gt;&lt;ENTER&gt;</template>
+                <created FMT="dd.MM.yyyy hh:mm:ss">26.06.2025 16:08:00</created>
+                <lastaccessed FMT="dd.MM.yyyy hh:mm:ss">27.06.2025 10:28:02</lastaccessed>
+                <customfields>
+                    <field name="IDS_ECHolder" value="holder" visible="1" />
+                    <field name="IDS_ECAccountNumber" value="account" visible="1" />
+                    <field name="IDS_ECBLZ" value="bank" visible="1" />
+                    <field name="IDS_ECBankName" value="bank name" visible="1" />
+                    <field name="IDS_ECBIC" value="bic" visible="1" />
+                    <field name="IDS_ECIBAN" value="iban" visible="1" />
+                    <field name="IDS_ECCardNumber" value="6464646464646464" visible="1" />
+                    <field name="IDS_ECPhone" value="1324124" />
+                    <field name="IDS_ECLegitimacyID" value="leg id" visible="1" />
+                    <field name="IDS_ECPIN" value="1234" />
+                </customfields>
+            </item>
+            <item>
+                <description>identity</description>
+                <type>3</type>
+                <lastmodified FMT="dd.MM.yyyy hh:mm:ss">26.06.2025 16:09:50</lastmodified>
+                <fingerprint>87574AD4-8844-4A01-9381-AFF0907198A3</fingerprint>
+                <created FMT="dd.MM.yyyy hh:mm:ss">26.06.2025 16:09:19</created>
+                <lastaccessed FMT="dd.MM.yyyy hh:mm:ss">27.06.2025 10:28:02</lastaccessed>
+                <customfields>
+                    <field name="IDS_IdentityName" value="name" visible="1" />
+                    <field name="IDS_IdentityEmail" value="email" visible="1" />
+                    <field name="IDS_IdentityFirstName" value="first" visible="1" />
+                    <field name="IDS_IdentityLastName" value="last" visible="1" />
+                    <field name="IDS_IdentityCompany" value="compant" visible="1" />
+                    <field name="IDS_IdentityAddress1" value="street" visible="1" />
+                    <field name="IDS_IdentityAddress2" value="address" visible="1" />
+                    <field name="IDS_IdentityCity" value="city" visible="1" />
+                    <field name="IDS_IdentityState" value="state" visible="1" />
+                    <field name="IDS_IdentityZIP" value="zip" visible="1" />
+                    <field name="IDS_IdentityCountry" value="country" visible="1" />
+                    <field name="IDS_IdentityPhone" value="phone" visible="1" />
+                    <field name="IDS_IdentityWebsite" value="web" visible="1" />
+                    <field name="IDS_IdentityBirthDate" visible="1" />
+                    <field name="IDS_IdentityMobile" visible="1" />
+                    <field name="IDS_IdentityFax" visible="1" />
+                    <field name="IDS_IdentityHouseNumber" visible="1" />
+                </customfields>
+            </item>
+            <item>
+                <description>credit card</description>
+                <type>1</type>
+                <comment>comment</comment>
+                <lastmodified FMT="dd.MM.yyyy hh:mm:ss">26.06.2025 19:07:38</lastmodified>
+                <fingerprint>E98E3CBA-1578-48AD-8E41-CFD3280045BB</fingerprint>
+                <created FMT="dd.MM.yyyy hh:mm:ss">26.06.2025 16:06:32</created>
+                <lastaccessed FMT="dd.MM.yyyy hh:mm:ss">27.06.2025 10:28:02</lastaccessed>
+                <customfields>
+                    <field name="IDS_CardType" value="0" />
+                    <field name="IDS_CardHolder" value="holder" visible="1" />
+                    <field name="IDS_CardNumber" value="525252525252525" visible="1" />
+                    <field name="IDS_CardExpires" value="6/2028" visible="1" />
+                    <field name="IDS_CardCode" value="333" visible="1" />
+                    <field name="IDS_CardPhone" value="1234324" visible="1" />
+                    <field name="IDS_CardURL" value="url" visible="1" />
+                    <field name="IDS_CardAdditionalCode" value="code" visible="1" />
+                    <field name="IDS_CardAdditionalInfo" value="addinfo" visible="1" />
+                    <field name="IDS_CardPIN" value="111" visible="1" />
+                </customfields>
+            </item>
+            <group name="folder macos" fingerprint="BF823CF6-B9D1-49FD-AEB9-4F59BDD8DBB5"
+                imageindex="-1" imagecustom="0" category="null" comments="null">
+                <item>
+                    <description>password</description>
+                    <password>passmac</password>
+                    <username>usernam</username>
+                    <comment>comment</comment>
+                    <lastmodified FMT="dd.MM.yyyy hh:mm:ss">26.06.2025 16:04:30</lastmodified>
+                    <fingerprint>DE8AD61B-8EC0-4E72-9BC8-971E80712B50</fingerprint>
+                    <template>&lt;USER&gt;&lt;TAB&gt;&lt;PASS&gt;&lt;ENTER&gt;</template>
+                    <category>General</category>
+                    <created FMT="dd.MM.yyyy hh:mm:ss">26.06.2025 16:04:04</created>
+                    <lastaccessed FMT="dd.MM.yyyy hh:mm:ss">27.06.2025 10:28:02</lastaccessed>
+                    <tags>tagmac</tags>
+                </item>
+                <item>
+                    <description>informationb</description>
+                    <type>4</type>
+                    <lastmodified FMT="dd.MM.yyyy hh:mm:ss">26.06.2025 16:10:01</lastmodified>
+                    <fingerprint>7E9E6941-BB3B-47F2-9E43-33F900EBBF95</fingerprint>
+                    <category>Banking</category>
+                    <created FMT="dd.MM.yyyy hh:mm:ss">26.06.2025 16:09:53</created>
+                    <lastaccessed FMT="dd.MM.yyyy hh:mm:ss">27.06.2025 10:28:02</lastaccessed>
+                    <customfields>
+                        <field name="IDS_InformationText" value="content" />
+                    </customfields>
+                </item>
+                <item>
+                    <description>certificat</description>
+                    <type>11</type>
+                    <password>passsss</password>
+                    <comment>comment</comment>
+                    <lastmodified FMT="dd.MM.yyyy hh:mm:ss">26.06.2025 16:10:28</lastmodified>
+                    <expirydate FMT="dd.MM.yyyy">26.06.2025</expirydate>
+                    <fingerprint>1F36748F-0374-445E-B020-282EAE26259F</fingerprint>
+                    <category>Internet</category>
+                    <created FMT="dd.MM.yyyy hh:mm:ss">26.06.2025 16:10:10</created>
+                    <lastaccessed FMT="dd.MM.yyyy hh:mm:ss">27.06.2025 10:28:02</lastaccessed>
+                    <tags>tag</tags>
+                </item>
+            </group>
+            <group name="folder 2" fingerprint="84E728B7-67AC-47D7-9F8C-4335905A4087"
+                imageindex="-1" imagecustom="0" category="null" comments="null">
+                <item>
+                    <description>putty</description>
+                    <type>9</type>
+                    <password>pass</password>
+                    <username>username</username>
+                    <url>host</url>
+                    <comment>comment</comment>
+                    <lastmodified FMT="dd.MM.yyyy hh:mm:ss">26.06.2025 16:06:08</lastmodified>
+                    <expirydate FMT="dd.MM.yyyy">26.06.2025</expirydate>
+                    <fingerprint>7947A949-98F0-4F26-BE12-5FFAFE7601C8</fingerprint>
+                    <template>&lt;USER&gt;&lt;TAB&gt;&lt;PASS&gt;&lt;ENTER&gt;</template>
+                    <category>Banking</category>
+                    <created FMT="dd.MM.yyyy hh:mm:ss">26.06.2025 16:05:38</created>
+                    <lastaccessed FMT="dd.MM.yyyy hh:mm:ss">27.06.2025 10:28:02</lastaccessed>
+                    <tags>tag</tags>
+                    <customfields>
+                        <field name="IDS_PuTTyProtocol" value="0" visible="1" />
+                        <field name="IDS_PuTTyKeyFile" value="keyfile" visible="1" />
+                        <field name="IDS_PuTTyKeyPassword" value="keypass" visible="1" />
+                        <field name="IDS_PuTTyPort" value="port" visible="1" />
+                    </customfields>
+                </item>
+                <item>
+                    <description>soft license</description>
+                    <type>2</type>
+                    <lastmodified FMT="dd.MM.yyyy hh:mm:ss">26.06.2025 16:09:02</lastmodified>
+                    <fingerprint>2A5CF4C1-70D0-4F27-A1DE-4CFEF5FB71CF</fingerprint>
+                    <created FMT="dd.MM.yyyy hh:mm:ss">26.06.2025 16:08:43</created>
+                    <lastaccessed FMT="dd.MM.yyyy hh:mm:ss">27.06.2025 10:28:02</lastaccessed>
+                    <customfields>
+                        <field name="IDS_LicenseProduct" value="prod" />
+                        <field name="IDS_LicenseVersion" value="version" />
+                        <field name="IDS_LicenseName" value="registered" visible="1" />
+                        <field name="IDS_LicenseKey" visible="1" />
+                        <field name="IDS_LicenseAdditionalKey" visible="1" />
+                        <field name="IDS_LicenseURL" value="url" visible="1" />
+                        <field name="IDS_LicenseProtected" value="protected" />
+                        <field name="IDS_LicenseUserName" value="username" visible="1" />
+                        <field name="IDS_LicensePassword" value="pass" visible="1" />
+                        <field name="IDS_LicensePurchaseDate" value="2147483647" />
+                        <field name="IDS_LicenseOrderNumber"
+                            value="ccbdflbunjrcnilnerjnekirlfvefkbfinhkegljd" visible="1" />
+                        <field name="IDS_LicenseEmail" value="ccc" visible="1" />
+                        <field name="IDS_LicenseExpires" />
+                    </customfields>                    
+                </item>
+            </group>
+        </group>
+    </passwords>
+</passwordfile>`;
diff --git a/libs/importer/src/importers/spec-data/password-depot-xml/macos-wrong-version.xml.ts b/libs/importer/src/importers/spec-data/password-depot-xml/macos-wrong-version.xml.ts
new file mode 100644
index 00000000000..771bf813e48
--- /dev/null
+++ b/libs/importer/src/importers/spec-data/password-depot-xml/macos-wrong-version.xml.ts
@@ -0,0 +1,21 @@
+export const MacOS_WrongVersion = `<?xml version="1.0" encoding="utf-8"?>
+<passwordfile xmlns="https://www.password-depot.de/schemas/passwordfile/12.0/passwordfile.xsd">
+    <header>
+        <application>Password Depot</application>
+        <encrypted>0</encrypted>
+        <compressed>0</compressed>
+        <authtype>0</authtype>
+        <enctype>1</enctype>
+        <kdftype>1</kdftype>
+        <dataformat>18</dataformat>
+        <lastsynctime FMT="dd.MM.yyyy hh:mm:ss">30.12.1899 00:00:00</lastsynctime>
+        <lastmodified FMT="dd.MM.yyyy hh:mm:ss">23.06.2025 16:30:50</lastmodified>
+        <datetime FMT="dd.MM.yyyy hh:mm:ss">25.06.2025 14:30:47</datetime>
+        <fingerprint>2C1A154A-3BB0-4871-9537-3634DE303F8E</fingerprint>
+        <maxhistory>7</maxhistory>
+    </header>
+    <passwords>
+        <group name="null" fingerprint="null">
+        </group>
+    </passwords>
+</passwordfile>`;
diff --git a/libs/importer/src/importers/spec-data/password-depot-xml/missing-passwords-node.xml.ts b/libs/importer/src/importers/spec-data/password-depot-xml/missing-passwords-node.xml.ts
new file mode 100644
index 00000000000..d07beb8521c
--- /dev/null
+++ b/libs/importer/src/importers/spec-data/password-depot-xml/missing-passwords-node.xml.ts
@@ -0,0 +1,25 @@
+export const MissingPasswordsNodeData = `<?xml version="1.0" encoding="utf-8"?>
+<passwordfile xmlns="https://www.password-depot.de/schemas/passwordfile/18.0/passwordfile.xsd">
+    <header>
+        <application>Password Depot</application>
+        <version>17.0.0</version>
+        <comments></comments>
+        <hint></hint>
+        <fingerprint>CCDA8015-7F21-4344-BDF0-9EA6AF8AE31D</fingerprint>
+        <datetime fmt="dd.mm.yyyy hh:mm:ss">12.05.2025 15:16:11</datetime>
+        <encrypted>False</encrypted>
+        <backupinterval>0</backupinterval>
+        <lastbackup fmt="dd.mm.yyyy hh:mm:ss">30.12.1899 00:00:00</lastbackup>
+        <hash></hash>
+    </header>    
+    <recyclebin>
+    </recyclebin>
+    <infotemplates>
+    </infotemplates>
+    <favorites>        
+    </favorites>
+    <sitestoignore>
+    </sitestoignore>
+    <categories>        
+    </categories>
+</passwordfile>`;
diff --git a/libs/importer/src/importers/spec-data/password-depot-xml/missing-root-node.xml.ts b/libs/importer/src/importers/spec-data/password-depot-xml/missing-root-node.xml.ts
new file mode 100644
index 00000000000..aca2a2f6fa1
--- /dev/null
+++ b/libs/importer/src/importers/spec-data/password-depot-xml/missing-root-node.xml.ts
@@ -0,0 +1,28 @@
+export const InvalidRootNodeData = `<?xml version="1.0" encoding="utf-8"?>
+<invalidRootNode xmlns="https://www.password-depot.de/schemas/passwordfile/18.0/passwordfile.xsd">
+    <header>
+        <application>Password Depot</application>
+        <version>17.0.0</version>
+        <comments></comments>
+        <hint></hint>
+        <fingerprint>CCDA8015-7F21-4344-BDF0-9EA6AF8AE31D</fingerprint>
+        <datetime fmt="dd.mm.yyyy hh:mm:ss">12.05.2025 15:16:11</datetime>
+        <encrypted>False</encrypted>
+        <backupinterval>0</backupinterval>
+        <lastbackup fmt="dd.mm.yyyy hh:mm:ss">30.12.1899 00:00:00</lastbackup>
+        <hash></hash>
+    </header>
+    <passwords>        
+    </passwords>
+    <recyclebin>
+    </recyclebin>
+    <infotemplates>
+    </infotemplates>
+    <favorites>        
+    </favorites>
+    <sitestoignore>
+
+    </sitestoignore>
+    <categories>        
+    </categories>
+</invalidRootNode>`;
diff --git a/libs/importer/src/importers/spec-data/password-depot-xml/noop-encrypted-file.xml.ts b/libs/importer/src/importers/spec-data/password-depot-xml/noop-encrypted-file.xml.ts
new file mode 100644
index 00000000000..e8050726b25
--- /dev/null
+++ b/libs/importer/src/importers/spec-data/password-depot-xml/noop-encrypted-file.xml.ts
@@ -0,0 +1,27 @@
+export const EncryptedFileData = `<?xml version="1.0" encoding="utf-8"?>
+<passwordfile xmlns="https://www.password-depot.de/schemas/passwordfile/17.0/passwordfile.xsd">
+    <header>
+        <application>Password Depot</application>
+        <version>17.0.0</version>
+        <comments></comments>
+        <hint></hint>
+        <fingerprint>CCDA8015-7F21-4344-BDF0-9EA6AF8AE31D</fingerprint>
+        <datetime fmt="dd.mm.yyyy hh:mm:ss">12.05.2025 15:16:11</datetime>
+        <encrypted>True</encrypted>
+        <backupinterval>0</backupinterval>
+        <lastbackup fmt="dd.mm.yyyy hh:mm:ss">30.12.1899 00:00:00</lastbackup>
+        <hash></hash>
+    </header>
+    <passwords>        
+    </passwords>
+    <recyclebin>
+    </recyclebin>
+    <infotemplates>
+    </infotemplates>
+    <favorites>        
+    </favorites>
+    <sitestoignore>
+    </sitestoignore>
+    <categories>
+    </categories>
+</passwordfile>`;
diff --git a/libs/importer/src/importers/spec-data/password-depot-xml/password.xml.ts b/libs/importer/src/importers/spec-data/password-depot-xml/password.xml.ts
new file mode 100644
index 00000000000..7d15fce3aa8
--- /dev/null
+++ b/libs/importer/src/importers/spec-data/password-depot-xml/password.xml.ts
@@ -0,0 +1,222 @@
+export const PasswordTestData = `<?xml version="1.0" encoding="utf-8"?>
+<passwordfile xmlns="https://www.password-depot.de/schemas/passwordfile/17.0/passwordfile.xsd">
+    <header>
+        <application>Password Depot</application>
+        <version>17.0.0</version>
+        <comments></comments>
+        <hint></hint>
+        <fingerprint>CCDA8015-7F21-4344-BDF0-9EA6AF8AE31D</fingerprint>
+        <datetime fmt="dd.mm.yyyy hh:mm:ss">12.05.2025 15:16:11</datetime>
+        <encrypted>False</encrypted>
+        <backupinterval>0</backupinterval>
+        <lastbackup fmt="dd.mm.yyyy hh:mm:ss">30.12.1899 00:00:00</lastbackup>
+        <hash></hash>
+    </header>
+    <passwords>
+        <group name="tempDB" fingerprint="CCDA8015-7F21-4344-BDF0-9EA6AF8AE31D">
+            <item>
+                <description>password type</description>
+                <type>0</type>
+                <password>p6J&lt;]fmjv!:H&amp;iJ7/Mwt@3i8</password>
+                <username>someUser</username>
+                <url>example.com</url>
+                <comment>someComment</comment>
+                <lastmodified fmt="dd.mm.yyyy hh:mm:ss">07.05.2025 13:37:56</lastmodified>
+                <expirydate fmt="dd.mm.yyyy">07.05.2025</expirydate>
+                <importance>0</importance>
+                <fingerprint>27ACAC2D-8DDA-4088-8D3A-E6C5F40ED46E</fingerprint>
+                <template>&lt;USER&gt;&lt;TAB&gt;&lt;PASS&gt;&lt;ENTER&gt;</template>
+                <imageindex>0</imageindex>
+                <imagecustom>0</imagecustom>
+                <wndtitle></wndtitle>
+                <paramstr></paramstr>
+                <category>Allgemein</category>
+                <custombrowser></custombrowser>
+                <autocompletemethod>0</autocompletemethod>
+                <loginid></loginid>
+                <passid></passid>
+                <created fmt="dd.mm.yyyy hh:mm:ss">07.05.2025 13:36:48</created>
+                <lastaccessed fmt="dd.mm.yyyy hh:mm:ss">07.05.2025 13:36:48</lastaccessed>
+                <donotaddon>0</donotaddon>
+                <markassafe>0</markassafe>
+                <safemode>0</safemode>
+                <rndtype>1</rndtype>
+                <rndcustom></rndcustom>
+                <usagecount>0</usagecount>
+                <keephistory>2</keephistory>
+                <tags>someTag</tags>
+                <author>DJSMI</author>
+                <ownerid></ownerid>
+                <warnmsg></warnmsg>
+                <warnlvl>0</warnlvl>
+                <warnverify></warnverify>
+                <serverrqrd>0</serverrqrd>
+                <secret></secret>
+                <istemplate>0</istemplate>
+                <infotemplate></infotemplate>
+                <usetabs>161</usetabs>
+                <islink>0</islink>
+                <linkeditem></linkeditem>
+                <customfields>
+                    <field>
+                        <name>passwort</name>
+                        <value>password</value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>1</type>
+                    </field>
+                    <field>
+                        <name>memo</name>
+                        <value>memo</value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>2</type>
+                    </field>
+                    <field>
+                        <name>datum</name>
+                        <value>45790</value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>3</type>
+                    </field>
+                    <field>
+                        <name>nummer</name>
+                        <value>1</value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>4</type>
+                    </field>
+                    <field>
+                        <name>boolean</name>
+                        <value>1</value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>5</type>
+                    </field>
+                    <field>
+                        <name>decimal</name>
+                        <value>1,01</value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>6</type>
+                    </field>
+                    <field>
+                        <name>email</name>
+                        <value>who@cares.com</value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>7</type>
+                    </field>
+                    <field>
+                        <name>url</name>
+                        <value>example.com</value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>8</type>
+                    </field>
+                </customfields>
+            </item>
+            <item>
+                <description>password type (2)</description>
+                <type>0</type>
+                <password>p6J&lt;]fmjv!:H&amp;iJ7/Mwt@3i8</password>
+                <username>someUser</username>
+                <url></url>
+                <comment>someComment</comment>
+                <lastmodified fmt="dd.mm.yyyy hh:mm:ss">07.05.2025 13:37:56</lastmodified>
+                <expirydate fmt="dd.mm.yyyy">07.05.2025</expirydate>
+                <importance>0</importance>
+                <fingerprint>AF74FF86-FE39-4584-8E96-FE950C289DF8</fingerprint>
+                <template>&lt;USER&gt;&lt;TAB&gt;&lt;PASS&gt;&lt;ENTER&gt;</template>
+                <imageindex>0</imageindex>
+                <imagecustom>0</imagecustom>
+                <wndtitle></wndtitle>
+                <paramstr></paramstr>
+                <category>Allgemein</category>
+                <custombrowser></custombrowser>
+                <autocompletemethod>0</autocompletemethod>
+                <loginid></loginid>
+                <passid></passid>
+                <created fmt="dd.mm.yyyy hh:mm:ss">07.05.2025 13:36:48</created>
+                <lastaccessed fmt="dd.mm.yyyy hh:mm:ss">07.05.2025 13:36:48</lastaccessed>
+                <donotaddon>0</donotaddon>
+                <markassafe>0</markassafe>
+                <safemode>0</safemode>
+                <rndtype>1</rndtype>
+                <rndcustom></rndcustom>
+                <usagecount>0</usagecount>
+                <keephistory>2</keephistory>
+                <tags>someTag</tags>
+                <author>DJSMI</author>
+                <ownerid></ownerid>
+                <warnmsg></warnmsg>
+                <warnlvl>0</warnlvl>
+                <warnverify></warnverify>
+                <serverrqrd>0</serverrqrd>
+                <secret></secret>
+                <istemplate>0</istemplate>
+                <infotemplate></infotemplate>
+                <usetabs>161</usetabs>
+                <islink>0</islink>
+                <linkeditem></linkeditem>
+            </item>
+             <item>
+                <description>password type (3)</description>
+                <type>0</type>
+                <password>p6J&lt;]fmjv!:H&amp;iJ7/Mwt@3i8</password>
+                <username>someUser</username>
+                <url></url>
+                <comment>someComment</comment>
+                <lastmodified fmt="dd.mm.yyyy hh:mm:ss">07.05.2025 13:37:56</lastmodified>
+                <expirydate fmt="dd.mm.yyyy">07.05.2025</expirydate>
+                <importance>0</importance>
+                <fingerprint>BF74FF86-FA39-4584-8E96-FA950C249DF8</fingerprint>
+                <template>&lt;USER&gt;&lt;TAB&gt;&lt;PASS&gt;&lt;ENTER&gt;</template>
+                <imageindex>0</imageindex>
+                <imagecustom>0</imagecustom>
+                <wndtitle></wndtitle>
+                <paramstr></paramstr>
+                <category>Allgemein</category>
+                <custombrowser></custombrowser>
+                <autocompletemethod>0</autocompletemethod>
+                <loginid></loginid>
+                <passid></passid>
+                <created fmt="dd.mm.yyyy hh:mm:ss">07.05.2025 13:36:48</created>
+                <lastaccessed fmt="dd.mm.yyyy hh:mm:ss">07.05.2025 13:36:48</lastaccessed>
+                <donotaddon>0</donotaddon>
+                <markassafe>0</markassafe>
+                <safemode>0</safemode>
+                <rndtype>1</rndtype>
+                <rndcustom></rndcustom>
+                <usagecount>0</usagecount>
+                <keephistory>2</keephistory>
+                <tags>someTag</tags>
+                <author>DJSMI</author>
+                <ownerid></ownerid>
+                <warnmsg></warnmsg>
+                <warnlvl>0</warnlvl>
+                <warnverify></warnverify>
+                <serverrqrd>0</serverrqrd>
+                <secret></secret>
+                <istemplate>0</istemplate>
+                <infotemplate></infotemplate>
+                <usetabs>161</usetabs>
+                <islink>0</islink>
+                <linkeditem></linkeditem>
+            </item>
+        </group>
+    </passwords>
+    <recyclebin>
+    </recyclebin>
+    <infotemplates>
+    </infotemplates>
+    <favorites>
+        QUY3NEZGODYtRkUzOS00NTg0LThFOTYtRkU5NTBDMjg5REY4CkJGNzRGRjg2LUZBMzktNDU4NC04RTk2LUZBOTUwQzI0OURGOA==
+    </favorites>
+    <sitestoignore>
+
+    </sitestoignore>
+    <categories>
+        QWxsZ2VtZWluDQpIb21lIEJhbmtpbmcNCkludGVybmV0DQpQcml2YXQNCldpbmRvd3MNCg==
+    </categories>
+</passwordfile>`;
diff --git a/libs/importer/src/importers/spec-data/password-depot-xml/putty.xml.ts b/libs/importer/src/importers/spec-data/password-depot-xml/putty.xml.ts
new file mode 100644
index 00000000000..d878b04cd3c
--- /dev/null
+++ b/libs/importer/src/importers/spec-data/password-depot-xml/putty.xml.ts
@@ -0,0 +1,106 @@
+export const PuttyTestData = `<?xml version="1.0" encoding="utf-8"?>
+<passwordfile xmlns="https://www.password-depot.de/schemas/passwordfile/17.0/passwordfile.xsd">
+    <header>
+        <application>Password Depot</application>
+        <version>17.0.0</version>
+        <comments></comments>
+        <hint></hint>
+        <fingerprint>CCDA8015-7F21-4344-BDF0-9EA6AF8AE31D</fingerprint>
+        <datetime fmt="dd.mm.yyyy hh:mm:ss">12.05.2025 15:16:11</datetime>
+        <encrypted>False</encrypted>
+        <backupinterval>0</backupinterval>
+        <lastbackup fmt="dd.mm.yyyy hh:mm:ss">30.12.1899 00:00:00</lastbackup>
+        <hash></hash>
+    </header>
+    <passwords>
+        <group name="tempDB" fingerprint="CCDA8015-7F21-4344-BDF0-9EA6AF8AE31D">            
+            <item>
+                <description>Putty type</description>
+                <type>9</type>
+                <password>somePassword</password>
+                <username>someUser</username>
+                <url>localhost</url>
+                <comment>someNote</comment>
+                <lastmodified fmt="dd.mm.yyyy hh:mm:ss">12.05.2025 15:09:09</lastmodified>
+                <expirydate fmt="dd.mm.yyyy">00.00.0000</expirydate>
+                <importance>1</importance>
+                <fingerprint>32207D79-B70B-4987-BC73-3F7AD75D2C63</fingerprint>
+                <template></template>
+                <imageindex>125</imageindex>
+                <imagecustom>0</imagecustom>
+                <wndtitle></wndtitle>
+                <paramstr>cli command</paramstr>
+                <category>Allgemein</category>
+                <custombrowser></custombrowser>
+                <autocompletemethod>0</autocompletemethod>
+                <loginid></loginid>
+                <passid></passid>
+                <created fmt="dd.mm.yyyy hh:mm:ss">12.05.2025 15:08:18</created>
+                <lastaccessed fmt="dd.mm.yyyy hh:mm:ss">12.05.2025 15:08:18</lastaccessed>
+                <donotaddon>0</donotaddon>
+                <markassafe>0</markassafe>
+                <safemode>0</safemode>
+                <rndtype>1</rndtype>
+                <rndcustom></rndcustom>
+                <usagecount>0</usagecount>
+                <keephistory>2</keephistory>
+                <tags>someTag</tags>
+                <author>DJSMI</author>
+                <ownerid></ownerid>
+                <warnmsg></warnmsg>
+                <warnlvl>0</warnlvl>
+                <warnverify></warnverify>
+                <serverrqrd>0</serverrqrd>
+                <secret></secret>
+                <istemplate>0</istemplate>
+                <infotemplate></infotemplate>
+                <usetabs>161</usetabs>
+                <islink>0</islink>
+                <linkeditem></linkeditem>
+                <customfields>
+                    <field>
+                        <name>IDS_PuTTyProtocol</name>
+                        <value>0</value>
+                        <visible>0</visible>
+                        <kind>0</kind>
+                        <type>0</type>
+                    </field>
+                    <field>
+                        <name>IDS_PuTTyKeyFile</name>
+                        <value>pathToKeyFile</value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>0</type>
+                    </field>
+                    <field>
+                        <name>IDS_PuTTyKeyPassword</name>
+                        <value>passwordForKeyFile</value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>1</type>
+                    </field>
+                    <field>
+                        <name>IDS_PuTTyPort</name>
+                        <value>8080</value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>4</type>
+                    </field>
+                </customfields>
+            </item>            
+        </group>
+    </passwords>
+    <recyclebin>
+    </recyclebin>
+    <infotemplates>
+    </infotemplates>
+    <favorites>
+        QUY3NEZGODYtRkUzOS00NTg0LThFOTYtRkU5NTBDMjg5REY4DQo=
+    </favorites>
+    <sitestoignore>
+
+    </sitestoignore>
+    <categories>
+        QWxsZ2VtZWluDQpIb21lIEJhbmtpbmcNCkludGVybmV0DQpQcml2YXQNCldpbmRvd3MNCg==
+    </categories>
+</passwordfile>`;
diff --git a/libs/importer/src/importers/spec-data/password-depot-xml/rdp.xml.ts b/libs/importer/src/importers/spec-data/password-depot-xml/rdp.xml.ts
new file mode 100644
index 00000000000..fafc375f9a6
--- /dev/null
+++ b/libs/importer/src/importers/spec-data/password-depot-xml/rdp.xml.ts
@@ -0,0 +1,76 @@
+export const RDPTestData = `<?xml version="1.0" encoding="utf-8"?>
+<passwordfile xmlns="https://www.password-depot.de/schemas/passwordfile/17.0/passwordfile.xsd">
+    <header>
+        <application>Password Depot</application>
+        <version>17.0.0</version>
+        <comments></comments>
+        <hint></hint>
+        <fingerprint>CCDA8015-7F21-4344-BDF0-9EA6AF8AE31D</fingerprint>
+        <datetime fmt="dd.mm.yyyy hh:mm:ss">12.05.2025 15:16:11</datetime>
+        <encrypted>False</encrypted>
+        <backupinterval>0</backupinterval>
+        <lastbackup fmt="dd.mm.yyyy hh:mm:ss">30.12.1899 00:00:00</lastbackup>
+        <hash></hash>
+    </header>
+    <passwords>
+        <group name="tempDB" fingerprint="CCDA8015-7F21-4344-BDF0-9EA6AF8AE31D">
+            <item>
+                <description>rdp type</description>
+                <type>8</type>
+                <password>somePassword</password>
+                <username>someUser</username>
+                <url>ms-rd:subscribe?url=https://contoso.com</url>
+                <comment>someNote</comment>
+                <lastmodified fmt="dd.mm.yyyy hh:mm:ss">12.05.2025 15:07:33</lastmodified>
+                <expirydate fmt="dd.mm.yyyy">12.05.2025</expirydate>
+                <importance>1</importance>
+                <fingerprint>24CFF328-3036-48E3-99A3-85CD337725D3</fingerprint>
+                <template></template>
+                <imageindex>123</imageindex>
+                <imagecustom>0</imagecustom>
+                <wndtitle></wndtitle>
+                <paramstr>commandline command</paramstr>
+                <category>Allgemein</category>
+                <custombrowser></custombrowser>
+                <autocompletemethod>0</autocompletemethod>
+                <loginid></loginid>
+                <passid></passid>
+                <created fmt="dd.mm.yyyy hh:mm:ss">12.05.2025 15:06:24</created>
+                <lastaccessed fmt="dd.mm.yyyy hh:mm:ss">12.05.2025 15:06:24</lastaccessed>
+                <donotaddon>0</donotaddon>
+                <markassafe>0</markassafe>
+                <safemode>0</safemode>
+                <rndtype>1</rndtype>
+                <rndcustom></rndcustom>
+                <usagecount>0</usagecount>
+                <keephistory>2</keephistory>
+                <tags>sometag</tags>
+                <author>DJSMI</author>
+                <ownerid></ownerid>
+                <warnmsg></warnmsg>
+                <warnlvl>0</warnlvl>
+                <warnverify></warnverify>
+                <serverrqrd>0</serverrqrd>
+                <secret></secret>
+                <istemplate>0</istemplate>
+                <infotemplate></infotemplate>
+                <usetabs>161</usetabs>
+                <islink>0</islink>
+                <linkeditem></linkeditem>
+            </item>
+        </group>
+    </passwords>
+    <recyclebin>
+    </recyclebin>
+    <infotemplates>
+    </infotemplates>
+    <favorites>
+        QUY3NEZGODYtRkUzOS00NTg0LThFOTYtRkU5NTBDMjg5REY4DQo=
+    </favorites>
+    <sitestoignore>
+
+    </sitestoignore>
+    <categories>
+        QWxsZ2VtZWluDQpIb21lIEJhbmtpbmcNCkludGVybmV0DQpQcml2YXQNCldpbmRvd3MNCg==
+    </categories>
+</passwordfile>`;
diff --git a/libs/importer/src/importers/spec-data/password-depot-xml/software-license.xml.ts b/libs/importer/src/importers/spec-data/password-depot-xml/software-license.xml.ts
new file mode 100644
index 00000000000..5ab9437c3d7
--- /dev/null
+++ b/libs/importer/src/importers/spec-data/password-depot-xml/software-license.xml.ts
@@ -0,0 +1,169 @@
+export const SoftwareLicenseTestData = `<?xml version="1.0" encoding="utf-8"?>
+<passwordfile xmlns="https://www.password-depot.de/schemas/passwordfile/17.0/passwordfile.xsd">
+    <header>
+        <application>Password Depot</application>
+        <version>17.0.0</version>
+        <comments></comments>
+        <hint></hint>
+        <fingerprint>CCDA8015-7F21-4344-BDF0-9EA6AF8AE31D</fingerprint>
+        <datetime fmt="dd.mm.yyyy hh:mm:ss">12.05.2025 15:16:11</datetime>
+        <encrypted>False</encrypted>
+        <backupinterval>0</backupinterval>
+        <lastbackup fmt="dd.mm.yyyy hh:mm:ss">30.12.1899 00:00:00</lastbackup>
+        <hash></hash>
+    </header>
+    <passwords>
+        <group name="tempDB" fingerprint="CCDA8015-7F21-4344-BDF0-9EA6AF8AE31D">
+            <item>
+                <description>software-license type</description>
+                <type>2</type>
+                <password>somePassword</password>
+                <username>someUserName</username>
+                <url>example.com</url>
+                <comment>someComment</comment>
+                <lastmodified fmt="dd.mm.yyyy hh:mm:ss">12.05.2025 15:12:48</lastmodified>
+                <expirydate fmt="dd.mm.yyyy">00.00.0000</expirydate>
+                <importance>1</importance>
+                <fingerprint>220206EB-BE82-4E78-8FFB-9316D854721F</fingerprint>
+                <template></template>
+                <imageindex>128</imageindex>
+                <imagecustom>0</imagecustom>
+                <wndtitle></wndtitle>
+                <paramstr></paramstr>
+                <category>Allgemein</category>
+                <custombrowser></custombrowser>
+                <autocompletemethod>0</autocompletemethod>
+                <loginid></loginid>
+                <passid></passid>
+                <created fmt="dd.mm.yyyy hh:mm:ss">12.05.2025 15:11:33</created>
+                <lastaccessed fmt="dd.mm.yyyy hh:mm:ss">12.05.2025 15:11:33</lastaccessed>
+                <donotaddon>0</donotaddon>
+                <markassafe>0</markassafe>
+                <safemode>0</safemode>
+                <rndtype>1</rndtype>
+                <rndcustom></rndcustom>
+                <usagecount>0</usagecount>
+                <keephistory>2</keephistory>
+                <tags></tags>
+                <author>DJSMI</author>
+                <ownerid></ownerid>
+                <warnmsg></warnmsg>
+                <warnlvl>0</warnlvl>
+                <warnverify></warnverify>
+                <serverrqrd>0</serverrqrd>
+                <secret></secret>
+                <istemplate>0</istemplate>
+                <infotemplate></infotemplate>
+                <usetabs>161</usetabs>
+                <islink>0</islink>
+                <linkeditem></linkeditem>
+                <customfields>
+                    <field>
+                        <name>IDS_LicenseProduct</name>
+                        <value>someProduct</value>
+                        <visible>0</visible>
+                        <kind>0</kind>
+                        <type>0</type>
+                    </field>
+                    <field>
+                        <name>IDS_LicenseVersion</name>
+                        <value>someVersion</value>
+                        <visible>0</visible>
+                        <kind>0</kind>
+                        <type>0</type>
+                    </field>
+                    <field>
+                        <name>IDS_LicenseName</name>
+                        <value>some User</value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>0</type>
+                    </field>
+                    <field>
+                        <name>IDS_LicenseKey</name>
+                        <value>license-key</value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>0</type>
+                    </field>
+                    <field>
+                        <name>IDS_LicenseAdditionalKey</name>
+                        <value>additional-license-key</value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>0</type>
+                    </field>
+                    <field>
+                        <name>IDS_LicenseURL</name>
+                        <value>example.com</value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>8</type>
+                    </field>
+                    <field>
+                        <name>IDS_LicenseProtected</name>
+                        <value>1</value>
+                        <visible>0</visible>
+                        <kind>0</kind>
+                        <type>5</type>
+                    </field>
+                    <field>
+                        <name>IDS_LicenseUserName</name>
+                        <value>someUserName</value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>0</type>
+                    </field>
+                    <field>
+                        <name>IDS_LicensePassword</name>
+                        <value>somePassword</value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>1</type>
+                    </field>
+                    <field>
+                        <name>IDS_LicensePurchaseDate</name>
+                        <value>45789</value>
+                        <visible>0</visible>
+                        <kind>0</kind>
+                        <type>3</type>
+                    </field>
+                    <field>
+                        <name>IDS_LicenseOrderNumber</name>
+                        <value>order number</value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>0</type>
+                    </field>
+                    <field>
+                        <name>IDS_LicenseEmail</name>
+                        <value>someEmail</value>
+                        <visible>-1</visible>
+                        <kind>0</kind>
+                        <type>7</type>
+                    </field>
+                    <field>
+                        <name>IDS_LicenseExpires</name>
+                        <value>Nie</value>
+                        <visible>0</visible>
+                        <kind>0</kind>
+                        <type>3</type>
+                    </field>
+                </customfields>
+            </item>            
+        </group>
+    </passwords>
+    <recyclebin>
+    </recyclebin>
+    <infotemplates>
+    </infotemplates>
+    <favorites>
+        QUY3NEZGODYtRkUzOS00NTg0LThFOTYtRkU5NTBDMjg5REY4DQo=
+    </favorites>
+    <sitestoignore>
+
+    </sitestoignore>
+    <categories>
+        QWxsZ2VtZWluDQpIb21lIEJhbmtpbmcNCkludGVybmV0DQpQcml2YXQNCldpbmRvd3MNCg==
+    </categories>
+</passwordfile>`;
diff --git a/libs/importer/src/importers/spec-data/password-depot-xml/team-viewer.xml.ts b/libs/importer/src/importers/spec-data/password-depot-xml/team-viewer.xml.ts
new file mode 100644
index 00000000000..911c621c59a
--- /dev/null
+++ b/libs/importer/src/importers/spec-data/password-depot-xml/team-viewer.xml.ts
@@ -0,0 +1,85 @@
+export const TeamViewerTestData = `<?xml version="1.0" encoding="utf-8"?>
+<passwordfile xmlns="https://www.password-depot.de/schemas/passwordfile/17.0/passwordfile.xsd">
+    <header>
+        <application>Password Depot</application>
+        <version>17.0.0</version>
+        <comments></comments>
+        <hint></hint>
+        <fingerprint>CCDA8015-7F21-4344-BDF0-9EA6AF8AE31D</fingerprint>
+        <datetime fmt="dd.mm.yyyy hh:mm:ss">12.05.2025 15:16:11</datetime>
+        <encrypted>False</encrypted>
+        <backupinterval>0</backupinterval>
+        <lastbackup fmt="dd.mm.yyyy hh:mm:ss">30.12.1899 00:00:00</lastbackup>
+        <hash></hash>
+    </header>
+    <passwords>
+        <group name="tempDB" fingerprint="CCDA8015-7F21-4344-BDF0-9EA6AF8AE31D">            
+            <item>
+                <description>TeamViewer type</description>
+                <type>10</type>
+                <password>somePassword</password>
+                <username></username>
+                <url>partnerId</url>
+                <comment>someNote</comment>
+                <lastmodified fmt="dd.mm.yyyy hh:mm:ss">12.05.2025 15:08:14</lastmodified>
+                <expirydate fmt="dd.mm.yyyy">00.00.0000</expirydate>
+                <importance>1</importance>
+                <fingerprint>AE650032-5963-4D93-8E2E-69F216405C29</fingerprint>
+                <template></template>
+                <imageindex>124</imageindex>
+                <imagecustom>0</imagecustom>
+                <wndtitle></wndtitle>
+                <paramstr></paramstr>
+                <category>Allgemein</category>
+                <custombrowser></custombrowser>
+                <autocompletemethod>0</autocompletemethod>
+                <loginid></loginid>
+                <passid></passid>
+                <created fmt="dd.mm.yyyy hh:mm:ss">12.05.2025 15:07:41</created>
+                <lastaccessed fmt="dd.mm.yyyy hh:mm:ss">12.05.2025 15:07:41</lastaccessed>
+                <donotaddon>0</donotaddon>
+                <markassafe>0</markassafe>
+                <safemode>0</safemode>
+                <rndtype>1</rndtype>
+                <rndcustom></rndcustom>
+                <usagecount>0</usagecount>
+                <keephistory>2</keephistory>
+                <tags>someTag</tags>
+                <author>DJSMI</author>
+                <ownerid></ownerid>
+                <warnmsg></warnmsg>
+                <warnlvl>0</warnlvl>
+                <warnverify></warnverify>
+                <serverrqrd>0</serverrqrd>
+                <secret></secret>
+                <istemplate>0</istemplate>
+                <infotemplate></infotemplate>
+                <usetabs>161</usetabs>
+                <islink>0</islink>
+                <linkeditem></linkeditem>
+                <customfields>
+                    <field>
+                        <name>IDS_TeamViewerMode</name>
+                        <value>0</value>
+                        <visible>0</visible>
+                        <kind>0</kind>
+                        <type>0</type>
+                    </field>
+                </customfields>
+            </item>            
+        </group>
+    </passwords>
+    <recyclebin>
+    </recyclebin>
+    <infotemplates>
+    </infotemplates>
+    <favorites>
+        QUY3NEZGODYtRkUzOS00NTg0LThFOTYtRkU5NTBDMjg5REY4DQo=
+    </favorites>
+    <sitestoignore>
+
+    </sitestoignore>
+    <categories>
+        QWxsZ2VtZWluDQpIb21lIEJhbmtpbmcNCkludGVybmV0DQpQcml2YXQNCldpbmRvd3MNCg==
+    </categories>
+</passwordfile>`;
diff --git a/libs/importer/src/importers/spec-data/password-depot-xml/wrong-version.xml.ts b/libs/importer/src/importers/spec-data/password-depot-xml/wrong-version.xml.ts
new file mode 100644
index 00000000000..90b766ded1b
--- /dev/null
+++ b/libs/importer/src/importers/spec-data/password-depot-xml/wrong-version.xml.ts
@@ -0,0 +1,28 @@
+export const InvalidVersionData = `<?xml version="1.0" encoding="utf-8"?>
+<passwordfile xmlns="https://www.password-depot.de/schemas/passwordfile/18.0/passwordfile.xsd">
+    <header>
+        <application>Password Depot</application>
+        <version>18.0.0</version>
+        <comments></comments>
+        <hint></hint>
+        <fingerprint>CCDA8015-7F21-4344-BDF0-9EA6AF8AE31D</fingerprint>
+        <datetime fmt="dd.mm.yyyy hh:mm:ss">12.05.2025 15:16:11</datetime>
+        <encrypted>False</encrypted>
+        <backupinterval>0</backupinterval>
+        <lastbackup fmt="dd.mm.yyyy hh:mm:ss">30.12.1899 00:00:00</lastbackup>
+        <hash></hash>
+    </header>
+    <passwords>        
+    </passwords>
+    <recyclebin>
+    </recyclebin>
+    <infotemplates>
+    </infotemplates>
+    <favorites>        
+    </favorites>
+    <sitestoignore>
+
+    </sitestoignore>
+    <categories>        
+    </categories>
+</passwordfile>`;
diff --git a/libs/importer/src/models/import-options.ts b/libs/importer/src/models/import-options.ts
index a8c4b4e0a8a..205dbaf0198 100644
--- a/libs/importer/src/models/import-options.ts
+++ b/libs/importer/src/models/import-options.ts
@@ -73,6 +73,7 @@ export const regularImportOptions = [
   { id: "passkyjson", name: "Passky (json)" },
   { id: "passwordxpcsv", name: "Password XP (csv)" },
   { id: "netwrixpasswordsecure", name: "Netwrix Password Secure (csv)" },
+  { id: "passworddepot17xml", name: "Password Depot 17 (xml)" },
 ] as const;
 
 export type ImportType =
diff --git a/libs/importer/src/services/import.service.ts b/libs/importer/src/services/import.service.ts
index 3789ee7536c..2b9d2e490f7 100644
--- a/libs/importer/src/services/import.service.ts
+++ b/libs/importer/src/services/import.service.ts
@@ -90,6 +90,7 @@ import {
   YotiCsvImporter,
   ZohoVaultCsvImporter,
   PasswordXPCsvImporter,
+  PasswordDepot17XmlImporter,
 } from "../importers";
 import { Importer } from "../importers/importer";
 import {
@@ -348,6 +349,8 @@ export class ImportService implements ImportServiceAbstraction {
         return new PasswordXPCsvImporter();
       case "netwrixpasswordsecure":
         return new NetwrixPasswordSecureCsvImporter();
+      case "passworddepot17xml":
+        return new PasswordDepot17XmlImporter();
       default:
         return null;
     }

From 2810f2aaafa66f189cd35a152635830dda7ba92f Mon Sep 17 00:00:00 2001
From: Github Actions <actions@github.com>
Date: Tue, 1 Jul 2025 17:02:17 +0000
Subject: [PATCH 032/239] Bumped client version(s)

---
 apps/browser/package.json         | 2 +-
 apps/browser/src/manifest.json    | 2 +-
 apps/browser/src/manifest.v3.json | 2 +-
 package-lock.json                 | 2 +-
 4 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/apps/browser/package.json b/apps/browser/package.json
index 9b6d0174b0f..16e460a9025 100644
--- a/apps/browser/package.json
+++ b/apps/browser/package.json
@@ -1,6 +1,6 @@
 {
   "name": "@bitwarden/browser",
-  "version": "2025.6.0",
+  "version": "2025.6.1",
   "scripts": {
     "build": "npm run build:chrome",
     "build:chrome": "cross-env BROWSER=chrome MANIFEST_VERSION=3 NODE_OPTIONS=\"--max-old-space-size=8192\" webpack",
diff --git a/apps/browser/src/manifest.json b/apps/browser/src/manifest.json
index 9f6529643c4..c46674083b2 100644
--- a/apps/browser/src/manifest.json
+++ b/apps/browser/src/manifest.json
@@ -2,7 +2,7 @@
   "manifest_version": 2,
   "name": "__MSG_extName__",
   "short_name": "Bitwarden",
-  "version": "2025.6.0",
+  "version": "2025.6.1",
   "description": "__MSG_extDesc__",
   "default_locale": "en",
   "author": "Bitwarden Inc.",
diff --git a/apps/browser/src/manifest.v3.json b/apps/browser/src/manifest.v3.json
index bf5c4e439b9..6d38a5880d5 100644
--- a/apps/browser/src/manifest.v3.json
+++ b/apps/browser/src/manifest.v3.json
@@ -3,7 +3,7 @@
   "minimum_chrome_version": "102.0",
   "name": "__MSG_extName__",
   "short_name": "Bitwarden",
-  "version": "2025.6.0",
+  "version": "2025.6.1",
   "description": "__MSG_extDesc__",
   "default_locale": "en",
   "author": "Bitwarden Inc.",
diff --git a/package-lock.json b/package-lock.json
index 176aa40a650..9d2eded4c7a 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -197,7 +197,7 @@
     },
     "apps/browser": {
       "name": "@bitwarden/browser",
-      "version": "2025.6.0"
+      "version": "2025.6.1"
     },
     "apps/cli": {
       "name": "@bitwarden/cli",

From 3ae5e063a73fb179b8f7430e7db1c01aa98802bf Mon Sep 17 00:00:00 2001
From: Github Actions <actions@github.com>
Date: Tue, 1 Jul 2025 17:11:29 +0000
Subject: [PATCH 033/239] Bumped client version(s)

---
 apps/cli/package.json | 2 +-
 package-lock.json     | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/apps/cli/package.json b/apps/cli/package.json
index ea94314c641..520140a676d 100644
--- a/apps/cli/package.json
+++ b/apps/cli/package.json
@@ -1,7 +1,7 @@
 {
   "name": "@bitwarden/cli",
   "description": "A secure and free password manager for all of your devices.",
-  "version": "2025.6.0",
+  "version": "2025.6.1",
   "keywords": [
     "bitwarden",
     "password",
diff --git a/package-lock.json b/package-lock.json
index 9d2eded4c7a..a6b965f89f7 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -201,7 +201,7 @@
     },
     "apps/cli": {
       "name": "@bitwarden/cli",
-      "version": "2025.6.0",
+      "version": "2025.6.1",
       "license": "SEE LICENSE IN LICENSE.txt",
       "dependencies": {
         "@koa/multer": "3.1.0",

From 4cb80b4a037c075cfc2b77bc73f35575131d9ec7 Mon Sep 17 00:00:00 2001
From: Justin Baur <19896123+justindbaur@users.noreply.github.com>
Date: Tue, 1 Jul 2025 13:47:02 -0400
Subject: [PATCH 034/239] Platform logging lib (#15338)

* Add Platform Logging Lib

* Move console log spec and test util back into libs/common

* Fix ConsoleLogServer re-export

* Fix types error
---
 .github/CODEOWNERS                            |  1 +
 .../src/platform/abstractions/log.service.ts  | 10 +---
 .../src/platform/enums/log-level-type.enum.ts |  9 +--
 .../services/console-log.service.spec.ts      |  4 +-
 .../platform/services/console-log.service.ts  | 60 +------------------
 libs/logging/README.md                        |  5 ++
 libs/logging/eslint.config.mjs                |  3 +
 libs/logging/jest.config.js                   | 10 ++++
 libs/logging/package.json                     | 11 ++++
 libs/logging/project.json                     | 33 ++++++++++
 libs/logging/src/console-log.service.ts       | 57 ++++++++++++++++++
 libs/logging/src/index.ts                     |  3 +
 libs/logging/src/log-level.ts                 |  8 +++
 libs/logging/src/log.service.ts               |  9 +++
 libs/logging/src/logging.spec.ts              |  8 +++
 libs/logging/tsconfig.json                    | 13 ++++
 libs/logging/tsconfig.lib.json                | 10 ++++
 libs/logging/tsconfig.spec.json               | 16 +++++
 package-lock.json                             |  8 +++
 tsconfig.base.json                            |  1 +
 20 files changed, 201 insertions(+), 78 deletions(-)
 create mode 100644 libs/logging/README.md
 create mode 100644 libs/logging/eslint.config.mjs
 create mode 100644 libs/logging/jest.config.js
 create mode 100644 libs/logging/package.json
 create mode 100644 libs/logging/project.json
 create mode 100644 libs/logging/src/console-log.service.ts
 create mode 100644 libs/logging/src/index.ts
 create mode 100644 libs/logging/src/log-level.ts
 create mode 100644 libs/logging/src/log.service.ts
 create mode 100644 libs/logging/src/logging.spec.ts
 create mode 100644 libs/logging/tsconfig.json
 create mode 100644 libs/logging/tsconfig.lib.json
 create mode 100644 libs/logging/tsconfig.spec.json

diff --git a/.github/CODEOWNERS b/.github/CODEOWNERS
index db60ad6a93b..590887b3cad 100644
--- a/.github/CODEOWNERS
+++ b/.github/CODEOWNERS
@@ -91,6 +91,7 @@ libs/common/spec @bitwarden/team-platform-dev
 libs/common/src/state-migrations @bitwarden/team-platform-dev
 libs/platform @bitwarden/team-platform-dev
 libs/storage-core @bitwarden/team-platform-dev
+libs/logging @bitwarden/team-platform-dev
 libs/storage-test-utils @bitwarden/team-platform-dev
 # Web utils used across app and connectors
 apps/web/src/utils/ @bitwarden/team-platform-dev
diff --git a/libs/common/src/platform/abstractions/log.service.ts b/libs/common/src/platform/abstractions/log.service.ts
index d77a4f69906..c540f1a2b8f 100644
--- a/libs/common/src/platform/abstractions/log.service.ts
+++ b/libs/common/src/platform/abstractions/log.service.ts
@@ -1,9 +1 @@
-import { LogLevelType } from "../enums/log-level-type.enum";
-
-export abstract class LogService {
-  abstract debug(message?: any, ...optionalParams: any[]): void;
-  abstract info(message?: any, ...optionalParams: any[]): void;
-  abstract warning(message?: any, ...optionalParams: any[]): void;
-  abstract error(message?: any, ...optionalParams: any[]): void;
-  abstract write(level: LogLevelType, message?: any, ...optionalParams: any[]): void;
-}
+export { LogService } from "@bitwarden/logging";
diff --git a/libs/common/src/platform/enums/log-level-type.enum.ts b/libs/common/src/platform/enums/log-level-type.enum.ts
index b5f84467d6e..024c71c9f97 100644
--- a/libs/common/src/platform/enums/log-level-type.enum.ts
+++ b/libs/common/src/platform/enums/log-level-type.enum.ts
@@ -1,8 +1 @@
-// FIXME: update to use a const object instead of a typescript enum
-// eslint-disable-next-line @bitwarden/platform/no-enums
-export enum LogLevelType {
-  Debug,
-  Info,
-  Warning,
-  Error,
-}
+export { LogLevel as LogLevelType } from "@bitwarden/logging";
diff --git a/libs/common/src/platform/services/console-log.service.spec.ts b/libs/common/src/platform/services/console-log.service.spec.ts
index 508ca4eb327..e73aed5f3b5 100644
--- a/libs/common/src/platform/services/console-log.service.spec.ts
+++ b/libs/common/src/platform/services/console-log.service.spec.ts
@@ -1,6 +1,6 @@
-import { interceptConsole, restoreConsole } from "../../../spec";
+import { ConsoleLogService } from "@bitwarden/logging";
 
-import { ConsoleLogService } from "./console-log.service";
+import { interceptConsole, restoreConsole } from "../../../spec";
 
 describe("ConsoleLogService", () => {
   const error = new Error("this is an error");
diff --git a/libs/common/src/platform/services/console-log.service.ts b/libs/common/src/platform/services/console-log.service.ts
index cb6554e2aa2..6d55614757b 100644
--- a/libs/common/src/platform/services/console-log.service.ts
+++ b/libs/common/src/platform/services/console-log.service.ts
@@ -1,59 +1 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
-import { LogService as LogServiceAbstraction } from "../abstractions/log.service";
-import { LogLevelType } from "../enums/log-level-type.enum";
-
-export class ConsoleLogService implements LogServiceAbstraction {
-  protected timersMap: Map<string, [number, number]> = new Map();
-
-  constructor(
-    protected isDev: boolean,
-    protected filter: (level: LogLevelType) => boolean = null,
-  ) {}
-
-  debug(message?: any, ...optionalParams: any[]) {
-    if (!this.isDev) {
-      return;
-    }
-    this.write(LogLevelType.Debug, message, ...optionalParams);
-  }
-
-  info(message?: any, ...optionalParams: any[]) {
-    this.write(LogLevelType.Info, message, ...optionalParams);
-  }
-
-  warning(message?: any, ...optionalParams: any[]) {
-    this.write(LogLevelType.Warning, message, ...optionalParams);
-  }
-
-  error(message?: any, ...optionalParams: any[]) {
-    this.write(LogLevelType.Error, message, ...optionalParams);
-  }
-
-  write(level: LogLevelType, message?: any, ...optionalParams: any[]) {
-    if (this.filter != null && this.filter(level)) {
-      return;
-    }
-
-    switch (level) {
-      case LogLevelType.Debug:
-        // eslint-disable-next-line
-        console.log(message, ...optionalParams);
-        break;
-      case LogLevelType.Info:
-        // eslint-disable-next-line
-        console.log(message, ...optionalParams);
-        break;
-      case LogLevelType.Warning:
-        // eslint-disable-next-line
-        console.warn(message, ...optionalParams);
-        break;
-      case LogLevelType.Error:
-        // eslint-disable-next-line
-        console.error(message, ...optionalParams);
-        break;
-      default:
-        break;
-    }
-  }
-}
+export { ConsoleLogService } from "@bitwarden/logging";
diff --git a/libs/logging/README.md b/libs/logging/README.md
new file mode 100644
index 00000000000..d2ef90cb3f9
--- /dev/null
+++ b/libs/logging/README.md
@@ -0,0 +1,5 @@
+# logging
+
+Owned by: platform
+
+Logging primitives
diff --git a/libs/logging/eslint.config.mjs b/libs/logging/eslint.config.mjs
new file mode 100644
index 00000000000..9c37d10e3ff
--- /dev/null
+++ b/libs/logging/eslint.config.mjs
@@ -0,0 +1,3 @@
+import baseConfig from "../../eslint.config.mjs";
+
+export default [...baseConfig];
diff --git a/libs/logging/jest.config.js b/libs/logging/jest.config.js
new file mode 100644
index 00000000000..a231d3bfce9
--- /dev/null
+++ b/libs/logging/jest.config.js
@@ -0,0 +1,10 @@
+module.exports = {
+  displayName: "logging",
+  preset: "../../jest.preset.js",
+  testEnvironment: "node",
+  transform: {
+    "^.+\\.[tj]s$": ["ts-jest", { tsconfig: "<rootDir>/tsconfig.spec.json" }],
+  },
+  moduleFileExtensions: ["ts", "js", "html"],
+  coverageDirectory: "../../coverage/libs/logging",
+};
diff --git a/libs/logging/package.json b/libs/logging/package.json
new file mode 100644
index 00000000000..b9cfbe35eb0
--- /dev/null
+++ b/libs/logging/package.json
@@ -0,0 +1,11 @@
+{
+  "name": "@bitwarden/logging",
+  "version": "0.0.1",
+  "description": "Logging primitives",
+  "private": true,
+  "type": "commonjs",
+  "main": "dist/index.js",
+  "types": "dist/index.d.ts",
+  "license": "GPL-3.0",
+  "author": "platform"
+}
diff --git a/libs/logging/project.json b/libs/logging/project.json
new file mode 100644
index 00000000000..f2b5db313be
--- /dev/null
+++ b/libs/logging/project.json
@@ -0,0 +1,33 @@
+{
+  "name": "logging",
+  "$schema": "../../node_modules/nx/schemas/project-schema.json",
+  "sourceRoot": "libs/logging/src",
+  "projectType": "library",
+  "tags": [],
+  "targets": {
+    "build": {
+      "executor": "@nx/js:tsc",
+      "outputs": ["{options.outputPath}"],
+      "options": {
+        "outputPath": "dist/libs/logging",
+        "main": "libs/logging/src/index.ts",
+        "tsConfig": "libs/logging/tsconfig.lib.json",
+        "assets": ["libs/logging/*.md"]
+      }
+    },
+    "lint": {
+      "executor": "@nx/eslint:lint",
+      "outputs": ["{options.outputFile}"],
+      "options": {
+        "lintFilePatterns": ["libs/logging/**/*.ts"]
+      }
+    },
+    "test": {
+      "executor": "@nx/jest:jest",
+      "outputs": ["{workspaceRoot}/coverage/{projectRoot}"],
+      "options": {
+        "jestConfig": "libs/logging/jest.config.js"
+      }
+    }
+  }
+}
diff --git a/libs/logging/src/console-log.service.ts b/libs/logging/src/console-log.service.ts
new file mode 100644
index 00000000000..3a4ffe9ead1
--- /dev/null
+++ b/libs/logging/src/console-log.service.ts
@@ -0,0 +1,57 @@
+import { LogLevel } from "./log-level";
+import { LogService } from "./log.service";
+
+export class ConsoleLogService implements LogService {
+  protected timersMap: Map<string, [number, number]> = new Map();
+
+  constructor(
+    protected isDev: boolean,
+    protected filter: ((level: LogLevel) => boolean) | null = null,
+  ) {}
+
+  debug(message?: any, ...optionalParams: any[]) {
+    if (!this.isDev) {
+      return;
+    }
+    this.write(LogLevel.Debug, message, ...optionalParams);
+  }
+
+  info(message?: any, ...optionalParams: any[]) {
+    this.write(LogLevel.Info, message, ...optionalParams);
+  }
+
+  warning(message?: any, ...optionalParams: any[]) {
+    this.write(LogLevel.Warning, message, ...optionalParams);
+  }
+
+  error(message?: any, ...optionalParams: any[]) {
+    this.write(LogLevel.Error, message, ...optionalParams);
+  }
+
+  write(level: LogLevel, message?: any, ...optionalParams: any[]) {
+    if (this.filter != null && this.filter(level)) {
+      return;
+    }
+
+    switch (level) {
+      case LogLevel.Debug:
+        // eslint-disable-next-line
+        console.log(message, ...optionalParams);
+        break;
+      case LogLevel.Info:
+        // eslint-disable-next-line
+        console.log(message, ...optionalParams);
+        break;
+      case LogLevel.Warning:
+        // eslint-disable-next-line
+        console.warn(message, ...optionalParams);
+        break;
+      case LogLevel.Error:
+        // eslint-disable-next-line
+        console.error(message, ...optionalParams);
+        break;
+      default:
+        break;
+    }
+  }
+}
diff --git a/libs/logging/src/index.ts b/libs/logging/src/index.ts
new file mode 100644
index 00000000000..8ce4b62cd3f
--- /dev/null
+++ b/libs/logging/src/index.ts
@@ -0,0 +1,3 @@
+export { LogService } from "./log.service";
+export { LogLevel } from "./log-level";
+export { ConsoleLogService } from "./console-log.service";
diff --git a/libs/logging/src/log-level.ts b/libs/logging/src/log-level.ts
new file mode 100644
index 00000000000..adf6c145c3d
--- /dev/null
+++ b/libs/logging/src/log-level.ts
@@ -0,0 +1,8 @@
+// FIXME: update to use a const object instead of a typescript enum
+// eslint-disable-next-line @bitwarden/platform/no-enums
+export enum LogLevel {
+  Debug,
+  Info,
+  Warning,
+  Error,
+}
diff --git a/libs/logging/src/log.service.ts b/libs/logging/src/log.service.ts
new file mode 100644
index 00000000000..a63ad47c07e
--- /dev/null
+++ b/libs/logging/src/log.service.ts
@@ -0,0 +1,9 @@
+import { LogLevel } from "./log-level";
+
+export abstract class LogService {
+  abstract debug(message?: any, ...optionalParams: any[]): void;
+  abstract info(message?: any, ...optionalParams: any[]): void;
+  abstract warning(message?: any, ...optionalParams: any[]): void;
+  abstract error(message?: any, ...optionalParams: any[]): void;
+  abstract write(level: LogLevel, message?: any, ...optionalParams: any[]): void;
+}
diff --git a/libs/logging/src/logging.spec.ts b/libs/logging/src/logging.spec.ts
new file mode 100644
index 00000000000..04a057a156f
--- /dev/null
+++ b/libs/logging/src/logging.spec.ts
@@ -0,0 +1,8 @@
+import * as lib from "./index";
+
+describe("logging", () => {
+  // This test will fail until something is exported from index.ts
+  it("should work", () => {
+    expect(lib).toBeDefined();
+  });
+});
diff --git a/libs/logging/tsconfig.json b/libs/logging/tsconfig.json
new file mode 100644
index 00000000000..62ebbd94647
--- /dev/null
+++ b/libs/logging/tsconfig.json
@@ -0,0 +1,13 @@
+{
+  "extends": "../../tsconfig.base.json",
+  "files": [],
+  "include": [],
+  "references": [
+    {
+      "path": "./tsconfig.lib.json"
+    },
+    {
+      "path": "./tsconfig.spec.json"
+    }
+  ]
+}
diff --git a/libs/logging/tsconfig.lib.json b/libs/logging/tsconfig.lib.json
new file mode 100644
index 00000000000..9cbf6736007
--- /dev/null
+++ b/libs/logging/tsconfig.lib.json
@@ -0,0 +1,10 @@
+{
+  "extends": "./tsconfig.json",
+  "compilerOptions": {
+    "outDir": "../../dist/out-tsc",
+    "declaration": true,
+    "types": ["node"]
+  },
+  "include": ["src/**/*.ts"],
+  "exclude": ["jest.config.js", "src/**/*.spec.ts"]
+}
diff --git a/libs/logging/tsconfig.spec.json b/libs/logging/tsconfig.spec.json
new file mode 100644
index 00000000000..a19b962c49a
--- /dev/null
+++ b/libs/logging/tsconfig.spec.json
@@ -0,0 +1,16 @@
+{
+  "extends": "./tsconfig.json",
+  "compilerOptions": {
+    "outDir": "../..//dist/out-tsc",
+    "module": "commonjs",
+    "moduleResolution": "node10",
+    "types": ["jest", "node"]
+  },
+  "include": [
+    "jest.config.ts",
+    "src/**/*.test.ts",
+    "src/**/*.spec.ts",
+    "src/**/*.d.ts",
+    "src/intercept-console.ts"
+  ]
+}
diff --git a/package-lock.json b/package-lock.json
index a6b965f89f7..e9701cbd7ee 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -353,6 +353,10 @@
       "version": "0.0.0",
       "license": "GPL-3.0"
     },
+    "libs/logging": {
+      "version": "0.0.1",
+      "license": "GPL-3.0"
+    },
     "libs/node": {
       "name": "@bitwarden/node",
       "version": "0.0.0",
@@ -4583,6 +4587,10 @@
       "resolved": "libs/key-management-ui",
       "link": true
     },
+    "node_modules/@bitwarden/logging": {
+      "resolved": "libs/logging",
+      "link": true
+    },
     "node_modules/@bitwarden/node": {
       "resolved": "libs/node",
       "link": true
diff --git a/tsconfig.base.json b/tsconfig.base.json
index b826d51e66e..c820306fd15 100644
--- a/tsconfig.base.json
+++ b/tsconfig.base.json
@@ -37,6 +37,7 @@
       "@bitwarden/importer-ui": ["./libs/importer/src/components"],
       "@bitwarden/key-management": ["./libs/key-management/src"],
       "@bitwarden/key-management-ui": ["./libs/key-management-ui/src"],
+      "@bitwarden/logging": ["libs/logging/src"],
       "@bitwarden/node/*": ["./libs/node/src/*"],
       "@bitwarden/nx-plugin": ["libs/nx-plugin/src/index.ts"],
       "@bitwarden/platform": ["./libs/platform/src"],

From 832e4b16f08be43aa60bda15623f6e129d45be91 Mon Sep 17 00:00:00 2001
From: Tom <144813356+ttalty@users.noreply.github.com>
Date: Tue, 1 Jul 2025 13:58:12 -0400
Subject: [PATCH 035/239] Org permission guards for accessing reports and
 displaying access intelligence (#15060)

---
 .../organizations/layouts/organization-layout.component.html  | 2 +-
 .../organizations/organizations-routing.module.ts             | 1 +
 .../access-intelligence/access-intelligence-routing.module.ts | 4 +++-
 3 files changed, 5 insertions(+), 2 deletions(-)

diff --git a/apps/web/src/app/admin-console/organizations/layouts/organization-layout.component.html b/apps/web/src/app/admin-console/organizations/layouts/organization-layout.component.html
index f991678e834..d5e771d1b17 100644
--- a/apps/web/src/app/admin-console/organizations/layouts/organization-layout.component.html
+++ b/apps/web/src/app/admin-console/organizations/layouts/organization-layout.component.html
@@ -4,7 +4,7 @@
     <org-switcher [filter]="orgFilter" [hideNewButton]="hideNewOrgButton$ | async"></org-switcher>
     <bit-nav-group
       icon="bwi-filter"
-      *ngIf="organization.useRiskInsights"
+      *ngIf="organization.useRiskInsights && organization.canAccessReports"
       [text]="'accessIntelligence' | i18n"
       route="access-intelligence"
     >
diff --git a/bitwarden_license/bit-web/src/app/admin-console/organizations/organizations-routing.module.ts b/bitwarden_license/bit-web/src/app/admin-console/organizations/organizations-routing.module.ts
index f63140a8b23..35659d05dce 100644
--- a/bitwarden_license/bit-web/src/app/admin-console/organizations/organizations-routing.module.ts
+++ b/bitwarden_license/bit-web/src/app/admin-console/organizations/organizations-routing.module.ts
@@ -79,6 +79,7 @@ const routes: Routes = [
       },
       {
         path: "access-intelligence",
+        canActivate: [organizationPermissionsGuard((org) => org.canAccessReports)],
         loadChildren: () =>
           import("../../dirt/access-intelligence/access-intelligence.module").then(
             (m) => m.AccessIntelligenceModule,
diff --git a/bitwarden_license/bit-web/src/app/dirt/access-intelligence/access-intelligence-routing.module.ts b/bitwarden_license/bit-web/src/app/dirt/access-intelligence/access-intelligence-routing.module.ts
index 6df0f01bc8b..2e3c53d8d9f 100644
--- a/bitwarden_license/bit-web/src/app/dirt/access-intelligence/access-intelligence-routing.module.ts
+++ b/bitwarden_license/bit-web/src/app/dirt/access-intelligence/access-intelligence-routing.module.ts
@@ -9,7 +9,9 @@ const routes: Routes = [
   { path: "", pathMatch: "full", redirectTo: "risk-insights" },
   {
     path: "risk-insights",
-    canActivate: [organizationPermissionsGuard((org) => org.useRiskInsights)],
+    canActivate: [
+      organizationPermissionsGuard((org) => org.useRiskInsights && org.canAccessReports),
+    ],
     component: RiskInsightsComponent,
     data: {
       titleId: "RiskInsights",

From c9aa8498c7a66b792768768c116098eef77e1bab Mon Sep 17 00:00:00 2001
From: Addison Beck <github@addisonbeck.com>
Date: Tue, 1 Jul 2025 14:03:08 -0400
Subject: [PATCH 036/239] fix(desktop): save zoom level to state when it is
 adjusted (#15406)

---
 apps/desktop/src/main/window.main.ts | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/apps/desktop/src/main/window.main.ts b/apps/desktop/src/main/window.main.ts
index 4d9438b588d..5b81cf8140b 100644
--- a/apps/desktop/src/main/window.main.ts
+++ b/apps/desktop/src/main/window.main.ts
@@ -295,6 +295,15 @@ export class WindowMain {
       this.win.webContents.zoomFactor = this.windowStates[mainWindowSizeKey].zoomFactor ?? 1.0;
     });
 
+    // Persist zoom changes immediately when user zooms in/out or resets zoom
+    // We can't depend on higher level web events (like close) to do this
+    // because locking the vault resets window state.
+    this.win.webContents.on("zoom-changed", async () => {
+      const newZoom = this.win.webContents.zoomFactor;
+      this.windowStates[mainWindowSizeKey].zoomFactor = newZoom;
+      await this.desktopSettingsService.setWindow(this.windowStates[mainWindowSizeKey]);
+    });
+
     if (this.windowStates[mainWindowSizeKey].isMaximized) {
       this.win.maximize();
     }

From 5eca3a591667766ff8dd42b67642ce960391004e Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Anders=20=C3=85berg?= <anders@andersaberg.com>
Date: Tue, 1 Jul 2025 21:00:13 +0200
Subject: [PATCH 037/239] [PM-18809] Passkey: use ArrayBuffer instead of
 Uint8Array (#15092)

* Passkey: use ArrayBuffer instead of Uint8Array to conform WebAuthn spec

* ArrayBufferView generics was too modern for this project

* Correctly update the types from Uint8arrays to ArrayBuffers

* Fixed broken tests + bugs

* Removed arrayBufferViewToArrayBuffer as it's not needed in this invocation paths

---------

Co-authored-by: ozraru <ozraru@raru.work>
Co-authored-by: Todd Martin <106564991+trmartin4@users.noreply.github.com>
---
 .../autofill/services/desktop-autofill.service.ts | 10 +++++-----
 .../fido2-authenticator.service.abstraction.ts    | 10 +++++-----
 .../services/fido2/credential-id-utils.spec.ts    |  4 ++--
 .../services/fido2/credential-id-utils.ts         | 15 +++++++++------
 .../services/fido2/fido2-authenticator.service.ts |  2 +-
 .../services/fido2/fido2-client.service.ts        |  4 ++--
 .../src/platform/services/fido2/fido2-utils.ts    |  4 ++--
 7 files changed, 26 insertions(+), 23 deletions(-)

diff --git a/apps/desktop/src/autofill/services/desktop-autofill.service.ts b/apps/desktop/src/autofill/services/desktop-autofill.service.ts
index 7e60c6b8d76..5500bc58f5a 100644
--- a/apps/desktop/src/autofill/services/desktop-autofill.service.ts
+++ b/apps/desktop/src/autofill/services/desktop-autofill.service.ts
@@ -209,7 +209,7 @@ export class DesktopAutofillService implements OnDestroy {
           }
 
           request.credentialId = Array.from(
-            parseCredentialId(decrypted.login.fido2Credentials?.[0].credentialId),
+            new Uint8Array(parseCredentialId(decrypted.login.fido2Credentials?.[0].credentialId)),
           );
         }
 
@@ -336,12 +336,12 @@ export class DesktopAutofillService implements OnDestroy {
     response: Fido2AuthenticatorGetAssertionResult,
   ): autofill.PasskeyAssertionResponse {
     return {
-      userHandle: Array.from(response.selectedCredential.userHandle),
+      userHandle: Array.from(new Uint8Array(response.selectedCredential.userHandle)),
       rpId: request.rpId,
-      signature: Array.from(response.signature),
+      signature: Array.from(new Uint8Array(response.signature)),
       clientDataHash: request.clientDataHash,
-      authenticatorData: Array.from(response.authenticatorData),
-      credentialId: Array.from(response.selectedCredential.id),
+      authenticatorData: Array.from(new Uint8Array(response.authenticatorData)),
+      credentialId: Array.from(new Uint8Array(response.selectedCredential.id)),
     };
   }
 
diff --git a/libs/common/src/platform/abstractions/fido2/fido2-authenticator.service.abstraction.ts b/libs/common/src/platform/abstractions/fido2/fido2-authenticator.service.abstraction.ts
index 15655393362..fd3453198e6 100644
--- a/libs/common/src/platform/abstractions/fido2/fido2-authenticator.service.abstraction.ts
+++ b/libs/common/src/platform/abstractions/fido2/fido2-authenticator.service.abstraction.ts
@@ -70,7 +70,7 @@ export class Fido2AuthenticatorError extends Error {
 }
 
 export interface PublicKeyCredentialDescriptor {
-  id: Uint8Array;
+  id: ArrayBuffer;
   transports?: ("ble" | "hybrid" | "internal" | "nfc" | "usb")[];
   type: "public-key";
 }
@@ -155,9 +155,9 @@ export interface Fido2AuthenticatorGetAssertionParams {
 
 export interface Fido2AuthenticatorGetAssertionResult {
   selectedCredential: {
-    id: Uint8Array;
-    userHandle?: Uint8Array;
+    id: ArrayBuffer;
+    userHandle?: ArrayBuffer;
   };
-  authenticatorData: Uint8Array;
-  signature: Uint8Array;
+  authenticatorData: ArrayBuffer;
+  signature: ArrayBuffer;
 }
diff --git a/libs/common/src/platform/services/fido2/credential-id-utils.spec.ts b/libs/common/src/platform/services/fido2/credential-id-utils.spec.ts
index 76e068ac01c..1f2217ccd63 100644
--- a/libs/common/src/platform/services/fido2/credential-id-utils.spec.ts
+++ b/libs/common/src/platform/services/fido2/credential-id-utils.spec.ts
@@ -9,7 +9,7 @@ describe("credential-id-utils", () => {
         new Uint8Array([
           0x08, 0xd7, 0x0b, 0x74, 0xe9, 0xf5, 0x45, 0x22, 0xa4, 0x25, 0xe5, 0xdc, 0xd4, 0x01, 0x07,
           0xe7,
-        ]),
+        ]).buffer,
       );
     });
 
@@ -20,7 +20,7 @@ describe("credential-id-utils", () => {
         new Uint8Array([
           0x08, 0xd7, 0x0b, 0x74, 0xe9, 0xf5, 0x45, 0x22, 0xa4, 0x25, 0xe5, 0xdc, 0xd4, 0x01, 0x07,
           0xe7,
-        ]),
+        ]).buffer,
       );
     });
 
diff --git a/libs/common/src/platform/services/fido2/credential-id-utils.ts b/libs/common/src/platform/services/fido2/credential-id-utils.ts
index 685669f0da3..08ea33114f5 100644
--- a/libs/common/src/platform/services/fido2/credential-id-utils.ts
+++ b/libs/common/src/platform/services/fido2/credential-id-utils.ts
@@ -3,13 +3,13 @@
 import { Fido2Utils } from "./fido2-utils";
 import { guidToRawFormat } from "./guid-utils";
 
-export function parseCredentialId(encodedCredentialId: string): Uint8Array {
+export function parseCredentialId(encodedCredentialId: string): ArrayBuffer {
   try {
     if (encodedCredentialId.startsWith("b64.")) {
       return Fido2Utils.stringToBuffer(encodedCredentialId.slice(4));
     }
 
-    return guidToRawFormat(encodedCredentialId);
+    return guidToRawFormat(encodedCredentialId).buffer;
   } catch {
     return undefined;
   }
@@ -18,13 +18,16 @@ export function parseCredentialId(encodedCredentialId: string): Uint8Array {
 /**
  * Compares two credential IDs for equality.
  */
-export function compareCredentialIds(a: Uint8Array, b: Uint8Array): boolean {
-  if (a.length !== b.length) {
+export function compareCredentialIds(a: ArrayBuffer, b: ArrayBuffer): boolean {
+  if (a.byteLength !== b.byteLength) {
     return false;
   }
 
-  for (let i = 0; i < a.length; i++) {
-    if (a[i] !== b[i]) {
+  const viewA = new Uint8Array(a);
+  const viewB = new Uint8Array(b);
+
+  for (let i = 0; i < viewA.length; i++) {
+    if (viewA[i] !== viewB[i]) {
       return false;
     }
   }
diff --git a/libs/common/src/platform/services/fido2/fido2-authenticator.service.ts b/libs/common/src/platform/services/fido2/fido2-authenticator.service.ts
index bac1b218657..e560a77cc2e 100644
--- a/libs/common/src/platform/services/fido2/fido2-authenticator.service.ts
+++ b/libs/common/src/platform/services/fido2/fido2-authenticator.service.ts
@@ -514,7 +514,7 @@ async function getPrivateKeyFromFido2Credential(
   const keyBuffer = Fido2Utils.stringToBuffer(fido2Credential.keyValue);
   return await crypto.subtle.importKey(
     "pkcs8",
-    keyBuffer,
+    new Uint8Array(keyBuffer),
     {
       name: fido2Credential.keyAlgorithm,
       namedCurve: fido2Credential.keyCurve,
diff --git a/libs/common/src/platform/services/fido2/fido2-client.service.ts b/libs/common/src/platform/services/fido2/fido2-client.service.ts
index 5d5f2a879cb..431585441a7 100644
--- a/libs/common/src/platform/services/fido2/fido2-client.service.ts
+++ b/libs/common/src/platform/services/fido2/fido2-client.service.ts
@@ -127,9 +127,9 @@ export class Fido2ClientService<ParentWindowReference>
     }
 
     const userId = Fido2Utils.stringToBuffer(params.user.id);
-    if (userId.length < 1 || userId.length > 64) {
+    if (userId.byteLength < 1 || userId.byteLength > 64) {
       this.logService?.warning(
-        `[Fido2Client] Invalid 'user.id' length: ${params.user.id} (${userId.length})`,
+        `[Fido2Client] Invalid 'user.id' length: ${params.user.id} (${userId.byteLength})`,
       );
       throw new TypeError("Invalid 'user.id' length");
     }
diff --git a/libs/common/src/platform/services/fido2/fido2-utils.ts b/libs/common/src/platform/services/fido2/fido2-utils.ts
index 6413eeade04..99e260f4a53 100644
--- a/libs/common/src/platform/services/fido2/fido2-utils.ts
+++ b/libs/common/src/platform/services/fido2/fido2-utils.ts
@@ -47,8 +47,8 @@ export class Fido2Utils {
       .replace(/=/g, "");
   }
 
-  static stringToBuffer(str: string): Uint8Array {
-    return Fido2Utils.fromB64ToArray(Fido2Utils.fromUrlB64ToB64(str));
+  static stringToBuffer(str: string): ArrayBuffer {
+    return Fido2Utils.fromB64ToArray(Fido2Utils.fromUrlB64ToB64(str)).buffer;
   }
 
   static bufferSourceToUint8Array(bufferSource: BufferSource): Uint8Array {

From 172623e0505a044001bb5ffbec1f30e8061e4379 Mon Sep 17 00:00:00 2001
From: Justin Baur <19896123+justindbaur@users.noreply.github.com>
Date: Tue, 1 Jul 2025 15:59:11 -0400
Subject: [PATCH 038/239] [PM-20247] Initialize user-core library (#15029)

* Initialize user-core library

* Run `npm install`

* Fix patched generator bug
---
 .github/CODEOWNERS                |  1 +
 libs/common/src/types/guid.ts     |  4 +++-
 libs/user-core/README.md          |  6 ++++++
 libs/user-core/eslint.config.mjs  |  3 +++
 libs/user-core/jest.config.js     | 10 ++++++++++
 libs/user-core/package.json       | 10 ++++++++++
 libs/user-core/project.json       | 27 +++++++++++++++++++++++++++
 libs/user-core/src/index.ts       |  9 +++++++++
 libs/user-core/tsconfig.json      | 13 +++++++++++++
 libs/user-core/tsconfig.lib.json  | 10 ++++++++++
 libs/user-core/tsconfig.spec.json | 10 ++++++++++
 package-lock.json                 |  8 ++++++++
 tsconfig.base.json                |  1 +
 13 files changed, 111 insertions(+), 1 deletion(-)
 create mode 100644 libs/user-core/README.md
 create mode 100644 libs/user-core/eslint.config.mjs
 create mode 100644 libs/user-core/jest.config.js
 create mode 100644 libs/user-core/package.json
 create mode 100644 libs/user-core/project.json
 create mode 100644 libs/user-core/src/index.ts
 create mode 100644 libs/user-core/tsconfig.json
 create mode 100644 libs/user-core/tsconfig.lib.json
 create mode 100644 libs/user-core/tsconfig.spec.json

diff --git a/.github/CODEOWNERS b/.github/CODEOWNERS
index 590887b3cad..9502a9c404d 100644
--- a/.github/CODEOWNERS
+++ b/.github/CODEOWNERS
@@ -18,6 +18,7 @@ apps/cli/src/auth @bitwarden/team-auth-dev
 apps/desktop/src/auth @bitwarden/team-auth-dev
 apps/web/src/app/auth @bitwarden/team-auth-dev
 libs/auth @bitwarden/team-auth-dev
+libs/user-core @bitwarden/team-auth-dev
 # web connectors used for auth
 apps/web/src/connectors @bitwarden/team-auth-dev
 bitwarden_license/bit-web/src/app/auth @bitwarden/team-auth-dev
diff --git a/libs/common/src/types/guid.ts b/libs/common/src/types/guid.ts
index bf891b55691..5edd34e4fc5 100644
--- a/libs/common/src/types/guid.ts
+++ b/libs/common/src/types/guid.ts
@@ -2,7 +2,9 @@ import { Opaque } from "type-fest";
 
 export type Guid = Opaque<string, "Guid">;
 
-export type UserId = Opaque<string, "UserId">;
+// Convenience re-export of UserId from it's original location, any library that
+// wants to be lower level than common should instead import it from user-core.
+export { UserId } from "@bitwarden/user-core";
 export type OrganizationId = Opaque<string, "OrganizationId">;
 export type CollectionId = Opaque<string, "CollectionId">;
 export type ProviderId = Opaque<string, "ProviderId">;
diff --git a/libs/user-core/README.md b/libs/user-core/README.md
new file mode 100644
index 00000000000..57975746606
--- /dev/null
+++ b/libs/user-core/README.md
@@ -0,0 +1,6 @@
+# user-core
+
+Owned by: auth
+
+The very basic concept that constitutes a user, this needs to be very low level to facilitate
+Platform keeping their own code low level.
diff --git a/libs/user-core/eslint.config.mjs b/libs/user-core/eslint.config.mjs
new file mode 100644
index 00000000000..9c37d10e3ff
--- /dev/null
+++ b/libs/user-core/eslint.config.mjs
@@ -0,0 +1,3 @@
+import baseConfig from "../../eslint.config.mjs";
+
+export default [...baseConfig];
diff --git a/libs/user-core/jest.config.js b/libs/user-core/jest.config.js
new file mode 100644
index 00000000000..e38a12f3eb5
--- /dev/null
+++ b/libs/user-core/jest.config.js
@@ -0,0 +1,10 @@
+module.exports = {
+  displayName: "user-core",
+  preset: "../../jest.preset.js",
+  testEnvironment: "node",
+  transform: {
+    "^.+\\.[tj]s$": ["ts-jest", { tsconfig: "<rootDir>/tsconfig.spec.json" }],
+  },
+  moduleFileExtensions: ["ts", "js", "html"],
+  coverageDirectory: "../../coverage/libs/user-core",
+};
diff --git a/libs/user-core/package.json b/libs/user-core/package.json
new file mode 100644
index 00000000000..2251d2ceace
--- /dev/null
+++ b/libs/user-core/package.json
@@ -0,0 +1,10 @@
+{
+  "name": "@bitwarden/user-core",
+  "version": "0.0.0",
+  "description": "The very basic concept that constitutes a user, this needs to be very low level to facilitate Platform keeping their own code low level.",
+  "type": "commonjs",
+  "main": "dist/index.js",
+  "types": "dist/index.d.ts",
+  "license": "GPL-3.0",
+  "author": "auth"
+}
diff --git a/libs/user-core/project.json b/libs/user-core/project.json
new file mode 100644
index 00000000000..60d5873208d
--- /dev/null
+++ b/libs/user-core/project.json
@@ -0,0 +1,27 @@
+{
+  "name": "user-core",
+  "$schema": "../../node_modules/nx/schemas/project-schema.json",
+  "sourceRoot": "libs/user-core/src",
+  "projectType": "library",
+  "tags": [],
+  "targets": {
+    "build": {
+      "executor": "@nx/js:tsc",
+      "outputs": ["{options.outputPath}"],
+      "options": {
+        "outputPath": "dist/libs/user-core",
+        "main": "libs/user-core/src/index.ts",
+        "tsConfig": "libs/user-core/tsconfig.lib.json",
+        "assets": ["libs/user-core/*.md"]
+      }
+    },
+    "test": {
+      "executor": "@nx/jest:jest",
+      "outputs": ["{workspaceRoot}/coverage/{projectRoot}"],
+      "options": {
+        "jestConfig": "libs/user-core/jest.config.js",
+        "passWithNoTests": true
+      }
+    }
+  }
+}
diff --git a/libs/user-core/src/index.ts b/libs/user-core/src/index.ts
new file mode 100644
index 00000000000..42e663c851a
--- /dev/null
+++ b/libs/user-core/src/index.ts
@@ -0,0 +1,9 @@
+import { Opaque } from "type-fest";
+
+/**
+ * The main identifier for a user. It is a string that should be in valid guid format.
+ *
+ * You should avoid `as UserId`-ing strings as much as possible and instead retrieve the {@see UserId} from
+ * a valid source instead.
+ */
+export type UserId = Opaque<string, "UserId">;
diff --git a/libs/user-core/tsconfig.json b/libs/user-core/tsconfig.json
new file mode 100644
index 00000000000..62ebbd94647
--- /dev/null
+++ b/libs/user-core/tsconfig.json
@@ -0,0 +1,13 @@
+{
+  "extends": "../../tsconfig.base.json",
+  "files": [],
+  "include": [],
+  "references": [
+    {
+      "path": "./tsconfig.lib.json"
+    },
+    {
+      "path": "./tsconfig.spec.json"
+    }
+  ]
+}
diff --git a/libs/user-core/tsconfig.lib.json b/libs/user-core/tsconfig.lib.json
new file mode 100644
index 00000000000..9cbf6736007
--- /dev/null
+++ b/libs/user-core/tsconfig.lib.json
@@ -0,0 +1,10 @@
+{
+  "extends": "./tsconfig.json",
+  "compilerOptions": {
+    "outDir": "../../dist/out-tsc",
+    "declaration": true,
+    "types": ["node"]
+  },
+  "include": ["src/**/*.ts"],
+  "exclude": ["jest.config.js", "src/**/*.spec.ts"]
+}
diff --git a/libs/user-core/tsconfig.spec.json b/libs/user-core/tsconfig.spec.json
new file mode 100644
index 00000000000..1275f148a18
--- /dev/null
+++ b/libs/user-core/tsconfig.spec.json
@@ -0,0 +1,10 @@
+{
+  "extends": "./tsconfig.json",
+  "compilerOptions": {
+    "outDir": "../../dist/out-tsc",
+    "module": "commonjs",
+    "moduleResolution": "node10",
+    "types": ["jest", "node"]
+  },
+  "include": ["jest.config.ts", "src/**/*.test.ts", "src/**/*.spec.ts", "src/**/*.d.ts"]
+}
diff --git a/package-lock.json b/package-lock.json
index e9701cbd7ee..d7c23e0997b 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -427,6 +427,10 @@
       "version": "0.0.0",
       "license": "GPL-3.0"
     },
+    "libs/user-core": {
+      "version": "0.0.0",
+      "license": "GPL-3.0"
+    },
     "libs/vault": {
       "name": "@bitwarden/vault",
       "version": "0.0.0",
@@ -4640,6 +4644,10 @@
       "resolved": "libs/ui/common",
       "link": true
     },
+    "node_modules/@bitwarden/user-core": {
+      "resolved": "libs/user-core",
+      "link": true
+    },
     "node_modules/@bitwarden/vault": {
       "resolved": "libs/vault",
       "link": true
diff --git a/tsconfig.base.json b/tsconfig.base.json
index c820306fd15..c462ab97d37 100644
--- a/tsconfig.base.json
+++ b/tsconfig.base.json
@@ -47,6 +47,7 @@
       "@bitwarden/storage-test-utils": ["libs/storage-test-utils/src/index.ts"],
       "@bitwarden/ui-common": ["./libs/ui/common/src"],
       "@bitwarden/ui-common/setup-jest": ["./libs/ui/common/src/setup-jest"],
+      "@bitwarden/user-core": ["libs/user-core/src/index.ts"],
       "@bitwarden/vault": ["./libs/vault/src"],
       "@bitwarden/vault-export-core": ["./libs/tools/export/vault-export/vault-export-core/src"],
       "@bitwarden/vault-export-ui": ["./libs/tools/export/vault-export/vault-export-ui/src"],

From 586d91e81676b2be27fefa0321cbc2420f1012e5 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Daniel=20Garc=C3=ADa?=
 <dani-garcia@users.noreply.github.com>
Date: Tue, 1 Jul 2025 22:02:57 +0200
Subject: [PATCH 039/239] Redact SignalR token from logs (#15402)

---
 .../internal/signalr-connection.service.ts    | 23 +++++++++++++++----
 1 file changed, 18 insertions(+), 5 deletions(-)

diff --git a/libs/common/src/platform/notifications/internal/signalr-connection.service.ts b/libs/common/src/platform/notifications/internal/signalr-connection.service.ts
index 8bea98cb506..58d6311c668 100644
--- a/libs/common/src/platform/notifications/internal/signalr-connection.service.ts
+++ b/libs/common/src/platform/notifications/internal/signalr-connection.service.ts
@@ -31,22 +31,35 @@ export type TimeoutManager = {
 class SignalRLogger implements ILogger {
   constructor(private readonly logService: LogService) {}
 
+  redactMessage(message: string): string {
+    const ACCESS_TOKEN_TEXT = "access_token=";
+    // Redact the access token from the logs if it exists.
+    const accessTokenIndex = message.indexOf(ACCESS_TOKEN_TEXT);
+    if (accessTokenIndex !== -1) {
+      return message.substring(0, accessTokenIndex + ACCESS_TOKEN_TEXT.length) + "[REDACTED]";
+    }
+
+    return message;
+  }
+
   log(logLevel: LogLevel, message: string): void {
+    const redactedMessage = `[SignalR] ${this.redactMessage(message)}`;
+
     switch (logLevel) {
       case LogLevel.Critical:
-        this.logService.error(message);
+        this.logService.error(redactedMessage);
         break;
       case LogLevel.Error:
-        this.logService.error(message);
+        this.logService.error(redactedMessage);
         break;
       case LogLevel.Warning:
-        this.logService.warning(message);
+        this.logService.warning(redactedMessage);
         break;
       case LogLevel.Information:
-        this.logService.info(message);
+        this.logService.info(redactedMessage);
         break;
       case LogLevel.Debug:
-        this.logService.debug(message);
+        this.logService.debug(redactedMessage);
         break;
     }
   }

From 3f7cb674afd1cb1452cf615d218eb638f2423418 Mon Sep 17 00:00:00 2001
From: Tyler <71953103+fntyler@users.noreply.github.com>
Date: Tue, 1 Jul 2025 16:31:59 -0400
Subject: [PATCH 040/239] BRE-883 build(firefox): check file size (#15399)

* build(firefox): check file size

if building `firefox` or `firefox-mv3`

    * check if any file(s) exceeds 4M (megabytes)

        - If true, fail and provide basic message.

* style: add clarity

sytle: add error message

* fix: relocate step

ensure final step of source files before validating

* test: add failure condition

* fix: source file target directory

* fix: test for failure condition

* test: remove failure condition

remove lines used for testing
---
 .github/workflows/build-browser.yml | 23 +++++++++++++++++++++++
 1 file changed, 23 insertions(+)

diff --git a/.github/workflows/build-browser.yml b/.github/workflows/build-browser.yml
index ea113f8b9a5..c75298a3e92 100644
--- a/.github/workflows/build-browser.yml
+++ b/.github/workflows/build-browser.yml
@@ -268,6 +268,29 @@ jobs:
         working-directory: browser-source/
         run: npm link ../sdk-internal
 
+      - name: Check source file size
+        if: ${{ startsWith(matrix.name, 'firefox') }}
+        run: |
+          # Declare variable as indexed array
+          declare -a FILES
+
+          # Search for source files that are greater than 4M
+          TARGET_DIR='./browser-source/apps/browser'
+          while IFS=' ' read -r RESULT; do
+              FILES+=("$RESULT")
+          done < <(find $TARGET_DIR -size +4M)
+
+          # Validate results and provide messaging
+          if [[ ${#FILES[@]} -ne 0 ]]; then
+              echo "File(s) exceeds size limit: 4MB"
+              for FILE in ${FILES[@]}; do
+                  echo "- $(du --si $FILE)"
+              done
+              echo "ERROR Firefox rejects extension uploads that contain files larger than 4MB"
+              # Invoke failure
+              exit 1
+          fi
+
       - name: Build extension
         run: npm run ${{ matrix.npm_command }}
         working-directory: browser-source/apps/browser

From 616ac9a3c8e6ab613933236c3f5dee18d9bc9525 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Daniel=20Garc=C3=ADa?=
 <dani-garcia@users.noreply.github.com>
Date: Tue, 1 Jul 2025 22:36:18 +0200
Subject: [PATCH 041/239] Fix Clippy 1.88 warnings (#15396)

* Fix Clippy 1.88 warnings

* Fmt
---
 .../desktop_native/core/src/ssh_agent/mod.rs  |  9 ++++-----
 .../desktop_native/core/src/ssh_agent/unix.rs | 20 ++++---------------
 .../desktop_native/macos_provider/src/lib.rs  |  3 +--
 apps/desktop/desktop_native/napi/src/lib.rs   |  4 ++--
 apps/desktop/desktop_native/objc/src/lib.rs   |  8 ++------
 apps/desktop/desktop_native/proxy/src/main.rs |  4 ++--
 6 files changed, 15 insertions(+), 33 deletions(-)

diff --git a/apps/desktop/desktop_native/core/src/ssh_agent/mod.rs b/apps/desktop/desktop_native/core/src/ssh_agent/mod.rs
index 5f794b49c73..63348904e46 100644
--- a/apps/desktop/desktop_native/core/src/ssh_agent/mod.rs
+++ b/apps/desktop/desktop_native/core/src/ssh_agent/mod.rs
@@ -51,7 +51,7 @@ impl ssh_agent::Agent<peerinfo::models::PeerInfo> for BitwardenDesktopAgent {
         let request_data = match request_parser::parse_request(data) {
             Ok(data) => data,
             Err(e) => {
-                println!("[SSH Agent] Error while parsing request: {}", e);
+                println!("[SSH Agent] Error while parsing request: {e}");
                 return false;
             }
         };
@@ -178,7 +178,7 @@ impl BitwardenDesktopAgent {
                     );
                 }
                 Err(e) => {
-                    eprintln!("[SSH Agent Native Module] Error while parsing key: {}", e);
+                    eprintln!("[SSH Agent Native Module] Error while parsing key: {e}");
                 }
             }
         }
@@ -234,10 +234,9 @@ fn parse_key_safe(pem: &str) -> Result<ssh_key::private::PrivateKey, anyhow::Err
         Ok(key) => match key.public_key().to_bytes() {
             Ok(_) => Ok(key),
             Err(e) => Err(anyhow::Error::msg(format!(
-                "Failed to parse public key: {}",
-                e
+                "Failed to parse public key: {e}"
             ))),
         },
-        Err(e) => Err(anyhow::Error::msg(format!("Failed to parse key: {}", e))),
+        Err(e) => Err(anyhow::Error::msg(format!("Failed to parse key: {e}"))),
     }
 }
diff --git a/apps/desktop/desktop_native/core/src/ssh_agent/unix.rs b/apps/desktop/desktop_native/core/src/ssh_agent/unix.rs
index 6644da508f4..ed297a9002f 100644
--- a/apps/desktop/desktop_native/core/src/ssh_agent/unix.rs
+++ b/apps/desktop/desktop_native/core/src/ssh_agent/unix.rs
@@ -65,16 +65,10 @@ impl BitwardenDesktopAgent {
                 }
             };
 
-            println!(
-                "[SSH Agent Native Module] Starting SSH Agent server on {:?}",
-                ssh_path
-            );
+            println!("[SSH Agent Native Module] Starting SSH Agent server on {ssh_path:?}");
             let sockname = std::path::Path::new(&ssh_path);
             if let Err(e) = std::fs::remove_file(sockname) {
-                println!(
-                    "[SSH Agent Native Module] Could not remove existing socket file: {}",
-                    e
-                );
+                println!("[SSH Agent Native Module] Could not remove existing socket file: {e}");
                 if e.kind() != std::io::ErrorKind::NotFound {
                     return;
                 }
@@ -85,10 +79,7 @@ impl BitwardenDesktopAgent {
                     // Only the current user should be able to access the socket
                     if let Err(e) = fs::set_permissions(sockname, fs::Permissions::from_mode(0o600))
                     {
-                        println!(
-                            "[SSH Agent Native Module] Could not set socket permissions: {}",
-                            e
-                        );
+                        println!("[SSH Agent Native Module] Could not set socket permissions: {e}");
                         return;
                     }
 
@@ -112,10 +103,7 @@ impl BitwardenDesktopAgent {
                     println!("[SSH Agent Native Module] SSH Agent server exited");
                 }
                 Err(e) => {
-                    eprintln!(
-                        "[SSH Agent Native Module] Error while starting agent server: {}",
-                        e
-                    );
+                    eprintln!("[SSH Agent Native Module] Error while starting agent server: {e}");
                 }
             }
         });
diff --git a/apps/desktop/desktop_native/macos_provider/src/lib.rs b/apps/desktop/desktop_native/macos_provider/src/lib.rs
index 8f2499ae68d..32d2514f1dd 100644
--- a/apps/desktop/desktop_native/macos_provider/src/lib.rs
+++ b/apps/desktop/desktop_native/macos_provider/src/lib.rs
@@ -214,8 +214,7 @@ impl MacOSProviderClient {
                 .remove(&sequence_number)
             {
                 cb.error(BitwardenError::Internal(format!(
-                    "Error sending message: {}",
-                    e
+                    "Error sending message: {e}"
                 )));
             }
         }
diff --git a/apps/desktop/desktop_native/napi/src/lib.rs b/apps/desktop/desktop_native/napi/src/lib.rs
index e538dc8d432..fb80ec451a4 100644
--- a/apps/desktop/desktop_native/napi/src/lib.rs
+++ b/apps/desktop/desktop_native/napi/src/lib.rs
@@ -237,7 +237,7 @@ pub mod sshagent {
                                     .expect("should be able to send auth response to agent");
                             }
                             Err(e) => {
-                                println!("[SSH Agent Native Module] calling UI callback promise was rejected: {}", e);
+                                println!("[SSH Agent Native Module] calling UI callback promise was rejected: {e}");
                                 let _ = auth_response_tx_arc
                                     .lock()
                                     .await
@@ -246,7 +246,7 @@ pub mod sshagent {
                             }
                         },
                         Err(e) => {
-                            println!("[SSH Agent Native Module] calling UI callback could not create promise: {}", e);
+                            println!("[SSH Agent Native Module] calling UI callback could not create promise: {e}");
                             let _ = auth_response_tx_arc
                                 .lock()
                                 .await
diff --git a/apps/desktop/desktop_native/objc/src/lib.rs b/apps/desktop/desktop_native/objc/src/lib.rs
index f5a7623cfc3..60e48760da8 100644
--- a/apps/desktop/desktop_native/objc/src/lib.rs
+++ b/apps/desktop/desktop_native/objc/src/lib.rs
@@ -80,8 +80,7 @@ mod objc {
             Ok(value) => value,
             Err(e) => {
                 println!(
-                    "Error: Failed to convert ObjCString to Rust string during commandReturn: {}",
-                    e
+                    "Error: Failed to convert ObjCString to Rust string during commandReturn: {e}"
                 );
 
                 return false;
@@ -91,10 +90,7 @@ mod objc {
         match context.send(value) {
             Ok(_) => 0,
             Err(e) => {
-                println!(
-                    "Error: Failed to return ObjCString from ObjC code to Rust code: {}",
-                    e
-                );
+                println!("Error: Failed to return ObjCString from ObjC code to Rust code: {e}");
 
                 return false;
             }
diff --git a/apps/desktop/desktop_native/proxy/src/main.rs b/apps/desktop/desktop_native/proxy/src/main.rs
index ba29e00cf13..7b3337cce71 100644
--- a/apps/desktop/desktop_native/proxy/src/main.rs
+++ b/apps/desktop/desktop_native/proxy/src/main.rs
@@ -29,12 +29,12 @@ fn init_logging(log_path: &Path, console_level: LevelFilter, file_level: LevelFi
             loggers.push(simplelog::WriteLogger::new(file_level, config, file));
         }
         Err(e) => {
-            eprintln!("Can't create file: {}", e);
+            eprintln!("Can't create file: {e}");
         }
     }
 
     if let Err(e) = CombinedLogger::init(loggers) {
-        eprintln!("Failed to initialize logger: {}", e);
+        eprintln!("Failed to initialize logger: {e}");
     }
 }
 

From 5497063e7e79fd74c7dbef7ee3d30ba34b6bce52 Mon Sep 17 00:00:00 2001
From: Addison Beck <github@addisonbeck.com>
Date: Tue, 1 Jul 2025 19:23:34 -0400
Subject: [PATCH 042/239] refactor(state): point storage imports to
 @bitwarden/storage-core (#15414)

This change updates every import of StorageServiceProvider,
AbstractStorageService, and ObservableStorageService throughout the common
state code (including spec files) to pull from the new
@bitwarden/storage-core package instead of their old relative paths. The cuts
out one of the issues that needs to be resolved before state can hold its own
as a library without importing common.
---
 .../implementations/default-active-user-state.spec.ts     | 3 ++-
 .../implementations/default-global-state.provider.ts      | 3 ++-
 .../state/implementations/default-global-state.ts         | 6 ++----
 .../implementations/default-single-user-state.provider.ts | 3 ++-
 .../state/implementations/default-single-user-state.ts    | 6 ++----
 .../state/implementations/specific-state.provider.spec.ts | 3 ++-
 .../src/platform/state/implementations/state-base.ts      | 6 ++----
 libs/common/src/platform/state/implementations/util.ts    | 2 +-
 .../platform/state/state-event-registrar.service.spec.ts  | 8 ++++++--
 .../src/platform/state/state-event-runner.service.spec.ts | 8 ++++++--
 .../src/platform/state/state-event-runner.service.ts      | 3 ++-
 11 files changed, 29 insertions(+), 22 deletions(-)

diff --git a/libs/common/src/platform/state/implementations/default-active-user-state.spec.ts b/libs/common/src/platform/state/implementations/default-active-user-state.spec.ts
index b73415d6b79..1cb1453a509 100644
--- a/libs/common/src/platform/state/implementations/default-active-user-state.spec.ts
+++ b/libs/common/src/platform/state/implementations/default-active-user-state.spec.ts
@@ -6,12 +6,13 @@ import { any, mock } from "jest-mock-extended";
 import { BehaviorSubject, firstValueFrom, map, of, timeout } from "rxjs";
 import { Jsonify } from "type-fest";
 
+import { StorageServiceProvider } from "@bitwarden/storage-core";
+
 import { awaitAsync, trackEmissions } from "../../../../spec";
 import { FakeStorageService } from "../../../../spec/fake-storage.service";
 import { Account } from "../../../auth/abstractions/account.service";
 import { UserId } from "../../../types/guid";
 import { LogService } from "../../abstractions/log.service";
-import { StorageServiceProvider } from "../../services/storage-service.provider";
 import { StateDefinition } from "../state-definition";
 import { StateEventRegistrarService } from "../state-event-registrar.service";
 import { UserKeyDefinition } from "../user-key-definition";
diff --git a/libs/common/src/platform/state/implementations/default-global-state.provider.ts b/libs/common/src/platform/state/implementations/default-global-state.provider.ts
index 18e9c21e75e..bd0cfc1dc9a 100644
--- a/libs/common/src/platform/state/implementations/default-global-state.provider.ts
+++ b/libs/common/src/platform/state/implementations/default-global-state.provider.ts
@@ -1,7 +1,8 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
+import { StorageServiceProvider } from "@bitwarden/storage-core";
+
 import { LogService } from "../../abstractions/log.service";
-import { StorageServiceProvider } from "../../services/storage-service.provider";
 import { GlobalState } from "../global-state";
 import { GlobalStateProvider } from "../global-state.provider";
 import { KeyDefinition } from "../key-definition";
diff --git a/libs/common/src/platform/state/implementations/default-global-state.ts b/libs/common/src/platform/state/implementations/default-global-state.ts
index c88e9303c8e..a06eb23e010 100644
--- a/libs/common/src/platform/state/implementations/default-global-state.ts
+++ b/libs/common/src/platform/state/implementations/default-global-state.ts
@@ -1,8 +1,6 @@
+import { AbstractStorageService, ObservableStorageService } from "@bitwarden/storage-core";
+
 import { LogService } from "../../abstractions/log.service";
-import {
-  AbstractStorageService,
-  ObservableStorageService,
-} from "../../abstractions/storage.service";
 import { GlobalState } from "../global-state";
 import { KeyDefinition, globalKeyBuilder } from "../key-definition";
 
diff --git a/libs/common/src/platform/state/implementations/default-single-user-state.provider.ts b/libs/common/src/platform/state/implementations/default-single-user-state.provider.ts
index 54e268e0b69..bef56ad2309 100644
--- a/libs/common/src/platform/state/implementations/default-single-user-state.provider.ts
+++ b/libs/common/src/platform/state/implementations/default-single-user-state.provider.ts
@@ -1,8 +1,9 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
+import { StorageServiceProvider } from "@bitwarden/storage-core";
+
 import { UserId } from "../../../types/guid";
 import { LogService } from "../../abstractions/log.service";
-import { StorageServiceProvider } from "../../services/storage-service.provider";
 import { StateEventRegistrarService } from "../state-event-registrar.service";
 import { UserKeyDefinition } from "../user-key-definition";
 import { SingleUserState } from "../user-state";
diff --git a/libs/common/src/platform/state/implementations/default-single-user-state.ts b/libs/common/src/platform/state/implementations/default-single-user-state.ts
index 1dafd3aecad..db776c3d11d 100644
--- a/libs/common/src/platform/state/implementations/default-single-user-state.ts
+++ b/libs/common/src/platform/state/implementations/default-single-user-state.ts
@@ -1,11 +1,9 @@
 import { Observable, combineLatest, of } from "rxjs";
 
+import { AbstractStorageService, ObservableStorageService } from "@bitwarden/storage-core";
+
 import { UserId } from "../../../types/guid";
 import { LogService } from "../../abstractions/log.service";
-import {
-  AbstractStorageService,
-  ObservableStorageService,
-} from "../../abstractions/storage.service";
 import { StateEventRegistrarService } from "../state-event-registrar.service";
 import { UserKeyDefinition } from "../user-key-definition";
 import { CombinedState, SingleUserState } from "../user-state";
diff --git a/libs/common/src/platform/state/implementations/specific-state.provider.spec.ts b/libs/common/src/platform/state/implementations/specific-state.provider.spec.ts
index 1b5a36445c9..6674c2577d7 100644
--- a/libs/common/src/platform/state/implementations/specific-state.provider.spec.ts
+++ b/libs/common/src/platform/state/implementations/specific-state.provider.spec.ts
@@ -1,10 +1,11 @@
 import { mock } from "jest-mock-extended";
 
+import { StorageServiceProvider } from "@bitwarden/storage-core";
+
 import { mockAccountServiceWith } from "../../../../spec/fake-account-service";
 import { FakeStorageService } from "../../../../spec/fake-storage.service";
 import { UserId } from "../../../types/guid";
 import { LogService } from "../../abstractions/log.service";
-import { StorageServiceProvider } from "../../services/storage-service.provider";
 import { KeyDefinition } from "../key-definition";
 import { StateDefinition } from "../state-definition";
 import { StateEventRegistrarService } from "../state-event-registrar.service";
diff --git a/libs/common/src/platform/state/implementations/state-base.ts b/libs/common/src/platform/state/implementations/state-base.ts
index 578720a2281..03140e1fe1f 100644
--- a/libs/common/src/platform/state/implementations/state-base.ts
+++ b/libs/common/src/platform/state/implementations/state-base.ts
@@ -15,12 +15,10 @@ import {
 } from "rxjs";
 import { Jsonify } from "type-fest";
 
+import { AbstractStorageService, ObservableStorageService } from "@bitwarden/storage-core";
+
 import { StorageKey } from "../../../types/state";
 import { LogService } from "../../abstractions/log.service";
-import {
-  AbstractStorageService,
-  ObservableStorageService,
-} from "../../abstractions/storage.service";
 import { DebugOptions } from "../key-definition";
 import { populateOptionsWithDefault, StateUpdateOptions } from "../state-update-options";
 
diff --git a/libs/common/src/platform/state/implementations/util.ts b/libs/common/src/platform/state/implementations/util.ts
index 0a9d76f6da5..14b11f6b553 100644
--- a/libs/common/src/platform/state/implementations/util.ts
+++ b/libs/common/src/platform/state/implementations/util.ts
@@ -1,6 +1,6 @@
 import { Jsonify } from "type-fest";
 
-import { AbstractStorageService } from "../../abstractions/storage.service";
+import { AbstractStorageService } from "@bitwarden/storage-core";
 
 export async function getStoredValue<T>(
   key: string,
diff --git a/libs/common/src/platform/state/state-event-registrar.service.spec.ts b/libs/common/src/platform/state/state-event-registrar.service.spec.ts
index 2fae985033b..b022e2ce413 100644
--- a/libs/common/src/platform/state/state-event-registrar.service.spec.ts
+++ b/libs/common/src/platform/state/state-event-registrar.service.spec.ts
@@ -1,8 +1,12 @@
 import { mock } from "jest-mock-extended";
 
+import {
+  AbstractStorageService,
+  ObservableStorageService,
+  StorageServiceProvider,
+} from "@bitwarden/storage-core";
+
 import { FakeGlobalStateProvider } from "../../../spec";
-import { AbstractStorageService, ObservableStorageService } from "../abstractions/storage.service";
-import { StorageServiceProvider } from "../services/storage-service.provider";
 
 import { StateDefinition } from "./state-definition";
 import { STATE_LOCK_EVENT, StateEventRegistrarService } from "./state-event-registrar.service";
diff --git a/libs/common/src/platform/state/state-event-runner.service.spec.ts b/libs/common/src/platform/state/state-event-runner.service.spec.ts
index 1c98099a518..4aef3d8516c 100644
--- a/libs/common/src/platform/state/state-event-runner.service.spec.ts
+++ b/libs/common/src/platform/state/state-event-runner.service.spec.ts
@@ -1,9 +1,13 @@
 import { mock } from "jest-mock-extended";
 
+import {
+  AbstractStorageService,
+  ObservableStorageService,
+  StorageServiceProvider,
+} from "@bitwarden/storage-core";
+
 import { FakeGlobalStateProvider } from "../../../spec";
 import { UserId } from "../../types/guid";
-import { AbstractStorageService, ObservableStorageService } from "../abstractions/storage.service";
-import { StorageServiceProvider } from "../services/storage-service.provider";
 
 import { STATE_LOCK_EVENT } from "./state-event-registrar.service";
 import { StateEventRunnerService } from "./state-event-runner.service";
diff --git a/libs/common/src/platform/state/state-event-runner.service.ts b/libs/common/src/platform/state/state-event-runner.service.ts
index f24c50f86d6..9e6f8f214e1 100644
--- a/libs/common/src/platform/state/state-event-runner.service.ts
+++ b/libs/common/src/platform/state/state-event-runner.service.ts
@@ -2,8 +2,9 @@
 // @ts-strict-ignore
 import { firstValueFrom } from "rxjs";
 
+import { StorageServiceProvider } from "@bitwarden/storage-core";
+
 import { UserId } from "../../types/guid";
-import { StorageServiceProvider } from "../services/storage-service.provider";
 
 import { GlobalState } from "./global-state";
 import { GlobalStateProvider } from "./global-state.provider";

From 1837974e0a86be48b519c9974476f4fb9a995bff Mon Sep 17 00:00:00 2001
From: SmithThe4th <gsmith@bitwarden.com>
Date: Wed, 2 Jul 2025 09:41:35 -0400
Subject: [PATCH 043/239] show failed to decrypt dialog when viewing a cipher
 on desktop (#15405)

---
 apps/desktop/src/vault/app/vault/vault-v2.component.ts | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/apps/desktop/src/vault/app/vault/vault-v2.component.ts b/apps/desktop/src/vault/app/vault/vault-v2.component.ts
index 1248f32d1ac..2d741944071 100644
--- a/apps/desktop/src/vault/app/vault/vault-v2.component.ts
+++ b/apps/desktop/src/vault/app/vault/vault-v2.component.ts
@@ -388,6 +388,13 @@ export class VaultV2Component implements OnInit, OnDestroy, CopyClickListener {
   }
 
   async viewCipher(cipher: CipherView) {
+    if (cipher.decryptionFailure) {
+      DecryptionFailureDialogComponent.open(this.dialogService, {
+        cipherIds: [cipher.id as CipherId],
+      });
+      return;
+    }
+
     if (await this.shouldReprompt(cipher, "view")) {
       return;
     }

From cc65f5efc6a417acea6e6349e3e3d97783f20139 Mon Sep 17 00:00:00 2001
From: rr-bw <102181210+rr-bw@users.noreply.github.com>
Date: Wed, 2 Jul 2025 07:23:45 -0700
Subject: [PATCH 044/239] feat(set-initial-password): [Auth/PM-18784]
 SetInitialPasswordComponent Handle TDE Offboarding (#14861)

This PR makes it so that `SetInitialPasswordComponent` handles the TDE offboarding flow where an org user now needs to set an initial master password.

Feature flag: `PM16117_SetInitialPasswordRefactor`
---
 ...initial-password.service.implementation.ts |  42 +++++
 ...fault-set-initial-password.service.spec.ts | 132 ++++++++++++++--
 .../set-initial-password.component.html       |   7 +-
 .../set-initial-password.component.ts         | 148 ++++++++++++------
 ...et-initial-password.service.abstraction.ts |  25 +++
 .../src/auth/utils/assert-non-nullish.util.ts |  45 ++++++
 .../src/auth/utils/assert-truthy.util.ts      |  46 ++++++
 libs/common/src/auth/utils/index.ts           |   2 +
 8 files changed, 391 insertions(+), 56 deletions(-)
 create mode 100644 libs/common/src/auth/utils/assert-non-nullish.util.ts
 create mode 100644 libs/common/src/auth/utils/assert-truthy.util.ts
 create mode 100644 libs/common/src/auth/utils/index.ts

diff --git a/libs/angular/src/auth/password-management/set-initial-password/default-set-initial-password.service.implementation.ts b/libs/angular/src/auth/password-management/set-initial-password/default-set-initial-password.service.implementation.ts
index 1c5edb00c8c..dd81f560939 100644
--- a/libs/angular/src/auth/password-management/set-initial-password/default-set-initial-password.service.implementation.ts
+++ b/libs/angular/src/auth/password-management/set-initial-password/default-set-initial-password.service.implementation.ts
@@ -14,6 +14,7 @@ import { OrganizationApiServiceAbstraction } from "@bitwarden/common/admin-conso
 import { MasterPasswordApiService } from "@bitwarden/common/auth/abstractions/master-password-api.service.abstraction";
 import { ForceSetPasswordReason } from "@bitwarden/common/auth/models/domain/force-set-password-reason";
 import { SetPasswordRequest } from "@bitwarden/common/auth/models/request/set-password.request";
+import { UpdateTdeOffboardingPasswordRequest } from "@bitwarden/common/auth/models/request/update-tde-offboarding-password.request";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
 import { InternalMasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
 import { KeysRequest } from "@bitwarden/common/models/request/keys.request";
@@ -28,6 +29,7 @@ import {
   SetInitialPasswordService,
   SetInitialPasswordCredentials,
   SetInitialPasswordUserType,
+  SetInitialPasswordTdeOffboardingCredentials,
 } from "./set-initial-password.service.abstraction";
 
 export class DefaultSetInitialPasswordService implements SetInitialPasswordService {
@@ -245,4 +247,44 @@ export class DefaultSetInitialPasswordService implements SetInitialPasswordServi
       enrollmentRequest,
     );
   }
+
+  async setInitialPasswordTdeOffboarding(
+    credentials: SetInitialPasswordTdeOffboardingCredentials,
+    userId: UserId,
+  ) {
+    const { newMasterKey, newServerMasterKeyHash, newPasswordHint } = credentials;
+    for (const [key, value] of Object.entries(credentials)) {
+      if (value == null) {
+        throw new Error(`${key} not found. Could not set password.`);
+      }
+    }
+
+    if (userId == null) {
+      throw new Error("userId not found. Could not set password.");
+    }
+
+    const userKey = await firstValueFrom(this.keyService.userKey$(userId));
+    if (userKey == null) {
+      throw new Error("userKey not found. Could not set password.");
+    }
+
+    const newMasterKeyEncryptedUserKey = await this.keyService.encryptUserKeyWithMasterKey(
+      newMasterKey,
+      userKey,
+    );
+
+    if (!newMasterKeyEncryptedUserKey[1].encryptedString) {
+      throw new Error("newMasterKeyEncryptedUserKey not found. Could not set password.");
+    }
+
+    const request = new UpdateTdeOffboardingPasswordRequest();
+    request.key = newMasterKeyEncryptedUserKey[1].encryptedString;
+    request.newMasterPasswordHash = newServerMasterKeyHash;
+    request.masterPasswordHint = newPasswordHint;
+
+    await this.masterPasswordApiService.putUpdateTdeOffboardingPassword(request);
+
+    // Clear force set password reason to allow navigation back to vault.
+    await this.masterPasswordService.setForceSetPasswordReason(ForceSetPasswordReason.None, userId);
+  }
 }
diff --git a/libs/angular/src/auth/password-management/set-initial-password/default-set-initial-password.service.spec.ts b/libs/angular/src/auth/password-management/set-initial-password/default-set-initial-password.service.spec.ts
index ca4d9adbd67..979dc5ee82f 100644
--- a/libs/angular/src/auth/password-management/set-initial-password/default-set-initial-password.service.spec.ts
+++ b/libs/angular/src/auth/password-management/set-initial-password/default-set-initial-password.service.spec.ts
@@ -19,6 +19,7 @@ import { OrganizationKeysResponse } from "@bitwarden/common/admin-console/models
 import { MasterPasswordApiService } from "@bitwarden/common/auth/abstractions/master-password-api.service.abstraction";
 import { ForceSetPasswordReason } from "@bitwarden/common/auth/models/domain/force-set-password-reason";
 import { SetPasswordRequest } from "@bitwarden/common/auth/models/request/set-password.request";
+import { UpdateTdeOffboardingPasswordRequest } from "@bitwarden/common/auth/models/request/update-tde-offboarding-password.request";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
 import { InternalMasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
 import { KeysRequest } from "@bitwarden/common/models/request/keys.request";
@@ -35,6 +36,7 @@ import { DefaultSetInitialPasswordService } from "./default-set-initial-password
 import {
   SetInitialPasswordCredentials,
   SetInitialPasswordService,
+  SetInitialPasswordTdeOffboardingCredentials,
   SetInitialPasswordUserType,
 } from "./set-initial-password.service.abstraction";
 
@@ -52,6 +54,11 @@ describe("DefaultSetInitialPasswordService", () => {
   let organizationUserApiService: MockProxy<OrganizationUserApiService>;
   let userDecryptionOptionsService: MockProxy<InternalUserDecryptionOptionsServiceAbstraction>;
 
+  let userId: UserId;
+  let userKey: UserKey;
+  let userKeyEncString: EncString;
+  let masterKeyEncryptedUserKey: [UserKey, EncString];
+
   beforeEach(() => {
     apiService = mock<ApiService>();
     encryptService = mock<EncryptService>();
@@ -64,6 +71,11 @@ describe("DefaultSetInitialPasswordService", () => {
     organizationUserApiService = mock<OrganizationUserApiService>();
     userDecryptionOptionsService = mock<InternalUserDecryptionOptionsServiceAbstraction>();
 
+    userId = "userId" as UserId;
+    userKey = new SymmetricCryptoKey(new Uint8Array(64).buffer as CsprngArray) as UserKey;
+    userKeyEncString = new EncString("masterKeyEncryptedUserKey");
+    masterKeyEncryptedUserKey = [userKey, userKeyEncString];
+
     sut = new DefaultSetInitialPasswordService(
       apiService,
       encryptService,
@@ -86,13 +98,8 @@ describe("DefaultSetInitialPasswordService", () => {
     // Mock function parameters
     let credentials: SetInitialPasswordCredentials;
     let userType: SetInitialPasswordUserType;
-    let userId: UserId;
 
     // Mock other function data
-    let userKey: UserKey;
-    let userKeyEncString: EncString;
-    let masterKeyEncryptedUserKey: [UserKey, EncString];
-
     let existingUserPublicKey: UserPublicKey;
     let existingUserPrivateKey: UserPrivateKey;
     let userKeyEncryptedPrivateKey: EncString;
@@ -121,14 +128,9 @@ describe("DefaultSetInitialPasswordService", () => {
         orgId: "orgId",
         resetPasswordAutoEnroll: false,
       };
-      userId = "userId" as UserId;
       userType = SetInitialPasswordUserType.JIT_PROVISIONED_MP_ORG_USER;
 
       // Mock other function data
-      userKey = new SymmetricCryptoKey(new Uint8Array(64).buffer as CsprngArray) as UserKey;
-      userKeyEncString = new EncString("masterKeyEncryptedUserKey");
-      masterKeyEncryptedUserKey = [userKey, userKeyEncString];
-
       existingUserPublicKey = Utils.fromB64ToArray("existingUserPublicKey") as UserPublicKey;
       existingUserPrivateKey = Utils.fromB64ToArray("existingUserPrivateKey") as UserPrivateKey;
       userKeyEncryptedPrivateKey = new EncString("userKeyEncryptedPrivateKey");
@@ -630,4 +632,114 @@ describe("DefaultSetInitialPasswordService", () => {
       });
     });
   });
+
+  describe("setInitialPasswordTdeOffboarding(...)", () => {
+    // Mock function parameters
+    let credentials: SetInitialPasswordTdeOffboardingCredentials;
+
+    beforeEach(() => {
+      // Mock function parameters
+      credentials = {
+        newMasterKey: new SymmetricCryptoKey(new Uint8Array(32).buffer as CsprngArray) as MasterKey,
+        newServerMasterKeyHash: "newServerMasterKeyHash",
+        newPasswordHint: "newPasswordHint",
+      };
+    });
+
+    function setupTdeOffboardingMocks() {
+      keyService.userKey$.mockReturnValue(of(userKey));
+      keyService.encryptUserKeyWithMasterKey.mockResolvedValue(masterKeyEncryptedUserKey);
+    }
+
+    it("should successfully set an initial password for the TDE offboarding user", async () => {
+      // Arrange
+      setupTdeOffboardingMocks();
+
+      const request = new UpdateTdeOffboardingPasswordRequest();
+      request.key = masterKeyEncryptedUserKey[1].encryptedString;
+      request.newMasterPasswordHash = credentials.newServerMasterKeyHash;
+      request.masterPasswordHint = credentials.newPasswordHint;
+
+      // Act
+      await sut.setInitialPasswordTdeOffboarding(credentials, userId);
+
+      // Assert
+      expect(masterPasswordApiService.putUpdateTdeOffboardingPassword).toHaveBeenCalledTimes(1);
+      expect(masterPasswordApiService.putUpdateTdeOffboardingPassword).toHaveBeenCalledWith(
+        request,
+      );
+    });
+
+    describe("given the initial password has been successfully set", () => {
+      it("should clear the ForceSetPasswordReason by setting it to None", async () => {
+        // Arrange
+        setupTdeOffboardingMocks();
+
+        // Act
+        await sut.setInitialPasswordTdeOffboarding(credentials, userId);
+
+        // Assert
+        expect(masterPasswordApiService.putUpdateTdeOffboardingPassword).toHaveBeenCalledTimes(1);
+        expect(masterPasswordService.setForceSetPasswordReason).toHaveBeenCalledWith(
+          ForceSetPasswordReason.None,
+          userId,
+        );
+      });
+    });
+
+    describe("general error handling", () => {
+      ["newMasterKey", "newServerMasterKeyHash", "newPasswordHint"].forEach((key) => {
+        it(`should throw if ${key} is not provided on the SetInitialPasswordTdeOffboardingCredentials object`, async () => {
+          // Arrange
+          const invalidCredentials: SetInitialPasswordTdeOffboardingCredentials = {
+            ...credentials,
+            [key]: null,
+          };
+
+          // Act
+          const promise = sut.setInitialPasswordTdeOffboarding(invalidCredentials, userId);
+
+          // Assert
+          await expect(promise).rejects.toThrow(`${key} not found. Could not set password.`);
+        });
+      });
+
+      it(`should throw if the userId was not passed in`, async () => {
+        // Arrange
+        userId = null;
+
+        // Act
+        const promise = sut.setInitialPasswordTdeOffboarding(credentials, userId);
+
+        // Assert
+        await expect(promise).rejects.toThrow("userId not found. Could not set password.");
+      });
+
+      it(`should throw if the userKey was not found`, async () => {
+        // Arrange
+        keyService.userKey$.mockReturnValue(of(null));
+
+        // Act
+        const promise = sut.setInitialPasswordTdeOffboarding(credentials, userId);
+
+        // Assert
+        await expect(promise).rejects.toThrow("userKey not found. Could not set password.");
+      });
+
+      it(`should throw if a newMasterKeyEncryptedUserKey was not returned`, async () => {
+        // Arrange
+        masterKeyEncryptedUserKey[1].encryptedString = "" as EncryptedString;
+
+        setupTdeOffboardingMocks();
+
+        // Act
+        const promise = sut.setInitialPasswordTdeOffboarding(credentials, userId);
+
+        // Assert
+        await expect(promise).rejects.toThrow(
+          "newMasterKeyEncryptedUserKey not found. Could not set password.",
+        );
+      });
+    });
+  });
 });
diff --git a/libs/angular/src/auth/password-management/set-initial-password/set-initial-password.component.html b/libs/angular/src/auth/password-management/set-initial-password/set-initial-password.component.html
index c83cbbe3521..4956f293d1e 100644
--- a/libs/angular/src/auth/password-management/set-initial-password/set-initial-password.component.html
+++ b/libs/angular/src/auth/password-management/set-initial-password/set-initial-password.component.html
@@ -21,7 +21,12 @@
     [userId]="userId"
     [loading]="submitting"
     [masterPasswordPolicyOptions]="masterPasswordPolicyOptions"
-    [primaryButtonText]="{ key: 'createAccount' }"
+    [primaryButtonText]="{
+      key:
+        userType === SetInitialPasswordUserType.OFFBOARDED_TDE_ORG_USER
+          ? 'setPassword'
+          : 'createAccount',
+    }"
     [secondaryButtonText]="{ key: 'logOut' }"
     (onPasswordFormSubmit)="handlePasswordFormSubmit($event)"
     (onSecondaryButtonClick)="logout()"
diff --git a/libs/angular/src/auth/password-management/set-initial-password/set-initial-password.component.ts b/libs/angular/src/auth/password-management/set-initial-password/set-initial-password.component.ts
index fbab9eaa2c3..2de9aaf7b75 100644
--- a/libs/angular/src/auth/password-management/set-initial-password/set-initial-password.component.ts
+++ b/libs/angular/src/auth/password-management/set-initial-password/set-initial-password.component.ts
@@ -10,14 +10,20 @@ import {
   InputPasswordFlow,
   PasswordInputResult,
 } from "@bitwarden/auth/angular";
+// This import has been flagged as unallowed for this class. It may be involved in a circular dependency loop.
+// eslint-disable-next-line no-restricted-imports
+import { LogoutService } from "@bitwarden/auth/common";
 import { OrganizationApiServiceAbstraction } from "@bitwarden/common/admin-console/abstractions/organization/organization-api.service.abstraction";
 import { PolicyApiServiceAbstraction } from "@bitwarden/common/admin-console/abstractions/policy/policy-api.service.abstraction";
+import { PolicyService } from "@bitwarden/common/admin-console/abstractions/policy/policy.service.abstraction";
 import { MasterPasswordPolicyOptions } from "@bitwarden/common/admin-console/models/domain/master-password-policy-options";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { SsoLoginServiceAbstraction } from "@bitwarden/common/auth/abstractions/sso-login.service.abstraction";
 import { ForceSetPasswordReason } from "@bitwarden/common/auth/models/domain/force-set-password-reason";
+import { assertTruthy, assertNonNullish } from "@bitwarden/common/auth/utils";
 import { InternalMasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
 import { ValidationService } from "@bitwarden/common/platform/abstractions/validation.service";
 import { SyncService } from "@bitwarden/common/platform/sync";
@@ -33,6 +39,7 @@ import { I18nPipe } from "@bitwarden/ui-common";
 import {
   SetInitialPasswordCredentials,
   SetInitialPasswordService,
+  SetInitialPasswordTdeOffboardingCredentials,
   SetInitialPasswordUserType,
 } from "./set-initial-password.service.abstraction";
 
@@ -54,6 +61,7 @@ export class SetInitialPasswordComponent implements OnInit {
   protected submitting = false;
   protected userId?: UserId;
   protected userType?: SetInitialPasswordUserType;
+  protected SetInitialPasswordUserType = SetInitialPasswordUserType;
 
   constructor(
     private accountService: AccountService,
@@ -61,10 +69,13 @@ export class SetInitialPasswordComponent implements OnInit {
     private anonLayoutWrapperDataService: AnonLayoutWrapperDataService,
     private dialogService: DialogService,
     private i18nService: I18nService,
+    private logoutService: LogoutService,
+    private logService: LogService,
     private masterPasswordService: InternalMasterPasswordServiceAbstraction,
     private messagingService: MessagingService,
     private organizationApiService: OrganizationApiServiceAbstraction,
     private policyApiService: PolicyApiServiceAbstraction,
+    private policyService: PolicyService,
     private router: Router,
     private setInitialPasswordService: SetInitialPasswordService,
     private ssoLoginService: SsoLoginServiceAbstraction,
@@ -80,13 +91,13 @@ export class SetInitialPasswordComponent implements OnInit {
     this.userId = activeAccount?.id;
     this.email = activeAccount?.email;
 
-    await this.determineUserType();
-    await this.handleQueryParams();
+    await this.establishUserType();
+    await this.getOrgInfo();
 
     this.initializing = false;
   }
 
-  private async determineUserType() {
+  private async establishUserType() {
     if (!this.userId) {
       throw new Error("userId not found. Could not determine user type.");
     }
@@ -95,6 +106,14 @@ export class SetInitialPasswordComponent implements OnInit {
       this.masterPasswordService.forceSetPasswordReason$(this.userId),
     );
 
+    if (this.forceSetPasswordReason === ForceSetPasswordReason.SsoNewJitProvisionedUser) {
+      this.userType = SetInitialPasswordUserType.JIT_PROVISIONED_MP_ORG_USER;
+      this.anonLayoutWrapperDataService.setAnonLayoutWrapperData({
+        pageTitle: { key: "joinOrganization" },
+        pageSubtitle: { key: "finishJoiningThisOrganizationBySettingAMasterPassword" },
+      });
+    }
+
     if (
       this.forceSetPasswordReason ===
       ForceSetPasswordReason.TdeUserWithoutPasswordHasPasswordResetPermission
@@ -104,20 +123,35 @@ export class SetInitialPasswordComponent implements OnInit {
         pageTitle: { key: "setMasterPassword" },
         pageSubtitle: { key: "orgPermissionsUpdatedMustSetPassword" },
       });
-    } else {
-      this.userType = SetInitialPasswordUserType.JIT_PROVISIONED_MP_ORG_USER;
+    }
+
+    if (this.forceSetPasswordReason === ForceSetPasswordReason.TdeOffboarding) {
+      this.userType = SetInitialPasswordUserType.OFFBOARDED_TDE_ORG_USER;
       this.anonLayoutWrapperDataService.setAnonLayoutWrapperData({
-        pageTitle: { key: "joinOrganization" },
-        pageSubtitle: { key: "finishJoiningThisOrganizationBySettingAMasterPassword" },
+        pageTitle: { key: "setMasterPassword" },
+        pageSubtitle: { key: "tdeDisabledMasterPasswordRequired" },
       });
     }
+
+    // If we somehow end up here without a reason, navigate to root
+    if (this.forceSetPasswordReason === ForceSetPasswordReason.None) {
+      await this.router.navigate(["/"]);
+    }
   }
 
-  private async handleQueryParams() {
+  private async getOrgInfo() {
     if (!this.userId) {
       throw new Error("userId not found. Could not handle query params.");
     }
 
+    if (this.userType === SetInitialPasswordUserType.OFFBOARDED_TDE_ORG_USER) {
+      this.masterPasswordPolicyOptions =
+        (await firstValueFrom(this.policyService.masterPasswordPolicyOptions$(this.userId))) ??
+        null;
+
+      return;
+    }
+
     const qParams = await firstValueFrom(this.activatedRoute.queryParams);
 
     this.orgSsoIdentifier =
@@ -146,38 +180,34 @@ export class SetInitialPasswordComponent implements OnInit {
   protected async handlePasswordFormSubmit(passwordInputResult: PasswordInputResult) {
     this.submitting = true;
 
-    if (!passwordInputResult.newMasterKey) {
-      throw new Error("newMasterKey not found. Could not set initial password.");
-    }
-    if (!passwordInputResult.newServerMasterKeyHash) {
-      throw new Error("newServerMasterKeyHash not found. Could not set initial password.");
-    }
-    if (!passwordInputResult.newLocalMasterKeyHash) {
-      throw new Error("newLocalMasterKeyHash not found. Could not set initial password.");
-    }
-    // newPasswordHint can have an empty string as a valid value, so we specifically check for null or undefined
-    if (passwordInputResult.newPasswordHint == null) {
-      throw new Error("newPasswordHint not found. Could not set initial password.");
-    }
-    if (!passwordInputResult.kdfConfig) {
-      throw new Error("kdfConfig not found. Could not set initial password.");
-    }
-    if (!this.userId) {
-      throw new Error("userId not found. Could not set initial password.");
-    }
-    if (!this.userType) {
-      throw new Error("userType not found. Could not set initial password.");
-    }
-    if (!this.orgSsoIdentifier) {
-      throw new Error("orgSsoIdentifier not found. Could not set initial password.");
-    }
-    if (!this.orgId) {
-      throw new Error("orgId not found. Could not set initial password.");
-    }
-    // resetPasswordAutoEnroll can have `false` as a valid value, so we specifically check for null or undefined
-    if (this.resetPasswordAutoEnroll == null) {
-      throw new Error("resetPasswordAutoEnroll not found. Could not set initial password.");
+    switch (this.userType) {
+      case SetInitialPasswordUserType.JIT_PROVISIONED_MP_ORG_USER:
+      case SetInitialPasswordUserType.TDE_ORG_USER_RESET_PASSWORD_PERMISSION_REQUIRES_MP:
+        await this.setInitialPassword(passwordInputResult);
+        break;
+      case SetInitialPasswordUserType.OFFBOARDED_TDE_ORG_USER:
+        await this.setInitialPasswordTdeOffboarding(passwordInputResult);
+        break;
+      default:
+        this.logService.error(
+          `Unexpected user type: ${this.userType}. Could not set initial password.`,
+        );
+        this.validationService.showError("Unexpected user type. Could not set initial password.");
     }
+  }
+
+  private async setInitialPassword(passwordInputResult: PasswordInputResult) {
+    const ctx = "Could not set initial password.";
+    assertTruthy(passwordInputResult.newMasterKey, "newMasterKey", ctx);
+    assertTruthy(passwordInputResult.newServerMasterKeyHash, "newServerMasterKeyHash", ctx);
+    assertTruthy(passwordInputResult.newLocalMasterKeyHash, "newLocalMasterKeyHash", ctx);
+    assertTruthy(passwordInputResult.kdfConfig, "kdfConfig", ctx);
+    assertTruthy(this.orgSsoIdentifier, "orgSsoIdentifier", ctx);
+    assertTruthy(this.orgId, "orgId", ctx);
+    assertTruthy(this.userType, "userType", ctx);
+    assertTruthy(this.userId, "userId", ctx);
+    assertNonNullish(passwordInputResult.newPasswordHint, "newPasswordHint", ctx); // can have an empty string as a valid value, so check non-nullish
+    assertNonNullish(this.resetPasswordAutoEnroll, "resetPasswordAutoEnroll", ctx); // can have `false` as a valid value, so check non-nullish
 
     try {
       const credentials: SetInitialPasswordCredentials = {
@@ -202,11 +232,44 @@ export class SetInitialPasswordComponent implements OnInit {
       this.submitting = false;
       await this.router.navigate(["vault"]);
     } catch (e) {
+      this.logService.error("Error setting initial password", e);
       this.validationService.showError(e);
       this.submitting = false;
     }
   }
 
+  private async setInitialPasswordTdeOffboarding(passwordInputResult: PasswordInputResult) {
+    const ctx = "Could not set initial password.";
+    assertTruthy(passwordInputResult.newMasterKey, "newMasterKey", ctx);
+    assertTruthy(passwordInputResult.newServerMasterKeyHash, "newServerMasterKeyHash", ctx);
+    assertTruthy(this.userId, "userId", ctx);
+    assertNonNullish(passwordInputResult.newPasswordHint, "newPasswordHint", ctx); // can have an empty string as a valid value, so check non-nullish
+
+    try {
+      const credentials: SetInitialPasswordTdeOffboardingCredentials = {
+        newMasterKey: passwordInputResult.newMasterKey,
+        newServerMasterKeyHash: passwordInputResult.newServerMasterKeyHash,
+        newPasswordHint: passwordInputResult.newPasswordHint,
+      };
+
+      await this.setInitialPasswordService.setInitialPasswordTdeOffboarding(
+        credentials,
+        this.userId,
+      );
+
+      this.showSuccessToastByUserType();
+
+      await this.logoutService.logout(this.userId);
+      // navigate to root so redirect guard can properly route next active user or null user to correct page
+      await this.router.navigate(["/"]);
+    } catch (e) {
+      this.logService.error("Error setting initial password during TDE offboarding", e);
+      this.validationService.showError(e);
+    } finally {
+      this.submitting = false;
+    }
+  }
+
   private showSuccessToastByUserType() {
     if (this.userType === SetInitialPasswordUserType.JIT_PROVISIONED_MP_ORG_USER) {
       this.toastService.showToast({
@@ -220,12 +283,7 @@ export class SetInitialPasswordComponent implements OnInit {
         title: "",
         message: this.i18nService.t("inviteAccepted"),
       });
-    }
-
-    if (
-      this.userType ===
-      SetInitialPasswordUserType.TDE_ORG_USER_RESET_PASSWORD_PERMISSION_REQUIRES_MP
-    ) {
+    } else {
       this.toastService.showToast({
         variant: "success",
         title: "",
diff --git a/libs/angular/src/auth/password-management/set-initial-password/set-initial-password.service.abstraction.ts b/libs/angular/src/auth/password-management/set-initial-password/set-initial-password.service.abstraction.ts
index e594053a906..c167c1675c1 100644
--- a/libs/angular/src/auth/password-management/set-initial-password/set-initial-password.service.abstraction.ts
+++ b/libs/angular/src/auth/password-management/set-initial-password/set-initial-password.service.abstraction.ts
@@ -19,6 +19,12 @@ export const _SetInitialPasswordUserType = {
    */
   TDE_ORG_USER_RESET_PASSWORD_PERMISSION_REQUIRES_MP:
     "tde_org_user_reset_password_permission_requires_mp",
+
+  /**
+   * A user in an org that offboarded from trusted device encryption and is now a
+   * master-password-encryption org
+   */
+  OFFBOARDED_TDE_ORG_USER: "offboarded_tde_org_user",
 } as const;
 
 type _SetInitialPasswordUserType = typeof _SetInitialPasswordUserType;
@@ -40,6 +46,12 @@ export interface SetInitialPasswordCredentials {
   resetPasswordAutoEnroll: boolean;
 }
 
+export interface SetInitialPasswordTdeOffboardingCredentials {
+  newMasterKey: MasterKey;
+  newServerMasterKeyHash: string;
+  newPasswordHint: string;
+}
+
 /**
  * Handles setting an initial password for an existing authed user.
  *
@@ -61,4 +73,17 @@ export abstract class SetInitialPasswordService {
     userType: SetInitialPasswordUserType,
     userId: UserId,
   ) => Promise<void>;
+
+  /**
+   * Sets an initial password for a user who logs in after their org offboarded from
+   * trusted device encryption and is now a master-password-encryption org:
+   * - {@link SetInitialPasswordUserType.OFFBOARDED_TDE_ORG_USER}
+   *
+   * @param passwordInputResult credentials object received from the `InputPasswordComponent`
+   * @param userId the account `userId`
+   */
+  abstract setInitialPasswordTdeOffboarding: (
+    credentials: SetInitialPasswordTdeOffboardingCredentials,
+    userId: UserId,
+  ) => Promise<void>;
 }
diff --git a/libs/common/src/auth/utils/assert-non-nullish.util.ts b/libs/common/src/auth/utils/assert-non-nullish.util.ts
new file mode 100644
index 00000000000..91fb8ef44b8
--- /dev/null
+++ b/libs/common/src/auth/utils/assert-non-nullish.util.ts
@@ -0,0 +1,45 @@
+/**
+ * Asserts that a value is non-nullish (not `null` or `undefined`); throws if value is nullish.
+ *
+ * @param val the value to check
+ * @param name the name of the value to include in the error message
+ * @param ctx context to optionally append to the error message
+ * @throws if the value is null or undefined
+ *
+ * @example
+ *
+ * ```
+ *    // `newPasswordHint` can have an empty string as a valid value, so we check non-nullish
+ *    this.assertNonNullish(
+ *      passwordInputResult.newPasswordHint,
+ *      "newPasswordHint",
+ *      "Could not set initial password."
+ *    );
+ *    // Output error message: "newPasswordHint is null or undefined. Could not set initial password."
+ * ```
+ *
+ * @remarks
+ *
+ * If you use this method repeatedly to check several values, it may help to assign any
+ * additional context (`ctx`) to a variable and pass it in to each call. This prevents the
+ * call from reformatting vertically via prettier in your text editor, taking up multiple lines.
+ *
+ * For example:
+ * ```
+ *    const ctx = "Could not set initial password.";
+ *
+ *    this.assertNonNullish(valueOne, "valueOne", ctx);
+ *    this.assertNonNullish(valueTwo, "valueTwo", ctx);
+ *    this.assertNonNullish(valueThree, "valueThree", ctx);
+ * ```
+ */
+export function assertNonNullish<T>(
+  val: T,
+  name: string,
+  ctx?: string,
+): asserts val is NonNullable<T> {
+  if (val == null) {
+    // If context is provided, append it to the error message with a space before it.
+    throw new Error(`${name} is null or undefined.${ctx ? ` ${ctx}` : ""}`);
+  }
+}
diff --git a/libs/common/src/auth/utils/assert-truthy.util.ts b/libs/common/src/auth/utils/assert-truthy.util.ts
new file mode 100644
index 00000000000..8e003186929
--- /dev/null
+++ b/libs/common/src/auth/utils/assert-truthy.util.ts
@@ -0,0 +1,46 @@
+/**
+ * Asserts that a value is truthy; throws if value is falsy.
+ *
+ * @param val the value to check
+ * @param name the name of the value to include in the error message
+ * @param ctx context to optionally append to the error message
+ * @throws if the value is falsy (`false`, `""`, `0`, `null`, `undefined`, `void`, or `NaN`)
+ *
+ * @example
+ *
+ * ```
+ *    this.assertTruthy(
+ *      this.organizationId,
+ *      "organizationId",
+ *      "Could not set initial password."
+ *    );
+ *    // Output error message: "organizationId is falsy. Could not set initial password."
+ * ```
+ *
+ * @remarks
+ *
+ * If you use this method repeatedly to check several values, it may help to assign any
+ * additional context (`ctx`) to a variable and pass it in to each call. This prevents the
+ * call from reformatting vertically via prettier in your text editor, taking up multiple lines.
+ *
+ * For example:
+ * ```
+ *    const ctx = "Could not set initial password.";
+ *
+ *    this.assertTruthy(valueOne, "valueOne", ctx);
+ *    this.assertTruthy(valueTwo, "valueTwo", ctx);
+ *    this.assertTruthy(valueThree, "valueThree", ctx);
+ */
+export function assertTruthy<T>(
+  val: T,
+  name: string,
+  ctx?: string,
+): asserts val is Exclude<T, false | "" | 0 | null | undefined | void | 0n> {
+  // Because `NaN` is a value (not a type) of type 'number', that means we cannot add
+  // it to the list of falsy values in the type assertion. Instead, we check for it
+  // separately at runtime.
+  if (!val || (typeof val === "number" && Number.isNaN(val))) {
+    // If context is provided, append it to the error message with a space before it.
+    throw new Error(`${name} is falsy.${ctx ? ` ${ctx}` : ""}`);
+  }
+}
diff --git a/libs/common/src/auth/utils/index.ts b/libs/common/src/auth/utils/index.ts
new file mode 100644
index 00000000000..96bab53d3f9
--- /dev/null
+++ b/libs/common/src/auth/utils/index.ts
@@ -0,0 +1,2 @@
+export { assertTruthy } from "./assert-truthy.util";
+export { assertNonNullish } from "./assert-non-nullish.util";

From 0d204fb9f77335f30be185e644476b843e1cfcad Mon Sep 17 00:00:00 2001
From: Jared Snider <116684653+JaredSnider-Bitwarden@users.noreply.github.com>
Date: Wed, 2 Jul 2025 10:30:41 -0400
Subject: [PATCH 045/239] feat(manifest): [Auth/PM-14942] add notifications to
 requested permissions  (#15316)

---
 apps/browser/src/manifest.json | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/apps/browser/src/manifest.json b/apps/browser/src/manifest.json
index c46674083b2..aa80222c672 100644
--- a/apps/browser/src/manifest.json
+++ b/apps/browser/src/manifest.json
@@ -56,7 +56,8 @@
     "unlimitedStorage",
     "webNavigation",
     "webRequest",
-    "webRequestBlocking"
+    "webRequestBlocking",
+    "notifications"
   ],
   "__safari__permissions": [
     "<all_urls>",

From 87a42cc5071109db20794ae7dcfe850059974e79 Mon Sep 17 00:00:00 2001
From: Github Actions <actions@github.com>
Date: Wed, 2 Jul 2025 15:40:45 +0000
Subject: [PATCH 046/239] Bumped Desktop client to 2025.7.0

---
 apps/desktop/package.json          | 2 +-
 apps/desktop/src/package-lock.json | 4 ++--
 apps/desktop/src/package.json      | 2 +-
 package-lock.json                  | 4 +++-
 4 files changed, 7 insertions(+), 5 deletions(-)

diff --git a/apps/desktop/package.json b/apps/desktop/package.json
index 4a59d5bbcf0..2ab88fed621 100644
--- a/apps/desktop/package.json
+++ b/apps/desktop/package.json
@@ -1,7 +1,7 @@
 {
   "name": "@bitwarden/desktop",
   "description": "A secure and free password manager for all of your devices.",
-  "version": "2025.6.1",
+  "version": "2025.7.0",
   "keywords": [
     "bitwarden",
     "password",
diff --git a/apps/desktop/src/package-lock.json b/apps/desktop/src/package-lock.json
index 128cf94a09d..a4e00046476 100644
--- a/apps/desktop/src/package-lock.json
+++ b/apps/desktop/src/package-lock.json
@@ -1,12 +1,12 @@
 {
   "name": "@bitwarden/desktop",
-  "version": "2025.6.1",
+  "version": "2025.7.0",
   "lockfileVersion": 3,
   "requires": true,
   "packages": {
     "": {
       "name": "@bitwarden/desktop",
-      "version": "2025.6.1",
+      "version": "2025.7.0",
       "license": "GPL-3.0",
       "dependencies": {
         "@bitwarden/desktop-napi": "file:../desktop_native/napi"
diff --git a/apps/desktop/src/package.json b/apps/desktop/src/package.json
index 9c6d5712b6d..0128692f3b4 100644
--- a/apps/desktop/src/package.json
+++ b/apps/desktop/src/package.json
@@ -2,7 +2,7 @@
   "name": "@bitwarden/desktop",
   "productName": "Bitwarden",
   "description": "A secure and free password manager for all of your devices.",
-  "version": "2025.6.1",
+  "version": "2025.7.0",
   "author": "Bitwarden Inc. <hello@bitwarden.com> (https://bitwarden.com)",
   "homepage": "https://bitwarden.com",
   "license": "GPL-3.0",
diff --git a/package-lock.json b/package-lock.json
index d7c23e0997b..900dc0d0b00 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -288,7 +288,7 @@
     },
     "apps/desktop": {
       "name": "@bitwarden/desktop",
-      "version": "2025.6.1",
+      "version": "2025.7.0",
       "hasInstallScript": true,
       "license": "GPL-3.0"
     },
@@ -354,6 +354,7 @@
       "license": "GPL-3.0"
     },
     "libs/logging": {
+      "name": "@bitwarden/logging",
       "version": "0.0.1",
       "license": "GPL-3.0"
     },
@@ -428,6 +429,7 @@
       "license": "GPL-3.0"
     },
     "libs/user-core": {
+      "name": "@bitwarden/user-core",
       "version": "0.0.0",
       "license": "GPL-3.0"
     },

From 369c1edaf782fc2799362c79e16cef48aae7b178 Mon Sep 17 00:00:00 2001
From: Jordan Aasen <166539328+jaasen-livefront@users.noreply.github.com>
Date: Wed, 2 Jul 2025 08:54:42 -0700
Subject: [PATCH 047/239] [PM-22376] - [Vault] [Clients] Update cipher form
 component to default to My Items collections (#15356)

* fix tests

* remove unused code

* fix storybook

* fix storybook

* cleanup

* move observable to function. update tests

* fix type error

* move call to getDefaultCollectionId

* fix test
---
 .../src/cipher-form/cipher-form.stories.ts    |  8 +++
 .../item-details-section.component.spec.ts    | 53 ++++++++++++--
 .../item-details-section.component.ts         | 71 ++++++++++++++++---
 3 files changed, 115 insertions(+), 17 deletions(-)

diff --git a/libs/vault/src/cipher-form/cipher-form.stories.ts b/libs/vault/src/cipher-form/cipher-form.stories.ts
index f46eb457e30..25494350dc3 100644
--- a/libs/vault/src/cipher-form/cipher-form.stories.ts
+++ b/libs/vault/src/cipher-form/cipher-form.stories.ts
@@ -19,6 +19,7 @@ import { ViewCacheService } from "@bitwarden/angular/platform/view-cache";
 import { NudgeStatus, NudgesService } from "@bitwarden/angular/vault";
 import { AuditService } from "@bitwarden/common/abstractions/audit.service";
 import { EventCollectionService } from "@bitwarden/common/abstractions/event/event-collection.service";
+import { PolicyService } from "@bitwarden/common/admin-console/abstractions/policy/policy.service.abstraction";
 import { Organization } from "@bitwarden/common/admin-console/models/domain/organization";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { AutofillSettingsServiceAbstraction } from "@bitwarden/common/autofill/services/autofill-settings.service";
@@ -243,6 +244,7 @@ export default {
           provide: ConfigService,
           useValue: {
             getFeatureFlag: () => Promise.resolve(false),
+            getFeatureFlag$: () => new BehaviorSubject(false),
           },
         },
         {
@@ -253,6 +255,12 @@ export default {
             },
           },
         },
+        {
+          provide: PolicyService,
+          useValue: {
+            policiesByType$: new BehaviorSubject([]),
+          },
+        },
       ],
     }),
     componentWrapperDecorator(
diff --git a/libs/vault/src/cipher-form/components/item-details/item-details-section.component.spec.ts b/libs/vault/src/cipher-form/components/item-details/item-details-section.component.spec.ts
index 12fba0c7409..99c377a0873 100644
--- a/libs/vault/src/cipher-form/components/item-details/item-details-section.component.spec.ts
+++ b/libs/vault/src/cipher-form/components/item-details/item-details-section.component.spec.ts
@@ -3,18 +3,24 @@ import { ComponentFixture, fakeAsync, TestBed, tick } from "@angular/core/testin
 import { ReactiveFormsModule } from "@angular/forms";
 import { By } from "@angular/platform-browser";
 import { mock, MockProxy } from "jest-mock-extended";
-import { BehaviorSubject } from "rxjs";
+import { BehaviorSubject, of } from "rxjs";
 
 // This import has been flagged as unallowed for this class. It may be involved in a circular dependency loop.
 // eslint-disable-next-line no-restricted-imports
 import { CollectionTypes, CollectionView } from "@bitwarden/admin-console/common";
+import { PolicyService } from "@bitwarden/common/admin-console/abstractions/policy/policy.service.abstraction";
 import { Organization } from "@bitwarden/common/admin-console/models/domain/organization";
+import { Policy } from "@bitwarden/common/admin-console/models/domain/policy";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
 import { SelectComponent } from "@bitwarden/components";
 
-import { CipherFormConfig } from "../../abstractions/cipher-form-config.service";
+import {
+  CipherFormConfig,
+  OptionalInitialValues,
+} from "../../abstractions/cipher-form-config.service";
 import { CipherFormContainer } from "../../cipher-form-container";
 
 import { ItemDetailsSectionComponent } from "./item-details-section.component";
@@ -48,6 +54,8 @@ describe("ItemDetailsSectionComponent", () => {
   let fixture: ComponentFixture<ItemDetailsSectionComponent>;
   let cipherFormProvider: MockProxy<CipherFormContainer>;
   let i18nService: MockProxy<I18nService>;
+  let mockConfigService: MockProxy<ConfigService>;
+  let mockPolicyService: MockProxy<PolicyService>;
 
   const activeAccount$ = new BehaviorSubject<{ email: string }>({ email: "test@example.com" });
   const getInitialCipherView = jest.fn(() => null);
@@ -66,12 +74,19 @@ describe("ItemDetailsSectionComponent", () => {
       compare: (a: string, b: string) => a.localeCompare(b),
     } as Intl.Collator;
 
+    mockConfigService = mock<ConfigService>();
+    mockConfigService.getFeatureFlag$.mockReturnValue(of(true));
+    mockPolicyService = mock<PolicyService>();
+    mockPolicyService.policiesByType$.mockReturnValue(of([]));
+
     await TestBed.configureTestingModule({
       imports: [ItemDetailsSectionComponent, CommonModule, ReactiveFormsModule],
       providers: [
         { provide: CipherFormContainer, useValue: cipherFormProvider },
         { provide: I18nService, useValue: i18nService },
         { provide: AccountService, useValue: { activeAccount$ } },
+        { provide: ConfigService, useValue: mockConfigService },
+        { provide: PolicyService, useValue: mockPolicyService },
       ],
     }).compileComponents();
 
@@ -369,7 +384,7 @@ describe("ItemDetailsSectionComponent", () => {
       expect(collectionSelect).toBeNull();
     });
 
-    it("should enable/show collection control when an organization is selected", async () => {
+    it("should enable/show collection control when an organization is selected", fakeAsync(() => {
       component.config.organizationDataOwnershipDisabled = true;
       component.config.organizations = [{ id: "org1" } as Organization];
       component.config.collections = [
@@ -378,12 +393,12 @@ describe("ItemDetailsSectionComponent", () => {
       ];
 
       fixture.detectChanges();
-      await fixture.whenStable();
+      tick();
 
       component.itemDetailsForm.controls.organizationId.setValue("org1");
 
+      tick();
       fixture.detectChanges();
-      await fixture.whenStable();
 
       const collectionSelect = fixture.nativeElement.querySelector(
         "bit-multi-select[formcontrolname='collectionIds']",
@@ -391,7 +406,7 @@ describe("ItemDetailsSectionComponent", () => {
 
       expect(component.itemDetailsForm.controls.collectionIds.enabled).toBe(true);
       expect(collectionSelect).not.toBeNull();
-    });
+    }));
 
     it("should set collectionIds to originalCipher collections on first load", async () => {
       component.config.mode = "clone";
@@ -488,6 +503,9 @@ describe("ItemDetailsSectionComponent", () => {
 
       component.itemDetailsForm.controls.organizationId.setValue("org1");
 
+      fixture.detectChanges();
+      await fixture.whenStable();
+
       expect(component["collectionOptions"].map((c) => c.id)).toEqual(["col1", "col2", "col3"]);
     });
   });
@@ -548,4 +566,27 @@ describe("ItemDetailsSectionComponent", () => {
       expect(label).toBe("org1");
     });
   });
+
+  describe("getDefaultCollectionId", () => {
+    it("returns matching default when flag & policy match", async () => {
+      const def = createMockCollection("def1", "Def", "orgA");
+      component.config.collections = [def] as CollectionView[];
+      component.config.initialValues = { collectionIds: [] } as OptionalInitialValues;
+      mockConfigService.getFeatureFlag.mockResolvedValue(true);
+      mockPolicyService.policiesByType$.mockReturnValue(of([{ organizationId: "orgA" } as Policy]));
+
+      const id = await (component as any).getDefaultCollectionId("orgA");
+      expect(id).toEqual("def1");
+    });
+
+    it("returns undefined when no default found", async () => {
+      component.config.collections = [createMockCollection("c1", "C1", "orgB")] as CollectionView[];
+      component.config.initialValues = { collectionIds: [] } as OptionalInitialValues;
+      mockConfigService.getFeatureFlag.mockResolvedValue(true);
+      mockPolicyService.policiesByType$.mockReturnValue(of([{ organizationId: "orgA" } as Policy]));
+
+      const result = await (component as any).getDefaultCollectionId("orgA");
+      expect(result).toBeUndefined();
+    });
+  });
 });
diff --git a/libs/vault/src/cipher-form/components/item-details/item-details-section.component.ts b/libs/vault/src/cipher-form/components/item-details/item-details-section.component.ts
index 1d30edf27e0..1064980050f 100644
--- a/libs/vault/src/cipher-form/components/item-details/item-details-section.component.ts
+++ b/libs/vault/src/cipher-form/components/item-details/item-details-section.component.ts
@@ -4,15 +4,19 @@ import { CommonModule } from "@angular/common";
 import { Component, DestroyRef, Input, OnInit } from "@angular/core";
 import { takeUntilDestroyed } from "@angular/core/rxjs-interop";
 import { FormBuilder, FormControl, ReactiveFormsModule, Validators } from "@angular/forms";
-import { concatMap, map } from "rxjs";
+import { concatMap, firstValueFrom, map } from "rxjs";
 
 // This import has been flagged as unallowed for this class. It may be involved in a circular dependency loop.
 // eslint-disable-next-line no-restricted-imports
-import { CollectionView } from "@bitwarden/admin-console/common";
+import { CollectionTypes, CollectionView } from "@bitwarden/admin-console/common";
 import { JslibModule } from "@bitwarden/angular/jslib.module";
-import { OrganizationUserType } from "@bitwarden/common/admin-console/enums";
+import { PolicyService } from "@bitwarden/common/admin-console/abstractions/policy/policy.service.abstraction";
+import { OrganizationUserType, PolicyType } from "@bitwarden/common/admin-console/enums";
 import { Organization } from "@bitwarden/common/admin-console/models/domain/organization";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
+import { getUserId } from "@bitwarden/common/auth/services/account.service";
+import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
 import { CollectionId, OrganizationId } from "@bitwarden/common/types/guid";
@@ -124,6 +128,8 @@ export class ItemDetailsSectionComponent implements OnInit {
     private i18nService: I18nService,
     private destroyRef: DestroyRef,
     private accountService: AccountService,
+    private configService: ConfigService,
+    private policyService: PolicyService,
   ) {
     this.cipherFormContainer.registerChildForm("itemDetails", this.itemDetailsForm);
     this.itemDetailsForm.valueChanges
@@ -200,30 +206,61 @@ export class ItemDetailsSectionComponent implements OnInit {
     if (prefillCipher) {
       await this.initFromExistingCipher(prefillCipher);
     } else {
+      const orgId = this.initialValues?.organizationId;
       this.itemDetailsForm.setValue({
         name: this.initialValues?.name || "",
-        organizationId: this.initialValues?.organizationId || this.defaultOwner,
+        organizationId: orgId || this.defaultOwner,
         folderId: this.initialValues?.folderId || null,
         collectionIds: [],
         favorite: false,
       });
-      await this.updateCollectionOptions(this.initialValues?.collectionIds || []);
+      await this.updateCollectionOptions(this.initialValues?.collectionIds);
     }
-
     if (!this.allowOwnershipChange) {
       this.itemDetailsForm.controls.organizationId.disable();
     }
-
     this.itemDetailsForm.controls.organizationId.valueChanges
       .pipe(
         takeUntilDestroyed(this.destroyRef),
-        concatMap(async () => {
-          await this.updateCollectionOptions();
-        }),
+        concatMap(async () => await this.updateCollectionOptions()),
       )
       .subscribe();
   }
 
+  /**
+   * Gets the default collection IDs for the selected organization.
+   * Returns null if any of the following apply:
+   * - the feature flag is disabled
+   * - no org is currently selected
+   * - the selected org doesn't have the "no private data policy" enabled
+   */
+  private async getDefaultCollectionId(orgId?: OrganizationId) {
+    if (!orgId) {
+      return;
+    }
+    const isFeatureEnabled = await this.configService.getFeatureFlag(
+      FeatureFlag.CreateDefaultLocation,
+    );
+    if (!isFeatureEnabled) {
+      return;
+    }
+    const userId = await firstValueFrom(this.accountService.activeAccount$.pipe(getUserId));
+    const selectedOrgHasPolicyEnabled = (
+      await firstValueFrom(
+        this.policyService.policiesByType$(PolicyType.OrganizationDataOwnership, userId),
+      )
+    ).find((p) => p.organizationId);
+    if (!selectedOrgHasPolicyEnabled) {
+      return;
+    }
+    const defaultUserCollection = this.collections.find(
+      (c) => c.organizationId === orgId && c.type === CollectionTypes.DefaultUserCollection,
+    );
+    // If the user was added after the policy was enabled as they will not have any private data
+    // and will not have a default collection.
+    return defaultUserCollection?.id;
+  }
+
   private async initFromExistingCipher(prefillCipher: CipherView) {
     const { name, folderId, collectionIds } = prefillCipher;
 
@@ -332,6 +369,11 @@ export class ItemDetailsSectionComponent implements OnInit {
         // Non-admins can only select assigned collections that are not read only. (Non-AC)
         return c.assigned && !c.readOnly;
       })
+      .sort((a, b) => {
+        const aIsDefaultCollection = a.type === CollectionTypes.DefaultUserCollection ? -1 : 0;
+        const bIsDefaultCollection = b.type === CollectionTypes.DefaultUserCollection ? -1 : 0;
+        return aIsDefaultCollection - bIsDefaultCollection;
+      })
       .map((c) => ({
         id: c.id,
         name: c.name,
@@ -349,10 +391,17 @@ export class ItemDetailsSectionComponent implements OnInit {
       return;
     }
 
-    if (startingSelection.length > 0) {
+    if (startingSelection.filter(Boolean).length > 0) {
       collectionsControl.setValue(
         this.collectionOptions.filter((c) => startingSelection.includes(c.id as CollectionId)),
       );
+    } else {
+      const defaultCollectionId = await this.getDefaultCollectionId(orgId);
+      if (defaultCollectionId) {
+        collectionsControl.setValue(
+          this.collectionOptions.filter((c) => c.id === defaultCollectionId),
+        );
+      }
     }
   }
 }

From 023b057f3e6be2f4203491aa88f247ab2b94a532 Mon Sep 17 00:00:00 2001
From: Bryan Cunningham <bcunningham@bitwarden.com>
Date: Wed, 2 Jul 2025 14:08:05 -0400
Subject: [PATCH 048/239] [CL-124] Add validator stories (#15400)

* adding validation stories

* add one story for all validations

* fix form field story import

* move validation docs

* fix maxValue default value

* add play function to submit form
---
 .../src/form-field/form-field.stories.ts      |   2 +-
 libs/components/src/form/form.stories.ts      | 122 +++++++++++++++---
 libs/components/src/form/forms.mdx            |  18 ++-
 3 files changed, 116 insertions(+), 26 deletions(-)

diff --git a/libs/components/src/form-field/form-field.stories.ts b/libs/components/src/form-field/form-field.stories.ts
index 738ac96bf76..0c1fa8e6f6c 100644
--- a/libs/components/src/form-field/form-field.stories.ts
+++ b/libs/components/src/form-field/form-field.stories.ts
@@ -72,6 +72,7 @@ export default {
   decorators: [
     moduleMetadata({
       imports: [
+        A11yTitleDirective,
         FormsModule,
         ReactiveFormsModule,
         FormFieldModule,
@@ -88,7 +89,6 @@ export default {
         TextFieldModule,
         BadgeModule,
       ],
-      declarations: [A11yTitleDirective],
       providers: [
         {
           provide: I18nService,
diff --git a/libs/components/src/form/form.stories.ts b/libs/components/src/form/form.stories.ts
index 6aef140fe5f..1fc9bbef751 100644
--- a/libs/components/src/form/form.stories.ts
+++ b/libs/components/src/form/form.stories.ts
@@ -1,13 +1,6 @@
-import {
-  AbstractControl,
-  FormBuilder,
-  FormsModule,
-  ReactiveFormsModule,
-  ValidationErrors,
-  ValidatorFn,
-  Validators,
-} from "@angular/forms";
+import { FormBuilder, FormsModule, ReactiveFormsModule, Validators } from "@angular/forms";
 import { Meta, StoryObj, moduleMetadata } from "@storybook/angular";
+import { userEvent, getByText } from "@storybook/test";
 
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 
@@ -15,6 +8,7 @@ import { ButtonModule } from "../button";
 import { CheckboxModule } from "../checkbox";
 import { FormControlModule } from "../form-control";
 import { FormFieldModule } from "../form-field";
+import { trimValidator, forbiddenCharacters } from "../form-field/bit-validators";
 import { InputModule } from "../input/input.module";
 import { MultiSelectModule } from "../multi-select";
 import { RadioButtonModule } from "../radio-button";
@@ -48,13 +42,19 @@ export default {
               required: "required",
               checkboxRequired: "Option is required",
               inputRequired: "Input is required.",
-              inputEmail: "Input is not an email-address.",
+              inputEmail: "Input is not an email address.",
+              inputForbiddenCharacters: (char) =>
+                `The following characters are not allowed: "${char}"`,
               inputMinValue: (min) => `Input value must be at least ${min}.`,
               inputMaxValue: (max) => `Input value must not exceed ${max}.`,
+              inputMinLength: (min) => `Input value must be at least ${min} characters long.`,
+              inputMaxLength: (max) => `Input value must not exceed ${max} characters in length.`,
+              inputTrimValidator: `Input must not contain only whitespace.`,
               multiSelectPlaceholder: "-- Type to Filter --",
               multiSelectLoading: "Retrieving options...",
               multiSelectNotFound: "No items found",
               multiSelectClearAll: "Clear all",
+              fieldsNeedAttention: "__$1__ field(s) above need your attention.",
             });
           },
         },
@@ -72,7 +72,7 @@ export default {
 const fb = new FormBuilder();
 const exampleFormObj = fb.group({
   name: ["", [Validators.required]],
-  email: ["", [Validators.required, Validators.email, forbiddenNameValidator(/bit/i)]],
+  email: ["", [Validators.required, Validators.email, forbiddenCharacters(["#"])]],
   country: [undefined as string | undefined, [Validators.required]],
   groups: [],
   terms: [false, [Validators.requiredTrue]],
@@ -80,14 +80,6 @@ const exampleFormObj = fb.group({
   age: [null, [Validators.min(0), Validators.max(150)]],
 });
 
-// Custom error message, `message` is shown as the error message
-function forbiddenNameValidator(nameRe: RegExp): ValidatorFn {
-  return (control: AbstractControl): ValidationErrors | null => {
-    const forbidden = nameRe.test(control.value);
-    return forbidden ? { forbiddenName: { message: "forbiddenName" } } : null;
-  };
-}
-
 type Story = StoryObj;
 
 export const FullExample: Story = {
@@ -177,3 +169,95 @@ export const FullExample: Story = {
     ],
   },
 };
+
+const showValidationsFormObj = fb.group({
+  required: ["", [Validators.required]],
+  whitespace: ["    ", trimValidator],
+  email: ["example?bad-email", [Validators.email]],
+  minLength: ["Hello", [Validators.minLength(8)]],
+  maxLength: ["Hello there", [Validators.maxLength(8)]],
+  minValue: [9, [Validators.min(10)]],
+  maxValue: [15, [Validators.max(10)]],
+  forbiddenChars: ["Th!$ value cont#in$ forbidden char$", forbiddenCharacters(["#", "!", "$"])],
+});
+
+export const Validations: Story = {
+  render: (args) => ({
+    props: {
+      formObj: showValidationsFormObj,
+      submit: () => showValidationsFormObj.markAllAsTouched(),
+      ...args,
+    },
+    template: /*html*/ `
+      <form [formGroup]="formObj" (ngSubmit)="submit()">
+        <bit-form-field>
+          <bit-label>Required validation</bit-label>
+          <input bitInput formControlName="required" />
+          <bit-hint>This field is required. Submit form or blur input to see error</bit-hint>
+        </bit-form-field>
+
+        <bit-form-field>
+          <bit-label>Email validation</bit-label>
+          <input bitInput type="email" formControlName="email" />
+          <bit-hint>This field contains a malformed email address. Submit form or blur input to see error</bit-hint>
+        </bit-form-field>
+
+        <bit-form-field>
+          <bit-label>Min length validation</bit-label>
+          <input bitInput formControlName="minLength" />
+          <bit-hint>Value must be at least 8 characters. Submit form or blur input to see error</bit-hint>
+        </bit-form-field>
+
+        <bit-form-field>
+          <bit-label>Max length validation</bit-label>
+          <input bitInput formControlName="maxLength" />
+          <bit-hint>Value must be less then 8 characters. Submit form or blur input to see error</bit-hint>
+        </bit-form-field>
+
+        <bit-form-field>
+          <bit-label>Min number value validation</bit-label>
+          <input
+            bitInput
+            type="number"
+            formControlName="minValue"
+          />
+          <bit-hint>Value must be greater than 10. Submit form or blur input to see error</bit-hint>
+        </bit-form-field>
+
+        <bit-form-field>
+          <bit-label>Max number value validation</bit-label>
+          <input
+            bitInput
+            type="number"
+            formControlName="maxValue"
+          />
+          <bit-hint>Value must be less than than 10. Submit form or blur input to see error</bit-hint>
+        </bit-form-field>
+
+        <bit-form-field>
+          <bit-label>Forbidden characters validation</bit-label>
+          <input
+            bitInput
+            formControlName="forbiddenChars"
+          />
+          <bit-hint>Value must not contain '#', '!' or '$'. Submit form or blur input to see error</bit-hint>
+        </bit-form-field>
+
+        <bit-form-field>
+          <bit-label>White space validation</bit-label>
+          <input bitInput formControlName="whitespace" />
+          <bit-hint>This input contains only white space. Submit form or blur input to see error</bit-hint>
+        </bit-form-field>
+
+        <button type="submit" bitButton buttonType="primary">Submit</button>
+        <bit-error-summary [formGroup]="formObj"></bit-error-summary>
+      </form>
+    `,
+  }),
+  play: async (context) => {
+    const canvas = context.canvasElement;
+    const submitButton = getByText(canvas, "Submit");
+
+    await userEvent.click(submitButton);
+  },
+};
diff --git a/libs/components/src/form/forms.mdx b/libs/components/src/form/forms.mdx
index e3baf200f96..498eb8a3ed2 100644
--- a/libs/components/src/form/forms.mdx
+++ b/libs/components/src/form/forms.mdx
@@ -142,8 +142,20 @@ If a checkbox group has more than 4 options a
 
 <Canvas of={checkboxStories.Default} />
 
+## Validation messages
+
+These are examples of our default validation error messages:
+
+<Canvas of={formStories.Validations} />
+
 ## Accessibility
 
+### Icon Buttons in Form Fields
+
+When adding prefix or suffix icon buttons to a form field, be sure to use the `appA11yTitle`
+directive to provide a label for screenreaders. Typically, the label should follow this pattern:
+`{Action} {field label}`, i.e. "Copy username".
+
 ### Required Fields
 
 - Use "(required)" in the label of each required form field styled the same as the field's helper
@@ -152,12 +164,6 @@ If a checkbox group has more than 4 options a
   helper text.
   - **Example:** "Billing Email is required if owned by a business".
 
-### Icon Buttons in Form Fields
-
-When adding prefix or suffix icon buttons to a form field, be sure to use the `appA11yTitle`
-directive to provide a label for screenreaders. Typically, the label should follow this pattern:
-`{Action} {field label}`, i.e. "Copy username".
-
 ### Form Field Errors
 
 - When a resting field is filled out, validation is triggered when the user de-focuses the field

From ece5ebe844e3fd4e97210c196d5ff7d2c63682cb Mon Sep 17 00:00:00 2001
From: Shane Melton <smelton@bitwarden.com>
Date: Wed, 2 Jul 2025 13:19:17 -0700
Subject: [PATCH 049/239] [PM-17663] Fix extension Fill button display on page
 load (#15359)

* [PM-17663] Convert vault-list-items-container inputs to signals

- Cleaned up some grouping logic
- Cleaned up strict null checks and removed eslint comment

* [PM-17663] Prefer undefined over null

* [PM-17663] Fix flashing Fill buttons
---
 .../autofill-vault-list-items.component.html  |   2 +-
 .../autofill-vault-list-items.component.ts    |  10 +-
 .../vault-list-items-container.component.html |  38 ++---
 .../vault-list-items-container.component.ts   | 149 ++++++++----------
 4 files changed, 94 insertions(+), 105 deletions(-)

diff --git a/apps/browser/src/vault/popup/components/vault-v2/autofill-vault-list-items/autofill-vault-list-items.component.html b/apps/browser/src/vault/popup/components/vault-v2/autofill-vault-list-items/autofill-vault-list-items.component.html
index 19f1668eba4..47ef0284d6a 100644
--- a/apps/browser/src/vault/popup/components/vault-v2/autofill-vault-list-items/autofill-vault-list-items.component.html
+++ b/apps/browser/src/vault/popup/components/vault-v2/autofill-vault-list-items/autofill-vault-list-items.component.html
@@ -4,7 +4,7 @@
   [title]="((currentURIIsBlocked$ | async) ? 'itemSuggestions' : 'autofillSuggestions') | i18n"
   [showRefresh]="showRefresh"
   (onRefresh)="refreshCurrentTab()"
-  [description]="(showEmptyAutofillTip$ | async) ? ('autofillSuggestionsTip' | i18n) : null"
+  [description]="(showEmptyAutofillTip$ | async) ? ('autofillSuggestionsTip' | i18n) : undefined"
   showAutofillButton
   [disableDescriptionMargin]="showEmptyAutofillTip$ | async"
   [primaryActionAutofill]="clickItemsToAutofillVaultView$ | async"
diff --git a/apps/browser/src/vault/popup/components/vault-v2/autofill-vault-list-items/autofill-vault-list-items.component.ts b/apps/browser/src/vault/popup/components/vault-v2/autofill-vault-list-items/autofill-vault-list-items.component.ts
index 47f104cd4d3..aa790d24ede 100644
--- a/apps/browser/src/vault/popup/components/vault-v2/autofill-vault-list-items/autofill-vault-list-items.component.ts
+++ b/apps/browser/src/vault/popup/components/vault-v2/autofill-vault-list-items/autofill-vault-list-items.component.ts
@@ -1,7 +1,7 @@
 import { CommonModule } from "@angular/common";
 import { Component } from "@angular/core";
 import { toSignal } from "@angular/core/rxjs-interop";
-import { combineLatest, map, Observable } from "rxjs";
+import { combineLatest, map, Observable, startWith } from "rxjs";
 
 import { JslibModule } from "@bitwarden/angular/jslib.module";
 import { VaultSettingsService } from "@bitwarden/common/vault/abstractions/vault-settings/vault-settings.service";
@@ -41,7 +41,9 @@ export class AutofillVaultListItemsComponent {
 
   /** Flag indicating whether the login item should automatically autofill when clicked  */
   protected clickItemsToAutofillVaultView$: Observable<boolean> =
-    this.vaultSettingsService.clickItemsToAutofillVaultView$;
+    this.vaultSettingsService.clickItemsToAutofillVaultView$.pipe(
+      startWith(true), // Start with true to avoid flashing the fill button on first load
+    );
 
   protected groupByType = toSignal(
     this.vaultPopupItemsService.hasFilterApplied$.pipe(map((hasFilter) => !hasFilter)),
@@ -74,9 +76,7 @@ export class AutofillVaultListItemsComponent {
     private vaultPopupItemsService: VaultPopupItemsService,
     private vaultPopupAutofillService: VaultPopupAutofillService,
     private vaultSettingsService: VaultSettingsService,
-  ) {
-    // TODO: Migrate logic to show Autofill policy toast PM-8144
-  }
+  ) {}
 
   /**
    * Refreshes the current tab to re-populate the autofill ciphers.
diff --git a/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.html b/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.html
index 87d13d4d18a..8dca1f9e576 100644
--- a/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.html
+++ b/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.html
@@ -1,8 +1,8 @@
 <bit-section
-  *ngIf="cipherGroups$().length > 0 || description"
-  [disableMargin]="disableSectionMargin"
+  *ngIf="cipherGroups().length > 0 || description()"
+  [disableMargin]="disableSectionMargin()"
 >
-  <ng-container *ngIf="collapsibleKey">
+  <ng-container *ngIf="collapsibleKey()">
     <button
       class="tw-group/vault-section-header hover:tw-bg-primary-100 tw-rounded-md tw-pl-1 tw-w-full tw-border-x-0 tw-border-t-0 tw-border-b tw-border-solid focus-visible:tw-outline-none focus-visible:tw-ring-inset focus-visible:tw-ring-2 focus-visible:tw-ring-primary-600"
       [ngClass]="{
@@ -22,7 +22,7 @@
     </bit-disclosure>
   </ng-container>
 
-  <ng-container *ngIf="!collapsibleKey">
+  <ng-container *ngIf="!collapsibleKey()">
     <div class="tw-pl-1">
       <ng-container *ngTemplateOutlet="sectionHeader"></ng-container>
     </div>
@@ -34,10 +34,10 @@
 <ng-template #sectionHeader>
   <bit-section-header class="tw-p-0.5 -tw-mx-0.5">
     <h2 bitTypography="h6">
-      {{ title }}
+      {{ title() }}
     </h2>
     <button
-      *ngIf="showRefresh"
+      *ngIf="showRefresh()"
       bitIconButton="bwi-refresh"
       type="button"
       size="small"
@@ -48,13 +48,13 @@
       <span
         [ngClass]="{
           'group-hover/vault-section-header:tw-hidden group-focus-visible/vault-section-header:tw-hidden':
-            collapsibleKey && sectionOpenState(),
-          'tw-hidden': collapsibleKey && !sectionOpenState(),
+            collapsibleKey() && sectionOpenState(),
+          'tw-hidden': collapsibleKey() && !sectionOpenState(),
         }"
       >
         {{ ciphers().length }}
       </span>
-      <span class="tw-pr-1" *ngIf="collapsibleKey">
+      <span class="tw-pr-1" *ngIf="collapsibleKey()">
         <i
           class="bwi tw-text-main"
           [ngClass]="{
@@ -71,18 +71,18 @@
 
 <ng-template #descriptionText>
   <div
-    *ngIf="description"
+    *ngIf="description()"
     class="tw-text-muted tw-px-1 tw-mb-2"
-    [ngClass]="{ '!tw-mb-0': disableDescriptionMargin }"
+    [ngClass]="{ '!tw-mb-0': disableDescriptionMargin() }"
     bitTypography="body2"
   >
-    {{ description }}
+    {{ description() }}
   </div>
 </ng-template>
 
 <ng-template #itemGroup>
   <bit-item-group>
-    <ng-container *ngFor="let group of cipherGroups$()">
+    <ng-container *ngFor="let group of cipherGroups()">
       <ng-container *ngIf="group.subHeaderKey">
         <h3 class="tw-text-muted tw-text-xs tw-font-semibold tw-pl-1 tw-mb-1 bit-compact:tw-m-0">
           {{ group.subHeaderKey | i18n }}
@@ -97,7 +97,7 @@
             (click)="primaryActionOnSelect(cipher)"
             (dblclick)="launchCipher(cipher)"
             [appA11yTitle]="
-              cipherItemTitleKey(cipher) | async | i18n: cipher.name : cipher.login.username
+              cipherItemTitleKey()(cipher) | i18n: cipher.name : cipher.login.username
             "
             class="{{ itemHeightClass }}"
           >
@@ -109,7 +109,7 @@
               *ngIf="cipher.organizationId"
               slot="default-trailing"
               appOrgIcon
-              [tierType]="cipher.organization.productTierType"
+              [tierType]="cipher.organization!.productTierType"
               [size]="'small'"
               [appA11yTitle]="orgIconTooltip(cipher)"
             ></i>
@@ -122,7 +122,7 @@
           </button>
 
           <ng-container slot="end">
-            <bit-item-action *ngIf="!(hideAutofillButton$ | async)">
+            <bit-item-action *ngIf="!hideAutofillButton()">
               <button
                 type="button"
                 bitBadge
@@ -134,7 +134,7 @@
                 {{ "fill" | i18n }}
               </button>
             </bit-item-action>
-            <bit-item-action *ngIf="!showAutofillButton && cipher.canLaunch">
+            <bit-item-action *ngIf="!showAutofillButton() && cipher.canLaunch">
               <button
                 type="button"
                 bitIconButton="bwi-external-link"
@@ -147,8 +147,8 @@
             <app-item-copy-actions [cipher]="cipher"></app-item-copy-actions>
             <app-item-more-options
               [cipher]="cipher"
-              [hideAutofillOptions]="hideAutofillOptions$ | async"
-              [showViewOption]="primaryActionAutofill"
+              [hideAutofillOptions]="hideAutofillMenuOptions()"
+              [showViewOption]="primaryActionAutofill()"
             ></app-item-more-options>
           </ng-container>
         </bit-item>
diff --git a/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.ts b/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.ts
index 7c99e4e68b8..1105f929e04 100644
--- a/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.ts
+++ b/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.ts
@@ -1,5 +1,3 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import { CdkVirtualScrollViewport, ScrollingModule } from "@angular/cdk/scrolling";
 import { CommonModule } from "@angular/common";
 import {
@@ -8,18 +6,17 @@ import {
   Component,
   EventEmitter,
   inject,
-  Input,
   Output,
   Signal,
   signal,
   ViewChild,
   computed,
-  OnInit,
   ChangeDetectionStrategy,
   input,
 } from "@angular/core";
+import { toSignal } from "@angular/core/rxjs-interop";
 import { Router } from "@angular/router";
-import { firstValueFrom, Observable, map } from "rxjs";
+import { firstValueFrom, map } from "rxjs";
 
 import { JslibModule } from "@bitwarden/angular/jslib.module";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
@@ -53,7 +50,10 @@ import {
 import { BrowserApi } from "../../../../../platform/browser/browser-api";
 import BrowserPopupUtils from "../../../../../platform/browser/browser-popup-utils";
 import { VaultPopupAutofillService } from "../../../services/vault-popup-autofill.service";
-import { VaultPopupSectionService } from "../../../services/vault-popup-section.service";
+import {
+  VaultPopupSectionService,
+  PopupSectionOpen,
+} from "../../../services/vault-popup-section.service";
 import { PopupCipherView } from "../../../views/popup-cipher.view";
 import { ItemCopyActionsComponent } from "../item-copy-action/item-copy-actions.component";
 import { ItemMoreOptionsComponent } from "../item-more-options/item-more-options.component";
@@ -81,17 +81,25 @@ import { ItemMoreOptionsComponent } from "../item-more-options/item-more-options
   templateUrl: "vault-list-items-container.component.html",
   changeDetection: ChangeDetectionStrategy.OnPush,
 })
-export class VaultListItemsContainerComponent implements OnInit, AfterViewInit {
+export class VaultListItemsContainerComponent implements AfterViewInit {
   private compactModeService = inject(CompactModeService);
   private vaultPopupSectionService = inject(VaultPopupSectionService);
 
-  @ViewChild(CdkVirtualScrollViewport, { static: false }) viewPort: CdkVirtualScrollViewport;
-  @ViewChild(DisclosureComponent) disclosure: DisclosureComponent;
+  @ViewChild(CdkVirtualScrollViewport, { static: false }) viewPort!: CdkVirtualScrollViewport;
+  @ViewChild(DisclosureComponent) disclosure!: DisclosureComponent;
 
   /**
    * Indicates whether the section should be open or closed if collapsibleKey is provided
    */
-  protected sectionOpenState: Signal<boolean> | undefined;
+  protected sectionOpenState: Signal<boolean> = computed(() => {
+    if (!this.collapsibleKey()) {
+      return true;
+    }
+
+    return (
+      this.vaultPopupSectionService.getOpenDisplayStateForSection(this.collapsibleKey()!)() ?? true
+    );
+  });
 
   /**
    * The class used to set the height of a bit item's inner content.
@@ -115,7 +123,7 @@ export class VaultListItemsContainerComponent implements OnInit, AfterViewInit {
    * Timeout used to add a small delay when selecting a cipher to allow for double click to launch
    * @private
    */
-  private viewCipherTimeout: number | null;
+  private viewCipherTimeout?: number;
 
   ciphers = input<PopupCipherView[]>([]);
 
@@ -123,31 +131,33 @@ export class VaultListItemsContainerComponent implements OnInit, AfterViewInit {
    * If true, we will group ciphers by type (Login, Card, Identity)
    * within subheadings in a single container, converted to a WritableSignal.
    */
-  groupByType = input<boolean>(false);
+  groupByType = input<boolean | undefined>(false);
 
   /**
    * Computed signal for a grouped list of ciphers with an optional header
    */
-  cipherGroups$ = computed<
+  cipherGroups = computed<
     {
-      subHeaderKey?: string | null;
+      subHeaderKey?: string;
       ciphers: PopupCipherView[];
     }[]
   >(() => {
-    const groups: { [key: string]: CipherView[] } = {};
+    // Not grouping by type, return a single group with all ciphers
+    if (!this.groupByType()) {
+      return [{ ciphers: this.ciphers() }];
+    }
+
+    const groups: Record<string, PopupCipherView[]> = {};
 
     this.ciphers().forEach((cipher) => {
-      let groupKey;
-
-      if (this.groupByType()) {
-        switch (cipher.type) {
-          case CipherType.Card:
-            groupKey = "cards";
-            break;
-          case CipherType.Identity:
-            groupKey = "identities";
-            break;
-        }
+      let groupKey = "all";
+      switch (cipher.type) {
+        case CipherType.Card:
+          groupKey = "cards";
+          break;
+        case CipherType.Identity:
+          groupKey = "identities";
+          break;
       }
 
       if (!groups[groupKey]) {
@@ -157,17 +167,16 @@ export class VaultListItemsContainerComponent implements OnInit, AfterViewInit {
       groups[groupKey].push(cipher);
     });
 
-    return Object.keys(groups).map((key) => ({
-      subHeaderKey: this.groupByType ? key : "",
-      ciphers: groups[key],
+    return Object.entries(groups).map(([key, ciphers]) => ({
+      subHeaderKey: key != "all" ? key : undefined,
+      ciphers: ciphers,
     }));
   });
 
   /**
    * Title for the vault list item section.
    */
-  @Input()
-  title: string;
+  title = input<string | undefined>(undefined);
 
   /**
    * Optionally allow the items to be collapsed.
@@ -175,21 +184,18 @@ export class VaultListItemsContainerComponent implements OnInit, AfterViewInit {
    * The key must be added to the state definition in `vault-popup-section.service.ts` since the
    * collapsed state is stored locally.
    */
-  @Input()
-  collapsibleKey: "favorites" | "allItems" | undefined;
+  collapsibleKey = input<keyof PopupSectionOpen | undefined>(undefined);
 
   /**
    * Optional description for the vault list item section. Will be shown below the title even when
    * no ciphers are available.
    */
-  @Input()
-  description: string;
+  description = input<string | undefined>(undefined);
 
   /**
    * Option to show a refresh button in the section header.
    */
-  @Input({ transform: booleanAttribute })
-  showRefresh: boolean;
+  showRefresh = input(false, { transform: booleanAttribute });
 
   /**
    * Event emitted when the refresh button is clicked.
@@ -200,66 +206,61 @@ export class VaultListItemsContainerComponent implements OnInit, AfterViewInit {
   /**
    * Flag indicating that the current tab location is blocked
    */
-  currentURIIsBlocked$: Observable<boolean> =
-    this.vaultPopupAutofillService.currentTabIsOnBlocklist$;
+  currentURIIsBlocked = toSignal(this.vaultPopupAutofillService.currentTabIsOnBlocklist$);
 
   /**
    * Resolved i18n key to use for suggested cipher items
    */
-  cipherItemTitleKey = (cipher: CipherView) =>
-    this.currentURIIsBlocked$.pipe(
-      map((uriIsBlocked) => {
-        const hasUsername = cipher.login?.username != null;
-        const key = this.primaryActionAutofill && !uriIsBlocked ? "autofillTitle" : "viewItemTitle";
-        return hasUsername ? `${key}WithField` : key;
-      }),
-    );
+  cipherItemTitleKey = computed(() => {
+    return (cipher: CipherView) => {
+      const hasUsername = cipher.login?.username != null;
+      const key =
+        this.primaryActionAutofill() && !this.currentURIIsBlocked()
+          ? "autofillTitle"
+          : "viewItemTitle";
+      return hasUsername ? `${key}WithField` : key;
+    };
+  });
 
   /**
    * Option to show the autofill button for each item.
    */
-  @Input({ transform: booleanAttribute })
-  showAutofillButton: boolean;
+  showAutofillButton = input(false, { transform: booleanAttribute });
 
   /**
    * Flag indicating whether the suggested cipher item autofill button should be shown or not
    */
-  hideAutofillButton$ = this.currentURIIsBlocked$.pipe(
-    map((uriIsBlocked) => !this.showAutofillButton || uriIsBlocked || this.primaryActionAutofill),
+  hideAutofillButton = computed(
+    () => !this.showAutofillButton() || this.currentURIIsBlocked() || this.primaryActionAutofill(),
   );
 
   /**
-   * Flag indicating whether the cipher item autofill options should be shown or not
+   * Flag indicating whether the cipher item autofill menu options should be shown or not
    */
-  hideAutofillOptions$: Observable<boolean> = this.currentURIIsBlocked$.pipe(
-    map((uriIsBlocked) => uriIsBlocked || this.showAutofillButton),
-  );
+  hideAutofillMenuOptions = computed(() => this.currentURIIsBlocked() || this.showAutofillButton());
 
   /**
    * Option to perform autofill operation as the primary action for autofill suggestions.
    */
-  @Input({ transform: booleanAttribute })
-  primaryActionAutofill: boolean;
+  primaryActionAutofill = input(false, { transform: booleanAttribute });
 
   /**
    * Remove the bottom margin from the bit-section in this component
    * (used for containers at the end of the page where bottom margin is not needed)
    */
-  @Input({ transform: booleanAttribute })
-  disableSectionMargin: boolean = false;
+  disableSectionMargin = input(false, { transform: booleanAttribute });
 
   /**
    * Remove the description margin
    */
-  @Input({ transform: booleanAttribute })
-  disableDescriptionMargin: boolean = false;
+  disableDescriptionMargin = input(false, { transform: booleanAttribute });
 
   /**
    * The tooltip text for the organization icon for ciphers that belong to an organization.
    * @param cipher
    */
   orgIconTooltip(cipher: PopupCipherView) {
-    if (cipher.collectionIds.length > 1) {
+    if (cipher.collectionIds.length > 1 || !cipher.collections) {
       return this.i18nService.t("nCollections", cipher.collectionIds.length);
     }
 
@@ -279,16 +280,6 @@ export class VaultListItemsContainerComponent implements OnInit, AfterViewInit {
     private accountService: AccountService,
   ) {}
 
-  ngOnInit(): void {
-    if (!this.collapsibleKey) {
-      return;
-    }
-
-    this.sectionOpenState = this.vaultPopupSectionService.getOpenDisplayStateForSection(
-      this.collapsibleKey,
-    );
-  }
-
   async ngAfterViewInit() {
     const autofillShortcut = await this.platformUtilsService.getAutofillKeyboardShortcut();
 
@@ -301,10 +292,8 @@ export class VaultListItemsContainerComponent implements OnInit, AfterViewInit {
     }
   }
 
-  async primaryActionOnSelect(cipher: CipherView) {
-    const isBlocked = await firstValueFrom(this.currentURIIsBlocked$);
-
-    return this.primaryActionAutofill && !isBlocked
+  primaryActionOnSelect(cipher: CipherView) {
+    return this.primaryActionAutofill() && !this.currentURIIsBlocked()
       ? this.doAutofill(cipher)
       : this.onViewCipher(cipher);
   }
@@ -320,7 +309,7 @@ export class VaultListItemsContainerComponent implements OnInit, AfterViewInit {
     // If there is a view action pending, clear it
     if (this.viewCipherTimeout != null) {
       window.clearTimeout(this.viewCipherTimeout);
-      this.viewCipherTimeout = null;
+      this.viewCipherTimeout = undefined;
     }
 
     const activeUserId = await firstValueFrom(this.accountService.activeAccount$.pipe(getUserId));
@@ -363,7 +352,7 @@ export class VaultListItemsContainerComponent implements OnInit, AfterViewInit {
           });
         } finally {
           // Ensure the timeout is always cleared
-          this.viewCipherTimeout = null;
+          this.viewCipherTimeout = undefined;
         }
       },
       cipher.canLaunch ? 200 : 0,
@@ -374,12 +363,12 @@ export class VaultListItemsContainerComponent implements OnInit, AfterViewInit {
    * Update section open/close state based on user action
    */
   async toggleSectionOpen() {
-    if (!this.collapsibleKey) {
+    if (!this.collapsibleKey()) {
       return;
     }
 
     await this.vaultPopupSectionService.updateSectionOpenStoredState(
-      this.collapsibleKey,
+      this.collapsibleKey()!,
       this.disclosure.open,
     );
   }

From 24ac3b3a07913d8bd4fab3565b3e132de2cc9f36 Mon Sep 17 00:00:00 2001
From: Nick Krantz <125900171+nick-livefront@users.noreply.github.com>
Date: Wed, 2 Jul 2025 15:26:47 -0500
Subject: [PATCH 050/239] [PM-23226] ToTp updating on Desktop (#15435)

* update `totpInfo$` observable when the cipher changes

* mark cipher as required and remove ignore statements

* adds totp countdown tests
---
 .../totp-countdown.component.spec.ts          | 95 +++++++++++++++++++
 .../totp-countdown.component.ts               | 26 ++++-
 2 files changed, 116 insertions(+), 5 deletions(-)
 create mode 100644 libs/vault/src/components/totp-countdown/totp-countdown.component.spec.ts

diff --git a/libs/vault/src/components/totp-countdown/totp-countdown.component.spec.ts b/libs/vault/src/components/totp-countdown/totp-countdown.component.spec.ts
new file mode 100644
index 00000000000..58c03b3388f
--- /dev/null
+++ b/libs/vault/src/components/totp-countdown/totp-countdown.component.spec.ts
@@ -0,0 +1,95 @@
+import { ComponentFixture, TestBed } from "@angular/core/testing";
+import { mock } from "jest-mock-extended";
+import { of } from "rxjs";
+
+import { TotpService } from "@bitwarden/common/vault/abstractions/totp.service";
+import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
+
+import { BitTotpCountdownComponent } from "./totp-countdown.component";
+
+describe("BitTotpCountdownComponent", () => {
+  let component: BitTotpCountdownComponent;
+  let fixture: ComponentFixture<BitTotpCountdownComponent>;
+  let totpService: jest.Mocked<TotpService>;
+
+  const mockCipher1 = {
+    id: "cipher-id",
+    name: "Test Cipher",
+    login: { totp: "totp-secret" },
+  } as CipherView;
+
+  const mockCipher2 = {
+    id: "cipher-id-2",
+    name: "Test Cipher 2",
+    login: { totp: "totp-secret-2" },
+  } as CipherView;
+
+  const mockTotpResponse1 = {
+    code: "123456",
+    period: 30,
+  };
+
+  const mockTotpResponse2 = {
+    code: "987654",
+    period: 10,
+  };
+
+  beforeEach(async () => {
+    totpService = mock<TotpService>({
+      getCode$: jest.fn().mockImplementation((totp) => {
+        if (totp === mockCipher1.login.totp) {
+          return of(mockTotpResponse1);
+        }
+
+        return of(mockTotpResponse2);
+      }),
+    });
+
+    await TestBed.configureTestingModule({
+      providers: [{ provide: TotpService, useValue: totpService }],
+    }).compileComponents();
+
+    fixture = TestBed.createComponent(BitTotpCountdownComponent);
+    component = fixture.componentInstance;
+    component.cipher = mockCipher1;
+    fixture.detectChanges();
+  });
+
+  it("initializes totpInfo$ observable", (done) => {
+    component.totpInfo$?.subscribe((info) => {
+      expect(info.totpCode).toBe(mockTotpResponse1.code);
+      expect(info.totpCodeFormatted).toBe("123 456");
+      done();
+    });
+  });
+
+  it("emits sendCopyCode when TOTP code is available", (done) => {
+    const emitter = jest.spyOn(component.sendCopyCode, "emit");
+
+    component.totpInfo$?.subscribe((info) => {
+      expect(emitter).toHaveBeenCalledWith({
+        totpCode: info.totpCode,
+        totpCodeFormatted: info.totpCodeFormatted,
+      });
+      done();
+    });
+  });
+
+  it("updates totpInfo$ when cipher changes", (done) => {
+    component.cipher = mockCipher2;
+    component.ngOnChanges({
+      cipher: {
+        currentValue: mockCipher2,
+        previousValue: mockCipher1,
+        firstChange: false,
+        isFirstChange: () => false,
+      },
+    });
+
+    component.totpInfo$?.subscribe((info) => {
+      expect(info.totpCode).toBe(mockTotpResponse2.code);
+      expect(info.totpCodeFormatted).toBe("987 654");
+      done();
+    });
+  });
+});
diff --git a/libs/vault/src/components/totp-countdown/totp-countdown.component.ts b/libs/vault/src/components/totp-countdown/totp-countdown.component.ts
index c634b1165d9..5274ce621f0 100644
--- a/libs/vault/src/components/totp-countdown/totp-countdown.component.ts
+++ b/libs/vault/src/components/totp-countdown/totp-countdown.component.ts
@@ -1,7 +1,13 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import { CommonModule } from "@angular/common";
-import { Component, EventEmitter, Input, OnInit, Output } from "@angular/core";
+import {
+  Component,
+  EventEmitter,
+  Input,
+  OnInit,
+  Output,
+  OnChanges,
+  SimpleChanges,
+} from "@angular/core";
 import { Observable, map, tap } from "rxjs";
 
 import { TotpService } from "@bitwarden/common/vault/abstractions/totp.service";
@@ -14,8 +20,8 @@ import { TypographyModule } from "@bitwarden/components";
   templateUrl: "totp-countdown.component.html",
   imports: [CommonModule, TypographyModule],
 })
-export class BitTotpCountdownComponent implements OnInit {
-  @Input() cipher: CipherView;
+export class BitTotpCountdownComponent implements OnInit, OnChanges {
+  @Input({ required: true }) cipher!: CipherView;
   @Output() sendCopyCode = new EventEmitter();
 
   /**
@@ -26,6 +32,16 @@ export class BitTotpCountdownComponent implements OnInit {
   constructor(protected totpService: TotpService) {}
 
   async ngOnInit() {
+    this.setTotpInfo();
+  }
+
+  ngOnChanges(changes: SimpleChanges) {
+    if (changes["cipher"]) {
+      this.setTotpInfo();
+    }
+  }
+
+  private setTotpInfo(): void {
     this.totpInfo$ = this.cipher?.login?.totp
       ? this.totpService.getCode$(this.cipher.login.totp).pipe(
           map((response) => {

From cef6a5e8d0301d8234039cec1538553168b5b2ca Mon Sep 17 00:00:00 2001
From: cd-bitwarden <106776772+cd-bitwarden@users.noreply.github.com>
Date: Thu, 3 Jul 2025 04:49:39 -0400
Subject: [PATCH 051/239] [SM-1273] Adding enums for additional event logs for
 secrets (#15274)

* Adding enums for additional event logs for secrets

* updating messages

* Updating messages to be consistent for logs
---
 apps/web/src/app/core/event.service.ts   | 16 ++++++++--
 apps/web/src/locales/en/messages.json    | 38 +++++++++++++++++++++++-
 libs/common/src/enums/event-type.enum.ts |  3 ++
 3 files changed, 54 insertions(+), 3 deletions(-)

diff --git a/apps/web/src/app/core/event.service.ts b/apps/web/src/app/core/event.service.ts
index d6e5c8eba5f..14c87181f62 100644
--- a/apps/web/src/app/core/event.service.ts
+++ b/apps/web/src/app/core/event.service.ts
@@ -467,8 +467,20 @@ export class EventService {
         break;
       // Secrets Manager
       case EventType.Secret_Retrieved:
-        msg = this.i18nService.t("accessedSecret", this.formatSecretId(ev));
-        humanReadableMsg = this.i18nService.t("accessedSecret", this.getShortId(ev.secretId));
+        msg = this.i18nService.t("accessedSecretWithId", this.formatSecretId(ev));
+        humanReadableMsg = this.i18nService.t("accessedSecretWithId", this.getShortId(ev.secretId));
+        break;
+      case EventType.Secret_Created:
+        msg = this.i18nService.t("createdSecretWithId", this.formatSecretId(ev));
+        humanReadableMsg = this.i18nService.t("createdSecretWithId", this.getShortId(ev.secretId));
+        break;
+      case EventType.Secret_Deleted:
+        msg = this.i18nService.t("deletedSecretWithId", this.formatSecretId(ev));
+        humanReadableMsg = this.i18nService.t("deletedSecretWithId", this.getShortId(ev.secretId));
+        break;
+      case EventType.Secret_Edited:
+        msg = this.i18nService.t("editedSecretWithId", this.formatSecretId(ev));
+        humanReadableMsg = this.i18nService.t("editedSecretWithId", this.getShortId(ev.secretId));
         break;
       default:
         break;
diff --git a/apps/web/src/locales/en/messages.json b/apps/web/src/locales/en/messages.json
index eed2757eacc..76dcf2cb97d 100644
--- a/apps/web/src/locales/en/messages.json
+++ b/apps/web/src/locales/en/messages.json
@@ -8237,8 +8237,44 @@
   "errorReadingImportFile": {
     "message": "An error occurred when trying to read the import file"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
-    "message": "Accessed secret $SECRET_ID$.",
+  "message": "Accessed secret $SECRET_ID$.",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+   "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+   "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+   "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
     "placeholders": {
       "secret_id": {
         "content": "$1",
diff --git a/libs/common/src/enums/event-type.enum.ts b/libs/common/src/enums/event-type.enum.ts
index 9efe49b1b0f..914dac00abb 100644
--- a/libs/common/src/enums/event-type.enum.ts
+++ b/libs/common/src/enums/event-type.enum.ts
@@ -90,4 +90,7 @@ export enum EventType {
   OrganizationDomain_NotVerified = 2003,
 
   Secret_Retrieved = 2100,
+  Secret_Created = 2101,
+  Secret_Edited = 2102,
+  Secret_Deleted = 2103,
 }

From ab4af7deedccd8d5b937a7c78d21c504edf47d44 Mon Sep 17 00:00:00 2001
From: Nick Krantz <125900171+nick-livefront@users.noreply.github.com>
Date: Thu, 3 Jul 2025 06:14:25 -0500
Subject: [PATCH 052/239] [PM-22179] Redirect user to `/setup-extension`
 (#15375)

* add end user feature flag

* add initial setup extension component and route

* redirect users from registration completion to the setup extension page

* add `hideIcon` to anon layout for web
- matches implementation on the browser.

* integrate with anon layout for extension wrapper

* add initial loading state

* conditionally redirect the user upon initialization

* redirect the user to the vault if the extension is installed

* add initial copy for setup-extension page

* add confirmation dialog for skipping the extension installation

* add success state for setup extension page

* only show loggedin toast when end user activation is not enabled.

* add image alt

* lower threshold for polling extension

* close the dialog when linking to the vault

* update party colors

* use the platform specific registration service to to only forward the web registrations to `/setup-extension`

* call `super` rather than `/vault` directly, it could change in the future
---
 .../web-registration-finish.service.spec.ts   |  22 ++++
 .../web-registration-finish.service.ts        |  15 +++
 apps/web/src/app/core/core.module.ts          |   2 +
 apps/web/src/app/oss-routing.module.ts        |  15 +++
 .../add-extension-later-dialog.component.html |  25 ++++
 ...d-extension-later-dialog.component.spec.ts |  42 ++++++
 .../add-extension-later-dialog.component.ts   |  23 ++++
 .../setup-extension.component.html            |  59 +++++++++
 .../setup-extension.component.spec.ts         | 124 ++++++++++++++++++
 .../setup-extension.component.ts              | 107 +++++++++++++++
 .../web-browser-interaction.service.spec.ts   |   1 +
 .../web-browser-interaction.service.ts        |  40 ++++--
 .../setup-extension-placeholder.png           | Bin 0 -> 788300 bytes
 apps/web/src/locales/en/messages.json         |  45 +++++++
 .../default-registration-finish.service.ts    |   4 +
 .../registration-finish.component.ts          |  23 +++-
 .../registration-finish.service.ts            |   5 +
 libs/common/src/enums/feature-flag.enum.ts    |   2 +
 .../src/vault/utils/get-web-store-url.ts      |  22 ++++
 .../anon-layout-wrapper.component.html        |   1 +
 .../anon-layout-wrapper.component.ts          |   9 ++
 libs/vault/src/icons/index.ts                 |   1 +
 libs/vault/src/icons/party.ts                 |  30 +++++
 23 files changed, 603 insertions(+), 14 deletions(-)
 create mode 100644 apps/web/src/app/vault/components/setup-extension/add-extension-later-dialog.component.html
 create mode 100644 apps/web/src/app/vault/components/setup-extension/add-extension-later-dialog.component.spec.ts
 create mode 100644 apps/web/src/app/vault/components/setup-extension/add-extension-later-dialog.component.ts
 create mode 100644 apps/web/src/app/vault/components/setup-extension/setup-extension.component.html
 create mode 100644 apps/web/src/app/vault/components/setup-extension/setup-extension.component.spec.ts
 create mode 100644 apps/web/src/app/vault/components/setup-extension/setup-extension.component.ts
 create mode 100644 apps/web/src/images/setup-extension/setup-extension-placeholder.png
 create mode 100644 libs/common/src/vault/utils/get-web-store-url.ts
 create mode 100644 libs/vault/src/icons/party.ts

diff --git a/apps/web/src/app/auth/core/services/registration/web-registration-finish.service.spec.ts b/apps/web/src/app/auth/core/services/registration/web-registration-finish.service.spec.ts
index fe3b0837aa8..afaf1bd49d2 100644
--- a/apps/web/src/app/auth/core/services/registration/web-registration-finish.service.spec.ts
+++ b/apps/web/src/app/auth/core/services/registration/web-registration-finish.service.spec.ts
@@ -9,6 +9,7 @@ import { PolicyService } from "@bitwarden/common/admin-console/abstractions/poli
 import { MasterPasswordPolicyOptions } from "@bitwarden/common/admin-console/models/domain/master-password-policy-options";
 import { Policy } from "@bitwarden/common/admin-console/models/domain/policy";
 import { AccountApiService } from "@bitwarden/common/auth/abstractions/account-api.service";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
 import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
@@ -33,6 +34,7 @@ describe("WebRegistrationFinishService", () => {
   let policyApiService: MockProxy<PolicyApiServiceAbstraction>;
   let logService: MockProxy<LogService>;
   let policyService: MockProxy<PolicyService>;
+  let configService: MockProxy<ConfigService>;
   const mockUserId = Utils.newGuid() as UserId;
   let accountService: FakeAccountService;
 
@@ -44,6 +46,7 @@ describe("WebRegistrationFinishService", () => {
     logService = mock<LogService>();
     policyService = mock<PolicyService>();
     accountService = mockAccountServiceWith(mockUserId);
+    configService = mock<ConfigService>();
 
     service = new WebRegistrationFinishService(
       keyService,
@@ -53,6 +56,7 @@ describe("WebRegistrationFinishService", () => {
       logService,
       policyService,
       accountService,
+      configService,
     );
   });
 
@@ -418,4 +422,22 @@ describe("WebRegistrationFinishService", () => {
       );
     });
   });
+
+  describe("determineLoginSuccessRoute", () => {
+    it("returns /setup-extension when the end user activation feature flag is enabled", async () => {
+      configService.getFeatureFlag.mockResolvedValue(true);
+
+      const result = await service.determineLoginSuccessRoute();
+
+      expect(result).toBe("/setup-extension");
+    });
+
+    it("returns /vault when the end user activation feature flag is disabled", async () => {
+      configService.getFeatureFlag.mockResolvedValue(false);
+
+      const result = await service.determineLoginSuccessRoute();
+
+      expect(result).toBe("/vault");
+    });
+  });
 });
diff --git a/apps/web/src/app/auth/core/services/registration/web-registration-finish.service.ts b/apps/web/src/app/auth/core/services/registration/web-registration-finish.service.ts
index 3d99b3b6712..05b8ab5cb0f 100644
--- a/apps/web/src/app/auth/core/services/registration/web-registration-finish.service.ts
+++ b/apps/web/src/app/auth/core/services/registration/web-registration-finish.service.ts
@@ -14,6 +14,8 @@ import { Policy } from "@bitwarden/common/admin-console/models/domain/policy";
 import { AccountApiService } from "@bitwarden/common/auth/abstractions/account-api.service";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { RegisterFinishRequest } from "@bitwarden/common/auth/models/request/registration/register-finish.request";
+import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { EncryptedString, EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { KeyService } from "@bitwarden/key-management";
@@ -32,6 +34,7 @@ export class WebRegistrationFinishService
     private logService: LogService,
     private policyService: PolicyService,
     private accountService: AccountService,
+    private configService: ConfigService,
   ) {
     super(keyService, accountApiService);
   }
@@ -76,6 +79,18 @@ export class WebRegistrationFinishService
     return masterPasswordPolicyOpts;
   }
 
+  override async determineLoginSuccessRoute(): Promise<string> {
+    const endUserActivationFlagEnabled = await this.configService.getFeatureFlag(
+      FeatureFlag.PM19315EndUserActivationMvp,
+    );
+
+    if (endUserActivationFlagEnabled) {
+      return "/setup-extension";
+    } else {
+      return super.determineLoginSuccessRoute();
+    }
+  }
+
   // Note: the org invite token and email verification are mutually exclusive. Only one will be present.
   override async buildRegisterRequest(
     email: string,
diff --git a/apps/web/src/app/core/core.module.ts b/apps/web/src/app/core/core.module.ts
index b6a6ca102d8..b8baa762e91 100644
--- a/apps/web/src/app/core/core.module.ts
+++ b/apps/web/src/app/core/core.module.ts
@@ -62,6 +62,7 @@ import {
   VaultTimeoutStringType,
 } from "@bitwarden/common/key-management/vault-timeout";
 import { AppIdService } from "@bitwarden/common/platform/abstractions/app-id.service";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import {
   EnvironmentService,
   Urls,
@@ -256,6 +257,7 @@ const safeProviders: SafeProvider[] = [
       LogService,
       PolicyService,
       AccountService,
+      ConfigService,
     ],
   }),
   safeProvider({
diff --git a/apps/web/src/app/oss-routing.module.ts b/apps/web/src/app/oss-routing.module.ts
index 615bb545811..31b9ca26e70 100644
--- a/apps/web/src/app/oss-routing.module.ts
+++ b/apps/web/src/app/oss-routing.module.ts
@@ -81,6 +81,7 @@ import { AccessComponent, SendAccessExplainerComponent } from "./tools/send/send
 import { SendComponent } from "./tools/send/send.component";
 import { BrowserExtensionPromptInstallComponent } from "./vault/components/browser-extension-prompt/browser-extension-prompt-install.component";
 import { BrowserExtensionPromptComponent } from "./vault/components/browser-extension-prompt/browser-extension-prompt.component";
+import { SetupExtensionComponent } from "./vault/components/setup-extension/setup-extension.component";
 import { VaultModule } from "./vault/individual-vault/vault.module";
 
 const routes: Routes = [
@@ -579,6 +580,20 @@ const routes: Routes = [
           },
         ],
       },
+      {
+        path: "setup-extension",
+        data: {
+          hideCardWrapper: true,
+          hideIcon: true,
+          maxWidth: "3xl",
+        } satisfies AnonLayoutWrapperData,
+        children: [
+          {
+            path: "",
+            component: SetupExtensionComponent,
+          },
+        ],
+      },
     ],
   },
   {
diff --git a/apps/web/src/app/vault/components/setup-extension/add-extension-later-dialog.component.html b/apps/web/src/app/vault/components/setup-extension/add-extension-later-dialog.component.html
new file mode 100644
index 00000000000..df1786e227e
--- /dev/null
+++ b/apps/web/src/app/vault/components/setup-extension/add-extension-later-dialog.component.html
@@ -0,0 +1,25 @@
+<bit-simple-dialog>
+  <div bitDialogIcon>
+    <i class="bwi bwi-info-circle bwi-2x tw-text-info" aria-hidden="true"></i>
+  </div>
+  <ng-container bitDialogContent>
+    <div bitTypography="h3">
+      {{ "cannotAutofillPasswordsWithoutExtensionTitle" | i18n }}
+    </div>
+    <div bitTypography="body1">{{ "cannotAutofillPasswordsWithoutExtensionDesc" | i18n }}</div>
+  </ng-container>
+  <ng-container bitDialogFooter>
+    <a
+      bitButton
+      buttonType="primary"
+      [href]="webStoreUrl"
+      target="_blank"
+      rel="noopener noreferrer"
+    >
+      {{ "getTheExtension" | i18n }}
+    </a>
+    <a bitButton buttonType="secondary" routerLink="/vault" bitDialogClose>
+      {{ "skipToWebApp" | i18n }}
+    </a>
+  </ng-container>
+</bit-simple-dialog>
diff --git a/apps/web/src/app/vault/components/setup-extension/add-extension-later-dialog.component.spec.ts b/apps/web/src/app/vault/components/setup-extension/add-extension-later-dialog.component.spec.ts
new file mode 100644
index 00000000000..d34dba737dd
--- /dev/null
+++ b/apps/web/src/app/vault/components/setup-extension/add-extension-later-dialog.component.spec.ts
@@ -0,0 +1,42 @@
+import { ComponentFixture, TestBed } from "@angular/core/testing";
+import { By } from "@angular/platform-browser";
+import { provideNoopAnimations } from "@angular/platform-browser/animations";
+import { RouterModule } from "@angular/router";
+
+import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
+
+import { AddExtensionLaterDialogComponent } from "./add-extension-later-dialog.component";
+
+describe("AddExtensionLaterDialogComponent", () => {
+  let fixture: ComponentFixture<AddExtensionLaterDialogComponent>;
+  const getDevice = jest.fn().mockReturnValue(null);
+
+  beforeEach(async () => {
+    await TestBed.configureTestingModule({
+      imports: [AddExtensionLaterDialogComponent, RouterModule.forRoot([])],
+      providers: [
+        provideNoopAnimations(),
+        { provide: PlatformUtilsService, useValue: { getDevice } },
+        { provide: I18nService, useValue: { t: (key: string) => key } },
+      ],
+    }).compileComponents();
+
+    fixture = TestBed.createComponent(AddExtensionLaterDialogComponent);
+    fixture.detectChanges();
+  });
+
+  it("renders the 'Get the Extension' link with correct href", () => {
+    const link = fixture.debugElement.queryAll(By.css("a[bitButton]"))[0];
+
+    expect(link.nativeElement.getAttribute("href")).toBe(
+      "https://bitwarden.com/download/#downloads-web-browser",
+    );
+  });
+
+  it("renders the 'Skip to Web App' link with correct routerLink", () => {
+    const skipLink = fixture.debugElement.queryAll(By.css("a[bitButton]"))[1];
+
+    expect(skipLink.attributes.href).toBe("/vault");
+  });
+});
diff --git a/apps/web/src/app/vault/components/setup-extension/add-extension-later-dialog.component.ts b/apps/web/src/app/vault/components/setup-extension/add-extension-later-dialog.component.ts
new file mode 100644
index 00000000000..3324cb8b1b0
--- /dev/null
+++ b/apps/web/src/app/vault/components/setup-extension/add-extension-later-dialog.component.ts
@@ -0,0 +1,23 @@
+import { Component, inject, OnInit } from "@angular/core";
+import { RouterModule } from "@angular/router";
+
+import { JslibModule } from "@bitwarden/angular/jslib.module";
+import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
+import { getWebStoreUrl } from "@bitwarden/common/vault/utils/get-web-store-url";
+import { ButtonComponent, DialogModule, TypographyModule } from "@bitwarden/components";
+
+@Component({
+  selector: "vault-add-extension-later-dialog",
+  templateUrl: "./add-extension-later-dialog.component.html",
+  imports: [DialogModule, JslibModule, TypographyModule, ButtonComponent, RouterModule],
+})
+export class AddExtensionLaterDialogComponent implements OnInit {
+  private platformUtilsService = inject(PlatformUtilsService);
+
+  /** Download Url for the extension based on the browser */
+  protected webStoreUrl: string = "";
+
+  ngOnInit(): void {
+    this.webStoreUrl = getWebStoreUrl(this.platformUtilsService.getDevice());
+  }
+}
diff --git a/apps/web/src/app/vault/components/setup-extension/setup-extension.component.html b/apps/web/src/app/vault/components/setup-extension/setup-extension.component.html
new file mode 100644
index 00000000000..fc2b1bc60cb
--- /dev/null
+++ b/apps/web/src/app/vault/components/setup-extension/setup-extension.component.html
@@ -0,0 +1,59 @@
+<i
+  *ngIf="state === SetupExtensionState.Loading"
+  class="bwi bwi-spinner bwi-spin bwi-3x tw-text-muted"
+  aria-hidden="true"
+  [appA11yTitle]="'loading' | i18n"
+></i>
+
+<section *ngIf="state === SetupExtensionState.NeedsExtension" class="tw-text-center tw-mt-4">
+  <h1 bitTypography="h2">{{ "setupExtensionPageTitle" | i18n }}</h1>
+  <h2 bitTypography="body1">{{ "setupExtensionPageDescription" | i18n }}</h2>
+  <div class="tw-mb-6">
+    <!-- Placeholder - will be removed in following tickets -->
+    <img
+      class="tw-max-w-3xl"
+      [alt]="'setupExtensionContentAlt' | i18n"
+      src="/images/setup-extension/setup-extension-placeholder.png"
+    />
+  </div>
+  <div class="tw-flex tw-flex-col tw-gap-4 tw-items-center">
+    <a
+      bitButton
+      buttonType="primary"
+      [href]="webStoreUrl"
+      target="_blank"
+      rel="noopener noreferrer"
+    >
+      {{ "getTheExtension" | i18n }}
+    </a>
+    <button type="button" bitLink (click)="addItLater()">
+      {{ "addItLater" | i18n }}
+    </button>
+  </div>
+</section>
+
+<section *ngIf="state === SetupExtensionState.Success" class="tw-flex tw-flex-col tw-items-center">
+  <bit-icon [icon]="PartyIcon"></bit-icon>
+  <h1 bitTypography="h2" class="tw-mb-6 tw-mt-4">{{ "bitwardenExtensionInstalled" | i18n }}</h1>
+  <div
+    class="tw-flex tw-flex-col tw-rounded-2xl tw-bg-background tw-border tw-border-solid tw-border-secondary-300 tw-p-8"
+  >
+    <p>{{ "openExtensionToAutofill" | i18n }}</p>
+    <button type="button" bitButton buttonType="primary" class="tw-mb-2" (click)="openExtension()">
+      {{ "openBitwardenExtension" | i18n }}
+    </button>
+    <a bitButton buttonType="secondary" routerLink="/vault">
+      {{ "skipToWebApp" | i18n }}
+    </a>
+  </div>
+  <p class="tw-mt-10 tw-max-w-96 tw-text-center">
+    {{ "gettingStartedWithBitwardenPart1" | i18n }}
+    <a bitLink href="https://bitwarden.com/help/">
+      {{ "gettingStartedWithBitwardenPart2" | i18n }}
+    </a>
+    {{ "and" | i18n }}
+    <a bitLink href="https://bitwarden.com/help/learning-center/">
+      {{ "gettingStartedWithBitwardenPart3" | i18n }}
+    </a>
+  </p>
+</section>
diff --git a/apps/web/src/app/vault/components/setup-extension/setup-extension.component.spec.ts b/apps/web/src/app/vault/components/setup-extension/setup-extension.component.spec.ts
new file mode 100644
index 00000000000..304aaafab9e
--- /dev/null
+++ b/apps/web/src/app/vault/components/setup-extension/setup-extension.component.spec.ts
@@ -0,0 +1,124 @@
+import { ComponentFixture, TestBed } from "@angular/core/testing";
+import { By } from "@angular/platform-browser";
+import { Router, RouterModule } from "@angular/router";
+import { BehaviorSubject } from "rxjs";
+
+import { DeviceType } from "@bitwarden/common/enums";
+import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
+import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
+import { Utils } from "@bitwarden/common/platform/misc/utils";
+
+import { WebBrowserInteractionService } from "../../services/web-browser-interaction.service";
+
+import { SetupExtensionComponent } from "./setup-extension.component";
+
+describe("SetupExtensionComponent", () => {
+  let fixture: ComponentFixture<SetupExtensionComponent>;
+  let component: SetupExtensionComponent;
+
+  const getFeatureFlag = jest.fn().mockResolvedValue(false);
+  const navigate = jest.fn().mockResolvedValue(true);
+  const openExtension = jest.fn().mockResolvedValue(true);
+  const extensionInstalled$ = new BehaviorSubject<boolean | null>(null);
+
+  beforeEach(async () => {
+    navigate.mockClear();
+    openExtension.mockClear();
+    getFeatureFlag.mockClear().mockResolvedValue(true);
+
+    await TestBed.configureTestingModule({
+      imports: [SetupExtensionComponent, RouterModule.forRoot([])],
+      providers: [
+        { provide: I18nService, useValue: { t: (key: string) => key } },
+        { provide: ConfigService, useValue: { getFeatureFlag } },
+        { provide: WebBrowserInteractionService, useValue: { extensionInstalled$, openExtension } },
+        { provide: PlatformUtilsService, useValue: { getDevice: () => DeviceType.UnknownBrowser } },
+      ],
+    }).compileComponents();
+
+    fixture = TestBed.createComponent(SetupExtensionComponent);
+    component = fixture.componentInstance;
+    fixture.detectChanges();
+    const router = TestBed.inject(Router);
+    router.navigate = navigate;
+  });
+
+  it("initially shows the loading spinner", () => {
+    const spinner = fixture.debugElement.query(By.css("i"));
+
+    expect(spinner.nativeElement.title).toBe("loading");
+  });
+
+  it("sets webStoreUrl", () => {
+    expect(component["webStoreUrl"]).toBe("https://bitwarden.com/download/#downloads-web-browser");
+  });
+
+  describe("initialization", () => {
+    it("redirects to the vault if the feature flag is disabled", async () => {
+      Utils.isMobileBrowser = false;
+      getFeatureFlag.mockResolvedValue(false);
+      navigate.mockClear();
+
+      await component.ngOnInit();
+
+      expect(navigate).toHaveBeenCalledWith(["/vault"]);
+    });
+
+    it("redirects to the vault if the user is on a mobile browser", async () => {
+      Utils.isMobileBrowser = true;
+      getFeatureFlag.mockResolvedValue(true);
+      navigate.mockClear();
+
+      await component.ngOnInit();
+
+      expect(navigate).toHaveBeenCalledWith(["/vault"]);
+    });
+
+    it("does not redirect the user", async () => {
+      Utils.isMobileBrowser = false;
+      getFeatureFlag.mockResolvedValue(true);
+      navigate.mockClear();
+
+      await component.ngOnInit();
+
+      expect(getFeatureFlag).toHaveBeenCalledWith(FeatureFlag.PM19315EndUserActivationMvp);
+      expect(navigate).not.toHaveBeenCalled();
+    });
+  });
+
+  describe("extensionInstalled$", () => {
+    it("redirects the user to the vault when the first emitted value is true", () => {
+      extensionInstalled$.next(true);
+
+      expect(navigate).toHaveBeenCalledWith(["/vault"]);
+    });
+
+    describe("success state", () => {
+      beforeEach(() => {
+        // avoid initial redirect
+        extensionInstalled$.next(false);
+
+        fixture.detectChanges();
+
+        extensionInstalled$.next(true);
+        fixture.detectChanges();
+      });
+
+      it("shows link to the vault", () => {
+        const successLink = fixture.debugElement.query(By.css("a"));
+
+        expect(successLink.nativeElement.href).toContain("/vault");
+      });
+
+      it("shows open extension button", () => {
+        const openExtensionButton = fixture.debugElement.query(By.css("button"));
+
+        openExtensionButton.triggerEventHandler("click");
+
+        expect(openExtension).toHaveBeenCalled();
+      });
+    });
+  });
+});
diff --git a/apps/web/src/app/vault/components/setup-extension/setup-extension.component.ts b/apps/web/src/app/vault/components/setup-extension/setup-extension.component.ts
new file mode 100644
index 00000000000..839572f3a30
--- /dev/null
+++ b/apps/web/src/app/vault/components/setup-extension/setup-extension.component.ts
@@ -0,0 +1,107 @@
+import { NgIf } from "@angular/common";
+import { Component, DestroyRef, inject, OnInit } from "@angular/core";
+import { takeUntilDestroyed } from "@angular/core/rxjs-interop";
+import { Router, RouterModule } from "@angular/router";
+import { pairwise, startWith } from "rxjs";
+
+import { JslibModule } from "@bitwarden/angular/jslib.module";
+import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
+import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
+import { Utils } from "@bitwarden/common/platform/misc/utils";
+import { UnionOfValues } from "@bitwarden/common/vault/types/union-of-values";
+import { getWebStoreUrl } from "@bitwarden/common/vault/utils/get-web-store-url";
+import {
+  ButtonComponent,
+  DialogRef,
+  DialogService,
+  IconModule,
+  LinkModule,
+} from "@bitwarden/components";
+import { VaultIcons } from "@bitwarden/vault";
+
+import { WebBrowserInteractionService } from "../../services/web-browser-interaction.service";
+
+import { AddExtensionLaterDialogComponent } from "./add-extension-later-dialog.component";
+
+const SetupExtensionState = {
+  Loading: "loading",
+  NeedsExtension: "needs-extension",
+  Success: "success",
+} as const;
+
+type SetupExtensionState = UnionOfValues<typeof SetupExtensionState>;
+
+@Component({
+  selector: "vault-setup-extension",
+  templateUrl: "./setup-extension.component.html",
+  imports: [NgIf, JslibModule, ButtonComponent, LinkModule, IconModule, RouterModule],
+})
+export class SetupExtensionComponent implements OnInit {
+  private webBrowserExtensionInteractionService = inject(WebBrowserInteractionService);
+  private configService = inject(ConfigService);
+  private router = inject(Router);
+  private destroyRef = inject(DestroyRef);
+  private platformUtilsService = inject(PlatformUtilsService);
+  private dialogService = inject(DialogService);
+
+  protected SetupExtensionState = SetupExtensionState;
+  protected PartyIcon = VaultIcons.Party;
+
+  /** The current state of the setup extension component. */
+  protected state: SetupExtensionState = SetupExtensionState.Loading;
+
+  /** Download Url for the extension based on the browser */
+  protected webStoreUrl: string = "";
+
+  /** Reference to the add it later dialog */
+  protected dialogRef: DialogRef | null = null;
+
+  async ngOnInit() {
+    await this.conditionallyRedirectUser();
+
+    this.webStoreUrl = getWebStoreUrl(this.platformUtilsService.getDevice());
+
+    this.webBrowserExtensionInteractionService.extensionInstalled$
+      .pipe(takeUntilDestroyed(this.destroyRef), startWith(null), pairwise())
+      .subscribe(([previousState, currentState]) => {
+        // Initial state transitioned to extension installed, redirect the user
+        if (previousState === null && currentState) {
+          void this.router.navigate(["/vault"]);
+        }
+
+        // Extension was not installed and now it is, show success state
+        if (previousState === false && currentState) {
+          this.dialogRef?.close();
+          this.state = SetupExtensionState.Success;
+        }
+
+        // Extension is not installed
+        if (currentState === false) {
+          this.state = SetupExtensionState.NeedsExtension;
+        }
+      });
+  }
+
+  /** Conditionally redirects the user to the vault upon landing on the page. */
+  async conditionallyRedirectUser() {
+    const isFeatureEnabled = await this.configService.getFeatureFlag(
+      FeatureFlag.PM19315EndUserActivationMvp,
+    );
+    const isMobile = Utils.isMobileBrowser;
+
+    if (!isFeatureEnabled || isMobile) {
+      await this.router.navigate(["/vault"]);
+    }
+  }
+
+  /** Opens the add extension later dialog */
+  addItLater() {
+    this.dialogRef = this.dialogService.open(AddExtensionLaterDialogComponent);
+  }
+
+  /** Opens the browser extension */
+  openExtension() {
+    void this.webBrowserExtensionInteractionService.openExtension();
+  }
+}
diff --git a/apps/web/src/app/vault/services/web-browser-interaction.service.spec.ts b/apps/web/src/app/vault/services/web-browser-interaction.service.spec.ts
index 68a9ca6d099..fef5d45e8c3 100644
--- a/apps/web/src/app/vault/services/web-browser-interaction.service.spec.ts
+++ b/apps/web/src/app/vault/services/web-browser-interaction.service.spec.ts
@@ -61,6 +61,7 @@ describe("WebBrowserInteractionService", () => {
       tick(1500);
       expect(results[0]).toBe(false);
 
+      tick(2500);
       // then emit `HasBwInstalled`
       dispatchEvent(VaultMessages.HasBwInstalled);
       tick();
diff --git a/apps/web/src/app/vault/services/web-browser-interaction.service.ts b/apps/web/src/app/vault/services/web-browser-interaction.service.ts
index 46c566140e4..f1005ef6dc9 100644
--- a/apps/web/src/app/vault/services/web-browser-interaction.service.ts
+++ b/apps/web/src/app/vault/services/web-browser-interaction.service.ts
@@ -1,6 +1,21 @@
 import { DestroyRef, inject, Injectable } from "@angular/core";
 import { takeUntilDestroyed } from "@angular/core/rxjs-interop";
-import { concatWith, filter, fromEvent, map, Observable, race, take, tap, timer } from "rxjs";
+import {
+  concat,
+  filter,
+  fromEvent,
+  interval,
+  map,
+  Observable,
+  of,
+  race,
+  shareReplay,
+  switchMap,
+  take,
+  takeWhile,
+  tap,
+  timer,
+} from "rxjs";
 
 import { ExtensionPageUrls } from "@bitwarden/common/vault/enums";
 import { VaultMessages } from "@bitwarden/common/vault/enums/vault-messages.enum";
@@ -22,13 +37,22 @@ export class WebBrowserInteractionService {
   );
 
   /** Emits the installation status of the extension. */
-  extensionInstalled$ = this.checkForExtension().pipe(
-    concatWith(
-      this.messages$.pipe(
-        filter((event) => event.data.command === VaultMessages.HasBwInstalled),
-        map(() => true),
-      ),
-    ),
+  extensionInstalled$: Observable<boolean> = this.checkForExtension().pipe(
+    switchMap((installed) => {
+      if (installed) {
+        return of(true);
+      }
+
+      return concat(
+        of(false),
+        interval(2500).pipe(
+          switchMap(() => this.checkForExtension()),
+          takeWhile((installed) => !installed, true),
+          filter((installed) => installed),
+        ),
+      );
+    }),
+    shareReplay({ bufferSize: 1, refCount: true }),
   );
 
   /** Attempts to open the extension, rejects if the extension is not installed or it fails to open.  */
diff --git a/apps/web/src/images/setup-extension/setup-extension-placeholder.png b/apps/web/src/images/setup-extension/setup-extension-placeholder.png
new file mode 100644
index 0000000000000000000000000000000000000000..03a6d8951c01924b20d9e3c52d35d0456ae4ede9
GIT binary patch
literal 788300
zcmafa_di?z`##n3(iUAtjp(GURYef1la_{>DJoV=RZt^{*t2G8RW%K5)hH!N5k<rn
zGt{V9(IR5Rt{5@C`TPUl_v7(Ak28Ka=RW80yzl3AU)OcwpBNhm92Y;%#l<D?=;3`c
zE-qfq;Sr<%{%?0t*KU}z<A43o+Lwz<<m&%z+>gwzta2`L`<fZt<tn2{&T~$Vy50fb
z;o`!hPV6}z<2uRv_tE`37J=N%eGk-C%^xyv&d<wUDlcZU#;unGtwv*Rp1LsKb!0b8
zMa&^I+e&Oda_Hgim51S98;_j$OCyDpl*nC9Ne8hE^HTlvWN(!t2@5!_8_mt*7?d7s
z%8w*AV4@ec6V_O+-St1lUa?_~0GCDJJ6FX281|MOtMa|;|6|nGtV?qJ&%5mizhiJU
z{EyJIyRbNIKCT?P_5Xi_#?Upn{&#3{^1a;Q|NAW+5rSO*`>P%A^5y#TKjO-vL!K(G
zVhl^u^<;L#wD?Bxhx>CHS4mrDiuIGo`asFUkfV#%6O*>O%?CXTx_|eXfvs}m-b=#{
zJb~kFE@Zj!uoD=--|Wnl2mzym3#`k*TMILf8Lm_-GAg4UNbri-M3N(f+fdv4m#H}I
zSEx0qOkKm}^5Cpn?)QrJM>MGg?~m<j&0rqSJeN3uIHM`q-nFpn6|MkX>2jQKr4Gyq
zxl-Ak(&;An(godgz4pbE=rEQFO}f#FPFqb5-2abo8I5z;7QpEw>;vpUKjIDWVT&5C
zXBol=An!k?p+f)^PUj3CsZu9rXXi3Cc3ptEd6Hee$FMA}N)CEGwe>DH6I*xSzPw+T
zD?oCdFjznQ2tUx#tYaKZ)`o5;)EvGe>g{hk4<D9>EP1(|mHwtxIomc_^EEg0U>yv$
zlE|fA7$tN|scSY~b={q2hh81IYX6Xsg*nJEFHmP~`hWBy+tNJajvcSG^4hBD=voR?
zI<~$94N6klNs6YWm=Y!rSU%~psaa$Efu1!J8#c%Hm+1ap+HJn4<!C~9hlx%9gP55&
zrDhY+Oa4>v$(`!;n3Tl!wSzapD=3C%Hfk&3R-+76J+AJpw(>jMiI@cnOaAGPcKq`3
z1O>Ryg`LbCZbY+v5KNfnwMCv>vrbhd0ye)qE#n^h2q~-WIA%*81BYtW`%|%g<BkyM
z1IDAkX6KnZbhWu>9+$MBM!5L)#n9T^(dhYSGb`#)$2NDFt`|^C1~+>2{(xqe@K`t0
zRLORE>GUEcXLw9tH7s@58Kbh26f$MRB_BYVfm5{AVYQC#oFiJG0O>gq%HP%QJ}sb}
z_c7#KAKnRJ08<oXiknONx4bK)>LWLS_!)S7sUWMSzq&Qzti6q6y`f~F^;|H-eiRs=
zO9R|tW+Jpurrla?5yUs9sgTOyZ@JQ=a<BK2SmI6={@%CoMS=|P3k$)XSaaCJp3>qF
zSB%OtV8!7xXkUHn7wP4fykaNTmOgs&J@<OfBY~5%I>qxf@R85I2R|avMXSkuB+UcM
z8pJ#QN9l=5%$Vf|qzK5Hm9JmdF)QHpCY`&~@74Q!-t)+79qh0MtD_QArzhv|6J?_H
zEGizSqzoi_FX4n66+=s@%#kP1ow`fC#dp3n`(G>&kmx!uu@-t7*2I33jM9SM2?R$#
z`rU59&P9P>WTFg0ubd*~g#mx^GCCP_pHVEDHY}r#$(eiRWbB2#PK|C^&eXZ#)xHR9
z=Dng$<3+wei!BW;2Dg?BSC6)|0OXt!L83@fS)d1XbxW|;K_YO8`O9$<IImiU0W${+
zv>FI4wBQ#~e1N}drOtzfjObG1>F@>Oi1TWuFmSChlhQkNdte8oe;TWzCqxtg4QsrH
z?D>%f9nmcj=Ye?sv~gkf2<ki<mD{Sjn@BxdX_BA3D<6h7tK5h%{K9J9yRR`H!Jl_0
z>br4hmh+D8$F9q<2FR>s?ZbaN#+`pRrRUdb7ytuen=k2DEYf>^vhw2)k_EFj9}jtK
zaDoQXZ17$wt^aenE@}7XhDkXayKo4tAu&d{NGQ^HoiwJ$SCp~k^!_9AjP$aQv~;u8
zk`BV}AX|y%+$)`#+Zv)#&kDcq#@ZN}_d>@q&}CdtT4#+SO|nj?y~n8}>UCx(-^c9p
z&%8}Z2TZT1bxeN!`$o!QSq$lREB6)o1{paQ9?^MLO}x_cm8V(WslzWS`dadRxLNeT
z@2~5F&aEn5J`o{oJNz4OXV+T4S7!)g$%g%c*T0omG=CYe-zz@_Y|Uu|#qrx}827v7
zlcRfZH?g03Bc%)9ii-@Pn}6%Ji(@+i>3Z8W@&20j5{<FP^vrZvN0T8ky*cO4gu!m~
z#sG-a5bJx%>O`fmu&e2=X;IJ8N9$)`!F5iKmmgx1!^cey|11qSm;7NGA{4=K;v02!
zXEst~m4y!=N8bDf6Mv6x%m!ZFx4`<|3{l29unHSx5bTn^e`<}t?R&#s`VdJY)CM`9
zqc@#ICnFREKPjozV=oF8DLsHXKbs3I)xpxRJu)9dq@7DJA;n79QA4^Sc9P*VNR8OB
zI>4u+P*>`|%g+w_U@eY`tOZ<^s3#60E%YnPY{jT@K=Y|Vq7=_b?*{UBKe0TAH>NqR
zPQP}P&t!epG4cteIazpNos(WMocC3!5mG(2Ur@mrb@l-ZOq|%Nd{}0r$Fb*oK8xW&
zb(PZXfyIK|skV)q`@nYJzZ5m8x0XAbojg#il7tk*9f{l9-#1idZ~o}mS1rKhOwK(k
z)9YNbV?$5CeY~#pVu<6Ce2ZlF>dRVi_*sJOl9JNMGGwCM&Wmc;!h2iF_+(BLEwMQ^
z2HUI7TzS4I8VBYRh_9+KH@J1Mx~T;(aBMv2N4GY25gPnA_)w(_4U^#>XouRh8y+`%
zO9XMl5?(8tK@xr4gV)9BfhAjLN+#sMb`VkHI86D|?^yVsl{n$I_j@$Od{DFA{3#=6
z__<WXp4LKeEO<s8`fKVbg`1C0CUYyA_@&ODb!|oEOQ!SINeO3Zga`Gk-6W14Pr(oi
z{umW+bXgS6+r;N)#ei`XQIdt2EvnA(GE!&tYOAsL?a_zO6fZ%P2ac@HbTELWYdpzQ
zy2CJPalalh+)uvNMEa$32}ppvB%Nal;~im0>y`-Xq+777iFLDZ$)9B&Q$ei|CP?t>
z7=KZ1R!ki!^U<Cvv)er}_gAlZ!@K*6@KmKt_}&%hM%wUJlSfR~airAJ5c$HtxECjD
zFt0;u`wd1a*FSZY&#w;4c{JVr60dxFlCD8*UWs1Zys>mV<poIj*jT98M&KDy<KpVR
zy4RQZ!)o8``RmXUdE-2TCg~CaVK1jTmV&-#^$MjY`)5<DI<6>5KE5meDoe}cF`{}X
z`Kb;tO^a!XQ^G%BzRXf5f97}b(KUH9_((ZsZ*nFwS!UuCL9Vi1F~FhOM>uS_@ll4k
z{3sCA#_xRE)>xvBZAnR2bDXinAA@FAao0MGDT01gILgAbOj4X-P3SobkH~rfabWso
zmN5gw{}|@P=<qgW?81svv~%W($63KGC67V>h%a_MJ7d8fP7PMuW3!id@I5j|(QBh7
zQwgBl^<pY2c;3ZagZpvsq|toHw{indl@jA287R)Px1>FF_y+NA#W4C07!MBNN61}f
z<x}8CYzo}p58rYM0FgmTwt5Ipx>4<%cCVjcX1z(B5}0YaNYJ>=dT)R{2~sLkC?p;2
zo4W0a>LWww3On1QtwjjQCulLIsSK}th}&sC#j~*OxRP>%+09X>w<FH)4x$l~8Yt7t
zz@wi%W?B?1K75SsIfl_5<JCV1qN7i8&7F9!J8u8+OGRqN&&Fsvd{KhFJN1Q<b@X}k
zQ-8ONs_bH)eQ@dnmpGP>)%fC7^hc=fR8q83RU3v^@ZqT$#J0l|O~-+n&zefPz0yYT
z23`SMf1jo{qD84~a*<VlS1WMm{UdIPh9kBzoE!_C4>XA`)qtUciK|`r0)=5Wa@TBR
ziFLC(aZfAwd(oZ0WS~`T61`lW)CR{fVOuk3HW`c`iq`?bDyNsYY-1<@2*{)nU|Pm{
z2r8sePB@Ex2cWC?HU7W{tDU@*YJP{mX8qix>Ht54tON@zQofCp@IIicX;w2lS`<k?
zl6aEnmJ-S78sTJ(hL<4Gos($b1s_AQw?qC${9daw&wFx_*{t^;7F$jgnU5rEybfQY
zTQC&$;iN$)i|i41xc6<G>E5$BPVV9ZsLKha0>}!3P2U8bEV$(RwxWszQ~2stmfEsL
z!;tPuRhEjswi6<>J8bgHQk+Q@B|EWOmmZo;NQ)wud9t>B{@%I%&;yE6{pjO~@toMF
z+b`{v4GG+IW;jjZd6)K-5wn7Nb!2)!uLu`RL*U;-x=j$Q15{qD^Q3YJM%}^KO+5EC
z3-G3Tyo0^!wU+x?<BqmF^6Dq`;(t2+yM6SU>U4y!%C+=~xVAq&Kxn$3j9HW=<(cEa
zm;kjXPj|kZ)?Sh|iK{0*3wpfX{U`82J)NR`o}fw_!b<sbk!=AByy~(HG20(Pz&h#0
zXSp6twdG^6bu|$M&v|xIhvo4f4y+)o_k75IAP6*VjmAzKnLcN$X1~7T>tP;|u8t86
zDxg66#cii6v!VtNXQ1H18|u(rCVp#!h7twE`P1n1TdTTGReF!7!Wr5T`qxsFxzUL{
zzDV#aL#@YSN?uSEb^%15))njyexw&P-(1^l#T;>SXbRMO!*c>@iF}T()?oMi?hr~D
z28s=kBRpaSmYd(Xu#STn6+d=2k7&ot0{`=sIM*VL*mK<xY=v5Wk~(|@;+;^B`{3~N
zx3v1<u(Rh0s`QZ9zng3Kvu9Q^cWVcZRt$PRJexm$zFKRnKEN2aQ2EU<*U1+i5b#!P
z3HzvT@^Y<Q8fki^p<tL$JVT0zqg@=m-&ah1Hl9RD-z3@T-0=*^IXsbw^gCN&r|kk;
zzU?Jal%JC~IQ2SAPtTkG1Nd>EK$X;?2;f?_PL1BzsKw2Y^xgVE!)*=tkV3IEZbND0
z;H{L<qmTLZt^#565rKet0RYzvG3BOiXr3HbboTJK=A18-CDc;zx^Fq;;F0mSI;Fc`
zLt5&BQi?VL%TMvGZapToQAZ`*m$djD{>a|0+F)-FO+H@2t1M@L><xu^6}8x`wSXsg
zSFaXD?a#jHnW(KYKp46{pK9E*9WL{K7+I|d7u?+j3q23WhEzt)&8gL|-X^E;Xu_ro
z32VunkbJK7$&p+yfeVH^m)is8pVURCh@d-cc2irg)z_rnDYAsXBFk>9=6x8vC?_30
zF1BP)vq{_iy8*`CnR^S~JJNUcbAo_o@mUxcT8p}s?z(*HlkxJXvsROCv&)thjEkjg
zy?8$~Rw2La-X;`guzr014f71Uj=KGK^gF&&1+REUUb<CxXr~kKIoHx3OUbL#jZ~O$
z$Ii;392XJC*cuZP4g9U1)d#2152b+obLkqNwxDY?oGkm)s>)GaC+urktSix4@`=10
zrfaO5xe1_g0TOu<1Vp?qIAw8j)m1qjUcd(I^w&|1gRfH>f?EJ<TlS&VO?^<rJ1;9$
zD<To5x?ypGGTuiSvdMQ&Bd5dqywka_h6a2x-Wk27v~HJ;ku)mjcl-HjEXHg<|6aAf
z{241qm9ajqCc^dD7WGMJ^$FXIuoJKw<PSJKn6J-=Up{Wsx9lYeC#|%_#}`|TeU^Q%
zP;Odg^|Xkhe~!m1j7C?K*B?iZIu8woN;tFM=m=6tX^>VCdP1_fd8gKo3}c1?^$WPA
zrW8YJ@E1nfI?Ck>7+zmd7KBamk2$k!+&0OxE?p~|PZ^s>*;R?A+O<sEwuk|-O<^Jw
zqeIxf9tyzqFgI28;ncu}FU>N_E-@i)s0*wGn$hj_6Tn@zJ&pDsyL@SNDKR*<p-}Xr
zAJyvm&d6ry1%4w~04wU{K5XU=v;>^ck&bkqa9tNBXmEQZ=u{q@QeFhuZXdvOZxZ6`
z)d&@DdjmJAmsp>dS4-EfvDU_@rT3%oy`Lq5qw&3tu^!jMPK^yy7yAL}EB7|e=2GAX
zrp&F;>2QqK&ETpqQRoV%=BhPYu@9<+2`dpgqs~b@176Pf2#SoZSRP<%GfLTz&9EX7
znnc*I00}&m_L-kH^Le1szYt8{_jW>N>QlkUX-m*Ez2M>X&%#`zf4|T-uZ}TM+c=2Z
z+yb-rXYdR-E8djPK~1wqpCpAu2x}@#bZWC_6yzKK{KLo_$p7@4JxebG1IyK%27*Uv
z+@~ZILLPl1m%(!#Yb*C?Wk_{*pp!dQ0*HYdbr~AX&qx6~eUI~CMSI;1343MaHmZPa
zDeKmJV2?-k`_iH(u=R+yjwdBKU`_S%J&z-w>}5m{Jwgk?4FJ5y`Mn>K80GHE9$E^{
zgz+zZO0D94WyIq^W=lv1@!X;!%=n-Sd{7L+I4IS$cr?mEr(KJpnpuieZLia{>o!*y
zhjmm5EDah1nE?mSTV_qfhO=dMCgH-#yZyjMe-s59;8c6tR-bi41#lVrzU)G&Q-+hd
z{gL;({o!_gH3s%~VO&zIFVxDlJmm%d$Ha@ktc1_J_Dv%ySOaB4oXLK$2;U{v&ppam
z$u{E1_FJX%Uauwd-r)}~=zmi}Fkf*xh(NupZK#<&C;w0E?a@O589H6lSAB{wyI3r`
z^kK;@4MeJ?YE8mh$k(+$`EUwzG`^r@{%&D*yBo_zTr2KoDbI1mi=~u;m2SBJUQ<EV
zsCe=<Sv{I2IC`|4l4Pl=_PWX=QbB_7SlK;BfR`D(q5{ig9bZ$v?lc_{*<-c)ZG3~|
z;W1k;_{Gs~ST4ZNBdZ6Lx=EAIs!N;EaLRj8eO-uJ=}E6FH8!hWFDTJ+y>2BohNpZs
zI@Z6qCuvJYdXT%vj7v0C^&Ni+J}8Hf$Lc^3WD;w1qs9bbj<LT^^K2U1hAp`7G-MGR
zuuz5^w5|?HP$N9YhbDukZ*yP+JcZ~bSnFSgL>C3@B3fu`uc*JhKQT)G^HPBZ)G)fC
z0urxBKUOQLp*a|2znRlD4WGlQW2DEXP4|fYO9iH7^YJOT2bf$oVp{keD-gh^It2Nr
zHp+O!lG^#Z=_7IU=X!N-TeG^H<*0zh{FBYn7?8uv<kJ+@w-%&VbB_vtr)q0zR>qas
ze*U^H^iB}%l=>rx_ILNmt0l-2Q?{6HidXFAMoq#<h&JIerZ_l8=b%S#C68E&!`Ou>
z5e#NZf&^?UsvJ~qpn$JUqzb7bq+1T=_K!--L7LxPsgyvSBpx}~k`M;FgOqCHPi3=P
zk(0u4DbEu%xNdIM=S>@MXg7%kDXK%HM_=~zPLg`<Op0%f#?APifL8g!xO1@Q{#fLc
zz@{rvW`X_5GWy5v22xELkg~Pgy{i;Tbak_EeDt?KZ4Z4>BQ5Ml#_m-e!!oVqz*E(~
zb=n1tK6JXqPT_|>YTdgCQ!dhn$p}4^p)Sq@g@s9d{@^t5X9};0NE5tYiz17ZRU*-n
zL9ig>r8Oj<^bw<miFxhS8lUci*vbj@eD4RezMmh4CvnZhZog%$(TGms!r&UHaduHk
z{7Sm-Lga8U{Bc=+)-`|7&*^I`dF?G(%MG((C?A18Pj4j!m6j=w@0c}MiLyp@PH4v_
zZ~nk(&Mm3M)tEKB)ge5Xc-=?Uo3VURIV9~-+`P0mj;noo@=mCU<kPmFPi{1f+UGA{
zhBk%}hZ+I4QqH9cf-Odr;Ol(VhOt{|4$Y`NX}!9;CtusIDQuw?@FB_NK(~R}{;D$;
zuG>N$bJpnb#dO!iWg|O_kqe=gFB^&#X9nlX(VT~LJ|WfU9AH3^B7gkCFDTFz@~KbL
z+L5rzW~+C@a)h9#Rn4@@N8<h~A3dy$P&!UVkvi)O_?Ly(y7DO5TQB9nP|(ia$n348
zN287<a55+XCPQ;Jy2LZ~OnZD}xtVoRx(Qf5TuCutj-Fno3m_{~x-<!uN}TEHj1p^D
z|Lh+o%50O9Y>hZlqMnN4nLj$lgcDZS4!t(31ZCc#Kcd}>@mO$zliVh?SBLc`FJrm}
zg`ddVsMfi~$`flP6=W5j+ZQ`Rpm8u{7d5QS-Gd$R*!ju)UT_8ylc*!J!hkgGPBS2n
zEdT3W7dXE5KEmvvLZB-VT+_&X{v&aXb>KPK3(EFP@3?d=j~~#%Xi|C?x!E-)0lv0g
zZs2w);^dc*YCEjk4K<SrW0xlOpH0xn^Q;<6Qd0rdlqG^&iWESZmTjg!lR4t^%BHPg
z%N%Nv^7J&CFjm`P_{I`9Bn-?j!MPQW29V{BGM{EZPy%={ta^2UpCv4I-(SixN<>tL
zP~s35u24epT6b@NW)6?_K4yHPMo~^j(Torw_n^m+E&4>-%p)8UDr{T9-<mTB$b`H`
z{F0^K#zi#iv&1~^&eT#%)@vp|`(_r#D2-gPb;Z^+t=w2Ltc<tk^q@Aupeevu#_%U!
z)KZ8e7TsJH)i=v<LW%Gl0alVh1Dc~Kr&_7Agj0MePJ<`WTlovl8Hqe<E!@ebSE+eU
z=A6e?pS9I}lPkjKd5m65PFXRO&U?bRDEL0Ngd&XeID4oKd{2#bL_5@PZzEb3?=p1t
zAHYQTR6}!Gin5hnh_dm$+<aAfb+2!99G}Flt-e0~iPdQScR=9l<f+cy;*e`#{xjCD
z*DZA40S)NHouQxqt~%B7A*-~%R;XSLbg617U1$$Ob}aJ%Db`E)(tfvKVeIP5<HDX#
zvF`+R6BH=_>5_G=bE+C#hy@7H7Zs?qNyz~20onn!_4WF^`M^g<y(V7iiuiV0v~?yD
z_6zDuIxz;xm#a|`{5Nm+91&m`CS`wQ?q?s^j}NNmk>Zr7TpV2in(T+(J9&$#EO-T1
zVeI@0Ys#2Rhh(y|L+$po<4sEjp_BI+*_%6A_JJy2Ge)_#%g60ARQe}-3iZN*l%)nv
zy-nP=EZq7j2+rIJ`Dhsy@t*bfan4<XFIiOw2M4>yL$$wje5k8=#er_W&1Zdz3;p0o
z=IN@YIzEZ{qK}SRZy|5>-KB7i3F<q(wd#JulgSf9`=_gq>Ca7W{p;ygy8o-Is><N?
zZjMu2rH)Ls?r8M72zCi4TgrOM__IfE2jpo(wdMu`bH|QOyI%=$#}x7t1d&4~IFM7+
za+c7-UKHy+V0!bj#s%PCzCVC?9y#P!0{{1=wUc9=IeIQ<eeEL}Y=e~?C5r+`S!sJ)
zN)-ujQ}xCKq~%6KxBqp92oAn8R+uO$7#^h9(oO{uK+#$c-7Mt~KL0E6^dC+w+=?9p
z@+g!I6wGa<hFtD)i1aM_M!iomiW|5{_}I8&EsRH0`|sIkK|#N@2{Sl%S!e&=S*@>c
z6PZ?fPRh{A^j|L?--Nx%w{0CFC%@^LktG&fgTR(+2mPQW0vRWXA~`U8$MJtt3n^4E
z;{;Px{`#c(e7j7f&Ij;)SW}6=w)A}PA21F<>q@GMp=7PMFGf)KkapDRlVhnmituF)
zCH|~TIuOG&_*pT`V;^)y@Vj5m5!Pi`=i&|h2T1Kio)OaIy`&G0T0bD7dJyG>)5z~a
z)WvVPwT;+{)%;9~Tc7DIaPWPGwsjt$o>T41h)z57CBy9JenZPuiaWHkA>@-lx0{%@
zM4sZ(4?lh$;Ck{DzAW<(oNTcHKEnz$R1%}OP?<HwS_+gCy@VQFaG74yyFY@=O10;x
z<B7wuzX#7D4gw$jog*$kz?`-<oItSV?tnMBhTkZ_*GE=DUVJ_ZYu^0z>@O6S7p(9&
zQSJyK6AKO*N;H9;6kJu9zKyF2F9ksL-mRa8CCXW;wF-mMjjVN}Io#0etjC8__~EnS
zj}78T{>zCrl)XcMvH8}@PFGo3@Qc%Ylm(p((NH(@8m^~{4C@pl!{Vx=*jz<bTx3|H
z#8xqRx;}`)#H5#Z4tx$ymbGra3AH`8a-J}>Nm{-GU1@A%v^b?Iv5oPdb{)bslZdK?
zQN=-83;_90jZPP{6<>(ufdT)d24PBw1yI?w>WhOqa%v7};Wl1#+V+S6@-g?=AYi2r
zLAhBeYi~k?F5z`-bDT<EhnL=m!ELHY>c5G-db01)6)n83#Kv(Mt{@D+xmHQgZ>tOz
z5D&WqrYq<VT_<3Zc{ozyZcwyNkMm%-j)7jla3c7tAM9+2#;GM`&izj53E?bpUhCL_
zoulZHJV)eeT}Ip1nSlSUY)7Mqhl9M%Zd!kREp3S8`}_4C^FsB@8>Y;;Gt%Lste!8b
zrj`CG5X<3f&5Ld>#VdWO9Tzf2S^nRp-u(W2nE`!S{`V#uAXeDv-XgOOp3(R<U(+N5
zUpWC&MORc<o){hZ>hlCPdU_V;cEglYl{zJk!rDq!Nm;j6k4M_!-9m0aV4b#^HES!a
zYqR*BlpjnyKh}1z`l}y$K~ih~2_rw>h7e4P)X~BO(XKBQF)aW6=Tp~ljC~GGZ8?Wt
z4Z^hF2^{dltBvLjmQv*!IMrY07$$(&wZ9%ce1`dJqk#HYk@%j{n!^W+S6_~8(7KN<
z+LvFYKz{*B{NBU`d|nH3!A2&}*aYB)EhV2Y&0)G61>hLdfT}9^-6><em{sI`Ax`6M
zq|Pi7_h^p@XzdNRlkM;)f?zaA|DB{7c_$10(9q~oz;+t>cWZ<#B6}`aIM1vPAp(nA
zxtg1xiJdfhu=>X^Jd4=)N^N@h-O}XVSlHIeidLoC(bP1PT>Edz1IbfYt?x$XUAtIV
z$?N;9>5ftK^9}j>Jsz*^<*dZp5`TY>cW0c{s(jW{^Ss+9ihY~wafQ>!1Ks9#>AkhR
zR964Hg9rz#;9^-`r=Ub2lY6XIMZ7gO4~=#}R{bg@$lgXJZ+IhN1l1==ZO(jgJsThH
zIuw~zITZ?QN&07mc@tB8;~TxcDM;jfY;<cmkV(!w4?G0}89_WQ9b*dEV%Cd^U_1iq
zj#{!~sxJgn+@CfT08=9=QopMxfJVv5MQtVAbylK8yaFGw?X-TA)eGOI_&QQ8*GX<$
zWmrd~mJYfdTgf6)a0)m%FH;7T9Or#|$yBdDgM%1aBVu&YD56w(&T`rajng>gWC3lx
z_RG!vdxoOmGg)QBEQ=IY4bI?Y`J<Gn+cTAZ0+Ff?a_Q7%eCzf+J{7EieAafY(jX&X
zEsd^uXL>0`qp!6$rcMU2!c5$L1j>@Ehb#U5yeYpW>e>7H9-r2|*Ypcj@adDucf%$L
zgwf^zpCyiHYD&3&_4zmVBkAruXVg=#YPQB`_{I$A{*k97!sU~Fnt++Z@1#Q`1qQGg
zQ}q4L8?EnJvF`7szRcfJtgw~o+T2Cr9WPc-$2cP^haM|W`jbmI^I7&$YQJ+LT(p(&
zwuIvN#kaFjkvLy2Ky+#2;7km?YI>}$DwC2pC_rXukbnD$<4uD<QtwZflA*j9wt%Ug
z3#wp)+g5-zhez1ID$lhkG`<Bb-^i!stjwtOBCgVoBL7`&BB=nu*r_FJ52vxw;<l><
zttEVVI)y<j2G5jhge!LnsBTg#dPMLs8aFHXjg{dhNs$*rDbrj5E?dMlq>%DL6zdg{
z7xO_|1voTsEg9GXFkreZ7)c|POl6O3XD+VF2V}m>6W{s}7~+;LxER?DY<!RwsyG9B
zpSM0U18k64|GMQnJX$BSg<axG!3|~Z9Yveuewf-k_`m~uv~vPJtOAoIHtA5mdJZ%m
zxAj1K_m_SaXpwR}d;=cj_eyA9__uDuUew8*d_P>|`<kqR#MrGI;Mxdpr6+3tdv}k<
z;TnC0@MQn!iM@4+mWTzIf2;e47H+QXVvW~AN-TEN`sV|OUfdg=)lYT1HHliW|86HG
zkY;gkVy;7pE6Fe1;{}Sx>+b=k4$u;z0(A}<rRgJn&XgGGo}uie=)SeDqT$lf*FPH`
zZ%hb17TWH8@9V<B;-L+9)3<WQRzc3xh}*5iJgcXfLoTQIcYAIvoa2+HckEZ_v1T)x
z;mR$2KZa}yedr=0KZ#$TP6!wT82>a8hUFRS5Jn}E<g8&%oz@F$rES$8>cGp&%_8t+
zx#)uz0L&=lPVPcFgPs?7a-ar@`<BkQhIaTSOQaaW<WB|^!7GOU$f;lq4*T-N17%^=
z$wYqvo%h>!`E<efoqorGu1hO_KMN-=__fNlUVG|zVoO_({?t>cd6qmf@=$<L*s->7
zpn?gATYdn0T0s5OYz83-&z!dPhY#}4sbGYtZMJ^v=dIqr+b4y`9_RiWkI{<t<}tDH
z(NxE{T8j_>oO<>&&4y1b>prHgRN+^>04~a9Wxak2!Bjg$`uHdS`yhs6SHADQSV+??
z&NvIZA?><n#;|SpJ>{E=CdHx*+6Yx!rc36?YyRQCQt-!70uC*+zQcLrz1RK<mYqhE
zja9yn3foPnz><f%;aWTAfd?GB$GCTcl~I++{g}};Pf)<YD{B8w={qPejt?60H{`;C
zg|X)E+Wr4_Kh8lJr^h~RgeT)sNQ*#Za`hq-(;LkH%<eM5DosN5!$b2l$$2@bW5Y5&
zHMi@lP%Cf5<tFH&MH#Wj>0fu&m)tF?zI_b{cFHEAy9*@va(TBRi3c99U`yWOCb*vu
z?ih8j^c~(}&FMWmuXPkg%kuw*1msz<G|D-!WVgRtCU!-IytwSF*FCj33gJbboK#8j
z0PwB$4%cmMY(wwDl(NQ0I?DyTpZ%1+8t-wg6BM4Gp)9)1z9gz~Kpcoo*m(9QPyoEm
zzcZ<z^skiY7P_rH`@NvUP*F)$fa@L5_Pp$!zx(*PmNTfOng)FplVi2B1IB$ad(RsW
zW_^YsFWJI#N%k|XIPQO%C0^u}#E(NGYoO)=B2*T6{du;<27zkSC^O`cvwmjXgR|_G
zOi%Deq(b66a_9DHri9@sh|aCL^m`2j^LH%@i+wBOBZkL)z9XSq=drRN`?cc$r00CH
zHgKl&C=65Ad0!s8@s&CVmF`1qQl+p_O8l%lj7ad(>4i%Hb=%_d%+0<mvjv}l5+z{<
zBU-^hoi+$KhH8x%lwnD=au4m?;DAoj0}K*Ifli(qYsr$=e>73~kDYePzi`6<v8jAq
zMtNaBRV<$bOf=OM9GA#@MmcQcP<Dx?*ONhdO$Dr{!$<|9G}GvZl2b<R8$-8<gk?SR
z8RRjNwdMp*xSYGdRn;o#uwXi`uq5NV)g|ubF6-nl+(+1pZfmeKd56s?)9e1MNDZp)
zva?_5vMya;$vq5-6d3(33H0PIf|Ih2ocbLLrcXve=nv=#JvcrX=!OXX+a44aFycOS
z-gVFWhybz=F&%=Bd(bU(sDQ()jn04ceH|4X4c;<)0^8IG*f;PwD3LZmRFEwt`!v=n
zN&nQ?!q>b6YI7%Al}4m4IAHHdYK-bl=aHgs&mymXcd|h3%M-$cf$vwook7?+*|rqD
zkPPgD7LsIGvBx&n>gw#Y>~y<`Efh2D(2(lBTL&~iqkvzf<YK2%NB)4!kg{xLCtBy<
zdhN!03Cd}SF4-Ldceifki{ETbd-On612D^gX2s!|-!CF#_HCWa5kq;$?Of+RY#of~
zei<;J8$o+vPB;Tnj`QQ)Q`n%DYhIXl7X#|%gCi&A_mI@Q^}C0qbgr?FRWHwOwQ*N6
zELIw6i_eynvoQtf8n{23|4EEX@TD;E9eUz<R-~grf`dY2ZauM$CzAiM#PDk~Mc8Ch
zGLe&ITKf4=#xI$)T5@g}qMVg5KVx0csxIy6EW5h1Q9|{h8;iQ-E);t#z3xY;4B<UK
z$T0#+Uft%EFt>GEz%m;3JGOFc69gYBPO|QMvTSXjFFlY^<@S@-1(O0&{%%H$^T5V3
z%oN8^a2nk<&TZSG`xhS5Bi$Ql4ii}sC1RZ9>byQY8+g(i*vx*kyc^VlhUSi{$B}i1
zs=sIG4k8+K9kiz4Yp?*vS~5Tsq*rcG9)F&|7s7vEsgP<#s+d~3BKRB<@GtW!cFW1O
zeP!+HvZysXZA~0k>NGg)Br(;{IV>3L_5vleA<og}`MkNhF0-~@CmqL!v@H$-?2@Jq
z1`$a|KA%*%R>6N}(nYPoO^6rL4>C|x8ac{}P^lIC)Z@Va<A$)2?W8#63ETZnS!o@W
z@~b|Z$P%(@RwLcJONuC<YQb)Xl|gg9FMk+iIw~nu*2i^jHsJF85)_&*Q-yFb5??b4
zi0ZBXe4Y*-nnKHK1L8&9C;B5GvOZyThkbK6%!r(%gF38^vGc<D3U*_$m$`Ft%plOx
zp65SSk+f<b`@@KH(IgIC2OP-*VY$(rjy@~dxy|2{HaD@jkfXJB=>9>M-`*ESR-_1-
zN)xB~-m%1k?=a4aw>3igD?F1Y++sW;?C?D}17uRDu7gCeZamMaU~oNYGf1N<J^~VO
zsqDxnhS7N^zOC|>ez^6o)0D`H`v1Z@j&MD^_e0>l_4P0483|p*CmH_xXTUWE9Q_Mr
zGB;D&jm>=*q(rEw84paP7MCD@LbW0{_Gt6A4o2=UsO#G9bE!sC#=$IV{@+D}&L4OK
zaNVZXHQn|%${}m3?aJ>@Mevm2Wm@oIY~61f<R5K-&5<ciAjN|_aCcUWZd66^zof=8
z{MX&COPBLkl4}}t+afqrCDVvYx@x%QtpO}b=}r>Q26{1Ip?Dn`XeW>$-CC5blOh_H
zxUE@FD5zFC4_sx5HB6r7OB+NTj`#!-B$nkLedIOIBauk2muKGETDx|<T7H4KUMi)%
z9d!$nI!}K9I(Z!uI6KmNiq565RMwr=Q|(dkNV7D5!%avk$tH{bm3A-3hiTHWLG1f5
zmEbe%nxjyRL7&#jPn-~~UVKshS7-KV0QDR@VK^u}8F(Eta~(qa4{1G97C`(h%*h9p
zP(EmsF_@9<dyo}kzo0EgFayC7bmUeNCKjLhMC7gqMVH3**yvy-82h?2@E9<!PK63o
z>)Oh%ovWiIPD&oXS!d82mDx&Hu^aupEr8%hF8U@20cyguWyt(BK_*91grk*)M#oCV
zInKjOr3cKd?X<R{TDT%L4P_cYoxTVpm-q)t&l9JI$k*r|5en<CLP<>k{4u5x>`Wdj
z1fO+;Q}ZIuIfdyo6aK*6P~v=s^Gnveycv+Ak>B{MrG|rgNe@(}mW8=g*S*>Mangu$
zP}ew8qDtLyQ}5Vaj_spl?B$g^XvZD83|ar8r(d`_>9>r*)XiMNjnnu)W`@`+-D(FP
z)Nw>gpUcD-v(uBZ<5cdp?2<qQ-fvl%dt9}>nx(bnw#KjGmRdD|y^p~aagmDV!JF*U
z8c=Tw0oS$Ab#C8=cQEUjq<|AemAR)S5mJ!HH@%b;8(u;CufR|Hj|aOnjn!(TuLGM?
zHs@seL-lcvXPKSuXnGG(pSgQx@P(?99Q47#4NzDMbnQItGOMnN9MDKWz_{5ZV?(s{
zw@Bs*=;TbR>Q=sCdHQ8+tX-f7D?xM6z+M?y`mxHIE{EKt7CYFk2h}daIR$Rp+poiz
z@#^fatXEyhAOA?A6${Nd)<-zi0E)CP?!y*|Ia`d4UGA!etQh6zeh!Vb^W8<l3W>A^
zuWyrQ>Frt2FLku|rLyhnzUtA%hQ&+z4>%GPR##usKFAl8%QpLr-MEY?QMwMyJY1*0
za=VZMlFE4?A-{L<bDU<W7hKbad?s<1)4S4N&{}k-Po8*uco*6AGd3OgL)Ao+re2Lw
zM>}4ekA^}&Od@yKT8rCLW+#dyv9*TUo9k~B%r7enQB7m@0!s;C7b<YH!6Qb1d2a&%
zgHnjMfMD0Zc<16%neMw;vB~C$;1keC?ED_jrl2RJM<9h*D_+?96;0PFCxy9>tc%&}
zLHX`h)RdV{3EI|=2H?O>9d%IVweZQWWW3avGyC?3k?HnDXR5G-*B=&~^$PeGH@%Nv
z&QzLb=S+T<G+(ZQcn<X79w0Gm2~;$;+oQ?J;`&6~6e0;kfIRbvtq)Ba2B4u@ZADPP
zesIkGMU2v3aP9M|NFNt0d2J()XzXn9D#}=r@0Rz*udV*>ES%KZKyLlpB;MBCrMMSs
zXP<;_@oZ^rLxm*#zG)x%s*TKs+W)f&s9Q*xksKVoW?BkX1UhaSVg8RJeXAzG6Jcj~
z-K}{+jWmt$_j=31T`nL40tae@k>8Ow0(uL4_We1{bp*q|t%UKI4po9PLp$-y{Dk@P
zJ7RCry&{`y>a^#yb+hckno35T2dnpts*d5a;=xbIB{YMssvqQI1QpBx>~%nB_IAPn
zlzX?sQU$pmu2bf>46oscS4a!kYZywp$^Q&rte9|_RG=0<{*A{Cdxu5lgR(-bAA&%U
zk=X(wKROPuO#<0(bpUIMTmQWObVC4@<Zoc@GkhO)BwM+?&c0XX8M|UnD?8$-Y(3T3
z4<3F`B{g0-FQo4$YFhY42*+ioh}2v7>?4HMf~8Hs6umNA<9?q$^RAG4>}tN^DSzrw
zd(p?^o1qnMF;aI!bRR;^e5i1jl5wM%KQr2YKLZh-nwQO6a$b}h9m;bfj|Z(iREm%b
z^CFQLnro|P{d!4%)b5<<^d~l0U37An5H`WfLV1NZVRwXskQIxI)Z3=kg;^i9&~HG}
zfdZgz8nn6csUjcsOcJZ8(R|T{ZMJ~Ryg-%%*+>47`vrBZKv8IUIt7Crh29tDRGkLu
zU+x~YhoHbb-!Dnw5wvbVRBiw%bIjfa6qnEOjoPj96`IE>EChF!bjq&zzA^oV;`zq%
zS#fVH;bR7el(>uJo$KPQQ<_)Xn$sR#loz~@F+gHk?Ky6#M=*83*$Vo**Gz_5``V97
zJ2DHq`8#N(klOfx_Mr>X8{1WFrw(nJb=bZk%j^7+_x3-1&v33b&~EOpBJWr4!S>JI
zdwb6{ckLj*;mg+u^wX*^mTG3!YrS5}x~PDsA}H`;*<a{T>D#%*-@A@CytZ_wDnB})
zyV7<x#L;@jH=7AITVH>k_+BJO=dv}7durjD2i~5}5mkcNi_>?tJ}!)pxfk}1ZX7=w
zg2V_7$2kurX03U{Jk(%v_HN{j-G2fOWVg1&T405Wt`kbm{=NMoQw?fs;zT{g7YUyD
z%UBc}nmXku5gczW-)P8)^*HeCV@vz;#8FfB0<E@g@B(QZ!!_H}oQAr2U}ZEQRh3sY
z4vO?UbxhXb8eH{P{?Cs?`4z!q4e1rd#)@}#mI4E!93k25PEnp|h0nSyW&U&1Li@y&
zl-};DDm`oJ*Dol7;rco$ri~lIwPqh)OQiZao&5cG5y-qS`MENM+LZK1y`yl6e!Y_a
zj_T`z$+wl@3uaI(z}6$(r#})h)x$d>iT!e~73$t~tW5v)(D}yx_*q1$3hbgmP5w!J
z`JZQQ%Ps|CX5XC{7ixM2=dGQt<mKpdTo~<jec*-a1_5-H0r^-?#Lpq<Wx^HeAmAc3
zk5-?<$)};Q`ySPcb(HkgA4uc_`S)lV+tBU0-CSTK$G-X!`we_V0`~x#dgAZAcnJS=
zIJ$_wq|EO>P`!TSCcSdwYBJA{tfp=me>_Ct-Nxh^sHMoJ(3>lmL*biq7K=XG5wBm+
z%5z?*M=aSs9qtyFy^{f0-%9cwhO*#Ms9L7U8qtI)97ze;`!~#{0;a=Fl>PEmL5X6S
z&vV~g#&iLM%{j*AkCd$o^$QDET+brkn0{g<gb-|V)2zoX*bl^NJmdZ(py9FSup1>E
zw%08Ld5&m*M}HsxJ71>8nwzqm7pJh_ZE1Da_Du18&+49q&*w?~ZhcC*16M^l^q;=G
zp4rVB6k@;eNY6Jt&CaWCz}DUX&r~E_3{bg!&eoFQO=Z=k-GYlyuM-;FTm0MQD9?LF
zaF+=gHXn{jcV})Tes#lT|F+I@!z@Z(m{C7T^aq~yTgIa~4B{mgH`-xk3EyFYe}J(+
z@z-X_(OVcfc-rpSt&A756{DBy1I4{Ye8RwiG3g-}Bv+t?Dohph924K(?e<U2LxUeU
zbKf<-)bF6E4&bE4vCjAl$nLc@WgZ9p7wCd=rJ97yUl2^9KG)x!WeP(a+F?7_4n?TM
zVDY>b0J`V-AKmp|S%GaV9(-N8^oGA!Ua@_FM!aceu0mUpu-8^gkpa`xHTqzkW3YXF
z<CACbob^|W;U{;I?6nO!BB?X!ari|@Rqp9~0&TBRKr~;C_UsJ^<^$18J$<5iiVGl9
z7WU!Zz938ivh7S=?lcd*qE{qwXi?+7GufUfm?6+Bv)-mPISqhWE>DhsN+C9Uzo)hu
z6se%g4hR1S`i-bWb_eQ^+Zf-p*U#V|ptpbO01;%ZB#<=oSFqznK8<nv>2?6erZ(<w
z|6w>pX=UvoU|uo^y%>BfV++50njOOF>M*Sl8)EQ=l2xC2>=mwug==dTj9rp#EB7iK
zg3!}-L6y`vC)up~JDe5IQxyyz1oYwzFeQ5oy~CywcaJp7AcFL>Zz*~(R7hw@geXjX
zkT5c(y5$4dc;Ce*I$<OWaWrs@biqQG$JQpVxNb%~(|sjw^;1bSFs<gIQ%S(=7$so#
zyP!|=yZ#0_$C66N!)pYgb=@Jvt8%x1UiY6>3^j(=dq`NT`~2ium@sD25i5s5uY7bg
z=b(dS`sN*bGx_LJpOnovc9105E&0i`;fvUV)Vf!F8?2hi`YJMHL!9X?%=cZo>}LqZ
z#ru!e=;CLkh?6;`Q{joGDj2NOp#hWg$`R_)Y*%W<-oFi{!LaZ95~QUkm3FM#)`DCX
zTW8wB@B?(R$sTuaiZeL0>)T_|`2KInvI;sjy!<`f^PjyAH+Hg1!j4?&eiD;^b+_-5
z@)xb^YF+xUD}&bgJ|YX;A8wrrD?8|LcYP=zAy-tKsx?()-aagav+kNy%y#B+y`NB8
zc{g#8M?gY+cq#0vB@Rptrbm`e2RDB2kfqKNWhX&E*Oi3=_qF;~m-9&=dq<-X#*uEk
z^cplDu4`}BBCvgh|B?HGM^kSxz}<wE`l$aL%qa$(!vUviz#78lQ9oj;@gTrb@h}bi
z*7(Ct(wv?HDqio}W@0a&4#6^*`$SfQgpiPtwX64q3!I+05L8&R)2Xbl3=EC!*jEtL
z$VTy)GTw@O2T-T2lZwU0OB9+HaS`hHpL@n-CL;2&8lP%D{kwb?_WBIpt4vXo8+}U`
z9YO{ES%~Dxu-*?ASmdO=x5kkL(Tr+}N94aya;>9y-gC{DALOydL=X>Oe&{Ye@$2KR
z8$s`$*ciBfxszVco^Vyac`uB2iRXNO{yG1FD_iG5!!5~`0C4r~t>f!~UiB9l7NL<n
zYRAOn)P5se7$<F++xKh;98Ulb`;9^+MKc2%D7*u7U<7Ur5p&w>D0v^pP)j2pnA|Y?
z2n_D3hYJ{_BL%E9*gw@*les127>61uSua?Bv#*HU6Nj#><_i;UtiME+XsnjPL!(0q
zHXIuky`sT%SLGX{(>DZzg*YHL{q(<P(XYP2QtbLsX#ElPUu3+Z*!1l!XiaAB;rfZy
z=nKRXVW@mpo~8t^VW+t672U8O7LT81lxS36?woERUCRX@^kuVzcQZ0%)U|vN7(1;E
zD9pQwav}F|$_9_AuE4jcM?N~V>Yp9Hq2VpgS}g}$UMkh(S$edN!{Vqxey*hY>OnFm
zK9Ay!(f+q)he8jLt#GbTAz0gD6QFd%3@-=N8E(ClY)6w>ZsZkm*kWm{iX+h5{SIec
zIbP7Ex5MG3gEh0l9GmzPhJB(!eoCUCZRw)MliiNiNp1a}slvsu8eUi>A;YDu1gwf7
zbGHIEIgr`FCpouE<CGuihe1!yDY`4Do;*y<Es<nLgdXfH%^E?BF1}gfQ?{+<)3zXl
zZFn6{)aND^TT<{}%t-o2<Eyj03FXOiKePBL!K8$#BHwSU9s1<+`5el^Q2rI|#4I{B
zwPU6xb)-cq-fQO6-kQbdx(bhuQ%**nA_zAXDm?zw`AkQi<^uM4RTxn+YNpR8W^w<e
z>NkR<lh=>u9=@?}j}Vx+olk|DrApR%;&#T18S<!|2Y6GXYMn8(yp$ue;~oA<C^#7C
z{-h#Rb$Zi(*_O<)>i<sRnI6)-&rf{UgfIg$j1Lrzq7|EJ$pzHxs@NXfiIqSpuTQNJ
z7dd{SwSGNoipBnVpI><CnoZ+Kbf+&aJ_YhtSo(JP{4nvZ=u_4)7H1;9K1t2f0omu7
zBqfI!MM0MXU!ZRylc{Ftc%7<YRfceu%`r^LO2ZAoD>S`4!-)dlmjVt_QXw0}(!h!S
z49HaJprT-Rpqd^8nK3uIsJ)%m!Y!TW;@!X=g^rsInbn9@#%VYxzj8udpswYJ4ppOg
zj2RXIphgkr+IFQgV<pV9zgoFF#=Jt8oeq(O8-u7eKIG#QP<8qcIpQPIzB65n9@v$>
zZ3yBMn+|VT4?rk+Ys+V#vmv*inzR09tzauHwz!pKZu8vwIoVXU^2GN1y$SH_@O$+6
zo%^2fX=S9)qq5hD^!%rMY6k**E*ka$$9?Q(Lzbq#Wo=w&&0PIQwIQE#j*5A<q2FBL
zNvtZnG-gG8{=%rmKLvxosNW_6GCL+w=d8ZN<-65({wiby<&1Wk^w^vr<J2%E+D=j7
zrCIi$OI?b&ZRf2Rr8w)cD{~(aa#Fy|63W_S;`C5`+_kKqRQHU<R~K8Y_+T-9l<F1+
zu?&|Caz(;8mZS%sYi95q$IlxjbW+%O);U|977=<>E+0}G#dC*&n1SbSh(tLgD2zJ0
zt5@E+#dOeX)+a8H0x;xHm!TdjZ}Y?~kx0p@+q+LCH4<|ftWJ;gJPllv3vmj1l27>+
z-DsPn%i0KWI(v#{H02Hl@Hr)!RkwwDph)qPyT*r{->ko!n-6IJ28Rv3((JEn)*p*}
zT3jKTUZDiPn+d-!)n3wmXXX^$M*a5UCzlsCwf$v$b2v9f@b_8@uB-Q?)*x`=rHqMb
z&S(IU%qdU;&n7mbh)vwA6!q{3$mHL`NxuJ+PF9(yxxJ*}AR#Y`3<$&XUV9+}CtF|q
z&l|c@Nmgy14aAI0cS5D<YR71g8FC!9AcCR=b=UL0rS}pWFyj1H+UW$*05h<rLj_bA
zG|lEnxquE6#Nd#<4CL?|k2Ci3o|ORdHICNIaht^LNm7>JtND3i!Z=wDBx;oLdBcMc
z*E_pkpWoe|eYl4`(6(8(X%RSoYVHB(NloeruEkH>+@;?nEB<ERy-FHL;rbeCEIVPF
z^Yv@!4i8jq=KJzY>E-UOW5?;=S%|#LKq)ts2Z69l<}XCT-4s`u8JK%KUhN($fnArd
z+_v!H0O}_%RZj%wP^W{O3^0J5T4<BoE1wQ=R$MiX`x9B<wAGtk?id#i#@}oBJ+D#w
z@zAXWIP*jnYHNp~M1fB$oq5W%cACh6*jGWZRClcTf7B$=!VRMq!8(fhe?f87Pf9BG
z;emBdD5}+PiM<wj-VZuamsbY@yv&>VBX@ngwi$#Uz5~ER=BAPkb@=K|vSb)SAd?W<
zUSk#)Ajz~5Fwv#oYyW@5qM-7B4!B_$*-bp}q;1j?mmQ1~*NPX_VWu)M>|j(20T=b_
z&B1^zWU-V2pNipdg*H`bwvN*J!7+s1fRx_)`o7vb7x79qX25WsSHCzt5WEt<Xq-CQ
zF?KuyDm1-m9A=s}OYZqit_eaAb$@5pE*5N#C19$99~f*<R=2_x?!vL(mW`)(#zmg#
z$w_7i&$Y`1XQc(flh+4o>SLU@Sg!(rzK7Sa{9lwd*A+9QX-K+U*XTg1{O;Q8wkfDv
zkg?B7CrNU(rln0!&i>72VPkJP8(V)M#&O-vEKA^}GLQaxKV4s*r!3eKv<$DyGhWEs
z_A_~LIjm%{w=c9I%ecfPIe(ff*e68GyGoL@EHWv_b<q1mqt^I#)K^H>AqE8X`|asp
zot|#g`e)`tm_%Y{3B{_%nY8o;$@>tElKFoWoqIgf{};zeNJVnL`<9T9q=vb6qX;3C
z%iJo-ko#qfQn{O4%Zy4=#J1eRX70;va^09avoPj5cYdGW|NiiJ@Oi)A=bY#3c{Cmm
zR?^b4eKk53f9_gCe*~TMgm?&8VCFC3<IHIAx8{B|O=s)OE3AgVVJ%#_IYS}eoSb9=
z9zcK4eh#fyE>B}!>z6puAfEeS!q5Sp1xy&DZdN+q)p~s7zbn)?%mLlzIhr5(?RniF
zB(xv|OL6%|H=AYQA-Q;k>@Op$#mc$@4bk2WGK^L5j19vQn;Bio1xp57jN9ElbEVmK
z6wb-+(1oqvkf+&%qS;WSb8Z3kPqYVU^7^fFk?q9z?*YT~bKRjfNUcULcH}TX8-_E_
z@c~RO!_Rp;t=c$_mDA@)7f1&?r>*1BtztCn9oTiC(EJ|oZ^kg0A{AU)y>{uB7<UBZ
zz#8f%`0@$bDjUF4zGJd)&IToP6Tg2n`>pjLMi0a&wfOSzPQk=e*&}$)H@0G1cFC*V
zzwyf}GxW|S<1IF^^^BRI#oVKPKQFa!{&}!ruvX9o&ZF!x72m~Kp0Ezueqx15QB4DZ
z%ORDi(_>gLeB!T~v=rvv*vQ!si@dcs?^$7UObuSh#7~-a*L&Xii!0%n46jeQn>jY$
zWf6<OT>@n)SJ@NsLZRB@Qq*h2-FQ+DrWAU9L=MIDClhV1*jE2+)Nf|}lM(j7@xhcr
zoo^bjz{1GCqnleUC2Up2la|g+ZSamI_eBYo)xT$o-%06n2zLfmvw{f28pFQgg&Kxu
z&htqv;NY#0lg@(NCWMwHxmCf*S7LXFjoBiUXMUfCdb4$d4cyoMFHPXlh1U(w=10L}
zvOAys#z+OF?u(pUxKua<e=s)5WNPm1i4yjvo*ktj0>Dq^ecvg+=9~2(%XS>RWO6S@
zzFR7pwSlK#<R5L>M_MoxDc2M`&Q)>jgwU2`AOvaO5nTc^+_SNW`DUqZq{VKxFFx1(
zXlrAgV~4!EbFK=#vCe#fco~akj}W6e_sS50auf;GQk7<gv*obF1lr&6*r?r|Q(v2;
z|BGO5AboY7dwR!R@@_n4P+xCf_i-e;@6X*yaNbzRtH(uwKetIrMW^?^U97aQ`_gKg
zkX3a~*=d2+O8aT9ih4@^>}*3eE1QU~4@jsDm>q^5v+@hux;55<X#OTm3Xg1A#<P6J
zagJeUaL-!1Wv4$0eqh}j%Ofw;GdG8It27{HWt(b1>AiQFD|I(MDUV#nJm;40>fqXQ
z@Z|E0^d~~p-!S4Ld)0G6Wt0V$o|PAb;n{(&;cooZ{tCB31uuVlj!;I%!EwLHvs@<6
zD5%l#fN>c;w9+O^0y>QZFe>gZBpaeRy<h9405D<<j^h<!T@0<T-W|x6V(nM5LWK$j
zWE641WLe6hiqS`sWeSsPb+CYP#E-5ltvXjzj_uz{D<@x|9Bt5@pBvIR_gehDWZ@MD
z7%?`?s))~jt{pK4CkaPWf)R%s@sdWB5|3Y~*aUl+2-ZBxtfU6c#G7ZmICbfcfr4ws
zB7W)fj!cZMTR-lveTW^QO3Aw6*(GlCC7Ha$(<k{buCyPKqFzOJQ_pA*a5Ih(-Ft>X
zm8Qe1-zesx@i-$Whwo~5vwovdluNcWEBa;7jGA<Com!NX^lDBZQ56x{N}V2#^)MB9
z_Qc34O)Uo8_>4jrlCjuu^FR6E4o3dvJpn4dz20^9`aeb&M3|aG&cuH!Q!9`e#AD*0
zN}ZtCvYvmFU9e@`b@xCx9bBO=sqp;_l@5jdl~JT{LF`!1DL}w0#%$CJktoI)%la@P
zBeL_V)<D7_cCT72utV8EJ|e8H$s%fp6QXIrmO2^3oOCw(G1&W!gY9kq?I}!`EPPAu
zL6vA<H3;rczPJJIOEJh)#xL2=MXD0hVsg28ih@G?<DY6k(-$ok&1V8Qr1Yrw$K9E;
zA+GK_8QHO+vWwrgTDURSwO^{-6J%Ua6KGbT)Ok3#8l>k_3-A*zP1FQCt#TqPsEp&2
zAe5W+vqzfdG!~14|Ai=mR{5()GDjU0m3L$Af*$ptl09WcWpjOkWdI{&ct*}ITH+>R
z4IueE07?M{9lkF5ym0%QEGYu<+ru!8hvUmlSjdE8e&ot}`TSah*-_j}B73y+_wE_H
z+r_>HRQ?U;9eiI)=ETwVM=rMM7D42`Yr13b!fe<Dk4olU6phM~4%QO)Ocb<e`uZVu
z?IyXl3pkSA5qwM9{b;%tHP3iHxT$Gr&tIii=Fa})qdWuBU+l0Y>+lwy=UXo8{wP<N
z-<ByirGONo$?n}+QYuqMuUXWAy8h}FNB1gV<X$?s6!1K^A`8L9*9rLxqr;2hRn4QD
z7>d`qRbz?6`b0faAiTrt?~WdBq0*G`+D!42w<3jahHaEUZn~vj44)X?Y=(38X$H*F
zfspFMQSSOD;w~b7F2V)%;TD;Kkk#G92qy67CcIGNR3yrd9v4%bS!Xkp6gq0-U>p70
zm#v<LD3>`}j_p~QUr(G>rFDysKaFoy42;Wo$E!X5WM|aloMPJQDK0EENX@_A?&15z
zRY$!EZoTeXhdJe{Pn9nJb9IViu6LetO}@c2^N)-Y@JQi{reKEbTJ;;>5eR?&rGORN
zefJ~J-f_|eby@Q8N)DCwe4+54q9x-F_U<M5yyNZJn+0mHSbs-$zsD=Pv;(|riT792
zuzmmj)grUd%y(j>@e3%^Xn1BDzk9!KO_%cF)Fzt)u_S=4>7AV8>oJ7Sv#CvQwP%8b
zRgu!aMo%rmf^gG%U|0|s!P>nOs@IgF3%7#Et0{RGhu4uEKDu<O`W_<tYp!=aq`%EB
zX5qqNw9(J`BJ~@0FnII86!?B;kR}xSDtd<+^u%(>W_>PQD*O9qbJ}CMDz#sM#q`SI
zmagm!@+GpD)ZggbTs6<X)_}=Eoa+7pch4~nZqB;o$L12jLueQHMUrWKreZX982Pc4
zJt>*;--=&D<VCS6v4R%J#GS+T)(VMfj~0<2zH@xHp%UCH%~I=Ud>eb5t44vL3WCXp
z9C_2WP~8Mm3S8A#v7gd1YNhzX;dN`BuyW!h-V@_61q3bu?YTcdsoyAEG!Kf<Pp~}Y
z+~jq%(eE6mc^F3)Ro|a8tvnN&ry9?>x#3^1T2w8%%{+=V5b#Ck`z*ytA~xUzX#!NO
zWp(c|G25;^JF@WI;M2N>y(Lr-et2}TllCn(ImHsK78voWx>_?q7>!nYBIoPN4BVgJ
z%={1UG{MtT((+18Q@eP%pZ1nZ=?dXI-^S$TQzDM!`;~dBLp^w+%mb>H8z7<SUfcR#
z)41!{Ma65bcxhjUX4ZLNQs;J~?#up2^-*Mam^?I&lXqv+R@8qNPIGTD*>mC_iqL@<
zMjD=Q5P??DY%TtoQJ_rBhZb$eQ$7;$u65Eg>*uTPKguNA!DGMd8~sz9Ru6h~1E3kT
z=Qc%Rd~}~RKGU6EU3%<yOWC_0k2`@7FmQfAub${t(C0zC3u;nc$PE>eyxXu-^+R<n
z{PXfd9K`!m4hhK{aTayvk+ZWT$b%y;*=>M!Ge{2Pi{@Q4^1h6tD>e?fn#Dt#7}iVI
zlUYA-muz)qCw!SQlJ)3JvcrMhd%_8{?<*pyI*r1%W>WuEd*Gun!(Lu`!q7-&5JHF}
zIma89Aye?AcCK7C;0Y%gT0}>>wTA8oUw6I<JMb^(VX%3~2s$~VfS*tRd&nfNd^kac
zk0B$+7eEtN2~ncX0;tZ_l7G3_t6AN90=oyLq>v<zg{{h+gG373`iDO~!`Urd5b3JX
z!13uKgk^U&3x#!_{q35pzR>5MDfU)+<6rfBgMPfn25L(gk9JmhhR3F8$`*hc!@XC9
z+y``I2}XqcmW#iK7mGTRizKTi4pulSl@1TLC=iZq-$PM@UzasCQy<=7`LWgJ!!gy5
z-_|0UpCNl#Yi`OBs~+2vgcq@fUh9_K=Z}c_@NYEsk#ki2@%;1?6$cHueZDKrrKQpJ
zW&I|BYQi*&9nJ}LPQRd^f4q>Jo=W$fjBS%AnkuUrCo-Pgyv3PcTwa@Enc0K!l)cUP
zw?#?x@~C2$$9$ZXK?bMsQf_j)WJrP{t8}n7o^l~LPACUU*!TTbbY$z^EpQ0fMh1Wz
z#91(`ymR(m9x(8Gl!6)SE=ja`*@T=Q-9(HonrfhWLJ5fghT6zFhni4EP$ugE#uRP8
zW&HnypCWLNzb6~J4T$?9-1abPs%`^w<E_fhyBIzFgzio|%5nv97}hSqS?%t~9v!KL
zu1L#Mlz6%Gh&m;3^hwP{;U^m*sZmPcR4`<)NkjU(#y#+hds)CUMJR8lR64>*?t4ea
zYlpB^BgL&RkL9oRe#yy|I@#XHC+R8mpHW84MbXj3_fRgT#UtuZbE}A{0Id7Zgz3BS
z?>M((hTM%k&O={E0*pWsN(T}6RW%H17(lHFXxH}bM0eBc*#ddlniX*D74M5x>TZ^F
z--ZsmH=ogL9a@FlIf@5|Hx8nCokm=`=6faDD%3@LS}Y+t&>Qqg?3DW9Wn6t3<`f84
z)lsnH?Oyf-Y?qg*`JDu@cA$L@62;O@Pe_f+crAn})|4CH)dS6yu9^croF8hdSQop?
zVALs4Zg<AWuLnb~%+s>FqZM(yAnZ!!b3tUb9IIs}b!5_Ps6G4VdY#FG4ZmnEd7PRm
zbov4PtYoXy)PsfC73d2Da^)vZDcB?=<7SdS>$~&^X^<#)aZ9|qky)SwM*h7;BoBAP
zbt7%4$SudD9O|MYJ;)954|q2IM{x#Pwmdm^0yJ(j?9nwhk<v{X0+q{4{0`E<hz+k7
zylS(g9xImVkklvk1Q)C>*E=^T-1k|JG|hH|wc`HnJ&=*GeMfRIO5}3IfWruX?s_U!
zU_QA9KGB+`%(t?Ft-A4D!$)-QqL!G=e7K53o4Lg3&yUP%5B==XIec0qz8$}onb}ct
z=F*P-f)F!1p+$Xi*YkS*ahsoBMSk~FI1{cb*=FF^JEtOzaY>SqcGwrxcgymua$jD_
zJj6FvRf!Y%U8btgl^3f4>p9%1Fglgs+rZ(}Cbu>h_Vy+c7S4$CCIeqFwq%Sc$p?z2
zee4qF2EP65iI32kO!ofGq?FFO)jzT~{@4gW^=zeD+`}>>#J3%{t#5OOstxX(T8k)c
za?fNB!fZ8UNrEcW7^%;o)e{pt2i~~zJr6^Ke>xTsZQpo!GtYU9Lu`n<=RV_Xo6A6r
zVT5)_a8*xk4(Y6yf{d^vF+Idg{M3SM=)?ukRNy7BvCJS>*_ZWG$0yD^2kP4P#=FSN
zJfOekJuSJXE=z9nI@Yhg_VH1`L$U&8MW5-$u??*l{<$q;*c?2CmJ!EzM5f}GlgXzR
zq-M~rK(49EF<0+bK4IzS*aa9ACx{phOxa|*q3bBOmG+k#2!yjB)_R-Vo<K)vy{RiC
zg!Z1Qzdahva2L{d2v#>qO2w!{o3n5vrDv<7J5CV=cazrOX!QiFXuM_X4nC2iNx79h
zxd^#l`et5v7$PjW`dn93#!(O|Wl%C)&}PwezP{YyCt8Y|<yL=OK(0&%xg{^U*UlC2
zKKVaiZ?4%RR%f>6+)=jXctkZstU76{Q&ZbmW#ZmHof-Fe+Lefx<da*GZ|vY|K2tqC
z-#G5-TA~<N)qTq2A3iE8i%A>_Tq{6{Yw?`o^@Y(I1D7rk?sD3Zdv8|p?O$FmzcCMU
zrd1Z^+*mIh;Jx~)sN-ODONG9mGAa&QXlPpGbjWZXs}?oePxp01ovGdP720XDg${Po
z9-B0jr9%f&JilZR-@zxbIy=a1pi6<>VMaEWP5kH+DUv#BLe__XA%*>dQlLy`Wp`D+
zTY=$BAK@6$Fw!=c|8^v&c~JuI;yPFp!VX5>%^q@krWE-$_Sa;l!u>dsH=E(|XO<Ri
z&^0QX=h<ZF62|i=quB`c!5<y@TJ;nN)mv8b{u`j|SweqX6N>mzw{_g1f_RCwEfHAH
zQ#Ixu(DRKlo=E*CJt+h`D_fKY#G080E{Kj(e~$n9;}wtVI1t*aizxp$?q>}hheReF
z`xj<5Iy~BXv8N=F<6A%tgyRLV#AOS%ARK*;FVy)MO|Q)&*|M_m_=xEuSpx=O#bJWZ
zaX3Id<)Cc{7KNWilB%|FUw~Zht#$c0Falnt{^HB}HDIv5;C6D%LgBU%WWoanW=Nw4
z3vUj+V_$9eHY26<X^Oe+&F1;19=mHasoaBW8NNU`S{+<sf54fp<s%+Ip4lYAj#Vtq
z2qf!!To2)@crTgC&Sjh1?LyA>r=77UbxvR^dw<JN3$%w;Ik=eACA(C6x>ScSvfJeh
z<)ZPffWx21PO|Ns`fCf>W1)=76jSakd<AZ&(itok23$<!$d1L^^wIX3CWzx<x6EF2
zDXaV=0YYb|wkUMTu#YHQ`Vo282<GUfhM<+nGFI7<arJJ>99@7=uWP~xkYZdI+Nd9x
zZumWWwdIu{6bL{hfoDrMfR`kWn{gI7vN*@ZxuY|!51qJR^j6F8+;ai$(4(ZirB#4P
z*5}ieDY(qK8Kq*Rm%uxLcP?XA2qCx%tw6c(;c?%ZRBvlF?z=_epzz@Bon4;8=BWKs
zo5!u3r542O%q_Wl%?b31)yafizTo63lk@}-W_2fx>lo@RvH@0OCHZRh?=#0@DNWfn
z!ep0aU)hHLQ<F26p3fwM`DT8SF9ij_-Y;INPB{UcrbV3lnUjaa{x&P(hcy^cK3{_>
zkRt=dB%RRy4<MJ;Z>}Z2?4W2@zFm2D)JZ*#{3A*U%}<ML_{I_TNBJSDW-iRE#dv1(
zJZik}+=rcjGai!bI{oc-6rsAc;MZeNw?texvf)EzFI&P!k|y-`x$Arlq`;Gfkq^2V
zes5LvsXU-Le7^dJT(eJjD?9bAwGc|$3gkR`67&-3s_fPiqxQo*?CC=fMCMYu!E)KM
zG^NMK7UoS+z{$91z%sNRC>Nda@|(OQ>xkTW<|}B|6dfe#du4Y-g-@)iVl5z<<CL>b
zyk&xSlI3IDlWQjWtil?-a8$b9u2|vf`bECK3p3uYc)3u@Rdc51bau%Wt(6n#rv{VW
zG6sWo5sV_&vmQOyHVl`7qoX#r@+a55ULQ3R4%s1U?fxBmB(<wN&0PE*hy6Q+g@Ord
zHl!n{ps?78?9q;5F+J0^+iSw^OFlPYA}Z*PVt|X%5Od|D-Af+woK9KHsTYKs1?hES
zg<F{h&+jN~mABpibEOCB2bJsJ$=jd|nw?vMK+nr!JP%|f4MqFUSJh$bYONc_2k}jy
zDVxP_9w9;2#*=as+cj8NogLjOJJ?>oY4JW?1A2x!lSCGThOBep%?X)$3$S}(W_^v}
z2)(?Kmg9SP&}Uqj^L_vQvjzl3z5#I04&fKix^N{iT5sXB2!$IKF_8VJ7eRdkQQoRL
z{A!Ohd!w~-5nV)yQJeqdu4oW{BdS|$5EuqB<tJDTYs9ES4IG}iq2HC7yAOyESBRMg
zr$^gN!F>*1k~VT_johc_85wd*6082T2G3!DCv>+#*nd?v-OlIE>MgqixQjM?^iP<s
zm4a2{H}-RGrfY)OQcTIsjA9vwrP)FEnZ)5o(H>udDQSPsU56@Nht5k;{}a7+0ZO{d
zHU4x&HR{2&2@vs$u6KnMt-Q8h4;PM7EOQ6~yObo9CchpjZ!Z<pf<0su2heP&1~OD>
z+@-1;J`@GkBd;RjbA$?-1C&PIWvhBSdTgjg#_N&(B}%cIobz<84sr#)eBRtot@<lv
zN(vThc1-<)ncrCQpf<V#hTv5(3c_(iWD_h=IC7XTTHt9eS}Axv;JIw_oEM+YSJ1-G
zyW!6Ez_1aP3L7u3CdQ*n8Q6vNTDnj!;8Np)YU}_mCHCb+j_^o7wadwt{aXU7f87Rd
zQKFrPR7oq^l~o@x^K!mZ&Xzx%I9_w771u9D+X*Y2gW!$zrAPe+OP^AV1PwvX18wrL
zRp(&_56qvkEvTfiQYnD+Ym9lRC`F#F#1uiBwGEM8d?xvVcjDT6@_=(szz%2KBbR9(
z<(ZO?7V4u-7yikH_MFc2>h5x1!d&00^yo<uZGBgdO2EGeymQ;1{dB&(HU!|3u_N_r
zP3|Q~rjyxavdR548vB1!8H)m8<?I_UCr>)G355o8W2-^TVlZ+Ahc!>KtFhJI0$ECf
zn)y62#(G0r|6NezR@8hJ4lRaP+Wq21TfbCSro55S@U5&i7K`M`HTy?3WR}v?69mZL
z)}H*#!uo^+`660Zhw@t8O?$~!Fy;^5Cm~WZY=*}sUPJd<s#4yFalgoMO{}*qycIf|
z*^F{S65}taUm}0gM6Vw^Wxy?({>f=EY$<~06QEz}j%eRA5#`=KFc0?!yseLsDVLSo
zylOOz<VCqp>)d86l>D8(50I?b0Nmxj^&0k4{DRrO#u#5eN7ofr-lT<rdq=_PYW=5u
z^PPpXarD|~{};1APy)!(+gt1Il$OZW))4&f#0)CR;SP22iTF_O>k>6dMKGm|&_8=d
z>XZ59)|fx4_>w#|Y3oZ-Axf~NaiyRz(hoeHcD477f>DRcNY>z|Kxs>x0NZ?5L2WH)
zMw*pkl?rBcGJHa@KsqkRsOMQRn9)I<^S8GMb8@}K=zx9KaWfU%sUwPnspgj109=+J
z`UV}I>iu`;7_}<39||Lu4=pLOx@UKF3cos1++(F(T4efCNf`R$u|^pW%3U~3D0BWa
zHHjRr7cRs6Wjrw7lBeAo*sNb^+};QbP-69VYrbvhRS<bV{3?4lq(1RHhvmy2CXv~7
zqLB@tks1C1e}_^mnx*_Ft!;<RLDWDIHz8QicbuvKUtGG*32oc!lDTd)Cdu7WkA<FT
zd-c)m;d_gvRdc9(%d2KFc@Cc59wgJ>H1;YVo5k%f3}NlZUgsh)!<YkP)E@Kjz!5l}
zf*+6X&j0FF5pe8iP^-VzB`_gxx7|uh9(sD_;?e7xkL(xEVDfwuOmU+;`A?~V?~KtO
zG&R7Fr)_t2o!+Rf-uF(^xw8bYw*7@~7p_$NNOiGhJi3f@n6_O!?x1nJwJb=JaR7Zb
z%ecgz6^e3c{+J<}uRMxxxz4P26_qQf5Ib)Ny+Dju?F(%TAAe)qWNS+2Pu4W>!VQ|i
z)Q_WJJ9V=&d9K!s!Szd^zoFg$C@}cnJjy1l*2D>lrc-p8z)Lzi9?t@_O7yM{uL|R_
zhj)X@C>bIBHM)sz${xTyR;<SEs<y%Ih0AJC&O>V-7O3%ndKPtDy~5^nSsIWDH>uw&
zaFm)C$^uA;z0U7X3PzN!SRG}<!h*m=!@X8&LE9_OB#Hhll`tFR2_PO)E_S_H0q_Yf
zc6Lk~CgooY@pF0Gt+ojhg>4iZbZ#s0YB0TmT+z9Caw~wSqvh4R<e;1<7HrLVNI+Y=
zXj1Yx>5Ev!|Ix&YtoV}Shih*GVu~(EU#L3M;Jd|9Un?UtpExC(6w9+E*1mGIFMD)T
z<D!zY?!ykb<b}D2F&vqHfg5qEkS$HO_XDEN9}+NLe#|<2NytKpyKWXioFQi?uYGX8
zm4I-*iy&`>gnRhs1$1*e^O%Zgi|Dp}f4zfW^<0VA5bk1j!(RP2)Fk^bZZmT|z+pTx
zcivuGcB^F8MXk=QJ0nVR-N6eI5TUPoxz>YiL~c3XHLP1>@a=v??F!r|G>IwR(P=?H
zHI$4M9HPpG9&t2gT|kGOWqin&3{W<W$-<1KY$?0nQpunmvg%~y5EqNMmJ=BvFKPQL
zwbi`y?3ZZQE&RJEq4n)`{o02p)+@uE#Z!9aOQ&ApY~Ugr*MAb0?Wn1Vd3VAtKpxZU
z{z)-!?9FAk!Hzl2f7nvH0?phy**Lc$S`?rQC*!k@OGZ{)=vGw2okvK@R7)}PGw4o?
z&EO*^%nZI4o^0IFUf)|O=5S(fDQs2D`0pQm9%ZWXu;E-T<MEP>{)*=G>R`nDd2NdL
zp3dN{dYiJo-X@$?ozs@a?*m3tfecdZoW-vqLsf6I{92~HYPB9Mh8vUIcaPox^kUk%
zE+^ZauFNrz$w#fPX+nzwx@0YOrtZ+|c88v7z)I&#yX3~#`%Tva`fFO)`>^HlZC>+k
z0{EgoGMZJy^WYu<?u6x2uhctQ*;fnsl;<5WfTs6#@^o~|g%J<BEpgL{H5lfpeuBFV
z;>qNX&lf1@f>gJ_)c#<1Mdk(w_A>BTUYY>+O4!RIwsLlKK;!PcKy#d%?pOvfkF43N
zy_3*(ainK*FcAJ;@3_QJ^6yLMqk`(6=q4mT>KeIP`u)4kqEzI3J{%qsb=WC<IC0d^
zcQh|MK9#Mev%j8yYQH2(X?1<cB%&|G<Hh{l3e{Ekps>V8MdBOQ#gPZ3+MAE49ix{g
z@wbBa0J^OcdAeg|FAXU+uQ?X{&(xb>iM-D>oc@h93sRpQl`hJy1C<9aGy2%w=e10*
z%y5-Dogvmq-e9oyAFT7{XXzt-Rf|>sdph>0QX#VVlZiX6L07XurrNEwJ(&1h=qa6i
zllfWuYPYc%Y2>JTJVmM}PjjZy)|5H5$Q2ujbV<b7zBfkgxlh!~V&2vxuQq~Q$nJxl
zv)zD&9yhO<@6vM?h9S$LV0$>COy#n0a3%4TUFM>ui&A8M4pD?){7Od+cwOs!C&l2t
z<GGx3h6~6$;^-KXB3z$RFd#j{cH6*tyYJJwOV2y`_D{x1mSsM^g4Fk<OnRK^N^PI^
zap#;>i7?%D`PQmm@xS5#xfb9knU4@QxFvN3mEZDRDAdf7ZnbsQXbe7~TNO`Ig`1C?
z_Chuve?K$ZS@-iheek1FWpK0c$eCf;ff4CdGn&CQxrbTS3-2<(I!{b}0#8UnC7C>i
z8b(%~AKw<an0t1~LvE8^-8MQ@4(XuX81E?gs?aN*KXT)b;NuHu_=|$*tU8E{ZGgRU
zaBa4V6OrD)RWwxU`C#Mm>bS#;A4Z_3cb}ms3Sa%ZzsX(83|sMs!1MlbSS%WaZQ@=B
zi0n`D7g$3+hLm-J?v`GjuoHk*1_uQge~^fnQRVUdZ)+$_o6^{}Cmdbs_Ad}#vUP&m
z>U;I1PkK_vW<N1)VU+V_CBe=^(55W5!OLnqePsbNuTYTF<7MhybJ;s#F|a-!^$^f&
zut|e5V6dP5_%*&$K%(RK^PNFD=R@cz*w=>hoBqZNZ4?vaop1F`I1s9wR~tHsDZ!sd
zfa8^2?4T}<k?z3LSAzR;pC3PPh(mBBO(W;lY={E5T5A%k6x=xHeaz&eyD6^7Fy4<X
zhgAJmPvkCM&o;Yr^OcqhXexA&9vZaT4-kLw_oAMbsCandO4ZK0oN{8EYK_*Fe-Um7
zZ5IwKQKZ11y5dLzzSkE|krbTT4P?!S3w#wJcc|Ao-4Q^0uUn+x6M~}+xgAC<X&&;9
zGY?Pw_$ET5+<5wN#AB=T90spR#`{ZIPY}$ZthnV=_imuW8Sbevf14v&*}qG6@b9y*
z{^-*L&EX+$8MR5LeSL$<3h{->z}$+@Hi;DeZjZ_;9$Dak>AA#wP*T@nW&Sbh1#+r=
z!=htI_0eF~4U($A-Yu_^#gUWoRrY7Be7t{M;0XTIlLbAKU={S1Gf3}M+2t1T&TH1k
zg-jhj7M7gRegcAyo-lJMe<8`X$~*Mg{Owb}UmrdvZym3Fl9khA=202kV=pb@y|P=o
z(*;WHP}aSpwjA*jR;@S{oVgIapayoXakYV_=0JY+hXvt)<plOP^EM}Ju#*jx#HA&3
z3VjFC7>_k93K;zH@-n#Sd&aN%cs?7t4gS@;EpA8--UNx(lK$<{?>_i@-f;#`aleZE
z15At*KjbgyB-kDp5>zG@ipN9Jc1&2hH(|C+FW@1!H@|rgqmBRr=^{7;g<lvwD1LPl
zJM^vpYyE>(882T!DemI(vmei)9gjPIG5@;!+tuA?0R1%U!=a+K^Itk&{a5u42G&2x
z#3rx8M2a8EVwkIqD^%cr;6}=484)}xc~@C1{R)InnEBkDFG(#Ilf~J3$v+>Hhs*Uf
zx5cu*`rPcDRxEsPvfrDhS#^fNJfcZ&o%p`8u69SZ{4souxi%2_{MLfbVqws=T<4O!
z^t#~cy1U!#GxODs+p93X&@WOJ8O1EkfAt}MA%W*l$K6+bGg7<fBdvFjCZTABJlz!g
zqDR6w^vc~m$%=zVV|W(c`*y+7tyWtn<7xtATvykW+^z>Qz`jUO_2ahl^UfFPmk4&Q
z&@iL5x}yg}ySZ^Mh=Sdte7FVXcEBd(;W9?Jr^Kb?wVB6TJGJcaWV=|^k(La*f8Jk0
z83NJW3R0jGJzQ(h>wkoiB%FQ)nL7w_zUq%x!_e2iRIgGzX$&t6d!Kp2vJ7OI0YFx2
z3_qIb0&F~67c^r7FQy!qS`Fvt)~))OFDj9wCJl<7q}zrqg~~E)M$FCvMzsE&7KH^9
zx*&u6kN$UYlz4IC$P=9HTmHwZK8Ac5e(XM$xBkM~$;kcVjT}EJO*>v|w!)ou(xN~w
z!Q@2`mVL>pdC(o_G<G1O1-z?@`!C_L-j1%@x<v%`WNqG#9s-q%)cK-Eoon^jb`g++
z6J^)d1w0)0m)8}y4-f`oXTj8TM4<-sRHxKK^SaH_Y@JrA#aba{i&^lo5;>(nf)^H-
zB4N0P`x}HJ>beQ`@jCQcettp;ddH0BwTHB;B<nlE7qCl!r#8kLkm1n>odF4ChTTrw
z)W=H#U4B_9(APIec7d~K*Zx=Ut%|#ip5<wMhyrr;GFw*9DSs56wEsN|TI5$vBKk*~
z#6HhI6(J>k_y^7zLu!=?0=*w8xGa4Ql@@98-}g%1hoi4b%j0j*iMTX0)KPPsXnXDf
zT|CNVUIprX1^Nry9*9VggT|1EkutWpG}6`>=1$G9yAQw?!3Gese3AoxA3vmU3HoyT
zxipoyqT!i0U%-@RtDGB`XBy)3^M@BL$M=QN+h>28QqIgoyAYu3k@w8q2V}B;jWdB;
zXr5!-wd8M>=APChz;dzw;&HU}+j*X}fSo!ZjE0{%6yIX|B;H#Z@Lyq;`DFE@5$=de
zzK3H%OnK4mb*l1y{*f<X^v~sMi^6pUFI`}Hw+>h`BM*q>x-?af%AUP0ut}Ch9UwRm
zc+XVu)jq29v0r^ucGWNtd#0JsVRKJd=x_b-@n4FD-r55-(wvvk`k-g4PU=xr?;_Lr
z{_=qCV!DnX_RHa^BtdE}6(hS;cx9~^XvJzxuueO49?68+Kx5YqE{5P|kDZ~|(2ZeA
z7pqh#a%kNv(*a~|NUMzXT&Dc`=;odOX9oPq+^C{Vy)?Yl8#x9LS22QJg9*bJG#`T)
zCA0>N;q4~q{EII%*1J^_{%lzT1sD>X0U_N7bgLFWX0S=tSDK~qf5QYUZo1*P13r!M
z9xr5sI-lhZDN=tyAM^u~B1tz1V>&2Px~(YSFF=~J9<Jir#9Bf9RChfrPq}f;_%n^X
zwGPS<>=;JvIuwlk$p_TV?&*_+{btU?Ln7~CUDN@`;;CXM=f>xmezkBV0^fc9U^ZCK
z2dQnH+k8vA28Z(=zf2(qIo?vK+$SeBAKS|&bp4m<?zp)cVz45^R=9q){*OXwr6m8<
z4}#L-kD;mEi{*_dow7>O<)}!~&}I3W@lN0<k-kC@MV8@EuIrRYa_X4c9}kK_lG*Ht
zXLZXv!q5n29zV#l++eg8-MwDl6#Ony$$1r=UZQsyLv`QrAaFPckCQOGxYF5hk|xG@
z!gB}D@Kea&b&KOLMQUM*=vKfkr30NVU_Bo!!{iS{+DUzI(fLKJa}zo~zM0F7>7I_R
zuRan{f3XWWNx|#2?ViE5mmkdJ!)rHV+zk2@yiKELcTHrx4NfE30wV8>KOX(v%tfYB
zb@me{j!qbia<OY|zUEhzzNB55@+k6AZN8Lme828PX-|Q#l@;<LrRv{NO5Q@M9femx
zw?*S3TzVfnJG_v_zIY<z&{5;n5Ef=X=tRBSYf`2`qN-5(^pIS!ane>uoA0KwI?zg0
z_O+erFF04Ppb&~7*h<b<k&;7Fq~x02$KHXQqqMvtc~BUk7~)xnwAvIvLcqmncYVAD
zq;VR2SRZ!Zc>&f#*=>QZ8YlxF1jI)+nIyxUGRv-zUImvEg<0qXjx!X%Yt{hlHxgX_
zh`#SO5DBL5E+=rvCRxh123sT*FYg0lq2ZawQWyQW>y6zWaxPxUrFy|cS`s+e07#<e
zDqD1v+0byT0iym*lxksBR_?!;e)JUE-lFZ48rfncYM-!wT(>H&Dl6{l7t?xvd-pfB
zEW<n7vOfG%XrCeUeu1o*y@6)m@9y`~`Xt)&oa=9|^mb#YeMs}r;)sEc7F2<GXuUIh
zJBu@IZgVd7zJl^8=vaW=k6*RB!bc5W_MK1BMYGtw+Re{j^_%F6!G0kL$q`zzE{j3+
zX$Y_{;D3N{m5ynXwGF7hmPZ1!xOV=)e9@K7d9<vzl6jNVmiB&OOi&MP>HTb21<%V1
zMIT8hV0D14rXfu6S~<f2Zc7mX%VO@eifAgbp68ySa0V9WkB&H<p|iAht@_*L)Gt8{
zT+$okf|9^9K@~&|2vKan?UAqV(r|>-_BUW(z(aca_6vpkgpP6#?BMc{{{<jgRB~<m
zbT#Sd)czD}op9hx=&Om^zG3GizfupC5^Ckb6V4x%p(fpvRjovKfR?id((rw{h1`e9
zYDi$;IZeV9-T}U-tvcC@!jE!8zc?!U`uQ7Y%*^t66D?@4F8t{1HZp%!m^%hKeQ#(`
zW>DdnSQWYvu&t#Co;UTYsrSm~OUJMW(zDPlbBY`H0ix7PP=Wd)kFU<0vBw4q#2_fQ
z2X;<UKbtjR^_tk3A;Tp^+mfK0c_VKYq!8A-scKWcR1|AukarUF&Nn!9cGvZ)$L}pC
zT+@MHgFDhSe>dm;>ryu$Z?DU;C#P%6Hu|uBHw0(v<+<v_bG-Z(;NgqHt=;a2xet5-
z0yVB^K=WGwl^=LbCjB2wq&&lck)Z>?6|Y8=h3YV_-3Upqf3K47@HsicqkSgdu|U{R
z!Z7~Xqkq2!rY~Rq^5~_Rzqd$9M0ML`N}oukwZ4yU%Xy2nYh<gDU&#YTHbUEV$1Tfr
zRXW+tbbz2KH=`_BTP4ymc7yV@$0Nmz=FhAO#B5M5(SQ0>bf!%l7kRYbm&NB`QgO+(
zs-?8uVJx(V54pOKGkV_Qb>WQ7?7;9l+zIsHV<dgaelc*^omk=)1M;W3mUuy>(dW^B
zCHBf`Ult7O){1YKlx<Po6+Q~byVP}bC)+(|X*GZA;bE7&4b&V}e-@V`+TGW|gm<E^
zcSah#masf(*H_AV#zVc&pecjd<92|;?ADAKRta78N9C=&&vg}cb5%na$|0U5G7Few
z-iXm8F67yj+x?qiyU66D*3p9m3dRA>22n{9lg1>HbO4e|0#pj9CV*8inzAK25IInE
zFTn0zn+x0FH;`8A)M9f{8!kZr*@ACyz5vu>rMeL>Q@%BON5Zr=bpVK}vLEFnL<KLW
znlOGguzETZ{kUMCbBDAz)@$8m=9^-a;t`gIJG4x&`4zI}c;Z@6fq4iJ7VtcwOn*d(
zlY;SH@!d3SlNv%_`yNBg$w^o<>X$htY9jhH?CWYorf9n){$Bld2U2@#)T<@SPwgue
zuP!X=T4LkxreSL`wRs+Pf`Rjhc60w3Uxt2dW*zQ&xb4K!Y;fGE*iZNWt;5Kg$ywy;
z?lpfj{)4YWR*m@MO3yuvQZQ!51gA)pV~RgWqIbUaFjyZymCGvS7nu{cbLhPfZK?8u
zY<#I%;-s3_FcMuRBy9V`nuh{Ol)n*WzdYF5g_SqJ^cm5dO}u1Pcj#>tA(SD5TncHR
z+@)V@HVU;xc{JK4&LXnizgOk6>z#T@3g!nEX}O?g4z5cNUj`E{`ewx7$p8eO!R>@8
z#u3|ykHfC3*s$JD<}%&^>tZ%4XG3WZJ!>tFGtWMFW9PV9;r;8V&1UPj3t(4f`M}g1
zTgY8p$0gmf4|rQ3?J_qGq$V|%#Xk|*pn`uR;@4K}rc~v}HNR}sKSbfD5pH)FITquX
zVrNq+$^e%kCSGrvAXIQ%a%53aw!o0}`#bMq;vBAWl$E;(aUXaFhYLH8bm{9LFXHu%
z4Z9~={+O|0VNxqfMGQQ9*y26e(yDCS1@`P${n)I3B#_izm)^a9Uh*uIVX8I_D-JL}
zD1w`>TFn@iMkc+!q+aYAwaUuThEMCbW#h&FC|qM%C)K9HOGeO${4eYFp#~`ihmMm`
zyZw^;6GsGt=BV8n$qV;{-)J9%ah_lcxhpyyt8*eWN{qzp^e1?*fs~&UQab$2Zhcz&
zIx)~d*6(~|?{Kq!U{zKr>u+6PHR+L8-Ba^>VZt@$kOeUPl}=1x<>f32d)W`K2zq)@
z(%_4E=WA-$Doq1S14;mkrB-`Xp~VfI(2a02vqUn)0<&~h@-97XpcG{TP(Oq2z>W^w
z?qNz?w`=S@<E3c4ZMrdZMCJk%BC}wg;1mdM{RYlv)d!vDD7xEit{*sZk9)gI;d{XN
zy1kd3=JD|YQoBN~o&>AUw#*_db5V_(VuCRqfjtPjgXBkD_P)7fIm;h$Z)sCvsj`B!
z)tD`%2@jYATr%|rI?jT6_EGUJ&hxpmBNOVY^4$pifBUDYH>6e~wZDpr#&9`X8B7FK
zK91v1WPK0?qbq^Pw)?{b*6#$%vksm=(tbqNPhT&TuWFQ$WA^q~xCyCDH(WD%m3SZ!
z^M6J9L45&XD9eX}(PpR{4Sv+~!A&H(b&h98NX6C9F4<suxH2pAlj=)M7qc6h_?08R
zs;Y~#-EFqaoEHVxWoUxm3#m}pI(^DJe@b4s`-02wg!ggUsMW+|Gv0)M<Ax>e-mLhp
zrAWAAyCfhg`%D=*{UmSdaKRa*Bwlri0-2>vW4%lg69YcPq5N&>qe1*WIRzs?H(dsJ
zut5!u(QMWjWO1~TILN;$*PirZD%l$G9Y@RpPDN#rvD4{_9h{KQ-Wk(j8jKXpV(Ow4
zDugOgbsonD?$N6nSZh{77YFpzxuWrUH!;TFyJZSUn%%sR*Cb)2uH<+OSfuYc;^`~Z
zx`!9qN@kp}XVDEH&ez?c!ZoY*z@j5x!B=E&$q2I`h$zKsHj|Ob!MUCTW{mgX(NAT$
z6@XEZ5?ZoC)JbHoL<1^ZtHmG0H*P0|mfr@-ofeU$uqjg;tC%np*+o!$AtKK5Z+m(R
zdpYsbIxzPLa!8WE+z<t9Ao5@{iI|6UeRw$ZJX#R?^tG8L*mm6cCe&B0Uft-i6hBIF
zFl^=e`g(2=rP!;h3zL~H_H;YC|J*ivxkvApm~roIo2Y)Np$c_b7e~*MTM1G#QKjeZ
z#GJT3OC5q$58l`Pkbc*ABY8?9e(-wq4R5vv*73jW22SyJw$cy+D&8;eVkB*4ww3rw
z^b<eLyn3)H{d}iVSaPDyB*q52s{X{>&y|uUJJ3DGZO27^e)>_ev9>L>a$OEYUYT%;
z8RA+K+&eb^^Ot$1@xjU<yMaVYcci-mmZdu<<K?Y>@4(0Ir+qdVTh8M{6xzc)MA<#~
zc`z5!As0lsvA!Bt36>TO`3ah&<!QEd2wvPcfE3=y@6Owi%d!6b9dA3Roe`|E)v4s>
z#R9cv<(PdRC5cL2{Hq`St6XzUXG@=3yRGM3r3KSe`?}<0O8Teu0mfMoicX%j4%hQX
zHuO&{B^C<E!2*5H=<9`5FD$7tZPuBio0E1l6YiTHXiv=9F$=laGs79bhD)T$3;T|J
zR^q{pmzY>{dYik`UZnJlArEe^(FZ^7KBJ=lGoV)HQ{<WWy!7Fc(_NB7FLZMvIVYM-
z1|dOjU;01lhHN^ej+!)zEz&|>de6*aUYFb94VFFjJ4K`OCr<9KDJWe%molfgXQ#7f
zcAk0eP`XyUP-%1P+*r|e%^}pd;#<ZBIL^zO@3jCp*U@}oZp#I!T8vA)VLpzJiKP7q
zD)Uq-G`n`rIbOSTD@zdd?8IK~V1jC;`MMJ*g9~9cQKN1V<}Lk1$k!>)|ETm^+i#{j
z=|yJ$o4gO@wHZD}m)-i~BLTq0?Dqo*kAo5i$lzlD0v9fI3TlIu%i=_TTVEX1t<XY#
z@)f{=0#$+q&9+jH@U??|XOS=8OQCP2Y@&eQt(?f`klF70T6Ltv*(ov^oW1>{m3n+E
zYJwY5I>1up?lZ475510jNx92+P(58AdvN_B-T#Okxh_xpzZQdtC349)q}?kcdm->c
z=JcmmSKL?&VQ<G}gdH~IE90*=%Wz8rR$6Mo3-r5gcZ>9clMm@685^K5?zUsA75mEi
z&ayv8Io>rB-JaWhp;3h3it{~9i8*jAKp!V8Ms)9B$zed0??9a|PH(}5XqmJIM(fuf
zO9F3UrDr9Fh6{$34`l+!fhtlFSDfo6UGbrFsr*|rh4j1Vv{H1&L$B0v8G58zM%2L>
z!X7((e?Pua6n?{(`b6mYd4ggH-ud;^I>9<75E1sdq+;r;<$PBD^VlDtzFHENrwX=q
z)4KYNt4=4dTCcV6(MVWUHLF+MO{bG{e4$=3B(mijMGiz8^N&nquST`^1RY)kEvy8B
zJ&c1W9Dp9S!D|YU5w}zTMywU+(qc%ij+gCE#_4TI=Y_Qbi3N%OD>D-a-o_woldThX
zeZ)X2uheW*5u(~VW$8YBtMwIJjWdyh^9}KklaO!&DDe&2ouY)ei&gwisV5NRkm!$k
zCP}rL=tDi$Ng($lHn`IV$T<~z)T<^<C$8~HwOpL<!fY#ndYM~m2W~>+d!0b}+Mj=P
zEdNQ?%U=(<dY<l&nrFUKBK=p$E}ScGKdH8dSdl%P>50}!R`l$uilAyC12{+}Xr}aX
z@weeNEy;lOu+QrMUdCRcMYfTsOUG0_f(mn&zVmjU!r$Wy%C~Uv@SVoaQL9MyvB_J?
ze{+WlUD3GWSKO&pz&{BhwKi6Fj+c7PK=-*v>0H0jPGaDt<&^3U<x5uJw&1hSLV9xK
z47jmvr#xPBpqX|)+y!z2W4#={Rw|0or8U$vt6FHgQJ<*2<pD`V_vF-#yE?2ElS|AT
z!x`6}mr;1AtwG~p=o7(q+L$i|)9e`nrUP3cz%HFBcFhW`2<^#CjN`xGL<QXIWgfPW
z*)lb}niC>a5Zah6gdB0tcgGXkkVJIoST^NuN;%z^QY8-9mmhpZp;;YZVy(6PVnp4r
z+(lmj?uPZ+d&@g1)sp3Lsv`x&clEE2knN(lVm)ifLGhl)b!Q2T>X!U`81064rLk_C
z4UgoK^i9;xCJ7khinwKrEGn?<!LR|`uGaIzt5{&3!~Ci?9Te|PlAPCV>9G%rI))Lu
zzMC^snP`dE`$AIYt$4Ow*CV-KeKdG#zjMNQ()p;wE=;o`-q~=I{SWK$q+;E_kmtfR
z^+(@%pL?F7JUN^%%Kyg{U5gp56o+>%ar1DN9(|rHcDv8M@z{3v;a>ggk)o%w27@mR
z^iygw>jDa`m1_u#2R3Cfh%xQT!kAv>#ifeRwHq=uJ)C8mB+L)oyIQ%qi?Yj0f0EWD
z{w&YFB8vz2B(Ii{RhOlMuFfoN3?Bn69cT40f~2seq4AW6G1k_fP80eXRGZ=u(PmEf
zk3v|}^7@5AGaCggv3&1mXg*>Wd7lZNTz8<(Oe)(G&jX@%5p7;RZiXz@I7)Q@6zze_
z?$e7Qf<}+{U`gr=C#Wunv&eLGsMD$s<r7&vg5Lq0+Ea$u%5OXTh`$8cSCroqIp>tu
z@+uR52Q|?wsS;{X>~Ls!bW~(;aGWqYvXy^X&53#gt81Ud!Ion!9z{fiItuKl!H+m1
z>Ur51Bfat`1w)TFAWjFZ4LqCnq+bYl%y2#U^PLpIGO9|Wo(S?RPqZJ?h26sr-r$>a
ztQYKtw3tArgyi2iNgy`akOX}+rY2g~MeuNQ7u3;#`g_NJ#9x%FXY!tvrpki(;qYvx
zwoAcd@U98CtqezHeEEs;zgl3tU<IwffojCx|B&6u{r@6fNJ`K+)g47SPLmCys62Sn
zfYE`<RvD`qloMS9TS~eG0x6%8TYNzU&~D{^+y8eF7ZxESCFMj3bhgLa%Y1(h6oL$d
zxMeWLnISOM1{I?pdbTNO;D8{$0<RZ-G*bz6XuTL&RnlLxs*t;@^%C%~I5fc3(CS9s
zDIWX|8<c;H(_{7g*SD>L>Vrjt%XzTX{IW%?)7;ELPEbldvHlGQ+lNFZjpl}|(cm54
zzE9|7ZV$Okkp%OS{R;zyqlOKdkLIJcJtQ!7cVk_#qYM{Gwbi{3r~eF{8TiV3z58*u
zMqvph`l0#J%b16>|L7d(ebcKhazTnUvM41*-~UjzzN}}Rl4j^t6(gDCg(};+pnvM1
z@L$EUf|=j42L{~q$V)n$4d7O`KpINp>SsL|^wXJf_wrgS7ZKLu;5DG|*+_D?tDxmJ
zKlC2fugDHj3WEIGx1_hh{%Ut_%E_69(vP0BcNU`3*Eo5Lk7q5OzA`roE$$B!51j|x
z?d%U*tx;+WOEq7xM}uSa9|4Q!ABN=)i}-L=!=4(jht5{epZzR`P6a7+x}Kjs#_UNs
z@d@+(i*;Vsqxq>&5dK@k;*#a&7gneg_jI}Z4|CgxExaeYvQI`Xst>)_JfZ$)SvHg$
zk~~t-_FwBaQ2#zZ7fPe*rng050(KR~TcLVha^!^rxLtugC_&W?nBd-#iUWjwDef7&
zR!eRV{V0IjotgNI%Zz>=0E9f$i(A<n%~>a2w@~E_Ok3X3k5+0M0lHCb#d(yA?QrX;
zd$F{e?boi=h|72R$W{l_j;M-qh!@8|d;B_b9}%@1zmf9e{Wg<Ff0zBpOSvO+`P>^x
znZv2AeC_V^3Z6P4p1*Wk)|ysL!ThVRdd00@Rc~#Ut&O*X_5WdqoWd~kUjDDnP%7NT
zTylt`^--Vl`NaXX>()y68*c??SGgTH&|fcQC1cYjO4s|MG$snyqsM?P&l@ANw0P&s
ztg(48ixjv_wQ)w(!4>SFHVT8elo>e+0@}20Puu-x`V1X1GINXa;<|KXi%cYadHFyp
zWhtmZfv5~Sh$C@BMAtN+9`zgNpdoD+o8UqPH)YLd54vQC@sV_ReFfP!ddbpxjj{pb
zp+bOyG=GZMTC(pj<}p{uzlAfEvTG)P$CTNbrM8Qy0kuOTLC4QoGFw#>zq@*xu68n?
zC_uesP4t-oA~lg$zUuo{3>B?inyox@I^rxy<(9s8Y-u`&A>;Jz=5M;R%8^*ab(OaT
zN+8b@R>pBK(5{2u-kAYF%3Vp)>M0@JZ>0)t`PXGlXD#j0dJUyRb0?%3!>OXqDo1sZ
zAGC6>v~%)xy9i5C%A;2eQNB%H!4n>>^SS?L@yhe{Ky~>Mp##y~B(%@Hv)7QD!~qt$
zb^!89)(I<)AVDfMFqawXceIa>3s4JoP8!B0V{QeQ&{XG%CDq3NwvPYjd`v9jhpN0(
zWPJ9F*9yB>mX5Y_aU~y^a1xZRGf^9k>Wr<P*Cjgo0DUUd|5Y}{Teb$V81l`f>=&N!
zP--skuGm|88(!#sS^Zav)k4Gw24;W`YF9q+W@hUZlae)``~BB;v6bs@U_CdZ7g9RM
z4{(tk4jFaXF`!Xh(C{82vVC=+75-?rV5Txjy*Tm_SsShTDS_08*<2OoB2;Ptj*o5P
zSnG$3gU+f}cRZPUyqWN8TH@MlcG=WdjS<a-rXt;$9BUNAZq1hfp~PJ*+FW90C`xEm
zUoG4i`7L-t^1bMLcPE_H73;i+5e`HDC~NrA7ww@}R{vJ5hETS(xY_Qk-@e(<M;N{?
zNwXSzbguIrtw~yMW9ntedO0yqOwwL758=gkjlO%ivuQQF<8h=;n+>1ZHMtt;0LTF<
zUzMH}AdS$JzBu}0YsF@ZEj714+cXWgtK;fT32x?Vk)x{;%`cK1mN80M)S!%Y=k*WP
zBaOFf7O!t@B`(_;68l^gG%9%<vS?dz-d>c8M><RFsYyiBq5#sW^Zf95oIy*Q_TW~V
zm+G(4`o06tcevT!BD~Pao-5;0pj_eoX)F&jXZ?RHoqIUb|Ns9<D1}N65sHv=ieXMk
zD94=3VNQh@-VU3?kV84MoD-u6<+KSC=6qPl`LH?5X_z^ibH1<7@B01g;-A^|yq?ed
z<Mz1UY+*SaS|6R!yH02*GM4##G<z*qh;+;s(9n3r^OH`(?%G1IuQYvoB-Q^q;vV$3
zmBCN#4g+e((Ojklu4Y-SLxqMLjZ<rh+X-Bd$x=x-Ag%b+G19D!EWSp@_>7hW4>ew^
zUmSIYM#t@}IY%*@l3MeL3!1(xYq}1|&-^*3);mp(x4+NrthuTBkN1b3-X=2m8qz@Z
zH;R20M=@)BG|=2<acjTKn;4r7g1)E}Ui@<MW~-6)2IEB@a*&Aaap?)?NBuj<%a0F&
zzi<_ZgXGZvv|f&*6}47pn55U-euh7TLGHP?EVXupq-u9pN^cvv3;aL}RcQ0)r&`1q
z`8OP^gtX@4UdDHG<OiL$&mPPl(Ae>O;S%b9B2&EU)1KbW=cz1&jroT2ql$rNL6cUr
z{U)|zH}i=(%u3_@A3f7NSVK|&;9Xt*TBYCF^!E>z+@sF7`I%1Ja?4E*_9rITHa9Km
zAT!i4zNO8l=@HB~t30o{<E_z3N2VTV?fZXGw>~#F{Wb2&t(tope%D!UCkxh;gxb@L
zFf=GXamCr9cN%@z-s@C!@qBZu;4L<s*ql(`6-G>~y#6*1?!@RvA4t<?9m@xko=rsE
z0(H#Tr_@#c_KWK6*$%j#wIsu-$epxYDh#b&x-h$>^xKipC)&p6pMZ0Z?cHVyvrrE4
zBZ48kpxlUQM_@8?$Ge>>1=EHwD|M!17lB2x?z`_BjMU-_abdqpCf+-k%<NBFC^%}V
z0FE*`tmKv}kpnm8!ggJ$N|m7+@Aur~;qZ|Zu9X)UT)qk}+Y9(pMyI?s<><5XeK*xg
zY~1hp=ED>}Vm59#V6VU!jEDz(B)vh;1I!Q?SJv5q=C?aqNqxLn15#hVbE7Gz3;-zt
zsA=!X#C4!XwSV4Ou^IBUpX-HVyfLtzCIb4q@HpORSvQu_$Hh*8Mdup(sQ~x$y1jyk
zgB!k}7UiD*Xs)ucHs)E+^Pj4em^$!2{`n(m>3g|yw^r|5>m$d3PuuvNx#cO?9IUoZ
zeY3;+c%{v}o;*c8!c^cab4bD@M{c^m<h!pP&$yU8Xf#iY70I}ay`n$+U!_Kke)e<n
zM#U-=fl^n-_YsEUA+F~&OX@uCS_S#d#24=Qn%yO1WjM>WhrgrhB(H5rWQNIS8X5hv
z$XKE=fmAj@z?QYwdpn~a4b+$_q2!^ToU_%W^hhj|c5Lb-D4P`_rvBC@ZPq*ZVny?V
zSk8d9PPIi`J6y3D?u7gUgiv^;zAuxfN59?Lo%%(=2Z|?Q@~vSb{Z5gAc5Hoo+lL*i
zQ<IKivRmLo#gJ#CRT#o#108mT@Xg}@%FL79875n)Jt6xH6IOZsFKm~Z?m;U2+05Zv
zPMlNF+V`@ny1ZYFi#FnB9O1Lrt{kqN;Yp+<RY?28yzcbRhqhsF^)pYx9gw2!-|MQh
zR}}!lx}Ek1;#U6u60{m%4C5HjMEy>rIkih=@mVp(QN903a?U2HpU**i@BI_x7Xn|?
z+<f``YYX#8!VZqyIqqKyQs0IC7``gOp16EG)(M{GCyRFh)Frj*ePn}V%ZLnm3gj4G
z{0KC0$1=TcHUD<=VtpIS9#qM`WB12oxGjSzzfjKr?%Oeo{;0R*<VE^jA)2H4Bm`$v
zf?@%!yDp=}Ri2$S3({RQwuJ-LA3^y5YJ5+<>!v)<UtA6I4NXwBWJ4+p{~=GIxg*x8
zH1}a)4a|pc7c6%@A0q!vxBU2TKseUU2vXA6L|f-?uql)I-AD<NCSRf7qC+QU5LN1f
zdG&g;&~bUxJp3}!ovpcS{F9vwN~FRz#_!{Vo+Q@!?R*bHV#n!iAjXz`>T1oj`{PRk
zCpQ#Oq&Q_Ip`*W(76G97G>TO^-*0W*0>3vm%KaZ2%biq(`NtIvG}I_lzx#9;;BPQW
zc&a+oPOtQyq&M<}P7d8>j9snx9Vb<hwBxfDU4ERb%2@UMBE{xKyR~LxO~M|K=-N>#
zjubw&3*YN3pi0!BUzH$XQYHFOO)GCI7sf2ae2ZA>F_>Z(vFNWkTbexF6stdi9n9&J
z?Gz4S^_ZJIGG+#QqL`b-oxCSC3dWWXIvf=7cl1QBa90*DvY=g??$4q;pT|GqD`9rM
zhW$KokLxWyLn>s9nnRQG=>p3nWMW-)<Ik)oN|fgO(E0Z3TITE*os+K-;%{S`+&<?*
za^j2LPClL}_on|3f8bejHUO4AL?kSDW<}#6o%EE2`SN_~5568`4jMmKE(gGb!n6Pw
z@**@y-ng`XT-fR8xis{=1C(NRqzMxzS`g<K@3NpBDlIJ>KR64DgIX+6y*H(!I38&w
z((8WYY;nR_4qW8H)cvZf;%i+lAN4PmdAgaQjJ2Hh<s%#<CEJ&*Wq2nZJVf^Hx)M)o
z4Gh=>FnkAqp(>|j;-oO79tQRlc?9~aom;j53)6494_>#)o~yfxC_|};VQ&J(Eaa;J
z|INCgq&0cM<j@+^F62a>wN!IR2jS<8MzFr(dw{5)y$&hai&&A9VF^un<(pO~?^jxh
zWA3@f;*XG3%T=y72sK5R)ppXx8O;cP(SMqNsx?9Q0*kV)Eml+*J%W-Ww{w*QF7mtp
z_>Qb6V=pVst}3Wn#S&A<O3Nuqz{XNR!<g8~tLnqGS&U7*@p_U4=Om*otkKck9laYZ
z*?FInkwML`NrdJTd`rZy{NGGeRFqD}g=q2DpVMCQ#<bo7ro#))htrg(=8TY61{J4h
zk9+iqyK5r9qzwa7@j@CeL;}9L!G4GxBgCnQ-KN=;qHOIv=N|3DUp*!7fcnK83s;HR
z7|E@PrQt}->+i7<zoQ=B+M6Lo73p!Q`l&P@EL69@Q3T|!m&sMuc8+S2ev=C-;F^}G
zJ0g&S{SbO1Quf`hZPon(ynh6vKgyn*F{=*9mkT1Me)u%0gbXXZuzGA5kmC{Mjq#Z6
z<1?%fQoHs&Sg-O;!cgcXuP?CA@3f%<n?LfTrK&Ge(<aEL;`5|7>Puf($9*Jm59Q0v
zxD(u?$-l(Ac@9T#{#)&T7e>h7<i2)*pm`zE&1l=%6q)ChF)1|)hPtqZl39T?3#~SL
zn!lx`FQ4cIl7Y1j+)*4*x@}PaIBX={hZyX62jXqAVMg~hE0<@>^D5gP!3XaHFp=D(
zSO&Igl=Q)azj*3vM?kkaCXF4`<=8m<<$4W&&9{=P3i2vtVB#$vX~M;|sSCX}(!`av
zW=B6_ovbBa*5c^_@!D^*-KL(<`|~Y{mHMjw5}XR~Q%c7%308P-Cc^vQ70|9w6thn$
znX%EnDGjyr)(sNue)tFk+5WHKWbMm*Ini+=5UC%~gv~y0_i2voH*-m&b(}rm%OWV+
zCx8iOOah=7ibb!DT8lXv=S;IKia+doMD@32RE~1qs8k7rijs@N`K%V%oj)#UB&%Ej
zEu}%vCpHTnQ$K}Ptk+!-VDkfb8^xYT_e8>+o9v^~9SGB%h=(T7^sGiON)Ro1uC#4^
zsPY;%sCrEvB0V`ma1nmD<uk$4ZohE4B?!WCn3&mn1TL|+&v5mmP29}riNjfFA?^XC
zX`zP!a|!Ea-UM>x825S-bpFHaxs;Y!#jSZ8%q?_?^apyZ7%o#fDTouHSLidLtDgJj
z2ID2GMKcQfJ+0AzcvmWyKO0I=MAV@_T=T&A67ku_0?lil7j;*+Q!H3VrC3boRn%`F
zMm*&@;3s{-h^VHMGx~p%=Q{^m2WrBHv!?{<X-2A9`YgHL1MO}|!@GjXKKFe`^UC*)
zd(!^^rbL@xYZ?<QV7o0V4<)<5s?n~LH_$5%O>N}34gQwSk6&R>IO_3`lm6eF#z#Vi
z;P&c#kpftbx7uJA*vySNlO}Oj>!fb=;Wlcm;)8*PLL0~8j9pxbQb9V?)5)V8#@r$8
zCf%0le(=6><JJ@}i478D1g&(gtmDM-kOI%yvQ{wa=oG<qXVBl;%r)!AO)%78v(U#v
z{_unm#X{WKR%O1PwJk+*iM`WbzxlDRPk4RSh3yJLX-Kiz1vyCYt^)Ap7o>oFwPHZv
zS`LT{%@oysYO6RKA7o08EAlskh)?_cCIv5**9{yA%B;ovg+7l54<5;CDI!ik>bE;v
ztt#7P?X2ZW8d5PYJHn#%7eA?PQN|dCZa(g^IY{cFv!{7n3#Fq`W-A`Jk)n2bNO!t*
zl#&o~tc8UCUXi$!RwJZ3)m(AQ>A8|;Y|vx99d|;=Sk1hQps4bsyRKuSyV;AVGAzSW
zq`nej>gq$k(w;`wb_g)w;QgO{=D*G!TI^c+!CPkm^fe4^)ve|bQ=(%QfH*#xHe(20
zaTHGQ&awx!fOfb6#>@PBf#Po!u=JxDzAC&F@`wrH{#Glw&4IYt0l$+wzQEycV1jB}
z(bXniKp)sCRcS{B$G8{leo&EG2z5}x5Z>Ot1R4ZYs{SNgV-x_n2u}EQgwZPXhbSc&
zg&pYc0Nh@7A8nP7OQQRaU3&B*+o23xO@F3z?<p=d-2ezGwPn_Fh?@(|u{9cMhLVhS
z;|GI$VYb+&IpJotGrfSfnFsfff28M-xafDxA4K!yg&s6ajYsouOIKaqaz5OA!%CyW
z^Q0)AS{%Sk(V&N2Emu!}OvPVA-Se<ossF}2_8<pd3f{vPD=GH<=;vXcaDg_al_gx1
z<TYgv7(=RLnx!D1zW<oAl>LUBOMFVZc^r8ww)MpR%7`5B`4H93pWRzB+oPe3|HO`q
zk!1}!UHXSM65idX%|csM9CiA}Dbj>UM_!#lYf86TJ#5mNxq!V$`D8UT;QcOQ>pQ-o
zPX+s<uf+z*JJozNnesc1m=D7op7>FZKdFR|KTXM<aAYPHv!pJ2z_YRqKm(YVT%k`}
zT>As-7X3)-C9$S9zR?*XL#M((;#Vt~F5(13{j2OB_CC~?Y(;YW#GxtSFAu^02GG4V
z%9~x1yBp9a;72=jGGbvz0<4LQh<yN06neS)Wp@m_6@qND%Ub&cRIfA#%ZL%lMnHeX
zieu`|*ra21YKkhgpJF5;8m~-kOt%bd%~a`jlFs#5;8P1}Y(C$yZESvbfPS~q7?<gN
z_Syq+!LFNov^xD;TG*LJ{}HkVOJ`{M7d~3ZN)Jw&tFbCRRNaZld5WMpHDI9W-d;>p
zkkN#FrBu{=hsCLADbBpD=^f4LCDzL6?OfQ9R%qp@0QAcH(>2q#unJ$bmw2(p>nHd%
zVQm9HdmjHXSf=9{-^^KU$dmq?N`=SCBmV(4Ry$PQtzY_A!AKloe6beY4sRygp`#^9
zkerj}7{vlPbU^{n(Ix64ECksg2KqEva$a8bJc_@WDi^TdzxaN7yq#%MjHUgu)9gc_
zt&Mg)tCp|hd!VwS2Nk-d4y8gxs0!`hUC`iPAslM_`@4d*?e`~r{Wwl~2$TbFz{`EK
zP)6Ab;i2(Q@=d!_Qu8+=g|$*`fT4u9rwQ6VWw#(i8j4Phnswu``PRo)Taj$E=XN0|
z;xmskVM6PbgCM)Gx1b@p6(PQ|28L>ez=&U{x|i9lVEsRy?YFgor)Vx<3ttMM18YZY
zvXvbsRmMkyFZFC!r;4Iu%a)LwB#VG~+=(*|TOq=QVZ%=JRNA$XgQT{;`}FfX{@IDc
z&wT4T>wDSI2Mo|8`ykI=6ya`QCngs{r^la0+0gxJ<Je7gi!cj7*$+FndGCW+VHPeu
zo$OYlp?npJ>ub7iBHfqVu4i>4F(-9rJ)PU!!EYmjsWKC*K^P0J#Zmm7PwNG9FeV2!
z0AdTujx8mp9so<ynH^y-<z*d81$ivvA3{fA;b17Z=trE9I%&<#=BhW5VLcAm-k`KV
zf^QSQ7MR2UP`h4SE=6$0(X(oQ+Xx2Xc1NM#3f>5B2t@5vqG63d07hwWqOL(kW{M^y
z!gF|34r(kX@@x8}D;wL7TW_u2_y2keuOJB7UGwzC^~j*h=Uz1u7Z<GeKkR(+>2vKn
zGUQhm^<r_WRa+{@Z9!eKx1ZyaEt<Zcj=gNFk}iO(`t?nBBWPBdS^6J1K>=(`am=l{
z_qJcxSA*JCp#wjT^=Rh)*{6wZ7SWPdII<;!(v+8caZ06;lnKn=tMkDkP=D6XF*fw|
zc7wR(mqCfJZ1x0YtO`x+!jV8lwsXS5*;`hcE*rxDr7N4Ltvux`*dEQDwJZJKOxit^
zA@}+v9D~_WkC4e0{Kh?J!AZWt=|#7fa<uh4JMqLzAxYMA1RHld@=hwLN4KqRsWbo2
z+CDMb!gWCgUWM0Rm+9f7jb$#&hCx<e4KhE2SVMxB_Epwt?UWxO5mkg~M-3EE#QG|+
zWzsR}?9mIBsel$ROD$P`S~u)~zuCDYZ$aW^m+D{$yHx`Sk?L3(_UDANdB(rMj1{&?
zG4svo;A2;EKxiXO1B&|?d^cH_yz<GiEDz9Yx-mODyAY;q3)|ol1*q&V@sr2EzNT{2
zTHhbR4d4m{EK@q(bo4}++Fhww8g;g9y|rbv1H63ivG^))P!wv|pGw33)RJufK>S+7
zLJX8Q5(ylP-x~n19gvtC&o|ug$NtOOj)%t|Od9j&k7W3=hGz8Q?{Dg6J2wpnTu15L
zeioi^@L^7cMz(RMk#*he{n^C4v+>Ez_1AQ7<RMC>g}c*1&mGU=;`aC9jg)<_H?zm5
zfwc`OH2?U|R}HsV)f&bT?is!>jzjS5+f!0)#-jLlJQs@rO05Uh#3?aiudTQH^qL1}
z*A?%foI^?WgUlHQgX9ot@2GCgb(i#E%cV^Lg2BycesmAL6sqWsH`!Vz*<yC7YD{HW
zYH0ZjZm@dk!`SBY+)8fOo-4tUQqomz92Jux^p#WlL${9kye-{g<tWy%wdAr#rb8ba
zr)ShUvy`)T;HbrSO$?CW#QosTlG0R*nIMtMS@h#g8+x8g*c+Gyl+;ge$+gouK+{~u
zgr-=`Rq%lRGM`7nO8S6a4jFu%eb4S06Br^wtkUqx+FA?HZJm@OIvN4(N!QjZ#$@~&
zx_&VKNkRN=&M0R?Oy~725i!rT-KR)*CrSvl+pe2h%fSUcOY9f0x;dL?UN%H>b4eSP
z5qfR@F|*g5<?;is#{pSO?>2+FI>K12;*GBJRCRR&owl=VG#Aj5>hZ?Bz|j0u?|Rlq
z!y@br@&=<Gi59_8yBg$xp1eohT=M6?w7W}(vfx((3IaJ8A552Y_J_K60&BiNEjVuV
zaW1vNPPF=b`QNiuD$QJE^ro`@9_`lvwUR%W=JoDupJX5YA*^+ELf{L=xIe!zBX@=V
z{7QwC8m5zK>4nx5?kkr#NRa^ClGx<~-wCR3%(dy}7mx4NO3_gZT=e;7feap2{$|Hd
z0}f2RfL+Y#1tqRvoF||!od3d!Ugo`&DZ@lU0x<DIzC}4kU`-Fr7JZ<2-2C?;azSna
z+Pl~0-PeL0cP$15RMQ_S+cl^d+F-^BlIy6;lJyRR)yBs3+MsJ&nd>LqGD$K>A~uww
z8Ge47Cmy(QpZRv>TL(YC@L`ElwY3lzrxI>Q_MZ;&I359xWl7$XiL!FTT6+<MtnGX+
zb;ZYjS(hfiuZ9w)FtD30?A5Gh#S*d+;7(jiCiFZd4H8`A>5>Qnm7CcrpQlc0-+_*r
zp(St*pj%ME4ruonR*$#box#9>+8N)*rwG5RxF>N&88Lk-n^7SwK>C6KKswtY&c>ZU
zi}+$Zac}fD9sM8H(8l*Lg|!;U4Zom!|IrPcqQ@_R+TqWeDjHsdygmEXw)fDC+cjuP
z^&->i>XV9XcT)E1r;Rv<*cFXCx{Q4CBSvZp8n5KPdnz7Z`LULVPc}rPOzm#|WTYul
zd7JR2y^|QgO4GJ8gK^Ng^ydKbR&f5xTw1EmQ_TF)X4T-b6aS#>gS2mKrEL?cbMh_4
zIQLq7=c?m-3-GeO+I~bXh6#RqzSUXX1c_@DN4GlW`3Ejs&(*}(b*Gmq8#~r+uLOAD
zypBI5YSWzjB3JB#iz3ep>`Ph~q`-#ZX<tm0XI#_-IwN07CEzD8jhppB%{8>ik-e+R
z^6QbK_9RpN7@!;3>@RzEUkP;i!)7@4NJV}{uGcAQbkZ%V0IvL_!8}PE>!8d8T9P?7
zW>*oyUalrwtz9zJhH@QMF38w??;XU5VI7Fc!$+F_Pi<vRe2H=_TX=q3+flx|F`ja2
zML>BV4)Tn|RX^);Cse71*=oLpdo-ZR0%$mwl48LGgAg0**Pr4i!i1DvZ@*}28nW}R
zByi+|0+F^9-Zh6*yXTz|ou!>t>0C<`qorO31udba>hL%^Nv*Ic^oXj~59!r-Dw)q=
zr2NrTs>Pta2k{U3Yez`zz8PQ-mjIbOUTOfUMTL(-@zOmuKu1z?pS0|+0kBpeO1$6G
zCf*g_l)rd>xe>QeI9s#%htMm0eXC~SgVQ;{5VYdPE{++6cNE<<Q<N(RwRrTcylZRH
zLu~}iHwnZkA|(lTs-J^=`Sc<UT6-<6?v3BO8A`uU4G-9-gme|aLiaTeW2AOX#)u_j
zONmze{fbn&*JV-x>92SvX1^%&PQQ!Q$B^~L|ILROI|TLlpO+_c3)6R=6jdz-D~!3N
zMU4pCt~P*cM>fga>uwHgNfz&#xVOsoI0AIopt>i>{_2kr3uQS#y=i4q<^mIX`shIz
zEvDVPo@T)IQC2uR8NBnM1;SZ08qqY%#wdVghrcT&vIckAzAI8`y$o+#u4VPI`!omI
zZKGS)nBG1{4=Cy_UN6Ce_ID#55|88kei`DO@vAgeqvy-2)dcPT<w71khL`KUB|9I^
zYT3?~Z$-_%i{w`$^U+AyO7_I;kOyizRbG_f28iFQPRj?RZ{_s?cNb%~k4TQscb9D)
zyn~O9&zR<KB(R(e4yiAC{(SEqQ?_%%zL#AUPo<$=26Y$^U7PgQ1DBMSL=$u)OE<nn
zT*rffgVUmXiw!EtY}9Oi@<!1XNg+Z4E?+OQet@W2%7dbxFR`s3Hc<vL0wHr35f@fA
z2=+~hy2PtluxG13wXX3^dly+Y>5!s`4!1w8-sbR{Ywzbr8sWV{Gt{wf773vVN>8SD
zaMu{`AC$HKnug_x!#&xMfU_29B$g}r=1mic^&hgMA3skX5>5r4d{P-Rd_ZX(3Rg9L
z**1=OAJ`XHI$d?1qI;ad;H-3BgS$WzS3cByE?#pe^=_Q$H0bQ=`CqkvLHTikZY@rq
z2L2e2lQlqrBX258O}b99r9qY94(WfQ=Q0P)92z`=tSHCi8NV-Ub1&0RnX|>GNHWrN
z*w?&;qoCM_wVl8%is&C2?VPv)XtzN3%b9sd<)l981pAjkIo?z4k4&_Ekf<Fuw~b@U
z5Obs`$fmVXALA85v6-Pyu;?f(x#a&qeJR=a;timI%9NxuZ<Tr;oRHxC-BCng+fqU^
zc?luiC#<7;y|r?d7p=RVeC4*We5j=+2{WLmx?8?I<hY5k`LS#6Q|eag`RHBw-qa(g
zyYz>23)>1APf0(Ohuwhdx-%j<%%Umd2?vDEGg9TyxDt=@ZRy#}>I>dDzDIQ9+Oj~5
zvJ6EhIA`}jm;&6u7Bg4SbFVsSr%AMD{x=xQe+oFH7;FjDBX+;ttFZXk60=4%{*U_U
z^?!FAD!GI}GVQc~>TS_C9TOdH9$Cg4vG9!NUv;|YqI-0}rluBeq)9dAau~Td83wcw
zv9QJ}L5p`+bX}3o#O}}X)p#FhLxa<*%`B`b{B#HtM&$XWB6a~wc5f#&{X1d)=LdjL
zhi9ZKr)RU<G_;Aq&rFDWcGSzwKZ3)js27_F^UPyvr`sYesg#L(DVK66j2>z(C$|`H
zp0k+HbiKbS(QPD(f6KpaQ}+=sD?II2uar|zy2S>s>OGaL&<t2N!HgECko9w{4AyR8
z1&;)Yeg0>b(6!A22c`L7Rxrvzmn<s;EA(k>u>q@fVCR`tU68S5R5o7=u)fHS2Gq~N
z)_&JpS&(sNhY>R^IE%!jrBkWDg;k4pH6S7(2CyR8CH?KiX7Y8<S#XFL=;|Dz+1!o7
z!1d2u#&ua&+sp0^@Ilmg+96+@s1Lsb;5||Lfe+M<`OU|Tz4#$U$UOfygOyI<MGJkx
zlOAs46Rrz)={(1r$`{98UVJ4+AD1|~m@dw4vvHR<$iSdS9X?al<!xDFoe>kZ_@S>%
z#y_$wc<K*07*;6fs5_88emMTM!@kCPj@D|M=$gg~=`8e~5?7b+F^0%T^P0VVAb{+3
z%ypn!aS~jp-K_5Z^DmM){8Tf*v4a>tSJIXog``AF5}%fx?Fiu~m!YkgG|cC=u3o;5
z09Xu9=<@3xI?skaq&whI4gf95P2_Jg&G|}|s3%L%-k7P0k?vK3S!qL?*4-BOfAd**
zmrYK#FRx#}SU>JIXGVc_i0_({sNB9fUd>Jc2h>CON$t0hUA~~V`J*~y0IV~QP|=#P
z-zoqn7!hAp#R4<1REq?o?yR+`lc8+Fzc)96dwp5{<I8_?n+T9Fo=Amvee=yIaBj!<
zH4J*a+NxJ3hVE)PKIHPI(9f6%1&pE^AH|C=UxMEU)jNMumeHBO5@ht_PK34+*?%Ey
za2g!tPag@#dHfX3hlfDEMMN?Tr}?I8c!?K$SK<c&sdT>!oyEhfmtdC_g>BdRwM6!;
z4Z4a|S1_4IPgYzVshIO5s%(hncb^x{>q=c>nWIicSX>QzkgEH}o%YO<4oA}S8eorH
zkk6;Tr0jLlf?j2srUB8{jM;HP-EQ@lfLd>JA)45Nk+;p<Ehfg}vja;f3x*Zl?OgE#
zlTXv1U-_^}@c$r+K8wv=!^F%YP#QgL6iNmDGjrU8<32HYL1lqS5PKO&g`cd$g3#|-
zBi!xLCr?PO=+^o^EfB;9sUIA(ks$=r9Q0eE5X}z*Q6(y_>rRkLAb^GuZ=+SPYeC|-
z#<&={+}a|&tQNdb?X=5s2Vldqi*fgq%>nEL-v_A&PJo5rDA0@t^*EVlQ<9~My}9ml
z<;URgI3w7qZl~kk{~PLmDR)do(gnomQ>EvmdnRjpGolCcN}3Ufb%&95zNo`nL6nXY
zz|E7m-{Ej`{HYg?2|4bdbP-YJgf_LvB<3@l?#t*bDV62WLPqDo5{tVLu`sTinIj#p
ztBYfuYy|@MET76$@#HXHwtexTny=E>@b!q7&z*w<YJ@aQAa`1+yIP~XP<5Y@Pn?JG
zVn>X>7*zb2;>l}cxN>B4cF_HuFVr)t4ED?`3G@bHX8~cYC@Tj{yuW60<o6NWWtg%<
z#a5KTTH*oftSr(w(|*zbScxZ^zwuul0fS8ZS>E;gvmVlb>ZuoVx6@m7lG$u4j|I`;
zX6|b%6K2m->Z<ALfh(4bl43JQFy%KNe?o4AO8GjBJtBM7f<)R&JP7%|LkAUK=MXel
z7oAwRzA2;iXTysXl-56QyIS7)F9zx`6R{$GK(n#{G-)~$jCYIwQx$6Rsd)Sr=-E%c
zon<X1-a#s5Aryl0qgjsFYQ=wXe~l!c38by96=r;Rr~0GG05jN7RVk%xbwd>=p}9Vw
z72<RtoLW%Dl5__h8C+@wxT-~tzPiy-&0&kMtIGBD2Uo2!e@p(pgq8g(w|%)xgC(2p
zLbELAFYA=sprwSy17)loz|UINtP1TTSVrzg<q(Xsm@TIhqg2mNriAAnZ@4qr_0|7m
zcW?FED*Vqq5e#hP)Ghc}a6-Y5YLB9YO!VtoN5y!$uA$pUh+O;Kf|-c2$di+k!7~xS
z=b@~n&d)eemf!F^-turL)Mjr8LWH%H+-9^jCa=tgzDo}+lL}HNgX3}^{I#h_y9}yJ
zI0dwHgFvBU_=q%r$4@^Z$2Qvqv@2T*7qDg!$z|3&&7`Gfo-imuj9{4YM4J-IU1fMy
z=an;lGB(4Ll$SPBP0mu5KQwmd&}8*oK`D&#gBSpAC2si;KQ%MdqG{98#z!NW3m-k*
zd^NP|QXbevZy?V6edCIY)K<D9@6|~%yyA4rr2zeqC&JtE3aIy$`w2S@Y4m{Tmr-fC
z`-v<wKax#Gzw(Z7WFeOZbSG(d(I@VZ>+Rn_DKDK-;&9iV>&R>mB(Pt`Lz0|*^Df+?
zqwatR&VfmPC_S1x;zDa~+;aQs^VX22tI`uJ9h+c5UhSsUp)CZ3DSL4C*r0Ld_Y(-W
zkf|j(Ncn{{pD=N(*vaF?^#hS+ee4t;P1fRQ5&JDkbfX%-*lwyB>GQeDgqsI~=H}YS
zhzbpt_$J*~gy<f^^uI)yiaC_?c~{k>Dl0ZOk|+{=CI%V>-V}6r@gfu(PzhV5A_}>H
zj%B`hQexNUCiPj{7CJY&YF$y%2Rt~uhJP%N6L81MkGDLiff}uWNeYAZWZ#+f6xhbj
z#w_p<t^M78^{<y3SgTR>ho>k~mfHdfZ(JJm1EbA?wH;06X6r7YbMW(yrf>vJw6v&s
zwRVD0F7PZm4!F=F+?YJ!dVil++4jJgrq-6jb~j+(wimLHBW4k2w5WU25P^DES9K=m
zi)MZ1&KkO`3;cTv5ycPsU$doIs1xlX+xztsPtG8(S!tro0!(a;dA^)ox|d@<?)ah6
z#B1}T+hqH{;($1#i0b}TBnfBYT9Sq%s@_nRyWoF8^E`>Vg+D=;nI7ELL@C86s;gKF
zb);eY0d<mm7yZVPD*jmP;2~re)MbO*cdMI!wGk)*?$YuxcZ=d3mGu5xdhcz4IdMh+
zJK;Ut?@fqs(3SLSfH%SbG1bIOF!<v!oDuzK=BCwRb@mo_McO0io8)@c-4J>{E79Oa
z$}6e=kPU6=0HT-ZU7BJ&l-`TkyaM<yLYl?L4nTuPe;}1xMEjELSPvvIuR#pU?M*0Y
zV1SxH=&-n<S_d?6HPnEHPy6Qh;Ke2UZI)invS8Beke|i*^ZMMHSf9qzA==9U_Gf>B
zDh@bxMl&v2#nTlvUX=7Z1E#>w6J60MhXISal?o5q4VUyCP1}WuZqama{_2kO&-nwv
zMa_r41=VZIBxfo&jL)Iop=92zuDccUqd_PB_!8QPBpYzWvI*B9Uf&pnKe_w=&31%{
zR7=J$GY6KkMZBI|2dn#|d=TfS&=}|KIo3YC!Gf=KvYkWOra3XLs1&n|zN)11xI$<W
z<YI0hZQPPaxuh+qNAV5)n5||Gd)AmFEe8;HO*{5rZw7pr#>7~&$MrwJcPb{0-pRMF
zSap(<vn#ni8BWkwwW}T;b!@wx&Y96lFR=N85;X@a#*x|+T%y4>bv{`}L9K4Dwu_bF
z#DEw$9?=|G=>fqG@|l%WFNM_v%44UPjbB=dt-7uI0@ACLE%S(}AffGblb0(~(7ZnZ
zW;4z>QS>!`Gw7?JHyG_Gcc1?B{9IC+N~;}P11=jM_GS0xd}ywyLR&dAu|OKNRZL9u
z*N>3?04Tva6uy8eI?Y*vyBsTTzT{@)kP%bg@(E2mxb2^??ZckWSAnnksIka?XXQ3{
zJ>W(@7LZChQx%YOocs}AI_|q(wDvpP38_Y`T=_ivwTXg0{CiZgB5v;})^<)h_e*<~
z{P0wZxl)4eRa!{VLh%n>|LPbPhVk{fJYAnjiRiU8XC9M=6`hNavzA5?(eZCauHJL9
z;?VF{iA(A?<p21-P@vtEX@-fLXFj7*&dO0^Nae9nFCy**J%G+taG75#1;VOsnU5;o
z)?c*>3%M?I=9qYBWV0yoI&5qw5}=#0OxLp(M(raEa_Ep*hdGnYxV5zgD5+<DB8Ol=
zsuNY*HNR@*8j&kHscq4g9#4<}mxmF=HeWAQe`<I${9}Tqz~lz1#@^$yo^g#sSDp`_
z$RDXfA-tet#G(b=z2VH7%b(*sU&<AVV$J2JrIpq{xAtO$+MK`#)M9?IJ(oTPCf420
z=sDYxsVkO~3}Bu)b|^?Nd1Hh;<!Cs6P?|9(-Xh$Lr`;)ldWDLF$fFJ#Q*Wbxa??Ae
z90q%VjCymvbleN1P8>Z+pjx(cWIMo8aABUfG3Dz1NX>(v&zE%@`qGMCgAK3EJL_<?
z89O5fy3!8Doc@@oNwe9Cp@IW}2KZQ`fIasA8iDzaZ2Nr=L_JrUWj$FrM0nT7lg$Qb
z4?5)3+m51>&xJfZ<$UK)zwL6+Xn6e2O;=u#+}Shg@o#4dB^=|DmDlkBBuB29PW<kK
zCQ{qkbN|?aPFnL&A6<JUI7<F;eK~<IO!{Q?)d<}O>ELxmGRQt2A+E5JvW#>FvF<Z5
zB0KimPH0*6<Ox{?Zc~j~`qfrWIUJcs;oK>~uNtQ8>F|?GR=}6Dzns8>Huh^T+`PBY
z+XZZ!dp64m7Rpzo@-c!5hlRvFz$%s~a>lR??(gF($&d!fkT~E7U@;;w0`eDipr!|Y
zd;RU4TsIvW252`5+&-i-oG7)K>#q7|ZrA-Jr~nc#0+l5~mBk-;HRTx2(@5|6c-e8}
zU$lzET87NoP`2-AxyNz6CZ5WK2CI=5d(3Vt>=fJ#7VW&>0wRh(F50C$BeB^&TtAjz
zY+PJ$V+NWTOEM6)UFt=sh8%kzoR;lF#1*0>7I9Q|x<l0}VXUAu@88R~u(Azmdm}lt
z{N{rVzcp_UDk;j%Iy7=W`RfI{17q7ohWo@Gp_q?I@x$)XyL*Y>;-?IL{EOrTV>s{L
zwzFbyTizt6L%#p@Ri?l1YWi>duANC~U;`esFxp3d2`2cp%xj~fnw8^+6<{h=_+7oR
zVQ(4i@sIL*^67@BW1pgoLv_T%mUPth>u50o+Z|c1f9LCGC!0`RIDceW@$@t)TZuHI
zWT?8Vp6Jk68XbEzDe2l{R>8=ponHhV7|_tt3PhZ0zWAcnocM%<f2?*nO#QLZ)u$g{
z(_h%py>l&EGTi+2Qyqs(dCwvjqcyxEZ}%ZKrtr0-p!)jmhMa0wO7ZmB*^JUdWoJ+T
z@WYaW@_q=q*s|KS><-%_XoXE0=hM|wbi?(L+}~PX5rp)t-bNq8pPIuolX?)PSGo7q
zG-K4!ZtFb5^p=Kx!yTc$wv8%UU$mia0s7On^5bENA9rvUrx&Lkck8ahM5zrOK1A2t
zecnZxwa-m_tv&!*kG+gdHECO3C%@=tq&{*WuS{f-HeNTc{Bz-NINKxQ$^(?X_||u6
zsi*8)br$#s9F<>#sUOKB)_PzS@dRP=Q#c&8EiA`jxEQS(yFN})^nNnDY8?{McRfCY
zNa0AFQ00`;$t*Z5db(!U%kO*Dt~gpJY2=E2<o#}Tk@gH{AHI;L2hV(CX{6VAymD;7
zyssBleMN{0FjmcrB2vo<N%<mO73Dyj&Qn;}dZEP_89mXjnTO-lA*<Jte{e+GrSv|q
z#Ms|kixCX;tEaR7tEroo;1H#6BEX(_ZQLkKFGiLfdOz#se{8!UZgn#83N1mC@uS0O
zf?@Z=kpiepRx^PSna!is-$zw4c(8VxeB(o`VA02~BdT`9`-Y8AKWTKQtCCz+bAF*J
zyuMnuMQ*~svTKIsD3a8)cYHj&I@3irgOg4-<0QVj*sEuSbN%*y|GqlyWBHuFl&IS?
z;cwEtnz@fF{w|Lu9aoHmB<p;@<lGxN4^PNT5Xx2FRrbl*d8FMI(f!mt>!TQ2sjbtT
z=_nlxRWdH%;~AFB)RV1~tnbJ}zEVB7T}@d@tW&?fhQe`7uB+(Y6ds~Ch1jgIw+a6+
zRR)~~foBzSH1e~$-*=Y~!&pu-XWc~t4T$ea4ZOd$tasK<Qf(zX4+9K8{h_^+H8mym
zA-iOxi&g|3=}s8G-zqj}Q~!qG+cW;%d;DHuDySYc{-8?eHVsW8=_UH{D$^eys9L$Z
z=?&;pd>rpH4IbEAHO`XVZ#yOM$N7Jg;L#?lrTd`tbxQNh8v9Eop;U{J-FD5uVJ0hf
zr2%NFgUMt_@&vzlP8@{Crh)hOZM}%BO_!AD@<FYoKf!Sc4~q<8)Zs31QwyG$l@T&G
z3y&@0<RZGE^+U#}>cX$5ZU%F;Rbx-@W|>w&(hDu!joKEUCi^}~t*_C?`|bq|2>hE|
za&`NAk9;%7RG`7nxc?$qJs@zt-zr#yQ|^lU^pHW#o&gAzyBm{i?&EQp5~aeKKelox
zBp3CCVefDyz)f31-eK4T-@^f9t_dJ2Wv%pEN<uYKYYfI{??n{EPP0Rmq9oOA+pa8q
zT3N<yG7w#xH|TshkSg_`X=s4XsOFm|Hvv7gXU36oZqR#n5UiYExnBdJO`z>}1`c5E
zNmjameU`O|iw|KB?@}~!ihL`jY}(4J!G$}&CSf~uK19we$C}?Exe*NuM|2fo`Br>(
zR`zIjwz6TlA`%M6f?0TklS;twJMGlH$#*Te{@^FwBOcA`D>)vUN#z<mW^SI0!Vj<S
z-!`;+(x;Kb3VUvNB|Rj?;XQ>zX<+<*8r}`$>ZC?*rCjC}moPM3dMDUKY5MBv)$ON?
zecImVwHh_F0}OM^Bi{s)qMKx$(>Vo{s7tZ30a`0w9~%&g?%GeLRt2PMaQ&jSxMM7F
zgE0<ez|kL6>NAK-$}5!}mk7E!ED%@{XZ_*dcby9f61RX5w#&L1KGxyaoIZIStBI-f
zZsE!jZ`6tKO<wS&NhT?mt#AXq&APcKC*_BhOct2S(;3eQ<qcG2Z4u4x$l#7$ODkU-
zsTSX;Q1_(A#Dlo=iG;iJ@;>3aLq2`@Py$A}&60_i>WeC$XiVuyki<UHo+!f%IusRI
z5kkPQo$vUo4N?@j8+BEA)naH&7^Ux41(@q~Qc*ghvF<imJ)`PDsVC`lGi?Ryf^ZLj
z8Pbx|c?ZHSXRA|Ixz|Ghx+KthCy)xiBQm_eZX?vt9PDlyMKM>pv-4}HU?^6?4}M1)
zCAHMND@0<ax~SQQOZq8qE_uCX+zSvtc{TCG&d)Z76>4f&BS&?E&l#*>f6_tvlgh6N
zROBTT)A1A#y=`^F1l<(GEb_1Vv&|{>y?eK9{Y0Q~y7N+j`>)gbjOTX?{GMk!<bCqF
z-?E^h6xAm{_Z!c~Uj0VtWBc9jY|>&LG4z6AZlg4c^8NR6PfFR!9&IO>WYZ|V-EN&v
zTj^7LZcmJ)ye9UA%ef&$)05}#>_ig>4CdZ*zRAqi3`c<&Mq=Pz2BKKa#hBsiU0rOy
zjd8|1u~$H!SIF<pD&ij5m<Zj1d;R2X_wwctnabBy%2`wH!L0$Lu-Fe5jt;T7Pd(1Q
z$!R7+D*CM&IU-&<srh!3o3b!%q`t|wbw9*GEr8(iE9N*8LU02p_Ynv*`S(Q!r3$)_
z%hAn!z4=?RBrOp=)O!biDQ2D#*Udb|A;swz$+Ggy^%-~rh+%eQyMKtskCflF9z6H2
z3^sh!`!DeBeC==X?gWnT{T&@jB&D5rpA^^zCvGZ%d29@egwbidmFWT<U7I<tTURYD
z_4qhjI(dZu_>8zujD*537^}H`rBrsmUmUfyABH<K#*=hNx=qLr<%29YtLZX_YcXum
zg2jf;qdxF<<73Vihs1aP#o-?f?|)%g|E_Dm*Z-7|Z!g}lI*}-E`XU1^fG(({d$kAI
zvxcUwChy=zLKEJ!?w%$|9GVGpV@-U_xqvQq@8wjNai}RXD0b4%fzcpb-#xiIUopm%
z;h|EGvSC`EM%~6u#9VFV*>#>#KejrjirnZ(|8gF>@C5hN?u(Q6E9p=a{@?jhhhBp4
zC|{+OyS(tvu@O3i&bU%Ko%<Kcd1&h&6j{NI+vyKYwfm&eZE6sX5&NPL%h0HxmP8@{
za}CJ}zCYj<q0lO-N2M0VeJR7Rx{v>gymgARnrXPh)?oUTRpFpmk$rVY7S|l0xU-lr
zIfMxII}_w^01d<P==_wn(+ZO?;ptv!SAGlIMKYq9kR%9$DB>&K#nNwUqFoO7w*L)Q
zv%iM#@APvhrD##|YKEz+3uMaAYkLJL7Q|oW#GC(~bBFOv-X}Jece$+`s>4NxoOKBs
zh_dxivd{h`kFS73J;&a!58@6bI%<DqRNBTyR_cE@w@h#4lutFiIIlrs2)}hzlHHoz
znlSw~uiYs=mM7T7OGUXQjCpLK8wcb@=kTuw!dz4Nxjm=B#cdvXdqnFdE%5^zg2lD(
zfdwe%v^Sa-$olt<%DgQN1SYF5Ze;Ipo6WNFGDExCKD<gB!;FmVi$q}P1}SSOpQzKd
zy>)!w=eT@Czpii5tU?YPfzXNgS+K6*IDGa6UKMBIMbuK>RMl9}(Ailx%AH%O`>OjQ
zGW+crw5x<=CA{pg(U`ltxlqcz%k}fX__PTFF*vJ6k*}wl<?)xyTpW!xuW3S_Iz*qa
zrWMRwotwl#Yn5VqGSo;+#w*rX0sU-ygEbjHhj#nM{HTv6EPlB%-ez(mH%h{u)lhdE
z(JuMQV;d0g+w^t(zr8;_A=O`n|C6dnd2jfsT3@i+RyS!<&*-1EWN@Y;-{6r%ZJMZ<
z&TYlOsx%Oyg}vHZ!HnJ$V|?xMe|>A|3)q_p?F^zJ;<fMIw2>tgOS=Z?tiRp(rt%zd
z1A3_4mcGgxd!kp-Ri|F>GN=~<vM-U`vCN0Z*%irZgv*(5mvM~ieCR9iY%TOHxJ~$A
zav&5l)G^CuQ~k?jDZJ9mK=hIgbCyDtuLhh1T2ROk(rz-(<UEe%nwk2q<w~_CPTWRR
zC3ojHM##d~Y^XfDpX1KQZ=MP90KwJq`oisLUqPz?gRG}Iq;_AGTc8k&zUkf%FDfwU
zIRje{lic2}?)Hi0t`ki%iI+i26Z!@(5~>))hAcJtqx<Sn_PPd;G!GpMo!J`90;X+j
z&<GTf<`J-p@do3E+<yhu8PmQRn7bI$nL&~cD~B7?<Z3=_4I)fD>$x$sDygqZi(`XO
z9)rM6D}uNi_JXax@KEcfJt=`lJ09GF<v-}YW6M?pR)<!N-k-FJzA>%Q>t_TN+Yg&4
zaDQr{ukMvH6~#z`ii>%l-PmT~&K&oLXcFKoSvyn4bl@C1d&6%{RbS^|F-+S!s@~Of
zPHH8q9FvAg+RphSIeC|UoKcCU1bA)2fzsrsw?v{7>ba_110UHEW28eESsb1Go@%ZB
zdMUuEF6VYX%%I3ug=ad@<_WZv(5rQw*UJ$@b4j*!6)#&@8Dgx>{jOD8lz*MG<Vb86
z=2m|G)8;H2W64C1qO$@*$>4HtR?q)xyn<6LZ1Z!Cq&BTL-aLz#+Q%=*7Rk|1A7+nM
zPk1{1^Q%Uv2BvzO^CKgBL2*w#HW_Nk&cwaxn><Y4mM3#Y#r?w+OTL!5nJbncwSBs|
zsmlE&XyOhHLfa20%J;c4zeB{>tQOO%fzw?v$pEgCw+xfo@>w<fd1O8JJYemOL$eRc
zP`#aDVB0z(ZR9T3DxA+wi4iJTC&_2^{j%LdBgR_tAoZK7VSwm@CDTo1k)mEF<=j!r
z7dhGi5`CSX%P%=I2V9_O+FQP`oxp_hC9S$Zr7t4Qc{y3-X^0VVg<Sm%Q;4>&jerd;
zIKXDxdLNgX=<%pdtiOo(jn`wOAW7N4{bsYJu=O3<KZ{2D%67=GQu9qAVu+{OCLjj$
zu|VJ1m!mb-A-IWN#bojhWS_Iu@$uW`2h|%AJ~bD(6tk)+D(KUuwj(=2Ah5i9N_Ed_
zQ`GaEc8?FEv3~eFG<9&?DIj?3a!nF%4DOnK|3xV;Npa15QpWPuE~6NhBh88@eTrYO
zhcBy*4;gjm%Dj;T#}*v7n51TWvqDkBi-|aL`D?Id9ryGX-r&sY10qloCaWAvU#N%N
z0S{SL1mxsq538SyQT-)I9Kdf~fFs>sbzO8E{w;<q(=@0N)C6yhGS?k<Md9I>@Vhs&
zJac)y+S1PQQ46))iLH!*aEp~<%0dc_BUC&9_1jSZS|9R}d1nGsEg<H^h{LfgdZ{fP
zxx+(OIQ;t*PnU>955jg(MqrLO^<gs5K-|J^Q>O(01Z&Cu>#q`LMX7ec9|;^b_=JvF
zQ9^$UJ`G6NxfI~S__7~Qgk#)Kl<H>iTC~1^E_ir6>>-BkKHV$#n^O;@Y$}b|a!k%i
zuJ0y``HLrQ&-x5P>-1&wAFh0(=hauZF32rxU`F?N5Vihm;(2{e=j8bF$9j2@i4VM)
za>d3?bb3Ourm>PqDH*~Bw_hO>iyYss%57zmT7yOOD~$J2xkw#qIZuV}IUIgBs*{!S
zLKs2cqvA{@KQAwam)*g}UC$f(n7k2fkoRTs><_3cnXc}qAfK8@2SaK&<8W2Lx<BeE
zHT_SYHj<e?)YnYnFwydH9A^H##f+p$Aj{l*`eOE+pE@+D{J9#ZzEHHmG&WQo8f&A<
z-&_0Z8mPToxr4!GV4?mR)<-7uMb3hg5o9lbGxH;xiw@zN$j~LF?u*Nv&^|gti+?!5
zI&6yBXQ!wFSdu`Oh|<@VMALNqYhTkG=dX`?^svLvaM$K;YCPl6V;fodO?)x)!mdww
zTn4(Pycqy-kI>*WjT;zUOk25>CoaK89Nu0JkYbVe%Jc8Rklfb=vsFu?uyHwjuwZ?q
z_+iVB)Xz96!1i$!VGah{&<+=j?9Ft!u|svVs}{`mt&L^BNDA9@r2)aX!YH$+u?(og
zweDU~qf5WuN<4UFse(c2#WP5MLZTQ_jBWW)gXdlmpA_&#sZ-!dlXF(<xmcHV{RGur
zGO&FQR9q0|5U}o^I`&rQeVLdITaDnEEIU`1V8UP5{KXLE9|FE64Fo?oP%%NM4g2h~
zNRmYxe3`N*0qS-XAA|Jfz(Gu(DgC-i^pFm%?dRbRRMP+t_!k$IE2%XT+qc~>S7JU<
zw4q(ALtRMS#q|N=N2rF%D0PC;%({zvKpK%#uC_ZG12w$&enI$qY2b-8q)#`PMe0xF
zaN`_lN?RWP+v5C3M{WGDn-k?K1Fi4`=&j*{IpekbtSIYy=mfi{PRef>(tVUUv_TE>
zCR78ZeSGTzO4j8&xh>dW!)C%<?|kObbGaZosM$8OH-V8DY%6*?)|Ayq_;U+e@M?6s
z6XQ*%P_S8{2rj$~YLnUlrzBN<klS*-hn|S4*5*5ijHN3$RVu1#UCZTNlEZ4=8g3+C
znq)c+wXnd5^9uHBgX}sFxR24m%5a^z^1(sDbKk~py@|vbLmtqxlgc~&nK|{d$BiXb
z+A4|E(UtXF@dFQ|&RyK$zm~2dJjW`gW!DX>)<a6-{jOdpU<1Ive;bsseIXb2yf@b$
zGv!A0TS)X~VvczU;&ave_Y)3+%RT7qIv9`Da!LoA6~W~z%w1_2S*<38@b}pVX3mCd
zsUW!v%v`XuI<fiPLhg$p?<Jqev|T%VVEl1lx|dVMtzL0d4lCSDV;#SaT?jbf#LK=J
zyqe{?i787(bB6iSQL9?hCw|G|^64sF<x}cE;~r2iEyL>yCnuxo1~3I?2!Bi2-`6SC
zVa%ZNuj&-NV&5hAzUDa(uC|upI_yc;dOGh5Xm!mS2u*~t2toD6*Pw#)#dEITCIp;%
zOrdTI3$eWfkF_@*BYGU#Ok?PdONf0N@`&bc7HjhE7|1LJ96-*PKH4Nn9?CDZ=*8Ub
zw7$gTMpHGlpMGU($GLvQ?A5T-^O>_a6DR4nm99&sZUKLN6|0Q&Ysu9#!bO+Vi_(GZ
zTv?v<qN&@Z$p^1^{bD8E0xxxl{dg$=@2YYCVRn!Cw#Spd2$ZaIwX$K{2e0n-ly3|Z
z+YIVUzaRA)>eQ0ONt2PG(?u6wNfhWK8+zy=3LV<rk_qWUX2U6ORo(jz`g}Wl6}eRm
zudigr`FVG9Pg$Eldn-_PmM0;@l%O>?(f?A7d+7UCzi@O9_9YDh>x9Fwq(J&4(lgG)
zL-xA#N=3wOEJ+1xY18Oui?$1OmtOrU+l}Z-EKe=6UNkaBWAqfD&+~C{ZNjyykCgn%
z(l5AkJpdKBB`8Ow@8+&OiB@({vRA1Iq!&i!xxLE!)VKdfSvQ9iUiRO{@zbNfYz3&6
z73h4x1s(FkcHzL_<UK_RbU_g!rk1QYE$B|Y!8^`^QFgs~Fz)+&X>`r)qtp+a@Iq~&
z47fIse$MA#ieO#ol9}=S4IIw3KEI^K=q5}A6b(vg;N7abiP?_fO~a?FI(OAOG3xba
z{U1fw9S`;Y$B8IHGO~`MNY*!U))~pj4x#AG%DSUC<Lpt0kezk1L%540XYUnf-?_80
z_c|la_}%aSd%W)+@6Y4&zSsLX0dtmjo(M;e;okdMKQ=4u6AJ1&<*u8gHp0zA*h#PD
zyk1LuYH&YdyVbj+fd3)g(zTCqmHs{)ZIX0_><DMV|Ee-J$yZ+^Oa@gOJE^+5t6ncF
zGae>BFuV=dK2#)piy#Zb`ZTW$4_f<#$T0@++gETS^BoDf&e4g#q3<rG!41RnCRDx0
z-?T*g{Z#0>Pt-)cGGKKn8;4W<`FAS0eDk*YHoR>6?o<XrpU6z8T#w4Kv$|5#*v+}!
zJ-Z`9?Sy9bz}4TW<OUy3a=1~RHnlm-6jDW1ZHYUnuB90&z51Pd`t^7A9#RpkF+w7C
zgX0ecFv0mlDEygRk3&b$x1mE$_+tngCVml}zoG1l5Z>oPWrB)gLwX;umFm&J&6EY~
z!kHkEyvTt!_Q~}sMw=~^o!~ffg)s#hL0>=*8MfO=1`yn8#)KFDJ|*p(nwSdsc2z4L
za@oUNzztrSe8?sP4~RO?nxqcd%6ORI2D{&^@b^q_KKaM-2lsyTnfB$L&85+1!u2qR
zw0s^}xr2pvgs^i)e0@I$qKd<&{rZ%>c2UeDP9^!iJ%v7z%*2=ud;6CfR&J~<58wPd
zXSDo=em(GjcEZ}q5MrYBW9!*X`x10}5o;?UNZb<p9dPxCuD(6>?9o|-!R*_QTk<Vh
zF@RR@1DM3t*p-?jp}Ru{Yo*%d<}fdYIn)L!D~d@0i`UgY7K9Zp5Cw<$iLcnzi5&HI
z8><=SeF`0PfhunKViG(XJefn~gNwri-Wu`1Y`}EQ630DVlzZfZcq%r;(|Ci$N12j`
zlqyDk&3KA7`kT>H1S2r66wtph+#9l%Ve4x6d#u-i0ndxwV6ggt-*KQ%cKff2Chh2U
zhp7T*CCtXo)z8pdO~t`x<vQ3b?SMTThc-|`{xZ(G5F~`&daFLl@uQK?u5#<y5-Q1J
zbu(lSWE<W>T1RRrAMdZCBrK4kV52Aejj{Wn=7?BAC+qjl)Hr)`tXo_K<-ERDbI!Nv
zdL5=TYpXhbF%7^jCMPD0()}efx6IC1pkLVhrhX6FnX3xkl{_Cflz(l#su}Yb5f$;x
zh*w$IrQRn|P!rx$3>jSfLU1OhtL}6f>ls%SK6mp|RC!q9_}^`Lx+ssC)hm(8N;QUw
z9&e@K8SpQQrt%>3#}FN&j8q@D60u-<B>KyCDt~6p=t>?u@3u$FaJ{Wf4BtXiKo{SI
z4syY<Fteys;VTU&oy~0rb$_5+0$-2~u-M$3(#w5WlrMIp494Lod{JxjxNl<k{L0Y}
z*tA4JPPExt=~{$u7}3E&WQq=WqCe>Q_oUaiDJmQ}d>EiYzv-CBJO8(h`AMM=QQR<A
z1Ee1ysD7IPinw>kRNCG|RDv6TmF!p})vzR>HHl7Ns&eVir!QvK@raeh*DIiv$dIl7
z<`g76#_XW`0rv2A&F5=tS}(DJ@qM0=TjKbex7SjK4w0@U2~jIb3AoYp`K*+cjJRv4
z`w7}NH^&t|TV42e)ufq%E%m5pHRWW-n3Fx-=^tQK*5bzK*uZTy;J!p3o3|lG0(Z4G
zGvyQpe{tP_rOa1~h{OxC>D^kfLK?3Cg|`dTcKWog$1Cx2Ai1&1*;lPNH>n1Ky!SIQ
z^OrUu$?KdK1DLVJ4~2SzT7RpIZQ|ca!JihjGmo$SK&OEK-5^ILq^Xix<`b9vhy9Kd
zvEr0=LVcJU??=aBf0ZEYTEv%%u*2^lA0We}GQZKTQ`+2G5}@HoH-e=(<E>;n<JP*z
z#fBD@yZFJDi&4y<a@3Ab&g?LGl&<EFl=accQ)q&RI!)Z7+Oz_nH;^Tt^KPQgmw){M
zT)#Lo(YPVRYyY$=8=@<tc<IHf?UU06f?~J?ME2}m#5oTz%GU*KS4BSDnR^rstK-OY
zHyR1z$UFcq)H5OP$1}~f;w#Xu_q?=yTI~X_{Mp%Q{&oZwcu*+@=Q{{wvdXZP0e|c1
z5T2$bhOhA>MdK~-!uVN6EZc#1i$`TU-E<g$t1sXGb_g$$X-2}nYNf4%c`6KG`?kGe
zFQC9x2w~Gcp&b0(6#%TOtuhwEsD52(QttF&#Q)JMycvhFQ=LvTg;?PaXN2QF+biyD
zKknqk%F0U&&2h_FgP)5Uz5eNb@|54QOuUG07%kedp{@Bom^aj++t210=ye{_$`LOP
zuFq}TO1r&2>A#k;63=}s3OmI9%-wO~Q!Hf0>dFM*J__>Cz7&IOD+=)Whbw^B<cDd)
z4Fl>OZv+v!N5&i+Ax|P)0JF_>E%lHKu}k-4oP-H8yKj|pkZN5KjOm!!>^|4ZfC}HV
zqL7^5_FN{%V2DI3mzBSoQ7sQ@U^@nj?jAo;b`E&+^<t3pl5BNDT;OS@ReGGe-CRZ0
zEHM)ONiTnP`h8(~z$sSLvT&E}*auKusFPDx!wnXZew6o=Us<Y8jYn^{D3AsEuS4+g
zKTFe3<XG|93XA;EME=Xpb9S$$c_ZJ2PoCBe)=s*^U++bC0N=^)JhrZ;rpp4x_)27I
zr7}E+rLNa5LblkMGUTx`Jz9^i-n=)Xk@sNgUR>4)&_}@t8q;MoVo@rgC_wZaKWktT
zL%TNltmgkaka-(2acwSH+~`CQ-?9{0%!C|43bz)$6rZi>wgeyK+gA-x5{|_*+ujAr
zwObNJuMX6L-;PT6ihdgLFy#SLe;J%<)r6%2o0`YPUViWH!i%ZujdZc!&KepuM(NBB
z3DR*`ar}I>qOFe8Wbh4xnDEq$_<rM?7H@n7?srTK>s@_e-CH)&xf<kc?Egh#iBrB+
z`p$mo{>qvp=x9Hk56h7`%#qdLG80&=cgmgf6tA|w$>@C(@)(hlN^hRR6I_zH+S@Cp
z(58ftNzImjVu87j_Z+&PqP>8ckojRSle|KiOnmO)F-g~F@P_>UOUc%+fTd-l_rH2~
z)xcnHAe~5G%)2CulPt?I_y-_^{!V6WsbLz3Wn9Z_b*&4Nx(U8JWQ;0bv;2c_(S0O!
z*-50%mFW!`CEbD~_lf;bE-!D2SV8sOsMzDO+In;Ek>W7<)3(^4`BO*o?J8#{rC8>;
zijD=srkWS;na&&aEwx+z7GgN6JNNc0r1L_XoghjayE5jg$72KmbDgMVM(%IthwJ;B
zZ!sBcA1`w)MT$RM_zV=s@@i_Q)n6<U9P3(S|GT-9I~VVnbK7!>U)9Qbb!z2jjcsAQ
z(qD)5JZ<N!X3()bMTD36ZiF8N-(2~6n?Nk8*PD%QRKIpj9YQIfJ}|CNUKd+t@CjV-
z+?%dJX4BQRnKdf|qwo}r&&iykSP=ySroBdESJz!cv)mW!?A!f0GHaf;6j49p8Tbk6
z-Wc2q(8Tr6Qht((y^_0Ky}HFUd`bnY)pfig9Iy*oGVfn`;C$q^MCk}q2I89JH@iq3
zPi{mTEU^mXqgM$p(txWOX7M5l69)XsU~Hh8)UW}<(OYe4FB<S1(XJu<U(4oWl(BP{
zXD#Plc-Cs-<PWu4Lu&xm9c6rf-Q<Vy-gDl!=qDXDnXy;62-N6vQ(oC0g*Q=^E?33~
zq=qAf%aj!g7T5Z_z}vP+ZzWVRTLfkxo#w@S^M~t>;?%LOyQ)8maBW102^1-se0y&j
z_OUpgdG}yV?7%AH=4X%H`ELUG&SC#vk`!xy)mRxz-MVr!{HpLhM`L~^b>miov-%FF
z7HCDn&2Df@$!`4`ul=k6lA<GKu6Lj9GAC9&C6hlhRgTgi2Z$-#;vvzow7y|bMl$7{
zDlR)x?nIn_C{zGKgH<V01rx6wYf8T-d~8|)YLh6bQYx>Zwn(z-_RJS^T7<<97<xYN
zZclyFiWemJa{S!dd1B3xIil=^uOL!Ox2&BH7nUEff(@*Nrt?6CFi}EiB;khy1V7w+
zIKA2wI{@3FBVHi9t~Wfb%#a*dJN-}Ty$yJs(EeLvD@|%=+i-W8h?UPv-gf97k;r^H
zyM0?prF4?JPbOGP1Rm<><NvSF27atw#sCWJ1LpL;I?Fy|&zMoO&%ASS>s}K?-{ZpN
z0($ELDMa`4)0Dk^8EvL(<#w9htzhBR$GSP#GyTo(q?6}pgxH$|tGed>MxCG~lv(=>
zlKRVx!RW-JXmJuIq7h%Ug6FF5UM4bSR#&b8DLXi^T8d8`)^w&jf&}hpZ3(kYG=&0A
z{5Ua7JypEOP}`*P{0i_As+}@i?-;RK*%Pt=SOV|8)Y=dOqO!N8>u>MC5$QS6%M>LH
z9D=AoxZSBH!9E25h|l;9aEg$j*_}6nePzY<!3#gc(D`Nl?YV%Ei^+f5)c)(b!ovGb
zTViks-XyXyWXZ9!SsG6#`?vqo$2$s}6RH0sfqZ8o_EJ=C)T@Nn^H;=rV*PznS+a3h
ziz!vomUpnp()_G8L|w1Y6=0|5v2&x|RtO#!*x%`?40SzbLo@`*8GX&-1FpNr#xBcO
z0N`PsUoDuq5h~VmNdn3(EP?wdDAj5h_|Yi&6@7W*%lxFy{+*fMe*o`iazAx?ZMW6r
zHy-zU%btizBj%km7zOxuN>T-&w7qA^P$r_1iiAZyTVqh1&#mrEBbHoO=Ec=lCc#_3
zlnTqY(3qrrxU6dICq8E(8$yz+9Hm{*@V$q$dBsj%vjs(DEq(kcWPs05QEuXB<hEw)
z#*nDDw#7|Mn=Ire&I2t5;#o8A!#ww&%yV^qLi_RjPwNlF3Nmz{*238Wa^PP(_yuHB
zDFZIeVM6$%3x6*!{<7jB?GhzXD9NFh-0cd>wiDQ!s@&1W96ZNxI_In<qGzL^g%ryR
zN4<S!&&H!6bQR6)6^vhcl%GnqF&m^*uT*S@7YnF~BpCfl<FB{Xdy*DFJ@3J?Srb}K
zOB6uv(C_<}#Y*$CFMfDOpLbpmausD<uu?M1N1V1N=1Z2G!=yuTyzWhbd!4nWt<a0_
zo^|8_0Xof)a}7FE0V<=6n|Mi<;Oxa((Dh%UgykhW^YnY^`63rU`7m>=F7!#kR<E5a
zz<~dKyx6B;i+J<@=04mx66;plS~>|zC%OpvV$8W3h*bGAu7ULGlO0oTo2c5Rr4k`^
z`g<&e71MHmjVZaOBW`iA5$3-+h|!$+V!KXV;di+$vde$9yYC+~;a;cJpv?Sh`LpfV
zHVdk^|28(L`^?@Tu4CTO!<^-1X&oReg=M<KNaznnDhzK{gppPM!kAX!2AaKSCwW5F
ztOi!7wU*Ohwb|S}lX*apx3~F%>O8t|yHrDcuzQWcaV!pF5>XE_v;VF%v$Xfuwl1CA
zue(f=|NS_F@1BJIh+wm3^r<lK#v|yJqWZ3v?<@}x(OG|n1y>zk77Pg%ek|)W+<tCn
zlGQUDaNqcmp}J7qL;X(mZ@-EP>|DFA{#RCAdsQ{-TQiTSF5aVNRt{n^Mf!7itp^?b
z($#fk^|s-4_2y#Uhsv3Rk{v;O2;ZFvpANb(3E4<?%?yn9!^aN;O$#2|7eBVhikxz&
zy<S$Jcz3g~#(TY9Q#}VT{Vh({;&ZY}LgLryBAj?JC9l1$4)fU%2Hxdds+)?hYZNtt
zC-nY0n{ntqG&4ybI@=vWawt4P^}He9yA{n^q+wB%xjZZtw-S}jClOZe2k-dQ_9`#_
zbFoBWqP>u#zq53%u~rwUt@s)bwv#iu0Wla`d>~n@b^H+jI1w%p|Lb3VN@T$g1r#pz
zUzljhmkN*4xdQy}!SHT#eg5>I;ydw<m0|~E)5!CwUZMY{tA?^S)!HKz4vd9;17QQq
z|4k#~3wVbe<NmYQ6zTTt@J?ob>_XqyOQcRtkWr{Lwax(a@O0#gCTXb90OQ6SA?%vb
zhC)MZN|>(_FTw>w5!+wqt|W3x67*yr{--ztES2dm?iIs{Jzohh%;2vantkDL<=;i}
z_@hAKCdX2_ujTIGXNV0QzL)+d${QxPz$zRP5A+$R&r7Ivd`w4gX4b6q!7LyXlA_7`
zBkOhSKB~nTiAUmF(Gu5d`qBAeorsD_1_&=W^zfI<tPXPYcc*CU>cE@lxF4(If=W+r
zKYwc@B7OdgI{RnrrCt56f||U5Nt$bf*9Ob4Q>qiY#7gON<19WzIk_zxTRTC!H&Po;
z$0SP>>iITA(ODBFxXzU#n_vB}3_R*z_VwX|%r{GV!@Au>MJc`Nl3w6_s(PO{vHR_=
zF4#^5Ic>ah4G(f$0<xl#0*PdD>j78FCRf;*B4VDt=iY00|8YAInXA9~4hFD&Iz^B5
zT=@pJtGwHd$=@)8i*FxHTqDz3P3&nceh|4x<OW-PHygTN>?(#x6O(<Yg-Hen`BDT{
z5_OggFRQvXEXy6h`!FW7YN{>0AUI6|VzKB|XHU<mjk~qFx^!p_V*<%RX0+fKH(TNW
z5{}UVXV`8)*w>es@PgoRtu4Xn-C6|}Xs}lf?n&fMcx-e{aJ!bXuJgEO{CN{vwR-14
zrNZG|iQ(C!uP5y(Y*c0pS$oD2xEz(x?s$RPd{L@oD{k)AI>-AsxySilB30Y%i*Idu
zT57QH@rsjQ#FkFYtb=Fq{P~lS+2+lpPyhJqvdsnR{InUT>=hnbZ1Li8_=$QCA5D^D
z&Gg;A5@sf%okJQI8BYc+QS*+RB(&3w7{*YtIOnJHIcoY&elb~rclz$uG@2R$U`YpF
zk{KJG268E%!--xo(ogzCm~&Osvq|+k@9<ZN^Qbi4q>fG0z^bKhqB~p%FnxpfCu5Iz
zTtzhCqtV0orx2R-{}4DNSrYHfhMDP={8cQ*Rig_x6aq8(Lls7Rq@V0+AAD%_1<7D<
zOI4O^b;PamprFGXvHf=cos^6;jof!i5Z4|qEKKSaXB>e-baCNC=jlAxYGWVkG+V&k
z>R&XP9;f~8M%HP%0=X64DJ*Q8+LM20Mhc%<RIUKi(^pL#^Vb#U=YNN836mB6Dnx-!
zb><XokAW`i@bO_YK5AW@5^tJ!S0v^MF5x_DZDe|n*1h3S-$TIl@h^?Aro|ZF>?x$_
zH9+M-=s(gyipAW3PddvwyO0Qv;xF%4dH=<18h>W9;G5`kXiAqu^}KqiiTmaG;?t4l
ze!Yd~8`N30QF)YzL)wrXMElSD)C))kE}gSCnrR8jZL3s^ky8ni0CysKNyhm6!1NHw
z`Dgohyq!U(7|rwp-9SwoLegwTLdwO6*V}{2%|1K=ocG+t8FU|#;S#YQcZ^rtP=xGe
z0iS=VP@YCH=}NJ6neO5_J;!*aONYumtj~DfUV-+#;=J-A*j7AVCS46;)>X)yxuD=q
zD=xWp?IkU*rU@KD55J%Oe&PAnD$f%7H+Wo_O*o!eN&5w-B4<dT7}g)W@Mxr;Hq!oW
zT!w1S1SRSe(P`I6Y|&yY)y!H$Lm}CYAc56e!)VH?J$7V6PJgdE@qHvq|4l79SkcY|
zOstjpy&@}L=I#vbPJ{fYR=X8;??GS~<xkg#`?lD7ZoZ1O@bAnfVxcSVZGqQS7lOKG
zIP$eN{Yw_UAAa1GDR!5)0?;RWl@=n!Uo<bkIE%kdXtc_9rOTatJ$ju_udnqxf_?X2
zc2eLnnxD)3;de$~-PfLHI~kthXub<=iPKn^28MBhW?X&l%91$ES-Q)!>p*=}xN9?D
zjaeW^>SKA~z@1Gcgpcz8A{_E>FM~!y1un#36XqhsUJ{yGpwhZTis|RNJlJElCb#gb
zoD3_UwR8)FtFBibN}rmd4XnKylSzuvM;q=<OdD)e4cz~vjRbtxZ?3SU!P}F%Ul?_5
zhP_tVPuTv;i)KAI5Id1R@F6fm8$V-z+B+z7L2+LrO7A3P#W@H;|1#H{<b%d{&;#f)
zneO7W-E-cW0@0E#JWprKHf~P?WrkZuZ4kx~<;NSK)>@nP<!$saw=HRB+qt;ex!BP~
zX_5`OMjEBfY*vJ*XL2+joRnlM7FB+17Qz%WLGqi{Cig2xK3Uc*4l9#0KqKeON@`f2
zc<8<O-aU^#&$@U5JwCZ8q4+D2F6yrb-i%)f!Awv}-=#cst@M|@`TMY4H!9C`u0Dqj
zeiRr*^A!FQaJc<8zi40n7tMbO*N=G@;G#?`&#bBanyy0TW-f&xENEkDrIwe=V=CUz
ze+?$)m}*U&D^Rym8hL(7F0J`*WSoDp87DUzq(zd<>X&rezDaI4TsNe8?7#A{Bed;V
zy`^g{X^2k!;_IT)3I35_2`dbD>xMT3x8M{ozI}h~gu#+laDwKgx_^a)hmt3KHmgDI
z4iR;DJWt~EF*1Rm&)@Ie(7Wqm!IX9ZvbVsT`s~3z;O&);8=FL!h0iw%nx;o3Z1w&g
zpJo^H>LblsmzhipTvI_g+hrA%QOfP#r@4LJ!>~bfO#7C05^SQo&jDXA&d(yR&b@>9
zHSfvafHiIwa)5=VlhQ2yrU(Aa%4n(82CvV62|_i`Y85fJZIdcE@*1Rb6d@&=uSuj)
z_RM)xjPoT9$vZJ+x?c*o_A5v3AWM)n@5VU6H|zBJPO9YeM<&JZSweC(N+-ONKL%6X
z@u3C~QE=z>(jx+O+(`f5Ohkpeoo*|g7i@afzh7%Dt#|kEs4HQou>Pg_VF9Dj*297F
zhno9AIC_@po#78X3f(Dfe>Zux?l`I%h)%o1J=TfY1ux=ia?rTMw}J}Wyh0PNm}`&{
z<;@k@*#kTuf_Q7ZgUcEF-QtAkram^>!${KYMLWRmxK8gCyl%^ctE0qfi`M;@!gxtc
zZ7YfFK+G%a%i9fjW+B3+QR@oIL6erd`RbPiC`yC@B3`$q=Zx%N3eH>`0b-@Pl9`C?
znMEuayL`k-`^^50BEavwm8>-SrzoE!NB7Y~Aa5r=A+k7z#3e^HnAUu}^TIdC=VV*Z
z$46ugr_21Vv^<wIVfnUUE|%j(b~wbG-2nHDmv>yn)cUVUhS1=0|2XGt!(AI^n!9ya
z*aQtcl$Yw3LD8}209DWh09he4{U_9P?;2>-*wz1mx7e2$n>oSMD^wk=>17Atx(kN)
zTUT6)4Fq-8sCA<6%9#5}OGFuck^Mk^g;Y;mIF44{B4qKb^&L*0d}JQ*x%YB;zu|>f
zQ0G34hy8pO7b8|L6C_<?>VLcrEA|ulHWd5yhVT_k^FiVu>vEcv`#rDd@T+Gx1Epqj
zoT{`Lfsrk2$waoC=L*m4APh6lZk_8;^JU3oEO-3_EoOsquJ}oAWgJmU^+!q=3Pe+-
zKD!h=ckPgJ^ZWZw1iD(td9$Rhfs*s|bTe5p-^C#P4YgB*1nq~rKqg7uky!?!8?Lyz
zN3xl`6eRJ$a7UQ6_4@0f-1c{@Z8|_IsaXLnyveWEQ{-$ZlUa|`9Cjr_Q=14s#&)ou
zG>+m}+YVodS{c`*5(5^LEu`C<V%`lYN(5^B*TmM>A&8H1|Alg)b_z2n99wbJK51pr
z33OK;7^bK!7g3CHrtm{pc|e%iTC~EL#r`+TZMcy|icd-ccg@fJXx<65rIMzSMR|Xs
zA4L7QD$Sx;&lo38WpG+%&97;_lLfj3UK&$RJ-)Xo82=srv7%Iu%mfzPq=CPHn<>s$
zVX2A6Fj1DpJ#kDCHAa|iKOOj8>T)X_u)6wipJ$0xgFm)nB!}?BiN1P=1GofFX;En{
zf|<czU)85TN04M%t<8?1pj7X9b?Eb>tyV2Sid+9k*c;C>xw)kjU+d`M0Z4Kcjd0~$
zn1UIl+6%~V?>|EC*R?vl$FK7?k}GAUFGrs8l5pNa@0R{DJayIikYPc|josfrIDd?Q
zzMk<*U;6c+b*Vdcmb`CG7tl+2rE*Xlj`8{j+7YJ|fsb~4wF~vHA5<_tzI^R_Qq`(8
z;X}Ls6buKCW`=$*_}~Y%s_gnXdo3kKI*~X`pY!xmBwN>iKm>9}^GCArksBV7tHg}H
zfs_c_dJzy;_Hg(v6S0>GmQYa@K(tQxJkqAG0}Dl;3PEfWUTV}5;+Xf<d{rSE`Qfe*
z#0miDM3eonQgd3|`4eELlj$MEMi2=12HC^CX~2JnDwyDJwXf7-7meTKF?-ZxPxfs2
zY{{E4!@wYLI7kb;|8nhR5CaDI^>cXla-1bAFzdHOy*KQ?zK*C0HbhzrDFwh~OH@+&
zdj3&8Z{rB=>^Eb#An2(_37UF}$kczV^k1#<#_KO%1|})VnoE!BKWC`&tS-tbAvOx6
z*E9IRHb6*nahZJ##h$P;pw-(Oa@QN{xn>1TRvpnw%4ACawiob*zSOpz7YJn^mhjT1
zNAGwdjmtiWuAkf>+P*HWzH{}Wyx`R??_()arzxFx!+j4J_1-EiR5JJWE7LbJ>#~vC
zpJlZ23>SSwQ8%h%c|Y@r*zgdxAzMGwdI=@R>_Y!p)fcvwl<zQG5k7<DA@cf20T$bQ
zK+oSgebg{#3jSw=#M6GS0Z}oRwS4WEAyyPyb|0<POv}5SF5}b<a#Dj8E5AI37r2Tv
zTTp$>pQ<w}1bL`nv1$mrpFYH{T06u6L~WdlOB3-ei>MomkG$|H#S!Njpex0$p?J4I
zDG&GWN>g_zJiT!mPtD>R!JhnKFSXiGkos2~5jn7w@YcnR{=KJQxi3PIa+jkSCAkE>
ztf8UK>_)gzAnog$&`H!&dmm?Vg|eG3|J;IzVVUpg;>P25=QB9N-EDBF>OaNjx*`K_
z>!Xs^46`*(Uq$!6s+X5r^@MIw0N^_@kh36>Eo|YpVnp9?UhqG%Ol*So5Sym_8RzE-
zddp-_o5^gdiV-=9QmjOpM6ik+1qt5rO$eM|Q}-8~V{A(;KmR2DaSfir$X7FJn34@w
z=oh5})p_8uvV0S%mb`{d83Ga04u9Eh$3Q+d-gJx@9(JfdI613$CK3OKUMpmai1^pX
zY=Q}Xr7!GM@rzH*lp4lMgTcN?>}kxAnfm(hi1<&sxcT)nSFbrIf+R3MJ<IN*@4`L3
zel5wI+D^eI@Spzxbv}r9I!ApsN<LhTPlsnb{VaF{L0fM}^HSNWl40X}`aQ#jyETum
zm44U)#xq^;kqht#;Kg+B;K9J5+q9b%I~+BH=wM!RcpOD@vrb&7|2J#hxx6j$U+QNH
zNM#>-v*+Q?I|s9gyyY*h&*T!w>7X`!{;O8Zpu^DT|FtYHeP9LeOY@@4BDJMX&qEvm
z-g~#>2(9I10sbDCv8&%Y$$O2i*Pij(auY%c(c>HLTG9#h*ij!V;AYs>?I-T^XH|~C
zKBO;X$fkGi%pCqg(Z%2Eo5$t67A}E;oJ$BnM4<%iAl+3ZwIk00z5UDr{8W9#B6hfu
zQniw^TIc4Xfe^u2%;dT9rI}p&#ldT4+aBbn^xwB@H+e?t#5Z&cLspiza4s|<WNq~q
zuOeU6MtLz524d38gyh0<rL5?obF_FaJ^e+{qAc3!4cN)MT4!7Sv$X2ry}d1ueumkb
zygyOh{^u=r)gO-W9q&FGteQ{j6^_Zs)RPxduGE<Me~)Qq&+Jyov$FME*&G3MrIW;>
zbvl5q$6O%n;j`x*71O*m590rsZM_v~4_rjE$qzkMls%A=0v5TpEax=mkvSma(~LB)
zj<DO3oe^xx0NS32_dBw-LVzzjbjV(k^K7ksxEQ8r|MkZ6w2I#RVpq8wd>b9n`#T+E
z^D*~oB7qv}v;Vt>MtM8Zo`wq_I(BM38OlqkwN7Ogctg&urI8_DAKIXNtg#sebZ%#!
zq9;1N&SObw>KPI?F3Eh>q6hyR)f<pYzVg*}da)#A(fVCvq+7#~XGq}pL}7vTC<Q*G
zPTCPSv97+_EkBbBQRuw~q(Qw!K2Vx|tQ%&=BENf{wSO0`c|EWa!-99L=CiMCYHTD2
zB6Wmw4oOQFT}7>3<^TsHWQ{To=>@yGTxTD%6#?F6xyT`|TGkTbPu>Hp>Mg2gxw+VK
zO(OAmNv>l}m|8!`z%bJtU;VU+<71e>F?gqh67_i`17X28fV9%1_J0I4MM%tsuNWiV
z?aR0EZ&BHgwzaz~`{vZeI<E68JWtKKvcwup8m~3nbfTY9OCvD(s!reSR4J2`M+H&6
ze;+pMbQh9X&mS!2V4pBx;X?0L$*x~T<u0vbeIdSf5VDqdzC$fHcVh6{wz@##iq2o!
zDY<cO(X)yyl}a8KIKsN5i%!{U-Sx*GCk<Qb*k7*LcWC=a6}QzSmK&C*B6@`kx8Bg&
z?sQ2%G5<KoG=~na5iP;9_UL3?SDK>L?R=wdO3v0xDyswBJh7a_p#aZYJ5<Re@IzUt
zHQF}G5)`epTrz<z!@8iK5lml~QrrqiyzQ5qXhM+9HvgnDLLgN2U)>JdIC~eb6&vqi
z?pp1rpWr70{9G{8*KM$6QmGb5uY#=`F#vS0&+fsLo3$~C`TifvCk!Ct^xdBUl5uVT
ztf^l1*wyaoqzcixsY4mWj{H@QtFA?yvQ2H~x{=V7?gr-lW}95sG{%51=qKf#{E@&9
z2^XwnSw#G*Ulr(7?L}v*iMB<j%6K6Y<gEry40L?*mwacE38U^#&tAV$hbtttFi#ce
zS)Kg#++LDh%@{^kXI;u5Dj_e%3jMHChw5^_!=R(g@(`YzlXmpq`pXtho>@17Jhn<U
zyyvX(!oboQ`}}HU+XY2U&~Sk`2sByMRD1RwS5ZMn#g=$y@(uTAePfQ>?;0--IDBF0
zz25LYdOfJ1dC@ffVSL}En|gAhX174Chq=WdBNX1}YLoKH(^A0020h7!*oR_0ehQ_U
zbe+r!0bj0MS;-pzEEpklR3&52U%xFs;1Nn8(0=o6Sf50|V)3MVv)<PgCi;J;w*A$O
zJB%DNd1+VHa`nLWwX5C7*bTLwD{ZS?NnPCF+WqEseQPl(u7-xwhSRF7OELI>#LDFw
z9cIQv?@4gwzI=+s=>5Ty<~IJNM_5ms`_eS7r>xwP!D)z@M(H~p&?a}|uB*zt>`^%n
zNB-2|;rU46=UB@%lka7H8XYzBbs9egTtuI5`zdmx2f@unWm+irjk+|Pf%5H5D>VDN
z{dFUsFCG_VfS2PYFDU_^(}4Yebli(qy+U80mofE1OY=&6%+LfE!}2u$y+KkW=i`<D
z%{qnFNE`q0pcN8SWCh>x8v9Mi(u>|jZ&G9MPVXz_zVa`}CUyqh3r*Rt!N5>JEhCWX
z_M<<8sspcLFJ(8O+kZ*w@d$&s(zg-W#AEUX<<?2@;J_Slh8h|WzH}ZV{g&~paU3ea
z-y?bp=5jKNrl>Jy;{wbO+M69DOl)A6XNGGQ`PyGr@AjI+>j}8GU(U@j+Xbm@fhf;x
zk);z$et$@ye|wEYW&QNIS4r=JVrA1&Aun}PW40t>HBmB*om>%XDg@zL0;~}hKS)+O
z@;KD4MMF>h1wM}>v2e*MrqeUDoXyvy6Pe)m^gi7Tv%chKaTn)t@t<e2;|4@umBr@9
zKk&Hx<LU4UKhmJx^_*{IFwr7sef7EZd6mRJREU&T`)vi~ZupVWVn+~(Td7HvbQM(i
zol*aK*Ok>U*59AfzKY6MRH8TB8%C{;-|}z$8x%Mh<5#)Jy^5IqpiGnDE_lQU{u<}c
zvr|advP80*9DTY9Mh5<6zmZWh_q~{5FraTPL0)%TUE=Cb66v6q+1h`JO5k$$it4|;
z_O~G2pL&Jkp4|N(RkN!n3M+$2P(9W})6>DTCz9DpbDAWX4?jVH``3;lvmpeTz#h*2
zvyh50ddURO0(Ms#ZkbXt6MJpKLlBY*5Lh$CC`ubnDGDhJTm{LVkO9C%jv)i$NMk)+
z8JC0>rO(voghI1s7&6UDH2H5@&Fal6l#|T5o9d4wHcPg+SWxs3-Q#B##Fmg25-a#%
zS~##0S;*PjtW#@TzXDIb4#$dOwXx=yQjiwLXmR{XJ_uZk?7X0?yYqF$O8SEkHnx%m
z;|m$1^Mp@V)5zJ^>!w-3w|BZFmu52$U%y#W*_U59L6eJN*}V&#(_tV(FDBb5ew5K_
zMX_}$&eKQv8UKzbn^rBgccVMS&p7sNMzyVoQbHd<o)4A>pY77`e^{^IYrfuwe1AwN
zZ(h%7`MA=IUDBw<SHv{DJd#TG3_jCA<fd)W^&Y>nzV$Imf#N%mJ=A`%D_7=VPrbPw
zW#tc=E-nEi&s_v%B|5x-MGj!xltNryd(6rf_k?J*4xjg)BeJwh`G)x3di`^2yy69=
z0@Orh=V1UfioO)CFxTG$pGJ*ESJE1^j)YV^MbKj&|E#VXC*&$*E7u&Ji}nc3LO?9X
zyxASdI3#@YqiT;IleFCq^a^fNw$I-iuLZjwqyV29xxb+_bbkQ(BzVgClSE;z<Vn{0
zg3n6i{YZ)StctfG66*{tFRjm6@+4oi@`=P}yZ!DAX}S~!ZYbg(ylf^)f3Hsq9cPsn
z!A1-W*R=~D$5OuQDP)kjr#q!07IyUt*!8<>hjquR_X50yTQbC*r2z-4$sg=69Y`X<
zd&~b*V7t~6q_N_MO1mqhY`vAoK!d8_1l{#7>%kl2FGSqcZtN<KNoEp=Z%U`75-MX<
zn&Tf#G`)j}-E!7Fjt00n@Z>wkm+k)nE+3kvL>ZubuW!zlP23FKw32)0?X`=$W)<);
zC&$w&zC4G<-OlQGy5b&o(rp&;dx8maxZX$v<&?coN+UFV0|gW6^Iem>@l8#&gQ!X9
zPx07zYinZRRstoz?jtk?=@s4B`-~}&D5V(m9D`(#cKP{s9Cke`3H!(^HgGVhh-E=w
z4);m0$DbEiOXFv=?n}9#sfGWs!zPVd2zWx#-To>@sqC4!`o(uFrwYAzksN37<^a%q
zm~nS!hsY9xY+gQL^3GjY!fZx)BiE3l&u0eC;PY&Tou(gRmVYXbM`j3LFXE3IIDIej
z!p1^?maCS`LR=$)`<g>yOJH5;>)$P=JK4&q0@(4N)<v|t<2W@aO0ckg?Quq@*qtJ2
zX@1@o()ZEqoj><iJ3bc?ZYj6KO3JI}Sk={l27M%JrE7BT<Dcd~k-eI-L_B)(C@nbN
zCriC=--|qTm?Agrok(f7o^X23klYqP@Q~V{FfkPFMOj;39IvBjey($T@d$POdLu}H
zwC>>dGu!q_$-}!o=h?QVE0eE0CP%AuUoAyevhvzD%V#Fqw)+qiAihklSH^VL(Coa{
z`3<KrSch$o3Rj7%okfR+;_-Du8~{5)9BdOQioMEfO}Ln^C}bL4aULrl4;}Km8rE2-
zZas?r{miwqsBSIh#zSjsC4@G_t;(a*Go||(E(E&bfg>M%a{xG(K4H-D((z>;GST-5
zH7RusGkBX94SJaUBJImcis!{n@(R8}`VOW5?-Y0+Gw=D+G?2-Hm_LZr@lW*O-JcpY
zTN<`gH9%5chkAm5h!h*TGAEbf_=@f;TjwdNt3UAMvMZ~Q{5%z$7<(x}Q6oF$2b5oR
z%-6SeZH%o5U5Qo}1&1@mQ2dJzY{)cYT6Hgax#pg~21MQ34CxaiP^Z+20$be@&IQ?&
zq$))!G?(B_&+e4i%V3x`9e<u1XPtv6nC1BIdmtl0HoyDnmoHYp`y0Q>)=6ws&_|`8
zY~#3C_xketgN;^w9)%^wch9rF1S%Hane$^e8NF8SX|6{t3boMc$^4MALd$b?IY!2o
zO`DD(bv@4dzVfYUZxdavj}GKjr<fyyt$e?$bz3)1qvoOvguVnQhq>Zk&hY}T!J4&j
z96%@IHv!d}g0D*1C8yANHhhhL81-W?0~xgq-N3}pQRUtItCn5b^yiD64*6$0dhr8U
zl^LYqy4aQB)mS7e_U-e-Eo1&yL3-`x3py#()7zh*nJc)}(qUcUc(kTv<?6D?H5x=b
zvV5~e7W43^RMUbGS6WLmaDB<wnrLiZPC^pDb~D&26}$4HL!o2a!m-8{@1HB;6l;xZ
zchC5bNExyF`@ZAMA3x)230kNCMR2KC^uT6ut#M%nNtF<4wdloY#h2#$%PT@Ir!k~G
z?-bGTVT$j=+I?_8`J}zhiCsY8_-uE>NGd7&1AE=Ftz%=6v*2O_US`}UUF3MgG54gA
z_!ie)Oa8$e+`Jwpkk%lj105qrY*BCVD=A_%4lMA^OO%4baqoO9mrO0r$AU+Rjsdnc
z{8Z-nwF`GvFnXtFv<~!3;>Z5B?lBkZS<na=_2j#MGR5azR&0gbnze@?;3F`waKOLR
zy@n)<8mov#b;b^^$xwR21FusR)x7qfEy1M99PmZ??nJ$|-<_q@w813UptBDw_O6%y
zqH*<BTuH>{Slg9xv?mWB?pg6;d6TcV1<toUy?<QV1n&X<rR6BKCINod_{^^i7d{c#
zJ3g(gaaSSlcPsgDT!^UdUZZd_S1-1VHvf*!Hs&W$U9~jeVB?zek@{qGa1V+zcwmb`
z^Khu+*4G3(3)X765q!5AJSM-NG{q~237mH1mjJ%?3Zau``pLcLT%D0b_9m_}H_67I
zB)W#N(A@n}bRhzyu-lL;on5N`>m|T4bl^q>patkT_E~2Z_zs_;zH#G+sfoyk)I43-
z0MIj_zT!z1Q#c`qBI_~wRj1JM4v)&7cp}kQXiu?R<7&&50%v*gpBl8}+KXUG<VZYd
z+LV%YI9y(>UKp`uj?tp{&pyk2GT(}GW3^(CwrdJ!LXc&9zE&J}3S)N&DHRGz7W_R^
zt-Tu@6t5rO9>_j^-#1*cL|I_Jp{Dwe-~8FT^j#26_CSN*0w!Q<Gi*SC0_Ao=)UaZf
z7suP3q)>o7`9v&^#y(OItORc~=6CeAWuxexQlvt+*JFlkCwoZqkg@Q^NA}^wt(HGp
z<(n(|{3#Vfkf=RSk5CH-FGVv_OL{7E*qC@7Y6=gZ(JIjwJfe&lkwE4nlU0CuQzW^N
zmH;M)Hr-J1WDnJeJ1JmGn?PxndWR$?JkNRYv2=6HVcv&v^{8WFJ4dQ~{o`m;R4CJW
z;Q(4>yBX%55s6RyoYu~HYA9Mw_K|^v(VRM&CQuNYdw6(Su@uY%!jaZuC8oOfPEi)Y
z4a_&#LYmIz(RSVl$t*4AWPSZ*rOwmW3+9C{Z8yI&l9hG`P(v66ybvyMFD$dyE73fw
zd62s)n~H)X<0@Rf#pG_K{7AFtT8{i|DC`nn9y}^*<cM#9iPg>DozbX3IlGsN-S2Y%
z^yItW#%O{|vk@$-z$%)jko_e!3v<k4B+cBLX8)l1Pp`FcQRU2#<UofO+qe0cw;NnU
zT?-7km5<<jFTRy|Rih@Pc)26U`}IdRssrG&oyK0~9;J!Uik}en>7;3UjGZ1}dq#nh
zUvo4(c_aZ*?;h0Bk(^(IB-hf+ZK_r3QOPLFIkGG0SkAsaV7Og$TU+BDnTK(2%HixB
z*f_Q}BKaoW?GL#AD<Ui1AWpweNC;ftJ4kpltHRB5_Qt#N&)*D$`q(fL87L;TW%Z%%
z?ogJ=JCByk(I?gW{;f?PY*LQobIs37a{W6w1@_Cw&{46bt&8K=_||HKxlK=-l1Nq+
ztl;&VnWKf<+E7qEH&OYm{UHP(5+>OxR%79_vrH23EBu#x&4_Ir;&owPtmnYXL3B)W
z6IU&oQ~IL*PW!RcOK$r5RSvUXsKnM#0qab|a958lzsb{<^HhrcF6eA?`pW+UWCZ+1
zZg<e^x^lL%Y?MVoxdEqpKxe<op_767e&LpwEACC1f49YptEL!#(Wq|>w4~_4-j7uZ
zaVAx>$~>vm;|ayDnFM6ju&l=2)>J{%xwX%~4|bdhv5=j9(&mtTgE`Nxad-I81!oS=
z{q!}!<p;~-+$h`YH(u1Qc}gwVtV2rXLr}1eRe2BA4NX3sS7gbzDehK8>|G~ed!-n*
zI6i4+;ym)N=j}))LEsvrhT)nF!t$$kPL(B2ik~bDEG(N5K!vhv4on(yyi#$C#Q<!r
z=soEuM$)i^hiW*LJR&=9HIs8rQ;KU@L5lwKdM#`jj2XGM@^ID**6CORiXiLo-zU7v
zVKSzaL42uTCMH)TY+G9hW5)K*5cn@{rFsfhvv?b7A0CYp6RRN#ePYOOfo}vUZUTUN
zjNY)P;%J3xrcB#C<M}Snlh>6!3xAkz9G>OEyg<{xXflB=LqP*t14s!WxPD0$jm45N
z!C~gitlpk2;J9^SlERzZte-Q6>#HAo3}~h7{a!reOI}fkUqUB)0j}W;u}PhoGqX@h
zHFVv2V8xQ^Y5e7B@O<+#H{<WY32oMDAeGGr@wv+o^uqo9efc!AyCbd3i&5cNm6W4>
z{Dr!Q>~^ZR##8P{X1)P<-80%B%pXg?B!??g|9b|3Y72cx7UJcRSfX#M64l_`3}1N8
z(S?`1<Tv{P0^ZaXP-`)d!2jzRR*XIqKT$+C_6y`JI_WP7xohA^lgValx(ujl?{>~r
z7n;A(6}M6thwR!x|F+m^cI&SqJl%}9GllEtko^e;`C?j@pWC>A0k?0X%kZ)mzwIMK
zBu30cVkfK%W<vX1%gwWTktqZK>CsybNWmXH{yw2zjW8(1a88dm@;<w6&L%fsH(FTL
zUWC^JY~13)%3f*0airit3D-NdI&l=bT-jo?*p}W8(%29-0^X#GI?HTem=*-KB`#y$
zP)I%h+)Tqe=9tCBM<XdfLl8C_A&?E)ujf$lPPN=VO#yuCac%4)g`Pj=9UmP>jw_Dc
zFWl&3o{BDK_j%3o3@3=)<0glKgezBsi2M+CS~vujP5fcnvP|R!uN+kgQ0mm*At)pF
z{F_5s*j!+9w*O^d(>LK?5=p+V0|W5HH-no?#&6a69!q~9ZMk^182o%ziOtB*CXOqN
z60qI`ox_>hg%Yhnfo3;tF1$~9K!y&n_wH?!6jNre<78I^)bF8)5i&Px3y6|!T>jD9
zq-=l`^;YHl=Us8~ae>UGWM9R%MG+T8?z=OB|IdXyffje1dbg$$btDE_2l2@j|K)D<
zu0PXXv+RO(y6Rhe+sz^#PIi&lQMqT2H#0%atX4_gP)HzIhx1qLirA(pTseVh5oP;_
z#C?QrC`A-A^D5T*EB!Z7SOR#NsF|X<2|IOrW`U+r#?}R{c{$&SkB)^o!?}PpG>mh9
zTjHBC=KNK@NyY8ZlFzTWH~V)p4g=yHEUng1Me$!B9UvEY%)asFxKQcbZCW^iaSO@t
z9WmM|=g6ZwgZ?Jb;Nx7Q+Ev;sFE6-*R{AM5l2SR63j)iyl^?*^_j-a#M&2*G>AM?`
z8r_56rv2cw4D}*!d(0*^4$4hz#Y=9*AMgL{_gBU=EEA<32Fz+p!cK0+HKwm0BzqK{
z0_1Den)1q}91X*f`KR=b8MqzU!fPW}e=~CzLu?gQ^4Ofs*1x?spgIE#D&OoEi}&6o
z&`SsW8_!N!u~iKR{D&w;Nj8$t;+8)s;)V>qrv+ZLRPF#Di$Qm8##htDDA1M>Lo6`k
z7#AG<Xk+d)U%-C-vTkU_^tOdQsP54#s^H-ABdZY~pPg&}cM`5%@XZ>aaLeL{{zezm
zo3CP5DfSx*=fOKHQ7ty@(h`wIcl(KpanE}r#OxQSx(`<`?Lq7Nn=?!u=BaAO>u>Vf
z&8-aIV@Ff;sip==5}4%xK;}VC#jxxMl+kLgZXcp)QD=jKg9Q<hNAwPCWa;E?G5q>9
zD_!vJa^R*~Q)H|z5}Hp%_kTqRYvu}E*Hr1heAnqY1r1DVO{_`AY#YVBRnaFl<&^(@
zk57G;s+Ncq1%AU*|8~pok^10M&_bPMG;(?WtIq&ShU$%{`=tvEUU%FF*|_h<on5<}
zDI9Ce(uxlYF^`M|_`4{7`1=ZO91PLDu6>eD^|R5xH<=KZ5HMH)*dgJo8!@;4u=-0+
z5NMe`5Lvl#jo3pdev0L6u<|JT3UC&|2cFzZ$y6^`oR4qidj$aIKkVsJGqQLezAUMN
zoo;TEJQu6E`uJ^3e%YnOZ=uIiQ`aqz@OQ4|+KzggYMBY=#vEDD0P|hv>aL@EzHsNN
z`LqesEa_UC@zYFiF;LF=p=)ew88k=FaEpsxA25qdtg7)$-O@?dTeo8&%ybTEQ>@64
zY2*{0^~7FRsImEEqq9gQ8jxvn5K~11{9T}hV+Fo-Hgq=A3tiGi_STC|-=R!DE20M=
zn_kx;(hT##{*OR^$icP+p{%M>22pnYn!?HstWgwmA1lO^ZhDE1m=S!a0NA^`PI~-a
zPoL*BjuhJF=QZ4#24U@N>GNWB&wr;hBDBf1d1YzW@7f)Xa>zL~9ax|{K?Wc1U49z*
z1=g2S<sY2}K3Q>ujvoDmb+6!hw?qd{kMgI`O_g?$<Mlr0M(&3~fpR~60<nncRm|s~
zlRuK_&f{k#E~@Rywqq1qW=3TV5XE><;@uhvjA2D}n>h_|mDt)};?Cma%5bd0PCPwP
zo(83|dUM&5F0B(j_qv}QxWK?R-!wMCk=r{M>Yr_B>j-84d}bPcTBY{}{B~hd;1i~S
z1gY>p3s3X>s8%1$E@;$OpS;)<`-D9b{c{|6&o7I(<`*kCE*a+vJ6mWn**;xW8uE|W
zp$3@`enSn@Hr|V&nft=~*roqemNQT&C-&*P=if8K_dqSg?-LFlz;0|gB&)dW#-`fk
zF@bq(E#_V39o&C2jSXpWb=h%d`k$VQ$9~kh=Gk&{_C*Zic28oOO_+|;)1vne@49xs
zo-Zt1d{6<%iG=rAMN59oo0FW=1}bq&yqs}n)UTV`L1}LCTMZxaBG)49l!pH(lyUGr
z0H%msAKKgc=QcA5_ojr0l`BHP7yqce^NCdTZf&Aq<(g*}4I8US*4g_Hy6Mkglp{8?
z#x+<BqTmDibVuepK6yp`cyZ#UcJGQonmq}Y(r`gB&{FnP+va1hgU1@B8}0w{9sn3n
zlhCkEaQjsL`^6s_xEcHgNEN#KddYaL2$L*~DUfDe;&_KwCo2pcF2Yq>A_CJwpt=^V
z??NA@VMR(39{r*bgWUQGr0B(v#sFYK_c}`FYk4hAc7r11rf(4c<bz6AlLh;Gm3^c^
zW_kDv^7T@^RxNI9I3VhXjo+3&aR@!?8DL(0&W5m9g}z_{;pW~X;X({H01yIoVdlXW
zlnXlvlkR5zyi8w4IRSpUP$9+Z9q3xxKKR^rrFwB!KM@<=Fm!Vt+OD;|M0!ve)bCn7
z$T*;_?sXh{t)!b&y8Ifeac|(m_|hkD{C2j(`Jbve$^FN53;Lf#9`&;P;<tLWGO*)m
zUc366ymG~+RvSWagL!T7OlmimZ~aTu`V7a!`fihhr0O=bVTY9Qt!^p!7;6pzZ=W8w
zk=p8>jQ(i!cvI6W)Y~(OL`jA|2wJF9K+s^(=SP+dwf!0end`b~_56enN)u?0LhDxl
zzjdzKG?u593^U9x4Qm!RIG$B3B{!k*wqQMKp+?wWey`7m4R$f!bDVI>`|EEj0;y9N
zFf!zKZn<5i+7_e-jpsNzcFNC?WI}rF^DLs`D51gedMsUZKUsb=UJm#mTJz6mR?D12
z_<u28Zo&5M6-0S95(=&{o=}+C;@6wk-&~~SDm6i3ZaBLujDg>1CZ6rAYfuB^GOVqk
zX(0AT0=4c&1K2V2Xny_C!-d3t(+g{4$!75}4VlZTzjbETpY6!s-W1V!)MMI!w0^<~
zVVOViFCcOrk(3vWZx8Dp2an>thI3<RMs$YJmy)aNUTZ4&ciwa7W2AC#sd&`%rrKBB
z@l$Mqu)DI7X%qSXm6l9=Q^CSWy_p1|%n2?HIm6g6*1hC7Lxz-f9^=~sV{sxzYA$pS
zrXQgh5Vv|bE@qqIVU<m<{x+Zd0h|rW8M61PVqoo;FKzvFjz<}n>=IN{A2%KQ!n@-s
zJcuv;Z}5dfWlPS#zcdYp4MURB#q&@3QTgF3W_1$VGTJ@P22=&S*QUR%2-^7GqIx8*
zR20)g8+7cHCUtrL-@!58oVLozznKM-<m-vY{Z+HRB&gru6T^Dp<Jtb8$+J+6>LKT;
zVk3TICaV8&bl!nf|Nj>^LJ=j&#};KqkrCIbjO;`du34#EgzLK39vP7plAY{zT|3v_
zE3WMt*R`*8jeG6+dw+lbyZ+$5pYPY}ob!B~oGOp0fPd^Q<Q94OD07?2{)VoHU!IrK
zqD6XI`+Qa-?H6JX?U)vR_u?t&T#(?TTTSSzZ<<UkZ#BUsFA8p!ZHI}^WbosbE{x4@
z;)=KL%Er3kd4S2~)HB4093+au3`|4&x%%dDxxn*&+OXu(N={PLKW)@J{i&!AtnkHd
z$@OMcS&bw(Ko1oev7a97Vy%A@dfh1EzMT&5-vOaMWxcuC2@Uq@T~u=acJW}jQ1`m~
zwK+5+)j6VB7GC3J*YqKahd;Wak@xed5a~%3HGoKD8{oD~9e|Y^%4x(m9yXZBP?)Ke
z)~7VMxw9+|r%G0-zkhdmi;v~eaW;dG-qXyH=MIVXA3@7ztSzKN^3rP|9q~lBJArp7
z4QMij3!kIrE51@Pn^Rrwl&~IYjC@+VopOx;Q>bk?@gQSgZLO`8<@k%|oZ4_!O_->?
z?N9yp`t+31yh4lkRgD$>)MG}(gEnhFZN|?iy{~B|T>)K!dYYB8Jv|$Fp)ZEmTs4bp
zm_A4C%CXvBsqK=D0nk7{hF&7JroRymjGX)o6hp<(<NIlh=C1*<C7}zhWUw_kaP!YR
zKufxNuq5kM&;6xOE6)B4)GZdA#`x#(N(FUz$u`K*x=t{f8dw|9(>j4c521j1(3MUh
z3o)*EDzF(}$5Zx1sWFk;zy7BtCxsWNSw-tcq9$GfP1R$=k`xBxLvR}JPc$eFykDTi
zs?s`S7DOgUONb^~9q1sMD~DJl+h6a0pG%<Bu;gboFnwh^rf*;{H(pLO)}G+mny6+k
zN-f~I2x)I(G;+N^(Ih&}3PA)qKK}~&9P8v<${K>5dbA|e@M(W`YG7dJdJ5JAIwV`h
z#*!?XO7V%0Wo$A<;kUz~6RLA|etOmGtCH<>eAf(la73xMsE+e<+T(L&(ki*62z-5H
zC==PgY}l#$-;d>|q$h1Zw?5Gs^Vmaugk|wO%R_fU9>p9c)mv5=K1wWjK$d`BEV^vF
z-a-c`NFJ^H2wy8dFyMp?2i&=;FSRvxZ!vYo>OIf>Z-}P`qHsrpg8A0*v}}~8Uig)w
zt3sL+q8UZr`V@LGx1t&Twgm2M-HU0>bs0=2s5h-!gon)8=0!~Z0%tS6L(Z;Ps%t`H
z<y7pKYQGO^Eine^2x}QS&1gOP*_A|`(8)EPZ<UURKXYw+((o?vgxy~lb2iAx*&uEE
z>Qdsz0^2LzhVN`N+GA5xrk@?%p2YlaD<5dsoR)E|+%P{;c<ZT~<PeRrX>OB&6uiH?
z<C8VFnMw|WJaYnG!VdJ<GHwAqHgPH9slEg$e%KCBkLtQ;0Vr7d2PjK%)<IU=PYvun
zcY9Z|@3vQ~%(*ZgHX-5DbudDU<A>or*suiOQg6dedo3BzLM@H<WXK#x3dv&nZg>0D
z6b?4MZ|Kj7_P|=p*RAIe!$etB<ZAW(XhN*SH52*;SE75aj=860c#fmxP}OZ6Nu>nM
z+KCO0t3S#Am?-``z}*4fd-_Dx0YH^m7OycnCjj?H&4~(Y;6qV>1T2Rh*lhMEh`;iA
zP}<{j0Q;@n&UEE;t?c*!s%|+SUat(akRxI=ufiw-k%-f`@2L!zRno4lH|KLM-lzpO
z=H8#&BMYpD2(~HOjdHF33XKilN8HtRJ)?dyVH@aPNg}fl?kc_bk7gP3ub}U3q{elj
z#-olN?o3sF+kwyCcb0z@Lt@--%0k|fn-*R2A1`CnfD|Ujw96q-T~~Dk@!kzm6Io~G
zj^-{S%0qJ^uF66Jxz}nGlKFevvF1=7DT8U=c>>p;&n$%EPGMYExL)v!KmV>yFXI~=
zG*1K^W2k?P{3sLu&V8(^xRjq%*XMWIhmTk)UJ3)+<TT)0f;UZ;@=`@!Jty0D+VXqY
z4`llOXWbUD&T4U?{Ni?r3ga`VJGAZF@%mr;P#o(gt+NOJ=mtolSnalh*5!+@dWc{d
zK=`o@@(uhAB`%k-E5&I7p;Oaz{5MJybji|w`;bnqP5{y)(5Gf;%$nJ~fWEp|{#7tC
z1iYFHy^pw;{;(4AUBkfPK9?ZW=Ps5viQAg}WxCsWgc`ynOM)4!#RCwSpUQ6TNdQ7N
zDovhuH|rYMs#~&z83RB|F-Fmj)>#^`=8=7iDJ|Cenya#vb+Jy7NJJPhc!$f;IJi0!
z{T)Tgi!lPBzV-JMts@MTCMdzHQ)`HlJJ<T;FIiX>xF&_oD&c5P&igRcvLtRk`*v2&
zWw<ZjX|hS)9m_Wo%K_)39hTZ9s06h3E6#Rze)3?;(KO*RneHM*<>i(3B%#NOf}sLU
z!O<@k)}jE{r6k{MWoC~+-gVvf{TTN}A|ON3qq^7M%GeFL%@BP9)JBcuHjrP)0NJxa
zrJ@eGqdoi)EzEW5^R%0(Mdn$qO4Tg#fq&0!urG@bPTfJnHEkyMfh!67bdo;HU7q&Y
zekFabySiA{^>iF6<01B7qAZ6U989?BDF0A**SUD?H@3c{%VRoLJQ0?tl7jGMzdZD6
zeW_O3{{a_@6hjopgHp?apMB7n5KzD27PZa;>f1<~)$uEpYEiUL`RW7s>;#<Py(&3K
z>{d9~y?_?&fqf+lHUgSMEfeP~NuIaUOQ&D+=n1~68c7qO0rw)_)BPf7{=C*#cHz7J
zD$aDdV8Sh~E7cSY#c2R=06L)TuQhfXPcGv|V4E%&)2C+*qb{#UGtqJIZmW6hNOO?L
z9XZ@x-RE0h*xU3gyE_lzl`4Y`*h}9@W?!IaH^W7-i-Sr>p+wee=kY+$BkfBZ3kcIh
zcn(+^QfGB4C%-yfc@E8X{BvnW8GSB_Wd{Ea?#j(7wD5YLU$Lq`J1kZ9^H`%M#0ND#
zl!lY8p56r4J$UP)|0TZiKk2SI>n@MX+MZ=4mx04)>oHss8A(VF#ptHNYkG^g;LxMC
zu0)t(nud(<7e?24PG!RJ8dK60g98wKbW0r76QR4{!t;|bhg>-4>(wg&ETPK{$4%M)
z2@g6|mD90m73=vBMeE6z3BR!Xq?m)cofQ48by|Vv;UAC6*Hy@M%YxKDT)5$_iQ{_t
zdv5>52e<CGzv8fF$+%+Ua?pm7-^7U=vCB>zUggZW_8P+Wc64N>r)p!%c!fqN<A4d+
zvpZ!uVL>yYJfLn+ZX0smr&TwXye01Hc=P#wdI`M>2LsAFXWk)qb&t0MHORZ^uY^kF
zeZ{U*mj^(k0J|MQoF(NGpYp_Ic}+G0pg$jK#b1Pou9Y=WyRSny`R1(j=@|)ow=Z5@
z1$hpy(S^m%0G)4WU#acRTH&_ISENq1*HY~hSPgWokoyZMAIp!)id^U?{U(TjYYc}E
z2bt<KWJMz#PfJJ~We7CBSm$+6S|{lvfW>no4|lt@$u1z;SC(G8-|xMG;4Xy3L|o!e
zId~Slu#R#yVfIt%%8!3HTn$+XCr90&F>g~9*zP<Oed8^!v(|dP7R9K9Z>XodvrrUz
zH}q;G_{hhSL)O)Y0e0f^gZpFn-vDG_rH~>`X!d99n$JvK35s$Ld;d>fmqdY6ywjkl
z4?stZEYJb!yenS_*)0kK2MSN;BwZ0|5Tq*k=>#{AfyY7$%RO%sP1BZXl#t5+nXg-F
zh~MS`YaIK_&SeCX01#Jt4q>XZbxSj<J8dA6#xEKaj!QajLsZ%X@d(Jw>_?^;TGFrS
zX3D`owydRHA$}3_Lun&RC~-@kj;pbXCgU?5b{=T?KVmj)Sy%OW1Z3Ngo)4`}Nrkj;
z*OKAS9$w-{z^5?mPgbzk@#5JQ#T|IU2uEGFKp!CXAElM5|CWkv^<tZ->D`#^Nr{#o
z?Azc_MNvN*1kQzCUZUk(Yg3z6Ua)Ie1V0@Be1cw<R~z2k>)QJ-_53!+2NiZhbYbKz
z9%FfJ)RS~mIZ5iwja!ahG2apt!(YsA{12x!q+uxjYg9^74nfSo4S`Qg0QjRryoS^l
z-yz>7%A@IRDN)K@W58|D|M+X5>Rch`i*wc{Tx#UkR+i=d(hE}N;O>A}@i*eR=5X$Q
z4bmCEB9L}$0JC-1aLC$*)37`~p|NQ4^bYB7<gr_{XT!Fd*uUfTR+$neZ#S)Yp-BaP
zmfEp5+{5*B)sN0kj;D#{hnVTT#m%4H<Sl#m{r-H-k7%fXEK7hINuh2zx!%bx!dtrm
zun{Jp6+>**P~h`;Uv9q*2T0Zlevh<CE9mH);Z$x|$y0lV8R=S84KY!<U$yruO=Dbe
z`OG}RrRn=n&ysqFhQMq~j40Y))6dA9H~QdB5yhMlFV5=1a<iuXlLT4p%wlpr+HRYD
zN{j#c9^&LGzO1#vgP}fx^RSLa!?fUnl|_2uk>5(KUXhMEXGP2m`gQK(Zw!*<G@TEp
z>xF8Kp3p39`itb<;%ARM*|kKB_q}*%6+j?S)f*3v6zrri7~3bQqANT52_s2qZ?$~Y
z+`zSjHz&4h{Dm{=uNdNgREfyDi(>R%3VJJhd^XLCDP|T9t;*eb9eVo_=MW;8==E(+
z2=Z6r_M+RZyjMRX2brdq(GdeON#^Su>Op_Y6)HbFVsDDAkj87PXAH3I`l+{5EYxQ?
zGlDbKXz*YIdWzz;@Tje}maUwsi7@1|hzAaZo&weCYlXyeT2-{6v`=%jFs?(Z6gWU9
z%;{wn&1kyhXi@PQnc0k>tzhUjI~}6hj8@=s2v$@xSm?U;-(Uji+}N^%d3Bj}=A@u4
zmn0hCJ%_T7)+_7t)GHIiRFJru*pehS6ESo`KwG8;<d4eRP7RKlm$TCMbM{KG#ym0~
zRrf8*(h5N$b5okYCW`cC;-w`Vd<!&aLmt|roMum!xIgCh1@_xD<_(OQI5rsoB1l{H
zr~%6BKR8p+i%a3s#M2v}gT6W&ao#@^1B&^&XSbi0E|h8Ucspl}GUZDooflUDGplCG
zAX=&R0Nj2D&f_l9yD_LiIUOK9cRZ-U2-k<+kp0X&m7eWW>efE=_Z~X_YwptH>m<*s
zq~tV3&kXc#?wx~zz>|!#db00CAuYwjB{L?g@X9L^X!72!-BGhxG`kx6QZQ27c~A6V
zWnW74gfKy+3F3gM#n2#$KglXJK=p3pv<#(q4u*kP_I9ao>oeM7cGTk=A`@}+m!^*W
zR)=K(zY)+Ixd}z=%b_|B{y%zJ(eiv)e);EOVHmR!;jM_-l`5MJ(ys}k#XNVlzfZTD
z&<>a0gzT@6FB=2(1PV;03^i(-+lE>~hpP@c;#UuaB0oBi{w^S#s2_3Uo;RRMqGe#m
z_#mV@1k|h2`;}A&yvv&o<i~@zt_gZFNve2Hd%q!jM-m%hzvCu`CjzW_oO>4Mgvb9e
zsX^4UVrYr14_YG+WA53`B}XRjoF&)KwvuIlI`};pMH#Cz-IY3tzx)QJQ~6(9*F75o
zYq`S!)x$qs21RWs=v0t1*yj+<m~puP53HF*=p#NkQj5sgWBR<0kApN;hObnl&OI+x
zs_MwsFvC(6hC7G{=%t@`nkQ6WL4{}kP0l-`Bmx58=?fX~lhNVSD(2G~DszY_T7B~|
zWQr%_ywUDqLq%0YC9TWBKNKB6;ks~+M;alrLA20qfl<8GCh=Z)k3+y~rxR9K%cV1b
zp+G%-$nqGpgTIg2zqku_SUf%rCK}(WKOSJe*nQ|n<~RDLzZ(-b{aNIT8hXoMVVG5A
zkw3Oeu<+i4eR?(JjkkAV86>lY*IxMh9c*~)B*-zGT`IfLHJwJXDDKKo+<Ma=q;jxE
z?Y;9U<dS@O;59$imGtU()%nSe>Z|RKja;kK%$=Oh8S{s;PueceGwNwBLocUI=j)W~
zYw(5MwuTD^-tPjs5*b7NE~A^MR4$&=!A~cXQuj86N9*f#pD2HuVpAVu^nUTI=8vJf
zH~P8KeQsQg2HU2A#CfADqG|gSOX<7H61}Y?p`J8&3It)<*IImgifAr8R&I=4sQb>O
z4eYFU5d8BHg&bEiO$&pPDV&<Mw%+3IM~&P*+1z3iN>FgLt=lir{pr;#A7p}UJvaBU
zYO5Y=Y?b}oL~;TIw=eq_XE%WzEWRjZKV0jGISQQFCxd20Y@td|8pnB1ud#E-w6a;J
zK1;hiSY)q2y&M{bF#%8ixYjVCM7|4ccq_<XEe`r(fS758#c=~aZJbCkTM>!Yo;bDU
z+&KdhUX$BNgem18K$QJgZ&u}qN)=Pt-G*5>nR`GXQ29;aTKrQVmK#Z+>-rR{dpfYr
zd$9ryd2WI2S#ON}MMJaRjB)e2=*xSu>+rU*NGLo56Es6Yh>1-G{4ZADaPssOaJ)@M
zFW$$V-sDszz;g~#`)vqilLMPlPb|w@X@8GVpPyrq7}HJ9(cra{*{J15vj2_9NaD`R
zQq`lDQ?s|nXHoNYN=K{KzrAR%OULWoH>&}A5O-=PALeL?HbCu4kPe1g)=|;R%;O|s
zXbzP2bwpGZ3|efdq5waCBhY-b$_MGO3uWZMWa%zltj@UtPp?R|aA|<kxnc42rm9fs
z0Mktj`7CVb=5&Z668g!OZd|rdeZvC_JKqKQL1Q-ac%}Ja9Nr{B%zU^+<o~cRu)s9;
zPn^@e8tM=M&~G1V2-*9qqcz>?>=X)tz=7i?(A9>|A;XQp*ii^*blW#oslD3?g^u9A
ze<TQe9F=_XnZRf*?-;VFwd<Q=k8x?`y3F4mmmohygbXAD@sBhqgn!s58V4-UdYy5l
z%!sM{H(cO^_ZvxA!CJ^o6DiG04o}Z(77881buVQRkb%aF1>T~1CuL5jRj-{*{X|-9
zvC@88@f7b>r--d0d%9e!37PR6g+?%>-^=b~bMhn-xjT-1cTV>x)}xjeNrpk+AM-}N
zp&ooZ*~7(He6t>P<s@}adBX}}gma5~vOax2p4@rRoXpbw4Rm3CWBvXqo<32@)s-aB
zUMKKEDVYA3`&vTRwRBv9$yrS`VWT2poFfgNs`6JA_GZa1UZOTAS(Sms*vpw%KGflB
zqf(l?WSN$?INZw=mTvG1IY5)}J(m}6+qRF7)9KoheXajY=$hgXp3)!iM4pE7*LRX1
z<@KGtj1%ECeokCiwW*^9&-z3%jkyO#bL|i9pWx_IoS0}J+y|UxpS;=u@y+aaybU#~
zwyX;fmWNJ0Y8)~`z&ojnMK(s86lo()!Hz+B@B-ac>D{}E69+G9GIjkK;$638vNy8R
zmd5t!0>NFwUPCh7i~WlD=9R3C(jEt)XsjQk^mQlNn{_%2DPtYv0OQ*+6lmAP7PWnV
z_9NU~-)l@Ha0`p?IDcj2`AkQJ$pa9d{m^TjQj`;L9%#oD&eK;o`VT?bT(hB-97g=W
znQ)>jnoAh$%bKEOkWK^onA-kc`2tQ{^6E=wM#bH@QrUSA!wu&MYr@<xJJmI!c%5{$
ztYvKSAz@)7>S>t3%1|rIf3G!Ux;+(3LE*2bWBDOnc6xL%T**%m<^6O6E+wDD_MXJ^
zc!)l$5Bl#;`)c&_v>aSszwlO$jw3U-Z&?xXVd`Qu>CePe)W>`O5MVQHM%IrMpmcjI
zi<hth<j+ky9XG>F&`+ad;eHz^^bup!GCV}Pj{bqGdh~MfY9X~9V;5NwoC7Z74q$bC
zXgELB#O+w17!W0*ayG=~8bkG8#-^~zlDuj(c(vNC*P$!ZKYBSP^O|PKW_Qfs@!a>{
za-MB=?*;`UKMFs>4Fsr^*XLF@gCf{|x2;Sm0ourc&n+|$j0H%y0Zb5dF7Wgw6M&^u
zGo2Q4J&5T(QQWMwYsLN3{b&XF5(G-d#vo<vtaS1KPVvtu5lZp$pT7x{yv#7Hv8BD|
z*4k%959+ju`{mR;DSNn03cHOcrjTnIE>MMtb4B>6{K9cNQ~h8-KV!Dmmt;kBK+%jX
z9T)d6<a+PdyWkp#F)L!!>nTxnW#;drG9ouPtzUY&^uTCYCOE5ja5}%6oK;cN`}m72
zeFk{UH}{<;n5fNFRUjk!<2JcyAa>W)a^PuB9P3%pPYM1&x$mO&a2L&#2k3%D^17ST
zvcT@6K8@=cxeoG|lF<q)e!R;_g2kM>fQOQ{7RL&G*QsUwlUMB}V^^-azp$*I6WFZG
zG&@mDf%nq81=ywUj?pTANq0q>qRegVA+I(TAN6K3#Zz;hax6>cS<HKAW^UMW_N60_
zoQ^Efh!6-rt~b?=8_&9y%jtKtm(ylaSAWV3@>LlqV`_CPF}+#F)*9tl%`EJm`sGIi
zROwFaw`*XLL%CgVjfpbdN0<o`)(*rD=Bx%*_3t)*hYt|*bU?Ns-8EU@c)E@lI4CE`
zUl2D`g)zHtF&X$+#kIO>miQjH@^FsEgd`?56ssI(3OSUa9LIi+`Sy+b3v|rL@;f7U
zzkLhL3IOm{p34Dnkn`_|!^8p!1mrUv(1x|DuqYot^8UNn&b;a2&O+GGBBp@&ZIlA;
zo5>IrOIJYYU%PS026-be_d<s1jVTX!meGOjF1Jg)hFQbk?)6>LX;<C(vRp*J{eez!
zo)-_^o1Ulsqf_~Fv-_UPcQ~~XZ*4A#5AiL2M{-RRc(}=Yjo%^D4yxrCN2Nk)Gnn(+
z&$A4T_NJJ_p9|3a$zb|9DmN9$J<ia&c-l-8(xc_KqIilhsPu91=vur?S5ZmC7`&*t
z<)g8p3;+POwHYbSzT@pc7h6MFniin>XA$aCyN@q;HmEnVqvF&5?8tu3G@}Q)5@H7G
za9Ac|pXpHyi{-3*P?H%tJN{i(VPK?{@P<9X2=&qRW5E5D{2x<7ci!+5FQCOY6oEPf
zeLpJqLCbOZaTlJ5@#oy$W{D_<Y**~`+GI#1K@Lv^L4qr890_|HnC3g`zC=r)2X?Vs
zKwSh2(334Uj6P^KGQQSkIdP1SbXrjBgOLt-uwS=gk!$qe1SjqTVHQgspsh4;DNqEA
z{u6~HJt(O_JmU<u%f_O_(Xa4GANHQFygEvlwCH&*BM}7fxU!&~d$LsKODSVNF_@#M
z3lGtP_YmA`uSTl^bVr%1ZwJcwc!3Fip|O$4z%sm{K96%bH4CC)3?L#+9mNmdoDPB*
zi^xp}#OlVsszz)%8jBdEw~52%=rJ4JOlq7m&Eu03eS{o+Dt_GG(a8YS8d-()rdqP*
zJ@+9zxp$-Vl^5TI&1Ib0#bZ$C%<no=nxK^juOI1rrZI}BM9dk-NcAACOXjGv2Y+uT
z{2Jc!DElONPos){b#tnsl0~x02O$0#@m*!>yN-STGsNw7KaKtnSC#zreG=9ltGYD-
z%PP8>V58$BO}|hb_O4~cBkztuO*|U>E}t@GZ-T#@0~{&AG)+~)q-J31gwGkZ8Cg98
z)D8w|xpXmbFu)dsVe@fA{Uc+mE3~1kV54bCX>_ZqWl{InN>-wI83V=yT9xSb$<U&1
zUuglzvw*`%Q@h@S9@!iDO7fc*H~<$G_s!pt4MhkOpQ1d3xc=kE-A$5kH@rb<e#@Tq
z2_!T?!f|-aX4(;(pCCcGhrZGvVUrlqbqCtBsfx-7SL$8VPW(MV{+OkJh=;Y&KE>GB
z(g_0fX+?^D+NRFa%Lp+}nn&^9vax(vO2?)a4Pt7fc8kX3r&w`Fi$=%3ygP5}S>VU|
zucltdW{x0=kB=!*?Q|L~f6n+3(qpr6K%WP)s%d|T;Zpf+6Q9r86$Ette4~*D^aULm
zzd%m;YFmd(uU{&Mz##_~(|o;)upR8ke_o%rJ2Ay2PbE6XH}jnHuA#DlrqMB!P|BG@
z9oyRY;ddnQ&1d(xcQK%!_d&YMUh7k1*DQ*%94yK8J_9S*G&{~dwW>xp_y>#|K5tu$
z<b5xC#<I-~*h#c2Qo^w7om&0;c4b5OA_P2w=^(h`r_tF^T&J>}_jku)0=$g-KRY?l
z9LmL7^;B_WF~l*K5a<Z=TX+9<+K0-~>F=qtp_{4DAid#)cN;&E%Pi%Vs$_vE=+C>4
zBTRd%cbyk~hz1*!e=&S^*5cz11^@k(8Q;pD6FsCE;Hk5sXe4Q-Z_U{mu)#^|RHcpR
zAo50Cp9i~TE&RAFN_ANH*eRYuTf~_A?&`73$e)Rf=4_T&CmX$OOLJ?6VSR@EoEa{9
z_0+pZ*WE|&rRf-(x`~!yLR*#wIxFg{YocI$Hz4tiMq?)othsh0eQ*(x!XvJa7cuaa
z-%M}oyS2Wy+=p2a`DHQdx|EN)tl5SN^xyhd&wlFsnyRY&rX|&w;*Pi(7yisygkH{;
zdKD!m>yz$rFA_ERU-<S43PG1-Il86n@gyMaNXDCv(p=AR^I!m|BV9if)?XbnB$mC_
zoFMxnfz5+Y?z&;2)an1zRQIu?Nv6hvNSg>Ev-$dn*PPMXq`rTD>HIR#O>G;YfMA4{
zI5BD{NA!JISnP@xfvZvv-EIp<UO0C!4ca_Tj~J2eEouPBQ&rD@7ZK!}!;u|*Vtc^<
zY(E2|j}iH0^LEO9sDG&wrJtAzT##6Xn1ro9x33^aUL-Ebsjo6UwPZ|*lQS??xkwK}
z!Z*dh3!!`1>;_tdG33JWs`<yz9Vf&yQy}}B?=d?_zU62flVLQ<YVbTk6TgMZ&^%!I
zy;0P*g;EFL`c{*^{z#=M;j38V#KI{9YQm=fFcG?rD(Ng?2NQ2y8kS2m*D7uKFd9%`
z{e$@2O@4kv+V?)MP0)#@@sw&ksUN(Z1L^}mjOG0)rnoutk!k<_64F3wXxL)zZR!)_
zmm2gLJA4mfFKcbg+kdG+6jnRx2bH4{f$jsJqrqkOSIb<W-9BXr%3Wx{%Mg&g_o8iJ
z3l%1Q1GNz~xp3!2Jg@JBU|UC(CPd-wBna}PwyH54bdZk~({&5Jv6fsRKA>0~=5sHa
zImKBBO@nso*|=&>4;^bk2a0{U2VFVP?f4;ni+Y+4s{oclGr^r|H@bi#OHU|PwXC2`
z3-vx$b2IUe6Px8;6v`cKd?Mf^hG_WTwsH3on&=(0`r`p@>5g}{PNj>-eUI~hOsQO$
z%<%yx|E`rye~oX3jtOEwxh(DvAzTT(c+3iVd1cz^IS@Xkl@%p?Bi?{2(c?m-GNEZ$
z$|}P;FD!=jfN44znI2W;KPkCnlThDFAwZbcf%m*q6B3+DgOXUnQ^n74!sv8mwnqr*
z2GiqWuB3H=H!miPX)AG&MxF}alo<r^9`=0<Nh}T%*X#x+xr`@Kk7eDt;`GdHKs6sZ
zTE@q6MU<-Ped@Z9locG2n`MSx+%^u?sZ)}-K-&tCaVKc#{!II-Y>UZT7H@zdyT*ek
z+|I??dIigaC$J=1jC0&I@IPE&iR#1XDW0{hG6%c>S_1(gvZPy$<e&o@%Hu}t$U@ZN
ztF8}Ar==tp5$(B(dMuC=pn&QC>l#XIBt7{90>rVdt<C0}oR$5dVUer8>OA`wZ5?kf
z<|A0nC&^dv@K6B@$px;78w~4`%i1bKANHIk$^3w4N_k>2_mz3)zcPu8h?%Bourix+
z(yL%g?B3S<v=i+&+(^0R<9cwhO8}d1XL8_Q#2@Iv;o_U9yqkBtL(J<fLts<hznNtu
zxsTj(WsK#eVD)}AUk3b=c`a7M6MCTOU-NF=#DQaP^9ftM{IunNV*=v=WL6A39)L1a
zDj#|WuHr!7_iq1_HdtKvhsf12-Biu=uvKtjw*GzDlJ7CIbT)81(BW-DptOds@l^IO
zqOiZ?ozuq@&>YoZHf|3*;`s4Y3Y8`GsfECG_BUfZWxgzmIc*@}+Km#umpjz5jx`jI
z-S^Zs@2*!*|1GZCFfTjSJ7AU7>eAXq9M^lw`FI#iyh1lOL?KbtS+7^CqnX>n^`^HY
z#4GJH$#*a=NGs}UR#<2W6RM+e<Z23u>)u>nllj2lJ&kmqW1{m}r*kuz?crRV@_{7B
zW975?8%8QvOFC%B2C)VoVs%_)6@<Ci@MBcDB&*!uJ?_?=YfHTJJ?rwle$i`nEcVq8
zuqa6Imxu?!a`C%q-lt!Y1?CKRzETR<dWbKB4U<yL#0yjJM5~h=t3W>=1m5oebHRRg
zQhKRycARl^?WjB0<nqGc{I>UHo^n+ykg;K%{#ozzzn4|HGSFd$HWE!{!0B}&2gmG!
zC}oqQ<(oEtDsogaCUr~M8$#r5`w;nr=a9S4d};#39VhvIO$#q4tsVO#Czi^_TY8GD
zvlPI!AF_-w2}lL!67g>9_bSfZiGh)?rq=Fhk6fu*qxwXFMW1#$yrJgHaWYbC%I$e%
z;N4ZbK|Bh(DOLx&|6P8l+I58byIcN**zr6A0h#x4Q9YU{4e>QCJblpB8G^_(0u{dZ
z8KL^EUv^qQB%<ePVt``DrMC1lrD$C3>WT2sANS;xwdAuX&3W_>TpBX4%O$i{q;NAG
zd0Vn_<+%9gv*?E9F}dfgsD}ve_7YEkCb-wt9it4;i0V(wNx$k9$2q3FASMoX4>hZP
zzNnElJCZ|`i2T=}P-<#TdSg3#9#dxt{Zv!DpL(Z~dK2xRZgZ#@%1QLkn||P-v|7iA
zuzVLgX14*=qbr}{9b1PZp@tB-6=WzM3xOFIh-^<5eV%S`!n5`YLl%q%!oo3{IRG6}
z4Dzd89F$I&*)L&=M{b)rBd^U7{j2e!(ad$Wpiqybo-Bn<=sZ)=)s@7vTV1UEciSaD
zX`Z~d7=!th1*r*2dN!r}%ct(}y;0JjK2eJg(*MR)$<g!)LwnUNy~QBy+MY*6o52av
z2x9S-)B1r3&*`dJe-|y$p}QpCBT?X$?|)?-r{<?HUw9kv43z)IRcHcM>e`fz8bI+;
z%JvEFXYRHO0#2r^DK??$8kT}*tjjJ8r#?WDVCI1<0Qy;5U-n^`-n48psaaF_lag1o
z4Zx_oul_^foalz{R8!(iu}cT$#O4^ML|)~o`+xg3nY(Iv`Wbf+QWx(wN`EwT_zSi>
z5fzZ%1Q$AG5<GMqcj+Z&hjemieKQ5>yJkiVmkn>|d~vb<*9V%@96Bw+{t4h_Zq$aU
zv10;eO9CIt{-d(U<_Uybut&J(IoyiLf2x9^OBX=12`Rtg^AEBZN4xTZnwi~odBbm(
zJez*!K~<kk4ih}orc2nc{PNQ8j4M)hXpf!b%;sM`<kZ4FO5}5{{CE6n6LdcXbQ+hH
ztQ>do6Qk_W;M^qtuyX1iAtK+kDYt*@<IufBBRql3!RcWgn}-M_a)2Ep%Z9efN>&wG
zJA=^sCD0LItXC<g5}r-e2Q#)?)-}d09v2Qg*IvPnNY`Er;~P)6>XrsCx3*6t-ttP(
zjKzA~dN3;zDniqA)bX&@*?UE9KI3A<Pn$`5h5~!))d5fEGI*^~aUot=7p*vc+AF3S
zC!%TkFk0abjHu7Edon{%rfWLuYr5XF!_Y)wb=1l>mvF<ILV4c@Pxrrx@HR^a@epfU
z*LH_UQNkzy&f->8Dse<k4CyIjRy|o{{q<Fb+nJ7F8FiM+V<$}L>Xh!UG+mBEW0S(T
zv*EZa0GjbDZpi0D5D<Fg!1#E@17G1=Xc#H%JbSdK$R<Kow0`<Is)ZJlb^hSDTk%wR
za?HAr9NymxT*OF$&pgPC6LpV2n%Q3u%S_e#&647ogxWF#{Y|DI{H)+;`7H6}{gsu-
z*&OMC%k-189ktus?>f3mNREla{O~IqzCg<6S=4@eoGSm1|KQ)tGpFc45_~#X<J~wl
zZ92$piU&>m@+GX(f8+~`#$UY&!G{0$rwdKJ%>MU}*kR~)xlWuJ{Vka+D&@XQeMSGL
zTb?-)Z3o>1Bw)5r2x^8imc8U57bEt~w@y-RqufQxX{<#)+@3D9eEJ#Dw%gQ@Xu9e)
zvbfD#_YL@tmsX)#e+tToQo-~Lo=dqqDNa0{guUGOtI^>~4NfqS{S~G=mym``k_ad=
z<%@%~hk)ABkt;j5(FowLCHlt0<;Rm|q@ptbCi$FUs`5W_)~6Bj0xE3@XXeA$h}U;h
z<Gg=V<^L~@YmuZVloZnvQHb(N5AE60#%!Pk0rfcN*ZHU!eW-&XuZ>QLWy=EUE$&v>
zKK;AjBaAP9t^TM_8Fv4Wr9rwHMbMPD^yu~}p&7f6q%L#Jx}8!(%?*pa7N?20QFR_l
zd9Vb(=<W#{W_3J0p5dY`&%1xQXz`Gh59e{^LbkrL`CdP}cG>Zj;T?-(DA)2yh_4aL
zWoMXfKh1z)nKg@L{Uv;z++<gm%hr-_I#5)a_w?i=s-*tpi0fZhqzaK7FIGKeV_xHS
zafqWg@4K|5CzSI#rdQ4EhqB6cMEOLL*Tt$8d&&l|JI>J!Hf^g*pm18Au~*ic=Cx}z
zt7gH-+6ZfWyNTE4kyG-ePvkkotsb%EnQN|XmyTHtKmWcuZUdS%-1{=4W{Ma)p$RWx
zf-ASe(g=LmcWxemY5Ewg+wrVneUrQ1nkoHmkj45F?Fn{_Na;l@v(HgoK0yiW1<|dk
zvrOb$KSty`Ou(aVpzGKGu_>ICFMkOT5@kzF=iCdB&;m%W-ROPqqHSN|uvO<r59HG_
ze6#~a{UC-7^h`$R9@}|V-?r5e2SwuLmc;hACWKnXuJk%$Ij|G+%kyg54#Cd6c-Y%e
z8IHK8a2L$ttC4bJ=csw)TSXn4J;Z*gZ5dxlFjM$N_8U8Ve>j&wJ<LQVTP__-*)DSJ
z3(H^f+VqD9J5bG??UyZ`b){Z(r@W!2STlZ6Q%Tz#uvN#BF2)_}v`;#;D^8+>_wJ}o
zGs10K=zhiMrcN?RbH098q3T{zdiZSQ-?|*LLTi1zskS4FYL|C%+x^+p-Gis@v~&(!
zhI^x3<$uq%kN*8LtN=uw$)2S^(14HSN4@8^lqxup=+7WU@S|5-Waa1d$CXvM4bXRe
z?mFwNu!eE>)3s5Xq6=KF0v_hRZNd-JoG8Xpc%lOs6u4}Fo1LMwclO40^O8GC1_~w?
zmgmi68*!R>L=+H#VZfSV2M98<6G#UZ1Jg53AK|9+=_bZ)MK9XRWxrjk=ETOm`$wDh
zDhwEj47~S-IC^_GOLH&Pz<YsZCm_P@)Zpx!3Z+4Ya&X2;LB^kLCE2r6a>l6=e51dn
zfBvkh)Q9n6u3W@lv1QxJizrg+Cqy#C)g=t;CnFGJ6qRvtrksaH>&vXofz=wMb@u{`
z*sfbpM!(aszEhu-#~G684e$%D#^Xrmn8=B~zKs`{23?D>`=P)^B;IAqGt1#x?FLTq
z;P%;z!yjGdkWp697be->CHX38xBw^3V_+r8{lNKMR&O_xE<oJ&1X+7ZkkD~+{rZA|
z+^djL8T71mmI=%{P@Lo)<|rkBK&(ts(h07vT#ZiCx(N2N0tRP-Lj(3O1N%)d&QO8Y
z(9EerxBX_9Xla;fm+NR!qgA<5kt9H~_ve;&_qp<XJEI0jT=Cv4=i+>=>07<S1X@@r
zE1`{0PrDu0NIX<b0bP&&vUC2od*NAz<I}R2YG3-~5&kPLUZbm_?1}gZOL_8lr05_;
zHJ{Rh)Y{o8pV+$i5bQp#yqa!#rIAG)@vs1<c!+%gM0z6AZH+c#Oz0o|xCXKmQrt!b
zpB4?KVJ#hmN?qK#?1GrQeiyaD^msy{RavH<uR4ZgHkR^eADl1Lweehsl{yHZ{dZ@0
zmr0}-QDgo}>&G$(9Nnhn#4iH;L9y<p>Qps#nxX>YAs0(XABFa%WM)zC;y(?dhOGAV
zNF>afFZy073+MX-qgC07`xeYJ-~jZetYmKg0!5f7&!)ev`76H%C5f7f2fseO2h|w%
zc}i^o_ybk@tm;kGO2eEybDGYd1QHsE41cg{;M!qQ>Q0z@Z`oX<Q)2?<$(**Vj}dA}
z6q|gwT+y9~0prz81!2uc_{S<qHzY&h*FRVz99jNd)Hr5U`c>-|Q^|UnJJO}zi$Yb|
zpVsWB6kZ$s_A>-~`*i$@!HDknhf3)RodchBjm&nWxXPSuQmn3dt9BO3M3x<&`p}2S
z$l^#_Wi<ply!#Z-@i3lYqHOtnZ(>OFX%s1+VS-)O^^pOvwU~1D93D~W<m`t?2RceE
zYkxaVZB9cznQefrx-zYd)RJDj1Oda$!L!jR8XE%Dn?}b|;Y`Z!!uV!Ou^b2K1Z~rS
zW0lVFjbv|qYx$G4+wYu)+!SssN>=puebg6DA>M0}O3a+nnp|$vSN;*>3D&yXA0Y}&
z_cNPF*MvGipBgjR<FYE1;q=Yby)LO820xT<<b6p-idZ@#Bik20zWN<sV!dYV-uN2<
zl@YyhnN_Rv*)Wu&fiB8PL9<<l{M}8DVh*90PpyiV8U3I&q#=_=_h$N+s7faEX@Puw
zliNNzBwNT&jk!zry6Q;XXuxt1=yMexGOn9$=?;9D>d@?6p~C0FCx6ESUJZK?gBGQK
zyk<<hAv=6rm=goVc3;b8VoPY6qEjoRrgvpH+NF%ON7OK-bVXrdjsrPlSi;~!86Eo7
z;B{rZ{fob6PA?`#>7E6gr9b(zEdkuKyJ_cBdu?=j*~$#LtJnDp#zOk31i59uxQTb@
zW4R8Z2(~Ip823~obcd>lk6it%CxIJIj+7G)X3Q-=X1iRl!lGNPN*fM1>Mu?<c6!B1
zUn=}=+F`p091_1KyM#|{JY$6~Mmm>2HgOH}Thp=1^)DoNVCH4u+W7xD!^~dnJw=P`
z@)lVVIir0=|Ku6~`ck3upE%Q*+po+EpdRS2P3N5xP5OBhv$ccFrOv*9qB-GAvHDuk
zz(LHv*iiwLO;OoQ&ezdkOJEOW%otnyG1wn?t4N13)q)~<#G(GIfIUHTj4U0e8B1W5
z4Q*hMPPn*Zzs-*so4-NYOgM)^_hq%qUYAh|Y;uDsO=Nqg1E?H0mmF`)<K90PYcazV
zbr<Q&D$3TIU_bjM3-mfHA!1$VxL~}{d`_{)oUg$r6HXR^vj+}-FU?UOT(J9}$yYA)
zU>Urw?wk}4vZ_+%V&cB08{lN}qR$A?w==(0DGn4;kRURCZ(D`xvL0$hNAxZ!=Zuwc
zMO5n$pTt!ysv*%cd+yK&p=qm)K9MEtl12khPgj4vp^~_rOXb{^_VrGLE{xHf)a5#k
zRY04djIQk-UH!hgE+njw$p?Az6xOAqdYfPVJrrBzEUsXKt(W>SALAhwmlgC6yY+(E
zZc(M2>zlHCTT4jxu7$wY3Zt09ZTVIcdAWjRsvD$_*!ub?lo+@zHj@e12xasZImALx
zFVXb4AVrgh&gR%Fb;R3ITWr+0sCU|x4V?J{RqFX0e?l3|fOL%`_D}ttW5%NAJOG3S
zaA+wkrH7o!x|V5*<Bo_*;aj04i-@&o0xRN0C}XnW2S`s;QU+l6#by<k50_p{qVAS9
zM{QaHDd=?-l;H=u!Q&V%*|zk}${$<Cc-yRnGL0NBMTM&xrb5xrj4G)0Kj?E}uY1|k
z1x5xwl28W$BRRHf;J{<?hr*R`Vbt}VguJ9e^VWgHtwQ%Rr5<zJ%&cd46OX*^6J6q!
z7oI}t58U^q3ZKMEfhJ?=B=NG7#s5+oa%LWTG!(N|;WUePwgcd$hI5hzwOzSHbF2p9
zU*10b%b8&fU-;xl9`%W6)bW%wGiOc4bOkMTJDM@KcEdnw0G<vYnYH@rw%2;A?tD<J
zX)Jnh8)$U*f*`^oCmy&#zWM|^N^*8UGsvlXHc8ejh<zz$Aa%-*@qX&iR&A$QNzkFm
zamdYg2&ZyKYe2=&yOOz_q%%*SNXB#q98jWx*oV!X@wk7AAmjxwzDl1y_w*FO27Jg`
z!NSwf{p48<5nlQ<2|>ibiwJGzja0e}w+Y^k^x;o8BR@7Na>`j?UT5vxDL8k@Jy;&r
zAm(&igh?8Q(v@aCIsF7_tL=K<+!;hqyys?MN&)k<RRAl}kj}zHzQ22%Wv#?N`?*>1
zv@%t>AgiJ2qtlnQjji@)HC9YJXC1rG2rTlpumV=s>`0qd82|4VY+N2uQU>Lzm%)VH
zGxpWVFr78H$1U{ML4(`#6@3AOF()g6hv=`tx9+V)*4a(XMA!HpOZ-$y5)rz#9>dPn
zD^AO8wkJ%=LmQ)h*qH@=xI_4&k<)CXTU9w1mFAH@Dw-GnOhMO>mR_Uv^eI<`yazEq
zBVy^K`qZt+RJBUPb^3vfJxljd<zC($U})|-+t!_Vh53N&6UHY8^}?364N|q=lx>*3
zPc*wpRg!ZbUE5}YFmep;A7U-_>CPkKBUk?tSb_;*dTYtxcMmRjtkq3<t*ieYggJi0
zN^hTEO{uhsyGF4(B?9j6NV@bpN%3R3I99nN>?D->vZjMmvFn(ly*w2?p^7g?{`w9L
za7wGDCv}&z_){<FEec|%hu@(`o7IVq-?w)h_|5%3!4|6v{8{Pzq4FgHe)jQ(ft63f
z$x$rtg$+IYWG)9R=|NIxaU#(>5>wqQck4%Trbsc{Y#y$1gN&tZ{!Vi!pqy<A9>{qY
zE=u(&OoqbuB+oBdU*~M_#+m<`9w7Q|aC$0rZI{{@fn3wAH#Yr8+&(v*9q?6>IKwS@
z5~600k=qqyQa(Bti|i3-e#!G1^QrN+`;bk_q`_S-8n=^YZI3x+{-oFz$zcOxBl&s1
z#sLOaoV5&Rg4yp?Jy~rOW|QLhwzSv3ZeQC=Ci6-|=^NcXkIqIlXwZ4WEViX7g;llG
zr<;?6q%C=$Rd4C_<}di2dpRa<Us$rj6cQ6-pH|VA{S-C4wNTtM$mRdzWA^m5#cQv+
z-->@PTNHThnr|N!Qhw^=<%-A%rh;WZpYDjgvhcMvV1O{4>z(9eoo&yCdv6!b)1c)T
zTLhjx4`ckj{04JNJfqZ_MG!m0mRZC-_9Nh4Z6gTMT%ZEgd|9?T#G0NHO?H{k&r}2>
z7X1Z&XkhPz>b-9zTd+}A3W!sEh<Y9QpUEaS&TQ#lDq-^|`@>pYUs<}VW(|;zc3For
z1rUx_xMicy?*LwhK)O(igrX_p9`$#)1BU#7wi-s#?k)e(l}aTmgelY!0PNbMOF@<>
zq#;j*A}4?K64&5?)BI6d1@*B8=;d#{7be)6CBrpQ(tqy*Z4F;lQ0t(mBNWn+Q~%qa
zzvYarJPR#$$T^6+8?6NNK6Kqm*qVc23z^!#6UuNsc9Z3Xlqq?jA@M2UFVG0+YcwLg
zNH<K;X>F=kV~hi0jH0%jP(3l>q^WQz=%v-uA&yqVr}Mq=Kt_6b_^?we?2HCoTj0GL
zyC9o*(^;5TE;x6hdPi3(iB@iM$P2fk<COBS=wL=RJUNR7-C@UYt8`$p2Y93RYpU1*
z8$H##zd=mN<&Ia&B`WLBZ23CmM^UF*HXEEAX~vcT8N@OX-c4va&}!F9wrj*6_7iKf
z#B|H<4+;4yU*yYc1L$+&j3$*|p&<u*k<B6o@xs&xBZE<@mVUyxfIu3`LH!@drE8>*
zJZoLeJ&0TD6}(HTPn^h9<R70|atYR>qHB)KwB%_K4~(}@-x7dmr@Ry54|oS=6XiC@
zLkp6w?&7F$X^Nu621P3AYR#k`O0P=lPuey4I%E4_we)tTRR)Tt=QR{X&9keirli%i
zg|%K{1NR`~e1gQ&3TkFhc9r5|eEYZSsVBmdf?vCkLr_I0;?JK4THLeHR=t(u8Ds>k
zx=YY?>1ODfdWxRT?}#r6yF$s)F%KI@Kg4|;xU#dvEYU6|PwHWkf1Oak+{CE@hFrH*
z+NISsd&gs<#(HO9%?cjXN#i~?uWgVJ_h)PLL4I6!-@_4gH;SNaha!F*t|e6Q5@RY-
zE&ZVwXO07Y`ycy4hqozX8D;H|<~U8=fgMWED$RjHm9SpYnwaW{EJ{>J-BV#qrj*lg
z;5@gK6>C{T9+WuT=?^VAEJbP6_1aHAamN~!-{z6C(Gg!CZ%RpjCra|xVW;drW*8W_
zC#SL@H{u0(_q?65DCHfWn~RT}zk74E)TEse`o4p{7=*_wyUuo6Z&t~cEcD=dig{eg
zYB*<JUwLb;+ccHlY$YCl){p;cb(~-&X_kLxJtdhY1fahxXNCkRG|(!ZdttJ)(no3;
zp#wuId*^rqAK#OajF20?J3%{2_|t|xUdv=DsbR*4;Z8s8MM?y~6_1t873qYUmi!8<
zvQiods+Ojt{5M5KHg~047}CypPggbPBdktt<>;NX@SZ*O^w5pFr<OKFxn4J}&!%|e
z)e@pPS1NYK)8!rASpmnxXb$TSFl+wONt+<P=$r4>?{MZQC$Sqe)Jq7Y8=wk+5vN~C
zO%3_vFOEnWilRF(3}Q0HUeUScEk5K+drT{2m7bT5oB$lkDg|`zwdzxB{(4!#bvTfT
z%6(f#c6(<bt?}L9J>HX8odWouIQ#HI@iCa(OLpPQ(^lsHq>l^APk-JkCFkJ&v|FIL
zzeXNcPPVl7PO4wIKakXOT#1m%H<TA0gzc%*ze5B})St$0r2Oq9qU%CvZ)H5K-C!{=
zDXLsN*HlDaX+HkTLO7CxQ2e~)zG5DF{!B>mPcSHV-6EH3gL3-ms)o<R&#poG?Oqo<
zg$46M^~f}7`>M7O6=}4#IF0hBlq;bBz>-!%w$p3x>h|hdv`t;pjia`vk3DIyNcqtS
z(AGVvA$Yp*RNSg4U?75v8=|QM&_i{PWR-H`+O<Aa-Fa80WhfUWPH5B!UM%SO-dj}P
z_x4!@%=PQ)CPD((vrqKXvwTeEDif8>0m2bNpd+uiuHK+;+{}ex4a0Lk0u=-Qd-D=4
zh+=%Od^|)-`i8uYN|6|Yd4F4CzK7Ntv3Rn%{z(0~`y1(uw>d8!hyP?jkB601gW)AP
z{zR=M!?K_~y}C_`gL<G#@F7~mJM%>`&ED+@0wRx4%WCiW04nrRp9hnU6lLMZXxFGO
z$wVNRDS_c~-!?*48y?Q!xr6}d95B+0pit{WbngDuAA{~6vu>I%1dH}~HT&L1uLLOm
zw9dL&H#TxJi4Vtt4Y(q1l|BA=6{wKS!U|VqgfKqpeYu&pURyy;2#6H@O!qY}2d!|!
zRz)Q6KQr#Iv{ARakk+orzgML0zCcu}Iu1l9o_-#<m7Kcj$zyiqn&tYx4vYEjAg~js
zq-Ya1O1?<M!}T-qbDt!M{kWC5xm2)VtXqHqV?JbJSfhLdkZn&PCMfyj=V13!Z>H)q
z_#a_2QEl-7>54r2?>Cj%Vbd``8nu*N6ondAMn21yKEt8vPh7)w*=UoDXzqd^Jv>m}
zzMhiDX=n97>a|dxg5<=Daa~U9;2qh`;LTg(ubK~}+D%UL1rD9M7He&SUYJ4>J!!r+
zz_6cYq3@<8cBLHeIzSzPlWUb3z1OfqwD@oWYVrG@qXSSEIjkhF$Y$hti52poRLHE7
zzy}nKy{c~<N^mQ7@N6J!n?B-iAQgQ5trNzb5na3dI&lZballU!mA`ZV-I-ktNBpa}
zZfBYJDx*%hTi}9eIYA)DeAFmTb1WyPt#Lf(eQ;V?nH|@uevFByZ}!cD4|EG!2~o&z
zU6=RHHPZpC)2}VP#PBDRNl2|#&+Nv>*#k^)w3$z20+L%&N4aOz$+Y`gqXpMo2`vR?
z4MsYq>BZ9!F8J*<3n)=|;-~ArE~2lftqq3kALi3GGxJ!%w>JEUiS!1ra*2--Dis^Q
z7A{raT1!HCCjvM+W@N!%c>nA19d0$|<D^JzQu)#>-@dG5U{BatW|$B-@;0X7c+Vnd
zI(63Ef5xp&z-uv5Kw~l;;l4{#^wDa7lIgF|J=<W%Q`GM%AwzM%)|IkymIvf2@QWgA
zbqw4NHi*|cnNm4YPZh0_iP4I@lax#(KJ9S3b`0CCC%hdx?n5gUuWjs-1~Jt=Kjm9r
zO+1DDD5+$uUzn;ouxe_NE4`+gqT-%bH#_A4GPhbcn<TvKn)RknkhsZL>Nc_Q=HE7c
zd_TP3j@O1d8hnyGCbmPY%UMR|b;Jx;#cKdEObZp#M+mb%MUC44VkiFMnvhnu41?*B
zsy0DI14?s7tP(~O>&@gI-p)HDGst~;p?SH=+tPGmdP(nl=;4=ma<ba-Ei&r-5@&U}
zv2)HQbkX%t-|Osqhku5OAJgTU-w7G|c`oBD&WhiQba;7z4^=q}y?k^w2K<UoT)ulp
zWsVEJXN$a{mpczH-{;=YNU5teEfDv#+P{Adr+j#fY1_US*lzAp+0}xx8Zk8-h)$>*
zBG}NLLS?<=h1Dg4dDBd>DZK|TzvulQMQ0w!<p02NlA|z{Z^VpBxsP&8n5!I>5DH=L
zoO93I_gO-6<&L?<%x!LxQ0Cs;$}#snbMLp`zx#L3_Iy6?<Mr-)<VsHJMRkyZ=lR!U
zb#fq<81ug;X!*o`xCZ7g@&9s0gc6Bx$rZ5F&BKRzSXlSVDQmiv_-*Q18X;&!vR$p7
zOXl4TY{L023)<5RSIiAmUTo?=Q0DtmL-TfGk5_@;ceaYg1al=UZtj2^+<ySKq5p!M
zesRvLzi9%#jxMb2Z{9frpBZn|$Bjtmbu0Fl>(n+{(F^@{4z@#%6coKo$LaZq<K=Q#
zs@CWRYWYHHM_o@o)PnmsjjmvtXi04bK&lsP$dS0hRto~FM#hR7*GR{3j#(4&y@+_N
zNb*06s_bXbEn)8IcfTEq=-wf%?4J^D3!DVZSe(=o8KUZe;I-zco~C7v;+Yv_%aAhD
zljG1w#HO~r1K!@%|Imess5a5(t2Il&%G(BsS11M*|7KHn(Ut&%YQuF_*uOiOL!hUv
zR|=c0BsUAk^}f+otajgGdS(`&TF4bGRJb9pvUq~L%lc<%q1Q_^GJCnw8~<(oMa}u{
zwFJNs1j`LvE&;%)#S;{cpbIB0sa?i=pTxsN&8tAEa^Hll<wYuY0U`4D`(9$^zi5<X
z;yu1haSNw^Mr6T%Ma*z9$`@-2zz3>1e~FO&AzzwANL4hU#o3TbFTr)$aqM$VyUz+x
z4N44nv``~)JG=7x!Fp!gKE76=d4^b`8M4px2e5>A#RLl6`}(zk=EahOEmALRWB*A(
z^Lo>2#>hC|jeOyB8CKj;(y}uQc?HXlkJ(OI^i}(rXOA=%jkL*>9}aRn3wmd;kFU~l
zeEqA(->~m~nveeBvS}kqJV(03^LPI32P+;pt<#R{1yi$)L(e(uuHHCkKRAz=Hoo+p
zH>k)awt#L<AhNMbV!>x}U%Ck6uDYsyb4mOp1#oM%YLPbjg_v7wArZMVA-;0hI(+~<
zI?Cj3Mit(0z!M(h{F5M=Yg1K6_`^3$PI|_F3A7yFcN40{ujeUv!DXgi=uo0D828im
zZwV>cAAE=V;5$BJc83riYst+U%X^&lR~H;bRnuQ%;$SblfV7t<t-qH;#iTczXQiPO
zVg{yb&bs_rkf(pHOmKnIP5&f~(|N5;M@i#M0ZnKA--q%j;hUKWY+MwY&E55p441=*
zBF(!d6b@z~rU+O^^Q)`6tH!$NNzb0lEu)Z3_-BJb*{o-JWjfmHELo?q;S_Q_D;C;V
zqEJlNU6Bcu4R@K#5s!Bj`PIDfVz5!{o7qer4an8p{@)#55#a3d#WIw{?oT=u<_Owd
zr1v?>@50TMvTG>79iOjJVJ+6~s04iVv7wu9y?!LbU+$AQm>3-}lY^sfxi)-X=z=p+
z{eIrGF55EK#ivmITgw6xp=%$HZ;H%!En6tL*3j(B9kxj^4Kq8*A4-^wGrQC!rYm(D
zizhzh$WrXHJKr%CKJL_e|AIHlLDF=k#;1Ma>gy<D|J4CSq_T*pcVKj3{qwg8T7{u2
z>yV*ZZ<@6GbspRSDLUey^@PbEbgfb+N7qI53>@B>&dXsNP8q0y2`7tfW4>ARfx;kl
zBi?$kmpHQG$Xi%ITGW4>6qLvV?BI3{ipEmn-bRhKde*DjHNExwL3Jqcz>|SDEo{7}
zvUgnQQKnp2GE(VO<FAHT`~@yY(YceKU1PCWktq1(A^ZrrxL46I7bb3=qcR9J%^XjS
z2X6hLS310BQnPyc4qXR_wXlutRNdJ#6dOD-H21%#R-9txmcLD<4Dh)SttfwQtuntQ
z04()!5VCD?Gkt0&pvVK-bZyzAn`sT>=Tub3yCsE={8Z)cHcpdj?Di2mHVY)a^*Ie?
zsUkmL-C2v5rk0Y(T;ciKIv22^mA_mwU^_rB*4`6$eN#vO<h40vb`rO5V4N(YERIzt
zfnRJRJDi|>&&M7HS8RrKvpK&B`zEhVYN=F{uWD?!CR6G@G#QuGHQs)~V`pR9-pbnt
z+Z+CsK|9mg%<HRVxji!AeBt5Ji4>60q(B{NyJkv$pkrZP+A7zQ5iB&~Wurv>vp)De
z@{`$RLQwW1xsAxlMqS^o!Y)hox1gvsOet)*^?N-(Uo^MpP}fapS?m}=us6QsGw-hg
z(P-Xh9U4!PUL97ME2Jiw&i4^4q7}uZENMOnm0#S96N>oO=CSQ*zzEK|wvkW8KQ!xJ
zG*vYmV8HYOoZ&G~DYno2Q=aC>e+ygrgLClDO)y!Tig)ydeax=%4b|d&4~%CLoGlxv
zxE74{3~JWG2+c-T9uH-|a8993PrBB<a<ES7-P!+G{1j)5gQR^3`a#F*>xCD%#vrTK
zS%vj+*>AKT7SiTRzJfh_aep+M?cOtJ+0nUn8bjUa!^GYtI^zAc-0!W)RY;yH@9+;}
zdLfX%O~o5V+`LDE^@$*XFZFj-x(%es{<om(2{wL|H6-^W$WusJAs|X1!HUu|H4R$b
zqP*F<!C!jEtesdHTqp~t%KS=#7KXsLt#KZR5IQeA`Uwa-g)WwWr)+Nk?44Ooa;90w
z1W?+1|4m<)KSYGU-_w}b@i;;EOwlC29Ihk2gec}Qj=#Iny5395e(%InnCmx0cOGhJ
zP{}6PHf;n}y0&<ykX!2!@xKKg^*5u6Z;3upnM(X)(zM~5giaV77D%f3gqq^^49(p@
z<aiwM*!UxU7;H3}QEy0(A~KrWjwqh$_30W#JL%E7F8={^WhA7b>hX~@xW&pWP@MIp
z%(*{_3Z{+|gKATNiG9}JH7wwfIRq^;g4f;311>N{gw2uh0gTAJs!DJYJjA~Q5h`V%
zVdxglqp^*QV&K{o8*~5+-C)M2mhV5Qr?HC`rC3a3fZtWiiE&@rG(Y!JsEV#e%Ws|-
zlYcjD4c~N@B@227CbFue^BOqWi$`+Fo`mW18lU_}lPmIL^mecQW4{Ie)+d%hCRLgl
z_LanKXe7UPOe9~ogc)w|U08eX^UL=R7;o<u7*&7;eegNGB2_!FNB+1A$loYD1U)vn
z9zpZS-@5?I^`5j1{VQi{Pd^f`tvclA;4V$gFc7Z|e62;*q5s&Qb2>pz=Sv0^zoDjz
zj_R#hu|bKc%_nb>j96+M(M%3HRYg+=maF#)^?u!<>3`yoET@pdWjwD665#A{E?ydc
zSGkd|a#-v-f7UWc>9t)3ecmw1ZNM8D8#Z+?XI=%V!`@cCjdtd+EWbSw`er6=;;E4(
zN(==Ttf1sbR31eI4go?d-z(z+JAx#kk!jG%U4M&FR#xF0`Az?XKy@6oPQ~o_(-??`
zX>=BFRsjpjj%VkWWc&Ws%<{omw3xR4?~R0}(?3muB=RQqk_qBZ;y7Q@x%91OJ?3Gf
zIRfI%Px=iPcFwcgY0R6S?2-RcPLL7Hlg&F_<W2tITbC2_rzXEW?Yx7xa6zD;leA!t
z%MJ1=nYR5<lYD#fqG8@QGi%PraXt8S=fZzC`f`XT3@0||wYjl#Ior;dd$DP^c5#y=
ze%>YC!E!OglD>876ugD%#I^4+A1?==i1+30?VO{P)QQ(0X^`2;3oHw+WIJ+t_9ZUn
zP$&3wbeC0Wk9Ak+xZzUt*!+^7-1#ys+2sMYQTN8`=|LLlv?usH;qO5%8It|^czA%W
zKdCq2Z!p<Yi9YyHBX}%`+<v^48)bemZeD1&5Ug}oqoi5P7qlo7L^J1ipmp41ey*n2
z6u0m8m+XXU1I&{Gb0cz3(sM(1F6MS3l}`A{OMGC6n%%w+CG2gNg0rCSkBZZSa;#4&
zV`Gn9<m5jak2N~SG@jMq9{L(kDiW|sYm*tl^beprYfWqYR6rk?87?36nN>_*{x0~}
z^>!WDSSrY9t%-2b0cc?dru+>(lC<d7B-{u{f<<|$NV@GfeYp|?6_k=Kb<Y3JYM%8#
z*Z9L2k7t#&O$VcFR_#ezMP)0+p=Ssb5#{%)2$a`>$u9S=$3$@rG$GSQtcP1Z@An=E
zM5?XSvbcW+S%o9uyQ^2*x;Uqyf6GYa$nZv!GQ6IL#>Z1+xP93pqSin+;{}?ld&1f<
zr-1tCalP5E-3ITJY>URby0C>Q!M6-z>J}dG8&VmUob_%H)Wr6z9EJnyi|&GRaPbO%
zXAnsk2fJ<>0b=x@5H+GkZe!HbzxG*g`%EnjuL@mwL3Fa7s;#v#!TYX%0Z_Q>DApXp
zP3ZEScgcoIMgm6y2@6%Zg%^tOhp@C@1#n0mBm-nL^Wok+r7953o2inPABUkeN$!2_
zZ8TXTmr9u})D}W?P>7$(6iF1@Di*gz^?lRH4mtDmUs>FBgoQgkKThr{23kYuwbJ;;
z;pNj`Pv_Q5QoA9Pm))hrM1cs4hWAQ=^YH}V#0t92`TXxHmw`>$WDI{7dGDu|mMBXB
z)_N|C$2UyZxjIRtBB{81HuLnkL#(Yn@b>=pMqy;M3V4=t#jPEGdezxuWm;4TQXAP|
z+0GAc#Wf^|B`~i$ZwbSO9O;y!<JRQLC?&N6&$GUj7%`U4R1mmT4g)}I&NqhMT;*Pq
z)B7WeF;F@gY*mh1#iZgo4wzwXI<VR1a<NVZll#DwO3UabilytdgP_3@@G}>@uos(D
zKKu^G!_KkWNGDBh6ZuiKwfcIRzID*2Rf#XXm9BNHkI=d~m4$_)d7M;IY0p;*{$k~G
za03C!KTGtsYFwC-yJ(R&&zg4aKE@Zn@$nX+vFPT6#>NmnkbW-!U2D1tp5_W&8o6SW
z{u<7qf0wl6PY}Esu(_W}-eZA;@?1VB+NJhc%)UY%7gq|$1}`(5@xK7Sh>$v+N;zBk
z@4Ioye+=^K>x;K?32QBRpK4eE+*Wdr5ek3$nqq3{B7;^&GpbL*w>*^Td7q={IxN#*
zpGM-)0<MzNJn!>y2X$s@&8O8+t)8+#?NS^|js8BV<521(@d)BTlEX4Pcm-!b+T*uL
zTcz2bw8D?HV5JEe%P2jPH+v%YnL3A>FE>MSai%NIdl*q4vPj64nWC~d9=x3WrNUjc
zrocJrIy~67d@EYr`|JPnZXdPQz>T=7$RoL?dHMCdr@%06#JD${FW=fvT$gyR|1%D;
z<gawudgw3m-*3TtjD=;xihErQN8&+yn!9J_$AQNc^QWR4n&hJcfdH{0_R}d`+x7ov
zkvu1vj^D<x%bmF^L^ycuPPQL8wbPlOj--91OFMg9#y!()rPO#W)Qfrdv_lxxv4LvW
z7L03io22SEe7g6PNy*QB%)0eTpgT%9$AuSqx=+g@w|7%Gr%1WQ==jdsf9Sw%&s-$-
zxz3O9OxE0s3alB}YOd<dtF5P}kZ@O1u+*;i$9sd~lxA$NzCtuu=M@kG#^C1Ok5sBe
z>ypY>uLyuo<eThf^M%JR*u6+)abajm8qCAd>$!~A*7f?z!H60fNf;GwOZg)nJ`~ji
zTHUm+(nYuaBG69;F@XCmg^x7NvZmB!FMJ@lR)q5e)i-46HRA~9zu7DjZkG%u6|;Lc
z=PvMd2>ao|b)(^d_+Wt~cNyKRM^A{j`^kPiSj2Djbl!O7yc@(~{NPA%%8R_-BCJ($
z{B)g8Up(MG_z^4|8Qya{YRLP5=EI?LJE~48HGJ#Vy#oCC-p&4ZTRA8Io4+e%!-BT6
z#21tQDrL?huIk-bc|g74TM+<oc|6y$Tr?V4AKtBgGRK@LY;R*U^xCH8mDEifc!@@x
z>TQqNSvFdz=jrU)4RMs8DV(rMH^ejGU?i*b-Kyq;QRY?+lg}n!LPg-s(btjN3yl4Z
zZCG9IytHfLD0iz=WJ~3$F%WC1@cFhI#wx%~1C?Cd4D}{6P^L<6^G+qsd@_*oGvhPB
zJP0t#`mnX+u8O;hI-KtSlt9#hYT+3R2N)X&3%E?aU#^Pg8-@+`hGVt=6XEDxRcRoR
zwW9I!st<QnIrEh?#Cxw#!;?C#{3CTWDnSy<*-vk<-Fix*1f#TDFpG#zz#CsuOd!Rf
z!Kcppm{v=<-)sgN9v%ymKga1_@p{vncPXC+eVUQ<AVOX5U7Itz*R<o6=i8@K`H6e&
zqaQq_9JvotP11Ssvb~ftZ<>Bs4`DGXwfS<$HD?mN*~}{Y74Zya`a^5u_JZeW%bA+T
zckyIf>umCcYCEMC`ya4gvffIz+*-=xyWs*FY1-~HjMIz3Q?jrH5654>K&N(bW?BUw
zu3EsYrLpmqkA6h4vo&|Orx3ErgG^D%Xp=V;!(KAK$#YdZ6@VX&W}O*?V}N%C@cdDt
z#&2S)0Mw-7Y65e13=&b`Zb)wx;%tDjc!+X<YUZH~t12{Kky2e7y6K#9cpesGdJXI_
z$rj_>zH`>rzMJp!d!rJk=_|G@@fkUb!A|l+*4=)z4k6CvM;b}J?r|Trx$ntROh-xJ
zvRCPxE%H`^e4|khO7JBQ=$Nsn%3l?W5jLf<Xb)DErYdP;D{?XgxP9lZ)QE^LiTz~N
zN>xVvnRM%un})>h6CSa7QI9f@z%BN7JHN&j8`}KBSXz@7$mA36zy6A~;Yuf``i>gV
z7cX%G#B-y+TLjv<(<u<-w6b?sGWhawz&dY2iOb}2@ow;WZ~&{~NhhtM`=sg<wj7p%
zN3d_(3UiBJ@16LL=GYVe1!x>h&UWR_KkS|6Fq>4!e+-;XBqVslYI3r-AAlA^&HkON
z#rNjTT31qs9NonEv18blZjQ?|9=7ssH4Y^@Rk|y8I4|lsDfKm~<~c}Um$g#Ct~cz)
zH09EsJ2%lmG)h!&oxcjb>o;=0PL7k)(zp85T0WD;N#0DOJZbs<BYnmQxtIO7wFqVW
z1)>5!>4ByCN=+S#f68->0bX+viyf@yhC|ln)IhVx`;_KfsNkDikp>Iiiljo>@@pn8
zvK4(3540yg;twNUB6e)yDW}%R81rtr4SnXRZL}A)LYOGs%VFb(%~X;JvlSqz)f+fQ
zdhaRg9?vyK2sm$1*Q4aDV{DV6^6UaAiRy^~P3LgV?EX7j<g<42*%&?Bm7l(S^T)to
z8b!p(C4bOAesS$R+}|_G4PP@UJn@9wt+cOU&!sZ(trVu`*z<Pp;P3A9up2%gB#_oG
z@8Il!-R^jvj3s*>x1VpdJ1;U1P7bjJ{@+v630hCul~0QcH7672Lkx3+LiX1eKhW|y
z6&)(o=iLij3^?3d>_t4K0$nynJtfFbw4d(rklj6w$#Xjw+<gPnuI*ZYqxQhg-Qvr!
z+^}Fm0@?j|=soWOeeeSP1m=yGK5m@%Iag#{?GLgW4VBETDk`_y*cfv(vhpH4c$a0h
z$%u!3p4=O>*=rwvSe~W@h`U4Xde6H|2-+qrV9(Q)Xo635$PQhfum-+T>AMJv0?kO?
z-!(NfcCPerv9uo?-0&CEX`wmZh>mH21m_0{+E|L(hyQrk>ghM=^~n$BRt|Cl3t90@
zmIU;uzb__8;{}#|J?ev%s%WI~q3dXQ`EPzfu^<6n;O$L2_TL}s=i@XJE2*j!(cn92
zROd6l{43^6X1{gPg=AjgOCzvK@lW)WEM<duR6=6ec86z(LkQ)mn_#*o;F8x$D6{=g
zZk=J%{JuJ)m=phf(`2QUX!d&)77?8V02aUcUSq_u>N7Ru?VmJ-4l#<?s<ufz{Vpq8
z#OAkZS>eK5#Q-f}rd~Pr_df)CDUZj1Kddok5>>T#Uynb_zk=h&n(>{pGQJQ>u~?t~
zo$%dm_~aR{nh+~s+U3heGv=&fCrcid%*cg=2V}?0#82yO``ubd<&N4<eQEP$c^pS#
zBWS<P(eW|9U;hC@`B*@4=7&a|{V0>oqZfVuKiWQxD!h)pM}%wjsmU|1+TtS#3roWs
zFtMfUf!luW>)Tn7e>d&_prBf2PNQ|oX)~7PS(V>hhTg9IgRA+@jh8UMi)Ff#RUWWH
zh8`n2-%VRsX#Y)&+lRMW(Wl-;MfWwQgTD1oJ0D2;10PZ}f*5fc;5e?AK_iA9+&>V}
z$Lr&p%+*<kQTsfS;+*e&C=4A3C=VTIb1z<b<)va{)&3Y9((Tf_lTXohN)R@cx2J4d
zWG#S`I^qfa2kSQ4-OrM?$gKg4B%ikpA$CnK`Es8q$Zc}+>{{6s%jMj<eF{rt?kha~
z@}J0dP<&&Dn#{r7l`Dp=BU;d0p@PEOpE-1B-TzSr*sA<!r`m>8nVICRo$x0L$7Whv
zf6-2-qF(T~_QNg)12oFoPb>6CA8DD)D}ehVccud2qxTn;?#!l!RH$KuK*n%M*C0U(
z#<`jOstK*&Zvrg7MR-*D-PtQXgo<r4SmDT#G9Xo|EIDbc%~*s#Z2!97I~qq&<IXI4
zxPjion8GZM_OGiOZvGiDg5&i_bN!TU%G;T=f>$w#kkopm51yDMk6Nchz45|d2TNHT
z__Q>BP5w8N?hf#+C3KjM;g5iY2Hl*;^^hOi=q)5<q$VRrLtZ)aSttSDFt4ib`-xZ$
zsfVj^H!1Y<9z;^WJz&T8^mkWNdnXPcA6nY>203zChx92AqV2l8<m}-3=g;2q4uiqT
z*W8NX<9)u0v5=ic(CBf;ld?O!<O`Ax3Fb{6CKI5?OB(FQmz0SvLopyHO5q)h7$dR&
z|K*E+-SWqh<Rk0j<K=mt^Bn%&@rLW?O5`5-UGl{r@4su-iXac~l^l&gUXZpO0GO8)
zkfufZ(FGw*^?J1?3;#qGxXdfSPI$BnQ5cXj&=FnF=UVH+cFSPCyCPZ)4j{C}1f+Xu
z9l=)eJ-`xkRWAB@)Y)<y-u8`I!H^mpTX*)BREl9$qY~5exG<Ue)fN1fdVFOZ98{}z
zt0COK{#5l#Fv6W$fvVi}A9rRi61%HnJ8r2-1CtVG!5d&vVgjPIlm1Qfr#p@v?`XhZ
z>^dd#od8dam2Jr`6Wr*gw)+U<_Op3F)t~L1Dj^E)aUYvy$(Y9SZ{%^!ByC&C>yw_G
z^G^2m=YuWH&Fl|^zDni>@clb{qfuYEHMVEB13lULwI%acHv56k5mVb~3Tmi*>ryrI
z7(Y+ByQ>3;gdN3jcI^B^4S5%Y_f8=;CD^%wf9Jzm^se90CX|z3>7-8wPlvhm<}YSw
zyCkBzYX+h^gwvR>-aCJp1`DNqRM?QK513YKYujHIA9baK|GlOfkMX^VU7n2t{v#{L
z%TV;OMA7Zjb;I`S^?56E3ck>I{JQD=R|&}m_pP%Pl}G>NiD~^mEq=rKKjmUOVc4-!
zr@Gc23k?6f;r@}>5DO(k*5>qM#m3PdIWtfE2r6Nf|7LX8YLutgjngZ{*#?=vr4wJ-
z?cUe!<dYzEmNmke)*4<gR`1$qm(4Rz$jG5urF-M+(64cAOYKjdV|&_%JI}S9-h{k&
zr+O$}%VaaFYzU1fj_o@;$?wek%5OTNm3vZM^tuwuR64!J_mr(O)p+dtwZ`Xa72z$z
zL04YqVfDrE%Ix(E`|D|JZ)4|kMV^*`P%ikhHfz<-Vm3aOZh17v0n=QeSL-Oexaq5w
zVR0_b&2N$w>DQv#dqJq4+-)~slBPh1uCHY)E37d>!0Yp<61s}g%qo-@?VyT+^pfp|
z0b<^*Ty|jILi~UJ<MzuovHAl$oJ+bh`rn#5F5+E~!f@aIR>&!2S=CTOCaL$K$(tC<
z0n-wuGWo#=_>qzPG%db}=>Hrl_PO9&1*dC#fn-ttU`}Tfj}-cRNvo~E!6q5kBR$(P
zoe$btQ(t_fq?H*WN`&MVRjjSesE>SX@d>(bgLBZnD{1o!7j8}cOmuJG>n~KtQb#(!
z?6R;C80Eb7s8tzs>*b4*zBfYpld~<pI|_C?w{@KmHzij-){ztqJuVg;U-0j|<DW3z
ztC*~a;qV;1OS84!E{U+OTKlK*2rgb~@DXHaA?+b|&>OX}?w4+lzKsz^JW6s*#IgYo
zxW0ov$AI6a)^-DGDcUa_U)`W<p$L~4s;=8`c0PS5|1GIm_bBvk&ND<Jxy9W)TuYI=
zb4tM8*F~vo0ruvr*43j)fl>{oe^+S*3Psh?G@Gweu6;eRw{xR7rCIB{oH@}JiejGf
z7RzY-QO*`S1Y>tq_XS-Rk+;<bSrGWD5O5f<!}3ffPgrXHp)+dVF8WS?nC*yH68HBh
zuNmc;Zf0D=d3sNb@%Z?=R_8qTWWVVW5=KBj>tPW>;k_R7vy&iR6IiRMv-qIQZe3T+
z6P3aV?~*MASVVA7ylvd;Ufw9*z~eAx<!Z-M${Ob{x+dcV6?iy|vlbsyA39)Li+7Ck
z$`1<BtI3eLUvcyW-eY-ye}VHb;W0Zi2qMtJ4xt-EDO2x9{z#8)Gz%jFFTWDtbsVX(
z{us>E!Q>O8q)Ew+UHI4GY*6i3gTG8q5xf+y*HeUN{mPkppdbVR4;(Bl)ltGk34zT)
zs26;y+{mO4VG4a#D2g&C&Mp5NU0N9zzx^l7pc8xt_Il1a+1Gw^HKSL3*yfJq`^}Jf
z^Jnayu@Fv}sX<<R_%~~Md{AyLAVTk;y&w5WV^pF(2lP7K=%+!uppIE5L(ePSG#~Ut
zB@bQcNxO7mh+dqj$s|HSXA$0(C$csEl60j{t@2G9v4c|8byxSepUUGuEt#YrOdGsB
z;8F<n+HQOh&;3hoGlYG<CT!;tGfl13?hTa-Q#$RCKIRFc*zxE448?XFl~<%D6Q_bd
z^ZY*i@tYnHZ=@A__p5YGN(Nb&(=*N_4q)#7hb#gg@kM4GboHiQRz6HhcF|pp*upTV
zE{^`YYIU+b9f}dZwxQ?6#Aj#jmG_!=CQsXrDblqKi2;6ENTlWN`&n67AT-F{2(iu9
z#4j)lp&VA@qSZfaG>)YD76{l~dxcIUPicp~zQxh1<*eYG;j~bvq4DWYozs%ibE!3a
zrwh{2k{T#t!5AjGJk!hVwB?sUhz2KxRK}q#%)5#bD+q-f=*>bmhI)JSwd{`iUd|A8
zPs?YxS{jN5vpOWY^W|DWdAE!6C3;boJD7+%zkM9PbBs7XawQM;b)G-zlQ27Q4L-74
zOD9vRTdF78$l2iWax*or<MusZ`v-8##X#^0aP{4W1kTpj;=kY|T1!A(O7P)PLpLdK
zo;0l9<+E_Gd$~it+=*_##F6D@W3}BsP4v3|poECYz`4UBnLaD;6vJtmla3-!<GVUs
ze?HBBCn)SF`W$4=tIpfch$~A{&7BN-cX<a9yxCxB;^tB2!5b!}E@T=O$ZL4%z(F!6
zcXl6L`;TXW75`<ks3hpNd3n!!$;^1H-8$bFzqo%9yZrISw8`8)o6zk;mdj2h0jVF=
z>Wzk1Y-L(b$5CSYUqRs4uwRm~v;D|XPiLN|0sxE5ze%2RrJB@$T3w-p5+{L#L4e3)
z$-OBHZ965bB@%=97Oq9|U7e)P<WL3+jNN@!O_N#)$n4oBo?A?}cLP+h2RU)KF!6&y
z#+%W*EjUtQGGG(|;-v?)K6KS3-Wf^CJlVddVMl%UEB*U-lS=@v0;|XpEqABUUx&s4
zgU0s*zF7WeM$k8beT*tn`7FVFQJWR_YJCX3qF*O~d6t!CtYd;!>!C}hyF)Fv=4)&&
z`STwH_k4{{v^ZK6H^$zj-cP&CYg(0lcr#;lvEY`EzRqolOg|&NnXJ63{trek<A{NH
zx->Zfnu?-1a2+9v;Amv<7_s(|cmAy%Rifz8z50Is{$+i7Mnt%%987LkNbs4v033I%
zLd<7Dp_V10oQ21-*X(+C&X`K<pMLB9n&kX163H8M62h_0CHp1enNJN@$BamL5p15;
z_(!1xM!XLzTUyz}GpE&FOQUqSUM%R_q<Qx=^=coob3&_~QrQ3v#m@mAr2R{U2~Aw7
zXY#r?ur@LXAAShDZS92o1R9Dg`U&_EDP`Kl_wcI4y~rm&@1rDP7!9?&X^2;q6TKD8
z`ArPt{@2hN6((@p(^_~0!Yzr`B#t3U4Jci6focEwE2&!z7#W*{Z?m9Z_b#3N<Y0T|
z>1?O*>^o!3zLv=RfZKugzY5PU38pItOE<m{3q<y_^u(l5Uap+b&m5|XHBVNfzKp+T
z<4;P>PmDCe)K@HL$06U+oAq>Vo=zNDz9t}DQNzF2-3)s96MomW&IZSP@#{A#o6Y@Y
zRddq@FT>3(Z><T!?1jN&nLnOK4RyOzy=dod-gKQCBF^9iFh*-vvX4yJZV7yZEOTJf
z&^%Gj?AVm(0s<rcCAjZ?J^t5^{$EJ3pIkx-oX+hJ5~K$Tmrt1dSNl|ZDvvf=_Kk=w
zw$lH>!Y%^vj_IISW)`p4{_-J|-R1*(3Uu-i4?xo>0PAe%5th8rkAXS<zIAYoXeqgV
zndw)ds&8s|mVgXiiBH+{rJk#|=OJY&vhYg|uAX~}U%op=K&(6a1f`-c${au!&0<y+
zdsIrqdSSPX7a^zst*}^)n`W0?tc?eH5v~^_nr;rKXOdVxpTo7Ab0l>6Zk`To;V*yv
z?q=QERGrB8Oqw%po5xY5B8+*ByD!gfzcRAy2?$LLPwTq7h`oA{LAHIY;Z>SNua9^&
z_|V!aS%GQ@&GVj>@zO<fx}=&RRcgTP5_-MN+xM}>K@p@(D{)iB+9Y<jPi_4W;>}Z|
z*xe#(sHE}1rB0^l$fL6T3_%VnnzbHa#Iv1&NrO2Q@Iny5e{mdGxKY{0(lcSogGeZR
zMhLj(pGIgtWoZ^18v3($xO(j4Az*%&AfKAj>EUD|)LdWa|7d@nVtSem`qf1h=lFeW
zWA&l9pQ3~JFNgYL6slN0ZR28sgfyRAEYws*#M6x}u&DpAzIM;+axrgbDSP9{lwHj2
zF>$2OWQ{8~Jh<CK;kX%;x%l|y2e#>G-zTleUW)3)_-gg?#3o<Kg)P7#pIpIuG2E0e
z|8_Y#SbWwybkI`e=-KK3?n};wGov41Xsvfm(>?<+YMHhvKHFYkGI`#740*EKr~(7q
zSC>2G3RP;)w-$?~JgX)7!;YZ-;9Ur~Z1cckD)#&O9SNGWRXb!;g6gdGW14R*R0@f_
zQl-CN_A2AsZ4OwMf}B)g8P6W!9CPJ#Q<Z*CZ2?p3Y2PD5x!Vd(p4$xw^svnyFo84B
zKaGW3)MvZ0{%+IE7nD7@*T=X;yb@#(A`8B;X`Dg(P147WI1hx~t9AIeoH+hyiTg3F
zN!|(N2OgMCHDoyO$9FVtv5A_0ziMdvbd(;8`UBlW!+Ezrn878q@5j7pz+yXN1C<eY
zs43NK58urVy+@?|%5gh3*2XGY%opPe8|s{J+UY}%7tUEs9$2QG6GbeM&6@ac>Ki@#
z0-d&-Av0qTVQ~v3RRh_i{?^zz6yn=Ki<MIAcmv);tZw63YaZHC;T04(?$G-?^4{V6
z_{5(E#3yuZ_&EoZX0wh)G(%SX+l$jH6q>i_n2)xO%=(1sK>D?zC(rj#@^8pR@}JrI
z7@SgRAIROl@4mGo0I1@GVv}NC)wQ8TKEKSGIPaxFRd^9qBn%z<Xank76|a5Gh^(UZ
z3c1haY<KpfZk+>oki5}sxFT_MTi*X#b3MH~mq(lz13KWqabC<ru5OsbN!&u$%)N^B
zTrBF053CVfzI5O3>!iI4ufPune~4Ez`{v3!t<0WNoGY#1YG$2{UKRtl<g8`L<MBay
zhv;1{R5_`JY1byDUZ@zQAiml6RY;{!*wPi9x0oQwhl^zC_xxc;5`LXiQ=`pBCkieh
zz8W8fzPA$CztfBl>$D}6+!4Ir-=F#Cqb}?Q1o|uyM>Iyc`o?eRa{b96_*i5gAdzn=
z|J0#5Hr+;3nt8kluMG9&MERpDdR)+Z&92G=E`QMPYv@C;)z>1oCjg(UQ<Q$&7l=F(
z#g186`~L8U)Q4|UZPwHDdrlOl68d>zxYHf27e6}uMN6#ToqU7$3ODG>yS#G??5-E%
zp9@~~@lw@Z-}taW03`i>IK!(fp^FAcq-1~HR5h(|NDR#MosYJZ>n&*;?R%H}+;-x-
z`F^%(4--Gl^!Acs$ML1c7a!v0yAb}$2gl|?CmfB7Rw0_~5;NX}3^pp4_V={&hlLG`
zz|Q4zlj9CvyIr#XXp)=d?S&*A*ArRy%RE)U;(^Yxe`b0iYaE~5pO`{DUvilKB+OIG
zpGp;<<@~}B#|nM@R7azp#@Iuf_d+L1I*?bp!R}DvznQR`Mb9-LJn;gn)Fgvnf@~ar
z)p%WzWnw2guV&AXvuP1<swa%qpr!!6@F76<i?q8qru7H!d5Fyb(_7V7uP8HTOg`r*
zu8S=j52=<cg|^r0)_psZ-)$4;>{tv>k=p&CUg`Mx6WzDJ`58S1VTnvfg;PW};1k%#
zR#pCRo1WfAig}m#;9K-j?YoNW&`c^Rc#N%B&xbod$J8%f3)p<bJ){|r=%xXfRKKY_
zI$-w6!jl6RRa~;I*YC8d$&hTOgH|?MJgDBC1=|b2=913|qX!fv_42W)@6q*^wLfG!
z?x0o6;}r8tHJ|gnUO`SMOA8N)L7C$ud;S7+x_!CJLe}@`5jMX@-qZ-LwGp~cSM60T
zo;|45e~%R)(r_@G5L6q0a%Y{xwQhUuel%<e8yt_XC`Qw_b*BaQ02h|JM0XF!+XQ=T
zSoPiP^)M;%nFL#rk2lG=G~#~4u?s!oL62L@=^$;J@5Pa{@&4PbX_uGiYmC20%<Z9m
zzn4;ujLIPV3fbF+gjVi9J9()pV>G>Q%t^%HYuhacfJP}%zl93{o#VFoUFLb^%<GG~
zE7_w5uleGa0u$p+coT$B#$|m2suW!_LxEai`dB?p4so}Gk`RTLIw4;*<5F7jw|3su
zq|)9+Y0jy8p;ag#YW8|DY(>s=$giBZmwdvOoku)Y^nOQ@&nkqhmUVq|{2|_W4UX~(
zmm9#4>4vK-V8=(*I^Fk((!WT$vo13K{J)A)B`3I9$yA=k;$=iLr++O$o|))p&{d-W
zVXKReYrXOe(b-aZj+zMRa-v_^PMc6adzhB9rAWAQ0$71Xb9k)8#4D?k2@(4zD1xy*
zuL3$x$y8W`e;>X#`mvys4OD**|2xFAY9j((7hbur+7`jg1>OQCB&lKeIG4C9tfs{h
z#h?F_281ymae%Xa^n9$)z=c(WUo^&Q=|w%-M~!N;@&_7hS}%6K>X~?D52}|%P^!d}
za?4b7K$ZpXKH(f5&BOh#p5Y4eo0!Sxa0s?4yb^>YtYxsn3p*zguO&Eto^-<j;8oIz
z6LC2W2#dK&#N9#P9ABlYv(w%CGgAVwAhuOZtV>+ZGmw;?|Ejf4Y3e;-3y7*7mGQSm
z0$y=uS2gT>*n)II+<%;=A+V3p=VnKH!;*&!y>$3Qpz?TIyk|~ef$J~8lj%0b%rx9X
zXumdguY~mtwAP_`PiBLw4HUo-8YcCtNv<QMX!AEL`tJJgrFr*f;$Q2W%r{?inVNvN
zq}L5VDTsZWjrQqlQIJ<$@uxwPmeX<B=!)M>AHK7Uqfz_T>~p?1?m*iuPAl<S((fNv
zbfyyEJ)9fv%WluYr9VC!s^95OWrUg-mszK7r(dGs`iNx04Xksh*k9qR=|hsx@b02m
z_g6SPh>1Ywf2G+xqMmeGiTkts7!0BR>wBhMhiDxd-)%|hb)0X3{F@iWc3SeD;T^>5
zueIlCc=|efInYY_&fG&uSG$U_&ZRf80)OcA0hnxJ2nc0%xB@tCrk7V5Uh&?|Si!uW
zCdGx#JEiy87Ui5c!h9jdqVQOj+^~6G49O74lyW6DOAm#^_e%?1!6w_!H0Kw7r1Y{F
zpGJja4uP0NH3h_ZWU0>FIgSU8O1*lE)%_C~;jw={!ebU~B9_&etB@h6xj^g9JbI;*
zZSEpZ(&s#V?SfC?$+XRaPz?1?Up2=5FF&Q_pgzB{UcJitA)$b0v1IwKxmwFnYKtgP
zW4dS?y<{6z_0{Jx-h7P=Tz%|ocBK6z=|$6aVHL<Tk2hYBA@<Px-Dn!FOmk>=W=dx}
z8#|V>A1JfdVToA!7jB`Mu1Tk!_t|tPzGXd+ZGs%<%Dg4J`3%{<RILo&8M<1tBsXy_
z`?Aw?v>A}PJ?hW$WWP&6)BCKQhcj@#^}e^@8>I*SIU8v4HZ;;2e~*<I+q_uScsL30
z+{I0)&`lYfJfHQ%D!6(30a`W-#S49ZXzm0H&IFxp)iQJd<6UEZ;`pLvb8^j^o*pYv
zKyuyAqh7d5^WraJP8X~1>wXWlp=1wDzRydyup{S&AI~+jAc;GTi-X2yuGl<@P;8H#
zBREvdNcS4(Q%9NzmACf=s`#L5*uR~rIl;uGiGf{wb|gOA4Is+Fa(UuqTOF|JB*S9b
zGC#$6)*M*xx|n&^ie2*0g|7B(<ZOhGiyGCZQ6o0S^IN6bz2`^Q&0NB*{O_Fm8qSM?
z&gai}6!5c3QL+ZBqnhrbbvt#sKC5_1oQKlHNw7dH@vB2{Ufeh5l_>PZS0C#NVV~AZ
zVvluk-2E62#BeV)%=FQP!4!1olp5h`UY~jk)_uhbVMX)R*=4kO9=DjI5ZtSgaw<j&
zpW!iv$%M>WAFvLNh_#E?VI^oO%iZj&2UaF>VTt^5JBQ;|I9G($06IyTOm*S)<c^7x
z0G!6~%zk>#ruw&erE{(V<#b2-WD*7}-uO}(@el@rYDz+-1EWt?WVomG{7j9$O@9G>
z?Ncqu#6$qcQVP3+-&}v21^Kgd)7ZCSzb{xI%48}!zg(`w6G3%kO<FX>>hB0d(r#X!
zoWX8vcGSnrT5mwg?aU!ile25f%QX!SmEnP4dwBJ4RBmL@`szpnqgxGkh0!CeC$Br@
zikhVLq-bMm3e=T)jd;bH5DHM{jLP!FvH#N7*Bz{rD~qH^Qv+76C0_l`^Al@R-9<OM
zrUt$GPa>r_-|*kIzVg8+je+e$?TSFLEO_I5W8A`3f(FoKFzt`e-zFx$f(AIC{OKZ!
zcAny9iiL^Ud9Ucws<yh?v`oz?CBZhumfmf290+qdb)@y;^K0L^qz_`?%6-9oV;P6K
zK+hki^}GoK@IRBdN~K&#R1^W(SC)u?zl<u=EOS!ut(8DOKuvA?Dkgn+hVJA7c6<Rn
z;R4G3lgFpRhCWq3ZBX-Ns#^-}1&i&T-;n<%aWXdkL>8^`^6tbGak`-JqIPUP%B?a=
z8rP%q={D$6Fu`;#@#WO>$<7D<S1eAre)HwWs0r+NfrVx_Wc0Kk{{-jfO7|u=IK<3p
zj@KNh?`p?BRw5ob?RJ^)2K;dn>xx!FN9LYY2q*OlcFnS%godZSlEe<V(hQ4k_{3wI
z+68vxMp)!Fb$K3-<nWRWYoByIWK9zJq&&%LQTOi`Syz)L587epid~;$kTt~I%Pv;L
zf=lsqKk!Mt`I<xfW7E{2q;XQEbt{(3;->>-V0cgR9sM;xXE$B11JvH1ydE+|Jg;z~
z34(KBj0}|sK@L-Q23oqUYl!s<h%<$1Jk?Z*$-G%rIwfV5@8FI9^+K5OGkEIcHKvmN
zzP>-a4!&U(Ym2&?P@!SSI;8Iynu%`h$vGMtpAdAdB7pn_?`$H(X}hAXi`4zt<And?
z-Dx|JZ_C~$=j@ztt6pIVK41LrA(@_HtH0SM^ah{z{@vrx31JD`4TsP2CP1E6pN+a+
zIy6#XbPG;xD^6csMy+_$I5V+vM3ZG2I(y5`WUi;Y)+Avgo%yh&MQK%(yn4>=!WSi?
z>(N;RWrOvE211g><^>VC(7kz9HIS_}&ROt9o4Y?1?0sIRRVIkq22RI}^_-yH_Ono@
zt!L-(!slCg?ms7S$`6fICP<HxUIXjO5rI0~?8JaOA0g8nt9q5Qs~Id`>gqNsn7G~;
zDve3_XADbH<c+Nwn#f8)uWA3Y+eR?(s#_o6!RmDA!|8T=<R|By$xGm0*^cTs$Mc$h
zI7{=0O~I?VsaheP7xYNMr)%_ZPt6Qi^Ba-(Zz`-6QMB=7mj@{hP`YFKi7N@xtpzW7
zUS`*3sqo7<A1YXOA3|QZAMjXK+#Y<IOpq?mG+t=RJgt^e7I3ghHoNt$6e=EA?4DKp
zQ#GDp;>c|M?(kbgyxlz*x;PLn3a_bKJNO=00l_*;d73o037NkLe8JV)f{0p<^2zxE
zyR+syxK?Mzmoe5Uu%96em5~sHNI1lH4hTO#ypUZ+4@t}U*5XBuq)^a=V3SwuS}mQE
zm?V!<UGv8XM_g}YtvXV8R!Raz5F4+v$Q;BLtdwDysvx}yud#rIy22ImEvUQIZSRey
z2HlLHUcVf{eQ^<s13zw;H)ib4$tk$aL&z|d^Udac2%)LvsHzn7xlL0pr(3Z%^~c)8
zR7v4~4Q9~5kPN@p#<Z?`;Fqh8%fr*5!y8`!gKD^bGih{tT3A}|!s$dOlUgGn)Db|x
z(8{6ciGSvFd`0xin8Yn~U*oTIFO>SS;~Gn89^f_j0m}c1O(hLzx(^xmeSB&l>rb9n
zzf-F-(5oD4YZqTiWcGv^IbQAQw#F$4deFIJ>KGHDu=G}y@slUL>i@;MM^!{$Jc1P|
z6pPir{Z2Fqly`NRw5q``-iTFL_LhyPtW!Vhw;V;x)wWGcYZuN81fU`x!g4B^!JXU7
z!&c^^zf@&$#tXjMB%y=|3+)CYnfP%#VS_^dIeru~R<vFgdseqmE;iXFT2J}<2KQR=
z>)f}`sw%R?r2WHxC?a~;=;l}#S};=GbBVoo;vhv$Vxp6w+*k!LV7F`au+QP}$L-T?
zF4TiFeS%InOtGRcjW1gIvOXn}YPK=4|7m2#ng%0%MBul`uq`7}WX8<w!_^-Kgm*Pl
z-BEu8kL%`=ZcqDV9ppW+sJG3!+>K|+=^C$LBF)zD`JKiDb9&O68BK?&Pc_6cZmfkd
zZoJCu+h}I8{OsW|VX2%&aKDur`0`cSTd7!?Z;6-hRt4Tgy)?AISm19s(|yvG5c%*h
z_A>b`w>6TWW~Oll{f8*pa4gdFQ<X6>lx^}&z!<({Ewwxk%oXFLCGC7yILx>3cvsq=
zO-Ko;yYccrEjoLyG`8jvefDQmcn;+iv^3Vt(HqaUL;f%RH4lF1CAspF#@RgI#5d=+
z<YqH1Htm4>;~!!QamK>6(wp#6Yo10j5kC0zKrOu?H>+yInyq7PQt%>{<7vYz0_g1G
zv=$$~y-|!SXKlTeZ|2=`=Jf9CLp$FuuHmj&=Je|DArzKpM*8yW+DF3LW|V2z@?bDL
z#~09a1evv?ukBS+*qLnyI*0cRAie0qU2}sx5-PWY5}ecGru>bJS8Lv=BP>k(8Yr;X
zN?HvPQ1&%2sfT-|kib%%AYY{`DKdT3`bD8ew{G(--9s(W8b?=IEP6kX%?Hwct043;
zp{~Vaon(dM2|p2UZ1*;wxluiN{*704$oHp6K3-QbL&?)y{(i(W5T~lWlIqq^rfuh^
z(;7RIM^JY3v$J2eP?-p^qq~jWR}dJMZ-wP|WSx7vT{?y>%x{!s{~VZeJ>7MN{j&0(
zJ7FOBsg!5Q+c&`DK&I~xP{j>^m(`tYS-N4|V9GNZ59Lverre=|Ki`{H!_A>J(rOig
zKjQs(w1tCb&l#LPTSh0sJvMUNeKHZFO^uyw$Pa$j3a;o(JFmH#!(rKdYP<)%$*39U
z6^*vc4f{^SwantQ1{&Ieb+fbWRstS;7P?>kZ_Qwe5t}Wtg)FZX-=CQ^hxr>Fi~Wrr
zV~SeUs7lnTl_cF27miQ7L(II=bK+UU4Y@O-A|w^=1FwEivi!QNY0T9))o)gh5mLv^
z3+cIbD@8&u{HLFiyuxs2A@S)Z$pjQWnJigK();m9H2xYmMB>`Dd`2U0bL7nd^~e?f
zPufVYQraA+-q*YV&y2jBdF4M04F`@D3XVQ>19?V6&&*V2H9H$T1CKHMR7ZwLhp#TQ
znQMk<ceZXWpppsFagnQeC{7dcL*j1(mV{s0Ql?y$*s2ZH)DQdE&V;@<W42^a+1C2>
z>!#d$-tk6hCA;Yg{cjdi*HhGEnK@xE4V&jxdZOaHUgDyP->j=1-3T$@-U~LBQ4(3b
z^%Zma_HyIjl}o(bim2Zl^8N=g(NV7#X^ktvraufw!ZDICA7>N8U~R*t*eUAyO1%AJ
zZ}8RW3e6c31IAp%5Zkb2c3l+Q&Y~*3fzbUGt`CgB{_v1Fj`Q8@({FT>>WECTe)oV7
zL$rn;>+GXnwA>V%sO%NE+-UT9>~;-Ud7`8zb$4X{6fxjW^$HUa0F()6%UE)K_|Q$A
zq<$>#8W9T+`#NsMC&zME*X#V!P>1zBZNO%!d)GC$-fL-RlYFF~>Cu<Z%OHcf6_lp)
z%dm|4ufz^%vJMtM86|yzrjwQ%**))isd@3-0{hV`c9qR1PnDR#b==$g#>qi)ElmCB
z-&E(?FMldGj)Dh+QudopDImbzDv9BsG^yrrk|_G%BNep9OP|~8{0F)0MUPr}Rb+;O
z^%b4ZK;Wd!ZOy<NJNnFzx))!qJD;td-kJ#|&OftvG?v*)f~kFA6AOKvr(YvC@g<2f
zFP_@$xTVfn245$IOHB5keCrBCWzzQC1%FpjU>XS3<EwJ5H&-d<ZYVDASy}sNly)TC
zp`cDz=(K$m<QS4+p`)i0#10nSdHE2_1a3F)6r%u^w>6Zv#2z`;n}_x)4!7>US-Hn^
zK9t*Otpkbw8M%Jcz9Nl^ns#Z8>y;mEB|%6{W4MDIf9^h#`I%GjZEo@s|KDYl53Oli
zK)Q3!*lru?LeMnm@}R$g#yMN=4$*aa{=u@2?osj4VqXrlJqVQJyTWn&OGD}9a)k2I
zxC`v`lGM%<M5)~{=LDTPxFmSZi@a68;2!?xFs9%HevkZnH$cy~$Fm?dzVz#05>xuB
ze;JzlVJ4$RJvMxT)R0bR<iQ|A((<)D5;>6LinS#B8Nqt!?Q=qnUVbRZ0{TAiC3+G4
z>o)eFs#rnRiek+eE$3vL@IOml-Tr<R-jgMbE#iHpNg6!Ao3ghF7um*8M@L*H=FA~M
zjJokcGW9SZA#Q!^B5xUWb6S0q&_9W_>{Ne;vDGlF+tT{{y--*=jey``_;YFW!d!Bi
zB|11Q^(eFo|NYgQgio86@7vPK=m-iKv>_)g$)KE`$0Fib>9XnnWU}%2F~Q8RzfRv}
z*1S1hs(zlBC8bl>&mBS3!p}@z4wTld5gcsTGS!1m|6^|F577a=S)9?Fe%ED?;w{_5
zEC(-a^PGEO2>Z}nMICeRG2Hw)XsMOWZS--H+?`po>qV%Wa&>K@h}H4vT#c(v%~ryA
zYszt}KwcI$<wB{k*@ioRASgb~p7PB8MOvlIw9e^(L?FFslK5tbx4P>@TX>}g6v^)p
z7v{`|GR`z3`TmlQ6XC=N*1IQ&5vv~S_`hR}Csf(cpO#j(W{@93Ys0r*`$D(AIWZhy
zP6seHM|!LHk^riDqGArq!G|zK@k1XmnvdyXg&A^q<VM`;$?((bkB6BpI)hf);yxZI
zyp5s-MpE{%DCAjW8*yf}Ej8--ALDg9Tgt2dvhEYlMatHeA8m_nQQVys5$Z}}98D9(
z7sTu%k=%JStUDbK7%~Ri2_)8PN!2JDy|B$quuaX29J_*r!hAw|z^=JfD4!c;lzF`f
z=MEJsmnsw3n`VFNX~oT@-<y`<AD!zQrv)Y6=2TE_6pW@=PV_tjxM&08fMeE9A#hV-
zxXZpDYQ-q$PFXDOmTdMPx?#`F(gcN7v+IobZwXq{!r({ya=%yWfhK30E3<xh&ds;n
z&(goC^o7_E+J*~n*zPw{CW8(AB>tXJSW9UdPV}(mISTyy?%-Kli;zy*>PNo}5LR^7
z58i-h^92NArrJoOw`KUR`d~FG_31i#`t}l7TjNwIB)@NK=J3kU0Ms4}(Acy>x7hAq
z!QT<^_`Bjl7yEyV&k4MKb5RmV8dJ!ZSDc-!Ax@X{;b>V2my&6@BcxBAYYLHl=7*6r
zW=n-p$)~-R1Q=Tz6-Cwa&R6FABL(xG-BdfBpzoXOek|;A6bqvLJvQ*=VL6=T-|znc
zJwd|0K%NPmbP}#~EOeUs!ifG2Eheq#{<?^}UnX#oqJEdu_R9hg(JiwcerCAf4pCxA
zLR%^O=EhagTuIK!l!`aRFVT>Onfs%CkT^O)^iUljwzm+g1F-~w>AAGq=f#|x#n2|G
z&fQ<ip2+nU8!doAJEm-~OW(7oSfK+zXFM9J*C_aQ!B*%R>ZY?ETMx_Z+|spk^k}mS
z8wERQyYRd&h&vm!2V04twterw=G8QI-s_Q1d;%VP@B@G@Y;=0wdg&6}e#afOVJ<r6
zgSi*y%~zhe0#82mlv#Y{e{a3@5?s1?OMz52w};Ll7vb~oyz@@_9TxzuUcCyRoE8^8
zF=2Y<$`#5^z&iL>o_&_)HrVg8)9=Mu5A7m%(Ss1?GO|k^8#;y=oqNyo&r+GwBa07m
zac(7Y5kxNh^Og>~$e{1Fgl$Pziad5?+1r7ZGX9$x7Hw33T58b#t?A3jqqPG;-nG~T
z)w5g-EJR~J3wEeBsG*xbH`sgEcWspU-Sf4<?)6lke}Ekbu$!&`tvvEnYA&lYsk1gp
z=BO5XHnQlyOTKUGaNmW^_7G@Z#cx_o=7MhQIri=VLMgPsFBOMf#=KoT$gulp6d>>o
zMgC^bmX*&8^Tv9+{q7YE!L-jVxPc?MfAvfs?W1mM-|bCHLZyV10Ml;&`)CU@Y@v&7
ze(6%XfcJ*uoX0Ng<!MXLUhKQY*6tHgryYCW9S)$YH=rK7{lfud_Ts!C-lc8V5f1$O
zQs1Q?xxnu8V6k~N6x~~RUbl~2Yn6o_wk12D{Vd2xVT%K^_^z<~2nV$J{Rr&GVSYzG
z7#r-7*PYte)s;fMPO7UD*aP)^7thaUqgq?df8f5edzx?e_k(NaSE;SLbPS-6drpQd
z=fRxwwA0G=&3&-_<%~M1??~m7fM}%?k03l!XR%IpG<~@Y&JxchxvXGypan4$IdLfo
zFzx<`rrjR7wAa4(VN+bxuGm6dkgDG$gDspNo8lWfeYf{_uz@;z6<c-47VNpwP1~Ek
z9bJ1zT)^h(YM;&0u}oJ8W`5GaekisOrObe%dzswO{c--@2VhfqoMD^EV`}BK&}AQ8
zYrDS}U_o9%<TY03QYndJbcOeLwz^bp9Lw7>HY<;wZY?&LVb2Y=7JH$qV5@e(U~_iB
zTkKrqIWA%gbbsv1<04%Hm<6-L<k9PS&WG42-0U{Pqfc*WA%HV1#IX!AsRYiHqK$9S
zF%2A5R~*y0$SsQxHX@K5nN*5u1l|L{M6QW4lFWtHAwPD+(|$+C9Upsa+UDhZkpvrP
zzsWlHLDG^xA2&2kAn$^a`6D^-`8<_~L5fJtQu9Bo=-Y$s*ddqr;u`<>;8o;>6s`GB
z&jK#L$mgp<2jwxBaB?;-&%aCl+feOmZYZG6e_pu!%%DLJrIT(Ifx#LpEx(o9+REBq
z0#ovG?PVVvr)3{{(V?^UED^yN4XWSy+?F5IcCAfMV;+kwaS2KY3$^QWp4Eje*xlYJ
zU2HKnWzDSqZ>8Mp$^=L>^|qyaree$I!R7;gdUOr*y80TdVWVzm*c7{z-t1xD$@5Y7
zLaBZGh~Th~=dqS`&K;g>=GqVa;19x^-~1-(8|}mwe$jsh_uY3d{ICD)N8toBjpR^U
z_13q(m7?@Z)IIQb@l_8z0C!Fc2l{=*#YGHs$(`?+R;75!w8-$S-}<fa_P4(se*3q7
z8{YTc_riPs<WK0Hk9_#U@UoY^3?7)C`|H2{>+s1Zo`8S%mbbwB-uJ$0`(%t__W;l_
z`yk&GtTwQcJppW_wmmdU2M@G=gk8=l3!xVrCo*G$CC<*f2SDbs;}r0r_9O0I0>Gdd
zl@rBQcy6!}&t3b_(euH{gq2sTOZ#k;)g{|b^6K<_pS;d&RNAvAfU{BgKx_ccM&-Jf
zLOiF9vO!!;FsEVz=(g{(pZn~9wf$*<uB!z*pyh{q*hbYYk8K#bbXB^nJ9O9Rf5M0F
zOJhQM>J9lG_AUVM<d+A$I@m5k1hq~%r;pSLq^+w@samEkbbT4%n$+gwFs3&3<rIa&
zC}XdVxlPOI)rBT(LReMS2>sgi*<y1-;juL}*7HKmYJ-g@KQ%39bal#As5Avml`#ZY
zV;wkR2aW$x2b-rW_Nx;F!Uiy_Q=V*l>esFx3^p1tSh@nVbWLsTdMguWqKxaPo2ea6
zSFKa-_gb*nM%}MK=?+ZyLE2Sb!yarFyVBLlBfueb^%wS1kUG$+>{gd7U7K`K#FBD}
zo^P<_+}~frv^O#_J!j0h@*H(d<aIFEw7s{N0_s{xcM|zt`#R7nud))lUa$j=p69+y
z_`3Qtc^uk(9##j+<34O>Za{F5yhe>cpW7&nz+AKgP*YtQ8>SZa_x|wmYV~}^^W0Cv
zo!NmM*sMI3y7~)ys_e8;9veW{e(tja#YTxd+V2vkj$_25rK?7jAM#!5*(mzx2OV4?
zelDHB$7d$-?SV7+v8<UEC!S0!Xi$fx7-A^(wlQiK@3ZycdC(}em7zMiN|}<OwnM3H
zAEZ6g=9j=txMEi)o?9+mgHgBHIP@B9fulK>u^H^pwv%laY>6CLwHEkxtL2CWv({(J
zj4-yisu`Cao5fC(!{F=cSM0uyxu+`>?6J^|oE;HLyE;A<J3Bjcz}nVG$HUWAGo5C1
zE!eqz7hP*<nwIBff@83S04`#;VjE<KQ~VB+LwYZ^K3%C6c#J#gTIDf|ybdLOSKG;X
zY3T-@Zo+e#gv-R#VVhxh@<=6AtS-5IAP^rrxLSF{AErAyQf+&KP36&Gv+cX&k+Jpc
zfWg+W1L!KQJdfg>!>;p8CRVFqQ639jXLcYTXrpSo$|D|Cm(&jAvLJ`|D9@urjQ{D!
zu1()Pj*92+@0Mg`O_BTfP2-Xvm|=mkOEvr<kmG~0G3A>{6W3I0{A0V0llXki&!;gT
zFAO~Q)(E#<2=K>8T=#$J;IcTJ88EZ>flCIlvtr(k?~Zl<$6WUW2(JAoaNE`C=dMc;
z?!GNf4zx5ah;aFcIIOv}3UEdx$}GOOX7=IpbPoW|`o=w}gl;mS$MRQM&Xdx~w4Y6V
zfoz)08|>+K%i5?t-z8_GO0-~8<54%0*C2w=9QqARl8tQLo_685ckpuAavSVu52iiL
zK`|~IN6MHm*lWcROOCIgi=FMFZ3$#t@Y3k>x@|H@uw{tB;@#0+`u6u_yI2)=(sd^`
z*B(4J?ySL9qTZqMJMX}@i*7Vm&ix4S=$`EZ6r#u3yja+cEwmXD7=eG+U3bH?&t4&W
zbnV(zD#i1zcfA|#zyBqrfBeBH{SSWVLlmKJ9oCmFU4pwN=l`W!Z*8FP>(9&G$-ojW
zUc5+|27mTve^#D_b2p6sfB4~t%jF-P791{5nDF~?a&kiDd~`lcGT@$X>F(*<$p6C8
z1YKC3%1dQ)ZlmSZfo^HG^AK6G@O$!TvFjM!V)OE-@7U=3K0WsB?%G3b)RG<_Y6s}t
z_8la{XAkxzJFwS&+P*`ZP4p?-D7oi`ZBz)YjdFIt+y0piJHQSs*&u!1p>$RGQC?_!
z5+4M6<RyS0KzZsu73m!dn*iqq{U{+GS{|f(h*0U><)vh$BIkbXde|Y1bd71B3CHZ>
z&{_bCK^T>-PzpBtJZm(f!?w%VEo~rE$|osPm)=*6hPDf?g0*M-0p<e{m}3l(TkPi9
z&2#qfV#cc-ya^7QZwsC40HABs{Jr+?<=@W7#bS#K*t0t)Y)&RDrkyl8Km)t)XFsy;
zoUh?%d``>CeV&Va#07qUdu|pHvog`6+u|FkF}E0UHCNsa=*Pgm_Yz%u*uY+|edn6?
zwGSIVrpie2*cR+spC3EyfW_RAFU1yoyI$t(0Ap(hDAq=K{jz%OWovFPVfOc~u9WLr
zx<lt(vwQp!&vh_x=vQmW4tQ*hF6EXMtwn{!&BVMd%FvP5Fi_bcfLg!)GZXmA0`$A!
zxPc-gh0bFczzF|=>rbv$Q9@5^xhG!qmKvd<N;*1MG^&FlI>n(yYYkbPX{zHC>6)Zm
z2^AF}M(Ttjk&}pGRH#o5C{~+-6R0y@%o?;#c`oHG=zS<c*w)prk(`K~>Xb*(c}Ox>
z(<qPxyqT>o0LWs+U>A1-tV|wY)jM=TZOZS2P0DB~U8&ah5as<+Yx@M-YE_+26?<T8
zQd=BC6s(yXg+wQ!TN{nT@1~0z8zGTip9{~m?!IDcv9k;ywzYT}v7I*ouJz%QY-Flf
zL8OEG-ZHiohces!2JrbvH$0TCxGb0pcC2AL(t9$`v!g3G?3rqfuSzt$@cgJ^Q>P(g
zAL(6=%e!a^nkuh+%xnG^x?+ngvX8mtIXX32zUI1whsCDtbrWB!OJOFDx?h3r15xO1
zuvzRD8)y8S8F|!ih;mNl(diOBAR26aJHWb<44v)f%T*>&SG_#qHJgpR_b`{&ij8d)
z%VVa9OzvBq%`3q!fjdRdRc0*RZFJ&D^QtI|Wsf|Kb&PRu2@Vv%MP{-_v|=>Tg38?l
zIGOAQM!T2AH!M4p64kPgVKq7FkKhdTa@>~4-x6Sg3jny7hV~I1-_y0YsD1G`!|@S1
z+A}<Jbqkx56}|7O4qGIkgpqH?b{xeNp4!)JOD9#5$ukQx{=Uvs^^*1jI349)(>`@i
z_dh$m=9Onz#x5M;qC4vvF1VxJ!36+%_Z3H|o`KodByjKn0;W<wXzQtD5|;8?)8DUc
zd0~a<!c3;?Q1{0zXGr8UNTv(F9S<d{jZ*uGql>NkE-l$8JKkwWWrvM}{yZN#9Lu?8
zBxR7jeaxbo)~xOYrr@zu|6R+sF4eBrAQ-Jv?(1z25_p33v<FkO8f~4HP*b^Fs#)!8
z*Zb(trCQ(`?6&c>>kT&SYa`ff&1&0@&-b;$J+@sntMdX~37grkAiMVDuxljrjIPtY
zHnLya$#yLSBkjYcGNIT&c)CQ_!gIxrbai#giEjGslLg~9yx}Y0r7yi7e&k1f1U~%X
z55v3P^-gO4`mg_OYJcr(UrS|p9((LDqV@Y9e2^AkweROY|M~DapYu8JWv_od%a4px
zPfyR9EIvP1#dmw<D_;q(dChC66wt4~^{vFir=NNXe&cO#gWvp(-=OO#_(>Ka5z9A!
z^Ebo4|M&l%N(Gg%p=7<;$YzSZFW<r~FEY#dMt(2yxHTIK2OLjrnleM9lh@u}3Md1(
zIN=x1^iXX6!18Y!gLUKd+|m!}(Ch)w(<Qt2N6roQQ5Mr}kgP_aQ$VC-FjH`Gj9nWQ
zMAv4zg!gy$C5cX6o4piv*{J09&%krp6CiYSN$u;RF72>UN$o%gUHhpvN*C_6?*_XI
zoTiKk<f)A1@cOk0j6T%%=L4`&O@CuQdvvw7eN>)@u=l%kh>a@pYOwV(Su`seM6>o~
zyDS~EO@KqF5j5(A3p@`j9rMfWPQR=5-A$T9?$oZg206@AG<MgfmzveNUl*EdUN6_K
zU)!`CnAe3~4f8tXr9JfPltcd1YF3vT>;_v&dkkSl*U^2XyL$q7Y_NMTg+jM{_<jY^
z(oNbI>*^1keIT4nc)BXKDA;lbTe8@4ZZcIocAu70YK8Ae%Tal>1Bi-k|6U59@~k{R
z2VL=hE5q{)ht;N^wJ++5!IloFT`xwjsa+rALAtbr4f3wq^>M!)NM>J>JvJ&XVS~f=
zQqXqgxtB-P<9#-2pnAu#!5%`bU2k~~&VGg^UCO&{)Jz^1uzMTT&~=|Kb?CZNUI837
z*tw?)((%aZ`3_z3-zCx|X<yz;VVLPT9T{Y>hdQV=>a+Q7!cBjuv#2^JnWp6aQ#woA
z@$tIY7>)eN(vGq>3~TdUGPUbzJUAE!=DZd-ZGH(0b;^T8(b~QnY@EJ4!<M;SYtvh7
zwjKN8ck5%b_1{x+*r45S036*2yEwXLeajebj@{HLA8-@V<#)r3i6Kj>t6+}}HmQ*=
z<u%Hp1u(0*y^jr+=&E#gbW@&Nx(){WjBZ4iT861$Yp_FKCIEKIBVzN|6<ZFK=UyI5
z`>>kmzEJZ&FgAT}k1c?<clJ^cU1E8LMS1mf)po`<h>UdhQV5mjGwdCnD>jRLpDuOj
zt~}pk2PgwAEZ5bydnI^muz(F<*+!L2f{r}SZB%W~#)+wOw{2p_{yRT#m1^Z*zA}<?
zyo~W=UlFZcuTJJundq`Zi}wVe@6`H;&uMc}xqtfi`sR!lHC0}z9mgKi^;=wE*=*s~
z3tVF8Yrp6g__7CXfj{}!8C*L}@XYl@m{w8dg7S^aSr$0tWri|Ggi2p&$9pJqMB3?I
zxrVYegFb^7>tB7_0Jj`Rc;$-+c){HfPS*H+jksJwPBYC6L`VEK@Ios7Y~*_#g@<S2
zd{VmUUJ8SpBVCXVvFrgLnFC0->G{{rl4L4Gngj2%QF+IAN!x`w&;|^ArhK3tI%XJ?
zmRHg-g)Cx6sab6fOGzz3p%Is{eRvZjm0df@Mp&+M9-wBCf_c6Mn)K@4H}@m<C2Y{z
z)!4%xYd!6>(7x0+=olx|z@yl9Uh0<9v!FdR*lH1*p;?cvO&#+fHT})Am9E*e2X}wd
zpS?eFy={%c?b21QPww7=UFD+JZs_Xy7UggE+<Py5J6>}C{ZwBc>+P$<9BGOh?q0ig
zjoP;2_(x24-+ebZqQBq^z5qUZS^!XoqNR<u3k@Ab=J0R#O^XO$`lVkA*REcLhaP^I
zobTw!4&tDE-t(SEixBtScOU($-@1lQt{=PT5DYDX^c{M*?76XXU3u&rw%m~&^Xxj<
zSsI#iy5IGQG$;8qy0pY|&*#z%P9A-Gs1fI(({624_t{2Iy)J>nUTl!NKiGHCkG1MX
zjFm3_-PK0z(k1h5vv#BBGrF30vwipU+}Z){OYP@Qx-Qs(u%zcg7aIFHdG7MXKF{7S
z*a~*gaF>cb?6dveM#-}+3YH1!Q*c=QJkPPP32-sP<wbC=7u?_#+|Bmo{Gl(qbg#Z_
z4pkJ&yN9~r21m$-_DR0IJi%N-o!jTn@pZAm0(RkQfcDwFTJzMNYU-f5eF3`_Z^1Sb
z1oLcI#@@qbpKkBZOZU4rA8o%Y^#x!zwy@Bi7qIEz!?%|xB8M&8&hotP!{xQz=fNs^
zcA$gubfFzwJ1q3Sgl!jHi(y%i^@7dGqq)FgpL1vz&$WH0E-mR{*AC2|UF`sLu`lUL
z!45ZIqZZnWOn7V^A~fyL$95h)?|lRt^S#eTnFlnwrn&^Jo!E!%M(7%#wF6#P7VSW;
zj)tzhDb`QNcgeJyuakfauI1)FifAe0EMe_nU&yC}MLWPJ9hJ#H(>Kp`UE877vfR}^
zJ2F5peK%Px=+}<q@|m^M`y~}EKG(7^6@2Y`347RuO<%j$E~i0+U*FwgE8n0nuU)Tw
z>oB)@zT98w4&DA2u`9N47`BG4z&s~xa(z=%Td{}s`3GYw?F;up#l9b#$}0<bcGzx6
z9us5J_wGPn)D>EX3EJM?@9BPsF7>f3w0C&!+bgypy0V0=y`SHu?w@f(*!Rh6*kcDm
zOZO!^(0%vD4z%sr&<%fm@=BVV_zA9WMdqcQC!Etlbk+bWUNq-m7@&Zd6r|i31adwD
zn410|?IYfcOV$HrLS^A8MY2sc0v8;xOwelb(m(f(HQaSufQO#o-F-1qKX0)NA?snm
zt|X*&zzj!`$BUY=I>>L3G}wim+}h3=Hh~r((D9E^{`fC07~Fa>!gFpPCM*%|y&X&V
z;9`FyqH_twK<}GmGiNFp0lX(bmUirA%(74tWHazoO92vHDTpJ<UJ9woqkOBz)V{B^
z1704pv#(t{V7`l^$o7um>P>Zs?*`PUFuk+v<HGfiXMs|w%|ye)mS@Fh_#m#GwU>j7
zx(#LnbF&yufho8UC6TIjK|0E{9-FOE?W5~w*ra^s44W+a?s_+BM{E*B-e8kJDa~3a
z?KwACx^>D8-SQr~(gJ~RSGw-Qrstv*q~GRQg|4AyOWR;1|1LJ*Y>{rR*7uC(!_Wj9
z6$h?a;Ctg6-&p2J?|t9<;79+LABB%U@-PKY;qi`lyaVPkAK?vecmq85xzC0F;UE8F
zS_rUCd3xW?DLM45ExCO8GT)C_@OruDTmR}`g}*laeBc8gfIs}hKY&LceT*^=upeB2
z`1WuAcG?TzXMgr*;lT$Vq>@8ghA26wJN{g`a)tWRD1KbLxGGpk7Y$bAE4JYeVVwHg
zoSjnXHv7Kdd2Z;A$JMEi$3FQ<!i&e_k3UW&lXR~Hr302%(gQOIPO-0PQN_!v>Z-~L
z9+({g);^0qcx*dm0-#{G^62Gnv35NiV52&<>wB3h(b);jO2GFXC_uvLT3o34@328W
zf9?8cg6Ed775mw<0|uK0L~46u2YT4V4tVS{`?#<tK+g{JuxW5{T);MVZ2xMX?bmj{
z-%H|wrtYT~^nW^*kU_<Ho&SVk{wHyGlmRM~!8Z=6C`E1pc+^XC2sI5tYpnZdWsPJx
zauLC8ibj-roGwKpbDeUGHg0NxhgxeCYl$C4Tf4p`yx$Wb8EjO?Jf)rKBNS<6KEe^8
z!G_QBHLEp!WFzgiKD<rK*%rFaQ-(AJPU*TcePjW<M$Op4O-X%`bf%hq2Mu=5^U(>k
z#WqXJ895s1=p5LBp{v#@*Sh6fhiyZ3^=&P1oluyxXIme>!N#e=78^KuRi3L+EAk2s
zTh6l-H<U*!uhww1JP&=I8+q*MQo#o8z^m#~J7~1JWa(b8$GTU-*6LE4r;(Mt7Q*?`
zowBqq*?}aw(qd~<Sy9)HV%<w&badUN=e(CfyAMQmx-`Rfs4gwosF^Osb}t1@9VBc<
zmu5Vd4_g<T&=n_4>o|0DDLHwCnT^stDuxcWy?QQm-I?Onk=LF)_H6%|&^0dD0Z-TR
z(Vea-Jl~Z%xR2+eOIng<7J=0)SKNF@ou3rf5J!pA!Gr6iy8FsgEXRS-lT>S22JF6_
zONCTNC`Z{2R9*$6Y_UDKc09Q6+>{PMR@U~dU>k~)Etmo8+1a*W(@1HJ7$$k#GIqtP
zeXAp$ORmhZ*S^7(H94$ZvEg%9vI$xb8`G)X988_ESh8ZZs(Np+<GpwfMN)_JW7}-D
zppnx6J)Uo8*lat#oAO-Wt;L>p(ADrfcx)}tm#`OX3)q)r;t*^!;X->FVF5cVU<09R
z+_`5!rE9;vC$ARUGSBC_H0L?g?2V++_jXT!*w_IorxIFhgTbcQRbKb;9G$v-y3ToS
z^}LnGIo((u?c}h^W5urWS~DiFoyJAe^^aa2sn-989yy!-P4qkW#S!W&+4Bc$(MR)L
z((_}g;Xh7e-wln|j-{qQmSV!bXitC<$8cOK;AAaz^G8W>pWbaF*W>v*t_j=q>4Sgw
zCH}^}@h`4;+!fimPEM5Re>%t5h~C%p4Sz!?EJO#{sF>>P%h+Q@S%s@I#>06Y$_UbI
zq_SfJ>qEv^{{)wg@!LMo#=m3QluanHFXS?gPtjSA&l;zDux}(_DPthcjWbhH0hQ%!
z<Z@a_7vkxb%NpR=1>YI3Kbd%N;b=t*6WNRrvn)c)ze`3Y#J>9P5=YF^s1$}~ap*IP
z04cdYgz}&ICrhLd%J|+!MC&4*j?Hw#MCA<~Ik)XlZI?Q6n|8GiP)9e#vE}dQRlymy
z65(mF8QWIgA-83N_1@CAVhgpzoqe|qZG>?b8yg#nG!4*3w$k$qcJElyE6HJK`_3F-
z)L`q;-C(or+Sg8OhOYFxIL7Q^eGs0|<w|pleF+;tU33r{H*|v<jF~%h)qn4}>n?cV
z3ttFt{Hm{nM;`eEIk3+r=d><>WT7iY;NuTE<Zr+IcD6&Or!Y)^Q<=c_SG?ktaL+yW
z!b1-|M9)CS_?LXimlR$j4$Lfg5;F|0UW3!gS^lw)eROi%KSK`wTP|Ltcg95oydRzE
zPfZSREd4`S2-AUk2+-n#E0=@)V1M`CdoR7~=YH<zQuaWUc~zkmVx6Ax`Y-=-a>l>o
zkN+56{_>Yk*k1uJc;55MGrhbPx*8e7EQqiC%CDro3qJnHBk;=U8Ayk_Cc0W|U-1=R
z0q=hIyQ%CEVt?hUUIn+^dTU)kQKLHj;GPPvn%Xhj0%?WilJI%QW^-mQ6Ad<}OV(hk
z{{xJ?p4$$XzV*mCH}W`>H-Mcs%+k3huZ!69UVXN)1G%G1S@qu7s06TRqZAwIrqgq8
zqv*T4WCwJv05y<ehJDFCN*_HtP}&z{LT!|%YlF?vHJJO0Jn47IWAF8Cp3N9}A%KGr
zIGEzovI%fCWH$04%VbM-ymlX9$R<)t2_XWmS1O@;ACzDewM2VC-<1+!w~J-y{LLHi
zMtLm`XrJA*g*JU;AGSPe4F_TO?bf9f4E7mTgU!DSuN<{)b9CnKmihAcW_X}HU%=*%
z$RRO{eFcZZ{!91UzdLN&ZUl_m<=oTBV<+P+3K*ax1JV2?a5QnPD?U$;0!N32r#f<U
z?Mv9oEoN}jTpnYWcKj&0-t)usJ)@0j575^o+uq1~sF^IP%WCNChpys_GiY8W7Ih`)
z$0fH{Ic#1Y3(pBJ%xIy9*CpHDvtRy*u=|j8VScKU=O`^p_OrAbTywtnvExez-;n3n
zcG-cRp0{)j%Qi}%X`Z)uEa`b^UT6<3UF~ErFYuJ^rAW%Q&C(vMOk^D-=n!mf?Qh1z
zv!vEv2XcU*18SgB3QRZryRWy+4m0L-0BACec<oDvmU_Jzdq5}R(j48$Y9q>tB6f4r
zw_;<{mLQuA9CMyyw^GXOERTGDJ@4VjIl(e^*m?B(w%A;>YBqJ2b1rmWvTZkxt&S&m
zW6Mpu#lcRJmgntz(9-nm`L!MPVDI;>JS((qWKFNH^15_Cln9+x2K{@_v1Q;5NQc?8
zwS5>E8_BD58f3gz`-akYt4nR)J-Yfn+ji(4><F)Q@_pa+T?D(d>jb9i!V+C2;%exR
zs1@5V^zrrWKsI__c^*nRsXclw%2aKXe&y9JF;x7Q>tScOKKWjrzPg3evjoRS?3e~|
zGzXcPwTodaFNx+^9067)-?+~L$i5;-N7|jcI%i4{hw2{A({NEzC(y>3d9vn(@!=9X
zyHD1<pnAIDAcB)4S&YCU|I^J!vR}vbGv2R-&Zm#*^~v##4u9Ow10(%$p<|_s6A5bx
z^Md-(^zOKJa5nOSJ>GvhIn+<L80diCUDUm8p+zWrW+Y-V)mRqnIyNke#}ceSbQ4)5
zt&sAK`d!a*FOL<NPWUIC&ZegH6))_xdOnwlDzmB8HL<0f#i+L7{FC=TZwKpssNW{w
zl28d3$Y9%)?6pCM8;R~Mwd+aAY6NDf3#|*<HYf(KH;Y5mZlXiAcKsl=z;iOu^N|D0
zuq4&mMA_P?TG|spf@bi*d$Y%uckBsZYS+`d$(~42u%ok;f>I>NYc$cLy2w_rf$m2#
z6gniSX|0Qwvmh>u%|*>>&|y@%;UaFX4y#kd7HcGHgFU61K_UF7b_uW{y2^e91zXM)
zJ1zKSI2N9dxs6_KYJoeRBQ~n<F4&akP2@Dn#4wcLIZs!rAK#%X9{=Tk@m~;6zw2-Q
zO*;R>x4#{peDcZ334I&cs;kdlq33?l7k*)>CvFcL%!y9wzxB8N7XAJ2|NXz;Tvu$$
zgyGNr?8ETuzy4OZIytu=diWuD*-Kvvci(k4eEC<r9-cQj?EQgG@b|s%ee^FLxc2}q
zLg<1%h(7$ofA|mEKB4{Ms!ZVZxC!wO|L_m*oY!rn#yWK9x)r*9$G3kweCKz3$LwCb
z{`#~)aw1t0|KeZ#i&;CEal%%7HOTW9zvxBqu6Mm_etkKSh;%O#B9B`Cy~v}CL5jR$
z7TpdzP;8X31CaBquD;b3)wL$*&}0T!UFykWqf5JNl-c_Ok8W_B*a2@JwVf8rdNxY!
zr?*j|t*gIiqtJe0pn&Lk&kpFGD%5xC2S!I@+e;P#h#gQHr0qt}HG@LsMX_1Bs*Rap
zGqzv9OF;sH@OrD~9=qD0pz;Xn3zV@449?f1eu(o8B34Tcb-WU2pu$cN1~)*Pf}yp*
z@n<Eq59c+j6Agx!YS(KTeTfd0kAtm4jsT8a%8=HD#wZJoz_4jKij5*Lu&+2z9n@zp
z*RGd#mzGno6XU{S?Rv#V>APZR26;DMliH?_@G4SU$NbQG+lqah`o;nC(W*@uQfx@~
z7!6$|EvMEguXXp8Zp0Vmc^00>9W~a~s5xwD<W*C@8Iw<qS+6SHEH>PDi{w$UiP0<A
zWRj>+WL{pg>nrtm9_P`@wtekVhAhvq@AWFq<W;dz->X(0E4Ef9Ql9Uhv0kF9#nz!~
z#Wu%I8}3=UNju4_%3~I~JDx+R_2HNI{t#@|PB=RdtxR<6K(n_;nqyz}c<yxxM3;JY
zU|6bMuh@q|w-7?tMrD=9j*TkVyp3A012DtBgXfy5A|E=-bHuV#SAQg3GJ7c?&qdc1
zTf=i_qlz5>=%n9?9azmbU88g1d4mn+Hp<$8!PzK_ZJX;}3q{vVP2RC<KkawQ*iZQ`
z9W|5BBo5*r6Zm>8Im~XJqdGOqphZriM1zW_i~eZSok>2A*5U|ZJ-6*EsRhpM^No)<
z`aPEWeY@5I*P;KseURZ(4;$CjSL_<)ZL#yFTK&HFVdH4zVF$KagWXOP@F4j-TFcoI
zwqWQQ99=E8IbDZAYg#YUjqdDXtM%cRc+S`Y^mvZ#SZ{kTb{YK6u+cZL&vV8$?7$WT
z`!cpxCg$>5qjI!;jxB^1n-1fvyw0)VGtqI{U^nlk*!kJ>`#rWLx-ILPV3RsHzI}$R
z%kw@q&Pv#==fe>9W0N?vzAgduWTMh-8GCD^=5(Fj9<E;B(l>XT_#5`gXHVgD`j$NP
zbRx(0_0y4^##zRQG7gHSR(*XJ*;Ei}?fNsRT|bnF_ASk?wC4ZWre@_JnNKkrM9y`i
z(*Sk9f{a-cGFI72<^b2SiEwShGAj9{aP?F+s}9`vc$S2kD_Q{Ao^E9xx`MNelWflV
z!gh4>BUbt@gf-x;o9nz=a1PpjR`@p3BE~e4mTZxc#(0~8mCmzqB1tBn?g6mTu|~;K
zkn9j0i;Rq|&~dAKEv#wsO=Fn}7nKM~smw|29u+}sKR&>>XOfv!Sy-m=2on$5<NTBN
zKc7c#{vBzRq&jZ(ps!I`5Q?Srr;R`_!5@(qZ+U^p)rHPAdnemxnlaoU<J>IIjSdGG
zyRGd_w5Y+ZfmuCl!9AO0r#`zx1Piv1xde-1CnzD5#Yn|osVR$?mJYT(%<F9jOE)*J
zZLon0d~(<_%mb^`L8<L~vB`6xLpS=VPOE~=<exU!qF_swZVT87-ORDFJcpL<x*)9Y
ze(SBb$~fi%nbec%`+?6t+i=FzO7R=)y|Se`mewfhZ2peC!i{q=^8X!w{73NkCqD@n
zj*qAB%r*E6f8j3>FEASb%K;(H-ucdV!bd;)Q8=9(>Ui9L|NZcS7rcO;0Z<o~gXyFE
zUHAdHMyTuiCY2vUFZ&LIlUIA4ov&v1-t;$_b0+t9i>>@?bxF>3v0M4v&`-V@-VW%!
z0h}($^P9at#If7818SojX2qu&6+L-WI}p6CDD6V^Sy*`tUY88Eo()pEc{?z(pN412
zVC~r`fH}{7Aa&11HTH9d9YEU~7i>FtY<h0#-m^hafUr!!4*Ti9OIBu#?Qi<-*s$4m
z381l2!TiK3@TEj$t1*Wkvju?MJSWfqA3J10aKurkSJc6{QF<YSwsRCm^JF>_kNn6v
zki)V8C-MX(WhJH(hgZs~+?BK(!G@E>WQ3C)IC=wr-fL}2!H&<y_otW;hb`O992A=<
zKzTPlEH)CdA`}{R6z15384RVis}RsYQ;mW^vmfCmT`9QsplLZw_re$}ltGO@zk7sG
zg%k(EQ74bF8N0><v2lO3?<QqP`Uoz%HaKiN;pNUlgDuXnIeArPG<453Ezz0i88(d$
zV=m6+)ncRjRi;9vTS?=Y$s_;tu!ZvRZ$F&PV93g&ZI?e-M}aj=B;$cs6_fe6t3l2I
zy1LZbfzar=PoHCK(zp2_TRUK}2S-<;Tdrwh)s8SW+_<)qagNQ(W3aj=&xWd*jg5gc
zw*z)l7k-U;zcuJx8x>3{Yr)p?Ji^=#SfnbCA+^zG)NbfjbVZ`giY|&gGM`i)`MH|1
zmP6Q&jfqjjy}Wm02aG%-7Flq^V=%VAu~E>mQ9}22fI64QnH?xM&+R~~>0s<H%)U!3
zk2-iM#-;wvKkOzv3Jo&XN6)f&#SwS8sEFmMwYYT*Ql~&|`+Ts|Z_j($+p9tYD|g$8
z>p3^==FS7K`=_4o-TXBzHhum+Y`f^57yG^uY;7CB5?$+kH%K@7PdjBkl;``f(f1%P
zW2-W;5Bp*Ad_HXZc&@+yC(^a{Aq&s{RIugdujiM?8<UB{bY-EPzC*mwjs9dr@XYm*
zBH*96lHmFoet$-qTMR21RMB9RKS>#C>9iq8O@HZzGSwtPo#rMH7b~PaXilm`Da%+e
z2VRh;$s&zmMy@N1-$$&}ACei1@i;)E8>yB({x3n<OF^;Wc!$R@nLe>)zk$Si7-*Ty
zY_R3BUjg2a&rdZAfyTtrZl0G-J1que+4Q%J8#B?Hu|joh0Jn3w9$q9I1-nlAdCYCG
zW!{t!u>~ILmr;f+Fi=UP0Bz0x5N4SrS?*s6-HMG6tSU=>?tIf8hI~p-_VILrjez-V
zgW-H|oNu26BZ*v<C~p^-l5P9+yN#+X!Etd%&1%!vm})6n2%(ET<%OEo(3VJT+AX%Y
zT&LWYO4hzhd*YI*4K~wvkFGOpu)H6EmO$-c(`aOk2%ce+cPmar*WS?0%rnk|t!ei%
zA#_!2TH34de4$o2gql(DIiLO6&^t<r4;e7;!>;YccA2{QK*1N8>i+-oFa1*K<5z#}
zSK;$M@AKeAFM1Jt_JrfDZ+$B~^2j6bp7*?`>?4537k%*;!{>kg=TjDd_SNILV(ntf
zwVX-exz3?etq)&#?&yxc={^t~yg4*uLreFx51Y}w?C88*z_zm3RM(W}Mt2tN0Mr08
zZwL13`9c71*G3sTQ0UgN1G})rC0+71%FCmpYp~e84cdXNkqM}Jt^tsWty@<=guS+X
zFI`i+r%F#A_1%)eKC@BA4(#0T#oMS|-z6iD7CVm;5pDJD)Z74o8yQ0^WB{ncNms16
z6CDgvw5S;5jihKCQGG*KLtWZ)Nt2i};#BHFAIV_Tr{`@-&1%NrQ#3YGW4(Ta+w?pf
zupQGz6FgAe8b)Z1^|kcP^|npj=u#J&3B8OhR&2qf<t$(u6x&2cs{bB&u(K7TS5k^{
zmUfPWu$x|#w48wlqn@tUsotin4CYSipxLhg$E~vzw^IL|GeEX3b#UB{l*-F=<q1er
zS6_He*hU`o_G{ONrgnY7M%a05zcndC%5#+o#ctDbkmpJ_#ij;XQ?&}V#3`A*v>dB^
z8i9iHIuLef<xxKP8!=+BLs#7gqG0P_$Md67|2;Pw9+58PT-qC+H}X0ZY$c6M=&JIX
z<=KVjRHHRf?fAj)+{!EJ{aR#VH1ZmZp07pMyd9X;Snpvg203(j&U;iWVblExpy*mj
zaYGp}Ja1Cm6gxnr8__klDQ>7cY6mPfXQMJmMEg)v2RCE8mjc-Vqvus#!w#Oap8M=1
zYok0}wXS}lYwn~D_Ur&g{06s2g|SfuTdI3h=m4X!1C5Pxse{uG=~Cn@o8WDG#+v^l
z)IC*No{xfUy<np@hUYQVy%f|ASR3W(w(q;tEQIGQB?)Q?iJNs1AkX}9JOD&T$jRgd
zdHk6z{KmU4Q}nK8$*BAdlR?FeDmSCZBi4ncn$^hTiH8{dIdW7j+8E@+hSEP1T}w5s
z&-k3vNu$VLDy0FaMs-Hp&Z(@Yn=>dGX3~z1AdCRcV<IfHACa76<SNy$p3alB6IQIR
zy&b9M^=iU8?7}+m`I($++U`bESp^%_q()t$4^3ojnWK|);=Z-MHaa;m;+JfYr6XcL
zTG6*!?PsCumItf@)e7H|%~}saM@+95y{7uw)3Zs>B?TC<l<yGHnd!P(*IM92N5RH>
zCmF0{lN?sTHWs=LLPxHtzLF9QXe+luM~nzQ6P_Opf_3U!=@^BMD3>H}@*RpK6Gs)B
z@?5Y*DO-{S8=tSqHWs?BEgd-$dlY$9Y*eOT<PAoZt|&K0>lHooOz6npOr>My=;I*K
z%9$h9(J`tu|7Ua+tY-$>oQ_%Qy|1Tsp(B0ISzgPzlqA>~`HZ4VxzVi+O<IsHIA$g+
zDxbiq{spU%*CWv##5xF8(j}<}Ka|?_Bk2;+(a;sK5;mh-7F$cls#{D)#=6~bbo+Y6
z+te1iI=x>TtYo8BBCkZp6=fn6Y*@Q~J%}C9Jpdv_zoXN6t=~+H%uiTm2eGZ_JA>y`
zW+P^@VQ8$52rHM-z;`^dk^2#A*B`MwZn=~N*RIFx0xk)1LVBL4oof6~{h>T<@f>w&
zdj6T*kN2)r??)cPVgIK^23VI)rHsL`lnOXI+fV=j^E}fzVmp>hJ;X}b*IHNqjOawz
zQpJYtTg8UwM@NM1Y&u6Qm@T@IbHsWi`xVgqN#ylRZPr@tC)<gmiB5s&xB<;{W^7vu
zrNcb{XfFl)7EI4M5jtMS%_ONW&7$G?@Jbw1SpKN){Q<HlArpG4`7c?svprP?vg?#}
z5$a;o%{pdi4p|4|aa5X*Cv5Nr@O3tdTU{Zx9S<J`ZuvpZ8o6&*JDtmlP*N<?&I^8>
zn$@Q75^S`9&10YSjsFqHl5N-JQ5ysXF}B#CW=z<~+EQLIm|!G_Eu5FGrtgAn343VE
zwb}^d8q6jRZyCQ^o}U|Ak8ZHc^8oYUI(3|ap<B}~b3y^r$g9nmut#YZ=lLP>3eZLy
zW0nDy@p;t)4@`>yZznsBdk^4uoudBHrd_`dk3RY+ZS0GY{uup__uwO5djI`!&pr2)
zjI$YCqd3D4!6uI1C3*C8w{%q=le}7<1GMt$>;M=$&|ovq-m6PH<k1ETSUXU7o_Ex)
z2WJPIOymRU8g^g@CldvGZ0pAtY>uuVzlRWR$bQcHcG$d)3Q+xh!Q5X;_Z?uPWc|Hs
zyAQQd1)FVmGSjmIWnpRoTihX!HozQq&@~&|t^6w=Nt{~;vk((*tc2jg0sz;3l&8y!
zvID)Oco^l7%LqVpPg3UP@?_T@V-qRcw3BnCwyV&ZhnLmXat>xa#4yq-=M10zZtf+l
zF*>TWhixwcZm<o(M3;83`Mnf^ymJw%U}8+eJjG2vVxfa=Ww2pw>sk6<Xj4usPr+l8
z{=pau&J?IGL<Sp-vNY$gNH@=OzP{FnFLVutPU3LyVWU+%|E~0)mag`Ct2r~CLVFBO
z9%Dxyt%P};Jw7z=9?fPW4x1XqC7#dd>gCJ6ThP_R+B?f@Wois<3ZT`s5ZcITtLOW$
z0d(YXk1jP>LYp!f{PTn6jz~t2++(vEqQf3+-_Rc60PL2Fjjn{YG()iiw!MeNv|Gn=
z=wJ&A*vKCD=xXg{#}0%Yy5zA8J8b04M!9DVJLEM;-@#)yID)nPFt_Dimpq-amDhdP
zY@?(HXci8eWqneHIhSsZgGty9mP>$U#D(DmSFWMcadN^PvvU_0d9b?7(WvK%7JiS`
znKoA3BwRe>5)PXUm;73<cySodY2!yM2QpyU3*Kz;c$J7@bdL9r97#my)4#`SEc+1Q
z`Wa_89-|`~9atMYpPZVbl#<#c!o9{#M+NKTJB8KAi}zegZNf?p_CyZ0qY2xv1%ov<
zSZT9*I_LV^n}N$)oo+bzU@O?pHe6=oXd5U4<&^4cGo5JR1Q!_r9bAzdjCj4LBc2~8
zbXYQ83^rb``90X73Pejw$I0JCHOa{tzT!w+rQ;?=vZmM<(Q(BK`-m+FHazfMaQJ(?
z=DOsYGsKdK7PMKnU{kCcrQ?d<3!Q<u?y*8_dX79_0X++`t_GF?qT6(SCUiYJ6FRO&
z61s{N=@`lJhq7=yCZZemO;|_9dL~#s9glDmQsFc6ft}Qwt<sS<0^JgigX1}t7-70%
z<Tv((&o~uq_}-)+XTtL}mnG3ME_gk@6W$*p%D3`-PREsz&x%dyh>K;DgLk{C*dj07
z;CqiEuTik4Mh18xy6}9%o7Ey6D$f}!{^gYDhzl)|oa(1rrt5Z$f{mYR>Bv|jJE~DW
zSJ=Lyz6l%BQFxAYJW{M@BkAwaq)TK6&Z>N(V_$XaWMqdw(hWpDaT>2!k&a1tuGmJa
z_lQmDI86PoSr@iqqgG?2zUiE76xY3{#pg8#FVt@Z)IDj$UTT09NT#3t_F03f-<`#;
zjLg^YCrdv%vMbIhS`~--oM6f_NPBjjhYXEVmSI-x`t8%<Pif73MHck+P58fhZ_;!3
z9dEGN@r$%+d)9M(ctbdRelYi#DMdDYfunn<_m_EOZEfEqo9?q6`LqXJlk;aB|J@@%
z&Dvoa+30#C7%c#%y0EVftzOM)JVsx$dRkON1=l?RMjL=83s<&weR4ruTEbUrS|<|`
zTxx;KLKI=k{hHN;%?3&Vl(H}un~t;bIk>Q@SoC>O78^@Ik1UG$EQJz)CJUoTqtOO&
znOfixY8mIH{R+l3-%9~f4QlYgNM}<2y*M!qHVxccOFeDHR@#xS7z|=~o;ujH-ADEp
z>@m)<iA)rp<6N;5D77AV19IZIlp(DFk+sG;SZqNzeowTpIpcW<ZH@H~_Ui^4$%Mm(
z?azC`3#fz-4kW_#QT)xfy%m1zw|)yg_`wg-k3R-l6kfw${~P}=c+G2H3t#e|eKB0T
zc!Bw7qM0q-K;*HJ*R!))r(CdEp6gx;TE=A-Xlmq9b*Tx0Rh|o7Z4`Kq=K#yK>qi%K
zX!n8edfw<#XfrNUUK^e}UD5zEDh(H^Q+>ws4&CrLwb<nTnT--%!tZ-Bc0jSMM3+=o
z+5p}y>#>zr>D%x9LGmc~du-lD`P%g)GaVasB-tIr(>xE__BP7u5(oIS?{<idQl1kw
zxqs~0s2w~n*douvlHobk{7<Ru*8;n+^>k@#_NsyTcMA_h#fv07ma^WT8yQc8D_2k3
zVUi47cp)a2^f8QFx%J{P+;Wk3DCcy?T7R>Ns_nFI-OFmtYKo@J9Nli6;#~Jx%lG7x
z(#j5f0IfHxjy+9Tjq(n>P!WL_E^2-E(7`sk0feS<YNY2<z3mvyh8xByt*e^sERzqJ
z!A8pXe*-pZx7adB`mSJibj5b9|4z>;ScT5#<oO)C!`8u0Q<XSRBh!JPV)NLSuzkAd
zI+~Sg-|pqn%S4U5&<*bx8@0osy3}HWbJBH5UR54-(S<g-GT3}N)A@OR4tW(j5DlHJ
z9Z1=v<B{>_vR&%b-iPh{be*^BN4Utuf-Y4XBokC`2Ne5(*gh3qqV~oP=qi05yRG^E
z>7v_C8)e&bTi3H^`%}k8osZ}3cj;hkz#mzRCVcwYt27YMi~@Cjs{`a_J=DQP@-G7*
z$`qO$Y}Ym?@V0k9Tb(aKoL)H_`x(UvW)~Dvv7e>vgB)~!VuxQT&!i48xdPkiw^(cJ
zmwSP625Hy6XV^f>VnOw6h0tQB@*JjbDnXIh`M87)40bJ9(ZhyiCsN~d5(h~#*!0;R
zTa4vh3hhCo>X@$Lm1>_abOXKLwJTkt(yfP$%->M4!ET;cy4MY8OS`2z*{D?MHlsV!
z)i21mbeq$)q5GmdF7UiVch7T+%`Yr_Y@qiq$V4!7=jv`9x-Qb)lxDN-23yPX78~n=
zl^NgO!RF{nPEgY~+kS@~<}wjQUUNrY_t^oDZAKSZvIAO*W<l3f9y@fM^L!Z_d@44|
z^W4ZIMX0O&oY?_~Z695wUF}s)8oAce)wUPx2g>8jMmc$86wBBwU3=JC8#UJzoF*Ml
zt2!ss!p%$XJ%Z1BA=k#nSCy$-9pg!MdM(o=&uBIdW|pJ8KXv&Ejps1qDux>5L8xx#
z!2?v9vg-3f=A{cKu%=D2rOvpFD|9?tqDEz|r;clNP?d<(P{-1E3?Y<geh_DK8K;LD
z*{hzFX!{OrlqX5RE^K8EZT52uwH$<<Q&_Co^sU&66Ejzdj@A$2u$6X;-MpK}Mlz{3
z&eK)iv*@ZkTj%R_PTXSibX7hVx?1eJu<hWvmJHd+bDd-Cz*cw;uu~>_bSre<g^ffz
z&FD(S-gHdh<k31QVF%sb|Ni&GJKyzgc<5svCCC5Ot5@OKXP>2LfBYSz{4ZR%0Jq+H
ziEQ2*-td)h-}9aapZ!@cgIjL7rLRjW-$o`pHqy0SbnVIGp*%l8CW6tW(9Gp(5Sz!Q
z5!rinX`dZ9kGx9zY>!ln4cPHa*bcE#A}?K;u=3ckL16(~?$`nKWsDx%joPSBCtVM)
z{mS!TpM8iOxDjm1(|tCoqia37>G9MvS12%uvfe{1zA@3zbNe1<835JME9bT?R;P<V
zt5LN<(sJ;+rk!P1r#kH1X`f6JHEoxXZLOyrI_&^8=3LG~D26>~-(YIj%Lm5}Ph|{U
ze(Jq-AensMDfIhxbkX+gu<_H|`tOR3+UU|)?j_+Wf*TFZ`2LDb>E22}Y>Z!?W3%rD
zbs($*(XyZtDmI@{k(z#M{|#NUrM9DM=}+n6uw{!4ijX($bkiK0@?5b~xzb>;rG+}>
zg)VxnZZydBXy}#;rD}UeCOprJOcd<xyS2ImeQa4D0F7o;x;mM#*ve$e=$gS+C+Cb!
zM!BYjdgXZ;II6sMu!F<itJ&Q0w6z1}etf>jBhd|N?fNQ@P_WJ9wZRs;eX~3+*a4MC
zZwJb|d7gLdfMB25&mxa_X~j0TQ9Jq;8<j&Y)ZJ^N?7JbHo;>EPBG6!K=;rtt0Cw7_
zxt{NMH+jC=0kGIq9vAFD4?Dnad7Skf<O3VDCUJ1r-`viBJ~I8}YIK2JHCYxQB^Fgo
zHeD04@rQ|<NAEXJRXr+^sDT|SI+3<tpjxxK-VfFxiDw~~>$x?Ti|5$5L#k3OVxp$E
ze15buZ4aSo2h*-jBrY~)uxI~Ei!GE7QcYtI<=dT$2xl<Zts*BV-||YgTwf@&-&v=9
zv`8t<WecX*@}qI|QoF&HYk#s|tQu}<mvWPy?)r3*1K#8jz!Hkz4QeTkRIydML4z&F
zDhX;&XFNC9a<C5yZ97ytSHo=YuVhzw%rG|)D$gP2R?em4DzA-{)h~-RTPkl>=z4Uw
z0PM%DBafM6BE#G|w({CaY{h0H#dGPwV*~%>Lf06;J-fvg)DAR9Ze+qBDs5Fy!Rc|w
z4ivhyx)wa$Ed*-^S_{$GsFvs6MuB^)9X2Z0b1#qe?ojEXGNE?5Rce@}LMnE7Tna@4
z8atpowfp)6`{D=4<IF}G8$?i}`!?kAIJOf!P;6d@y6@Rf)pLWbV9J(y{e$)mh@tjX
z^gi_OBHsCI;29Ne>O)16ONdlTmZ)+0-Ik=(xt<N$vQ9Rg-<8_T8evHeidY;|S{Hg&
z(>k@a>q`mMU;=)2VKeRBy3jprrtjdfi6d&UJ=TDq88%nP+_zKIt-)sLx>#@9V7J&x
zyR8-8tD%ndwjDOO0iNePud%*F*Df|kSNvUTfp_bihZ>E)3mef@u^A^{gDs^}BDIUH
zCyxWyO2!CcEa`(kdf+oouV05pKJf|o$VWZ`uY29=%Ki3eBL90lN2jloi3XbwloE&Z
z47>1DeJHU**AkTId2Z#==@QY+U<WU+FyBjI=wZ{o1zYa%Jhip!XLLKj4x9(u%tnbk
z?z00W_-g3ypHcLD2eui{bIk<k*42-3QI~ShMp--1u~8Pgr8{L}Is18#9q5#xw(YA9
z&wbw>o0o}#ZAq6pw%_Yo&wf&-2mQ)HPugbv!sk7jJ98OOw*wLD1fmpfS^?sTVj-3Q
z#uSNDByJ2mk<6({<=TvrMjbiI64SfwDjufWa@qxd^vUpmL{S7zMds_F2vLB#QhO#f
zv(?67I&r}!?V#91IUJpLG@JkXhpAe%+FCV&+NEfXC=wK<rMB8pdj@UAh}EK~y(ubc
z)sDm#qiBuVTSSddt=P3!@q50%|MG`(a!!ut{k-q{e%;rl6;1igZ(LB9v$gC2h@ew?
zfUMXSwlAFuhKNn8+7#OAj`?<>qF6ctAvzjy=3xfYz#$Q&TTvi_C@}v|{rTvrClSH~
z*Yu_O@~#m7d1qF0df=$ODc)hlr6Yb9Tq*wmJnWTD9U~@#2h)L_iN+4LaH7Y0AA%9*
z80=GzNSk1f85}zr7?E*`q+8dlL)fS{q@ycXXR&>vpI(lr7}`I(k8^461DLzBq3#pM
z<nZ3>adMO~e0B_--I(g5nb&`GmCvCv?VhI5MUjX0KzWpl->)AXdu1<3HQe$NF2C>W
z9Y;v%5G;k!4TtYoW&CZ_*(Yv&D0Zv3v%}$5fI(IKPuR-g0?@<9nEB413)aqAtHSoc
zeX}9Fj5<~gYQ8IBSYT(?y-BC8quv|rI#AgXF9l0(%K`lb&L5c^PXs=>Cw=TCSI;vA
zy%XyPxR1NZ<>LAx`FWzV#}mDL?<0Sz+YG{cVI1KOY-Q-lOFDCyX8*C_n7(MGy^1-E
zCim^t_<ue0L}Gi$So_Q~BL&DW)YFg+<t3hj=VRh~5IyZJX1O0254o#LwINvqz0nm}
zZVHC0q1Ldw!$-9UjLB)+wa{5FOx4Fe_zVq|sbVBFBpHHT+AB&4qVtpv()h-BCDcJM
z=Z}x17oA-K6?}tuvHF3dCgx__0v{Cdo!HybOfg&mUcEyzs0#SoKRtKFVzseo=i6~X
zdq^gD?9uWk?47xg^=N{cX|Y!YQk$lpB75wuz){QIYz%@QE-JpRvOQjBlx>MY7lN>Y
z9o>jICOCX^n5Yns$b(vbjQ@E+@=~^ULiTQ|y$a_36fYwlNMY<O`swJ)QDoaf!T1ly
zwzfE9c}Z{~$1jq}?O}e#5KL8h3$IV0Y%lpHwR#21SslJ`=uC6PTXes#ZkKV-udD9B
z<>8k`u;SF+g{iwVr?DcrElxChPof~*rhYH?OAycCg<26FZt>`%1JjkaZU`5q3L{;s
zjl$x$7MRk&yWomA&*eKuhTb$-n`Hw@pAT4fVnA?<!5O6BeZrJwP0l<}FFR3I6GDUo
zXsL#ofsy`1eGl&XWB9Rx-WEqk1dgdR=P(c|4N)A0J|=ShR3{y$`@Hk0M*ksW*a&lM
zoH+-u-U7tXH)c!rUtD|vF4e}U8rs`)`E|wEkvm6R+a&Ti4fd2DJ@nisu*77-xGQD-
zGpm&U<YtE7j`xZZ47V-ZnQSb|;|PgBZZ)qf0#}4E!i^mXSCyv~Z1PLFFv)j!(=W=6
zrC|@|@5j1pAu1qFvk4b$18^e}E>`W~mN!5B<91=)1xTxDjuYNIY*Yn1-sg*nt->-~
z@VAU!kvPknh^0Y)VsrTc_j_r+y0Pd29T|~&HOFt&sr~xj-iaA_A8zY`8fsVVy7SBk
zTDLR)n$I51NQ=vC-|RV@`{6k2V(EIWc$32qzIrz2)7AEYjs?>p4iBBPrHS9+vLLo(
zA6Fs<Xz++OTnrkuhK(GwU5FeUZ9UxfL+fk>eud0Gf{B5J5&*%yS=4t`?0;{M2r`Y5
zmx~Qc=;obJrz$IV7PbD}{eLk0A91*dD#2s<t@^Yjt79`Foc)c@qdA|Exp8Kn(aF7u
z&9mf}TgzvPa4jGPrtcaikEjDGycL*#TfaK#7cDCwPK+=4^RNM52_jn8;I$}72abN*
z(a>KYw?3>PeS!ku=i)`XWPa$jLjl~-cJXBuwV<p{<QuZ9NJmnh-o+xh0oBQwHkLKV
zsf@TR!A^B&(B_6<RmGj$r?Q_omsdW$5sho3@E3I7xToT!^nsTC?^PbUJ<Lr5e!$Ef
zHfTFM^C)_OL8t|{E^L!BS(<u^bn8InR6qEYjtQf+FNx2#R-GI*V(@2hG1=nhSA`o(
zMWIC!39NMSjh<Z|tVR=^7VsDIl_TEg7X)iVp*LOh)izZw+$wpSJSVe*&rAhR&qTW%
ziJcD~=^3vZ=fTMNx56cY;PT3rNO-4R(S>=H23+5*<rUlwFk|;kv!d2;{^l5JpDuty
z?ajk|E}Ez*o2C&7ThU*4rBu;J2ymb*ko?}-aQLlZhuilYo>eDJlfy?h4Xk^FpCDHz
zPFxR(zYl&}Q`%7)cNA);rOjXBKAJlJnBUs^khd8Po%mOlH(8fvYXa}4w+|CjfK~f^
zjjFhFCW??*X=}IfB#PjHRp)v<M#6~_@s-k8@FO~XZDz!~+v~D~9SAJxQN=+-bU&f1
zRdlwo=tRaj6(WI0g7Fy_2S*nI#s*`rh<mqxFB;`#akFk)-Kxm5`tm85G2%Q#XsdK%
ztnYvMn@9W4FNFq45<Bv(_2hs5*6?<nh`OUOWU#DSGVSuSgkHMtLB<<*)d9}z7cp0&
zt)$QG%i}})avc99BR&=mKf9u6Qh2TwHt&8OzlyZi=l8FrpIhat5_~61*&(8zPhe45
zn~$dZ7=a*{|G@F@DMeEV_;vV|p{5fek~Tkib73buFUS$}(Pv(ayh)ZL%L1o`@Ob#&
zq_=erNVgv<XECwgg7>lPF0Na!yrLge`^{kI<*{zgeNVIS-DS-2??>2w8G95phe8M!
z>+Z2!!WmO&lF0$;d}pj_|3<+Vjz(($-w;?LKDm`;jc^%K(n%3E`5<8Y5hXqC$!q~V
zIT_11E24)!bBZ2mveI5KTR;~DU}wlxcW-knB0?P4L|_875b^_^KGuJQE5bp`#)7H`
z3B<&D%D;`E2knkA4j_fkF<~7P*4wOhV#A-(uZ%rZbNLDBVOWI`Vnu7Cy&Kbc`@ftl
z#R2j==J2tI-B*(A*70BDz4t$J_+K<I{-Vwssp~6FD$}z9eic6*)2`!TGfVpjl;s4z
zzeq`P3woG?|C(V@O|=j!AUkJM$V)Oo?8Dxi`TJXoQzwt&tA3*PBY_au2Ld=Vxx-O0
zd?AqTa6CSR?$52d9ck5Nr=`3QA#*7Ucch_`;<U9q$fQ{Ckw6*=4}iVmSo_jNVJT~l
zO{$bRxN#evSS~Ke@pJNr2a)h&b@oAj=LqQMoqJ5#wW^e}Q?*V(4P4;G-3IwPG8j)g
z%nBF4$ba%ciznCJ^M<yYau(Mw@~=5;xCe9YZ+>_8y6yb3OF(}D(7qgvz9eA60E{4E
z)k5VvhZJfdK9dNg<nkl&$Q;6Yd>^_N7Ve=KM#41RF{@Jz9Pp1YWEpNENn?<{H-6_=
zznew|_%3D&uze%DJh$)^LV#jwV0m;s+O|Jho57RvX7-S_O~{(H1Mj3Hl)ZPlPCt(V
z1%~+gkW_$(>&buBux2m=l**gY<A5z?zAA;~$7Zng(aG^Sf^OK{YzPcDQK!HB2@Nj$
zuPLQx3q!Vr(FY-4%I?E7y&s!|$({v+vYV4eNPon`df*Hs!Or4JPyBSF3M4$_6hpNd
zEbUbak?syRrD$m}h1Q=Kojl`?k|>qu2uEnB87bXXVaEXgUMVXT<;s>XxmBN}5!EkK
z4m!qab9eNLu{>w_Ti@-^ZBa^A$B^x&<k{+8mZuZ#iV5GqFCD%rxsmldm^><Xa37Xa
zhYhO~Vgyhi^DD>_`rvr0Dhe+M2}jWi$-w%2UU^r2gHP*HQ(9(dWs-?WbK8G%OWgcp
zXXEkiueZ<jWhZP^WJ)WlzZ&_K;lt4|s1oHc1D4F_mqVV<<!5X0s<B|z{nPbovgkMj
zoueeyxq!v5O;^z4r~0TOgXHdS7s@Z<MTHMs`w>TASD|`X{p*#tqyRVkUg1AoR)rj`
z*K4UJo&}HC&kx}=!;pZS0{r@}{?>>#G@w{DhpkU2U8chK%VOWm9bhtBMK)>Ed++7#
zB5{OBu(bH@&+H+JKQ<NHNy5;*Sjvx<3fTIZL8=Lzu80zp&%+du_e<4MhJ?|dr5|IR
zTTdR&!0%V!@OK^YdV?EzzlY;_;cL{Rck3ZGOR?Ci=C~-?(iOsCd%6D~+F#Nv9CD=6
z^q?(B;|i%A1F*^h^j{V}3cNLb1x!R#e0gwMIr};bW|$Nves9-3$8w%PDkzQ>?kqt$
zRui%Fvqo*VE*503`=R$FOl@b;qG+P1yq-Hc?nKJ@;#-K4GssICV|md$62t&wR+xUk
z3P*@$fCipf6~!YrdI7H=&%72|)dMm3-QrJ0SrD$9G2fJU(|o^hs|stLuJNUwY0Iqd
z_2UF8i#Le6-Sj8gfvj^+2qU)RM%$Hv4SH9NbNx%zpy$gF)6|~Opch;k|H;jUh%ip6
zzry)*ymFh~?XFjot<?RvU3*iiMn7tvrc)fs%3+Lo#X)XmMF+0e&r6EpO-LL-kw9Tf
z@P1UBEwTau06r%L%pS44x>eIAdd$nHDSIRA=o-MyMg9G=#?`Ubws;e+M*)>r9rfaJ
z`!x7=`<?mD`;Gk?-V8|aqTJ07J9m7fxVQce=J#zuzWe=G0^gvLWWWqb#EtQfb-7aZ
z1!}lAKS9EqDRT6iW0xk`iu7|iF_iAGz)ky9pGPOMI-uExA879bAP%_?51t7X>u;7g
z-o}Jml5xjK4IH;JT-*ghkpf$?A1eP_ryF5rvA0#1?U;WkxYgmo_k|UEcCi#F5zaQ8
zM@R}nwBAQbBdo>*OcQ%rA+HlPVsehXE_8n$s4ja)XnVVG14u6MIR~8<6G8fpZ-}|D
z%IP-7+4nba;xi=&#IdJ7i{me*$&o92@N?Zr_h0Iu=O+Ioc1a(l$3;i}@ojv3tqOQ}
zh^}5E%ItoYOx|S1>d^8A?Ol?5{(V~?a?{<kJ$BH_5{G5;?T4988Eti~O}Tu1NAj0`
z7I23m^;zcZJd3b6$N-7|)3Cv#xD3G9qG|jn$jx5r`N@>9#<m4YD@-e7-gZ`Xx`J%M
za$(T6Uks-DXx(>A8BtzC6Wq3>6{^|kJa3U;Pq^h%#Ig0~!N7VOrA1yj<h%6&LIxjt
z_Mgv(XDEft839IMveoZZqPArtx@&`FL%xLKw#Q|XsHL^<O5iuLk~9L1^|qV`<oEGo
zl|`Zh=R;mNg3pry`p-R$zMj}4_yn!R8#0?m`*<KNvfJyHZd<1%`M5?O<pEP5v5uSg
zt?uoo2&i4KD=p*nOt8Bs$~#lGN@-|{W<dH>|D?xpwm(vIw{UZ7?h8l{iJBozj(RkG
zpb9sl%4zdXwi@R@`n^wFRg7(6Ofc*A8*w<%T^u0!^V)cRnKumbxh$|^n0_VG{jmN}
zRCkqdlo^JtX*FT6x~Co9<ImMsQ`uU|0+rq^eG^)V6uYJ_nzkGvkCe^!%{F__j9=Y>
z6OAg9<0nIr>1{qmcFq^|A68nkFH~2wkX)t#PQ=v<5296qCXJW)G2sM8w7Ob!Hbk+$
zR035Lby-u^bA;bqg{B}qyQZue#Eui|UJF{MjcHDoNRl7Vdbr$Yd-inJ@JyXD48#e0
zvH|tQJ}6UH=ky_muduS039lOY?I4|zwioO)+Fn6n`8>SCV+{n-m>faF!#S7Sg}+}=
z8Mkx?OR7fXRXh%9Z(W|9!-x8(mDApL&`%T(V`rvm9p8V<qL~;I|Jc^zk2HdJ5PJOI
zwzjQTZ9JC7leXk6`lit;w=VS7w9fb2br?HKAeez*;NT%At*!!CgvmD4=5@gL1}VK?
zoz=7d>L!15lHFJHv2*d)DamYisIFw7&N&{5Or;B2hmig5UA`RN3<;19PmET|r#LNS
zmu4hXz#+nmJVh(#yQRQhe^Q}VU4~2+<4?2NGy_=Idb(@W^G@*briv`yXW~H*tJQY<
z6a_Lf4qOC!?}-tu|5C)CRco>JPRvsih8@K0c0`<Py8;HozfCdtke>CWUYRLXN{doM
zpyf0=f&P96$2<HO-)m!tR3p&lT+$vAq~n|2LWDSOu40Oiao)3SX6+P`uZwxAhOBPA
z;ew4lgl95<RAf5^angWBaW$kQ4*dY;`!|r=M<M~5Nd<!A%>Irk-adS2T2BVNkeU!L
z0`J6Z8(ql`5x+6hSBQH9(M*V1#-9*ynP@^D#q*tNAjbN4CeNwhCw+yl&G1<uKtZ@r
zEtzDi57=50M*$uWkiu;RoVt{YLc7FTO<rGzMy*g@e5<m_pSm9p$=q)~#vR_#?22wr
zqAjf~hO%^f6^601xGQngMI5z&I^gP+W`p`$1*K+j_uK|uIa`bBb)-I&9&Pj1(Sd=@
zQGfycD4cKiCs?GOr`fJJ+<%t0{kBS29Cm6lJ6SP#n~U^QYoyqAVfoac##pRf_SEz3
zcKk1%V(Iec*Tm>;XTO`X!g%F#3XKNy*9uIT&(W~;RkvwYI4>iKcTub#*ViQKE{X_`
zbhJo9hjoKw9(Ojy><w7hNDvUjI5zlf!vWj)+9kMajB#lO&L+AQZ;J~Zm$r<~WOR7M
z8eBy^<Jk0M_%@7f(2AxV5jm#VQ~ws>?x*M)<l6y`r-L<g(|@p*z%hO8piuGU${t1n
z<{^2MM4#P|6h|s2%+Pg(IUSzb$M*z2rT)vh3`_PDyGC(QU$8c)cw1phxhq|yo_@F$
z=m=H!mG=lr-l=Gjhc0YkE>q_#z?$nDz&#D9e%uNOtxVvqd7n0|A@!os?SsW5OH55%
z{Ia63K*+M_my4^&><tWA(o`Mw@|<V@iFM9C>4_CSQS3h`N#Tx^HH^r|{$+xF!?OJ9
z<z}i~4$+{-+%=q0SJp_2!_7RwfR(*pwh|jVmA<KNr|s;@jg(-hxNhSrR15^Xm@wx`
z@*#XeX*^OGKn|Nd#Zs0Q(|vQSv*xHnUm=tx|4p-Rl4;ON`JiFC557w;u8bKKHWUD^
z2TR#pS2RP|1bTt$_*F+l{p#r_>|^8Z_%$b-P<!-=@jVxY57Ctq@3|vFU#&-s_E<Ip
zOT+3D{k|G*AqmO2GJO3vpVp}xlpVOc0HjyNX+`eQlrTQ=%5J9WgIk&BKrngYMld=4
z`cqwJ(bYvXfH=Oql|K<+f<xcq*lXFMZa3AX9S-Xgy(gd5%6z*9c$V>_Lo9G3yP)OE
zTY_KkikhV{%r<MzYi~Q_gDTxGPeO#oqT@C`$GlX_JFrGj&)(Mz^6M}@F(4VM<Jm8}
zP!<N=p|R05U{K_pqnIK4fE>EGgMpxnd@hZb^-s+4w_pj=vF>i$%Cwar62t2p*J;%s
z2M>L$Z^Js_yvaSc`>xoHGmI!|eW3jXJ0=(r2Wr0sN;V5B7;-luZtI{O9KC`i2>;nT
z+y$h&%93|16qIqbEO1;#=V2h1r)17_^|iA21#<;)9@}g8aOoT053k9}r^JZ8U=8(*
zkyFWfSKSxGszp+^fbAr;aw%$u2VtbJxZW2aV9L?8hG#waazgTi-S}C?ryk+=yo}M6
zc>l##rsy~WD62erg1!Vr`GB(Y*xPzG_iq1B9R65rJsYSqh3zCp(V$<!<gQBIx+EX!
zhxTS>)CD*GdAs#F$7Y_~d=9A}#bW9+x;jVB9OpmUQ2|@1&<Fi~1U=*78*-oFa&#a&
z#vncgM-8bp(V-zrt-|=FC%%izmf$;e0fr7PLd7}3uanEQCG1w8wxt!g%eDYWKiVkU
zn2v4e3WhwA?jiWW0!{{aKuI%vUuhWoAo!e0J1Dvv42dFkj?EJ3T`a5^X50;F{KSh0
zQ}!(sdJOGlGwhY0{ew#$-wnd26L0l-WpWP@MG#@B=ZHGIx_B-OQ{*EqS>RU2OqLE5
zcIi0~7C6m*mKrJmH__`BOLr_jr(!Yqfe-*W0pLp{?6_5OsL+{Z^0cLvujl_JN6oet
z$<t#E4P+M>mkWB>En}`Y5V2467>H%IZy0DcBR$r$T-URnaR}_+JNd;|8z3T5f3xoA
zp*TkxQ*&{7%j{iPWc)S*2$cZBiS2RvBLv=4KOFPkA|^KgO=YM;q5?QtF(fmL&GmLM
zHFHx4R`u|GufwwrMMws-U`vQ`p8*W?Cu?#<?L+#jc<T)nt!%p3kzceAl-eFnI8*(r
znzGW_e+gsOkJWJXJ7t*2&5s`&DvE7{X8HbfYl=r^J*#qDZ?+~Q+Hw@eVaPdJZ%99i
z<H|<p;3Lk({}*Y4oGymF*(TJDwSn<rwybZ=vlU-lkc_A`a<buU)a+>M{h1iD_$Hp;
zzwlTjmX(i$7werEU=Wk<*v;)=*ta;3qVhS)&OWug?3Jbf*+7~~I}fZ3;?+u;FYn}#
z_vB!o8dDpwIgN1i?t53n@K<Vd8nsY@u~n&(mhX=P!9RFnUs8dnU6?qmRh&7KWU7eD
z@u@CqZbYWGKjM?v)<{uZTGZEdC$V}s#tdfBmF{u=A6ZAWqz_LFs08;DucaPI2(iSP
zp~7sn#9&VQ&X^N;s+BEJLQ~AEzsOei^W&Jn3nL>1wyd}~U^navs<FBA^vm&=H-!>9
z4>CdcA}y9|$alAb_N@bwk)qAMu~*Bl5^R;AVE0`@iQY|m?7BvCha<w>;mA@e^4D<E
z_yO=5$f=FoUz%9|rYK1{l=W8akKf4G1&rmU%G#JFCEdGfb?g03rZk!m&23BG`~2U)
zH9H2Cn>QWTpE@XMQ7|UFdgoFOrrg>U91Hzp&`&Ju`|LVqiaF?Cmo>lsC6^X(G<Ov2
zFB@b`PghR@9+Gcl-w$ys3GIK=C%}`o?s_hck5dh={m~-2_v~UQbNw6sXePXv&4BKG
znlJeesmX78&Ng?!R2D(LS33@>b}PsOkGvHm7%{ja8P%Cb!V>6T5eCF^((imEI8w)%
z<P6XJ9Af2p#YH-B(vb9^L$H?WoCNvF)@`HHFrX{_)FHg*pN{KUN-gCNsYgMgFbh=Z
zy69x@dnyO++<lL)Gp4-5GxeJpg;rIs1?IF=9G)X>9c&Shu*@yj-FNRp_peYp;T~P|
z7;z)yU>r&cH2_w2?h<@)hEj9f4(Pr7DP?E+4)hvB>tI(<)>7`_B9CmcBC^vcb_v!p
zjTyoBcaTF~B+lMNcUuYfQlq{?=$>&|$cwzbk!q6W#%N^D1S@!H(BES^A9sC^re4Lw
zrTo~)kA;@Il5R=#7RU?x{V8#ZAl$_otv$9iY6^$mYqiHwgV}~DE|2;552SbVDRuwM
zdWrV6RW`}iPcQQdpMB$0HI-+QlfEv5a|-G4nZ?|kk&AqSl%|SAe(680zWM%B!M6e5
zSaE6Zft6r)A?TqDzKgmL4@Bj=BrfqjnC)mf?DL#=F_o#IR4q?3;Q{F6gdSn~GK%Ig
z(yvd#w3-jg@!j-3IsNPTnL((oba=oU0qL*eEu67~^=s^j>iFLfLnPNgz=L{T#wC2u
zD)AO*%c6!mL_Q^~DC{O5b)y{kf6p^t6$n=r9-{>eg$;^#f{jt~I6{+o#@bMWHJ0=q
zG9td^)}Ywj7}0fFVaq~G_6_cjA3b2k-5B-$rqz8Pcy%QzcB4>a()bo}2Rll2LtpNX
z=^eHQ{`54Gc?Z6tRUie7eL?j;C$O9}W7}|SNOWazqfB3(v^_YMlISgv$EBg!IEQOW
zcX;sZFtVk7!qe$cx|K=021MQdmiL2?5o<H2+7;q5crV508AI-rU+6>xl3Yv~`yXjl
zg-6T+Yfey-io6l-XxllD#i<m=M!&s}9nFM3pOva<#i~ln%~di0#r9|nd9U&J4Q);!
z*Jhq?9<GO1e13SlYIVh6t;Oucx-}mkV`tOGM!*(0NR6*oCdkDNBL?CQBHll3r&J`V
zdJjx%z5IKc+$wxAlNF)JZU4dx*CMi$-xX@yonFhv>!RKp?oMCnJ~DIM!v)~V-W}5C
zmz$k!+G>?nXmT0Qa1KY3<91R^zE7*X0MX|4@@f20Z8o5z!QG4mBxyIZ-52h`l_mAC
z`i0@Zs3+otH4|U3CeY<>S_1n{IV-N9XKXY{&yV7KbLo4wxMm5iP;7`}4-(mw!>n0t
zpGRwNw`=B`XApgyx6ireeAdU%farXl(pINI0DjrZ^ip$`6znPiJHeOue9wSFB3t-Y
z-pPVn{=vN{bd>_=#H~~LKUU`_MCNWSz$qEH4KfGZjDC!YwAW<w`E4rX3e4!e*G(n#
zr&5PP7*s*2&wSME;=H&{d)`4meShI*Fzy0(Gj<zvv#8062X-(r%IjTHcQ2wrRo`IP
z`|<a)=rDC4*Ta{FqLvtaev##9ZGu^wo>hax)7nbdumhnH1+E9~S!t_5qF{^S7F+Ic
z4==d==F?*e>VCYbtjJtleAAfs3NhkiaYZN@(VVD05B8yW`|BrG=U8QJ?h`u7Z^JFb
zBGbB+F5Kg(UmIig(t{?Rl(Zgl+_`Uzd(OMcpoKm+Z+<V>ocVzg{+Ml;t=V=~C?O54
z>06~$s|9p3Srjw`9?wlAr90tGtwdplnK`fEmIv>NBXQNYyeOMTw6S!&Ri%c_Z5k#c
zTe5~GO5!6xf_#)NAbL{$74oNodgok?zVYxHP)ov}W!Q5~{V?7pp_CukUP}f!W64z;
zD6+9+W?St8Z4p6u79t_72ZqqfU$e?MRmdL4cX=S^#}8Z!>hIz)u71%yd-4Vp?OMAE
zp&8%x)>`#kuQnULsvW+1o8oC>k)^_YJ+UHss8eq9>V}IS9x&99z*k6@S7v-Z&U!TI
zNtR8#nBY`dunuHB{))rb=SaBjFpQysngO>~jeD~?>n!<=YaqdqV-tf{2ugXf+nMfe
zhF&=y^QsCWwMg6yK;({2)<<q!>m^wgT3}|lXz+o}9pKFi!=I}c$B+fBX|B0te|O3b
zpG3&Xc|;ooMPu<uz}dHsJDN^pPRRi&Gh{Y<B98o*y44<MT~iCCtPex1s{=qm=x*(7
z8<0D@DlX7^b8q;B@D=3WrfcPd2-B?sJ)xStF*hW}2!i`vEld00;WG)+A2$L<_9l=C
zudau0ee8-e<~0Bz)?NScB$cv1&MV)1+U^=n@m*BI&qYDr`7byd9QI!LfwE}SM9SpL
zh4>RGak&hH@H?xl<3tf~++hN}g>Zajbe(NE-mNV9MO`$u%aH&D|GUKYaD^4;w$TFO
zyZ5x*=OdItPE%CbgA|H;M4`p~aoryhmlv-;rliok0YJif(SO~nF3cMb;uZei`^yR9
zJ|NK#7whhx;ktDUDR9#|`91cEvp8=A%G#oDfOR&w=b8zU@z*D+YqGeyL%8gwwLPgg
zCZj@I@qgQyX5FT%I*vAr-<<7B{RY#m?zUWbG`i($L}VGH+W)A@gcyjtf$0N%7I=h{
z;!5%G0XgzW(q?6}g=2IOh&j#m*+rtoz~Cy>+C+nu=kn-yU5qv&+#$c~Tlt<aBSH3_
z{JyJw94b<LST)TAvTJLRNX?f(p8eu22kr2EHnvBiEn)uwkJhNV92^)_&VEIq1!kV3
z312l&P;}L}<Vx|bM+M~@guMM;9D+g@a>n$`&a%~?Zc0P+iK2WKi<d;Fd&68ex2F@O
zW_LnTj~qC;Pu-WwB33{o4`0FtJ9vs?`tnlkz<nf+zMybHzpy?nDn8Cu=*4yO&5^0u
ztr=k}VLQt4bQUfOnY3Iv;z);H+yJd(`!_Q7x!5cr4LufrxqMzN&>{P^xH!|u!yDSi
z&kbsD^j{3;QuVLy(t$BSZt#*t(YND8bJqQ#>Kh>`5>cGqdij2JB66NLhVaDT;Csux
zOVlmje*);wsPWeqWHEGv1391DTk+!ifp6VY4>V7Vun&qj;I^JMPwZ;1d`hMR;D<9M
zp1k<m3GoHW`Bv|OWPfsPG&AF>6%vM3ySlfdq0-xriObJx?imHYTUU@p(5=8|>Me5}
zu<NdkQ^V7o5<l;jN&INd?sIaVhLUW2<cq1P8N0)d916n8WeOwS?oRdEtzGfF7fu>$
zyv>6e;7!O2@+q(&2Nc1U_PnzA#M>cA3LUPw%Mb}M$SdTax|Lm?8{w%*I#pT^&*<NN
zyamkgK{bx$CDcE?X8_<zv!hs{tO|O$Vu*(jLpEpZA$F1|7u3KXaQ{P{zV!-l@#QQ-
zg^d7?J}%ga-2wQPPp@4UIE8xICNxug<~Pq|-ETbUDj}G|Vfha7o|@oiTI=LmWXt&3
zP)6)ywwtGWBw}0<dL7kz21@1ft&~Wr-xZOcAtQMlT%6BMsz%@4KWwJ(C0>3#nK-+1
zMK>Gf&U#;@1GGAW;|W_bp_8B3sk00te6Jq4^(v!3P@}slY<*Uo!VHf2s6F)KE;teU
zs>G~G`kJ0I&J)WD-+u@LAQw_NdHBr8D>B}K;&PXSCh=G^__>Fstd>bkrM*Z$q_ZJ6
zdo6l!Y|<us@AsiQa^AY%wpo>ETZ7>6LhV6-t&EHP-BsdLO3%Yx53Ey+Hugs-<QTIO
z_@rJS)AXxbCgnXiVCmB_%M-u}Qp+FWkAJx(paD4+V!N;4-lZxARH((mVFWFf!w&T*
z__RAd@q@X-nQCzpDN%Ph8^X}fhV$z5p<C%|R)U%f^s_v}hlt%@<wdi_<Mh(|epK~P
z$nH$ACuOP!kcvO@Ybl`#aitqjUg7M4lPU}C7KvU8_g~kxrKr!iMzr@)k#~oKUM$zO
z{f_1yk|`>FpKz9%pWyOU;A4-^zZ@+|do&0A5s+&)mk<4vtgSh6s4(R`{q8=`dqX&f
zwK`hhRzpX`b|xSAG`KtBrd4<}%rH<moa%z5o6l?Lu13CysCt;T#^Vf$*AbE2!BoLp
zJy)`)XSvsBW+L%iC%?TI<cL@E3l{-@_f1-ESe@pxGLxwdf4hzqs6H~HjcQYn+gCeF
z5nkfKhu(vCMc|V>%>M`k;A}5|Yf^tt&j{VwpgwBjo6GF*&qQa1xB@S+%%3u6qG0$!
zyu}kJG^`lq&#rj>_s5(6PCp5HY`WaJ$x8CKeX}mOIh{-&S3df~C+-#l7ss(!pFgK4
z_=B<4-U8p}emA}ZlCE{L<;h;Ydztt6<zE2xiQhYy<vZ8*J3<<MZ-BkqP9X%CK_$j;
zQXp^B8B1zcgOhfQ`)3EARnI8=8C$fe7Q<IZ7V0^4&<1+K466ppc(_kwMh`zEL5GV5
zT(s%xOtiw3qINO*T96(kOIdKq$Ru%W2A@}6%L=&OnqE^na$t*%Gb-ZbQ)Wg-@WSGD
z(#4|vi!(kn!-`(y=p3s^4Xz9R-~Rp2&N~#|l9DhCdtF+ON9tghq1=Z*#&wt`g6Yfg
zX&Q6Id3fPJNb&lhCHMp$tM4z77WfM?BZ2SX7pT9nnauY2LA~?J<N@cv4Q23xK%Uk^
z+)Wj!2Qfl3MzQ5N{}y5?$8RYAYrDHbZP3HKX<-LjmC-h+N^nXMe*=a8V?lWoAJ{ze
zMm;v9mSQNSI7bA7#Zv7+&J}yHG2a{Cpwvq_;<v|DSo>(F64i$Xg}t+yy5-uBq|hP3
z57(x@c`eUSPdcrIOa7y`xpW&)X=<BE<l<(7n;ry1=Mvbgia)t8dc~w|MC+b-P;atR
z1ZJ$yd~OQGzqL6>$ZNnYPlBKAM)>4g&%vKZ>{(*(>#qmmb`drIz4I|r;2Iuwe(YMu
zg7aXzz;=Ois-`tQ28dozR{Vv1bIOh5cyb4>snH3Bshaix@I1?*By<SoD|+#W=%SEB
z*gN$&g_+4!_$hrGu*wboj2<|M1J)t)wh6p*Lh=UMhwC#O|D9<f6>q_c6?ICFA>(md
z_ia0NzfZVnJoFO=QO_bk$KmqtFSk-LpcmR#HFUe)df0u`U5#+G#d$Cv%WBiamWDi^
zZt;Pg>U8CZK9*-VYG_=_O!2J}smFKm{V2Sojlz=u7NeM6Zeo0xbtxiN>TFs5gb!Z4
zxz~D|WApB`ng)*7nA0oCBMR;Q!gs3HS`)&WsXTAHKy~AS{Uc!OGeuAjr>z-ViGf}<
z-0qnXJ|f(?KvZtry}E6j;4Zo^-^%T1Z!_neX0m+W*6{3So4&YiY~WoO$ao?k^}uj4
z;Ag16QVwH%)Q(?p1laZb^7-KxqOi}0bsV$8qnVN#x?h{rd!Mlh7BewnL}A1;<f}RA
zPie!W>iX2GVa&VDBYAwYCGK5lT;cw6Ty0*^U1QOrrFwjYl$)*-SR@fL+W4zi=+ouE
zyLi)S;|6w)E-=-_x62SPeDg&H*tQ@s-cZ3N?NY*cVh91vW50w`*26gJz7;9?v)UD;
z#*4ab>RS~f$>*K6Nyd_nML(mVa>?*Jzg0>2$IEW2I1j#`;d5wBUX0-16RzgIlcv`D
zTgQ%Z`QfhENIbL0PKYWM&aZPxL0&RJF4E{kZ>0Thi_N1UF0t0qJJVS~?oy}TSH*Tj
zvjDWf5j=pgP~fE-!J(yU`@H2Y6QgV0jRd-cG&bL{02ew$g4m?8(4Yv~tfy(HG6O@C
zR~Pt(L4kbmQ?3wD&C8aMGQx1-=7P16KxQoM`SJS6)79mIAyTn9G70>E<Z0SY2&+_f
z86C^)-MQmEOL}*1=o~GqhaBKMbHMG_{rUDyiS?8LNUJ|ze{j_UmFm{{R^E;$DHLh{
z3i=(g0qNgNUTNx8`<0yFt#l)Cfv^1wT9zjPe7X(su{IX_L2Me@BQ0adOX^9@dU+5!
zckDjvh3bz*HWW(Q%m;0)H;oERZc;QKKCU4{q1Q0LdS*rxO8mv^COgUsab|@?H@$j)
zVMjy_f--ZOOxlNMYqaPYhr`O-NYInh=H)VmiP4aBFzusMCC8FNg+R{HK>%^g&A}?e
z(;aeeQ}Z!fe935j9{Ras3KzA^tH!hEOEvtR$s36jrD77pg0`7HEqf*7I;8=>f!0&D
z4-Cov^^zwwO|*+eCC<`2C}nB#L~NK4uHCdB@7tE*`tQ19_geAU_4n(`-L)tV9pRsk
zZJsET{c*|-V!1l{el`8(V!Ppo@B0(qA6}>nOTWbs%0>Hkp&E~4aq_kMz{K^h!IyR(
z(Ex;yQ*n_+>|GcG{HyBc?-uI{M&z0X0phiyCPk3QAL%VGi8aN!LMXo*!E3(3lw5(=
zVShJ0gE%Z3-vG+8y(j;+zh5@|*9GW^9@<6487HjqNZy&GqH*uraPa^YLvh{!NR@@f
zkE@(_yWLnyq`fs@l$pXv>5uB9Sc`QAMC7;)EoNs?q0Ma<_i-?9Bu&lUk@9ytZF39@
zpyyzyo3o)5t%4$D_n+_6HziH;K!$m9&FnjEXS)tsREL2=CRw9vDv26GabQ!4->+`L
zwV8lmz+sX5;r%fnn`jKalyBM9y=K~J-nD9Usup;Cd_MhSI%s=(%<JzJTAUj8O3*ge
z0UK$r@>b>Z?65Nn`m5801&7R!HZ_yWM0KuO&97f;Bb(y-ChJ9yv-I^ZC`_-!9~{e*
z<fD~yt|C*-ahde6n~6!nZ<@%LwTisN#g1Ck!bG^2TkLa{SMnsEy5IirtspvwM0kxq
z@2<!oP3b!>#3DJf#h<9Cu6(?-d8sX(w-=G#SQt<16CiFn;bJ}ff+6jzy5g&aTcBmj
zSwq#HXu2xyG@a0#{Bmc^F0mwV-8wFB>e60N6jT#YeGh7)_-c!tH;F?&D~hW3LMU#d
z9^p`tr(ts7s7NTuE4MXdGYH5s5Pjct3}vrCMdlrd*XIal)w(Jv=-wJ8_cK#YJuX~Q
z2utgeCQYSUh2hN~8ngb@FD-WqA5uRl$=6JkUbY@DC97=PsI&I|wRfM|M=PW60KOb^
z6Malqi5^_Ob2w|8-+OmlpvU?UA|20ySz_;C`FvZFv;vphMKAoiui0U$624rwqx&_m
z_nDQ}Yt6O%9-ak(v}X@|oq>o)+O4V4SxzS<ugLhPvj>*J<tZ^$CW=J+YQnspb8(1n
z_}XVP)-r8_fU>o&;MJ+NblUqt^&J#e6gL&78`1vdrlmQ|+!auPxyJ}{x#3bm$U`5V
z{u)I5)8X_z`|V<ajPWG<GTAeB@0TCwL+uH#)|)EQ$DRZ_Qt8JF?mw<ukvjAImD;=<
zhov-AGt3m`NczK@{lp;DGGT3bB<l*~u&0sZ>!a$V_BGpQ^Ix%=6(xObK^Nk({&_RS
zszYf&0!>Dsf<o;r@Qg4AQ-EalGhL-mIp>pC$-nZuE{2Dm;GchI9{TkHZ#+3D#V(&r
zriG@ITI0d#C^=DN7jp>1NPWh|rbNgEM4w_t4+a9w`k&Y-Tv_qfFk6&m4?C8swpBw+
zwn};;)({?;rOU<-pUFA)o`$Z}+EY!k$>JXl*8qC(?DXf)P$^4qTG8O=4!j=?6xw?2
z%3_p1y4O62S1NMjtGa7#6GX{1+n4%95T{Y|LIhQ140K*j)-92W_mB_qu`jKg`wHqA
z8N}*un<Ec#{I$XyG73l|7%%S6B`@Q~?aAHN{lMCNDo#JAZ6G|$S2cFRQ|*bB@dsXN
zKFWTI(TofIZert*{nN3&kG-O80Isa$m2o~+KP;A74E7@wW!U_~(S5?1sB%Hh1O5+b
zM+r~>6VqKO?StJ{WX!kBT#rxucD9twM+DMz392f~(;L8Ik`N#wT)kSI#V{jlafLyQ
zum8@)w#2hb$AF)^r;Zod7H|S1*ypYn8EsmCsb&Ltd&|FMI5hN*DQ(Q|e~|d={gyK>
zlACFi2E5Ds{}}OFtnvS)$FQC{j1?Qx{LZj!r{YTY^jKgoSeZ>ZqdIV{Rimc$PX3Zy
zMH6=nd1!lrm;BOz4!#NEi>FuM@<jGqEM^3+XDph$KQj3bw(HOO<>WMk`;@ft`s(7p
z@BcQcB4Sv@Q@`)dRw@5GTM>>Z8WD@peoS^jPOI5a&(c^>o;TZ8(C?ME*}QP+aT>*a
z{r0rgrDNG7c*Ud-`u=413U;b-P2`S(4*_~Cxa4!ou5jP~qI%F!Qg&Q?8;hU21f-bm
z)rF?>I?#Q)uT0rj;BwM4PdF-tH7-F#@&josFHb7ei)LTtT@1A{RlNL^;{1Yl^}=nd
zp3Dm6YqLoZF1diDMiD#7)^N2y=x>7@n4!n(Sru^xa2l{{?&V>RIJ}W~I^DKC>rA?6
z$9-|{%a<?hG_OxpPSLyP;-~YwmsTCd+sdOwB}pt7+r{n+7ADuXQ5hj-G449kUOOk%
z8pCS=Vzu~@UtX7R^DnLbIR!Q=dTh9)gul5Bs>n{6)-#J1E=fzMLP$f~g^0CwBt%o}
zuNBli_A6(DG*yLnu9O_78`M2DD$j)>3E5UeILzd2B7OM+BRMj5EF(exIcw4{-t3m?
z&d4-i<@<I~x@*upZ(Tq*a=F7X`M4)*I;<tTgN0*jbHn)<PgJNiYHpkQRxF&ve{tt2
zWpjb(Q5+rwt_=Dv7Vw}VdOUl$;7}%dr$XeI>fb}+<gMvveU|{x3=<rHL9DENfCW6b
zJy*i=gb?Mu)NZmBa3ZRV<UGeeDI1!2d?FblGck%(FhxeFaC}oBjI&r|7V>|=N6c8!
zq<Iu1QLi`Wl?SUvA{A!(-B*yF66Dw;v-!HQ%C4zN0acT<9zDb}j7GDNGOGV4<{j?m
zJ}@D;r=W~)0gbfYmB-m{>;!D_R~7V7fD}gh?D(n@hujMg+@EGpBvKr8c}`+>H4rBl
zO}F~!M{X<vW1(=HcG!ZW3r_;X4UP%IrDq97R7I^$ls+Tgj!NaA5=ikKiDfhhv;X;i
zNnEGrtNH!>Ui%B(Z^(<TB`OKz&f~x#n)sNM=O@hl`>v9QJP*yfx%~KDrXPHgH%0}n
zip({$yVhF6ZZ;x&82;=^Kz_V`9I!fNq0`&6@_ngAxxU!guO!|bI)P@1Oy2(e<S!!7
zWj5?>ep;KtNk&`8!%s~Yzt&L(s$mAImlPP60O7-}1_|2)?_<rCx8!ymTroT~Ewced
zL7odVK;sjrDQRazw&{jX4xvjkdE5SR#hXZs8Lm%eX6#ZK#U0)H-wY`}EStl^tR8=B
zK_N)u*H5Iki@udFKICq#pAJ0WV!r19dNS<ikxQ4$rSL|0&hdl;iuzSxJNx4xY=!w;
zQl_9>(JlexjCpaLD-MJ{Hba2Lo&$OX%qKd(fw&9GoL^idNvkE3yKngHB6X;Fwo(S{
zk^fnf{7G7NkP*`$rOneG#jFc3Q8JQf25mVTJZzr`N<U6R)30n1GI>^l@6;Ncn7w|u
z@j-{6n!Qt4YOaY-jIELE7Q7UHuHPqEM?Qgdbq&!vA;kAE>Ox+4U%fv$31$f1V|{-I
z<-hUZ{36G9{@G>V_H>X~;Lcj$d~IVriqos-?|{_s$l~$qt7Y9zy9DU11f{E+McZv>
zgPsvIDNEOrRY77vK0jb_xs$p$kykglgXQJn-L@Y-?@VFeDH0(2ZyS%MEdB$oLf-<W
zBtHq@s0nV<XhU%43iS`EjNCl8MDBZ!1ADd`YEouK#Gc@iUn;|7f;US04==`bm8jXh
zW6GT*{5xoF<+$9?cm2jNr~xb&#k^S`D;i_12j%{Cw4AXnw)i_Em%${fxt60oud5i8
zS^WSFYt<~e3AUIoy{J*ztXVwugRML;TH~b}Ci@J1P&ni#;qYmh&TtgV-@eS*@@_>E
za<ptH-QE-6(S+DM6lYyrKDGZd`#4VJlLr&IJ@K<EY%FoM;$~o#ZuCP~(?99Dxs#R)
z!K})~Km4+6)+m&dcb9b)BBj^e>oPsxWuLzxA?4w_x$~C+5}e%JhS5i^bt1#xsA=)i
zlBG@J+o?F{uL)HKrA`2GZS$z|lj0gGz*)tA@ANZz7Fbh|VG)97<OWAes>PSU$@C&<
z`!vG_d+k#GI1>GR{57wG?cYTw%qD$F5|;Wzm+RGGW7ne`B-`nTE$4gK04{MWP|E;F
zri%AaG23;JuJG)Hz^(h~sxRkWb9d0Z{u@~DVnCAZ7SN-fp|_i;u2FqAs0ZZR4)dLp
z`Nb>2Kc@0IEy~(}QYvG7e;wKH^Hn>ga-T|J<#E_j)0oVF`}+)ZzLquO#Swn?iU?P7
z_lIveZTu>DYfy3Hd&1bQMX3~DsOI6L;Phm+f4$D>UzUih;yQO%R3G^>EdT2X0F0XQ
z&AktV^f8CwX+HBQETB|N*XJt<emBjtA18fTBXQ_JPjm>KX&tp#bIh<Y$-H}o(f`Ku
z`Qot!KXZlZi1Zx4|3JJjE}PTr3#^A;<-YD1ZaF&cBHlpR;zH!YEwyd4GxZoYw0<5P
zhpp;sX2q@GMg<?gz;g7YdC+QwS;PgdK0-$e+=EW}V)3fNcrv_a$ylqcAyDuYS*ZHH
zb#`J)Fn}6x(vTx%ON#g@lB=TAa(ZV*A0Mtf25v3euejFdzP5?h1eQpKFZB=1XucBs
zz&E72(Z`2(ay#4)g`|_aiY7#ppBYyx(bZSr|6Z4iBtRBdcJCJAOzvj-h%%1(eoD5v
zA8_MYoNyJS0l&Kc1mJ~*b~vsu*S2n?+tS2|N4*pVS2OklgH-`h#;~FS9dX07*N8-m
zHgZ13CvyE$^hO+M&0tN$3s!)Xl!=d1Z=jG!z*;-Ou|!QkJI=H4duv_Xhh#;DCf9dH
zn5(D3$2ud<Ad^~azp+RCF)UKkq~D9Je1w&9nl2x*U`vzr))+e__dLzX()mLvcPH0I
z%ezD*3Ab%-RAkf3&TMSt&2aLPl&f~ZoHLT{C>DB}FXspTrb-M6tdnv^RZsf}gkS7b
zC3Y*c2lA_Ztf29AVX+zOC+@>y+}X!(b+`RLcmM|~k05+M`C$RtLwX`>a;+m>wQ}e-
zXFZQ}!Pk2W;={n#=VcGQV9K^_K#)6QLfn15K5x^**<63V$w0sJaGRbz<^pT^c1G+P
zx2bM%ZjCZ?!dxW6x9iih>L4-@ATwDTBm~x#RrSqU;N(f5tJjm7*W|DNVfB5N1~*aQ
zmcFIklpAO#dA$L&ie>g$Qqf~vbaVZ?eO`Qgkz;kD3H!S`@QpxNVpOsKqslKPeE8th
z+=7Nlf;KjHnx0>44ThKBX9qe2%UEkhwygDJNPr-t$S?`)qS3kF;qe!SWRpu&Xp)3z
z6($lrMQ;j^0gE&gC7<kBy10GU>VR5^rkQ58?~*&@lnt~O2Un!CC(^Ue-1l-{3^B+~
z57U=4>M`1IU$Y<6P&50BN=XYQp31q>PJD71bdCQ;NnK7Q6Zdj<k|)yqN4%!e$d2~v
z4+lbmjErF21#@gv!L!n<065n0d@jA<MG2R0d+&s$5Srv0I{5aMyE%Q^Mq2rB=cH4W
zp4vsg!o_?<n@N>bNYyp&`^|-Yu?0)YUr{;M-><lX<Bo4F{`$=ld?5Qig-~VLbmK(v
z#OmG6o~Ts~UO8}gmZ{*Azmt1MsNi##=zm?@%dAr^t6A41xSfv<K05IU&MAL-1f33w
ze!1ivu<R%ysq4!37n@NpwnsV-jK*^idBplzkD~Ju?(0+4WoxK>6N$zjqHJ=v%+!NF
z!l_UHdZ7+D8#jj(Tt>srZ;J+BxHrg}-d6Bn3PilKbg=brV2m1See>U+iLMBuk3abG
zV(XPT(Qi_8deG~zHF51Jl0NS(7vBPwe*GSTfksEvu*bF3EC7Jlpk9A_2C5(pxY+i6
z+2~nb3dw70{szQF9v!l0Yb$%dmaxkAZS_A|lD^;Bl|-T!3<r6oX~?|GYU`<6N9w3%
zk|YCMAyu&&mGZc8Tjt{s$HnxRhLO-H-e_JjTy6w??Prh45nDQAgpm@o($W?&^-KSw
zMQ0_y#W6msmFc;!M&`dR_RFe6g&h0O7;WiiO-h-l@XQxn*?mIq5?z6F^(EEblccUf
zCsfm|;%vjRljs=E)1j%x{FjN0fnBE<@x!EElbb@S<JUUH;o${#^O>Y8cd(XBY?%(9
zKGA}z<k)8vW9DbR6iBgqldn9{R%$$5a-d-S7jgds>`pg1U7$prQ)7u2jW~sl{I?ck
zI6ogRqa8Rv?C&R5__9(E-oSNRS)CGkGS|n~&v8{Px!=3)^Ri*|Z%Y#O{ikf7)^7mv
z<R>;0hmaCBCbv1Qj^K=&3PBmYQ<P<cm9;!v7rV)Uh3n5I?%&<`c_kIe1zE8Vs3bG=
zu}UIy`8~#U$FwK#;ZYqnLVmioTYlUxxJ5ocYox5Fx2Fc^NPnGP=Fj&hq!dtW$`^Qi
z(TS<j-ae<>C2c>J6W<|yQ@cuB9j~TrPnsBY3ix%w$d4}N5}Oj6tWY#Bcqmj_)hc-T
zReqJv4rHv_72!Ql?1t6~at~yQ=AT;RF7lA;!)H!}^_VX{|6XZZ^lVtVZW?!f`bDaY
zTyaEJ$em4Ly6iPI7|oDysSmpxRNvUpFy~odfm>c!tVag{0ZxuGb^`a9*bB1n@ie9P
zQ)BPVk$oU$eIVYAiWg-!oWiYq^SNyIJ{d-Q4-LWQ@cNX&-mBGhXl;9TvUA`J=Jx5P
zZVad1jji^D9g`?;l~kE~+*!|}g8__s?+2wHy!-ZYfR9lV|CA=>FE*LU8F{Aaw)CF{
zki@<;`A3h^*^ibCei&f%CTIV}x5AH0Gk)C=4S8M3cQBShtX05mqywtzMQ&rad_Ny9
zCXwM&oGUsTN|LzN>zS%lS*jBt$|TP_tU>U4*7NX_yVTx4`#Qn3$D79aZIAm}fS*?F
z*!aX)8E0SOedNvkY0wOy_w1J*EmB*E*xmVAGnaL~t6^%Qq(68as(noI<UY!))fcq%
ztP-Y+`{}btU@NXIZ?W?9i+A}iJCqrT4tQS?J%6Cc;Pzk?X?{FxjWXOmUpEtSe1D_6
z4^j*znc6fk$?b-YACava)agHk8;OH&m3ZFtezy$dOnFhcW*h<#A!H6FNt?ZkzQUV<
z<O;=IF5Z-NU8@^4Lf0c>FEI@-!0cMWnfl!fILNoHZpC^Vo{(U`8_zekSaJJSw=AkJ
z%WaipT`5Nt%i=nrq7m(qkAJN_9({#);r{+7RHS}Vois!2`7E5+3sHI-KvEHJ^3!XJ
zgOxg|$}gDigv9i%W6Zz+e{aH?kFyl=3qOsNq)<0m4TVcp_EDex%o|5#@4nUQN6K!B
zvPkL<%P;@fs{QqEObCw+=-lCSG3c(zbE*yz{05Vffh+X>OYF{j7eu|E{8pgvhT=5v
zpT8@=;W1M#k|n<y8W(s=lC>T$d`jnP&1FO5jTO#%TxE;J2jEFu)vq<rMcBqEI2w;b
z<BZMxLb8Zi!pVu<B%=VD<d(JMdr`2M>X@5EN7j=DAdyEutG?Pv2MgaJw}@O@^z&f-
z&lt1?MOnZfOmF>6vqvG2JJ_BlOJ}Z>;2bw;gcqKfW3PlSfzXg)Qr)~?5x3GL&sdbR
zTsMy1|33gJLDs%%v4sw{jnK`P&F#@OTe>RUv;>fsN71#^;rTwgt`4;W78^i|&FNaf
zX6!%@8yGu~7qAceumQ9@Kc|gavI9yt4P;&9x#-#=T@ALGjS_haMqa&*>gkHNQC+&C
z9k@Z;U*vIgdjj<2(a>!suN`bbv7N(4b$PzSM$thF80brp&AlP0dB5RfwgAA<|2){?
zMB6N}I=QYck;78z5Cw@ArSlB7wlY4U)U382x-4m<uv9O*=-RBEB9e2K_I}OkAnjVy
zT5F<$I72<QQnS}%*GQ@kHuRt_)%xak_7i>R10R5&{^_5l(i?c_MDcI@jlTh3^VMGs
zFMi2OXfV58@n&s0XvWQd(P{m6{?7NngAcx+g?1V&|H?1_GQ9T%?}cypOJ6@RZ-762
z-}~U1>ALU#{{KG>tTC$j1uuLd{D1z=-+>Q4_#pg~fAUZ0xgY)L$KZhnUIlObs;{E*
zAFuziFXPGZg!%V=@Au%>e(l!?;|D(QL7Mbn)<6_v^1>IqfE<Y5@R$EGy!8J2;r^Gt
z6z;s^4j$Ml-KO_`_~D1?nLqP0KLd|G`slRi@g90tEIq=JMC_QpG&vtJqu^`5_G>9J
z`K$i(|GW&I-~avx;h+A~e?nOZzcnp-;3mMrI+DpB`H>%mxBt=G$;tZElTX6;e9!m5
zS5I_Il5&re2E_W4KlzhXYU#lbe25l5#w|}0abS*$_IaQCx#Z~m#&7y2!t$zDJwTJ)
zwKHnblsQ4{wp|@EANb%0;n#lkSK*<D9)jQgo!=p#SFc``$pR1_9N@oXqTMYQFT%Hd
z+qc1MU;A2)Sds{Py!M~}^M6h?+8>(ufcJm)=X?%r1pT6kU&zCs`PqL<GJy^eeC{n1
z{@W&6{#XCi|C8S3b+3C}8L+hSINz@zh%Qkb$LTs;VEThU{6qNAhdwmPzz1joe|mbo
zOn5Hdatq1+mwd^WO!D&r;@xwf`&`g^WNXnS9bo^<fAz1Xg_djZAOGWjgl8wrpP1x9
z7depE7p4UTT+I2xFa82}{_~y>-}H^&2%Cwg!{n5w=so<%N{zI4O^at(3hGZM+TcPO
z4p?x143!zp3i;9r8)EvJulX8y@rz$v^q6eabS=^pkDvdAUw|hbe;oe9fA|m6g3z;Y
z`RU6tXkz<;*ia_k_?2&f+opfNX_Ap*(8Y0pJpZ5nr~iqb_uxb?>=$(c>4VqvsxaFi
zbpGRp-&p?Z$tRy8-FW?%zn*mI%O*X%_uhNUB=LK{_y0=^g%_s<4gAoeY@^M<{X-D{
zd;a84X!41)#0e%k@o};2yZ+|iqz!#hH!<4<brEUxzx~*ck<7g3J?|+pjqm=BKl&s1
z@Bh314u1MgZ-Q66;uY|k*SrQ^{pwf4=T3UT5kOqK_(<(F&weGtN9-f$!fDTb!fb%h
z>Jsd+pP4uG&BpdiRs-Ai$$7*pSKN*tZPBG{Y&%#Rwd=d2(Vo)Y#U_W^cZxC$^#fcp
z0&dPjg9Pe1%QTZ(vf|2sHq%&x7Rv(<m??9M+IgXi_Y{)4rbfnCJb2_2Bx{E2LPM$5
zTr!km<bj!4Sjx&bl?lNKMMjcDVlgk#`JZL*m7tC%qF~vmjG3C(De$||kj@MgGlXW~
z$R#g0DvD%BgDwIu>*~g2E#2z7sNJYF)+H)U=(;WAF6<+A%FB#`HI(N=sP#D!J1=}i
zUH}xF8g;1H3jYOLi71i?cwP*JHnNb)q|`B?&Av;a4v0CLUf$KvwbTL^K7i;h$%M2)
z8RLP_RTltLp`)yAvb|QGi-RIW4Ft&YYN0GBSGy9*-U-E#<K@-R%3|Y`W2L+DFj0^}
z;W52@eb%;=ld0Exd8EG0_%;X~E%wTXT<WAJu=YGqze)B0!1}o(W$;wGCd2b0k6?96
z96g3E36##QJhDuUl5G+yHl@3ngcqLYT<l6CujRWH3SF6Q7Ar_rPOS~D5pU`c&{TGm
zyKSoSSg~mdz?SC>Ez6ukC*kH@Gh<h*8Ub8w5X-B+Cs8G3W5YZTmFFz4+0D1M`Ysx=
zE**qoSNPo^*0Ot{&=vb;8jw7Ri7z#N9Z#4KRepIfK9y)?uDcJCF$66(6Lb@-%m^LJ
zc);*H8@j5EQvI^n<de;8h}E%@jGk+hB$aB4A|os$ayRuv3nuncA3~js<BygcwC#HM
z@1!=}#6t%;#D25$0b*wR!kH>i0zq^<${d3lkuK-OPROCzpXBTaHM+CtJ>F|PDaqK7
zEceHTe>L)3pRduQ>g3E?4_<!M(L%Q0VC%Jm{iYh~=(~lK%s00kbB>~%4K``V7TvV6
zL_cQ}RjYbv>1xhxg$0i-Te`Zw^;winEYHXtY$a;eU@H;sJ)Y-W-qV-U=+e!cYjnJR
zgNZIgxav>RcCgswZ{+;dHldyJWJXt&34p##IJ)Xkh2TtmYz#KV+F-+Xv+tg3CU+9-
z+3|ev*p}qA!*kU&#I{vkD`S;B!xk5Kj)%%4?7#+g?&awUFr({|ye6RuS@OWPJ}UN{
zTWp#Ae!=myu>*RqnM)4lT3rBuCAxZ^sg2UU<oR72WqBS<mV%{oeRxAxm5GL~2AkS}
zay!iJfVDx^7J}G7Z4WyB^m^X06Be77iIu#&%JyKf!4957)umwR)YEgdVKFY+&mOix
z`QmJpr;WE!`W5KunzvD4{{?5?s>q&u4ACqA_<>2*hsvZXmURccs!rx~;9p)w9vFu@
zh$|h2w!8_o<BAnPNss1;%TOjY#Hd_LE>QX>)QPGxDuNN%P$z@<3{A^P4!chstnGCY
zUelF$;2##Thvs90k;;GY2Y&#MfAVp#$6x%5e~}#DDsXx|mI1=!%fI}~sqOo|@B4%|
znWA;x_0D&a<NNEsjyLZ_XX2xeeG-1|=l*RO7^6e+zxl8K>&fZ=QTW-P{n;`wdE}8t
z$XQ5^)yeUQ#tDBu{_&4foqcq$;ywQ02*{C~gXkE2$>dxG<)cLD5*;=ha?HQ=t#2hK
z@;l%84siNd4s>kafB*e(--Ol5>?c0)3HXVh_z7~F>!JxRe5ix={qKJt{pj(=H@=aa
zq&#WLWrHK!X!+-U?&k={e3NB>Kb&}iC6T`H3%`&jQ+C1xFiRsFMK>(Zb>;5Lv{>=G
zzx%u7xP9B(-Uds@J@?#0j`}ye;SKEI9!H}~K+f{t_>H&GA_%s9-sgQDm1;p*!G(r@
z_m-cd1r>W>hQk+s@fX8gcisW<^{=PD(RPCwnjPn90Bz+}bVV~8aPi_df8#euR&fzv
z>A>hW#PwCvLK4#}w1Xr5BfR4s@1TX3|Kq2AiX7LuBM2ua7pBFp>+tfIzZ|~ho4=W9
zq6SoO;lH1p9M*4t``h7dlU(6*mkwO~LdQSSSFzCmLmU7rSv-8-v}lI!_@>GE?de&u
zoxrWP-8wB!JP*F*TfRl;S{;v%fAW*GK{sMXoxw~M)GhoM7XX4phUv!x9q@SlC#U;x
zK@9ce^FRN!#9P!?dj9lml-WQ1(<<LsvJ0Pyiw9^+kWcnN`rLQleehQ%j3t$C(r>g2
ze>6Gyf9Bu(o924dC0v-npT}__V4^3=EiN|TA_nR>9`unN#MY|)1Z(?i$&kMNT-GHT
zFgtm~=c>H6_EoYF#CB`S9A}tS+dr5AZ}VNsZR((JFZ&TNHKlk&?qdUS9*6@2uU&=y
zMC|4~S{)Diy_Nj{C@KjfDr2HZS|rz6B81VdV7438LC>5u!%<9Ya!z67H%9%_^&^&X
z<C@lZJw>Eo<OW5oh{K=uh2V^z?bz1UuX|K*9cYYvrDsX)dc}s%M&}nrIR%b%Md#I7
zY3CAojBS`<qx0=JU4KT4Q!CMxt-*#7;Uq_qlYZHWm`i<abUNbLL+it1P2^y)3pS?X
z92-Tt4op|1Gqp#dJ4M%T7~4b}!iJfJ$cMmtC6KPIIFgmKWHQz6=7_<zc72PD%fFH1
z1tVTkHgx6hIR-o6#`Y_zT|Wvo$__!97&lZ_<w!Cx&Xng^Y6WFN=t}!Yj8fiYde)#k
zCv26jV6kllo6vDHR-SW&FGmbFbS4>D7rM@QE;2KnV`c%-Rcf?jJ7qzvhJp=k@k)7~
zl;=PZ<><FA=Snxh!txyW-Lm1i(2?aaw%DfjLPyc1Ra9(a!A2XG$({ftuju^U=2Ax=
zc^*h6)=byY=~AlLh>i|>kw?t17%O(f3Zq1gtGv>fm&aM_Fwo)vZF)IyMn$E2q!LUd
zj}-CFQQs=BO2@78T(PAV8}U3=c`S5Yi5;Mg_@dFZvC=&W&(TIn_DHc&NOz2A9}Qit
zjY1wbdnrI!w5-^+MjpZOT;(<P?ZEUb3^E#w9T*!sz<SQ|8jBsUJXiZ!=o)GreOef?
zcA$$bNVbx}COoY2xGuV4?I-OCuwuG0Hq<3!gSOm07#r2tevhrO{bw|e;J_Ipud6jJ
z?p!@f&3I;NrVK~ypQ0Pb8aR?<jfb88HR{>!8NeG9<4K%<J*z+GraSnZ1K9e=G;fK#
z@S}l98n_h2p3~URIm2mesHK_$2aW{egj{JkH*GibZ~T{RQEsC{^(fBs%;hmzmTJjg
znomhaj4mt<2Agg&n#{t~VCF_1TQu14eC^sTwqV=knHC!btZC+fwo6b=!A8I*nUAqx
z)An@<z^QaAedpXp{)bSWUFd4Dx%Mby82@gHT{ns?JP)$SXZTY3h8pFqa^WM?2MIRP
zW7fB6r;^FqE<CsIZh1b6pJ-*}Rpe0})*7S=h7L>eNST&BY)W_fHtvu|{4w$f2Aj%P
z3Cfk{aVQk?tidMNTJz-PwZUfF&nb^HY~r+C8F|!eH4wz|1Ufu#c$#yI&CBb8JX(1R
zR?or6T;QNXkZj1jWTOnWXlzuEu7k=9I9(Fwx|hcw-<%?kVpBo=J_Z}nRh<6zSw5(G
zk>}0^^<<)}=Suew=JvDGZuL$VOlI=vbZO;f!r3Ul!ES@i%Hsjpy^RXeZe>On89YzB
z*iGN%739D8XTKnIBS*6Uz;+}z-LX4_BWE;9Y!rt~sS9m{UME_-qk33&tj0D4L!&#3
zL&nu!E@@=qy!5GBT1KVRg&s6AP=r3z8ta5Dw2^oL+y;>DBMiH+DfVXbN~R+^w15Bi
z|6p=x^Q7b@FL?<$b+!D4I;XT`1sT1-H3RY4m<jNa4}TP{on9wL#20<R|AQRY8tFYu
z0*U2D6a)UCa}O5|(AkJ$O)2FQFYdYbxo|Q$)-`4K_kaKQX@LNvi{CjdEa0FYk5|6(
zmE`38*yL=)NNaR<KK9sS@KZnae@qU_x4?h%-~PAog<teV@chZ~c<ItDJfWC=e&~Pv
zAK{}P`3N~{(fNDlop;jY{DD`0KGE-kAACPWmVf-?57WT-U;fK~1)ud<p9Np?rC$b@
zCTHu*?tclD4MK-DI!GzneY>T9nO}Kwh(2d>R6d8^6CK0P$NdCIz}T?;)K9&cod388
z@$kbRFN+*s@C9E0_fB{}I4uaAP7c^dKJh5M+YkNF55X<B+yX!NgFi@)Sarr)o|C)|
z^Hi&kJ^V2IpTGDk@SbU*;}?G67eKQF&<Tx>R4fC8srDb4XoCAWT)lb?E?>S(8$zSg
z_$wwy_5a1*zXx5GT=jwI%G~Fiud2HGA*t1Rqi(5NZwY}k0tpBk`AWvZ%r#Hr@eDRL
z8pA~R`rgZ(u;bn#um{KWM40(wCT0i^0d@d3cz}@yV;Bix7)CE7BmsKA)vaeYQn$LR
ztE;~6oU=1$uV=2zo%?)Wbu)jM(w3^L&dIZP{&KCAYiF)pkLORuZ`ELE=)K{Fi}W{+
z8GnnLBgBbDnP)xg*|dqh_ul(BY<_z}5e+}{Gd}~*c*Zl}6|a0Hd4WG!#;_Fbq;m!T
z{r(SpfDSF*{`R-S@BQBI0T<C-!Ly!y=R~ik!pYUkB=2azMm*?M{;5xWdK%;HlPup3
zuX)X@iO(d<(=&hjw||GQzwtN!H#nYT7IC8d-FDj(iKggLj|T$C2W)%SJKqIgocQ!p
z6K|d}8QZ^mGM=jjx@V%%|Ngtb3-5jJd*Rpr?Y|{D;Pv>&KY{8};2{YrWTYj^8yd1d
z^5KubQ=aw=c+PX52Y>0cf1xt2|NPJYJQ>FESt!r?!h6=Uo<;L%CDA#b`1r>O+i$=5
zx5+4e`*cu+&w1@@UrRL0qAYRTI411>=38!oCr$@E=P^=3bf(|5V2y&?o^%`W6Au7x
zyzwF(g6VFLbkIaU`i>sY`VtR?5F5@1JQPy{J<eHC5j5YiNcf$1-bn?r@r90ZfRR2Z
zi!@iJ14uNQ;d5|vi*!Q__%|Lxp!{HD4r2$?pJJ)E+8(-?2_eq(XVLBD;GjE~Vjb4F
zr2EywxYe&zTf@J1obDfb@1+>)_fj~FjkvdjjTWUr=4>d7gX=tmpD#~?Tzym0IE_~K
zf#|FT#9?JRDg>XKnIi}+2fG+*Bky@QRhVq5`B0|htk&X~D{V8LYx_vKu2G(N6QYJK
zKITf5?&q{*ECZon1;!Qx8{O})LF7onr2WZzN+TAyV6Q};gj{0>o=em>ZNRv1%Jq##
zw<z)nV06Txn1>IPLr=php43Xm)oPGKGME1yN}h7kcQln8U9s4&F0SR?kj1G+`;NSz
zB`oC0A7<E$ZkDH<4^1`QmdeCvJQuoy<nLTbL}rDJ^OP5CtOw?Fjh2g+>00h5!z=0-
z@G{}+lsLMMg|6AjfQ=1QCiEaayY*$3_e3yk!RVe{-*fCL6Dp5hCTMLaGGRQ2EGgKa
zs%PNabJ9)AKu&$5)=~&OuWVB-Yca$ajOSx5>#32)%rd~(vXj?P(Xo=(!17PnMGshw
zpV47MTe{RzP=^HkK6K<!<(H$2q+RpBuU6tcH_CgXq<8W1XgbK%iNLUI#$IG-Xmk|S
z9|H9zZR9NsGL{B=ZsoCH122zioNMW-SX3T6dVmZ7#8af>=yEZ8{h5u9bN#CIH43&$
z9-SUwr!J`E(|DfSxg_$q;<1gn@SJ9r$RkG;s0=i8H9b&t5L7Zz<_h?^goTVTt<z8p
z3}OSbbr(R{GqZ6e0yOPassJt62ey2G;xrKKd0)NwB2vh_*Grv^LM*A3>gdcS_j1l9
z(%%_!@UuGZnP+tB=U4~VuKV-s`wGG4R^<?xIGs)xo2;c5v88#Qa>b^3$mvP0zp7nQ
zCC{+QJI^1SwAd88>Uzk<=o%b0qf72PL_%1|5AU&s+Ur*JqdEhH13V`UnCm>{YQxd~
z%lf>=rqOX-p3A-3u8wH5UT`)ZPj?*$?W-4fZceg}=h^W^osG=nctIvAc?>1zzhY6Z
zaczg7x_(@gM{}go$tIr_o29OD2H4ZEb?1`9rcQpTnLAx<$$4J8-)lsKI{X^8Mkaz{
zTariFL$vbh?VUY6;IY}kWoItM19|{*$yI+)N440T9*7-1VD`}t-Ml;w!k4!FtUBr-
z&t)#1rUz!&ygW8~z_1;V$5tl1yn)vPOZsy`_Y)5J+?B@|>ojlB(NVqklACKS-SmKq
z=|CD{!SJugBxk>7DS$MT5uiDFkcBOKuqDdX=m+QX6p<lD2QPoLBMr&azN~mna5Vv9
zSt#iV7AgC{g(TK)@EY2p-k)Qdhmk2Z^aIz)7&_Rtxfr}4l+-{gC(wFAO4zdt{R75^
zzl~5>@s$T3q*N;S2QM@lqQ^6)3n2#RrbNcNQN|4HZ~JZE_Ls<D`1vo~2PgY2JnqID
z$Y>XvlPl!~8j3GndYBCRdZBkE3L_Q6os5N}gw~@s@xPgVhbdanFsh3UEKvNS7ru~a
zhs9R!yO#^N{_!9G5w*YeFaAY%<{i(5C*Jx5<1y0xO>cTrm1+dj`=B@0?a#W47VKaA
z!sp1~LA0I>q3G$1M&-{;hV<LEx6%Os;zZ*m8i~;h`$Y2M%KRozcx(ruxu$<n8lXor
zdUm6c{L-a|OwKSZ64D)`C(w|5_dTB>y5J!Q8c}eZh_?#G3a$W0Bd^%@-~$g%#{4(J
zJ$HY?q80ErXvDqiuDd9*0#hmBArM}dFF$M;zcS%?{zPLw04Pd^X~#6e-{5uk-FMRn
zU-FU{PxQHg_=bjmqzTgTgCG3B)YrZ6CwSm9efJcMs+gX+b1(FEuBrC~;(qg+-%Oa$
zD6aDmY4ME7$bb3L1C%ouqeJk*)G~Pe!E~tg+0T7(I=p$M9RMIdFon^VCLAA~c&py^
znkor-iyrM77Keu!pZ)A-DBTkt*u40~FQx+k<s}v&#`IKpIE9BOdZB?B@u3`}jHp+<
zVtePi-VI;8?*aJcSAK&X0N{nZM#DKCQ2D43JOH8s$J4<J&NX`ZOfRQTe)1E<!*{&n
z?Grzr1AlRndzQs)C%j%Z>JwlwQi^P93a{!O2*o48zV&)Hz=uElVfqOk3gIE*?YG}v
z6{5p7oI{uz>`Qdu2W+s%T)Gp@l}?y?DA=Zy4KWyjfrkJ%{`1qn{YFY3UWHr&SW#fT
zXhAFg))yPZQhOnYe)bDoT?A@aqsrsnMHBhZLDki$UpI~J*LMRxi=sVr42s<?5c1M{
zDU@PiyrBxk7(u#Uj5ykN&;^Ha7ruHG<Av&KUf2NBFSFqdy?F5*pq|iF|AKO;OFnqa
zQ;vC|r}>E9nS05neMIT;wv^-gJm%AuyycV&9CgdYcg?F$`LtuS&s2Y7!f<@TbAGep
zJo{IscMHzZbL%4lebwdHMx5J|Ej<^pAy!J&M>(rGzxFZZ(Z~GSoVy<N-I3(}#&KZ|
zcEq}pod24)9NVu<hqowG=Qf-V{&+kg1Jebm0igNdH!c@A8i$Xj-{U+x-cJX4ITD>v
z?(wj7H8?u%*;9J6IpRF!yPf3O-%uN_1rV#|)z^9jXlx^_)A-LLwiu~z+&ogj_6gg`
z)OS*BNatf-+nifz9`h|R9kC|Dc0%)#uuad!&xq}u(ot$F;PZ%%d&&KcJl?a6oTvB4
zKr*m1I&z-!QF7N~AIFqeA9;R6205fl7M_!iQMyiJA!iAs<8)%MI(I}y?XA+0^1tt;
zUco?47W<uG6*^MA0+d(E|GqJ7h#kLUo|ifh_!*yh;piOcwc|+!$ir_XbUtRR=UW-T
zsL+J+c|vn%HDRGz3e#uAcBFJn(_8_jqtSIOb%`)P{DhTi^2l5=o=?BQzEnOr|9g?o
zfn?yA6uR*o>6!$q@EnVKuaNH3C}?g?@9Cqp$fwj+(7A(o^@oOzM>4laUPT5rnDc*X
z!&*{|P3QfN^Xjh{JJtBXxi&rHipPd@oOn#wk9eLV7S!@<nfF)l^P~taOrKHikGDl0
zF&g7!SMyx!J|S(<2?MbaR;u%GLgPEv>L_%)5uHS}6;?{e6FPXYc|Oq*)u`sKzaljN
z)<=boh!y#=m$`!Lq0Rb8bdt<_#kx~Eu1Ov&ufEk%5Uf(80;54z8?IwQI!fje%j=e+
zL9AZE*6Gt8R@6ZdSsq0X7#&CEIXYb&DbGotO8ZV^!qxtuIuK6RBd_o?di$G>+OUp7
zJpf8qr|VH4lCDR2%_tM+C~5#@grYkT`$V@ZxV}!2WG+y2(vBhmD5`<dwq^5B-D_=y
z%}UZ5C8`5Z+V^z$M(w~Umgu#pf3u}q-kAZySC<p)a45@TJ^-%sMw63DbUD;zZC5$^
z$=Yuxb=_8Sz*i2K`S9B!{G78#4E-GIYBbY!&7of9jg~bs+8KIzp%q(humRLL{c{JK
zwF~yG<g8YQNRD`3&RwrYHGDoro;5kGE4oU}FprHsdu)!bS_D+FYK^a<rK`ghJ$5mI
zb?KT)dNs}e&hO4TPkEI?-C-}z9K)Qhirw?P$^Wi<4Q;o2dY<l)^Pcze!zZCzOIMHm
zAU1%-{O{vw*d5(x*i<GOx~^99IuJ9u<|bO>EOV*JvF@>tOY#~^jS8(b*~;q-TZ8@J
zTvB;-^$eEufS1Rv9%!+t9_a8qFJP<mfYVW)=PkCbJRZQ7r0<oZ+min5>4DJdfhC^j
zc`b#pqX$}^N6+)7Mg<-4i46g<;pg>go>$-WYi};Oxn^`ds~%`{)T%>QO+Bjz0jJKT
zMh~>_CA0AYABa<$OyE2dP+6R>?OL7s3$?xg*eM1U&84&{xrB`HW}ib@HsA~{K~Jt2
zepTqi2@QYDi{T@5f8au^y>@bxA;UsB$*RJHvJ{^*Z<A~xJDT@)79KLxIsN-e4+Q%h
z8#uvKLZTrLQ^9BfQp;10-h9#BFE0!9u*b~<=6gpkJQ4=+Y9D3cV-^=+Bg@5$H^Qr4
z^-A)n{;PlWuhQ=@YCzMJ;Dr19WGqF)DtbF>LDTQ}j_;U$|NZ2xjo!p)Si~{^;xGOZ
zyzT98qn!F*o{YrrnGC64nGEKC_wW8)I><N?0|4HSp7v_U{_gMoZZd{H?di`TUOfEz
zA0(sh5B#V9DH-<B=#Df&5Bf)*`Am5E%f600mVe?Weu54X(EAz<&*+)1Lip|9{yO;k
zfB)~3K@%s?v+sO1eUGVr9(eGf3F8Oho_p@G6Tu(*u^*${=Fga(i-u}6FyjHrkN@~T
zB+qR;)WF|jdKQe#_(%WnAJS&u<Z)OIYeeJeD_`+-@RAqa3D3U$8RSKc{oFo{1-+{A
z5CdtBhcRz`>)Xhfi-#U)tjFk#M;?AyCzi<@D_Qka<$3k9Kl`&2FP}Ey<3pp5eB`5a
zkn^KI`u{esc-$0z==~pnOHX?$Jm;=ENv75Z=8Ecy$4z6#s1)=T$3vhOz34?Wj%VI}
z2i1N+<Ic^u+ywv4KlyLSaE=CaJeaumi=UqkQ|_OP7FX#x$WQF&jc@$TNv1x*9wbx$
zulR;<AUXVhOtONsK-yy}o43C8t#mN*&;Hpzo5pg54v*9eiwu2uK=hH1z%TyGe`!Wr
zr0I)a{1S=~dChD7ZzN0SBt6bYr{DheWCZ{CB+u{r!*|0Uz2{x<cV7PkFmZ<ZLoApQ
z2YG<=0XLrC_kG_Fw@mW;*S`OICpo==4$m-Z;}?G67YN&L{Kjw4A<_Txzq|on@rqZ#
z5B}f}k{shbNK4$X>Pr#nJnnYYNwm&m-(C#&Tr<TV<oSy|ZZf>!1urDJVMNbUpZZjh
z34ovbxnGzL7rz4k^S}Njn)7HpdT1Ia9s;0jU~Q3GCVBtbiDp<s;lKW`e}aq^nED9Q
zP~CRhlV~oz{`Ie?zEEf2VS!%ulBO3M>!|2L-?JFYSK>KJ^<aj1@h?8PhoV1Sd#yh+
zZT`(u`!wAzFJWz`ngCAs`$Z|fmxkuRIy!8qs`Vw?F2=3h9UQR7Q;_2Cs_MUb5P+A;
zKdUtMpbhjDr#WG-30|1t#U8<&x`CE5=#h!39Cn-%gEx<o*E~czM8iArfKGKLr3xYM
z=15MMdYBXaXMDEQ^eNFEau7Lcv1<OT*al4>Lz^PThDPKqrR@Rnz7JLdK(U~qD#?K#
z<*KJhtVk(0N5PJ61eTr<9dH5{+ODydR3L+3-&I(HZP?<ls<6}NsZaYo(G>`L$Wc-R
z@%_nR%a}3)KTG;FT4*92hk}j0^`t&Q&NI43IYc9#qSx-g>5M9D(-U^K(J0uAuGyvM
z!i{TYY)N@8v?01ip{qu`g_X21wyfB2GbVJUR5#K$VV?}2xx@28QZrHA6{Vx_T<MB3
zu%)y;rB(>{$8=TiJH(1(x4h)!_01b1c3df&l;CAxuRIt1x!2kWjD0)qtzEJ4TpH-$
zZR<98iY+V8Q6Exj9KkB`TFEDEnx=8a?B>>BH72s-dD6NLn5M_^+~!s)^IWmhL9ERC
z9q9p`*PIRsWrgVo61f;{ZY9|yA<tP4jDoF}N2<LsD&0h0N8x#7-A~vgEl*OqW|`N9
zjUy;{gSIoQq@!rA3AW5$<ffx=Gf7G@(vqO2V>Zv#VL?ZkzLd|~YA&^O6?x3r%@x%H
zvhhW%G>@5%AlReO8R^b45UmbL2yt0Q88+s5F(Al1M;Rh4p~8+)5j&l0(oXkhjkpk_
zl#^HT&JP;xK`}#QSg&+Fy_jRAKLg~su1~C^1}gUJ<#k2R+tS)+pt-}T?6P?hW-;Ki
zLq%C%@P00ulYyp6<oS`SJ+<GshwI$(pKTwT?Z0H~pn5H_GI8YkMoUqtZN9yBscG&F
zl3qgk*7QEQCo>OC_j|wJroQ|--}N69Th3i<I+oO6Rd40c!AA1eV5{%}n2hSb4_(=h
z73OsF?G+u{&%I|S&OP6BSo+Et@&Q~uy2j==6;{{owz#wQ8C`qW0N@biT5L1y4YsNs
zI&^NZL5oc<X+PAzMpPWc*5RpPY1%zq+qpvq(MBGFYll|8JkNV`>5#nUc};-!*Qxn;
zw61Dwv$-UFTW<R^%<~#rL)TVs2p*lAl^$q#uKiW>92{+WbnReM9n|u4b_pMchUeAT
zJD<-wm%8%k`#O#1A~ON{^KwZKn65uGmpc0MG;IDIq&lwq?(WPrKbKk^<>eJRGNFBY
z=fiBz2#;$0&?y4ke39IDAy$gO!bj}BWOV{YVOj}QV9@FTzL%Rcgei%YN5jzdqy}7j
zkah~e$R)gkBL~pn7!`6A&Scm^2`@25*kmg0v=PoFEJs&*KJ+CRHkf128Rlw&iHKgj
zXn<Q)-nNBqcIqiDni8abN-;Oh7Bs+N{b;1b^g37&)h`I}dT=uA-*flf@W5oqMMKM8
zJhjp2|2^OH-Sltu^1<t6FMAn$@!l`Or#|@!`urz<avv>v)jJ;z@wo9r13Ma5x#(@A
zlqq=7;f<VVsKhZvcMA69FWm<>-Fzd_8EHfGnHJobZiWvD%5}#bcM#6@dg#)_@cGYw
zfsELS3$Itd`qfq(*I&<m_8n8-+v&i7y$bOFfzrYlb?d@YdwqF?GSSfU>ioGi9BpnP
zBRUpS#hL<WOh-?5y<Yi^-$+L2FMs(<bO3;n0Ep4@&$|WR;N$|^(O`~s4)B>uGc>4U
z%A27Ieci(Y_kS5K-k|crCxj-Ct`D3mTBIyUKZqAS!SMj+>%ac%>F{MO2Sa$_*f15;
z=Rf~Bz`%ru9(oWkz+!Y>{y2_Lf9g|Iv>G>6=<$gMPI#bzJW%|Y=NDxX`K$T6F@OJu
zKJ-Bu3wvB4?;o0ERWD5agM54W%fFtYIgIxcZE<e?)^Gh5eMUOtb!qxupNAWJH0ocH
z=b=Y2rc^>h_&0vzD@{I77T)>JcajWK6vZ??l#9FXzK8xDy+L12)r|)^S1&@|QtQtp
z9fiC6%OxdfE>`V0S1{t`)vx{wlpag3_x|Dg;NEFYQk{d5v0RxBgC3fggU`ic)A;8p
zlBNp}tFB&UtjJfC6HF(BslH}cE(ZQ`H989P<-tZ?-@cbSR(>qGybCx>G+(v;4AkIt
zKRrJu7X>Ead46Lcx;r>*UiZ@mzj-ftY}sK;P%myO-42R18}@da@l_8#;)47;yZ^Fb
zjEt5sk>_a;L!KJ$_`rT;9xZ4f()urG1l9c9RLDJZ7&zsBCj+X~WSQDa-sgcnCpFxe
z!OGVJkm9qbd(~Jx?iy^V!bYL1VUTvk76j|aIo0tnSFn*hlNZTK3XP6Ti?A}?q#?zn
zUI81H*%JtgAzQJDk+Q;uSVoSp&~znAH`MorJr0GgBj?*5gsv3fLmn-RJ?}NOiqe&h
z-lX4TE-2kbF@jqjb4iuL#@tl#*suxR@u&ek?1`tI=Q_4=Bu{I^p$1jWT_1_Z4!fi$
zV`Hu!0E`@sq`APIVUXyEx$S{@m>tg*J9*=X<3*828O!KuCk%C7eZ`i@Q+s9k;wjw@
z@<n-`HBWiw0@z+&$6oIGV14cPel9h1OSMcWHjPMQy2@NLY?4<$tR&JfiwD(UJda{D
zH*A`#UJAUMH`uthzABy@9o<|?MGvS9peOjSa@ZVQ6&oKmu&y3~4^mKnvpljvUk|Jh
zbTm&jsaK%6?0fPUqnj%=UD-Qq)yRa*&9UeK)lpdvdB`i=)q#kvjt<FdD28fFgOxOd
zUF3Ps^)pOIIiBaF@>tq;rUz6<?P%Ol$1>x2qPe2j07}Y*{a6l2LuPqBsH40*iXIs3
zvzLjMu00(!%Aw+5^)*aK1+V*8rBHbWrw3%7w>-Cl<RY&Sz&UdTS!>m654O7m)Aj6K
zTeq`!qu;p8+i}4jb3I?Y=E{`;9p!W_-lFP(Nj{IVe)f(fJcsJE5F1VHm5Squwqqab
zj`zK9M+Z6cT#eE4X<O!l%|_NBJcp`wT!V;ypaZ!Eo7SxBVN>igZ1QZp??`GWwb(T!
z#m0Hv`p5#phQjCW9~!z=UbQ)Qv1O<|f_*zio23q2PsIjM(aq=%&~3*{9eS2{-jj*6
zBol#i(=X8t*J($d=LfK>yoQFZhp?>=$VAYwT`M+uUWF|sm*$bNuTPQJb;k?5qU(A+
z!)823y1Kb^nmkr>t)Xi^MGwFdHgFDR9eG@$D@C$QbhUObkIg(!_AV{yT`C>bq3dZn
zs+w!99#Eby(UtZ^vDQ(|TvB6pI>7U5(NWp!sE$19^V;a8aDeAygDrP>K3t=Y>dB+F
zQ!4o-dDUmRu^rM;xuXY`c&^UtmBXW4#kv&C@ZZ{ZujT5b0BQ~a$}tKIu|Cn!ywFL&
z2dMMv576Y*hbAlspr2zMoTp0S%G%w$`zcwP6EyxCp+X7a*vkYsgl%ZrV~Z^==d7M#
z4=y4C{Blo>%D5E?T<lc8jxL`zIBZ0RFt1mj%Sbw?2=kMln{K)pzW=ZNHL5c}3QHHQ
zfsJhU-FqLr>9>9x?z!hPjDN+27C-TcPr|SK>Ki6Q;$;eN#%FJi&cla3_<k8P_k-T~
z=t-@{R5VgzKmXYe`~VqpG1omBa6bHzj}VV2w0|<Je)MA>hlej;mPNc8(IOd&F+|x;
zWv9RKcW5NnFd3!a)vFwBpa($ud-SMBBmPy1M!4mc$I+NDz0D^lqjZo$U$`m5P~7|O
z`x9A!Gi|X>0~$&x4N0zL-OHnw35?|Up6~fy&~znVnT+zE{oEJe;mHtt>*F5}U%2;P
zc<_Ns@UB1jeM-}VhZA@`^w1^Rz$sR66W<r5z5Vvv=>Ua_ScQ^~2-Di2S9om%4e;PY
z55wagz6?4CDy8V=63!KVFJ<!h{|EozAFy(o`avWACnh>#IvwQe=RWs&O2hC+fBeVf
zUB2D!<?&LaM_wKu`Pj$c%ETLt7+~ekhURa7-Rt0Mrg5N`*IMKc(;>Y0Yrhumyz4HC
z&cF-9>@}6p<;z##)A!sn9Z)@Jec?0jnht)x_xrvdZjxN}Dg!Tg;S1pzQy;JTrf;IC
z3Y;S-Z+MV_*L&Xkhm*{I$*?OwU-O#3FdZn}UWIt#_3GEWmI^Wd^iTh^^^LSdxyQpP
zJ={5Rhg+)Pz3L=Az&k`SKo)+PaY)qwHn~Fp^|pKd3tj}b+<c481AW;%>sim7=sQ30
zzyHC9D7;@k<A}a8$(z2ARW|U&c2y3_bOGdZ{;#wzVB>gCN7Xt1<Famd@~vYJxyktt
zbN#xLMPsY`HFR(<*wnb0GgSIh-#hWt_Yy4YeveK07Rq6Q7WpYJVcWW1mlq%Cl)rfa
z40c-0H2}oGk~zFT1~#JbXEDgQod3LZ(A>;gSTDQWp<rGtAW;T*EX6Eq@<Icz2W;~f
zpw{&P44ZnCN3DJ24BFf-#`z&spS4ECDA;^HPBLTx=UC6+uqTcPD%kifU*)U@jXGdD
z@>+wjk7k^dsG3pQ5nC!X1_qzUT(Hsaljh-N-JR1iwwyShHZ3U}-S}PL@{TKZ$vt1y
z1W@eR(VZfILX%@%=q_|q?3A}ZxH?afqmgR5){E-|Zhh(L8o+Yb8;?~c6syT&O?Uc?
z20$2GPIbv8?y!;naYa|4He5XydF^8>bsjo>hfv9*%5w&l$IJ#voolhoHI{Goc2*fs
zo|DXgn`<(cT6r{{rY6U_U@JV=v535ley-(eu2pksHO#Q_yTD`9XgbnB#Slnf+IA>)
zM|{14o*r0ngpZd;ud{}>CIF5tX@pv!^fxmdl}f}!>|v|q6<qy{7Ta7N^Gqh3JPtgM
zlNjsO;0;a>c%G9)3bw)M+UNm_pa=`{8s>C$dLVn<PdZB5b1f4wG&(BKVSbXi<8{9s
zq#n?pi#%_zabe>@4*uOPE_km&jyllyo9@H3Z;eP>ToFWlCjb3dHu8TKuCo8*&m-yb
z;N5sF-+Yfsx-X8sXG86f)3)io-XpjHSBzQ*+Rf1lph^>(n|9y#Y1pB~)*5L-<9WSs
zf9yT8>HpEtHN*0S_jre&C2XO2p3&JE0}o*v7O*9FbTYv|=+o7(oPqA-j0DTrV4+R#
zjf>D4k9KHyxX|t%U=C|Nc|J`Z0S@pz%)RRY=JHlWx_BOkVmM!#i>K*<MQBh`&sNy{
zTs?s8R6PO0bJyNJ`!so6lBd}mZS?>gc-Of0*um!K%AtGVly;N1Fpr!%la6ZX>U3Vt
z`QW{$>8QoN7v!~l{!9-vI_flRs|9Q=&#U>^$U2QBvu02m(POzzjQ|MlKeXt|CEQM5
za@jKpYK3g=YG{%BWDjKCaUcVyJa9VDz#bP`Af|2Cg`5>*5Mrqi=;^cO@YnVho1Gd#
zVH9C=1~Frl8lD4txLNIkP{N^ncw8$Ofp-!xn+l<X;ixw?eIABBwj>2-Iv08`KlAoy
z!HqZG0Gi{>7wo{aCRiXB4Xt?LMu|N7w<nX4`b+TOgAb605P9KDhC=kh-bfy0yfp0$
z8nN+GkE+|A_(b}ARr1Mx@cr*6gEkt4(QyCiPu&fdA9)xKT{(oqiwePD2LSRF9u{1h
z4DcGwfRPqxfWH6!`^kt-9#9x=opxsQ_Xb(?Xvc{~X_b(!9l8^bBy<`teEyT4@)Vmi
zcvy1JbO5lM49yQ+dI<jHzAuph9X-e~9gyaoXCr?m4>LC;J3Z#d1xibE!wnbeT!ESM
zn&KZ;6ih9o|H;X=80euaZg?&Mc`Bx;e%gF6goR%*J(TxO$H)*&BZG2s?|t`82Md>o
z=jwfByvm#k1qpQN(q+o!f3n@V!<|4ynx8t+DC_(Pd_eYu>3}3mf1dI5r$c*<<8G3Z
zM=S@jUN_!!6Wo6L9qe`J=!ORenC|A8ooC^7{{vrv&r9KHr59p*+EbqbPn+<etl}R$
zam9@_rdzuF@RcfT4GkO^b>WrsAnD9{m%faa7I}oj9~g9AAlTQ<H{;lDsdN-xx7>2m
zgy&-2XAYF-Jf(GoBhP!b(`XtS)M06=Cscn{Mb@C`etI^_tE4Y!brc!d9etD*elAt@
zUZ9p&Hd02TG2`SJ&)(7HVAJdN8e0ja_V1<9>2^;iuV1xakIfS?IvuWZaXoL~@zO<+
zZsdc_H|B@(4D&{hl%sk}b53)EZz;#R%V9lYKJIm$w>)krPx*=FfgaYD7n*W`uQnt%
zRs*2QO|LZo0Ipyj=nyOg9<@*RVcve!b;rAX$y<)~3igukU30Ea-%(EMfolNlN6lF+
zSf{aIE_urZj@a;>D!J>?kiJ@#8UQGcTAzUOmJ3#tOY9qIcz%%l+S7Xs*EO1Nd%HcR
z_k`5|7$tZ8uz_9P6aEd2MRI}TSR&^Jr`+{O$GEn71xc|@_nb(c{R^uj!-klQ&Ula=
zfO3f!ItI%B&K|v6&Nn)><D4h#aVR`DY+3_gOaG=k`j|g^Cpp&z>z1&tXuMVfAg;-9
zNHqW^LL#=7uBZ!6l&**^W1iwI6>G)Z_4xUC$29;L>x3=s>pc4nR(uz&1Iq;Es>eM1
zBCjVzSLS&Xc}2N8zvAe!6Tx=m=$M^+5*?AQK5sd$=cER}c7L*njX!URW*ezdfpi>P
z4FHnI71PmbR79zzkhbL6O>~Ts|2<*OWtLBrby|z8O741gE|7figbjHvbs$6rP#&oU
zK;m4$N1o@d1^{|$D|U1aK)Mn(%d0PXV7ljOVr&>ef!MEN4FErvCORWwH<I)JnC4QT
z2q4BP*l3=Q6VE4}3O00HI7ufHU5iet=s02964n*rKS>Uo>L~m?YzW(l>8SO@^TFu4
zaXKnAbR5WerOc(E^$LXNcmTha&sZY`<=5y+GQrr6Gs`Q}bw%|8sFp&U>nPL%SOWlc
z_S)oiOM2a7MX;M#WPm(SeGPyZrS?Z6dEG><0WiWiJwL1`tP^dvdB<xo)Tc7<Sw|Il
zrP?0@*LgUWd2c)yon<<zkx$e0)9+ChjzyoYkIvDY+<JW~bj*pP6!;Jz0sC^WvjMKN
z*A$t;#lbO>K-cM569A(q*6WoyPUv1vjV-)p2cq8ryTf&Pne7i`d6tO!fTt;|z{MlU
z>2Mepb5`T$waZOUb1I&ayI!1Nd|rKZ`YP!#6UnakT(!K=ft|GQ9k(9pywDVl<FIcQ
zq86%L;5kD#?|$s$DL;hGweK`%wXB!D=PIQG%(?PFSLaT}22ebLJzWphQs`kzE{FO8
zcAth6pM`%s&ktcMQJwQz3o~r_K)r&qV)Jx$Jl7oS#B<p%n&VRx$Gi?*qvJV6!ycgP
ztd>G5-t(hixBT!PTL^{cqMJ^mtC!cD=eg@=*p~9YD_uLe>pk{yiLNr2GSpEthHZi8
z*Cem|{UXneu5K=!mb>2cK%=9e!Im36VAvLPRF|%v=N)W|ItuFg8jCz{=aOO*d3>~b
zz<BPlr&Q{eD9=0cniq7GpXZN-=c(m+N>-y*^*}nHquP1}-S^T0HoLMn6-oAj_~;i8
zokNM{L@CQAo(w!myg^Ht-r9wacw@S@S2@(ddt7E?ROQ_neHcWfR2{vr94f*TLLCkj
zOZW)3<HC7Zxq1cC-eSwmOIWdOhM^lKrtL=yVL9q$gO>$r$U+Z|h?q*}<mwe8@YrI@
z*}`)8C-or(hO}x}4@*NaxY7cBvxev1^=vXwd%CJ&78j*AUc4|Z#3i5TmN!Iieal-Y
zPkNH@V|}J71T?Vw%e-Pm0sf1B@h`~O{p<hk-%+gq68Iz@(9_?KT)9e{YK$Bx2O~|s
zLb9CtFe0eNrlLNCV02gd26u*uhJU<%`Imp0HXyz~yzsz)j6BC`WG;sS(S;TcULGNu
zyyAt1a?CmZj(5BRer_5&-iO9!oRDNhBm>u;Hujh=cIOJu65R$FH+i%98UPv8Xr|uJ
zcx@_~02?>|d)llYO&hz-U>+1pbIs<;^!Zbt`V@`fcYgPG;Z1LRBi(z64BZ^=&2-w+
z0S0Y2C2E1g%e5XthVxV3<8I?kqWG(6%v{`U<rI7n9pbTtC>}C_qdz|W(GSDDU;IKf
z*7Fz6!^IoUPqZusZk=l()ZTS`I4Q>5$slli<zc|o8+w+Dzo%l___u_6>tg%KPkcN)
z{NNMhw3R!@abpC))8&wXa^w1xK-drF_*bwQs&G15=t*94m8U$i@d;c%A-E7XtXnd$
zN2q2_w8BrA2YRfJ7tq`D{J9OMG{|LM;TU(W{s3Y?tjeqC<`T`jq#K8#KTStL(d}p?
z$uZ7C2bHHwA(>ry1gLa7UZmSo8)hqqzL<{A-5*=sF8Wcix9_F(Ft1n8VuPG#*mKr{
zW93O5g7?+UyuX5_#L{V@(RS$lNry=o%@ImoX!5F+eB1ncSq$wty$t7I=fg~p{O?KH
zk?@#?g61(UjNm{G05m4VQgAC<yI{+lJ_dikb2-$r%LPu0L?|1)L2_18JIx)*uPxa0
z_lTYRe`8r(Q}IaJ9A-HitaE`|&gzl%?a*w{IKO+Tr9i(AQh-vi3ignLVKusnXY9_^
zQqTiwO^dP@&sNQ;PIOKQN@}I-=nR$%yyUV^f?ettDBTcSbUe3oF}%^R-1SOV$8&rq
z(`S(PD7FVr*MaD%JddvK1M3O>jGq!{4S;d4dCa8-K*jU2`5d&K!N|vx>T$g9@Z9P^
zh`#eR075Qw8Y_8KY(*aHngAZ#K(!Pqd6agYYt>w$O%7Q7jKS3a;4~?^9;J~@@|p^^
z5QVN@9z!FqoNf>($NFGvBHe6SyI@UjQ(xpg2^R5KSGsC_jl`)AvqW5gq!h}Y=PCoT
zuC3)YgXV|dx;*<zH(q-e9c6S>d4v-2%MJ#y(ow<Hfq+U!@lKBEnmam*-z}V*9xMXT
z)1}bK<=uDkXmcw!_lu5Ftfr&fT-uY48tDCA<kj;$Eb1uMp9xm2{*0xT0*;+M{bf_1
z%iP+HY*5fhfTH`g#tPFl#zNPk>qSQyR$W`@Tmk?{m5!?Dx-asGk3b(C9-jBM3uN5)
z@A*O2CV~ArAVzg1sJ%b^-%QhB-|E`$dcT5&!?ITiNpgx7CF3?dr$4LxJNUfG0Ntfp
zKAabtKDPZR^E1!uwvSi_cMyBlzT~&T{WgbAy@Hfx3(kX->GU0DKPfVMXesNZHH6b^
zDOA`RI#lECVQbqO+O(e9LGKA+Hij14Y<{-bTP#BN%Gsy+eSn5`h)uAB=2-!jd1iea
zpsVipyY22?KaMJzMAk|@UY~}|^W2ZM!q(pC`#!+)C7C$OTxxMEU6%B~`~kt{@xg0J
zMsl6IUfbeAUm?$<HG<Ovy>VtY7Ow{u`E`m+9EuQH)St~fge5(&boJWLsM|eu{W~{*
zM}3~yoc7S6>ykV!VQYRL8Z4oM&2D$t{BL{nJalvr?+y7*i30#QsHG2IofJStk<#ZV
z3L=;M{j+;yP^lRdZyfkq3dPbzP@VS~$oPf3B3j%BPO%cCJ%jf!gwpO_(#9hwM6W|%
zPR9mNLfCwpe>N@7bIA`+{ksEzb~>T~{P_5a8JeKicV-d6N2mcRS1-#@)jycO8`%qo
zJpZYn8&oekyl`{ZzQ54Oi+|=<`E86Pzn8r*1;D-c-b;mb-}|2Tn4wtjhfsK(uW5qk
z+1SAK8x|CrdV6E;eXf<=dC>$d;u$?srhALR$)hSk%DX-pt3QXugx~kR&e)XZxx#BN
z>t^DHhDXK2A1ZuH7actKgQBM0=9+}8(*|ien82dGSVZ@a|M-tPPi^HScd>H+8V}uE
zPD$F!A%reAypVU7AHD=zlOcYl8kF?}6?szW0mY{ZU%o>xH{N7skHSSBm9go#&Ye4|
z@ZtS<aHY{N0h&1}izu(a{Tzqp_wJ|7rSqC`MwzE+_KW^Sx$<K*Ovak#u?Q9Z+=MA+
zuoNGrKcSB{0d(iI;yjD)_a5|isKZ~F5wc(fGVt_x-u9i(fDIPLh0jwDfa(%?*7;ez
zpARwTI=F28AS54!`yqg(y_#Oc&P!xEILw@fe4yO)YtFeox*XPNq%>ssZ#pnQuccJl
z^`IH`1AaG>ag4o8C@-``s$pM*iPDuMOPzv;vmp80**NBMQX@90SHP+A1e>)d!6t<w
z$7GQ$I2JS{W0V5tG3UdHO!W#RS3MaOIp6jW)F7G-8|BkRW0`oej+$yk^TA8L?e&Ch
zOv&X?UlaC|z2wywY)n^apR8dg<GzE<<yaTGq7`!#13tFJAn#Z-^r7c}_SlrJTRUh*
zD<rnhu*H(QUa^r(D9^DS>5frasn8wYy~r1QHsviB>?~t!NXB(57JEl!VLUej>Xvyb
z2O%C?CM;S9Vl8y`@+dq<d6o2uCKG~ntJo|zxX@MP6|o^tBj^FtC|;jHeWQX|iMO(1
zqaxIq>t}$>9m58tUV+h7Ql%+2lwYKq%_U8fITmbGU|4EY;2|p&f+p{JL>f8z4nLbb
zs_}Pa>j{r-)WZaE7C6D&^&%4##o*|c4O`IzNwBTrN+R|4JWoXr>=M^ruv!WYT~Py3
zy@Cpx<GI7OQ*2%yy^g}U5=0)w8_e{;G`DCjnT|?MN3AKMmi9QSwK=aSwy4-ZbWnhb
zZmI`7_M(HtD8Anb&s!bEa}7P}SBpAo$L~49#&c<JItnDO{$U+O`W1PYwHR`Z&GWpS
zD=e?2_J_?id>(n@vyNKHyibA+<zjC-YE8O+992gRd?0{y%>~;b9hE8_g@-&5PIjrJ
zX+&BiO?k+x4^6KcqNZ*u&IEiYR3Za(nc|ltCG}*0&a(KryO>V8DpN<lX!}mQyi=j3
z04YJ%zWAkI=X#%@hrmlYtGx#%{XUnR{~2KBfvMRB)H~F->z>%>eePm&*zud;05;ON
zl|y84cr>rup%kCi_9bkVcVDno?Ps9tdI6iq-lLm3?p4@hT`R$R1ozsz*xX*)w<qZ5
z)rSRaioK<qKF`-H*eCHumUjkW!$~X7mK3Gno}C+c>|t9i$m3~rHEf-z2BT{zdCaXA
zm14_ve)zrcVFk-`X*htb#jZS04R({qP-+6q+5u+RIGrn;ndh5MM8#=zHEbYyK;`ii
zJ%BP0W4{i>AstmkgPfJ;y?HJXLrT}dwGXjVw?ybV9?(&Tuz|xioIxHH+e}AYs~&Lj
z*u%a#Wv+GUnoGTcMR{!X=cA#kk4}Qqb=2Un(G~OnS{D#=8}7BP9~M&pi8+QA!t`JW
z24JTGADq`M5-SuBARfRx=l?F%p)Tg#DGGI)`Z@nsvY4dsksx`Wv*gtcCFlQE6f)(!
z%(8%pF7$=k#nYu>gkmqA{7v|sVsGjd^sp(@umI{yUi@N8qjS$a_mF}73!ncy{N?ZX
zzr!o@t7tKOv|bf#Q5HME`2LF@`7hwz?|wILNVZ$}&hPv#c;anOgdh6bf18Z_WaDeO
z9)hJeGHgoM7-xoR%$JX;X8y+C_#5z_zy9^`z+^PnLU0=GF=l?T1=+md{m*^QbLjrJ
zyyY!qME=+R`hT9r_Zf;PKw<yUAN^4(VEWXje+^tXe;%IyyyuWd`H%d_kI+E_))7Dy
z$0vK(?#5~y95Tyc(ju9ae5#UF`KS&9rt9fXe+Dh`|NsBwpTJAM?xnDs`VFDvVzz>2
z!c+W%-yKajRl#Ris8J!ZfA^<94L>l^O#8(`z%QD3edn{EO}XuFz4eLk+~++P{{6rI
z_wfGdfZ*+Ke>+83pkaa14au|B8cB*p!hmS*Ri9nNMU2j9tt^jb2-WeJk*%F;tASGX
zpuGOZZ@vls@lX6C**F1w{mWhkFM8n%;f`lL8*Y2jli{vAp9Rmk>n`}EU-~7u`|i8p
zjc<I@B*%BVIu6_$dQP3}_U<r+Bv=kuLiJMDmxIkU;kO#?Z@Td&c)^Rl7QXV}B^evv
ze|b7=!O-vR$rdi&coBFLDiJ@~d8q44Ir91F`3o1}rkfvU-ko?K(jRLuSO}WP6OQXk
z_df`q`P>()zOf#{*L~gB!Q&qPcsW!UZ7vZ{FmxS@U+bbou;~VGN6`}}z`2sa=%Nt=
zbZ|p7DPH=1o@!BB)f0V9kEt3k#J@QxoBoY*Jw9?pWG2mY#!P?4P^E7x`jb8TRQD4$
zr#}(x+ARpQT@6)U9%s7UHZ@H#CiDDrx<5&(ENQ3EL3%H-0Z{81L|K^m_fm_!((N95
z4_hoX0JwjS)VSU^?s~DfYRVtpykjK^Jw(D{<;-I>X70+y7C8ME-m@7>abH?^tyh#2
z7>!lD@KT<0xG2@ep}CydKofW_BbPNwk>?&46*T>b?JJ*SUGqRE!a~@@qnFa+d2Hj}
zHZc@wLf*&RPS_Ny6fhk%-#Z%H>5u}`Yen*2rNW%RhE#Go7#VAgy?Fd4X+IKdR1{RA
z8t}PBN37+8?{9}~pOd8ci<BOOLtQmgdtd{h9H0c6Yd{AT>Wz#vr(ED-6jm(OE}qs$
zE2Z1sVarC>BiRUyQh0MSXtCfOrxIBex-%Vxt|Mb*gCLqw_wr602wO^EGBK(#GU{fL
zv2KP{;kjT3#ReP|rt%mXc~tD^nD1pmd5-<!nvM;Md&7=&M+3WIQ#z6ddNdDpjZPW`
z+sbmy@2q`>P0|<QytBFFc+SOv85_$4i2Qo&5}FNS1eOC6O%(uw6=E%qxGNY_Ew4<+
zX!1JBA)1%R3cJv;$b`tJVB05^$Cb!qqX%G4S1xKf(7oBurBS`z9X4?CrgUuO(d&WO
z(*vrb_61umdO)!y2(ory`K*m^ihbp<IUOcCs_>lKk0jb?uA>CI*8?=~YdxT;07j)7
zwvQ^Gk$5>;`-*uk#efUXN7)}~tq#W8>VdTsSvIUad31E!NUfy3(*tw}tk?!U^wnq%
zk%5#;low$ubWJ@S1?7ED#ej!_imV3qpqRc7^lr({m|+FUM=kUoDuaR6E8=Ao*SMfV
zmCO;UtFNvb?9%-NFWqEatR5`xH{pznEnRaQy28T0AN8ecb6Nmp+gm&uZ2k)ROn~B{
zzWn2UdxNdT^QSTX(DpTh7Ro7DD7nYm`UXA+d*uMs+&>#4oPn-q#I}5UaTK%to5Oa9
zme<1b3R~&?Ojf=&BI2=Lx!(!@r61vJS8)<rp36PlOJli~IeuE(jBcmRwNtR2cK?~M
zd7g(b$L8ja8nSC}3o>(xyt1X_l&g8RS%f;+JRKJ2TKoG2J#ZSXL+xRyuT!44NY@a|
z4z0gkyvMa2?y$wC#(%O@nvTry*lZ80Lyi1+a3jeU_TA=42WOG&<*twN2+hl^Ltz_A
zVKVOMax9*?xXFr+81!s6VtT>ml6PNI&e+ScWh^pk#YRhyO@FHfFK~*0u;b@(EJ`nw
zdIa|9oM+ymn7bB@hFb6yJ>w~@3NBEk2o|{hgQFq-jcG^z@DJZ><9Oclo;MvPJdF%m
z8)*3Dt>b>&4PDW=v89}u*)ZO4!wvN8ubGV4_@{kt>L?cVHpg^3Sm5^Fd%s92j_|^T
zFB-&g?9aaIxp3oTuzlWLcaq^BbGEB|uy<ZEEH;TURHt1!oHjI37g%J(+m-zDSkM;@
zzAyieUJlQ>^G<*TTIma1`9@g85KW7dRC_0nsYI&aSUx`;=IF^DdKo<)^V)yS*HCfY
zr%i`HPkGXl;7`8vCAc~nUy+yK$JAg-a<HOf<<G@Oxs_MwKBdsfzYN;Bh8}Hr=z=vL
z9(dpZyAO*CWAW%`-hRg<2Y0~BzV5|v%gr~#3#UT?l#{o<^=%biOgn>5MguqI|4+?)
zL!<aw4yvjbzWh#$9_xk))4HG${oJ|p<N;QVG-pXS!^U1tpHmhSX0VpuqE`m%j6f=@
zRRwy2Ph%0D<L~#B+c{N~MQlhLs)Ye11%;-kz_~yvg-ovN7h4FSN*AQx%@*RPy@-Sc
z-NkR_6gH`q388Ip$|gD;sTWCFqd#$44ox4SxhJ|t)1Ocx!gQ>9Kn1bXRPnl<ta+yU
z>z68Hak@X$^<J{Hqjz~vw;y~jiEhtKm@+QI23(QO`qn<Z&XRsJJf;`&fA|;E0ri4L
zelV{_@!sV0O{)RZtN<NCZYcHHnv5>^8)Ok0J-1@i9K_h066Yz$112<_W1et)-kLmy
z2g_BzlKk(OE(hC>ni>G>mFV{UD28YD4&AFaC>fM8<(gkb_L>Ft@*XrrjbOuk@l)Ts
z%*M50%^oah_#FkS=GP{y_<3N@RmvB+8t4Gv#PaX5JS9n!VIEYJZ(9x{rY{H^>J;+)
zNu<j$UD#?pFkR759nm<4`L*|CTtj<3M@%SPxjqo4X+y)K$3}-~n9C9m3`WjdekA9o
zJ39Pjj}^p9^$G&!0%r-pdONtViBsSBzTxN&E~-ji-%3~1&-*>gfb^Xd+nV#eQwk%K
zfk?*N(ddW=0E~?e<_1pRG-l3K&oVF)eW)<H8nQEx(J?8{0~_{`&P>O_B2TvTY?enf
zm@-zzj)x*-G+*(dB+4HC!Li^00_V|BCa<vFQ#;a)!jUDXI_2NRv7KxQ8)6Tjbswa_
zYv%MM-s_w5=Sr%SsckELW7NYabY*PQ*!FA$Rczal=L)8HV|f>Bky9Y*fvRGqR6vR8
zi0jDxiRM_BbUAyDG}ZJtTj9AK-tM`8Fv{aT?<GgAr2bK!<J`j93)7mw^PK6bbQGSO
z9tc(sD~cZ2QSN$|%UXFZ@9Gmu#iPY+*?B=d&Vlm5?`<yRF$*?{_84n<+zQWe+-s7V
zor|c5ROgB4DsySn`Wgeb?<m)NlUE-oz=0+kV=Fx0OPvxba7;W;B)dd+%K1Oy*{A%T
zd5)g_YpDUidO+s+ZY*@f0|cj|XlyP5$jj@-VdHr(o@=6`@W2!IZCg3)qIr&UX^(wz
zVdq^6f=zXl@O<Dx=HuS!e*FD*CprIznT{GnM<vAyU}=WTTXDjM`_7FNOWyCb*!+?3
zJc;AOBr_7tk#l5c3P^Im5G-|2y_OX^TVw!K2CgLgn;126l~*YGdtNh~-LU;<_wvS!
z5<!bPb|3h#Q4gxHg%9{j&gxz+aJ+i?;qiCfywK382{7p+n*Z`y`D(eqCA!A2WjREX
z_YHZ24kc&xS+QlP^O#$E2sO4CO+O^xo;ta}Q}JB2-1Y7N(9>1ZifuaBPQ@<R_@I8M
z9eNx#pLc(B*hX=vsOSn{sggB!{iaDXx<uF3nbYUhpV3u#O4wt+mI97V^`g<e!Pcu$
z5l_Q*7P{{1ngGekqhj~+>Sdx=OM&)5k)6DDW6A#>7U(*YM~A(_wj{3(TQ{$Mtm_qM
zRD$KMU#+fbE~zso$zupz>^`Ee%E2BrwQOgeJ9+HYD=?miVAy(k!05I_*L;TD^(c>u
zt&zv2S_-BI_RF;t;1oSzI_eaj<JxD{k;g92MSoU0szZ0JrH}x+dZ49iKEqr(OHCD(
zN7Yeli9Gjn3H#{PQ~@~qd#RO)VzmagPX}9V06fZrfW-p<wN2>;UI)+%8RE7&jEwV|
z&htWdUnXL>!ag^hP%ZYnX3NvLZiw4FEQbw*LGrn06KG}Z2%Q}19y`Dy_BNzQ1-iwC
z&p@O4-}`%i4}SJ%f0lBsYySIx`Ex%9zyG$k!C(LDe;r==%2$GVm8qfhzx~OdguCy#
z2R`wMkAwF%`OfeBPWYP1z<lA{IW}77UUHjk9_~JLFv)M9G#RD;*5CSD@Y6s2)9}VO
z{%>Twzwf?#;a%@~7rgehuO)#)L$+QY`p}2TvmZUc(bNCp#f$XJ@A|IqhNnLDDU|mg
z4dE)_PkiDNsqijFE8KF+En;-bbm)L7dH(2+{+JFycwBiJi{!2seB`mTS;I{?-T>#0
zj%-YLJ^b(`Do{%WY$qJbqr2|9i~4%o+ulBX`rt&jPtb4PJ&g&+e%mx=j6wjR@7pHY
zW8vSAef$#?S@Gm2KbefX-}61+Bi_&*c@;&0{o{C%pVTJaM9+A})8Tuk`@cpG0MwZK
zp$~ij-tceUK=*L}JR&RZAyz}AJJxSd^W-3gG3A@(lZUx6TfMr=0ZJ~OfX!UP>yd{a
zhA({K3vl%c7iCrh?O%BHtKt9iU;dZ$-8n3fmUuz%hBv$c-u&h_6aVmvZc&N%zUr0V
zK+5<DkAEEH?#FwO$3OKy{*Q3`9e2P_{?mVIiVoB0{MK*%7Rl2;oxaE4Ub%7=zU5oK
z1%Bf<{vAAiIw1PSSG){9_nA*uV}1Yo-Vgu%fA`<PH-Gat!#91?H<{eO{T=Usk9_#U
z@UQ;WzoIloC>MCJ@N2*JYw(I!yaN8*x4a6%w|o=)Pyg(HFge2ZpZS@efhXQ}8~pI!
z`8#CX$7?%b{?%XkCAjDA&(LB+d5G;__tLK=0|d$^9*TU!H-00@{s%w!L3m&~1pCr7
zkG}RLFQMOS>VhwS`O7qb_f5Dy_OXvvVY3=Cx5Q7}fa<}4wxf=s*G4Ll0(#+GI=5Mw
z2Yr@94O)QU=3e9!$Bu_~T9YCM-h_JnXd!Mxomb!VXD%U`mh->SpR2Rz{-(Y4{8!zN
zVtup_Lag;(Rx5oki9tsUSCH!v;&kA>q%ZL$?39**4pj7ItQ&YeB!uhsVi~2?K#^xT
zY0+>-(iwq`#B|7lx>j=6+via7ZO5o-COH2)ekA{0NrMt}Q|@xtTZlShp-m4LD-W@3
z@Cm8rB_9Q-tYu2>ddUYrvMYpQ+c|8M58kk^BvNH>zbC(F!^Sx%6B!^i&wl2EBr2p`
zBBMwjV-A0v=9*7?EP2eS_@v~AkFxkSx=IZI&8tsX-A06dkB9I3OnJG9ZibC%#rd@v
zJF;(Q*f^*9m?YXv=(>}+1Ed#%VGDw_U}w7OAuG#7D0CO&C8eq}8R5lz5`Cz2&4Qg0
z{Gh%Lb&aY(`QS^mUC>$!qi9aWCLZn4JpW}a5;>oIkw?i@@8uPmdI!1WSVy{1x&@d2
zy~f5hpnx_}^4a8--4K*+!MvHX(M>mCCXb=yrjO#Wjxv#r=cPtP6mR9N<XETN^wdE%
z?4xWJl~yFmQfmRRs!S*yOMZCS<jBD)kEPVl&;w}0K5%~cg1sDan2hk`WqC9`Fw$qB
zs4td@fLp`p=aSafXnCG0y5hlDhAi_scd^-L!KQS_xwP}x0W4J$JueqM08S=CS4VZQ
zNsS7xqjX-YF+NG(OxID~Q-$YRXF`phst33RfYYC%2ZCT#dF8|KSYhM!rL3w%M{Ok%
zAX*K8Wb-~tyUC;IewLXPjbZEb0PB9%Q6!J3>k+%?7~{FfGe;?a)Kn?*2okBH^IUcR
zxL0GyP|0hQ8UPGE+To>M8l@{AibGSU-AC+lBc4A|6`1k`%%hmEw~M#4j>h7)#Evp*
z=HN?~70{!WwpGt=+Joz~eQpm}Ub?^c+q~@EoI@Rbf5=mtNAJGZ-^qT_`g8rv+I!bh
zd+6lR2RJB~i*%Le=|V6sU{mb5>C5y@^ZeM}?|*+S*!bptyRPNol*?i1Ve`+<4r_o~
zeskydaRGa7Fdmu*z57Fpy_LtNy?yqzXr~#^TlzTp=w7F_LruFLEqz;0o<grrfLR@g
znLG;JW^=8fYs+)rcdh+l5u4GmnJX>snT|Rz&;8h-GuD=_OW3NuWc*z{aNzzPwnhC3
z&0GsXJmKg1@+@?%+8TMw3p%gWIUZ}~FKQjq&ZV}!b1i+Jr7_GV{-bj~Ts#0!IuH?q
z2;YGsMZLMY6#h298TbXiB(I=^g)U`Gp}PA$eN6W}8Va51a>Q>4fktIagM$Wf`lToa
zG=ie%^`%P>Pe$#B$@r_`qWCu&TJN8Xhg&hy4dUs7hRE~IkbSz6#P(1K0lcurlqTxU
ztWyC!+7Sz4-KiJWv=GMcFI{?wy!**p91Uozl^MQScVs99k4ru@?2>W`lR@}cjQ7dz
zHI&A<!XqxURr3pt%7~F@f?iibHyjJn#ZFMAfE&^oQ^(vm@j%mkAU1r)Lk~R+4^9Uf
zI9BA*zQN=#uTa%^n^KyMAvmKXr)3Bf^?`r1c;BHuPI=!Qym||vRw?@VL#C%ZzXOe>
zbh3(hm?zwL3*y&<mliW#MBC{P@&W%KpYTH3KRg|JZMP@3iAQ5U9=@PFp#fdJW-bX|
zIX5jA>7{2694e2`#C!0W_!&=@k^h&c`*6OXu^kVn@ON~2D{}|&AU^WY7Xvn4co>J@
z;n-AOX%0+t@{va_7ezn)jlWxOj?Az@hg2BdAQ+RJvSZ&!JABT$Ngl6E@;B~F@#OAe
z3wmlzUl8-xRdrwJ-32oqg=W#L1)Y^nIM12xalSy9K@0sCy}J(S{zLbfycUHD-6hW{
zy1Yb{)pIKMpH{UWyhI+*X0aL=AH(=+5kG(Fp$J7V;c6wb0cgxr5p$BcJsHF?cm19`
zE%x%>kX+w;@fsm-<<SgM=%I=Crp!6~(a3a+R+`KnTUhXOE0IW;yPMi~YAj=e>Ymzx
z`X)o)j_buxp<A3Af{kkEP@Zx&)R94T<eb#(*|sLETf;WcZ<FQ%pRkf)&alM^8|PRz
zYz=mb6v*oJ5d?cFG`ii1w~ZX=BX+}<I1QWCMi^6tZ8u6vkjQk!&nMYo-%5V%)r$H%
z-m~{SV_Ow$l&2iAl{7G<Q+9h=Y7kwf?~`JuG(wp?uPM!j=eZaymB;86&2;tHmFFY<
z8~MIPV{JvZk<*ij9%JlUICuI?_p7%}Fqt6iLF5rre5^Hxx?<;)NF{f@$HpGRIBxW6
zA0&_Y77fLFCy%?4WPq`+3|kDG7Uo#xb$T`)*%rF8iST5r#gNxDcM3M;xukzmx*E2D
zjL>^Yt%B`4!N%>F;~aUeH33%SrA>4VTnB=p`V!Yt2vB&gbBXE3(T@oa1a@PCP33jX
z5fodU=K~pbIlayx^{Q&R;y6dE39zCl8IMipxxTxOcN}xX9$1mEXPrx-Gne*?eM2c}
zcCH<ti}zDxpYl96*v7rgrNPm4uA}I)8RR)tmDf?IYbv@1rYkakjS&$!RXWOJQyrB?
zCy%H<-8^sg0L`_r$SWQe)OtXplQ;#Z$A;^kV^7!Vy4uoh$Ln6A8(HwVeI;p&(!R)}
z)>_a5f0}zzqXMHADBUQwlk>rvXil|2R#IOhCrjxW14o5{%0vj}h_)IQYAIOG|Dj4p
zX0;envUP~o78%4F5$EQZIJM6z4z>nFeMg5*((ZHp>Omx~o^*{={CfVc*qi=`cj?j-
z^)eky4keXRn+qIi?43JMQcufW-_1=A2l7HcmYmfdTVBpxzmylcs#kCtws1Ii{j6Sr
zcjgr5&KO*}R_Cw-Im4lx)d3zw?)q5L!7gI+bXT4`x@tP&)hXD_;U~}Q5rhSqSj+_;
z!oghOhiWNkq)HE4kLQc>x*(5+Ev1eVZJNpJjORUhb=X#oJa%)eFUeyFr_xpH7R_?3
z19Wq&$0clVjd}G?k;gW#{-1X4`t|DcS_+Fg>J++G*klcIs*XB9*E7xYMn^5lL|aQ?
zI7JW4=F)JuUO`3Irf;R2VQa>w5v^y{pTmNV+Kc|I=$7-cj_P2ecD3)}^8;Acl1zK;
zLspgLYjxTWviz3>NdSy)uzN9tVrXz1`l5rQP%TG{2u+Aaj22EZ3%_gI$I(7ph?@%!
zp_D<PgqMt?hFll#PgNW(wpmz?EFRZOp@AM-BSeI4`VP~;+;PVp@TpIK8ZJ-9K=c~_
z)F(d)?|tuk$y@n%fA@E3k^lVXKaaf7Kl!OoO~%J7@VU=^#?l3$F#Nec|L4iT{i;{J
z3U0miR$376#fxWtQYJ-}a~3bJGCA?LXbgYcEw{k)U+@BW*0Y{PeV}*x8{Y75$b<fw
z&-@xn--Da>^XJdOJKpj86Yh`kf_Ylp|E1S`JKTBaUF_jBUC(>|3*bpldFr%D{2BU;
zhFDY@Klp<`NJdgL!0vWi_}IrjPKMyCS0Awnsz$Q_#ej`Vp_^{L8NTJ4zXd+?na`F{
zO~3ucU;HI_)0^G|PkriB;ihQ}Kk~yr4B!5`*AZSE%S&JSwd7fjQ4M%#@#8=K<3zWY
zzx?GCnSj`^ZyXaI4jdm}B_r<t^Z)guaO)FqWsf1JXlCI~7)C!GkYL0C_JbFB&P}v<
z=R5xZet5$3>}Nk4zW(c9HqrERWSG9^p3lI&_ugkl@!$>-=(A3IGJNfo8mw3(L<zqk
z&#ROq1P*3AzjD0ejidD8<uNz%df~!Fc=FSp2^Vg-k!QH@10z-5{N~?+TW-0TYC~X@
z0MZHTSD@it4>8neuX`8GOOFvM7}0{!C1_aw{ont6_`^T^BYF<X!L1Vy&`AH*x4gwR
zOt;+fc=*=Wd>ef2i(Wv_LT@V^9@6pqzW@8-?oWLh-u13`PV~iR{UQ9X|Ld<!yuO2E
z>*mKj4&L(ze*mAJ=9kj<)vtav$-+~f@)Y`f%k&$({>pcK7ku_JpMih-YrjTg`uU&#
zdEy;LgCI7XhdAfn{q8>?ImNMFxZwtP&9{9Ay!b`WC;1^-O@Gk1|B{!y1m5?)_tAGa
zR;2B({_3w%bOXxc3tsp_Du{j0Bq#VHx&8Lr;lBIsqk|MGQinwuvpZ?^+?2U`^<)R<
zPIlI;bcg0e$Nvsw&>>SzC|(D+VZ~Y`*f(Byh=K=TKlM{T1;6quze150uYUEn!gHVd
zJb1yR6KI1R&Ja3iy8l4vH5yRdyI@Hk+XaN`S6v{q3y4{Gv*`X_xTxuV!4_by`)A>z
z8V=gLm!jYy+Ulva9aLPuR}sV9{0(#fjeeEqHUXafBreXl8aB+6J%*~TKx<C0!DOJ+
z4CI|jJYP#L`b2>*tKo=@W?X2K4;GNeBk5E&M$*Cao+A;4fuqPqi&Wu5JJw~KB8A$=
zOxOm+Cf>wc%Y*M9;zrWFU_1VPZHsHdJ{++pDjq;%ia#<=vNwDd<2hnyY@8N?uo|`t
z4YrkGLlHw`CB4u0qZrdUz1b+Wju?Ap>|tf~GMG-&Jf7&9_Sp{i*=ttlR$=3M1VQPF
z#z?_N?ErIZQ{VLdmiAIulhqYs!{?5aeq+USO@-$XBY5_lPacbrQc54ehVnoLJ*2CQ
zCB#w-gz5!V*aqV{E|%AE)4`r85@3c6R#v}-u}7jiMN6d7=*oqMvHeKW4{3cNDMqdB
zO6NVN^uxYDc%F%_Yx=z3i4jQYsxpD;VR9xzEz09+&^2A*Ip<IxE1ol5H)KFVS*60S
zL&3&$<+;am4WG9*nP9q}CmGnQVP9loZ}O@<#~ChjNw9H|Wo|D#FLasBHIa$Jb3V9d
zY#MdQ?KrmeaE{({?Cc?WAd0s<%45`d?&vD>7?t@TGO-tIt4bb$Qdsd^>d33ibJjuZ
zX|Hsp!{Ls+dTc{vd9AQjI;zkOw`t0AiVlfP8|5h`>GOJk(+?eSdn1p^b9$fSfgt_f
z@jUTC6V3abzRy=gFPi6a*u!*_S_)2os*a*mUpvOeo8&wl9Arty7$;fIaOGr2(TbSj
z2eIs_$TCL%Zs^crM=2L1B^9=(ouvBWgIA2d;Lq%^V#eP9QX>Ej0FmB5Tdk#_n`-x&
z*4fy%e$HID7;~y|y(8HLiy?>Ctv=^JfJWdFokyPMl#(ifwd(;2za5#@lFk?S;OeUf
z0OgX182?pZZ%>Oz>Re<HJkSOU?Y4r;eCW`o=M2&}PM|Dn!X7ql=SS6EtY)kXOYS~!
z(1STFV1pL>!u{H=m&ZrzcYx)4Ps4Uf`x3Ui^n6FBL;Z(Su(v$-zoEmWoMG|V%G0LZ
zW1i8q;qSFzyO#EuJcim6+T>BOwKAh~DIbpRIEby0rx`ZaZjN2ofNg26=<^;8T|);u
z@8!hVufe9an)Vq>WAC;%<9M_>s(topdVuKd`|j|i_xwjo*Q#$fcl4gK=&0GV8$Iw?
zum#U^uLqlXzJzV|e8r~nnvy@wpJ6+*j`F;5I?AU!{?odu1Axjq)ybCqU3m<*qzd-!
zOj-Kp&hDr`2RQJ9_6nT0^^l@qpP>Guc->Wpk5n&;MoF}N&pxMAO*UMFZq~fe$Fw_W
z0DSN(4^BqN&(eYw4VLIBj2EVU!GC{((gZzB26Md7D2W^Mr#<ayWVk<n{sMdbK#v@?
zvdSK61`}8{Zr?l^+0ihFMrt&eqhazBpZKI1W^vJqx!6DVxzCc(5V7Eca7-62++g0&
zH{5t5(dpvF8{vTm?x%b4px{%}VFqp%&YjzEan&z<i4BUf2#4+%IGi7i@@TllF>5g`
z^n$_^K<GV=hT01kFIqH!o>HQb7E|%?LBo~F;D0|E=P{)b{uVJ{-&n5zd7vKL>xus7
zr?G}b)hjg3r2r77n!!J4JZ8`H<H_iMnXq6wqI>VXmuQQ0#b^d>uQ?-QZk~Uj^O@qV
zcrMD_{~kID4=?nfI(O~}E==;Yrb1_djMzxqkAM7_>NMb=`|p2XlFLU(Ca_M#<;#zN
z765F3&|heD*P0UKl}C{edy)k-$~-8>XQUUMa!$X!`Q}@w=<uz#J*lF{4HIqeyz@@D
zIvMK+Iq<?cgNF&|A$<PA1-N;l^XI3}_)PWi$AdJSYe$kkibKgWJbju&Xw1fF4;(8V
zXdvxAIUUF$f7a_Gl3T@w^g;gKe)}_N{#t|wu&2bWPq>wyr80z@d3+}R!RQ1$B)E4n
zy5qqgJ_l*yL&d|vS4}y5E&p{_O5Iy4_RHT$W1JT#hq_5cT4FR0&U>WQS0=rr5flDp
z*Lxv%UxvLagyluOF8m7g+2#As&HcI4m#4|$x0HKc5B4da^-IDhi<xqudD=_s&*tUV
zy8KycIPkYbul11OwwoduMb2M1BBSEfE63CPiDY;o@8uo7GY2@D-WgczdpjA4)|-Kh
zMB5!3YR(<4Y5tu|I)2<vhddiLETVTj8k&yIu~D9iZcoOTqv`jQdSb_^De!%S|G>VH
zd-(3fcJw00>4}Hl6d`lvgmR>#Cx&`2WA6CP^n8pGI62-<hu)EN2O1I4%NJAEttb2^
z6Ykygo1@K&bA9hPS2$w9JpK4=#D-%d-78+<=LOsGgbhi#;e^}dosWjU^XE5YU^>3a
zxxukNH0+_5IMVRwJm&PDuufyglvqd`)JteQMkfuV&2~B{KAC=lbY{Bl$@s_EruWp;
zH}<h1Y?1E8KCo}(^YK+q--q{OJ9(%hwsRXgC^)`)%-&vvjp>eb<#oV>{YqkN>y;S#
zMxxo#(T38J9Umv6^J?JqAc*hWgnKoO<zyNc(jMQ}*v=m8iQ17K#}iLb?hrc?l8lfU
z4{RAb^PK65Sn+<e5n?;?<I0thv0;QGd0z7YD7GWElL;Hi#D=3ga7}{$#y?x)c_Nxq
z4t1(ukckc?6IV}&7e_~&o(bC#1o8|IK(0P=)$u$?w1@B<4X9U6XpHK8i0zDRO>+rl
z!t)%TPx3nPbw~0#7M^2XZJZk$PCJN^e!EG=ux~tAq4YP%^K)F22kFK<XK(tgL{K0$
z{2u#ex~}Ondj6wf*m!<5(Hz~FJSH+~GhKHR-}YpzMY^Mt1$xvUO;|UROyE4j-zd+K
zr|1RFdLR<d@c?3dwBjh69jB1dxpZ}+JMKXWwvqN}hz&nqy^;v)h7RO0Y9SF8lqu3t
zSCe659knO<LU}!zbkq(F*%MaeG0F=Xr;nVD+Hdjm%H|U5s1-*5(OfF>ir)5UPbVFf
zF<P?BCFc1k`tuyg-pN(LzFFH`!Fh%A9BH<l<aI4P$G(-W>m$|!7>S@dis&ZT@Q?s?
z5Xyk@e9zwX$aB1qZhifEM0B|P2$ea<!X(pY{4LiGnSMqQF{C%9zOaUX)`y`30rRSx
z`kM|y=zw43F<Q?5v3y2(1&+GaeZWZ`#X*HV`S~E34_-6^631j7gOUb|9LF${lZprr
z&M2Q``N5yHxHz}7XTSE%&OK5S03!ih9WOIRG&_y!blGt5Qg3ZKgu?@rz~1wk_qlaU
z(S7Y!9OE`U56di(KTvyzs#BuRtKa5@9^?>hFL}%@-*%RR*dR_Znjb#Kx#J09&%B48
zVFS)n&e1b-?1*LO^Xdas*eH6Y$+51v>$M%%__R+7!BQnF-4xqeY!;eA&FB2j3v?xH
z9l8cbSC3ukGNY?RA6lwT-LHtV(Gt%Un>r)S=<4%n=X{W^mYZI&Cyh#~bJts)2j#hQ
zM4e%4c;3<#U>>QWQRyU)A(-8y$Me|AtH`6$wZ&%gs(M!sg%{}R)3-uPw-72Xal^Jm
zS1*qk#qZ|Q*kZ>+;8U>mc%A_&c|3J4_2`ODeVAb)#u;|Q*3i}JJZN2#12O?i*Z?ZJ
zwmM3&TkQ|w%c73**qpqo-RCr(_jJ^Z=L_?EQAa8Eo*roFnoH!A>i)H>rEpf=uR5yD
z`5zj2Tn+OY6`rn@ZqIeSm!#Mq4PEz*lY;aeW6$g_ktvnaz>=kV`Kk^8yfHB)UdYfV
zHFn6$q~utw!ytV4o#oYc?HT%c^>Z$HpM85bv}LICLZ55HasXWWw20Td&;Zun!<Ks3
z23OPq`t=GZ*XJqN(1Y&VzU|xKFTVD*<Q@E$x4eZs|IwQ{h){p-bDx_Gn{1S3!#jI7
zefM``PWflRkNn7wkP#b=n#h|Kzai*l)~2GNFn+fnX=^F4?JdBc|8sv1Uil5*0B?Eg
zTj7mwdLz8&-S2_-yyrcWvG$X2_uZc^LbBpiJU{RQ{}~x%|KsoYkKxX{?qbif>G>~x
z@eAqMKm5c0IT^kG`9J^XWJE=yFVSf-KtACKPk<l$u^%IW{pDZ&WipcD_|cH7Av2ln
zM1VD#Z=MXRXhg@H^p`JPf)9S^L-6ar{_EtShJAi<>IV;4Fz>pTmmm6}AA;Av{`KVD
zjk($J9>j#v7C!w8;<#}-xImA6G>-nwzxg-Wn7i4?qH`{<%5yz5dj9jD5C6yS{oX{o
zH^D#t$N!iVDjt-4_OqXb&wS=H<iY;p7r&Sczqj3X8|BbPkMY*X&mLsFEug}4S&yy2
z3M7%dI^(f&yv$cLJ`H5R!Edw(Q9IXEsoiw(0@33;zT<ThwkN=E{^oBIt#E;e2T^!%
zfprwV^;^FcUi#9P+JVO}{K78~UlprfB#u*mf9*f{Pe4QJFvSjfnIlb*9(ZBYgkr`6
zsPFo&@1$rFtUG|pRrLVM>~kg=`$s?i<1|-po#f}kANj~6pYJ9^HhTQ)W(>!PGWM7M
z@?WNdvcLVee~2P#H2*D=mSsbWwjhq*n8ti*I`F``r?h0l|2dMq*S+p_WcdHD{;MD3
zmrdrJe|pI9z2En}@T`f)IL?oL^rP^5lPstXefXhE@Q$~?9sbH+`70C^@y0j45kByN
z4@@}mP~tKdvD=?mQQO?`lfKD71{>VKE5B(`m=fg9yw8aZ4XTHfKF_-24*1ER{7Lwo
z-}xOnKtaR*```b5tHXhZVn_q5S0W%d)kk!jaT)iL{_N_0(VvQQCXb!SDzBrCy1Jk5
zZ$k&QAgbmoHf-3Q=k*FacA94$-4D4gTviBOHuACa!gc2q*X5Pn$+I|5nx{6F3PtsH
z`O1#h6q7!uf{@!p`O7gEJ{pL2*p6$Efax;=84ZO~l<Fg(w{(h>8yf9Ik=mI@SJ7Aw
zBYBzvr2^qQwf&J3UTBT7{K3AFUz{60OxU)v?wO2a*v(e@Ml6Jl4Yw&^N)=8wm*}NB
zknxbx)8Kvh*|5=@&9E!Bv;)coP1q)4wb;^@y*}vq6M-JN%Bexdz=byRiD09&B-30X
zY{1yiBluXcN5f9%#F)}&)LizFyyO`h(j5_DN)<v#*zxlf!Im@YqonPM?O3n@ds?Rx
zNq0f{(}A$_q1lSDohZ-I7!F(zRj?se!WMXJgbmjU3B8Nf^!xq3U}K&GVW;t6JyN7=
z;F)@*p=;jSN!6r3LWOOcFiljFNgjo+JEJS{_Snh9Ug|!Oyn1Y$hn!_16VI{z1hbHU
zlh+d-#iXT}uEg_P@jOdkJEYIH@YJv&-7&|y@;oTELRZATRh|c~F>$g(gP8Dq`i|t)
zuuXKsxk1KH<#{ghigW3h)94hsD$fVwxyq~2t)VOPd~kX|<`NYN-*)I4Dm}p1W0A*Z
zo-6i(Es~c$$t%q*!Dc!r6l^B1UPn2)3O3UNij8zi(NTrxERR>W!t-3qD~<r?wZ}HL
zIw}RxpP6-(%r%uq)dNO1ol77*C%W!MCRR>IvG+V-qk_P!2f92*x`@0YHu7pT{mDF~
zC>`t*i&Iap)5l%p6p)-^YX!GlykVl#2v@Fdset*ISEbemNR(J+Z+yf}#(7*HXyhQ)
z55QvVC<mBED)L%_w!u_WMWVPt(w1egG@n|K7dQNfTcbm?1^`Bhp=a&ME{R`()NGM?
zhleZxC0w6VvJq<~+JpJ5YhjW*l5<__1*jeVOAUbQef_{=4<vIOA)DnOC7a_&X!cN^
zT&;&~@a-W~UX-ERe}F@t#~NMxXxgD^tFS>y>#)@Bu`OXgBs%6b?D{dYQ7FzVy}ae^
zb6dLl&!KluC^hPO-pdtjq&<T_G^>B>@3-g4*k*KX`^mZP>j2O7`7O4pFMn@~UH5p7
zuB{Bf(r2Yvi_P)yOzjP};IKo}-a7269Q0)IEPaPl<aPF)m(S4KUlk|JC7yR>1{!%i
zz;Eg|#?$AL|9wXu+xvTTgyy@MJoTROXyo;j=U4KY^Rm2lbQBzD?_%@(?dSn$upiR>
z{!-oF#U4UehnT#D0H^8p%EP~rKY+fDYU%2qx1^)&``KbZo$za&0&qIrd)L7tz`)Bl
zh+^iLcTj-zuhO0l{7Q{xb&h_sB6J8HpbDs<jZ$ieRdUi7IPLR8g|v&U{iS@NkD|@F
zdp3_H)z41JPSw%KjD}B4OM?bzGEiZDS@}IKEOF6@Ir?$oc;k&1=^p$o-ouMgi5(T%
z;qSCAz)ny0I^$Msm?{LZpPvk!*bm~l@g~NE#?Q6nkke~39Xj9w7Y)E@7`^eP8_gq0
zQ!L@{(OVyl$M_sHE~>XP<xijf+<fy*^d0tr2OVe_$Ntff>=((bd-*dy3)8&dZ;=N0
z98G<MeI+-c@Slj0`?{Haj|SHpZn!8Sl#SQtBsCHK2FFy_MCga>6!GJhVd@8q3nPEj
z<9#oilTlJt;WKf(h)e0KIr8IBpX?zWa3g}x(oKctf^IL|be}sqKmB$`aF~umWt8t-
zdIB7THy19Pr-LPpX2AY9C;T9?w3)uYfi^YRjt5XIBdb~AGrX`3$By*(pV3<_%VIvr
z9KM12ypa!Hq@KfG3dlhyh1G7n@g|9WIZwaGi*w?#5gak$Gm&o0caF+nmB9t#6bt?y
z$AQno`%pIad-j6B^cUE-=NZZeditpsigH5b6X|}FU}L^T@t$SXir?em7q%hIFscBb
zjUJ!)+e*;`&lQ!Cz4JP0Uo1NBwcs%b?$}w_;4^R>_y=*|yuthMe&n_4Uq3(iMHA|G
zarIR95`yIme=!0aeyO@=v^r|OxL_lFi*2UOGr;l!>1^1c^IjsEV$+NL0ry(@>gHW#
ziF_vM4}Zt?CFnp2H}<0(MB^OS1A6?UsVw%1^ka|%uYKl2TS~RE*E9gr{|1gU!25^D
zNdqX=h5R0*Fl4s&lD;JB0Xp%R+YuBMpT&8E?<ILQ-Z!kGqyUlPx2S6s8|o`fPcq6o
z3=gc#`5@3LYIGhih^@jNIE_qduz~(QMDre_bP{s#hS#82)NU=gC-x)Lk<yi<n(l@z
zXq^>KYlJio4%<rTV%S2cJzS_LFdNEjY(_`L#sxVmY$=PU+aNNbbT8OeWQ~iIR%p!S
zeor^bVLM?P8*JHO8(VD2<<$()oIJ4akVSsPh>5xFNgiXU`eu2Jl<H|F6O>A&ILjdI
z=>EzX#>p$>4qXe+>DkEh%<@LqW3<#%L1ZGRJPI~V1w`#S*Rt?Da1M2kt)=UJiRWVA
zG<n2!G_XPzx<)C!4AoroUQOIL^!0$Y@3ZIumd8=`K&-J*N-%TeVY=$Uv|=~UOY$UU
z9#z;(56tD!uw|j^nA}{dbrk6Vl*e3jl=8gN1DWZrx#|JLu?OmTUh60+YTeOMULN%z
zo99|0T4CGZ<uP!6^-2dx`Z5giBs~xo^sDM1!B+G@F8USI!U_*)zp;t(ZjW?`fd`}y
zUOI-$kKh`Xqc=fxcQBrg6CFpYL83B2?^uz6F>z$Tu;K`dM5i7gYq`Kt1Vq;r9mW}5
zBAW_E5x^A{_m+0i-6+R9idK+!8}K%hoe@i3?Xm#}OKnBw>s<P?E7$+1j3H2-bG=?c
z<dd$<x;l#Uh8lLN9P26B=Qd~cICJhOhc$S$IjyVQ%dng)Ts^aCuZMMt)Nv)(`L;*F
z76qGk%F;E-Y6+Xv#b~j&Q46bHyJExrV<_onttJ4{jncslr9B_cUGM3-l(TxN*1{~O
zbq8COr`%%$n70cy&0P--cICqo&m$bjx9w6)w><CV0`Fm058yTzIHxIfbWNNw;xxKG
zYI#gej&<Bmwsgn+Wy^EX`5xQSTw2OqKWlf`pq0ml?p?a(ruIi}^1nNtEB1AReYGU7
z9lB|~f~@k`$V5fghUez7zMuy*mE4)=>Qd1f&rv5H%Bvq-y@HnK*Q%rP;rbfwTvBYd
z)@$fqVLwd|q`H<ua=PBnr3iB!wWJ3Q(RE1=boJ*c*z~=$R9_=Iy3O=JBX8QyX`PDQ
zgSTamZLtt8Upc8(C|N8TDyT^YhvA_&Up!Btt+=sU3Ui<^h@34fr+v|FCG@hY2_Oq}
z3eji?k4(1BhqSNU<kK**Ad6@XY4hQE7J`wuU=)RLsE{~p+P)a><grP6*{pE;uz+2$
z(FT-4oH<13?tAWmFMR&<<Xxj7*;t_K<u7{~tg*<b&^bs5m8UB)P!`{4)YH=|#6#&%
zLRiKwpJ`(>@kGOW@$;7-cmO{2sk<k`=0!UEdGb@9M21evr>#QmCXa^aY2G&Us=?0>
zKYW=&if_K<Cc<`3QnH}IQe}$`D;#!yv|i8Xx|h88^n0P1oq!@e&}dKN8bI?%<DV?Q
z#lG<KefQo=H34vQg2v;Qyy%4-A|;_j8wrPM!}GRckY0;N@V=2p@+eB2GU>|It8njq
z_fH1jTj1u&2(9_`bi+Fe-v^QPjqqqiMh7mQmc#?eTM{pvKX3Bw=hDNMFVo-ZHKLIk
zZ2T6U%kzz{hCNX@_#kwo9IDgruO1&$njcPW!$x^sV2}|Ac_F(XeCCD8SZ(=^9X2c&
zsXRj({mGZULMbq|S05px_>-UfB-R5+cQjn+LSJ->DOi;Okr~8#`N~ze|AC2@`(wB=
z(E#)9qj6hhGs;|9n&-z`P7{&kC2`-E?x#)f`6J$h-ZUL>Atu!WDkHtQq+w%3zv<8Y
z4}1lF|DErKSNum`4^MyEQ;jd9$RmygX@#<`;p_A=kPYYMX&xh%Rb&}i$zdMy6fu~G
zn$YR06lvCt<Vp?!DxT|H!W2r9=0{JavuvK%B0KDPH_!PW0J=H<59!Zt7_MM5-S6~g
z`_k2LP_O&fF*c#B#h`-ETQ7y*3AV-1LGcXSbg;E^3EzcZx%3Df)~v*E8|1(oAY9iQ
z_$-HRc(IX7-wk+BcLRLkODD1jWJA9dPg<z~T67fU0+$6X6^4!M{VSWpNZy`M-scf>
zR<l<t84U5DXwSx{HKo_clw+NYXe+7fu$Rr@nhQjZJN9fPBU)y!St{^IhE())<s!9R
zY$Ic%gFV4UDSp;0ub9g_OXLcur)mO<?jfU@U<)fv6~J=`+womHN^KW9gvek9Kzu$v
zXD`KnJvRJ|sY~`sSDHIqn35O%d?-V?=~FVgDK<<SLPoY7r!9$V#)f?(y@+mtP3cBn
z;&KW>*wOI6PsJcD*cBVCi}nYwA$ClAvMO|Cp7R=TFW8VSgk5s{uN^kLkgid9ir6qx
zuH|{b=6JpzX`#*0j$k^;=(?ZFqnB4LP>R^uD6FZIB(J`cSIP%(@|cP4%5#;+BCm;L
z#;`SXrFZDQ$Ro|Qk?E%Ln#Y1|FEYdL`^@>@6B~^U8`L}poh!fxb~9`px?&nC##ZJz
z(G}YT8}XbD0M*EwjmK6KKsMbxmoiytS8LYo`vx1;q!4+edL#?;9I;Vfdp5pBsr`ZN
ztfK<YHPizutw&Jn0mL>oI*REkdSEB1X@*8#H>!h1!^R%zj;=CSLYJ<Q4<C2qOb^sL
zipLV%Tr+H<qZHdHQCBvXb{x%7>ra_WXiS$VoFH_q<xw{LAsWxOqa5Q-H$8ME!Gl*a
zr3ylShLqXxg7e-|RiMrpSOzGS($wcV^5GCUab$ddbIKo#u;jH&q(1gCkGc47=HkEL
zYXI<A*3{0$t1q5g!Nm(3c={7oaM#n=p+wgM-U~I!x=20$+jg!Akfk_qfCnDD%-9E}
zt9ROXtQ-3OkgpQ`8YId!k&N7Q;T)wkgIwn;Pq`GDBs$_VWN)QwM%zc_Y`oKFSUd26
zP=Ml5>DwU8y}VP-mD7o~r?&6*e!)}q4PbTP{PV3nl+>faw<#VSyJDvYq*>p7Y@Tkj
zv8CetS07N7Ll{4{=%1~9hvE_A>7K=2;XTkjHt&eEME6<Wf=So?+ScXyS+Gf8(ftk%
z@U)_9GdAeSqkDdK<E!Z2%417cf4|bjU1!18wpVmj8Y<m8GBJ}!y=O@t7wCSfJf2}L
z&gP1H-XT4Z<$kYq;{kb`(PaVKAw2*=WBs5juX?GiOR=kc?=&5C8qZJFQ3rT#*gy=^
zjvn!lj_T0$kRF&}3$;7<k{$>xc8~2^<Pqk&UB`2+I!fEF>AhrxmUf}}rOEDq={w0e
zSR4_8*&b>fXSq5N0Ht#xx?>_5@KRpaoyZ_;0Q$!Zts`ig&!~diFuFICxbVIHzSm}p
zF^AU#qrKmaEmY9LVq35O+-cSEM>%!H&u9cbf8ho?*`bZXnhyYu==%%yJo7$w*y(w4
zdWXeI@v}eivhfr4SmCTD=CGoZEj13~#tL(c9&L{3d1z$6I6c3eK-DA(e1b)bYBWHj
zaq{XhZ79xPIL`}zrMVhb+p%>n^#o9C)V1TM8V*C_1FVMAl^iM{CL9m;Jgi1ILNDv}
z+6>ph(X@RTc)~?qZIl-s;+UR;23p+QW1d?4H$`jYl7mqd)KQCF4|34pj0XbpdmX1&
z3@tX5592vN{UU7mTwnY$!+!O|m@r|k;nj)A-+2y|RG#O|hG^gontEzke@?OK^M>g;
zBN@UThL|R0HEzgoit_5|yLa;1>H*DVr{7Wj;0@-noalRQPjtfrDtq~eVZVI==|?>U
zRzvf8_0UAaL<TR6z(C%q;aRa2Ij?nu9=1`cCNv07<HQ4mm3Z>&;?(Hd$OMi$yRl<b
zjy{)uFTh(mtLF!L^xJ|9O1d(T&z}1@wxe@QM=j`{8+pv*Sn<IxSWW&K9h7}rj79fD
zXD%Jkp`n>;t?b73x5VS}pbDG5cUs*Kbr&96ZpR`QeHY!gBKK_wzb;^w-%!`Xl}&7T
zvCJO-oCanjy@B*uVJelt22#>N>WM1GGxEZfLmM*Qa()N#P{;X$2D81~pUF@(ZpGk*
zhU)<2wMs=-(fgCCEwX_N3#l@%M$w;a*xMzJ0$N!S)NF@yc<&DL5a&RBlg~C;q{JwX
zMJmx-dBfh%lR1sjQ_$F^cFe)99xhQV-MSzQ(^&WUgmmu)u}!^lf)Dl{MvTSNS`Mh_
zUiJt^Q&<``bsBpJmxGmoykL_aXo<m#4AU#d#zsrQHV8IJONZ@y!M>JN3yurXvG;Pc
zv>O8!&js=L%}h5m!zIeiGO*`0j!o%+bR(W|eqQ!k;sbRMY+Ph@G6bS4LPR6z$UF~R
zG#GQSpiHf@c!>k+Q}!5k2l~Ww-B7UyJJNfXG&vI=#O$0rvgh<PHZeN#p>Za8BLncr
z?QF<iG0%mrgpFz|$n)qRdtZtKPxtKdXa-so3EdEBUeEnD%X&ak*vLke<rVQvV~@oP
zN!yvOnT_b{NS^+<-AWP-r*mmEc^}vlnm)5k5jLDVNOw_Z8l`~a*-L*bO4Je9^FOl(
zJEo3F;|>Ktc+MVtBqMkLuw{d(I&Sb<BGJ4lJWpaok0c*NHz@L&sNy@2{AJMtNGGbd
zAu@ogY$^^ev?HEpnddY|BdsBHo=1r^Ny0P4CRTKjiNOxR@$HQAII2vncx-#YHV8KA
zU5vxXXVe4qyn*S;@0`MOtRX>jhvc#0`PAz!?TKe-_|Bq32s@>}+gEx3XJWRwB-m1t
zC<XbwllQ&ItLlM06dgql1Y|8qx^lFo0Zo<ZGt)J|CU7Dq<~bKaM_o(uxMFM=fkB7D
z8#c0!lOni6dL~d>Dvcgn$=E_-JwSY;^{!wi8R4<gyCsTYMb>}nRkzK&;g4FhmkPWG
zk~tt5;LmobleK6&D-6<^x$Iy4x*QpRwB2mV?$ozuIRxio$z^v-B5X?qUP)EYz0R((
ze#*oXioy!w>?XODZG8`5-pZO|T_fKqO;i$(%n(XmXxT$lx#{sU=B&=_`AY51`(ATe
zs~4^AE!sTg>Ocdsr_;V^%_C9rAlS^SHk7&=n^>Ib6q~k_7p?3c)N_^eA^_znS4TEl
z|EptPEcvz-o3;<)BtyDP=^7StR_BF!1%i#=H!Gv7In4lYBzY{+{fgZ@r;+aXj_}w$
zHp#c`u?@;YS4+Y6(m7X-rfP3#d7g!CN+;#H^3<?t{&#$SLsxYA+VtoubV^d|P<4@)
z37-o*z(Ou?IgIbgqtZ=l+o`jh9)Rp5Z~ox0d3hb>@LcB`>3sRz&ZRCk-|nyxT_yi}
zbn;&!{<7t!2Y?z|6lai@=eT!v^D?=*ja@yUbXA_`T;vs_-CLfAP)DA$*hLhbhdY~Z
z8-}UcMO&*@C^c%fW)ZDYo7#KSsu`nAj2NX9zgkhVR#fdG#7>Obo7iHj6<Y;Slz#dC
z07s6)kvH%2-1l{zCqStIyG`n6!bP5asOk#Dpx(n5no-5|FB~-(oHOG#I7{d~;0RiL
zslR#-YXRmCFVP=>AoRr}#s<n)@HP<QrBniD7uKLKI8;0N@`E^e$%~BB@L5A*j<B%c
zcJ{nM{xsS51<FjFACxUOoKc5klZHR8mVzJCE}070YiYbKE8_(=q^SzcaB))WkTpKf
zdfVlAn<VDf@yb<q&$&3j!EpE_EvYm>sN^k)<;HLqXL8gMIC#@m|I^#9k6s^gVuI3p
zzAjf8QWv!bq7B}l=mtu!W(Jz4o-+)UEd=LVk#w}YXu*ZWRi1&);J<aDT(0?hPJJvr
z;(}OZL6Q~B<@k8o9k&qYFQOauR87&&gup}Q7_Zlzw`3E)xS(GiR8}|{N0yI|#E9_g
zEs#io6lA*uQuLL?givV<pge)9D|%V4bD;TiN!uPq89DVgMH~mLon`ny7LY@JYmo@1
z{*gpa8!+qM)Ihg=+|j5_1oY<I%&x#I+Ji5s^3(&m@5o3zmerHS#uSz8`O1R4zCQRB
zNrs=t+sL*|!C&4H-7LHyt|o|%w<O^F_c1Y{DW^b7jm;qVUguss@Er2uRU?2fzH>7P
zG0|rj>jj>kwHJJ$elgp-)%pn{KX<tLOCxch34MRg2`X;&H)yGQy@!I~ulfB*wi^yP
ze%z`)KzEa;L|*wgMz7X?&PEl%;Ql_mM#y7A%;M@Ju3X~v3}u%CXkKnbr17gH9zCg)
z_~zEx^?S!Yj0Jl$hkKPRg=W|Vfvq9S`=(t~5wto#__He>!Q3!<t$r>lq!8K&$vj)K
zKU&Xrl0tj_OB6T!SwkrXYz80Yx8a-^d8H3@@D@W%VOay8p7Us}aP2c=Sdm=bFCM{O
z(ig3++N6bXrfQUK4JHF!!Y_)81u>_gE^EDTUFQ$phhrm7Z<6G?ZrmUyzU#f^X`jd1
zcN_|kY8I)p`<Kz=`;=#b|GqM4g#M&=I~?Lu4DfUQK21hE$JcRXn10kTXS8|#+Jtre
zOUf&X_mSe)<4I9)CK={$g<tj7=5V)TVBb>BQ1=x=S&;=%e+7TH;W`D{drruJ*E4iL
zoI4JrZ_}b1r%5hk_fh9y{yH)PkiPvX4f^jY7_nXyIiBQ}3%&OJwHVE7KlNERccBG&
zC+DT-jQDG@=j4$MPCmg;>q;LgH2dqN<g05dSr~nAzgoRx*G6pH&s&2c6&FjZb$V|L
ze;-_>l_il>Xuwt|fn!BrBRTZlrI~(W2iwKVxKAT&_6+0oJ;mdrAxT00pogg@U}jt9
z?5@{Wg02R+4nuRXrCR`uQ|=78%IAIVV5}<F#ZRkMlp_bxR*A_^o24fhZyw*lTA?rf
z*P*KCzbe231AL+m=Ag<JS!~VXi<Ca%_i&=VGdk}rW^sb9Dz{+ozHF{etd}7mBk+Tn
zk}t_ZJR*V);XqUm765HAo#1`1dY&pLeGM6WQ)xjuk&olY!@Y*uE#+78RSx^nVn>Uq
zvIH=Uo6d*M^I}d~3$pDP?9jURNcN_)yz&mAB(oo=stw4#1s>0-FeqA0>!0tbUM@oH
zSVm7or2pC3Y*WtNdD&dbK<{-1_B1ajzZRc`*P%MbyZqU278hSG6TFcNjze_*_Zy<$
zc~K1-{cI&X>#}RA`!w>A6zM+)R%uO7Zw-40f#E_n!e4+D6`y2lbj$$Hd6rb&oIA&j
z=UXWiPUa1@1S+AkCH$iV=m#q6hJm#W;f;%Hx}{x|RK{%WDjst*@Jh$Ln$B1Nl|8`M
zFVIb$Ea%~=F>Mpsc>)mk4c)L=KRuTgO~2WNj%tsNWbnK{fE$jVk;wKi>k9m6b#N7*
zKL5C9E{DE>+A5K_ZlHiy`zI}^fMRai5j+Snd`5DXn?X1C$~<Q2pXlX>Uy%KqWiyR>
z%;C<*hN=sj@-Lj<MWk0SXV(7fRMQ_**(uZW{<{7XzIRvFdS~U2x@7?l?95=1mBJ>f
z552$6$TjBT4_qY^l}}2}nFg({Z}XkiY$il<PV}q9-BBgeaJRql?7XY3XeVO$o}HZK
z+T{uOlIpdC2}{LGB<Tz880%`au43q5$`%oh6wURR@nX5|KRse1fIYh|MMK*^PFp@O
zzpM5ojf?+wvAYxA?)!s?F<W}i=#QIh3_tgi799#w<FZPCIC<il7Or!6$pb9$*P=G!
zB+*{^qmQQ;8pu(RmJ2o8e`WqF(tZd%kRAXmTG}2Hi>^T$pxx>HdZLvH-YG^KhH^H-
zFoP3dIJCx)-meeb`MfEWClRM0>l6QV;MG<sd5&}~JBu*v%j}@mMCNT69g!>@jLrg5
zjG|s&tm}8oq<m)H{EJ(}Gt2(<I&`9?lf}Dn#{qY3I4Cka)NsjzQd4JAL~u?q$C7-5
zhqzWyDR#o^F7#AExXd`Fzn~u+Cl&-9#_#j=QeVU$m9$QXr6OIbC|iIuX5Es{xJ*w=
zhWR^Og4!L1z8Bn@HqqL&t-_izbdxJ3)u-Q@ef5+ptz+wZF^3+JAHAes7EuTwece0~
z8^`}9L2J3hCg|DFt;8)r(Ip%Int=AB^kEq)rg~)x(kxsDuc_B$?zx#x$Ek{aYf{83
zP5V^y4HK0CFO%<u>^1Y|HBB2i|IlrIo~&!N&o0AHyjd^YXO~aQ_X2iS#q(3fB0MRz
zcB^f0g|a?DG6I{giM8#SFI(}GZ#Dl3m-talD@IN-qg%!zht3WX(#l>fk<TKqKSJgo
z=CE0tGPbit0{uH@x)QO{tbuEgDi0!{zi6Ves661g2lyjLgVdOe#JFiSbYC?dj20$X
z7_ABUhtB>$pv>U7+B!u{7|g4ntZNZ#1yVvsI3^tH;seb<t2@Q0J>z%q$tw|fc}TSH
zu1(g!dLA#)7*WLM58-mG*qVQdMq|9#U5kR%W({U%ExNZBS{)k3$-E9PrFK4gu3r4;
z18;8=1px$z$^P$<$GCsHcd)DM$a+Y<5ZjzaCOwhrDQOdVvtQTuq^fKp#kEJh_m9+I
zK}k86u5Bcsz0E4q;Og-i17~h|{eQyQSQ(qHf9L<so&Jr5jfYVM+rk$r<n!u{MVW57
zmgpBXrM(U}d~atRm`jxzz3GNc6#mny>q0A$&#O1eXH4Pga9^B>LWv<%aSe-3qB|4k
z0umlQ#MV@EaS<v%Wf%aoE?OmLs$WLZN&onGHKX_Ie#08G9Z|AVFjn6a4dEbPxNm!L
z+7?6S0h&NClDq*-(bu5vq1iAT{M$(AzQ_pwZgmeiItcDFa`G+GHqcv=Bwo*W?m>e=
zD*W7kxx58EhG1*phcd&js%xJX$;%3oRkpyJP>v9vZ3WS>v`c@iRn$_~j3ZIE^ZGwT
zOTHOA7%B##6TrkKbmq_ho^TQ8Pcxqz6DLyQTqKd*;MD|MMRWXjV0wzhN}JxA-r9Tn
z;I5g`At$QZZT>1slfKm>(HxU4t5nqVpvY|0R}6R)HJdjuZn~3hr8MTK_#`8U2y-d2
z+08nwKHHGVHPxuUtj*Q=PN`xsR#kZzQ@c}&?cd8kzhA`TMhtPK-b-v$EEoJH@g~pZ
zAgIM+e{MA|m+Lm2tQ(OP>>2o5l2vS_;_W+djo>;phv}5{BZJX5YjcT8PC{x1EczLy
z8#ZfSjk#2%BRAqOIkP#uQe#il{q$o0eleuOO=Ru$><0wn@=2X-RPJ!T&MG9ti%WWf
zu*%D?Ex~m<S5vH;ZGF7?Upd}P^i|*Uew2enU;~ZCDLPY26F$Js?sWgr3Ub7ty5u<M
z7K&cY5q~^B)cV6MEIlcFSL#-kgds&J9_T0?$3!Txmi0}!SESdj+OXeujq~7>UVJuI
zj``kFT7X+eG{tkm`$glCaM7}~nyA}+vhzaw&&>bWN5w<MI(F_cjz<`aXnhEzxwpk6
z@=4Dq;ZDsB2s#Q-bCg~N>!l@Z!8B-{qqPB_5t@xTqG5mSp`#bAs=y-7ee!0UJVD>n
zVOXtA82y6QzmRzv^$_jR)b^Vbnc0Gl{M72W{`WYT8pCb&UBc9^sF;Mvb}@|aU6gxH
z3w@3EST@MH5GawCm3}aJ8D5Rlef0~)zE{xK`&oOyH+E($ZKFXh^Vyo!okGf6dmk(C
zKd^*&vAedaMU-Q4><e|hQEXA~1)%v6Ek=Tl{D&L=(PcKJv$JZN1LGf<iD4+$o(_pP
z(V_xfn7R0)oJYQm9HphP{HM;PM!X}(vDrf5u*0NCoKgOsoz1#D2q<N1XcvWhm2n$<
zjWUC#`K557Q3Rr?MS}5Jm2X~&g76Q3CUMLbB$iBF?D?hdGeQFtB8X|v1W*-Hnw+oO
z_bb9qcb*Ldg<Jb9k6oQ_IE$dI&qyY}$ZkH%s40}^Xli5m&^x6m0@YamQzl?=Csl!Z
zLu#7o?!~4wXJ#z*dj9R8nP2q_PHti0CyX$kwuhbTKF&*pcvJ@ReK-GDt)u9d(o_T$
z1d&=#*6=2`_w5n?SiNdEziZsyuVnt(=0}%bm!TrojQHK}&wQDVG~QW!T)SHU<AakZ
zZu}A7x7)#f*V(Y#<@cahnuj&NNsx%`lL$Gz0Kj1P^BeB&KmQjJXA<yg{6oz`wn=Er
zYEEb;r?slw3O$|wWm`wOEyr!#w~Yl=-`6iY=9#Vi4`wpD8Z^zfPZp~;1$-I_<Mw&u
zBlUUOv!31QTn!#AdMnxi1v)W@VzO@4nJo%d5(5Q&dpj&Se}}h>L|`%7GyOG#-S?N6
ztSP>Z@E4R5X_yWvl&72HlS6x?X;&1)!=0}z{7o&uZJy}lx=QCBM#?DsNSlpC&{zG`
zWq^VbTKqTfeaph#G>+NtIryvu0M;L(gFxd-&1pmgME(~IqBxv$jB%pR9c!gzFtF|(
z)PClL8D)8+HJfe(r@3}4oniR@k<Y+V^gUw3OnGpKE%u?@F3gV@vbn{SP5BLPpC?%Q
z{tu&b)v&7D;U=L8JBsnQ`uX7lmD$ErBX0Lz{^fpN6|L+Gas3r>f{jqVgQ#iqRf~tf
z>(Cd&G-S~I1}wx2jxfAqe%eo%dzd<~lebi7?z?o|+vqQeUWtBCKCnpBWDcBeooF<t
z7bC3h{J_j+lseL$VN>5nkHCt0wtDT3Z7vfLD{!Fr0Andoysi;@s(9tqB?nvD7RWof
zMQB)ZvW_x1r{seAY*~3Dn}aj9jJ&tXl&q0r!{8TYF9=lEC?U2yHrkQ2wib0EiC8$0
zLM~%}*#*v`AO}`E3OJa`o6S=~qtzUku6F<qVU$nZg3*+-0Y#MdqbG2H(0P}x-G$oL
zhm}c2#E7gIiPX}fxTb5+YP-!x{<c4PHj#<DJNhTPo(n}@Q);Rw=Vw7_=3dQrKW~_7
z0UAFOOYNGLn!qXP_*8<*{IRX@#ll?k8(yaTLd^OK*x|8s>gSRF64Fm^XY5%ciyx`2
zNM8TCfMHy!4Ddfjls^>Ty=_g=VKnimM%s;rs)u6hx&j->)nnHcn^2arWbswjQYrpy
zPM0%uE|b#z)1%7>bBq0i!Sl#P?tERc?uf6?WYPl@Bl~)t`nUY<-){bE_9r4*iJimE
zD$*HUIhGkWHOQ!T52vD`dFCQS#SH?{v2?fqS+kt;hwf&+F*$!2nV`5+`zdB_du@9#
z7Iv}v_EohtAfyKY20$Nt#i`jvjjEe}FvCldhWrQrRQwP>uOI_71ikDX8Rz4b$~>N5
z)QY8xr{}@wzvR<-C#nT6IqKyN`v%O&BK`C2!Nq}U3}fbwz?#~6&ABOm6-ZPTU2M{S
z=fl$KrK}PU-jnE*dbwq^293aOi+qj{0_)-KKY)=n`9&3HFkKk2jjwnvJ~jS6V@S+I
z5nsNPY>Fm9%J1ibp;1;E?iN9xzEhgG@P>C$jFO3F#wQ^yk>#%k4ED@_l?^Z*l$+!U
z%Z}$w0Qe~tg=}*H-`F2?c7q@z(PH82C}6f9T>X}>AeQ}6jexH?6Sc3m!tJl4cZ=&a
zgwd>6lrkOV%N>F2H))t}p7cd(N&FGJLHDs1BXl2Fskl_fIV`^mo#KzqbFLpYwl%lk
z%mk<&eGkwU6?qr7au!7XGdz6=;+-rFta0h?0t_!zY#3=gKNDEeQT(rBzvrFy0#Ywm
zfB1{`{4rp-q;i}nd%Iq4M}rS6=l#U=5<}^;6|%O2Sg$($4-{pv$8*8&c#Zp*{F=It
zfU^F#g`kBmFU=U-&dg>AkIt{oeqbUI*!Mz)n#<)G+rnkq5%GFE+VBcZ^Ns?D99r1F
zqu>mVe~i5otPO?-gC1M%=A?TQk$oJy@v*oG`dHiTUFhKnc)d|EhDh3+sP8jggRZq)
z3s*T!K3_+bln)jd1F{H(8s<GNST5V?RqQ6J%WkB8XBpWe0FK)J?_k|xgg<3A9Y-P~
z%Vy02uY3Kb*H{qdx`lE~@z2JM*l5$qrfBrc^p`uXG(+hPPL-pUc0R%rCDHW?+PGxG
z()LHThIE{yY^zaZ!p8Ine<jD$uC3EOtUbq)4SNsD_^f1>Oc(~ZN+$k^Fh=F;-p4Y%
zz90BqoIF0{=&))ldHd$wXWWxn!)AZ+0Sghd0$07_w}R@CpBYUqc4bl>r$k|-DD8qv
zRj8MF357CSj<=>SU-+sxT#-`F=9yq5BTwgPY7i>T7SU`HvstY|Yq0q=fMVj^)aOBq
z`Ia$Dyw_x$aGYx#lPyvYa1>3Kt<F}5oqtl}Ie5W<_?>7!`}>}0sZ(S^i!+0L*FU;2
z8f@v36R{}K1;?S<`wUy^NQTLrs>wU*kN-ZMHcGn6sIJF0W8Y`1UXP#Tw5F&w5=jhZ
z0w#cZ$Hs|-dE$tmte3)f&_>~v`RVD&Ly)BTl#r|f=+$}m^0DjYMM3&(PEpg_r#C@L
zN$-tK<jY=020%+3n*GtE3#OFyl25aB=o-uzL>&~H0nc)A5QW8QGDlzP{MdLrc;I|#
zHm_v7a^{-SFV%+?ly(D*Oti|pV{;X}GmH(#k<E}aK{kbh8I3Nfl@@6TZ8WgW%D>#d
zO$iTM<O|tV9QEcv)fDYQ(U0bKDREDk1_fSqr?lnNm#n!PS|@Ef-I@i^2qACYT4xX1
zkSM)M-88+m@VoRl@dGzk17VI98@eI|a=f|IN-(aTCSwIT5AVYi+ey(L!9QBJ_g8H9
zS1-Mh^#_#IxoJ2ZNiYqDnInfeSRcR~9H-Yy;RtLo1Gyx4S3ky_-AobZ5w`gfRcF{O
z?CX@zY9J}J9T_HL`$G~Are>#Kko_S1pLBJu7K8GV9Ptx~!xMV@*|z%DxPyJ5xk3)L
zVmsTZ>qTJ8x=^YFusW*BW*No%(K2i_OA0w2oh$msIxG!17P&-wNIggJ*i|YgT3qgB
zQ)%o`1pwX2FrnzfU}#PVeb#|3CgiRpMYR&?x$O-7S7CeyC3kUwzD?KNU6*TLr8kzT
z^%Fjg+yh(TbCjtw=tkp$ruWkv#Sb%VMzX$}o-;KRcfp;PN_*|Be9)n;@3A4N<&_%w
z!|P*p+2H()FLuqq1*b`5;C`%FQ=13~HT7GOE|?)(J}}xqae$gdCk?w;Wzn0CKpdqb
z=8h|S4vFOg&v@`YiRmZrxXLwXiI2Xy7y<Q&krF8b$#b9`eL3dP2>CScQ{vMpKrsQp
zi0oI3R_!DKg)v~F286T0U)&Tg6x_&W3-+fEbWNE(w24iabP>8Dq8TE`mYlx{!ti#S
zufOye<0kGm0BlvC-l%A}xPW&=@ec;$P7EiBi_-RNV@ZX1hlq)gmjcnAtI!O@ukgfJ
zq*YjsmWB+_=c<imDJ%&`dsI}r{gEF!73WFfo2pop86_ml7g4ijg}{EuPto9ZR+jww
zbfD~84auE-+mvt1s}T!(e+V8s*(Zxq{YA$82C01ONFSPHb<&r|N0K0vdrS>s-=6j+
zBU;R|xr>Fy*5c(XHnOX?&azj17;;Wo<Qdg!ARK)^R<6J^PH&q9D0}X68Csz<RuJr;
zWcvvx??pv|#-_%e5b*o#!4(_g3ZS`aG5aG2+Me>}9&aFKMBR&&!_?!6FDj0U6QCbZ
zDnzX=S9+QFp~?hPMBh+^N_E9%qj)6(!h=9#{Z7}C0a!HNLW0E;bSBfs;&MPz3FyBj
zwA<8~rS*}6#(Mm{Ak$%SnSn?p5&fkAJBHJ(3CmMuF&|n5;h|bCcTXjr0M4&EznDO#
zD{+v@FaCZnPES2^>dA;bNAEXTxXQ!{0x{XvlCgh7LimeL)yyQDJ>r*AWV{%D5(}AX
z8NLLRh*Xakh#Hy7;jb@Mejl_6CT({)pDWCLA@{r`;~2FZQS#S#*<x^Sv4f@ds5w$^
zfjs!j4t;~gA<Rp0rRG1q1uOJzm>$wKU#}>hlVCHMhE(%pKt*!V*rH^lLz@F6n3ifk
z>G_Q6U|DvS3#?0>dC@mlSjQ-_PxQ9*15Ot0={RiXodp}avzzU)Ml8^_IW#g`C++}@
zCQX%BOrbufKgN4tS4m_KtJC`o&bfG|uu^}blsnQDF)%fT?n9fngch_5OmFAD%5;Fm
zR~;~14okoNu_fFK(e<}>Ga)rMF@imK=!9hCT1P><8W-)IuWEi^jZ8Z;XoXfH$)nmt
zVH5wIi9cClD}Q*47|avqI}25t1uQ@-Q?&@sIAYW@p``SOl<EwnZ!_J$5{DEMM4?2e
zve64w4~`}!{iVq>zn!3$v-E*l%8Yl$F@mzy71E(OQrNM11@OGO*yYz8Qpsk2?Y9{^
z&e=h}YicoiYe?$%RqWvvM+OsK^YimgWToF(=KVw7A7G7~q@3<Et*1B|ODqkB3q^|&
z|FcB4^_V?J5b>p2W*a}Im78zUt7IFM{{bXsE5m$OPkzTUT8xR$ujk}l9r58$hI@jl
zO@TfPzMKu)&_iclp$3DApX{>Gbd1_^Q8rWY8CDpY77(7H0ZXVZm#fLp*in=P!o)B|
zN}~Pix^~tel<Za`wwH*?!{+KJjKW(Y2D_7iLHpxHO%O<wI>QDzNSJYMTudI6U*xI5
z@bx@IgW)bFm$JE`ik=vS-l(586o$P#3zxGBI90Z2r=Z1Bz{HqK`YMQ|6T2`PTc&JB
zpEG5*o!wJqeL!oA$MUrYTw=QvPE=27=+D9vcegQ_K(y*zH|I4Tq5vrY@O7YI(&4RG
z$~Je15G8EqhX+Y&y>@G92jX43Msgem7d6vyne#8l{LT9cT(ULWf~$Nv|GxTyz7UWv
zyYcashsneC42tNmRWK!vA90XXn?;VU+p9gF7^Pthr+p<4Dj-4^ZB~scyzT|BL2d&$
z92-Iw4mbQESfKyeV13B^_~rruyLqCGXFg&Kt};2JF?zAm;E>Xmb{I<+rcr<2t@Xu=
zIk9>sM?a&jlb=Tki2W$VVxw#Hs4WAtY>^0cK^KJq?rGnZ+rzJu`>%4Udkh@p(69d;
z4(^eH+zsvWlV?Q_qQ$BMY6kWqfI;wCtWlJnY88{U^&2O_U;c1hk`4e&lQt*{>jk@k
zD=4k)8ErYB@#?cvJ#9wNk)kKD<6>g7H_z^Y>==?d{UFAf;Vy7oI!*^%##i-;ZfAQt
ziyq&SPQ?AaM1CHX0@2xmH5m3=b*1s>p}CQw=a`HQ!<|@#p<T~sTxMHFU&sA?FTob=
zX1KquXj4C}<f@{(v56C?Esro0ySrQ<JB<s1n}V>Z<kLKz`a~nR=arBJ^8!Ixj6B>Z
z;}fd`+v|p4595l!vW!mis`oqJzkGLCBVl+k{4kZnippL5?Wis6#j@9hQhjmG6px?U
z6IZ{&oPQ5G2jYO=>d6Ps*})&36gLsvm0T+;{Z1jWViiwV|9n_OZp6$&6QTu}M2FAl
zBIsNZZ2>}*iafH2H`RbYB-&@|E~@ra)~RjOS05fpVCo$gU=8jaesm+ugXDnQ*5Cgw
zM2oqiGw?rsHc#4VCvurYiDcGi-O)Rifs-8&HB=wcQ2h6S5Jc>v0hNAh(iHrWu>r_}
zcD!mEb!ux|JpFsMl#WZ>wJt875n0W->9_7e09P~t*IYP@a|qY>-@st_2@n_HSi1cK
zeD58s`=s6J%ikj#jIzfq=MI*RK)Y=P1+>S_c{DB}xB822X^RUY_enKy79v(AoQmj=
zG;!cAgVj%qBwdmNvin7f4f9(rh(q`bi|yD`aV*i>1wUz?#YPl(cE}1h<lF0Xg0po_
zuk4Tb*HAMeNmewT1OM7sp*>2scecDb5cmgaB?IGnv5RZh-Qbj2TT2nSAQBvnV;8d5
zU{@I=U3KHH0h#gpavZ`3nSUonUUBamqzA_%`$TDMTj;5Ui0nG5jxRShaqW^F%*78Z
zp^}reI1=XC-0<VCe=fWa$lmxN$F+%!a-5n2zxe~~j`}mTUEofwsZkkm9KsJ-(ive&
zH{agY7vJ)PEbRg%pr@u`0%@P`{)g$#d(xT4SoljhIQ!s3U%j$4?q@}cX0#ApN5A~P
zqTFq?m6lf$my_)P+G9hhPyTcNR2_*;$)m}jRX28A&xuIWPDps)oA`}u7}#2Fe_A0-
zZo+|FgMQ}V+3P}Z>g9t6FE#h@rM>@x=-w&WJseJ8(^O53<J<VcVmHHm!myvDmgxJ(
zv*_(1E~@wH?A#*|A04tnZ$Mu$EL4sOILPPHJ=s?S>0R;4TE>Vwg3rq}%KC~SrPa-C
zkzEue4kril=8#DwTSKvuTxjH2D0Ozd;;(0~%-yP^Sh5Rx?pTk4(S&N!Ce=Q9TW*;K
zss2|{BLnNnx<U;kVE9!V!*R=Z>rp9ax$}2b^JgNm;ht;I-=P7g;m<kf?X$<laIrXB
zG@R60kwBcQ6L-i|%uDGT^#>dXQfrG&3d&OwruEhVCkE@_u*d^q{!9R!XR3j^u>z5}
zru2FCq_b{3C29wbts&cs-cLu^XQ^pxyoHWNp9IIi{Y}M{TeE3-9=qHY=ZaV?Ows55
zuKpG+_YCudL`opj+)gNtTLewDo3{2q@DoQC?jnQhrt<NpkY>jMW2G26mCbdN*W=29
z#tsw?pZQn(BccN%^cMW~384MvNLzg?rr>Dx?K-7Y#^=lyVK2l4oDxR1lZQUWHki|n
z+!c+A#+CgnRbqvkW52b;3!{ewl^mqe5v+Ix=iZ61rZ&oRc{yzL+aktpr*p``K)GWI
z<4f4cN&OmhG_57#14V9yj6PHI8J%DAU^i#>-pVns4!d|{4PUT1K2S3r+azAXs@<>S
z0k&r!!hBB8`;3-aH|2?;q67d*300aa$qC9CKi_Yyn9<VG5Y+AzNwW}<m@F%KUk>Xi
zWv<Df+yxG8aHI`|difF4{8>7*Smnbrh5o%KJuXCTnGsbei1<+ae0Glg)?YqQ(7Y0Z
z8$B&)P_3l2LJN;L6jN@2ANvP-<7s5xQ1qRk5``&6Pv>@=_g3at(XBM{@AC~=vid*j
z8HHgCShNOdZGW#`+pJOzwovWnuPKOVXDmoH(FOftZq@HjkyiY-CCbp9r}59XjP%=O
zSAc2Nm?TVf@<KkeYv&=Br1+l6AFd_#4u^t{&o=Mp#d9T!&5sq|6(;$?$1}GYi)Tug
zIaU6ZIx(wj9{T9$JAiwOo;}uH+A@#?kOw=A-IA_pe1MJkx!k1sn?ou=djd_DoCy?>
z?K>e!b4{XVOl`v&SDsq5oJpPaIH23(sb7}a1K+~dY$m6-WFIWm2pN5Ry~0Z<#R~-1
z`%G{d$`m-VLUq`a538jzU!7}mQTqP^V{>Hh?-L-nL<FSh3>_+lcb3N%gyxy519Sg#
zO+-Xh@cv|PBVJrjVUa%S^k?PPN)ybA4`kEWh)~LddxJo7I8Hha4E@Qh!~>>FmFQ4|
zy*22&QJD>D8v~XTDBJN_L(QxvcB<(p(?3=BCd$|YDGc=GerbuzzmErXRFOGXL{*7n
z%B^8@BV$wCPt=OA_Z{Lk7p(qK;677)Kx77q;j{Vczl|2%F$ySb<<8OcE!2?&*#my)
zHuAzMD1CF=WmvbB?$U}yY%{TW)l--)`C!bhMaZ;Pmu0m1pn$zcu5|`V-;U@CcK!~s
zu`KM%Md4SQjF<kI;z-+4>8(~s8FFMAC6C2rP;JIFEx5W8w}qz?5aGvGq0ha}UcZ*q
zsL$O>-7nku-QUV;w4RAR$EqB=;X>ac-WyGFzQazH2|U}MZw$H=%wV<RBOS#0%WBmt
zg%5SKtz>9%HdVK*z(khzl@6+pJNDXow~%rWokWE8IWb0ATKzU=$;lWkJnl|}8fJl`
zywuG*iVsjdvWH@HKN9rddO+@TW?O5YjinE+Se{Qb9Ng@)*xqPFL0>utsPlv$4TfKv
z4198+?Vwkr#c)8mhHM_<mT9aLT8lUomXd&Gcq=CzI?PMj!agg2D}*_-`t0?nsY%43
zr$v(72<mXbm=9LjGIP?BK07YY%_p>LjWgndt!^bByb~cFvtR1Ws@nwz@iZ!EZ%&^q
z4s_p_ZRwq}VLw>PQUtpLd0@MoMms{;Iu!-)%L~}iF3&0ofDNiaJa5Vq+0SbL*^_?7
zFB|~VQBJfSc6XQ?kSBH?d!B(yM=Ls0jWb469hFYlf$#|mb)UagvvaPk3Nj?&0+95P
zgc%a75nVW6Q{XS)^<iDeeAZFvXouarD=I_7vi&M#A^!n0quk^-S5!N3w&@1PFAmY#
z!b8(-R+$^5HlE_>1ob<FXKfj*h3$xmce*7>CjIT&jmN}0GNs4kM{~Xu8F{p=ZsB2=
z8tzwZ!Kl5e1S01$!5bgq#gH$G?elCeR%4>fYrY8w!XF2O3dsly@1sVIUt>5@9?&@m
zRQda?+G6u)WVeSrVTh$mcHt^5rPmOt?6?x?;mu>DeRjR;FQ{mCIP@^cp1f7r9Cm>0
zU$392PwQi|wO0Ba_7HP*F#C=2b~X+bM#yWsv4QKfJRt3wnItoLFp1%J^LXrhyr{@$
zE0XE9tfQH+zQc5b=j*Fh$4EcDv%7e?D*%Un+oOuVrDdXdU+F!jBLm=EWr*(n{i;`4
zi8TrO8thIYb=SDVXqip<IF=F0HEqFY5%U#P>#i#|atV^LrWxXq30+T9{i0Djt5(8I
z_8+~l!zv`NOP%7U35TU$K4*{H)`?en$b!Y#*qprxwr4x7#vyWp#uBfQpZ&nLwkz=*
zcKGZOlWG_PN7GFVIeIQXZ>Jg*6F%p_4Wcu@>`j>7t~Pu(DH><T7Vk(2)t`IlD3p&8
zW?Z*eMxrA1aIJ*OIQv}=yeJICrl3Y~$C`?G{UdJ1R79$z_CXe0O174ze=bzN^sz0a
z;dsH2y8GW0!uzh$5MXEuX59wB_$R;vL0p+TtLV84NRV?34d2NgEU?c`7#S$QL5nEA
z*_po;3Q}h1m?Dw+|BWe+t8Qt)X|x_N=5T-NwyfE-q4q3Mnf3_w)K&36fa9AN$rjR(
zIC|^<SHR*DB|*Hfn84*p!};eavo46YY}vaXwE>F6x6p#_!MPp#uP^JsYc1c+PYGHO
z19r+3YE&ltb1xaMD(C*HCX)QAKe@a9Jm7DO9xoXgGhf>;n@_I5cVrkS`z%pHd&|g2
zrj>+b`PtsWnNq>>e++g+v!wdC%)_swtL2_CyxHi{E~?BpR#~P2hhCY`ydiddFS;%J
ziQf*8pCvlaCpmSniP0{fW8YEA2Y%JGyyccF@ulb+_+`ApJi^nnmDS>@eYfr{u{Dl;
zs{j1UNJXs>btjVrz&i{tK)LjrrP(W<@5e|tt4V{fJXT97G}&E<y(iuh*!?G@f3F??
zCZigRmZ}aOiaQ$blUtYe&JdScE(eZofFNRM5#9IuHT9RTqrrFInR#u`J6d<Q{Wo$F
zBF@P4#q8L|S>=vq6augyGa*x2I~}3>X)WFl4UCXqE!DkaWZW~EfIMQ|9Cu=P3g~80
z&Gd{-I4^Qf)SFL3*k*pc(VKh466k$zbK--W_zpXA=p_1Z=>PiBU7i;i^q3QruBiRc
zA<yl>U*K^=r+2;-C6t_)d=2xI+3R@k6BLA|K^;)Jbew}MYnj1{2)-c>kxi$9I~+11
zW?aYeDE-2w>f%~PIlJ8-mK1w`7Nv4ID%xr-COiszRxA=(W%K_46$eu3ZtkX!ExX;2
zq@&C~?TnzeDJn-B8!VsVvsi!JGLqo05#MgI{ds&Rd8M4yP^fk9*1h+S&329|k66<`
zeWTZ%L1cUR{xq!swIh&oTUKFtTSP3q*R0mP2O316h-3>CL)c~+9F*=7ptan~mgTc|
zItjh%G?xOQFK@G^^8rN;491tL^H&w%^Y}MMedOjb-tfZ?B_K++fMW_0#kPdcIdtt#
zkI0Gt+&M<)p6@AE)p5P!V4d7&srVm|^30o6Up(yRa|JmpsSEhA;-l!wd_`q_0ebtP
zkf3c{#ZZvs>ojWoZTs(L_-!P)JgUz1B@FkMW<t+V(Y)f{YTzN9GD4;q3Obj=>S}DR
z&DFnZoVbVpZY2U$h*Kf`j5FdMhKnekT-CdKO%rok!fr$FFci|qOPoei5mBYPLMI4+
zH23TAJj%_d7jqeVNGQDVC|aE%>F<sWBj{8z0bMq_1pOee#J#1U*^1D++1v!=eB2CL
z9CkeyAI0098#S{7e+D8va$`vjuMvgd_iT%<1r<Nyzj>zGER9lWHx;o*I-dNAi1DMk
zPCLMvhNY3x2i|=+3pB4l{YSWy%^hCZB+Sc1XIo89>s4v4y6K{?FdZ}3T3cZY@ctpv
z_=i)>MlL_!`fxFuJjPr0Z>#JixpmbMVCnjWYVglJ5!UU$P@=5t@adL+ju@#Gh;DT8
z%d8tl*sFnP3-gWsPHGL621=osGKIkWieBvb$)D*7bL|e|u*;S?8`2jU@24}Ciy)fQ
zK)LF-2<H`gf?Zj!K*9~*wf27t_(i9^9nu$om4JSkr~A`+wA`&oD<AqZjg%fZpcHww
zX}ID!R%d=9DHpnDg4w*VV=y@?x&xlWwEeu#R&ZUWJLOW(J0t+x{7kOM1U7f~+CX&*
zkY8;)nc^+3Ny#N)F)b`V*v|tDT1fs0h#Xej^eo+R3l=D?BG?`=e{Zl14*34@;e#xN
z0N-2$$0@!ytmXUfdi-y_fgG2qm&E6ZnLEE6GftQ}-WWWd*<i^F1;Pzpl%HiK$hk`l
z+3G$-3HlfU|60<Cc!&)BA`x`g=oRv(VZ#b-Ei_syP+3=+L$)Jh=qvIq!+YOp1Z`7Y
zjlR7uyWhH!H)h42hq0@kbLfgpW_+C@R}ZUUD6ao~>MDX=n~Hv1)8G^tx_GPP(h7{0
zi=hjveK9w&Z>fJkCHU()-~L5<>W4jdP)O3C-6Hm!J|X2wjIGQpy48Mx|Mg}Rz0$J=
zWJg18^}{!rh;h!4Q{`jl&S;>yYYwuL!q*SY9oDRlzU5RBP*Y)8^&0y?aUyq;+~bO6
zQaYB5eL_HMSJfL9?WHA<C<rfTd&5R(wRZ)rcT4?k$-JcJaUW2TuTxS7J-xdGc7aY2
zl$iUUKU4)i|JfUjZ)%io{7-+u8ZC*rx6r_eAe(rn6N-@IxD=>|EOAdN%kA;P0NEL{
zU#O1);coj5o%Ijl=g1u!JeJ0GJl{?1@nd<TSIA$$-neZR4`}yOTec|NBbag>^~+o;
zHV!=PTgPaxES;PnZ+?hZU?M~(*#j{_2Fx&EFu00_w)s?Zc@F+8^ND3)QZg7}&cs2!
zdP{!9Hx-cirho3>L{2R$moZFgp3}c8-MAN408zVURaDpwTx63iURd4{%F&6!#gB}O
z9f_F=?tMf~kVSL(O?~o`21VgC<LVtIV~Z!A?~r!?cff-kyaC{dxL%_BSTe&zBVR1Q
z37Z4B3+e|K?&)fHS=zyhQ4v4}(Ctmo9fR13s_y4A!4e;XtK6ABPBV`Skygv`SJ6sU
zC73*~?Vqc+F{L9(8aQHYKsTvW{Q^&t#7x_3e-Q{?Gftg0c#ps>4q4jbvm!lTj5D$i
z^zAI%>yb_4oPIWF_@L|;cd4%S&G~)xf?s}$4=bP%s5Z7>f7D)f%UHTo=(ghm)MvcC
zBxKMc#KBvm$4<pOB+;+e?!DPnKM7M)D~+LOiC*kM;lRJ;iR)J<tqeUnoz(+G2_-Qq
zVW^*%bf_wH(U{UwXxV}LF&YVnOrzRqmyGlU*x}Y<<Vl>nPl%H=SBMxkVmikj^fcXy
zCWxj4zw=h5%lk(b2`!M)9Rp}i(I~Qh!WOO#NI(pNJtVLMVMaItV68gqFYZ<T_jf(;
z)_6U!py(b$cY);CL*H#hZR{~mVbv{jxW~xg-g<{Y`sQB;Zl3^!Wm6wlkgJ5MtzX>9
z9tFF<AtHmdiQBwsK8qxCeYs@wWMaM16+Ez0YJA%M@Op0aBt$vvkbZ<eZC0J3yOwCf
zmUS+E!GZoIHNypx;$l{j!sJgFiV;l4O(#_1wVYJ~51*G9LsB#PR3X!vDeH`*MHRGn
zrEX-y-n_}E1^(jSqk6v4_g}IMFc7LyE;~$~_+m*9(%o#9H5r6C`Md3=hQggEmvFL9
zZ5zIpFQ3hUW#e1*5BmB3MgpEc^7*RI0k-nd80ylOe2QO0a_$K#;z_z)`KU&X;cV7!
z?<<VOuWo1QbM!^aR~{e4V!Fsz?C^=6iD#`-pG&J9==a<wKV2ZG7kFeI3k4`SsroPv
zm&2B^P0PHI9sO|^1$?~<@ZY=;KKYraRnI5W{y*;<zSwy8uq^|ng4Gzd6uVd{xhhM)
z<z>Q_y){j=Fcot&thYYUk~)0!0yrT<vvhYTTJ9HCZX9a$WSwYjW(Jvc?=20$<u<dN
zl%CqkzX);MZz8dCNBlOarp7$>xzX-QDIp|mJYJD(P=ouN*Sxf5hV!NK5uPk@*8<a9
zE?czZ8!eya)(Ny{fg@5{{PDZBEs46bAKyCTHca=D0-<Wqq0X3>)qE+l8b*1V_+4XZ
z#)hNNL_b8H1F%FdFnRIxzHlfn_R-Pvy+h@Ymmk(`3RIjU?fD{^Pe^yN%Ckr+^mW9d
zzHE^sMxO3{5Ct+A>EwUu6FPXNo=iP;Cek4wKMA9<7Cxg%l4z3cwE|4m&M-b7{)xc4
zAuL-XKEhvO2kdz))MqqooMo%&RX`%HLU%@hn2G{7Z#K-k0>xx_=1wWIld8f)TP4|z
z3vH-4q{vkfdPek<G8OmCeQtp(I(7{$&l-gj6B%})g?m|dZdv^kzU$RgOvK$d0dfHk
zVsAi@RL4nFoz>2KCK8#LMQmX5n6*HQ=D7_$O@3pkvS$sE+aD@ipXe%VETTvOsG7(j
z^K)tX#X`X{((rY={0@805t2AbmHg}f{CX&6m%KI5R0%4dLi;Evh9$TqHEGD7w1)qD
zk+tpn{}uM#U&nIl*5!OlhFb>d5HT-!_{RcR9Yx&X%a)kS<KuLC5sH&V+R>!@t7sdA
z_K<_ZL@BGjkE52|R24Cz<6$iNT7Fo=Ai<|BhKk3pjYPut1fLx3oO`#zSk(&EWgn~+
zl|5r(JT~(%{6ogGpz)E3Gws}x5ZoeaIOO~a(EYf0YLcyI;#KdMLCdR9^^ZJQX6qyz
zxe&Sf__jJFmpFNpqj^CN;8P$7?aJZ!xv-*|^y{%w$$eYTkh@E&5a1^|8?HudN%<%;
z7Ezub2vOV@R`duths4pzeqfy?Bu{mypV%Herq3Q<nj=ldORHP|vznp&buk}*QX|3c
z7-b86zU7Q1>Km~nhu=JfDBoN@7p5%9?^VY)NkUH{BY08CDOqgY(uvI#ef}${wN?j1
zK#}eFv5K58<V|xIZ<m0RwLJ6;$Sndwlm=8FM{pCI)<fVf0d?o9lM!_nY%HJ}@+2Z*
z*4$gXhn_f5pflhkOY?p!E)SIkfw_wAU0X3|pLb3JVMv9-6No9u<lp03RW<&q&f2jr
zeVxW~<|<#0b9&Qtw1p*LVhw6a-w5~W&!oWvkkk^9XVBDB3uap{#Pm+hw{bF$7m4}L
z01?3wnYw?@lN(|T>Rn?@kBH`&%FN%&36mn^aXeFdRtNORbN)z&Dr&k=etlY{%Gj6Z
zgxkuK0b^v5TlPe;InO{I)|cZ(9c-4(qpU=wq&Cj6X27!^@j3oz-csnX1<{hZa9FK&
zo;>qTgCn@?0Uc_@{eU=yF&(C2_783F2V_)x1`BCdbqeIodgFI3T3HvZKGAG|qr`Ao
zh>1g6vk*AgBfuhtA1!RVI7G2g2H<E7ajw{$V*AnN6xnLykhtXV6dsHo`0AG<Qeq$a
z<DLO%<fQIAhs%GAJXZC7=Pg^EtFZ|gWi|8f&Gux1FgRi$K~2y5(y^jiW-!0k43jq2
z5U^#$&-hZcg~?jAF%j?}=Pwjwi`M4;t5&U6^y@Qn*r^oyyi4Ff3YxQ1ZL>vlHuTdl
z%64Ec8PHDX*y$oiLoas!UnBb<z5_HzU*!Coe?DnQ3w|s*u*Zh1v_c0d@c?aQB$;fk
z26u#}uW#_!^lHV<`G-*iwcfuh*%Q-yLbjy?>tFgj1z`lcTa@Z>>iqZ>r)E2eX-%}t
z>Whw<`ynX%!EX>cmD$1<?=+}K8KoY%ivaFvUH+)I49BaV{7d_}M0o=7+vZVh<?f!9
zd2~)YeGh)FWi_4j(1{8KdBDy&7sev-_KG*~)hQ=jkzCAyw#|oR)_RAMovpsgd3p1Z
z(}4GFfNyBn%$drJjJEhQKk0`U0X=^Tgvz<-zktyGTULn!<*v71^zK)`#emaEG#-yp
z<)e=xY`MKX#V=u=k-Un%gw^Xlou7mN@x}iVe|8KMx{KzQMTf^+A`jCT?<@?{W=9u<
zrZ=Is!|Wv*O^{|sRKjmicDe6v+aL7U{%(4jV!(>7C)TM_c3q!*Hv?8}Wvm0IcUGIK
zEC4i5x+uJNnSHLJH#ZAN_3(NS25Lk?9%~A&5crHq>F(cLHcrO4#0Z16w?iK~$HkPn
zNU5JgBSM^DdMEif$qz&Px6iPdB-^cd-_iqm*nZ%ctxR*GJXna~h16dHzu|xKlgTa`
zb=f5JBF9S&rld{#i&>TQYJi&jpMfu#J;j5<6;H-vK5o1iLT9J1QKK`SJ6`zZU9GrS
z$yTTM%S@<Z(94MX$Vek6cfaH2)L{p*eYqN0`j<wO353GJXy%J}KsIE%<mlGZ;<9_&
z&I&xgDHV7^Qv!A%xtiWVO939j288a{)l0`6>CECRPVCUU?_^mIevMES_BQM^S5Ari
z4qa!Tsn!CV$S!?h7h}$5Z=Y(?>6LQF&^NQMSBFYqAs|bEcAjVtkZMRnfYiG0yRV!a
zpjfV-3)F<Pg1Ej!h%wn$$MS83#I#>`yV>0N?KXDzohhbrM#w&hsCDev#f)%b1wc~!
z`44Ow;W#0wbqgZf!5q|d&i07cX`%nlz*M`s&VH~+wC{SEy+&VeC8veu%7i!mKYW&s
zSkL$XINe_+R#;X^xqSt$ndrBP8suC4>4*LMJhi32WF;pMY6>!-x3hwh3&NgJc(8(Q
zo<y`9AwwHQfIii~I9C*)blT>UHMK2=%)xGVZg{JfKO>VhKr6@jzgM>p8KN4Dx;m>r
zhwKv1@v4d$Mv@>nE|NHa=meTWbqzp_k6`rHMU={%SL|Gyn`}T^HHN_bbUALMoWhS>
zT;+{4)E_&nDG|E&OU+1W6_=Hg$&x)w)(g%s|2ci|NP-rU@Z(K3l=Ia&jvN#@mb-Od
zfu%o=`d@KfarJMzh|AU}r`kH@Rr;EuTt9Q<e+JQvKmUF7d;^5=lKeGIKit0l2(WnY
zy|{$ADgRtB(n)wZf6*?FB^YBmGX8@?IIlKgLB8raRO>cj%w#k1t3`V(Zg;z-J=4cB
z9z|{qQ3u0X2RXQ;%~QIzUhmN~7!WIL^N1K)9;_p!^}b^yyEUTKyLPKCF%)g|diV|{
z^09wsdI<b6L0J;6Vte|%M|K?=DV7_3Kw=x|$j~;X)iL9E<d_nY>+l%?;K0;JcnMVX
z)P`x<iNH&?Ql;L?Pd$bx{@2<mi$i66madT-dPr=v#7g{C2NaCT^sp3g(InUjD4YPf
zlV>Te+K%hgmBuFgWHTTD%r<*rRZU>#-nTBu*+C`nN5{m_-h@r(QK+J~q*6mBfS4qq
zJZmStmLJ`o&(t9nvr9%#CLyUCOaw^zsq(_|^ffJ*df}YN4Ej_VV~Y%|`VxzSvT?*x
z1+l`%)P-*SghyPX;1Vo*H7@O*sTVN7zyqrwzrIuU^Es9l%Rk}gd!3#o<Jw(3K$jy<
zyqgwJP*>|eWN4C`;%PU4Kg}$jGa_dWtndo1D38QZI2<2D)0HaeD9&d_r$sx*#^2fB
zL1!44p9*&%vtCQ>8&vZXl+8fSIfF#7b2Hywp}6d+4Kw=x{h_;Lju^29DsM5~Ak}T%
zbB+Ak|DRt;Hj=WH9Q(VJn0;ytx9&qHyX_B(oxbXBygh^h$T`j`fvo$da3l2FcM}%K
znCc0cpiJV0?Id*2CGgiJWd)@WH?CB&j)(DT7_hH0+nS>Bm*d3yd&|2O8Gk&FKSVDg
zVQ0R-+@7O0!@T;8%;6qr+@WANLS!`9u9~67#WPSGYo;wIQ6=<Kg|er?Jk%3XwG(^Z
z7mIrh&?wFxi0>-~>unkNf_pYF4kAI}$fS(G0!kst;3N#+)QQbom%A8GLB{;Z))Gn;
z@p~-wi4orm%<jJ}@DpeOvSXy`B~JcY`K3-gW`T}$><9@~B_s~M2C(|29xv{YYMA?C
z&m+W!AtusXGF|lc(J#`eWi+9g_I;lXd8v~|A6V3^ybW}Yix!qmnY<+N({)x|v70S_
zmvkQbrLUC@I@JY(@svh~zk$(<bVi)N_loK_WSjJx>>>4Tbr*|PeWDPtt<eJG0xQFr
zzY%)<JYhR?4@lcR<CTM8voV3LpY}qi9Xy5BzVuIzI|o?AnO8O}1d05Ht1(POge6wc
zMcjNj<6%SX$ZGjegC{??NrVoXS28mS=PXvOg;QvxUq${^ls<3#Ig8vd$Z0+WTsN|{
zohs@x%2BK|a#7UnO&R0_)#XJ$e7`MtWH(OzD%+p)@{R__KcLj8T<8hfYUa=3GG}Zp
z6NY{^t>DW<EB0|6L01Tpv{HwS=-N{9N~`KPmXQSt2I1CrxY+l5S)VDJcdRV?#I{c^
zIc2n+$-5*$AZP0!WUxk+nRiReZd2`FJGyk1or$h3?&-0oidoJ=^k3VKw)+loMv-Do
z$THoxuvQ|{7{(&dqqq?G1Cs&eQXp=6Jry&4yp!Lb#<IgZN%!qyE^rG#6X>V5L?aN1
z491!(%6u>0d|YWZaXyBK7)DfA{4>!I+a)c^j!aW47S5y^J){^}v>qe7Sy6R`PvX?W
z2-`mhB#CvRgpZOYTgEJQ^>qfBPi*pMX8QyM8~Tzr$$nq1kI!+V)xzsLn`n5qP8Eoq
z?DRO+)xRjdr!*&yYQ}w~0e7u5YwkWBa4n9{NiO@H<sfY;VX)$DVbdHPSNe<kl>FdQ
zT!Q(yD0Z{3)cZxanCI>-_l#g#*&C(pTITFJ!Azmm)DmH4<_C2D`b!*iit3`_b!G=7
z{u8DS)`gyv2&a?Iib1RSl;6^UXw3F}|EI3#SziG-2Dvk2Ls!t|5pdZ5%B{K)A_JN?
zkMnvdfUpE)U+MSEjMeKj^27Iza)Aw@=SXIZdm5%iS#G7Vo;yk7Zsxdev1h(#+<`7J
zUs-mPxnT$o&;uR~r}-n!Htx}nO*`$46tQFvcHhY!cr`MqAp(=)lIv18noXP4kbu<#
z+%}&=PL*L2I^Z2$G&lWTY03crfDVb0E!HLcDSgu(HY3i00o8P%*e}Aj7g4mnM`Vht
z8Rd)LPRaS@T9HeGmEJIKEr&Q4FF_4sdADeMi1n$uWg+3R*nduQ`&v)2HMXqvFndLx
z0QLZiH1rVYW!b^P+16q#Kb*+evd_GfH{R($Jgcv6cHTpz@_aRBv5sT{|0VKkXT`H{
z=!F$rMd%7GF--U+>MbbAZuj4oIP2ua1Y>pKrytnN*|J~JJ=O=q$InFZ>^)vT1sS!?
zdx}G?kFB83hopvO|3}evxU>0oVVhD^t+q;xT1B;#S_xgWR%?{nvnWCBk=RAmY;9`S
zUNI6<MEvZnH4<XAMi8;Z=F9g7JnwbA&-=X3Ip;q2x$g{l49kGf1j|x~D=5+}7cb~>
zZqQNE7?X=X{dJQQm>gro+NdIRKd)El2(#bXV?+o;pHZb|%I>tf<&Eyw*Ev9CGn++t
ziy`U33l!1bx8B}R3(u;-&Xp@|gz}Mv@Qx}}o<-Nl57ns12db@wU%jMObbIsL60%*)
z3tib`aF!6g!=6^>|15k*$A|CtZ*JO=NbzuZm7P}0!0vCQKY6&k#xOiECzfKoUJV~*
zRy3CNtjB0gtmmn06a_DZ%Fg14UsmHxdw^%xFlRUaoAN=QxvTiMt^5nnstikC#~SMU
z?X~%|tj3V!DElgpKLg*&9W@1N8f@gf^$Zim2UO%mn5kAoOjiupJ&2y$GXb8pIg0YC
z#6;JS3-9MLUS(|2ycHTrgw_*2roa*s?6$A=Zo0lysZPsknb8tQal$ZC^T{*pXAMX}
z@|$T&0mB5pXxQyJCG2D2?VEENuL}@tiF0jc7$FCVQ}Ov8^(TvpuGo8TP6RD};}jhC
zDM;Q8D){ftBX*r6xI({(qioi0YeA*$IO*=d{3mte=(fRe>b+lo9zRIHTUwII%RiC4
z=`g_JNgR2;&SuT_NanZgzTzJ{`m@VNw);VTb;8^q1^3o*N8zr*`zm?rm;~*rH`#dl
zWlpQF+2j78>#<4|D*=f$H#BDop6@A)=aq@_#q;f)8o;b1MtA?2GCCF!OzO&2oEz1(
zFu<2>_RSvy-AyL6M|?lcpwb^Re?v8qbWA06@Sm0bc0}`)7=B&*QoHn95Pdo4Hzkov
zqPB2U7r$GfIN>v`F(44z!Gsoh;j3xP{r8xMF~}qK86dZ`3tpI+r1guP&th^brZkB7
z*<_ERM}#PL^DDCwR_sm1)_p2f+{_2hM7M7pOejOkIPrJ1-4iW_Z?u63Nvsbz%iXM&
zG5gk#H`RTs?*KE;zd~doG{$E~^^Od37CgV$@+=@mziv01ALjhD=*ZOehKc)jbA8xL
zV3tn|@>bDE;5Z5WPj&?<xtG-a8}7Jf&9u2YZo4n@h@6*FI*{3)*L|=ok5y<X_CFc?
zBAWhkUI-5||9-82Fh5R({!heCIsI8#-BYeir&Zg~JGlSM$M0^A_3g*u3x1pj{@PL|
zBbeR~CY9(YDoC@|tbfvN{NA0ks$^+Pu7y2UG3GV$2jyv1C+r1Ut7G`*A>=U*<@Ebt
zT@jA#Qsr?uPVnME=<eMLlnrGzUrl7mT*?i}K{BuA^T3RXpY%po&V*NgeyVw<Wprli
ziXpj;b^CF#7AWX}_$arxp_BiBdWJSqu>n$;Ct=lgy!TS?k^VI%J)2-h5+mMx&>q~;
z`ses|tRj&ezciwT%=&gs1K;d`CVlo&T)IfX-}Q>9Rd9biA3a*ClB+i*XmA$DzRtQD
zg>OAaBZ<N)0nbmCimZ9or;o2YM{8rpD!m}BMIa*y`3W(E7rQ)1OwPph#Wqp=ogTlY
zNm*=KApK|8K+p<fFLds+s|I$5l`E_8moVWKa-@!VKcH4@gH5dWabZ#G`S`J4?=wu9
z_Z)lM4W97-&UYGPZq^!g(S3L42{DG*8HRrrwafJ?AdIZ_cu{&q2+9AHn3PQlq$h~&
z-{LO+o(}K|NDODjG{#98Ed0=d8vFBc@O(P^%(*@y(9=q{^6Q4RO6ly;`1V7%!tm01
z@Mb!Uc!LK+c$k^tee;j2j!Isc7#Uv~@H+5U-!!SC9Hbcl3<#~-FX;2eNP6oG?XN=$
zAp>bv!EoCMF1y$tMRS9d%aJd^w>}PHHCB=SjY6aEEZIh{`sc3{w7v^{w9TMq%X~K{
z`$QtfJb9C}Wv|YTIewxkB70G%v6uF%Et9yOSu+qvk#V`?rEufR5OlKb@zO+(_95gX
ziETHsrIY%T0>~KL)~0D?3mG!CiWqMwp7S2b_?`YUr@~xo<rHm;-H0;19yh$~Y<@^M
zWV_1-KAK7&YO0+|H+K^`8b+KlA$}e*VgWBy(HZYcuVERzEtPT_^4fytRK8Sr&b`FX
zV5+2rzn|F=4!f5TT2?cu#$3UnKBphQ;TNteF9$Xe_x@ZeM4#Qk)#AFyrR%c;y%!bx
zBF5DaedU}^zU;)AAxlgZ<<43WSA+37q;fz99R78ta{Vqm<EDv~)@o5zUZr{Yv<u>t
zCvL^1(vJcl?4vWJAuiviBd+?QhC7u9CpqXU2k0Ih1$}P#`=V3?BRr70(t~xc@Je&(
zLIn@pTuVnKKNd2Fx%p-0had{8&oj%<YU;fr3EZ>75C2oSn(YZ`d5|@2m9cMij(!)e
z&jZpL=ET|+091G9v4ZB4rlESh*jM~XNRx8?IK$QO=^l}SoDcpjAFb?S|ANL7TX&=G
zomxiU5Elro^?GuW4fnYCaTAY_*Ii!V9vXavfq4jV<-?Sx{J!0sE_|C`60jE7Fo%pr
zbBljSqG|Z|j8d=2`Y%;#zc2aA<;6eCd3N>PG}PSbQ?pUz?+mc|Lf9fl__j76B9Ins
zM1_#-7h~oDK=K9H!1<>SFTphFf<#?LtV^ABiA@XrW`;{uS;MYV3q6uETlv-7EssQL
z^r~_Q9WrcB)LN@(_PH|EEJn>@oc1tO=k#n<X;`2nl;RkpRv8g$ms0umCr!?FXLvk^
zFtaDEd_hgXc`$YLNao0MNEhAa&CnMQC&UZ{5mGZt*0teMeXdOqfxgWH>5_d90RjuS
z$Hh_<E6`NtMP4_{gB@dmEIVFM{Sxf_MGJOI)T<Gp=V;<1`lJwm13uwW8!DtFd(y2l
zBt1R?sNbkTa4{acT?Z_MF%=(pzdRBRUX<`Y?cyskF9LowKba17U2}m-lh`?6{Se^V
zIhQvmSz^Kc+T~-CS7}*2iqdNCB#dly1W?%5yXi<p8pDJ#V?P#p6~Mx0(~L@C`*~xE
zP{a30VZcDuC)w{eq3c>``95M`TVFGJ!Hlaj)uLbAMBw<}bqS91%Iyg_?MoAdR|071
zI`+-auQ;B)27p+YD0T%I%03KMiK$0;#^5CWz-XV*MZ5BFS^iQ$S8s+*O}MLm{V^rX
zjEisvdRj*NdOQ}Xx;X=MNxM@Dw-%zo<NS)TI%vAhtZz4AdeW^g;v4QvKiQoQl_Fd4
z3OV#iCh_RGl%`F>;;>PU^v3?+BM4^3M!7GC_Y=CuaRm09WjH2tc5~V#g%Ikh*s<za
z3@dwtrI~TW?v;6AwRvYg!i?Jy{cuvp5X+eagchMWpDBR(;yR(2=XZNWvu(r+El(<@
zMr4{-^OCSi{(C5nGtCMO<dkmBbJbEL;FeErxOtc>@3LkBI7xz+_|8Y^n9}+=q<BPR
zV~qS|OFWs6YNm`siDRSXN7O<j=)a;JekR!D%o(LKaTGdn2PWjtC(Kh<d<`)un?nzN
zfN{k3S-yW-Q<S(@G*u4x(mTY*>RGIZ2O>(9RCo0_piOF%JbhR9>~?r8TSH<sm@KVt
zT7B3=%l!8s^o8r7)LGWudj78Y6EBg`PcK&?(`*#5;6z&0BB>?*e76>s%g2Nh{ob;*
zgu;}#e_w}C_r$7h*Q01#5!a3Fm!?8FbF^e)B;cW+xB2r!-_;ebLEuX>&w_5lY@qoa
z8aa1o_{VB$v77oYW!+?9?B@-^e_mF@l)I<4&9^{mt}Or=l$F`4_SfyRxbEJ6qtE(|
z5&YcCj6m8t{~pZ_!3S16O3^<AFktzDN`jO@#^z=DhlPp@tTpaO`>ZmG>AD*{lycdW
z;fM}#ztXshz0Md@4&UyWf1&rs`Lf#Av%Ax=lPU*C`_5&{PA*i8*uU%?5&J_7TdB`j
z!OD1hddm2q&Hn36U9Y{l5}<sMoItYIwIg5fePiqAM)y``Ve3mR=1U65wuNN7&e>-V
zC~`#isx+)4%#+t&xt2_ORp*cY7Y?6>Onqg7#Z<`}=$~@0wPu+o9~B!q?@$K@6C_Sw
z+_p>9SLS_QlUo8<F}0~(23260W`g2=zo;;WtG)!hlYs5E89dCJ<r-v%84z3|690^3
zNBk%|5j&v8$%F>8lCNAkk&p$w8?bNj4HeV%NBhp?afMpF2LjE?r@`A0hrw=?)!%Fv
z;&<~3;e?+wAz$mfZh4i<9!Z*2xR%=7bs;pAL&yKjUx~*R6i|me(Vn@jeEulY?O#%X
z#nBnBRvF`2bad>*&;NQ(659h1Ws<Ml|F&}d;9-ArU@5gYuz-vZ8Gzn|){zBSq`f8G
z2-8I`?qG!&gMZQj{mfn@2Ym3y3wAb`QS?>kKk{Xnm7-wE(o>1FYoh&67;e$>C_j*X
zLH=9Q5)`ye=RB73OAW#G#|Z4AL?@@Q8FPxxyBDAX+hwcUy{)&!a31zV)u3n@OOM<;
z$uRK72K@cWK~^JLRvK_+^#rb|U}@$*@TJ@{13U8E@eYR5hC&w40d=lMwfwfv7vFl1
z9I?zE3R`PY;+(P8?CCcQx4qp|E$~LY0?~ERgS<*PSQ>9sB9oDQN^l|xH<oTaisck|
zdf34i7Vj~yj*RlPdVl+L2Ah7z!bKW`L-;&y5uRBZOW$*1r<Rv|Ooek$$~)X|9&5TD
zbPa3&q#vb>P+Bv08Z1m?REk%!iU8U@Wdz+%I1|Up-n{1!Z2d?z^p`N21suB$WxY@#
z$%O-8=qKJR;G)EEAm3(c?UOZ?0p3H?AbeO*+UH(ahWtMDZ;ez+95d+-)NlZ4Hp@%Y
z<0|2HU8pL12v!^^{q@sT(2Ai8t0W>UXvtQT=yOYY;y4_-uke=QDdpRG2P^J=>*I^W
zJit}(4t+ds`=J``kwAUDoif0~cA#C(&2&e_Oj!cBlhW&J@6|(<j+?5-@jJ0LGGpyy
z>6MFF%y1Rg3To%>DOxvl(8BiHyyRz?Woq25D+lT}u$%Linb2@zvAHsMbfp3-vx*)L
zzyT%%5U(4n4yr4a(f@v+n9U?4|JW&mT{Ep?<vqp%x*UjTqhS$2L|drw`IqXM7X_Up
z0Z35I{+Bk>vkpG)?1?Em-srvm_^kR<^WHQ&i-Y@B8Zi35xD7TX;4HKILh>$FdF$uY
zq`<KgCe=?(sm=$&RT<9KwF;#n2-MFYyonW~C*(sSHKJ5rFV#IGRzT|^8HQ$+h0M~c
z?o{QCE^EG6h#K~OaJOxJjeg8{mKCj$vv&UENKct=LqqkUZT1P}gkgbS&;%0_)L@JP
zai5;-TcKW&NX~kSjlHyq+Z$!a1?^?Cayvybb9~7~fc20wZf1U?t|!KXCJWdQ6)E<W
zQ4io(HrZtOk9$AvsceeDzKP6xne1usE`RT9+OP^uVlQ=&ulps{*|oztc5o*6W<f`T
zxI9VE4Bk!0ln|i&CST!g7_BHX>hQ5?<n>>6F4&V+b<Xb(A0}e^PDj4P<1%}oOBUaB
zYHHGHGrzNM`nvB5yn*ey|M#xkYUfdLYxMh??(hVz&j%34WV4RL?_NPJ`R^kF?u@C}
z8azq5$hlqj;Xl(*TWXS_*$oeq$BRgMq_0v)xQ;j9{PUub{lZI|h0YO?mR!$KyL4Az
zoiUHq2u!$BouQBwTi+j4iw_bvX|Z!5Zm0%4D{PzP{wSiP+F61XB{8TzBnR6xZVP#D
z)uhKa=FTXW$aB?$<v`n;<}D-<KkGMpe7EbmBX82Q$-yo-vIh^>iaf{4H)j7-SIoRR
zpe`~Wg&LObPlPWUfX~HR#jXF*|D=mNquitUesg{yr!4_H%ST`{3kN9F^;Rk03%-o(
zrG9aBFkZr;Ru46L(F^8;ry*`>wX%Qkx)P6l4DWwew-psM`Qf_B8X6K+w>jg-_umOr
zc$#u2@A8uUVo4RcL6!f9>Hf*7<8@yj;ydCS)k@2&V|=?QMc{6?(fL^}>zXFlun(uE
zbLe>s05tf3-Rd#C&ZOQtM!NMc198sh1GG<N;K|vYo;<ED-ERYxK_o>DhK!Pl@TNMT
z$TPuYOfqMbZ@_>0xd?X~fuerA97$ZBcEM)<bBlXN)GpdR)HQ|hg_$V3*|uRe+;B>T
z6T_rDi}FT;CQs%W6%+C8-wChaGUJNMuSkME{_=_;?uPHSZO>FS@oYE=WCC^s{Ev4t
zrmV=hAZ8X+xNqfB8yw66U!MPc!f(u>0qSIt9L?3SZI)g>tw~f$CR{(0MP6|!(UY-g
zVk+Rc42W7PI&QW!`bxOmMm62QeDVKXdU-HzW&hj8Li%TM#p9BqBh1gp#JkCND2T-|
zA==R%?F(zH?Pp=Z=jWM%ZIKM0hi<thxqXpb>T!D^^>CF4<$Yol0B#F$t~753DSd3Q
zgx29`I%EQ2x`Nd5N`Dzeoil|}Tu}v2A6s`Grl&}G{k&U8+o?YCAg&)*{-M`~mVPvR
zzewA_Nn_QpyWuuv`QV(0tryFoSkpE6`u<o8$k*W&%?B=@M#r%Ux^KT)nXNqT^&LB*
z;aOf)dKVfEDGiM;1nSp%g~(^}AL$CrG%TE5CvU0&G6%cF1b)AEXGNDh6b;+w%_))=
z9Q%2jd6WoGChUO4XY63N*9_05*s>3b*&*j&015;NdL%?-{+r(d@Iy*v$&y|?T$K*F
zVQO;%OWfGp9de*kRr`C+2ARk-x1utsuH}Wr2Z;-q)l7GZBQk*rSasD;u-*>Vl%B*)
zFRQbnZ5Mwe-vxTevPf4May>|D1KL08QW8h%8yzsa6LNYI>n1z2w0yB7{kJ`{ljAG8
z{kX-}1eq9;2fBE5HK;1VN%bNn{s_4*QeLh}9n$93f2PgUJd*#4!D*`WlRI_CFyFy-
z1^s4jHl*x1rjt%Ngx<{M2ojqk4_<4BKi#iY2M@=N)=fU;3TQo&06&NDNb_z3yX6N`
z6O?>5W59O<!G4c)U~rO1?`_13^@k6+G0zTxIe1ae5OGYD>(mwxn}ht*<yh_pNKqRh
z)_qOoYnYQvZlNrMne<BfoI>x&?FWuVFCbhB__68U336m~S>^z~Fr(3}<>Sc%8xG=-
zk#GzuCc81of6MD5;?60oc96h-?5f=37w1r+YRVnyL|U>&qLE}z`E-vWaeBo>%HS@v
zCA#QyorPb9Id~R5XsBu_d$HwJa^=KC5%_C_4VZr?7tWJ7JsW+M98F$)ac-<tVFGM1
z;d+e1ctr5pZH7hqL8=rk=eAW{5N+|sLZ$691&nSzC!-o)iIKJC92_3pPlxUTm)<6t
z)Y;`f-h1Zdu_;4yenawCsECklZF~#JGpsk%{3q!)juq=nj*}7UYkT2Lt;v;)+hb&g
z0ru%@12b&~BARsltSXIaCOvEbFHWj>s$c@WyXFy`YCaesMGIr_majX4b9@4E>H8IJ
zX4}M)jw(hvwQCqoA2^a)U8Evku0EVzS;OY8{Ybp+ccHPVhsyIJV5sHqc}Oi-*9t{q
zhWHkKpEMnZ^;zVB|AyxF$(@$fNCUqSnq~;(1<Kg@L%q>c#qWqbM1<cJX5&02apsW8
z3u3<N!=HOnri(A{en9?XU-u}~&TBQ;kJQwfC|{keKk{w9#wp50k@O?umkSEwUBpj2
z6=kCUX8)$>hf~TiMc?0BU82pOmYPNqy$~Jt;E*375(7;+`aBHJo6mcx{o2HDQp2)+
z9>%^u3DrkwEta?o>DkwR`FGt6n>l0SG8-<BteDK3tE2sJDsRzAAePfUcScWnTqde>
zFK2xUE@r{;MzO&PE-de`u27n#REF_35f+Nfk-U}uC7sI48`y-qgcLzil#c(vib=Ml
zQy15^6mGXtxe$jP;e9CFRGaOi(CZ-c|MF?Ju9z7sX5Goug`>|I=Wn9+-B5<ad$MAi
zUoJb#R<iKqxp?aQosBT32iHj})n0yy@7tcUbH^Rlv4={I31E|WhmYiu{~5$%S>*0(
z5-o@R(GR74JfQX^$|q`D-Xn~qFOt)RS1uv5)$TFoVN!iQ(K-~$dYJS(e!!DwwlZgc
zfJ1o3`%d2mZV!CXGu6BkO6<~>(srE&WTI+dm3|`=STdHr87!OaL{j*4nP;7S8aA=N
z0e~7#5d$oAQt!Z!<}M9KV;FNcQ4r%r>x>s>@$5J1CFIBPXf+AMh~hK(abmYU(|#c&
zfKA>k9nhLkH{yQbUywSUC9CFc<vvi5>+|<B)7{<lNV~TC^hLUb;G<|SBf@{o+uHW7
zRnyIA0H|NFGS<^v+9cxPn#7QCP@CicYdh_Oox&F0$TyI8d`>9!rO7AYyhh8Xoh7l_
zJk5mKSm+x9XVNE2CV8CrvA8w+gB|c)!kIduyP1$_b%xU7s@~t=PR1>r$oJM5K0VJQ
z8q7@R$s`8+=GFK|etn}Gn^8J2ExLLevlKgv(=<D+p4zs4I1SGmzHPH;3nV(#%B-2-
z_o+-2DSxy?D9Tycz{Xt#jW_OzU_#>`DZe=pO(x83s8x-fxXm7#Y*j9>ddew&l8O|=
z++7~P7N=3|r*0MZr-~NYx1RJn8!`CGokWa0&!JD3@MeMNEMF6C!MW7#cW=J)$?d*8
zu{6~Z7<?9PcV>Ucm?0Zv3?4dcr`-zd@lPHyo{%W}@Aua1VWNbhAJBUwh#t#_aaF>+
z{?>PBtAr;WA~?;E1iyw}$rk!9kSo2p3}pHD!)8KT+B4mR_;xWLzA_K$Se^G$v<PEV
zFk22zez&;Ik0!hSoihzZc0VU}8=cng{otN%&&h&a1UWn`(jRBaS6*~r#mG6o>(ltJ
zi$$TXtk}l9=Xlt)iBSfS^KZYM)k8V1le=|D^M+}f$gKNCfaV&V8eWnG?Da()GpG-?
ztu%Ga0X3Y~D$^_Q;p@`)aCp)Bur)9!-j?LA2lxO7rZLf9_f^cJUd^j9t_!RGm=jG9
z?B?LxPH3^8l*Oywj*pt4>2uB-*li#1V+47j!xpyVs+~N5*S@%#QitZrGD$n^q6JlH
z&O;L@XJ&O8Ug|wpV+!j<$8R>KKCvgIvhh~FJ8ddrF7pn~ll(aLGuc#KB3v(kVewd{
zuO}SppXM}0c{z9dHyv#;N>2q}tg)ioI_=9&3{4z~0AFWQsKl{MAzYSaJgcZ7yb6`{
zci3rApL@EF5$VunMn7<|xAJrYt*PREN?v@TFd$$c^76xCNg{FNM72W%+hL(<&(#}9
z^A8urZ?Rm%owF+Bn$X9I6~RXCt2V~!YArFgo1Mv&8>1KK5yf^C`7Fvf>&9!=?8s<}
zdoUk32in4&i8egQ^~Y7dtP*x<>5f%g%REk02|#?u#X{u=%$;0uCiVH~9iP&JBg~6N
zw2~^x&Ra2|I;)2ci4QP0pl?dN7IgSvPx1eMEf!o%TY}P&zZFblTkC9o+Af8#Mla~w
zm-9tQbrG%#g<hH0JnFl9c5~zV5R_w+6Qg`cT?C9mc|%I}`7sAw8pG!l-U+{M!Zbh+
zBHGlEof>*OdhMF{lb`Ce(!X9J>5#8I7ie%208XFz6aL$J%-h8`H=5HBFn*@T=iuVI
zeoy+awWVxT78f0l&!JaqToexE4LyCb!ElYV=3M$VGG)fY=uAt&#pd2+Z$zaFA2RcM
zla^kIwY}+E^-;VBcN3mJuA8&Szm}vgeHyKHksm=V&hUY3xz($lP~AiM0&L~&GqEjI
zIi`eON?(^_#kMw7INL(%Q)}6HXp!*LN3J3FF+X?^fBa8w^tG>|W8`dQk<>hZY76G_
zWQnE*p+`vAh_q6Dj_p#vT2~sCJm^ZsdNf$NGp&I&;k?*IzC+axA_F$enx#48Z~Ahv
zk(WK2XXD~2Y$6axs=#Wy`4aE0aCz%Sj1&W{?c&YJWefI?;IRYtIL{hzdb57COT<Ab
z8mOOzFn}53C!@{hMEH)P+H$Q4o0DhXZ6W~q!8|_CtYncQ*0QQ^?W`D;N(%te5v+I4
z6k&P&hgnjcMdM_hu4}Gqcur6S3pSKDnBrnqq^t<=1+=ku9de)t;(v(jpg)OC3U71f
z532C8E-EsIfVE2ZjY0P{RINeIw>Kv*(2HdE)}&!pZ<OkBncTWFDCdOqw1!uH{3I)D
z#D=}Fx1xn@=HK>l&v|g7Jtf<TyX&8wa}%BEx2G9dS=*({CI!%katR#w-Yhy#QKWks
z88^9?{u0<jSL`_2324#T{$fn2LmPYRQBgO{!9JL6vVnym4slOiv0vw;9nB2K@mlkv
zt_5O39|foH^>FP7BAjE<(=xU$o_W1b=jZGlwGFns?0et*@nzFN<U9=TUd|%Q+BJp3
zeY}FWl9i9@8_Q<RYi=Jttbk%xz}t@o2I^3_5nUSR1C#HL_UVSHr|Kg*_l-eM%FUN8
zpD|PtKcLm4UM?eW_>}m|FHk|Xm!p{1v0Dl=0vP+)x0ByhJ>6xKT&m-P$9!_NYg+o5
z<@FkHc7-#`S>M~!?eP=OE=|DvkxFl_QP%wQxf?os8lREA{+1|bk`^MD&7f3UK5aG3
zr7}35&LIEPH4X!N2dC=G^!B(nh@FO&3oifaK7F)&e>E3;bKeO!?C^cvkn5+N)guUv
zFD4)g@XB?ckIQ0?@7<+lz{{s@CZ}OoLpP?wI4hVv5f2#)s2*m$H?H_}E2Ua`h0m;T
zhmXHWgV7ET1~I~Ivl9Oh`Vt}v<#8f^ooly>W~J>h0WzE7l_M4F;<So~<lx>>Vh^rQ
zJ~NvvXY9r%8$J-H%?=$g=v-BLvnqO=_>TK<m@lka9sE>x*-mAj8gAq6^Lp70^{-}$
z^6+Uf2~#^|d>?A~5e}-b;eO5r`AA8%htjjy;w0Vo=Q(<`>G9)1k%_r94N&o`RDvBU
zo-nZuW#%si(S568{WzSG#t`|)jK}P4I!uTtpf|>T^h(D`S}NvSS$q&1n#$2fyT`6r
zkinZZmKDmsu1W4BOX`01Xm?CB{r5WC?!YSnh^?frr<T8FJL7Lu!@D&c(%JS1g#GX2
zyIKb&Y+{}n;*|LMk=+fxYxWEe66<KqnN%)><lj1|B`S^FpQEDmAIixUvXw6G<XZU(
zc9cH&kqGB_QS*X6r<cN6s(`^o9FepD4%Y?K^?Sg$8?_e4WWKT;D<`|eC`m~z{>qpo
zjV1gPC;Mh>19|`O5qEd@xn$Bxl>i%@o5lF|3q@^HGqk^R=suvih;np_ew}PSx;vxP
zhzulgyWo!_UbO+!c0g%_Eh4BKhdt`kE&q^O%8y}zte1Nf0>p$!dicLycmBPG#hBU!
z6~-jq*;IV+iU`4ly(j|Qf^sZxc}6B`uAA4ueX+`5yC`T9liq&bgC=bHkjO?Tv!`@X
zBI76v*z9)w(a8*#`<;)4>X6BwS*tjk#PmhgzjpkX+X(eZ?7SA|cJahbN!D$tA9<$F
z>_uocI1P%^pm&n#|2%?T?Pa{BSeJTSS#UbIkC<C$%~KsuR1Hqsj)%@{HKvI|aR;Bd
z14Blxf|sjm<lnnhs>QqWbjWExb7&o7#wpJp7Si-O;9TC+JppgMr3c3nYjf-%c@3w+
zB;bV5EtrPm!i-k$)q|(qcL|&-m=le<U7vJEPhQyW&&RZ2C*!Tt&}zga(tR?Z5krlL
z(P;+m9SZt>+yBk?8<a|@?doZla>sTR)W&(jL$72nk672wdBOCmNf7W3b)<HJw|`7Y
zKitvtA}KL&m7Ya<cwVERR#6_Js4{-i!3tHYsXfzo0r*@d05#P>8?C6($}2Y2otnfA
zLR;&0(R^L+m-yO?L*LT8%e_InxA~cI(^LZMX7lI}yXXXyuNRh|0j6|%iDe`BQB!KQ
zaCykCb(X`ZQ+~!p%g%>Ed=jrg8QeWE9*nO{=y$GJL;f50PPFIA?}_;^>7vKLqHxuM
zvm#}Qod=lk$a7>1-)^J@|DbIV@{f%vL%iOx>21)42@iw#>N@ai3a^9?rs*<%W#nU>
z%jsE2w%bFkhSg6VcB{*0LZI`+c~b5`+&lfEfI_DrA=*tzztxSh*Q0*m3>q@5b*V>C
zOPbKSRd+3gAHy+IzJ@G}swTB4(}QzH`eEO8H$=NxRNvA;I5yMz7y6}eha^Fj74c4o
z$6Cs<A!T2Oz4_|a10A<~bZzP#nFPMy&IzBju1z9LZGJ-%jzV>o9Vm^gx_lwRD<Oco
zZ~ee%6xWIo*=TZea<ieb_=b0a@7fRU>@-TVWFDOh3K91)B+bDSj&xz>wP$#CaE^JN
z%^)H+ze2}HDRR^#k!*ccWK=ZB1lpKj)%K|&6K-ttPRc^7iSzG}$^F&866=r7oDEAM
zL0k0lDuZmer!`OUE<1TUda&M1fK&hbH5YMft-UJM5OL48kkgN)s+U7c5(hxsYg@V>
z!V%Jty5r6Fa_Ghf+-4~smGGnA*GIz=UsCIm$y5JbbhSL@ySj|N>P@{Yz1o?c=l#|2
zYQg>a4Glbj7aub85PqU^u{)}YyCn?Kdj&!r?NZyazIS@6cCv7>)v!6Mwpg+_2oC`S
zDF4u`My$;Q;|UjgD^m;Dktc9u+nLR2$2sr;O+PkwLD6@+Ir*yE1$SttYz2%&aDYZ(
z-4G2h8m}NqTxvVnITN)ozZ)^XYu>kF1_Qc=EX^w%nZX2VQWlyouk!?tfNe{>8r9o!
z2Z+X4p%GvwXok>)71|2=T0P~3q-#Uf$AmCLpp%z|_|att>=#o>LAtCECP>QmZiut1
z;Rf2lbriOA+1@jcf?rr5bIEuQ$tspeP5MIe+x*r`)qeJO!-Lwrx8)1CHQ}t7Yo`}~
zcmAWoTk6GnOQ`n340|yvi$Dnzg)3DpYpWL9V*KUSkt#@J*H}6(|HGF`)f8=tPd4tN
z&f;SncWtKLa5=ped9Up+7h8D~wMwjFAG}%NyZwH%S2PR`*8sy^N{=0YwnEvjZ~L}2
z!DZ8hm2z{GT|#1pM^wq+4ks1!sQOgy=DfJAEU!Aa$o%eE%&aAxI{VHho0+un-n^Kn
zR>5)4^=zN(9E0C03oe**vbiFFre{ux-@j`7HaO1L&l}!k12r}Daw`Eg56x>PYODtG
zy_B#*FvkW=77@n|sakV+v!dRMB6aaq0&zop+2+Zf<8NTXf#a-W^qaepI&oOgzao}k
zit`<JYe=t#9t@*m%L8*<GaOMp6+0+i=wcmPTQau>EfRt_PLZhlOKt4T!HZ*~LI~@`
z(R1{U+byC8RQkh+Hyz^7eZUPJ=mh_h+^UeER;B<-Ym0i?yJy6Jh5Z+n7atBiXz2YA
zg^DG4#dM*%sO0sjmE7O-JJAoh{$0_uYb+rP_cnjMP(FcI*QO}ZyEY1yJEf1)pWH&&
z`>>Yf%#Xb5C<ACOac@#;LYiJ|D)m+I<_h^LsbshB|71<M43^WbNa~4~->9?k2ui86
z%roEGZHyW|$8%(p$G!+Fj0?YEIny-xa!AKBPk*e^fYh3bN_wt)h@=LXcv{@z5aOnU
ztyG014Kir8y9c*VEFsaLI*lVGcF4iL)%1%$+Y?Ug5x~Gj8@kJK;P(xcnXVx|m-FYf
z`(To3l$W^W0+*k<(-yrmaBX;-IXlB5j~lYowjK#ohvc4wJ*~+Z`Ir>jctkp$&|o`U
z`jL{Qb9Zxh)^b;|z<=kqd_BIf{}HJ;bbE;J!^Y9^$)JVJMQupyxaw6va%gMdi@3;7
zR;hrfZB7|=2t(-3U)!!`?T2r%>xOH+ggt*psRJ@*F33c&Bkk(MMori6<3E+a%N%k(
z{w6$~o7ek%tmpa_f?>?QM`;oKyZ!8fH7m@7r(Jo*&a)Q_TC!XXv2x4$7~I1owU7F<
z4-!(|uewNSxRY55_a(}XID=s0ubm{tb~ad#)UP`%M<)^onZV&WCkU-k9RQL5^iu6R
zjJpC32p3~!4~xv}><ZGnwgT}uOL%aUT}U{yXFSokhYJRP)tNi{Y@Hs1H}SP^U}3uV
z9C#9mMI*|aE>>EU`?pGYO#^fHj7fL$h!&PXqaZ$5w=eH6(p^H4xoSAEN;<6NG80&T
zuhylq_NgowL#V5LIHiVv+=)=F)96K^$VOV^6FO72pV^iP)Iyw+Pj?Zy^%2F(mUXTN
z6hjgBO&QxGM}%rYR}suZ%Ns%QWyFC~=AelozNZZcbO=juD7(Vtj=#G=2XPYex+fBb
z7q~XX%|gC6S4#8NeHQ@D#yX%ze}=D=AqRcEs*_8R58pSAj3KO({2o$%JCnMV1^wgh
z(PGwOFZN-@I(!G6{5ei}*hpMQ0gBqqJ>~kFe>bW;)3Q2<p8ov^uOocwj~w`?ZU*k?
zOSLWnJq_=Ei>>3pWgQ;JRlg4=8`eH`djz&Pb5L1Dz7seK@R%eDqS}y!X;jOmZF6<E
zeXaM?)8R|=e{2wlcS-8VY54CEY!FV@i5#icTR|NqUO&|a*?d^QW95Edo-I<nVdGie
zSP%`-8}K9ly0y7E?%2m(JftZ^RY%<#*S&^otrN<S$4Ip;IWUt!4U_vqM|BTLoda?G
zHN63N0_I+`pJwrA+D<$zl1?c{-LHPS;pZ5J0ZWGzZO{nU)v1A9Bi}m4ooO;aOu(O*
zM28hR@SAgrZj|l*zo2b$_onWMdMh;MSMXK@*$)`^=?yf+ww4!BH&@reN`cD`&L_B-
z;f#0`uXxS6SgshsD^Be7oF1$6`nZ2|0Imx)#a-$hy_V@0GJt!Ye!TR^K-Jp#^aYq-
zFh9wwp;sMOa630AF?>WrmCS=udU8L!LnDC5>Ou1}b8b&k7V@(rM1J1sP?>{{hGRbc
z3c;jCKQ{+hjz(qsNkNTLWYe=}K5L&WG-azpA82{zb&>d?Ge3#1MWzPo9$W<Kp<Hk0
zf#aEe915#sRXSX3`GyQXm>hDsWZ7PRzklELKYUABkV{+m=`C~V0S{N~@qAnmeI9AD
zUeDch@x4saYeg4D>K}@=!dmC3Yox(H&4iPdAz3N*_?CoskIV0xFTPf&q~+Onm0(Jn
z+!DM0q{Fx2=|?W@7T4-a=(|hazjPYPnX?T879d%xkHsuJgI@ynUnWFJ@${a$VQWXO
zYG&IN>9<Z}CylH(X+3qKbbJPw2;nci`M`n_#?2e&tDfUka~7Yz=w!_5k0Gs-9U&@%
zLHm!atFED&r|D>M7Dz%ve>_psJ2$1b^$y}X<lYLxFDJdki+R?t?i!11#fY3ln<g(q
zr-RZ0x(>CBzRK;gG+9`w@idcMYNKe`-H07&a7cCM5&5Nl^~r#5e-b7UU2jwAz;0Mv
z%c&pizoo@Jei95g`@V;i=AMwiR*{j+n)aI4K5pmR;OBzI_-IVA%g1QoGkpK?UzeqN
zZgQChu(Bvld*%U&G*9)C56~eOo&lBDb}}AU{}TG_kzPGXgLQ?L&mNd8-vbStA!pLD
zMTc^KqkFehCiI&TsIF-H{Z5gpT1A9jO`%t?mHU0n3ud$5zk~;LSOJsJw~>H{SJzbY
zFTIle1nsmYVeckr9!kDG`-&AM{J5al9N&V^IIc^exi(XS*0^9XfKYSk*>ulnsg~_0
zkk5%SNX>=%6E<A->8bMW<!cl-v~7&sr-M^2U0Uo5p4#PJxgh>4?YS6qeWvA<r)UjF
zi)M~+f2*{;fa*aaXJ0NkxI?X*lBZ0?<O{ZNFB5R9#4H8dSU%LoBMYUIngpdUYQ2}k
z+q-|2FTc{EZiIfTv(dDGu<Yl%$~4`W)398-kuSi+va4uC&Fx>T&eTEq668iLec-T=
znm@O6WR@R~z7?=y%1+&@)YAv{%d46TIHY!snLYbGvf!7y_a*1mhW%aGH`?^;JRz6P
zD9vRK7`0h1r`yHFP5*(M{XA1^CQn*Fpl_eGF4qd(=9jshZ767lO@U`+AZV8>;E>7r
zqUujDtIA4JWvepah!074bQEg-5>HKr<RWT^zh8QW$Ja_Lv0_P-XWDqZnkSWde>-%O
zB{p~ECnRnW>pC4gR~C>tSC>PUP3Y`}b!a2z#`P7{XVUv3+b$8T4qkC+{kzT5Ql$+&
zFUetvXI-mm-#T$jd?EcTcEXfl_AtL9%=~1g&a&e=4umbjy1+D!sNs46kL3BH)scMO
zsBPY$>tdn&O)ZD}UznA+0o|nL?Y5C&ja`MqK^mUic-0VQ&wZ5qnu_gnE6*G=Aa$32
zftNLo4lLJqs5Pdz1sp%Q&XadE*>i=a!?nNHq1bj2_X)NJmK#$bcNUb$pnus2A2ZIG
zeDeNGu$n{9Q=*Ravs%;jw?6)0s|<?|BVP<JPu62H4s<#~>L!=+4hlh%brZaN4LiCN
ze1=xl@2QP+rqDdY?faojm6BR?={a<tGceQ0bQfYX-Xzo*PbaOuep6v8fT}|RG-32+
z>EwKWV*x`#D1G>GWnk$vEMwB(fuIFX*HmNE6B+`SahLX$dfiHBXK%oOK~{@n^0mtA
z_O1|redOtVYd6jbWDpsz_{4tFT%0law5GuFsVL_Dkx2c|JUusYz22)!wKMS=Q?nMj
zAGdLyWyOowiW)axl@$}wOF`r8WvQoIE)(K@Q*fK!Hg;I%tUkJg#DJ7O1$S5;S_Xn}
z|AhPADPr%W_9>+jX8BxlK4EGL%95(z?~UH^W&}UBHlqWZYuW7P*G>xc0pFb1k|cxr
zjfRALQS{9pYt^+l&lpeZcG`PWt;Wlnct~|=RHrj5{7qAs_chS1Ou(YhjKryaqcOa9
z;v_7>Tq|3ws-U)N&_s%sh}YM$As0(~i}azx7iuXkczTf_sbk7xF-el-bJg_FzvYRA
zMiX0I8Wuu`4%TIM)v?J@hRTa&65XZ-@>gD2gieZ4ZN911%`45vM|x2?Bj*%nVuT}J
z--ejU^IAu01$j?!`Zf8(JcmSiwWm=r52#+aErw)wVP>SiV66b26V}BqqQ28*nwVy&
zIK#f!dzuP2|EwR<4X~l4xcx;~Q8gkj+wV5`rEE`wN2IZi!0>x0$Jca(ze%N3S_`Yb
z?)4R6V+iL4n{)DysA?y~TA@ji{&E^7W-2OvyZG=CSRmFNAr`GfmwB2i5HvM$lk%~I
z@k$@I7&uswA);&MD_QhTQ=sJJH>!?@O||Uh*89Z<&Au&ZlPx(pCDtvb7dE?kEBq4*
zlIg<H+Nn{z5dkYTO_F!}%lMZ<CTT%iqJ7~*d<v5<uiu8^x}L$L?ijM)zZtAsf`5pt
z16i}vDp{GfgRx&XRctb!*StSISo~?TwEfETwQ$j`>#?m|`Dw3pWOB^jYN|??a8DxN
z;+or5Lx+3#D6_AhKZo=@yL5|@HsJ=CxH*T+B-mE!P8vo4Z*Em{yjXKN=dKo?Jk^(h
zfKw#1PTIqQy<&pOg_~o657x9^l<5gDi6|pyzmp>fN)jN&pfi=L1ToxfAr-%j_?bHm
zznAW^!fWhMySM33J9(i-&~jr(BZLAXkc8Mt38%0gQ?N`rHvnR9^>{oKaUeG^!p;oo
zqS8k67oL{c`{YinHr8q{JCnsi(Qxf}V^xXjkpxtV0Xl7nwGr|hPqP`td<l=wuF5r&
z1DCHu$0@@eU{h@=qkD_*HQQjnlSB{oA^@R-f@WRTCa{npheY_HS3z?<s+SuatXA4Q
z>HPj@?{WB{kM!biIfz4!e*KZ0s2WEtWvC*9GX>bE$<ctm5=+)8&VPN4sbGrAq@C1#
z@mTVpR36j~Xyi@ys;vFZ%({^zY0b2<uzRC0#<<b#s&+3S6o4+6(gJNuJpD8|lN>}J
z10^p1doA_o?U&J89DxsA-CM`5;iIi*hHpY|OuRU|6_*?k1&4&fjqqHf^3l2?5szZ;
zVtU{c!AI1-=CO&8zBFC`kYvsWQb2c9WBQGTg0yd&nN=$pU6Cki<iGiE#tU_rv}>_l
zDht)dk30PzEd&E<G;C_P37lw*!8$jO=5bsCCwG|n1HGET9{|w2*~r3~<UtuXjlixV
zEtr9&#XM}-n;}P;#Q$XI+r=~;_)%GcKgIG_5+jn1Cq{k=l~;xdU|>oAi?pdFGkzZ2
zg6-lV?{7s~7A9DfMzoEd-aHMSP+WS><u8Z)n?qPS&IHOJ^k-2Ts$<iHE|FWkKpIF<
zUTE7^gbq4*ES(f%zVx5f(6ibC-e7(Qv<4&@H6isL6D1Yhoxl#^^&5yI$rB`UbZD+J
zs7X$>Lh|1v&h23B;J|n+BD6Xo$aO4$*V~^ph*l|f`sg>`xOF0V97$RV)bkulu`SH=
z=cAdw^xr3OcYAzYWm^hfDZUh-+pSw_q@zGc`7?*&axUi*^Va<=snzKBV*Os^WU3b>
zp>u-xaO7wm<j(%);{s&FIVcRb%%aP{lHz>>8Qvg6GwS{Q_W}=gp_^+vp7i3II|R)l
zq{+pPRSg}UfsAYzdlqwJ9}Ce>Gueic=uIZ-M)>IlD_gh>C#-LO4Wh|eI(zx#-va=8
zs^7;w`AIsDUa6?xeR~|4%Hx}%m1S4S#Q?R``b$mvb!5IMoBahl&6h6x2_tK?AzBiv
z*k?>S{*5~L+5)mIB6qXT;9=FyB?q>#lK=fRt#tf;$%V}&k)`;WuGL%6MgY`?zxxE#
z=7ron%imAROhl!W5vQ<4iAuZF-&!u4rcT6+|5k+blG%DvgA+|5vmwE6@znA(qd%>Z
zi5vBiaRvagHCAK0nU)P0P`7)i_#9uF*WUNvs_ntG(?fS$)KQc7+HnE)hdOo69fkSz
z@fG@0=_`FY%QgGfvE^h>6Z_ft2Bq?ZuTpOVcC@I}E1s-&*4Xe%g9=S~zjR%UcwYzD
zMhM%lF<SXLQ;+pkzR|U@$1;kjaivJ!`C`O!`0Y)0id_)74<cm}3h1Ei)m`HWbnjpR
zbIMUxNvFt%IS1KvO@&u;hAFaKy6Lc5j`CYCp|gV9Z48jRA>$l8Fs+hHG7oI=yvdYl
zcOEUj*Xie}gDCTg(h+$9r~UAW?1VtY13Q{M{G|q}El#@g=H#~g0&&XQvN}f=rPwy(
z)X&^<lCO!1rHFi0)K=n%)r9lL-Rk5tW4MNG4kFem`vt+(WHul5!O5fQEz$`(-XpZu
zM_%BKmQmQpe7|kjI?dW5JsntyUU%4%7279LNG;#U3Rf+Gb9|i^(%GC$mZ_i@3e0|J
z8FWN_Dp{TO%oXI^s9~*)wR44YY|fX02DnmIgDF6ohiW;1w@SYaR6j*kBWQ)|dfys!
zb3b4pk=1&YAw&0Ca)K{kUNm7S7K?v<&2paRZpW6`hn26@P)*aSQAd_yYl-*!Bm#6O
ztl1%O-o%f^qsD~*)eom{Lat&icgYL}AKSDN)KZ_{ScUmR7R|JwNes<mNXYrV)yf<L
zV?KG7bK&r~pgV1X&UgAzw;^L*&cAS0)>ZzsZ_m)~e-e;V)7T{Oy8;f9&fFJcv@O8=
z7dn1AN7cNsBn3cs?O|F_DE*RVR-?wILd9XaQilkh=MtO1Z_vewTWb3d2VQuY&%SWM
z1)girft?^lvFgaBJ4Lg*es>?~-lz*e6JKmOV*j-{VsmY_VUy0WHNB9KSaS`?4_l^%
z%v|^5;<@h>teyfJ+*b2RW?hGDkWFts7_Yb6F8|Rwppi_xsv&a92mYmx+9%^)vYVyE
zTkOyX;1vHjHr**)>NJcEXJQq&T4Z^W{~Y4>XyFU<LgtCs@xwrF9=&m`9X*bJkmhJR
zmEEW7KXcw({N3*+xV;279O;9ja}3r-*J49#8Tsc=nm63?yKP&frWfs~zrfjzazb85
zcA6*)FdQ{Y<jvA+&uBfDk<4qfTe()*N(jFuNtd2=F+ybOzE(4GBk6Tu?VVTMT<?;@
z9rwJ>gb9H$<b+Df`ZYWFQPMji@?swT&etl94`=(Hw#ANJb`$0r1uUJlGfRt-f}^RH
zv(_aQrbTW5<+JRH5Cc(#f{TQk$eEKFOAEJevY%eJg^6a-PM`YrqJ~!P8)}R_p9ttm
zOZx4Q4Cpk{tc#=^>`|`kJzCCUAt|In8hgvU`dpo?bXZ?<jt{0LiGQE(p;PoBnU=eh
z@*9hXbAt;B<ix!*O?&G%9|oF2xQ$RDW4%H-$6*r{mH)rwT}I~9_h@j+pp8^>UNc1K
zU;d_BV|2dArndat6S1ndiNT9sbSx<a#wHzIw22-YMH?=vNz_lozDe0G8(bkbHrtw>
zC>@c(a~2-*LmwYe*AsEDf;^07H0r0am}Oh~+RpdfQ!#AA@bRGqPQ-3uf4PlUG=hQW
zhHN+OU`&KEgHip%Zog#OitqY9PW*-q%9+05WLp1^RM;o$Ovwo@8g8B&HXig5KZfZP
z82X$ZzM{?>t2^bl#_?v;NQb%p4$ZV{8iHE9Xs|A&U-^EJI848AbM?3HAId{UaFj*F
zYlt-W(WCMce$CGXr*1D(<*dtIx{#+9Y=44UY?}yP`3p6p*yF&(b1TC*UU|VdW0z!?
zgOG`}JLYcGzP)KP4Ke1EQr=j`<=hB!sdj@IiSV3(>z4QU-dj9yjpL5+p6G{5l}(fb
zMH+hV_-tX-WUZ4QyR$M)2pTtNSjKVSDUtd~l_zD^>;_0$$mXg3HIhPK{5H=DXv5qW
zk|7;S62sGj-PoVj$YBW+eEp{%yH-)Wr1#25u1=KpIofUM{voyf!ESLs9Ky=kWZb(-
zy0v_q0Q|F9v`9~~#J5Zr#c_Q-&Fr?k)iyHTSX%~U!Im9SBTT%)UDJ=)&(*ezvH&}%
zMmeP06gdURP$B<RU!+bcO`gP)GI|`z*ksDtKTnOlo9$QIT`hh7kJjooA1JL{@OZFQ
zYc2w|y=Y>_nuf@8nT{!sVi{4lB8P0l(<47uG-~>n@<xEC6eSDCZYDm&xLo6&8&i9L
zp<<qWQ!zbs1YIK_;{h_fD+OGW%P|3BGujf-5mzNDS6qz(&aJ~H+~+E>sqNfU2^RV7
zqz*qC2SM&28A*;2`fAs@lN(&e_cG(lN>dn#ecuy~;ycE`AW;ONI*~{NhSzFP+}G7p
zgCZ!;WWi3-C4Kgzqz4FDWN-Id)pi7J?|YZ9L|)fsfUi5v<``LM%?HD`761M}|Ly69
zfc)REuxC%Q&6SbgPJbwMOmU44iX+IJ;N@ut&-6&6L8zrOlfzVKbsEU)G&HD-YuPd+
zengflOjIelEe*s2vhBR(-l!pyb8#PBd#<Lbq59TrY~If9&8hwmM_<tWgGknsuu$f0
z_q$|dI4J2%4AX#m(f%!Q@1BVg8Rhrt)qQ+uldEPTr+42rb~|dXB=L?9O9(G9=s@U{
zgz<QH2EDYLDFXnSuM_=-%*^t%K$eR%@xCjGiGaQHQ7QI<7JEHvsfce~!~ns&8??MR
zF9kN5@R442jtJGY3*DJVWj|wnpSG!MaKa`j&2p?`lk1<k9!6b_xoT;<u5ioXimLR1
z*0?u6%EG)VLcd5E5cp-04oY`EXu^9P5-P4AC3ya@85AN>W~&~FVN6-g<ax7mv>ZKw
z9S%#7?Knij+SA{TB!9G}OM8wtEXFC%0QoJ%W=8d&UT)tcG2jnqJixIw8ug4=tgGWz
zcXSX`u4_ec`EhDgh?ICtRz++5OUPB`Z4h$^VjexLkWT$Oy|Am7#Dl2%hI82<rjlc)
zr#HArhvp2Yk<)`RGJ{Fmijp@D+CKjGwbcfcV|b+p@9KUWMox&<wE7wk9R)V5eoU=K
z6n`oMl00wYvKQ7|ZA&pq3!<R=wnvmV<g%Sa)r1yX-$Xwp9C;rk=AOG}CW)8h3In*W
zYX!DBvpw0_@Uqqj*H&&u%T+acbbwgqt7o>Gb9()U3?8(OK3S=<G%8AasB5~D5fPFN
zX8S^|dTvpE4c&OF$D;jsgsQs-ztbix);**@4P*PLY}fXYnIDzAmqPg0(~Tr--*HM|
zxTR15w>a&wz^$Bi!)n!45g*&ASomM7Rj-lkSE(FZd0+$<>y94Je=c4WNh|+hVM`3H
zXX%wucTxeUud^lqw1}tlz}3j&z3i+y;LL5FeRs0BU(4QsW4g;XexxTxqE|`me;l1>
zJe&Xf#cf{{ZLONoWmJt)QJdCiDN2XEH$fZ3h?qrHty)Fxs!gmAd(RSTBu1&4mBc85
zSpWO?f0$=^CHMGT=Q`(o+>iaz@S1L-A}Agot4~Z{cf>K!dA=;0U#S>NcPe&Q=K$wP
z^bF`})&4D<5ugiMYE)%m!#*5Z9$S<${8qqddD+R{Gm(fItx5K<*1zY+z{dlw(KdqA
zN+DkBC<K6$v+x!KUm|kix^Mg7<8L^8mAXM1-c#YIy<T)J99QVzS<b@EJHO*8d(S~Q
zY}UQMF6rHcai0(v>CxZOGK}bpg1V9JwUTQjJ+wf!xQ|;FR1QbKP6hBL?bhy_x?QY^
zb_Nry3t1q+QbS7Byk|G(5yo&@<2LNYcsqLyN8zYhCChsodvukK?>%+jBkHz<;q{2?
z<c|k;*ZjEVqb=%4vd4fISbalF=EIKg6b%J94Ub@wEgy8B+--<tVI;QCKf|wDyf|G!
zWsK=nv4Q%Uv6gI_r{YIN?&Z|^q)Y>!_N<U1A?(N;;3L%Ze0(#uJIEqI?X2_HxwGC3
zOSURuH#nk0Gn;<xtfRuITJtoG^MwQYmu4=$V2931DiQN3(w%C`vgD%bx}d$hX96ZO
zvg0q9;n(zlNpEm!&a0Jwh~MjUs`*~c@lP_MIga2fXIy2eY8;8e-tMt4&*mrin@t=m
zV9k$Q)vZe>)x~i`mz=uIF<)m?unn+nnQkVJmZvY>`XsuTM!!ziGEIvJ1L>u1R%>d_
ztEXuIs;cCzk+JwIvHe>s15P<m(i48awz!>)oy<#0-jDS5#?(jzZSf%uul37E=S2n?
zOAo68x~$6o^{~l<yV^zk&cVA|)QbLx^7{uY!N-(Y`yKP~#D`sUXf23gRX2ygDrZgI
zr&cTVL`5V6Y?AtVl$$FbUhXY60rzDx#552x1I(oCtBlzRP{)A9E9UhK`I)p}z)l`h
zA?7m%wgo)g7cADi4eWXQK6VL4v3(^QcJKz09cCTs2wx=)ES-=a+C=Czjd_zuA4cV8
z{`auutjjmGh63&laZ~F*k3M^22il!*u*nk<Y?XjI5_^reamj#uy$HAq$H+fp#%Qyq
z#je8F;61D<FA8tXgdr*9K-W&4pjktQoU3$@#QBT_vnSTgdPp=#3gjz<1xDdK;kly-
z*6_9&Hh8wJGyHy+_F6_lrVT!b9Y1wO!TH}W?Tj|SHV#o(0(K||cWts}3xQ86Po0{l
z7j;pBO_4ktDqhmOxC#=$$xMC#9aDiF`ZElG?iFx+*#8-w;7K3K^7xNPuY@Ppn;awa
zuCxkw#EWMIYDmMmYfqoY$t_fsFVuPP{&VDhG+q~_cvq{R+VlnL{eBG6#N+GqRJfZ-
zW$N#UU6p7Lk)hh+Ti`5*=?W!V^c&EJ%9RFj#c!EUb8J_D%4nSmO7q_#jbX!fg=#GJ
zHDQ+S=4dm>+K`BWuPzKQG<A4Czt4<|;n8lk?NCWAA7&=Tm~mDOiqp1z-U<WhHL4X0
zWXbP1bSZVQRGoAQEp}-+<L)=7(`UIT$PzLF`t_=2uGL82r~a|L*jz}ZfUr%dhS+uL
zM_AOoo!?q*8T|CZ@t1AHf)NkWu%vH-{CU)J)wEg${++V~F66iVaKyx+G?T;dB{Un#
zNirH*D`P9Vj?B=LLM>p~5@Rl8RHe3jdY!;C%H}$r2}onC{QP@y*i*VW!eWuFxigf3
zq%a-uy74O}h@E`mg6R^7q07!v)<W~2%ESDWy7Ykuy^47+_*evYd#9qT^aKkjotnP&
zcQV+MWMcKdMZ2X?aHyc1tj>|)y~aOa3V5XQ$Aq$?^m$x5@`mA|<$v?Vp4=;^O7Zse
z=D4~dHv5j$=daf0!P}aP%gH@sX`QB(l**$FNd*fIEpHhaLgePv%)}qPNcpohQG>Yo
z&>s8g#1mJH)No*&&C{g%_6Pcm+Bk@^y-|pN(D4bS<;Z)}!*6!6Hk)wXEsotf22>f2
zlgPVJh2u1TKBX3L9imC*VYJqTd20!kzaw!ma%%;)a|Y@~jUF#~Zv`AOE3)!=mlWS@
zz6N>bPUkT0-0&cmZVSD1@3l$l(bUQ%ng?8|Z4=+QCZsM?s7>YN8E(PMd%U<Kf$ggq
z`Z7v&*KcK-tNF%Hiuc0}IJ*K54^;g>D)cl&p&G&IQ1E6$ovM5aDPP?leA#Y_S}gMw
z4Dx&S`+;!%%an4KKj`d%FSAAsrk<Yz%(B{=7y5qZt+-{p_mJb~Tu;yQrV)-TRNhU4
zTT8?5)E?a`{mPiHEXIH3n$_{QC)aFr6_%yYLZ?@@GFPFm(V~dwo;dBXkmS>Cg#=)g
zSk&p^6&zaK;sjMq)Z1t<TKQU~lYBeP?%<wf+{bSz>d1~1pR+QPX)g`XG+7=d$^-tZ
zJKR#uy&cs@mJed@YiIY7*kNVjF~;lO2XZ;@(A`$ch4o(I9(%1Mm3yh{ss?NKy1Xr)
zCPPk(Hmf4_*33Bj`dO}$7_(1JdKTL6A1D3gQ@IC#G>i6g+br0EUU~TH((oRoj`r`F
z`dQc=IZJnR&Q{#(@7uiZOQ;At|6}iH+A0cG8!AzjagaN0dBXL=lQ+k}qqoA6Gfldd
zA^iTaBKat%EKhIJH#ll<`AE_3k$^%_s0Ktp0(ws&FS64;ch$~%{}bj*UUC%dAQh5p
zAIQYXb_YM-{_-&|=4O2!BB{o)xaCG-V7>Lr6&KPcn;xP4;)U>1d+>u>@=yIC2NkHq
zu3TYU(F@si292CA5ipf+dG4Jv%8G{Rv(4C>yv;b=ox_#w<A8u$SUc<>*pF{#^r&S@
zp^tNoy?V(}lFfHWGe<rS;~x^`9&1ns@t0P8xaHA!C(KR3fEtXF?GKjCt&2thdwq-7
zcMw88t#Z<ZBQ^=a2t|;0A^Yle1kY^vPn9GwnBHpWDD?#x)hCgK_!|8W5CE=rT0FMa
zF#j=S^=>B=$N;bMZJpkduKTs94VN`70KPj{c3b9XJaif2SEF5kR{lJ<pnwyDJz(D)
zM<ysN=@v2^9Z}5@P19^uWQS9CYN9qy631q>Y0+BQEp3^6iiE`S!=5Lq0zvGC)s5H8
znW3?Wzf@>uqGCgU6RMqK?Vd*i3@fzdo1=dwylU3d0QjGFvQ9|HglljjIeL+r>B86F
z3vEH*k$(Kd`T=@lS4EI9SW!63J9^#g(Yh=}nbRwKs=@wlZsw5VU(Vz``Y8%2b;<Ki
z(HWX?4iWsO(s=FA*Ia`y-&lj@H29BdZ#cN5tLJmvfzh|fR=wrF)Bd}vdT0M}0^inT
zAT2e_ribzMfTeZWG=)pKQj%BJWx%@C$qhfm$}fbt@gu5=$HPb3+vJ~Ev6AoJt^PXa
zME^s-4Mt|10WuEfn_ByKia&|#zhLbRP=(=xEhSf{oK`-k26l+9)G8fe=N(oK%@;6i
z>S?g5FsHFPEeH33&}S!ChSNhDf))MF)i*F}3UvcuK_PQnX0ft{pW1FA8d*39@3GuT
z*c{fVgwsOcJam2~BSB$5_hmMH)(3OkUuC%OB_p~(l4G9Cb9y2M>0<pvI?f`Olr^ve
zufQI7Y5o0pR_rToWX<S1&Mt$HlgKKrQIx0o(fsNrT)B*PJ}Io>HNmFz;AE2ZpyT|R
zu(_jGWcK@y-HRLCUuWRlR8LV~8sB!-c?|TXEmOhu9KKF_{1i_Cy~aiyGbMTP#wz_u
z{>pUrL2oX*MFmA~os%>@fs`lFW~exZSDLkjFMRx`04^kaz#WG$T^EIfxxKF7haKQG
zx%S6uTu-m?s#lpZHMt3z2~+ttw%hZ8pelDImCB$V2lg)^Lp~}v8f1)@-{N^7MB667
zEAT^0?16Goq{m$orjFn2vdv#QeeX==3e-@Zs(UW93)CEv{Cj7HWKH83nLYzy<M6h&
z1$KNbs{K#$RVEuzutN_v2DmDnp-i}GAvy><`6p-iCI`Fs!IVJKqi>2ZAWEo;Y&`l&
z$%~l~ZcrUudNRG`UQcq1)S42ArJH@p1lCZcaLc7esc%dMkL^@e{>}H=@Y5m&y^02$
z3Wu61PPnlkcI4iDZu=x)7q<ZW$O*ZbfOw_~m@d%6RcQ-BuWl*Kt%O!i8<ni93X>j@
z!+sZ<0Dp=m7vIHSj0Lp~*Q_Y2FX&ur(1(z7*Bu&82)`*%Z6)$kPNIYX`74$4ttsLi
zWmvp{`{!RQmpzx~I+v3nQvs6YccElI(z9li6iRN<j`>0+L9(aG1k|I-uR87r-^8h(
zGuyF32KfA%%)la`2XA=>_Um9OQm`j)|E5>_vCj1Vj;GvRvWK^-1Rp){R@tyg=+a@;
zU^|Qn&<L)4XK2%U)Pievj`c|1Phx*EBX{+Y^4l<ah-?FmjNUi5*nw(f0yGx)_WbPm
zc0-@;TN`I@{?#ogD{*I7mTt9~bT#?Q5TaF%^Zo#AaG4uCF+yKcC_;ShHzDwPV|qnY
z299t_sGb9~#$EwuVxe-kexHyQ{48{=V_M++%x&io@Iv!Ax00Qq*|rHP_l9NTZJXg!
zq>H~niHBGjcqFm6{T0zvdO|n5!#x4Bs)CP2qgJub;CEZ}n+VY14*^S0^t923f1P#b
z7Xz4ICwpzZA*T9^=2izcFs?`I9p`_GI|e1F<DFfouDVfNz4>hU_JG30%_0)?`nzdV
zcj)hRe)B2lcKDMduDM3_ls_L6y>(Y7Jy~1KqN?^gBt424iJ7$D=bbwB61ocadqzle
zee?3TJLdPV@P?-|MMA#uMYNl#F|wHy^vf>or^rc6aDy){z;<FEJ(zLOMDvC*9(1?&
zcEEnaCXojIpH(--Uw%NH+2Pax`~pJti(~VUw8*bw3swN_%S<<4U{&F51%0+((7a6c
zK5Qq&Qo`t~M`u6OJFDckg*Aq_$BnYd-LZpvCZOxI0XUM|d1l}?S-;A1_a9BmZc4HK
zhFvu$MD?H{RGbypE5Nn#y|I1j9hM%xMoG?;UOS*f^PsY5-*nXkr<6D3&K5%cdLf<(
zd7}3^Mz(@HaZ-jKNSXBi%La=yZqi?wmjT`7UYEcEai#$u@Z>4w;DcPUh{BZ4+e^l5
zKjPF-B{rZ3SV`HO2Q_k89vDs><=PfrJCy;9RKI>4Rm*^A(d+B<^<UL{#!@KU&6M(<
z-e_VDwyDSJB-3^<fTwgie_ONp&T@VC6iiehb6#XANS#a@*!4J2YmdB{>3SI6j}rV3
z-o`8Et#6z7-_kj906s#v4tRAYZl5;m%%@(XpD-&i^&8zaC`6!c9o)!b-}vVl>vl7A
zbg9YR`X!mOj|H?&388{P-B`AV+7lC#oyB4hPP=K+C2g~5_P4vHY@fW%ez;qPBT=K+
zYq;rQ(R$&X_vF?m`}68-lfT-gmeY2MHmH+6#8DrXzCW6>3(7cMv{kj4FBr?RX!}w=
zgix=f?P19(`8-k1z4mdGGx?6a1zxG1Kc%m3<MqaWHpy4~SV>I@(3e@jPX;WZxE5XK
zkbRMF-aM>ra%W&NjcNYH^LXTrru#^*z+}u=mmX+U0dNVdwy&mrDQG2kM#Vhs{ockC
z8)$M$@LfcTt4ox5(_rCfKs64qrPz>66MSGdAN^d_-C#;6tM+CIovPHFy<6;tXTm3h
zyFyWy0KQj1_XewtdOy+7%O==nkM;(8rAPAHDIKZo@)0+t)6ETFJ#yClyKo$1Y*V;i
zxJoV>cw=xLnuE!{<KD;$PRdj*a%eFToze-ls9gWp06KT}s+KMuGF#FVMSL0-6L0o^
zRfatfm45xpV<Mc-9iEGCGtTM>)T5ZCyao}(x2VBxRxnv|{Ro+VRM{_Iqj%gelm6}^
znuPLar=A$7FlysOV59pLf9!hjCCyg@Jf-60pWk*KSQ8kQ444OP?{82FxPw^l|9loL
z>d2G0zaMw`E59hGRIS|{zr5gAliiS;Z4hNy+vd*vAW!AX$i|50#njGQ!F}$vICz3K
zL|ct3o076ce_N;+Kt%0C0md>KQpDI&iaXW{zkF)Ay~pF9mNBZfam~C}9An~MXo6sa
zUs;XEDQvtFKL*YBgrV;`&NIBw*|&vV8snTuA83(&YbtbKTb3%Thw5kuH;fTe0)-0}
z`iVWWClf*+0@19&oz$cL;KDE5^MB1(6(&yne?aW&v18hi7m>lnODQ8_aK41ulN*Hr
z;)(ePp~i<7aVpz|1+1A3lNripE%EUi1Lej%WMyCQ+|JWPp^q&TyHMSOq}w3RMP<K^
z(NOwdx3REn3yS2I^@?wAfhbO$7p4U6zv)SXN5L+haC>ph&9}Kl7x(XE*4?Q2Yb+iy
z)ai?3&ayY?sS{Q(3~WiC(@PNNaeuY+p>oJK-jb=1V_+^j%ZK*`Ge%m#k?^92?GrQs
z!^6e5d#(Tk$N>4KMsKx(i+Lm0Ub553pm~b0I8`NQ*K@dP<uE%2aGaF4DS1udy+83`
zo4=2vE~bWjABCJ*6pTfKK^9YQ@sy`sRy{{qET_)T8uCkva^~E7!6@NJLu{&@0|I1^
zgzmX_cAcCZa5q+1)=N-olo?|(pf`Ag2i{*>B|-T|j1v6kcD&))4TZUW(E4-(2rJ#(
z(P#=8K7Vqc0b3i|Ab*oQQIo*oT@oH1hg}=koMchCr!dY2ao#D)NGR*Vz7&nfDW`ke
zeRxUCle*ETRwEi&%HyMWD8VkE&`)zz#A)H6@1Azp2g`M_iAs5rU7!8LR;SJAePQ+n
zMS8iT>PUD6=VnTG@DJ7wH&W?aEbkK7|IjyVx~Vg+&J5@Mq2j6e>uquh-+U%7czD<~
zn?Y%<(&Q19#aQuZEQq5^p|78^l*8h83v`wVRW?6neE$y5rK0e$&`Q-t&X_Fa`{J+i
zs!W^?dY%pzOGA%->Q&JYVpfAv%YjrJtz4V_#S7j1a$}^!P@;H=w#}?aV!55naDrv*
zl9=k5gtBwnmc+xNE23kK`~c@>n~Y!$H+#X>O6EoKqV#-wad+6}{cTLEen+%dl>YsC
zXoK?`eC?ByZEOup`xJ_VB*u>knPWHoj37vcQtB>+hmdjfiwjBH)B3kqF<4iBY#+(W
zXgg3>PzusKuE(i%H`%?shytGa%P-NLmif8I5Odnq&OmRto>O(v?0drdS-<jYYT0Ay
zp>e(v=3O$iIc0CL?y7PG-L3OZ*;omF^BJkY6ftY(Ix;QNShQXY*czAH%2iEsG;qFO
zQjQ^5Y@msAw%M@@wH#^n?dgh;<`wrAF|Ui}JJ^6Nf^YJ>&l2ySR86hAVQS5?=_`%%
zhFGRohtstzuOFA(ZB)2geloC5UlH7o@K#MEEG}H$2G1OB#XeszlxP+!*r$&2h>P9s
zzspBVs*&Me5(rA!vM3Fni9IZuhwU2viFi?+w{JL&2x<Slzy9oIgI$;EGwU^HTY(U3
zLWw`dL^@)cVmwfij8;+cc9OTYZ{(rS(d!F-e0o^SwADheZ8aC+^jI^#w4{;;Vls0N
za;7k{<F{;-Ca5GY!BPKpF*B_qzrI(Tb*oX!$)deIjTMP*rU?<;F|xq=tvtXc#z@fZ
z`C|fxGmd6I^Ed{nE{kHD`O-enj%^v_I$ROu+xnK0E<JX|V!8XJr_y@f&9#mP)`!!N
z%3CriIHhRhl#fwev{tvOgU4P%9B`qQ<kR;9UoS6wdp(DIx-Z9Yon2$?1M84(ORu20
zqfn1J%{Z3%(CqmzqI)NJxY7)+;JUHYK?nI_F7-bf8fT1lHqbVk)RMC%y`^Mx`tPuO
z*sil5BV_TL8jMu?@A8y-9$Ukr;n7OAjw`lUM0A2}qJbRpFDvdWTY3~=L68;jzSF9S
zu4U<<gZH&=@;sW6)9r=Aui%^%Kx<pjx^_CqVXsh{Fk*-(dvKRvha<J;DuQwEZTA&e
z-?&pkJ!C&uc~%!%wB@G%3AV`?O!W}o`g-M*_E1J(V=>MkSjhOu(6H*e_r=1r*bPFG
z<8I$7>8EzSWCq^?D<mIit}JPyK`-WRwgLeWm5(8wKuS8{Ru8B9tKRnS4BbE$7E3vg
z+M$OlO_@nST#?#18p1Uw|9SD?c>!(*n66UNY+{a#YGFV0I;-9>$x=G-IqW>;7hdI@
z*CqZsnXu2kL{~ny^Hrz5-zQV9t1iSOE%i`DC<CYQUT1NTMbqY7+Ciq8+lRZEC*Z+d
zIGvN{{BzBB-Atz6iQT4cQ9rO>#rGRf&rDd%>$M?inu<;+7%nU>zWy5S`zH7H1!Pz^
z1N*EWY1`B04E1(qhBT1JLj89Pt1eF7?O^b8wCIODTu_5}OQfUt_o>z4d0Q-s!j5>2
zm-1A@6YICCGxe992w}Tso?~Mk%B)}zM|W?|K4b9kI%;J?qd47H-j0cMEIM2{8Nh+|
zBi-<|@)f2)-kwy@hM3AD4A#Il)^u4-oy!7bvj-4h1A5|<^lsCA@P#qqPKJ@f5m@5<
zH~kpk4^Y9`A5iD!04wG>`)(G-eRV!5Q*W>8<wb=Dm|{|(JW-b|n=P9R<djR8d8vN>
zDO}vqEle=W9csYql23Tf)jo1}Bdk9n#L1YxGv`VV`WMM~IUKME$4=GmEbUR_pKp{J
zQu#ua_s)I7#c8t=Pfe4k89a)Ena|Cwx<hoM<9VmFKk&~PC9I}>Txduebjk=8$s0M4
zz8@&s-b?8bJbG9Bk7@ayYckY~i%L#n-@PtA?&BTazDSCjhtD!1<UWdr{VUjNi2N6x
zvaSL1{=y8oYp3fYr}HVQ^67$;rEFs0l3PfyZ2aNtox8XPwza8deOBThoaSwYYCV%@
z%9dlr_(>~47Uo5e1B++dqo&D^#rwOi@-~Lm0xT?QYl#73(Zs;p#Oo<fu7?U41w#5!
zF5p^+u#JU}@@&$k0Y<0(l5XE#;<;`B-q6|6__%X%dJ1MmWX#wQYELM&{8%X&4@<AN
zS`pRe|1gkx6Pwk(ljLeyre_1?I9;yTeINO)3=`Lvaasi~YfvqlNh!J4sG;NCecAK=
z3aJS<oH}{aw30Th#o<O4Vz|!R>hNd(Shrrg(16hFj_U)0mc0-Y-(14=lD{R6X8V^9
z!B(&Ig&H-Y^j6DaJ4=cL!ATIqF2d{T;zLH%PZ2W{q#s^!722mibqnWRTKQjQ<&HR#
z0q-9B4&yzj{kJi*jS;2k?rHk>edsS3yCV2Pj6N^+=x)-_+T%Zdb;d=D6VDM$WEyyz
zIp>uvhKJ~T;A26L>S3+~=VunU*Xi{QY8Ehb9CTXYDv*6P{ax35SKg0lUzd)9IcUm`
zy9we|nd_BzrMA7+zJeO$NGb`Y0Mg8bMm_z|hN17P=hbD_d(=byw|1$W0MS~SptyC-
z;l8v6`ZG?W+Pj=m5OLSsnmg##gKXyp?N54lSfJP=kKoYMRi><0?s^o`I{9w~E$^90
z^%;b-9JT}*5dP>Nx4QCtBG2DxVecCd7t%I-^^@vP&NOA2z<ro7>($@m??O@TYC4ym
z)!IpI4@x6<?A!I0i1|!6NjLv`>RmI5E2WXFQolLm7|h1nJU-;tM|aG{D?GLxtI7B~
zenUsi4T^9r_YJI^U9wB_#cEL|TS_{a<i<Uj^e68Ax?bgI?S=&}{QDZ#U(b6^hYk$K
zTshK^`0(H+o=c%Zxb~xh)}P5QL!Wxpx@2rtZrcs)wEy?SLt@;vPJT24p^5%eCp6Xo
zSy%YOutZOcZqA;<_rx1|k~(v;tzT|!Cj_&tr9~iKEyR*lz;@n>Vaa6%a8o}GG<oT%
z2Mf*#s=NUAmneH8<mU(V{{C*G`vd<gUm5g_2=-ZvwPJ&xIwUstb_cw{&qi8FTA#rq
z_=14$-gj&X#;PoUma<Puo>(8$JWF){Nt3vZ-aK3;Iqf}Cky0HIZCfkkD?cZOiYvu_
zrB)3+Q5g03^W$h^s0}|<SCqH!kDwt8;NeS!*n!RYmDis=WS)lw9-AjTVWv<q6Z)o4
zwINFp-#Q-jbuR@o7ZXoe74N0ks$sAA=J_d1tSR-wE#^;Et)0hDnOlQC*`IT8`A5fH
z-KCFao1M8NNR9$rKQ)#4b~CR_Ewp}3(afHXOFBcF-lvxeb^|s)<}s^e%IpyKQ#t#|
z=zaH-w!`-!mf0Q10cw)<Y`PM~E|_#1Weh#Esn!hpy-K=T;z?a&y+Q924&I{%KY*cg
zZ3Y@HSyRgaKI>>r63wIqeKq-W+hB0&<u@)wjQ&|C6Xf!q3M29Qt1`(NexmH`qoV4g
z@R%+jv|O0*r#$4Oc>)u1a*OFY`ABQ1bKt1;zpGpn$Qy+RI*N$qi};Jb1}!wnKKZjE
z?K;YD&2;IO+_;-tj2Z@4nYddT_B_11bV`eBqBOs{#j0f7H!(NQe_NPoB41Z8h*y-&
z@%~;mDBMccj37PEqBM)E1X9Q&I9YwXZw;a6)-^d6k!Pc+9{sEaA1mJ=P~6}b#c^l5
z@Ps&w^(~Yg&cRrHWn&D56i$i3Co#3!0-%bv#!r?77B34aRz6wfD-GLr$&`-W4HcbO
zy;zL3P1el#3224Wn?B(2?oYVSSH6=fIRq-B^n%c{Pwz{NB-7nj(8{iRvS;UG<ab9l
z=U*kcjvwIS#Nj@Qi!hMBdvnJUc-~tiL8O4?SX^}-GwywwNbwss8!=_DIV90iDvFud
z(g3%fUq56F9d)O>PxLmQs)<Z`xLhTN*3rx5^WURJ)ygSrs3P@OquwRo{~`XQGLjWw
zp_U(VNV|zj!+p@H_TscSF+8Gv;Da7)^OFiAu0qm-^8;Nv68qeInst-PCGRGq0uTh<
zmj^H#xR2XZPh)M%QHh_Eg}+&hW3*L~_LTLu$$}>zm{snPDdEC{V^{a7U&1YGkMnac
z%^cKY-6_ugN<v~YXE99tv+j56GbuicN(8ILe${mfVWzD)YS{`hJ@j^!4Ni&Ltg>He
z{kfqFSPJiwLoUvR$)L;S<de9x0CO?Ufx&+Dar9l@#F;BdUls#_<MiB%d$I4+Ih59$
zb)$A-YmSbB1TQG=VM3f`DRkta!UHuk71^w;8XT4yXMv5sXpZ$O#c_ORZddyID7<U;
z+8eQRR4-?=?G&r7*|V(F{ZRuNF{}5K&uOyu9Sw5CBWYsz#(HF(77iagN})$5;Jz&m
z&bGZQNK$c%s$_vGd#H9rvCu&LXOspJ{ase2*3bRTw}lnb;q#~eVdE8)Hy4l?WGWZ5
z(tz+T#r+7Pi?LL-8xbb)_~wlHkcWk=Z1y|Jy#Q)c1|FonaX@qWylSORuV%JRlTZx^
z==+=W-$~?d)*q0^oHwB)e@4C4i+E58O#CPdlsK<_-YEmYtlkp`?HX>M{_SOL-8H-c
zT5biYTDL@215@9JHuq|tou{M|1J%pJYq3j?gw%bzc0K#6OV|A#5hyl6`n@(Gw?P@l
zB*m?Oe8k&ltK3~#%paY&yUvbUJSZP?di*%1-H};hTJp1UVY`34<V#`v^sk%;+^<F)
z8_Pj2p+JF0vf}bYE&#=!AE`;;M-6Obd2mr4wK{$OYC8#eR6h_%D?iAg1(lPxf-*sB
zV7Cm=_92m#bUFV-uwM~2e083hp0yqU?{c6vx?MtcLWjEO>v}cWf0cBV!+qjC{<^<f
zbx9C9a;e_@3MdopV}#TkTc%d>lNM+RE6(2fb4=H}d`9liz?>DFItGU{^3VTC0N2dg
z1id57V8bmOTYlC03xc;=@$QuK|Macz<y(azR8c$Gpr_dY{f@_1g&g+8ddo+j9<7gf
zrA0>`PY)F*?MHwFm+0sqcxXlSO+-xHvOtG*cik!*NEW{V_|q1&4VSPw4HdJuQ8gvf
zRF{e6*f3=KLo(Lytn=q#QU3Rj9z@<6(2}l)+`yFf^vrgk(5M?Ghq<IDYDe+dz?MQo
zq3O;UGyA>%{PugP(FgnvI$SFcFj`r+UkPv?n>jWZ`A-0FB-57JPunyu_DrmUCRY;%
zq!(F09FKmAHE2E<{qtsyexstQQ|qy7zPgR&qpM~~c9flbNbYD~7F<*I5^EpT!gVUM
zIeiZ6@j5{%`pqw&dk{a1JP=j4QB%m3*_r8nWlgSW&gAm(^%uVrfDjK?k5JHDMI!`&
zvE3=ra!|YnQP1d>(0m(E_~<RR3Yywp8wF>R&8GK+hwIr)*m)_I*V6X#f)Qh8q00YK
z+>w?3QPp>yfz}YcM#+sg<MkyLS<2yx3v*%O+=tIyF;%{xDWN;&Xcuu>W*A+zB<hA2
zlr1n-X}IC<!!0F1o-5gRsvglS{k&b$acyl3e;0dLbEB@YpfN(3%3L;kVD6#2iA@aj
zmjTlHTlITq^HdDNGlA#M8pS)>Y867wL9kjA@g>u(Tw7gg@PTY2)+XUOLvMX?ZK5Oe
zS$2Xnyk1k`KEyWZ@ekv((5=>e!@OP5s8OMJ7c82V#fBT5!It-ts{4k`O$?yv)%ZT|
zh8UhR_wcb<;Tn(>`t#_svRU`ChM{S$iMc-~n?RhH;u2k=yxnDWBzUxDn-Em>g6eM3
zS0i$T9&Act7G`pNtL45<X&p9r;Pzk7JC+VlvZHMcM?Z!<LU3|X3yDkoP|P~E5^WHq
zfOX&}+$>T8>wz7{!L$ErLGq<apCfPi3?^PpIH_Xo<<S{YC(K9hq)YF9o;-WH_~u-O
zQ~0jPE98Gpy3$~$sou|1wAi<m{wm97Zzbzn^im3_DGDUi^~j9<^vmc~?`<w4Yg=!5
zoT9V}Zw@ct<*z@1mGo#GxK1?51ydu=y76c6;l!+n-&?EPtu>l?Paw>vnNq$GP|_gP
z!|5oqb$|Hq)%J%B<_-IrNsj`Sp{G&I>W^3t^j6a_tKgnA*}^srbQEcOmTp!99&1vl
ztU$_3mw~iDk^&}8TwbyQI+$?uUqL+1<(6^T;nd7h68;$S5^_I%4pys?CE6wAf{Y<+
zSqF{?6oNweMzx3jD9%0itUe1Bengk`JQ1&ma11{u%sK@ItQCGf36sfgUn}e$Ihta9
zzth@n6}^<(mJTZju5nJhO)fp+=Hbjd(*dbAJBlEpE?$?~v$ZtQj<Yd`uJ}bU+53L$
z-=Tu)L}MsF&|h_fB!ue&tJm0<Y(X;3fxTMVj<ZD#`z*OD=PmP;<~~aHr>iRGpsYXm
zUG9(w0=_q?!MrUEPuUaNrjLw+##%$o^Sv{!D<`>knr-s&q8fcM@niC6P<&9hbChq2
zyW4L%!jPf^M0JvBwvPWIs8eR=hvT?mh-=n|_ZUOZI%3If)RR*wwJ*=^GUL9V^Myq4
z+u4MsPuf%;_OkkzP@@c^R}e9OkeB{S4cHpVlk}~#GxhBq8%3(jw&y<&czjbvY0M+Q
z$0erLx3_}EWmNMv`g1~h!F5Oe38ZsW5gXSRG9}Nd0-5qm$NP*P6qPl>wxl|zCdbVa
zl0!mvoZQY#FKa{{y_&W;7wU3cp9e4g%lfzFO_53~8J0dESM}MFd>r&LI3|`@50tbn
z1>|}4o5oQ}IJ-Ijqrgd=ZBKEAeSB9T*{_FLI4q^bGa?`Ojw6zH@KrTYan;NM-Z?H|
z&6>y0hhUtEP^=#g^^5cBmHA)N>v8eVkM$!jEvZ9Z`yYx6w$hIsR0Pe}cCH1@W$k&0
z-5moS&$Rf5yyUP$7&bKRz7xj^O+z-lCc5+PmjSmM$myTQ%UJ!YXYG?soq7XV|5B>U
zotndo&+M4~3m2aS2#;3hbN+{#8>N{R%vtsL#}AQ;)$PQOCNDANxq4N79*?QR3RYf=
zY8=n?5w78ILDf+nayif<s`^j%WqKQOmDk?BLuY=iO2i9cO-pHA`mDJ6zJG0cwk5hr
z^`?^!ovCbJFmhyNv@)$d9xP|Y-6ez|N<iCeC?}DY#y16wAPy~e{ud#A?FrHQlpSs%
z|Ghb@O&W~C@*gt1X)sPL7k{svC8a6|<R$~HrB&5X_SB?dCb}+GwT<Q`3(E~tKu%59
ziwo`~f5y?Abyfxas}*yOZgVrl@*_m^)4GM!mtzm_HfaBv{e8$FExj6NyhQ#?7MVQZ
zfe6Zi8lv0l`*=8<s*y1e(uekSm0?Ku51}T^qqZq0l3&egR@Sg7sOW~Z&(@Zji*;?V
z^%SeWsvp`-{OYFChR-hb$I(?gpty;U%4+%|F}T9(_jwiHk5-eLj>DB{^d&TY=9}hm
zWG|+#mm)kBxykjZ1!ou_=(P3NB|LSTU8I&`7}I0o==^DifEPYFYC+*A=v{OTc|XiX
z5bwr-@|yo@=Pd2*cCqrS*8kb0ZP|wYKHJEY(-6pu0i<8^*<;iR=ySRQm$y#w*-rQA
z+3}clN3inl<9!S!H}%}6-*gmAd*Qb{FSIpx;^(<>3T?TAQi8<IzhDc!)Ku}P-<JjQ
z_93hDbg-_p6ebJuD;ErKE$(xzuLvOX`ElPmSaFhJ_LeTb)L@l#)evs~VQs5(>rY-;
z)qUE%V_z;50FNPWV+(*DHPQ`3<KvhtjvGM4aN@gayhat^=X*f129T~rVfNW2$-Izo
zt!&k*Q`g_315^d}&N=@CjTg*6CpWRYA0ocmfb9%gvchSrFVe$+T$S_XnPVr);CSgo
z=5pSn^$v-Ae0InH#+C1WXGJjZ;VbqL0M*+n&K_Zx@QLUN9i17&*;#)MzUWN&rZp%#
zL(`NYzyg(3m6|+}QBBlVy^3tH$oF13OF+cbR2UFshdCNlfh2^(4+F%Mpz($027QI3
zuYw$8oO(5|lM^<qd8rej41)p{Fwp8J)^?Dfa~Y8A79T_B-lCE9$`5VjxnJ6;X{~%~
zjG)NiZKy1om@g@=)$qyep}*uWs*Ovh9q|`pOdB0TkNY$3-U*vm{iJnOlG~mHQf}s_
z5O0rXA}#ZezGxiM_#1H8_ip@s^4uI|^I=v0DW6RE#Momh=LYAHg3kU5Wp|SBT)_1W
zHX1kXE`IROX}%YctAL*}%zVAfUWO34Ny96@6a3@999y>G*w9KkbXzw}EB~jh!4vUF
z4Pj`*K4__JJ<YZ4TR*ELG`YSm3h}=aXX=<cRi}{F*d+$snQLnf#aq<yw~{>*I#o9L
zh`2eG9!}pJ00Y%_{SYu)HYCHhJZ>E>90EpPQo#59m*^_JDxmeFAuxRO^g7*Sgt8yb
zZ6TuocN-<$HRBjon2RN|n<vAUFzJ-$6}q(<`u5gl!ibp7O?oHNCeCG-I${iuOV=qZ
zGtD_JF|2wCN8G~VrAuue*cGA^3MRC>gmeH8AD#_@^$Su3?$GvSdj0c_F4lt<^>3Xn
z6{Y_QBsG_;a|eCJ5SG_ZSpG7ZT%@OLw92Yl&YfhbD9zIZcVRR9k)J&Ts{@;U-GAgt
zivky>{<cdC3PPL0{=Qa~F?g8k*H+P;6fCBc7-)en%dpB@9vTvfuBiTti>P=j#rpOW
z<NFlJd7`B2+pPI8kL8#!8=0&Jke_4NR*EbqxpyrD$TF!nqXH{1Z^TRbl>O#Tn6PMl
zb49#(Kw>$$isqsxjvD&9hHH=+*Ys<XxmK@shj+F4A%U;A!44K4w>C(r-lKJGUh7Tq
z9Wmx-(-2rJWim~NdUY423yZ_!s;D@baE>eqe~0Aqw;|L(mX=Sj)rybz1kQkC7UKrB
z+8Q_i2hA>LWx};a(ey*yvUtAf-IHVZWR+<_jgsUO5r?pq+hUn4Zu-@64}EVW-8U(<
zb<Xu2{k%LjBKzkhC(ga+yMh;q5i)A^dfU)*i15Hyft6%7Env%5%l5l~Z)*<Ap5>&+
zv$ph^7d-Om&85qM^bhe6?ej1pEMLt{-LqRGbnzZ>B$EgbZfeQRnlboyczASCoI&iI
zJLv(avGM4~HmS)6*9sf3tU)fwkOLSIqll@ZS#P6k8B}$+vTtx`vCCHBFtvG-TH~e#
zBryf`sUX43p>aUvSj0w=T#~n6Ml#V>-R;$`jA}a(furKWK_v&%LF}`~ug>zP^_%H0
zXIIUdgIPeDJ_p2I!yqpk-O`ho>h(f^3mf3S{E=(gU$|3~DQWIb#tviVmy{pcv!_aT
zi%eQ(<N1ouW(`}pOtwFlAWcr06)6RdZZSBq?|V1jxYO~Sp#GfZ!tu;C*>N^AH@UH~
z^8CHtA-H8*o5|j&_bBMqwO4sLgK=-V**<h9^)Frff!yhb8BlS*F;8^;d$yT8{l(CE
z<)kTuziLU6s>ri~y*itD=gX*~(^5PRS@<!>CKdzMef5lzbsIao`quM@()vn<#k=!5
z(ix3;>yqgod%aTKpEO{;|8la0^nMyv=OB0q9<bp2fF+KKM}D_j6#iVn#$(~Io!KMT
z<BQUSfP5}R_23@_N`(5V8TnPUr}hXN<RlWak7q@QIz3GY!K(<*b3max8G4UM%YibG
zI$&xBCdJ`~x`>H^<<n&=?xn+OJ`bl}>}+p^q-MvfdHwu}kRju9%hTTC*2J64k1%JU
zr#*h#a(mScdRoOB<ObL6j*}ZTquV>|>J?bWLwEUYvzA~Pxa3LQ_-y`ih`*9-x>q6V
zkLvcT9DD)s=3-Jsdy>D3eOwBA&{GUP|2(`5B<D6Zijzq?2FPr_<6wbpgu(}SB(o|T
z;)Xe5?<ADC8XmmEMLg7VRqn}&$_>`fzWlXweh`j<X}Z8^4hW)7oZlmi6b@>88j1m>
zsV~>=v}Hi?|AmEh=Wny)WE=*=zL(ZEbJF&+6!fLTM)hNyOH^gMi<h6mMZN%W`XaC8
zhSkvmxlEEQmup=qfK<loV$LbrHr)%0Lk6Hrht$N#Uzfi+Lc)o8eSuCG%$Q;qj#*<@
zdH^kBy^9biQ*40qNB?zBH8rolxqMiC{l7j=tt*hOQ`1`*`8hWK@6VWuj7(nrQRjO3
z{+ni1`Mccy+<SdblmERlj%y3h%9}|=KC|omZgMaeB)PoI1qs|K>JjiK%bJ=t9v1N9
zt|+3?XIRW(kTI-zDaYtA&~TX0X=l-yR+(L0qZZEw38Gq!5C7WDA%QC!sWelxHf|bV
z&KhZOGqhV9*OxeA2fEH)iFyg)%HqWIwr_)L80ML&(AsFBp0w~WE-ac>R%Wv(kTAWL
z$#2dGri9EQQ<oPVpt>3_vnZ<Nk=k(fpI>aMeL-t(zWP)sm+D07jIog}0o!U}(uaKm
zpPcY9d}wwAQr>ZZF3aTe#4YsL;ezyLt3DDS`SG7qd=zg{j)yWsRqK1K!T_OgS_B)D
zP!^RPsCpIg$|`)UbU=t$tnx9_0`Crr!~`5r6Fd~*07cYw*KmUMeK0}go+}luSKFf|
zmmZWFS_#g^w$1JvZZOZ+K0NigH1Q3qFj^sQ5YAIx!Sp;g6~*BeF#RFtzN%d6Yz<E)
zZ0+E)W~rCmCK|Ed@Q1!CAg!wm7{@>!YT-vwrbkCgPLBlIr0$6H!njntZw=DMn1u1L
zt8+Vu4P1HtA`1z=V}7ug;m05-mQJ+QMkzc0S9~Y-$z6xpMe+ILWbrqPQ58FO>}3mM
zxhLe$yLDCVlb^WiR8_Y-Oi{wpp^kFtjuqawn2_?R9=)VvzMA~(1PrD553)p>#%*Gh
zxLx`W*D(i2NRhwLJ>;Hhe=tJ}rxs+eqMa4T0%gvae7qEP-&|J*@I>O0+RlK(b3egh
zz$xQ0QA|2?qWz17K~0T?JxtoZ1+V{X^UO0>5dvY0io-;Y-8_nQMC|V%V>C-Rv-FS_
zJ5jz)3BVc5Zv?zfa!>%(DAySewaNhnUQKL*cJt521~t~*bx&6;X7qZ4kqnaoKgjV4
z25gX4IP3x8Hh4B^m^2J+Xs0bRUoc0$10#@Oh8qj*R}|7$@3yB6AyRlDg0$$5ZJA?3
z<ezQ`Q8Hy0sX&qeMW2R2okr}$;fEeg6EHQjS-<Uhk-wrKCw4x)x3Cl1vvvx?9SBAQ
zfS=Fx!2UpVw$nlYYjcS=4}pX91vrq69mt{k+ow(_NkoI7DFBg<*d^9f7sZU-#A4Jv
z<KxzxT3D*a(Zu?x2QcEI`Sj{STY5L#T@3N_s0o+163Hp=T2tUxz<vHsgsS4m)%?iN
zXRjRql&W5+<*J1IBx;=u>R}#HTzuwbl{Cx>3gv2EsWKQc*0<{~dY<O~yTG0=jTl2P
zs3`dh))%*G_}=+TLm4ZV>rDxQbViZP5)K*jzQKQdE<$a^hl$iCKe!>v1{n!OENs7H
zuvmh5kLpXKt-Mu$b;>{21fqS^j>yrM<rbQ360ubo=8Favo`bT(=T`kcwydf?GdqHp
z6;zYTosRWa6>L;(Mk*=HQs#fPhX`R=6b)3|T$7pWHr9Ftl+9HdhK8SS*jw`u4;5;(
zZEh>fgsEA#`0?Sz%^47`PSu_32-nWE0_FBZz#X$s4S@4tE$nn?001g*wX~t9KbI@(
z3WktGBs72B3|cSTj09~05RY3xznaYD$xrR1<CsQYebBz4GcM6%K(gi~1Q1@!yfaTr
zWR`Y-RyFEtryt^k|LG`7mloM9b>wU+wWs@+FXmpH#cn>e@6PD|l(KU;zWgM~8fA80
zZ7`zzv1$-m`CRhyFcyl4C~kGx)r<|jhn1u98Rm%Zt~M=IVhop0W3c?lVLVMrJ6W1b
z@@O?DDN&tf5r=>NDeIFSzReoI90`tf22t~FF|AU<p@h6^l*&=WM|h;zfRB3qpKJ34
zu_B7KoprS6iY1AXIHW5l<V_&4DpV9nskkZ;VV|EPs?R@(Jk)e=%dUByjL-D=T#<2p
z9Vy1yWRPZQZI^GyeAP=GAS}fW>D9Q>kwuIL#jC#%Xwh^KBZmylo{Xu7gQ<_$%+`by
zg#YCc5m9k#t#=v+9s&^dkAE$~k#BCmJgZC8ZFfYI6|s#J=}Hmr;Ii_bO>)PJjs1Go
z<HkP(hMG2jfc%i`01UTcMF*e$-AMSHKSkhByk9o-8aB}>Kn-rh-ajJZnZM$d?A#S{
zXWe(H{VZQU_17L=C;_7vBfJb|FfSE0TYLIVgj95Tr6vLxiSgpI;aa8Jg}n(=Z%Ryr
zhGg3t%QU_kPkob`6B11US`c>)Jrlyu-(7G<EO)W`Q*H)s)BmtyRqz89K_fv|FS(I>
zqa=?%5&En5paD0|v2jb7jEjwsi^rE|ljje@wDVRUEDIx+Mrd*(Ts1B(w7;t^?pW$E
zwql;SM+m+UCXIx}n>iSF@2GAJbcmftUj`S2oJE%(TdpOM<g(lM?`?IIbnwk147=PA
zXMc-x*G`PZhAS?8`1X`R;{9RA)Yy`H2lNtDkQV&$huOM!`qJ*g?glVw)R1-i0wLH|
zKWxuDn=3RG50tIUl1E_o?kah$nE1`TbRR%}xlFeX8<m-OVtz!p_wcov$Jx*JN5HHI
zZ*;%>j@xSeuY6EwkXf<Z8R|z^=lY2FzPC8H9Gt3un^e4!j!Iq|SFuU{1ssVEGnCuI
z&OOlPgu8R^?^|>WJ>PEP{78413GWI1PIB>9$K4L0hXzik-$LOo@`E8qDs=-tJ^kxT
zg~1W>KHOw^mceuOQ#O#Ms8sPdoTQX``gZ5Tuk%T{;ltObGN8zAfRo^K&PU8sQ)oNl
z1s-;Wh01{YJ3%h^a>Y5JPHlkvAHu>Bl0dk<>-=wJ;$qUC(5Xp~OfMe?3(aSgFj0aM
zlznc;3o5EoTxGKhDAl@I9M+N%616iJbl)nr#JqTOOwYbwL%GWJil8IK)l1G01Ml`@
zo-y%XMfB7kaeLu>IgwHOD-BCsi->a6k2ed71KzqT`AQZc;lFBx6zWHjMJ3Uc#a6+K
zDlJDifyNJgFo&V0zu)Ci<bv~1<vIH)-K_wO*eVY)b#F1)gJ*!G4CWyOoFRH)Gr`bH
zZdBbIJ+vr8e{3~8WZ6olE$6U-CtE6*MPcWRg3s0ENcaYME~8DQ=Q|=J%DvZF(%?)j
zH~L_r{ow*xp7hLGabJBE^V$V=ry%|OErIDJB)IEgNc?U#HEKLP#};1|E$Kt@NipAA
z)sn19Abr`2VJ(mnVI-ax(c2d&d~v;70PF)Kwd2~OO2VaLfF4Tmhi0E76^qnZY4!1y
zdtdf%&Srl*+m3Ty5*q9CA1pE{*;6YtDXDs4Iz9<wA?SETU9n~E=V0h{$R{%5YVBez
zes^=Z9_e<brGj!MbU0&dS8_#umMt8RGgw_EMarr$W9r3GdR!gfawuO`-UqwX-^%31
zm2rSE!;V864l7lXLXBdQ!FR-(T%nckX^okc7~f3&m&lO$&w1Y)#)n7WeIqC+rfCst
zH<~vz{-L^_fvd@}IpBN8-?LiOZ+=ra7-FK9s5!x`w8q)l5ZNvEks`uLNLcdf0Ml(9
z<|cgI<EroW69MtGYu63?e=p22XR+&#cwBo0l>b=C)nV_Lo;QCe^$9XMvZFpM`cCiV
zlwfu?1Gyy%%a<!P+X#z@Y~fJq-)5aai?==+0Njq2NGUdCj723yBNlsA;6ewn7s!sD
z5md=&L&tl+L2tKkT@$L)1~`3h17)&>nKsRctSIfj=88ys_wxg42hx9#v$VbL){^rY
zS7M|~!tiAU@MF7OjXZ)iXfu565jaFh;2w4Lao)%r%Nl(Ma<u4v-~RrGY+(cx6e*}u
zB9c7fD>fdGTz<3<^s86q+SiQc_7SFQfKCYHKuT-%3yCP8##OXh#iw23&3s`K$VG*b
zWM;9kx$(}>RSwkfZ85|Oa`T#s2waaMwZ~VM7gxA5aO=8jmxqz(R@%Y~OBSOh3zeO*
zbg>IIur01v)k*h<)MbF_l=d^d(B_f4r=~Vm^%7>FCj<<+Al{x)bBpfcwcD$!>kkku
zgGqR;7Y38kSE9e~@9gZj+?KL@`|O{7hi>j|gT-CV)r#5duPN%K8*j8`#E-Cwb1_O$
z%ND=CG7q<oqYa#z&Ax9*TCnA%JfWHw9x-uVbSWE6uuCGk&5rzF8g-Uf4%*#XV&<Ly
zDvSj1c)`@UBpP1&{#)SseN610$0e1-+fT*!V^7^OD$WSXciktRzwUSXI&=LKqq^Pq
zp_MD^%nj^9IBBHb+-<HV3(RWN9b~zoutIfkBCj=93;Qkb@huy__`~s~+u-2sQ#Qib
zOBLW{bv%0uHqhTnZcspd`9Pb!|LE8~5k4g!k~{ANZJ{9~DrV!vkXVsMKoJzVAD^jb
z@w}=LFno1T!JGUTp^<G0e!yYx&{r_=0H6<+7lo4MV7t4AN6GCew$-c<Ye>4j0QtHw
z_)NNs4*oo1jMhA{e5A6z+00TkWMPA={QTN^=k?R;BOD|PARXd8Ne}<gHP8xlv+Y0M
zsAUT!P9QfznP>N~Y-p;isf*v)6hPDRoc;Jo21sz9+Hp6x6Tp}D(xIhM)k4N!t+mlq
z<~K0Zr|EzrZ|&oI5)R|6!U(QW+d#&o#H$P=6LyM}TN`(+be<?87a&~JbJv)vzF54h
zpx*U}i0)yb5K+Cbx3M_bJW>rR0N~v8a={EQHge46p`bSkP_aVg8JgYSP&Y}QUrt}U
zW3}n=1>fe58yd15q&5y2DiF^GNdWZ_H7EwLS418X^M{YP!9jj5sy(Qt<O!04dbBf+
zuf=x?i_>4tT$y3}EcujDdh?8yB!eE?;%EX2a<OS$ANr>Lu|WoNxQW+@KoVob>L!4F
zeJ)vOaq>8`4bt_+7<ws=Z2K&BGYh>VW^e5cSFB@LF^N{rnZ?UMnn*Yn)liZQ5V2sW
z=X!Cw)hi)2xCrz#PsM+&aBiCwoz|c_d7=xNKHMK4Q&F5Nv`jF{93e)6j>XS~=WG)e
zFASG1hqcc+gY!N+zP|x(5nxTcT-&hrF|X0=e0$MY(S0e-uW&<j+Zk05#?6vxA*nhZ
za*|B<T~o*K)t1O<Y#b44s1Qug72&1OqQ%cSEvqHe{(}fnGT<9tU8ILRysx&r5Jh}@
z=hQ6I2K)3SywePm%gYM;NL-z*$Ub)xmWk`|g%Wr8)5hr9)Y&h>9tJp+B~NZ_&%465
z|DKRUZKB8e((i7~Y+3z1%UB5Y_!ttd=c^Y_6!gQ{yMfhTLdg4~V3jckUgX61*q?Iw
zfUwCGG%0t|9WOg9gT8)<2`+f~Wmz}tQ2^@X@ELjd2WybVhR;m!y08%9Svr{P{<QmY
zl`Pt}T)5atCs*Jlj%S^@&{GJRPB%LJqkT?+^*+JtQ4=olAg_a^;6=v=kEIWPyBI|*
zGwo|E<`lYf&QGz>JyW0gxB2s%_3DGc|D))<AEAEyIBtZ5d}L;qB3VVwI8MqalBmeu
z5oev<*|M^;w_HW$S*Od+4rjaL>~+SSk?oA{`}+_0>FwUH_v`h1J{}3!vy45-eSwPx
zvGb*%;};K$^B>f=4>-{T+rS^1zUK$zcT)de{O&1cuytFT+uQm2<oTy5ORe3#B|@o$
z@KFOeX>$AEQCZaeF9ZIZaWq!8KHUhC6pETcc2Iuk&zze3dc&~o8dbHvj{I9)QGOFQ
z?$~m6(#%sqZc2ZM0baJj<dyVDG+X<Vu`UcJqUqRCwY~3MWb6kiMnDSd&m#BXD-lf9
z8&NLU%C_bXLg?>?>)y6dqi*Vv9c!5PesISPuGnTEp2(>15w7(T*cH~%FGrX~JGG){
zKYxqTx%WjF$4h>^umBFG0vWwvgeBlq_h1jTm@VDW05t)6X5?TZe)T5xaDn@YBTkYs
z+ftTqHV)IvkYv3eW4%=1TY#nlsxfW+x8$%V9p)^L5)OYE&ndn_T!Hgdp@F`)3dRRo
zH@qS)lgo@NY>Ibh?dD(MKx(&WSmD27mO4*w009o3l93g`1uKAHU(x#D^KkQ@u8b{J
z$*TPP-tmAp$ZlT$F@Rc$6FQ@)Cq*#Pvyuxujs@w}_MV(Y1t6ne773vMjiKL8zL@_Q
zYi_%Fw|xVSYV2pi-{1197o$kNGYaHNmww^^9Z5q%*4m`73BV($B!1b7?T`!+6{Fl>
z8sM@oQx5lr_#Vw0HWNzr-$rdaOfM`gMXp?)U!GiETrLW1*g^+_79%gu))%Ep-0`8z
z&BPjeFCWq_xtxz$sMg15LA0(dua4ZIj(D;>`oJ{ijDhWP9-D2QZ^MJvgxbLCA{8tV
z{5(^9C2_W3qH4tn6SQ)Qk7xODbXLX}-5bVWFA^P*HTUS<Y<HRi@@B&YCH_IMZWtyz
zUKhD=N{uqa*#p~ya184S!2_yVVK%>JXbl%N>@?8KHHH^b;-h9<5*_9rpVQ_hkk<Q|
zJp)90l+OZpsQ39%7kgwJGi2i~N-bAe-{+5Bk=k5r+(^G>I4RdgrLqaocL%;tXwe|p
z6B2N1&I053B^i|+MtoJ}r%gP)^t(pq3v1nle00(FvBS2a#It;VmX(huYC$JcsDtW^
zJ2Lqx>6y#~{Hmp%i;4J(%%t~FN!#tO7JoHr?B<RJ)zW(NV_*L9#MOnRQ8Pp;I;h?H
za2+)M?VV%Cd&LPF1LdHOH0c9es{C(>XA&CGuicsyK!{E(ylAYhuPM&_$xqQ26@y4h
zvh|$Q`wjV)4RlhC0M6ZYpzIMEMuq`2Tn3IgZcyesabRNlz;yJIo_gMqcU>o5wny1I
z2BtY-pQ4>*6*EVO4l$}6+PsoW!0^MNiP@V<d|vV1(zzm*VyHEF008C5U6pTD)0`4!
z8XY>_*kpw$@IYg4pa?vu=1MF3=K#OLa7K0a3eTu8Hwt6^bJB(nNuTx|up9rxXu=2b
zGKSASO^QMPAnOA2;3^Mx^<;52u9cJ~+*Nutn(Z3TxHFH7m8LdBXEesh_r%_b<Mj9P
z{Wj=&6wb{E-zcdj5O^C0l|5=rfwwc7E0&dyj_(0}^^&G9M|-oHqT}PFim`V=ejT~Z
z)5#P`%UNY@9!EvbH(80On%6!zxxR<Zm@L1G^NxwRl6-ovdOL=f1}wr=wpesLH+Syx
z{c?+0V(pWUa_qCSC%)_5-sOHbx*!Qom;c6(!#KrN?u^d(D7!tl`SYyq^3CudbG{V+
zt1B~3)$W4QnlsxG-mx^fh~H~}^Y1L)!TV`Qw1y6v&)<Bc&yk@HTIF^?C_OMSS>2$@
zgE4U2lJ~4v|2$4*6faR{2D|E_0p(9AeH)fNa%tjrm9p)TlD1YH*(6lwYCktfDdx%*
z2_fHpb93?I^}#R3f==|fJ6wN{Ku{s?OF*hhyxKStEb;zIH<a8NN|J$EvqsRsXwvim
z15>Jx>^Dp5K1<f5QI)@5%(XxAjGS@*sYURr(uw8kNb*PV0ZORZN~C(OCiHHPmlaw=
zffn5t+Gkm*SHWVEQiER-G_+*R&2E}-VAXROqpGn(Mzd@>R3b1-g#W|wx4ue!XH^k|
z0X@VH4zJnXrrIoN?PK1sE*5;IGNgSqQ1H0eYY|~eh$uH1<MM)70^P;o$Xu(XK_C2y
z@0wE^ot-6kk6H*dy}>MRz|+$5k2;rGI{q>&;o9N57laRso98lkr+vMJvthb`FUItf
z-iI$|wGU@ue>bMRZ!JFu_Z{{*J1y;{1RhYe_VH2Zt3}tYwFv-R(twMz-g?!YCJ<``
zICR8*{MwwiXe7IfZRBiO&nNJZu`;+;4G~2Wbql9MaLJ6>g->tAIm<pIdvpQmud0A0
zN3ke)>%|TH5|Ck&*u^|*=g8$6R;~DQ@_1bo0D;FIxX@Tm2j^RrF2zTW9HVT=lz3J&
z@QadpDThCV(Zif?ZoJ*NDPHLbvDECUw1MBkYWMWWTOyY3OQYa(nLg=s`e;4T#tx1t
zS3QD2%I1K1i459cRFwH&g@OQ)oiunlGT;emk7tb2tFTdtG?kOL>~<NWx2}A95~~SU
z-lG-)hS5BLcir7%HrJcF^2UUe0C{?Dm0$vQm(5MqeNYtGN*rE^Xnu3b=mjPJ&at!y
zTHN~muOg?f2MSIaG|8P2W{?A?BQCHOK=A`qMkY}Ks|XD^FBzb&Va{4lRRzKi?YHmt
zq*C*z`|qFElQn?XcO{^5Az?YU>vwm~CHS0)g8BUycl)2_R|1pKMWuz^&L1|>v!h&2
z{n*fM8S!d;znzJoRo_8vhK-N!-wJ<?N~BM7E3yCC)RrXnW9q*ax4A2HEl*Eyk3HHw
zxtL|0<pxZ9t^U)D&>{B8Po&$W7O;*!rpQ*pn$@UV8w@P6-TQ2Y^xIKAnX^MmWQr{-
zoib%xwTP~S)MA(Gk~5x!clHhnAN~SCtK&?NZ-3qtJkL<su1nv%Vj_!%y>Mhb<tYDp
zdnu&*NI_%`X4HxClPkV5Zctuz8)rw=;xM%OK3O%XbVPck?9pw;3x3Znm<Rg4_w^T&
zxfo}>I5f0d{ijt+#`F)|i;5fn{rcdY`y#4XF`?PgK6fs5!{NT+s2@L4N=s&hC`+5u
zTIEtJ@81*?zh27+9P2NDo4iSfVXBUknD6^kTT|{L#k)6SJQdR)=3DU)-y&zSF(#no
z-g6h#f^lLcaDwj?4jKQ6>0SAq(Nw+7afuFn=`cDa0BwOEln*^gs57jxcRLGne6#ZV
z-W+*$`FHoxOW|av@x5gIh+h~co>P5UV((fxY@vL@r&Jp_5G#)>*f1NR3R<KEz90U@
zm8gX$oGTp{r|^RN_!J3&L9Op?)-w~htGpB~`hl+V+hPMPS@?Lav+<5Tr@gfQ8|lmE
z8!8_XOE*)<=S{zYa{nH<2Yv}uJ`T}N^KhEvUlPDbV)pYdPZ-XzL1^XKTc!4<S`*d=
zL?5!a4Xb%A&htr-8Cz+;OfpTe<H3|U_ASFTmxkWqQ0BAqxgcW!4|6~Ze0h45?{D>l
z`iBPaiKRo!(e#+J*4Tnu=JFzYoZ{CzonV8f#dpE}36Y)Z%ekuGsv^lx(}Iq7Wy~r|
zC05r;c+}XsO%i3M8m`=SAzUiIIPSyp)O}*Y)4w(0x)PM|JFXi{I$qDPC#fmxtn4TS
z1|DNfaQays3A`(ZrAXbWB&C#mQy#+LR8`+07ARzX7XnO&-wG6+33H=7isw2=pvpL@
zR%?R}a`a!9$>zehu!C(U>gfEpdq`vaDp4eps-Vp}73+k{4cu`%UBK96lgb#t?zwg@
zG8td`RjR4F+dgpKuvhj#YS4$c8>|y_@)mcz-RQyO@zm)~<BHR<<WzF+DE?<UGk!_n
z@{IGRZih|G+vbFa9j<SvEq(dvFKnJjvGFW%GOqc)ajl8fy6Srzcm(%VofL?QIGju}
z&RYGd^Fyo7H9<E~cyN?k=0Jg)fIFXkDxzyc4koRf$odxq&&1k!OECs!E&aHdLgY00
zxxMO^+9!n(717sQx>3BbUX8lnli|9RN;$_wt^@zVBc+}n^;pluJ)pmSmYF9oxSS>Y
zQTr(#f2fG|2;9xhY|`BG_m<j1lqbHB>egdDsLek*f}8=-=OBU_!3OVp;PT(HU^GU`
zJFv1UKLJ*1124b0&E>lJOT({mqnom??0o#>AX;E;X8;+Fa-WB{suHX#q{?m*ibNDu
zHVHfVAJztQ^W+~q`EUw3t4HvS*S!;WdU|=^sHvA$Md{t6*GYrVspI^!UdpG$WCsDJ
zV#zT!`Wp_zFRJ_BB37zdOC(m45RVNcjZm2qkAx99GSIAnSfYN&5S4;c0XVtfE&C-c
zkxy2TGTUn4<N5u;A0L`-;xe*ysyo=_dQXH!o+OI)D*rNr6m7uDzLBao|13KuEbjA%
zD!(1nAO7}Q;y4Rd6<SkgMQ|!|?1X0L+%hzZ6*{1=wh7a3)v%&M;2aI|;Fegwr>(-1
z2kKr~W8TQ)AE2+#c}hI=kQ`<@y~v;9^8O`;h&10MXGSrs7=->m1v|Eor-czyh>_<G
zZkbm>dIz&?fG14Hr^x{x8gS#<9qfD8+alzgN7}y@jgHChS<mv-ZL&ZY6CUoaTh!bI
z&PyJ3-IkSKD}VAolbIsTR?7$;-c>g8%IP8VUrJ!dCQEHqsAH^-0!{n*b+)Q07|;ge
zv9=f4%72e^2w7I@#*Jw`)Xbp+zt%GG=6<{5KRk!cNjjX>Oz`o*EKxQFi4qSORG6V%
zSdk5K3`}Vo0V!n4;p8cW>h{8fCl>DH18-?`rt)Ns^cIaGJG?iZNj;L42~slZ2g?7B
z4NoW;Zuxgq9uaH<^h%+aB3SDC<9qeptB5a63@b)zy<OcrD;pthdwNh6byDg)q8flv
z9bXh4megkb+^d9w@7;*%?_=M#tGQKIzerCtVyIK(a6~j^xc<vDpmlaIU_9tl)2W6~
zJdwWitC(DEmhfQ1g=y|V<RuSSkowA;xLd;Ve}}^w0~FELyH^`pKu+nU-_kzBK|E!)
z?B<+pCJT}b1yIWj@(N%8J81gf{F5e1w~HWI#~c(wixXSfRV7)=hITL3K2-7uQMsV!
zl;>CpE}x*53y6#Zy2u{JtW(jZk|XA&Ff1MMZY?!W*J^d?Ez1Uz^6-0d%@J;8_A3<t
zL8O(In7#Y&sVfWFBF<0%2Z%#00D-+BuoEkrsUel~!PKQwY#3m6xh@FP*Rc45N+@fc
z#6K@Z`|QNdkqunpz8AeB9jI|IIL^IY*dfsgwDoaFXjj%&$rfjoFodu{beUa_-!px$
z$cdhHk;DSGvSG~Wg(KU$XSGzop+&IXdFaG&sX`N8w%1CBUkZ#U=dKKFMbQB`yodDt
zUYPS~hk!)+p-IF+-3N=0{_%&;Y%B`9m{m?G$Hby=8^Lkga5=ylA85IXP^*9@sO6dp
zp)mZKa6Zqifc39SVFDSw<DQWBjXnq0EE8Daq^W4dTtmkL*+Lz0AOn9&+0Ee@-_cTZ
z$c5CN`65^^U1fNzn_k*m-Vw;Zj)s*=c&Pvk%FB0iJhLWh&3&|_lrIVAy^9}`|Lcp4
z521P%d1uBd*{yf2S$u!}<1GTdV%Z4IE)|ngM8eUs#7MZ29r3xK{HU)Fa;}SGX-woy
z8W^uT;)FF&xgFkASD|E=j;^jodDM{kXIF_U%)hOjOdi|@d9nR;_7ar<vyuK!_)frm
zd4G)`Ie7<W_L0~pX!xNXo=OQ+|0O(L$yg-Q@%e+zGh!2Uygg0g>{bkNQ`F-R0f2op
zMhJBeOM{zDa_T_I0W*48iWe?4S+TttgPiOG^pfH_E|V&BaB*V?B!1TRC={bGYHv1+
z?3T$zNTtGN(`lh}=)8UQJih@XT1R|)oj2e^?*8``M*KXTwZ&A^j%AHzZNtll$dYo0
zSAkC}>~3QfN!op5=Gh6?0-~SnJhbLHYprSiHc1{^P9u{B{MHDGPJB=*#YlmuWP)Qr
zHwh?<E+1`FZ-*shom{Zs|6MU5AbvMrfxjR?9GMRtNV;D9=dH))0F*B8@U9Df%eaG~
zT3P)4S(e<t%k_jil<)Pd#vgM~ZEpTi&#X<j7w{tWLNJ*>8^bU_Pvb~C`p`n^?)Uzo
zaEdyX6KL|=-bJ%mgYIJmPispC5WTvx>fJA3Ee1ZD-N$j_$>qcD@+jLe5REE`RQfNT
z2`8o}H>s^rw7@12p@V129(JcN@lvt&<c(!wqm9ocn*Z!g-HxOPWm<=|N~+EZ9$i6?
zFT>c;nHskY(|M4FW*I$3c6USGz<u^%sbE|vy)5)s;B{E}eL9I(=4KV_AiZR|vkqZK
z9t$YYs)p66)8Pte<+7)3chw=K%IjBx);;sgDn7b0b_}TVk-UbXYf%6%RGH_@Ng8c%
zTQ(Y+>G@el#PVYWt-h)=t5=21=4bmbOfLuDjik=R+9BCG=pUsXS*c0R7dMDW+yO7V
zE~l4GweYe4nmS(MU`$TIa#W)KH~4$}q5S^c;pA7f4!9K3u=8zw{5y+w$%o>|#}xzo
z3!89acvjPA<*j$Wu0b5f6fQ-NDJ?7S9v6R~M7)x?`vU5OO<$WwIJR?>^+y;#ejU_$
zpD;!)u9kx;ZW#)sQXjH8TQAbx_>Q?mJ(u;4)DZa2kX^Djk0>;K=puFK5{yA46y_-s
z&EGJq1X<<T{-epiMt-U~3r$hEI`))srn0}sR(-cTK<e%leQ4w3Q%E}F1t50WS$cAL
zE+BbLI;rn&^J;QjD*15PS+cvkMashEzO#wm=cUMPKjIMojIC8*oKK$n<M4jhpQ2&!
zMeAhrd-7^gS;o~Y9Ed7}9CLM=M?d6Cobt(kCMa(rYyds1;ESAV=Am|V(ELUlVi)Um
z-t3*?R>@+b+(v8E0f+P6?s1%sUS!x-kSwnIZEcGSp<zh(11`on57Dk28WGCO?=+yh
zz0B{v8j^`e*Q!Esw7F>uMh^<EpsX*75ysaCVFf!;ijr~O_omdikv8$4oqQCTA-C1h
zX|UEWw8T+3BETB><|SLUu#r+v%_ie>i_`IfSm3<9eNm;X->L4GGimP+8eT8nn`}Zf
zVNU=023Xc?xAQyWq)FO<WBP^WlE+eTQ~X|+UPV>qu%Hj|ebK_CGMWyjrC^=i!>%ax
z-NGRO_b~rvz?)in9jbTSsC)H8K83tO-ffQV^xJ){F7C0s{){x@UaJUNv==NN*CD;1
z8ir{<VokCU9oA%7n{hZb|I#u(E22)kyLRVqrcb5l9;N?yB@ft>f#S5_zs&1~{qc4M
zoozv)#De;R?S=19PWP`*&;E(P3(^)oQcbDUk2A@upMCWv^;Ty7-b<~%YwZzY;Oq)|
z(4IE+{Y6#acCZ;z^_j~fXA_OM3@T8s=}o)TL=SGH5xi6RfxNWx_%52yal<a_!E-L8
z-UF?In=3BWl&CO_dxC0Fd{a9py>#YV`>Oxta4R(`>YU9)WXY1XZso_uiDqsQHR^re
zE?SpVRf81*)oVIwV&R<l4;I%Bi)(78>x(?s#MV3bL&mCx`}yH2J7fGpfMUZ8jM0&}
z<i@=uxg+gcGyo~?`viNK7rfTVL|1XTVSRclU=h%~J_91n@qvQY+8*%oL(^aN`9a8T
zg~PGBQ4`!fh()pJ{KaPtG#!+sVFpY?bkS7}6awLv;DPf-Dk`Xiqh*Rt!yi&T63?dd
zL~_Vx{P(4967=ebEax)z&mSxmTp`{yo>(h*v=$f4Mo)_UXXlhgCts}K!OnYLjpOhg
zXk(Xbo7JM*`WQDVfw|n`-Rx4AO1@XEF0i3643rw6pUr5i>UNtn<Gq;E#yKc}Wl!NC
zQet5;qIK>|)xFuN@CJybjg#Ex0}yV`nJU7VAuD*q#-zu=rer4v=)G|xU1M0cG~EK7
zr%PDC;e#yM5C-JUG}$$!I%0?M6L>kFp*-|959od!O+^h&r<hUo<7AIWi2(&1jma;$
zIX2wL6%%`*S(nU{7>QWm_LIm%l!c87R2d~IS%>i&GR;;id)Kk?X0M+GOYGNCns`CE
zku*|)wVI)(GAGuV9(W(cZ6}E+ULOYO@;)|`ZMqUA{2HB_B#X%gKuF=|sF%xLJDtkX
zMUD>*;%|S993Z_Vk2oakP$RoB%x|ipk_<bB8;(>3t~)hf^9l0^V-@T&^)^8UDvVvF
z`)rC0NLg3%QLGPy9EV^uSEgy!zyftS<l<p|r$`cR@Giyf@x{48=f&mev8XIXe}coS
z5($c(+XJEDsU-||&&0)x?$c9<)rBiv;WmoTwy}qXzD3G3<u4w$Tx?ZQ?D&*6k$X9m
zl24*JdXi}F@1B1Qg0wQl8VdE1HnG|3pv(Z=yIrsV_&7zdgJ0giw~h|`-;k<?E$3Ay
z5wc`L#v?9j#dq(XMyyoxqBl<(d#naX_Kib1yJEdAD?P8TmnG?Y@yVCkxY6^D`<T?3
zr3v{cBcJQ*%rE6xJq@+(;J~w_9L~tZmhVr`J?tU!ZrbCDE58dK#h>j+AyaXXe_K2g
z<X4sR!6dbcR%44E_II1WwhbfE?jww?0L&ZDE$tN(a83>h?|u(Td2ThHZm&&Gfzd08
zNf)Z<3Yo1_Tsp)u!C~7`l<_>UDo}i|n)hUGj{$mi(+F!OK|}UOY8F1#p<s(|TF(1y
zaHId_vM@xH@c$tH-3|Y-Oyw_=LZ`F$4EHys*OaE5`u8m!MDSN-tDHZx2vyFr3IkGf
zN^N;zIu2Ajujm##nEOxl_w~+{(w~#XE{&*A0JL~6GmynIyyj>G`jwJY;LguUdN-)#
zjT5KT@BSg$Aq;`|%8yYD!P$dY7!vlWht9o={x1woP!D$MwrTDj*9GA;?XC690lS>V
zeHb=IPrUqH6jw-j;9pdF${D%A&VYd#A}S~IYu)R?2NOT%RtOB+es$SAE!W?Sn-G+f
zIJ>(Tn#3q(UvH*h0ESMO6DNN;chOvjxD1Gsax-jf&{Gsa9l|f;S3X8KCptkZzn$%B
zCyM2yS-%dW0YUe)TFp}gE?9pxhfz|)AEHOpD&(LR#_{8T`L@nchr(@?eBV4#Y;(Zx
zFO5l3aPJ!ewKt^xI!=Rl8yh8&WPfuOstxRA7p~4fkXw2f*|Y`!@G^=oT;Z#~Fjkrn
z#7Ueu%9~WfgaPBb!gH2_95ByQ6^Pq~Vc!P7XCM&sBLw_R7xOJl`ryWl8ycKp&d@Oh
z=L)Q>PVZA6>bU?}skO6IQ>%mt%=E6d%i+Du@7|T*J_&*cv91zuH%m2z$Muky8;4yg
zQ9R#{s0UY0%MX2lL;%ntAO|-c={>b5xdl&t(nK}(;--HKw)ov@onzj_n}=`{MzHJT
z`BMJn=`T**7wvxpzq@{<zbxk)Kh1V4G3;ygKWj7(Dge$omv3$BxB(ep!*5B>B`Uc<
z--TjHpcrq#v0(2yeb6g^nYx)B5Ls(Dqul+MRr0-&uS3pwp$7xSZ0x0(@4@pEfS>~y
z{n~6QaPr7+olV?8v6n2&i&M;)c+4`FuP~w@mX2Om5R7gE*=TwT^&!T^hC=v$ZAwMt
z`t2oK5h!r8R$>u448KTg-P7s(guV_LH*AdST%0CM2OyUTzdI@n{{c9ozH>>TN%w8b
z3`tHtgrIG|{z}8->@l%t@iSh5cIIb7-M?*riGMY3Lj)KZ_FdIz3Kc)XH>3X8@%k;n
z4U@918)#fk)#AF(J{p-3&gfR}+MmpMe@}JKWdJcurL>v_$wKR!O08}km>Nh>bn_C-
zdBsbat<nFQ!as*@vhN&^A1`c&7`9+fHnuz7SH8_Nql(&Wy$m$_1UKJsDvQfDhc13m
z-)@YdKietoshc|XNS#-i%O<fZt@^B)B1JNp3#6*fzJc^pHVtPYBw$fz+pXTrIBlLF
zEtR>l{08MITh}@YcAGg9i&22&VZLoqo^SI00>}&aIvkd4cih4GezkuZv2)}6@xGo9
zy@3ZunvIM~E5P^rvE94biSmmv9p`T=tuz^{bDc3IJhiw6(W=rk52(9&Jw?~4gaZF`
z)ut(w30P9%&u?LWbJlc=Hy#sJq~2E^eKn`_3`DnT&XniN&CT}8?z3;T`>grz==F_k
zJf7B0qZ+t8X+d#Q+}Ka@d(X}n6}NLTzF}kZs+*uK+6xAo6sXM+Hj*pe2hG+K_pp&=
zftN-=ho5|j*ScJ4X*msL3}w1{mM&dMAMAa|dRF-4!D52SITZZX@Q=$X$mO`1lTr{2
zvCO~RqARETkNVcX8U3?H`K>3g#CnlFRR8a#rF5zKr8sBaj6di0BwJOaO${l7A!B(n
zg2{iem5mxKYN}!#fAoO{Pr!Y#%B~Ztiq!hrJ4u?PCAKCB|I3@XEISuH9NYdc!;H+v
zQxO2$W<#cm5U@3yOK5W|@Q0uX9bL`pHq))Gt9f+*wqpN}@J4SP@P#{APK}a$^?Vz+
z$~PI*U?+FqR2-TP^B3XPct{7~%FT}5rbpSxrZqyPKTZrCg4r`u*<r~IDpj5s(hz6`
zQO<)NE(Y2qR06Ruj7m^5YUa%&KPeWk-pGUHn{`r-p#XjMBBr0`o4JW2m{0!{g?kFQ
zc&=8_@^(;rr-1$`PkrUj9k<Tu@{ivZgnRCMW+qT}=$q2tyAVFAE!1*L`JLNv?1P&5
z%x*LPs#gVJ{HQs9kx)^7JTG*?M6LHK^-aTdDvD!1JoM_Ez*dZSrarJ#d@`g};S5I{
zt)Fxn&heHi!&9`OhFM(KaHY=Ck}q$KR_OA9+zipvKR+hwRHc}^0ANE6DD`2}{zpAD
z2+-3z9i+QOO8gCX_~k=dF)n3aEzu-WqXtlMN3iTofOZQ18HOoc`h0w(=Thf6NIScV
ziPx$PfhEGR6(Y<q66xV#-6HHhMj2lrhZVhFSW`{}d?QSXb71sK=wDA`rxdfKUb(3S
znH>cP&t%Pl(JRlLF>?S?r;PH*6$oHEdtAOSwGvgC!U_jXszdE=16dR|UVbE<!o(Uv
zi+<2d83F4+MK-@tu}nZDI37+ATgJSZ__&xLj;^p`gex=7+B+TZdb|F+nlr_6emguG
zs@i2?Q>84s!JJc`tSA@0>o`YZ>3*j8WvD7dd{(<FN&<D)ky^UC?M_k)LBESjjqa9n
zwjJ1_!X#Bjp0IqLcF!n)w)$~w++6Y0`F_wiMOb&E9Vrbo3%E%A?StmM72dk4#|7c5
zy_2_4ud|-u@0<6`*;z*b!KBUz?baXKUR-BccBzMw{k<M{R*XgKY2MXaz7Eau_d;LW
zhWrc)H612+JuuF`{<=k$!$!5%K3RteVzgzal7ur3=#KEZ)&A3_C0L@~{_d#gnUaN6
z^t6*mq`bqRu*?M`^zg=TIA2fQM*2f@A<OQA;w;QA@uQ5BHxX#3{x&@@A9DW=67J->
z*+{0?gz2z3iasJvnZJ<|Hngl<WmTQ{6j&5c3W9(C;nDd%V5Ez)_cXp@%*tAGjHbAZ
znec6{?G8tFc4<IlnN)Osy+?La+Dk&}z2jGFru^flUv6fuD`~<bat2x+sU)5A6$J(>
z=GxbI0jbGC$AIU2(W4!*WOZf6W5F6tOR@2)(vv@$nNY0{s;N`^iBur*+ajZ3C?^ou
zpKWWrj|sPXzBrh6Hv2tUOf_MPnaQbcnY-<EV}9TD7YOqhTu)Vdy2;#EEz#3^j?p|<
z(3|v4(~5I*=66nstCzof0};HcEu0EV#+}uBO!xle!yu;tS}vDE(PUm+@N@%VKS7fT
zmMbtmrSl&2sl%pgiDz{u$b-(7f@kV8Y;aTTd6?R}DD|#o2{*C6W0pz8q$Ab4{Eq7?
z&)-l=?W1}_^>p)}^I_#KC4^=FS|{zcXv53%Ui_I`>EvIieGl~!+k(_G01Lx1j~hlK
zcb>)CNriOt*8ZS_{{QdX;GR0k)X4kS*;SdSy<GPG4GX!abnag8xT~U1)A*Hlk%HuR
zm6m=$CqC})9cz0(7<gOo^K)AV``n<L3KJoG(+7##n3<*%S3v(lNL%Kr3KN@VWe|bc
zUBZkw^7nX=Oo~2RACq~I4VXB?OMp%CL<iiXv+Q`lXj^p=-K3H04WrRLai~-!AhDSk
zd)%)$&OI7@G{%bcAsN8s>IWV_RFL|6uo-PS!_Q=bD0Bw;j(RS!cc;XdKo2+kiB4w?
zxXq#Tc{&$W!fQ07jaESR5XhoP6Jtq=`>DEZnz>Vm-c&|7Hk~VbQf*()|5@C%<3W9Y
z`^O@Nqv$)_FNnMIh$zMEV%3UtOV%Adr6RR+#v(NV=%P!2m2qXTmrL&t`-@~pZNV)f
zJLL1}jL;%p$}rk&I`T+Adi#4J{pQ1@f;0m#z}EQ^$K-W2it=g9+`8`?p7weqAB8Pv
zXD|(zf~$X9C8%%?c)<h>jobta=kzimAs-TMrk%xFlp(Jx(i%8M(TKH)@Ti%jWxy)z
z`IM&&Qc_G*<MzB~Fy+Yv^+`Pt5AVCKSE+3pOHQ5q<6E=RZl<1#uuvU?^mh9;)TZS~
zRoon%fsFi0y3oqtvU{oBuXPj`5MY<EDJK;TKu*3#^CsIZG{)%Qvw7|Ie}_3iho659
zc$wz)H1sX{;1m0|cJr|5R(2<tEOZ32kz!BXcLo0wBTKIE#JwR9a9NmuanJm|y837#
z)G)0gUkd=V)cxUc4i$RUy`@?Si0gQQb2Nz`GI35K*aRyNwD8aeq_P}ZgJ;e2LahQB
ztyiH8+_Piqm_b$Q3LvPh$?@PRW{vLj5W$;&xJM8A+Z0f8E-Ns8_87r;3%-6EF|v~7
zu~Vc8^$=huJ<K-EKMtAK?PTspDpz&OkaJFphlO7v-MhFhIOre(eo_m{A{Vkk$FDzK
z5Q<v-zv^yU2Mx|%NR;jbX=~O!6YOHH9va9j=*T4JujgO95#RZt`OngN-17GAZGYc_
z<Q}0OSv8$%ns0-lQXKCJrCqz4@=-!pg@dl*Zs_%y3i-ED|F*}Sm7+Ua|M1Zd9&&*G
zab?AuI5OC(bVls;?N4|>!_2SZ+}e%j+BN0`fnrTYPw-5o?B4*!>YLu(8UQF8w<Ly+
zCwVJj0SULJ=d2A6bk&met5h6`(ga>RMq_n8g?JGp0RpRZ_~(;Do|9#O)=D0R=vC<P
zvD=(Z;2=UkewG}rtYrzwodsLN@yushmwpbq0z1@|#NmjVp!1SPuP;}0eNJ6fwvD+m
zwM_ae+fY&ds_lmCyd@KE4kQM3p_iXJA!cLNY$~QQ=f?`8L8oLOKd0h<h!(BhGA)b#
zO;K!rI8~$Y27Cz&2BlbuCqoL8PcQMus^MKKiPO7F%!YH5A-O-_;I03oI#nPvE7#9_
z<=Wfb4mvMv1G2S$tDPnwdn}?VuYS4L%{*%!%HuANA-;%f!#Vo@Q_x1f@!pRxtMNa^
zj5Tb1<Hm!bqF$6gDssatc-{U=JRsn_CGMlSIj*!k&JLj%wYxff>#<jjCGn>B6&u|u
zIv}u>;?zNF%;bW1whu!5aH4s*jd}p%+lupM?hhz6b+!_Ezb*jS50_?RXw>drMenCP
z!cl&@J)-Ls7@C`Z6Z~DFz&P^IP%(0PLO%Z*35alSMq^xm?8%_x8yf9_Hr`brDCZjy
zN4|#Rb$DM{j~{KmgUg%z#11y60v!WAtk-Z`xNO!}7J%{%oZwFjn*Q)3O!ctw%(a6^
zpu_(Ec4sEW;`E+VrIaV+uiZpCWEmkJtn2Am+1z>(fjMyid+&XfY7@Q=aV+$R*EQu}
zm@d-L6WxyZ7M5QT@365cw9|wf;$_{s+#emR_Ar~3Q=lh(-S}Pke1B_Lg5nM156A4*
zy`UpaOQLtfr~rT4r9jZ}H2sZIo*PkR5{Wk~G^CL{R1$%Z4`-SNJI`zEPIxkGET>OT
zWnj9iq>EVHsczKkui+jmnUGkoK-Z7|&ZW_u!@H9})+?xdI?u}Q&`&W_q3sYdkzfsm
zm_P+qG#+8$DVv&J7sScD-X!58Met%%^8jsNdCnktN(LR5e_4kdAnx+1xC<Y-b{{qa
zAM@a3n~$tK;oB{LyuG&*Hh>SyAcow8ceekf_tIU@v-{-myesXoI?UJA>WfP4o(O;c
zE>-LO<ZN3h3+KyvdZkN4pVX?_#K(!hB8G|t)?3c@%*tZZ%Z>j0zKeRbWIoX;4N)e4
zvhb;T)-Xg^|789v4K4UX@4C7`-c>~>PhFcv$2ztbMqy9jx9>a=sOq)Uu9}|>kIf@q
zF`*y4ZF8qRUDZCqdn7q=p@I7y;RiF0o#(Own{HnRPj_?e&VzQh2gj-K)XDqZ_+<uu
zy;Wu87C$H#@txm91VH*`u6y1$Z1U^4o?B`PO@awyDS42Co_RW3ot`g8y~TL1L08QR
z0d?BzvTe)J)3Ou8NgH5N9aza*1=^bp&1}m6YIRo7XJMvDv98+|<nEXt0@Bk?kofzy
zKAAay#0ZGzh2>Jk^kmUP(aIc0M#~K?vwM0nP*#DJL;P85X2KtGSt6~($;*Q==6&4I
z_FNJV5pY^W!rL{0bgzHPX*&T@Qm<JOHl2?XI---j=o5biJW3itXMV}K3<Vdg0(PO#
zUs5+@>ex2LFkt-UbmvzTV$)kJBe|dj8H^mK3$F|30{-p`I8#1uHm4#4G1>g5=frTG
zT=D5iH%)N<rIvBu6IMD)>NzqlBq8H*YqhoF@5{dJK(;B-s!?O*s}X!RfwiCS0Zmr3
z8S$4J%e?i`T8$LTw5r=$8J}vsqWBZvA-OBnjWhRtB3}io)8hOMU4u2iU;<DiF1?kB
znacf*3EgJN)<2bv-<R}$Iwn72VQCUEZwn35tk}H5GnMZCwRKU8#e{pg1RUiPpfZ5W
zHa$M7if^aP)+>p_A!97xvjQwYmfV&<pnt2HaMQdVGY+Z<vnws%l}~SHF^c!SaT$bK
zD{N}Rm-bcKS8=aln2UtN@2>x-lQ;!za*z&Z{pKpSu~oF4VBDST>E+Miq1W-2l|ZfN
zkc)iM&p$T|7>XvM22M|m29m#Nh`|C@!Z1@I;TB_9dz|@kaa0_fRixi3t`f5D<}Wqy
z<+{h!Q?Sm((p-K9l|z`W{@=q`N~v2(^XEd{%)86pmk(;SPoGmvUSm|59*8wQwvHK@
zI{uqczHePn6Q0hZGNzl*HY8=y{2%I!>^N3bTA8!!6d;?|TZvlqsFL7ruJ&%i5gII)
zyz^c>YjCrz_?_71U#*?CP0h2H@sDDuc@xC9I&(l0YCy@PZ=^SrYXtoE6tfSN(1fN3
z*Zn;>CSbE&Y8LF5>=(V$WNel;-5MId2@qmT+f*2c*{}s^P}dAn1?l`-BDSS(aItjA
z&`fmEY0tjdTLfq>L|&834>J|W=j;yjfZ`^4a3`lo%9%h;l~U8H^AA?gbXk8FvBYdE
z?ba?n7t+dUZ&ej<Oz+zjVBw!C)LTQMDfQQ>z)9axlv9x27FF3aYzLZ?Wx0bZPHu<W
z=KJKysw$l|Z;?sGXZL*|&A$RR48-d+S4P;&x`O%#S8-`~aPJ5{qYCzq=4f-D#yeKt
zCj?M~ItyWD=X>VdAe@kmYrxO@MRj=l!cF^`MbL)na^rjSMZnyExyL4$6=>x080g-_
zUn@IQ5L1!XEtFcMGqx};G?h91Vu!GWk!_$Qd*jZQz)?&R2TZek4Fbr(%2EKqQ6@vu
z&ORuA`{iv5Z7#M=Gu1L^5uvqD9n<qzVRp=1Gq*<N%iz$-3`(lfZ|J0MPcLzk6IZ%V
z9wQn;IFG2$pfvf2CJ2NY?_x6jNz<4Jd=nZhT!s9t`(-+l|Af$by1r;acXJeG2F_m&
zq`-4j{*_@8@CvY8a=JXIwD8<{Uamp$S=vR|Fi2|GG04|7fPJn-VAkYnbuD}Ba`MFX
zc@&I`?)GoVSK*^sN0FwL+-JW$CNPJ`PzLG#*8|-}o3}l=c*x$E)3)nOfkE~w9l}n8
z;a=IzCm~RT-Q@?<#c532^XpU^@rPo2ecE$+A7jTo#cdKwua|%(%`M8fzFC#V>U2v^
zV}>hBX*9z(^8!ZHeb{E4@#U5>K>Y<P4n};^RuTn$Nbirg#qpDlZsVk){S!q^7bnb<
zzNbBNWJCrndv^%~gJxq~AYQgTs>;4yIMdwv@7v>F3c_6^-aEq|uihc?fmT)JAg*m`
zs_23vbN)H2X)iI9PEKq>12>Qoe(D0+eE>a+Y=GLYI+c>325#i!(6`zDLAfc$rWlMW
zENJlM-NK4k?kj%;g67m$&jvR+=~2r#Q-X9xrDMW#lFmvAP_-s(n~C7$|10(Kt~J|W
ze+Xi5`D5;v;gOm})i57(*aI<G`HR~Iz#)Y&8W2gljP)80)OVj1I)N>Av=B;$W2Ue@
z$lW7sSsM!^pP*f`XXcgn5p6zDUur7Xy_!Q5$EpKSxB5>4tIhU|w~t1SJa!MTfPJ<^
z`JeUeIl$PkWvXuBc*u2%9_O{pm7F|Ya7x@Hx!|gu9Y!A)S_7L^SRe@g21=!I9&DpI
z6E%HO+({mB!LK~uct~8OODpi$WertU0DaIMFwe#;ARbW@UFy^-Cep9tY`1=p0Fk5i
zgq`H<7tHAwZ%YP<qmMvp2mb<s<9N`qc_v_N3*uN4+F;Dw2E0f7u~}3bWPzoSN{|Rk
zSyo*4w(C!I;X^;xOk}*@k#Nu|&1I?G+q84ZWLs3&zYGEQmKBfhuLQRLad0!0di)`&
z<LkOw%|h>TwpVP|r{((8Jj_ScSw{9p`#5ucE_`A3xXp+8)j_xlPvP<4_Q6`W9)~48
zgAbHZffgF26fG>=)9HPUWIU$$Tp(7J!(WbeJ+Drv6=xUu8u3E4Rrr0}KVR>vU_mOo
ztNfiW76YOZI=q=BoBnWwesr+-1Gehe3jfQ57cYo9{KshGaLIwjAQwCs7uWw-DO>Wa
ze9q<i(7J_vSw6I?4Q0)JTH#Phxp@!koLG7#dM;%Xd?=67Zhg=rds-0{@MF&*L8>Yo
z-mM<*Q2D40(hh>~Y%~uGV%e4z+c`L||NU0k`3EV3_B#9+O6nK3ZrLW*@p8%@G6UIm
zcC<<xXira}$35GU=e#u&v)#rI7<TL?u!_0)lN|+n(!+j{62~FK_D!1zH`19Jp^pcU
ztD1-_^s_3joi!~#I#y-2-uy-%Gs|zysPGz*amKzB!K*ShMSH7NbdqoUn#jDBYVx1Z
z=jFjtlkLxF)ypL_a%^Y~2Pb<vjlI5?dB04e&dd?Mr7DNnn#4~qv8+~n-r2zNOmPlK
zC;h2LjToeA8`lr5HMNp!ed&A|cgp`OXY&!uXuYq_!p_!vH<OVb#5GwVYSN0rm(&El
z42=siFY}#{WR)rVlw{r4i!_uNqbXy7yRdPU+F+sdq7irF+w<;jGNPWbOG~V3DBvl+
z_SR)gb7hN<b&Ut2=-Mm9zNjPJfhFoZSs670k%M+J2r)1*UmLfRDDDa!m9P+&YuE5@
zx`#!5{2jGkVp`*hxB)c^OZwAa8(y+l;USh{iod3S+)(R7_F8{n!c|daO1!S1g&K*l
zbxJ=DH4RAp$c#UIK~NHW%ZIlG-vo_*NJjki8dE@SnT-0Oyy<hMI67ve%?%hMLNPS>
zjD<FwpkZLrWZKhI#NW5q3M)Q)b=%*nF(5->N>gIvU0(I=5YF7FUHjg6V^5w`OR;jP
zx7`)6X`nAA{H{!DJlNSi7yFVxj>gESRv1i6v`yBF3ou=EETF{sEuOa29Jvlui}z-7
zt+HgktviGiNm2Zue6ghX-vjO>>5V6dxNi?tg*ToHC$AelO5V@j2k(~%JZAlXh<X0V
ztoW7!XD9`2>-<!}%lw+dl9K+bKN^Cz7Fbf>I+5b?=rE8;6qz`!mwEENA=3U+WH&*N
zAll<)rj;n<{|2Ox{DQZ9E++n=U!ED^4#e@ZV*W?;6zX*vLtDOnqSIbc=@qFn|KUb}
z_Yp(BHzbtV6zceb%njLiD^vPDr*cc>b*l?Zr##>@D46|US=)~{G2}xa_Q4d`YOwb`
z-~LFC_uDI;j80c6Cwe1HyAQoU6C?cFl(dwPlr%o09Eb15K=Mup>4PA1h~8WLj_F@S
zxrL8zqAO;;SxAn*F%S?+e7|iF^XCDxe}%8X;JQowQ16S#Sn+hcfQ{%j%+_*5qb*IJ
zXS7ElZveN5{CRtv1E=4=tQO%Q6SsIIrK&`09xbA;O^I5txe~9MZ_k2ndc7--x845y
zW=bCN0^lrZv5bD&^?ZhL{We(TBL_{fj?$1RU1_fCrH#J*bMpp!kn87%8p$Y!6ce%8
zw|QxvjMlMRb*$Nch0xHCP?Gm^%>mIIc!QPhg~RTff2=DH5)K`3N6<fZx$Y`lMXUOe
zN7n~mUbyV8Br!=2J~k<z75H}RW+4&w3jXcAt5KDmoQ7k3-><c>!jfL$^*z|gwp+~-
z8*)@Wi~{6{D;)T{ovm!x*w9yI(4)~U#l#~!$zyOF(xvm}!vo3;lix{B@L@K$8uOCN
z<iprmjYf-Xj1h>&J4t_=4(5*5n9N*tx)ykwtI5Y}Tg-rbi%#Vg7>+-n9_9zyB_u}<
z`GKZ;cT6C?K8DVa$gQkKiw54pm!deel3eF@nvhOFnO?Dd6SNsA>Qz$cCU;PY?&bYc
z!e`J>;Mcry5zQM^cl2|%bei93AAP%e(S{DJI9if=YS1`1t2ZO-^Wfq1aX%+j*^d|o
z^BZ~-xxpnTVaBJA52`ucBn;>xQffXja*Rs&1Yq;N>^;d>jT@zbdn{4;Tt8S(tC`wh
zx6RH^&#RfbXS`+IVD3X*fuXq$<$uPAduRTqK6gaYyYl<vfL7UmA7li4`9nLqXad!5
z&vE(lRN;RG#NmFrhrlVk5;y%sj^8V-Fnm#9t+UMO#}*klwK?0;W#8>qkP86(xn~xo
zd-H?l@U2sZVvRx!dd4#_4tERtVarLh;|PX!IRb9jX1U4#RufeFJ{@usy*j+rsHPZ*
zUSodC6$yKH+utAlCSLJKcuHm5k@v&`cHv_i=c71>8T^WQI(DKAFaKUySw#U)$(}5|
z`%NdrybBsy;F157878#WxJQko-zJ2af}sWJlO_~y!~~$-<_AY=P7R;vSX{#qXUfb&
zdc90LVgu({P<wezS*BK%viqsmvnM-(NqGsMK`dnb{c{%lFW-j~VO4?rRhdl_VB8Cr
zVNIRan}i9UiCn-n;#+m+DW6Sg!dE0$dhV*o3*VmuUZa?d^}3}Ww82cUG6X{pDI~|}
zU(=Du$4iVO#XG^fXu-uprI|mPU*fvENgz6=GB=H%(;u9b$p465kv=MO|Gsp4=sBWV
z-6<`+y<N!SF-*N-=w$ck%mN8F5v@1o=PZ5vpy>XYw)bJlSmYP?62$rIs!8vnNLa0R
z&ZrZtb`R{27c!_;=iV&7ddJXYGKL_O#zNNYamNbxqp3}*_oCuR0d!6WtyO>DDhgwK
zs)9ZRY`Ir}4OR=KST^tH&N_+_t(xrfU05r7cE_996>#5NXRKogO{U}K2;R9*Uh<co
zDsF?c+!Jy(OA>~!n-wmx(K;)|ta+l6Q;na!EGqIpj|ZeomXc|X@9j|wtRoiDDw{Sd
z+{-wtr)k9W?YXv=!@2UNZGEf@etQVB71v^9p%PTE^vH=<(ugTIVJ`H@b?Pf+Y-kHM
zt@E{^V&3ei#n~Iul<!xGn0Bh$D7)nC<p1u)k$(SYuPVlnl=K=ah*>6mB8$`-7H&<Z
zeYkZ?^hyekow_fmLX*^k-_#^79W>y2)}_k$md5#@S|jWywF++I4qCBGAL+7{@yMqY
zawL}Q-m#VHxx5{yUtg2=8nI$JSvXwYn=!E5EF!_Ezo@g)BB``D*S!5OOJ}-mV$x|M
zJN1+nicp@bb-IGQ0xv~IdkzZI!r=q_<im@}nFhN)<KGG8iQUQDQyqDxGr|$go}+_K
zOP_-3q*&_2=UK?zYdMF&BS!t<Pt9E69v@Lf1$x?alaz!N0iLtv$uI%m7*idBe;HhH
zX4sE_=;z-)DP}_&I4=dko87+94!4}1YN=FlQ;ZW6EX=#rwI=N~)FCP$Owdm(t%~4}
zoShY9)*E`SUN?!$gZ0Gq+Vc~Vg~Eu+@qq|d`|#jb-oK)g;AZ8>Drzb5v*jX-zJDWD
ze*?=UI07(Bk-u84tCt>69?j+28Uli{E`K#iIqk)$oJ;QtJ~idAIL;Qoz~P6v1JTb(
z!)qRQZuWJht9F0k<*GJmILt{3maFANymHEHV5b!05ilCcVn$TY`vnuHOUJ4E*l}mG
zYLNV+8M-RIK~#a9&EB7SFi;i0Q>AwtaflQ56;^Hjn#=qg%8TqI;_k^Y1kPBNO5A$%
zSHfI{!#sYshz0-o<jVj7%ZDaB*aj|-%WZZ>-c{;o?+^%XN%C+$L1<f^hEFrQxRu|_
zMfE8{%kK^r4of)X=7cy7p)Dg{YQlM)t+|)^NnS*!r6;p_%36;f{Z;-@_`Eh+GhkqO
zBZfirq+Zb4#vT&sglL+&ZB=&u&?=AH$4(8NvxVzWhRRqo!-3aOp{b2>7{G2qv;X1q
zatT<GMR$6)gQlFuejc%pd}@?F7OW@e9#F$^j!b*IWSk<LG2kb_kPI3K`e8s`N=n%9
zc7_sk`?<gLtbZENT*=+Op=a{n!KnrZGgBB<DW&D3m-pp(!2W0R3tLpd;}r8MXGfeB
zlshZnkC&b>x|OhJ*=}_~Q8Kp~?>|%;%<5GCqVRg{q#dnu>P->PdM^Lq+^>$Xa|9>B
zal~UkrG`)NfcuB}A}CEPcIdG9yc~we-MsW#SF&DO%A4NfgW8b0dq}P^%8=}}CDM3c
zOh%{34A};`t$g{KJmN$WK<w39;^7xfM;{qba9BXOl)8B3%q1a?R6cltjV2Km=#EYH
zT}&Dc%-8QT!Rs6zmAu+DT-u47lL$yp?|Whqut(zHl@~-NwcojDXum=CZirWWBt++{
z51y(u|9tuW<(8_>@blfTVKk<8P0xeo6_KqA+*EH+X4M<IcMI+|G!>iaf_`ZR_l3IN
zOj<X_Q>otCs0yc0T~28E&@KOrt`SUXHTX=kd1F%0t^Ry<l8I;XppI~(GSMfwlt$_!
z)VddplQ;%hC)=h)F)3rt9TS}%Lcf`wd{(cDeo3Ng2i0!(nKjrYmu_SndO{jac(og*
zqyN<48)k4zeCXfGQ|I-g;oi$GxUJrRL18KoULC0ct;7kvMx;0ZIYP)(htr`vE?Xk4
zd{v5tc(83WB$}xlY43CHPnS)jbsIDn!dSfdpKTEkJ=EB8Y-zx)#S3sj3mMNFPl~@O
z9ek%bP?=!<Pd4vdNeK^9Qu?R&q)tO6NF_1Ec~DbtO)S@x8k9^v<$!k_406u$^~qA4
z(gX{4qbLMr-|hss#-OiOSW&iemQCAF-chQxX@zlfP(&%osVZCYaZo&~)J|M!q6uy}
zSsz@U{tU{R>9`Dx*L(pPyX05^UtFZ?YHdF1@nAfi@)B;R`5iaicNW?0dgIp<ST`l*
zrnIen^IxN;io7a#dnvOcD~1*||DS;CN`)K;WpiGFvLk<6V5GnW3n*}qhO({4dAqH<
z&OJo?fy^=J!UwUIaWX>-bzK+_x+mwJQ_o9Oxbo7_GF!khhUWRwlVKCzgYp^Vbgg~)
z_Xp;#l#fTzc3v&&gj~~`;3YF`LRX$e74{~ZJ@Bul47IMjnsd$UzVd1Xp<Vi`K<~k8
z=Rfy+v5Cuf4}UuZ#4U-yuwvs2wPJFJ<t%}o@wE^F80UTdm~kJGk8k`?FQq(xM%Z54
zmCf}~0pyTVo61mg?XR_FnQ|9<*Fi?br&n^jJF^*yZ{`fNzwS|kVds96h${=g5CNa2
zeaI_Sul}D!;_QiJr#=1vb=7K4^(Lze$-<d|;)TLM?QUb=ysOC-`8lVd?6)!L$LKe=
zEDZA>Yt!BTZqk+{!DVD9OnmAnb!WQIsqNcCdb;0xk9EsK6<Y)^HN;*S?z96CX%~CO
zF6}L)RqsG9^d^s-a=lE^!6NTwa?T#SoZ7x_cf;PTj6qicsW8!FrVDf-Eq&T|ZA~IL
zx@SGGh#T_qm*v92&P|Jl-<R-R8~2d9C<#r)hQB8_ki811Ile~owzoMy#>J2%ExM(5
z1dpyijVo$qO`%g(;8TwJ^@xVRf6mtFUWsDIvtSpuHjYj9d+dq38v_3$>Aa)a{Qov?
z)UHulzP75>T2&RB(xRwZwMT3%v3FxDTC-}kHA}T-h!KswSBXs`2sL6w%-B5no#*(|
zadJ-F=e|Gp`+Z%nSCroAvIZm$_o&#jy2RT9neaE$fU2l4D_X%HtstkDc8GC%cx&-0
z#znOtyU!7#&`!CNoP8Oba7;UZGYMdT>!>~I?ZdD8-l`5yuP}mAYkAkq5{o2*UT?5^
z5ZFC;%F#^<UnPHnxdMn7(2v%83=`5?iva47;@gNu4^Fcy|JwmPd}b>sFC>!k=p;0?
z&&G=|=Vor+F0{4nE(dr5e#IX&Ewy!TxZE#&JM>K+Cm?H$0{Q!SMTuR@Ilme4PO3tS
z)$*P#h>bvBKI6EI^mKH(n0ilPvX*ZNoI5e3Av6NGsla(eNH7IKq1Tc&zU<JjUs;vp
zVpU)8a5qtJsr&uWIfq&QFMzjTv8eRTyN0{pRXvVrkrEEX5adT|Eb(?8ycG~mEn{Mh
zEo;=O171sL@M?UUr?Od+JX>(O$n(0>R%KFGsO)=<j{L4VTpKVZ>~oIm%Kq~2P90JO
z<LLEHlS)C<PuPp_KKChlJoq@)D`#!^`pemBgRiiESId~rjeqOLi`B>PYP7eWf)ug>
z*Uu^0{_O2mmm9CosYLeY7I<Cmy}DNt=4b?Ni~b#|GX(W)Iq%nQ^N3DHV<YpRc`o)3
z?At&t-{p`Ht*LW6P*N;(@Mpe!S>oA2CD&|+r}a`r1WTQx@$P%?i0Y=gwGQ8vwm!_O
zy|1!x)6QQ?YjgP2Qi+z1Am00C%Ldg$zio)z>yUvcn~<S&2WcL^&bH%*ZQ9p_O5e;+
zy+sQ2T-#rwdXV&-Zj)jXvj$XTm=~IV6|xnWq-%qdZt^fAr<k(+b}jgU7w#m*!^Xz5
zXl0u$fe3d~$I1@`q_mtT<naz6Pl<&z%hETiDVDSjm~^3*m-KW4BLN5%5OJzx&x~U2
z^hAC+OxGkf)DsYC3j)4+L%fn<G%TM)+nz_$D^v^3((b;8l+-L>c1%t&!t^P`Btu#S
z!Fl;IUfC_|elJhRamh?qQOm`I8M6#rCn00*fi}<>BN0~howszC>Q5fDiFcrCCi;vt
zb30m0`_(CHm0ow4S8rXWEz#tu@ds-H*`gwHzUWnSw%-L19l?gh|9<)xI}oV^Q5MHW
z(TG%}9#(}`L2|>Ls@wEC!mNMB-;)UDsd6qYBLlz6Lrlw7Aog3U_X_T*xXJKluAWi&
z9=EOfHPHClv=oezqBl!dj2k{}wVW6E5#uIMBC-jt_w$S!TRiU6)yVq{*O+%$_u4N)
zLM5qP1}#senexQbC?%p#zPNf28B-?aOW+_eVtLkfV)o<t`-nH^V!zy{hBeMU$HtOZ
z&=ks$KdtT{qx~R{e<VX{zF1phkLkS|vv7psz2c{4MLK2vG8%pbOES|@j+ZIP|K2AJ
zc^(<hSYcw{SxgZw+fPDIX64&<#I?if4_gXdjfMQNZHuLrNM^6rrREVY!PaNF&Tc&|
zX5M2!3V7!{m0log^y*#5_aSTE`qHbZ(z)~%!DKV;-4`(<)ELqY;T)cijno80N%y2F
zfo1DCVW9V@P8dnfpiBy8M2N?Mv&Q%>P)F1)XCuojf}Jb@d`#=m;k{}eM9eJV2aoUN
zjdt2<!N2QG5h3h3^D&4Afu1bwG&|$@>GpI;4F4<`xqDnfOl@88b5prdfsSYa+wRW6
zfvEAb{d;hptBbmMLP<@{*jd!X?5&TemAI<Ov!-2wpw-XqowWC=c8OfSCPii$toDA7
zYr&P{G}1oen&Ok^x;jM~l~o^aDV0p&r;y`k$;!K@QQ(HVD!p3pc^*3=#n9gn#aeQR
zOQ|&S+`cowK<a3;htF!uq1YA-O!@CcqRNy$$Me<xkv{Nu5`&v{wB)L=GPZsHot0_+
z>@B{7Y^=wl{|Ijl$9~QqU#7OTs{h#uXijlbt7@XM&a)=dmxtl@qlbxaM(hc&7^?47
zEV}cLw7TAnNDRwQo2}7$G5k?5T|4cMBpYST_sx2)x&CZ*`s6(Yi|GKl<Xwm`ZDt#r
z$-!N@n>=7n`7HJ0Hk^?|S{4VaPtfSX6K#-@PoAOv?F~W$x@ivcP)!$2_5zc!UCnK=
z6OEPS<mfnOAIN*FcZo72x6!%7n=<l{F=)OhY-(Cm<jeRkb{^EW61A$*JHRs`;^l@6
zzC|4D3`M7E1?D`Kw+thj459bU<m;bvyA|9Togi-8@hEq@Zd|9#I!|%<48sXXe?SB4
z`{6l%ydJr7wu+>UPVcn!tFSk8Uy{5Xrp2AS3Lv%O+41S1%z4=<^Z~uNX5JDWhyJ*s
z<ULMhd!=x&TdWzox0Qaag3?lOHuw`6r0R-|2)ej!!JLx(D#gT|Y@kkPghSkt<ry?>
zHuf=mC~$ttG4Yu8g93=QLFLg8p-3N;F*y6HJj)eH=$9GMmrL=|V2U8+cX?DNh8v2;
zJm*FmR&S)_qFZN-au8-$e5I*m*!Jnz4m|NN&u4}y`uLqh`fVsJ$gYpoa^=l&TYddu
zLO7yg@=^;LTa|ktVNZv1P<h0t;^wJP-KzZkN~c|-Q;0UeD)p>wdv0g4{rObHWfLyr
zZ5@qc35>#U?+s30Fx1--uoR@F$iWESkGjv#yDU49@^fn?TEu$Vf+j+X^=-o%Tgk(W
zz{xvgVgptkD^C;2K1_uNLA|`6541b%IE<MzM!7Z#09Rg`NI%u_L?R0`eqH`E>Yz`w
z-4WR{?w$F$Zt?4lxbm!)(+BL=%J22{4B9=OD}O3SNZAbsP&4iKrkcIw-~5<+3?Gn8
z7sr*_iPo50O3DnnttUQ!1-<)nU+};n^VZ>KT?^4c3@g%Y1q<m#U)mUfWlbpENN>Tv
zGgv=*D5D+xPdDS?SxSshg-dEV-G)$_mr0{=lbCxj!>$)$%i`vThd#E-%O9Z?@R}G=
zx_+UigCJ)V6&tsWQuZgQ`~9}sl)ST2bV%mNVdQ{uU^Rym{G1+dQr0}<zu2x#;}soL
z_1T9upHD{g=q8)Syu_4>JV;we=IYmXF{44f;1`}Op6+AM7v44cWxJbz4rVusMF=uW
zuL13D4X-mAh5zI;w@bGU7vnz>KxU<g?qiuB+3CPM9eM@EYlQ}3*tUBpe`@F@fd-Fq
zDmHok==@h{HGnSdngfUCO}|`j@VkrS6rXrK?eS)@1QsOrA}{0nRm0-_na!J->*9o$
z%lPHvW?oo(KTSxBKnYqRcOuA<N=58cG9ufLUftI4nI!|mITKMx^3uY<`1_~aEdB?<
zu#BZxv4NDNe}^3vz;3zxOu?41sl#UQy6ABW(K!g)8K3YoWm`IVCc|7TCZ~1ZK-qWJ
z%JeZBdz;6v!i*_oSkRt|v~r+A5})!cpQ8N1Y)}tzbeCPSzctG=upSaASf~LC{c0WL
z{%~rpCf1TBpvTmG#jcT?r^Fe9_nB2B;Lf)vwv^0Y_1Em1U;F;f>Uzr}G|NE-A);b(
z2E*8E?jdjAWI=&?5UItd8!g3GQs7vGxCNwJ(?4b;fG4IkU}-vjzD2V)QqSSu{ldBZ
zE$sYu=*8gy2{HfoQ?G1nJc*l=JE(P3dT{L#O~%6jJS&l~XGQ|&`Am8ft-$!pPaRl$
z`*ed!jD&NAUy{5!oI83$lGKXZgADn0LzimutRqKXsIky5QL985)XBrLGm`J2GL*0P
zqrk6O(8E}#G3?=%QbQiif!M(G*0Y^WB{i&jRcorwW}lYD9lN?u=DM9RyM|al-Ss53
z;|(A&6hF@R(K;wJL-L7{u96IV_l#Ieve|w4>;W&n;cH1~c8y&}yi$(;@LR>G>X+r8
z;$a)N^)x-~LysPI$D6s4e6Du$o|$FS*IG6*y+Ey8R`a|`5=G5OjFF!_X#_%=atgmr
zb`H@}#R@FR>rwyr5Cf3>&-~XL9@AGVfp=*39_X3|7bKW`U?der+s3EJhZyV==4;X_
z&ySFxhQRM=w{MiMx*wh8Kpz3;{U0N4OejZ;OG)`+K$S1>j`~CQY{`XZ<_|p%@pP+S
zZ9DrK?mEfPBPZ_u*=FCaWN)%%vFmtm1~J<^AkC>#e+|o{@x6;UZrB-;>i3YlQ;}O;
zkm4aXJKTQZdwCZmaU$alDVeg*jBLB77eYSsQSWp`FD0tkmWnOiukvr#%lNAPM*vbW
zQ>uT)H48YasndU2;lZ#pC4ELHd|oiJ-BZOi3sYHv+OAadMag%m=tv_L1+=<h+r@j!
z`z8nf!j~XiQB}e1vz1+OdS(#~)CzFk;2f?&cghUTf)a&@4|=O|YAIg(zoluD!^li^
zl2fJ6C&w9I!bsUD!XuBRU?y$c!0@x!A(W7LYMbs93_Hm0q_c>aJxodUY6~0Bv-<<M
z|7;Jg|4+0?62`}mMmZObC~7Q@14B#H02a17%J)9LWFikb>vQ(Cq$(jx<DG|T4HcB1
z{5>~@3(q7zCCRtci!4iy9sFm=Q99YKpIWngHf$_m!CCF#9<?|F8I_n4kpk@{$#ik*
z@QS_^AN`fzw9d-8U{E^67i96c#QTP<H3`|(OzI-s$W<Kxn&ZLz?Q%2ja2b8gGxa0t
z+L>tfR6VIFiL}YjmKk^pNYjEdFZM!llS-M~phq*@#D9Sqh#y%zX!7du+=n>bJ0A?m
zaUMmthB91OWJlLkS@LbXj%yRe>#cx3AbY8)09rU^z@z??GI-ehKbYJhJ#2PW0r|qi
z7md>;wo5K-z+7v9txFlWLz>qp&qL$~ifJ#XATi2Wyd};(Zna|w0RA+@zVC$aQWLg(
zzr-$BfkD2pM2bE8jt`@vzI|KBeFGBlqjWFUkv?HM&&|UfvTux;FC9OZid$}FvdS%g
zCwXjlAm-2s`E>g-4xjREQPuf;gqM30e>2A-L(3ud-y5K7WbV^)d}m~N#4vE~SoLb%
z!bw4wUmHf$>3Lq-Z9U=vFG0K6@cB;hiIQFFg|%Zm(T(9ff&5Px+-;KP$X-i^J$}{K
zsI>U1O!uF6d1ADb-DzC^Qq?^X80K#S+$Rbz80T*>^g{OA*BMW)nf=AE3!RV}&Tbcf
zd8uz2tciXrm4vnGz1{o`<~G#b-8(@>0(RA4+<o^`J>*_cw`RBB%CY7J^BOBO;t{OW
zFYPdo5FD0)wyJ3rGW$gJvtE=_WoDw(yze5FQ2Oo3Cd8U|^K!9nQ|;ny^+Tl#P0wYO
z>P@9s*U3EBRO020IObJ^?+3ZU9aBR;>dn7v)X<y^2@O&Q@3^1Tpun2ef%A1*iaX~m
zuBqEwhjHLATpGgTWccG*n(}U|Rd_LPO>f05cvHJxSaO0gC{XF3K*jWa)Bg}<$AVTn
z$w+=ebmY~?ywnF@9YWX6lQC7VJSv%P35}j@&SGdqKRj0d&?d9BTGfvri@a<nH+POS
z{YhOjP4ZcdL+IzO-N*CnE<UuNZQX$xtBtmxf0I`Mkk7k0j|NE@FT%7;ZXx<#TIl%w
zGrp_iZ4VMGInW|R=Rc8+X7mttE2i5D)I?O4!BeXu0%J=xcdm}5sbAym3zV2BDrdBx
z3y*6%MBo{~?=(CKbN#N>1W;D5yRYC1Qy4cIVy!DW90f;k!vT4C^b5(^kIJy>|9bWR
zo7%Qx<SrxjbWGiFbF--p{YAbBzF{9)XW=e6dgeGk?&k*Y!>JVKcu_01K(HP$peOot
z1rQ@<M(-9WD!2KwZs(|k2VJF?VfdTkiV!uwdn_{@qHaJ$`iv*f+x~APTYfJKF4=gL
zfEdxL${j2y-<}sbJUpT#q8GO+0Q&%t@t$F0STeQZsmx=$Zyo`A<Yhz6%EbDkr+fe)
zeG(mDJ5ObD=7}marYJL{%a8mkTg{(d_mG`;Y6tWDf?ApiGn%iuK}OS%_Y|YIbV1YN
zvIL3|LzFLEE9EUt7F;(Ng`GZQ8=4&ZL~qAr5oHsEnjK4Z>Hmce>{b)Eo2LI++HTU_
zGMlf&G%G=k6j``Eu^6p~QC)D5Mi*-#kCtU|;Z@1~o=`CB9-kTK<%NDXzEydEAJaJ_
zbSJ1r__%rBcBL)|N&#2OYPP?y+R81bI`OQ*DO>HD5dwH#^^sKu;f^8m)NUR~;`P;#
zgHlCye`=bek;TJiuPO8TUGalg5WN@RpJtaN$1Hz{*}geULX}s<o@e!0sXl?+tCR2@
zk^V|VH{yBNH?wn{qJ980l^*}PV54{-@WIaoSH(Eo%~#Eh9BHbz4b*#>%cP+Exgb?p
zlw7Sq;+1czQrsJ#p0js1fcKKOq~$;zN2)*&9ZCCs@g$7IyK60WM-h|n?%<IgXyZMW
zlS)UTdWMp=fc+BW=+VB!1|yN;LVP;&_ExPo%dA0P#o>@e>}8M}Eie-GPSS)-B(!Jg
z^-ss(<U<VI_n8h0n*`TiI^NVYDT^s~<DJaE9iCP1`kA7GC%-tHD!9^%H2q!rh~cEC
zOx2+4v%PAr`a<$lUsGG!PE@D$Tbxg8gYHC<U1K5V7wV5n-W4<;1=(~yw%Sh*0N-Ll
zZxKhbAR5&m=>6tkk66VJrO~OucO4R#iOA%tn0Gpy09^Z>oI2?pJL8-`y+R5L;nMga
zlk~(bccf95#Ez|Jex%DNq^V*KYO+ADy3pG;bQr4u*yK8ug27G)52kzGR5d(1Z4KAI
zeZl|at{V?v{}{$fuGrVj18`E=_DsH$v)Lk-oao5XOT30EN}io3mnB0U4w+nb&G{48
z8>2kVKbE2pX8H+4)P1k=mafn&0d!36*R6R1`nOV}?Q8WGlfIo#jL_NE81Nz8s4rb@
zZhL(KHxio2E?QQolF~ZZ_}z~G`v;l-=sDN?o?;KTu39YFX!E#XzO3Z2UcK4qlA#_+
zv&wmRTYt9IaA!ILZ)i3M>Pwr*;iF`SyTn#_smS4KCp!7ZqnLNKc>{*`f12|0o=4q!
zG(lR;;D&l3+!E>GD2LKwk67)KcW;ekK7I1TZUpjx*m!y0Kfh4nS;oZEKdBw;Jc^Z;
z6H4ux9%>o=y`t7QVhyS7eV!oo<VF#J@tCcRv_+VqR1Q3iKY&c+fiKwgCk^M?!{ih1
zb1`b&Sz4>KGF)s`efc{Kp1*cg@U^*l!}K2O>BWk6ttn9%ntRKyT$*Bh&G`-l=h)H5
z`_`5w!5mH=#svDy`c+|oD(*}&wi{F9g*1ogYk9QWRSYeAGgl@hH?K7ddylkR_aM(~
zQ1Wfol0(l2Lh<OZvykDHJ`KxYg8<a-sKq^rS$a;@L@GY49)p=(rr3PN(EiorWF*mY
zs@yIDJBd%1i=lHhe>@YJ%t)N3XKyFknGjime#)fXeU#w}8-Z}?)j!KCU{RQM?L~IQ
zP}*7{Qo?tnIo+Y%6FY=~;6~A{C{#_W55_RB&R8*_wM_|F!q}oHvlDuKeJU{Z;1Uct
z{yjqJM7Jh1yArqdwBSV?7MBZkUL^Cku*Qo0u0wWY<^w8oY1(RXqhdY&p^0*|QQ_t9
zc|9(~U(b3#Uvcdbz<oUmhz`?v+Z^j^E6g%!S2J#b{USjAFV)!}<r{t^#52_u`9Rfb
z?ftkVwQyfJa`jw&mj18ea%X`C!#veuyXvRiVaogzEuZ&p1vy*`w!jzp@gpiU3RsLb
za1PRJi#V_k#uAzmM&-EjVZHr-<5Jh;wo?+fA0bV!RH!~dUzc`o1Mq6wk?r|}H~@Bk
zc~qq|COjlODlD!o0}MZSw(1We425m`zyA_znAO{P8F^Y-aXAy3aZ*C=-*$IA?O2cy
zwN6!E;6=JU!V_@8wMv;+U|-#jL(TX1P{IOX4+(~$S8C_Xp?A+`)GoLA!#-VYrs3{|
z{XUCIyldmgX{Wlke95m^UzGZ<?YLJ_ycFyM=OEPCsq&1C%7PthTCGj`cU*xm4EoHa
z&?wgfk#5&c>$Mxw+(_`7k)M?gW(%DXJQabN^$lI820+3iFIc^v=Z5*1!3;bjnjJdC
z<`)N_+@#-SU5N<pv|E3h_~PCa$)!DFHC==A^5;~<b5%@nV1%?ATd`DnURYOr*yllZ
zG!q_qXK_z2c-R<`p0L7lv8#b_Ma_%^yeJP%OgXqJaJnBSUwH=po8Dcqw=T^lyXDvt
zd6FN}d3MpZ;iP|B(|D7onyX=<g%YZWBHcaFH(GJZ++O1xYIbqUyyi!~9vU1CMK`U5
z8r=+;H@fEi#JD%#bN^CxDf(lvLoBS55?x#RAun8Cc&hodP-*4RkPhdgnDcK_d)vYq
z=+D_W<2vrKptR?bzaLQcWG3xg)E9xQC&byQR{zU(Vj4sSKlxLmKfXkz3KmZ!_VxEJ
z=m6I)Z6aokQ<@G1^&2FaQ0>UI&{*rte8bhIs(*PuDMufjV6nCHSw?F)szh!z|MguY
zQpmJ{<`|b=uPy$~B1l?$foUC%#fQ1@)(w2!jXWn!O2+MN{+vo<OVX%kVEI%a1+P^>
z@DgQF)e6}JT%W#`VuZ8?*1}!Kn@f8qGXN3b1%Q9QdR+>xv;A>MuNdL@P56r1H)I(o
zA)t_UuFh{()%~WIC($w8QmW`sY__h!x)U{u?|agce=ldc(ZS*Xb9QE=>r(fLJ;3vn
zvuD;j?^bwzQU$^-^|Fd3@9>XpXaqCd@^LXrbk#C|tM}lz?ZbPu`Pty2kg#_Fo~$7N
zkUGL_`s}9y)`$2_A&jugWU7T$XC|J18(wm5C#)4+?pA50Iv%#Y_$O;lOqC-0Yg%y4
z0s-nhwuwsd&_h3d0L*Ms9=(0sLJhpUt=d7T9g;m3nLo2;j6D8{veRxe1O*Kz7AzH)
zUx<Xk&P1-MxFfzJWcY@FHNS(X(#EIVjtV7hVp5wrwAcY<_j|+bzy$5{iAR9$Sz2+;
zBl5|rREHdq_2Tjrjj!iAwRNZh+W=u=yCF2gKK;Gf4zFuwPI5^sLA|C-`3a`|G>R>6
zd+n(o^cKxdwP-tfo$6OilKbh!eZTg~hSeV15Ha=AAd`xuZu5NJ;NkT)+kPT!vg-BM
znHTchDa;$E9l6&^0M-;|ng}N2V2c^q?J2T{tRMF)HGagkM7tCU_F6QHE38hDVPFG?
za0#-vb_Um)tUjL$smTma(|WkY3LV%#!%o)}gA#B>F`i=xtgiTLI7`fC=!-{;bda9H
zobh#QLv(x)n$`OSovF1X?r^75m~Kyx)#<@jslou_EQc=;x$)=$j8?Iss|OfyNPm?b
zu?Kv(R<+|Wz%wxQ-A9x6DV%$bp8~HU`NZ~#f<1kgPmyMR)!rVzf*~lZP?b_NKv*)(
z$VX_W(3E!+zuGxqWFY-ItZm!_`P#p$NRt^B6|2+HN9u&ilP*hj#r%E)rTz)gVfpTQ
zh48y#WUcWHsN*x!d;Nui$l1E}V0Id+UBwd4)(=542O5YH8qzCng+O)Bn#3erbu_u@
ze%<PWMe__exO7M)-EH98{<doI@Rq5ER=e{Xx<D~EsC1fnvLjuF@Vv^q$BUq@P0N~M
zAiH1&4^kxJ6}D_^*OL&Dr0iha{2-*!Dlh#>&@%{>5anR(!if2nA{D<mPgcPpMg==~
zhTXo0?TG8OLyu!Nt$T`^T~8P8TCwjm*!zJ;aGZ8;fGAu;cE!N>MrCz}5P%f!)4b7w
z*L6uP^2@rQ1q*aT!Up{z1dg)Q%GML|v}mmz__l7J$}=6B5rEGaKJ-qGK^~D@9IX!y
zFWl%72luceGZRGN2pXiaN|)4vxM}yvO(yXA&ehTdX7<|N7m^$}$V#)mCjon0s9=i8
zr@V2)?E-(ln>{I529{LYt9@Yn{c7dU^b#6p#ZOTzFXwfY|9K<Q3&qh#x(bBDj5pSs
zW1qD&pc(8G1%9*oBs*EK@P-UumF;J2*^7QUU_OYNF{>Rmx3ZW2Ipy3>{i^;itm!UH
z-Z9d#f=_FkFHvEG{I2NHV+zsrj9krsZ(GjgRB!39v3A(28zySh^`!oLDqj)$P6;uQ
za*zEsQlOYC<1QEI3s^tOiU(O<1-NGuV9MZrmnJ7*0xmaW`dG+eO)XfH_?<cQrqv`g
zZrHiNI`ya3y#=Et3o@{_w?oHYnRY)q(&U=Y<xq|vxTpDdbSC<J-N7CesFIl&^TaP2
z*CR=sEIQH)>KBRhqQ8CZ4a#7>6chOoLpsveBdeCn9qwcDjt@F#Ha-_w&+29rJ79wz
zbBkuaWCh=aOXy+a!YEDuzFs4Zt(2=xnVs8gq2x5L{=5z1+IFk%*T(sg9)GkK{hQBK
zWp`WhgLq2A+=p5J+c|rO6ftQQ+f)NuIRTze^=Cz9<3>bcIS8hYe>G}#11R7w;`J5-
zWuDfMn*J6&?{CEs+DoU5#NI()3}$uiTwc|ky#~(vbwr3Y<kw(`1|emuWzb}?gc4le
z=3k`-nM-vJXfrjC><qUfmqGrv_lr*<)v7bQl~cq^eHDIW$lsq)63N@i126DXQ{nvV
zP0}K;HidNyrP`RUz5AhUBPG=r{>vrxi@fwXDYD{NJgs6X)&R6lWuA~EeqI`bggK;h
zFm`JBz-aWdT3?e#<65navBhpZfQBxmvQpmC3~-(n@4dB0=7Vc<D0hqF=BR00(}_(q
zz7apssWQ<Wq<bS39_PVapo$&@M<7|>aMQhNh}I$Js{3z51QU2rY4Eq>Xn3SZ5$JE-
zeMQl(i>metVSFKOY`)9?U-=dJu17cP=v$M|PViR1m=VZ_u5p(^+mSN<3OL?FJw$JH
zL3+QKU%OyDX}ZH0p)#>J>E!AQg?_Pr-tke)U{#H!+l4)&L0sKpPr&I109p$AFz~=^
zHF&9)b38mg2Hx+ST_7H8=qo?P?3{8EC^#Lt;OU_tsKkjLrO)whb`Sd*rwp&0Dx4Tu
zsmxM;S`E9npX3#je@k(7uD-%frtS}Y-*Lc)qi$&CTb9pY-@No!2@2rYE7Ll&W(6ug
z8f4F+26mO;Mx2}df=GU(UqC)!x@(QES7}Hu-hL5nkU6a2ZfqT#wP_6pDS&7cBpc59
zm;-+pxGA01+{ylY+`t!<w{53$52W4~_x^c2!&^(?9<1=P$4^YxFFowN(GEr(58pC|
zCIaEVqp8J_z~nSX;RxjsB-=JMz@jR-rCAOz32)S94W;{H3brWvQC)9iFv9o~(pn&Q
zFb^Ty8q2<qd}G{^HBN8bY}VD&P|o$rb)8o<HXM{EeO@}}54lDZuEo_Mn;nG%^};=`
z7DL^8PgGDRi^rd1RArjoG09GC@UM{#E*U7O^H5(gB_^v0Zy6z=)aVfJ`1S`r<$8>R
zzhq@sf)%N<@h>=;J<Ea(ZQ;Wrc`aa&C_w)V`bS>sL(trzlD&=9m?8OOqL_rw=l)Y@
zz@1@ceZ<Qw#rMn)Zq_3OBwuIzBb*%WC{jG7SuWM4S^B9G6^;z<Ozk)yPGtN5m6+24
zO|puu2;`|^@{f71wQkI`2P~?aYDO^Zuiq-Qg6CL~2sHm<h*giW2VIu1Hnn3Yez6@L
z?blz0i%BXefMI+|PPz~4k`~}LUs6><KSM8?B^Pyp5!VDOy~mCm8}#$>ST79-zWr2v
zT{skhzudh7v)8G5VOy30-=El$6^^2>7|>)37r6Jf)=FOHDZf`>Ocw&$5!l1Ou(4|a
zb4js&oQ=NvjsN`am0I7~Jc87!ukT>VRT`F!brtYxGn4l;KWh&~Tz`b_|CfQ$sPV*!
z8HcmYU=ABci@JXY;cson<E}5~Cj%kAp=o?;_7~lQZoB|gEBJl8y|O1R;dpa1uLbk>
zkjmn2czdfX6+iJk$TV#mJTCY*HZ{mfk#jE|hw^P}r9(g2R%0&y?;`LT*N7SD`fazc
z_|3Vq(<D5ok8rT8;hhUWJqGli3z)<6ZoE1FTCVnyn!V0&;5;ofXV+z|9DP!-;_9<^
z5dsEmpI^nr;?kf}>nHejCeSDvF0k7QPW2;Z#&V$v){TCBedZci&Nk<C)ZyQ{0bKp&
z<?Tub@{S==bWje19KmN1;+!W9$fuHK&0^b5a{Q7Mt5%y*v2kh9MuTq;mc$=%`6B`$
zNRyQLYFoR4O25}xcHDkN*zvXZSv^i!B@Sr+wpJ?PY+s;5Ws=4v$#&>Axqb(N(1%GC
zhJB*nj_0m)C~&CO*crc=XnLuLIav@23YS3thZc5RS(VL_-p+vbhK~aNK5@OcD__g#
zSZTGCcOicQ-c{skW|8+CeWMx~-hP#e(Kw$8M0{<(B3Kc@;WqZw=(7vSHh&PP;1ZH}
zRN^IjrJ|Oyal#o0`&8Y2{k|DPbzTBIFQLb<TovE!tN!G@Il!bjJ==FJah}z!rD7#i
zy=-bgBOaD{b%xPEqjcYWyP2m7@yS-M7Rv?Qv@)~-<*qCsFKuNphzMJA2->SH(yNhz
zDoYBp($qQ|y`Xa-UaliZ6o2kFzc}@*xj7<K2)%Bw%r~zY@(^;nV3q08up#UGoy6-Y
z5=kvPt=d#>Rqk>WdUG{7vtLm7HDP*r>aI!ucao~GRZ~C$B_bi~umO9Wf`!cqDXmKf
z7bLQN*fd@7^_<S~kYSHfw25tuu5vfu*9i(CoVbz9_X6y+<?r%`(9O&z49;+vr9u~O
zsqNW-epVC`*A)<8+R9NNXpsSg3;kR?h+0({m?n!zr;>?5=vD;hwf=W-Ud{znY==fQ
z+R-UAX7*?S_R5f&@_<V7%=VbD%vUqzqL|Ms%6T{QYo`gsy!z3f{63pXn^v-sj!Tis
z>a(awVsA!q{9QOFEcjXoRNAn|3UVAtxKnXXTBXm&G96Hz)fEmrcj65gEwBXoM$Cm~
zs9sQ_(U+T6xMM?Atk+03u<b!H<-Z5M*N2#2dp28h@u`m^CQoyYj{(opW3_MD;!X-K
z_#-Jn^>TqS5}0zUGX4IbBR19PhhY?FEo{sc9O>`gy!%MX(XLqSr~eiR&iB2B-U9wa
zC{xBx$yF==W$<@O+%~6rmu!ZC)yF(nZb$r(7)?PEh(p5>S{J;-q}@&epQEXY23Cp<
zWU}_Fu`Q-*4A<;zF!RGZct{z>j!j8EqNuFi_zG#V{{5jtswjwMV<<}*ByR`2Ba0x{
zKTAO@2)T$!RIT+1>2$yxe25%wI<jJGFS#4P?itjB=&+OE<8-Ca4w!o?eE%7KBbO0F
z#syWLIAZ{~w{N<O*2D*KdKBG87PZ&=T-{0uu==p<`uF4_4IyZZTe<9z01Vi)v0O@|
z*Zw(aV6BzxdPSOZ5%p2r-LAUwxQ}N+DDd2<u3wSRgrz#7O316URokuWrOc~KQti_+
zX|V!;*3|Se{oPr>;gOWYRY?g%GDJL9f6wr87t{7OnY5bJE>X#XEn4o-koBefS>&7k
zUn1^iJ9QF(AJYFd6d0ILk1UBrxkRx4TOj#PvVRhO{F3OzDX_!Ocm?EFcG7T@->np^
zpL?RQ*k3AC^IA*w>YOt~>-E3da3?z1g0sEOcJ_0Rhs>2X`M08683Vs6pW8p_DS#}n
zPE;6Kc(<Pux?@9^8D<}sK=ZUzcEdZV{FzFE)n9VqEx^V3JJrHPIRpZ2Of}W|OA7mb
zGhmor#9n+vJ%x_`(UoL-N6@fY{@#VaN=!oAMD0d{<MzLAgiO$z@^vQTE;8pswOVg8
zOR$x=hT?g&#M^hx;@)ddVcY-Uo5pi#@;kT&T<*)bg++aOihbf@_T2M2EIXVXE$*%P
zn$+@h*`j0jZVXv@CfAy!6czMLfgVS6Gv(;N=eF{|;5k7vo^O7Cwt{Eo*jK!~t-Fl6
zOBBcCwEKfLWJ{E4KFu+6au5n9Y4d*Z&60s0QsfLY6X|?<5c6P(67iWXq4yvKd`s#G
zvvc4Mw2gn(Cg&NjR_>GIWMEUpp;gYGO!xXvsgohDsfq+Q^IwI2-PZu({NEZI!@GB;
z#N67$Tita}jK&|`9(H^@3R4A+<F9t{6Oz|^@w<u6q_QQP=iG`r__X&U*9(`_yx<1b
zopyzFv{$2fcRpTL%(0ct#rf;9;#Kpl_LLj|uYMy&yq{;$*qubImQSvP(A<jeu}V>t
zA)!rrqd1sQRicWF7I_6-QePTQd2?05&*rSIXrXAkC}ayLy*@wFXsmZ$Lo+jo`c-O}
z83;80M{DlgHruAI=BPO7R}&@P3+q@8olZJr|27&fk@%kp?CU|hd$T81_Ot-#PVF!$
zg4M=(dqxEi-dNH-lQan9;DG(%uAa#X10nA!4ninYZZ~_m*LQ4|r<f4Qo=3#ppbY3_
z&9X<R^5gVBI#QUgGuoHW3^nm=;6EW0dxzwG_Ku(5E}jm^s6l=ma)FlGtkKQvfaR6<
zb=JlmMKJ`?IYwz(mF&2yG;7xZk5OAatTIdtF;)wED3@VT{M;?|vuJaYdp(90Oz+$3
zpw*MnfMK6mNtrioLAw)0z(j7xkz*U5VmMpQQ3<U)A|)ATE=Oix9a1yfczhU^BeFP}
z?iaCW$GQ6c+04klP67>`7zexDs}Ze*x_(2V$QB&l0a{`T{SsDldR}^n&<a`J*`Ugp
zP={Hsryd%ftXdWxTHT;d1XbEKZ@vvjFrR-pBVFiwOZaYI9Vh-kdfRKem;*4qZ&*rt
z6!Q)KOrTAdrn6%UQ<c=&6b|z!;w6uJrQA(N(&VlIIUwx|q9b|2ojw}&L*4e|!`Ips
z<tr4>{ny;%_@DlVj2^j8EDoddjjk4)Hw*sn*m??n1(Oy%UVcx`@|`Q8vEP*uIX4r{
zV+F3>kDF@6j)a_mE*smg=m|FPlE|wR>*gR%XcA5qA9q9963`=Lb+fU4E^F@y&*DKV
z=ZrnH{$t{4H>I*cXtkX@<A!ftaRNdDg@Z)I9jY6Bi)|~H*H1@nK>m)HMgo#<o6@Sa
zp?~25ue1$Sj*Iw{Shb4=bKKZ7qTLA};R9pqqs*;iBgc2p`SZuuUVG$g41nv~_gNP4
z?T)F80TT<}9fUESGQ2x@mVw}VC|1NdU)&lzdHM*|R@aEc6VuYhuy$!MON8$AjxgK#
zc0pC`b3-zdsW#Mm$JSH|AHl4Q=goSnpSmPSnqh8<^JJm@=;s(-;U9dLBS4h_vS(#_
zdXEqsZQ7swpDZ@Apup~*GjGc2NRVo;eGbB#E0+8e-n@QPM<%%c_22^7l75ywi0-p=
zoLEM-^|ua32sGDIE`}i(ra6snAED=WZ1p0MDwMxwK67C|J(6N-=(o_Le)>b15f_S?
z+<X~v)E}XKlYMi_JBhy}c#Y$4iX&c1Z5%D^|NjrBzB}~rX65F%U@YSN=0^DFqW$LL
zh*R}i#^%-1e|H?{cG0uuy7w23tHClRMUt{^1*!YEFGogmkX!DJ8q&q-=WPPq>y2UA
zAC<<uVn3|}Ap#$VH;9wGr6(z28+ICuFMyGJ23~1&DM@S>>i*&0Cu0^Zn?5TyqDF4f
z3c~jSE^NNIpXqmvWNW}V8{WoIw$LKZ;Iq@gEdl|WaR0KmhJ3e~h`=C2)eN(}(;<Q)
z8HU%@vhd?r1K*yUdxuHP-#+{&yThL?{v4Hcw^y~jv)y`m-WW39QhwFd?utyR-fDU)
zbIN|1e=b2WY6=Q{u&jzkNG=V12|}+1Qm`tzrXZd+P>^>^T=w_U&TQy>r`Y}qOpmb?
zW0Rf}()toe22gRCax(yZr?>G&;KgzsTKGPgD6XqJL#)?x^CI=4Lntoa#@$1Wrc=Ci
zpA5+mMNdt`h9Y^k9@RfCv6n_jVfSrT^FV(~D6{L3FYdruM?AlGthGQsS5R7KGksvY
zM#;3$!9LDCLp&;%?w2f?uZdO_cS!g98(APU)nYDy{?PdH-YgvDXi_;mE9*MY5KI}`
z-8A^FN9CKfS?8~?!5Y^_(uesh=LyGxvmq00ed*lWx=9+Vw0Ty*CNay6{=j&VEP-Z!
zR*Yqi!p@zXGYa)R^P2CiMPZa{vjI}@M>C0xg>?kKTWe<vtewBEa-9WzHS9va2lU6D
zmgWZ4I76L*x9#DO5!-ZcCP%3k;rcb7ij+Rdm!;T1YP4YOD?8?c0Svs(;f3GzCzDP~
z{koZP0X||Ix}S6AybcW~?E^VQO3q5@YL8v-awmk_#il%@;B^jjpE#^QVdq&@dm_j<
z(Xsbl9E6Xm3|)$z2-+DF4<lNi5XN<+$K=y%kLI(*8aJpOfgFr@dYIc4mz$lxJtf#o
z4nKEm9^RvGaj4b4UMObjfR6QJm1!z?uHJQKWmp<KXZ7eveRO1?P35Kpk>l|PU;7$H
z3>`U!e%lEhv?hO!%iJ~?=n0-kava=Xx(?P8G57eVwE65c%!#M=a@p&QHs1~KBcK6S
zY`LdfT6%iI-rLm~5~d_Tgd)49+cP4+lIIkZO})8?^aqPz;-NlSbdwwhO<(NDXDg<d
z6r8g4`u+^E5f@A0W%kAw>9NnteZ?jBp1?%RiUpk@J{C#M(cRorQFLv1u^_U*zCdc^
zAAMp6VNTq=(%fF9*AwY)m=S7d?EgL8@AFodtc;s#7ANQ#^c$jqmsg5%HE4yT$YA15
zU@Vbuphv=~hMlfiUI?ZdBZDL4&(xQf3u&mLlie2th?-J_^AAqK&?sUo<O?BAFWP{e
zz4t(`^1w4x;^_T7f@K3G<;ojd|4Fz5Fb2_kQ!Clt#RDxJY`Oy`uGz*OR^68=ua7Z;
zY6HvP3afvit}#Ip=lRrk6Z|}p5J#X9H&ivN$V0vH_w@u@?RfTwCVkeN^tqmL0!IJ@
zDdWAJ;ZIePn1np#Y;q9mnx&f|+RmpF>M6iBPwNz)LoW5$K=K=0sOyyEcH{J+vVS&y
zv`5KQ!-h_?zND~4#<#!;kBvNDJKn$!IigYf$?Mtu(lO>I?V%G%%7=y%*+r?}4Jr-Y
ztUDrHkdD~m(+it7yK0bsRBqkG&x-duBDWVC2HaO@D@O<)35Lv&%1F&?{gC`-J;G@1
z8K&AP)I$kr#RCoMoE7Y{5$^?g=xImppEJ}w<mr_6e3SX*ZGCb~h%mpf3RlPYs}7-0
z8pB>~d43)gKWwaVs8_v~vCpkH1XHwGt792kD^F|h5g-1<?4h?3x&^k+ZzW~e;8nG$
zRyaRI*w(>tFW5U$+9;*r18GPPCK3R&)$%(TMq6`-kK6Ql?8c$<<6Hinp8Ym@uYldN
zErr+l$=_PJ-!RO3A|I`TF42yq>`eXNbV*B?-U?@x><6J+7Pk7dx!LU|1vtmv`P!tE
zNp`vSihAU_UCpwxwQw5&nk$!2vaUoEnZ#u06=8qX6<G~lu?Dp8;C?lp(*oS9tL>zB
zDmFtIbL=J8e&q$$gea2voYVvm35RNsI1ff}7$1?dGdnkHxJwQ*#Kt*?M2<iu6BSED
zWZ%;(&SA<A@1XU-e@-5N*2IyT;MN$Ao@)-+{yEs!W*52511Rd`;XNwh2vC_@dCO95
zSD}a`2Bn{?GC?2of!T6eILTJk?^T3fMV@j`QbMu2|MKU<<pvtY+vkE4!YWP)RU=pK
zZoRW5nk>e&9w)>JbUst=7vox~fG^^!rUN>COy=f)Zef5$cvYTx#-Gd0PBOOtf*wk|
z>REM4JVr`H{c#t+&b}c$T=^JsNi||k{f@^oeJD+w#WHzko0a4C)65gYI$7r}V^A6i
z&U{=o&V>H#^FA#D<(inm%Jupu1<b))rL`y8^FsA?tRY4`S40gPom_EBd`E>oDzRzG
znw+<VK>|LONf{kXQfPreQ0a?2?KGEyDo`-EuS{m$`%&R*Dh*5deOYMn+gj<h5YrOc
zWhdHs=AY-Vg@@94mve*%Zz#`F_WYmi5Jop`QgnH};O~cfTgEF7+Z{S0l!g%$2o|x-
z2k#U$<Yjl>l<PAwELmssJESxWG#}^QXtN1^=(mP8aF9IuA4I(hVYTS?kjv@7MQJ@Q
zjK+HDg~CSGARXK6!&l4I+~0)p{IiLHmyQWs+X<~7xdJHCr2ebE_DLWXd~)e?_P4;|
z6f;twXty3%M>u16I|yK4dB4oDUdzu21RVGPsLVJ*(GZ3-?JoBaa23>x^8GF2o;czL
zB{d#(@dfq!7NwYXY@1WVy_AOmgzr6?{>|)E_I1a3M&z)p9}t#{I6YiYCJk}CQ{G#U
z^20@g!W25n4VHnNKjKX^DB#<=jC@Z4hw1DU9j^K|SkhK`MIA=Oweoia-NLrBQo4md
zQ+W}6wRDyHJH#z@tN6BPZ(EOsXBw2}D$*`hK?~@cXLdlroKB1kc!p-YG8oV1Fk$I*
zwI@>?m=1mONrg7dy<tbFkDrw3xZt1uf~{fCmfNv~Wio9@)>+hcW@WhMR_I-~QfszG
z3{lRM>yClDsmX=2osvSd_|m;3K4;W#)CyhR&%w0oDzK}5z%%n&vUJEo&VqE?90uw$
z?i)-O3ZEQbp8KA=dLvD(1On!G`7x-Hl~_$MKi82-Jcm-5vz4V!vX4OaM4+8H<!`32
zCHW!pycgKa4$O#SQ?vrp2Mqd(TCrC8%r28jL>zg)=qU?GADKY2OQpY~xej`m1*HuS
z4XanGIKT226EM(G2hhfuHH|Z|_x=3#^F?=^UBQ4s!?ScdEY?D=u>4yS0UXdiz&r>a
z<adWu(BpHjO9h;2Key-PT4i~=9dq9bd^bu4h8f?gTB6I=pznl?CMvA8-p@KSGQf6X
z8cZYDW;PSf$+NVro?-1X#P0^AT%Z81Ir$%LjV3M9E9{Nm-x`;{mrbGC{0p{bwVlrd
z;*YWraKRn<ihm|gUDGiD)y=kLsR<q=Ic#&jWX?J%4~S);0{7Ilnr0hd`1(<6Gc{=g
zCezAg`^8=Y>@i=jYL|Lu53N{B3Lchjr@g`s?&#t3q_W3$M6OP1zhHoCzZ6EzsXu!M
z(jv><#GUiJIh2_xR69<-4Ko(HezdK)ezu!o6tCx@9+6|bqg&p6>*8T2k6GpURtRg(
z*r8BRYXQpZko+?5Ggh!^-w<B!t~bc<TE1I6^Tqjf`mol$9if4(*~^7r1W-2lyLQR_
z1yNSlG^F6DZrO1OSsvRVooO9EIj2ls6Y;hmb&xP6WIh_A9%n<}ULB+SOUMkqkf6GU
zd%{s~dB3(!rXe;YN#87-Qo&ebuI<eBn2tjUGGluz%UUB+BY6cF__V8YL=#w0R{crn
zs=xiW@Y0e*F7dH&*YMF-uH9*+3vA#~Cmknn6Qk@M?E`PH*el{Ua3y^|E-LAprsD@y
z%MJV8qhi(f6E_4HDj)J|edk6aN6myv@h8jrS~cnjMBlNl%Ik0Biu`xM(x*U>0AQez
zcQ5bTXIF{~oql~7V+rZHcBgx->F9s+7B571<~OTC!Jfrrm*6|?!<g_%9kO2JGT(j+
zK7^;y<~_|5w>CJ<4?=q5Z|7-)t5jeg19%^WOH<@!M~=*4_ws!VJaJhW{DUr?Lbr32
z-D6WXYAEC-i|6gU+<?<8{LIHh)zbL<gTT?pJpSJw$2|e1w9asX?hqX%=ilgPnzic^
z1l5Ma6WiYGUx+lmhPbehawa3~9zgtZ(94!y{dGM&yvPcwHT+o=@wx63V_Qv{gX(yj
zDvONaBAgpBoCAxA^Z<f~6r6z&T6`!+5abp%*$`}ZsAlbH>kRxIcEC0sd3jVSsR93&
zSH$~L$Smu5O(Vj#c)n<Uc6$2^dSc$e#1DOp+$QyJURV8HBdx>gcc1O=rT#~5Bp58D
za`}$PMd)f(#3X-xDtss3x6L9L=77oVxKOe7!o)d^rr%ku-=@;!y{Aci?fGzHemxW*
zU(fwbZ{h{7V)&ouq(6mfqO+6FgtEm+daXl&!Sp2Ds~WE(xa(0p(gsz*&GgT#F4mgj
zK*MRk3nCpO&=Z9ZS5YSR-#^M)7P~iT_%*z8eer%KwSzD&L$YhnTT@bY@9drywBIIz
zaa(JKWbcqTTd`e{is-TNnqPVVsOY+e`i4r&o}Lp4%J!UVIx%5wnZGY_G9)V8+sL3x
zr3kLy=V9{Y^ex<I45etq-fZgU2Q{rw$xm0y^OVA&{`1Gx_7`6{NO&hl%|Ib^{sy7>
zMfw~U%3+rDk@|$+YAI7^A`2#;pSMQG>9L9HL3p?IRZ9x$B+nMv@Go{(2+a$4qqo3L
z@;v1M<Bb;amzO(ew&jv(HS-+m&|NF&16-6LwHx7O$?tBKtBUFbNsii5p}$KSOcRuD
z>YN{L&kxYy2roa5|GfRZlIil%5QWNpJFhoyP-KMv#t_%ajfKS&KXu}(3T@Tm#TzSA
zYy11@L8iHi4${OEErKz%H`Za0N?S9CmG4jQuTDu(hHECP*Y?b0pi58P6>L_77<~on
zAwXhpO6W3)Uag0RQ_c|B>EbKnR(dP%yv}d<0MyywfE4Bk9-@L<Xr5Ve0tS@h4=E^x
z(__ky>AoZ4zmpVO^E$ZW3_S<eho3+r=lO!_K80*a8*nSuAf5v^YoxMh=-%zt5#JgM
z?#mvPobJ4a@Wza+F}&|@m?x~fxaPJbY6%*()*%`rBz5d`Uv^JP`w0oWkBPfk1vrJO
z9dcOcL$k`<gUe^#0OI2I@JF@M5jn9F?@k8e2%XYf_)^pvK~poBl1GJ1iX&>!ziD+b
zzI-yA!u!>ub24<Q^iT`AMCG(kT>H*jxq$~#;ujfT<k<0^j!>1PULIDPoe#>+$D3&<
z4NO+%-js+7xYx|e-3VJam37)S%*3Z?{89qjY19mMX&yth=jI9+Uf}h=g>P#KpSJ=P
z2gCe-YcCzea~Xe59Mr~Rhy?G0PW|=}p^>8;WxFG83Z{n0z$)`2v48q<yWVnJ$njel
zOOeJLZe-60Wit|T?wY;Cw4!^hu2ryvGSg-Aenz66kX1(i;itK}=N(UNw@)-XhHrY7
z<`?UX=}J>@*3XWC*MkKU5l6f?j_2T4q(`b}@vBk6Zp*yI{Y1NU8Ti#Ge)lH4TKQpe
zcEf_*^BY}?ME8Bv@|n;Bn@~|zSr8fNXj}Zqu6>johtmp@6272>R=gHP?t#uu_?mam
zr^qgRQ}=8VkUjl4d(NW+C~|Tymou;8u~iX~X5t9sJR-b=$SOosSjQlY)js=c?J`2!
z9a4kV2w8!lRJ^F3<oUSmbekK>yfzE$NzFo9vwejpa36syjRF4g=r@wMJW<YB!mr=p
zZq5qEZm>5O`Wq4Z_#2fgg4gBwdW8%*22X$4eBBTgn(mby=yW;B*L*iL0+b#8vK61|
zn|__-_uAm;Ic~T40|s|Sn$1oDzKtI~in9KAD#zPO8JR4rB1m|Qxi-$}aD1swBTx-p
zl8pIsi=H#GWHp_al>9-XI2*L%L)3cvAwkizt}Dk3G|Ob$R(|wfZ3PL}PN2m6t2I~{
z`&`wpjt^BG0jQPAnM|p?uO`?9tE6a$nZd^W9bSQ$KXNn5pfyS>#q6qx5;@c2S&>AC
zWfG^=X*LNk=r|eqA}Xp@IL(K$oa@WrJtT9!4bMOTW6q#SO$n;eL0fY#qcdvy6hjYQ
zF>eGp+hj_Yv#&@s;^q!TiD`)H%}a%$0FylZcZ@lK{}`-3SNMIB4^nm$e+GfIz6D~5
zA>Ex8PRDQQMz2gj@R?}gsx0-<is}$nWdKnZDSuRAh(*24TjVqAq})-Tjjp6zQ$|;p
zjGY^e`k)Xw2%4}#s8F%{CKPw<_wd7)hH8IYy3zHUMMEjqZv)8+UIf~_AYVbeqTg5u
zB|X9_^iBPzFy4kHJ!<jSM~1QrKuZ!z6`fMmB7}W4@i6(idh3!0)~`ZavA<W4dVZFl
zy5-+CnLTWqT77!m9ByZ`Tr9LXn=7cOr<2z8Ehfvx3B}90(KyV^o@=+a)*JP^&89BA
z>-PbRO4E%HFTk7Q+N6((qXpQ)=QQuZCfp)6k(6P}OI`vHnfUQS9p=0L%J=~Kk@BAs
z-^xgqNsOPU%eTi;9}sJ(H_ZeaP#pJcwgYKjoE}*MIpBq~6+!vk3<&1KAN@xl$6ks$
z6&Y;zD3SGk-P~dT73Z{RH@^j#T0M~+-K_DyKW%i~{BL~qy=dd3^Kcf}@_GFvgl<NG
z)dW7X=PBM%MMny)%5L5?X9ZJ&ST=}f*-A$LUD6(rS+YDT_}^Bcg=xXW%s)X<^CLn#
zw$gLEs1?Zn0Z&1&zT9ht%?xq_Hj(R6JM3gwrY6^f`#UyG)gmio=#!KZ7u9N$EA`L5
z!5(zp*~Ea&vY+h!qaPrXTl518wPBNvtvl%$T$EeH{s`M$drS#^b-%BT*!KKDPJ2E|
z-$PVFw)j)`{Q%v=cIVxKA8?%qKOjN=aJ|{GV6Slz4bLvRu=U6f(BKEWpT}oM-%ev+
zG8+KJ>9&Y9)d^X-W}g}?RzHA%8TYkZTYJ@anQWoe&SN{-f{N14P*ti|%PX}&MDeWv
ziDLB5zJ01w1opExBaml{5^=h3hlc?_>qD~|Wd#5WEU5cXk^LDmEX5{sNIEP9i)x`h
z3}O#f3oHhQQVQAjnBUAuMDg};ZtZJmXDoJZywJuI?d_lsv0bjVz!#s*hmGsUIEg)L
z!tSEAHaoHV8x6C)n`NjQ?S`=m&>%Otf9-22+{m@oj<Z?<QrQ;MS9~k72mcB0X6+d`
zJ8Ze_a*&1ipclthb<QziuJ#aHzUAANIf>bXVGlO3hs|w*G_lH(iDJ7Yq7*zU_We$-
zGAEhb9=$ywfx@nj*mmTW25i#4hYfNp;aO>vE518UU1->9eJs}jTMGB9!CoEvV2?5L
z+IAu2LGDqm(<8YSP^ILS*}bdtH`-%*4Li<9n;3O!I(O`YJ-_Co%x}yeiOmy!g3e#X
zHnfjP+jgXG!h3u4?P;eS@4nvJYxGh0H6{NhlfRpD{^R#6e30p7x2DSAKdrsQ_R+T^
zE^^QJA5asZ48C1swNvYR2-v%?A9Y@9uk%`O`a;*&!Z(8|#w01x-*&t(?<up|Q=kMp
zB7c)zc&)nS;{?H1{E6+#nGVH}u7cQhd7*P)uGwjp3>?kSU{3!7aWcoUUd12|(?JG+
z%=<hY5s<os06zzTE?42mV<qwV^`b$d`RSzF`Id`r$CLJ%UKZtjJc1Lw)NB7?D@J)V
ziyVX#70;@IZ3{v&*29t6h_~l$iaKVY2w`kjWZm-l<q`^T3RdL?KRjuD0hWVpM-lAI
z4OqbKy<r!gLZ->cmg&Ni0>+9A;G#UYmbJLR;3ObQ%6&Wsxn7q|u1A*ZQGzlOJj+;o
zxLj1uCkv=v1<zrAQfx1VO#`+U@QNSvQRH=Al<U*v>hw&VTsH$hXm%23?QlL1>$L(K
zUpg^|VpX{aZ`QV=wrnecSJ637+K=0{if!6-%nLPwP2{M0y1cZ37oVTON2WzIHl1HD
zV(-VSj%vB+1c-Ic|IXO>{At$AJqt3j+<DS*-Q>zN%1ryhlUSjq;_uG3LRT&euqqb5
zH|vqBgHN!>)v;~%`0}D3wpnfBvRolo<)U1`g?31@V2apOjv6q^LfvDWsahYSqAwk`
zf0>Vy&;VKAkzEe3$LYv6!~s^7Gs}@Pxyy!)@6XSgCe^vn7H#)t{$%D_D_BSozE||)
zsB^V}1A?`S)`S2T{Bl_(Lvot9N3C>bIVSB}>!u^_TN&8IUfCX5j<DA?+T)Azx-m~C
z-~YUTgBsW_7jS!Lom_qZkJ}-Ga;7L}?`c-7Z2!VTp6whv1x`od#9da^gY_lRF>}lX
zKcGSPY147k`DTx7ufY#omWw=t?T>xU`O-K)`5Eixqxb{zG-+0%`6#i+LZL6gM-}!_
z8MPA@kt<KA#7AAhqkm+29=`sfJkPWCwafWM+GqDs7qOYsQL$aTFHO>3uIFw$-ipEa
z5k5-g+IA(dTzx@l!^VAwwV#8J+C(ZgA->-N{N|&4;bc;KWnV8o3fNZEkjT1%&f$d_
z(Fpr4*?^)TFf-$$e8oq1!Z(rMMKW!C5ukl|Ygkx_=b!VTW1QN?jMX?id0{R||KM-Z
z%ZIb_HFE8awFq?@XHGnwHh=ixDxB8b#(wC$D5v_<yIE+tUOrsp9?Z8mZTCE1v_8wz
z=^!@7?Yv{|>FFSh7Ryx^`1zbI^!fRsG=kgpJfJ$mcfZ@P$@b2dtN2Fd{$6<D@3P3>
z+5Y+Om-AKZi@$U154o>!8)qw?w`<o8yKqec8^8bQNwI&}p3Q@Cp^)2*?0nU}{Pg}P
zm|mXGB09b|Thhx_GgZDg9V8?6`~vJJt=GbZ4H*kRU%oTvbHJtxdCcSew4HMXq{x+d
zhz~5+RlaSEjs3#;S^K%jbqmJvE=|Vv4%nWzXQvIr;iMU?FPBxuq3^lhvK*f;GPXOO
zblk*6v-v(J9w%+S^5yv|ee@_gucGtA_5o&_;P29P`^Fo#>!ROS)*0g$|9M$;_YM2{
ztM>DE+qZxNi)=G2S1y*w<3^Di+r&GiWjjNzC#lB*TDR>T_?yfDN&W`&_l|8)79lTM
zaO>S^lJ~ftuj04)`HYSI4FCOfgfADJ&+>jO*LAbm(<TS5wRB;*ZvS?CQrbYlRur4q
z>o+gZ`6l;N#U^+P`EDEAa3Ghtrqy0`5_7&NmUk@2?Y`&dtN8B2Q5U^0SC!Kd-+Pwp
z;dnq_QeJ(Q!%_O$S-!zHI+w9Z-t6^7`ZQn9F7ySIbE@+Moh!F0_oWxcwsj_^UgLg!
z*`Ce%dD?z|ML(bB)|W)*v-Ta8t71EC_CERn#&#8*>o@ep`Vz2zxI~?2!Nyn(8}Hy^
z`JWj3_PdvF6&uTe7r7VFdEVNO@=ZE_I14s@zSzj7bHV0)X%YRh&Aeb-#P-DZxNJU%
z?{PdG)Fv)V^HH081p79|<#VR3;oou}de1(K`~5d(u??YPq$*<<9<#7sxL+^_t+a3N
zB8%eeKiPgy7~`E)ZpXQe*~}(hHhW#S>!mME%7xByHS8b0Rqk_^i;P8htW&u-?oo99
zBK}i-6w^VmKV)otJtr(Nzb?y}-(51VFN^qk?knu0maVU`T*XJhCfIhl@b2YB{cGCh
z6g*y)vCcLgcsiWq`!C$Rh3mWMSo(wTw67bslk{idWnWb1Y?#ky#lk*@ZG+oo%yxQ`
zu_BMPrJewvZ*t)K*Ez|UP=^e*GXaTf*F`e;C4qn{zH6X_<-WyZZJ{m=0j+6ji`6vJ
z|M2m7j~P7nP&JUmlI67^?vpYO<1sX~#FAKGSI$FVln)CA35^cgIsEu7lI6I6m(r55
zjyQidyBw0XxSjvbw#G>?l6<r*sE4y*;c>&&=E^#!Tf*Ff-;et%qdkD))OM^gr?h_O
zuMHcIk@-Aevw8%_$>{CKgLW|i%>sfp7Pa;TJ6NpU;vFnGFK%hrM!9;T)a(I8k@JL_
zg_h8R9n&iUSrMCz_wQh{@w^8!xzD8JK{?y$8{cgYn`h@5mcb@sLQljVu~`t#6Z-~i
zMr$H9WlHg#LD3#Zd+o4M+hyEgBkJTD6Zz(_U@~Ge?2=puo$kuDv@CbN-&)!t#cO>j
zy@JjA+5?>%J<MHuwd(`6DAxkH<>&_nd+o3V8!$ics$B12-?fQgkG6m^TVL9-iCrIM
z_DC%u&67D}UmE&aCs)MO9`z-|_L|Ps=N0-t{-3|5uU`uN|NhxG+Zb)T{-EE^ZO}j(
z<T~K|Dm$QLvR;__n#WgMt7)Py-}88s=zsO^evkfx|JnDDl(^pdsBBUH?OVM0Up_Lj
z=f%H*W=G;o?Ejd4n%@=vmHj6l!pWbK(_b$}wGIDy!TAjO>ge0~Iqdt7@ZC}?GPJYI
zpSO7xx6knH5u5n_sx-_~Qu;_9-{1Q#b$(z+=g~*mk;vi<aj~WSz1q6K8;_d>01f`z
z12j)T*rJnWRoKVEwv<YSB_{g<gN>3Z&XcZ)Q=dVZYxPA2=XW=*ZwTkg#jLjfo}gIc
zDd!1<oL_Vs9|!3~co*fFenN58<)WEaJm9Mc+KD1z@EkxA-sjx5WIJ8avUFIuJ;ifi
z6FzNfyyPRcCt$w<+v(7*&-lG8{se5wU0(v$DjkZqwDQBeAem=UH*A%5IMT0pmxD6<
zNwL6))qc-KEd=YOy-P(lG$qJ!#754!&fI1!H=Y*icJL<GW1uPN&wHIqk+2RMYA=`^
z&zDZFQm_oz5+-hp?F4K!Vq@%A4fxHr8d^x}Kv32C1)EkIwsM25Ku#%Ocl(4~wSBuE
z7CoLqyH7w$3x*o6B+K1atkot~oGa~9#A4g*N4f3Qai|m)V1Qliv3A&rdYj;0e&XV5
zjFl&Hj+J1KTyR&nk8^K`PD>V4V2^ioE&*w9{s(O42cphLdsROGIohJgtbFihk5ZQc
zMQEE`i~L41&LJlWR5?{m)Oo#;>u9fxO?^~fpWq3_!S?(>=Yz~1k5T87WUg`F;R(<j
zbk4_Nn*3R#kCMJJ_^8w12cpgsjebCjD2g0;!b}{L({ovv1$L=RLMW0Pebm(GvJ9*F
zsAvPG!{Y;N_xu3cmis9C{jvaS^HEw$L9y|m<TRgrK*97R@?8oaS;<VO$TUrAPlT0!
zZlCaxRzsndF@sh3ib-oq^w|gh`AC{*Mphoo69aPgh5w4gfD#6wN-IGU<l{pr*pe2B
zA}dHv5+oFgtC_%AjfHzlQXpjfs2Z7qTNiG)T}r6fzzmB&+zuXnzBk)^Mm-|Yb1`fQ
z#ngcf6BQk(=`I}eE3$AJv1uZ!+~2c3NChKVUdd|HB;O`n4f~{W6Kn`XDK@={EJ{-g
zAa>XYbVxNx5KywAF+f(iW+B%#Y-D3R1Y=}OC)ikSI`OSYQD#nilUt-QA<I~)gd+5&
zbI3L8v#Vh%SrZ9F=M9_4b<UXd6bTEd&J(i0vt%=`CG^K>LI$v9D=T)XUjX|On@Eb?
z<fhpAN&19$yTJDgjaiVZ+3VG^nK`+Gz>_a>1r3(ep;GKFH<43udKkkdyyRxDgxWNn
z&UImJ0(L2m&d*~xIkx23Y&@VzIGVwnk^Wq~uZ6zkIw$W-yh<etpe*NX*>p<JV)m=1
zUL2bwR4hix1{=Uat4xf|4?yQC*Xr2o9X}vD1t;h*^d*^#T3@3Iopa|%Vqac&1bxYN
zf3n;>vs-K+i#$ZG74(JhQCfcs*p`C6#AEXePGQBafkhFF$hFqM!;1;K$dxnN%LE@)
zeSWmSUfl;3(3H*Q2OwAXQ7U(*YGNN$qTJLbrpa~+>U>IlRF=-Ka!m++P^)>OTLZ8=
zE;+rH1f0nFQgLje(-Q0zW5QN|Tzyo6Tzem-a+N@j?DQkqwJr9D;D<brgXdY3((0=9
z;8LEPOIheLQcqJRJ`IJ5&1QV}C%y%%e>*1WgV&{!ZVu33y}o%u@T6t!nq1+!$=J#*
z$f-S<aCIV7RFJXAcf$oeB9%l%9SNi%s?IG)M5=eySW7yz)*9|bJM9I*vhnD$MGZ@6
ziy4{}c*p^oJe!{bR67YGp8Z^k2Wx8xggZ7oC*i&wwyKm_l=qj5WG7aT(-<bQXWM--
z+|}RU{<c&0Ms7i-b}d;ueovhaThfeWzSbbu60nuw-ADXB-VQR2XgZn`YBmu0<?UIP
z(33}OW@97v5nF;&j5-e2+WSlqi`f)xz~we#qgG47u!_#)f_y7i+`C45Hd)|Vb?iIg
z{w7zKGYvYY{)p{nBe8GFeWF~6I-NVdAlGTY7CHaxU~~SAfMt4wEj+t>H<Kf<k0DjV
zmLBw_8su#6l?Lp4*zDZxHMI<Q!yawjbsn&FI=9JIkm2YDh;ID=g}`#O3E6G8{pg?m
z>6!lW>q7tGfBMZ9_}=0u$0xDPbp61C)$RLzBHm?BAI`cMIlq$_2CZjlFY}Rp@Pkb6
zw?%+|`!}Ba;iEl9xyEe$h`!t95M)(|djE;OG0wrqcDvS&&c6~T*|vTfcLWKQGU66?
z&$x@Mgz<*VGt&L<(&#_M4+Q_&`6$C;BM{V)>TKe+tGs&LDFPh-L7_{39)8=lkF<%x
z90DTz5tl(74+^ox(lRWS-;;cGt}KxkTDOagTQDNuwiU;T=d!||?R=$<2fFs0)oX41
z+Qs>`vC1ivlD2DM#mdacSv^H;xvj9SrLO@H3sIDCp2C15+xC&QNamTyh2;beYtGP-
z0q?T-Bso(Hwmsyor^d5ytDJejKHbB{!DcS%n}ZxfEd`Tn%x2J4`s8wK{P26c<(P!H
zT&+Gq&;Krgy+Mwn-1qb_1#BziEbkVuDaFzrS3R|2A~^5(;UU)=bUr=6vWHcEAMEkg
zUh@vm{+`YiD~;Gpu6S1cSZq6TRC~O|DqFQsqvAC==CDBEa&<q@vc#<b*K0aAIhIb2
zxAh829eMUkR|DV{8|1iyE!yi_bZ&CAL7i;dy`%FgHc^5P+PBZWbH_gV(~s2oo{zfc
zPiwig&*=`f-q+vO0C)?wu6^yXt<eWDR#`A>-zAcehYr>k4C3s&q=RQ{$;?@IA5q()
z$=~<l-^GM)BM;1Nh?nSdK5T&FbAXD$3fpob-90BkO>AkGg*)Z2=Ap!l-AlTYN_Tsd
z*v>mwmg-w!<Mo{VJBvLcD1_^U&S{mBKE%T<4+_Cw3jcdi&S}Oi&-Qz3kdxn~Ve7G9
zR}C~<W)QdA^@?2spiJ{NVw21^!<Im;MzzD1R~skUg1-jvQ)#^A^8r|wfQ^IZ(l_|o
z_pnK9SK8&-=5NtnA=i#$T?%aLE<{=p5T%Mm^F*!253t2#g@A2A?F6BHtF()45}TNW
zPDGMG(5_ibrt^$(lMcKm3;Y#A;zR|t8tFKyRs@<2yVeZgp6l33!&dKLllBc;9k8iQ
zD1D=0TY_9QJ4~@Bw~6A|nmv-N{w(lc5nIBu`Br9+Y7?=qC=J}cy=wA<U>o|{DmKB`
z%qEKaYWA0DwLo)Q0C1ffHo;mPyW6vjClhquW9$0)bl(q%&hxDHCVoKWx<amot#Q|j
zfjh06FVw9XdTH2zeQNfYc6C0xJw}_jLT-$$Ec)(Bzt{Sb_Ql%y0mmlx%E9!hEv7{u
z6|wL6PuK*@pliS92lA~S$mWAaKLBhLuyyvhgDu))^Pf%UGyLmyt<7Fbak=tNR(dH|
zP|dpglWlAPRg2J(E<QG9>OaMbT1)H)R;vjB+QDM=F=l*+u2@`{vB<bOHnxqIrPA8s
zG*Y8tlAWV1;YAlZvIa3LA-j>hU1|pCP(i2foQS}S998KFV;tvmK4K8u1SUZ<n*$<H
zX_?ZsG^!9jZ0xa@Rf``CNi(nw?(Zo%jjku~EVneKjPVo_PpsXtcG(V3xu@+hyDo+$
zH_D2*NJashVX=A>_Ipk?;(pAFi;eCsc@XS?q%Y5A4hs#F^r=G&RAo(uGr4kqp72|z
zwh3}Q>}9T^oqu<*c*?zY$jRmw{%nlDr+e6{?r^Ahmpz@2*mm1%?c{O~+t@C<m>^e6
z2(pAX!(M^i-;JoVR|4*~*m#RAVvll{XQ!~MA-9DnNz5B{{#I;|>lEaw3A~T7b=VQ7
zdSny#>@k^KYwh0cp3Z5I>mm4odQazf?3M25{8emto+g+ziXXvdawjAcPZN28@;CY@
z$Hvbt<-Wa+_GsA9&!=D$dFbcD^nrJ)wIy}ivw0jkG0pOoBuVjmU%sR1RJWkGG*fzd
zC*%B=HPMfMc%=XJzxRu@+P974rrY@Dr{7lk7k_@G=a)+V_kaFE-+s_U4);;D6*!-5
z-kmhoa(sFsrTlG)E3!znEL}3E*?-){aPWl5waGc0d!qD?@8-jkHLus3c9!cCc4pNj
z&_vfp`|Qb`%<Ay|<b5k*d1Q}t#~w{~CgT=sVx_c!!^e&xc6R_+(FVU^kvN%TD7jIk
zp7Y<b#+*AD0TgTZ2}Ehz@p!bv+dgGrdT4@F!7Aspb5`5n@eZf8Y$soCx$AX{1~~sY
zv%ew}MFzS!w-3B;BNG?6%l~eZ!nHK4yls^S&3pXr4cqG2BOkmt;Dgd17(bVA3?ehi
zuv;e8$W1@T0RylZ_7PjkeXRxI(}vviyvJs8*X!5D`M=G)IlD@@>o=^|Ys8j2j`bdE
zz@8cx_yX)BHV?QgfpcAGpnB|rbpo}Lv=_m~TW~$oRCx8L#wB($2+WdIw9BgxJs3}U
zwn3eD{2gBXPOd|}f=MY>Sg!uAOk)zTNq}V;IM$cu)Dp#d1-;JaDA%BKm*b7jn?2{C
z^PVq$K`@9XEx@|QdIYOuk-m1lQ%m6xIR7aIhp-**&}u1Uv5{Lp(DyZ^1Y(_w+?lRp
zDd_k7><K}(z^mWcV|MJjI<KuhLBwu0U_AP41J>6r_)v|t6wF7hLjX{#-1l;`+8?)*
z5M5yDYAK99Dx)uzW}m%}dd*&YKOnrNQtKm7V5QvKW3t^Fw?4|`YW{PwpxWT0VtX0v
z(QKmG<9cfopfS@4(uzT1mH`c)rDD8%{kF#%zguB&%`Y|CE{4!9zu@sGaynWD!e>5%
zm&0VBBSOh`<V;riyVd~UUswj7jwO%~QptItCk$A1%P=V~B(gzc#)NaUOA@ONkJuaX
zgx<3~F#i{olF}FYIEFOvC5Tr99Com!fURq{>x=U8+q>CBA#&HNwUB2YtvA>-)628r
zaPL&xB&XvqCW*&s`_d?^N{21u*>y+moHbijuFj#Jd|PhAR$Xo-k!PSQcYPbs#t9K(
zg?jzk+7q>{*m;7^*Lo{g=v>CWOZ72jd^g>-U<+@G=T_$>*u*V1*EuY=(`mi6i8h`^
z`%+!*YtTyu=RXCx*FmmkuPXOjdz9kSBKQ8iv8F4}rU6@zz1*~?*w@xJRv+!L#~yTM
zeW8SU1-o*EJyOehO=gd^b~e#;4tosP_xylhE6opxr!Td$$D~cz$uigk?Clm?vx!@5
z@ImNnhAsBh1YZ5x1?F@<WrbqNf)#Y%M{$R=IuPX*A9c?jC-lWfe&7~c?+02SuwhF9
z+xiA<Cf5|?HV3)w*<<%^iBKm36Mo(?Vc19mR<@&DY63v<vI8iEU13%06-?1DBn_}8
zJX@XxS{2!4%fSfUK+)b`6Z`xtm%Lx=b2V^BA*i2PK--HU=x&Z$haZ1;xH#m$)B;}K
zPDD1+l5Y)BmnlkQxfy|HKU}L#YH&6VcfDcEmxln89Tw0Z+Z{{U=Y=MsE{NkvGhrU;
z!8aS%AYesdJSx{xg3ZM@3h$m;*7ayrHMCo%f3!W5oA#~S;E?@trTvkvE#Slq_M7%(
zJA(Qw-4WXaY}S8FZV#~&`L2<BHc@MzJs+`2!X-Z|v{wYh%@)PpBDNTut93^s_w8|P
zUu&zuGh*X^U&6C*u-Cfpm#DXi_?vjWVVgb{d%$+jCPsTSY_UCNyz}AxJlNy3cYk_C
z=R`NV7&`2!B?i0&n?3Ia+h~tCFZj(PAGM2(|71;8x@)i0_k}%d>LwmvZ~nByMkGlJ
zOEFuo?r!XD`1{Y4qQCX4M_Cy6ApEANKmW-}fAzCfsGI3|i-}xJruu}juQk6e=^~gu
zR<|!-pc?#V9)jpG6F;`^`R<s(f6uqu5!++E7khTy!IpM(D)*wd`>1G-#ebz^Apbtf
zh53_)5jTEXee|udh&onXov<yN^77P-P6H$Qn>w`1KoNqD*I&!(+53E##TBPpEOkq!
z25|Wyz7;zoBTf{h=X_|^jh^$BmsLMkw!L)4pp(znT0N_L@|^@qZ6w>5OYv1v-LkG(
zX1el10jma&bqjmxu<)UVlBCG1$kX_{S51x4jCad$*GyQM_ZDP+<%X3dDMl#Ubnts%
z)4{rGB4V?5F$yOheDc;;&5mlF+2v%|LGi>`_}voZs+1tuk+GdOY|2Zx)==07#l+TH
zz<FtMEy9Uv4p??IVlZ|^kqy)NwSaPDZZ<+>IwsMv*#tL9mRZVu@GcSL7Hvki6fOQP
zdhZoFkLQ*RZE`m3oLQxGSfFSM*b+rrgvsSdz-E0x0=B^(N353ZycUyd@{hwh=vZuG
z*4637?K!lw94F&sN4BY9!=Tf2ZgQ6MLM|u4S~ROnGCo<3-WS!L7wBBJ!1J?(uU;t_
z#7P$0imijfYq1P@#cBm<($xBr=ot2SSsK;?tk&;^yE)KN$l}J@uu1T_(>XF5P3J!G
zZ4O^{62M2TCif}3kE+&}l5KG}KcLUn$))<NYboeU==bnZDo4Yn=S%bp==Xkp$48Zd
z%p&-x5^O;1wf0-!JxkJco*-AlMxK4IeXGan_DlUP9g!oom1^^!YQM2>O+n`f!slMc
zrZYPymlJHDVmp5xeOm5z77*=!x47TLcKJx#;3zd;-yPj&a(^KAc^(*)$Y6pz_|1zp
zt8g~*;vD3PMR}zH1Z`F+vT(!4ipAm6(Wn705{$N5H(HQOdC~bg<#b2(bWxu3gVYAe
z&gm$uF`2NNsmQbEDTA+9YZOQ@c~QP@!IqO_lLaocv++nxjHK9X0jwnqfU~_Q$F*Re
zG00qW!Rm;GYs04WCd$Ds*kw_3k>|}i)X*JlwFs3OzrQ@YfQBQroq^1!&Ga2iKUNJp
zkuSPyogS@kz^dYR7y1P(_;b5tjbF7E(==hXCl**aqeiIzuvnK7fK|C_c9~$8#W|8O
zh3*I{kQ;dT`S-K#q|pR{R{uaLzp7&65G8beg3cKm-+G=jh_gy!MUPG73T%r!YZBRC
zMXsyV2I1d`eUj>&7ee{o)v%d8ZteVR#wyrAzr)_n7GMQiE!{%6WW?KIFm_~$O_&b@
zHeL)Cdxg&VU8f9ssG@aE1iN5Ev3s*e>g|!S&9hNkg}zjcI<Sh3Ns!&Lm<|n_EXYne
zSzEEd%8Ts96I!U(Ib)j?Tk+j{1X|4^{O{7wudT09vc=-6eDt-^6doYg6^p}1lk4CI
zq;J3vH11aGOS&WY2)VA%xs6X(>r1F@BQ}A)k`0^ts04d#KB~aJPR9v->4Lr#{6Hr6
z17_dRN6qk2OJ}bM{!-;S88*~r(tf^*e9V8EAJDO~>XiFGW7EF0gk+u4`KVgWN2wq1
zeja?3*@)QVs^82*z^>fFunEI<)LKke_|FWvUW2_7Y{L4Q$Q6Af)&StegClmAZ~~W{
zOGaUlY=2Lns;kr+;f%cFq{&|VZ`>yIketv`7Sv$LLdi+65vi86YQJY1%nbWux&x6a
z`T`#saA5A?tJtO1UhdnA`A-CbBq=AU3~UX6!hb*4L&FYrIM;FGVskvi5SD_h+pN1Z
zuShCOq1`AdrJf#=O=LJyG(f|=&a9vFrW^TY%vQqzw58YyaP}Hw{Z0U_DMC^cKo&b=
zw&*k|uk>~u-`^Mm#Lt2^nloXUllp@D*<6EwjT3~peF@m4oofM3$%A^9G3s-+TAf!~
zlOAi|PMUpcT;diawlT8tqVsc&N8RUaMJZLq4+go?(9Y-lUN)B@YGde#t&G?b_}{G^
z^9k2E+D+#v=-lE+_FcE)nX%n!eqDF4x!g#7lf^KK$2VHm?!~Z0?0B{%g;9{}@<6U-
zPp-gj*rHqw`!2Ta+-kG!>AV7)>pa95W-MHdeW`@Lv_zd7HpuNB_R${iVhi@T*U#_C
zHNPU)=?=CvU^i?xHWB2yYmaDOA@@<P8SQ&MYQ2Na`&zA?&esR_YC6w%`uSz(=UrbL
zu~n;Clcj!{aQ-ismL*dzyqZrRN}^x<ey0EJ@4u)2;D7p_{ty5D59xpZKmR`c@3uex
zoBz?5^zZ)ed;0BP-hAfyg^W<=u8)Gx=ke_I@*-p21CkIgLpFZ&pM32L{Hy837FNx_
zUW5NE!MC$NX5VggVa@la;QRUBvXC2mzs`$vC%_qW#1WhNeyz#04E7p*RP0M>$A6AC
zp(DDs7+{Mg6^p_369y2wI{*x@+^{0!i@-(3gO@z}_B-1$RGiOM2T<eI7u&8DtK9QT
z*p`cnbJ6SMM7CgHa3@YpIIEKs6_Z7VYuk<|nXIA+6!sGO81O>dWM<&5=fU3$o<~#q
z?Az_sSR+TZOh|#n3dcEC;jC`h?DwZ5u%Ceq*RR3{pJh-UdG$}z)UX3<XB631r$~x+
zD%QsLF3%pY8#co#e6oqW7?upmsmWQ+lgd$cXk1WeR*Go!*i^1-z*cp_8RTl6L$I!Q
zu(_OjY^HOQ8yDcC6wXl;&wg(i!zU|*a#?qDu2@x0rSX=_z)CsO#Yrt=Ed|A9=a+M@
z<8`ptXpd$SIg#^}kJzr;gu}3{19!dizt5BFJUzf>a%wiw+XxqkjP`hi1C2Hj<u3IL
zI-M8i*_SNyPUn3s1>1&yG<!8{^T1v2{e0=|`J&idj<8SNri;1{+?R|Se3Ls*uBL;Y
z7ptW(O^!`IY}Dj>G`X4%M?c^?9sIyWi{Es8hXOYE3C3Ql1qPDZSW#a6Xs>-guktaB
zbsbpehkHJ18RWLCyM3+M<LC!^A9W2rN_1XEAGLOUNiqY24al=Yy#nbg*!p)X*GuQ4
zu7>S&#}8bZAE?la^sU1Y_PBQT${+pr@1Nvbb@#h8-EPmTXqTXwZ8xnIT++yhNG*4v
zeUd--!(?Iq&ykK53)Yha?n=?$%u`z^l}s8$k6<F0G)IngE#694P-glJqrTzmGM?EM
zlq;>sq}Cb`%9}5Xti}bt=z!FD_$^!Cc*<8SrVF;@He>W!S8!J6**Mn01)goE3l_l`
z7r(u(xNW!6niB<?E^_ax(zBf@EB4mPc}gvN#Q3&3>$VuDf9}R%e5l;O?{44dgt1Pw
zzM7Ojo-Zf~y!y(CEAs*y;{ls2CUQSu>iMjGf%~sy*<$fJVc}D-nOsE;wIxI>A-MxO
z=lgWnDuFtT2gt||nye6->fCls5Rx<GS-{4AKiBFy_oAI^zx{bdf0m5kpmV`0i<hJv
z>;b#e9c9xwIMfN)WwD%myleFeOy`ndLArQJSYXbkbJBOA)M_bk_A~!a=wm813d>-x
zP3KDQV%Q`=H8p!A*pMbvPzz9TUm`5hVvmziE-3%BVmBH*q0LYBdjcg;pxGl(FU=F`
z6(Eap!lDKGc^rF}5u4DzG`Ut#{+J&S3O1_)!58qtynH{Y)&79a#llR^RTt)4jS5YY
zQI703r<p?%g4WlVNt0~UwdGE(sZrgTACOfuZO`^yQ7G=CtVTtn-5{+~G8vT(be=7N
zqIyDv`6%~6*3U_G$_naqj>%{;d#$(jx}e`uwVEo~Q}yNh=l-+0y}FN56KL2_Q)NQ^
z46C)!&9^GKAHc9o{Vm7k7fU<=P0tESR@fx1`YuxrJ5>;rRJyF>a$Q1TUV_VOPa|Wr
z156Pl3xa|rW6@S|wFJ3@bK8Zx-)_%>i)z7+>M>lu&*yxY&GKQfhY52Gu8%Pu+5S@d
z%<K5~G@OghtI}k&%X>xG@6B$;Crdx8Es17axv@Z-*uj9!zJY0ce!MsSZrQA(VN|?W
z9<PrMHKm(-TYJZAUTbHF;|TU%P{{(gem-2A@ScPKF4=j+Hr{{4QXl9%CEpck&%UvN
zI%+;#%l`qkv?sUWeq(1HdCa@}SF3^9+n?);`lFLu8o28XTS{HKbA{8+G1%NF(^2Q~
zKCTnA-{_S3{*mIn25c4fe^00OZfUfKJJ?LF<8jYz?#VTBtarOX2AiNk?l-o&_v{gS
z4aIHk+MWJ9Vk10D*FRIU?-3i?_xkm%FmAEsK~^^>NylD^$EM-m$b<PBclp8l89VDT
znU(+O`-Q%I%JhzTgJdgf>9GL&jlE%hjlE9fng6)71erOU9s72=omwf@dolkSZ7v=<
zHOn`?eb4soeDvk+`|bA+o^|(=zhe{B{a&qG#(=5E^fAYL`%mb+)`{(*KFDt`BNO)F
zT5Goq%F!e(RHAco<xiGDC3wm+_=5HMn%%C|!K=J!_6d;=Sna%c=03L7aEAz7;3Idv
zWfyDv9yfSv*Q_ti7V?frnuRUdM?A<3*k}h^>aaH>vFhT+S*e5L@)6h?H@FlJTw1*X
z={&1V$~BATE!gDxfXy;^W$ScBpe0An^}LI1<gPD~AHFItZ^8tslv`|3=XDp`Aa^*(
z&L#r3`UY%`tKN#FsfFvxA>_&v&AK+5cnh|Qi7Ns~-kuxBe+yn9lmDL1<Mz^oRn6M!
z5vapVuvg_5Ho4SYY>%;b*vc&*{6lPOD5OWopseKe399Xa$)U(f#Ci`K<mi6D7sqV3
zhGOmf0A%y1pUb4<9<~C`|JUp>V+;DOk80TJfUOSL?3{vJo4vL=5Q5F^6<mPp>iyLH
zz~9zK1+05IAF<J_!Ck?|#qN;Vr*dunw8UKn^|2qg=c8iXhtUTWe0dVlo3@KuyZj#C
zU)iWa8vLr=m#iPp)!XsiXLj^cr?#C|cRfiE69Id+H_0Y0jYB=pMzgg_(B*&yP+l<Y
z>7Kx`Zi~5`(K}Bqi>@ejn(Rcms#b+#os17MDPMN6EZXFCNEQ%k3%`4@#j+%{ZAt^D
zi4crkc0vJL&-srGmSq*L@`$Z2pe4*2+$t+}Jf`Fe(Sog34=PTPrZAyMDy3U&s}|`s
zxn2frf_(z^#R_IOp5iO8&5{j|od8qdSQoi+XP8t@Yr`gTO`y}`0O>{L*f{^SpC1ky
z<YT#|;n|K&5+l&QE%a%Y(kdBA5{zD8BLN%Bk+E^jA_;=8SU>_c<<Ykt5LR4v)}pJc
zPWBF?&VikGBjtci7w}V~%M*Lt+Ou+~i`*l&rMf*UHhc?a1R>W(J-LR$xSh@=ogIt2
z0h<<;?(I=_h#kQ3zv?9DAXrzy7Wv;>UrSP7V_mTrF}IA<SpxV-;#evI`j*szjPjJU
zuO+(Cxl<@!7Jqi%muC4cn9f_fVv|g^rMS+GKF|C>8vKClep^+}Gq%l)*jCGeI~cb1
zY(ihjz$QC#;G@_ci`gS{{<A%=)pZ{I0G}U#twtYZI-hi>v-_xdhFn+2rhZ^`Kftze
zUCjPquZEo$#aG<{DRKpc;tjS%{o^!e&}f3rWS+5$MrjE%{D5Ge)Lv~zqsaA+k8+*!
zIk08XaqpuHo7gL`U7%yW|I5{C1~lqF)`jquqpxiq7XCB)P7<ymVdEyjHX#9Oy~2O$
z`Ne9<Oa~czTo<hgFk_2a%Lv7;?~qN%pEey@XWw098GtRrRTmv~Ev0cj*S#-it)DcB
z|2O6Eq(d7+B&A}S@=?B}Vz(99#?;0Zky}|}5(wT{`!TjxO+u8h9Cj60a)%{C9YQuI
z|JM^u(0&Y={%kvvgoySG+ldquM`}CIWC1#7&kp7!nL;7)1PKuZ{r@;(J07I3EGQh$
zhwT&=TGBvE;Yl!6vyrEidY<y!k_rvmJ-OBga^2%8mv-=wkJv1WI${%FHgMMy<Z8P)
zX1#e^l(odE*RT;$qzdVD2t61!@xg{|z;4(i5egZ=-kt;3cfe-$8nL}rufTcA2W(yY
z&a*q6L#HnH+IaOHTWPxv%q9*|uJsOgeUQr@_E9eP>~WOqWZ%|OI-S=&oda9GgDt%#
z*R)gTVU%msdD3rdv)7@P!qAsu``DNE<Z9T=UiWl<&mQ^r$9wjOXH5ayG-3<=lE0Q}
z6B;*?B+1SHR!}qYk!CIEn@Yht#7GUVi5t8lPkhwGzn`spb?@fbY@WD%m!D4W$=F@2
zMupV=*?iy}$MZ=O94v+=eaRAfaX$L?8FF;r9@@>{iVYz%zq>x??%UwLzx1@u=KJ42
z9ou}A?)xa~=dnEz-T0`MND#*e>2DQt*jX|PD{ppJEHb6ZvL;KnEl0PLPzb`I18~+Y
z+BLwF`p%npo7hzbbv%(uNw<y3))#!}cngP|A5>T`wjJbXI|p!nP(@ut(b~={{k;87
zCZRm}*@Cv0MGN&v`)cQyP+%(z2LPpbpr6k&`O__Jt7GHsvWAT_V$QN%M4z2-UVyE`
z%DWUu+xgHU7pt^O5i!}tpx8LG$*}P*iOFjQG^{+SxM1t>Bt?QI-x9><3399^*A3i@
zV5_^>C}6X8*~XX^n@)%qOwJoNk?Wz!Q3`WKIUW@I1zTHY6f_!jZrg6;*-5bp)=uZO
z*Ez73!6r<OVvh(UFjkXml;aF+O|H6?P__^qb*nI6%XY-q@+3226Z`!Lxe7(qb#b}M
z<VWO4nBX>@yPUDTl-sYsKJ(V~Iq2N%mAAGQ#j@9z?qQokyY(g8MrPO<+ga>&#HMn+
zj99n7U%W46={qu6G8<rQ?gz-R9?+LAJN8H^_<?1VD+c2Sn^gAw-2DLhlAQCT5;`|*
zj9<3lV$w;F;~M(XCHMg{Kd|GYBuGb9b#8Jk!AEu2vb0}aj)RY4xv^ZY==U5Pnlp4>
zg8u}a!64WBK5B8BSc9C+9<Q$R!;Q}UoaHuK-4m5t9^`8MeleYA{m70!sy^sTQLdcL
z=|0MIer+`{xKG+*=8Or`6%&t?`hgh_M6Whjn)>z(N-NFEXiEw9QQx21e@=&GV(6J=
zU#O%&vnT#ii!`r7O;b^Hv<=)2M_nYAKx`$@ZD=6OiipZWtQ3sYg|D{75=BO>os+ny
zuqAi`#mZGFfcRUGkv%FjImb!vA%R$6<7Zfb^TQEzZ&z*CKo=IY33X67_IT006S47g
zG{{^O8vz>vl8Rl6)Jq^%=wAXhqp+}AB92W5ojid{L9QdV1E`eNixpqDK$X&G9gYo~
z%)w{P;<D}YF4si^xp@j(R|VUo)F6xvR7&e=+j33ks|1y&*|Nrq>s&Ikg%U_<NTeNO
z4Us#q^I!3Mqpq<@jn#dU!m%WJk9?gR@Km|3jaJ7d>5wbSr9_=0z<oG|Iwz2;oG&IP
z=={3gU}G#6sO9!4MV(u)bJ7Cl3no#)UT4t1F!m9f=-m1eupO}Qx-QKg<@Z8ULXBQ)
z1@<EfN?%+30>_pkHpq1jlnST=RZu5N3&{qZPbkJ7<R;H9x|HgD>2lRwJ9BbuYLAMo
zU{{#gqZSj+!4E9AegJZnAaTT28a9zDu(3U6GTKpnw)g?wJy%pN8TKfPMMv9#sk<Dk
zE|2uJ-0DWH=u3Opc+4~UD4Y0-y<S!nx$k|H$OS%1=36uT=VH`Jw);-|+96^~@Imme
znmCZ;8@UEQP=X(jcJl+iAQP}n!AGH=Tl?hLpmVp!1&d3j^XQ{=m$&%OqtcSC>w-lM
zEiSAz(+E4QKv!h;DD4Y&tRoSi1PY*4ccihu%#x&N6hJc;XckFCm}KR@CB<2A*X$eh
zru935fP}S6up?7Tq_Tinx&2;-RJ+ge@ZpmuRcK%%>)IWf(#~}u*?=C8zAUBDlRYfx
zGz4Zm@dbe!&*rptyWZM&uD5neY>6)^VH^bSETh+UrbcWr2`4^#ltOw%F7e;&p119{
zzqjwtertOr{!{Ke&lQV4P{Q*|3GD?tK=!azO#-s(W3%bplImnsj(gh<u43)LW0#Lv
z!0|e1AKu4s@5$DVQr|xQw`8Ne<26q(>U_j@V-urXt-anR>&V~f^_k2)IpjO{_TLZf
z=_9cjz5&eRcDwb?@8iAGYuI*<z4jFT`&PN8o%VQb-0}2QY~>@c*8z<6eBtY7xp>FP
z*nQdk{Px}tTOY`6u-!cRSNyyArkwLlzid#m+kU*h^WCYhmqB#Lx7T{xe&^fpx_7;Q
z)DY2+KFa;yox8ne3wy`S0)WT-lMcFUSR#p;Rh?+JbpeCI_~Nm>`rt>;#Tf^nwgpob
z7*fcD6~&MQFnIu$FbXJZ;M=Cgxjtbe*0|}Fn{h=3k{1&zkz?IfqcOOyjl16Xw3Yi?
z1!El5##>&nQ$e}yF<DH6tZ;IQ5#>~``YwK6e4^mLFDg0Bgv9`YlJlI))|jmI3Dyu$
z$d1)AjA5X5p0H)OHqP~eiEWdk>L5o-9LUMA5(YC-jwv^6`t0l(4OkS#BwTf9I$pgq
zrGPcb@T{y>Bna7hMYr4g>K;Dy6R=5pR<3XA<dR*kl7R#{uC*Y0zYTJd%pP+K^kstF
zjHg_&uBLMY4jYd??6qpaMB^!6gOjqAN0X~$pPId*20+VL(5=*}^HzVL;@uMDYBd1j
z;+kPC=&#C~uiW-BX_<16W9Un;37HgAt3W@YM#Z|u+6g9CwSl!-c2mPrOYN}R!l3k}
z8tET&tG4sQLyoc~9(5qJeu4Hiq87a9s4}wED+sj|AlHHnP?u9_H32+Gl*zMjjpiU_
z%a~VN&ZJw2Wo6y6^K0vCRI$2D)_15|0oDM(8hjM&6@EjiG?Z57p~IR9bsYk)zSjb2
z*lK43u@*?QM-&MZom+i_Laj#1)O@?yD|D{Gwd6j^bRKoA*sJ@2<Z>mKYxAesb^gdl
zEfL!wR|{?s`ciT1s&kp758tI4KH~Aa<XB7X+S}k-?-8dD@w@qXA39=?@uE$5k+{GM
zr;U2e__bFJ8ijtX0W8&-1+-AY2bmVN<5bU8`Ld~6PzXWvg2K?GeM9>aFGwkuJ>N@$
zMojULkm*(x8y6#8ZShP#bih_AaD%V1J$BAja$q=Ul<;iEDgn^}n+Ah{&1zgA03g_B
z4W<cyHZPu$j$Mie*T7ZJSePa*S-^F{VwvvJT(l~eU`rGhRwSsd3n`juXB_JYRBI}$
z$W0a}@ND5spOp_@g6ymMtT|v4>@%=CHtc2+ookU-;d6%0WpPcuiO_jM(6XAZufUR!
zacp#GunE*F5bVHa*jcYC*CP5(GscgL+JpyrAXo9P>k6G4Hmy-{z+!~hqtL`u_w|+y
ztvX*MxTE%pz;jZai(GB-7vpQema8vLRM^Nw0UH*9q_zy~waK-%zQkCH-Y>x>3|mR$
z1>_Z*?h4BYs>?Xa_}}HltqugRt@;fWduBtjZ|01J7QQ#+D)zcA!Cn*Ox@uoZun}Ol
zg%mQmQ^k&r3T$Yv72|jf2IpK_KVOV*H+9(LGv+$az}D<_GM%$rQ}X&6iEO7!ldJit
zCD^NA6`gBeBlv-wGVB#TD#~>YaxLJE?R-?xzLs@iPId|q>XMj`vc<J)>uVJHxz#CY
z{<Ai@@;CH=u?gyu%&4+nuoJ-Kx>{c{A62keF~c4g^RL<EYC4y35c}Jd+((IhNk7j`
z=Q%a(8H+q*ixXjI%(}D;ZPFc?nhj~=D9yr~v+c|_s>-AbE%5C+4pVH}cakoEVoWy^
z{HgTwwx>N#u+4wkH?P*(=D3AW+Xj*TAvn>-3U=T4?fg8CI9`bVR!UpMwJdYz)22S@
zFmfyJao2m&;q}sZp{dbASxtZs=d+F*=1>!0`|s1!lW2%}pKURS|9g$R(A#sAVl~tR
zD7r(HGvfJPe7#|Fe)p|ykF(n5Y=({LF!|d)V+_rQXCT+c|DJPOY$UWZ)#g`UedScS
z{NESmz?NDb<edH%g#4SIeocS%*FVvB!S9!~$(5hQNjG18^GwgrFPMK84@`dh?YDH^
zWWm?+Z~yc!{+fRF&9~BiK40mlUwuu_FG@Z7?T0h{)!%$2?`L!6WnDen`KQ};|LU*)
zhQ8jO^TIMf|1+I`y|w@J>z{3SR(T)(`_H!L&q(O`$#(wL*WWrXx6PHMCIBgQ?1v2l
zzw<ZGA5d$hbaJ)1jm_!I9=(<V=2<P-<8{veDL<~YU~+!MU4KDhRTmRWEerfIaM#Cn
zmdE8mU%D=j>lIwyz+JzL*lOUem&Ctbt~AOuV7n{VfZgPJeWP6Cvm<s(rW@z+T`h${
z=VL8}N;`?sdB28*%N6~_<(BsAYuxCZsMGm9Y?>T*y{mKnjxMX!Mr9{_rL<nu-^iHb
z!#3u)3Z13+A5yjh(<yJg)m;$!ou+aoaK6a-J$saPP9i)%1DpC0r}jRb<nNb|%`de=
zwrdXNKev7?$)5>35!P1k#gaMi)qCOhf7$$%CONcSUgrDxcnQ9pk606c_2EghIs3x@
zYu_c)x%uCyQ?thjztO2E=Gc&E3pspz>|v({K=uDhz_#jEv!rua7i{F3<(rs89l4cl
zOPg<P8QPhXT0X+qa@{!pM-Fvxe>*R<wd36Q;q4=Q(Shf5I$~@5B3nk;pjTw59c-&Q
z_%V%N+qu5y$g$oys4oM@`t=4IxWG>hn`|e+yPVG#txs^m_T9DT0{3nE9z+Y=^#k9#
zZEGI+u_I48g=df0BImz2j?KWO)<WciPlmN%yKdkDH}3jr@?vS?V5jMIo^r3H(95;e
zQV4wSBDZsA6BqE5OQFL%*zA18b|#q+ScXt(+wm+I<2>b%Ypg*b&mOS1dIdd)deeDp
zmwE-86EnGXIzO+DO#<`lawFG<RkMo>YqZDuNUp<qljG&aCK~@c?6s5Y(y%UC?Dr71
zk+EDG-}|U@eKtGm6tNv6&wiBSrME}#YbWVDXXDjJ%?iFBV||)h=AX$?J~V3$&RZva
zV?RIc)SR$vxrpsN)>61MY$n$feAJE3VXsdvSH?P1tEI5^I*)zn(#!G2N8PRMaop`|
z+K##;c()AuRv(2r5Z<qK^2}5qnr&AdYx6-Ni~EjT_k7kpA0=2iKhWBx?nCfV;y)o*
z4osci&lqrot*#WdUJu`;r?@3Er7*aO3)nJi#o*<05B$eNv$Q1Bf^-tEhX!MecVCOC
zgY&;?Ky^Z-|GI##L$-V-;iOKfqF8E@qT<F`EsHZUHsNoi78}pDAWcjot-6`9=p}sH
zzJSc_6^pJK$P&7aif0QpiTC-!DSsPe+xet}amH3X5Y=j2=*|<xrVD;Wv0odus!%jb
zl>>mlW)yxa=>}Uhzs3b_<E*tN1g?y4TMKVDUi~ECCj>LEoaJ40SBxyO@gzZ3PJs>e
z3L>w5wt>G4i%@7xvTikNINRc*EZieWK!O+ghO!fY<tkaRx$)|wAMs)$Z=tkW3WiPF
zRjyhDRBdW9`XjGbpo?|Y7LZ97{)Iz5V=-HYO**MyY(yB3lE~fVibY+sN98#uaQ>r4
zK+Z@^Y4++m5B4e=nRNUtG$t%pb&2|(oJj?_E9IZwOA;d!k`P9n3-$^dNzSqEWACK=
z?S$aEVH5kEwSIwOOInYhwmK1vt?68ps^2AGll2H#t=l8m-dbNmyYcEf{iZGYDlK8e
z&O0YE{D9RPv%>FJ>|$`8V_u@U9_k0IFSYs_o6V5&>dUi|>D=s1<;rwN>KDvjt)C~n
zo9eFl0iA5k!AG&ZOMBA3<_SCI2cnPS`}0JOZJFP>7A(YP=)BqEYAkvg?@fwLRjhPI
zr3T)7^fmWUizv(MZKzEoS=6XzkLYVsU!#`b2Wnrh05%~>H1JUszF6uDxX#tbvk&Th
z6gA&2*z~Tg-i!J6)O<hW%54SoM>)4$44OGbNIY3X5XcswvtYbp-brR7E8Yj#t_Tq5
zq#Fxeq*R}L|I1?EFD+26M?&2Q@<W53y6~;H-m3|qhpI|Er+;_88$S@WEM`3~W_YCE
zpElMa4^pS_cN?LN%P8YH7$xnYe&2NG_wqA<vN289Hax4?ef@z-^%-&7b8RPpQAUlN
z)hWC)k!6k7o9FHxsbvVuLL-9T@!xpyaM5n3@sNZad1dtkiWQ6Eg1y=pxuT$W@m)o>
z<Mwp0!q+;N<Lh}&%09)C&Wh~VT|_SP0;<GykvW;|Ueasz-bDhQSfs{yM;FIiT|EAC
zJnF6=TgcY{Aa)-mD{{W|?^AB}#B&Y~46YT|aF8(zO_=$tUAYeSIJTR8`gzdvYxa7h
z+gkhf!7l31FYH<Ou;=l5+V4w`+Q)49J#01nF80}bhuj<2n+(Txf42v6O*_wu=XJo|
z=_~&Go$JT8*KESD&3^lO^Iq<fb};P8t%i4ryNAa1=m)xg4~LEb_pa7D4>h%a$*N>(
z+6i~GiC+hBXy3t>LbKf>zE27`<NYLUA>JRdw{J<RJM~t^ei3|ol#N{%pIy4wYVQ(v
zy{K*KmE(7csMqDK-0^I)#{q8&lF=@3&%)n!%=a4f-KsxG2d}rkYl{!*wi6A1-+Ngv
zae)gPpSymg@9~uHwfkz?ZoA!|yq!N*RsTUh(wJb$9tXUz7!oFX_qe|wVcY#Zo}Gs4
zeM=9w<HIA*CS<lIohT9}L1ft2p&R#iLFRtScc1+hxu(IPy;<%E%!tj{tjF$GETeaR
zn;d@**nJC+&8%}qCKYS~6J0{Kamq8~Zo4tmN+lZ^0U{X+y#ZVONbI{dL9j=B+EUQD
z4=zf}>ejK@eK~%rO?bA63a8m)iP&^yT(C{{fi`=M{PCLQT8ZAI^ZK{(0}t;HdnCnb
z!Qh;F9q;u8%^-i9J?3GcvhSk`e3UsU-9cdiE7y6p;)%eXrsfAa00cq%z8ffyb^Zpq
z-}h0a$Bw>aA0)$;cCq!(;=h+qu*Zk(!}&O2i${IX=7UJw&n`%qkm|mqG|o-$557Oc
z!)qj0&fcv;180kA5>S#%3(bTU9$2ARP)_R%4t38&-E5!vxP`O2Y9QJ<t5;B|B-99~
z#$!IWtRo5Tf<A;z2(@Ue289<%-N7d92Vh%5y@G&^-;D!ElKGz+r?q5GbLQ!QEg7~|
zv%JOctk@NU9XJIAHkDo^7I2MqbQD`1vDFId6HuYa1iI(jUO?f&3y(U%?&T&KEEBS5
zm$u_fGFY7dU7a}xR3+f*9LqX+pXb>NHFwxn@Rc5#&Qp$Z({|wsU;8={CRfwB&<@p+
zyB>5T_<pa@dBaw_qQ41pt+o2IU9LCSD%vOEHIH(S*fOv!b?xo3D7~0r*PVJ+OQDFJ
z&KA5~unQ|-yQgz<drWGNWgnYzE(6=p*OnF7*d`>%y^1|5*Q)M#WKMP61=H+tswfDX
z$gyeQCDegnEK{RtGi=8BzeGQ<gKb@{wufT7>E{*{lAw|8<O}s-B!F*yXLW4R4@|~m
z9Q^?7aWZ>FUy5>-z9#fIvpidURKu>>^OG+8bbbK#Dp_=ptL+}X@lo@x|BQW!*3m~*
zQ1Nk6(d=|hDPlw264SY504B#?up=Tj|2dgGR+p>mnAA6?!AH?u{~6?ZF@L(Xf6!VA
zu?TR>^q(bYs8l|v2~gAzOnHJF7xn!!c-)I(o3qj}N<vD`ZWC85Cd`vjOE#``&Dhq3
z<hB@rex0)~c5AjCxh#|}EVcWDS#V0au$D7@H)g<*Qa_&3q{B9!jhxkwIM&x8xx?ZU
zBd7m7TkRhtb?vk>pbIkhcdv&n*e-+SXHgSi)!Jr)J-^ObZCR|72e=o1Hv5q4+Nf$W
zwK3-&2m8;SKhTGlGd({)(@(zsn&#7qez@I7GU>N~_}~2OYkGNkq2Kw<Uzens|Mx%n
zFX-D3&-9Bw_<=nCU;OdEl;`{p{=5H{=;7t^vIXxi^w0j_kHiQ4!ViBScz^QKujqSU
zd`bV#f9LPh^M@DulfV2cd6%Dk^FeTP?Vmi=?Y`fmfA!aYL;v|d{R8^J_V*ur`31e4
zFZ8@&{Qmde(bMTbKmO4#Z-4)i{`nvNG5ztM{U!a<FMNM{w~7Ar&;MK!(thhVex2TJ
z@4^4h$AA9M|8TqhnSS(3zbN0X=MQHX6UiLu%P&qM<G=iypVAM$_XYhs|Lwmo-!=Z~
zfA!6`+dKbL`rh~6(+|J@J$l)${px4m(2sxRNA$bD{hM-|J-M1aPN~%~a*p-X;$hKV
z_xRrrbI)CWQ%hmq=dQOb>Lal1)&z*(GyLAM?ewL|5>p0jf}QU0>f_!c_VkL}#9kw>
z{?NXMt>fK~JHcyx$gzG8Tm49Eh9`2@3uRww>=+~V^?{Evdh~~K9iDx!pT9}x)Ytwn
zY&krezn#3B(Z*YKK2e5@<p$G9yB5YMk`{oNga*P{HoD_Z;zoye8VlgxZs*5*i_PN;
zTOU81-pNAYby?lN3iZwAW4NAD&HauFrR-Z>uI7uSZ_cguB&EJyOXs^o`<`!KHs3D^
z<+z^x-2~sR<FRY2M*wUmrb0HoyrC~en{a!pBdu2r3m%BcRU~PB!to%aU;RHd41k;q
zJRzV{N|z<cf4`Ix3U!vQ!*Irh6@B4@xx2Yti`!)7q%Ng#RC9K6Wv<YpT=OE?%2jyJ
z`M<iIj-*{aoYGFx&Vu9LOCc}gF_$ddB<->t%sAG!cHxBvZ#fTcZS`9?)`3kryPWH@
z%79I_nSvWswhC_lJ#r>1&K3JXc#vN(pg5p_#|7`g*UJ_n;oDa3dfBQ4{%zxb7i@<t
zlTgNXHGb{fxWEnD8Q3Op*}e!i#on+fzjl<P$@L{*;|Yh!k=sS*kh9b$D9XPrT%kvm
zBM-!tSAPbldarYnYjUiRYr;9T8UW`VY_4+x7L%)FBA_!L^&@@ejA7>dKPs>Ja&7er
z1lyuIpTYTm2{v$v_Q}|Rb%tCcw$$kyH7o))le5b8pgiUm&9-kf0WLDxi1i9guIwO1
zuFj*sI5zHUtRvlCI=c<9!#_UV+9L%y-rB_MPSfRDRnAsRfhV_IKurqvF?YSyQjoqh
z$qpQq<5BtG1*_RBbX;n%*MX~kz&7gq47qY&<Lgw8hF#kwSY-B!tyWT#g3nj2^Ds*-
z1#C;S+6kAYbH0Y3y#^n3fgBY(xsRHHj}q*sTOU<+bS}GYvg-H(tdsSn(s=eou2xUu
zs5T%z2)z1?<t+6IZv8;C$9<ivk21N=$iBa#pL<`D4<B@HazzaQ<NTMtG*9l6rcjfD
zuZi2672Cmm)P7&u@dNPn7JMr1qq1(ju3CIB4c{%>TE}v>ngEf`$hM2xcMEGpa^%z&
zhb%i#$1&ec<Yi1p)E3gJF0~1-Gw;3&{O;T=#V+}rx#>%7-1EZ!ZtW-{N}zio9oVs*
z^W?G?&2XEn9oO^U*=Mq^<RBf#v4mIOYR_<OnyJwd9p=XMZP@r33(`S_%7$!E33?Yo
zkhnH%OTb1p)*wPgyYlE8Hr=hHJm!LJg)g5$Q)cup8b6S0E3ivZK;!(MqFj0Ft6{TU
zWNMohP_RPC+&<NYP3nqdD>7Q7o$n+RK%BiQ-ysx01+Tu;Xk%<fsdC7gjmOwlrTWML
z8_OlRTx(|&@=ZKwAeW1?60p@hog1wVu({3!o9bL_ro)z8=c0$KIlD`cYjU}kjsi#~
zlfbq(wjR4;tBqD?#~!WS?70TH&Ct0N9i0^08n6j=!M1kxSYeMMXST<p_oe}xoCBNC
z>;Rk5zv!Ze+M`k{K~A$4Qr2uu$PM<$0qx1;dO<xR@aC_<9w!Pq4|0=5kKhN~UI#x=
zfbFKA!zK!_$>tEW%dW*k5?L-*e~9fr^*Wcnbk%+y?UA7Kn&6`t8{}%(q_0)<HTO|<
z@B?e31cJS~ADC3G_AZ9aeN<NLHTcgp_$cd3^82837UYSsL2k+IHDU{X;KoOh`>3dM
z@kyW~66}!cj2abX(crvdPhMXm_7y&kW{)OUqX6P|=-lbvlGfXhe!pV-{fu$bigwwp
zvWP5gr|Pn5UpY)FM{Z}E<{gwu*?@D@Cs?=`@P^^(pb0}%8%?Bq&Z_PB$sXvZQbW5f
z+-Bc#?%&0#xrAflz;_2>Jf(lH^$ou#@+`}}wiMbtvN7Hm0h)?{%<hAA;OH61MEx_J
zCp$bhKC5DZC}yB)5|L6%+4T`?4Z$DsL^e&TNb%`|0ZEe4@O~C>yJ9yv{@Hg)FQ_HL
z2hUG9Aa8=Lct%Q%UWDgwyjUi5rnO=>_Tse$d695I-IzrdjdjP5(Od9$PUfTQ;_!8j
zTeiiDi;lJJeZ%`H4Ow+6kczS8b-l=3*<Ma5YOCPnzHF4L3%;rB3m6;Ep?RL5ls~n_
zxP&UC?S3#hCkU?Y$i34W-9PTxYs_4)JNNCLZTAYc7~9hwY~A&Poxg_tF1D09?6lMV
zuM=CM$9~{ru+_I<+i5R%?r%2p5Zk@?!nLuzlijDtbqCvSR(mqJwsXH>{JXX~w%&h%
zHcuT^cgc<1Y5!<=wtfl!8{1;L?SzQeiSMK4+slq`7u-41qoWMp2D3-Ul5>AfkB{`=
zH}~w(^dz66)b3zEsc-pU4#&+70A0xmg<7Z$QaICT6rg<&n=MpZl4$L8-?{NmOLvZk
zQEEYiWC4X5E>`YZH#jUP6f%J%-L_KU8Zp|kH7hr558kw@*|8rL|NbWbP@5Ucjt2gH
zR*<9oOBAZVcXL;!%mi$$6JtA|y=h9_{S2Rcn8IK}vy1uf*xHZt_O2q;u$?FQt`7f<
zq}1t1HX4xW1^225?BM#kgN=e7quRvbRONwnIn)X|v6k;XK@T-xOPw64VXxs0>{&_M
z&4%^T?Dw;wTCKsRQ^ckhRUd3AR@=C1x%t%rG<)QK?d2Nm4ZBHhu_eb2>u)lpAj;C@
zs`Un%&P_*}q1>=4bUZ(`w|AX~l|;Pu&`-H<EWWkXe2?`d@fpyo+h!Q(rern%s*Mz~
zr<01L=@_yg_>mx&8gx#9R>WoN=2mZfOzdl|-!~uNdNQ9=)D9}J)X;A!=+)lcuwlc4
zzDtyIqPBu-Sjj$0?Owe`lH#nbUPjAMAU}6=z4?aO&V|%`RA{3dWYgIzQS?##u$-E`
zQuFrB=0d-BdzE)9c=@&qp~IdM_VKArWQ;VxY(jXv>%V$m3jQ-=0MG;%e3ab)SESkB
zGx{WQ-@bFCfVGKc?}wlLWZuRN{<+Y9C9(UmAPZLmpeY4T&nbhS6<qVk=#?PiW*}U+
zRI)J_6l7Q8am|R41=2|Zo^t;a2XU$d@ic>77~g3*UxiX<2F;5W;Vqg8&Ha||hwNkd
z4lV4*wOzO-1=}P6P~B2r1uJK!T@ZB4viLelpidUyd698z=O8v`1=CUMWmGISWXbr|
zprZ!ICK-=d=6^;Y?|QKebu5JNH?t~NC1>o)#D1PN3pWK$PnJu$Xf`5grnc1);WpO8
z8C>3st!<y*g0oqJy*#m(3`Pl#ae?d>yyc9*>&sPp<ur><ukf8(%vduaCChf!MefEk
zKFNCtRUfdGsuONm@Z^Q!RdqgLQQJ9_lj?kh&Xq?~cf*NXrx~<ER*-#ComyZngANQ_
zD=gQ-Sx*ZJxQfnKS@=tAfisGG%C4*`_IO1=REx*!;;baI%vl17>lTpU`^`bFjGr^0
zBw^$Vd!006_yS5AtKY)*YS?PlIyaLnN-`Ff?NwGaJb+)6nunjwi<xEF7Hc<|PY9S^
zi*n`*HV$~OJs*?Ut6@82%}Nz)i~e2`k$87UK{hVy;jD7aUZ1Km`<8R}GPaDxf1%}C
z7#r)A7w8u$ZcEay)h1eD+$@O#hAm50w=O2IM#WyauduzN(0yI3Hj?UzDduDff}H@Y
z7pXVEa^wG<H2|NF2+GMWL+wio3fC$&{C=^%lqCavVYy0y;2A+M^-<E-mId~zi`wP~
zj_^_92iVyhf?TW8->^KdXZ^w&9f#CWBIsOdT5R{{B#Z+VJ|yT2>=*4ToO#do&*j#&
zFL7Tyb~;!7XZWb3K1~)6;G@J|t>`rB>d4|lQF<qtkjqZM&0daL<Lq)StsiIXDj)>G
z7tk@zx^sY%+M^XiUdqz>DDnNP*2hYdj+&J7e^%@S9$_h#tO+LKKluTSZL!S%S>za#
z)@oIbWnJ9TgpjM8YrPddv_`;0M_G?T(O)u3Ce6O~I!oBqa6G2)t+TpHNrR1&=%Dmu
zI(Eombl3tHpL_Cvjcwx?SCZk9`X$e<r<TzxeU3DPk}t8~v9(*hfCF}<=$N7LHgn?0
zoEwL~ac}cEU&}QCc%g{1Zu$2%W?@Q7PJsEaUC)`L(*(a-v_JAW(^c|4PVfiv?Oj*7
zHy_3+Ep(XjZPjE-ejeXv#HKr_b(fRH1$6O!f<MsgQL8s5ve-<EsXN&}Yq50L`1Wl)
zFK4m&llYH|$k}MqzW3#q^4#D1?cX4y*y4Bj(?9=9@jHL_M?Vr@@OOUrL;8ky7ku^2
zc7CAe&Huje0`PXfFTVJae)aGC5<NW~<$iW>*7{)^=luBZ{38AC@BFsNoH754Kl+#S
zU;g30q+i*tVgK?wzy53V-}=p8r?0;HnJgH*fA>z_>-n2!`s$}Y-R}Jh68qur*1N+@
z|Mu_wJ(2yN{pDYYAOCjy9s8Hx{;glvZ#7euZod1kw)?TJK0JRAJiqnhU!nI;@8}n{
z=YI9mud%>b=%4-JAJY$i@B{kQU-|{{Cni^3AUIgYFXTQUlUl}4wYrW*do^zOF+<&G
z^sb97%(u*cYxhJvENsRMcEff>Hu4m(S^En6o@2H$?#<|o63zNjtg|-urCscM*ofYa
zZEL@WO~!uP^AF%}|0ucEmcZE6=7`wv4cL?GJ#1aOESC4}u@(YjJ4}rUq2AHCVYhn=
z_6OMR*`p*lrqr;_b7zmXTPgZaYgdwoEc2hbjdzGCv5%bj&zblyV9q$`dDR*s6L!V%
z!8s7$ykLju^t|<TwVMi?>g;u0J<+bpg50wt3mvzGf8q3J{|W!PV8PTl{3Vfj`!}u+
zAilr0nkjrdzr47wjyuUa-;eq%1#;r&aJwvoZhu%V2ceW+y*_~W_D$v&^ZmKilH~R|
z%wOYoDZRBXna-)z8?d-wvLKbmC2}91_=sbt20(u<fgeP4gj+VZLJ|`2%ixOz_o5gm
z-zOM2c{@4)wQUf*O(F`T@o|F}8s``A@*7vZW@seeDsw$+Hocys03YdgzPMfFn2lF|
zZM^zkn9#P{VE_^M<$7#OkL|43o*bKA?^_9ZH9h=(xq`bMfrLw0Zm_i)0J@_hZrds4
z0k(lF{Br5#Xup4Q{`gSuplZ#49DaXAHj{IKWBcvVI`6p*^$Kc`s}&@(ZH_&*>vhDY
z%)E}xbZ&AS-o<$KpN^(;-EyrQge><cSIzn{tjpT#Tn1K!ZscTqgrm;QUK>ArkFD{X
z2Ycjq;S6=dhTqGh*Q;YQ$6<0@fo;ypOL}XM%CYVo?AKmyW)rr(bk81Dj!o|DOHRCP
zn)KZ|ork`pHc<mMm8);VUHiUd*hYJ`XYnqE{@qYZVX)WJ>DCXZT(xf<XVZDJPw(d@
z*8$rCY=^-Q^tBZp_^5L)#|7NAN7z90QB;v3?DjhPsNw;^Xpf_hx~XAdgT~PhoO?OC
zA2{y#0ct+#I5!{E`>5*YvA)KxT$iPn<A7ZPHl00MeT{uTU^ZdC-m=1<gm!{_8?O0J
z9yGpx|KtO+z3<X-s0pASVOtDuSZlbZ#zmy>g8y>V8W+APtg<AfV3De!1S*j>X}?~T
zoSAorP)h9^9CR!JNB*8`R8Q<P&C17K*+wwn^{w$aBkQZtlq3t3QuXf=KU)^rY>Vci
zoR>n~K<cyf*@{iL!_m$S7s<LM*&ZqZp#{`6@a>XG%~%dt)I~tC;yWaP{j7n12}Tlp
zJt=ps*p^{4N+67*OfLLv3CgitQyVl&-zixNo+|dzCYM!rR0wZ5@0tNNl`D!+U382m
zRAQwfkeVeRt#wM8++@s`G<%q+jU9yE#jruA$+3av1lVda$_35*H=PSlxfFU$pd~@3
zwdq`hRhwLajU$e^wm#b?i>u0A7EFR%qdivLLYy2Mbe<Hu$z21E0UK<BdEqD5xdu`X
zGjzUcAl))vc}>Nzt?<osPv^^uXB)QKVPm<M0b5O`bI2Xn%R&RFnGW;p#m^;pc~DOM
z0$LN%IZslG$+Z&PC8(4Xo83Fw<1{yWEx{&M)cQEY@n%hqZAE<oSxl<P66b(4Y=Y(H
zI%nM6*Cu_>wbYxyiuwViR&wl)&2&BuI-em|T}ZHgzAS-;EXY-{k=umIRehA{T#_D^
zh)w&Y(&o@DwncZEn7yu}j|%qK=#E-nYW8Y!)!HA289}9sQj|==N2&j8Iv3iTWIC_j
z&uuJ`-Cm*dsmWF4hTuFe>fQLL-VgA>0f6Uih$TLVbh|xI@O8&UmcqzV13)tWCs~-g
zAgH6%h&2R*VPESCo9M^!vS_=tTvqK{Oaa8txX4&$#xB=ZjCKNDoLHv>6x#NFYj>8>
zNf%ITvA_<sY&}|n2Yok=2n!;XHnb-a&-X~mQ*FW<^E1YC`?uGQxF|FJUU{A)BXfVx
zF;n;M;mIio@TBC|#=rO2vB+dN$KTvFqAn|=zqe%p$#>wm^}XV^5Wkv?#-vK06RHsj
z%x1qA@APGVk}7#pnvRQg;mc}@_<M&jv-t`vO^_x0twsHw#fvNmCL@vBCoD-OI{d4A
zzbbWdR7z9GFR7d~sgq;@*D{Ti9&gfq3#!{&9qfsBU+y)EI9wagJKLdKo9gZg+xyfb
zMXa#Dt}V9HEjGG?)v?uj`*+&GJ+|AwJ!*e&Ji?ZSXQzAjw%>d#w!PohK>ORb-Xx&i
z$kFbZ($Hsa+lk(2kE71RdGw!lL)neYeJR!9)wC{=+HZn??o$JKO!4hm7Y63jMDs*%
zJEUvs{XJ>*=C$g0iTlvk@BeZAW>+t-{3iO<*w^;#^JAZ7N2?&zk`q5=5n#6lfZa?E
z`wtv`>OizoM`}|#q)9}9wLBg}R;(K!NufqU04ZZ}K^jo(#dycvc)<gmvTg$}#tDpb
zowaDDAK5wXua%&5Vk=uetR0g-$qHj=R=8(v*b-Kt_OQ9!@GRd&VNM`7j&#8lpN(Ke
z%V3-I!(Mb!!f8B$ZShKY@}aF(-EPu}LoFz8#~-j-kujhXwoVT21b{urtp==h{C$UY
z#k=*_)2zI@g00pjcgU3xh^cM%2yCj;5!>jnZscgG*N#=s#U`@xkmLR+P8YHHIm^vF
z)uKU2m2>s_1zIU@PmVn{*LlEJvlhams)hABxsC6pvu<);{b;|7RfxMIN9%_fne=P4
z{jzJ1)driLO(c<-?IxjU6IjWv=u1tGkP{|%gssm_j%#lN>k2u;Qw)A!HM!ieiE3Q+
zqug^ZxA9!<5wgPIQ?QZsrH0MxNN{@^{6Or-qa5)p<u5I5SI*$0MthV#u;N`!j(dK9
zEp}3xA@c)uGPy5~H5awFJ#6l?MnAA;kN4yl{3+SH#J)4iafKYG`*Q3DD$T#zpo&Hx
zHKE^+SUDS~`vUEKm-gFZ*S1|j1=||+cfJpSzRTciN5cP!n*3j@WVK4%g)=Q6(+LYq
z7Oa!+UO^#W;jGpGsJMlsbU4yZS~yqenpPCm%*hwYMQ5O*5FSe+?|Yt|1HJ}nPvn!v
z1w7G?&CPkz1<$G(?h}frTH)LjuxYzyz%Sw174JS7O~#5szi3~vKqV9&vRI*ZW?SbM
z&{&CFD0`7Smz&8oV9OC3T#QgxEIL59cPkMafd;E;rfUw^MDEr;Vk2|q*|G9CD&gMA
zb*^%^_8Xg6i?>H?f?af8UFR-W!v>v4Y(i5xV3SD>*JdbMAAs=e8tgHl7K7DF*t3as
zkgIa6Yo@e)Ggru!!L7zkA9PN@#*&TMW&DuEx$AW-f%vG`iIBd6cQ0-uNwB-lsmXN#
z_SUXgCuF3rz}7FA-r9sDd3b=8WJ+T1lHvOu8w$KeY-zw&*Cy8+Kag}0M~4UZv9-R|
zYWmEkbHkP)H~4I)y#kkgj`m2wN5LL%`dW~yVY~5BgCCGUvH2)oOfYOI;WJi)kBU0i
z09)^)>V97deNFtplsg|Z>kQxRQSLY8hkhUhol7Cyh%INgN9}7`OKA-{zm;nR$NylD
zJZ@p7Un(eOweEw=IXDT47od1oM73;19c#-@0<wU<77y2;o@VZ^m>+2k0QiNZHlfAB
zQJ-MaMIX&;Oa6Y=ZXdd8(*X3_?mL*;;+cE_D@GT58WsZDkm0-9K{_5SJ}woS**Q0k
z_1be*Tc$N1_xQGLp~;iyLc&>>Tm&l41I|}07R7d<3!bgk#s2k@{fTj}WIJOX?pe6G
z*@`5wltvL1Isav03D2^7OJ-|MQUkz(jvS=B#}BV^Qo2^Y?s$4~8)K@>cl9LP`{(sa
z@83Pi{r~&_;O|S|{ZIblFC~NaKl|tZLVo{`{)hiP`S)+0U*sM?{?%WSf9LuEtb>2+
zcYa5F&T-!Gu+L^%(z#J%!~mC!mpF+lHC-9~j_tr;fAmlP@Q>&Z{_s!eH-GK#(z|yj
zjmsqE3g4C+$ab3wb#c-$&jg*XY2Dn1&haz|o8+8l#hi?EF1ldIevIE+7W^(R+uslL
z;~)R3$dZ%64u_V3J0@w39PE+-Jl(HRQG-2>+4Z(~7;9MYGxzx4YmifX_6@cS{&(t=
z;jCTyQrfQx5c`rndmgY&_pp@$+Qr@;ce(2gTS~srx}fjOA%^xEcl|xNTKjR{;aDGZ
zS_f<dxf(X>_xyLqCN?y+Z*S>&_bn^@kzDW9E$QS+)akryzf((LPv>2Yiosr8uCl{d
zHY#q0f7;>-#r+M<Pa6KmVmZe*G{JI}L=8T^eW~<+`p4hU@BQ*j|I2^xm+8m9{9doE
zv@3VpnalBv)6;wTR?Ci5?C>)m82zWnO$XgK{?oqG?whZ=OWEs2U`NKt`F|MBk2~K6
z+er{>0xSbIzUKYYiHuITKKL#@>PxXbV?3oJZ6fETfIt6~vBOOqM1vl6=O6KLCS-)b
z2#rshQkx{Yk+D&Lw>(ZF%_!MWjcZLg){_WYwn;x7WdL|_&T8d-{vdqtH1L>{IPHRS
z88n<4FLdOrRz*&7J!djs<)e<80LxXf%$ajvIM#(%e`&n>9X36e&du015j`7MJ!4C#
z3BVs4sR7Wq!1?-0t$snz1)d~JT(&*hfI<o%F48W1+8aL3N|Ztr;M-;_SK&E5O4g8I
z75?pmWISEKu`bwi!#471k8%}W^6hsY&WbH^tV@SM?S!)pj<ydeI|7j_(<K~G1K@fq
zSHT83%2t_^Zj<~Fbk6cQyUtGmTXk$N7tLrtbl6C+@qne-#6jdLHh{v23u-NhT$#sQ
zY5-gt$2w{&2)1d49Gktmj-MLGx^6)lc*?hSeuocd<tf*i6iw%R{m5O<6Q@qDkfZ4Q
z(B#M*=**LP@mdN8={w4?X#DTl`QMMHLnlYmxnLXQ%Hy-sQ!iKLsyDd;TS1Kqt53jK
zMCY^o5v-tckZt;6uc!&Y+o>4a0(;HML&=|))06V*kNoc@$J3MY>Yu^?emq7wX3^Uk
z2j{3sarHV7N9kMF$Xy@ob3VkrwBw`lj*mJwoinx<)B>?OB+*9|^qrKGbNu(%uD)$j
z>=oP26x%Gkm)Et~t6*Ce*STU{`@U46^VIu+dgG&Lzm`JIuJdb<E7KvIr7s<Nor_#m
z$1F$2#*=@O<00sr<#9AW5bTk4YjWK6QBkhPUap733{KGEgD0<75IFzWFj(SDK&uHL
zT;TX_$zUhxBDW4dGu_M7`aF+DNo9*EI$%**39SU{^q`b2lEuARkPdv@#Qj)<bSrrE
zCDuvR`QMGFeD#_Dr1UYuQLX&%5>S+)x3*5T_I%q{rNj`H5)Re~XZ6}~R+AJR)gh2#
ztIna$_vXyl37pj{IM$gH+xWEk5bpU}d+vH*^K~y^n;hHfbTpG;b6$Py3_wkQhE4h3
z<y>}DC_lGjqn>Y@AUD453LbOgu9q4B)^6v5EeVcTub{&=Dcy&0hf6RXa*H(qNG46H
z^YsoFI1<_wTLOoAh1^}|fxF(YUDqBPbbb$;6qt+k3YIE5OBA{5b&+_rY-M0KY_nlA
z>~rdLK4VwndI@qf{`Z_3T@v)*HeuZLY>!u^Xqj`6YqeSmNp}turIRu2DcVGkYqj>I
znbuUauT{5K)T9t>z0O7MYpV$$^j!<;Lcm^E=YI#btJSb**vwutu+^aR1&J==2N>IR
zb?lv7ZNbK{N$^}Lgcuh;Z(U2P^N_$@UzFa6@3(?izqeO%><e@r?J?Tx8s%CoLp^mq
zY6^b9?a}-I_pPAw6^l(XXm>`P^ZOm)Kh;MS&vm*6?Bw=Z)eqF>qoh_sMNI&*1snu5
z<(nC>vFDyf|CxkN#Ia>^`jZ3tlJsj7lumc$T0G~b`6#71lVZS0cR6Sc0Ms4h9T+mt
zTtuH{1AIPb+o8@n-p-TSfYktCYA>ZfTBKbTrIWVvg46+%c-h@4J6l@@q*673f<Y+U
zl=Gizo3v{H06Q#eMUGhQ+WAQ2A4kMhz8gbW5YoaA2@5P9jY!FZuoj~*dD@Xf`;9zh
zAkep4P&VGHmbTNwa9O)y9C3HohjtkQS%4-4hwww`gO-?+LLjz#R<IjO&WX9PSi9cE
zVt=1)hxFyFJIFXTB87J^(wA((RAVOREvT=wM^C4d&fz4;rZqm^oo1muWUl_R?6}fz
zA1?%G&AJp4iwKE9baQy(S~!xfz`D{Uz?F3&lo#zp|7H}BjV7BE>EB^3E#wg;WbzQk
z?fL@^XzR`dE^2H+LyZ$@y)sI{{(=oCxYV+b-(ru{2k9&`+}JY4YoksrSQ;+AYoGDn
zWY4bk=K6@u2BOh+Ro2ZO?_sMWHfv957n`@k{>kipc(>Ts(vIBAPG7WpyPu%jz-Y#^
zt?$QYS874gd+nZhw)bw3D+ReelDo8-9s~CHY>L=|&dWWy)4m^|Xm3HTW4qG!R{Fa?
zoatA8kry_KFHGpo;e%plBTY`=tpA^Uv(lgb^%k$>vBCClzqu^}eE)rTk2`$@jYwi{
zcaFdB{3ns~{-+(A>HKGCFL+n~jkS@EaVUH{Myyu6-Lc{Cd)Tbid``5-n_U7l_<`_z
zYcE&`;45Sqv)a|4K5pnVP=nKSaEUx;zknZXe4KS=|2y>`Z3^wL9qO?6ehx+8&)6P6
zg1i4#t#g}Tqm#1Rr#3QEO;Ps+unzP9oBXU$Cy%-V_L0hJc%B_8p4aNxVfe0v-|7G=
zr>KeQS((<4(}4ZnsRnPzGhqK~_WrHcmL*FM!$w5TIoI0z>~pD8Ri~=Ei(S=C_QlO6
zXi}nOk`_q|kSWLyh5^BPHek^3iysBO_y-uU-|ZJefd7LYL{SoSWlNMOL25xQQDm#T
zZs*kP)Vb`v)|{CUn&a|~7!fmbuC?~57NFiIyLX+PJ7#8nImU<)kt0TY1G38D9vIka
z4P7F|kuxeaxe?<$Cvv$)2Q2Rrp3#GA@*Vt8FWZVIHayXpH-poEY1r@@&0gBk|K72$
zyn5<zG&!ywv2XdiB=V{Z=!_k<wjDCNeKyMvKll6An!0xZ?i?N-<!U+o;on9hsgBj(
zHFo6M<d}jDY~HIjdBCK`w~6N6_wi;IdW#xr(CEE$3jG{%rKU$@ix`Aqi*0Iey5$F&
zd8{65CXf=jt)@<C0SA0ioG^4gDqZza@wv6odVlGzs2l&@Y{3UIdwv4=Fo;rZa>ae|
zE*JKhT5?>DI;#Ei>y>u{a%d`ahxnNFaV);u@bBXfli{nOKR$ApdovCnhpb?)6;k8|
ztpPyFJztG>CLxeQPOqcf%T)qOd`LC~0)NKMESa=fKSGhII!%EKlXTqYCrjq_q=iaR
zP>vTTghs}kjbz<s%>dM0I}uxz#VgG+*WD+YiBv<Dlx5Ud@ma;Dzm<Ugu3?kK4NN|(
zWtmUOgAfz2StpX60Xa~HCB>qXOT{kPs0)fxB5<IF$<NmM20E9^$#O{oHnPPqwsYCN
zMA(&>yyzt|XL&J9r#q@6Da}wykQ;(5ngNq6$SJ`y!>)C0np_1NHEh1{CaXlIbE=(O
zvjquQh0ZaWjIWz4Guw7S$o(jJ=9|dX76K*6Y0uUKFv}*h=&uBmP3LTp#pHy{r^R-_
zsoab1P)n)Fb%xxOQVCq*yWC@gP4NFP9h5AV$&O2M?5gw9<W`zJN(~^!W^$n@*W7fj
zS>lt*bq0NkM5?7-3PCgVOVR$4AUEqvn&D0Xdv<IRK%KG&mvjSWw!ofhCSoJgbM?Li
zY~;I7Bs0`%1|Tq`^*CCV6swf8x!D%QUM&C%Y}Gzsr?``#*sh0Ua|W{d2Lm?6-uenl
zLi|82=A*#B3yK`ISLsVxZ2&s~y<S4+qpJG>3A&ry(9bc)&O4<HgO8dllNKL|J6plh
z%(!CqXuCy|^>g!4guZ6}Ipyj;%I({AZiStv<jGuW6WOs%lP*pu_Tv5Au}zxYi;r!V
zn@G;=6|_g3tuH#?>4?sYvqG&FG8R4PPAwp^vmGAr3u2G8xDVQy9^}~*bgp`l1OU>-
zWbtXK&4S~1++yFt80cyjG+1xPfjJLCDz#qz=FL28)|Ds(H>xk7biC2Fn8ZiSx&_ZZ
z7U@_gGkE(+zb&PREwap0@}Ld}yg4BD^8Vg!2?1g5_~4aBk{1GhNGt)5G$+BdabM#m
zlkrT?){b4u7{|dIeQyb8co*#8KUhM~9VbjKRs$e>OiuPJPP##`4jI9mQ1jk<@6qx6
zUf=)j59#BNe=b@7-}~@K^xysAAJhH)iJtBD^z!9P`uy|H=(|7o5&h8*eoSBc%DePu
zzWEJ$@5S5n;`wv>=_jAi&p&%fAAI$F`ubPip+EZmhxCIFe?rfmy(QmBfB4<+3irP3
zkUHz`bbbaeBJK`1UO!+qS@XhnxjXtI0Bm1<nNh{s!SzdCy!94+<=uC+FP|43cwuz5
z<PVkt*Q7b#ha$k-|2Wx*l;%PcQ_tt@izr!=K%%d{``%eE2m0PeKc-JU|D2v#0^^4t
z{fs{S?A7_bCa)2KEM@-R*%k|Qmy<2L;vEKiT!KCFff`KMWygs|bF|meYGaAq&N_{|
zi{@pqvDtJ!&s~64+6@~clItTj+hzy*IvVyAY$j(=B`>ZsrDST@GIVOsMqh&;C6f!T
zhuqv=xi6xSb8LrPs}`Kb=bP_(K>MOKny_Fn57_2WuAzPhpP!b+Gsns9P1J(DlAJtZ
zqn=VQ2Ag3M*|2NDZEZ(lwAWCI*vux%AXg;Dki8oL`=HYcY~}~*p!3dNPbasRxRXWY
zs$WX~(m(rx{!jnxJLmhH=(AV%go2=TzB^xY^ng*d(TuPE<Bw+gSN?w=(!ciiKBkX;
zG}DXQO#iok@jd#d|J<$1NwC8Y1bdYBvtPKszms?5c|o_c#gY!;Ki$6${_|)FL2Le#
z+siz6zMW%I2jlVQ<YVkW1iln}|0_#6gdVz@0s$L;1IAhm?gxV0M|(YuHequJv;%V=
zXN3j4UhJWx01^(`Fz~hjjt0qOGG+m&;#{?Pbz9EZzF@-Tf~{5qAo6ST7K?)zy6}{n
zU?tnb_+D>>i@vqvoVn|9E`#c<nW~c)&rx3ev}?T3iVYLh<b^0CdyX1s>S6|Zu*{P!
zY$!BwI&Nd*a~`Nt_&qp+Z*7-?6mQFs!#eD!IJK=V!lqy!oHy8>bkZ%Z;P?f$y<=_I
z*5tZ|Ee&!NY&$zYo~Ww}G26#+(D}}2cV^=;-J{;XNuRyj_t@gIBi7^HrCjqMcg;q|
z^(VvH>m1uj$?R3J={e+vk2dFnhuqv=g_FXut=VIg+v#4hjo5FnGv&_g)wxF1Ucnj6
z&j41f2~YzzwXeNpCoLw|gFkDu*W*QBx~lU#(>czMR!hO{)v)c7PuBMXcYSxB+Ey#r
z>!|ZXkZZ&OY`4K)*KESEdcnz7L<@auF}cb%vXoqIkfX>o<(6^g*!29k;s>G}Blc($
zhlhMrRxW0ydIC1JR}BWS3m*Hq*Vh16)F-&&qf+MwP90X*<Ib^;K590s*|7tw`%n20
zs5Z$;vID4LY5o-UJKE=(9}s)J8|6BC-%@PmldLcChd{Q1k!$0UPBz-O<n~%Gx3X3X
zGV4M`3=r7D*2QYUn{m`(!747%<gDWqw;U{>cRbowSKBoMniFidzB?+V6=$F61XnXo
zI6IWP!jX3dfE%3j{t_hH8SitcVdABDlvanwP@|LxTY?jUxQTZqTF{pR0xQ@AdjX#|
zNikUUY1ppc-p#QgD0Y6WW0>^GFO9pNeT^nQSI36Hg;IeqwyFyzMprmuJDn^Tx!(tD
zB)b~;xMyrU*9mf$fHLorDM^a*62|kY*d>6sPeN-W!9uI|B4U;xZjyUS7I+O53wSna
zCD<6d+xI%xY~`fbO0bDyftS5*8)v!la*bruGm-^z#D{4LI!7?lvWc;1;5t|P)WCi6
z0=yU4c95ISU3Q($P3|?=v(-{KEf#RzYXIvAxgM-G4HgL|!^X|7bI`dY!=@i(Ttqnm
z`)H3<>lHXQN)6k|#*V0S{(#ymPx-wS<lP-wUy>cVlk)1zhv%f>Gx2?k`a|Y}mtm;Z
zW{)M>V{P`>VKaLKHq&{fMiHcaDH%4kDQUMF6^Fgb@mQ9&8yWU${d_qo?On#)qxAN8
znpG~7+iMMrIZ5QoJA5KGyj!iUFHPp7PK$msxsNJE<+^WuiFZim+WRPqJ}T=%Q)78-
zeaU@PO~KyQ{pZPj)V}jkF88C!0`FGLe~Mhy4**-SF>fb@ig&7Ws$mPeEt~?I*jov5
z9sK9X?Afu^=A+ymlg!!pS<6uu8JL$}cKXdh=ViGF`iS;We*kk2$I{m;;F?ofqhcrW
znvF70`Wo->Jr&bUZizjZ6NW|K$rc|$C6}|l8|ZA1McV!Z7G<9^yrGi^@(_b1<{5P<
z)tDL6j;!>c@yNs9Yf2tC968+iRFep+|3fA6An0UvAKNMXzRUEtcnBW_!J1+;kt^3{
zJa1@guhwWy<TtqmqWGBXd012*kCb!wui5@rsCmvd`|KRZ=dlMnd2erSrOut&>?D6Q
zd7^0D5G>H`c2ck%x|vgwdW<}uJDum-vlTWz*f^j;u^Z`ESX53yR@1bj+vm4lV-Hf`
zdCrX#uGjv_{q|ONp!59U=nJW+cY`Yr`@Q9B>X<1zb?iAQE6u6|I48WL&I^PMf~k;1
z4(9;k@uZ8ECX=0Q@$rm$(qOXhDzJa=vdoims>A+T;*;6qptFp7bvh%L3#e7)9`+vH
zv(k`JJYvg3mbl>~TZBrXFWC~@1-81<*2yCNKHe+n+_44h`5LzI_v1PIfc<`y>xlKj
z4;ThM>RNm5DbKHBNvW4lYFXupR^%F<?dRjYBeu{cmXcd-inWaLwaos}CThUcJ>P8N
z+2K47ILGb3{k6ULfLEuMj8H8(M**GZY3KR#XRj9e{!bVB+2_m#LG;VtIM6q~GSOSN
zS?LA=C)o2Sx0I75{!sI8!GA`7j$IP59g8#WUvs0F;$x(RioTl<#IOA~!?WV`@!3dj
zKvI!BZc3~6v*`!oyU?XQwu^O4)P8O^BP>KcEe0{v07&5}<SPx}8X7z6+7XRvJkrXK
zTh_zlP}j$vr=fsET+9f+O<}>qF_>VVnvqdfu;9)_J=RJ@58mC4G@L`}6<V>T;PlrH
z3`irkc)p4)trz0BSZ*38G;6Xm!=+jue)j>-*7=$o%f$`)iC(HvBhdNy+u?i_ReBP(
zhve8{v*-J}jCxJYA<`9u^vHH#P1mm5lB4T<z!nEFoL|^zlK(Gw_KN*pv(>GCi}uS$
zljFv_gbTZUCrKUig-vZ7bpuN$*WuapSZp1xCfD_2-7?C6Yy9OkKagm}9!L8P?VG;+
zkt3AbM7Tc<`21OG_pjGH-YPO0ai$ADM?RUt?u+=irwqP-nvPNADvLH5l7PDvLqsr4
zKEyLJpGh)avt{(kf|GOe6bYPbR;<#vX!bgOuh%Qpg!02nM(?Ek1e3p=_#@-6u5J5l
zK~OSl;BOwWna;sk?bJM2{Bmqo;BwZ?Q{VDmtUVhxqxgu}BoR94qNHZ5w-0}rcqR)B
zhHPT~_?ZJX<*siNU6K7#8@957t!j)x<jT)pdbx36niqB@s6H2;nC4EdEj!+8DMYzi
z_WQhsji1fgGDUYKfM;A6?u;7BIM$0T0_lp9%AM(#vdgXdR$s_%7c!%T+kObBF!q|-
z0_sz+X*;;<2b)<mi&}R)kjmZUimkp=ZuVL{$WGm2FCQ0jlSre=74}FuWS9qRYM%|8
zV@F?`t1VDnVgq-*^tFJEA20mx0b3{6da3i44O`nT7_-NexBP(F>tr8{p)aK=V9Nn}
z(c~EYdCRu<zUJ7fF9KcYTzpiz#8!1KkYSIZFV(?ENqr5kOP1UZh};r6FD$UTJ&Fsm
zq>qTrYAIw}2%IGdp4PDy+i3#qwYEjbDPmV_)%~Zw%bFjM#e|%UE@#Ca$?Uc2A`R>j
zJ}P1>n|>h6-yv5%Kd++byN4Y)o)t&Bt4yeUBw(n4OD##I*k_>=s9FTLwtf$Lofl0u
z;Ed{$RSxQ3HGp_3-E>Uq9jG~4@$OQ59#Cz9q=}Nr6Em>*AkX*deWJ_R`}!Q^O*q=T
zNfnT+*tF|9wSas~IvhFHrG0}79E#+OZ~i-Yo<;W*Y62ih=A_9)d*dySywKjx9P!5E
zkLwRcE4qNkJZH}|j`at|bMQWw0bAG3T=kRs2iu(HV==hI<y|=Gg@fHGVGV)4_VusQ
zv$vknr=P#1Km6|Z=<8qkD*f^YA1K!I&0f6ywgkLiym(Ic_xJSOAN)Z4_xta@D*^Yf
zzyB2t-kDwJX)m-u|HB`Dk8W=E^sC?cB}tr-B&gdP`sHta^Sn?t(an^MZf)|w+1qcw
zpg;HPzeexA`?kJ=fqd`n=QMxgtMtxu%^3drd+!OC_9vfxP9J~rF};0Wz&Jd+p?7a?
z%qOVf{L(LfQx*d?G;)5I^YywQmz>t~yux^Xx3^>=lG{bMXItR+W!mLeclWZ3;jQyC
zzWSAS=&fhBbZd*|VwtvZJJ~&voxH}YkMAE@Onj(DMOdItv|SS*W{{&@`bOm4H*8c}
z<}@<WLCuW?rVH#3VDr8=V5<*cuhh8fJ8Z$;BlbsQGe02Dt|7VD;v!LQSLGUZ+(fw@
z*5qo}J2q>NI<K`p+DAP`=VSXr*u+LqOQAHn^~cCHV*ia_;;i&N{j2}-H|e`Sndx8s
z*FGZ7!F}84f$IXABccy~w$T6m|N9|*epl$<`UjuWU-_Nq^#A@pe~rHL^*w#(gM*Ki
zz~;L-xOPH}3!TT^{dqBtlL}@~eIhCL>=V6Kf@Q~#{&OGdH1OexrlB3aTQl|hdM-%L
zjP+b9e7%hgl5Di%`*#5w<G(%ZeExN{FPXh|HW75HyO5JDYTLqZO(B4d!Sm?}h?^08
zoil4u6+~BbD`hp#e<E!2T&oF?u%)^*Ze=O5a&9{=`Z2}6`)J#jln2^)^=oy`>Z5T~
zD?dD)2d1M4U}sx0j^KO0ZRf})!AiF}`mjAOYvzk=ClPMjNwQI}b&x0N{D-qgq;p#h
z0Osa)j`d8EMXQ|Z#{Yf~>^sN8sso?)(Rs`dmeF?9Ev<HbXT18#u@0=+vEh8$+14!P
zxZG#w0+-HinTGeXZX0uKr<3uNYjG=;BUya{#U>xjhhC0*%Mb#``VQRnC*|Yh>l-%B
zFcLYQW-)l@*<Vzy!c%TrvB3Gy8NkKln!u}HRp%@Z*uXAeCByF6s5(#i@i^2gkj}0)
zfo(dI*8m7|-7B_PChe0<hEB!>zOxMCqix5F9P6-GN&(w#kCm|r)=*2KMr`a@s`2Ot
zox>4vMuOBYn44TrwgpaWR3yp7Kwp}2tF0h9&rOb~rJy=*8E*H-W)uA1JJ)%`svPTk
zm#cCFPqMwT$#t*TX6W4HD7^Y@D;7`KG)R&RYc)TRf?N-R;SRMF%m!e;f{jd0N#)M(
zcm#L-UJJ!(t&bpA<CA5%Hf($8Pw4k-576;E=v@84q4}t)wLVhkqjvJ&<H%ia+rWSg
z_S*OJ<bCJpK57?ymT{=t7EIwS5A`&ZV?FTdU(_quxg1N-d9&9jNA;hrmO}ErbcD{a
zJ&yyoyD9ij<y7ZC*q*G|)SoV8qn1MOQKED61LQgnea-B#^Zh}NTBoEsUw0gr;+9Jv
zm$GdqwMnJ;Alu5C?Bm~7x#)7q<V`=?a!s+NG?`0~PGnA}*|_eFmmGZB2jgNs+e9tZ
zCuZP87cOwpT{$vYn#e!eIZ(w}w~<#L9PG+dt~&)dC<gBE$>?5q^2Q&j!n;3%<GNv!
ze(UuLPD-(2^cl`me!FYfB*3Ur@IroKk4xjO2fc<pYmcJ0r`Z-3jEZK_qFR$+humx)
zcE-w|y9ej4KVw^L2PWjoKFP2#7r4r`VOOqi3)(q%eZ<Cd5tXa%ZZd2g_9<X%G&<FI
z%2`j0ZI-NZ#g1AEtn(Cj%#m$BgPZ=4b<u;<iK<cj5ZP`dwF#MgpR5i<ZoK<bz$UWD
z+Ac-Gxh~Ewo6gVJPm5ripmUyk90E`I(sb_i3J#NFs}-~+<o3mNc9j1eiy-9o3~Z=Z
zAoe;z=SA9frt`&iTJcAca{f2$j14y8R5gYT_R0%5zy_TkZj4svsPr$Ixm|r%7e8P6
z(h;2hDe%8%<&Sr4=1*s%T!`4_;`Uffu7_J-o8?_W1=e&9Y{t94n>s(RKVWyBao10&
zvsbD2ve@?d)NG;%HkGSlTeK!X)?m6|JJ@a#-oduam)L?I@V;X9m^wcY>ua?784;W7
zT(Av3>ZEc7Hkk|WbsnX)L1vMQEF>7M)4_T5Pg=Jm`Y4(6?M26et)jh}k1}jlui(-T
zL?5-d&c$EC9(Smz!UYn^?GZjIM{GHJoe05pqu(TAk2PS2Kip-jNpX_<^7B%eo%0_7
zSw0tPrO9dlEV_g8VEpA$6JXM8#Kmd=@CQHthHC(D#CbQtfATm}==mWxilCzP4iF^b
zBi00void>v0R|~jZ&XXN$*j^wa>Sb%{O6+uE;QwXGZ~esG<8`kql9G5rC#R(*Pw9q
zL=kXcI}L<gn}#490<Do=4DCc=QPZx!2+ZcTK<0ti(o=o-B4rMALj$&$5TKNGy2uod
zwM=TNmEukW8F$Y8{Q2!Iz4O*vXWQTT_uIjCJMzK7#b@UL`}1ed&cX0!bbFqEb5=gG
z;HwE2*S&oXpmPD?oz43dk7nBoRnaujn4!$$4A0x~`xY48)3e)W{yyCI`FC%fF~2xt
zd3OGGeSXHqfj1QV)J2=U1n02WE7{xUzcModifPLCA@}$FPJE?aOID;_clW>j;>GzH
zxAGeV>^eCUbux_sK2MS=fn$B;`a-m7ubD7UuAXRtqY$lf(^I%l8rxH%3+k}}`vtaA
zHnGKbkJ#!O_VM2K``8|z60vV$+vw+cc(?RW`w%5f0UP>ad`^B0wy5)zE^Xqm*aw}b
z(2i&0?~pr<_SjzRQs-;fw%*O!-+i9x>+ekT7yryN`U~GW*u09QNbt*Z!2b`vdq@A(
zKfa@v_vf+v+>d_iJ2&*3zqF?h-Z?L{*<2GzOLdexd=&l>$zepkOQ8h+3;*d<ODq1f
z*0}q-wG;Ked-S(s`_{RS1sLapUL0F$JO0*m9{s>IdyNSO5Tq>Or52+{+f#%8eC)=5
zP@O0h&}gs7TDjO##Qzf(BDB5zLkhnex7EaF@*!N7gTZEM1!W|$Lt2Wr1FLq3#(~{L
z)3(du_xx|!&hcZQMmq)vta6EBsmUjW&aK$VCX0CA9!qv*6@Q+@k$|mDR~#$OGc+z-
zl)BoOD!8<j$2bR#OyDinA7~~L>APpcDN-~wX?tyQrIy7))XTDA3j<SX6E`vLOufvb
zPEzWensbTO8uDUL+yhRL6<kyn?y$+Rk-eMnky3cKVX#u2+HX_!b9s}JFR^v!f#;K2
zHl(h?!9Gn6$j-3mHX8`oC=T-G^x9Au?4|08pHIN5{LXoT(brP;c3^AfZP}63?A3K%
z2hM*x&uW|$`&yK{P2EiA$zr0avnj=GwaK52driR}9b4-Ay*@~@_QpYY>ij_9C3b8n
z^ySbG6Y61v-s0Fozee98Z2wH1J=<_#{VDZwOBCKsWutx3^h&AuO1IZU@JW=?rM=nY
zptU>r;Nyr|9SCZ2=4Y4QkLY_gIj-7c4LT;+1pFViXl9pdws#l*ZT1QORcjpB47zjw
zMxB!nic@MjPrwdr!4H&5E~j|^t`15{7Zbnk$j$rWJs~9Uwfa#Tifq5B0mGMvX0~!b
zy7<^!HDlM31tb7eZ9<hn<D%K1oWrKsqDn6zcEv?3IYu*|eaiv9X;HgoAI>*CD(4~x
ze8kpl5eL%|3FmVVoF?gaCuF2#rR)HfofUoLMWdRlCNrGxa}sQv8LJ=Vf^8?JqkYIS
zS=sJq(gmh{D*6F@)cMmP>%trdmBnAE+g2HIyI?y9l!UW7S%1<6DINk2N%^k1U8s9F
zz)70r%|hK7jbpWx;B1{v7T!oHlJKq*|DR-1lLfaJTTyJ{R+9!HZ6dliZy;D$CrPup
zHETQxclIRMDwj~Og*K(#l7IlecG7I-DOb<(Ui{gLTX=!3IG+}9JqH~RhRt~MCEqvb
z+%wyX)dT=Gn;cFqSMz1u-wTNiNVW~@FWK{Ru?f9>0Avjsg0p{@ZCAxYLW`7lniQR7
zSd$GKh6w>BM5UCJkdP9UE&&DU7m)5&7$7Z<F+x$gL4g5^bZx{CMk5Uy&0v%gqecxj
zns48q{o8Tuc>X;1?)$pVQ;m_^53ZuUs460J`^kEl?<n_6?9?8LNB^WlzoVD1<!pP`
zo}cGw{}YL+b7KRA+qZ(1TroJKqM9dEW9b2a_Z<CO?xwqG{alDUlWs`3w?aOBPUy}z
z<SB*ad|jJB`ki_A5WPEq@-JO}D`q)g-2TQa1cu^fdtZTB-HDPemVw!=<uc;|VfD6j
z&9*t9J#}>PGt$nAImVlb&%BC804+T6Y4+Zk)wJI7*MudY499=KX~s7&_qrb&H2dUn
zm5P~h{TZGXdN!X-^4s$xTc>3tU3QG2DS~~OI<>acCl6hCT>aw03eXbY%VP5i_~$I6
zm3iX=?r}+)DMp-2JLinpG44~=;lgy*QLd4uoE(^vojbK6`vXue<K}&%wm4o<c+vgV
zSr?FNj7sbz(fqRczsF)#<jJWlo6@t7=$`ng1&rkwB|hAM$?BvM9Fdnw1GgD;;AtX{
zDiR7T-oe5R#@f`1HO40Pah|ps6c=B*y-$LfvwLpS4Nn~KoO^e$4Ra`gzQUrf&LacZ
z`YIo!-<*5x*04#zxqj0L#X6}*M!cz@2m72U4)(t-fTy^RR~S-HaRqDIxf?ugLbPYK
zKYR4(1TB9utSy!MEuaNai18n_keg_|L$C|${_JaLEJrM+b2zAbu!0R93?9M7!!Vy6
zaO&0^P+tb-1201Bqsv}lpUnOg?_2VRi&*f=&M6zVAdGft_mNArjtu_vtfuukZ?m)Q
z5=WGnsf-ETYbU}Tu9rRS$Ch#qp=o~?g7YePhP|ZjMKm@pel$QK<ER~@C2)JBe}NZ&
zgPmp%)q51N1xl?vz}U0a+Irhuo={vx?9|+vJXUqDJs1PcXKdlPhdWs&g7+@;GBL7k
zgtn{2)QE>!zGKm8aSzS=LA6|LPm#|++q2ZGq4in<?mI*-xUKj6VJK(ry3~GSeofl1
zid<!F>KHvEY*&o8+Q1{1C0!>b=Vv=N3k)>B3!-BM5s#XO%@WaCfcVR|lg3Uagx%Sr
zh+mx$ae7}(yptj*f`RZm+Dir*Rs^&nQWn~nRJHxLI?y3Hdz{L`{d;AM%~c6T44-fA
z@E<(|fEaKaS*a~<=!ZnQ95Q`8JKPG?nBq=yxbfibsu3Q!%oHw?twuw-pyrcL(K++`
z-WQdZAv>4b*KyXTjXoeRL!PV3(e{h$3+L=SsaJb1+lgO@M_E_MJzaRWl5$D=0XBc^
zdV4SQ1y2j21bj9lJ(eDq;Hi!)N>T^WH}>KC`ZrH>+7#s+SEgo(PlN30U0U|@Yniq#
z&a>RF`<Fhny!a+8nEtMI%^e$*Nq#;<E1&J-4ypyaHoaO(`be>V*;xDb_sk7V0|EJK
z2&O3kObNKp@f*Tqnpt$RXWmyN4de=tkm>9}nec#nBIJ-86+FOSs1LJlzj-OFztu~L
z^11J}eh5l-dg3j>+<3$CPG7EIY>-z&H*9{%ll3)A-lZ4@BM|=SA9tEtNQz-s6*LM$
z>Y2=ir0TU@5&e{D?H!k`<L{AS-CkPOCZ#eLlVz4TbQ9)DR~Ol<ordi?`9v>3wvnCt
z8iiq|vJh6(qArlT>*Wk|rmx?ZsUqw{Om{p^<`xzy)`^kcVRY0ur}UdoMGQ%aCj6m-
zhr60oN54`Di$ZEOwMoDaF4U2UrZ{Ow3Qia!`p?~$fcA&--cA}*N74X^83E8cB_6Mb
zP8s19q5Bf74?{ung4?=NXU2F+jD;-hL54QyCyy{y&trS0oPpDK7MKuAZlONd(u6bM
z23l}r6)}y{YVtZOEpa+d(x9WJvPbdXg<q&V_pb745}<SHZ`v9EzL|y!{8yky3IBv2
z<?H6~d$_D-X5pLSKyR3sKgOtPH>Z9qTs~JU`>qPo^)KaebL%_fj88+!eyG^l^5Q*o
zv6h4Nss5j!v9<&6s|yyuLOVSUZl;+OB6&;NG4kv6CU}`{GDH1gIef`W1;_*h`(%mE
z+Hb8jEYyA3j;S6xW|v{$ueQ;}wQdf!Ugqb=dcDm$I3x$|NVa)1E!0T{w2hmat?o8P
zE1PXUtNC074q`xYe{OM0DkFd#|H!E1Y#dyMGGH`h4(MQ79*2MQbvrJ9w@q$e@InAi
zg)G4Njktvdj<Ds&@PmbWA;!bbxD+;8JMO@-H5ygLF+-IpTkb<$guIId8C7s+cUr4^
zK&I1M`F>TmL60t4Ndr~Yn#tA=GGmQx9}AW)rp0+V?yQ7X9i;p{O9%p)6(y;HMDU3a
zDhJ~ed@;8d?9*r0xJk2}^D6&&a&kWCorj~GQSWB&Nkcc{T)OZ7Sv_xUu7mv2q~U$V
zZ&HY{6e}%5$OdE`OEkuZIjj|+0E!w7!al{{q+%gO_n5m{7Uu4zzclJ!&{0%%|I>SY
z)w&1Dzq)L{1|C7|FP|OBUd^d$+%(XTU|tpQ5(&g5=g>&?5riA(f;xXLP@W}Mi2pQt
ztL30TU9AY<K!ufp{!}-lrEZ7*S%1#1CfU(D!}~gM5h2ouzIqL?#=ZV!+l@3loQr8f
z@o5r*(ktA9RSWPmBs8SYWI)rgw8y|3-@C7ONOgTs$;9cyU@)Bhq7W7W`~!EZdHP{h
zw`neT-TRe9g&*h>lE<@#kx&#qa@j!*rvrvAgsH%N`b}B2kd*)SuE%0ju3AQ~vG&(x
z@u}c_<%LJVX^FM>_Zx`$6Zx0xc~`{i3bvyRHm1v-y?Hr!-&sWaHP1EW8R`mu9eG8#
z-pyybCLB)LR){11*&Dt5cvNHYc9l^7&whc3iDZ6y2HUnzrSGV|6RH|ob>o6W++;1r
z)YT1}eu_>x^Sy;g|9M?mHlp?uS*X8%a3GWqVFS9&{t%E8wwBo59^nbvzNWu=3K4rW
zL>LZX4|BEDEpuh>lNkoiB*Lk>Z2Ff=VV9KHw@H}e<{;qd?%Br>@QB}d{G#!{`1%KI
zft^3j-U8SxY8)qcDzDqNg{{%mst8pdYcr6wepL>-ce}<}e<Y=FArhb&efp3<2Vkt9
z(ONWQ{ckl+6ip9R4!|+xx4vTv++G;(o>4Tz>8qes$EgQdAOj`+{EOnVd$O?a&ww|r
zXGs{S#Yc$wEo!)KQ=-N8Xx2rDVSR+wc4&8Aium|>sg~0-dGOszPjvg&q(grPXX~1z
zKEi+Yk8=p$8Uw}bFMjy=vc8L<Omp)mt{8L3Nli{?$h6KImycBaQP;EQ{&=EPkVE#K
zI@K+&R$p7wyFu)Zv7O&7ifo^;q@A6#mpRX<d8(N}f5DO-!L@|~k9@MaR@0RpIL?zd
z)Tx`LT5jXCpXoDLTXs@cpXQEMTR;qfq-a0%JJ(bOK_>xmbq~S%=SaNRjOj&Fh}To`
zv`(?7)xA{QYrVKMuv~qxM)8pgTE{f+@7<ghjA>JOTUIy;Mv{AOBPY5L3vNc<QpCg$
z0XwD#K&IZ0&4+PsN-XPs7#+!OTFgNo4HQeVisudsW`3=*g10Jj(AjLV%Sfy$9?Ot(
z`y<B_(aIZXb1eZ?AU2ZZQ@^&O0_5_abk6J6)@-EwHi!4qEt`4@0Ea?*V#2D3uvL{p
z4WyN|Po}?0uq3nGb;HwiEi;m*pjuL71SJhfY_01fX^eZ|PD$pWlg>Lv!Nme2Zn90y
zhR=XIIO$XG<aL_K#b2P&klQNdjkhXND0rkXG$5!J;chLHC-jydkK5HVhrPAzM`X}w
zoRo^r<qOG~G48TCW`WJy42!r<u-xp!oc!dr%sMJ7x4vS$@#Kxswg{LL)<3?dnEtU4
z#Cg9??E4Qm%r;m++^e$jRf1T)d_q`9u$R@j3(p3+N5Z|};XzND%-gmYlbCesX40id
zhc!M|LcU_6qfuXBsoVRhPf6wu?3;b!gUx=kETA>@la0v6xs;eKoL<s9?7ii>PX)7)
z#58e%*Jf3&%zZDIS2#T>I*_+1wWRmxmlG4RrIT&@oV{z4{d=vX>v*0IC+E~-d|+Q;
zk7RF1ifr7%Nzvs3?0D5=hfWs$XqGRb!y*{a;{7skeuq{dy$ld8wo7LH;9eLUY8~#$
zVExBVvnf+I?1NIpO0|8rofSdJ2!FT2FED>8^<K>YNEd4|dMdbg6+3SRD;oMpW#{Ak
zhc&XJV|sIbbs4Rt`ou|e&A2)uN_kM)$-3K)5`Gr0T<s_cjqoHi8__tKV9OFXNbl-7
zepcS{5l?6Pdq6HgB*q7+dZG(9YX@FW+n=zU{S8sOx<0tRhV@$D{m%$Aili7y(%#VS
zFmcgCT5_J72EazRxrCA?yWI%CQ;ZhE`>gCH_prJ>`sRJ*OM5JH5~_NFdRJLSszNfZ
zj?L60GVBb|EbUs*=S&JMe@;=}JF9(hy-f3uZ|)UCoI}!>;3`Ml*SRD9Q`w2_UY^4>
zRZHme6tB7&Em4MO_(-OHEDHqaqKh?S>M-x{qH0|+3+j2cbS`GI+~u4dSV6x;DNTN|
z*hS~{;7=cLg@Oj9LXFI6bx@6*7?+#b`&KjYVfVlM7tA5(2W-C&{b|3rj(I5!H;lBi
zExPw*l5D|{e7fmN1A&k}>ldX8GHYkmT{Lun4rFZ0v&5kV10m*)UTbX*v!{uHB#T*2
znveXwE1YdmqDSvj96KCx(0zXDDAbH#Q#s*lSusjnzEF+6bt}KU7H1M)<*5JEl0v4p
zK{oI3Yr?5C7TU1>sWN8aIcY&0n@v`U*Q@>4b4YQGa1xD9Xlj?{u!5E4&W0K3I_hHw
zL8WMB#FX)SfEA6C497;`;*P0@XtI+bK_Xrs5Xp?_9|LrS922c{f6Q(>j)oAjNxu^l
zPx|iUX;CY?Pt&H2x$aaLqcQrXMNaD?SCvCHbE>*H<2XCZV&kOXPvt{AEMq9-I4bcp
z7uKzr{NS1O(%<-xW3bKKd|p4n6LOqxhSeBbinAGz3ukT~G;?OWttiypRVy!#x+?JB
z)J;1+Uu68+y0{~G8SW^mh9$w>XbJA1%`4{fknS!t_CH-U4{)yPd#dvv$M{*fPlZVe
zH-NVDj4!IqN(5wiioyzxxpqA-Zuf;(y@Uk&>F*ZWRI4FdZQ^D<gU;u*NZSSIo~9~R
zrQ7e{-?w17BfkZasy_=x^3}nG*Gl#3CIf<gkyCw-#H$siZ&+}UPDh;N5t7bV6<<)V
zT$)EW%0E5+v*Xilz65@1w*guf!8(Hr5gKko%ga@z8PJ5>bbNbiz2P)60=Vx*x2KYn
zQfq4!^(pRPYcE*)!>=YU_`m8!iTUF+n{J#<r(X%)@$awoD9mw-qY$u>845{cP(1&*
z@1+H}h#HWaW+T-qd`Cj(*#8?{_K=E=i`w6L%(__An>&?&;6`^eR$a`y_&JMp!I0=(
zFU;QL(KwXK4&>d}(!W}ab`RNIT<b;GUbw-n=#=4)(M2`4;A`sG_=L5OPm$NH<2$0P
zX`W9Z6*hH4rgGC#k_sZh%FZjcUt8#ID!4ED^%O_QPpi6L?(mxD0iUQU1$d)pxqtW<
zWj%;|U0Os2sC`xuKp2deJmvQDA`F7vXAk@j&Iddxh98?3-}xurulMD-NJfm4sGrY)
zk<f%Zd>Ca`=v0Fjo|a!-N7oHN&a)ea>W2RL;h;u7HDV-jv&!gGc^Pztv$OI`fRgND
zh5lFN+kPxNY+>O7<#RixQMJ$+(3g?l+xl4egE!kM%<pHk02;WY?v281Ws)Mz{NaqQ
z{rE$p%FE8ZKQhv4*rEUhcTktz->87<u~24{l1@f4#K!RIU|gtTnI4A+cn6oeW;WTT
z#naQSNCiRgd>j7qBfn-N_gd_qY6j5`N{P85ZKWq~Y@8d{^-Wy<^qY0x*445UZl2{4
z=-|iaxdif|?XuEF+c&ik1g^gq?p%^WrwJt3#;{if`9u83uiR_(PB>=h%jvL<K4B~`
z{+>Z(Fzc|~Y-r%&tJr_!)OH0cLHEj^4cUk**Mv5F{;ZJreX>NbMO%yB>BGLrXE6$~
z#EkKK<X?dCI62y|oPfVpM=9q8?``hi$E+;|Rg-i7luq=J#}X!MRTgAwCEoKgeK)p#
z-qm8lmUKKD_||83<)yryimd_bez&?)I$5nwp$)v2gzs|#555P5!W&I$()0mA`7mWC
zM6|LKX8e?tA{nvWLr0&l5Fhn>{9%RJ+khE3@|5dm-jfD}`e<<y2fKna6HB)s42CAk
zkrkJ|P2T;WbW9I|swqK1$RP&ZRToj^-S0ZW7=S7cY@+3EPWN<AY9OGaAicqe4c)&F
z_zBFbVIy{Qwu8rA?XMs;n~w&kc4Y^v(zd_iVtG0mbHyBT`zG7ZFsM!N2smszGmL2N
zgF%?!7YgV32xD3Udmm<I{JK`=!M!~{dM-p+Iqp6oF3`U+Uz@oQTJ#!ebhc}rLiPbr
zNKssere!eMZ-b4Lu!n;^VQgONPWuFX$QwC`fgQHrn!(QmlqpOV`=S^8{8Z$)f;hGT
z?U7=43Fwr^=x9Ddefx{4aH#OLXzXIsmzvs>47SqQ$er7*h-ASKo=;HDoEO-NGbQT5
zbcdLeIoaNcdJ7;+AQU9gRnVb?f#?sPZB2?k;|^blfQEqg-_+aVj{L#Ne#mx7_;weJ
zNL_6yA~P0`a+CKX+>cN+6q;6sU$sOAt8UYL@{=fei0wFVYpJ)i&wFlS@GPM}*J-7y
zhw#)vXk?UcB)1UYC!#Q$a=ZQ|fE=;^{@c7?hn-GZh2u<RDf1!~lVr&0LoI9DK#q>O
zA0`dv4YxqSkEdX^{V)gVKtI58?+oMD&(I!I!IY`9SjUv>fhtMiBtP$2H#UNYW$DEX
zmBOUBw*MFL5PO}ri5Fk;N}YdP>A#ohSt})c?I<OLRzBXo(a2{ySNq`&_Obbd(Ntux
zhfj7w@%L{9V&jBW^y}J~M^aUPtmxhNZ>5V5isa2xcQ8WYqqXc3CEzC6oEdh-u3dqo
z(&)$PNmkW?fZRf)^HRB&wS7a|^9SwK8_AXMsM9C3mp1kb8!78fAbxA=f6IlLqm6n<
z5B1`eqGr_3hvqY<wci+NDdP=?nH59RH(ItrNaDwKMisHG7BWQ!6(RKNFAOqHpwHAi
z8IJ)k6%9!a2tie570$KUPXpSjv$2+}zIPTCJgOKk{*A~rhZG%avp6@<D_sI*gJQkz
zy5ZQF*{&mED$f{Uw3{{Sc&|_+*R4-Q+4(xDM)9yZeZQW%?>x`D>o?Ou%a3|`X=k*5
z!>xr<&p+@~T)k+@Tb_{8DuX*y%?l<fE6PmHCI?rPesNf-PP*&D%r@2A?Bf5l|GSd2
ze7Cu@V{*hhv<U+ua1@C$vkN2jsw!=3wH40ZL?>w~Lbu~wOv_P?`%xbL%KfH00vI2?
zFZ$IzyY4ES4|*c2>XQxx<+?M6sbe2i{wns@5${I#R=lmBg*GzQOhS$Fc}v?yRp@){
zJWn1%ZzqrZ(+MOoi49X^AVM-gQ&mjB?z5e8_+ssd%bP!J8aYwF!o_oJ>3L*(058|g
z+-hbQ_18RB<Q_H7<j&oH(V1j+o+e(%rJ&Wyv1e`RRheybyueS8BQgABaiS*Pie#qP
zVrR5yXv-|WWh>=D@At@7vwTBSG|9tp{E#}-v?2Rh*`|#mN3B^-lFl0tHysd1avFOg
zWJB8Z_un=API~?}(`$*saNvgdi11Iw)Szw8z!L|rtGWRe+|*h2nX?~6*FJZ-u)x3j
zv45jmlGD<skis@j_-{|I&x=})dEbPM87x$f6mDM}kY0j94N9Lf;Zzilr2%RAGv2vb
zOF7EUT8e-U!IN|o!d`?6+O}GO<;L$_4mSULig@=%|6wtSq;+<^p9=f0F<FYYth-*w
z0JZ+3Y0je8)4s{4en(l53pvfbDXWBeZloI@yENQD%UCa%$LZx;(lEqV^C)kAHgf4k
zzBiGY6tSP`s5$%*qd)j;1l8I|rOpVqMC=>*|BF!u>fmxH&;q_SVsM8A0M+GXfCA~b
zC*4#4S)&@HKU(^B6gfQ2zB)aS!FEHuFf3g(sVWrbMEB1HcVPXWTrKRxXq!sr9Vs);
z`<oh4A`Zcj);Zp2*nXFB9Qr=+i`QHC%4K5jPp-U2=>B_@!!+?|hnfLsur^c_oi&>G
zP_{qtj~l92_V!&?6bF1FoMDnrfpIE0&d-*6G(?D4;9t+b{8*-gd`hi)%r1$X!<lSq
zgk1*hkEPkMm0eSCs8Oqq9I0;apl<5s{t^U3p|j{Y-UhLGmS}A$IcZR2J7czVp?$v|
z9Ks}D0RsS0t>e+iEEa(7yCs?Vq_#7@vFkOTb}ca0{zKAL4fx#lEbD5H?qgWmCIqW}
z??cvCWrwJwpJQ6zZ{HJQ@T-+dnY#1ldVp?wKVM7WC;b)6mB~GQ6Tj<QOUQQjCB&zN
z|Hj%4_AeVsm{TF<va;FrAa6ryB#{Gt4~k39Jqkx={g50fOe**Cy|1Sj+Mg?NjG(f2
zzw1y$@*l8uHwFATed)8X_}cV?S09b5Nvcb0G~*8)acJ;BRVC8|0x10_GVv_CWmGyq
zrM{7!EY621BM4hbjk?;#d#Zk_%FOf{bsWlSIZK&1V~g-&^3-9QKW2192okkxlinbo
z#@PRz&1$;xqf&&%qw$Y|FQp+#IQgX9ZL9xQL@xH84j=@vGk*xl`p@kyaqMI>0gJ~)
zLTG0O?C}6P`ivca@j-q%uOh5IVrE(%$u=qar2P&|g%$IPA$+Gt%pS#^la!jYSvl)l
z;rINUbM5Rt$A?nt4(FXQP`Y^N2SsR?yYe{6R3;HRxw7_g%6)cv+l;b+r*XQs$P>5I
zcS5<BhO!$ZsENJbesOVTeQ;IJDSbowPQZ6pm`8Cp&i`zqgigA4kCjjRgeOVZ<mLw>
zI<(VNFXfPi_3xm%g-&Dehlh`qgqE#WDh&>3?ka+O0XaBI?><f3gB<jJo$w4y*#>;D
zSnmto!XQ>)Xb*7Q7pQh!Pr1D{w);|c&2NOe5%5n$0i>tMfHem=>0%jYMY9zktr9^$
z=~}CuDi}{9!~q;(9bSA6+leJ7<js)@ZxJ=u+9##VVJELZ%wfjn0fak*_YaMV5Mlb*
zm1D-!h+nGUcQA@-^8E=E>#SumMNlkrO^_`y*5ctJdzM!<nI4p@4L8C&QHRgp3w>X(
zbT(aeji~IIWM_3|4&4mZIQH4(T)*8Cb+BTnlC@_f@)3upY3<`s0d4$a<m8cqV6%Nx
z5%Swkdz~@@e0;*jAl@>P)`Bojld2jLQliElsyh2DSaa`vY|H3m<O}4f{h*+b^oJic
zzGlw|-PG<4V%)!aPm_Y)o8f7xXUI;7S5enr!!Bpq^ugOT*QO};V*onfbIH6D9c12^
zPHBdv$#%aRBT=1F%u@eKu4J4>FUu3Xqe!--#ZS7t_nYjh?TadC0iW*tCJGYBt^e$%
zhaVp_FmsE~07QwRewZ$52!D*1DK@Z3r8m}Q=4{*~z~HTY3Z@u2#Q%F+3m{5Rn0r~I
zX?uK!uz8E{TX05t$C_{-2BbfvJ1VN@BkDJ;XWkq?jSwaLp35=|tfo6>oZF6`Uj<%<
z)?DxJUH2X3U$|e(U&dW`Efw3JBlCYC5QQz*={5dWQFGY0bR6g6Nbrpf9wVlL8<3ul
zl6vP+zk<ccPJZf(>>@&jQ$wq?1_L`0m1zFNd<gdTVEL2He98Mji!$<p389g<8SmmB
zH<@9@Uk0(M9Ikze=z1XE?wF$s7f9L)KiwTudt>s|;4tSu7Y}BIV=KhrF#$(EQr9Pj
z={46W?0(%G3lH)UE{(=NS5mA|I_CxWmE5acE0ZT@r+--Gpb<3uR>`mjKFxi+pFH2d
zlr|FIL)Q<?2&b}`pe2YmCHjHuku-op8)g5e4nG*0u71LPDAP3cVks*^h1R~MRP)eS
z#1AE<dxrd+AEbrr=U8-3hrYDx(VWCg2+thdY*I1X4SZGIujku-2bzfPZ8Ix%<!`G-
z;%Q}$xJLeK!1)&qGywYFjcAQg6G|Kq>xJ*VHAewmLGFJ#IZ>oy#*kpK)=8<SpCLKs
zWY?FhO5=?>ban|Q%u2$88n`6OBR}d)x?lFd4mK$d@~buaf=)!Q5QnGvpR+RdAJ|kR
z_-89w*S(Hb&^A_O<t<Wf_?Fcd*ma!t3akWV0?~rL&Ji;(kK}%e%;$j3s~tq^BNu|o
zj4;iL@RG0MMPY~fE<DO;X_t$+yVmD200b3Rj+?Kfk;HvTJ{iQ)iFa*W!k_}YJklTF
zVp%(#ZzK6RRJUR4_etwJx*X-2Zvcr^x9azk^1nBaX9;6Wiwx*l!Sc;YiX6~am#)@2
z_jY>~>l(Hl4uWu-h*L$soS}?i+aKzs@$D8@9{0LiI)j*{)oDzj10A7%QkY~6TesNT
znetLsdGJR_-F-BqrJZ>{2=G^#q@l{W?(Qx>HuER~p1G3}L~Yg#ATKJ89ivq@B2kLW
znHNCOpbW6v!rki>uadNNaL#!RKX+dc>~%MBXL>y2I%3x&SnfJwe^#n}7Q!QEgQKg*
z752LOoJKSRr@4H3!;LNUGpmt0LzUuhV*-IY0d_d+F3*U!_Btv(;i`}Dm(f-5VbBzB
zP>sPy_lc(6#}D&mcMg9AYSROBWMWy8SmsKnR|}kT1sPT&81MLpH&iNN($rM^KTMR+
zE&Sl8<B=dfv_@^g+vz^9QU_mJK$)A#YOV%?Zrx;je%vyO{F`4#^F`C{ZChT{6JgeP
zcCrh1xSq-13)Jkp!=Q+$?4*7U1^}S@<{PP=Y8MXcE);%2Eod+7;-D{pxRv9_K;ii>
zDnZmH@}-$ixCf>vyd!h?yy|8HO>I|8$b;2hV#{(h&k6i;A=7IS)Eu2~Y@Du1iG~Mo
zhYS`bLVSRKq6uH1zTuL`%sft%y|6YwJtgLyr2=r(ljLowCx5_1k=dXQWgIZg^NM+6
z-Etl|0=P*qD<th%%5dm&KJ=*F$RZwEO1+cn0I;0B$)4nAs|o0|!;+tWMh<;jZE#BR
zL=PK^4F&F=!7?KqX2(xy38dsu!0jdpPX$Bq@4GH&<E<5~F~$J2hkc>b2v~)hW6m5l
zOAI9qByxE|bv21~H~z`{(su?Q<f{vP=m8h6MqF!(etd7gc)DvTe<8Wmik3eQ>K(xC
z<7%0fL&F{yC@coz#)x?3ya%tIx6!~?+1d8PxtPx%2cQ4^lN%-0>u^9r%86q8S5)KE
z?m`4Y%E+a@0arSP;0?0uKk89&^m7G0Uoo7C!;P)NJ_1Wg^2M%qcs?9wRM^Rvo^B4~
zMzAeZiAGXB&*NUnO+O>a=m;&nB~?o6#9rHWnkBez<zw^KLoa_Vw!}azwK?fS$~|$b
zgG$BEZ10Bk@{}xpi|Q7kNTZ_{&1jte0#@`Dcf;;-0A>)fjJbWW*A*<rxjk4>!;}d9
z+z;Ixd>}WSaE=KXOwhQT++q?YSPCweniu#9bgo<6z&Mr`-T5#aQbdno&k{7xT5-hs
zWzNy|G7O^1Nh#C+_IG$B<fa%C6VCgPf+TS?45tW*LfEa++JW}lvC%je(yUJbivd-b
zhb!DE$EP`(H>oFjC-t>uMz&yRWk_3B{GSHqW_FfATkunEyJ`6?mT-RvxR4-+uo-J?
znWorcAr%Snpb6h1vqFkvy0d1+s!R%>&#yoXlg4DKO3)v6oda;UR{&k3oY&F%mmODK
zj0KX%gb)Dwrk~!ScbuaM#QHMcq+76o*=>Kzu+0llYeie_UqLzMJ7K6_Jy^H2#Zt=i
zI*O;%gYp)^s)#_d_O?a=y%Wh0ZoUMwRJG6S@iZ&Q$Dc!$1!hj2IJY~sW*z=m%rk!D
zWILdAWAdMnXH+8obk4A5P$|b=e9;%1+)8)Z#1H+HHeIG6p$KCyuhvI5IYGA+SRq1_
zq7U(uR>0^!(K2ge9C5dhb;%>4SzsP~LW~ECWLZBo^k2C!Z_b9>ruS79&6#Pg(9FPU
zT`9IsPS<8yhWM^**CmF(RORl_?0?H=Uy`vWYr|=*R-<zDe{gQw?0xnrk|y8b2kDI4
zec#SGg`-sER(qW#2m>~MhxNg^uI4}YyW?6PFgERbNp_WtpgSyWU0SC3K1F(|<ZJDo
z{X)x~4B%2Bksqn1%}M-w^hwqIB>zed(&o<~GQl2{(ne`_sSVA*=Tn}?RHk|M$vm2s
zvAz#9Q@H<EMAf;8rHNFTj<gw};kwO!%lboT&GMAb#U4T<ldOLKoBPU{#Gnb1b4}KU
zW3~RK3WTgsu%nW5OU%3*UKixBLXYW%RqtifTkB*;3}L%W>`ZsBq~7_tK7QWD&AIh$
znC{EjqTF?o?nD#l^%E_H0K4@x#|ig18)D{^|C`%EeQsAN`6JlA6oefVkH87s=~P%F
zTkWKnpGTrCcB}Ef<_U3Q%ui&>v;&{EedzZx3o~|5)ozXaN%+Pd+=_NK&iOAfkm2HS
zFzC2VfOE&xOTDq)8uuU%oVT~FKy!_lOn=S3U)%O)T>$+F(MD^p2sNDu(X>}+zs9M_
z&n(yp1u~b`_&O6lY(Yt|lJh7k`q8XNo;!A+1Ikwy^d7+X_SSmX<!Z?iK6J3e%um8^
z{wBE2!c7lQjJkgKd9?Uhsr7WziEvKEr{+f&3xhMd%8@Ife+&Psd2xQK{T^o?SgjJf
z#Lu7-yVi{^-&CR^VQXCc`0+;ctSUM?DeY^3b7c&(-1V&BZ%Gzn{v`B3sedO>2C!Qw
zae+00VW&}3j5n6{{HpAj9E8x7)URsKZt%(C8f9gYx|$}<mOJ7mQRsJn+g>%^d%f^Q
zo3b{P0X)jHTF50$mVT8I+~WV&Z;?E?$f4=X`Bbo`$hx3xl*FMrWP7Hv<?7veTvOS`
z%Bs^mHoneiZ@_iZ5vhGhWoFq3TQ<ph>D<ZdQqN~u{i(^?AOgR1LyTNwml6nJ8nW<E
zQ}Hnz!1hD&Xk_2w7S>Vkg=PiwTy8OI3*&>jn-2U@Cja<(JH8G(z%3a=Gc<7`>G!a3
z;?i~Yq#uGbCT2<68|ejA+(cr4{2M|M!f7VAaUHuj!Nz;5>v7!;uF#)c-?v|<tGoHm
zki6g>zcI?}98cYJ0kZN6@cBI`vQzM(EO?q7zVB^vldo_AHjCgrc*kJvp42Jmu}|Zj
zWaJ$!P8xODgElz*_IBCwLEibphTcvbuoBH5wXx#V8L|NqGx%2Z-eY0&&gg|@(%=g%
zTBgz2z~&HsyVZ0G3O*sT8Izyeep}N~D>%b$q18+Hd+rxQU_YPBM&f2ibwjh>GC{RA
zS`z(iCqkex7s)*6+CB#+XZy!vTAhshkwSgEF1v_A;$n!QaBz5F%vE3yxVNi+XjH{I
zo_EkPv{9ThzK!e1Vh1s17iD8ez<4_bQRPUmH!3jf8$tV&Hd-beg##-68rw8oj80bL
zq~O#q;J3Hp){~Sag2<MsrAi|LUc1;tn)4VX>xtv<-e$vDtWil+eq8S5Z&!RAjHlss
z|E<^mX-%!(=~yJB_y}q26kAoW*I~ZZ0$Z+byq$7Psd0nnX_UZ|^kgp0#77KhPEYB|
z)YaP8)iIUzM*S)p1rHr2f{g%*C9LE!l@HDO9zU?sJr=VW`KHa~N;1|{<P_Hj7$kL4
zRLIT$yv<foArX94)G7+r^X=%^X3;Yl3exT!lduRp_~Ms;Iz2E&^H;Y?hmbtf03W8<
zed0uEAwHtdD3d~I*mRq_*|@l(M7)kn)N^XCE|L4!x&x)X`g&mU_Bdy8=;H?^AM456
zbOHbmY&>daVNIO32yfH)Ps2xtYs%RB&Wy7;bu;MW?W&odPFLJ`kZn_OTx3_B1`1Uy
zX+HW4zzj`t*Ufqg(mvoav*bRqiyIgVtVVy*nDA0JJ9^XCpx?5bZk(LskdxgS%UP%Y
zB;Jmi)9WA2Yx$}EC25CO_FaU!p4g9OIBdg<L=guQ`B+rBejjtd;+b*1;WjaCz|`Y&
zN8VJYb57YI65b{N(%O-3LjAk}oMN;?ztABCZ?I*jZ+gst0OmEToFrO5S1}PGa1-R5
zyl!T4o3l;jOt??8O7b0d)u5#(&jv8Qt@V@~uplrL=AlylZEuMRxaz*Ez9cXfvU0)(
z%&UJbyrrV22^enAdi8lf0#d5zmF9IGEUzp6iDBpDi`Bu3Wc%ECp}v8@yC2!N_jx(N
zCDASeR33&35Zb!?zg+$edN^Sh?uYJ`Keyqh2FVTFr)C*oifa4B#NNp^uQ)4d!XTGi
z7t^jNR~z7hFc5kx@HJuY@@e1COWg+SxQ5J|g(q=)k`E80o5?cRn_p@gGIG7t<yljZ
zUwn%kaDFm37{{UeB5mI~3~q3xN29>D`9245OziPfd?Yy|Ak}#KlV7}gf_X3X=(|ED
zbq-W3L@=e^@OcYtiB728Nv{HyPcG8IU|0kB%hj##l_c`+W=iCZuO0d|Ap?qjQNCi|
zlTWt{Zhj1gG=^m$%0js6UsHM@;CwtPR$MN{Xi2-@sqOk{wz#XDe@SJH@bt6KF9LcA
z_kljz4Q7yP0`*J?qFn&`l@UtREt`SOzQp}W7H$gf3ri{WeOG314{8+DI>TJU+i0t^
z0G@08ToGm!Qseld92W-BQ}nNcHQe@lm86H;8z9mqBQ$bPFy{zY5mwITmk6N8%p2nL
zDjp&Hev_*V-5!{i+Eo?6ZP$=r;=lwstdx{N8Mk8IfJw^DnsC#lA3=VT5Q%Cv4-qc`
zXZ0hdIddGB{~w;EpSHg8RM0b;<2mmaRj<h&gngF__jZ9hDCWFGeP%j9#>MF^>HMOr
zm|QOxq7%kRsn+M<jx<wSI{V0BG;vg~)zR|d-7QF^#+Sw5hVb!S&egwvej(0*0|E=y
zFJfxk&vb6{wJO*Tbyi^fJ9L6-t$-@_LrcP(1=xboD&LbKq6~P#s%vD(U$LFaJ}Ery
zMuC`22ktJ%NySnKmddvZws*bH|B<*5yg{k~f8s)VYe(tZ)?-^1yuo{OE1Vx%rsujx
znzwn*0rQ>!6e;StzE?psR8Hunk~s%`)ZaNR!*$o?3p5Hjp$s#&(cEjzgdI=x_zT_I
z18-|IcRKK*aR%CV8^eS<_|cZR(jW@j%(jV%ZX;xaHUlwulZy@}FQ=hJfzG1<B}v+y
zo<?6mmGjmt&Ks)dN`!oqf}3vF1A7NsJ3OZtzhFXs=m(M@#XR#^JQO(gS@tB%Th-!{
z?Br_T={ZSIo}YHxXE@7Tz+~=NNn&5w+Y3g4t`!#>s&+Bhg?@JW-h;pNaui6^t(7wp
zzxp1q&dQd^)NsnZKK1R%0WrUq(t76%*5}4RcEev6=SkMGPvUP|-Hm!~8tF{SBswcq
zT6*S<3kAEpRxPJ~vHUp`e?j&|;iO&*x#hY#wX}|D>viNZM}6??`hKM>gOL~_uPTEO
z(axl*S}cputzz+rC~<PpvfNUtP8Lxr6<nyVM6VJ1b&z<9J@Ahky0vv6!3=5^v&!N*
z1Naqfs=A|DITe(u_cxc*69=8TXBIUBP4Ke^d^TleN<GNrV6-wzJl0vQ=$TS*PUrV>
zKqTW$0ip_6Vs$H0k>o3dL57VghorP+HZ^2AEFN`a=j8UaJ$Le%KW;@%P{WP9|3QP;
zbGg<+O{?WlRotCcph#&TC(QP!s=)uK$n*bk+9^A&{HfE3S9yVD_(ee%wRf8ECf8gs
z9H+$^ns?*!rYh7asnBLYC64+@#pxNc-FupB^x?VWFN1+{WxIpR(xPRwl{i%x-6UDE
z@0T+x>6PCC1W(*hBwyY@pYo#X!2njlcQhvVcAJPTHE^k(AIXz^Q1Ja(t`SgI^~^#;
znwwK^(pAF2lRr{2#!68zizR~VE8@=QZ!D*&YPSz2zNYL)ye|TEu;z=e^rG|FL3Get
zgz;TA=a6@lik}J6fDf_{>~U8~oz&lrLmQvoSl{1ebcpk_?~V?t8On~&j*7JVNz(ty
zuI|c6Iqbd1)bSFf0m&6ZUcXgHZbia}2=S(fYB&wVzMB>E?$xd{aI#4ZNs<~i(hQ1N
z!D8O~{2ZNWcIThJ_(=F2Goo_yujmB_EOnyKVd&!*9Nk&O+oS@y52J$BC**SgMlh;8
z&dLKz!~Ic)s&z6W7^uwi3Zndvzqa}aZ~uwszL%5ft~KG?(HW^gBXyz#Ir)n+JeokE
zcu+SN`NO+rXdL>5i{gSnr?A%6Z^!<+eE*U>kXK;eoK0(c)lr|T!74BlQ1I74s^pXa
zt##`CIj^nd8SurXE)2hrB~8}MKmJGrl(jn^x_w~_g5u<M**tU;W9A39j@~dzIrGH0
zUSLpr0Qa&HRes2guzZ}&1{a0$t$)0nztp13+<CtQO_IGhXRdSA#^zUUrGZRVW_4c=
zTXy&E5eG_0s<*KH9}W30Wl(twc~OqUqr)i(i{x}0w7;%u7ebrayaO;;oz?FoegUA9
z-`s$d+IUsB9N8>;Tqk&kz_@<Hl#6y&WcT=1U(vTI(<bu&{`x!C*?eC)XyV<yCfmMZ
zX22}sl3jV=t5>SeO^@eQ(Iackn5sc>w~-PxZ|xo3cTZB@{6bHd0w6XsP(^q-8V9_I
z{%P|H%WBv>8gg>=4y|r)ok21})eL5^DY$Z0)bdZHom1~H&KAyn+Aa8OBiiss3vNz0
zo`{{lk+ZkI8z^!5eriXm;pZVg+<16#oD~kQYs+pe)^f7W%oGDUCRw9Ly+I?O_{HT~
z$);ABrl!_=O`OLITP%QWkQYNv=rxt<GHBplv^S~^)ILEb-}m^#58_k>@C;cKrpqeh
z>i$Ax<eJ@#`EB3rfy-smGr!F<)-LFgdoARA{UTa5hz<%~JiHuhOhPYXPS;%Bt1kjU
zHnGRj|1LU%Rno_grF$<)xy&(NyU;HhLG4mvZ<P->g2>(syFFp3AWcD(s2^8i(xYYi
zTXYQr+(tl=pF!g5Hqz3hjV155JG8dbWE=2uKz-wOf+42OVUjRs#@e_3eM%-`TS4U1
z1tvOvCvT*ecsQkdwz3CaYU~(#oE8v1`RVsr6C~<QuS~A4Y}<HSpo-q+#8=n1JT>Nz
zY_GWOoejGVJ5Imicq`f3QBRitUbT|}*sz83nt;h62CPJ5)%m5iQxt=;S)%lXw|*k{
z9@_te=;_CG-pvZ{JF2R}tG<)>R^9{C%2RksYW-ajUkzZ}Yr)@E2430ZM1e=5R0FTy
zrF<%x7QOE&+0htG$)~)0E-I1~JWeh<ZTxk%_TRZ@tAfN`1|B@jmO2=6A?Ct~)n=1Z
z?myJz87nTO+x1-6*wix#aLt{#H6w&MVAh+enm?kkeYBEcP~GD4{otdE#!Bbr{n4V#
zsqzRN{8;AjGI?#R?1Ww%dqU3~RhqsBKb+t_a$U&PI@ucYa+uv*E&=`ZVxfZfaA%Ks
zQPD~CO!Qc*s9V!fRgE@6;{!T2IPF}Ng)RiR@|w5<W;_%%tDgxUX*EgTrj_YuP{3+3
zYEF#WO9J>l%vOfUefE`o0Qd0gY4{+^nGD15H}GuY$_EY(XGg;3;snu(88o=DrI9uR
zUfB#$Y5Br}pa$S+gIiJq&bzbD+5XU-5yXJfG?PmJxh4Z!p)r%n9Eq@O$O}nk=qrwb
zNy*YzkhG!4gUUyr$uVzhNZF5tobNUay4^Bp(S{zDK2}^*hZ_&HiQ&;Rkw%HP6;!=m
zot3Tb(3oYKeX^c=u&Hp<Yb})tYT#t?qTu0Y(w;^c&V|gnsyiiTu^lC)ogFGVKPdtQ
za?IZ7nSRuM36P+{zYA5E#aArY*a8pRo>B3<5+vSJ@ToN|G0?q*@ad*wmi3B_GkaUJ
z@+KvF@8s}4V;x&g-$9F)1p9sUaMx9er1`;{r8e))`hto@hCH~I6B0SEFLJv(PTP4f
zUcBVEf=qGNPb=H*h1vL^LU)Wcxi;g=gorRCYt>YghwvND{Nu$CyQ|Lgy@_Bj31Wu0
zz5>7Kn^3;o5K{etQXz56!j7D8UG>81wo&iUKeR6+d5zkCm-z|sh!$Oc243?ats%SO
z0QiO`qhpDX(z$PY5?UC^)CRSwaRf5}oPkwr{)$%J+|VmNnDS;Q)wXj$;^tYtFx<3~
zAqVq^1)^$@*iN<+#VLym96jv@ZL)=Xt>p%rUk=hN6%dzzS&Jcit$4omXJ_tLgZ9Ns
zm$;=-1v0%9?<+Q?bL1(?Ke;^a{*Gba3)TDfn%4tyZDRaO?^r?=m3xUaV$SChCqY+@
z)<0qma~hbP^vT5BC=e$fClz1h@^6p{!BmjPTwk{PUXZU&C`o_AuijePmg=wva8O=j
zwB@$S>0_4-5-T1G4FQxtO&x#Ak{lLky(zR+_5P=Mvm$%a3NE1%-P)q6^I{9CdJ?3(
zc)KeUGmPk0LbbGNeCR`A`|y{)Pbl!~i!pa08?!jIJeszkrmOj@!xkrG*ZLCv)1JX^
z?Di?Kk&n(BtF}jQlVsXZtPpzd4@{<DX}L^V%GtYa<+)0}+HF7efh3&BFDxwG651I#
zZS_#$*a>iOGAbX|2(iQIwEPQHpsiVbaAFw)EXQ+67C}%x0>B0&u^b0+s=%t*71tv;
zAXj<20mdzeF=P);>78=^vz~YxRK@!*93x>^f4i~u?IG>Fd<&t8gnw3v*!KMVz$=a6
zFCrF<L18`?lrnuEcOBwCXDQsLgB}WaU+Z19=A{>^;sUI1HwtwRe*YoHF`&r`c(s&Z
zeq|1g<vd*y>_3=XRe*6OWj_@_2S;%Vr4>55mh|Cn0JN8S)^u<e?=h?2=tZ5e!GDLb
z3&L6w(*ewuGV<9BzmejtB7;V&LI2qf?!|5V2V2PDEJQx2a1*+V`R|XQ1<FrpDSuGg
zr5n}M(d;ZH)cN>nYjWXiiC8<&5x09~?YAJg=MV(v=|x5&r#s;A`?_Ci#;vQ*oG2{7
z`T_`RSQ9?u%T#p!tBSaEwRe)&NK8D=gG@$qGF0rxY|7Mrq(`GMke{40P!HVgIc3G6
z<+oV(?>ijRf?ApQvcC1pu&02yt<r5G4UQO@P;ZY=P8~=gRZB0_O-W{$MQeLM)qOo&
z$~oUzCI)+TVMud!vAY(+i_ZwP+21<0KN|vnZ@XMnbU#r*!z7g<YbUvvn@yK%3q~{w
z6_}2;98~_2$C7*=NS21u8`bV!S+hF@9yAcCmV94=Mg8{fej3+qwp4SK(TJ4_mU1>(
zQXP^f0j37X-Ty6FR3)BI7=@~;<~)08x4<<r(}?>3XrJkQ^pgM+KBjc(N=EqVzKaVG
z>QqUh|9F#A)$7jH1jwS}mj|nuzfB$5LJ~ilnOL*yDyH%T1)Ay#J;yKk_yl9U<?>Mt
zS3PPT{>*<<+M0~Q<|k6N?KxfVWd@h}YhZ)cd{h_9ly$0Z>!iwe_TdtC-^jNq#frbZ
z+wmAz8P*v@;JFBe95JB1)6??vC3!B+wRcSAN{O+@A8b~;a~r|jEs0+b9r503a8R*?
z!_IKY2+GaQGtcuT+`M;cgkY$>WwP(<k6^<nF1)*BL0+w#AI?VyhcD<PFs)58hXLdz
zYopSH(q-M7kikll%~@gH{uPCjD#n0$o<yS1cc7HlG!lAX(1XF(6(L6;(@f|Xn}!-_
zEaQCGRq#7DK-xys@y|f^pwxkYPd1j`uj=jx^UXl^YwDK%%jvJB{IayRUda?@-W!xE
zUpVkR5Q#>i)~i2)**uPtr(cwf%45jf!Ddw=J<4`lVfTaJhSPDAwsZPs@dpCr!ePPd
z2YE^4=Up<s>Fx{JNJF8^I}UaMRYSjW*8prp_no0r;stk$QKqNk!Fvi|D>yKHfUvmw
zSXwuBixd44>kb|PPW}3C)<r>eDeiPhsI%B_Jt$=&>>d|43U4|6;4Jk$YOi7O&UXBz
z5N3s3K{X27CWzim*Rb{Amm*kVPx)qaViQuQ(#Mk&zl$#I2*mBXwB>n)_a)B){!M!v
za_;Q~vf)&Q5W_+^-B2(*D{ZRtZ`&{FP}UTT!CRU1c3V$>*D@0mXVt8>mtEgSoPSNi
zv`6d$IXys|Z*wnYvA*wAShjW39G|Jae*z%Zokz6xH<c!a44p}6V`4zeLnB)>zRS@t
zA-s_b!Ag6robWp>Nj!y=!Zp5&$?{2c2ae@W_T3~A*e2BiCD1|pMsZWmb1EgJ2*6H|
zoZ_0ZW2KcwWV`3C7d^|4JN-OrK?{<km}#xgM|V&oXud02cPf0ulCnJzI_l`5;xW#y
ztW~GgE2t6&N^dz=^CWx1Fx(`0XcGa;t8|-805s-*QgKkZUXLy_vq-eT{xFkwSM6Bx
z5NqTRJ^5IF<|%7-l+<{J?^C?a!{vd&z+LyJ@cyl*;9o-DiLcj}-@(O{hNkOY)Vn?M
zBkQ1`kPnQZ%ihscm!0eFBLx4H4c;w~5`{=w48JTI`)N@NU5OD833>YUxw~j2_q}82
z$_=bdM&x#ecJE{14^qTBhq19XyfV|X8!N6f!cVPEZO%TiG`>Wz&}gRq5YzcYKdGYF
zqMVa7d$IoQsFv<?9Bkt6Y)JJvq8)F2s7Oc(uG!s~K&hlvhV<Ae1d$_G*Hly0#ApA;
z4a&LHAD+5MyXs^?(_9j({U)=y-sXqi?S2{|q)p6}k6Ofd1c_yzBGMEzIx>IRZqbe?
zRF^z=LRm4D2}8<5>sa*f^iQzMR8@^bIUv-p0C2j+)X&U7GwL{x$-d|W82(#BPA!db
z;7lJg)D$z8W{Ztf7J)mp@!LAkp%Vu0cj}&y)QGHoW_s0Wu5ekvV`7g7@%6}W=C#{7
z&^cxAnm8qm)xjnC3((Cbqu0=d$&l{i2B7-%B|9O6&RPbbS>@HH7A#qMDfz6_nFd(j
z_Dn1GEgy!(hw!=wwin6s`hm3I(E@kx^jYeJrO!a%sC?f+kV!ruKIq0b^EInVyM=U!
zObag6N9HfOeAf=$B^Va|L`8XrMgaiP-(iR6hVs@@tCB$si@UM1vQO6+^PH=df<wdX
zZY*<Ib(lmipFFD5+p|||<i;p2CBCvRvEO5h=pp)x<$!&T&EG4}1xFO}s0Gi8Q;W4R
zY4rJzE=xv%oNUzn%=N;Ld<S}!Y+ZCzlwaJ7l@M&XLUu|-MtH@2te@gV{meRw*^(4k
zPL+2#%nvrXKOn4K*1B`kfvrq)jzGIPuXGwvQVw}Qp3|f9HG^1lc8ZMm?tJ-Cc0eFs
z)m#8G^fc)kJH^zzbXtd8rBDvk^hVU&4R3cQxwhbjB;q+<Yl;MT-MH`#*18^QKS3xI
zFiXG3@mR*T={U@s$W-XR5m*taD9rHBG@fRRcr)2#t7`aB8F5b@C0<u9fwN@HrL@*p
z_&{qQ<5to55EpN_@p_zg`U^A(=l?;*ot^<5d#JG8G`Oj@L)gVxT3gJlz9yWD0|w@D
za%W&k79^q%d$UMi6+TdYy5$*!tucbGiQZx&O2(1!n@@|w_BfZ#XdG@+LG_A1h=WQU
z*ljR<J+6VaNF0F9%9q2;j;by!NE9_t2cZCIzB)+hp>BTzE>`=hovkvNe+U#g&mDyu
z59{frfJ>{sAF+FMpEn|7BILieDTkgA=(*PQCC|8Q+m-ak?b#~*MeWrQf3p+A+D;Fh
z)ifcMUuIfcmt`j?*Zq>GqsIG}<@U$NvqFYI(Pj(ioGNdf=iPQu>H8rCker&CGjdbb
zJAq?1G&?kXkIvttJ+d6k6AQVh|4EY28gix-o0&$ak>_fIk@2CS>UP;Ik^Uva9r0bv
zKfZTK6^i_gc3BrxDR4yyLntLrcnjaqiVw8AA_6n0QP514+%6^R=fVRRE{^qAzwo^6
zi+NsMqrNOCt;Mp28R%<1%bqDa0f)W{v$UKedqiL$pr6xw&zPem7LpaM|0yGVVcylG
zd8wjC?U3f2XCzb|E+zv%Rg$`BLp`4OA4%sK&gTF2;o4e7)oN{uQmZv$QxwGyrFQH+
zf{NYPN{iY`QKMD0iIEUn)vi%1k=QF%Y_WOrKb|A6lNUL1=l<T;_4%CVIs1Pv_sMnx
z5T><)zC3-uh{SWB1LZvH@1}deFHMK&;FolNDDy}@w*jN9>1V2wS)NfzUK-qEPR~_T
zw2uajd1<`t@8$2#SB3bqyTXAnY#?{tXiH!K?cqEIfiIrSx1wHfO_uFXv{<AAr2P=n
zc`w@kOuWf7gy$maTxT`mvPH|rP<BA^-nm!wE4K}y3l6J=jUDN82p_Yr)LXYuYPp&e
z9mC7mZ*!i^wlGB@m{b2|Q;~xwK#|KzF{XW0PPe&pv&FMC*1IfL7YYQHi%4+Dab9{x
z>3*%chX<Xg%jKQkNbYjE$`QuPU9@M`ycoroC%-kdrfB*LdEP!SKfK5VHM+MG0?4x!
z<e&p9`h4TuWcMpgd>~3`K@6q;dxY*%wCa1Zsl5K~_CYzqt_*GJ!O}}z=jL6^^#qLQ
z`K}~&LXLpTsx(TxOhxnw$SGbOLe<oru7$Tp4Bv?Khm5=W|9tZV=A*U_GH1q^moCO>
z{OTa>{FI@p!ekg&_im+uHnVJ$%1T;*!zx~xs&$NQky+0@S6Osgv~?^n@bC)zR><(K
z`vYC=v79?%vBbaSa|^_=Qlsw+a8NFpKvYtuTeJL1*kup!Sia*LXwf$ms}NRT_581E
z`s_%;hs)M^>%T5~shg3r5c3XQ5jB~HR7Lq7{5x+Yy;zYpasV!Y8gq6f1){r*3RYHR
zXMGHx^RTY~+@jL9?NKGv2yyu4Jwm=k1c@FE$F62xGlDkbM_dvpyzC`*fM7+i;eTOK
zZR1>~KlHpzYin#<Vy_2K<cQ3QP_0`COiUf5cF8<`ZgClr7_PiFO=wH>ClXjVIV0G`
zq6jjWt?b$D`HZGg7HK@Y)U)R&C8sskah3(T>0%FFZ53xT<I8&Dl8YPeTnDo)@_Hed
z7cN5z(%YySk9eN-DSS;Yxcvqqx<fXXePnZ0%j;?9<2CI_tM}SrVdO4T$n67Wm2o?1
zQ92mAtE+Od(3K5A;lo7A)h?6O*?N?~CM0#oNJN0Gyvrx;{!nAV-0RxMO7Wo?e~b%<
za_&@x{)N7ZaUAKTQ;~J?2WEF6z|miZj%JTu37rPY^l5)~g1m3p?*KBo_kw+@AHPbc
z{*4-xwwM2AS`)Uvq<QRpgSn--#(Q7$U!QawW{G{i9$NYTS9nriI3W?Jc5$tIwzpAm
z$r_#*b{<U|VhG;U&+S+(Ix5)Dnsg^t7(q6^7yE}aW!)DGxs9ozmAZ2lz1`z$<C<Bh
zw<~ce9sGo(gPW608lfzf7IHYFGqgXX^m-*|f|*Ei<-@IsBe;a<<mlDrx@_oKt*EOO
zn8Yom6iu93nO*E?nXszf-W*U?K<E0pZkIR1Cy-dgZiU12q3OPcJGA_uXN#AbXoL;j
z;*xGZ{I)Jwr+asFWHnp00`=6;K7|NaB+O886r3hjY5qpeemkGNcFMY%(tW$06)te<
zemXKKBm4vo;@N@5y|mzZR~KWLRq>#}wB&WFFyHu(BxV%BGLoADc}ne`B)7N50;PTb
z78C;-_A##RIexfyPxck)V16pU2V9fDq!m^<GWV;_TEeD_$v?llzR@pVyU2e$Pk$}G
zP3eP3|H(aoEj9wbj1!WpnX22kXg@6Eq(qtEPPh@<?!AO0+Ev7tQEI@_sNU*Izq7Kw
zMS?SHE_tT$?ggD`2%E(wHgERrrR%S4rLA#gd>Ge7U)>gkADd8@@^9MDV2{wM0F>BH
z>fmA#IpltOLHO-?XsVSYXP7wQ1eF^~$DCl^DscxN7pR8)k4JNecv#+Q+?D+4&|RHu
zbsJe-oCRyUH@-DNej>0vxNzZSy6OsJ$VKtvtEZ4}vi5GhK*JN(f79w4E(Ia{;R`^G
z=Qotg(pMNd_|KyTp6p7?j<~=|Te^mS(m5O<2L`u)0%ZT{)sq=3VShg~PiJ2F{g+`Q
zD5Y(Vsa8z(_N|$tHoTK-Kp0Q3o;uX&xb|J=F{NW`v})CZUxAuT|1b%r^}6&0(75Ab
zw+o^~@@;JEBc^jK&)Y{By%Ib+`C*TPn3tKm_-|nEZQfT}Udu1Wk4Pnixq*?a3ion%
zD1S>2d<mEp8^j5srqOd8raQ214s;_lI5E<|%hZo1x5+s<MQCJG+XhmuYfI7TTH}Gz
zgfKy@Ha+xHfo-u>u2yLxpc0fR$7T_HRebO|!9E$Kf$%&R$l4}R(%$eFcD=Cx$BcMd
z!`6%7`Rr?QRj8GXqEGNpdCtaOg(s(li9T@{lU^zDt4EE`Mb6LCN1aT?_YQOJKZUmH
z&Du5IjAj};a0aDO8@_O8m@?_gYWe#t8&z%u;z_sSddz7eI$61s{+xf?ug7^Uc&l+?
zV0sAsLB=a}1-B<ozIgFXME(y$TDn!oh6&3(pv2R>rX;C5nQvaF|E`bFl>i2x+`cs1
zTQ=tX&%`J#>*HFPlv`0c?<`rprNrWx*QVgFC#;_xH9V0<fKS?`VN;47JPtS?)blYr
zlla>y;quJ3sa<{NO6RdonpR`qU9c(*ut~WCQY?hJ`21I7Co0h*)52p#lW+XLv53U}
z)oODyS+`%oS+y%DctO6x+j_avUB36%&%q%4t^qa+Toh5|#ImLAC`E4!b5>o;^pCk6
z{77ef+f*t9hIm5QppX_@q5R>Tor@9Y^02aEu34!v#X*iuL+nMr%B~P<aZeHeq6~Uh
zrHf?T+YS}6R}15?Dh$t1)Bxex5V^*IHAR+M$|<=56bY61;}6!EqUcnSr!|vAI;x}Z
zp5MsLgA;h9>!il&yj}=sy$c&;n%uZ{InKJz$CR?{VPHwwF3-do<$W3xiN2~&BJ-@Y
zjVIaRI-<Sv82B4tUH<x!Qb$05e7p(`s;K-2+1!JO)CCvU_L(o3uTK48!Dq8ElF?>;
zkm32p<kweYAZV|L5bWDzys-II{?&W8zMq2TMc2<Sy)k)wZ;XHe3W@aMm)B%)H2Mjk
z{9q>NW(A7r#C3dGnBapq#CVcHK8g&gcln`8r*G!hquGHXON#y13}iD+j#Yy$N4`uu
zZ2Ovs3)-k<By?(PY}#MRo))ReE(<rPo?M-VO8Nd?DAIEa5(_?U{&9p3qYTe0#n-SG
zDB5;k*Qq76y|NLo?~ZySFX}%Z?Txav>He<}_OYj6Yj514<{)HjCPy&|{Ba>EnX{Ho
z3iA0h89;|Yt`flZ@hBdq=3|3-10m|`kRWLmsOK5cZ0>)3SEC%loY3MkNOJ@7tehE-
zW;N=z#{A{#37GA`@71mqq3a>6=JkD&=oJ~y`1f_e=BM-p-GFQu(nF7;+!fsOjMbWs
z%57`0*yQCqGwV`$h1M}X%e*6aI5OBOmu35-qW{~q(xm?cLpmo|L;su$|3agdqDcrA
zWGnIc>-U)Khta=(o^b8semA1cdF~OTzs(^gb;>zOpSBcYwB_q`t}h-q<_fbK1yIMD
z_4k{H(uLedZIJ_%7Fc7xG(PEPg7)FN2V1xkm{5GrEwuIhRSHZ0aal-#7-|XZl-eJm
z^C{az@}ltS(Zu&L=?O9kj~ZAV{^|Eq?=jY@CDn%NVx82mSE2O_ohIan@3xZEIH--j
zs5mH!J+8#7M!qq!5AE<#<ePr?2tz|MD&$}ssx#I&O$8zQGH6!6oTFGhBN5fx37AH5
z4ONaXeM-c~7alC7qOQ<dn|>UB;I7=L3LGf;MN_^X#RWm$k~`o(WPPgEF=yU;k)wC6
z^pO$rCyH}n`?n^woW8TS0X8pLTSUw5Hf4mfu8$Bie|^hKMI!#Fa!87NG?37Oy%=Rg
zRNHC#EdJx5?cylmBG40LGrKqhJwNM&?5<>9^NZTQCjQW)9%?X4@mpaB8gz~79yGSQ
zu)%yFpI{;nms}czOEAF&H8xqDt3cje551*{p6}t<$WI_EU`H<l8U}V|tCL)Ox!JoW
zun$|9=KSxjN9U))8twVsBPu}%PG7ilTENI{>O#TZ5K`=ynVXBK;d;@U?_1s#lj?uM
z;b)e?odFO1mKVgOp<dXxpr=bSt<3pCsRNU*%IQ;>-YKEC7>PN2JP0g+aV`0khimS*
zI%9I&^NdP`_HQEGM9(-LWuZ-q%#z@8#U+WcBz}6eZPRGRos2vdz{XPv${IY!ylx%%
zKCqHpnH50YyUA48^xUtGW(5U$qxnv+ma*GJj;5c#5e;Re;>~f85m}UxfP6+(&V}TI
zs=$a6M-+3V!D|fzt8@>OCE@15$pI;H#B-ul5CcS-;3qzjOGYu}zWJlIDoka8W>&wq
z;W4n~YjpiXH8e>FVe+S5QAbq*R@#VM<SlCZwMdaEVA|^}hux0ZmL=2xjlWq>1ka2G
zZ|jI~VP>Ap#9!DZAJ#T57p<$yvPbIfz$U433;%Jb*?5q-s4@MFL?nZY;g@d5B(iU%
z1rx8oITlW|*L_BL+Quq2>o!?Na|)aoR!^JC&?t$K0A}nf9}}p2wqDLRFD`X<b+&BM
zN#|US3RDB($jAfNoAk1|KQ{Mj_VnPxampeImbpD0BVg)Fuhi|?5asNeEGs9-8o1rT
zM*k;nefwO|4{Y=^&k2D0^47>?aCCHr^SFEYgOAWQ(@^jZR(&nD9sYF|rT0^;OF1`T
z)b9J66`8Zk2N}U?v_6VjPehk<62RfiOC^#W?+n`qx>f4UzxK5bevEZydx2EK5c@j&
zesrM;Iu}U$&usXCBVK6z%es;K(wI|j|7!ZtTz>E`e{8|KWS3#$b&r|$)tMIFQDQ(l
zMe?;PHkeO2cOkMs1ocz(yHAq@+@ZVI_RFZWKk7JI6!Ww0YiK_16DIj-A3y$SsM_U2
z2fC!$&pz5(aty$Sgp2lO8f3g0ka@f5%C@VW^~~&y@BDq{_CT!%^uG&Yq_sUL!MdPZ
zhQ}9f^>9bHaqTCk7DVWM&mINh5Ed^|VHu2kYMe^7kQ|(-C8MQVJ)5uP{_vgY+dR{*
zUm<Pk;>BxoUoZ1(vuBN~6ZUJU0GYWy>4f*jk0jUsHGcx=XGA>%MNRUj*}2G8=uQ?M
z$)Y@{!MYEP9nFbyH)f%@MPE`3ubfNv;FW~SsR1Y%(tkpVNZV{}8gUAHU*pdk0B^gP
zw3EmK+R!8NGfeRha4+zDcUuMUJv+hTxe+6Q_BC|C%+Icy9>UUHzeY0`fXxjkhbcLR
z0bDK1aPFW;wr;=7np~qS_YqeDXaC{pd6Q+o@ztH}D+ST#H|$UnRt!dO?Ppj-PMb-6
zpMdF(ml9*wy3(LO4I=-qW-YC|oN}ji!XcMLkJVE9pVsRNrDqhkZgP!tL-C1!|7YWS
z1TjQB?IzECgBUr~3kl~?!*ZFP6sUu$&PyYzA~@7*so>_JDI2q)le|jWA(uZSYwqIB
zmWuw@NA3}odOmWScQ)fs*LLvtgPYac+8iN656`FVy6AeZ@7Py0;sp)AVtiorH8PGT
zSqb073`ruk<)0&^E(5AxywFls9=O7u6UDjLzaw@SVWR(c#^-pcG};2<<AeJuMx>uB
z2)hoPzOGZJ;uKpr4psw>lxbx5X7c!=^zt)bf0dLaz0Q3oK!Fi8a7+}%hZZi(B}(T+
z%T&r2;}R{G2BHHD^?Be~<FEyt|DqHU7!nvb{;Rv>Mo>ix-SxUSb#jjs?(Xe+hA*O=
z4TuzdbB{fl88t?;(-|8`0#MTX&W;LXqD}Rt&aYo=8EpR-pppD1jJoR|UG5*RB+U|2
z^lyBMCEcT=2+0YbN6M#kD6l>mPc2(IkOnna=xfVbO9Gth>;(kOc9M(k>v^eN3d16&
zYa`=%ou6fmAAKXaltLs@IlVvyi<hSw@8}4<i{A@5IOyWf?6Qs&$+jfiD?WMFKKkui
zQ>)ZRlK?6XvP03y-}5d2Ks`5GH6Ubo*BULVwj@GC_I$pVvllSP7>fH*KpSQ|Y~2zT
z*26KQw`+QJhj<$1Zj~-~d{lZg5kDf&=_GZafgr|!l-zZ(9{5KXWXOYy;1`f#Ry<4S
zq`OV?a#2Lvt6VcQ&$r7+G?K0VyI9qE*c<XM<IAN6*nO({MBspZT&L(LOK(+1Ea}Dv
zD<j;3HP+1h4%D?UQX@q-AYSx>I~>ZzMn04Iy$tixX&I<dPF~E2cCl)EiCu|ueu$FW
zB&8NoQlMMU!sK>;nJQH^geD(|7`6_}xwvWk6smW`neUErzN@d=*!lT}Y@lyS$%F1i
zKHK45&%i)%ZL*S;h}CBedodJ$w!)!A1T6M*GDw3bZ&>E|ypfG^CO6e?sG1>10N(bE
zUHAD90qI_Ob9wUS`v}YlBwhaVYk?Pa&eMl~Zf!YJy&UBqH9QOQ#!3BGIYt9gI?x>`
zu#zJGfhrmy0p#22lLX8t8v2bVB>$lyTqCJ-z+W@PPNXGNph>$57;JBPXR4MA!C3sz
z2Vp7>aw7wNDI|k-3F1-ItT7;0n;3q<T}nj!tc0unm>xS|pkd^@qWv~GU^sT3R*pF@
zXO_Sa;yZG0l#t#0!-`^s4?w+8+gwOJED=NsvIEsm$Go~Hw@2V%Ak{Kh(G(Eg5Sh=Y
z@yVg7%N#F7rrbyVUYMKn&?3cV%QC({?BD{rg%dv8Zrcn(eRyotV+X5(ZOIV5L~OF%
zoDf4&wwF|~Lf5l2GgaMYAZ~_q_O54LdFx`#R7N<QCE9Zt_Im8MxJ=W72efs*KGm)1
zx?W8|+yXIam+vveK(*_v^y#$+!e2n(A2AP$6+VzsdJ@~IP-TD8-M;akv(BCEzlzvn
z5|~mpmLh>3s5;DsOeC|U%U6t-_VeVC{ffuwbqB+aQB9vJaqkoCzg?k%e=iXY=kuBm
zJaZIk0M$6c*y|Ge7=s$xQgDA$)iLff`E~X?sQ5X(K$`<jYD$T}%STVfeM;aUJuv81
zyF*&qfg#1b8?Zl1%aVJTMsEP>@SWq-OOh_3f#PP^zNI@NFAc*t(~@Fk<H+nd9W#7i
z^bmkdU%<SYATgfJ|L4_mDK7r$v29(95wt_7PwqCCp}BH3-Sqo-EkK-oY0h!hht(Be
zB<`2LGnZx%{q$Oq{|3LCL1!iba;E3AbKzl%nGzl7{mW+?J!0%N<EIyCVpAZJ<#4!*
z%Ar=NhMK0T!RPF&eHloHv|$-3FDCtV!Rg9Vt2t4Y^<saDY95@RQtqfcfinc1`M;T<
zW)Bd7A}n<u9SU#jkc|Qm7cFUn!_ArfA8U>80qoRy$M%Fq)ND$B`ATRZ^!Yawii*lP
zOJ^=Q@b_O<Gt|a}?SLh6@64%`<xtY$4EkR6!vgRYA*XZ~ZFqXv>CPT{)x@g0$LY%~
zZNqyqV}EyTQh4Sa19{Ls$*b=*Q_l2K#p}wR2347rP5-jePKrUX$-;QHow5nUV>9<_
zh4iwXt525!Q5Aa3_)plQ7yd0Wi{WS#S9|;K<down$GfyspR1X+x0gwFER;0^to)zs
zqb2a7zw8Qt-t0(>_?klNJ!4Mk_WM`csbgA8fw+a@cRv}+|9n?^dTz<|_-MC21?u2y
zNBig9P9dBt_37D%mkG?itLM%DQCD}#R2@p5g9W|JpN}>bLx>9Dpvk6s#-oczk6v-H
z5<Sh29x3)a8cN{0oE3mZShWXx?h2#aheUDEtnr5>V9time(WB&*BKTd(YBbX%ptBz
z4#H58i<<(hHXUqwXL46;z~^k9vlf`S`>>;+GFjI2Y~1xtFGNl3AeRMv_!2hY-*9&_
z@zb7($?AKSw9N-+(Uv-t<nn+9pzU*b9~m+4Cv^yE0P@^IKD=TI4a+jX4uR=Pdv{ar
z;uQ#K#zfS+(7N_0(gD{Rr?KE29m(V3p0tMMm@kHC8oWwLkzx{nI}Tz{y)?7Za^Mf5
zH>j?Kf8re$PD~RZPiPaHYJTsHTBzeT-6cu!XwbZw<51rdiRjoY(gxb%E*`eWsexT4
z5soWQrc+Frh;_011-nIH;D=YLs|;%#tMAcch`sU6W!|;lnr=~E_?{&J(-K@9m<pu<
z*$!baKqeQ>%EpZcg0uIkVF3d<*G-e_#9y@vZ|>8yP{FKD@Oxq5?+<IuNnR?c-iKDZ
zju5PZOIKKgP~>-Yy>RxX9Iiitx>fuU_r(2ieMQdDpcpSww@gOs4N#;4;Oilo`<>23
zP;n2YBrojI{cqC=l}T3iD=c>wZkIkD2j0$i=yqJncc_P-)Lgy&@Hgy5=TC{(R#j56
z-&e2?Dyw+S1x1l^(}u1%4;aG_OHI9PC&B!lEtFx!U^SUcY3M789ZDk?N9`;oqrXC^
zX^=gEpmQV|bH@EZ;^-d@2=!(E0bEd+<{i@jjD?XIA4GjQ?i+bz|L8HEE_cYvul1L&
z_(x3+%9|K_U~0>Mu|>L%;35b;?gt+upH*#Ksett1NT!$I-2HYVRtgX8>s7}JF{@yF
zO!7TBt8O^|>2%iTw=%Fi{Wi;iRT-2+uYE)q^|~7gh6D`h=a<WSyGOwQ+$V{>JiVC+
ze|<Z(cT05beY<`e8+Oi0m=}}ZZrvDNmFzxz7p~RumE{f)%iON?t=^iTb<t?2TIbF!
z^yG|*n}1rckjE?^V6s{^b^lEKtR{>Z#&o7Ecc3Vyhx6VnD)8Vw?%{v_jmSo)ZMD@I
zvRdgO8icTojF;SaOUx{zf9MSS%TjvL;C-M;;s-kI?OSwQIWiPsn$4esG6uJk3zERu
zlv4h>R1y59P&%M7i_l}%OmG(&NA0i^0S(Tyc%0{pgqn96LXEotZW=Xh7Ax)2m5)&%
zpYPqj=u9qO)&)u+%JtEmvG_8(qW}dAbf8{jV}otyP?%~<*q;^1FKB3OS}PS!nMc@~
z(3d_%?!4GOvP-T&fx9_s`8=|$tS+jYBe!+{wF$m1KfWX{;@WutFCGs&rBwKi9<}UN
z4@_O4|6>ol{!~?A@Zwl1vt;AjMp{eQ_=|Usq5k+L239pY`hYfE|6~986Ig~n#h+iC
zV^)+;05HO)*p~i(ezalQO0<U_vexrFl8ALx4*g`Rd6%MY#={{0N>};KyLo7w?&93~
z8+xwR+>NV*vr<L~LtegE+N3~jAO7+m|JhAJ+cLZI7o{t|?**Z~M<{jT-`^x7-;+7Y
z>Dm`)0J$2%wR(BFGT#&wPLaNRZgQbvnDgJrF*2r^eJ+1Rb<|rt^m1GJn6(33g!fiA
zJ1?DL$~68ji7ZrY-JI;kuuuKwy02hvz&jA|@kOn64P>H()+{Ae)=i|2Y88iV^z%hQ
z3T(OgeC=N>@_w8tJU*IS2cdr*?X*CKWY{r2KkeugNqzQh8Y;ponQ^(N<n5CILVkC7
zo#oBMEV^Sabv~1igpggTL(aUdA^3av7l;_c=4aBg5FIa9n{NJ_L!zBraNxl@73eBK
zjzAm41f3qt0oLRiNPw_#NTn`l@R|-acH@XpbfnjZYPxmsnCiEqJK@u!K21oNrpIYJ
zz@BOk|I|L26-7V_<|Q|AH&)>_F-2jE(tm>*38B0JycuTq(c_7?{kArnLdeyN#rnQ&
z533WBd5#c<fci?s%NKxuGZohw?fN6(ZF3$Wh4!j%NfMn{dPPw2Z3+BD1_@ih%f5n;
zfFxxGxt*uFGTPS#B^>961@0MSYm+y-UHo@`z}rl21tI)8;+?hZ$Yl~WH*IHH)W$1R
zl$P0fj!IQgBy>jnTIDT~lH5|{FSvd5V)_o->w(}KslrkrNgc8hV4YTbmDetRw%Mio
zdIklE#nJ-A%|mg+=O!I#cOnR^`j9y@9@X0)aEQ-PkZAU%1#hqBi>}5S!|hS!Fe`f@
z?xHk5*xcs_oZtI*eDi!EotY$Xo!sXjycZp0N2YV$jujosMTt7R2j4<vFbmmlua+}y
zqsDU-X;FrqdLAf&@#EE4k&Tc5P}$H0i~r37fZN9r0x<$Wx5iSdju=tF_MqvZHYf*=
zJ!mlzW-Nc2FgVYoG`A<*RLZ6(Y6ML0g}M!M3~fa7;5UlK<>1DMA2o$F#vxotYDf&{
zBR^{l;DvTHp?S~{=Q&LK8IRr!*(WKCDevMS1UIP5B_B}EcZci2e=Abl3YtaT`YF9y
zii3)Ht}FX`WiU-tdj`|z?fP*uv3=;j^V{rs^@z0If52l()F1Lys*nn?6L12)b-k#L
zjHMsTrqAhjE6FKmqg7Qfq>OsS(IxPMX>w&QU@gtmg6VfT`R$qlEZ`W}ZeX4fpz>HG
z{%WbC+l8?uu(!<vw$Ny086xEUlv>7p$=p#bH}eU=Jzd}NP#$ne5hl%2YYq_+X?ddd
zjx56{CvK~2;*+AsbhUFG(@^C!-W>-XOf9iT?aT|>+mMgo_r1#OKTGVe1BS~*7>#@l
zsxhe6&`u2xusRpA+FSniziKmR9Ewtok9HD|I&MX^KHXyDd}MYUp{S9!{R3<WxsQ@V
zm~`t2p~QELF+XP4ECXB^+$Wj;<@+0$L#M=TB_Lk{Cl+T=rmZq~HfSO$0WYP%iWkmE
zHzz6U@p~UBQl=OYM!+&S9kvJPVhLEbKR1NNV;i(@gf^p#gB$6Hl7^~yO+kZgRBa*@
zGv_((;$Np+-h;D&?0YnE4`F#>es0MFJO3^%{wSI6PlOmDk);7t)6h6MTOAU(+(vQ6
zBE=`skPIePQH;_c-1-De9cJqldi0y{*|sGAk$iYX<o2}Kdi;04p*700&=y`aml=Oe
zb@dANxcX`Hn}bdjZO<j0b__1}k(T4@fVV2&>mT$))Hht7)LLcexxYDHqoesW$!zl4
zKcPv@^37*+Y(M@_6iw-~ls_A|-DnGPXREtRxL;*dN^7q@4Lp#$aYEDiI~Pg2+#f3~
z+!dy*_$y9ef+6+C1G*yIl-Q8f)BrUmdnBepQJw<Co~NZflACn&NyI*N`=jqb1Ap_g
zMmA^??sCb>UVe28TgG=^o%NHJUB8|+IU)(=_(HVbe}W$lt+CZXuI2y_ABxA9EX^dX
zrJ^))$9noaA!JPApj`axNsNQL`C|1^VmomF#XZ!o+R&}CsvnAVt)~Ye4ajeb)#8Iw
zwcM0eD_-Zz3!Stx4(KfpST%a3^yuM8q*Em4C)D%>0i%Rm4VdDnYP*l~AJQydMU9OX
z>F$tMGH2gTtiHbke>I77e2hD=upvA%6K2w3wu4#nMB`jYfxeGB2i%-e=oNw}wy)y1
zET@m9s)80xe@y9#)TLs+;3#s`J^p~AAYEap>1)(R=M1^Sc~GM*0gRAocWJmP$gJ{l
z$8f)AS&fH=BgA{;m*odjn;4(E!hc~k7)`%~+`}J-KHeBDXb&!E+*6uuOg~`cbZJ`_
z<>zgj=g&&$#yTxk&g)E5i@l`$cw(MvN&m83!8gKPyj^0YX`O5Q9}{T=&KfFIMMTP<
zep*?tdiPzb^VVyVQTx_qgimF{!#Zp1th;mP(??MuMvb0!?M|;(-8qx(F4Kf789<?K
zxFnHA&&2jnS$Mi<U^!#LPdL?Yzd;-z$h8e)jiq##gOAgWKW&VgPO7x-i4{?&W_=8}
z*-zf%M`gazi7Z{YAO~c5OjSjfYQFhTtaE-99rY55%m7kT*)oe7l;;P-;uA}=D(t#j
zWZ_(<s8`4=%j&Wd*tmCKJPP_&1Cv-k<(FT{Ny6&=QRzHDV7wD1Qmu~I>~rdL9<}~!
zt!Ty_R_KRAn~K&J&%!&uXR6Mwb?0$S`=k`Mpq`w7qZMiKO<!k$&x;D43p?1@L+<Yd
zSZsP&*(?Pd`*t&3BAofBX;`f`zD@flxs)`Zv!<_JrUUmV%&c`bbfAR6y=(G&!=N7H
z-L`sMe=Ggx>k?mzoNxS-Z_G1RY}`pv0sq{@IgZF;Ad?*&o<bGhTn<_8$QKbeXSExL
z)Mm+Eo9kI7-)S#!6dvobEW4Y6$<(Pj9fz;<_$1W3>H}|liwo4MH^eNAWJJ}aZf~7A
zGrKg;J`vWo&v=e_zD?zHaVf<i1kJITbm8LR?}scG6=FH0zT^h?oag_T$UF2wx*zLJ
z1)WrYO^({|6qw&(Ir917Y>(Hv5%qfdgRt^r{Q>44#@s`M5a2{8s)}VHKs*fh<7#d;
z)G_i|x}{il?cb6)J0QblqMiIR=B9UsLtpz*X^Zse%5*-VRrt&IsBO6A8pb-KL}A-L
z`(302K7$>@0b>9i{0EhQcRGw*Jct)duW)!WOw6=XZ|~6Vow;NWW028dR(id~xWAWo
zIMkbG9_<_DnU!N1IKy-y^T;H}k_1kgSHg?qG0i`kLKC{Zf;;uwmc*5BD@{|10hB|P
zpLBl$_*JXF9WN==Xb(uR+BAS~kTmj-0smy7?2Nhl2({|B4<Q*Wj~1s2GUDw4vT?Jc
zr`G>rgX2*dbzVM6{^{FMER54xk1!zoS2S_?Z0<tLxi&Rxwl0)VM=THr@bvJT6$4b$
zuo5oq{l@5lXlDBw`H6Ekuh0Qk3G?d5c)5+%nTpNXs|fpC_4%mbRc*$Tdy*0|=xu_$
zciSUl8K%rMfpDmoWxu==W?fXOGoAI<I=dzRa{PJ+HLJ-7yQ_6yZc7HX;B;gl$6wC*
zhI2i%Oft_`B-g1&Q>FU9xTk(a)km2|e)J&^o{Dk<Z9+3H9`!lPF^3aErQt;?JeiQ@
zbqYNaJQb%CjN#V~m=Uq|kM^tHz||AXhbg|L=KJpS38#E`gObZ4+kAZIFW*$wn;U!3
zm1m~v3(cVsWy;}g9(lU#@f0^&^&}TziWL*AZ~jW{=fJP^jGitAqDKb3%#-A)d}OqL
zT&eG6i=n<Er~000YXL>f5>?YHQ#AfLs`0_jRke>bID>BWXka2xgR2p9;vVh0M4Pkr
zH2v{AQ7X&1EEMvbuLUr`al1bAyfi+~gR>%k^5pMU7jF#YRl2m61f@ZgXLntsklYH&
z(uZFmZ#-kD*!Fn*ZSdM(6b{`SG?^NYB#QZ$$MUIx<yn@CzHZ;9p1^0?)4x$E^i!jX
zDUa^q1*C%mQnndZ$#+tO{46MTdY}^#iuSoA!*^Gk7Z%M<U7|U|)T+nM36#_bYSa>E
zq3@*OqqTT%xdY?Q_TvoYhb#6VtTG+YqPFjn5wf}vsS5L;#S5Skz(_13Xjar8V?XN#
zjY~BRrwNU_#WmR{lR`e|k|I>9ue|279u)G|A+qg1&W=B5iGwj@b`tQdm121Wa!Ik6
z)rRDT!Ud7VrjEzSz4Z->&n-7H?~pdf#bB*-lAQ{Cvr{swQv7rX!;aK6>7!K^|J~5x
zi+g^}pHYAvI^11U4FSa`7lY<3;(UNGS8*f2+F{kld}lXO3k1tnPV&}O$-ppGNAk*e
zU1gF^+73d}T}*gc4ra*oTSI63)n65gL4dVVC~<90^diZN;*{%`;$`-a>b4A6q_6Fe
z@VA3Q{{;nGt)VH@7o93}!|;YAF9{E`6ljxVJv?`B>&R8GA`tp90r0~0-3@0Y7cctU
zG79@Nk8OTua$vym1@M4H$d;exJ^HcB2~Ri{>+!wHT((>`sKHe?BHCdhxicDc@U_{K
zr`+tzeAhic2A~QZ3nS2SAj%UfR3ixcV&>KuS3ycz;Uv<poz=VcVVhOxGdwNkzD)bg
zbLwxmZx?@IX(?w^F*S~M2Os|{VL<ayy2yP|wKV_Hn*W7>T%r^g997guxL_H3;H)53
z8O{XJjM<&v@r`y4|Ba7;^Moe~O@{9GCnes_)w06fwh-Iu)x}k=jm8SrJ{%r`j(1BJ
z=TPK4ea+5KC=j~W?g}OnT@s=6P?cRqxsu6Mi{-%zFR_kN(-c;?=gq0W>A;#v72!5>
z3vr=$PJZnkJ=-6^|FSw&?fQXfYY(lYMLx}?ZSvGAOFh>QMS{<yzjJIcncR{MScu~3
z)5uFcto&9<lrbguVBerApG5d=soe`(`T~cTm58=(jSFsl<}fbQwj_bdivIHq{>{qE
zu+dSsI#Y%5I$~Drm`|Kj@`A|b?<(cjDWh!Ws_(xO3Vv6JQ5B^t6u5E5hlULGooIQK
z{|7+ebMCAw!%$nxH%21~c%b=x@!dBEa~VJ`9ezp^Vd&9y0;&7ismQx8RUDtm6??-(
zBdaQu+%2k#BW`#yGzP>k1jw%!_G`{ko_A^rflCwkd40-vV$OboUB+LE&NMwGQoj2j
zibmAnt|a~6$a#?qen+zgUee;Af9in0QgtF@KI8~qcMLDoEKES$n0eq#_l6rdmgV{T
z8UAn9P&tdtiwZts)XC@fgZcjH=~E8`1_H==J!@XGys<HmoOVrEf}3gOOg)<f^oUPV
zfWC5V^*J2$fJ0<tdcN4{(^rd$cMt$?IYBSYLcV<wC&)Mby;L)13kcF>3k`_z7HjwP
zYJ4S2T0qj97E8jqM$-0;1$hhRgPlY;{Od$I;)9(|wgnvgg53$G{;o2b<-Y*(Rgi;q
zsvIx*)Q*9_wM2fE8E^V~uY_pzdE=8Zs*xNwtDZo8YSvYYzs~<*`#T5Lt>0|q75X-s
zuKBp+UG!Odu~nHV*xb)OmYN``^Wb~?u6MbaJjS4iI8LCx&110C?mN5`T>R@um{cU*
zQ`@;_3I`i4G&&d75Obh=H!AQkRK#~RP9wm`9e*!=Xbj1Q8UNoyT$PvzG<9};lMz*S
z^5w_Tqi%lDp%8|~io^}-tSHjE*IpJ1ZYs4RFtZ2sqt$&a&5Ck(c#2rR5JLB_3Rdv=
z%SMrHvLk+j@LSsc3AXZ6EyV3oOlmfB_V<4ST!_{qi``q|xuq7oj^6i+_%oOq7v#bE
zD+b%_-f|Y>EtuI&TW#uf`DSymy_x+#Fv$c8PDfURNr^*lLN0+S1s+t=d>dZA;0_9V
zhBhPVTz_X*ntY_93(lrIA`aPK8QV?&nEg9f$@`JBLBC2Fys_w5zG!jfomDO1=1Kc3
z6J<YovUxZwD__3_-PR??^=%4vF8oZ<<$a%46}cd`KP^#3tIK6Ho^6|Q>+`_tC(J?A
z3vmyj7VkNZ&URRcF%>w+*%J~#14*upjj8yw+8wHujJ>f$l&%*;yVm+RMXO2e%t?{u
zV{BQ5UNr-hTUL}@L@-2bc<J&kauC7-pNO~g5$nHRo+~`EP&)*+D7UX^Al!v{HbUH5
z&&T3K2lc$XYx91$#LZ?oO<8jzrRJ|(Yl;+;QJMQ*hjSLdwkW=hjOBWg!0Q-GI|<=N
z!jY01?1EsY0R7`QZ%)bz|6{Ffn#?sQVy`0<8pHmkp|A94gJLUQSKaHvj|>>M(l}6j
zL=vt0W}oEsV&YzA84fDb6Q)4$J4Cf`fcM-*3PZ^t#|3mPVhxr3iWhMLeJnd)fJt`q
z47FAG;x5{k*cbizQI_kB5JnJFMdFF|xNUOhdKeL&!=7qH+x8SI@mc2+-(qLe&xv2W
zd$H{^X{2b;cas*~e^vTowLNzqXpZ%<=Moa1$%7hsay1vNM^~Bo$}LieP46FX?K*){
zMAJ>3PR2;$(|kK6bN(suZHh^+QlgZPcU*THuYLw8k#TH1f3U>X^?YF7R^^FIf-0XC
zbp+g4eMI)_<xXt-ZFKU+!WqPpWKp`9JfcA?Qzd^tQi|1uZzkTvf0q!*AwO-hxTm|@
zZ{5^O%Spk%wg#gWVA*0!2{V&9EqUx%Y5Eesq{S_RmjqpR@<lrL0VYX1JLzl9@j2eb
zgNe5UHA(s7j&zEo3cFBVc$an2>{x!Ozu!pML-ZFmKQ9&ab2Gn>C^nTpqCGBwn9#C`
zO)~h9#XYl_Ki5|)Ns{yxc5fl1fB_R8Fv66|)gRSfI8tNJy7R?<H)Q7OvKU*9WV{Mf
z_s1rf+Wh6<EH8d8CL$63r}_xFNKsBsYMWfdc?Uj1`^LtxTxo!x9MZN<5!-Gg@&*sN
zUE~}OKer)Fb$tor-0F*oMP>Rf8=9NRkQU6!#<m)D1eMJwxPW{id>BaxeBu+Z96wv9
zN0C=94R>kCXA79Ql!DK-nF1#9b=TjeZ(QZM$}cV1yP2956-ttorrDqJ?SDl^c|uu8
zA13)vyeLj>nLnEwh$523s5Ur{KN+j+LId;;YSWwY$i4}L7)|!l)+qcV$_?G$&`h)w
z0?wY4`9!k9Egq2Svltx*BK~L`eh-eLR-!<S&HKdcSv+7vt-a4Ia{A!VB~kKem^i;K
zx5`tKzW~L0O-;cbIedT4L-6&2*^(eF7}&GEmpR!u+AKjRJ)Y11ynRCTglVX4u{tY4
zkV#tup%fwF@rG69AW2QpV5PbMSHw*bcKWlfA^{wFib_#<*<e-kQq9oe-J%NUB&~&G
zbQiIms|asrx-itsojqAb%Dh%W;$OtNn6BiPG<8aXkq(yMsUVKpKQ_4u`>A55<sWm?
z_r<R6FlG29x!e%?&d$j~DEA7x?+JHdea@qULScn_I(`N^-(fDahSO4@<)XuK#Y6q4
z1vcpFc1BRcho0wWP$}g?n=g|{Av1z}F4-arQ+)eh@zi7UFOahKPoF-}oe5-44Ylx$
zUhdOZ6BV{7l%|PIia2F@8_gRCND+a!WzSphN)ZJ#ueyK_a_+!A-sMQD@IK<5+t>Sa
zq;rdwrai_iG{Y{-lFs&PiMq&HFF;$1T~_)H|AGXscP2*tlpGU&zi$(<Z5_~5{~f^y
zV~U^G_HOep(u#$Nl=j#B{$?)PH{0D?ViEh2?vfDPHYJp3LjQ{P9#i8vFzoi8$NF<8
z_`rstYj@ACo~3!2-X87-h^@dW;NTHxYTlm;!-S{9OxM@Il<_nBA`Lv!7Qu~YAX23x
z`dZJnQww>f775R7f*8`r0AB{SYB>$MJ-DFozgJQpBhpYacUy~Z3J^haI?zWgMFt4R
z61vowKHK*>x}dGuch(J9CbjKd-ANISB-}A6=tk5o|Kt&fcJs==whE>^t?Xq7Y~gUY
zX71rXmCP-qxVl60*C&6cXe2$dF@HhEDs}$9Yxa?&!KN4=k>IPUO~R>qMPE7V>$zTl
z=pgAEtPi~Pdh*d9uPcgfSG+-)UH$$0b)K}u1Ss2!_&C*<>QB<<X-IIyqUy{{X0Kb?
zX!cRNZJJ~oGvfNR@^>xRJ%NW_uF7n}^$Q~oEsk4H=PrOMTB-b_!gG(Y$D2P%YqVtz
z+6ah;ft3MQ&4AvI!}3Hj(WIfY8WF1C{C^&1XI_KUnW1&r;C>GNVUrPrm{$)j^v-jC
zTwLr+6P#&qtu8;kKkCd0+AQkFJOKAaZrNaJLtOxcxE}vqP6_iPi)kp#HrS#ka~f)n
zmCbG&z<c`@PMXZ={o}A}<qr%g?6tZ}hsm@&5<r%b`4i$q{?afJ<si7Dh>=JTAQ<9_
zOa^z9`!**fmLlCUJUCX}(>HZ;UGbEliHJo1b}AG<>Q!gHCS-O@HgOMN%Z%7%fx9Mq
z(HrcVZ@yUW^AFPny|^<mpxCfCeen=F6pSKgx+2ICJx|VThZ(LqwQZUSL(Wm(4yUSa
zJWJTiUb-aE@abXKkRMqqUjg$AywHvB!`nDts_MX-^xu0TI$dRo0f*m9u&Wu0bqOAI
zRus$*T?BH&aN|(*2Xjl5^+s%+q2%LRj|L<a!m3si^#RNvox}Q1KfWNvdz~)&_N#J3
z5gGRUW!O*BGr#h}8~^EVcNz2#7axqc48?K{S1<a!t|w3*9)3k;3%_=Dh$Nr#>rXqF
zdmxo(A(9=Dn9OHe6yf=?=e0-HC9@aubnY==IEs6-Z(PsfK2Q*en*-f6B_=k9jo@xT
z;s}FIK!eU$l}Xg)Ztan!S|ATMY9P$5%uXe?LAO>4fo6%a>zH(-a<+huL!Y>Q;|@Fv
z7>@|b5Mp|=Jqs0c4MaT4Z9JYr`zhHcfa6dN1*SQbd!kCr29S)^2bmSNR8%BoGb?0p
zM=C(9$X06rij)W^por#>C*)^h6t{Sl&<;;c`>n=*r(5sgzxvhaxwR-pCjN)rq{D9z
zQt4C&q4ja|w4__zk5Pt5Q~o-unBsFH6BY5?*D6^1qE~QNx~tB3%lEmZ%=piLL!M#6
zUIy}+**GW~d3uKxhDPWG;d7F;b+$eJaXf+Bc03D26~RhW#9A8clUW=+QRpA!L%}qm
zg0gUMoCv;{5mLVdp5rJJVe-d+y3Dp5xHqJ)!TeK75HxSJWaG)KTDSPli*tq#B^CqG
zx&B@*ujTjRDXL~toJV;zZ8l0y1}z<TZ%|2jlHB3W82Pg>cI%(Hzg1PVmsD&xz)%#l
z=|gw4>MOu)IWsaC+8-AEAn{gwGlIQ_@v_RZ)@psJyMA9W{9pb>RLX2S7af_|j`>;J
zn>Td9b!o|ET756?J#P0~o0*MAXn^`?>iLH_fcM`|2_Q3C75OKKT2x#93Y^+n2<8j$
zwo4Zq?@YBzXdpzF=GcIO%qYr*y;$ng=1zcZvPyG9B<_VA=i0m-m1c01rB661WZO1b
zZf}4YjOffnE8HWR6gWLoARHKde^7vo!)I}YFCl+=`$%_8cYJhrZ4qV=>1>FZjrOZK
z2xx#&C6MDZ&*G9O&$=5R^|2k@E&*~P1I~=e-gZg*aJ0)m0W>11caC4$bi@4Bu$_kw
z;C%fsazu00|8`kdovz9MG`XjZ|B`o<CaW5%{{3S!g*bsp<(jK17gIz2oEj-S+$ov%
zvW&-x7xa8(?qw2xEJ@H=KfVHy-V|^|KYD@c?)^fVM``k`;lqgDB<;8OF7X>xm)=3+
zpFg{F{&G9K9nl%ePZQ?kq)eOu!$nx?)|k}=5mpq2>&e*d26oFxrq4nsjvq68A)Fw(
zLAdeMHX|?Q*V_m_Sx!!P_z$Z*$G3(VIz|HukF4+J(F0@MTa^STvok!vnu}0fNz5um
zEUC4uqV8P%xf!|3Tk^hIQjn2H$<ZS&U=QKjM$PhTfM5X?VeQKZo<^D$yYzw9Jh39e
z$S#<Sb+wwNksPb42%ii(vDziU2YC~clK0R>^u_CxP!hr(>Qj}q*W+?Kp2uroK_uEP
z5JK4cB>v;K>`MXeV7myD{6INQoM#H=6ZKvk{&{gA=%2Mbf(CD4a$)fYejh;oG0$-8
zLa^$%7#3zt0rHuWwzt7yC$C=45)NX%J1M|PS%Xd!2!aOn-S@M&Lh!PYCe2reu5#h)
zOqr9cF3v0{drg!oHwf}G^Ew)LzJpP(79bVGWNU5J?|)Z0gP*V%5!Z({9G%<;qJ61i
zOWA<j^;8gQuuyjs)8#{c>)}4h+bMEu$116|4mZu*`#GP5ltfQ#)E9c&6lC}6e;pkD
zpgC<j7bt^`yiKy;yi{A6!u|sc5u4D(r+^Y(hOqmV`hIX4H}+o}Sa7m3vS|2~?3gW)
zeEy?F_XEXy@%)W(=v|wTs=7PHC-*W6G~=~(TBa{#C<DZ4PM+arSGu%@_V|5i*8>~z
z#Gux~9?JzXg6rjzUCm$54*J~-^PAVm0Y`bO29AG@sB$}p9aPK{wyiQhlsS9-&=eE)
zb4dug%+l$UO$^WB#|;cRJ)h|$-+gaA`3=SqiHB?pk)a4|Gq}JrD2}$7iu&Z<uTSi9
z`h!+tmW%RKpIa=+2!M`nOAmQPG&Gr@gdo}M>NB}fZLwa3^=3$h@bkA;)k6f9MquZ#
zg_=|N7$3>fl-OACixG3fu(NWxr|Ck*D}n^L0fy90$)XchF7>wX$c>onE!33ouL`up
zl3ndl9F-6O@5y<e+)LTF=k%-J`n2uIm|kJ8gU+h7?wxlR6n0J?3*Ll^eAh^^ryseE
z=En$^Od~17B8;kKZRruIC%(%UV*E%(<<11jaips9La>c^`)S@x5ys=NnRhuFTvV7V
z>=1TW=~)+T3VcY$9?Y1ReqKtT$o9>ed+2r2cD4uZ8<=zx%el-9NZ*GtuGQt+*5Dzh
z20x|7>rNQYi0WK?L#gp30~f*6V1G`&yJp|TaO8QpZSGcSpq5SOinuhQZX}fX)losz
zoXo9nr2!FwulTTN47qq|j#aPg(tr3V^#ieza!vaIG2L4d?ZgQC0UOn>La94n*Y(}+
zWSHMn89b{?8pXA=O@(I{iyg>t$AJ>SWXcOe?F4?a(}DW8N4ARxI03?W(dqsvF0Hjw
zt{AP<<Wa2DaI`+cdIjB#4!yUrkUqk?4jwqy|K(A0H{~L)6GWAB)+lK~+3upE_$~Ud
zgH>6fRGDXu*QUGmVllfH6}Nppd%l!vM)v-{^=h%41{5RFnv%a4ebR|9X29LN(6#Eb
z7#6UEA#YR^V;}`Bz6rnE?g@PTHL<Ewwjx_Qn2-$!$R+{)pjy3?<nNV?>gl5ZJ?)N-
zu#-aUw@?D`6eRdhy7r1hz&b*V_U@I1JhavtH9AWHI-4gAY#SO5XnyjV*<XnjE@!(E
zDEouy%~-H@V&7G<4^ltc^8Ee3^Uk+n+{iBet->Sw0bMtBtXGW+)}UH!Z%-=XF?5s7
z9A_LfCJiE1SZAnZEM6zCQQFO-0L_LaTTrQBp?v~K54;5hBC5sudPA$W3bj438gC_C
zI@RZSm3vuu)bQQ6j}VQbzkGQ0GG#l_t|i)18k$F*7Z|!3f^$=^COjV;k<47ZoY^-3
zl?0|>p7@I@xtC;Yrd06HSSZti=MD{0wkslVWlDpWhWqrnO3z?1W;Lb{pms|qs@2ho
z)#s%f6pl2%!4)~3dPFUkrQIX4w@$9Cy?p0*GbWcmg?<C2JfT$$>a?#!_rnY2u6VdV
z&aEl)Wp{pf%b9Xc!n?3BG`Knzp|XG0B5!#KdDT?!M@QXYk{$6qBKv;GI&`YP@;R;D
zvO6ax;~QZ4PCmAX#_=zw7-o1|7^vz57T}bSGMZl3EOSWZ`ubS;nS(E&EJPrCJS!c>
znwZQ0d{P%>IM|oCs7a&J2$wRz(3)8p*SfdtbWC$i8DV&$`s-LYop`*(@U&*;YL{NE
zjgP-Hq=RD!1Zhy|>}Tv1thOMn@hJSo*@oaz%hL{J{nlTFZv%oTSOv<-ZWS)lRZXfQ
zV=TE?8}GKb-0n<1^G-&ZehJK|Xh;~|toJu1K0lEi<Z}~=*`0?X%hN~MgS1ScN1E2B
zJMY!8FwgV=(A^AEm|ab#(^nE*8o!Y}L+uH~zzi-C?egI`FUXq(`mY;BQ#32}-is|Q
z-T59Gfe!^MFQRtPP2;6<w5Y!vOD?n4WsPzCXDZmqI*xPqFCHeGPF?GQX9Cx_=Hw{F
zX>E1@+m-i6A=JZv_u%}2$n%)l+|W3J5K|P%a3PrLvO9DwxG@_wcQ~(tz1(=Z+(I3y
zbraXI8YuTYPsFxPKQnUXT%UvL>&PdP)2?tmfI!ZzU$~sdzo63+ri{hHulj$Rym9^y
zrXzGJaNMW#3pG?E^^Cl0%MrZo;dGa?C0kwn7)*4{ua>so9fWz#D=)FqFLyYLsVI7s
zX8g~&__7}LeEuYT9$}fD?4};{3#bu$p<m*d`-SE8MQjM=b}0X`I{fi?t;SCqDTl8L
zW8O;O@fR@H-bnI&?UNfuiD#tR<3Hf4{spyEA3;0?pG#)zf>8O1#2VGoxn`ZT9TU9d
z!vcD{6QmHPaiOk!$)cstRc~q|)z<%$J%?sXg*}xNqy`-c&Xkr&Vm^?ve)rCqJxd{O
zQJ`N2tHD1##peUZOjnyH$P||(T@cPxes`xRpA>|!U=^0xYKD3mhmi4~tsct$5oV{B
z-Wt+X!8)o~4)))xBRF$&!_e85{>*oy+MNLG6RRuU;)wlay@6FDuC#yoxt4r|Mi?gR
zca>CgmVdnbK8<`=+Dt37)rlQ0?O7Fh3VfX>WhG<24&NhQIb}f1SdxYnGi6nf(@IE<
zT)R^hx!1(c?Tqf?@UL@ti@=^JclVaO4=wrL#ot6VY<{lTQ#Z)^yN_nYOqKh(4Dd)_
z{IEab-I!gI(}kDb-{Chs{&LqSu$;D}x}LNEggT!3`a_+$+IZJ_^f2V|W!lSd<MDuP
z>^@0~5R|XLlyTxaUbnW--rONhl%O&<kneI-tDGs?QphH3Z`74L&HmE5V#mumP~K8I
zQmBf4<Ff9;Bgd2f11CY)zB6*CbE6hRz*+o2*85SizLd=mG#{mYAS*3e4Ox;C{6GrW
zWEo%HRccIh{ah)iMEmIHHn+O;pOe;7h;lW#xjmcjPu9*;fii<)L3aicg1x!zMi!}B
z02Lq9NUo5Xk6~M^9)V{Nmp+@XSWOB^O2}+8us^NWBJb&AJibxduEw?Y45x#`zbDAA
zC#wF<@a4gW?LeEgZ)hT(i%fKc;6<^Z`83SCk+6g0BJ#e4@jqnv)@ox^J2Dm*O7Yrm
zuG!Saj@bhG@p|#6=W9^QQ0|x7?mEv@h3%TXE&&^YS#A7mhu5>Rcaz=0;hWj9aWKr@
ztp?iyHh$j0zR%juKmGpp^MI|(7`DFFVYBNI?5Z2srJ!)Jx?t3L2VaYzBDXuXpf?ZZ
zp4)G7+X>)v4a3Iod(fLwU!=RZpYYf~cs>%q_*)xt^Oy|FebIUW$z-z(@5Y5f#bySb
zyIhNofu1p3+v0>TZrQhAUD3I)F;vY;k2;On&f;GOoktdq{h+r|=ab>X&cDc*kXNu_
z5k~B7xOWXUA$`SkUIu%uc7MbGN4efxuy#)^&K7-lWP8B8CE2x$^<%vEC>Jllno@@?
z$`$qsy?Hz9#jqVrHnH!>xMxLq_n{r{6?Z_O-*<9F`{1MCV~`XG8%^O_o_jFinb`l}
zqmZa~e`*EoM|;J4V|=~9W_^JyZm|qDfuhpby^&UY)DnEu=qHXruG30il7z{Kb=Vnz
zq(9ud8V>L0NKy$phg_o0J8ban!AD_7r^mswCVxmG$;!AS=Ruazx5&PilTNOxEk<D6
z(iu1YkK}FG!dv+1>2rtG8UU)~Djy{>->OA;hu(g6OK&|#4S<jhPc~VuSGenWl9+nM
zaQpGJge;nDlj$l>mI4oStN~E%obq-J0GSj{jR(5g1Qh3F=Q6O_c|t)<`+y=l@9PsN
zx4dvf-W=$AKm3UP?%!)Q0K|z!Uj1tP@Wx{fj?7)tTE}g#hEgeSD6<Z#9yzPWBXX#(
z-FtlYcpw;!XQQ~s`fvLctc!L`ZZ;;l^U~KN7>|>!47QcN#$A7DkL1}&d|cS$zy<y%
zQA@$O>&-zU%cD5wb;wv5u_5@dfi3p62Wu%T+r0Y7lpeY3r`$fE###y&{rn2HvHhWX
z1*_ckL9Vgg2gV#~Db!Zy0fS<PjRs!*Aa})ftq#N$xmIeE%Dlp>UunITLe4F4SD#S(
z!*o79Qs*i+&Bk<l9dsV;k^lYo{?mU*zyJIHE&Z*(`Pb=}zVQKJ8z=lH{44w?GN@K-
zsDyKEPa2Hy;6wBEH2C(h{tK=7{=v6LY#e-f@zyg!vCnJ$Tz-G0FKI@?Oh5npl@_E=
zUvl`y19Jxiw)y-d(bJi34$tYskBjk?+k|(g!LbF!Jn`WxoYlG$Pjy_q9lJ3kz?5@W
z1eNe%ioTR|X9<N#A$Xv{p)NZCEU=8lGx13QTg>J{Ur~Eix{{pNvB~1tfQ<~B+G}ga
z$Dw|-U|cB{PzAPuoBlD_rbc^(aYwG7tLp(=;w4~1G0zU0v?r5mZGpQ-VYBv~VO!d^
zTykG-*q64uG6%U%kn@_{Ozyfc(m2<F4M9bjgDo1IP1f!<u`?QjrSXpv>~Xq|&2?_=
z{*eOgD{^f%(YWiE&K@n;yMnFLc~YGgv*!zJ*4MVN+ZZ~?6^k-j7pls$F_)IUWYJoI
zD(}{B6OY)cEtbiG(gijy_G<j`csCi(OT$*K$(62RlOXz125d%m!;1+exxKbp3PEoC
z>}3U8c$al-me~s*<>UE=kK%Ewg7T0;{S33$eCeZNU%J57`GFo=_MIiw0}#C*z?SyQ
z0G9ixin=7p15A!>#U34-%eAiCtI)hA`s^hq6jb`~Q?3EP&s|74|0h}a&|p`?HZPh;
zwwpAww|Gzp^$BKMlu=q&4`NyXt1PpP=R3MRNARBCWct;w-_URV%8lG-L8dtAw{o$#
zax$IP+5*wK2xRtWV<Z3h*(WdMd~dpM0j0K}@TMLu_COXeEcEtUw?gCVfz8|p@?}w<
z!lKxfcGef_4%&}=hc49(&T4CmeE{tUz~eXG|A~BOX?(Y7_%@F15&PI)AA!y7*q#l0
z^Xv0EPx*+=->o3g<q6ox`hx!8q8;bsf1fP(2jq(S5Rk<McId5Ma(Q3KZ4KL%c9)Cc
zzov8k8|uD|*f+5Sxolw@?RoRvEV#Lbjp%VYe@Lzm+2h!k(7vj34O(37OPkmpvd4$y
z8roO=z;J!6Bk_gg`a~afVUHU=YJ4`HztxwXBG-rdN_^f`oA`qMa}7Iulw2R|HO5oc
zu#GyuW)pnb^V@xkS<v>l1V4**XM{+N23Olj<_@P>cV}oaX!h7ddX0(0$_{{vJ|<$4
zdsYo(Pg4tmFdDwt`MF|%hT0$<IjNBy2SH=o41d(|0KbHq0Q<vUCWiMo-)jv3F2E>T
zc@KNZbmHIdWIKq}2soc}X6SU_ZD6_$R0<|!U9sT_0B4f2(2hslva`3W7};LS=X({)
z{n56`@07h(wxXP`yE*9AlzX8J(CkwRMx$F$jh-lF=TNWm3@u9e)0Z#lv(I1BH^2V=
z*-&oj<;y$Wu5zA$GJo}Z@4hD!#E*XbQ##%s>E%hc(Y*Ei`B@$leekufXtuD)@gM*3
z59HaOzkDUe@s)R82+sH4dskMZe|)}=Yz040j9;FA^W7i(h`#-;Z_=;+@;B+HAAdsM
z|LCLhdmiLnKRaW4dH(aQU-~A!|CRRyKg;aXGhWV?{K1Dmrq4e8oSwg>i$UM|<_G81
z>-~ActVJ*W+kf&$^y>bep51CYzb8+~zx^xU5WD(EfA~jYD=%I=mn`33{pD{+k7T*A
z9RBDBKa}fUzPh8E+Z(z)|K{Dd-=eR*|DL?7@am_=u@3Hf=cc#LxW=pRT(+qNmsagH
zw?M7h@4#JeSzieH?rbF&*icIWAKPf3jap&Kfge5(y!yx%-M}{T!>?nj9ky!rm;yG`
zBZ$~!)p+2p-&rk%YH|a1A55-byUI;JVAJ!<cEMJ9UVSWD2;D#lwG;xjbm5~W4<u~)
zs2b&J16hZS2Ax-}LBV&LqTF*Hu;*4^!v-5*myc~~??z@r>{#aT0UHOzX-(%V*kXMR
zmD{B~uGK4$KEtc~^PTMc;2JG=cXv`uQv%=SKl$kgS=5-?7GU$A{Gr8n+6Dh9yA1ea
zu9EvxeB4QU&f-gCY!F|s^<fqp3phK3#|9n*{haF)2-YILpR*u!yJl72ZuCTCeqtK>
zd9*i?>z2Jz$PUn1h0P>vfmCM$uQd?=={fY1vCSbYfuUseX^W1j69TidQuH|=EbP&1
ze^`5N!Fr*Xplm$l#@$S9qAP2c8CkGKyAUSnS*Ie-IgPBD68ef#&9t$Ck0tb#8nN3h
zF<r#4jNoF}lV-tUG6`(e79(;0=1)~-z$V@`wcv&>3^cy%mNi~nt|K;)o6%D^Hse^2
zJiJpP57KFFNuNQf*fcBK=`2zkBT*Zpcp+oM76XP9utlAw5UdY25#<i-ND&_8COaB6
z@?h8_w*Es5_x8#6h|TTM<hmQ=nz6{S_~H+h(Ow&Oz1u5UAUBQn+GDE$Ym?h(kAu#G
zP1InIX_RY_dy4i-#qBl9HOkFDOfXjgHe2w+RCo#ZP7&KQ+61tbRk?chJT-eI8^@v_
zh}bUd(QLx8`LiuZJNNclhVgvM9-G_;oe$WUas)b$1$T9hH~1*mIj{vkK)sI=tgwk7
zH!QHwg&%0toy|uDo$CW0^aJ+j*3Vb4UGq_H6Bm7H@Si6nfr$f@Z>`-<#}R^0%ZdQW
z9r_VnU9JeeqhIoOU<vlTv-xSkVvz}6cZ;CFUJL@npoG$fA)=6iPf>Md9|u!H>?&Db
z*Ni`8+M4=(%zP7%>M!4R=}`&`A|dFK!ZjGbW59PjS|Ga#xLf=wji)^7QQFP+F@}%r
zpzdjylk-gDen>)$!B9TXPv>iV+T*-DrB!U3*O#6PJpLZ{s)ONS;g+*v>yTBuhHbnS
za>2bLwk|kauJG=McU!%G3cUN)$>MjZT(t}w>>F~sc=iVN$F^gkbWQHqQ6aQ=sby?O
zxz#9_G}M?_(RpVRqdi}Hw=J8vCO5`2&#O9F#kTcq{3c*e`2p_w6`QC*uE5sWYi&sh
zV_)j*akPo2`hn1nxCqsH;Rm8zqaV1|mqwjl===dcF#4$2@3;Jb|2Ej;Cbnxnil4nA
z_iOeTbzXxH8g<_J0Sejmu`gYd>l6F{Z0s>Us)li<+MjFVQo3kpa)ewYjOACI&r_=-
z^twl0htwt_)!}PLDz$M=<A+P_Up9(522aS^;?@Vve5DIvw(O`XnMcU3TuNWup>3tX
z#1EOSI_aF3(mBy31acO#Elo0ErWP>E*j~blM`0;oLpCTfl60ci1lHbduI(cqlb2F8
zWA*Oto<9BTm2*xBm(_W}f%ydQ?vL_2KJLyza1NmV_@_Uk4}bF0^EEHeLH@h8B523Y
zKlw~5ME~F%=>PFgKbBzKz424=WcsB9_0RuyzW2{R{fz#}AAgTN{^S#BKb{vCe){uI
z=%=52N<TUO_oJVDOn>yfAJS*9Ug@?LlNn>=!kj<)$<OGIzyIO+zaO8U^>bNZ&}=J}
z%g3Ld@&4@R=Y@q&<<Ae#nD`pWraa&4yFd8oyx{QT^Ye8PM1r;UGQ7$9r$76cesccv
zz4LE=bbgnQ&v;+mpInY`gwe*L{mm=(*x9RnsKj<0;v|E;#&))e$eW)M`3fM83vARM
z%jiUhzpIm8$A+B*X#-m+eJurzQ8tG^2b)R5y&<={fxQKr+cdh=OKh};ZD<#)0UH@M
zzuMZPT$gC?DP8EOueDGw-c1Wr)eCGR_E9eW;Tzi5blzdZgw*b(I&c2r0-HwEtQmAr
zJvNM+qt0VZmNjg#Ucs8Z&VwIm8n&ku<s(-Ass37Ab57wyT0i2K+7>?~3%6nyL<`o*
zud{J4yFYC^Wpwi1{A;4<`!%qfx?K_EAN}&K=KBRJCUywyQ2*f=?XglDmoQ;1ak4~1
zfAFHe;NaUF%HOb~lafuA^h|2(NOrSvRtulD@<Q)Ci&r_(ou~YyJ35>yXwe0CzMjYC
zlW|rnMU!z>PuY3Qg>yZV2X0DP0%!H&9M_YzH*Dlw;Ih7z$!Ru}yB^qzEY!0FF*Y)6
zd<d_;VF#~12L>J6$%<Z2$?9t?f&YCGd{b6x7K}^0ASQhc*d-9Ia$#vp(QEdn#;2{=
z$am!kcRkZ|9cPy-xa*ll<zT$};IiL=|J`aSC>Qu*{HNp`>%b<Ih{gr(atFuyP6KL;
ztp=U*q7ZbhJmz!IIqEza=Raw2@FeXP7@VzM0eJNTHq<TQd-0B=f}{`$+NT~nFSrUf
zeX(}Kc7Eo~!RkIm>@?UbX*=7(UIOFbu2)`tmLurObn_GJRe8;|UV*-=Wb<>!iP&7O
z=0D}5$9VIzCYPWu<z)8Q$yIAq>@8@IzNFY2|2w$p7n2kC-<wUCTuYG*by>(ZUVZON
zi}sy^B%Nfz#)0tt)VS*f``+YgH7a%)yC9S%F3OeveP=Z)njbJ~0q;xMv2g~u^rZzl
z2e#rI|B8K4zmPRBuYu_za^;10$2RF!@!4w4h)uA4nvdH14vtwC{H33h)&7Xs7Ohu+
z1Qo3jV9$2BW?9^hJ__w(uLq;334IOzQ>ZB;uRhi0qh|9_hvuV__cg7b0Y6X%KTyqo
zqF%x5Iyda7sj|;j`y<HJd=wu__1EOOpOX7_U}H4W&pC+CzTV`@KfT%QeL+C#7oh$|
zQ5_$cijZpn*tv54bKu458Dy&gP!}lzEPaFd#Kb-)dB!3&0Cb0@CfFfZqT>)_s}+k%
zb)Xorv7_pOMy;irCt++%-I$5*V0vSZ7#xy$9{<JWkO;WI*PP~7pi=C#=&n_62j6xK
z#Fo-_<8tE4NfHB%3w&uc0r)qZyfzyLHXpN51cMj)-sn6c7x<KO<9|P2&xg0$4r*za
z@BCwjjpyLP1<u^{Ol=dfS?~$i_}Q`j7_puIdoOigdcN&!*jSdYtX{!xg&%$n*xHVm
zhMln?Nhjl5xHew>dtkTSx5t4CT(A#vO@^H@UBf1F<#)4oNxZUqaXbGV2}YAqH}N%x
zz_H%RHDD8+2W+EF0K4m)l#L)ku0$O+*LjfZy~%Y7iCNPb+ad73V;8g3#SGZ)*dB*=
zV1qqIxt<2O-bH@+L9QHF<#sY`_|AvUPXjj4%|PdOW{-|-kn6qGf!Kk{d+1BAu3%$1
zL2iwnTkATwT&>mu<jVHSZTrxdrWA_WhQ7qu;Rn2*L$2rFzp`2iUHhQ((GLLoV)iK5
z(Qa~$*xJsup<cnz&qp71KiKQ>2|kK_&i(n_I=Pn8*(<Q85N`uE$gQ)-4IfnvTN>=O
zZ1^aiKe!)&PUlu%BkDXRk4{#vKz!67R~mfOvgHSo)+<;_UrS;1Q8f6d6y%DU07#N8
zC2;<4j7vMi>h(2j97J-c&i!=GFHr`IC+Xkm3mq3b03=9M+kZX4k=m*-=r;JDIq)vi
z;DRmMSTR&&yRhXIf=SlSzqr|hCPG(m!1H{v?EKcQMudVKr=tq`#(%H05-7-VI_l($
zv*0!GyhsM{WRqxa7ykF0ox9ViKu$g9H25<Q;aR}Cvu)M2TlvyJ)r}cRv7i{s?e6^B
zm&ZHZ2~dg$M<n~?4EWQRM|yR4q_^KbJD)?L&+hNe=Xdlwf9}r;kM&PK{<%52BGd{$
z{P+{+xaKVT-}v^oWP<bG|Iv5pt><_2-aGH=f&nT2>dWIxdi%u-`ak^hf75q5@b5o4
z2kd|SJKv`7eEV1E^Uq(21N-E&&*{JZZ~hVe`uX2j?%bKU?a%+luhHSp|E4TD9OskV
z|K<7Lzx69O%8hmZitb;&qQCH4e@;5er{{$R*55z=?hoX7f9tRQQ*y6=@?FjJ=bZ&C
zv-{J%6w7+&op<Q@^IQ50zx^Asqv0p#MSxOH=Y@+;Wyip?+Z)dUha)J)T`M~Sc01q3
zjEvuAuUh2GSJ*>))N!;|*mHuth2WuPoLhS`p7R<q*mK-&p427~T(ovz+wsT6F0W$e
zW53duD7Kr^ir7Z%SOm-0u&rR1zLV_3zp6dU7H`82Y@Qi7VvE>Qx}acLeKy)t<9qjZ
zn*>&)1{rm(HSA2T$~$3lsn@Yl@1wTl+OW~3&S8%=U_*P>T?rL*MO<KaQ|I*pTOP0-
zuG(YogXpn3xA&?EH2}zqCf>Nev|tVF*FK*4aQ|uNqyL;o{~Btl@B#nIzFY2RgY>Nw
zDm=H}>mZD=L4rTT#h6r%?AzP!C|L!jo9BBA0#~10j5;6t5|wgc6J!euIpuC)g~CF`
zn|xrQ-OdR0go-VpNMMzc*aUM$OCdA1DZ2&~Sf{z23$=)?FUw994zRHFx$hX~x-29K
z=X#Of3Tw6X(}g*y6Z%dCg|ucD^CVCvQ&j`~q*NiLsQm~wMqEMHK|)DUfK~XpN$%sE
z)<zi5!KFf|H^Y-azArzoVdFM_RoyAY0Xh+zwkPF5&4x{O5K7i=azCJi7K%-3BNZ*Q
zJy}H25{RA4p0QVv`{YRt64n%RPtwlUX*f_+rVDJj7&gn4kwuN9l!BRz>$@dyh+L~K
ziV2m|`TtIfF7zuleV3?nm#bl0Y~m@43f9i&lkL=6N^+eGHBQYgSMh-a?(bqc*TqF%
zB%H1HLaryHGg2C}|B=0af3{^w&cm>*>RxN_bLP$qj{yk`fgw#2Fcd*6ECv;(9gLtX
z>92N#e~?YVqA1ZKDVr3H2LTMg!94EVx%ZsC*XpivXXck#S+%;?-scRd2+f&AUd&m$
zR(F4$nU!6gmH8!)<K89Xm|tSrdRMcl)JMwqYS_rJEk*A+fxDjRlH9i&Hpy--av$>4
z<jPb$7b3Q0)!?AmBkZ-w)#ehOOW7(36Lozciczo`wgkTSgt^w{lJ`d70JHqobZ-4O
zTE&GVN{4m-YP|Zq*&}nQ`b$g|ool$$vFl`2ooC%NPOjs@50I^`ffas0{CcvvRxp<e
zp;dxrZROnLHYxTMOrKM*R|$sCN&SG>V|8reqf+Zxb+NewA0=%cs8t3i<xuod_WUm{
zSEWc`TPHk!b+cLD_iOK?s@VjvnN0{boonioYG;qCbMm=Eu-AmSCUV{J1G=$}jsB|d
zC)MOetzvS)=C@Tnh`p9j{TZ-{&k`S1nq0ZJN2)GYxi_9$o4qb8XLMSnfUW_B7A?U(
z5%iI4`%HKb;PbJPOG|*r;PEX;55c`HA&@MU1S_(%r&-R2{^T-d2_!1VxeL}?f<#I<
zHBG~q9xMOXH^i&cLncoE`Ls6y^ivUYXjM0qLTW|oD*-C?X$M5N$xB`4sm!1hf8f^=
z)fBUjmK?$#&)Pk>mQi06>Nhi}w(Qb^|2%;)&=1R{g8?K2VPZD&c<qey%X*-cZhXX^
z?A~?^O#P6XrhK>HndzVco8wtSzZHyY$OzAffFokDzu7TeHuO$JYfr9{dK2_osp&bz
zAXd1yy=gV-srxrJLM*%3kD-?86Xh1qKPCZoiFvrssPi<A1#EVF95-w(*8`mz*1b<B
z*YW&DsT%IXWMRLJ=kM43ZDX!Rxdz=iRZ9u!aN!<&9k(||!M1Vk4tw}6JuY(YbQ>kr
z-r@Rd6RHSk_-&?!y%61u$8+5zsRo_vt%r>GVQ$^%Ea=?i8tJ?ezVG^|(TCM~D_7Qo
z={#UJo$vXfG}v6H^N0)hkNjsmzQ%h`X?L#0#8I2~Imof|_xyeEQG0Wx^BVzs#Ae6G
zq*~L1%eD42N8NKM{AcHuX93Zzf5f#C?$iF-{6fNs>JHl1e{MDa?EdwC^`%G!Qz-8g
z40t;NI14}v<NC1-%I<=dkX@lA9+XFpe_iwy|9;#9z^GJG_kC)aQW9L7H0#U04?P0X
z0grUS&fng(1v|BDj_3%@cty!D3^{($AgbgWhJ|60Ous7B8QOGnlK<u1?XQ3Btpw~p
z&tGm2`c+osd<@h1C>*66;om)<F475JniyfHQ8q!)pp(z@&2N0>YT(U;%hOd}KHfe&
zXcLz0d|&+Zi!I3i#TJzRj$-6ZhwHXE@!7BGh5+wYUAEoxFW+fH4Ay7W03ZhpKYRN|
z18LX+|Fa+bSOUr4*ft=f@gf4aoK3?Eb*@n05C7)P`C<Fr*F-Wu`H^mTyxRhQ(=<o(
zX>zCFfP+0w)c@eFJ?_|R?#<Opwb!t~@nFet?c3RMf82c*&i5hMY+Qpvx9-4xA1eXU
z&at=HblK_-6yx*YNMD1EKV74f@%mXQZ?ZiM<y@7l0A2|cD2%tc7w6h^gRNgk-NVM8
zJ-M4)bNHLNNW0V;v87hJmG-WUKbjs)Zf39gEUJ$EuDy;6wWKfX75>$99v9^LAk*<1
zoi}GDjez-gU74f%OU?AZ@t;;6%De20V{M%Oa@}2D-}`dPjo$2Nyz~9&4YKFUi)(-1
zUiUsSp0#W;(=eZ^EkgQ-@A#tmseZcmDF2uCc$hgWwjxuSpYO5(Rh_GT7CNXZn?MrO
zo@ZpDu5vs-yZ9NltePp2uz|IrxfmJ$`>G4h4Ei#@sE(62BAsmW47}t@|G-rV$ifcT
zc-*i_)~t{B*!bG<c-iEa%>PM()iTah7rZu^)xK!eMpF{dLWI<@8I8uQn_qlxc@dDg
zRh?6vu`yPWYqH;0$0pbX+tOiMz->Qg!>$=thE1~PXI&2{wkp`=8MtCo2Us<U1K5bX
z>FEqPYV+@g&3Y$HL9U(Lq*sk*#~U`2yU1<PY~;+FyRxQQ2b~wOH_@qatUETATLtBp
zCPzr{Zop>P_pq_tSm(Sh;!Q}qH?!9{VAIUC0h{zvm=)U!e)wzwPV4`Yys5flTN^c>
zVq3+LOP`*ijhhXdWSCx550hhGWn8}RU@NQ2U2H<;THvl<b=^8kvsv5RRk`xBZz%&d
zH07Owjid=1_yJp+ORz^CUm^G42drlmbGWM?0BvCo_Go@!0YChVUS6Pi5qpI_)_~3Z
zz<fK;3)bz~{J_p!lDWp2`=;|%ssED6y;S!Day;ZZna&9f=MpNHD>iKgY<0&6MIS}$
zIIeooiie0j4}Ku`eqh!rgJ!R&DllwQ@1xuY1s|2m3qGotkAfcva%DZezgo`=-bgvg
zdlSDqun&@~x>XzTv5%O5omYud#zvm?1ei}Ucdkwaq&)zZ<*J)9)9mAn?Zn?Vt9i!e
z8h<n+TN6sW&lBv=1A*B1(0G8#eV!-ZAP_d)r0+=?FY*cRz<Le(<UVn^-U5mt2*v*|
zHD2i%G>vTc(hxNUkcm9A)RSTYZ#4hH6HP38*s?vbcC<`Y+Z?*d293wF?ZhlwygOSZ
zkNHBY5V52gJNGmsqS(15i#1@k>cf_lh~wcOJiB?gw=PpPAw#&7-cMuPuz6<cfbE2H
zuUJ!Czr7=Dc5b8TxrdGC!XqbdQp*yb4&*BDh}kN8TH+Js)(m~b-jb1ex!uE7!tXo1
zBvkBSe6r_0pAR;1#yHD5QZ-9P@Jl+!v3GU8gDu)4MV;TX*WC9~^GyZF#&pgxs2uFo
zt6_Jr)g5em_UiU{U=t?SH72M*&V==Tjo2sa|5)x~Gb)^y=1OOeM7MJ(>Md(!S$rm(
zcXaN4V6aE?F{4e~_$X{lM7h?zdHxYTsz5F+v9Dn-JJ_NROGow?)>pgO4s;%WKSAd;
z_$bE~=9bAZ+UGQUKe9*n1E<p=HlFvKVD9$q>s);fbv|kvKfQg_1P#R74BMC_Ynu}8
zUrS4DZW|6MtPM2w&^9$be%&x14QK#LGc%AvA&WRKxtJQCw(V%oDS5_)W%~JU6>gUK
zvJ;VKK0jZzWM6rotCyI~XMM4{=?Sm}lDQ;#3Y`BOu%5YG38gDi#>s(#4d;5{a-~_$
z$${qe%4K1^Ae$u6&iBKari|$snW@J4uVscwGEI%MTAaUeR&xn#S)ugm%A4Q_jJMn#
zREsJ4qzl>Q`b@TiBSyscx?T6YEr#DdK1inf*WSF5h3G%~7ylnQ<~M%j+rpX6@?f*#
zEPY-;KfXCjNz$ME+4sfx7&DjsGM6R)_toWD&h?w$`PO#qx!XCDmy+##Hd$;zt1l<n
z7gkczy?y`J|MpL|h53aZx6J}s2y=ODF{9L%mUPl%`9;!bZGP>WpP?~|W}&~`^zr~Y
zgo5%HeyRK79d9T+Z!ZGR^ySkNeev{OQlB0k&rShFupvIrHQHnCGu*9A(aYvxkD3`s
zw~bz5pJuNkSGZ5ktR+4dJVd9xal>X0*&S?VFE*D9n{n4yyxj07W`WZk?1s(C6fI+Y
z4_nTyAAy(Arqtvb1FeS5<~bh1DW#hX^}SvSHOTQA7Q|)`QLb0x+0Bi+KF*~JN==PQ
z#;R;wZUZ*=QPlS<NCBHU>)2G;u?^S_+e<bv>RjZChpJ(hd&`ZRp3$9xO%UX6<5DU(
zp@A;0ZP|96Tx*YgPv@hLvbiMB6P|0^JQNCmZLVJ5Kg;hQ;6K@)vQJ`v)OrGhg_V{5
zA#?v3{!@Y!we<veIP1JNUq8dYs;{4=-wQvWjq`sx&*Jl}|I3ViFI*`g&j#!FQmR~=
z@5V}3tsFG!++O}n=QPfh!Co_-ZMGAyFQ)mI!GC;o?LfY8k*zVV8Y)_nnK{FF)(i$+
zfRfU;fX;=F(dL)cH_;}iAu(=8<$KqSeqP8-%?I(Ru?xm}Z`B>EZ?xOIm$@-(K*71Z
z12)3Agq4;yZjCuJHSDYLbz|IKs3u&iV9}NYTagX(Dfmam%l63uBBM0(ruJ*!Z=l3$
z)6kE=u*m||<l3<LI0qET7Sn3qX$I8?usJuqV+&m1Lfw%YHekPtt*XvwN9Uc~60(zv
z239qosQm|4jORHdhmg_cD7UQ3)w74Wh@s7UsobQ<O;3)k-qCr5%}lOy*z2U&^f{D3
zGXiYM<UZP?yyj~lFgIE|%iJ#rXdAZ1U9XfV5gYB=V;fIV=k@~S8#WD_XY~p8)$O&6
z*!+1<645NdUOTx@``9|{HQH<5v5D48fqlDGtZ5Tx(1cdYKyQ9PE}c`G=cp>MbMvuj
zw8v4dwb`54<B`2muvcIc-u;3qMSIzUACLf7Qk@GIyv-%}DCLQ6a+YlQ9c<A@>Bd#_
zpC#!06y!!x=S3?hv|m9B2&5T4iUuD=py(UyF-4uj9$)fNE%>nS2V|omYgI3W9stZy
zBzlO!3VHp|jaM=oNHwfKwGTsl7ElQE$@gkK0+eDZZMe?c#(_T8wU@*UdO-o0&^xJE
z6TwWACz}@dg%+HUiXYPFllTF(2nu0u`qV!aNj-!F7OmWC;~u1>m|PH!uPqyNOh)pA
zoRlbLa^`Su%ifFuQEN&$j?4Mr&)1!C5By<4<Z~;Hl_&kXo%{=dJ$encopIYNIl}I8
z#5<3DmrLWhWx-%OpI0p```q<=fn>UaZ5-D=I^o`O-n}=OhzHp2$<@Y_`QCfjh}s%)
zxOT-mbvdvJnb&Ej4@9`PJ#0dqi0^s0cDLF13VSRE_ht!<(H?WaHt$rN%fE&yh;BSQ
zH>MZt?In9nJI9+nPT_st?K>+an8g-so|{d)2HQP*Os~K$_Gnm!c|Pjg&Oh2C9oU=s
zC?#p!pKEkyu9(jG-j95g1*Z3~nT|ciGt4zP*MT1}x$?Ek2kJcf&xGUakz7+_py{yl
z^ZhmU`hnQifX!*^N9?sd&10;U=pae9X#C24Z%MKV_a<vWO8(GOv#^Sh_P6wbONji^
z4=nq^GahQs8C`MZ_>i?1G8?z0jlNh!4(wL8W88?&15J$=S{DIHc$aI)#;Eu`mp!N4
zvM|*qbbQ4^%{DIzf)er_0A&JV0_lTK|0ZSL8Zq$umpe-kv`l{dI|X^TaN4(m|A_i>
zlpF-<%}PjLR;;3dvmb;@|F3?m*|X5cBnyeFY-I4m;kqqa-+lFt-ZOW9)r>gf-M1H0
z4z`^pT|m1Q5@e8C*<-SS@V_diESnBL_|Z@3t1UQxxva7gQ=Aaqj8X%f9u!O3NK^xt
z`ls2(iv}2I)j-5`xd=xY_dDQT2^{$20GwqD*C1D;Nr-==T8E6?eyM1aFX1=~3PfG`
z0-)C2@;wuXO=iQ=jZ@1ix8Do46rt^7vwzok{yW%+dfUs8i(lHV6|k?gW3L#uYmL~V
zT)TUxX1`?EO6iVuEcP&RY&&ur{7k1q$o;k0?D%{KoBJqn=yZ!MV6S!PM=<Dc@7nQN
zW%wHna-#v8EDFPTymmal>o{T~>b^&83HEq{+s?;yAEmet>UX29{0{yy+e5zkyjOo)
z#IKnD)!;@iM`@u#LlYzTe!-Dbn_F^xZn8?v_v=I2?u(kQw`Pr{bWh0Uv8c;%aGCn`
z(v4jE&(Z7Xr~Oesr8<!8cit$z8h3s6tPvLNd;+hm@j_=C*B%t}8Q+bwI)e)wJo!AX
z!D3yM&bCOD3``PQ56Kee-zN<ONhTXFfKM8@an5RaDbj1Rh01uMfK8u|5@5~DS&hx)
zi}J<W#-VasR>8*C5iaoBHsb^f_XLn&-Ktf82{a%@v2l`Zo@wB&w=BFO=jQw8YYR6$
z8c(j45qMVWisjnmN{~C>g~*LGYnQQ|AXlaQQn^zxj`bv*=z?8%H<f?eu*qfzf|epz
z!**So&XaBoiq6mKS0Xl*t8&-NwUct!v(8Uh=b2(l0h?y0%~&i8r@F}%8-o)z0c_J<
z_~A2pDX?6jbHPTX=^UK@(H<E?r}I*r!bx;aDtD@iEs0!}o@Oy@C$&$}IVrWv3T!Ob
zX+}T**yJS&YoHUbYrldO>!{eHBF-hF-7=j68&T_5U;&0jx#%0OKDg@>c`pSS_Z}6C
z_MphRSy6zEf1^5Adz5jOv&k({=(W&-N)oU=D@~WpC6&ANQc#<a<eAIja;rAaVH4bc
zK)LQikR820Sgx*fQr|9goK@{L!w=MA+^ja2)JHjYJ*iDp_yL}i=QB2wK~FmRfz#PI
z|B+1zoonw8)wy61ABC6ppz|rW-XGB(EBt`<_NcH&pG&khox5DMM}=m#sm;{jqih39
z=DF#-XkQYO8|&BRQa0?E=V}wdM+M(5<H-UHut(TL=lfT+zv<M1@_gO1_kmbF8&~EQ
zdL?L(zV%L+-PbSjUNynL3T+`L7(mXvfxuNcl4!AN)%2qjx)gsl=%<E?OWhE-NZ*pu
z#*3|?Y@Vyl*hkh{{ql`I)ip%FoZ=v+uK%o(^}4KGFiPZEZaM!c1Za%Ydh7|npA{5+
z&I`@F&pW)(4-XG=PU#6y%1uV`<Kv^~k*n<`06ApY^6_j}PsX<$#`)TjS6`@Uxnh4&
zzsO^A;8@?|tmbw3J7A0B{J)HiKf+^P>kZ#FW8=RIHefe9J%MkVaq)Y&@#^!vNLKhZ
z#+k4zx65+OtN$+aQi$Unwo-1hY&UEb<F(#$tPA$--|rz;!zS37SAV<yGq}L{SQ|IF
z3XeH>_4jnn*AQ;{0lQtBv3<3NeH-U{V}0!De2Q{KvQw0+=zROV>wIdw`c|1D*tT<D
zCE00Tu8eIhw;by{UZHc^u~)%{L@SwFs9fQg6K6)VY@b6f1+5BQy18W7_H=I8%O18n
zI-eo;^+2vObZ&CB&7&wc{tch|@&dM--XE}uI@s&YTq;HE{ZOvkzn@}tNhz*#*5h;N
zM=;u>$aTj@CCn9`Gw*`V?b_xCIF@n`+w~4Mlk0W6zS(Q^QL!h$>A(+sb)@s)2ae{s
z`_Ey#lPiyhx#a#8KI-~{y}sl>>)=19;6L97{~578KAh#e<8!GTJeN`!x1InOBt=_K
zTFtf5w`z@3)gd-TAN-kL`hkV<r6hJ+;JnGX%V@vh%MLq;{Fhs9<yNM{56=hZp&xmn
zuX1rOvynx0Qciysv>2?GTJedr2}=^C3lC(`=4+4KOk~xUmsXZj$r?my**(g}vX$rU
zm%8w|_1cR>t=QnTRKAsCSaTeCkw*zfDJ>Iad#ng=K4WH%ZHqbaM#Z`<KrdVc!Pzg{
z|DLwNU;ou#p<n&xLVx>repBxE5C8N}>D`y_>1#jznFjPXLp`4>{l<5GRTkOb`sUZ=
z+)r0+?821<jO-`#&lnv&Z^89*I(tA*bj+D6tcPJch;ctHi)SPL<cqK9uYUAn`aA!-
z@6orv@tHIe<}4lV1z<1r{K8`mISR6$66AV83AJn_Y^a`@D^zM>C$5C2vi+Yok7xSU
zH@+?#72o{EH$?XAV034%%7elJmjzkjkG6O@lDqH9)v&v+_ddVCU2mm>V_A;zzdxcp
zslT=!&vJd7Tc-6CkFSJ`x7p{?JYYKo?7MTx%E$^bt-^RRY;nB9miDnD+ips&+|C!%
zWE*(NotQi<YReoP<z_+EX~4$Z^C<-4du#*t8@cab&!LyX;G=HjI`uy2M(36h9I*A{
zdpfT@_JeW9R&`@eO5Uc4VlRce*amx?FfSsu80_wCLOK8UvGw*SbAl)3`BA=Ku6QT|
zt26`5T1lY(vJB<T`KHX#{U`h@FDO~*=G(g-0ZDzgR9xWM@POl`|4T~Yy9R?E(L`t|
zLkZ?~eeNj|D_Qa#n-F`&My2Ug<VyOAZh^MAF>0IH>0_S4zd#>-q+r7Ya*<EgjWsFn
zOd2rMmu8haSCjA`<T;cQvgs|ewe^L_C*?603KpT)(B{zP0-C<ms_`_#jROd%>Y9U(
zq3ZT|Mdcq;b%;%@nsgumzwIB_Yq+*x(|em|wGm#s@OgV|$)ADO%i6MN_(Dr@Y|0bP
zShX2yH6JFaq@aIMK?p{{Mw-Dc*n(Utf^vc#a(<S8Aj)uqTu;bmzFxq&ewrFKm+Lln
zE){Z3O>WsX5wuA+#nM%3&mqGmKE<#_ol8KFdTc?iEH}Nk6Ddtk1?|)1a;2O-!-z{N
zBoLo-lPjJhlIa|=ElLodf?Ub5HJuBsPNIhGq^ScJ$EMgt=cJTW#cV?QyC4x|(e(fa
zQU%*;nN`SMUMR?Qz0o;A=d9c-`ejYXPA&`V751#ys>~&^32>^PVE@k-D}PpsA*-s9
z7ydF(0cehkKZk@mf@L{dS-4K`d1`Vsx%KuKv6);|ZZ|rwN(W=u<XJK!7%22In?0V8
z0JNZrE9;s$@m!ncwiz9;TjS8lv%dM8ZtxN25>=(PQMm@}srjfJu*qgN<ZACQ8D-+;
z2a?E@eU$ovYC2zA1zPh_RwfQ?gU-!fSHpI?^#i?J=jNk`f?S(DR?MXo=hD(LtySkr
zTc#C0hAqKIAt}l2)#TRX>eq%%lwcFjdwzg;y|4ulx7V0@v0e%%S<kJ@6%~=%mq8jA
zCk^~x;Da~;iFMejJsXvUV9j%H6Zn2vwIj^DU5l@Akzn!M=(B9yW$RVa_b0A0mwON6
zmOo|zDS0*&t%gpuB}?ch{c`Q#dn&chEF#?y&{Tr(dumBLo<OuC!`t)>B!;BqYq}nQ
zeZ4)(&uQ=b^zx_U&_DRZjMLOELivtOxIFHhcf7{<xodGjK52LO{(ZfK?cTLtb4Pys
z-ZcWYdT{=iu5mPO$%C)KHYSfbw%XJ1#<?$RP`ZyV?TmXohxV^ebgawq+}-&CwwCzy
zI-A?WHeLrO?r`s%pwn|b()sW^$Bw_<o3B5Y_YE={vBeDkINtetv)9t6HtxyoX8b^Q
zuklgiZ|=$UaGo3X@$cb(Kg?S8&vP_pe&+5xH|+k-9?n`n4&AGdy7OGR_tDqqH2h8P
z=vLq6@92Xz0uD9+nt@udlK(bQegSlIFDCfW_)@%r2TYRkMCZT@UG-eqN+>mA8Xop~
zvV`B;xRqq^D%E(PCELAJKY!!+x6&5n)NdTt)*TEb9?Rk-XUXJ&Ys($hz6U_(fOyd-
zwd2WeUdp$VOW7Y%c35>$f)^?){f+MW=mvviF%)ei$0<7xr?Y1Aa2gS>qbHTC1V1M&
zlaa-Dc(R10h6m<*ZT8vm99Vnaf^ToOO&AX5@h;Z|J5=2?7fj(~InrY!{~w>688!f!
zK4RxlxrfyTG;p|j_OBuAU2FfZ*52mG9&b6;kDR5b!<_ACgQL!qWy9Z_E#-yrm*!G`
z{xXc4Be2Cphb?SajR>knq56^NAVtm00h@aregO7bP31lJyoym9>+NI5T*llOKWc%s
zn`=E9{gwu7dmsMAO2<yx{fs|=)!q#I9=bZnbx&^hu?=_P-ad7|whD{fJq>D;TU;pl
z@xdNbo1?C|(#r3S{pl2f4@CkgqEEbZCj^CPSv;s{8+nv92x?`9-8?H==1B0re&2Q<
zov%;+d&4$X$-MMj@^OgOFUMl2#l>UX?mFJ<=F|Py+JU?eg_SYRXZ7WTjX4RFa1e--
z3s%s_O_OsfDpgfNMhYPlEtIxS$m9o4vjkJ{d)dUCa?4c3crvc=WI^^S9Mk-<V2lJ3
ziEgk>5u0I=<BMm>6~~V8#WqNj_a|~}2nZQA{;yG|8O0a+o?xCTcP|2mRqw^IaTaXZ
z!<Ky=)v!%MvABkN^P~>QO)C5B_sCG;&jbpr)%B2l9_zW-3=rssPL&@%Tnlo)(K&3Q
z9ALA1v#LXto86mIspPCdM3tM6oA?H+H^%jimn_&;Y*^{WA7>Ne`8oA;j)sM?<q@0d
z-1yyd>q#XW(P)0GHqq>{@#=%-WgA@09#e8T3jK}QYogX{wy5tG8lp<D3ENl(Hi~j3
zm%EQ6GrBI(9@|_qY^&4p=vupB<I&tvSGnA%(LXH#TOF`Pd+f$11g1^y12(l+lCg-*
z1I?oH+)@9TJ&GR~<QjdH%dIrI?fQYDHWMk9EJ2FzU42w-IuF>18ck-l>Y{>8oea7g
zEPEu79CeP(u(k71nyeN5z_K=44Yx-rtx{~Y4EGXzlxzwGd+mLcHeK(r!GBKq#vbd9
zTzfxIg6~(Vp^D?dt6ww|KO>`0sIKsPsm>@`RUiTVq}a7zfzfDy8emdd!WA@E+5M$`
z$3``tUxfR!aevy`(u8{I0DlISf$NvrIdgc8uYG*tlm6J!ls{4lGi#5AF`>uan<H(>
zTJQG+V0}1G^wKAmTteov#68gP)W?yCHfGsA2&Hd7zGB@gnf(;1;>>Qb&XxCj*qz*O
zNSbNYEw|Uci;V~gl4*Bb?tNW5n$l$(kJ$Lw^VAZd)K^U|H{rSGbC=TdWs|Op>j5?j
z*v<!X6>RK_!Z=?$j?bu=h;lU@%Y9>wVKk&pO*deR*zMlx9i7|!KeP$U?8kbkjyflD
z`qnb^QZQ_%fGx`Ho?NYh@5mla?s=3uS3u=f-F?D))+krY%031A9OcF~ab%As*YgM1
zM5psoyh`R~F0HHgT@W2uABZ{d>eqUxbH4TwHj`@}bbe!x!Cs@@%n!u5G}^0FDePd6
zIzPhpqK^uGK%Q?0bBPYH@#h?>0wT5*+3n{YA7wt~HGZHQ2R1ui-T|?eyzKZWVKYJI
zfApU>^VD<#J&g05D;&~G*baQup8w?EynQ@Vj_-U2&m~LHjZ}-~`{iCrPfN}pgwN#v
zRKy=F_Vgj2n+*V4v=~rX*!cn|Il#!b%{QkRl>1!Z;?%;;5pI_M&Aj_uc6mN&W~y`k
zZ^Gli`!fudGc4A%@j{<ax^fl4D-Sd~CC(;gj(-0B%w?Nb{mvO~(p*={nPv$#u~Hcw
zS0ONG@YPGCPa;$fcB@mGn-L{#TvEVU&6Na}oo+I7E^w5fMxMyGkB{`(+qd+Czxpx#
z=!ZX||LN(y7y`dMuu=W`w?3mc^GOVJxn}w|fAlBxv#;K7LH8NijEgLW9v)6o*7SG2
z_gx8$|FeJb|CNjzsess^T%Moko8SBf{inbGcLmqw@<eYQW|^!KXsF<eOS*`De!57e
z7;XZKXANqZP4NpR_Zs*g|L1=rC9&tn2YD%dJWmv}7nbXVu20YYH`b$YvJ=AcJYm>o
zl9t=Dj#%cu`!~N!Kl=O&`ltW$U(?qfbi;#Rf}Wo*^xMDr8}z$>>vtsU@WR>0)cD~o
zV{N8ZMnC7iIY{JCFGQem$TViC#~u~YUPY%Y$I@rpkG%RkKIMq5cH>uI%NVzYrgOli
z3*4Tk{1#j4u!$411xCac#xLfy>}4oov+=MfG$+eW)3K$%eOLQ=UU2OrKR^d^<$JuW
zt7r1t1K+T_TvO}`(DzbUOs=V6OVK9yAv;Z-++tSao{utYeZPX8UJE-t0mL4$kh+*X
z20mEIt=GajVn4*zW3MmSW3Br=0iwOGYbRIp?J5ZF0q~@Oh0O<EpPnSJ#Z_3$)62eA
z{V8vhPU6eibx2Q@?Sb_CyvYBa;zL;cXXy8W@9g{RA#MJZD}T5eV@5N}XZb$Mvw^b;
zxe|bVKlcQ<E=n)M{*U{a7&gv&ol|a`!h;_;?>v|Gbl%ysQ>A72O8TgW?=RZN7B($w
zMK_jo(@ujpWx?Y6q?xDd#rl*;0=LsTaPw9UMlvOZR2xmYaVc51GpK0R*u0Lk$4*gh
zdU@_hKya1c3grYM3!3=69gj+r37pj481Ixq<5$I2t5Q--z*f-sRV$$^@QP-Zz_y}X
zl;dO)Y%JQ~RQ%`CD$>OF!#*cVO1Q2X<W06Ifr=hrTd!uH$*~!Sx;EMbc5tNoCIzs&
z+yxu%Z2|{28tP6d$aPh!4|zFU!h$wop^s||SGTMqR>$Uz&t~+Hx;D9%LFa}oj!Og6
z2?4{U$vp+RDp#mBORbA;Qi$9tntqzjz1lN*08ksjBG`Cs_E;iz)A=qo&GhH{cI+m1
z=zM})>w>;IDe637ZeXL7scdSnSIAAUai+7z(tB+D9J#K*9_%rPz`tV?b@t;+0hNuO
z{|KAdV`_74)^=H_QqUJ+k-O_0^lMkG)|k;Np<%~d3HDe5HmLwww5n@@+|3?Y=1CfB
zD^;D?quGSabH%FtFVr5XMr`_B{6NrY339D>>~Wq4KVUwJ=Ndnkl5XY{=-lU0)it8Z
zwG47C&0hI=k7{GMs1BP1L>XHeu;m>eb!3lLodj&H0rVs~tH4&X(lWAgW+WHg_$bGw
zKB`=;3bFZt=%aS+G5DzEs+*Vmz1FKxJ8@M2b0zV#<_-m#AT)srDfV?jF9cAgF{O{J
z*<yfzbQ9PEd)S1N04fJJc<qoiwZook+163Mp^_{+$OHfOu9vYHX{iC0J!{l9F-a<=
zUk3kEYRMLs04Q#y_P;ZE>X+IH?nM!%Ml;D(X`WDWgGDQ0j>h@p={$GFDURcup4ep9
zx9i38<Vd-BjBW4QBC<R8Cg;VwdK@>oRM=@6Wb3~Jws`HhDRxh;FOB=X?O^u#wS&#E
z<Nl+}BhK;K@w_i#^J~-oC(4~_%kX!5YsTGSOT)FP?pG4OR<3r=I^d?g<AKR+)swEM
z*D2xs(Cl@T8`}gO*&E%r$D@0@vB&YeHa^(njZTR=TmKN9ANheBd!*x!7R(*Yl>yt$
zv9H8-c<o>lBX;uxH$G&v3A`8CvHmlD*1pmnUwdygV617UDh}9ep5G+phVyiO;Du|~
zS77tcfse8{q{IvKhr8##Io-|a_wC&_66D_`dEa_=m(ku)_dhoY&wBn~ptWUOt_a?i
z@qjq_sGks`$kMXNM`5r#sR6fLPj4<$RFAAb?KbWA6!9j~Mtg0NNm36M*A?fNd<`t9
zwb7tvap<_7CziFq9r}id4h;|NX1PH$fh*G1i3m9H%k@P1GQ{P-njNfVxjE+!uQlgd
zQJybZO2~5J&4U?lVMgsCzm=E^=mU~+FiX}+Ze8B1OO3oKX}leVF{27Xw6VPu%+u@(
zV9iV_J^}3`S$DH?x!O8ccCe<_gv*-MOvrMREFA=&2?1LUXcuJq`9mqIlA;~i1Ig7;
zo7S2=)}|i>h~s$N!0{chPXDm7(pi6R&nZ*}?2Xf{qwlcU`F9+mVK2j6>K@#t@4aJj
zd^~nMH;oU9aXiW;^*sDX-1Va$@ZZxdws`Kla@!fFVSLQ`roq{l@!SX4#)tE`u(IPv
zxyEaCi)F($j@$9$_>TW90Sh6JJ>F}?Mgz7Z?DiX9P$)R}d1~62huwmp`PWL-{i9S6
z`E4WEV#pJG8@X7#qQZ~&2i%}u{BLp3tRMFEHMIw*HQ++ifv!sC$X@Myqt5NQBj524
zP2SXCNcynn?l0uWH-S@>ALNr8H*ZZvtGg2TB8vsY2+f#DHkE3sXjEFY5`Yls=I7EW
zHsmA(@r|=O1VzDR?^(C}eYU{2{+_p6y+M2}N>i9M*rtm*1i&OMyb5iGtRKM7ty#Pl
zL_*+@s#9OdGY%OvjOApRugi+;R07Ak^6G1_PI+M^2A^Yg&eZxBtc^-Yvu&ze+XJ>G
zaICKlI~lfG5hyQyt@DiM?}FeS<SGGJkz1Ca`icgfjD20Lfm~8bM90=DE?BOLom8h~
zMQ}M_lZ`~n&ao!L)q}x;ja276!?Udwz*DZxL^X>l<%Fid(D957Sn%zNOUTr+^!VCY
z8_L;2o^qr6I-itMq}O?rt7S(jHf_WgdCE<$i&i@YY})vI3fLs7s`kj-^`}Xz9*Xjs
zH@PbRJD+>XjW1s1+OkS{T;|q-{stM%?I8!gH?e_5snpCK*8$t2WjHdfFC(kigX!Ed
zwo<^NRh(K4qWucMt1om=m}|ghe!%CF`2nKl2c&VY(Y(PAl;VEF8yt(yli-ti47r*g
zP<zdCKEZ|!Fr7<9-Xvt6XQj9?xn`n<%^LIaz1D&xk=kRcaW1J1aNynLD%cnKy;m=x
zUjgGcUVY9`7js_=dIDH=6Efn%W}N9<H$T)yj4IFq-|7dDxk&|8Jk5Wejk<C{FNK`&
z9uly*J(5&YH*D&oWW4I8X!B9zK1%G-e3W6&m}{gPh5UP=(W;PB;>_e(?#ZbBX3RCt
z{y$~S@{=BDus7c9&?*LPa;eD=tg}@T*EEY%`Jy?wjJ3KJ?Ex^^%M10{{mLm`{S{wm
zyHae}0O~*$zp4IJthu!8$&7W7998=j*<P&SQ~LBvc=ZD*ya$`E*=8@u;Is-WOS)mZ
z>$sIu^1d&!VY7XAe)t@kTT<YE2N(FXGtSrK#1z{Ax1<{01e3&-?K_XlJ9S1-6dTl>
zoZ^(WDS1^BpTowDPg|~?^9?rRhnH)o<P}%auK?KMbKjn2HvZoF739_z%f>nBMX-_D
zX|>}y>1M-b{R%AE$+MTi_5B2%@;$jF!#-fMasJo)QLcENc)tRcE3VDhR#aFRkNGp?
zYID#st2sX6-1P&th~0XK*tlc>gJYe?Yi(J)5u4cr1-V*Mmn5pLYr_`an^>-A@amgf
zQ)-o!k@J5!uvgQ0iEBN?0rqU7)43#CmCjymoaO2|$F-*@*C@9;bLq)?DeTDA>~Y<}
z_6VCWdyF<=I$un#ajpRy>->Vbq|g1ltMe<c*B!Y!=l{W65}O#XSpwS%xyH<Ho9EU`
z;WA*8=g&4~eITv}bIIjuNe>h<-h(|_GIE7YOu#nICA+uS2f}P3Hk_W}2cq2Q1s_ER
zK5CS!W8bdz{y?rgZrD6o6!$(4K59y>x%D2l8$ZCk7HqDK*tY-m9u+*74*Y=4C5_8Y
zo=`c3=h9{8xisOqbT!U@_y|j`mvQ?qg^iA6|EI;jKlHOp0hB_s-5hp1QXzL@t)zOA
zlZ@qekz+mKX8fTT#veM~=U772^E})5<Kg(#kC*JyRUPW%x%C9_?B-HDJ6{dBb_VG^
z0laKXIjzq-9MoR&VL@`phHtjx+s>NttD6Fe{`TMeZTefk{atyfsYLz5fiy_Kf%M=1
z+uzfLsMc8fxzED&nWc9C-_!s3@BckyzNoUCVrBco*WSLNzxTiYJMw$|bDv55*S_;>
z^k4tVuXsr=;dg)QZ+w@&``7>4CUe!%-~8@x(Qp6eU-KqS795nUMbZ*p9{A7x-tS3i
zY(lBqx4-=@IsR9dZ%cqqyJu(m-uJ%iW%Y*r8=rkf|M(yNXYyUMl{MIs(Jw(Vf&#C;
zIf7!P>8a<gmqj5Fxa;c+_FBEft<fE{aee92lFi7wU!z{E^eSLe2U^u;=2ptubJtgj
zy!uDn^@5VI6Wz?UQ!FV;X?MKt*&`|eWW1DJ>@GJPKf}4dmb>2h;3KwLd+dYU2<PML
z+>@*KD=4jee2zXU$TgN??O{tV$#u{<+r%Dr>!pxVI`#uncAw>iI%3zxg}RuDJt{`I
zGS+h}C44Qm(H?iO>xABLO=koG@Sw92%#Ko^`XW!{gv`L0Z6|U(&B2$`uJ4Zi_3_;M
zet$MR-#!~yj`DlvGhUbA>nno3vty-TuSd_ND7O^sQGU~J35I|Fau-0?4I0?h#Z?J^
z*B~uR@(P}E=>x%wpSAf<{yaY;a~qu1S5U4<rC@1X;4`?uuTHrFonERhm^8`O`oS1?
zJ$wd{)9N%%f5w)i!j3=7+Mc=m5kBo=Jo}7IeU$lE;nUv!-|2Kl)^4POQSN)grsJ@`
zoE=-9jiQ3Qe+!x1*iUd3BWdt5%FV`S@NHi(Zaz$#RVp_A`;~e1`Ap)2l8(a%Nh0;4
z*iW*6h1~Kin=|O8C;>f|n<O%@wr1_6U~-dyACF%x0C@6iM{L(^UUMbQ%-9Iygz8XU
z(+QWj>Rdv!!3Rl&M5+GWIsehi!}=9u_vOGoX#m>nafUsbT-j&w@z0D+YzEj(?ijZ|
zC0u!`_GrBnvSXJlb6KCN4-sDr?D<l<eg$HW@HvK!IsYpm!=0i|p>wxKm0LGnNOjKN
zQ4Nx<UxCauU<>v*0h`RF*?RWinQ7Rf&TI3huG4G8M&MK@+3c~o#{V1b(XiJFKOi=w
zen9ECvIMAw1v7HjR}GMRAY?n2gb5kD$t@|hSAxBYUpURp-jc4p2{us(y=sEJYDF;m
zlGWsL7r7GFDl1oeDpqY=OxhCwfqa*%&|_uyQ4@NBTv3fHI!WYIOY<r89f6P1jnUHi
zDDjU)?U9HEAJzI5%;uw(X0MCLb@61O0y-jnq0f*T`ifMWOC?}iJ-{V?AkOpDe3beA
z%NlG(bdG!DAkPMKWgVwRsZg*Mneh^>YnMr6YZa53o0#NQ70ZcBf)$$(6TUw$w#jgU
z4_ma-mA^~CKxt!me#oXU|C4(soO;TU8FFPgaiUZPt*LJ&Qb@qi*!Hkm*jrP4TAze~
zMky`+U`Z(QAKs5yFS+z7L}};W75~n|b!5YzLXrXkN%mc<aZ*ddvG3u0@(q~cxcF5H
znE9V!?U?OG@$PJK10T<zS+@HN!9zQL!tt^hnL<F>0z|le3b^9&WcUn=9Us11rnmju
zj;-<7+)LKu7r<VJYo{R7cx{tQigF9s<N0M1F6hN{Z0rM$J$_Fip)<&}?qQEMfq(aj
zo_g+hZx$$xIv?+?OD+O-%U+&#<l14&EosxnqYSgjBFZIv&jEYHb~8WVJ1vnhAtqI+
z`MFN6)T+PAAlGg#)sRUYvEkl3EvJxZ3v8})*o0wox!djS$T1!0gmA3coaiXdHDIG~
zFE_{AwW1#gvWfOuhU2~0&W=v&fGv*i>D1<VjXvsNo)h)9o(6kQuqQG<R6~_OtsOQ`
zI309;&&N<oFZv*VlRolMgDkqa7<{W7KiVVitJ7)lOOxGyz)R83KtHr|ZM!$YA;B7)
zhnkO~!M6RAhH3{sSM-J5Pci2zk`Qsm^bt#kgB}2So2j`g`BTdKzl{HmS(fb_{mq(l
zEA{A1N0@Yh)p<uhX}W(3jE|)v{vBFr->WNyo9OMGI}H<FFQZCM?MJ<nAe}g}P(R@q
z>Q5ha&bzcnrFi_wIG7j9dmj&4BA9`AYPgoZoMAnyRR)v(fH7)zSo=PjObt5Lg<BEK
z`n{*Hna<4$q=7MB01S@qLh?fYd~<HW1}@OOkBNDI)J&#7->tn;_i(#8hpE9PXLoLr
zmr5I_gK>C*owBW$vDx3Fz0_fhC_I=_x*7LUMA=P=3k}Tn0h@5DQ@O=fYxnSd-R#|2
zINRb-{!b_w3)oZeMBVX6&S01?BerqAMQrH~_M1Nfs#Ozp*B<@AFn(l@5n~*$^a1w~
zTux4O<Ad6F+Pyh<rBzGV1w-Axdh@4Pd<_27PZ$9nBES9Elj#2EC2Yq>>^+x!eCHt?
zPgh8}jCE+gZ1>arU?C`*Ns_ZIQAG~W%*G3C8!xt@1Y6ArnEG>QLQkMov!<EanFD*a
zxn|t<?9L=ZH}zcLF+-*20uK%0R~y$%)W&O`9h+b^Y~ZYx4Q|;CGi)hv*DJM<W|*V;
z4cHc0m+oLo;I^mORK0(O8kL#^nTqn>8#dV(#-hr2GbKnq<$w)xp1@H{`rUZ-mqHZ#
z6-d&@-1y!_ZmG|xnv-Sl76ibsnPzfD_WR=4un8#}BP2TI%?Az?rd*NjUfh3)O{|TV
zpTH%~HlZ{y;CnZnC(Tw~0ydFbMZW^Wmat)(S|5lhG;Ehl$QhJ1vJs+vql)P?>v(0I
z8n1rNsOC^?ITP%ekO`fGPSswQRV$@LPoq6{I?w1qRUucS(@`VHW{)M#rPxaWaus_e
zR3R8Y{4KVW19$z@?6LS<(f$~YjauTw3{D!;xyzk1rKiR<AF<gyR%{sG@dHvBGBrQY
z&85;3QVeUxGta02h5DzojTEuhiVQ!}^RL!`I|po7Uz%J^=PB5u_yLZCFG{hfy|r5N
zSEHo4>!VU?at$^i*S5Y8f~|VRY{VvW&3N^5m}^t>NoJ4IFC*F`Dt1OcAaa9`az7B0
zG~!&t+{y^lE`!`wBrjz2D=<Hx*ed#KfSQd1@T*luV{TUK^N^9LU$h}MDV?djt^&JN
zVc7;i33ExXE*IUHn`b0~VJ>BCxR&;ws`jlf-TEG4{Ryx(z@k0lIiuN&Z395AZ%ZFL
zXZPa&%k_f>aR_?GN-npoZvMo~Q%jVxV`V&WC-Z0IUe?W<zy%&?pZNP3nbF4OeMXXu
z{eB!5ic7AL3di%mEn8WrKG%>`m{POLz;`Xj+O>>hec)Udir><B_wD!Nc-PN><z)Qu
zz}|6U<M_x)%|2x00*}29_}%SvfX%-T*d7d9<kJrK@`%i7r-4RN7mv^CARId%dj>X^
ztS9UYa*bGOkn8C{Zmv`7ArP?nIA=;*!r6}8`Px?9(aH5d=TWXM=YaiT;Fdo@XGiuZ
zSO$AM(z$H(gF}5qEXZ_jS>JUByPezUU6%v7o<_Njax-jZ6XD+E8NhRib<8%w+4JG}
zQLdA1^oO|=ZT~d)y*thWKl~}k#juU`xF>fRpXbgdA~wrVH=U1iq=R`L=LTb2@A#<G
z=%a!?j&d9AdB#S4)cNjQ!aJKMLYrJi|2gP<#=X4OM?DVr7RS5(0<hN{?Qxh(r(rHd
zpR(%*Mtj`xQFi<^_yN(O&86+(^?08BxmBr8H1+2gX)G<paa0v};s9tNZG+3154xb(
z$9<0CrTP%Y%bo_U^^d&3x-1J8NpNzdmEVc*men8Hy5K9G0msK)3%DD3ea91I8$X>j
zn_hVJt7hde1}>H18`g2n#3IsCcm6z!Vm3uTp8UJK*l~I7_Pb{>qUMOy=rp5fDS9vR
zkmm9{R;+x_;^et>i~pNXGq5RE`Oes{7g^w0HoYjb6l%=`^`+A}*cUA`jT!8!T5>D}
z3m}uL1)^-+;!kUkYld8{frwq(sv6jEWn6ww?S&XdS8;ABN13%e+{#b*$5PG&Y;upl
zF3<?r)?Vk)CRm1-fX%Smj#$H{i)y>JaLHp_o4{n!Mu%+zxm*eMSZkNbT}rgqTWl+^
z$0m%OTww#&Bw5C5^<8<@DQF@vZlzatZ-f^X8;=zj_plju!xrZfk6%iGvuM~Y<H)eB
zrBN}MTrJRL_NY9i)p@3;AXj!b5gYAd-@yi*kJzWq50oBzZQ1#kK*iwLs4eE77j5=t
z9IG;(b7vFUST^nJoE`oSHvWy2Y7KH*hq=_`Iym%g{8{Eo>9Gy=N|m~MO9M9AnM;C=
zebj-ynp_vdmU=%x!QW<-wja$UncE!E*nAwnho3@^mJEs&;pLYHVRrw?_bzlBoJq)w
zP*7Mf*Rx$)={A!4)APd#->+Jxf6`3Br;9dcV&5-vW#3M^nOV)(6KT(u(f7NrPjdX?
z3zl1ZHJy)gEyFywO!1b%;QvQF;lW<RC;JhK9>~OkY*(gr@DfbTxD*|q5bR`~%OVtk
zE19RPV-0>T&x<5hFx`yN>?C;!&ysb!T$P?f#)}?5W8;AXQ$ll+HP}_)W7sx%T>9>;
z`um8D$NBe+O}Owaz=%cW`Hbh5WCVj(n$+HO?SbIDV?)1<Mf)GkGlK6|y;sM^YYzlV
zg_>qjiVLY6uuRnxXiA>1p8aeKVl9WBfK9*8lVxt}To5XdO3EcpJvO0II-6V<rP;wV
zw!;o=)__;#ig_<`Td+=|M*Ae#lrCnuXq0W9Rj$^!Pi%sH)N_<8!6tZKPmaxWUZ8Wv
zasoEf`5fgMbY8Ek1UIK-a#Nd7Y-{U(K<#DoZ1(!B_rljsHV%8$UJNUO&bn?|flch2
z{o@sMF>J4(s!?pou}k@V((g*8q!k&C4NY)Mz?LC*k?R!X$~s3PhGR1x^aY&kGjx7Y
zdlb1cwn69XReAMI=lY_HxprA3*gt1-Y?AnLR+=Zlw$^U0@yD_8Tq<<q2j(+qo`N4}
z_Nsn>D|Suif{laiJg<R`Gs+d4^3$7Kg?fhNc9n))YLA1D%4Uy+d@dEpHTo!hp(B5}
zG(S)}KafO!CCH68JWQ?=u<2X^wbBATbhJ+J0||bhw0XW@on$_W{jb<78k@L}!sh0l
z9}qdsijC)*Ve@%z{uO>8+T&_+GkaWh{h3B=DO8Jq`fD+rgGy;xu380#%}%ELF<Jwr
z%Hr>HvK|Ag&K-WY;~oJkV^wV8%gZ902Tai+eWaEvf}W7$wlTm|Q;*QO(VZ%TT5TIT
zA!wu(NC;k+Rv93^9rp?bwwAqE1HI`d9{+clkZz1*Bv$mCoV}2+=R$i+uS9LH#m*`J
zu4rDLdpg`40x}f7Tc+#LIAINK>%tP&m8M^#hblO}RnPX+Qt{j|fu*~43RJ$pws(Ao
z?daaZ_hOrC)ZRzqrvy1!rt6E?OX<cdup2hhgN@7nevrG#wGQX6I5uL7a*f#1fZaBO
z(*btV;Y&7Q*zETd<YwcRaCfBh5nBuxc5<t?8?LX$c1PzXSGUiI4cO}-R~oSeoxet|
zcd_qa^Y67D$~7V0GTP&a?P%Pv#fq&G;vJn__pk?Skv7NW7OvgRwL5dE!@lPS2A!uP
z8wt;tz45Y#&8`jX7N>M<!GFGljb5;c8y|)1?Af!)&9K%zoyNKLf{(JfdW7ws&X4Rd
zR?c)EJ2oY+3fha`M<$r!*jkdn<Vny!|AJw613-<DJOC?hiWhWi9kTY@gV&w0{J#3l
zR*E4K8g8Z^_w$*P3CDHU>i&u>oSRJA6mTW~`EHCRz3NY7bUpTix}&{1{O|oU-u^Y+
zTyywWt;gpHWAQw7XVG+cjt>~?kkm@Y5wP2gch~KR&4X(P_j$BRw%@<7imqXD>0z}m
zcclKlQaHx09ZL}7x#$J#&5)1egyC0?<=R<ff2kv#*V_H%$VnZ2j`Y~(F`S(Jw#L8q
z$I#KW(*d^e9I5VN^S>VXD(dgP(($!MA9QPfY4@1>QluAuvG4QfW}fwrhT$9|)-j9!
zV6OB!))x-->9=}JWL@a{zwexNFs<aaE4M^ezIh96^lj?Sd-+xT<klX6vhMu8gOhG?
z@7Qkq!)<lJ%Ub_M{-`{{6RS2o@&7e0ZA~m7&(h^F%iiZ8b`tL8ig9F%&UhiP40+i+
z*8VUl>&CS$!a2Mo!2^tIMlt!gG?1t2l~9(6t(mSBlyg`I5rVtGX5)N%$uP`{O%`;E
zEmZZ6S8NzbMzS^Fth{)v$kaxrD}qKHHfou!jelFY$pvfGYCCCCnX6~%B0(6x)ye=)
z<BxJB3NJSyBVPOPkOaO|u5B~eGmwe!LNH>}b)wM3$q5ncl7!?{gJq%@>tj>UCrGpR
zRS(r|f^x{@UP0fJRjw*G^2WXT(n(#QPPu?Vr3Sf*+=#HzOs?|+n=!eG&U3TJir+VT
z3>opldv4Wmc<F<^^40uBOB#kZdOZoCRs@R#dsTW9=$x~&)h4QR!g6~AFS(u$o0O?~
zAc3fM+4gP|M9m(t=~Ix&EjD3tjGH`;P3KO5?MJR)xgPA5f?Q=Y1NZIrN;*$XZic<t
zqv^b&sj&G0%oT#psd|-!zC2?b)gz9rYSj&2R}&x9zKhL0fBq;o_7Mr=`Vv_^GcLhL
zNh4{wcEMb-U~liEs_ERu4O<B|!a6sb$?BsD{6Mm~CO)cqc77?AC{aW32#tAD4fd$M
zSLLd6ExXR4BPxTBDxDu7Tq|LtM4s2s`J_|a{p-}(BlS9W|G9Sl)pVY%U%^_?8;o3T
zf_28bSJjtc?V|=?9|NmJOJ6cIIm(6r0;M*$l3rY}%n2K+l5URkQ48>Eo>_65>7RA&
zIcHT7al8fj`(ydT6$Ce{hfjO?;GY!Mib~<PA{nWz8M=fXPTsgGEo4fdg$h}e#;t6}
zTjHH@flHF%5-6{%?+aJ5Z{Od8yWWF9mSKEW`mFa)PdeYR8KlW-lV_7YBYV_>ah4Ix
z|1nPEe-}Guzge{xMdYsUux;a<Ma%Qxz42`em0fC;1gOG)f4z3W<0bHvJ2q;8!V>tj
zjbq(|Z8oQbF<^EcbGvo{z1A7j$SjuyvT$rB*X{EZu<>z`L!D*tgan`L)r_DaMOOGz
zkgGkf3_D}H0vm;ZE00ak`GN`!!&ZY$JPkGxv9X-qaW92h8#dU7$<?q;ph52B$_Zx1
z`ENnW?HJ>K=dopzd&EXTuFuA8AMBBWT*V#@+aOo|&i7uaZTeWH3SWN>_G+7(rgQ%9
zY8>lP=a4I3?-{)m;y6*yyYD*Zxf<na*vwvSt{lj<MxC?V;0HYTYuLCV1HAf%&BkRe
zMV*IvzT!C@?X?Vk!0eI#ZQS+ICcH;Q(S)=(mrBsN*lWPH4sv_mu}89bo|U`4)P4iN
z<jQAad-Zv4_Xce1;G+tBn8}rKEup{0x;AP=!*)6Fp9y|I)+~V%IO@Ff1GOchL?1<i
zTzxJX_S`ntO0d`H2lnjo*?K92@k4tYeH5^d^W1dK8~>Uli|10U-s3Cdxn-3H_S{;7
zeO-|-Nq9Grn3}(1AYPGLoTq-o0%C^($V%{tVsJ6xg*uksc_uXJLQu0eCO5#C(OYmM
zr#Mc^1I-t^j-37%&4TsvC(gRrzQ1`;qflPx)Hwg2F5T~y7rK>f_+*`w=bkfyPH;k;
zal;?ye_xb;*m=jpwZ`w3wQEX{Os&#*qgjrU{U(_ww>;*?{~qOPa?2)HR+L0B_T;KM
zI)$=Fd0BCTRV;QdHr}|x+qh&aNyD)z@RS#ASUfkK^JHrr>-Vv%Ts0DK%d1~p&Jp|A
z9K`jogU$G0Eu*)?wqvi>n8f6I9_;Z(uAwJ@>2$>IavgLoj$&>OHAS5>HhtSxd#*j_
zf2F?EwE|m|>m0ESa&v6Mc#rKCyY^COjZ18?Ej;=@&&#gPo7`%TZO0Gn>3p<DTfB%)
z!$Y&vdEJrgj?SZ8PZ2xq_^3Pfc%yTo4x5d;J?{E}X0O%&W*=K`k9D-iqq#I-8~s4p
zu~!S4O~B5d$}}UVH|k%nnko1&p{ELLXqrI3vFYiAxwV2D;S~KRvA?wMYv)hRw~zkS
zeEm(om*Mw3Zv9^D{9>={>lxejAU(f*Yzu@v{~7#1J<z#)ui8vd<P%<06ZpMqrI+>~
zKbcQTfxxOF*fXI_7c#WwsTbi|pq|G(Sq3n;!bvOlSnf+T&gv?$92vK{Brh$5s+uZv
z8A@lh*+VAr33hJ&`*PKw?-WbmNdu+a?}o9Z(m2+&5~}YRz<*F|dT+`FK4I=CHhzvu
zpvrp!C`ANQ3<~8$QrZy8c-|A}h-z|v_@$_=nSZ@38nElI1-U*8$9k3w_8R0W;}zIQ
z@5O>>NuKvQ$A!ln&(swgI!;Hl>fFfDU#2#9E{jnIfTz6HhAnZw0S){+2YZRwNU_zR
zb8xITUVW9TJnxCxyq;7JiRFs>GTM>GT~A_@la)KiYg1C}qVws-9tC^ACUUR#?3g4l
zsy2~Pse%_S<_@2sqk@1?20wfaz8bv}vX>0^_IkbQhKTT(r$%L?^b#t!WO57k%J$gJ
zCH_u&Z}Jku-?#g|<kZ$tm0G46u%xm&wxat;Zm(C^qdZ4a>!o1!`fPKBuO-;(;0IPx
zUj2rR<tX+z%r(`yu21Qtb7z(6VwFSDml&-1s`{7&Y?w<N6*swFuGqwIKTvOcl=uPI
zqjLO1ZZ|%v`GG7IY1{eHw6-SIc`evXA@JneOLDEP4}|G_DIK<}QC4+6D%c|wqjM=K
zw$ya4>jPd#rOrqBT*8ZJCac(OK1$42<d)QbF6yJEfhxd#)YbgJzK^<CzXI5V&NZ!=
zxN`r>i&9Xsy{`xmh_5HB{%BRNM*ol@N4-{d&i~7*Ymtn(b2YlH3H>tg!p=U6Hwv_e
zz%0kx#t?t>B^}(rydH%QYvaksH6TS8Z%GRBi(f7l{1Y?Y6ZUBMV^x{D!oqJ!Wo;Wm
z$u?Y4;6%sovYn80i$>-oQQKfjpjRkE#(U{A|EUhyq!^Fc$9_J0A4q-U*EnwXY?TQV
z0!@{u3pV=i4O_IsoNvc*?Z{(ZsbzfHdzLdi1Ux?X;S22e1UdS#xlygzeHk`;ex)GS
zgnNv?cb(VTVK;11u2Jqr>t@(;#D;fQirB(^@Mq+%Pek3lOt7mc*BY^pdWq)?*!}z_
z*JK-*)N~H){(kH4t3hr=v{zwa_S4-<z?P`DiDYsQ<DP-Ob8jhN!{E)_aXFa%hTo4B
z5|NH8*}YSH@7kLyH*yX4VmdRKL?068QpLM=XRm{eh)o>Lr2*UM2jpECn4(QYn=!o<
z(@P3Xz>nrq#2Wnu|7Z3>ZLPR>ZFv@ldG30R#|OP+lUdL~2|jA<jbQ79y}4lL?tBal
zb7?r==)=061!2tmkNXMx_u!-QfYr}UxBipvV7s|KQCGbY<u1{I9KPeZ<iU0G1DH28
zr5h@8f3^&tl&rErld3dk{~xFafC83V4u92)<p?G^XI#9-4AYdlhcdZY4WC-u`DifU
z@EvJ&9<V`9Y8y}E>1>>a@&5R@B0IeH4K_>=oZ1!?@*7id7?*61+Kw|RRci8fhhh&7
zvIU~sh$~ne#V}6&ZTfYj@o%CIkNq1{qK%~1V5n6MWaqk$V5}KT9g0XIwjNQBjfQKx
zTvE&#?QLccn=SL=LZZ4o_V#N0xlzu3WwTe>|8&^vEj9|{diqSgw&@0&_c$1_L9#d4
z>BHqZj#tMv9uw^`b@td*NEr6;02H0q=7gdj*uxebRflcBZuT&a*Bc!+xhpp6u5pCT
z#~sJ9-1@&XTfDuu@j=l0fiN-K12`<`#(R5}Jr3ARXD$~qKQNpP_PFN<^w{D}^_oC?
zhgzfm#5qTQ`Qmqfzv}(3J%njo037;fLl(vd|9CskZ|$L<eWMS`nBe|MqBzgf?dd+D
zPYP2KGZz2mpx22vl%}egr3*65XXSym4XT#yg{;*nV-p82rQk8=<ArJ}D>a2=gHC9)
z%f}WS=f&NE;F;16S{6w10KQ~@rB<3QnbR3TNMMtf>4**3m2$?gO^!_hbBtvv&cB_q
zWxMNmwsGSM&)6hiE$~M>{R)6x0?Tc)Z3btpVao%yG#NL2MZbbcBA|-}{Eg>)Y1r0)
zoxd*#mPtmhY^<nmEr=Ph@&7KsCYzkK1w>}Y207<;ZNsKX8=%XBT&we#Ppb1Z=p5q{
zz6*8=o4+fv*^Rnq(O_^!@W?W4X60=`;Cj&cWIEr$X4rkxv0)SXr?r=B?d);8)}k~n
zYJcFapIW9_k4^nr>!naIm$b=r0R^XF(+wxc71)IS4)l*Qj=5Bq@O#)}b!@e9*T-H8
z1Uj3f!C<wKNp&8ualm^udQk75(XdtNQPKPWmF5SgoIANTY&O?Oc<rmrd&5=&wkzZo
z?XlQAC(o)gUVZKRuy2piUZ;6_0h{?K>ij@1$bQcxn~(&Z%SKD5bLuD%>y3|Ua&v5J
zoJ+OY<J9a?Xo4ogrd2G>-&Spw%$t-;b$cb~!2<RTTfN0LS>i(r%Gc2zf$hc~g@%=b
z_RvGpAU;$3@PEAN$PJTMp>x58e`cCNP8MJ+C-<jZ(IocD{&c;<Us?m>6%{#ID{x=~
zIV%ONx-6^?a|RD_>x(8$+IdMpE&EV29c|-}I*xjwpTPn{10kRKn&J3kv<g{tJ9UXt
z{IT_NOx9S(aq4>lRI^*!;jBjH>BwvTFmP5!+9yjg<Z~M@v}Ljy$NCIjXv^$3to#{y
z$)}MEeBd3Q0(UrH=k3FTJ_8`9$Hzx(d{#+n;p0~eGV*uuakE^`=)q@v+UL-_k3SFF
zxkYX<!yMP*k6qgm`_9|<q9>61{u;1Yu#T~r&iKC1$T$}r&c>Iml{Zr1uru!1fHh{v
zTi}mBZ;+vDLCA=m&+{f=W4T6bBG>J^UE8rkZl}{ecE=Xvs&Zp`>VR#K8`F>_YC%nw
z>r2?8T&;&dl<N|7ZuTtW+rLlf5g^z(6FTVp@!_m%VjMr(#GcL%v9X`s8!xCV+ps+b
zY?5RZu<^a5PUkAeBe~vSgAI_$6>_xXH>rp?z<w*Y`#Lwdt^;<%@|Le<HZjPRu|%6l
zn0p<zU=w+;3HEoVV6TSVu$f%VCPukF^0kN#{lH_i$32}#Y_cY4<KhS2yb-@#cjbCg
zxk?X;(j|M2{xkMc5LpRDYU`;I{b!d*8vW;;eg(AS`_FqlEDpxKvV`q>`+pCo2QoTg
z8lFq>yS#(dJ`vTf#lN$J3XdpeLZxCKbKuz4hpr{&*ZoZ2>TMz9Wi&}ME>@Ym%I#?l
zrHl`ILAl5oiz2%jU1V3`mgme-p4@!n%=<ix!+j7T%lC;hEYAL&n=70iX1ZJ!$=F~e
z&sJKsTqP5fAM*TL&Rl)_Fw27OdHc@z_<_wY*zcY$VwCLk_|~3;ceKjnVo|?;dX|Oh
zqhKQ`A)4gjah4YyE)Q9e;pD+6C{h*-$ci<i(57JeG9%?4JU%HOwr2#JT=D&kachd#
zvg<Tc<t)4G)XNp)8G!*^__l>^!MH7&OKqhsx7alctkZeX5=+rJwd{G%t}{n6?>A$*
zEUkHn*@Wz-0UPs(&%j=5D_e}%gcldstb}bcxw%{$wkfv^AzO%9*$uxSOmHL@;~yTf
zne63;u}u;CA+}q&8o&G5um$WUSIMN7W;U(d+nn6R9v*k(YBpimQtCPVP3OW-TtdGA
zjPpV}%C*BT_LyOh&7re=A~v%}qJ4WcAL7_d=Y}oV#F5U$9&>xy=J9jT`C4k%bft*B
z+DqMFueR9P^HIZGszg1uPOjkmN2Q8Y16>C{pk?#HUfBl@e!z6z=8|H&KbLxYb!_+M
zl5tE2d$ot?^Yewi_~}p71~-4n8M}ObUR-lv<NfA8)t{auJMano?Qb6S#o=i?o<9!{
zC-FgiK3349EW8T6e^!6`z?uFl`}PIC|124g?0?zUOR4l0RA3u<;05mXdv4O>zF*2_
zFOs$UX1f;OD_@(j@pC2Pp<VD|k~+C!o`=S-yK^bXHSYRbpo|W;YCfG$AN-GhXS-g7
z?m`!JNw~m;bNab8;9`B*qVN1TNl=U{0Xfja&vThei}Gc2@JKkRt-NzabKh0_1Es{r
zbJ;9-?kylq$|KJH^?FfXFPjjgnWf3FF<pyPmM}KWes^r=N&Jh916u($4$3k&z42vB
zf1z13ovSQhC;5%=;xFohI8ZlYlL|-*8v$mICt$m-{+!~4^VQ2{1GbbM8=qe|(p|1s
zmFuL~WPF~4Kc3IcK{x4zG?VmfV)uSJYxRckh%Xv|=DBbMwv%K&Z*shZW_GnW2l^Sk
zITlpxoDiJ22Ay-@(Xff!i_S&X;dJV;rwy;X)UbaQooB(87SP<t%i^NzrX9JmCtcy&
zRj%NkPq0VF4trdpO-v0tbiS<R#wHf<yR&Rr#_P3c04giBg>3em^!b0iSTj4#ZdRR>
zWEb<Q+WFa$alRbroHMJ<CPe3F4N&u3Q+rgoi9K^aflaT>i|_V2DK^nLW1F>K3-2E%
z<4||be$#oYDqwKeIG2jfV}3uFL({a}jW@YEwh3~-m|vJsK~c3g7q35g-b-H*ol9v}
z-!3m$u-B$@T?>2jx|7a(ldH|8DA(fiyy^S`p8Io{OB#rQAHa($$C%k>R`*e;cvx5X
zsMN5}SobiGej>~z8gy>F_*+o&VUmp?xi%@+d>Q<J+2b_WquA?qJlo<5|C&%W!}Cvi
zP~^#dly0i&dXhn@&J|lSA4SRKs{WHJSr!R)bFjS*a$Tcb=U(UTqn`PteS5xdSj*3@
z@{;|?JtSs*7vwG|GXk>Gw~4gsAcyzP*)sjnC&Vfwxe`DEE!GrpQTwz2>GQI^8*azW
zvJrq}3Iu+14cFFDJQquC8HZBURh434&Z)~bY#Gs(2-A`WKJ`!aWkZv<E-LV6mTw4*
z%AdL;s8M!>NC;99bi*aJ;}hOJi~~B-JlHtZ+pKTT;LVK|r~3}9rfW;;vBt2TSVgpZ
zZnAR$TQ^>i6`Qrk*5_Y*p+0K4x;=UZcqzN9()^ln*fbrD7i<JT%$79c8R?}`8PaS#
z87b%EYon3)OV~X*=wq;lO^o<C!uDG1cJDtowsI?1AIH1vee5A23CEjU|6|DQrSTVa
z_8(E_ZjUeMd_1?y4VhktIw#%G|4{6H{vDl<*be8KkH5wyUXQIC|42X3#tZzwV2_X+
zKP&lJ%A5QA{q43{AkW~0<d`z_q=5gljQLV5xvSla`))e$uSpXb_I$f+(BypR`<<dE
zrJM1V(5Q5aE+_o2C41VZx-9TL_;!Ex;hAT@w}W)OVMIV83Hq3I#LWi4I7gJrkz{eI
z^as^TE*zi%OE9{4f@ImG<WR%asO3^9os4JdBGX@&mhz}X_70AOO^)L91wm0Gn>1yV
zEPK>TItsOH((2O*C)8kjGa{2kZr84w`!2RL&7PI68B3Ed0HPeCY|_EF%ay1zmK)XD
zLwr}RZCrkn+I`3K#lNJeQ~Q21-VV|-pwykO`)$BBVjs&|a)+z-<$VLT3b`F&Pqc%*
zzmc13#~ulijXjKazaR8=qr=p*laIe0&$lP%8aCU;<6~*-o=xQ8T+!a54M-&b-CjF&
z+03b1U`L&g3ve$brG0y}1ucc&$Imn@*mDo;=3dgB<IN6&xvK3%yfoko$KTAQV2|nG
z*f<mJ+N1sLh4H531nlWh=STMH3j}<|xukNvox8QPs)SjxSsFGwk5yu|hPW*|UwnBb
ze@OcJ!Jid4*0A#rDi#IukXJu2Wz(YmezN=U1&aX#eG%@(eLdk`IifNpJWJYrc48a^
z8~wnIJy!CCAKCTNu691DPYeEs*_SGw#e|pT?SC_xcUy+9`JDvaf+mYwNNTpI@<IzM
zOF_muFCMFAi)x~O#UdZs5!>IcYN$*Ap`7|amQC5bxRh(_^_gi>_||jVs1u41MxWXS
zl4Qx2MK|)mWpCWx5|osHzGBsYlwwm3YaLe#5WUxoSGH<vt3;t}9<&>btyXMsCSNRa
zaEfJnEhRKHCuGs8++>XmY9XOb61gfRjW(2Ojlv}h_o5A3(}V?PCFd14)q2GRVd=?p
zfO*L+BUre#6}Ke35U`VCOQ<49I5$m-t#DWm*!<<DC|!wU@m?1>UbyBN`r4|dvJ#u?
zy%08e>g|i1F7uFmV{*>~dsMlJ$4w@;3VXEP2$fRcu9twlbPy)T#{X%?X~i0G)ADse
z0B6$L#bP>Fo2>GOM1eTV`PeITUU*Z7Z5h~VF0%eKdlhW_-x}=8s%B6zF=wT>(S8{S
z=$j2plP!V4v924_@*Rm1X0Jr{9%ZyHM!x}{sAizEisy@LlEVj>ADGNuwZcN>il7=Q
zCd58h)lt$cBY&A<y|9iYD}B-`Hw(ha@1b9PzO;%rwO10FDA5UHqeA|8B*O-qAjp*<
zS71x#qms?F&=Y`d;tC%%;TcoZM<v%eA%K|mzM*)<W&uCO#%1`mVdr~Y7x*aVx!3o!
z=%Zxrh}=q}NDSCT=WC-Ow7H``D!Y$L6YLf9IH@~?k23FR^mo-08B9koA758=K8oc$
zH+!SG`TiA^E?PK=pn95NujYd$Uvta%dDhoqWZ8k)hb|Q_*H}YS;O5meQ5)CHVXJz#
zryJf0v2M_c3x9Qo56b==w4M~>`-aY$EE^zD-QG`r`H8Z&zAgy7NK<b1Rh%WB(oI5-
zByUvZ$>&d>bXYWrD`%$%wnQk-eC3U$cTZ2UQDhv{kt3ZGPdE{fGnb{g^s?Z&uZbv6
z%zMB6p0j3Uj$s}M=k$h^xw!c|XQ0Obl4afUwR5&4nJUlqh>iKQIs2WHY`*{Re?b4Y
z|NDO<=lJnYK9@~w_U-fOOb^@m^V9Q&_gVhU36#&<wJ+O$k8j=zRoL_UCpqWin@0)2
zy?_5s{K4bfH-hzP8yBo^--?{yz57bDkGCKl>xX~OHvhPd^Lps%-IHwKJ#6P^+Rdk@
z_d=!hu$`ZiF&GbDm#=@>?t^8?+3$+=Nw7U^a#5^Lvf+2;@8{EY?)S2R&dHf9XTCPi
zLB&Rbm3_qH<6C(~2v*8+FZ`TjERs$CreWpt@bx%J;AuPGylpJ9EUv)H8=Vi2Zv+>A
z=d5f=K6<{0Ecw3J#zg1avz?Px=MC%o4J%i=@wwQK^0iowD%UL6;?LuDZW8S8^}EP%
z+hE?XveRQZOH%B+cfk5aHk0{!{GES)d43W+ykX4u!bw&lN5;Cz_IcC)b(8ZM*cprH
z9CBp2@a7TAg?%Z@nd5wXZAt3d<Y?H~UKMKs)>VGbI_KZ7j`bwpS?7Y4b<T3+BrTp>
z=Z9?r`b<}r<Av>cljGxAY=Dy>&TOySZ&*%z4nCIs`bDrVa&5)-uIap!;~R13&rk0Z
zE6b6wJJz?*`I97OunkE<8SIng$TAys&c9)qvP~+sMR1=tyW#u1Zkxt$HY|*lugyt7
zk8dA^`uqL6cjDA;bRMwf$#h=j-WZ$6^%`_8_PK25f4|x1X~V|fFCsgYqt1KP`B}#K
zTG#8dV4DORW4+QF*73xC;Jx@bmK!GnFjlsKx2$v0xh2@Q-}7_!{a5b<>l@d(%9Z7)
z*xKCU>#)ul>%)e{<aiPv_DDbd@@LzBU(t8}`ft*=zx6Hp{onh$^xg0NrmXYZdzki0
zU?0r>QRWgj{7dk!=0ExK7F7*bYzVL(#eZ(s=I6vi@a;FgfBQH4cjMrnQ8~rOGIp-k
zn5?QRU=tfCnjop`ry}oa-E)Z(QNweI#^)Akk^(=k7SLZ$A%^4haow5$>#&blN2D*`
zJ=gJ%mfa|27I;Xpk$rtL=C8phJOJd>JpDs>93OAi_~W0RwZTKh&Wo3Ut$2w<X*yw%
z?qxTx_@1yhycu8h4J0GW*1o3+8NyIRGG48StrUOx<^{+PfAkajgMa$Z=)1r5*XZ|t
z_ixJ!_1C}l_C}r*gQ;O%Sn-E0W8vO-wLsqfcnupdB4^t@3+ImG{~@v2=FzLMTed?u
zJ{s{oY)AL@(Q<voy}cG&4S)Ek@j))H!S<3)U$Ti0y|<5*>#jZ0aPL2-TwiUEbYJef
zavjI%{=I!H_E+883)o(oD@Qi-)%JjAUj2XbhkrtU`sd%LfAD|&KhSr6?N|Lp=|z7E
z|Cy~c)ynEoI(_6%6DR;a&evyo8Mzr>Rtf%o<~;yzpG*F7Nc7@3i-}9YfBNNn$z0UG
zrxsKuy4hU#R6cD3KzX92`5_UqI97T%y`g{qlT`w$wy$H0k7WNR`6*hknZkM}COhnn
z(fx76;@frNCmwJ26k+9X%y?`X&RGwRy?5<9<HjE5zZouFTP*5jY!rN#U7P6m-gdC<
z%6;$JJLBE4J38;M-I41DVJmcB=dZEH@Y9>?A7P^p!+sCjOV{o`FUjp-+=gB+H$HI3
z-+hQZzC!LVVf$#E(=eXGiOSBkcd*<4yxK>-R_8Pvzk@Aad(TJR)j1J1JC3jY61Kzf
zpVuC7x_4ZZy*)Di;`1y0_{&A<$KvI&p+|w%vin%FK)y3B&+gm_g9Atp=PjtQ{rA1^
zoauMJ`>3~72+t7(+GQu2-;(>N{yfZK?Z8vz^Dn-X%g(5vvZS|kbPu1vr@G$Ncy#}!
zNLA-&ZyzKGoFMB+&0;-&WNnP3jgE35^%WTW?=Q9>C`)=C=y+zUNMpJOsoqe1Sdhq?
zpe~@Eupp3O;qM&8u_|t@23h^u{2#9!8Si<xwl$&T&4nXuR>8v<ILQ381^WK#uYMr+
z%hj@4$x9L(m8#cOv1DN7e@m6uS(|sR*hrb?ldNACG`yU!v9jX(Y?L-!;miGp=CkN%
zLF46FXfuigDy7n43*a+Nm-J!eWDb50C<Wgq?ZL8#4ONIjqqiUt;5124QYxkR9RpbT
zS{z`rO(4M%uyS89X|abMlTwYua+HmgRk3EpMxyf`t2H8J*>JF!-y^bNTlM%!0)JV@
zS8P5qEt$xzbaE_^YYuXial&`OcG61aAXj!c92CEmW0pX>1R>W2I-lg-%H(MFxw>5E
zh7I<)K#qoOlw<dOz-l_@O^tl&<v1Hw$dUC{g~nw$)Va(hRL>>W`Eo^q#eJQR_G)rn
zxPc6zH&-S3y=-=$MxCF;UYpM6hHX;03O2I=9=C?T6R?MkK$B~4ug7yss64M|vg<ui
zukubi2YXELL6XdYxn$IdTFt3)T_8u+cf+<iHvTUC2v0pWlj}9gm9Z@iJAbrtFX?xa
zBV#+E_u<m!mSdB7KXr2D>pg87SnTt@@%6878v<`+(}9Ea-~8q`gp!GmHCiKS-px&W
zi8}vjm3i#@t-<yAz<&yx!yW(1$Dek5`)pN)+uyiqFo)-mQUBP6!3n;cD|ht~)IXPu
zg<z~Mkbpm)1^hd!R*1>6pMUX{R-lS5lP67D0^)~;9$u~hAY^ZFW)d2G)$aE_SNKsO
z!nk%6uvGhUItt||VPk>1@%rj<+r;qi_ItTtTR7MPQZ^p=i!a#h*xX$Ut2L6Wwr!Gr
z>s#NHU88r~LzuaT*Xx4cwamWMt!|T_rq;NCS5|l%Qw$XT+8^7-DP(2!;|0-<<kB}o
zY1sIC#+d)Q!`@%}!?4qE?LBOjEce{7#qk`^ZP*}}aon*{T+i1X?A5QTni;XhJMQIn
zgss1JyEi((7Or}LZC|bp+pRtIay>e}QvVtiY~oO-Dy3+TX}p8<Av(W59_?|o*Z+0w
zk^C;3&h;dkXxd*p$~E1wiJjVn4!gWC61@_8!)C55r<eS|jt`>d_xajN-J`S^-}uHi
z&<Hc0r=8gRX^Q@I^p`JuAIqJO#wEj*e>e7n$=P2R4V(LVen=LR?Ct0FxpX{^$A<nZ
zng8iGZ9diDzkZr6x||9!Co7u9<pN!6X0(=Cf)*=Dp0{MW%Hmqd4mFe2Ub2&BE9*id
zmfvzUp=PYhmQT@5oVL)yc+yHnHB$}x6kyTSO%k4A!<K+eOZc@PPW8;x+^_+Al}u{A
zb)!zx9y%JV;A}=IW<=^|haKY`HZ&5o|F_zF!?opE!Pww6))KI}T$NJBu-Uy;!^XNv
zS+Ug~n=DvK11S-ET)<9tcC7!jq9aK|R(X-VhmG{wlHFXi*{5Tx7@xFP0$f-tYpzXh
zve^`{S=qB;leW4+?!}tZl6qV#b3Ve>l@>>xW8G*vzrjXUIos@UPv?$}%*R&JSDM`E
zJi#XT4>RV<u01+-PNq?8767ZkUTrQ!xs_oqHMyD3MO6&!(JD-NUr)DNd!5%5=UNH#
zykXm$OTwgzdGFX*u2m^%92@*VH_ut_@B^;%!CrfNG>+Ra&yf{=BUkX`*Rq4%f|5Sh
zdLI@2fcdD1ZN_umnxtpbdB7%e4cO8P_Soc##<>UBCgG6X_XC}Ot!UU7d=wq&`~`cg
zdpa*_Pto_wy{3%7x(0i*`}(3ZMK+Jko(azik*luMYgjX=9MvxfRS%24G`VJcjVq=?
zcuu6DXA^#)&pPt;vcHeor}WRt_US8sKebP{&V^`9bk@hk*3gkFnS&}umuZzh9=Hzy
z7b5ca`P0C&f5W>EUgstB1Sr@Th~v%+4G!zY=r)bhI&fAO*s)V1FO4Qou!45z47y6A
z?i{gk=Kqg>^b`7j{K0=m-}{~K(*NZ@|NHdI&o4i}{QUCszx5BVss8!D`k(2a|4;vl
z{=wh>PwDYH-*NwJG=0%udf-2-pI*~b#eBOk91OpI7<~I2C<3K|2z?-IQ@Hc}8Fbm~
z`%4k}VqK5D?zuDvdTgy?AL7u%nxf}^__)tb4}gAQQfpf%>f)|QnZp@ei?ZVr9>TH<
zLdvbkM~s>OPbO$lYLXot7V=x>{NHYzd7+svTX~=tsSw}?E@uF6If?Q@Yr~D_Ezr(8
z>W>d6l#OY5-rL7*XKOlX$<elZ`u5GE;Nt*2V|}wJX4=NN9FG@-ywk+8{fasNw;N`T
zfBtZf0A57Cee)oTk#}4&G-<;Q-pTxG`~Hp3zDEDofAoK%A8ZfhfBrB3HGTE7pV6QE
z$sdY(mcqM9dadR8y_Dr}Q<T%0?{$%L%#)U~T%}}ayVo~wWk>QVJBZAEtNjVMq=<LZ
z9^QTiIqNRn>7={y&tH8hi&j3KKekvo%^UU&$Md_dWXJCO@J1HNm*pa*NvG{vyi<DR
zlA;GLVSA7r<E1RZpUI_x3zy?vo*f(S%&yo`<a1o4ba0{b+pm#uFK_4OYn)Fi$LDwN
z<Q{IZaT(4c$MfdW!<(;d$F0D|9Kh!d%SB4RxUBK?_*R;DsoWIXb;Gu7*iMgcv0Hx?
z{@T-YlJU#?uLRqP%g9&{hK;irSgw5SO^)a7+6<CyhW{?(o6=eCY{x8j#>R5z7m+hx
zYrD=x<jQ4XZ`2X2SK$ri-OuIvyvg-xlk20%Rd`FqCeE5Ivf0EcWsYxD=d$Cy0-M?d
zV}E%2HJ@9oYrZ$Zit;>`yE?Hb*Hv}SrL2!yX2vCIS$K3exo+4*u2PPtWsp~v(~Vr;
zY_fk48(Hfr*!cyRb;direC?c7=ltSn_WJZr%N!r1Vkk)kQN+f2VV#TIsfgT_zgTt7
za^s!)^W$6DtzOnkv&YMmmJ%{H$aNKaZ8}$MTq-z=PE4+>yUWv;^775cbJn@&oaMUB
z6&`qgucfZ1&0g96v0kJHfY`($Hp9E?Y|s4Ax~>;}7>HaiGR|^4bvi$ZAGkihlS~?J
z+QW8ZIv4DlJf5GvlHL2Wlw{5Un`U6J&RLg_U;9jSehoV3R5`}Zl}s$R3VRi~o)jDF
zT<rDXjmYe}$>x+#VkfL~#{Rqi$?wyz{>ERYzx6l1OaIC5|DFcJ_+6g;?dBWaKAyD%
zlXv6Ae`>RvuiifkrnjB{B=Ns2M=fvGo+|v5;T{4kx38hBQGEZTJptGjpSE!>_2cqE
z_Vc_k!N>BmfGZT9wqw|r^RwXn^Hpq&pBrq$d@iOCU|&9Mzmexq*qy&uen&L){-}K~
z1w4mA3HNEgxW`YVFY7B(I3T1iz$>_zEtAE0^-oHRuwdcEy+)Rzjh=+3JSzt~XG4h&
zw&(B_jbu-!tUl<niak!k!9r-fN5X+F!65LIYX*k(&&YDTR69DazS3VfXZ1;&t4hBD
z&dLEd{c1erC*%AF$ND79AC0?yQa){_FcRK;U{~&X<(PJCXkgkn*0t|Q<5<tqk6`s+
z1+ZOiu?hAE@M&9?PUyA3|K|B7-1f^Aaz#&+wK}gp%f;x8I1*!A;L2m(IM$WBp1k?5
zVyk-X)MHn<f(!hreDFOsaD%h&f4U;ON#$DPMWD%58f|hW*QD2Gc?oy@c1`Ei&uSBf
zO?6IkZ~Xib4)#ioLtX5VfQ`WaUOVgyc=b683q6(HCiwcyvF@Dff?b=8o}K@F)uxov
zoHa=g3B@+aX3csjH`sU`ewxuF?Gof#db!F=&Q<x}SuQ-zK9+yW=U+N|ReM}Lb5-ZU
z8nJac&z;Ws!`O=izb1KxYHyEpt8?o|aJ6S@^8<5~E3lm=^$VjPSUW$kqKWb(KKVLe
zi~Tj^yZ8RkvYM;)Be1!&w4Og@@KIvVY>zV6vdS&?fw-V=iD0MZqh|Q1O$RIwwa3)#
zRj}1=o*TC0_NsFwQS+Z`z%FtOKFaOU{J^DU<DDk*-XDgI*ZnKzp7;TI$tL)L)cdFr
z8}&T_cKxTlRKrJIP3PyPbM3W&X8}s!wSUo7sVd~%ZSwa_p)JekuOaLD))bJ(Pu8Pq
zX+0?TrmP2masKoB82{mfjLT<UcWvtkUSCM?*)|kIvOx?^SXSc%S|{5u6dz?x=;x^`
zL@>I#@C2n_e#jGIGWLKhfMOr^iU~i|J)7eHj^q9vy9%-aT3b?J<c+4(xR*_Lo|y@{
zs5l;v-y8R;km0v`oYgnuL|tQJ8&?WN1dGsr&zoUdb4=W`2aO2v8~eNcrdpCyvq3+W
zY8M8&9jCTYMlI>3yEc?~IDUZbXuP|27{7=8MQkr!`{;O_qodS)6}A_~Uvur3#$S1F
zKM%H##{M4*+iS*Q7eBX69N6PHmu&1+_8R`MFIWCAy=afGmFtM@&=35tXpcoUK(nle
zS9vyP&#HIEfZ$K>`qvNmZdvz7zTGxvJKs*^)XG<^6`hR$*rZY@$XBjiTeYAioQ%&c
zGCic^$(9NK*S_hct0zvF+`Fa3D?d9M0MWdC(?S009!{p*l>9*yon=^44;#ioN>D(g
zq*bJ(6l8SzCj@Ef(IqfIHhQBKL<FQ8R7%MWWH9L*jYy4d2GTWpd-s0Zb*}Se*V)cF
z&;8u@?{<pRZtw|6UMAhk`*Ij28!p23Jh1)Chv(TZ;r|t>GPkRg?Iypa%t!^lGf{J!
zU#e7Pry8*MRhwpPXQp0c=2ss(0!)&9a%ZaO`b&c@Ez=jgDN7h*joSO8$UjVPatMd}
zp{KKpCDpC6-kGU9f7xH^)-<&A$9c@yoXcVavLcFqX_Q#0r0-{u%^M+&4MLMsB_TnR
zOEbSHwiFo+)?z55t>C5u`>9uD53lrkik)`9)6Nws=u3W-=($66GW|ui?Gx9tRp1*C
zYgQ_3k6L`IAMF;AAu!Y->tSb*J!{h4!^54iQ!M&W`xVDAg3j-`HIvmXK#r4a-TVtW
zI&X;_TB|SRFM{VHGc9D;^vRGSs^?FO-?RHlgV-?UUf(^$o~MBtO-kBQvw?h#Th|X4
zMOQ7>kSwDd1M#N-2P^d|GwQv8jjn`Yowmts1sxKbHFvpcfM(?IBeN+KMznRU0t`$3
zE8NR$;n<{Vi2PcYx*t0%CD=*{;yl0(QPrU@Osg_nX@TBTF8NEvYE{&<tN8^F>r+53
zm}{n;`yi;7oU0;}-!Fv%zIXL+-(`9Z?-+VM?loCsLGU#>DG$IBaqR12kXVCcA>8k~
zVD+t~3xz?xp|@6Iav3h2(b11Tg(T^6(c$z<T@r_EOt8>n1yYVzuSyc6LF^!#E^bu&
zvSS-1bUsI?>iF~hr91GU`-2~G{Tz^rj75z9LMuMLdSF0=YUVT|4enSK&m=72BqXd~
zGZ=7IFoBi6QePg3$G<7~+?)PlF}}^yl#s1G%dj8Pny-H%=^Qqlo&gP=W?iHcJEf+d
zDc1Tb)nc2Nb>ma7xSYjO@FOW^ghi}pS*I1|lc66e@<P&xz{2=&VlwVL%E^0^;)efR
zRvh9s`j6-2_7~L4rC&BLBpY9sS&l^ON!A$F0aFdwQEv)q46Z8G{_0(S6>tu+<>N^Y
zAt}&c?+3RDx$(CqGaa2zOP*)O*gk#qygIGKK$_$iO1efr&ZUH=z@M_ff5MVv{ds+m
zehq&TrytJH$s`@QsgHsGt$Ej1!MEOK+Tv*)^#HJ(vB*E-0A^GvZxswb;(<*+5J*e;
z7`@&gHXrOIg;H}1<}rt9v+Oh9nI_NL0;i2w%V@HKv+sv8_*%YBNS@G@*za5KSHM!3
z++(cCGCMau=zLjKgqmnzU8j)-{e324Wx|$}b}A?EyTXy$@vQ}NOJRzcne7i-q-H;T
zt95)-I!tV`)_}TVmn~Lf#1I>MlY3s4Vk9>as`SyUya%D=h67i!>>2^<lBJ?o$&(^a
zA8m&|I#J3}s}0(ia}6d5qq7jFc$0YWv%OsWMW#i_vXot|*{vk7+GGPwTt&$sJT^zf
zVuRfyDE;%<V~nrZ(C>T~s7}B2KK%#O77#IEVE7GS7y6Y_`5}h9Ji#nLA+|#2L&ajP
z60b8cbCFJHovvv4Wv{SZtF`C(A!MC8)ULfr_Yc_)Gvt-@qdrNDvx2m;%EECZtSTq5
z#*c~ckTl0B^(8hp+yLU=!*Q7OUt9W<SKT)xBTAx@4Ov*@6T@DhRoRTNj^%Y*B+5>_
ztq3=8s__@w4pJFb*YyI7tS^j*nbxAmVQ<Dzdj?W@R47A@?&3?%koEt*ehZI$^t0e+
zAj^*)W_{#c&=><j{@bF4n#rv#h*QUT^2ds_l4ejG&>ecQr<C>;Vx@aGjnqFhFR#V2
zx3gy1(Pk;^P-*YpS`O%mJ*0<S;SL{VlIxhQDx=T+ei|q9zk1-9YGtU+roe&P|0(A^
z7bC<zuy1?^YR9MfZFhEa314r;HvQ3&-KYpnJPX!)nu=}mE)$xk6d1Y<@K6%nN5?f$
zi3GaVSo5)!TdIPlEWb$Qz%L%{t3IMGk;!{+LY@sI(ok|IJhVP7duZRH*ec12pRK!)
zDH+Rjj$+$~O_Zf3I}SV`-k{_XFcq&n_`sKUlOV(hNpuK(j(tX#P+?F_z$c?U$2d%V
z7)0$a8@Sd7jkN6OdW}eOd!6iDfmH;(kDnmhf#vbpv7#(1D5q*(Zwc8+?mRX#Fz==j
zsf}$$t;wN*$=If8@>@j-H{ip;EjeObzu@z&UZT0P5%&Nd3*>Xt_~{-D4S7|irM5=v
z0=iW#4_Vi$LQZ?(-cI?WzOSHvv^K2>{L5Wumzeax7M>^)YekzpOZJC}8%!eFjc7nB
zP&t01fpQSb8umt<_W3|@PZ8!$V*$92C;-<`@lxUY$DVOlF#K3S|8c&MFQ&By7$2Z~
zso#TN2rdJyZcveLV~o46U8lFsIuI{6LEUqiqx&C19+*)K9^3$`i^F;VVv0|fu6D0Q
zG(%(7{KU*Q!AB({eCO1))W5NXI~L)G$mU2_C-XZYJJ=Gc@Ro*pZj$@=W<|b`sd_Kw
zZ*eS;Eu|k9B<B6v_7aA`9}c%wg05eU^iB#P$0R87-@;gnS*&^&mLrCzc~~w({{CI^
z>sDi4JztP1mm*n@>sBWl@2EDRm#Lrv4F{RbCgjQ@f~m^W;;hDW!=|%bnqc8C{{STH
zmJ*!zp%}zJs4(Y&_hL7tEPrp3FR8eA1iz*aj#*s0jV5oQJD5J_I<z}(V!%8{_wAV6
zRrBT-BLPiALkn9zO=0?01gRb5X*4}tGo^gq>X)XQ5mm+H`$H4(Ts!VL;N6om!-T)K
zQNLobal|9pb|VX^&s#e}H7g3|&_T2n*MR)z87Jz>i$ou@Xr-<<=HXOg8{kqfW0mPL
z!Qd3-fC0J6_Uqa{i<(QkRuMqU0}P&phFkY<58{n~*SXTO?4BFvoXO+=t_L67^iI`p
zL{#sS-V0F{Cw}ubIT0^hzK(;$v;@hE&8229<W=ZQzJ+b*X%T0b5cuHcntsjpeWJ0!
z!w3A$ylWSiD$3WuT^rVs_YYYeT3}l4)MVVyibsp#zJ_k?Y}8U|{{|j6mw6q?c!zEs
zHoE|Q^JiS5?Q6gObfm|?jyn-sA?hF`Mw{K1Np?4WKyvVVRdqYvvvn!VGq2a$|3&TC
zMC7g1(G&UJmvx>^MgmhWcQnC^?fe8f03t@0dy0XhS+9zju!DFMK4;GX+Mt{j#YKi`
zqV^Jb8_f55hY$h<3Q+Jw=gZ<@ZlwM7?b#|IJ=|@Mxmu!7(UkUleiMeK{|wpX2C(l+
zITR{FDOlu?=vCC@US;2DXGm)6#yndF_9hNOF$DE!9(C)1I*rSE&EK@;19Nz8M}Bui
z_4srGRK=mVx0s8|{e0)@RD3d&1XlO=y(a~kfTA_*v4F+YCUAhx)Zljn>Fa#X#=93y
zqE1h~3=#;_jwSo}%Pjn!x8kKdLUEr$ej4(Vf~Uu4akKrfAnbyUTFCPGL(cYApmML~
zE~&5gdu|f%;hM?E8RhKpu5Rg*j4A;}2tZF@#m3rV=!gC{cS_=Y6>4l={m@D&+nY#<
zQNZL>{C517DdM^+*<u@SD{n-~;CDl@(omI_N)=4cL44=EC<rUS7ZBFyH=(V^vnPr8
z<*<acA3I<K^o+y<mPm`+enrayZ962=pZHK!%Z+8iu<D7Ze_Y6WzhKPBaY51xh-5-Q
z0xt-sq)ujf2N<y0hI8L3ob!h>u8>LN%&#)_V?57qJczt;?zLcgE6)8j|M1;9@F}D<
zJWo0M34~`>2lqQBWQx8Ev`0FdGzY};#18e?c9~ud5?NV?K4Wx9R?iiR9cek`BjOEf
z2*7)vHgw4@fAN?McFl8rMu;*XxtSt#E0-+dcNdw`!!w(Lela|V+Wc?#CZy<A&BH6s
zAK`-mSAmn{A73sO)CyEqQ(?{>(^~p$I1{dk*Rd1$_}me%4<-4E*3>XEF_(mGUfM4Z
zYQZw@*_u|?JtA6$56NrHBJJXaWEO^7&LZtevo`G9&-Lu*SOQlY#8y@h1+$`V!4zb4
zP|_9ei9<u7k8$QAv{Fwp>D{~pta=$5i%w48yHv|z=L?UYJ)1vdts08P9owxAN?DEX
z+e_~7PR{R>rE`EzmHg?6HH<Zv?6zQ~3}SV59d3&5j>HYV2Iz5St%Fb8^Hjfw+4pS2
ze;=0L5$`?a%OOGX*E7sgVOHrT_s+GmxAvy0s%y;7o_3x~V1%F3>c<d4z?z`CPQY*_
zeWxi`&Q0hqv`<w$xLNp2HQ^+Zw#kVR0sMVjy`oo3S+b-*G&O*r!q?K_kDZ4Jp@^WV
zv(@g=Q1RE}2RA>B1YV+~X>buE556WX(kmxZJi%{_Aj>poSGJ5pW2?CbN89dy7f$}x
z_bWn;DZz&Ber})WW+B>M)KIFXa7F!~!o53R%I??48d2k(59v0t)PzP#hvca7m+=fa
z3OSkyOAo);jp>Zv`zpcn5Q8#$_{iKa#WnV-8KL;Ky8mN5r~SaGz(9Z9K1T2-8Pea$
zNM0I6fsz407ybjCHxHx{?%BN2^>S`ofHU~IgNK|9)qZrLt-b1^8#gk(s`2%nQd(8c
z%OR9QZL4t53wLnJlG>wxFqK5>6E3(3hTO0=%L#VKUtflw^Ot1D!JUSq6j!{7bOHw2
z+<YZ&V)+_?Wmi@mO72f>9~tKBUA2DOv?m6o(YJ2nvl|>P>R!@=0?ZUzyl)2e_zaZL
z1MECVr)1~rV~NzZ_tC)<^agF|uM@_JK)f8?%()+nw|!AOc7-2BF+}3+Kde!sc&A1Y
z+eoBh{SVZ1%6V+CchyPry<pJp%sslg8qv!4R`h;V0ecw#b+x?2e|w_4y%X5`vxPH$
zl?~#ES0SZ3#42R55-{Gl{+k>7q*>EKf%~O)hi$h0E4;{*bt!ut(}LN}80X6F`KTJ%
zCSxSwW>I-w-%9?Q8kxWSbbs<U3(8@_Ohc-u!MX_9pKi`uVxU<`K$ysF1<ELm{LQi9
zhC`*<!}Mm66Uztn`(V$C<BNI$@<fqm%w#tLFG%AtpxjnvrMDZ~Mja^+uyGM0i>WG;
zyX?0taG`vw=evSaV9hF1)#tPk6K)UoWh&|6ea(-LXJA$_L-446kFL;^KV*bMcTn-j
zyTn!4!b^~r=@AG^hSKgi;DS2Y&Llhe?B?2bxd8m$>y|l9P6$7hL*)!7?ZRGUe3~Zu
zs%<-vIE4*=&y4MbK=(IK)vRMc7a2RJ8d!C*8EJ59AtWWIX_3cnL?#16UM8OaxA1R{
zZ+($rQ+Uh)y$e3>4}Ui0kC+C^wV6^Xt3&|<5FhNWxRFg!o~eyzEKhVBM6@1D+T3J@
zc;ofpx|WiPUa4}(_ON{Z;*HprS(toC_`a<VUWOZSD8<c~UCuMT3TL=?qq1;lh(~6^
zTVlFaAjdD2g9sxmFGjnQM5p;hHq-yg90i_fqI~<j{i*c~e@{l0{_W8{yqgh}%etIm
z)`>Ew=8~IGE<CO`kU7{FH&g9iy<Wagi^rTxo;&GdEke<)`W8Qh-`8?|Qix!+Y{(N>
ze`<YTFm*riRS%PuKS-x*V?DH1>qs%99R6M3{m*6d5_EcR;<x9Bk=(Gtgvi_N@L_X{
zFW1nGMHovJEZOHutQec(Km<9srUe-U?R?66)MAUTYWiuZJ&0wA3H#e8$~kR<W@Aj`
zKspeuAGHo<6`yqBGytwd%zs|dd45W6W{2f|qKkOOigJHDSKen8TmXfpKtnIEGfEy{
z=X!A@Qys%(WhhI7n?|tvqtnAZQF6FGcsu`X@Y<0`XAc&z!x?A<D)-Nh$qhOz1D6}|
zGp+ZZxqzLau*ig<CVS&g5rSr`iXqX%Y**@Vx3d7eZf8~F;GC@^H8`Z>Z0lDwq}^0X
zCvX4NE(4C;j}Dr;&p}6g(K1FoWyy+jsh;ZISBHBNZ0rg|T+skmRP^BScW`mh|2Mi)
z6>UApN07KwS3gwwG3Q!?z5Eu?2-JtAgRBOCnW3)}tov`iq&Y!!;7Ja`?eq$rl>7%c
zjXcRS(OHABixo&rVi>od*CIvE&{g@2hjxM=C32JMb%INElW%Aks-byuW@C73c@3XZ
zV2u0fr1*64c}r*g$N`y4;*rrB{>4BT(J(Tz8qm_SdBv=AaPxiD)Afe5WzjbK#AbX-
z7?6HkYcF5U{Turi;C}+F@v(;g&=oPq@YT2=SxWvisB7;|U$}++J2VsNGB?B4ro(Is
zr1Qkov!B)6&05V4L$7i^aq)s)D0#qp&sVafvk5I;=-Mvghb{43W&B+m{GBtWQU1iq
z%zcF@+x(C}CVooxxg(D-7^Q-0H6Ffc80l=M1u7Rcmqp!t0i(vq<QHNBuWA03iL|^%
zb)_uKmSF-(`Dq0`VZ$Acq9OiO>Y-s0pt;%T>LCy2jYQkjm(W{8k9uU~Z319GljYYe
zLFquo5o)>^*5i^bw&0gb28!10Ap^98GSK;-e|RNy)9^P+(nhbXhoeV<AM+K`olj0=
zRK8Hf#u+KxMiybtBSJga4cBQ<Cg2={szVwZ$U0K|%eIqTMi7vE3WUkLW4pP=)L13@
zrt0$$vEoTxkDk_w)IW0Wf*Xka+??E-ck^>AH{^an44O7)rW_298(CS<nWS$o%V_Yu
zQXsvefT-{Kp`JPqTvT|tws<FP&u!cv*e4=EKoFr#h4Q(JeTQl$gy?tiJe{Y~_!~A%
zQ3Y@#x!<J!?2#ElGYd`ZaU4TAkRqOCm{-Ax>Qd0rGpxMw$2Ztu&!qASQ6`QNRRsDy
ziUsjp8XtKSl7o$FHdd)p#dbuKLz$s-_=jMtQwlK((Bt}|<ECt&$7v{s1EczW{HYHO
z<^dK)3D{%12TN68)UCR1^3O|g3~N)c&1dDJ$7%gRIW+ddl&t6@x?$rxxPQmFFJvRv
zpAv=6Bm^IrMzuZE2t=Xe4&YfI@jf<;!zn*gemC)O)9s7LuUIGIS%=g&4#R+qU*6;y
zYdS}_&Ste|F#53ZvQ*xlRokL!>NUZTub)2q+*4^4U#TrZTn8sXXewhW7^;t~FSDP3
z9LN7fq}|zUuF?3Qu=JHw<g?ZOlL}D~P`XX{miD2ltb)8ULVr$WG~SdpFz}t=2N1EI
zQ>gPfcVH#LsL;^iUVa^NlGi=<$#e5C$ppKk_(oBKJH+hg*E}NHhkZAe$^}x$TXq}&
z`XgD_4tV6L)b9in>F4|rEPyeQ+njq7k-zy%GtHgZD#fPe-s<!m>Q$+VF%xZ2;`4#2
z&_8i~L(+vWm&&_5G<Twgi9HLmZ^^^;5)x>U%(B1E_9{C8z0A{8Oi}xVihu1Aqchww
zJM--<>vpkag+N8#D=qAv$0q?W8&Yn#m^Y6KWbGf=W#e7`2#D=$CLYB6m#ZTtJ(wne
zsUA?w&)KB3a%F^5p`#ZAFwYWS@1<T=gf=2)yY65#cKmntfb6?Tn|{R6TpqbZ^)EvA
zGo;Tc<vULs@cU8}EI$!ven}I-V8yle&Z#=M#w1uJ8T;y&E})R)69;vT>TLo$A^=}I
znUA}R1K~6e=C3oX7xl+4@Pg7Q#$6?H!}+EN*TfB~1en1*g8F-dn$|L^ba71cJ@?Vg
z@|uS5&=O69Z46^qfB0v@-M4Svbeng%0S(-r+*4rca}#E~MYj8Bo*VGrjaO<2)>yW#
z^L?LLc7zVU*3XD)Jx1^f`JZkMF!}m8j%%u{uGK%5bIKF@I)O^JKQ*{8i-IGFZF~(g
z<6tPDrTPlATFIP;33P+axF7h+lNuP8n}4E=6{12Ft0rXQzb_WfJ+lW#&IN;b6PXFR
zKh?sEQy)(K1FuJYW>H7A8HSp^PGAaLoA?9+&m2l1sLud<mM^hlX2qq?#OzmJdV_gw
zRbFd|s?}|c2ac#?gBJPycO*FgCqFWc=)kYre@^OE9ol>c&PKs~T7CkhzKEYWyin9o
z{k72P;v6P4Slq)XyjU6b{)ML-ACOT3JIGy{o89c9SkPZd%<85czYnTnqB1V>{RyZy
zikW~<*i}23zs7o`3U7QGg1m-hc(~CIy>8|)Ao{;j(}uU`g8SFZt<ez$^+c_UWfd7E
zwoP^L56kJlFP~@JnDJeHt?c+Nlosc~^wR!$A;c}RIXYihwW?&58Sp)eVn|aRgiD6-
zPPJ85GMSI>r0l3_;hVGPp1fqh%xTgd=du&UPHOy%Z(u$u*~b0S(C7DA^A1sKaa>k1
zbgRibz<+u_2&>#3t%5w(XerW%pvQ!C{8I-lIir_g(xXQquj!XiSqjRvll~ftEl3I|
z-$-Q7NaJDpHb;_4Yr}fvjP4r~IKlGYE2B;qY*j-#g>Ub%zDLt1FgRdxqGoY*Un-`s
zzlWcqOUll84kzIdG;%ogsG#1c%_+=1YdBvObJH?FTAE%Lzc_v8N%DV|ECKOar>qY5
zcKf4e#nN)MI6E1vv_)6DB~OI!3CST6W=;gNtH#OoeG(>-R;<okaLsE^+Sy;bCKSu5
z@zVTr86QJV=(`i?3FvAS8^3pr<E6`&EbJ+u&1W_~tv??|2rw&$#kz|4VJ{zDE$n_X
z5XkuCHf?{$wXARb-={w@F*-?Vbsx0(28%5luZqK;S|TvCQXqtdWfiT}k;en%%xthH
zc%6O(a?F&KT|C{~s5{O-1^h9@f|6D&ovt$b@5@lk_;vJ6aG=Xce#eK|rpyaL1Y0vt
z>wfTd)cu_oe!(7)p)izWh6ij@O0bYx`sR`?2dm5NTeb`o0@nLV+eYaflpgG_5zN-?
z+Jhv{S$4kd@#-`mer~6{&etjs@PB<23(2`@4T#6@chc|t%d(3-M4eEJb4Dk&94EU<
zrNc{B{n)A-tG`)hPciE}$awPK6UzPuiXU3oM*`92roWqck2Pg#Ad^mo_x?KqjTjgB
z%2@O~s|ry|l+y>$?3-O%ZDb>hUdjfv%s&j&FnZ02^>_f-C{CyCc=gk3*U@4j7i88U
zIl1NZER>oVeeGk(G*=4pTB@%>ao2nkMWrY|&X{TFl|{nsj{l-{_o8XrrEV8@@&lJK
z<`E3%D44<~jFn@rdr$bNNc{FNHNbsbhXu9`UtZX;PDVUPOX-`)iQ%^{)Y#!gGUGNe
z@Ai59J4>p;qVS>E&~@VIEi>J`+;XRf7datlc1Q<PcS!pb;wqMg8x-?Va06r6s}=1e
zKc&m)*<asZa{-@{5Io?^HtTa#tJ2_s2&Eo)4)BM`Z5uM2c4dv7ew7#FPd*LJ9SO6&
zO@$f99-w6mY6GX$sSp!l{0qHAa8Nh=Wp<^tBsZ8g0WUT+5m0>dYB4V3E2PtulGs}G
z+<R3fQs|Q?h8`_iHP={^jAJU=P@bl;Syqni=%MM6)e2K}D4>`Y#S1A~fOVb~M0zLU
zO<>A~`fTKj!{+%<ENU<Ob>1j_TU?c_QnZlhJ(&A+_g)R#^GyW_2_k9x@V-^;kE}_(
z5uVE+6qU+EG$Pj;e~OlD4!NS#h)VwUb8+62@8#t^V(H_+y{^%4kF?K5)Pj{E^d#a8
z$$8A{*z^teT#KQ`HBL+p`&sgf)4Z9NW9LY|gQg14mE#5(u4IkONaxYVQ$i;scF!?q
zCKBUD&?PDmt%rsISg<pRYD5^$?kW|AJ*01s-e+EomeRX+OBHs#t`c{w{qW^Qx>bdM
z$|}%xzIV^uNWea8Slqt&;9<7E?;gNMKLL<*tYp^k!s_M$2yb0G+Z~!woZ{$OO(n;T
z_)TnRo^9wu9Cmt`;$j?$iz#V{hXqHvgxz%7Dvd1Cy8j{yo|HOR%v+J#wAk~OY}-%0
zwx3LPuh$x8fO)5#;^KV?REwQuFx_51l#}Hbr<%w}6$$kAy(<eITN$?>yFZixj|U_7
z5#D{)vi@>0%0mG=r@aLwYmmN>No$bFUZp*+n^=hVLO=@-xHYcsSMq=&2-aE<f;07%
zQmV)Gv-@?{Hf#OT{VzmG$+qfbta?GG1gV&t;v~`pFTmfq-iqR$m<%vlf09GU^}IMp
z4?RHPl7eD+Y&b;f2f3_OBENM+dF}FYkp8Bhlc{8|6*~7EzFmLbAa<hD1R$cHej9?O
zvR?!lM=`eTp-X%68PHr;A4Rp|p6U5;3dnb{?9Cz!<BI*xT&4h^+e$O%sn;GHF>~aT
zq&P*?<@0%&A4>fRMBz)LpcsP#txSM*A90A-6{>n&$t|J)N!~4=5+W6USGcEK(IQp%
zqIdahLTCWQr#lq9Znv#n4M(rJH?T>AG$C73xXjLmzHZ<A@XD53IntKZ@h<3HKUcA=
zIoiQ|MR%MT$~!T2hTnSzTg3|E#SxJ#BlJ5%tBxQ*{xk10KX-6gykZMw&h&rJLFpgi
zg%HT|>&Jwr&?5VMfjsYhu_pgVmjeYhTWH&=><eI@Th`7cTkPGMX#=4_E^=b;_u@;9
zpYd^?m)(B3K1%tLin$UY`_jWF(8Um9`V?H@l$G)n%P$R;tv}O~KzWA|u1jtEe@B(m
zzVBpZ`sH(cZG1ECzD*@%M|T-|GgSDdBC|qti^@xdLqBHU2dH$L$>QC1`Ps<#uR^Ce
za!Cp3$oG5n#$N?g4Fp_RpiAD?jTL$vXG8Dp75Iw|1Sq{z1`6$07jLG|TJ;HQtv6w#
zXQ9}DO`e<1uqAA5g>6dIptuaVK2u@(ppoBbnZkG!(Aw)d#9LvyGf@H2^TS*)VRgnw
z!QmJ}wR3o$*ul~>bXNW7<Geku!s0&gYI6YxC(MEC4q4&NPtH#M0x#$vnl%ENiQrwv
zd}=(8kr(df_G|)hwa(2|Y}bKc{{H~3edoEyh7l(r(LM2jz@-edh>S<d;VO!-*IG(g
zE+FV!R^tc4UK54bu$KS@W;GAEwe3Mc@HF1yU(38h!q#N{Y+y&=^zn`TYUYo#T?URY
z?)tzB@*HUVT*#Ocn*ViA0bxftHp?nypB#p?P@2QV6^J=7<bT-pc8aSpKt?goy>K=Y
zEH>9L4PW#M9>o9R>Ov0KlX7~0A`5<C@`FM%Ee^;ecShs-`!jnB^jWBdRZxCBRs_w#
z^6fdbs)C1?+j=0ZApY@JKOZkz*b69Xen1qtcQto**8pTs1qL|2+&HPgI5G0kw;Ozm
zaf_E<RV%dD;R0OH=>>>kJuzi_Kn7XXi_atty^2Y$(pCoxoADJAU++AXM=Cw|2hOd`
z(r^Ro2$65+%spMxP}Mtzl|!yVqUYFh_5<}j?+Xxddki^_-h3~`>J_1UGZQEg4N<G<
z9@Zhw%+BUmPF2^3a{3{!lD1%?9^zB??wMsL^Gk<mP5k>M@5NXuG+1f1W4MQ#m!t|0
z>Dn0fX=9Oo_g_M-OV#-vKU@<UZ(f>0;S#WO*hZf!lTp;)1Lr%li1y5OxQCkdNVO7D
z#gdi-<%{*igf4$PG#kBe+r!G1rMyWvP(9D@po}N~S<3B^ZArF3ld}om-ONS!nE>+U
zf|cRhh3*B49rm%&yOUw=^q*<i1#8hEJnHhHDpk&_<5wdb%J&eu)9WH&a;cQ`53>;A
zRH+iv{{F0gHE_WY<i}<OzNYzsl@FUyJPoZs3ix9L?+pyTksaoK^e>FhgM#yE)_mG;
z_xSNVsS85oGWdu?$=h?a<e}}_c>27XI5pSGCy2pSlznaOOd#;7A13;c30@RF??v>y
zaEdD;eWN^O!rA}{S14L5&q6P>y+Xe(-ohVFk2xBic^-d$2B%;O-6e(|;PhDhJ&?0&
zuASu8?Xv{M%fl$(*6rDcXXmp(+m8HT=x40JZv>hhzB|1g=ncgPB?Mp#zfdSUc&x@|
z&t>1lpnz9Ctu~qT(V{Uqa@ji40K*(0L_Vm~)FW*7xAfG%@OZBc?Gi3!yEBb|YnA3x
zGFg>ZsWxpci`%=X&N|H<&Cn&SDqJFGH5bC-T?lJV{(cX)CW^?<waLkwrZ*<>IMvSs
zX_4(9?O)9gw%5PzynPzk>ua3EFoL)`V?Wq~X@A4d%P|1zR-XHv-CP-8zrlREYP?qr
zKjXqyR*BXYxX->z(l&MH2xpO5J@$$G^P**7d0v02Q0q30$0F0zMFbXh-TdaHr%vKS
z9mH*J_<5#N7ABf+mCKwlnm<f@qTx1tMsMbw_v4HTw%#-~xN=qdL+Qsfp{4#{Kh*AL
z)+@am$Y_qe8mr+RAm1Nuq44(8As+{Nrm>U7Psy&F%zyTM4yCL-Ah)xJdiy5OQ=ddT
z-g|+l)(>;bhlPIL)gZ0|a75=97-61muk*;x4I}bk>#!{R2HOGHobz0<Q;5gVa<D;P
z5-$V&Xb>BE-+ne}Tduc`GA{u<RH&FuJ02`D#R^}<tlCxki22F!^cer%jd>`i3`d*w
zr3L4F1QRJ-UC0>4OTlBZ7O_rAGuXJrR!mkt<h4!yU(Z&uxSUKvF1X-<%;m`Ivz1}?
zdaKBN{!a+1;&fa8mB+GnR`;S_YXVg3A)YjlcuHtxW|&XB!M9^3Rv^!LpC*~3-Ahg>
zw=ZioNC`?PJSgbZ@{t00)L~02(UK*$+%SpMhPANM|5CzKv4rPI8RKp#=}}iX<8MB^
zP$_O2F``SB4KH2~Vm-+I7npPmnYn$O@3HkY0gE~%S$aM8s-bg~(QeX?!;wK<g5}D_
zw9j`P^1#&XMbc=s$`4^n<y+}*I+5CcKoX$d7hk?Q$HHbL*BW~LE*6L`T|+&;9<*cs
z*)VXa)-mskC>P@J4BHKmd{CbLe3FzStm0^CdW|N^jQgmKBH^>c^78=Me@@nIY`I*s
zj|s6rEWc)Y`Mgd}#j8s-b9kmiu;>@?huURxw!)*#^4#fsk!O{Fq$o}^yMiXzoAulI
zV91j;fAtc8BlhY`)ohy!IM1$nl1fc>Du+|OYWA#DT?YY55(Ec;CUz%w40j-=P-{-;
zWIm~mo7`gP2%$v<3#yLW3N)pgyt9!`QN_kFaQFh_*g47mlWCBT!0pGqL1!Q3?t^kh
zJnAl)8!TCkJ80K$ryS=$=ggRB@Wu{@3J_s)UTYXQJMsxQ@ff&kD4bcONin<a(5zhJ
zv~--g8G+g?Zf##_`g_e&FdH(y@&4}i7SpxL2Tn;8Pi7LSH{_M}`@)e(&O)BIa{3NY
zpFP<&E+|6V)_#e=rz{Ya3&zD~hM;QwrF#iVWd{4o)9>oU{}VRj4oTf?dV%-s^uj};
zhglI3(^u&~2zN1YrzD#<B<nV45N{8$9D#8XssZ{6kezjTKLnW^GY>^4J`8%q8`5ie
zVf|Ms?|iqn6+I$4%hdgQpMTs)`B3_t>G6k_ueI&{Ir{yHl_qlWrMcb2Ddnfn*htTv
z5bO0P^z{9R&>%oQ7^Lz_>Na(TjM*=rpt5%nh5Z`Pui<xKQVD*=cUK+LN^?WrB)ju=
z^5+r;w0j(f`TM3e;vco^y(Km*b2_yE*#VSL^?f?D%WAEcN?#K*{%mLNG&<fB!puXq
zcS+H7d6`hgG3JCx#tEAfJLU(|VyJe%bttSeA&%$zU$)+|6MqBW8@0L96dOQ6bh->1
zhnj-G;<NO6-wHI=!puP5GH$UEptk@|LhfQ}wwu(jCZNYJ_bL)SrgTV~t~#vgL6fXB
ztNc?Ua<;iV3-F)7TE}t^H=H2H`KP>f*mLNI;W}GYW|ZV)Z+QW+)*O?`*g7ptktZyD
zL$fH3skszHYATsRg+9yKeuJcWbe4!)nDtI<{AIqe@vUW@J2g&+R&N&AV?ew!@ai_D
zcK+8`$(>WVe=rlMGpZM|_5Bw`e4`EGKj;h4^+vl~J)Zru)NtJ=m$QEBM5TK$@mJXX
zPj)#DIy1H}15YF7;jzuhC*}XH+n8^thIOlIo_pec3j(q{4#?J&%E}U!3;Pv$DDtfI
z!$&n^hq*X@&N=CtHIGDHl1`w8AvPSW?dh+p;M8g5mx4;I=TCBU(qV0QW;rt+W;jJ&
zLGH2buHhQsT<~z0Sg&ppT$Y(ggINL2;-9~wCs{wo&TjO}d*!1dR|%xKgbK4Q>Mv;;
zU!WxK(wkrGS^07o)SgC|ugjk?E|tKqt(4GNQ!ub+kJ09?#WW1%j#yEQ?C<?n(UPw+
z(GQMao%2|tDag2C$huj6OS*5%&v?QU&*KKOUlU^8D$%eQ9n~72DKq*ZRsZ^SiHOz<
zL`l2`A-P0jqK^kU_3TsH=O=0$%J#XnZ}?KA&f=xfl&MVjbsu9}`Ks=%2#|x=LKZnW
z_R<Q{81Fx!t#&Tz4}m<3ZGGv_BFMh(FPX3^Dj2|P_Pr|dVZT&@{`pOfqzw@+e1|xC
z6DMb(I_$ZJ?}B}2Fp;3I=v9NiJ{I4czbZ}ddVp9C9CdShBYg%}N0q8pQKK7xo#)&*
z!3+i~3cxL7WLq^?&fP0v#HbykxI?ED&R35Y`HYnp`8Kg|_?QbdBcD5PN(N6`p5d47
zG)4RLHs3vS0iF=!ny@$D&4!C-YWf2Fydbf`a%}87hg#SeaIuogO)?REoW?Nw6@pHH
z%$C<0y!L!<vnBuHn>WkbzPYoENyhLHEOUjxhO&;QqDfWK*y6RY;qlGJtmjK7^qGgm
z+vA(-0Y+Hk=h6sdRtTZ!P*I+TYfx$`=*!hxZ-5vN!yAgp^cP<{d0N6Z0VFH8o}8O%
z^G->;cc!O<yaubyuKy5~cb-$sHlF>k+MQu~i)ry9nQPk!R=*H*Qoh@=9e|hT88H&p
znN3P^EfRdX{Wy=J4kK2pl>g5XmZ4vhVrJbmy_eKH-bXiBw%%dc{pZ;E_|^OGk!0b<
zt8^LA9D~!PEV6j<1^6A-8wcQ$hSYukyy=goc_NqA7YkX7Gcpq&$b>lvjc;ihGj?Z6
zRkGT%+>m3=;M$BV_J&sVsxK)%5d&v;iG4`4jrPV$=RJ;Im|x%W4HH$WuGyOfSp$nc
z9Q~tL;u%m)DEO}`DFcXL4YNRyq&WN4cHH&Yx$~&eH+tfHxt;jm-g#sb9zyAN`_b)3
z37}D`i3-CcyMjx#hv4~^f+P43r=7a+1wlW~?L1D4Dkt#=riP<|C&D&WuA8~Lz3aD8
zF15<<-sr>itJQAf9(aZ$T)(#%D-zjNvhAd$Wpa6cuB+{;gpiZf;in^ER#C%#RbL!l
zepT6F#tl9k<km;Z@YK9pQDEf~|E(j!xA@_mrxPBM_(^^JZA28!&i!-CY+9!?vfB>#
z`VfHqc~|DEs_ApN`gh*tV%~Z`wx{};3}VyL*S{)N^j=U12McdDQ39^GLGSe)+8+%e
zy_@e(nv4zjO6S`ZsNawT3u_(Bft<G1e>*Um1vGevr1lQoIOoK<6qG<3O=*vna9UY*
z)naCx`h1(_YnCBmCPW;1(fc6XKdAKG;-y&*Y^yU_4>sA^VY)%oYc0i+CH~gK>nbEj
zy{U_El%ke?OWYkaYVLfD=5xB<Z`lkt4UV8wz5iXT*|+y#d~BxVHSHEFX-<WSuY!H&
z%Ep}3k*^ht#lLU<tGgbw%6}*%8-7J0wq~?O%o>l2_e2iop60ZSh3C(nC;uD?-evh5
z>!lY6k)(z0LEQT=&9tCK(}u(GP!A8oRpi;#lM^G7^$&T{Y+|c1XQ?Coo)3HV-(rU^
zoBQ~C=Mi6K&A7<9_J?ga%eZn@^VCskfnOHfzRwDI%gxQ-1<AeO`Ku&|m9qGZ*;%-0
z`}oZ8x?mRN(A)%)pv`<5EKuYte;1@AwM!N2ziYBQv8Q0DC!JF?O24!w>mUsOF~>8h
z$F?J%RrF4m9r?EWMy_3{upm5dYIc!GYuF5ZG!eQYpS~dc^XI=)nt8#JkXnz6HKS%t
z;y&=qOZlgKLo_NA$UlL#9HT+yo6t?8gA)y`vG+_HZ2pDv#CHT2cZmca8-^D8=Lnrc
zX)Y`HV2MWB!)HxruSOr2T|8)X?l!#~V?cG2cpP*eYF7^Cf84WsE5P$*p7Sqf+Yn?k
zqhQ0*Xm;H1@Xa5!k_ao=4?RVX8W-3-27<cNXDLY%b=25ex0lZ|cl)s8Pr42kV*MKV
zPreA0<f<Vzb-yzux;9C&>h@;wO=~g!*+~73iK2kB5UH(|Nl#|`-|GVI$i<p}Yzkh;
z25P?(c`*5D==L24F?--te=~5Zx3n2a*)29zXXv#lXS>L3;l+iPgB!N_chV=S<WpRx
z_tMjYA}PTC8d`|4ehut$$imaV7jupVsnTAp=SMoht)3)Zx~19?mQU;wM`{?XeofUl
zRwK6@aZHHBW~Qco4n*{JK9CBO2Q+gQ(t?63BW5Nyk}2K<z`Oq|8|8me4&5xa!^r2r
zJp_t>`+=eqjs67vqP`mU$<O#}*v3@r%E9BujbJ#%WwX<I#|(W)c>ioHXcuZe&YPD5
z^oP%Ha^~2QLwDi3gM2i&8GGK}Th#~+6eU5ZQ(n%N-j|qVWZ$^>3SsXNK83`h8>mz?
z23<Z7QZZ^DFSPVY^dh^@bB}d52u#-=afwKh){D@q=8Mqd-D}kQK;!QV^>HII9X%t_
zmRB}3nj@kqvk8RHilid^_S;>YlUF#p^KS)t+$5@ofe(B{wtnyS!*++Vl%Q9W=(TT|
zjtBlr*VQ5VBo_Bp&yZth*A-a|eo~jwRxP`N59kMXVbTI?i=|sG5^nV2NoKZg;zx9g
z$foPXcGCf+iC5@vHeRxmyr%J!xYY#O6u!mfTduXe)oWp4@j&mjO!`1vQW8KPJ$HKD
z7eTB8yo&q3LbDcJPo)w&xAaN$uq%u-$B~M~>RtbTJ!f=RbjZs`i@IL?nzhtu_v?dA
z*Lw&}SMGIxUbB-QUo?ic;}tbPP~0YjdbO`*f3SEqpSdzaEp;0af(&Ix(06&P{dQ#>
zrSFYGBf>Di%b<|)7<&&e(+C@U*FMBe%x}Gi3S)C*sIgm%)mNSg<L+YseC6N~pKY@b
zi!{0NfZ^(-ou&u;0=@cx{mUrzkWTyA*IyRBk54XY{*1H)&#*kSwE40B^C$g%*moXb
z)CT<--Cus4>oez+DXYu!0v7s%1I-`boL<H%JQPMBN4nJ1OtG`bu*1hQD9QaN@3m<o
z?wS%dxAy`=-F=#oRT^K*AD>G_6#ky$9#9_o&9i8Ke0X=qqqD4i7-uc5@Uzovm5q~u
z3-H)>ZJ^Grpj3eh^ln|w=AoIBQte#-yWL30tj4?&pxG=(9yw~CyD9W}0AW!rivBbl
zHMfEyLmFbMYMsObuH-W6Bms5XVgM+D7Sov>Fv87?bUHKIGTlQ>Z}-x-dN4|3MCB2C
z|8jQ?$+X7p>mkLlAfEL${zxD%puodC?oW~;9XO6ChJHulALt=kR_a|68`6!s=G!N?
zm^9UuRfc*Lj4Ms+HK&>Cx0}apJ3+T18{&p`{Qhhqcno+Lcm2G@g5CxGt(KNU&&eDa
z77i<SaToGzt_3?XlILt9rm<dO@leb|GaI_F(|k!}EdGY|&dr*R-dDjR!rFyic9*?I
z(Qylf=f`Xj&($K9@|7I8_cv|ktNW-bFlV(gw|?w`lFMbDZP?e=V=MZWgqj_du*1ol
z=k#KMfJZ$7i(QkhtNJalQfdZb#n4)NzWzC5l<Rd8NngogwX)Kmix>5@B$%wqMu%r_
z1U?Lh&AvSF!OV^sucmE`^xpBrcfNhI2gYZx^d9?g<`|D$=-Y>$*9D1MdDQ!VM%vv_
z(hgj}N|djT_s7DH_3>7hIg?~xbyW(YaL`07dDfq#xgE~Jx$i*Q?e+$)S!;Q_<BFgh
zh2`uMc2M0yLb-}<7r(N6TTf=_(U|zA?ai!m(c<NBHStx9qqP|O0Ax>p6^H4#nXjF?
zra|rgJD~uL@_(=Ny=NN{|Ns6t-lKfs!}DLRiR1ZWVi}4khl(+`FBdwYOLe#gd2Yo2
zK^87mAs>OZe=bI4LPU`72(d~kSe_`+&D@X$p6jtN4Z<qn%Jxs#sV$!Mq<Ilvb?#o>
zr7xdLC^lKyNvNJNF5W&%t{rGTuKry4ujhTA^T`bkq1*E@UU{SO0!VN7@wUZnF=M$S
zd*4OP5PWw=ht~7LurKqaHiXXd+X1GWyBZ%qhyC!SFTMpw@_I@?R_ko=OHEjPGEk2*
zYC}t^zrW3(@Mqv};Hi;z%eD(?*Y;oIh%Vv-=q{1v-q#uO*CVb&pm^E>A>S3ZsZht|
z+4Hz@ADCbj?=3IOr_xD@KMSv<1kn=71GJc1IE6ZmS|j$mW$YH2PPCur?I1fA2LlQI
zmBWZoYqG>p_r`a|g3!-k>qy{s0?@Bsac;nU?leW@Z>okSS+hr54_K-qk{0tJXAoZL
z(V3nSV5?8{|C70_1hCI+Mlrm`+r@2|h#~mXO1iavQq4ab7_X+kN^V<ljBw<sCI+|0
z?)jKXwhZXH>yWtr8$pt%&z34&ekT47mEKeCJ^eVkatpXs`#5isf#^?g`~-2c=4#ya
z(l$~1BOBowwzX47@H$qQ*`{c0V+;<#RKW-9!ihn)3SI1nK}0>C!kvtW+jc0Rgy#8*
zRYqtFNy}yf#ThvEK5RPkI1_;tzpU4~rPUuJH7bb!ZgD2F-sk#1j}4=Ddo(Am{*OO7
zGz54Z&jmD;I`Z%pN419m@?6hKM>VH`E3#iP|F}>9R8BP($^shqU#t`eCzm&7&$nU`
zc`EIkD3Os&c|Hpft?%xDYdyJaE8Q1gD-~6H(xyH=buz|82KXZH%F0APVP~%;YJfyO
z{O0xKjfmQ-gw=;g%CLi<Ju$C-kUakP!V!xOe0r04|Ks*bQF^p)%oXeDeE^Gl@qvWe
zkNi6rnmRin!V(F`1=RnJ3_nLX%jwusvh~P*TyL$~r@g*u=ySTwb<3X_^2_J%pJp3Y
zF|C<;aKY=GRxM{6BB#*+o7t%2A2!-d!)cb?UED}L>_?eBhnH#gF?redaXU#you*_+
z7e<*d_>{sXUluS*af$)zdEGU>rC>)7Ft!#5uJzNb5<B}Hw(A6D1+BZx`RcW$|9zWS
zFP8{D6)9$hcoJ8aR7W54{Je0M-}R_KAFiE+9O7{1kC75~tGYE{Vb;96#J2-D`fYWT
zqCc^`$HNV?H^fH+F7H$j7_*Q&GW4mEg6{ZwDZNGW0|9&(^QIPi<v+3)1JC>*&Qsja
zrM-6$WuRWH>4d9h%_r+*f!_<lRWZS}xEf-6%6~TMDHW?9Lq`I=2F8@7ngRW6SE9?%
za`#;d4iM@s-%lm9U=!ix7yJ29UzS@;1v{F~$t$<M+c`2(Vsj@{ClSGrwOjQK>g6Jp
zA>Va&gT7rzb~_1tGC>gk?c;*RQ(r{gbJSt^vQK`$JymF7eS_AQS0shwbE)V&D*v0%
zb+FP2N~ZhI1>>0#`OGWgX-c(q+`G`iAjGuO>Jd-RlOJZ<0#h>iL^o~RYF|Qiw{#0g
zX&SPl4ifT{J0lG8yW3LR;no1Ep2z$Sj3Hj=o2%AKhLDTBkd*Bi3Ew=z{91N$B3i|(
z3EAE8H=#Mb-KJcz9z25JuI6%v5bHn}fALDABW31wh_R?FGTcmdvmCLNdCwWmE$XOL
zRk}XI1ke{10_m5EpGO$QY;^1mB(Af2cEAHLkNu(53V(yR78q@kx4#~P^|4=$7XoQ;
znMy2HnI4660f>o(f&}7DoC-wT4{a^|cf3{Mfvoe#k6o`aU1Q0^-0@>F1jk#?%=9Z+
z#;CI{H?ExbVjdKQU`IBu9QDH)tj^}Krh5)6`5&MC%eCBT2N1>Z`atzSB_qapG|V4B
zGV{2LWmXpW?Li2&J*yL$zYs;%GxO^TU4+ps0gcpWHqV!RgKdgn|DifB&Zho0wDNkR
zs2BPV`Cm+)-jBC1cK%#zc?+6$OJDYUDTA1Mej3?oae=!B%MmrOP7N?absYQiu>a{_
zsQ!wrXxSkb5?$(#>y4uj((kdNQ(Bomua#1C&({CMoMO1&EmK)4hS^Y9@BQ!3L#UVP
zAobkW@^ty3r3o{TY8A^z|4>iQOW`=iUMY1DDO6~JtgI%;un^cusdBd_ipK^-9--z*
z$*wK&$Sh@bOMxnnmFSSu8JhNkSr8|?<5nzZ!wzd!CR+%XDfu*;)#{slvgs6it7)6~
zs61f8Os5)Z=MLNttl(xhbH1qm%{JoCb}muq8}W|#Cq-U{jc_ISJ38a+eAZ&jP{ZHl
z#Rc+WP>iw@4DY0DLOM6V1MZBGX+ip<g^`lQ)nZc^t8bo{BK8sG5KS!mg-g%OtgxAS
zt}7;7L;5?<QtKT+uk1Q9s0TyDKs(2O5+yH-m>=kh9M03U?eB#%?%>LDJ3)!C_&e9(
zgUA1U)BHd=R7j+CgF;??=P@q_&j=xnGv%9`{d3#~f+aJ2$26h09sp9xPe?LnDbuHg
zTPfpi_<HNILy$wYagI6beE;n{?+l9$@=`R>J}}gwHb*XID#zc@xOa(>5;h8}hN<Uv
z(v%$%r3U%VPA84|n!=|c)FYL-FZmtJcY15XS>>~ulG`M>cAQJ-#PQGHU2TP)Y^>)E
z^YW~*HK~zm^dPFP5B_bZ)#&M1#17M^aEfzI)=3p3b&rl;g`~a<VU#H^2b<o}mkl<3
zhK8;QnL!6StVEsbubW0tK9*CrK%4pxNB%tVhkqZ$Ef@Xz5Sb<^>uUXsDEUcF@^_S4
zw_n)K@S_eq$#O8qPED8Pb5xGPQzpUpAJk<ZzRlNrC5?aY4dqi9_De}#@1Mg_gI5=0
zLMg6WJ0Nr*k+<LUc%j43Mo>p?)p31Nvi@kwoukirH3MluZR+$L#@vXX!|?%&aH+iQ
zCWkzEoTaLvW?+>dAX2xe3@n}wd*)F<g--wV34N}^C0{L2T@Ee^08iLR#hvm<-~$fS
zB>|Dceq6;68)@%v$9C1FvQns;Vf`hcdK+!y&SBhB+}*r^TD!KMR$JYwY4#T4Pj$y|
zpo{v32JF6m1oJfAxRr34;yC5e*X##*6{YZR;B?{KvOL}~ulmO7D+JkEj{EU;?o@pz
zses<JW8u=3$%63;c$`ln+sh2DZq_~ctul2uJ_H#>d47)xTJR-C_y1lpR|HZq3=`%q
zncvzbi!`0NR0p;7SR#+06S5b<#vyOgR_8UD&jt0=g8MW{tt>wO8#(tSLkdqCZc@Xu
z3IFMry-oadI;mMaN<SFfG>{g|<97=%5wuxsFvwkdHg&H|yCTgq%C-kWiCoZR*fHEt
zylmE@CoxJ06N{A9Stly7`1Q|Efm`eCxdhO!rs3s7(0EG!a#(uZNrlO$*|QY#+XjZH
zd5$yI%>NQtOU0#Z!bbL1&vMrPsS2|+P>{Sh|8xDGJV?9H;LrO=&ivFzxWicQTXW<R
zW%$ZK{MXB5t-O0tib((3!v}4(cJhzDp%>Hx=gQTRUL3<vo54J)wG^am`^r7Jgi)4v
zUOK5O`6P%M$2t|JWV-eFClv1YnhFoY6aZf2n84w9y!ysxPi?Cun*DkHJ9pUo!e(i~
zb~&<pt%N9^zXhQL@vTJs&ecil^<ly2*jUORw~zZ4bseYkV`=zveL^liL-~^NGG(_u
z49BYcMTzCkf^|`{v-}i&*!6{ff^xC)bwF6l&4&0^b?Av>21h|$bsw5==wJDNXx%UC
zE2>#b#nG|j5BUWJ$ZdtOtJ1hL-HW4n`O9VfQ0;vrVciEcMa$vZg70R@ZS6gl97|Lt
z<c1z}^86)uH}190?=6dm9+;hU^58M29q6Nwkh(l<sVz*EfLpv_yE!Z%tovU-C1%hG
zBdzCbH>3WE1g}n9lrF#WOx0Cgy*CHf(H-!*J}1xa^Ignpd~?a4u-E>QG44K}HK8I0
zwNQ-6vwoahL}gpH3EE>euxNxGp)VVN`FqcNh>SRcu?XtAv0B|NvOFrKlG7Ot@(Qu`
zU(+_MDxT||h-}Lb2b@PV@lLU?|BjkRWX(lX?%7E`&E`c}0#9yRb%holbAbR#Glh;(
zbGoIPVBIfQ)=*l&sJ(FU)Rv5rU1OHc#x=@z7!Yv51`@e<XCv}rWP3?jR5b$~Gzd$*
zG6T)f@cl7?enZi!c&*sh@9#7Ya4m}8*nE^*{6BAuX-{+?vmHOYKM0Yxk=AyAExa{Q
z4yCedxncY(c{_`~>4D|xE0Jmb`~UH#e&By+Y9;IaKLFN1DZi)^02llmCYKo;AxOe!
zIL%rnAx)X8^5{wFoV<KjS&(J$mh<NXS`>a!;?LQ3WEL&mv>+SD+NENeAL>kdLK=)b
zk@Bn8ya*q5smZyzjZ1z3f4g)3Av5ZX$;U4f{1S44(Fmt{)rDyya_%t2it+9L8CHGK
zvOtxf*C5(V?d3b8R|2q4!h>I(LdAEo7ES*-1M6zs^Cm|LT=BSOuuGO~f!rzk!t^{T
zpZ0PMRSUK8mY>ZbJ2uVGDQNzuyN|p$Nz``yh71Y>!y|{k1|eENg<tH?SnSxnoFT{S
zWeGah3}TZbLFe+~MT%`%*2X&yj(+QYUa=^OJmX9_d>VA_UBU5^$8wZK=?Z&=9JxuI
z*z2TNTP8K+cvW6~d3h=J^37QBvVGB)6?tJ`YKByx^Wt(nAq%?%4)mz=X0L6o$iu?0
z2YZck$8;{(2s~&aS8{9(D~UbIVw!)z%>Xm145~y1bkoasTKk<;rMgjU{?Z4za<puf
zd&OL0tn%_r2v9eEPM0HIuEl-}p;4w{D+u1WTxId0n}HbtVUg?Hxa51C8`cS#fNHPe
zlakt_HjcBo)%yWyTsZisW}p0WO^#Ktb6`I6eQTcuE@!u9GrM!Cnp}d9a-FM>GOY5w
zC>DMRT`||(e#Is>Y@m@4xh9)iBpVaFK;Rgh^h!YRFIV(P$<?v0tJ$MvbL`9YJcX*S
zLcyPEU{!oh(7EYpH9s)7-FWGn;66(Iz=@JmUY)S1pqYC~d@EU&LJCx0c-cJ1g_V!%
zm?i(kY*3;xlkex)mjB=M$JP(JcF;vL|6S*zr5u<HQ#O7?J*2H42n#LEcrd+aDZS=;
z^8eGaXIxSiR=O^!HDsEQWuLWcGe@+PdMYxqY*D$EWS=HW02ZH7Emf7!Aet<5O0mdQ
zGmfX0#a8sz<=CVpD6-~|Ob=ks$OtNw@cX2{r?wKqsgYHinp}AOBG*=V6v2w|1i2>i
zjN#Sgp8Z~>A5YTzEG|c62vyzukZfTdvTWlNkJoDy!)tP_I7ZWn<XoD8nFbpm*Lg8L
zK{kn6sj>cEkFON5R>x|Ygpy&LLM9X;%RB42Rx=sHUNo>Qi7L>!W((4d{psRe?a<|9
zI!~$xO$rZH3p%)A&^4w$!4+V|@rKQ~>6^}zS1+kOqt^oN&%S#$T-7;XIxl2YIBGL%
zn0wXlO*akXpC(73u=zu>mWRDTPt~Tk^$DXOH?cR}=&(&wGPz~7yAtg&HG3+-59p<F
z!U{QLd4UK))L<hC=P);9WB9dU<2kN!w7FvxLgcosK1lDc3>&`cqf*NvhkdFjB)tYY
z4A{g5pdY)}1pQK&OL(zsItLaJMs3(^yke5NJyy5Jb}yl70oO~WQ#`ZOr8PVzEa`!w
zzi|68?wiutYlYks89#CJ1Lha-dwT{4do;Nw)45Nc<Vj=H`SwZ_tIAlmx%CQ=HD792
zs{J3lm-3oR?mZ=cZd8n?44;JS2Wt~7DLmr!xvvmXYBmzb`%m*NcHI8&KE03jjHq52
z!d_`b5J<*DU?i+INZ(#a5<5g`_RawTTZW|sulV~(li4h@SprDg;*tN8cO@i}@J5jZ
zc{l)MNiUYUZ-GA^=b-a-T|Hp$=eGb80{CYHkUXixGEe#UymrlPBh;`hz$VotIdzGd
zCWjUGjYq1?53}FrE%5#R`B?(p@7_Pt^A@an+V1Dqf9+c&#Ln2P;KUwYlmE$||HT%d
ze^1}~#<yf`{+(a_2E}GZUv2lwf%`xDv%lEnmFcs`NBZpTBmLU1d|R$p6Voj{Z^8K=
z%Dd1{e)>86)?fb(`p&O?N1I}A?>8%NV&Xx~9Tj+U<;$<$ZTR2HCZy2bZuifB`}}8L
z(zm|;8UK*J_}N$6Cc%69%WVUK_4^y&_&Pm2p6OS9<y(U7ij8~@_;XP1kN@=h^ziUV
zzy9rSOY#}t1#eFL>Gyvi?<sG#7n=(<H+gPX$ito;vcWgEaG5nZmG^HVPcBN~8Ep1=
zg$=kp;v8}|e*ZD21AAVnJqv`b0rp0@ZCKfu>pVAF6PX)T{p$+sBerZdQ(I=WXD3q&
z43>b6#<_+7ss%i|bMIiQHlEtrmV=&WbDAbsU|S=$fXA?1v6)a0{D8?dViT<VyVNq!
z2{FkIo4v;(-bevEp0qAk3h$DJy<l!z@3>K}Mv)$|NuW858#d87bh<0oa4!-Y#dtDo
zxHp$8u-moGCSB){YiF-P?s2oqu~F}XtTC?JYtZ?Mq*lUt&1US{mMGxp_<EbKW`Aq`
zld(kqYMJ{M&_9Lezhvgae=a!Ik_0LEZXSPPdu0DB3^1Db!M>k4{hv19$=82_4JMJ1
zB|PHyc7ByDV&sFp+FZKv17R+4Y{ujo{k$x9q*vNR-5)8L8Gq1crw4$Yu=>t1FOvA?
zzP>s4x0{n!onV3Ki?&zv1Q^DpiNba9?97xto?rWQJpdXnbPc;{8nCME_e;+W?u~O0
zBw9ZJ+Yvwf4OYjdeDF8e?_neAx$Iw(WBSk@06n(Y1E9lpgH?IV?R$rHkfX~frC0Y>
zxZ9uL$OaCvtr~3T<k~pb<M$hTEkAD$fKiV3ZD0>8{r}nf*JVqV<4h3qh|IP2t~wXo
zuLJ>-)?{;}8TFWKMk9@+9;w^LWO@w!(L+ckGd+r)LqA4lQulO^H0t4{n*)*{hz5u|
zaBy%=ovOXp%8XFD`{y1Wv2yLbs{lwQ6c$-HJ6EjC{L;h2Gs46DbHjRVEIlH}Cv&Vn
zBG-LvqrMJu9FKEL4Sn4j0G+-*h85%9YcDLVUcpstV|@bWs{b|1@dDe!wH5aDGrw^y
zg(un5;kcKhj`Q@$*m+%h`r6~1H+eRX#k=on4S+q)fBtI<@1?FC*xKS#Bfvg-btfEu
z`m2$P@9q6mIQy;U5C2D_O)A}P3$P#kLS0#!-bu|SVP2$tsuT+uJQ=!i7uwfG*CbzJ
z?lEB@U~`ciCg%K^;Y75#hy^1UU4yEl7SNVcfz2E=(`3;w<n83x6ZA{lvwE=feB3KP
zhApwIYLCq(ff){~RlQ>}HgRuCja~`OiVe?}LoJ1UY#N!mt|n(V_IPaAI)EprPA8J&
zB947hPfami^$aI>DK0l2ILjV3L=TITaIGCSLZ2t=^V;NY8%udg9&8YGV#KzTAXoH*
zj(c@ot~l=dG(=FX)g8eX`iS4VL)F@mMZo9E^-_;bSlcM~`Uq^Q6DsW`Vyi9nUi7iH
zv6P?_>xd2ddO6lo!<Kt}R7N?p@5=3REah6<IsA}5N=8}0mP4P`N9=(1Imx^2YM%$J
zie0h#vq2wM-&_d#m<V+ssFSPrskAq27ww^zLc})Ofi)bDeQx@=Z==*<+}o(;FlB5k
zRK$ot?vS(T;}h(FIN7HW+ZFqXRp%VAMH{sS`x$j21G_qNiCQLJv!^fbirAeWf3#{1
z04cuQHWN4-*WUM*Wk%6nq9(wcXLT%Npys5sfE;ilj+aU47~4QjbTf0nL!v+Y@{#`Z
zYr5`b>?5bYZ_>calZSTe<Eqfbk-4sj`VRAk-#Pz@ECWLHWUb<Rc<-HC4F;(@Jmzq4
zCA_5f+EeHU9#@~dy6>GTxQ0i4u08L*T}SeyYV~!hIJDr9GpDCVZHDuWgPK3)TubRX
zXEmk96<r5xJjedt_rFj7@?ZUH)ByO;$R;SJZ@8eImv{_qn-ZHN{D(jODSdx)#{c2h
zzCxec9O=9nz+;&=EqG4*Cx7sbZH{)7-*HCu&G9Jn_Pg^*-=WJ{=J4P6>X&7M;Lrc<
zUx^NX<LkdK{-IA^yr6kI=c`}%yj=UIzxa?cGOoD)Znrjb@I8BWyY=fc`rwxz(~o}o
z0e$T&U!>1}=F^f%@b7={WBS^cJ}(&goM)TQ>H9zaF}>L4+@IMT{m*U=^wXbzC=R(V
zf9VU`Gfooa&vJkF`7;^Yx7+nO+wMC*_<;l-eev_3mrab%eENNQxoswV^KZXR?`-$~
z(uS3T)Yv`x^ACPO-~5}up?|c=;eYfW{s&z^Pn2s4UbZ*UM{7@m?e~5Q?|U&RrF4C2
zx^b<~(;l|izK3mSe+ss)-Rzj%{|VT3+n<2#p>a+F_KJIrcA&d=JpUnVQLea`wLhj4
zhV3eL^z%3$pkyn|>vFre_kiuHPMALOpO_@RmQL(pqkVmS44b|C{`LR!|4skqFaDDL
z%YXL27Q4cmcjE5^HlyN6PqnZ7WgTkImf|!*_6$w~2K$?X?YFs#1eU}0d;J4o8}H4Z
z+s#f{z~+VA9<l>F`e>gIw~f!c`}4LTF)On|YV!vPjB2Xzq))!qpcg{aPF2T;2}yS<
zY~j{YI6URT7k+3*2gr^j+GT>5$obxN$GmY?OGI%>9cMM)y>ZvK9dc{06gk)}Ra0po
zgdT=;XImUPv!!M&ps1Mfasow=P=PF<6fnN+#<Q>3)(5dY#1C&+Wid7D<kZs1C!-87
zs*rhZ$Br$~zs%TulGI{N4?nMCy#m`f&>hLgYbivzYK3#dX1`Z@jmBf1a_X^9eM*tg
zl+2O4zV&&*y$xF#<XWwr>P4TQ<FnBYcm0AQPdnI(V@nO&+EXdnamqt2h1{@S<NRL+
zZ0CT@f1d)Ux?rQe&t0xYPn5;E+OTE$%^Lc=<F21`C&$^N?_Z<7hV?NG-1S4BUtk;b
zRj`4(o)>$ruS?JQZ#4iOtEI4C!=iR}z~$PFCD3ckfodt#D{ySxxSz#&5o;@m)9wKq
zbupG|-L+9Er|a03RtG}pi*PJ*>}*tad#dA{sH>?$y?uPN&uuKFoti2l*VQvwI;th~
z`8tjzljGFa1h}+Om-=|AuXSIpj;#b6rDIE+D(buJ-b*RGmn4!J&QGiRVC}kb)*K)9
zjwE{9qyF{N=2N~zAq$$+Z!$tEt4G%tcRsaAlrCKLf)xvnJcV{5k0_!Nc%ZA&jz}LH
zAf9V<eO^2gu-d)!l_=2c-U-(xU`vjTJd?oN1zSrC_sB)ZCO=kebPbzsniw_;a!6=b
z?%al5G!FC`mf_}+IQlS(4bFMP?%04eI_vegI5sVMOC7dC1NPFKfDL;Q8>UgTrH?v`
z*vPO|m#bq#M0^S3*4nel-6$moofxroa<ymE(^ak=w&ui>YnSSBs$HK4ouGg{CCI&T
zg?HG2&FU5GVaq$%I-Rh4mmPf_vBlpTHj}&SKy7k0Z00Q8lUunQOQreB_Vux9pO0h7
z`q<VKj-7VwfC%Q&4m7!H#z8mMO0Tc(tf#>a?C4_}^s&ixM_+xc_4-(cu~lkof2hwd
zY*fC)Mi*lV&ijDPb;9)VnjI*uA5z-GRxkAxSZu8MMg%n*m8WJ0WF1LSA4j?O`bee|
zuzz|i)>i&6W8o`uC!_RJ8CJ4&W}<>TnT(saW2Gl5waJ<AEJBAFR>)#+v%k{X_nkwA
zE*9bD7?4l03*pb#U9rCfAD>Gl%qc=!DFYX{IqQQH#oCQ>B&9~j!=E_>;qX5zrfBb}
z$op)+w@o|#I1e=R|1dRPX^A$SdS2)QoJrRH5a++t9|(Sw5u3hKxjjfFIPE-W2XkY=
zx$V5)Z^s{f@(KOJ4}K)hqtAZ&Q`^7y=?kCvEPeRPkLd5e`#s0U^gExt_?W)*`Onao
zzxY}D-1fWo-+fNM_~;Y*=%W{8K|DYI`7h|ji%+EeOP~KN-EI!`XSc`AX?LPm+or;g
zfBy5$S#?LB+RpvlXFjz#;Xg~Ce*Yc%@WWrwx;gfk;`FpRvp(213M>o#m1GS3WZR^<
zQ_5TRYiz%j|85%)FJEpLKK^*yu(+4(1Ku?F!skA%w6oioWqcog_@Qhbowk2J*)aZM
z`;PH_;j^CxeIC&dfAk~zWOJr{Zae?8pZ+wx#~B32nO?qlxov)&A=cFCk8Cmz4#=+k
ziTY^mer!4rj;-CCmlh~UxHk>=wqPe3u-Um5Jesay<KuvR#8!8()d8E$eRlN`V<`<z
z=8Va=x9?!10o$%zG1eR#+Kq~(23f^>`*A6|*iyunE^7i9_C(E5`w+IPHVXH<kSlCV
zhb{H>2rl%|<O;c6!)E%LuE^cyWl<*{#dbwsM{GIRs03%Y$$XxV$gog<6WiB9jdy>V
z`kDaIzDl15`#MGYTB~Pnc|8~SrR^O(8LNib{v0-D@h%X*2;_E{rVHC{K1Z)jbZso{
z=<A+7S`FT!7t{4<B4q;#(}y>iO6+U^=vD1v74I3F^c#0o^_$i%HAWsDO4_xPPR`|g
zN1B||&N$Ys27p9|X61!;2WwV-O}@K0>`B|XkDSLG$J$=N6`q|MND92NbB$jZjCIwB
zVRyEbwd49ONbyJ+9C^i#feqL>4e318D>$P_uwgr|jmKR1wZXAIa0D|plVgGdYc;tJ
z{O`iCo+ogFu5ehPXi#Z<+QzS)bChFnwgFp?{P4Li0&H?ME-OmG!7qK5<@#$i&h*B`
zW}NGG%+D`ewcrNlg12halFH3=!ZtIUS3d!3EBI>M;5oM%0LEu#eeT#H$83D>#rVz?
zyYlF(oSb7FhK59rjiZ&%ao+MtoxzUnpj1I87z*iA$dPh(PIcu{YuxoBSLnp*Ismz@
zs((?AtLXrAg5@~PfiJ!&l~CIhDuS(gpJO+ajAuXe`Pz;RYXbHaa?X%j(}5(|yFTwW
zQUbQB&f=P5v1QX&@S}D5dFdRsdIjedX}ky3M?I#7ZEe`r)$D*`Kl|oH?DM6`x#+I3
za#rWS)7!Y~#U^z&sz{&nA~M$3;NLMeG8<KTJ7D!Q^d&zlHt%yC=USvXi|o}#E!xLZ
zaywwP6pVL2+5uf?%x<G>ERAwr4O_~-$#aH{(y>OshRuo^?0|9p!+vT_m0+W?wu>AO
zt<S43g8Du-eH4d6z$zQfqMxk}1j|X^Rj8?QP<tEGBK;*C-%F(x5iEFjnX|(9joVu@
zwPUgg*4xehALemkBS8PlU$gCEYANBapLG&reXRWNTR+^NWb$*2o4HxJ>m>?pYv-w{
zae?cGQ=*&ge0DmnLS2=F6Wcb^m_z+w9P20L+h%hu1>N~x$60OGwg_EU#g?;e-WK88
zW}bG#He*9oH$aJQjaQ%BtJN#0sO7=WHVbW*(Ul#1!*rG3MvisH#@JbRrOpU*sB^sn
zPHEr%&2R*+urZE}xhq$DFSS|<jEyOBmV4#CJj9LYZ5%T;k>kDAD>#5x|GX&YKlh8+
z&#iq1Hk+$3hdQU}Gd9JZVROJ;zn#kyXzlX??2VG{CUUH=+UJb*47nb_1<rC+y0YY(
zyVB=J0RtZMfNg6xY{ju@boGMw6wBQDT;<yOT>0N;<%<V5z3HQ7GbwhFbI=La6|GlL
zMec@8`#kxkr1bd_@6=P{t~YF~t6B#_v1^$e+cYooT!LM&tzDn<I8(WrzE;;)>2t#-
zV@ZpwAHzoUbOoDjl8a98SmMoF=p)O`Hb_OT{4C664IPs9MQhE-SV?;Ch&|c?sr_-U
z^$L!&@xSZ*lXXJ%wb=n#?6F*@B<J(OvL8$O&OAb{I+j2WX>zSPmNImrdM$;)MzKD#
zT<OwA-GV<)uoJl*(7*`T0k=`1z6NZRVKceT7Q}%*7fxnrH>wJ3@WT#>{@$P3{FE$k
zN97*nYBeg(7)ydp<hnFF5c~Y7i)O{vYALL+QH*^txuW)m^*NtAo7~E!Tt#lsiD>)J
zXRAk~?{DVsW$M18Q+}$=xj7s$w$94M&I|maH2{vA0X`x?s@Su@`B1lc)6L<qUDMM2
zSBVmyrBAg6!1JTz6`&Tw>Khx*>7SMJ|6b$@&i^{L7jT?6ssmmv$H+b+daLIS_KA_3
zCM#R_@FzOUGx~ag&8IYQfwP{b<ZBO$+BZ)0<MAlLBlinx0z}GGB5CJyIMQ6}YV|>e
z+|D14cGr1n3q;{L>=6;~cT1m@&$_{s68ujc+u*Fm+C#<w>*at=f@D_R^pzR_P@j><
zoDft))q*og#tqZweB-NMqIaI%dQcD7<KU?OXE)DuOKiKy`|rO`pW6QY)!%-b{_L;5
zN#FYS-=pt*{|DQqz(@4z<qLUt@bi6UbEqG0Z|N`o`@g1t_t$?*FE@ue^ZDOy-@X6t
zyY%~C{_1x9n{9L9ALy_D?(gZ(zWFWs-j9AxU*5jIef}J4YNiUx^y1|mz1p1q?`@j}
z|MCCePh=c(X28$4&556U_)B{J?D^)z|GcboPN$XL+n(jK+XjUVnJ;de0AJpm{4B3e
zHal}ZZ+%i0`n@lFfxh_J&tR^&(#J2k=D<Rq{p@Gy`G(PS>UOgc&z?P_Pk-(+8~$gV
z)6Rp3!sd_#T1B}hw>`ymWYovm{2`_jp`Fj2pnp!Yg8uc5DYSc^1E=_zrWOo0Vz<CQ
zqj9c=t=10v?pT6jbi__X-KJR{uvvRG?6tbT&*WyCYV*{B49&^x!NpIJE5^<eHaT3b
zaPpd5BeuBVH)3C-T!AghwFK;ItvxohPuLK=*5_`cLZ8P>qP;#R>(c>y8SFsZjO_Zn
zw6$<2*Bxxq=deL>bI0^GJto&tU!y+5M(LcJaPCT{yO%P*IDn#!Y07y1KLv{63A8*y
z+Y{uv!Y9UU^Y-tA%|oMLGyP)Q%-7&+3-%!Z(ro)3XCT<U(LT$Z;~>w#?*<CC->~ud
z*J{;tcEIGC^R7OsPUu|00!r|v#NU>2(9b2F`njk9pgRsE3x$du2JQFcDcTtmumWY3
z01WK(h|?E4MH0;kXNyLgROPmVgGClv+b*yy3PA<r9P83iflvE{#f{J|Xh*U@j<Y(V
z&X{!H;J8-h+2@Yp$vmf#$^tcM`YyLKmMS|{x>#<5MIAv$IGlOX%b*T{(xMo)q}XIp
z=-9N=jUvLZImh~<{Mt7M<A1NdlV#ZKSkm%~?o>&-Av+RqEiwL!M&>)V)oLj;Y$|7P
zs;|mZZrGMn<bNkwbebH6WBshVaH8;#>y+EB881Q&+X}hOc@j==+u=L<;L>O!KRzj~
z$pM3F#fHhv0TVIl^D0<Gu4h}Y!g&dYiu}Inj-kBFv&r=w<jSWm9aero+rblqSc4p}
zduhie*P~^BoYZLDm|Wp-acuXRx^xo^ONJb&>vLT|oX^Y9$F0v<2W-M7#vK_A5o_^#
z*RD^k&kdV!*YD_KGC7jzbLgk@66DCm0u`Iq{?L?ek9uK#_!Q)}=u7ly1{CAi<hc4+
zL!X~@VrA{+Jm}D=>7!#KP1P0$_4aH{Ke-E6FaA|fjB<uUSvGo7z;<pn$Ls)q4)&ts
zx+AH!`UU4;2PnDRqm5$untn1it*0@O^6INx#SXwmS)ZF7IL1Dwu;UE59s<3V$aQMj
zNe|h9W$5$sU<Vd+=nXdN7_gZ=)p1>Q+^2@^IB7P<iau;u)p6g(ieYOLhFU`(M}2l1
zg}Nlw^b^lgv|d59QH=lg_SkmY?Y%{9(S5)q&$t*Tk9^j5pSA1c3egHg9+hPubAqQg
zdmsN6d{j0Ga{}WkcN;s~BvB(6tkCO%jeVJ0@I($XLZyu$f2RsBFKI+*7A_IJmTUq`
zq<+?@aM{^m9Z)I(nJ7sVY)g~OQVcb>YiBEDrgI<J$RgWVHEgLxrlMw$ZS-f@Q{7lX
z{iC8bPNRpdCO~m)?AIt+`D9B52Q^vLYXbJvCiW0<mcqj*5?aWe7q%#wyqM}L*U9k8
zSrpEkbC~OFXm#iy+MVU9T)@S!OBM~}W)ZjSGs|saFLKG+uJa_wZL(SmB!fe-rPk+K
z0Tm0bR*Px9kgKqmJC%r-SGm{Za?uQ)>~%_<`<veda8}E`8EXlVQu075H?iGoqY`7e
zuCdR7-LXNgQa49UyULv>?o*SiY@}uaosrrna1d!^HSEaRxM>ty#b)HB&$g_QvNA-&
zhdys(2{tfUpU1JJ&$7bCO`x`s=Q3<X`&i^!5fmQAl3>&Ii`3OnZd+1pM95qr=s@<s
zlMDy8MSWYnnAYc0!$w&g=*8NTW*I7Xy*e-KT2fbvk8AAnOoYv8!DeHrs$3?>RqE=L
z5S0j7L~Jfs%8=V=qd;{>mI+{TC7IVr)->tw<z16?{j`ERDe~s?L&#XMJ||?XF&29V
zO=bs7uCuObL?>)4W!Kj<n?6_7*Gz5)B&~hUuCHRFDvF4b>MI9pc$U?qV`&YvWy$rm
z+0PZ(o?^R!&E;BKO`tqCJHQ{=<PxfIO_QJCXsHO0NV!FKW)+49pUJx)eW+OjO1-p%
zv88e>?r`GI*%#~@%%M}j47x2nRh=~Y>^4j-fWq4Gm-p!u7wE`NsU^GaqJiFYA^-pH
zpMLWLRZtQF4<&d*ZK+8|blrZ9KAb`uq1|aGx_eozkLJWoIdG`k`R4p88q7AqZ$UWM
z9a`(^wFxiUYs?I6fhEzoYdBMwJa*B+z*fRDX!(smxnVY|Hm-2HzCOOrm*07Qt2NE2
z(Ox<~d{x==T$%6xv(54U>i%wX@;}pe;@#b5l8&mc;_I2^UG@DR{Zu0Vzw)`yYos=>
z6^{p@i$0%E^ub3T2?f`AvlCzb;uq)}U;B#Jp)-suXWmHRarUYA-lGqG@k_}fI39Hk
zaI-n<Z??Z*Z5st#p!@kd&(*%*IiGKv8i#`hdY#c{JkFlq+(>|tQ1@+uxZivNJjM^a
z`LnGrT<%12e7L>wZ2Y(hHI7Vk<k{erV9KChBQJWq)`dQXb_+gA=u@XTsTySKeQbSB
z!&sopng9`d%rcNbDBzvKb5S_9_E=xYty@z5ce;ix=pzN^vD0ty{a3B8VfQM*k-RI{
z(gJKBlk1)x$U&}a#Af%F6Y>SNLey;z$XYSV9oTFQaSfY|{fj>5?}t83QEr1=<vIcT
zx+6E!zYaToUm<@yIF+%_BX&G5;d<+iTwPz$o(F7GSP<9nY<0lqo4cg%aH|7xgneBh
zLtm@eShG!=HDpAP27gQ`UD(gK5n^+Ll9IQ@>&-j%S2lC8v2hI7Z`l}=1X%Do#VWEq
zq^~A7@6)Uq6j3MaclK8dW;FVr*Y!Je8vqSYbw`FCVSyxmw5Fi8yJm|sjV#rUv?3Rc
z)4Iy0Lfl=`ooYDau#01r%h$ys^^wj|EE07FuXFK9p|#sCx+u}A#TzCFvQ&#mx5BuW
zH2}EC%LFWpX{-V8Ahv)dVyipt;t-euRz$^W+6<zLr^%H-9VZPNjo9dtW4+@B2X^I)
zH43Cz4BTVb)-|-Rn8=%)C5pR6`mbTpEE_H0El)OhvD24#u(njG+@<(*a%5)(=tUlq
zyG8)FY>n)4tWD17<58}8kZYQI9&^Jg*!cJWIXbq-b;9~wk8_i2&;h1b$pO2yn*&uM
z_vcHV{g`@cax}Tl59s4V*tuP3TwFf`wx!il5FNOJEe9QlaxOuC+1^OnSI_~C_M9%U
z%^LCB$(6Cyek@rwk#YuWVcd*p1;#4ukMqOz3bfA+TS!5BsvXE7CC%h0$EEM%IF<tE
zzuHI3(COv4X9udu)om8qr|bH7f&D=n74=o^r%%jsei}AvH7laNI=0mMIAW`N`nvYm
zY8Xo^-WBTB)521g`e#la(MNDwcw|M^RN)n5%8?`67LeRBCwq6QgO5M2`x5@``sk8J
z9oY$s4-`Yn8m%t8(BQC^Y$VRsIG6Tbs#P;hCN4IwSu*FdE*u(dn>wJlT{g*Ayq9Ja
zQ(D3Qo@RCWRCVgeq);Z$wrPn?N}j~cR+~nhM%S@bclzk&?G<dZM*drNQpP4FJN?z^
zXf~`0Hp@hDY*c|=u_a&=xdHomz_u8+1F~WUY`ljl?Z;U+n$J4+EIRBAY#bHK_o~1?
znOuv>RkM$H)@s-|1z+3qF19FF9(UGm0VR&@ppnw?d>!Z7uC~6mtgjj4c7+2!A#h?X
z9kwhwVH9yi9M(~;t<MWKMw(9Oy^<FX8?kwxXT>gZ&)I*k?b{V6(^t$_6Y3MJ7Qt7W
zK2AnO0c=LaxAxc;1m?`xq}j!WJ~wP8ckOdz$0bClTc4*USB>VXz)s@)5xLq}%DQpA
zEH%8(du(+V8`@<a)sJ%?d%JcZ=TM-tjV0CBRj`p^E2yO)QQjzCZ2DNDT<Jm|Bet>6
z6<Y~*pn9K2eNB?RF>9ZCwx%vx)kcXYPwQ*cHkL+gdwrf#qhlPgxgD724%^&~r6fAx
z*pg-&M?28TH6yqH8!2Xk7JEltV0%CxgB>^x?QREH=gydCi4*=H8Lnr{@z_S`2EStC
zDCcF>?4lWg59ea~iE&?a?qSDgP{LXb0E^O`r-PjD+3YEMfR#F+Q11X6N~~i($HP2b
zof~kpVxvW!!HDIPc|vs0{q7^42KXIp<CFX52;C58lWeGH8-Fa4)F`K{7Lc_|&<t5*
zD!Fc0mPQLu!@M;_U~)g+A`pe6NqtU@b{;d#m2YbmJKxtX85t*~6$_qH+o+ELX7(($
zhO_n>uyJIoX3;fgtkXs$)T#;&V;+-tbT4ZcDf)YN_DwL~u;c5O#T~PM^Y`DQm#<#Y
zfB298ST+O1>Aqc`qxgCAKr*?v@$-jY|9zR;@mzyt^Ru6QNOzlq{U3h#V;P^%pFgKh
zz5gElPyXY7BAv;XXU_ls>c9Sf(Les9uhSoX?W>a6^zJ*)Bog<#-~XXd^?dHLpQ2B=
z5b$=w>2$YYDH6s1{(JAx$J_V!%UJ@AtbPdF>JMLhB0)?NxU)SoXYld6>VA9fIwg1P
zzW@A&UTjbN@yk!PXS?Y(V|b18$%{L&2~*s>Ny!5y?Dw3ZvDa?>@8|F6Yov^d{jjI6
zq7(3$RrL1(I<ki?KZLDnbaBo7=91}a#kI$=L=Rw}$MykR9E<#4!Di>%ytB4VgehQ`
ztc278h$UJ+JgfZu0JaM|VC&By7nf_&i1SWvz$W(^u(2-9IM*War%|rJ&d+Apyq_Mz
z_L_a39_w?)at%A_Ty6R__IZcR`h0BH3n0kwK<0X8W`g6*t@xYGzdYwY>no*Le{4d=
zUT=G?{bt9u>pazhH4hi<cFgy&_Vd#Fe$2MtAWK2|Jo<*}LeJ*eYhBeVcHqf<PBCyr
zH-9w1MKhNxHgCCx-Rt-tx($HN>0iV5Y~~TkMbz(@Yjg-nF#;=sXJ9SDLIrCZ1*Pq9
z7u~H@zUyAF2cz-`?Yd~x2;Yu#+8lzVdRl15J)e~?+oHH7>X4&FoF5yJP@Ixct4DJz
zh_07Z-fBvrG$WSIogy~e+pwJ-i!SsHtI?DQR`BBU%V%BnUK2YltQG>OJ{mSec|&1+
z0kO0!1zq4qdW<GlT`&~LF<rDDj_NR32f6aI@VzFZqOtbLiU(Hb5qEwqkCt0xcg-k#
z6kF~3+?)_fKM>>=<a)T7WnpgI-aWRd^|?Rm<k%))m&m@gdQ_LCAMtNl&(DzKZ0X&Y
zh#lt8=c)1HyFMO9&i*IpgmC&7$0l-JSKJ#Bk!uZd!@X^jEnsVXUN6Ry$dyXKGWBu_
zV@-BDgHG_h4wy_C6_P|^6<rj@G_R(Qwh&8~Iw1>89j9aq&T14>`9dH0<#8#u>KPNf
z0kej&rB2}rInF_jYr}>}JsbCuhE>6vFALhZsTS)81UmqIZ1=w2=S|KHTMq5IXw1GT
zQHel}FeydPV53-$t<Rg>ZK06DIJdDi9j@4c&c2piJ0SPYQLb5{ZqHqxU)q5Mn-+1b
ziTw=Nb>ZKzrOrn6eZH6-0JaO;4>?Y0Y7xB9XDa|`@2xdV678KP?>fA<yg2ZbFJ8hK
z&VU^E<FS~3-52n0-^U_d)U6>7PWcL{vjrQgQc+K%VkIgfg=oA)&hK6k4cN7lsGFWo
zh}sF0Z3(1K8WAi7$qC1{V75)0wM9G2Lc*^7C^mh}ipbX~HLm&&TPY2@P5k8q(qfeO
zC~vt=>LND&@b)v){nmKx0eh57w)W)`o7`*X*&_BFu!);0#RxQ$D|K?M<Gt4h`mE}`
zDYVyc@3Fn^ogc4Xje^p!Xq=5=-@#^b;BQll`ij`%*dF=a>)K<tiGM<IQp0YGKaZHp
zimf^}>vIa&hdzP6T=Y3zk()(g5Bh5Ms0?!L^<A;?7eXH6i%YBvTy82?lUw7#Czm_z
z=_C4VS0C%8K6Y{+?7$_qUSG+s{Rp;eW9cD%jB?En=%e+y*#XB^12(r&)NEAL$0zmq
zzCQZ1@9CrI8_RKN`q;@mU&_^@IY%3HfeoRD59;GJxl*&g#fk|}DmMv2*f#s7nl(Ew
z73fz|`Vz}tN^lHTes1)+Wi4Q!`*9xhG0q2S4zYU{jM;()_={xCX!CRRi~YHPh8ubY
zqP#0pMZ??qF*)h{sTEBh#b*)0P$4}R7qF=9`Qq9w_=C@Kdsup2aC0zq(f3bi7iz8&
z=qo!L)rwad2eq~H$F3DAqs+k-vj}X>(Bz~6loXylM_Ir}qrcVP*9sY!k4NUix{>8}
zVf(!J<dtyyGaV0aZg3{A(jDshNiz=0*8UEhWRp-~{N!gJ$e3j({mt=)-g)O8y16;h
zb8)n5V8e?~KG}ZvbNYj?ep#OvfoYNfaCc8%{2V(Bk4{U=o3^L(;(>gYftMuh3=hZj
zw&zvXN+}_$MmN{Rkyv$rT0O8Cbht|`a3B{CY&|2mX_PCCIybzdT|aA!h8G>VqL235
zhxB!+mG;bs>C}RE#Z$1EPI+-^w9jgM+O@-T?^z_zEO`pH+BR3>Sa58(w?~l=*ryR&
zxK@mCuRGZ25xK?)b#u<*wb-@CvATzSyuM+ZhU@!#<q3UGv@iE+<N7gd;XId9#1`6X
z?Xx!?>hm$fqQgGw<ABZOYVFj<O8l(`zNjBYYfAO@Gv|EOzShvbXFtW?6yEQnZTC$Z
zy8dox0lb*^=N9;UVf$@fgnz%vI8PMjC_EiXYP%cxfE6sK*ZOpQ-E?+@1Awa<(-Ka0
zel%P7(~y4R?fNN1T^i9@__(d(vh&C0$OTRzMRVzkf1Yjk1cf2b7TG#$%H|1Cx*Q=Q
z&O2GXYDY>9fbdfH0>yaQEZwdXjya`cj#!aNkSP>|4KEXd12;9S##?UO;Krvd+~5?V
zpIr&3#;=WMVF#>Y%>ir0aZ+A=D5V~Qe=2a-3vYRDauh7H)l#qt@<hgGY;qGvVJRM^
zvj#cJhCmJ2z#r>e^}x0ceO}>!6>Q+T)wCdj4p8GQhrUU4GAUoNq;fk?dGScWCP%|k
z^?V!~H@INQ+3P$Qw$-v6VxI>?qu5lg1Ubth-+9Wd&(%Te#gr$F&@^nUBgO%&lNIgb
zPOe2$98(T80E%K$9k`V1YJE=Ni!Z3HK#1gu`fAbq+4NI&VystSy!w(ZjamvCMFP3X
zMoY-b$=Ug0qnryi1hhUuNXN?LV=X(czS)6L1Hk&2n#0y=eHcHy^A`tf#t+{%uvXCt
zn_!BZ;B?Qq$x$QVqFtCeooKZ`hQiNlvr*#MwmyZvHajp$Mnd1`Yt!G{c%s`lhn%L~
zenuPB>;U9S)i*QDW@SX5njNsB>CU^Kr#7~%CIGbvxelAzQ?CUQ<XAO&za3k&KD9-Z
z+ku7DaXj@lX`cJBW%>%*jckRV&0YfQqwgiO+s5`9CNS*{XOqtHO`GsrdTT#z?hqE)
zy229sqZ>?GoKZNfH`{SOffqV%WD`k2HvaG?P$lEl$422y65%Db|74qWDEzz{XZ7p>
z2Ffg<lfo6e<IG!aywDn1q*3F-1-@b9d+_G2M4_<y<;JVe*o4EHsi<n>+qRkjN5c+o
zdgJ_GBle;jToMVJ3B1zET`yeVoL;&pxA<(>3ON5K6#EvAb)5u8?s}nlJNKObPV;uu
z3?jy68;cbj*AuW2u&Mn7wnaJrrItcjy(SR1ug(PyUj1c}%|9*SqZCLg*GcZd*rcWk
z3YF_-aBXr8*pl@*>J^BM0u|tlK4)x`anqyEQ*PK7@VTp8SKZVMIw5iecD}b{V4~2L
za;GXbLZ3T!viG^lops|3I>;v1wP7!)SC9v}G6%avVlN1+NI_p4ul^bO+PLe{=d7<8
z!3*efsr!Jr247pAg~uATS_&)rP{*1Eg)skn!v<b`2@qI40Kw&2z+I0%UzflSzbvk=
zQuF7$$nTBwe}!C+vCm6CmQvog15`_^uW<~0KD_T|;rs`8eZXd8DPq@p1iH9d@!k<^
zEZ2ao^*P2;1-5GS3Q+rFPOt;8QNX4V@T<$!Hr=PrMkzLlwq4HXbB**e>^H~O=Ykzx
zQNdQBk7lE!&(-n0noisprQ%sIY5+m7Q8x{nVo!aaAFR(;8A}r~0o_LBAlHf9M)4R?
zxn`H^G1`F~ZPZD}(h+qZnBzZbL?L4q%Fl$LCz0zy2etzeExro1t3?p<Z;Ma~Oybbw
zHm(7{zxB+4?HrC6RNnZL*L~7OHj1!g*T-yF#tuNw?@WS~P_#Wd4CMT(*DI-?FTBlj
zhtY8%b2PGzC;gkeFIV>in6t;$4yJb&vB@8+PhylU9IY-~&U2thCFOnQYcLhf;sHdL
zywE4`LR*Be@j@RF4a)8Ov38kba8x?CZ@;xn0>dr=J*Wxb*rus#H*6==q&a{#&pzVV
zsy)ZL`D!Fv=6Jico$1x97xdll|A7APJKq!T{{QCB|5B)R{^Sq7;Z8uN^LhU4NZ<O-
zKhQV7{auOZ|Itr=MrW1_2fR%hfb-w|#b45&|K-1<fB4Z)=zH704?q0nhVMjQ|JqmR
z{rBIcpZ@#<`r(g$O8@S!zeWG<Z@x|ccKi3UUwlM=@U`EgXU}g1_p|5Ex8tvgtbY8#
zFSPa`fB)>3KJ}i`{>+oUe;C{6Kl3U2!>@mpe!6WU{O#X<o4&hY`|b~aLVx%7-=Xh*
z_q+7<uY8IA_z!+xHb!}TGHor7?-ljNH2CR2U-;CggqG{Czy0s&o8S5l{rP|YxAdLw
z{lFvCb=q2cxz<MCVr%Caa<(;}ISh@4$GE<uzOE%W6caeqp|95G7X2(fhUH34fPifs
zv85J?-RXp31NH^&aV(iLbmS?IV{PQs-^E7yK8pPB#tdTZC&QK+9n79w?cU2ER||ZN
z*ez4w9ON49fMtJ6J2ut`>%l^Ffj#YDt0Ok7H{C`BxsFcev6ey_usL?f-LTW36A@d~
zN7D&&?q6WTe2E5qO@qFs9l7Qpw}<pG>ckS|x?`hO=&O9nW*_hF+U9(1HC1>satZb`
zGKH}Hu$n3sOd2-^q~6P<nM!N0{n57bv%TV4YBJYrwqG(VtR?_B|D)}X^<ErX9_nk1
zeID$<6vxsPx!T6DwyBqbXUZXtjCS^<9{ucO09@HZ5GRNZROMDi`pBdVN6y2SZHEQB
za6_7drR4}^5Cz`xrBBD>$swP2doUUaEv9;lj*!VCwG<EKuvWfpSrD9b@^yPWC{{T9
zEFF*A59-Y%<NEgE3+GGj`W~C{m^Z%c9vhA=eZ;VZXXEa>J%AguAe|&&Ygnta&&Ek<
zT;QIiFkm}h^0(I=?6*Ve%MB=4&RlTM<X#&M3O`%Dz{bw_1sv--@e(KOAlE}2OaY5U
zJ6~V}@1OAmnhu<#_*(1p75wkF$1I*EsR`h6Y;v_euctAkNYg=0|I$vMJND4$m0CaC
z9`<!&bscE!s*gvJtMTd^w$puaxhb928svzI;~q_4daR>9E`9pwIn>WEEHubHb#h-i
z{S@x{(C4+Zg;jw=uVF6|opl`gyy<H{&QHK{d+6mF?SQl&dpa4_$L3^<&uTibf+A?d
zHU})J)6de$?KJY@U$IdS*#R2lF10`Aew^RBT-Pwpi^R1Zrq<`8kG9G11~#hh_PJtJ
zo_@u~cHksM7BvNqWwr(zC7V!dudj^#5Yp!&))CuiU)O6k%CId#M_{9(T$iQU0j*ci
zCV}!ET6kf9fP-cKy)+N+tug)1+R37&NS$cHDNilZ<!%1h1Vrcfws~TFjF!fmM0V<I
zr^XA7-%rl}j?Es=9MpRluRgmzh5dR)&_O|TC)b`S;$HEMDdW?2?s^R^p_T$)b#rlQ
z*qEO=V{TJ8DzO@Oy<*dab(Re$W$8%`yG7;B;HH<oM|C7I_7Z9W@MDW3NCH<Up$F2*
zFE*{J$}l68mFYM<5)thca?2)HY>w-OGzB?AuE0i^$H|o@m2qNwo&)D)C3ku$Hj^D9
z2Z>y61<}eW8$YM^x^mYm?|6Y+?cPMKk6o^F-)<?x1rH;I<4q@IBVW^D7mPzq#Wtr=
z5+`lz^Q7mJZsKVqc2*jmTHC#$(^eC}<u(O7k!(>z@}5z-DmLS;&yz+Ot|nK_uvd;(
zkrU5Dv>>Z3k}Voj_0tNzQR{Om7kzH+`~!v3>!Ua)W~-&3{gttCug{jnp>BPy-1L}>
zr~+^Q59+fD>=jfscFfm;<fh32D70_#WRY38yo{}(&&^%~yU8s<?%L-Fn8*Y>fCx5>
z^AxaI1i9GegeY->9bkv^st?<02$;U=0!#X=_Sk%WTSq&fV@>I0GV~F0H5;X!1YZ4$
z^%Q}UL8H3#HIo9i$;YBxO>U)gYtL|ljgn0<yr)*9J+mxa=tPe86>?__p!QcYr6sx^
zH33T0$*#}g%!WRcRKudXs;mMwp);HUHmWYy)perBCXPn2m$d~SnXykw(I-)htIp%>
zeJ|>eG-A>VD;k!9=;_=jeJr3yuvru&2X|!E5j8`ZVhDgn`;mV#`Vgu}El#~fLsonv
z=UFWpzec#&Tli7mgZ|yQAh20NrEy%Fb2f@^{JV>c4bCVFT8y1%k)-Afi#`ww{>Uln
zd+o5>k!J?fem*EpoHRr~=SGtevt}I|{45-RGo{8;uX9qhYk5ay<oXmMJ4*{9lq}h8
z&GN~sSMv8SKK^L?`<~u^{_f`Rf2Q)Q<a45rKmLRVA-#KJevGr&w}c;lusQ6fZC?H9
z&wP4wjGgF{yL+J;xjh_Zt#o&HFXQW@k6r+Ol`+kZJd2LyG0RjujOXQxm%dgonpfLY
z)VfSn9P})gm#^;V!|l4Cf2DN;KKkfm8K}26H+0-KFkZfVg>&`YEEy0mpd5h2>n#5M
zqmN$7+U6w}13fPY5KwzkgPw?g%hmvx<i<XZbr`H4B6ocqbWR+ixE7{pU7Piv(?Sxk
zn?4&3+{^Bt+5}wMV_Vb_=ixUUBn#c?qm{4ey51gRBiy^gmQpts?S2%oKY-2U)&Xcy
z<W6A|&W+e>z&qLj8;dDizs7Nk-`9vOwEJ_#eyuIAxjrJ-?zy7z3%^f6R<-s~;({$a
z3k4^-^?AfjJLl8Xase*%mFNO{rc1dc!yfFGw2%5Yj1|XLYxit2FRI7{B=W#J{=2P-
zf^Db1UsmW}w3ig@r)TI4AGiH<`7W{cO8t0nS)|n2e*3+yFw#}I^0Nywie60Z!1&%m
z8@a4;Z}C0Yg>pdqdh>|%;^loe!n7}o119VqaT?b9@7_vb7yelBE?bxu?D9khKc7BL
ztz%>W1V;-C>mCk1<0;QZxe$)kan~ZBuN_--u^-zmx~GR|w6PzDb{Qb!@26H^^G&hU
zu=DpIR>QV~{UK~6aD$7Scd;ht@_q`otH*eew&P1VJ|tItvDUz~d>z}bjP;rhT*HRr
zY3?_i@=!}5Pt%25-xS+*If^&<dY`YY2p~Z}Wl;ip9jPxcV*Rzr@inont-eO4wxN{g
z9XVn#M~)TG^14_bumgL2-o{d^Pq2rrm*bmad)hd6eGGC;!&s6D_1xDh=;WG1y7Ky~
z$x$Y}uQARIn>f4Hy*~f-+Ng)dIlpJ#eSVAI+Y7qAmx$<M<J#IKLL@By_|?c<svp0+
zLs4UL#|P2dP5)De$#ku{$*R#QW!s>+rJwv#9skAZXJkZ5fQNiSmevYtG>?Kqb{o$p
z-1!B^jzlY0@N6cFlCAEf@p?mOHwrLwGPb%n>VOhn{5%xmOG+7L*s@_SS}b=0w$(ZP
z)!F7)=1J%%mWQxm<BuwJ*d%|;DCy3c$|?@ks+{a8D>kLUD&2&XkHt|uCGfjz(Q3)i
zDUjoYV_@&F6+~TUO~)sjN2TV-lOlWUxI1emo^jU~kbO%uJh1VJbL?}=&<S#F<GPAW
zO^&O{)vy=K(qj8pyUaY7E3j$d+<;B6R75@}-*Af9l-^OX3sqlE;k}|*B=ZE=TxXyY
zicPO=I?`c_wG`}~Y1pXIzDb|wbjeE`u-RDR0mqve6R=4X(Neu#qmERrqOVK6icK>0
zY^+Ta9HzkLV+qb&cIacRVAy2su;{U4XSrgWSM+%bV@b1EVF%WxztIjzmH_lIrhSjt
z#DPx(_N4TBtk=d}?=)|r&qej4jWTQ|*Fhhxo!h3UkK(9qa@G1n)b)8M*BP4$(GCO~
zr242fEJqs^>_F5Bo2ytRsAWK?9ms7iQlSITSF>4y&2+-Bo!cf)+aynt6<~cTea_cI
z7Hemtx;_Usu>-n^XxO;!$cvXnWclM4D}DHh21O{9irOHK+}DhpL#G2dv@7<5&PA}p
zYW&g5aw4Z4EZAI4S`?Zy6FA1;kG^!IKmC1O_wu97xxM3TGuE78+&5EbUnTp<_@8x&
z{^7?j<UGzqh|Y-={(c)jd-I3WCUEvU95E-44iWP?jGWXdwDZU2ZbWM9UfrGi_wM*7
zZ1L3QbbL~K&Q43_8$EFJP_Rw*F--o+*{^FhPJV~`*~Y5fkE2|_`~C0JzxbE`ivH*i
zzCr)=KmX6vi3UfUMI)P|i~qfN`I264&-~HHAJfl%@eBH+-~SqY`n~r8g{LweOvucA
zd3PuF<A}|0`>dG9A2)|RZ?xXs-^urfZEQ&-FK6Uz<Bkge>z<8f$2;|$nqA2P=75~z
z(fG49h==FZw>O#zA@A$bvS*GrN6+r!XS~0^7ds;NqS^w@kSSqQfD3AT@V)H)CgUF2
zo9291r)ial^cxf~?sOCK7u%B>ZAtv^>*}LBCvkl%2%U%X&8cb*?C89YZN5>J5?yR!
z)iyuM!@VOm)3?qUehs@}gP*W#2R^&EkEMsOh4#+Tjy}t|=gl|#4`Cymzt?{4-W@jF
z+vN_qIW|0dq<tFiEzb3wd)u>7=+lR=S)bP+_paUa!Twu}o;~Pmz*hF;8g#;(>G_G+
z-42E4erlf^_J94~{u}zUzxcQG&;D2c1%2adzlUtz+;nNMpUt+DKU4ff`x)C!$KtiE
zFY6=i=BT$oC&M1^&3|*jb({BI$c?VsffB}flbiY$ez9$OG8+cZS9l(&nE~2v_jsMp
zy!WL%6GDL&Oj_atte7N8L?whG3*^*jMWmodXg5K0sVb#<x`w2~RyDv{a6{8NPu30|
z@{^>XP0}s}&5(Y_F9J69#$#>;rNp2gkQOhyyH(QXa+;j~-6Qjn(sKa!_c=reSE80?
zERzvnOGw{dt6-CYWp?kg^5z>h!^)iNLLIaHo}Cta%=8w#;1F!{?AVUzXug&n8_mcN
zNo~>hz;1FpNZ~i|=w%ezswzi*@gGnGEMikR1N%YK{p|M|m9yvsVbb*Odr65TP35Ht
zY4g{yoh=hU`kY*jF4yzfbz*fLNLm+Sr_UYRtf_*G{V?mZFfB-_q0c!LxGFa8%X25!
z<k-4Cr=31GedS30Nz;%Gt6^iOZNz3NLL3cmI^c4jC!`q~HjVse$JQ~_0C0VUPF%<}
z^>UT5bfK>YanfoZr_krn3GZ{&ff>jAJO`;)up`$&U+)KOk}ggfwQb`(4{{ZKl|Jw7
zKzTqP6}yft&ghx9XA^9!0|%ba&Rw5hj-{3cw%6xPu8OT1b{w0H;TkB1V=u?)iXAvF
ztJ^3}sb>cb(>(A!Odk)E)&PidP1GoR4su)veN}9%1BX$rZlhFR=b(>j2d>yCmMiS-
zY0=`;ah&hlsMhC1EyLo}9XGkkLSQYOzOJ>`$F=nO*x3P2{WF?}Nef1|K1ZZ!01ZL%
zzHN*99A4Jrd&wq4?qr)LPoYfsy`@#!JF$Iq2R_UZ->Q#JlK3y1WW`pFSmCJJvu>Kq
z8qLsAch!o`qa@BBEAqxu1uLX&#aWX@surasJD{L0UsN4s8hOG&z_HGQMF5*)OYUvi
zAh@?-i|u@7kByx3@^D14YKu^}b`;WPAGEYPwj8j@6k8lq8km}7aouVssS{2%*$i80
z6YLrFEexA-rmI6ysAmonoWMn+QE>iZG<i7`rBC*3$j-<b2^$^Wd=D8L)uOzE+&H>E
zVFDYlm58mjdu#odf<p31sA;$hZ6PdFb<*b%o6SErYzHe6Uj6!|wD~5XPj!*g<f?tz
zHdut93Y_Z873_ws1Z-Mk#WrXHHlC~S^+An9u8&&$wb#cL5$wSxd8G7;jnhkgjM%JC
zt^EMGu0fxZ_4%aOWaA1talpowjWsS+rklP<{U5N&Mt*@@rB8$NBX0hLKDR!VIykjn
zj5WcQ8cp5`KIc6<U>huE2fWWGb=+Duh75%q3&!PsoKJ&XXC3Dk*bKXJA6?jiHP`_u
ztSwnJ3DNW#u{(wLie%`Z&&3XeJ}+z2*NANbMPKpyMQUp!_Bz<l(&^*mecp7Yf-;h$
z)WYU^vh(d7+2ksjD$^de!G4wjTeMM~4N9V~r8XON@Qs2h8$HuO7o@9D_Gpct3ORZf
zV$~vsYELJ(^&W5r`{~(4MfJ;zFUkhtcATyF`ZhOVx}eQbscUQQ$3)oIlJO;SvY-XL
z^e1FSiDD$%^ni0MslC+qV(ub+-Qo3?&K>xZ21ijb?`-&7i{P}+h4YX?G<?;|CCvG1
zaM;+`bca9MZBr)K%bEakFF1ng&~DTd5tn02$+KGL;4rnI8<|`3`6)T}<`imvm>@Wc
z(ari&E=`dt`9>A%vqZ@s)d9cvdA7CJ8`_aGGIHf!v^lt*@3t#NX{-N+ul*A<B*Y<|
zd4ujK1&77I#Oq9~cgBx70iO*H`Ws{m`+Ep}630L;3VE*En<MQ$d%bjgyMxrOQ5*Mo
z8RcGw%#?@pQE%YcNOCx~<68Vr!u*1Pa1QlwZ!;hl*c41BQwyYu*rpEJkacqn8~gog
z&pkgz+eg~(U2MZ=lzSc8Yp??kVdKv_w8j33Yq>paBX)E2Mr>xL(hjyV*feWT=r?t<
z?i+o_HuSljTZcZUfW2!EpU!@!{mg<Coa%e}D5nzSdIg)&Jf|!Am_{4bT^q%nscjmq
zM4dghjX~dh59@acHyiBhuI+|>tx;|W;EC-eoSzV6BO8I#^rOQD+uzA`=<^GG9X0_j
z>pWD_m9PE0gv^;YpD^V8uhagZL$t;cUYxcIMLvP49sg6Ut!9823Ur)(menGRLX?j!
zl9EwjV7DY`Bv+f*Rd9HP>dg}AsuOBiNQCH8<EGb%n{rfpbm^pN;O0;er9(#x|GV>T
zS6}#gR8K}_=@rrV=ooQAQR69JF@e^|8Re!W+*=j`7Kv!-&v?-ab~^??tko-!U8pH?
z(>Ft4Sq~)G?6}EM1~+3%ji$pEBJ7w{Y~WaTIcIk;kYNoI4A~SS$T`*kFu9r>$?6s0
zrCke(+gh}qwpTd9S+0)F((NauSWr2VN0lvzFct@b_qpkWJxhxubjKjDt(LwFIWKN#
z5b0HGORYwZuwyR`Tf{me-ClU}v2ak{=i+je=!g|jXH#xY%iK7DOX%~4EpUp}AlDTf
z>sY`o;P}@CS>S_*zR9yd-)dDI$jRhd5M8P|Ax=??<j#@Tki5^!(C3X0K6#&;zDhlV
z+9J1&yWR`Pf*Uf2aW48Q2HzrKv&)sSo84$~C6SxUG4#2}an8L?405#yIja%S*#RnU
z2b4D-<D5#cNpQ^ISf0)GwbfEE8<nS_4oNtkMr?D#rVg-#bwINNDFuDaO|F%i{WSWL
zW}{ZeB8&7@r&H`~DYf=}UibT4u_0;~4p>WV^|6F!sX?xtjf#CfsqI&LNx)W{9RPP=
zwDrC~v-cKJ_g?Y|1z|B*L;9&<v-eiUD;NKxKdWJKLvQ8BCMx<jbrXE0)>%EJdqyE;
zUkD#qC#uky@w@O~PI}vfKf)<$9P3H-v%r>f^r^f<#UV=)j39l={O~i$KjD#GVAIT@
zCHk2VwY!RAXts%;+smZU`@m+{HNssv{`vPtZ8ayGoAAbUacmsPEgb9i&g1lciHxO&
zl~TtW&A7#}y(o4eamj5i!PuCZMQGrFjk0Fla3{#US+2Yx3%QCMSKWM*c3@|02N^rX
zYa?h>Z;|MJ-S)!<0k==e4Q|-v{ckp>C}+Cz!LLfihG$z><pSqEmG=^7T$oLx#sx0-
zPUv&qY|hCY-?7h^bL(@*CjAnyk@jJQO=6i_pI4D<cK&zkbBWaEtOj5+onY|u5&A1~
zuiocMpI2q`S!_Q)8$WAG?v!_IoxV1?nZB|!S^Au9SW1JwYG#0rrQ{niHde&epP>V(
z%|{KJIJRYzzK}AnRMacT^6X`hD+Re`WIdQZTAvf-%JyHdNuNU}Kusl^@;o*IcGE`&
z&wZLJId-)JK~CGV@u+0EXB%s72lRa1j8ksl$#eo7|E#lX7)#j}Y@}l)LtjOIqdpR0
zEM>I=)W(u#3aA~Z&<V2xR%;=#9XRHp&oNJ5n~f4IVh0F)4lFa~{W6wT$EG$)ZA?nd
z4osbWRo?y-<(iasO7s<Sm-jtv)FH<{Pdd&SE95qXcc$A{!<G>38|9jCZ`dfe1FREA
z%$?m15cC!A_X9Q%%w|bVAMI1Vj&FE@=2e~au;tl!k5~E5>b>ZO>ni6?HZS7#N!<^c
zSx|{fC1mIypN}`)g;VDYxmtU3Dq$>%-7tCrwc!=-#W-JhTjvh^=|u`EC(=wFpa19F
zt%Ev_^_05ykqeyM)@bk&^EOX`7uvFIBQLZ?n~SY73d^<C4B!v9%Vs<>g(EMt2CgVC
zv~h#;{kcs7SGG0_D4Osrb--rVOSX<LRf3&NS0cxHmr+<%k2zrG)9<}2|33HWPd6&g
zQk;*QKi#?ra<D7`yN}70?`Pcg+FR}X$nS2lviZ0<Agw-=uASO^oghaGtg>-r*XD<o
zqQUFhVT%sIdB8?H*v<i)KidvA+mMO;@Ahm?<wPN1C^wGvx}%SC?z!nxXrCe1u06H2
zwei270ydLd9k5;K1mx=2hOuOFTOSxpdpzb5J3ou{x%t3sO=tY?SFz>5s}H%3<Ghrz
z%c~#z{JdPRrEr2=%>f?eO1Sq0cJ!%XxBGSa2pu`?$aO;dLpI9$d|mrKH@T&>i;e0|
zErlr8fNifvMS23ZJ-Mz!pD#PuBKEyLudq?p=l;HAET=n}-&l>Ld#(jkL(P>^+`dZY
z5VsH5E^4Y6=Rfq#YO36A=dQS(+y3ppwxP(^u6A!C)N9IW+qds8Y628xBe>Z%QN^$H
zfLzCM-r1;>E_6bqE0YJpyRl`Q5xp7vz)l8$?NpOQL`<0t3_5mg;6;h5I!Y%ofV%T3
z5$!}5sV_#YVA1xrQ_JaAe5;YOT8h|Fa_;ZO3w<LPxfl+Eyp_T`%300Vxdmr6bJKJB
zE%Qi6E^x)Jy!wZ!aY&0&T;tU@F7WNztcYjayK(xTfE7F7%egx?Y{ps5*m;6JfwS7U
zz;7ny=__UN$%|pPdIjsqr@a`@_(5Oz*J>#o=K-6_QTenJ_}^8o!uikF12&PX6uBV5
zCRp<&cfHqAFdp+OJmohXw$$^zr*y%gZrt?B2cH_RzVMWz-TFLppHGghVO8w28#Sw?
zV3WEYThobNZX-XuVh#E@AA(#%`&k#P&xE^Pe;={&v-x6WSz9V$l<VB{>UW&#=@Oen
zcm$oexjBmd-XjI}Ht3_(dEg5O*JC2#a+DWahgEfAtfdfn^m)O4jhp@&uYRkS0ezhZ
zeS{oaO#tY~S?g)s984ci)cD_HpHJZIZ4-HOcK7uL(k16V#+G3hn*}?-`g_xzuYGLT
z5~)5)pR*lEij{5D$@Mkw+9<|;ysD4aYAHbfuG#^}@!XHK)4;2LHXC*5`<y&tIMhrT
z>J?n=^U+3`J-t_KH&^X|^?7dxq&`74tlPWF?Z7ILq7xjYJf5CEyXkiS$M@19yqEZ+
z3n*>pv0%@l(SmIQyE*>*)YZ4~(=q^5X0kC%8g^$B6^op)0?W#=u5=y}b?&^-NgUVg
zkdZ#NKmggiOcFh>od1?Wj?Hwks2T)F@We_(r_^~Z8`K(Sf!CDsl-H2`!MKw;-m`4-
zR=pnIo1JhH-ANt^dtQ)AYncR99Xnd|6O=_ZPfGefvXPIC^R1CQ(i$5lP*2D1K?T^t
z(nG~oYX*0{Iv7|0##Mh_baE&Y+)l2@d<mQBx+$DouB*)HK-YnK1v2?WG(E=%lz?r;
z=8w!@$$}0VMV7kGTadvS_SiPhBQ|kR^QLZXeJ<EYc5ifp8hwu7eU+VID~NV7YB}_2
z!sZ?P_>BsLqCQrUt8Y%q26s}9_DRROQM6=KI9<`_wu#Gf*BStd&5HC*lLb8FMqwrT
zoMf{|`W*c4PE%G18>gxptLdX{K>JuqL9XPB8kjiMN9e2dIgfx9H323>tS=Q2=!jCT
zRh`cSxl%38u`W=8zAhTOq1YhTRGUsTY}q5XDd>c3t~)lByKXpZR*FzD$xgupY{m7p
zQQxo{X}^m3kv*}jeNK&=ela_M%ocO5S+xEN!Fdn@^fjX@_)@gCNe(uO+(s$Yg`7E|
zZpl(SC0%Tg7!AhSY!p9>WYJXUTh;|%SLY#_TtMGN8Q7F&PXbk<Tx*6MKoCMweRF-a
zv6iyefv92t)kbM{2>ho!9}PB0o<)_w$I^;=1Xk}wX`~P>k3M%h0J&w@tZFuj&zH>_
z-3XJozzhc~f@nybMp|2hP!m8L0PbZ+c8HHN1U4CXO8#taUyIQq=*vOPV|F>&r+?2U
z51{DVO-{NwXvb7=H0iiz*(uz&dk&EhP+@bhwuOTE1GxknhdO>2y2g)l_<d|AIC?FT
z-Xm92YP{R{Z^gaJaK2MilG<P6ac<87I;R>ogZLb5KG<)nUC+*~F_0v+DDTuFiBtbS
z7th{DiL0Z?oKW-B)B1FBp+4eQ<XA6x%=6B<VlP8m3bLYbZp0S*t%m!#TneIGQwvC)
z;`t9?D-pxcZrAVl-{bF7+SRFUR0eEzKgU)Z1ysCNqF#UZu&14S#bcM(DAxg7$6dd3
zJ;w&U8hP|b?0LAa-->pkhz*<Bv(RVVC-o8Nqs$5Ve^E<exc@afu$N&);rJp-n}VDN
z>@Jf5n?=Ao4U#?UPWv^vTA$OXkHc6Q<<!Y_ug{0E60z5al^*GH>OZ?S!)()Fr=Nr^
zUb`ywo3zwMbJX=8k3GveB=P|CWY18Qa+*S0cW!R9Y|-YVU|%f@BHI1#jUW4ExPA(A
z0kI3=xuaa|yS=~N4h;J4I!5u`U`?;T39wTGpy#+#t|p~lc<<S*@EYlJmX7m3F7Wv?
z?n>@)FY`C|_v%EGnO<(Z&sH47oHq1?<CJ^O>eh}*PPuW}%Ob`WNcMZ|vRAAQZBZO~
z$;o#9UK88Xu@+Y%-4z1%Noh6;oM##7%Cf2vXN2xR30C9RE?S&ZUjEbcYr{6mb^Lw0
z!VRuzIl4%ZiP8FWY*8mHP3N`b=-l;)<ln_c&i`K5CRfKQ1>N4f&)-<?tF5YW9P2(f
zHkIq^$nmMzI*#=#*v3AW;+`zfU96*=GwNwn^?p3k=Z`(hg+BW6Xa`yi0I^Y_&;2<K
z8_WM!v;%v*`Xm%eL5|iw+NdB`!Mdxj7)xdseuX}NEjtk9=r$@1HY)Abd3aqpKK?92
zA9K`qX*B?z`d*5ugX(;+1(j00ee~i^Hj?I?!uk2NU%<bOALIV#ajy{<x|wxzd`>_9
zQ2WaqN|W=$x5B5@GVzSNezEAR$XTs(K*=l#1u-oOgga3=)-5Zh^|2S1J%C0C#cQ<)
zr4|pBjGaAfHDqPMW@%C19-H`&#8wyD<ED3B^R+--Q;&UCr_mCey@CxJQsS(oN-$Xg
z8)#f2wrQ-T0PLtoV5zZ6{S)}$*K2Ym$n^>~$a%StTlGFyY$|8J_XF5$<4)R<y-{|s
zskzL}VH&Vy^f5bD`QBZh2W%D8D4kqEpX1m9=YNMSxAsx)T1&z78TyzSrP7SdCO)?q
zHc}hJSgvAo>`MDm0{^?~Blp96MXseH`>n^;GID_}0bAX{mXWQomaEu=F6RMk6?9IW
zJ{mS3E3MC)9Z0>t+WTCM5F)DJ<bDuamDQPCzZ61(uFv_T&qr*7PV||~%??BxWqqD1
zg{;@&V~H2jviX*%)z2upk&@g-4Yd@WVxvZV<ZDf-VM{FqUhP1u^-)I~MbL>_C3CvN
z7HpJE>EbxYyFpCz+^}^zQ7WiZiC(;{vN`<Yk5~G|3*Jy!g@%ylXjzIE_t>2CpVvcS
zZ0Y6%%TamEnZ{DKH%pV7*8Vt){YYE;?e>0nev|0yU$~(^`Mn#pX(1Y$?~AF1ZiJMU
z!AN9uxv^$|V*T*NOS!LbuY(rIHVoeO`9tr2C=$r>-t%Wdvui$wJ&tu*r(bDzM-$pD
zASF6#qa(=1kUQq6`9gARPdzU*h4C%#mT+DEjMzkH1_zJ%Pp)BO`W~(U@PGe*{44sS
zKm5AX0NCRSw`gGdTb45FAtTFtR^Qll?)oS<{${$;zJ_<e*j^vNR!6y})H$|OJU<8S
z`kg+Hey9uVNi)G{IN#+K<o*!$Jtyj3`|IfAV{(mh`~Ma;vt<uqe;sVr=SdCS<JfWU
zvCkjFX3zGJKJH<U`pAP~eTrNk(Z@aP5B0fkM&jMNJC+RVuh{30VSh*`o~o~pVH@Rc
z^AD~8@E3paSM<;R**~SPf9-3Vtwy~T^o?z_n>{pn*(Z+U1YNqY?bJ3Z?6*~op*~x%
zL08`m(N@)Z(a!&#-yYkX<^j3c96H)-8!N7lX#e1&7szNhAi$!{AKoNzAYXp9cM(J=
zgo3`7mLn-{<~Ykc=_A|U=W<D7GC>KMKVG7AnWsOKI9G&QoKrNmn{tt0nT#Hlv;7_l
zaj?i$M2F5ti+<MVW#$5BL7$KwBJJCR;@)`rIei2i?ZRt1E0;KP6!UMDKVDNXCc&2E
zxBM(xXeKH4TIBbJO;TTw)u34QIAZ1VS2;c@)&uyuw_{0dmuUM{v1a8#=k!;>dH{d?
z8R<;Szr9U%1skW|ZujEnle9)ofn{ur9deX*#_m|>3v4yY^`H}F{=M*?bNhDQJ<=Mv
zUo6d0A`A|V`#ys^+){}6TGMfItRh!nRXH95wj%8WxiY3>7ZF^&&rK(0V81uH%A^r;
zWKKfi<u9UBQc&`s{P4m(zWpuy@tiW`*d{*~Y}-s;<X99NFKQH9&{wX9KuxaqL9S$2
zlj$qu2D!FqdvM>2Tu(w}B-jgh{AX~o$3CBt$_i}R`n(kHb4hoq`}#<o92J|%@hJLe
zsjR9KmYT&fnvb#1vt#4T1d;2k`g&gV*s%tEy^}s)+gOsi5>2ir>+{3xSZlNc649>X
zzF^#oKH~Tu$4#z_%k_jB0@ml}bCcU-`Wfs1_vvET+zz16cWhKUp0NN4HmblzWz=FQ
z#cdMn+$qSF$2yNA;l^id^E~KlmTL*ULBJ-I7m%yjfdh2F^jG!OGA<N**|AagF4v|L
zI<{ufMITFtN%~wUFD}N?L9QXkkh5TmwjXw&A4@}@M;m3fKK425t5B>=PFIw|d+BuL
zy(DSloa$PdW4EUYQ%4>DYm)(@wp@JMKQ@Q336g%tZ+y>gIw(!qViYPCLF^POlT6Z<
z6Y6nHx*V5xUMA(hE_(iic1hI+O^I<YOI-*8#Y$D$F?K9TLEqDg^iQ-S{hp~hMr_%z
zRTP#bZRaAFOy|Pbl<EUiA;6aRupL1EhI$=}O(|GrU|*$P(b}*ha*#JI_!>e}vi8^n
z`vH;HLRSQAxVGAyhTS$vWYJ`_WCzVw5=w-KUFvNp_qY`5G;BFwn=NY*^e(`*I=19;
zC2@eMrmP5Jh}aUa$+NgzH9Xm=mI5}JZ_XO=>)4~*W^9VAO8)}iXY2C=Xmy;@2iROE
z2D!}v8_zEdTWEK=Z}&PJG`n*_CZN`#t)O!u$aQV~kg(9@_PJpbxf1$(ZGA3sJ?rLY
zkIkrS`aU<g%f0y7fKB=#lgl+nY(`xp`?jEanGy=iF0v`jxTj7ZL9=&KDx1UHQ+q{h
zb-?C2QCgA5*yoO|XsWg8tI|Lftrs&X_9b9jT_-dnV+FPu89`PzLhOLaO&qyRuCz0j
z+E`mqST?y%#Ia;lN|VcV>Bc$FEx2u-lupR|yt7f0W2+czj%~0}7j^)BUSMC{MqSu}
z)yI-#uE2&#-6*E~<JA5YR7$xYOGc%{o<|vb1UjPH_j$9QG}tJmiIUBsgHb2y+?b1w
za!rf1ET90=O$(tr$r%(PY#+7H8882~3MJ5lV%Uq*l!+WyP|wXeH&Hn%)e=+F>3gh#
z#<99xu&F?F09f(rT9sz3t@m|fKz`rc4{yEG-#*bHrN@{-1o?;~sy~V1PxieR)J3Gb
zL;eB5i*spgul@Y4v>#J^20JqT?|5%Jr{el4I8dY0%<f(H9!CDVGuNzF=AT*LyIS~t
zf}f^d$g1qz>LJyP?bqZU3xw{qU;8f81NYwP^Gb9PLEA*NFPDdENyzzd!1;IK_vtFM
zOKjKVTIpeZ&3eJz_EE0&5p0(kB&pvp**W(iZ0R+y1rUDk*nU;6k6;_+dV%js+upT(
z!|yR{d(XCKgF?Gq`?|K#<@ry*{v^3Q0oz6U&b^6V4;u~GuE~A(n$h0FMvl5Fn;{g&
zX=oQ)iuQQ7xVcz{bNc%S+rRTWvE9QdBeq_u?fdRFbbYLPdm8G%#1~@i#JvA3k9_jw
z&D#x3@N#h>(yqRn;Wzagw-;6vj&w%Yr5Pcjeiu$hdT7<?D&6%`aZ0jnZE3lnH6=%5
zyC-pnJ0*{H;v1COgp@NBM3hA*auyXNV3MZ1>%>k4(^B_TM!NftzZ23$?cR7c-EmWM
zZ&(fc>Zc=`L|e%=p-iqRfoCpY5xIEu3L*)r{927;t*(SJnbBD)j5D4^v?+ITwA2?%
z=a<x4O3o>!@5DwEm5?TGMcNVuhqou_gr(wA?sm)^OSLXUN^flg!Q>eG7@aPEOTp@_
z&8_;lwnsT?eFB?&+p`b~c#vZ$!H8+URJ*m_kF1~vbc!^>sX{h#5<0n#eU6AE!{+Hr
z;4Lqv@5%I&{9bZrV3l^0qdnUwS3<?|XliPs7P!#I(qvO9xf~sv>!0<58L`w-v8as|
zEtEzY^+?sD`%KQ&vB@J-sTBI9N~EURfeN{M$6^yQ*a5pYuo}Cg)bglpxutT|tR{Q8
zM19W2Gfi4@CFPxQkFk_M9iaLJyHQ&dxnXmgXVH1oN8zk?ZGAgKCv?GIVIYkb#Prj!
znZCLH`g2pjreN&Z34O{JY_bVsE0L$nuV$Mu7VI$FxbAF!6}$-@QwDvlq0e1k$zJki
z!z$#K5a}APZ;vwA0njE$SrTdy2)_8r$z|g&QyF~Wy;MW38b7Y>n8K%$W72bp-emXv
zx9;P%)+S=g6>TcG)Z+CrW<>RhQ^+=2lJfMkXt{W;MrtdM^aR^&<9<H00<!$cYW&6V
zXWaGb3|4M%jn1zUWt`y{6fEM@jM4jwEtz8*n?yAmwyK=}iJYHXuoG%dkaASZ*g%$!
zM1GV|`@@S|7DUdH^OW-@vp6wV<xo#pyjup*JRvJb_~8q(BGe%(n`M^a2IreamDqdd
zfXspdN1?ViY)30lEc7}$bdqg;&2aqH(4O_(uGl#1hrkctZ=Q)<t^Nx*)-`gw@xZ!V
zL!UENsgskEU=zzM&g1HRE}J+aSKGXR+`MiHvPoua0HENkQHCh?$*~pR_)~`{f3!$@
z>+>nfH6gm6$gyc{8t{^Hpakj_aB+H-8#WzRy_Xb1b!<s?CoH1av2h<Snu#F#x+?$s
z!6M|BhK>2)Jpz8l*jkix-RtHQb?6_(S*+M{#eB7xT(cJLEsBj?AN3uoeXh~@GPXQR
zXASy_=>1}KbwJhP*fCa$)>^2*Ccy`w<t*o>6RB#=p15Jf`o?x+@*t#DqVH!!=M&`W
z1&xd8BWnJvs6k;m0c;66VPi=g*=qqdjHR`;^O?GFJlLoN8&#r>LSbIifs%O=>gdeK
zEYKPih~5u&K(M9MbSCR=TO3P-vBZ6Ao7O98BQ<?hooM!R75j1sHi~h1Erq%Q8!`ic
z-Le+rSgLE&?<QC3Y?O~BvjfTW5%mlRo4v465-cN`*~KFcXN)!H{D+giZRi`PvSJgy
zX&GB9c(;>m4#@Fjl(vhkD<*%hmoT^14X)-ytzN&)=99XC0J1sMebV<-n2irphTlyg
z+}q%DO<T7Y=%|eEWpTc3%TP6rY2*BloYhNcw;-+4vN$)mjTz&GeszDZfhyL%8ineO
z-182>a}(zCy0M>ybDF=u1823<Ojg}EV#-U_i#r6<Sse|r@!KvLpMS?eU4{+M7P0ZU
zOsQpd)joUt@3O&HEc;Q%vjy3xts>Y_(2gR2hf>S_TAm=+j$<9;fQEKHwg5E?6g56>
z<A0ZSj4{WCb_q5b`aEJ=fz7b5q0dtu__lFv35GN52u`wS=q0>+Ss9IEJ+?bGwAWg@
zXB+i(lw0I~ALZ(EkO3Rv-p;X3)M2xBf?YJZmQn60VIwri^$C4m0`{@b9s7XIu2)?j
zLp!iVxf1lT*7_helPm3E%UX}%Df()2<UMTbhz;#E^mz(nEg80YSrgzXV<}=E$5I`z
z+dHSG)Q=@<H7c%RJ8SUV9=7F*zUGK+7)zz}wLjKDU+Xm+74%VT<#yiv{Y&}VYx$v%
z*#4e^{j_J5AOzUY6YMA3)|^sjKiLLLaB;BxT|3)Xw*BE*>^W|O?T@xSV)LL_9$O*k
z@G-e|bs*3l$9YD3#yrX1mFdDU@%j^piy8p%M`~vjU&^afkJ=<yIscRMl$*mv7sKR^
z^m$0fwG<0W!@oUPaRqe5z*&9474AIHffKu;cp#4X+Gj+zFb}%&X|I7BJaSrRq+Hj)
zX|2~fJWvy$raf$Phpln`EA>r0KU;g%^I2}kfUO-XeL~L%UmWWNkNG29;T)A)2{i-g
zl3SeX8F2sI41Dvqi1<C1h>b3=v6k5J>IHD84$I*hHm~z==-L}E`Du8zMfeRlJ(On*
zBG&=iC|B?Evd?3F9Qff)2gVu|7ufCxojCVA{d~R{60Z}XH7bttUY}Dls9Eb3=wt)D
zq_5HEb*Fvg;cvAT+W8s!T8fUvJ-OcG+!chO+-Q6v7RG)Ubl?KJ+ks2&dXe*Ry<4fJ
zFxmk`-R4lQV8AA+*H)wA0-NdUHMu_3M)fr;y#2Jmkriyz_L95Fv-df3&mPgoQu|}>
z$GKrWyN$Yn?L6q~xvy_<?rH{@9Y7t4s$<P;ltfyWW}{*;uxVGWONZ649j@r>`FyF5
zdv<`^6J56hH%Jpd57>y?pU=Jsir9)xhB48%_tpW_N+nFD?Ne&lDoDRuxW|t<Kx}fd
z$lto4SI5(&(aRj!N*o1yP{)_<-nhP>?$5HLn#H~<?|H`g1yQxaS$)8!mpLD2oj7IK
zQ<=A5W78*Xn?CZ$pTILNi}0lU*a_H3uz^Nmh0X|dT~hrl+D-}7BS|w&YHe8yd3!d;
zmd!ERY!qRkn^#a&<mA{mY*r`)cx(l1=Q9dn&l9kjlXsHM2Y&C!#>=5$vv$6KjC+<V
z%UzttMK?e|A0zLE42Lpycy-~>uyK8jB1HST2|S~SeB_olY}K(bcHPF6>^a%|F`AS1
zjulFc8GXL!ymLnM{7K}hea>^w;(e}@>0DZ$3;iLfO{(Z~4dYh1+T3>T<XT;Bf?cqw
z%@KWsPAK-EueIq+miL&-y~!2MOqT1cHLHlQkj!lX75luVmNM+vCY6g(R?Th?(dPl1
z=_65#u9vZ9*mw~lixhjd9Q3uizWP`)ib?3BEx!7C0&q}AY-e3GPxAzQti4Xa4rJJY
zb*b1yn*_6Ec||+G<9?oZ#!}U>=3MkXmNc8l>Xc3X4lR&t!$zscCJT58VaFy$(rgaJ
zW@D+1wG8aCuss#GQL^8>G-r5|tG##3Mn!DtLLc1@09&(Bm-AH?Y?GT_&*bX*y2)L}
z($dCKoR6ygRQsoLO^!|K4fsBKkv<mtiMfZ<7cRxexwRMT)0CW=X~tMG+s~PNvM+Sj
zdKx@06XyjM-F!8EzZ7}@Yh<%ILQ<OKz0;fz7z^%*@8?lW2}JU2+Ab7A+x6~OqqD;X
zj9z`yfmSm}GJr5|s!6Zi=;qocthIX}gL<~QHTUm6L?M=kKoB9(K{ba6;#&K2u3hBU
z^ofzEa!i-*mKZS}+w0DE5o6p~A_;s-?e`aov7;!jt3Z$Z-m_YF?p%lC=8tOlDSY4E
zC0sM@^x?(tsRbNe{B}5h?|SLVHSJvIcOS6(wWFNkwfC^^wAXm=+Jf`;<akY6(<s+H
zY<r*AX%E;R>+>3p)1GYNwTJsZRYRR0-kx)WPWye^VY_y1|KkewoqJtxtdF+24G90W
zaWm?`#oxm<E-*bZ=3m1ibl7A=CFs~LwuoWWeYx16ui+jt_QvyZFAX=&zOf$f>-zSP
z?dlHd!|i*Yly+^q*{*2I$BeajeM`_Xo!ot2&;vSfWt>}YWD{!&W8rl>oX?3h0Q7m<
zOUeGN*fDzlom+Z-Yc&A$(IRh=EC&6!Z;v}v{`;yFDPn+^Rs(?Gu(wI3MeJC+MZu(e
zonKqpg=5j8k!t%r(l@<G8hE2eer>|BU;`JpOxD3+y~j)bRIDjKk#pU!?r?uQzqTI_
zSpD~}C&worTN><GuYeb_M9x*;YAZDCF30rr`UG}wllxP!j&k&4U`udTP{1adi=Aa(
z*haY<Hs`K?Gi;Y~L}Zj*-}KjO09cgbjvO6Z6$kt^?)nO6!yC(S99xEMte+9(Xjlh1
zihWsk^mhmA>x`{v2Rb>9{P14uL#cZn=GCXcMir+*drBYMvy5`gL+ymv=iRtppHKtf
ziW~{M=)W;Jj`s8^ax@!NEZQ>*hwx+ebWbOC^)X;$huORD-i8f;r`M{nNS`Sz;_vTI
z^wFz3*|d@gOX~Ue(p$QkZ_|fX1AwYU{j79z!!-a_&|s+J#QU^rX41&3FBv_>__Hl4
zw)nirqL_5(Xr`1McO2_P;7laptmco6jmBBckh4eLL~KHLXPnhty@C*>F<GQDd3!M|
zC@B0OHaOX<VIw$@$dcc{yN_$L!+V7wuGTA9LoEgHzZ=)LMIXw&C-CNj$K0?bVDGS{
z9{Y@9$P!4ALOUX*C*_pctqCAb9^(oRIx%81ZhE=2y|=8-bCn{hkyqa`0S%jQs^eLR
z0=6vHz@xgaVp|Zs9<T`=m~+=tuM?%pbBoi^3S8$Fsa9PdliQ#Rxk;aA6lm?SslH~6
zrRs7a(??*_ECbrnSB$k#qaw=fLLWn)r)mX<QC~y)T(e*_)00qSx{%dNZ(|KbrKcxg
z<Kw02V|AU#LPu(LV63HJcEHvc-VUtFUC)tcgt0fu^}0T~T*EkT`q=CMN9}8&@<e@Y
zkbOJg`pSKtvKQyx!=_WZ9s3DveB-6;*a55a0PJI(2d}BJV+RzAtR#Fb7qOXKHDa&X
zs016;?B|s}Pod9c>}7e@Pwq;n0k8@kkI7BP&LVoon`0@|1ehRKq4ps-^i7V0u|id-
ztN3@exll{Xa=n=~%i|BfbfiE1eO>ojT?lgk#7JG4S?IFB+gX;j5hv^Ut>Kp+z0gQh
zsq3cW$ok@K{WM>V&d&-q#5nNe{pYtHkij35Q?sKsH@j@-PY&%8p?`m-n1ycb@f!Bq
z9NKGeD8;_FF=oLJ=KS?JG5$8Ej$NBSWAW(dcj2eV!}+|?^bbGy0sV{r`oEz+{QB?F
z|MEZopHkdpiq}aGI?5^~df1Vc-k|MC?Y}{6kG22m*nV^8yYui3&eiru<o2sR8~q05
z`WuwnW1rt7wx^u`7`D*~|LeT>uPXOnmmMfr*Z<{TeUtw7+ux=C<bV86=qq3PqDR<E
zzyO~En?Bmtcuo7qp9k&hVEeDNceXwJX7_x&llWPz?%<>EEleb>-F-DUj_n_Aa|g*@
zn@|Iw!|?hwgyzey_zLCn>#CD{NpWTVR}?Ucj(>^l!-VcIO+E=X2MhoA3}?^*ixp1C
zV?l7#EKiC!#e%PW1h2RpZxg5+Y1i}*P76LrbcnXIBj)DzC=ogLIA*@>)584Ot3;9t
z@3^GTEfO)F^Sqs_69K+AM-JYBXI!G=H?Vi$XTL!f0pE+U$}y*^@bQ#^t)OEv9XBkD
zjgMIlH`}Jk32BE%;T=B;2RR?}y(Z=%Kb>(rOJoeU^F*DaT3OC_NR_gv*n33uKD#~2
z<muJDa&wCurPhH)<{!6vvmE*NhYj0d2iqB`DSXV>IpR#PiX0D)m5(RXA295*@VB2G
zEBE=mq@-<fy*Wsqv%`#|H*O>{y2|f4Md#*L(`NKIOCR#WNBG${EVo<x8CYk*s@TqZ
zay>9F{?VUBux;3RgXz3YA~}Mb<-^xzc|5x@es+!GzCqoFS0^n3rgG)UqVm1+@d|7b
zVZLFLdII2UzX@_x{bafJeQt8S3H1i-nDy#jur1PuyneakW5&Kc7cVcgoi@2D_B%w!
z@v)_MN<{gFjg1CBi|Ff(>Zj<$CbwrSH()zJU%k)gq0i^p>p1XuGP&}-ITDMH8SA}7
zeO1B2Mv2pCS#aFvjQtK#-p_6=RSH-GHn9U6HeR&x@d17A`nqA^R4tRM93SS;=d;N9
z{(O?}bnNI@I-$>5KVNYz1jc^UD8+_N$I=~m@EIE~2=7tfg0ZL_fL!;+lGN&0Bogm%
zIC|O_%kg#?OIBxub)5B&#{kRaR3X=#Tt98x@AbK4mIQ2K2cWMi$5F0(cHk!Tx$5iv
zW=}cVp7oJ8BJNRh;zsN#*OXYqxqmAh{+gbw_VnOmiv@X$asTQb_Vh4=qyHr5JqH&4
zJumv%_AjvgqK`L6k&z#7?dM?ok2gnoE|!JJmFo?h7TEfO(7}i!zgo&~|K1|Jmv|%a
z7&ZnHh4f_556oe~XEPj~qgA|s-`+*M&BRp(Sjdw)W{oCHIMBu6f(YJ4?Wsh0vm^DS
z{Mi#Cr-iSbX&HC}dkO6mi33l#zd5qhsb#9uWr)+4(?h|BEgaK4k737b1tm((;OsZf
z>8cbw)iU#p-@W?1g`3;%-C@_s>fB+obY-Q3kxAc#O$eqAkf?1?9Wk8AvJ~K$QjZ|5
z#?LNJU)=!Y2-WEUY=Y(3u&LZs?!xUI<XSkAda`JG!xrg=Rus@x$0%WQlCiI6r8r?n
z{Zv7lBXZM_S<8Hy;aF{bt`0yxU*(oMxlWL4L6o=2l{b~M%XM`pu}mq2SFy>}`y9nq
zR}>_7Y)k9&YuLnLZ8ayZ=xe7FOygv7#YWbQKCehu);=%3@vm~#pcm=$s=WFMlvLvM
zT^fayY-(_pVQyn-4f<Gt&F*buO=`=`!&sX@yT~?<-}kA4#%aJ-$;XmV?o{365G-rZ
zSHqTiY<a+TA-4frh8>WsgLOrpo4%?(rwN<3K9)4_MC|jN5s1PDXhnp18%w%LG4^>y
zpXXg0#m@C8*L7zs*;w;F=k?Nz_s*)+F;3~j&qCnrN1tm@LK3~z`WMM{z<BWuyVn~y
zD445qJzm-<$xOjGpRBO<vS$ZS3|PieY4#IA2M^gO!&V0yRrc&B=GJPXbe+jUQYxjh
z{QmZcNPqr4sXfh`5=i|v$v&Qy)4wdf?&J^8efX~fivOOAW@(vYS=*Ifh&K^<etf$*
z=x^qv41!fRlXTOAoI-M%B8?O1glhFoW7at<PA&ZF{+diae|Vdx4Dkd1xNq)PokF;S
zPk(bMEF`L3{d5kP+6q2WaOlKHRf`DE=I}Qs9GpP)3Kn+|MQo*XztdzA-5A?zuO^6a
z%{1JbH;z8@srQ9;;*(Eas(r$|!6-h8Z6G9bKqc{@@vl~7$3?nKnW16hs%=PTiVu|3
zv||&k;@pO{wU=;j>f5hi!~U|)`D9Dpp1GZy0`_bJrz*gdha#%Uin_M*iQ2rrlgl-1
z;tCVTm%c}8D;k{Qvkh|H!`5LpLD3~P!o5`;b;s}_xtd%|ZWnSlY|#6LZC@v@VRNTt
zluJ_ESj-+??enpHxOWXy#=H7xa?Me!GT$?Ol<c`qAEQo~zCK+a4ckSZ<KB+V<!U-{
z1$!sg>hxV})YnJ!QC=B4`gpa^gFbpjPi^NnY>Bi}8}?2gk^N@&_|gv8y_>E-giY>L
z1C=pv)Pre+vsB-E_Z`gD^dzzGcrlFGI<onhT4vF>VG=hPqV1;8-u))L2mE^R_d|R9
zjoa>UJbp(wPC-5w6M%r1|4KIJPzmEVYQeML>CGk)^LSsynaI-i{biR?5UtFYV51Og
z?b1hF2!xIw05l=RFMW#C{+n#qhb}%wg%|JBUn(fX#V?xkCSIiO;x$F9j>j&?29Aq|
zQV~L5ne<6IDR|J&!cDb$gx1N5`0~|?@@f?nS>u=a83i(VaVisDDVkcOa2?C}42qc(
zgmXSGNSQ3YsL^y(rQlF(;HNC=$R>HARB?WtaV$|6?6f>97XHp0{xYx`+ro~(B3zlZ
zPAHP9SY<Ga<GPaZy`Iimj4or^!Pn<yjx9X-xS$^vI5iJ^Ut-5w@uI9O@kNTst}=n*
z-z&CN+)E`FaHkbiIiK8d&67D!&Gq85Sq-+xp{jF`@t)BqC#VBItIAn7v#e;Z6k-In
zS~L}!9X!%66<FE9deUQEY^eiQv8h8}7PgFinzhe)!Id;>MXrr!5#BfOwly74Y-fyB
z!#;uUTF%evdXrRt;{s&4ZP+CJ9(>hH=wreLk{12rbJdA1e0k8<b2zpF+2RmLYVeKL
zC1Y$E)&+|@lcPipRsz=Tywv1s`Y7C#ELU;jYSD3}F=8i#Vmli)A6u*Fo61pj!uos_
z9!zR|4!O=r`G*Z_f{{JL$*z+f)wwcZ!iup|O&^z{v;~ZP##mZcPh~#KrjP0C?0kAs
zkTUDovZ!AxK-~8^xVw`YXVp*e-QoH?5jr6Xo7=g+7;A3_R9{{Hlgdqa39Hg6*<{*m
z+{I#ynoS-y!p*Q!OeA(QD<>+3DZF#EwnDN~2V39YIYmPq{u}N5h;{en5q=+wh1KC&
zo|YP}ZV_V1UQloN68>%Zw7FS(6BnNh73Wu1N8z?PoEnuBJB{SMgrbsCIGo22Pcmoa
zw7zHO+IEfOF^SWMJ?2V3Hi;98Z30hP4-%YEK~+^XYL-w$b;EPyH&<4=hb;G3niz>j
zWoKK~Oe)JXQQrHt6}$x3JmY2O8Dr!3p^WRJI@7i@q{uV}Ixx076!SE`M_P50oaw%j
zyx+C>>``bks=WJTku#}KmwQacXT>VK!d0V47t#W)lN7q0MXn3(#T$|Lr4{Qmxr*Fo
z#dcbX^BA+uS%B?;W8MhVNLEeIy|3!fI*J&#cP!{}ggPzpdwcu7D5avf<=9ck+}i|a
zvSZuic2ehY0ygI1Ho3CgS*|iqlEUGWWVZ?S6#9H^T;KOqdBs_-GH<%q4b+3nRTLDw
z;aa;uHUg)E7^rgrxBT`jytvbOj>>T{eaf}#^BHnymn365;P>(lg$_-!YSQDIi4fGG
zzdugeeusI3I&)ZGL1UD(&(D?hb(?z})lq!{&5&@Or{d#IuoY~6aB<_*IMZk7tBfUi
zCngy`QjE6fJ5qu=&dMz>j%}X9Rq7&QIWU5;-S7;7`;>84a;Lex^SIA>oaQ3$U+o9g
zzZLIm?sMb4*9`#l`KlW)2cEMPD};-&gt_ujiu7*JQZaUNmGNPLJqOZ4x%Y(Pv?z4T
z^fs)=;zZ{;XVt1djD_Ek{{EE=%SI_@HcI4rB(W1#Ln6)SbJ(Z@un}~EDQ4JleuudN
zZ^AP+)=u37(s6z|Ylg*fI_SEA*HfH)hdvh_ludMXf~#`^b^zF>K_4fvp9l20%5|1t
zF70!(Q5qZr8>N-T)m~;4^*v*3$v93T7u`tFxAFNNSqZWsP(-eVjf0ZTW<SkNpwC4g
zp%ck<WCj1SZt_SERnE+sgN@>`Gl^sUZ1q}Da9B42m0Mlpx>!apoQezHL(}9%%Qc!#
zDGw!Ud|N+wf%i3LW|hIQpc{$&Ua~nr-`?IsjLr)AnXl@18vxWCp7A@(;5gIgL`z58
z7=t$!=qYnR%NnET=A_ZP+PdZdS~9cA61ZnUh8!#hnp@kfJV?;iSptUm+8lf$y29^D
z2~s>t5a7$ZJK>1t`w5n!wuJxPZEcGL?kR^qZ;J8xN6>`cNuU%-eE?h2@nl-4I3<Xy
z$9BJ6@3WuzH2rV?%YRNk{`t@8|N4LX7u#4k(=UGUO9@zFYAV^_lXcHY{vD1tf`xUM
z$K)YvmeT3&B=6pvn_C&P%VNCu`kp^+_u@^po7-pNM3kcQWE;>`up|lGyCvN#wE7~t
zp~uh8_dPN{How<b&8m~}eFC<_Q3It4Hb(ItUj+N+2iUNwU0!v)09$n0<i_{AefCT=
z#WJd9WPjb=y>x6cJ_l^~_jlTdf(;vlJg1m+6ZUkkea_fqbFoHjXX$s|fSC_7<fiLj
zmfii`y~=gFH@^c~J%J2tcf>a3M%Xlx(~{{XZxy+Ve%{>5@fkh<#lA>DC1*VG{a5&!
z_*oC|8{KcRF>EW|5oXg*hHY!-_w%y0tU9TWak|rYDeFW^cyHIx=l3#LZ(XkHL$VCi
z`&W1J-V|(>-OXbOYuoebUSv8S4uWkJyQrJK3kPd%{m%EE(C1c9!1|nJb=%1`_W7O2
zQLqsqi%zjOY#WxFO=mWJJexl9yHl{8B-rtIxRLoj>npzod40frF8av&D#6EEQ)Y5(
z8eGglt2|FNY@)9lzPp#!=Qm_obb@_OZ7lIPXRi60d_!8OK7|+mUf!cek?SgcvMFhV
zyZ9KkcD4~SY?_TF(Z@~Z>n2;#$Fa{R9p|zZVV%I{dehg<M%}56V(j9}!Q4&yd}V4*
z#eTcVHR_|xmp0qPIw#mR*_AMsSYKbfdPy%{zM?OF?(_8CJMYk+{>eY0Kl!Ksb27FB
z<HcvHVh&DW+bnZC&|UI4Ji)$-{S^O&z6<!nw%G!sqisJzPGZ|f+dpZ*IR}h$(4z#w
zVxF)f@RW6ugR=QIf^En4t9}>9YC(v`lyE`gTpHVejC%__nKS^S%`SqkA^mC;g7c%l
z(Cr$T6xA9E@f1w(7+_MTUJWnZmcpHJtS|H9@Di6A02N%{GO<0Vllr`L$JWl#rDMA|
z6z|nZ*Us07&0C4y*Wy+hU7~!lY)GvTgm6?>YDIs*?`oWs?OwBA+wM*1upj^Y1N!qn
z|1(MZ{n-Z}iV=DyFUHy&Pw*<qe}<i`H*fd<@gMA-AJ3J3eW*QozmNBJwMfZ#{ayzf
zh4wb#ySVuE=ca^R;CkWwYdb~{Jli93&5vNa_T2vGm3uqDgfA<-5w<$E(_{Az0N$|A
zpQMj|zBRNT*!g<-+OFe{Qwn`<7agqH6`gpnoz$P~`hEr5Zl70b_rExIfbkS;_ROLE
zjrGwV3i^0)?OyIz?;Wtoi+-C#@XP*lpZ%P?tpB6`;h)mizWOEkPVMJr^Cr|(fumqf
z$?a>ipUCn;F+Q=Mq`bMK{fxGKwEbr5FWb)-=jXxpPk3=^6#4cNe}3y!4n85K{r3`o
zGg1QCOWGqFvKA`r)BDDbf4e>{MKTUYjA^JXPvRu9HFEwZ;|eF)7?5M5>o{oi!|4RN
z8D2P$MSf&)a7r}kNx2y;0<IP~Yo-czx8f93678I;M_Mz*ghUY8L=2q&eDB1Z|7TkS
zDK?|wIUK-QeZpk^5GHadi8H^HB-kW6ls6xVoV%W#Rq8;@>fBDimW-w(DO(niQ-9gL
zZJwprlHNNtN|pm6wNEDwLQu|hnRG_ES9ONUvw}Lzu^ns!g>(}nCD6IpoUS@|w_%fr
zp^UMU44cUX5yc(0BF-_B+ZjCNj?K?M`ht#^BpEdU&ggToK}2xQXW3PhDO{;eiME3J
z!!v#s1g!|~KK0mQpGR!cuKnVDZgoluuroGxo}3W94Ckm6`;tCa8Yh{;V`D%f=t?L&
zw&<A2#^H}Xmy8V8*IwVW53|cv9AKssaMT{b{~r6i;@K=(nVnAOlD*Fr8z`qtw+l6F
z*drE>b=d&Nv5yrEfU)R%k(=q8=_^I<dRrJD8a8(P9~6sl(~Ev)^tsBFW(^*3UVZ38
z$>c?5Wv`pGeunC!&GWTS&(KG+1Lug%^|^=*YI3t;zZh#t`$hDXua#6^g_6g3^|SW5
z)Ddwfrj9Lkj&rbz+kq=K%CI?h8!J&CQ*wP4Y~JTdHi&qz9#Km{o;{8wi)cqsPBMEc
zju#>=e4X4z5mB(8WyeOr8J}9g!r13po<r*yoY#h3HVCm{Gh^;?Drb!Qj2ZwdXn3+N
z(i3@Y1sj)htUr{J+pIHaAZ7EiYJ0^7HE)#2Cdal+o<RL+QJP8-XmhNrb;zi_19hVS
z^Gl)b)bn(mtb_(Bt_z5MrG@-&$Hx~C^1;+ggU2w>P2rdAGz9oTfbw<<f=t8jm1UY}
zq-L;Vr<=eg&Xk4#!qoVn`TLQA$Ud$M;~YL<YZ1@(MW!5{>w<nL>3duvZBrJ9<GOAe
zkIzq%?Rt><IvJa(vpTB|S^%?Db+~GQVQdU<evrfF_>-|SH(EWu$Am)k$K$Pz$D$hm
zT8E^{`SM;7M|JUnsk%|GwvWdR+a$>VDn|b{$#_$2JhqN<?G^8D9$PDCP|pW(Xo~Y~
zZVpwshRo$xxi^E*XyxiPQY0E&u-%C4Jo2B%d9fnOSvE(sNcVxP){ztwXFEJ;7I(S8
zc2N9=?NDILlTgzMGsY&@qsi5LVF;iQ8L`dbc4`?HQsZa4&>`stD{p=<)<dyuqwGc2
zQ`T&FtH)*qUd8#yxR0&R%^A$j-U-;|ZL^5`Z!N88ul9}7(J_O8tmQ(VYv6<iBM3I@
zb4pI<dPp)+k^4&qrD0=zT!BscT>WyLTzNwV`YO)edF`<Ay%%g)DK>qtu!Eih*d~n2
z!)?PxL9TOBobyq2qRDl`v|*FLp-EW;_WJxVpL8tAxLU>6H$xveP(d=zZ$qDBt}OR}
zPlNBB(q*4>U&u6OYbVjy18I=LBn9dvdn{|e7Hp1BMhU$g^ZjM4%oElWx*;Xc%Z~W%
z-N{T3TpMSFPPkkl%j0p7EBbuGe1*?v&<Ar=PZ|hi1<CpR6>`@gS;n%-iZ|ATJp{hk
zusNaBoQa-2yWP&e;Q{JYmTo_(_u7n~9PMrJ#fZN;CF)`m2YZ_F-I%@AwTF9~<u0(@
z{Tqwiwnz6-d@n`YKl+Wvdp$N8Fn`*w!aC4x0K^5m;nH{q{GIcKd*j-zvFxWz4}5AJ
z{c$v==|x^WJASO)j?=YvL<l4d&WhQ1%HT1V>UQ9VH=I|nX_WU#Q*pVS&qE3hm`ME*
zJAbBlLkPYRO9crs!xuhDx!PV@yG=OlX0`6$TmFX^4r_1(hW6ZU*03Q$mvq7_@~EXd
z-~N_43P1S{HosS;t}Unl0IW3nh$FUC>fpqzJ{gxs@7lxpkIEI`>UC`P-1_r&?<V(h
zac@1=iIqjRU&ChowuddnKBac;U7fLGy6p4T9<G(rg+4xvE%|S)U#{z8JHN?oug^oF
zFKf4ax@-Dqa@`qAicLpijr|h;H(>K`(*yc=A@_Fg_H4E9^BtXN*y*CrUk6(%qm4<s
z`q<jz^;IYMAZO#E)iK02&5AJlIlK0>_V!eae*vj_6VyYt`Zso5Dn*U7_tLdb(~oOE
z2zCRD_%4OJ(qr%K-{KUVWmwaH7l;3Vh=72!(t^^Z$Y@X`q)WO(a)hHKMu^fdX%z<2
zAUR?<x>Fd<*ytKH5Gfh;?0LKE+N<C7t#dx-zV#a3;8RGw456}vpE5crtMG1(ZYJxC
zd1_<s#U*B=Ls6s@$8YK-jNSheW;t4VKNk~#Sz*4`T_G0p(KlA6wf)-%pDB43vmL)a
z1Tzkz?z15Q_<UYp>W7IYYv?3R-hW9Qo5vH_b~NJn*pe0Cn<)wOxzhQ5uu!X`Hvq^7
zPbjYgi4%tl?9-l*s;u#!w~3Y2HS052?!Xv{55p)L8T|6?=DB=3)y#f}<mtZRV@fg^
z<2fULD^xK_XFx4U)H&55%3|k`?12rJiV;dy1#J0{0uFdQ0&|azH|<X2*({g3;2-Jk
zp!l~v06^n<WKn+~OJSD<Y~GB1#U8kQtdW2RAatm*cRo42eSw%I$_CBRoKkD{I8(>S
zlM;A0Z&?Gc8Gh}NC-f0n!b3<b34@4y`nUXjrnMw#Xrd5!S<Ogn6#)ZB3{F)$c?4kB
zqGHY0>r+!jPyyl#+AZ?r;AQmrNG*Rs!AF6lr_am?v~+N8W3@`LmYf}F@`%Iq+fg+c
z7hLS<e&_VA;`^4wsi9iNU3W1*kgCpoR4t)eDWfnJpY$?+M)Q>y{jOt~zzf#KJ5YU~
z+D^thj>m7`?oTshnDssGrsjU%F!M21xe=#*U8tKd@0sZo><)ueSx1rmUadKe5l<#y
zz*VfvCYKKB*b)2+<)k*-TMy$DUU00txsTm8mZc4DZOW33-h6M6895}r7kf86c02Yr
zJul_f_>Z0-pS9i}J^rQF4*+E|W4p~^UEi<oCYMW;DMFNqtlAa}UI#&IQYz@5N7DM;
zQ?GPduJg^7y7yjQ&%}<+{7o6eWiA)`QPab8zNB)Ql~peq_g~%}vdz%lw!oc^f3{ah
ztHV|fB3gIzx0O8xHFhBf<Q(MX#*v9&f!{Wi@qT>a%<zCkmF$v-3`Va4XQV3}YfBd~
zIfqQr7LFmrqmHg~#h)6Ro=G}RnarMQsAt(5A>2c{qB*^P88;~)dc3gBR=E*4<!Ykr
zruwkr=~~87ald`zYxiWTMx>RO@w|j#d-{kY>X%adserYj<xXwW@x^t@(Piu?@ahGj
z52pe6bU|%;8LBR-%6Sl+M<C<l%|!97(FAZ&Se||-)1}ph`^X8)Hd<}pdmP*D)xoA!
z09l>S4g+}MP0~sngd4Xn@O!=epz<h1HMxlQ%l0wh0D@9e4jKYckg>f@JB2az3VsCC
zaJ`{~r+Tg=%4PvMO~+m0Mbu}1KW57Y7rQFiC(H*Vv_S)a9rGY~4b$6un5Fr!`PRw6
z&v~5aQMeXo7WX518NTKJTF;hP_U?brNq+4dfnV#Pd@jwh<VXKQh`4fPBiz2yZ>{O$
z($;lgo(6$XBc}HspBvJM-|G=a|74yp*qbU%^#&IsW+O-t5(;JPE}Tl)ki4`l_<b~%
z=7bfXu{x>q7!*K{u>9KLTP?6nbOgH#R4=%NLb5DNk4To;B$aU-CoJ8t_G{CN70ZoV
zg?|YMDD0^FCW=P!$L(3ir7s?B+M#?q5&mZ&7_2K4wcx}oFJ+?`XQMgHUh?(@s;@p^
z&^S<?-0l1hi8c67P*EODzchIb$7ffz+5V<?=N3;s26oOi){F&$Bdg$RCTlG0wL8>K
z8TUBNA56DXe^URv*;%Twp{8ZH^f#8Bt>Xin65){Fk;$~l6-9$`xMN8K=&s-XNW@n0
z5O|y}2D2SxL`{^MZlW74uM=mnfJ`>I4R@TVlyE=f2X4o2je@Xz*+$c&bSvdhB{`g#
zdqw3R4XWK}EQ!FczEtdaP+j?$*7lvL!@enYcRk$HtgfjjnW3{r^Cz4nh*|$ku1XUc
zJFLYGof2C%Kh)BxHhFMBcS(#LpW1MD)EF4fWgl16s}3)0|K5{h>$iNhCAA~Bd~tq~
zcT;*x4nFYBD{Z-yYsyQ^n>zf*R&JTv$Qyyu)AiOZ%X?)El!@Z>__+{OJ-FLuhNFQm
z%gZ=p#2Oj4hCHI!49-`l=Wi<0P0ETpgF8|G=Di=#`m40Xl+`GE+vz5<OdiHs;Mq3>
zb)V%R8+fjkQn@?1v>OV#I)=TjyhjF>R877Z^qa1ppaQqal;noAxA;>8yIzTaM4v})
z@juZh#cC{~nL}q)6LvAp{7+RsR%P)Y{5;fNjdX6N%IzFRO_2NjY~Hp<&c<7CuElZ-
zm3;q{+Fkn;7(axvm?3vg5$eN~GR+fv1rOW}L2#v8Fj*~x&Av5x6lnHGBYm<mnQv<(
zvrSR4<6{jy>Zd)XmhU}R*_1Y-JMx{mwP^E$8B)0sHQ=!O#NcibxA6Vxp<+}cKiF)L
zBZ4Y_nw-|NLUljhu~_gngi!6THG(Han%sGNQD+KK<UPHOY*yp>@r3l(3#gg+JQMXv
zdbLBn-xld~+>oEc4C%BJCDrevI!2U834PimgK*#F0`~%M{^N;l$25=O{2x1suKZKv
zJ$IpY`@ll!dVw9MsKJwrpK@_3E~%qBsp?kW2|C=;t$$LbRnp5r?eUdWPL8CgCv~EU
zPj^pX1fJY>p%{~-mfAjF8CBYhSnav)^c(@+19N8Ooh?<X=vfE#n+Yyqcl~C#NAT@g
z4Ts9tW)i^Z6aVf|Kaue`{hEkP_g1_Ke@HTDbT~@LpJyEVeXSZ?&1#<J$myA$R7{$^
z>0X$MDRTn1yXWZ*iV}Fwgz{Q;(&X8rGx`RdH|E}F5-6f=m7NV)beTpO-MeHdHx>71
z`!Si1pmv1}A=}69-=+wL?6-|Nl(RBZ150Y<IF}wj(*~N`RV*KVrLew|M1t)n5H3t%
zc#>t|Y>Sbe37VOA?XNX(-y45~Lbrye%Fx*!LNRem;bBF~msi^1S2LD@(@p$pLUd(g
z_eUtiOP!(>Gbg>*!v2gfuWdI-#zRZ<RJ@NFx(okQpgBuQLkOXsZyxi(>iyhdrLTkq
z#nXJd*=k6Y8v_K0LzS8Cg-xlh813-||5)_vBG#p7<Y2=%`nh#4U=*Y070HR{Wg0HQ
zWu6qQa1>MC3_R`X(VxYoE5Gxr+DFGlXB0FZn#`7Fj!KE1XKZs@W9t{pNI;G^juBUL
zywKs^;>hZ^))f}?(s}Nns$)XVs^PfJ$lY<{`$FS{|LA7G=2D345d-4uL7!e6{%Y`o
z7Gs3roGf2%P*fzpBmsMcWq6z?&4pE7KLal)DB0C3hQ}*@uR?pw6?F}q7)X-7pI|<l
z%8fC!^njdA)gD4Uu+v><m)_+UpJH=eFWqbbSL}0u27e)4lPkHyr!rwHZSMxG?tHy2
z%wd1}O7`E)V=#ET{xwm9*bD0~FR-S}RbM#XAdf57NE@ay_pc+z$jU#HCIdutS3_U^
zW)38X7^%9HmVg?p`2k5CEi4}rwgG55Pw^|sh3w5E0w=V)qCZ_}m^26|mY3fAY8x7V
z7Fq=s|KfOQ59CaDu2J~x!G1IzghexAm7+)UJl~?EI+-vo3qm2ct#{!D)pB!T_bx@@
zb`Ln+Z*@jaO}n;m9iqV3m#cHJ*Ux|fVZA1CH{o)b9Ij%JZ6O6azNI^sRw|0B)o$bD
z*%7rOA^w3eWp}viBaiA`kk9}M8mF`8=-c$QnQn;-m5AoRNEL4R4@NB2C1-NV&G@i|
zcBKC=U4o1qca}UJR&_M83@+1Q5h4B^uU0i<7#3G)R`BN!@_RtLUD#vl8T0a|=~?m`
zft5b(qvf$iZZZ`lXZ*?Of=c|cD2CF|nZ0Ms(sKWx!48If4DIK*+Xg=ceihy-Mx()B
zom~lf!!F;uHm&u&Bi#6%>U9cyO|BF*UOZQyr2v#CR*bdCnErv96dieGYhxM@M|Xy%
zI|as@wKc1_CH+%N<g`xH3RsZ?MJWd^0^;&<Ko0{x2EBvy=I(+&ydo<@V|D>foavNS
zAMoa8=Iq_4z+~JnH=7L^g!kuw!ndo$*k`=*o0G^iX$R!m+vR<SN!0<vSBoTw>Xn&1
z07Be4hGAHNUx8YQATttKsaE>J6lRmP*1BmPsQ);@Jem3Ag39d#<!}b<kM3?mXYst-
z{=|50GEg%o^k$mhnYS-fSK3)vSte>-<|GJquaXHUK2-z`n{`nd6O?Lil3q>w&RQM>
zTUB!PFMc3gIPuoy1R*Z`B;o7u;P(kM`6I{tcs3IaH!PKnz4<CEV0zR>Iqx|j44|y@
z--PMfa+J~akMf=F1RI2P(COy<y|L%;BUQu>L_XCJGtL~N_%!eZXPp`}C>p{{4!5AV
z3YiI9(jA7fNAQHqxIpVCbX+grch`%h)Ib+@a!CT)?0M3J$e4l4M{U_wl56RE_}}%i
zt5wiTD?f*-S`Bl&Tc4R@3We<p$<o$VAr&tc7+<!^mqps61UN0Ylk&m|tT`&WeRoFq
zde6YWe5ZZ(ul}$om7>1-hpy-h6=LM5+NgS!w~8*+kD(B3n%C7(boZ<<AbvX8EUzVr
zd-0_Y>t~&w|7SVul!{wlYLtZ+1KdSKG|f*^5=6A}mv{gV?ZT(-bF9yhARF?Sv6u{7
z9_|MrnFl%JYq`TU6^G=r9iLcq$H}*>m_ia0C4+`P`g148&+?4Z%>FhG-*<$34)&ik
z01xZ;EIeuJn~L3jYyT`F4pOQ1rk`><QD@~*>xCL0kT%osFmiz5!`ZbpMaw`W-<4MW
zwn!h3>BTvl_+aY<ovTCZc&z;9kB3`pVTfzTCF~9bR>}7E+xyDG12pX`iBQkkDXg-Q
z;UdD(Olck+bOm~#Qzha)3wt&vwM%36<Y%KVgW#ORFIob*`X`Lvf`fUX-)dD`@ArDY
z``)9otZq`9qTEQJiD)y?;M~^DO27eKm+q5L+?CvF$nrrS3Prb|Tuqy8kG-s0K$i8n
z;Mi(=>Nc?^W4FAfVN97qzL0t=$sX_bi09E+*)-8G1(Guf?l8y~9>=^0<1J{W0g+4+
z*z23(!dS;<0ClMB59&`lcWxaQDt(d3n%0h>jAm+#!Uw884^pqWU_G7cI|#ZBcT|DZ
zd`Iv3GpP9f!q~YphcDq|c19H=yNtY$YarFU<NCjC>cCJ4vzYDwRXTeT$KazjufUU(
zTf$&_lgl%()4aIoEP1BT-oAhXCixNTx+D;Wd?)OQ8Xm`9!4$WS>HCAyEqnV>dEOni
z5u*cib2q;xv1E4PqzD4Kn{!~2<%GZ^PzM^=+WO=vahXoc;k-v45Yk8;vA9@SUIW`8
zVdywEa|VFsR}6zYlKrEHS*PvY=eUl&{*Tq4idC-hbM%MHWY2MiT6R0{dBr;1`FFvu
z12%&h{#?ZguwH!sVWbS|j1Y|{&aP6wXfahz3B`gWpyI#@wZ@2~$&M_u<d~k#khlgl
zzK-SO$9s{m0Uh$7Wn*jGo$nO}<Z2yLMoLq+tGEBc@k-~m<;R0eM{9$;)_)e+8jSkB
zy*-I$%J7&d?hi74@Yo60FFD&t>8>&<YGUV{8B)VV&nRk;tN(cBI>NP#Sae_>lHq$A
zK`Pdy)f~@RgZnUZ5Ale!NcwrPGC5zu^VgqRRCue2SjC)wS=*qcPS(=0PMX4xMevi%
zN_qsx!C{b~Lg4G@2d2Jt#c-jglxs!wdI`gxpw~{4yi(kA)z<9%&!x2<g@w=S5@~7e
zX)L)!H=1ZExtWn>3oJ#9*6Nuav?&r{{#8aNDS31%IusJMIBG>%wS=6X3(^p>qXwAI
z^<nY2-3{Sa$&E*kqZRdD=h@nY6KL<T>?n>NFWkvnU}1YQs(O1pdvFG$0o76r7&Kf9
z2Kzw?pLEI_Bs>F`3(v0!K^5rUL8yUsOmQ!jGJ_F{<5)La+rlukvWMnnKm_vQK<O%?
z{XB|uLaP1d@?`87>y9+YsWki4iZb%g`KDl9{7Z5YIvQq@RF~lrb3MIn=&wzlX<m48
zYHbH+$92utl+pU!BZ!*`$G$1U+N!Xa&J=E0i?_+Zwr`#Rzko(0+5WbA=&v@LUA3|7
z$9&VYV}vWNR(~TmGn(y&<~=P%bH^qazSTDj^XC5BV6FEWiMlH&y949521^x*Gij8c
z3yZJ=bR;P6IeuRG^C}Y(7J2l;k3E+{OVcu49T>+JLLu9;Qs*coYOUqXt8WznFMR?0
zxL9jGN?})V<3$8d3~^j5oevhoxw#u`P9FHZ*>xQzk_*ofC1;hK-~5SE5moV`OlRrk
z{$lL)T&#kLoRTa!3G_6uH&`%GHP1m<20-{<w6#C^v{nf{BUtkeG-9Db*7n_f=aFa%
zlpw*11+}8x5kZys97ZcFWsBbyzt|Sa9VNtH%ZDWOh%61E{3SI4w%ZksJZT{msMpbI
zRj)V;t$O4&C-bI60kb1)Mq5=#a*)=Ll&Z1rmb@qa=OZtoY&_<BJ2hdPIDRywi6q{0
znR?soyWyAh*s2HSZ~dw8gn8H=6K;U@{t5nTFj$9S6OGUL159o+X)-A3Fz_lNxdaFX
zf*L~t!8Rjyh3-@8tk^+9HEkYK=1iu-*DcM7d+AaL@-7_oOm}8V#Ji#dPXV#eKZ>)O
zZRtWgZA|mMWhY1MF86sWwIri>9+5ss>@cE<wSsjif7hs5H<L1d@lOTvndaNm^cPmz
zv(3`8-K#2xN_pGIhn%w6PRGKQesWJqQaH0;%f%o__NErEHNwd*P&uofc}h?2eEXwr
zONDZECL59W?-Jq_N~wTmSUk`HmZA$fMYiqGDUC9w8|N#j%)+bfjsW%hgGa~YfP51c
z=yN!&<mW?&jx6*nh6i9<fwMafaQ6-C*)rof3x2dCjLb~E^yP+Yu0k2B7Z+P*b@Rk(
z<C66EVWYE3A)wO>>(AE|bMOFjl4+A4VZCZZm;7`4$4VI<98Mg0Pi5CcYrk7<$Lm_9
zR8-+WyArQOH}0}N-~A-<Fv5Pl!1gZUVCX5X0mJ7|?{V2i2|&jYa2ayy4G?Ihn%=Iz
z1DRzgpvwkb;tBK}@EM;wT3R<lxX!WKOrLMh-ke0V-{sV5t=_w{@jd#i3<8;tl<I>Y
z4EiJ0tXZ}6x|jxn<d;wUTjAGpm!SjEgRprd7auw(Qvn>VU7bSpWccw?h+g$9$F+Oi
zV-d-x(@K9(AsW>&hoi|)nsey?EWE;24mxe4EmyEcO6$K)C_llHKU?{$n~IZ+@}qvR
ziMdh=xJy-p0UCAhE7wR`)ij)tb2tCW<HRcd{W|%Dc(QF{keM|s2jfL&pKp9t8?+Iv
zAjdo0#xO8&NE#ovwd7kgohK&7)O<5^T~iY#?hXDk=b1Vk&iq4v4*M@QZ5@4D-GH;U
zEe)l)0@ziwFgH)D&q;cFD<P-%);P|nE#I)l;rv^PmxXcGumPs<>eaZG4(et3)ujf$
z^F5TEA|^xh{(sd>cjl8MI`qX){H_T{OV1K}X@%ZL>^)g}Udd}lkC^LjH7eA0<k>(w
zOivQr;<`N$BvoE8L4A^U^&i@mpnN_Zw$nW8m_vs=zFZq_OIcNKIb&FuB^~nzm40Jy
z@~s%_ZndsaK;hLrJ7n~K7}HvYeZL0ce=T#o<DuK(^(rZ)aYJJMx)~-ezB{>3hx-qk
z6Iv(x`FG^gbj?aF%E|0?;xDO2jf4st1<vQo)*Up$`1B?8<%TZ1m+63{f3lKs&jKKB
z;UfBeAv$NPAK4b8lWZz~-nZsYe71&ik6Fy=5oCtG=~l+nXGFJ+=Dnf(?R>|1WvO{w
zA806UUb{+$m>B%Fzyp^a8trl`PxcnB<1+2(C!3KF2c=o|nvejXW^hHaMRPGz(9MAY
zBH=Zo0B>~FkmO($T@G@HeFj~f+#4$bL4iIlxI?N^y}M0)om?=e142E=aQ~Ri|6^<0
z4{PR{P7`8)w1AG6aMtr-LfNTF(yR48xEfVE{-{<b;Lv~nm>u|BZ|2-QE#%-NgHRc?
zH)72T2C6UzygX4LmD3l6J?%OB(OzN=bS7I+%K*&EssnI)JfuLp?B3<V{(sgm1KuW(
zeWANc;S<+#`639R9$h$3w0CR~a;YJMLq|>!2L6#hAniwWrH~~oUW^Qpj31;gBQGa;
zib|K2Pe9|1W0HqP0ao+?LqUrE%l`OwN<*{b3+eMt%EHQGuTi_HN0hCx$4%cC8sLq8
zrOAcPtec<DfkOxYh^dGt*LH48@1jQJyW{0+D&)e*v16{x_|ZvUhhuESOUC4XiLEnQ
zvEv(;K_}&Ro|Yt=ejgW|li=7@-C0kL<U?2EzTM&XYmUf8p-r6{d@S2PRvp-{JND>q
zv`)CFu!ST=#<CAw!O*V~p_{xY<rfWecR#W@+sPf;zwShGz+)F{zfCo-?@@#NZ@kll
zayJ)918p2yc;`^qsTVj$k^o=LfdFMWPR@Q=+WdehGM*Xq=>^LM3r{SB=(14}GBGY=
zhdp|q4_W=7XY0FvEQELWe<usfS2(+nM5OMhq!SeB5!d(QUri18KGgE~Qa>{D+%kYL
zeVPD*Muo|q;iT1qApsF;-~|FFFB1Z87p_8*A%ds>aW%z)^=vn-Wwt-r3zR@Y2rRN#
z&pO2>7~>^dz>0D;J%yTWSHP&+ycwdTrjUIws(m<wQx^6RZZB+IPqN1Ya5uFLJb9n)
zL2wSC=g7~D`cuc*)9N1FKP;|0w)uN@-$G;Z!r(qCQGz@dtKEQA4{g)KvQ9Aj+(t3n
zn0i}%wzS1IQjFPjch8xpmoD>ssuX;|k%=Mf^9rr!S$+GsRKWY`6GfRNj_XeO>u!lr
zH$~&g+kYMBhOLn~0qV*08gh99@{^&9JxMHxG=81bvtqN|M3eGNWyOV*mGN{U{q)Ps
zAQ4hI(^%%uvmxd%Da%TC7WlBot9**}<@O%C(Lbja@dJr{f1!_DrIDGn^i6m6hv$L>
z<|GI;(%i7rw_~XV9ylV_z~;e6@|oRnac2T{Y3u|j$|S|dKj2S}Q-$3WcrzH3G^7W9
z7dSh>E7ikf<npkEv7|6UWO!!78NUr$B)DlBX;5(Z6#7@LPPLJ%H^^Ag!vl-$paj+5
z@ZEQQj_8U5RUthm^oijDiN#Fz=B+n(Z{-j<1R^95D?Uqy_W0sK@IcLdH{>(L{F4B}
zJFO>j?Z~*9+wCmpbZxbEHkn{Sd9RnXInVni88$WBtlZeN=KBrn4W`D-1PPbK#HV3y
zWc#$)BN?vh)kK&dHP!Sb1f7)^f$|cEvMaadTlj)yBFg%)$1B&;bnx?d*A$8EAuQ#~
z`D5R9dSG{##q`q8>l|yPd7CjQvaE{t4)r<@LWa)#`?Veo@VaPV)MfK9VOtNEI5w#T
zpw5?vp3i-O@I21Ui)-`1gD=X=o(Sy+UdgHEpm;pXzDx5%tiX8g2_aU;og1;%?j?Dh
zv5ih1w*2en8xvM<*b!4Lft9Q~{8vaXLFeT%p?>gsyy#!I@zP=Q3btUna?|h*p>sLh
z&Z3wHH3_{QLQ7dseI|BEcrwH=p}}JWe4>X@U`y<Nm$FY=HBmqr3>|kaKK^9{lqj$?
z`5pC;wa^~;`|tagxIKx3r>LNAid?^;`(^RaTPBVZRm^-7zu${QRVE5e$vOw3{>U%U
zo*6@p4(lPzT_yM(ly`=%n&B6%ioR*yhJGxV3E>vm!-z^vR25(gvG_FXNH?6x2qI>d
zseP~XXEWi?zZ#Hd{^bfOle)ET`9MF&k-&L-T}|0vZs!R7HDy5+qk-FD*|2y#r_u=r
z?5o?Q4ap$M*)erPBIIEu%7TAG3|SbvOwv6TU{w}Ez4)AQEanh-?$f~k*82YQGggsM
zAnKpN20H~X#ykP43YJ8`v_FT32`mw&{`=>?oRK@K_8Yq6DS*P96Y2~hl0b62pzMFZ
z0fE4Thvl2KtI`luE3z@S%K?<#aF2CrPW(_2(uBf#3Nxl?jYYR5JvG-a{t4FIIDL@p
z>y^yJ(WEYYPZt|q1pp2N?e<@6fUJA({$a6!K2r5T(q?a0{QZlOE}drkubRFRB7Y|A
zu(%OC1$+x)HMZ7GOaiX5Y`6p5bJIpLI4xbvWLZ@eXQ{jHk{4&_OB&A%7&dl#HyAYe
zd~H_bZ8UeLsp@=zx7vOD8RqwJ!yV*k`2+u*YtDePVnl~&W>4JYM~xG_qd=6#tq5=~
zvzPuG!)*OFAuQ9F;%2xYdoJubbM&=SNPIwk|AS$!lB6yRz3r5Tm)w;2DB)&i1h1{-
z{(n>1Z%bIlgP+?RzMh#NnOd;-&vZWk9iYYlYD*zSzPNOPTv0BY)O&tli(F*#<mi#{
z0$YnK&)*2nd60&PvYeVR>*p`tW*Lf;Mzg%Ai*i$Rh3CQS?nK+xKgcWb;`^kA?}f3v
zBOhr{?jt4heY`icyB`@GTNp>QX&Ov(Yy)a3Z_?SaheT*lY?rZAVIM2b;l~rX0ky?k
zrgF>u>!NV3bGF((#ViloE?(cn=fDH>2Wq5A&EVoJlYm`<!3@N{e*3gxO7xr%&(h&@
zVDLK!GQNl*O!&c&=e4B!J46V@Pq=dY!%KP6eW8Af(Z|ELai}6>v?2u5I9fn!8T``L
znosjRFnzuMufLo)foO&rVFd5@qZtv|3zK$*hU2ENI2kGE!~WE}_~Jbj2h0F+Dl?Js
zKG`uYxuc+FZog9!fkqhE5@Kb3eQL$idqTwe9F&RevtIZ4n6w>TRB57|z7%hVe5luJ
zA`(B~LQziTXsYedP0c;H*-m428<P2?bH9b*L1=6B)#qi)4Ly;hI%VzzRFJh0dM2g9
zfQx*>_UoO08~J8-KNm`ar{8$+*;O$ClpoWH-scq@77-@-=-|%I>s9O@p@jUiU-wdH
z=lMq&Z9MO8i(!6@2bqjZN7j&tc23!$nN6kk>aY7KSDLwTZyAT9<pFHFHf;j-yTsdY
z*29_muX{85L)ML^-VM*bAaHbcudo3)pBy=G(MV$ag5lwdV&Sv*Vsn~VU?vQ^?L(n;
zvv{+8sb>WW!^*XU$MevEdVVQ7q9u`Kd18RTx3dLuZm{?}X%8ee>2|Wil!_qCxasAD
z{oq0?xmRb7G1YccCF5A;54%s{t7$v-J+ggAn;=(I3xj3D)k)9ius_G2+fNJS@EFdV
z?ZfcUr5orrMya*1<8n2wy`DWhMD8Y=b786}?8D)}^3u%>0Np|O)#LJ#uVb3oi=D7C
zjnWEr8~7DeoeV6T#fGNNNQyOwJ;~VEh&4$IOp#sfyH)$eB|=I~GxuVCD^ib|cyL<6
zw4eGs9&iR_1ZpgbRc<_AhLIRhyGffC%IpN@CFp&?UObo%tT)VZV}h33<mks$k;KFr
zd`xL%RUlUvI=(<C*E}efHNRswg0DUQ_bI8_y*WbQ>+Ux=mVu3^ylqa1)I#KnBeL?x
zj5wa1BF(QYOYbgU!nR1e43@#3$y$%mm#NRopz*ztH9F1fzk6pz<?!E&HKbXu=wAbP
zg(+J7P+;!tK{va27pDhXMzUcg<$0*#e=}O-)dD>AWT3{lDw$`(X@=2CRA6d!flc+-
zgr^>S@3+cd>HA39m979s02-p6z9uI<_{drv)1k|Sy3_}df`Qk031zSI_*lw_k}U3_
ze4o4jSc40`dQ4?m7&+mR5klKo8U2HYoPPc%-wSY+jyekfM8O*Ow}hpj)7UF*s0v+Q
z0?7O|@>1(<=i<BdUvEQdNGt`wCN)V<-3e^4x}>Mb)Mxu&S_qBG{g*RY|D_CN0Cf$}
zYx0sY6)IMvXfM30tU+jwW0$4ihf^a~tYOY4v{`q(Q711*gm-RwXWb7LTSN)YfH~r!
zyPp-Arc7Ckwn)w_S{h^Q^%$61HS(+ujf0!t)RB7Q{FDdEs}fQjwPvxk1K))4>^Nvr
zoi>rQg~pyY|0Y2f<F4zknWQF!ChC?3$e8T13-Y>9?sB2@puQ^>PbW<~%~j0QGl;=6
z+`Yg*PGdPN*LQ3kX0yKRst6chu8kJ&8hh6)>aC1ZVy(wm#R$(hta?MTI4Q&R3ROBi
zTlLno+o|r0pJ$0HH1AKSaIG+>Y#qhB?&~rg10@zka~qI9n%)C!X5H6Ptg26!_`0KX
zS;|t~_1K@0=7v?sJisJDE`gDT<)oG7)0KaMqIg1joedg4CKYDCZXt*l+Eg(E&(c_9
zE)@<G9F(}|BMy~{nHZeSNy+TwUU_}nro-?uBbIWlB9mfeF$|k5ggQV;zKwQuBGsW<
zT7^%8n21)_hWmM@;_{evwO#hOX!daa;%2mBRv1Nc2mf3esSxf2F(gS8GKa++Yt+(?
zD4eVI64-i?Qf&u=GaI>q_?&@p1;9N~{MCbxzhXu4RwpT&6u_y7q?*SdcEbJlQWE^c
zZoSJJRKFrs?)@KPiygrso~g}O@~T=}jP+8UMmD7qIidS1&pR6Sf()Dl77egdw}nKt
z_m_EdV#nuTNOjgmsWJL~mXT57(EAvjant6Hp5R`!Z|!P?LfwmfwK%z9Npz$KI829+
z4KwZq=I~6nPe2t~73!*hg`>c@eZE@UY0zig4I$9x#d#3o#%ArN!9r#B;8mQ4$71D@
zZe-PezUy90&&FhO&%OnA^ko!8X+z~#bo--3w;3cIM3N$vJigi)XtsCCe+szS>Yr55
z<&W^$4$4(fh{LGnpPHc&JmX`eFU@?KVrE4LwqxsZj-E?zQxgzh584Of9e|m`e5a&k
z#W@-(`d$OcIuyp*Z=THzWgn@zgu4NXVR3H2!;QOz4R>S+*+uT(Lre#as&6wv_Mglm
z6U8hKbQo%Ph>hI&%;fNIZGp1(N@G-(XI(|{50j2Skx9Y(D$KaQbWe9T9B|Q9cY#Ko
z{q#3OwK%)wzAaSw+?=jgTe}6IUp1r`(E2t*{e>;=n7kwW0b$xEqER9u3#1c*5)mQT
z8tg~5r)2G>PH=)dXrs<08||$1&|Y1FRFz21QQ<zmxfD{UYnJzye4wmGbf7;;iVB>Y
zC!Z<0DXYXa7u_a%#`EFt`F?~W$yqz{{4^us^xF2Of@VjZQ}_g$2Tb@j$>z?}vHEe?
z&02)?pMLJL>-*vG8@=3#+nexXH&_sDi){6aO;a`=ZDa9eSBfnSBeJLUn){oRymNHy
z77CiP(w8(7VI|H=RbdIGC(Sq|S0@@^3p4FUoRlS!)NK7(Q$5MXSsCj0nGl?twm^!E
z;h^izibbB1GudyA=f(T1A2UbK;Nia?4R8ihBf@q=1RZHdzxiIRo-2gwE@1cX^*m!<
z+Ta``t0H+X>-J=?7pz?nHqHI^Cp^aSy&~u&bkk4Q_lajSG|919^9BF%v7eVD|2<Ui
z4L8d?h9+~@_S1pA+KK#J)OdiFy=e^e-KaPmco^7zY`Cz~_~VAuu>x^qdwI!*Vg+Or
z+3^jMo;xE%D~56Z?SHKLDN@s!%N58$#+Q(*^qb1kMDFn+w6S6TNuI~UfI<IRUsGx0
zDr@|Ue6M@?4~0^kLS)Y-b3M&pq{dw4xPJg>!ymN>|4^yk04r`TFz#=PFM6PO2WCeY
z7sqSADJt7$p|G&)53V56vo+a?4N-Epv|^qZ{=&r3e91vZd_So{#d**)AwAqbX&6F?
zyhS8oAP=>wYkXNfo~t|U=g`6&UhDR!dZ{7WHQ&ugQ$gtPtpmJ=sEE-6g&0^r=h)h$
z%O0+?dAsG!CIxsCF+>DzCuSYVSO#C&e1E&FZQG)#7ks#es(?7ASSAtVvNU*2LDMPI
zJ>M*k<^~e;=aX*=#`*|a5h<`dWSvkB=|?n}f-ZydA*CgdB|Up#NuY0O&4763CtepX
zfaXcYZ)!W=yv==-wk;X>#buoS?G$)#${j~Qyj<Fm2}-tf1NKALf_>z}p+#@FM&1dy
zj4Cd*Zw8J1jM6GNL_R;~T6|b#p<=#|DVmAU%k0~2hU~9A!Vge-X&QzkOWhsg9xxx1
z!YYIKr~!SwkA3bXcYdN`Y@7)dWtPW6WV!r)CrU(H>{+&v+Z~f->D9?pdwuDHcwKOP
zjrBBcL{n#_L!SL9L?4#R{3}^SMTJNE8(YsE1bgy?{MGT7TjnvJdiNxNc`)k*D8oIW
zIU|I$^m*~fcJQLr-o;eaBDA|FxFH$Yf2cbsVq;rPRhn)sx9i+$N@zpzf-+V<g|;a;
zRDhwMC(390tws#Tp|3D+bfJYeAPKk<2m9^O(o!yKeNU_inYstCsncKzNr)?@?{P6h
zTH6C~5zy0TdwrKKZ68PTM0WWk!Rblwtn`+0zFeZP7n*q(v>Z(bfwKh;Bh6+rE&Qv+
zEc>$OT8C2`zGx;6q)9CH%E9ilwi%Sl?#sz`VMhn=`XaVQVgt~Rv?TFloRf1x=S;Vn
z+rBOBJ8A#;iQ)WwP4;r2s#P0~4Bf2te~<U^2W^#lFbuZV+-=*J@<rRW@4q6o%k#Iu
z7biiBd&lY3!;53f^?52xFDLu2|Jl@?XMzKkE#;1hsNl1Rn0HUwcUm9YTFHNwj%MK&
zptYtCcO?O9cOElKG&0X@zSfUz&@Xh0GAi_bo^#BUGRgMhY!a(Sj$71{<|v(Q|DM|Q
z%Q9ay#9%%l<!`6G&L!%}ci!HB>G28AQeH_?3T4yJ9(Bne_9+&TvnT7eiBfSO<i?F+
zom{gKLDh5M22Qnb^2b##I~EdIUWL$DQlaXWvqcq;(C<QJTcqyp_MqHj`(STUH=<V_
zgZFC|9qTo=a@*ArOdZ@f#cau$)tgNitS$=NffU2Av;NmBgmc`(?2X%WbC*obok+v~
z1p?2Hqdg$lUe1Al0mX)_d?W=G{)6fP&CsdE<&Bv~z=}iVeXuN=NFlHAx!|HF<!V+b
zZrM8D6cetr+Hq)l-E@7uYqhiJ@@)w*dU8{*a_D&r4!k_S`kE2%*fJ-kXtRCLo=WcF
zEsP%NO&#+y{JQeSC}e)#R=dA1_wFTXo*<1=gwNTv#BFz<Wp$km1hi}SGI@soUKWS4
zTsB0X#o*=hCwNVM7qV?Oxy&t9Lv+%C_W8?yPmIg`{kRjpdM(OpY>d%`H|-kB^XNCj
z&#n$W9lv{CRMDBMmwl^hb3JV+L5Y5z-i5|3G2)V|l2Mh`5*ERVo^25ZK92yFUn-|-
zi_pNogVqq4b5cNC)4hrTrcDPF8IT{!g`(To0v*;iYHY=doK-nUi25if6<QZUPtif0
znc80KZ32TL@|H<B1HQ?p@OC6&o2>xdWO2<k@HJV3_ct{|P@LT+QSHjrG6O7(B84+B
zPn^d%d6NEII6GW+dp*{3T-~GQbzb&@*rhxbSP?WQ1r{z;oPEW)`N_a*JLc~lxd*jb
zJ~zg44^Ch!OIOx&*hd6R>DgCyAD}7l?GEl`%Xx89-MMiC2|GMN@$gi#7%cZP{cOO3
z{RBKtUXkHbPEUlXwi-Mgf~}$fOoq+QQTI|VR7{)}>wv(qB5Fp|!|m9Hxy(g-oDE4I
zo9K5v;>$OnN>GC~u{6_<aHsQ@zwZY)46vOgll#TDvs<x8fhyjuv9~z<laQI!#j<%3
zHrD~-gp;Z}10!rX-YpBmQ$?-g#St7HE8zs8$h$n#+q*fl=jZ266XRC~?uepSF_M4M
zW7Y>RYNiK=&Djy1kVx-K7QG7&h>X&$&dN+vKu<q<`p7d)4QFEKE9&E<AG^**^m0KI
zwbgDz)TC~6J=h|qtI1|+w;n=3_PeNbDD_%<TdmM>z4+4u0VNTvEHK_qhFVn{@J<Xg
zn3NnO2`$Tqc=Ozbd=a``au-m!30xNle^Wj8;q<%~W@XMPf}TfHSr+F;DeMx|s3*@9
zF>JM}(CuBuAK)xgP7v<o*`e<ogwUY<Q$O*eW)hoI95J|4jf}+o>apfLec%2(^S)(C
z`&g8U^PydR0O7$#+LwnSqBLAchR~b@J;GmoXCHh;NGZ(ocSXZM_pHulu_jup%GHpQ
z3;VLhT8~0$-%USs#-2{+U;Vtiv)X**oDjf0>|;{AquWyX^|O3rQ0o}Y_Bsk%m=urt
zq^YPkcF~b8lymz*tS^{!3;X5VWK8#!NZKQ9S|F9`%oa`Skp7OpQp=<N;Brm^WpLUb
zqWOXb58;$UR|l%nA$;FHB^fNaw0@|R)=4zkBHP@i*@8@O>um00eZ9TCpU57}Tx%4R
zL1GH;U59yKg(I@pg$;zxvG0s(NBKPmD3kLR*`CU7ddWE#hX#Zcx>;kE+1mc@e@Nd>
z&kA&Zd2ue>YkEG6yV#$vl9y;Yeqvl}T-EuT{e%s*-&f*CDj13(-Q=IREdF30!=z9{
zKhu{uTXgj`wNXFYs`vp74M)+;;K-A~QzwIl$En|=1L72O#or4?LMjE3zZ~o12*L@A
z^TbgGLtdK%mAVgtl=rJ;o)P$A1r^Xjb%|599lrb34@pJGzQ<Cb_6S!Gx0qz;9;JAV
zbnW|36ORWQANYf;?Y~ShA|@EYn=ZBK8d;a(K8Gncvl|v62vMy)-@(Oz(a{HNAFZ_5
zw0=w7-RFT5D8{kuVxegS@Y7wO5L#w(zMnVT1(z%`=zpvsg^1+T+xT8R=s!+yPtf!7
zp|MfAFRPQOD2eiy-dv()(dvIIl9Z#7KWey5*Y2I|ff`|NYj!F|7{y}Dq0m(L;5oHy
z-I~?ZT%RAeq@3M1q8w;%O49P>eB8|qp9@|p{2WyOUVcX|KF3{VNNd#!a<ZwXbJB5%
zJ$%!!Q`Pz>L8Z6tgK?9u(DlD4`s)#;%h;QLLiLaE)^c`8sI<zFA7495c_c`X&ivp0
z8Gl{4e_-lzJ$M6aZ#jxYo~686JbL0K*WNbc*G%|&O7ly9+ic>%i$DcV@3YMrjZ-90
z3A2n@e}WW*hldRPbz1v%ebcbGcL#$^`Lxh~NYXCl2qp(2A7U1MkrcMmot#?aWhb!=
zq{`C2lzk$$c-H<&C~B!+kLs8P^HSp=)JW_>hx!xQo3e@i-{zyTT&-)W^{Ud}|2glS
z9|z6sCkLelB;U724vQdliEeP9jyFzjYNO;P=9@WVD?K*)62uevMHBrCuS-Lma{o9a
z{oJ;C4$QHLKfe~9$X7i{f<1F-v|HYyPdy0w4_W`mcCX%tL25ZXbI3Onu)5Do?cTR_
z`q_!QBVJ;6tL&J+OHBm-;gv~}og-_HZ^m0$V0VaE&NU;dAt1)lQRespBW(aovy-b~
zQ5~UelA@oZH`{~`gBW%Fwr-e!?il3xFah`_I(vFNxl3L<W6Nba0RMq3)+HIr`Ay+0
zveK8OT0i737ykU<px|mgChG56-uzvt9vy6CpnFy9^sY0^DBkluaO<BdxINZ+tnQ6T
z?h#vU-XURr!$k@6WL7=*_*Hdcj6}VPEp{Bs3fEvN_z3|zf4CV&_Q<bphD{8*{8p7t
zQ#}pZ^R0enAo)|y=<oiQ^(1FT*E~K1Cx&Bn`|!lT=$K|e*!Ks&Y1bGiLou&6d5>6d
zWa0X^?EC%&9vYN19iF3nynammB3RgTmi*?>{KQ{XCHQY(iJhfT-LJRd#+=L(B8?;!
z=Q1Pl%Yo52wSrDlk)QpbzK?H~zV#1<TWkcG*%s?B1#KVG<3r(!wyj7~IbS?aParv%
z<1~exoQ$EnUeP7&AN~G+m@*#Vbe%<t5{~B^4a!Wm#;2DQ0kY01RPCtQ{Uw3$!oTUd
zdtugMaEZvVXxa9tHK071seNA(BRZa6BW(JA^C}W!I+zjk7a3T_+TTcPSBUy1I?qxh
z$@{@*w(fx}u(+9BnwTIUMU=#&_*t=DN|Dz;Q2%ZOM$0a1=SMbMheDY`#>~UIk2+2T
zFgH`P{a_x-0BJQ%AH|2)-AV7*xg~Ga*nTA9o;3I13}f6v;Fhq(dVNWaH-?_aA2@_8
zghZY6(JWD(sdKWsJh~!Zb)(qpI;4U)@^7yfc_T)7rZ;H=>J4|dpUHFonuT}0rLb1v
z%le4-Z#{zV{3}=eJFq?a+GnyqVBJ^hC(VSf`*AqrB{lUfF#C(yr6x?n&YT2bo2P4k
zp9(jV6E{~&E2%!!c;*vE5%%A@O5RkMlV5LuWIO=a{s14jFI~NEOP{TZ;Y^$%lHXdg
z*)s;h)d-jyBFqU3%Av(&=Jmmu?oREIS*```JJwt10)dTtur!Ujr_C7%D{lX=tC~k5
zcMIkSRf3!b5kLU@zG+&`B{kD?Lb15_m79ELLA|r=G;?87is1~FZU#GlL*%pPiJE!m
z?4qje>(4Hpu{KU|z`l7mO~tVz6rRj|@btzu*1=%=r$OU!9$-=590fW3%iud#aVdD3
z9fGicF|5$QYl6CxaPq}2nsaak_LMZN?@~SxhO}n&2LzF>wedbuDCWAS%W{IA{3`Cv
zb$hrMDyqz~TN|f81h_L8bXG69ayZz8Gia1n+Jx`f<7gf4x|AuHjWP8V9m&xbs0@C{
zBT?rMmzVSr2~)`aQcmYCSSI7j`_%E&nrS&j;A`m7k;OuaSZK+E*85z~pH|qvOi?n9
zJ$``r8e!?z)+l&uc`36N#>MwYyyV{M)h;M1ALh6#H^rBouMoC1U0Sr^<Lv?ATxF^j
z;pmTFU^$~^O)0%Ue`w2`tv+Sduon@xT)c3wiAO~QBANJ-?&N%2O!hs%l%Kj)!M+M!
zoUXNP(OS~94XCv(fY+Guj|~`nn-w$Nr^q{IeZsYP>V*QOg*G^Hi&;yja|&mdPJ@)2
z-8$i=HJ`A!4NZ{@W5}K=Azr5StocLiShqKL|36zQ5DxfO`O~T~Ylhs&?!>!)zoAy1
z#0v)sN<SbMnjwS)5@9e?`8t|if4>%`&3X$?<1;U6_ticrwQVU5KgqDf7mBfOEGyl#
zS>pSdX->+q^lj%>LI8{20_|vy1`>Cg>%KJNz($OzW$!Ei9<Mg>O+h3!?BryenA$nb
za^gX!#%oEr%b&~x8-oX%V(+)L;@lF|Ts}>Av2cq;S@C4mDl};z^t}rOt#?0-3`1}6
z=LBlEX&NUlALAn<ZqTOGlX1}CJsqYt4Nv(;e9fxiyBSebTRvm(d54r4f&2env?@(f
z>+(m9QQezoL&1H}!Z{-`eOp}R(L?N?VZ^E!M3WxmgSI%IL0Jq>K(+%RyG2Kkoi+gK
zN#-da(zWweqg?|Cwz4UZYh6&n(Lp`E=F)L-8^ry?*{7KDuDXwIRs+V=02Y+R!1l6a
zR>1As78%H#a&3!8A)0P-)P@4#@#wkl)8-FN7S!~joAl!T+p3l90anAn{Pz>4hkPbc
zcG=pt>uss-GLOzGCEbBP%NmPL?oXHw>u9G(2feQFG!%eqwbt)dXowkKeLQ_;sni#A
z$B#Xskb(cVo#6Gn{NLq`bUIZkS23FH(zYOvJzsExz8s&nJ30*&D7_5T$X^^gg_YpZ
z?|4e+W;v$&4JS&qh$>DI5<hv3Ot;DUQ-2UQs8k^ZWI5M?YB}yE5`}Q!6P#6><)n7{
zuAU3v9`bwn5VSy-lvQ>59i3U;&dw`NYek)E85Dm|Sjd3`pxS;!aqJZ3&XaD(x3BO9
zmglke5D^Az2I^EZ+%f|MH>V$Y?iDJVj1<0mJpFbkI+<6d;lBGG>*tSwr1r_Q!a6Uq
zo`c*6xv8ahe@O#E<F4j=YGT%Jf}VsF6gH9vT#8(ORcO%b{vZsyA=!#aV61ui_qUNH
znOVelut|t%YVvF9U|46>_7^BEf<<Qf-Tk#CCWQOd!9<V??yBjiMO_`~G%-^AK|Fn#
z6<4S68+F&^*<PXJYn9+$UQ{Gb)XsMw#pM)49tiIA!lm3Uj@8tXMJHi|#rtb#B5-&1
zjea#TXwfX3(tUDF=X!OZl4QC(*GbeuiuB(Lw9D=y4NFee=wYgbfLLKwjv<Bv9Jg7U
zyC5FxsC)1zL&My0#m6hDTx4B<VMbZG#}a)TEIVFL&|f#3uUisOCuGTs_=Vijjo}VC
zF8a=2djkZ+c`FUx;yt*6d<At^Y3VkmE&Ku@Vt&wDJ80!`cqoURzBF01JRjQ1-uH@w
z&lfC$TB^Jr0W2a&F}1w8^AaRyoko&(TvzgMNm=j8i|^+HJ2R=siSN7;Ii=@Pi65PN
z8l<sg+J;=eJhKrp65<Y{ee^8^cbFr1R%G5NHda-ychETNt*WNxtfqG5pvK!Nuv@6m
z;vVt&&g%Y<f?MW&#}wFI^J&5hlM9esJdQ1>Da)fhZCtaN#d`QmX1A*z;Qhx<=hP2;
z|7@uvSP1LLp!(fItwJlU-e|77geLT&86DyP6-mj;*dIim>{_6&6h#tCCD+)~a47`X
zt#vG{w7q|Mtp%K3GUML<v{P|vl)m>2UDieYPnrxK3vMt-G0h9WUp<zyBfQq=fR~@I
zd(8-W<)?P_oe_-<b`$<NS+VHWPeCIz2IUjmmLX@S#PT#lnH%tce^+}k7w?qxxjfgu
z!4ep97bm5KDLav2bcOOWV;&Zwh)%?HKlj4j-0i1-lt(_%*lc6+c{_<(Cl*9$*;1Hg
zS;ZREsDE~i(Y^1*{vrFLOyMH=*>zmi<G+V7jUW@O7EnqG)VcDx{tff&-cQwL>eXoh
zo^I20hnbH~zbysK@;m!sV}xukbDBr6|3NS$%w}$Ez7M(8p2Gu>Iv7UE=;Yf(GV%^x
z_&Q1yo;?6O5>BpyGN=X70hHM``|wVn7yJFU?Zkwr5+PVz*j}RLb!lMBZs{sj`fDhO
ztV}(UjNpWNE~8Clxs<XuXiaEc^pJ%BKEt-aEHHJbnZM(VJ?qH?&w_o?uSK>psBWur
z9wdMZZd+k$N2XcWuIa=H!N?;N0f<z{)8&VWU|og771_blcYyf2`_74Ce%yA<z|UU<
z7<CDqIQ#D2`kI<q4u5W!<RZIjtCS~1Y-;!FSjNszX17*uZEr@UT(7Q9jF!?vE6J#Y
z)ad{N=k^2CW+EgNL|hZ4E>5qw9I7J*LUj@IdV}EQFq<0k@pdvy?suGx=x*B&4(+e3
z3$p{kVsE^+6z7CL3pKjO+RUpB1sBcQhj8X7*{<odimFXRJ$0XoI1fEXK4*Gj@j_s(
ziA|P+g!$juAq#FuAgco1fH+b<4orIJT-wk(q4A<Zzer_l*B{c7`w0Rq!&Yaxuu3U>
z7(LXhaL85%_McYacw(AcwW@3+UIMC<MaZQPcDDXiYcHP4kGc5kJ<JO@`_16<ftXc2
zH(m*iw#U#gJtIsLIzo~*fu|HE3pGdYwHgYX6u2b%_am-e3OodD%wT`S-@nwD2^wbZ
z*_wa<HL%m#8)wuhimJ>cK9?z;#jZS?tBfJOWDYt_aC98|TQ5z+69{$#kDXia|5=ak
z*X#`{)&hEz73<eH7$J_8a_$m1UX7?42eDFafM>24>>1~!J1I0uQCAM-K5g2=i#N08
z8>=`&><H}@ZXZ9kTbDVD4JLi)5f*+Tg9&8U`U-iL`9x>}#&~iep83F9X}EFb?CYI0
zM@mo@RTe7p4uUM~L!w7+{V26G06wbq5bLsO$$1$%Jy!xL-r>pD^Jw!TJ1{*0680%M
zeJQrmhWI@zd=9K?1EA?HQbf1$Q}jr|2AtvH<``#@XFH?bis68J1iYLTG^!_w9_0}u
z1NyosRh%PEcO=0tSZ5q50mJ?1NOo-k%(?z3xp}OnsvqLi{8blq&Hx;roNJM0L>-jN
zX!d>+f9<8}d2TN|_@PaXu{SgS%QIS63BOz+p9f_mS~RjwVA;kqwpnV)M&Fbh$JWt}
z5S$o>kE)I~i1zXK_IKu*`j5k0m5{572VZ#P81_lsiR9+EYu?>{v1}+$B1(9f7d4e=
zh}04dHnZ%lw)Nio?f0$m!J%Z^9Rh|nyK&^}SC(Zs$8giVHK#-8bFK20FwG<ubGB_%
zNOtmN$m=s6s$==k($&iixM+hqc8dhHvG`}dnlOBEbtkONT1fM)SZy&o(CtgbND{V?
zEuqXvUE+JBb?CdTl_<924{q+S9?#N*fF!@W`aaAi@tHRLdtHj&e(g0e!2@T&_tA*=
zv|yGbci&Kfer-=pf27rHLWci9#<<7<{;_Q=io=@&wW`G73N5T!i1%fd49zkvqgeeY
ztMz)Fv0SLUUB^Sh%yJ<xbU#}04EENdQ!5_)KZ?%6t*O5a<02vo0s@jFq#LA0gOVa8
zAl)Ig(IqiJT58ggLqb4mw4*zJbd3h-7#*?^@7_OP*R@^e?40L&KllB)8T#}O&uNLt
zgk-?@<;%w!QZ}UcMOcg3&oR{Utx?Aj{_eO%@_~q@8a6@91N=R8-CFIVbi_|(38=<&
zPA9}Kq+*RFIrxY^SzmB{F;g4_7$GbDwh?8M{U9r#{qPOvTLk|O-%^CMgS8<~V4}A|
z+imgoLbUt)h0~8G#&=$A#2>l@_;H6ckDbXlBKTufmn^=B4|lhW7bMjWDpXHfJ@RfD
zUk?z8NpX+Xo-yK@F#3p`VTUfQC{<730U<!AM;(zr!1=7?`oL}Rq$-gY{B;~q|JSbA
z#etWfYdT0g`nzwveE^06tSHk!Ykj*G7+fUF2rnfrT_P~E9>&HnaAal8?)IV>r>1rU
zE;5amty-gU%tQHz(C@zl3FpaNX<AtQ5qTUdonJP{_sV-+&b^Doqv+?D<9ARL-^D!V
z937me0V~T%*?NA(im+H^xDh~sRJ%B(@c#Q4V7C9nN~htyOFAGPO`sw=5d<UmyZB+l
z(Nw3+(jatlHuV{1l9;d9ZHVjh&4mcN6XMA=YaIh|%n@LI=!|2TC}*22TC2wO<2fn{
zXUe*i+535={)ws)=1WvRPd@HkeW)hutgj9iW7GUR#zp7fLHaY9zinrF?$h(D^Un>-
zTIjF}4&>tH&|?MXhmYXFg|8J>&e}s%HeWNTH(I7I5ql|%U)g=3dc@?e@iFIY7?GUb
zTjH?N--aDp6>5x&OO5fF%L*jVoZcN9Hp>-^sQ5tSrT&&|_4yzwaE&d(4x0bY8@|@B
zV;iCZ6vaHKtxYwk4^-yRMxlG3&M%xU>XbO!mB64*J!#fY++2{|0lvtmh(9<&V4Q#+
zcBq>EzX~7ZKSt*^cSL?|*0SO++m7v;QbiUhBHmS4n-q`%d4rg-%W~So^m=s_<d}W0
zun^kR#|L}wo?{P8Y`^RL9&o^=kv9Tufciu3)ove21?PKs015gBKKLr2alWIWirk^9
zVvPI}&A#DD4XTK(7z0&7XEuSmHio$M-j0W!trqgIIgx?*zv3`24YCWt(BV$vwa1O~
zvj?9RoAM6My}q?hsR#k;3tYqKqfyJ^zd*;71d96mD;k%nfvsCUuca3+C8RN3#4mtD
zbi+CE+^w3?qeTZk9q=tu6GOS8oa${|n~vG}qdZ;GEU2h7Pf?!5AyxNObY^S)e~*Ix
zRBq`Q`dWJ%xPkheGCpNwzV7lb5ou030qd5Y>bkdney<3==lVy#TF{r@E|`2Wd?%O@
zjn)QK-ByPPdG?f>Ju)FYf?Klt{!-!~%~y)2T6nyq%zuJ6kuUF^MHX**N#<@2BD8&1
zcRD~7{A`+va)QC{T=e}r2npGx^TaSNuq|q$o7QLJDKu~?lt{Zluq3gXj?}M}`l=L9
zpY5k5=oPa(O|;MReS*LRdrR^|bt(f;|6OY=-!xCj7av+UMW7f$C#7J@*YQ#BDFJYO
zo&>3Hd4LYgti+bl6^{o|V|8)~WvqL)p9#MI=*S;SVYvTA+RX5p8;Zc198?g>VD?7N
zxdD6u4~CMjaW>1jkY`w2el2$TrNeffITJ5kQmaMAm&}yBS-FemBa!U9^Q7Ahd}cFP
z0-htw-@^x!HqYI^rBvu?iya9|e2R!X791DQ`K!q7M)=(e5s7_(0KlJ`CU=w}=~Y&M
zO*>R1Du1lFbmJDL&S+&J@Z}O8<M#}>^A7P;>diulrW{sMx5AD?=q7U-HTLV0DuG(<
z$oNW2VaQTynUz$I$+qguix_c%USm<VQ4=FB{?e>Qf?IM$?-T8wyDO?2FZ@T6?;`W7
z*Za2L>uQ2z^n{w|H@*lJ`1n*du&!+k69jYQ7u|RY+}0@ND_F<$;bd24yL2Vcxa>sC
zv=(l0!Z-*Or;^3}75#o`k!d(h_zrDxe(;$7HWDnym>rzur!BD%?(RM`E)9ATRs8Im
zj!{gOyA(Gt_7-TwWs%xu633tVjqs^VLqLz4o-CITA|t6#Uqrp2uO7n3#FrHR<5f(F
znG{droKpv@Gs<VkrH+s6onk$GVL1eAkhvWWfn0ub=}3^ZC{yYX%gI~#(n_7x4xkKX
z48BUapAWtq+rtmOC*M=)c0p5aIR&nm1u*Z#%K4%tcWoS7e*ZrOW{?cn{7bR*^)7#m
z$+xSP9+0S#cxYAN??|0*s)p!kn{68-%DR@=%v9(2t@LM3?eJh9V*d0nGG1rHPO5_E
zD!L-~>z*PHSZJ4ry+)WI%M1O%O=M#}B6LX}Hig`o&Tb{|iy4@?tgdpmLT664wHXtf
zhIxo0o*a%cGA^hbQXn%;%ZANz%~I1B4&P2JS5B)+e3+)ulHS?=m^k$Mmfy6_iA<_)
zEhsf<5!^cp05w3%0N$~7(ZC`0l%C!bN;m87p#4y$Z$zf2X5!V*S}0pA!)Idf_8tXB
zQmZq_uJJOd+Wm0qoONizStg&haV&@LHMT18W$at9l%7WL=(LsYA--0-8a1fM6qe49
zrh{ygO8%hN-O;Sg!BD~C9zH*O@(l0twT<$+RaGS^{sGDsmQSD~g~6XKEx5X}-;B0k
z=!STj%z1<`@5PZfQC<D5clVq&s<m=IKp5peSgr-`4u%c^?erX-$Q+t)o2M%kRFwbO
zJ4X<FOS-hdp+N%#Px6DHs<}UrU*46;w7*?-akY2X&n=4lE}JFCVHCjH$scj0iR^Ks
zWS+aSbio)^KZjjIx*HZAQ!HKI@@}`v)&$w}-eP;zI@9m~s~gXTdhiI5St@ZFe*fLP
z8pk5*a>-pxD>>}+$)t-aNBbdvGHj11+g$v7&Z=3F&=`#sHv9fj2(L#L3viU0dE{gs
zt_mY0LDP85B-Rfo>tV7Vw!#<G`;7*_|A7eQ7>csIr`*7vw08<k|HTf)hZ#_t2!f+{
z+t)!iVzpKqBWqW2S%9rAUj+S&MP_}y+#HH5FtWz~feuq~mf-=5)l`>^I`i%BGa}>(
zwg>c0ToGPCFTIuH3GewcBE}6?Ea^oFL$Q-?>0Vh}(FWb7u^wy!dt4R6UfX*@xhj2t
z+JB6&&xZqs$<>O?!l-kiVItti#XCb@V~)pJodwpuVE#F!?V2o;vKhCuYkM%Sz~Daf
z1y`x;uYAa81dGUU>;Y3r*y{zH^|thQP?GPCq$)Ob$5@n$a~Lw6D6Xb_@(yUKidniK
zmDHA$8pkdRdx@!mQwIMZv)L_Kc6m5PO5%0E$%~xyAfdFvF@uS3VT&cTEsW4}Uf@0}
zjqlRVD{xAkeV5^)mn{L%3D+CrkS55At-IH=7*T!>oHeM$#rFVXe@?x2LVW+EacEm^
z4>m;e7_e9ZKytQ;Q6)&)4a}fAc>VW~Z)QiS)yj2?&J4xBWwU{@Q5?`kX9dV`fZY6W
zPN5vag7w@L)c7}cXNz^t4bVPTlUvkAX2CO>KomfsGQ^5Rq~Sy7`o)Y&{u^>ipiZ*y
z9Z)AO|6a{@fR}V2{lR<E_=SFye44ZP>34dA_=AY5mWSI@T(7|Nau!VE^cPsOC2RSE
zjA7Ve2Q2W|3ZJm-^ViUo-Ye$kH02EIAR`tyNmr>RlQA}Cvv!#H%<`i?GE<TSwOwLd
zeO*LXBJ0G7{w8C3_TSnS_&(^dnKprTE!k%P{Iow8W%Oc}Sf%W+nTf;q-)SaZz&C0*
zOTx?&Cyz&4A=kRhieug{t^(6_uUL<ff+c(eqPA5eGbwtcG-ZhGxXr4uo31}iCrV>8
z=5op$R!c8~$NjR~4h1^l8j$7P?Wvcon#gFY41#|~=C?JOR_$%PH6vf_wdnF#ox(y~
zx#B9Koi8C6wkzb$VC_lRQi(R3-&>>a0Y&;@6Z=$#B6lx1;1`6%zf=%I_q8dpA+_(d
zy)`&YS3~X=#C>z9v93c>pO8?EBw8%qu_H~ltU_{;DIDX(U!4{I+h8+uV#lta4{PoQ
zu*}kDVLMhVM#guBDWqOHPp{N!Fv^U(RzVQuzLxk!zpCmAs-~u|Zd@=Hoy2h)(hDWt
z{mKYgV&HH2O2@e?kj5f);qJLks6e#{W92}q$i3x<k@OOvfRrBMW_@JL5`)@pe2|76
zJ$jwnve?gV<7w-jTx_(~PwPF$tn*(+VgGZl#9WSP=0E0I&?L!hcY=J+L`s>DnwP9u
z&(jjduReNc^2m5SOCFw{Ec)k~Tl2NfzUUnjSIbOgRn7PM_Xc|Te*=%ut*7mPy9wT7
zYY&IV&e|NUU@2}g@gId9EBPOIV}o^ntozGM7~frIpttgW5p%m{xTj~xe)8QUue2x>
zpO0bo)XN9Q7>rV~q<c--NA{vk;pJrjT|eN{5a|Gu%_;*C?bV;}W8Sobo)Z#heTwhb
zTG12_j}NPxYkalogs0o=quc-5H};<Pa)Q`UddLyn-}+fFiGM2yi#&9=sU6He%4BiJ
zx`Nzs=&FmN;G|{)y$ICd^;zCFJp1gU3NxElsV9PHuHQ$k`T(0HlK5!)0%_{fx!Vh(
zm(qsH3|zhgPZJYZ2N2Z^BA_oAwlbfBsXThGV`YoYIUHJYOZpR3#UfS{u9D?I)nNjC
zGT%I9op^%{G*Q#cFSq<>jJS<^5|Svti-?%X5O&*5=+}%3(ZcTGIvo5S0Zsg<=99#8
z)@%_VayQNnc^`UW+*oXlQBx6}1<RD8ILM;n2dv}qLs(xK$di6g)$f99bmXs|t6>5^
z>@fqL<Q&-ywsFJ)3;Q6qGb(av6O{eUzt?D)<;yaCu~Y{5-du9H4^zEmIQ!N|l@5~f
zyjnYnuGbY`(&~8Dy<>Av?2YJir$_d}dz<cBBHXOAPdWpBhE%l&pOQu$Ob0NbMrg@_
zv43WdbW9>&7Ey13bsUi%fsuPof;^V#7oZlwe8ue`3}nBwGW5rSe4R3QVCZoi!Mt7Y
zSpMacnl>{O+LZBo7cMKPn5e5Q=P`#IUeKB1NP~WAp~oqCyv?WJ%-1ldhqto7K;KQc
zP|W*=CmYMyQ0>mi8-m+bvW#6*VW(zE^-t4nPa%Af9otK<;2C{N2sT(jQL85$5Aj#m
zdw#}cK<iXi%efQq*<McISE~CR&4shukt6LRtYgBn{`&oo?x_fRhwG9ymq{@JtLR_9
zp#MsjR*$0?-v1h*sG&x^t<_$3_=X!=qO=^P#bMy(uhID?;yQY)rW-T;WXGoBvB_C1
z*0Pqh&V6LiOZ-p35;rxsLZ-D*`&%Y*Dld6(XW(gtj>sR1p=@=RwxbvAi!=TEHWdIV
zAd4C-<?7cDo=7P#@k@|JcXu#ghn6{Je&Ab4v+U@@X|l13c;$UNRr-te_Ny#`<NmZy
zHLrNfRLmEPpA@4X<EJ&AqP?6maE{zkwazXby<SwhiNv%i<LkMRDREOm^Nac#>FG_k
zZK?2QG@Hf$Am6d!>&1QyRhO`kgu^*tzHsk%!kwKIEFoH7U8NcTRrk5)&hqRX^TdyI
z3mQZZbDxL2&LRcKb^qybMuDTmZTRpOAF`$vH~UbCD<umej5SKa7s-2;=}zMdDP+mu
z>$YC26a(j&^5L=+5ocXU<fB;3zA2%FeWsol|9p<*_4gxyFpxy3bAW@}k1i0}%bCe5
zmlR0r>LpQIrY|pfFC%n&9iN*+VjIS!ATE-L%T&OD88~WJu@47_2%BM7<Z$B@LB+8h
zoGZ$t#?qVjL|=Y+<KXf6AxT#N|M2!uB<@^&geEW=AJRct?TZ$-ti2M3n@K&ZQ-8D?
zB`Y$DkATP5$TGs5moC{G9a8|zv(0FlF!B{t$BLmf7+$5#?}FbDocwk#3LRMT{3Qw3
z95$tdedFdl1)qkjwbZ?cZQ(GuxIq>Npnr53?i1^Wni{kRT|F|lkXvYZLLV)PQ?6CP
zDTSG!iYq#`$w-qZmulNxutNJj+_zsJUq2KQidev{+((n&sHiN_LF0cjzle<S&T_9)
zYkI#YQE?+SWjXD|l(9sUBj|T>t%xctlHv+~t)%KkYoBeUk2SYF((!Aeo`KR<b0<5Q
zJaSWvw?wt^Kr6@9kgB4ZP(o%^k}TdI`P<h)4<x&Q<5soRyQ{`R4qg`K?u>1^{U1+`
zdqbGH?Pf{@eNNo%8A)oVGz-Vee2bNCbU(NLrXi#9SQh!q!3g0U3pm?Nyi#-QP5x({
zptx@DzTKO`u_q8ThsO~fSZ7HLxksIk{2Vh~tj!5=Cb40#mVG-us0ACoe%P!X+ud6x
z^uIf`@qIC*Oh%fxeIe)0n)s?8w_VU{b3+R@bnKE4g+lmVa0Fl3`0tF&?JYO1>LAWa
zCD~=}sjKc&bg^~bW?$V)irol~aa++H2`Rvdm!`W1<C^u1|7Le?EhGvB!HPkX=}hTS
z@V(qkCU89?ND8TZ*hNYQpRZLp<Zq-SrkXVr&g(aSD)muW>Lg@|e}T(;UU42xN9bo#
za{A5T@ch+gQ-Vi4a7g^2yEXuDc_s@*rA^Lyz11D$h&>GMAU3_YDS@uYK5smIz_fqi
zHoa#I96H<LT8qPl7A#>}KA~q9h3~2!R9pwoN6gP!Wg*&oFvvrK>}~nD+}$$yU0;>-
zuiyiVfWHx6Zv5$`MmooS1f6s<PH4&Ah6im2tQK)V8NczXD>#V;r)P2-{`ccf1jBtC
z`7G`E>K42qX>rQ?xpb@DqH67nLanfhVkd2NMB|;^;#a;56h5Q$;;UgWP5-0<_U{BR
z&iSS%G*W)0ST}QYd!H|S*4_i#e)etjbyBnky*<9a`z-D~#W3M|i)Ns>sTs$=Zi{5a
zY!mK!$+yB@;fwX#L#&Vzl<Hy1uir_EZlDiE3~wE!4h61n3Ny3=Ls)Hm_r-qe09d~c
zw{_cjdtI3KdBdD5bVQr&?PQ%ThdcUw(|jy9>;>{9)fyVC0KJKLp&BS>VozM7X5{M@
z9_EtS=y-8YJbXR}u_1}U8bO4%z+4J0aCiw9m<)Q_AZm$i)m`Y9<ufD^50>7{{21#P
zu~3IrOo#AKSn9fX(8G(c9mgK^?i#oa^#nO8kti`a%hjFwZptm%t!+qV@<I4OjxkKX
zJnTPqBN#}8#wsjDBy;6LP_#|AT05DNSoCm|#KM`rs7_M*C<$j9vT~ufR8U#9dp_u-
zgJUwj^W3A1-=GhO2aXZ7Rs-sn%o&8rChf5_GIkl}i>ED!yGkbVFK`U*=ev}vz9#UJ
zr~lgIGSs2()0ea#eTkUI87?myb*_T^Qd@Mu*MZ}HU~F>5&od8o_Q0ZfG#Evv!Wa3B
z_4|$C+9{IQqP&hgXfrbNF6C{Og9XQkGy<+|s4~b7Kz^!Bu3R^tQO1+{{@T}huG&W&
zteFvUO_Z9O!|nL8^(fg(qa^E);<#&7;`izT`M$CvkRAOhBd}>(7tn7{uiKExQ+DuZ
zIALTnON;p8C~N;^^h9{j^xq8zNQw#k?N^QJCdZ}wzqZ8d4L&Df0|GZpZ>0)ZGk6VG
zT6~0uDD(=KDjIu;yWQD9RoOXCeA-eigVa;{_N-62sdv14EZ>6FmE%s|%;XEBUORz(
z_v_d1ua?7l-q<yRPTRabYh>)6t^Ir#RiQpuy>+ruldI)uasMxX_<G+q?0D*RI%yWZ
zFsjvLA40c+mCBI}Fo9K2EB72$QRSdwP6zc^AIN!zK<79HCO3_*SBjqcBk|GF6PL1M
z2Jo!F$&lsTiA#w}=+(f*jN2@!$->VXI&>gO7JVUY!){@M4d2kmuKB;s-6}P6I|XgC
zIn|PFzP_k8qXOtxjD&Q&?_2^r;^&ld-p_4P_FFkrtz!c|!iRPnoC|H!37CH0Mkqy1
z>u*;@5^F63_|0{R?)sEf<IS60#oJtqpJV+yb0-1*Ys-D^O&oK}2uzIZQ1Hfiq;EsO
zIRl7xr|6#)0h+o`RS04KWH?GT@zKFrW3^~Fs`+|5I!abbDdh8R15TEk&^wLiA<CNe
zy+6~1y@YO7R;8pldGU5aq!7HzoPg`XB2DA<^8D*z2o6aB8h*TSNkdp8#2K+ZvTn@v
zMiJ%3sZjw3=@2CbS4oZO7tCzx2>K0RU23tPwgOHuC+z#hut3Ezi=~NzEPzpX``WH=
z!q6(+is{AC)s=oFW^-zcHFWJhPPZ<_cH$0=&TQF0ohs+v*vs9QG8CTdon9?6E-epR
zjWoNqa*cA!c36FgAIs$`zHdTJ9ucb`axpzR9`iU?n-hF8EBAp{hcu9jLHkdue#z#G
zbRmCj7b#C+vXBpB$49$&zAHcbp&aY`>B&OwpQzC1M1;XB5R7voW(Z5(2nfEK*F_~4
zW<{wSx3E3j?@ehbrnS6D<6c=jmb=;HLYHM)F7C0SCkdQMnKOjYCGw0B<kQn6s8-qh
zk5D3M^$&&+YqrObh*2s%Cxkwy-b>78>>E>S5vhjkz5E*Q%ZV406yW8qCrBM4?eD<Z
zrw|ZwfJ&GJ7?8q8&?>XHm}WV>{PvgHVS;lVZX~Pvm2J`mV#}l4kW||h>e1UQ@h_$6
z;07kX-;xZf;GeS<P?tK^h?GLSJ6b5)di(^OW)@yn90KWKN8NmtrJ54oWjSJxN~95e
zl=RZt@vAvbC@%wL>>dc^T)(Q@R#8~&(KKIYgOs*Re}L2J7kzzM9KI+OU+5E%b*V17
zpcUIQ#}5L$x{)-Z)UR8vudT8>NS4WRYtl3TxAPV1nEasX)@P!k?L)MdRj}@Qlykbe
zJI~qt)pPzfdJmkHJ7&F2zbrVfic_bN^bhfD`<Ejg{EVz8v)~&YTAlhza5g#1a>paU
z;Sbf%mx2;(k0Sfo^aFssxnShsN&;UXbHnuN$zwo70Oqle1C()!ccBxwvN-d`6x%Zr
z1U@Q(1mv@eVKilf7EsQwkk%9homE^oS!1I0GR;bUjk2hY88_!YuJo()NHi(+rtCmq
zPXouCxr-F3xObqB(~r}+N{f>zx(m@Ozn^VdQU}@?tg-=zA}>@oYVYts-M}jeBIK3V
zuVld$Y(T_IX|8%#^%LWCzqW-Lj0g}!?k%6ogxYAfu-@-8+7+5uwiM&vG7f+&(||r*
zU!G>t|B0z+FItV2Yq$r<eN&ctiEjb`33RhtI1^v1=|uf()DGiMR|ESTN5=b`l~1>V
zeA_>?#!WbQhE=$OI?lO;tK>^ivCG}g0hfGlea*TuOGW(qTcM4||4{_NXb&T-9+Ij6
z`A*fGwg*rJ?sJtBC*MAj{HaJeGESwDQY&KCVqeQ;e$;i}B6#A&3~QC`_gRTDu`Q)b
zdAed>Ae~xrSU!=1N7_EBWRbFAk^LX#w-}jlrBGVvm$;Mq*Xf{DqFDUR>D=U|*OSxY
z_k2^U#25O-XeT6hAd$!z!>%pqb^_m%wP!w3Yq$*x9s4+vQpnNhg$9RBHdEJQ$}NWD
z;IBl)gQO-rn{Be3bJ`q|2<%K&<Fj#=;8C9^FuO{MK^C9N3~Rzvu(Ep7Q$zwPNJd53
zHF)O*RMZ-ml5l??Ep3UF7lhTC?9Hb7v!x^wj@duyzOyLKtBU0NIc8?zd9+1<;K)zM
zdif|(9T9D^miTm7Ctimp9Bb>?UZTg%>6c{oOj*Q5+Q5$IIgRItn=cowI<`I76jzRs
zB{C9iL*l`38Cy2fdTng)<rvnjPH3l6Ihku>mM8;>L*~aDGue}bY+{^21B->9vMGB7
z1|qwkW<*hgr~@J)F{pa~bqsUoRC2FgH~u>dhr2h&51uB=L!}bhCV{$2tYw-*X+mBs
z6WIi5!Jx>lFUPIa8WWrP1%+1qK$Xy?6*@NBFh|>e3me-Z+a(t}z8vd~(k`P;+bNqq
zKHxDi{B?`ZD?26$A6K)t|63lsZeGsbj~X%YX{?8h7LQ~Ev1n8O2OUg&18uNB-TUu+
zM0K<)D6mYsF0iS~kWr>Bbp|MfxXF29!sG|^UD!YcbsaognX+Yggd)-l9ZEa`S^R8u
zihu0mb+^uV_xx_+I{5AC{fh5y{G3GrWAF(Rq(Ndf_+}?4awQNY2tk386=iOZt{<Xh
z(HEtP?~pp#pRX&fS14Ri$3f=+vdc4)`%_n!KQ4Rr?RWQ)=j!d}QNilRVB)LxbFtu@
z+||`7-GtHL`@n$F{?K&Hi8y_cPZtR4vYR7jUO**aK0Z}Ewg)&4HY0u%bkT`_5fFS)
ze4#e%yZL&(qH%>R;s!gF<}u#xa$KORS{vveEltW{s)EyHZ%@e4MeS$w6Je_l$#UdI
zcYxr7cAn#tz<{drt2>h5lO3m*ja2Ijk*+P6(X0QY&=so~Ty1QEMJrtGeDB=8>22fJ
z=WJqOLy|>!!XkgOS)w@<$xY0nHVU&#GVdlPp{%Vg&2#ZeC8-}rWF5IF9-0ph7Q``#
zsCePi*YhO5A1LPq=7|zCNZ{6q+%D~_ZL8G4Iw@dF)rnk^3+rsi2==OfPoR#Z+;bx-
z@P2_!aA1lklu8H0-NAZ@*}5-DL*CDksZ{Mx5a!lA1@w7#_;LLsvA+*3haIZ0gf_#>
zmNA3%cXs#{?pK5jUf)JG{doulm!C~X^9{^6f5LL#>c{qK#(t9jf`;Y<GhQZEfBwj9
zB=gwzlNVChkNvyVPIX0K;Pb$Na@ZlVO)pFL*t;=>*w!VH0x61)zcjmP`W(b5t=(`~
z7QK8)0Z9?3)pUCF9Z4(ucJuVywwCG^>MNi*Db~1lvZJ6r%hNy~cutiC*>eByDiwD5
zcl5A$LASbU@mgikm!aFYYpiX)b)?OMKD@aiM<RzL3$@d&UAc4SP>ad-^KPGa(yUEA
zEbQi8HBvzWYn^xOYfW#i8J<)3(=y|@+Qq+!Ll3~D3U?W>gX`z6ALnCq*%pwCDJhYW
ztq;*6W^6Snem^sSF*_&NmyuE5GV{S#RdM9lb(zZ(cH3dqW{)eL;ARG&gDyf~3E4k*
z<CRnn2%-F>|JMpj*>@7;O?$D_h<~!b!Y8F*WYE%*LuSKCoK12~2un^ieP`6j0g;BB
zG9;|lBabn{zQx)4SG2SKVX;)<1#>bKHp1QOVU=Tzfa5#LI{lRH8_gV~+drf>I?{B;
z)l1cf-VEzi>Q$fqkqzk%HcFj>Eoy;G#yy<8*1h9q*~dTaX}ItkB*n?}1$h=+od-fi
zTy1%BSpz(4wZzt>+vIHArGM(j%@Rq_j{T#@t|fT*m~3ngZ+(+_78QT`t}Wn$@e9Yq
zO!(;@YG*&Mfm!;3a9wVs%6Npz=n{?m<2=|_p6yB(Kyt%Pa-AprY8?aL?m<Q~0{`P{
zU$zip3^SGRF!Hia#vQIa_Uvj=$S2Vuv`P+GH+~)^Q64|BQ_fNjZSj%)&kV-cIUhWB
zCH&J)5%20v8eP`(TWo@Si~>vzx?RBnR?_}u8tvPFA)}BO*&Rg4aqE!b5HkrtZDHp(
zd4AQdXPaz>sb5aB0}=iDp+%XriEe>}TFCdboI(pf{&ZUM+Wige$6wK?-MSQGW-x)2
zSi-1>Hds3CzlkJIfSS-K&4Ek|Oa9og;3y*J;qHF44`D~-rti`{3q4orL(De51Q-9R
z;svc(lv@|r*^Mp!(i%yV>8Vy6QKs=}(EbH|jt#=5ho%EZ4VGWk$}SiR9%eg}I#1s`
zZr&HZmRS5Ld>C^2GM1jx4qpiTiNY-1o$>#G8|fp2)`p?=Vg>NSLEInuHBo?*dUX7m
z?2c>%y(Q$c6#P<RRn9fbVKywLi4}@W6TYf_N<m}LH1UTneiR2sRjh=_7n&cKZN-Nk
zs{i{(Hg>`~J1o2LSiYdCo?hrcikQ}xBp(=ufymp+9Y|ekc=A%U#9q0-_%!~ur~-ET
zUC3|zKZAql`)Q@@`@>p$1=eABhngmzKa%k4`9gUltvlC~P*&U7?-ISn`jJu_6W1Jv
z=PY{o!7Xm=CH4z#ZJ*VZcG!w?lQUs<w+m5wNdhL@nxz~`QugD>wkSTy-+ewtjiYN^
zt1Bbf$)o@rlM0y%A}kWQ_6K(LJUd>Xi-enrGlngxfR`_aC#??P-CA#mJnGA>%N|5!
zUSFpV&cG2^R9~~^i8=15%Dii&y65jqCNqsn2duRL3k}d>w1F`)bVc5kU;*ePT<Qs;
z;t-V_Wb)#QVN;~@%HBC~^Ze&4d}4gvT=%BA9h^l456F8)IVe3cm52C~{{I&hQ)}OY
zC?J7)2!e+63j{<Akopur(Vw*IN~h)!OaZp*rd!N|&TR&bD7Ti66~s45j#?@F=c`Z<
zPhc~0$AN8y{Yn(|3a`QJs+QN_KYPkQhu-{xgIT6ElG6_5&I|Qf=P(h&#crX%5jc7E
z2?0#{zWdLk(jaaN!Bb{u#OnxJ@=%qi?c9F9O^Mos>4h|k*h1y*4UXNvoMQIH4d*+S
zqhr`UthI0E)z4+rOKRej+Bp5Ri9tS3=vgn#s2pmHtl2h|Bm~MiIN5Y()<lAbl0833
z0eSiD#q#S<{n<5??0Ea;K68ox_R<5sIb;nuK#A=g9JeVQw_g+Ab&Ul^1)&Urjh>7W
z`)Kc@@Y?R~#ddcZ6+&GhcQXFLnDdoISLadm+}@P^*k0{e?%v;GeTl*~Ik82^YT$u4
z+92qXYL`kZszrU^$%jl4=P^hf{hJoeRm?W#0_EDKvWo6&zBrm&Ss-RIPaizP;@Yin
zdn0(wSBY7^Or3jqP6uDz?rj@37pP?6o<Q7J+Ve<c(cvq>JI?5cV@N<ideubpV*A6=
z6@U9b&(%d@`rL_r#$bZ}Zg<ZMnS2f?Y<w*EdhsF$)oOTD&sj9QvB3v9KR9-IxL@&k
zc4mg&Za&Vh7_1-qGT>ig?NO9A%Zq;Br;reBeeXOz$F*CwXOkOOobAsqnAKA|n*k52
zct4!H+`-cqt?`ulg*Fi?VPt_Q%L*UZeT3{XbW(Dp$l_h{*noOsxARmvq$afR_4z#l
zpSDqP<N*aZipMAK@Atp7z@sb$hwEMcglz#@6MyRJuMF%9ulv)IYzkf*B%2T*heQEN
z`|$Fj|2L-N07FfsF@^eC1qKL|jhYnN_yqu-)du?A<ig8_35Blz79=}g<&dBr|5vgp
z$z&6TI0pS1GcQqyVxWHu$U~hcv^BhU&`&ZtVtd7X=<p`sIc+Ho+GO@IHt|B}Tv^r#
zn$=AN8O?scqs%Yrxk~=X_5-p-?jFxMq)Fnd2&+w2*p#gwpovHR_-OFiy}ttdTD!gD
zu%owSdaq!=$I3pN!`7ds;;kT4lL)T&O8UR4Y}#8#!We7qCq4VQm+6KruS{(Qy=J})
ztJZ2{6Xq%?Cky$Rw3OI}mHczZga>fckE8^y7ix98)|{Sz-j^!YbDW&arA64>9U|Y8
zpf?*;g(t%mq<H?)e*Dy*CjW`ACNGJhX)u%9=v8HF^nDn!f^99{mHt_TF;11NoC!(6
zg+Ii%cf}pvZ?5`$;v{+nKP?<%fRH^1C}4OL^b1v3GXwBf=+KY<Kt~0{cE%*g70dJG
z%)<wDJ-!3<TV^m3#|EgUYYbW_v!q}m55b&gNCL_!Y`&`Stn{mj#in&B8$aOSTwmb*
zgUXj!J5Mf4Qu@-tfX;Aj4U2U;-Y*STTu^+)yFYDs2=)U{Pg6U_<VpKd0I!DqGxUew
z0UnUEX`y&?0uQxsq1ohazh;Zyvz5N;*NK7l)fN!HB}4e2Y&}Fvt;<#Sv*L@wtJ4<m
zmNxUoHh|xb&GMHx{rX-;R4cCg?;S~7N5$9RZ|}RxcYv@yhplHqBW8Av-hl90NK@TA
zG$zK^Q8ZV*@)h_MVw6?am9}8p1V%238u52^suCD@?R4N-l5+sFDl0j#d}?s12V1_7
z88jq^^hq@lKgn^Zb)3R28?iKszLKqPe~WrDYb#%z*3}xqXGi=rm1*(w@RH7j#l}*u
z&bXkE8U5nb+++3wi75lvi6d#8_zNaa|2!mEeiqDi^l1zF89f}sEWYaH;viDg^tYoE
zY~)LC_&iEA@o}MHUCpUHiDn5N(%M!u`0t(Y>?p`F<LP!_tq+fFlMkjigs-U5u*3?m
zNR%bPEJF(`;dwL+8xUZWC@rv=V2<QNP6g5|uPc9moElGh`&CHw%7-P_JyrQbg-48>
zRNHK#N(EGpup2zNH@lG7^dd-H)OKN?OUw$2(EPD+(z5X-Tcfg*hJMQ_p$`wq0_5o$
zG6M8fyGT|)RS^m1{ed;_Uphv#CE&|=$mDnROTLWnza76U#Un6=Av9BJ%CxX#vCR)Z
z$Cd>d=qoAkVyiB1^2m#bMY%&wH`XIjQe#D?d=Bcn=i;Mg{E^F>nF@tI`y}N)n7~YF
zPWM0`UI*}{up|TvQYQFR&j;%C$|sgg>=tM2PioEDE3=I%yz6Qvd;jr@@PM|#n|jCR
zjSaHT9`iMIFMJS1&>$oA5+j{~iW=*K^L0L*uU%Hgevy9i{+Jn^XIEN}v4>tEq}KWQ
ze2eXQnhneTZXd5nxZHE+SKFdQ4CA6~rdrFgnAkrIO)nm`8F8h{k#!hRWjELfo^(0J
zYp#uEC}3iI?!6pe{zx&(k8<R^eG|X;feFP^@Tbc-8?dyPK3qqCr1)+3L=zUCEC2g9
z%W}Aw=viyH7YAn^&G-ylydmx0DzYE_j_P%jUlxAYZ;(8sabvqY_!dp>f1TsIyWF_q
zX7rG}dh3k7huwb<+S&=$Pun>Bw=))tsU0|<uN`AWZ^0fqVbSO7RI{+etMmM&`$j0E
zS~v=z#n4E+)FHh!01PVLd+XYAMSGWe+_E~+GO)ApP4?df7v%1MR<L)1hi<|<*m(Eo
zR{e^X4(~s0L?d8(ELRqLdi?hsva{UC#=MVeTuHhPY@ug&i|jmxJZOmrhP7Q+xPpUv
zDqO{5t(ten0x?<4?K@+~o4$1Jm$sfFZSBkbvW@-FJ>T|+ep|v|6Xc*`N~mcv#VGv+
zDT@5)&3>86*Rn{Hy+5&afT{r^?%3rkY|w*b+<qsr$MB<y_gVE{LSts?17I3~wpf}i
zVcK<Hl5+g{4lOXJP9dN}pD7)LwC%P~qv8`zIFEK-?hF!CB}PhOO<zy7RyDX9M9zYD
zJs(@xI1%61N6L$blTXosrx_Y#0H33%!c1#57`_MO`&c(WwK+x#F(%ac@UZLdO$H@+
z@NmWr6Gvf+lAc!W<8T6;X8u!U>zwAMz_)(K@gL5~-$Fu5YyQBU0($T#YBm1?)yab%
z`-J54CjrLmwpxGJT%#J98y)08Y7}u3Bxe3AlWk=vm%X2&$a{V^&$_#bS%D(@r3zzc
z2i>az&BFs5)P**h8jTh7=SP0UpX_VG1+M$0rwzqEd2?1zXOJ1Aqw6S%VnKhOX_$Ou
zkFA{dx-&26JO5SXUs7Q6jYT>_A*Wyn!O`G@2&(AX_|GN+150<OiE?b?>ijxUgJfdP
z?|zf8^~e!ZWi{NgtDsEW2mmI$Z}1^v=lsEA@0yOV3}_?(w_FVv_1}23Tk=iPJsOg!
z%D_|WU_U2_7+F%)y81V-3VhD(tuZ{K{)nb&O`Q^<L7UMUTk#0v^&MeYjfa>C)$nri
z*r2M8FA+HOHv2>;72~Z28^s{ScbRcb*c5Mp;Dg`D@-eodZ0A?`?lCO@Vs#Cd@<&l|
z>eE8lmhIbPiY(&%HEJ3-LU#Y>Myr+7TgI<<4vFu6k!xE>oLEgV@37B#Wz#J_VSuzz
z`Pvd^K(s9cHlIT3<!!L7pwv8kPL9-|mCAau1w*MO*`bzhWRW?!D8g}*7&u5f;bOz3
zVDXJ%_gsm@%aqZ%oCY}e4I=egQjqQW?F21F>@_xl;dkGdm-iP<z4aS{T~3PZ+I)D2
z9i{`zKOUT8Fb*8$W4I0EF<cBJ$hCAkeEk-l8kvHP@VR;WWYD-uwRW17pez6hg{x-E
zeD=wo|H>M*?Sg++L_Yw><!ycfR)gbaFHE9a_E>l#Y^2ub$pZC4O?|<iN?T<qM|i(C
zk>HPB@FXcQi3T_9R5X|)(f?i}DczsJiNs&_L2!1kL-ybo+Z^$MV2#RhmX@Yu>l}Gu
z&zCB-b;7eZoS;8c#goJ;e;RbE{XvkP-$%IKkZ~bgryX!dP;SY^`R5A%=o=-Se-CGn
z1@yZ%JsI}ci;M=J<h+b&2YMN6x^vwnlb$f<;XEL|w-5(SO}p!NrN4=A%2LSee+^lF
zSF2NNwU*%iwWYKJ!So??ZgrvZgOFq)bbaNlvO&4?80z*Oa79=BVlE38zSeBJ(;;g}
zl=!~i3Mu`Oo9#*aB@%qcKgM4qkVXr~=0`TaTWddbz1loNx&?Oyb+%=hj%W{|XfSy9
zaREdH_GZ4DP7vnRuXj(8`AdI~i55e{il2{u=nm?6_g0Co_XUES8po-FAtxD&M09!?
z;B)ACK_l0FaY|iHPAr;liVva3U~4$-AV**Qi%j=7Y;o#hul)$n(nF{}EOWc7o`}c;
z2=C9<%(h5b0i<hY{AFIJjwE6>4~jkfxN}-z!FuGV5GY&Ie=%+dV>@+fP_<q5h2LmA
zH_cdEhd!>}$TYS7?Q%&x$o}gy?9H-&_Y^BHTA%LH9)=9hfM3A}T3#K7SjA>Me&uCZ
zr>#5QPrS%Er!=P~W>{Ok{&A%5N<3}zyBPB8#*!{quWbF5_$)IJu=CAfj`)YHG9td=
z!7?FeVys|HW}D+LbVAmCmGQuyVFA^;QA|$~-hsypXd5{DDfOu1t||EmrdhG9>%eN1
zIW#$TO<GVTP3Z&M<TEj->CcAKNw=hZip-5QAqAV&2o=}aT@BB+<9fo@NC~mxZDgj#
z*Rn|}M}qfBDMkdu3Z4Y9VdXkIfAUYt4~tXF_<_16;N8%V%gK~nY&G0N8e<O~i8X;E
zyh7Y7d;UYo5k~`bs&e;h1<r~7lbnFPFdwI$M4?do=I!RyAd4xJ##Pzn`@oBJm72AC
z^xSG{{6X_^3)6?8Y3jfNx%+h}t8fSgRnL)4agr%+SC}a|NALyxsYIsj@+jZ}+`PTF
zUA_~BugvyJ4N7dB{-}7YX1>eX*KDk&Q`Ph~F@1)!T-5$mQrXXw=h@r-ma}v!@)B<t
zyB?P|ZLHSt#aXNn<QA1c9jXk!#G@T5B~4x%-a;!zRIuzkbj?*=6rW=Xr#65m9qI1w
zbSdi8V;8yMY0ZK~u=~u?gD+_tQUbv4*(6A?;7aZt+*At8F2<XOTBcjX^{DtQ{+Cz`
ztUNP0U-GWfhYa%pY0m7cCec8St*G?MpXyI(Q69ttPCN&jHUtL;cE2(TGG)b8F)yo(
z&d)jt;Q8XzFQqu9l^S#a)nd-F_}8cI+M0mI`R0%CMZfo_HC=mS8-p|bOb}ya#bTd9
zB@|ONI~vpw5onriGSSo7(Ei^Q$<=k&l`k?AMWsSH^QIGvNuNlde_wjwS*zmQP`|=v
zu@sDuYZB*rW>i1HWa5(%R=p-F7*Wj~OM8HS^Bcl$!xwd>7~jm$KBv(5cbVzkpFeHx
zY=4cWbLp#hmnLnd+;gQfaTT;w(#(#L3)yza>AnHz%sX2UQ}@%v!RaX677@$jxBJFE
zTeDUyX9{Kr2Ag+!?UGlmzC87H-V4zhFZ7)~x-W?W&K*7n1JS&fNX|N654D1&i_cij
z_=(GWIMaMO=Qc%kglzj4pmr7c-d7*F_w*Nh`x|-WgOpnhqcmHz>MB3adg0${PtWEl
zkUG?A)nncpKS>0N+Umwy@8tQ5Oy-iuKsbw>zEdj62YFB`4{TfLOH5!LE)CV;K8q4S
zSD<>n_Mk|%?_h(y?Z7j%ZBE~9{6aKUKU^yTRuI2%aPD6;Ms9}up?3J2oC`JoHE3C5
zV*7<pUhO-@ocN|nXgX3E((<J-1sx;^sr(5Y=@Zl+Tj*LRo;4Lp(|JBGul+!l0f5N|
zWchm0v8xlKGc%797ggI=xEeo)Ltg8&KOoJm**)3S6OG?Xa7aCJAPuybWeaa>-+w&Z
zLENaj8}=nHA3vyU3LJ;epSZ89w1R&qj(^$F>^cgM&3vSQsp&Ry#(&j!<C<8cd}o6S
z$ey`9eN@xSIU{oBMUtg5lIAgSg#34c6W|51P<VAn*IxUAl#NFk{mgC2Q(aiueY8uE
z^LiA~?Lo9i3y(+j>8=by%%l)!uK!l1usJ0NA6_yDEXUjxsO6GdQ9TvZ&>g+LY>n*$
zDp;}(;EK0_U;${D+Yf6gb5Fj!Wvto@S2{Z0E3>CB%ylX5?nB2MIASrQMDL!=U7YG+
zH*PlrX6<u36dr00jUbCiY*niQ+Hk#KX-Z}4d66dABgOCYp=V&atO_Q#Ex`lJVlc1P
zt}B2B$-p&8kY8i5VX1HN@^5mU3~P|g@$I2S1}XwIF<f6cr=}Mp=n-hcW?<UB+s6mI
zL;DLn6-aiNtPe1zdW8XE%~Nk~M;|RmU5=v-JI(cQcmhkj<u8Kc*B)90s-+(!7~FUT
zG@aJrJP<@x+?$CTL9B}BdgR-97A~8Ws~2o-!u+^sPdlqRie39Sh9_<~6q7wfo(VMk
zNLJMxl~{PP>UYXM!K}CjX8y*%19hvjk4@kvTkpKy!Vq44K6Q}Ejpo(0TsZ0{eYbE*
z6PR0e3urub6jS-e*ZYV5(n!sySt(!XZfG@3hd`g^jnS7%nz0eo1l6Ni&p2=S6xP)P
zt^13pi?QHi=$=;4$<9TX97fn^=tC2|%B=v84haX^^=@BaTp;jR>f&#&CwfmyF7M%%
z@m?6a^th2JdXqscKi?g^5`_9@iZOY(z23XN|EINk-6$t_b7Etle(&kqRIDX;pJE<>
z_5WNouaa(@#q9+jjU}nNwIGTbR|9RbSZhzh%UbLV)&TsPErZa{!T2ATWS@MgyW94W
z{kN&NR)~;Mmp``B)K0n|y+B7^hSV`K!IFdv_8p<@bG2H}{M$>QNx3`Z6)y0h1<yqo
zVLr?QmgMMYO?bqI8rO;q-Mk77@MQEs74H4AMUr`QrIgh#UPg{AfO<m<Bt!-JvEI!O
zTJ4^F`NG!e@ggs@!0C9;nV*<qvu^Ns4~;*K^Iz%MQCm2Om?akAxRVk>3F~ng?AMW-
z<+bkJH16*6jYt0eyw#zMvTUB+G1wYfCPd_dN!@yhFFY#ltot_!FkGWA#6?6R?s$V!
zXrmv#7Et|Lw&QxiD{A~0m^gnm{jl43yvqTrxbU=)8_#N7`=`b2yU@vwx)m6viFM}<
zseZeCI!d0Zv^rufmrjV`iq&j@O_i?_vX4pxIF<1(H3WFr=Gj?`E?QV&=1KcjZ#>0!
zzdk<ySM$uyoGx`?`?0FC8O1?%goP26({_(mn_nEHi5R_){vk3mM(jsU_e#Qu)G~F}
zfbo9%=y-dH^fzsSzqh|k(ZfW9v7RQlLA6-P=RRtl(!<y$3ej^j`=4Bu(n`n9Fyz^a
z1AB_SKWCeVvR5l_2uWW=l_;()_+-q0{<>VNYoonhaOU;g;(%&FpWlkrky}E@j(zfO
zv6Vm#yA}BMKjA-p_OFW5>jxAQG;;Z}cq>5pv7TF&>ARTozrew5YnPo%e2d}pyKGT1
zy$g2?Y*t~QtC&y36q_RX<PsNg^Jl)+TN(A!kC<??yyceHz|UvKukpJQhyA)x`ZKF;
zAX_oP$Do_}YDe30<rl(~ZDIl*V`Q9piArQ&svX{j4DdNh4Hpl3Ya?nj-vBGQ9wGF0
z!%v4jgWU@2#eJ+{!gGHHM$o2QV*e#hUEVn20p%$bQm@G>Z>N}#yU;&WG1+Dbw}*98
zJG5M%epYdd`S8ZH>AQsi8Ym<apLw(X9~JNcVu$6G8(DxzN4-m7ZcY#<^blibn!1Ia
zOPt<R`l2Bjw`h9V(>dGS0_<>TQ|j<5Ccdb*kL*HwYXPnrkCV&;Uwx0=W~;aHlO67!
z3&Tt49|7Y;`-bi&2UEptYxh0r)ROngEY+Cjdi#^?C<%bI?`j+7*oG*)e|{{pN<`C%
z#ueG&_bBJU-LcYAtld+(#8RP!lIk%ggZ`%o0<$NfF4i!E?p!@aLNwRBcocT@<GupI
z&M#+olIOqX`@CM@oShrojPy>PNpwSKCUHIjd`8v`6s6e}jM`y(m1!EtE+|MtR5o1X
z)Lw>te4r2~>y31@>m-QkW;$<n(BNK?JGobyZ77?yP6~}W>{$xxuAgBIcy%y_o6nNI
z#k$JqPV~ZDm+u3pB<eHYzR_HPp3}3s?!>knm}gqOn)7`yjH}!6^^8EpxrN-{t3%>X
z7q2a6!nl}M1EOuj8rAFTQyP2)qcmqZvB&6!#=3gCDyfKsFvtt5<LWhYO}rYEReu=X
zy*S&;x!6a*u?wPv3Qy#@pXHD=hE`Iiyxh>2VVpnX?qER<fc&?r3?5cMj=LZW=|TIP
za|%5PoSxXKI;a7B&;O3hL|*P?b_VvjL6n8!D_^E-)vi>reG03z#G2#-Bt5CmWHhVC
zboV#ek$%U512c3FHv~Wl@smtuY+D6+Vx}Dx#;0PK0*Uo3{GZaB5MR>W_rQQzf)|hP
z<UqT&u@(fM_hei;6?b}lAG{*@sr#Fe&gE}8o?vEIBs{*N-rxtD6JHn`z}e`AW=I#2
zJ8ophdk3^$U4IS^Qe`a)mO@FGuWm%ab_KgJ@tIEnpFM;TP>)*N-n|bnDAH@y%cuB4
zXh83x-jtyw#<Xf43z&!l4qZ%qxgqzG-=~Yen(3q6yyEtNj0X`T{~E>shc=t+F^H@0
zjBhd_@#i|!*Mi+$=w1l%KgfReL)`)Dff*FF6s$odChW2zy?&7+0#Tx?Pz*X#tDlIY
zd;LP{xvs)b9L9?8#eIE}V&s&T#xI12Lt#6&8(=OP`y2i`sX|m}1pUxqaaX>{q-*T#
zv+tpfwK`Ad9aD1u?MBMS#Atl5Vj?tn#Y7(SQ%^U}E4f57c4Nuu(QfmJZ@jFiUoW##
z+L?CQJ%%(9KD-TY4scgtgq(eHbZc0Z3%-|+xg7dsKPm4Vol0f|*)dtogJF19lbLO<
zO+UtOy*W_qD;-*W=!EX7Fa|2Rw%!r9UavG?7&NT5U9U)8?AdGWC2PqQ$ze|MFQ!Q3
z5@iE!|B>F61z)D`wl=P=5Wmo57(CzHe!qIVU~+aO_wQ6I;z)&94fr|ecDH(9_o$c9
z=;e9y^2*92VDViChZbxSDtn9Nu{8wTZ5E*X<Zhx@zMuqKFVP2~!p@_Ex)HTzUUo^D
zc-h<chx7C@!9Ts;nnvFc(>!B@TqI7@{m8pzz-echd$mv?`#~y*k>ySJ>=U#@YP++w
z5M=A%#+YlDbm8)oCXQRPB@d)J>GyiZa&2k;>-czz{I+Ed;7rl;W4o~iJidpN(*r{S
z>1`YnQLq(r9bN<<oL=gl$$B`FuPB7iY#^27M?O8gTfPrSf~>J&k-(1Oz>Q~zaJE|V
z=}QS4L`Le;Aj`sItjVm?{N*(Td@$hGM>VE}lHVS&m(L{mKTbMS7F^?cJ$AI#!<~I%
zk^-{F4>bktdL}Q%$u{!Rs6tj39xmI_Kknn(?+t<NJ6!-%?^_Vr94o*Q&L`zO1I6M`
zAI_n$$%ku3nc~aJaVaPVx-ode8=ZQ*zo}eb^vBz#H{M8}AWvs)bKoqnthx*B5pp-3
z@9Sxx`?>EqLIOepN68P@0!>^;U;D(k%Q?lTemwp>@%IP#;M>|#VYru^x9v9;OZ~;F
z(Shf&@_fwPgqCW<Q8^9O>>Ghi(*{#2-+JU>2Zns#jpF`Q-Md;GjlHBbT5LB;iJ;@N
zG9CUKnS>0I+0>9fFq6N4@fuRau8H{bSruO&N|p*IikhefK|AdlvSSj6Bnrc>mB<Y~
zUcU>fI?Bj@SLeT`K1fm~k*ru_cY-VPT_4=#E;HYp`qJ?|E^zHRQ01t9&g4reP`9g=
z&cx}H_hWhwa_?;8l!9Ge;)mH8=F&yxsZD+e*@DdEOOR}O+1FAE`~h*r+W5%%+Lzuu
z30b0+9Pu^vvg{Y7@QeeZFw=VIzj-$D7%_H>VC9^b;D6>5I}JA`gpv}C?yfbc%}i1G
zKZAUV;Gt&i?^*k`vWs3_Xu6c=pP1&RH;v<U-eFdS6Y{F8+gry5y?fw$R<t;T5)HNx
z{lNklVRlyn(b%My?R5A5C_2lBCfhy?lcFF)x<e3<R)Nt&x&#EIJ0wS!Fh`1XDD}`t
zHw<JrI;5pzqg6m+ga{1Sh<EQFurJ&0`-<Or9><G<2oT?hF?QA6qC8Eh(qR@B8Rv|A
z{G!nCA8hOTD9vN&arJJkg501lK&FvNhtQG~{`+_lYsIrjyU5VG*V0J%rBTc6<iA}0
zD>Db}-hEWvVs>h)ece+`&HAC9*L*TB#g5p*nIz8aH_m4H=}2HJXgIX5sgHvtlfYpA
z?7133uZsC~G#mNW@;PGP1@9804oG{kC=*&mxZ9xeB1>~S;!Ck({XN7Ye9@P6TXtqq
zc4_D;%D3pNb<x7El$vOn-)2vP@o?7&tRk(PSZ2jcwV;A1&#<Y`YGycR9;2fhMRFs~
zntk?c_OsT%j1{XQ!~ZUf75x(|_e^MsP1E1LT0SPV#fQKY??{9GhR1`te&jYCaE+Oo
zz&{RfrhcF_4Ta1Su(!0$rl=Ji%KVu5?Exauj_1iOkQcgyd)8YKA*E(S^%1Qt4XODH
z&;J{Va$S{SY%+(mHL5~}t!-=lBaN8zcXc)wvd{aL-S467LjoSMz#jl=P@<TCUJgWW
zJ)iB?MCzoZC0Gv5mF+YI1gAk*wwzHS|IKZ)z;x#Z`?SfCW4|t0-i=YNOs^m6sNe;G
z2K=H;Y6xxzX^c!J{t2#)UVsgQs8By1U|)dYpr)WXjc{O-dHn~9lt7e9`sT>77eKG?
zv*l|f-Farzz`|}&zZsrVc+(OwBE9HPw4yYzZYFE_(xQ87VX7Anz_M)b2Xd8kAMV!9
z45@<s2nfjYs!|K^r2oeAk||CWogJDg=I4|3T@^#toPqrZ5ldC5N?te>wD6;E*hltf
z9HA`O5j6b=7h4ped)OnGfk2?&Io`C&5a96DV5xx$xX(6pWfuKnY++cyy0O|&1N_T+
zP)`-y8YD?r!al+r_Qx<ER+g7tMH+I#|E1nAk8n67(TB0}wtC^>q3xN!0dX&*z@^v=
zuamB>ssgXC34e1-+^%N}|2)%O7j@f`$^SaPES-}z)FL*c_0uXre#(%*<kHSmmE`e@
zz~ntXk@G>l#DzZFRn5J4)6F`Y%@0(<-1!P%3>3HV%NgT7^QWOLe&!y9*gxTfA(C;5
zH$m^h|DCwxMdO6cj`Uqr+eB!(`bE9F3k4vBAc(r{Mm{zbAbzuc5zh7L5+3isF>7Q4
zB)f~vbG*yy#!XyEErGr;@=JcjuW#{A&)@%Bq6pnQ*En16@Sa0UrS6_<q^f>Yyqcie
zTd@r{Eml}(yE*PUk-fnm*2)yIEu1rL-6xbY4~8ZU;K3_|q>Q%<j*piC1VFM|-wMu~
zli0I^!J8n>6WzU{qOj}g&JCO`#FEYby=H&nQMxK&F2}E_3bFSQT-UijP807}?o1WV
z=__77=(<}+S~bX5>q$qZ&ioZn{jbBfq1|2_alFq%=_XSKF!K)$c5{BFY;*}F-|R!6
z59Jcd_@uQ<P8N0j4E8hV^lB(A7tXG0QTGmP4ml2obUBADQjVJ={8{w;<@Oc_;~et*
z(xd4D=v~0eocI|>@$AW;an$la7EzF}$zp53z4N3u!j%q$F{b_BPM@YasX^<fh<h-0
zr6pF97L(uj7FHmSk*f?Ci8I8ms=FQ@OxwIvx-0@zm$O5af=pPNl=$BzU1O&<rg7d=
zXW{J|L*p&Y$#XFhKuR}fH6HH6C;5s~z{<P3O~soe&}Be5j<aYtjbm;DcRnngKdsxQ
zcNzC^Eb=rRS18qYnv4pMZ`i!}uSNfrA9<0;f+T8A0jHHrJAbevPZp+-aBlM^g-r4N
zeR$XfL=&2vxCtix*mm6Jo;n!vD3Dv0$FK?SGm8f8ml#U@{mawQrL|Y9+X)4W7|2h4
zqFRv7wJwz^7{0DL({qvL<=@$~$y8DB;M;IBu*hDLUQCqz5+YxpxYVSZ2rvmqcrurw
zZ(h*B;ZLmbN%QQlJdZLXbF#lJ?N34A-+!FWJ~2g-6dtl?DCy9gkbV8)Mn`aNh+#$t
zh(Gwp+rHe_>B?6dk^_;SvH^J@OBgFW<U8N{<sbA7`Frf}55dI1aH-)*Kku1QxUaQU
zgS%}u{poasCkHIqPZD1sM<}qOPzLD3VM4is{s;bBAD+HuDEpVe58H13Z@7h5s74)J
zlRf6ii9lx#U$eoC7pQ-|mMZ*LOk0mn946g-2pKKeqlj|k`=`RXcUqUS*UGXJet4Ft
zXjAIYn?-e64x%}9EVXHnfk&I(ah=1!)|r=NUdI`xJr3R8ejexIUwyy>K}-Qe=aNT~
z9!>VODfJC_#R$7*AK=N%1)phsx!p`cLn?5x#S6hO0NgG0N3OKE_#mmUOvAaSfAT=&
zZO{ReSNOQES83UlQmYFvK^dB?#A$4+lkV}oumM#?gs6PBsF#fo4W14>M?Hnl#*Pk`
zEDDX)PpLRreCN};7oFVfYg;vpk9xO6AMFb{=C$2SIG}|Kk5ikaWb0ifWY2cJ>tX%=
z&3?D6K@}mAdF7ky`3aac>AR2vEl(EPJhr#fuBty@saJn%$UUixrP`<X6pFuf_=^ya
z%otKfzOUzt5Mg?>9Ch_##*{AVB%0oYo9d6x6>Nf^Esi=6ASc(P<GQ2Y)=1tH?EVPw
zO=~YIYq-S0dqO6DWN(CG!f}_u0RD%6SGwMRGX@^Pm3S}HWy(KxJIe6w5ds|?GGgQx
z>%Voa-}?ut_@SOD+5D-zydCV}4K>7cifd%XUEttkAkS*^B1K<LAh_#nX_nC_@CX}s
z!;AWS49(W_f}m=y%FP;fPhr5fTd~<UeG=AoEjMpX{-#Xq0}xiw<Bp)i2K>zCdLxf;
zCB}*j%!A=^)pLl*#S?R-FW%^#JhE?_A`YrGeRTdjrQU$^@O6L4#fd27nBi)Ja!NXD
zKLwP6!t7Jt2TIRPDIFQ43|(=;24POue?_G(pMJC9AnP%YNM5=^?U)W<&H5vYE{15(
zB;U{?EMZ#<J(<E+vuyK5rE<-=K-1yROBq7IF{1N!koZAsXi-t{!KN#jI_uk3x<w%<
zh{|uQpz%*a_n%I0vY??cJoc!M<4kgqBo3tt3|v}=WJ#LlXa5KmK#|pj#YKeFUwyPl
zOT5SVM)4Ivj(DqM^wdR;*j@F<o@j4_6h3#;Ps=t#A*a7Co3mjhj6qS)bteQge9D%q
zbILL%EhJu%rK|go?Ez-xlXr6D`nj(xA@{;f54mp?jIEa?>C*$V7$Mg-F2UE1DjgDq
zEt3ROKkI<e?v>6oCk@r37?_cx`G^UfX@NLfJ4<GN4l$d;9X7AgGx1(Z&|T6IP(#t1
zsQcsyxr<&YdLZ!afFS(e<@1|Menkf6uG?kD&_iE?nAO6I-5G<zlOwstap&K$iZ?H%
zsx0M%cBFc43$Je`q$dB}PJy6$Vik;MqrX}_2aI=-;fMGzmv>jgF@l{yK4g<JG&Zr(
zbM4Gk?)A?p)|Jz7Ikj0ldF_{vv>@5flaCxHEgPX80|6!a_*ZJ7XDq$^&&uy=ksE2<
zMwKEnD~&z(CiT{S`Y8I6A2nXDUZ~oJVSmLsS)E!D9GHe*W$&&9Z}=jxPJ{@!vLy@j
zNn(FVj17M_1b@YAdg}y!Bn#y&<NTyH9<wVW{_wx)%26OeIkU(H9p7%!$pJh_AgSQ%
zYhxHYNs}CW-qiGhG|GO|UYOdNPCkKj<Z0{EXbx7HHnR&aro4|6$u?;o61`%BS*HNF
z-F$^vImp`X0{@4|)(Xt%7!8~hN$}V`rCuS$RF@B{A=C?=60UUXF_GQTgTJ*|dt=gZ
z^0s^aUU$pr7CPEn+nYoFv%N&+yFSH`niLP88sy;;#hy|>m7@8c;@#oSS*#*x?)Z8y
z@$l!fxs9t8@9A({w%1+(vPE^?ZS8Y0ZL}3BvD|nzgt;Sqp5R-y$5PI~if3DqN$(o~
z(ft%?-kW&YWoq}yac6y8%>2XHF@)TF{p}4?3AoO>R4&tIGmURLt<FKipOTrr1FMZZ
zd^xYN+rr-Dq=>m0JK<E6RF(aAm*?92qmKeW@L=W?MYqzb#`9(Au|Vu6<%rZE=Eb;-
zKgXn>rsFdxI+wqQJobCde!t~5qb>+Q6riBZpm;HnYh}yP>wM9e;Hk~<bfM&%Kxdwe
z5L+I|YJ>73`=V+AHd^xBAr-&Wrz8`>7l6TsOAyq-+BP-`M`+m`gfhy`%Z~=iCcXgS
z9)stb5Kj{tsQ#&-G@}DHZ{!dF6yJylNbagrTz=(<5*$J$XS6V{bFd(Vzy9ga`*1%X
z$Gde%^#uYp-ie>Iez*vNvSZKOi;&Mus`fl)V*{~fT*7WrP^wNWOXJ*7?&w5AAT;2h
zop)&<>$lnH7kyiN(!G8u@(lzk0sg(ITfSG@Sc*rZ;kC7Ro52a8+)vamrxdK~l9E^H
zLrc%I>IwA)3h0mc_STUGd?QB$PpHRuW;i^S3HTI}qPd8F9}uS3UR>FgzTrRnX?NhC
zi6`Z^DRBk|5_z~x9L-xe$OBr+;y(G@y3FyvkW14-Q>Hy_MvJ+#nwdl*<wr4IOc2*>
ztXJSZd|~2w$;Cph`7Ry^boocMI>R;C{Pp?W*3bRgw*w2QXC4bG68^j6pl4rgeS~NO
z53l17>4<8_QpA4%GD^k4;I<!ID6g4(h8ZFJn)$CMuLVpQOIRQ-;)kp(9F~`zI#`;E
z6WK`-l6P>iNFL~%YP0sBhycIIrkWSh%w|LTd3WX=#frifgizo$MF)R=-l*P13zdvR
zUU(~<K%5!L6O@jd9{#Nu8gI3EJdAnZ*BEUz;obMo?ESj7lf)#wpE&pkavutE5I+!#
zvbxxE2N+!>FGP~9MSX+2=*yuR_CClwwjHuQ-tZrPy29>p`hHJ>3hHIB9>}D_h)1X$
z?R_`Xv1ii}YayN+KX}>eOz1lE%iC`|ydw=w9MroV=W<#W$b@~b&&dNUJ=!C>2x>aS
zAg=rxQB`q=UwpfjIV***!btxjTbRK%#d6hdu@r0T1vm@sn;UdkIc;YRGq5hI>}7E9
ztEZaMIr8Z3(Wszt)0mDT<xRh0pS6{D<+8n{W$-sE`<h%T>lHKCgJDIIQYdvrVb3}&
zIwbDdYW|kf@Nej+sGs!J9j>K`=hp5J<gZm@D`L!7o`9+y%cEb+&MNV#s*J`nmrU!x
z;s9M?^$R?!W$b2|rK9hPL`sN><K#k*jL6dK%^pjm^G8@G4m~^pHWeN3nq^Q^<K~x`
zoSL0YebAT2u5&)<vE@dZQZKTnMP{bwCOLSolJmWC_;obrY-wKJ;iI3Dp@*aYZ!7wU
z5I6Auz5H~0Q(6?J$r*kIbCw5Bh5Wnx^!L2yqP4BfBlYZT50js&_(k#Zmg<T2k!kp?
z3mnrnl7Q^&zQH6P-X3?}wigvDbSunucz5gBLUu$#z5Pc{Pt7LV+N1(n)=pdbQ@8D+
zs0hNa=~QaYud>hnc<680{0JONK_J^Ux-iQ;*1}4n2c5X}w)M)3^{_;Iv4-c15O%9&
zhx_;#dSQ9Ch`IIp`FP{0sU?X6Wdna^d3j<k2wSmoCJ9F_SEiS&9l2a&-FE=q0~#7W
zQ@v~pB(nskqMpik3>0Eu^#f)s!xr!1%q8v@cxh#vE?aZCu~a2HqT$PpvR7KIwY55!
zuw%6TV{kT1Z9=9SxsxI+$%-$_k`ROQjyz;x{CIb@*FZmHJXoFw<Hp=%y}QX}Dl<yy
z$6sTL%P+b+Vx_(Lfg{68-N~iyh5tkAyCTNVMis{K5!~@8){eEQBNHtCOVi)GJ5Mc~
zRlJ;-+NBEftGK(hg(&x6yI4cfC!Orybwzh<_*sB%4AE}#Q@MKHk^+2eJ|gxd);fuP
z8Cp3j$foC!`4U(elu?ef%nhx;f8g;PRx2=c90-elUE=2!r^%&|zlE;owH1DzB)u93
z1uaM7v;M*cdEamk+6<G4u{w8qF^|m!FZp4(VyKLEfa>R{(>H0%>B=7#siE%;3tczE
z87JL;Eok)iY9Y}4fA<@u|0<RoscZ=#V^+y0@e*9`{6*5!F1x%;3+-k#z7T3_oi|YU
zU+*GiT>{1F*`QnYp1dTTfsZgJ)FQ3)VoOCKIbJ&B)`F)=wXQK#8>VszF}{;&e9^{I
z1ouUb^WD$?f~U)o24#8N15$+jyp2QMM_pR~iD%hHDj`K^H0|ZLjW*Y|?g!xWonXP>
zUy{SQFTV}+HR2KYd1n(j!L-{Jwc`u>z-lWY={t|KTJ>!~;I@EE-&ApZ#t)%}`hbzy
zjif1efp1nWYjoyc{I}Ok5yo@FbO8?V^QY2_T~qXy>9x+$e(<N`nOB?sUVaOqq*$*c
z56V^sS#Y|S-&p%c3-aAlo*~2DAu<{vfSo!2lU(ylZPuNhvyf(($<`XLj<S4r4Q-0&
z0;sZ>Rz3?bWE~DfL~(|hv&kV_9S|AKpBF-27gX5`7qr8^ItZ)Dy^bvKkp`bjmi?bM
z`?41ZCac%wp|d7jVR?5R^LuVfwsx~iGdZCIB`vfQ5CmSr$)}W?H1^8e>Drn%Tqpor
z4YaU>XMyCvvHh2S-#HwunbdxiaICVcdsV&np%5{kuEc5Ntr(xH7YAy#I@X{6W40^Q
zgfr8&Xnc9_^1vTvkh>t%s$|k);NN1P)ZiRFkJ-^{a5_|KutI)tS-z^Gi$#ZK{g6-Y
z-aclDabf#0-mb}zsGeAQ@8#r(p;i9J*KQPyUy2?z1j4h0R{U;2qrs@B^Flv&a-yRZ
z`6p58cC;~e_X4H4SehB8<uWJji;bS-=h%vHh=SnV$~4U*Ex$Kn3~7RlsAikxteiOb
z{Zh_JT*~XWpP+aIcw>@g9+O|k#RX0VT)g6T_n;Bw9xH;VI_x}VnI{h{e3b8kCtq#j
zPQ8y$AeAm6$t}5!3+?LuZ5KaX#KS7Kt!F^84l&fd-}>?N(6b%PA?Vr*Prp7`B5o=m
z0uFewp-nc&3yOM&koagpS6%P1Bp5H_A~oWoLOqllKM#w8r=lK0<fV&ekt9u_sct?r
zr+snrf)ZfYY}YHwJbcIYFFPVZ4-es(-uZY4pdONuF1Xmry@znNTS1@ZO)yG~wHj8L
z6NB-y5mN-?*(cB61-?~eh+I9Zvyfg<s28?<Zs&dS?sqOz4@R(Mk!8m@Vzl77IOZuH
z6gXAU*taK-xuT=8;xc8{v9DV&;It<j!}m=+8>e`HVf@vty;Fsjn9px(I;<uDBs&m(
zQzwy(2+t@GD9&?OeZpQi*)JLY)DzAP#~sR}2nU?8u2>5)oFGcCGOK`f%ZrR6*qMx@
z7s&C_CduC}F_yu(bc`N1>etl~bqGXN;X@|o06wV)e|gUZniS2EOrAE{1DzT53U$xx
zphHUk-4i(_yR%IW`IAUSW939p_TheB(<eq-HtNey?;Okc_vBT^%PbcjILzoWl=JW#
z0UvDIY{m~51jqY5>b;QuFLI~^D=l<Bk`VRUQ9Cxj&_st;$A%JOJ|AC^sA9t<oLdu5
zPueyvU@?1UdFztHc4<?)uER%W@XRw9{Io1EgL3c#skS@O*WiIDm38(+T9XGNZ+@Jq
zYJ{SbrDB9O0IVp44fWplcO0H6(6FMSo1?b3)IR{hS;I&v4S6Cs$#_TJW+85Of?uD@
zwXCIBOqytS^iRYc<_~x$9A{z<kHOS~Q+OTp3|#}C_fNiGfB$SSHQ#EYirYrAS^cu<
zx%Ab|I_jt+%M#CS@rZl!<A`k=&AA5R-Z5`@d_K7KUEMQR3cN9o2G1nFdNje}O3t!f
z!~bXW9JYDQpZ};o2V9v+%dk#Q{CpoBS3ifWk)>U!oZfhU^B8kAtw#*>NOe?WsIH@s
zAp_T#d@3Aa8!?#t%<Xc~z!K;c`=E67X*q{nD*O2CQr{7s65j=39#a*UY2tqKlsqbO
zWOS;CN0}IMFuJ{b9@6!Fag=_lt&SDHx0G=d**0tlQruT8)f?$3cTSK)nBe7TB4Y))
zKewJeGwr#H0TJbC?c3h02f2Q``5S(!7#0nJ+UzP`^B0Zww21$S<y@P)JGr|hyg8f8
z?7kbIg?jp*-5uY$*j9RX`xp0INEJ@!rJgH9rS=RvLsK~4Owx>u)q3aIYB4iRo&tT{
zGJfsv`IFL~^%)UTuyL^%v_%bU98^ow)GT^G$K}?{4DeoezjfAvy>$O1{(FRb@?nIh
zA~MA*(c5dUXw57U3KBT)Q!C0_D=wZ2T0{@4Vy>d_Xor$i_K#>p+5&>h_v3xB5d1OC
zr%orK$$8{tnC%JLfjZZHJ1NmzoGiU580Vb&J-lv4Yl-b%tr(4D?T;74;J#crfIoiM
zSDqr=?RKv*ta_|%cZpk_xs0Czbm!92Q+%qaS>TC^U`JCngR7jV2NZw>9n5~4;Zh(^
z+b0g5&KZnjSB)7=8M)eWsUc<AT0c9TuI_>Vdp}yCE5zr8ayn9q^ZPQQJB2z^(DjO<
z?_<~F{R{yZPrM$lBK|U|Ixr+vD2uRgdKjRLWs0R^_>{L|^*fM7^|3g!8S+885Kv})
zr!1;fEjZoss7W6qT<S^)3}L&|*Dc<E_>_tjP6GZ%a?De}V97V0fDj~u)|23Lsx$}+
zs`fb<p%OCh*yG&xVfF`g9_h6c_D?qFhsslU{eK8lw(r-@dY+#Xj0}+jpgHrl0O-QQ
zDl7iS2s#9Voe}#R;hMVzn3UW!_wUPYHVHdNiqyrxV(>T997dW&8qlOa+JC?cRkO$0
zgPX-$m_stLBt}gJHAnxcJT{dRw&h(+LXOcpGS6!pBl+A*-`IM%loA1Th=-jGVJ-_A
zXCXsorG4rKhv%Q7^i)~P9oL3(gM1=ybnQ7Lpw>Eb+2l}Hzlnn6*?}{X6)M)RC79v)
zgUXesyB^P32lrd5`hD4-_kBrEG!nj_`pC^Lv+g9$q9_|bC1FP{Q#qMw@0E-wJR-o*
zIxsM|^12Xp@n7+mQt8rnY`y;xZM=~3OzrbF)e!DhjR$+XefLsYl}Z18f`CG*zwoqs
zbD;aQ8r7fC#XOWtl?nw$l%ERFtgr4QDCdx37Rz`RqejxQ(Pu{b`<x-hgVZWDu1>Vq
zMd{gvO5YDs^RK|E&Zos&)3HDo6L>Km{>K5cBxw@o*jgq1c0WkE_`eeHGGe_cKIIR?
z(!M{}atbQ_zqy$$ZfF2y-e~47ktHU?6~ZCc5!BG8T&m%&WR{YQ1Rs3kS?e)tVh#UM
zz550>&0ov(d_ZZcN713c+cW5n-Y?x1H(i;MT(H_{`v5|Ie0nG+cNg<ff|=5-oXHK}
zdTICa<7IOm4@(HxK-@!^|FR5fSng1Reg$Q>f9~TO0@+4cQRb0(_Az@vy#U6WF4@N;
zlaFL#LH-EZK)g!L$uHBwcjdg25W?P+>7#Im82IwTcN)JDhAXCa<7E}~A~kvEZ@(#$
zg8izPnwC2GmBd<)mLqX}fbXDe6?GCa1bgonT_^fD;60(^bwJaqrsta<X=yl8IUnxO
zZP*h(c5=Ja9KsZlHkIs2^^=ajzZeS5`&))Vw)b$MFL30so%jL4`j@yf4onw}Zg{W#
zYwi;Wux4@J?`=VRAT{5}rxQ+a9qGaK4hf<iu<$ay$l|roRc?yJv_Nb0{s+<zq^vH+
zg8PbCJ$eWuWLT`(OH;pS19`M)_QPDTR#l3wKIj^|sX@~!`ZJLp_D#MX<&hmPTAq?>
zneenXrv*^iLCVjY6=k3D)~LDb_yzO#<E+p2v^g^Q;92(Nbh=}SSffLk+Q^ui@<(rd
zhwk>M!e8Cp-R&w?^xT?;=iL73!Jx4?V@53eZwsxd2@2m#shqNr$0yw86nidPHY(aS
z-gTkry4SZ8^qwz2Ky#wO`j8(XZPA-V4sB4+LFXZtm2=?V?NO8lq$qo~HTd|sLv&03
zS-{o;ry|_W%dEGSs@(hf_$fhKY3iQ<wsYU_i)^p4syi~2c?^<G)uSRzt3$d}NBXL)
zsPAS;WU^A=Lz44tM*#;`G_wz%hW5ODqTiaw1*nmptws<@Lm6twpJ-wn-s%f-z#o}w
z?eOzY2OZCJYxn<SLojOK`8eqJKe7fm3-Z?Git;vM3!PthYB>CKm^|^8>~6dAY==|i
zEc~)3?B&I)${5};?XfPawt>i=6QQ=Vi@Sp0J+!ypS>xS4PeM@~)LR(FamRS~w`kV;
z7IQqkal?5lf?bsAZm7<X!+a%y2qvnsO=9xzwkr40v)^uW71r9$>4AUB;dcr3_~oO~
zGd7pS-c7IA^eb_6x1ZEs)w{h@MjG~!uO6W#Q}q)TP;;phxby2kk$<+^tvdr~OY8}M
zt#r~D%Uoxz+;9e;Cj09@((wCq-nI#qW(jSBcy4hb@^#N3gNa%2=skC1*-sKn+`69l
zwgOVydW|gb+1}$J5<$g*LOj2DCE?*vMmwFI@4Mei$flF6rn*fcnx&UUK5;~rHR{hR
zQSVkQJXwUIEP9V`4Z-FG3E3#S=y$MgU}dT7wNMj!agJ@254n$8mY=m3hse}M8)D@z
zP#^es?4%H;9vZ%r&G$5Hnu)x7vuYNFsz}J*_YPhBcD-sfAp3fiOOj`|(N}?jfW2C3
zWK(#7_Vp<f444OcK8qbwiHFJ!N}NkF?dss9w`+Y_3z$?CIX+|L7p3<Qb${Nq`hK}H
zn-0CB*0zbkX(e*_!^39kl|gCSTI9GZ%13h(6=1D~XdP$Eb-(Z`q4kJd)dX~4&J3h-
zLtj3Ll?~|yo`uMvJYq??k#?nce^n$4y-U=DIyEUcI++~h&X2cKp6bM7s2x2gAMbzr
zZ1CBpmDp&rnB8-}0rbbYl;+@NRCl=tb{DPd)K#~zJ=Pp@tL#B^y*n2J3LQf?vgChW
zjZK_npL>PK6XIk0kDHjAlf*Jo+*3P?)ZYX<t>tEYh?jt+r$3Rd-Q4N+EwjC9ID(kR
zfFX1RoQ1q*nO*{Lh?34LUaQlj1k7QEr~aqzt&}@>+ji=`OdrpL%=LGEwUO^z-y-wE
z`vE=Y*q>vX)rxkDws8ufzQO-ChPjA>$$!Zb(k<eGk`?%Eyu-!H1CE_$3Nay>LBXm)
zsEfv)k0NkZcy{Ybm*>XKbjy`DOMuT3NR~&D3jS>;6`48(<X^YJz4JtJVCM@x4@2**
zEbH>i9=u=%hR0i3)(VIXs>FN9`chg}>MH>nmv<moX?V}Wm3QGDseoN-Tq_7tjW3oe
z%&!CV8dJ+%$uP?rU}RGdxbC29#a5HkHYzy?oKZ&>1@il;`tZq3Cp1jAq0xb?Ve~DV
z4g}hr=&8Xk%p^G1!-QCF;bajy!CJE#EAhWq;|#eC{df6?dpgkD<{!o`k%YByNmTdj
zWX>f|%tpNM@X^q-_n*#Hb`YLZ<duH`&!nZsd+BW~&%T=O=~at~(&)jr<QOV0ex79q
zlqKX6yca7QE-ZtV44iPKa9?$mS^ap*0?C5-%ehed1XM{of2dHO`_DU#VTz8rQ%3d&
zi!Qf7jZ+MlM01Aq9gDd|*UuqpgDaD590B;Vo*_eU3AK}B=Zui-Y^}NXU64P7ZXJ@6
zs|fYP^Z&eVWD^~l-q^dw&vlqVUUfVtP4o*?)2p{p8up|j=0*wo6$5RcoF53~_^m<<
z$k3<xtl3Phq<t!=PK9zkes16ZhtZ^iNQ|sQo8~b)^k9o++26}*<7+gO1Ex<b1&wpp
zRPqX}oZ2Q?b=7P_z+et}-vM&tnGPqm{@*0(=$fX8gKzM2r}dkLDKhZCgNCl1g-U}4
zr(-}Y1+YLANwNd&H4)v?&h``G!OtFHtP7?bTlnjvcUhyYOI7MOz7y)nDADcqM%vJl
zwbT7Jm}&<UM2Y>c+8%ut*s&!Qw)ed2o7h=6Zo>t8Y5wJILoqDH_2(17UC*gUBYw!i
zi>=*|nLc3xytG@hEIQs*RR*)r-j?2rK+Sn>ey1ZCjvfklN=o`zCwA)@vODkQRZ}(z
zZgj)tt7ZG@$-76fV|#VyHa{>e^@{&_ZaBHa3k4z$F8Z%}T8kKTud;*U-z%B)$v-BF
zFW`895m$6Ajl-PJfHOGq4K_gyTVw>bc7R)*(;0zj1|D!Ft)zRepdS511JBfca~!4r
zGYhAh$?7MQ?B>_{?KV|e%r8e01b(6?mkQG1=028<xAX^Sp%THSX>R53-t-`F3u~wc
zDp^aM03TTTWD!Dzn?6E~N>>vD&kHEvs^yzRrZRSt3}BYP3yvm(IBp(kl8Y_D6f>e>
zS;<>ZN`bykRgSBCE3Z-Ut5*#+Tlg1FTHZ)tHOTZnX5ob>rDY(Pq`(K!rP@GG7P=TF
zV4AM8v6C{f15-NEyz&M6bYg$s5P~0ItDt)8lRdW4pxkbCFh;mJ#F5NW*$3tbA%!OS
zonu<>6}aMcW>t|t1lV<O*l$9})h6ChQmDj1L#hfc<9(N48yv57i8~NmXi+~jXOtyG
zET|oRLOXs{k{F2zg|4;`2eR$>#06hWF<Ig>JgCE$%lSitO*0Xc8_2LaRaP}*Q#seg
zY=C;np@&kD%`)Nfsh#2lIOF^(kd+jXg1t{(pdj}X-2m33dj0nY%iG$?_tsL|HDvaN
zv;^d}r&0z<-;K`qww=`khl3v6qqcaqk&VXfNN*VVJlyqv3x0Sg%3l|wdqn20M7l&p
zzpK;v@tGyyam+Fk=0v4+zFBZ6RW8uCjm@hOI0k6Q9T>ud1*KW^um33APRUvIhol}d
zI8~9&2VFW!3QCYetb?R$t7T%y7Z+vfG&Wl{`{p>{re3j0;M9pR{*3Zpp%BwlQFVe;
zJVt)(E!E1q8!SN(rw-FIQy8UR%Q30nM4x?7Wc}hgq6e9BV-YLT*|D}lb^kH)KLc27
zJ&R{zEAsVJu}NiAsc9On6+>-F1b?xMj!W+C>#j|0B|WgoT*(CKi_MsBHe^2}r`Q)f
zd<GiJycg^K9>ch(!O@2Q5IWF7lQI9!t#WD&u+^<TxZrEE^4Pe2(Z(`pZD;?K3kk?u
zid5SZD+T2qCq)%)_Q9G<Qw{X^5&@Q8k>QIwbi;qRkfyD~5XbErb`&hNAi2iEMHtj^
zd<wtUI<*iox_n|QXIEU@(*EzWUfRYhfmoom<@--lKE~&F`^iEErz+@s6&ZypT_%<A
zrehDYh{V4Kq(-(AIg09}T+|v80Z!b$NA9`xb=sez-Y6`q7W8b*2p$xF9s~;J)yM5`
zt5q-ta|LeI#odRw8g3G0;|Obon1Kwr|JL(!WikF~Y=O=3WCEXM2ljaL2KHO=#pFXN
z+hCizU9%*=Q?13Ooc!Reeb(cQb_q%CLxR5L&EFc^i%Fz0kd+POtXS*V-$KahS&E2o
zZ<hiS->*l29!`Bi#<}PH&KbG+Y7K$0jtX`wb4Y^*fmJaFu~I9K!>#u3YP(N^OOBTQ
z2*>-y`IQpp`Oj5ia1Hq5!rXLLzcOGt6tQduo|Xd-!tgjd=kKp<(^V=*IBi#pZ5^hn
z7p72y_Yh~t+G{S=a(M9L(2L!RTeJ4>&UmgU?J><+AoGyn-IHB3Jv0CTIHX=_7SEDB
z$m<S2J<JKi-0<9V^_;}r9yKbIT&#npk?a5M&A?`H$4=Oy+aX8nO86l)6t~9Hbuk3C
zGcJm6Kc>d_h2kl`Fx~lN?bLMt=1LPL(v!OKxD;L8AeDS0>@au0KVsc+24S`oA^O_C
zh~^ssZYOxa<2GmWJzq@nwsy#TJs<$a4y1UT8Zv|5cq@|O{#)@LF}~I5@VKB_bS^{3
zqDq2P7XcLCdieu|1%^ZEZ-cgpkY`YtGX8q%@Bf?|yl?aMUCh}Y@Jn89EIl4W(jJMC
znc(}#Skj}=Uv<t$STzJX#x&d*H!}4(TBR%w2*x|r`Vi~Bw~i+Oa2*XrGczeGspwzg
zgh(;`9c^>9wl667&%EejAvNj4m5H9rP_@L9p4vGZ?zHL=d#l{9Sy9&@^y4>u_A3(x
zrC&%b1(@W@@{td&|CaSpebfbvKk;}zO31Qt(fQSae4%N|ywDr(REw%td*y{M{w^M~
zWscL(AnZ%+{kEsv{S=BP=P+K^IN~h}hFa4IkfMj($CHfO{Lglqx3)7>g7|O+LGA}N
z^vkEf{));m$f>Ni684sm4ydhGjZ#z08SXS`)2axsX*Ax-y?=hcxY57Lbo#9It@wn$
zA@uF~joQZGH*{$?a58)WNmL_|i5Ip#TQZx?rHQJ~?XIzUtI}3gugC<)BbaI$)tuzn
z)5f~aR?nj-JF)LYHjUSzfqzYp{rwP=xe^t4zBL(G`H~m)wJX7DYJG<UT2P@$*v?f<
zD*O2Q2=8_`(NW6hEIXI1gGZeYkg)Qi02a0C9s)j!cJ;Ie5h>*@`H&az-$5^_O2_R=
zR{{Se|Bm(;348(GJ;nd7q_UHix|vBJ@6~e?ok*DxRa@PLz^WUiCIc(WzJp#m@O*|9
zf0-yr(~^xIntrQ+BQig{-l9i$KdWr@fd7T9NsE%k^kFZ6jVNfTmi_A#;vRwA9aWPS
z+k46J3-gV)3t$(@RkQ7;9HT3lxR>IjCcBPV9#?Y5Jr0x+%o3bd#1XJn4pxR+h1Cao
zF<(5W>L1wU-@QP_1ReUXwK?ZMdO~vk2oMwBeSpW<{Va?BVXxK<pu3{{_Z8Zav{Qcw
z)^oG$VWfLGu@v$}_uCLb@qA0Vp%mA<?`*c$&q1D>0>R`DrR5yu#DeqHi8`lOC#Cg%
zniVOPTE6tPXG0HFD*UoGJHE7Nd=MdgEn&Cmp;rlEZnKh7L9)xHg1Wmt-8FNZzW#&J
z0(416#G<h$J*VI7SjP_^7>|3m;qN4{whg1L*5NM?i$1J9HzM9xXLEY!oA$_7$p8Kx
z>W{};>!$Vb9%f(ys?2%BdB6bYLWIeyzxjk09=-ipU9gGiR0y`#PdG$5ZU)nW%TNLA
z22UU(P3AaXvK9M9Oin0*gL372&_!4}p4zey)NQkWtO`y;Pw<I%7aqP^JDT$Byq#59
z;Pz~jYLS=IQq*;zAhqOklLD(EaqqvI5X1B5Qzm!)wbCA<oQ530D=ljL5y?0l=AK`D
z;)sYtM`o`{A<v{7w9u--u}FuLDd-I0IB?#!0;SJ$*a?x^ueEnsy^h@xtcR9E47@rJ
zIpz9wQ|!2m+*KyaSSWqhA2cQFxc7no%!6t~fZu^E)ozy=XUNebaLXcc4|k2)E49bF
zW6rMd4WJ6z*&R1qPVpx8*Hc=}?%Ou$b}gW`pf=*9i6NSR{$ax*v)mQ4_GA<Zjv5{H
z@le^;x*>TMdGKXv3YYE-9<+0=E+WK@9?r=0(AB$)g^M2WV=gDc3iH>;4{PxaG57Ev
zU-Z5^q2S>?WNM3GNkVPkl^(nLU{4#1XJX}F*6_aHVwG9Uy1Dn8ye*|zh{i9my8vc_
zn|S4ZK8{MNxRIYJ?MgG{QR)0kSgz%G0cyd8qW}$pfoT5xyKjuagUNJpzmmHOfilB)
z%!5dPc8)K|+_$$hEIZlwbI_5Ih;w-ipTwF~$d{{&&MRq0al;lry@Y;$GhMH1OYvO?
zhQA1o`Z*XZ^_=V>I_ay4e^O{bShL_J_NX(bGbc1fDzLY8Zj80$QM}|>tD+=4&OX~C
z$w@0xim`g{N8?&~Z>T+ub>P@}P`H&hwTclr{Txg?lbdmnn=j;Kwq)-iB(@$H>kYsk
z06?tsTv?d+;xTw1g`7S@ZEiRSe)+ML9HRvz#Kq|{il#f}-GeSnsILw3VVR27Ms@Ff
zf)59)=#tBL>WkD^ZONYP^<730!=FkmZahV14L)k3^pk|L;p9odq@nU-3j3u@FeO{L
z1H_az(_sWEEl$C1^GG4Z?{HU^2p<>pi*D1L%Ol%nIqE7+CHo>Z!VafE9N|xsH{)uM
zY35<)=I2n-pxWoZW&%n<++$7WSCQ+``sq8&M(FrX#EME3r5FDs2{={(`q0r$xr5yK
zH~IUchwgbU+y4sJ!Whg|+1ii$YzjkhZuz%T>tPH@WNkODQkKVXPKpn-`(0e(iH+IH
z`YU~c^a><}WshJS&rUhbcem6ReB8+9b5O~x?9c#KZHDC614B2pDiJ>2RpE`&T#XFI
zz&+*eniRcs=XPOb<d-+VCloSk*W(UZI40`BgNHjkZcij3B`?KQYo<V1wa&tVq=^nR
zdRp<F)M5`Kd6fZeLax)_fAv~jSIg>O5y=w8m&9x)((Jyi*_ZS9Fc)a-q^HZW-6Fl?
z!vOFtpV9g48r{D4D}Ikn?D8P(LFFrqjZUv#8tYt+t3mB5z&vuhvx@O8`TLazsJHde
zDy<L9gos%DMEz{DYG1?e>wn|;p?1Jasx48|D>!aQx&CxCQB2ge=q02dI%cAG^_w<Q
zscMw|jjlymGS!NtrYhh}(?iPKCl(`<UlAp8_3QDS$@Vfg3OU=@a#j_a3mTI*lLgbn
zMPW%2M>1iNn7VyAeL~B@-~m32gCWZ&qT!+nDgM;&40&I<l{LePR}l;6^kxY&tS2|G
z_<dft+X0FW?dUx;?aZ@&Lq%_12M{|<{-Y=B%q*srrJng9EZ72VUjL8|5ah~u$*0k$
zEm%1kK!mDOkMKdN@Ei7Wz@DeL%|5Sa?NZgcCdhKadpIO{^;sElJbp2{)gpl_X9mL|
zcreIL1<(AJFfif%n;>StTF_#yRUkl8uGpNyToapXMO(5L_f<50%>3N}tx|*f+#Gh5
zYP_$u(MZ&h-!6|u3ItBGQ(L1c_i7f77oHSuHP}K6<C#~DFL9cGq}RVW6eeQF7+*CN
z$?7R>sA;qFUF6{v*t?utCeL^JF|=pC)SRV@568@Reu}$JU)z)$L@#xJ?!O&F+dpdk
znOui$ZGcin{Bd1uO<J}st>b==eWf^Y>6w3r@!s+qlkl2W%UIU7h5ptkFb&g;iXJ4A
z^K{s0c(yb6--C#^u{w+0E0y0ipIike3hVx|S@L`{{?O_?a^2=ItW_;zY|W_nTS6lD
z^{rh`y-2Bb!;Xr?^;${o>11`9f)4oAV1BcO`Zn<6=h?V|7{OO$GU2wS2ic#OJN(^F
zQzmuP+!;pOS<eZ#A*7znRC4SMcqv$nmggK%yNP-1n~LCdHkVkzo@_}Lqsz&O!U9H0
zzRxmX(m*E8054=w4#>+uqZBpk(B~ulN|@zZ#@@3M^;ftqQM1id_Tn^novK)GggKyp
z761<EHQ{w2@S{Y1yZL}SaZx()&xx%8SrQqUF4)7?4)E<>JH)80_Fy7tCZuz*&QIhc
zCE4lk;x}YFZU$tv95$>*5o(;KcD166lphSi%agJO2G2UQ?V<`a3ZGDzRC5l4_^)mD
zmfkctC>k+j5y{-Qmj3y2r`17LDSbRsy!Ft2m48-$1+Kg0EDN)zz4xKj>I~tO{MhxU
zVT0gswFLOO&T5tvo&eFRAFMkSQ|xGp?v?<DEP}SS3zNzvBoEeiY8snu3c$iSRxW4N
zX5^o$F)~^^9z`C1b1y;;VL2d%plKD`@_T8|a$G->^stVL;B~!8PA?FRa1&QY0dYLj
zPRLb2C!=-}N3oR~u!4qqZCVWhh71LkZTy3vnF{yGvl!+yP*rLHC8W<(bv!ZR>gZZR
z5ktq`FzEB}(_@hqcX{L3DPHwW7x(UCaygL;6^5*p)rd(?#Tj1UxJ9vjA@`wWUiR;<
zdIbwClO~%Y!w2E>s@tfrSaxzQs4fI9LR7vUXow{t7NQ7Di0V`QNEupwyM2DtUhTH`
z<k5V4Q0LS_z9T~M#2Zl6y(Uwq0wE&n@W0-vR=b|xXKx*5^*r?JQoW4Ou+8_b4c8xd
zG0DB|3Hv-k_om1ENuZe2J`c{L%QZDIQ#*Sh&-loq?#Y7s=9k0})dfR$0q`z=f$TGa
z5kQFH1=#YhI{0L6z254n{4a&?O!L1{l$NmycBS*2>Z5#lr8FmA21WBr_!$OlI(>))
zyj=t8?@I_@nKSK<eLZW{=gcZ-TfBUMCw#0oI8JPbsqz2D!;3r{X}4$zW{72}aq_Jy
zUoH=l6d6&j(;5N!GW-u$0=AcshXhSL#)6yBpB|^ljVDL^R>r?xKa*{y8OpVn%JZ{s
z@XS9#J9;_Bi?+G)b?EW?+y#(Y4$?XZ+RY;qeN#3LmZ$RNJ+_1Lq_3uI!)GtLWiB6F
z>Y$vY;a+v~dYs!F&7%PM-k=+L+}?&r;545-ovX{vhgZ#LmV@f$qgXH`Boi~U7<=6P
zt2A~<rca3lJf8xB3lo-Vako8}!+jOo<NwDC3?(st(p<!n*Fn<GzqFNa;6fIg*1Y$N
zl5w~2@{!iN66#-;CV{IHE0k9@Slj~&t2JM337071LR?x%i7#sKMwT<c(MnIPV1SJ`
ziqtdqu#EMI9GA60(aR<+xn`%Jrssz-;3z)-r=#TNfETJg@1A$n42(AaVp<jcYTk;+
zI({)3Ef(5L_WJ%O(YJJ_Ce3o7B2TL`&o0qV<3qc2tHBTd>RqV;^+^~9Y$hUE@uSGf
zW1jskRj|OtRM5e$|8`=mRe9>wOG3Za<k(Tq*5s2iwu4$w9?ojfDGJJ<LFiaIznmSR
zd+zJ$SKXSvqJl4Ym$T>STXv{wi?IaOQ~ya?csHg}q_3@p=r><+uc%^kVP$o30ufrW
z>ZE(MlYuGr86^&C$Ds?>?Maez$OU(j32N37M^ifu5!P|0O%I_VixM3$%^)S%mrVow
zs&4_UYFv=E8;m|B#a79-)R{24d!gi6zuD80fdCbi2AsMLl|Y8FtbW71Rqc%(MyxyV
zKI#o8gw;550{s#%dve$F>CQru2)!t>=FASO6Zw2a=lLde;viz506b537~%YJBp5|#
z?((>O{UE|gxxTm1McSrm-AVZElzI%PF&ZD)RX;bCgC2O!M;=Wk7_*tpDFH5I-X(^Q
z6W*_zGQ2M<WSy$|51HUw_`PrRr>f#oj)8>FtDY7|Rb;lfJArW3gJ)A@wwrq_)o<^c
zOW4P38n+~-J*F;saCN(1>6XGi&b^ab-_e6Tc<;1XMy6p^^eb*xKlPg5Z+JTCxxJD&
zjE|s=6WqCSJAWVufH>H3nnM;e!xnc~o%Z}C1j7AXvtJ4TWXsf(2SP<56p2m~+2$1R
z6ma0GNe>>R5CjPPIxo{P8(SoLW~pelOBEiVf4Agav^(?Z`Vnz$m~vhAF|TK;vT7VR
zuk?C9$4BLk)oNSRvdtKjY^@awrXV_ZIlaiZUNXKLY}BZmjm9(mdcH!xa{wdRF-oHC
z?&Y<p<qlqLxhaMVw+!55iw3xK^`dYMBL;;iLk3m8pRmD}l3^jKs4ZK=&Txtn9u|y-
zY17+qvE{>4tK|6xgXJW@3l}QCTEZ1sjEqxg{Z#2I(hb{}oM-@0o9{vg`ifAF851$F
zY^%$80aJJq+~2Xlen6e~8S*;<lv3`2`Un!Ba?shG(*e`tZIZTNvY4KeM5!~KjhsEk
zo)DFdTNaHY#ztF~!^$hlI<KEeDi)R3IicjWGw_{Qup+n(n%%qiWsT=X$@mxoy0koy
zYlLvDO|p}oFNC<cN}cFDN5At9epc+*e!PUcJbnN1AwhfG&%_LVjy-xl`}nFfHF)7=
z67@dvTjs<}_&<q|&1+MR-RM*0BCWa4fd<fUS)DhShm+x(F@*-SKOe5|KIojzU*_Li
zHJ7Okfj-S&SP_@@Oy78A<i%%7lc=h26>KaxG(@q)YBzV*m0lK!`rYf)=O^dri{BLQ
zlex)nX8|1K%e#w5p&~IOSKibfjB4&WrNGa$UhkzuA&nZ(9L6I#cqB!Ay2G?1H|x((
z37wVdn(aoyyB|dRB`L#_h>n{KN`Ed5EZS3{B;LL-7`CR8`DS(64FW=S8Bti}Cdv-`
z#6w2BZ*_b1bUzj|2rEw{t#?#8%SZoEaTGYi*X$c;4LF0F3ND%kK|3z|bRM-VlDHRO
z2sV_`aycDs3>988+lQe)z`aXnYnQ5|v+!^&57VJp;{wgda8VTDj?@nX=gv3V+6U85
zXB*CCNWn6@9{bq$y>J&YpT_STU)98G-#N%{Y-oKY@P2p60uM?0!*sykv+~^MRs%O`
zZYe*_>p^iSKgHG&Dz@aQxDuMu$%^huf)}yF5?>qAZC`HyFTi<A@!VgjXqc@f4Skx3
z$)+a1d65l)sV(n^Z1pkz_wKGa3@iEJEwy$&iS9f=dkOJmi=LuHPA22a*JwVs9m)=k
z5Oj^%xe-rL^0Eq$F3!e;EJ7A+!9aP{HM)|nDEF9X^0HB^$!(O}t~8?FzR`<{_h<;V
z)IT9J7xMTae;)LS4k4LeVWjiLM;qh34W%`MN1}=jdCru>D}(CGUI35yimA91vD`J8
zQiU&K1(xy-(MGyJal|m+p~=WQca-W;`XoLZ`ETcNR5AwSO%~=c9lyW%?Ej5{|ARSz
zPb+8}BkK1yLBRAF*<{J_ZRMlZsA%ZFUIy!tHoGLVrzTCirO-OpA`P${R+C9cB8gsp
zB~ZC3N}T;-3V&p$8r``InAx#UXWDtJ{5r{swdvE_gLwe!1>#&M!-FM|TiOJ=@d&#r
zZj><l(~Qph`=UMPVXsXQ73w>tgI$w`6bXLQJ^uiy5t6sAPMEh`w%D*DMO&L(u&&OG
zSx(LjHRil%3Xv!{r%;5r<>~l7>;wE)z|}&mMf{$r&ZWer)gXNtZ`Y$L?Y2Qx72{Dv
zZR4SjRq)%nO=0y1Uz1q6gqb^?%;Re!J{#l&td%=X{PCB*|778Tc@jyUA#D8>i}cH8
z?;l6;pX%1!$dw3|&aLygs;OwwR47!r{43(_Q5a8<ochpC%)eQV5xd}4Mgl}GU!Ofs
zM`tIA>=!UN43woBGCoxc(?T<jZV9PClLJO^!Z}f59#kHC`H(_CxwI4|DTX+j3$9O(
z`=~fY!3>K<Y^bQ4B>Ep&zAbx`m12T7x2aQSL!OJRa-8|IL@uQv|B`|PUweKG@||&}
zG_4uzcM?V!t$ldlv6k?%d+Siv`^h*{4a?v3{;pPQvS_Cc%BieZMCs`1BlD<UlPdd-
zfeJDYYSs|-|BQay*o8A$YCEq`tm~{5aZ8N^erMRWvB$OE7&d&=HHLELp*F-4JT)44
zfappCej7C}2mP*_<|#<QGqBdZOAfdme^8SFa_79p%9yj!Ugrxwyvf`~<=ArdzH4>|
zB0F;t!s<~ypvMjmH~|j^E$u|F+D3U!0lvd3PETCPs^*3%<a~@dJ&-%Tbti<qV&SZj
zgz+zV6YAoeazxw}shkz<!)*t{hR%67w;RqP@RV!?A`jbNrPM4#1wpssmIO`<JYU{D
z!~X32AejR_Sm*PoOln9jQ2D-lQ6knE_8-0(hTWi{Ta>kF|CV+1_WR=@TFZUgMX!U^
zb(yvfB*WlZ$)~`+?;p8M{ns6yQ<m>gNE2<nG#Y2?b&q5`?ayh4?$DNIY({-k0|z90
zQA9Plen^vx&-eN+%j~wj(xFeUH#94qx46A3bM&;cBRuwb+)RJc0#7AO`ogHV#=yf!
zGce?JgR#DZi=A12%Vz~vX)ufqwmj4;Z~pJ#3zQsMMeOcZAOu03?K$!9!xTb1$g$;S
zNV2A!)jG|OtvePSLFwqHZPw6wk=f;dC~zP3F!4PPj&1im2jOeOOWo}542c^-_3_~h
zu5{gUx_iO6n<F#se{>bRBTq00=3JxR&%1_-gZBaWj!n+?3v=GCW&7Gbt@(=F?x|8*
zkOR-zm3#{QHJ-s6i+LX?eD24ykF)waeGYT_WG*lwIp)bG)QEQ*LQ@9)MbGH{5>QVP
zeA9#!qf^<_(P&;cZ)aPB>3)pWFzn9=o_9JnmEA1k_0qC;W6D|olet<@RmMW0L%w#6
z{X&1RVdqCGIXm0KVm*c<reO<3u4>{9aJZoiJB{9z!L;>uulRSOynshk77CV69{wQ;
z<2Z0c?tGbY2UlXWqHo;-Y$+9hPD0Rl#a7J5AfiA*Fd64zp3#$w;6t7Y#>%r9_fh|+
zV^|{q`fDFH-y!!}pFM*yea`C2ZU+;@K!&<WR6FXE3`7w^WJTIF^QmYKLobvAqYwg#
zsy0G7{{sg>_`Zt#e(SU6&sX^`f9L+ZKd<7fI^N8(pgi3#qH9e5#7A3vfF-=F$4uu_
zk>|})q<WSVUB<@u;`Y;>Mhth@Hhn(cPU4)qd%lRHTsSvb-?wM;oPGQFDAxb}xkjk)
zVHhv&?iO{{-rg|(dKPX<!OmQ~#09e#ahx${^)_U;!@7HsQNy;%L7ZT_U$=IZEC1#s
zff3um-mP+{-f!5>z$Sqb8#b2X0od;DR<R8S;X2*EbF}=1?a@&WPEOB3(Z$%d{<uFa
zlKRijXD1BHbrQKvN<*++&wRNqSI4H*CER{{dywDU-z^fI&pN{IdlIgB<|ECm&l&s8
zEOzBiIL}G2GA72xDk?!7NhAGv{ELok?|65&h(nwy6W6SL$ZN2}Cil~Zjp@gf<5T6z
zdcybScd<S{2oGzJ>xPAS()rn}gU9V%Sg!Zd=T+WKus=Hqwh3}IDm2G-Qd&!XH?~g_
z9J67)x#2#qssmhK;HU?pB3H(?J^RcNRrhB(Jmo{r`=U|a%md4E7rCBvEKTTh)<@x6
z4%k>9+5R(j9y5=RN@v6R$~wT@r|jgs!(lG#D-XMqWXU9v`yz+As~l|1tgqJR64*0A
zuHeJnzTb~_V7r#}Q|!R@F5c%Xw<(LhRmhDkwT>m_{H|H$BvIc-%}TgC=^?n-q^c3=
zQip-%$j^EKY#b#{I?itl+cuUI8}l{K5_H7aZ<sfDVmqMv%431CnT@(-8^!v0ca}NT
z^pmeGz|Nn$XDYYjwCQVBxk=RV_U_!je1GN3JxDgC*iW{n&{x(+!^Sp%Wy`j84mL{k
zHH@X{R^|MH$I2$x17lCE&mSGtDRlQ-Iq{ETU-jMicelc~Ov0}#QFOu=UZh_b+hMd(
z%yll<SCMIyYfhW~9o4}vT)~IqhV>x!kN1L{CBQn*V}s}DM@$>YSXY&+@wC4{AJ6=K
zlm8vC9Rw@SD`#1o%-j9>z9+eUYtJ**;)s&8ppdg>0%SxxuTq!6q6;+>fNfMxIEX2F
zcpwC0ILxt6TQYpHP5fWhk4U1b<33kp_>%@_*kMczs<Hj)c?jg|0?fAmiEZLB1di!t
z;GBNWddW8aaPW41*6r=B=rnWw%NUz=onU>R!P$Sm{ox>)DYPF@YeMyQ)6<(9!RA4S
z2hBKnaeuGln{8FCEfN*jn1B5bezed({Jn*K_s`DsfB6qTqMJuNwplMvn_g|}g1oI~
zwm;0zZ%#Q4h}gyt>-Bs~ri4}MR%kXMtta`OrX!r6D;$oRLtU3UarULn7O4+G=O=DY
zQitWF&zgA5RjDD6Ko!FGO3QZt%r+XF=#Gu;@SR{Q+r5+Qb->~v4n@xNdCr@U9c(&2
z%X+U-$$~9AHhDMRdvZMjzSpGoK(Q%y$uwE+NunvF9Ys7H+dZ(&``F40(pqUpi7aUE
zHmQGu-<uSB7AAxhdrMH@t#`WPpKdhc3hk7PTj_q2+XU=YWl8pI^f|w$VRvksoVdUF
z_ae7xkUO`ZbpJRX;h5D}bzv`{B;4|XWxmnu+R*0&xhBX}_pX{@CD`Rq>?HoRIzb<6
z!^Yh4ELV}aWMr+-N639uxiU7V5rteC9dr68;X-V3wLX{q9%JKQ&cMdmUnUp6m+0%H
z&lhL-ir}|R*34_awO`do@ACutytrKDfS2nHT)`$-wy`AMulZ(2AFJqNW&PQ(v(*xc
z9_a{uR^s-n*mz@p2DU@j=Mr=fbRvV9gGlXwIQ|7Y`$3~V>R5AZS^K=#iCOwv^)W*q
zn;kH0iJw0m)J{Ps{^&={#h>Ya{@**(FMszy|K`8)n11owGrhQL_LZIgY(IJZB=&Wh
zP*bjS^;lR?LNCnz5d@H%{d}=q&-27J+y4T#o&R{9tBGq++{&7P=LUZE9NK5h1y)N&
z0wfWLN=AYDl6lG6<vTLWVj!t~5SponE+OzhKc9d7FhA5NH?QD?LS#%%%GG4tiVV)8
zB%_m9xs{VfSW=9>Gv~T`3T_UTV$r8;oDrShQZTR?;)#<NV3AjP`+fp1^o^xpoOHu{
zBa^sBD8+OV-e`LI$Z8S5;IKaT9W`P*g=e$ky!PZZaaMis$)_Tlx8Ha}Hx#HLV2-HS
zt8J5?CYj^ZqLsa!BU=fMeTwNL`Wu%k{vqD`qCKUqJrM<Lm+exIAUA%)G_=P)x9GbZ
zp6%T7_=geu(b68_tel7Tn}NS;4;u~G%%5jG<@S7w4AjBWV}BL7P7h%l<ep)8tj}ra
zbJl^I`BJVG*gBmcx{&M3upJ)2)?tUkxW{JtT6g<=+L3F-)_(g6avkpd(mwCx`T(|J
zEIGE&USC13^XHH&o8sdh_S&#TuF#8dK45o!Mf=P8{P=(!Fu7e|3w?gGV+X{s$y5Y4
zkLay;-<QQ)Ovf|Mf5UF}bq+OEqFgU*`%qKmEZI}(!oEH_TH&2gGoZ5L;MBg8K2Pes
z95kYGJ(XbVt8n?<Jf8hf+2khgjmUt>vz4l2_sIVsHx(X9jRC@;v<6gswQ+ABP5G>5
z*r*+)&Y<ZzpL7E^9k7{P5s^9QfF6J+aip?@4|AY7;kC#CMYxyZV@IgDVq{=ZOg46y
zj)Rx9!qts~Ppvng*E2SIwzPvM|6uyZ4#om(d^ofib`${w_I#LoY#NjUx{mBox6Bo*
z{MWdb-c0$33!)xvkqBq|1WFc*wx2;AaE6nPpY7Nncm9E3-(J?*iySQQCQ0^ZbS|Jf
z1U99r(L*#H_epf0o#(Q?r5YBnh#Z`4Q{JAP&@R|Op&=2%kekU><l)%VCTRguTk~Z(
zOkiyg>`Adpz(Z*T#U;|4O3T^`a?N4=Y4u&4V!@sbp5DpiDn&l=eUxh@?{m&Za%_;R
z(H-%oiS^awrhVS@)vzhWdF?g^iq)`H*H6W^=v*>Sj!h0T4cl4Uvrt)RyJe!3N-kF)
zOR>*wEX|>26tyVu^I{R}{W`ztqxQLtHO1C+g5^>mH|ukuXqolU*w*<u+JTg%n4XNK
zvV;g=9cz>KIY|8YSv90uPgd(|_3u8;6C%|2u&qiJCUv0<TTQ`66<|lP-=b?k>GMje
z6BjmWk^>V8HY&NkA{svGqv<OSIm`ydv1Zt*P=}3xtp<I~QD0Nj*E6WY)IPQ~ozBPT
zbCIjr*V63gSse!1<Qn>%f{mJjjY^#zIICQx$lvzYlSW8RlV%PUP*m~1a)5&tJZ}Za
z`6JG^R6zlR`I=JC@lUCZtvq+_LLtNsho#{CV88X|paG(gaiRLE^)LblaEY{!+O8w0
z1rv~e|MIROY(2{#4c4<Y1Wrn@o```p-Sy$`Y4~1gkZjdpx$%=i;M0Rxul&13z8Z#$
zcKkQnJ@DJ^y<UQi|HEeMgQqKf_}NN7dRFNzti>hkMcFmwpwp;oj9XitBem6a|7SrN
zT)>o{DSkYrMU$b>uAlICt@TlaqO95mhxE5XB!ZefG*@|^)-O=IBfnqp+gh<-Z}(QC
zq-zRgnMOcR0u~9|t?H~!DPU8Al3LV;8m&mgMuwe?FFxFxfE_&L2?0_(73jSY?JNZn
zs&MDGchl?TS;DKo{eFUT+24(%O=Mrg?<vTbV-Tbry6){DwK2IB#j528AgBt;Ntr|R
zI>lD~UV@$Rb=U|_@$EL|-~%2FCf2nVQ$Whv!LkqFo8WgV=+l&n_6y{u&SKeJ$@M9z
z>?-uT=_5ZIxThNQkz`KfHlEi~z*g<u*!Hr%721)jI#$_~Pm;A}*ih9dDeVm{z*#F<
z=8@`a4*FQ2kG07)A<zxA6x0`6`gbe(&QdQUllM(BeO)07P#_y^xM7!C%Y?vIdpDQ`
z!%hXy@A|yT`zmGM_SdO4-)z!*%2<(_78Oik$U<;C09_A#t{dHeEn&^t>1z#gC12At
zI{>Hk3KIlu+`lijYd+Zy{XcrP(g&aFyc?~ctj)3hc-hDNJaJNq0i1u4SvJlMG3d{2
zzuENgq#B+(;<sQ^qDx#l40Rk*_Z~45B+*~Q^{{gQpbrRhnMc#7E>>CLd-?|qL%!0E
zts#^ghNNP$mszdx?0XG>lw=Vp3wJmzoh}F8t+1mGhU}@-Rs+D&@8CUFC(sUuwR(^3
z#8xAQIu7gHIIGoxs%bV-7>{(bd%roR?7)Gjb_)Vq$hZPj8ro|cYw{1N{g9f2kHYmd
zTwlk2tYH$MA)5W7y<yXoR2s0gC|AKA)Oo~KjhL=lJJH1wt+uHD@p|clE7%Cw>J@Bt
zN3Px7FR%@|PDWc%UycpGy7p{Bw#<WlKD--I|Lopq*zVz)PK?*naCN|5{^HpBXH%z-
z4`Qp9n0W=;g+A_$l|dgL==1UVm&@%XeLmd(0{ct!u|0{d*nxPz&x?(GoZGYOH9K&j
zuXgaH_DY<TvpS6^)QvFv8SN=Wdm8xmH2S9To2o-}w5L@jhMap_A8oro>q`4rk04?z
zLwDPhY-<!<xb;)Cd`rpeXOM5u)Ojb)MTx@c@A=iI>7Luss!pY20_{dc!8gqB!V6tB
zTfnHQte~9rx%5L;YBk~f$M20IjN7HCThby}(w=)7tr_bWE$#_E?y3dbxMc$U$R0Lz
zP-VH+_~Ki;rdms(Nak4ApmL{+koGCd0z6`iMJw5Pm5q0wj9LoC<PteGiWQ6#>;YSo
zYxQT#VMGaZdHj16aqF=q6t}aDLzBDIN|?l}C2}`<6XoH=!G}@KSdmomE+?e$k{57a
z_OMav`+UU4-)H6Y2V04}yHPA?AwP98uE5syIj~vLU%`f;55>aJGWtAX(+yd}uGsPp
zwi^08>coWl1fmm#n%pFkQ}u1sSIVkGs*gN;8rB@J?a5V~@T1&Hua7mhPtaE!oJ>B}
zfGvlyW(Qa+qHRG@W5F}Aa4xw%7T4F<=gFR33$UktEIHj%vjbDG19GSy?LZEx*tHcF
z7l%ECK6jl^#|ao{x;{5MAm_%x4tSpv<hs`V_6b;*Xw$U4K41qHM1xIX>=5l^s{^)Z
zqvY^n9c@&V>;Qdsa-GP7jZ%Hov0(PLqo&Hq^;vCJ!)A71v{Bixk<kh@8<qF;aj;RF
z2OoUDS=R?u_kKPXtc$$cB()Sw&L+pKH30|?{c3chC@4%Ur!#4N0p*x?3Pl{W$T^Dd
z4Rq-t_Xees9RSEomq-tWWs}=e2VQ;>jZW?KC0;(XWvH&oY)PtPJ9(ysWXFcXM#*sX
zfF8YQj)6`T1A27jE1dncO5lkd-tcE#EOY3%+rHrY-t{{7YW)YJ(_9gKI$Ka;(tyay
z^Oqm$_6Miqy{+A_J$`hcAANeJ|MP$ROdOwYJvq<;PCPEmnGQF)uCJ)&H_gcUtrC4t
zoE0UTD|JLl-5GPN^WUer?J<!(YxIE}jhw7W!DB(J#%Dq_Gg<wTY4(Mn%%;F5tP7GD
zpxD?6%F)hroWL!vj`zc4j{SXX;7*ixlPK=Vu+@eQI+5q2>Q*V8&DVAgh`4QXNeBRf
z6SRt4Z~fl<M9!$P_QEG7hZ#jwiyRzw*dziyp*Dl=lVWg;MBn4J6f9oEwq*yEs}-n@
zw54h2bA31KbH={m0yeXo4V%ifPIGgjBYT@53&$qDVC<{lzmZXOI0Bpg>=1Oq^ighC
z5Ofgrk)LI9#rPQYF?ZOK=#1!u%%unKbNRoFynXcf6!cZG&EDsxk3BY>pRCX6s5+tF
z6`KVTNDY}hLnrk28Dm9u;Lyi}ce7f0>i62(=VRxCI}AF(nQlo91KDCQ$r`rwa>H)k
z<pzCBpy8cFA5$A^@{g_0EBvOWf0j{kDObA02Dk}*ZdnMlqmTM-HkP6tP;C5eZyqZB
z(?7hY|KxY>=x_Y|f&TjU^tlpk&yQO)<J$Vb>}{m_j=cIZR|MP6`g6QuyRX^bk@J7z
zOacD=j_r@@RQ_{wm^@>!Qa>-r8am8N6xzGU|5_;?G&B|A|8L&*FB*W@9RO4qL;X8C
zTNeHLKr3#^Q5C`kK5+g!|2tmpg0q@>{&!Z`lcz1K<Gk@e&k|`8d7)R~g+6HwfP)tO
zI)exLuyqVabMWtl^B?Uz2}>G&&eA4nrot1gDX)x)m4e^QzH7v<Dgi6aO~57#fTMC!
zKfk-9uf6>y{X74Qf17^vlb_N*_%HvFDCFJt??PiRAKWjR)<sfbG|lWl#;581#>Z;h
zjuf_F^Yp{1Qfxfro`{gZB2uigM>`!_|0O$wDDHHV`&XR4n$Js4{1(BMWU%T2Om3Zk
zO*k<bn=YKGyM9q8oMDspa54oRahps`fgi+1*gZKmO*twiH&IT=b%oqQq|Jy;77rPP
zGMbw2V{^IlPV0>JTe5{|@*gzpk^%?0Q9|>IKIK%bNuPbS&mCL%K>>C+VY@!*upQg@
zO~JLfXk?$ZkJwgV)0E9lA0u|bHec$i6kA&*<+7&i_TqY<TVz3cKwqu7=>36>Y8iAQ
z=wlw_>SL|%^B((2J9^YdTlp+!?4}#GYkl7IG3cwLHBP=@eVIO9>O|;sdI|PDZ2TrN
zkqvf$`%~mP!3MQ)%oFj8XV2-yi)ZxC*Wah(<0tgJZ@o`{`)~bCdVH%`dD7#_iR~*F
zROd+kMZWhnRgSZ!6kBv1+e>~Fx9cRVlP23+p*N89yA`%R2?a)VTR#hJh138Lx|m6+
z8JNx>)C6F9g9Q{V*|2Ro!q1uxN-?!!-iozqcIPGPH;+>1A+*b30WWYf=#DD+;mB7X
z{n&=SLN9skAaa*ERGsk>h~h;Ubst&I3ku~WcgUE7nw`_-ghgZ0z^EdNz@&8^R*Q7e
zd2zu;1c9X<C2MqCtJQg!bk4GR19LV<7HWTJt>A6w>A0VD>C&(tv>0VM74Vj8B$TuR
zyEw<I@x23EwX6h<(y9U50#0?sM&MA_8Y~6xB60*a;mc-h30OyLXAN5D<StG$jeO?u
zCyuRbJiJvLS$e2e#jbU76^Ehpw98Ej)mCj!wFYeJZDedUVl(dV^9s2|Y)P?k`^j`d
z1D~utPv~=V&U>F1cTk($M(nN=!c$&4Y_ZQB`=GCEQ@D#t(1|r*n{jBNDeno`du-L5
zl^57dAAt=aqf6-X+F={@(Z<T^`WWRpLvFp?ZLCci-3PfgY<6gYK3|(YioV(=2K(GS
zeN4b+&!(L|7i{Gkwl<b(v;#q|Vq+Goos?W3MXuTU9AgXS+Un$>rfp{jx;~#reH?XS
z5>9<9f;+=T5o}ZncHpAVb8n+uu0bE&4h-15z4rPz+9<(R%B4<3xduDXY?K=GYQ?Ej
z0u_rL0FKzGMe4_~bh@su{A{K{%Rwis4v*FZIBS;StXbQv-zy@YB_37|bywGkHO%j3
z>ot2x<yzdn&V4%$QYAZt>9ywM>+OPrvbaRI0E=}+-3QDa)}C|nLkV}Zklt_n#Et%!
z`=d1xY;C+Fs#p44yDSEe#f$<i3fh9MVmp5j4|}~G*V^J|FHlUbw`YcS3+zb&W7Gnp
zQRH7RJ?68!Lbn+^mfEgUnh!m=kMHk$UPO(H^Di}QI>jKsr)$TJWEjXvgMX(wN*L|_
z9<@Cn4cKaXS$|JZv)Hqd8-U+nbBKAUwqa>6Zi4gw*7)AkkEt5}60q6pR$S8d-22#~
z+%3{P-a6y=8Fs?<gO}LwZn(E#Dh->xH>E+Z<=%Rj?s^%nujy5=W#8Xd+e5?e+_F(>
z5LXTR?GankW4%&!qQ48d9PQaDv^9Nf@5We5=y1J0^m%G(X*be6nP!zlY!}!gwnToI
zq13X)i|NW8s=Zr3Rw(F19>*GK(3q@|D|P$DT58{?weNG6i}lSFeH^rcjONJ1<72J%
zI$?75!oHBJ(KNeU^(9>2dVf%FyJ+asdc_WyefPq_iL(QVKE5NebMwvy2K!p!;E!$k
ze)`|>;Jw*TK&kQIJ>h(-`h0%X_6OUZ<H2&+|7+cc>mRo-*V=1O(`+_Pf)&Z;g&6qR
zM$hM6I}AmD`{-v$Ctg)6Oj$hw)2JlyXR=jKZCv27JsV62%RX`r?ZU<;85%2R1PdbI
z7)#RhCjpJYsS#<^IRAYSrNUY<s<q?DDMSdJE{<!tR2@CyWS3EqLMH`m@Z^aPh#gAX
zg7nFw$Mn(1ht2VSk_F_`&pwj_2|ieW6@$}qb4<?Qk&8+ui|ex%uVcp^4o57_Lw7mG
zDR$!%p$<$eD$jS#VM^iD2=^l4xSQ0mI6PZ+vI}zq9>lTd?K;{W`#!cToM3)(7z~eL
z6RtJ>%XA{+L6Ey=eGfXHF0eK1Mc<ueHlH5AHtTOLurW{EDkriUF{~PCJmuO>dT+-T
z<jUNEvddWpY%Hf0*sow?XYLaFoZKOxyOgtR4&^ksldEEr_ZDaH4en>yf=-BBm&-nn
za-H;dYLt`TYgewOkDE-zk$!<KJiC;j6C<{Jwd|8ReO)JTs!8X2y^gOpxkwl|y>g$s
zz7Bn^*w(Aqw9l)`rF%Cm2q#W<>GNaX=Lvnjn7&4A7FmJzU47iaeqjeravE-j8@qkZ
zcn)XCt%k8?eVzyG7;BwedmF?~^XJc=(etOD(&N|OlK6IZcE9%8BY6iIs<7>{kbw!e
z!hIR`R2L01f=rMK2z$B0e(E#<j=Y-jnpPB3SQ}|c>QLijkSz2gNI507)y#Eiwm#!v
zT4JYd&h)uJ`SLv4XPCEaUb1=14iRm_ck5q<S_ydP<loZ8qT$Q=>FXg#Ps#XC%8k6J
z!-)^@*@?3VH~p-KI-7&&1WrW`05~lc<uMBl%>6blm4EwyIuMK8^C-N~%=doM?>7f=
zVlHPCguelI{pnu%_2#I2yQllJI-G8l|B(-zc%1OFIg**Fq^4PUqopPQuuaTKy&&Rm
z`z;?jo%n!?+lBvKX|nj;Zo#w9*oquTDQC6N-SFYrqZ`4%T=l|jc?7k@S$A&}Xt3^2
zO8qn67!45)J~nJD)4N5v>P4;va-J32UD3m^4Vm0;1vci6XSv?3%3Ue^?~`)R^SbYF
zdvLk3)0DaDW!-ev8UV+~2Z_vlangfm;Vn*j*dW;%w?}ab-feRz*L7mfb>_U~gOtR5
zykTW3#`ALT2YVbUe_}aJ+RohYC-k|=RXITqsuLSF<%>UPmIUe*9B+<-?GA^M6KW}l
zT(^Ij5y^8WwG>pY;*=D*W|u2-i8C4F9P}{@Z}~y!lI|DfHD{e*9ISurR1~?N!TEn^
za$Q#CE0sQfv8qlSl^?!<mW2;A8RhA8uiqugC`r5MEBH$9Ho0+qiNjIHlJz+UxSaVw
zbvX%6=6mN<eC=~!<H+gl4@a^|O#s2R(xa_Sf>=ynZ?xdM^m(=V8BMM%7dt3Xj&&UN
z-kl}Io8LvE?U{pp!+PB2rPC(2)2g&>R`6YT@{btj+qhgXmS#lDnp~xQIZ68wc0djr
zxX+n;mB$)mD_YBg$FpFUKEF{8aO-oCGY%CerkXkmrP1mBB>ll$^dxjRDpv_Q+J4K=
zm)Z&&o;&IDW(Rm2YF&t<*bdWI$0l;M`Whq=?!piM_<(VKf({^B?4$>E-sg-xCE?|-
zVo!sOI*m38`nvT$KmQ&zD^#vo^nvl2jk*{6xna%F*X`MC2ak_5fa=9r!{PZ^viCY8
z!Vfk|u@U;bimYhX1AZAxo7{veo!?FDr5@1ppSz+qD4}i%xA8U1E3Cy%75nYsM(aMT
zS_9y)=@SQYF}E)}^&ii=KRScQ_*S^BiJmWt?Kmlg><jxo-^yX@2{ix?TRY>pmp}~G
zS1sAA5!eX<0mTmkqyQ}BDt$^yFR>bpR?;km)#|-a_6@vlqf<9`ewjZh*?P8j{%cmq
zB5PDD3d%OeBL9U4nlx}v{8Z(#CV<SHbBo}Oyw6fkC-3t@^WRyo`P!rLKI8EG=H^ED
z{<$u|5uDU3IH@~c=yjEQtFCDK;h@1q!dXoSLQKgcPaPX)5u{eHfNKEU-52`vj|;th
z!;#Y4ng+c35~*A?(p96G7xk!du+OCHg0x*P5yY&U%=ym&7aRa4?F$aCGWIGbjm4id
zdS3b6N!HNf$KkyS|HE`6S}*PLU7xj00&?GoO?Gj>RwYA1x$9;B2aa~(7iXSuwl~ak
z4s7Jul)GLWq_bfI4>_X1h0~w)X+o5@wF6r{--{zt_emOLSb&Xjl(TZETR<cQY_fmj
zwc>n4B=ze2@-+inQGZCCbWdnB(6W9Ke@KO|CSbSddGR?+9X1iHWcY3OI^WA)RGtsH
zihoY_!itTihE2Hk6Eda++t}v~o9G1ZW019QiS49Wp7RaHrq+Ft;8C`Fysu}D{@DWe
z6r1Rb>0>?s8+5|-ahn5*1O%JDuDIUheo{X9?b(`TZ`hQHgXJdrYrOhsw``CKY{{?{
z4VKdkz7;w#iO+-E*P^w8IAdqjM=ct!z8VRDEbuvqT(kHIEFxaskNcFt$$X^P^-y@0
z`Jzgnrck3|0e0vsuk}K(W;JX>pHq-)lUu`HB`8sKs$wh^tEIqwE<Q5Y0gNTpM;+%x
z+UGu&_*rMI{lR@+d>kt_c@M!hYaNOmJCNAs<%6uTK6$>-(+~KtpXXMt$8#q(Q+V}Z
zUoEnqpK&Mievzy#$=Khislxxgy~6p=wtq6)j`j(*oozAS|2ShE8aV%@-V3kwxZVq|
z^(0$1*nZ2X=KW`wm*~p8#2>E-FlnYE-(LeL)Mt^Xx%zXur2hFLzK8jt#_C5js=GYx
zYI^QWU0S}p9HQ?gaMu@06Sas+bqd6q0J0gs!V4`t{E3{Snxj9pBeA%&iBi(*zzdzg
zX<e1ylb2c=y<a^2$#|hz@w^7WV!V%*ZdbbRhNZ{WIICa0xTm+@e3Sm}-}xVi^Nu%8
z32DkoXH>;GXq_jiI@!|eaFUfmd#!EonWNwO1pjsCdW|RU?PMz<i$J2|bL!eDY0C8O
zvw_VW&R4K0^+=&Hio&po!jIVSe-=ff84>9cyI_L>Poce3k0eziSpDF~un{73?cKf*
zHhowxcavMPdKaZRLhBd9c1^B|%_7nxb~OQGG`{KA1-4zeUem{xMjx^H^<AHbXYXK(
z85VGVYXmQ$&(jrstktQ%`aa(uEA8D-Sa?q#Z6Z?(yeoI(lYJQ54)&cs@8oLO@)dmq
zHeI0ZjPro)nm)Q6*uj3y4(wqQ2RPbh*dD33f<xaks2Gk&lPtlW3LVGVYN|+NHKkAk
zK<(=hX^9IWFuexA=J2V(o|=6%ThC5FvA>6A`=k98zGBk!J;u986k|xo+a}V-k8i1?
zi3szOO}hHMxC~^@1Kq{}2POpv!A=#HzSzY3m-nOclC@4%nm;=X;$l;IHkv3stg%fy
zJDbF*f|>y5P!mAT3s17`5XWz!L{^U|aiQ2!5q)nI7ZqI0y6Mq1VUa^G4pdl?f;<@y
zIe5x5Xr!2eLUh2m>rW_*25bu`E({wN)fI=s0est_uu$&$B#tn32DRvYs|}(BBS|(X
zvp6S6@13<q#j@Zq#he$bMnW}gI%=6OTMEaHwG{4GIb@sW1ne5{z}O_!^#or31L|$8
zm5d8q7O*EcvJQ!KS%k5Zb)6(f`Lm`IOZI0b=K^1>&V%!mlhh7ye)y9f;u#mX^?9qc
zpqnJ`^HnKW(yZys^6uQ{2RnSMO|HOZG-Rud^K9Jpy0$e=b=l9Q#$7M^2<&OlM}pk-
zoVMwNa{g!ecaeKixeGSPm5Zy&Z`Ys`Jhzzr4A`V50BN!tbK*{+mICWD%dOYfSuhGV
z(Z`03+YblJ#L~5o@#>#JCv(6i$mU$hHYxh-SWBT8Hnzno7N@E>+rIUn^)sAm335Fd
zHt2*=-5d^0uFC&zob0Hd1-WuNZ(RA^%nk^)tac!aGk+EiY`Jx=q0jBTC+I6^b;39=
zW*4N-b?lj3T_;dW;f&0a6zl*=jfz7XOQNrnQb3)CJ}+jYj8|WOE76WBhF0eR^);+s
z!GesTR!d>^K2L6=Kwn}uify9HRrQq%L~C5Yij0laup2h+1E%c}2drjeSj`j)HmYF*
zMODBS?WfS3)mB?c<W{J+1H69V1DCTNf~XG6&iOA`DUsKA0|kR|{!2l_Tm$`EUjx8u
z0-QkiIwM>23}>>?J#5c7OQyh4`oZ?NDXs~Lkj1F)QW0*dR80x(pgSb(cf@6?<18-f
zi0G@O1b@UL>pImJtm)zxF1m#1&bTqT@{wER;a;{MK;S|QP_%ks-MT!rXwMixLc{eI
zEjmX0m*LqllGOrG9M^!&*a1}UYh&v0Yw%wp%ArB!r1MImD8II6pm42lu-hfL)~~5>
zMoD81_a~Q<@w7uC0b6^1!t?DKdze0_{Z3^{9Zq5Pv*_*AXG>_ns@=8jV55Ml`aKi1
zcbsC|fQ{0i57eujMpYL)JIQ*@!%36Uu(&K!>^-}0Qb%cR*wpUm6Q}mWcu}}#-=0Ii
z+b_N6a8JV)FYShs?RC0KEHJFS$G$#Z_K)8*JX4~oDUNIE?iRX`QXX#C$+32QBx8`8
zd`5k=Ycf&i*T|BEq_m<nXlk!dQBF~RQ|sH<|Nh-R#fe<%4t5*2nWz)2jXirO#4KN6
zN`B{lY`NSqR*YsT(Kyzc9jHNWhE?ng#Y`Ov{Z?JauIWS$7h2z2&?9y4V6#I132Hzd
zTyA!_8oppZbMCHB;adNDw88QI)Z6xG`#rnB+nc`a`60)9Uwn5(tQWr$IaFO+UKsDs
z`I%q(i||4k@t6iU@zaJ$xpq7MC1GHKGN$Neu6Io11Pcx-PqV1CbIwJlW#fr9=UiVi
zz@locJ>H+pNh-S<eZD-d=w@zon%lEhocg@;=n+ooM=b5#Ui#hnw9T<s@f{mg+&?*`
zj4DW9D*^OOwSK;5zalnuWaCiBu%%W@K^?Bmv6w9C*0{iN!u2l{+m-Ko*yQ^KHr-%3
zw$U-YuI|8(*qc86#pT+t>F)3XyPPb;nAPf>z!jSu=N7#BEZqBxVjbjm(dRT^6a5Wx
z4&(4&IJOL00+XY(uiasrw_Bg@VM}^&_xZ5BI`&wnWEcCS8`E0W9vgO>3C^{$uCLbT
zgT6kDZGxPXN52L;u7^tTepT&^+uzWRtTE;ekcER*wbb9%vUBZVFYUWME8M&8+5U@n
z?eAZ@ndkE3i(wif|FM>+6??{D)7l-87CNrFzhs}bP6^9wY+RIkQt3UU)?xuaHj(n?
z^Y=wF?~I$3okScltQ0jx9ApxFFyp|f5O~V9h@?3GrsQKQaWGDBdh<uJ_r%^7fjPsT
za-?j@<b_O~8fZpQX><5vZV(6mWY{&b+BvBswh3I|0h_EJfX%qTOTcFQ@P^GCSe9;T
z?=nv<tHQCB;s-8QvGFuEQRCH@LT2P#;04$+J5U#L?9N?J%7M*r#mQKe*PK5h*FvbZ
z5Dp_Cw*^5Uvtz3`Fi<Y=hHcP^dFruGnn)%5@IkJnDmK%J3T(-+rAF~(*kT<B!zTKP
z@0~tQDPU`Ivp&x_{7`*e^xmP*^BnZGs^ie-g4(c&gEX~1U%kMqVJibR&4M+G8t!wU
zd5PFeC)S2N2f0tcR+q-ZZ+%`2TheFonl#U$&r@q3x$AZ8>$7XXX8N`UZ1n=$6+000
zvDpEV0>Q#{pIf~G)ko^=z=XrKR(Ra7712kluMx3DeYCN*Mtu#~E^U<6D`-x2u~7w1
z^rW2qvi{6d(*f`EU<a@dSWS-Cu$eykSW|tRgB_6i7*nvHMynNd!fX`mKxd-{Y}3@_
znqZ^Wn)JXQ`dBXHTDv|kKF*bLiB3iORUP~q70L(vS!f3*jmDP)eGPV4ie|%dkXk|%
zo={g$%2ULg|6<!Sf(?phu2_8msTsiECq49$B_ZZ^%|u-Mu*=$I98;tE$>#M)$_UwU
z&{tiP%KZpVm72bC{1bJKaAO1z8@=gCto75&v#$xT4(<Foga}JHQ1-)hjZ{4zG)V9a
z&VC6hthKcxTJ(fWff=^#?3BPqxi^1j-8jIm3Pq*yKCd|J<_xXyY~idfrA4lyPL@9#
z?S@Sbqr`wHk9j>jR{nIKGiG(5!2qNKd=fV3(m{XEe}wY)pa;IvKKU9~>b6ctb$;U1
zDuL5KA;3atak+~M9Do*GyuuN;VUxfmte=GIyDGL6uq7Nob7Z*fMJloyYO&udHuCm^
zL^R9(j?IyAtYh9LM5t%SHtB*Ca$-*Z3akm(4V&_mKLYkkY%;))kM-}X^22K;y0t4d
z$>f%by}DP{dS#>$?48^cTY}9eX%BKnbbVTl{~g#cUnK<O685iYle@`Pu^psMgSI#d
z+^}iAf|SgMLCRe(6O0DQ5DrQSHs0h)pssOjco&vi)JJ7LfIg<a&m%VJXW_2bKCMAt
zRUeB!%XOkQiru2~xM6d-^0Slf1q@r%#|&y?rI1v)+E@_>Za#Rs>qOCDH}i3k?>`$h
z?Q_0C&<SDgfZR%xtJXds)R@q5Cs-}>1bb($10gjaux3e7AK6dZ=_BMmU^BT(AYd}N
zSFr&a#a-PG;MhbzZ}grBBuN<O@}2Di>Je1Pja(nqhuZ8w>Fj{XF-^DXKe0aN>#O<{
zgyNSE{?`?mzkx^JY(KZdetI-Ls1YwX|EIzB!?sI%&XPG$2HPHO{}J_EF4|%HXY)C1
ze~!1B-MtiDqm1*C*On<(|0(;s<rD%UiyjhbFld`2?VzR|WPScc#Psj}{eSP@kN+?p
zJXHMQ4!XTL$OPqu<v5yyCoiPLjS-d-k%kQmFFeih8Y3{D-D#?pMNn|sv~<jkQrX-i
z@}JW}B`qS<1h5o2{?6&S9OZSgngClzF6bD3HgjNV%B!Yq^B+#%=85@$Vhv}Wqzh8A
zw~o6<y2;_7Y5Di45pV-+&Uwuo)tj<%x(Rm>KcAl^=_le;o+Yy6PQGi@&dI(fUF@Ea
zZlXo)CP__ErBeD1mczXi!O#uF-Tles&KUSvdJv%zx|SLvo9FF!{47hI;dgv~r&uSX
z0>1z@{yod+1yU3F`OL4)*BiEzq&=QBYJ5^`Cg=Z#y?+h1Wl7G%u&nA{YwvT;y?5^1
zJMS3)17Ls|JSc#8asUw&gQO@iNE!@D0Ig8i@+*R}95$)2Wm_~942MMek16tp&9EcL
zFe!o#kq{mtMM??=AU=R0C13yof@bg<%meeDxzBUY*?X<-Ds^UlnU&S6*WTycq5km9
zA}{9juI{d{v$C?Pva-J9PQ=)cIBLT$HLT*)SpNTm>w|K-!okAjc67$E$z(~Ri47aK
zA)gdcY#I%vay&qegVcL{eXVu`a=nIJ*|2d(z7n~r0cSZ)lX8pmLk}QFOJZl(cj)-i
z#-;c|=?Yi``*PodfNd?;<EqW=h>=7q%MonT0TS7=jIZVRsXAr_3;JF)xuVUvzw)yk
z_C<~oC1TiJuDyN^FrZCeGp-Nfq~iNcj@IT)uE4fnJw~}+D>Z|bGuERl&UDkF2whgx
zS8em+Z7y<UeciEKCy{Hz2JA`u(h*o?S9WMvhpY~m*0%=LN5(qM&{xxe30$+)+t{ud
zYeAbc#)nr2w+nm>o#jfktmL|Cb2i{i{Q-TI1u(G6(Rq`r^d)Qa?AW|73HC{;KG<Gf
zwKgwk^BVdR%f;H<`jXj!3D*QWaP+>EltyAUo_*NQa0JeD<~Sp#irBPSa|D2n;{ZC2
z-CiSAS-%PPl0Sy8SuSkLZIC7m%8ZG>mF2>6X4`MJUhHjW`_<9KIR%7DWZWq>*h@(i
zgoK&t%(ygTLNQ=scSO=PyH=-%I&gSe#QH2w3rg6ylhN~uUC3{Jw?#h4)P$pmmr3Z$
z_u+uqAxivcr|%l?zVbphDjR->b2D3_y-_2=%hdSdXKd6;dyh$;6&`b&dsKB^jw76M
zpbk-IX5cm7VYB_HD+h5h6Jfjs$9hHGl!7C6_Du?-WJxF3l0<>aro(JWu#{erokQ$Y
zi`dct=3R3L?ldBi-_15h9fGxSg$Hb6gW!BGkqew1tCJoJA1wERaDhj;mJ_)eHgRUm
zwlR<zwlTxOtw-JmVDk+XVCOcM{Xr0y7hoTD+DFUObV8kWv-Dqe)K=$Mmrae(=7Vis
z&X60+)v=i)R^`fV#Fz>~*dsPgB%9hsYtqvk!pnbbawX`aw|Rlw;ovrG<`g!4HEbnf
zXE`4YTLLzzQQAys(LljsV=Oyv#m}<C!r^E<<{F3BxapA~+S|MZHJCn^xnVbKWhK|r
z$raAGo!V2CYsKl0urW32xMdVV*5*+s5}a+8__dl&WTOfziY+yLEJ1Fvi7_cQ#yWdH
zS9&>drq5MvJ+PU+${L2{it(G}R<P(EgIsB&&AYw^Y~I&~+_kx$oL<=|{uaq$Rhx~P
z)dMhCUoxElRm_%+5(hW1PpdXpJCJ%ikhNSA@=mxv$W=B9+<t=FelYuaYNNysq|`R5
zVB5w1S(~ryK(qb2F<d(vh3n=0Y+)JC%MXsrTJflD1_vvzxn%surW@OwQP!ol4qfIR
zd}@Ig;j^{zs91~I&qf=g`f1bxLg}-};Lb94dFEcG=bzS-L~%n<7wri_IpK7NZCs_~
z$=5694&48)u5=z`iHgP9giVGgb^f6KhP3*d>hmS&-^>>wfqHgR&Mm00T2yQQo)nxK
z;{3sQ<MpiWmH!ZAa;{vf&R(82>N|=0)P_EB)6`h+s=WJNacCv_@NXUHum8+zbh%3!
z32ha?5#*ni$m20m@~{ll*KX-zH_XM9aF0FcPNx3n&s*K=LW;7f-Ty>vq2?Zc?VmU7
z)%r{g-?^&y^tyI`^T+JlR&w-5Qje_$Z0%ijRb6WL;rY~I*}!(zhgVOoQ+WR5-7C4;
z{b>VRT0Or$Y0=5zHf&M<YI98bE7CSLe^lyDoftZ~n=He->sseJ>}zbR&sw$dy026y
zpNsVteKc&8T3<^W^`FR<R{suV>5NXS`%1b&AN`#HTQ%%NXLPdZqtWViWoI6V`q)3y
z%dL|m1a5MF@SxBSe&18{zOUHJY1kM+pM%}bSX)-uN3)-&ObaHfc3(i!u${BN4l|wF
z_LPWDHm>!z!%0%AwY`7!K84qhTPb`~EU)l^l%kv1sl$|Al#lc4&O_9wgJ~@Qom7{4
zYK#oDUDfcMMFiU~Mp)W)7d?pk`}&*a)>=35X~Tsw4WMhB|0s1_+3N4#r{SWi@dCv=
z@#?4^rT$xzVN1a{ksFBh5g=LGRYaCj>ST~|lwrf(<YFIRZB7xeNo8F-nG>e<x|r*s
zQ-PqACKIq)+PCR>8vS;u8xylysSPMl+R)I|U)bcB@ok>BA*;!3*jjt3tWywSvyA?3
ze!eurW(hh?j(kfAZ*V&oETPk0K^6rl?8uoJ&lJBEvM3I3<H!%nTC%605v>s^{z@pe
zcPL+<wpwvH;oEAwKVXl2B^XBvav^HZ>$7blNHD6REkS>pZU<@^0FcEZHGP$<N}fZb
zv?0uq)PP^#4XkDsq%=1<8n*Z~=nHjqO)FV=U&6>~-x?<t<lhx1%{Z|X^_lvCqQw3|
zy^U($*e35`t>Jaam*&21!&U&+vDp9;u_W{*SMXks^s{TjL%FkMF4x+=oB!=PmRmoM
zKQo`+Xzg{OUDD=tv35ZOoqks}!Swy5`(?NF)!t2}L&=Z)mhi-STtXF&H{QRlt-UCB
zg^xS<{<HQwnbgCki8DuZryz>Fh;vukoSj4kv@=PgA6TX%va%MO%o?)libQl~b@UYB
zT1JGYhN_VzuN}4X=;jzzq!!_Fb;wHkjZ#{Ka<W6)z?Riv6%%$^q_#Ncl5SSWMqySx
z6>LczTKp5oU&K~aw`JqIR_A;anpi}{^w=1CQd%PsMv>_H1gDa0?xu><c#3`;^z@%N
z+e!sClHdsbv2$6t@GU|fxkHM{6;bAfO=&7DdMtrXRZmN)+}a7t!5o2z{*i!T9}5bS
zi&j5jgo6Tle^Q4ni&`Cr1Z+qEOBxVBU7J^zYnJF|?b6!jB(l>ebW0kn^Miu-=@?o-
zBV(Hxy6H1SeI#HbYjc$=QP9`HqV?hQlyYE8Eqb4w_8DznJs1WwHE45j*y__FN5w{d
z%0Z%mq**|*G-RZoDM24it^}PRB*(SB1UVQsQf#s@lgJ|m1)C-2<@=eQhxMnTFZm(J
z(&Q>_I=fC-#Jhc~v@zxfA~(ZUjGn>z5>D|@I|U)9kYPtuU*T{q#rs-?^OxIO@<J5T
zSID6jIMu1cmT??j6Dle;en#39`W)ptj5;?KY~qY=*hQ|<MgcpOV50`3nTz@es<c54
z(2<|&q3qbJZ(LKbQPlL2$mObZd^Omp3j5k@6t}%#a~q`_WQL7jJqCR>8#Q~ITLgRs
zwqT>G$|9%8af>;i$aST!85@bUCGyquSw{8Ks0AzJY>{!Z1*YXjCn@$ewKg8D+@10|
z4%r631mloy2vh|7s%T3$*AY8V+jtk(4PySv+}+<rw_{#6)9LSIdHsa^PS%RGtuKp>
zKM6S)kdMcfZ3W|%1tD_q#sLwUvY8Xh6De;$A~yXLGm-E<ORkISYY#M#;1FzFaXJ4u
zD91K*s&5D?Z?pu39W>`%I|Zei;Y?A<8%vgRKsM2&zgN#0z|S6V$|RnU-2)qQjdRcq
z4K_Z_<fm;VFNX#Ik!`#(XSx_4RyyWjf2b=%1g%K_lmUr1E05qJC+Rd*<Uaf2gE{~C
zKV5*Lyta1<@BVaj%2iFYU2!C)Xr4mOEjJpC(JXTjEuXdA-)D6b*bXMmH3;lv*fJI~
z^P%M=z)9m8I&hf|@?Vdw_;p?C7H;#Q$wemuioJH&$g$}u=Sk(p<%8OM9vc%*o(X?E
zauQH#*b=Z8ldA=T)Z*BruBC3t$rsv8{92<1q*?jAIJNj>;Wg)TB%FL_4*ls$sL`&L
z@*~D=mlJP{^7BO4Of$KmJhXWVZQih5OI|sPh%Z(?Y8zc$T}jYpm9enb#|oV=x#_n-
zZr0{3chgrY-Sf;{&$$LWeRa8#;+_so&J{Kp0hH2LppUJuXn8h$EmPBP*T<phV?D(t
zvMEQ&b0}sFfrBNqx%H)n&2+-_@mkuZVjMS}FuBzgwq75RCjxS<v}Fgb^cvW-ZoSr=
z0SD-S&I@!bO#vHn4SJhb)Kye2(ATvckW)6SZ`{syVsMRZ(O0F(%FTYlzH)xBYuI*U
zz?cz~C^=UUIIXAp5UfOmyjxj<f9(`swEa8q_;ax41bfZDva<ae<lQJQ?OmPi=ekD(
zT!eAS^2n{nr6G)4{GaqS(#Zc3$}`rqGJEJKuM+hhs7L>$`wy<WC(Zd<ec`SXQtrf0
z-MOHr?%q+sU_qJTUC{;TDd)eH`+_o*OC;shp;c^Nt_n|64%cv8R-FZ(-v5Z#wnOCa
zGudG_;YYPr_r9LGzSQehKe@9~>0U6S{!;3?L5?byN0;LoYm;Mb|F$wwir0x9v`zGw
z?Q$bl$MR^{9!DqEa@>;ZBgxTpKmsIFTP1v{I`Ad7c`HA~+Q}8VD@WK~XPehA5$oo)
z*r@6T_w``gv{A2HjvLs5(N~KN(zNnu?|R*BzVU6heM>^Q+0Vzp@_KaQHap<h7Cd*C
zam%TiR^t|}#w9PWx;RUroL_f+eV|t!TuH)KZ6b~Q)8<L^B>&9O5$6v|y}?O3FX=Nc
zPEDScH-ly7n_;R)U0#h8BHe2Bs6UOGhu&e0sS6)<NO?IXuGnGHg%&&ZN{duU)XZvv
zL&=WcHf+jAF4#)x>t10O$5{>E)?wRt-pi3|r6^s2<msx^rgxY`7ko=Xl)P^O=AqG4
zos;X?x)qx_DIZs^Qg<zWI=tK9L^)rSQaZV{{;DSc^f-9jAbnKqMxWPXtG1Y4VLxqi
zJ-%I%I^3IFQ&)Z)HrH3fX5VIV?Xcaf6P-TF96PmO1esIosY}m0bf(Qu+Vr;aO?~X;
zR?()(>|`h}Q6C={+e&U{<+`>58*(M+L<;4?D2L~H0bu!a$okr?cHmLlJm}+XeQ8tf
zq^BRCkB^Ma^z~d{c_g`}GtX0yd$Uo^4v_2PsU2uK;hPON$d%jZ;gqDkKKbH-UU+qq
zq`XAxWb+(MrjHd=K!gN*2q5u(UTxg380V7*GUyGUPL<7sS)%{%E&qMxTSj{CyDse(
z9}5WMSet{yO+%Xt=mV;s+Hqfa`93MVfu2S%T@gG_@bsbjJh!@kfH%+B@4%--6ZC@}
zBNa{>qb231GW62Qg&qRsHs|1fzx>)m*|^?;9>Px8jyNf8C!2T3A7hCjIo}JPQk7G$
zgC<Lt4Y;BwZuuPtNmxD$eS_xsQKzFh^w~khwr-Ckz(#pFfbKz({*qDwRSFw=z;<Up
z(~th6hxCL0(HH5tOV$_k!Ngc6al8pN3SZMq8bG7li%Ak&Yf|7?UX@3NvLsn8LIb0E
zXdz?>4q~UD?0oLfVipNAz!qsTP@(6Mk*bh}4-bxw`+gZTF}#MT-Hgr3Y1#M?N)o28
zVQLkcI&6~kR2-iBO>C0fmhWZCBge+@^mI~MoR&;G#PmJL)YP!CQ*z$MCjT*R<xG=u
z+05{AVB3%@A#f={u2Qb84qK!1CBZH`?K>~mZ|59AlQ@D|U-qD);_>Xr)N8ZKl~0*H
zb$3U1FL(6n!wET7cq78(I%~4zlQvJ9SXX!&*L8#KKeTyQzPy_c(B0Yd#>7B}VzhZk
zI4p9Tq<%?kD{@nvFntuc2(~?*(M=h}mUYud=60Yh3fK~`5wKIhraDoyO@+sCf1-~h
z`icbFXjADc71&n#YHjY=N=pQ-1K`wQtIM<E!yWb=wub#$Wh^>T0(S1_v&zQ%d3Cv|
z)BH9&5al{_*aho+IIFLMk?T&U`q;4PCLrrX>uY$o$&Jf$lWWBGxzAnEkN&BzqVIqI
z8|bx%ht9rUWAoLLrki~oksr`m23Ax+W<L)|yt_YR`wvJ8yhFnG85_YP*hYjwh7-PH
zEHPT5Xxn!<MaVf1^^jj1mk8sQU|;#fCpiC&GF5|8Qg`a%rC09L6(>a=_Xs#i{`~9l
zJ>=6rVWzb4r~b&BR_2insQe^qvi8^Q&8e^4z}NKy)$f;jSJ2Yx-)j-9ue+!W|3B3K
zEp2}r)%DHw#=6o5zT58K#F_%u6K};@Znt1HN7W5-taLlJv%ggOhid;F9rhD!-T(N%
zQn*|_xw?P*`lKB@d}pwok?Z<hH`QI~cDX+CFV!|d-sl@!*HLcqdi}pdkK5+k?~jr8
zTm3lptrLBub8>$)IiAN_xBpse_t4GQR<)e9QRlJU)b8u|ci8I69;@f&yguGy2Oe3D
z>Gb}s>q`B%`zA`P`?far7o5ZT`s{$ct_Gy%#>h=AN$F(VN;+aIhWh#j-G7#U>(fR0
zLxQa#IZd2Kt`d0nmF|RpLdBMnCyF*+el1T*%LR%BFRxl|eDOk^X?Z7vJD3_}&7gEA
zbJ1u|<zTO%YRzrYF5H;FHmmI&k+@W-F^D{Y>>RN1PbQtfRt<a34cjy~Y}K$)`?g}-
zn25YKY=cI$C|$47@ffzj<*IAP0aydJgt{s4bsG;qXyoME3>%qT_4yLyng%2TpAE~P
z(KdyeTxZ2Tj7_fWD9+}XnQ$s>99*vA2o7zY@ogek$bAbN0bA<is@Mi#m0S)Y*CDid
zk`o#Htn6EwQ)yB=J3y|Yk0^J2tSt$v$=&lvL~KE>Lum80T$5p|jdPvxtCI=N_N4kK
zL7vv;Q|n7<g-zNVQBYl*6K!IX@_^0zT9BL2!kAp=B7I5oOf<Q2-K-N`KWFDE+I-l+
z=5kHV4#d9VI<dy){k&>9u<^RKAR)KgfnxeNXaa8JS~6^+uR>M1wgb?&+GAU{Isbh?
zl3|VfPo3OTv;z_Q$`0tM2CZBA`4sE`^l^=?y4+K*k7fsQuu+g}l)JZitvA@HmiMf)
zQFCuUMUENK^wX)0n%B19bi%N?ttTW^=QbVXz0BLstH%*kK*r}QIWMf-^>GF@8?Y7R
zAb?!?S*3ThMLDRdgxflcvjF5k8^0`0V|>2_oBp%qVnS4@c9l#me}`hT=)GE2>mfRw
z20e+t=KR;6EOT)w5s-eLp5o9%@wL$rXKWsaa-p;e5tMe~l$}GY8|=(C2Tp=6@IB1y
z%r@gFbPL7Ho%b2e`y-r9W85e}dE|-qd?#=w?Qs&ooKHDyB*?}AsBEL&8aC$s9wovU
z>%lb2>7WFsE^~>CLsm}7C2R~VB}Hwx@W+dz&7AY2EZMUt?jlouo<FL<8HsWk`<U}z
z_~Z3j9iM|>NisHG$~*izX(D*33)o~cU{br-VFL$y4cNF`8ce7X_rR9ah>NqbVH51^
zOkH6kU}1jvB;{(u<=wpLVOW>CIdQmPfn4Q2#~!dz!=_yJgJ2_X2bHUo1Dmu9`hRk4
z<k%Q{7DFo<C63u_SovAbi4fYH>ry+pe8X-}Z+do5|J=Jr`ucb7=xg78hn~3{)Y-q3
z-={r&<5yhLzw-XO^zJwB>2lfBlw|KR=NLuq($}Q!to4f=tMI=k%NYP{TCQ@-i%wKv
zBYYd5U%WaLp-uZe-~KFp>(}0+H$Ri<4R;4|pjXJX8b3UL!%FT=AMdEVi=FNsAxCwt
zr@?X(m|PkbVtr&Mc)(`*D*83@shW`o4A%+MNAXUg&2#80Vu$9|m)1JrIwROMYFzFQ
zauY19&n(*&HkadgN2tT4?$X+viuN6?+rEWb-LM0!j}`iO($}oby)O;k=6TjU5uD#6
zyH1Rx`3&@$+dPFfx4u>#+a;9*9r3=_+FbHPn2kDvP3LL{cix+Q-NAmwoGm&JZT53F
zD2=(<+h{+<_QRID^FF0kzTb=eJ7A;1c>0f^sN}JM|GsJafsL;<(%%Bz+PE}gT$<P8
z66zBAc-!>FxM$@R1EZchtzq8q`X>-48vre8!QNe|MK_Wh_YiLUq!V#F0w)6<c18H(
z2}i2udU`zXIP1}2{#{`L#yroqgD!)v?C_9YQ<WS6#x>3#EIU4=J3job{l!kiAUi<3
zfB<i_@<=Ohv|;1>xqQMkPfV51yEu>e03P&dwYx9Zf)&`7@8i1Vc*#<i@KEk_B70>y
z0xon{T6d=uyPSSFD#!Ic<TEgA4Quwi3x~-RJ`1O%@am76B*P*PjEC3cXxLn?96^%_
za#Xn)HpV*cb^)vMbr*a~3fQhKVbVp*wIIBxz^Vz5hQ=KZY{oUtll0wwjSX##i5Itd
zw(A9*aD_)~z<y<&ai_^cu1&5Nt2Q6Cb6p>mOLPP;`oVVr70c1(3LU_83UW1lZEe02
zy<1~zZ9ckAI5w1Po9`T(wE2Dva#gI1!?7*zJ3_9^=V}ScjB}kGZTv3d*_WIaBFCk?
z(?`W#gB-iQ1f4JrcI``Jz^chIxjhfyT<0B9=7T?q0dD$wl-*MpVAfag$x4n3=6mHf
z->?HF*Gk48-}G1Yb=Bsz?@O+az$X0f^Q4Z19k}i%Yx4p9zUk`$a*Q@=1~#_?Y@?RC
zE#E=)Hm}Zg-|0j;?MvR~lVY<rmNp-NZC3khJiNzXqj+(C9r`(AJFe`2=)lTGl@om>
zw^6Olqm4?<Mja=S5%*2Q9@|{yIBKqj<Lq*cay+q7EVpQ*_TvdQyEeI+ewtio*h|e9
zvzH`?M<fc8aj9$^8wWqKC+;bY*Y^lJV9&>&E$F`-{cjTy{ojHpQ296Mf`LyG^3m2&
z94>@h3p~E#`k=hhd+@nTm`HIszn9Bd%0f#*;5BDn{XHClhe_!-kP}04R_wC;#|x(U
zs1!g<t0IomqJ4qypN^UnXcQ-~CM;!anj<JVHgo#Qq;dJj#eR_Zm5H%cql2l)gQNM2
zI4Vo9k&Z)hvJ(AxC;5qrlq-FaI+hBsvwdf5az7HD>V%c;rE;`0Hl9!$HAr)24B|<d
z4$9Hayp-G|N63}sCeCw{>)4Lf4jFQt8#d)R2R6a3T;N6ey;1}Tc8-D+xsuc^a}!X}
zw8=J{l>wW{)!Mv3C)Dw(5p#-7%Y_Tv<T_~LcaxK0W3F+rS^TNMW^K;;z_R80hk%X0
zo5!U|<T|T90vrECAAzl+%^iDIognBVky2VoaxurIixw`IrQwiVZh~!8Y%|8x0h>3q
zn!a+~vm9aHjX|!!X8Ou~&afT3zC^$Vov79GHc7q%w7K@BByzPjAC~7C*DP`)aSRum
zCqb^qgGL^XpeJ&D1vb&gS)+6fo6D8Z=1hMS?Eu<b634PWTARndwDdLpH@B&b|3iZF
z4R(P0`9bxS%SK=P1#HZ1-`RmC*W_}oVPi_=dI1|XS)0Q~9YbH5%?`juX`U0tmUMhS
z7I~hh=_BeE8?_&FOg*Yx_v3(mKD+&t@t(g8a&7twJ5W_0wJ+%o_7QXA-KsC`psy-d
z)z=v|im?rOrLVi>*sRS(M<BP+Y*Z<rR<ek<>U~M%R#hLxejX>RIR@DBqr6wXougd2
zt_3_hTq~|6vRgI=)LwE9fW729nuOwm%NPrfLGyCW3;Gcb0^Y@td`2SIqeTARxyU%o
zs`G(S*Yh5kZ8R^sL8#PDMq8l$ew2+K-O#Rx9gwXVi>sD))YA|2#Qsw6av*i6k<((G
z`$>7}>6v0#qUJzpaVL6hb31dc*a?mGsZjH@=&75Ha?-h9%8jzZHhruvZTRHnHt%%o
zvVoNRM1Wy)I#I97oWQs&MdP9kDiwSS0&;-0CJXp!*Y>=WC7-py(WKv9QBLRs{%q1`
z<sNq#6$k_GD}7ypEvYCf-W|)=*raa%meOIX0lPRCy&(cN3zoyTsAsjwrG{^*Ru<mv
z&xUU^#t47jRiIsKRqg%B$`krJ<kn-WD>>KDE&(gB>wG8Cn-(Ygd*8mNw?8}3z01YP
zekaqj_Y%GJ4Fi4k^CLZdp}`H3s|xFu7Kqj4?ro^T3Ey2iIXV?hGCUf^?AVK*=Brkh
zy((#p_l&B~wRx1=NqLZai%hS5o7d9oV`xKtwzj&w-=FpsuRHbF3huWyxBF}DbxNBT
zPTLH*b=Y)wsBU3{oc&!WPeiW2=lV)rW6KTO$+uCEQ;l{&`%0&ewQkyh8v0t=z~+6e
z_I7~W4xD1Mcj+nciZW38gt67^CnE9Oey(l1*-tAs+idogV7s-6d)r<%Y=5F~@(<Xe
z?bjwx_>$9~ADFbUVWZqO4XO`}pm(;hk($3DZl2d0#!5Pa<>sFVk!0d4QBqZTU;A6y
zwJLlV7&qP*NBg$3-(Q;ow?Vu;4)Ku*!fd^jnCNq;3L9nJ28SF(N@`gwlGS*+YqK&^
zmj&M283-A(^`E5uL6tW8hEh;y@>)~(ZTjuizs0_@VQt?<p}|wi;oXR^Ovx3*j*XzN
zQf>g;Ajfi*3XHwqll(hRzQqN*fz7U~3tj#zUKfrSTbqY(k)zr1TWa<8)FZ^zbxNpQ
zDe730WA|+izV`YAY<-)i*0E$WHRIcwob@|HM6nM>O+WfEHU<3(*s!@~9XJK_eq0)(
zvS3TN20e^XuK277{m%3^wzK_`-9V@M80D5|CD&SeEK$z5j;ue*t(uwzOgVfj`L{)T
zWhxWpY_c>wy&WLnNexXQq7!WG-__skqmduOHn~f*Bl@-LGlfr~SU2nlS)0nIdS9xB
z+g{*u#2-?`T7!*&9K5^&D}^IranXpQz$=TJqFig~OY^oJpip1L*2xv$mV>=a)Ufq7
zsx8nmHJw=7_GV{ReWh+-Lw~7;J*Dui)!$eB-W2*Wt)xV4f!0LReyM-f`a^LVfYcUx
zPw>wsT<x0wZ|gO7G@rortz$PPRB%!X=RX`N@^nGYlTl~sns`_Fx(QAhjbP96oKNuh
zVbE)6KyUKN<3ON`0T;M%tS9oti!)!zq*}S_g)tAj`s&2NWHF&`(sH$Z1R9CPV{XyP
z3FSt6q8m=6`cyO`M#yHWE;g*ZKz2H3A)BIWa_h*eZ`J~GHQs!at940}lO|V0(#lG3
zU^Q$5l4naaB5`b2*6187&){4ypdKMinyX?<HYqPQwl-|m=9)7AeBD8=t`n2-m}`$O
zQ78N~h`!&PbGDIJ@$P|A7fmB^5D9g0o7w_q-R8cafUPPz2gz_^3O3YN$?^*jIMfRk
z-)Qq%dTf<ES+3OOjwy2N%8Orpu_DQBGdcA|!Q9-ii5y0?d<7c@8RbnMwJ(|6hNyp`
zuQcv@eRsiFX-R;M|6Mgq-{Eqdt<Br>B3JO{8+Pf(X`{_&%U6K0#_BRYUE7Scep{3e
zUi(^s-9WTdt<Jk|eM$6J&5~ow$X8$q;lUu(=_~(1<Vub6zpUhHNvv}$&q&^EHi}xC
zYqWfFyFmEXNMVP(&#n`aABo5v2iC^g=FQQpbbO_2^IBW*mSZ16n^!D=O}|ppS8MZu
zPW80}eRX{%O|q^hSIqXezC~uEQnUS?+(hnj<w=4i(2Q!ZVR|A+^IxP^cR`e$_mzsA
z0m(W4)e+n1j%>cA{a&fm#ePD^Fe*{}@t-Z%!q(3=4{Rc1^mi>k9d&c#C->LS%2@YU
zsunzCYhsqAMgH5V4(CozI?ssZ7DUth1>n_R^Frq~Uh$91`JE3A2YKJlPFO+jxSa2N
zaCHUy(ws;V4a()EIIT}CH_qxKIIY>IGKLKS4pfrBJ`UIk*r@918d;;T195stJr_6@
zAsKw`Q{eoUImtve2}$7FwsPbAH|~0-0x1)?!c*ia*U4L*uY?YS>1h(?4TN{ekiyuQ
zM#ZsBzP=KN<5Hf1o!`gU60l|ASbym6t3GyWIltGi88>~y#?i&sC%pO{cRfElH|~1g
zFf4)3y-u31z}D0e8ws`t3r5_}r}Is2S?OWqd1}~Z<2g^@u3uzlgFs!$Rm#AtZ*p_W
zI<`fJhqNCix_oL!f8_o5=x_e}@1!64qi>?`__}-a`@iiTegFF}=zsnDpQb<kZ@!tn
z^F4c-9v;Oe?-3LxE25-*>A|w${L1x2uN(@!yui9XTrV57oHKxwMu<18S%;VFhs%Gj
zKDeTnmj7N}n)Uuv;S&tp_0UJjvm)5}#GtMP`9#~{>VX8QU6)L+EgQ-&zILQnm&#t7
zlWZOf|9iDIuT5?;9vwxlCdZDuUi4M-5vW5pxzk<dNBoTF<Duze4S6Ea=G=BE>ZA1~
z)5p5%D~@fF_qY5STHf^aAm2u!o=u;d+^#7>Ut?d>zEtGdI=6nV`e<~0umddU+;Rf+
z`l@|Nb*Q%kocn`Jt~ur_P`M_^)%;DGOQH28(e>#Nuobdg3WDtzZItHnDQ*W8TLO0J
z@7Sp4(@y-ZhnzD7V|BEj63n^S&ns~L4>ryR`+6O0yOl@V&y+%I+i$j=e-e0FHG1D{
zzXn9^r5|xlfVFKm+s}RDI32rjDFz+R7?;vUxd$CimNUToCARX@ZNW$%Si^kckw@G|
z$^lR`V)owUo}RjU*FUu2!&NXgxk)gXwzx3C^yT(E^C?S>I@2WQX_kdOI2o&5w_Wo`
zxlV)f^`0xwI&;;Drym7Q+R?~%br|gI&)VWbu?_A-=-w?J)b;%<Y}x1s&R~z_wYDSB
zjEx<hL-xgi$}RgsiNI4ViZbImx5dO`%kdVhE=Mc3WAw8grxm#}*J@R{dSryI0B@+f
zm7kO2V_jE0@|Mh*18kz1NcJK3s)9lXFln4M;gIi2z7A}U)#kArSo>?jVz}x+A=roR
zSsj@AclB6XU%L(4x?R!`7Ii)m(qo0<xMsP^bvq*M4n7~Ci7-15?2+^Pe-t^M$W^ho
zzNOfZea~%>Cc3Vq=hjc#-1y30pFW=2sI?p^wd9md?zZ5`&|m1l(Ayy8)&8f@cOF5G
z?OV)#4oxnwK@@CMC&w?zMg@KB%2hx4o%ilu`u!}~@yxiiHE!vA6XRCpQx7w}a{nQC
zUK4CuTgX4jKbt=&_jN%8n@;+6!v%fz<>H%Mwr|-UCf_g<O-bAD_dokfPM<$lUhrqK
zy5j?3qv@pXN5p2&--IpUrb?myHTI4ABjg68Jxk%;r{MG+hZXUyzb&`-ZeqJZt}^S$
zE4<;}?)_VJ-_Yi_waYndR=&n&<sG&Sxju56e+k&=%=6tZoz{JuTsmxt&dZ&s?+;%h
z_O74a@LgW_<LJaWY_CIKPw;K&!<o8YuN~;>ejK?zA~t{Q7Hlc4RIHw{Q5)s7_5Lr#
zMul<{2~Wdb1C{cpUp&$a_b1;3bccBg^+`RL!`a7S;as8s0sw<psJ(=*=S8@8_lcgm
z9Ozwd-qY8=^ODRlY-4`y<k12EJpV(~1AHCd^Wv)y#5uqxN=Kg;(Gx#+u%F4<9R2t1
z?Dce5YMVLyJIAfu+DUs^<W}bS-D?l8HKDNaKEr`zbPtgiTAVa;%5V^;lsTBB9K6t6
zz6US#3Fp6^W)GbI=HTa_a9UI2tTya|ZMpAYIRQW|u}ov>$3F0Ye&El3o}RrRO*YDF
z+RR+vMS1Wg0x64An|&F1#Z50^0<zONspFc<Wv)IWZ;^4+>&fN>&VS?0C-CO;yY;eh
zfotFoa{Y*deE_!FW0Sfkq1vike{E|P0yc4c^Se*5@%rqbYw!`+JSrK%g|nU(PR9Rk
zQEkWxz~y>sV;8WI$Vqa-lu7(M5u3hSoxO}r<eEpvR#Pump-aN1joMPxM@c*@P)7aV
zfX(D;*bSS~->4j>MJL{HZ=`3QxuD<k&3EX3^?RS84}Ro8Kl7n0y2m=PwDTLE-qG8i
z-_wu%^egl?f9@6fgWvWHefRtB(0}p4*XX04)05JyYR}zUoSn;O+y$$}=U=&6^dD`$
zV1LM`CzpHg?bWCA^bYJE%UqsM`G4YtgM8JDNnHi6{&gMbE8aNLcYWOjec_ctAOGS}
z*0lE@9KfhC3f8AD>$1Vd&d*FQ-M^-nmkj~Qhas8Y;rH;I0Y_O!B+m&D%jsr)WNhq=
z&D!QoCz9xMm89={g3P$<TRwu;rW5+gDYjZP7Xx{Y3M3qcPDs*U!8VG1noiu*=3ZVk
zX8`*`IR{3q0UIG%@*MS1?LgE=)z_VTE9*xMc0f4&1?q?mfSBVV>T91rquBvCxjC1E
z*Nspn{<q`=IAfzASHsR50iXT+fqwjlzJmVn_dG?fzILrF0U@V~K!L4~IRT>m9N;&R
zgzMCDsu=Hn<owT|4T@AgvN^lT_rmu_&i@H)A?NbFSkT6hSK|`qC&nmXr#0iaRS|T>
z?P0zO{=NL_{bf@Er&F_TY9#oKUe9k_|3P<;YPd!uN@)YCmr<B7COTc{(e1zXjDCPu
zjY(FCz@)r}@^HOTt`oHL<>KNE6T-&LsN1C7^-0~@1vlTF9swK0_uo=ZsvNolhfeAD
z0-OA?VXfXtQ$LY^1i7utZ^W9CM}K*Ftq8<U4Qqly!KRYlOSja0TlwQ(R}7{Rn;qfl
zv4wIGtDZersq5qEBRxi&$MVp*+jYQ-WlU*D9thxX!A7^%Ej4Yli^(M}rV8XFi(Kh^
zb)^Hzu{7NdeJdD@N72V^Y`5!c!$Xi;jbg;+4~4!&aiw>H?Is)3$#GL3PoJ-6zT4#9
zVLL0Q{K(i|S9z4P*-xv_u|bYu+|bAK_P5zhH`INrK6dxh>A*z&xV8Spzt!-+$zPpL
zZqz@Wd*hS!OKH{js?8^oCOynbqa#T}lSY`!qF4j;d{aoc;%&iS3-;nHKmgI2lrZrs
zn7}5VXz{o{;E0Pwb8@)`*{aTtG6}89sh%(~Bby|~==ZvTEgVVZC~w=qDi&Rg&A6%6
zt@9`?*NBqvZK0f{HDUuFpVnhbN>{_RSX8%88Z{Ds3mZai6}xR>&V|~Zr@l+DL2h$J
z6nBSB<!VW+44cYTj}1$lWXeKUrc)N(gtVle0}^ct*SwWSxemIiSb)tp?yNl7^?7Wz
z(I@SKvC_)r+h))a@cSz1x2EJ=(sK!IUNs1&$+c)q$QCwii0TQ6+_14e)+~82);eKP
zn**E|@;t%On6Sy7uxSZ>Olxdp!3)~vcFehK=p**n$r8m{^lHL}sp;e3ZM>3ekh^1p
zKCTxrC1B$_rY&r#>7zWp>T5$ft-B@vZ2DTDuc^b<W7oM{mWVQ)FC~}j6#98GeKfh%
zb2e&2AA=o`x|!Z-YBnkd8<iurm5r+2=D`lQel{B=x*c_*=(nBNf!y0DaXtrZl=MW;
z9CU)ee+IVP=_^5Bwav;J8*G%gDoUV4S?go%?SRWQYgDn!$)T|30ApuO7Vcj3#n9I#
z9NXk?t2TC2$b~ebRGh&X^i4%0@Z?>ogubJ+M5-alby^qssZFuTrZ4RjU`Lr-Z2A+{
zmsS5}^AM`>BrwJ4{uA{x-$Oh}s3%MYaiZ9UfH_QT&L@2Y_GHG`YUTVh$G#>=rH&p;
zlQk;6r8)jBa(`WZbUIdb9vLt6C6cc?Cp9~p@ce*{0?U8H&LVDJb7aLt!*-gb!-jIp
zCqQ(eW0W2PP+ooEW7qLaoRioP;r^0#iiP>LYt}v_W!w+hF*WG@NfTpWw@gm~aS~9O
zYU89B-zyHlf;I8Dcg}N>v^Y1lT;@~ELtb$|u%)V}6%CurS1=Z{gRlTAW6Q?h&i8lN
z_*?esf1GWNp>3QnmNGW=0i%2v+cjewFC3edi!W$~^HRzS0;?2TMcsw%;sCkhewJN=
zT$vN!<f_I;9e{FO=`1#rV?tusH8ySI#U3wp-@VNA4euD})dz+C&IhmPAN+R@=s)}W
zFD;(@MJR_#zwbMrqCfCmBV8S(1Mr{d!Lib7*M(lZs`ShP|FBg5yT9dWde>XV<z0Jv
z=BZ47<tJaI&%QV>I;L~CPkvFU<=*qw#bJM$==c5hH!b}k$^7WkFHH1*|B)}yz@IUj
zPF(1?c4P|HN-sPlx_{tPFooXq%t&ANm3L`JIv4!Tue(G4@^{{&fAlL?^vUI2fB%;<
z{nW1{dgJm5Bg@t1B&-wC<~wy_7o6}zUoknJ=%WOCR(EuyU2AjE&#ZlmVDlNf=woSZ
zF1DHHB}w~Qb$x7eY6~nS>r16!_r5sn+h&gprr^b&i}xi9EKSze0@eh5tv;t7^&}u1
z{TbM-FKI3g!=inu*@5i(D00k5oLz$*2-q}{u}qSE<I4220-N|tPq3+P&9FrqC1vQ>
z$*|38qc}luAw2;xA_1=@<Q-SZeRpBgHrh`scl&wHzQWcEr+={hG2ctH{TkUn`}47U
z44b&J>3exWcG|G6$0fctECr{v&6kU{hHpq)IfYY#@R@Y;3QCVXcgS0R>?wWJts@N%
zC(ncqz<`bSStrK*@jK)CHco3R_hS&Goc_WKz3+F-FTxQGp2Y2p`}_K!oYi(j<De%9
zoWq)TbgUue{%h%o$_qUQPV2q%nDZpsIn|eIiOkq3ul@w?&<rkce#VcF0IOijime80
zSB#x1IMwTdO?Ra)E)3g2jO%Fp+J|E|0dZb^;n$wQU9bG_6Cw`;`v`2jTeVXzaOUPV
zY{LJ3&}`a%>`~;{<l5wT;n-ziw@1DLKI+2QF2b?KOkEBD#<m9+_|fI635_^vR*vNe
zKfLk9j(wEGekXb**b4aHv&oU=b^)x)UB7c|2Wex&b~q?DE}vI&?RfQt|9$d&1$_Sj
zT;Q4`z;Xgi!XwV#b8Y&H9dnbTBo8rtrFtq?92sIcvRro^r+SueQ)~w^j&<SHH*Db5
zKLoj2^a;O<@8LFA&g+&jeS%!=TDa`JuRtG7U*$ATMVlA7U-*nKE`oj%^sz|0u&zm)
zbEJ&RRr`+S*BFtbqUo=+Ik@YYvzPnUm0{bfT)8eD0JyJY=s*QFf*d*M!1}rIzq3Bh
zf^92Dg<_lLhJ|HuKpqH|sc`-awn=j-uv`zvkozOps0*`ENEWu&d<D|RD;rfQaMfEL
z2=w!-1MEO-^Fig>wfUGu7X`au(|#^oxZu@4Y4c;lrgCli+H92B0c~S8|I+5sM(xZ-
z9R!Qz*AV?3TE2n<20}aDd;~W$|91`hsd63No;o(S1I<P;CU0}dv9|;0OUwULtl4$I
z@)dA>Ece^SrFd-IY}9((lDGzJD!3D1wZZV^-`a^$Wpc^=m${H-Oticu*ON>vkrT9W
ztnW0sMEJFr$2Da|#Uh=A-<=hddB~LuoYdK4+}=Cg7?2zRNe-n+^pJ2?k4gUHGNBY2
z)Pd=Vq?mU<E2lL(Oh>FeoeO-YM_sv`C&9ZRU`-7he_JB(kn_SfU>E*(+&>yN@aP*h
zcFf7Qt+6rBK0A@w_D5`0-_462<uNZkHelzU$Q^R!Z!#`$E|&zPQ<N*NnY(^O5>J%N
zry@zM*-yq+3|mqzaK<(UxspWIXq(U8=HLduZf$Nl!EzGpmHb<Ff&X1{eT>QF%I^_|
zpkjF)l8jZ72Vzq0dg0aQIp3l;gXB`6uFVsLd<DC~+nn`vH?-(dS%{cikA_Wc#2ngO
zob}g=ZCL3m%e4TT=%eQ=06+Xd$h9!bvn<z!O&6OY$GK5eOi>?G(?_I#as89NR%^=x
z0c<+Iq#hduY{p#=C$dsikmpk1w%Nt}MAO`1^ES_lO>`vMfrxEt*h>v|VAKtlh7B79
zoYRLn|Hss@1KVu8`Xh2w91WZHB`LRl?)tigE$9IBv9-D8$FRI4!^#erjf(o3kv~Hc
z#O+ecOEM`1P<HI9k2#~C^S7c+)kf8ZE!wEs+bEIab(32S_LZNnp`WXb0(RKXGATBh
zA9UE7jUth&QU;m*be&*qqOYmxBegc44jO%`c}X+}0NW3V_LK2iZM)>KD6_8Ba`s#x
z-1nK@jlXR|R4zLVg!8{>4gh{u<jPTwJU2m-K(33&tWlh%%^4jz|K&Q_@Yd*vc!SQ8
zG(#o2O%SCzbF#K>%zRRv|NN5;u+-BC=Iq-f*aT{HPWCJ94&R85<rVjcY!f!BG1nv9
zuXVNlTy7|zJr`6fPw{%5owK^pY&D7>+aPNje}VJA^tq?j<!p$GM+Xxne7%1ys6FI5
zAzGL3(BVi=1>jn}Nv&LVILqvTT?tXp78q5FMZyzyuZle1aso_#oyeZAfkPb>K=Sh1
zumi6|Q3q`8+Y+!%j*V8>G$MNn*NTlIHpuM+TWZ)MXTQbtD7HCZqYk@&8<`$jgm%MX
z&u?R!1%IDQp>E2Rf8(-I$;rt-^Ag)DqOX4IK<|6kNZ<Mmcj?>SeL-LOPIbus+9$8+
zl?OW4dj4*vuY1Ri?(Nkf`Sv%A^v&<ui@m;of2Lpj&1?F=FF&NGmhyK#pXvE~nVwrV
z6E2qb-&xG<yWg^-x4&_uU;4-u{lc$5q|d)J(fx;o-uvbqz4h6V*1eINnKugF{M6#m
zU*2=M&-66sC|EWgo_jjeS1s>*`L&sT{HI@`&%JP@XBT`=-^uijXEI%mypd~iYdTSb
zTvL!6ozq9zv2Su->ti*YAZwbwO>58z3Ob`oQ8)F``j(!2pH^}yK?l&+R@ho!o4l_j
zvTqA(&N6pc{o80uAJ=w3_0i=Ru+=lz)Hu_oKAPN9*H>0{Af4I)Bk^6^DCx(jF4|8I
z8d=%L+pbUSYwhWT?A>i0Rc{;{;&m*KbyH{!85?kKU5!f>Wr^CjC1W7UG*|-V)YA;h
zCM|twxr0tN0M@>YRPAp`CRK!}7t^$?U*BEl@Sc=greg{pi`sl6pw2oNiSUwfG#2M(
zs>WAp+^Z10@0!f*+Leau8+3(hkr{)Am2`u4jGPndkhui@NaehxT3tyzVk;^^QEY}K
z0gJ@QAltPiVKHu1;orsN(V}k*8$l`g2IoJ`x;WQeyG$+d1oaAU*JOh>uqM#QkR{^M
zh?`!HIF@2<YEG{_bl3(&tZ0NGIW~>>q7!V5Bed~yDrc>AR+~swO`@2Ay_g)^#7pI*
z*j<jst(qHOX~j;Oep~gOHOu>;pOQQ5jVp{CyF@IqL9C%okyK(B^cYrgeH~Pv*K&>e
zNX_sJ$)fsZkJyrKU1D^ZMsy81PAbWrna06v&dUP13Kolm6J6INcHWm(v?m$*tJo9z
zQrk@(AXkDM$BYH8$vFk=IV8C%%0oQherxmW`f10cNXjevlJEv1^vxn>$+2p`Hn|S4
zNfyC1W^gjkeVf-9A&b7`yt1}ApIhJHdz#IO`kH_ZHVV-xRQoorD;p)w$Q<~0GvrwH
z+r6J7@-460-1L<uL~0JEpQLR*42pGbHcBT;tuKkb&N^`#bF>4kjit>Ai3%$wG%20h
zSJ;V)$SsTVtKFcj)eoV~ZJ^B5<mNUC6A05sTJ@#g4iM}>!u=|@<Tgs>Ciax5jYDQX
zwFV!zREiW9T)3t%ZrOO)Mf`mUqwqgNzuIQR^0Vo+MvR00iImz(17yNcT3ci$<F2nB
zW!@!W%1FLQ#cfwS!KG2;IED^A)JO@PMCAdLV+GOB7KJObPK`JeUj0%q!D{0XPh@l8
z0<OTLwxx7YCURU^uq9w?<?a-!>I~B0p8{+xQkE>jT_-V^AGPv`O*zvU8>rxF<NUYr
zC`+Q<it)@iM3qKPUNveIQ$ah30|tDgW{XU&8c~=rF}3k2b=V9$x0Oa}+C-ShIYg~4
zcH|{$a_`3NEaikYSDhforrh;Su0|gz{hz2snHRmkLMJPfcFc{=%uX@sr>cb*#-@L@
z_PG=!$~=rm1nd^Y#NVjp$^}f~%+;~5RvUjB1)d(BhHa9uZ|I`TRh@PIq}=t^mjbp_
zTVJyBd3L!vuYR&`tF15bJlL^iVAK0+ZrD`cTAQ04Rwtg0jiN8Pooq=kq`CkM^m|2f
zDI}l&KyFd)=;z7#bG6Maw}&iNF}5l%J}Jcn#{EQ)oA)K?NI`PHlyLah@;qp^5T`jz
zVV)}3tS`yA3x8Iz71)8|c^)_qfb^}}qRgAVsvQ!!8n%HPn~c(lpqt>;M?Y8W!A240
zAl{dH8>Koiy4+PKnvIfiSrV1EzNAzZMeQfr+)fI>P+-AZbe`GCHES|Lo2$uMB6(kH
zIV@BTnlpgJfiG{j8~}CpzG8jP=62$O0QM2Iv9i{%a$p}4=FAn2flw}UHH<@MqtyQC
zNVYzaZP$s~sRvkFw*zWknv+TIx5a$-=acIv?N{MzSZ@NDV<q`Kz4&I5ov@1B%2O$U
zI~fs}Hij(1m%ypgJBj$`fhQ7l*gK6V1zzajB=S>EIRx(6hF)0vIcGJ>;|740YoOHR
zfhb$pN;%3YD$0!uTqY5Np2lG=aj~Pw?Q_ZnenmoZE6>9*ZRNtTevSJZcRks7!@T<Q
zp<Vmfi*cMOe>iz|);=WIWI-e=5@4G^Uu>suv|KsXuL;fz!8XGQDfjcgnTOo4JGP|%
z3HBq##@t~Oyz^1<IW{;gZGE)JrG$J0Di>fA>{rw{)~nhk$W5^yl)D}|Y8vOiVk^`2
zhTPyG<va?EkMD)t9UDt<x>lMMU|m+l^xD--A6T66cNWL`ANck=^soN&PtpJBUwfXu
z|9hUM-}Q|b^o3U^`hWkem*^Ki!Tjvk%Lc(ffAn`gO>cR_K*y_zzT-WY^gsQ+XBVeD
z2ZvVrk)M8*{_Nj+k-qUOcl1ZT`ziYNuf0p(@-=tpO^dVsZO;z$um1~A(;xWGd-T_S
z=4JZJfA1Cg?8_59yq@V_`i`gQyWe|B6WXC*d^;@v=68R?vN7>BZylFSf}Lz4eA8F#
z=zErpihtvGKT8iE&h&r#v%g8d_1SCsuCKqOZ+PdjiSh0|z47URqz6e*j0S;OJH(s-
z+!t6UO@B}2%G~uz`=dTZ<*wH@E=tQIv^|=yAad8czShQFKSL)}f2U3#*Es=_=%dol
zm`*foN>Qb4n%v*nu#sXzo9le3xE!kM<Fv8^1UsO8sp;b?mjZ7#c|SL7GZw*W2gvj_
zr%(>LGPWSsuCGCE>s$(E2js*8>od~~VKY720r{pQQ?#jTd~IJn;C#crn*BVk>}#~2
zTrRnU%!h+<Jlg&l8~yg~6l}i*A;!9$^FLr4M*FtYTs3iADywnJd~N)5zZ}Y=PeR7a
zmCGS#dhFkL`lqnNkU)=tg<!?xUInWYm@x=~0XIG)b-augDOGSR-|yGtR~I`R>5!<J
ztVcQ|`a^l8;_*EGLOXIH<*XETeN=_phjMlZUE+E^YNK1!jYT7g(VBH9k&o_W!$QfA
z=aqBVa1@XuvpQ@zPQup}*l3L{+|SP|HoY#>QRQgP+gXpivZTrhw%M_W!X2mXda~;v
zC%Zm}Ev@9r*e>@Cn`50dH^dm^SkQUIi9Yqm9M{;j&4E?w4%n<b%5kI3^GYX9unT_|
zj<z%QQI8ZEw*47wWm?J6vGwI^Y&#seJSW%7(B?_*$0F`<#BtFb7Q^5o8<HnM9F5}=
z*C%bf#=Z;Xf<>J>cD)PO*Vv*yn!e_sGs6(&SR4Ol#74awY2D@l`^6fo%l)*?DPY}d
z^C4m{bHj>U3UUps1z2gT&4I1ci8VIJ`BAZ*+NeRIPbG@6PAhD4;|85{BEAnt-ZtCZ
zu^&&rWkZf<uhHhimQINMR9h}lO_1x}j^Cj#t+DOS=xe+#ZU=%KkGI?YY;vF1Hfk2R
zUg9K_j$7?G-s$l>9sj)CH@~nsR>`BwY&^8Tr_?r@pX^_BZkUrqCn#(mc@llN)``-{
z6RYLsBR0qQv<5$WeFdrpa5o+&b-L~OG{^GjL3k<kWC>dwjy9FVtQ^tHk*9O<Q;KtG
zPF(&?2c1l3^d)fykVcyF?{EM%s~bmK4V#qLMlGP&63VNVC;c{!P={lGak??x#Q~FJ
z!A6)wj=BY<*vPR>r8+jo!YAouE^T#3Y*N03EnvR_A2Oe+sVXZ8d|(?kt8;`58|(Un
zgtron+%}Tck*|(cliTqyci4|c55ta9ksE>wc6#LfF!gQj*mn9Y(vC9u9(7T9t-Pfp
zoWe(MbEUSK2@~^-O>-WXMmzFrn+zsbSzbs4d5vwpS8T42yWv)Sq}uC@XxG#x_B;<h
zz^2LkQ}$v*n+vw0ln0`Znv~e|)!scA_F0{dyFIWS^u)xlsgFTlFZ7uC5pAAXt|ffi
zPO%G}%u@HR!)BBz*5+t~W9jtK`q~a{c!a)2Y!u|`*vt-e*ca!-Rr_|+30VwEn=f)q
zlef9*YdP)b&{vHmX!<%q9}U}K)+Dj}QIpELjoO*qTbqmAuayp_*9q0v3LC{0%V{LR
zrp|5te{2)x)beL(S1BUbhCN^_#iQZn`s%!mqLq!Rn>wK<CV7lBxyokFFzU&vIbzez
zlVL=Z9I%a{%|#z!qppvtkDE5C1{;OzQyT?+Ty%mD(3V3HneBFascWj3i}0eEH?^>!
zmqj+ONm2{Kum$-zD(~~57>6+Aih0t&<uVSb({VR~1N%^<?YJFzZ$LIQWbTpMW)JK_
zvAq!C5FR?`1^>js&Hlh{le}#j^w&?`Pv=kkFBPOZS_uJY*c3>**_3?_2ES_fw{KG8
zy=%XS%<WQ(4yD|D7*cLI?685gF5ks#;IV6&GuP_(5}x<6lsq_&fYmlQZJwDzU1?Rf
z(IRTptp+HHgeo@M@(#k#jbyU9sBAiBq5G(~7M)IpQz?VgA*kbv_<G1RvI<>C^A3f`
z(`tbdqdM$s!^-wiLj<@DcS2Vp*pjxZZHMWG`%dY1<bC{Yz*a37Ky6tDU7vnA5ZMMO
zsU5X$)M!XGFp3--m#I@(zikg$woP!At5E=}J!pLV9$BGsWcnh;gg~j*yIGie>Ro)A
zNP4f>FgMPFNApspPOj>E+o5w5I3E?;on=n>vCkaoNB_|S`s|Anz4#iRf+l+Q-bml_
z)tSEj9eetf-{Oe<WdmYqhr<zp7t8;9=5AV?@|k|_*Jt|ti}SLnwb<|Fy`T6zpD<^;
zh*P;xwNHIvru&Os&P8L*UwT#L^tNYp)6}S7bNDvdL{I9lW_mqIp|{B4g;!_#g=O>N
z^RFzn_$g*SNc6&e#n7yu>BK0yU~)Gfv;^KUB^-Kp<IJbFlbST&qg_kTDehH$9NmF!
zdo|XV2yHGr`d&BmRoX~)s$Czg(F|K<imR++M8wwmy^asbu>q!GF>J1n?cJhX9X5jQ
z+P7w4Z*nn>Owd=&V_<#7z>&=LglZ3VsMZ?f0=e>cr_eWozACm+`{RZkDA4B$#gae>
zwKk+SC`(_hrUNQ0y~2k7+9sNP<u|P9-(uhxQSYy|ata#-BLXOm&wp!du<MGtZJZxM
z-4bMLIX=i>wt%EWr{j_bZS#L(OKNj0_)m3Eb;mYf^p;Xqw?4veBL_gsChU<`q>hsu
zIk63Cd(cdIGkyV#eeCLylZLWLH42d!vHTn-wQ{t#_vtP$jB30;NU7r~*HL$Kz_;u3
z*iw(po?l@*%Tu2FZz0=wfl;+6hnujSyEg9nlk!Kzwk216zBsmGhAf#v!jR{53%0&<
zcGzltU2RTXJ2YNSSXG&QmvlR}+vU2At)7*u>GwJ8@w&;;zQa1b8l@yFiATZ~j96Xi
zt51$ni#)S-+tLY&eHF%k8{6w>^K<2A+We7qB4SN9%kegBC)d#T6FX2&^-;{_rj4r2
zo?^#)yN$n8eLdC3h>af64zwH;so86@{cHR8Pt8U>h8=(${rxtOk{vnhe_P{HS8n~9
zLe<IsQtg72Ccq1y;9m{@s}YvU#hggzT4-ysNq3^KTR;{uZYT1LXH(TqISws)Qcb$@
zbqm$1%v3nV6{0so|I`VWwha!syQ6^62M0nVG}Zpy{O@XdW=;t$Ut^OAo@2wep@V1C
z9kI#tq<ScGF3eaITXAtFXzFZ}>Md+t-TG~IGRLv;vswXJB)qtxxo+4V<DMsTI%vZ*
zY?v?EST<OHqvFx_ggJ`__UP$~;=@@M-7t<@i4acU{HN-2HLUI1%vJ@tV^LVKRLWR|
z`UyNe_j9A%t1e9%HX9eKVZ*7S*ycg*{9&MnM}&IyNPejb?Gojp`lfdC9JT@2X6q}V
zZfzHpo2f~@O<!fv2AiL>zLHM+S_%4Sea)PhrV|OhY4Sy$E(lEyI5P+5Y3OS%$A-=H
z%le^VHGN*|BdxK8Hs|XBc3`cKCFq2l9wIui0}4R3qR{y^*F_%|#~XIQ^gVCsE2*67
zN+-zL9DU8Pm8Oq!5(ItiQEgPJ?NnT}Q4w2N+kw*L?(;?~U)d-V+X(w<bDF#*w@x2*
z>0hEwpr5Nw==*iffk<4@LBdItgi|(lOdkEXpkI=vJ=JYCn?E(VR<wfzrlBwRlo$g&
zW36t3vB=K2SWg<T0FLY47|Gsrm%`LR|52;e`DFe!#DxA~!5J#F7`(9#I<&d-x!?{z
z%>@o?r*9k7;dC}9fCZ+Yd<@rC9(kc9(%)&uM$M%H3O@;sqedkWd83Wfn)TiC3#>V-
z*{LZfU!j+hT(jtSBYl~33~-;BF^+>*UmVPA3wSeAf(n;waqy0|Gb#y2W$CFq)I>Oy
zO_q~pXx#OpwcxJT@hpMcKJ;hEx#HMb6^?e~sF4%iz@|I*g56I2^NFFHGzWnEjo&pY
zHtmBwHs>)9*hD^N8zn(0`6(pJXHad|ZrNNEIZiN)S(E=teiD`&+T7%(*f92T`JkNZ
z!bmgdNk+oFl%26+cP&@d3L6a@IROZ{QAA1hK6dJfh*37H>#~9U6F>hN{pbho({s-a
z^zOHe^xf~dOW*!=cj-NE9q4zw?}Gj>|GzKLFMNnkv}lAeZ+g__1HSsLJ9_^&?CH<{
z_>unJFFl}VpBaVD?7#ZOhxE*yOuy@!F6j-U(y4KsAN<HedT^+8|61oOAO7Tl?p-AM
zx_4gCz57*j0PsmJ(Ld6pw3X>vnR0CgCE6%S)!F&~-+%Hxy|_62mz@ZDb$RC}K7XW#
zM-42Hr4$DWT)=_va@LcKrX!XB+I1l0d5~6RUVTz*Cf8&-0DY7>$E=b0nuDTR$I`xn
zzGXQo^jMrG&aNB!Xmb$hmp0d%(WcN>L4(BF#uj4vGo(Jl&M%rUp&u+?ff_|AFHI*h
zc=zQR`bu8+fa#M>6bI>hj?MT3S9ZX#rrfX>V6!<cg}zqj*|8PqE3Nw)&!<P&EOC+#
z`ZsP9*c{qjO5l?u0f&7qu&*(Hi`h@JuV$Mis1W6rJlzw)uWWg=_2+DVwC#JG;$l1!
z`5($Xk{?uvcP>VE`m=zBFfIx9Fpe2ToPAqHl3y9O;K!&~8&_=Rs&ui@i+|H&`XAPt
z5Mdy$?#?hLx-Mqo5e%JF%aOH&<9T)jBX4snbJ-Ex%KYxDzzgk1H0(NQGzqIAU-QIE
zxalc!tRLm?J3F3tw8)lGp1V5qywC@5T#h^C)mNT!&H6l{A(`@n|C?|ePk8l*##=su
zr@UbWcRl#DZBRGv`hCO(?2JwG6(r&7=Jz<~|1M(HsB$~{!qIMQl!d!~ZrByu>|Edt
zo8>ELyr-1gQ5KimL9vZNt~xGigpkNx<Td~+uvspJ$@q(NpRWL1;1hVthcU=;E!R;g
zYOav4K-)YyZ@FRNcN=!cma4XSErDYla<w)eN9Thd#_Vl=1c$I=L$VR!T$kgbGq~$h
zhh5|vb5x|rOCIG)9@Tht(0m1=150N+9QD}ZZr^j&a}-&ZOJUS#C)ZcYSuxKYufFof
zf*;<v=^@u^;kGS-n_juxEPAx*#7^|K<5;f^+ipJwtlH+Y@x2dOb1Crk-1?I9!85i&
z<!bsW*t(n*O@GIbOTn;N-!g2xR5!kN%?VI}O(W*K%?CXNVf|inDKu;xi7)pvwyEz+
zW(V@n<h%oSy<nAoy>}ZWk%l`R_)LzP2cjbCj8^&@<T_2T1B3GF2ODMALzhcIxou5<
zXSp6$HY(&Rs72mwa-3;pKdI&ZI2bk=7;CUmgWD*U<L+YD%N6+wCh+Vs{-gKvUan(2
zp0~15+QvEoIfOQkSa+5O!t$2v2FD_if){F|^!VLs+zR8;VT1GEj@@y&bHBog?JT}B
zJlaM8J>fr-L-M(VIyZPClZ6l4II#I|e0qa#+sk;*IRTC`$yL60EYdSCB$U$UxRi4Z
zBQ}L}vc&mcMwx(4u%~-*2r7s5epEhg;Q~J@PdP_B85cNnPIKSkXXj~d*o;pb`H2);
z0Uep0S|qx>&}3s$Uc>2;qxR$7MLQKH*hfuXIa}Y^X#_i;eCe<)b?uQqL$QI=8s#&v
ziG981Bgeo7>?|+FMoGE8c|l-&+kz#v2zKL#-w!=Dp6l>Jl*<|0n3W2W<;2nREIa1Q
zwh6G5i?d@^Y>fRHy!t3NY&)4CCq2=_T;QY537zwQuO~94%`3NQX!GScUR?5XlX2Gr
zn=BMYb*9XWO-_HRT#Z*>c*;et;Ie0Isd3kPo3l+>o?$*)Z*%A?gJWzZI-Mq^WDslx
zr<n|UHEb$3Sva5_>?D=sPGEf<5hV_6vdA%PhMmWmNqNe7u58@(mwTP7SYI-I)ss}Z
zC>N~PEr)<Dl6Vfc$B8t?o~_NN$+3+h*GY7e1J)&Rtemt8`pV;qwRy5U5Gogbr|ZO^
zn@NJr<Vu#KqPGM5oa$@fuFvZ9Etq?-9pHY>*d$_}ebA6AziT(DzA83g7r7Q~bM&<W
z?)qj2ppVP_N9pHPbb_E0Y@?*FRkZ_a8>M5Uko=3z$()aE6nOTn%{daEZ4}GAVXGon
z!=|}E6x)os#~y7ic3?i$N5+;RH|cvT8x`fs*d@0@v3wagsXEySOL7||_S3LKZn4eF
ziT$k2Mje$JK<sBmKA584O2H0{d&>bZ`3Vi-{4Ym&m!D>y^;%B#Fm~?egRSk3@;y5^
zwfI@SzGP|^#>SKkY#&FBux1@$M=DcnWZ4*i16TI7if<;_0$)yCl!DlWKv^>kGM7B!
zTcx<__EHXGV@g{)3Qx|@_C6{28q{fJ6kB#*>K^h){pvf7{%_foByx%{=T<iQr`%{D
z*1XV^+NsaS;f1a!Z>PU{ng_!&z`^6?DdYqoYA32o<dxQ+O*cgnMdv6&A(qHD_4Tw$
zCF4-H`&$s0ZhTqJ0Hf2hsB^t}lIO+2=<hBq2u66yXMbJ;%BsaK>9ZavNZ2gI#za+Y
z@(uX3cyB_vY%QqQmuz=V-!(fnRSDe|wdX6a8Fn&Soq#RHZ!L;VY257F0)?VsL#I`2
zkfXof<k0dJXmCR5zD?x<?73m1DAzJuY#qwmiHow>lFPBuyWh5__q=6CU;B<7z4e(v
zPD_3CGuQO@{>dx!YoEHNFT66*gKK;@>E^NWxleTeL7^|aROk(NGri@_yT#5W*>w4)
zckbx7fAyX)9AMvJ8Mk-r3{8qt=FFN~h3AIFJ`~uEE~dCXtMilBOxHZ_F7JN&&OjHE
zB_3lT=6>eeC*NFda!J<abgHkd&6`dr4Pou%T2FEY)D}P{`dHkDYP6bZ)z@^Ry04oe
zwq%=;=qp+K5{15G*!#W|zQwU=x#a|i`p9dJ<X8>csXiJuvjgTt_Hr;z)Ri6Zz7?>0
zKZaat=xY|Fs3$5^?ybD`b|CcYH8v_n{SF$PU|-E1M*BG%r4Om?t#G#MiNKjG-;0&o
zyHZMzWZRwY4dt2IxIb-RlXVbIk=8Tgl8C+bCj@Q5?6jCRZsi;t3l_xD&QCQ8;xINo
z;xC{6sX7)PY_YL0m(oWA2_En_h7a{!53=ZsHnov~Fbv`<jO39S2@T`XJQ>kE;9R#O
zZ;fL;iN5;tj;BQ?i3v7tRdY;8dE){nJGzx|azH=S2Tl9#jB7IaV3NXyLk(>5x{dR?
zln^-w?AmZzSHTXsVrz!OvDfO+H?qTC^)!acN$*!|37g0({z6i&RyiWa?<#t1tM3p{
zpc=13#7s)a2Vot#$yIsFlMfh)jBgj%l3ErKTWPrzYF*1!PZGpq{N$Z8lO5F>Y+_eJ
z)E?PUuGC{st<4n+9C*cyXy8~b(Cwt}(w$x8sKCdilp1z2PG;(&9m%lCXS;=Na;>H_
z)FO;)<f<p<vi2zPqB3`Vr4l0Bs<*k-RXl>r`et?gYf(_ByOSfKO+$HY+`iuC$#`KE
zTeS&nZQo-0ZMH=FR>4u}<ocRwi#pXd1)nM+5))B48r$?SVza&z%XP9}TboyloNK)L
zCRdH}tKRQr0%HLgso4ST_rWfdW`J$-u7gdp13AZ&0VX$Xrzls8WNUVyc5QC@YJJQ5
zIf28rC^kx_ud073$aS!Znh!=TuSpGZCG<5y-*758mpk+~2OCBk`3eYpytSe)wLq5~
z?5j?2L!?%1b-C@&+1tFjK4S-+sC&N8`vCse+z)s0%8qB(P-df)w`uAJSi4M*KkoiB
z_p9~vx`{>Gk2hsJ(%K|#6H)xV_{(bd;uPj3{ygiH&+jYxR3$q|X||`KK%cO3LOsdS
zQIXdb+a50lHX=_7Nwv+pDzF2a;(=b1M!(oNo`BsJ@?KA^?PcU=7b6ft42Vw2ASXXX
zM9|wx?Zff@;@^&YZNB4jS6R{uTSA0wbHPBa_V3g_JW*)3V*f7wY_@*`w;jLt027nD
zjh$3lVlaO<+CBW+C)O*S5}sGcwY7N@bD|(8Ys*?qfaJBJetQF~J&x^@*KHA88M2eF
zuck{?ChcU4qfTGj92rBSK2ckn38%j!YVBzEM{IUq(?|POv$GZY+T@bjKuz{x1^vtH
zWU=~lMayYlYC46=sMp7utd)zGd33!Cxu_E>=%cku>$go?nodCnL@2e#;*yV-)m5`$
zH+|GT>n9<}bh>z(2TNp~wta1iaw3a|hd%2&N@(*G<m9%pwr_Q8ZcJNW-?C3G_wfGk
zv2c-DtC<cKvNKr(+N@N&uLKypyO{m#0K_SU^mEhy9PpKhtx{*BR67i73Evc3kzCo;
zPUyFI-wA_`_nojlwRZ8ucHY_AX<L)KiLI^8+uU+J;5Yl^6*LUpJ^kb5<W*muNZ7BM
z>XObIj#Eph8G{bR$y16)cxoT35*TIW7RbjxIU!hj-sd$hwA@>(2gMjK^ymN-LF>LW
zXpI-Tpxl!F@^f=(ywHr*0#(}FSj#)k>a01bWS(9$8MT#{5QxIgIQbM=cP`&?yix}m
z@?uzWP^FcbrCjV+)?PBNx$BSD+V`{OR4O&(1mI1xNrP%?*1!O@)7k;cd|3WFYQ(Wl
z<Oz#t8Dpew<JFgTv&{<RyP2-Q6+VE2-8KYd*VeIj*mPmKRHgX}#1`bnV=m5FzMc=x
zv0mY@E!D7*KI<IoNwFm@7s?{xF`oq+1#DH?Sg{%ZyN)S_ZBS<{zu&&4DnGo*QSvBE
zmP;WAY${jgf2X<SBPd9^s&#R|*cH9uve57N#(VU&Z`;wc&t!VIe9ABV){*}9&%Hu_
z<*)q~{kI>!uhfXMI{bNQBy`-|=1cudZFc`5(VdG#Z+|Y+E5}N&+%NRq@4G|)^0(ck
zySrtRziKe2+C9x3mzY<-9MHF<Rdwx|;h0?7RHFY)uI3Aqo%lizua80pG-k|Hsya|L
zA|2E#skYN%b#^&wn_p=?t2S4CRbGDe<0XvcGZ`1X@a7k^Ik#TboB+~Stj*_kzqUCB
z0p!n6{SW%+*ru+pF|}5)#Lm*@$QfYQ)$|!{EN$NOwb<qd^oyX66tLL<CD>UX<$dNn
zwthT_3_5JE1FnzASK!!UU*kVAF345<B9d^s^(DtXSYMe#U1h@#Xd5fG3E12HENjil
zg+OQt>O$@`*nj@FoV1!-pkE43_#x&5SZ&DiujBk*<pkh=UzqKO?H-W#&4LE^pm)6j
zHuEja0UP(d<7!-rxjrWZ@T&fE;_H@AlYboi>v_4T&Es|2Qk(BGu9qM4H=Zl#CoIV)
zyAml)Z4h?;_o5S|$oXGNpA&#z5s&BbA1?RcB|WGhFK~oIBFvK=$v`A3^Fm*!U@ZdO
zj%;vrC}T6;=p*>wIT}iMpeN)2Sd>amDM)mk@oP^K1sktxxIP|n`~zI!M_{{HW83R-
zlVjkfXXn#3P9YeF^#MHP#;bok1kP$ijS27QKpM438sQtU*|kTcg=@pAkts))V~yAs
zIr0&l!zv%a;h@;swU%FEGBY_Bc*e0Dj+o>qLya0^V-vAOtR-Tt8a0yxRy+2139Jzt
z%aJ)*^AOwIu=O14F&BfJ#=sFGJuzW&J;fH=TyiN;YMkp5y$Q~L(N~qTV_W4TaBQK?
zqa3Y#51#Ua<x&{*goQ+?-GFsIk!z6Sp&eI}T}sj4?AWiauITRFyYv)zeA%e%mw#Mc
zYn1(oPF!mQ`rz19u9^d2k^$pU`;tUN205C(Uc@%<uFtjk-t{$N<-R61#&ZBn!fQKv
zUs@*iIF5IM?bxm(wjJ^lm>sZu1&7WKl+F&g4eI205E({0z}PO4OM(BN+fzA-QqIaT
z_9eE}rmu>P8nzK~ygv5!a+TZToE`9QnT}m91=|&u2+SMWT;v$~QoX@OT?9F+9CeWG
z`pQO|bNL{)Ui;EC2OBkM<R0H^i3|H<<T}uG<5IYu=l*z}Mw_WKM;3*;OF~cj4|{>+
zP8(cTI9Y5n%(<8mFw!`w!Qp8Ae$phKyKFq?x+y+lj6D=h=F8`n=UEs0e5_n1R;-&f
za8^&Y5vM0hCTzYMXSMTfW3F;UZaLxOuFP%UV>{03#FFP3+chFpcMThFChfqnJ})1e
zfsJdLjaQ%OguC82)Q$7su^Z36`bi~9mP^*y4v0{3?)q!c7MNWKawnO)SbfMLP)@NW
z^z+#^L=mCO-@yWE*x<}Y`6)K-DUJUfo4d}zzM&InbD2D2<5_a1K(3CB^aL~4%@i+;
zO*RRK*5;Y0ao3~nm}|kYg>ue;B6F1q*v6s9X63-fy!<7~9XSDb1Bf?YnSNq2xmlZ6
zrFL@e`Xe@DhbGqq>~ekVv90xyb1n4x2%QMr^(nUbq<u+_S_ggP{=znn|I6r0+UB!I
z$6A~3R&pKIbsInY0Y|lCUrLd?e#;IdJ-t!U=6JrqDckh5${4D0CAS0XHn(Hq$CVve
z>!V_`+%+56X5DP;>;TGLU%AbZx1?dqa<boSlwg}e@?Pj8MH_WAM@q|AkP_rx&)I?0
z@<f=8vYY^{j}&cG@xCNBYCdP98aCJ0$*_TU|50t!ekC{8N8SAAzIeC>Hp<d>c#Uxl
zCyh9NWl@blh&*^iUa|%IY}hdFOcUg6IRMn?SPp<|oAa@pv*o}T_5NZJdo8#{Sq(By
zRJ2HQ4~(cPmjPpAi)L3xjs|DAAM(pTYWtA3`y_L@K~Df$fQ|-XsS`w_i-~Foz@b<k
zA}TE!S+3!Hu{pQ#KDW8w?7E=3g!~a<E@<|F8*zryM3YQccPx#m<r`3+Z*xTLf>VnE
z_IU%F{3MCBew%REGmS}7r?fpU8_m4Z5wGu_bc0K`TrGjNMpiHX9wl^9orekO-Q_c6
zFx5@Ss+*rV2IvSBP_R^NE22-xHe;26TZ3|Hn12ZtonQ$q53q~fHSTY7e5Quo=)xj4
z3iWltL*f`6^;yugS<n_C=ujwFHnC~`0WPmWt|m7PoKU$+Yw83S)PcIqsT&%}<t%k0
zXhiB?-Yq8_AlHTs_Y9+BF>G3w?EEZtbWhhM(?>piO>cX{AW3*X`Gtvo<1<HkYJX?3
z&-du7-gZHs`r<^A#s)ezS0zMC%ev~9K6Y5jUZt;i%TE6Lwy!F}`~Tpo(64`L5*saT
zk}{m}#(A#TC8>JJ_;#J&C_RztV>#&LzYEe@zJpKT4@pm7Y4;wm4_&|-!ghOhs@d$v
zLyAz*)Ra59k#CAuIKNx)aVxhr-}h~vtS`)~HZQHsE54oY9rjq)l-5@qo3(jHyXna>
z^P6h^j9y<o;6TK%lQwQS0kZ3lwEY&g(66PRhjmu$tI{vIFFLl=>2npjqOyTavDd7W
zRQ9(Ra4T&wAWuVy_OZv-+ksYYeW_v3^0yfqAnVBeXg_6~<&yxVQTXIwn*~eY^lx>y
zYxY6#`^@$a!I96HJg=eI<7nGa?$~TBl5#y+F8UJ3C2TGed<t&+b045+^C9m$DFlkj
zIx1W9z`nH;_mA`2*Z|N<RMGpWqijl}U+a;hgxx=aL98it9pBHbq!wwR5xOc!vI!Fe
zZ;Kt7m?D9c4e|vOx>1g*TSM1w641(PGbBl4T4qZQn3|H<gu(}5%TkZJPq3lxIYcMN
zLA=Li<@KbzhC$!nFA^Sez-E!sP_m)#5EK+P0Xv=4-6k`RZSKn*+h~#cr{(s3{dOeB
zv|U~(V%%jT@4U(ko6ca1a;Ye<TjiEO@67Xj%zCc<b*YV;b<Al4Ta#<vkZb?0Q=PcE
z%^#tBRzoAl>5PAldO3<d(#`rB-@V3WI$=6;=k6W)=tn<Fzy6V5m&M%+U;HAy?;E~>
zzUiC4NuB${=<oBsSWmH;QOl|I!!5b4ueFU;Cvs?WlXErwgcGiwk!w05S9Q3cZ$by`
zn4(3?i@pxGB-|R5kMNva-9|mC9T?0G)PTKVlYU-nJ0<f7HcED+QBGam1Dp^|4r?1$
zZ_?M59kAoe{LtW$0AcXDsm(X^G2LQ6Z*21oxyL*tgE@=Jj7cRXf`laYwM7HQQ*M5$
zpklgPlTY5|>1sNnvi1{QwYKr^iT>FPMCTA{5vniTce0p8-?Q6QgdR;Tm$vw?<U0xS
zC!6eq>MS;)y)Ug21jabqhA!gdAEuuE*Mu=cqLISmj?LN|<!fv;{5xVxVU`x7((UD`
zws`n1%6o-9-g7%PM2oECP=nl~ocr3hu-z=z<p1{+o0VA<x{4*#eOsG{cc(Mhy7GD+
zo3(j@9MbC9ExB*CdEc(9x&yXN>k!+3&dWW8vUK{26Kqytip?NKxwTA+xC6j+3$~_W
z>u+1>;|WTWiwdsq=kcybw*zZz=X4^i_3<1wY89tYcc-tk(brb(venj6t~oaGS|9QE
z8nE$i%SM^<_BJX(NVv1p*Cv-@`Vnfe@h@UKZwI!lz#4xqi{1`Ur(<btAG-#Iz671{
z1u^yC5cRR9H9CB!y*le(WbWlJkbz!a(%OJXsROG!?5p*sOs<z*Jys6f-qp-WS+n;h
zv(aDvwN|uITu#y_of}Kg1@6?Qs$KLY|7~3!ojNwR=HKLNVgxps!yY`*aRWdDdNk0)
z0->g`Sv2GR5!4j3E>y{aM}#7+Xi%5r(eQb>Zfw}*f^k-tV(Y@e9Zsqr7dj`k)5L>v
z*Ym=+i0^EWq@>1OFV5crp8WwES4H`@3p-l}-Mr9pC~_%KPvtQ;ZgA{8kmYd^Cpzox
ztj=E=;5dZSodyl=%tiC=>8S*Dj>(!dE4B>&cyZuvU?b-WC$cC6iOkO}e}S!ks2Hbu
z<IQi_QJz|PLSU-!q}K{Ads4ZI9JPNtR<4fk%_g@dcg7+~Sz|fhFOmJ(In{?j+jxyF
z6{Bz3t5J0Bdc~IDWY3Gkl!GOH_0tFXj<0>1{ty3?XXzJz<3RuT*B;Wlp5M{ipBw4^
z!$O~Xc_PhoKgdS$U8W9X3f^S{;3q$HML+iQ59t5<zj-UY|9yApYH`>z{omjD+57aX
zFC6IY&oa%hZo&>sA-B_jCv6h~{T|WX%YiP&S#>a{zz;vuZV~jI%W-*DH+YzW@7bqz
zbg{Rnf5W!iw=Y65#P^KaS(kS;et4F9F}Zg77}^{gQX)sw3CJ<(gvn8jc=a3ruCJy8
z;<RV|#t8@XwF3RE0o&O&7dud;uO!o7V3VQNa{%m`zEbOJtY0#A2=?MhZ5W#bKa}d&
zq~8U7RBW?j)4s;<3fQ>WveH?K%;j4eHtlP>6MZx}ik%(y=sWNQ2W+&Gt6^()K>Klz
z4LJpjNh0v<kJyYg-|m3&vpH2(_ET&<QI|8oY(2Nh9)6Q^`Cdj~SwC;s%=WWi=Q4rf
z)chKx?QU!$J`Rb_lx}0$HWR#@@5e@$ZHlBY^Qm=fwsre&`1k(g5B;h2ALG$QwdcBv
zcCp_{1d0um!j)JGjy>QSi+$yAO5I5S8B6f)0iEyu!-Gt&Il7a72k_(yUv||a7!nDH
zXiq+}!S7-oXjUNR4(Ds-s-5MU-=!Ss%C9ZEjstU0>yZnN=;d<0cM^Wr!0kO391ls#
zHD4=uNs}B!Ve}F`UrCRqka4DS2KJ*UG~dtfx#GyxA&cA;>#Tg5%kzTmcvSvj<B4Q$
zPs4uHTnRfwULSz{LU_jqd6wm&*pqyx9c$#i9r@eYVjsXe%DE7@UtV2bD|fO*P9K$<
zmXAHoGdTR^D2sBYs~j7)3D`XUfMFA?%9q`+X;O@M>_)K~mp9rRa(&2=(g~5*RONY<
zqhXsQqI-ut4syNRE7!*fas+4kWLWz)7tZuS+mv<mg7Xb5*d_nK0^$OEuiS<_EMH!z
zJ|37Gbh&11{L?m0ekAB%9I1Ofsd8m<WRCwC5$Yr4I#1HBd%+&DWp8tlBV!o{iQ*QX
zUC33iG1dhe_dUL5dF^+qua+y}5_07>XPlSI`+n*te~SL(pZvel-~5T6puhB&{vy5U
zP0!Q6^!tCmw9B2#OTo(biyRm1+~&-Yz6S@ev^mRpdG~-epJqL}%55e3ShS7V;B%Dr
zT-1hGn^)=Qnmgg@0PgO+?lxZ=-|NMN?9e|vST2NS2N+vt2S(-5=QfxiSB@4vbZwsX
z8d$h3t{j_Ac(tFaTp5()86k}hHMx@5feZ3H4rT{{O^*N@wxipqNsjy~HtS0V;U^wo
zqbAo!jvQl~!h@sc%V_$#zub#_wBHxEQCGmSWuwFn@V6jO!(2+!U$Fy|*eK!lUi5@d
z%p8sl+YB4U{gmZ)9qd5VfeX(&qS*J4tLfu~=mfCinz2PYpf>6t8)F(#saU1&zz!Ua
z#!sw$>3TBTKfp#6?@Px2YU9=sN!dnBcBT-$AUZJVQEDwu63uB262Y>x%YaBg8Fo{C
z;ur8ri3ca4IA|*74mw#Gmr3qRuW9~^3y_TRX(gV{*rtyj-Os}L&k?=GQSF=V(+vBm
z$D7MhqmhSfbCD`#9G%M1!o_lV@LXiZ(SO!w;hvwQPFb`kk};VG{Ovpm<dam@qVy`b
z<g;*EvobJuy<o>l0ge{USj0#)GEVx90ow@9e|}e;W}P=>-B{+ikznV@Q^r;_%60&D
z5?ikkfn2v?<H{u}JkttWJH;@`WIHW#AA}=(!U-Y%c8&}aY@;st%27Gh6}wJAIm&h?
z`39E0a8$V}_T*8vd*tj<-g|8L5J_L71Z>DhkSc{X57;1g)`1a=prg0>pq#UI3UNq|
zjd{WuzsnVE&T=gxS8em7$hEjm91Xk4_4?Si`BadDViXz8rW4qhmW6?E`e(rw+nmR0
zZF7|?f9H%jV9GW(Zu%;1J{OG`4s9-S%MqLQGnR|CdDB;G^8)P3?~X-{oa#a#MAc39
zVbt<j@?*?RUuR%vuHT*ZC3SE?Cm>hlcjqYYSr(L%(}y&oUE2IYQ}XgDSE|bO%XLq1
z#6;}AKx4TDo#0ak-sZB|JImh;TkJ~%uzQ;i&<U~inp9Bqk&r(lw;U7Rmk{J}ffEzb
z*Qhz;cy7UMF4)lK(w9a=q)!ETnvw)qh>aT1uO(MP72MHA4N)H}`WiU>4IA6gBNmg)
zoA20AUff2tHlNMDj^M1F%|;C?ea$C!K(Q5IC+|!9eXyT}<o?)~nvF91sbeJTEBEXD
z9(~8LrDg|4*nvsM26nQf1^X+n9hSA?B>eyKtwr^5hn#4(DBt5`szmhRTKbaBE#QEa
zq?C-+P5@2F(*y?t&+{*q_ugCN{LH;f&pkc5vsq6mB5HZiT>_6*OgND?*-`%%{cYt}
zS4Y_{lKdBhpakDYYMU}o=1(_5Y|bF#InUFFc3Qc@`D0O$2t6X(AF@Cdr>nHNAGQc>
z9x6VF6zGJle;X}B?jzpq<d6s3K^H8t-=jZE;B7{^QB;_7zoR-PJ8_l0?!1AGfBUi0
zhkolof8ztMEsj-ezzG<Lugu``#tx}DiS)<>Swcy>-#752eD-qN)FOL7-Yxgz-6_1g
zhH{}XL3vPXDVO&3NLPCv8+jYpRM3f(E4*Q&h)p&Tm6k->ItOeiVk;ds)r}ro&8gK*
z>L<158y4#1o*cV<OT(r?7G?Eqr`Y7wga^`YVXyvf{*D24arE=&7Ki<R_wnO0x32Wr
zmnQniXD0f!PafzuK7FJQed3Bf@ydbTd~cu^?^pT<zx;qce}AHPFPj9sS@6_8$wtA?
z|N1rk{70@A9k2AvokXuZsPy2v(l7nyLwf1{y!@N!6Q7&tqo30poUD%bA69zpHU8T*
zef$N@e`0cD{{M@i%GmbN<+)G2ILirxmtLLdH$QV+>YVB22ZdgIc%-K<65U^3`x~D+
z(C1z`(u)s@oLm@EuM=t2=0fj7+UDeS2Yp?<<>HuL>0@2V)hK_|kT-p<We)n;+B|s<
zi-xU+a;>DSuq!r#P7vsaDD<VY(#P1>@~W@ZsE-u;3ch1QALakbo=9EwCCCl$cWhnx
zsXngz3W4glN^tOo9SD6zZQeGv*OoQn4}RY>^bKEmA%07<pB98T!&zQe_SN#ii2oTU
zr(yu3Krc!{YtP4WMl*$gbiri)Y73}zil|n%Js)kq1zTHC!+PA3cVk?#^0L|(kn-B7
zGR=o#b!7KFB!B1Q`XDw=09f=td86wDhm?1^wkSyvlr8#eXS@C9JVm%(mybE*0Pu#U
z7U`e$c$HHKIHiz9hhp%M`*8$=8+q2anlTL0atdH*ieQnm6;29Kf!vg$(LMmXMY_(d
z(M4ji%cl$4gmS5SQ2zMYv1#L2=5JZd6m^vNj!#`5BQ@-bRilTi^HpmylH}Ox9C^qo
zD0tH6=K^QUAjhjZIm)7N<Cr5)R`bwd8<HO1)nkx`t$-<xa8yeT>bQ#F?fKl}kxZS+
zjfg~$Z!e}J*tPRE&jDMO-OqxZ++1_Omb|mdg4gwxzXeD45;)7L1Z?Ek5;c9yolfX+
zQIX@UJH2`oF!}E37`{#0Jm_!I#W-O%RIxQqb&(^u=y``wx#SacqP00M(rPDHsUhgA
z8pXSJ?$F0S_A&Z}pZ_5J?9cuz9j*?tP~rCc@P~he{_0=-EA-r(-a_wq$GhnHWkcYN
zZ+xR-nUUB8{e-b=6gcFb3L+_ST(jhGbPM_l>@i<~NG9}iyI)U$f?tmHu@Dj&re+6Z
zhr72E)=n0ouDkoy+gv7DMV(gMM#e2KeJQ1`pC`z5tIa(kY1V<z_~qN_qoLCo({I*^
zEJt{CLzVSUP9s6Ceq=etzJcLW1`pL&`4qHyZ=+g*(gH`q+D2uQ<6Pm?$iWUMHh!^e
z^13}Gjf75iZFxwNN8X5yBIRE6ex72Rr>-yfqKBwEVIhM&W2*&pa>;WqjCO*^ZB+8U
z<TO1Mwm-GpAEJXp$6Tysaa>vroI`FSl}aZ35X7N>ul{En1E1ud_A)oQEwYmISf>gN
zlVO`tR{VPvt=XbCF$rlUWGzx+#a(Ige}`pm57Zm1Qk>+<zgG?J6Z=p{`xm}CMK{E1
z4n;Ppsxm@4b$$(Vbh#^eJuRZSuIfcZZ|bqd`2BV>zApu+jxDu1F;*w9IpDTBI}8D@
zzi@p|2{Nmv4@a3tbs$<jSEE!{E!pcvJ9VA9zNibN)K})u_5WMrtJAu6Q<0TEty?Mu
zxt_G5maVng^b|AN?$xqLNGnZ95pi<W<vNpvAJ<T`$;QS)iYlGx<a4Bd<W@tC@}t$)
zbYNRQ3U}*0;CT(-0mvINjdw-e=Q;{mSBa+-sB81p3xY01b!_h@Ux1%zN3EytjCH5b
z2C4OP{*?&gWO1c;p0xSaKSQ60lI^9oan<$X{?|mV1|`*~?d^BM`>#_dnC#T+r9D%t
zQ(>IGG+GKo!f!zAbrkaJI<{V~Wu)zr+VipRq~yAzeWiA&%ql`8UiUgmKc$G0Hpc%R
zz5is=qj?6J?N<%>@+ko8c{m#({iQfJbCQiu<;CZKFS)yfxo}Dnh(bjJ`MBIz24t<a
z*o~vnHz0C<f<wsy#tv6kQg&hG2+ZUEuCK4<{Y>pTgp&gjxVPNT^r~Eb7bgXd2!OQU
zw+Bl(zw@32JbF_3#yKt2n@05&B2OhjeK{yC73TTO<*h+0yphTq$XCn8>BUmc0c(?N
zlx3sKS)NVICBC~u9A&#KA~cHDs8g8Vo#)>BO9^NZUVK?YjOrI*E^pTH-KF-qqST&A
zsDc(53qSj^NwSnDX|slnv2eN2s7SDpCMFfi7xpCxwgc7il9YOAf}?Mg@-jc<1=#}o
zQr_p-K;<PI<&I6UOJA0E70n62V~=2~z?M{Qq#WrI$t+Z1OhGeYt;Lbq2j%o<s*=2y
zZ{^d)hK<Vd?6P5)fxR%#JSpvqbav*&XRIQ3!v?vso-f$Mj_&Si&`g;yRoPJnhkE7B
zYyNgpn&qo$(d9YQf4MmH|JFbJB7Nmo-J|dOZEv8DefC<M?d(K<;gy-5+D-J1dlUWW
z&%Q!`ec3d+cW=?Pq0rkG=l{Fkx}%@^&;xqmwL%~J*z$e%3;p~5*7NkPH|^;IzsiAW
zg+Bc8`}Er4xc|UM4<e7}E;NtRhd;%Btpok^haSpi_j6C(g@f}b<K9!t=J{_en-RbK
zQ?E+jxO;I)ANuqI4cb~Zm+$gM>vHd#_ec7<k0$yDADQSP7wMmOcN!o`tZ&RMzq@oD
zGM$iliL`mqHZ^^vD&-P{#QIp5dl!ACfKBBNPXFb-X@5tY*4m~?{+6ren2^Z(F}C>t
z{kxX>rA@N-J*9^OHt9>HYx9O}`O~C9hIw}velFX%V{AorhIMnNZ9W&ZSzTXpeYC!&
z*l5AVoc^wllFU2W0mi<_Li8<S3wD6l%p%uB#W(Ii3Fg=?FiliD!0(rTFV9P#?(9J8
z=hAL0(|mz`j6}FxF8ML8l|CsoALI`9_O*u(MP3q6xje)6wZgvg@A~RWFd04ep|pH0
zOg;R714r5CBKlW7KY#=eFXbG(xz9>Bd_<5n+g^U2Z8tmM@4>cDRZj|V8DBqK%6S9f
z4o-pDhJg7!#MZODh3%hLer68V<c`1hK!Ta#NdOXAZ=V8gW9Q@j(tY0MTm6jNNu8us
z7VbPSK6B@S?%utFM$tify|dDDE3b|@P;@NoaR!d0lxuu!#x8uk76(z$vz9`4f<`wU
zNGo3_(n*N?G|p<jAJLuJIjh&#$n1<A|7yEJXRrwtU=uDhB<nDzU|C`HtkeN3t;&t-
zQ=DCO8(X_h5+N>aHcuVa4!dFV>qo<u&S5p)EaNSIB&@iG9M8$sv45#@bZkWii$}s{
z*KBYHJFc{W?G`yc?zQxd@GU3$8TjFElH-=Xay|F%UebU3!~cK!pZy#Ex_185jvm`i
z=KJ6Oz4U#*>vz*1{i8of-})`zERlS#J$Rs#ZS1gied~t46Xocc%{zTP*SFA@?D{d~
zn9tb(U=@m*l(*%0E4Ewgz{)1k4cO#5*eF?yK8{>(z`BY3jNBf(Zy8oA-^BWu*v{C~
zM``o5tzTo~3F}jf?(6-xjZ3;&Ytaeoa_%PA%b4}bgNHIPuuV5DPEY&--slZ%Lux9P
zD1Mpv@9)y*UMi#;apst5wkPb>2Ioj$u2CL=b_5T|byi1J-6$vW`J`|3rTDCrC&wPK
zS&L%7Qyo3AZp>B9j-Hg?fK4{i9Gh*HJsP&?FijpA^a$A2a(!HE6xy3ClBb@?^;T@&
z=I60xl&{<THtem<zf^2mUP`ZzO(zgcP*>QhtY^+*YdUeNkGA0$<-XPCqK_Nc+qa$S
zW8c?Kv7MFc4cHz>uJHG6_LVI=uvvbCzBXGN<VugL6F9|m#zqM>-xjvVXmhX-p0QCk
z+kpz~In*8Xv24jTVq5jK*KMOr5I4x}Hk~-p$AFD(JugprNdL?$M|$DanQ%x0{W3{3
zqGCs213||y4qFsw2AzX_n2}W#cdRt-Xl)?QNyIsnGQIn4dwSoyE~RMJX%HMAE&5RO
zO^3dqe|-RnG{f@XORwBl$HFjrK!?s7`c2Cx?Pub*ARqo;J{7`qw>|Ph`5FX24=%Jh
zA2n*owJ<G0^!|e@iUD@^vnbCaPQUpH0@UmD4k2meNjXlIS};r05n)7_=Qi&rq8LHS
zzoX5CQ|ij?bi&=sN<a322lNB~&o9t(mq~*uuuCP5Aw=#<@;K=zP<VNb1_d#nxpn;}
zd@Yyy(%|D>va)WV%I(=2+ixZfU_b{5b<4lN{ok;)ceHX1`tgc=(|O*&hH@BGwHvwr
zF8le!$*`^PJGRyHRg<FLhE0`sz&p0(4g=i%<j*080<GnK4qI*i!#3;<cL#dQ8}{_t
zRiTGRK0(jEHC{(qn<F$c>8YA`Jh!8#?j(BOJ1^*s_p<NV^9BL`>mUB|!{zx(zww!C
zWqz^1Gg`|n=mY_Hz?LF*Dc{nGjBl%*+{H<6ZBEq7y&FXHhAwNln)1^&*Sbw79#tRh
z-O?Gz@;fxaw7y7GumL{wb=$9mHeZ(qouCb!IFaj0AFG{w5ZveO0BvClb|7{78lJDA
zFKy^!I?;)(y3yt<xpVpFK7XM9^oQO_-~axn7pFVuqOzUh#)*Iw6W})cDJTCZuGf3}
zIU$HRM);fUHtHY#_mEp~bhQ2a{J66Hoo%n}<k{ur-f^h;^a*FvnQHW`tMc%R!HF*}
za|b?2xx-0D!)7=i_jhsvz$V@Pvk;f6jX=~QE;$K}aqNpjr`G->svg_tud_W2ADl_~
z;#g>Mgnv{A^@QDd;r|NP*~-yCIW(x2H!df6-npL&j#{FDXFVdz9nZLxh9M|VO3p)W
z$3aFr4sLa=>Skv>59)?3#iPPmd7?~t;`3bJfNw3Of4^*~RLhp$u(tdJx??zEM(lFy
zs1#H#6?I4Fr7QZnZpe8K*Rl!Z-`3tgB;|0Ql?+@K0Q~=$PJ`8E2-vvMqg-WYYu&~H
zTZ-5w<?>!*9UL3lG_=bQuvh3S@5p-+P(&A-!LW$)*yas;>J13$t^wPYPLz!{pKNlu
z(dM%@tnNY&ij^voT~cZsm&35q*QQUjAy=kMdGUo8=+{5;5&GE2KNgHdJ9?~ZwMt)n
z;fwT(zxWG6$M`cJ_-Xpy@BLo-ZQt~biy=OEhH}O}L$2DFnjAa1hBnvoB+&v9+ge|5
zvja^hR7ciw9|Ip}dp~w!VFy%>^GUxKY(b9s7Hp^bXm+6KMA^`Zd2I(6o2+=1LSS32
zeKMN7VWWCGaK=V$=;M|h@V><ZUJ^sol_$_hRH22?Nk2y^$O1UX)%wm&HfnesHfrnI
z^iv&Q1j>pe5u=sbsT(={f$?Z-Tq3F`<=tZ5j%B8G1mBl`_G2-(b-GwsoQ}eT&WrkE
z;??FF__rS)#loUsk$_8&-jpdw)kSbzgiz<y2@~m1W@|QGD4oGpSJ-0RKF@8AGhd*_
zkJS%q>l`@N8n$|hZR0xD-C?8Zj;&;M`Qzbzes5p*S!{L!h)#bA?@sMjubZf0OHuNe
zGx{<7AeVKUtJ5r$<Nb-c3LQ@;cht4j<}S#(>bX%T$eXOw$N0RYIa}$3ag);x`Y8G;
zay`YC<Hv01gx6i$r$@PX6nkxsV3UhuqbB!=Ey^{@{RA82eu8ZqYSY(Dt!`TNwRHM?
z{DWarj@{G#5c^X24Cs6f>bKFig1*wK@2u^FnYFIX?b}Rl;dM?Y5pCRBCt`oO!46no
z%d~9=G#5^&JIb~C|7mt0_1|`*9av*4>o)IC0G;Y1_4-&h^s!Y-*0I_xYTwKOsGT=F
zAMFNhd{?~22WE6^({(f<z9rI)0CT33pRI@O1u$>!peV+P-dP&ttRp-B@nk#y^`{*p
zm}XEWv^&hXZvWPKJ?I`Pc%egZ2mi*EGiXG>&zg7Ng1q)|o}N#00z}?tp4)EmLK|nb
zl}lYA$ZLzUTCf;LHIh}Yv9ZfW=21o5(sB}?Ovhy1xC3{+QBhcs3~7)I&(&uQz@V&i
z<;JN#s(#OKrsuFj&DVoQFAHzE+>g#M7bJiM2Rolm7Qd*je<YfiZxw6^_8io4swb1N
zc{A>ClAa`AfipkwJvU&}Yc1czMv7h3h^fD_ZTL~!7+C6-ab?END&vt;+VhRrgcT#J
zT;*8_M#^d^igD48vYxJ!B~67s;)FOkHj^XR8;}Q262w+~n_(mJji|in2uJ*X`lTzO
zCKP%@W;0+}FKxiIYLeRk*m&Lhh5Ivo?8QR=>f&Vm#;@cJ&K*7b^g#cg|Kb(;=w~NM
z68y#Gp68y~HD-z0u(dYVe1QqHc{Mle*5<M~gGB8T4euv`lgPCKo9ZJ@(zD!$CRfc_
z-Evq|=%crB?d4|JtXzH>JJ7|jjXD+}IL-o1Jm{6N6=e|+x+M#!fE;Cw&F`L9*rcx3
z*T6ZW@(KDVas^eQVUx8#HEiTMpaY8~OYX5@gS(m>v(#5huaCw8z`iB+DRugosIvn(
zhc?fl+^|7kt*@v)s~?WUK2|+V1UsPEs_L%gRy?r-YNPmcfCe!rEu=)-&$CniNRwit
z)p_@0Ffx(b*R}nO`Cj-Z)ZOKLzL&La=dnS?753AG^2mx|_h;Js`bdH(47>Rtb8h1n
zwM_~4Ypnh4m}7`7z+9p^{a@eYp_|V5Tr!NfJRJK@IH{B6P>jL>9~S@@l<Up}X_CvZ
zBhJE;#Fdy;8t3&0?r`H~X0At8o&&hTWuVM@jDl-tXC42q9+4yA*XG~hh-)clF0rF1
zFmq@#_9N~Wj>}nj_SxaYPNt&|>S{zq>4cw?k9>^6fzHltes?x3MfpD2@LdZwy%sE!
zat$&sc_qD{n_B8-Iq{K?Fu_o4>WCDqFiebHc={K-3D}M@!BFgc3{I}0l*T0}lOxVV
zot5{z0&A0_b`X=BbQs4ziP4j~m+NbjGdjQ#4p@F(u__<89g8%%GPVg=JGq)1ajkOA
z+UApC)ePM#$0*m<xfR<{zDe3#<l3;w_0)7?wrj@9T;a1iYzJ)IIMy*@pY(dUhrfGv
zIRabJHZ{5OZ`>>2tjSe$1ahnaTc?lQ#vDz}a@sW=7$8?`W6{?gu1#OjclcPP$u;uH
zzwqLV^q2nPU!;HZGaqO@J8A#b6F-{Q;8%a;!}NFl_TQpE^B?{P^l$%Le~f<q=RZiw
zd%YK4bej;*kh3^wWwT-y9`+3EN9#LLU+0KTuf++U_1Lc3fgRd>YIcBdJc`<c`PwJQ
z+Ry!{>|XUV+5yv7!#0~7bCBx<Y}S_`SN>1+Q`?;RXeA#9uH6n)<>}{d5q)%hg+3<L
z3ByVOo9M`}woyrJPHgi$sJ=FxFdH?AK4=~j?MpjgbFTZ{=yt$t77I{q5(&?K>|5Sf
zHf@w8!zrEpoL1P5z&7qeUn;OsrW4Y4te?*(Hp*>(YC5nRl@Iwasa*Ma-Z)XLW~1iT
z=Fo{_G49p`nz*?emkt=0B#LsL{S*XOa=?ZxVcauEQFL0wh=eEk7kyG5slk8X@s;`G
z=a73rxR|SOsPo)W`QwXlh4b?h7G!&j@6#2y?FWs_Qr>71PU|Wh>&k<^8xl5Pi*T$9
zKR4?matg57nTm0Rqn!K3q}T+@q{p3wqkT~Rcq+xI{-&v66B`BYd&SoB7hLezFcsyY
zuF9ER5Z%c23dg!(&pL0K&AH*&)SiwJd%(uL`a*Z+a@EQF{&EyY8rMyzPvnU4o#n>&
z3D%0l<SV%f7RQ#b!CHj3eB5W@XP+^K?u^@h)-f@U%D*i<{aNW96`SU&5jiuqsqx3N
zPKaE0x=7+SPcB#FT0ptz)Isyb@MfQFz%sWzV`E&!+dR2km3KeMcd1+(Hj^ta@)?_a
z%cz7dk`sU`@|rNVDFhTCAb@jPU8<95J~ke7iD;F421(xUas_sGXi5Ge#on+Px4r2^
z5`K5fV<K|I;!<)3rCuKy9p^=%gd9O=b1vs^^8goMtEKfN!zNT2BG<w7bx?nn=la_1
zp|1y(o6B`pxf(XEyIOEgf<9K&x3t10CyB&XYn!vhV0|}i7AZVPE(XPBT=-mWG#?_j
z0c|RBr65<$4Z=Fla;l<_$!!#)5F3@XuZdj8guVnjZ~+^2z}zI-0rVxdFDEvtzz&S2
zud~S2^BHjYKFgRX`Z~|x-M2Q^d<TZDu5DB*qL19akH_9d9U&)v-rL-4R53dMeU+Rm
zQ^STf7rE|o>r2QPAo)3{<y^5f$N+uRMY`tOBC`X``3^g9fZX}rV(XWA)gW@yelK$i
zwy#XvforuvSt9@WBqHA{4qdKmk((U<AN2I6<Onb-7tqEqwIt6jBqzXfeTU`Fwa=5z
z7i55I4g`(zCUF?Z31j(dU(QZMkvoAZQ@$Dj1z~sQNuN7dE(GD|uH+jdGxUsq=3^*u
zbPWiUn%(En%583E33$z~A$lqO7r6nES1YeK4va>E^TLI43Cv<=k<FP82ghasJvK+K
zn3qQXh$REIje$ALL+ym?E?~2|75%L9&_S;X)8^1D^IVY~PQ>U5gCgZZH-qs>Pm7Z{
z0GZZ=sY1-bSgW0`wK?*#ww-lOt<;{%4W7a6U6@v<9L3RTb87L_Vw~o>*^%2}t2q6@
zbqO{k0wp^M3~bVW54u4n0YPhQlhTFQH6pSzunOgmU{CN<L1%FCLf#GRdcR^zkP~Aw
ztUb0Y(bw{AkZVpBv_)V9m_a$D*tp;832b1UC&A{|_HFJYK8U?hY#QNT35jR9*6AR$
zE(w9D{BBMY^vs=+F2}{b7Hx9^Hf?h-2pD#@ZOi-rs}J6%zx;P!ra$x7U!))U%U`7b
z`WIfMU;fS4#0J0do+f4HIfn(hE4HILw1G{c-7$_gY^}`+`Y2er%}aq!^w@;n$n{k>
zw#2Cnov6?WZ}WmEeA{mUwlr*%1DnuR4e3N5$*|QKr}B*vK--x6it1wt*vcukq;*>&
zWbIq3uOhe9+FTsFXya;qNgV2}ubFdR`l(~16}H-8%lJ0Mrfn|IllA-B^l=D%DcAvJ
z1VG;@2iI5WD~=6*VaQeWks38JHo62`ozYje?EnQE#Z+GsWuIX`4+poOE$3`=zDu6N
zU|*+TUytC-w<vuNqJ@3sch76vf6lg}ytD0xLwAC}u$g~vYg{t+f^OVO$;*wkWSZM)
zGUxaw1TlC>gZ*CL{GmGmkP@vTZ?sbv7+&Ks-)HPb5eDsS$8YsRS#-7&m9eu`5Q-Cb
z<11khPCD@wC!{%KCf)Vh!2!tSRFvCESVUzqmXHu?DLOO<wvOMka9i7MK2-|XkW7$w
zv`ag+FgjMf-*#wbOU9NPHxs{O4`;hXpmQQl!IpjUw?jgywjkhd$-Y=7M7|1ZPuA?`
zf`?|OmXPw=_}zJ-TuhG13^0k@2ueh@yOh;&pbnM6Cqv2Qh)Fj!$NxOFNCcjY^YeV)
zUa-<Bwxf1d83xeE%I$4(Z983xE%_0ed1^ah$>eO<AXl3ViCiN#U^i?e8?j0mB<ovX
zYjW+eYgB}tu)ySnQs3qgJ9hVXpc)ZJKrJ0s!ETY-NHFPgow0~yov?*gz{cO^Z9KO`
zC)uz<ZWVImHXJwF+_1^wdC=s69Iej_u;-q8jy`?wZtH)`fA4+od+87U!9Pqt^;17d
zAN=6Y!HKD-H+X~WC;#r>rTeeEO8@-t{66}c_q<2?-JGD0kaMv%N8hO@*qU4$HrsLM
zO!eBAL|?J_)B2VgY~yqjIa{0Knx!OuESBp*<*GU$2S<JKY}h0zEZN4#3fqak(urL6
z@Om(|Vs;?u0+@B`Li#;8+z42z+9<<HqL1M0A9c4q_H(lXvCZ8^S>K8_s>4RIxgz${
z2AiWUa63Ctn~f@F2Zm+`RF2I?k?X52><8rAkSLjw^`w+7&T6w!+j3P~&-$s(o+8-A
z!8jMUQEvNd)B)|QlBiRhMS9|gq;IJmP&uOC&PYa`$Q{ushkO|+Qr8tfg&>ht8W<>8
zeW~t|kM<YB;QM6?pm;RWCKNJZt+oMU<!Fnf3;jaLf`W9yOW-<$IE~&z<{I(>oFUY3
zV2#@J`csRtr5XZN!)62-Lw6M$P^fxjmGo8Fy&%7)+OXM1kW&hwJlVHYM3N@0$G*+#
zHf$mn{%1AraEp^~jN48vgQF%z{&Okn`=}-D6R}tF&<-^l3Hf9q%>@<$cvB{embNHc
zeM!NyE?;U~^oEsk?$98%gEV(ZvI8?B<3a%&?zWy)DC`{Jx}wcp9|+Nelv^Zrg3L{>
zCKFYN_Cksg!ni`C_SjS>D!#?uCsD%qIE%D)T9hW%Aa|9IwRwV0iA-a#jo?rId~BmF
zxd^sOIC0qmv9tFTe7~(0s`ZT~cfB8dg{Xf&c}z0ir$Wv4-eNicy|z1Lai_8r8%jZM
z0=7cbbVM`a=?xk8CsPq?ch$!NS!CR!b^u6|>PiV%^uyZe6tcQa=G0_P>OvA*V)PpY
zIuP|$?$6Z8?UY)qeXGa-r+8a^%?3JDw}%N>&;|y+nk_XO1#GVG(CA>3)NbhiDJ94q
z_OZPmvGZ<=$xrRK`w^L){Cti_kNLZ73<U*%+c4CZ!?(7|iDuJZ7)8C*c2@Tip^ee!
zYY=orRHj|?+(Z`Z3Hk*U$@;9gO{&^@oePlDC8+*X$hGOCwOMs~hdx?Ar6`Tla{01U
zf<#OXItPE!=M3>@Cogy+XL-=nsiW)lrc=#%A@lm$=J^%xvGN0)I!+6LYva}DKos^1
z7>hvV%^*0K*tx`kf4uhR`R0W6Nk%zyMoUfr4uS~|{EUsIhv57lv7YgAOFj(;lLWiT
z8ly$M@;5N&^oa5T2fNW^i4%<-ceJOX`~0vRa2m3cZq@*v>K$(u$#FkUVia_ZEHo+A
zw4c`iNy@b24(Ri`ma7?*EJE+Pd=p3ZQ}KSu?-Di$#y0H9OuSH&fL282(87hkU>U9L
zXT4@@;uKfx+Ne5`FgA&V<!6}&C6BnaB)+3yPr_@SC0g02!VH`0fUXm3LWDXg^{jeh
zZ^A}u=$W@aT`E(J*q<WU)O^oc|7dcaVOKyAB=0UFS4t5Z#s|@XEWH2vZeFWpnZF6G
zjpSb7oB&9GT`?+J8;dh{FYV;dlgXW*U!0!PrRezI`_+dC=+!pAq-)wO&s<#I0j0HW
z%*(r2lI)aZTPczKs&AU-3pyeB4|cAPKC86T9PH?3?)s<`QLgL+Pr8P!K_4~Y>m;(2
z2z1?zfPRjmm!i+Ss?H-$cG(FGUGIxNOPdcw8`xAQ#$I2gZfo<S>dz)N?rR6UA9*FJ
z(&(7JN_}H%b9p|sQwTCIVSV+1DS5vnw0Rvju%XRUy3oE_snbX8=K))tQEqZn-vB!*
zYV2!i#6(Mdt=hLJ*a3hks;_=Bpf<Ux6GnAHv1?y3>Lm3Yu)bcZTt&{H08Shbc|gF!
z=)uJW_LJ=-+h+~p+R3|pquA_g(M|WA(YXf)KHFNM^oh1#f?#y>fSvota0;v<Xuz(o
zI3EnKb@ar;;B<0?`_GO`6zGT5>iX$U*{n$IBtToQR=;i(igEt&=)aR302PyF0aP?H
zrXUBvy^9Na>fW7JM&~*I8`a7X%56uql^+h;5gwUeo39a_c@t-~UJvRpm|G@kDW6Zd
z>!q{8DP9nHI=I7W>YPIJd^7j=<MM0Y#tkmmhY@4P1~w>g1@>Fzm_YS2KPI->c2xTu
z0H;`u$K0^$;1aQ}<>+!c!~d=kySgKK6V{V&acrgSIws{<7xTR#$9Ao9TI;}CuIJkL
zk+0X-POh6=DK&ohh@HZuaov~L`2Fgy{wn>)fAz1@uYCB!^b<e+qu$^D*dP1f(qH%s
z|1bLEf8yVvKmX_cBZ@!6%D*4^(I2CK<&S*7WM!AO!{EAZ^LYy!<d{}+-NO1M<p40b
zS-(Hqm$tF0zJluKQL#M+SG`0G43CD*Z4~--UFmCwmF?#=-z?W@KIuD;lS|=|unsLp
zMYX<TSZ;0eN3*B5_w!S1oK*O!r|ytNFV~ZCtBp(RW8)mTEWQA9z!p8h@yh)xjTi+d
zsqfG~;fr~jKPYE=5l574=*Y>pOZwc)x{+#5L5-ZyjWl;6;W`iGod0qSM~)q{)%~L+
zZ6w#`*z-2z|C=Na0a-aU2mT0pOmmJ6$*7{#kv1T(A!4)R$65CPi4%E?qhb@A+9Ywj
znWGulB$^&|xnnNaTZxQbD#D((K405L$RN%sz2D`AIhjQMWPDeFe?G0TCpj@Nhr0dw
zTd>)Q;f5`fQW6-pgb8dt!6xMcutmpVQC%@?#gb&wcAImbK8r1uXI;=6k9iK*Os=Uk
z%CBKihvMAnBl1{8Y&YoRx_pgon%e}vFW2n?KZ%`E+wdoi)=JQcZMmt_y1-_oh%NPU
zJ<;dkHo0o@UTgC;HcM7N-=vRKeI47_vIo1IVoP$*jXFUZ=uoZAiGm$Sumk11KEe)I
zc><Pm`najD1^qOo^ZFX>fXR)dFEty*&a)|ClXYa2J8j#jlYX2Y#YUaBxjjGF2Gcn^
z5cJXQKrJq(jLoj<IRir7&}WldrxVaew%^MzD}Kh$zB18^_h;Eg;s3{Tyi5&?MEXh_
zPtex^J|1k6BwbeXNmUhtmRHCnftsRJ4Jcvom%BuFFEV}QoA>nf@4VFK=i)R2>Vzd~
zxjagfLnz0kJN#d|{{YDWM{vy(*-p=sI(^WMPj#&EPsaz1=6w3jg(d~H8*xJm;=p`@
z|84^xo!SA@U8Xb5p*+$@s24*wg*>7^M(Cqa*PQ>xQLWRT>eu#eJ>AgCBeoi@-MJI7
z@!Brwxb)QBk^c72-lzY?U-%;3T@>fF2S+%vv8k7^;{}hC(AcCHn9^thWvx`<6nDMT
z&F=(9U^*$sd(D~5m(uU4yGLo`3ifAn!)7;aVUtLDJDGknHsKks;8<T_BRD;)>BFjU
zjZMD6<c2oLwR-ufTu3$_tZw_Z9^2Bk9dCa8b`0<v*q{{H+ici;1D5RxIN0k3HvP64
za<f2z>NKdLn>=3JfK5cvVGFl}a>rJh-AbilGr36JDe6RO{dhwk*Vt~>M=dvpzsa?3
z$W?UW7JXdn#9ALICEuv&v045Nb;|3TV_#J4XXV}|A17tj=I5|&ws|`3D<$U7NUu*P
zRQ&@s7I$d#^Vm|8d&pbT>gIoDdirjrPu`#CNB_jz=ns6yJ$mh7I{_tgm6d%oAN7qn
z0boD1y1v|LiLG6+U>Z_8k(*bx+amVuWST|juitGaoXPYZV@GHE2|fd>8_yeUkdJAk
zb0*FobeNPqWk^c#X1<Bn<9itXy+8Rwe`>412Ca(4JcGS^vDckw+~XXFK`6R+L_XjZ
zOnOv^)CO35)HRM!tQQc@d0k2<r<NJnxW%n}NZqv@Wv@D6OF2AWibk#uJ>PaVryM2%
z<}7Lx;pADHojZJ8_gs2xb1c{7E6zhz>*=>a+1$Yx%Eh5li&Ol}Sb&J5VCC3i`FZln
zA;=ZjD9SO^eIvG6j|v<2c!#a(WI*Javt!K`(Tl~C981o6jHl9S(YV4!UERPoHqLZ{
zTy;@dwsj&moiMo;wE2Kzi*smm!{%+COeaW=mv?eC?2o9AkqdvT&27hUTdvL7DIAvp
zyKKVQk?J#xadr}Oz4xAehF*R3W%}uV_z%ep__zM{Z>2x<hyIZ4c7FBOe2o~WkAM8*
zzT0X>h5!BYKmQA|5y-gt=rrdRa3`KmWCJ#|xz5Rv(*m4tb95{uJ<87i+vy|hK(&6n
z*2i1qZu(eP`m8#jbQ!HLAs2|XIr_O^TP@am8&x;#!0a}t!!~Z|#2Q=QmrOtNT3<&!
z>Nl0<JQBH@9HWgA9XO|t<<aec$u%{(mS8`{0Tb+J3H{vK+-+34#YS!QmAPT7TiD#z
z_x6+LMI$0F62>MQmt<m)bW*b(x2U%KFg9-KqOUCD*5r%4lxzYVCs0r7&m=`2C9M+~
zj?&oED-UL}Ig!qf8;3goPPpswe|+L<|M|Q<`QP*pwR=Bd5*nK&&d2<3u{`_w*`H1J
z?iA{__f!9#hOM@D*B)D<4Q%oKwf|mQ(b%)qzrJB3>anfm!asLL;s3Pn49`c|ZDFG|
zw%W;6{uIA0mZOZ;ZBA|NQ-drw+q|}N#}?jC;oE5aUE$rEa$U7ar;q7&eT?rv!B+eC
zo7_*Z(|Ng5-H^NbHWgdy+dcLL=VA}vCgm8{qQ2MgtYWKuo3F4vjy}fk%#N-4sR+lG
z(y1Mwwz%%TjaG75%k2!dwT|_233ac&n^Nlfg6V|Ig<{>Q{olG(-q&A=Ivcemw`ilN
ztg-d|bdCK)C(hV`2!B%_>k9j-&HdTBp^p^mHoaWwBmWR@vTOuQ^zcx9Q-U9|6A;)N
zmFt!tB(1@9by&IVvsyW@ib!h`il&QY-t^49fu4V6q`n29Q5oMCihNwbAJ?|w!PT|g
zW7J-Hj{^Pj{2|Iu=Wut}?-16+0~{`7zJ=f%k~!UmLnhgpqiAn8$^|RupRFl&ftNp}
zkpGP-B~x<xhgdFaw^>i@TCOh-w!=n&&<-IwbPhp@R<1OxJJGV}i{NWJ8E~=R(QkbE
zNI&x5JP>-+<0QNLx*;fY-BE2dbFL#Q*Z8-U=Nv&dMWd5#_fyLUF)ZSclO4YSo2Atz
zzpBhdPap_iH`jp;?TUFl&1gPE-`6=}OG2+E6frqqONNbbJt%L#U3b`)KXUXj<HM1%
z3T$>wpy-un9ecy7{P0PF$mJ(>Y4Dv!Vh@US2DaR=@w-yi$n8>ExnYyCtXK^j2MU=S
z)6lTVwdkK>6YVs)y4+Q6gpGXylSD<Nbi^jto~yw&qC$Bd99u#D0>fr)-gfKBq81t!
zV0Ss<#DyQ@0ydYUMUBhOKCqb_#d$fvpQPC3d6(lrjXz%HB=rSs;&g^SMr<NSYjejg
zvEH)bt()Nkbf7f3)zs;u*nzp}V<$)C-|)VbN1SX?ean8Dq{%gfzLYv_gJ6?3qlQg)
z{u9boA9e0AIySk+i43y?Irc38;Xoe0>Bo9)Q469IWdmCYeZ~5D)CuV0y3JL8vEEKW
z{|MN~0#meHhW@F-4yX?B`|n%~^wMI}e&D<A($~F%>D_|;EK2P&M8C+&es<CLEBk4|
zu<O7U3qq`B`=f1-o50cbV}5FWGC!q|joPQu#SZKsH;hZNkx<PiiJ(RESLVhzV*}&W
z;fOto?9c0*;q}cQ@=b*Tw6=+;9h3HmO@Kd|qcF7%fsFF#MCvvK6s~ht8^^lw9u1=o
zK1cBCTjc9ul|1K&>m07L4Z>CLZwX|TgO!!rx$MDNElF4lxJGxzw>=9Nn>Yf;$OW#P
z)yA*Q(fRyA#;ZRDtYri1xI_K|@RVERt0gvdzHK<&#erKRufB4DGewJhE4aY9U53D`
zFLIQG9-3>Rl*nB_cXB;~PkY?;a@GiB@NIY46#D=^_{ar5gCkSr+W6lMyYn6nt9%7$
zbK?RZzy;2AiM`(ktfb#&*d$*;$5XD@CbX$x7hZGaToP<kF^=^l5z2;5c+8EbyiUNP
z-1Vgx_9RDuH1ESGdUiyl_DP$MEe`|%n_{&*4}<HY=|q!j7M=9uBDu+Ro-CI_%U|Gf
zoo08mKl{cv(!cP1zmwkk-uIz*tEITS&_pGFc-aK_)BoXrK;QGd-z$GNqazEIaZf+;
zH~t3wKmN?0rl0wlpQaaHc#+173%Yx`Ow5-}0L5DUTdeQQ-sYp`T0onp(B{Jqa-E|c
zQ11F#jk}&;2WoEzGI@>)k#lNouH~BNVJf9d9?ldpCRfW>FxfTQe70N)LrXxj#%{d&
zsuQY@>%J3pKy8w?xgSF-Ek}jQaX!Iz3~fH4Tys<a3vw?AmeP{rtZh_wIhMw&-^sOf
zc0lqKtZbC@t+Cfvi{78sHmbDT3q!C;<F3hdavP<zMQa;H1Umq^MjO@1l|mkfUC8y3
z!-)<XSTPP6-=7Y;{kUa3vC>n*xMkNe<}?=!7Ol2&eKLR5JdmVwhU{)bm5fZ3pnuGl
zE!_222jv1Eb@6CzdU*++@@wUZ=5n#0%%?jl-?s3*b54Lt!da@k`kG6IxyHqQ9;U|i
zT|gzU%fe|b-1J8*+H>Pr7oKva?Y}<CX3vQE?EyUH7Z+p8S1^^vS$$NVOyL4&>>O!m
z*vtk2yX4PU-p|kR`*rRy3AVlQX$#+Wk_cwT#`o;^gZ3rnF+XaO>m2&Aa;z`qhoi`K
zA2|QHF2N3LR86i88<+EQ$AjfsAfGoWHa&qUy!%-L5DXjhi0=&BVa6If$+Obtf?YZN
zHP?sbD_~n)nq04rvKSbHT)AIgTqv)bQYvb>*;8%v0dh5LCReRX^6V_wrsLG}zq4Gy
zyU%q;?t0nq<~F|sPq}fd2W%AD{CG9V0(K|I^9#n~)az?r$<_1~*fc;TIp3*cJ2ZXu
zIo(pJ$c^uh`k1Qnl4s=4$gRzt^B?2R#l@g<y=wX>ww~!H7&~K|=8&%daxJsys`0-U
z&_NDizNvi)*qLg>+WdGF3@n!nY{lhTF%DIgdxcJ*%^B;#c=h*~J9{1o<AI%J9FR5#
z_O727<ObOR8*(!UmPvDUv0UYTt{XbUed1u)tS=!az<$g=A7$Qr(Fv9#B90x~taV8~
zgGu?}ht5VRHm2+2er&lvbc|H&Qg>F)e{np*Utl&$>P|g2LYupdB9%L9s^?S**rhKW
zTCN3a^IhcpKO&dHKt8^6o6FqUaxFlvN96DkoyZye95%}Bfa)X5^>BR<ecW9P+Ru*%
zX^+cg&Pf<cMl9MZ>?>14a&U^A{NwAT9{x|pomn~mEhhkTar3kMjw5meTrB0I%$*Np
zxfIk#-=h8W<ht4k3lA^{tpz~ww@PqXLhws)23r7xkVw=gd(N=+vkfNOHnUTj1c!^Q
z)A{FtQKd!U&!r`GBsf$oIk2qJmbQ^ObZ(KD{1fN<a{twu^M7s$Bl*YWeqzApl^OZ)
z#7Wb5p{<<f+k4}zW=`vzJM7~I?L>5B@w+qh^4WVt|Jt|Tqi=urj$S#aU2Gic*J2-y
zA6^q_lJaW{7x=aO-8k6A1J2z~jucLfyIz9Zc?~w>xDF{#IC%GU(-{O^usw;nyl3TD
zSDF+Zr;THsxNiO%P6jt@T&~#UTqCe?x#a+0nv#l~0Lpt_^m`bGP^unyLZ(V1yLw7}
zEI!yoEhm6+)mNQYCSYGC4N3ts;6y>4Tix9E1sm3{kZa?vpXJ;9TdQJIEQ+nn*N|gU
znO5asC&R}0;rG{awT0@v<TgFJoCO=&n9%0NT~F5LCMV(izZTn`R@gGyT)r*oi7YSA
zkfY~PP#w_n*5>?OsQ_DU*s`6H66`aa#Mb6bZWY*!+rD8N8aC1ZIMZjt#`c?xyFRxz
zH>M@k*N7c?SO!FMOD=>7a_q5@_obE-py`b1qhZS@*jOf-f5Y?<atnQ_pf9=Hq>Zf2
z8QW1eL_%LnE4iB73|q7VsfK(7=xZtHg!dI%wYk}W1bq}cFuA^pKBCQgJ21dMe7#KP
zb=^;Au<=Q|W(U;1K3pn%?>lz%gWq;ZZ+?RcCfY}~zijtyoxf#2*|x9C&3>|<fGO1^
zS5R=a^N({N4#D=@DL*Ucx+`qIjXPG(_wJDk)#{c!L#h>RlcJQ~7hc+&VhEcYGHwus
zfZxG=4*Gv9S&&OxbHBcM#Mu)7_M73@m@!e~2~zgRjpVx|au*_Yd{+VG85;x2?G_?1
zDvnfU<6Ex2^I^Nx*>}>~ZoTcI@W)#OF~w`5w#$-q((b1eEZRvnAq<;7ue?)=vHJbG
zJ8BV0L&Rq9L*2F`6S2v4u_L!(2dJ77VRyxLd>ngf38HE{VWESM?pWp=v7;SKDeP#7
z9m$0f+OA-ft8735ORdGfMWZYVu&l8e_R_E=$c=EUuM&2?l2T=mcE*H-SZi}#Z2Pxl
z%N?;HM{o1oVbj+ETRz2RZO+(+@GUtt&esYZFgg095s?Q?C)U`ST=nDt$-g(-JSjK1
zZfPfvDmQG#%X`}9*fEd#nzKh}M4jOKHS4(br4~*7Pk!;A(BJ&ee!_PO-}bh5(7WFC
zPP)Fnrsto3Ui#vD-t)DxAo}#DKP|>b5~BI9(y#sMuhHi|^J)6fhdxB_c*i^G?%lhB
z$NHAHVakqOu%v)3rPi-;-Q-SQuH1aBZ@C?ier=K3<ecvm7FtnX-9|Z<9Iyo5U+WuW
z{km^+nE<$r0#9kSa-%fZvQY^~yf)e#*rPsL--*}MU7JproHV-a#D1oR&Fuj6m1-~7
z+F>a&b6(ph&!N%jYmd#_JT?1TOKW588&VtWfMQeqRcy(lFwoaFY}9arjY_f2izdD_
z`UHzCwQCudG9q^HH#y~icS)Q2kfx_BcqiU-c91$ap7av{?b|h)NI5QTa>A3*9o@gG
zVt)yJPxKs78a9PlQ}rabBRbWw$Qte1y2wxVhJ>jFA!-P75W?SVY?8>dQhkmh$Inwc
zsxLN`QlrJF4V%!km`?)zMduf`IaFb$k}UY3b-;$Pgx?Q4;n-|q7_dqI;c~}@u?63r
zfK7PQQ}!{q)s4QMn%-A@n_|bqkh9sHYU5_mXNl~h5M|{3Ct$<eRHMIQ-I=Vb%8~7C
z?PQ|Sz9gG&HTenAYH~-IFHES9qxe$jUTTgu!$z%LD!$#?T#r=O*8Vjdo3^mxL~U%S
zc1nma--!BJi2^owKwR!pTvu{y>g#=m;(W!vE67#bJoXjsOE%xF8T3t*dVNHN+U9ly
zo>WI%t^k8i&#sTFHV=J?+7J%8y0Re3P359CG>IOVPGq+O_*k<8z$Q`d6%N3Z+zu4<
zc6(kaY1<sMxK4mB2QO?VC8~b+T3=1D&{wxXtP_^d&OUFY6WPZmtJ`dpHeiO1H9LUQ
z)j=nkjZ*!qweRO>;m|i~(?87fqCSGk7x!b{=ym}520I|p)`A^!uGIIX)*Z;F-rnX-
zU#-neC!|+ne&T(>Y?RBjMf00n?X>hP5t)fzy_)Iab;W7H(55NOg-F+9vD|PK)8`DT
zsf{*FC@+|UUP!X-fu6aW>G@|giZS_ANbB;2IXbHKWunx^5^|-H`mU}Iq8B!QNvTEg
zr6+X$;A56ww+#~BaEf#K*@If(#IgAyWXVn<kEkRaQ>>g{{MwZ|aV*iJt&RAa>$^tM
zNekk#=uUC)!vSTH{N}{rwv>P#PADuJo#TmvN|H`8?=)}VVY4AduG;2<U|Hn^Fl_VU
z(0uu|N-tfdWzAOUAOH9Fsg77Lb6}ctsKaqx8@IjixwFG|7(;pSa&e|IMV4@^W9=n;
z-Re<gr=ZY@<Q?p|8Ucwg=GJ1zA4^;!ek<yxW-z#JzQg#q$pS~)=7U7L16y_MNt2LD
zzJfupS96#qoD48*LY17!oQmSV;W3^an%r+4TLHF)T_e;7*uqvW4o)jSk!up{>=2cx
z>YM|%?AVkWyvJq~Rw8#<Gw)$vLfza4<}2wNhP?(~n5^6815SGkLGCJ7$wg31uBX^|
zbAp}KmD^PC%xbr7Z6(-vBW35<E81M_9FoftPE?feZ7R2e&Z2!oD#{JzI5Dx-S8+1S
zrp@R&X61q<=xeW!IzFmS@W<%JUBjlE4`qgfeq8H>I>{wDZC<x|lIy|_ZkAobNfb%W
zT^yU_G7x>;VQiioHj(Qj@=1eXlUYB?37ZQlS4lD*u+<ZN?Ax5s<{5IWU0=$&p(6>f
zcR?R(J2AoUc707<KNs6PM{KFnXKQmU->?JHR}S)T4*cVQ0_MWMp7~^4rEmY53wqBx
zM*8R8eL-)1b{B#x)!tqssqbzWPV6gV<#JYF$q|`Sw|QHO1vs`y{!QBthrZkPVGw&P
z!I&Hr!<z*;oJf<v=h2hNGd834^Kpr&8<%J`F4?#xV$1Esn$C0ET!QBgN1-7!UtgO$
zyq@{P*&F~Bld6LMSa45YUM$YOOI28>duTf$O7Sslman;$E#i_Rd1QjN=2%C>x${EL
zy2EdDCUwmRAEJxx_?=(l_{Vvk@-5zSI-dhTBAwH%*kpo$$ov!(*0ByPpFzW_JE)E8
z8wMBo2{y42o#(DU0{f`P6stw-aum!X%8@%hx8rPbjJXwx(vf&)t93J%g0*pn{Rr;*
zG4PaU#U{M^##_!haYl{_(Z*d~2$y?t>W`c9Jgl+BYe_b;lB*pV5+~zs^t#q^+`{I^
zKMiZnE=S?XPg}VZZr1_FUK^+S5E7g4|6bm`LqGh(KTQA2fAfD%=Ai!W@BSV1FaC?a
zkACm({XO)3-}k%R4*c;y@h9ld|G7U$@n_ii_uIbto9Xh-CH?r1|HQHh@D94>NVbDU
zJ>4e9bNVZj{&~X=L^+1Obz%oN2SAxULCj6L6t?X^f10RRo9~b;d<$FFNPM>gTiAjf
z7z|r^y!-_7<H&JkPx%k?boAsjTiE`o*wX=a;IXh(Eq7ZF8+FE>>h;PF+<>j%#Lm-C
z-BX(dZ<BKXZj4JJXKd0;)|b3oqkdm`@K7fqa7-Du^OL%Ok3ZcQ<9{iSwnkyhbg{of
zpMR<7Ny52p)Y)7iXN^MQXY~kiCd-$hjx3E@vgGmR_@bg4NWw{-G;f0)4<+=qRCRq+
zljaQIpKa=?bCWtMKXVp|KESKTG+KtuoJCf*VD|}Wg>xuSqYXGQc>^~7z-cZWwhC+-
z6`}zXWX=#^S8Temrjth77(jI5V3Y@KQ_%Z$C7b{ba$R8)?)jvV(^Lb8Wv#%j*u>tZ
z)L}Qd$@>2Un;yl^D=I&eBSEg*_sdk=SsJ;*t<8nUJYe^6NUk|zl=OYWTCTFR>GKt=
zu$}4z^pVS1?vtJt>UBaR!}2+7E?3f=04r=Fx7_qKK__a&E&=AL(?{p72R6w;QNpHm
zS#j3~Y&I@YX!ChC9ce)kH}$26P20Sl=%bv-HU9Uxc5Pk_8<)@2B5~Jp%PH7_EFWyx
zg=UaIT}miVfp<Srat3TJ_cQufH{|Nh_Y(6JXq#9NhC1K+Tnn3afKJ;y-C(0yn_8fP
zV&l^aQ^3~j0H{(nY?SEppqnb%=G)jPX%36EKB~Sp8x{4jguWtm&!Ml>t^67Y9#|@T
za8;zf&%QEi4uI6;mZaad@m_KQcmR`bsMvg!`SvR{IZ6-&W0iRk2O^A44XMrwrT^g*
zD_`^0J-zQMbluA)5KCH$(ckKbwgrD*zRnr&(*65#-<aA401=)1@00fPO-yWjRXIss
z=&7eJ#i65t9oT3J_meqN!}GSj;h$}u$=YdYkB8U*u%B)QClB&4>dF+#eUqyOZst&K
z|GV{U{NHuC{bEGv8e69ii%ec!`oxQ`75cSLP4u7q{Ri~my3j{H#}rwGKKJs303&Pw
z6M0@09qD|Fk+6SD#XUf!ajX;h^L_w>z^e~QS-jUx<+Zl<isi2do4qA|+iCet*zoRK
zuvvL~_oK>9%hz@5cD$@QZou|vayu>Wv7O4r%D3xYV_Scl25pi~zF#-?+pzWR(v{ch
za(!HV+|r5L^zj6ngu!p=%&AU@93QdGsf8)riml0|S&p0axtE(cqRUBNdkndSZ~M~h
zK&$(>bpE%#VWg+;Bzo6#Bfa5Xra$;ycj;TcW>3%EO?2;4*IUsBZrRUuIh`pxS04ZO
zrgHO%-}J0uV_Dq2vlqXDKT~xgv>umIc&Fc+T5v<GFXjNSK-CsRkmzxL<LRGj_b(rm
zH7r*ZsWg71f&>w^D0OacOg>GZwm|S*4OuAZ#=?*@oR`IuGKgcfRHyD3cIp&9;y5@{
zduX}R<cv6i(YV3EVJ*j)b!STwzhMDl33>!8vH|+_pbayDMr4FD-Rjc1OLGqG6nn##
zMRDz#cbBGO#}diEjj;(|_Nd=7gJV#RkCZtqaB+MjY^X5p2dkRVW4PP`kG|}5?bHeE
zavYWWYXUYdcj}{vZ8pv;(7V{TW!>d1vqr$!kxb*&CyCgaWngz~M#B_2{^2|qC(*3O
zzF4jio3(koE~V*+wfQ7+L^9T@^^IBIZ`eEsfXi_R3j{k>7_iv}O3)G0M>!>cjerw<
z+`wjXx1+&IFQjsHp7UKM%e67sPQG8OA(x}+X$xCcC+|w14V!ER&9rGGKJ}?j(trM+
z|84r(uYJ$50njGTKkx%TK;QOl-$p<Cvp+{4`{>8$AOGVI&}TpUSvQ2A`~2r+7xmx$
zcmL1y{F|PqKmPChAL*UTMgV_rlPj&-98Td1x~tUpHKWBTTXrDoL|xl~Q=Jfs9??fc
zbh#Xr8c7|{x`W!wt?7hu(Z@FAKg53D*A0rFl^x&{6dd)u12(sx*6$fB90jvE0B^)*
z4!_0?D&;lUs1bDsxs)yYxv~Q%HVT6cVR1eOJK%D_Q9r{T+guj9!4BB*xJoN*6?7Sy
z9NTe)?Rd@(fZ9v!X|}v0vrILFB8AJjj~9zn-X50(dt8X6ut^cdEjy9XNAG?47k}cE
zEp2imj$}E~iH)o<X-aL5y*PSnD2KyF{y;h*nUr=xlHTbH&@LqNiGl@8g`Lt<F(mq_
zP3%h@s_|LU&7WLPv0*0f*d#&J`uVC3L&I(k40&8;?;6pVA)E?tP=_s*6KpB3u$m(R
z`szW@kPBk^_5MU5a=u~rIh;5@t6~f9Ut=S4qyoDq)J3^qN$3x2?2wyb+m!pfg-zRB
zpiDuotM}VUI||qnoT1i+wy4!_334M_6y2Z`vwds7K=9|!V9Qv^+A=T7HM!iv>7sMk
zYV90Ty<GWOIJ>CnL=HL;v6YQ)OD6Z|*mAj6^reQa*VnqOua0f2&C^L=iff7l686px
z)auSZ$5v{v1672TQ7#)WXn#A&=lWbjo35}q_APxh8x`bgc7WpZ=qsvoc3Lx*H#=}*
zqtND5&*)>lMIWObi1sl>eQa`#Hi{hE89Sh#(Y1M5*(h;_2f3ZIQIys;id-LQ{d_VV
zKs4Tn(>wToKK}CilisiS)6usuRu{7IUELdY?Gy>2?`WIr=8!Naxh+v0hz^M67|`!Z
z<m-GdH{EtG5oB41{yq2?J*mG0orLE>O(ONqcHc-Pa+_sN3?B!=2DQvT$((a-<Eq4Y
zIQuQA*`Qc%C+979ocldOxdo=g6EiWfuu)Fh+Da%Ur=H3<&POeu0RMItG~+sy#bNg5
zXLPOmHSgHdr(ZbIuYX~p<MN7^ui2Sd)Uz&zAgi)r*EeA^QX?ivJEvdgHgU6^Sih#W
z^VKqvhii0XsoTm!-PX}{_fr3j)4#&7z_=W1(K0_du!Sw%f;DtnxgLOZ4p@LqjD}$=
zO>Ts`yZbk=Wt6)dPqB$^cXF)MIMi2i#pY$>f4BP!`Cw3MGf44U(yGl90w&JNF<ci~
zVGr2s+T<SF*syt<udulsZ^34A@ANV1K-y^IbRL_0TiwQbqK~~CrM)(=OQPWUHf*al
zKap#Y`&M6x`dDtlzR~7UAJ^D6?Z66Kv;%_8uoAT$?nh{I>nk_3d093t-}KBN{(<M;
zFwnc+G|<<*eWdrk<3f^~Pg9@sl!E>2PEHXyU9YX@Et=jU`?qYn`YwjE<!<{+PvIv)
zgYeVEd;}3&qX%ribZ%U-^3+ZOWL(D$gA(th)b9Bbe&e}<3cb?EhJs06b?4eHL^a4D
zjE@sX_wv6Msao;hs9z|Y>HNQY)Fa%B!tXQ^|8trT@-9voxHRM9^qFb5Tx-IcLWjdl
zm-~d{BS+zfzZjL@X+9k2u-t#=QjgnB$Acc%+g-{gzyUm?m&{SQJkPWzypT}tKced+
z5=HD39bdE4Xt;Bs4l0f=UcTy%lvhav$=JsIPHYG}<@dtp%1Sp2cICfh=iBvyzY4FX
zUNctacipRkFW=3PE_-ly^EErv_WKJ`r{%R^*zGQ~@8O7$@?kG>JzOpCslwOJZE~EH
zFH?B(jX!fBD7<p08kSm*!q+((HeBz<3(7d|#P>^9>pV29A~)vpz81N%+>$t|^|+lK
zv1B>$!fqUQjx8s{%8tHku_1$$Yh8N8a+GU+o+ti;V>>R`cEGyG@t{1peB`Oj%I~;e
z<iy9bn2(Gj7k7^Jpj@EB=eS@!Udbd=6F)H*=(Q}WS!Wm<%bj&&1UA7kaOb~-T(2Ql
zE1#4r7IHnXjzDgOzm2i(cXC{ikDwier+FvG;Iz$WO|Hw>1S{H{ox$L5Y;wH{*s3_1
z#eq8L^)X+EHrIvHU2wlvWMKQuXFfxp_{1mZlb`&g{vC6V?|J|G<-fPS?d|k)Kl{OD
zBjCTqbJ~u)8Nk24_Sb$`WchFZ@Ba6y`=j;^#>PK2z^tza*H@F9Y}}1@Jp=0)<T|)q
zRbNMKW0teab(Fqz6z=04^z~Yt$)b;GaJlaHm)e(($kVXfK?klKD`U57#R`4R99amt
zF5echDOd6+Jo|!Gu;tK~3b3#3z@Yj%X+P&dS^By4rIbYu4I4?h*(k+=zO;+jxZm%6
zqol{mr(y{DIdyh``;s`}lYYyChu6N_%>P|oslMKE?An)@XIXQ1OtNq``*}4f_wle-
z9bkLSeTzAKg@ga7T&Q9%C(iqDprr*xc07u(9Qj_^EIVp`feUQNazEnZfnv*fY`9kb
zz01qJMDrb&ey^KA`xbe~a<p-4Yh0qR0Z@Z;4C9(?A`(&a&QM#>*Fb^w1pn3%5<(p@
zi6?WJq|Mj_N@A~P*(9ID1~Bh4_e<thX4}78+Lil-@I3EzesH*&q@2rSJfC!;wZGh{
zPCPh(i++?j?P1bnOqX}H?;M1CUU~A_zFr-5!~J4;p8tN$^MkA${5;3wxdiJD>zE{d
zet3|2I2R3{N)ayk<=+>K^?Jc}&DVpB`P|1<KX>xCYhdH?o!`m2%{nGISTfh$unE>l
zH?S@*bX>ZAcrBQPk6mn35u3#C=lAmaxgQ8`xYz-;m&~Dly~u15PW~*|d1B4;F79_c
zrZeuz#`h8Zc)`EF9HlJ|%XbTH!G6SMtwuLrUSi(#;2;=xd$pf@8jQOLmkYKl-MHg9
z9Ag*Tz5JW&Z*87MmPg2y+nDk2y__pyhkh<?KFuNrzMtEi$9J8ZELbMp@E2^0o?Sms
zu6f4Bw&x1Y+dHAnO|AuVI<Dt(c^|)*b%r-A_mG=&_FwD-m*kjW{?Yv)GUa<%PK=ko
zo4=3sk!>!|_gG)qMhUk6fxW+txh+f1!?0Rw?{m)k-tL*^d=FbBhaW>yq$rXiDU*gM
zQIz7ylo`wVV=Ew%7>E!ALIMTJAH_~0*l?))2#^Gj1Q3c5Bnn_eaqLKr<2Z&T+mw{>
zL!1#k!%+N`=0o$z>7MSs?|a^J_FgNys-CJ<d!2pWd%Fn)$aEj_PTzgkIeS05R;^lV
z)v9`m>kSmcp2Ze3x|`+RJYG)sXR$F-KcMn@RD(23Uyt`EvGqIA&nnMi{p9a6uRUWQ
z<=I)<9~OLujmMJc?@o1w`-~5J4_wy=*k)kkwb{d2BLPJpmv+_(9_#zP7J59P&spDi
zuXntE5IVt~*SpfXHn%Ldlg^Pso539Xg|yFiI?j14oq=r}Rj%`--14L7tLn3G%`flI
z*m+Zaz`CEGZM1Ka7LE)`>2sFjg1zt_gb$txwYUZy=e({J&VE_f58{-5z*yRgjat5c
zd=T9en-gr*LHc|W-hS3MW<@wnn%OF2X_=RJ4y|URvg!n*V}0ch_o>tk*|1SOx5^$S
zCwbO1!wzum4jW6XucO*e8|S-yUfTE4=eEw5`a(+^+gPzt%QcS$*>hajDBY8AJBf|j
zi##9B8Z5x|T2^vpxmA5P4rJi_v-AJRavKKJ=ux?|9JrnVkGts<v00D^k1cf=aJ2r-
zvKAI9mD9<oRM?5nsr!umcCR(9j-UcK;QHQZU8K)Re$Tpbb2uoi3kMgZBx`TJJ}=Lz
z%Xe8PWHn*|R~cE~nBR2oR%GqH!#K7q8+RC>9)|F^<B(wc^G+~9b8(QY%Y>AKoh_Y%
z#vEu|zhN$o##a4Q>S(e<vY5pgX&;OR;?&VXtb&nv{z72M;92wP!?1Ry?HOa1G93T>
z;b-xD%)hnl8?7OO8XWN;fZM0Z@6Df+1qJf@o`1_hV40(5Gkx$~1O3;2XtAedPk-h|
z-z9VB)B6d*aHC`_^EhJrFNYSWan$Mpp2cq=dlk$4A<LlBwVC)L2Q4h@*|7+W@_Jz-
z3TMvh9GCs3jBf<H4az-Vj46SAH#}D|l?B%mLqJZcR;x@8NO;cLjoHVT97tz9P+{yv
zd<-KpA=O!KfqW-mx1yfLy*(n!SnCQw&cH^%W^xm3S%X}~p$BYIw?$~4-~gOk!BNI4
zaxJ>Y<I(PiJHW<r<#q8mXgdch37f!>vENke`;gI3xiLye{feZu&Mc!!XlRE~>=ds%
z*VwGjv)HN0<eJQRNn-EwCN{-B0-NgNy3bRf8a^S|Z5#*4tzlC?Qt@ZkRi9_E?~ctg
zeGS{v=QH|zXmZuFopqm!QyAEo5^?OX4d9+{a@9WPxqKX;zZfgx1ZKGcn~bHHg**&o
z^_XVyi7CaR%FQy<wC+fCebh`O!J4hl&ob`42rb(Ywm~wMX2CYt*fM?0sA(wk753?l
z4H<vg#@Z}<u0$a#d0b-~hlm|^pswpHrYN^O1pBG_YJHx7wFqSzumu~W^#FKJz^lhX
zU-#lbPnLDW`(Iq<>f_mMpxDn@DcFQD1sVQkU#D;oz#kiHZa=v$8|Hlp3<<WI<;=ES
zYHIOVn`dVuFx!5zphDRG83F4FL5I^>_p90J3IUr3MiYYJaR^M*0&b>anU&!Dw|2}^
zlVOEVB8C4||HXPOVTTZJ=Cg4CppHQ~Fsk-1m{>W2W8Y3$Rw>!F;;<+;?&PY9po6u#
z!V_MWyJ{~^yCjQOzUPP&bFJE}N+lhAMsX`Ryk(N+jT^TYjnd`ML88b>3b!&6UgTG#
z#L8ex35Rg(ydQ+W)+XH@PJ?*ioCMn-@i4Pb(mG(KNu%@kpqb!Y<yW6h^r<h;^gCaj
z=+{1bCr;vOhk0yhYfBlHMT~~qEPsD+Lu-Rp;<}Jok@CG<>!4&KpoK>)6+7jlT+cWi
z9&qi{07*H(EZy1DcBSu*zy|&^YbQilE%y?GAQLQa;ErUx>s1a4@6}Q5*zQFsn=Sww
zqRGY!Y)AQbqXyvbTbgcO+Kj8*oo^9)K1%=278#V355G7+_|c7-E*zkTj_u^w_`fPQ
zi~I?4#UM89%H2$YPn^Z`8XMJ?x-A(fJo(ZQ=|0A1e{@4E{m4<uNMCN)2!@&`Z^c%z
z087BCQO>lIYmeRflySZI(o6JrKmM>D?JyV?wJoWP)!s4Dw}1Ob>AmlL554^Ihv@a!
zUZbD+nV+Fge)5z4do#rU`oH!U=zZ^dFMZ1&`tQ@tyT6{Fu8SJ<>7`CwldGP(&w(1i
zB7In2BzjvGbhGNnO0IX_=ThKWo()6R^||SzVOx!*qH#wnxdK~EaksHTz&^OX&ZKoM
z6k9=`v-OyY6?TC>lJe!M{@J32_4VHMwZ|rMk8-0RSI2hju-yq3wu7>K0(O2k8!M&i
zrvAIXX)pYHU;my=?|oq>I?Rp_apEPl<!nFAp7Mf24)|bC-F^;QpxNywY`ap0ksg{P
zwe8|e0tJ>7Y8P9-bKB1{*kLY^jfvR)K@S#CoKn6oK@XEGPJ}Li52TmFf^l(dA#TCx
zw~~$bZeHS#MF#fm6~8gg;y8}p$^`ti{XxVC{yQW3gg*rbkd4<@*8>@mVa0=Z@O|i%
z7TikIYWif2Y@KxTDg5Sy#~L3x?j_5mjL6s2=s8rM)n;qJ1CmrN3#Xti2{K(An`OF8
z8gZNvk)-XZE$o0TS1ax$FGjf(GD<3qj7fSho3L)GO&?uf$>bvcsJ5&mU`e4J*bqh5
zC<e4$7PWkTrySDXCJBJ!Q{;k(VU6ms4W5WFWEB`Kj`VWXgB}gUQn}TzCbS3^#R7^p
z((F6_!W{cNVl$rbLSc;pxh7=x;k||JMQmA;cS#6YmpQ}&(kkq1UCY(5TAxd;0?TeH
zdN}TVJb~_Li29ldd!{CL=!ncu66I)pp!P%O6s)!RR<*5BL?@C3URC(K%>K5l#bR>+
zq8<gC$t?wHk|?*(4;u6c;c%80QJCL!tSTQr^s%H6oy3<GC7uv82AarZ(bnYauXze}
za%gP_1iR2kHEi1FS|h4hJ8AZwi;?9t==zBDRo18(bv~$#r5S=~eU8i)TN}<g7hAi{
zt$rvx<Nh|*I(?m2`f34iW}`IfT=g;bdD3xc_e$CKUY9mXd3x2RnT=BU2&GW$^A)z{
z+*{N7G<|itBhyE-QL?^HB1tTQS{4Bg!e>M+IySSPS@p_kq_Rd$YGzB2ThzzY0$q7c
z%1ehb>%h*)>gJcLVc*%ZmvrrCwTBAk<O*!&9Imy^Ll(W~^O8CDbE{dR<2pBrgJe;8
z*pjEVe)fL|?WW82srEJMKXvn8-%g(u)efo6mTXT6<``T${BOQyGpBo)hbq2r-=$<U
zj=G;65dCR|7sUw#Cyl5+sS`;YdzOj1{2O~2*r7kdNhAkPs0kpyC)Fu)0*ND=4}VDY
zV1mAlLI3!(v*=G8UYIXp##+_p&l%X*;Jx@H(f54QEQfztc+OF*lX=Mnt#W}UX&XZO
zp47*{{O;`VI^eEnofDJ#SZYN<;e3PZGwi?~at1ej;@?+om;T!e+EVTpnebt@ao3+V
zu<_q_m)Pq`uO0iOJ`uTB7Hk}3nFBV}pB=EN-=txifNdw(6#D>K^w?&(f08Pv2V9?V
z??L2Lgk$}11)E|wY+S&%uCQ&%l_1xu*ksN<1Z=|!`x@JXc9km!nKf+B>hp<|AAbKx
zpA-7fuv5U+_xVw<G`XHv*ebWnZ%4dKkn2UCU&H>GTr2KRz@A*LtdEalgPhYoU^AWI
z0G%_i;roxtwQAr=(~09st^|E;eSY8RBWihE=<5O3Ykg(8s}0zNJ{^24712lQ^IopU
zAh+ky*9TzRU%?i!8@63|m)7U}9;N6t+X4;*I6i1FlGIc&`&lcHlOLe6-kor`et?hb
z1RtE&Z?Q;z!uqjRXAO{pdH%Eb4MZDZzs<H=kilR+ZTztVf*H1d2WswU`;+;K`1uwL
zUv1rP^u(Y_4r>$sWb;$w@WK~b_*Co%>gr$LTJXR|4S;rO6eRqAJQ2Qdb66&wTeO7=
z#rUqCeykT(u_l1NTw1krM8ERKYLN=r;MeuFoti68v~hjoItL!;oautIIt701$X#Cp
zXZ5Uy50N)oHYKYX0NHs^ErK8oS`q$sU+6PmF7yvSeWp+T<1_vHKlhYgI1GyeOecIk
zIUJDIrCB-4Dd%7`8pRhR+Kz(}J1w>oTC|%Sch>F;`?e`(ZQNy}Rw=r%Os$<|u!CIB
z>;RNKEx1KX!zL$O<r3Qt6iR1Ax>!+D+lcb-Sqo0Vxj?n0zU(c+Ahwe_frd;t^;B%R
z$Ci_)-AvUAjbejN+Aa$%lPm7+*ny4PWuX`38nGD{bFz0s8rU8Sv$H#5b%Q<20TYQ6
zRODKlBSf;FNEdzA`kZgS2WRkBpVz1pz;5rx`o(`0omjqjDxKVmZpNOx^g;UcFZ^}-
z_}}>NkZv@p8^XWzm;Ms{g}?9@u%RN?*Z%Xz{@5R*zw>wgj>;ybmA&B4_x{=cjNbk7
z_tEX36WnyVzuxEOP=H(|Dtr#K8SLD(J|A+>M>s-&RZi`bj<qP)l|Hh*f|s|~SCi{0
zKAYND+mF|=X`id}eDZ@Wa0qkz5cG9r2W%`UWzBgGyyjbdUJ4doYiv8vMVVYL^--N;
zy&d3oK7<%^v;&EbQ>CB$q1)vUU`OBo%?J9X5A5mg{;bhD*Xk9(ewsav^)+N%Z`IF8
zfnFzEyRF}{{drw$AwOp8!!?iH7hk;9=p8?J$}2gp=B3cC2T`q^59xT3^7_-GM*ik^
zIDF$r?LoyMdx0*_k~+IP+|n0cEmGiFH@2y9*H5_4mI7Zi@+X5&dsZi*_hD5By+$>u
zvs!AX5H{7U|3X~_-G@%_#~jNXeQbvZ#hkgdMKwK&Z7@nX{k^U|Qj4y!aX;bUe+yfp
z#uYw<_6lsZ=dOpNj{Wna9u{zBj9hPE6FR*~7qE`4)P{Xp7cn<(aE_3YT40lXzZIn-
zThk?KH35QL`5=(7vD1-*I#zNkMt#=g=Fww#wqu(^BoXYV*2w`@!+wEH7tC9Io(b2C
zo%s?HBD5-^aZ>2>c*tuyF@T=&S=eShz#byDqS0fjj}=aGv?JBp<XSjWAO)R(?H&U*
z{^B^aJ~w@ha$R9#Ige}Xo?0!~;bfoIH31&$bHQfVM?ILEXXx(+wm6ow&y7PpHSYQ#
zSEI)p%nn@XbCI(|jb6b9r}z{P5uuMHo56<74wR&p0@li#cHoM>8aA^7hAl=6wsF2K
z*BsUoqBB*;u^%YC1sgR_#r4tbfJFQaDwn!p2h2u^1HZRn^gP(GZa-gQ<8?~fumjCT
zWyz#^<4%JQzVHSIS+R_?rjJHcL+(`Nz(0u`C&+cwO|-3x28;ea%VC1FV{VE8JW>-t
z?Bz%|yF^b8i9Ygy1AY7NQKyp7i;k8>OU9^xJ#dQzCN<l#FBx;28+m>D+8cLRx9Ym|
zcf;ZPwf0f}jmpvHj2CZjG()S{o-DgV#puuEw<R8I246;MbXfe2<4J2$#lwX7vDy@k
z-l_Wi;+zoM{pcn&?q(Zns}Hb0`s}xWt=&HR0Y+@My{^ftZ+{+ab|8GM-5gb$_kIMM
z9c)IqUHtwz<SJk5+6}K4+`WQ5)`{4{{w%r2_Ws!f2jbSVbszuy*kb!*`q+MaU2b~D
z+v;a*$u)P*$Nt@}_30M&XJLEOI`IsBjrzESJ&v_E)8{7Z=g|p!_ve-C)^F*`yQSyU
z$KFO+@Wxvm=htl1bLnG;U4vaNZIoj#W##C8mfWH~Uc>&_IKO7Yo<|=|u7rPoa<lg}
zO~fwu;{S$uDYn~pD79K<*8b{iuOp*k2j4@!`0bndTx0;~ixosZfN2qZG!89Ff(12V
z<0Jr5TNo1t$54v552TwPYqw3`Nm44vYXF>)^0q_Ty|%Z4ra}*sv!s4aXcxyS+RwNa
z-so9rBP8`*=wBw`CS`|S#_5r4R%C@XcskxLq~CEzNjejeSCHnc1F7J=-0VxQ6aCs}
zC;HV-pXmSc_g|C6<<mP74l7RGsd5U3Q#YIrjS>kksd6WcO5lYpzyD|{aI>bcmZa%U
ze7Y!oV1;6tW=E6=+;(Ngh5;!?TzOtjKed9n6i3b3)AKkTOP?LunR;Oho3u|tfg%nV
zIN8?Nt8ku6R6ej9HaU%?hONwo-A;jL`Q12bdeb~VtgsQV^JYmRC`7K--ijy>!6CT9
zMu;9s+t>)$WDyU!s@xm)-Dp+APs)jl6KuwofK4~sr%rBj;0l{Ib%OhRK%a|TvsBn4
zKBbi>S)}x=)JnC(7Ufz3wi>XBJ-Iv5S6|1eqeQ<<ZouroLman5h(g5JJ|i{i-}pEG
zP5N_R{387ufAKF$CcuD{N{xWX^tu1+FVdF|FVO8b{&S1aZt2Bu{PE?6x68%~Sq!1i
zg=019t89SQ`r70g<)(5sxlUVsUfU*7(zn^B$?sLJ33BB}&fQq*<vK%ODOsQEhINF)
zT6C_*zS75l-Sjadopjdd5yP(fSX-ZiI%%bk71UqW=YmZS0@Mz))YcghlhF<gumf9i
z<+1&r{8FX=^kW14$sd~NJHO#b-}8+J`tW;3rHPnZq`pStZ`)5jd~BIh1pCSI-=qC(
znODK~NBerRS{`QmVcT~Hr8l^+{hXFNXlmklYEfZQivdd-aq^|q<|QnY;=Dv*UK=}S
z5$n^iDu|_#!nSvRXA|%1IbTbNj37I!0ibhg#bJ9A=c#0Gz!B>y#O9Qf_UcYKo-fpC
ztPUI+b+M$Inm`p$u%;_*b2E4pw?12I0+B|RUc*)m8wG5w-FV5x3cxPR7>hY#WB>Fx
z0E_Bm&H)=1a(-`iE|uoo;IXFI;B*_wv2Dq9=&_A@xX$ef?FDkr_HJ;(>7g77rq&i=
z=~+s0G8PK%+WJtim6hBC+i)pYr3x*+&Z?bU`Q0ZtiLK_8v<IC~hqb(|+uMxAc<Hg(
zdR5G2Oe06#9eehWVCt{;x$6YvTA+`Vg50YWI7OeA+OT0^ZMA9IMgfWfozXt0HMa0<
z?enrdmaNY^xtZMMQH~v1qA1Xtx;`hsl6Y`nbGbT2!&)D$Zq8PpyS@gwMtzh(l?;6?
zWuwoL@q_t4>SOV7o_(xkOp*1mKCf$i?Df_45eEl`z0w++9LiBV&`y2`r{lcqb2XUS
z538}X)<?QB&U<}a$+gqRwH*L9^ox$Q7RbUk)nF&p$9c;}L2mUzZsh_ST^Z-m4h)8!
zv%)zLKz^?@JS_7a3ic{RgT&{H{>!0;ZL;}YQz0veD&w*y1f(S&r=nj}TKhO6(}byM
zl~$Bea{`!c*H7|57QTl$@!e6KveP4L1ZBpWK~|yk&S&dmS(MfOf92c|dl<g02Z-6*
zqSMSi<|LGzUhQgFq<H8BPXClJ)Yk3p_`@16w%Z=WIRDi@P~0iR^b$su?1ymS-F&Uw
z+uPh|izEOdt!t+A*i-jzDI3>!5gz=(Y)o)sTF}f2TW#~y>;aV754sFntXE*cMk{P+
zw*%!|>jgH=z}C5D-e@l-SEAMZHCuQsw;FUp^Z~(0QLeq*WWAZvDoCN1tJOq#tUdld
zVUHpE`(CcG&pSu#Rejue_G9|E!j|(&XWX$^ba5Q9_xhMG=KqAl^vU%%Klbdt&qAMy
zZ=%zgs1q5_>)(A2`l>^^y1r^gdN-D8tNq~tXd7eY&Dw#-u(=(;STk&;A4|1fjB~@D
zo`J1ik?WQ|ZrP~#F4SSmz-HIF{zSdOFwWvQuR-^Fxr#l69q6%BXQQ^pQp6Vfytf0J
z`dCBI;THBFx84r)Hp=g}@%w0_^po5s_4AS+#_(99c9`OFL;olAo9O~VP?4#&^aXB&
z^Mcl&&-uAH08o9z1WdY#Pe`5BMHlEew9$oQMJg*gXGF&qM2C(DgRn_>gc3-^M&f9B
zo@lag`tOayu1v~nz8^I5s-T$dey`E_%tbH!n|rxGXA?}|+hks^)AS(iyYWVTf1Z?%
zgHvauFyu)cuKNsHAyBZ~pn#@riaC9S(LNNUgYW`%(xN|{K=G-s5dG?B&h%gW{A+ah
z;0?Y1g@Z&HoX)4^)kaAh;`AZjm~y=W=ES@^p6Il^YaaL5xSqwi_hgrZzwHg?hh=Bq
zpj_aKRTB>77Y_$n6!Y(Oqo5p@><Hxkc;TROx&y~$8V-{FLyL2Hzbtld4(iNhPE5s?
z#JSJ-7~3slV?JZ%Bol`}Q!Jfi@%_SHo%Hw2eap_}VJEVr8Q2$W3{|j6#1K*iXXW3#
zJt&R9Q|8^xx~UNAp;@DDUOZ?t(%tDnB5-umG0D5JQ}FgMENzM{W#wKYmYeXq?*#w-
z!%6tOne&{zBbD!63+hJbvt_W4n*PM8eB9?R9Mqt{aeqRp|6VB(X5}$|;YJ7IQ{fVo
zF3^p`;-EbYqr4j*PTe`Sy<q3(Gc^fwl^z#;W9)oy!)ATX4qb_~mguH~Y$#d(Sw8PF
zY)5rOC-gbXH31uc@9yD5=Ia$zF3MlVQA`{me$SLSZ=7J7N*M2LBC?Z5Gel-^Z36kj
zKl-C`{nP)}zqOjM^rn@*^c(-V{B@W=vW(N0=tCcR57pfZ^x7-`MC?e~wLTx96SIt?
zqw1RVc~P#l7j6cLxV{%Iwo!D>bmC^W7d~3%raj7G2lSP>0+(yPH%ElN!E)gVVAK>h
zN#Cp_a!HV@o}277Jw1#i-l)F*a6*)rrowZdvpspTVB^{acjq%A)D!yrwDjkmZl%wm
zuY;zz3AUxrIl7D;>D*^h^kvkPIMqkaD$?lx*X~=Ns{vK4Pi}M~diro8HMOt<@+{ba
zWh^~q8<cVzOU3L!7H;E*V54L#E#LX{SC{^HJ<+#*fP`!K+h0D2edV#o{FiyJH7%H1
zT#K-ct{?n4z<F^zfeI+E)A2ZJQTX4nIOcl`zqUB=2e+?k>qn_A!JPkM%MW{T`18St
z@Nw_;_xH?W?zVoAu_(1a#=$c-3hcM(yVtHsf$P#1xG2O!*`iH#8doP1Q9+a%*#Yc3
zAAIaE1dB(pG@_Xze~CmL^#F@?$vD?{%nO@}bAj)eH~(P<Pq}jbpNsPI9>7h{eA|4F
zz3@P1nNNA%5n93J`gpJDq0Hl4GN`4f%3Q&phdW&q3QgdG?_q`$T!IUj(_eYZIXj8B
zI}^CTcgxs0pR^v4I-~~C<+E|qF9%Miha#NTQtxE|uRiPBVUXV(?<UD)5e{2E2t4Zo
zcfVKtJl&y))qW>)%@G{y%&*O3ho3Fj2Mtc(u{;QWHq$9;{Q{O5>%YoPc{rI5oZoAD
zfLyso3b7oSLtU|*?k2CLz&4HVC31bD^f(X4nY4D29<UyZ9;h-lb^`P7S&)h?DaZP#
zhdOK{`1x!<Tc6Lux6asDuFk8^K^vswo@;^dSU(*Lc=eU<^Z^+@%#qGmAC9`o*$H<y
zw}VP@Cnp4utLi{WD4H&E9%RkO>BoF{%k*V))@QLj;XaqTBPU?zcbQZlcd^f*zk;nO
zHolk0^&VWT2jv16Zu+8ipV%%Q?=)y*;Po!cxhOW_qF=suJn6y4p6j(FJs=hR+-K#c
z2S4df4p6lQm18>>?Q^aHAlTITyNBF`yZ)?WiRb0h@@(#_+Z(N`!(*vd(+SjCkUm%E
z!o!{F06&k{Pg1Xd9r*h}IR05~e0^YAjjHtuIO?CVaa|hb{g?V0LK}y5{2q4TSehNk
zgV1}jZ8tk0<9yZ{0W3!uYl2OKIv(zI4<g+42{kH`%9Yni4>p$edhlEr>zGzHO8IrU
z{)XzKVPjp^T3>1hPDSfP91c6}bJ#Gg`?OpawFBPgM-8^IS_*2TRIX_e<ng4L&^(8h
zT!af)bbxCoOtaQjz*ytNk_jp4-sfzixXy#v&w_eGLmNvc)n7g|Katk{7;kpXMg=?Y
zfZ9oBqmFl46HPe(Q+9r6u9d*cLa|YTZ6^-;6Y9OFjau+LJg7~IHp=Y4v7mNX(wZw&
zWe;*#)>YgOoSx4Itjz7pI?uHd*w*u2kkLKNR#QdSP4^f(V@9n7?2pES*3aNQ5$iqI
z4B|cOJ==|vHOfwY(P)e$0~qh3Mb|;4XxZ<xVm13{YXuFnNSF=j;s~G}oYUL#6MYX(
zg-4`&qN>giA>S|uAUN0i!}G~~4r^X$3&=TxT7hdah)<yu%&mKw_l}ER@)~nAN?<sy
zxShw>133R9MTPM|^S#d)gF*oW$G?n8wyWo}kAFFoC~8NwMqQG7Cu+qjBR0m$bqfbP
zyBIdHU0S>10i4u=P3FdVg_Ylp?>z==CPyAqVmCprVFv}f$fr%TqSvSao7d4`x$+p9
zHQ30p0Xw%F^^(0?#Acam1#%rBSD}GIznq~1tsdTah25NHV)JFZYDW4sxgI-gQLYoP
zkLXjWgNaNap$cJ+^<F3JK!vfM&yLmQ3M@R>PtWM{W9aj1`Y82uz)L;{xo_#K?Rx|}
z<ZAUv92;s;_WCGe33I9R`3d!MjH)}xP4pG?Svv%22{v9|f#3ZIxkhY)9rRo0<^KC1
zH(8e&{mV6d1y<9?YuHY}wzocycA&?``r3^pmn+7S+X0LvvjfJ{|JYdS`#g@NYj(i&
z(d@toxjxHAoi=P#1vZmwH67^nl}L3WC4ZM*ZYvvAitFpn^fAaaQm{oEwU2h-5gRo@
zA9)?X^0eAM&n?$5mTau``q<kj$HxAzXa~5@SxyMz7E14uR`XH~IuPfjWb+n*0ma%=
zs{ueb$dbc^q_mYDh!p}H-^^#D27s+Xs2yd9Q-nOqCR@}mSyq6hYG|5-#G0-sD*BhL
z-fl&jv@j=0@iqROA5;mM-%i{0glCTh9=F@?<@+Z+N8#_wB+o{XvGN3fNuC{u40o1v
z-IHURz(L6ywRW#ie*lZ}gK<!wlp~8%JYIczr2oU;es!4uD!uUGC-lND%cg<f^Y(Cq
z6Okf?j!oQBpcG0YJ|vbLJ2w*+1zhZMXIyyNCy5J^(umBAA{%1qcIz%U2raU}iebsg
znoL9o`FBli&x-@_27xWh_c;}KagOr$rI?5m?l}M(u-l|BhGz8WX#TxplLu&Fu1#!+
zGJmo-@ie*v&Stb*9Rrq|JzKHes18h4bQ#!$JiWs<Zeb$?M=Q3b=2f1pa;mbazCG-{
zNfmbQ3pH`J@8Kkt#$_|GU}b0Wgj3}wT+CGh`-)aa9}kX=jpD7)o<Q!S_PInyO>lfs
z(+Pq;8nzqgI(2e2?%CVDaWgJ|nEhhZcPXH*d2!iD9dF-9`Gw!3p?t4@#xnqvXq8-t
z#PAGOAze2<dz^mq=l}TE|GK>MPyh5!({KLfZ_y_|`3bteXC6DX73ov|-lEe7`tsdx
z(D1^C>B;x}_m;7^^c!!iIO2BDV%3iQa08vOK8M^9<^94T=%dK>#@l&PdqS<xMISJh
zcmaIFa>iJbu{1y~66IP~a?=pBHkJr|E=?6YyU^bmC*n```wMKX&lfu|9NZ4rSh03-
zD2{EMS3Yz@KTIfUx22E9mAux+<-dp4=iI)s0~qJkutggsV{LIe;UIVSBGE5@YNAhm
zuF&^><V@f8!BHpaeFl}nnqyU*7-Qq;m&Lc+PuSP7*;ldk-St5nvCY2P++g<j06B9Z
zM7`em?>Q>pY&|;>CGtNj#Q=LF4sf_MTB!BB)Kk?Ru-I;6Aw;2->QOcApgh0n$@gpX
zWAP3;o-`w=MMCIWMyW!S`X<Y1D$Z9lYPW*+L?SE)9ER#5NBcC1V_2d?GXU>E5Wkiw
zY@^syo{MixGlCFiI9=q~Rk^<P-jNHO8h5==UgSpSfw9-3qwxK~4v#b{LyI@HY%1rb
z7pThh&3ygrWRuMn+H=(dWp?-#go9YrjdK1P6`s<L>HPxVb_LZ4I}jsJc?PzmR3-9z
z9=pzMukU7@|BOwjN^+<-P{Bh^1Z-6U5^@E{b|G7z&NDhOU}M=@Ed|EL)IcJ~q=#tI
zFNkh-x#q#K@kjcc-NI9HxeDD3xadU(Fs_q^&FI{c3ORSZ2K>sq$Zw&KqHc+RO`k3A
zUhO(z?a?^a6Le7Ink5pT^*QvFv56EiXs}QqF;~sT6YWmQt<U$8KFfh~KN&X2jY4D=
zfxBK`Rw-O+jL_6ECJxEcbJH6(eLy9%&tWXpHTS$?<NiSX4I-DT?pdnW7nra`aebRx
z6dA*vOKUfNc#*T{EBN856+~>bJ+K4l<Q(jP$N@T0^i`Bs-^LQ6@6>$_JCLBSm0WJK
z^*L%X&4He)0Go)-`dlc7lH0H?J5Zq$1qRUUfa<FrI97Y_WH!o{W5vh$1e<DhzzR<`
z8<ku~bS$<gUF&nz3DELv$hFx4r3?}q1v^C1MxoEg(C1>KGU4#N)lyJ90Oz^WYl@aD
z9aqk48&%s_lNtbA>tIsBC&*pa8)Ab9k=D9)O*Y@-5TDFJV3B+n8$|`9*s&>3kdsB$
zC8HFYY&^x-z63f%@{eY_g+8QpU_e|Os9j4Jk?Jk_{q6d(1$bTk3wDaK{x+f4?%OiX
z>^F7Ik8HhW?W{AAdWlffQm#ok{<%I+!Wz&VFF6E{tYO<45K-c_Mb+vLG_uv^l>$FX
zwcqmh$90g5>4CkoN7XV8+&|&BW)IDwZy$@KrGQ<W=smWaeZAq4-Z?w9XL8Cb(3XbZ
z=7_Dfh+Luguy@118FrJE$=%mF?8xKqvt58=&#+h);ttqtPh;4MUEA}gsmU;DZG{nS
z(x-Uus3R+Ewb7Xf9USS1HXU&p2c5`q?3&*N?=8;X4Y^jlx9pe5wqk{%aj~G;ongnH
z)w3hEuFo&@HS{?_uKNxf8J#Pztgz!*R`bHfh8+&H`5E(P(1D0uiqqD*c0v}+d9crO
z(8m&V!sU8JUwteRt;gER4%gNFq8*UAAz*t{u6EC82WUMWYB$bfR)V}k&_}BunKtw_
z+5!GEhOuV%t6iU`4jTm<mBLu^=zGX@hd%D@fa$tL!$)j!oNx8HVZWx2HdZR+K#)zc
z!(LkVdB#Cu4%lq0#Cvbqs5q9aeXcD-%yhz@T{~>48w&(%?9#J!R~&iQ<|WfH(+Rm}
z)mmIR>TI+<wXLh;{eM>n0Q#)J>z#sAjOCR2B}?^XOvPj~UbI87s|V^0Wl?BK!z(Q_
zO6XL(wiI8!HqL6hj<hd*O#p8Xi@ccfmd(gn4FFRjODBof8`zRWy%7D{7bkkxE{Stj
z>lu)&Hgv(N8^EL$PLZZVx{{aGe`%{1tBlSzchDV{6@Ik^ttr10nb4|iDrp#VFBFRn
zlsFxe_MOn{U~VyN@T186=o+@vu*pB+`yzAJi$OQ^Gp^xDv6XYfW(uCx@0P6atIc~^
z<3_7teNJq}u;Jb0umsq2^3dNWVAH*1Qc9nq`e-|_S{pXqI24zg9N2(TK?{*FFL`)2
z72Dy<pDk>fzCqYz7fCG#xjk6{=#|_%Y%+q<C04$X$&FByb`BomniePP?%m5@j=?QQ
z7lx^gbU1lzoRd1$zx((7KDqwzhd)f8``qW6&A^zS@4le#_T?uuJbaa2WT*J<1xoj?
z=!*e+<6u{;8dYuB3DxfL?&$NHn*P-wSCLzgqsg^G&erFqe{uj|I>Kmb339A(6q0iW
z8@8Hoh{+q>zEATteYAe+bYf`wZNpsXgi77C1FEk`;jCz<U?*%*hdxhv!wz)VOl~P)
zAC_l+`DvloW<C|y4ZG>P*-xLedwXi>p-xSuo*1hEP{YE%xAoU-d%U(3xs~k~KHXsJ
z2er>q1E5>~#(Aj_tu~KM>)Xa*wef6fPPX+l9zN^eH#rA?jeWxUfj?%OuxR8%PKgdX
zt3D1AiBYteI-i}5I~kW8J<8*5*ddC99Z~~HH0V4PuY2O{QllbiMEk5f>6UKl*&X1^
zafhntr(QD_i@e|iB<0z+h%0U12@i2aWGdPnTaxH%wpYwApYd*nO(?-q1-5yGtr&Gh
z%FU6?2UfM&N8zld>W66;*!f_wv;y3YeNs7cJ7eQ_<43KrsccwgTriuzpAk*Q^O|t5
z4+%Ww<j&lJ%+PUAxys=|3fM45IyM|cbDt?TbsBPnGItRl<Ox@J*XKLPHOk%E8JlDh
zf_I;tt&CN<?F}1YGpg7U?4w}eK2LOs4f@5{s$<KmXB)PPK2K2}IS7O!+!uZ1dE$&3
z7Q?R91du}T*5`A;CN>8YH4&TjsmT=)>=X1=ejl)TpU1Hl+d0#9B8du@niYn<C`AoN
z+e@E9e|aS|W6l)0rh2KbsFh@Lo99knSw9UM4r^03Y&F;c(^uGmuFrR43U(leKCi$=
zsIQ?;?i}qvhb;ly>~>(31D1xZ*_dp0V6H1W;W{ybvTlMt^5$?ikVhKB4oE>^dDjs&
ztkk)|<FIb@c`<A#e809)Wo4tdpwv0&V?}hmWL)H?6TSU(J1`a4&jCzSh{DU`N*}FH
z^^mAx)A|}wA9ZbUVWYye>MO<yvPDEEjv7Ijgtvdcyc*<;y&y;0TcN!HYiX%(<Z`r{
z06VdtQcEf6d&)JkH?<}}m9e05-pN|&IF;r=W~UYFe#XIcwRy&zA@KF)jAdB8s2Si(
ziQ2X=?|kgj)>tef39N#XBd4|ow|QD@SzS|s@TZUbj}esojTWe)nE<0XVzF+$2~p)9
zP0D?V>&@TS>Oo%OjI?zv@aUlxqB-HL=g-guq8xxlvS~uQVe8vh*zj(31KR|LxCD{G
z7WM6h&9FPR8MLB?WuAR~pX|EUtIxLf!z0)vSQ7z2la0yP9<n`@rmXpbypJJQvzt+_
zdtmRMZ8RubeOiEpKQ|G3kBza9x~}zt(c$@qt#opo=a$9EpA)i<<8MuF{ArY`xCYk4
zGy43RzV>om^||<RTD0;R*dq3*uUpunzFyVGFxGM>SAHG`g_%Bjzd$b6<Z1^6PDMM<
zD{KY&``9>6ogG+V>+FDxMd+j30qjrbD}COAkJobR?Z7n~72B!9mb*TW*rSaqTQ(}n
zmG{ncX`}X6^l=N@o7P9z0Se#eu`CDu!A2SO9Q+3S*@a->9vfk-6nex)ZP<R-NB+HK
z4ggz}n+M5a{l9y1KrqPVyu|;~&s)222%K!LsL{Wt^P?XUQ1eG<)0<ySTm&Js8{%Pb
zbjYSL>*<aZ8BOh!F9MbnZ*kD9`H@Bph_f4Tb(APo1E+p!3b&*ru@df;pWD)>xZP6Z
z7|*y1sWh_i)yUTq47P3LBt?lgz<Z>n@qic-()?%nzND+{H049uc{4L=>XuB5oF0|4
zr%Um@WdqC<M9X6L?x=JCS_xcMh&TvfsvC|f=S4m{=@fesI;2^tLI#dxg~NLWg^Lu|
zQd%C~=-lk=`lP-~ae!-8a!v*2Kl0l;;gEyytcebXL8E?V#g^a@7h0ZNmiAGKR4JFZ
zVbctW0oaCsjjVmSKX<{+ffoUaEdyHuR>pPM@d^4_@Md@3E7qGmW7lipHV@cHvK+F=
zM{5QY!B&A~SmessbFNB-BRl3bcBTw6YzfXz!^UaICRe6K0pT23C3?fISkI14DOzU5
zHa4tQ>C3R(25jmjY1sI$H-|yx3T&b?%n#3U8<NTmayD#SJ)Qp?(C3O(DPPo9Xdg4S
zoj65;PB8ZAele!Ebo-$nqI~nAmD7JlmW!oh$=I1SX3prhJQ{j=@d=y4KmX_dJpJXr
z{Fmv^{kcC!KlM{TMNghQ(S^F5e%^g{IRyA6`s#oDFVk!P@t;{<{M|x1GZ&S!>8p$t
znt@&A$nAO50~qgf*2i2yc~#f?m{lJ+=2z|~D?#q_S=z@imYD8F<&Lqm$c|Int<RZ)
zNSw$Wwmrs@&~uH@SJwT-E5d!MW9dQlF^(nJ0mJIpD|BKc^!Y6MD2E(EAlt?{V>kWf
zKG$=Dll<GwPREjt^Vy^A<h#ol5PchZeXWko$5K)K9hOdb`Y_Y0uN+B^e}o<hX_diQ
zq%;(R*jKZsZa=59Y``T=e>X^GfGj|qS_J8*oYjSEIc$RMe?ThYxVQ8^r19>X?I*PJ
zreCg8!=|==040WQ{$*ns7mXY9k`<bboUJFH=PaT`9Zzl2y*Oof+kRp+q#mRY4$P5F
zHy6UtL39bp*yPX5C+Y>oTx~JV&Lg43&`dy>OWmMZJ2<X|V#wOzpwVL3%KOaM(oWR4
zZ><0-id~|1aN`;s)xJ75teOOSQf%S?KTmGzE7}bkZ@T^20h^?54@xm5V<TYG)K~ID
zHd#j{#G-cCn94)2rzqDdPU01|p<&krY!X2-1(C=V^<NYlfs<XaNls!Sk75)j@d&vV
zIBuzJTwQKwV525i#ilRA&$d2Kj*VoFwmwf=a@}j6OFe_su;~U24sN7wo2hqarUoBt
zpU+LMvCj=#b!@d^0}YDE9oSab_k-(WTJ`zta<g`mYjvBG1ixSfwjp8z_J&QLEjj^g
za(!xYOBgGzua$pqhfCyREkhr9s+UaGD7T_T?6nZGj-|01OM^r|C85z_Y|6ME^cC1d
z9}78l9ZR*@0oT{g4(zPB_0+JD9x4wQYdX$5ohWJtBm?+d9NQ4F?Vzu->0{_q!Z=Ra
z=Ty6Pvr$E<!qmyEHcI7cc3{@%dLK*0ZPWl8RWR0u4I5OZvg&hf$5?@lQXL9%CA9-m
zeEmGPWz&U?f*nY(m(}J-f{mKp4j48YOM}}_eHXV;q~p}==Y@@;>SKxfrP-+J`sy_-
zW~CU~xjmho`ogZW$(?H(G1hE#q^t&;#)sIo&?sbZH`_Q*a2PCWvHjTQcaudt-!?~o
zK@sQFwOh>q%gEda`+u7U4788RK@YN6hMLT=j<|Mb$Yb|;Mtck9SQl|D`1c&z<8QpZ
zbKLmv@!yt-RossvAvCpmU`ceo5!zOf+L%LoY#!kme%oV9&%j31=4i)e_s%WgEj~M9
zv)`uv-YI$U%myvByqRao4Siigztr%1k9LjNB6h+Y+P4R+*RWmf(@yRlHQZrK8#)uQ
zMY-F@f@WP;H~Pfn(*O1<wm0)`UHes?&>vIn<XSg$;sV>ov#(*>dUoE>$B5mql}_#z
z_l{im7udGsMwfD5*@+E1Ksa!S&-d(+4*QlJ=yk?|m3wSgu}5r=VBZ=`7d8s_-n3DM
z&947{q>s_gTpLR^&M9E)`#jDaZy8${i}gyM_w$NBhn{cV>iaZ4!$(N!>3-hYB4V{1
zSuaFt_&43q*BK|KWd&u`Njh_P3LhZKVkv;0LqRXTwiFJfRKR4AbW_1A*BPnal-8*(
zHehBf!Zbpjz)PLHh>N88A_BP$HeA<Mz)Mq}TdIs-lMN7kHb-NfPaGX5=ruYVZ!VFw
z;y@({XE3?BYE(qwWE9q@O|BZ+TxG$TvH6TfMr2e8SRrX?$Nlkl;jqkF%(*3`7&ZjR
zCp<5-3pPT!^F=!e{m!841*PJVenT(USo}^AwPuT8*XXFhR(s*z)t{YkyJ%=C+O?=#
z0#^A?3fPksTC0xT^;@u`z#{*<-9M3IYjRl|1AR8Auu|)@)b%-Ii|zc$*5}Z#gmxPd
znlf3$AuH+79X6Je$R&9)KvNgj346CB_exQ=63)3CX5D^ZIc2@2_%UN@le~@Vi-|4#
zh7Sn7<y*dme*f?P{q$Ym^<DHG-|-!Eb9;*jQGJ(sdY#Js@6hq{KTi)|{6+b9=8Hu+
zURvopsZ%LK-{M%Z2zH6CN+y?}k8nUCXp-EdqYp(c+3ZLOua$f(jVrlEY)X6}3)Ecw
z+DA)4F-7z#)qbo3yXeFkyXcCKC5(lx&-tr^ny8CD@v)RKIaRf|YNyD*o5NU2!L}!}
zQL<@oHcAQ*FB|gtVTL(x>COCiPjf6*Cq*UF#=X)C2+ap3D~{eXTq)YqVEe1Qt7hdG
z?UvGZAl+YIMlh;v#-yDPp`0<HS5P_-A<F^p)-86LnCrztt)0BndP63ngr3s6tJ7PX
zhyVZnvtF;5K*A!Ws)L9NJ4)p1fCB+@673MB%M+<MYA~N8+H?nxRS|kAPzTlK1lsMi
zsHOZqt8J&EP9u&O9wgcs&S0rOlbge8L{V&Uvd=o-X3%U<k;qoXHUV1-PD_$!i}U!b
z4lOC1ONhG7h-_tSpfQw;BEdF`O%O*lu*(6|pyS5mB&9=GPPm_76MZZyH+Eo6%Gd2w
zD~N#E^J!`-E4i|~Cv%$bG;48&lYJQMP!i7IJ>-h$d@T^G{PBD^AkMW3*b)v*i^&zm
z?<aL?%AA&yM-Vdiw@|GFY$?^1T=~B$H!GG4M|IL#NfONn>>_uQD@QxSQLRPaj4G&c
z3lE4GERcK3=1?{4s*knPM^<*$M~U1HIw3Sga6)o@7tzm2NpY0gN~4)2Q)N^d%~=<Y
za?tJ3Vq>T?<$a!-z5@GvR(&1JX^9LC#wM8ss4?LBiay_4J+8^*s`hbmM>YDK^;y=R
zHkJ%K<O*!m%XQFaYoCY1HPV_a;tZY)yRI*dW>fl{s*j}sK^=C8v)e&GPZP$PjwL;?
zN{Aw##m>mO-So9+4UECDPY6g^V@uFi>vKO4a2u5&H*GJ}A_n(6aJL41G<|h!IIxmF
zk8%|orTS)a&C#ho<fgCly3gH4kw)cJ=%YQGX{f{w5Dw!omiTwx=WajE4kX1knUlR0
z4|jbm)uS7SG4y$EeO?S(ZsS}XGwncXZ{ys@l8rUX_|YuXX`aC2uZ4T(Vs=2I`sSh$
zg361GKF?|g_`4jm!M~LN7d`-}O2McH{*zpb{^DM|h~Ro~+{-g+zUf+_1S$-z7k7e<
z!Ys9-%8+0Lk*lr~wP%{ss$8ZhzVo42gtn}Tj`mUD+;*~ps;O~>TXZPPJ{DXxDq5x!
zmU>ZKPXhH*B<s`WPL7sON$N!ibq;(C7WsNO97OMq2vo6X&j}I1k(XceHgG$08~@>;
z72~D0h+&CH2et<UA#P#gXBf7@*1(8NWo%^FYTd-f`ga7!yR}=Ctzcuho=)xu@C*#b
zzKk2jcIvQIU`vJ#hj1ySmE1P5Sw#GP?{cMU*qM*pu%%X@m$|*AE*yByN9cf!wUyk^
z-eco-2|ltu$GaIe!%mR9MG*7v`1evr0@%#&WYP96SMGDj)ebzOK3c@_)jo$@MIS91
zA9CgTjwN6-xp8|n>_i^u7v;*4{tu^<Q@mK83so)TYTuVVU0IJMzPHtWNS!_!_R@`|
z3v9Knu$eycvy6W}I%+vWoO#(@u1P81gu@+U&9KEjpM%`;);N!L!1UGR8n8QmJmi`;
z<jUC04&=@bIDh<xKH6A%fQ`x<b|3+}t-mU;o7_#V=}Mo^8+{(fQq<Q38x{32j<sw0
zYWiq>{-$kIXtyi|!)EWc($@t$|LL(^U=Q{)Jz_tjPFQ`762?-*F4zvLuTwWKS=Pc3
z=B56?WdxIg)D}TM+CjK_g41gKpr5z4h8V9k*u6n5DW6gsc#Bp_DTT=)c_n162|(WI
z=3ChX<>!C8*&|&9JkXwAa$a9MZ!~zHr>XHw^Rv%T0!cq9x`5;Jw;K%3GX$?G8te>e
z=_IllCTb~e(>k5R2jjS|2_RVuX~ss3(~y;?TzIK?Yda`E_whK(36$}kCy`ASE^^-I
z@bgO2@0+tyY61{vEbsvcM~{r|ke2@eodKr;i%Tx=RvnkJM$O(oX!;&s8#W=pFl-Mq
zqK)_Pit)QE7G5WDdr8^b1sh|}JE1>f9;_nR)KMvJKu&8WlA?K{KWTJlrcwlHsvj3$
z)2JB5YD$v9(SCfejZ(vwAUCE3EsP!4P40sjSd}Z^e*guGZouU_4Uz&aPQHj;ZlZE@
z?0H;c%PKd+o<g6>K@;REa<_LuyY;bQn}x$V_Bm%P3@X=Z*oS~k$I63YcWfA-Uf`_B
zt=Mk~hZirrOgG>0Q*=Kci9Yjp+^JdW`T#&C15fcr<i9PnYHDK%4(UJrr~kAV=0Ew9
zKPlh;=l=K~r`KP9o$MpVdAg%7|BXLH!%N>v@BXpBA_o!~PW}}7-1U)ctUzBM(?`fv
zHprr%(1|G5vpVjjK0vOku|}egt<Q6iYZ{uq3SBK1BKC2ta-KVVZDXyCrTZhW0~<fP
za34coY0`0?Q|;^kNkKn#ey{sH=iLgsVKr<CW9<k#u)>zscEI%0un7<DxW~kF?(Anv
za}-JdiDJ~yX`?BzG{^JwteODlwXHwv*tuENcOle8K_oUM*na(eCd>^5MdNay3|e&J
z$?c&X1Yj{?!<y~tMNI%-2!UDwX^m=z^gwkA(ct7;`?u$3`{1KCyF%bs9F;q{KnK`4
z#6O)71)dS!Z1fz%s1#Ob)CdxK4e=HgrT!R|=b3r+DQm=!M1^M@4CUmM6C7HqJp9^|
z!)R%^8bvD$^Q1Kb<WOP+ul}Twu3`@bn@n{2`>F*_`IdS={XPHEsBQEhK=ni33X%Uc
zgYtxjrf^Oxm6tp_>pCfNb@NB)1(U8-Om4ObVr&*^I^x~fF_lUV&UZwl?@-|ItQ8V6
zoM<N3G-}jzJ!>=)n@GbZV<&6$I{#k+7FqM<w&q)5qvVuo1N!`oc9AO_JyHbM<Qn>1
zc=aJy?nlYyoIoWuLaqfhB64zU1X>-z9<hN#z0n*rY`O1qV3S9W+K-G)`@HFd(BzGJ
z_{fX*3Thg|#&YFIYpp?5{NPg5aW2lOK2Lf)nPQ(ueKr1fem8MYH+?0@wb=Kw%B|XA
zk6^R4iS~=uh0;Tb8HYEfuMEDV7FjyaYq_$1*VNL)mA@U>QgVHaeXg`Tqw6DsA9sUe
z7he6bVPo4mK(5lBvg?F9I<ng1JPBu&%<n~s?a}A8Ve9I>^!g}rbA6;HcbBW?vIzZ4
zQhgM;;(%|!Tv39)8a8o8S)W(PH5;{8bPkZ)KmK>`bBwha`sz07jC6hIqtKis8%tV<
zTh=PDQ9^e_85tA$ZpztjHmWvktPlJp*eJ!;ir%VyZP@xg7uycoUt!yO8<k6^6JoBj
z&<F8&5c(}H8qPW=o93(;6IHW6^zad!|Ab(Olu-jf?Wv9((3iyPs+2*Z1K8^ggBE8$
z$>7_|yU4s>Yl!sIAOb1Eyl?6KvL_yLTb9EKsX-1F-+|yKA{>$nDthO`A6rZm$yx!^
z+;e|yo!0-``l{pACp(yFAET(O9V+>IaLRZPV%L5xn)KqDh+;Hn3VI>m#dB(R|4J<&
zC~Z7HKC5pRY#!i}JP4**TfA3yzpOu^8lKx@O95N|i4n&{m#gOZ{B)(gbpKYvyV!L#
zIc_}r+GmBW>(^EE@kXE9cVhn<r@FOW!&1BN54EmpI9z<c)>Xf(us?#$|Gv@I_lpFz
z)MoP{Ry~%#xQT&V=|uc}z4AW2Y-j@?)w;q~x_gVS!rD5$^N9Lu_fBcE&*fQImqmTO
z7)v%DQd(Dw2|AMk_PLWoedN8PEI036%4#gG#&rty2)6G1Jbk{Q1Mw5bT7Q4DQEGA5
zw(VJV!1~<UQg~jECF)PFZ`ZK-vpap=!q$IQHfm#BTd%oJr55fQt!wT6et|UV3I0c9
zQN!O|ru3#i8wUVU)ph1orwPfTD~E51p>jc!{0qv9d6Bi;-PhVD{K%Cw^6Xa<Zb#ji
z4lU~-uX&;)=YP)!CD&4@DS0}5<cTh}`9r&JMENbIjT!(cBkHh%6HlY8<n`q+MC%Jk
z$uw;y<I@(-*1-x-fa5>MXa(J<=%O;#03hcEbs85ea6Lo99epY{E38LYpsL(#(k$*k
zNZE>yv}e->Hr?eSgQ6&>s;-s>Z%;$OQfd3zu;E(dTHv(IYSwCL*s9e|z`JN6zv6N<
zxoPBHldDDmBPwhI8x2;BZbOa%+l;INrD1^_9jk6Ohxl%Aeq`le(hXLR4Sesy8C+HF
zDL0OP$2vb7Ta+W298nj-xS5?F9$fXj9jn9b;wgRCvZr}h9Q1zJrJQE!^h_Az8kN|1
zOqGfP`U&IyzW2RP+TZ{F_b-m_qtLaOzE_=r#41d${nqlIBc+?KQ@s{v1b^own5Sw7
zElsW&H6?m|Emr5j#u|$DxsJHpgZ>gY+Y_zi-o_eXtgY)4lpY(QpTbxYeak_A1GY9+
ztT0Z)=8h85i9-2KH|#*C6Ac?C=t{6rYdawJw3G{MVxzLv1gL(Uf*l}muTqHQcYB(z
z*8nj4DL<V<O@Ix1su7gU)>CKeOR)8|yWX<(A`2^M1nLwb^37U5FUe30n?W~mrgNmx
z{)tTPEn`jf#TI}16wLQ;%a5&BR7XkrRgb~+kVR;ui`qYPIx1%(94E%P$j-G9Jg+l&
zpObRa7tE<63Wq8eIHKPXp^|2ez|{!B;?6cX5HM%1>EDDbL)M|H2S~}BXGI-{{639?
zU2W1hs3V#kToSn-u<5f0Ip`3ca%nexRp*)NXC*zmK-5xc&M(0Rr@J{V<vmHWi8$b5
zEjK(nB}Bni;fEJKZId(ROo<d?Y*XVFw|2ue3$}{ikB)7S!nnB=TMpQmA6_mi0xJ@n
znvh%T^V+ZvgRheW8@JDEoe*p+N8!~6HuSmB#EDKBcfIOFbY?g<xr9!5pX*@<0h{vV
zqt65Ol^lC)L9T)wwG@(Jn^j-4VMCv1=r_+VLc>xma=L9S1$!by>MJ%ofO2f9IUNn#
zN*_~@>$$joH+=<%?NnSJhtVQZjWR|vb`85anp-Am4K*xQ*r*ksHJup7(B~%iRi6(o
zx3wLptFcyleZ^Sw!!Vsn7=g>N>0=FYg%ck7ntHkQHmdLQg4!Q>ZKDRrb&htx_AoOd
z?M-eq6ic>4n?W;4COe?&#?sJ_C19H)HnRh<mO{~}HvTukR_$H$6+006+-;O@(5JG2
zP5PW9SmXj*#Q~{d-_pmd)ID?t#TV%T00$nheOAu@0c$|WRUH1vYRNdbD+TK!V4F1}
zPdWcvq@>%+8N9<*N1|XdBTxg*bKCsGKcR)f8=Zp{O}9C4h>qY|RzY?8y|=!B|62Ok
z+QFTKRdxoVlRN0`T=kGQQ*$u)+{#1ec(>pUoqMVALR$ndc%4_A|AZjJ3SQ_6`pcXz
zc%g6bdy77nJyg|bdWmkvc$cW{z`yO-a4-Hm4;Q#$XLUJnkW7cYP>8bKs%L=q$OUdu
zwSMpAySt3_71rd}>J@BZGr3-Sb_#O4#sxlv_FnE{8_bTn-Aq@pU2xYw(&rU@ehr&p
z@82y(09!Uk&$%vroLeMx1-A5@a*fy?g1+_G`1esC?Rmxzuj^K&NR8a}J2_0h)Ct43
zw>nuJHpjjtw@$9t<d)Lo-1Rb+FxPI$)q;!9fuDVa9piYb&-wG1J{tc!UC~EjT|lt$
zgbdYa2X?tp8Ewk-iatK3uP!&1E9}6QP7Kfqdv-5Z{<{^^-NI&aovz6BQ9E#@&!ZiP
za<%#z_IvN+s`WLt#*$`jPOEYL7`93=L;AW-$XLSng(`ld&xat_h>h3jPi}VMx^B)(
z@}9-k(9JIz$3kO5uzCU&&KtrS<oe;vvpyFg2kRS!la15>&TzntFmfmGNJfXufOcLC
zo=Yo~WNFT__*|a#AT<Cc;o#@*9EBHpF+_*GEc`h|LwF_;VPPp3mX`B?>)qa>bWxy#
zd7&%PM>2{JE{p7w@j@frNji4ah4BfggdEw=JkpjvBAnGj(rY%7oIWB&@y<Fq4&dEm
zUj1eIy}ilGR|~%F1b%ns+uku3_zf2V(`#`o4dDLfcHyp<7&H!bRi~YCfiKqw=dM3F
zf4op+%*qFUD?H}OYXXovl}|JR8wb+X=_Ib16u7_>uyJjGGPimK!l6Dr$nO~2kd%j?
zzpwQQ&hmYJ?%~j|TD=0nx!`4N%%e_4dG%RHR<D4u+$_)D1DjBl<i`J=(?qwoj1Bzn
zCRfO99I9X&lVK;XrNGyGUw-#YXVgEyhDJEnPr|=`bI9^{!3IhIn)RAF)J?7|XN`gk
z*cdzN70BU%Q7KH|f4|96{7rr@I}&vQSI4IH3d-F2w8>SmCB|hn0c7)~*jVN_TuXs@
z^}$^)KNo$R7rAD6#=P{Q9Gr~@vf|w~-hbg2enGhWKmPHLlT)skk;UTsgp_UBB-XOB
z13bo0`2Ow94gJdh=U3>LmV3SY@;AUJgC2>U;m0r2SN@$JpjZB{{}p=USAK?$zx}t6
z!GhW#=<~(QE=H6o1?oy4<(Q52F{|9T&!wMSA5|v~&{wYs0DYAHwXqcBn$YJ7a=gJ<
zlHa1wO|E=|$<O975%p0Pa-q*ht5HE~Z0uW9eVkW)&V2qe+kwRybZgi;o#6XjVpB(l
zUGs1ER-=MzEsV`ZvAhJ^pku9#CDq3favemj59$bzx(%}&?5O?JiBA?BC^C97d%FBx
zt{2<RbpY75ihZ?oJkFdNa<Hd6IT&HvueM%m0%&S=RnGs^Y69$U%=WjM06gX-?RF7@
zVpA+hs26sAkd?!{bOIfW&=r-gCcr#vYT%%eg*I;~eL+^o5+=vy{I@xj-nO5W9LS<L
z;O|JFRH+*AD{?&<7r6dV7ULD%_2Rf{T;NKpGl8>OGf|jpT>Mhtt}l|3o|HDCD78(_
z;Hbvoy*TCAS;{pj<WNrgvP__V*=5lQezrR6^}QV1&LV;*iBJ?icOoo85s6(aQ-wh3
zQ$aftC{{qpBJIMnKl!>z=wD_O`UEyvH;tgGaW3%W*hH>~0v8_g5;)Z@%h9MnkWq;Q
zGkrJ5R-OOdup32!Y!+uw1SMdb8#al`of=(?(B#aq)`H5FfSt&wXd1T3xa&b(Gnrg>
zdLYx+D=2WZjGzGGck8hYpin7RgxUJsf<XedS{jwyjE!r=*6XYHd8MYWW5bp*HOe1g
zi#j3tIGWsw1PUmpdL^Z<fsNt_^_iT<e2Um|%c5CfBScy!?Q@eWMSV57^1G*XpNqZ@
zdQeqnqgEu%vY7)mcD7HT;fvU?##`4?Ag6&EcMV(Z`dro;dmO?!cEvXNSkjsR<vhDw
zBR0tnn00JfpDTBL(^s!iF(7(x(r9{@Yv^;w7WK8SS1>7EmSGdQcXq&RloYR?f{l`c
z0j1~}fsKQ9l%fw=t?2XAjV0GtYSH!4MmaVd_=y7`Vq4i)J&@_`08^@sI9OGEt%T&F
zFwO^cmY>TC+vM1;+X1st2?whUYtcT;TEC6tpkR_`?*<FBG8;9>L4nwygktL)gizE0
zYsG`@Iw#N;fF>&E3|o(S23iP@EMrI=0HD``GrvXtW1PeJq35{O+htEJw<}?;Z1;aV
ze@q@4Xi_gC<LwKp$m6_rVZc3dd2jzq;KZ)__pJy~DuMqxw8uX3zat=Mb(gA?lM)04
zjIuWfzqQC%N|7pY1KS2Z=gGga*mS;jb2_b{1-i>1zsT`!&#tS(EB$j78{Ws-2?y90
z*zuft4ZF$Uiro1*smFdzZr9|>7wIzU{CTnUdbibH`+LSd3w@r#Z{^R%y<?wU!@k1y
z$h)nucXFYPK3!qEBG>XPo!HPvlTW&W?P9F4K8AbCZ#MLC6}i6gZd-D>W(PEou-e5Y
zHtO29>_9J<dQBf6ldJu<!+!PIwAP8T@od@m+E}&rPG3Efro+FI+lK5`W8o1yV85;5
zy}i#uJASn4bApX}Zu_~V?{qnD_*e_Jd&~B3=_C0ayZ5!fJi|edui1RJ&!7WJYv03L
zSwCD@8oftuH}wW`WvN>~YKQh7MQNZeY6irgA_CL%8!*XaiqH2i_)FRWh#QfV>~0w6
zSS(bWj--|fBX5`u>-v69`;k!hfGl+;q;{onZQ$kcVNsVFy4BE4*1`JyYOf9S(v;h~
z)bM*-5aCsUFZp*gY8BrJ&ucQIuuxg|g4`)3$7TsD?b*h+9sgzhk@ghv+IzO=UMzaU
z@3XfTR|nS^$W45py<DqBN2itC<NKu*E=&wMf;7{><~8}k8k^QDuwjQ+O0~TK-rJ@&
z1WL(bGX=R?y@G6V%!KyXXF+x~U{9*6{^l-MVDkw8nw0!5%0)=%n~W@l&cNK=-P7kj
z_c^-1y9*d-{r6~KQd;Szw3U{H^UdG<&GaoF`3Sx6!VAlv7v;ciCnv$|q*)I6o_?0*
z*FPnP0p;Np`8WQfeb{s_Cx4@cC<T2??Ruq=Rr|#^6=9NfDW+yb?PcsK`t0_ey*x6o
zT}&TItqN~olJz-VTD{n3zEJ5VaXpBs;rYq?Ag>3L+X3r)@9z$Ig}$1F>5~tW%N6}l
zTZ_yAZZFp<lW}vF`UwnuRKmSn?i7A*wm;a{6egDS^cO9VZBj@nnqa%VehZ+iHjZXM
z+f}%~-Yj1C79|3=jr}_x{nWK+$$Cn&WSI5}y!(k7FLcaoN#Oji>Y(Mn4Cq8JHVdba
zL~K?>RaIS|47o+^TA@;l4r9lkFii~L(Vw`er8<dpv8^18LLp+#V@wQ+t?|E0wh0c6
z<S4oncUTG5365&RX4rQbP9lv?RSsKq{xY^<B<HRl3>&F^Rp%L^#t~_h$)X?Od_$Ha
zl@fwBz_Bg|f#9C6RWrG$VH1vZ$W0uusbN=anpx%i+(yFzCwqodQ{~p=E<EKyt|~Y1
znD=splT(Xqt6cf-j7=SZ1v=5mb%0!pIjW7uOKUA;@V`rOP|`VBqsWb8J%v68kGVx?
zjTT5T`$1u%rmxoLQg6Vpk!E{HM3%|b3l=A*(H!i6!24V?2PF?c9Hd&0fCFRXT?pBv
z-sjK}yo=Sz5p2-6gt1nEjsII9ryYvbi@sL$c?{$UPECpImculRr9q?nmDXsIv9y-!
z;2CnI7&kD+9<b-m4j8tSLhTQu<6(R2!3V8=hGim%V;b0`Sp5hrVh0*Fp^F+q!FL-=
zc(+8Q$+fdl_G}wVGS+HwxkejBp)Q2W)oc`^&I^izo3mkNYD7L*8SUU%?SNrpxkejQ
zK!HQ4MT?2PnT>LN3^r<KbW<qA8^*a6TQ+QF2Wn}3&H?sbj{xgkr3NhS;I}@{-B=o(
zD$Q(EumdjFR-+>C2s)vWn7aYls3p+tPz`}+1NNP>7gwH(75}yx00p)laxAciS!)3B
zv*aMKZ46iI6+7(k`K`7nJbsO7nlGF@{Lz2|lJ}pAIjHEJ&&9{q#^k{n#*<$VsAu1@
zb%oIr^Wlv}bn>4mv}@2Ixa%!zH1KWnckUk^lnWd*W;1x4FF31l7-ZbsJ4AyzuRfwh
z3!+20eKOAKlsvN4icxd>(Si;wniK~~7u@y0ZrCok=|i@yL{6if-;LGHB3WZQ2XU=9
z)~g+)DmLLUM>MoyD*+qJbq;c!5iqf;3BcF`wv-y@KWC0dxt72WALW`uyJ4HaWA1Xr
zc;_fvmet8>DTGX68SlGY>vP<%*9pdck3dw<BnWb=6u7`OHB+%cC#FuWHT3x&{O=El
zDz|6zJ$C_{MQTUvQ6J}0*4SvxU0?9Lm0Ve0mwO#MY*Am2s8JCkv335@;_0TZV;oCS
zUpc6Y?-%4MQQs_A=%d)>9$Tod;gQ|d0w#tgSB&$1EDh-MGa|R6K3bngeeC<3$JBAr
z$AUGC>npHDJCHj&(AO&%EE52I#MoJ8-0wrqo~d3T2mZ4uS6~}}eGWFtvBi1?HkP0h
zV{fApBHn{s_ZxP=4j~*H>O4s1K+wl%qs)d?$UR-r$KFPX9k7}zHqPf(UxR~8k1?w!
z*nts2hNq|#kZaV(xwHNJtOMj4ZGW^;USDI;2_NSj_Svuz*bHz;Vm`4M^Om}9+PpNN
zo!ib+t5q|FHF%>D#H5J-MBl?($pW}S0d(Qlk$;y|{$v{`UA!2Ne({AZ7VKzWb1S!E
z3KG3XnxerUiC#*{Q(ZXHG+s+2OHxjMX@AgmPvJPVYrgks)>N2VNy~vz;|0Q?SWgdD
zL<O9_hHWq`DC9=u>EfP-gJ(%3Yn~)>q}Js<#)Gs!oEkT{Mk8sYG<zL*(KkP^((z{b
zAlPKZnAyN`7J|~EDE~Xsbi`?_3d>yJ@)6$r>dr&q{>HOaLsc#nY0u2{tr-z;mXCYc
z1l3u&K$tRvqap7fQ~_zwcG&=A#md;uf-MVYu}x&kUz~(vT^*1XUWat?1&b8(IK#2u
zVIyD{?s~y?P@d-5QnIxe2xHR-wI)}=J{|=7aW;PV!QV~kTn3dZ6_+c)*^|Kc{?K9b
z0U#Xe0UKi#Y;cr9u1}A%M5nQ#`M|pe`iA$9%fF4n?f%7ACi>i~=S9~uy?Wl!pZNA$
z`u5*5(l7qT1AY1{Tti}cx1&;ErC|U^waIn#K9?wY7-M0=acq5`<4^)}d*i;)2VTnb
zBY)uC^u<>Ted_K&`NciG5k~#TKmIZL`Jewedimv-=@0*rKcdDVw}LQnoO>E>umf?N
zi}7CC+4=voKl`)G;lfk;nV<O?`s!D|D*qLy2<y*$Pxrt2zZc!S`@~<N!`J__^zI+~
zx0eC;8k<mgx4VbQ-=(5Yc~W70Jac5=1N71Qyr9pSclXRW1V!5s*{Xf6a(ZBXYf(^5
zQL9M1Pn}!`=&v2vu|ChHkECO(`dCU$AA4-3kITECW*g^<jSO4T$iDNWQD&5Oa+siJ
z6os<ac~ETGv4I0{&{V)9Y)~9))Y$>~MP~=tQ>JoN4r`M71=xJ&mV(LkHyY1AA_KEJ
z9V8->?W0jvx&1`?-1*YBZ`ppc^)@$ns`bOE`@PzFt^vUPaGuXA#}#kx_p<1V^Oi<;
zno}aqTm0E!VdM^#+zuHuazGC>G7d7{Y6{-h+NV}KfYGs_woFGef2>%g)vl3f&eXV@
z&5_FO>R45-?{l$Q4BV#)6c~t{CW3<?OEkYwNQ4dlgoD%(4mt!E`zCoZN2zgIpM}|8
z7lHD7JqX*uamCn*Q3<3Z3ue)GaDh*-*ZgiPY{s{JYS;>drWs|tSXMb2C%@6Xnf`I@
z8d>-;zjjSdzoE4h5^CF&hRyl5HH${%UQ?616s9z6`fhCJ$7Fof4ZC84?FJWk$)P~j
zR9Dz1c((@0B4nGUHmAw0hCbJ4v)V*#{9kqm@-MkvxWA>(Rqlq3ah{8&0}DkE1IXb3
zM5gc3uoWG{qt_`hEKMI(M>IWOY68{1&w)Mm`8YOgq_q@;=EUT>Q@Pq&S@hBL)l+_}
z>ZA2J=#0dknLZk}r1~UO8Aw$TY?K<dFxINeEr|~CqomIX*hrnsy5V3skYW=jt8KDF
zEd}UALVb-X$VK#VQb)hhZJv$aeN>9S$>bXPJW(4<=Tox_75&CKu!FwJb+!XM@(q*7
z(e%}#wh<^Y*t0R#M$o<ZSQ;$bqaYI?=p(5eFl;iG*hWF_$?QO>uxYSSwaGQbKF=DA
zq54`w9SCYzOdq4ZTA#DN1#Fh>A^K)Eiq<+&A$RE~=!DpT)a-!SC`t{x=qo?Vu(AG-
z>PWPoYJ+OCub|T$p|94yX$K(Jk~DMgJT1>Z8Kn^Fy-jKdBn#V|Mq>MM=s>#0QaP8_
z$7F>aGwNS7&VQv^Qo5sAu<S&y9%id~poc#Qe~^rF(XQawuR7Ji$**#cYXd(n(9~kd
z@bI>G))4rJOW*%$@?OPP$RXf5IIh1#jLhuAGb|vg|9Eg=O6!Q&_Jzx5rWQgY|IXvP
zw7LOX*iv|&2POq<iNc{#4iWft`Mxm-M{M>ATDth|g^mT?OyQb8>wuYd&l=t}ci2jg
z4ehCWUX+1dry%o)W7RJafB1Xk+PC*i;rd#{eta+57=O|iSPN|Fn#m$v-tgi+@i+2c
zT`YSB$+hoq*@f8eawrnzMVI(CKX~WZUhLoT$-XZtj>GY!<oX&<F)Q9p_R3wGT#6xW
zeY!PPdVSxDZkDix4ITI2p)J;Hh<E9)SI-V(&pxsipetjs)7R!UUCSlPE(L6{AB?a6
zYQNETpU3yPrcbGR))xNWe%k%@bzp1azi;Sz%x*DVeVzz))2Cji?Ah_XO~-nhu+o_n
z>XFb|W)W|+F&8=)^>t%juy^$L_Ltta0ruUz@$OsSUwtR*FKs5O*xTxBJ*F|+pNj(k
z-Mk0E!$!$qe})mQ)ES(5*_OK>_yP!<=mcR~^rqvfn$BVEwqWu?DdGFhiH(y#xwj|-
zY5){On4#THu#%k$k)~3oc>0#|CN_H^>vK8gs7)t*;8oH(wAG<(8s|#Qi6ZNsN?!0m
z7DT$Pmk2M@%T$}JXIq5Ei52(O%^i6}Y*a|Qo@*N<*RV-j#&fCtxD+#TDi-PQ+6EH*
zC|;D-2M+F2qTGTtv&Uf1zLqWiUTbTo)%&HD+ytAAXUHl=>}Dv?X3I0r60lCGYop5T
z?3g$lhUL&H(F=Q}31J^DpHWFM%dGOfS+3uGo1MOaW3;g6Z@8;N_sHoew-f}|+Er-D
zWeeI27|s`%DroWdjt_~3u5<72nYaI8aaupD{=HJVFx);tURjvfw|Ue5!4H05IRJPU
zec%Hhki!wHIxk$nLWlEo5z?Lh?&%k(PHzb1P0gArJ=bPfeW?%>w?rFFm-=44-%Lj2
zO6>ZG|IH>#8(T%ktTMdnmvd_G=VOi5x?nPk`s#f~$;XlDR1U(cVg69;wX*~IqiXsZ
zu!SK*v%Podx(jS+Ew9$U!A{tO80~Q}d#m&~Za>YQR<oxW<4g-Xrg6QPjJBMDt*_C(
zKBL`qvDx~%vh7;;0m7wieZBg@?=Ln|Q1Zd;0ll+<zxbg32P{H?6LADjx$(?q@V`sJ
z%pr1G&&r_=dIv7@s~pzgtS+Dn8<eVo+l|J>+XwJNB4S)=Fa~u3CD4NqvJ6TBg-3D@
z&lIqkV{ZmF)_cbuuqjXZ?AYW$)Ug?MeK$K$<-y8x2Os_!cfIi(7hoMx+rzN46W+M%
zHOdIILiTPRJ)?54$owsAS*TD3k<*0lud!v&VyMxvdIfR-Ka<nnD6LD<=SA#BE7W6~
zBCmek#5PLkw9+>kHmjRcf?S1;q-vy)MVwc|Mimje9X3jVE~mq05vS(N-I5!ySID*3
ziHJ>fY6#dWIM%ZkITeSnN4p1oq_o18fi22a+A|`eSO)?&<D^}UwJD6XEo`8mVJE8U
zt7cD_+<2Wa7}eCIa<uvxGm1=&RzG7yAJY|VF4w`RR7$f0=yP_^N}uMu8s}vCI8{Fw
z5uKpgbRy^@6$;q$8k^TrXnksOF`ekglFN0}AfsyIJgW_Bc3_aTyYTAw*o_V+VXP6Y
z^iiGQumb^G4mPUQEeZN)V{J4Vtm1{qqkUc5s7q{0={4wKS0b?)u8$?yDAPwcL#HUW
z-bR(q4n(=~yPUMovlRUuk=-%Nvn7LUIVow;+Jid$s|F`%Z3RSqjysvRRX^Jy(V3}G
zC0GEw*r@-KQG}fXhvFKOyJbY$soROH_26WdDTHh_ZI6+=wrsYb1KBg^RN2-$?|fWN
z{1M8h4BAEf;~0XCcyBXyPVzBuC-cYp+8p@1$k|U8WU%I>_V%P)%%TgpmdI&tXUa*A
znjP(6YMU2YDW_DgB%+st?Lx$FeD)sqJ|oiJ4g@1Me>O)OcO2IHuH7Q5&lV)px5GYg
zyI><d#7!Xz*7&kLD2B0bVB3QOy~h^0>7Rvd4swm{B1h|UmNQ5E25h6%7r7=^WLw2&
z6VapCSbI#aEjUTB?E<#GUnDXb`p9^MH{SxMI=Lp(FT9t%OQC1fN`O9I(+LTP*wWW1
z_dx6DSvH9DkJxOUW?L_j{8#i<uyuXj>qLC^qdI}H#P^eI!J^UgMn_z2oLiq0c`bz%
zHpo@(Z2@Cf#?n?Tg*nRgkv`|(ja|p9KOn+;!ZmgJXx}xv@YpyXJ1+Zu&_|xXcAbv&
zHtJfRTLwgiJ~G~2z(yELqK~uEh+gR9u&xVn%|<<s9ay#ZwHB7^7-(8HY}7vVfz1_l
zLnnH<J`39^U}K$_gIr^M0<%#p$D7?ijkmweOCDTwW#00dUR^uEzfmk`3mK^iPR}bY
zxko?a)<3QsesF}DGgS*EHSWX$2a6~bz{^QlYTU|%b}?F|w6yr5MJqTObHCTf{RgD%
z2#3F<b)98lY1c<Fu>Ac|7RlVcUj)s((Uw*tX<xfha30UIM21R=#aUAW57IHiaxYyR
z9+-nVkzSKUss;lKY$qRlW)x4d`5X45q?q$!l0y))MDBB{xhlneS$uNp9EbI2L@*n!
z$y2F>Lw%Z*5<rSq@j_ZTDEE?Plb7G0HL^R8>U63os=^Vx3AGSp@34orTX{$ihn?K_
zG@a$XNq(<9`MikUL5>_XTN5H<it%A8w$nVRq2lOcS%@w7o^|kX-)NdwRqUiZ=By_-
z<4!d4bUxt}eg|iwrpa)hs!=*iBoRl~r_!)-AD_iYon&#Jr3l!h>D)3250a6<wHQR^
zX%K7`*!Bzd<D_zCxk;L|P|Z~7V;(@PZ+cjy*twmOVq+y>xrytLqr4^k`XmL+SSNUp
zbGp*IZ+A4lkm-+q&kOY5{fU?8S3h&2U;XSv@46{;7$#=nr^DiT|9|}4tMoVj{;Lbt
z+eK%LlO4`X;n_XQGuW6jws}%c^lH&W<*cdX3l`o)-f_JPzDLqwJTNxst4v(ylW(rI
zA4qgT9o=n=%jU(dYqJ5&kuE9G*ucucQyk}=9k6lEpL1!E(>FH<`fvZ)KP#Ctzwdi~
zKmF!!{wDqF|Jwgpo|!F^Wcl;(rGG%L{JVdE4&V4E=<vfoz39TdM7T>tjd0PAG6C?o
z=00C`h}e9qKC(XWMo!W_eJnvAmp<olJ6NAn=<}*_+@p}rN#stV?{b7PpOEIIT=S>1
zjwRK{BI8`r>v$|J&pl5Mi%gcb-1L#{z+u1Gob!Ze`$7AqOd`8IQYvMf%fnSa3B{2Q
zK9*EpHEW?l9~*W{kIRED0!5#f``#W#iN2h~MyU<TWo-v^EKSHpQf!2GmrR%PARBZZ
zmz<e$W)AgP?WJ<|p9RAnMSm>a?I6VnNZQSQN`C|Et)$P*u>DDG`>bh-EEneV=WDk0
z+{bb~&Ea~lwtYU!y~hk}RmV9mB&En<Q975D(kfG>LSOl_v*=Na=ETO~Yzs9+#>#i>
zfTkvDd(5}{K>$uis2wiJ5f$cp$>byQqO~)e?NZ~1ZT(3X>*g%dO^I%Ln66?v&1laW
zu`4zxs{?zQ^dKQ?@zqH~SIKzsl~MwZElSNHxYNi}O;t5#Woe6ZaHO9dn?~{*_WfQ9
zjLxSSMXa)B&A<V`4t9w&ovOc^II03R4l<Cu1E~j;+)3utGDuY&aHwW{?8b*JT;ACZ
zSgdGT!#15}cf8t0*$*wIwn=hqRU_1SIlyCWp3Fh5Sv2fq(`aLG(^Ca@9PkmMi_xdT
zi7uS|$+2;txAwfo##p6r&8#{xsN82{Oh%nxiWZr7KmkOc_F$}5Um#*5BJ^qF$v3&i
zJ{RYD&_~CX6k7qdA@sS)RSt_pZg$=1i5f-Jq-C0f11PncJJ81h${w>py*`>;rQStt
z`ncN<%6osZ+6emWX-54EVAFTAgDs>R4{)AyHsz#puVb6vC2}8fWqtIqBz<1}-KO~L
zfL-*_`<xKf9g5TK)j8JW+OTn-@6hM7Ij|vD0`_dY`EdMez>j(qO|HT{pBi?TtLfu;
zYKK2H=;PS*afJ=-yD--B$_{`E33h-F?h<NJxQ*f(PBpJ=RH|v+=iJB0gpSy>y^W>Z
z>!aC$2^3U0=;K^ghe0OSY-6pqLkX>oFa>NO3x*V%W*gZduh9*`ITvhHt*x+Qvr*I9
zM&Teq_K`ySbe61aDXz}?NtU$@hpIUCl>%)lN^RuD7XbS}1iz6|G0K{c#~~;c;LPBI
z1lDU_U(QwSA?wx+uWe+JjY8en(Azw32UYWI6f`YJ!5xXkihk>XpT-X%2t|%eEp+3Z
z0|5S52BF&PO68F-jmIPx|4qJwFPncu{U!)9NonP*kv&<h?YH(_YC$6@{FXoc@8!F-
z1+RDjOV=LnUF`dK29j&^0JPTiv%~LGhs}aD<Mrn6H`)!)DiDX-+-XtUrT^{5yKiB8
zo@bj}<61iYe)acSSJ-;F8TPG1wr9yDKFix<A8mZUggrnCa*Y3_4Y~SzqJ4$Uo=eZr
zN4>$L?JoDAj~DM2_DN9=X$xD2ebwikP7tuCXX)bxwiwZUF_yx2oyw@w3Bx9Pky=}3
zKzMdPPGdjS?me#Afvs^~?7f3rGY-fNTeLwvwk;dgw?9{(Z^&I~|MCi3N+|>)qR(xt
znSMW~KE4$@K=gcLG0L@<TeK<ZijAUYVSfx;*XOI>hrjn93yywt-h#|SPy4P~$W<r?
zW@ccZH~qN?>DT9mm#V?wBXX&K(#1qu>-Ipwe=k$Zg2Alhisir79&QsYUACt#drbbU
z5Ne0%q^{RFe4m0q>sHUDsL0f?;s&x<Asd8_Oz(>y%mIzIBXz@#MD_O(?(Yhews7&^
zSNxyeEWW34c<Y@sJ{T_s?CakOKWB<)_3swDnIK4&N%eOxF6S8k++<U0d@ob>D$lo%
z@#>fGT)&myo5I@>WYc=k-X^LgU+3_9>(2x!=(}hCuJ?Cp&zJ9}6m+$&2P;%cu;(g=
z4KLm#`ug`}diRq7v<)OhV&8R}=|eANdU8lU6C}a`K+rYbU-Cw9&jnuhNj7F&^mvdx
zjt+d~?A7ZXIGOqTJ3GGst{epEeTt1p)M0-+Gv@u`IMwwlN5I`pwiW~YZ@htf>D}+9
zm%i>L`sR;(GkxSEAEEcW=RHCZ)F!hk1!vDszfAMfe@f~6#^RTMN;29L_}I~>a&7vE
zUl)7VjY)#g=T`fmq}JzctdNhzy7ew*XIwv;EokEsi_NOzC+efhGP};K^r<#Gz#Ho}
ziBVf<V;l;>$4Z~u->J8F_<aVpY*_5KUT95a<M*p|eW#!U{`=I%^!n}FvlG5w16aRr
z(hXL$mobxRHP}+CZ$JTwU2|qlP5#x^r(v=e%eXOj1!$|mn8J024)vd$A{PBldMmT=
z*VG4^=t_`Wbjo3l=x6-17XwAz8{>r@G3}Mvs8}$UaI~n{cb*VYG!^#IDC?5xqB-XV
z(&C_1sjfIqh>yWNvM6IwHG{?wc2;@EE2tW1#j9`F_(9n@t94{sof?g9t_>T4A7oEj
zLLpr*uxZ#d%0r!=YCi?bTpBi(B|%PEIsGkaUFE9L`Vy%PK6ow$I$)5_h~_ccjxq;q
zQoMeaxknbhrC}3djRJ1_tc6OISKr#PPP9JEDMU}}`lCe_>9~|WlkZp83I2-}S1xdx
z4z_W#Vzgt@!w+*#8@35fdK3kYeO?1Lx!tVAln3<NJcB|h>O{a+ESn@0jIAzrI5o+#
zO~9#MNo3g$ytL2Ryx3uhsE9ebC2|}3S5(&{ul@iYalNj3s7cL{AO{MmdcoMH6R1yM
zW62Ng338p4|9wb)SRp!MW69n#6b0rsDIZ^~$S*Z+`cly6z)H1c5|jdt_3HY_m?aa2
zs*gQ+6)MnA<;9n=F(HtM#ccI6vW_*8<BS7b*VkDK>2jYJWVTSOpHVa;Gebwj4pgn}
zA^J)yN4Pqh$;Xb&p;otKQn{HOkl*LBvQeC2sza^o^U`coPPFRt6m-P((Xs1Xe5sG@
zq%TT)<aVK|9AKj~s6^{)n2j1#!9rGq%3W(IB#})!pe10}LrvRLh)w{TjxDRD(Dae0
z!bU-ktV6jrxw?%Chi`*Yf_e6n@f@2RGx@t%w4>Dku(}U64{3Bc99<Qe2&9<;LPsWN
z8^sTyHb2!eVZu5oI2-hUKo53oij=3+u<oR{`?{g+F{3|#`*H#|vh7DD_^zxu|4*Qm
z<n}4FYvA7*R8N?1(D%&iEFA0Lg|@6wiy{}^=jGaXp?6*6w(*n;cRe*HkwyL+cYV+Q
zZV|%9tA9k$qa7yk_~nDC5&ZB|hmAi6<ECGp9l7n>L2KaruhkC(=D?>dT;NN4kB#4x
ze}6(iWo)<TdgHFQNZA!Olk0-*++pL-&CQMc_xKpL&_0BSWRt7aQlPZX+8Yf!V?zXS
z&Uw}6{C$?oc}uRq&d)B$G_ZEV#(jOq{P4AL*IWAyW1r`XKDS6~j*jLaRFj+cd97Y2
zj{~75v|BX3wToPVeHXA9b^^A!hI$1Z_N_kG0JXj7`EjGqchJ{|fZee1N4V*kAAY&_
zX`|0gu6JC|;7Xs<wLV9?aQ-txLBM8xE@NrI#&Y)>6+y22oqJ##gH9N>gg&>i=HtB9
z6*dc!xX{<-@AsWt?YqKVZ`g8P-G7I1{(u@4c>|m1BL~@b`f4_au}hzKHcIqy8EZnH
zy|i!kxyd!w{=n~}jXH-~3{kH9eg5rfYPA$%pSz8^BDdZS#IeNfv)L$WHB}57KYxN;
z1zXOm%mC3>VC(fY>SJ#|uj!*<A2!BPZ=?2%eJ)q$CBDbmY67Hnts1LYVRcKiJv!^%
z!9j7|P&XadkAF5Ofc)@*j4xUD^4cI16}9v`PgOTA@Z2IO`O|YN??XHP%K_1%=aWXJ
zY9;_jgPdj6ct8r#nR%aCp>ZuyJUM&&>3CXQOEk&Qt~mmvMPz8ynDLq`f2$VG(KP2t
zJW4ySPoNRMQt-u|oixfe<w-dGr#(kX-(Yi5(0-6;lDqp!c6j{#$hXZAz|1{+=4^p%
z(f0*B=E_U@;GF-X_DzA)EGsv7t2dyLEEQbI3EbcJ4>PV0zVS&B+p%%16Vh>0R&1Pl
zdp`l&*sxj6fQN~rcqirCL?kya;5lNQMf(tV$`u=wY|wPv`v>JGP6^S>;Co@LyxF*S
z{`Uhm_Bg2=w3fp3FhPz{?kY!)b~@EHHq8X!fj+ca2`onqiP!bH$W1xcjSpS~Jn4>&
zGc0&>aeUBCUs<rfa5K=ieR!nTkA?pI|JObJ=l}32{jLA^>x+YXkf{4V`hB<bqu)*R
z%G1P_hghACi`-vd=CW6hmA>va(Hl!Y|CxXGCHl~NNBZc8#^s)g{)3-?N}qdmnIyn3
z`h~CR2J_oqUX0(O+kfc0-z$y;-b4S+>ofhe|Kzo0a;_rRj6P*Ka-TDe`fJBU=4UvN
zaR6dQu~dvpb9yfSz9&LjbXkw{+R|?4vQEQw4s~3|bSEB9Kkx(JPv7@_-%CIFlm7yJ
z;=lYa>BoNTk1l=13$?)y4DLVscj@?l`T^R#{D<kKpZGshz59~t>vFIANyokGW2j-l
zy!s~;!!h1{3DwOSA$&CcZ0^%c;3uzoO(cD4Iw40(#p*nuMg{sj8?XKZ2O!r3DAo0K
z7;oJ1WctXH!5wqm4;hjFumf3Z0BHS;S>G)W?l4TqnlXKqYqJCVtgL-}Ji+Mzti@}8
zXi8f@mdI);47vcAj?JbCwn?$EEX3J^?2^&!DWYy=u_6>KliSld*iYH~o^|tO89#EJ
zwOCSh+n$2$pH{ZM%?)OM&ud%%pjixxZPp1L`X*7j3)UB(XjX&ZA-d4l{Uh@h%XMdt
zQWTgZjExp$l<4j5`)?cg_6f@qb%YK&k4=ak-64APB!xCf(&zaO&K17X$n4Weox<68
z^=BMj^HAh*Uodu%%_J07Vh3uVu37p&gJYc#eb1CXlP+kJ&G#1Bil|$`Mmz=YWKNg@
zHZp8P5*02}1v|T0-$8A2IwM+{v$_b*c9~<rQ7vXdBd=%Zqt_#t5bNRCRGNm}vF&#&
z>{85^*lsBOmPA^oR?kRz%oUs74|1If<XTbtLnDUy-%M^wuTdd~hOJ>w0h>ln*MNPu
zQ_g>p8;_x#@p0Ft6G5(dr^UhQtj@zMMU=I@=2lC=9DcmkQn@D4w*qYL*c5%kT!1y-
zgjW%{8TP9BmPH>cbVA3v$!#TfN?N0$LhcDQrx?4KSLLoZY{~2=Pg8Ssxy@%i6eEkK
z7cthxk&YTw*|5(w=mfPs-R~fGog4Pxe|LSgwDP%e*UMVkuq9xtO3R~iVka$%oSEDR
zHC0%yMh~;w`B+%#>#6BPvi82uYg%C=sZUUmnmvmgMF&XbCWTse718vwQua`b9yWbF
z16#(uU0)5`8Ps(vYzg{ma%FvOHY!nPqeyio+5wRj>nkXMN^WxXv1Ix<XpNK}+Zp<3
zHp<3|>4epZVtq_eAED0=u%9B=r1d(I+bDfEsi^{eRazb`COyl>RPCqywygEd=!#bM
zb0t?jG!tr+ppRzz1zTy@+zu?*&nM0-P#qYs&YG&u{{w1LlnK~*FIV(gT1$z%2EdR<
zjC-teaDASkkAr3@ildpw0?$)^zfs!FxzHRb<ZEfpS|n<b#_A9t&zj9xBY0G5Ms&3}
z*b=3*-ps!pKN<qiJ{5;#GI!>+Y%+zg3vTBx!*P+j`(_J7(7U=rCT4-g1JoFqZF?8~
z%vahooI^3-#3PV{Q*A3ES)yuFqcQf#{o3fI;&1&L!878R%ImC@`29#D5gkOXr};86
z)}CwF`g_~`hHKbx9Sgwsa@)cd<(9j4bCP+xNBV5gMFUH|g3X+b*ZSPQ-(k0BTc6jh
z-;2^_r(nMLeM+8{VDG)v=jn>Rh+NGHd`0dVR5)8YVfx(nxkq+)_gh7ALzlPYYW@{#
zkNvRHiJTo<{KT<HwB0Y#=Nmfb*q{@od$zsX@Q6<MIL}In*FT%+lCotbSDud`(=DAD
zy0H}7Z7e0aK9=%h&n9yEt{M8hWuvZP%ld#v<r=Z~SRTV}Hp+D3SvKn8-BO@x?XcN*
z{oWgLddv>+XWZ!X*hi1)<JMSmx$&Q@Ykr@X%(-sYIj^s2{fYX1@k#Y!Y`&G?!;8D?
zdnEGlS=*$Xh7B;@5tmJm!SU(Xh1U#d@*6gTZa-+(sk^>xm%ny~#-D{vqeg{ti$=WY
zbry$|V++Q;+Ot<L+!8u9y2F}Pcr~nSY9|1HbNMM2Cw@=8U$rOLoR{!jqV{i{9PGWT
zKQmyXfGvI}x!Bjgb!;x$)uZCQdu)_K7bJUEz4Ho7e?MvqLd%rc#D=T1!d6#pey<eX
z!?01qqW#q59<erX?cUaR{1x#nS9TOKPuSv|yx|jdElSA;DSS8}e$dJkDVc6>7H7bs
zX6NPlW|!#wPqdI7`vCYX>*+(44bZ!8xTXM8xFm@J<2@Gt+q<7Il?`v62z+6QUN|J-
z_@^j02!-!^7?a>*o5B-@L@{C`v^`F!lVa=p3w7(-?Gw68K6)}c(u*&?NKckO?|a{S
z>AmlLZ<MA`9hLb(Y6Hwqzd+^m8cCdCZSvmI$BPffO6;o?q?1CQQqb8L<xaF7vz6Lp
z6JP9E`Y8XK!cTzh!X9A2^;p;XN*;aQ`k1`NNW5R)uUD~A#7~zU=eOIizo<*l?5WyM
zkC?;Yb$jZYm=ffeuG{wZ@Gv*T_OzZyR@m0BVS2Fsq|K|^{WoIM?<Lm<m*a)J-@YFo
zC!|rrvJf1wSd@hiiE~Wm+PU}wPTFT%G=UC9B3HrJZNHbpH*=usW;>x>7DXJ*nUv~9
z&TO#gva{Ztlrlu4z}1f00fMS&M!Ozf4~8AZJ>;M+CC3&w=b9N1umc<6_rlK&Y-QGk
zrD1n$LRm-Pz&7ky=qBUgCojq>QMbMj1-1#;hJcL}o66Y&2%20Co17hcFoR)RW3O{{
zXMtuuQNt?OtbGI9tQl!TzQjg`ts<h`<-XPl4Q3dwVv_^dthQ;AXGd(dK`{HF*u2jT
zTLSHoV>f+l6k-LoMw~%a9jL25ubMHD$A&Gf^iflJHRA&3*0DY6BibFC$<6F8^f?8&
zR$A+$*ui+nnbc{S3N=3Y*yj?}J-9wzjHOISvj+B{6GRQWXEnq=uiN@)b|Ce3Ag%2{
z)Yp1}tztSF99!!36@9K5K*0tXwxRX;rX6?|ws8Ynuu(bKsGNeM%dzQiT?bNH*(mFC
zGM%8*^fB52TH67UD-MOq+}gL~s-+!NpNre5rjK>*u)&6j6V2>vumi4-W(Uyc%?{WG
z+4NHbBh2A%Iwe#?!71-fddZl`Ler;lKiRX9+{u<f(PU1IOr90yeO`!KG<v>V7u#~D
zb3Dl3Q?M~{BcI3v=6s(@*A}sFqfaLS?z;){8#RS*71>X<1tS@keQdWip;FZvm6%eh
zal3G?^L~sEQgO|?p%kpiIoUZ#Q4WDYzZv<wjk})zo!j~2k*Wwp;rnadGowXQ$|`x*
z2wKx=^5|2;Qh{xFq`k*x#nvO2IDdpXlp5ugVc7@l5}6tzS$Bx^=kLboWS0}<dKLR}
z?*UjW8k*Z9k2wK5e|ET@17G(_t^pfAm)m=69PlH&`_Cb_*v`+sCRd9nj@Y=*Q@}oi
zS_%WOOJLO$15ZnnE1o?)N1ylDOs<B_qL)`S0|K@S{`pYjf^uGEF|4q4k<-sBSL<VI
zPaSp&`fArUmSVdGC3ItHw_A;+9@}mM`ve;3zR$PxmHYgJ>u3jheU-5mv87fg!oDBd
zeJu6Z!&n-gVFygEQ6Jrgbz>>&W32sQ*rHr5qo<dvjiqPVD8p{pwseA?p^s*x2-v9W
za|r~D89f1;*@1}7GEkqTuh!>6!H#}N7+YI?9_7~CD4%yQ?gz8=HZNg~V*68@w>W@y
z4sx@D52IkW%mDsedN#xLTW~#$+y4w2nQBfYjfS-)%!D+D$OXO|$Ck26ZBr-hENGmP
zuL>X(jo6ix3g%Sh8UQCvhhxrkPGLS;4FK-sc?ReIqL7E3aPo5MjPOEo4FFD0TD+{x
zfzEgyxPAFP^Izw@qto(te*TT51aaETNjmH1paWfM0PyvVrguC@Rsmt~D9=7)yIHU)
zpXON?&WLK97pEmhj_eN$mU(h6aEU?_K5e9~j630HXTEKY=w+_(RL-*5=E1@|sLU-d
z2NHP)r8+5h{r(`&;xsH-oFZbK+qr??tqRr$T{KHXuyTFxnCttn7c9r6ot?jm&FU5G
zXn!*b4>?C=CvdDY7dR_CN8B<tNvV{<G|Hm93a@_Av_#=pKj{V+k=3PYv8CJHUi9hV
zLF*ONLF*MLxBcQUzuAc{F*c5flxX~-*m<C^+$9~Us|mmv8@olOtQUe^u$kPHSN}#P
zrbVt2QdAJ>&k;Chkt55E_4mlw_~UXt3)b5kjX*yk?a*ohEYhGi?soLCe^Tk&J~+~!
z`r#+^ZC^jqkACkh{o~J{=^uUefqv@?XZm0L%~zMcFT$z*Lm%DKzw$@Fj(+(!@96LU
z+5`QOKlFb3-fw<FpZ(I2UVl2%|NS34rO&-K)BoUK_&WNImv{6VpPi%_+4+1Ysn-9E
zAAf1l=}iC4|Mll375k@t>?Mh+`jbC!LtlEW(7*R{_q1br7vXQ$f<^Cn*GNC`(H(vE
z%ZrY@TIhw}^I<CA{)6=NwXf2b|LLzc>rrMHld7qDDY+4nVr$^pmBoxLrb#)}D-3Sh
zumfECgJ1{D$bI*Be>eU1Z~r!Z@)Mt=AO4XamNChZX=3Jhf%2taqF4ULAD}1S`BU`5
zkNhR7$5*77QYy>=d|JlJUZQSwEU7+9wujW$m==B5OJw+i)TlrW3wicQQt(w@Nm3qV
zGmXp?9*eA}tFa_JBfF-rS@n^l-C5r?3t_P%O!Kgedr9{^u)dyjtb}?6waj7z*j5~u
z-xje0d%>29+7x-WAtMEiLVb<1=q1~j3Y)|q%lMI+09m8wIgMTGmJDj6gn~lHl3-&S
zb-uI%Trf{kd}XXWfQpK3;Dgw`+vT^sp=SFilPqeiu&rht;IYD=`(-S#i~N9eWFGe^
zXIvM$Kc2ka3qRXzKg;zz6&Z_%T}C~Z0$Z>4m2J7({@tiG02bSD%UBrua_>nNeaix1
zr;dXfqHFqjDMtRY2A+^&X&k~+DJ>d}QaB{Clal(j-^lBlp+7#cg8=<^U0^0T1eKbd
z4=D6BB)zsppYcMUmA70LphXKr?z~u~W|N3RZuxU&+cj(CzAW6&mQ{eY2pmV+u3X@Z
z%BVZ6C@9wyDyUcBR5F#qrdb_F+|CRC9h?h%f2Ok-fo(!zsGVS|GXHC#%|Us}i$0ql
zzlDuI^8FPyaH^kq9aTgYr8I0iM8_My`)&-_q#bg7K+&o}dC1SQ5ztI29^*=xl0BN9
z=kp!p$`R-Z&TpoJIU}l;+u3b7p8~ep`kb*<$EH~|t3KbM2<U^!t?5L>=DhmQiHh|n
zN7YK7o8x|<R#<PR4!!wg84uw6=M5OoaXVd)3bv$0Zp+G10y&yoz0W5Ur_*B7!Vk~-
z8tXt<pR-)gTC+m1t@Jgo``q+3X~u-i$6h}}_4T~cM^b+G)MEo5JQtk}a-E94yJA&r
z=ab1*v9VK^`%E0Er`c<L<)L9~-1I1}y294_oZA_@aQFwui0E@sY+1&6umgkI0Vzs5
znH@+nma43!VF%8$9*7L4kD;~)^s&b#a@v8OfycREQ-|@q>htP0>H^z{+8^f$*j4Ul
z+YbpfR~3AtVS^no8|88x)B(MgYjSJ@#!|spGkr9jP<^A7zD_HB9K0Z*)q#-O9}h@>
zhaHg2z7d5W*+#{&Wcs?toO!y`$F#ChllOV4<<dqy=zPD!vpsWfr{i45;wV^a)ji40
zevnKomJ?Tckjy>X;1fBe&orxCcZiJSwGPX1KU%ThfKB8wNoKn^Ld@yN<61JWtIuQ3
z`9Eo$h5^~R{C;)_p&1d|H32k}emy_x5?M0=;Maazf5h)l=~5O+GbSwJcIzY2p0vFR
zvmh^zY{mon=uX*7@OQg*KeR0E0JUOW8Gmn)|8kJG6_J}7opFs(t<(;Xl3ka}2;eR3
zIkljddZpdgy-9C)@$QCA{@!CVxnGf+N6tPXSF3M8SL8Z@;;V#yw%?mvHsuzuRg;tb
zHm@Vj)0JmiVdE|A)%p}Vk?J<Tyz7MZxqjif`<$-yxfNff$Mi7_7>iD(sE>Ak`>yFs
z(M<4ba(y0s+`|66I&n=O`+hBkbz>}DlUv2RU2DIlk3*-A70%FW5$+XoHDl%P4Ld-v
z1159FvZ1e0uD#q6bvA~s>x2hiZP+N2YwfUI*r-RaJ@eU}KF0gcCYKJIMaT==2e4i1
z^JihZumjJjk8{wOO*;|#G+nWuR`1ScA)BeL%}ds9Q=Q>7JM6zVeS@z-Mf|&C9=MoA
zlR5l>#@rhUz__gyhX00wQgkoVx5xYSrx(VRE$v0Wont&EWLmtvIbf`4kg)uT<JO{3
zXg#sIp(7tqCd?oJNLTOZeB;?tQQB9v2xM^n=;#J*_PSV3HEhm>lgPq=YYXv}`!N@I
z!nNL8BYP5VSP|N4(WeQr0vtlA6v5skj~A~BUT#%eFR5ao9jZp5-F{H~-ID*^vDvAS
z^%+%A>m$;ogy-3$$$w9J?+R@GeY~6TgQwcwrG|Gi9do(Y>b&qo*2gN>N?{R>u<TUV
zyzu1DCe=X~BzPok5~YOAOQBbv7W(zio#^wgOmqi2nRnj~^r4qV`i>9pB+6e|UbJwZ
zgbr1$5%9sUTMnd_jp~;c$N$s&StwubkA+^l)6J}Km#Pl~&e0+VVCQqCr_0}uXU!zw
zKU2_0?~<zgr<$@<#L4^Qg_q>uto2ok!t9Mz>aKlaTm4hJt{cCnXyA*c?i-gHpSC}F
z@?>pC*cpDlmxBy)1K*x6&#;A-^||XrpK2J!CdQ79TT>|;=cbb>>RXC7%=E9caUXQd
zZCEX>jV#y1r4j4^%y6xy?XZD$1$|{zYZJ1WtccBCEQPURW7TYsWgIm-V9&?><o>yh
z6>8(MmN;0}_O((-^-H<gSKG7+KQDz%T>Gs~q_8e)GvfNRezv}Rf)s0zTbmnVpEMb+
zXR&twL~DKD)aCBCZUa|?<n8!@rdFbLN@5ktxdIv)j{Y>RaOpp*kD;B9;<#9-Qgt=d
z%|Eq5z4(5@L|+g^YZMIp%xpHB5V<;N#*`Nq<!^-XF9!k{9M{#-^xFb#6|G#APg}IU
zsBMuVmZa|{TA^XD4Z9V|#5y69jlqJ$Hf+>zzZUU}NY&Ihtyyl8C;&N$Gmqc3s9Xmh
za<GafSMbVa)Ly6o8w=6oDvv8TJR4fts<dZ<+$@bbMBy5?WNR^`Im_*5)sNiTSrFN|
zz)@5<D^}<F9@V`wSMbS8b7|N!ocg68dRe)`t<R%eWi^$^sTam<2h&<yR3otw<xSLz
zHP_bX{82eocY<1t0L?lu%8({k=@;?!suR>w+lQ{tc{Nusj;ye$^|?GcB}5SyA4``0
zEq#{4hBk~f>xYUy&%jnmvFRbFPF>ore5F>Cf`4FZa&-;|PIZ?nuocim*jN*})Swe3
zWP8kV!vt(mZZ_^sClbcJ*#R3%Y6q&*|HwKkY%;YT0p<gYrM12$-~S}Rmc0&y*r=RA
z&lCC-`YFL6nbz20qe^Mm2x}kh^Fj3!*ocz%`RFwPkd;6oi>9i+84ZMuHH%<RHqMjD
ztu!ZdFIVvJbH9+)tjMj9ul2b)GYOPRt<MYeRh>(a>!6251%2N3^3X@OQN`_s+o;^?
zmdutJAnZKQPsoj^Ia-IHGtTK>Rn~k!YaIV#Uvu{Q25KK$)SlT_IX0>@HrO_QmDSpm
z+e>MyU3W(L^&IBH^-94$zWTBC5mmbK)vx(alY#$>ujfjsD?4e?pt@CD*95TWPK)4_
zKmg2V8M+}sWb^D)DyEmtw|&y!k=QN=Ti7cxAGhg_If*ogQ7I`oFhvgSf}_wmtI@96
z-fav?W;D3K&)}IJ0=CGvEr<0T_C4wq91%D;>LfrGk!wLX5>P~~n6<YX7q~^~hIcbQ
zZN_y%w6obwiJ~=Z;H<vD7O+di@esx@+AB4V^(|~su45<Hodt)oTp@SECRqxdTq8D%
zu0I;KuFpj$$b!V`>e+^kv76jhea=}5==0Mx?8_h4RnrNt^;0zhoimYGZqtUox;}C+
zXot<P*JohozjLsuVY9h*0QLve&lq4g&ABVw^&Pex`qakK1Gww2j-`M-_BpqgYjU-y
z?@q3UZL~h;On{|*3}Y?!xpA!TkU_DME03k1k5O)h{lTKbH`=%Q+^`9+{;a`yV;JWv
z?5Il;<yJczWzSAwocA`$D3{De?K>M4v9D?ZKp!{dim}w!Qm}C@W2v)2QD0BNMx|aK
zm+L!j@8sHJ+p@1?H<mW-=Y~F7JKyjAq(P0lZY=GC{Y+P|%@LbWfv)GJd73;(!seye
zen#d>JRFPb)SS)JrS+lQPxHI@tTF(a12j=|*jMv_B;~YJdI#Oq8HbWg!gb9BZWE2Y
zj2CjFwz0DG5aESRNTVr@_j$M9k@N27#=|e|e2w&w+1vHHoDf+EUg)_X6)QK+>YZVi
z1^&Dk0`L<9%O2?-8g-NXdIGlLu$LMDB*m^q;nU`4Gat8z34GfX(IOnhE1muz-Y-fL
z!Cv6C;0_*zSM)Sl4S=G~e$68#j^t%NO>v>*QQZdS&o`d(lP>TH5y4ap%U&afPPRGO
z>n03~XyXc3o^$0Xw+*Ra8x<QnpDWUF)v3_1aZLbQHA~bnbiktJAI>=Kb!=E53(tAO
zK0uBYgD(Ml<1ybiY{vP|(N0sl=J$4v^`!jp$R{PqY>>?fNyIo0CdMv2k{(G7{pSpg
zfGzp6!NE8lq`w%-fA~vx^dBsLKKxRq_r7bS@A-y3eb2Yt(7*H}BYpoz_w>K~cVDId
z&95An?<R>Ls=~X!r*Hnyo__p$Z|L9tk6xvp{k1!K@g__3-QWJ@<?p|d>4!dgOHcM%
zaFL^v{=sjY1k2r7t-vS#$%C~2@OM6uNso*w0XlK_z)|Omks5ch34P=4L^n^~Lm&CJ
z?_V}qAEVFHCw;u15mC+?LrZV6$z$lod3Gm6<NQ}gRvYK`*~ROm2JG(X9ew<lf0;h@
zseeL$?8kqcUVHs@`g?!x@4<OExIy9#f65$Ho;_kgY68p}8CX-`)h~z+TE>U+JfqLO
zz6K#PWf`YSpAXeCRjMBv60WV!y_N#EC-P`}sTmM-Vug)sSe&pyMSFoA;GI2lN}s2I
z4Mh*-ninS%oah)EelC|aMeV_`<%W$gww~7x5U|o}EDge4Ji+F%EM_VAIH3jr>?=5e
z#hw;*-s~~q&!;W>*{;RDX1i`RRV>wSI(7A4&g*(FX8UjK`{&6wIdVOnSJ)W;4YCya
z8WyXJv@kF2wldbp&Q;XetQ%A~h~Z4dS;O1>gA*IVvLR{Il%_Rm#?XoToE=?QST*i?
zU6LHZ6>j|S6N-LvmKUqri6c0T3!K&4x$CiT!orI6Wa_x-C*vtMZu)|PqQ;@_k=TI?
zoEkQ1=b`J|^*WX~6GbwYEHW0G7#%C%qX%}wrojv-6ij2|0uMapimlZnkOK4I>^Ht`
z!N%<zbt~9*0UIKU4LfNqk7{yFDrXj(@NwtHO;3|L>LpWPvVyjQnPPG9H6HRAbK)AC
z*HQpC{eblOX$xDS6*jXQnjI=6J~+fM?5YEer(ET#a;tDQROczrh7D)0>ex>rH^tg`
z%2gi~`!Vq5CzC7mG3rdVIuMf{EVX(CYQxkfkrr^4On}t%b&T~2s@H)KY%6`$F=p6A
z-%5uqrM13>v381mUeV{wu?}8+?sL({Ve}dmR!hODkhqo&DX;#j&*fYwV1vH;SekSW
z-Rg7e(**3*v9+;gb)fc;<7zC49YFnzYFP>7H36nsv8`$;^y55XtgYm>3;L*i?$~Ox
zQ76>v5E~^9fYRA0$jxhi6dy|_H?dKykFW#LMy1s3z(cT6HH@|W6&p2y0%!zwX-{#i
zk&h)EYoT5NY>-iLorC>c>1!D0Vkca#!A6-rW30K{QnM3Yw`8{$+Dy$T$`Z6PV?81B
zJ7vjo)B~9TnJYLnNGjKpau-RqB{xj7(FYlpv#i;?2EdG>^iuC7%Q{MZ1US6pzb3^Z
z`dC`Jz6JeppT<Lp9M=vB`#Bu&*{ax_0&mxk9lW*c<aIFQlN%?s%ujIKcys)_$q|dO
z+&?R?gM(s3FMkG{SX~4S+V{KbKEmDBgYo{W-==i&YztBmM-S=YYu&(RStOfLyWRa#
zhpqO{i|>Xt5QY2MyF|Ix4Y|d8MJMou+_1NyzCFBK-NIG_7kQ9tjFk0u1@GAG_a@gU
z#|vy%`aGfSn%qpzscSc^sh2CQb%OFGZ@$Z+){8#h(wWusHl7vbc$ujZqV0jz?$z_J
zM>!aETH0v8rUP4JDd|64%AIuoApV3-u4KRK9JSQ-IpO!$u%rz+#e?N**ehMP1M+PC
z?{nyD|7^pXpJk&0wo1=$qbxE%L$`Wt(T?=`<nPvv^DS(Sz1B@Tu!YT^y@B0=IHHZC
zYwz~Rv+^T-+GDRBcC(*#1Dole*(kAb!?;<i#;*H$Dcawyb_!vL6+vUE`}a5dSsehh
zNw`q}VZK^-q<?q)V@Zj)0>`5r!oRHq*%=xe*fEu>hHHe(G(&Uc_j;WqBFx*>Vq^2I
zi_e-gGP>6Ow~t`62;PKS^0qF;cgDS;1t}E|fVc0<f{_SvD?vVJ!*Au^Q+3{OkC4T)
z&0zBLWnpOwjceJe2W-ZnKHxXjGxopM9<dbz4lLsDtF|askj8VKH0&SP6hZB<MILhk
zj*MrefX(D&>%ko5mM*bbdwW^SEHG^C_cn;C-RlarCObG@?KculpM=k!9ZmN$R}$Bv
zY)_AcUVVKz_4~kbnvQ5Pfdd@+KLr~F(#R|D%kuN~`z(h6BXrkNe`fS6q0iMgwHF?2
z%(`6JC?$2ISIzR+9d2oO>AlMV+pP&Hye;|Qwre*wY~*Syywraljz_`s<u893hS7el
zcd`u_U*6r{)2BcE8T$O^J})P$C!@1T=#iw#ZdNCCeO?1TagzHuRJmU01p3u-L-@CI
z!dRfL&vBz_eNGOC;{V#SQa@H&qwBMb7yQz&xgB61MkTkOZF_@p=-7ymQlrnW4Vz&%
zJD~p%?7)?=Qad})WQzZaKIz-J4NTD{s(mf?yyvu^Z@qon_SY-6Khs*5<7aDLdaT_w
z-uo6)aM(Q1?_xs!TKT9v%4%*J5KXN1uKJ>ga2U(7mdH}J8?#05w&)k-P*e_bS(}iy
zSNxv;&i^;Z?}tV9AQ9<R9jFzXKG?E~b{-2BMZ1lS9D821D>jW*Yzw}&k=Mv+jTUa$
zB)Gw`;oWGBjpSV#HbVPQw4n7$Zg{pu>Kng%#Fq627w<NMY+h?8AhMD)8kvBtY{+#C
z*&Fj#dxy=_@Od+VevnxZ4%n64xqV10x#nK3Yzvp)#%G&c1siEW<GP7mV!c<JnH-<Z
z*ir=-eb=XWJ|7&<5gX*rPV|(b+|`iV?}wz3{#*K51e+j2@C<qMyRC!x-2_`{o10{P
zU~=o^ZfjiEnWDdU?s?Zoy>@-Pz?K{vp?$1;c2LpI`l^RA6!dY%<~Zu>HGLFpumh{H
zBJUEgQHw~YfZecOV&BHr>tnQ07BDh!KMYN77y4*p4V?X(?W8P}c1@jJD>dh54t?JA
zv8?(ub#mi(nL0Z#BO_vMqp&Y>eS}<t9k|p-ZLh#$Yr%3wA2)6LV|D;pV%Def`(iZ!
zRCmSpBMZT^FC?o#e@|%V|6{5j{s*S=sR3KeF5(+<JImFQHZ@vY`za)1B7lT~!>#R;
zZQ-WoP#0*mb}NfwHl+PidS|(SkFNXOQATp<#XHSkunIaX#Uski;WWnJjan}pc?Sfd
zIL|n0$T)Al1sQ_Zc^5dSr5)G2UlB^Rz)P;R)f(rt@!rqa_Xsw$%QZNst=%Z9IMQAY
z-6Gd_0_QYiaT+rO!A#Q%Tg2|%-YI!dP2YY77q~nNS(%2-u<jxj!U0~bt7q46eGS_~
zC%1FJHeZoDe_yh_`1?%F!jaTDU&XcySWK?ZgU$MQhX`}Kj&e&8Tll@n*&@vSx|f^P
z69|1y0juzgr*t9LzR!Do?B!;C{=E9y>!U<M<AB-pG3rE0X;o7~-o=BkT0n0v*C=<B
z>#5gAi{eH!eSr>);HsA_gdo=n9dLb3Y1QXFwkTJVi`8j}cHo*m=3eg5N0%!{qywAj
zL_f~2>1ztuU2dSJi*mPTvn|{|VxuhUz_Ia!gKML2@B92hU%Nh!<9_VM*8UNFjO|<c
zXnj6ooLj#LrQemY)c1KDOIvb%Odnlt8~SKAD(YiDmYj~TFxC9HI!K8@hk`w?53g3W
z5r(17TSX6~YHHpsn<wMi;jOGAE@}Yi<lCGpHT=7QWxnrS-~uo9GUy1t-dXfV_p&GJ
zs6lylkLO98p0~pJUnG5mzsnreoHB8Lnk1TtBRJUr-ank_W;aR%24D02SkTM?FTBvq
zRnP4MM*yEC(&fp`K_b1FbGmiRPPpb7!xQ1GPRqR?M0pqs%isvk>f3`F4(7DZxMuEe
zjx^=Y84t|sujx!lc*sZL`Q{n{dvJl@OX>;p$&V88D?H=OXS^uXE|0<^t{uPEMg4r1
ztrYW^^M-@@vt@(KQQS;pQ#3W|=77|c<AW%O{N8!W8S6o!V0hA1M}YF~Glx3&5gR#?
zBlCUd5s}i94z}gl`*Dp;!(h(B!Kysvqozu6LB0{Z`drUo!Sn>!q@IB+%6C{qpJXuI
zB5g*}nRws>TUoGi#F_DwPbOF6{D&dX6g9;r(e9FUa276H#>U^dTl$zY0p!_9Ybh{R
zezrtXFLLFWAH~M)53+dYXS3!$pe8^@7DJhJV&dPkQToc$2l|c=9q0$X^F{j7D-(V3
z^_jl<MxkH-{7nDovv1JTFW=Gs@W1|H`oWLhYK;luVCOm$yum1f_p485`plPS`nq>z
z`sm9eeflf&BC|^W)$e;k-}Oy<`bVFhJj;OR56O@g!vbE@-Hqs<joI5h8;>gb%tbIc
zWxD3-QI7*1>E&<w4*I=6`u%iT#?vQ%{y+2sJx|Xh<v|})OZSw62Sgi4S}p6qxHcib
z{_DTK$n1fB;wOHB?iUBY89y_~{YTg2k!x*$lR~4u6w7jt=_K#O&l6sKj&uz=QB7ZW
zql{bES5kdt^jtrKZ3~ZM;cVq_Vez`@SUNyoPofi~zh{74b7DY5dYyGFa@`Kp*WlkX
zg#_0vVO*?}8Frwceg<P>yT$2k1+_m?()t-Z2}=!%MfQwcCIr+gNQ=I(WNsuak&xm`
zp7B#ko0ue;^WmsGm09(b$0BFB+@gL4|6U6V@>p#)ipLV$fb*<!mAreYTk@dX%JMEp
z)KF=h|BRLGA%ExYsP>evS*%CY`rxs`V&rz7Gj1e{fPf{7{pCy!wi7$C{hDrk6kESr
zY@~AhbJU~Qc3zzGHQRn(+$`-pw)i`2+gXPtwX{@~>u&Uj%b4!z^Hw)65v?QtZSkG4
zSrng*o!(Gz0MI)WK(>kJj~!N;ZPDzxvp8o)<Anx?Kl4U&r05wu<$LfzpTYIb9M;om
zS%^L8;#yKBWdk<Lcco6rNf%yBE5bIK=K=2H{T>UelNNsBC|E{$@&zd(gdbWFD&wpk
zGTJ#~$FO-lf(iAB28lLiZ2WAlwZqsrtC80(><DJNz!ApW&R98{PPprLnss<SX)!P1
z1}CK{V2nG9D1T^0(O7epr#uM{xva?^bYmLj%Gh=X6!Cjde)pa6!Jnrl*9E(9fpd1o
z;^jNb#(?C#M9wTX?uWhBA(>{S$Jj9+H)9QQWB27GT=dA+5c3&|dr_5fI!1o?6ZqeE
zS_8)9YS={XQiv=`=9Csy%Yv72OA0#M1zCTh&l&r2E!eBpfnco04<GxS0|K=0SkaAc
z3Uwf$udGADOFp$473DOqbmD9}!2tn_+?n5<@o=AW#QG#_MwJVj9gWgnbb@t+6g$gz
zw^uoxCF60{Xk&8<0UJ*{XV_2O9G1pizi<5RRx3drT9ec|5RP^4bLFz<tN|;e$3f|g
zjej$64HaOMO*Z=ce6m7$gB*{G+@oBNr<FcR(KN_$1~#z+q27j#CBB#Td9wr4thGO+
zpc{{+2W$p2YE(>$g~tTT&Bi%fcf&4q##ZCJIsW)}Jh#YZ4x7E5)c~+Q=jeE|1B?xF
zbA9D`hG`jLqr8CIG|6vmEODTS*ny<_Sc8p{Y>ukY@X;x`M;#j*OCpz21NK42^`<_u
zTty$%4kYgLZ0)m*GqzEz6Z6u}HFLxcOc>{0qv9-ww<<St2(-xlGi=lz`snot_SyAO
zZGYG2Vh3g&Yod>42WEA)4ORo7&F{Roo9nuu>s+<AlGszerYhGgN87;f%&{_^o0CZ9
z5!F}0UQi%&SzF%nUXcTcB+DB#VmOdVSQ~RD>ghCVc3V!~Zjrg7f3<o$Va;n1B(?^&
z`Sb0%hDa_8TT?ZkL!|-VS$jPEFgGExIVGp<GfwGvxGS|O$~uxX9;#b3r)Gr=tG!EX
z=g(kkMT}9qzeOM0LB@=FQVG}?ll-<`;d942v({}+^ykGE9beDWzKSlsg3W)+*YkY6
z{Teo4H@Wrgg5?oxglj5|KBMUfum?x$o5Dt|2H2aGtJ4&sMu@*llxs(QbPd~9pFbD&
z=jih-eWjqU9#oam>UtOSHT^EJJxlH@Yz4G};rBgO*T-kbH9p&QCan(upI0AO{Uq!I
z1zCERc7Ps{Yb<Q-&)#?!3!Ln0SiF^S9^Y+z4s0uZ+>q-E`<v+V{@^wCdBke%DX#-{
zBG!CGE^i52N}G1T>j;XU^}3Cc;DL+`>WYJG{61Zom+bJ`^@(UTHf?pV3T3n<M8ZPi
zEqpGr45~#tV4}7EwT`#wH2<V^>J#DR{bf?}(|dc_by}H4Rv<DXSqg>;M<eGv+Qv>n
zYD*UpIR)NljT|sTr49-Gy$Rpi!4oUol~w>pqcdu4@2UKdz>aJ3duvpPE(k3(h5TLk
zn=^>XYY?}@*r&z?EO&IiZSn#gfTmrA#bc$~7CQy)N^t7^kRT^n+#m{29Ne|Zxe|rw
zv#1IZ3ZxDkpLo~UHQJ^bQ3Cyih!)X|7HK3gS}D2m8ukg1L^3D>HhY!~kg|TZ+&DMv
zhLsN<^!dr<?tHo_U?cIK1G{3S4Qv&1HKSOAJ_`pkqEK~{m*~|u*bznaoi88gTR*s?
zZ++iDzxTsC`nGR-LhpK#B^#iipGs}|%wbnwTn-MH#^<Hwd*A+{J$>)Xd-}d_+Dr7&
zE3X%tLj+Rt$m6Pglt3v^$s=YYx(s}}{%*C6wE`U~lzqJ0=apApq0fK*^K^H2=gv`+
zyWYP#mH`VbHiEzWiBHfk{K7BN$3FHk`uN8`?h!C%RN46;POxdh-_P=g57PAHS;wfz
zIcXk9zIiVl-v2!`yz3)!*kSr8g+}q6hOdpa8g!_d&XA7l8T3e||E51F^mz?^o-87X
zS`?~yZ^E;EqXN#_6rYW2#qL&6-XT8UB8&C9-Ma#tPCoiuO1+&{J0QQ8XRrHB#>$LM
zDdbi=8>O}#a*8^U;<!w!^y(Det=U(*He0UTz_u6?zH^uqPjiG^H1!(SmHb)7+f67f
znzG{erjN<78CF|FruDo<>nYRbrPf0f&f3Wra{doQA+<EjfA4%&K?AwAIvYmMAXeDs
zeV@l|-uM5}n|L%S=33Y;568rU%_3iA!9<B#?H}c|)~U5Ny(RKRmqv?HShJw3YxTJ{
zrGO3C&FDHd(r9FvqS(Gx%ltvaXVpm81ninl8>YAF6*%ON%x;N%!C0l9f$DNKY#H-m
zwe=DC`bXs^Ks8^ghO8}crW<w;kZHTWr;eeR+39^m>SQ64dr@1NgA(YN3FCwmv##wl
zB01q-<GiAMs@PJpR|&PJN?9$WZGJQ8`~$;Qv4F~y+IX%y8Csv4{m{vgpAESt=#2L+
z;XM^wO|Z#kwpX?$Ne_BXXChyd7#F?CIiuh7R@L<ti#^R?GQk5oD^ex$>`T+<M6Iqv
z3Hq$i!<x8SpEr9h@17erc~r2&LU%^C){A{sTOVd>(Yn;el4TY<Hps>52`J4aN!CJY
z(r$MuaXnA|?!GpwwT(4<pQ`t-u8^j#+7|6VKbC6HcPi0g*lJVx$L&B9Ws|#4h6vhd
zeNLtV*5@oMEJAc9ZZ@i4-v?#JyQ$Rm>vg4%%ny~b$qY6|{@?0np!P!5evxbw*8$kS
zjB#45N>MNq7^iBZs_J7hxhhSUtzpzg!9G_VYdTiQpKbka`O*pFu#gpfgw3jO^k%GK
zf^9BtlQd(b)|PcC`zGkCXTDfJ$aM{rDdf*;od0Px-<t((I<cmHh&mBJ@t<rR7nXi+
z+fT(<<`2uCX`arA^5u_3{+pBEii-2c`rZn7W*ov<AfisaYwmhJSS@fSC)|(cJdW<9
zten>T>*&ChgDz0~NdOx)CzKqVB05x}NrRKf96u7#F0{J(ZmO1WXqCok-D4{OTQ+Q6
zyG5?@=Lnv1cO-^(iN;4HY;^8P)Gc`R&yKy({|GiYgww<K-r>69)$g$J`yT>NxnUD$
z8v0bQRUE<*t?n-eipKwLeV!Uc$Pnaa*jA40!2f=MjoXbYoaJ8YN+(uw1qb`8#!PO!
z`l~*Vave1w!}>gO{*TXzUAXOWzrNkDmC)xdH_*L3pnitw;~cSd*v*cazMg>Hot);(
z<-h^suHTYt&<XF;DA$fxKaLd(axh+f`~6B^`M^8qYYK9;ciX}yV`;yaYt~15o{#e=
z*KRCDedNC%JGq)2*oXQVshh71+X;PYdt#GYZ=+%j3yWYk8)feru^F%a(F1_j`na=t
z1wFQ)6H%^tYb-_VU3&`lvzOboK94rac=c1)=QdW{4y1NK5V1doO~%re{bacYY^HC?
z?5Ei%v~S8aWEO~xLVuTTUNZlx1PWAS$YS!dOal9T^GWDh!Pd34zV$`JMg{=+BC<`y
zzEV{#aB7pVL=2~v5^KDrGbXYjwDT>@sc5P2Rs+ByTMj$p*<Ys+X}d<@N-D7NLR-4Y
zNh3IVUT8}(D$WbN(;5J?7XJ`zlay=ow48ZTp4?sJtWF(=^>S@B0A`Lt<46(V3U8-t
z96>Bu4#!EnR}xXoSY~k74kLKXmDe<*CV;d{4S+?#IC`D=>2Y1*WTdQ-F3hVhmxE?4
zIAxMta}>BbK$I&So83f?Rd~!Zt+DZfKC5Av<_=p?UQ>>aIdL05pR)!s`2?>#<pj?E
zs=p1`3@h`P8&;~8if--IYbkg;N7Km{fX%s;wU3Seon^=GanBsDz$S~nxgbNs<kqlO
zaIhP;<Jqw7u!lpTHptQ1ce?|<vCL^7`^P8xm;T@j^gsER-$x(&?FahBUpvw_eQ>0&
zfB%l&SPln1^`!^8pIB}O(YsyNXo2ByL;ud-dxQSU-}(yu@BT+G(?9c_H;caLhV1|O
zv8VKN%Y9yc?<fW4IFc$C{x5t0;4z)0UlZNl40O07$(kulIRrVf-1wyTg&QuOGmFmc
z_BZsxyWd0m<@sVpu)1dF{a^j7f0h2!pZZhugFpC#8Zl?7tYMrRA1vRWBmV#7KmX6u
zXFvN{y7qCWc+7n!qTX?8n{)2>{fB;pUiugRCY9H}u;|(Avd=y`cm3YSis>Wk>Wn^5
zgXtsd_dr%(qn@kqYs<4lA5|y#k?TI!4P*)Wd0dUPs?X+sU|#*IwLN64nLYv=XDKv0
zFnH|``F+GT;W~}J5lG;sHGNGvVh`gST+BVT3p)Ut)S??ypYO#EB(G<nc3=>@r8NLF
zYiERgWo~_*3pirGOj<az+0)1E=RB>iwcbmp0RY?XH2_XXbM)&;#z(XLYTK>;i$s;%
z0+k~R7i=1Ji%gcfu2n;{PREnYp3PG;A|<T7YB51~fI?@@vDG{?Z_khUXw3<yT3YZ&
zizCTGDscYuweZ7NlBiw&a0DpZZReGKP=0yguqN%7A#6gV#*1Bx{wrrS|KDWe7JS=w
z5GT?0tbcfR_7r%<rtRRouC-wc{O}dn_#cdyUuw^gae-Hf4wVJs@`t}^wLrwVA(;TF
zwcBBrj3v~yp@0p}aE{vLb>A6w!T7Wrc0?3EC`r&bT0~20=XX1SV|^S0cm0rMzKL=j
z1)Dyb*LeJF;}th-E?2ZG=YREk&v2CPA~xQ%jG@mByJ2IU*oQh0$?6rTTp8PdO$(ot
z>$5eRg!$d9$ZV4<up2+TV-Ipmt<Nv8?VCRGjU3yo^U^3;4+(M&a%X)7$GT%fpNpv%
zIl)O2xa+mgYtYB4`W&#$pibH$qFu4Iv0^%5-1XdEyFQo5Y@P=>>joPXi(-<wfTQol
zu?Fme$yNTNQQ9I`8|U3viP$h!YHtT>z`l~Z$<_3={hr5<Qi7-)=DCeEu>&>e>sdE3
zL#MBf?bPYx-1ISp_A&74r?j?F_I<MhLQJz)eJuf-+}iY&n%ty*RUAvKzb4nsu>u=)
z>g;FG#}&39cV3(9P@_Vkd6Vj^+bHRCjE%Wm+RrgVAA9>5^f7J7t*iGE`@Due=M0Ox
z6DL^eq1w*s7nM2KB<|zpkn)H<=qG16<e-m|0VIwRT+gizgvjZ9Cgb>L`J4soDBq9k
zCMz<pF&VrL+TjfCvR&y*RA#nCGH1Uze)aRt`XPlil}13SEwVz<_F09iWu?K=!>6?3
zQkL(Azw6$4JIXdj!rHYId>jVnytdzaJ0WY@4t!EOsB>LN-GNYA2b6hmT&;fZ8l0bY
zP2ID}o}Jfx^3ew|cE8Wz-NYXPToyo3v7WN=#Cw4m>lt%KozIg=@=-ZTwrsej;QKLb
zet>JvMZ?xPp!;{XIt~7ACU@>5tO?R1*m_56FV`X78#-Zfm3K28vS<5#VRlDp4c|||
zW@}Wq(^T%^*><R~!WQ~Wo*f*qm9}*vksZKZ{(i;LP5{_IC%@qUrRu@-3Qt-G_>SGP
zqQ1((Rd?@AeSHQt>iU!*=K*r|u|;crm2sBV^)*b!wXO@|_Sj4xUFS@nBKCl-$8KY3
z_3l9j44XeM{C=~~uh^(4*GioY+ITn7N3`2}*3jp6s9>LH2h5)~q;~js4O^z|K2KNr
zJdTaN&sR1oq40av8l4w5%H&wLIr{B8SI0T*XB=y0gD9noS_`@B!(qcliI0P6wsWEw
z40<sy<!p-qy{7iDbwMArD1i~B1#5Xw)LUFPTpR#2-Gy?>|LQ_F4LST9t)e=@do?)W
zq-y;N+O7qWwhhHw;f0ot@7gzO1|)SzT8afoNZ<6ct5xR2(M+jGSISrzB2raOr>b<F
zZW!!5rCP+W!q8|LYe&Sc$%&K)cEE2XwyZX}n`3pC5R2krw)&rljX$$t_qAtf(OU8M
z8`$jKbTGER`?IfL8@lThp3NWBU|h>3Jc|pYRlJM6n=DO$ouSOJJt^;frN)cDB{ylu
zSbPkd$&teEQ=MhQe^@-upL=DZ|MZvNpwE3}rmx-=`t2`H^rhFd_%ZKwzViCAa5_}_
ztuLJD@Biup{m$#NL}7j4g;8iyKKnZp{qk=;&{yu*X|KGk?|CunA<go6<td-UR{F=E
zKewoa1;^`m9AQuNoB#BIUVTH2b_#MkF#Xkn;U9hWUa&pAC;I%WXS!X!|CKk+{=WSF
zPoF-e&wcKn($l*;vQJy2wf9!qrGb9&7k+_W`N~&<9W#T}e%q9c56#{!8>)PGkBq^(
zdqF6zBqqy+$|v&6p~XwzO8NN4;*_|DP9@igQrG(EbtZy7wuo^=wh{C{=%eaP(>K$J
z)agXuZaU%5uGA8E!dP03MH4dB&|bqr%qE)J^tpRBQNtd`O5VU0^_jxh%Ap@0w*ysW
z>4GcUHZnxy5f-#>)^;<1=dr&D*Uw}74O=QrA7z12aj+96UwL)=3Ryp-)!e21pph#n
zttV!+DQ|5O{#yL#oDn{Sgc>Jh-6+`H#?EHreO5J7#g)V0+PJ-)ryQKsO0ht4kS@Ul
z;JCImheX<E?LR9*so7gZe&~a2nz`R3&TYXjp#dvwn#m<|=>WRK*|6n?ZBT3yY)~6E
z%O(_}AAYx4qr@W@xY{l_gME3l9s}8GaMZ3|K`+-iMCx06()K!)X4m0FDUOYVa?r5b
zd_x4gnc88*7PchV8#d!9mo-elMhWj0v1M(qp}iEVouJopaMH`wu^F#^7p+yPaev1R
zLQ!sc!^So;w!1#!-qK@_U=w{6AEg<2eYbHiUj5=WUb4T6+F&agW}NCPr$r^N1+?N=
zH*Btt2>~Xw)<^#S2z^8l2t~Pr@4cG7qTlS@bgbCsqh30DlD5w)Z2eei*eK|mVUr+?
z()7{aEe9_8()4j{2a@QMN0OyZAEow3z*bs4t}(Z9e4&pUHcFiYc(<goD{-tu8+Bm^
z6q{_Wp^t)X4)q4A>Zh(jRE|^BN7$&0>u95L>~q6bTP=lX2L{-I8FnCb{UT&fS$|8g
zr)Hy?{p|W2*c=P=`2t&Kqf+W@SZY~ax))bD$u-MS&LZsH^*x32-_}R+zi>2E!&coU
z4HTV`=%WN`A6Wwpewb~GBdIwsxBaZFk%}&jEGHuFEeP!@7IRE#AcpjRYS}99tR3_t
z<B(dG9?NvhN@FU)9ks3<adll2VD8%aGx}kr)_8C(=4s6f?UYrBJiW?k4QHBhtPhAt
zcb;<oJ~*qzF$rGiGx)Z5m`i2P-0_q@iwj&1`X9kIg3@ZMJs}#|vbHUPSPs>ecK)r`
z{+R-&H4No`f6(!aV&^wEx6)xuBO0>^;<N2t4BKPadu;oz2EYz|JauxFK8^?ZRr%qq
zmIC+wwOR_!V}3=hd?3g+nA>Z_*4I*qI$_uti%?jOo~crCZE~s9>K6!INlGi7h*)Bu
zUG#Y;w>e<ncQpZqC|9O`1-7ZfwvsEb^?dKUNS~7~>l1MM-04Kbez?L9Z+)(mY}fnT
zoV#++zlA-HwQg+fp21!JOgk`+7uZFAS&oQ6H#;zHao0z=MeJMH#x-}n=<AiSB02%u
z$7?of-_-^gkeTAxY`x#<MB2a_ZPa7qJdUNScA&#%wLgr9-)t0PD`ulo+SJ!*Kcl{G
z>7)F<8!OMUQT<pFY-WR&{~vA+vSyfIlP=~Zn}<p}Od#m9$$8a|IZ_WVdmr0d`=mGS
z9#;Ew#nw)REsBQu?%(y~mJT-uKQ&4K$1l7`I#SR1e+CW6zJD1Q^RK*dCkt@pg|5OY
z&A+{gywJi8x)-5yJAaosGnp@w4LskQBe6JA^fb-V&XF_13%&f?lN+RUozAEMu$SnS
zyW>d)$<09vbnv}-1$ZMh0UqP5-b?h)m?!$%|L{cr;{W1H^xh{tah@bngzqn@Qs<NN
zX$wzznZ)36y#nS5KZ}Al?s|@@<@7jK(mUqQmeu1<SD3S=_^_jx1!&y$!sX5CP&CEo
z7F^(5-$2Ndh8;H3EJx-1XD-@@(<QcXk@4*!%loCTCn<KLJmyjppiC+^;nzOPJ^0?t
zV@{}7Abi`Yr6o!vHEF#9)&{Ou!0N>{17yhzUVXuynQv1Em)0xb#m7##H(543xNd~=
zU+WdLS__llW8*IM3Kne4V{SD8q?SSjZ@FN9(9JurNj(E1ksFVrdtei}^EfDz?3r$t
z#Sd>Dtd;_yUO^R3f0gU~@@%dN@Lk_<OF#6{C-kW=O^c&_akwuI{MV1Xu~_c4-0!|F
zx>|?j(16FrM1SzxU!-sPz>a?HvuAPC|H^01ba!9qfBLVym%jTO5A=6GdB5Dd(0}x?
zuhP?Fg-$H;q*mO9$L(v!qZqL#qso<ah9k&tmVP}i&wcIwBn}Raq~hXeWqgs&pZKeE
z{}2A>?&QC{y%l5j*Z$i7mj2a$^}pq5);7*}$OJf^XK^xr|Mz`Aee#o^XhsOeEgBW`
zd-I0p@b&);rNet^_bq>#((c`K`0yW8TQeO+7xVrFBJ{a%+mA`cwDoz0KF%_hw9bQ#
zC5fI(+Fqfr8Twj8C-$IBI*Bvr#`;{+=g1@f`L`*lPOz#xoU|?k4e0Z7mJP{G7)u0R
zec_5_eO*p`4x{qw3wLwi)vv&=HtM8Ni;PXY^jcSh@6CP1`Y4WdsZpW&${(pqQjyxn
z(ngko)Yn*a;8w5|kxe4hD-Z`tvjfbdd&W3l+bGmhSnmC$S03p9_CNaw{fQrXkzRY_
zDEAc3|5Z(ubxnXLu%A)`pptO<^C#9&VVlIiw`-<?VtcK&e=pq1_ly0#+4Dk5Z9k8F
z&JdG&1*cQ9{haEzyaz`dKe^e-f`OlH*w}Gl*$Fmpolxj(YhGgAJ%<HD-_G;SD{s7^
z`a^J3kU0h3*~nX=(Tat+reJae@-2Pli$|gPI0zT`EVA@MWK}t-`R~jN&Hc$d`kXbu
zk+Nq*__A&e%u#)s<sLiK1USh&1&;NBlnY$4os_%&G-<Tw!T7ep1uhGDGR|p|OcIVV
zJssf?;Kgx=jU!3VhMhU9XN`^)j&<e+7i_xl7oFjafau#GV~3y3*kr+)N%Xx6Hq-#%
zwMb2<34qAe<+HyT<sGNv+4;1qY;<R}?Hp}9X;uthbGu^$-?r3Jz~Wj``CV?h!Q%It
z;jCaAtk_j<tlp;w)GHWu&BxDXjLb96FJW?(`UHH<nR`Q0ZhBrUA2mZqu*ur8hzy<o
z{WQrsiXG;{$IW#fnEQLoYq<{kY{9-?^Xj)+3Xt30qPWk3aksPLcC*ayjGgauJ~l3J
z?eikfVV#h4;*(+*9{ssu(>%y^kB!&9e3r!ez}OiZXCz7FbJBJOA=p?4j%OJ+d@s?@
zskmH4j*Cqj5;pv#wG_CI4_2Q5wG>3Ir9iI0hIZw9x3N?t0-XPivGG_^eMO%y4`th}
z*ubmLJmyKUiM}2*tKcksj;QaNFz02+wMtC@-C#9+90sciV115pUUZyuAMOQP97~Jb
zxW3kmjL0FYK4L6cN_w?EH+`il>u!;o_4yvy4cqc8b|9W5yC^}f5gX(hv6+p69cXeL
zq!xtRD7Hx{OHC{8OSe(SR!gBmUo(Z80Kldj+amp#WKW{lPEj9AbsM#Vjbh$^v!Bnj
zQEmrRM^4AH_c_b4*(k-vYi$nRU>$PoJnp^E&vM{k^)%E*DYj;#)^bxjptTglX}TOU
zaKztdzI0Dt{_08g2tzhX1huC*H;RNkiY=a`KAX~w$T;V^Oewqb!e|3-f^$N$3gK|#
z+H~()Z0*;*xTlxjH_}I6-Xj3T9HcXx6D<NTyJJ}cC5-dGkK%mgwKudM;LJ$j&*}i-
zZTP7OkdcFcs`~z}CpTKZ0|6%XF`1S2<5jy;MB0H3Y2j~PceVp63Y5M$ye0C(wHV!L
z?W<>(vU;A;u369uh40HH+AT<{ZnQs!&7YN#^|sZX5%n76v3j=-TWqhPea0I23t#w>
zjE^sW=?i{fCHwaUDEotc@9+ICiu5DHGvu1UnO--rd8G6eZ0QlX+5u{Pr2Vb-xnYaZ
z^44w+W|#YwKF=H21WRo^;ps8CnFH}Lo!IDeJZweZvW1;~7jk<PTWT2*kI8ild%YsJ
zUas-k2@VI#&PZ3}s#>i2SmC6l=j`*x<m%sl2KKZexA@y<%KZ_!`m^}=$Z{iE+o-Lv
zl7Q`b$J*6Cr)S$w!Pd!r?rack*jsKNI{W9?O7VNAXJLCpt`>~2sjpjd3)oC9yha=B
z9mB_hTRh;kYhPudbaUEkuipvtimn~VgW`zZ+WKL<{HIFhzLOWL8a*qA8b!g#>)GH6
z!j!*vck_jfz1#%=C~+ZQM2YN`$Q<cTfop8AQxd(SrfOBB-D@O=EFKV1Gui?TQBUoZ
zMc<>kk|yUjwP>1_?xa{fO-CYPKtGcRovHV-h(hVNY?0XHMwXu=r&k2dDtWG6%Zpb{
zt5%trTno7Bi>F0a4Q2Ky2_q4eeuA@AB3RL1v%E_}3T?zDad}FeQ;}|7F#vQrQ;iBd
z=Bnhn!8S#%q^ZP&f)q7d30G@ZIqHH;v5-gGBgGQD`W09+qMNJ9ZPsWWH%xf{noO?E
z;H%6l_}o>_@?(~1E{?4vJxz;pjV!bY3lin0CzS)RiEiXpk3cHJFN2<=@xSoO;&8v?
z(_nqgy-0Gw$WHL(zq_n_r;Oz3;_UzIS0?)4OM2q{{uh}NMpONM=c_Y)@zqHj|Ln*e
z@+?vB+IdO;A2#BE1(-#^&w21Da{dly0-)N0+?z9cYQBtQUQK4<zcE$p@BZw6Az1=n
zeeE^;PWyd$@f(N>*z$k1FJNN$pl0dk-Fv@#as0nX!{PnQe{VDrinM5?L_+b#t<Geu
z({n*zLLZek799T7($S4yH#g&#QG^9{!rn89Y!JD|esyWq=(1E}Y8A#k`dpsj89lAu
zKq)#FD)d=wc535XMxV*8QqyO$v6Q?$QM3z+y#kxx0OMZ9IoZUQJ(^t(6FCx2>}e92
zSBz8rs_L&|ODh|tucmTkXMwd><0WQWJfsi>WIC}<AC2`|N>Ycg=thQ(n%g8U_7wKg
zDP1_qt`^vOJfAdDQ&g!SZ9mXTX@Opy0P7r5uhIW$XdK`KY;<K_vN_E@h5C6*EPzM<
z6^Zh*8Sw4>Q8jECLxozJqD3;dHAcc;Yq&#d|Eb~M>gp+UDeKzi*|hp6#nXQ`rEr_t
zeWTqA8n?Q!Ezf=K_1}kaN)d8*Z@jY2-kH{Rw!QoRm%V=vwr)G>!_XdM&b9XbzH@XQ
zI_KztbcA^5Af)I)z$VDt#MqdGm|WkANiO)_s$AnhDs{^@WxG<>amp3Q&8_4Qr&4hq
z#<8)L#~-n);y{1`2Mi7fNk|F;3>XN)Akh19-ru+PT62z()!o1D(Q~Z1_TJx->{R%)
zsDr+_$69m#W_OPsWAy0p>vq588&~|z8T9dvX^EqD_oOCyRZ{|Xn`pL2r=C}`E-_ZW
zcj~_uW}s1sl@=n3KS;~wN)dGNTQqscPg;P}v9P*|n;F$`m!+N-a_VpG<7{32X~krZ
z{|vvo(iVT#G^yIetft*o9*_B|->JI)s`1X~PfPvb`}KrPUg5TadV-yG&s+Q(vPz~@
z{1^JmqL1QkYVP*5LJL38Ju3Nka9yL#)b-a2erNeLlRn<f^=$8%1GZyPrMi4rTKIz%
zAGNU8w1k%G$}h0Sif>#i#m7c`SAXgie}Rsmuij>teyRUNd#$i!3I^V6Li<mYO<mq!
z{;NlKcUfWFc2A7oEd7T1ue$J?AyAyc9lHf~gl)}wW1WYz4gO=k{^P~>nhk{SVeJ&Z
zaW9Ma-)o<!223A7KcUG-Hh(m3WZ{_R?;`LrqFpw3cr!>6G(z@r)-xl#amqoH+sLXl
zUU1>N=0uZ=3)u+TgzRH}7XQa|r_A-u8%Lx4o;S;JeR23LKmYdmxo)Nx-3&4=?>mQf
z-b8%x(9SQp!&+-=y!eN9e$R6xrtCuYJmcWsOEMg?Z1<pNl_Z$mPLg&6n<N0uvXN^^
zGTg?=N{np;HjyLR4ch}}XJY4jBrW{z$3IGU4{N=@|KmS~jV;X(uJfKAefeYbwzs}b
zvTAn+*;t|Nf{jw=5kFwx9q!L<lAKf<UE3yL<2JrFx$$pVws-H|6+D~(*~^u&ym)Bm
z&n;lzg=~4A53o)%<SN<9LFbZK3Tzu>_|6eKCl_5_B5`!|`gW%C>Cnc!{I@x23-9ha
zKVV?F^0i>gxh2Iy=iJU8){9}2Ebmb{&MywKXKZI3c78tN;smxWuvgR%7=zB)F3y3i
zLhfE~fOQUg%^fzregRAX+|HjpGONw@S?(;S^Oe3N_Ikj_$-&#hyHAj-KRf7L?gtKj
z(>cq9Wq*t9H7jTOqAwk=aqp4j&48VG?@j02|8E7k_Sm=|+=e|`-33c1<Gy|?=saTM
zB-Ts#fnmiDF!mYtDoHj$u8ir$6FN70ec>Qi{@pE{WLdM<Es}+=@=;sJW$Jy@;rcfB
zr4_j{HukBvCD}L~+3Q_kJJpx?-OcA%HvN&0V(hu`;G0eC57=4f=bay5?0gTlH`#1t
zy>!_5WAy@9?mQ;MzQp=qoo{kGDYfr>{|<6JXStPDPe6PS>zwWNptH?j$xD-bpTBdL
z`x10+r*q}q5KEA8iRFlKDvnFizDMFzM%@wgwHSA!#d;MpEtyZewB&)K69D|N0H6c|
zNjcyc9Ph+Gc>5N<qcfwN+pz`Z+Z?=||IfhpCj*2}@z8#`Q=wD{BN?AwxURbUK$JA&
zr`UB4g-8mhPvSLBB@|?P`u8X0rZvvW<7@CpBGal)>)0N+y`dlb;2rvw@A)V_^0HAW
zlBB%~6^R}tuHe#A{!IC|ZZnY`$CW^m#O-pp?sf+A$~EhL)}V?Up{^8o_Hzh^k?@(w
z!WhS#`TnWs#z=9jcy@=4BzYE*F4;WL=gYmT-rKRr!!;1=n=(Vd7O{d0G|H{Nj&c<4
z`K+4@4XZw{$L2dB!?2JOV@;>925feGT(K;%_HvZxl!lf23v<<Pm_v2YrJEJ%P90W$
zfd|G)AANDA|Npl=PH%kjjNb4?8+zG!rvL8mKTE&+>6!kApLvd+xpSB_-Wt8H$$H9c
z#IRW~c14b4a;exX;~E6FUQRFm!e6H6-}gPf^StFu$K9U3@B6-wzT-Q-13~uU8*lb`
z+uPnwzxa#4pthJA@80=S|Ifot!^`QBul<XXweGvmz*0DyUIH_EGD8CX(mph7No_{H
zKUddrwWxPKmZR++=b-a~zLsF0G=r)k=s27GuE@~?*|v#j6ampb%_d+2Jyye(j6e1o
zYzbUd_WP55ptnamhCeL(R)+m*y#d3vv{&;3)^|iMMgRTjgI)f>|Mv;{=C3(F44&ix
zdOO>${<QhaBmWuvWgdpb^-J;fve;Ym{qE~~Y)bI-;O%pKe>rZg9lvA2S+U8!on_0D
zjOSjwD}7?b#*{WMDTD5}PYppfHP<2=$}02eusM30KJko>wbf(l&39;Q$1+-MGNacP
zAQE3)LTJU}j6|Sf=-X3^EZ9CAT)$@u5jj0xMSDVf3BfQPqcu@s<=&}XM(pv~YuH-$
z7irKj@H<|GZSm~u+U?mLHkW(<Z2Z1a!RT#D@mF1Z;<K-7UzgiyohJ+MT`9NII)5qH
z8s8_dnZ5S*NNN)t{V23z&o{8gqjsW&&Q0#C_Lu{<{@(U(b!o3x_oXZB@fvJ&B-bmj
z^?jw6TW=FL!Ir|kuC<AVji~jth1}@aCYs#t0ox7zz)5>Wn|=4C_^2a$ywXRV_5+4J
z+GG8E`KT2?Ai=X8Q;ZOO{JA|n{le_I6!IQ2k(%NAHF2kQI}|O$Z}2wRFv12^MSvh1
zC2YGnoo%xG_a(2~(pS7z17Mh%K#rRD;2D4>Mku4t{1>?&+Map#1w93VgdBT!k^Wj|
zx=%i4r!8w#Ppmv}>r75ynXEn2GKEyFWSdKk1}0&%$n4BAb)UO)frOEPVutF7fd4$T
zni5gRMn7Vk5o_)HsTJ#t?RG!kys)`3o}Cf&F^Z1?bK?@Q$?3UC>tBs|nN4dn84`3q
zg`ETX2y(`Z*duIG&m~FFpMU$8|FgeLPk;6^^r8RlH%O`LG=Rl+{_rD@(7*O4zk_bw
zx=mm4#;?><+h-b#^Q6sy{iR~-<r>>XZj+r#92d`Sr*fty*Av)I$(3>KgIq0By_ef5
zZ1Qd_*PJymZ4Eookv$H$j@Wwaz0P~=r|k76a?RLCF>Gu080FgcC2O~58TM$e^9}6r
zI-OgcQS<eNrKg4Ib#AmTt8(r9z`bIV4TD;*#!koF{cHBRCfC@PuCvGMeAHTBvx3^x
z`KTV-P5aU*d%e!Tp2U_zthd8v&pKs~*I|FDeaSY7OvikBR{l*kZwjYQQt}Lc8^@fA
z7Lx#*$;28q&ph{noTTK_tV3?`2Ae<Vzv;%GaqW+mu@^JvlL%SwEHLFO*_9^)0=0#Z
z-XeLsg%7=5raoF2O9YUYM>6!f(kid>71xdPKO8?v?G%E1zvrA5LhW#jr*jA=u~`N?
z3i=uMye*E5Z(BHT!9B0{C!LIn@hBIka?r-#+i?<do^qF~XlIrz7vrYyxx$Sbn6qMw
zVXY0DP?-oe({=F$1_4`28cUt<eZy|Qm+_2}a;VpcO`m1hCeQRItT)i<fUPW^-JUgC
zwsEyi-sF~my@d9q+>_|FP+Mt9f5WxKvuDy{_z6b7;83S_9kEGY7+O2Jg3F!n{owfk
zNi^A1`#mpinBG9&PBi=AVWIIWzkNZUd48hb_~>B=azpfMzq_MnUz{b-sH`fjUV+)f
z0vnm!^j}df5vvxSvqCzy=)pp>hCYsuovPuleBc8=N1y)8r*-#Ie<=SA54>73|2L0(
zDUIik(R}fl!}mvD;8{W<pZF<MLpGMlb-van#NLw1t+z*!d(wcn*`qC5dwaCL(wJM2
zL1c0xl}jt~x|D0=)lVi@*dxnz#tJvuqtq#u(<8+f=Ly(S4gFje^UASF!4G8HC!k}w
zB(lDt&#Ixl)LHIj*w*ZsfPD^rfE=63T{j+310Vn>2*%q0r*c{MpM871(!aLJBCY!R
zy1aH@-(zcIkNL-{g(5`x{kTNb22!%X2fpn#gFj?D$rL`(58m$|?fPo9GU8_)Elidc
z1kw{&ZC)T8*!aEh_{SiV&KmUo@;8jF_FKJM0}%qcBf<r91PQ-K_<fBbq<~GH%_oeQ
zAKview+n3OUxwX-$tSSc?}zYwH=jg43yj#JdG&Hh5u0Hbo6I`qyWrsO<-N!Q-4UC~
zeZcP%<Q$((kgL6!1!E}6?OJTeysj%cM?Z@?k8(F`SLys}Y?iMagGw5N^mzd!W7rlt
z=Q(iF@g-tway^Z$x92v2YBr+?LoKNeyJMqud%V_OPuOFVO_(3pOP-P&`t8wg{r<GD
zN5-b*;_cn29WSRQ#~$0z*{jOB^^XyE=-<tQ7ZlIUbl7O6uSL1nrH+r}+GD$+A86S4
zo;ud1Aa@_ysEtMT+tk@3b$!L!-5yW*s3Sk1b7DQIYKz6}I(GqjJLWe;Zr?;pA4Mnn
zvCG{SNo}xRY6>^k6UNE=b&9{QI>jgp`-Zg_or^BySSwBzRCj8w`)2Y@-xNPOXO3gO
z%>i^nqfq~;kc!MhQaFEdpU)d?14!kd8!BSAp#ZQ2SnS`z`9Ca+Oj@#rZ3I}sShKC3
z7kXT|j={?qP?Rj)E?DG&t-z<<b68u3u>F25IO)%}XL0)qZ+Q%4ZF+wA73{HnJk=gD
zyN$b^6L{E1|2Kd0Z_r0R^1CSh+dfRw_sC%b;8m}BH9h&d*U?+v_BO2>6yIe9oAJB%
za<#y#$u+h|x$ca%EMYUqY@nV9`kv77DY=?l<`X)X?0c45*KR!J8_<v$wurp~d!kSb
zc@29?3wv=nTw#w>I4yEY?n+PC)vyTm8u{N%uH0*Sxn3#9d+1B!HTJrJJ(hsYPFM^f
z*v=R?Cf8H-3RbXPCD*I$@yHKw20P?tS>pq+OlvyNx`}3Twaov8z4ra~lpi=@k5T7W
z`KTyY*^uEmL+_(ft50^Xed#8Cpl^@<(~>(2u&2H+rL+j-$IYL<?n95|CVpVe9)&t_
z1$&b-p9I+Gsa>02*(L?Xr7?_4aon1qgO)gexnxQ{<E^$vp%$0dF_iA<lTS6&e(s*y
zE`{w1YS6nb0JD;eU(pIsO{G<p=QcimqA{8z*_7PA**5-87U;ND#qv=W>D=H+<>MnP
z0Or`{sU~wZ@>^`r+7S@OrR_y|`-K}9T#uqyZJ%&0e6xH#7Yr_0d3q;3PBm<le^#!G
zUQ2O@iMj3%_hVjFiQerrh@UmU#Qg9>;-g=Tor_&D_5%8xBH!nrBGbkUgm#PO3Ag>8
z&d030z;%-E>r6S3@}y6~+k3Xn!u>73L8MT4^$*Ld^D{nrLwL5eSGi_v+`i@UhieP~
z8vzTCOXp|o*p%zuv2hURaJ`jwrkRP@IHQ<#xL0h<XIpvKPLH=p!A|~nodoxpR8nOQ
z_JEz`2y7YHOl}p}#*B7g6PgqRn2OXpsC4^m@M~GfWW^@fflZ3|3O$X!8)IWE+{W2I
z#*1#)ls|qFZt^YUDw{Eot6<4Rp3Q%n=S#s(2%ye_jgKe|B7goq^Zv5~|F7Tm4E;xc
z=ackj|GQ7p|NEVvrg#4IGxP&L_Z;1siqydnZhE!}=v?{am1otkX{PNU*+nJTgg6Gb
zN0n=VoLS?2*3vu|cQq1_M*DYv&%a0C{4f0T^eeye%kT@jsNB5f4-2pVqhI+a=+U?Q
zYr3f7=fla7U~kx{vscEJVXs1gEbX(~Bg-knCRq1sk7d!mfxYtgsOwA8J}L)xv&YuX
za%E0omaW)`R&i7ZjlRRYyj;IVuK724aC^1BG@4wgc+gzh5C3GF5E?Jos}}rI`(#^U
zn_?N14jY-y8Jl3=`3WG_G5?L**`~$*>g4TOe?#qY<9$irO*defhacFzFR5ImcF6t`
z6D{?h>R*%dOq;)y8Z6;jd8U=ecifJC#E$(Zw+nZ(Tpw)vY`gIN>|Y7Kp2rXN-FmI{
z4@To4mTW0f-(IzTjQVySlxIIa&FvE=YBp{${n8Y&Pq=L_*GbytxGHw{c^ndK*z~fE
zp==R?7=pNu7x5PK(Es9OL@B#?ML!D<dciTsgPix1%r%71J27WAbZ#dwCLQ0!-yOcU
z-zk6ZCTkFlZA`huvlhi-8(^Er<P$UDm1ds)iQ9F9cFelK;_q<3;Zs3^1=wU$eo}sJ
z;l|H~t;n;JVN1%}FZ6i<n_%BfVowp9wrlZAnc$AvZ;Nrb^G2azn{kRPVB2K1JIN{|
z#m2v3Y+NyTgs<oCv%DA^k4w`|YX~_u&>(Cf*M?m;RCMyK{N0=c!tGLYJsXW6V@oR6
z{Up5C{H{YU*Fo=HrDhV69iVg8sm!CeU(fYOu7ZuC&Rdbe44aTe5@RF9)^x5Jw#>gi
z?TceCkn2L{`)Pr#RFkV>Q@ICh1bc+sSw0)g`Bbiu`$Dd|Ijh)`>U@UIVKW68ag2Kd
zd!23ZiN&Juo(uMf4LZj{SnM&!zNFm54O`TCMPI5x=Z0;!kehJZk4gHIVB^Il>{b0`
zlj|NjmuH*3)~a*atk0I(VYcYmD^LF!bUw*E-}+K@owH3;VCQcR@B=cgzz?X-F&4lk
zcwORhWvT(#V+MB7`BwXqV1XYnxsv%P$hCGp>ZH!m&U0zOE`DHw&Jn~sw6k3KKepAv
zH3c%Q=$x_7@KMRJi67WDKfv}lVpBf)D8oinn_Tx%uGQtL1vj;Rf!PEX3!bEqA1(X2
z_}3(D=0C^iqawCBVB1??(s`6%>*XrrJ7YsYAR%+U@HL8Djwm`P>w+XYmVm*$mo_OR
zIV-&cx2f;fOhT?H#P2#!S`SX<F0S*#TzRYWB%TkJS;r2lHDn%YqL0)bLBf}8Fot%k
z)nHpY#&8tZ*fCr2e*Dzh<WYT-(dfEb=CN^D8^3o31%_o$^2ds(+g!wgaxn=|f}02)
z?J*DSvy?5^xd$~#-!6e!BB8YqY)C}0@AknZ+u-m3p=IrtmNi;z(}GX5=4DoCk4@&K
zsJEB9q#MWXbKYgUWx!gkE9Vj~#pkylc>nw8r+)ff>gzUJ4<1XsJ)sNH6AK@B|NH5E
zKl?uV`+x5z=zsmd`(@tFbQ%1=7D$WF=HJ`1SKlpQvkcoP*DY!YM7fHOhuloA_Wc|;
z3WCl{FZW(<Cv?uzVMYwYX6>@p=r&}c&V6HnHwwCE8+K(7Xs01khy6;qp?!z(X-)1i
zINHl~KwsKhpw*t;+3Vb4uV$}ok1Ks;Ay;l+!M0|vJvIxrC&U_KUm8uWwx;W_$@(&2
zyBE1`LVItIB3Fz*yMWC$DWcA&sMF35#AiEpqJ_QIQ+@#USgz2y(97IFt|xtzZ49jF
z{3iCeW)sm57`FKPcmgJOI$y}O^8>E)POg1F7wp&B>k77bdhC?Fa(tweW+U=jj7wI#
z!N#RUJL?c9TH3h9t+tp>Ej?rL_m`GHu-E{w<ClIzvLgn`0m%+f&Is@sFSPDHY3w_D
z;R6YaWIIkF^CRV7@?DRLo!l%7NZA$1aDvk;SU4~$@j-4cRxw={Bs`7W2n9=<OpapE
zBol3(y2&6sYtbe<mclp+j-l}LN||x3iWQFPS-G18I|`!lcNr^R%ezXUI_5Xig>VHw
zJc08%OAt+qV{x{JP8Qpajs)3eE3T#A*LV`LYSSQ_5+WN(5gw6|QZ=BGviw#HgN<a_
zJ+j-x+1JEQuaL$v^*UnX%$5DV2w!-^rujHoih`1~D=&G##*)v2)DlqaS)Q-h6l+de
zc#aFIWn6pqK5u{sc5t69u&G=Oo6`I=Z2UXMHUnFeo6237@_}s!Y}v3?qlwa@dHWgn
zO9L{2ienSG&y7}!{1n0{dX}Pkv&jvaJ{3AIN#$O7p|tULOC7d??-MeY9=kQt6EEA+
ztIjjM`aIF&w+4Fjd<3sC0?K)iA|Na~#Wr}Bl<AzY@nU`8>yYs!I;*7EiZ0@4eDJUW
zd)eXQA(gRbu30LSKIbQX;wR{D{q4U^pZ?UR^j@hsBtCb(edNn&`}kW9&%UJHooC^2
z2ivOz_AG_zCewMqMzXn+9h;mU5I-@)-bU#|Vvp6{+kUTdRC}C}*@nYS;E7_rO^_R3
z4?*Vyxz3Xo02H}8wyJ%L)JMr)kp%vAQCh3oL|Mr77+ZnPsiJRH*h~U;^8;p&(GO(n
zOWN;QHnp=ywuyPN4H5W(sy4y5y4-8+50wl03Z7j{LO;*&3xoo?hspMXTbRM@gDzoU
z8_j>tMFJ{AxYlEOItb5Fs1rr=#D7+qFpYx-s^+~ep3V2msWA8TB)`{d9NU{Tqg)4J
zZCCEm0lr=3kkN1F{VYCc$k`V;GA`LzQFTnqVZxgS^#e9OkC;ICIO#j^7$4~i8GQU%
z&LK3&WPjIyQ1^Y$?@TQtQ~F%;#lN(>?7LfAAV80-Pz{?g_Jb5J{j5jw>`%VT<PTrm
z-xE<A;5O&NzwPvxWusc^sE*Sz0^!{nO^9Q|_a!ia8!j@N+wDY#%Q;_dG&OZ`cA>pS
zI(}FGH(8c>c)t`l(o@1g0o>U#P#_yWrG)5BcPE^%ih3oS1PfW-_P*+@n$8olrBj<P
zY2>UuE8%6LNi?};oMM7aq+pBqvf*{Tq=w%n*Dh1X=Dl4ueH7Z_4Uq?th^Wh8=TAY#
zuiIC3CHr?Xxs9mK%R=Yv=h0FcHpjj&+GamaBZvR=RD)vkox3%;+P`z|{?eZBeTkw?
zg>R>H+!l1KCxC)PbF*DNHLTCGzUKWl_<^R9_F%miHT$ZyLkYdu+6LI<7B%`PWD=+9
zI_`Z`X)miiuNXGfNp*cTS=a)$*>|Evq_{Z&?~4t7%ObDU|6ju<8~U1mZ*Sr@1e?gJ
zgoPhy*huF)_=BBc@aMS`3qC05+$&ExHnS1fat<~DKd|gm+G?k{DYc&K!Ar-|`f1af
z{@c$js8eZjOUb{N!}CaAn_5qccmlFYC)*<a<vm-ys_;tp?WdQ4%_I1~2>~d#dkd5#
zoGB^Avwl5*Wl4#MTNni~>w8AP)ry8oG4>E7n!$PPL3Y_>YeDll1c?}v6&<%AQRG3F
z;F=|lgdma!{z3rD0*Cf&Nty|P>_ukw7!oE!FfKlu3|j~cI`2LL)vEz41So&@J@28P
z`0*d3=bwLG0%byh0la+8|2_BIv-DFx^}o<h|MXAMd*1yn`jub)2lTQBZqxbsIcRUQ
zBv?jDjXv<_bR5u`U_)>%b#j-$BJ=bg{(ZTEU4p@f_I(Jr#%H_Er^#hyI_cZ(ekRvN
zP!n>sAf>f4c1whEY(eKS6Z<Ni+r~*Bv@~o}hb;!O9ow2c*18B(^Jfa}(pQ4L+IlJ4
z>wF5^;lCX=w1!}>5xeoA$G+y9Wz>S~QRf*pGj;a5+Lu-~PON>`^`)a=a2Lpy6BykF
zK|RseB)K>Q*`wSYdoS03ZCcw1j5_Z&UZPwn$aNt%>*u5!1X1TkWwSwF>UADBR-{%)
zw<%NtHp6amS!}kMkLvpInve3n6nxYibRKDYye~nni_Nrv{W`hs`VE3$kF;iwYd)%z
ztIHj0UK^Ln+PGv4IA|ANP2|r~J?lD1))my&S$1l^hH2uxepYJ$*ks&z{HLN0>4EdJ
zPy+x);2lv1Y^9W;#StQFR|8wNOAP=bPyuD<+cs*Tj2$Wu+L*&!xz4%qLbV`{D%A$T
zgaDH(HM9?7<FJ-M@~8n!4mho0yM1dzKlLkj=-d9&Ptn7N?|%Au?o?H>Tr@tPJy<3N
zk`p+rRSqdzz=?#eMvEaAk(KTOk#p0hz_YL8DvE>7m{b}z@Rld%P%n6va)mKAQNhr#
zCA5=ZvB0untH73ljhv@kdCQkrE3hV9i?$6*(ZaWB#3BnE>XB1DrSSbZV3T$Wf}0$5
z5!P&gaJ??a9-FK+dJcBOR+?O84L56ckINZ_Mw832={(`tOF8PqKj-Y&wAMmCDaX8!
zvth#yso4Z6HeI`7i8pI-HwEr`$0iOIedp{!y7<uFq33_;uTi@A49zcmm~27+y?^zu
z(!cRt-{n5xU;g8NoWB2m{2v!i)Rx4&G4=TW?I&n_;w?14_-WP4s2fH-cRc|s#p2w-
zeru3xavSLE5juB!lz@p|ljuB)+-l#qf(?kDE1_=zTM2TEHXuGxt8+WHc~J*Kv3Xw$
zI$!vKE3k<}U&CsCz~mUNg(tt0qxKz8x2^dBaQ^q$+#Y#Q-B)`2kqy0YxX*w4Z$3)j
z@YZv>*r(2)4yu>lpGN;_{*r?L@jA7d0IR+})Bw1V?;lzX0HFX2zMp0B;DcHNK#LzQ
z$E`Rn^|fkd$kFNV4)^9U>-iTiXv-(TQlb?8yWc+*ffZl87u5&voQ<2?^r>ex6TkvX
zqQhDmqnGt-@qftpE1=&HcL<%69neX-p+v#IA*eNg<I5(?9-zbgW<;P#+y;?nzL_u2
zpvQ2AmK>f9n^2dd!3ZI1sSTU(N{8{<0vBZM)b8hjRhw50mWczoAjoADDT0mECuZEg
z;<szq+~-t0n}0tC$`%Wp;NF?qMBmzHU{`mUTHjg0W^&Knd+CC{=``Wqs<(zMwhy7-
zs$5m)r?Bb5ve^Wo-c$?Brv=|;u8kH-u+`e^(d4p%E%!E&dwa#H*=m7z{hMP`qja0l
zqUaUH;mP%8<E_lCqfN*>r#77@IVY*}9t!hI$jSVv$u;|;BlNYouG*s&dpDh@@NSAd
z!6wQ&whT%SVDmYgw|Cg=_Z_yT^StP5sk284a+h&0`hngaGiV2c&X@Msu<2AIT$@eI
z?OoLm)FXTC{Xn$G5_}Zf;}oz}U~`**JqoR0wrs)`d%Tg4TIxLdfdO)BK1%g=(jKD^
zf!z7us`Cz;*ki+XWRF?tM-Rg+@%sN0QUjpKX+}wg;p73z3wzUkZ2_X8Z75U=#8pW|
zP<z$(3Z*)g9OfdN)N;N#tntn>z3z!EJ@p!`0bs>J{npS!A_`dYqCJPrJpS*Q7w(8m
zG$G;(^9TD>Y^0c+B*XGBe!lGX_AuAlEH}PNp_ujQAM`Kozscu#?l9%wcQ1DE3kZP9
z{4@mSu(4qJm_v}pwsFi4%w15?+D)&vnGk<(0Z_wsRl6l!TE8U7z<itqkUWDQ*iT_2
z$R(e`M!GKIfZ^Z#zQ0aSKmA$ytKa**^z5_GdSLA}uX&C9`;(viq+&S4M;?9j5qj%e
z-%1ZW_@LB>d*T(Zpl|qwKP)GK`THV%^qV2K4CytwdLYky)(N>S+I?Qt<YsyxqGP#6
zokDKrgHE-_dD0w$j=p(~K;VoMWv8%Rt8)ZneY5-q*ivno=?iRTkEH(hp6&4jc6*k6
zu9K_jd<~mqd#7~LCI+9Em!&;_4%kvR@4C(&EhrxSw2yPCWot)l74LNuKM=9mz0(!;
zYWCswSjxiQZsG@SYL9*Ub=Z#Vv6I`8|Lpqtz50Qx>~&3Uu|00I-P9hh^8<EojSu((
zeL~Q0I?9*^nMM0`y!bx<|5gKF#GE_h=PzykFrI3#g*--O4{i~W55&0|XO;XxfV9vc
zb%S#=Y`?O0z88vDdgWuBDzKe>Yqz5)u|0+M(*Hho46;Bjg2q0BTTUdbaHbniXH0f)
zo=o1_WcunS&*{axGyTqIcl6L%mPGv`w>Iu$oy04jc9KQvEDE*^VM6wdwsT-&@=9Jw
zgN#(L!<Q7B)Brd<$CO?zE0(Y@)1X`O3@SY_VTsXmz-GVae{ba34V&`u@*`(pYuLrf
zh=W&bJfY77j&)#{4i&HoRRXY8Oq>n-Micb~n`ZVm?1}V<^el^?fQ?knLsmI1<*L{!
z<i^;dTvO8DN;mR$#X{DXaJ>bcy<(%K+>*A>z#<ONG5{AkZ#H4?#<J08r-j@!DGxR?
zXttq08`zCo+p&?pONrQ6?yEYl5|qpNoHh@9(V<^l=-m=|KjhDEefYyH9eUyU=dmlw
z{bWy;(RAy{Z=msIUv%&!XEa|vtNf~BGk8zvd<NEn#ZZFWN3&<xXTdeW283dQmO3TK
zx!GfrD^ga))ATk`O>Uwy3ijHtVT$GUN}(@Nut#n`8?`=01=iGIThn<uvWeK2f*%Oj
zYNfXDLBH1kp<xT{!CqzY4eSfKCG`V^*6lHAq?KO%FjFcex^>=8M93l_ArMeCSY`fo
z#=^_|=M;jIg53S*(!Z|xe#;oo*NhGA_v-71;M;BR_QN35f{mxfC75Rj$RO}#?FpHC
z$!=Kv9ySrVUq4}fg=@{ztq8zKA@Ld(H!}WOW*)k|%?D)eq2s2t%bzF|hsCx3I0TpE
zBZaL4r@l?l{IUT~)}AomO3QY89}Rp~zrPF>72i#?z(yT5e>Q$Ykq=w`(Y|9@_o>60
z<GZAK^e+DW4qKat+PKsvvo@)g_GIlf;8Zyqb~XF<yahIlTZHe+cRkonm{L|3jlD|^
z*eKjv#xtAX6F~Ra>Jl4;_g%={-*agbGO|Q$6ztK)V`!sv*iE(zd!%Mh(H@hm7{jyi
zorb*}$wlOt+Oz!L)O0MrhiL2sNA*8MxtHbd4ZDw-#_A8eZWD?v1#@1!ThRFeTX=W3
zN3wa1Vbf<z->S_Xt7pwOIrR2;)Yrm$QHQP4X`664v>SBxxct7;kECNi0Jn9ekBay5
zccW%ArNd_T^Y4de3zpKoOFH%&-cJKIDP7?}dOu(`v{1U*>nVE-zop<4qmS`t*DHQ+
zJ}Rt_9iia2F}wI!>>GUkP3T6aGE``3`*s=t!~0<!wcI3DEGe7_AaA#}CRlq;@`Zb%
zsI=wBhLwJ*V9UMx_XC}z6t0m-l`N@CPmWSvQZDdkMly);Yxe<}2?;_*-(d5@G4MDG
z#SN~ledybf#clIX=gps#3*4wFY?DH=WRV5CMdoSS&~AY!{%nys>YHqMPYYBTkNH*D
zr&1Q!terEo9ecoL@4{KDe0^uPr~To-X}?pdwvgb%-+BD;$0hs!!?HHi&!;~1Df)YV
z@9)XK|EC}L0ebVB-c0ZKx<8<lc3*lf6j~N&o#H%xMXvsC_Wfyc`k^@l{6@%?Kh9l0
z&rNQm8N4iEJ9V&FV?a(K_wDv-oe#qjTaata?030m&5ULnux#TwB%+$m3v{07c>NP=
z09=PHw#Op2Cf5>d!mv!hX7o8dHvaf2>~3>&)m}SnVy}bNQdqUe6>RbMJvM(g=%Ls7
z8g^b+TO!J;T*LL6J>JL<M7bL_PCyHOpvPv}@oPH2&K^C(JnH;}y`J<@#-m@6AcVfe
z*HXg**j9DEf^FfWJU+U_cFG=OKWAJ=eXa9R3I3B{6FK++>F0<AP=`%)9%?N_dt_{!
zaj?C@9#?%-==WCpL)s5m&XdMfblkaaT!PIY4xK~X+5Dx%b996xKLefGoZ+R+ANu)?
zE)0F{grE?GovGS6lEasGvrfcvPK#YS8|d^1M)G#g)+en2Fc;m?kRuroF7r0?^`+DR
zI9zXVT!cBBNQ>j}=Mu+mto?G23e<djr0Vy1M!FHsfAB&NSvdds=*Vu`D~I(s2%oTU
zSa0+=6Swo<tR}!E=u1Y_D`3v)TW5v-FK>Q;Uia8YcRzE7p1quqUBcPSdr?^qJmt)@
z&7A+tQ(h)MmQxXNn1r*^Y63`Tao!^!q5SX4X{nsS9K4;2a*s-oYF6(0^UWZ5nftqx
z36m#koc~;JfPe1TGO+E1`|`}|6==H`|C}y~=~?;r!c*?N`-Af2J2r5v&wFg1Bx%nD
zJmtb&zn37gVUzEIV_i7Z56?=*56{}4_aZOGCL3uTwmLE2Ym;l8jYB<P6Asov<SNh0
z2uz{|z?sW+FS3&$He=&|i(E(H?iIO|Imi{*m>(Y4s`5iE<+@e5GFDl61-bL@n7cj&
zY(iTT<ht1o8fb=G2{xg1Ab4VCa<v^v#lj_Vndel3*{~6@N8zHsI0)qd8Xx{L%9{tt
zdcE{>4ER6)b3af2{eS<r=(m3RxBVDs&TZfDk$>jjqbL4_chazZgv#!D{k1rBl_Se_
zWKLo5@EbPKf1Rb)0?#q3VH3qvyk`-9*l4dLzh^n_glG2L`VzS7wXdn%_?>wd*5#TA
z3x}C`W1#av`CYlTL&ip-)u>>(a$gdiw^|BjuWXN7w@2%1ut(U$kV~-FL4*C!x%Bh2
z#AbbGb1<4SEixfklPxgIEcn<~H=#y_*(-&<v@x9<c7jc~AAmhFwn2UM#pRA(*cE!_
z4$-R)8vtMZdZLGKXBiyXCfL8`5&m_yff4?5QvW)@e@@ffY6OgWj8Xh2+RdMCHrlVv
z_Y22Ad_M)>FV~6dy}<YTpg+pEB*z@#`}w|?lX9>RHqk3>^H+{!#&IcRNys?F<5txo
z?Qz@^^G;ZNt^}R>Ao%_DS-!lOwE2@-QB-Y~U<~_W-jv;4D!2VG7~i&*EIm8da^d@(
z9&MF=NTl4}!u5@!Sj?wgNvHsYSD&fRMs1h5$8K^R%EDOeFAJ|UQ%^B{lu}t~JKtlw
zReR*$DtCPrpUnK*j78cLX;D1z^vej&?OA;egWX;3CD7&A*uI#Xp0P6>*&d72p&bWh
zY$Ida9ptpLjl?#u;&H&Z>&sqw&jst=xWGrTPm$ZC*b=bu|87yQV1K!ncNqpPlqnqk
zjE(D*aKCnJy79+)5xH?+o3vfHzy}l$6KvYg88@GrWdE!D@LHyMvl)cDet)Tarh<)i
zK5GQi<jOX|ff~ck;|}-R?HS~{Z#KdA<=?YR`2KYYIv>dSp<S-RU2h2k(7E^^oj2_-
zo6be9IGrc<nAF}3JA<2KeyP|Q+tOau9@(ETcFC-~RBRl>nxnn4Tz3uI0Gp6H5R8re
zv((R+VULij+2fE}ortm3fl!@mO%;AO!^R)2+W?(c$Q|}reL)6nOe@GXkx0gsf_eQ2
zopYPoD{3bI8`}iWw~w$*QgUAH5!i&gelTpa%mcRPz}Cx^Y2BosE9IQnV?tjuY#W{D
z7pAw{O(M4;>Kxdm@9+Xn<BHmDK8oq}F14SJ@KJjihpO6RTH2%fC|wAvAE;sz)|U($
z%XJg5kG+rD4x)GO=YpLayZWf4Hc_;%QEIh6MCWN~j}(2>7L*I@qquJl!Cu7=jM|sr
z2S)UB_fb5jbDe8nQ~wEjG@B4VkiEW!*cZ>qvibq){6K;|YE2bTfNaeN?SwvddsrLF
zDO;%tz%;PR!MvBXoG#*JPRF$sI3U66P@XGrFcLw~GO66Q1B!`SI|o78UU^<rwI+aW
zc(iq`WTqQ;u<qJ)!L=$jAxU$Ij)HIcn`Aq7%MtWGo<H=-6OuTfyEpcQBhG(6jZ;d?
zY)89itcI8b3xDc(pY7DA1#o)K>IuOl3nEAUcUG5ES{TQA$G5Hh9knP*S@7=r_=F&G
zq@=KUY6Ui#mtKM0u*HC5q@>^t-M(JIg0ccWpQ$uC$oIN0em#BJmw)+Topa`!8vMO)
z`lfH9Z~OLdr~mjr`A_J(|NVcT-v0Kt(^F49CBI?npY7rM&ph`m{RjWQ@1}RY^ZV$B
ze&FxW``-UPdg1O}x^sEy^cqLlBeo8^^tq1m$K+~3I4jU=aVPPUXy^BGdKlchB7i6K
zFrCilE3i3sVB^nzMdvwe4D161i^ar7vx$Jso^2FWJ+=g!>Fv>d6R@S&9%=#@wltWZ
zEDL%Vvq#(1nC3=3WA-=$yI>2?HhZRMuN`-N#BO~pVvD~wKWo^`CVDERh;0hkCIn_J
z3*Y+E8vV;DdpzprL9Pp((~{ao`uSdKe)ZUT?55LGI`8fAq>l>rc%6@m_H1=p`Pohh
z)X8-Y*w^f_L~Lt5s<X%5UMU3Uukulj&1@q00js6p)L%ia{9Cb!j{3{&k>!#*xz=m^
zK(xn*&Fr;M%jmap>eRRteU{uih0_ni;A5N7fon?6=N@xdIRT)&wY7#U3jQR^%Haup
z_1y;UT>PJXvt{(?)`9KB78s}<V*+$^MqV&zVL0CX;qS<T0Y=BmYYhyb^RnQlzACx3
zYk?TqZDJ_A)5gUIX%>!Y4Jd1-m1Y9q7-`kr9{#)E3q?K)=r*=UujfUYWGvA@k35j+
z>z*p~@cEX0>yr=3g8DNr5Z%2T=;;>^3v5cD=itc)8;SCqOHBZtxH@+|jDTYdVsu!I
zR8=)4&B9d<a~AF3nKl|+RL=CvNi&v&LtVfZY$EW6ND?k^J-V#znyIB6>%wEc12*Os
z7ZP2~M@qx?5HKSxQbq$hpJvlC76LE6)h4i`&SE-J3xS=IVb{VXRE!=$vFr`o;aLD5
zLEyfUL*rTBqwu~nHep@KqrEn;@vdFQyR~`*;8-E$^e4^KB4CqSt6bTh_Eu-Xu~{|>
zIMk;mH_c{J8&YgduFgFl<jR;Yq4Oj<H`yd<XStT0>O4W`vfzNuC+M6x^~vR0^_n18
zv5`>&)WD{4N~kx$aGK7=9@$addIfD>^>tL9|3}&*p)+%Izx*q|Oh5V~KSED`_OtFE
zICy{S^?#Jo*~__C(Z$mrMK;S8UxEGc0(3$KTLQh2+v6y&v70PISg~q$Xo3!x_G<RX
zay&$tNle}PQr_s_1wRUC%{Vqly7|)jiWP8a{fc!}gU)4PkG|wOkJx$h^2i=FPgd-)
zsy)tTj|7S$*o2fc5$sEySK#4Aqz+CwWSLdRsyf%crM7O@s$=yrP3N(%HG73U9@@En
zz(co2x_ww|zv|(waA|z~o6hJ>uN!0oVA^Tn;BmC0m^K*(T~XHJko=I@{AZxg(rc~f
zV*b_qsRV_K)`t-v$id30lXvQTzX#cHKf?Vu=s99S%R@t?_>of$qwcQ9>>=qj-EKV0
z4@Eu6Gg~y9)VA6Q{IdySZ>Qt#bqD_U-Ur#6l|pPoGa{vLXH6*3$&D`h<rnU=G%%u>
zUY2-Zr}L_hiDeE);}b3E%S%!^2mb>}-?7Y9$tYKcrPs(b%z!M<D#@`GypNsmDd<c3
zK-4!Pr46!nLc7|S{#(XM#+KUe)qM2XLf;~p(23gF(a6h<IasX?J1&h%L}^t(=aoF+
zcomywqZGB{3~Z&zO@_#Da!O=eLF<>yXH~ylF&Arcs@C81dj(({Ht1Z1ECD%rCQcxk
z&V}BHN_!X4OQQHHViQHj8rM0s{-|=zc<(0H1h`5!Q~kswOEH!9``M_R(h_@)e!|*;
zO%rD{`&{S0No1^ZIzpCk^^7F)Q(D#3?K&?}=Y)**)cO*@1-a2u&Mu6!unC`=LlM=U
zk9#YP4}K7AF3L^U0vM+(M@b$9dKk$xH#zyE7Bo|i9rhLb+ET7sOGzTcf!b;IzJ@W{
zaPnrq-q7D8L$20utB(c1Cf_l-8tqHfD2F<o=d#o}1_#)Cvl(qt9Vf`Fg6c{8p~|aa
z)48w7RgoBW+#5O<Icl+j6LPbu%PAj~$WQ#rvEu0Ca<fS>*G9GEa}#^*fKAqbylFw?
zbV$~>)JMVpq@_)0KMpog&7@Q-`g`lSO5M~b<@Ec-Y!`Fk3OUNNfK}#wuoojZl0`Sh
z2ESLasg=@m*{7YtZP&IYHt62VyGcQ%_`5~Z7v>KuAJ&lbUmvdb1zF(Z=u>0<PgY(W
z#6i~Wu+{a5ogl-3UP<m44u3mGwx=w*5xC<34hIG;a4h|R14<$I#qH+^C=~>|Hu(L;
z#f2og+&TooE$BlCP)X47(5@TK8tn3<5@6***&H)Dw`1FrChtg63xZqR60sR}#>N4#
zGhnk~vIE*L4ZF}s1UgN;+nob8mh%~3A2#V8f8rJN!0iVQf&DWNp7HnI@s4-UD_{9a
zdgGhkEHpsxd+&Sbv!8vMe*M>foh&)+V;}t}egF4=KfU1%Z=fe0dyJks%-P@e_OBw#
z-0tOmVc0SXlOi}fM7bWWZw<qdTs<I4s2Q2F2jVOPnD6f=C?Gffo@GL_&2WfM0(qPn
z%{oV*nFG0u?JQ@{POfv~3comPYKYErE2`?TtCT#@9E<$QoDVv_u!8r8%@fC#S|<Mv
zIyZYY3RJcUv&Stmrz-;P3D`yFhu@#)##L_{L}D`sxr$x`HaYDfMV_-`yM3+{XsOHO
zzeLgaBW&nPY>yiYkis4}eP0ULYH6D~Tu7RKf7^6!n+fPkmk4s3T$5$Ak1b&=L9Q}>
zAqHuEX^*V#Tfi3WaR;3XHkK<kLJS+f_a(~}HfGq;;a(#G(YCR-hV24!i+*5XuZQQe
zzq$n*Fncw*^6z=W&9dh!0`_Zuz_2a)68duNOS$(^qsA0_?A#9r=-ja9AXk?AX3a;L
zy}}*`*sDET-tC}skvr4lAt)~Q$Gcn}u+`9)O7H_w=N1>P!PdpMv;A?Lq4NWV{et__
zL9W)9_&YiFrNiHDK~B|90t~1@0sm>(se(!ogZdtGs=?>cI$`i}i)C^6-z~<u8SBCv
zCKWnO);XUoVB(x1&OvVSS=j&xGdlmD>bndX-!b}!VQ7<KGk9Hu=&@dF_v26@FvIh>
z?P!G_)nUu;vGd149Y2z>S4Ewnvr6{d(Ap&fC>-IiBS!LlR^+6L<ZNom0xOdni3Y4n
zxL$59EU_W8Dk-P+D<7`(x+g|@^`k@|eU9i;&rI|)zj~LRKiu*&&yh@sY2GP0tt<dF
zqgSu9UN<sPbwWiVSgMLyGkQR7%MVvY3|;%Ea+7CKyjBV&Njc+5{<KpZgKm__DT5(3
zEH}Ys@50}e;~2o!V?DyQ@32jn*AFVEeZW?2f?(K6z=l<W%k>0yj?P|(&EyE3Uym(^
z_T;q`1dF#r&PUji-p{a^+^>{lZaN3AzO;)C1Z*i>PXQZaojUA}jl1@%h#q?L!IpoD
zV!uB-O#1lq!4H0r-u14Z#^VM*7Iyb_-%0fPZ>Bp>|2EN!FH+;4GVF$>v)46jd_Cr7
zBYpd-+=foBy?yq53D<njVQ5$?wZ1lWa-DYTHUS@{a>aE4_C?={Ixmt%*mQgfTj<vX
z&rWs4URU~3ypGs<Kj3{QVB;*sSD(?#4;z_pc<teTA0hgtuX&K(_}cTsgyHh=A7}Ot
zno-FC`#O;o^_{17)b*tQJmpUbS>35k0w<i}+TxVKJoUbR4_|J+UU_->q>B_BhVR$x
z8ZAJa4-2vs#-%>%qv!m$LE4HVjUj+#JjFKn_KW}f_0#ARG?1jh6J31EL@b#NRN0`C
zuC(3grVZksob@W^xYKN#VH4YvoFFR`XMHG_IJff;rmClZ_+-s&-)EiSNIdtQQL<c<
zZm1IJgtqFv%sy+xCeLo|jxDsyvkNkV#z9Y_OnT&a^mnr?51sc+UYiCPQ|uP_lp$%M
zaSk*^Y&l|^@N8cAVh%>YCfPGnz*a${HE<TJos#LXY3A`J4>&PVr7sSf!8d87Rze;G
zo5+o8fACa9vqT)*-r764%28}S&Cz4SyNTQga!s_*Ifr;m=WG-9`(g`&j3VnZ>J^C2
zv2YNbv%M9#_Hraw&Du`Ka$CW6Y>y<F+I8-2rk#4-WR>Hts9gE`hK;lQ`Tul(Ghjmy
za_q77a@|;BMSFINeQ9huPrW@_J7bf+rr7M=<U|gI6TBU^0oeATFQqGVK00>Q@o8*^
zU5}9~wxvz5T(^T3lefNQi$!vsSDEvRO$?eIFV7|<3Bg{M*c$diYdR$?+6U>!(H^7D
zx6pa?QPN(C?8F(5GfZu0en7Cf&VwJ=+}uYQHa3byd+qGe{6K1Q-xu<}q<)}yO{%F>
z_n+k0Zs0#9`KmM@C2}op&+=^8g!eVmIq50y-KCE23G;(lraA~R3D&9E0A=|4Dv1%S
z<(-Y+gJKgOmfE!h3?zABqo;|i{cz1m4R?{`A>&(4p7>zdhov+s72AxJL<m|^)Yu%s
z{*ykF+W4p++f2KkClVIYCv4DQJj#vN+va8xV5!Ia&m-2W5*$i;YQTif|DWwlC|6f#
zPq=-HY|sUrOl>q0XP$J3Aam|$dawx_sUBo3Mf`&|nqsCXe+uTI+wR^Go4gx>${whN
zZB1BLsoy21^H^Zx`4i?WbFD}B=kLmCm`XmD%N%8%To(Mlzw}GLL{C5cG`-=eub|tv
zZqavs=XcS^KK}8;hQSl`+_TTpyWjI3%^W`TEv_B#V?X}m^t&JZn8r&E8wX$ewf~H4
zbXZpHgp)kmo~Eah>o&El*eF+%i)9P<{NzOHdlIheO8Xf$5=?Hr+#^koE^mjWTtRzM
z@qOo&hdtI{6EOqWbY8-<`ez%qHG4ICjM#_JF4%%i+5HW>oOHDLREMn~2wcOn%r~u3
zFP)+g>aoSXv<)`knf_>(%zX>g277gEL!<I4D{_@~>l-U_-LB}|t`l@F@4n&(SgvQb
ze#P24Bj{^=DPN;=yH~{K6hNSZnSxwXco*?eC+snGI#1oZXRNKS^-*(IGr_PMwi7;T
zbA^xUu`N!f1Z*rv@dHGf0EG5U*OwypDA$wpMYirbVXxND*ZhF_&kFz9_ob+Fk>j}a
zcC#P;^y89J22!Y(d)&?+OEi(Ojx>CuwuPwtOPDqsZ2+XyCMb3-T)aFn8N#uLq(^;C
z@Dw_yf=iMCV(s=aR@6oWTdE)1lEn=I_qro9>SEb;wl=NOw(MkK5*|6RjQ33Mr|ldp
z(xbaLIymc*R7%-9j~zQUqiDyFbx_s8#g2FA;<)131&a@+xA}cvHXJ6mBfb5Lw}*-2
zOwYWayG?w*2@_#C($CMXS_pQ8(M-4=!ZlSwVK@s^!MRuEix&mLsP?wF$r%|Fx>(U`
z4g^%hfHjlJxVwd4tK$1;pB;;0?Xf9;VZb`;wPtA8F|fnCC0jrkcBRF!g_NESX^WSL
z&9iiCTNE~IYW#d{*pB3ylpB14qtMFR*|D!<Ye#-Yblf>iD*2alkYkUnK#oHqm+J&M
zN4Z9wFR<Zy1eU48I(NZJThOW;_1W<nYZ=8Jbi6US$zo(rFMIGd{m`_fpZwp*C(=Lo
zgFkqP>))YY`_*4{U%>t2>)!DWdh)feqAz*Jqx7;@J%9M)LlPWvod@jF@4<VIByeP2
zcRFY6*y|Cwg=-yDn;gfWbK`p#xmLaA_B|#9VxN>;?i&n5``DK#-AJy@CP=8nOs7$<
zCg*9z9tGO~Y$yDH9a9u+DP9w<L%>=x+QQ=72BH%B`H>$e@B>SG)FYCaZl7}ip&m9f
zH;0M+A)r1~x_b!z^CLH)RN;+S@yAS2fvngOn`#UHDSI4R%1{GWHj&bHkt2M4JAMqx
z6AQ4IuOHiy%Dgf*Y`k5uIW5TyY+_SYGA}dU)yE~9c$u7s^+7t0TQ&g8-Y7=h`+L#e
zJ{1WAI#)q<KO!SS?^QA3weKS!XwoYPHc5ysOpZ*vR^(ns5|RKDw@FXtqyqfA;`g!`
zwBG{T;@L!@z4*OrkF9ptLc9FFXr`iN!d3;_umc;>^4*r$$~v}+%;pXoQOugH&Y>RV
znypYLtzmDx`ogCTz4X}R-EzYwS=V(bw<Dc)*pIL+<X(eZh_u!MLP3@MWR~f?F62ti
z-<^rtDTPFy;d>Gr-NYsk@D6f0Wv>ftxnYZPrSN;XAEm{~lO9_-h3$kr(uzH<%8fdk
z>fTMJpTM5<MOBX84~b$83JG-5abG&Zo{zB|*(2oM`~YkM_m`UDsHK40Q7+}k9-B>6
z$sKR@SiNmkt}A_Q;Rk9xEm!m<(L)V>z<w__ah;F4+7F!cQPljv0$W<zqx&em!BJmY
z+AG}*8?9rbh1^Q(OFgzuuGRFIbPh>2R~fC=T=ltgwfiU7KvJJkv;8*SOXbq8bv<SN
zPY#)y97*dm*+;BGZ|CwRlM|8uRfG89cd+e+qE^1QyzBk?sqLQ$^Q$P!dRz$B=I!>&
zIH!~OC}i(}mK^xDIcUy_P1N+{oYk|<Czmw?dS2+r{cY=3yB@%3P~5*RIjb!x#^#&4
zrl^uB%^wTEu3<Bp7YjJWcEe^^W4mGVjniuLGv%E&+7>yrm0LhdWPJD@^Zhd|(An9R
z9(dpZ`eT3WkI{#J=XdDSpZ+v`<Rc%UcfIRf5{I$x@+pBA@7$p$o_L(z^yatFAN=RG
zvKH`cd0S%-Ek+~r{$a@_o}*kjW7uO6v>Jr0QLgY4krRDQr%~stJm$z4?)l*j+l&nN
zHJ<XwU2nE5_L@+Cu+zB}vG2L-PhpStc*-VX*7usddIB$OLgdDB?(H?`ECyVUIM%P}
zOKa_x^=;T>%?o=m8|nK}rB<(?yhOR3!ZyJkPx=AYIey<`JEim94@9|9XODj3;wpO_
zwARAfyG7ceQ`i#G)jkS+?Iv>Vb$XROUgx9y)XWuq$+4RssI~Q_&K}p~dYwJ?*d#6|
zapZM-R6kIBUVoEuY2m~8*<@p1+t`+Q3+6p`qM2i~ar66LKSvt?%llXnzKVrnb&jx%
z>?NDTdhiTE(`<?%6~N+n-r;|@xW60`I(+wRyOAs{F<3UT4b#9(64c?q9n(c{M$i5b
zSRb~mNT$))>(MLDp5yG#OFdq4dsM|uWd~0Ga|!J1E^sUd?Yl{hNOpY=U@tFp&=P*k
z3NBAJn(am=zrufgnALBGv%`d8l3ntRyyJ#m@#sk3_z-x%2mb5f8^S}*|K_*lVmf=l
zP4cT9Iwv2k;vf?T+BjQ}Gp{*7wj<3{-Aa2sv`fa@uobzLatWi-qgnHOA(P*f&qU(0
zaQ^cE&h5N|f2kBlf`$3VE+xz5u)loxZ?E5XY!j}}p}C#%ZwglKV7q{oWp%N@CfFs*
zQL!=CyiW9i{eVTUBle8;hz-|=?~jgcFM-9u<$CE(&g3c+2w<ZFwjxDYO^!QYJqOkc
z?DTEr-I^R5c3mi(i>6tQnQ4XO`vurcu2ax4<a&6QVcbHFQ;_2z*o$OnZXm}V+hwqU
z46IG(<#0{4VN)LbDA&8l*4#SwhK+T&m*?bso1T9EE&9pt*Z$An`MZDjN98~MYz}>K
zzt?Q|Z}>ysNPqYnzmeYlmZ#|DFMqiC3AfiXdACyT!akw%!@DTfTd>c&m~fiC9^{&N
zNB%6>Yj2NR$axPN*}8o$bWRtrk+Yz4mh-JuoiF9clg5kCw}8#<6ZR^B;B}oh`;GRv
z#r4HP=hDstA#6f*K0}VjI@k8vVe9&m#N*GU@3ek>w&DlO9=G0?_Bct!vU&0DCB1mD
zKWq$~Nyg{?;2+iB>Y&W^Q`CRjwH}!h{$YMo@CSP)#a`<yWK6ClfKOciVna-)$Tr4#
z4Qy|P{j2zT-OQbLMV`&aa5<Bx?9}(458A%JDB{o0&$HM(znAhFD)z-jG$8;%Z2;V%
z-FNBPQfvZDIQEE%dO}2Fz{0dG<iBtdz``RMK(XS<V!+CSx!1Z3Y%_CF{%p?LV9sgg
zr`{dLaQ3IX;l!Du+&8!;1ltsk-_zwJ+}SeO=3}-q^MsF*)wjE|Q!e_A*16$KRNhQJ
zzm1v^7ki0fZKRG(I@sqdedp|4vuH0bb~t&Wv_6t0dk8pjeHP9-<#xt4Y)9GjW{zvd
z#$!J7Su;=hC|vSd4}<?>+vdMr+)-{xDFQfVd2g1{`C$>w!!+NUF&KBZP<WBnhT%W#
z?q16ON^JwuOjX9t_vgvx<>CI^4_FR72V*(Qyy}dPt{!~SCAhd5`=mU?%%#md<;-!;
z-`{S4jr%dnm9g`@>F!Q`bGEf?Fb%w%pDX9*<sHSwb(>h%T-!tX^(|n#(2YAekwaAq
z3@Xp?20Gt2Y(cJ!hv~ki!|z#V;s++JFTlU$jCIyI|7MFiB0|-7kTYYGBkXr}f{C+@
zIS71#%*I<$=cK&i90a`FP4b*`$Z2=6m$~B>*HR0CYsVaZ&pO{<?3K55t4FQbPNe?I
z;Xi(FrcT>P{h%zqm9gGB-%202xX_wCie20J!`MZRceRFu@Uip!6MXAtuNQZBvf0V9
zl8kcZif6fUU)rHBF}95mv`bBtGxQ~%>k9Y$Ms4PTPsOs1&o{EU%g<)r8Q1)7Kg%3g
z?2)hU?%G_L5*bY!*Gk~n>czocIjKTwMsU{mUQeRjI>?!I%6&zGJX@ve+r$30=u3NG
zV_gVu>!kGpMzPm}TrXz%F2BFjl9{zm1N#MjHp@qNh<RSm?FW=BcgB2qcSn|esG0tH
zn)saUab}(GfK6+4aQo;!irX)xZIr%J-AA37T-m-4_Zp-f_R4ZS$m8Nd=XeVrMHM<H
zkt=ty%~t#UCDtIU7uggS9|b=kI#<qq_5;$F*j`8VpOxR6?e!qzv+Y*=C(E8~gk`&*
zbPdDr&DY!)#D2|3aeV>q=VuzwQvX@xh<rsqPtZBr>4nL4+fJtNI+3yQ+Ko>V%Ay&`
zT>Ne<2a(%OeLMRBmL=n2T39|HFDFx^_S~M%H%dps$MJ=(L^%8PTIyvSura1fu6=aS
z%^9xmGUY;2u3z?H{C&oHeh6gp{ER6Vw7$Sr=4W>f^M`tvhuo5}qO@cN3tAF|1-~XI
zY&I>prt^SM09NdAM6yo{Sj4Hq{XK7p8!3%(fbB?5cja)>q7=d;w*?5PCCmASvL(eJ
z=HN+PUGQgTCsOUC&NM9oSC>dcky=t5+zFYgQa5X-^8%UI&aGgsBpb2sLOf)d9lFfQ
zHYytn{9AjEZMFnSU^i+Txi)OW;2Q%%$HCY}t$QH}kRfZE#{{9xLA&_$QR!s9__eQ<
zK6vZatwz~$`0uxV>$mhI?oQ|byczJ&Ll4ov_|4xe)IWR*;8UOaH2wIG|CsbAmeI#Q
z{&D(&ANT<|J@DJV^^fRHZ~3R_pZ)rOR{FpLw{KHS_ORgkMTgy}KcvbV_t^>xX(Hc9
zSd$xt4GeEbT_LXz7IZE)fn=jz=VlWucfk_mYDGdh22~k50;h&;u#EAjb71dvE*n!J
zOFUwW_GmhfiBxWnozCq9|D`0w9=9K1<GzNI>DInSM!9jx7wcPNqhN7tMeDQ}9g$&|
z1V~`_;;J~^ElFPin{P^FEvmeqTfI>0Ypd8-<a!C6%ccdj&7d=k0akB7PM8Lrn>|_r
zTEyn_TC|THw&(|<9FOc3&+f5Bd-Q(4;-fBtT&12JY=YlSsBJDUHO>ia(GU3Pj2p^z
zfh}T(kCJ*iosa5uE^=ev0DIh=vPbAV+H2pJ3VcRh>q~oOl-R8KffM%V3FT&wL9R10
z{nIHQ1#G?<M1-Wn)W#*m6e9aT+^mcnPd0ApsAvg?jh>dm=EX~iJzR4FK>y)`aY2?(
z43ebe*-SD(r?w+e@$VFN6?~AEyX#=XGa@lEo+P2eX!Y!-SlLl7;Eg72=R0Wybdp6Q
zf3~>h;1}oriW8mn_^lm95q25U!dgWJU7g&GDBf$F)f*U@P+X*hYuybM`Xa$vrCpBz
zAMSU_^4SXp=H=vqn`7RgKo)0y*VbNm2WQfvyZ-$NCoA-NOxiB%R<tLXKx(!z-&=O)
zX63vb(;mj8nKDDxz%17uND|22iCh^gZ)R}27N6kj0&Kj)G|02KP^h&lR>PJB8~<hx
zY$<7xxVdVY%m8fsTRjS-I+|)i_V-?FYc9$`Iu1KrD>lZ;3pwFYPgTCJ6dqb^Rk2rj
zSN;C}NNzK*<}?ddZD%<tEsi|9RJ<FB90}M&_r<PvxXzHP^3P2rAyfSrn;!c<JbM@9
z3OQzA6aIS6y2^W8C&w1wg$2gXmR<S0$B6*D-Z|C;`=Z*g=A;xs)6{fs*!cGkJ;>_Q
z;I<UYp0qz$FpmSXPd@piIK?-7`Ipg`y#DnE6FNHti0v2^bXeGV@#Lk5PGmD7PsnD_
z0w%+->##x2GY8li+a>HT`@5)IhoJM`URB2f>~&h`eAWzpuJK`grI>wAoqg`zKG{gv
z9!;*CZO?tn`dWg{YryJqb^C4hI3&&@r~zA9_<@nJ<Qdm&&*ldVoAo8Nk*M?DUQOq<
z(lNH0VXx?Gv&zx?lDF^WIqYwB!l9X05}GQ?3+?`sgKnApT8`)^61oB1q)>Y@f2xy4
za$hfn2{|Y-YPOVQn^g1ljZ(;eFTo}){wMD+X<$sgFY=vb6M&~Hc3h8xnP$<p@Q!0;
z9GCbL690S<_U}tlT9W&YNyosp&wu}};&qr;UoK;m?fyfuI#I!72K8g&u}J07&m#O%
zpd)LyV>rfjUzL)jBJG>oWxipPC7mr{Az<0Un$4uyqR6_<Mhm6Svdmbqk*s>=V7Sb0
zB<Mh%)nK(dtO!=*;pdMAAQZb4>8{3MO=43bBhEZ6`W#Bh=UNGgj|DY&C@-@dvEQWF
zxX%xr{pNVGB{?^^ePQV2D&so;u9%!iC(LA6ji=nQxOHKhQ)<{mh}E-jO>Q~2S_=FI
ziY+a4UL`8Fl&iESvjJ^4oA7yBLJ@D1i$KvVO68+fj&qqPr<lQBT<1iVSwoJEgR6w=
z1fA8OW3@LDx${jc(t~AzMeRgU4k_~<z~X0VdcSNeo4rPC8Iyd{p$Kv#^o>?rOny>o
zz@|F&zJ!iglbvWI&*buVDaiQN$fWDsu!~-^+J<Bvl}srGdyVxqN|U2<u7kTC3zt|+
zA(=ha<?-l<O%Dnr(Q7fi@%3P*uyDLSw{a=jdx1?TcYTmcw8xa(9;rmRTHT!Jql)UB
zbiPC3ex~z;wDEQtBtxzR+3vVsRefe)6Ym3F{VK)<Y(eMAvDvdFg+u!qo^AGO_Q=nh
z{aq3@=NxLZ%{YOP%nztRX3Uope5jo2wth}fQBfb&e6J>sWsH-Wsf~Ucg5Np#Pcm%$
z9e4FvGqbhOl8hblY%G-RI@#|NYM`W6JI2?cVa=-c9CTJgR(Y*XCFWwHjLd9m&#5hZ
zFYAGDRG@FCq;o9$SW4aU({BgdUmx2r(LiuBQ61ikoVw*CFq4o321CE3IG4a6>VX&7
z%VL}&a$ac5M(5e(+_iH6NP<G(+ukEUpAbA|DjUzNM&Gf_RV$LpYky8XYMVoWS^_>|
z3x8?_T%FRRXng?=8tM62wGziZX#$0`Bd}z_xt(FlT8pEmmMJQn)%(5J|JGtG2*O)n
z@Z~RmMEs5gHEr{Rv-){cfampcV)xMY=p&ENSAEr2(GyQRK|lWszd*n78^0mXky>(x
zc0L90$xnQOKKq%^$jS1@9($Y~ee~f&aPY9faG0C(1~GrvvXz<t-QSJi`)i{^+(B=)
z!51k#WaEFQ>m^y$ViV2+rdD)U5={{BnqgPYU4LkoltJjle1dU-n_M-8i<;bd1DbUn
z0@ZT}sCuE%!}m9^&lwr)viVq0B%YsViBl`~%AYf~7t^`PC1A_YxqV`hRMUB!FY<rJ
ztG~hfM4RBxY%xGQcVBU$92w|B8v}cu(VueF&3Lod@$jC~*HWv=W<`4?*voQdIrV)}
z5&_gEVqf!MF~)&yZuDyu<%&#wx8?9`3HFA*M8Hl#uEI^vet-k|@GIWeP)lKZ!Vg@a
zps?#4HeuK#p1Fc8>U;xxoTI&UK57de#m~1>3)WYR+U!W@yqV5AhF*I=z}OSyDsr~X
zHJmCCdksEHbPl=gp>xKzfzIvOCim#0N~iN^ukHt+b4fa6A9ncudBA4BHJgw+wfsBi
z%=)p}BM0v{!5$;Fy`BC@tpbp3#9Ra)l>;_SptPig!~Hj{7LCj`2Cao?o4tfNokTTk
z@Z+&!x5Ii^-%b914IAZ2=MgsdPA_5lF#Lso_b+~T{6mP<`$vzSR0(+Vu`e5_3lwjQ
zLph>3<Yq*n-6pVhZ4)mm&{U8?G=!kLPOJtjqGy>*a`uRHkjaW-;5bURORAjz%i||@
z<V|+C<|>&omcbzbg%O1(=2r9~I&eMCM;_oBupyuhS+R+{rUG6`aAf+f{ovSr_fD{C
zc9if^BA8*=B>SPXqcBo<qPD^(f~{cp&S;HzLB&NcsTEfqMhm`S*U5OcfNdCu5KN15
zoc&!yjtFK*Cd`cEdNx5QIHo%czLOZQ8%4+{I+u+T!<uw)m<*eBkksU8I`<<;D>`?q
zay@m}%1LY`$}#F3*He(I*r#V|Y*w%#Xn74b|9&xQDl2SK7lX&D99QJ3g-}`+i4{h%
zqSuC9sjc+c;@A&%`-4CDL-gMFzQ+em{@7r|pC=xF{4i;IIsL2u>i?bI{<gOY$Ex^?
zRcuAF&U>B9_0+JYWCf87Tj1R^Kd@hByhMAfz1*1=X0~Hx`2HN^ICWLmkNiNe&urNb
zW}ht^qWP$0p()uY4A^>|TU`=6Ho4}b>|M$lHaS(ZZlAMZi*gNeoL217`c@5o;G~b5
z+rVjlfU&#3T==YGY{%E+_GeUUF2_<rmI-`+I@Y;ib^mEuCrooRWcN|L!F!IPRu&kv
z%nS=y#c^pdPR${^3=;^;?jEy_T^cwcvETcd3Mj>ih>O9B*j71da(8b*dHv3~v15-#
zf^-=^YzCKFql-cS)$Etem)l4FF6og=))5vW97K|=a;AZsb^anJjB*0?nQ}FojwRkT
zSp6cL4%uXkp<0kwu!)Um;Emh)@6-M?Hm*TB0h^tCQTtPDWv-wG92)kjN2{$gh+q%)
z${(XKoGi%B&rT@t4!KHZ_72zvI}&f$lgv2hxnU;+9I|062v7iflPfY?i<UL%u?c^?
zW7895hK(p-o74z+-jxst6o0wV`Q#+yR+Ovqm<#`Wfz3eY1=u(voS!c?vA{+_u1Rg8
zF0nVA6Le03jcjfbu{n0bR-toX+c#`x6Czi(*NH&EI7o4Fm21WLuh{gIt@`pMwsefG
zSO5Urt@|Du!6tO0VuJ6Fa!rF$Rceh2tqG7uqd}mCtzd%!V`Q_}By$4OdB)<=DZ4hP
zcOd-mcs9`zTh+NWxjmxq0Gr8OPmx&xx}fs{KQMOKGUy;@{r-{8N8_kP#ummUr~cb$
zkUZKWMSC5Cj|$kLA1LMrSZ+gJ_N75jLComq`3PHXIv?6xnROlgr}q^~p`QmIbpo6D
zsHGpMp)cw9&$etns?>&U%|}&g)PT)i)weJFKvlUX>g+Kmsn4<7lO!L!xZ_N1+2zq7
zldR<$O$Yl=zTO`MJ=^$=@m}d5mz>IDwv1~f|Kau;+K0Rm+3=9?@B<?~_K@+D7x*`9
zFjev(X!B9acJr4q3Ld_5mtU&tW{w4^ZNuVzojxEA>;LAD^lu_LCAUE>4BNa(_<?OC
z8uf#3l7$=UsSCs`tly><43~E3&(`^i_MCllN%6ILo;^EJ3(VN&s6F2TiY5Hs-fw}e
zl*PScQl(*wc4YU8*!%gXVedCZYKLusoiygNLlFJ@{@P!o=bwLG=ItEFef6tfO%Ff(
zFn!Cn{7ar$Zuq(Vi@xZK=vA+J6<r<zWUqP6Yv|)2`<MqhSvSu<_bh$rL%%_P_eXz}
ze*3pSeE7|o1oB??(92}A$8<S_cTJ(6$aT<pFE^)A$(l)G?frWWhzpn=qU=t|H9otS
ztF#B3Ff0pf_AV>fUB_rQY_^8$v6mHlT-a;C?mDl>8)Z>$ZjUQA;r1A?E$j`~LnpUh
zuBo%<BYVU;?5HmgEo`F4mb<>vKP&2dt#(MS^P$HU)`&;%6?DGl2NG<gp3r#;KBnFP
zTkOa7-M;2P#FAI~(n78${J@%zTJ=FEd{kP|dH-&)FZKPLuF$#D`lM_8XI|Fp>3#J=
zt}FIv>;8q#SFlCw?8i8vQRl5e$LRMyZmrlr!u>Pm2R06J+r_0OlWYCOIA?fi^M~=e
zFW7@6Q)Uc1?hu@3I;C(t&y-q9Yo|=cCr6<p?&L^CLI7H80&p7#C7Gkzu8q^*j%*m`
zKOfK4ngGfR-D(8ru^c&GA`4jXMpe!n)rsrggSbg1&ocQVEfU0^z3p^?)0(kLvA+!p
zm`z%!WE_XpXWR8guB&6^owy0uWan#x!dpyt#Mp%12>gbF^21LEMvh}BJW^Y|0>h>|
zU#+%+1j&kCJ9k};&sMqZJ8XvC__+0$j!`SAUSyX!kF8MVpc%jII_%0pPD`wVZ;)_%
z#Aeu|Tn*bEHgm1canyJ&D#sxWSd5g04aHSYVKW=i;vxk$K`z&(V?BPiv&?`iur;~Q
za@3izY=@0j37-q>QFkD95jZU62<(P!V>;)B5!-}e$FVWtNUzN%%pR?8u`m0Vzx9vP
z7d`n}`mNvmP5MW_`62rCU;p*PB<(}=hyKtXqBp$Z%jvCe`zm_;unF+GFaBbs^5El8
zoIT=;JY6_#!Zii#dt?TTp`RzSSI9M+A1Kx3$kYsTUAM>R2kc$s1OuNMIka;|c*@$B
z*w=UwJKtE+h5kNbh0YUI?@K#iGwi#m^%e6`8XQ_;>;1r*O(-o2-c5pPGZu}VkBY_A
zsU2Z+dqjPfzMs1v*y!fs<q03vupRp-)+q;@X2@0KHkjPZ9*=e2`>0q`WzpAw&E$II
zqfYn%!+PwaSZ*zl&pxVBE3lWsxaC>eVNByc%wZg38;I?miAZsx(J}z<?++$cmHfz}
zW-wJOT9o!FA)TXG5m7>h1vY<@_(1ZYvU5F`#?>spM*vYWO>5xOPMQ&1$xd@5az1#Q
z!&%lW*`|bL>}oq>%fKezFW{^ONws6or?E+vx2E*!1e4o`<k;-p7uW+9w<=rg;SUz*
zxAxk#8#c*+7x7zmvSKNy8J;@1%DZ&f96RJHGN)s1`iQLt>?LB0a>KLz_bB{s*cNiv
zAL#cbBN#S=MQzi$ZaLxdNT;&E>agVwo9VnpxsDySh}|C6+XS#Rn?T@|V6S9#Nep{g
z+Urg1k(xc$d1;R|*rUi|4Lko~unhGkcf)4ywyfijJUia|lEk0O74|59B|lYQ?cSI4
zdkcGH9giKhq<+Cp86D|7HMxbu7gyUW{D8^DZKChzM{<Xcnu9%~ubDl$A294uZpqr}
zx;;|3H+6l*{Nr@oPN@Y^m-Yy3qH{X(QOACu$(7QIkDBYkN3HpRc<*QvdBqP<Z;w9a
zDsG-H%cexasfB8s{|EpO>da8Zd&SxcCD@O0=n6KR9$K`c?-5Qz`k0n*+Q^Oq*n%5V
zfkgn4EEwR;6uyc88`%^hwA{ZRs7624<XL=tms4NVf)?Iab34sZyLSG>cJ)Ea;A{>_
zSe_(Um%P!7_MzjE#+sOLk{}@tVu3<Sdf|IoG1^$jR@T7tlKRK9i-E<Sow|Tjk4;aQ
z(E^($?98%xw*fUp>9LiTNgV@HTFle#Kgis=1@f}=H=8Z+@3|(x8{hawq2l_=H@%5|
z=XZX`lbiVS;tMa(^Upm;pZ)Zw>E}QALD`Ue%VBMK`|vxZ1l+q$O}_<lje)!zu*-&C
zhkZ0TOw+ntku=bA)0^DZbRL6<#{FG7n{l~kP*Xv!rn4BlJ%ueMEM94k*4|-1#k+6q
z7N@i1&7s4_r@T&Kvw-Jxs(r;C>xw-_?)uWn-RxzJAKnu4*6h_zqaI<at;lK(I(NTt
zO6Q&2%}<md_k|zG%i15&4;Z#Jd*zR9n#?Esz?xjIYCp2a&PPSLn$FkcYCh_yE=lk~
z*ZC;xYke(+HJgZa9zG|XuVAxw83k74cAY&gbiRUZ=uU9xVM}Fd>BptGQQ|cx(QX^1
zwy7xXwYJlVK8H!dC_|_=VB=@HhiSx7)FLf6IBd#m(?EF{nck%21-AC3WesD_i%G0z
zx@Z;|79rF+q`cgufke+5GhuHu`-w9x`H4sTX`9ALri#_s`W~691A?ByZ)J+ZQNk31
z?$)8KQ17ffsyUkx>d_nv8c8+@GJ-u@l%Jgy3(HNelU|D~Mx_?ogMW4aFRC6(BRos7
zlLx$tSK-b9dq(HwHp|wN%?%hOXXRuJKFTMr8E<m$QXIQ-XO$M9#fgi&4RXzfz2F)r
z1xj(94r4p|WkGwt9yD{%0>;uo(7EMZGO`#8j&O?H(3#PpRIYlYX>@Elk&_JqDjxK7
zxlNN}E8$s+Rk_3|+oq5Wq{=rtM<+Y9!akBsk4!8pM3u7XxTrm54K6R`I*Ba|a6A*_
zs*Z#tP$?5B3&_rs>wK<epUNw3a?G+x)Uc_}t#C?hay7>^sx#T6=0y%V=g;MSNAGyY
zJLup3vww!Z?c2YN{=hrFPB<O;^Y*vDo&NPd^{43D|HPl5f8}5KR(kSvPbw!bu+V^w
znptf^k2~wL4ZC5pYwJ5gVKwTz?BNF_xSXk-%Gr#eFIC5Ga?}$+Dn~MV41I^+T{Z~d
z;Pa5ZZ<$RP)`Uz!ovcG{*$O6A5B^S&BXd@3kiN)*RVE0DyeQFtEXU}h3b443DrUc$
zAu2(8>(>FB^>e!xY_MO;#<vZF68rhW4_I~k()lQryY_Qka0&mh_|F*&<pEexsCPsm
zUfE1RKR0Z_N6o=U`KBi1y6~r&y!cb^qw-=yHu{0K;UIm*PPQPEP&2QS1d({nUNB+c
zv1tzDmc(T+z)FBEX`$%ZiixJ=<CYDYHkQRv@(UmSXn4b7Bs%0Ny@eFa=2JL?x)B3s
zsPC{jrxO?(-<ji@=Qhk!POurd-_&Xd$Qa5T+1N0nYA30ZBoN3%O*WOpHKQM^zvS#w
zv9Ec?Mz&Fe6ydPu15W1W^rQ!{9iDY2T+Vh4d#36>X^XkZw43A|M)YePSC-iLK4VVp
z6d14-;bfmRIU*;Y7i}On;TFazl<YpIs$6-~Wv^o>XVJ1oX7F|MyKyLGLKf;cXr%@@
z@iQ9VJg|{wuPRopAt2ZaxH5TM8_4G#TswikGrL?hU^Y*XD`Oi~r=oKd^qkR;Mea%E
zX4qOXLlSHRn@EtmVpadR+2kfy9vd=2uEphQH3USbxp6XYq;^A+0EFs1<Fw~2ay?_Y
znVbc?TKa_XU36~P$m|u^pmUiw?VH?cwM7qVVgQ@?EZA!`Y(r|)1v2;0({e0XvBwOa
zS(^i<y68(XF6~ecVbq|FQ>Se;8m!n==Txjn8~WN@T<2qMIv=CX_pL9@kQ3X4_<omL
zhRzG@b!<8>wn<-`T(=nSO|Foeo~9$k7W>kmS)Vo+7JHp%^c5|dHqWMW#je<9xwo(&
zi9MpO1dl^Ir6(01MQv^@KFYAVkFwe}89u7I&b==|=bL~%`Y4y{82eI|c3T)*%?tHm
zg>V=|=f0J^mPo{=Sm(}1?X@qh_<<<bVStZfIc?xSXY)a{kgNJna0>(5kZ@v>RA(|*
z-Zy(C_$Y!s@?W?Xge;6Vx_**cOGyj+adH`-?6YK@g5&m@Ov3?&S=uELLjo_8_$_Xe
zAON3?o|O_}OnOq9k7;nC5AUsT?IcSY(M^C7g3T<)z0OauL9h(2(W2dgMxH=`kuopV
z+V^kv|MHW<|LB}d*V!5r8L_soIdz+#E8D<`V35&NSjMikOP1`c{oOMCE!l&!)HTcU
z(t}a_nUOHW?fkg}orj%BH3|z)0<(G(){eF87BncA;LNrl87D~aZ~4Tl(RnyOH`c~m
zoM07-m$_k|0ye%D&g-IqGBztaEhFuR`!KbRCY5#A4(<G0<MUQK*W{S5{K~JSH@)f2
zqK~_GFFZMHf9Q|9dFKI1n=kR_m9Kgg{fTe?f6%}6|M|D*hky8o>3hECd+051eJj1;
z4R4@GDfF}NeJ}k7-~AWqum4xyOYi)ff0KUcmwwq3lT2rJdO+R{*e%AubA6+iv81vX
z{}8zbnv{jyAb0*gpH`5u6#+yG7@AzU-GY1~S4#pjn+VuUu4WS=SJWJ_VCo#O8TM$8
z{ERKI8P!NTmE2+5X?>|NU`tooEBx3Qxb81;(j#IUgIuHBG@hb$U>0&cfsNa12{b*?
zUJuuIAy>zSwXyKSAFeNh+$ykH%>a=r-qix$Q;_T4sBzHOCTzl)Tz8;qTIf9Vr8@ze
zw@00?_yNN<2R|@a0315njEx${{D9c2`GFu;^8>w)ihh7PKVbHFm5(yH8g<j$`+<P1
zV4ZH*E={h`dGt}H^XNZq9(oq!Ryvyyd*pr&AH|=c)A^c@ntPo?u4~v#t|j=-Xs;Q*
zzsDAJesOu}<Bn}&7&h}!+;+ZcMaWN$OEzwe7?+IdDQ@mqk$a^m*4Twk7m~*&^kbW{
zbWfkvBEWiM{Wo$SG)PkPXs}F@k>xd{?#NHhD8_(YVcg7ifZNMeI639an)e#y-C~D)
zx>TODvn`HZVsT<d#O=|jWRiaP27h0i)PASOH`pkP1$jr>T5xgJdIRb(!NX_QJ8-gD
z$G63^VdLUA;d<V6*mirz*4mR4yW-FOfSsiz1}~8%aA0k-)+?ATb5)OIYx^KP+hyOd
z8TP!u*4iaVwVzy$hF#j(;9YLo&ibA%f?PSSDcBV&Nsw0qp<7IJ51vA@?JEqNZNsi-
zY<L(}snc+1KeJsr1ok&Ut_!*C8#cb)IkpyHF*)kuy0{~eIuE<av5L+MI#W_P&v>?U
z)ae*ov;hfJ!Cq5rH#uHvI}fU9A=fPe13TH_+d{5$RcvRN!1C`68y~qoNK<Q4B*n&*
zuWLG|pmWbIF>HoqkH8h=I0v2UyB4~bF60RIYhLpt{qx`aE%a4i{rl+SpZFyGQ*U|`
zJ^sYw(zjof0(AvJ0Pv!5v9_cEWC<g%QIv+YOiOz$)70sFsbjt_LC&$C%e$eknH;$<
zv5Vm#h}5>&P3|yN=f$(@o&L(@s6{{xTb+vcYYK8QtmX#{>;3{h%Ba6k^wzLW;LeLa
zYN2y0Kw~z+i|ee#0kz0yUFbZ;zGOPz7&d)3w?7`}>e3HXTKcH8z-s+mC;i;la?;|M
zRT5d6kCGs6Y7<V?d0F)HrOwMjj{7}=6v2Nkd_R0t)VbM!VT<<5_Rak!i5#0B*t-8b
z1j$Bf{**N6O0|tkgTITmZ#6>a3wPs67Cn1LAT9ovKli!=|9kJ#WMf(51sTP9B12k*
z@<M2JEK{cHgu}R$<zQCQO)<?j(R->Ml%j&|Rf1-CYy#IZ*U%7R2V2x216B4#t5N{*
zA1oN7)@ntam5!qp4P^3$l598Q*|KRiH=bzA;;kt;cH<(=IF%zwyuc>dX9R{ac%}6*
z;3>Cj#jJdq;D0Bj38}!IsqvHw^&)|yg_HtIPh9H#I3TA1L8Dp%-I3Je;Rv3}O@~3q
zP2%q@Yr7!3Lo;8JaB50MaMn#R?8~<~9vK$BC+ke)I+)y$K@4nM=(Rv@hK(CWWa&;*
zl&jf9lKV^0mk{8|IMpLKB@wvE0dhscxn~eJxq_b)cFfpBt~!Kb<DdNq-xw5^HRwDy
zY;x{(&@n~Yv&vfTT#+H1wIArb%8uS!wz101uq7-4bW1|N&wtqq?M@1FYZ43t<UCmx
z`2dQ*0v&Te8t<l9k-%d*=Xny_1Xa`sz`Icma@A*3HXc)8^MoEfQKEgN(QD;FGs7EY
zkVe2YX*~2LJGC%qKTclL22@MbvKFPEBOxkRYW+NEO$)_Fut!k*l*s>1u5<MRW{*kx
z5_tJ_>>$`gTD%+Ix%sF@Pa<8T>U{)Tflms4peD<9hrI?L<@T7=mk2G7>D>G$HF}3>
z4(lzKdy+uDU<ci%Cio<+(PZ{o^xaIZYOkG-61l>@urT$0uCcX--D(23e^l?_*x}o=
zVS^tK`ZmTrBcq<zKrryComr`rPzxm4_-+eW3jm-kLB|Dyfh1=jK%h2|Jj*VrffDkj
z)Tn&RKOvEY{G+r1cn^8aA+&|ec50dFLLZc3(%mtI%l-7Rj8lm_RF6FP-*S+X(;^Tu
zDyd~NnvE>(yO^YDilS3Jh;MF5DH0$>;LW~c{a9`tl}XJij90&eXA`g(o$#g1%R}}j
z0?{d+3;<U74g!0=(ZRoko!AL8vtQfjAOyE$EbOpL;5o`7yt^l7rbu;>=#fVs^}rY3
zpXq>}d+s@<`W$S$Y>Aybr+etZ2kEJ&o+3-s<DlRF^g}=7NoyAT`ot$bP9OW&N9nQ0
z9+RZAFZ<FjlXdGw!D*rp{4Jq>B%+p0k7q|34w_r729s4uODY_bt6(y@;x|+qeTea#
zk9NPH^CP)+a^*GhCE7Rm{v36lTHS|*J;G;^VIx}50y*|+^5i87*oJ7Y_)U*ZC@;aG
zzU{EZq*n<n<N3z%A2%~B6S~J{_FBUGMY*~?5;bh-Td`f@jJO|#zFF{YWU}exDm?o9
zZn>k*fn1G~Jz}%Iq=nnNehfW0wptef)FVG&J}lT=il-9rEYmsL=Vry$7do@p!J+*e
zxRc=ya$V3nh5PhA%4}9L;*r5_a?SW{Z?7fjxc8s&RDnIan(Ts3NBF3#bZ$1q_fMUV
zvhQ1xObQz%d{_5z+@2#P--`bX_G*1iV$#6odLmjd1BgwPvgix5=^^PFM5cUZKGeqk
zc%7jKnRocOM~=nxXLYgcG+d=d(fv~A4e5nDmy6M?Vzy@;#&)i_L%i&Pb9&(X9C9@!
zK(Iv@I;}9zvOQKjwsyY%1%kfSGfCU=C&|dogLnLBWHlN^Fp?D7os-fGIBPb%aa13*
z+x4VnHrn;%&*tyhagq4!Q`jo5`}Q2LDt5z$%;y_p)9dV;6)l5Y0$4VIz|oanZfn=M
zlcTrKEfYhpkL9?yM)sWZmICVl`jR=EaB!U;*+7$HxfiS}HgIEXCPzx1eH`UlA=e}9
z*U0tc^^qKpZ6LO5AbP2DS$KjzhclgyuwElayS9y|0hv!6nAjsAYyJExxgKL{_L(}l
z9?7xC+Ff5S$3lAie(>zhRX@;OJNLI`6^&zicEDP(8+=NRH}X*-lj5GR;hIxVWhol4
zQg<!ubDWA%tW`3euETb%k2=+tj(pS&u%Vw5?3I0g8k)a+$#Px6#$(unx6dhV0K{>L
z|23Q%x9lVd+Ij8Bi@4`ryekWvF-$J{|GghSIw8@Zo^ows>_2QEouA*PPd=-E)1s5)
z_Ng4w2=tX!AEWgZ@^;A{MnIq~G>mh)N^q=N04lXfo6S8mD+GaN>E{~Ilq}b(f#{rV
z0&0_Sl2bQjZr|79o*FQdK=A-h>6!fZw)j$RZ(u8gck8fW<8Og2EIMQY3c`1ri#YaC
zvCgF}_|=Em37m#aP8&Hk$TeqAj8LD0ML@COY`})7Re>ChLQ!h0B*RV^&#%IU&4W>c
ziY3V1bS_Yae1u)(#_c0EBPP^w$SvzLVq5AwV9N*&&!?~fJ5H8HY-W#=7}3kMC}pOY
z$W+}%7TBchjRwJcovTf>jS<tiFAgclb!zsg$u1Q7QW1I`u@T6vVV7=sjE$6qMFIfU
z*M=5M;K2WYzUG??{Oo|e*ST{Z3zvLCjfsY>ji~|qT*K+M<_ApY(GQS~1?~ro7k`Oe
z<T^H=W1Bj$FUe_(s(M@Ml-wp(`%+O`mW`aL$USr)<=77tuR+ma%Nh1qI=LPDs9tX7
z2l&C$9NR&gG2*1ts*ehOU^4q1j<A_r7ud{R12)35li5J@QFA@v`$=#qHr=dv;jU76
ze&V^Ao_>J?3syuG^@Cu*5@1bOqYyTVMUHlwXrqf}qa{jq3TBVf!=qzK*km~ynU0X?
zOJB96H@@~9V~3uAv9Zoh1!!PIr)WcHpF@VJ#T%Y^;RSil7AGBvY>l7p^SOinOV&SZ
z^IX&6p$Bg12`U6`EKpLrz>&9?(so@^a>@j<Kyc9-RF`|*$+AMJzJXA>z#s0Psck;k
zM*>L*!dXx$wiAM2C-05>$9DU5LR+F1AYH?D^4T|RKZQ+-e;ywEZ+_RmA%Xh$y!&T7
zc=sh=@+I^$?|!!=<uL6J#ekZ<cLCMb;TfO!_{ZrZAN?r(+OPg9{n-EfKhuXk^qcg)
z_q|WEa(9>X%2&RU&d$#08~?~R(O3V|Urqn?*L*d7`BPsZ*fvrNtl_rcpy}k4T&`_L
zu<p9wpVH}d?JpIZ+0;w1M|<{l_LyQ{=|3y>m{y*B65BO$y{Wz0Z~ggK$hEf#S%vh!
zzXA3&Z1Vf-<aVNc?b#6<-Gkix_b*ZB_WM)VKc~KQ3LDyQD%VrLKZ*VG;0Ny2f4YC}
z<Yu4EsP(dJJwfr=HWpEvcj9Kt=ciUzA<hY&dF}<;O-Q)SjV5TZX?qW!l^Os`0r=ok
z$txinmy;Kr003^cKz}TrAlF#H#*Khd8ZY_QIH)J^>f@OFZrV$Mrp<PgNiiR>-~mWD
ztY_tc7T#y(kK^Ku`w2(YwVm&8rwoK<Wa5bzPh<zl9Az|?^}U}gle*Cf$!^l99MU^K
z!fMzQt721*YB`ENHhyiv3T(T8P3SS0vzisT;R@%6K-FFgN8~hu{(?|doaDE9eT<Di
zhOJQ{p<V%>h?u*21+_Xh{(a-s&!F}weynS>cfk>&VHljYM2ak?p%u=OpmD~+3taS+
z{5ZE|40|mF$hGmo4{j6AV_q7?&ls+aD|`xAhwyvB2J8SYLD0T4C{#4NUKbFKZMMR$
znz6R5rJz~jypUMbQb?^{!ES1`7E0jN-voLW!#2adH^Y+t#dy(}s)!eFx;r|yf@QiI
z_XVvU=T6{YZ=C<JmV(JO=e($|A;&?FbUt`Z0M4G|zg_P1)QoNjDDSCG{uH~`QfP9G
zIu~r9ju|~rfFqX+os-*Rt68z+t{*y`_x8B(10&0EgT6G&br!6XERc<EV7Iq^E}=E2
zlCg~S{YqbAuxAp$uFF~=5ewHVm}m5@h;8Wy_BhfnegM=*d@t^wt)DZt!F`ft#|!nx
z!beTPN5Kyy^%K(1-A8R4OBVZtJ>JMijm<~#!gZtAM6Pw|qv{E4r+gImrR|ZALf>*<
zALVMkKVsd8OlRr$N<YL4|GBChjANa3wK^`<dbB}p9Dl}F7~3=GLl)y?`a<xZKb~1Z
zmf?U5g=_^Q?dU!o2Z@<0(X+fmaU`-pY|+Bn8W)v2w?J;Dmepc&mV$tc279bsvnt3r
ztL52L8W;G`u<>UAy-;y%<Qp9Rdugx7?Uwajj5?9PEneCt1>S?d&^XnRp(`1~nrR}~
zQhRUdg(G;&4O@zGZS)uso3|r_yluV{c+D-)k4dTpW`Qkofhz|l&RAr~HpoqbY=M(~
zRp%>mOR961dur{PVMM~qUlDA#cefx!#v<0R<rYB+*p%AMZNlsc_9l7PUKlnzHd^R>
zX%jBj5ST@>a@)|!G3Z;}9%(UG)?lSBY&(0jlLC&7j<EIi%3quv8+7j3^${B~j7o7m
zq#!rVZX!BWOJTri4aY{oo_)OUuu-#DvFAnmu^$ln7X)fWY%C+QiQorL$<^%9{;Sa*
zsWjgGVQH^<T=xUfW~yN$U(+A?feKuUzS8?B^cD95qyFKfkGjepQ*!FgVgc}*_<^AF
zIA$(%8tt*ewzS9Euq}Ll3fL)NM=)M|iuxp_Zxbb}p2$vR>BfW51$yuuyt~;p%}VQs
zMEEr=Pcc^Yx2gx6`bLJcsS0~^7Ed9o^-*;Z>^ir0+vxJ(KAxXoeQkk%f6p8Elgxix
z*eq55yM1iKMK+*osH@Yr6QKxr^-NZ`w?ShKatfQ&z6*tH;*>(>@?n07*@k78>b=xP
zWWJdj9k2nG#1kT?cZh)}*=R+E`T+ZC?P?h_>~BQeq{miaQ=0)N1tT_Wa&VD(o_UwL
z+$<3aQ_|D$eNfFZ(%VKENye}g1UBq=*NxD`AcPd;EGH<cp7;^!M^Z{4E*{LX`lWyH
z59s5E4FSfu+u2EgPssmr&45?D;uZAPuX?*A?d*0+9mkmfjMcF_6Gf97b#fy*ZkJ>u
zO1g;`e(#ypMYEShZb7a#uQmD{&eRtAU}~oZTAc@710Ts1+4FK*Ijv*U_0xEy^IAg<
z0Q{=QW_22bIu4sJDZbmR_L@WA>9OS_n@HGbos|-@mn#CAhDA59(-AfcevY;l3)qa_
zlI1eMUM<N%<toy^+ADkCiE@)Q^Qz9<n7YZsVvIHH&P`7^sT{_=$<~co;~XWm@!qfr
zg)aMnWG8e(P?y)GC$RD3t<K{nXXn+A*lg^OQb;R0mv-1=4L-`T)!?Jxlg!>N#wc}1
zJ9{-B#-9-<{nm6&z)qyG-5l-F`ck-#_Gt7uLuZeMjjy~AbLeXeY$tRc?XkC4?@N$t
z^q<WS%qQ)!=)_7B2jB-}9-jwKKr-z7vH9y_Tq5%9ez`a9XMNGy<X-G=;ah8aMaWBI
z5h<m`yyK>y6GedQ;$M2iA<4v80;(J^4eb*A4KJ&_&SPuGgVd4Oib&st1BYxNQUH#-
z66hN=+sU}M+YvW)Vj4`4u2=PlN0wRV>|C@`e1Vixi33csfZN-#9_<i2EV5Maho|q2
z#)vc2*@<bOFQf2HDSKUz=hPOWcs3i1JZnI3sI;Rll1Vcuueco<uJa`CE_`JC?)%A)
z{mAtc79Ko_+{1|TsFU@I;2VyGD8-Q#sZ#7MOEzRu$-;D28Un+%Q=VKYtUG2IlzEXf
zoGUN>w9_E__I#^Hh%9J{z~Cj0OKpT-I4kW72MROjM$oy8cT_SjIKyXDx~7JG6dhh1
z27L)CG7tHrbS9e&9(~8E!QFD0m`HF~I1&$7r=4W$8Mgi13wi!Ic=9EP$#MsO`%dVb
zlq)S|+ws<*BpdEjKsSQA4ZQm%I_E{pM8ZqTrauhKUp6&t9HeBPHs*2OW}LuK4zSI5
zE^^&pOpv4Uz3wi+=eiv=2yb%T;OLdnH?f>J15UX62-z{p`>dSj8}h;?>}W*JRX7{B
zya;D5wTqo#b?gN^glAh>kWD+~gJtZzXusg^o6h-2CkLVr_rHbRPVTqDua`$XDhT=;
z;d`aj=y0$|*1_R`4V-i`2otENCe7Ru2fiJ}9{0c^n-#Ff5xkgt2}J8;T}~2!$9ao-
z1d=3HOUroMsgK&GQ3qigG>7c81`;&NDp&CX{9_J2fajL7o|2GYMnUFl-pB-0Is20i
zoTNc>KIbUdCOv+~!7J&Du$e6@CiZh0+~)~41ZHLraE(IGAlL}C3#xI-;mCWLgO9S~
zdFoF!TVfVHk2v}#SaCdB3h9E=b89|nKcO8upUekBuKNnQ2T)B^)nW6WCHT)KSI_!3
ztdgxvZNkcY!c}dI1}#LU$9DNRGfoUmGyJJy6B>b{BahYqP`Ry+OQ~@MQW(c<z?aF-
zTo$|edP1Td^VfxZru+S4b6=f|Bwx_WBuh4wuz7X{p3J@a`pud8oZY1sndVJ(u1CTB
zo;jhnhrWM#QG_0f+t?5AZ#mQT?0gjed3i_uC*PY@wcpP&A-{E7NOWj-S2;U*GmNoa
z?v%3boX45Mo1Pca&$e3)5M1uG*2YG-;}6$|-^;0w?I8BW*fxUg;L9(Ij3w-^*k*a0
zVc&m#z7cE}z@|L-gDh<M8Rxfj(syw&OU9gxJGmk|QL!=Y$>m)=g3sLCydK(1U*Ptw
zWajTKF2RS3jb+&o9p(G{9{Zhcj+tE9e{%NTxaDz2>Bx94!tZ;zS8Qj8afAEX<z4ml
z+r!u(Cjs`lnal6S8~zt}c#PCd#%g0EV?XGH=Mk4oc{m`+qcR8RUdG$AgU<JdpK@?P
zHuAQkybJps#<@9QW4ZF!!S@y_0pZCn@?NYL*162PWFB?U=>Z$}&GTDZ$0iFbo&z47
z`vroKx3`1noU<IW$aNz=f^C9r>)dqCg~u6tuty%R4ci{?B66H`%sdn9qsWbIK>0~|
zb60)TEyH%99O?XBmd^#K&Teg$mSuOxbiNU}?RGl8OH#+-4;PnvdFL%QciG-qM%-8S
zhcS-n@dO(<{4Yf3quA>ubk3WpOoe%gniJ<T$2(xT3wu2qB_PWQ0o-@a&%jH3=aRHG
z!U!56<5Jy7p!DMMLj0rjCE3i?WP!7@LtoixUlE(&jb}^L0k+*G>~*WycEX*ibr?j>
zEZ6-k-_OH<c@kq&Uw`r9PW+GR{D5Vzi4wQBI)}TwvzM`ypT*-gKaT_K{CnQ(XL}qV
zXGt*GX<t$w#k7MLz&47`C-+f9@KGDF=^f;Hi~9=vfN)c9wQd8;h3)RvR_T>4?kF{%
z)os}Av?jzkbZ*?eY!j?=mIGtwe$Ui*>_6Fl<$7*?iSM`2`KZ{~rq9KH4$_xq^d<2F
zJ6)5w&My?Z>721A@t>MqFLJdFeb)I7a^(c612*@cNSt6l!#D-oPURMTl++tK1TphA
z%N$+i+M6?3gRmUf&z%X@QTnmY>$kEBHhyN~?!9Zg>_W*|k=@MW(3!mR1<OSeCC+4C
z!ii_~fL$pSwH88^fWaW^(z&#nP?Dg+{u65osiiQtc1cE<D{31Ur4uPVS_u5#@5ux9
z!BkDxzNED!QknxTZdn9aJW*;K7s2*Z1xqb(_28{D4*=>ZPtXn5S=SN>2ufWR38HO0
zz9H*$1UhBT!G6<&^9Q}2Z9-63*D-Q!^Y^sTV7Vklp{`YGrx!BW+IhwaK*nYpS=lp*
zWqm1g;x%k~ika6~v7qVswo%XU_%ne2T2DkBd=c#M;!@XaU;F#NhCcbpPtwnS@aGO|
zuf6iGANuYGKJdTN0}nnxzwc|l#`Pj{#-^Jk^cWX7KmRM9`U?8<fBw(YPyXaj(wBbe
zm(#ER`mfQu-~BU~16|P1zV|)!i@)&m^#1q1j~;pC5&GA^^SkI9{@_0+evQYA2X1XW
z2+Vj#@Q%;mduwvlQ}H8o+KPN{+-6wE1Nh*?#`5UF@q)TSrt>+-RfCrYUnBFMuo0C^
z=NgwXxf-@xz-B>TrhB!`B*#uMNw&8~@_Dp!%dhAh*f-~+2CNZm=cLkTudZ`oUtsIy
zD*dq8t8V(5TxYjOjpyn7UgQS3OLj6P^14GDLqI|Wub0pA5*t(E4hw9dmdBy}?0kz2
zX%L}YCD+<0ESt`)FR7CmOl~vA8|+}q_<{{Q#|A$TDW|MZHroZq$V?9eKhR@4vRBAW
zHb@v-YT4pBZtloBe51j4i+5lXS>h*~rt`YuqYRq`w9nyluEkd7W{+{xEG5UzzdHxE
z=%ZwuW1VkC#7mH9l1}Tq$Q<LmZ8oyKqObM+T#G7`BrsYmXARpB{Q$-lg8x+Jivb$}
zv&1iAU+Vp5?rh@heA6~&G47<Bj7vz0m2oMwThU}sj1EZ%2?L~zjj7Qqsms3i`NQxR
z{@uU$-OE2=djTI?zKgTvVh4vs;D|H_4VLFn13-`VDnDoOjRAdmY!qMzQXCf^kg>yK
z-?wZNR;(32P+Alf4q>+{nJ{Z@{N8XZzQg0xBG^66tv#pgnS(}oq1bD~9s+0jE*h+I
zY$<_y1ex1p4&AU4XnMlC+yGm<M)2OQ?Z|94?7CyQ#8wyBEIU8BQzSPklbdm_TK3am
zN9A$cSFxJhBDOhT)8J_@*CAkC$Z=kmtMP-GO_*Hk5!TtU$#q#~?Uq2_vA{kwx#eiT
zz%sbbm)K3`c?H`dTNK#p5jI?}>3nY3YUy-dS9Cs?<#laxtR`2do2d<JN?vqv7@|D}
ztS;wvy=ITiCXTVK>0Evvb&htk$Gl>%^IVpFX)eb)rzl6OET50;wU?X8bxr5_NUo~$
z60T>Q$XNOT>TE)Fnt+XfHD<t>AE*nR)5890XRl?&N16Sm6Fy3=SNy<2=Q%HQe%eRX
zW4Wf4etyz_hOyzu_pe~9OMBGGeZ)!&drT=We3S$VK-aY#m)fAc7`O1Os`Fp(OZ?%1
z`x3!8+a$36zVP8sJ1S|}kqNvb9LJW;sfuilka2AJrA93wSrXXbu9y#KRz#M`wM^bE
z`?MG@bkIRco-!{<?a+}}O|AND{!T4eAlk+m5+5uxwszR$UevOst7UovTWy&c@~GL8
z9+GFz$ajIAit;%&Y~+)Fsz$K^Y&GH4TGp=0D!E)EHhHgtwjfu>=5oyq8#Qc}X-IgU
zV~fAX_Y<{*5s@qUQcCKRk_C2RmU(R)vIOjlb~+)~6m;&`@$7)Dq$byjNwUsAZIjRB
z*03#f-eJpY*kBV)=a}Etgm;JBXo<~iLL^rk7p=TzDc~%Q*s`}*w;`ojS;%c+udt!6
z-E^Kho%h((#;EBC8FD69y&tvUh+xwNpxdK}DZ5<l+Obn_6X^(B^aC>D2b)NtFUc64
z8Z8?wbY5{<Bn4ThTw`C-cUNrGVKYJmx5pHGRMg8_Uz%HA^2M5AhmT5lw)eGO=l1UA
z;&SeM)Vd!y)_G^I?xXUmk6Osxu{C?u(<*4M=0Ag6HB{qA>fIibVnb1tBj3O0dM<OK
z=kM~EtIw<mj;Jg!#!wr7-CrhTPg_4v2tqBcn;+2E@-u6)S<7qlhi;AZ#3LF&@W4ve
z6ymBsLqA`(SKL#QAab)w-ni3*6rF>_#DXu(A;K_3A!cAnE!L08f;_a?5Rf%(*FJZF
zmq@E8ftOl+?Pc=MHpZdd=CU@%MSb$qIe?Ud&+)mezJ*`g$J;Rv@-=UGw#7l>{Ij*U
z-&=wY1?>8)>ZfED?IuUOi&IIYB{oYS`^A6oi?WIG?)SXMvvwbR@MZKzzUhz1y}tO1
zUq`mNVe?_rOK<zU`FH#FZTi%wK24uEY$`na?6dT{zxzAVwny>MyLay%HYLyL#TQ?o
zuQ_ZkyzX^htkkkePml>MH2SG?iFep#eL~B5dkS)!Pw719^hmC`wb!U~{B7vu>hz!;
zHcKvQ*mN%Haxdiwd#`hgyV>)SW2=fiHS7u4o4p?E+<cMwzXi4wv0rVEwozhotuFWE
z*rPqxAQ#8h`NY_l7~Pm7wzR-Tu`i{1ge|XO593BJSCh*^ZUI~Fut!SRrQB9@9<Y}y
zu&wF5*+ha=^khlIbES{!>~W#<BYW-S3VU1lFnQNwn^6B*7JbQl#8R%xo8Rm;dw~18
zz7(-RFh~A%Ay?{bBB!O?PWaEXYOmGb+XgM0pV>xC#Byrf;!pISZQeo)d*iu-CT~Mt
zWd63zhwkOGvH`IC7!cW&IqYVgfr`Qc_*R5P-@VeJC=0chwM@Wh(EKCW(cu>i#cmR{
zV>oH>v#j1;!?jKrNsnZt^}-Z3v5!Zy2^}h4Tk#x1KtFpRI$*0<Ajt&wYHY^wR2Nw5
zD%Qw*Zb9?3z^04nRcy6!g<J8PWji^?`qkJ@$T2PD=HCx;?638dLw`N5U|+{}Q#qdc
zzR58k*+7p?CztEkuE9#ld3)&|u`RyeW9x0=1okzoes5rfr}@0dQL*Yu_2$^Fuvf$8
z*GW#N7&h|*>Be&Gu-#OS*4I|CLFd-Df*fzE<5hdS4x7mZ^$enq%IRu*?XfnW^?CA9
z!4Is<HDaTM4LCORom6k`>#xLmg&c*pXxp-TmgADDdTrcl6O0tbxuO}@`^j|~7j|D*
zz(b(aCYG8V#ixO`^x}>uU{$i%jarQ*rd;AJTTFPPhqj3$*D2HrVe=Et>cKahtRL&d
zi)4}{M>J*g42vK>Ii)di;jEUqh$i2wy%LJ{l1&=55Tsr63(ac!UN~Agt&g!uyPTRt
zuq%fQn8EB*+iem$V_r25cElZ18QZ+o^_Uj(OnS_>M!7|7$*|>i3J3Eb&Jrd(o07d7
zidYTd<RGx~^Jl!<Fr=2$QON6WG`VTJ>C|cp;8Hj0fX&-$%d#`dI_ycd4SmBtG@VO7
z_jgmB8}?RfL9wa(RJnSc2-|puJ&GKpRzuLa*<(U-0ctszz4q8NV+#R<fKB9L-1bK{
z(XfflRBHB&0KYD(6<dwiT<$o2e}oM-Ga~B_MzX*@=&3IX_L_TaIoP9NcWfl{Z7W#3
zu*c3`mpX^Ng2r$z4V&A<!VjRYAWN#(`2t%tEF_tIGd7lOu59*b#gg?nzur3;HnYFp
zCZfH%&M^)Jxo4|)u%h#7HnH$gxwA*;97C@Afnqw&i@wx+RKR9Fs<%fuEgG;TTJ*)<
z513q=k5W3QBW%GB)ZRz+a-|dYm@`hzkenjoapQ7IWK=*B3`wwo(t>r9oq8Mwm$T?R
zL+41$86-=z(ev2cWcKybC^b6x9UpmMq{kk@DO}8pQkXwTy#l8KvW!y=R`BhI95zf3
z?R?rGQ3`<u!ood=f8W0!o0D0B4xcpJT3xOh5_0fG$$-ztNr!#=jJe@z@F=$o_C9Fm
zi6}O&48a~v$XVL$5TBi6f@E!ht*%{?WLB{0=0{#^Vjz6z*bQ66Zkej`Y-+)z!RE{z
zwl%rh7{En;AAImZ`jH>`5zK!l;r;)={!8C-hzV`!$tRy&1nEx6)$E;dJpT9-65N0D
zo8LrV|Mg!l_x!bA`!(8Zw{imO>8GEjPk!=K^zL`Pi@x`-{1y7-r#?Zy@f#nKV!<ze
z`OBsMNTzHl>vDzMV!O%Z2wNw2(|PLTN@1<A@KtE93!6AC*G1CS3idJT{FJ>Kwxk*C
zjxG4vh0d`NdxR}5?Kvhwtz*9dHmtLb?2($!U&^(v%5}Z33_gcm!**RiKk7?eUrE<t
zLwjEJ1NllnaFxyn*kklzt8y*N%}nX1DK#p)4tu40@KIOjd<fWw6Mb#XNA-Ov(bYc6
zH)L+;qoV)3$`AB5Q5Jn^#a?T5A48{XqLb^8SNam{`Ci7Qm>BA(Nid(gd%44g%78i4
z=N5k$Pc`@;Ol?QPb{q-<E<)H+igHqm(wl*bkx^g#cWJ<KbW*szmGi$E_jfYR>REP$
z2XIpJ_vM)V82Gfo3q61rdT*T7Xcx|P;ni0@Z5E!=L@50Wzt;wQ+r~Sklq$L-Es8)f
ztOaLv(PN)Ehk6BpPkX^x%}3k!4Qs?Md~wWc&c{SKP{lmu;|A0;jSJlPx};t~Qoe2J
zToD@)=nKes_cs9>%iOuZMUEMAE34R=T=n}K9OGenfeF~z5cm5gH^#8!0#_=A1T1>3
zM>01-=iF{`mE++;y|9!kPY(FIdvL4|kz-ws;p0el;0oV|+6k<4$ucMe9`n55DQENE
z?c#CK8sxfhEMlL=u^#Nv?C%I$kgI)P=!uxRW?#TvuUNUWi_Wv!1TWN#I%%o%)M4xS
z;FmgI+Q7Kb@ftRM_D*>8wcW67WKlTE@oYKDzR_d$YuxpTn$CC7`PMl8_jX(ywLj38
zOy?#?*12LiwnwHmII`DqiH)gt*#6{rp3o76em*J%kYVF@tqYxNUt09@gADfjM#W${
zHXk;x_^8NTFTDCwRh^q$i`M=~X$ZAHnvbHObLZ_l<)ijm)UNrcsbQacKQMQGU{V^1
z&JT#(*dEKIHB>gBFW5B-E0ZgAI$!vxh0c$C)MWJuf**)JYIlW?;$881QmO_HJnTSU
zAoe?8f`M`CcwC~kNWt~K1WwDYU3jRIPPXs&aR2eAEl(vVUNuWX!z?%@le7RT+i%&;
zlCi<`3;Z2B>dJu^2|VElG1FR=iuS=Wla=FA7C=e)I&~tYIP@f+QVjAlwH?9A!$-O0
zlN}PEb`pyG=qk65Xm8kb!=OxahplKaOVYr&pGNX$>qdyxRFOjOc>WSQp3RH7q=CTs
z2wMTR<k-?lYzRmv1m#MUJIVabunR{kunh~jHEe!D(%MV$$*9mW9$^E=`T#lZdz~vC
zoamgf@0;A*CJ<zk0Q97K-~ffoH7nb2?XlZ@({w&JotB{U3~XiJ<Wd55$7VJW?NJs2
z<k%A4UF2R-Ojw>(C0e>J*W}pbdDPlZ+oNIYY+`{eDK_bA%J<IL<{<aM`r2Il{_^aC
z;;c4rk2*K(!a-fN#zZPK(hadidp_j{GQJ=EK+?t79I(}s_Ns@_MXXeOvD56;u+MI<
zrSk(d_N8c#=A+j7nqW(^(OK<8<SCsaX<^}`fGtIAL>;!|*dq3Z4VyQs*hsl;`Put|
zz?`s-iV?Hem}vC0A5b6fI_>0om5(z2S*@Sv&VRa(LUHS4H3FDAankt!>HL9Lo)TEk
zN>5wC6HP>6ovGNB8$1MYkZ3X>fk(5Q<A%v3FQRcj)rn>ITVPsGv5-ePJS(uY)A1>{
zK!}fw#n#nCaooJewfpbcPn3gbv9{|<O`iIP>OZiyeB!=~-}TQV^5E~PB2rqMSnHon
zu#0Se!}n9fR_m46DxLl;u!SJgqWua3s<jmuUHgqCYoz5X%VRhjpZ`m4#hM7ieMZ(&
zhHd3zHlM;ZfB1fU65yG~9;eI8OM3LtM`e?N@3qU|CqKyV<DdA1tP4K<sZZ0bTes=O
z7hjYO0;Bed_OOPbmuWAft8Ajzq4j<LP1g>=EbOOV@r<kVeI2%B&&Kl{TS}|g-1o%$
z*Lu=!uCvFhK8_7I{GL5F{QF3*z}Cxh4c{sGT-lfScfFpvzHlA3tNNSxpy-$4z3H@%
z;&04ESFS17upPArTxrD~uf$eQOYT~G{XF=nlRAgZd`{S+TvqNK?KO4xUc-K56Y;wH
z_f_Lk|5-dI=-B4q=IvxnT`I(#=%pkdp1{;5BME@SI6;9C)u5br#g#3St8inTEVW-0
zS}JQQ$WTfOXZD>OJ;E9JtoRXAiPQjXXT~akYvv0U*@Q`HYDZb^sK2$_ZcEPXT_j^J
zYbJ{x1yg~~iwQtNks&y|q*;vieg3;<%2XVyZCLf$IvLk@!Gsvf^>-@~YefKy1fR*(
z6fb;KP-((@Q*DM}a<pA|!)CnI?YPO{aum7BG1}^Kw4ztV<(yk_lBC~X$`!|MOFQB&
zMPI5Jy6u3G%h?v6w((>cN2X(yQ^m8Y*aRg#_D02akM;XC$}vHw;5oN<nITvH8)GvY
zBA08k0m~59<I9Fkxy>o1BYTWGucjBsiGU@gmKELtjha2@a)ch{V6QWFY}H1{ZNT2e
z0uVNFa~rVDxPZ<2Vv}p^OVQq%{Y|wV>0EpVu*|_e6-$BKvKK;8at7n2Yhy>t>}qnB
zJhEh1=Z4MXjB5fm{xlxMCMTC;$Y`4-{my)j9xzR0ejs3ze&1!4*t^J}r#dbtd{lLv
zr(l03XYzh-$NOfp3DbE+A*z)9y42vKYVCYfq}hOvgMSo%y6^*OAxG`k)$LINhbBiH
zub<sVX`B1oAa^_J@BNrGfG!-QRqe-h9NwkbV_Nv69DIHAQ3ZaWVJjvF^Zj&sT(b6r
z|El*by^iCSv}0`GD}2qzsQdd<SFW^|vn>kmA!(fxp?H|~8gv?UjGQ!DCmh%OnPf9r
z1C27C3uhw<_r7JL@n?|eT#+EEY;bKfJ8Y6-;v^9-rJ@3_Ki4^79$DtlwcxT)Q5iqC
z)}E2R$c0I>VXNAnfURg@bbiwbbxXKiHWK&B=WW<{gNldO&31Hb{E^@@W8-9qQ44hQ
zdq^FWOd7zQweAjYdh+`jc1dgnHaQ+G*m8#r0j*TQEnZdbwW5e{k@g`gHZp7pfk<FC
zY*O!t1CN<ducKfiP-_UyjtwU+gbNde&a-a(RnY@{d%z}sVZT?MqwuNfJSjHr=d!U_
zarzF}7<<sUo?1wvZ?TC{YuOYO3zwjL)}Xs_vX2sYfX)XE-dWM=hE3&aRDaPX%w7|)
z7t)#l?8~<%SKe$kxrxqaxfk1W!<OU(iPE~ws4J1R=sIMfa-BqXQWGO955HmKtnmri
z%p<U~&P}c|2F@x6?Q4on(jrg*mfKk-Td5(S{P5&*)xNaUxt)pvHnG=HGqa_Dyw&d_
zaH?0wHo*_L&SxFp-4EdVRwQ_Gdu=)wdmVvIbgrAvb!ymB)H&P40Bp1J)yo(u2>^|!
zU+fV+DnsY|J+TSK$~IB8uNC+KuCpV4phD+@EiZi(*E1>w-)Bbwdxc#2c@hZ2CX<Y@
zQ?pmu0JHWX_)k)~kl8CWA2kObrS`g)cRlJ$E?4X4$Pk<-!8W-6H0;^2jn<cDeHYm<
zcOPZ;sC~_Sl=%UdD@lC~@$H-JzMeM|wj=xiYP4}JhJtH;u5#$2XmC~?^9BHK7IRIB
ztt6i@)=93F&zF7FEcYJaFL@JUll4@NjP|t^^4lXonK8;uNDk91Pb4?gg3VwJmJ-@^
zeqP#qBI!Nu_ql_<|8fqMusLMwKh`JP=pIQtmc`BeXh8df_Ql$`6wgrSHsk%L*p6M|
z9co{-wML_RWpJ8ESp9^_RBUro*AjaK#VzC46DAM8=jTRjJ@$xA=A8kXWACu>Ct}l@
zdI1}eQ+e)8ZmF$D4ciQC9$duSpA)J0KMnd%@aGeK@Pi+ufA|moAr#fg758QgMj35#
z#n)v%_~etXrLX<{zn}h{f9EgId*AzB`ZIs#&(J&G@ecZ;SHIdf=Gejf@DKkm{gwan
zzod7*^PTiJ{>I;+4}bW>vJt>f61ihDBFZ&p<q9@yC-PX1U_1QnI-T#(-xqSDC0}>6
zN0)1`*WMl_LpY^t?RD45)z<yJ&J%*JZjV9dmThg=tbIm1!6w%F(saUJ`@ZDZ4I9zI
z9;;ys?Q3#1Y^Af;Q*x!K^U^4M_Z{|Ae!$n01%=~R{6Ia?*BqO@n_)vcf1)4AYjU-I
z4tvZieMzvHk3#z?Z1t3n3fOiXHY;v@%160eyS{W}kI;GV2Wls`a>7Ts&arkk_L+=!
z!?tFxhV7^?)w=YbJ+{ssqg>}s=L`QC;vEbBNksWXUpnOnPU+liBGM2^OoXb}-S}KS
zCyM~Xm#A?Xe<Zad8qS@}+4+@dalC|(T|!H)ZvOZ&8?>JxYkWd+wk-<va1pQ?u641j
z1*NP#exE0@+|C*Dk`2An#mxCev!i9<pWAT}E<`r!DiFtKn-SQ;d^_58>7I2nY-iTK
zQ*80wSPJ~^5->y|ifzEwt}7<8np((MB%29XjU#=D<rtek8`;ih8*6Xas$knKu}^wj
z_1rRw7uZ;jdzYhQbGe4jL;9ZSDs0gC`DWRE=Iy)g-S#3!`95cA7hODaAzH(>(0OUt
z)Tu>mirwzr%k|hEb+6Xsc+|c>);YgB%TaZ{mp~0?%&*I}1i7Nt0c_xUozF|1cI~^}
zDQr=$Sqk<t7G8)gu}v;l*%YKGSKYjcSY*Mu=v(30N7#G0?>l?6zP6QsG`G7=Rm;}T
zQoQF_=f+JxAP}|0HbZW_pu8!zbw99ixl(5n84FnVQI6Ggj(*M=lw4eFXuS6&V7(68
zDIXPe&Y$xYKOk~sofC>*1KYw!mA=kHS@d&S$hDK(5%&E$w(TiD(A$LCD;MspE7%By
zr;N^kKZ|iGB|lPW?HfCCUfSZ$K323#hhpOsw(N<|Z9x7%`zL0lXy(6et8liaOahJa
zXE&1-Uyoyjof_i;k{UGAg3=Q>U8SIDNm4MFBPp82tDBcO+vfM--=(yTPPX6Nj?HqM
zNw^!`2CB9X8G$FAuyXMynW%x&LQb+AcF(w7C^R-&ylD>`krPC0ZadWY;eJj;)#-^8
z3m5S9%|p@*Xu-;X(@D9unS44|P@WL^5nnF!sq-$QrXk11=uNJU%}!jH@8{ydHF@DF
zmFwY`BTq;VvfS%JK?`yzcI6&TkQ<JlCZz?bxw_oAP^-udixk^Dbe-=(zcC_sIfKVH
zVxypQ(3*(OD+(WTfpQ71<4Ail?6t``wN2U4ihD^6wz^yedqSNY*rU*tj2qR1Em}r9
z)d;z7Ol~IE0sgXK7i_c1Rp-Uh&XaiE2heAW&Xqbw>Z}1<HG71;8aAdSvAJ_i4V&1b
z1jlueqYJL&eQDaEeiq~^S>SA;qso>0nrwED$lR{YUT4gc_}P~EEbpB&<`(>fMw=&_
z76BXU+^|*HW0dQJzBa%Qn9i*)i60PqZ#Kcf<I(JOSNur3*{fkwoy#OoDSe=`!N*V}
z35){*(6wQ4xl*$U#|~_Jtyd8JKqftnxA0M;VJpE$9sXU&DMi#r>D+`|uB|VaTnF@}
zh7Dt&@$}khyPc%S`|tO5x&zqFUbEP%2H3SPW%mP(HiNMh9Mw-v=OR~X?PKgqP0q4N
zuIk&P?>D*bZIO++2g{ZJqD8@V{-8R?3Cvlq2b^k<O$a1wXfVO}ghOBia<vVToR{;c
z(XVaIGKy|4C-oJCqy^j1wo|$BIKK`5O6R6>_v8!pKIkL*zsL^>2?Y21{6XK}=Md=6
znkiL0sfzu?RoS3deLPDtBzJUQkhY^tSj|)+pjrNeb&PiX>Twdp&|RPURC`vy60uc0
z&)y}iJS+a?=>59yr<LdT*{*Ec<EST&?KRmSaW?*~Tetjo@&1m@eqgc*@4{o<h)n)h
zz3P?X<6rZd*U;mSJw~7W#3$t55+FSEQLYuhxVRWG7YBaf#TTS#FjEm(Mz+0sidfQ0
zW~|9Iwg;Wp9(#B%|2^h>?NQ6`ugVpFPd%0^KB=>T)L~z<$t$t1VW3WKS77h4MSE;N
zIH7a9M{K_W+gd+aU|;!tjnAPg`kG-sbuY7t?%DA<HNFc`t80e8_i~fDad(f!vx7ZG
zxz;P*Q-8kRo;vJ)TEuYo?L;T<QNy$1-`D#2!X{SwQoTa1_`(s6tL&2kmL7Yww>3X-
z<fB$>;0RmnTiyLk?>Fg7y&p*ZyR1Dc=`Zcup_`qAb=7B410cSu-b^!vWKnyVINdti
zNMIy>H*zIcySDa<3|<PE&~5~}@U^UBbEvjcc+CA>uWesm>*U*bc9pF5>KXuR*P3P<
z`Lyc_pLXr8TRYtld;j~JW7F%kdIj`(!j{t2H31qnmGh1G;cF!;$Y#8xpC6q^Zt#1+
zR(d%W$0my)91%9GH`S?Ox$@nd4kF*o23EQ2*RjzJb$(U51%F=>wl%p{I$4uq%@5G$
zXcI@=^;cr28`Y$^X+NgV5!<mGwH8S1OY+gElG*@!+_LTm*6i_SexNuf=(T<za{hPN
zsKe%d;2!L8Rp*_3Mr_=Zg`O;><+z1$DN&m|^y8XQRd{>R4Y<qw<Uv>4(YNp1>mdAl
z>7(*fA<Bd}p%5+chR=rX@*ZwV*c9rxR1^5$NjKvboYmm49*ncvicVY6^rD%|9LEt(
z|G6RyJo`zzQMkY}GAj_E$~bjM2{i$-Z=jCgtg%xsqho`88P{sSCMS9<K!uDJX%~)l
z!&X2K(YU~c^^Ly|K5oe{&)8f`;9yTlHu_|q#ne{>en?=GY~-#cz!A1d`;KEPjsIPq
zHFemE`W$YzK=p$Eod{XoNiu*7{HJB-h+M~f8e0Ozhsl)!Hq0NzCQ4n%-E2a5%Gm~H
z<!HC!WQtw0t~2_veP2#}IrbDbBbJ*&LJ2b3rjc&yxV@HUuLPY_TDC8-Ay7Ru?)m}t
zI>TNYwq}o#Z8?WcpM+ChkgH)cxoV)>uq&mV$t~6=NKvjGw(5P!`kLB^>%6v_0I`<B
z0{f^0X^I`#5-7m3>AbG{fqaD@D7xVku`TSe=qUgjhoqLm(AleG@>@XPbl&*j6<b0=
z0G;qr>-M;)r7(lz*64U<J?#^Hl=JFGABDcg_f#L1{G{Drat+v)_6k1`eU$YzU~?Z8
z?J?M^`PZe7QtBV61u|LjI`f}PKVUve_;-m~y#m>sP->r(e!zWHmJNpe?r^=Ybmy?=
zf3Z*c`!FA!al$7X*Dw5OhRw*S8Mc{GPaVWM5OxZ|Hc~1jYNuESr)hfRfq@=>SWl|3
z`3~8}dt1L^4V-j-VC~X3Q8ZN-^g5NfxV)4Nx3ri$AfNAko;+yez^`l!I6uT4EVGqA
zkr#TdS92@ZdYV^%>e@}0WAJ5Sm!aLB%}Bk@Ms8uf$ossC4ZpYS_`ZDv_BCvo8dvyL
zywPOXvTls>$4(?fY~Efq(B!og&~BXRFMH@A`S1Jw`uE9mn6ihz!vT8!_cwp@zbL=o
zG94_iFR;}muf9Fo-rM{f|M%2WPthO!qkoiM``Xvi8{hawdit4X=;I&znD*^MU;548
z{7pG2z>t6CSN|b><>5OS8x)59TAdTEV@s`&@exls)-qm57CN_Qt?8UPdz6zvC$O#Q
zJlcfooYpzi*X(hD&9ECb^t8S&<r96WlqLUrS;4l}mwe6=`qGg-UWNUtevbCJTwVL)
zD!H0Xq)w-Xt(R->2MoJqXwyCVsLzYe`}Wjo0-V(O4Sdvmg^%)nP81Ra0=5%<$^GjI
zA2povQP$r1s8e!{^$hIU)cMbAv7NAq*jI)yUf)#b<p$$Y)Va0uzb|%so!=uCBXbpj
zkix%j{>jVBy1deusr=o7AnZPOIBu(4w%xIu!@qYHfEn7+7waIqV#iIC`}T6LFT}jg
z+|Jj+-HfBbe9WuL^#%gi2?jgDddbJY4&U3HZ3X=$vcx%ighN04eO>_YPBY(^@2}U)
z!LIz=!#K2S&L(9=2$%RI$BdM&K(R@7=|-_B)*?LR{62!MBKz*}QLKuM99wmYfD6Ii
zu<h_J{5&4)6zd@E?K&&AS&!i;5BjLs`1mgPxlOKy?Q*wo*iyj8JMf8|Ydp$T<+zpa
z@%IVXI9M$_{l?K=RF1M97)P&vFc^P4j=u1Op4)ejBkPp!u>;k@h#;NGafHq<UFVwx
zHkPYltI)Y{-?PqB5^OSI5nl8rSFwqxb3XdcI^O`B$W`kdaN7<xkRVsVD)!p2HhbNx
zju$%DXPZrky>8WBMdzSinCmQhVp|&nN4o@jHfEo!W0mX9uSYq)t~xK?m!ytFg}r7t
zj|H~9^evTJl;g55ZMUudMuxrebL3ry1P*rS+^|i09Lo9<<5W3rME0h0!^T*o#(>%D
zevf{y_UbxE#>j<VYhU8un;)31Z)MHcWc%dbOD2oSRj}oST)B<$+cB`%mrCcOX17lY
zK5Gj(Yd;^mzGOaX7kw1lr}!w<d2yX{jet>gyq}tnnwp$hj{Izv{m7H=!vb35Sf+)K
zigMjq-wJ-99{DJezNT{BLFamsO8Qn-oonBk+((%|^?p7nZ3N@yWBlAER3kyI>Ia(6
z*<O#Zv0UK?)_l|k{?mNaU~+}O<lw(iC#5iM`BB!xe~jJ7rF?vJaOdM(+r+lh0#}Wp
z_tU3_;J^J#CNIhI9g?0*5qb_Qu-i@s@Mq@JAKcfh5G?36#w`M^JF6>UbQ`k-w#JQa
z1W5Khk5gmvKo|d;=O!H7HrkVH)HLibx$cQjeazZ-4BG@+9d73dZNMg2oni%nEpD$J
zwyYWK{JYt)*~S2lhYlKy6#5v@!w98HY1n736*4Oac1}tOBqt~~TEu?dX$_$f+4wUG
zaYt;dieU_=@qk6K>4{0rRyJ&U;zAa#JIHNp$8zQL=g_d_5maC^j#_UZSFXn~E7gYt
z;{!GcszI)vL2M`9Hdw?!u1XI>3!A9GF8zA6qu6?)QuHv*u5&ppV%SDIMn21bUeHwN
zid4r!0ki|<&)71E4I2e)Bd|$^afeOjO(Tvw&kdW(RXNw4x(4=W*kq39g^L@u5jwAs
zo3{g74)!WkOVsGK)Fvok)4paWQ5!Z;Pz7wP^Fb(orY1MgKsD_8Y!1FI<SKI$^sT7#
z)J}~p<yw(>y7U7Davc`-I-^!tmH@KRZDp%(5c|?j?N#^x8by`$CB;^bvDrxhmJ2qQ
z+#byjl+H)F&PlKp^8@Hh6@9JQW0C&k<B<D-hK*@>j{IlPIj`Bq&{uRW()_3SD5}9n
zjm=(#hkxM*w59<2D8a@x1k%z+ZQ!E}o9TQ8wgEO#V2`=?Q7QIw+bFQUq?^d|yqEj(
z$!zAnm1pIw^dzzoFbS@W1OSwth%@{3cs@USlC}X9RdRj!tps8~*|V`gAfJ3bU^_#-
zAF4(lLD+~Y*a&NVN9;MY%i3<#`bBC(+U}<TQp^IZ_j&N&5+{(&T`jxurOPDU<9F`m
zS*K=s7Ob&IOu6E@=^9);wi<$XN8gXw?ccR7f8Sw??N>#PWPYFX(X*6xXQt~uX$kb`
z*|wRd^N~?%18_Y6t_$$c%U&i~{&He0>Bi^9#ig7Gc>3wj(q|7F1Y9uq?%lh(UZ~g4
zzhlPwDz?R+(o#;;<nJ4Qom{WOaH{nxn^^t(6*@b@w({(I?OCb+H=du?+ONV!w2F<c
z`Ta|g+fCY!zIzR}wa?M_`@VL?^R8=4C;D+c(a*2KmR7J`<)boP^XajLf3LM)_xm23
zpLPm=lb@w@rR;j`#b>8e&pz?nzJ1ky#%EvQr>}a(@(V|Apr^^ZH8!6bY+t?i*uz4<
z`jYV`RiveZaYCluX@}y#Wp|}|d+}EwX)87E@{?!Q=+7%22(D0)<WZTV@;Or5u_Z0B
zr33?EqM*m=wOy~PJX!u$YuHU`?Vf=Fuvuy0JoCkmf7ZtJZP%nwHG4#GH(q^v&D?b~
z=kUiYCjncrd((0t5iEYK3o758L2yN}Ro@NL?^f_l0-MP>zDrgm=`upGSIANLUNbd0
z%1=>zOn*(z(HP_`Z9%8<Zq@kX$&cp~<XBeaidqWE<W^VYXmuUzy)$^qaqrwR46NOL
zn{n;f@Hgj+hs_n^P^aZd7vt4$9TL02*6Q{Qta!F!)#LS+ovd=ndQ6<E+q3B0uSqkd
zOXGL9okaV->72luuX@1!J-a5#5%#+1E7Ww}+beFCbF&|PSH<aifZXgl%GGKolxp1b
zFcJHGZuVOtE6bd6dkt8vMupug?zpzWy#3ZPv8rco#eUxE6}Vg%eXI3L*%6NRnhcxz
zNaX42b!|S%eHMI_)oJi&n_ggJR&Z0F9eDLkr-mJVq(+^GzSR7HVstqKzY}$yfmJf<
zQgXSL+WMaQq=JBI(@R!16PKI%PXrXmTvq5y!qMN3eW%_p<c8C9PLQL?-TXjyTW|g{
z<#v+AKIkcKC-VEQJ#=28(od6Wuv7Bq-Or2o_UeuLz}zEiY(fxG3rkW9RFej*ENCRb
zw`}djgK7K`PIdEP>|-QTwMuY}e^-$yC-zqgvO^Q7R}j!5E?ilWF<c}tJis4IKsBiy
zX*P33mUzRKBX-`r1vj{53}?)vw2*1TCYh@;KhZgoa)Bc-&2|*AA>fn|U=?h0@pm^l
zj*>x)U|BJW#wJ%O(4CZnI!ORajdjK;oG}J5E6M!`{MjuStQ#p3aHS?!4xo;XO~(=S
z^+n!Kv0<~K5cC3GU*=fHX(q{@2exF`GPTVN*$}A6xU$n9zz(?zcGLN!avc$vHo3B1
zXA9(M@-o`1+l&U$3+xeD;zBD^-5yCcg&H;;3v$!B+iSyS_Bzi2Td8gnL#iHR*F*{u
zTx7+YP3N%J3`!aa$|uEEjB*k6G{h$4-q|+*G{~Y3bDk|zQ^yD?lp3+khK)LV#i<*!
zN7$?M+YnUOsR(QWeaZTY+JyGCW{;}#Tw8E>5V;q{;&QDmJ3nbn0KtO3ruK=9d9#UP
zn-#!vkgMkX8#djblCi|(oGUWeqmR;!87(+Vt?$4On2)NR9}u~Yc3Mg0Izlee*P!!K
z%wDZfugO()uJ01;F<@syo2MCBfO_gix#zXsL5ez0I)Z9pUSO*#Xa1gKz5$zU05l(k
zIUW3G4sunU(n9BYvI=sN_O_wLFR?Lu4SvAo%Fn`Sky4Z&m;F*f--_9eZ3CZtlX662
znsF@WAV=9u%Y*kV!teQRS`&b&EOqHU<K65NgDSPQjh5K%fg1Q6A007Iq{T13@X?QD
zG1?lDWaGZ)eRj@jY~Jhw7r50QvuxDebOVm{&_3B_B__2yBv$1dIMfL=Xa^ndkgQ~D
zu*vL_zmMdih}{xT_`f}{_t;i>%n6iMrO}%1kN{+JE$3KAHu3@+k$+dP)sAmF$SrbK
zk0J9_H-SgFW(uC&?$TopM{*6=hyvfXVGA_@Om1iA=W?>(4}QZp(4YFw@1#HZ9p6EJ
z`cMC9dhKhUY-_W_|NZU1{kQ19_|N`x`nUhwpQAtbXa6ky-5>o?`neB$05weV5f`|<
z+Zr~}dBkQqM|+`09cI`q5irW#<SI$9`@P3B#Aa;cKiF%J&6ANj>{FC0u*v;`y;Z{&
z>~&!iXqQC3PUpG_+<5hO9k2d;jXgTH&K?QaX{9ekdpy;bj<7+lsq+I7+ipc}L&SDM
zu4a#m`Woy9pi}EhrL5Fau)Y*^-uVH;w&n-&O?_1COSX9qxvtrxVXJG{U_Y7|b-m7e
zxz17N)3PSOqV`AE*9=>YI`26DqmQzB1#H1N`u>!B<6dl{^ZjdbrM@qn@KLd!?~vTN
zhRt+-G%gu-Bt+5*wsEDON1fBrxTJH{l&G7Bw0Ofyi9IYRfN&e?rzI5=e9n$IKim2-
z2j~1x7O1kL!ONpqUNfM!BW^Mw(>Fl-jNjW)VdXvbBN?DM8I1?k6anr<=bHz|WnHx6
zNNY;Y)mY(>BZqayv5GPyz{lB69GDHqaRqC4tl1VjicPWW;(AyFG1`&WSr)$heF@;<
z+6LKb$8&R|yfA||x!bO}9M@f7Ye(4)o5+0(N3bb52dhq8Q{co_s+(~%dV`J*AsijH
z49kX1jZ+qV!_XE4lEKz&Vgy#n(t*yKTp`DWTnE9V3$bv_5wtubINOU27BPF&<w_br
z$)Ff0joQZLS{k+}*CAkYtR=|RbiTj_osUiDIoM;5O%{Q6ZP?6Si*eUO=U8}+ZUZeF
zDO=xJ^rePf<QVMHuxno#JGl-Exei@lvcf2)bL&fWE=|X<SDWw}wlV0Of?VhM*bhj*
z9h)CWNA{W*en9OJa>X%w)42rxbLdNR4RV~jzO=6Mg`CX~7&iA&OFuxhVIR<!w4dwu
zZE~$T&#>3({?zQX$+5$B10S`tSM!JKeqeUFjtCAF*MrGz(U<1A*#P=Z^q-|J`&Pti
z{d_?a(fj^R=S!c|{DA2^<v=TO7(~yu?HKv`xRh6q=gFk1riDH8B;ayCBO5zX{~%lN
zKK)c%u~XYS(ak#z1Tio2oeQH&(C;ZlAWyE6^UYiFc59an1*AVD-NmDluqkWpGx-Ep
zuCWoMo4^@+<&CPLV1rD@rG!mjY!>Ohn$8Cdn{7<7jik0wnt)9<2r+SEes{JR!CtK$
z*m6Qu1YqOWDk_7BEt6%QV%$ucq)>D6z^YD46|8LH3ii5?Yt?vw+GY+L;6}|@Y|{;L
zJ;J6NU4#j=6cBg0^Y0U|>8^;$T{i-3BPhFE<yrD<-S8$9L|1H`P4qe^m21Kd%tGg4
z6AfF%?^D3-*rgvs$%Ktl$W@Nk3bxdeLtu~9u)%MT%N6!$I(K`eX6wOT9b3ds4I7~^
zh%5~|zH9bMrWTVcX<*SdjXjwJeMQ@&O;pIyQgsZw>QwZwYOks5OU))kCp9nnir6Er
zGk$AD=Ve?=!5$OZYwJt8Mu>9l>^0Se&Z`U!!5%5<+_0&zY7TORJzBDd^d(A7=cM+W
zL~*)tRp9Ne^ihsIdtWl06CL{~*=#3rxkjBk-AwGq0Xr4w*nL!jkIF|n7yoD2%$}`Z
zCzWM_%~aS#3VxuZW&>1HOAJ8Lj{2x3x90zvk4i!37023X;Rkp@ez^Bk>G_L77kmAU
z)#WjtX|Z(+Fcj0FMB3paAuAb)s!|YHvXj}r>eLbqk`%w@G5(=j13mG`#-CxIHr^-M
zpgG;%XcG9tCvj!YjJX_zzWRj^c^{Rz9B;yG2cM6nw4_8(`@)##_E^IPoNnl8KefcX
z#%Lh@tTakVxb4<XElDur+HBdd)bMPZw|I~eFJ$`nam270b_91LHp5OS&|h}XHeb2G
zX4qG-sXqiZS!C3sc9$#v8|xCL`r+cce9!$}Pg6hq@WYa=|E=HptuDV+xrOm_A-5VR
zXAB$e!Jo6UGy25GKQ7Pz$VWbcb;cyM)Fjw;nAdYX0LJ!;SG+>%zrFT#uan;n7(eWO
z$5fvU8&OOI1(r3rUZL}aT!G(pZu7UGmuRm&wi4{M^!9oKY!)m%)xM_l+}rC3Y*u??
ztuMJ8BesYg*qquVrDJSsa_#zg%6ZifL~MOul654mSLF(OJk^)V32ayOHHz(}9N7eg
zce~O@-OwI;AC-G-oew(sZYy$4CU@u|cQ%nu`6!}wA9amAF0e)aY46fwKcVvlwiUT9
zu%+aFA<F$KozsdQj{HDqPxw9AxI?G=QtzYqb8)#xGId5<T41=>PkQ0bWsQH(cdFhY
z`2U#4lZ(eb^uRgYzI86&vjG0EaOmWK=Ca(Cv|Wp~$k5+kT<q{*Mq?SjA*<Dm#3tU&
zX#VlGo2DGxKf!0mc8?xhjg5%vnucG(v&E1;Z`dn&+O`>(87fXN=y&PLd;jCK2{P%`
zkhL0IxH%Sz9qgaDJ+9ltkxW0&*i7zAo9MrPjm}+?;#nvduiJ8O+x~1h((_NiCS1qV
z@Eu|MKSt*O*X%L1!KWAGnjHVh*kfI`|6{^-?>g5E-Un`<Q{xD(-MG|FI?dgnd^B#6
zQaC;L!i7_HwBLVW5zil)=wrgm@|%igaG#&urjI>6NfzjgjW{isiOkc~CXteHJ{ny^
zX&cL+XA*Au5j@bGaa*j;NXv4Sjkk;f*)<d@wGAc7%(tv>Y`k&1P)`^wM!+_NZ1}94
z)ib#1HOt7dv=!R`Y$aktyHU(=cB5_R^D~s&SLs3+^Ca)Gf^9I~{P`p{k$s0vH{`K7
zCbU<W;AYUi2sXVIuJ4G=vfl@#?3j?0;n-%&;*K;!O{W0kKpejoxZ41m@#b4*+8nSc
zx3`Wva%~yo;CB~nrFxAX<3t_@4I(ObT43Xz87YvY-}3LP6^K=ALL~)kL$F7ojvTVr
z6Hsi~PYE!k3vWCN^$9j_9h+cR``w#8x?GXyuxZ8UD_PAH3LD9i+Psb}YrEN_C$pG6
zX5G9MIa+;;oZTM1udUf*sg6zUkyLK9JQ2Z|tQdXUV8@30s6l9@84C4T0yf?dpW=cI
ze!}Ed%n#&N*MXlQa?WX`pLf{yy6ZATdxRgT#WK>9XTMLtcI2Z5)E97j)k5J>=Otjv
zz*d3H<raO^Ua<;gB3Wi+YJOk}I){z4`WO-00BktfGz1?Nu^C<1pfyi)p{sJ#+6h&Q
zNM}0X2k0cWlRnCHDks2}{xjOEB@MA3df`ry;^Lotex|2iWSPx+DuFq_lh(%&xn-kk
zn&6|fFta5ONL_}?a@CAHO>7{g3lnUE%oVsMfYx0a>DDIEt+Pb0d*Y0qdd(U9#za=M
zT;8?VMlc1P58lr3?4*dTsh@uSMe$924I!OB(0%>UxueDsETi&ehq%Lb96e?*hJXow
zY|eFE`x@7`wX3d*2TqULYv4$~;@PL#`*_G&JDtGh*tyTx92oMF{#=o86R=xyoBX?L
zzgM~4xpPMf{{FxI<af~X&p%H;`?K$rKFtC8*T4St^#1q%EPq=z18ySMh|T5NVYA;~
z+`TLP^#dRH0KM?S^YkD7hyM}1=RNP1Hk)7Ye@qj^n*o36Fa0HY`D2gK*Z+Y(AT*?M
zpCDJ?L=8GUX%i=~x!gWSxn5<D*R@}Z&FnF>n-9MUwi{tLd%Ol)uk%xKv)_AcF$8r#
z-*SDa_UPFEG57)ND>wF0*Z6^2mm8s<tB<-Dx%P6qsZGRq@<Og?|6F|gb$%cdEjI+O
zkm~~5HTJqVRd56BmIz9{k2+jGbC^3Yy|&am0Uk?&dnvJp<0xGhMy{S+VgHYo$8zd=
zO#naUz{enFoAkHiBWi@nkAd-IlJ99e=G!ynSZ}=08+pbBxazmY2ah8d;|9Ftd*vzT
zb~fh=zUJe%n+-WH^x+TO&RB#`Tew3<x!$9=BQJO+ITAF3f3tDbZvz+jR2sI%1s<_g
z!4|P@g<qQln=F_&fwMXTd$<-XxE8KZzUIaIjN(@#j^PNG=;%k_3a~XEbMWqG<q9t=
z*fwVym!rycR5|XN+`N`TR=NN0?EMMUZQE5I2F|tiKIi}MeXaWDJ#~N@B+(6F8X=IZ
z*np+VAdZ3HxGSnm>|h(rh(`^|ZAhpZ88I~mIKg&RCBbEqs=|qZxCyZ_<spQOB#h`?
zHb_E94>eD(@9zEov-es#vt4toz4kfhzfUA%aJAv-{`;)me0$Eh=3aZQxxVS;h@6^b
zf1rW7Vr99G!nZxs-?YSNH&xg;L#A+nU&!*M?b&uA*DN|#xhl30mO9^v&Q-31)GNS`
z0+#CrE+)om1v%!a)GLTA=VaJ}$#J_aa%OCsh0baJQss(rb~-;}te2+q(d0M|jE#8q
zCz0#k22_rl{juY~%b`4Xy)L)gY+QYfl#EBe#dg!MbNvjhoq*VKrSpNVYjSlu#}6sx
z)yMxZ7=(I9?7L|;F5A-Y#|j(z0lbIy`|Wv=YZh$OcRGH6b-tzZJhr+om3}^`ToL=s
zyySz(QSA@$?tG1k7#bfHYab=pvg_yGN1=RGj%=^4Mg`R?D1B)wI!C#2A<lvH&3=G&
zzH5AxV%tdFl2TuztyfUwmRw(A|H(Q}>Q7_sqm*}dCOJyY3c=3USm$b=RKr5Bs?LW>
z=Nr1mW#gl6UKV>)tn3F`-#?aq9|N85bv{VDQ3g=I_U|RI_mV9aow(m~k;bxgkOm3W
z<d)J{m6z{w0_67D^wD`Rl8q{kKI=16R3Ljj@;*~A6#Ggl-1QWg-5+-*oYgzz)6O6?
z51H$VM6CP3eB09{+bi>JGo{5yHGT#PoFZp77ub~*JJTe-J~%G$K-4D6Q@+_Mcl}OQ
zGjU)BYXkuG9S+{_gvWg2IIGDA2{wE-d?v$2%hQ1}8gcd8q`dn>sIl*{rOU~Je4}8a
zzOrSGb*vZQx$6;IHf({g(X%Kv34oso|2xS&^U4?O=X@{4#vJV=*MSGXbgz+vp)+OS
zG2iy+>lI+eEc#D;pZ9q6H;i4e5#0-vW#D-4DA<r=U2S3~{d!As1(TcBQkaSIhgbe#
zaJyg!D-w!2pa8hmbsDr@LE(SL<9C<h`;~WJf}>}`UB6S_eF@~^d&G2}89QzpEe>4C
zmF*elC<c=&bNr*;s9pith!(RJ>?+sG$!x@9+gM*J_85YzS76w8+?PfdL=IvTf{l*%
zIv;{z!}sDKa?Lc!F_W#*`yK0N?6|KDUgz7wU61E%+)BPI*rH(LRbuR0$q$5V*e3G>
z9CY4^TsKmqg8Dg#Jv*I~y-tE{DA<zP<EV0N>J_Lx_I%WiC%Q^s;t3qp`9wY{O8pF$
zE8C+?bctNI>Z5j2k3f9XWY`5;+n4s&I5WBK%qG}JNewE)#uKh)k2Cuy93Q0YeAK|%
z?_4{f##Z@(S^YqRExMX2TkcC#?}gf34GYA!DfVjE02&{)m*a)hsMrkTA2B$Oed7$r
zS*Y`w{pn^De>zKFqE(4p`-8?RgX8?iaZ{8U7W@6J)hpQ1HMXuMK;BO_(CScGu|W1L
zf#^vloylBt2`KPnWwQ4e&)Jol0F<bpD-xD(Pq^JToe1H-0W9rOez1v_mGgaI%WqlQ
z0`#REq}>PA8eoj7xp#K$(YH&0uDyO<!5$p8yz*Qjm*kh;`K#EW|7^LzmsZZ#yXhny
zXYw*77f*V@>Xv)=ZUcm_J=h`ANA~>*zcsKXz+HFU4KI1gOW@@%e<eKU-se)lUne9n
zDF^ESU~PcMAA1ax#<kVC50dF>t2LW2oj2`k*n1mZf6ZR~y^po8Vr%4<%K*HR`yx0f
z?T7l($@bW6xxr@FTEo`fH<X0DXC>DIexMDW`(qEv4NmN9$Na#7bHkB#yY~s$sv}w-
z)j9W&+>c?a?6JYt^#h&j=OaGqXkY1EKfux^dVT=hwL^3MK|c`6YJ)XwYxdfEFX^O(
z{#{|urN{6>U{0RCmEgZ(Yqrqcr5hyWa_^WyUb#X8EL82e+vYFd9;=sIDvB5EYAi;M
z23~>87i3|V3k10!&yIqf%kBE24Lk`F$~|Q`Xo~gE(KCEC+l8ZprJ;c+v|KB=V?)6P
z;#e}sGnR{GXyumOvzD9jF{#Fs7l7!#UMwIlR=s`@tmNx--#tgUm^g=Az3RbTN}d}Q
zW|;i}?s|G?jIcTo>38N}=;<_G`^HTEAuNxs?9sV{Q1qhrPb)8;>_OmuYO%PZv%?+q
zUZKb}>wQCch7gM#yHgiVN1b5vdwpKrsxzYg*dhhDv`PO~r=$ST_S^+Jj%T^axtfI?
zs=fdYaCXnx$j)7gTC?1{5sdi_;xmY#uMx@=1n+O0#-uMSe3V{3!@}RC?E1Mw)*hd&
zPlu}SlLdrgFRkr0P^x=Zwn5I2wV*!C-+OKIVpE^uFBzPJ4&rY@E`Fn2C@gej=U3SC
zK`ica<=0$%V0N9Zve^UgrO@CD&AoUKBfQ)B7_!@UGkXp)0LsdvoJ%p=i3@H<@fAt9
zzz5;_P7*XC{|=JL5kWFKr3OHj6&k5z6jMMeD^GbK4tT9WL7CjTl3->E5k5UrFc|NR
zy!yr)U14J$bJD$WR@2imZB{6mulQ{IZVEhhQtXlePv_&af^vg%y#k}667G8CzGT|B
zz_ctWiQJfGg6PRWgOoy}m9k}@CJC}fm8)j`@~E4iErRjtr&(9R0MVYzicRVjFb_Y7
z+zK|WSCBlmS$N86GA+}p2hB?7c9yGh*B5L-<eDf5r@Z=%O|c8MSc2+WBY^0elH>lC
zBEWerbt2RzN1-W9x?;n0E}5B?&L!|C_J|FmWEitOayw3<GqoRQ%#&PYk_dI4R8BDz
zdOW3OlX@@sd>TNtY<_@}0S~G4rKH^TAXsHZhRJoJ;|GzeVjE1Z!nqy*lsBL0^o0IS
zv&^AnMGZ26T544A`O10x+<VX9-sha{12)&;&bzL$ETYoqG4|~JfWsC-DYVNrBz2)g
z=RtMu`cjNigNIg!00q{uj~8sE@1UGG*`IY9Loj<qc?{;GX2TXi=<zBal~_-a$3h(J
z1>w#2a?NZ5xmls1y!s+n&LVg93NXuD>ubzX=Va7=uh?0~nn_%Au6<8@)U4R~9hJ1E
zN@QE3>#2{**>r9-t8y}ImCnWI@WfuAv8dU1aQz&lui){Ma;-Zb6^mT8o(A2^>J<db
zu-6HFUU{HCNT~dBE<VXtjX4U%#49kER<o=i8YDXsCkt}2Arjex4@T&UBze=706*}U
zQ76FcMJO9DB;*k#FP!*n*1v8X-zY&vVf(TP6xDT-#1kDaYSN+7;_ifdSu;E>c|+Ux
zZ9R^4%KqH%V=%eLU9T%#@O;Y3l-PmtZAY=Yo${E+!WACm-kLPy?>#rzrVih>uD;nh
zE^um>KBd{CyOnwcN`Y}Hg>pT1rJ_Qc-8G!m6D35PaiY}3?L_q%f)xR#^Y;^D6&JW*
z&rYtp74CYEJ*iFsEO`z4`y1Zy2Kdr1{XOts{n!5ueBc*;0lxb${bl%*-}a~W@0RD%
zN(8J&@W>+%!;k#PkH8Q8&=0{gPdx<}`w0PEdDP>s&rYu0dIjPy&@eq0IAYdg$sPr}
z%C)se()nKQUZ=i&>Tv$gEw+YZ-LT2MTkd+bN3z%by;E9p*PFefO?3Lwa12{3*AS|{
z;&rYxidv&WGp*4cE4ik!nk<Rj*7`Zg)p6H*xd!zEEB!opY+kO?SIiHjWi16=LD<u|
z^>b+l@dI;5=W9MHG=8AhmnvTU#t*2EN-effXwFcsu%>hI1BZN6&n7CJd+hq{;rqFa
z4^Q?{p>Y21dc6D2_aEv@J4vu;eY@9rTR$T^o%gVrAIO}bcFbN^<?8DdK&hpm?M$i3
z<6|06LOpgk6t`L1x)eZJ(*Ajw?EWD!`(ii2o!8Iy|6QZDHA<f~%Aa<Ln+5`&F$$oD
z=HUSK2klqw9SVwkgvv%aCqqpe!C7J1oJ#lH{4Cqoo{a|Cy><z3g&<sFG9b5e@z{9a
z-u-rx^9k6L)AS(rUc2bntW*Pgu|1bRl;9ZM%d^Es(O<VrCm+Jr%JCL;x@vEywezZ)
z3_=p@u=0!Lchnva*+k@zIBxgYvdA%-?JjkG%w9i(IzPcC)Y*R~<Z@*{QQ4z!PoSK>
z#X*aY1Ch&`eS%>79kAD8k865?4z|;Ee#`c_W)t!fy;CTFPJ1tv_I9Z&Zn!exiKlMx
zDvVerWc0;;J8#_maWG4JOqW7B!ffGd@Zh6UnY=6Rq5KB!2Q?LFe%F7Qjime(<a+u;
z(_Ut`gJH#AEJH)?2?1<!=hS;IuwS8_@15&|oLg<NDfTWlIad#*(^lkar**JZ_l^M7
zJY3`Qp~1G8vpa<SSzz<O>n;4Vmy7tDAJEG&Y^_fHF-^PSxuVT1bncpSPwuB)J74kH
zLi6tdY_v5x$JLs@{lLfIhyTvsf*a2~1Hbi~ABNYx{*Cb6fAv3wr=EBU&adA=?};o5
zIi~YNI)gR2xc0^Qr`lsW;-e1OgzD^=T$etoT+REas(;bM99SI!=v_aZ<_B&?=dC>+
z^---(;J6>a|8DZU5Pag%OL+K6TtQMM=Gi|d@aZSP-CO<w-}g13pM1NX#KQ~@I`0oS
z-wtqn8{w5N+`?<_KW9j0r&<0koWX8BV83753%vyE;IX~^<1=js9<z9k-_MR8lzJFw
z?1ljw9J}Fa*&t)}NhViHZLShP!fldbn@m-Apj{|pJnbU|b!Jx|FxT`CDb+<LTj~lc
z<f!$m<lYwa5$qee_c3g~U9l<q0v(?U?S`(<X|Z|i#8}|kb1od$7Fe$2%KtvK52*jC
zKmDiSiN_y@pZ@8emg2t=Uh#@o!293-KEiU>-FK6`D{O*Yv8i0MU<-n6lGSb+?9yym
z3dmuwlvn{~qQAgZ=KtM)``^NY4?YM#^xyo~@buG9Q5^u3+1ua#b~ryjr%8bAe&XW#
zK3+x7c1W%w_l3?I>?T(^zt#EB%2mGYROhWtT*V&oJgaA!9hZHo3trRY;}LuHIyda9
zbNN1Nu?<o)vWq?V+HuKr+SB>7#pe5(7Q!8FMXtDy?b4Uj@4yQ7ll_3|Jn3Y3;|H8g
zAoewToSj^=w6`|V+T*F%dOj-4wLP|jat*#FUujplsgKG~(-y5^JJlw7*zg`hYp)&b
zJ)O^o`uQ#Tes8a>A2?aAa&5Io-5z`5X^KB=w<GyqEoRIc51g(th8TN4(uZ^|e{+U;
zwx9^CoD_0@Nsn$B4sD@6Cakn8xH6{Ww$6<+_=j0uzlSGt6+1eooZp=5uU}!S4=Q8K
zP~UIm+1eXq_m|}v%k%If;oq^y!zr%Dw$zBp@dRv@9K#i!&C4UWFOKF*!xrr<#BfCJ
zS+dHT50C1=R?j&vvVRxYG?FCZsXD|OwiUVf!z(#<<d%EaH~Bei`b8@aqObGic1&l*
ze#^7*Ppxo+-Fk^laM=M_`cf!;sg(^J*LihsfQ8Pl+ShV>Z^H(yd9I(kX0HJjen4DG
z$40$9`s=gft!;)|vy(Fym;|#|=-j&kyN3PB_P9Ks-K5ibxJ8{G@B=}hw(YAn(e1nK
zQ^CRZ;Ei2$fDQaQ<Qsa^zrDZV#d`I1L6b09vZ6IBsT2~Y{ZumTZD2KPW<=rBros3i
zeA<#dImD9X&DopE4bGD|WuTRbGa6Mx8NyI=foGZILEEb95pae$-D}XyeWrb?u}7is
zz>Ht8c8}e#rGky<OAK2u9!@%52Z6wu%ZyEI58LtFT(CjPRXYuE6KCS9923)X8#Wuj
z4vtqp$})es{zz%L%nwhdA7wx+S=S>?zOh^=ASe@utYfe&y2;B;<W8$E1`eKC=Dx#5
z?U;=`@uZTMI|qSeVvq`r^Sz_{Fd%G@iEF&F3B^W!E-pU0JvO}1<ZQxp8XO;dqw}QL
zKx;3w*lL~YWUtB<Cxk|FBvJ0|Y$DZJM{18WDewD|P|kGiQJ-b*V<Wl6j?R<I@Pon!
z&jp6Tf;#u!Gr~tdI>Y;Z_TBL06Hma0KlpFpnWvwCd+*%9<&6!TpPdnX(#6e7t4FZ#
z1F84{?JIO|l$+RNZgdXzp{stO);Za0<kdqnm$0b(0G>Cv)k6y(rS>@2exT~-XwMV!
z=z}~<==*_=k79cbi)=%Wjr-Dy|0FK6#t)<<ftT73gatNNU!#$0a`s9e!rn)ro=mQM
z?=1ILdnD|mu6Te7Tdi~TQBqj<GD$)fV$T);Qy;~0M9NMKP%+gS<l=*n7Kr4!Z&!av
zt0-exWxyZZ<9?#E^eqfB@@kJVS-|!UvigSy8~Se014wQG<hKl|vqVsbBRYAa8HLA3
zBfon$KW++c9LK?#V6+(;NX5+p+FEl#1nYxp#aAuceHOPKk2ZzDc|1~s>!WX%;E$gu
z@Bu`>!enl+dF*R^+gHK{P+<$&uGo-%HH50qYz3RP4<Qt6k(WdzeecV)m5T67zW9sa
z(MKPJpZS@0^YJ57Y5m;K{T$rA5B`7Imw!3;xdt2AH$cIL!FJ)W=5}3~!*w{auuPz=
zKKQ{8!UGRHus@e6o^z7gCwt%UoafvNT(_fS)!x`o1hCH^h#FV#Z*om#Qo_r<l3R>R
zosUeJR_PqT#+`$ct4=)WM3%SLbjTi4pU1ql$KeY07+tW^sEwUXRM=JL((bXX)u<R9
zHjllsM}S(c-iJGE?c`7oo3CeJwWgA;y1bfPeP2^7h7I2V$85r3ADvvSU$6NAXA`Gj
z3mu)Cz4m;RVD~y79kzo$s>OB%x%$2WiVd8P>dCd^qvDE>N{#QIb6)kIi@qiw52Lq7
zC%1)<YWmU|w$a&RWv?pNTk!+)Y~vx{uH%d-;}2hdgZ&@>ewA(P|6HO-^d6Qt4h{bH
zH$(2^t(zsb%>NK<3B*Qb4BG+-mom$-C7wp+9Y?`jKi|@z_U6SU9g7)6Sn>VFet)}n
z<Y#9aI``(y3pn4;ejv~D#r^{Vm$IDi+mP2BXNhrk1lxykLwxC%`{S>lpV7<e#!X({
zaZdc$oBgpDG(f|4d^&u2puwM=Ge`PO`Z$Sj4YBNx!*+c6;64r<@m`4ae1H7qe$b5A
zkUMiL%jIrfUee#!u5I@-)H~v&J{t$Yz9YQX&lnrtYqx*?Ysf3Um)*ssV%<{vGdC`2
zaC^SLHx4jSE*N(`-(yG9y>as<VLK=OYoL2Gwll(l*pVBPYah&n^=$t)J}ctD`<-oA
zuJ~bw&xSJJjvM;>a(_Nz8{$aEBR}>v#I}FlXKr4Q9bkJ11Kqol>mD204`N5#Ks}&w
zqt5XI5}yV45j#FJ>3omX<hsB2b~6xG<PAk0eX@!DKK^~NKOWB=QRln89CwUm+@8^M
zPL<AiIo!4Vxj3xEYhwpOY-q5E4Lj4dvoo@OT%m&D#cTU#!Sl2h0@>>x+cP3pJb$;h
zSJX4gaeJ=zcuAb4;})?^WRG}nlr!2o_LpnOiM~GupPS{lCFk(Wejk;2w%<qjaRu-q
zSCl(qyiV9M-3!md>*ICMW^lQ+)|9xh$Ak10*RGwD%usflP2AhTmavf=_c)Ma{pRIF
z{IFybXIrulEM9m`?eQjKJy*W=3tkR~_r{O4XKpaIYYp~0_xC1jXafV=D;C?sd!rw?
zruMqO-)4VZe0H`+mLvKFlIu;@`DV*HzeJtO{*8UV#-e(x^U-Qbpw93k80Drq57d_!
zI~6$J|9gX0CGoSM?^XMxexKM!p`6dj4{%>WnNUz;uTMN5d2BaWA7k2)oDu8x+L_3G
z+P9CitQIp|E_ZX~2PTv2K=+2s_NP87=c04e3qAy%kKF2b@1g6XI(`7#v9Im_K36|L
zK5BG6YT93WTd>WE{4HX`=bF`Cw^95+u6z`3h%J-7E`1dDCB{a+e~9FlcI2a2$E5R#
z`#IVG`=}lH|8w$LTk%oq2S)Qj<UghE1KxDwX5Ul$UfOTl&fo^+jqNdL)<e`e4*Te@
zK3;FrO$Q(;<r3tu!AqoQ8*xknkRQU}is#G5fE)2)N8xQwGJutWx)=yTzHQPOa!h0U
z#O>%S=A9c@5&t_=2yLi<sT7UNtW&g4T5c)#rhwp%2iqH>6{)e|56mqe1RJ;GwYHl`
z!R`4{291PG3r0o@s!`F<$iZ~P4#MwFfz*k4#CaL5D*`%lU<f(PgOeM|F&nmQ*oFqX
zVWVe5xkABCHF_kte#y^*fz_R08>mq6z8&ieOhSP$$j9I;g<)}0Lb&6pD06mWJ}t5=
z*heb_>p9Ys!{+2VFlRs6#HHHAUS}BJqX2@`pqiv;sL6ea4L6c&Y_MTKaEJXo3H1?3
zjfukFUTlI3mMV6%sade8&XdEAdcxwRM5ANaGV|bXBr~<KS1xE89JaZ^CN&|{9)+Ks
zv9V1sHYsH6<Tg2M9JtA(muT(E?>;h3(;l1Z99p@0dmT!a7wY(I|Bn0kK49~Q|Ii=Z
zUw4F${N{&<mmYoS2Y=&V!@vFYUkmrY{FU&g-}9Al-~F$EuX*d+>78{cwGc+pdBGN}
zA9G>tLF{#Q*wkL7uZdjAMgYkE_XkKn&t{K<@Hj1XKA9iz{oH)iid?C0PV5JQ*ZDLT
zKd|Eu*GlKv$#o}n8^jM(J}RY!A87lMx5ugHqjqzp^U1JDt%OPaK(SY{M~Icq@fYH`
zk3u&Dx$5Uh>@h5SR3uua)WufpaTaVqAK@4n+;P1OtbKsBkf@eSCclqhsqi*vU6Ck(
z{~|}+r}qvO|HTh<`A)@}Qe^v62>|TDUF^pjdxP4KH~3w_fk_<?(3_3)rIW(*tXa66
z9HSrYRwO)^0?$FNSFd9VpB+0i8)dd05sHrG*0LV`q-1+-3YviED(LFjCXXa%Bgyr@
zXD9&~)it<lfn2+XO|N0?F)rGpzxEn7Y0sfvd20I-c(U_yVMU;$Q(7j&$riobBp8K7
zevxXY%DyE(J6aGL?-^Tc{@Fq>Y9#*Fx=Gplk3IG{@%Q8H(8u1md4taXt&e^b9)9Q{
zSy9gVz%kB;KJ;NaPcwc=Kl@|uz2~0&x6(Q5xS4#*0Ee*wRC3cvh3xD{+mqAbLgzX6
z!*F_T#~xd3u-2|RZLl4(M~~gNwYGG~9=*M_TMv6>j}5kkJwh$_gV+wp?O1zH=jjNx
z)+Ty=u;+tLv58|kU-eNQ8=qY4(f<xhodYcWz-L0P9vd_mD!D@AKd<1Ug1a~Qq@0&>
zcNp8g>5r*&e#8%4#eXWcLvmGYYkolQ(PE<%5&6azt013PCJNxnV~A=3pwqYA@0x8<
zW-dS<R%SqgIQQ((_-fVkkytqwS=s^OtmR<>|3FV%vUxInTx#Y~b~Cy3-buQgLL`v=
zOs`~Wfa2kHypB>@AU`K(*#)q|$5H4xQZhl))dVXmim~HUD^?XGX7kXCbmo12sWbKf
zKHE%WC4)zzw4mb)_9%+y7f7HsO01=G%QBNB)C<wg%HgJg1w3DaAo^_94xyH#@)l#e
zu8k$V>a*nXEWuH#0COsPY}v3CIi`+W0~9_k)_Ia3U97Nq?9s4sc8{l}QX5pcM)s1T
z{+hQFi*uFE<T8msov6%UI=PNS-NaY|*{fVH)ysQ8?3Lu6)j5dV<oHtgyUdm*lPf#e
zsB($9U^Cj1XpSdIMj_w3V8`RrT;v!#SlOOSUt%2x(|O@Y*7o916J--RY+1U4V$YhD
zr#c7Wpe@)LE8FW5Ta$_4uxX~8$|{RqRp)eSY^cE?*g%gQI<VZBKN=SIG9Tsk`6XTR
z%Ca9Q*}No&IT!ns4#C(<KL_bckn0zY`Y0Qe%CY97)Lw&Pb2brFZpi{+3`l~Z-Ufo#
zx!OSOqpZKUXJhR8Y{f_Ei!(!6g6RD~XzY()7sW@Z&O>VS0Ht3if4=G*f{u>(Sun8G
zyd3?Th-UVoyzJ|@RQ=u}F6RKSeAiy_?fbiIQ@!#)FxlVSNq{DvNmm%eBuXb<CacRu
ziNjO4<wN8^4BH_G2B`o$a<p#)1%+Uif~{D191D?N^7RKT?3lQ~D`tn1wNkP9OxL3R
zj}roTJO-Fj<e(5?8_7>#05nIu{zySP%0|YlZYJkuJH+4_2FkH8?#$0Zc8*0Ual$DK
z^ufFnZ2YV!j2V~<d?XoB!A!#j!k3L1y)q$nk?4IthJi9bDCkN2@FNAjh-aLVGWO5n
z<Vtc$oJ>Hp;QRYQk|n?xARPvpWS{4v2a@al+ME5c7{I!qBB_b6p}#^ofndizKBXPW
zcMx6@dM;ocO;DDoqt54ufn~WD6%qw1#_6%CT(KRKB9I?GA_W9j#%1h*b&kPSE8ZP6
zOT5NLc1YNT@(?)l2W?@OBxt$6ULu_*T2#q8pDEFSt}T9z#wh#aFxZ@>*eAlKjH|?)
z=1~d`Pdnig6`N3dHJxX*S1x>?CLRCCgw+KHDKX0kX_zt<S!KB<df(`BW*LJMHYj~z
z|15D6NN&UaK0DR97DFa%+zzwaCs2QAv5{QF=i>8FQQw@UHUhub5yPG5dpS%O@Gsx@
zo`rvS_~D1)r{DEc@RFC_4|m^lH(bBtIz0E@2oF8JpTK?eCRPMColhQHl70?cv=?b0
zba_5~Z_Hd&dW$;8V)GZ$?_rSliPXo4Tuhd99wL-a1?lH|9Zr+)r>F<ES1=z1G^roA
zwY>(_`NV~qF)$s)53tUQ9{}|mBv;AQ)RiVO1{ubZm1jO`uXDm4gRNpP?88Vt0d<b<
zD^N!KY<;O<D{>7YSF%qj-feve<%<3`^H_{@z7x*=QD_MO{pa2$wmg2>UGT&SkBK>R
zKLX2@CS}kbv9Az7wnv@lL!UCsn3(0d*RfFh@$f!Te?<RAT)-gM2c8hv&1$cseOzOI
z)d~Ge>MQbHf_`XHtoyzYxS#7%|2dTGaaMz@63aod?@Fy1{U&33lzllq>Ni#9dI7Ye
z0p#0fF;>9q$18up|8Cma_=5&KX(9-~vTWPr4N5x9nfT&Se7&SY{C(3&?jYV~%?1^U
zm8u=bB>M@>LF~*{zXZ<8C2nt;=pVta{?dfVN$gS+Puk4?OR0U*O+1ljqb%Ac<JYhw
zCqHJQBDS2Xx)^xhonQ-cyir&L;T@-m*P&o<<tq2y?$7=F*S{V<{osQ{v4ax<lTh>E
z`wS=HFd+`@7nAdHgUztVQf~nFKlR|J;ZvV_5PtF}{|WrFpZv-FJK;`})35#7ufeB2
z`3akBm_?2(=V2fGzv%*t!QvFJ{=Cnl)d=<-Aswns=<(RJy_Fj!NI1FqcI05+s?Kxi
z?}O7hVQqCDN|Nj$ogcJUo%Ho`ZL#ADiw<_OSDENHS`#SWfrJh1)g|!iy^r-J!oJ%r
zvAMpaa*Z8(C40n#VAq#CHf^VVzUBuG$yE~0#wJ7EuxZwJN3OH@0qaYRA0V9{@B@|@
zeZUV~)kn28Q8vyVXJ?P*qxNz$olBg8`~be^p(JfzDLJm=qvoEEBD&mldmPjUHQ3EZ
zHGN6P`;&}OFwq)LwAZ-e2XfC3pzmLiYtLSFWx1y{^Y0~(Z6|WwtRx+3JpgUza0Yuk
z3&ra9HQd@Hz@i2KUnEK3jt5b={01F;T?3#zEE^5aM(`j9N>L?S_Mic&(vHVt7Af6R
z3zvw2`+W);Bp!s*z|`%l;6Vnmq1lJt@lv!aDo3DjGeuoKBC8ZCEc!8W0Gr36`x?YJ
zhIP@dv+RbAKMK3pPT0rmnH*>dbu1s-$K*ILPk&mGBYjLnE)<8+UBfO0u1kKh7HaEZ
zRV+lM5S`qgr5p`gBUjBFK&N*M+Y!00$+5S8CHrk`An1~!g<Ma-`mE)+hAj!UC~}?2
zA@y`lf#IuQZT4>!D^`)y!h?iW+kL;kRcvCfx9+3FKBX^}zE!Z1vnQPg_5(+-(#NmE
zwkF4`+Qh2d6|4IC6Z_6FUw^DG#gly040R2FtJSKRjpjinxb`~2RS{1<bCZHDOyjE`
z?zeXhfHw1pigji#m<SXII)jHE)0_(65si*tB#=^VmSO_sz+5J2=p*mI`8qFbX&1Tt
z6BgHZ|2k|TH`i#|3pU`fLHF7PTiYHIEGWa4&%SK0p6w{MT5k2Ttz+XK59ozr>4)^z
zX(Q~Jf@!VJWS+Q-eerBZ?+wtC`$=*;)^68^`XFjYyaJ-VcW89|J86%r*!V!5!0p@P
z)pd?R;U}JY8vgM={-5DfpZF;JjsN^FRsk5@@VB$G^Zf+CJ#hW{9dPa1b@+yF{KN2<
z|LR|a2Oqp4xeBM*#6oT>*w*|&^=us<(!F=vS5EZ<^!pX<(VyRGCsw_VJ=td13a;wj
zjsIM;iGy;ZLIbheUY@P*2PmVf@dIA2IMM#hWgtqRPds)Bk35AFf1FGpk@#ZLy2<-n
z+ZP*sW2oQ+CwLujJ0>t(-%m8(aczK?J%0<Yx$hjbZe7U?F7l&)+@!Z}4^VD^|M%z<
z&ycLQ@=d3SWC3pP@dIv}XvLuiP6)VuZMzSG3^Hlg;ZBxVLyTn-xYyp}tj4<;4V3Kr
z^EsKSru=~H>OLH4*QCiPK_P8#u~DGA!A9+Knfyo$zQ!)WV1IAJF5d~!f3qCICf7Ee
za>1s7wx4<TyW!KH{xp2&cYY^4_Sj=2w->(fh42GE@HgPzd+&v}z3puzN7NMsDLsdJ
zO2&ze`yc)2N8zI%`xt!u6Q6(wKK20o(l7oZ{PHjV5^T@TNY5X`%>RcUviOnO1}1ah
zHF4GVEP+GZ?%Yot+<o_5@E88VUmz@h@DKh$Vg$g|!qDhcb*|JZrt?q|$>v#CA33>(
z!Vh27D_FA$`9@x|M_m!rwMPJZw#pvm-kMZ!%h;Osg*{4Nx)pmgY)!jOl!Rc%)8x6w
zmTM}|MPCxR9`XZ&1aqNncO2_$*wiMhJvbV?6a9d%&8Y21eUy_cv^J4B@T@-SSU-O@
z*be&FL-wlJTDje-y~a|n;8dNredQE;Rl1#?AGk_CKj_;dPXb-_z2vEYbX4%z6HijY
zmQILpKgAY4;;Q3^l@$Ob<Cz!~Gmmhp8UUeW{_9}M-#f?;y`?SMPQxL+X)M{EcCp}=
zuLPapkU?tDfK0aIvww)rz8x<D^XGyZ7e{+&z-CyY&pbVhZE>%a{e0wjo!!<ikfap}
zTRAywxwkKw)Ri2<k$X4T$gW{sjv18lp<LTzDOh=+Uv$jaYMp~~5=E}r-8*-%uG>VR
zqp0Mn9|$J52HT1~w(W2L+bR3&a*zGz&UtB{E7)?=KTnb4)v<xQRu(yiTIT=<<Qj|3
zv^sa#)0K4IK1=4ng7hVBPvzRDV(ZB@^mTl?j}rTIU);$*cMqHTs7|}C1nBlHcy>N&
z)ka#MZ~$9g!&dpz7E9mvpXQ@9xKQ3f7Vqh7dX#e+%k}`xyYlKU-rt>@E=*(_Eb1Yr
z&Kb3lCy7z>G0Ol}GAcPB7R3(>-?qFDY}FC{Aa;cF`<Ts{mAk(9!I(h;Dv~XahpU~5
z&mX0~O}QSJkzHn>%xXN6y4(UAkB6vzR%|?}j#s15PGC;z<gihD#&*V*#5Y|98+9>|
zS_;|8P43Nd4NRdh*K$kZqG<(TO4ethp6{>`mv^q^3Lx$K^JuC!=LNPwdf3#%CUVIl
zHy&3;(`gWFY7>#cl~tI5WyN|a*i>!<xQ|6}1vmv8ukB)N`rMddJv+J42bb7x6rEFc
zeS7aNHvO1{O6OUw?X$lso#&!+vKiOz?J<izF0g^z8*evjCUrEq@UsnOk3s#k+C-KW
zs8Bw_m)J7Vu4LEVevp0iV;_Zw9{dEf+aQy>`23i?`RNC5f-V{VJr8^g&iAKpwgcR}
zv15PXo{i<^{6KW}49;F5FZ=)if8?OvtG*;F5kdMI$_<kha%+#!_fa92mAUq@XxM6d
zCm%JZsxOf}uJ|Z=7TF&qUwo?U5vmn>3m;YWbM;XjdkowcwXZNY{?bQL{fyQg!TYEh
zTgu)?mHp6>i~3Ks*Mi-zCggD;71j;T{{rg;w6E>&GJ#@q<CU!T$=|cYYaGf)ch-Iz
zv@c{@Y0ysW;61cH4Cv3vhBE-r&@BYeoQ^VPz(<j>Xi8@0w(|0J-u#$K`zQHyTs;%n
zf3%$cv`WLhf4aQTF5p7%C;z?*q0Rz_`dwRbRttB%Uu|r`A;D%V(WKoHNm7Sn-C;e7
z%>|;W_GV>3g*`g%`ou+RHK6FRrBrkNXX$gJ3!GAMV0?C5J(k!P;)WTrzx0d0055y_
z%i-Vpx87dKy;n;?`TF1Uo__&<`)~bC_|$_B!iPTeA(L6I4S};{vlI*7pO5$R8?P!D
z;PYPnYIw;@Ukd;3ANodk-t(Tjni1^fnh&)rcGS6KCs#VB6@RIcd(S40*<(IpkGF~~
zD>e!0RyN`6)!XBtzI0`5y}pF^ZdL{?`r5I+r0pJ?j5EDly_`+%KGQmMYAH0?^$YAG
z=VN|g?qDCCA4s<%SGCuUAE<oPF?&3MZF)BLdJJ2yz2l>FlEUaQy}hpZ{)ODsCJxAz
z>0F0ZdsTZ*4fZwPUvd67*x-uqCB?REFR>D1l6V$Fhv;|MPh|Hu)I3izsPY|1mn89+
zU6z|T;h^An$r2Cfrc{=M<3nD^vQy@v47|*LzmL4nxQ{CYZ~)01namrF-5Ytzal4ck
zg3k2bq$Nm!dCvieBb#|s*<oMG5+yu;l6_pYK+Dnhqh#b8$809NA9i&7P5C=7W!d!h
zjCs$IBbz#q@Xg*JY}v3~$UbAshILC^_?cHf1YmB_tk?pbKc}*f9Gr?(mvG~fpiAS*
z-D4rFymX6}?F&}CHpx-2GWH;H%(N`X%Mq~=cG<^v#ClWYi09+WACC`#+YQ?=&~g{t
zr=>H4EG@?6ezfdtAUz;gKFL+Ena-6@{_?WuJOFdJ@3EW-wwr{F<(hzb&@m`TI?pw>
zO6S{xmE<}W`y{y{C%a)S_DgaVY>ag_d%fv&u5w0fquS%8%5_712ai{|);ixhtYA8y
zM6M)f#5xz9?+DvW*l6jz*Z|7e>s+zpKG}p|yJ&RISlK3$*e7BkY?WNcf_;e229%GM
zvF%jnVz0Z2d8Jk7B-hQj=u3Fd3*ilBKfo)6Xc@m0c0xJkSma9f8`uvhR=n;;>Ppzs
z#0~SsBG$pl6=?;Ey|R5GHk2!3nVgSOIhv2!sgK$eY)<DF&PU-hU3ed*ay6aL)^|2i
zuj6tq+|AVQ$qy(U!bHpGiI<n;DE<CyboR<RN8K^j;-eUAwtnvYKoYsKJr*BD{Ku}J
zQ&BGTmx<--b<WHCSgz<>xi7JgQhz#<eM04<g7^W-9Cv;oulT59uPj&fpZLt1O&MU=
zdnu*W_Y&TFC%&J8Pp+M^&~&+7_1>hv;P&1mJJV$&$agN$F5t$?O*7TXAw6K7h?xgR
z6bPHRXyf^rEYrQ@4?yO^&&+#H{d%C_%e2=y5A-D1u3X~VfwDL7d<>ipvH}R(kw1G&
z9PPp@9htj%7T=E8@ESyOGN&3F^_`Jz=0a(E7~3r4pzU^~z|SOgdPXTKI*YyG`HBst
zLKN>a^KXxWZQf&}WxGW8!7JAA805<y1Us&_;=*WB69DBZ?^MKwB;lKpgT}Kgh24@|
z5gYqc&3vH`^MTuqOB{VY73iI*o#eKW<@?B0jzL?M8)9?xGE*0u^gY3b*DmdRZ(>K<
zW8(=Uwj<U#%Z>Igb?Iy{xuQQYZ1UbRxe4|f8<@`VLw8G5PLbs@r5d~FoU*0VCWeBI
zbZ&B;=--X3yi%QS&Lm*qv87_KNSnae_;|Gmtb?@`IwYcK5p0Sb@39eIk7EU-8A5vu
zf}M0uwQ!0(ZiM@uvEjH%`<nPu!A5dLoo|cWf?&_CFLAwt{r(;wKF4O<6pygK?i=3t
z1@P{F@jm#^{`&vTKCE;@-2dc%`f+&eYhDXK_ygYucieT2GezY%wny~?+?Vtt9LMcj
z&wU@HuZdhS6BU=Oqs%7h=cD!W?Bu$`4#4lw${q)jGufl~s3<xI?Ms1m&Kcbt<y9Rb
zwxB+$!A3r6!@T<w)iV%#oSELp<cebt(K*@#Vc+*h);afuG}S&Tx7ha2N`4?0ABE><
z@dFw>!9L1<AkedC@lk|bR`|}QbNN1^dxwSp90Yq3xd$)Tt@@~)VGCl9+?SZHYp3_#
za&b_iUfTbFb$}o-k3Z65ZK&qJOmtsZJ8Ua-Tu1>&a-(tnj<Ml43f2%vJE9)LEPT8M
zw&OL=WI6vdas4f}37W<L&OqiM(Qd~<QTis&zId=ui|vFWEAj`uZ|8miwmRUm;|JY%
zM5VC?-s;2<oov(JRGzxgbXhK$?rmFu5<K$f>ZBAjK|ME}V+jEMe8oY!1)i8o9c<c8
z6Hd9MA+52c1{<|&5I1{zsUkHWr?K;0AU(P^#pdN295(-~dMy6;oaa0T?!D(;nv7A|
zqOW@Vi6`Lcr=PCu++)Kr#uJY}4!{2EzYahD^FI&&@E`so_?2JzWqA6TXV}+aU9bIr
z1Jx$m(kg&^?!6aY@WL0u3tsR7c)|0Z51;#ap9inmza!rCrC$nfe)CuD|9dlh#aDbK
zyyG43gm=F4o$!{g`YQO+H@%4`nuUUARp)|__7BKCJ00c~xkYX~Y>!^9{@n*F_SmzD
zM&~ps;;^;$XxLI&c~PC;*rVz^H#TE^sq<U``t}GSSL;iS+`PSdY}sM+a#@qRVFOrT
zTk``68oBGW6*~0$lE<zS)rYX<roB8`josU0i>+&q9Y3&!-R|9DYy7|ho5N1nvP({Y
z6?=5p*8Hc(o?C2if{zNJ!sgHS_GrmINBUZJva0M6mi;)mXX{~$J#6mYC;I`tcE?90
znSh}rf*=VFki7`6ymgBJ7bg&C@RI@;9U#6*CoJ9k!vuX8a2Y9bO*OFkT)ip(k1d}}
z5;+J#r9+1mj_UdXDm>=iF4?1mExY!>=#pho1t-8D$)=i>t1~jv8VlVK9%ES>6}FPC
zA5?C>GZFSO$>JUjbkLI|n@2g<b&V_S<7AR@frHB`u`F55q?2VMndKO*19|MZ2(rbd
zZdGd~gn~_<O%<nDIdcq5?&Yyv)^_k%>&{@E&j}`EaL?+oF~vlYQ_(rtD<PTVAf4wd
z`G0CNu47B;Wc8e0E{%>^?%CvQeIt0e75mOr7Aj*4t=wf$sMshOD`?S|?3@r(4$gEQ
zU5yIR=MEM2;0?~*o8>Orl=>OgcO>%-nrGv`fl``EJJUO~4pWyoLuv-hP_O>r!Bjck
z*W2**HH;@;`U<#y?l<*2!LWh62!q)pJ8;(zrFKUK&6JbgK<z<ns?n*FOR4Kn_oe!!
zYN9YXvR>u6RSr;=rK(QlYT#=x@TJ}0+sQew({g>K_$b{6So(pWugI*|7klEnH#WiT
zQ3Pc=%<cshT}^;o{3*z)1=V@izh>|IHE+4}^H9WE`+k*80L%Q>CvIQDy6Jl>xZm3M
z7X9WAfaM40?Y33^$bQW-hUAPQO;J}Hwv0;<lcgWP1`+DBakxf{ImzeqM2u!Dk7OHc
zq-4cG?<xIX?p3`V#1|pwf3axB!tIg?odf5YN*{vAd8adbhyA^|HV6G5wi72h_a%Ll
zL9k_eS7yV8o7$zm&%^}-K#e`9zsi#JO`O(}DXGsA_*oEJl;iRGvw)#`D*%+~6HU~T
zRhxrglMF!M<Hebk{vhwZ=yrp=l>Dkt!Uo!X<)ww(;2`yO0*}KePzKzem@JC11oI_a
z2f}nL$FnSCP#tQUQJct$Pwu}MLnwAJKz*}~0D@ig7Winoca{$&u}8{I7VARnge@|6
zJKJBj<EaLPVbd{b7Fr~E*QtovlnEPA^Qg`tRoHl6&*#2Ee>!`e%pUn(Wc!-Y9<(ot
z9<)EuASjz(MP<c25O&SO4Dw)!e0ZYF>GtF4-g}<|U-Cs?0FONU2+MZFBJP|Bfj;BG
zPkoa9`^^u3kOHqe<J#rSZ0<{%^_|6!h}<P3+}mr>aV7y~P`NsL5Sxk84{@9|n!RKj
zC9=2CzNGI%zBgsqV}Ku6r#48SckM{W&(QQGwHwlT>G!&#M|Ez)bNAhp6r1Rgu*sNH
z{Q%uNMt3j9#^VNFDTQFj2UK#Ej+*#6dF2(@_nz65>RkFE^;3|3Dl#*Fs@PSo(vO4m
zNPM1AeVW*_j!C9m-t$qfFYf~Ten1-#>Pg<mXDdMt8lR8l+FHYcsQ_{rbE<!qF=h$S
zuzi49Q?AG0%}~=mSFKHdXg5)&_H#YrHXlB?Z^q&T`CU{fEKo?w`9B`wtj^2}O_R2c
z?uFWSyvm3;uch77j$mTR7)z$Ar-_)8<1uH5Mn$8%&ooIUyw6Dju*zlcIjfa^gI1(8
z*rLN$C0lAe0+E-`0#BOMqWtc8nW;+L^@5Ei1Zk2>unRWg3I`q|fMm9AHrssw{`29k
zyY7MW^DQSz?I+~07QnCm>aWtZE-x=Zvt~VZy!UT@<RkE7Kl-C|?2rA}k3k5b`Zlz0
zBT4GH?<FsR7ry94`^o7u>KAYPf-i!*@4g3q&wc{nrT4v*?zP)btbWbcyu~Kv^jf&h
zsbo8=O<;?0+cy+Ics=E&ht?)gZWGr^P<okJc=lC?$_1`LN|K{w@a`lD>uk%3OT8Ku
zuwoO2O?2q()${5rJqumm*#IRj2|v8Y7CZJz<HXGGeZ^k!zbiJVdG$kst+m&vas^n*
zRca|{jEHKfpqv%kTsYL#UNzIYSNlV;9rFW<ost55O@J6{KcJcZiY-Q~SK#I9`x5SB
z@>>?({QzKeTZ+BH*4Sg~2cYAlydO||R6pQ(^MmsP=7S`;Ls!XE_Uhznt7x*+AyVw8
z=-jt=d=%9}5W3>jB<4-tCf0N=t2w&%>an*v@A!U?{Ze$UbZ}nh>igGpuKrW8_546?
zu;DZHYAy6^LbojIUj5j?`@XAeiy8oa)=fVI$(ioK+_883cUTPo9_0BY6aHb_ngFfS
zqd_}l;!~yp(_C}gCw+Oy(&4Pxmm_n}YmqxOs_e2i?Re#8nz=BX9WR+EgK_>B-g4eA
z9P73(SP<;IhE1}Ql=F&aa&%Vw09FeuX!{=Tu(<-Z6|Aist9|6@n~!7b$=UYN$z|r{
zqrjckRyYM~Bga*&UXC+!ea97StsK+LTv=DfX8Xdq4w_9Ta>G6{*Yyk1AvvA6PfjWp
z{`k}62$UrVYuIex*(YZ54OhT6b74)80fa6GUBg!QEp87wSf37KUD&`?v8H;dAS7S+
zfr|mgq11usVLi3BLf1zfz=k$B3@biL`gu43+Y+nzPbb&UgdA6WRL7sLV-vY4Hhjth
zJ}Sxa!D=hu3;wu24UQwQdKMad1KfG1)&QvATfOCXgjKVTo0l-gelGVPK94_rgIDIz
zah%~;CYo;VjWa-4&bW#KH!N7X-Cl<WA7wk2SP$8OWj+80mo$K46G(DhmN8WGk9JQv
zmv06oy5ctDr0$$gn<ikT8XJI43OQ`;y+afH0S+?TRF%U<nV-3T?-rY71x1U)uiv|A
zU&t-jK`MXiEI}!~9=%ue-hnZ<*lYm0f<3bkN`SA24O*Q`d+xMDk(-_G<qGxnk72WG
zdu*ZH>r{K>Nr%p}xfv40?w@-N8@TgpY`1QY{CDXTc7Jz%i%sTNs%_OCBNtZv^h1xp
zM?UoH@F%|I>-hM+KYhzv-U2`QlRrtBqL&vJ@b~}z--qw|uJ4kfyOUiT>jK<y$6fFT
z-uVaN_kG<v;lBG`4xjtl&xac~Zt#SKU{ia|SF}ev=7>$8t4}NT80CLf?a}$D)*b<F
z%|~S@_E`C-tJ-4#7uc`;fKCKyKleVW)p@}t6ox%)P~%_NV~Y)zegH4`3?}AN4S*dy
z@)WP!f#AfJlIXNIMbGWDQ9<Wi^kqItk|xA~DlU}K`8LAYCc>*;w1wB+e{S|pJ`Mlw
zasJCg1(^)8EKiVU3&`X96!i<LAtd}kW!w<pb{#@k@LwmJuweIo+<M3L^Sv%MHUXmn
ze+`23dnVW%uu-hZ?`n8a{+-3>$&YBejCVDtW7)3F`R%<yjtL%HE(v#<$r(D>8AL4D
zpwyrW9=l={?4iZ3*mAZBJujCv>?SwC=H*7uE_TcBfdn@%F5wfO_yoM|t#5@-fBHcR
zrd_{&9p3b&H^Cd<_yzEN-}l$)=rdwC;CpC|f}i@SpMt;ngFgrlJ^V2I?9cuzW%^(2
z-v#&FbMJmq;ZAtbKG=`h{`c(P0l5FX=RJS_@7?shgm&=Km)^ghc(?}lzwACL@=Gh!
z_TM3|{=Cnn0I+8K<8{5<Rn98cp4?Qf_S`+2@a>|rAkTOed#uivW4bzT?9meD4q?9q
zomcI8eE@qlk8L4W*Ox-4uN}p<Vy_3Wt+mHkzf0ES+F+x;<ofX~_a$koY~p|)IEYQK
zFZ%frdjxrwE6KHkz4D)Q(a84}98(V){0{mkXMff%&!axd_w$|)I|bXCy<XWK6`Qs@
zd(<Rhuea9s$BtZddvrf`xTHyljZwM*lrhLvx6TRxf+m0QCoB$9CYYEX5;TK_o&Y>w
zsC+}xIgF)bP1IxVESVN12pq`KgE?|uqLG_@3FP{HY1hIXRk0T_HiqYpkDTGF=Z1ze
z6sllQaV`ri&Ar=p8b};y&uiD$qN21@mcFcE^ZRZ4Dz;fV@yfI1&a;H}etTR4b!zvu
z6AE@JG@RG5#UpZ!9l3a$XrIl?5upr13*oVKp98M0^HXf1*RD3vJ3lc1yZ)`}yuJ3q
zCWgLE9Fn`$Wq<%YLBqb*K9^Wx=ibUi-1hT@O|*VsxSEZ$#fKo4;#bUZTsYb^BmGpl
zovL$tc{lbr4(mRO`uPEDv>(>7^!;b8^DFhWLq1CUsmkUQdpy*>=A#bpH}8gAmJU|;
zqlo~%ExnuQohp$pXx>Zub+2In_wp6wa;@^B6;<7~AMNc{KH~Y`;NAxVW$eyuSGf#+
z1L(>e)=0*5=OovO%+YR|2_@)6r%Oc35BgGb{VGTXB`B{-%WhDZzz576Hg|9N|FRU=
zWAn>;uur>vy}koaHmB$F+JRh-4#@&mJSuY&3c%U^6zIz=2Yn937PRIDh+Nf*vtpMl
z^dKJ&dhg8GqhR;#id7$m<<2`9%B$88lWWr)b+BOZ0$bpV<y^3X(}T*@p3T`rY-~bp
z1_WCMmu(OA=H(hhCqW-<fh`+04Y2y`#TFaYp<wf@+AEuZVh-}K;8(F#D-~LMbl5<!
zn?0#bsJ-UWSJV&Ellpu0?AhcN=z&5ias!VobH?KHpZ8pN?2&t+-SB?*-g7q<0Djf0
zUS(NRs$aYo(nR2YpZLVb_Q9r`^r3mSnf8IAfhG`DcU=5-=?8+FB+!0tIuCyGq}VHM
zk>%!opuU&Ipm{ZzvkCPnxo?l=C!lUGSC_t&m)KP2N$pYlLe_J2{Rh~~$LvvboTT4*
zKajjX)V`E!orCuS#R<~thumQ29sbbO!v`q++~h2B<W&u9uPwI9_v;s81`9lB{U#E-
zIXKlZSl_K{0&u^cMJI#Usw|GRW3${0SFQwIMIqm=ilaP_OooJF|6Xra5V*t@fa^j)
zwPoiIC?UmWg>K*Af4zyWKwm{gC`yZ=-x!u13hbZB4n^RWNi7OdU0FNE9&n$WA&*li
zgI%+{HS3ljNo^s$w*+Q&Kg<2wcEi@RTSBB<`ye)XR>BrtW~$02ly|=t;?&I5F1D1q
z*nJYr3?(?E*qGjJpuqn$$*KpD8(*K-%_SF1RDC}1z;DC<_z(U81?Umm&6^i=XAJn?
z_p<xp4}9I%!SDUOzjq(#e<{4;6|WH2R=$UV?^H6b>}|%e?#6bja&>aA<f=NCXQM1}
z30{)i{C7dt6<Fb@J<jru@H$_$*H|b<#x{GtvBxo#Y-H7`-rulgm#y5f3B%^(=54}?
zsjkU&rLVP_)X_aV*>8;9zEt%!wMV@-bovs~4PVg@jPBXI+`LW~a$WHQZ7qdLt{p#c
z6>P1KGM%ejQ=#MW^$^q^*K}UltHbWGf!eFuV{Ul&6}!`!>S;RQqYS%S#n8j1*zvwz
z?p0sv*yCEezxS#iIK>`CPN8EHZJmcx{D8+kb@~cjCxrUjsu?VppS;4h@S-6&$1VRP
zSvsl#DP5{SgRGpZrCykEiG12LaExq_75DPKeTTtkx%0&|S6txAS&bR+LHXhL4?Apm
zNwD&iV>_)NKt9g>@1yZTPlOvYXR#fR$AKpDPS1iJapC#O13eIDb=gPGNad)WX3lmV
zjBi_c%)#+%k0gwnQm;U>c9D~s9G74ttdN*PegA(qji+4e6DYR9VT~l4N%uWZxnRfp
zG1j_XfnuZmoyc|M^}iRwtFN^aSf?y!mgA0&BW&_4hz)sklfyPD-?nhFV*6zKiftym
zBv&uT?PxsajE%WLNsfuR!f~`s*g^IMD|QLIH~vdDvHz+V6x(hRoo^gg#%@@N^M7<T
zDxzV*<y(jwk1zXmy#kf%g_mn6%Xmgy?ia9LfymWt;*zKuw0;3$3(Tuu<Q6OYRBV&u
z(Z}my+okAS?NzZAet71t50UF_pd82ZVvji|$E#ns>XX?kl=>NsJzgkxz1Gi=zJvGQ
zsoVy|KJoIY%~)~Q8#cw-@dJ!iv6UJCh7C&J*-*WLL|NLZbL%^TO?8gEwS%vxv0<I>
zTwn5X-E0fC$@aw$Wc35ux3peCW*Z<MrL{nuk4nW4jFpe#zC<-CCg#=0l{V;)^jQoG
z4aSR)n!7%VdG)C;IUjX%#Sc)w&q?YPFgEU6JHs~lzO;4rs+|9`)F&YSIat5<K59x@
z1EBT;5Q~o058M=cR3CLI{M*`>Zi>(H{oLE@<lb9IiPFB8CMn{G?UTIZX%$4^rH4rd
z!Tudv{w@K7&u+M73;eK5qH%d6XZ1D;XZ4O(0G@5RCJ-*mMZRt3t{2|@$nE&UPB^PK
zQm_<lACo(=9akzLH$D2(P2{l()u0eQZR7%<^&KmG+tja-H-CRWJXf*d!o^9Kn{Ig$
zX-8b(iS8XLYy$;*3pN?ZT}nURlED!#w6<g4LZ68Jc(aLg-^pW36D2!r<ekab<~_DR
zywcc@h`WBveDH*Aa<vq8%$bhZPze*t75TPxMdsxs?{}8#<gh1`YvB4DdwpO#`BSO$
zL|pWHnIZO>YAGao)<NoJ5KlSEZ3Low$s*V2ux+<oQ^j<yauxqb=R>P=<yaS+K%Gnb
zAl&slF5((L#PL6|O&IS!>0CJfceqr0uCUQE-i^nWNN%QclPhB*9`neb3RDwdZwzO|
zTh4Meo5-x=LFATZ(Rpxkr6uoduV@pq)KZ`&@e^~`Gj_&?$I!JA`^^6BOgPqe!d<_K
z95f(~f3a86In~c#n=rW!v0y`;2hab`I;Z!!^rfNcOXTZ^O_|8vZ=d|+C*Z&MFaAsT
z(I5RW+W&pO@Atz;Kl%WC|M&k5dT$}k1Fa~NZ-{sO|Na?#*Pr=T_>2G1e+d7<xBfBs
z`S-sEuHy<Ws_nraX!vYVbng8C+Dvx++;r~bic9zLSr9vM(aX|pvd4j!iL<>jrJd>=
zuN_3LtaIs0;s?$}uHFx1u?f5`Vo%}+A`~Ar(^!M$ihX?Em6`yx&Xrf6?GXf<VK*No
zegI0n0>l=ipVRw2@<$}ur}zQ#&mz~2)`7r}QMFg`QKs`rd=$ww5Vq|7XOboFitX}p
zi7j(Y0P0K5M`>T9@g?b;$3YlI*$z^;d*XUT=cCjFm@cg*0QaSdmeb>se69h&{&Xa{
z?kKqd>j`Y)K-a={y!Jr%-qGa5^)s15MEjrFW;7T<Z#4-R;7WGHpcIJOPUEDBYs=y9
z91!8j3vtC|V(PXJ{%8A_0>D`(+jyb`Hx0U3LPjV)T{oLJ0I-;aCgEs%l5>5#t<(TF
z@gTbPT;SQ=TibQsC^hXBwh$_8(cK$v1)G01m#7jNY<%kya0Ur(w(XYu5JH7b<)#6q
z7rpq!@cb9Nfc@~k&wuJupMpmpd6*_?=Tx$3@my^Cr~mXPiTa0D(#pi|OJ4dC_@XcV
z68Q43_;PsXJN^KC{_9^)8UGlEL0X}U%L^L+<F^#{#odm-*{GPhjNPdysk~>BfA$r*
z^yC`apz>98o=e7da&lehG}o)wR&@@riY+zwR+~_43wu?a1C)E?zPq>Ac@JA?<Q5NM
zTfv@Mxn)htU1IZn$r8{y_PD?Xbzcj|<l45kI(L0#%@6oQAy2nu*m6nQ_)PmK!{#TV
z9Cq+>YjqB=@B;_s3a8tv$Cf(Sx_wQ~RavD5TXyX#ceU+9*beyt@N&(0Vb1_7_PB=4
z`H6Hy=Ur?ao%?=H(5m1+k009YGqM7}2Qa+j^GicKCz0LMda}%1<P3iKgKja_a}LC#
zx&JrKG7IAP9n~?=aB=3WmLc*LiJ}68ssR&ZX3ZuIVquzv%LCn%*Z_I9O3&Y)8kr9}
z2ETj<<XXyE%~>jCUj`$>|Bl!r2GwX}$4k~oxP#0f*{TIrJ!jP-=O`bWkYG3j(0T+p
zWiukhPInT+U@psjXAu5V;+VDBDON_5K!D0M$|?ut86IPuscl&nDcQ4AGL2097`D8`
zW-ph__vY(M)?VPC8f7)5Vgsb*nKN#pn<>NdjV21^D!jK~SVQF$L7oNEZwy=14pguz
z_9&eRPsNO%(rIvDQFtG-mxIG*4t7?@pv!+bOH1WK=VuU#kYF}JTz*+*6y;g6*qCCY
z=SadEtk=upR04>-7P)!3DmIksU~(b^WS^8ZHL+7+>~Zm|DQQJ?c~<>64@IszBh7N>
z%&@H3AeR+6SzUqJqv$*od*xL|T0DnOXzj5)Ydu45{Ln<^%XD8s`bSUan!S-k?!nvh
zTn|24x!UR@#Xgt5L;W!oA4QpR+Rv#kpkAc!dLI?o4^Y3Jy}in8eBdQ|Dp!7%2-)@X
zC~_j-9Lh=p(rKty4tRUT--oUr2=-DO6r1*?=vGvO;xD6o+-Bhk$e_MF8@Ad<mHq7R
zt(nXu$3iC;Tv1T<pX!tNB^o&Mz<gBci$n#66Uy#IwDw-|gW+;;sNP#;H4LvPsb9Of
zx$^C`iHj&%vM3LJX;RR-NGDq#(4nMd^xD`V+lb5tXl{H$4#$qwKGn!Sm%s{Nk2R**
zqs#@)ob&~pV)ojU_Zy#N*EVbdC0hfnQ31}24f0$nB)MwVtaHVx)|8<-+;;T3<>Bb)
zsM*Msa1<Q<LsHKEx&>R=6KwXJl6C7oU{#-4L?okV`d8b7$1Qqc%8exd<{~$r%^aYh
z31Slg%$F58K{>yeNa?dG*C=@La$~jjgYP9W<;y28=*m}Ql|^Nb9H5%a=H#AP_}`;R
zOHL@Z9g46TCA%$vGxp@#v%~J><xdR`x7$=V_G$%i<4PzxaJJ9)upTRNExyuO1^tIU
zIM}#>kH7#ZQbyc)=bf~Vv=MjQaUEX%^84ZLyYHgk=-Wa*rf%GL8lHJ3?<Wo(*zfP)
z$tNC%%Nx%S70ftd^1^J-7Omfd1PWYVlR6S!=h{!Gzq`KXJ%7lP2q93tE$^euUW}+e
zIRk8cl==y_XT=(-&ZE#nIi>Lf*4fHnYJuIk5GamH{=;P(QRw+h=ek-*#!n&~v!u}Y
zpsMdJeH7@JLygBCN9zIvv;T5EwYMS%@YeuGFQi9=P<2kt47RQmobBc8x=og`G`Q<4
z&5IcjfWMc+S^L&{%efrCeoVQC{>74akL<1&0^D|6aNlWW8^9AuSg>N$RYR%Hu)K8K
z%6L3cDda*&Ovyw0^ORdzSLo_D%H%k$@wmCi3oSh68rZhPk;D_u#F0+l%ym}nL<u=*
z9otlMR(ovP&fj7kzHMNB_|aw2rVe+#=U7iu&0Wt$y+@PloEx5U#J=6qHI*m-b+3CJ
zW$wS{!A}v5&xbzrA$Z{nU&zTnG-f!He<OV4BOih9`@a7i9(?dY!h>{fD8pC2;uY|g
zuX!uH^{d|k?|8>MXpFBb4aut}PTtsT3XgfUN<rj03a|d`V*y_0A~!Erl*59%9w!?y
zVKFuw>#`aoX;$u<T%`^~a5^VmeYrQJbWrCW`^Cgb1KYUHv92`%===^g&t31aujyPf
ztySk6k!wmTy!st%8R~ik{LP)reiwZyFx9Q+u2*d2(^FGFLuvw$+|&=iN-YKLOL9KR
zRXG1+&ksmHj@}P6*sPyBx%pZO_#fFs#}6nrmHU-^6n;B7UVYPfr=Nq@xngtJX(hh|
zmaSgFRB9>Urfdy8xpw=S?@Qn^*n2u}>~R)ss&l&jRBBjYa%S>%AY2UE67y22uQ9j0
z`dUlD`2n>@eCDd&OQUneHZ*<7*HW0gAIMTitHDOJWJi4en$Gc^vW;UInb@a8uyN+I
z87ovZ0Ls8MSs<A*{1a!Z-En>fcUldAy7OsZPJ@PXV?=GcE-$&b;LM0aeA`JJD8zNX
z_a0}p@o5YHyB)va)nDh?Z?W{S9pa+*oYmU-!0oR+n_<Cw<$MxX{V}XrurBtSd$-tD
zu_~`V2I^v{c=l-sH=V!@-s-r;?&O$H(D_1+L*cHk<T{;ROMyNfPLb;su`RGhN=Ym2
z=y<$+>a$FBEd|9E1Z&p@OpZ8!ogo~-vakv5OYOd4lUfVY;aUo9jf#U<oBdn$1DJjn
z$v(L+d7k|uN4Rn=g{%01<36gz*7He?9N`MJ6y{sd`Klk7Dd=bW&%%GUSc@Nsg=*?5
z_SyP+96;>vap(1Od#N9LFZltlO*-l%<o?<>FDH2F=}Y1W1_^IyI|UVP!;g2|mg5Hw
zj#)<dcn+U>EJ5^PBgyKni+NjgZyEQ3ww))MefY-0brLyB381HvgZDnx9>4~D9$R+7
z=L(w(ss{gTK6dM_Z}cr`*~aY>a&qn2O(-11rq}m$MLoGEhqq~m=H5MQEq8r&Z^d?^
zT<i8Fwp#8^uE(%dfz(rUzO=_xxgW#UZmnFK?Ie3_Z02g%4%>ucYeS_fSKRR9<~M%*
z-@w<t^@~9#05HRUyFG)qzU{5>5C6eGu=6p~6SF&i{sX@R|L7<F3B2!T-vjS{*FTqA
z>!fRdyY9M+VEm{5+4sZ$@lXD7_~fT=vR}?cZVP*b;s+G_E%kFa#a<8C#EKtS#kP>^
z)v=xI2TsuWVSD9=S;uw-AJu8cZ2PA#FdzW%$;Y_{z#v7PgV;tnS)NU5&a^cFj1o%T
z?^+W;4W`g9COJ01wf+13`gw$xzhDcmx$hh-@gZvR37AgtnkC6X#tst4Rw#P@V^7_n
zaR()c1y0D&|8D0k%S4L$4GMzn$8UFC+sbO%U^YWz<xuEx%X>9iXN+zP$9j^^s^6I|
zXhWm8SZG)1QlSK%wH;(%&#ySGV_e4;YU~!s6PxK`gA#!4Ve4Y|_dXR{+b)4T4M=If
z#);gAAAT7A+;@BjeEj1dho5`@`#_WK-u&h_!~gUXKSBKqCwL!v=pp#EU;8!6{Quj3
z`)}_jbf1CW`mNuBm%QX9@ak8;8ounyz6{>_*0;fZ_umh1e8cOdU@xzzwsE~|YuJ;>
z!8>4&eIZvUfxn6_)H&~k&O@jsCKo*Ahp;vF*s}?by(FHc8rumvf4276lbf}xoV`u-
zuz7p!$gRb$ed$ztG@Dq#e#{Rnuphv-kn5@Tc#D3(+N1wy>0nd2Ha0OI(fO@lTkT67
zdp+c%df2*s?JC$#=t}?{UVXJ^=Lf=x*n0MQ%qFh%UUGe{^-)2t^BC0tV7e=sL<w~r
zfU9oR3V?!v`DL>Va5(d~1WA${j2UG`2n?~_gQmTV1$D-nC?YURRXD6?SELpPNy>Ys
z?Z$)Fv}-VFcKgOHhUdp}{vespwxR)-KxbFsyeam(hOI4PJ2m&7n&OtJ!9I7Mjj~uJ
z5N1V0V(G-=P-XzLQ+|u3V6XREtZQ=h*eEF*<tEol{`?qa8BOK_T`-hF9I?jgv9HNB
zUs2~;G_;Fth_=K>+pQ3XVACR%r($c{uWFCSo-O(IJyxv1J`UWQ2>Xi8*X$Mh>Cmx9
z#YXL&zLvDF;J(^~_NAflq>Zw&WX`-abE$Lw(4wWALAdBMbnTJ%uWl3birlR)(e+Ca
z8+GiabMpgBY(2U5`pPjsaGH+_ja=iRFBvc25p1gSxe2z<jZbRjJ{|E<MXt)-ID@V#
zsIY-h?4aeY=zMkG>HHA3+9rhKlH}OPU0#efkf`2U{3h~yP`$UB_P|sj`@8M$$CM|m
znk?^4xNSE-e$eO~k>1H~oT<j|SoFFa!r^1<QGx`>EQ43Gr@`dQ?X1rfToB3Koi$gk
z@8he1_RGWpUym<BE0or-HSLz6zJe{=J&H_{d-m+H1s{7WS=CvwRp;XGOxL4ht<YQ>
zq(;C3TPW?b$SvePHXFbidX*jPu!jv6$Me-Zc9kP^?_HkT7E3_UX#nO5_t^A)p_S`_
zYiE(O-&9ZK{{DPfX#&E+-pW<)oxR+${jb?8)S1oR(?r?#HqqK+7aLuh^R1OXzV1u4
zJwo?<zOMEU`<`;xW+&%Xt_i>-<TrfxUtV6oPACTT0_W%F`#;X%-sjv4&wI{u;Ds-E
z0o-xN9rPZ+%u;%H?YF0%dXh4&9(nW;c<`a8_HCG5xwW3z%C)_JkpDG%&b3bnu3xG>
z*FFkrdtE$xvBy;()%XFuhWe=7^bgYklz!B=XV=f6=&kZm9sgPEvC(-x;-lQeVT7`#
zX1%Y~_88zqd(>x>zQjQvFdrG9d_&3t3wy501~U7Q?Am?5gsl2yIr6pTs8HKdnXt(9
z$F?5cw3qi`y>XBvH+U@eaNBOJytH3Z;z}r-)}FIkv+;4GZ;n*+apPuV=ecAn<7TT|
zUAqscXuIz3d^V`Nw+0AjmmLZ%w&b|LLkVP6eB0Tre(zvg!=6Fo8nMD|*ko)yNWxBw
z&9d#iTpc$3W+qBs{Dz(<O6Umk{XYxs=qOpd`1=!2JV6rz4?OSy{HuTUuS_n;@&EN-
z|MfHh@b<UA-QJbsSVB=1ww#3m)n(bH!na+?t%H4<>x|%2<*LC=$^e#NTP0V)=Ckix
zY)au#VRO$mN%B%<696aa-0ZQ3EpYa{$F`7buP-$^H+uzG+UpUy?({pfxi_t7hdP7Z
z+V%T9rKQeuK8oG<bLjYiLvmGYihWqYW;W6D1B%W0f!y;0jlJR)uOQbRHs!AO_IgX$
z4%kH7*ED!uVH5jnv4MV%_w3R6C^~k<M=@36xZamKa`o845kIiz`!%Lx{<Viq?Db$j
zU(<QV_s5QpVqZ=_vG0X4o?MQ4Put>JgAPRe$DiKHGB(lq?}1+?=JZFr>hx66%GJi)
z$}%e=?Fb&Z5t$d7jTSkt$p|;X3$6U`W8nhF0irHfDLmz6Sp~k7Fk=8eZfR+aa8}QW
zIn=csgM!>)B6Bs)!edUHz#|zAu6)3D<lnrQXW>*A{&&SHoYi<QdYL)ia(ulZ$1wh@
z{P0w@9tv;y=(y`avG4cEiN?aW&HUOU{YTi8b6v5`$`2oT>5O2*dni{u$%*8;W4Uf>
zKJ9Vq<Qn+JOxSljlUq_O5h{Ld!Y1_#JT}GZv0u)mh|tc-)v(!q(fPLGDNiC-<|WS#
zTjBgyUh<iOgeq67UqD>8Gjjx^j`!`ChOJ<~oaJRSAm{(g^$P~!SQj~>y)wu8EOH$h
z`{Y^*m&Q}x@apfMjX2e3;ej3oS$Q*)%(PwsIU0}6>~%0Xn_ThPMCa6(WJ!`@)1`)^
z^(E$qWu0p+g~0aebgptGJyf+6W|1pnvE@{x^Qp!*vm6myaNPA=3k1lXsXhVf+~k~X
zpr~?0Y}xuf(6cEv*7;EEQ?Sj`B=$HE_T4l&KcLv0T%}HlV!xFAt#H?49TSx+#umIE
z$c>NkI`?%S)DLJa1*%uD84R2DC9VAt7dmfv^~HZ)$VU<JoU0!IsrwLuU{yaLatq3<
zzw}Wa8~ab@3g-`l+3J#@&WZbWAy>9X96+f*HEi?b`aSyr3?F!%S3b)8Dc39TKC0Bu
zkO?j~(L(Q~{r-;LLp-sa#9!)r3*Tu|&ZS-6TlCTl5scCRvIV_wWd{Ct<Hi9H{3}qP
zhkr~mu%D5@gLt2nV?9r@q!@rW*>O83Uj58G<tY;%HvkAvevp~~%x#Z@7;GnAeHy?9
z;<P57^2;4%lH%m_EFTUVsR^K*|773FT~Ga*?NK?_w>)lRY`N4cn1mmG8`&DL9evPN
z>lNVASizQM95g6)<kP-Xj&(5E5U;*s+cD?#CPKj`T;Mz6uAhV-p0S~SJlm973P=UF
z9hqiAi-{3-!G?NbsEH>?wU$C+xwBjwY#ZiSNA7UE??$=nQAe9d{Pr_pO9k7^b(|PG
zP#{=2)=B5muUM|!jxWotj82(Xztn-4M6SpcPCB2Y&Vym&dIiQ~PC6Iv`n^okZYG(J
zDpwqQcX;(l=QEcIB@T6|r9g6xg~xmi8*|f(4!5#=AMG&+H@(;^x?Z#y=2)L=dz_QV
zHPUk>xgOPl5Nv0{u}*azDr`mPK-~40)MvK(VIj89-1Ur&#sl~$iLv0f;C8EWolWN|
zSJgS&>r8SShZ4-;j~xCm#Yq5h2JBDeL+JBg`x^N6KmBd+H~-cT!pA=LG5FSR{nqjU
zC+`*9{`&vrufP|+_C9#mPyJIkJKxfK;rjJ+o*b6GRO>uS9SE)oFh=3kPh1BFv5%zl
zQu~8A|C5(%V0)ceZc%-d>Kwr8YhYiaXWjAped}xjue+663hbkp+n%spPU542eJ?Tg
zV10$!L$TL0@llicsJ8Y;r187*>Td_ZHWeS0GnmfJ58yj+U>~LZy!BD+KLgcLU?1gc
ze~8@7N6n=sz>X>4&U}3h@7oj85}r#<mCFl#-<KKy=-bY5EKXRsFKtIjmf7!P5c3Sj
zuZinE=vWz7C1StDHVkmkszvHsgVZzNngF<*A3wY&rNS5@D6hXJ4&lGZ`OhEf#h&e(
zc;<Fah$-L1+O88)`oBSDHg5Of1NZqN1S_6yGw@}VsAYD>SmY~|7y6#BGGG(02B(R=
zlokOTr5eF|Os+k<b{dDuwY@FSz0o(wYH**lW7wp<!sgm_+}XvZ*yY*Ub`8$ccqrA}
z^_s|H$w?lYwqyTv*g)*G!XBf<Z34XNm9K=C-TyMt4PPJo>W4o3VfeLQ`Biw&&%7Ic
z=4XBe-uM3Z!-qcjA@PM<!vFl|KOf%m)n85j+8AAfzVlo-)*bdi`g2d`UT(ANW2&?0
zY@!M{x^_xla^rt5*HKp4`}145YCCk~x{588V7+heVq3A-gV;iyz^3-9_g?g+p3WP4
z1&_TW*Wj=Z9eY)5S)L8I$@Qfq&qe|813HHewzz_A)ep4Tyj;}}IGZqRjUQOUmXGu$
zy>}1WsvmIJdf2tEwD#EbQ8K3T_8N}KRqWO5(FOVqTjO69TXub=l55kK(g7cZG1)mC
z@B?c)7ki8={xdc9*uy?L><ertCyD2s>Z2;1%eb<VTk8izk5Rs>Err16A#{=rj%{QA
z=j<*fSsuAKdwrSE3`)?Y8FZ)^MahB~oghOjvqM=@QkbiZvxM-+jR-5zKsHg;c@)ni
zeA}bYqRbLh+ZZJVx6>>(3VH$_xYA&e^K&q8GY&kHi332c7of|{q<S?PxLnK6$k4UL
z$zi~lu<1TxOL8y7Hq8!e-~xI3e>d7es0bJiObIH<fdZ}gEEp)6pqkY~E_|x_70c4N
z8e3p2AXq?)0Tyf<nP5RISlo)S@xICtb&@WfTycM9?BtLI8wJ^b2WC`E%?)OVZq)4~
zwrbW5N-YJV-^emE7Fn)}4QL=;<jNmjQ_-<tXE~0hb3AV&*eK8`_adj4g%f=M2}pTt
zKpz#OVFQyR{=hoV^znmcLY#$$jqQ~Jtyti+kt>KzM6n4FZ1~I@7)Y*MP)}=2@b$gU
z@m@A#O>5l?cDz@HhSmgYQed&PAXvmfhv=}0JthrM8|@U!bu;pyeAY>|My>+JGOzK&
zaVgi<UY*XZuVq=%#C*Yc3iqu@_87>1xi2N>2T+8w7Sy8`o7ki2Jk!dAR_E$)S%<ly
zgDE;UKQQQ^k+I`PA<AP?A0@$e?pw7V2#t@5W}n=bti}Xl2VG&IR5;6iPIW_q`nv|Z
z=$Kw~(_}sh1Y1@=K=wIP#$D|P_SpD6M{*6~qi7#H4^BqHAaavQT}-Vb{?1abU{)PT
z{fnw@LkMQC#h;3git3}B9}s)wzBF>*sQduy9BoB?6#4;O@xwJGW?IFfD=hTAr7u}O
z^G}H`p%ii@dM|C)mttmrt(#s`KVWay4|#p3hehTir#2?b^|YMNW*>i&bk0x;l%f1H
z)%uZiPUO6YQY4J-70VSfWk*EIruM-WH>`0fmmH*w9#Zh<M8U<__};TUG-C_gZh5Zm
z$pYI{5S-caE`nrMFjAj+T9P_KjZK8hqcRSl&w=F@@LduZTR~8=boq8gDpbFP<dpe+
zl=;~L7Vi`s_UzE)&PxB$92Dk62YFDL91D(9TvKglCz}9uUkQxFV+|<hkR{ugMt-0J
zVEtfbd{A91FZ2++I033KoWt(UvgZOGkej^)uEoQ*&}l%Ht66s7T=)=tK65V5Eq77N
z3so*oY2$lHT`9@%H-y!_^+9tn!N4C*tm8>UAIdU=$Wlq6mKAuNOaCyDh4LH<6<5!i
zeM@)Jj~s@S?LU@H@f9?7-C!_(19!q5<Y!;@vX{YgpZi?$&5u9+xZUdMr=OyKfBWMf
zgWvw`2lm0*0j^!Yw!d$rV#3-zDk=I8B&hXUY#>`(?|9uSr>RaOSaj0Mkjzq@QdyOd
zRemUo;B+1ep5Sn!T#L_&(#OH<AQz7zJod1#N6@wqeDAH>=`XQFv$FweA=0S0!sfT&
zY*JTUDR!z`MUNoA1?Pi+#}&aXVbH#&Ta*U#c-j}`9TCjm*#EdqWL5bZ?gJFm$ytn%
zC5c)gQd)UrLMh(@{JJQ5Zr}5HarfN81J(~pljy{*e|v6a3?=)(=8W$qrihUVHwlac
z8E32ZM!pCoaQSRyEkH>Y9pjQ08Urgjh6CoH*5EC@va+ni2R4OClh@?F6kr0j(@BDF
zn+Dq;&!gB4n>?!qVlG{BrD6+mK3>PNY(-v{)FRiSZ#B;aF4*<WISIeE+8G7z<lehf
zua4)jRW`Zq65I33?!TY)gYOoS#YnvLAO7HP!V^zE4!`x0--O@zjo*NGzw2Fq^uUx9
zMFo6ko&fl&uOi-X!lk_9P*w<o!=~6L4N`i!I_#Gcob_@g{&%_Fr6fRjoswMbo25|A
zY7ky!oJDT>Jz_c+o0tUq#;^Wp<%;$z-1U{tW3)sj{cfEb>^tECuk6udb2hP%n__eC
zW1VC%d!2=2-HmZ7xjJkKn!ZK}V=i;r$u)tiPvGR{?X_o*{y7bsd$yjvuKEFht{=!D
z*o3lv+a=e}jUho|Pq2dBYAJ}#Xg}X&`9==zebve}mt>42-y%IfK-X@3l-GIn9qV+C
zv4A1COn!i>UGGiL?y#v`7kx?OiqD-}AC*f%Y@bcv^-=R|0e3HVZ;xgZ+LuH=rgPU9
zTYIc@4y7+Gbnf~&O+p4vYUt@ac<kDja#<k}VCkdu{)glW;QWApFXcj=q%m_)eaU!1
z?UY7e0d6Vouu=oS57>D|1~VG&yzXlN$gostftpz$3KC_e*THS-1OoB+3t1N2<*W{2
z$*(;y_k7E@-STVaRA%~;&46+cNcVNd-}W7cHM+6Eg16IY*xbGSta)nNDci2WYS<Ee
z>>b7iwolj~7#H|Sa@6*dvB|z*v*TCfXmamj1>>%-C_s|Sk{On~<($!zD69LB&KEY(
z+Q2E;oX&%0jU2FnHEe4(vDl|9?MyoCW1Z<U#%8Y7$vHWK*z2kd9J0q_`)CtmsR3|U
zu8ftkHpE`R^`#^)k6}0gYvzf%tIE~-(h;n)aM$<x{d!+2H2{*VCQ`2YljJy@hRw^7
zv9<e*HQGeo0sCy^dOFry^rt7u@z(sQVq5ruH91nYL54f;ye64O^?Pf{`QNn9^>R^+
zk6_`TC!V=MnXV&^BccspZ|4tq+;q&qag}WJTlhJ!*`C9Lk5Sl#CtLw+i8_VLg03Ru
zSie%$EZS!%G!Z($1=bmbkdtqZGzrKbe~gjF-T-BAtjAjYqP)b0{|yD3wwHS|B?fb_
zO3+IDZMJskVuPkVx7U_uOY&?S7!EdYH*C4YBbV5?{d8<D_#kqd6&vl937tV!K+F!i
zVpF+ix&A_Df&ZiF4=FUR1KUJ8qWHJzoaG*A68sQ$<<I1g!&KTEY=Z^@Q%9$UjpZ6v
z>@m+}FkfTq+v6Jcr9HBoy**}+U3BiT(|7<neM#<3NgV#!oLuN5N1yEoHr46u><vF!
zHs@RT&_4L{wO{jv^x=+0A64I9wGaGYW@wo(m7r&o@Ul$6Q(?>fd+vL_=X>CLzxR8q
zRRDM%))c_={=on48{n0%`ds*?fB#Ry=X}m9;HjrB<bzBor@Y)zjuMoPQG;<Eoi}~$
zR6npLx24XPHlZK*ZC^Q#EwBz7d!)pOT=Y_~$-R&G0pE{<*prvr-0?9%uAdvZE$lHL
z@dJu2@U!9PDGt*<^~4SyeTrA0u+4BFKI3W*>*q32W=@J%T(FPgRoDua11Xu>`GdZ0
z#|>91;D4`t(H35J|2YR6QhAT)H?n2)nau0<D!E|)?_-ZY#espyD<SxN#(O)DAF@pf
z>i7XO#1q_g{ft)Is;o6D(}Km~NKWB@2jA`o1k#>e-~}Ww2)X9f&sl3|aG<8LfmFEZ
zZ9*e=c%eJ@K8g*%lIZ+kCb)a`IITT)pRK)$O|Rcz!{n@|pLquU=b!iq_~=J}3;x<)
z`;Tqa@2fuNRq*G(^Uo9a|GV~q|0kY!96s=Y50J0MG4yL+`&xMOS9}G0*_VGgeA~Bu
z8~J!#6<|6Q?5lE5hq=BN?YAh`9v8Tm>zdBH_PEx*hON`S(D@N;a6qS5sim-x>xxax
z9eeCyJ7|v~9ObUR6`MHL&ktd{svod>hcX$U*ywr=OE`jURjwWE5KDsVF>J?luGpSc
zUs|z8wTYwlcvU}emA)j`Hte0gG#|3Z|1Eq}C=|xHSq%VWdWjsH)cfm1z*V+R4S-x7
zkSx^+z!&)C!CjfTBB1h+rT{4I`VeZ^QAUG0L#P445)`g^qqUuuu+o0vDJQ-p$Dv-@
zg-<*1=#zP-lwXNIaA_8qp3Bz+;8A#WZ^&++?```HPkGB(-Eyqsa&A4p=IbupPwE_%
z?@KF4#|}1{q-pNmVr%6(x%Shrm03MKU$J>d9!0KbyluULo?Iaxz&6yJ>WnQf<T`ic
z&Kc=7^~Vs)OJ^`_O(&ckcYXF8>MQoxky}r$YuL*94x8AcVUIzAOE>|utfjE9N4H$*
zm_3GGJAQC?<Zf~l>^5N|awY!FLHd%@xylVr)Om94D%ZBXU|sVA$z8wnCG!KcJUhse
zHvYsNSFl}0=Lh}3M(s5@?A|^bormD$$Tr|>DRAKbu+E>YkFvTYLrbG0FU;BbPw}Ux
z^m91TN5!7bTR*UdO?-bCLdo<COiR<gm#X)c!~xm?o%snlM#9KYUV*po$GdL!VF_S^
zP##pyv=Rq2b6z&i*3X*M0G3M3aRAD$4{l6C*~W6PeVEw4CHoZI<zl&9eQyTruAi6K
z{CFt0*XBW9kW+n9tPOIj`}u7AP+{}!9&4!4R@cTYI&4fj!);k?k??2Tub(ft3sTmt
z${h+eYUWXEbAHK>)@QOKq(g*Ua<1!~-oXFgV6$^&a2@pC-X@@Exkgg!g+9{h*JSdH
zpu#KI8svs0WOuB{)uOD~J$o+LgF=O%z!{szF1rQ0*FQA&Sf0+XxjvP1|G6t{&Akbo
z_Rk8NWTpGQ=H;Sh>#;&87VX-(EKsxwfVEBCXz`!?HwKN+kKif*{11<L`st@B@d5oX
z)(1e}^3+pLz+;a-0*^lY5Il6(UHki;?cWU>)mF8kABibf&t-CK<eqze!1<_F?)E%<
zayj0v?R8%FZxuw$?s)L4MVviCYx|APGGkNQ4~AWYjK81Y2P&JX<OZ<lE4lUqb-&~-
zdTfoo(iL;97f`%3GgM!*VD7yGa&=$5xBe<~BNaLdd5Hbluc6p`eb3TgdzkFX?t0yJ
zb!?%%`t7}G|If|@$dcV^%a*=@vh9b$S&gSY8(w`~d9UqC-%#CK?zP4X9UZo{dIg5f
z5+;|}AoMw_@fqj&NKF9G5AU%Jh4w|MQd(>jAe0PZ)&naA$JICybKiY0h28FwGXGIS
zyIq3Iy-$AZu}5fS)=&TRyFe3ZkoFBvf6)tH1b^g@{!zI1-h1hHy>@VNB`m3_rO?rN
zYUJuC*(zTB6Ls$QyBzD0`QhoCccp#J9(_B-mr}#44{)V=1#tzN#?HF-D)%~6OQFK%
z`cm}RQd-BB+C-|xUX>2G>1#d?qJ1fM`jXjWIKZ*4320ZqMmk@qr7#|otFwtpZjH`U
zqw|H20=Sxwiic|{gixq^bR|Gf=e@p^+P>uc=fYk)a#d`r_9_EC^HB$Cs-y#c;AmgE
z1>cYRBgJ}Q-5yWGmKr|*2jsfICX5@FbeQ?8PFFkv?L`QSk;t);$#RR!pPB(;sE4b>
zO|LT<5@<<I(ZqAAGZ)b*R)Q_qwzJVyaGcdlPomuQWEhc`j^WYFT`xS)z?rZpjKWJ^
zc%gBh+l5zOxWMtc{8A6pu3YuVS3O7#0Oixh|F{OgOj)+*sFb&yxa=c1p8b(H=#>wC
z7<>(Y!dbneY-qurJr}s+*A{Gsb*O6s1m)9Ku5iqR9hifimnO2&dThi^FFfUhEjnzH
zQM^;yqRm*a#+tjH<t$iyEd{|k2p2d8d&njn=l?9V6o#?pe~*qEe30yD!j^o!0_H6r
z2wM<23XeYcdId#}RlS0F7MmC<IkFAR#7|EhPO!|P^B^4S<pmLnT*Y3MSD!Mo1CX2<
z8!ubCbXc?6L|oQV7_?r2VJkHNhRFN#<aqU^M#ZJnFHn0;POekMT_4y6lviJLj33Jd
zTd7x&&0fLm(K!Aq?s~`nZuUA@{R}!@<XY-$6rOzw7NcCPUIEwFD78RF>(>G5`Wl7}
z6dTto!0TL0bu9&ISMK`B)%L*lN&LXL<kdGnpgOPi#YfE|SE8;8r7pxM17zjZr`jLc
z`qnUdIhJ|_`YeO1^+7tsex4k*sP#2wu?ewXtEmDVKQI+P0IsIW==#0LS>+gdK59_=
zoJ{BHPY36tsC{%bRiu7KB}c_JFMX8xq)_@&bUq5@%6&=NMd#{2we|<?C(Wv8-dpls
znluAhS7_w2ycF9lt2pq7sb6@iA0oH==0$+Aob5wG>;t)zkr#U449^L5j6uIG4+M$-
zow(~|Fr*yoXCoaqUF;}}RXNtVUk5th^Xd~nyx1e^ANk?&zDfDEhr;oRoc~lC<Z>oD
zDKszUtQPM2?LhA~<hcdm)eq8+_I7qYQm`Dc;c#g)@*r$ST=bE!CB+6nG;t|u4W9uv
z+kx&oQN4md{NVG<{&2IA`b3w)v5xi_1v{;(;C_$TYA)~{DdX&XLu0s!c+8z#k^7rI
z=tZuGEi<3?{<DF(=#lGt-;U=QHsSnNo^otQT=P!e4N(Tbdwg5Lrrh<4eW%#Y*w<q_
z>TWwa>``n2<w$bP%=HbNiAZ%I&YaGn@W1nig~v7-PdUn+mX&V@;nknWCa7LP<a=X3
zSDm8{XTcWL9w8Gp)H3QE`~Al37446o4WyO=kX*5IFjm!hQvP?cSDrNICGR8i!z1=f
z9#`S>l0D+R47=1)V8#b(NBNLk_nl@(_R4Y#VvqQT^`%SJ1IaZD_A!!8<f<?61Rne9
z=&<di9sy6H6HUkd(n!nmy4SxEUiG=Jv5%hCM_lgDB|S>uf6^70^x?{@0KVfpz5_n}
z=}*IV|DXR7yx|MK1fKi6=Yh|<{^$SfpTZCSo&P8NpT6r)!k_v-{CoS!h9}|v7o9`c
zKQqcTI(x-cX(RRXNVpL{f8YhC9o*}N<R&(eC$1Y2S|5e>dr{;@{akqUsjp?WSAgON
zSgyhRfa-iZK=D!ANc9uYUK83#l$rokyG!g*u+3FpVIOrSHC50a$)}B42VzJ4AF+i-
z=LnW`Jn*w6u}|{@Gy4JUOWA6wuv{lsQwpgCu^*va(f4wVidp>UNMi!(D=1g>{g;C6
zjNk9HpS)aoTt93%v)?%XH=}X>W4}GaI#9BYI^~)GSl3}k;~M1sr^2QC->_|zzDE1|
zbMYE@F8jy9-b+YBczsI*pR~eqmhT8%MGI=LIg>qO|K|BYUCqqxXkXM0%;77a^=+?!
z&u+Lavlvq=?^JlqTkd+xa7{~IXbak<13cw=KWWFU;)TwIv)Xu}Q?gYko)>x;I`s;g
zV7$i`!fBk<*<tT-R#R|ER)_nV04=t>f(>Gyvl=%Y6KmojPj&@({D~*vAO53%3_ttc
z_tJB1&zST7zWeTjcf8}B@Yc6}4cveK{X_vo*U@LoO}&B!TVBDQ(hBE)gI&k(hji|3
zqRV6MbUtW+a0T0VK<7aM-d!&6e4MAeTcbj*odw&f&H?(o`YYI|y~P%5Zu&~DV!zXx
zy~_7x&t8M;OPYk++GDpbozl-!I*2XhQde+3B3Iv@8k^AX%br}lkD{c523xE1aLh+3
zw$?{!UxFr}E!gskkDAi~9~BPNsEBbD+nT*5XA@OTl_UPM?Q6&SQtZeTI)0#M6E-oc
z_ISj9_OOkOT&sF7AuN1U^<I)my7Fu+XGExD2U@+DIaMS)i`;>g8UT1vtpkuPqd^~T
ztFx<O%rumgLAhW0mgR5DNXdm;Imu&erJ(Ml9P2}&z(^U4OAp&|B4j&q5Eut^{4veJ
zAEiav47|S|X%h1(ec#Sp(2)XJL1`c)uuA((Q?ii^UmT<p541k##51#u4QMb(*aj&K
zhe5H#&w|oOGh^9G5O_9TeZ@Z02O8I2!+|Sf!=n`&?FXd<;u%8XYQ;f#V7_dWV44dy
z;s#f~Y&CEU^3n$?zg&naB(of&$d$3lN&?--^OJD20Uu91<#{rP%7bpkMzd2h+5iSA
z2FfP%awR!BY|O`1bPf`b%Zg2GB2#fet);+}EgGzxgjatnG$^wKs5fMPj1Bj<q+>9h
zQy$Wca?G@hCThpds&l3eQLK!8Hl1U;V&4w@QHb_P=R4Xc)TH(mr5M^;0W&bHicNJ)
zjs<vzkjOKVa?3}`qDqpnzL5+JvJsPOHf*B={@F(MA9+IK<L!~<s@UXZGAXaVyclOE
zSHaHwb3u6ad6t=js)=lPBLh%fUatF<&c!C8$Snr_sLUj{pf=*<I5{~QHsGRkl)-Mb
z6hy9BE7R+TM5X|YV#O}C)qS13F?-~`x2dp%3LD--_sIu|A7Ea6vHy_+E<37MAp6*t
zfCEqDKNI@_9T2D=pnlg3HbR4q<e0cXX~8l(ALZpbicJ(bQjpF3K<QgnOF?`T*#O-u
zi(HXQe=wb!Kb^HE1^Pq&ct+=BzFq8b<FHcwjG_1_$VJCgkdL0N&><;S3S3S6VZH_S
zSt&~}QnBE3pKT;?U*^f}qXt|ChP>>QbCtJXwL$a*<|3BXP?q3*cGKni{I_m4et_~J
z8FJA954L5XL0=ZCBPbuX0LD8{85JN|>r~^1Yc<&NNd$m%i)0Tx79hW`MgWCZpXmxY
z(~y2kVj}^>k4VswIf=NggtX&<<X0$qDLJT)Mv7@Bc+i)EVB>)kzjyGuiLvAuZ3ZPo
zxptOC(3S<s>jV^A7S4<il`p(mfhq3_wo$MY*dW++X|iVJ5XFVbRY-nh;Lig=(8OHA
zM%lqS0@Zd^k#G`)=yG#aj;3=S;8F)pP;5fw8o~M&(eTK#t6VMU1GE;0L=}=`&B%nF
z+KcjflbjO!PqP;n%mC3jKU!Sa1hr=#BU%JomIyGGEP4~)AaW(F^q5>LiGEj`$jQWr
z{wov%WPg)6c*t^1GTx4M?Epm$CRf46bxd>xFJlX4z(M+&$SToVSCgx%jZ84BTxE<e
zdcrYqw0rZvciwrIWG<D>uMFZ3u3|U*;Tqg?MEk&e=}TS;U-Cs?v>(6lyW`0xpQH%_
z9sAz6adZDpe*%8>mwy2sfBaE+!3*xQ@rKHrOfSteeyV(gVdr-R_a&BV5bCAYM=AXb
zl&%A%uR-anLTRLOCA|mHd6s68EBOeB*4MIpF!8PQgCDBp;Q<;S1=;RhN)u>bn#F##
zFZm=c9#hgPQ|AZBAJP~OfJdZYt8>VnoV}7foLsYrAxK}*A9U4#-Ww8FUok%;_Dts|
zeTzuHl!wc5EOo2wY6}p>RRF6MkY&|Fkidvc)<Y<iSA6*>D$Q)u;_KO!N1+TTGG$v1
z1(_OwYbRS1+lpQ`a?SE~1m}A`yJaV54MK9^>_OcjkJ&_C%BLM&Yyr257dnKBW1YT_
z#D~p}$6Nz1Y=4gbeHbjx;W?|7SAVO#`&n281e*n*l<Qt>f0esl9)1-6dwB>Oj_Y?j
zp^_>=q}X8BaWq{&ak84qadtfB6}BK8>UjKiTi*XV4$GM)%`PdCAd*jh|NGuYZBY`!
z@R)1YuEU$({FU&AH@pEp=W{;C#&LN6OD|W!7Ug?HSD<ejY|6W@!7;+7HlcEFbWU=~
z*>p~F-R+E4G(f|vFLG_`JSa_`%C+LI?_g8zdb0`9vFFt{d-d1^`_}1PZG!C8)dYYQ
zY@=jW`*xKpB^jt(fyWbS6NC-*Aabp+LBm}i%F1ZP?&}qJdknq46oMp*4%U~{9@XBI
zyFNJVTUR&2>@`X)g`DetF71jf$5{0x!<I{}L&GlELfg+pCNeTNY@96Y?A7Vq7(6<4
zOIn?)&U`<gcRQQhT9d2#pq|dPFI94lj*iIbyz2-2@y<s<>!aGf)acx>Nqd4)O99+C
zOXWlfWb<72CD+%`9<%cUsm12|d8q5Xs2^DKpR?~virw`UZxcb~3gx||0sn2=mpXo6
z@m`X?;8z0BCgTbHUe$eoTN^)AH2`!|<IR}|os^ZjYij`XIRCRzt1Oqem5*X-mjLU<
zB?omEywH?Y)9^wE$%Mw2OUnbToi!Go=xBv+IS5|yYa`Z;^1atw;5wOLM(Ft8X;!Gh
z#s<n6<PA1_mYK8RgUq0MtoEWzsbH62m}2X5e>d1<zhD>6^{htJ;oHWE6T;fZMukY-
zv(QW-$<5aU-~c_{D-{0iARVU1vk$s2*yttQaD{8ex$%}GCCHq*attEJ1y<QNIbH!<
zmiE>LRIaTY*K~Xgo7u10fH)GXwP09l8>r;iVsEjj9F@DC=y9e7Yad(LpJj!E$2RZ>
z<B8a6Io5J6H7r25><iDnt#~*|j)^|<F;jlQvmd2UGpy87Xt0t`q9VRwy}pJH7}Q6t
zVH500<ft>%eQYDW2T$=yEq3(-CRc}5<#<TPeLoPb=87)iZ2hSg$S(f$I5z6{U4Pp8
zdhJWm*#Kh=;ujA2dZmrH>&`oPqAsO6;NPhU0Iq$W3(XZD&#TIweCEO?t;z(z?fnr?
zv71zad^$$pU@Z=muET>*@L*G7Fq9cf!Pdm#Kjmg58yJF3hT(toK@*v?nu0Wg4Af?~
z3_O$xQ!Gl3r%W>sw_~UW*StJgCevg9%lGC$_OOaA1IMg+l2HTv3vAdvxn;E>Si54w
zN%N%GLg5N!Y^m^V`+EnCmj}THg|kwzQFbx=>jgGx-_MI!fkVDvqJY=nv32CiL%KjK
zW?F0{x5(2JvrPElv&@2x<yx@uiknz$BC>4g-nJsAU?(UsEU>k5C7W>A^rIt+&S!_6
zCRClyDbYc&_jTUKW;z$_EjFr$W!ShhFGTJ$ELRRUOcFSbQ3J(duQ+T<p^q(y+~^&e
zme?A(F6~wL<kcQ!(y3r?u?;3y?n|umu>bv`Pk##j<_~-?Jo&_v@MHhOkMMY5f4{H%
z%CCg?yyrb|^X5%BKR=gvQYm)FftK=Jqs#9#TkFSv{Kw(F?|m=)@DKkmeEj1d7oSu7
zEm8;J@$dh|55vn}em^|&*fXMIc24LAwBM)7Ud1My+=BFlRUc)Og0)T1dm=1tVxH7T
zN#agco%6#MA2rZqjMd*5cru`;^EDsU_VYB$hiw-dzK=`5pyvn7UW4-k4K@pMdu(ct
z4m(c@<|5Zw+B^1&pA}Et0I2~m!J|*%$2qUo;Gj{I$pxLX3ACzI{il5>qYVV@_p{i*
z2sQy4JeBDz0sRrq_uuW;&mz411!wS@`_Am0rdgL{zfkP8&B|1lH(2bSZQzk7pP^^O
zRX-t=$=MJh-0mCeD~s$B)epM!+BvUKNhO<-reAWY2~ce^b}Q6aj?_!!P45Qzy;`{$
zN&=$>f3sXe@2%IQd%Jt+y@PK*f~{RO>Yoh`U{kN>v1z;Bd$B6DX*XKT6R~kp-UJUn
z{4hN5zyt8@-~R1;Uw#4q`d|P5YyA83Ui_jL!B>36SHP=Y^(y%0Z~kVY{(0pqUrF*9
z<vZ11U$cu3$yKo(lk2mQyH4^PlA8u0*W}*2x7h@^Nyk&L^>ltfZbz}H&gHkyIJN`#
zz7>01^d-d&jUTvG>~NaSPwM9m+h@uT9KyEdqi#vAw}9=KO&r7qP;|Ctk1KLjY(4D9
zu+jZ<Asg)Kyv1hChkev3@1@|5&nx!Ye=qSE#%cgiEN0+(SK-!U4~rE5H7E){f+SPe
zj3W)2V&ReE_OcX<pG5|ex{m{}0H#m?JVC?0EuNYs^J!=~tChCF=rEX*dM7hs%BRgd
zQy|B?AhNVm)~zo8&NF>@M*7%^wtRzm%Y)6*aqv7>_inK%R~=y=6`R~kvDrR9OF4f-
z`$R1hne&<kpRx}c2+N#pG=$I$F8RX<HC4Fm3!gTEof|oLuJ7!z;nLmgdCD0Z1q=i8
zZO<ZiqD%=*t%b4hzbh6xKXbi;01dBxg|)+>o}JE=-+d=~P;4r9(K%&(qfS-l4!g>Y
zIn|?KtGMY^jv-XM`q<7Z0a^}qFdp+-$4h(Es^bfL9QosAp0l%e{lGvc<FQislqX;!
zV^z7rLg(P*R&<=bJ#QSvl<R9dp-PBq&uEX>R|T6EnxPM9%KT3So5+y@;=$=$C!(C3
zD|>6PHT4We(fL%#P3#fxwJCKVDml*bp{5__G7&Ze<<*asJu0?V=g`5n=qu(2n9p$G
zqr?VA+1C$Vt6`yj0I^9HAqTRe_4CmtRyjM=u(kHs^z$OevF;n2rmu}n?FD(ZB+srs
zYEmC%*n+);TK`%3s0N$*u;QcAx*yOw5N3}BTk#{g*efpa=g0$1LNF79WcbFibXDI|
zq;m;cR7(N%Jq9J)n1g!!?9B03-kG=Z0{-2!Y4Bf$d_3O5zMMFqNc~3xEHXOGa~7_7
z&7Lpg2}$py<20KoC#7)$&dQeHiw<}pYmp|ffU^u4ZQ!M0mfU1%g9R8A8yGgbw~U2&
zzs3e08=l7tUASGag$5h%Hth~uEW)j^WtNydi@!H0_FTaF^KqMl1oebT((D~9fT!4b
zwT8--Gh4ykyN8Y2gETMYqS$g58<<?Pf3^UEHLu7ugBAG%sB|jH?_IfOsO?d8QeiWl
zL&qKiSTTp$*@VXypek~#?D-*q*=vn0fUP7^>~k$wl}pKR@AMTFgg%>-YjAP}w~`|o
zwqmbKY^_`cTh5fB_o~l*9enZ=ABQ4_@)4_E0#^>G&&(pepa%r~UNcR?3t#v`Dkk~1
zx4jKM_`wg-e~&!!h+TuTP80mhyWa&bdFlP|`Y-qrdH2L(zW^?fSZpFR{n*<CI6sh`
zT&=Hqx$^<e9{D%A6tz1!y1rI?RI(3$ySC^=u~pce|13He#|t2RDR-~|_Z8vg@A(0m
z<Oteroqr9^-VR~YehR1A<MRAs2mJo#&Z4~iDI~KISwB|frvIzZpzim&ud9>zW8T>a
zO)MC4J~k-LK(^pfZLiMX$%+HD5x+(0+I4&B2e<Puf`do+S8iiIv{BL_Ko!8zF`FfK
z$g$>UWXwktkh#v5=IhJYdY&yaRfAa69wZAF+jHqF6?H_evz4J~w^&1it%v=}*yMbD
zE(pQyt$`}~uGDsL6Mn(b-yFe)dl<Zb-t(SEby%=I%TrH1X)FV!e{lBu7k}{=69v#0
ze&H9g--sn)v&E*_%Ah*cz9e!SuAp<@ZoK*{&xSS;p^O(yu2JYp<eMcpZ2AsYY~G$c
zhdRl%#n#*#4#=IbIk|dlW)n_sCf5!&Zxd@e&j3gJlE-F!sj)}AzPHzfJ*r%NdoGDA
zifv8jWHV6rm4#f7V2@sp4x7o<VbckY;QN}pcWSXU*cX1_2sZG~*3&uk{Xo|qJ32pz
z?T8<seK_EwbbQ;|gv#Cfpw!e-Ky10ZTPvN*@oWA36#t3856&Ka;>qlF4p7@;<D=}}
z?pT#;gwx+kRbN7EDi@JK-Pd?bqAL$IX#k-3q+8kI@~2P`0(Ue?vf%wp3xs80$6$AJ
zndu;-k~Yf7%*;uqA7x2}L)VB*w}S(!f%)H+vl@9NnR8wE--Vv!a*}{p#aUf~O2(&6
zJo|V&bKP=Qd1j7v4E~K9<5*`N{pfhiIpcUz4(lOWeFEk|9UQN|Wa&m;(v}>y%USma
z=BihkBHb76dd+-g&P&0bl)F9%_qX!H55lXj#d7L;1<Vz$T;PTOeJ7c)6p)R=1rEuw
zbPG?pa)S&1rasFwiQH;ledU8EY>~N?OHBZW&1G`$yqu%2S1`~$3a>r~*i4Swf(3O=
z9ATvM9S3wr&r{Apc;oyR?8LcFg97IKXB`WVzH<JH&Iiv`FFM~%O}zrKPv$WXR_7s_
zy*4!fCgwM0dt`eiY8A1^-K+uN!S+c`$g7V$yK=ngcxE2yBG;0sjkY^Gx$fLP3U=r0
zQL$<^KlAD{|2FoOByx+faMxc*eGSUg&T13Uu+St@EZBBV=UktFx$2n@exl&_Al&tY
zC9@w0*0*wHk096(^W`jj@M3=#Q@!u8%`{OnRrLx=?FEr*E^<Yj^a3!sDnGZ>D=<Ic
z<=FbDQcFQ~ZuTfV=Y&n<I5>Nxz<5+2#qEqOO5GAZUVRknxaHNCngCO=*9_43flS!c
z58&??jgQir6U3RG<i#pJYE~Ub@loCnjDpp$3{~w9u2C^rh7gD!fXeqXmd$3Y`c|p;
z!pl$9574^+`HQ8Fi7riy^7rI|d-!rqt{s=>5pA3W82n&NUf%M~)xp^9z7;tHjTJ$1
z?Q_nuVkqr{gab`-?S!*>j69&(3EdO&>f@E@J%oeOu@tw%tXAa2rg|DX=6@fDXc>bz
zDZSB}6+7nqCw}ZCR0133F~><o^ryT8RQMpXU>kXoady~@it3DcqIZ`CTM%prX1nD{
zPoyaUk4>?=30J(1@#<s0-Z+kR!9K*oRY~KbF%;~|r!D@Gu!lg{=y>I(pLhVgJ>z->
zmlv0eJ#sCDB3I_+B(8hH20~9J*fvt{Whb?lB9P2y!A2bGyGe?VNs;xL2%4xJv)GX~
zfOM`aG?eCzxa&dqv^g;YF>BqC?HSX$aIG4aJIht-6-XVDox`T}3XHpcV!2{lXyi)1
zAF<7>bCT;UJm%-jQ@+#sL^7IZooB11aCyl!0@z+l0t;eSu5d~ah)~%p>W#56wOVYj
zjb7)`*MVSuc<f75lR};qgX_8yi|jEfH$7v+e<v9y(X*ldL^=mxdt{wY1>4MWi((VW
z_oY$#(vDYx-F@fX@JIgme+a+#?eDDoqR-Id#0>oi3PS0VgjS|d-Y5_3#ok_V1;Mv|
z>;E2p=!bp?-uJ%u!RufDdb^&k7QkzL=ePfH_#@x^_3-pFPr@B{o)IM_)|DA05s2(D
zX?+dBj$;wd7oc|XQNsC8*ix~_N!~*!H~cVDKd>1&%X}x_Alr?+Q*jx3;JPE6c)>ci
zx;f^f_+yWJj?@HTohR{8VAu)Uz)44w^d&GKCH5HD9@R&w&e=!FJCuA>s{O!Nd{prR
zQTozseF=}9sV)gra@~3#H7D~?v-(f{wiDj`jrmWmr9gfF`~4mp{)>9bR5Rt0?t@F}
zk)MB-34i0Z7S4a7I>5ex)B>o7$SVV>E(s<C;CKPYXtY1jl6yQC&(WFyv@h7$CX@T9
z&*lfzUTZ#busSDE`ic)YG;d93!?$<vA2(eAfLoAA4#i332TI^c$&KA4@C6*Kp|M?Z
zoYm5%F$uCW86*2(54QUPlBqeLlJ97CoRe<U7Bu*Siq=HEif>!7HP|g!F89`W%G6?S
zvB`Mew`Xk^Y#Lb8b3xj(Vh0HrYI~4XdMeizn*_dejDpw3Nq|51=l&f0nLqPq;SYV&
zH^Dc3^Ebmce8V@uxBTHh4B!3T-wl8E&;D8Xy07~>_|h-^Qcz_sxa%D@!>&4Qv9~(!
zVe{BU?n>jckZUTz&^4V0uX8y*xL{?4U3KoUJA2dsq{pW9#}*vxs`CTbQe%(C|E}1?
z-VA$d6Kj3R$#rP@Qt<XD`-{Hhu{nFKbl$f6Ni}DWS>)DYgB~`o^R>R@+QGGZx%IFI
zht2w$@8>Nx=LgsfYCjNra!u(p>=H0v*hDU?8^QN;uXFFCG|r?GE~@jmto@<qYw*5{
zt+B^dAGT(X;Cxii9;LnF)o-vx(b?46L@xA2ip@_fWUup7c>1*+I&uvi|C!eMlIV2J
zUR$~LCX+Ott`kzavVO6O;ELPu7yr^<`H%e%!B3w+$zH;N92b4#;x4+30-((L8Rx&9
z4b`j)2`<JeD}tyVqAcYEUdE~&l9ydaItH@xN=C~{(+>#F7EE-utx~Yrr@~|Hiz(1D
zQV4P_okihm2e~%LzFd&o#1I&p?xzMzS$?kA!0i(@JsxB~6b>z&<tg_rMiZg%6%P)(
zVq@%X1}V#O-Y6BV6KC@kxt75SV{y+S8A-JqJ+@#OM=CeXj`4D(EZ!h_Wx2>Lh#}id
zoGuTJrTVtYiLRHtoFiz8&;px$RD$bl+8&%-S#Gh+m>PC1aKtvjFH#U}!5mdKY{gy;
zn;QgHIuAw8{M`Ctm1WW@*IZ`TgX;^mT%%i#p2~|e7fKA3Ykm9@o44OASStI}el9kl
zItzlu1{_eZv0T+&wK{xl17J(SV<p!?<j8U@HemMZ<XFiy6*&;LR5B<Q*v$T-4QSLJ
z1FfCUrYDeouYQ2-lezC{k}k#yTh~Xay~f~tRH&A#n>{u@DVv;&J$k>P*Be5pC<<cZ
z2a0{>MPJIG_Na0V9Um2BHoEll;-ea!t4(x$R9Q_@VH4~@o*l#nV9iHWa*b6##uXkT
zEwksWLE`nz{FXWPUW!5eYp&Yy91O_Zlp?Az)Dr-=`$RyNL;?L5^;NPd26*bG*fa$h
zC7V+8t_$_qPPk3q2iiYu01g03odPm20?_xa@OEkjs;rvJpg02Ac9N{;AStc-PA6>Y
z&!z8M)`lEE=WOo-;J32eyJU%ScP&{@pxDvGHEBY)r?bc^42&%cwkU-Ax<AA+xe}y5
zX~-msT$6iO(W<wc?L&q9yJ8!-fAQFguMLsq28O*12X&QE5-Js)1S{hW&5V>Rb;K5O
z<Hy*avriosa?^Jg>D-U|$VPxDL%dCxTtneA4dTaeJX&-fMduPE5PMUdTVHoNS9><O
z(yAiOoE)n6A`kOe6Vcf#DE0s)Q(RUXviAph9~66xp~#hzFk+O~q`sT@xuC)pj0y;X
zvx!(f;`BYL6LcVbf!bx|LlB+HXN<jDaHXR56&~X9y;$d=jGbgGKj#Ra`0bCvkN)>R
zY;t(v3tj+!=o`P0_@eK*=N`U;yxW5KQGGXRTabRu?cA3xg`fEsf8iG>fPLe}4a!JW
z`{5w;7QWyM-vkdo^zgpzCQSz1dFMT>2a&60e`T{*mw6VVn4e?-4y`?wer{t{kiMtw
zAVYt%*C=w$_O2p7pzl%ZOEorXiot>>6j+LK?NuKo6E2ni^fn>(n%Q51_z4=1@C%cY
zv-F)${TP62bPTQkbl+U&KLsia!}%!j?IPD`a;bfP778!4Bebt4Zp?7wqVT}a)tD4`
z+$TPavbA$rB}6{SuFXD-)-DF`AG7&W{qWvyB25t7b!{K;ynACG{`ziH8z@`dH~hFj
z?HRXcZt}$NAbRi<=X@O8=3Dt*!vDdEupu}e{CO@EmBFo!7dcMSZUr<YXk*1dn|<Te
z7dzcer64(O$+c4wgJhNK@kR|QL7>!POQjI$?6A?b<$Y(^BzZ{ptCgzKu2>9v2=;EB
zG+D^`LTyjdZZ-Vm*;;IRZClyj$PN1-PQoFl|9$u02Os;`Z^MgU_~N}!zZ+ih@|VNg
zfB)}?*S+p_v;qJp3bcUijwV8#+#ELJP+!45w{q=an`cKkol49`+R<V9qN>5mb+@bb
zlLYKF4xy{KeY??&W?o_Lzo!>+O@-Gy_3SY>9P2sT^>z-MUe9BjT`(6KdnDfc$<=KX
zY|+`*+{)G4qr(QBc1>6udf1?_6jVBQ*moU!^tSD>wQ`+iN1qK){6J5xg3aU<O6|j{
zpS!-ao9Bb}TIpQm9-V#VBYr>=^B@#zT9fNE9h9s00}#RzTgMOhe(k9hd-iJB#2!8N
zUE`y=I&b}}_ffttwf#IR%RtkYq#qMDhkfA(RL%{%Lv%Kw*r4s_Dp!@8wy*imPG3qr
zdv))j<b40)z0~U5^%WgEU?L2TuQ9H{GKn%?xV0q2qcs4CdI1OYyJ<fVI*04m&!w|S
zpl%4(d1y(|Fm&5nZe`ECJYhg(KY*7nHFAC`_%M`$oHXDfUVRL_amG1+{1lFA8f>~5
zdfFGBa#NI>9itC1on=%<qWe*}9JP=hVM(jlG)q>OfLf4nR;)~cP-A5pBn{Ti9=l*8
ztSz>IvkbFQh6tx+)t>445Xyd%4`k$UhqR6@1f|b8f=xbXy<G8nXp4rWk+brWFR&@!
zHnp$GQG!K8Nu$}ubwzjz94F4oF4(ky8)t7;I(At3-d?V<KhG6bqa~0^=H_rC)8jA~
zec@E6XA$h+X6y}{@S2jGQflmX>e_1$8x5Rw(1<pX%S^FOUKOl^$(23=2mY$GrCEfP
z`&thh*~B4i0F6Dia?PNe*MSL+%gf*hHj=B((5oMCa%B50_DcKn607Y~5aTemY{4V%
z2O<XtR{Q|Ua0tbIPr+9EsHJ_v!VeUztn<QU>uZ0sa%}q+1x~wuU~Y6?{Hd3tf2m#-
zTj}@3515Zy@dMhode}xOB+gmJp$Z!7dk43pH30;ho{!z@Vjui};^`ZdZ8*p~i<>_?
z3829dl4{CQxQlZg&bR0A;Nv`|z~B<T>XnZh1CVH*?8`H?o9|A%N|31ga1{)#8f5om
z{#C~wF)^n#wvQz!jBtoX3yY-BE)XmCCM?MRp0VK85*xQGHs06CRDI7d$9ke5wPMp{
zwfru?EL90Ojzhr)Vt)~6EM(Y#1B4VJ8#&O5*eF&x@I>0|uo2~#U@O>DgRM+h&MMbY
z_NTPOma?oG>|j&5jvS;-J0QlBGEtC#S7{x<7MVtn>aUVblq@8wFNFP9>X5J=3U;7X
zSDX!x=kg?Cu)%Y|2DQ!=J4m*B;7Pp@8heavLyTR<pXzg*JtFvNF3AB&Z9-PF5jHm#
zDfS5DFBjNkTr~3RBFVkNCPCp==gM6_J8Xo77nW9Xwe~JHp~Z~SF7~T(vw8*CmnQL-
zXk+++MB@*D^E=PsU%vOf@J;{rSDUQwzyE&t6My1Qz#HHAM);O*`4;+(9+gdh@j;cP
zT^6xeuwxu+=2Bc4fVBa1i_HiBH~;&89PYdCe)ubY^*@2U7y4t5-DJ6?bw7|6_Q>xs
z>O14o9?d33nUEp57C)eL599~b2em#*{XpPM|5YEAfbCW7t?^MvLp9B=uL<p-Ve9#U
zEPbu<1EsHIT1nxt4TFBbvki<R2glJKL7qD#$&QcVh>sF`^w{>tKYatgJu`gjshMj4
z1j*c$Zwy??Nr648tt9n|K*u7|PWHU9AP#`5`!MOM!O?6Y$~*lG6W;cw_Bk)!!t3tm
z@7`%)k4$~a!3ci;4J-C4aXonS$)_YpF&cehkO{8aedF;1`*M^K2I20$evMYF=mcn%
z1N{Um|5Ui0b>G_MZ!1EbvrXtkH(t|o^k2~S%#&T38Qz|+*pkPPWwH+7Fm`vX?AqW&
zY<6vJ*L%0^dhcWHJ-LRGfT6OajMx45-$y?3TXq}<x9++39vT}X@4x=$vFY`?*jJv-
z%bl=shgr(~kX+ZE+ui#Vn+TyKE425{f~{(oZ`xJ4>b0BpLpry1r?Z|tF67?WV=LF5
zz3TT{_ujt!MC_;9tLa4L9;3<mpuOt#I@i{}KV$YN*AHttm-b#?vg><naCIMbReNmZ
z-ji$39=m?vfIS}5c~|bo&R^5HV4*D~v(2te+@d|U_ip9B+79lW;q>f%6g2kk<w7wh
zd7j6fc$(NP(7%q7d?v2&mc|dA8UX%ZewBqRSvpY%<-9~<09Obhlw~>I=xjMste1Dt
z!^^-Fai5=Wsa?JqA#O*bAHs)=TUlz7<YOba_ECbmng8Q<=7q%LhjX1-<>#Vh^Z=46
z2Sl%e+a!MMY@-8TAP&qS40dlsHy*%-&q*;hYmfXaf{mAy7Hl*qci6@u+Ov@81gng>
z3%0C-O^-d(vf?cFh6WqTK)%g+pYGjabJ#bU)s(4y6s)CvsIcSG-r%t{ave8JJ)<_W
zz_xYRLcv0Ea&lz3pe8m2+t3`piIv>6U?)ujB-VLw*oGE+^g3typ)5Kho%?&mSlcTy
zLWLsNaX75=jkDjJ3pTTf^KGqjk)sx29Jj1<O2`7nmgU(4Wkt32TCh>}`*yRyR`;cG
z)gH&QZH2w3bF)X_fOaKUZ;!FLHx#*+e$Q<vo9)or>rkD)+0@s=tUxc<xEaj830oLU
zZY?&>y!ZBsa$ENUV~Z{J`dYEau*X)}t9uqNckiRBe(rS6*oSqUw>~N!_5;|LYI}?w
zY=MI$4jbJo1L&C0d=z1m7bifaW5haamwjd357asz&!WhJvt%{Xz`vJbF7GAFO3?RG
zh_=Fk-dpnVVmy6OX58r>{6a6opYqr3xN$d<muh19C>1qrR69Y6S<5<H4SZ2>D05v0
z>Rm(m7$zGTxn_{oeF!|aBx4cr*A%q_kmPd?&Vyeuz=15X<^VQ{OF=bknK%<v>U37v
z@MZ-Y-&@Zo$|=I0s&);0p#^6N3N!X#*rE*F6uTxs>$NE`hWm4kEsH%5LObHIDR#V9
z!6rU#2&LW0bxyNk%hp$TY(--<ht0AQgJkp0I;N|!D>e#NHae$%KJp~*Y;p@lZi0>E
zG$onz;Pxas4}#se$OHG=kV}Sjp3Accc-Co*_HnzWbDYMi?a@D*%2f)*d+ht0jZt+D
zhMjCE=f)nBWS_fhOHC@X*MSZz*oLLfv$Kg&<m%gl!=@{4nT{(|*hsF{mn3@+LYc&k
zWxthcf)ZHe1-<1%9ycuh`y0RU8}Q;6znJYr-wm041z$h9k05?ekt>$=VbD5b95lt_
zzV>UsmL?Z45Oss@@#{n%1Hcr4pZdhd;pUB-@c;dh{~oSgy93_x)o-^z{L)?z_Z7%X
zn@G+kSm&||#rr6=N7wH`d{l<kN7a6S_GKcght2G@<D<ME$m*j)sGqI!QFG;^%nyX2
zV3QZJ1=9zfoHRes_$a18&60?9$VWADo!L*&vr}@&#NQw^PUF5cYSICX2U6vOaMc25
z)n-VtQgo1sdfE?4&6y4R7?n#IGb~3-Xd~In`Q<%VCPC;o8f#eWK-!Dkg3NT09fX2~
zw>t23`);y24R|sc#5d|@$w@M9qrT+M*2F6PJ8QcJ#&QYPDUZ1-%MztryInif9P0G$
zkg<uNEbY?fDP~&iEjDn0pJUkYH}WYO9C86i4LE7C5no=g%eh^-9g(YH17K=Q;J$<Z
zz2-HqHW|sm^iP{vZRgKSWn5wNa)UzC5*oSt)r<@59i7vA&H3L+Y@jE%HMtu$#p3kT
z$~9;A!E*>((@ytRxjC7u49p&T*gDwPu*D<x*t6H*CW$?Jf?<;h?$DfD$#tIX+=aa!
zut(p1QeR?l-~-!U=g{gL`u1pj4GMLvZ*Tib7n|yQP43`Udw6V(&KLG5$9g{yR{Ve_
zE%xrMW07%1?sLapTR+g+qpo;v?KK>cd#lrv{Qy+pSZA7$;o9?oe%{r2Dl|Z04O?T+
z6}Fr$snEvOv8?cEeH1v^wLXf+GO{9pe6Nc*1b{MGR;l`=ZEWNxc(UQ*o5(;JvT=rO
zhe1AC<Y6U4I0+B_Aj_TRRD^**ce3PyGv1gtl8f|8wmov1OSY#eLTM?0d7nABR@w($
zLY*1gCJyCAh`i$Z<(W8pWTV;iLfJ9s%n5cDT3#{AZn7W|Zpbr^_Z>YpXEZm3b5gMr
zzqKfx_=+(bBo21HS=tR7%5^OF_8$g{-BwsA^@%zf#0Ifm0_U(_h+Ky&U{iy|dtDL*
z)F@LzeEk;N#@)O9s0kkX339a=FvQ-`xpgLb7~yM&AVJH5jWXiA&gtW{`3P^Yb3m2b
zFB5;@kN$Xv9d$m&+FrHL2=<qqR_vDJi9=QF5wT4Nu(4cgd*lhJ;=q@3E!eYg@b~N$
z<%GQZ#E;v-mZYC=C>yk1`d8$Nen7A_?K#adp|v7c$*it)uE7Pxw(tYRUh!j+vb<SR
zRbQH=A8!V+S4V@Tazm`!HM#Y$d3)75BOPqTN3HZF(s}Vwt-XTS>vp9tK}yBncI+`X
zeQD9xWO?1NBG;WPqg6emwl7`9M<opy2$o5(9q>_u!#;`cR=Msva`pXqmx_;Kd#ndq
znvGPww_?5Ynz)h!Q{IuzBNwlyOh0|$3&jD`9of*3P~OfT@b#F1U#H2$!SA<O_}sBb
z9PzbFHp7PauJ`Ym3-;xk{iNn@;sV_G_huX6^5(wpT<(wGPXM7Fxn{&(r)L||+vPJ{
z<AiE+3`iBiE3NQc+%9g;6ve^w@t2!B4kVxLCqU62h<iQ;;lIvwK5@&By!!3p24kbT
zH?#2K3%1<_*Yd!&QR-Wu?>|2u=^Vm_eAvP@PuTYNINxJOd%C#ED~vXKEI8h}l$pLW
z;+97q@(U6w@v#Ta#z)iMP>qxQ@i)0n%|`0pApbV{$IaOQ7ndwI3|65mr-_%@q8w1}
zmluh+yz#klGUP(Ao$ayVIr!Z8yu`te9|jYz2-@!3QI|KLkvdF!>`3N;*ipXc$a_CC
zT^9DEt<~yKY<rzwVx5Oe>W8ZHonjNYP8U1cM;%{G9K_s8`^7VYO>}-CIzN|e=bO*)
ziXfCL27E6>uGhBA)qO#n{m3i6p`xOQ4FkO!T$QjF^o97#t;mhu=fZ)G*pUC7bgngc
z_U&hcZ7=t|PSB=NCsYdwIn(zOIh%9AhC0V_m2k}?cGLNOySy=z<D>ck5!fDsO!)7y
z-@M@ZDqQ;jdC9pp4DqvHX5#!;Y*agDfB$pChBh*jJ#Ge;D^A3moo^@zT4A%kwAU%s
zy9$JjY+$RkWJKp!XF=$Qa^oK!ee_ZIdw=im?fb+v_6RB2N`iUzOR2>^QKvyBD{@&a
zNA(Ei$!hR?&-Z)}UGM+#U;Pk#`r$|5|N5W&HMq<dGI^WeUH|-_QTspoAO8n<$xH5s
zpZn#1v$wr-c<S*Rd!1uH=M407^g%Q8;tyhvs4wK%_daTeJ_`Fi`Jl{o8McFy>qPzy
zZ5qcp*iLfYAAfV-mvZZ)L~g8e=E>h|xvyP_&dEN-N1=?+CJ-CqLC$`>9^M!Ir}_c*
zQ4=Mv;PrMlxjsg**NObdnfOn%SF{211DDd5oR5OUHi4inq^`(D>=pYWVZ-_?8BDH7
z;es;2zNXkv_ZK_XA<2z=)J)@i^#e0a_70R(Lf@V^wi(aZe@cy$k+6>BV`zWNi4>Rf
zj(ymclRj>sPH9ZHA*?q=j+?VB*&f#B!uL6zkHOO$I3C#F=N$C}NhYpkl_DthV+l|p
zO$R;;7yqs8nJE>p1_~#&@GCKbju~*(8GmEPTl$FqUAyHHT%oaGD62kc!!bCNVyc6T
z4eM1Nt`KZ2R35mEF&eD{-ba%ZbzEvmi!$Dia=a>O6fC};U4?Dn`eTri(cpBk<!q}&
z^xmUur^!WGQQgB9VzkvX8t~IveMYOJ*d@?3hEjK^#YV@kVS_T>SGnp4IME8~C^UsN
zHZRv6Hk<SnozhsbgN?2Sl4zQw)|u0}wtJoXcGJ1T*2-O1HniA$JHAT|o5)q|QL)92
zTs81XSR6f!V#`f?EBA$5p#*t**bQ3<2kp`1Che_UE1j=l16bF&OoS@sPi*bg_oWyY
z*v3<JuGm^XkhT5|e_t9lfMSm+E&M<@f=#h2Mb+4oE6V+V&eaD&SjL&wd{is9os3f}
zxrz_cz7#vyMklwP|Ab?HpuwJd*stQF8sDx|N~ib%k1aMnY7Lv#Yg)6{h5u}Q)GhR-
z*y~GcHUUs2At+TOXISu9BgjPgt&AJ034rneuOSx@p=SA@=MUzsC_d#f%f`z<*+415
zLxMx4ok4HBf#U-SH3-W+Q_v5bqC#{T7J7b`0QjOk(D~*R@!pip#Mq(;P_aRUO=o0k
zBgC8O^RHr~grv-JaqZ>h!2#h-XlBG?tg$s6z{^#!SJ*;nZ?S=4;oVKsK2+GCi_K%l
zXEV9=us7H|b_%zIRAU#N!-~#%=ALb0>vY~?Bb&kYB(xKXjXEpOm5r^=mCu*3LDl(+
z+&GvwLRiW*mu1hb&h6gxY%<Z6OJN?$fH!Pt6R?Vn<+^SYLl3*dHpZU4f@O_wg6qc(
zHUQ0H<jhlu<zpwCTpMg5IBY@evz06Fj={+lz_?j?Rl*@Zz>bdmfXFRtJ7HzHk{|GL
z4PI^?dxYYnDr{<x-Va1Kk+A41>Z6Lzt9FrF?W0cbOVR7RV~<@w;Qeb{mus<!+P~_(
z{a|PfTU_Z&J$r2Zz|uzzm0W#a>iMWm<D;VU{iM?nst=9IM;&}GfxWl%c{r;uQ*c1-
zqsd3O?Y1&@pgqoH0UcMAED1mPZWA=KWX2Ah7%(T9P?5=&WLf0Q37upDCX4?}6BK&|
z8OY$Ju+9LFqj<%laF)}(BnFdG$=r&BEl^-k6Aw81N$6ez`zU%+S$0E|8S*TOjXv7R
z9+?g#<F$m(8u{9J;;Z-^`dj*5mNpu&61!Ul<=LKPVy;YlW}0Oo3KxK~GDeS|bkM1N
znfp>y?85yXZFOfbxhkhUzZ(L-7XmQdjI5%e{-OR5oR2~s&W@f7c!H6-dK9kEiGL}R
zyoxQFT*2v_SBD0YrJfIhEr|gVwj>lTkflx9#TId+OM5@yumLa?h-H%o#)cWiL6S{~
z#w3fq2GzOH!I<3f!-1ueB$yQ<6l{2&*)zA1&zTF@Aok|%m1<igaDA!hu+q81rW3VE
z<QnXF?rXY_@6ZXvkBgj>7+lmihhh&b+o1M{6H@|q+y=v=;|9&J8iXUI@cnBNO)wql
zF?zlpr~NMG+Sj6QdHKs<2G4)~^WkgW`ql8rBM-wbeBc-P<5SM3p!j~q>HqWJ{lDRb
zFM0`l`J3PBhsx9!vX`s)An&70t`KE~rT77od*PD>ksGO0mMzY}$xJCXK1$z#WFyL#
zFZUMVG6hkga46U~sLa@EKLAk1RZNYi*cyAye!^S&3UPS>ua-+}%XCNauLLWo>_Jxg
zm3t>^S3eLI_UQXLpU=ve-LqkaPo8!B5sABB$6Y}0e_nY=?J_pWVw)u5lx>Vg{W2F{
z&jA7Xb~K%-9~eMNBLN3Bqsf%9K()nK+oMkeVERHCbb}19Gq^sX$H8YevHP;I-7`&D
z8C{?>HF#mG;p~hu8Z-YWI>-GP%5~TtC6hJAYTvStWt>hL&ULmj{;lI0kTE7D!N}NO
zk3WdbZ9Ei~?*?g)PBIi?S8Ty$dAswwS>mpJkoN4_)n5IxS>W593r_B~+D<91)E}xG
zFt~;d+P7M4`rZ<mB=>Bo!KQLE?D~Dx$kk(0oiF6BIu^a2j19_W$wy9ZgOi)rTZ_#o
zRGM~g6W$f5=P)b|`&#zA*=q-TW#1ypp~04+^u+AWKZFe$Y*pV9IaM~L?e1EYy-Ir}
z*Ob7olu8HWnw(5Evs$rfhI=bFtN-M%sT_KJsp>0;P5V;g2TZOxSN5#m%$D`->@hU<
z82x(-j`wqIU-&4f{eWKI`-R*-TO(Hxx#z}z5-lmf>WYUJo60pbI*-1eC!r&TVvmEn
zc0S?<3>y^x38Ab$(Kt+Q>{0s~K<)1b_jk{KR`!_lqAyiG%58qH=LhWX%vYpuh-Vpd
zsA>Q(o^0R=Wa61I97x}B?Hum38USU<ZwaKh!E!pxt!ztItH4Y7XqcokMrYvKp47o=
zdlrX0xItVlMS)suioM2mI(A(e7(3WAluYYe!j{W2@o<aS!a}Z5V{MEL%HTWYrYiMZ
z7vj;S*z_T)I$yzl3O0Zy5ZLOxk*i;pGhG221&y5C``CVmbPnJ$fR;Kh*vs;xtJ`B~
zKU80%huveN8C=(w7TB^YWCCSyGc?%#*YpDwHjiB<frh4^e`fpAioHr-GMmWEe_rHT
z+oNLF!1S%?yvBBly`Ja?o~8f1sy!Z(E05#r<)XT3;h-Og@u0mPvd6l;#)j9z8URl|
zeM9ODNP%-|<{|p+yb3_|#eXw(5)ZN_INM%_Pd%O}Vw7a;$-L0Xf@u{8J8{!z3WzeV
zzEI924Y>1vLi5Zz3O<v9gFur8xh2A?1FunOFfi~Jv@dv$^&q^^V1d1yeZ2w+G*8T_
zuD-lrixoG$Vap)A(R?iqma(6x`%X5RH^U|aR4u+*6|)oUbni86@{K`3b<Fx!Jw&ag
zz?2^N8_7km(+5-2uPZu7!Nxk&cVe!wY5Q6&1-VxoMCZB4-LP}%B(C$I$5(O#4wz0p
z$mp>}^M4+@j(1yoEOm2~H^10ph%4CCUI)geod2W;wC71b9s@;5)h5QFCs*;!u(U^y
zjX2c@4z8+P4I9XZrgGQIq$W?AOFa$kYl<y6ojYu5Bg<L}ktRrHDG>df=UjvLzUTe$
z@4Vxy?46Bx@H^s<{jom=fA{bHT|2*Cvd(f<-|acn<uwEPtynUuNE+sY-urX^0v>+&
zA^4_$_uqpXH*SJvaA}b>++OuLuZH)0;9u?UHNuUjZ<78dsr_NK6kK1S=k|U;_RSB>
z*>t}21KwWw;k?|eE{R+_<l>_Sqn64`onuKKV#x|JDSf&hARiQ|LzD?j*Vj@mHB-DF
zsQfEZ^Cal{DD?yUO_61yrPw2pSdu*!`>pJ8;2IfE-C+OysVAfc08XRind%AQ$8Sj>
zQL2fl*ds)H7e&p?m-<6Ui^-Ip4jajhR|JJH!ufs@>-t%MSG?d1UVYyg_f5(C)o%=n
zC5XMY_Q-xld=iv^0P^@^kKPQ0E<wi(xBJ+E0{*$gATVPXYY*Z|BefmRV@_KLl@Irv
z*5%seZyk5~^Zj>^aW6v?2+etMZ)?{;&sDLxcKwbz6`MU9K-CT&kN<n^*`5V<!v^be
zukMY%$@skrkhR#bPe_{%TDsWuMj<TPd))O0u^o}?$?c8Y;D}sLvPYG}v&3d{U3>OM
zu1eRkhAntK>G^tm2o(hjw6=Lgdt6}e$n~oBh?|Z<PQnH&e&7Ub&&o%^XHe${u$_Ya
zGlGpTaJr9@V`3vW|7@#rb@yJ_^C|bfMVmOq576I-<ZAckG0bC6JO!5%uZZwW4t@-A
zm94V^Kp%;5Whnm*(RG+umfxY9-H_lr%W_gL=)1B!FK1|%L0n?c49YSd<BgQT<Ynd{
zTHyu-yB<{$&v}6j9QJ~3xpZ(RAJ=P32X_*vS}Y$CY}igp8lnZsJhmk5KFeE|=P5R=
z^t_PU0lC5g8`Rh`53FJg%VjyT^o8UKWniq?N4hMB<l4ao$FQ9s*H-802sT}g+hX%J
z(c0tC*hCK-tmxdgAGAl2o3{z2UW&0<s&xXkHG9>*<J%9))faDTY@)k74=Dstt^h38
z*jd)Nf~^}AHhYx76UyDu?yUKN+8&p3Cv2g!#BBxJF&{M^@&jIOjUUhe^(Y_9T_5H8
zIZXrz5AR`Y;UG3R0b6S9k!&I~ejt`5!gJ=;7(TN<EbNtX3G1N7F}XH<sVi6Fjf{tV
zR0vfN4!j=#elHE->hGmBAH@@AtP9{!0hCRL1h?mAgD?tkL6zY^6Evu&nW-0u-W@og
z!WAeuJ43lbF@qR6`8n_<$7i8d7^MDC(xQ#RDJg>~PSodi{6AgAHRWQjsH-Gdvoa50
z!F0u@oc^@j6WbNr2oh+OcEy$y8$UnM7GQf&Y*IuNbkdixkD1$(V5feLg|!0|>}HQ8
z^F*;_!Dez@!$$9WZbzz`DA-i)7;GFxZZwe!GJ!$^h%DUncyG=o_SgV;!i9ruoFhE)
z_*b%v3-)<ZT0L+{2eO}~NT{68*~vOq5o~G`(aVh|On60vU<dD`SgslX93fOX*V;%(
zQ5D1<6&uNQ%YjVhU@vl>B`JYxtLsXvBKJu$S0fbc1Mr9O1cJ4~#`aUcQyH7L$4cj;
zVoe=vV&B>IwaE2cm?yf(mHL{qM>OJ6k3b5&1FueLu`RG`%?jsV+mAx;H@J-_M7$fV
zR>e|EIzLMY03}10$JSZ|?K$^6cR$&92H*A{{3-bKgAc-w|M-vZCjxF%SZ>~U2LA8=
z<qyK$_uK>D@b7#h({qhdQ_9&Ri9xvO7k*$PI_>&_D1LzDYI1A1=y@V4FZxpJql!IB
zU)qp6v6=u?Um-sr6ZtDXDvFQF;s;1)(zo&6Bj_YX;|Hj(2{vbsguUtK=A)we0mi00
z`qtOfXQ{o8O#8&eucJ^o?I<{pZ6nqz!e@tBCMRXG5*)3m$hA!D&&@bVbSkxGs4o%L
zL3|X>AP&3=(Y}Xs6}VJ;RC{gh5kg70pk5U8TVH}rP>&XF_uzk#kNzuic485!yYn&_
zf3^fm+QNn!9H}_{eY+fEJm#S!n`j$u6!#FIWMkPC_XG}dww%`$Hu-LC@2%}{MQr+P
zkjtc-53(+>NgH8TIffE69S&gY%GF`>!Cq^3a`$q}uHEFS*c!Pp{yI||B$($7CiJjL
zoW+dm7&dv<Z~&W^yAOmHXvH4M7p%w)+`Rx+<eKxU+;n_U$t~w9!0EBIay6Z=U_U6=
zP?AAZ4?3x%*9rWG(;<{e7(8C6t$K1-Y_ZW>Wv>8TdsS@tM0@PEAHarNYR+$UPS08f
zDW&f{8z1HG?XX?d9xH6n@t;ThKv=<M_PBx#<u!SGgcbkU`Y4ApckUk@HrqddEp&8F
z=bxZ+kFBz28QWg@y#%G7uj#zlD<=X;uQSv2`fhc9%GS9r4_^EWI66nHe4PG4eHC!}
zP;nRb!Mt*Hc|ZUYjy`bpA`DO{9iVo=b}e=AvbD>?{Jp8YgDp4M6`RK%T$}#j&ov{|
z`-hTA%lpeEYjdt&`qi`NY%kUxw$#Wq$$zaA6)0V7{&rP+Pj0UB>EJ$hut5i#z6b+A
z^>VUj@i%Ja+QFv9OZ@e1kPgt*sn_|`+G~65HG2&uTi@TiU}tBaR_qbCp3Z$IoO;jh
z{!X2~*25N>bK{y^-PLBNm$tpzSDa0#TwA#Z=-8{-W5GH%a%}rTx34KqsQm=A*q~%~
zdu-7i+x8{zqr8tXdu{rP$L8(ZK7<!?ZTebv*qluq)VW}5Z6r7LyxNySSOjKTx#g5<
ztQ|i9u;K?W2%j4JmA^v>)qA70SKMaTuiN&8?{5YuGt|%C)A`)-QF<>gSJk;*OXgyD
zd<T_k;fn9y-&I>Z_$YyS9eC0N=*(m*$V-hMAM@ozktobg#?v_=0Ema0GKzN-U5m1t
zK?2uNc+jzc?7kfbM_j0vc{ni$gxuz2f5_=hGhkxt*uIaJA+JAPD^1Gr7$~@g*BptH
z9f(sqNx%#Zhp|Zw0mLfUDVrZOhy+qFe&2*V)4-YAc-$=5k>gsiF^!Da+r$B`4Q0kM
zHqPYc;254mH3Xu=PFdxQjV3#`%$u&*G;@2F>f+4Ty~m364sftf1&|X5=>;2M-LW2M
zH2`A6`Wzy+S=*y#7%LBF<lvo?YlzH&O>*5wsxf$oI;XlPqXzGo^JXh@C7S@9aLA(b
zz}SE}*2%sG);ZUe;G*wYun|qnz=3PB3Boo|z;l-CaRK9*u_Ko_1`IA|(RpOL9>q3p
z*gkiHU9<JgCZza1)fC7)*$c^no+ej(HYYcf6V({lC^oK<0fYF~RB8xd06#hG^Q`p^
zxGy26zhVo4?GbfI_SncZi@oAgP;CcbY%w!7!a5ghYL6gt)q=6L&Y6dnu>mKIgdp*R
zI<r?d{Qy)>cl{h>o5(T&0K{F77&(I~+2jXj_A|FV2ZjJ%`<mCmmweHi;0M0{`{D2W
zo&OgF_FF&oiBJ4Ce9vG0^YFcY?LUI&-o1tEcU&XeW1T0mt5Iq*OwLC|(K#N6K8oxU
z+cWny^lp<*AZ)}(VSC^e7?6sO+PK2z#YeIIVGRnDE9#UdYB-oo6ER{FC};9fG6@Ch
zKSBDj`Y5qSa6U?T``IRv>r0&6r9LWIKi5?cQ^6)WXY6s&m#AH^qrBK&*&d0`$NA5!
zegJ*{{@!SZ?ECkZ-UQM4M0U<Kh?p0iCp);d$dtGS+c*p|UY#l6&k0vEa6PR-k{{3~
zm6}5H{@k2-wFxH>Ok}^D`~Y-6A5`7#YI~igVvlC8S?pE%5<Z-*yme!$@-Yv$?N){k
zCAdLzC{O|)L3O#ext*-$(FsDOWEms-Nu~bMfFQj)qtqe9cJUwJ+l6bHYPGoFs;*+B
z_RPG|v)Dp%-|3VnCGBb}iY<y=PJ&&rrBo6D2gNSfe7kaocd-F1uvgfmJqtDstkFc5
z$CjAs0o=V0$+d^g<SN)Wxhc{$d)N%SVw3h~o_Piyd+afI_@Rg4lb?K$CU7n2tO-H;
z|33ViAAw*0;D@OAy9VnGTh5ly=CR|J*02Rm4Cv`xudnSvuqV}dV~_EO+<Mq5x%TW;
zbe39s6ztI0V{YWCNr*vouJ)>Z>B0Sk`A0wYG5Dol`4xEozx;WsIkS*!O1270vEjL>
zqxZh|z3~2@`#E^myWRyq|A7y{0}nhvwSQuCiL1HPiMv#6Uao@8%T@0^b>s>iY}A)h
z87II2Kj4!Tlf!n3O_<I_?&hOZu8kk)_9eAP#TH|?FJ<*njUO<%Hhn3#K1%ML8l6|z
zq+Y?Ay_($GzSQ{7g&$by=dF)YY!m|tg@GbUyJ7=p6N)`H*v$8f&J6pSZ(q@Q&wpyH
zTCc@*whFeZzL#hf^IAU_KcUIC+#HNz@v1?8zm01R;!7l$%$XguG!q9z^l?Jnk_K;>
zA!0K$lwm2$Npj$#ivUn%P-fwd4P1aj1AN|T2?aF`l2H?-z3`YLwvC?8U@f~;v2F(!
zkPAWh;1#<R9!`bJTeJ7*-oEe-Ky_`#wvHXz_Q;to6*m1KFzkh69XYSI0QF35;N`qD
zfNzQd89z4d7AMtW)AprYm2VqpaK5GVy)px?&yFK?${2QX=Rl88g~+wQVI%%7y*I$3
zog7Opa^D`r7W&vzwpqEYlRF+igizUIu}}U$9h}_TVobcE0*=e=B%5G+^w-yRl<WV(
z-k(6tmR#k5=#Ds<`QKZ&234s_b7=sfSqQK!Au(E*p|NPxjH1CnBQX8e0zbDKLmQeW
zKX~p3HW-8Pv>M}w!3<u8)mR|Bn8d?oG{OvGkPs3Q8cLK(s^Q+c_s`4|@y;G&N1QmB
z|9?yL>&4ZP{<@hN=bZRrPbbcf9ebm0Y@*17D50l&D~~lcm=}^V8Q^<u4(i&0c5(`^
zJZd}fTyh3yP`WyKm59tGnW*Ivj$rG^qq75)KBM6|zvOYG=s?k<D|1AWo@W<H+LK2(
zK-V+cfs`6~Y;9C7HcIdB<q>&aihgICOw6z?>iOYzdf8s!3)vvF^$RwN<PpaaW7kGO
zhi-$j1JJ=XIC(uN6GFH3D$aOrdd!12x~n`|`ym_Eqnqd&Uj(4<@RT}69>jVGscy(a
z7oTn3An_78YicEq%|^!-$uky$icun6b&?2Fj1}ZLh_t0he{5e3#3OdN$Xo<3#GL`;
zE$4-u1huZ@sJZAR%}FRl9La$#PA<i!Hjj3=Nm>)e7N`&`wXZnmi$)xAq^e*8;IR=l
z%_Yyeu~X+b=wc$<B*KCzgV45;LoSewVQfOTy{7Sz^CfkN7Vaj8A&%W)!()*81=u$|
z!&g$!H%T7JAqzI1tI#}%R@r20tHVa=G=@yzjgG((z-psF=?c6!gK|KN6q&KHlUO3T
z>}8M(q7ruDIqBX?Ukp&5nCDzeL3lpMZV#G^L`sdqxxc|8c)3Qz$aIyt3hC}3*!B)v
z5P1xYB>=yu()<E>?C7fUN^}+Ml$r_UQR$kwcracUC6qfwr4!p2x|?9hl02U2nuTY0
zz7~+n!c*qCwGYwpT<s~#BZxfG*ijyNb%%INx(1Am<+0`=V_VTe5MGd?I_@QPO_rT}
z!R`D*`+c&8$3FH6aJsz)fA*exz!t^joXpd3`VST|_5nV;OEJg`HbRlPdM;bJ^?F={
z;By&^4}iIL?G(QHtG^2Fz4u=DxBvFvQn6Nj38QD$G_HU29p3?uzUwjYd7t;iT(Ek@
zH^!7ekc%!+`lO&QgDewdqp&?hNvju10Xg7Z36UQqbiJm@Q5&V(!i$Zfw<+NFNG*~q
zi<3@X3(rL+WM@HnksY~CgzC~*WFpVxl_Tz1mslQmdoZUB?KFszwu5wqjTS9<WVUHJ
zB-53>+DC6+GgunQVxv|}*Ce}e)b`6uHu8p8uooL7HLCWa_k-*h%2*s2sS>5gWdM<p
zINwz}ij9eE2X>Mx4CjYt!$495MJy&P^A%vny@mv=$WA~buPl!}dDV1=6x4?2WS1Tz
zGd)X9j2ri0ng)8;qG_hitK=P851Y#a^Te;6WGH+A*G?P{bvhNjJ~#j>kG?;h)MeLq
z)#g4Q!UhMh(J=A4rrl$!1N%bVcXRLd(050lyFU9q^nG6EZ%|`T&HePdMP|!ADr{~t
z+y?&ju=!nDdvRi_;^gLD*vIL1%L|Pu*MWYDB?OyiMI)o+f7f=UtIAjhdlje`LU{oL
zM|Y3U(KR>i72Ti&%6YnatUmJDzAw-fblhHE8{MJjj}&&*T@qF(clsTlk(V!Do}QgZ
z+a13r##oKZbP0837|f~rz=IFcy&jzY#bbZxofhEH25dnOo8#MTT-xmDMb8QMyJExZ
zMlJ9PwJv&j4GZ!}_f9T1eFsC!^L7k9J@?-|EqnyK*`y<So;@vHdxDOQf-**v30GXU
zwP$UBrC|%T9-1y$C*dIWt~@s5G8^Uk4^Z2vmgm+N)OO0-0mF7k&r@B40vcQ1+Rye-
zJK<?vjeW`Xi(T+^YxNxDzP#A7au7>k!g-IX1^|JgZ%OFFLWbK`G13Hc@!e!K02sbE
z*f;>6TbU==WpxdpO}XImKD#Q{{9RX^m`EB)r4uPOTCzfg_d{i0txWkfEezZ0c`k6;
z+A4jWHy5}sn5Ebio3?A-+$_e{W1}s>i`amiB~|YFoSnm}ru$Ls9c+r-ut^jQoxj%z
zGO*RR!6x$3w>kRi71ML)F>flLkCrRcVHf9vVp~Z<&7A98;4EJCRx6JDTN%&sPp?03
zUi}%*8<`+^4dN6B-a>42&80?w=CIc7PceiUww^Av@>pZbG+|z%>rB@wY??+RO3^b;
zo#JaL@b-9z?Gf_a>v_)(czNx~<Dwl%vQq7M{z&BUSnm4$s92be`vx07Olmuz*whYi
z1WLb_!g+1fL3urg9axgbgS8Y6$i&f_0F6vk*p;pec3{y)d2A`U#fW3r=JM!e0-YhJ
z(**g!hp*BCMR4+<j;R~{P-m1zK=9(#2p3Mc1^_*u$C4L3n>`E`6@t!YjUZ1+qc6FT
zB;~Bm+2mPmlG=&o-1Ye1U^%OOiaC<Mq1ZdN)dd^1ulPCB#~vjYc;dN-TyNM1jwEGl
zwS$$h2-dOK0h`AJj>=YSAbkf+FCz6ZICp(^x)Y7goZmejz{c&=cWSUHUD080ix0t^
zlH`Du97=S5)g5UMp`@IfVN-iKXx)d>uGok!nqxiXdAnfqwHD0j2n8DzQEjj@HXLHK
zG)0H7&FF^ht2s7~l+L{HA$_Tg)DF>5%d6(qci7Mixp&d-wY<*hX7WhbL^sB~tZQ9t
zJ)ZM(iuwY^jv)8G$TWz3oj%-p>qYqe-}^oIU%&RN;Qsf&Z~FYZW*<KP^FJSc_=kU(
zK5Gq%GH<Vos^RT@4t3wIo6FR1TCmG=2+E7&>FFsv{_&3|$A&s2l#Y1K^FRC};TL}G
z^>F|DPI*x#LsuSKo_F;epQ-y~HGoPxNL>h+<<-xkOT0c6og;eLM)i3fX#3kfIUA;Q
z8_G^6em`O-d9vp>d#}yDRyHczGj@(Gn;n?jD5itjsJT35S$qht)&h?OW$?;1bOdI2
z&qG)P0Ov5pezLvX%lp#GjYU!@1+58yV_O?mk~gghKq=`WT~CV%LTBUwZj8YogAaM^
z2A*{{zxU$Mh9!9fo*(#jo;&Me0Kd!L|IlTUFOB@;c>_r@+{n`h_B~|zoMaxF;L@cF
zG}rQuZ*?T;vy!hV4l#9<;1N6RAnktsmW=oF9PHX|i(*at0O~*$zge;QcKRNdYXU$A
zTL>jp$5HID<eXNW@z|=I)pGtJY%O-9t2)CM=<3@&mau>gKfmcsZ<-v?*We%ggMR?8
zdCgD2_kaJtflvIzPlS^TlPs*)_N@A%zy8<Zfd?LdfBn7R3y*osV=AovP$wQmgu8c%
z3VS0z?e)4ypurezJIMW4!_e)!#isIO*Ej86-spRSz3p2anTyz__kMj3`gi~C-@$+S
zPyY$N?(4n|p7f+A!7u;nufn~5_Fj1HPre53yYD`D_OqW27cQK@umAdgnV#jh!oU2N
z|8nyE-DLOlj#A{+mwd^Wz@zWD177kmA436gPkHi_;g8?)7I^JzUkfjL*~{QnuX+`1
zHXC{d&#*ap?P5RHF6Vfj;{wFDe(SfwZMWS9fBSF$Z5p@o0glkE(xs%ed=B@mvhN+g
z!QuBj_hUIEuj=eRtBo@K!Osi2=KET*k7u$`P;_TjOF?ugb+8?@Q2^Dst&M8!#96TS
z=;puou=i~HdF|)Ya|sS$U&59pq8xw28UWWOU;N2r1HDh=dVLSG9RSQb6J0)deDp$r
zzhZ7?p1imsV{x9xTyx!0N3ox?+H$Dt7K^0YJv5(owssV#EjrOckm!^0qJ|1ikt_HD
z5Mp^b5@&k^w-qHu$st^@0>IIn)#eNuN+CHKOM}f`cy(+J8_{W)=dQP{C^6a#2k|4G
zEq8t2>FcniI{*6&n>f){tAfqwF73wiOx~SYF7Vj!yq{M;RM=*8_1JVvkmX)3TmQ6u
zbl4SJb~0f+*XteDa0pv$YAp<%Iu9P3lgAldgL_$5Y>}grF#lH%o60NXTt_QIC&&80
zky$NWtGxPN*H)_vyVn(8=OKBSkb6U{bF5Pi_M>$m8f-Anv0n2$&3N9*<5p}?We1{e
z_nu?R9c-;GnLIW!FnX*aui>b?#){{aOsG5#b$t!hb9MB`^V%qH2Rt@s2U?zcnHW2E
zKp%XqjSA=CdB;Ze?C0(bbRC?o&_meSfzjJ2#fA?wu><<uV?WDtDdoCefi8^MLqA{t
z3jANRgXzMbX+A;|3b7qX_Z`;&;4~wW4?a5kx#Kh=SYQ&L{Ye(n>A8hYw=JI^w78|@
zF<(ifJ~;r9KhZ4?nf>IbC#_{Psywd5w(n&^YsG<!JW`OscI1fNfg|%vO#n%ku}y>x
zopj_Q!$|*?)Fm0qgg8jVIyh`Ojm078u#uA(b!k5qY%=bG4e7Gy$bF%UVPBV29_m0O
zx=H#VvIAq5mrIXLa@Q+eg%7k?DHC2RXfD_=5<ez&0<%Lgx%L@dtr&0_YZ95TT;S-q
z@6kOL?BqO^T=!#Ey3%VCr|`+eK}`z*hAndrb&OsfV8-+8<*}u!@w|g=5W68MrBvRD
zE+eNtLTr{hG_t&AiSpLeN1We1Il4)Xb(w!EwqZdYF`ZF#?fbptch};pdmXDRijA7)
zMzEQa8EByiGA~L5r7M78Qzx+2i5R!YgXx9;DbJq9`}XNRZ?G2~{THLqDGd%eM)@UY
zkmtKS?_-enYrbX}$^x|p_~=oB1|)J+Uf!?{!22I~KRoH~CzDg@kKg=9l|v1Wix+PK
zEg+qC$>cG6c~qI$iX%qalRi^d%yY6MmV%0unRP7$vjeJ2`ux`vJ-n!vK*(5Zl<N5b
z8>QHw#TG>-5Zl;{ZLDn+s2zyK4zP(D%tjUaDT@}0-D7ifQS77GZj(oQo{PLXc~o5^
ztSe0cG|l<e_<YxzRN{OGPP>y~G?^HixryfZ=kLjCR&e?t-_B{qC`AJ9dR^&O`|>Wy
z;#<q>D7(D4zJWdj%h=eqN9Q3b4vX^Q-nyu6yu;>J#Ep3rtDOhplwD{8Sf=JuyYeCM
z7w{=1+xEP0e|<Mq2OLUC?DQ`)qHfz_-zq1ejtaMS#TMq#qq@-Pu~pHf&DiLj8Rmy#
zuf`oC&xMr+ZF`5V-uWHa>15dO&>a8|KKRh|_W-2>!c;PM-gOr_lGQ2v!1UYuraw)+
zLGKV57ksZV7P;?*3%r0AWS4Po+-Q%kO$)^|PZ&o_bA$bv19|$s+it0y^}ZD3T;alm
z_-^pLYuB!V2EyWRgnMc~kp&F>9T%thy^;%%BUXCnlJ`YShlG7>PEHIvy#r4;$mZz#
z&scVrYPu1fU#?{gI6lORJK``s&->o@K61)G{P0!k2d~lltk)Y#3537<bg9hp@(%Uz
z)vL5<fPJC!ANxV9_#H9gqB}a|FI~Ds@OS&2rL@Gp5F0J3ND8>!c4rvyIKgp;V3F0h
zLjmc9_tu^1_?)@v;zgn>(i8i<=bn2AJN_Y_3)7#<6}^Y=b|!!8i6<x0u7MURul6pA
z*mql_J02L&hvTFjxYKVqzo6$72K?gp2@8J5zLlp|PjCA7@|7#L&=5t|@SuOsspkQT
z1KisvuWMc>yq#(7*ijn=oMtyRHb!wk2V2h$R5psiRW{1+(y6d%dj%}auv?R}QD(ba
z?67RxkI_B*zNLM35BWFA{g>!Ezb>$U55x~2>hmATv6uqLRwcA2oK#_y)hgNKMZxC!
zLXO50VbFF}UQM^-ulGe*Fh_3|<qAzZ1h9#{zg|g34=(DvkkB)e=WT8^8fr%9N)PDD
zjK?kl+ZKWd4b5g_^K_CIXT{%6UUG-7LxXL#fZdcy9fPioXT*-K9m8T{ci3jw-H|G6
zyh_C{26Jq19=e8wEpCl+d+fyXCAuoj)zQ+>Rpr&w4WKWt6mjH?k{PjfV&<@zE(rMC
zG9Bg7MGW|;HND=T!ZOck(gK~WgRQ(S&=s2Yp1cyzeS6~Vf5))3?MBxnJqLc_Thb-P
z?tg9Vz@aT}MP3)=aU2bIXs%t9S9cD}M2*es67f97N?woIAeD)>-RnY-zF`SlZg}3b
zpVvld|6b420yd+Ilh=x;t-LPSC^&{)@2Y%iuniq~4GhjwGH82wE&)5k%zoktxUe`>
z+ahscfiVRCh`PZJ<)Nli63GoxR64OkY7^El2L8T^D{@q0YKZOha)3^gL0*2iI4!qt
zM}Dc{T=CQQyeEeizNnzHcsotbX{XgRnIA9}(2gC6Cnvn<xV_2_*UhjdE3uPF_iCDK
z(~H<Nu}23LMjN6tY)8&op0wj6{&YW5Rw;B^?vmvCp0Hr<`Q2$Ee5<&o#fTCAhhv+@
ziP*1A*bpn`4aXM&&V8CGzdH7LdX1y+4I4RJ1C2Fg%tNku@+Z1QcK(v1c^WG^;t(6|
z3Z<=~6J59DT%BITCT!QXdvgA+<OOXjd>H6u&CwO<HhHj4$32aIt>1V2!h3R}dGLjf
zD-Kq;Hqi}vyq>V-$i+J`hxh7a!*tv7%iIQ2c;E}(xF;H7uJHX9v2MvpNDKCPl7YlK
zCXsHt(>*(iH(a3eRC4-bUUy6zgV^>;*Fmu1%l0G_C}-Cm=Dg!X*U2Vt_w2}CO<0ls
z#B&Hl*A#f+nR%|*_oU@WE6(MeC@Od*Jl~N_u)}|PbtaiW9-vH|(n~n!M8^X4r+Fm#
z+(f~4jj^udiX5=lGN&WiP=5AEFPg;jfphp{j&qh*E`oXuv4Y5FX2)|Rx<;Yv<WQLU
zUZKNOoSt|t(M@=c*pRN2zm#-wAP4NVtL!Y^NFIEwtB{E2YtB8t<pQxM=s-nm)7UVr
z$y%^sS|MCEzUy&MgR2jp(m0CKBa0(|<$$NBB?St$A-46JQx<77Fu!zbF8sV`V>QZA
zkN4hp@8mqXAD;cZ4~HucJp^xk%O6)S`s7TQ<Y*l^{oYQT4;(0gi{kiwMRi9|4~gd+
zAikljk`qYm!0E^i2Gj-Q=@v$DT(3z+&<-fislLFDQ%`M9_(`<gio9-k>^sSGKTP+-
z9X}`&NXL_j5BrgWG}sPoXqWa*?7({ZkIExP)*~&qBRjU4=aI1E!uSQWQD_I8E|K0#
zE?$bbB^#A#?y{K{b~4$|k$5m{7(41YIm}QdCIdhzlqPJbi}>z%x<6&xPBO!~GpvPf
zTV4P_JHWPolt7CW*B_wg38rp3;d&TSGh#ig>6wl;2zBeiil50lNk?{J#SWFL`>kL@
zo?|}VEj^Rgs}thSwdvj*lz|H+Tmt}C<xW=o#(~&yw!u??vV%h96?Y=U$a+g>xOUss
z5V-(6{u;wPa$I);%-#`hkRyaLhs*Az9qrH#_Lj$4ccgNV4BHC)zLp)C?QU7kcfA(7
zpgVar_yg@^6yD=^-7UKkC+Aiise^o{Ij^*1U)$Zz9Dd}~%(>)sM!PzFUpwsd{^_uh
zzBkwgj}3}V^Vksw_RT?sg9Y?d*fm&F0@l=Fjk3O%`PIsH{?>HuVG9mhMb{8&x{^&T
z*fg-J#iq3nY{$OL&v6{+9DT+!o&g{K@gEOA_G3Q=Kl-CT3g7V^-vJ-;As=G(>d>y@
zJOvN@{-<yMQySC%`t^U;9Mq3`)T3yp0RH<CFL(jX@jcJ=_@h7iBZ`d2#fD$|wO@m0
zJ?mNUp&$C8@RFCjgre9ryTC91%CErB|NQIV?QeS<{K=oZ6+ZmKKOF9w7A9W#%2&dN
zeb|SQ!x_i@kN@#Mfw#QnEt8}D?X*kbZ~o1{NxKwYic#`{8T)$mt6xpmy#4KOr}kHV
z!56~q6V{LUn3uqN-t!*#J74>?@Ub8JvGA2&`IYvb^Nx4E6Mo_~KLJnskf*`jPkst5
za=+)@_s~1cW}0{XI_Bd4^<RglKmF;nYvPN(@C#`im<I1RU;lc_)BpRw|NC%pa>_sc
zagU=hJnFVb!Qc5ie}^Le@3`X*lGh*kksl#vx;|>Deuc>6m5D$9$B+LwVgJlmyaJy1
z#3#c4IANr@;xwmzaC+9h{4+j-Xz+dC_kHlZ=RcozJ|Ugo{jPVyo8SCqc-`w>2VeH8
zSHXYt=`V+Oz3Uysv!D9OpM?K1;d|VK3w8TzzUFJ-dCz+uKUXJyA#bqnfAz2a718JE
zPk#p7e*2@~>n1wkv+W=KqklvT7bq{dYavW_`3X;WJp9jp`+uSoMZf)9zeO0n_j|t=
z9{bqG!84xuY<R&7o)4e*xu3(%dRZ*m%dU9z-`sQ0d*GqVSKvSX$JfGZf8r<L=38!|
zasPLp_1W;kzx*P&`|c;gqi??*eqf^S@4ev-@S+#J7#{uTyWj_Z@cU_;U-G423b)*R
zGraueFNd3_e;=Ok<MrS4&3}J-rk}ze{QmFJLJaPdxHR4Sr62v#9Biq&<ZV>WmL0=%
z32l%pLg<18waa_gR(5}=o{tiIM0TLDpFJDZ+RxziytSWR&(#hLgMB|{qf%p|@cX*4
z{k9v?%~8~DKx03HV9z}p)zbBtjdFBTx)R-b*kq9lbv?j5YskUpQiDzXKm0z;^C9yK
zJpx}tHB-hL=|Z1Q*2SGcs}30?8ZWNwL09tT^SM4+nWFJxnGoTz@p++buw_E8Tm38o
zGrDc2({Uov%k%cck^d_f*(wU4*f3``xQBF$ZQVp#_pnz{wM}~;8}zZ6kmWL2i7uUi
zyLWD}osq8gopPu<Y%{utx?Sj|bdR(hHdZ{Z=sNI=85@p1UGp)z0#tO-c9n_L7&XPl
zFGDLcYKARyWR;i4qjc@?RF$*Bc2pj98;{Vf$Mc*mPq~-J=yl1-M3-)Evec8uimnyU
z8Cy@+D7wyL^K@5iGQm|NnHxLcu^r+$h~5I6&kj^P&#f+T;kK2NSC1WL@(SnBrDZ!X
zvr#IKtsQ6{Cc2HQCyy<*v&ic#Z@#w!(CB$XSB}Oj*khyTULG~-J-WVEXTa9V<04&W
zJg?hZJK%XvDQFyaq{p%6(t0(=o}omxnoQ(uDKqpaYaVr^#f^Ee!-UsPqHK5MH+d>h
zicXTiX$A3Etu*gG=fp;b5HcH`^Eq(Ne{u+J#g0&3{Q#P?I>=6eyk(wS;ixRTyrSmQ
z2FlGq#U(TIlyg#Z0Y|C^A`@Uu5oFl*GO;ske7)9#*=;%f%%BrFNof&QoMRoaTgnOm
z(|g25x<$|jE_$rkqS$uHw+)0XQ(kfU%K2enw<F|)jV7I0bc^zmqk|xkBa5QWg|0#9
ziuWNWozWHSc^_81`!dTjl?pazC8MOzNHP}EOPPE}pr~!^oSg9>dB+i(Vqa;2(nQ5O
zht*K%3ZY<gJkJnhcPP@8ZT(JoPLb6B%mc(0gJ5I2DbLMT15Uo#(G<ll)bbdG=b5kt
zp&JB{)MM%ZFEX*0ZMqcki&%F&@8TlMz`H+9Ue!Sui7p&yor*oAbpXyiPcJ31468ZR
zr8cTzvz=F~=;+#D6M4-duPt45R|CEP>{B$JGhKBXIrAJH(S}XlLRM01!LUs{xapQl
z@Y0vO7%pux{FL)-l6_{+9(|{0i7pfZzk9IrAMCq)pnu-=u6L31_-B9SrzwijZ>7dR
zAK8cUiB1A6Q21Z}%j+qpvD$c@2jTS>E?k@(;ygaht6%KEFsG}d+j_;%_nqp}nxAuI
z2SDsVDg_RMqpRtX+NhNjz~vQa+X1xSGZw|R(|MKFu-I|>EpG=vd74=sbH#IVXH!An
zBz7Qso~w;Qn}hsLVDhT+G)T=9#ZJ0J?U|w_^_kn+cC}IZ%q4kDEYI0=O$xQ|IPi>Y
z+^}ND9~FL-bVevfQn(nkLwA4T0x{ZC){Q9kw4^VJxJr_x<_Y9dFJt5dm;o0IBZy7n
z0^&MXC=2{5ud$NXBD361^CX!rpq$Xo4B&tRqA)!xxi%4hh8yw_^I$Z{Spz#<kdT~P
zkqDo)IopND$X5lGw4KZSpt*ncZT{T$d;>0nP;5u==-5K@`_V)CsE#EeS`sXGe(2!x
z*joCBW7uTuxzktgd<_CpM<g!HqeB`UeQ3kC5`CW+X!_vghv4*dOXuqI0G+_-fT!`~
zJj1Mg;&TI?vUn{<k)x9tufyN)z;;?}ympO#zk2N|MR?=)hbAYvF4*IDyyw-c*XUaO
zuJ|<t9o`3>z}N@=j(>O__JNM`Ad83i{oeP!mvibn+TlHLXT;U%{&)`JMF%xnmhEms
zMUg4`9v#ioXS_FIo6b9x^KmD`9zRe2BA%0J;o$bkiH!>-N*8oq`UQ2B32lF9!i8f)
z=Qi?5qxJDTbdujSwcYo=_qk{D9<EH7apwV!9dV(980Q4nCVE}H`Y>U}-<02Y9@32#
zdyxLbn}=x(#HVT8#Fx`+u*n;vH_`<chVfs#5A{F&j*9@e@PgOkHF)pKmzfVJbF=`U
zdL=YJot*UdKXCuV_XmkyYvubxm*M^QzaJj^m^+CkSEhU2H}MO1Mcgu-hv#D7*q;?G
z7QSA&a(R-0hiO;AsoW3GQ`y#Ma8FM>HkFB1Bij7&mF{^v+1SrncfEVtrJ>v#&S<k7
zmVB1;U~c<c``>#u9JN&)I}bAV&_1ElSBu>TE*?6+M;rf}=XCeE)LhB_`7#%|p1DIc
zYtga$K6OQ&-tB_MFBFiqcosHfxwa#|)^0-)y6b0Jd=MuQ5l$RAwJiJSW^wq&LQubb
zq}O*o@K8P^l!ndSx7I5uBIF*Z<bw(gHrL)lDGM*<{uOqBMY^V@jS4D3c640E4mvg`
z;By;N)Ag*_hz?DAMK^E{XLs+GuAcAYcyk7=!j_fCjXWNb30S6Ug{@JN8P97wQs}0Q
zg1waq&-3$QThe?#xva7AuS%B|dyB2^uiR6y4X}Xi5cW_<aWC3|MqafY7TPO20L#Zw
zx*oW;#in{*?FL!Eu3t1FK3tDH!a;C6d63WAw-uRd?5jRZT6sP6L}_=boW~Bda^AH;
z@_B|$+Er%NMtOPlyOV4z-VVTFx@vo6o2!B5at{L^;DZMqGGWW*v;Ip3EGa;}<b&r0
zr;=7HN+bq4eQ?2?@<LNot<;0j^iLz_+eQZ(o=eda=p2h2F^C?tl@vu~C$}uxMA_j3
zoC*b@(F-Mnl7n5+5|KkHl@xX4$WB_HfQx?;cEvW-*j7Ua8@BH`KRiXe?0LZ|N(2l!
z(UUrwvlMW3*eoSTAotO@ci3{tRgaE8bl~rH9KmAP_MG#d+V@Fv;tJgpN0BSGf?d9k
zOh?KUJ~`MF+u*S!PWb^4q)>C=X&Q^8c@(;F3Y*fmVN0pVgr?Cz>?;XC*(Zx`HoA@M
zFvZ0b&0Rlex*SdMAqnLRUAg#oof5I(xys`pX<ib`qteY|<7oOsj>W-Y^E~%C)+uEG
z_BDd#3g>8JUKC<^E~%=ZgN+@al8z+99NU<SOpJ5viLlGUG|A&wuqED^V%Shu@LfO(
zzH&+#(X}ADCbsyNTW*EF@`)c0d3U9HiCoLV1?Cv8YA*oiSl7Jh%qNaqYoC$({V9Cs
zcm8Ae-QRr!T(_knrvxuTJoM0mWnpIEg^;n*rBvG}r5nl{?HEcF&9CyPbRWb<?Nyg_
zq1kk4pa+TBsDUHciOwRAGoCNls2;Y;4mfPsjy%Jn*oH0gcfB6(jV7~e2ZGqBB&q$N
z6d2a@WLg+^hE3#gaCX4U<G2^P;n=r~Mf3Dy8ls)-UK%775J)N@#78;*bC#V@k#@a6
zPR_x<6Z^>v0F(+SaOxjUGq{%&i7S~$>HLgqn|OK5S>%=Gn-Xy1QimX)xQ2yapyGvX
z?^)Fsc>3=RJ&h12QUG2g$^3;=Qp%3NoGW_b;e$KIPW!qOU9as(ZVgQF(Vvh@ni>t7
z**AeF8c3o$1KM^_EHNI%=A%b_d$lv5#RgDg3w6K`@4AcD&Z(0Jd)M><XxKiZ>k(|d
zh~O6cjIIr~HtJTd)xfAHJmCrCK*fl3#PhR1`?K&fKl3vbZU5*;Kbm*0iB6&u_3OXx
z>)_q@+yg)G{ohYf!H=5G`LpT!mwnln!Q&qPIC$|#e>CO7$0%&Fqrgt__uYFh;d<_K
zp9@d_un(J_E#FCb@&DO(e>Z){h34P>?cavCzV)p{&s%Q31Yh_yUjrZhyyp?7*T4St
zlyU|!VPyFq{J|f<r+@mV!^eO8$5M3trAs$aWICSr{OLQ|!LR+=uO-a*FD_DG-hJ%n
z%fI}~Y1}V<@r&SXZ+jcO`Au(v=RE6KOczlQblfABJMX*$p8Vt|Q=Of+zV*%Igva^h
z=X~~O!$16o{}6ug2Y(R${lEYB6!DII{CA)EneY{_dKG-*H+~~LFgct5r@!^L;Ds-I
zq16{y(~i;+zWv+3ofgjj+F$!?({ub5lLh@3X@^eicTS7(xLW~t7hvBSI7|VJldRo&
z=biA9X;I-tQy=f09OHlbr|*C_{=x6lP6Xr$)*(P=`Rx;bf9fY*Lpu)s?-QoK_v%+q
z=l&`6@#8=K<M2=a=|6>U_=ayF8r}2m_rRaL?d|Z-|M@>BKK|5C{YOd<^_thbhU5mv
zhK_XH;eh=3```RcWL}X5c+Y=2@f64W%fI|f6Q=v%Km3RPFv-LgzU|w-4L<6lJ_=s(
zidTRJIqD1Gul({a!$0{a{{+6`E53quJzSm^X)aCl{FZP1R`|kKehcyZ@t^i-@F#!r
zC-6JJ`@8U0Klzj4w%cxj@0fUwbisS#u7po|*~=)s&-YF8i3>oleC6j-@WBgT_?Jk2
z{?;^h+y(LxAMp_+|Brd>V@;RRAv-YfEp>Eh(MFxae)e`Boy$h8*E2oW{(L|r*&z46
zkUchSKc|iIHfYgCDK^)i`e=uaeO0=8+rF2vEYZ~mA1^(ZtX_eCE;(%6F7MZn8$apw
z1s^skfLhlK6z4mB*4&S&&i|frp66bc!DvqFb@UPG!3s#7CGT?#oxJ)($xTl}q&b9h
zogcpBh2}*9$fYQT&$k_*j=Cjm=}?~X^I>NpfC`%`07tT96FSWgPuuYVZ%g)cCF7eq
zIjg~KA4v;2|A%?Kf+{z?&~+=y=<~x@*mCY-GoEMO_DF$VOW23yT;Rue&N<ctRJrSe
zY#Ac#(dbTc97~RM#csLSV5we#iwGV%dG!xsTd1WV+nt6OjPA8AVU)MzeNKmR*B4z<
zY}-_CA!;M3=kk~rbje}!y5!|C*9B&LeT@ino_jlxbFS>bQC%{+c5>Ha>IHf+5S}Yt
z^HT2mv**>H*{Czy0g=Z_mx@fN)7W%L+SLwVyQWa9bJvGCwsa(S{n)AV;Pt#?2Xw5J
zjS58`$qqPdv1bSJ@mdPU?B`-ll^I<dJK*I}WujvT@FBX6oD;NqE&<H2>Gdq{E?tqm
zz|WtZH`<YNnJ>sMloL56NqYdHI5XD+z2Wb+dvo644J`jCrV_y|l$hsSBdKNKfb(e&
zWnp08-E~|uMIuuJm}8Z4QiI<O64|-4XXhX0y$|x7BKx`FbT50u7Hpw_@@a3l?@{ya
zYd(0zhSAV_P8&hH4zz|!l89bBf6qDAX#soi*aWLOfd!lC&YB&5nv!Dh*o3a+5S*})
zE*Lg0COimTM`@2%Jb0vgk)s9gEjj<gim}m)!Ky5fU|c%sN(cp;MD8nHDVKM4x$8A*
z+^}&pJUd#M?ubogf^vr^El@5yC~47R&kjKyTh;=l%=0|*^}G{6pWijlOYVB%x$Qb&
zY^889^IYYT+r{xJdC3(U^PFX3<*=bSq&&T2lAP>}jd`BLVOZ!!H35P|sOQ3SO!0zq
ziz@%S$RjUIY0mUP(iLefg@HVkMpx36GB%Ql{V0xGT`Xd3xS#<J8|g}P^P)97ffJ>R
zaJlJa?!Db{${c^-OE|vNKlZVYfsg*^moSfY5kqqR+j9t0R&6mw)EfTv|L0%BFZ{ym
zC{m9iBkz5$Eu85~8Of*G`h^!Fows1>u*W?1@$fhQ=Wm!COn1W7huJGTimqTf0j1l}
z$|HU!J1|oHjU3D35Ir-Mr=#Syr^QeAexx>P-`Xg7ZVf_rSKA|dJFpSQ9kqiw+j};u
zvI9xval<xB>lx^-nlQ4Xe<iw>B{frCIU6N*V8rbnAsBYk^L3F&t!a@P8-<H?icO2F
zYrE>&sJ4HtH30UMc5Ed(&}mlz6*3-V5!cV*Smp+iU(WIGb|Xu^X`VYLSrpE+bCnz|
zsK=PDD6VONOXWr#(fX`2dDU7Uu@oXE-E?yget~Cu?&Fa41^z~#KdAGNzkmgW`3Rwq
z+u*nl%&tqjgUro&6(U#Iz|GxfeK+mBV7o_*ask^}j?jEgA0WD&r{6Q3AG}_$zM(Be
zM=wTZqhnVi!}T10JTy6GF)AIS*wLAN$Mi2oWuv2gyWLe$*tRGw?~4|Mr@YIYA`qW7
z9I<_cBG=KOi+FCE{zXierq35K)r??&SR&jp8veH1Zl&}zYe`k4=|HeQ+(m%nz<Z&S
z{o=)o^x3dt-xA5Lh3h?Sc=03I`-z@|a|CquUy!`_c;Isb>4trv1NuaA(&KrQj!06d
z;9{-M+mGp%5K}iuO)%hC)-Dy3>anIdi?Xo5sWkU?9sY**rZg_ocf|MLM3Yf!_-OiL
z#DX;jly8()YhQNx5wyvEB7g9nI7Us&g?|?=a!Q{oly>I|$;c_?=1;bOg!IEj1YC@e
z!4+Ktpz|Mi;C{N_trM?sOt=7m<5T&-1OL?pDNN&svVwS&KiGz;U2yT`n(R{HKp&P%
z94qpK(&jWYC%;OI?T8&XW*^UEKO>yuXzk}&E`j<jnm#*wd%Z_!{%w!kq2p1y`TNQB
zOV6eAS?c--q3j^jxgq@yoKBEt5|4mBtF|+{eaJ==0)g-6V^PX#(?xD_H8-DU(ar85
zSw|l?4_RsVIoPpAfaV>ic5&{(fysXLPyrW#4)X_yr$tF$(3>F4Cjj)lnIJ&huD7xK
z*R-lW=WKbWeY@Tx9l)*vX=Cx&w7sEAHJ*m1G!}=2X6y?&)~oNL)w%vU8w)g87jx4q
z&wY;d+(h;h)*4F{q27^+>hqFO6>Q+;G4o5h$!m)ZYD3ZEdAo~-c5MWQM~)<P2+dej
zmjW7y3R|x0Yvkqp?>${=jqzM2>h`=~2fR^KY^j6I3}#1Ot7!WWr1+=fD&>E0z?!4A
z5j`8_zn6E8v(-|VMgFV28lmK_InR0S<yH0efbO+=4J~$~D>OV;D9#R~d98&*_E9Iu
zhGW4-K`4tE;OXYEH{V;^4@c|(*`U@AwAdS69IEz$6>_P8GP6;kF3P6kC#PtLP@A6r
zb6%|euX^zK3vEX;cM|1+k@+irv7@}=R4A8o*Y9(2N@DTFYkQC!>g-g<#V(xuUs$cl
z33VzH_mw*7Dd!@T-1Iwczc4uuIeJE3kTyK+*`0D!IOkZ;oE{=@&UJKWCIP>p{O*D+
zti*wuD5o~wiN6CcSPhH~bIs%8#73}fr2r>7zp(w9<gmtk+pCE-r)kfHz@!M+{#2dl
zoVy-#TJz#AVgW8V9MI{wrZhVA@;5oGFvs;?UN#ilPNH-vKl}=FoM+BszUGCzE${*X
zW5Yb;9MQ7DJmmpwkupvWQ{*k@*_SBY>4$5HookzoI`}nW9bX6&(OnDUj<N`jdKe`a
zIAh}lfn8#!Xk1GHcMzV7QxadE&{@1DnE-LBPcNVsxB%z19ls2pP`aEzH3P_|QTmZW
z*Nx_`7pFO5M+YbJFiQIfx@%#eR4J6HWK5EGpVQq~(O=A=PP-Bk<&sAq>1mQk>yycm
zI62DEVM;p*5UcTgayniZNan8zHq2{|U@7On@Ej$PQl(6?z_k>D<f>-6pe|7z2+a46
z@|d-F?TQ@NJHmoBD|nG}FAG-46XH2y-(kvyNCjxO%JU0a=RtxxCWmOG_R%7)(8-I~
z0&wnm{C>LET{eTIh|*^X7IyrN-}nu9{_~$t3jp*2JYubdmF!Z>l^sPn!rw9S^GAN<
zhbw!7&LMRSXqqi=i<S-wD%hUF$%Pa6%D?fYaOGN{LWo$$faNuEapdV1>6C30MW91j
zEJGW0Dz!o=1ziM6BSd+%SA)qb+OQ2p&vOk5uBE^`RnSIJ&5EH!s<DlV^ys3Xjx6#D
zvfvqbVFZ03C~q<Ig4JFZq{K#T6U!sw!oZ82ETB>jTW6!Nz6S9exR@<E+z~(8D6Ut)
zJReDyGGSx;sf!V7a%dCX0!Td!AUnW|X#-)WV1yORqvan5u(~9)fVvS~8+pMigpKT)
z;01uVKB0NvNICyUvX2`1&ouxxq%)_ICPbqXcYCc*uwfe|H34vuXB^S)>?PQMi&3&}
zvQ1%$Do%g0&*J3KnGHL<bnyZIu%^HY+V@iWDxMsc&QdGjgNHk^f6q-8HI4+_iG$GR
z-S@#qsB_3H%?sT|f1+~@`MCBG>e8OX>8pi3+sIYT`|R`X>jLyjY%)cv3O21rpy^%P
zoYigck;m3zrywtvSD)J3T;L1!3I@S~k>ltjHM-?o=lsvP%2{1u6Fa-<U`v8sZBuUB
z8|)sN(iKzFtc7lS`HuHN=PTxzzxzo~f-nB!FNR<G&;J=-@Pdzkzx2YtOk*VnYv$)Z
zMx5inkGlPKa?m0zAAQFi@L8Yz*;H)yzx>*-P7eE9;4i=EMI=i&GIWw-#Qi(o`7ZeX
z{^EazpZ@8eg*X4v8_7|QPUAm$>su);&2RqK{|Z0+Lq7!H^iAJHIJ8f!QSfme`?0nd
zjSB#8c*7egZ#~v9Kpvq?VSar)@ElChbJL|uL@TTtaFbxgK0oQNeloSaeZupeKfBkQ
z$E`yV$Bp(BcQ7Qm?_(ePSa|YNo<elM<JQ|A1y6nI)8Lj{Z>Dxjk2ih3I4xdi9&&wF
z{>rcZD!ljJd#8IM?IV2gmwX8o*Y#20DiatifN74fXz$79L~7=^bg=-I@13wub`Db|
z;f{sRp7?>gE%3md2G}R=u=v9_z7f9u>%Shp<y*eRQYqnL3NA)qv1dGX+iSQ~4xjZ|
zp9Sxm76zV2J1j22;~)Qoi6$3#@jw<bs8Dc9^lX34Py7@uy1eaeZ-;lk``z%`*S?l8
z<01so7Z(|DAqKwS3rIG|4y?Fd4r0OG0!k<4*GpddQlcxSHTu<wcDRUva)%N8&w0*s
zKm!v#<x@Y6QV+f3o<D<oCZ6KXhx?~-{oK#}oZx$yFyJl;tflaWfB1)l<w=vwV?V8p
zs&omU1SL2d)!Ko<1;=rXrFGYSsvT(U=WqraW!StO=-4QJXB(Dnl(+4<)KoDW)#Tkj
zi;c=HHnHs*@MyMQc;414Xl+zQ*N*LPvGwTM+E<!GOB!dzHaP!^w*bk_IrM1UTt|;t
z5nvT?{)ZO=XoXbr7HT0B%eNi-Tih(Sa*WUuqBdu>K4eRK$x~i!!4Sr^`QdeI%MccF
z*8^C4i%r{SIjQv_o9eBDx+7v~>);Z$I%jn#+wa^2LUXJi!?tz?7J77bboX0VJl*G8
zTMlm>?BxRAcX;k2sq+zRtxPE0@(jD%GUT_$cx>6pqhgOuo^nUG+`+z#jg_&ISCHJd
z8TvdA%em|KIlE#bxrtsXbd4QsI;ot=gp=3MljoLh4YrNj4qCUTE;fx^&1aCum8WZ^
z=Y2b{I$#He#t!)0^{Pusw^m*c>Czz^)xIb|!}C@iDFQAtwxP9A0L2b8y0j#({$X=S
zUVGR87VN-+yv}sV+o%rR7VT#b8}#j~(!I6qdBH}h9cZ@>w(_`SqmJ6o4mLV6REyw#
z5rclaft~-}@vrMM9HAg<JHQTUnq+RpnY3PsGgBr*BClJFYz>?jnw+5$UAkV$&K8Ld
zMdvFeff%JGz#u%6-5^wmueCvvQ#zP#<VrsA-V|LgIjM2cf}%ww7dT<hoCbv)5|$D}
zc8P6^(|I&(B^UTk9AmsIksTbGyI!$T&VO{`rd(~irJU87Q-x%uTVT2c#g6T()eM_q
z$LJBw$4&R=)J%EgqNCukjao}VcmV9U%)(!^N}jI7Wu>e1U2@mU4kDSn+XQ&fT;L;J
zj@Yzd7xuT7Iy%&jXfa|KwNH7z%CcK27+uH2OL(@+Yb<nSo<rUDo_7Q(-Bcb2Np(ZT
zSu>|23V|0<_;ze>cT%L8a^pjg1skTT@*H!l<HCm0jd`x}TJt>U+!}bXhIqEp8WpTp
zicNLN>J^wS4Mm=nu7=ImsMyoXK4Bwy&4uTP1@Td;B#=l+Nzq_D2d7J5bfGo*Fi#JN
zTj78Dr+>!f7A`r|b)JPXgD-3Nvh+RQ^S{F{{^BpfZ~o@%#kQ11c^_q~FI{&(<!Ka|
z`4J!aLfT&cq^EqyBtsh-54wCPZI9G4yXDqf;okfAwtE73sf8%n4&<UMW7+9~G{6GU
zC=-LT11zrt=`_~o$U*4pbxCbblHDL7*g~nzPxrc0!0CCTD;bIn+IRFEQZ0|5HcjO<
zuuPCHC2;Z@Y_|y4sKA{8rS=EgsAxP_U0V%mKUtRo736KOdAhDx&v!!CL3ZJ&t_>6K
zagi;F-c#{ll)t^~REbh=V9z^(R<XR7;-VcD{kC^EwMn|mMxHaW)2h@6(1q6(>FX&K
zl4lte@u2g1@~Y1`N)H!#ae&{a0)5VIvOpC8C~x8578css#Eo^>JVD5ik~%X2J(E=D
zDc~ff>cXfK4`62!eG_j;Z2D0jhTM79PWN}t)@ptS%qt(A8(d!@1ZboFeLIc=?de&t
z(f1Zx(_YOtwSWKJ(Ix2E6pPTUrK^7Dr%$0llzaBD1(?r$ZR{QFq2U?b&pEnCXG2M~
zG)h5Ybkt)?p37G*!@KW!m(>H%dut@M?-$#zT|K3LFI>Edob2GRp;P>Q@4F99CnqmP
z^#exspR6b^JQn8F^EcB%!L7I5X7AthUM$Zktq*{U3F^q#T?%;6^Gx#4V^Lnjh}hf6
zehNZBhx!FBdW|*_pJlv*aI|}ovvR_lWHE}Yhw#n<`FQmFIW@saxzw=ZvzQ*}NFS%M
z-~xiCI@9!gt*+p%Hr(NW3oG|d4*b(;McUIHZRu5U;^TAe;fbDWd1pg<m0g5u-bpd_
zee?A9)Tcg`7Ba3%G(M)r!RUOwxAGVlS1|uSVHIb#mm#l<XoJydkNw_y>n#)R+u$kF
zLWw$L@ptSWYan=eY~{%4DmsKb#YGL|)g{>}p^JhQUuBnBl>1_zC<k}neK%b*%7O*f
zH^Q;w0+1FXCM=%r&DeCTv-Z;1w*&4_UAMNz4)~+(yK4vReK|wxk*;i5nAb?D>K-iE
zC}{d@$FYPxdTh|KQ8KUX-8*!!Rkddtx@h}Z>3Yb%mRmZF^?8rs{LX(oR>w{VP+sc0
zkqYi%0(m))`9WME)X|?yS6I7FmX_M>hw46uwv(KbZiT6B-#V5f*k*JxA<{*d{saWB
z2fGu{Ls3y(Hgwz17UimwheJo`L!JHJV#~c7b+8$qlr0TG56Npgow3OLjzP^mu&^|^
zx_v>K|6Go+giR?iYj4mU6B0PXSdI(WK|L-!K0mf&M>y;6CT}fN{vjW+ht28p{u(yq
zBd98QUBYJf)|~^;1$S0Ea2Q(;<?(ZDr^-^_pbz-EeaW6K>f$+$&;dXW<PgoaoNbgh
z!cm?v_6m~ag)Yhh6O<YNgQj3eS)6jRc)ORJ(?iKaPK#$N&Y`YFfGwSwM5H4}$Qhiq
z(5|N4P={);sFJ~@cVaAT<26lDbl3s}D+F0#Pl{bq)QqWWx3n8WDN@<P#tVPZ7N#{N
zk}lNgOPKCTK!@xgi(8i4Ua&!M`QdfZaR?Ggrm571Lf0W!Ed`}B^{0#E17oF{0h##}
zsFs2__7v;Lg-B_h7`Pp^VzBg19c;m+b?ebB$O7uV6jk@_me<^2vost4=0w*tMisU|
z8JfuXt?5g8*l1z8M>oNiJ3QAN5>fin!sR7JNG-2fu^C-6a53dU7QeDvAl1GKHfZHB
zl$11Gx~i^W8ZF233R^7o3WCFi?zKVdJP40TCICd9C6byJ>+!PM{$fNQE&@DD@*1OY
zKuUPJ<Dn@9e)^|>8h-Rgf0R#+C5=uym(`sBx88ai)gSn{PxutL?T*{wr62n;ik2ih
zH2HZiU1XbtK7Vw|KltFoEECQSl+;y@uG!Ib<Y@U2T&;zaEgdQAN|KaK&W0Va18Soz
za@fgZu~7@y)WP4#BLyQQmu}Q#qPCx0QzeLfEj23W{?116f`6*y5$R{C{6rq9hD8#+
zboMj#<W=R-Y!qX|Z8uEkNcZCfC=K>Pd%5QY)B&AUyzoNuOHN$g8IWjkV(pw>>eNE4
zJ34PAiwkOFaCZ_)A<2k{8Hy!BAIzbjs|BbmQ;oVkgMXFRc@;T=!UyLJ{^-9liA{&%
z*lBYwbGocD@6biEQ5@}U?q!Q+)>;*D9^{2*_JR_9$}x>>RXtF-8(M5ooQH~iFW6S+
zz((n@nqZ{1o`E`8_p(FUJJBt$FC}Y_u6-%6FUxz(s)?%Y<+MJAEjw(!Z%;Qo5G$ss
z!RydDtNmeqckJV<zxu1-+rRDG$Z3nu2~AUqQQR0st#vr`UhjP8pOVw}iBEbG+a{-b
z7!8j3@;~h9&wx+(gio9t!*|0+e#8qXqWinP>$~9bkAFPbDXc^A?B_fOwx_4?`rr5s
zc>2?yPN|0OpPbX!Cq92L<qP6PM>3|G!H9G07mr{3m0yGV?|%SZ_`;8*i0^m3^PNn0
zabDwrHt*`gmnR4D02ePz3l8EC$7pcO`H%O<9PubSZ+z36;6pz2LwV5wN@VuQ<dD}z
zY#iriU81Ff;|bz5Cv#vY^hdtn1@!gBFMcuU&rOo%W|TRxk4C;Q_48Lh>675?fAV(t
z&WTRA<KYuO{^RXU2p#yp_l7sXJ@0uBy#6<T3!XNO<0D@1e4;nfNaY5{ggnIgz(>9C
zg_QsQMK5|0;X}IMA`H$MkY>O1OTR>O2c$RFR6w5m{Of)J-h1Es;EjLy`<0I?N{|>A
zI6i?V-~9wQeas!SW8)(~@+09Zzw#?-To{>+sfRFsKhYM%K8w8Kp=q7GeBy!p#d;5)
z_GzC6&zu${aN!4ctjuiAz-jpM^t{2K4?GX+6a0&R@h=D)jvwDU-aE-Jjsf|ik>b9;
z$`0gC;Izz9qO${o*EP{2d)Br#3ZSx4As^0N@9luv#|j%jWk-U?-my`Y{XAl$4%I6-
zWc$fRX=>!gMr}McXWMl?6dP=d*qi5)r|VgsOMWrS=DDro(^T>L=Ml3708MMcedcQN
zqj~gc>!vWK-J(Icl~b~av^ENSCx*mFVCohOJa4OcBBK<LN-i>W`r%ZzkEo-d-J-FT
z9P6<W5{gzzyb8Boz*gn1hfZF7j}1Co2ltXIG|r3LC^ld8!nWgjY)IEwUSO*n>p5Fw
z>ewjX*5$ZtvD3C3-L~k)S|WahZmw?(aBJI9IdE>PJoh=)lh94+T5Zb_L$XNM9<~O1
zQ7(CrcXT~9x&`C8ZOaj5^zA6q7EviYU!-fQqrQDR$*aTO%41S&Dv#1$VQX~>pqAI^
zPouc?;p4Fp&pUK$v1OR+Qq}Gr7Km-^$b@b)v|0;7cb#0!u%%4VaNu-Jv7BnY*Cly$
zJa2W0=!#p|l&4Df2HQ#^&}LiQ67A8h3UFnpw`!rG?$UM14xGnECC;r}<h9<Omjs*Y
zT4g^E$m`60F6dG`Vxv|=ADiZN-cV#n-+msmQGR#FAsfXGnz7O?-a6Q~QG~70C4DIC
zb18`(P<hP_-SF6)!A4O|WIRb$9rE?BH~ob?ST@T1MB>8f*xNS8NX`_U<geFk+cE9K
zK$FP9cuMJEkjHyYFQdDU_L65B9ZQ&YW!$-9O9MxNlZ{$)bSLHH7kQ?_o0_kE&5@@g
zrJUdbyUAhWoYqnk0BzO~3_IRyvyQY&VBCtl5;jc}Q5>nGI9jRjCVLpU?;bWRW(iXG
z729`AH_A1SmtsVmVo%wy4GngDkwhmgrih`*x1{0O%NAkE!@uVUJIbR!1WFY`*jD2B
z-$@Z$lzrJ@0g^HZK~XMm0OC^=y(NdBU}Nlo>p0|==Sk=u8*Gx=X5_JH4tC02kJp<_
zNWs!$*hp_R4OHOV^=O-SsOQNFn(iu|XOjt!Ejpg>Pxn^vnF~ViOB$X%Ism;)WJ+O)
z@<=-%c8=$Ri}GF%f^9Txg>FjMBsBqW&d0ihbP0kjB~Ldeua2%bHsXWS(INYZwmnWX
z-4(jRAaolA8_o{|yVY?rp39=dZZ9v<!Sdbfi;4wk=s)BXEly!gukvqy;0NIQ{>{IE
zKb&5$^*WT7k9y&Y;Lbbmf)~H!6X6MWKb2DXAPCI4i}$#6>1J{W-+lK}C_3@<+UZ1#
z9i^(l^R7HFn!JKI(~CTU)0JA!*9~3QqUR)!1KTVrsC&ve|BdJSvDkrKnV*u48fB49
z?Z9p<i)O&`7);NTwd4H2%cIG}R%C=^B0C$!*s!LG%A*!AuWXd@oUhMnqXMU}B6(Fk
z-*XLs)<&(IjbiMPb{MdYij|G3?5C4Q9vkmQ;$60!TlvCfpcij!!`OYCqoLy;ZO#aq
z4lYu=&FN6rMwZ9*pgT=Dq8J@7Tmz+Szt1$k+`)y3pC@achv_@<AafIN@@k6~krz<-
z-MK7;DUaEi!D8=YZ+Qt<zI|{mVNN{OfN=EO1j|8Oc;o}u2G`yT97BfW5N7w!?tFiL
zAC1m@?ql<Fqi%b1Z=W(VLp`?88&?R1eF+;yqsD%uZaf3_9$iDzKD%DAN#8amhfS~5
zcS`y$zoTOm^$hL*U3WcZa<*Orjk?C;agTdE=^RE<qi%0DC)1+9d+B+C5!aaZMjdv_
zKRh3u(6}q-o_D`%a-gr^fu}u{9KM<_9_`DcZhI6weR8;C${loU<AKikH^2GKl*R^A
zx7>BtUF1Z@-1+aE9Q@eF;~w`o!u`&7y>q(XWnSEvzGEsJbdqC=AxyKgnf~s1_dVuY
zxn*+xqvIb_+u-8o@BZ%ZlG7NS$9V6()Ccf<2XQv~#c}+YT{{SE@f<ATiwhiB!vG!8
zn1deg`)3%@zum%fp8agHTdl0?dmTF9aZzJE(HR#YknUR703-MR_>cb>FsSCPJMWwp
z6E0ReHuRq4kHhg#G(kG)A`YhA!E-PT6F$4}nNABN6U`9kJ<~z}%FF%lzaJi+zI&dM
zoKE;Koec5@X^P|2S^{`I@)!HS)I#{)h%{J<)4kO-<O8Nw((4eD((B~pLfL_!w5pu8
zl1^RZ4*x}2!DrMvCO+c$@0j?yo9KpoMgD&1Bxm^S$AZ@ULY0YrxR|8QYO+gmKebV<
zeXs?Qo^4YbmHPp`hxEMH?ssMyHaKDj8XHxgQn%0e3kPg_gRO1z^1Nu<rSI7}YCk>p
zhQ?}>dUVxa7N1)SbRiL{G*HEh10=3z-q1+_q&H8q-zmRo&NE_wH>fK3LJ-a8-44Wm
z4hyrM++kn;L7)3AEjFkhHcZgA)4oXA*g6mW9=0XHoZ)Muo1rLit3II_i@(AP^&wn%
zq%IC9<MVv<nA}6U<*6E?9v^WFPYPjivT_ic!(fAHh#Pv?9hQp9?jafE#&a&z*lkQw
z7vqp|0gnZst1FAM{1zL`<#iETdn;JbIlZQ*lOfFIt2Jy350l)CjkkA}@43Rp*q7wB
z)v-lgJA$ocs=jIkH%aQz)eL+W8=T1w9M^vVXT0F=tsLggy+S^4_e0oPo_FM+?r3fY
z_%_Q0ZbCk=3v6j30`m(p8???{TDmP`_Y?h`^CDeI9;d%08&%G#Zck}ED4w&$zO0rv
z)<HbN4=fWnf6$Z&JYgx3(G<D5-CIq7K^6#T!4$Y19ZI<6dGZ+13lWT*M;{A0V>>Pm
z(D}IV7qSH-;EMzD4_{F50ke{{8RQH@r_sRa!>FJ(7JLnu{vneC6rG{ij!wJXp7ZE)
zZeK}1w&MGxk&AnU&6?9mB*wCqv0=&$ABBrfLCX0bB^?gcE68*&lC6=YQwwZbzHN+h
z1&K(>9B6@y2S}Gdi-wpoM55!P)+gAL6KXZ66P)RaeG%OzXBXwB-$>NS$XK{QXJop{
zf+`oM-_znQrBVUBKj-SDP=>$@?D%T0g+#ZykQdhEq)Qdg(Fux0Ucna0iB2mi@;frm
zhmAzZB`uoH*hj)v3YBN!d8GOUp<r8SZ~{NTHPspB{x-T2&lA<VVxEs&uYeXrCFK#(
zmD88R2^%>UCwal|W$~7yz4p7UE%+;4@%u^ST=ymuk{=%Bjd(6QZTF|LFdYVaUZLNS
zQk|gWV)QaPo^25v9ilu|tPzp+TZn6x$1L)_5^Uq1Wr7Ru0y$urFP!WCn&i$UXD|B6
z(f6C!F@<umADOO{o(UxK49a3IV;g`oDwPOXzlA!<qASY#UV>rp&`7A?`@P?TpZ%Gi
zq0c@A!lNdq1HM4N{1u-AFL>@#;mVGAb78|fIv%>5DYBny&;VS%dW}xtIu8l1?PO6L
zX-G0NVT(A{4e6!Yq;=%n^(YgA$*a(HauQ)$8BCd_bRu1oBGv0*Bl61k!@3PPhMMQ-
z;FsvJfuB97=S%~M%A?&!958^WNnQg6PH=FRVyBt_giY)KrACv2#48XxkvM(N#x0to
zyavX$_qs&s$VS^uLe3PDze&bGQv<PWr=3*O|F)-6%sX(s0+tEHwxPavV%uY2JFycw
zkgkZ0qGz$#{v^8;0<F&`UQ7#|pLfzcj%Xc(uA|ydNxhRf54@$6OT1etih~~UaPYuD
zHVK_Al&*35qqJ>U?;uSJ%ftq*Pmn<)F|$QlQfuN`BAX4{YHCj<w|~xB7@B7q{MuJi
z0_n#3@WDv~_}Mc%Vt9dW2YZWTZ3E19k{)JlDbnV-mGRhgB3CIL$$no_cjh|xG6f@H
zLD55b_4oTGcrLqzr?CXbg|p|Z*1#0P22ka!*1k30HZSrHRj`p_-Fa-e1fW?^j1)`t
zL0&CgHwzKJRnBTC!A816!eg6ZM{Jmn8=nylTXcP6`WOuu(PxG33j6d=e>uGLV?GYP
z`@8-zMQ0NarnXnU@(U>6`<H+Dm(v{auDc#P>E(KIu--wbRWMx)@?q!dIG}U)Q$F=m
z;kSP4x8OU!^E=4V`{V!N$Kg*Lop&_bkN3u@TD7WHYqx4u(N@JsjGCX?6tQ9}C1{Be
zO3iA`+O=X;sS&ZFVp9|)c0y{8*fdtv`sMrkKj-8m?~|K*pZna`Gk@v-mwYV45!iKD
z3IC&Os|KG{xjIm0X*;rR=eXRRzi1{K%0n4JJKqGJC^XGq_kMRq`0CLfcMqqs<*Q7q
zyxe}F_xBw+z_&AJ?oh;Mt*GwyI9`zN@=W^g+wZS@KE0a+hj5%vujF19N&mZ7)K`~(
zV1ob}+*j>W+%^AxgeEM?C?9a_uaOUk0w*hMHL<Np7vGa2&qQcXTT`icix(UAA0{%u
zBTm<48^lBV{!u$y$E0u2tWET-A6;Dpx6!ukowc#Fo#wQ|xd&e?mWFPYE<pA|<;YGD
zTkVrx(CO!6G5^5CxZAgn-W}8jM))y~+_|i6CxJzRl;~~$7IAeq&z&-pzk*BQz#a)(
z$}7Uv@zr}deWyTNeTP~cXBL&hpMo<(ymz|V&kq}f_6x!{ro4;)Es!23oYC*Mu)O1!
ztZX@w^bS|~+pQAieUagPxAbCCBKN`i<D?KqNx?F{p6Cz3dm+;2WJ<)|_|dz)$@%}9
zMaa*uJ%>{?^g!-i>TVM2dH%V0{x!Qla+fqEc4O+R97$YyEmxSU)py}?=fis)gLaob
zRui31UpM~#Cl<K9jGzcm{%61t)T<etH)0w2wOZfzlLU)h$(c~Ebj}Lfn|G%_UbO5g
zU_+!vsktH_N#5LL4D18WQU0$a=++*PxjCH-S0skT!L~zP3Fw?w6^{}T;!}t(n;h6C
ziUsNUQ_NT7UVxJLe!8o$;LDH*0hBR@0`Q;R^O`=zz0j}&a&0!+GZ=`~_cT=pS7|>w
zB#XU(XSJL^K_nY2&Xnvkxa<x3h(y{_^7jbe3zdCN>D=CVN@R%>4})^>Q}-%-sPJTl
zBbwWqFQmS=oOOc?6%u=VOyuJC6)ISJ3x6LeW9EFK`&M(OJZ;zAw-|Vbsgd}mSx-KY
z5Sol&aDcY8&MJPsfAvxqx2T67Hm?rzMR7q#4|ofjB}IcUQjR&}4Z~M+{nT^z#UF~y
zrv1m!C+pmN$45p*$%T<sUHqGhEbm(jCCF)8%2HF;-L_Qg@fm1F$x%PQ56E=nAI`0z
zaxO?ac|)HNy@oy^gKDl%`nuB2csl1AP;tiENbZB`o3^@}d~m_=`w$<%gMjT0xVt#}
zw*KzFiRzM(nec3)$(a!UH*f*qL2hG4mjm!-Fi0f{AyAXQ6W4VY6IuXG8>k@F&nn_K
zO>oRc^FATRr+i1$`RxZXY+n1tU%Us@fERpMN#8gG!xT)XGWy;c4xc_d@Z6hZ?WNX`
z?NeNf7TK8bxD5DsIPX(0_BGlF;eI1-*7hikA<f73;^FAP_+WtsI%SzLtf*LA_>7z3
zjSo=a-E|(V{uDOLdmjwR`xw;PQq?Ov^oB_P75}92Jyh%3yCkXT8^B9R;#CL!I0ACu
zx!gse9~Pq~*Nc8x$~z{TX0uS5239dSRC3CMIFTQ(Cb62fyBFpH`On&tj;?Sd;n2oI
z+<CCVyZPnQAWIZeO0X@w%^lw6m{kCi31|4E<_{mn**KeSaDPCWu&JV0j~`<<Vu=x@
z6>H}L2}B+6BdDeb>Zi{m=tH)8!DZCwxqmhM2)uH;hnv%~IFAqV%9X-#{Ox|Y@2b<J
zDdA2-W=n?*^j>v#<8RbzEYW%iE&~4*!9>8NT;*+gP^A6i4$dO{XWAq+@=0lV$j8N1
zXDKg42lu6Eiw|-qXW~sk!b4vAgm<^~zr`pX*7;5>{UMuusmONUtBZYfKV@-HJTdey
zgYqrJBLz+6gSxhxh>PDuL+Pu`1-`we-Z*8v{)*A<+EYQo-&K}XXV>L5xN(ZrjhD3O
zt^)_NgWsf0-(Ys7c_6%UU59idoo|7<`%Uk`(z?f?O}_3{m#=j7z`--mw2hhUo%k=)
z4v-rUlO~YBL>N%HbhWePymM>JcATyMAlvyGS3mFU$X7bRq-+KbZTqZ-N)T@%7ROuq
zl9r~<IIyx*GvgIgg6B<*2Q>Q8OOtTg7O`h>{FHo*)BZh6YGNuP6L%i=gt@q;PhB6$
zd~J1Ki$5{AR@U?_pUeB++9i1My4G_DEn33AE(>@4zw@7wwR!E^pu<A8e=RMeNe>xx
z&Mk|h3VD8i9lSolNrWF=JbehbFr8QbO#N!{ES9<=N)Zx|R`=B>>=x%%9OUf5_G}_v
zI?D8}?;3vl=0oF#g3q9&%j!?o&8f?tUn$!Ut#fbk;%GPUXQ3HwTr-bNt}^<cU#|B%
zB*Cvn>2-#D=E%n9WGN+2A37%;e!n)ysHccHgMf)9g7>?p4YNUnD)wmPg?aLi&+Q>T
z_m`JCWb#k-V%fEcz?ro(@_>SnKT6v9>`u$|@XcLHzPa`IUUaUuPI_cB-M+k~_s`_3
zwEn_GT1D97@*L9OU^D&L4d32*fJ2|nv6%G#FgUAsGfI{DyZxPm*5<Wdz1zJ9{eC+<
z+TrmLtJGUi=;qbZ;hi}C;uqWu{L2yVrP6)}4OYRFkM%cFerPS<9^E*fcvVBSQOEkv
zQAY@tt?bv8xI7B)xRvy$qisJFT&)a}bOZ%kL7P%vFD#wZ<zGO%q7T2nUW^KijpIqm
z8E*Ic2YuVuCOUVw3WcUjWP&H;zu68P(ofY};HBqs8)*tUN!@!NC(6~|lt`R=)3@`K
zxtvxef!>8;@AAvXm*3^Xhy_r=`I|BWH>4;8cZ_>S9#{KJZHf;p@348krlcXGSMD!(
zse`t<>R%VaG(&Ai&VDNGcJ+MR;H^{%d)pqkcyGw;Q3CrM?c-fxb-DqrF}^>7Qonlw
z2df%8`CeSv(hipspY^`T+uQliNkz%<u<mMZ20Nf7OZ0g`OQ<=PnfZtoQN_{lbpq=0
z^$B;a4rdZn?wTIU`u{s-j`Ru!KK@BErL+H*>^4PU-j3J)e!l<h?mmmX-$UO44%?0I
zr(@LL?<;ht=wm!YKWQn|H`NXkkkY9bQjsA{|Fn?BLh^5F&thzp8{ue9536|5eHWS`
zy+eUM{^xA*#hXU^eO_bAO9HovkM(o*|6V%*)xg<@xv9vH?@<1EKP4bf(&#IZHfsJb
z>w>K#`$0a;@r)~;J8R^*qky$PjBJoHfk>n0$a54`8a3GqJ=!Xrq?pxgOMaP|92A-*
zl+w{}=Yu!p=Yr3TK@#@zOZnXX0WkTLgvUHblyy{1Uv#%-#0s1LtbdkTO#$!TMw2bc
zaJSDbT@ie4o@oy$>S1T9cuM)PVHhxm&#mU;#gYF)vb{QgQTI}(1nwuih{4Xmq1H!;
zpL?ewPUf@nb-NTPgiS>7uE53}XJ*W^*q6enOgO~8gzkW%R_u9A>S2LtjKJyrNcOiS
z+Lbf@e*dmx#1#)G+opD$Iqbbf^f<li9@<Mf3{E?^(t0|F=Q;>&KVK1j<ZnyI3g?Jv
za~$7l#;bCAuLegHF(|UG1%G2&I!k>Ugn1sE(bj2~5C2`L-UvNT5p6A=j<#wvKi8tL
zvYB?0fJw%6hHT5uT5l_1xB*GC4#jOk%`wMb$#i)+XEzAB#HU;zWdVK<^En8Q;k>^@
zN_0fxkyL~=vdcj<={{T5-&ncw^{=D{_y})oe7aZ6Hwz4?6c^uhkR>$=9pp5+V;zy>
z-9{gJNercFJ3LUy<CXkQQGoqS?s(Jp)m0AF3z{R+US1`E+quadVB5FaZ-K*u${Q~h
zvr@;G>Qwf07o}VGPxsr-kk4njEC!uuc~qaeqDpx_AccP}a4};YiyvfJEHq7*Y4WgZ
zfOUQd_E+1Pk{#qvT(<^13^RKZK{U$GYeskf1AOmcR{f?ul8K|j^Fmzl1?YTR{tdXn
ztN152Z3E3O<_;F<_S%1m*ObvvXw5EOM%WCqXlTD#*EODhxC5%zo=v{j{>E&r_t4@a
z+9{&Pg_=u5V5TIME@0m88aD7A5Y}7sa18?nhW^1eEN2oQR00=f_TKH^puSrve2=Yq
zO083|vz3*|+H>`3=fV?6kMoqX`_uz_F86z7@&quaZU3)>5tI?JTnRBTHOE>tM7jlt
z^WCMTe|S^{Xz^^c7mDFqQL?L{{1tga2>>bZAe?3i9?{!0I}8e!NkonGg;EecZ?b=r
zfzqyLul~cg@M!lHkFNeh6D_;d{hVLYr^PDqyJiXsMZtqva@GjDx!5KArV#n$*4p<<
zb9<;YF=YOEZ2g=?Fn)%d7R(_v+SfL_to*)JTMm@5sT$RBbnSA*(>t=6|KPSS3G1IA
zcOu|YTGEai!zYgVee`;8a7s7phI93xJ+x)=e<xjH94AR^`44vxI`97DG(}1QxKDH_
zW}Y$BiN@O>93Om6(CPO#$m`KMJ+8z1TN!Ol``>9EE^NjFkLZRYnUW4bnde>64Tkf3
z@78Z9vHgLUHM}os@rGb?3uh<=0j7z+&#kFMs8g|NPLO-0Go3yfM#|q4;(g4u692h3
z5{C}d4hADULo9zns;%XbuXcm(RwiA3c{?L6=@l})t9yxKBm-Tn?H(nqSonks<*jJO
z#es)>aUPeBvxw5Bt;z58_)iWzTve4YtPbwxOTym7tF<i-{8We0Iwq}o4)weZk1xy_
z^IN`0b-;=#C*7U$a9dHtClK32REIOH;Wwec5|6S*#&0eE6mLSHD3m0vj=>Zlpf$7a
z4gi<vL|8XBHw4Fcenh5~f{4*OMNM5(10KVk2{*(qiGI`vn|<)zpmW<v3G&v~8cN%^
z2q0~4%uEVT$|h^)gY#d|Twi+AbHEIk6t>eXEb>^I+#BjLNY}|MnA1YL(K=3xm~WUY
z{k&{z0R$<Bc*A$OBu)8UVN6VDD$K<4>4>8pKB(%+o7Y<l*RX{pIpe|&3eL2g+Y%0J
z+oK!Vn`6U-vYSaWWeAYebZ8KY*8g)_e=%m-Yg^rJ$&;V;Z?lQk!DsLLB-pzL1a;ZW
z+O=rqJ7U_3mzIe~$-d^}E3^kGPG>)5Ddej!?|TbbB>KfJ_2!v-EY@h4R|6halYede
z1JQ-@cK(l`xrWw+Kk&p?K{sjF#(O0v)2>2#jAzp-La{sStF5Uv#}@haA0B$AXwmL)
z&hf0KZ>B|&v5${8(^tSnFD1EcS6I)q=6@n?EYlz7D#BJ<RzBMWYb#uyHr3C)E>GHd
z>Tlb@UG9m_2_I)Qe()*%m(o{{(JHhtW(U?t!&M^-v1H&AzJ*C*dO?6HxGI)RzXA2J
zOP;BLXD6crA6+Syh(AL(Nxk{9wbJ=J!G`ECzRxR^$C{({7YVp^+9J7e@6%G6xz5G|
z(gzv$)g~>TYD1c$!c~jXLydUP1|N`$3zTOOPVOetzFrSV5rp8Lfca0GA{C~LX+YTG
z0S}4?OEG8<L&CTMQ4wPrqI9jdi;xA^{_@kw^i=ODIy~?fUaJbM`lP0m{fWd(dDS<G
zu=S;y#a8;}^;-iH)7s??pB@Ud3`k__#Q*p9pG>~`x38D$3GW{Hs@WG@=l>rO<i^!@
z{)G&Aa=bJRWtnW34(jjglxW|7_qnZlp>?lSi`i?!?^m3mFGrfI_<3xBDVCMT>dG(D
zvvn#@#HFHv*fiQubx;7Be=QZ1^09N85-wumUZO-0>+OXJL+@872kJ=AdK3z2jgNm{
z0S-9XBZO468mMwQH=XJM?l)WK<D{t5v5$50csmvQw-UEIV#gH=6J~seugusH<6bPC
zyHNIN%2aK*Rym?V$}=xy2pQU|v&mMlBdU~<&911T<iOLQzRgyhY-mGePs=5CG?pDG
zZz+y9YLlOeHYPqV{31I-JTpg+6QsJ8#*dsEGT=a`*$>6=IBOOfgM%NMm8V%>6|Ryw
zt;B%9Qej|+JcM;8=wsoH2VzekymwbymF#f3=XPnue+42!z7{A1M6_{zi`371806L*
zkhokJXK<*H8LjN+vnbQS`F%ys6P$?eDhR9d-(V;{c=e_#Qt~?ZKIGrn;m^BK+}6uw
zU)nUKf_9o-o$QT0Fhsji+T$x*)xn<>8fZ$WlmAEoVrJ)gzF^&<&lp~3u1f7)kD|#@
zu&G;7$n3$OXMvM?F~9dFzf;}-EV`r|SYsmWr{;^6vjS+&&Khy+Cmj?CUL40p*GRC+
z45ec2fB=Zss#$1pfU;=PWCX@WrdS`zMGxgpLhDx33vV{ZFullJkfHXSAsivR^4c2k
z7q=klNxKmxH`Ce!xQebjxx=}2Za&^{9TxttUNnhsd-9?IvdZBOv<IEwbgTzcGmw`T
zvPXf;4Sa5^tP@(Y{uI1P5yd%-ZTmKUF3<RvZvmRxaSe9>ufW;)<Wjz6eYUX^wxRIL
zGfgV$;WP@7pcpl@T~%B`{$O#pT92ocztZpw(p)7)Jbn0j;a{R=lIEQc4{jDTPS6?U
z4VG=cXKh(rc-ubx7*LPflrHonmL+bkjBEiV+}4>MefM`MgH))kyc_qph+@h>$=Ufd
z1;bP_V@wjNYy`5m3OUngg41Fm_mnZ%2cP+y+rd#y_(T59A$qfSI{}8c41=0Y<zMUW
z5Q@p%Et1I|C$qiBSp;?ENaCcSV2knfKC6X~XSbg8`2WX;)dlZlB4w99?bvo6@v6U`
z-+D(luue;(xt39L;#}54lQ4SV-%)*zJ{cTpJxJj{Ys>2(!yN6$eMu<@s)vqszL_xk
zg#ys#g*6mq&!Uf=jjGFgeHJPX(T-D+yO7)%i{O)g-|9ctQOoziAq(j+H^tw!H@D8R
zkutrd4j4GH+q$K?jW5&D@_jPq!-Z>S+LK;lbvEg!y(P|fL(#2P<5*Liv0S|SDa#YX
zi2GKuTVF&!3x$aoKhEO&a{3?Vc<P{YQjyI{bFFZ{fRf^A!uRzo2N$T=&2^*Y=d#ZP
z5#vqlcO=*xrb~M52d^jg6(v{We=!)`-TYy3D8>bRo?PW9FaAXKl_CS;aP)_H(NFPP
ziM`pLV+Izq8O}L$kw04r{kJ|n+79N#xOQfIUsLq~PVGws2*TLHGa<MBEp<w(b~HbA
zewI#^DC|gcJ$Pl^5z&}QFaIPipz`^lt9eeYi?&u8nZZ7jRi@znw+Z6>{+poj_X7B@
zXy%W?&+_h(|8i$_^EUuJ6NE3h0WZV*CHB6)z-%#Gli{%Q3*>UL&w4J*&Ap+KsNShH
zif!8e4K?FLh_lEfNrXA-{tj5EaV`OVVAL#wN%8=uG!t%t;X~!kmVt>Ux8TB1g|K1O
zTmM~ear}e#P2qZMu;Vi*+1MG)AQ!F@JN~}i$#xFcx=UP?^oGYZY!xZ+H_pEi1)W$L
zhUIuSrIXIoR%*7q6#U=TK;cTFmKmC7BP5&kj0Xtcxsa)4LF2XQHE=X>m^n~s2QQZ6
zR5nK&3V$(6Um%@ROC`hU%0?)yjkK^sek@hs;t|G2%uv2!u`JbdFaE9+XMF#Z6XJL_
z2r%+AO>^b3?sJCeV-9ruB)4{5M4XTD5qPgo&X$C+-~)hko$>LE2ua7kV+aceJ5}Wz
zKS9)Oqzt4?hZ~_Hrv2sSuW5sGoLAiEiZ#PMEQd*!`5Xt9adQ<m%c4wj$JdKS)HgDA
zvhv@){%@)0zLG>q%BAdpT87klQOiP+_3_TK+eTj*#91?+u->7U*aTBzCq9;x%95d}
zTyIsRI2mi~<K*5J6zWkJ#XGVEYvWDIeU|t50DL^EZ{9nc;T^~Q7ot(W>l^VCZ~DW{
zUBK5v=cMf!W_C9oP}@mtXCLcdgR%1<8n^7nk28=>oq&Ohx1Tn}La>2IkQtEMNfT^@
zc`(a`x-;txT`L=EO40tY7I);Xnmsx>s<vueT)Y8ve1Va}KU;s2iZkN<$N|_H?B5#R
zGKqx1xuc|PZRrW2c7qZ$PPw^8;ZAx~QE?O*n=Hd3Nek<nHAjI+%GWxLH8oT+a41SN
zUA(E09EzhF2ifT;(tAo$1c0=&w{!XSLBiXKNI?t@8DITge_NGAA~&w2&)m@G>*WmB
zG{D|u3@Z>qRjBJuUbJIUKsv$h>xk&xP|DGR-vq;=t&|o;;HMS@5J<tt(*RT>J5WYO
zJU5!2Vu&e@9;*!v#tY6}oE$z%T$Tt|UKK@IigT*(=US=yS*oL(7Mm;42L0$~raKgI
z@L#y>I;+o>JH_l_V>S(*{J!zGJ3lU29jFa*GUamxksCxaRoc$PSr6olzpHBcIQQm<
z`3O&2i=rV&`;;5o^xPMPZ?YzS7Dpc9MxlTC(HXl&+SkD_KjX$|WK&VII5<8Lc`F&&
zv?W|LOX`+DTab1G;8Ht%DC)Atwt~tkpe*H09<5)-bAOoq$?<2iiE*6P!?U2Z_maeA
z{Cg`A5ZO~rgzc<|bM=s&G+w?q941Qob||?yKoCdz1@>wbAa@}q@Qj$3ueh>qufY-+
z$loG@NQJ3)rq#L2k<sVZm~o9j`8Iiqw<-?L8HmW^llR#Dha`{HSqK?4g70&`hZHa@
z$X{^PmhVFwpAnQZWIkOxGoXF4B+UaM2YA4PR!3i{+J>y-P)5)|DD$*fmpSxZ&w)8M
zNhy=r!2``a*6cX!b-Eatcy)UB8<%RaHU3TnyR`>`l&7^^?NZc(_|l-U<=uE5Qi6?W
z{kfHWu<0$HPQ^8MKVY|vO?*oI_ceBn#$Fxp6HWK=q6mVS`i?|sFE@Jf7CQO8Gmt^c
zA2fQByAhO9ld$r9zOLBk(^FCF*<k_M1jDsMsc{%%-*aUvf)dde=Q_Y)a8Q=MM{pn*
zAHC>Cryg^F>+Wx_|A4$&IsVzSB{V9#k7wr@`1kXm?0aIgmq}UT+;i1f2G?8=Lq1au
z$>?5HKyG4pQ65LL#!VTB2lPMi(&>Fef@ISJ;cEyNHPK#EJ9|d2+94k~F|7EEveA#n
z;~eV&aTfFR=8_@+&QmAM&PI@Ql1=~&<yE59qf>PBcr1UDt!f&<Iy=<%WL7@pvwd+I
zxr7B8jT)tB`wuW1h`2+49q5RtI^V0%Lm@Zt>(M&?sgI8B-`*+7Q2PRr{bEzwVQhk|
zX(`e}E&D#&R<)of9PVxWs2f_l2HKj&hLg`>Sk8C7+uMA!7XJKicV+r%FEex_Q<dfF
z$*D@{5w6Sb%v*(ax8>mR{_x5EpwO<?Vu0gU4^#N8=yUos@vgjw4N9);1XU0ru7x?F
zB^#72<+rWM$+PNA29zIxm3Y#7w5sG&Qk>Ng9%L#JcEV_VbB+J2ZY+~evUZH*Q$YE8
z_VySng0{x^C9MXTJthWNIu#>*0Jw`DPYen<cV=jk4PJhL2XqiK+sGNQRP71Aw2O^P
zf(8T4=gfTGgR>&tN?<byvgS76J9z4C@#9V*rcT=LuAp!5SdISSceH*NkLBymr0^})
z{WDVtn;<Q{|3{D1H|eX}<gwX`Gi@Q#mrg9MC+Nes#Z?2t{GYD~=d1*5p~g|~`|mS}
z+V04bqXLTv_u7T>8FjXnu8Q|-9~hC|JJL__OgtS+<nyO%#2+jp-82zOayZkI0NnV=
z%?Hprs~ba2p_3Io{5J1mhmgZfUC0yfKF*nWoB8Q+*{Izn+KrjS9=rMd7I!XMyZsOa
z1Y4eC<#4Iu%>}nx%TEB>xI0+toPLk>i7#}1rf-Ckf<ngaUXy~v{_5AP8d&ew?-K`;
zdA8pVIV8oPnl6v{C*^@8tJ#W+-Lv88zeN^K+F+|Y9(`o|jf4=wOKHZh=9xZDIO{{A
zhzyj!d5Hw`Bhd|A3~9ME0>3Rf$UCd3TYj;tHJ)P*ocXn4b~N~BkZ_4?>6+eF^(a;=
zCI+>u;~!wkLFkL7Gl3sd>jv8fH?H9>nHH{@98S{{5!x_Lit@ggN|6Ka(0j$bQ{Iss
z^RVC;#0YmHV;;X*frdl;<M8U?p(A$vDMr%-gz|k=Y@|JnCE@h^Uyx6|nxx*09W1{}
z`oub#d~kX6RBADi-3#F``0`UB-)GNu28Q2ewyLzicQ-LB@ZgJ%H5HYw3+vxzU1KyG
zQ^{%~=7IupchFq&t2GO-?t5~dP3-fJba;8kQb<w;aY3Z;+bdT%49~NiM|L0<7vVSR
zy4PwNX}7@ZV+}o1{L`OpV9^*Oh_9BUL~E<wQ<$XOutAtlqqls7WP`t8rkIiN<&k~G
zj4$%=Hw!sf((UN{10S7{{(ok+t$Y;HNqyTC54XlDm2fO*bMP<am!*41h-PcLc2ZSO
zjWaC>5_Bvpi?0*V<7)Qmf#GfD`?gheH4KaA7Dd^AgHMYHn!Zv(kVlbn3wNVT_zMsG
zKHRF=DtaaqoFe{L#;qP)R4>E(QNSj6;ZPwsFE>KdcA+KC7pH5m^^5XaV2Z+D`awZs
zsMp}8*sD6VRzWj|?!DT;EnoAPAI$fL3;AE})IZY3X~$j~#^D1?SLEGyU$^fwuH?Re
z3htzlU0O_Pa{1oYyb13mMJwoUmWWU!NJeOuIp2wMES}}i!Z~9dY8{>cm<?WAC>>W)
zCn&7uqAS?aa)lxvp6|f9!q=`<uPbw6B9;dWfTlHkIs*~LXUB1CpIl)OeGoRBtMhK=
ze>y!cNf`3mkJLeB&Fg1ZjN5cOV*9?5be<&pOlvNnSg{a(-%r%!029TG2JcU8&ojBR
zj35sDk&?M(@z)pOoKRypqOePA$FyFN;224Q)l)~PX@8mM@1M!Vy}bLwLK${?H*m{(
z?%H1Pe8?0n$NdbqGM3<fGK(+ljx!e_d$TW$Rc#m<sJP<tHcY(83$&@cN11)2{bZV%
zBU~eAxF=N|<V+hFbKMjW9}v9KO2an^%Oiwa1(;j4_(Nf@^hA<A_`SQHQ%%L1%Qs>r
zXv?pUphe3l0Sf>()N-Bb{QV!q8}MgBO$(dtU%<_v;rUz-vA@)9eh)Q$A#?^O)(^g1
z=^E-dDSe810%#!Lk2NF=<VwYIvd~zirOIma<T!8Kg0Jq?H>n}c(z~;xm^)&Pi<RU1
zHFx_3etMCQBoWJVW!gu~B3DH=jP<GY+Yv{deB5H1nQmul7>6NS6kaM$AxDIwYG8<0
zci{Q_aJWSOwV+;RfWYV4G_HTQ(SUUn&VY5J_WOFx;z>fWb-W*PzZj-;leaXan-!{D
zAd1G@+{~o$7+&A4iGI|LHmzRJgAMtWuatW;J=GUBdm_L6UUCxtE5vIbK(T{a$An4B
zk>tC-;+^`hc2|#*_d)q3v;D;mY!F?h*=BqilAo+wz3t5dV{u-__<NN~vq7-vHa<6B
zoIou(hGP5x&39I{;<p%7LRdIFzm0VTlt+eyP@FMZe<sc*=?iWypv(XdCXX0X#uR$D
zrb@^scyz9{R52(f(uiWURMvSA+%p0_G>`0rEpf%A*hL0tmSY$Ht+90D-gV1eDqW=T
zNYf?hlbG}iq@aL9N0dx-^7F*t&+)ZN&in9UGX*N*{QbK;ML7k}CJjb~NL`O(mwSC|
zoAa(Uy(+DeM25wnE3U;iX)J2NSzoyH1TQq)cTNeg<5;-qFAIttVlZPNFgDYTS}5JV
zV@-nT3#XW!A;|#?n^CW~YN!)u=)Fj4cvUdX3xQ^m4N6-ZH#%yT{-WkjMxhH72p>Jb
z+lM0`cq?JZ=%sb0kBZMgvr)qp7N`<o%r);AlS<288c9Qrvj~vX9}w|rD$cklXY$P_
zo3j*<mLYgjxXCu5$dN&NWfa9=7;+}otX@Bo+lM4{1d)P%F|$KQCVipv{Dl%+p2;!V
z<s0QeZEm!juvhyqrV(6;FQLrFVcuo<)lLl@z9QKri_Sp)eRTVMqErLO8^wdx;&<{;
zNheA|URc%VFS5=Uddgu|VIsgsPmg`wwk!HFNY@~FQX60PHvP2?B5!tZ^8d{`?c@kM
zUeGMj0|Lm=AQ|i5`JcuHue6+rN(snaA2>CDe|gSzZIz%UdV4MXE8jD!uk74#@a?s@
zzJq{|q<SHiQR%p0u9X8VAFCJ6%6S40OJyB9-_Cq^cJRjg$5aKm&D1-sHRhg*-2IQ|
zd4>TXmn(>f+TgT@1tH~<eTVieFK-HP7HdFnd&UR)vjGOVs`03hA^4Y99`25q<jB`{
zDC!dHsca4#3Ch*W>%KTc7`OP6Tw0##=WZ*~XAi01p0>UNa_-&7ugjr!sD5+zAMcYF
zs0pgfJYPK=p=H(@;JH(->pTip2F^H~`Q~orbm7oxLl$xUb~W6V^!WuptP+d@=S=L|
zY~J~jLB#Kp5!H8J43&40A45vQ6R4vTO6jBCNF3D~4OvdcbK!JVLtiML3gX#HjRc_*
zy%9uI3k@<;wjuvEc2I_W)u2&`=lI1`$&gN<6n;vS`?)0M%aL7~Nc4nNNA4C739p&T
z-Cq7LKN%aJumRGL+U|oTtUy;`%(>uv;yvDEgNEDJc}Q<RN3p%Q0__ReGIB}(W~{#W
zC?I=wUP$KIzTG8;N}aDKT?p)Ng5L?X9OUgiDOI^V!(GK(@w~;hp9buwv4n8u?(X+M
zyBaMIj!&y5VmhNKQo(2{3u1VF;R7~3aJlPE*^+Am#qu9N60=rWH@;6|fIV8HyTfdW
zBoW}vh@ZvmkJy2aViRHwY`=N+E8Ya8XfHQu<T9Y2)g-jY^sGMs+|aN!-u=X~Y4Hc(
z9&8n8;9J{TXDo!HE2v?NbSMs@F~Qy6>2;*-O-vw%c57DaKB%_B+6!Zx@ut`&FZyB6
zh{GzpRt;4Po0<DRqo>MyrtpOUPAR)tR>Kd-WyH*zm|`i;g!}DOqZu0mNAqQuG;8NE
zdOOa=y-FLusKryBGf<LYv(2~BY<UJ>AJ4yiL)|#XzL1zx{P67`hIUQu&6XP;lh-Yu
zzS%KtbXJ*Rb~p#7|Hd1y@w;5UcA~wxUy)AJAI9<ND|cwhvd)x+{3r2Db{}Q2p=&wA
z<NP}J>#6Ann)%OEI|4lwCYb_~qbKT#TIPWYo4NSkK)&z(>-7R%UnxO4+7=x&eA{HH
z1{=o24ILS2==r*Xi<5+*qGcRkWPNscvF*C3@J~I;8?xO=-5La?a3zngpfzf8K+&M4
z4D=Z)|DzWzdB2)QRLj(aD0cXI)4mMJ2a|7)GXk0WR*m6p_t~N@DoOYnV_m#e)&}YP
z14wE{EKFuPToc;#Wpit@DHWHMkb)Hu<KY+{+eJmz<@ce8!b&PpRpZPu(D2K5K^Tcn
z-Y0hU5SMdeo{GkmrZ-LK{<eyvw)xUE^W#S;aqBrg!WrpLg`*HvdWRtza`vD6UtfPk
zX>L7r_;2kJaYMuHU1<E|>13-~8G7Vsw+c_FlHO_c9Y+pua6>!C`$uIvaus69!Mz2Y
zQ|PVkjuYPO;J)=nW`8tMHpQ%A*{<>+4ZO1iJMiqBZB7xTyQqOz?i`T>A<z?;r}G00
zZJuMC=lp<gYa@^75BXGWoMj`T;}-Vl-|vM38gEvfj?SH;_xd%u!GqeKxE?`^5wm4@
z<m@iTa#71>L!7^0loaImLZuP*E|lM<f>_hd<)KobTLp5Vo2{~mdqT+oJIZ&0$hZvS
zs39pHL!oHQ1U`IZQ{myXe~fUHCPLd)J8`<~*vcayB*uUYjLc<$06zhrxUk&_@SZi9
zuDkHBn&tV0;CL~jGfK-s(a0vI+os_{d+DMa)9#u|#v7=%KI?x2+0~b@06E<&&D1xI
z;=&Ay(0NR>ZLmu>^9;*#>CAWD<nD;5%9eCzNQx49M>eM<YtBxu*F1}s1UHrniBH*t
zj(;p#85~Z3xhelW@(Y_nYpF&7=enZB@Ev4cOviWOjy&v(+Hq%8FO3Xi|4~l8Z;f!%
zA>_|puF!DYB2;54cjN6V_)8AOCuryiE+kS@V|x<l8dJ4EC7mjw61_V5e!Fi7#At#o
z`1P^2-<m?`rL1dhaWZ|-4t-Mri>6(C@6f7C!D{0}Y5sDnetMMjzV^!r2Zo{6*9%Q;
zz8lh0nE1wyvU2U&P@oNFb?SzwrjGvb?jV?7M08`a0$h=q^*`$gXt^74L(UEpo!bnp
z)3uApRdKzUBaq8ZL#J6(FpU=9L3o#EUdmB;7n4!rcjJ>s^M~?3-@3(G9qV)=ZQjQZ
zX*%@4^YWJ=<VF^vboh7vbvW#NWq|oRDt`p|%*SW$t}@U^+hBBMXKQ1M&@&eqe2~=m
zl6o)=8XtZ$-v7?|e|4<o_@Wf|XYD*g8X^<BqS{au>5&>7mZC<Sl`(GD#x1GkOW%+}
zI--n^fee^i=D%#({c3r5ro1Db&Nj%sRhraQl6$r6R@>41UvD`?NVx&x8!i+nuBz`V
z<8)@>6TN&=g+0wzP>s>clmCL2;*$R_7-n#n>2>iMKY;%2tD0BMyH<sQkCHt95dcSY
z54M>A=X-8F(-1P>4T+B!)UR&pNJlaO?ASV-Sacdq5&HeqqhW^-hfI46KcFPX!BEN&
z&O(s4V&7-9&LuuJ9Lpr-q7ulm9mV?CWG^R~45yCj`2`@hD@5{aH=7cX-m7nLg&tn0
z5}KS$Tn2I3Vr*R;YepYT`X0r!XG}h}s+uh6pzMx8nSr=4o2|kA_Vf7gZI~yH^cLpF
zZ-t4~qj<R9WPbo6C&o-IHq8aUr0soUoVkBqZu?9-6Maj5XH^ymaj!{8kP@G5LH1~g
zsKpRtXV-5eAnVCJ2Qh=#0npiq4W~>Cu$!?0qP%y)uA9PY{I)yL-M;DCJyVV>N|-VF
zCU*fW$;N%PVG*88|K~Zr<=cb>l~{Y;30<auvSiYnjqTq<>3#t%w%NCDWb}KRK5=<h
z=MnFK`+mNaFrS?x6g|_+q_lLde~^l-|L{zInhSRA<9d4V^D`ZhxaU5mS~whUvxH;v
zztj0llm{%vK;s*#`xaosnov#4lN*VIKnp5z|Fe>NY!dl^)zyVsH|{6>v4zjLK%cEs
zMGbbN9A6KqaS8e0`1I!;lyRcpPY#x(eu)kcS0FhapxpCgY#uq`%M{}g^?hL3J~mVt
zkspoJCC!j{-`&mwq4D3of7t_O+8ixX#d}UAVwP5tXY%+gR!*B>8*fR0@yMAu$6^RA
zGa-e~V(HXx8e0r_kR2l6Ym27(Ht|Lth!qG=(8*nHEY+1n3j-I%LG}2$I;x~J<X=94
ze=N3bTBA|95kENMSmgf2wFDb;+K%W-Xzd}TyMp&l9`hRUmTbOb8m8omW9v9q8$nkL
zm4}$Nd=i;|G2eP?;#mtmlp;s3&EoO~z^^t4$`L|g13d9;Ckp|6Q}wjClgCg+fMFv=
zw4^pFOUR56LU;_FX><e%LAH)LdD4O#p4?p~J^4fIJwQWt;h%_?ZW}>fPy?_P<^&aO
zZj0?axPw-}9$Dq8{DzHlUyhS6F)z=s7pBc?V<o!#KSY)8>;~`Ucb?5(h1RX+@7Egs
zf9~6RuD26$3!2iW^56gMoB90s`V!iQvNVdS57_XJN0O~1*+^d=zhBIO(DPgjGaST*
zuA45~O72^RDa9mg)(c?;lr>{0I+R$p7cMfjt)70-j4sOywhtep{DXI-%3uoTEdTme
zdnrovVSz=URD_t6*S+7cyIrY!GaWLBKnDP}ziD?a_DAE+OKZ!vz4mj|w(1`s#kJWD
ztvqGtLY6^|TfiR-QF0KQaVZMW#57HlhPX$_Gp3+{87W`YJ&GsS26^kU8DfkiOSG;G
zDi4e)e7~GB($?${uqD2LQh6qs5_g2Rg*v?s>g2y<@D_pWDPqo%LYal8q?Py36-AD8
zIi29Zu)!Yjx$gJ0?j|NP1Na9}q<68$cmNQs3Dt!`mYU)lwB`IJRynP^53=+Ep?vV|
zfvE1K)tXf}&7+u=k&Win(|9iikcx!=EK~K~@1T&LgYEMN{5-0b>vU3MZ=Z{#mBy?X
zZ`_Cdv3y*{cZ&a6F-`dj?1~HsY6R_Vj@?=LQ|WL2l{jWQP08!=P&^w1IEwCZdh$kt
zpJj&fXiMBK$iE=@f2fp!Wueg$PHRKk!VGOg+#)Zzwm|x((s6Y&lnwdA%<Cru%ufM2
zrPL=XfiC1zWjCDA*Tso9p{o8AX@BCv{x;w3?abqs?@B={sb<+^y!_a4J&f@p(a-jW
z?{a8of=|deGVqzG<tSE3*FM{!B3=3W@xMfB>sKss_y%vKT0N1D+2$@zwP-#osQdPV
zZDB`YfRjg(GJ2%Pe0Lp1jrc*_Oq2z9vdpxp1~iqqSGW|_yJ!|^m7JUGY8Wj2wwJEu
z<^v!mw6Re-woKMiI9mCfmM7BOP%mC~$vg6`aqVsUQSY+;fTT61#Qo(TRx2TbzC=k*
zkUsNl!=HgUYX&bew^aqK+m&ST@O57x1=FnkdnR`%MI7E8!#{OU4iS}-M89{X81yel
z>3feXtfAU@!)QIv?A+};!AvpOL?jg@jBWXL`jexR-V<ffiAV*YJ)RrmDw=e8c|bG?
z>n7b^3#m}@^FNA=QE|T`!femY4#Rv<CamytU!afmRHAP6dg?%1`YDv(XCfz~1)3U3
zZNGCwBWf$v>ux9sIN!@q&G**D>&){lTQr^pH)o3UaDx2h06jD^&;?Y_4W1!SAl@fV
z^1rLjH@c(%>9HY)xCms*zlDu~ovyAMISybb1tg2k$O&uK9B@fJl8%U&-GZXdTw^3V
zeCB=9d76i{-Jvpwt)sS~15nJ&lma3Mqc#~(xjxfJqX|}9AD6}9*LIiyVNzHLXbrjO
zOOtvx0uP1Bbbm0?CS0!d56eQ^*=}8#7>KMzOZ`O=K>}XQ7tB5wQevZgx9tjtB22<*
zYn+37d$9ndRw6O{QgvQyXq{Oz>7q`_AEsZ@xNef5?U~lM=4l@`GAUfakL!GS(HF>!
z;NnS_fX>MMBGZh-#(i5={$~FDI)wisli?QSzF|7_++?HTmx6mp*~ZUsULEcd<9J~@
z>JAkyM#U@S4kh$W@rmOc!RU4Iu&{-T>;hG8+nXSB0h=ObE_W{1l?9&;>*oCd9~oC$
z3KQ4%F{{05aS7dhdhCAr)33vKi<7@*yqi<FUHGc8gM-3X8NR(1@AJQZk`fx8r+C%f
zszllIOmbp8fvZ41XX4w`5OCIBM%#jx=W=JYIZ;vp${o$%Q{|A_mVlg*0?9(hY)2;>
z8Vy?bu@Ze%G@=f>e{KuQ_t18fbRAf@%RY4U@TaMV9T}|Z*mC3yXowjs-hlu?;H-Vv
z_?uh)VUaLeu?<FRNYU{&sh|-g@I7$~?>N}hMPn-x6{7`CxW>|B=}x*KypXb<;j4d=
zyJbJBPTJ)C-!AEAl;hS6C0WiV-3|in;lr~KF^?LljJL8%?qFktq2w40a@A=n_2|>$
zBgY61`|_-;P7W61Z%>x2dzu>ZQwLu!TX}rEQX^D-(9zkewV@WCs=XhCY<||Fceq_K
zzU+kgvO~W~H1XQ*z~jO5jRRYsVWPK<E#|6gbEH>xd6)6VLw~!W_o#ZEm9s<x&R*tp
zPobe<o*pBeOH;PLwF*yJ`d@#k)pXJ&@M>YqsV#hEg*Xh}5SUqC%((FU61=7pLdE6Q
z{gbkqLM*J5nTP(bMQrj2XMz&(*<{Pe*~`ICYp2575&GaChAwgM`;hT{%W3GCr}%51
z|EM%bYEkoOX2peN_?wF)F>RncP&;HJee-x3EZXt)pO}rkG&GtHAhx4}dqKD*x>Gx(
zMV&DtG%mZE?S+vP)d8-(@~WAHRW-KVL_gkWt{a^swGX0sJ>~<@j`R?Yoc;=XmRL!m
z4taAL(Xyn3P9#o9g}~vtqZ|W~n-dO$2AL1CKDEixqBq9AS8vR$j}1Ft(-Rr+7cH!?
zr@hm-k<#yhTrnodk`&}foAA(?Iw}a%Xv4&9J4~7Ju=8VDIf^>HuSi!Gjq#o=5yZO<
zT4#ITRVEM0S~ydFeOojB9xa!XuzCL-)iO_0U2yWpY+}lwZ7-)rk~OdZe)ep|Y==VC
zi8hKT1JCPUz6NNxAa4;c2A%{herq`23!&<A2}#H#v#KYp6}+J;yxappMDo4rh2;%8
zv11Yw5=f&K|5b^xIE8Hmk}ji_uHkd9>kP2^XS^QO%oXth<Z^m7&N|l6K0s<nO9K0Q
zS{6ZTxpLVDey*>yLmil*o_*r@Y(#Qy1^+>x6R^$Z&1E18w3gN#6y4J&KaXDfX=@22
z#`JlhLT<TPY{{6S#Qog`WE{F9p(fFux_CKqwne)%zRuo>r`H;+fDJ7G;qY9mT}d`A
zc$6`-e{V|Z0Zu-XHTVOp&wt3X8eindwjIml_rCCD@R~#LSDQtfy)c8m-$(pBj(ypb
zl<t^Umw)r(UBvKDy%k2&QNoE~98eu_kqp{(Md33UPo^f!W=z`M>+g)eNYcP5DX@Um
zz~|}+53gWkKt~T~Lm^dRKG^2@{Mmik@EZ_geh%v?E5-;W&)7`up7+hRAT0fsMnHFl
z);HG<n5N~#0mE_YNc!sI7ku=ef@q*u?(oWu*w6IV*T-Zh?sZF%f@&9=K020?D+Dtk
zaRcK|_9|wlAqNhAfV8a~HTF<TnfM$p3>j|ujMO=3f!L1{?IQE$YW9~h--6yA>Z(v8
z{(fmLJvd$wmxQ@AtKo|_n^tDQ5FS~9w=4f>th&2K6Wq;jLLx`}(mp^@3VEYueq`F2
zAdD&<H^aOj->P>TFj4a6DNhe<mUXCds!OBNp{HqoQmcyG>Wd#S8i@c%Z9f398_W-?
zE#U|W9**1uD+OTKF?Ao}x^>jOqygWet%<Jy_kDkRzHc|5%utqiV6}GiGIK8&9ciCT
zS>1$N`wj^dZNa+w-SvBLe=H-OK06iSk=-prhjX%N&K6oRICJ^i&^o#o|D!#A_+g@t
zY+n>*w~QgR2**$mDBr9v=NjfRSwvoY%v4+cDfa~(L#)#Ua~k2<8vi%8A+8@A5GAE*
zqU5FYL}4?<{VIq*gYf2h+Nr|D_3bcS{pJ$Cu-XyrVJ(~&gQricLLb3D?1^+b;KKGu
za=2?HS969x*Xdi=8iDfHXt9rxgG!V>Z^@eKA-+KVbE@wzG@j-EBgDXdOPFK)E4!|j
zupyT|x1JY0yBjlw)`}5BCrTbCFu$F(!B?nNnjCZ^o-Ff<AQa&?OK|s^)msXBc=fUk
zDPn#)xd=NEke8p-VKMJ_-&du7v>EHPn15^zVsS03D9!1fD<ND1bo1+6Z`>W*CuNg2
zSMvFM6c%gW5*u7;efX3@e=);6*%1MGfbvOUc`aNb6Yynm%6JJyjAxoRO9Jv2ssT`5
zN*rlq>phUM-%`q4Qpne}<pTMKk@zKNG0Xqfm})NWf+^|l$d75=>6_Kgy1rP*G3wV7
z%`2w<k<*1%r;<G{N^!I<4gAd1;mN$U5alDsSaagDcw{|SuGJ$G^I|p2@Mr6PU)^+R
z@b3}X8Ev5LL_}>#c(3f+#4sh@0muP7X<xC7$^HC7QyMPuc!9$|#*;%g%I=Y?$W=j)
zWa=2ieA*}FtZ!Y!r01^KEjtI=J3MI(2utcMv5MCdjp*R*?_<Kt`~{V@kI`;;6Di{x
z(Znv97|H*D;`!_~tH{qp+2iceZbs|+aPi}9#`{kFT8%fF9bT>Pu1v0w(Ng`zX!Xd}
zRfRx!f^d-|T?whBFQeAlczYuy)wP?G8#)$%I&PDi-p~<cHQElCtfP7oEWnHPEtY7i
zp?ZL|$8fIUX{3JA7U^<8(!K5_>3~DT)DFd?HEh-Es@V6^10UM*lgp$NEqjgw7lMXN
zx=6CBE|91;ASZ+SdPa9{cg*xVd2N@D&2Ce$6EOqJ<;A)VB1sJiCJ^gqd6yq*Z~%8V
zSoDrK{+`B&Yuvc7<-KZD7GKy5b3Nz;ZyvL)N+-j!ny*`tm{6PPTSKhhxl>O2^5DFM
zl_gQbXjX?L-KzI<D%2Jvp3MIBXQc+O@pGT-LFPLZO`p~;fAIYGa`0)(3m2hsNPXMD
za7~BYqiH&1-WENod%|Cq5;(4>?HrKlbsF{a?B<~@;Lnh7UUZo2cBF=4#HJ;>>}D@b
z0gG<J1lA`cjf114dM-cT)yi4#UX*VJ`#pO{ZYp4X$~t{uR-z*7a3V4r-Qnb<ta=xi
zFW{o~4gWMCP|7EKSX)i!MpaYasa6zI;N8bO0R6$cSoo>}Q?H^Z#^{SYlf-BP1{h`c
zo2qe;O5*90!OL-@)=z;)%m8uljB~1XN|r_7Fi{S~Wt|q~M)`Cmy~bno=w4D!?dwNA
zxqosId0j7Zs3ZWPVUM%U51#L4YAP4SGkIqeY`as5ddKVUf%mElPL<kQ!#4c7eWzGL
z5ld66H@`M*qH0g670twbSom<FJn~JiS*0KtimjpE^-uaL(S1*oO-p0qORurq^A`5(
z)8i7t@})_=&-6-{P%`J?h$q@xucQh-+z9gVEC!(~vC^L4R@z5A>3162G@f94Xy}K_
znr&<6pIID^+1g9Me;tR_X6kv8LE?D_b*#VZ%=$%^8Qm-NZ6mumV<o}Rdr8m!Ii4D7
z$*q1I*7bEc3;&iI*Db{(pr)zq>vI$Eu{<?c^d`KtMrZymJ|gtB(WJ6gs;Fx~0p9CV
zvd8=s5?kLR)O@fx?=?}J2fVBBic+{#(M)|w@OA_3=I0vKZ}p$Rb_7}Jdi1zP$#70S
zuS#m%mtN&y1^h*GHuh@Hk*q&_4FRRqaSu3R90ayL*liJ<B8&FSq+W+fp(_<Lwm@s_
zf?3&CH=3?<BuYX;RGsO}ly^|7;BJu+34f-r>xQ^DpkKaZ*`=Z5ZJcD3f$hb824OYP
zE)l1}2qiHz^)|w5x$Q-Dhm-e;@oGcYTHspE&dEXU)rh^!stLw_MHaTwunM2#*D(Tv
zMbzX!==<rDIcMsR<}+|5QjoqB^;r}>wl4$OucYo+FW4<bR(Sj*Pgcw#Hd^xb!@tVF
z$=1MXiT=TgI`ReJQC`!M!d!C=RXRu!A%WHrNkd9vd3e%Wkvk_Lhzhc90|dB>BpG0v
zG1rZz%aD9@iv@gij>RuQSQm$AXnVaMe6Eu-SL&2#VrXkkhLiqs7njd6diQZy!83@1
zedjc(oF;5P(kp*OGml0%)_**j>G#`lO%a<^pk*EiBYf{0m2NT6**>l*6LSA4e_ifm
zzjw~!)^zXpn6g0#HjV+rY6gvjCb-w+$w@!e3cMcj_*&VG7Pn?cnQdZMh9vm=+IJF6
zDXK~v?B|0;NubMHzm<GSQDC*k90l&4DQAP*yM4_?v~ko>$>TeKo=eJQcqjTkn@AEx
z2|nh|yS9MWAiE!k;mqc_gTv2y^)Sc}a=M*bU*Jnbehktq7~y?D@)ta%eM{#He0|+I
z30ak(Sf(p(W<7x+Yvf|bmN8kNY`)vW?{|{%V($MN3ohba9zWzu?qhW9UZ8R+b_c!=
z<!MNvC&E1^;AHQ-VL));{y;bCt|(_S<KbKD7OA!{o?X>G#xtr^PoAE6Kn}yc>xu5~
z$b;IMYlaId&d;6@b*I<LnVVO9%n3gPe!QoA+O#u`9J%nzn_m0+<T=$%Z86~fPku${
zz`#!r2d^a#w;E^~nyyn}d$TQ4{<Ad{^Ir!(5L)*}0ov5b%+HhBvddG$XwTred<`N2
z9YeA{KUBVtSFIVmr~U|2j2NzQ86g@VoT&Vw?)kU1Z+>?as!E6^2E8jG+=4J*pWjQ|
zZ-HLW&U@i4URpupA=|>RU9xe&Q4Zses%cqMKvN@PDp`#eu4(8r_wn-{J7GA1q%u5v
z@Gq(CiXKk5_VB01eS&wOP|KR=l~Bv_j(1f4S-(KI;c5L9P22Y170vIrTaf)jSLFbV
zTiB#k(RZvHtvkdKaTY{#bT7~@bK53MG#R9baWOpUW#;WR4;*%h4fYotII3@aSVBcA
z2gJ_bJzsjSS1h=y#h;w$NJ~o5`?Zq3_l}c?gS;+C?dxTpAX%W6<zFXX4gfN_DZtL6
zP8n}llLEo^@sSQ(uO||LR2Jtn{xb{~wi-r#w4nmOzG27M7M%GOojDf1B@sI65U_Br
zJ0|c%w*~b#X^+roB}@|)!sm)AbHna;h^lGE)~U>Ily*bMJ>T~i%KFMNsjqfX04onc
z!+o{Xt>1%Y!R1^%Z`(W-ZGtmSV`nNKEx(caH|5c809Bqxf26p>9m5o;ToE$vCvI6E
z5EnAl*!_PLon=^)ZyUxzgo%`rN(_Vg(}E0PBNPPbQ0Yc`gv4N!G}6){C9NQ^2@Dx9
zLTP052BVZ1HM&7~_kP^B=h$&S_jASXJkP*e<`vuV9z1B*c{Sq}Pw}VfTKId{-}9h>
zWx4f)XT;kD=0PdsrFQlzERpEcg(1HX<Rc%u%3k^pP0r62b*agE^Eb7B(E#p#rdU@a
zXL+q>|HCN23W(Lhq5g^P;ZcQSYL>Dns-yjH_(8_J%o<`>C_C3gZ%Lo(&;9-WU-0E!
zQ5c08I)+(4rsp4%Rr&Lq^rfbKd4j(-3c=r|dGE;1X&c@7enF$y|6jPgd|J?FRi3Cp
zHJ8MD=_+ATFY>GRNF?gWZLxI3y^*~8qV<uMy!AZRcS^(0vsN>1S@5|O*p4Z+8ES;|
zwXwm3()ARYJ85J<CclgXI;gp>dT$5Yq;J~z(y^hW$6iw_Mcp*tvLnWQD{x939c7xY
z$@@Ig1I*3eKz8kEnUxaW=IFz#x*dIU?Mr%J2$b%aSb?tVFo9>yk-3zAWm7`Q;K7Rg
zr(vtpXJ2ZW^leLEPTvlm)IrXIvU|oY1h_$JM8xv+*OC4WZD9WW(ripJWC+pdYiuvr
zJ-HdirNY}h)7Ie#y3^l>>_9n}jNedE7cfk7qk1JZf~2zIh=<677yPP=v~X%NzWIGo
zYA#0yEtx&fCOOaVF1;<+as=E2jZy#1s?yCSDFcEgtTw}}tZnx}l_BDC<%0p7Zkq~R
zr9-;ig+gW)%b!hJxb|(>pG;wG7%RSebu*H&N40r^!iy7c+puZBCZX8TCHd-a+FLes
zt@F}9+=@Cn@Xs7V;xV!7EfK%x`P(lpyV!S?kWEZ$WIGPT8oplaM0fK{f7aT)fs#(f
zC=}>eBGMp|x)d~i8?49|D>%It4H&OMXZt)q)>O%RJJgZXuHe>jELb7Zx=HUpwmIZ?
z?b?FNgS}BRe~FYmK4?vWedHW|Noho>xw%ue2lvxxzR;7EeQOvtHW8_xR}*Mp61ILd
zq4i2Y*fcBM@UUTqoMQI(__wT*tM|eDO@GMQh!?3pe`i&Fp4NZv@X3$UthM7@&uBUh
z&y{gWx!1==rw<d8c=R!WaM3~s?IcLdikXsE?Y;t<n9Q?dQa8qiE}ZFAIy9RL08{7|
z9^7DXczWyldumVd#czxwhl&f+7$cZ+&DxZZ#}LDjMSg{4M2Xe}V>N_b-iarHS(m5^
zq6dZ`2SDRDqbtl6tYXP3)Y<?hv!&hz;up&J8NXg<!R52>r{S3BU;7pJ&sgeOf_^f<
z>ru2a4tgTu(f2sN6c_$?@)Nc+NhkhEB4~N&xP#l>OTE_ep+ps?OhR+Hj3md~wL&n5
zo+XpcX&9g*7;3Hp;(lT*4H)%OxVBH@&3<U?>;pX+w{~V&ECU3zskM3fVD{M;Zfi`4
zKRuU~QpPoMUh6u?HK98igxk&XBSSxZ{6nL~aJO3(pc#Q4;Y2aicf@)Cu=6R|5|&2J
z*w+)8+7iDg$xSYqq#px6^c0AT^*!7Qd!N>W$#hD}GqPOoe^{o;jmB$an}LV>tA^nQ
zKy#=rwuc{l5Aq7?WrPOdsoI~C4SCsWCnB2d^#t^R-2cB^6hJpAhN6BCR5en?S2q~I
zI~bkgd$YEr6}ItTHX8n!PB)W5^@JY8q3_qO$!SWB`=-9x^AQ1xtgAe#^Hp#Ub*GMS
z)4sn*1XY*~rCQ*^ywE9!XOk~W9@GetOM^)5XdEd7Pdy87Vy7A`$*k=&`obbo@Ih$r
z%?*bH&N7x=YH2$S|46yAT`Q5>Uh$Pln^8r1mvQ^H>sj=MLu|D^o2m;qAz#Uq%2`)&
zGr6{|P+>VC9L6hIatI-2gCo6&v~@ajRYlkl-nTcBAud5+ZV7la)BAoiOhz=If`qXt
zfywkf7&b4}@{NAsU4sZJXuREljwY!F%=N3L)Xc5Agu+_d3TNmGY95)b7mV1BVazup
zMWP~!wH!-_cd!kZu5Pw-N$98t{yXafgPdDv)ZUXPv&s-RJ>wJ|AT+*Oq;@Pxk{KRX
zQ?7My<e(^(oTtlxT8$Z<K+s_Uk5;0IEjQs-XxG*-7CmEl0QVTVrt>MVCG?s&`eu>}
z1p#a80ahb2dgzr^8o#0ney)jrx97%!wao@ThQ}mgVvR0vBD6Be5b6jpgTCN$0%R?X
z_<kMPpJaqO449P>?~0ne6M^?OgIv)bf-Kd3U>9HC*XSIcJH6D_tLV>K&8hoLwYkNL
zRzRu)_g7h%*V!n7Ld(@2+Y{4Tm#yC}uYa-K_84yTmkW51#eeb?#$?DRwi1J(*#2>x
zF*ym^VEc#pnYZ$hDX6a80@pmovwYLK8W4Y}qG-eD1bG*PuHeRPtVx%T+_%)olMZC7
zIC3-3n*W;bt-Y<5hNTk}`JP^ZJ39D_p8nSBn7;*&2=ta()4VzMukn}Cpj^`N?C4gB
zvJY@j8q<n;Xet1;uR+)jIrS@~;E^vlCllLeX2u!<hGf3^h1qvOR>yb?QbO|bzBymk
zHFuj28nf_x2z|i;LGWbSf=8&C5))|x3pk)JdPoyuwkosJT1$K@ZFAZ<&k9Vpn4U0h
z>{QhlI&Xu4W)Tgn7<Yk$w-UaVsiAi)X}N};2jq$z=^UB^75UF<Ch-L~z^)yA(K1*b
z0kpyV$6PMtw%X4ac<0EU0be#K3(3e$k@u}<95GLT2L5cHFZDL}v5=4a-_ruP2fijh
zO)w5Vgx|$$<A<sI;~|BY75K(x)$h@AS7UEn8$Uh_K{JhBJB{1FHyDeNGkpp4x-i!<
z`B3}Ir(<YO_>^EQTKkyet|>5bm<_J@4K8?lG#Wl6g=j?yrVt$)P;z<wB7H<(g;BOO
zNyFBAp--LAQXtLRy1y+;F9>81xs-pMd163Wz8JD~7o42_#s)3>J2TaT<qr%Ts^$UG
zCX!wc1*J$u)k?g;t*!~<KN9<v4m%%%mWZLQJ(1<&wxflqg}8uszglY%Nskq4q9sTC
z$QvD8)g&W5E1Ms~cG6mmzVQRHhBH<D;@|WypJ3N}h5BBpTLFc1>A^1*KD!P2lxB`H
zEc@w5NitifuBge@QMtM9gKm<pj~w#dMDc({0zo&!po!~p{Z-RKOaIB2DS*B|bu5|u
zrMD!qm-og_6di>>VnOAPW<psf^Ln*qzZ+OwJ*auU?Y}3kE@MEGYP`}kr3Y1q{~q-D
z)KiO-!QLkH`aXo`pTtNs;62a}K>dVp)oq@!eSh={&#_hXu_7Wefv?b6$zRp~(;`Cz
zTU)K{;~s^~3?9K;hLPJO2|LqTd`!MwYvR{GoxX}geek(oCSO8_eJ{n*TOjKz43MoO
z%7V)i88HzCD%`^b|83^eMnMJMU$*U}<>=5-e}!={<ceHJ74!~n^T``uEih6b$jjBD
zh@(5p$K?rvzc{P_X*PU$b#$bA69xyI3R<KlRrgBi9zd*fhQJRPy4;<Ke}eVMiPVQ`
z#zQ99xfMWyB3gI~3krQEbAmr0NCx$a-Jsc?Y#bXm$p*cgi%EL-ah~hfR1HK<ja(Zp
zNt(CQ<Rf_!3lx-bngT=0IO!4hue19WtE@xu?ixUIv_x-}oq4HSWHrv?*ke^Qgf1&`
zFF;km3|j6cPySBTPL99O*tMvD6g)RhwgdCA>=54ovV6b(IfWCP(6C-Itp_YR$p_vB
z`G?{d12%_y-PD0WXwc$m_)!f6*ohfGzKtHKu4n^PG*LO;YnPj}nF3sJ{|#2(yvnQh
zG=J4z`{@{39iuHT6HOrrXsqc>wbvfv2hgMFkV2zk%5h`8O-oi;Zg$c_19a6?UL;D3
ztw8sbGGGUV_&mzapJ>LvwTUtndCm!?b^YryuZ5q`sQCBiqaXE*{Xjv@JsJ=g`q%em
zY)OQ5kdx5K3o)SvR@NZ#DuZh^WI^mU`JzQ?SS!|srpC!x*4d?>lV^-I&W6|3Z)8du
zlc|obg}tBWurBszna!7?ct@!}<V>k$PIEA*Ohj3XEcF7_`@RNJcw*xi%~$O<_AS;p
zh2c?q_hOU9W$=%y<B4#B_}{4pDh2eqiLo^JR^{P9Busg2-Ff0?ISnT#RHR9fEHW7q
z_g837tkHm)$SGkHSMQS(Og?Agyla*x08UC|fo^usr<#!sW>z>o18Nu_Ze;9;rw}I8
zwB1GBas&xSJ$vu^oQKnL1g3|(<K(LlQ|&H+w{x&ISFq;!Zjf9Pz^7@#%*VNR!8F^}
z8!IohWZq>hx@XCU+$^yv_+c^C%_f<T%G-bHAUn*voGHMSK^hvbjrkKFUO9?o75R?^
zNzoKPn8cnr<iFz6Z$UOYxK)>AGBj*@Ek*Rl(X-ne;cdPM$*R=M^L`;|dn%ov@Cp%a
z((o+!Nf0e)?(s&ydK6Kh#$5M513@zzfsFh|HXjB~qjB0CL$-amz$`#4gD@0=xCbd|
zCVuh?1?DiAdl@uOB^767KNIRM6`gPrx3pEJvSo^9^X35NHpX2JU4*;a$9dr_eYVt0
zxow!Y@;HGAQ5={uzRVCE#psaM>kWq8`t&{RjqLor$(7aZA>yZ7kJ%+3k^cSgiA-97
zj?oQ9Cvf~J&-E;`xT+7})iV1!m70*RKkf?9Jb?*i7zT@3Qns(NI_o`E&uZTrA82hQ
zi-GDXeyh=1st~f4#Hj^^U_!n_#f$oV4Ud-sWp6C$@6UJ>SmlmEUnbcI=h7jsxMW87
zn;0t}O{PvYuwCn5AH=Na54d@6r)$C*0IGYH)q~7#R$75Y6y>=BU8d`7lBO29U|Gq3
zejc{W1$1QxW;}W{VHin}(h9s;j!Qn4Bu?Qxv{v};A$L=t?ubOYOmNto2y&q=KjJC1
z{)*Qp^Qljinn4SH$AgH8Bd-_@<OwqHWAzc)Ox40>D=IzZtwNiEu}{|`y#K4;K$1a<
zgjw6M&)kHyBwQf0Xvng#=t(=|sB$}x6auK7mTl^E!p|ILTJw1q?6v+ZXOzqbH<FV$
zM_*6Z*$u!8dbs<WImH-3_WO!l168$n%F5&Wg;xp(2#tGLJv90&*UVEGK2~(t&NrLU
z2Zr$1(vfHV@~HnWYzBs)A%HpZqxD$KxzOj{wZyy&Q_Ft#(f%bmzJ=ybWQAL_j<1fx
zwa-I3h2~KGjWn89G_fJR5I_j_dTI|l7Xl+}>7UkYwe~3x;*VEAwS+Nnql~P2GSI$t
zNR@dt%5fM)3fcBbFZ=T!xpqpfWs>qwpPfKpr$x3I`G??vyS_-ubO8r~ca)zDn1cGr
zK2?V|TGBC205pVGeP`@JC+3Y(tEbVLa7XDqqParkEn%?D-gIw?gtz<LhqFT#U|)+Z
ziYm-Q@HRc#FTD6i`D?&nm$56wf%j$h%%OW!Am?dW2hr$=aTL^ZrrT(9V>h_jZjZ!T
zR`)l^W!ycVLtbL#5ixJ<H#>tD**+XA){k$ggJ$v05eY*r15c47Mxq_;Lt)ig#!oD?
zY~yP9+Cw+AvR0Q(j1X$GSr1L*deBQYdVZlN9<A4&=xv=b&OXb%YJHLlb82^#n`AM0
zlVv;LF23VXP}peIfl0;vE7;FqL0N3S`op~;gZ0aP#zY=(WomPelx5Xe89R3__`1Z1
z4S=K)&bD?gxc8=ivNNuxxnq4`VGn8^4sN#ltr<E1R{Vgjn>i=si>z2H{N`#0wBqLU
z*vM44JwCaABasYpWYsuF(u}Y*PzkV9^W563ibnIPugRm#O^GlHB?hMt#sy03&{8)Z
z@UY!}gVLQ1K(|`b-rwEfpE!XFk$4($T+j5WPb80&tP~M2ajmygPkE}%S%$)QxA4Fy
z?-PYSD)JgY>w1&Ka&(N%(c|-@SM0a{ExiuW__|AotD<+5s|pFS2{zr*V|?ldya6K^
z<qlk1c?A8|l@IfO2Z=FREe<)4mNuKuKz8lh(MbvFbamCR%<=isjyC@26Navoq;JFy
zuf$6DG7Y{O5E&v-n>)jG>HPNw2Lat#-q{{`k@@EWo8ND3A|2Fay`;v{<2ZBk=dycH
zmh8`=A?0MePj;nAdl^hhbQezn=B_iRkZzFw6Ts3VS^O&jRzezN($^ksNESZa1eFDK
z2<(0A>dvEV?kV>@-n-#4<l~;AfClY7;UbU)y>Q5z61C;EMB>1nGsrbgJcdCN5ms`3
zkH-iC@C0P7adIDRAPvk24|#|8Cwxbj-P&a+fHNKE5{o`j9IxQO(nw>kC;oS-b0Z?Z
zOFs3@paxpAgmvHD%z0i|(P3!;__6jZN^rg*+zGN9p@6I3N`WN>+nm}7WLBTs*#FrM
zR@kCwC%dYX3X;4T=+=|u-`(10pm6BObEVMke7n{e0~;UyllMwsTYP6Qx&7;lU4&Dl
zm4v)Awq=u@Cl}_|e|^4jCTOye6K@qn4EzvejK_voyKdVKz>|46!N}pz8@bc}@qS#X
zRf-RZ69*DZ30%>pEtlVXEsF<`NA~y(39(s=;ryw~GK{S$uo-_a*RzV@BVQq(Rd6c!
z=Dh$$w8T1R`&;mEiCcx|p`Q`SJC7^3x#ua^O97ue6{iG%I-v}R?(d=kb+HGikpGuB
zoqp4lt9U*CS%b|Y)IZqC0)e_<ar;=wHyQ^1>p{+pRE^}>?AqK^Z=hJ<?UXkydJy`Z
z!fWF<M+NPOMr-DM8N$5-cY^vtM1n_!DeV3o78CBTdm(d-3Fg)r?fsHFIKiPSV9^u1
zudN-rYq1eFK7%_U*sa-)ECPlHCCc*YC{UO8egyt5m!$|9%G}k@B4nRgm6}(C&=L}f
zJ%~7Z?k-s3R*~w-`f)IQZt#%zw$}~wVKI-`RrI}DTX?R?&6B;cDc9F)hNk1~n2X7$
zx8T$+SIPtS13pibjZ=P42l*;gK?+6~xifnhEsN6B&pfSxwtZ^(SVqx)d#oBI*Y=&W
zy<Q0Me7SDb?1W+pJE`^`w)Q9E9c;e%<X(VDb{5iQp7~)w7BTIJ`qN+a<=d3-oR0$!
z=e9Z7DMMFn@!tT&48w3=A0@pX_n8Dl0Jjpq-}zau=e4`U+_I0U*8b4WEqkBCiS`6_
z?_J+4uSF@m!tz}s#fi!EfNGum#P6Vs6d6!6rYox>Q}hWHNVdBr%yRqPE%PxCd!LX(
zYVgvjp6>!aJ>PI7$-Vs=Os+YBBnrvKC}0=9`7*>JPv8IZvE4tu4NVS)bO@eP#KIW?
zO9tAxJx10yV#zWUGx!1cX<*2?qN9|-$7d?ny{`SO8LQjPi$?N{^M|Pmu#hx0qpKGJ
zRPlM@ukdJ4Wl6%<`}x^D`*!=sYj)OIJzIxK1%&0TGxl@xG-UdIkmXxtM@aQr%zja9
zqq0jK;>ON7u=5~VKIJ_Mu~-}Hc)5iBz~UfD1_mLx<VO**?thnplf8~D1;?(n$ITRE
zE1B>{tci_%8x)CXQCfHh6??F8t(^_cKK5~~^`kg1{XGhy$EBw~5Bvwp66#GxX$n})
z0ASvCE<Q$XL0kb+Zl2f5g2ADjmNwR=^uqfdya5rByI>L_tiZ=!DM}3YpCMa{Ucw)$
z;Tv4aejb5Q_+W$q$N4qX-6IPy7eh16QD2a<$&KWV!z9g#m21aR9SNB|aF1<11}szm
zb?z+nC(301Z%1Eua*G^Sw{vj=wZCfE<+Hj}gLR1gDf+Rl>G;v6`z_ofG&v7L-PO}q
z>;|Z$>Usxi5C5}Z-&>LhM_`w3GZMn>L6zh*TkZBo1rj#W=mK(Bc{Y*QU_kafaCp!h
zU1m}7_A<;~#gZAb`p=B3?B$~au#LQ(wu6Zw#UInI({}}Ost4Bns=xjTC`S%1r9ITm
zz&5`sH+fReOvx;!X}nz~@^KvaCMeE*n|Q5$>TaZ^FxO{f>uh`j%ftSB9HD3jogXtv
zUJ_Bw4L$0A@YER@8@NHIZY&3FPt-^bSTEhfXHIdGIVRd!Db~%pYKduofVn4Ej^}*Y
zl98JaM=mPzz{&S@0UDO#&PrwwMcF{HmLA4q3YqR10SSD9hY0F0&StWGgeVE+r%!%E
z_PF{s_)?^y`as3oGm{<qh_z--Nx0a}nNjz7o7}#QkChyZwOS<yp1L=kQH+)1(a(Hp
zwPY+es%vb!_sxvI_uK#Uxhg;%@6Ff{WPRP2N5=A3r)?ghD?ttDH|T3@ATN9+3`sRI
z(tt8>aReLzpyR8n>?%$hHV%OH2M}Rsb&_}B5Z)DDun*xz7&HK}&{sdlirt1AsTff7
zhlk`Za;pv1D&b2$&PSbN^m#3@TAcELL?PPi7B&SNnWcnI_-G(p_==~)N0hQZLw?9f
zSsV%uPz9`L{`kX`Uq8%8{lr~!`emZj@>x0eR0X*AhqU8@T#N@1(u8=>LyjV=$S!3A
zzk;35`ts=OLIc$bw&JYu$$oy$6$8E!gE$?qsbuZrvv@nW<KL!_L4m(o#tgAkgj2XU
z-e|_3Q;tZslADq3r#MP_M)s$Ao3|Ln&;jN1R7y@lFhnG|n%y``MH-a4iGHQHL0AgV
zY);*|e{?_V6~#w&`I=`PieA4i3S6%*ugw`^?K@+9EjJi{D1cEQ7RwSFl}&BqAzL1!
z8OCRg%J{IClAArxWM@8U%1|RPu~iOrD>Hv-$?>aV`t$FT_D*VlcouKOugRNPU9!!l
zuWGWmqTs)L2AfmxQN$+||3P}DWm314ge@Pc-wG;VVzER@l)HV-zfn>mQecmNFy>b(
z)}FI;J10)+Df~RTrlm_3Odc?48h6(02}9H|!myg~M>kNZh^`o7)bBnKTMp>2{Wahd
z4|;w<I6YZq_9PZ;TOrSE3M+E>57dp0N!IHuFa_oiO;S`4N!pD<QmGj=>5zL^4PawQ
zsUckyOV7X_C$0G?k5~BeZGuMjbuI#>xGPvQ<Y6a`9pDByEf@K`BL?(*EgpwG;3jvp
zNt(D9L`hWYQZ&5aJuu4smZj!%;4!0l?{h2MuYKtAnfF`5wGl~;gu0|oG;2o1JTzl4
zDYM3{JEq=_i#lc&;hs<vJ|&c@-e8bSEOm1&Q6@}Xk{6&R9O*Xp;LpB1ce&O^3zq!&
zLH!8#DDpsndFn=S)wCWo1$v%3BvMxx)J-OxL}VfnL#myD)aL84`)7i4)!f%6B0lqE
zkNICD`cX=))1V&mKCthaM_93MIqID8JX{;LvYS5$(ZPM*TG+n{=cK{{cfjBqQWN(+
zA236n`hlsNLI*t>m*H8f@tAS-5z7!>dXKI}h{V>rRHhQD-veP0;O~#=w`Prbx*q%g
z#6B|G_TtRRc{8NY%WXFH?3J$Lmjv_javoynC&d5>nO~yI;zLv=r3{(GC%=8{HL&r=
zX5@A1!Y+v{m>>nwaw$ja<i94@Ut%IZSI%hOCcggfzd-yi&|S;2ch*7fw}T?Zw8-+=
zZG!zV+3xYsvb3c!8%p!*<=b&#RF3qx+zoT|vjhd=Xk&}uYpIc)yf@d@SziOqefJ=!
zy+Bpq*frF1bRe9qAXn!Y55cN@2_O#yq%HT*lQy*hbEpAu+30iRGFc0APHD->ne(Jn
ztE4Au^ug@w$=AS+wNq_@Jf5&*9?6^?e7)y~V{9@{FFEJ>F=TuCOH9p0izan$9hI2n
zV%on~mfj)$qz%cuDYXU&lR7kGic+U+2^qvSv1hS1jSt5U`%SE#Y6Da7So}_K%<P&O
zR;|e;;^cjNZA!{tCpqlxAf*+E|C<k050NiTjJcn-yFJo=K+hU01I*&!{5<Vg8N2dM
zLJe8JSowbCn-O&)+oMj1UXz<Fv`PD3Al@5B2sek);Z=m1h`()x)P}8jlWnMk)VA+g
zs(eAXD3ba|Zblos;rvH~0De8=O`Q#G{Ad~%W9Z{G_UJFG>(dIL7T=iJ{h5YcI%gML
zU;K#7_#r*3x$|nduVjHdlnu*;=KU+T6uNcx3^n}wYHMwM!%11oIIIaG59ApuBa^`)
zBB+`AT!=)kYQ}l4c2v35Q)h3S%FliF<{p7#;JtD5xE<9O_?8!N@QSf)_?v9+u#J)`
z4)M#!d4CH>dfTV=wWZr+Dty?Esi>P#fop=;WcRXQ$d~rnJfkl;5>-gg*wZ=)<Z6<p
zE|lI&4_Lh!yG+KnhleK+l&?U-AdoPMyfP$PQVefVoW35r5xvtP8!(|?z(Jk!{w<x3
zNmMVZMh?&K$Gji~W6klXITd5PbI<b?T9AQ~t5uI76IF8uEwk8Wddv5WE`9b`A*Q<C
z6h{u@%dubb8Xhnq)U^8Po3&=u-bn*xU(ECHn<yc?&sUviCgD6!A^&MdC3UDRoLzV5
zNPd_c)*9VWR&>wu=87m%h}-hzq3{2%Ewt30)7-2n)?PVpSz9(MMBp)tV8o2(UR$J%
z?dyTj#!||Do9186;JndCV6-syxqz>1!Si{|r378^2%A3it;%_yoFF0C<<mko&Sk2s
zvt$@pL*xc~xtsTV2N`a8?XS)TZQ<p65w9F-$|4~3dh_|cW)9l-nzBL=4(R<DO)EMO
z%Qai6TcmhM;Q22+E4V;j*z&dGJv!`Rmr2jxLS%%V&!v5Cd36L7{S=}h%#z4J3}}ga
zG`=U~DJzVn&|mg+*c5Hdo7S*qY~|@=!+upNs<M-2=l`Q>18=}knNu|wj11U2Bd8@Y
z89HxTZnaCK2-kj2r>ZkB-C&6NL=;YGp%Rb(Qf0NTp)uF>ie~)QAoK%{?VK?avdA!{
z7Ly}hsckTuYqFHI>7-u}`wS<vmsQ8+a0vOW3(Tp}?<+Z~-e=HP92Nh?tl$0ZgOIu`
zyHag!TU9k+jE$bt@Edw;8o>84@y#Or4K`E9yg1*NOj&XIbJraABl4oJn$BxNN`Si2
zr$IFEO97w$>u*g?Ef&^WO8gmJ^hS06W~Rxd*0=W4<*#-)Ve>)rD4a|b2z{|LUc)GY
z%qA<BA*g%UeD)y2%}^)<>RTWXzB{|&;m+&V!Rfj=n*4G6(JJ!X@_W7H%E8dIIh4V&
zDDt<xI@-v0ph>Z@YZA41oJC}w*nk6PejMaLNlEsPBy3{Yn}-{&bM2ap!%{{Wfz3;2
zj5VG<@8tzc_IwYTHoD6HBc~%3b*wD=Wmqz4;((y#IBQm^|8K#PWoF4_x3=gWw@pmQ
zHj>u;V0zppl7=AUJ8`t+`+IeT9C|Ape7_)Yvk8SePZnPz*P(uR1(3<-4KhJ5WU%t|
zB9QZ=H+z8-l1kp+2--LHyRXXDvzxqT-0}58gOV4&WpySJ=hWn;hK5snR;(1jw;)U@
zQ{it#VV@fclWT@YU%R)>fuqhWoR?m&JOJVJ&)3!p`aRN+Wp1toZh%$J=i&jAi*qXN
z3KF?4-KNPN3=}NiEJi8Z{lPyD|5E>0E2r~L{+4IqzZDp|W-@3>^8QjaEOft4n_0}M
zfpZ2V;hWLt^NARJgda-d;8Z#do=$u|&HuL|yV;828`d;QhT4comO-aCV~X4W<~R5o
zo;T}!GuG<h{>)QQDB&Mc%#mcfx_@CK7EQx7BEv(DAF#{qThz8HvT<9D59tX|w)(Fp
zP$*qB{)l_fHn70#=Gir0Nj<n?Uh~|5n+S_yEvCO@IhF&RDdu6Q^(QfKF5CEtG>SY{
zUT#2AMarv@$(@vt9HKOo3`*9JlbOk(1kPg7WLqosH%eovEoZtw!qFsSJ$xUl+PFXc
zrH}EKG(Nm;`pZO9K<Ga#zwch&mjBK|W)-W>m(ws6A>CN6(}lhlU++gXzx+7=(BjD-
zPKvyW7VTeka*24|4;OJNg?S6U3g^X=5sIXN;>0KuqrH!Yao_Zt+tD4#xDlw~8>d7*
z7v5i{38X;JE;Uk>azo<diXg8LE|kGVKCIQI;@&1&8J57{83F3DFCj(+s|ymyb?;JB
zG5*%ZYTk#(pl=LPPtfAFbW$K2!5_9S(W6Tyh`8hIfET2{JL6rkSv4vjh%ai8{BI{2
zzwi5qCNp=bjg>ND>0lbSLFFFc4LHiu&<D*<mZ7u2`8Mq~sxZ47l{+n2w54GFLSKjz
zkbtKt7&=BY?5!j3!isWnWgmWQ(b$6@)IMD{h%_ccHIgXJ>{10r*Jk40dy$^V^d37v
zUO^D}78w86LLk0H3d=!iX9hU|dbdUV2FT}A6DNxH;x=~&eDwGxa&hs+owZFA=J(uv
zycj~$so?0z+f`Igrgodi<W1BL_XcgMiV|9EEh))$*?<Tn)2+*I_0<6fequYxz%r4!
z?LC)bR^@HD7Zce&x*5{{_uA-NJ;uLxjG@++@rBB$JnJ9EFTqKg0fPzgtKVkFI=gQf
zwIGbHGkc}~a{S~3A-&}am`p!u<&ZVZ+%w&asNGioK72prz8kNo424e60y&4}<-9zA
zX=__ev1RNI(?ue<oV>56)SayQ8?5yeqrc)v8PDQ9DJ~VS-mv-rMM*deS=Db=iwPQB
z6}s7ju+(clV&D&0hTz$9Z9UJkHm<PU?4_;6<|;V#sNW6y=@gpl<LtR8-qj!%sKVx(
z0>xYS6q`CE&(D=D9Xv1&@=OIcW7-ZG4^<V|1H31y=JP{)Rs)U5hR#LAsWMKpG~Cs@
zzLI(>i$ciJCNT$*Pjyb8>vk2^Yp>Xx6!;50IsK)b@#>tnMVq?U_{Ymf8SNenA83hr
z&j#5k0)nUB7bP3b>;-K6mNj6YD9Fo-XpwBA<kGd=xBXg^k!F3z`4b~Wkxy&oe^;`r
zjd>2ApW4~Ixu^fJ_SX*S9;wpiz^<J1tijYHuq%dC&=iq$Mpx8fB#=FoG&oJb%=$@h
zYGN!>UL~x`L@r_;eG<%L;8NC+RczBU{`68S$m}y%v^Q#0;d+mc;Mb$kJF^~1FzBc(
zS&9qjVSjemDgRS|l;BIp-=h?kPMdaSvp5=Q<-uqpy;&&|Q2OS$JkEV<EXgigCDmBT
z#Q?n*gs%5rT_KB(wDhu*_gVz85h4Fyqz>&odnnBV|Lwhfa$^bU2H-@$wSJb<&B&T_
zEBCsLWoyfCD@BXuHeL8<YRfFB35U5JkO?0y-B*%-D-SXW$sb|+@uIHHnym5VXO?)4
z4?Z6xQ%%uSpl^aK?5DSVNA8@XWZ}n~A1rCL@B-*U4}Y(#<yb*LxHyHXx#W)#>%Y67
z4`>E$;#QS=W`MflGxWzZjbg+mw`X78eVaZ|$`SO|P&_A6L=EXIS2@w{Pc}3KrQ4Hn
zdI}c;;T*UM_D5_m$u)~J{W&`J@R<3jR=;*QYvF|W$qkih%e->dg)8`Wuhh!!j~#_1
z)@;RE%_E{(o7(zSJdhof1%+j;W3pu3-zmL&-4R7d!Pz1O)+vN4PY0NL4nxWuALG)r
zuLu0vGYO&hSOt(7kHxe>c+PuRgblcyxD~je)Gnn5#!2-11ic-D4Xep~43ff){`=-D
zmM;UUbXO`Cxg-k`@SA6hIu{>nNCDxb+2id6Ozcqx=-U%7M}=^ARJ&i85UJ_b{fN4k
zn$FB$oN<eKcV2jpIfl{Y-q3>&(iF&vQIx)Eyd9KX)l|+{j`Q#-Z<pBp@2!3(fP<nx
z)u)IH;OeD}6_d^P`XpFH>>%fl{<I4{c{TTRXO;S4bh+i2v~y5qof)?}djByw5=!*)
zdf45g{grFDRh!psrbDi=Jhj@3-gE!h&vVElg?-<R5kFe4h7`Z8v%9n3OIx3W&Dw)s
z;5Pn{{UQ_xj_-nYIqEy|$c`Kex$FURCFjhbQnFGtzd-~g-CsiL$1uVzi>vzFO0<?O
zH=%n0t@!DgL%=e!h>QAWfI=(=!dP_Fd<S$I`oc;9CB18b?701ZZZ;Q43=F^srFh{P
zZyoKv&|wQJc1y~CLWd1GH$4c}uuAEF7*<LJ`Akd+t8xA5b$cNkAg-72_aPf4@EQQP
z3dc#md%s_}p5roU3XHYdu?vgw3RC<>htv%E(3hdQOJUOdyfKP7^()TvWna>rD3b$y
zj-vVGKGY!BqW4rmqYipmW!jIZyZ~7ulrma%l&i7W6jVSaZU+R25xuVMh&+3`Re|rY
zeF!Mb1G^oY8?$nar{9|ee$R$Yn^Nez^SnaeJ~BZ#=*i+_$=Pky1{C@uJg0evZ;$xP
zM8detQGHc*W2CNX?Zg6)+fS~I?{Y7f^;bzi5*47{+w}S)4K2vW<}q2TWTS383YeQs
z+a<8Kg`{r!19G{1{6QnEq}c{gW^Pkb5#tCYD1cJcyNvp(#$<}!SmD1H^1h_)TW|3`
zFDUA8+`D4}teXMLpi4u}V-sxM;EH`4;-|q*QgClP%1$tz=LH)oe-TdeW$AXxn1R*X
zRvzcI%E{`?p25>UDp<z%+M6vG{+r6o1uj8lS|vFCFUzlyO-Cc1wF6U|ZmT;p(?R5#
z;LATKDQs_M>Cw139}g&9y^BVFRT%QSb8Hf$W|i`3Ev>fp=^h?0#En~Bovt%jSVr2H
zyb@@E(0HCFyzmP8>GM0(&^}T#dm2!Ewa)R+<5!8c<0{>f1^c7a(2w??{Gk~$hbM_k
z5&g>Wp^>rgsFvZhy1<`uRgE7x<b4#kpr`W{M~Cryg=0fi6yv(!h;HQ4Sog&Ta39lr
zAGL1N1})b>#Y&Aj^p4Coyr%e0njY8k`)NwPLRfje5!t|9!6e!BK;{pgo^b2y6(8w+
zQb`Fv$B8D=R@ZH)F^M<~GhDdXiCnp+r(qZxUUv6Mk;Ot@w#C{_{k@M5LH~5|lAn~M
zLH$UK_-TWE#*HO*@QTTN%H#W1GVsG);JIao8vZyhJI__@J-tn@)V>AcCN^%!e5k4|
zE1%}!@<cXd<-J3X-@Qq4JUK)!ZJ+mT5IO75KrNW(MiJLOWb_$dU&U||bfJKyAOL!A
z??wdA8dh#{8EmH_<@B{IOh!0^_{sQPm>l-F-^a?Po_m9@Hhlk60=bST%ZeDCuvOU<
zO1Y2bWb2HTF*aHbr0#sV*krTVg49^;Z(vUw|MJD{zZX^^Jw6bp40!Vd))`TCaods$
z>O7l7bW0weqa)i-Ce{yR`6aE%#~08Y^(72Kh`~GcTzX4W2!pM_4p1Pt9m2=O7CAhD
z!#VG*Z@<dMliSl~Hfy~GC72Ia0}Mixza?2^9M-_|Lh-Gr$g*6U{Vmv^Q)f`T+ka8*
zGE|8*ax9>{Oj2vovr|>59e|Y!hx?FE1vK|Qyva)VB15@w)iXzs)Jj{Nw!K%k4#RG4
zrT;{Us;^Gn1b2Q9En$rxuFX8)+aPVWOr>C6YoKo|gxyOUtRzT_JcsIS9r+p~rQpm@
zl%<~D;$G@M|2VVt_k2R#wvB^OyD)cb_`;RAsmF!t4*#d7(`o!DOWoT4NY-M%Q0`t;
ze%V3cCZ*SJuGR(xVc6GGEI)+MO2ShuJj<@%b=oCyIqm#JO<$+jP96@m_RqKRT6EQ6
zccb-AVv%c6DiZA=2?Tp2c6b$ypVsZ0D@fL)tMtI1&-F3MRKbHK&?{){;Jy_qDl*@+
zzX=8Mz)sEmk!Nza0zmbr7_WO99G}A4%)P39yd@3;kqR{f=YKNnAXu_jWss)Ie6F3!
zXL`KoXMFeIaZs&`&Oe3q;zN`Z-dss21)gg&Al)S2WIOTC^52(CLtpPCJWW#|l=IG_
za@9|xdY<sQr#11Ua(uA`L$h5_`F_TkqGw3gl`3)CiVCJpFUgx*>vA--SatBKM$SeW
zgMRWfV<V*4N6A)tHSet1=ciG)d(pn-seJkdtdsU`$<kM`iD<F=!<_D4X`p?!&1-c5
zlbAF@JFZv#@N_jO1)t#wFc)^%p*ru(N?Y6r>5O~tz5+0kKW3pbsF^eBXMvv6qB^p4
zPXbbcga4Me?oa{1ILrWxZr<q^vAx|mi#Q8vI&6=b`V}n{Q5H6f$j6T^$BDt4I%Dsb
zf7R2f{_u&B<p!^ucu(!pbG6INljTQmSJb|T_2mjDM_S04-%W?b6vCH1zdK57I1|?s
zYkAz&3?m+qXoNlSs>$tlLtNDUaHXsUov%!D&B<1*suddr_8|CG{U1AXA&O>cJZqrW
z+s5;4bL$6MHG+b2f)_`ur4|VR`@(&c9=Z!+O@ky#b9uWu%=L4!PE9ZND8ca+Ymya{
z_u{^Ro$|Feh2!`5Z1Mtf{C<IO@W0EAi=W{yd6@Uz#2QOxY_)*|0{fF9rnPw3T~khL
zKt4cGE#Ep@-nhxrO>s1Cris;XJ@*FEB2ug&ySy5fFK8@K*`RLz-QkQ*H^4jrpO}*P
z{B)Hd?RsKVbJ{PF<hSG&8uPoMZFg@Ey+cJrO(H^LW~$Pg?FcWH`wO4f5Nx!>*7dU#
z*QFZD&d|IcPlWcVSa>t@c>`Rv=9mUgejHHwG<gg$E#>ff;h|TF#)y#-_22F;B!C+4
zVFYh)KFhx%uHf<hHZ|U51iUGZwpW-JMYUdcV!cmsNdUjO(0AzG*lpD2(QtVm^0D0m
z;1s6+*PDBfIUg_ZX~u07OS;)CA~yQQ8hK%G5j;XGcK40I;bF>rwrZuJ818;xI_A-%
z%19xvzu`@g3l$06eFvKWncK~5P3r&sd!ARMIW11qYJaV1*L!$7?*sN1j}N=lyP_w)
z?;<~)l`==DezchX&t>vsFWNF;0RH*nHYFWReWzyz9c7_UcXx;|7fHY0uRdGOfWj&Q
z@s5&-mJnh@s`7>AeJsMiQPvWW{l@+4N5YH#&%Jfm`J>Q`I>d<$i|zoa;1?~YB8Wcs
z_d_q)LO=B9yTQL-mbLc99>dup`cz-4eCW+&cWIk!PoTfskWUXrAhA{7_k_Sai)CfP
z71Jl6NTv0$wB3eTb%U!ic|FUT=coPQqc8%$X}L&c*2ik)8b+>c?%j)rche(ONY`@j
zs5HCnP3be7|NM|q`&B`nzbV$(8?G2{0cT`Km12}p*I!r+l?lxYx4qi^@|5aPv5yhm
ze6#m^V-pQ`qm1l6vvNT91C>Hh-?zJeO^+}2^UFTTqps(RzzmRH#e8*1F-iO`C_ZkM
zrWJAZop(%y6HM<%c_o4~w299hzw+Bw*s9D(_j$faYN)L$gmMckigwZPMq_08oZnyk
z%JL>Y+_YV&%IekZs~&ntKH?JI68!cKvc8qUm9rJB#Y4t;_{8_XABv~Dlqc_ZBlCLF
zX~5kdI{je{W{Pp&H!Z`Q;;7#p0v)(tJDj$7^WM!VElicsEnieb-M_1w%N^8?X?vK^
zpO(p*$5UK)d0u&(JudM6?BuC+EoSOr)3N=3i&|32Slhj*z@2OMXiZCLZR>v)&v?5m
z)i3Oq4PP&HV@wGr$3t5uKBPXE8;A$(QAY{F%(M_Lgc`H~h+J!W0qt9mrG3Yco6ZJ@
zQl7JS*HC43`!h%uU2QI#^@k<hJAPdAjs4v;R_BBHxefN~?OeT<2r(FVShWqZWs5RU
zf`BB950+D&ZfP(_fL1Neb*((sIUMCZdl;Jn^Ua+e$ToAdUM{mi(~p?v#Ar4ffCz=f
zjn6*I!(Dv`<5>duy_@Fs{LAzwiN`an2!jtB?8}vJZ{^wJUGh{9VL-oRjY4i{&w2Ql
zpE+Vvr{T5E$Dv`T3E0PbZ&z~#U^9w^4Om1IrW~JVVXSzw?GRuW2KoLXje>sjw?9c*
zQ9PJ6_|}%&0=*ya^?WJ<e|`GZH@xBS*Ha;)^+Rg~-i`|9H-DC230z9saY6q(VSSfa
zIF18P@g0lYZR8WNlT6<i=_$T`%k_jE_|dL>v2nh2#Ix;cPJS`h?`Z+ex|>`0{(zM?
z$<{R4vvJeE-q^3#T$WKOo!QNZAUaG7Do*FzbdsrZv6%ke37VWx>RBNa+KG_!D!#|J
z+y2yoO$7GjKoJI=-?{%3I=;;|C7p%+qXngeRPNuRpg;-X*ie}4h@Iotii)#<zn}M$
zd8X(dTAyo?42bJDym@!BtZxytw>G~i2$F|syi4dcf~AH09ly)|%e%abRV@eQIlNyC
z8*xkQ7wzh&0Si%+7na+`UKv4+{9RdTnQeEME1A|za_3HkLgVJx@ddpkR`YSWkvDpo
z4|%W7Pro$qzQ-E{Tb_sa`K;X)bS9NdFLheaZ6A#BUUd$PBDZ5dwqCbXJfXkLm49<_
zFX!sU_)N}#KiaCT;_586lj^%=w@u!JaKlD}DvOotCtl}epm!$cM)Pzl4P2NIfAV-J
z!kznvFToXXG?g<kK|Ina#NLoEwiG<OZl2n1We7ESn;zZf{=sN#F9#{~Zl{U*E5GtK
z;`L~Vj%zJ)%c@%*^#-+sbb$CXM=W@x`!r;JV>yTrds|=g%wyVWTbHQ`N5hL?<5*&Z
zh2Vnz1nqmjgyxAAu9}Ek6ywKH`ni}VP>Zp79iv2f!LLZguI|pIb8#TonTKN8X<X2w
z{KYbA{FC$6;nWm@2);gq7is(bvjW$a|KXv=`)j%u5h>sK+iyC$hzK8d-v!prI~3bf
z@ix>t@&duoIKj{28p}5o)2_Qwp`H>uCe79~w8x)AQB11!Y*_U!5Z>%<=z?zXOZVCZ
zdZ+b`%e!>YmYV{0kwdc3xvA3|yc6zU>)o}{)eONrr|%~`4hES-gI{?o_9Lcz`uk)y
zLIKYa>3c{u^9Wx2S-eF~=?KimCs=$KUYE&(8^f-YTptLD(eazRcI6<U&O5d=82n1<
zL$hv2TsN`sQZ(>9me>F6pPoB6!RUi+TO-s&@((%d+eJd=szLict&$|ISm=VC#16E_
zj2Y>0Ht>cNt!N#Gxyo3x{<p7paCI@D*ZHodEePpk`C3k(;$@wAn#RL6C*||8egLWv
zbb89H?0q30`e9e4;kA0(>7{f?VDmwk1{W8optL~FCANRA>$&Jh!n?G%V4ER;ouS0}
z2a5&9HuVKMQVcC=S{4v;kUz~W?iIa&cbTuX%WX){UC@k!RBL-MY85MX1E<}XKJxn)
zMp}&M-s<7zs(C%UvJBcF@TfE^@#1i8g?9ViIX2)`$bmaa1bR8$-w@7HhiRQr?Cdd}
zclP(bd$L;7wiIQ>>;3g{4#kUB$UwL!7UA~pzy7YpB5K~ZNk@#U|Jt!5r!1Q<!B_8R
zuGIG*73i_>QbW%alGy}>S{EV<>eZEY2Gtz|>zou_1#lJK6|}t8hX!j)O^?&htK|Jj
z)xitaK>H6UZ)B1wpYDUVv9))>kXfqF3@b;%T6eCt{O1*DR141%(U>o<FpsEHXQL}?
z#}Z+F{KDLWH7|JfUBSbGttd}Vi97nB^}mbDa&K2=iu3uX#8Bn}H`m($P@d+w49My7
zbY(j~$Zh+uQRp2#_<h76I00IV_^R7$uLYm=Z!gFjD(I_b#D7)N(4@s5=pOLT+heD#
z_RWahaZcU|M0My>Vz;`#XDP{5(|h{5x#4D}BAM`k{RFub5||nAEf%d7jHq%6m0BCH
z*WbIKor(QNc8eH|nycISV}O5Q{f^^u`FjSwm2Cy5_ll!=KN9*!vYZ!6JPUV624otu
zT@DQlh>mUxA~hi^B^aX`7HDL(PROes(BZ!wssxPn5fvk0T%8B1f!sZX$5+d5lA2L~
zcHYo4>FkpC5<6=pdJAnxm2M{HUme$HhB~UB6)J`3UG28DCRoS>g$7LBKOU5}ybZ5g
zPH`>FO3Qg4bKA=>$W?Ko;c10;t19am%8g&)>#z^>k74jyp4#R_e#((llc&ePP~$Bf
zwWDd>9?s33uMij)vdjz9=Hb_9X-lQM(z+c}&Hd=qO+~|R1cTmA-$)qx11`O-@_^W~
zJb?Zi_2!jv1&d&Da%*o{{5BzqMYj@rI_)WTIOw2WJEY!vJe7()dD62o$MwQW+c&rf
zucqtU20$`cRR4*Rx0A+H|JXu;6+c;V1oQR!*%4O&>z&E}PABqN2`(dzvqAa$skQlP
zm_Xe({&i15Ct|ggN1gYS)W)2QzEbh7IY1vTN3}Jwo}AoQQhpBj>809Q*fAN=%5(Ch
zO8_<Ov8%UzZBgmpW&Y)EAxxy9>!qyAwOZEBN?r^rrn~GBsD0n;!}Rl$muaQ3+e+>S
zgl(yR|E~7buFkAO%Yk_t*g&37Uue%3EZ0d-O8QHen3Vpd7AE0H&s+k+ulz13PIpVQ
zv$W5h+WsY{i`hM6T2jdH{9If0a)@-_Wo3A%tfh3OaMjzAgL9q%ulY7zorqV8sLpRx
zsyej}y!NS~iphSHw>{?bT_d%(@bZjFZ>0{9Rsq<CxaYy)=YmC^9=&Hs$JBa7EKmE^
z1o?3<8TDMR#~({$blon4niLl|=m~)3v)lQF{fE>TMwSx6U>aUy`FFxNr(jV%SDaFv
z3=v?2A7r|&wEH^fUCTP)(~x<y_uspyuS0ql?bwdVC9ikg>f0s7??O6p73WUeX>Y81
zk}<z09Whr?wY8h1x5CDJ?2yZgKNU)Er7o8r!G3rZ8%^pPpH(7N6hqn6zV<O_x=x7F
z_7#7i|6S=9?|avSC5FZEQI}hc!CPHvw|u?_)%FFY0)8V7jnh{3`E|h!S!`Lpnrh5h
zFr3wx{D9$0n|)GRS=C{g?}q^&in1g60Frs$7tF&3&NZ*${}}M}L0$_e>!)e^Wwpsk
z2N#ui!*&6xUz1ieP_c)rKt$5ia4Vx+?WY}lghh_;<s7{^iDbcql4#s6qvQrH|MFns
z4cV<O8ES$#PfQ=0N<|sT13)&ORO{fa-w0B?p8!s3qG@;HZ71SCYxqP|f2MR|J1r@9
zdHoEe8vspCVI{YC1BZ&eGB)I%+59EcvZjF$Kb=OD9$?#^U^IWdDPvQM;3t9iChWOR
z%=*9hD9kUFGvz+5`Jh$LKLI}^nYqEsed>IO0N7ZQcpL$Xcs<#i?S_Pz5#%n~|E)$2
zW@V(TefIgZe_P&3#fW#=SMf}Us5IfU9hq_yAITIs#6)hy!;^Y_Jy7f<h)n`1hO|(^
zj(QcD4^a9r<Kwhm!iX&c<|W{_=7w^`K8gmyp3>XAtLo9Fzra`R@gB*F<%DglD@E{D
zJNkLZRPlF4LSK$wUS5>@k;e+(Cocp?(PvApM)RePeggs%3Y60g;wc;Z_`k45vw5Ai
zYW9FC(^*%u<4+T&{W_BK@#AAdqmASLaWHD|{FWLgc;L-jH(~GmZGzJG437OfU{8Nv
zHE$X3#K<q(|MTy@bOxYik3{r&UzT154V*21DwL&t@6a{*WVU9OCR!c(g{kdPd5q4I
zaG9!Ekci;kS`xsezOAG?aK8CZvEQIMd$ld$45Mq*(=u^}NdW$E46JgPUz!Bfj4Dtr
zJ*R4DH%ABm!91^t*Lmq=N=#`!Ip~g_sqaSHNPMZfqVNex@H_OoDl)?UJG*nyc(yBy
zOHia+AaH?d2FQ~KV?|KDkJwIZ%g2;HpJIEr`Jj9*P^Q~Ji%0NM;$*jRmys56!~EwQ
zVs?A5>zg+Z`Ghp;AZ443jO}OF*Jb4<G1#A6xVYQqRd}tU{lmJx!)}X5Q2%P=P{YP+
zBB?7dQcMP_Q{$>7YK-K+w4e^6IWlSv-H`VT$9ZV21AMoczHWaD4a?*G@xrLFv7s0?
z<o(**4gYDV7O&M|+kD=t1R?@_*`o0A_|vQ?7HMc_Pi4?MRzk@$gu|3ImAqgqgW~%7
zMcBSUi`~hmJ51}Gp1GTa9eB4tm?;zx=i%+3*s1=X;0?w21%R0jAs;?FokKNf+|;-Q
z$Vl0tn#<Cx%9S|oly7C*t<C+`?z|{GC30Wu_Z3elh0J9~kGSz%3I)dc6dycJO6Vu)
zAW5=Tayzir{wI}FnxhI7@tdY2*ScD4H^qY}ynbJa%C9I;03~)Ua{nbOP=Lglgn~*p
zzgMOpzvL6Y`CN6ijvLpUVi&35XAI|08f>4rc|tPp7jBj*vu_e*`9mB9jyEq(=q~2}
z-d_~{t{){au(Z+ExDD;nG{qUkq_iy|VIh-`5Y+9mQy-Q<U+I2}SV?>*(l_Gd6Q%9*
zy}im<jXBQVUg}?k#LU`i(LpighX}(TK(|ZtBtJ0~d7Fov$gkK6HdL1t9e(g^#TCKi
zJ(k(2BIea)L|!GPc)OG2PwS?&?%NGe=GIzbx2FT=O~UgHKTW=?9foIAp#;0ETrD>)
z=n2wI!q%Qeuz&46W<6&+Piq>)U2%f{A^%6wc{oD-|8bm<uY@uZ;#6ir*&{SavLYkS
z9w~Ro+1!~~6_=f?tTNA8C+qCJ=bbyN&{=1@JNtLPKjE|9pV#a8e7v47*Ap&i994!%
zFMmRKUslPQW!4kx_iLY*^2Sb=l@H-#W)4tkiNqbwv(ezydfoaky|FPYsMMZj&OCVk
zQNS7b88L7b`X|3+KS3;m4}=K<nD+OnUlUdD-_{L($a<Y0I=N_D+#{&|H~&+TM0T|R
zu+tra=ME~V`9vc=w8HCc)9(bovdwr2kW^i04l|hyI5^{ka-Jqb4HM;Zmm-&x{vIw>
zx!$DXo1*cYdoe%zyy^k2Wub`i8E>Cci|l)k!kY?eX{siUuK}GAipIj#uRjG{>Lk6X
zRzWpxc+H*ZZiVr>5rj)v`PStQXKuIoPR;z3xpqLGQF;jbU6&aYM8p;ezS?%hVDhaL
zW0ybg=_vI7#Z|HbPXw_3*RF0df<c?6cOf1P53M}u85Ix=2!pRKoGckmPi^bmR)hG~
zlSSJU4u~tk{|{-LqkM$-{zoG40m9T)ZxPKh)O+3dT*F2vznfbLCC^p+xrk*K-@!}l
zy(xeaR=lA3N-1GUkKhEG;6VR;U7x?nfomSdckRBCN3VZoC;f=Yyt%SB$d<V~wl+JH
zShs(pv*_q)@LL5Vf}^za1gv)>IP_np7;>Kj(B(5Ya@MLxm^VX6Q+_loFMa3m2_ybR
zR%Sw2RWOX4V@!Z9?i_p7>cVyCNiS1n;T7OZ7)k&Ou81szuVWn-QpJjdS-(b#!Bew&
zD3SvAT<@ekZk7Hf#FOVn*CleqLc5k>@K26)*`}ZNoMg>td|IzYsDVaPj(d*E!~I;_
zKCDImp0sw?Qt)YAla-_Ah9-iSU%H2UG3%+sn{{*tM>5tJ{|vA3kQ(s9_|7Hx)v-(R
z;U9$)i(!`)P+Whw86$TuA;MUBKA4HG-BmQ;_4^BByozrwD%S}eaRep0VUOn36pYJm
zwNATy-a_AVZ0JePz)lgRYEu*Ky|CNgkV%!79d&)g6nj-_6J0Ie67HNlnw9ShC3ClT
zY9LcOVQg3v#Oap;(s=t_1F8BunXj^Jy=4qH>bQF)bGOu%EmagGGe?rv1n>+h7@e8V
ztGT;lN=eoB+y*8S0Vgm91$M9&o^PbOBZ_d1f_odTl=~fU%L&S$u-a5I{Qtw!!u5|B
zsuP;5BbNaBOZW!9KcJLc;Q+d0o{)uO6?uWv;sqS#ny15M++E2Gc$|MN%jTQqf6Lz$
zN!P8UWbL@KN&&Cx-MIt01x{&B<_9@+z`C_94<0^BZg9-1d+j@ufNF4Aoj$s^eLuq>
z-mjj0`DH&-m)Yx(b6up`dyAYhvIv9_%JnPxGkg!*yYXlM*DCU{1iCWy!|(Q$OA@9h
zsWL%q!1~y7XILda<;7n||B5Kx9+Awi50`o|U?`WytKWJl*u>uY84c*<**vWF(K7~#
zW!Lku<&tgl*0<`euK}hh9CKu<0u<+RJhS#FI51(V=TSn=jEh%jsM~ABn;1f^Q@5%4
zC!I}fh&$t@+Zn;nElSMpybuw7AhNo`VG*C%EFH^mYSHs|N4&_)#%K0pXgFGjxkAp9
zb}8CJ?Zh^|z){@T{{7edgJz|o_*m|*pl(8vZ*tZPuJ5-%m^!*8osi)B5=L{|o@dL*
zKe9L||2`yq&arw#gl8qGLqI$0Q820M1M%i|_xGvmKm?+InW4S`?OiZ#et%8=znn1n
z!nGq=@HgyERU3@$u<r2Kh(I|Djq5dgDxtI|KOQ!P$<gRS5YJ<BnyupCfokwLPT&>7
z+l`l%VyJX0qRkBmziSyCAEgWu2R+0_ofOncS}X|gjUl78n26EeFF3&Xf)FfD&;=eB
zuaa(0mY>d-<l6RncgOtK>pUZO&ZCkLD9rzguK{ag&s!BT`7dm?L~Zs&Fxr>s#&--4
zDjB4>s)%}L9ixSQr=HxZ%$U8Dy*%t(&%i1SQK>jIA&hCa4F~L{We%I8YFf=|=a5<&
zG#6{zqW$uA5mrR?tc%$!c)MSpLF>JEcl9S_()`ivk1v^|?O;m6&Yx~?`yDqfK(!Y_
zL~E~oM%S}eb8&(sa-;$89W19Fddvt_-TDar`8~So#=+!$H(@8H0mvtGXTfBpo74}>
zzUJSl1fRh%#f$l=Q$~`@0OWM<Yx88V$I9>f(TW-><<=o6?+11{b`i4=H`dZtYTBBo
z&dZjnZfyYjF7yaq;Eh7dXv;+{nH(4F9TJ^_-GaI?Gjs?OF)W(dYQx;E4V2ML?HVF}
z;0*N80?pY-xuE3wojc9M3$F*|d9E$mf#?+eI0oe=nl5yS7{6*n&*4Lf9ne!6R4eA^
zz8fFe_;Dkp$ievyxZBi?NH{6-()h3trnT(PhILgV(`lVOKDh)ru>|;(SzpX*KiP^d
zEVFdMowjy{1Zxs1C}P_ujGOw1VY61IrKNuDmC7>$#SmWJyd6@%u-c<>o~~{!MY<C?
zh(2Ix=^)d_Ozx$see`Z8Tpv3=o%2`&1b-b&c2HrJFRgwH+f<{N_P>#UVg!}U4E~(D
z>GC>F#<tDMhIA6-z-u*c<xj1f6zYJ)V;<jHVbT+R;26PgUMR@~X}ZVr+6<ts^8s}k
zyy+#y&&SOHQa2*sUF>5lb=*P*G}<`aEzOnE4TWPB%AKWYU#~Q*M=niMPmG!1%RJJ4
zBgnPj%T^LrbOp40jXzlA&w?K4uYcS4n0WcI?r4Cj6!tYk<|v_MYH9&l#^(r+DR<Q9
zm5jA<s`$vObiFbTQpjVwWOL=wNa7G<09a?G|J<|Z9u-nkAGpFa1G2XV(Ps3`QALBh
z^kcQ>jVMv<u_gg#NMjLOr;lXu&7PWmneI5Cb4IhauGB-7#deHF7=6EVm<Q89AKA%f
zCB<p6`p$Pxlk+Uv*}rTN`6`BY)LmPre-x;D*7199ojx8drWAEv9}3zfns)1C0Qs%%
zDEtAAqyOaJQE0beHbf?n)HcagJ`2IEsW4P7rHFK*ajqqD_xw)|PJl*rz<np@#JcAY
zFXqxUkK^N(I_h5%UlJwJV?Bg8`ivdt6=<QSN8SlsLKox~|NM~s5a<mJ<DFZ%Z7qM*
zY7B67Zq)?Gll>DwNI`$!bD3gcN6oi?E0!3?DG}=>N9Y@V?^bS<GRF(XL_Vy}{Kfr3
z>h}v+lREuijaoTQ{=d}O-xDrT-6Ss5=KO{WcD!JYk<n4lz7^GufN6u#+a)kU#aF(p
zTEk@pkVewL)r_<a>ZywCK#w5#y|WYbmGpe(5lhSG=6~)kpFdF#*4(<Xl}70N1ZS?l
zNX(>&*|K5p_!6c2&p_ViCJ0$|vpGYDC~K(?N*e2@X;p>dfE;Z9pZV<70}zG688rGn
z$s)`Cga>*$6Koe=4kLHKLkh?z?kmy4Q61*{)=kh`W;DND;DZf9wE&jEy#eDVb|{xE
zc}}8(<F#^^B9EDr&D;mqsUfo>;ov5@<_2GWFe;J54g0apY08)Sr6wkz-C%Zjq&?TA
zOQFhkcfVu)RFiPkI#NJe1pTH!M#vFq;MpgK#+#&dnb8zER@IHicx^EM$r1f$VBSv%
z(PD`;C<&Nidbvq2Jw!0ySH0zh@>QFtr<Qd!oD)Y|msOSRN?kHv)z5W&o-rYOD!)<p
zy<-l4S^ZK5D&NC>B;RU+33Ur^NclEGd9#sFVNsRD2Jyp6i9$0SKBIg`>qlO-c-ON)
zDy9{YwwF*v`;v!gFGesGhjdi8AWXMMVaL=ben|SZ`TZ70bpz<+Yw-LqckrSDrAUQL
zSDf~}xQ&e_V<v#e#<5S=mijL^bQ<-qa%`0`555P{Le8Dgj>N+5)VZkS9EGi~1pZ|l
zZ)X$y3V=;21W7SyEFOK=Xw}xUvNx`H7jj&1`qOqEpX-oo-xLv|m_uF5K}In0>0S%h
zHXTS5CaE?(s%g;o03wT=M?j+=nSCCJdN0k~i4fMm=AwR$ZCK~%`PKg-vWFFm>D*=x
zSov^xpMsh+2QRF$Cl?1DZWwDh`mMC$-H*?KH&~Fd($b%rT~Ie|eg4Gum>r;xoX3zA
z$U^n^fAD_vb3*$q7O1}3b$a=ci$k4SG4uD^*zf3>=&6QIvoXIt6>06w(SZFNvJv8)
z;ZLvLw{dZfYsDLK0B-}YEW_pR|Fs4DWf$8Ny@VRF*Da}w(eIY2x_xipu(c<uOz-4|
z!58eOrF?oMId)hTmCKJx^}%qA^vLZc^u|f!TapM%yueF<jY`;}W2ZY-N%J1|r4c&O
z3Agc4zkjPfS#vw+fNnJ-UWL0pXTNebLQ)wJrNf*#k|Bfni{u`#bW%5fnWWp%k*XH+
z9lW5K$FvYs!IH(U5qlG2nC%wToR5I3beM^tycZo+2=py}?#858U4HAT=7PJ=UQ=)n
zVlth_pF(d`&^zCUxX}|<jtp*5()x7IHbu@eZa2RVxTE~b@<`*+x@6F|1)Zu?zD?=B
z-+upn#vp#<IqA_(%f;d7REnFtd5J<Q(u`%$?w!#RThYePRgb-btc9F)=oCXpeju>c
zJi05y<zkxLxK_)L8n_C4sSxI}&={QU0CKc6|0GIs!}9Nz#Gj0@x(gr^?)Ua-PN4rN
zj(?mypKsc1iWgMO$$|$(eu0tDEed0wRS41|RXVULuXk+FXF=mG9K+g;WHvz8bLOl(
zwF)GMMfk^4A-z|lAXHU34i76lFwJ}yT%n|nKn9?nt4~{|VWdC%+Tq_%_KXUECIA0j
zAieT#+ih0p8zOVFvh82rIyK+WUD8OX_{y+_&(>uIev}mEg*_u-*J1(xVGzuly7lU9
zC<YC?Bo<L@w!_GGlYFJ+u<B{$1<V(CTZqW7h@1_^w^&M((0`voSY@uR5%V2m)Ai%n
z;tO(o1V1+nEA1d(JYeSkHuX%^BD7RV+vMPuG{wQ%oa}KlvV{{raC;)m9fnMEKO<hv
zur4KqT6DV8DQhRws>WeIApGhlf_}M|ozMeWv2P*zzonyLtH4Ukxu^dJT40vlGuxAb
zIRV_wFNR2Gm3}Vl@3T-z{^j+R=~SH&?;Djo5&2g9qPQGbxZ9#0QCGpjT>#i>z^bae
z>030Llx^!kHDjeIN_HIsQgP6Jm9Kl%NpuQoev2St8)tP&gq0~<t-;yjWe^x}N)tyW
zt|(Ls&+_4#eY7-?hRav#r(^+K&}+koY$%nbQu~cs`lTZ})MEZ%yoMO&sdl~bX#MS2
z6*f97d*yZh<(*G}AF;Dn@!=KvtU<{j|Co4mvq9y|T>CI6%OPX$p#!;!iELf0!XG4k
z5eG2!LF6k@-PADu8LEUeV6w89HQl#NRkwbOP2t^p5J9k}+<D(p3w=}B>cXx4ZuwH@
zOQlm2B8XfAC_h5$;`elI%8LJKMg?Z4MsUrV<n!C6&W5>ZGxHDrc)4Lrh-j5$UFn%x
z?f_a22ugxnD{tPtV_Rd=EmhlGfiMVA^?GI@iAXa161TA~p&-?@N3rr=F+J(P)@&(P
zO#YSOt4h0skq=3us%jhS+m^UId(hz_P;#dq>(dV6uD4l`g2KzKk-{k(!%5cWlL(I!
zo|~vV`3c#yeq61unkWqzc7J@>jaEsD*ikDP>(gP;`0;qV{07Bc#Y5u>@z__LEyk4a
zrToZzOQNqi#l|r!VnoX|f{t%}-OER;3*}YrQG5}sSpU;ze_>;G+nh#ShJ+TSDW0{6
z_bX06k0m2leGb!Q`!UnorW-9wHv7|{PfrO9SOq3MURwaUOa7V1VkzS5>nz2r_EdkZ
zXou+GLf_`eXpg;4A=PD9tb4l$N`6Y&t9^#u>khLm1Ae-ah^>B!ls{^EsIbO|wTS;-
zJcI?cKEG2}7975^en#VcKFW>91uKF_mA5rUk(H7}nS^iE2%%NfBzj3r!sM6oA@0z8
zX(R5T^<-+R^uLcsVlo<nCn_;ESD+^2KbrTAib_4OKGKm-2(G#rYfx^qgLEX2O!p-c
zmfWkRob_3fYu89T7GRgPomGL{zYmRshtGZw*@H5mn#4sPq1+CPcvK80-TIDbjWtHM
z638R1Xf~!ox~_QX)1!V4J~AXJu>R5e1#ht+nkIQwkMo*!0h-MJCYJ*VpuTfy7+Yu=
zYW%IRx-D?DbhY~S<bkNZp#RkyxGMoqhb~l5UNUi8z;?%1*_-0QMNb{yt>IPI|4grZ
zmUL`MFv|XR`UJx08n&dC#X%=Gw!Y;W2K<sc{mdHHsTO5Qu4O$$ohdz>F6;hQYuM@j
z%=+CzJfwnZqI-23z;5w^!tS1MK9Ps>w~03aKgf*#bHy;$|2u7Z>toqhd%(LPz_)C9
z36&QnAGFPc{XI9puYw`Tjn&)x9WJnBr0Vf`XSds2k(&-7Z(BVp|Ip>`DcZHQu};+)
zCz?5pRW=Jl{bqX2KR6Us+5{2<N3>g_yV_Dq%8;KjX#hOHVeR_o=xLh^*eA)o>kxCQ
z5mD>u(1sz>1DBWD*hU+Cn+YH53fqQLI9#xh*3=v7SA0$-f0~NcZiqt5IKcC4$l*%u
zArAC-C)<t<b0KER*1=B&o*4s?1zJ*Q@wU&D?c4lzOwTsl{%Yg{usM|Ajm8F;0JU`+
zDTGtPI=pmz)|C?uD|@%Ukw$L;GS}$ZE_}fkq=mDSiw{kq%-)<VSIuUY%iUU?YBNiv
z{=AUcA3a~*1iksZ_{uD=)&mdjIj|AEGBb3`N~cfKHsN++N?;Le?SWGm*ysvzHA5CS
z723}UOf1ah_3u{+6;oPpobXNl@E($3Pv@Jw@PZlq=7xSCtT*MB?|swmaUOWwi5Vl?
zrp~rxe_Uo}>2uI9GQ$d#6YzHs6wSY)@>6A`>KE;$ae)l`AxATW-mR}qVgcYlVhl^5
z1tk34r}Abw)NzhLMqdiG{H#B;em_}Uy8(7tzFS_&LM3!O5{EY3oF@aS+BoWiBy145
z{Mhkuc=3I(IC+o|RuKk|pcY`EMJ~o8r=e?)R^|3;&pwO>SnT+8Ye%a|<C-N`M1vPQ
zP&Io-GgIv$|1^fQb*$zb_lflN+Ter{Ln^Rkwgx_ci}QO2eg*E(EkjMz4~^tjmd3Ql
z?1H9FE5J0$EBVJGl-Vjm;?iA@)HDBgb=<)`NSC0;1N-|CRBy6A|GR-xV!^e3i$d+m
zGeg@>zsGtyAf)VqPeZis_Nx$-Q2Y3cMA|FbJG*!%l`UDej~2qLO20~YC^}WU>GF@3
zQs+W>{2^>zPDiy?Esl4+3$gy}2Fhtpb(_yQ-96OIzQnN~reC+a3yV**VvcYsexF5A
znX)g1Y6vCWV!{|qOBn+yW0i$LqP#0FBfoUuO0W}R=2Wo>CXn-|^8-=cGQw>3D=26a
z=QqZS8x6=U+Q<1AOs;(IUA_Vy4HyspZt$5UJE_^J;3GGeDEBu>$BC=fXn$5nmu$@m
zPZEd-k&x?;yIlX)+UK_V>)?D#!_j(3UZ0k8x{Rx$V&luLz<Bs#^+dpwMSU1Y;eM@g
zo$zc%tNyet<n;Ya{Z|REJ507j;ep-Cl6Q%?#F;C_0-1mZo7XdvB(@|OG>`!rkHbIv
zATn16CJ)_PbA?8t&RJh$P=8^`eUkk?$@oDwf3%355wN}XDDbqp$ZIxe$0%-_v+~)m
zqaXWYspE_Jd4R9n8$yr?^yl;8s=tEfv%p9XjpL#)xXuddbN&vxWv;t9=Hld+2KO-p
zV|r5y^H3-tzE#`jyf`E>3o{A3HkA;P+%Wtapy(MZFs~VyzW}Qn)40e%XuiFnqtAOf
z#s0n6@fz+hQT?W0t@QcnN|rMm;=H4?u!p@}eCw#?r>^*g|JXz6(;V#WwRPRUeW@h=
z{^qTlCnex*=ld0Fcx9&N5&w3rhcB5)zDSyT6L!3xNN1+<@Vk}jX&~s?<0~zSV9it(
zxQvl%H=4B(z_%>`eED54cj+Le*>%P!I!<)))r~rPPrlzz5y&-IxMY7yxYd}S>Q`q_
z*pob3;BFz2lds$Mp+Db>S>`Yk`7bgEEW7#b2i_{ghOnYZkgdM~*^WeQ4_#M9PRW98
z5PwcfGF5t~b|3E5Hu$b`!t660O&P)^^;bUmuH02dZwuhtQ>&Ihre(f4+3?}iA9oEL
z#?W_db7sbW?7!2k6|Ll@E>(d0B48P_=1^1qxo4ZDgWfh9txO(N5qXtCRr(1*AOp@4
zT0sq%A2}`U879sTn-U_j8hz=f>RPq88B-zoW8{f4H7xb%Eow9mX8}Sz0N}ovmlhxX
zF6LV;NB~kU+2(pdg7f%o(X%i572SnwT~1CwQEbs_G$rWk4i5&G15X1&TE@1~7kVv6
zHm<ktBpuX9dB@eZJJV>(B|cTx{o!m{jjO}o589&hJ8x3%N`A%N@bdAYF!;}(-7*Ba
z=dFPhIaK^D2;bv^J^doFe2?A_QV8EPf6$g{#d4UZ3r#|2DsO`IBE5g83?pbyw2}N9
z$r>1Cq*lEEl7AUT0mcW3f6L8rJh4y_z5kv~#ZX67<(N5M?NRu!#;2i6KcxE(W6JTy
z!dc6k2FOPXy7mWj6&t6*8V|7bz;ysp8|($(LMm%~XeC|OXl0XuiBo?pHx7-`+%km$
zAWTK&8I<ab8n_aeoIeREeOO$&gx5pRiQ*!p3oG`Ft_K|$d1*YD+3vdhwxta2iV10%
zTcgTNUF$pcKO)~vV;;p^n6ZB0!G#S91zayXSR<+)k7&F|6&3mRYIyAxAQ+=(G$be4
zXn<Q@w$V#yE3MtAQ;)gJa!by|v!$>9ng-G%#I|PZvPVpMfe^RNx!7T%SJC_C0C2`>
zFriA*`IDpsDh~@rT9r8Mpn{h41D?VB*L?<^JBFB0`c%EFc{_gsX3#Tz?4mlQ_mZd8
z^<-}9(#UrmBK5#M4pYZWd9>AM&?{Azv^s*m=_3N}EBZDIky4r-O0z$IY2TF5SNmZu
zL{AQXPVZ)X>*TQ>QU~T=GZ9+OGN3phHLs5_v3{Pseu^GdmN{g@me?(gEJ~1Q{JYKZ
zt)?(m7XwjzMeBaTTP$ZI(a2L;8;oNGi#Os(4KG98hIZvecX+U!H~eRP*7(#E>-@%G
zcd*m!`jxf&PIO?~MzrJ77f7@|DKEiPA_8y|slTjZ_Zp2Fq%wI4rS$23Jw5;Oec|OW
zUlnNvh_L}x$G4echnZxUh>)*3XOYjU9u&ugwqB+_yy06#92(asy*yA!Spas@&|72C
zt#9W0n$;Nr4S<>$hx9LHqi%b)b{8H?&4mb1C`#1Gs@98xp7!8>fMDEOw1xtohlIZG
z%r?sj*DFBj?6zX+l5=A}bMU||YC#uu_*4Dm%Zr-9J$2TSrofMs{YZ5Usok?*dKc?C
zA$b=B+hF4sPl9p$Y1!R%N9Q{(gp686BWp;A0!lrYvStW{zYu)K*v-ALCqxr}r&{OK
z52!}+qhcNAuE{bL<yX_QYR&T=wi0lCSsHq-_4~TSSc9X2Z5Lv7!{{0l$#>J)nj42K
zbcFdQxbR1yrAb8m`#W{C_`GI=WtEO7QpBuH@(JmV0zfH6XH4D~6cXh&b*{VPDU87-
zJsdeE5!EW!xc@G_beE>KGIjg9JeMXl%n2INaAa*k)sgTijatX^irw9Gz#ID$Q12AZ
zT;)vSsHh@ELg|5BK8A8?o&ao(Vv?`+O7!ezqbjZFM}OJO<J1JRk7_HU2X-Y!`Q^(k
z`w}~Cj|5*li}-#)d;;r}`6hn*LFCMEX`^z$%ygl+%9}5THEywymm`k5t=*Y`%-tr%
zuifRRGd{ew#kCJ;2A~RDo@#^BGNT#!FV85N4!)|!*#}8GO73**sYF{}j+S%4JL}v-
zw$UJK3UliV&f6>7pR=B5*}C6B$=1KTCfQq?`~-phHh_Gx6;QZ;JbI*Hr)sy*ZMg^-
zJL;Cc)rUM<`Jv^rRe7Yc(i*>FAaG)g=*Ji#yj!~u{{+0Ql&Z^xwMd|xAY_yfbn=VL
zht@u>Hxu-DL5yIX%2+@r2?5=N@TbKRv*E6~smiZT&v|P|bfpbPZES-p>y-m8c0pvQ
z3Apd1s3&Jbq)_E8Hs;-b!+f@C3M(Ep``t_}Y3*B-|ELw#SQn8P_Je<*)?T#lziKpx
zs+D=8IsnP05<-j5gr7V?h&y<p!dqJwwi#v)que%5>R)yKgPJUFw6#FiKAu)>lY`!P
zs{$$m&^WK+>3sO#&;w6thIIe0iouUSxG>uGI%x0jpDZQ!W+-tl=u{QYoqT>s^D#bg
z-!}GL4u71ox7%L$=t^4TqNx<Oq*nESrbfl1nbPEv_hH3m;dzTkQamY{VYyF~$Mu4k
z*geWnW}otljY*AySsw+vr+;@idqS#sr(|{yC}qON^o@2Bt<x0$>zk7PZDIHAmRfIk
zel@%l)wtV-Y^(FS_9nu8iosI4LFK=b>tf{Xe;SHRnPRBV4ic<DJWXBg{=NGwf_GYB
zm3BX!(BKHG-Pv6Tzo=x1g9lIhe+~AD<}ZgHfd|%VR+WnE8%u`CW<Q0<eYdl(%^svT
z=+@t1t+7F==eD=?m0-84bRfPn-rri$+fiII+J7SyQprObO-h^HJwc00h%mENE99T~
zPwP<KKo393nItv9RGloU<Xq}L+@p<b7GI=x;|-#(&(vGJ>#{m4lt}Kz;+yA~83_S@
z*Z*Fs4Uh#liP$IYN&2s?skGn=v<808&FweMb<OQw7dE*Xv<7Xm$^>AA=o;@SVA;L$
z1UX)jJVPZ->ueK*FMWuO&x3gRvYuBBSNDy%PLu+^?TsCUQROr((f?)`eE?jQ4@ozy
z7KC?3-t2zSGQLFC*WR4<BO7J7v$JN|h7S+1CClv87D<Y1mR6fnSszrP6vj0P{IO3P
z65M)Z7;NL^3lTs*Axy13I;LH6lweABy7RbyeU@T1kF2v7P3D{NzGLSXd#^V;De<-2
zEQ_j(vR7ZRriaQjmK+3-NJ@n@IH}v3rT5AT1O?guHR-lzFYBg9)qIXG#AN_f-#w1l
zL0A%-k1@}xFYrpat|B5K#c{<h6$l|S?gi1jm4Lo1)lwZvYtS??j~`p+tCqm<?g)2V
zOkpD^@+?$8BIKMma$2VC=$yQ3<3iQikCt(z=!qnfzk0ACEj}H+!Q8Uz|6$Ho!|zy0
zL1P+zHmp7p?>(-*<LQImdmlMO;SJuF63n5?v0b^FRig+{#51-pU*1Hfg!)8ElFq76
zA9wzA>yEVpp(|uH!bna2ijR`kWPuM=Z7H;QaH<_boinO-M5eUXnY&2}oZGmZPvkW2
z8Ohck`yJ9<tk&OJ8Mw~paxrnL1j?{4?JKu50Y?(LN<04+rvY@e*~ohj+vIr5{zKvD
z%2(rlp5Har^Ofzgj;k;_R@AC^w)O8*<8C;ppBn{kzsR<-^~}%8_1FS&_VFmd)gpaw
z=H#T`+p-#z3y8Si_D292IYQSQU}EtTq93>*+&^WX8!Fjft5k2?RJY@CvYCZ_>ON~y
zni81qP_d6Yl%Up-aj~YNH_hIh^{uMbFHA>T9eIg^42rByT)wYETc0l(wR6)cJiRft
zK8x0Ki=xt}&((hlVmJ|Skk(06hy-AlI5@nfiRc>6+24Jjv`eJrRy(9Sv;#sctsOqA
zm-wa3Hb>LmL)do11i?E`=NG2d4s*T!8%7q!>w5=xx~piknf3oB_Y}kLs9g1axl<w6
zrrvS+;%24R=CV3GQ|Y*KjIC&xPCJUgZg{io$a2nUa7;VpkFx2b)H0Z}M$A{6@t*9K
zkk^de1$JMttUAb#*NTF79&!ygxK;A82HtQAe(|a*YrdaFAxziTd%%oqLHNl)$rBM4
z6LWooqN3Lb+WSNE9vn}<B`2RT_D)q*SUrsxcsKRb7!OpqyTU}@^}N-LfqJ?r$2C7d
zDF`MNV)|t2>xX~$m=&;|uaxj~HM%FJ7h&FbU@hMVWjBe*j14Ub21wPm%2nLQ%705!
z3VS0Hm63^PU?QRUP@3#YVC{_z^2qOjJ(HPlbsuQHtOQPN60FVFR(q?@(Dq4-l?Gy8
z-CvfC3@TWRhDXd|Y;+Ra6UKx~a}xV%g>S|*bN<?&wq+(&86^3$u)1DS)mexY6)IV4
z>htkZAuMdX$vs1NooOPDgZLlwrG8FMSW_9%<F$wa^6(+eQY4HBrE8f-|DkUH-}`u;
zsK?A^4tx2~noGHlCvn`&n2zv(G;cUPM1Gy@TUa#A-IsG%S^%|@+DmW9zhec0-T*~>
zxxhcY>^g*u+}<2hl9Vf%T5x-315XeQjE|o<Tt;$ru!60!@96A`CbR#>U11GAxegrT
z-4N$y>GuOREXz4Ge!Yy!06gwf*)fHV+WZh*aWqnvuTM;dQlT=6)(vR$OMCHuFBn80
z#HRbSm%izXV(y0j+}E!j&dB-<xW^g<yx*Gi*iFL{!XaJw&VsW_$H0~~l4wOXqY3F^
zo6K(BhMJsYR~pp`?;4pNtx`%(>g1q}$6~t`>@|^+_HdeWSpUC#iY2$=6FxWb&%-k=
zbM!#;+ayrqNNR6ei*%PrIyO4R#+G~gCQ(6_Vi`H`;%XvSyMwMO_?K|&PVIJ8xY*Kr
zg)Lg4LdG2?p71@UBv5Sw`M)p12Npv24Fjdl0<mEa)0!kqUplrMrk;J6hs~`TgHxI}
zmAwG#9r^T^MUUS%PCYd2WB>S7|0uYT#V6nBQb*!Ojg;Jc@s`w+cNkI>OVX3>iTgp&
zrkqJc2pe{Q36(tlwetn8ZlS{NMf-aqe4qL7q2&6fe38STqKhrJ^}7)LCkXw-*7zv}
z0X}im+(7NY$J+)Jro)<TR=mLS`am}Ldd7TRkNSji@$g+#2{D!Pau&vQgxI*WbjAR7
zfjEN^TWF8yVHhz`YH6ubK1<u6AbapA*!b6}!k@cJ2`LrXaFi`ArG$v)jPEm5ro~5D
zg_Vnuc)hn)0;7n<R-)Lio$pX){Xh2GQn%bgSi1g^js4jU|JbMDJI#J#!{H@uY?}!c
zZETwAm-z6;_{Mv7_;A3tU3rJkSc_j_91&LL(2rTq2*Yff!{m-sG0J%wSUmDf{su&C
z=OM*#=`NI$a^*s~?J_XX)^0!oP>4!Agg?4dc&p%J`tjmznAVPc<)z2cFOIMMTdeRN
zj94rv<a!}v>K~*Id(oZ9nMVA^kZpC6qUa5op~5P7m*WEB!)h*`H4k(%lS=NF*ta1z
zRrYt?;Mi-epRpC+S&W-JX9(V%sX=|8elo))8Nun><<b!XpkwNAK=ZoHB=sgr8*oo!
z1O!Z!aw;R+bTH3?YZ^y*W(M=Tf-PF9hzUm)00$aDf6nyJ@XT{XCRFMx83kJR4%rWE
z;ilHSvG7Gr1aMS&+4Ax)2Jl+UP+v3bya4;jpeW`U0(LEJZk!TBOt;GU;IO#Fqp<oY
zPB^qx+rnn6|8es>UE+?#;`I|8TY+QaF)jUS-mo*9>Qq3Z*>lny2&zUY5;TXq_4TYH
z0{~r+l7F*xw@yP3t+m0@$6@Of${G{EC74EC>{zVKBz^ZVU%h|h5#nl$x+{@!THSRg
z=LsRZ;unf@GxKQZQ$_cgZ8f=@j*k5Zcp)@6@nW=8XA@EAp#-dF**s{{r@N^0V=~dP
zh*fx%^dmHRY4o_dY5Y?eNdaR&e;}M|r{m0=&EX*+?TeRr%^*?bzOC{v!OqYO-03?I
zq1num46lE$>Q$7oEtXj6X{wIePmhqSuFd)}auO9+*|IT?Dc}&|k}y<3k)SJju8CLK
zm~bfCvdb}*{oVE;o6nW|ls^vG-&gy!L>^i$lnW@P-O))b?gF8dkkZ&!`^HvZrT9jS
zpKH1rxZfX9_|Gj7i@j_~rPv%H<?M@p!7kmy%74F<GyLbFGAUP&_NzDTnnp-S$d%ZE
z&hk%<68cyhVn)OYx4k+>mQ5P1{8*N)owOoj>eDVa&ZW?0Y})n1O09Sr?HgBhS(r3Z
zDvaB;hNXodE^$^uz~8miR?>MM|G1G{hq5JJ!3g0$j!9&F<=Ym2iXF|tNa56=iOSA?
z<)C>aSAs;2tq?ZTdxaU#E3S}RniBD+M5%D~C;nSO*UJ*Kyb?V7zNwqO_je1#W=QRG
z38d$>H<fjtWdK8L@80uuh>(XlLLY(qd9j!vBVc$rKlpvbu%{&KJqh9l0gWuYO#S1o
zeg##q{e+v4e=jYq{y*D*%tGM^f4bHCZ>F>p;?`cKfl@7d8)r#v+HS+zOehY(3b@aE
zxD9ehC$v)68cPq%-(vh&;iO(tVzmneoD!V9P$nw29&>C3mih>8$q?@ei1u5MmRTGN
z#1vd--CvM!{D@T1_-H%nuT;bMW3yLgiD$G5+3(P6`>M{cEhIqf5nU#BtJ3%}IKn*X
zl}uJ$Gi-&u%Hf$*s=sh($U<tLdwS;$758U+tRKFuBz+v%x>r!aurQkd{xTZ>(lm!(
zheP7ULe}-)I#N5iEvuM3$G<NiZk)lY4EZmMq|fJ(_2;{ahL;~#erk?dINJCnyD5t8
zJ@m-g_+!4TW7a{9RylY~ooUbH-}Q4I->MuL7FBVuU6-1tnhgXA&xwK-O)qd()bLGt
zF~x&&;%l|ZO7B68!)I3eVm3HG<rXQ%Erk}Ia&N|dANF^F^WpJ^rYPz!s57b}+m2j%
ztAvVeRnFCK2zYPd^Rl3m*BK2o0nXT(Id<k8>!fK&={q*ms~o%1EkE(aeU!q|#_QOR
zL6%2hyp>u_TMITly7k87EEfexH|^>3=N(BRd1I)&VR6cV9O8{GM~?4r^c?oo55lkW
z*EKM$6VA3HXCu8uJIYG0R)YT0D>deKJV#y_Bj;$Wc`VCGFc-AMwN<BWd`qj8lDlL=
zJpbTU^Lemz{V`{hMTX7xmq1lyp$&Int4+7DM1@^YJZ$qMW@u{amrXS<v7(<STrXnl
zS6ZhH{;Ksd;A>FlTQW)0-8O&UYf~F+=#w4PESoBEu~>^cTnp8g>1M@Byno)?LwQGJ
z$f)`PJr#C)FN}$aqpOOr%Gm6-bQ8<f<N)HPEG|slVs8X5awGROMSTtpks~V#ZP`I?
ztvTC_DgXlXOhsb{vtx8nV#UKOxpEJMA{iN<>&T{M&4yeD2SNi{#{NH3#E5+r^eqPb
z>R1vWqadMRbayGbe*t!W%72!&u+2^r=aW0|#$02%?BDmv45x2iL+d3^4!aYqMb4EL
z)8!g}_dnMWzkOm&o_IlJ{f9q3KLa!W+j_<i3Eq15_9DIvTW|uZsZ8h)Nk0mgY#fpN
zmZGKrE-K^*l1YDTyx%hZ#xNtkb|a`bC7xwwo66y34K#pzdrg73nqc1(Xu^W-jXDQi
zrxhQi4{4?J6jKCsl~u9p$_rlXGvaZSJb=oo{e*Aoj)O4Uen(#h1rbSe{mQk*8j`9u
zJs-bt5%sB?Nyg43sz7h3X$A<MWq#nFpoUd?4ny~X>_`*RFw;E8q7(;zpFPJW-+;Xz
zwiUxn3iwUdWP-<$CEnGp`5l3s?Y4qV!*;Sn`5<N1Icz~DHvwFYPIb&EeIF^*BsmPL
zD-Ybq;+nsehgC2F6GyBX(bL&&e%Eb-Tl~O_cQ>1qfKSaxzu7tqe4CR>?FSGF%^lsf
z8{&4+)W3bxaQd;|HlvAqJqEE*Tb7DZKBe(y1uy{nB{XO@xzh)))sJ&hcLYU_Y1^|g
z@6#1-7a~{2w1p3u!?nngVSwLFG5Sf4xDwiV-8LfAV}@8ZZ2-f9v;`#g>{^;0t~B-X
z%Y%s=C)=11is%eo=&xHdsR|OryQQoMI!1*<BVuz3W#+?_CVvZAJA=j_vu7wH8|}%?
zeiZ?)xY!QaeSY!p;%oCZuAEK&?6Ypv`voq&*@Rtw4#24%l>qB7)JSkLaZe2pTe|$^
z?rMhGS0%xYs#GmJnFeXf`CdI6PV@v5@DgKRL!&m1TK}pCD8_F;2_AgZ@ozx`cJj5d
z@tq4F&peDyVSULs<h&Gn+SseT%)5~E7IFyT!-bvcEOZ31kNt?Km^ylbIDBLMx71sT
z+rMN#4GDXU5Ww%ARYxD1ZRg0=hp>>+C9~{p9Zq;q$-%elpJ$=_nL3}H^P&zW*-rJc
zLRb_)Y}BFMFDTMIR7KZ0yDgPbsvv6E?$XKD%LkwR>B*s_W4k4q#)S)SpYMz<Aus)y
z-n!by6e+tIV@nL!5$C%ZXHdZtM&$;0*zaAXx5O_fT02Ayn$4Eknneh!vxIv9)}In=
zI;L=+ryq_~SzS7O6qZt{hI7Hn92N$v1Jh&vVT%}}Ly4aq8k;_{NE3h+7IR2@!_dWp
zR};sQPR0?M+izruD-Er~#D;_St=+KF*(-;_X<F-jHqzDv|J=hvRE1fHmt3e>^dpA)
zpZ|9)J`H&f!{AsneLauDh_*BaS2<@w@OVO4l#reYI0d>!GS<5WoqruJG!RG5k@F?3
zZvpUr9#TmSfmw|829?6*n1jw#q3RMx{9Vz^iN>p_n(HKq2Vl5wx0#$6fttE~<BVoN
z(t(*cG_Ci`$I4l@df$B6HS?YN6_pSNUD<jCaBvRe2vaI(Z2;X$O(EoLtf+00q+9{x
zH4#**<0uf0Jw*#K(5Ab^4&eh1j0E_~DZg9I{^Tda8G%=Ve^`Uy=hf?b^^1)6zb&u)
zY#XfOhH?tj+`MI%w~WaLs0fIR>#6Hqnf0&)9o@0OkzYCT%a>N9Ikn~f94V~@ol*2<
z+;!+?hs^4;70g7Pt%XBr6iiDU<Im)fm2WpP=&-E7j`fWe^4S%cv_CWQqg}${mlTQt
z(iRJnF;mALPh{`gy8Bmh;?}>_{qXpl2J+oQH^zNRn#8|VUk|1?vwRy~E~a2}`$*)l
z(oLFSPJ@oN)8>M|c0;?-keeyhD?RZoGf&}r*PiL+=ax^SMK9Of`0cPCBtD7TNVZ)l
zxZxjQ9s;6$8XdQhyl^n@q;ZLgM$q<))ZwK{)pS<o=>@S>DJqGC#NN2Ho)%#P!v?&~
z75)s2@_Gjw*0{$v$PS-3OXWNm!?y2`B`E7i&-AYl?u+`B;T{P}$<m1A&TgKBnCJ=D
zV?;sb4i?vG)^XY3$Jr;|%|h(?O=?r_BaITuD0X;eT`gP(c%oBmXo;N{Xg9Ybpmll3
z7_qyeslj#=Olgg&#(Tj(RyECo;^*W_8;=5ZYNz9gZRWvSb`_Da!+d~dKxlbwbbQ~?
zHZYM8+<H=k`kS}gCQ`DPe=psN+-TD8M*d#1PlqugV2a`QUQ=Z<YW1^Qz~^D3wndj9
z#h*bm$`u|}0Sr7aGDVuVJ6(K9hbO}LRTL;<JG<_De075tc)E?ac?2K4oI;-LF^bF4
zg1rLXt_1P?DvcBF)V9~SpL{oPVk)c2miBrY_unZ#_(+aG%h~BSrCxTQs$I?UM9#ZO
zuGkiu75?$j_-1aL-?+PdaH7oP$!e*VwbqOE^O49zn|Gy23&P|cv=`0q%hh6#E1Mq>
zB*zv*$DbjO_LvkvepJP4rptvDJMJ0z(Mrl`?1qKTvs~$ei>oI!+e{=H_f<X!&^`(K
zdJPl!L>kmb59YP&s2o4C%in@_7|1ytYjluwJ)f$_OBmikVJ~8HEk3A8B6IkUbWW%|
zRrLZJ_R_E{c;q;^8$)eGevE@4s!nl?8ar3<#c-8fx@?c=-$dEXK=trBK-*htT1*JQ
z3{Z=#J?JzGU4SMZhb^DB7PASdxT)^bjcoc)3)BaQkgEyff2dpD(fK$R3vn0c_>G>W
zYrjwttVb<6Rd-=-<nxYKK>?mG9{rHEu3T8UHTxhqXZ_D5pXoY|(MoOd#18pjLAFQJ
ziR~9fO%kE?$FdsD)|nqU;fsX^S=l7rpdi2a1t_rtM$Eol&bv@|01DK`s{jycV@40U
zpUMq}YklxndecZqZrQp7Oy1Z*8V1)JE2XR=L&B`Re9Le-Z-~jNfmwm12YwiZUsYc}
zpYglBw`V(3>^oO`G+CPbaHmE853lg-z#^lV9dqV4{_8;N)m+MkLHzgjs^Oi*z?GXf
z<#*|V9}k3dk^WdNwWx(pwP1eFZZFX&ohwnA%n@gt@WzE)*wj!s$8~edEWV>#mq{J<
zr9t|%<u{Y2=?|~jrcEuZ(_Vi!80Xw2=W2?n?N-L1%v)f7@}=bl0c(ds!Z9D!XbWcP
zFdhWONt^29lERX}%T1w=skO{-2z}&NpW&nzW*se<1H#~7frKr|rg7deNib<TU>aSo
z$~v#}0nQ=(iN5t!)HR>|0Ox^Fech-UrpOxwcZz=v@yMqY%$zhboVo3l=XE#qYPlBa
zB3Wx&sg%^^B;Cr*DfI1MlOyg#;{|Kv8_6C0$_3}DrKc)9vp8wq&5oaK@ZdtIMdk6f
zvAL~x{7|)X%cZe^jt}N)A8tH2<lRVPR?xhWrCXd!CHQ|oR(38emF7zqnfdxgwiftB
zetPacyYQ4Auib{qLb*ZxYSVA<yVa)kPSy=*8t+BBd4<;zlo9p0?6l+Gu(GMSyY$+6
zLcI0*dNfQB*UaT4NXK`n%BQs(Wu~buR%<Nx%tntn47{F>^E+zZE&sg<>p~R|4HUeh
zYElIdOv;1#R6X~^A$TlLg;!M{TiL8})_Sw2_1TH_%FFJa=?bUqZ4`i!^xO{kKB+@8
z9_`mG2)c#k)$&`B-k0oZIMz{oB(+R7ekbEE3lMH|?u(*cz0csV`6e2nzO9>wnuJpK
z$^~Y1c-Wcd_Xtp^>YW%@cXvjtqnBse!I+e@FM2@znpx`Cq^G^aTI9yOV63Mf+V#?u
z)CmA-a|@-v@_aoXi}KE&SESn66tO?HC)TCi69~r)%l+>0E_R9Eoen3k1bSMVu-tR6
ziP&dj#hYv$>cubO&Qo=wxwIbL#^ZFzG({=qG}pMS!zQ)kgTWTyJC(zDzw}o(wVTAR
zTB3=~G$Ix4_w~zC>m$EkD5O*CaA*3qErc4uk+>4HR-2AjM!)q@-FkcR{rC8~TUzB?
zpN{b50y5c;mqbq^z278tAc1uXe=vFJm(4SN=MgCJ_@!EGLM5g$TLI^G7&p&1Fg3@A
z^lT<-pIikF_nck%>J-8Cu(X-8$%;*WnhwRj%(`jyYt|l5C;ApkVo<1g-5RxUmo~0Q
zR2Jr`0*9<<mS_>FMLwB6Mx`aIcWUF-%yc&V%UPJ@migoC3J&1QPi|}{k2SL@NC6Mf
z!`@qNLsJMiH9V@86-tlFLy_cB$+s2F9r>}0>IUoUz(lNrG{YkaM`GYMqk9tW@cN0{
zpZxK5?ErMJ5m*)&4p&)ybX=7D6KimE1>C01wVf{jYgx|+dt6(c^}KUTJ8_f_-#c-6
zv~SeL_Km8h37TKQ4pJF031EZ9L_GoYviZJwBKgO|J9}VWaPX~{G^U>qT&+#BZo584
zpFj&2U>9l^Qg4e!`rUd7WjPok`>(YX8JskAPKKTX@?COFP&me>F*{8>HoX+kCQwPm
zq-?w1O8Zo92ijEKc}s7oYbn%npO6C4BoL{x;BI5*dAOB1_A~0FP}(_45-x1QihX)g
z3JIDH&Y|X`GH2bDRZ10C?mctq9r6~yv7t1_rW08kI%H&$@4mc)e<ofCxo>WAh+EUz
zY`wf0tG>=?LKp$BF#u{4gOc&N%>ro)%?`RP$?$e|h3$y4W-~sTc=db9Cb|_VBgeep
z1UMRI_A+*jbiMxHzVXYJ7(kIGx`w;%HJ=@IY9{BreI^ECIlUiZ%{0oI5Kud)J>QC&
z2ZW`M9N1oj+LcE=GqKtH{4z(ge_CqcO%T^Y^6Am31-NLv-dDXZy1?s6SKWSEY(%h0
zp@Nr3$I!L9{g@Yto;|+Cwx%kE<<=gTiO!L6%kyus4-l`DAdn4eM)sX6)gQn+cTwrH
zY{WeVD&Vn&1kDD-W*yAu4O=Kga;qQw0rBSU%jRm<M{sb|FY&I`TfNp&+d^~R2-FR%
z%o54`4{NE-$FJOm7IwIMeVH>Ot#k?0`A_*F)i;&txIv-l5l%OSrs~r&K-<`V(4n8N
zYw`sk9vZz<M`80jootWY<tl3#03%AfdISQrjMV<mN1+QfdNis*p>%5R?w3GY*{){#
zw`+f2%go;2rBlC0np3!XvENvBg92{}`4w{d%bFBFno$&Z=>i?7T&F3&CdjD1cVBcw
zVHArXh?bY*!Q_)Vy_Pfg{FV#b`BmGCGnXJ~J%xB~T+IBZM*ifxlPBH;dH2)vUm6cd
zigTjRqC-WJJ>(PYzNmfG`=)-rd*<gMb2|fW%J{v&e`2EKgt^dLOeX--ieLGw02dk8
z0a~9W9QT`OY}J|Kd23>qCgvEf?*?5UqG`mCT>O0Yr|+>owN*X7t?{1C9lqq!rHwat
zYLh)*PjaE21%2HxC3`4$J*RR~Zt-7C6+0Snzr|glqRPFsUz}gKsAzO3bY|4>XXNc|
z&jpEiquZk%FF4;e&%R$)6%Oe)XK5YrcE{c#oqUA1q7y-rYp>B#VDavD10UAS60gr|
zRA8_hnr&ab%o6P;g5k3Dc!G$aPEDTOs^1dLe2`^m_JcYIkEg{mtK{tNI#YGnAn=Gc
zni1eb#$Nh=x79ZVHK{2KJyWUN=OLY3V}4Cdf(e5&q7jsD)%tJFZUKD$X?ULQENQ5T
zSP6O3o>4RaYJ0m9Jn4?1h>-VRMWm&Z6EEZimNq)-=oF7@@T1ZXmMR+r*=$6K^1&r8
z)P9K-MqM`#f5IdIKA^|1Pe@R0{aaIa6?#*~{cFX;?pdfG<eg3BXP)A|nG#?tq0P_1
zyQlshEuBUq%cJmj%t^M?jFSq-oU=VU-Bli_m5nZPs)Kx7*NlyGbAejhe<tc`*b&3s
z>I>Y%iJSgEbE_8$A|=a_8zAxKFRNTGHW=1Q0o+DH%LrIFJB0Nu1=DkXWNMKah6$By
z{zNP|a|Rpfk=ibFq_HP;URSGLZt>X0>b|ve_{qYqY*W1!MO_f=@jz)@kPVX|YB2tf
z`Jet}*V*h9Xt65M6$w&Z_j^5d^D3?sY}H2_c^{UaX>u}TO_y90JA}Prapn(x^W`dc
zv8p7t#9kD^HT<NpnM!A4Df7lvPl|fXxEim%l=UF>L0%fegUQ%Ly*Jb~NRe(6Ps;jX
zUQ|~cC-R+@Z=0tTTT=Sj;69(z8_!yfE|HnTaF&cK8N)1mGt5@1R~sGd!6nfuy|AQM
z;S|tQRb&_kyVfT5P0tK6)=Jg|xZRp9%nWT!HQolUG=bW;!#JX>LA5HIO?%5#EGmlX
zW?7TV$>w$#mD6s_a8DGh)l3bb8o~lJRZr|?K~e3HdN-Nd`B;S>OgCfq4dg=B@QQGe
zV}~v$QrMcMJ(geDju|?b&0%r&nE&Xe8&j}d&Hfg*oo;Z_Mls-<UBvK)9wAEq<aumk
z3Cvc6DzRMN+%al$wI8joAsY0|YhT9@(*#j=x?UPzpKFW?WlM`iXig3{E-y0bAtrqc
z?xHN?p=GV#Q{clPsZS8b<Q&*5lKQ<v9e)zB;plg&l}x<crt@qFT@b4r9wZ}ytJ|&M
zJSz)oxH*kJenwK(`Tp@^AAP_>GNZ^$YkH+O;`l9#AeQ<9EeqHUQrs9X@Cn}R1tnH5
zL}$NmN@ZM5BiS^hy4KPRn3Dhd4SK*7CPR<G=LG%t0HVXhB2Wu@gH$Kmg+zFFb#IFS
ze$fijM<AqrQ&#{jJW0`1hqLgs$vd!xA;o=(BaT5!kj&zWf<ZOA>@a=0_p$Fj#Z_*s
ze^0kE>OQy%y!tnx-z~x_Oh3ZE^+u&=7b;-WhR~`$cEp3)Tz*>O<+OGuh7mk^bd@g=
zKA$<;+s74lArYR7BMV}*fuIFZYWT?rh6kWXpF#(?ZBD=6racQ>-grrvvLC6yCU(Sg
z@tSlS*IE4?*-c1}_;wRNYTzDO(t*+fTJ|2I7dL#u=Jq{bgOO}PxwNXMkH1sG6h$$d
zXQ2+IwX7VrbPBa8YR6)$R!6R=g8y-Jo?%J8e;>{)sa(Ib<-~GjrdH-2wA?E#N8;WC
z7w!aSX<CXSHFss2IS?Ee4%9SfVoq>kjxZJXLLATie_r_xj|1)tuIqc9pYucdYf``g
zy!JDg4b^*Aa;fq5J}^Jvw&max6E;9kYXONE^`7p)b>o3O(26LT-oqK9u8B__!uz0r
z3#*jHs~g4>XZREc%)z^gsqZcygglHh04w7n7;DEz5!ae^gP4QtQ-MsNx-}2xqD8t`
zV4rNWKFztj2{93Tv5^?PzW{E$t>xO`WLCs3sB!Tc+jIa%TqeHi9Rwe@sFLy8<wbqc
zFY{lMmIj`I_ZpTNF67Sf-Iil?ue$JV?<KymmB!B4{@BD!QC1xEgY}QUiqO;-^I;*r
z>|{asTz~z;@u}`6Y-FbXQrlu=V$I*cB_NW!aigF1)1G;k_FX(Ov#fxAiz)0II@b4}
zviQ=@_a-Zep3D5Fb|d?I#N2W?ifn?x<X{NqH10L=y7~0uQ*erw`ZRx#O~%STdAxb0
zicLvnWjf>O9zu+?XQ$WDHp+Gq6pUb_*`R0Jqbrhor24Rq;B#}1?8@daK$Mzs!?wu^
ztLpt*>F@zY6d1H@y5VZTF!y$rmGD@VaXR5Qo?cSAlf-P>$0-umbZJg_g&(d#acgb>
z<xrQih=qAt_|&u^J@s4rQ7f1N`>?+dSF$P?1WPWf_C)nzR4Czq*wYxzFyFr!&T&=+
zV6c>7S@CPivZ%4(&+0tuUV@ipR{zZCFAh7=H6!+QGM?brg+n7>wiUno5_J=)L(m<)
zMmjJgATtdfL1#*v9NpZrZ!h4T(|+SzX>*XBX}tqqt6E*5(nN85Zim6=M5`a4cd5UC
z0fg&&$!xpA`@`*;d7HTSzf2Q0m%=(b)ZdA`u?%{D&@~yn<%m$12<j+yhOcrpu9HL7
z5j2K?NF2M2onV*=z9;`Q6C=DmeBgY_lCG%pnZD=VD?V%Ms03>yS6v<O8M8qx7jr!-
z9f@S!S`+OYdu|m<q*t)AOx1<6%G84m)1JCFR;;d)Z>@^T4gLQ%`Hc0?EG?L+1od7T
z-jr_fh6lr?^0~+SW(O6LyvX}|Uuf)-z3k+hi@Ew#gH;J27f~h%UE`yDA-A8f5WL5F
zIGu--Y+$Cu`jd{IJ&H^@NfR%;@2{trRC@U!Rq%YfM<rXcm={V?3!ZmjGoF{BaD)?q
zcXt(Z)4>xLFqHV+6>uFTawnoP?*ox+TBE%=o<qI#7Ea8S8q=QnBSSv?vJ(tFwOeAb
z4{+bkHMMF7Q4MW>v9=gebkf`0icpoSU{SbN1Q;>QP96pcAfErJKmNzG+6kFjL`C5J
zD2J0$KLdKkio@)o8Q3`A=#N{s*PgAUNna~i<!yYbRNv44E~IOL_D7ZwHnCW6BsO$%
zs1ll@btOVZF7Cyu4dYtQ_?GvX@qDg}X6%U2%;0JLyJ2gjjW)&bWIxi^Wz&^OLXu99
znoDa`p-z|zi7QTwroklQMWw`T(NxqRIPL>&HUD-DJtyEuYo#nq5-?=VylBVO@0m7q
z1_eoju3J;$JmbP*-X)Je8zA+!;*ys?t+@h&3wRow6+fZ0dRY1M%G$(Mtsy2fPX_zR
zhqf#M_EYODc+*FO+H;bNbA4%IpaUUWBTQcRj)Zv0@}xK)8e@P35cn;tO-ZuRzT%E?
zt9Y(`^%~@j+PGif%YuKC`+1Le;VoDCBmOeX;YS!$_V$rK;(hl?jQWM#mcZk~@VPxU
zLD|J8-Tgd}dDAwx{rHpSEiQ&~?)z=dFUi}VV}8T?b1{_u10C)MN^!)`r``U&+YjKK
z0KvW!6yOo)3uCsPi`R|5&<?VvT?Kqx8&ftACTAJTe*&C#_rtnZDLNC5Icq9zArc_Q
zk6PEjNm-bXs8SwhZZ}f6?@b}`fa5_ijWzs_3M$Wqyso6@@}D|5FkdU1{SfJmq@S0U
zQK-ow8o_jI<da@#G8ec<H6Y6+x}<BK)r{Q#d1YZ~qFRO0E4P%JX&N^Tf`xPqlQ4f2
z!cDd!rS^PW_&=Yur8#WWNkXG-ec=gI2N#NC88>t`LPe!+na<ZQo~!>4U-62P)|TOW
z^xA6ZOisl2BE&p-$zQGJ=Z;$`*oV(s$dml20TQ-daAco=n{V;$&iWH7$g@Wim_9>u
zwmJEGFjVW7T;lstBl>5Pbbv|$^WAUGIQOU3AKO2uE-PYEoh77<99F%%UDIEVr`|2m
zli%4pUo`GUEjRZjwOo%2m(3tt0K_r`$2MYn?eSS??a_rG_G!@_fr^g%AiEUzinMG&
zKF4OK-qN{JNkBNmoHJT7{nq8rk_jyD+`Q|9jau`wd?bIWzQ?x(-SKG-TX4Q-%<>np
z!~9OoE=8S(=u9WZWsIQI<L@NEHM2PAIh2;^IlUkL)JVk{;6uA(H)va{OYdWt8&f2D
zYZVPoLH}rR0s;?nkyFpljL3q34SJB84LbX*w6cs-;4ju)lc%r-D;a#ZjqjrX>1BQ;
zzWnFj5-(^kNA=9quU4ES3AvcU5;geWX_}=vIO27=;@3_0B)@N$i_STgy69DrqSvvv
z0Is2|V&fHLY1Y;E6kkWe<o-dA7P`$gxZ*?_(5M*T9VIOUr<T`yw-REH<RaM-6*Gl&
zrdqj?P>18FO0KSH0o%6@y^YNsE@b#pkfDYG`{=>?PXll5bsSmna>MEofE&Lj$mp2h
zYs3DLCz?mh_-xmR8N*bku95vx#5~;H8XavAzydSKFt?LLPkRS(pRqIt1Gih;<KO&e
zXCQef2Nk0!txtbX(C`sCU=tc9)uJ^rpyfv)YK<%%MUp%CKnoMD?C+NaPmu$VH%C%2
zpFdlgiTiMs6HY##X9{a=r?|vltKI!YQE!c~&$;QvdCEFeR116l)baD6Fl?s{YskgS
z^U^PFh|Cck7}{O_<>OykmgsaTLHLRFxl|o#dHb|>gJ4S)9wzbkEe}5H_P!&;)&Jft
z*LSz<%+;-Y7Vfz-wdW}1>l86<Wxc5TDG2Eak{2-yT|q@q3_Z;HG1vXmv2_H;K941y
z#oPeL@NJ9E#wlpUTQw#@QWHLVB#g(?a_#N-_RT22oZ-`ZI~1Ri6EvaKkvfmpu}0dt
z;`3IRv7Rb<U4fiCl&C~(T|M2H+JYu8UC8MXpgn^bP!o=9l6EL-;$af{bc^M#PLqz^
z_eskAo#Q(i{R;Tem*mP8$BABxlcT>LL(F0NAKvXyuGa-M_RrV1TrnSL;rtblZ#ch{
z*0_tb*#bOMq#c_Jb=}9j1DweY3XmD(b6|JA>mvCnsA<DE@IoGGrm%E#0CrxvzX^S8
z;7RJ=?+KrQp%R|vOf#7FKUSqm?kjFE1Bbf2w$YDUuh$A_MNgYf8YxD5qAvhOPW_gH
zY+k{B$qHgvl0cbI8mDvGe|~*V2L#_9EC4Hsg`Juy1a8w=NXn7)KB~e&-yX#efU^QB
z%qrc?_LK%b?^Xe<E@l<zSW2j+IYo-{G5v7wt|InDtI`yzzSsf^<`)caTJFZ<CZy>Q
z@0k_y7wPR66~5Ssq>83DLg!v2xU49`s!q?&k$3H^Kr3A{2LFD0!+R~3p8OT!fmXz{
z<vOSggqDl$UNmH5M#yP)AM|t#P1$QTO&u};2U&H8A(IO;%aVv+$n#nH$9Uz1S`IR#
zbW0af7=*03EUDnz?vhL1lquf2j4J}SusW!%);<jpe%N|qsvMjf8jq@3XO<gXc$Rk>
zy3M@sJ@bbwWc?ykdH*IAxO%^e7;)Z6K?zPgMBDyjM6t_UZwZ=NPC$hWK!)i32x%s$
zisgwdpxTHy04^y0+UDHujNkHEOWuen`vZO3Q#1H=+4UffLfH|pt$MWVp~+vEwN!06
zx#m%I>YaeRa_VlIn>NTm{<3K&!7uyRby@+FK301a$166gy(ZrM<%ME_kGYYG9pAV(
zDG5p9hJA&PL_C2l%3DziWb7;OR)I6Zk3QHf*X7NFYo!;6V=`!;+#3|+Qz|n-9In=S
zg%O@E3)eZ?DOYnmhW*frII8?J7tJj!uS_<1-yl%!S<t=nYPpSllUaN_v6ls6SCvBN
zRC6VEPELOv;%Cf&^2bcFmaTA?fd|Nlu3fWj3=HKB(~j##Ns4!OD(}w~j_>P#ZQCJ{
zSK6L|N1mAeGg5dluu%|xVt7LPnuqq1i+agNh$cj)g{}77|0MWHAnkCJgMVB+WXh1S
zDz$MTGGeE>Y2bvhSMc*t=eX_Mb`0lXwcGdJ>HI13r`nVCIio}U#-*jlCsZh;W$bfQ
zmi+MnE!by!G|16#EV}Mh@P``oGlILsd-t%Vz@F~f&U@EP(7JEzC3Si&R#}`CVUN)7
z<jUd*ml?&PN=xT)yyIm!=A2p(j4&P49!|o-W%|uH$(!6OUjuiplJ%5E55brb$0n~c
zH?NbHuu_=j&s(nW#N0RJQX7aC>|$7WN~J{>q;)h2T2cmSbIJW3JYO?gmY-v@P*#zf
zy(Kq_mf?n40yPFiS8@&lkZe>RT^Mi3A@~<K#8?fz1ix|96J4AHrFupGi$~Sp_8=Af
z<0lJ)hqz(jUE})9AN{j)XC^*bS^QRFlxQ%X<rSXpd_v9VuI$>80LNI_ZWNdzpXb~A
zhYLBh4Rmm<d1?G}o?E)gmE%=6Jog#Qqh*z3>mD1OlzfLp^U8$?afk}rsTbOpI$pk<
zxw7;nadPHsy=S-YGZvq4iKOvA8;6!&^owY@ckZ>;M(2Z@TK=L3u!&yBCcqS)Wl9@M
z&orCNF}KnU{C>+(Wir5Li|m4AF!FH?o^0eu<i0+WXVu4*?SlYmk}2b66xts$x1=;g
z>1S|B2)sp+{0cTcCyO6}=}YO;x|+iq*^jrnsJuQmik=yMs=JJn%@cn)Fq$oE0+JFl
z+dv6bzO0eE!RJ(-lum@Kf_@l%H}?8ADq#z#U=&kq+WyiIu@!@hj=zI2qIR7sRkEIB
z`Zw@LdJ1z=3~KZE;>j*DjBw+(Z!}G)pmO`DB{uAB^G47#WQZwj`{4j5LJI6ZBYg1q
zPV!)9=G2iFxX@ZR(y;1twaet^N#<o67XiA8L|S^yrPof=p322Iac`d@k>4Qv)<m+=
zy}dxY42_d(ZeG8Z&DM-RjEY|u<%Z0?t_XtZh&Nltf6T~}DPswUj%b;d-3h&Cf%OYg
z1yw&y_zZuM%p?E)X*pBQuj@guC)vM#v-Bo-&AlXjfDJr!tVqznnzrW0OafJb4C(uJ
zj(8Y((h&R2+7x-cVUgpD%6yNWbU-9DzV}B>1~Rr{DkoiBsV5y&a#iAC%<e;Km!UV!
z2ng(@;$-E;%{P@PsTtbYU5T%_12T0qO@PR<SMP`QN}$SpqWD<D;|s|~Sb)4(vi1D!
zPiGmtqwt9RoTPlhPVT7!tWE_0Q<68?a>%@xvEGlI9Xw!3(xhvi&+M1DqkFkTQO~gU
zEA*SVQMxuT?P0pRAk1JY7voj>Lnps4`;9{U>YC?7Y=_%H_LzTl-U{3`K(8}nwt&Zb
zu?@(x@(#Nr^`3rfD#^F=Bu%S;{d^kTCua&ZPwM}z{p8d~T(Wm0e0(-?7Zz_G9HLH`
zE!6g6N9cbkv-=pAaq6j5%WEgJS>X2y#aZ5sS0mt_EYP%yI}SE}`<gvcLFvkH_w)x8
zwz&CyJy*WS(QW9Xu96>3EZZ~9o-%$8=w>#uMIXxfN@XbJ_jUL)<4tUBx}#3oV{Pt`
zVaWZH*=6avHlNa))CMYIsJ1drVBC1QflDAY1@TnMMOe?F;7lCutbFe~B0U+8;(~yG
zXx>k<ubI*f_7J*29`~W}<L+KBQO_)E%NK(;8Oo2pqwSo5j#^G<$mQ6bWWT?L{e$eW
zhlq8mk?4_LMgCp2+B!8Q{=kKpo}HvPTrSUZ{ZJGyjnPm~1&9ScP0sidDxxSdQ4GF=
zu<A*7yD6$?Onta2=dcI2-WWJbfqeFV8BKf7o$UFWu7}&c0KQ7AphQ)2L;iTV`v)D{
zgXLPo)wYZ!)mdOWm%*kTBIBo(s92GMgi2YwO`{bvE*)&Kks_{ih0LMM376uA-do8>
zAqZ@`|4sb$draGSswyjLzv&ngr-Qh-^X8ygiF%`(!oJcV<pp`6KAV9q6zGM&Oa$&t
z!!0tNIdumwbBna!tCDGKe>858;#OI|q6r#J?^w{s-R`vCsvc~-|JF5HMgG_RzUbo+
zrVYIWwj2l0`S{7ri_jnn))>yXJh>*n{|-L2b9f08byE;Ze7j(n>}eRcU}!?+*8}x3
zF>Kj#pc!-X2S66m(a~^)3TIcYD~drmwiF}7V738ci9oUO_kiCR5X``3?V<NYh5#*r
zJ#dgOXsq9E-jN+~KkqAMo(rMR3N?ZDa^t-(Li1$;r+T~0+cFOB-9_b1&itK%ecQTg
zKv!-p?#+tyvQRz;`KXKv|0pnLGHOhv?Z4f67<*&~nA&icJZC{w_F*ZN0~sciIfs@j
zho?+=4<EpTj=j}yfnnc{fDme1Ri~Za&oQoLe)U^Lc+@@UEoPjo${xH=X1^rsWE*jx
zvKAnXcm=-s4Dz6r)9w^Jjwp`kdrLL3TB={pKf^Vd5qHl<KO*l;%O9stF_&QVW6`>M
z6M30_4wO`D`fl;goR95lwsUbA<bw}t*Qn~^Fzu*V#(?*`7Y+4bU}B=<VI9LDKqRmz
z*xP3TI$m()4y-m0dg|+0reN#RgP;`NRTUY|Ji8&w*}dk;@Bi&Or>zsw$CdV;X@Pqn
z`7@BHL{JSobZ&w%h1u#!7mJgU#r+^ptjS@*t}0mz;C5YOj65yCO^xnqs}q?y!~gm%
z^R<zCkzSeEfO9}@g%f5~FwtG>7{>O7a%ln>ajoELZSU>Lkb}JEcAMxQ^31zxmTMUv
zJM9(xaq8SW(6nX7)Y9j#krl{Rc%?OULE2)R9vBSoyZ6CGNeS3TclYjm+7ctZO)Ilo
z7Bv<k#Wv9*0h>)yoskJwiG5n)3EamB?jyw&8bMJBTG;AP?r&tv#)|*ZZxbcUdxNn`
zc=z*?9i#Jvz`Uz=z42Z}_ASL8!9IGltp?xr3Er)pY*Vy?R9z97-!>RY;6#*LqiN#{
z>YIMQ=@r0ku>+1A%KW&82Ey7OH&T$0{cJ4)p~+fsi3?vF{+e6Ge-JYjB;7l-k8u_!
zDM-`?H0x!t+vaN{hDVQ10m7kDl*7uah5g^5OW`x&3gDj$Rl`IL>TDYect<gg9+EQ1
zRN);l^kNgyRBAP%#f}hJ5N_3q=M;`6o`o8($bxrRPC}Q1q{+ENzAFm~{gQV8ny{M0
zhe#eDpR$hup8`+#HI&ITd#iSMzjP-d=Z@sZ6{*Dj-MZx*^?tBL+WQHQ@8i_EPQ4vI
zpD)2w|M4bmx&jYhvvnoEFL{s8$jquXcl79(nC4YLnYVcgPm~n@#~PusZU}Gq^vcwS
zirtK*CQW*FRNwtGG9mgFF*kRvTu=nQB{JL@MSFAp=7*alY0IJ%8<dVmmYcR}N-+D+
zN771P>d#A(^2KQT3S36Xq8{W8=+b$&xb%0Du!MrOpF7sf@;bUH1Yd|OY#zf-4TA-!
zasb^XApF0hPR}ry=|t1Jsy6wCx^hy*s)~v&qwc|27O<J(4@wKGXrn7;E<T~I+8`NP
zfrcFY?@;+b48u8E4S!0G_|?}3M5xE{W1~<qcBu0yAXr-1+bX5Dzl`wGt;NUuIIjIS
zTTvBgO!{D;`rMfT-@Z)jKs)E~s&Kzz6k(Yg^3+XwuT|?}o+Angf{B?&_&_?fLZK%7
z0YBoih`$Aq&uc`NRmdAWxJ6JG<9HEt1E^Pd`+ns9lM#Epxt><be{FMdjj%t{jJfaD
zxt_^`i|cCLE7c7zj(bk>wtU-w&{fXXIwJ(K(a?5eC~`-5YDGIB;C5T+{$o#AS(|Gi
z$5EaY^O-#R{*5}~^+Exy!0(RW)!F%oyJ3nyDf!)UujMPRpwu*A5(W!gjNJnJcaK%n
z2TO+DsJ-qFO;BT}ju-Q%cuK6lXjYum3%MDm$G@QK3O88Bwbfmmc+$f<fss7BA_=WQ
z3Qo4H%z(^Dv5tjusr<^@FR^hC1t!W)Xj$MH0_r7Jo-_}>vQbyoA5i=(yEm|9b=(CZ
z2jhmux44jD>?69(twc_EQGEw)vjDysIk){`{V^JXV_c2Nsu*j|LKU90e=Q|#eXum+
zbp_vWPR^e>a^aAA{qakSikevcZHBD-7zgVYyDnoTx2#VPMw3-Pk^0uN*hBY9$e;5e
zyPP^5GO8`95H`(;M7|2^zmKIJf53{e<(B>QfQ{ituiC@nYu1va{xNHtDQQ2|?(w+J
zz~2jUQt@|Z=b=f+|EpW96$0fqUOr!)8`5@%=rYQ-y)^H^Jfz-rd8ITndV%QupOqGD
zz3pBkDgE4+7vIZcdJ>Y=POU$BJIK!tU4E>mv$?iV-FRr$An5wz)2n>@LYsri#WjCp
zysqsF@Aud!?h(b0<R^Dio8Aqq=u^Ka%h*sydOkUS1=+3TMot#_*f|QAA+Fe7fAJJv
zncKu^_%x!`AU|T#=A5WTskGWmf3oMTV*hP+JV&k_tcQt~Q&1FgQL^4vGgW@>j82$w
zLy?sMI_sd9tvPod4Jx-=0fGg%K`b_6<~(8`^d8KVUKV7iJoYgc^YKY~JIkMU4f$hu
z0zVTp1$H>U&jv&IXzbo*8bv=#$+R1?tAw{7o(hEs!MW7U*+m|E-!MPcKHB)PXY8@Z
ze98yuj)Ro5tLxH9nZVDg=>gG@D)+CcMeCnO^lU)>+lt#Wp40?|!9VVCnTB1L5x>s!
zprfUp@gBJb5-6~<v`4=!!&KC_$l7@yymS*6)_z^Di%VtsGZy!aSRH+}VXsVU_^a3k
z_v7<gG)8jYn$xNBxxFdM_iMX%MvnrAXHZUaTC8W%^k<ruMRF0+kFx~P27qyzVy$8{
z>j97R(Sn2UPNJH>$M>dm>uctkMjFk|eqIZ*FnKq6+9%E#CuVL=v7V^fQo}Jqt=;sK
z<hwtLuwt4$t&yt}wb0Yqqvg0DS}#`-|1Q@&@Kv7cLl*R^&K|Kr6O!l+qv+07AevFT
zn|(4m9gvF&?&pU-3e%hP50kLC5^6&_4dyDU`P=-@N<2!+xTiM9>Ko{Eb4Z?N1CTjf
z1vsak^ZlKoIEDrFkg%tg&I|g^qB36!)bT`BoPp(6##njEypDOLJv`!?_bYYIyDkc4
z48Xh+LAQVzP(DfzaMP@2k=Dld-c`2XQau4+ApF6?l2_69Ywbtj;ONzNQU^?(<`eyP
zv!LCNz^tRL{(u#h8~Jx%dw^3lNv58&{iDAt^<CnFEalCeaBzT)%kfaJ+yT>6rQOV{
zwq5nsD@PBu3#KzLob4^=(-||2^vb<R+ON7W^+(hh;ee#w*%ehIM04j~Y>r`B1`ukV
zA*?gE#G1mcIbJU})v%aHDTDKK1=|Eqg)1@Hs0ST2Om*!6)lh(v1Q-cgb=(;(S1)^J
zcqzkez2!N}%Fy^u?QUi|qP%V@+cM*<JnlztuLdaCxoW<dACtH<&z5r>-eTs^<TW+<
zI9+xa4R||uC2+i+W+?KaDW1!tWbbO|YR=4X31{if!x6#q7oN|@epzqol`c%Gw#sKN
zzwv4he=mvoq=px27sRIL_X%RJ&)fr|fS<RX!48DRbJMIgQX(QUl^2ekU&iD@x;oA0
z58hRZk#wydIsWYA)f2rb{?h9wm3-@;;8mF=AhQj@`ay=#RIMtOryXic2@aI-hwAw~
za>M97+@RpS#%<(6;jzl%;UcK&ERRcgOQ!D4OP<FOzaj=f82_n3H@*9N#<GwZ5TEP{
zfVi0F>$&E(l;(mX4p^7D_yTl=o`iFY^Ad_4vs~A3r2XvR%teOM^-mT!f8LAdx}hU~
zk9Hz*BRhVegQ|F$`Zb&oa!%m(-Sd<5`Dp1e<cl^R2g*ghf$J~*TVlK1vU3Zpo6$#+
zeR*pe6HO!H<ZYJ@{X6bPtEzux!jA!4f_Y^#*#`BUHXTjmmYO%b&j#Zr%7~NS<on-P
zM7&1s>nN8TzM=7miy@F5T9!4O@U1=de-p$A7eHN`*E~}Qp-foL&y{3~Bdo@HW~W_n
zL9sMn)w#JWRMiRpMDwVY0OnudSM?=R*m!d$-&>fyUgbVhtJ(Ywnf;sar}ROieX^MF
z$+oB;Psz!4TjKG?*F19$RhL`m_?-5`=EEKfsZ)(P7E9mJ;+l9%_1|TH*4HTaj&}Wv
z0aAzZ|D=ur@nS3KAxSx2&)(=1N&1@P(YjHD$+<CIO{Rr9)gU*J8PobPb-2UwbvWaQ
zuTsnt)NAT^S_cAElIpUqd>wrE9o=GX=Jm1QT;CJqkE}^L4q~R9Azu4(0=uR>ny4B3
z%?AwF9lKWhriJzH!mvIas}AfMXGFN)@qXMS7fu$FYo$VAe-4@DXM&K-&>xI`TRn8b
z<?fJ+&<nX604lr%H;`SC#P`i-Pc5<Zn>U%wKM`%@RKgo#m>3Vejj66=|5bRAot`VA
z+<SJ|QMj&P;uQ*n4^Kwvt#A`ksfC^SgI%PnN*mYnjP?OLQLn*CM;Nt*dKEc5%&FQY
z?-@rl^}!U#Lhh{Zyh1gXSjF4y9s&O4G`!&%jg<i{<YoEw+HFPF!<JY=x-3W?x9lD^
z!Tiy**{%PvbmCVe{ll16(h6js)#A=$kX*&rKK9a^iF(-i{EjVT*j0nIYfg`kGddx+
zW6sfb?}%&R5LP(H-p8p3S?hy)c4f@C>D9;)WxLE}s(mDtl74IF!IgCm=0P5Lx!I(q
z<~s{*O^Lb%_K#6wb?+xXs4hNF{FpYDIG6@Ka4_#{>pFVlHLQd#-m)CMf=#!S_&v0g
zbr8lpcnPz?>I^3rBly{;o7dQs#i<{zl4JL35_I0BpuVq(g0GU<R0h6D?d;}T13Fs5
zeN2Rc9g6%0_Fr{XQ4H8(aS~JH%_IwXz=7IhKAKK4SwvE=-{i*j?T6HCQNushN5yUU
zxkz3@UILg<N&KLl4fF1FaFIFU5;|a;c{6b*?PY8Yb?yQ%)b+#*Vm(8e9^2Y&X<bnF
z03!SSMJvOpVq_xXx!_E1j0J(rC3e0m-+;2jim2F-t=bRZ-$)(_Y#={jkG*{F+6~qW
z@`VS!I<6yf(ss<(M{P5LHo8R`f3|ZD+*y2u&gr?(D&x{>{;j#(PN?oj#)1FDxM<e)
z8w30d_Rna@5546Q(ghfv;ntHECudi9Y$YROzsxt7B@=C1AshtU#V_yliJ9#E7_qOu
z%2{)jW`w;=QNRq4>;5643=T&77j7ze_uH(F-HSaBqytQNF`^OP$z_f6PHo<ZS2k9Z
z+P>q_`@Rlt!6Xp)#cB!)EwD$!8h=jV1{f~<kSAQ6mkulQ=-L=?BvH*X3+D<u%>=;D
z)|r8~2@|#kD#mFRg4f9{JpRVF>K>v~Q2+2KURYw6L%%F|Vc~E8RrSBCg(kN4i$@Qr
zPg?$Bg7II!ffe`r?`NtE{NVgDFlwSD{xW+bWpM`N3)mp+;HG2i$U>iEB*kAy9QNv#
z!rT69TQ6aDl}%|9g=NZjyReJrb+CVwZmg%gy0MRe*hK8f#r|V|YOCfnM=qu8Z8B|)
z(U%{}7kj-=6=59^1;M(u%(%jn?<k0|j83DEKh|$ukANw5k7fKh9PQOm$eoW&#NExj
zpX`Jbwwp`U`t2PriS|JuwGn<aD``D!dSoKMJgX4b3tRwWN<(3D5;<eGa0NRzehK>!
zEeX3UInpI27}+;pO1-fNg2hFK0EmSlnvjRZduqWlM2edq%2xsqNS2i_fa2bOjH;xR
zQ6({F4U;n^4{`v*d|4a7vAIbHqxyCPy#BpMRh09rjyRT$U_J%ZQ5{c%V=AuGhxeDf
zx;Hk2%<X_tWOB}KBGte%#!ABXG}$a%XjATNp86IufB{+ezqXR$CIDLB8OAVYBuWx2
z=MEO*dah}V1_9u$X}<y$;*SAXpIU&w`>kFrit_pc;!y9QM}48qiyQL?0Z(_)mMkpD
zXQptA8Ae^5ersqMLU1VD2(t6gq?E^RuT}DB&6~!Y&3)FanDCgbSLnX5iH-M}63PSn
za#p03$@Xhcv$cCc`kl`I*_KP!;Nprbs_s9{93v^$)b-m2xWBE<w7Hs%^>e9nvad;;
zoxN9O;V7^}nUJGYT>0K+7AC*c=V4Y?DXs?s`iVMMGf`||Qo|Rawwjs&Ha^gs_w4j^
z7D~wuD)W}hzrBIl+n!$bjlkIYgP){{jFmZ8#$|F9zn!Fo1Jdf=_Nt;iSpWw}5=OA0
zD+(3jy$C>^pKH;eK6?6OHh@TDhtAABM1u%}4*_@Buo;IQC@@qI2H46#;uh~htybRy
zOT`#-nQS>6I$u`KagDCL)Hp$J?5J<N(|zw=UZ5G|w?~ld`%8)!=_S;!%<{Z2c4Q9m
zGPL}J1M)l2reLdfRHrW@DE&rox?V+i1UnTJEu{gmJ01!!yg#A$CvU-087D?sEPTFt
z|IgfWY7)ve*9T(vEH9XVrn>=5$J;tlw*Oebrdp5(_xGdHQR6XdsBpXYW#tKDUkSE?
zJ?qTz|NZ{vt*nusvN`$1XY;oo>WDp5NT{o|q4Q+5g!M=)a0d|Ln_WG~t~I1r07eb!
z$G<10%tt2T5Wl?5ppDV#Si45Q_oIi@mlNhM#HN>Y>wbc*mUEW9>XiHAm$fOOp(SN?
z6}{ePb8gpq*DmuwO<<h=6-);-pGI?@w4iI3D>{@h$crnuZ<k5>M!^1{qu0aO+!kZY
z0(%`1(LIc<ZQ_!j-8Exvv<`a)OAM=M@;lr`lcn!{Xf6{_SYhX0<9S-vW4b+vo)~wQ
zdCga_$1>qZe#(l_d+1F9TD}}64bY?t(t&pn+e%}9+Z?Zrcgv{$GBA%W4>P=vtO@$t
zZlHwi)~pJyP?<(IHym9+lTjb-LubaN`R3~Vrx1V69Ev(N+ysO7DFHJgMNF0yldY4W
zF!Pn!_q;f<Rx|MQ{y3&id7)<6;?Yv)mj9yl(uZCaf<~b9OUVQ&*Oelnoj*`$+R@a0
ziTc0T@tu0Dp9Ws;%W@}U8QGIno7mB$BM!XxJ;D9x`U4=}jcc#{cNrROg>8-nB)wi%
zz3ROx%*%}>R@H5*0n=DX@Z0r^WZu6<1^?g8(-mNdY>v(uK8#=`Pd_zp?&g8}lcha8
zSFY9ssRe{D6~3>e*+HKE<P5<7ZPgOBlUz4;f_omdY5n2BW3AHYOdS8MlOJIs29GXy
zbEssYN^udf!^Kx24}gyH!VsC)tA*{Hm$sN`)4@B&Jh@~oaIGXRmN`rUV?}YQ-a~J#
zf_`a*0?ps?R;E<j0C3#jv?X-dDUpK!JiO_67eAG;a{l*jTfG{()-Q-3q#p>mIxXXv
zxyfE2=tWbY`A>iz?B-u5Tp17T|Hw#WK0V90SW?M<=n<iS?@@Q&gtZZL@8KSV)gpCZ
zMv;wUzfue?94a&2;YSL$m2%tO61uARD0$3isfIb~sjX#)(S_^2C?Qt5|1-|njv&_K
z#oCRrRHy$!;7D0BI5(0><s!b@Hm>RY;|2p|w@BXvgNgsnmHnCasEC<FME75S?vOnM
zFe7g&F0uZX@6fCE={62vbD0>jFiC(`mPR`vm*rfPzlxJxXk*qBTt&qFbNB{AFDsb?
zUX+3wIop4COwrfjr<P1`_Lg6ZJXREZbLYjNn8FcIu?EjsL||&;t-g}4z{SN$QK;Ia
z@CRNrJH1v=UM**Mq|LUm%=+DfD6+Tu(i3!dZQG~|yhxm^+g{A%^;tYz$WDf+b+Ku+
z@CMjD+H0LTWY=V-Y^y*L&jlDhL!?8&TPf7k%(p&!FL@E6o0bRUl!BvEoL@)%!=li{
zknX8QB->R3-m_?Q+dR{}>bZ%!nB;u7$Fa`38KScgPLdHagDoj$a>u&;5!F-^MrdY&
zE{$0~gRz#k(TBqRo!KB2*jN9ORqh$NQSsz)F(*1bCYJ-*zxwlE$QE2&xhv3uD@_yD
z-CZk44AlF+c+;Hi%jW5@&%(Rf@aB8hJC{A}MhaBc@A^6vx4m2}tE0*${g;TlJnj$I
zi(gc-1wplun)L#5eT<~sH#j#n>HQV(75W*dIzDK=U3Q||7|jY4cd(~ahT2mVGaohh
zY%wy(Z>JJa->;JL3+VSpLzhVY-_y1Vk~K29*~4Of9a5iDC1Gcjc8?`cqjFouvalyW
ztpu~INey8w9sKdN)DJC<JS~nLkgCApSN01(@Y<46arMpd(ccLJ%<z`~G>1iAT-j`@
zw3m8SdTnf-k{h2`Po>3W<lWx+?Q93Vy_MekXtBs-Nj3d8;mMtwPL`er?9xQqy${b|
zV-5CpZB2`7QEHwZPX-#vlWS5;e1E3zg#T#jm90!|OQ^eE5$N-N7Mpot2onr5VO2H$
zarrXzXCmp%l=bAiblFmAI1c>0FToU65}Ma2m=-S0l+%N02<iJgV!0>c@M*p}vDP}g
zte1{&3dq6LX;#?hcL5y$@I_^+@?VYlLAB34N`VJFMeDD7YNPMP8Z0E&^OdhMbybyI
zQ+PwfIG@8{6V5p<-dj{nDwucX@h~3y{bA%qy5ph2#hge=?bVEOn3k>br*B0o248a<
zQ_qC`+)-{g1C7<aP8wb)e)%akmhgvnX_(WkkYFc9Yj92B=Cr{WomrW*i5<GB(4(0U
zMf}gHcq#v4UZs0-*<92RUUg3k(h_`jg{bv{Vw(1CA1`=#W`x6lK34#I@|)yz)cxT;
zbG!-7mYjdfaFv6P-);28jtAW2nebF_`@15P{w++(zIUm2VBx{dcM|i{UEKy)B?@Zm
zs7ZG-3Mx<%%X#9y7E-&`%oKiQX+bRadfDyYnp0-C@YGPA0Q=*#$V97|@opqsBrOf`
z2(EDuxZV=C5;aK6-b>!-=F<=>c@3Rqjcw=l>b&L?9Cca5#81A|bML&HS+(U3wxRv~
zD0Ql~u0KqBG0XlfnTB+aW{<z+wx?sI`iJWAdM!isRkt<(RuPboM2st6<XQboRux+{
zCGD+xMuA{4lYsQ4k2JxuJJ|V15SnH0-yLX!?w*>+B6`lZPkSD(0RT-V-_I~%Ud2}B
zx>xsFiD_#OSCy9dky?3~_l6_(a%V&;dB6g=Fj!st*LW*t@I<JB45{V3-4^1Vj!lfz
z**uC|cQ5Akmo_H8#Idd1I~TDU`02HnNe=Sbo`kqQRoX(e%}iCkQ)@qpH^4hg;-+o7
zZ$EG=;rx>YKiIA{r3xP5eD13E43@-=L$$R>tTF+o6~T#L5!1rE@u(Z=fCx4B*Eh1c
z@*Y4EA)Dux1rMn$o#$;SZO1$Vd;N&_bwywMi&{Ff)~G|R3Zzv>w>NP+*V`-rF`Xls
zInt+ow&*P^BkFZ{!w@jJc>**Qs~k_+0+S6_ZAEd{otkCr-xGk3Vj!U&kB&6X^#T~;
zCpDZo#{YqTbkm?8T}$GVOW<XtrX-pp++f}_$_VrIk_+Y%;|aRa>U`kVGHDpShHMML
zWn!-)jSISJai>fu`eF{Y_R#K~bjukK>>DWG(Hd#nkY6n?R=fOcQt!|C-DXYNK_T%f
z`5jOL28bfH7CgukkB98%mhs~|DS%TcN_h)l-JTSJ?+~N`_k84$BvxSIz={eYXhM<)
z?<{+h=hXje{!S#(@_@pHm*9oNQ<%!#FuEwVw(zI<^qRuK1}fsyvU6HIbFILcJIxDi
zAoXn8_-1F^jI>X|zve@XUPEGoXzrU+Sq8)1j=F%8D8L>Hg>{ghg)N4vC<i<gD7&<9
zqa}`joDs)wr7_-E<h~B=K3%YLCa1PJT8dvsmL9jbb0LR?p})!sD~=W?M@glJc9l7H
zUgjQ?DX@Q=`%yYuR6ZDZ5UlDh=D=1Z$sGh{`GZs9V&og*i)Z-oI<LQwj<10q11}I`
zC@h}p<=c?K$CHm0NPGHnl^d$G!+d6}siTvV&UAt7=Hl6p+1dTFZL_gqn%Dfwt5vJC
zNx#pIwdL>rWc27Wbz&0gpx>8&|Dc_-hI&*mJ)tK*5YZuc3QEn{F3MY=SChmXH#Gxi
z^PJ{9B?u$pY8nw<uRE!o1t-f9VTC7qYY^`GIdcU9`}^YmS}ontUxLj7=j_8=FaClY
z{t-WByiBQyCV*P%@*YH<zmn7Sr6=sv;nZHiKN`(p?oscp(a3XRGs$maxCAo}XQLIL
zbbbVy;!nBhHib8UB{Q)cO0PFcBkK4t^xbjuMTZ-=9ID|K+^}<s0vJ>C>H{_)QFms-
z1pNdF6PzcTcL_4WZ;{UKx{_o42tFjCf+j5%B@XhN+g%@QTGU7IbM5-xAedpN4LYT=
z`2!K4m(DP<h;JLNMoS$HDnr~W1#{XAC1Hl>j87-#$&%A5=HWB{+az(20aZN$am)Oz
zTH`9HSp7np>G<9+vkZiF7fl#Z@jbJp(=~i1iwId_G<QUB<XY@U@yPQ-4)?Xti1i@+
zxKG;KhluTKng)a52H%Dc*0O<*XJLE-ryRbWXO@HST>L1OpV%vukSO$eWgG~O@I<h6
zm8ukY*xoy{sBCuWdOAV1vi2%3cI2!)ob2HyGvCp~y>bb2IjozVCgUKB=i)MeU?#r>
ztk|HxaD3{Q8n|hm`jI!+{hM%*k75ilZxZPG5S(~~9z~PT&tMj-?>Ui=S8HYp|5;J^
zD_pADk|;9R%k<(v|Cv|aE<ZXgL3yN){#|MS*GH;<KhcxHVmSN~X5?N|bXk7RGtW`-
zZBYyX+1gptVsl!4m$}=%@PF%$X<mJ?kx>$IEQxqe0V6N*>?&_3dZOSo1PcX5w;slK
zYVNdX^_#C>q=6t$RctxKKbqCbg+jrY$EeCpEE+Sw53PvX<r+^!1+D_6&z$dHqjWd$
z@7<*8HruuQFsDd$=h%0ynjh>$_6@I|v{u6&W)nors;JhDdND$~<?x^u@Hf}M$Ia;n
zYsN+s_p^|F9y^>*u9SbeziY5MuG(d7_qLyHd$qswNf5TWA7ktjZ0OuBpTwF3l%NkP
ztZE3FqnkV^Hdj^;0Ub*>LkxfLJKqJaQ|#|aBJfSi;o2kiHZ0XA`Ph+Kh9P--1j&cq
zRX>(mwA%j8%l|3tzKr~;B);!&7(=Wkg|=h}xSAopJOfyY(BYJ3g~8pB<4CERg&4v4
zl2z^weMJN%Mk>_scb9AHC_^_2HDWz65vtl;*Kj1)r5u3ljR3(e?Q7rnssx5CRK%B7
zPB-oEC&wR$!fj{fqPRb;rL2W2Myvxuz7LxC5EyWVy%~HG+S7SIlg|M2$-kjrMBK9P
zWX8WL$$k9li=(2<29WC^EMlGbH&FwE>wh}r`{me(jc=t)nV#a~_`!K_y#nkJTDttX
z&91;a>YWa{$*ME;J^wk$RQ^F-IXV}(>o?3%&bxn1mqg!<ZSja|`1Slu<ZlJnwEA~5
z^H_;11$bU8L&!QPUZ%zD5ndm~PQJK!TE3=Ev2V&biW)z8So%84DmX6j2F{WbKwqQ{
z(HHrE`6pl=X_$5%DHhthNh*b_4qE`~g*-5@vKyw;AIamzfWLmTk%@~foy_u?I*EIC
z(>x_W>L$NK+gb1x7(U$l+l-LnE#3Q@BlaL%7E#SsFIh!HT@xtbL?u`xDfR?9>vd>R
zfRVqS+&RprBR0OOE%Wfm8a0Q<$i4b?W>@td$L27?U%;wUGvhDDJD(kGXpY;iLYb&%
zWO16n`uBN}&n*`be?ho-snC=2D?oyBf>r%iYlaH}P+pVigPi(@uG^Keu#s5-uD;ok
zcL!Gb%6Cd_FGiA&Y0Zqi6DII|7oBVGeE$=3Z=o?Q4duXQgNJe+dcB<F7fev$_gGT7
zUU;PEe@SEqI`)0Fi5SAXo-{rUEf~O#ed(m`3CIlv`clvJ=*9A0IWDI$h_CEnxAqON
z*Wa9nDX_0-wC#~!i;TH!m{bVk&IZ~1FiU8&0mZqK0R^(c@bl*SL~ZT0pO_J4*z?m`
zCNWkTtHDt8@Ik1n(hb%+Qu%z;fAgi}l}~R8HAk}xOXEHjyYMVWy@ZN;yD*N+aFlZA
zjEF<8#0wT|revj!#K?x6-B8r%$iLy<qhf>{aIQ+0#H75(-vQjF!r<y2i6wq`9idi0
zS*9NlgL@#HR=A>>Y<(_<G1wXsanAv4W?{~`x2=3DvLb&O0nAwMkXc}ATgt>+&0%;Y
zkeVGS>{}6w`jzPjJ5f?_TYhGE%Y4RQJZh<$4uU4YP0JMo+#aHzsjIiLfHej<pPY=X
zPSK;Rk;55Rl}SNlr8=z>o<KoZh1xS0gjYY0w~@(7_GgsIinVwB?M8b8pgY%oLT{w+
zeUkdp(HSU^f#SzF+S)AYmF49s<m7c0m%DEgPoxBNgpa$l|D3YhiW_zc{RDi6d-qF(
zM>Y2fs#?i3d>##UXvQoHRgPS5h8vue?o?F||E%=rL~&-0h65{jAb>oMt$bY89R5dn
zz6$i9jL{?ko@m{vf-)M0_g%vw$E`G-rMkL_D&_ec{ipU3AI-Mv=^xCvRrqk71zHgm
zm1S)%e2`kpnTm|V!nNMH<Dd>4pFG<kl+q{Yv!<f;MEdG=i-x)&-zM1L_$H_DczJ$M
zX9qJe_=RA^&zbKd>r~}AzTUv*DKFtFoOoLI&cL*<9?hpBv+3&3jQu^Y=BQl+MY>+$
zhcr$YUSWt9fVOSESWd1BI&V{AwN~o?Gu(%vs;W#-UrAIl4kC=^bng)5I&*s4!XKOe
z?0`>cc;_7S1{q}J{A=9Y$v#UN54r!A$W!JJv88Mjzs62}g5G3<?fmuPOz3RRv1%p#
z^~qlOfNC_4UPL$&3<JW`L|bB|Hcj_*LncHT#vEm#x<BGGu)i4cRu~A&e)e}F9Zjw*
zd0Q!W6vYnrRHj~ima$Ca?_OyTHF??OZAm%GW87C?<qxDW*cG93{p@^<s6_lQ2Iy9w
zm?+GPu!sEKxBPC6P%;KGq!ARl!i;d`lb2l^L#9iA74m9@;AtAV0uvL^&eUy<I*mx|
zRjo7wXG3kNm(@ja{L(L!{ML<=J>lxQW@9!WaJn;RB=nCOJ1@iny@y9_D({hf28e4_
zD1)$I*}O2q^q0!ARocLMJXkxr;s<9yp6zq=IYsNS=F}CH&q4XXS$Yio82Oy0Ug|tv
zojbjjU=2%D(u&{NkAqAveuYq+`r{3lzcjql*ne%?i?V{UpH!?x>;yI4vK<LtE>+`D
zS3THAG@S!sY&$d#|1sLUA!_rRIcw6}!4%Phf(YUB7o(e8PdTcN!)m+7c0q7j)tWZg
z{D^MPcj!G;eA_BOMYQo(L=MQ?`ZQ0xS2B{m;1G39Frt=Hv%%95>-?+n$$x$KY&>fp
zTtfG&>5qH5X(b1_`H+mHzt07Dolkht^KRSeixZP-LF<KbK?WBzwS3^Q%7CxWA)byl
zi4C%PD?S9r?Mm$a-n-6_?|L0+P?;yx89(VtF0KB?#E0>u7z4YFhv?Xf+GUZpODgjg
z%a{1h8j6UU_qNz9=JE&GAvLHe00dsvDX17lsj|wOG$$9st?i*3ckL9^HCF^D+B24Z
zWF$wiLwpmYbZ|RaR@F%lZ{U>M<Ok@(M8EK1B}^Cr4NJ5-^)gy&b0B~N|5g1u7j}SW
z*Bm1S>)!I~AXRM|v%(}H$%GD0)r})JBV%+FYLOAyw{bV30%d9U`13?&C;3xeQ1^{6
zRoS%7!$K|fa5>_QZNtgi)fYel!ZU*$zZ^cKKI;#0x2?@g)T`3?%E@)p_lSveX)5vK
zC1wuqJ%yQYPcovRtxAHxq_V@7+NU<$Fk^bdRG#T^gzpm&?7$lMHT*B2t;yJXI3`ap
zr&c`llU!%=<lqf1{Am>xUU*FRE%JKSgo3zuQxLoWB=9u33<tRIrZQ?QROZKBJ-Y2d
zSBU&~%JbG^tTM@B<iO9Tkk+5Ap4p<qW+booPS#dpqAHynI9Sq)5no;tCF~mhV+Yc^
zW@@<EjJ(r&w5S(9Vu)dEY7s4jKwuvBY(}`p?@LR3mX(UUdvgfhJG3j43+4|!ZEK(d
z7(7;r*vL&%q3Xpmg~WY}LgL8iA+RdwfzZ?P3CBa-JBx+G;>PO$6s?b4co_Sm^Ae`J
zGf|Ub#0`E80*VfASX9lZLM+_3ncXN|XH*VKgzB6SZ15ej7`);S0=Ot+VIi<U?{c_x
zd{nI)E9vsy<bymx+~CfCbvJ7}yOM?}1r0AZnD0TI;w-0-otEk9ptLV6@h>|PJeOSa
z-f3(8^Pn}kY3`(ew$eoL(<W4Q*N<Wm(qa+yyIum1QZFN`9Ddr@{bJt{IDW}24}VeQ
z<(yPz-<N0_eHtI;XLF&{3;r*$S)u#UZ5@S;s*QxdUoL!{&ZxH%BDLl$z=D$`oe@u4
zC*EFh&Jmiubk0Xb^-f2+sBahicF45oPqP<Pmtc=(T2Np0hzGenU-IP_X|l9G&$jrS
zZ~zDFFwij1s5E9JHKgq9rU)~u3}p3u(TN$svgs1rw7neKvni8VOXxz=sStbhuEffP
z;iSF@^!J<<cpcB1w6ffRHEwuqe|L;rwO$a(nwnguZDE_cQp}o*&M?QacF9P>e{o0k
zzfRuCs~=0NHjR6dGjE&J-%VdVqt4h!ZA|#LP<1rU;)w8cuK#Ls4=PdoT#~y`ffR^_
zn?o1L4TeRPe@?g6u9Q?I$UrHd9aTShz?F^aOZz(FfvbdHA}#U13z51H(cMO`%A`!z
zjWKe<jc%98^VR)RYs-qBOM9ss{3KgITof#yOM$hU39e^a{QI!4G`O`aBur-}Sq^nq
zH>Eaj9-Je6cY@2TKRBoW3uBEpE4{+K2HO}($L?uoO8WcyM7Vt>^PM&~SEmgwzKXW}
zse9_^A!p;FE6jnCWbbc8W97^4<*dmq&PSbp#6RT|xDrfS#a?GRN9G#f&%u$%hDZli
zka$Uv;9kp@YGB_dvLP4|zCrdETqyN2PzXUx@ylo159v6gnqC4Yxn#ac?{@ig&lVP=
z_tC_!@IacF`I61b-#|1?3@ABfOsNSAfG;z`i~S9BMSfaZ>Bj{wE?6$VsTfT`jVr9?
zrCn(xriuI#wVW`S7sfpHK34N@x#H#id58%LtCU{kSlN3G{!J!NIeL=ZbS@@L?MnIr
zxb;PHRK?&VQNn?hTu4+CZ>$J~eikwx{nV+c1)Z(m2Xug3yq*F;&)rh~2D7}YUaXXz
z0$x+ygW^g~(T;T7Bew!27G35MG{El+9c09z>WvU5y3_&A2k2Ne)y$su3{~-B^;?UG
zU^qxDv{E|mZcH8B90dS3Ut0Vg+7MfaL0>6|@IuP*Ulj&>mD+-AM%+1s6Z#;C5U=62
zfXqx47$xlSE@7LjNiu70ds1V$%JUVeN1+2*ms>}xQ#i=M$ZwW*Dm4vkwykCdPtF<J
zW~V0aOktTAF4Yf=Ft2wVkM>;QQmQk5_jo^J5FA-U-Ta@Og(b~&YJQ7meHa+rl?Zy-
z6m;~Q`b|d5gLbYei&$Vc5n#625+84+hWlFkgHyR+-LC~5*z=6)NK$f-w3)`_+voJu
zHhKE=V;`=DXlug0?6MOC11zm~56zbjyE?aDHtaE{D-QJs*mRBv+WyoM-^-e`*=7F4
z#Lng%YK&=u5D~*ahy{ML%ZTB(;X-6C$2o${o-s2HwI2@ruiZ)D&E%!?=Id=A5JXeB
zX$KW76cps>b@kb!Gx~=NsOo>dmxs8lSIT2ltSc!4Cwnn$f1FNh2aX?qo#WRZ_YDg+
z=2vXfi)A0IdbM7<$!*dp#O7zz@d)|AgSqRrhT-qkel338&eAK}wS;HX!X$GZps(~g
z`1l4%+RvcvZ6?>x4)Y)TGTrgV)1}i;_0|sfTXId_CFoKncwu#Z7E2F-Co21s8x4<I
zcxzkk+6WL)<ga`3J&7g--#wA8U;XtXD=`8<k7B2j-yk<kIA}4K@xu4?t?5gA^f2Lm
zQj&nOQdb{FkA<F432Mq+zX(+6Sd9U64jWYBMhuU<30?|Y0rLae-G#kmWbp<8>b_#*
z^zCVWag%=eGxF<xv3*+ujGOCX1$JRmT02+!AAW`ZXz5G`wBi@TKT0o*E2TsmDj08O
zqrO#$2)$Hw0Y4P|d~!IK7=AKD98#g3&rd0dOiMfbn(==eo%bUZ{{O|zq>K=fxH2oD
z$dx@Z%1l<`a;=1maM9)3Br>w!w#bNZuW@m45!qbZ<yvK2>sr^I-~0Lg1NVn}U-$KT
zj&mNzDwS3(S-9JfCLJlF!Xlfv_V&=*dE|7<D1Teo;Z*tRg!^J6=wxax(y%&rS%2r^
zq8av~a!iC}{~Qo_&ZbN$f&Y`pw?j5<sb@bZ6s1g@54`LU9exnuH{FotsPeuL!?0Jo
z89=9+x_OOeI!-0K_Jz~5+x8tN!=n>(|BfPJCD;O0th6Rw2FlIKvML4T5^7rm6p57y
z8(Qlv639Zr0m=Yb2>nnwEsp&hW$7{xJvAoWY=CVpu?}Cuh?8|W3+-0lHnfhPCzX}+
zexk&4S+lsjd_<7iB$gDyQwE!7tcPXoMt%PYS?|VVk(uA{tdo$+<gz0}SSazKh*c{S
znf6pB$VfiQdXP1Nz=fZK*>QAahsDZrh9msPF!K+x#w=irY!#GN>fL2gD!n+01O(-`
z%xpDP?dIF@IbEW6+Z_%IXLZ@WSQ&*s29%z6zn9$?g!Motcf$DB8=m+`ElnrTIuL)-
zS%yFMr1uX|su9VI_;d2-VR%qkN2U!YWY0MaV(WtKvBJ>Df!Jd(j27iOWX-gRmM~a{
z4Z?E9C!^eY<Vg$cj;gjEVUa(8oT_f!eJ(T}6=62if&wgQLz7(s@=3V5_M9AW9~-1L
zhP!<~fG*y%yw;8|@1HHwqb~o4<K)isHgEKYa<3jI?P6RE8zp!7Qjr`t<YBiWnRyg9
zFl`hRa)4S|)~@OFS+GNp!yjG9(eVo|<@yHSX72eHfeD6g-hb^r{O$@SHURig(t|)n
z-1-djuTA*6^@f?PQ8qV<{;+LA7^Ut_ERb{j;%d92DhklJ4Ih)uW#k?RNS>NzkoQ*p
zi1505rcY@B7Z(axbyg2kpP4lcRJ44Os%5P0*lU>@I?_z%P?|2-RPQiZ{H}J^(d{cp
zs98xrQ8Hqz;V0UW_wCECLt$$;m;N)9&xL(LHt%s+uNTerCHaf)wR{0o_+ukW9W3zz
zyFE}K7T%ioQTzmR&~hi<<7FP&e-tCi@BCu^zJMuzl>ll?L?#ZmbaHJrVf3rEp=+XM
zHf_TRITq{c^b_VrexEeBoxSv*;N7!pz!07@rN06i*_7PofEVuc%(lw~p7{(%!<C@L
z0}uE1JLtGc5qD8u|78<;0f5NSXMcC|eJ8P_(o1$Z119bYt&sTsA-O}wCr!4$Pq#3?
z$?cR^Aov4w)_*<a0Rk>yD%7;%iz0E(-_05jTVB9I2N_Ew@fjm<xJq66O7A2~X}!R2
zK5X#k*&WNEb-E@ar&lzE+X>;OOs9Y)H7%u|iGN3(Tj!A8LFQriq^Ot>i|ZY7-Fn_u
zA>|~x#l7`y!Ev{~D5kC_EYMG%bf*g_I?H%4vX)1g3LUH|H>##3k4A34;WZMbz6FmC
zc_ioyzE{<-V9%fXUua^JqRMJg{jKw!cLL20{%&b~w**&ca!o@^Z;P4Lr(dZw+T6qm
zpnNP%aW(hecPN#MF>g+dx6d8f93X5a=kuGMH2C8=JhOWSf(~)I6>JbLTtoOgu*+14
z`i_H!%Lm7Xl$@6ld%C<9WOBH5jt7<Zt{E<mG}2c$5oIaHVsg?Qh}~#97DVt((gM#f
zJB3bHaHV@JxN8j?ExswDg}j;n?Hvf<^q*5IRau&$ihKeIiAiZc2OR_RX0OQq9%V2*
z3+xDaL{>5lVPx<7Ez>m(hKVhkxvq6E-vJbeiJi9^yOERr@U2}D@p1>bbEf>(<8fx>
zkbvlI|IZ+7%kROkc)xXJN4PPWlC^rVF*`La3RgHTal{tBsaab3GSH{kSuVKMI$w_k
zaH}jGYt(v_FeN?dPIl)CpQoU#O~V^Jx6okZYxL=PlKN}zO(&!5bi+~fuQ_BhPl;%(
zP*vcIIG^@y4J*4O%);s6#9jq6ji{nwry}*+`e?@5-@|co1X<b5!B=s(54io%n(cS;
zD9JWq=I}U0Sx6l}<umJ1zi*j+sh<~BJIQ{7&LxikwrLYLlUJNbBMnsF2foHRe?6!F
zebW89cbx;S@9<37qCTE-bUuCP*{<|z)vYmKApltug*}wo$$C)ASxHi|lifpt7FQ62
zR;@SLJP6rME5bK_Ph7KQ8+|*+64_C#%_9$awUI~FxSHknelxh7iTpgabpgYXCd`!h
zfj;TukVX>qXT6iuR!5wgwvkeXzKx4hM<;LZ)H|lE=j7MR^<TkOAvSMu?!z)&=uE$s
zhVreG^>Y>TRRulB&x3%QxD};nVfe4G@^rxSHsGpdWo|!n|6x=KIp@6F#QWMjz|~=&
zTEF5ZKtl)My=VD`Od#4yBD~r7S-HAulkvYL#^tqmhA)TPKdAX#A4($J-?>Zw#78F_
z9pUZ5jT(f#<%`Fi-9+H0@V`i{GVWQW7Lff&Rc)PmcwN_tLdnwfQAh1}ohk2+ISpIT
zvf5^^i%*H<&F_)F6EThGQ7%6@<96!CHCWYedL)N_S?)e3#pgow|MQ#p3P}tVdy10B
zr-PF+a75mB7oR#&F4-h4{{YLhjYFd@pGmnhMvF2YtoNyx=yvfr{M_j%MdBSfu`W<2
zs|UX{vYCT7T5+jUqT!|oCcax}$hWHN28D7H9So=Oij;VZ>OXH7EXw+@{!}Uznc@bW
zf!E%NHZ_-6%KU7cKXtPrFVZwB+>1!^XZzxl@^tqr-|1u_mjrRnlP?<UOs|@=bGh)H
zM{odQR*yi8NJQ=i(p51>Z<>!ItQolb80A`KW8;6w5&WC4H>X#I4f0r*?Xk$YV}Bm`
zcbOKt$xedZrKh(;%V*2RXWcy^s1fp9@^wYb^1DB&Rnv)Ni*q8_#TgEOyxJ-cz#bLh
zGMXy4gy2SyaRkd`1tDXD5ihNCacl~>1T9S?O_D?*KkXW;E02HR-d2=)@q>eEg7!RJ
zrKcU%qmd*fmdwrC*4pjy2?l)U@zzXW9V@g-5OnP4?dcj&JqT-n6a8~)4+BE<PR#WP
zCP;_B>MRz{bd$60Iv3mJrp@5UcxTBcN~pA+vP~={<jotyV~8Bqsa1b22;+?bGB9$F
zZxtv#1t2S<HbdGjQ!Z3eeQJdUI~@VW9fXp>z5=rDd9G`T36i-E=Twpd{E>s>jVs7W
zYxGKw=m8ert}Z0<NBc52b$nV{s+D1lnBALRXEUKdcjiV8%-pe%rIHN3VK<QS*WyKX
zuJZqjagHuJm5zuu-J1oxllg}Yv_9|7nr+xIy*v3&u5ph(wf>5V-F9;w=fme$Sa!U9
z-arv%(4<X|)jK^{pr&Nv**N&6rWQQp=(8tpnZjTiDB`u(*%<EN%*wdk8;-rsSF{Vt
z=<2w8uQ~61Ew`P;HOTt1gw7h*%!5}U3v38x^P)Q~kr+CNTT9jVX4?o;W~xOi57&Gv
zZJ&7DZFxjWx+Ob)>rB6k0T&QDU@*ksIS%ZMySsU+bPH*nWhnsU#ug~@RJ)VdAWrvv
zOTDl6@+?IM|I;NbgcAz(_-sX`8rEw^=tab>+-@pqVlY3v{%|1+$uO#15h7VN%$%h2
zX`Tl4Ro}KBs&7bOtR!^wGb;?sBFfKO|Cgs~)#~%D%ta>mHiFzXw2`ml`~|xAa$Ozc
z>0&1YlYK+7k3K&=XxyKSKT@xF(5Em?&fsLXZXTR!@#B$zCm#{tsy-pH6?t`ge<ztC
z7(E$r@8u4#Vt`1k9qan$e#uXM_k<}Dg{-=D;p6t#X}a;g-MtQlLJ*8L>Y1^c&a;}#
zCm;F)RGM9Zm#^g4lR5t+&p!A$doJC_)xBwx_;2M+Rd#)3zv(2V;qW$1sN9Ma<P}n+
zeL~7C^6;5$L2zuh!>n9`&*m6UWP4ybn1n-GQ`SXd@EYV5O1OW!d$1mMTUBCQ_P`H6
zZWo3mOKf!-R`R?g8-&a3<{X>uiQMM4rz96+vBq1iD<^*5a$T)`*xu!cK|MEK{{?|*
z#V&rI=Hwp5^(<$e_h&T?c-Cy3cI(O+My_EzINNy3>D$?G>J$1el%cy%apX>dvaw5(
zfAXfRya=;vN9rT!oWt{O>DAlB_7|T%lc}#oaPKM->h^L56<~lY)EQl+V?sUKHDvd+
zI5s%u16!}1FVJz|-gFdAR;pHv_Ym3Vt(;cqgq3<dglPc|L~;z#WaZz6<&!(h83u^V
zJ1#s{3mcQlU#~thsh^i&_HWUVM=!sYbpM&kG_u}*fv?guLEQNe^)X3@xb)TI$+cYb
z7BO5tmfl`!>LlYc_A7Y0_8>?yl(i|!Z^ETLHCmxBLI#)h(7X{OPiaA06F1<1^xHCB
zCzxHlkJCe(F<A13joXSEz7g^tv;n{MzywPp6RhUNI}a1<e|`RP-)Vj;{7_H(b9pLe
z<n#E?#TSEW;u!@4Es;;_TR9MTDOqobNhN^HP8_%EI=E==`7*U;Nj7}JiL*<kBO@*8
zA43Q3n0JGEuN~fbQIuH7EbaG@N7A;vw%bE(eJUyEE9%jOd;=>qF*p|B*U8z<j-q+&
zDN%pqChF;pOWXrBNF13q)86V`VZfCrdr^+xvpW0s^pH6D*|O|(FHSGe3Dv>*>laBq
z&;gRx2><@ZTaHuel>#z?lLOdSO8=bL^h+uDl>Bne8+Ug4n#lunD+K+Pt|p%0G}G5D
zPb<lmB(4C8q^NS}R1}ZNm!Y|q(@TN4GCjxWfjJpxB0PNNk?hr)_uTT0)S@lhx7G*^
z3*wNH!@9&k^uW33lJ4o7U-0qFrvQ_KIYhpCs<f$>Z%q0Ac)&&QALlE-P)nz!mnIh;
zjh-q^&v^xA>5N6XqLHq|GUXfB^lj|NMabZzj*IH~mj3{WR8^%)HoBo3SAI3^rOd`v
zg!GiRdKqv3x%?7%t!5v>F&61~w1x+u0y8)1`4*oKkNW=tRbFzo1RVKO-8u-*5me1O
z`Z7Qppa9&%?VqQPD}u`uuNzETS)RSt<R>G1x0IM`H^M9%czldEhLp-qm^T^mioLbT
z_urFvT_))u#W=wHys)P<8FqKlVptKwbMRLYcw*a8bYZSZT-^4RkZHEMfg7Ogz?jL2
z{9T;2Givb6zfGSz&sn=+246-mE)<}AGfN}+md>;*D7ovxq@rCHM2A%gb!=pl*ir$r
zLQCZIfdu(*%!<fK=o5?}>f`~fOH19)!B^)hH^@V9p}Vpy2-S+p^`=LF-56<$Jx^+2
z%4p-F-IC~e@T}Rlvwp4dJfrvkU%8TJ$dr%eNA;7Tdt!PBlSw9d_o(YVc1K4m8|wz=
ztph#f`PmabaXpsDmp=!itd6Lqu3iPOhIFaaPF{6IzsMqyBQEHIuUpN$?(3d95Wc%Z
z#wn*`uC}U!nQK!b&3j&*L83G_98Idx4#XO-DUP*>>4WlS2lxLLo+il*zAmIk6(7v^
z-6W53uv;I9t({z|VkE4Mi*$knpv@HP5|Z01{g~_Sp=imX)s1gw%m3bQY0p%G$6$+H
z;~QDOH^l>f_*}fYI0}v>>$>;Ka5>$zyUw+fY8I{uqZ#B%p+}5Ix99kQQ~-!T{(yt!
ziyP#S80^NnmOgHzjUHGAa+jWXl_t~to?vit8akL3m>1_S_R)3v-3PC-YlG0sF)g0d
zuQ_KSA#C2J<oMz+z=A`p1ZlTli&j2prQjaG&VQe}+&y9RL0w9GH2fS9FZZ{Dtdvh6
zOQ#kCB>?{7*;Cpb6VH#9eF^|q$BsQ5OO@3Zdi%Q$pMrF>#utRHDeGnY!gjUH%_)rr
zU8t(*X!PlRobAdF!|P^6SosXIZOH2!a{kksnPcsc{U$;*wwJu`(s^8g{hn2ILOYC%
z6M}}PJyrcts|aL7XoFtvgTzYeYs2Rhofafs-Lg7+4{5;1HQkoq<bKt2gHcWsqBajy
zDW?W1t3Zxw<Qs$zX32%23{2$)#Ls=Eu6iTTo!7z?z(zhhQF1`WR!?x~v&Prt=*Jm1
zoSaX4s<B(jwFWBgzCs86c?~zDqSJ&Ao?7F1g3#*<B`pN|ILv?0RkebZCfl}eOoWn7
z|Mu5rR0{t=Th|3UB!rDoTb>Ztk->>HKP&R|k~7%c4i<YgUpsh`@yx|3BG$TOELESJ
zYTC2bWWzSEN7sP52^lnH^6c|-m+us2v*>-pjgeEPz(kitmM1hnzYmVTU?{?kF{==Y
zai*x`kvD`LYJ$=uauw@JtJI4a=OqW8x|gw&1J&2)if|l(D#%*v83AAbH8HUDOpAst
zIi41yJm6aH(*V@J*wqoWP}yfzo?AOop7rJ}c2*<`cQx)-+tfwH$2f-20K}PJI7F4j
z8D6W-mcSl;r7?d^Sli7tnCuXxxU9Uoh`k(`@AG$GjA7#Gu7sx^y<U4~eg9WLbrr3o
z*<L#!&^D`Oi}Itw6WBb>l<E6g<lOwlid5woV!`6!;ww2|wWmWZW-iAbuJ6n|zB^SX
zvJcw0wZC|zI3E~FY$vvAD#DfpaOC8N!}jI?F&~!oyW9zS=NHn5-Lr9tFXT*AL;dr|
z*#%@(0a==NbqBIPGlBVB*>VSfMU3aH?0h|@R3vaBN!E9{FMPjk&;^V|A_F>@hp-C*
z<Y`KfUW2ElLr84byGM3->R_`+C>ovS&v723bdk4`=z|ZfDWgO9vAs?6WIW@cRKU?m
zHD!bvOc!XS!Xq-DD(mk_rT$IV=i7REhcNg0ls-F^2bJ1|Rz(`umfTuU!l*rglWSLG
zosDj03n^sZ(Azw=H2CKrX{1p5@LP-feKdnOnOWT|WIt^B=hdNwNkQ{3<DmI-_o_F1
zsNv}C#$}SwpOu&P#7{QCP+jq!p4nO~nLCpy(9ze_^u;7M#9~+NyDBi=^_zby2UI*)
zyNlcmE*Gq4Ih0pBmZ;*l^<v0)M*yNn5*#A=*Ulu{PoG9>Nvc>&Nmy#<9d+?9#i??I
zxt*x<tyH)fzuDk>vX{s@PKf$fQNzqNB~8fEme~4?P1jOno!9fCcVU2!I5MY-XtMoy
zXE?iMX;IYE4Dzv`4iJ&naToF`pgY+0y^Fq^(?7B}e*DHL*OJ@;bw$8>L6+s;g3?j8
z1|`YR%(d>W?x=#9BsM$c;<J#B+smpAiv>s2v~q#}3i_4(vNN!cjg(dj-F-3EVRypH
zGiGLLMFJNjwzu~qb1(NlUAG3bQNS9~@aHJ&fAR<IG%BQ@@hW{sxj{NtYXEmatp0_Q
z_Njki=yS>S=`Qx=`Ri4qKNL5XwX?wjd-Ojef&UGCSLE_W$1ClNVdA?4F^UKNQNnWV
zsWT_LFAb2svVIT*Qk_SB>!x$?%*GG*q_U(lhO;u<3Q;>!F4Vumi(YX0Yeel4sYRQB
zY>pdx!nA<#c7O!1XD)W!$n-wYZnQo7FfXyD5Ret$d=VbMlN7C?|Ltl4cFdy0d)`Wi
z_~RmRvg$l8V!=3zZ4>!u+j^J};0v{kKf)}PHF6*fmjtd>I2Ssi;-fvScaalZDA+vF
z@SGsQ3cbPx)ekFQj_Tt!uyLUb%`=Rlc}arRJ;WVK)%8*hbLE`f^&5o0tAsk;+{*OJ
z@s@A&6xqeq<L{L6zCj8<Pd=SKs}B~T;FZ{QWnGRHp{QaEIp4;NQ%i<fT9B&&ih3*Y
z!;6~R(K&dg?kB<n9fu}Fzxge;p(j)AR}}$!T`hKkM;5uyyjJA}|G;T1&K!Q36S0II
zoydTQfx533=tC*UeW&*maX%u)o5^*A)r#$BBHxkqTk-|PA*ZD#h)Mb$bgF@<-LS+^
zStKns$Mj_VBe7c$lM>b{Lx|yQos+?gL@A5YFWFr*HOwUGo#FFO86rJ{&uz-i9X&4^
za9P=B7;;wRc5~0JM<FR~NxPE#G{v)R8tK2yU+bWg-5fShSlqzwQX3LPmF}WGZeyXB
zH&E&2HJ>`-l`j*_?pul{?gTHrRqI#{YmdCwa*O+AdtTy9FxjksETme?)JMwT^Ar0h
z<mBDw89nw()7qaW?L(7`*n9ekRsEj99*hg|<IBKF7gfU#k$emmXEL>v8eFOMj5ud+
zozH^QHgEF{1>4_VgG5zoog%1FwrXq;K5q{kUmwV*_7m(2>cy(b?(g8kXuW4k2d0vu
zM;QC-eOgtv)J_7x5g&WEHQ$+v|1X<RWc)>Ik>`ht0(G@UT^$Y@poLrsfg`1v(6JQ*
zmSFO4ozPt2<z8|QFCVWe9vYM@zO*GEYccavT>EE_DDlnD^^+wNTxt!K=OaDis8FSF
z-QKQ$%Quut^;;(!ZIk+5`2eQLa6c5Qyf{yjs+*wd?M~C#MBPdKQqo;=$sH{wR9ADW
zk1u3)m*vc{J1^zb)3Es($$N#)_>G?9AAAF0WARKPA->iJLY_f+dIwUFtz$Y|JON|P
z&z0mXoKeSHi0`uq*@hyrf#c`SxuoQrk%QLHXma<W)Qe|bx&eq-hJ_8b)y<^c^3UeB
zE_;7Zqz*dNlTz~_@`(ChK{q^^ARvJ?YOuMAy~=G4vPl){8tzc}#!Hy{^=m!ju6Lae
z<h{?N>HEYr8Es*yi;3E`tu-x05)4Z(!cMb8$(O~;LU@m|H<f8#Ux~VoPRd=>_(r4Z
z2QJ7r0^^K1^NBK>&+s8nAJc&<8zuhT1+{tA8V=QVlZNGT3-f$}3u5H2Mce%T*WA2q
zJtb5rQ7zbCl&_OE>(txO*2TmW`zUC1<{(Q3&6kVX+_{5|<53Bl0VqdH9h|Pk2DN+?
zge-b4RRF3E4}}f$ITgKZac+a=ik_3(IbG+!Pf!~1%5S&)x;h(LU!3eL3+AG1MR;yA
zLaduVo+eD1b#($a2fQXpCv+K+SD`ZpO;WEB9&S4_J)jm7tb;5fJ}ArgN{*=~vEi|-
za=}B??~@uXe-m_R?D5BTps<AO)nUmtzogu12TmE%pBplcNKm(m`!Z{&?9MjXbZUa!
z-IC9u-x0<MI^^T9<n4>u>w4EV;hP`a&4x$Yi~`d_mM0$CnK2XQO(BaQE9K_6pQ_>j
zju29EwXWrHw$=RkW7?II%c6#j6t@hspwYc-q{$y26SN#^I9KXWua|DyDpY|Z@qD|r
zb1;zot4O4D+#Y8dWj9T(*)7EEhpHD=GB*_FS+UZUN_}>Vjxv7+!?3ZsR<Dq;X9=X-
zT#>&|L)<`KRgP%SEx)KD$IV|lKhR_KvpRVj-=bJQDfNnXpHwQ$=jnu1yf7=RnKe!;
zDN!iZ#Z3V|>m67UTT8l#!K)(`dvef${ib?x(03hbydK6!Nhc(^;x{Q?xKbu(JEX#_
z2ZUX&1I)Q8IHEI}wi3;PR;TR?{xt~gDfG>^X$mPa`vfBo1S{=CzW<<lkA{L<6r~V7
z;o;LI-(3oyqING#u-Cz8qnkiywoDpW^Q!DEZ8M~yYn5TAmm*uM_fK7gG?G>6${$XM
z8(sI{Wa|m7g!ZJN(wxWG{7Dl-LKn+Lr#$GGAvsnF)AU98$sk4j?32Om)y5pkkBz=F
z%05eR<uno|M#WYUU5isXv&VCTNqgMI%pF`5EvMc0P3n9BJ}R3`wX&1$+t0139jSg;
zw$>5&=1tDp4Mhi;KXRV;9RmKbQ|J3+f8<JAewUhg{U^Imwikk4gVlNOc`0lz;ElD%
zIettz<Q|@eIjXX8?T&cr(bk%I!szL=TE_KcPT8xX0@q}h3-1uIRFa^SnCF|M<7JE8
zSM?m7lIL^u<aofhRxj``x<w$Tx*b-MAXS;f{Y*#Pe-$Ba|BXqZC*<rl?kmGv1M~1a
zIcZ<ScF%)d+ejR+3Qs2-|7<UOkXi_BchB2^cY_B#A;0&9AOI>*U<XfLuCM@m_e$Bw
zh{yo_%*K3C2Z*_qk!+vckH+4P9Aw?IONBPnY#S=E>+KvTP6Rf#SF|jO*5AwMO~a`i
zMdWDZ05(<b5VT+li?E48YAh%ES&!XsrJlv8*!5({f3{yq0>h}fx4f&E5upjvgs?nf
zNp`l5I-T%7EKwn}!ZZ#A*g5Bt4@MQl3Un5c-Yl6v4UC?DB1Z8c$R&yI2iWx=N}8wt
zlVgX3QNXgxt$*J*(Z`Q^O{E>Bh0jqiY42W;0eYS4NwWd$sIb|#Quz|IdV#!$v$a}{
ziG8q4Wd`v`@%xI)gV1vekDyUJ^cQc8;=Gwfk7o80D*l)em~pHiqHge(s6(C$CFr4U
z$LAEe5tJSDwU`vBSYi2@mT6c;vp?qdjlcc4*D^Hk*3d$bFS`7NnZvceu&^gNX_BMO
zkN5s#lRdPU>Z1p>k;L{Cz<p3+)K>B|M~<0)<-3ocBe*x|xraN9lzz#L@ZhL?z+t*$
zKU{<>(<`_#Qyn2c_P*@BvU2&Iy6UVDp{ou_a5LsWLzB(4_dd1GIj!pkGZNTq<bmrk
z1Y&~tFu(7`Zzf$}X}{0HSm4NSCK`z1h_s#cP8O?AQdf!2O>{<e4pC${f$%N;gR%`7
zycwiE8K$5quktM0P*phI9y(hJs9+-o@1A!A+SXz+tTrki_kD_By|!n)M;lk)&w%>q
z_xVB_hqX6kUNC3=s^}S(s^fYegqprLTN~k-7!mL{eXIX(!~<Bc%$<b8$qci30aKI7
zvAP9{>%Z^b+f?(mey~(TKy~T&Xt%X#$S&2Abo1v8fab%?*S>QHO@dx%ejfbPoz-E>
zB+do&q<gFL*pH^C=ze2)KeSk>xv!*&Kk>)eU<K<E9?{myKahS|xxN7%XRaCenR{dN
z{+ss{7InkmC{$z8Zt`RHIAwQg+H&jeAH{c{9aozC8RpDt9GPLdDPa8{4d|!*?DO81
z`U+;=USGn^bt%YgI%7G+uegC$1l+9S)*XZU0-j|O54=*7oI=X4NrqKOq1+TiNW0ge
z#JdmQe$A|9UCJz7XB9$6H}wV;mKsjPXgT*$&)V08pHqOOV4L}bgsxtDyYI<qV7dpZ
zg*Zxf{`@>0v~aO1wP(x5!=)ZN6*f?;+n`YewJOy(ks^diy`tEtMMK<3TV~P=T-L^<
za{0yH5oD6d0n>l49J$%ZvsxiKlnti-+Edmm($Ms(w8$2Ib1=rXAdhe=uA0_LVqIO|
zGhXVaPO0OFZOjq+t;e#eZa>P{zyI;GcD&*7?<7s7FR`fE^9+xm@<&$LLs4PO3r_cM
z04sF^1DdplQeIK))bVM6o2JK#S(=sowkwIzHJ=&tqa#Yb-8}cHy#?xJt9bZen17*6
z{M;_|t35BZ{OZG$>X;9C^!D%LVc%<A7w)xe%NEz#inel))Z$;|e-X0*I5eMx49ipT
z4_kErd+o$OD#Y)_xF%Z*EwkH=ZksYemTrnQuDq3aSEu3Zh)$Ipt_^m}6J6!lY{kgw
zs3PO%kN#`4LQ={bV9Gs1BoIiRR`q$V!+z53dyWc~Z};^YHbV5eWFjpWRIQ5X&6@Dk
z5YW6B>72o$GcGWuOXfs3Sn(d1_me&)w>^Ka%aUw-nj|V%as5rq2RChz?nUji=v3bn
z`bF8{1hR-fhYsXrb@3qH+{!Qx6*BN;dUKO`=m4E3x=Dd>NT)!dib>M>ye=^LYQtWy
zUi9trE|<ZwT-V#7OafR=;0@^4Wik9@%0)l=$8t6YP#Zb+pfZmeVvM-heH;Oyo7TqK
z6qxRnzU4>7Gz-E8d=|iGs*`j+;Bg5JMNa1KfUY^mmPN1g$RsI>AM{I50H3vW<$h+R
z^4#TxwpC5Jr>H;EfurYSyaBgdDTwFbo4@Qzz}yR_{w9Z)Iqo?}4V8Op@+kJhFT}s;
z6lYHfL53pn5i7yXJf3d~&bc6T=#jHQ(OV&7t}<=^g;ms|rIPBHlm<b$2<2AI@8_)~
zpgYgK<yO>mYW43GSa0Oxx?-<U<#sQtDT`!Bh^8-iqpbS&OHzAKj)ErIF{g4>X>=UP
zv)b#_LS=B)<h_$ll9B}GA9a`M_NNr`3^g@t_;5PNBl@p$kO?E%bM6IO(;?!+drgIn
z;;YlI)}G@-a{B_6><VHC>R+WyLV2FAj_B5D;gll@@99q0A4hcgfZKyH7d0d+PZ-Kj
zK-+UaBIt69?(`E3N&mun>7<Ho4<ur2Kj^smnzgu`!Qy-`;qm|r%5uyu;4)llUwNMG
z9TFvAP-w6WpKcTv9CKFq?K>y*M7Tnt!Xoh|eCEkLubl6Rw6DbgoLX%@e?25H6w_mq
z&$}jM^L@vZp@B=q1QnXt)mYqgt%vn(WP<G?#%2-((t&8y$+*BcPwZx=?5DleB@J-K
zW}O#JPuk=KOBq9Db!LQ@FQ)BfEO#k`s8Q2Pzi2Vm*I50>Hu6~r^zw*UZt}&h|ID2;
zT?GJLoOS89FHEwvLqAJl*=ce)slT|Lc`Mh!Hi8jX*~BjhME2>wZUd5L_O?W^0K3sW
z5F%lEl<Ms5SG${RmW%Sa4R5}{ocHcHP~pbjyBhL}o}^P~Pl~PIh+?4PUUif77#@>0
zOVJ8AQY6ce?@2y=W3c7_d*X+3niOScqqm~Oi@C-Zmz|Bo#BHAC&960Jx=z_!H*-jh
zoQleJQH<2^?;EMh9-}=Gy9)OCKix{ic{YPrsyNf1_by8Lv_fvLYKzC;fqKdwMa}l!
zkJoS=Dj^5B9u@N7?zhCna(a+?;NP@xjw`a8tvqKi*O0B@KsDa#i+dNlh+A;Yh*U?|
z%#REApbwCitCP&^%VXk>U02>6Li4zaBeHlBbZtkVMM=W=L&M`sm%*UKtScTkxHh?9
z4wjJ7rNeo;UN|%fxOowDbt!Oxy;>G%A*IyKTh~+?p~s#Co6U#yy&B<s*yoD;XD}a#
zt!h=JML&7$^*YidRAN2ai&@QLit!9@9q@x0U<D6x8!Gp;SgM(if{ciw!A7zTAdO6r
z5{|SZ`q$m3#e8~#@QWyqm4V)Vr$o!hs>i1Ax!gB5W&_je9Zl@<)O{_16dmYQ+-xm!
zEk`Kki%wTX)N4U+9vAJM!xN(#akuBIq5copu;2ngshcqMOb@l);=S`=v5E2)o=?2u
zJMfX({kdbfrkVSeNUz=Rz)7ZC<|@n|{5iQ5AF{2@8o&ZIk4khLT}L5wfmI4cC}yYu
zt{e`ZxXhr+70KC<+O9QxPseMc<I@Uta41m24+koV#`~@nVHG#I^A&{AN-lI;HfN*O
zm;wVCz|t~*BOE63eNeGq^*R<5NlW2!@9Je17HI-q`gi7+MHw9F9a=7GBMA9&{X5%Z
zg?dif+CCZY{^!9l9h8d`$>|y%dGMx31eC-G*pN!vwedp-L%7W&ExdzxU0&)_Ctp$L
z)}rmW>p7vZtSR@nqwLyn-$=@+a)y=mU)sAR$>(m=XJ2aM+e~9B-p#>lb8B3=|HkUD
z+y0(NaZ6qW4%h0^In5NfEH!{dDy<ztW86TOYptO*uDmWE-<nSb_oi>P3NMR5r6ADc
zpD{#TUh3J0yIC%kHOWzTSA76@HC{6XGZ?=oXr10dxjP)Amb7Yi=Pxy?!;8TuC!woQ
zHw&D(NwM_Q`&O!13k|3scbG{Xk_<`aDi+@RZ>`jKKO$B#hfNVhU9#<1W7xFn;a}$y
zI^b%YzoE#j;Ud2y3v?c-g%p74p1jH-QVfdLj~;sYEYNe;E}W#t%5@i99<Ck4a#D0s
zb>s9xueV49P$*Zd-m;}+ilhiSKbF2&+_skXG_LL9VhP|O{QOdFT47DyxAV9+ZJy*1
z@I6}n1D+CkBRirFBzdRFw*;Mh61ny9U!E|Bg-Mxj53X~}R0N{_U(ct=ip6MopD*t%
zp`ig0jL=NvT5h=OBZK)c7yiTVM{7Azg+kQ%XObU3$F7_*E8N8GlrVfb{jS&^#B5Qa
zT>W4+_d8(esjb9ic(VnJFFqOLJa?>xn^3TB@l8!<2f}88?l{kq%W(?-NH<3XnJ3ja
zyt`@gvd4Fw_|4Y8v$<^?6-MY`9?)}epYkf{$ew@Z5&U^703mX&X!BJ;8CN2Yz6Sdx
zV@-~eF@Jnstc)4nZfVfIQC%U%UZ0Lh>Jerw(RC~N8FzSPTsBJ=l)oqzO_Kz_uql{_
zgVtIuiFBvdmwjf>418`wjn}JehVfj#fdwTO6mj^z^WDtt51Vi<>LZ<l?9Z^S#k5Z+
zGt@zgDyc2QQWTyl%v-g5X@`7up7JZdI>Xu0w!7eX4@ro+SMP5&GbQ31T9lZs9RKqk
z#DT2DK4?>}s0?e1pHFDSoH2n$UOi*_uO_1W43}|=;|OR{9%Qy|Z&ZiK<~c@X8wpui
z8US__$W{5<{Qynj7=pmUQ(NlUQ#tMzsZmCdr+HM+uTZ@Ze>xaBgb&Jy8?^uD1hWJO
zRf<m$cDLgcUhrZ+U7ADn6tK`()Df5b&UNn1*7_Dl`5g+2j!SXw@kYXUi$MHm*FPj*
zT*(ob+cO~G2SJoOWwW&!xUMpJ(FT+7g$_W5u0K*}pI9MD&*3G=_s1#A>huF1M`nyw
z1k(_a^|JX$?$f=1y#lnnx7;Q8el(sh8Cl?(qr5f{BdB$YYf;+StiTU(Knv^tllusB
zpds2+I^=2m`eBw`Vhz!)V`JUx&<Q{I;IHNUG_Y3+_&Tk?Z_lS>;#qX$dr0AP6hC?N
z>dV>;KKUEMxczGIlRATe#f*yCZ_DMTau(SM7Z1qOyLVx15ix)AjS$W1h=k(TU$!*^
z5jX6e4J_y)+|bgEXTYa;j3ZRutq(b4%C6w9uzM}1h0?!OQ`7fG!*uWf3<Fq|bLUwq
zN#tWIudG|%3AYlvOPqY4{u;8-(49LfX4{7+&22WOy@<MBIlG#HIQZ75wEE64$C?w@
zO1cYu)um4|od|_jOU*vTMUdaK3Pi2jNv}F~mPv)zx0;Q&Jih$xFw^UYIyt^WdPE9N
z4VbztV%U<2d#s12A*#Y8#}U$_DV<`rdRGWEHO>?>@3RW)m`IA1TYWP^Vns3iUJH-C
zf&0ce>}p&s)?v=u)k3a+#BgRiO*F86=&S%xOk#@ZF_Nc_i9g7S9yP!E?t<ZK3eW0I
zZuUBv?FosL9wzl10~`l%eMlmNqfj@Aq7ZBwj5+QT&Z8%(*h=Mj-E-9jdA{T9VHbye
z7Yb#=L#&mw-TVfbvHCv`kIZ`hUj21ggaQiSU+6qTtfeEb`pUCN+g6pSjl2OXUw-hy
z3bjC4kuAoeX-%h9dF}Z3nJc3en1RD~E!oQ8mO3{_s*lP)aGla~uD`nO=c1ky1aeU;
zRF1Imms7%yR1_AY=i7<sUXp9eOs^)7yPb>kb2gO`h8aZj2kRZ-`#lnr7KUikKPynz
zL~?A4MZB-TpHAqkV00?dHM+b9WzhrLzBp+GVo0bd#VoTt1;<TJNyx$pJ9ISbYSN5w
z(t7Tba_<tLRIi&X4(&3(A#nO>=N>fW-iDj9>ZEF95v=#?N+c(mBge9)=`^DlK1m9D
z%X@Pwor2>6-hB7)L1oyMXX<Y^$A=$(0Qc5K53}hwG?vVfNWE!(tOHg1+B;hL!4fd+
zm##>W=(hMUaZh6zDTlR2^y%VlAwO_vQr0pvuGK38OH<DP$y_pacb9=^khZL)eHHu4
zz|^zqyh6SgbORu)<Fyi92DKYLFqw%$Fx~NETBXY1ECPbs!W%MFI2=FIE5u%yQ#kZ5
zog#7mBL9+d@C_IODF|&UWu!t4vuWgbwT_vb@2kqp(WW4G-IjklD%RK+=vq+&cd`z$
z9QeVDVw?FcG?`;51cy|u?`7-LT6Km((;>rMR;Ae&EX3e_LSwdBE7}&=-F0uF0grVC
zI_E9yy<^8i3i_ECny&<p+$BO?vnW6QB}klSfkhQ;C@qwgT6T^=gV#&Op^gv<F4@bj
z1@l3QZ`=6<>OSI`!y@VCVcC&R_l9z8e2rz~KKkZ8C;D%ms=fZC+c&D(Ux=L7iXSUq
zaMFb$KK>>>{t;sMJfJ~4qqFQ#Yq2WZMNc^XZH1;>>}nSZ7#r&`$7V2;4C@kgk`*qD
zf;-X~C^_N(qxg+OJpk@6{zu_F(DmU3&{xdY+-a2L!(sBLV&#334j1=aIkkTpEnAZ)
zeA)vU2Q|<$^4@G)rp7-Pp@s$oGhPODn39v9g^#~!`dYGZuL2QweDvx(T6vK|IR=Y-
z2Ujk?uWbV3q7}^KtfUqD6A9@RdE60ReEOf_K%Yc&Ci}gzufFWTh2x1d+^gD!Gk-e2
z@~iTiL7N33=99fq3hzO3;0=t<qrD~(*fWqe?!kzw>ZFzrIHFk#M(d-;EM;SaR{s6j
z^W9X4Aeqb_yO;3^lP{_PV~`w95?AF-P%8WNDX>d({N-c}u|v}wHbyGZ$+M_26h$+^
zn(gS;6>~&qdwD>TAd6i~*IS5Mb`%|Yzr=caaJ3Zow&gb4O!&K%K$2HQ->IXox**fL
zMUfpz_0+y3x{|^VbDj0mW3s4!tPJAU+mpam%Aw4V-+i84)jcYueUmR_X)G}uVri5&
z<thvZ@h{!6LB=7RcUAKoAvob^le8k3mbEQ@v6-FQ%<Nuc`9xW;42b>sOG*t`#X%=_
z=ztngY8MrC#R5z;OX10E>eYDzcguvI5&IM&b!Ys*8_V6X-1Cf3I^fc25%nw$KJ}9o
zkc%8=;*vuL5m^Q~K2lx{=Ua7_WI+m{?{il5mAUg2N#zu{Hd%c4hAqH~@Na}~bN4dh
zAA$<u-7aQmj!~hsE`OYM;-uwZWZ7&&)cvmj98xrg@YJ@<N;9e=Oe>8}p~aET6zUB#
zhMdeAV+BBZyqr+Q=@QMC%w7O)a?8<YH$)28^GSYrF1x9cxo_!eJVGko4DMAo2WL9u
z|5w5DX|AtL6Y2HhhsC5D?pjM&KsNF~8tWt$uXXn7eSxV@o}hf|A*?(6Q0G0qQENPF
z5AJ-H6U*=VE%N7*?9yV#5y877$Tcl7yZaybnWhn})5-Uxi29f7cJMx0Op<tX6bLB}
zfBZlu>e!xl%oghzWPXhqru<d!*R$BY8pa3T%Wb>S%Wr3V>qJA#u>pT-r?!%8e8oOZ
zd%kPr`D>uZ`P<=~Z!I?ZF}f;tHBs21DFHr-UNYR0FH5YtKl^!D&*?kPhtzKW7uqGq
zJ~9Amv=OMm`su1oK7DH8Fd0*V6wd&jSj8}_iETb%g_QD#6l3a3{N~|(>*{sFP#dND
z-ujcim6FKm$9mdN-}O*s-MZmOvAUU%CG*<&v?jjV_{*bownK4mvqDir%kJ$76vIfw
z5%(uv1d<`7LgSP^^*=*jqmzlKis3^<Eo561HO!f$)g`>V7$oV<1nHGZ)xtflHCO@A
z1lfRHs#>lQrP*1hxE?5Uop23F7rkO^STo737c*pXa}lY`T(0an%WQfy`{`-6b{_t5
zJR|yAdN9vx3wfq@?*sT1zp!kNMEraasf+z9^OJJ2R2MM7q=Gf!^aXRXorM8G_C>l1
z5}#dVW^Y-p+HHipZq9A!nyq>-25LXi^Ba_Wvn>A*crCm~Dy#e%!b7jZVqiHTQ~?NX
zLF@iE`xNGy*q*DN<~QVZ$<R{zkD=s2Wk&uZGW>0=A1yQWAVDj%ADW<rq&8vb*4Mnb
z0uGxKHE4|A{?>P0{?LcmB1UNFrFod@;=YdW_SbGP>HiG!J(e=z_IWG>J<x!?y+I|b
zcE3$|s4O}$)$V*&!t8$R6ElEX(42J2ol!%PWaz-xn8MTT8wBdhf{C^yo;%9ygxy<}
z(~9NP61@}7k|Q;i&=A2}8opF-8!o?w__1&^b^hs)jCf|44d=ghDcmMAG4JxA^7}oO
z)fI<Wg0zMNEu`con=bGb0Kdh0Y|PS=fefkmklDnn(HX`nJT6Ps?B5zUP#}nQI&w{N
zxQ$5vyn5XIsiKJrRX4%l{t6d7ixA35vYox1>);-&CW`&433&1O<G0m{<%55tPO;~~
zW-BMhW&|ldGpID=bhG|StlREKnN1&b+>@z^8udmvCsQG}dxHyWCu>k*%Ou<zj=K0l
z_}0Z7MZi<xqbqQ=<55hwDW4<#UAb<TvBEiWW&G>)W-`JkPt@k|R3ixvrk?*$PGFfO
z7k8+!LYpvS>|&#_C+xAvUVTBpxL5MkZHT5>Az3jzKcLA7alTTiD=GF*HWO<p(WSuq
z{I3$8D+bB4@7=>>5|#hTPEVUDM2ZV@r>voml!m<>=(JJP%?6mTWBbx1WBRYln;wUf
zCxTeZVn+(_zjP8m&^(*Rks{`{3d7-(zb(CWJf=b8_p?Q6Zp>mql_xb$gCGguTD=A}
zp5&*+)c*~T1K-f;ywtS{sA=xNC?my0Y`N8_yD&U;%OCYO8XGp|Ljpn=ac1}q%^Kdl
z<`q|25KOK-A21ylPMiZ)(auT%^-9u_0K@^zV$iFh6<e3k<21Kiq1(~D#!*Lz4e@a2
zU7IJAhnbsAK)unwP`0z9g)d;O69XTjDtPLowf)oJn9jzf-OCA8^oz+huf8<BEedLj
zuh4)zLj2M}`pf|fUXV@ZiJA1JD7ORkSA_S@x5gZ$c}>OSsFYa#s8Eor0}tB!74+-`
z!L#Nk%vKCsm+Z4su(tbm;@Gnxi+Vb_<468R;06--2oZ{5`m02$m*P|OYPyd%E4YSJ
ztOL$7E|(2h8Rw+uQR*+-e3Haw?mJ2|)6_HH&UID4*fP73WHT;I1Nk`l<o^1_Sp6*!
zyt}xZY4dZB&44)%(&I#f<g{^-+KAcc*qsn6_7<t8&H-34*SmS_^4SVp2F}Lg`is61
zf*j|Iq%*r$R{yDPYsQt!^DtTn)KUv&7v@37ebbTb6=R4LR^f-)6>4R)APEhxNfAi5
zQN`EiiK3Q13KZO5DfYH}gRJtA_MWLC`A30jlT#=F%xa(|3lXw)-?zEOB&#^(TsN4^
zu{GHy>`CPq1>Chz_>t8j(B)^*Q?Pnt$-{iGu?pQ&xpucsh;52ITEamegAWly$&HxO
za^XM1)TIL06L@Gi<IR0Fkv|is&{Q><oSP`}4A(a1FRrH#yYv)Cc_=L`{|)<Q2b@Wb
z?V`DmX5cOML{eAy)8p&w_*|!{xR*Ra7=g}BIPZTAy;9IZ?`p%(t`2k@1chJ%7k3)9
z1<FuP$!eMsToyvmvj;cf>vHe5Y$#tjWKlkW|0n)c&UvF!&xd794@>jS<U4}T&!M4t
zj1!d$qGkGd;WKd3GMnT6?={uEfP3=3ZdaE<S8LQ4l~)I%<pxkYOO7muK*cC{k>}1^
zxLUq)z?s<Se*1ES{nPv6x4P$#n3k^IiKhpxt^k<LxgQ31R>ar8$nP8AKYDaCyy0eL
z%+=dlZ{fVyN87e1#=g6^IV?HXItE_B47T^KXX?cXLq^`d-1ta$R=Q;ZYZB=#SB%F}
zTA0_wmeuDe|G-n?dC&@eff2F317(<OTY1>F)aJLSBd`U=BHyL+v)mnSp5@vue@@BW
z+p}xxyqpTkDP2;VxewV`=HKu(hX{e}E{a_j&*aw*c_AamNQJ!}E=W9Nh};B=Y>ebL
zjRe4!d;;|$AMC~tc{Y)5pO0ksj??`DKV4=6qrd38%CETxo%i`R@jdVKZ;zbPt_33>
zb}#g7{H3B0zOLL%2KNV&L{E=*1u9Wi+9r-wQ+;1va9oQuF52@T-W17x!ZJO&5J?=d
z92BknD}Vbsez`OF)6IFZwBMLN@exzgDkLHFvE=+c5YK-HJ{_h#bk4p=rxQwx-5y<9
z5kp2_1f_ouZhux1MGZ1Q{Mq}f*%IvbASk%}Gv%f^jJ*Bh<*|ki$&ixgx4!GDgaopJ
z8ks*xM7aTfo-ttC8#QzA9nQaf#tON(Y13u9?Gnu<3(1I<5k~krtT+nXqL7E@*b4ew
zA(~@xLO;ud!!FehhHaD|Q!PkALAwfRM`7aGLkDr<Hj*XctLwn^my`V@YT#Z^{;RYP
zu5`Tk2LN3y?%KpIN61)ulV<w!l>aRtn9;`DJuZok>P~gO`#OsZ!Q}J86L9di;Q8jC
z>^|&T_|>#H!(7+vbS%L&(RpdHuW}U-colVa>y@0^bzCwG{{CnEAp7zUHY35LNp;o}
ztluwUPt$Fm`-vKmycuB#AM5v~Tc<xev7D}%-aWn2SN;}Y(LLtj?pBm2&+&rZjhkci
zjgKEo2jo2V6SU<7c|aym82J{{R$*6pkPwxk;=G~?74G@Fh7A%O`o<wU2x&o|$c(-p
zd=#v>Yk3XxvuUITq1=pD6Ml&#Z!8{40PjDyNh^&Z=%7Wh)lGM2Ma`k-s#cA(L61=E
zph9V&syZE7Ng!Saw9e`syGK1+>sE1boBQYXCi)u4W~w=Cz}~jUE1|1Y-gyG|9!A!s
z@Vn9aP}ImTHrSZu%%@DsZJY>jYZ#J^=buc|Zk#aX`0rguAI9zC-%Wz)*6j<RszSJu
zs<A?8&{xda&)CoaOWV<i3%2w-lko~I)~kTa<EYD>fdimZMba9guC^ri$DXr1AI;1{
z*|9k8=?YZ%!VRa51lhXRMG-2M-S#&s#rLhRwjwwwZn3Ou-ERmI3jaB>V%`9}ELIK@
z4H1?3P5#mDJlGRDyES^=9y=Gt97M{*Qw47w$KHIjsdFUjcu=p>;<%^QmG_?m3`F>)
zS@WUae73#%e~UW1%_Acua-f$|aXt4P#k-EV_J5x`ig0Pr=E(Aakk`sl70sE%F8_|;
z9NnWUi%(W7Di6<oL6@I)L~k)86n|_e5grCH1H0`~>7UMa1$Xz86t)zGyni@6Ty{ch
zqW^2U28zZ~bN6ER;Uk6pBsxh-<*VCg^uPj_0CC@oL;^E{Ww`N^+fDWTRwjigV)0T%
zybs^CHjJ6DJ}l6dF6ZwF_Pup=>}k+-{7{SXJUkLfvEvCtf@;)AFs*;pW{Q_I!@nIz
zqWJljw$q}xX*CAlYLrR5ZOWQ)qS^g8C3w4m<zV6rx?Qg_a}1AqdkvUe#@azSMwU`c
zIIwB`VB?DBPSWmttiX-fbe)r9LmpN8GUrzQg@MZ``*@LtuOB4#Jj?tz>R5jGMi^2!
z6jDL%6=P-t*Lm;LLFhIU^rI?RECv)LY*?+^^r50!Xg$gAxYm6sh_oUAncnodM>(RZ
zgJbR9GRzX`)-_iy*2(*f({(h|%}`j9-0Ji!OOF)ZLwILCi-opbd?x0(*h8&)>;i(b
zsZhWCljg{Ycye2=i97TbbcddA=FU3mdNdti)Sw4bl<jX)f$PTDS_OQG6s)PsYsMWI
z{hm9lO{LRks5aQOD)-_8UBy)AFr<LVj~9}B#8cfA%5<iPel(lyb`k6<#Ks=*;%Mf-
z`uQb8WI4j9gLhS~=;0yCWtK@Q>Nlrv4^8L(&8M^`75I%o3p=gb#QJTtj{bBXo$S~b
zQnJka-;kzZ34ndUQg_$DPpM~|&j}A(WVIzS>;jgkMB+Ln&a=IY<1H6Bdyq=Ku#pdC
zJ{9eKh0eSr5QnI^hCqyOj{RL&XI-$XdKDF(;^^<^*!g9Xy`6Yp?jQ%SY7Xg2Z*Rvv
zQ9T>at@N)I<ud4;^K!{-O4bwJ_)>f)@W3;!e@>|DG>@AgJz0HQ6Q4SoL1R%_hmwvz
z@fjZDY|Q#DiSQ8IEQjl!dce#e+Gc}Xa;t8*4BmdTlaHNl4IAE^>FW(((#(NEgF^n9
zNX~q(wQqZ8!-ntojpeYFrvO;5yTM1Ar``j**6P9;D{r?$V=wrWe&``$v5#Mvh}<>7
zrW3}oG`QQ1V3*&dkOMvYj%C9=v{ekjUBUk$?yj=6iSSEO3)`!GslJVJ_)P-4<@{39
ze`wg?5X*PWtbIO7mf0+oB`yx5X65kjqk`yO>CM>~Jt!@~g#luzw0r*h2&wy;^JHCn
z@*NdWcD@z*s;(weTmuGa9I1T(Ts{##ndc@?xgZ^W*EjnYL8(6CzX-DkWW~2tm{5XQ
zkqd%aywVTT8QVGJl{AUEiItGfs(r1Oc5VADuZb`ddQ8LWq$yw3%sEMcV_dr0FuR}W
zrFMek6y@KBQSXJj+i21MX<uex7*#8iqgF3)qym-vs0X-m06}yv==dy+YWbz}Txyxo
z2fT9fyd?}P0)|xG{kQiBN(&@3ENMHU-N?f{vmTiWsHi>g2HI!#Am;yAIuCC)|M!g-
zRaHe%6g6tA)fz#?s=cc<YQ*k`R%lC%m{qM=d(~F6iioPHh*h;)v4vPgB(e7%zvp|-
z?;ps?NuKk5?)QCN*Xv4S{I$saJnAop%#f>0!hSA$jyzF~$UJM!pcAXr+XzOk*>w>+
ze<TYW_hI`u#5=B${{@zSTgd}f?6X#UpsJUgC91?dUayYT$_=gO8FRwlqt++9$-K42
zwIwaPvO3#gLYa*J9*s-AP%u%(o`R2h8&eyl8I;3)7vg-xSFP2I@L)6BB`|k?yU9kY
zgPi1&Z4V>wxz<wE@@{~r@qZaf>^4~W?44y@sAAK7C$2dq1r=oK=@%wt;n0UB(zMEK
zQx8z0ZQ~<ZSCSEKIGZ}{N+F1?>{^>&CSqncO#m_>`noNj%#h!J`i;_Fiwnjx<!ocp
zIJkyj!tb0$b~I}AtcruGb@QW8@re61;!yb!`H|{BMAqN65=gEY*ja-v+ydIQJ1YW>
zROwwT^Yi&-@*~5_^OUb9yc{%y9xUZ?UEn}_^)ghs{#x3nRZ%k<6<%ZFLTcKRe=|&X
zSf+wABobqYx0f-NU<F_k4G2SP>c|55$*<{B>mq)Rjd~48v(v}IfhekZC8)VWL4|iB
zq8xSkN9UtbT?|45$FP%KTMZK%-cR60hKdc&gwXssOe<KEhF;=<0rRY2JL+lhtvTNX
z!%u$(qAWv>w!DKV{&rUB6mnj-=9u{<NViiGA5#5Tv{ybBt<c{LT)BHpqh3B;5{@YT
z@zMJ`YTqGweX)eVfq&Ee_Lla9%v&7nsfhEl7xRGp9$A_XG=bu723cp?;!BN=e|`Sf
zWn1o1(AUwl?dX={jaNqfm?}WVzgmH;8CZGdw6Yu3Q|I%#7CnbputxfnbffjJJ<bi2
zbEd=26?^o;jA6YyqzbJM2e?;%U=~n*me}e*n>65}h3f-;GInUXL%#sh6kPrhd>@pN
zEcLc56_84`*Ge&|2o<Lsk^x0fo~v_;?pR)xI55wChl(FW?dT<SKj*1^+1SUWjb=}d
z$%dvW_9S%+K!j{c-M=M!OC|2<*>B>$hNjWRJfCpBFN@V6nwho<%Z&0)eSPc!k%5*P
zfo{kMJQ<VPQ=JUgYhWh*2ae*t?%S@Dw}avJjWK|Xqz|mCFTt(J$CNoeE)OBjZfoOW
zVS(JK^vp`_EPao@(r~w~8PaT_73GDsj-E}DPOWBMnCn4}heDIkWp3&)3#&$fLmJM|
zuV-(pY}nJyj5zr+<xiw=>dV2&Es+I8XRWj%mH1c%s7y>0X-sAk?AY-^d*}pBl2HOZ
zQ)ElfppT#Cld+-TBK{Npp1T>Ka761`QwAG$w``x)Y;;WhFe?OA$|HZPWA|o!$2oKM
zf;(pz!b|NS_XO8>{Axk1*J)GG?fTVxyt5EqZ19D#74Cfz43^JMS@@}%Tw>ETV6p$a
zb@%JnV6!;<TLEmPOR?U>JL7YmSa1%K6~XKGO&6Yk`}6u4^cz=84;O#fjWxNx2&o~P
zOruC)bgIiUbQUH9iL^CWt@f}u#ouey$W*kc@V*)-%iGcK22Cc;1XJQJ^e0ld=hO7W
z^DEWZ2ud(xjm+x_{2GEqQXCMvqOBAR=fQ$sp_cMsGk7@t%|+%ad~<5w0(UzE(^o_r
zz`#X~ews(V23Qsly6{rb`SF^RZOqmZ*j1e;3WLs5cen$ejfh`qi!9UIJ)*Kjo-Z!e
zv(8d%{Y_LpKl(-t|GIWqXgjWO%b4QU{5}3cW%%IL^3Rf;RN&at%3^e)bUM5J#j+LG
z`T1tj3&km?!C(G&+1LG-5?9NPZY{K)ZIQ=>=~sS)T=pMu=UTd+OX^O()@EM~zDXCF
zK$i;2*pQEZ%k;xpjM75&_Xb;zT-0S_thuBUIHET+|K{opTd#p=%{N_8xQ&~24$@cc
zw!HIVZ~gL6zdIHgziFj*gmPP(!OA`WfRig;DobIeI2lNIwFoqg6pQL^>W<KfS>~%m
zc<Q3P3!Zjt96f;NkcBC3B}lp?g0Tdn?ht=8vn1Ja_|EwHPBKE$`B{F!&^{9?20=c~
zM?OpGKDeSRoMC*8k7X?4>PZZSQW=@t=fb$7>ZCkW%DGhEpp@><xbw5b!^5v|RRGPi
zB)=2<MO@P5b)4K{?=@@q^QDLAYv?Psqs{s}zTskhze|YiIzudhp%Xf#jp09gp0S~S
zsNJhE%RKl>)bfA}+KlY~W*DW$_W#nUUIR4xdN;1IQwlC2E(=YFc$OmWs~aq4{QRi|
z??j@)TsXGF?B-Tj>@of3?mY&vchNo9`m23q?{s{=Jh9>>DL8~let6X#JoPJjA9TIf
znq$Xv(|Za-cs}>`iC3-nome{_E6MoJahO5&XG^EJqgy|A671$*R*o~DQb8ZO$?GnS
zA_GClRSF)CQ(1VQ3;cHm{npXHzULU(dC`s_H!&^EFUQK#{<|w`QR|<GplzM+_jzmA
z>HB<tgR}y`uakq;%L_`k?DK6mPN=Z@MGC8Hf}wu)=Mhr9l(QU=MI}afoUIk~b4etV
z*2alj01x4~XIB8#1dDeQQx`Vap5CVj>Oy@tW0}d;^;JX#`KjCC+>kzUkWDETh&M5t
zJ0Ozi-zSSLXb0t0cw-qP_Q0s~o&(-m?)A2#A1W?1k1B#siuzlSW`_e$?_3Hit78kS
zl4|2m)S4k={ASn^Nu#H9aJiqSEzvOe^M5h|V($cHmMa+@hQcnNjbH|4Uh>1g2;|9s
zd#PI@n!AeFSykQ^EcYe21;G-GYY56jvCY24dzy<E3rdyvS?I&~(Xt09V}W8>P`Ym1
zRhb-fH|X7ZZdBqmfM9&PpO^9YAX>DYAM}lsK(n4m2lqO`wwEajp44;k9>GU~@}SpY
z`x<?1ItEr*X)tJE4!(&B@Pfbh;hFm4*<J?U&vD5?S}o0BaWa0{q%M$KDs7iI!<#X0
zH9LFcT2QOz#D7FqiCPW&>eeX98gMPf!43Wbeid7>nnm#<Wr89Ue~Wfz0@j&zB^(hM
zPqu%&abn(Lkv<^@ANr6`WC&r{G(ijEenugu_r;+!aQajxK)+&leQn00Ji<x0;|7E5
z<f=zW?I;e|C_0XSPiVOqRfodZ)4PA~>f3K_<<@dw^SnO8rr7{ZZ%&@QdHZffI2-6j
zU}!A8AD_!&-jk2m24qZo1UDZ6J}l3CN;{_!oLJ1=v!l3s=1x;26`%KDE>x{6Kkwo=
z=k2w&`MJ-9Q{}mrOn3{%2X~at;|G@F1iv@A9|^N(iN0)V_zN43#@HTPNozTTRqb6K
zpC<0Lo@FMU4S<Kf>pNgWX!N&eg~b<KKa7TfW#<{gj`L4@-bMnbUxRl3(aaFvzmwxl
z!OOSR9r`)0e7+UV8~c$@*naaMBx~2<TFffZ1-{)@!Z87U`JX4b*)J^5$C9|Ci?hOY
zy@<;e!9B5(NK6ee8l=I7NdeERspsNFbhY$sHK`8R5kj*zrf&Virx4rx$}yL>(FIOH
zk%&?wv8Rl<le@0IItm?So7uH0MXSUfEw9rji08AF9%^x5VU_OlWG`{_e^5erei#E5
zc*Tm4B2l4!aKXTyU0qllZVTV8Q@!^&G&?@FprF=lNUHFRh&1cp***`?U*sf&o%A>C
zEqY%3>*%MummV_K){V^y`^<JF?V7N}B5zGme8SN<>2=t-{P{{HBkHe{jgy!v{I<hE
zXlMY3U7V(0zG)CR1~XVIuv9GpQ}b`GYJ;BHi(+xNw3S`x@Tn_{xtBCh6;l(COQ2-S
zm|$kdJvrz<h`N;ljsciQJ`U`r<)qpd^g|e{SZ0_}r!3`+B+jW=Tmmdzv$Kn6JXb1i
zDt=tD!FEmA2HwZ0*1sx?vn}wMNK7<l3=ByGb7E7$Q|)ia!SUs!sa-hr`Mlgl45H5H
zNRW$dvS`Q$N}gFcm!-(qx$#IC4z8zi+qnZP9XX!leP8YK8zcl}^fb@x2%!rp<L&`F
z;KEUD7fNVXf<JOU9n8jir9)pr9PYKd!QXJ+a^1gcw~9!E_T$*foBUet8Fo%~Glvx&
z8>KHf249j{LM~@SX6d6=GpVmMelYsuSw^luc5b`QbM*Rh$3W&~RRS-+LX@?;YoKJD
zyH`Y@#GIV7rKifv9~&DN>vjkuGuo{@!<8UDvRvW(ttZ1Vk^zB|jvmfu#}xa!Rd-X}
z-E*Gx>wRT)B0lq&0SYJI_xRVk<G<!yvMSle)W6xJ4a&Xk#R6KI7yzyw0*iX`niRHT
zY(uiyX)&YDQMGLQ$~jeLB$G#;TrdHy*U1FL92U-ieoqW&Fj7dXd|9ybnd@Ld=3eTX
z2x-oO4`>1&0(Fi^0Q&gYL^Sbx*SScX1PgW(<NWuS1HQyN0Y8BHNc6@x@vhw`Eh*g*
z2qve9xR$AKq8U4QOVCjkas$ogE9Pvw4PJ3ZQ6+D{z=q*9DTHJ#rBv>(qEWnB`aJAA
z227`vIg{b~Jn1PyQxv$bh^SIs^rIP^@Q;Hh_KY&go=;*x_xmdci-st<0!)f7pFf}C
z0X#l;Y69%1b>gE!e_D2(Glm5dWUolEb65IyT7Dc@DDbOWf7pF_Bn~f(qgGe9SNNov
zv+3p7x`J}tU9AC~tWR*AXSSZIU+#uo^aWo@rsb}zX!-Q9Y*uVq6NPg@rToSob$H%V
zi{2@svl>Iy1R_T={lq5sd}PDkNRZA>mKB2c|2Z$#cs`_6Lqs*E<AItU|32#r+q&&U
z<ELyrIj7rp4vch{rjDm#I1P43DxPT%m^e?n)UfF?v7sQE-iIC_5jfWEY@{A+&+u%Y
z&1nkDU;((c%n+8U6ky%#>qFgOyl!V^Vwb95Mw~6(&|VvJe^4yOWQTJ#RBHl^3c6w2
z$?%LLQ?=5=4JQl<isJqm#SK#~K7GnVp4Mq*$9L@BNXhT^{$twQt+QSCG`xSc6`0db
z&II7#EwIz67>JZCMSc=@akhTA*F`}{$zTg0%pPLZMvsKl{@mc|ONy)L%sF}F=3DEG
zP1jzcqGA5|7&FLojmKS%Se1X5dN?L$%jGvn)u9n8g~b{CG6`fH03$b-{`BI$-nB|V
zs8pfTIcyc6C)}G}YE`wY9e#hTRfZl8NsjDuKDr538>%&SUs6H4SZ`0~8-vw`>$yp<
zthPO0Y{O-`rvyF=Lo3enr=-5DNgV(N?3n-141`t`8|h}sADD;8jv~UND_gZ2yu4ZD
z@n&f&PiXEFEjQ^=uZtC&-rorP0R0y?uy@8+Q)@?f$ca`N7U~xt62uNU#So&1R2ke6
z5SxCjaiJOm5ungH^59Sz$C+$uBE6zEQL5^)s+*-)M@7UvZS2#^Xg`8u{rEz>L}cEU
z5mSRB(fzcjXUggX_tVpbyU`c97!#cPxC_qo$B)gw#|E=ztqr^9tC(C~<{?o!0hy!)
zt=ng<$tG`%g6-zyh+!H(#C9GVBE~A08N%8b=$FRAl4CYjdk8bN$gjsgDuKH<_4Nyr
zN4;W=ZQY0nCdi|eh0}_a4_PJmnW1?;RX!JoMX5pAQ2|S3HEWFP)63BbJmZ!q^bOS8
zw_brM)G}Ql@BG(0V3!fhGKR&;5pWn$IcN@CKIOQa?YsuDzgp>%N&9GkRh3lIBz(t~
z3iLg9G{vgbFx21g=L^crT@NeC*T(+W$t7VPXgVVjXx3#~%|5PnuMEBuS5SHd%{Vi3
zclA^CjhUm1Z*)<8KE<m!M_KH7o?Qui1D7U`72X@|ea^8DVBko0;r|g#1tENT7pF5|
zL{vBL<(M+(QE)6C*m<5tq{sCVERe}%Dx}<?T#*7_xA~r06Jzi9GN`|`@!H%O6Cn+|
z^orRIr`+wr;LavazZD||)naFV^!PA6z7yHH-DC$FuKOr^{{sTBTrvBMFhbcU-?oFx
z-{tx0`_Zi3ugNL92EFHh9&i~Rzq|E%z{imWtDBRvW4B|Eg}pdl{@B5`_D<@WgSI`*
z+#8<pwk|iZwfCNw!)tRt^%*V=M@#uxy5iYmvYjivQ9xY-nL(ixKQG^3M{m;PEZ(lu
z+juKy07l1{j))COn)Xa{9=Y3~81NKH>*r<btB*{b#5xC>Xjo0_Xb3wNcWwSxJj#HB
zQ!6G?fehA($Y)l{Y7w_{)=C;NBsg`S&mb$vz2`THt8F(fau5grGTDYuKx#5}9lG+I
z*`*Z2ienJ*>Wr%Flx~#fwbsCDTO(@Q6!0+BvExElIIc(wOzaP?`Vq9RUsb*dZ(E23
z2q7a&2QS$>?0B$O=d)qN7*he9Xim$hA@N>09l0r~E_nKlS)&c%2hR`PS)zh*e8gMy
z<eCi8lE+Gd_pr6hZXWgQbI2zb`w*#`Y)v53<+<iQ>HB^=1v&Y-8a}Whwkg}lNDn>6
zynp!%S-yMYT|796z>0$f->FT+z7})ammiW}t^y9J%9Fv*M}2N$RY;d)WVt_{)pqGv
zevn?~A;9oeDi(L81k<3Xv4<@AHOP8utO)u(=;>M^7yjGRjbT<?M&qggRu;9;4m+0k
z_&ju7%)dD!GcdnASb<ky8$1}&xts4x_G>N!WMJD8kKe!r3Q*yR6X{Zb=DA{E_dNRe
zpDZ@0%g>pHl)xPgTsQLFlpS|I!`5$dxfZD*&C-_Y1<?qod5Ei8{RXu7Bo(yMw!7zL
zovA+I>2zwC(k;t1mI~gm=8*-IE8tBpi{~X<^5RSl!~O(x1P_5d4>nf4E!#}ckM8HT
z7Qo(pp^7d$HtY7&9ax`1R^P6C_5RPZ=SM4Mw1nWoX9WW9-d?_8R(qxN;rzX14X5YM
zy^KnYb#7Zi_b!lv1zfZ}IR&+hy7e?`(XP}G2HXm!UNIxCwp<9b@f`Z*J&f~^e4obY
zFYbvwB?OoweR+eLhw2A{IcW0S^Ih|AabOiDg+tm<^GbQ!U?<**sE<aU{7Q?z%3`Td
zW?Y*$uj5`NHRQwd`!+{>GrIMKA5{|`j+`Hy7dvZSJu5NPW(>YLU|8k>B;Z)GqG2-;
zyF(FD9H=GrH?iq_i7EVgH-}SzLR6+8G3@p<$v%M)xW&LY%m!}Nf?DW&{rmv<uZ2K1
zcnX_IiXIoB!h0smMAQLC;n9Re@0D=Bfd`imMRo$;$KMVr@u=CagQleydlp5+pCHq8
zD_)Zf;$_S#@uDeuFTZ7$0z2K1zH6mBrZulQXS$h9T^}~KR$Xzd&>hDJLgFRmX50_=
zyXis>UlQe9J8JHrHNdyb9yxrFuCe;pp|}4a@P`5uMgE{i_11YXLvLiK)})dJYJlZI
z?xT{v1uD01Vl({jeNEz?#l^>oOvLrwG*#5I;ZX(X73TD_elKl>$K+C$i)di-)@{5v
z8ivpYv&*(es&_1z*Q`vt+Yc*)cS_bQD()azJB3s4<*~O@pZ<kgPI7tnFS#y~Y`e!_
z5ZkC(Dva}WkLQP?Pg}3#kQ#5^?J2$^j`U?<LIht|(6?nx{rB{+hspe?`NP9tM=|}r
z!dY<_aiJx&JT$L3ggZxKa{ISxJOu}1?F;^}(TUitGye0oS!9H6ZK}>c299|+7J-Ag
zdE7Iccsn)<67cPbUU_l+6iRiP)UCR02fd8+4;k^Fl!}c{L+~HkIcV?6SZB**{gl9n
zUJHtx$sxG`q-|r9h9a=%iY%LB@d7x^!-!>EKE->vr_h5Pogn&3^+9GXF~!S}eN&N@
zo^8374l2R_b;Gl;vSfmC29cd1;>_~sn-PW@@>Kark1ttrGQ9GnT!PA_sNT1qo&l2M
zTY;aH(ora}NvR9b&Wt5FkzK{?uiCQ1t7NPn4+?dTH}T-A{0ftTMF>je`473qeuQO?
zx?6bOCLX=WXxH(rH`5b&hPzg4M3TyFP{4_L+BWD!2m2*=Uz=fu3bW8~S&UjT!X;DV
zSK1l0&<F2~Wy5PFrCzDsW0443=o949es!wRpfzz%Q#un*{1s=q$dD0^AUDCv?;na!
z<h>DQ?V>0Z<sR)aSE<o;$Z2IsHWuD$^m|oY*zE#150dXkescN&QPlRh`=%o!vq(9x
zFZjPJQbqyo8xMp|gRy|aUQ0&-ZFynrfAmf27(#~MXy?|tT`afwi(dH8jXvL-=FFcF
zsxK1fV~NOtdAiSY@<ES(QF*yAyM5%cUmCUljcPMl;p#pK`~^x+JT*R8`nKKNOCF;_
zyzRV_9Xxr?k+Y!c_{_%mXONnsG<hb&lf^h(RS1kt?I2q(D)qH1Y}vuh-_@mY<h0;F
z7~h?Z8E1jW@;*VFTb6hP(`X&0Iv0P6Pr*cNd}+Qbp({5c+9!TN8DxllTPQ#cA4LhH
z2?r6-T`SB4B^Uo_d8L0x2BEb4k<9p4agHV@s>HMb73Vm)QflDj08F5Pl_hjtQL@VF
zB47uyb(^e8Yf=o9#@QBd5`sj>KY9~Zhjpr#?zI9E%TaEvwsQRsGaGgqouOZ$_q~9k
zPjIVkS6M+nEy&I{T*1X|3j5KREP9%SAaGoHCb${x_%HgJ(ofRn<>KbA45!JyM7IZD
zYiTDEJQovvr04oC2O?4e0`xM8ojj2{D-{+2eAd2nXQrLw%j@?Ny{i(v9phNS#)R#7
zotk{?HGUn0q8}Z6`b%m#ZdZJMoXT3A<rSTBE{4--#;X7qV_zVhNCsNtRF)owF=BW9
z%A3HO%uYa#RqLB@K0DNZ;H48Atn_e6%oI0;DRmcPaohP!>U%Yt-CMkkIiYN83b?q5
zis04*OY^)Gic@?=^UL+MwWIBj{O~#8MREi3M&v($8X5dc=WX}l(lMuL?`nymedv7S
zu=ensT*rR!Woy5V@ApkJVc~pYD47Bj7zJ)=u_q_ag$7lc?i@OE+23^xt;kgN%V!7|
zIYVpdoSiIwHb2h3_;*+kUH;~aIA&h({2VFUk+I<yd4u0in>`X?Uz0yE?QN-$b(Po|
zncHOVV{3=H!@8<;QQOl4LKwm;WI^_Ko35jnv^NMT1wd8rX@dEydz+!D`oC{LPo$zL
z?`2^5Q$Jy{)mczqd<7gpE_iBXwYiR8dCMaMZj_%ki=`4o=Y+z*#DuD245f;plY>*G
zjG2G>CM$}!=>}}U#P8nG@43&Pi)~<L_z@Kw1L^(kB)VL<y&F3IW1@GZL(z|>p%C3;
zZIN#^m9i8)0~e0y{de@qgE<m+)*jKl#AO#)J(y~gLe^qleK@ZF3*Wcx^6T1t3fLkX
zoEK@4tEwaPbVY^YSm8?EF-{kb?}{hcOq01-ad(>mnYZi0t$=ZGRt`dk`*}GV{O}Vj
zrTJikDL7(-KDAyJ+Yg{1Ql+xMsz|EB)%`#RtkR}x>CWTBT8pJI_G1-CaprT?y=Y(Y
zo~tAKMJz*Bx%Zx&Pp6FgZi`QeUJl@-i)_V}pWGPudW*}VIR4f9ycf=y{&ApB#Y<8+
zB}(Nd<+2uQ7)l&P9@4?N*xD-K>6tcieMm?Cs#_jT)G-3QF#{d_d6~0Gy{bqxZ#pNx
zp};?*6MJX!rOb&-y_4We2mOBQ2`TB7)Qa`)g(;v^INSxV9U_y511vYSZ;4?iro5!E
z^RO@>zY?Yj{kO_yAr!ALVSkR*+{1ULyY{<VgAEJ3RDbL7MyF9SGbtK~hg57t{A7Tr
z`JY~ZPSWti)^o;IloI>V^T~n&;om*Phn5xKfKTJInU*3_f{tGf<XH6_N<NC_n|-NQ
zdh)G2hBrfdUmD0WZL8#zE!iK7p{OAbx8;ZG!FtBe5|u{7Zh!_4m<|rh{>FeEO2wRJ
zpWX=r{6}C%I+?f9ov}DJQ-$2xyxv6!T6(E=+?O*o2)1rx?=Hz=+z%uS>ONxFBok$7
zXWDi4)OpC^+=|7vz?7AxXjr<J3N=>)J~i036iXS|vx_w@-P6lF_z1S4IZ)csQ>%%O
zB^)koCvz)y9$YykXw9BbDI>p|El%<}%#lpzf;#{pYFJ5VF0c98ZV)0BXx|&hIW3IS
z6iYSqCi23$wxbw%^>Qzicokl|y;o=dOFj9Y+uK<kO`p-V^(Y04anjLKi3wVcyP;!?
zyA9YHO%7U`C%#;tsJLV!i?w@J?0KF~`CLUia-}tb!|7S9IPjMLLDzy)UTe2ovJKKR
zwWH!AW0lsEfj%5WZ8L+2@}Td>b!JlRx|b;Le!peff|xPCpC?z|1Ekr45|c4bIP1An
zKln8>M2kroDF*l+y4hYW!n2UNXiAT+mR|?<@VhWPKjdDb1<KA|<B$cN(&tfv*RWSe
z%qZuhdi(ga&?8AVJw~4gzHkLsnO+=0aZrY~q&hHG{zV(4<eWnQ>>NEF)7vft%(}`J
zn6&a0FrSYvkdX<XS12kP_#Yf4#83>dLs~Q(DIW;3B<Xg9E;Z(LB9T--27T(NVm-xb
z`bI=+%KZw_QbWIV!U28Pz0}Z*CzbnM{I^Mlui(cMC>CWt@ax=xQZK2*&lol32G=oZ
zU_rAsS3Y4CfAh<OHwAgW9HefNgtY%yEXz)YAJ5F)(oL*uDrRxWMQi%L4(lwb)$#GO
z)>@1ie^_x))~KZ<L`_~u+_*U%LRo8N&&{mtcwi>X^6L53j0><4X2-QjTJB5m^IMLU
zia(zd_FpWC@Q`g`IghDPLkgero(b>;OhhDBYT3JF#!KSjJ4BB!ewp=v?o10lMUw^J
zj72Eqko&q=>;;VVhg6e1*-R0<wap*&f0|7oH)Zbq6i3N8RT_v4pVEXN6~)YE!oBL<
zrQVd{<91+1B`Gd6sN_gjBRN#^tBQBT5;`gY%78_`!<^}xnvi-swkt1W3g9iuGxWA&
z)W4GRwb@w=m&n@4_!t{0ni>C@w_jkM=;yAuv<*DX%b>7S$>#Y+M{x|$Z#kROdvl2i
z7f|%0UrVY2%T8c=srkw4OKxp*1%Mi)10I7)XT~^_KMVzVFVuZ$Wol{i=}aSxw8B{E
zaHn3d;*F3sZT}Hk$b0Z(dyR%lDM35Fn(ylLc-7(8=^x@>IFGg}C@Z40@)HjwQVd>>
z_A0-Ue_o-b{HF72{R%VNwMa0^YiA9YUH_L(;+sdLrxT5xFpP#!xOy#r#K_A2E2pRa
zNmXbfQG+K)B5V@&#Q^4+1JfQ}hMBNm&1bKt%JUC}Y9GDVzBNgE3!2n-bsyv;u%rDW
z2BBf4ZZ$|xxW4mfO0-1JBjvv;zV(rGf8j(@sQq5)Mw4<@?Ki_8VtxhhJeApoT#2`(
zucj?DDYx%_BO`Utm0Ssl($Z7ibiDsq4idB%|FZeJG9jKTZ608b{?#vX(*3)>@~+_t
zY^NZjHr%00NKUjpakzFkK63G_y&(r0AMsA(&<%mOT=~{agXK?p^G*6FAjHfeXr9V%
z-%S8TDD|A!V0i`Uu6kOP8uI0?%T2H;MU#`J^?mH7&LNVicgZRk^!V^bbu|x?19A#Z
z&Z=$nO6zFa|B%P*u;J9*#EBZUEc3|!gqkx@a;Do8CC@&CR$E^^Q<+|5h_g??nJjt6
z0MvzW@PP=~hUDH@B$Xx$-FaaxBJ7Aou!4GAGrH{ze+S0W;|d1T?T8;d_k%H+12s`Q
zpZiUhwr@A7UP{6LZq_DsGp~SD9ER%a7n_8jZhrF|&{}ZcVp6Iwy_Dyu>_PIcrW#}(
z1iEQ?c=gefUy%+DuP?xktn1?EXM8_`2TsQ<GWlj=O~bnO*BR9Y6v%>Rf+osjBXv<&
z)nlU9Z$w`-In<Mi@y9IVC+(=VOHWyN(0@i!jGs1ac&AprVA68y(BJ{<8OTkpsSR3N
z2N#Nb_fglTQ8S8nk~MPLXtN@ZVD_{IExJ>?G${>~;IfEQapPTIT^{Qh3Xgu=d!u(!
zD&y?<aHb|r-B?^;!QDGKg7KToNV(>@78YX|#A&r6_c6R|L<RbEy3Af;yjwi0P+&-l
z-I3843p18^c%P)93OP9a;3@OIy0Q97-h9$QXi}C$*t#{8+#HXv=5Zk=k)}13NFY4k
zng@$ahXR<KBE)rt-A~^UdrJNxaWJ7rH=S*UckjxpbKqkz|NZZk;VHc9U3kmW+;B77
zx3`dq8)^2vMg`wL*7Ok-bd~Oy&dM)=Au#{=_Nfs60QP()QLRs~>&_Z`%~JlzeyQD^
z+f4jSXeqB`EyG}En&osx%cawpfTwQL4~uklW2qBx(0kozliS{|;`eGoCt!ib#V`VV
zqr)%j3c%D5CZy2W`B)@q3+}|cUZUh(<Qs5F$Q|q4U2(AgFd-1N=<c$VPXhvIT=`be
z#Rc$EN#kne(mL<+fRs9qN4$=exyGh`%y&?~6tkTdKR#Z1Xw_QK$}({Emc*G9dcLo*
z=~VAUC!%Q3jNMR=Y@fDKviZL5wz^f;hfD~Ai*s^qvW~KkeTcsP0+BVTOxhz*_?^z}
zIg*Tfh!{V6TNgo_e>!dlb03tS#O=vGlRTu-{m4bUGXTgH7CLY=k}93?@}^3(j9HAu
z)zvub8!pa!j}z#@yqhjW^(#5c=G{&u!S)&+T|NW<u!QL^ea>$ID%QP0V?S-tgDHCa
z=fN6H;jV?>7E8%59`CNy8I3v<nJ}V|5Zy@UR)f&|&rL0&eljz|5zm?&-5^tEXE(oy
zS9r;nt(Lh_{-`X__y?92P7H2cN$C+E_?kpbnSVzbw=Xa3s=N#9`8QBu4Qsej0se+b
z;8s#}&>X&V4H9Su1vnSXe&n?(w}^wLWd!@$eX0`Ti<?<(9IQe;#eJ)MNj>U=LiHNb
z=r`_uh1asa{`G_Ypn|;k_ZlZ^Quobo{`>r~7t!O0<MyX>{sVw|b^}Fus)Ss7AFq{9
zqo<!P#4?kj>i`o2JnQ)PM)T85$+`^%P=|FerP68#bhHfI-6*Kty7|kctBl}WT%y+K
z+|V0m)VE3D0c>R7o4<D<(hXd>vry$`V*WP>%oY}P6MEffWV6A|`dYR`SG@Q5Dg=OU
z{Z-02-+TMmz<5ZgKJoN^_Ju~Pi+@j|TIldDU*D+PfkSXKK}bq#QT0GM&p-P3hldK5
zS}L5P+it$}u1}Tp?&sp%$M&QZ4cW!Vw+2@6IocmMQ8EDUtkw<c2LBRO5M%dmL?iF~
za}$r!xTk;CwYla6%=`N<_naTF(4hFNj$#pq-j)+eiAw3I)BC`hwtITNCcEk4Cf=hD
zg54}56wg{Y8p4`^4z;OZ`*0_^&HrG3!6MlK1B3`-GZv;`Tin=Y2#hw+*K}){BLCaD
z@jv;NN`qj4(q!@N@F6=nSm%#<U=>oNz{9)I_|_O8zBqq;!<OF7ToA6s;LGrY%Pmq8
zM$X50G1($pQ!%gbshE`nfDCN1#I%!5MpMJ(m6M?6^f;c$uU`#E*?~<TTD8scdpx>h
zHwd({o}XWU6V0HdKe5@li~CMLf+|p|;aho{)(tH_kVP+}f(i&`zUxNzoBM{DA}2yU
z0{N%g>*?Jn?T{wtRo0fTDdnoX5P$zGNma62(!~Ni1H+6RF~|D@Oy-IosNr9}^k}uv
z^Osv572@yNJ}{t?^R^V=r^54rhb@Htbxc+@0>m4Ld1O&yI9S(F4<Gy>M`ndH&Fy~q
z;z4pQ-Q5cHg<Yyst8$!kiGipU^gljcr;&k=8-uJk)CYQ{Y8QN=c%KL~d_#cqSX>1O
z{mhgmP~caxihxxx+4eM?Cm{?J9(7m}r}uM)h8QK@J7tl0NSw9zx=+L)$=z~;)IdqP
zo`Ml*yyEV2Ca0LX+XG1LHA6Jnzho@SwM=5kcevjBx2jVmW?~XK;d0^M<Kp1h+U>J-
z8z#N?f%`g`TOrtPP{p}v`rmO>Au*`Tc38-<NxTNQO1GlSLSE9~bUp%tKZO6$)I^=R
z0q@>BjJ`dY0&5D3fg_kQ0NdUTe7_33q&PksIi&14+Rkuvuh42esoKHdpnhh^r>Bwx
zPwIX&%oL0@i{k~Uc82@##y#7h6KG}$>0LbPr4U=t<%@LMT9TeS*9*IBnj2D33&zG7
z_Ry(#+ZbLP#wlXvJG9rx`xeDtq*Gk-HYIy%r3lTI4uyDMWuNuz@6I<-g3@~f;ITAz
z!A4^DRTkn6=@j+?ku#9e((bx3gKmv<TN(Q6OZcq4f7X?Nw>h9!8G4rOU2!_v4F&ww
z)~pgcTf!^>_g@Dm3F&jP<Wn?8|9RQP8u$A@G&K~JO6?|g6P-jn3#*e8MdN!(XeCgo
z`0!eivm5k-rmIk<zZujerOEI?9l74=S-yAZ`T`D7(?oo3iqnJ7isUyW0W>E-Nsj-)
z)1-#GCQo(%=5%HbzuurZxyvTvUaR{?;9}$Q^DqwzTMEDQiTiHXuA|}!Cnr+@-+#Wk
z@Sp1By_1^vxWPGsnJs)7hL?PaULLbLrOVI3y!X0a<Cm|Irpx{O(<-%_`PKa0V@~B^
zJ$<#k@%I=%>#I7iu6(I<Tuf8TgN8?3S31T2@!3%|hm{7v!KcL{=#=3+YzWD~s`qf9
zNuzDI_Q*RK=HiRVDHBKu?f02zt&n0Zt6c7sp20p1V1Y{n+PB+2%G6qFG{zYK_1lH3
zaYr<F{~=`VweLQ*+M0&me#t3PN*AEI2DtecK`WA<3Z@zK@Iv@-d{ayFib*E>UwjR^
zUzq}ZH^4-kOM3>6z{Pw0r<RVeRctEe_8jdY&;7vcsZVG$=+trZS@&=fEfvZ<2oO>S
zNP)+Em7(`uffbzHp3iKqg!E;{s(#G2)0($W;P3HeWZkVd!tYE@dN{7&lmdq8+=8Em
zJqt^3WmWn7Su~B&p^#J(xAy3$|8JORV2?aouS%@xK<eO1%Y1+F{pa?|1t!0grK574
zw!hc#SP%`XMNU7z`1W>e`XPIO$fNjTt$71|-_MKXsuk3Ig%YUpxfjgc5#Bed#lq+M
zd)G`%3;MHIY#zVK%Q)0-tgparYG)TXm&y-(Kavb>nPA(MYtA{Isn`f|FV~x6MNxY)
z-~e<M4*f2tr8wcwuH9ktriv4|({Bg7q|m?mFVLIMXOkg_ILIcH`<AAwc87xt>WT4g
zTLKVZ_!PW-ua=lD+HI||T2>iZ_?8i8@JiWbQ_Fl~JJ{?{01C4-@n0iEp!#DZm4Tq0
zN|sk#T=yp6gZ*~jDrDHNTe+ZD>zC?K_3geU;T2j)wdXnDGW!^WuVy^kBkKm9?**=2
zs)~-+rw2TKQSMQp>{BXe0@XPFn|!=%OBF*?5^OoH`}jlu>i8zv-epby<MFWtS3lQ=
zqjJ;kr<TYNu@C1@oRn&=m<npS&GA4so*!s^jkums=LJYKYxem~oGKa<S~O88=N(Gh
z#Q)@dc^DB<hq+FM4Jzi3$I>rcPZMF}y?c*3#@$4>AEvg}|C!uPgsl&3Ch6KZH@VP|
zw1&cTpjdlr`)XPJIikow-n))XQ^jfGM=be99;vTFqdDlW%)b2;I{2@r+u@d@NLhJD
zh?-`rR_DX`^b@tP)8<l@fBF?GGsN4+7upWu9GP=nC4GqnI=7cZPMYRImU=TE(wZ~H
z7`xIK^1p869lqb;WkRjxz1+8DAHZMsa$vP6?xj|Smu?@yj@IO|<hZ#TBS`Gx9Xb*?
z|9xGZhb2mTYQs{BNv8QPE)t6SQUz`*_oRk`+s8=njGtDsb^xt0P9jR1g|BR~xZNB{
zjUpv9UY391GiON_67COCfxrJFC}R9xhi`D?xXj5wqShLIel`n`c|I=lD~r<jDYesT
z>)=?e62uKUuQV5?5nHD2->LJWOc_ZBT5_Do-9SJ1DF%=hGU1e<-qa0nl+ks_i>Qx-
z=|(&v&?RCol+E$hz|ALc!5%HED%KsGk#L`IYPT_=_A6q|4M0C?Wag8z159G8<*-9u
zGIbGNFNRCM_foQ(Vi_z3-@T*Fnfmt)ILTxv&|=*EH}D7?2*P&-E3KO!hq(sT#Ojmn
z(-SbrX8n`A4Hz|QTU8!Ke_Xlb=O~nTZpR~?X`T6pVUHtcQk0&5k_!7mcW_E4x$mkr
z*Vy;?UyULZwr}AdLYi}N6#8RqwaPPoxbSFW&)Z1f(#o}K+tiXc(_jTIi(A*V0)?N{
zUrDdrxWx%`;c1vbem`6PKKKh=Os5g7SFb~OdnG)SC@X{JafhN>-a5!nIc9szC5W~L
zylpHCO4|ey(hSDKi6NJZo>wj-^}J?OdaUj#a#kvRmp;B<Xv~D)$$Z@^WLRCIp%5(?
zLfbB2E7h7FzvGcp?Da5Qfzl8p*)U@-Dnbjc_@<fr4G}1{V`g;|`ei{w;rgdQ{cuVA
zji6o8ZO%U3Norh-#QE|K{LgpXLv6g!d!UUXA7~_`_#e}J1{wX!j}~{JrSKH0S>qh*
zsHH}Q&p`5$Zmjh^>j<qp)Lb}LfyxhlZ1aK4*FoqRNjISKL-Yh1^uevFABC$e^GZm_
zdkkXft#Y!iqqx?yK8wMSAR25<IA9M$nFC4TIZu(AUYF!6a<+w*Hcm33Bi@eU968RL
zF$fwJH6Sce+2^9%j!Ji~@XEyTB{Ht5_xh>VYGlqw>8L~@?gFZ<6<i*|UvQLwE5e}M
zklOhItcx+{V3HDaw5??`<8&4&1TSS#c7z$DLFD0<CMikeCLKJ478PO&(0)FGf4!zY
zNI{Oo0%0d((ET2*A7-{~ptCEu3o}B4K){v7hy*1$e>MXpBZ8W*=l^@{y9<(eGzBDj
z8TYw<A8mK@k_d#4s-XeNB&J!07LI2cx!?L=^nI>TpDbpk-iKcn1)nA8v1dWWa*2%}
zO!lffH8-<MdB5jfVX|dx^bD`o7mV}lCx=FpYy&b`L88Ulso%aAoz;J&GBiax4bniX
zf~VMA=%SLe*QoHJQHTk3tM+B4j^dGkvD;VLZiFYoxJ}2Oc;Ou1vBQ8HLr#byMl!86
za??E4w=dZX_Sj16O6HRmY2?2*CO;rQ>;h(m^ML`lJ^IDkxsiP;7=3duhFE+y7SK{y
z>8xDru?+uhnF8i<eeB!oS|p&I$Qyl7rW6J*WXu}$?#Ni;z#WtThBMF{8wlF3qU;D(
ztEI~FdRTOR8;{HON_9O%{)LHi;2+!1rEudSFj-RR)`^B)_WKeasZoD+-HQ?W_PZt-
z4IkrU11~sXy#YM6+FbR6yH$qk2~soZ-OSz$x^M}7;iB_Tpl=PO@st_B`{TP=7IE=#
z?((1M34%+PpTW+ZE2PxU;e@|UfAlK(_dtB43;Vyh^NoqSlUsik3ifi70W79YTP6U@
zTa1;p#N;w6HoIROK?XkFNgV(?DD0i_vsegxj4i!akzG`yfBT-PUHqOD<TUICKG^|e
zviM63K;@$Rc^`O6_wcs*y!kEUoQOl{Lf<!Yf=W`Hp{JkXIfbwGHoy}{<;*4Wy7XEp
zpli5R_XLl>)C^G1@aEgOn*6x?$h_e(My7Si!7*e-b4co_Y%tPIL@jt<+t2(B-oWZ9
z^b<kbA4{G8tgzCk#4ju}29eX#qq=LiXEU-es;*$X-;Vc+bEbiuPJ<Yc_P^SZD%-)h
zG(+Dk(U^_<ES@Q}-fN5VxVT-6`wd<^H)n1AEqL?7F-1<F3p+dk=4mrvRv#PB0AtOX
zuVWSlC?Sh{iwdR>Ef{ehyo!y><4iJ|NnY4N5cOK5<Ti!^FDw@NiD+AB``oVNT|9eP
zY`MWyP13|G7zHR{AZ!G4LI*XomrjkJvdct>fWEz&Juf5IzWR-bOMGorXI6T8b+`Yw
z&m$aGmW!2;>`M+TsU&4@O_RUj@TyJ%GfLN$=MSDeI}tq10^At@L%Pr~-aqaWH+R_a
zMSRQYzxZc*y+t2#j|GUWq(){HBNJrJJ%Tqw{ElMDSv$gS`RxepQ|>LFfnz-G!ipDk
z!q|$~Q#<?H*#%^so(ooLD=XgpAsHtPjut6dK@S5dPB#_CvZ-IXlHY%B8E(C^>lQUJ
z-W2k9cNhFX_)!-|6M*o^vNc;T527@;fRh6p*zzHdva?vpWl4nm`u6q*Y~z^<ZZn;T
zGW5c~R;_xVk&o>YUMmRq)Sh_mkmy^Dq+TO1pk&wfqP-Xc^3{0ru>?B6>IzB&%p{4{
zqCGA@-Go?Zpt6OU_{4yV>$c_AJo<0hib^rVl&1pFL(%~c#HMf2w3Dr`j{9f1IJW0Q
zdijABSbCFi%>6(7n4b=7IzVTc^(=NiE?U={uxt6Q5rr<Otw}^ugT<led9cpI&6d;f
zXN>*MZDl^cI$`VOM~qP~B8o$)%>UuVV-`<N0g%6a&1>eDOg!`YB~N%;gFX7c_8;ZW
z6ue&HiOZ#m3Ibq+?rlg3UR+?#O5A%J9>=)8*$6(4T%H|+0!L-X?sG83)c^K+G*g40
zLYNI~e)}9A=Tk{qZRYn=VK;Z;{{!q9D$aR$vIwEp>-c5Ycq%wB=lor>u{=}1c<G51
z&Ra<wOO@68C@>Lme4GM%xd2!40^r!cRoNc(jQq=Q!e&;4WbA&ZCb*fB0xb{CQNz1!
z9Tvw~EmDMSA9#Lk`CMR^!?I*IN07A7Z0O?g<B2{>tO~lyo!RsHh7$f26c!T2O%f^S
zXF)Ts+Kx4&&Uc&K@~zV5M(WHD3odr(LjuoBQZHrxC3g7BRH&A-T&$way{Ne7Zzt#%
zJ*1W4zjwLL7*=vQ5q75T5b~9cLn;3sE#m#&Et!{MFTt_Im}<SIAvxX#iQk_tn8jA5
z*q5Nw@;)C;{_IJy*yWT-FUoO`F)ZEnP0$zCI$L<~-9B7$>EVRCSxH}83FCk`PIF_<
z$syY*GolpEO!jm6*Yirn$h_9Ki8r;KGcQ{74FsBc-M<8p5@FIUS8f`(QY1JGgM1qv
z+x23WFJA4}W_Z+DqB3Gqdj<d8F+I0oi7tZ5w)1M$tb^PmYjWRlJrmQkd~1*y)M&z3
z#I>f&rwc70^m$1#v*T^k_T4B-E{I0ML;XqapqX#lHkNPQ2r5$;mKT_U5et$qOGKYf
z{9~cVh%qm6;TxTIOAHLhg_7MT79>k`1-Pm8^x$cX+~b+z9l_y1_G3ioyS2io9+xa+
zJnU)4f4fC-8wOS;iMlhSwu<nt<YVgh@islSf08encI@^(i?}!KVrcTYP{QC$2%Rwi
z$o5}ri_|}10Af}tH|S){0_ptJpVs}vjNjUqY+Qvi+p|x8MD*>}Zk7985!;HDy3N+H
z9H%ojaP<w8zu@tq<lw$zvB3|jSH<t8vf_t7LdVmMi||2)fwS3p1+^Xt&xh(C&|-<K
zM;sLVH8anorj%|?=x3^zyBB{ZYGWtf@x0F0Z0s}mDS6W#lo<}-4_gA9KsSgP=AGY^
z%T@VivX&*6J3d=%!rv;Etk&%%E`}Ko=s3dHRkYy0>_LW%G1Twls1>4(cVNj@lj~00
z);YowA2v4f9KR&#+H%inn_dv+E*ytq?s&TxNnYq*cE0BO<a8$6|3VB@#n~itvGdm-
zlS5g-$%J7lPWKsDxkD`#r|h$F@>A9^I4me=SC%5WEPDR!z1J-ykA|MGt7S`fSMMS%
zYj>e)OCt%%m9Ir`4bdTUB5RA^3$v3hXOPJ>A#Vp>?Zi|@S4(;WsPmlReIV$gH4&m=
zrA5+#-W4r{?~6cfRFQm%$H4dtE2hTYW65}}yfuoX0gzC2#)&}s$neWmfTjnWVs^7d
z7zSuzC2A%Gj1sI#(j8<Cy^qYofYey#KM|F>Pc$-rcy`QcCQXO}P2*r*_JY#EDXj_G
zQ*Nj+A(;(rKKsRRi!cCt`HPL<>qKLeX=6JTUJlG(Ja7a-#hDk!SJTS?>zqviXSf&d
zNqm$=&!$d9OZJH`F#%r_4z4px>UO1Ba8{-~=LZFruRBbcI>zmsL=)+tLZsnUZYUNP
zt~U|B)otr=7^McZc-=DPQgrB_OfLVQx*A8T?Rls5CUG5z!4%f0hL$8sf9G!%zo)<r
zP3)Got-rqD{-)WkNE^t38bt&wN~20*pKUyr%dbD1lGB|j!hB8r%U~_4i_dXRbx%Q_
z3pnbQhzqTO^}jH629a)dIn1;_axulN(4tJ_0L(8d=sM7dkXGbnp&l=lhO}<fvb!_$
zRB8FowE^SZ>>8w}Zx>1uNyP=or!DTl<_y(0RJ0G!eqQ3+5~3Z`Tyhxv>=gaH^Ctq|
z+_KpX-V&}ErxjqtaX@^FkO8VkO}KjSh$kKRwPDs9c&@L$$U}YzBYMG2x(exrp33MI
zOl<yZHg9bYBve(L1hUB&RoqY3x^@K<%Xc_yg@9bC<cz=M-ZEIN$Kw*rMQGyuPx)PM
zp`O)axY*02_h0iroNMurub!5n{g7rNJLn%~rPJk=C}R~b)3PYP`9k8L5NSIGqoXpH
z5y*2=ia#7Wz98UVd$I6KXa85aqn7YT3avh{R<&#%+{-Sk5qT@#GnS7Qddu|D+(js7
z#k&LXbK>Q81FU&yw`miBrt4y-JleZLptD?a{in^}91@9sUfxedzhXZ?BTRlJvTJk=
zwl?uH@J_$2^?%2bmKz~7r`pC(t8V*_>*5u+;^&e-e#*f84DN1Xg~(YdeN!}amAGo@
zL&;&dUtRI!mZL~oYDR+>4t+vZDDJZPxPcOS8z~NY`e>EB!UEEvRs}X&Q;WSlAFBBX
zH!cfPzX-zfsUSJS^k8;$hWdmvd{krN8#uF0E4D^;9|2C|C_%so`a<_*AzXg$kNk?c
z%s#(~1+&AK(AjHpilrW@?*Gw#)(0*ep0V^VvA?@|O5RwZfe77_(o}veJS{1mD=*LM
zga4{VW}!HmC5deRK7{I^$hI0_Ef)cyv5~(I4uG__+Zbp~Zm60A5{D13@<_$_m3ll>
z*}U^aY(|unqUFX~E*@|fkot5(KKC%fSkRWm5xpKrvyTZNgJ1)a5^1AC6xUj4&Er%o
z1CrX5+r10=_SHxb4(_RR@>we#P+j=#bJ24A9zfnc<+^$dbZ;oELC%5HC0YUp!Q<YV
zlX7_dPGISW5o!-ECT_5??WxczN7k!NZ2k%V&g4f}xR|w2*vfm*C5aZ*+v9DS1!6X*
z{Hg`f(I<4SsT6*~>d9zi+fL2pK~Vk@dRn+focFGMJ#Q>ia8i@Q8O;p}PVMVet&bVF
z&bMX`bHnF5)_FI$tt4knKbe-5ulW4dH%imwp*t>7?7CYf{?FR_Xzjn8Ac+Yy63Ih+
zQs%w0O((P_=~VviFX`z}RI;%_aW%p>{S!T**_6P+ReCB55pz<2zVcCTNFmMk`g>0B
z0lc2GEmpr+*cj2HknW>D7M4S@0go{vBNEmOONikiRBRzFs`>y9Fd3r*1^dzA48-a%
zMT~T?v410<B>P<g8Z3@Eu)9sJkY4mv6~y7v!`(fGgDQ_K;z3>ldUUgARfA_A-s90_
z(#{~^tIr98oA?#Z4efrN=(#;q2d06<!V+LpDcoN*cz^>D=z1U@W<zm6>cqbI+z2Py
ze|0DuAykqU%vUoOJfsXZ^>gg>vDpSsiuQ;H*l%nF+lfPD*0h7GwntW1#m`4tFYK2;
z1RTzP?DyVlJyO}w#SpU@DA+`>>5O=ezsVw1|Mh;+RhzzY(f_yonD=tyHMx?}Talub
zRP@EbAF<8cT&^h|`%gnDH0ezDd<&CqOaCw9=)L%LSg2%eWxAx?#7x9J8z*H@ZeP&X
zGukx*H%_m%^IPA|7w;2xz9TL$=OX=<zQsEX=ntpX8Zl)Zc`^rgN}qX0Kxl&g9h-RM
z`i3j^xvbNP(af;;rRr{Gv73$4<rml`_T4$n!W6EL!yL2s_TO>OO#18`kpgevzXZ=5
zgnvkc#j9#!JA62jVSf6VMiV5*>mqC03Xg(j0iwFHfzfZTz_T`n-#47kA$UK}p+^@g
zq#O9x`=n4I9EHt9yyrhHH_%{h3uBJ%&x?yhmz_)HUaIFqy(^$g1k0Uq^RU5ThfUVb
zU+9OY;+UnzW?=<--UR}I>f9R3d}4aJ?Z3BOI=p$g_v)-=<55<r8D0S4ycHy&7q9uW
zCa^$DL}5Tp`Xxk;z)rsUs`_56=8`o-q}HehvD41P!c2uZnh=ue9`Hk+-%QtH0>XAt
zg>m^}TJ*fec+(1+dq22j<_Ze2X<2E!<jF}^+kq%J3S<x4{Zk%!Bk_b9nrVD3R&for
z@?Mmv#p`Kh{lN(hIFDe}ok*8^*9e*Sb$%n$lLkH|vDdLMOjo^fdAIM)q{iHI>lU~z
z%Gdw<4EJK;v;4&b+~<w-5u$s>owA_B{{zTCH@`eD#N~Uy=GYPWEK_?`L;npM&pB65
zoyORdM_T`Y9eHlpI$4^R%=7Vm3#oieo|SGLJWujU6?uvU8?Z9!x|zH(_91?~INiqr
zWx&R}T>1iAhc1-~Tcq2jQQw2-z*Z)nORr+`SS4MKV-q7VVN-b=JQljn*rGgMAdd@d
z7p4<U*dULi`Koq6uy&)X@!YV{jLqaxBKfbXOGY>2c{!EGswrpM4jUzDionxo2U?(O
zlt<Q`y`N$mS{U1=q$|X_=I^$&1H6I9u}yj&>;QNkvF$q+$C5m<uC-Hn+=3mLY*dqp
z!bu+0*3+w|=iz~`MD};x1;bHw?aGG=Z`%tm?lwJ%ob`O9rrNKH?P3G`abYp`y1(%|
zjR|_$HPD#`bxhcok%o|L?8}~T3yUn>cNmTf!_r!1m&iZg#>Q{AG4ji8Y%G%iRf8zv
zgcEB1GJS{jRoI_`i^{(!d05YH|Niawf1uy}?zi-t-~4)B3>>_S`L4<HHe<5#<xcs~
z#}69Nh_s?p`R((Es?p3L?=uz#_}=P~tq8EOa{cc5ejnSGuyIc5JJ>67PLJJOBZsug
zX~aH7{FZXSCVj+wUI1gggDqpPi+B5wux$Zb3>pNs%UL<F6<-*b=o+v;L)Qsg^K%*|
zo?k8$Q_ULB7uX}VOxJyZEz*@v=tg(sG480a@`P=oJLK_<t|vTyMqXFtEUz&~dX~q2
zJRjo>TUBhM&Y#Njmz2MK%h-k;$aE!IVn6Ua*nxdz2i~De2R&DLG#i!5IY1Zks_6(X
z0b8W&{>VlxWa6%k8a%pV2kK|ofmnW~OYf0a$YVTL#B>cjPiG;l?B|wj)MWb;ww`z%
zvE_biT;F~FJ?|U@1`C7}FGA-&FzLUVO?vK{b^sjbcI1a12rL78@pQ(2WhcP*T=wzf
zM{$f=n<A?a%{<D+76}nD`HqNSMAc&341_91{EpvaUg)mn7$6UfZ@NtsQDHHXdIw{}
zc?CJA^&WDC$6X7gZS(g{upZ7U&_gU%*rALCMvmsF+P%ko+tuiX)u?Nq&ojt7DqgQ4
zS7<3yWGm=OfzB}^7<8kIt<1UWnNAuNwkNvfb08wm-*mg|WrYoNP1rJB$#_0v%X!L8
zCJF`!ZAn*PySDkfg1Ci^>8fcUF37v94o8i2P4b8+anRLyp0J(pJkvGGW0cpCzr7{w
zhV4vVlP>k(>`c34fUVG7c?8`v_E+7S9`o+EB#+q+WNiNZD37A&iRaZL(C%Sd$!p{}
zV<X?C@Ql1h9<O+QkXOUrC+vIgcXcV}u3zc-LtO%06ZV$m@f6zwx`O99y8dlpqcXN$
zlKo6{g*<X<g*$ZR^aZ`!Ss=#q1$OAU*uO%bUf<|ne*b&!*Ir)6Awiq;8A_L-?=O|R
zVG=THguoYi#aAy_d<v^yy~p)1UEtA4oNvGXk$(8`d-{*R{fhqfKm3X(&VKwPGeBKa
zdu*EjohP<lBM<ekui@a1$)&5Lu91l@PmjT=Wya*vo2F11<wO27ebC6K&GLAC(|$@P
zwp5Qf70B(r>!&x)vCfBpnyw%hxL_N&WrrDZfmg;p{G<k_($bEIeLTh1G}T9y?V(7o
zF)kdM{GvJ5uQ!<`o%E&d`L;iNs6wY#&1=3PwZ~4IV&~LIZ%1sBuX?oIB#*fsOpNWw
zFPeA%I`Wij|33K3DSAdKrI!m&<h;Gf0j0q1bk*HQuR2K==xS+kn66jF7IKAGq3giK
zxyBXSj-2WjeU}?Hqbq6t_ksOI(hXfTuYSZvfv%%%?$0ky*Qzo>ij8g17I;3ef6%<-
zSDCz&$xZP!jBY9uI83!^N-3lx;_|?AJBW;Ptl!Fk4LkSLhP`O?@%2@vprcI8bd^ES
zrV9m4ePhlCKia-FJG@s8q1ALlo8<gAY^6-{$aMX5WxbE`N=436;02l2-3RezyBE5I
zgIrD5G#$~~Y|EibgHOV9u^Yg~y7VG_>Q!~k`k^c6raT|pu$$BME!Y9$dG%eez{cm6
z>~dy+4BTL&c3yPY*bZFvz}&Tsir7p(ho1y_d{eq!jy&f)`@;_C#D0go4s0JBo7pIy
z=--(~oQ`P7tJ#4>*G<l-*n!RTya&2U|1N`cO^p=faUUW4$wo2HU)0wKJV*K=-Xn4A
zfB*8`8-4r38_UN9{;2vIW3rypW9j#;$RU)R5=i@P_S02YMjvJAux<nXLY@lgWs_Y3
zW2^s%+dKdI<Ar|v>q39~n@xS0qCr$4LeuQ2yytg6d{6)VpZ}G|WG|On{bf@<+DzuQ
zF!7Ip{TJ*)*oC<TpUjZYLT{4ad5(eToA175U+q^PKM<la5vd7B#QhFmL^ofpd*I2q
zA5ouJ+$s8dET@2Ks*8LM0@0xo9O8aZ4RvK~lMmV9Da~cb^KMbA0Sh99<9+d3VWWtx
z`l1x-?+Y9Uy3tHmt{e2%Iu3LX_)vZb+&jZYGhHM7OQ5U$w&M9cY~i!fJ<~1V$aKvY
zc8*Olv1rGz(OO<P1TWBalGlL8=)S^M=HNaAz|e`jPGg!C&x=R9#~`jAbY-I3J#2K;
zC2xAB%PBU+UZWf(naDiPZJ)|xk_l^?7JB|jCX%k(yXoAJVM}^`kjMC5igB`Gi?)|G
zDwX@o^~dshCXdN}W*dcP$^&c<?Ev^&%3R+g8%1<#2Oh~pv;%js%{NT?JJGfJ?%Lt=
z{P{0`rhoh6AKAxz+2nBOs%b!F$FcWy@Etzaf2ik0W%^XL<F)MvIvH}&6Po|^wp#Ju
z|M{QgwBpE!T0<U1-`WuYL`9Qr&DyTk69tCi{bhdM>Imfrn$$XV`g!8!ysknz+Y@NA
zz?7QH&s&ES>j-VRli-o=R#(7YlJbx$fW0Qo??OSy3el0S56a7eZ__o=l@8djl{jOA
z6CED4cct)NCDDEAq;X%UW8z16H<n?Vul!#1OkVM9G?JmdqMsx7vcUQtY_()Pq~&`8
z`y`KvZU>&Hcf&mt-Y33Glt<9Ko?xGz4ZqoYBzej_q)FE2=k13qQ@Q>0Zt<#j>_F5r
zU_0n>D60!><&iwrR8AAPNtbE@f4A<Hyp(lYXLjK3{SWLw<ay=^WNv!)AdmAqX8RoJ
z8+Fy~Mv}+aUe>ix#*+%SLHxhn`mz7^kN-s9{~(k9mnwsIr2Y{dhLh0EKj|xP>kGSP
z8dPPe?wG)@Rkt`+nb`SoqwzQc;J^LDKhf|1@Ne`#{Fdl{`mevH|NOUK(br$USQ<V_
z{m?Yur0h+ReD55dpi#7%W3-9Xa#Z;ar%NKGIj41#iR2wo=|vpVcGc7t@_$=k7<jp^
zMi%YL6VXi%D6Bf!#%&X~g~bbw`o%=xj&vzx*pV`VVO=9O(g<bIBA%SvH7ZieC9P7`
zca!MUu{)B}UNlc>)5E(KlKXffyi>>#>gN?XUA1p+5<!f*QJ0*_R2`c#d0^W$Rm(U$
zVbGP=cf0J`l7mlW0jO(R4cMp~U4?G4W1}e^#x9jjbmey^k1&>9qLts1Wk6-Zu#xN}
z9nXTU1Z*ramCLUhO<gF_wd&4*rte0@4x<%6ABWF-iX7gdv3rV<w#&{15edg8eYe&f
zu{Ba27LES$T@_vV0&Iw^?nal$^GsKb`b5+@%Y<NqJOi7wUNt(u$-60y_T7dwMmO*r
zJSHrT4Q#u<7X`X&+q=<~>}&*J-&M~!b=+hJgmzcmr89OM6~&Hd{_&r2o`A>*3!E%~
zHJM->ca0rJf*p1sVC&A8qIO_!E;EP-giLT$c}S;Y@*DZ0QRhNuks%?9%5z6QC_4+<
z#B)TiVb=n7ILRbwo3N3|gkWov9pD`mW(SJfN0R56|B4MZ2)e|2zl$A_h&Q)UCD>mv
zuNt(m>n?~Ysr&d@&{b_ORQL6E@9W#G{;Sx<@%i=k;Z4?dZWH{CKJoY4<ozhW%KdvA
zIz9rVI{(&G2gmofx28Hs{4CesWcS&pH>qoY5qf!FpM4Yb4?q0)<82K5FZ9p1f8)(Y
zYFzd?E=Y%fNd~7GXp`NXFZ&wAa9aXDB6^f#LF&V8api{}ex(2ZKmH^A_ka1f+hV}0
zW?qwfJg{nK-+^l@BKNUe&e_<#yfq8b;)SiTizJ*Ch;mu*=~5p2*7*FmWCx4*x1(Fa
zxfqO%&j9h9)Qk;nE4Bt~p>34Q4wpW+P4IQG*nWbo(3Got)Dy9F@&!iFtx=n?MY{5G
zU7zVjbK6DfRtgq{kL8Z-8uX$|+eX)J3*zW6Gq%C=60qSc6v4KiVyjBG9^Wm{ZP@W^
zzy{iwOmsgJgeAGme3RfK&znDCQ+aK<ZOE%)M>>%#6T<WBlIPos=jq+RbDR7m-;pXo
zi*1(29<Wtectyu;bV=Atme+(W4jQ98%A)c$VGDF4S!_3XEz-eH*kaq=BiJk2rnNkR
zu5Jgq@f`AcJ)!HC^js#9XI)~RQ=fFL9PGea9_8$+g&mk|)E@e)S!Q~&K?k}vDUWn(
zL6=rGs$~0_u(=)ROFM98qk6If!)}9bkjHEXq8^VLqCED#lTUHU2&9@FKzTWoSCyIG
zqy40*yij+Z6Y1Gh!47C3fsA2xK5OtF{^=iYlmCArIqX*^|7A`EIxx?r3SB$ZJ2UzB
zuJY~opO#Y>9`Uar)v1Hi$U`+A_+51XIihkT3hm=pAL#3^enlTXe&k3M<myA`hAohJ
z6_*(q77SuOF*d5rg^nF-qA6b(wrSXRBF+7%c~n>BfjJx@QbgzuZA(H;yWh%dwJ4xc
zJ%6VWIAMD~c3PHq^2x6l*}bHz4lphlaQDzQ$pGcpHaXTi*kwy@lkL9RcBJcg7OQ_H
z^OVR8_7?JYW}bU~yNF#3*P3n*$^#EYCN`sUq?;TJ<{d!Hjpo=@UI*4Qo^l=ll%Ml7
zVt**FA$pohS@0aXmUSu9MI9Cx#>Dd@wzWKCWp|=0@0vKlzQ9H(Pj&#id`w<-z+3Sy
zC-Qoq=W}_)5~KaS91cjtCIi}XMi(tVlL<cf^BJD2%piAewx9HXuF-~7%jN9YAMyOG
zT&4+v9q6h{lN}(Lgi-qnJFvF>Cw74JAkgaA_x^<aEFLkH%W+P|h#>y)(<l1=`ycqA
z-!Z8*A~natHc$SmjucygmuN>UU=<t8|1yY=7yJf%=1DfyT^Vr8jJ5a<SDus`5%^=b
z#n)foCjWo+EAbnu==rrvr0($PN4kbyx}{~|?bt;8{D|}BsCJUct05zoO?H5ce$Ec*
z>OKiQc5}S#x)ZEco#>NEyb-L*j^yr9@v<{V?D>lxzR8C>DYh~2;ECE!c9zancZ!XO
zj&Z%|L83VD_sR#|%0Y*46nXawBJy`Xq)W<o))g+_!y#NXp1reix)q6j#lfH9+#qcA
z)q(o9>EWA7H?e_@C)b8(Uu>IvXRJ=w5y`t*Bzf1t%Y_GBPFEj5N+j-xg5@apj)>=K
zlc_JD+wM`rGO4cHztui7-GMD(=Ttrmy5an#NY@Ell>xx(b+?@jmj0$A?a<iKq!G}A
zZp9}{T^=(wJtP{@*>6`(hof}gXS#A!vC&oJalAIm@9yaas!obCHhxz*h)w9W$zW99
zZOD4(-35?|3lCI~wgu<W$nKb82L#8oEH1CrcRsMZN;zY{?rcB#yB=)2>A>o0x+G~<
zWFm>w-U@b3$)yXgvQsSR(yqD&y21{Cu6&SMWf{8i*yTn?k_h{Oedyk1GJyj?H};R;
zcA4PV)b>Z2;O|%L2$kI}JSpCro%3_Rwy*<`3ARy+{ROFbR(7B|-Eg4Yj9uiHclWja
z*bZ!Zp!KlB<f#oTUCx&1S~cy^)p>rf1H0JujR&q(7iAjD=0)u*?{o;*#{2XAg;<w-
zcOcSaX%fO4h;M%w2k3Q6eISz|@;qbJ!}G*O5#!;5n5*t|xV_u3l^0#eXuUa46}z1K
zQ+1)Paay{ud*P)v`s%}+)3_`CvE$;~+a&bskDoYa?_hSh(eH)*1@#{We}=5<ID+jB
z{o+5IUE(%$_aW4u!_G93YyHfJjLPnhVJ|;^_(&f=ekErFe0cHHPPh6lWmEqT>9;UJ
zkMXncfzO2?4-nbY&V7snH(OlaZNiKFYSjywfa-?{R*8<)NpO7^*3qJ4g3=8e-j#PF
z>1vdWwG{jCiK@44=V@qA17oB4OcnOYb+K}{U9oz$2d%N`pmkkt*t(`%i*&`DO3_po
zj;)1x3!cX6&FYppl_q0?Ds=9eiZ-4rhVd^MU5o8T##qTFTzSmk*hg)bz;mK9%}a3l
zw(3}mVef1UVLy6mTl!+*d6{IQs1K8|iA+7@Iq8IG^NDLw6_;0Ft99nNVb^h>zuPR2
za{iS(Z|A*`r#syrVN<^rZKM32JeK0o<87ZaQ2?8Wm-oe_<MFIZqUY7+wRa2Xy8>G&
zm<8v><*oP`Qk}>q%@Gs;o^yasov{(#txHfr<T-S4Qy)gKId+^)!~PlMu@tjWQO}$D
zKy|~|ACubJcVA_qI_i>R8-YtZryeZXMw!p8Y4uKc4s1f#ndi`BoX<v+eeEg}GtWU6
zwx4~U<Pkvw$T~ng2Uv^`c7|2)OemOZ;(2Kec;KCUR|I5e+th`QNzbv^zzZ+k?ZD_;
zYLr(j(2^|N4I2f2Yt*YJsA*r)*}nYdE9g0)b0h2q9*fpv?&0;*E4}V-Y@h07Ge2si
zNRsi%rZlP6PgPq8_<Y~tbOAuH%Ibpj!Oa|fW}2=tjt+P@%!thEBPZjv`C$yaz4W5d
zn54$KX#K(H>I4B^WH3R*Py`Ey*|Ba5EX}!CtV#%uOn50XL7Xrlr83HYB~H{kb)BB_
zh(&G?5j|R7yFagnW;zh0JN>X)gQ!K-34KX7QV3k&yF1wgmeHS*;YxI&aKE(eZP{d7
z1)W7fIB&HHtw+*#9jG#Cj4#EE31jUt180W}ngr^kr}7$x1`5ecgYl{{zim}Is+d^Y
zKFKJwaDEHz$R<G1HfZ4!_N2lhe=J?MwkM9cN8%M_0wS%d3Z2Q9(%9ZpTenF|m7y`b
z+Qj3r$WNoIVlS~X0Q-!uJ@8zILoz2Lc>0WuR3;`m7MCYmeQxMnJTl(er?|l6GTLA?
z3t7h&S3YHZ46?3~7c6fid=G;ii(XJh>hXwyhuSg1z;!bU$`{oYKHN?Z!(+aAlor7@
zkn0wezz5@751kq4*xBIXfI;U2^ce5z>CQ+y7T5vli@JB>dXlKicL_4!bT?@#{=Elz
zHeE1PcbzvIS8JlN+=r+Fyt=<jpkpE9M3m=FVUY(isu2`Y_q?z-*#XF3#7<#bx7nm9
z1@d3f)vop)eMR&7YT{{e8yEQihoovJ-<4NL!NB&X>V(*sV4=zrQgrc&e@^95tLce3
zJT&XVmwx#IID7}#%WhFP5_K!lLSu3U6O>~B&@^S-xL(E}Uh|80l}#+JiCIw{9=gV|
zseLZmEm&}+plhUqS-16}6GhiRq&9`vNo~G(1;OrS9`!$BpAi8IdGAUSO!&YNtm-Ss
ztEw(^wXxkJ<UvmK-_RfEu^-53ug3q8$uo6YRbDZ<f__dS#9@C`@5!;sL>zXu!6p^`
zf8humbM^ym3Ga@+#uom_X@I_gl0CE@G)y>%e=P^2qF*q(K_T!0*b*Ofw}9JjGFn)4
zk(hpOYeYwv`M`NA4{{B<PCOp(R@AQoHnl}ncMmjMkOd#ed^SX<G3A5L=(G#=xEy5;
zi@mXXh*wv8jVM&2GV2lsfWY2W=7anho)+lHw%!N*-nQ$E8gru~<Po**m^`tzm7yv?
zjICFD-hFQ}yWzEA450&C*aY&O6u@pgj55-Kt^jH5e#1Dx>E`_o%A_vRa!Lb2*ER5=
z1XB5{=otrfa~m7<$@)`@4;Pakl)Jox7V_DA7m9`?*tDjTDd2gbWOK;*)Pk`E-@;^!
z*(lImZIDs66r-j5+CzWq@&W?6T__VBs@81pPSST28w{%aP^i-QieLfFXDkC5JwRFd
zFj*+m2-%Syt6p@`V^g2Pe;dzUG)1BN51m~1ez{`s9KJ&~5ri^mCOcPlSqRmr<6$@Y
zSP;+yFnAGu(4N%ZhQJ}zhqF#(!noN4vGn<R4h2Csn=Wp-{A0|`{bbQVA@vvdvyN+b
zo`92-k=LgEdnwkZ;-Gcy2E}HP^asrrtg8Khz#yKB(0AJkCUNz7JqyLoX(6&`^kQ--
zfo@}`9_DO!1U?jBWUM+FSW2;lKS^)X0$qh>yqGJU3-d_2ju2=`abkU!@fEpUz#;K+
zK)2kl&@3oPz&4!>ueRX7D^}S1hVw%dTUVZnIc?qtli(iOENSaB5}vBf8L4?z?2WK1
z5p*@IN>^Dps?!)~T$~zC<r>qLJCRLpV~j83H3Zo;8~+!zox9Slg6Bo}*0nD7F~b4|
zzo$*Y?tG(6Ch8eT1@kb?0<LUwTg`bzpQ}9A<8(x3HW66i+t4LR1;_1oNqxv^XLV<6
z)qa@Iaw;m?9er+C5FzNA`+!8g-~lWb3-ZtjXQj6VW<sX+7ADfA{w>jkg9Q|eq)8^b
zziS|d*_hFm_OTKO;eDvnt!n?>lxyx!usDxJ^}T6t<#s@9kdDBuek^z>U8?(SSV)2&
zg)u9}ys#@WE)e;HJi6|H$Lj0YI7ECVOKqswbP(dSAeZ$Tl&7hE?FD`x1sf!GUCNbK
z;rZ6CRLnLPeK$}4+q-ZXJnu@$@!O}joql+gNPjGF7@Z0h+{hPE)u+TxB@3j`Adh)5
zFv_cVl`Q*(IC$X0%XV7;DEh8yXLJEj{D-T_2dDYDaHtC3&)IdxT!bC|i#ZJU5r3-h
zuv`E*>x5<Xup7hVpKtk*fxHjwVJLR&rzIDpseVchd+$L|F@PQ~A05B&^w^rNe(qdf
z{({cBht-qgeLeWDvFPx7aK4LnT>QJP1Y)w;1_hI9Bxs?|IDn1J^$F+svmJhwFrH9r
z`VE6d3~cgEXh%9;<w_5WDR=6|g$YEXyAC9cu6hp-65_klny;BIag4;6)xnQjWqfe6
z;$xTuNbjH<KSB$AqCM$=qJ~PRXE3>HoyJkn@C%{`x)~F>y;E3dh%_P}!mi$v65TL~
zFOw?%KJmt`KcAVDNFQ`4;urz|Sr22AJJa(s=Bd8Jy}3*r8VvI7I*gVTiuSM;jBrx_
zS`U5ex_8xyuBtn9uoX_%ENe#`#R%DJ{9Pv~sf1N)e>&ou7H@R5Jio_ER#tQXW^`z{
zY>{QMpJLBe_VLUXM55@t5!ZR_#GqIADmtxtzA$k`q?2#r&><>;4>Q!!7CTo}4h<xY
z_!|cdV&bGyNP}k$ef|pkU*pwH7ZF+IJ_P~=q#xeZHa3gy<DGULy92s8UvUuuf;zbo
zCFvCPg%B2d$ZhC+OAF4uJmSwt8X{@<9=pwMYa1mK=g@bBMddb6(lvE1DwX5w#IA&n
zYLedtsXgk#hq3RA{?6|KPxW*0UIgv&f=QTEl+SRi`)S|8Jl4TO?%(q(qfP8)!+Y?=
z0X?uiz)B<oX`;!8gF$bY@C)r0qNRa}nC8nTc8iP{e4#$v6Z@@aZRo1arWFWn)NgL;
zH{UT(%XSt&Hl1V@nbt+&J};oyoNvMIyy1(LAXBkVq98`TH5?Ogc7QLfe2JNEEB{W0
z+8Tsnk#7_xUIQleTb|Xgru~+@YY7aA9?Sgc%(r=TS$`XBkvCV8ArwWBz?Qil(Z5Q*
z?2-Jd#rp~kGkU+l?;|^`kBfsHiT51jUiIGn2iz^?O&1bs0E+RH!wta`CA=$@uprXu
zuB~(;O@0q#saQ}&vFO@@2?ZUT%i>10-A??y;_M)?gEEm+Cma9E<o|rR|DgRsmkC6%
zZ#t3Ho9(vY9Z7s{7XtN~{9n^%bnR2S%8uDA?aL8xRWNSp!Pe+x6#50XcP>R15QTEs
zmtHKgmQk7gjKb^-xr`2a)5(>*#(p^TzYytKCZQI4;Z0zrRIp<PnGWxO_m8@b1GkG#
zLR-LP;1zs>4$Nu?YVae#1DaY^n?~IOJPEpnaWL6E{(^yKB?JYc?rGswcYJhG-Sa+z
zDD++S{!CEjd2^F7_sOa65_xp2-aaOov9ODG5ZNHmE!s+*x4=TQ1#(*7rTBoRYu{JB
z8^Bx?u$jE}7>t7ViVLRdPjw1GZPI60Kv|u7jN@PZQ<UzkUR#LVrnUU|g0=?SO?_9f
z`5>3wxe^Quga_3F`H1M?@RBoi@-?;3u-{DQ8_a|XLYe8&9ltG*W5*^1mh0z8^MW0@
zgy2oFQIQ8-U#{r8O??^4@N=+Na+|z|kJ%&t;`7C95fL5d0(HW#!*TB9_QEE_G$@c?
zhRhalHER1Xs}UFy<iE`RZx6u|%>+yNT6N~3o6Imwi3*<<*X4V)xmbC>*vET4Cg0sc
z9?4}k1Y;Qm<sD13e-wgp$kR`b&xqb<KX=pl2hzm{^A$E*uoC}4gAi$s`iD=O-{(Eo
zW%c6}ArgK=L|5zGCQsNfjT?AnijP^ly~vn6kzD|MINQho)VxPSw3A%!7V>n`JVzcb
z-5y2~VN`V`UMdWA!SdPVMrYD}lH0rv?YIlMu;Io|bA7?#cgKS0oCQ*<bHUT))z9v+
zKNSr*pvt{L7U1*HBP8Bl=={l}1z`m9RT1%9%HbX4Imhoc*gBxxmUuwv?nl3_pC3Gz
zk(<x+sUas>S#GMCvQUEeQC>{)cI3g~QUcZ}JD47Yqqob-tM(rWa}Q3O;Lv~-zW+kc
zUs#y2aFj%`Ohc!i>jeMSl8C2w1<n=Utz$lI)%#!c2W_d}`Euhu>u;=o{oZHSBtQ0U
zT7PKOe|0QHF~oj|KlY<O9pB-22|ZnqJmMC1vfjskr<Lix#e|iEAVL&wc|gOtZKql1
zI%ZzU19T!(EBqb}y@Xjk8ew%$Y%0@Y)V*PVL|&+SOjHLXQfvH?C@oF<gMqyAyXr)Q
zufG3stuEn{aHRw%8xc>vpg$bj^RFz2x}jJ^@-|`E2i<Q>ztE<xLzw72*k6~wvXCQ|
zA3U?LVWs<$=v<%ovt8T1O!utybWIdm^sN@h7y1d;Mhqkn*<ur-Wzl!dGxvABfMefP
zZJwid@4Hs&7<G{8y5DICeh)ddrn(5;<6|2h+YMtg@q4QHY>#YM?8A!s1rPf!jgCS;
zxu$IP8zOV+UEarE4?ZgVJ|f-ix^9yPALb0u0UPtPr{afx&x|)>nf>NwgWeYW=Cbg6
z-t9MQ-?frO$m>&nGadVA9mm70q{`_|-{rn#nd&_Ao1OLjf!}kilW20wPwsy7>pj26
zehM-=`^{yt7i+)yE*GZ@&qrS!J7VG(V#Nd7y-V4KE#C7UruX{%q3()F4;y@mtwdTT
z<mr__C;v_%s*@KBo+H;6c}4#L-zy=qv~c7zN33fEChxe|I;Sa<pkoal8E)P9LG5-&
zhtcWO*YxWdnSRc0@~@#iOm3RJjOwoX-cInH%lNAA%DR>-qe<sWdN)f8qt9-kOk1F{
zE6!Qmvt0~9oIX0v6ExdJ#@wsrU1RpuoKH{o4|Afsj@j4tcJ8}C*LxBIFK%h40Aa$u
zt}Tyyr-hxaI~L|j@7H1Pq3!W=M;bC&xbN!gIiCam`2FO)Hhd@gtiEe;SDy3n-`sa^
zvCoLr(EEJ&c@D%EgIn;MCv^;%%boG<cKGF7vK+&mek;hr*_=;%qVHbnZlT4T&l+d+
zz3$oDGhb@LzGXXy5&SzY^B=r^*p{OW)Uj4q2?=u$M%!%bkInJL{H=5FgDi4wV$*by
zP161dWh<w-)u{g}{h#y=qO(|#xF=UnktFW`$SW}Mk`AlcRw``uk=+}zor-jUK=LH+
zW=(g&OPFm$RH`Xq)WxpkgSUr{(tJaW2+Ey-8gqFjeaCNlKNFsMVqd5ec*ZsD%PWqT
zV*Rp`Co4B3HA4ep8`H9K!j|#JRWz$hUm%nt^+C`bzwEovY((iaTW!tlCCrV&Hf?<|
zIvd3Vx?tZT-lrwHvApZ%T*kkui*(jTzk?3iJ~sDGd|R~_;Pxt#gQzgOztfR+u|AAE
zbgco3+=8w!eX$DcFc-X@<!oA^H=AxVvlNZFy<3nIgB<&V>7K}!NTB#kY$RQvrSXE&
zvv)oR{5b4VI?7c;sf|NDN$ySf`$EU_JBRr9J~53Z+mq!1^%ZBl)zgx`#m~t<jy~4J
zZ!+`fI+JaW)?HN3?YT*BbdptjDxp+6%5_xT%*(RIKJz8;z~nl~D$S%do1Xj?zdh6+
zY?aN}n%xap>xsMue$VeNFQ<DcJT(SMG*;1pB0JZ-(#{`vOF!v?K-FqW*usxS(Fy-D
zsF!OVppr#$h|i#hv{EBKfYf&aj0<@kn{MmmBy`O_S<Oc7)wm<}pG51v(S9lpI_ja-
z6Xc%!`=ReLzorK{4ecKMfdFEKG3hI&LVL^i>xU9XDA89^TP3pZ(bN+*i{hc9Kb8B5
ziH=!ElWu0)6IBQ0QNQE&IO9h)YjX69h!%Z7{u^)|`j(^b!UGthd2D>o_P|$)_Zdw?
zyS94K7xL&f#ov$Y{-XGL?69IA6YIx9vb86Jh?ZyFSN?_E>`gS9qd9ws=8XJZ^<DON
zrbCR=nIjw9Q3t@oAUl)av+BDh|2Z&l)pt!5rgmxW;<H;fw{!f>#4FY5*E6=Klh0zf
zy|T=RBy!5O2P-{wLaAUtbjfqu<Eqfge&Ppomn1ulV<79KU%9W&G;$<D9(`_-r^!xW
zq<7R^v)hv%9mhsi*TJtrxjuaFp2=Sm8W#8u7_bv2`{n!wNn;|*+DJ14zYnRk`1w_T
z@XHk@t;A=r$>gS~h`VPP;DZ>u<Xvxiur#7}p*yV*%`+vzevYe#zH%kMM6)`XNOV{5
z$?lbT{0cd>=PUWnf&(h8MkBB5qI%$(Y|qMmEI!AEl22pu9{qvIpXqey0i%(NeO^E7
z>jFKZ4VjFrK2ULYaU6wa|NhQ9=ABSxH!!h%W_$EzmN~sa0!8SwpICm+eKbAstf!8k
zsiV#EmFIj`eQ|N}uH~l$A~pA8tdCyHsnujYZIpLf^d*$W<%_y#?z`N-#`xWwoVl;*
zO0!B{2dGwMrl@C3ndXNvd$tAfUCG|T#(j`wyo&uj_FYyOY>#wm?NGmcj`b4F`V#fX
zDr|G#b><6aI%s<qbzg0^b@nS(yk6QH*rY|9M6(P6I+P3(X|XPrpPpPB^xu8DPxBQ7
zAF!)T^`oDwO}Y(eJOM9#yUrX$+p~Hu@}oo+x?vM(jQ%dAT>yICX_2(U{CA|cDj<nG
z^K<PUymJUJ|2KT^)9*IP-z9&Y<(6YhvwOZiY<pJWj*)oa`y9>VgrUh>C(7CpSNiO+
z*m;-*r|?`4ZD>8?F_X_cl8bl%K7N+=rRjqv(y^D8car8J>GLyq-;!vtVtB+gYa=pY
znHW2<U9e{_VyZ(<S0_3TAt0LQZNJ~gi}%MtGxAt5r)pl=3cZqh1a3F@d$9V`NYquZ
zA26csVjW0nF&Z@WpbP$5Q3Z{nN0aZW3mIMYl+lu8dZzl#$miZ6)&rS~gQ?sT5*@v;
zd-wL#<^%5|$v-XS&fgcg@YcPyU^Ur6c&0fkHT5-)spvK~8CQ>ify!K;bzSn+C5wJ|
z??A5u{{!y|Q3%PWgZvoDBkj6A9VhJSQM8OsME%r$PCXk%uff;Ry-k-X+#hM!^jAHA
zD%+l*r;<~ZsGoZW{(Z8!CDG16(JWute$E*AS56r<--Z9Uza)n`%LEF^wmbf=9kk~0
z#4flJ^zD}c{Qb-Q2LFpg!+W1o{O|#-M7AY%*9CPEt!BPtyu2UHavCE`iB`6Iem2@A
zl+N}|=9@!XlW(DI6pfAPA>t6SjeaY(mijJV*e06v0QD1T-<WkhzWaed%lDuCuiV$f
zx}z=6HbwMkr<lXrvCj3O&X)d0{1Lc68-{Un8<XEtPTrv}a1hbG(I6HHt?!DsIvx9k
zY?oGj7I`_grC6OrQC39OVx2VgUA}t^ZO8YCw4en>v{lGLl3T`D!s|p^TkXFyHM4z3
zyZW59vGRLz{aJRTwOKbv2j8nYX8+0i&`w9acD$ZaYL-onC$@WMzd650aR~TndIwBo
z#QR-lkSBL7WB!b<eL-g2Hn9AV_%Mc1SG14~su}#1--GY{#BWYAZuNNjgV_gL*q%xu
znm3lOeAmzMd;A@avX#G=^xR5D^w;X;mB=RjdHn+u`(@K8f1l`=0esBetFm=$=9ep6
z(QoiHA(DobGbwk;)lP)Dh~4Ig5Ktih^+P=+#Rk$yi2RgfGiEs-SJZL*&3zrEdmA0c
z4N;@AF3o*Nv0T_$FX9+uw(XrlB=U*9Ed-s3o=8cbSC?WqjIT)XicykKo7A@-I}AG4
z%~jtezaQp&%zvsr&YBivvhDH6UP3=goz`<c(eKf+V7TPxm9G@}2~O8U^Y~0`H_IU%
zXyN1d`0SZqmD@xeF(K?Mck4NyJobummu&U&a=kk4NC<u{k*<A&v84JAb?Ud!Hd*`L
zcNKj@w5k{}Pk?*Oe_!A}v~l#CW54IL@b;~5ws(rO$bHVjhY0!+eV=10sPK*lzPPP$
zo*(VTe19Z>znl9}na8tS_!Ogj_qm*vPvh+)<?)dY-j2@~20yFgcM3Wg=&62k_M6?;
zLVJ-`M16@R)P3-KR+#6jY6>`6ml1w(YBKCTs(wyKRsW%u7(jq})c5H>&4;*q2ynb&
z2OR(I*a1L(5UEhN&17qm4^*O%L@~x<!5BF5VGHCPwza9xbA}iG5*V_OTW_yx^o7>R
z_sMo0J~T#cxag1?{w|Z<D3|(0)5Y<t8a<^7S^a?9o>$ojWm=I&=yxen5vx4m0i`T4
zVqM#n$t!fa;UzU6R148?mfnV=l>_mnm3cD#u4;IvG3XSMwULHwdWWEcA3g+#B&Qua
zCrHnr)yTm!n!`_(1t-^Q<NB`p_pHCGNcz-WaYws43DMOg+5s(XU59&wwD$29`}C0W
z6N~Y3h;fs;)PTr@VWCxi5=0AQ5lnoOZXMi=kL+2YwepaVLz1R(kPH+%P0X`_l)u*`
zKh^nEi~r7NEEF}o<9$_rAusGC>%FXp4SXTj_aa1!_j(7a+vH%RG1%_9V?ytP$X==p
zkiF9&LJmjkLh|ko&_40NLO*(R@|v%1D{k#W)|bhTw%%s939l;VDL69~@?wP&=@$H4
z;kDLzz^=~pP(jc;?A$S1rxCq4m{%yH9T{FK^ywx)8p+qS4)Kj#exi)bwkOC0#H0j0
z=JphOm3+g<N$S3~uFVIZ1&b~1uybgnukgryoOQxA6f!x0>2=%VU3rhW;<PjMOSkKD
z2VC?!+29?61vp&LYkT@9biRM>SKdL0-+EjCP~P_DeuNw@&4Moj`p`K*?mcCM+Ma^L
z$7r&tW&?xzN<PTW&qWo%B9HYoD%&QL<AR=cx_{Mb(^K4ELZA63b)-w^SC)O3n>9Pm
z5_U8C(S4>(d}rCbRNWtozKz=aqIzYbtaL#BUmR>T$g-)ufgW?y(;n+!2a5j3`Vx7m
zYisUy7qUQ~7&VXnMGpS%=C5UblJ;F)`>qm<GVGMiJ+JyMg=qG!Dy?;tC3aW)F64bp
zKHp?}w67_}^WK_U2>Wb<qnUq>M<)ukZTU&sM=C8fjnDO6+MI2uNd7G@?_2c@1RbOl
z9XL%JKqFBx@l%ldS!js`Rp??ICYs-Dk$mvnJ0I|?TYf0cIbrgg55m);*>6@j)p<q9
zudcC=>0}23x~z`-)R#eS#Gw0Cb%xtkU6Ay3g(HzE?xG3%;C<W!;1Yq4p9<tvU&P#m
z))H^}+E!$~;{}7?OzJ1V?=qJ$$)B~=J5714d%DN`E;9FEQ{MaLoxnu>Xg;p`hZ%q@
zbcM8taGG0eTl)5r{br@!wX6JswW`<AZ|(&H@nFxReF%1;);#G!Y9H*S)MroxcKbLJ
zK;AP)?ful~y)Wf@v<QF$Byor~gc^P^d<^zE(FYftk<wFMbG1Ft+0b{1?eV2R<O#P(
z;cR=7Z=T2OlqW7s2E}jg@S6#B7v1TgXzNHXq5ZQ>XcV72u<;(LudV%$WmcH`E~bqx
z2#e~daZuY?lwNkN`Yudxso!G(Guj_WpVoDftC<To*%r+Aa2vsX1RI~nOJ;kRp6Xl0
zocA@(`Iu258w8me7hNb4+;``ETChFZCt!@SRgWMS>nmrT_144CCiQ>O-&8s9oa*6T
zHRsa~5!mrKK7*hx{T}$uelAgzUC4t@T-Z2|=do-NgbXJ`P(O*AR9_t3D$8CA0f;Nv
z33ZLaJ?N(OTYlTaz6*q&Hj<j(?DAtI#rs2cOmQgqOiI)i{T|XdilRl1yX)?w8d;b8
z=AwPqG%sXA;(jv++1S*O_FYjQgN%re>U=W487_{Fb$M*9ejetw%ueagu$L8McEu+m
z8+|P@8wlUk#_R>6R4C`8%=3lO@9~>x_Ip<H14k<RJ&QRX(FHnOac3$rR;+9sg}E<3
zGeUg4DwLJSFkjdy%{vSqVd#|v8cG)8YV8*FS4#2c=G4RWXPJ9=*8)KN?B7KwT3DUp
zZ{}mGmI_zb^_FrN&q9F6^3k5>eDW1BuFwXoE2j<T7sPg!@4G0I&Z<olKy%%ivyNbo
z8_%#}o9Lm9P6sBM+!9eftT=WIlRkuJDB+I>u9dr(J@@eP-L)gc>QoQy)bKemL+aGX
zi!+JMwi%yu`}v^WFxI!Z{rGG<p$lU^BS`m{(5`fg{b(UNr_r6?te;owobToDNgz5p
znX;CjdjbsqriPnkOyh&PNWWZN*Z<()qO6;EzNXLdKBpZffoHv$=&Ah8^@QQ?Tz`-U
zB3k03>0Mk8)V*F}q0la5WIA9F_jNiRP`$W+rqR)cMZVvA2j`XR=~Pdm$4nJ}zR*JM
z=y>rvpx4H4!6Av0r0^f=$$Q~@)+M6(nKL|?4A8zDK@~@N4ZlShoZnd|QrR$Uc1OkF
z$v*4$KXr)UGtLJ?|FVVu-sLXC%pLO|x}*lg#J$|_hp*Y;O#E|Cb<H-S-oeq-j-DQl
zPBc&S%2WJnS?ZO%Tnl#jOmAabM04L%3a$Mf^_M(dPtteRD@=jT_HA_tJl^KsS+Mu8
zW4^jjKkbWh|I7padWS2?en!76+XnEj1pfn=YFSoo^oYNqC&OSo_g&(#6`M1bUwW`(
z<*v-dKEy@8>)<KUcunm|M)a1I-xJ%4SXS83=PX-98$=eM(rw}Pysvj@Jyf;syI6Ky
zw+`iLf>joy-sktkcc<((OC#1sq}@q%2fsP?`@MKyc98p2R}Xs7lh91O3?PiUNry6@
z^ZV1C_c*&UEu`6*eniLjU;7NgX9|2SC)m8cZifKJ-zR=j8e^oojsqz@6f%tS>hfh4
z@1XVNgMg6^qr^U`R+@c=d6K{Cq?>QsCu{hZ$^YlCj=_k0Q(r*?3A)TZxc?yh@yVSQ
zW(pT}Ytbj3`suizXp*1VPR`FZM2ObVx2w^W;2zg$B3h1ZB33M@LOrt&Tw>pa_fGaa
z&ZAek@zxj5z2Rz1D7VJ(J>9j>xVNlu9&a~#mAmz8>gHe!rG8&%$rpU0GqpeKyQDvK
zo3^yM3%>^o_^S)@Hp@)(b%O2HMRN*$a-2cSeF3Drrg4|;{a2sM{Dv@JwVErDAhF_;
z*`d9XXyEB-)xN0{U!J5p(NR8DdaxQd#(F$xWxk5t=q<wU5m_ahm@lb4f8V41pnLDd
ziw}A@G?lw@FKzX4bSkx4?v7{Zq>iMT`dd597xFkjARRF+{23xz`<+3rXi?9o0g?Gs
zX4@n8=--n3*Kq%Ax7NOFZog~g@jYrObVzAWvm8xxuYGM}C;UX_x5dS;v-@o|H}MF8
z10Fyi3yJ*x{Cy56_&HsN&t3qKzx-c{tMMp@0N6qq7sRf|AW#&wd7H{)Qpj^fx>)4R
zP>H4F=I_{6#1fh2kvQ```SRN2Q~sWx<p>nZfvzjyosJB(mBz(_iT>x#T;J&>w<tY&
zu!kpaCfMTi`Yb9(?C117TuBjD@Tb}qij!1+Syz0Aqp_Ru7u^Qft-&=G{~Y9})5KSo
ziFw=lb60fF+5$m%&tNQ{QRJn(om}~xh4^fg!{_QeN4OSUbP1gv%ig`S1&)p2Sx+mm
zuG=4}Y`e||zDLYNkGXNC8}Yq~?A=fG`^=tVHMt#R^`7mK-)4G8deA}6-zQVK&g1o@
zB;T72u`3R0{I?Pe=#-1Mz&?^39E@*TzdNINmVUXOyt4DvwFBZ^Tpj(9$UO%5QTP3T
z(RE+s*HO;zUe?!UJCNE~*bm%y^g+_|q3=2qSGijwc49xL1~&RZ*%r%{{howj`aIJG
zb&228(+l@CRxXx$)_zZ)+p{R^M}AMC=WPD@Zws`OUF!=QcC7Qf?_JZrg*%V_pS@A&
zudO~hH(}@RcMtpg++$n2lAU|kGkw=He)Czq`HtxOKa!vMr$`U3=?R;i<vG*x*?Mwq
z`FhOTBMlFJPmsGuZRBU~@ftc%upoQqedlfYkK|`<d)A==?Lj@+Px8OB-!t3x`*y_n
zg*Or;QqR2W!?AN|CBja|?XVyaF^Vnv9KY#HzK$6PNc?gVUP)>}^()j_ozA<X*%qw*
zW*a%`uW^UaGkw=u2eQvVr~V7gnA9(N)|Mapt`i)~@wC^o^k1fD9=$^$+qO;j+96t}
zcFUg^xcGXH-!p&qJ|+4-(sz~M2}Q)rkCJ<c_$m7h%0I&7V4EyeCwgcHj(rX~c)D}V
zevi%hl=t`=Pw;q2rC@6*w3p;(I{RgHEoF4&tJBek@;o#XuKbQj1Lh6hyUzM9i~&|M
zu)1b1ake?LpPuJ6BL21f9C`8{zd1jB=06?i{lvAzG1YVK_Z;uNuQz;ec)&kC>o-3!
zr=;_Ray{WUBfTdUE_Ko&F4_#+y~zg>f1@saho9?udI4Zu^B}(a3XXngp=0)KcNCmM
zzDxf)fqii1^~K-iJMwcn;f|egIpFi>iH;N6{@lcD-KNsJY(K|4dD{_ZHe^wm@qIM_
z%^h}k+~IMr|I}=!_vlGr%uM)qbt>3YCE+?ZU~}i`5#7EUBu^X)jb?t$zxD9F>WXxH
zk98-J`6^e&LOPK|7M<g(>n=OMeOz3E(I`tAob#kFj0q)22DDhc-%Mu;NX}*YyxvHI
znHN3O4VugMwLZ=K0v4M)E5|`PEgi0-jLJ%~-lH99v^AyN8|?Y}LY~)r4V3H#`S6}X
zqiEYmA_^uMpYQdG1Kq9GqrI4IK)jsKnTH<T(kEKZ&l1tn;hp8kc3bEc<D=a~=d-eH
zXYITPN3yq6CcT|yd0g{i5OB*Qj&)^wq|W&)6kIh8W_TE1wDod-@Q(U_#=iKk{_57T
z&H4qt?OnG=cjq;t{APO<dF_6|xK?ry9ZT#su${c!`MuV^+4jtO>oN@+)>G4~zRP45
zA2Co&x)!6sT;D}6d~?{*hRn9d>2#zWP1rNex$ipKv31`?lx>b$^abtWGkUMtp4_*^
zHez2OzpZ^RI^fBDT<_Iwc;Y`LUyXUvyX}}9|0KXl@5NJQcgBBD7IYVOKFhM#k=~}S
z`>xq8lJ<vjAmg%xx+A@3YOM|1(Z38&ncwVUEuYJD`}x2>_Y-G**NO(NpYm>VKXK3R
zIbu3{cX=+_kE4#Q12-@P>LxE<*EC_*1G0mzpuRHIANz6F&ET8hVpmChEPKT?_ULr*
z4dxvIv;K8sQ4HN$Nl)OP$wTBXzNdkAQ?Wvyd#L^B6VF$q^*o-N7xdka<X@(7SJc;P
z^2gLO|4Hh)gzvcT=wp$U|8l+W%7KXTRd~ne4oU$*K0Q-MU)836XFY?QWZNIxJ=#E#
zFJBy5$<FGEy6Sy&?~PVt|JYae?)9!^>5kuQ&@2ftnVll&NyeS+Q5>_oPT;YrPf0o&
z^{?v<plPHp&TVj?+x7E!h5eG+K?pC2R`frgTky|9pZWf5wT}Ij*pqcXy`J;2_F}CQ
zxY_R7Z(VKT-FyAMwLLoWI?KL2tH1dU*6<wqxPI)rqV4rIpf7Z1%<0u&$~@~{lqty1
zncp1!gSAeEK9th?9qdIUU+h;X(Gc~v!~4y2j&*09q!V9T-fQmrWBn!2>nK0jAD;bz
z@QQk$yK>nUtmMh*?|$=)HOrhKE33dpn(It{k34teD}2y1zh{;o^x1iy3cNUuO=i1L
z7MQ!X9)buuO;P<?6PMK>Gg()E?!bX}Edby$VF*rL6h0V;aU)zpBDjaHh}`8B@1(gj
ze9t0=wkHEkG^ORjg*0W6S&_-wnlTS$kum&ybsWf1491||jQ`k)kS#_=3~1MBNXLas
zDfas*3u^eT|B1g%)ueZfxT6xSp3iMT;CoxY^HhiGWNbgvi;@kDG$;#u%Q*FS-};1{
zeKa}W!pCCy3(@yR`ROO$;XGnnS<wN>q=b<#;d7Kbew{YIkL!!S7n{9KlY9~RL{;QR
z)|u%&k{w*jzt%C{NuNz=gT0%HSc}t->+MdHh<k;@-m}a!2bQd>(|1bkCOa_E8?wD>
zKk+&0fE^UpY3Ur!y5Wvjv^~+cb4+<rBiOkz>k6}^N7_Tzw2L{DpCtDaAB?`UgJ5n!
zU&(#I^uYE&XCK)f3XZ|CEZGH`+l=oRF?eRQd5{BpI_ZreK(11e-K{t_(72@EBG#X)
z1OC!3=ervR;Z^t^oZi-bvA%a#ij`cL?bY(!2h*envwe>PsJpgHf3LZ2eWjk-i1IA&
zBM)GbAle7yoi?*&FQa`|2~BnPQ*z&xbEB4We3dN2ygj_CTO4Sa>(6#0wjqPG`Q0O(
zDPfQP)2Zzt*Wt;|r*X<;kIM1=vz?0XvZ4pd5B*56&#N{VtI}ceduVPq(reXb#%I{I
z-DBT1`@4|Qt`BAVKCbLHTi@B8-ns8G-RfldQm1~R(-bj|`l9Zwd`HbDN6~-Ea<J?p
zdguodPYlySk7M2A52yQk!f&2@6s19?XT%!6M>)!M;hv*k?(`bIXNxrKbKM8oN$;I?
zin{l4JqTmQVfG-|&~e4=Dw7SMXrqGsg!e}9$i#PYxiGpDE#+szTV}sG^3AZOF&N%4
z>V^3eg(m+i+BUb)T29z8=r1xoJNXcKvhJ7bJy(y6mtTTS^E77TvRwI7pkb^>u1Utp
zWx|64X!4s)XI6GqW#z0d>iyhrj{QN@>1+dYzcns9ey7l6L#OKr+q1HNxzEg)GL~$+
zh{(nmbYkP|eYL&V2Tk?FzOCoLp@ofJ&@aD7Cy%XaeYWFyTxYgsF=xf}GlKO<K2I5L
zcK0}TJ4|^lY&d?;eOF(YlxVl2O`hrQ_Grb|_}f`OxVm?G`99wp^)1@<b~fizRHu8H
zeBSt6wCTBTK;IP4|IPCcro-Xc?2~dmwjeF?$2O+~znSv;2!Jdru@B31iTzc!S6OEs
z&H2RN;{B^R8%K-hXB#*9iHqkWUwd2Ifyt*JTKfXw8PI5@&ntT_fqVTRhvMIqhki5W
zUt>EHeHJt?)&_H$u+WqB!TB2w0wzkqS9OvHqFE8Lo%^ZRyB7eQ(LD&raRtT9j{YVo
zg5tp04NtCf5`^Lg)Yr#nL74{N(@$OhTdZTj`4fd^VaGOp{AR0Gq&eqGIdrPBrc*+F
z&9)R(Grrv<xfoUEC>B)d>tlXuHgeKN1=!p1)%{)V4W{?;Uo8%wJZ6VdoLYV_w57Op
zkh^zUwh`+tL}9<hF@9%kmF2@;!X4h;QNkw!rT?*X<VqtulQ5K1cu&+rp&rl;DQ_Hq
z_^$~-d>gWI)LN%^(WC3KTt~~_U6$;9$YrMo*{4LErkKp2pbh+P?ds>y(H4pu*ZM?{
zs6pVZ$fvDiE@&9&T*%HG=!u$f@+|Ums!IWn4RG@D&yq1Ci%}tEl2<duhuWuK)E-2d
zQ<-s%iQ#K^eQ-XIze{(W0;MuNvb~8oiDurit?9v5sO<qggbQK}qT^vUbfq^zHiEen
zIvO#^WC`bU`+|@h)_#pn4Q1V*qmM)EFV)a$QwHbf@f0PQ^jf5ji}I_}9r+=*5Ah~A
z_+kfeqJl(vV-gy6)@vimgZ7`R1OAdO?>pyUfyr6x(H8aao9ZR(JVlwATA{MAzj9x(
zo8hCZEQM$o9b#c}|0aEnM|7Y@^s{}XhvaezyKcXipv(Gw54Ior9W6BMr1wFwHwv4Q
z3mq1b9h1Lh)Kl2_E!afVFL;XnE`E<&zq#)!#;ha9@HSH)q_V*W)M+0wCfL}A4D{*K
zyOPzNWyAX}nmC<p4+XmS)c3$H-~sG7JKEZ4tsGtU_@eJi6A#z5M!a|)eoy>ML{pZA
z)fsUVXhKBGL>Te&(eKH92;Q3%m-w&NclDXZvGT46<gmD)51|3)lT*=q!4mXorahUh
zki61+J3@%P429Zbo9O#pqtEEzK3tX`tGOKgW{Nb#m}+Y2cyER6p_2S-GMcPym%qI0
zrpr^b7ZHc+kJszAs|VhcgI;ByDcUFalmJ!D#_2CnPhuURfyrW(GWkH!k0fooO#F;;
zLhb_v+k>dQ77VBl+RH>#kJvkM*K7#UFaE=4UeSl}-)7;68Xf(MV8W(zDC3!-`h@d8
z*r~{_C{f;bmC0tp$B^JNzh^BQbH9!YcT0atoRgjCXnW8#QPSHI`mXWI-eWH_w<b1~
z4j3}pt;lZ84tWlJ*YOP&HRwylIUieW36D>|QR+jA@}Nh*$J;X7Q)a(srdyozfj{Sc
zS50Gf>x0bi(VXPUYn$^4^0ex^Vtt@F?9##OC{pj<{LN-bi*#Af`NX@<=6t;Uh|gP^
z=X{RyIBUO${5|43YaclKBWJRc>QFh(zD^5uL(VC@XG<7RCsF2amX+AE9iPFcstO<9
zJB|zN-f3(velzf&&H2PpiuYaqzOE<km*YGhJ{Y@4zxn8y8joonLqNZMK6gE4H##qD
zkNFRw-&<KfNPMF*jTf?<VPn8VuO+&ZE9h#pJ@Fkxe!RwMZkw{-EF3CSCwam96U{mY
zU7F7zEtCV$vK0P%1r2=G4uEmxt&*XHSo9EWT_}_v#m1shVePCAA*)SdhWe+KAFv$*
z@z4^i@Feh^7Lz%SwI#z;@O&JZQ+{WfCL>u$;^bs74$Cct3T)msrFrodctug-G~-Oy
zDRLnwkPH||jY#(hF>(b&mpD^=#fLz<GArM_g^B`3SsgRFc9)-NtCT4fdepfCuv#HI
z!ek?<y+uFLfD8|Ldr_9{*JxB^sM)&@a;?E2V?d84qDapUf1w-!jTRw))@}7jEK1jk
z4rnOq$t-g|aE7_+W~w5t=^!+vYn@5wG#c_<pl5N&Cp@2wny>f;ouKJm!fOy_USt(l
zDP3j*Nr`jvYv@7~{k^S{)zRJslTdg#%d@o{<XxOXn#)7IC5<S0vU@fe8TcJdO$oeR
z{f6p1cj-|8vy{8cmFeB6_l17a;-FF3tL~A?T9wcR?~IPJsm-9te#eQwh;Qa?puawI
z)a|1!I@Y0bTOu8uR3p8aJ3jR9)&YOXSB(0ff6Jf62AghoqG^k+=IBLrp8L@kc)T8~
zJOm^}`*?KVBF5RKF5gP;@pvxxIf4aQ`aNX##D&($=D<GcySweL(TY26wPmaRJJv<|
zUQFd+E4}Xz^@TTywD9x<;oYa_$#GHidm@eH+1Vyd)Xk>a-T~sWN^2;S%b}->_8c@q
z-Jw4?<#+76g6&#4?^EAZvOJL8bF_8A&YP*a*LO(=5c!>~VW5b5HvM?OeSW5Q*u<j@
z&wUq7eltz<Q|!IZ+L-z-q*t2io^1F^k0LEKg^bqS4}LXK?3-hqakodDy669PqsC$E
zK`Z;BlIs2VQTOJ)t1s-tjPf8qlamyub3(YtWH0pH4{|zVrZ66w-YfY*ee%V!U8dRZ
z!F}+TO>fJ=&L-C1@td`k9)rt5h+}%!Jjv9eKOY)8r%${Jow)>&hdIdYm+R-b^7#Ag
z_p|SZzL0#W%XSRV(T+|}Onrm*UB^CM?w3BzHACvuKtIzFh;F#A%Y8gOX0jY~Fxgkv
z(Uo1I!yE+#G_g-SV953$UGuo0FJwOGH@?Tdi)NZnxcZshUCsGuJK1-ciC{m)T|l_?
z=(i->!~b!6Az!`kns>|}gVEfc&vt&YNi$$Nj)}wQU9o5T%i}3UEOS1&@1uomg9vM*
zHTPXnJ|fSErapSA@~BU<^!0-uG57aG_xi4*-xF|7e$V(N`pxtGOxs18-2bb+Ys+pN
z2B9ctHa7d;lQk!CWWnWvl{D=%E%##@+XxWi<>$<rdSBPBX56%$#OS(GyY#h^Y3Htt
zMC@>*yWdJ5_U&-aE?qsCs-s4|ZPWAvK*~pDUN6)(wE9Ky>T?h7*YRR&an?8MoZAJx
zxYHg+^;ie_%^MDynZvY4PJbTT+K<KfgBWTX7Zz;4&#_Hf9Eu;t(>DOFz(!46BR3PA
zuETzuS_|2aZ5x+4j3Hvjp@Ha$h|C!3J?70mAEbG*aXJa0Tt}~T9@`y`4Ib=OIh3&<
znB$_k-E_Rx+!I}S^UZab`cDP4-55^|^SLE8Z}b-{%geVvA|J!c2Yjx~Cufq%{YOL3
zy(du?+5gZ>?40p+EarQIhi-1P46RoqaTl$fPV*>l+ju-8FCW`Bd9V79k=y*d4(`cX
z={aHiXgiO?kl~C^47qL{p?+%{T<))&N#Z+MKGa~Zw6l28Hi&Ga?W*Z?lRUP^n6a(r
zq?=Z369$`xuUd*M7ra?_cwBp09Uoeok-Kb+KdMh*9X7_%5wVesbJ$tlVlp+Y&h47-
zO6|hWwO~HV^8St9{W#B8sAJY2VBf>|vpoGs?Q$|lkI@(C1){gv+I6P0-ex({^++P_
zWNo+~i*;rbJC`{3JnBDZb&KV4oyJ%V9y7$J@~DnSA2ClJc~7G9C6OP=Kw!=A>uqg2
zJ`;pB1$nZb0DV*xA6>WcGf7yxj16V4U6=y~?OES5dI%wXv(^vwzuDsAbw2YSJ^!rl
z@iA}L0qeiBnL4gx&h=9*&tFI%;=VA*C(B)+-k}fL-ujJxSO__B2`xHY_%OV`cCmfK
z{3K+S4{kg}OdrY+_RH!=mV2BYDy+`xdRV(ijalh?uGlsk*OBZj_lz;CxyQ&l{&~E|
z7-O_8jctg%*qTdHBOcO8^0~P6(z>a!tF;UD2>T<wCW)@N?q_|^*ssT7&TNZ)56WX>
z5V&@%7Z@b0M>uMF5=WxW@1t6T{YG3vtx`?I`>b&PxM4n16V8drKaCsVI%D4>;%ntf
z?uq<UNZ*s`aF{_|FO2%0p-To9`|Z9i^Nj%BH|zDb^Rs<3^X)MfZz}0k)#sutm%kDp
zx&e@(hbu4^-k25klL~3J2VFEqlKm1KXYw*kIe52?%VOhkE{yi(lEU@8{`D`|#<C*W
z4R~lhPzKYXEy?yzV`a8R{}_MS89@u^V_oLFHWByrJ<U_|jz0=9w?)=$m(lHieL`)D
z!~Qh&PG|o^RSD<X7xtqqZ9J*84SG%8cfC=MY`r`1iF{px`8C1=ZGH*%H@eTie1<Z)
zKK5?5=fB$~@}p>NPzQ$g0G(dzEBr^%cKzeHx5u;Gg}Di7?LPY-y|cCQx=2_v^gPL3
z7T}A;R(}#`Y}cCruZL~^W)p<Ref|=eYipl?ne^EcuUQ{4#z%QG^QE2M>N3V5tq8BB
zcpSI!qa0DZoXH$nU8FtLOW?8lFO%mQ=qe(vc13n)vimWf`vmI4>WM7U;~1<vSzck|
zGhpp%!Tw1<>s02SSQ{lc&S-RQ9yx!L*moJ9Ob)As2yeT+#%_crs-bKidjFZfjV;|H
z+4?r~*gVe94O$?B`!MgP5V4Q&_!GKqxnq75pl3M<=Y+aQz%R<p8fU)2<nq31uQfh)
z=Xyo?nCY;;9dmZkq40Y63x|>KA<p73^8F^hZ$`csiR;45N#}iu9%bKNK^lL)k@Y<~
ze?~ER_B+!zsy}Q@lsk|Y=CCY2TOilxS$>|kf=GuUCmS>7g7lf)<&ZN!SK1SK)6YD=
z$;<PfW5>75Jq^Z27E2=Q{=;mDwvu2x1D_XO^O^P4+IjY{o5X(B6Zw%YevEyShtF$X
z^XcN={29MYT(fl&vDdqr@c5m&PHh{=v%L?#%@X$nYj$HfZ31-`@&3bnd_P7W1$Mln
zYdG<Bz$j)j*tq%X>kFTD1K<^4ca*-f>{s8ldAIq0C%mKWUZFGIjo16W67TFk|6BL}
z=|7*r>lxWse3krn&vgZhTF>Y4-D=lY<0tezSNz7lx%}q^SiPR{8KQrA?kT)4D)+oU
zo~>Q4%sp3>|2&7f=JR{b*<X!!z2@^#eCrzkg+ifFC=?2XLZMJ76bgkxp-?Ckp2I~7
zg+ifFC=?2XLZMJ76bgkxp-?FNIQ;2t`zwV)p-?Ck3WY+UP$(1%g+ifFC=`Aa{sF(i
V`^tc+8hHQ!002ovPDHLkV1noPMdAPe

literal 0
HcmV?d00001

diff --git a/apps/web/src/locales/en/messages.json b/apps/web/src/locales/en/messages.json
index 76dcf2cb97d..6ed8ffe9bb3 100644
--- a/apps/web/src/locales/en/messages.json
+++ b/apps/web/src/locales/en/messages.json
@@ -10698,6 +10698,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Restart"
   },
diff --git a/libs/auth/src/angular/registration/registration-finish/default-registration-finish.service.ts b/libs/auth/src/angular/registration/registration-finish/default-registration-finish.service.ts
index 5510cbe9f30..b116a62dd4d 100644
--- a/libs/auth/src/angular/registration/registration-finish/default-registration-finish.service.ts
+++ b/libs/auth/src/angular/registration/registration-finish/default-registration-finish.service.ts
@@ -25,6 +25,10 @@ export class DefaultRegistrationFinishService implements RegistrationFinishServi
     return null;
   }
 
+  determineLoginSuccessRoute(): Promise<string> {
+    return Promise.resolve("/vault");
+  }
+
   async finishRegistration(
     email: string,
     passwordInputResult: PasswordInputResult,
diff --git a/libs/auth/src/angular/registration/registration-finish/registration-finish.component.ts b/libs/auth/src/angular/registration/registration-finish/registration-finish.component.ts
index 7ef4d9690a7..1d1a2d8f892 100644
--- a/libs/auth/src/angular/registration/registration-finish/registration-finish.component.ts
+++ b/libs/auth/src/angular/registration/registration-finish/registration-finish.component.ts
@@ -10,7 +10,9 @@ import { MasterPasswordPolicyOptions } from "@bitwarden/common/admin-console/mod
 import { AccountApiService } from "@bitwarden/common/auth/abstractions/account-api.service";
 import { RegisterVerificationEmailClickedRequest } from "@bitwarden/common/auth/models/request/registration/register-verification-email-clicked.request";
 import { HttpStatusCode } from "@bitwarden/common/enums";
+import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
 import { ErrorResponse } from "@bitwarden/common/models/response/error.response";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { ValidationService } from "@bitwarden/common/platform/abstractions/validation.service";
@@ -77,6 +79,7 @@ export class RegistrationFinishComponent implements OnInit, OnDestroy {
     private logService: LogService,
     private anonLayoutWrapperDataService: AnonLayoutWrapperDataService,
     private loginSuccessHandlerService: LoginSuccessHandlerService,
+    private configService: ConfigService,
   ) {}
 
   async ngOnInit() {
@@ -186,15 +189,23 @@ export class RegistrationFinishComponent implements OnInit, OnDestroy {
         return;
       }
 
-      this.toastService.showToast({
-        variant: "success",
-        title: null,
-        message: this.i18nService.t("youHaveBeenLoggedIn"),
-      });
+      const endUserActivationFlagEnabled = await this.configService.getFeatureFlag(
+        FeatureFlag.PM19315EndUserActivationMvp,
+      );
+
+      if (!endUserActivationFlagEnabled) {
+        // Only show the toast when the end user activation feature flag is _not_ enabled
+        this.toastService.showToast({
+          variant: "success",
+          title: null,
+          message: this.i18nService.t("youHaveBeenLoggedIn"),
+        });
+      }
 
       await this.loginSuccessHandlerService.run(authenticationResult.userId);
 
-      await this.router.navigate(["/vault"]);
+      const successRoute = await this.registrationFinishService.determineLoginSuccessRoute();
+      await this.router.navigate([successRoute]);
     } catch (e) {
       // If login errors, redirect to login page per product. Don't show error
       this.logService.error("Error logging in after registration: ", e.message);
diff --git a/libs/auth/src/angular/registration/registration-finish/registration-finish.service.ts b/libs/auth/src/angular/registration/registration-finish/registration-finish.service.ts
index 5f3c04e5155..523a4c79c54 100644
--- a/libs/auth/src/angular/registration/registration-finish/registration-finish.service.ts
+++ b/libs/auth/src/angular/registration/registration-finish/registration-finish.service.ts
@@ -16,6 +16,11 @@ export abstract class RegistrationFinishService {
    */
   abstract getMasterPasswordPolicyOptsFromOrgInvite(): Promise<MasterPasswordPolicyOptions | null>;
 
+  /**
+   * Returns the route the user is redirected to after a successful login.
+   */
+  abstract determineLoginSuccessRoute(): Promise<string>;
+
   /**
    * Finishes the registration process by creating a new user account.
    *
diff --git a/libs/common/src/enums/feature-flag.enum.ts b/libs/common/src/enums/feature-flag.enum.ts
index 55c96c2334c..dd2aadc0009 100644
--- a/libs/common/src/enums/feature-flag.enum.ts
+++ b/libs/common/src/enums/feature-flag.enum.ts
@@ -55,6 +55,7 @@ export enum FeatureFlag {
   PM18520_UpdateDesktopCipherForm = "pm-18520-desktop-cipher-forms",
   EndUserNotifications = "pm-10609-end-user-notifications",
   RemoveCardItemTypePolicy = "pm-16442-remove-card-item-type-policy",
+  PM19315EndUserActivationMvp = "pm-19315-end-user-activation-mvp",
 
   /* Platform */
   IpcChannelFramework = "ipc-channel-framework",
@@ -99,6 +100,7 @@ export const DefaultFeatureFlagValue = {
   [FeatureFlag.EndUserNotifications]: FALSE,
   [FeatureFlag.PM19941MigrateCipherDomainToSdk]: FALSE,
   [FeatureFlag.RemoveCardItemTypePolicy]: FALSE,
+  [FeatureFlag.PM19315EndUserActivationMvp]: FALSE,
 
   /* Auth */
   [FeatureFlag.PM16117_SetInitialPasswordRefactor]: FALSE,
diff --git a/libs/common/src/vault/utils/get-web-store-url.ts b/libs/common/src/vault/utils/get-web-store-url.ts
new file mode 100644
index 00000000000..87698d65de2
--- /dev/null
+++ b/libs/common/src/vault/utils/get-web-store-url.ts
@@ -0,0 +1,22 @@
+import { DeviceType } from "@bitwarden/common/enums";
+
+/**
+ *  Returns the web store URL for the Bitwarden browser extension based on the device type.
+ *  @defaults Bitwarden download page
+ */
+export const getWebStoreUrl = (deviceType: DeviceType): string => {
+  switch (deviceType) {
+    case DeviceType.ChromeBrowser:
+      return "https://chromewebstore.google.com/detail/bitwarden-password-manage/nngceckbapebfimnlniiiahkandclblb";
+    case DeviceType.FirefoxBrowser:
+      return "https://addons.mozilla.org/en-US/firefox/addon/bitwarden-password-manager/";
+    case DeviceType.SafariBrowser:
+      return "https://apps.apple.com/us/app/bitwarden/id1352778147?mt=12";
+    case DeviceType.OperaBrowser:
+      return "https://addons.opera.com/extensions/details/bitwarden-free-password-manager/";
+    case DeviceType.EdgeBrowser:
+      return "https://microsoftedge.microsoft.com/addons/detail/jbkfoedolllekgbhcbcoahefnbanhhlh";
+    default:
+      return "https://bitwarden.com/download/#downloads-web-browser";
+  }
+};
diff --git a/libs/components/src/anon-layout/anon-layout-wrapper.component.html b/libs/components/src/anon-layout/anon-layout-wrapper.component.html
index 0d393b30362..3509e4dcdb0 100644
--- a/libs/components/src/anon-layout/anon-layout-wrapper.component.html
+++ b/libs/components/src/anon-layout/anon-layout-wrapper.component.html
@@ -5,6 +5,7 @@
   [showReadonlyHostname]="showReadonlyHostname"
   [maxWidth]="maxWidth"
   [hideCardWrapper]="hideCardWrapper"
+  [hideIcon]="hideIcon"
 >
   <router-outlet></router-outlet>
   <router-outlet slot="secondary" name="secondary"></router-outlet>
diff --git a/libs/components/src/anon-layout/anon-layout-wrapper.component.ts b/libs/components/src/anon-layout/anon-layout-wrapper.component.ts
index 20380f137a6..ac192645ee6 100644
--- a/libs/components/src/anon-layout/anon-layout-wrapper.component.ts
+++ b/libs/components/src/anon-layout/anon-layout-wrapper.component.ts
@@ -29,6 +29,10 @@ export interface AnonLayoutWrapperData {
    * The optional icon to display on the page.
    */
   pageIcon?: Icon | null;
+  /**
+   * Hides the default Bitwarden shield icon.
+   */
+  hideIcon?: boolean;
   /**
    * Optional flag to either show the optional environment selector (false) or just a readonly hostname (true).
    */
@@ -56,6 +60,7 @@ export class AnonLayoutWrapperComponent implements OnInit, OnDestroy {
   protected showReadonlyHostname: boolean;
   protected maxWidth: AnonLayoutMaxWidth;
   protected hideCardWrapper: boolean;
+  protected hideIcon: boolean = false;
 
   constructor(
     private router: Router,
@@ -104,6 +109,10 @@ export class AnonLayoutWrapperComponent implements OnInit, OnDestroy {
       this.pageIcon = firstChildRouteData["pageIcon"];
     }
 
+    if (firstChildRouteData["hideIcon"] !== undefined) {
+      this.hideIcon = firstChildRouteData["hideIcon"];
+    }
+
     this.showReadonlyHostname = Boolean(firstChildRouteData["showReadonlyHostname"]);
     this.maxWidth = firstChildRouteData["maxWidth"];
     this.hideCardWrapper = Boolean(firstChildRouteData["hideCardWrapper"]);
diff --git a/libs/vault/src/icons/index.ts b/libs/vault/src/icons/index.ts
index ef4a7f52a3d..904399da4b3 100644
--- a/libs/vault/src/icons/index.ts
+++ b/libs/vault/src/icons/index.ts
@@ -8,3 +8,4 @@ export * from "./security-handshake";
 export * from "./login-cards";
 export * from "./secure-user";
 export * from "./secure-devices";
+export * from "./party";
diff --git a/libs/vault/src/icons/party.ts b/libs/vault/src/icons/party.ts
new file mode 100644
index 00000000000..2e506c5d705
--- /dev/null
+++ b/libs/vault/src/icons/party.ts
@@ -0,0 +1,30 @@
+import { svgIcon } from "@bitwarden/components";
+
+export const Party = svgIcon`
+  <svg width="90" height="89" viewBox="0 0 90 89" fill="none" xmlns="http://www.w3.org/2000/svg">
+    <path class="tw-fill-illustration-tertiary" d="M58.4596 65.7743L7.72887 86.9121C6.14906 87.5704 4.32819 87.2102 3.11801 86C1.90783 84.7898 1.54761 82.9689 2.20587 81.3891L23.3437 30.6584C24.9201 26.8749 29.1011 24.8949 33.0271 26.0727L34.4564 26.5015C47.9795 30.5585 58.5595 41.1384 62.6165 54.6616L63.0453 56.0909C64.2231 60.0169 62.2431 64.1979 58.4596 65.7743Z" />
+    <path class="tw-fill-illustration-bg-tertiary" fill-rule="evenodd" clip-rule="evenodd" d="M26.7218 78.9986C23.7051 76.7004 20.7338 74.1105 17.8708 71.2476C15.0079 68.3846 12.418 65.4133 10.1198 62.3967L11.0125 60.2543C13.421 63.5125 16.1857 66.734 19.2851 69.8334C22.3844 72.9327 25.6059 75.6974 28.8641 78.106L26.7218 78.9986ZM18.2831 82.5147C16.2281 80.7619 14.1998 78.8905 12.2139 76.9046C10.2279 74.9186 8.35655 72.8904 6.60371 70.8354L5.74316 72.9007C7.3385 74.7346 9.02504 76.5442 10.7996 78.3188C12.5742 80.0934 14.3838 81.7799 16.2178 83.3753L18.2831 82.5147ZM38.0519 74.2777C33.6361 71.6409 29.2069 68.2051 25.0601 64.0583C20.9133 59.9115 17.4775 55.4823 14.8407 51.0666L15.8077 48.7457C18.4319 53.4237 22.0191 58.1889 26.4743 62.6441C30.9295 67.0993 35.6947 70.6865 40.3728 73.3107L38.0519 74.2777ZM20.1695 38.2775C21.8284 44.3268 25.9054 51.1409 31.9414 57.177C37.9775 63.213 44.7916 67.2901 50.8409 68.9489L54.0834 67.5979C53.0546 67.4469 51.9666 67.2041 50.8243 66.8641C45.3003 65.2204 39.0089 61.416 33.3557 55.7627C27.7024 50.1095 23.898 43.8181 22.2543 38.2941C21.9144 37.1519 21.6715 36.0638 21.5205 35.035L20.1695 38.2775Z"/>
+    <path class="tw-fill-illustration-bg-secondary" d="M49.7753 39.3432C57.9763 47.5442 62.0918 56.7251 58.9676 59.8492C55.8434 62.9734 46.6626 58.8579 38.4615 50.6569C30.2605 42.4558 26.145 33.275 29.2692 30.1508C32.3934 27.0266 41.5742 31.1421 49.7753 39.3432Z" />
+    <path class="tw-fill-illustration-outline" fill-rule="evenodd" clip-rule="evenodd" d="M56.7934 52.3181C55.2526 48.881 52.3347 44.731 48.361 40.7574C44.3874 36.7837 40.2374 33.8658 36.8003 32.325C35.0749 31.5516 33.6291 31.1703 32.5336 31.1131C31.4375 31.0558 30.9236 31.3248 30.6834 31.565C30.4432 31.8052 30.1742 32.3191 30.2315 33.4152C30.2887 34.5107 30.67 35.9565 31.4434 37.6819C32.9842 41.119 35.9021 45.269 39.8758 49.2426C43.8494 53.2163 47.9994 56.1342 51.4365 57.675C53.1619 58.4484 54.6077 58.8297 55.7032 58.8869C56.7993 58.9442 57.3132 58.6752 57.5534 58.435C57.7936 58.1948 58.0626 57.6809 58.0053 56.5848C57.9481 55.4893 57.5668 54.0435 56.7934 52.3181ZM58.9676 59.8492C62.0918 56.7251 57.9763 47.5442 49.7753 39.3432C41.5742 31.1421 32.3934 27.0266 29.2692 30.1508C26.145 33.275 30.2605 42.4558 38.4615 50.6569C46.6626 58.8579 55.8434 62.9734 58.9676 59.8492Z" />
+    <path class="tw-fill-illustration-outline" fill-rule="evenodd" clip-rule="evenodd" d="M32.7398 27.0305C29.3046 26 25.6462 27.7324 24.2668 31.043L3.12897 81.7738C2.62658 82.9795 2.9015 84.3692 3.82515 85.2929C4.74879 86.2165 6.13853 86.4915 7.34428 85.9891L58.075 64.8512C61.3856 63.4718 63.118 59.8135 62.0875 56.3783L61.6587 54.9489C57.6983 41.7478 47.3703 31.4197 34.1691 27.4593L32.7398 27.0305ZM22.4206 30.2738C24.1941 26.0173 28.8978 23.7899 33.3144 25.1149L34.7438 25.5437C48.5889 29.6972 59.4208 40.5291 63.5743 54.3742L64.0031 55.8036C65.3281 60.2202 63.1007 64.9239 58.8442 66.6974L8.11351 87.8352C6.15966 88.6493 3.90765 88.2038 2.41093 86.7071C0.914216 85.2104 0.468712 82.9584 1.28282 81.0045L22.4206 30.2738Z" />
+    <path class="tw-fill-illustration-outline" d="M44.382 0.584344C44.4617 0.242133 44.7668 0 45.1182 0C45.4695 0 45.7746 0.242133 45.8543 0.584344L45.8917 0.744718C46.4103 2.97018 48.148 4.70786 50.3734 5.22646L50.5338 5.26383C50.876 5.34358 51.1182 5.64862 51.1182 6C51.1182 6.35138 50.876 6.65642 50.5338 6.73617L50.3734 6.77354C48.148 7.29214 46.4103 9.02982 45.8917 11.2553L45.8543 11.4157C45.7746 11.7579 45.4695 12 45.1182 12C44.7668 12 44.4617 11.7579 44.382 11.4157L44.3446 11.2553C43.826 9.02982 42.0883 7.29214 39.8629 6.77354L39.7025 6.73617C39.3603 6.65642 39.1182 6.35138 39.1182 6C39.1182 5.64862 39.3603 5.34358 39.7025 5.26383L39.8629 5.22646C42.0883 4.70786 43.826 2.97018 44.3446 0.744717L44.382 0.584344Z" />
+    <path class="tw-fill-illustration-outline" d="M82.382 15.5843C82.4617 15.2421 82.7668 15 83.1182 15C83.4695 15 83.7746 15.2421 83.8543 15.5843L83.8917 15.7447C84.4103 17.9702 86.148 19.7079 88.3734 20.2265L88.5338 20.2638C88.876 20.3436 89.1182 20.6486 89.1182 21C89.1182 21.3514 88.876 21.6564 88.5338 21.7362L88.3734 21.7735C86.148 22.2921 84.4103 24.0298 83.8917 26.2553L83.8543 26.4157C83.7746 26.7579 83.4695 27 83.1182 27C82.7668 27 82.4617 26.7579 82.382 26.4157L82.3446 26.2553C81.826 24.0298 80.0883 22.2921 77.8629 21.7735L77.7025 21.7362C77.3603 21.6564 77.1182 21.3514 77.1182 21C77.1182 20.6486 77.3603 20.3436 77.7025 20.2638L77.8629 20.2265C80.0883 19.7079 81.826 17.9702 82.3446 15.7447L82.382 15.5843Z" />
+    <path class="tw-fill-illustration-outline" d="M69.382 76.5843C69.4617 76.2421 69.7668 76 70.1182 76C70.4695 76 70.7746 76.2421 70.8543 76.5843L70.8917 76.7447C71.4103 78.9702 73.148 80.7079 75.3734 81.2265L75.5338 81.2638C75.876 81.3436 76.1182 81.6486 76.1182 82C76.1182 82.3514 75.876 82.6564 75.5338 82.7362L75.3734 82.7735C73.148 83.2921 71.4103 85.0298 70.8917 87.2553L70.8543 87.4157C70.7746 87.7579 70.4695 88 70.1182 88C69.7668 88 69.4617 87.7579 69.382 87.4157L69.3446 87.2553C68.826 85.0298 67.0883 83.2921 64.8629 82.7735L64.7025 82.7362C64.3603 82.6564 64.1182 82.3514 64.1182 82C64.1182 81.6486 64.3603 81.3436 64.7025 81.2638L64.8629 81.2265C67.0883 80.7079 68.826 78.9702 69.3446 76.7447L69.382 76.5843Z" />
+    <path class="tw-fill-illustration-outline" fill-rule="evenodd" clip-rule="evenodd" d="M77.7251 48.364C74.9915 45.6303 70.5593 45.6303 67.8256 48.364C67.4351 48.7545 66.802 48.7545 66.4114 48.364C66.0209 47.9735 66.0209 47.3403 66.4114 46.9498C69.9261 43.4351 75.6246 43.4351 79.1394 46.9498C79.5299 47.3403 79.5299 47.9735 79.1394 48.364C78.7488 48.7545 78.1157 48.7545 77.7251 48.364Z" />
+    <path class="tw-fill-illustration-outline" fill-rule="evenodd" clip-rule="evenodd" d="M82.243 38.3173C76.5502 35.0305 69.2707 36.981 65.9839 42.6739C65.7078 43.1522 65.0962 43.316 64.6179 43.0399C64.1396 42.7637 63.9757 42.1522 64.2519 41.6739C68.091 35.0244 76.5936 32.7461 83.243 36.5852C83.7213 36.8614 83.8852 37.4729 83.609 37.9512C83.3329 38.4295 82.7213 38.5934 82.243 38.3173Z" />
+    <path class="tw-fill-illustration-outline" fill-rule="evenodd" clip-rule="evenodd" d="M21.1182 14C24.9842 14 28.1182 17.134 28.1182 21C28.1182 21.5523 28.5659 22 29.1182 22C29.6704 22 30.1182 21.5523 30.1182 21C30.1182 16.0294 26.0887 12 21.1182 12C20.5659 12 20.1182 12.4477 20.1182 13C20.1182 13.5523 20.5659 14 21.1182 14Z" />
+    <path class="tw-fill-illustration-outline" fill-rule="evenodd" clip-rule="evenodd" d="M26.5636 5.93701C30.1861 7.2874 32.028 11.3187 30.6776 14.9412C30.4847 15.4587 30.7478 16.0346 31.2653 16.2275C31.7828 16.4204 32.3587 16.1573 32.5516 15.6398C34.2878 10.9823 31.9197 5.79919 27.2622 4.06299C26.7447 3.87008 26.1688 4.13321 25.9759 4.65071C25.783 5.1682 26.0461 5.7441 26.5636 5.93701Z" />
+    <path class="tw-fill-illustration-bg-secondary" d="M62.1182 17C62.1182 19.2091 60.3273 21 58.1182 21C55.909 21 54.1182 19.2091 54.1182 17C54.1182 14.7909 55.909 13 58.1182 13C60.3273 13 62.1182 14.7909 62.1182 17Z" />
+    <path class="tw-fill-illustration-outline" fill-rule="evenodd" clip-rule="evenodd" d="M58.1182 19C59.2227 19 60.1182 18.1046 60.1182 17C60.1182 15.8954 59.2227 15 58.1182 15C57.0136 15 56.1182 15.8954 56.1182 17C56.1182 18.1046 57.0136 19 58.1182 19ZM58.1182 21C60.3273 21 62.1182 19.2091 62.1182 17C62.1182 14.7909 60.3273 13 58.1182 13C55.909 13 54.1182 14.7909 54.1182 17C54.1182 19.2091 55.909 21 58.1182 21Z" />
+    <path class="tw-fill-illustration-bg-secondary" d="M68.1182 29C68.1182 30.6569 66.775 32 65.1182 32C63.4613 32 62.1182 30.6569 62.1182 29C62.1182 27.3431 63.4613 26 65.1182 26C66.775 26 68.1182 27.3431 68.1182 29Z" />
+    <path class="tw-fill-illustration-outline" fill-rule="evenodd" clip-rule="evenodd" d="M65.1182 30C65.6704 30 66.1182 29.5523 66.1182 29C66.1182 28.4477 65.6704 28 65.1182 28C64.5659 28 64.1182 28.4477 64.1182 29C64.1182 29.5523 64.5659 30 65.1182 30ZM65.1182 32C66.775 32 68.1182 30.6569 68.1182 29C68.1182 27.3431 66.775 26 65.1182 26C63.4613 26 62.1182 27.3431 62.1182 29C62.1182 30.6569 63.4613 32 65.1182 32Z" />
+    <path class="tw-fill-illustration-bg-secondary" d="M57.1182 78C57.1182 79.6569 55.775 81 54.1182 81C52.4613 81 51.1182 79.6569 51.1182 78C51.1182 76.3431 52.4613 75 54.1182 75C55.775 75 57.1182 76.3431 57.1182 78Z" />
+    <path class="tw-fill-illustration-outline" fill-rule="evenodd" clip-rule="evenodd" d="M54.1182 79C54.6704 79 55.1182 78.5523 55.1182 78C55.1182 77.4477 54.6704 77 54.1182 77C53.5659 77 53.1182 77.4477 53.1182 78C53.1182 78.5523 53.5659 79 54.1182 79ZM54.1182 81C55.775 81 57.1182 79.6569 57.1182 78C57.1182 76.3431 55.775 75 54.1182 75C52.4613 75 51.1182 76.3431 51.1182 78C51.1182 79.6569 52.4613 81 54.1182 81Z" />
+    <path class="tw-fill-illustration-tertiary" d="M85.1182 60C85.1182 62.7614 82.8796 65 80.1182 65C77.3567 65 75.1182 62.7614 75.1182 60C75.1182 57.2386 77.3567 55 80.1182 55C82.8796 55 85.1182 57.2386 85.1182 60Z" />
+    <path class="tw-fill-illustration-outline" fill-rule="evenodd" clip-rule="evenodd" d="M80.1182 63C81.775 63 83.1182 61.6569 83.1182 60C83.1182 58.3431 81.775 57 80.1182 57C78.4613 57 77.1182 58.3431 77.1182 60C77.1182 61.6569 78.4613 63 80.1182 63ZM80.1182 65C82.8796 65 85.1182 62.7614 85.1182 60C85.1182 57.2386 82.8796 55 80.1182 55C77.3567 55 75.1182 57.2386 75.1182 60C75.1182 62.7614 77.3567 65 80.1182 65Z" />
+    <path class="tw-fill-illustration-tertiary" d="M52.1182 23.5C52.1182 25.433 50.5512 27 48.6182 27C46.6852 27 45.1182 25.433 45.1182 23.5C45.1182 21.567 46.6852 20 48.6182 20C50.5512 20 52.1182 21.567 52.1182 23.5Z" />
+    <path class="tw-fill-illustration-outline" fill-rule="evenodd" clip-rule="evenodd" d="M48.6182 25C49.4466 25 50.1182 24.3284 50.1182 23.5C50.1182 22.6716 49.4466 22 48.6182 22C47.7897 22 47.1182 22.6716 47.1182 23.5C47.1182 24.3284 47.7897 25 48.6182 25ZM48.6182 27C50.5512 27 52.1182 25.433 52.1182 23.5C52.1182 21.567 50.5512 20 48.6182 20C46.6852 20 45.1182 21.567 45.1182 23.5C45.1182 25.433 46.6852 27 48.6182 27Z" />
+    <path class="tw-fill-illustration-bg-tertiary" d="M81.1182 7C81.1182 10.866 77.9842 14 74.1182 14C70.2522 14 67.1182 10.866 67.1182 7C67.1182 3.13401 70.2522 0 74.1182 0C77.9842 0 81.1182 3.13401 81.1182 7Z" />
+    <path class="tw-fill-illustration-outline" fill-rule="evenodd" clip-rule="evenodd" d="M74.1182 12C76.8796 12 79.1182 9.76142 79.1182 7C79.1182 4.23858 76.8796 2 74.1182 2C71.3567 2 69.1182 4.23858 69.1182 7C69.1182 9.76142 71.3567 12 74.1182 12ZM74.1182 14C77.9842 14 81.1182 10.866 81.1182 7C81.1182 3.13401 77.9842 0 74.1182 0C70.2522 0 67.1182 3.13401 67.1182 7C67.1182 10.866 70.2522 14 74.1182 14Z" />
+  </svg>
+`;

From 0311d0aaabe0c2580ab4755d4530a5f711282d08 Mon Sep 17 00:00:00 2001
From: Daniel Riera <driera@livefront.com>
Date: Thu, 3 Jul 2025 10:41:20 -0400
Subject: [PATCH 053/239] [PM-22391] display simple dialog when advanced
 matching strategy selected for login ciphers (#15260)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

* PM-22391 WIP

* update autofill base desc

* fill cog when match uri open

* switch to button, populate dialog when option selected

* default strategy hint

* update match hint string and dialog behavior

* clean up naming for callbacks and variables

* revert global setting hint — this will be addressed separately

* add tests

* update copy and remove repeated copy to use quoted string

* Update apps/browser/src/_locales/en/messages.json

Co-authored-by: Nick Krantz <125900171+nick-livefront@users.noreply.github.com>

* add translation to web and desktop, make continue and cancel required

---------

Co-authored-by: Nick Krantz <125900171+nick-livefront@users.noreply.github.com>
---
 apps/browser/src/_locales/en/messages.json    | 20 ++++++
 apps/desktop/src/locales/en/messages.json     | 16 +++++
 apps/web/src/locales/en/messages.json         | 16 +++++
 .../advanced-uri-option-dialog.component.html | 27 ++++++++
 .../advanced-uri-option-dialog.component.ts   | 58 +++++++++++++++++
 .../uri-option.component.html                 | 10 ++-
 .../uri-option.component.spec.ts              | 47 ++++++++++++++
 .../autofill-options/uri-option.component.ts  | 63 ++++++++++++++++++-
 8 files changed, 253 insertions(+), 4 deletions(-)
 create mode 100644 libs/vault/src/cipher-form/components/autofill-options/advanced-uri-option-dialog.component.html
 create mode 100644 libs/vault/src/cipher-form/components/autofill-options/advanced-uri-option-dialog.component.ts

diff --git a/apps/browser/src/_locales/en/messages.json b/apps/browser/src/_locales/en/messages.json
index ce5787c46bd..996bdcdae79 100644
--- a/apps/browser/src/_locales/en/messages.json
+++ b/apps/browser/src/_locales/en/messages.json
@@ -4246,6 +4246,26 @@
   "commonImportFormats": {
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
+  },
+   "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."  
+  },
+   "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+   "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption":{
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
   },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Continue to browser settings?",
diff --git a/apps/desktop/src/locales/en/messages.json b/apps/desktop/src/locales/en/messages.json
index ac9307c482c..991d07fb9df 100644
--- a/apps/desktop/src/locales/en/messages.json
+++ b/apps/desktop/src/locales/en/messages.json
@@ -3534,6 +3534,22 @@
   "commonImportFormats": {
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
+  },
+     "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."  
+  },
+   "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+   "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
   "success": {
     "message": "Success"
diff --git a/apps/web/src/locales/en/messages.json b/apps/web/src/locales/en/messages.json
index 6ed8ffe9bb3..ce35f2abd33 100644
--- a/apps/web/src/locales/en/messages.json
+++ b/apps/web/src/locales/en/messages.json
@@ -8907,6 +8907,22 @@
   "commonImportFormats": {
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
+  },
+     "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."  
+  },
+   "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+   "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
diff --git a/libs/vault/src/cipher-form/components/autofill-options/advanced-uri-option-dialog.component.html b/libs/vault/src/cipher-form/components/autofill-options/advanced-uri-option-dialog.component.html
new file mode 100644
index 00000000000..627989a3397
--- /dev/null
+++ b/libs/vault/src/cipher-form/components/autofill-options/advanced-uri-option-dialog.component.html
@@ -0,0 +1,27 @@
+<bit-simple-dialog>
+  <i
+    bitDialogIcon
+    class="bwi tw-text-3xl bwi-exclamation-triangle tw-text-warning"
+    aria-hidden="true"
+  ></i>
+  <span bitDialogTitle>
+    {{ "warningCapitalized" | i18n }}
+  </span>
+  <div bitDialogContent>
+    <p>
+      {{ contentKey | i18n }}
+      <br />
+      <button bitLink type="button" linkType="primary" (click)="openLink($event)">
+        {{ "uriMatchWarningDialogLink" | i18n }}
+      </button>
+    </p>
+  </div>
+  <ng-container bitDialogFooter>
+    <button bitButton type="button" buttonType="primary" (click)="onContinue()">
+      {{ "continue" | i18n }}
+    </button>
+    <button bitButton type="button" buttonType="secondary" (click)="onCancel()">
+      {{ "cancel" | i18n }}
+    </button>
+  </ng-container>
+</bit-simple-dialog>
diff --git a/libs/vault/src/cipher-form/components/autofill-options/advanced-uri-option-dialog.component.ts b/libs/vault/src/cipher-form/components/autofill-options/advanced-uri-option-dialog.component.ts
new file mode 100644
index 00000000000..e63aa224149
--- /dev/null
+++ b/libs/vault/src/cipher-form/components/autofill-options/advanced-uri-option-dialog.component.ts
@@ -0,0 +1,58 @@
+import { Component, inject } from "@angular/core";
+
+import { JslibModule } from "@bitwarden/angular/jslib.module";
+import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
+import {
+  ButtonLinkDirective,
+  ButtonModule,
+  DialogModule,
+  DialogService,
+  DIALOG_DATA,
+  DialogRef,
+} from "@bitwarden/components";
+
+export type AdvancedUriOptionDialogParams = {
+  contentKey: string;
+  onCancel: () => void;
+  onContinue: () => void;
+};
+
+@Component({
+  templateUrl: "advanced-uri-option-dialog.component.html",
+  imports: [ButtonLinkDirective, ButtonModule, DialogModule, JslibModule],
+})
+export class AdvancedUriOptionDialogComponent {
+  constructor(private dialogRef: DialogRef<boolean>) {}
+
+  protected platformUtilsService = inject(PlatformUtilsService);
+  protected params = inject<AdvancedUriOptionDialogParams>(DIALOG_DATA);
+
+  get contentKey(): string {
+    return this.params.contentKey;
+  }
+
+  onCancel() {
+    this.params.onCancel?.();
+    this.dialogRef.close(false);
+  }
+
+  onContinue() {
+    this.params.onContinue?.();
+    this.dialogRef.close(true);
+  }
+
+  openLink(event: Event) {
+    event.preventDefault();
+    this.platformUtilsService.launchUri("https://bitwarden.com/help/uri-match-detection/");
+  }
+
+  static open(
+    dialogService: DialogService,
+    params: AdvancedUriOptionDialogParams,
+  ): DialogRef<boolean> {
+    return dialogService.open<boolean>(AdvancedUriOptionDialogComponent, {
+      data: params,
+      disableClose: true,
+    });
+  }
+}
diff --git a/libs/vault/src/cipher-form/components/autofill-options/uri-option.component.html b/libs/vault/src/cipher-form/components/autofill-options/uri-option.component.html
index 84b43edfbac..2e88a68a0d4 100644
--- a/libs/vault/src/cipher-form/components/autofill-options/uri-option.component.html
+++ b/libs/vault/src/cipher-form/components/autofill-options/uri-option.component.html
@@ -6,7 +6,7 @@
         <input bitInput formControlName="uri" #uriInput />
         <button
           type="button"
-          bitIconButton="bwi-cog"
+          [bitIconButton]="showMatchDetection ? 'bwi-cog-f' : 'bwi-cog'"
           bitSuffix
           [appA11yTitle]="toggleTitle"
           (click)="toggleMatchDetection()"
@@ -43,8 +43,16 @@
           *ngFor="let o of uriMatchOptions"
           [label]="o.label"
           [value]="o.value"
+          [disabled]="o.disabled"
         ></bit-option>
       </bit-select>
+      <bit-hint *ngIf="getMatchHints() as hints">
+        {{ hints[0] | i18n }}
+        <ng-container *ngIf="hints.length > 1">
+          <b>{{ "warningCapitalized" | i18n }}:</b>
+          {{ hints[1] | i18n }}
+        </ng-container>
+      </bit-hint>
     </bit-form-field>
   </div>
 </ng-container>
diff --git a/libs/vault/src/cipher-form/components/autofill-options/uri-option.component.spec.ts b/libs/vault/src/cipher-form/components/autofill-options/uri-option.component.spec.ts
index d259566cc57..0d7f3663967 100644
--- a/libs/vault/src/cipher-form/components/autofill-options/uri-option.component.spec.ts
+++ b/libs/vault/src/cipher-form/components/autofill-options/uri-option.component.spec.ts
@@ -1,14 +1,19 @@
 import { ComponentFixture, TestBed } from "@angular/core/testing";
 import { NG_VALUE_ACCESSOR } from "@angular/forms";
+import { of } from "rxjs";
 
 import { UriMatchStrategy } from "@bitwarden/common/models/domain/domain-service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+import { DialogRef, DialogService } from "@bitwarden/components";
 
+import { AdvancedUriOptionDialogComponent } from "./advanced-uri-option-dialog.component";
 import { UriOptionComponent } from "./uri-option.component";
 
 describe("UriOptionComponent", () => {
   let component: UriOptionComponent;
   let fixture: ComponentFixture<UriOptionComponent>;
+  let dialogServiceMock: jest.Mocked<DialogService>;
+  let dialogRefMock: jest.Mocked<DialogRef<boolean>>;
 
   const getToggleMatchDetectionBtn = () =>
     fixture.nativeElement.querySelector(
@@ -26,9 +31,19 @@ describe("UriOptionComponent", () => {
     ) as HTMLButtonElement;
 
   beforeEach(async () => {
+    dialogServiceMock = {
+      open: jest.fn().mockReturnValue(dialogRefMock),
+    } as unknown as jest.Mocked<DialogService>;
+
+    dialogRefMock = {
+      close: jest.fn(),
+      afterClosed: jest.fn().mockReturnValue(of(true)),
+    } as unknown as jest.Mocked<DialogRef<boolean>>;
+
     await TestBed.configureTestingModule({
       imports: [UriOptionComponent],
       providers: [
+        { provide: DialogService, useValue: dialogServiceMock },
         {
           provide: I18nService,
           useValue: { t: (...keys: string[]) => keys.filter(Boolean).join(" ") },
@@ -165,4 +180,36 @@ describe("UriOptionComponent", () => {
       expect(component.remove.emit).toHaveBeenCalled();
     });
   });
+
+  describe("advanced match strategy dialog", () => {
+    function testDialogAction(action: "onContinue" | "onCancel", expected: number) {
+      const openSpy = jest
+        .spyOn(AdvancedUriOptionDialogComponent, "open")
+        .mockReturnValue(dialogRefMock);
+
+      component["uriForm"].controls.matchDetection.setValue(UriMatchStrategy.Domain);
+      component["uriForm"].controls.matchDetection.setValue(UriMatchStrategy.StartsWith);
+
+      const [, params] = openSpy.mock.calls[0] as [
+        DialogService,
+        {
+          contentKey: string;
+          onContinue: () => void;
+          onCancel: () => void;
+        },
+      ];
+
+      params[action]();
+
+      expect(component["uriForm"].value.matchDetection).toBe(expected);
+    }
+
+    it("should apply the advanced match strategy when the user continues", () => {
+      testDialogAction("onContinue", UriMatchStrategy.StartsWith);
+    });
+
+    it("should revert to the previous strategy when the user cancels", () => {
+      testDialogAction("onCancel", UriMatchStrategy.Domain);
+    });
+  });
 });
diff --git a/libs/vault/src/cipher-form/components/autofill-options/uri-option.component.ts b/libs/vault/src/cipher-form/components/autofill-options/uri-option.component.ts
index 3f12382b931..4287d5b96c8 100644
--- a/libs/vault/src/cipher-form/components/autofill-options/uri-option.component.ts
+++ b/libs/vault/src/cipher-form/components/autofill-options/uri-option.component.ts
@@ -18,6 +18,7 @@ import {
   NG_VALUE_ACCESSOR,
   ReactiveFormsModule,
 } from "@angular/forms";
+import { concatMap, pairwise } from "rxjs";
 
 import { JslibModule } from "@bitwarden/angular/jslib.module";
 import {
@@ -26,12 +27,15 @@ import {
 } from "@bitwarden/common/models/domain/domain-service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import {
+  DialogService,
   FormFieldModule,
   IconButtonModule,
   SelectComponent,
   SelectModule,
 } from "@bitwarden/components";
 
+import { AdvancedUriOptionDialogComponent } from "./advanced-uri-option-dialog.component";
+
 @Component({
   selector: "vault-autofill-uri-option",
   templateUrl: "./uri-option.component.html",
@@ -65,16 +69,26 @@ export class UriOptionComponent implements ControlValueAccessor {
     matchDetection: [null as UriMatchStrategySetting],
   });
 
-  protected uriMatchOptions: { label: string; value: UriMatchStrategySetting }[] = [
+  protected uriMatchOptions: {
+    label: string;
+    value: UriMatchStrategySetting;
+    disabled?: boolean;
+  }[] = [
     { label: this.i18nService.t("default"), value: null },
     { label: this.i18nService.t("baseDomain"), value: UriMatchStrategy.Domain },
     { label: this.i18nService.t("host"), value: UriMatchStrategy.Host },
-    { label: this.i18nService.t("startsWith"), value: UriMatchStrategy.StartsWith },
-    { label: this.i18nService.t("regEx"), value: UriMatchStrategy.RegularExpression },
     { label: this.i18nService.t("exact"), value: UriMatchStrategy.Exact },
     { label: this.i18nService.t("never"), value: UriMatchStrategy.Never },
+    { label: this.i18nService.t("uriAdvancedOption"), value: null, disabled: true },
+    { label: this.i18nService.t("startsWith"), value: UriMatchStrategy.StartsWith },
+    { label: this.i18nService.t("regEx"), value: UriMatchStrategy.RegularExpression },
   ];
 
+  protected advancedOptionWarningMap: Partial<Record<UriMatchStrategySetting, string>> = {
+    [UriMatchStrategy.StartsWith]: "startsWithAdvancedOptionWarning",
+    [UriMatchStrategy.RegularExpression]: "regExAdvancedOptionWarning",
+  };
+
   /**
    * Whether the option can be reordered. If false, the reorder button will be hidden.
    */
@@ -147,6 +161,7 @@ export class UriOptionComponent implements ControlValueAccessor {
   }
 
   constructor(
+    private dialogService: DialogService,
     private formBuilder: FormBuilder,
     private i18nService: I18nService,
   ) {
@@ -157,6 +172,36 @@ export class UriOptionComponent implements ControlValueAccessor {
     this.uriForm.statusChanges.pipe(takeUntilDestroyed()).subscribe(() => {
       this.onTouched();
     });
+
+    this.uriForm.controls.matchDetection.valueChanges
+      .pipe(
+        pairwise(),
+        concatMap(([previous, current]) => this.handleAdvancedMatch(previous, current)),
+        takeUntilDestroyed(),
+      )
+      .subscribe();
+  }
+
+  private async handleAdvancedMatch(
+    previous: UriMatchStrategySetting,
+    current: UriMatchStrategySetting,
+  ) {
+    const valueChange = previous !== current;
+    const isAdvanced =
+      current === UriMatchStrategy.StartsWith || current === UriMatchStrategy.RegularExpression;
+
+    if (!valueChange || !isAdvanced) {
+      return;
+    }
+    AdvancedUriOptionDialogComponent.open(this.dialogService, {
+      contentKey: this.advancedOptionWarningMap[current],
+      onContinue: () => {
+        this.uriForm.controls.matchDetection.setValue(current);
+      },
+      onCancel: () => {
+        this.uriForm.controls.matchDetection.setValue(previous);
+      },
+    });
   }
 
   focusInput() {
@@ -193,4 +238,16 @@ export class UriOptionComponent implements ControlValueAccessor {
   setDisabledState?(isDisabled: boolean): void {
     isDisabled ? this.uriForm.disable() : this.uriForm.enable();
   }
+
+  getMatchHints() {
+    const hints = ["uriMatchDefaultStrategyHint"];
+    const strategy = this.uriForm.get("matchDetection")?.value;
+    if (
+      strategy === UriMatchStrategy.StartsWith ||
+      strategy === UriMatchStrategy.RegularExpression
+    ) {
+      hints.push(this.advancedOptionWarningMap[strategy]);
+    }
+    return hints;
+  }
 }

From 522acf571885c6688d2767f6dd45f3b8444b04eb Mon Sep 17 00:00:00 2001
From: SmithThe4th <gsmith@bitwarden.com>
Date: Thu, 3 Jul 2025 11:12:08 -0400
Subject: [PATCH 054/239] Fixed date conversion issue when importing (#15434)

---
 libs/common/src/models/export/password-history.export.ts | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/libs/common/src/models/export/password-history.export.ts b/libs/common/src/models/export/password-history.export.ts
index ece7e331009..5382b9cb974 100644
--- a/libs/common/src/models/export/password-history.export.ts
+++ b/libs/common/src/models/export/password-history.export.ts
@@ -22,7 +22,7 @@ export class PasswordHistoryExport {
 
   static toDomain(req: PasswordHistoryExport, domain = new Password()) {
     domain.password = req.password != null ? new EncString(req.password) : null;
-    domain.lastUsedDate = req.lastUsedDate;
+    domain.lastUsedDate = req.lastUsedDate ? new Date(req.lastUsedDate) : null;
     return domain;
   }
 

From d1c6b334b1ec547fe1921d07426468f8f4458378 Mon Sep 17 00:00:00 2001
From: Todd Martin <106564991+trmartin4@users.noreply.github.com>
Date: Thu, 3 Jul 2025 11:27:28 -0400
Subject: [PATCH 055/239] feat(DuckDuckGo): [PM-9388] Add new device type for
 DuckDuckGo browser

* Add new device type for DuckDuckGo browser

* Added feature support property for sync domains

* Added new features

* Added isDuckDuckGo() to CLI

* Addressed PR feedback.

* Renamed new property

* Fixed rename that missed CLI.
---
 .../browser-platform-utils.service.ts         |  8 ++
 .../services/cli-platform-utils.service.ts    |  8 ++
 .../electron-platform-utils.service.ts        |  8 ++
 .../src/app/core/web-file-download.service.ts |  2 +-
 .../core/web-platform-utils.service.spec.ts   | 89 +++++++++++++++++++
 .../app/core/web-platform-utils.service.ts    | 20 +++++
 .../shared/secrets-list.component.ts          | 18 ----
 .../src/tools/send/add-edit.component.ts      |  8 --
 libs/common/src/enums/device-type.enum.ts     |  2 +
 .../abstractions/platform-utils.service.ts    |  9 ++
 libs/common/src/services/api.service.ts       | 26 ++----
 11 files changed, 150 insertions(+), 48 deletions(-)

diff --git a/apps/browser/src/platform/services/platform-utils/browser-platform-utils.service.ts b/apps/browser/src/platform/services/platform-utils/browser-platform-utils.service.ts
index 4ae412fbda6..beac7616d8d 100644
--- a/apps/browser/src/platform/services/platform-utils/browser-platform-utils.service.ts
+++ b/apps/browser/src/platform/services/platform-utils/browser-platform-utils.service.ts
@@ -207,6 +207,14 @@ export abstract class BrowserPlatformUtilsService implements PlatformUtilsServic
     return true;
   }
 
+  supportsAutofill(): boolean {
+    return true;
+  }
+
+  supportsFileDownloads(): boolean {
+    return false;
+  }
+
   abstract showToast(
     type: "error" | "success" | "warning" | "info",
     title: string,
diff --git a/apps/cli/src/platform/services/cli-platform-utils.service.ts b/apps/cli/src/platform/services/cli-platform-utils.service.ts
index 4e00b58607b..7bed495bbf5 100644
--- a/apps/cli/src/platform/services/cli-platform-utils.service.ts
+++ b/apps/cli/src/platform/services/cli-platform-utils.service.ts
@@ -108,6 +108,14 @@ export class CliPlatformUtilsService implements PlatformUtilsService {
     return false;
   }
 
+  supportsAutofill(): boolean {
+    return false;
+  }
+
+  supportsFileDownloads(): boolean {
+    return false;
+  }
+
   showToast(
     type: "error" | "success" | "warning" | "info",
     title: string,
diff --git a/apps/desktop/src/platform/services/electron-platform-utils.service.ts b/apps/desktop/src/platform/services/electron-platform-utils.service.ts
index b7c82f4e5db..43b867b7a68 100644
--- a/apps/desktop/src/platform/services/electron-platform-utils.service.ts
+++ b/apps/desktop/src/platform/services/electron-platform-utils.service.ts
@@ -86,6 +86,14 @@ export class ElectronPlatformUtilsService implements PlatformUtilsService {
     return true;
   }
 
+  supportsAutofill(): boolean {
+    return false;
+  }
+
+  supportsFileDownloads(): boolean {
+    return false;
+  }
+
   showToast(
     type: "error" | "success" | "warning" | "info",
     title: string,
diff --git a/apps/web/src/app/core/web-file-download.service.ts b/apps/web/src/app/core/web-file-download.service.ts
index ad034702a55..3421203737a 100644
--- a/apps/web/src/app/core/web-file-download.service.ts
+++ b/apps/web/src/app/core/web-file-download.service.ts
@@ -12,7 +12,7 @@ export class WebFileDownloadService implements FileDownloadService {
   download(request: FileDownloadRequest): void {
     const builder = new FileDownloadBuilder(request);
     const a = window.document.createElement("a");
-    if (!this.platformUtilsService.isSafari()) {
+    if (!this.platformUtilsService.supportsFileDownloads()) {
       a.rel = "noreferrer";
       a.target = "_blank";
     }
diff --git a/apps/web/src/app/core/web-platform-utils.service.spec.ts b/apps/web/src/app/core/web-platform-utils.service.spec.ts
index 3b5cb96b718..6dba3fda782 100644
--- a/apps/web/src/app/core/web-platform-utils.service.spec.ts
+++ b/apps/web/src/app/core/web-platform-utils.service.spec.ts
@@ -1,5 +1,7 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
+import { DeviceType } from "@bitwarden/common/enums";
+
 import { WebPlatformUtilsService } from "./web-platform-utils.service";
 
 describe("Web Platform Utils Service", () => {
@@ -114,4 +116,91 @@ describe("Web Platform Utils Service", () => {
       expect(result).toBe("2022.10.2");
     });
   });
+  describe("getDevice", () => {
+    const originalUserAgent = navigator.userAgent;
+
+    const setUserAgent = (userAgent: string) => {
+      Object.defineProperty(navigator, "userAgent", {
+        value: userAgent,
+        configurable: true,
+      });
+    };
+
+    const setWindowProperties = (props?: Record<string, any>) => {
+      if (!props) {
+        return;
+      }
+      Object.keys(props).forEach((key) => {
+        Object.defineProperty(window, key, {
+          value: props[key],
+          configurable: true,
+        });
+      });
+    };
+
+    afterEach(() => {
+      // Reset to original after each test
+      setUserAgent(originalUserAgent);
+    });
+
+    const testData: {
+      userAgent: string;
+      expectedDevice: DeviceType;
+      windowProps?: Record<string, any>;
+    }[] = [
+      {
+        // DuckDuckGo macoOS browser v1.13
+        userAgent:
+          "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.3.1 Safari/605.1.15 Ddg/18.3.1",
+        expectedDevice: DeviceType.DuckDuckGoBrowser,
+      },
+      // DuckDuckGo Windows browser v0.109.7, which does not present the Ddg suffix and is therefore detected as Edge
+      {
+        userAgent:
+          "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/135.0.0.0 Safari/537.36 Edg/135.0.0.0",
+        expectedDevice: DeviceType.EdgeBrowser,
+      },
+      {
+        userAgent:
+          "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36",
+        expectedDevice: DeviceType.ChromeBrowser,
+        windowProps: { chrome: {} }, // set window.chrome = {} to simulate Chrome
+      },
+      {
+        userAgent:
+          "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:121.0) Gecko/20100101 Firefox/121.0",
+        expectedDevice: DeviceType.FirefoxBrowser,
+      },
+      {
+        userAgent:
+          "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_0) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.0 Safari/605.1.15",
+        expectedDevice: DeviceType.SafariBrowser,
+      },
+      {
+        userAgent:
+          "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Edg/120.0.0.0 Chrome/120.0.0.0 Safari/537.36",
+        expectedDevice: DeviceType.EdgeBrowser,
+      },
+      {
+        userAgent:
+          "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.5481.65 Safari/537.36 OPR/95.0.4635.46",
+        expectedDevice: DeviceType.OperaBrowser,
+      },
+      {
+        userAgent:
+          "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.6261.57 Safari/537.36 Vivaldi/6.5.3206.48",
+        expectedDevice: DeviceType.VivaldiBrowser,
+      },
+    ];
+
+    test.each(testData)(
+      "returns $expectedDevice for User-Agent: $userAgent",
+      ({ userAgent, expectedDevice, windowProps }) => {
+        setUserAgent(userAgent);
+        setWindowProperties(windowProps);
+        const result = webPlatformUtilsService.getDevice();
+        expect(result).toBe(expectedDevice);
+      },
+    );
+  });
 });
diff --git a/apps/web/src/app/core/web-platform-utils.service.ts b/apps/web/src/app/core/web-platform-utils.service.ts
index 3df2a7d895b..c3d1f5e3c1a 100644
--- a/apps/web/src/app/core/web-platform-utils.service.ts
+++ b/apps/web/src/app/core/web-platform-utils.service.ts
@@ -34,6 +34,13 @@ export class WebPlatformUtilsService implements PlatformUtilsService {
       this.browserCache = DeviceType.EdgeBrowser;
     } else if (navigator.userAgent.indexOf(" Vivaldi/") !== -1) {
       this.browserCache = DeviceType.VivaldiBrowser;
+    } else if (
+      // We are only detecting DuckDuckGo browser on macOS currently, as
+      // it is not presenting the Ddg suffix on Windows. DuckDuckGo users
+      // on Windows will be detected as Edge.
+      navigator.userAgent.indexOf("Ddg") !== -1
+    ) {
+      this.browserCache = DeviceType.DuckDuckGoBrowser;
     } else if (
       navigator.userAgent.indexOf(" Safari/") !== -1 &&
       navigator.userAgent.indexOf("Chrome") === -1
@@ -83,6 +90,10 @@ export class WebPlatformUtilsService implements PlatformUtilsService {
     return this.getDevice() === DeviceType.SafariBrowser;
   }
 
+  isWebKit(): boolean {
+    return true;
+  }
+
   isMacAppStore(): boolean {
     return false;
   }
@@ -120,6 +131,15 @@ export class WebPlatformUtilsService implements PlatformUtilsService {
     return true;
   }
 
+  supportsAutofill(): boolean {
+    return false;
+  }
+
+  // Safari support for blob downloads is inconsistent and requires workarounds
+  supportsFileDownloads(): boolean {
+    return !(this.getDevice() === DeviceType.SafariBrowser);
+  }
+
   showToast(
     type: "error" | "success" | "warning" | "info",
     title: string,
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/shared/secrets-list.component.ts b/bitwarden_license/bit-web/src/app/secrets-manager/shared/secrets-list.component.ts
index a7ee818a01f..18ac0a80454 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/shared/secrets-list.component.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/shared/secrets-list.component.ts
@@ -180,22 +180,4 @@ export class SecretsListComponent implements OnDestroy {
       i18nService.t("valueCopied", i18nService.t("uuid")),
     );
   }
-
-  /**
-   * TODO: Remove in favor of updating `PlatformUtilsService.copyToClipboard`
-   */
-  private static copyToClipboardAsync(
-    text: Promise<string>,
-    platformUtilsService: PlatformUtilsService,
-  ) {
-    if (platformUtilsService.isSafari()) {
-      return navigator.clipboard.write([
-        new ClipboardItem({
-          ["text/plain"]: text,
-        }),
-      ]);
-    }
-
-    return text.then((t) => platformUtilsService.copyToClipboard(t));
-  }
 }
diff --git a/libs/angular/src/tools/send/add-edit.component.ts b/libs/angular/src/tools/send/add-edit.component.ts
index 0289664c365..221b751528a 100644
--- a/libs/angular/src/tools/send/add-edit.component.ts
+++ b/libs/angular/src/tools/send/add-edit.component.ts
@@ -148,14 +148,6 @@ export class AddEditComponent implements OnInit, OnDestroy {
     return null;
   }
 
-  get isSafari() {
-    return this.platformUtilsService.isSafari();
-  }
-
-  get isDateTimeLocalSupported(): boolean {
-    return !(this.platformUtilsService.isFirefox() || this.platformUtilsService.isSafari());
-  }
-
   async ngOnInit() {
     this.accountService.activeAccount$
       .pipe(
diff --git a/libs/common/src/enums/device-type.enum.ts b/libs/common/src/enums/device-type.enum.ts
index d5628536ff7..c462081140e 100644
--- a/libs/common/src/enums/device-type.enum.ts
+++ b/libs/common/src/enums/device-type.enum.ts
@@ -27,6 +27,7 @@ export enum DeviceType {
   WindowsCLI = 23,
   MacOsCLI = 24,
   LinuxCLI = 25,
+  DuckDuckGoBrowser = 26,
 }
 
 /**
@@ -55,6 +56,7 @@ export const DeviceTypeMetadata: Record<DeviceType, DeviceTypeMetadata> = {
   [DeviceType.IEBrowser]: { category: "webVault", platform: "IE" },
   [DeviceType.SafariBrowser]: { category: "webVault", platform: "Safari" },
   [DeviceType.VivaldiBrowser]: { category: "webVault", platform: "Vivaldi" },
+  [DeviceType.DuckDuckGoBrowser]: { category: "webVault", platform: "DuckDuckGo" },
   [DeviceType.UnknownBrowser]: { category: "webVault", platform: "Unknown" },
   [DeviceType.WindowsDesktop]: { category: "desktop", platform: "Windows" },
   [DeviceType.MacOsDesktop]: { category: "desktop", platform: "macOS" },
diff --git a/libs/common/src/platform/abstractions/platform-utils.service.ts b/libs/common/src/platform/abstractions/platform-utils.service.ts
index fa0fc8f2501..7586da5a564 100644
--- a/libs/common/src/platform/abstractions/platform-utils.service.ts
+++ b/libs/common/src/platform/abstractions/platform-utils.service.ts
@@ -28,6 +28,15 @@ export abstract class PlatformUtilsService {
   abstract getApplicationVersionNumber(): Promise<string>;
   abstract supportsWebAuthn(win: Window): boolean;
   abstract supportsDuo(): boolean;
+  /**
+   * Returns true if the device supports autofill functionality
+   */
+  abstract supportsAutofill(): boolean;
+  /**
+   * Returns true if the device supports native file downloads without
+   * the need for `target="_blank"`
+   */
+  abstract supportsFileDownloads(): boolean;
   /**
    * @deprecated use `@bitwarden/components/ToastService.showToast` instead
    *
diff --git a/libs/common/src/services/api.service.ts b/libs/common/src/services/api.service.ts
index ca6cd6570a4..62d300fc029 100644
--- a/libs/common/src/services/api.service.ts
+++ b/libs/common/src/services/api.service.ts
@@ -97,7 +97,7 @@ import { PaymentResponse } from "../billing/models/response/payment.response";
 import { PlanResponse } from "../billing/models/response/plan.response";
 import { SubscriptionResponse } from "../billing/models/response/subscription.response";
 import { TaxInfoResponse } from "../billing/models/response/tax-info.response";
-import { DeviceType } from "../enums";
+import { ClientType, DeviceType } from "../enums";
 import { KeyConnectorUserKeyRequest } from "../key-management/key-connector/models/key-connector-user-key.request";
 import { SetKeyConnectorKeyRequest } from "../key-management/key-connector/models/set-key-connector-key.request";
 import { VaultTimeoutSettingsService } from "../key-management/vault-timeout";
@@ -154,8 +154,6 @@ export type HttpOperations = {
 export class ApiService implements ApiServiceAbstraction {
   private device: DeviceType;
   private deviceType: string;
-  private isWebClient = false;
-  private isDesktopClient = false;
   private refreshTokenPromise: Promise<string> | undefined;
 
   /**
@@ -178,22 +176,6 @@ export class ApiService implements ApiServiceAbstraction {
   ) {
     this.device = platformUtilsService.getDevice();
     this.deviceType = this.device.toString();
-    this.isWebClient =
-      this.device === DeviceType.IEBrowser ||
-      this.device === DeviceType.ChromeBrowser ||
-      this.device === DeviceType.EdgeBrowser ||
-      this.device === DeviceType.FirefoxBrowser ||
-      this.device === DeviceType.OperaBrowser ||
-      this.device === DeviceType.SafariBrowser ||
-      this.device === DeviceType.UnknownBrowser ||
-      this.device === DeviceType.VivaldiBrowser;
-    this.isDesktopClient =
-      this.device === DeviceType.WindowsDesktop ||
-      this.device === DeviceType.MacOsDesktop ||
-      this.device === DeviceType.LinuxDesktop ||
-      this.device === DeviceType.WindowsCLI ||
-      this.device === DeviceType.MacOsCLI ||
-      this.device === DeviceType.LinuxCLI;
   }
 
   // Auth APIs
@@ -838,7 +820,9 @@ export class ApiService implements ApiServiceAbstraction {
   // Sync APIs
 
   async getSync(): Promise<SyncResponse> {
-    const path = this.isDesktopClient || this.isWebClient ? "/sync?excludeDomains=true" : "/sync";
+    const path = !this.platformUtilsService.supportsAutofill()
+      ? "/sync?excludeDomains=true"
+      : "/sync";
     const r = await this.send("GET", path, null, true, true);
     return new SyncResponse(r);
   }
@@ -1875,7 +1859,7 @@ export class ApiService implements ApiServiceAbstraction {
 
   private async getCredentials(): Promise<RequestCredentials> {
     const env = await firstValueFrom(this.environmentService.environment$);
-    if (!this.isWebClient || env.hasBaseUrl()) {
+    if (this.platformUtilsService.getClientType() !== ClientType.Web || env.hasBaseUrl()) {
       return "include";
     }
     return undefined;

From 913c3ddbec4dab7a28ffc340a076a8ed2b0914b8 Mon Sep 17 00:00:00 2001
From: Bryan Cunningham <bcunningham@bitwarden.com>
Date: Thu, 3 Jul 2025 12:14:10 -0400
Subject: [PATCH 056/239] [CL-620] add padding to increase checkbox clickable
 area (#15331)

* add padding to increaase checkbox clickable area

* fix checkbox story imports

* enlarge click area of checkbox w/out label

* apply disabled states to before

* WIP

* revert experimental changes

* add negative margin to account for extra padding

* Remove margin from checkbox and apply in form control

* Remove margin from radio as it's applied in form control

* add back line height removed in error
---
 .../src/checkbox/checkbox.component.ts        | 99 ++++++++++---------
 .../src/checkbox/checkbox.stories.ts          | 16 +--
 .../form-control/form-control.component.html  |  2 +-
 .../src/radio-button/radio-input.component.ts |  1 -
 4 files changed, 65 insertions(+), 53 deletions(-)

diff --git a/libs/components/src/checkbox/checkbox.component.ts b/libs/components/src/checkbox/checkbox.component.ts
index 079ede287cc..c420b3f3473 100644
--- a/libs/components/src/checkbox/checkbox.component.ts
+++ b/libs/components/src/checkbox/checkbox.component.ts
@@ -20,64 +20,75 @@ export class CheckboxComponent implements BitFormControlAbstraction {
     "tw-cursor-pointer",
     "tw-inline-block",
     "tw-align-sub",
-    "tw-rounded",
-    "tw-border",
-    "tw-border-solid",
-    "tw-border-secondary-500",
-    "tw-h-[1.12rem]",
-    "tw-w-[1.12rem]",
-    "tw-me-1.5",
     "tw-flex-none", // Flexbox fix for bit-form-control
+    "!tw-p-1",
+    "after:tw-inset-1",
+    // negative margin to negate the positioning added by the padding
+    "!-tw-mt-1",
+    "!-tw-mb-1",
+    "!-tw-ms-1",
 
     "before:tw-content-['']",
     "before:tw-block",
-    "before:tw-absolute",
     "before:tw-inset-0",
+    "before:tw-h-[1.12rem]",
+    "before:tw-w-[1.12rem]",
+    "before:tw-rounded",
+    "before:tw-border",
+    "before:tw-border-solid",
+    "before:tw-border-secondary-500",
 
-    "hover:tw-border-2",
-    "[&>label]:tw-border-2",
+    "after:tw-content-['']",
+    "after:tw-block",
+    "after:tw-absolute",
+    "after:tw-inset-0",
+    "after:tw-h-[1.12rem]",
+    "after:tw-w-[1.12rem]",
+
+    "hover:before:tw-border-2",
+    "[&>label]:before:tw-border-2",
 
     // if it exists, the parent form control handles focus
-    "[&:not(bit-form-control_*)]:focus-visible:tw-ring-2",
-    "[&:not(bit-form-control_*)]:focus-visible:tw-ring-offset-2",
-    "[&:not(bit-form-control_*)]:focus-visible:tw-ring-primary-600",
+    "[&:not(bit-form-control_*)]:focus-visible:before:tw-ring-2",
+    "[&:not(bit-form-control_*)]:focus-visible:before:tw-ring-offset-2",
+    "[&:not(bit-form-control_*)]:focus-visible:before:tw-ring-primary-600",
 
-    "disabled:tw-cursor-auto",
-    "disabled:tw-border",
-    "disabled:hover:tw-border",
-    "disabled:tw-bg-secondary-100",
-    "disabled:hover:tw-bg-secondary-100",
+    "disabled:before:tw-cursor-auto",
+    "disabled:before:tw-border",
+    "disabled:before:hover:tw-border",
+    "disabled:before:tw-bg-secondary-100",
+    "disabled:hover:before:tw-bg-secondary-100",
 
-    "checked:tw-bg-primary-600",
-    "checked:tw-border-primary-600",
-    "checked:hover:tw-bg-primary-700",
-    "checked:hover:tw-border-primary-700",
-    "[&>label:hover]:checked:tw-bg-primary-700",
-    "[&>label:hover]:checked:tw-border-primary-700",
-    "checked:before:tw-bg-text-contrast",
-    "checked:before:tw-mask-position-[center]",
-    "checked:before:tw-mask-repeat-[no-repeat]",
-    "checked:disabled:tw-border-secondary-100",
-    "checked:disabled:hover:tw-border-secondary-100",
-    "checked:disabled:tw-bg-secondary-100",
-    "checked:disabled:before:tw-bg-text-muted",
+    "checked:before:tw-bg-primary-600",
+    "checked:before:tw-border-primary-600",
+    "checked:before:hover:tw-bg-primary-700",
+    "checked:before:hover:tw-border-primary-700",
+    "[&>label:hover]:checked:before:tw-bg-primary-700",
+    "[&>label:hover]:checked:before:tw-border-primary-700",
+    "checked:after:tw-bg-text-contrast",
+    "checked:after:tw-mask-position-[center]",
+    "checked:after:tw-mask-repeat-[no-repeat]",
+    "checked:disabled:before:tw-border-secondary-100",
+    "checked:disabled:hover:before:tw-border-secondary-100",
+    "checked:disabled:before:tw-bg-secondary-100",
+    "checked:disabled:after:tw-bg-text-muted",
 
-    "[&:not(:indeterminate)]:checked:before:tw-mask-image-[var(--mask-image)]",
-    "indeterminate:before:tw-mask-image-[var(--indeterminate-mask-image)]",
+    "[&:not(:indeterminate)]:checked:after:tw-mask-image-[var(--mask-image)]",
+    "indeterminate:after:tw-mask-image-[var(--indeterminate-mask-image)]",
 
-    "indeterminate:tw-bg-primary-600",
-    "indeterminate:tw-border-primary-600",
-    "indeterminate:hover:tw-bg-primary-700",
-    "indeterminate:hover:tw-border-primary-700",
-    "[&>label:hover]:indeterminate:tw-bg-primary-700",
-    "[&>label:hover]:indeterminate:tw-border-primary-700",
-    "indeterminate:before:tw-bg-text-contrast",
-    "indeterminate:before:tw-mask-position-[center]",
-    "indeterminate:before:tw-mask-repeat-[no-repeat]",
-    "indeterminate:before:tw-mask-image-[var(--indeterminate-mask-image)]",
+    "indeterminate:before:tw-bg-primary-600",
+    "indeterminate:before:tw-border-primary-600",
+    "indeterminate:hover:before:tw-bg-primary-700",
+    "indeterminate:hover:before:tw-border-primary-700",
+    "[&>label:hover]:indeterminate:before:tw-bg-primary-700",
+    "[&>label:hover]:indeterminate:before:tw-border-primary-700",
+    "indeterminate:after:tw-bg-text-contrast",
+    "indeterminate:after:tw-mask-position-[center]",
+    "indeterminate:after:tw-mask-repeat-[no-repeat]",
+    "indeterminate:after:tw-mask-image-[var(--indeterminate-mask-image)]",
     "indeterminate:disabled:tw-border-secondary-100",
     "indeterminate:disabled:tw-bg-secondary-100",
-    "indeterminate:disabled:before:tw-bg-text-muted",
+    "indeterminate:disabled:after:tw-bg-text-muted",
   ];
 
   constructor(@Optional() @Self() private ngControl?: NgControl) {}
diff --git a/libs/components/src/checkbox/checkbox.stories.ts b/libs/components/src/checkbox/checkbox.stories.ts
index 123c6704ff4..9050d97cafc 100644
--- a/libs/components/src/checkbox/checkbox.stories.ts
+++ b/libs/components/src/checkbox/checkbox.stories.ts
@@ -13,6 +13,7 @@ import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.servic
 
 import { BadgeModule } from "../badge";
 import { FormControlModule } from "../form-control";
+import { FormFieldModule } from "../form-field";
 import { TableModule } from "../table";
 import { I18nMockService } from "../utils/i18n-mock.service";
 
@@ -30,6 +31,7 @@ const template = /*html*/ `
 @Component({
   selector: "app-example",
   template,
+  imports: [CheckboxModule, FormFieldModule, ReactiveFormsModule],
 })
 class ExampleComponent {
   protected formObj = this.formBuilder.group({
@@ -55,8 +57,8 @@ export default {
   title: "Component Library/Form/Checkbox",
   decorators: [
     moduleMetadata({
-      declarations: [ExampleComponent],
       imports: [
+        ExampleComponent,
         FormsModule,
         ReactiveFormsModule,
         FormControlModule,
@@ -195,17 +197,17 @@ export const Custom: Story = {
     props: args,
     template: /*html*/ `
       <div class="tw-flex tw-flex-col tw-w-32">
-        <label class="tw-text-main tw-flex tw-bg-secondary-300 tw-p-2">
+        <label class="tw-text-main tw-gap-2 tw-flex tw-items-center tw-justify-between tw-bg-secondary-300 tw-p-2">
           A-Z
-          <input class="tw-ms-auto focus-visible:tw-ring-offset-secondary-300" type="checkbox" bitCheckbox />
+          <input class="tw-me-0 focus-visible:tw-ring-offset-secondary-300" type="checkbox" bitCheckbox />
         </label>
-        <label class="tw-text-main tw-flex tw-bg-secondary-300 tw-p-2">
+        <label class="tw-text-main tw-flex tw-items-center tw-justify-between tw-bg-secondary-300 tw-p-2">
           a-z
-          <input class="tw-ms-auto focus-visible:tw-ring-offset-secondary-300" type="checkbox" bitCheckbox />
+          <input class="tw-me-0 focus-visible:tw-ring-offset-secondary-300" type="checkbox" bitCheckbox />
         </label>
-        <label class="tw-text-main tw-flex tw-bg-secondary-300 tw-p-2">
+       <label class="tw-text-main tw-flex tw-items-center tw-justify-between tw-bg-secondary-300 tw-p-2">
           0-9
-          <input class="tw-ms-auto focus-visible:tw-ring-offset-secondary-300" type="checkbox" bitCheckbox />
+          <input class="tw-me-0 focus-visible:tw-ring-offset-secondary-300" type="checkbox" bitCheckbox />
         </label>
       </div>
     `,
diff --git a/libs/components/src/form-control/form-control.component.html b/libs/components/src/form-control/form-control.component.html
index 735e375a29a..15d422b01a1 100644
--- a/libs/components/src/form-control/form-control.component.html
+++ b/libs/components/src/form-control/form-control.component.html
@@ -1,5 +1,5 @@
 <label
-  class="tw-transition tw-select-none tw-mb-0 tw-inline-flex tw-rounded tw-p-0.5 has-[:focus-visible]:tw-ring has-[:focus-visible]:tw-ring-primary-600"
+  class="tw-transition tw-items-start [&:has(input[type='checkbox'])]:tw-gap-[.25rem] [&:has(input[type='radio'])]:tw-gap-1.5 tw-select-none tw-mb-0 tw-inline-flex tw-rounded has-[:focus-visible]:tw-ring has-[:focus-visible]:tw-ring-primary-600"
   [ngClass]="[formControl.disabled ? 'tw-cursor-auto' : 'tw-cursor-pointer']"
 >
   <ng-content></ng-content>
diff --git a/libs/components/src/radio-button/radio-input.component.ts b/libs/components/src/radio-button/radio-input.component.ts
index 53bda5566b7..1598def5c65 100644
--- a/libs/components/src/radio-button/radio-input.component.ts
+++ b/libs/components/src/radio-button/radio-input.component.ts
@@ -29,7 +29,6 @@ export class RadioInputComponent implements BitFormControlAbstraction {
     "tw-border-secondary-600",
     "tw-w-[1.12rem]",
     "tw-h-[1.12rem]",
-    "tw-me-1.5",
     "tw-flex-none", // Flexbox fix for bit-form-control
 
     "hover:tw-border-2",

From 2d897e8ceabf0750eb3e61fea6629b7c938d25aa Mon Sep 17 00:00:00 2001
From: cyprain-okeke <108260115+cyprain-okeke@users.noreply.github.com>
Date: Thu, 3 Jul 2025 18:07:51 +0100
Subject: [PATCH 057/239] Fix the failing billing steps (#15459)

---
 .../complete-trial-initiation.component.html    |  2 +-
 .../complete-trial-initiation.component.ts      | 17 ++++++++++++++++-
 libs/common/src/enums/feature-flag.enum.ts      |  2 ++
 3 files changed, 19 insertions(+), 2 deletions(-)

diff --git a/apps/web/src/app/billing/trial-initiation/complete-trial-initiation/complete-trial-initiation.component.html b/apps/web/src/app/billing/trial-initiation/complete-trial-initiation/complete-trial-initiation.component.html
index 7a1ca2cd83d..98fe4032b55 100644
--- a/apps/web/src/app/billing/trial-initiation/complete-trial-initiation/complete-trial-initiation.component.html
+++ b/apps/web/src/app/billing/trial-initiation/complete-trial-initiation/complete-trial-initiation.component.html
@@ -48,7 +48,7 @@
       <app-vertical-step
         label="Billing"
         [subLabel]="billingSubLabel"
-        *ngIf="(trialPaymentOptional$ | async) && trialLength === 0 && !isSecretsManagerFree"
+        *ngIf="showBillingStep$ | async"
       >
         <app-trial-billing-step
           *ngIf="stepper.selectedIndex === 2"
diff --git a/apps/web/src/app/billing/trial-initiation/complete-trial-initiation/complete-trial-initiation.component.ts b/apps/web/src/app/billing/trial-initiation/complete-trial-initiation/complete-trial-initiation.component.ts
index b965f816a76..2b927f6db09 100644
--- a/apps/web/src/app/billing/trial-initiation/complete-trial-initiation/complete-trial-initiation.component.ts
+++ b/apps/web/src/app/billing/trial-initiation/complete-trial-initiation/complete-trial-initiation.component.ts
@@ -4,7 +4,7 @@ import { StepperSelectionEvent } from "@angular/cdk/stepper";
 import { Component, OnDestroy, OnInit, ViewChild } from "@angular/core";
 import { FormBuilder, Validators } from "@angular/forms";
 import { ActivatedRoute, Router } from "@angular/router";
-import { firstValueFrom, Subject, switchMap, takeUntil } from "rxjs";
+import { combineLatest, firstValueFrom, map, Subject, switchMap, takeUntil } from "rxjs";
 
 import {
   InputPasswordFlow,
@@ -101,6 +101,9 @@ export class CompleteTrialInitiationComponent implements OnInit, OnDestroy {
   protected trialPaymentOptional$ = this.configService.getFeatureFlag$(
     FeatureFlag.TrialPaymentOptional,
   );
+  protected allowTrialLengthZero$ = this.configService.getFeatureFlag$(
+    FeatureFlag.AllowTrialLengthZero,
+  );
 
   constructor(
     protected router: Router,
@@ -334,6 +337,18 @@ export class CompleteTrialInitiationComponent implements OnInit, OnDestroy {
     return this.productTier;
   }
 
+  readonly showBillingStep$ = combineLatest([
+    this.trialPaymentOptional$,
+    this.allowTrialLengthZero$,
+  ]).pipe(
+    map(([trialPaymentOptional, allowTrialLengthZero]) => {
+      return (
+        (!trialPaymentOptional && !this.isSecretsManagerFree) ||
+        (trialPaymentOptional && allowTrialLengthZero && this.trialLength === 0)
+      );
+    }),
+  );
+
   /** Create an organization unless the trial is for secrets manager */
   async conditionallyCreateOrganization(): Promise<void> {
     if (!this.isSecretsManagerFree) {
diff --git a/libs/common/src/enums/feature-flag.enum.ts b/libs/common/src/enums/feature-flag.enum.ts
index dd2aadc0009..68228b63bea 100644
--- a/libs/common/src/enums/feature-flag.enum.ts
+++ b/libs/common/src/enums/feature-flag.enum.ts
@@ -33,6 +33,7 @@ export enum FeatureFlag {
   PM17772_AdminInitiatedSponsorships = "pm-17772-admin-initiated-sponsorships",
   PM19956_RequireProviderPaymentMethodDuringSetup = "pm-19956-require-provider-payment-method-during-setup",
   UseOrganizationWarningsService = "use-organization-warnings-service",
+  AllowTrialLengthZero = "pm-20322-allow-trial-length-0",
 
   /* Data Insights and Reporting */
   EnableRiskInsightsNotifications = "enable-risk-insights-notifications",
@@ -114,6 +115,7 @@ export const DefaultFeatureFlagValue = {
   [FeatureFlag.PM17772_AdminInitiatedSponsorships]: FALSE,
   [FeatureFlag.PM19956_RequireProviderPaymentMethodDuringSetup]: FALSE,
   [FeatureFlag.UseOrganizationWarningsService]: FALSE,
+  [FeatureFlag.AllowTrialLengthZero]: FALSE,
 
   /* Key Management */
   [FeatureFlag.PrivateKeyRegeneration]: FALSE,

From 20a5f5c7d9ba7637497a65d7c76a35e7dc2f4da8 Mon Sep 17 00:00:00 2001
From: Daniel Riera <driera@livefront.com>
Date: Thu, 3 Jul 2025 13:26:13 -0400
Subject: [PATCH 058/239] [PM-23082] The v3 notification is using the v2
 notification sizing in some cases (#15370)

* PM-23082

* add tests
---
 ...rlay-notifications-content.service.spec.ts | 34 ++++++++++
 .../overlay-notifications-content.service.ts  | 67 ++++++++-----------
 2 files changed, 61 insertions(+), 40 deletions(-)

diff --git a/apps/browser/src/autofill/overlay/notifications/content/overlay-notifications-content.service.spec.ts b/apps/browser/src/autofill/overlay/notifications/content/overlay-notifications-content.service.spec.ts
index 28db10b35fa..9202a5a3839 100644
--- a/apps/browser/src/autofill/overlay/notifications/content/overlay-notifications-content.service.spec.ts
+++ b/apps/browser/src/autofill/overlay/notifications/content/overlay-notifications-content.service.spec.ts
@@ -44,6 +44,40 @@ describe("OverlayNotificationsContentService", () => {
       expect(bodyAppendChildSpy).not.toHaveBeenCalled();
     });
 
+    it("applies correct styles when notificationRefreshFlag is true", async () => {
+      overlayNotificationsContentService["notificationRefreshFlag"] = true;
+
+      sendMockExtensionMessage({
+        command: "openNotificationBar",
+        data: {
+          type: "change",
+          typeData: mock<NotificationTypeData>(),
+        },
+      });
+      await flushPromises();
+
+      const barElement = overlayNotificationsContentService["notificationBarElement"]!;
+      expect(barElement.style.height).toBe("400px");
+      expect(barElement.style.right).toBe("0px");
+    });
+
+    it("applies correct styles when notificationRefreshFlag is false", async () => {
+      overlayNotificationsContentService["notificationRefreshFlag"] = false;
+
+      sendMockExtensionMessage({
+        command: "openNotificationBar",
+        data: {
+          type: "change",
+          typeData: mock<NotificationTypeData>(),
+        },
+      });
+      await flushPromises();
+
+      const barElement = overlayNotificationsContentService["notificationBarElement"]!;
+      expect(barElement.style.height).toBe("82px");
+      expect(barElement.style.right).toBe("10px");
+    });
+
     it("closes the notification bar if the notification bar type has changed", async () => {
       overlayNotificationsContentService["currentNotificationBarType"] = "add";
       const closeNotificationBarSpy = jest.spyOn(
diff --git a/apps/browser/src/autofill/overlay/notifications/content/overlay-notifications-content.service.ts b/apps/browser/src/autofill/overlay/notifications/content/overlay-notifications-content.service.ts
index ee005852a42..01f8237581d 100644
--- a/apps/browser/src/autofill/overlay/notifications/content/overlay-notifications-content.service.ts
+++ b/apps/browser/src/autofill/overlay/notifications/content/overlay-notifications-content.service.ts
@@ -21,24 +21,32 @@ export class OverlayNotificationsContentService
   private notificationBarIframeElement: HTMLIFrameElement | null = null;
   private currentNotificationBarType: NotificationType | null = null;
   private notificationRefreshFlag: boolean = false;
-  private notificationBarElementStyles: Partial<CSSStyleDeclaration> = {
-    height: "82px",
-    width: "430px",
-    maxWidth: "calc(100% - 20px)",
-    minHeight: "initial",
-    top: "10px",
-    right: "10px",
-    padding: "0",
-    position: "fixed",
-    zIndex: "2147483647",
-    visibility: "visible",
-    borderRadius: "4px",
-    border: "none",
-    backgroundColor: "transparent",
-    overflow: "hidden",
-    transition: "box-shadow 0.15s ease",
-    transitionDelay: "0.15s",
-  };
+  private getNotificationBarStyles(): Partial<CSSStyleDeclaration> {
+    const styles: Partial<CSSStyleDeclaration> = {
+      height: "400px",
+      width: "430px",
+      maxWidth: "calc(100% - 20px)",
+      minHeight: "initial",
+      top: "10px",
+      right: "0px",
+      padding: "0",
+      position: "fixed",
+      zIndex: "2147483647",
+      visibility: "visible",
+      borderRadius: "4px",
+      border: "none",
+      backgroundColor: "transparent",
+      overflow: "hidden",
+      transition: "box-shadow 0.15s ease",
+      transitionDelay: "0.15s",
+    };
+
+    if (!this.notificationRefreshFlag) {
+      styles.height = "82px";
+      styles.right = "10px";
+    }
+    return styles;
+  }
   private notificationBarIframeElementStyles: Partial<CSSStyleDeclaration> = {
     width: "100%",
     height: "100%",
@@ -60,7 +68,6 @@ export class OverlayNotificationsContentService
     void sendExtensionMessage("checkNotificationQueue");
     void sendExtensionMessage("notificationRefreshFlagValue").then((notificationRefreshFlag) => {
       this.notificationRefreshFlag = !!notificationRefreshFlag;
-      this.setNotificationRefreshBarHeight();
     });
   }
 
@@ -233,32 +240,12 @@ export class OverlayNotificationsContentService
       this.notificationBarElement = globalThis.document.createElement("div");
       this.notificationBarElement.id = "bit-notification-bar";
 
-      setElementStyles(this.notificationBarElement, this.notificationBarElementStyles, true);
-      this.setNotificationRefreshBarHeight();
+      setElementStyles(this.notificationBarElement, this.getNotificationBarStyles(), true);
 
       this.notificationBarElement.appendChild(this.notificationBarIframeElement);
     }
   }
 
-  /**
-   * Sets the height of the notification bar based on the value of `notificationRefreshFlag`.
-   * If the flag is `true`, the bar is expanded to 400px and aligned right.
-   * If the flag is `false`, `null`, or `undefined`, it defaults to height of 82px.
-   * Skips if the notification bar element has not yet been created.
-   *
-   */
-  private setNotificationRefreshBarHeight() {
-    const isNotificationV3 = !!this.notificationRefreshFlag;
-
-    if (!this.notificationBarElement) {
-      return;
-    }
-
-    if (isNotificationV3) {
-      setElementStyles(this.notificationBarElement, { height: "400px", right: "0" }, true);
-    }
-  }
-
   /**
    * Sets up the message listener for the initialization of the notification bar.
    * This will send the initialization data to the notification bar iframe.

From 40cbd5942b6948aea58cfe6ec6c1802f18474c28 Mon Sep 17 00:00:00 2001
From: Vicki League <vleague@bitwarden.com>
Date: Thu, 3 Jul 2025 14:09:42 -0400
Subject: [PATCH 059/239] [UIF] increase memory limit for local storybook npm
 command (#15460)

---
 package.json | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/package.json b/package.json
index b522113876c..f45b04c06e9 100644
--- a/package.json
+++ b/package.json
@@ -25,7 +25,7 @@
     "test:locales": "tsc --project ./scripts/tsconfig.json && node ./scripts/dist/test-locales.js",
     "lint:dep-ownership": "tsc --project ./scripts/tsconfig.json && node ./scripts/dist/dep-ownership.js",
     "docs:json": "compodoc -p ./tsconfig.json -e json -d . --disableRoutesGraph",
-    "storybook": "ng run components:storybook",
+    "storybook": "cross-env NODE_OPTIONS=\"--max-old-space-size=8192\" ng run components:storybook",
     "build-storybook": "cross-env NODE_OPTIONS=\"--max-old-space-size=8192\" ng run components:build-storybook",
     "build-storybook:ci": "cross-env NODE_OPTIONS=\"--max-old-space-size=8192\" ng run components:build-storybook --webpack-stats-json",
     "test-stories": "test-storybook --url http://localhost:6006",

From 3e4b82d725755dfa62a9eb7becc8628ff95225c1 Mon Sep 17 00:00:00 2001
From: Vicki League <vleague@bitwarden.com>
Date: Thu, 3 Jul 2025 15:23:21 -0400
Subject: [PATCH 060/239] [CL-748] Support nondismissable dialogs and simple
 dialogs (#15464)

---
 .../src/dialog/dialog.service.stories.ts      |  56 ++++++++-
 .../src/dialog/dialog/dialog.component.html   |  20 +--
 .../src/dialog/dialog/dialog.component.ts     |   6 +-
 .../simple-dialog.service.stories.ts          | 115 +++++++++++++++++-
 4 files changed, 177 insertions(+), 20 deletions(-)

diff --git a/libs/components/src/dialog/dialog.service.stories.ts b/libs/components/src/dialog/dialog.service.stories.ts
index 7e2d8c62bb6..c7b8f0ae916 100644
--- a/libs/components/src/dialog/dialog.service.stories.ts
+++ b/libs/components/src/dialog/dialog.service.stories.ts
@@ -25,10 +25,13 @@ interface Animal {
   template: `
     <bit-layout>
       <button class="tw-mr-2" bitButton type="button" (click)="openDialog()">Open Dialog</button>
+      <button class="tw-mr-2" bitButton type="button" (click)="openDialogNonDismissable()">
+        Open Non-Dismissable Dialog
+      </button>
       <button bitButton type="button" (click)="openDrawer()">Open Drawer</button>
     </bit-layout>
   `,
-  imports: [ButtonModule],
+  imports: [ButtonModule, LayoutComponent],
 })
 class StoryDialogComponent {
   constructor(public dialogService: DialogService) {}
@@ -41,6 +44,15 @@ class StoryDialogComponent {
     });
   }
 
+  openDialogNonDismissable() {
+    this.dialogService.open(NonDismissableContent, {
+      data: {
+        animal: "panda",
+      },
+      disableClose: true,
+    });
+  }
+
   openDrawer() {
     this.dialogService.openDrawer(StoryDialogContentComponent, {
       data: {
@@ -79,13 +91,40 @@ class StoryDialogContentComponent {
   }
 }
 
+@Component({
+  template: `
+    <bit-dialog title="Dialog Title" dialogSize="large">
+      <span bitDialogContent>
+        Dialog body text goes here.
+        <br />
+        Animal: {{ animal }}
+      </span>
+      <ng-container bitDialogFooter>
+        <button type="button" bitButton buttonType="primary" (click)="dialogRef.close()">
+          Save
+        </button>
+      </ng-container>
+    </bit-dialog>
+  `,
+  imports: [DialogModule, ButtonModule],
+})
+class NonDismissableContent {
+  constructor(
+    public dialogRef: DialogRef,
+    @Inject(DIALOG_DATA) private data: Animal,
+  ) {}
+
+  get animal() {
+    return this.data?.animal;
+  }
+}
+
 export default {
   title: "Component Library/Dialogs/Service",
   component: StoryDialogComponent,
   decorators: [
     positionFixedWrapperDecorator(),
     moduleMetadata({
-      declarations: [StoryDialogContentComponent],
       imports: [
         SharedModule,
         ButtonModule,
@@ -138,8 +177,7 @@ export const Default: Story = {
   },
 };
 
-/** Drawers must be a descendant of `bit-layout`. */
-export const Drawer: Story = {
+export const NonDismissable: Story = {
   play: async (context) => {
     const canvas = context.canvasElement;
 
@@ -147,3 +185,13 @@ export const Drawer: Story = {
     await userEvent.click(button);
   },
 };
+
+/** Drawers must be a descendant of `bit-layout`. */
+export const Drawer: Story = {
+  play: async (context) => {
+    const canvas = context.canvasElement;
+
+    const button = getAllByRole(canvas, "button")[2];
+    await userEvent.click(button);
+  },
+};
diff --git a/libs/components/src/dialog/dialog/dialog.component.html b/libs/components/src/dialog/dialog/dialog.component.html
index eaf7fc2beec..db08f88799b 100644
--- a/libs/components/src/dialog/dialog/dialog.component.html
+++ b/libs/components/src/dialog/dialog/dialog.component.html
@@ -30,15 +30,17 @@
       }
       <ng-content select="[bitDialogTitle]"></ng-content>
     </h2>
-    <button
-      type="button"
-      bitIconButton="bwi-close"
-      buttonType="main"
-      size="default"
-      bitDialogClose
-      [attr.title]="'close' | i18n"
-      [attr.aria-label]="'close' | i18n"
-    ></button>
+    @if (!this.dialogRef?.disableClose) {
+      <button
+        type="button"
+        bitIconButton="bwi-close"
+        buttonType="main"
+        size="default"
+        bitDialogClose
+        [attr.title]="'close' | i18n"
+        [attr.aria-label]="'close' | i18n"
+      ></button>
+    }
   </header>
 
   <div
diff --git a/libs/components/src/dialog/dialog/dialog.component.ts b/libs/components/src/dialog/dialog/dialog.component.ts
index f3daa218cdb..c0ddab27dd5 100644
--- a/libs/components/src/dialog/dialog/dialog.component.ts
+++ b/libs/components/src/dialog/dialog/dialog.component.ts
@@ -87,8 +87,10 @@ export class DialogComponent {
   }
 
   handleEsc(event: Event) {
-    this.dialogRef?.close();
-    event.stopPropagation();
+    if (!this.dialogRef?.disableClose) {
+      this.dialogRef?.close();
+      event.stopPropagation();
+    }
   }
 
   get width() {
diff --git a/libs/components/src/dialog/simple-dialog/simple-dialog.service.stories.ts b/libs/components/src/dialog/simple-dialog/simple-dialog.service.stories.ts
index cc5c8f2ae1c..ce9f7b46fef 100644
--- a/libs/components/src/dialog/simple-dialog/simple-dialog.service.stories.ts
+++ b/libs/components/src/dialog/simple-dialog/simple-dialog.service.stories.ts
@@ -2,6 +2,7 @@ import { DialogRef, DIALOG_DATA } from "@angular/cdk/dialog";
 import { Component, Inject } from "@angular/core";
 import { provideAnimations } from "@angular/platform-browser/animations";
 import { Meta, StoryObj, moduleMetadata } from "@storybook/angular";
+import { getAllByRole, userEvent } from "@storybook/test";
 
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 
@@ -15,19 +16,45 @@ interface Animal {
 }
 
 @Component({
-  template: `<button type="button" bitButton (click)="openDialog()">Open Simple Dialog</button>`,
+  template: `
+    <button type="button" bitButton (click)="openSimpleDialog()">Open Simple Dialog</button>
+    <button type="button" bitButton (click)="openNonDismissableWithPrimaryButtonDialog()">
+      Open Non-Dismissable Simple Dialog with Primary Button
+    </button>
+    <button type="button" bitButton (click)="openNonDismissableWithNoButtonsDialog()">
+      Open Non-Dismissable Simple Dialog with No Buttons
+    </button>
+  `,
   imports: [ButtonModule],
 })
 class StoryDialogComponent {
   constructor(public dialogService: DialogService) {}
 
-  openDialog() {
-    this.dialogService.open(StoryDialogContentComponent, {
+  openSimpleDialog() {
+    this.dialogService.open(SimpleDialogContent, {
       data: {
         animal: "panda",
       },
     });
   }
+
+  openNonDismissableWithPrimaryButtonDialog() {
+    this.dialogService.open(NonDismissableWithPrimaryButtonContent, {
+      data: {
+        animal: "panda",
+      },
+      disableClose: true,
+    });
+  }
+
+  openNonDismissableWithNoButtonsDialog() {
+    this.dialogService.open(NonDismissableWithNoButtonsContent, {
+      data: {
+        animal: "panda",
+      },
+      disableClose: true,
+    });
+  }
 }
 
 @Component({
@@ -49,7 +76,60 @@ class StoryDialogComponent {
   `,
   imports: [ButtonModule, DialogModule],
 })
-class StoryDialogContentComponent {
+class SimpleDialogContent {
+  constructor(
+    public dialogRef: DialogRef,
+    @Inject(DIALOG_DATA) private data: Animal,
+  ) {}
+
+  get animal() {
+    return this.data?.animal;
+  }
+}
+
+@Component({
+  template: `
+    <bit-simple-dialog>
+      <span bitDialogTitle>Dialog Title</span>
+      <span bitDialogContent>
+        Dialog body text goes here.
+        <br />
+        Animal: {{ animal }}
+      </span>
+      <ng-container bitDialogFooter>
+        <button type="button" bitButton buttonType="primary" (click)="dialogRef.close()">
+          Save
+        </button>
+      </ng-container>
+    </bit-simple-dialog>
+  `,
+  imports: [ButtonModule, DialogModule],
+})
+class NonDismissableWithPrimaryButtonContent {
+  constructor(
+    public dialogRef: DialogRef,
+    @Inject(DIALOG_DATA) private data: Animal,
+  ) {}
+
+  get animal() {
+    return this.data?.animal;
+  }
+}
+
+@Component({
+  template: `
+    <bit-simple-dialog>
+      <span bitDialogTitle>Dialog Title</span>
+      <span bitDialogContent>
+        Dialog body text goes here.
+        <br />
+        Animal: {{ animal }}
+      </span>
+    </bit-simple-dialog>
+  `,
+  imports: [ButtonModule, DialogModule],
+})
+class NonDismissableWithNoButtonsContent {
   constructor(
     public dialogRef: DialogRef,
     @Inject(DIALOG_DATA) private data: Animal,
@@ -89,4 +169,29 @@ export default {
 
 type Story = StoryObj<StoryDialogComponent>;
 
-export const Default: Story = {};
+export const Default: Story = {
+  play: async (context) => {
+    const canvas = context.canvasElement;
+
+    const button = getAllByRole(canvas, "button")[0];
+    await userEvent.click(button);
+  },
+};
+
+export const NonDismissableWithPrimaryButton: Story = {
+  play: async (context) => {
+    const canvas = context.canvasElement;
+
+    const button = getAllByRole(canvas, "button")[1];
+    await userEvent.click(button);
+  },
+};
+
+export const NonDismissableWithNoButtons: Story = {
+  play: async (context) => {
+    const canvas = context.canvasElement;
+
+    const button = getAllByRole(canvas, "button")[2];
+    await userEvent.click(button);
+  },
+};

From b4d87007baa2fc771fae5b19bfc218e4f2395a38 Mon Sep 17 00:00:00 2001
From: Bryan Cunningham <bcunningham@bitwarden.com>
Date: Thu, 3 Jul 2025 16:12:56 -0400
Subject: [PATCH 061/239] [CL-718] nav updates (#15226)

* add basic new nav item styling

* update alt-3 bg color

* add x padding to item

* remove copy left in error

* style app switcher to match nav items

* adding new button hover colors

* add new logo lockups

* use new logos in web vault

* fix color and svg fills

* use set height for nav items

* optimize SVGs

* move if logic

* use rem for icon size

* move shield logo

* use shield svg for collapsed icon

* remove unused eslint disable directive

* run prettier

* remove variables

* update logo hover styles

* use more standard flow control syntax

* update admin console logo svg

* add new hover variables

* use class instead of fill

* use variable for logo hover

* remove unnecessary container

* use hover variable for nav switcher

* use correct variables for fill colors

* update hover state to use variable left in error

* give icon width to preserve text alignment

* remove tree story as functionality no longer supported

* remove nested styles helper

* remove obsolete afterContentInit

* remove tree example from layout story

* remove tree example from secondary layout story

* remove tree example from kitchen sink story

* Fix interaction test

* remove remaining references to tree variant
---
 .../layouts/organization-layout.component.ts  |   3 +-
 .../navigation-switcher.component.html        |  72 ++---
 .../src/app/layouts/user-layout.component.ts  |   3 +-
 .../layout/navigation.component.ts            |   2 +-
 .../src/anon-layout/anon-layout.component.ts  |   3 +-
 .../src/icon/icons/bitwarden-shield.icon.ts   |   7 -
 libs/components/src/icon/icons/index.ts       |   1 -
 libs/components/src/icon/index.ts             |   1 +
 .../src/icon/logos/bitwarden/admin-console.ts |   7 +
 .../src/icon/logos/bitwarden/index.ts         |   4 +
 .../icon/logos/bitwarden/password-manager.ts  |   7 +
 .../icon/logos/bitwarden/secrets-manager.ts   |   7 +
 .../src/icon/logos/bitwarden/shield.ts        |   7 +
 libs/components/src/icon/logos/index.ts       |   1 +
 libs/components/src/layout/layout.stories.ts  | 288 ++----------------
 .../src/navigation/nav-base.component.ts      |  10 -
 .../src/navigation/nav-divider.component.html |   2 +-
 .../src/navigation/nav-group.component.html   |  16 +-
 .../src/navigation/nav-group.component.ts     |  19 +-
 .../src/navigation/nav-group.stories.ts       |  25 --
 .../src/navigation/nav-item.component.html    | 174 +++++------
 .../src/navigation/nav-logo.component.html    |  42 ++-
 .../src/navigation/nav-logo.component.ts      |   8 +-
 .../src/navigation/side-nav.component.html    |   1 +
 .../kitchen-sink/kitchen-sink.stories.ts      |  22 +-
 libs/components/src/tw-theme.css              |   8 +-
 libs/components/tailwind.config.base.js       |   4 +
 27 files changed, 213 insertions(+), 531 deletions(-)
 delete mode 100644 libs/components/src/icon/icons/bitwarden-shield.icon.ts
 create mode 100644 libs/components/src/icon/logos/bitwarden/admin-console.ts
 create mode 100644 libs/components/src/icon/logos/bitwarden/index.ts
 create mode 100644 libs/components/src/icon/logos/bitwarden/password-manager.ts
 create mode 100644 libs/components/src/icon/logos/bitwarden/secrets-manager.ts
 create mode 100644 libs/components/src/icon/logos/bitwarden/shield.ts
 create mode 100644 libs/components/src/icon/logos/index.ts

diff --git a/apps/web/src/app/admin-console/organizations/layouts/organization-layout.component.ts b/apps/web/src/app/admin-console/organizations/layouts/organization-layout.component.ts
index e60cc918fb8..dc1913a5336 100644
--- a/apps/web/src/app/admin-console/organizations/layouts/organization-layout.component.ts
+++ b/apps/web/src/app/admin-console/organizations/layouts/organization-layout.component.ts
@@ -27,12 +27,11 @@ import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
 import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
 import { getById } from "@bitwarden/common/platform/misc";
-import { BannerModule, IconModule } from "@bitwarden/components";
+import { BannerModule, IconModule, AdminConsoleLogo } from "@bitwarden/components";
 
 import { FreeFamiliesPolicyService } from "../../../billing/services/free-families-policy.service";
 import { OrgSwitcherComponent } from "../../../layouts/org-switcher/org-switcher.component";
 import { WebLayoutModule } from "../../../layouts/web-layout.module";
-import { AdminConsoleLogo } from "../../icons/admin-console-logo";
 
 @Component({
   selector: "app-organization-layout",
diff --git a/apps/web/src/app/layouts/product-switcher/navigation-switcher/navigation-switcher.component.html b/apps/web/src/app/layouts/product-switcher/navigation-switcher/navigation-switcher.component.html
index 08195d95bf9..f8ebfa60451 100644
--- a/apps/web/src/app/layouts/product-switcher/navigation-switcher/navigation-switcher.component.html
+++ b/apps/web/src/app/layouts/product-switcher/navigation-switcher/navigation-switcher.component.html
@@ -16,43 +16,45 @@
     >
       <span class="tw-text-xs !tw-text-alt2 tw-p-2 tw-pb-0">{{ "moreFromBitwarden" | i18n }}</span>
       <ng-container *ngFor="let more of moreProducts">
-        <!-- <a> for when the marketing route is external -->
-        <a
-          *ngIf="more.marketingRoute.external"
-          [href]="more.marketingRoute.route"
-          target="_blank"
-          rel="noreferrer"
-          class="tw-flex tw-py-2 tw-px-4 tw-font-semibold !tw-text-alt2 !tw-no-underline hover:tw-bg-primary-300/60 [&>:not(.bwi)]:hover:tw-underline"
-        >
-          <i class="bwi bwi-fw {{ more.icon }} tw-mt-1 tw-mx-1"></i>
-          <div>
-            {{ more.otherProductOverrides?.name ?? more.name }}
-            <div
-              *ngIf="more.otherProductOverrides?.supportingText"
-              class="tw-text-xs tw-font-normal"
-            >
-              {{ more.otherProductOverrides.supportingText }}
+        <div class="tw-ps-2 tw-pe-2">
+          <!-- <a> for when the marketing route is external -->
+          <a
+            *ngIf="more.marketingRoute.external"
+            [href]="more.marketingRoute.route"
+            target="_blank"
+            rel="noreferrer"
+            class="tw-flex tw-px-3 tw-py-2 tw-rounded-md tw-font-bold !tw-text-alt2 !tw-no-underline hover:tw-bg-hover-contrast [&>:not(.bwi)]:hover:tw-underline"
+          >
+            <i class="bwi bwi-fw {{ more.icon }} tw-mt-1 tw-mx-1"></i>
+            <div>
+              {{ more.otherProductOverrides?.name ?? more.name }}
+              <div
+                *ngIf="more.otherProductOverrides?.supportingText"
+                class="tw-text-xs tw-font-normal"
+              >
+                {{ more.otherProductOverrides.supportingText }}
+              </div>
             </div>
-          </div>
-        </a>
-        <!-- <a> for when the marketing route is internal, it needs to use [routerLink] instead of [href] like the external <a> uses. -->
-        <a
-          *ngIf="!more.marketingRoute.external"
-          [routerLink]="more.marketingRoute.route"
-          rel="noreferrer"
-          class="tw-flex tw-py-2 tw-px-4 tw-font-semibold !tw-text-alt2 !tw-no-underline hover:tw-bg-primary-300/60 [&>:not(.bwi)]:hover:tw-underline"
-        >
-          <i class="bwi bwi-fw {{ more.icon }} tw-mt-1 tw-mx-1"></i>
-          <div>
-            {{ more.otherProductOverrides?.name ?? more.name }}
-            <div
-              *ngIf="more.otherProductOverrides?.supportingText"
-              class="tw-text-xs tw-font-normal"
-            >
-              {{ more.otherProductOverrides.supportingText }}
+          </a>
+          <!-- <a> for when the marketing route is internal, it needs to use [routerLink] instead of [href] like the external <a> uses. -->
+          <a
+            *ngIf="!more.marketingRoute.external"
+            [routerLink]="more.marketingRoute.route"
+            rel="noreferrer"
+            class="tw-flex tw-px-3 tw-py-2 tw-rounded-md tw-font-bold !tw-text-alt2 !tw-no-underline hover:tw-bg-hover-contrast [&>:not(.bwi)]:hover:tw-underline"
+          >
+            <i class="bwi bwi-fw {{ more.icon }} tw-mt-1 tw-mx-1"></i>
+            <div>
+              {{ more.otherProductOverrides?.name ?? more.name }}
+              <div
+                *ngIf="more.otherProductOverrides?.supportingText"
+                class="tw-text-xs tw-font-normal"
+              >
+                {{ more.otherProductOverrides.supportingText }}
+              </div>
             </div>
-          </div>
-        </a>
+          </a>
+        </div>
       </ng-container>
     </section>
   </ng-container>
diff --git a/apps/web/src/app/layouts/user-layout.component.ts b/apps/web/src/app/layouts/user-layout.component.ts
index cd07d625281..db4c181cd0f 100644
--- a/apps/web/src/app/layouts/user-layout.component.ts
+++ b/apps/web/src/app/layouts/user-layout.component.ts
@@ -9,11 +9,10 @@ import { JslibModule } from "@bitwarden/angular/jslib.module";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { BillingAccountProfileStateService } from "@bitwarden/common/billing/abstractions/account/billing-account-profile-state.service";
 import { SyncService } from "@bitwarden/common/platform/sync";
-import { IconModule } from "@bitwarden/components";
+import { IconModule, PasswordManagerLogo } from "@bitwarden/components";
 
 import { BillingFreeFamiliesNavItemComponent } from "../billing/shared/billing-free-families-nav-item.component";
 
-import { PasswordManagerLogo } from "./password-manager-logo";
 import { WebLayoutModule } from "./web-layout.module";
 
 @Component({
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/layout/navigation.component.ts b/bitwarden_license/bit-web/src/app/secrets-manager/layout/navigation.component.ts
index 1eef528b639..24da000f213 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/layout/navigation.component.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/layout/navigation.component.ts
@@ -22,7 +22,7 @@ import {
 import { Organization } from "@bitwarden/common/admin-console/models/domain/organization";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { getUserId } from "@bitwarden/common/auth/services/account.service";
-import { SecretsManagerLogo } from "@bitwarden/web-vault/app/layouts/secrets-manager-logo";
+import { SecretsManagerLogo } from "@bitwarden/components";
 
 import { OrganizationCounts } from "../models/view/counts.view";
 import { ProjectService } from "../projects/project.service";
diff --git a/libs/components/src/anon-layout/anon-layout.component.ts b/libs/components/src/anon-layout/anon-layout.component.ts
index ee3a7ca7bee..45e7f3973a9 100644
--- a/libs/components/src/anon-layout/anon-layout.component.ts
+++ b/libs/components/src/anon-layout/anon-layout.component.ts
@@ -10,7 +10,8 @@ import { EnvironmentService } from "@bitwarden/common/platform/abstractions/envi
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
 
 import { IconModule, Icon } from "../icon";
-import { BitwardenLogo, BitwardenShield } from "../icon/icons";
+import { BitwardenLogo } from "../icon/icons";
+import { BitwardenShield } from "../icon/logos";
 import { SharedModule } from "../shared";
 import { TypographyModule } from "../typography";
 
diff --git a/libs/components/src/icon/icons/bitwarden-shield.icon.ts b/libs/components/src/icon/icons/bitwarden-shield.icon.ts
deleted file mode 100644
index 7abeaf40e3c..00000000000
--- a/libs/components/src/icon/icons/bitwarden-shield.icon.ts
+++ /dev/null
@@ -1,7 +0,0 @@
-import { svgIcon } from "../icon";
-
-export const BitwardenShield = svgIcon`
-  <svg viewBox="0 0 120 132" xmlns="http://www.w3.org/2000/svg">
-    <path class="tw-fill-marketing-logo" d="M82.2944 69.1899V37.2898H60V93.9624C63.948 91.869 67.4812 89.5927 70.5998 87.1338C78.3962 81.0196 82.2944 75.0383 82.2944 69.1899ZM91.8491 30.9097V69.1899C91.8491 72.0477 91.2934 74.8805 90.182 77.6883C89.0706 80.4962 87.6938 82.9884 86.0516 85.1649C84.4094 87.3415 82.452 89.4598 80.1794 91.5201C77.9068 93.5803 75.8084 95.2916 73.8842 96.654C71.96 98.0164 69.9528 99.304 67.8627 100.517C65.7726 101.73 64.288 102.552 63.4088 102.984C62.5297 103.416 61.8247 103.748 61.2939 103.981C60.8958 104.18 60.4645 104.28 60 104.28C59.5355 104.28 59.1042 104.18 58.7061 103.981C58.1753 103.748 57.4703 103.416 56.5911 102.984C55.712 102.552 54.2273 101.73 52.1372 100.517C50.0471 99.304 48.04 98.0164 46.1158 96.654C44.1916 95.2916 42.0932 93.5803 39.8206 91.5201C37.548 89.4598 35.5906 87.3415 33.9484 85.1649C32.3062 82.9884 30.9294 80.4962 29.818 77.6883C28.7066 74.8805 28.1509 72.0477 28.1509 69.1899V30.9097C28.1509 30.0458 28.4661 29.2981 29.0964 28.6668C29.7267 28.0354 30.4732 27.7197 31.3358 27.7197H88.6642C89.5268 27.7197 90.2732 28.0354 90.9036 28.6668C91.5339 29.2981 91.8491 30.0458 91.8491 30.9097Z" />
-  </svg>
-`;
diff --git a/libs/components/src/icon/icons/index.ts b/libs/components/src/icon/icons/index.ts
index b68be2bac9a..69fac7d644e 100644
--- a/libs/components/src/icon/icons/index.ts
+++ b/libs/components/src/icon/icons/index.ts
@@ -1,5 +1,4 @@
 export * from "./bitwarden-logo.icon";
-export * from "./bitwarden-shield.icon";
 export * from "./extension-bitwarden-logo.icon";
 export * from "./lock.icon";
 export * from "./generator";
diff --git a/libs/components/src/icon/index.ts b/libs/components/src/icon/index.ts
index 8f29234dbc5..4f797326be3 100644
--- a/libs/components/src/icon/index.ts
+++ b/libs/components/src/icon/index.ts
@@ -1,3 +1,4 @@
 export * from "./icon.module";
 export * from "./icon";
 export * as Icons from "./icons";
+export { AdminConsoleLogo, PasswordManagerLogo, SecretsManagerLogo } from "./logos";
diff --git a/libs/components/src/icon/logos/bitwarden/admin-console.ts b/libs/components/src/icon/logos/bitwarden/admin-console.ts
new file mode 100644
index 00000000000..673cf9642c8
--- /dev/null
+++ b/libs/components/src/icon/logos/bitwarden/admin-console.ts
@@ -0,0 +1,7 @@
+import { svgIcon } from "../../icon";
+
+const AdminConsoleLogo = svgIcon`
+<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 200 46" fill="none"><path class="tw-fill-text-alt2" fill-rule="evenodd" d="M48.137 7.639c2.293 0 4.077.869 5.387 2.68 1.31 1.773 1.966 4.2 1.966 7.277 0 3.186-.655 5.648-2.002 7.386-1.347 1.774-3.167 2.607-5.46 2.607s-4.04-.797-5.351-2.462h-.364l-.692 1.701a.673.673 0 0 1-.618.399H38.09a.65.65 0 0 1-.655-.652V1.122A.65.65 0 0 1 38.09.47h3.932a.65.65 0 0 1 .655.652v5.575c0 .797-.073 2.064-.218 3.802h.218c1.201-1.883 3.058-2.86 5.46-2.86Zm-1.674 4.236c-1.274 0-2.257.398-2.876 1.195-.582.796-.91 2.136-.91 3.946v.58c0 2.064.291 3.548.91 4.417.619.869 1.602 1.34 2.948 1.34 1.056 0 1.966-.507 2.585-1.521.619-.978.946-2.462.946-4.309 0-1.883-.327-3.294-.946-4.236-.655-.941-1.565-1.412-2.657-1.412Zm17.69 15.388h-3.931a.65.65 0 0 1-.655-.652V8.69a.65.65 0 0 1 .655-.652h3.931a.65.65 0 0 1 .655.652v17.886c.037.326-.29.688-.655.688Zm14.378-3.874c.765 0 1.675-.145 2.767-.435a.436.436 0 0 1 .546.435v3.005c0 .181-.11.326-.255.398-1.237.507-2.803.76-4.55.76-2.111 0-3.64-.506-4.586-1.593-.947-1.05-1.456-2.643-1.456-4.743v-9.232h-2.075a.42.42 0 0 1-.437-.435V9.847c0-.036.036-.072.036-.108l2.876-1.702 1.42-3.765c.072-.181.218-.29.4-.29h2.62a.42.42 0 0 1 .438.434v3.657h5.205c.11 0 .218.109.218.218v3.258a.42.42 0 0 1-.436.435h-4.95v9.196c0 .724.218 1.304.618 1.63.364.398.946.579 1.601.579Zm24.498 3.874c-.51 0-.91-.326-1.128-.797l-3.859-11.694c-.255-.833-.582-2.1-1.019-3.73h-.11l-.363 1.304-.765 2.462-3.967 11.695c-.146.47-.583.76-1.092.76-.51 0-.947-.326-1.092-.833L84.792 9.594c-.145-.507.255-1.05.838-1.05h.109c.364 0 .691.253.8.616l2.84 10.246c.691 2.68 1.165 4.635 1.383 5.938h.11c.654-2.68 1.164-4.454 1.492-5.359L96.04 9.268c.146-.434.546-.724 1.056-.724.473 0 .873.29 1.019.724l3.422 10.645c.837 2.715 1.346 4.453 1.528 5.358h.11c.109-.724.546-2.751 1.383-6.01l2.73-10.101a.852.852 0 0 1 .801-.616c.546 0 .946.507.801 1.05l-4.587 16.836c-.146.507-.582.833-1.128.833h-.146Zm21.622 0a.665.665 0 0 1-.655-.58l-.328-2.39h-.182c-.946 1.196-1.893 2.065-2.912 2.572-.983.507-2.184.724-3.531.724-1.856 0-3.276-.47-4.295-1.412-.91-.833-1.42-1.956-1.492-3.367-.146-1.883.655-3.694 2.184-4.744 1.565-1.013 3.749-1.629 6.697-1.629l3.568-.109v-1.23c0-1.81-.364-3.114-1.129-4.02-.764-.905-1.893-1.34-3.494-1.34-1.529 0-3.058.363-4.66 1.123a.8.8 0 0 1-1.055-.398c-.182-.398 0-.869.4-1.014 1.82-.724 3.604-1.122 5.424-1.122 2.075 0 3.604.543 4.659 1.63 1.019 1.05 1.529 2.75 1.529 4.96v11.767c-.036.217-.364.579-.728.579Zm-7.535-1.231c2.038 0 3.604-.58 4.732-1.702 1.165-1.122 1.747-2.752 1.747-4.743v-1.81l-3.276.145c-2.657.108-4.513.543-5.678 1.23-1.129.688-1.711 1.81-1.711 3.26 0 1.158.364 2.1 1.056 2.75.8.544 1.82.87 3.13.87Zm21.549-17.85c.546 0 1.092.036 1.711.109a.819.819 0 0 1 .692.941c-.073.434-.51.688-.947.615-.546-.072-1.092-.144-1.638-.144-1.601 0-2.912.688-3.931 2.027-1.019 1.34-1.529 3.078-1.529 5.105v9.486c0 .471-.364.833-.837.833a.822.822 0 0 1-.837-.832V9.303c0-.398.327-.724.728-.724.4 0 .728.29.728.688l.145 2.68h.109c.765-1.376 1.602-2.354 2.476-2.897.837-.58 1.893-.869 3.13-.869Zm12.813 0c1.347 0 2.548.253 3.531.724 1.019.47 1.893 1.34 2.657 2.535h.109a86.503 86.503 0 0 1-.109-4.237V1.303c0-.471.364-.833.837-.833.474 0 .838.362.838.833V26.61c0 .326-.255.58-.583.58a.59.59 0 0 1-.582-.544l-.364-2.353h-.146c-1.419 2.136-3.494 3.186-6.151 3.186-2.621 0-4.551-.796-5.97-2.426-1.347-1.629-2.075-3.946-2.075-7.024 0-3.222.655-5.684 2.038-7.422 1.384-1.557 3.349-2.426 5.97-2.426Zm0 1.557c-2.075 0-3.604.724-4.659 2.172-1.019 1.412-1.529 3.476-1.529 6.228 0 5.286 2.075 7.93 6.225 7.93 2.147 0 3.676-.616 4.659-1.848 1.019-1.23 1.492-3.258 1.492-6.082v-.29c0-2.896-.473-4.96-1.492-6.191-.947-1.304-2.512-1.92-4.696-1.92Zm21.804 17.85c-2.73 0-4.841-.833-6.406-2.535-1.529-1.665-2.294-4.019-2.294-7.024s.728-5.395 2.221-7.169c1.492-1.81 3.458-2.715 5.969-2.715 2.184 0 3.968.76 5.206 2.28 1.31 1.521 1.929 3.621 1.929 6.264v1.376h-13.541c.036 2.571.619 4.526 1.82 5.902 1.201 1.376 2.876 1.991 5.096 1.991 1.056 0 2.038-.072 2.839-.217a14.74 14.74 0 0 0 2.111-.58.731.731 0 0 1 .983.689c0 .29-.182.58-.473.688-.874.362-1.711.58-2.475.724-.91.253-1.893.326-2.985.326Zm-.51-17.886c-1.82 0-3.276.579-4.368 1.774-1.092 1.158-1.71 2.896-1.929 5.105h11.648c0-2.136-.473-3.874-1.419-5.069-.947-1.195-2.257-1.81-3.932-1.81Zm26.354 17.56a.822.822 0 0 1-.837-.833V15.097c0-1.882-.4-3.258-1.165-4.09-.837-.834-2.038-1.304-3.713-1.304-2.256 0-3.894.543-4.914 1.701-1.019 1.123-1.601 2.97-1.601 5.468v9.486c0 .47-.364.832-.837.832a.822.822 0 0 1-.838-.832V9.304c0-.434.328-.76.765-.76.4 0 .691.29.764.652l.219 1.883h.109c1.237-1.956 3.385-2.933 6.516-2.933 4.258 0 6.406 2.28 6.406 6.843v11.369c-.036.507-.437.905-.874.905ZM62.224.18c-1.71 0-3.094 1.304-3.094 2.933v.29c0 1.593 1.42 2.932 3.094 2.932 1.675 0 3.094-1.34 3.094-2.932v-.254c0-1.665-1.42-2.969-3.094-2.969Z" clip-rule="evenodd"/><path class="tw-fill-text-alt2" d="M22.097 17.27V4.322h-9.099v23c1.612-.85 3.054-1.773 4.326-2.771 3.182-2.482 4.773-4.91 4.773-7.283Zm3.9-15.536v15.535a9.26 9.26 0 0 1-.68 3.45 12.85 12.85 0 0 1-1.686 3.034c-.67.883-1.47 1.743-2.397 2.579a27.862 27.862 0 0 1-2.57 2.083 32.334 32.334 0 0 1-2.457 1.568c-.853.492-1.459.826-1.817 1.001-.36.176-.647.31-.864.405-.162.08-.338.121-.528.121s-.365-.04-.528-.121c-.216-.095-.504-.23-.863-.405-.359-.175-.965-.509-1.818-1.001a32.354 32.354 0 0 1-2.457-1.568 27.873 27.873 0 0 1-2.57-2.083 18.756 18.756 0 0 1-2.396-2.58A12.851 12.851 0 0 1 .68 20.719 9.259 9.259 0 0 1 0 17.27V1.734c0-.35.129-.654.386-.91C.643.567.948.439 1.3.439h23.397c.352 0 .657.128.914.385.257.256.386.56.386.91ZM92.527 45.635l3.977-10.79h1.372l3.962 10.79h-1.372l-.987-2.775h-4.593l-1.002 2.775h-1.357Zm2.744-3.823h3.823l-1.911-5.334-1.912 5.334ZM106.412 45.82c-.761 0-1.429-.175-2.004-.524a3.647 3.647 0 0 1-1.326-1.434c-.308-.606-.462-1.295-.462-2.066 0-.77.159-1.454.478-2.05.318-.606.76-1.079 1.325-1.418.565-.35 1.233-.524 2.004-.524.627 0 1.182.128 1.665.385.483.257.858.617 1.125 1.08v-4.733h1.295v11.099h-1.171l-.124-1.264c-.246.37-.601.704-1.063 1.002-.463.298-1.043.447-1.742.447Zm.139-1.126c.513 0 .966-.118 1.356-.354.401-.247.709-.586.925-1.017.226-.432.339-.936.339-1.511 0-.576-.113-1.08-.339-1.51a2.36 2.36 0 0 0-.925-1.003c-.39-.246-.843-.37-1.356-.37-.504 0-.956.124-1.357.37-.39.237-.699.57-.925 1.002-.216.432-.324.935-.324 1.51 0 .576.108 1.08.324 1.512.226.431.535.77.925 1.017.401.236.853.354 1.357.354ZM112.623 45.635v-7.646h1.172l.092 1.11c.247-.411.576-.73.987-.956.411-.226.873-.339 1.387-.339.606 0 1.125.123 1.557.37.442.247.781.622 1.017 1.125a2.94 2.94 0 0 1 1.095-1.094c.472-.267.981-.401 1.526-.401.914 0 1.644.277 2.189.832.544.545.817 1.388.817 2.528v4.47h-1.28v-4.33c0-.792-.159-1.388-.478-1.789-.318-.4-.775-.601-1.372-.601-.616 0-1.13.241-1.541.724-.401.473-.601 1.151-.601 2.035v3.962h-1.295v-4.332c0-.791-.159-1.387-.478-1.788-.319-.4-.776-.601-1.372-.601-.606 0-1.115.241-1.526.724-.401.473-.601 1.151-.601 2.035v3.962h-1.295ZM127.198 36.293a.908.908 0 0 1-.647-.246.91.91 0 0 1-.247-.648c0-.246.083-.452.247-.616a.908.908 0 0 1 .647-.247c.247 0 .458.082.632.247a.81.81 0 0 1 .262.616.878.878 0 0 1-.262.648.887.887 0 0 1-.632.246Zm-.647 9.342v-7.646h1.295v7.646h-1.295ZM130.1 45.635v-7.646h1.172l.077 1.372a2.777 2.777 0 0 1 1.064-1.14 2.993 2.993 0 0 1 1.572-.417c.904 0 1.624.277 2.158.832.545.545.817 1.388.817 2.528v4.47h-1.295v-4.33c0-1.594-.658-2.39-1.973-2.39-.658 0-1.207.241-1.649.724-.432.473-.648 1.151-.648 2.035v3.962H130.1ZM147.811 45.82c-1.059 0-1.973-.231-2.744-.694a4.818 4.818 0 0 1-1.773-1.958c-.421-.842-.632-1.819-.632-2.928 0-1.1.211-2.066.632-2.898.422-.843 1.013-1.5 1.773-1.974.771-.472 1.685-.709 2.744-.709 1.233 0 2.235.298 3.006.894.781.586 1.279 1.408 1.495 2.467h-1.434c-.164-.668-.503-1.203-1.017-1.603-.503-.411-1.187-.617-2.05-.617-.771 0-1.444.18-2.019.54-.576.349-1.023.858-1.342 1.526-.308.657-.462 1.449-.462 2.374 0 .924.154 1.72.462 2.389.319.658.766 1.166 1.342 1.526.575.35 1.248.524 2.019.524.863 0 1.547-.195 2.05-.586.514-.4.853-.93 1.017-1.587h1.434c-.216 1.038-.714 1.85-1.495 2.435-.771.586-1.773.879-3.006.879ZM157.58 45.82c-.72 0-1.367-.165-1.942-.493a3.627 3.627 0 0 1-1.372-1.388c-.329-.606-.494-1.315-.494-2.127 0-.812.17-1.516.509-2.112a3.598 3.598 0 0 1 1.372-1.403 3.93 3.93 0 0 1 1.958-.493c.719 0 1.366.164 1.942.493a3.494 3.494 0 0 1 1.356 1.403c.34.596.509 1.3.509 2.112s-.169 1.52-.509 2.127a3.596 3.596 0 0 1-1.387 1.388c-.575.328-1.223.493-1.942.493Zm0-1.11c.442 0 .853-.108 1.233-.324.38-.216.689-.54.925-.97.236-.433.354-.967.354-1.604 0-.637-.118-1.172-.354-1.603-.226-.432-.529-.756-.91-.971a2.426 2.426 0 0 0-1.217-.324c-.442 0-.853.108-1.234.324-.38.215-.688.54-.924.97-.237.432-.355.967-.355 1.604 0 .637.118 1.171.355 1.603.236.432.539.755.909.971.38.216.786.324 1.218.324ZM163.219 45.635v-7.646h1.171l.077 1.372a2.777 2.777 0 0 1 1.064-1.14 2.993 2.993 0 0 1 1.572-.417c.905 0 1.624.277 2.158.832.545.545.817 1.388.817 2.528v4.47h-1.295v-4.33c0-1.594-.657-2.39-1.973-2.39-.657 0-1.207.241-1.649.724-.432.473-.648 1.151-.648 2.035v3.962h-1.294ZM174.969 45.82c-.915 0-1.675-.231-2.282-.694-.606-.462-.96-1.09-1.063-1.88h1.326c.082.4.292.75.632 1.048.349.288.817.431 1.402.431.545 0 .946-.113 1.203-.339.257-.236.385-.514.385-.832 0-.463-.169-.771-.509-.925-.328-.154-.796-.293-1.402-.416a7.953 7.953 0 0 1-1.234-.355 2.846 2.846 0 0 1-1.032-.647c-.278-.288-.417-.663-.417-1.126 0-.668.247-1.212.74-1.634.504-.431 1.182-.647 2.035-.647.812 0 1.475.206 1.989.617.524.4.827.976.909 1.726h-1.279c-.052-.39-.221-.694-.509-.91-.277-.226-.653-.339-1.125-.339-.463 0-.822.098-1.079.293a.935.935 0 0 0-.37.771c0 .308.159.55.478.725.328.174.77.323 1.325.447.473.102.92.23 1.341.385.432.144.781.365 1.049.663.277.288.416.709.416 1.264.01.688-.252 1.259-.786 1.711-.525.442-1.239.663-2.143.663ZM183.231 45.82c-.719 0-1.366-.165-1.942-.493a3.634 3.634 0 0 1-1.372-1.388c-.329-.606-.493-1.315-.493-2.127 0-.812.169-1.516.509-2.112a3.603 3.603 0 0 1 1.371-1.403 3.932 3.932 0 0 1 1.958-.493c.72 0 1.367.164 1.942.493a3.496 3.496 0 0 1 1.357 1.403c.339.596.509 1.3.509 2.112s-.17 1.52-.509 2.127a3.603 3.603 0 0 1-1.387 1.388c-.576.328-1.223.493-1.943.493Zm0-1.11c.442 0 .853-.108 1.234-.324.38-.216.688-.54.924-.97.237-.433.355-.967.355-1.604 0-.637-.118-1.172-.355-1.603-.226-.432-.529-.756-.909-.971a2.427 2.427 0 0 0-1.218-.324c-.442 0-.853.108-1.233.324-.38.215-.689.54-.925.97-.236.432-.354.967-.354 1.604 0 .637.118 1.171.354 1.603.236.432.54.755.91.971.38.216.786.324 1.217.324ZM188.87 45.635V34.536h1.295v11.099h-1.295ZM195.725 45.82c-.73 0-1.377-.165-1.942-.493a3.666 3.666 0 0 1-1.342-1.403c-.318-.596-.477-1.3-.477-2.112 0-.802.159-1.5.477-2.096a3.43 3.43 0 0 1 1.326-1.403c.576-.34 1.239-.509 1.989-.509.74 0 1.377.17 1.911.509.545.328.961.765 1.249 1.31.288.545.431 1.13.431 1.757 0 .113-.005.226-.015.34v.385h-6.089c.031.586.164 1.074.401 1.464.246.38.55.668.909.863.37.196.761.293 1.172.293.534 0 .981-.123 1.341-.37.36-.246.622-.58.786-1.002h1.28c-.206.71-.602 1.3-1.187 1.773-.576.463-1.316.694-2.22.694Zm0-6.922c-.617 0-1.167.19-1.65.57-.472.37-.745.915-.817 1.635h4.81c-.031-.689-.267-1.228-.709-1.619-.442-.39-.987-.586-1.634-.586Z"/></svg>
+`;
+
+export default AdminConsoleLogo;
diff --git a/libs/components/src/icon/logos/bitwarden/index.ts b/libs/components/src/icon/logos/bitwarden/index.ts
new file mode 100644
index 00000000000..e786eb90e78
--- /dev/null
+++ b/libs/components/src/icon/logos/bitwarden/index.ts
@@ -0,0 +1,4 @@
+export { default as AdminConsoleLogo } from "./admin-console";
+export { default as BitwardenShield } from "./shield";
+export { default as PasswordManagerLogo } from "./password-manager";
+export { default as SecretsManagerLogo } from "./secrets-manager";
diff --git a/libs/components/src/icon/logos/bitwarden/password-manager.ts b/libs/components/src/icon/logos/bitwarden/password-manager.ts
new file mode 100644
index 00000000000..37b62c5dbc2
--- /dev/null
+++ b/libs/components/src/icon/logos/bitwarden/password-manager.ts
@@ -0,0 +1,7 @@
+import { svgIcon } from "../../icon";
+
+const PasswordManagerLogo = svgIcon`
+  <svg xmlns="http://www.w3.org/2000/svg" fill="none" viewBox="0 0 200 49"><path class="tw-fill-text-alt2" fill-rule="evenodd" d="M48.038 7.458c2.289 0 4.069.869 5.376 2.679 1.308 1.774 1.962 4.2 1.962 7.277 0 3.186-.654 5.647-1.998 7.385-1.344 1.774-3.16 2.607-5.449 2.607-2.288 0-4.032-.797-5.34-2.462h-.363l-.69 1.701a.672.672 0 0 1-.618.399h-2.906a.65.65 0 0 1-.654-.652V.942a.65.65 0 0 1 .654-.652h3.923a.65.65 0 0 1 .654.651v5.576c0 .796-.072 2.063-.218 3.8h.218c1.2-1.882 3.052-2.86 5.45-2.86Zm-1.67 4.236c-1.272 0-2.253.398-2.87 1.194-.582.797-.909 2.136-.909 3.946v.58c0 2.063.29 3.548.909 4.416.617.87 1.598 1.34 2.942 1.34 1.053 0 1.962-.507 2.579-1.52.617-.978.945-2.462.945-4.309 0-1.882-.328-3.294-.945-4.236-.654-.94-1.562-1.411-2.652-1.411ZM64.021 27.08h-3.924a.65.65 0 0 1-.654-.652V8.508a.65.65 0 0 1 .654-.652h3.924a.65.65 0 0 1 .653.652v17.884c.037.326-.29.688-.653.688Zm14.348-3.874c.763 0 1.671-.145 2.761-.434a.436.436 0 0 1 .545.434v3.005a.445.445 0 0 1-.254.398c-1.236.507-2.797.76-4.541.76-2.107 0-3.633-.506-4.577-1.592-.945-1.05-1.453-2.643-1.453-4.743v-9.232h-2.07a.419.419 0 0 1-.437-.434V9.666c0-.036.037-.072.037-.108l2.87-1.702 1.416-3.765c.073-.181.218-.29.4-.29h2.615c.254 0 .436.181.436.435v3.656h5.195c.109 0 .218.109.218.218v3.258a.419.419 0 0 1-.436.434h-4.94v9.196c0 .724.217 1.303.617 1.629.363.398.944.58 1.598.58Zm24.447 3.874c-.508 0-.908-.326-1.126-.796l-3.85-11.694c-.254-.833-.581-2.1-1.017-3.73h-.11l-.363 1.304-.762 2.462-3.96 11.694c-.145.47-.581.76-1.09.76-.508 0-.944-.326-1.09-.833L84.62 9.413c-.146-.507.254-1.05.835-1.05h.109a.85.85 0 0 1 .799.615l2.833 10.246c.69 2.679 1.163 4.634 1.38 5.937h.11c.653-2.679 1.162-4.453 1.489-5.358l3.669-10.716c.145-.434.545-.724 1.053-.724.473 0 .872.29 1.017.724l3.415 10.644c.836 2.715 1.344 4.453 1.526 5.358h.109c.109-.724.545-2.752 1.38-6.01l2.725-10.1a.85.85 0 0 1 .799-.616c.545 0 .944.507.799 1.05l-4.577 16.834c-.145.507-.581.833-1.126.833h-.146Zm21.578 0a.664.664 0 0 1-.654-.58l-.327-2.389h-.182c-.944 1.195-1.888 2.064-2.906 2.57-.98.508-2.179.725-3.523.725-1.853 0-3.269-.47-4.287-1.412-.908-.833-1.416-1.955-1.489-3.367-.145-1.883.654-3.693 2.18-4.743 1.562-1.013 3.741-1.629 6.684-1.629l3.559-.108v-1.231c0-1.81-.363-3.114-1.126-4.019-.762-.905-1.889-1.34-3.487-1.34-1.526 0-3.051.363-4.65 1.123a.799.799 0 0 1-1.053-.398c-.182-.399 0-.87.4-1.014 1.816-.724 3.596-1.122 5.412-1.122 2.071 0 3.596.543 4.65 1.629 1.017 1.05 1.525 2.751 1.525 4.96V26.5c-.036.217-.363.579-.726.579Zm-7.52-1.231c2.035 0 3.597-.58 4.723-1.701 1.162-1.123 1.743-2.752 1.743-4.743v-1.81l-3.269.145c-2.652.108-4.504.543-5.667 1.23-1.126.688-1.707 1.81-1.707 3.259 0 1.158.363 2.1 1.053 2.751.8.543 1.817.869 3.124.869ZM138.38 8.001c.545 0 1.09.036 1.708.109a.818.818 0 0 1 .69.94c-.073.435-.509.689-.945.616-.545-.072-1.089-.145-1.634-.145-1.599 0-2.906.688-3.923 2.028-1.018 1.34-1.526 3.077-1.526 5.104v9.486a.82.82 0 0 1-.836.832.82.82 0 0 1-.835-.832V9.123c0-.398.327-.724.726-.724.4 0 .727.29.727.688l.145 2.679h.109c.763-1.376 1.598-2.353 2.47-2.896.836-.58 1.889-.87 3.124-.87Zm12.787 0c1.344 0 2.543.253 3.524.724 1.017.47 1.889 1.34 2.651 2.534h.109a86.486 86.486 0 0 1-.109-4.236v-5.9c0-.471.364-.833.836-.833a.82.82 0 0 1 .835.832v25.306c0 .326-.254.58-.581.58a.589.589 0 0 1-.581-.543l-.363-2.354h-.146c-1.416 2.136-3.487 3.186-6.139 3.186-2.615 0-4.54-.796-5.957-2.425-1.344-1.63-2.071-3.947-2.071-7.024 0-3.222.654-5.684 2.035-7.421C146.59 8.87 148.552 8 151.167 8Zm0 1.557c-2.071 0-3.596.724-4.65 2.172-1.017 1.412-1.525 3.475-1.525 6.227 0 5.285 2.07 7.928 6.211 7.928 2.144 0 3.669-.615 4.65-1.846 1.017-1.231 1.489-3.258 1.489-6.082v-.29c0-2.896-.472-4.96-1.489-6.19-.944-1.304-2.506-1.92-4.686-1.92Zm21.759 17.848c-2.724 0-4.831-.833-6.393-2.534-1.526-1.666-2.289-4.019-2.289-7.024s.727-5.394 2.216-7.168c1.489-1.81 3.451-2.715 5.958-2.715 2.179 0 3.959.76 5.194 2.28 1.308 1.521 1.925 3.62 1.925 6.264v1.375h-13.513c.037 2.57.618 4.526 1.816 5.901 1.199 1.376 2.87 1.992 5.086 1.992 1.054 0 2.034-.073 2.834-.218a14.71 14.71 0 0 0 2.106-.579c.473-.18.981.181.981.688 0 .29-.181.58-.472.688-.872.362-1.707.58-2.47.724-.908.253-1.889.326-2.979.326Zm-.508-17.885c-1.817 0-3.27.58-4.36 1.774-1.089 1.159-1.707 2.897-1.925 5.105h11.624c0-2.136-.472-3.874-1.416-5.068-.945-1.195-2.252-1.81-3.923-1.81Zm26.299 17.559a.82.82 0 0 1-.835-.833V14.916c0-1.883-.4-3.259-1.163-4.091-.835-.833-2.034-1.304-3.705-1.304-2.252 0-3.887.543-4.904 1.702-1.017 1.122-1.598 2.969-1.598 5.467v9.485a.82.82 0 0 1-.836.832.82.82 0 0 1-.835-.832V9.123c0-.434.327-.76.763-.76.399 0 .69.29.763.652l.218 1.882h.109c1.235-1.955 3.378-2.932 6.502-2.932 4.25 0 6.393 2.28 6.393 6.842v11.368c-.036.507-.436.905-.872.905ZM62.097 0c-1.708 0-3.088 1.303-3.088 2.932v.29c0 1.593 1.416 2.933 3.087 2.933 1.671 0 3.088-1.34 3.088-2.933V2.97C65.184 1.303 63.767 0 62.096 0Z" clip-rule="evenodd"/><path class="tw-fill-text-alt2" d="M22.052 17.087V4.142h-9.08V27.14c1.608-.85 3.047-1.773 4.317-2.771 3.175-2.481 4.763-4.908 4.763-7.282Zm3.891-15.534v15.534c0 1.16-.226 2.31-.679 3.45a12.86 12.86 0 0 1-1.682 3.033 18.741 18.741 0 0 1-2.392 2.579c-.925.836-1.78 1.53-2.564 2.083a32.288 32.288 0 0 1-2.452 1.568c-.851.492-1.456.826-1.814 1.001-.358.175-.645.31-.861.405-.163.08-.338.12-.527.12-.19 0-.365-.04-.527-.12-.216-.095-.504-.23-.862-.405-.358-.175-.962-.509-1.814-1.001a32.279 32.279 0 0 1-2.452-1.568 27.823 27.823 0 0 1-2.564-2.083A18.74 18.74 0 0 1 2.36 23.57 12.857 12.857 0 0 1 .68 20.536 9.273 9.273 0 0 1 0 17.087V1.553C0 1.203.128.9.385.643S.945.26 1.297.26h23.35c.35 0 .655.128.911.384.257.256.385.56.385.91ZM195.682 44.967v-7.753h1.12l.088 1.415c.177-.354.408-.649.693-.884a2.853 2.853 0 0 1 1.032-.531 5.033 5.033 0 0 1 1.385-.177v1.297h-.766c-.295 0-.58.04-.855.118a2.183 2.183 0 0 0-.752.383 1.825 1.825 0 0 0-.516.722c-.128.305-.191.688-.191 1.15v4.26h-1.238ZM190.546 45.144c-.688 0-1.297-.167-1.827-.502-.531-.334-.949-.805-1.253-1.415-.295-.609-.442-1.321-.442-2.137 0-.815.147-1.528.442-2.137.304-.609.722-1.08 1.253-1.415.54-.334 1.159-.5 1.857-.5.747 0 1.371.166 1.872.5.501.334.879.781 1.135 1.342.255.56.383 1.174.383 1.842v.295c0 .098-.005.216-.015.353h-5.999v-.958h4.805c-.019-.756-.241-1.331-.663-1.724-.413-.403-.929-.604-1.548-.604a2.24 2.24 0 0 0-1.149.31 2.214 2.214 0 0 0-.84.884c-.217.392-.325.884-.325 1.473v.413c0 .649.108 1.194.325 1.636.216.433.496.757.84.973.353.216.737.324 1.149.324.551 0 .983-.103 1.297-.31.315-.215.546-.52.693-.913h1.223c-.117.432-.324.82-.619 1.164a2.941 2.941 0 0 1-1.09.81c-.433.197-.934.296-1.504.296ZM182.179 48.386c-.697 0-1.311-.088-1.842-.265-.521-.167-.929-.428-1.223-.781-.285-.354-.428-.791-.428-1.312 0-.246.044-.501.133-.767.098-.265.26-.52.486-.766.236-.245.565-.467.988-.663l.943.501c-.56.216-.924.467-1.091.752-.167.285-.25.56-.25.825 0 .324.093.595.28.81.196.217.467.379.81.487.344.108.742.162 1.194.162.443 0 .821-.059 1.135-.177.325-.108.57-.27.737-.486.177-.206.266-.452.266-.737 0-.413-.133-.737-.398-.973-.266-.226-.782-.358-1.548-.398a15 15 0 0 1-1.503-.162 6.95 6.95 0 0 1-1.003-.236 3.329 3.329 0 0 1-.648-.324 4.345 4.345 0 0 1-.457-.368v-.34l1.459-1.4 1.164.384-1.591 1.311.191-.56c.108.079.211.153.31.221.098.07.231.133.398.192.177.05.417.098.722.147.314.05.727.094 1.238.133.707.05 1.272.167 1.695.354.423.186.727.447.914.78.187.325.28.723.28 1.195 0 .413-.118.806-.354 1.179-.226.373-.589.678-1.091.914-.491.245-1.13.368-1.916.368Zm-.014-5.837c-.629 0-1.165-.117-1.607-.353a2.512 2.512 0 0 1-.987-.988 2.952 2.952 0 0 1-.339-1.415c0-.52.113-.987.339-1.4a2.605 2.605 0 0 1 1.002-.987c.442-.246.973-.369 1.592-.369.638 0 1.174.123 1.606.369.433.245.762.574.988.987.226.413.339.88.339 1.4 0 .521-.113.993-.339 1.415a2.508 2.508 0 0 1-.988.988c-.432.236-.968.354-1.606.354Zm0-1.017c.55 0 .977-.142 1.282-.427.305-.295.457-.732.457-1.312 0-.58-.152-1.012-.457-1.297-.305-.285-.732-.427-1.282-.427-.521 0-.949.142-1.283.427-.324.285-.486.718-.486 1.297 0 .58.157 1.017.472 1.312.324.285.756.428 1.297.428Zm1.297-3.271-.369-1.047h3.036v.928l-2.667.118ZM173.442 45.144c-.589 0-1.081-.108-1.474-.325a2.252 2.252 0 0 1-.884-.884 2.533 2.533 0 0 1-.295-1.194c0-.51.128-.943.384-1.297.265-.364.633-.639 1.105-.825.472-.187 1.022-.28 1.651-.28h1.931c0-.502-.059-.92-.177-1.253a1.407 1.407 0 0 0-.575-.752c-.265-.167-.619-.25-1.061-.25-.443 0-.821.113-1.135.339-.315.216-.511.54-.59.972h-1.267c.059-.51.231-.938.515-1.282.285-.354.644-.619 1.076-.796.443-.187.909-.28 1.401-.28.697 0 1.272.128 1.724.383.452.246.786.595 1.002 1.047.217.442.325.968.325 1.577v4.923h-1.106l-.073-1.327a2.752 2.752 0 0 1-.384.59 2.459 2.459 0 0 1-.53.472 2.6 2.6 0 0 1-.708.324c-.255.078-.54.118-.855.118Zm.177-1.047c.324 0 .624-.074.899-.22a2.28 2.28 0 0 0 .708-.59 2.8 2.8 0 0 0 .471-.855c.109-.315.163-.644.163-.988v-.147h-1.828c-.462 0-.84.059-1.135.177-.285.118-.491.285-.619.5a1.315 1.315 0 0 0-.192.708c0 .285.059.536.177.752.118.206.29.368.516.486.236.118.516.177.84.177ZM162.504 44.967v-7.753h1.12l.059 1.223c.226-.442.55-.786.973-1.031.432-.246.929-.369 1.489-.369.57 0 1.066.108 1.488.324.423.217.752.546.988.988.236.442.354 1.002.354 1.68v4.938h-1.239v-4.805c0-.688-.172-1.204-.515-1.548-.335-.344-.787-.516-1.356-.516-.384 0-.737.094-1.062.28a1.97 1.97 0 0 0-.781.796c-.187.354-.28.786-.28 1.297v4.496h-1.238ZM156.803 45.144c-.589 0-1.081-.108-1.474-.325a2.246 2.246 0 0 1-.884-.884 2.52 2.52 0 0 1-.295-1.194c0-.51.128-.943.383-1.297.266-.364.634-.639 1.106-.825.471-.187 1.022-.28 1.651-.28h1.93c0-.502-.059-.92-.176-1.253a1.407 1.407 0 0 0-.575-.752c-.266-.167-.619-.25-1.062-.25-.442 0-.82.113-1.134.339-.315.216-.511.54-.59.972h-1.268c.059-.51.231-.938.516-1.282.285-.354.644-.619 1.076-.796.442-.187.909-.28 1.4-.28.698 0 1.273.128 1.725.383.452.246.786.595 1.002 1.047.216.442.324.968.324 1.577v4.923h-1.105l-.074-1.327a2.747 2.747 0 0 1-.383.59 2.459 2.459 0 0 1-.53.472 2.614 2.614 0 0 1-.708.324c-.255.078-.54.118-.855.118Zm.177-1.047c.324 0 .624-.074.899-.22a2.28 2.28 0 0 0 .708-.59 2.8 2.8 0 0 0 .471-.855c.108-.315.162-.644.162-.988v-.147h-1.827c-.462 0-.84.059-1.135.177-.285.118-.491.285-.619.5a1.315 1.315 0 0 0-.192.708c0 .285.059.536.177.752.118.206.29.368.516.486.236.118.516.177.84.177ZM142.312 44.967V34.649h1.444l3.508 7.267 3.479-7.267h1.459v10.318h-1.238v-8.092l-3.243 6.736h-.929l-3.242-6.677v8.033h-1.238ZM132.309 45.144c-.688 0-1.297-.177-1.828-.53a3.564 3.564 0 0 1-1.238-1.445c-.294-.62-.442-1.317-.442-2.093 0-.786.148-1.48.442-2.079a3.459 3.459 0 0 1 1.238-1.43c.531-.353 1.145-.53 1.843-.53.609 0 1.13.123 1.562.369.442.245.791.59 1.047 1.031v-4.082h1.238v10.612h-1.12l-.104-1.238a2.951 2.951 0 0 1-.589.692 2.826 2.826 0 0 1-.87.531c-.334.128-.727.192-1.179.192Zm.162-1.076c.492 0 .919-.118 1.282-.354.364-.246.644-.59.841-1.032.196-.452.294-.982.294-1.592 0-.609-.098-1.135-.294-1.577-.197-.452-.477-.796-.841-1.031-.363-.246-.79-.369-1.282-.369a2.16 2.16 0 0 0-1.238.369c-.363.235-.648.58-.855 1.031-.206.443-.309.968-.309 1.577 0 .61.103 1.14.309 1.592.207.442.492.786.855 1.032.364.236.776.354 1.238.354ZM123.641 44.967v-7.753h1.12l.089 1.415c.177-.354.408-.649.692-.884a2.853 2.853 0 0 1 1.032-.531 5.045 5.045 0 0 1 1.386-.177v1.297h-.767c-.295 0-.579.04-.855.118a2.178 2.178 0 0 0-.751.383 1.825 1.825 0 0 0-.516.722c-.128.305-.192.688-.192 1.15v4.26h-1.238ZM118.178 45.144c-.718 0-1.352-.167-1.902-.502a3.385 3.385 0 0 1-1.282-1.415c-.305-.609-.457-1.321-.457-2.137 0-.825.152-1.537.457-2.137a3.48 3.48 0 0 1 1.297-1.415c.56-.334 1.199-.5 1.916-.5.727 0 1.361.166 1.901.5.551.334.978.806 1.283 1.415.304.6.457 1.312.457 2.137 0 .816-.158 1.528-.472 2.137a3.385 3.385 0 0 1-1.282 1.416c-.551.334-1.189.5-1.916.5Zm0-1.062c.452 0 .859-.108 1.223-.324.363-.226.648-.56.855-1.002.216-.452.324-1.007.324-1.666 0-.668-.103-1.223-.309-1.665-.207-.442-.492-.771-.855-.988a2.198 2.198 0 0 0-1.209-.339c-.442 0-.845.113-1.209.34-.363.215-.653.545-.869.987-.216.442-.324.997-.324 1.665 0 .659.103 1.214.309 1.666.216.442.501.776.855 1.002.364.216.766.324 1.209.324ZM105.111 44.967l-2.285-7.753h1.238l1.695 6.176 1.799-6.176h1.4l1.813 6.16 1.68-6.16h1.253l-2.285 7.753h-1.267l-1.887-6.456-1.887 6.456h-1.267ZM99.08 45.144c-.698 0-1.278-.103-1.74-.31-.452-.216-.796-.51-1.032-.884a3.065 3.065 0 0 1-.427-1.327h1.267c.04.266.128.511.266.737.147.216.358.393.633.53.276.138.624.207 1.047.207.334 0 .619-.049.855-.147a1.19 1.19 0 0 0 .53-.442c.128-.187.192-.403.192-.649 0-.324-.074-.575-.221-.752-.138-.186-.344-.324-.62-.412a4.498 4.498 0 0 0-1.001-.221 6.69 6.69 0 0 1-1.15-.251 2.902 2.902 0 0 1-.855-.427 1.712 1.712 0 0 1-.516-.664 2.309 2.309 0 0 1-.177-.943c0-.422.113-.796.34-1.12.225-.324.545-.575.957-.752.423-.187.92-.28 1.489-.28.835 0 1.494.192 1.975.575.491.383.781.928.87 1.636h-1.224a1.209 1.209 0 0 0-.501-.855c-.285-.206-.663-.31-1.135-.31-.5 0-.88.094-1.135.28a.871.871 0 0 0-.383.738c0 .226.054.432.162.619.118.177.315.329.59.456.275.118.643.207 1.105.266.58.069 1.071.182 1.474.339.403.147.708.378.914.693.216.314.319.742.31 1.282 0 .51-.123.943-.369 1.297-.236.354-.57.624-1.002.81-.423.187-.919.28-1.489.28ZM91.58 45.144c-.698 0-1.277-.103-1.74-.31-.451-.216-.795-.51-1.031-.884a3.065 3.065 0 0 1-.427-1.327h1.267c.04.266.128.511.266.737.147.216.358.393.633.53.275.138.624.207 1.047.207.334 0 .619-.049.855-.147.235-.108.412-.256.53-.442a1.12 1.12 0 0 0 .192-.649c0-.324-.074-.575-.221-.752-.138-.186-.344-.324-.62-.412a4.498 4.498 0 0 0-1.002-.221 6.692 6.692 0 0 1-1.15-.251 2.9 2.9 0 0 1-.854-.427 1.712 1.712 0 0 1-.516-.664 2.309 2.309 0 0 1-.177-.943c0-.422.113-.796.34-1.12.225-.324.544-.575.957-.752.423-.187.919-.28 1.489-.28.835 0 1.493.192 1.975.575.491.383.781.928.87 1.636h-1.224a1.21 1.21 0 0 0-.501-.855c-.285-.206-.663-.31-1.135-.31-.501 0-.88.094-1.135.28a.87.87 0 0 0-.383.738c0 .226.054.432.162.619.118.177.315.329.59.456.275.118.643.207 1.105.266.58.069 1.071.182 1.474.339.403.147.708.378.914.693.216.314.32.742.31 1.282 0 .51-.123.943-.37 1.297a2.23 2.23 0 0 1-1.001.81c-.423.187-.92.28-1.489.28ZM83.079 45.144c-.59 0-1.081-.108-1.474-.325a2.25 2.25 0 0 1-.885-.884 2.526 2.526 0 0 1-.294-1.194c0-.51.127-.943.383-1.297.265-.364.634-.639 1.105-.825.472-.187 1.022-.28 1.651-.28h1.93c0-.502-.058-.92-.176-1.253-.118-.334-.31-.585-.575-.752-.265-.167-.619-.25-1.061-.25-.442 0-.82.113-1.135.339-.314.216-.51.54-.59.972h-1.267c.059-.51.23-.938.516-1.282a2.64 2.64 0 0 1 1.076-.796c.442-.187.909-.28 1.4-.28.698 0 1.272.128 1.724.383.453.246.787.595 1.003 1.047.216.442.324.968.324 1.577v4.923h-1.105l-.074-1.327a2.752 2.752 0 0 1-.383.59 2.465 2.465 0 0 1-.53.472 2.598 2.598 0 0 1-.708.324 2.9 2.9 0 0 1-.855.118Zm.177-1.047c.324 0 .623-.074.899-.22a2.27 2.27 0 0 0 .707-.59c.207-.256.364-.54.472-.855.108-.315.162-.644.162-.988v-.147h-1.828c-.462 0-.84.059-1.135.177-.285.118-.49.285-.619.5a1.317 1.317 0 0 0-.191.708c0 .285.059.536.177.752.117.206.29.368.515.486.236.118.516.177.84.177ZM72.488 44.967V34.649h3.316c.826 0 1.504.138 2.034.413.531.275.924.649 1.18 1.12.255.462.383.988.383 1.577 0 .58-.128 1.106-.383 1.577-.256.472-.649.845-1.18 1.12-.52.276-1.198.413-2.034.413h-2.078v4.098h-1.238Zm1.238-5.144h2.064c.864 0 1.469-.187 1.813-.56.353-.384.53-.885.53-1.504 0-.648-.177-1.154-.53-1.518-.344-.373-.949-.56-1.813-.56h-2.064v4.142Z"/></svg>
+`;
+
+export default PasswordManagerLogo;
diff --git a/libs/components/src/icon/logos/bitwarden/secrets-manager.ts b/libs/components/src/icon/logos/bitwarden/secrets-manager.ts
new file mode 100644
index 00000000000..bcba5f71d1a
--- /dev/null
+++ b/libs/components/src/icon/logos/bitwarden/secrets-manager.ts
@@ -0,0 +1,7 @@
+import { svgIcon } from "../../icon";
+
+const SecretsManagerLogo = svgIcon`
+  <svg xmlns="http://www.w3.org/2000/svg" fill="none" viewBox="0 0 200 49"><path class="tw-fill-text-alt2" fill-rule="evenodd" d="M48.038 7.458c2.289 0 4.069.869 5.376 2.679 1.308 1.774 1.962 4.2 1.962 7.277 0 3.186-.654 5.647-1.998 7.385-1.344 1.774-3.16 2.607-5.449 2.607-2.288 0-4.032-.797-5.34-2.462h-.363l-.69 1.701a.672.672 0 0 1-.618.399h-2.906a.65.65 0 0 1-.654-.652V.942a.65.65 0 0 1 .654-.652h3.923a.65.65 0 0 1 .654.651v5.576c0 .796-.072 2.063-.218 3.8h.218c1.2-1.882 3.052-2.86 5.45-2.86Zm-1.67 4.236c-1.272 0-2.253.398-2.87 1.194-.582.797-.909 2.136-.909 3.946v.58c0 2.063.29 3.548.909 4.416.617.87 1.598 1.34 2.942 1.34 1.053 0 1.962-.507 2.579-1.52.617-.978.945-2.462.945-4.309 0-1.882-.328-3.294-.945-4.236-.654-.94-1.562-1.411-2.652-1.411ZM64.021 27.08h-3.924a.65.65 0 0 1-.654-.652V8.508a.65.65 0 0 1 .654-.652h3.924a.65.65 0 0 1 .653.652v17.884c.037.326-.29.688-.653.688Zm14.348-3.874c.763 0 1.671-.145 2.761-.434a.436.436 0 0 1 .545.434v3.005a.445.445 0 0 1-.254.398c-1.236.507-2.797.76-4.541.76-2.107 0-3.633-.506-4.577-1.592-.945-1.05-1.453-2.643-1.453-4.743v-9.232h-2.07a.419.419 0 0 1-.437-.434V9.666c0-.036.037-.072.037-.108l2.87-1.702 1.416-3.765c.073-.181.218-.29.4-.29h2.615c.254 0 .436.181.436.435v3.656h5.195c.109 0 .218.109.218.218v3.258a.419.419 0 0 1-.436.434h-4.94v9.196c0 .724.217 1.303.617 1.629.363.398.944.58 1.598.58Zm24.447 3.874c-.508 0-.908-.326-1.126-.796l-3.85-11.694c-.254-.833-.581-2.1-1.017-3.73h-.11l-.363 1.304-.762 2.462-3.96 11.694c-.145.47-.581.76-1.09.76-.508 0-.944-.326-1.09-.833L84.62 9.413c-.146-.507.254-1.05.835-1.05h.109a.85.85 0 0 1 .799.615l2.833 10.246c.69 2.679 1.163 4.634 1.38 5.937h.11c.653-2.679 1.162-4.453 1.489-5.358l3.669-10.716c.145-.434.545-.724 1.053-.724.473 0 .872.29 1.017.724l3.415 10.644c.836 2.715 1.344 4.453 1.526 5.358h.109c.109-.724.545-2.752 1.38-6.01l2.725-10.1a.85.85 0 0 1 .799-.616c.545 0 .944.507.799 1.05l-4.577 16.834c-.145.507-.581.833-1.126.833h-.146Zm21.578 0a.664.664 0 0 1-.654-.58l-.327-2.389h-.182c-.944 1.195-1.888 2.064-2.906 2.57-.98.508-2.179.725-3.523.725-1.853 0-3.269-.47-4.287-1.412-.908-.833-1.416-1.955-1.489-3.367-.145-1.883.654-3.693 2.18-4.743 1.562-1.013 3.741-1.629 6.684-1.629l3.559-.108v-1.231c0-1.81-.363-3.114-1.126-4.019-.762-.905-1.889-1.34-3.487-1.34-1.526 0-3.051.363-4.65 1.123a.799.799 0 0 1-1.053-.398c-.182-.399 0-.87.4-1.014 1.816-.724 3.596-1.122 5.412-1.122 2.071 0 3.596.543 4.65 1.629 1.017 1.05 1.525 2.751 1.525 4.96V26.5c-.036.217-.363.579-.726.579Zm-7.52-1.231c2.035 0 3.597-.58 4.723-1.701 1.162-1.123 1.743-2.752 1.743-4.743v-1.81l-3.269.145c-2.652.108-4.504.543-5.667 1.23-1.126.688-1.707 1.81-1.707 3.259 0 1.158.363 2.1 1.053 2.751.8.543 1.817.869 3.124.869ZM138.38 8.001c.545 0 1.09.036 1.708.109a.818.818 0 0 1 .69.94c-.073.435-.509.689-.945.616-.545-.072-1.089-.145-1.634-.145-1.599 0-2.906.688-3.923 2.028-1.018 1.34-1.526 3.077-1.526 5.104v9.486a.82.82 0 0 1-.836.832.82.82 0 0 1-.835-.832V9.123c0-.398.327-.724.726-.724.4 0 .727.29.727.688l.145 2.679h.109c.763-1.376 1.598-2.353 2.47-2.896.836-.58 1.889-.87 3.124-.87Zm12.787 0c1.344 0 2.543.253 3.524.724 1.017.47 1.889 1.34 2.651 2.534h.109a86.486 86.486 0 0 1-.109-4.236v-5.9c0-.471.364-.833.836-.833a.82.82 0 0 1 .835.832v25.306c0 .326-.254.58-.581.58a.589.589 0 0 1-.581-.543l-.363-2.354h-.146c-1.416 2.136-3.487 3.186-6.139 3.186-2.615 0-4.54-.796-5.957-2.425-1.344-1.63-2.071-3.947-2.071-7.024 0-3.222.654-5.684 2.035-7.421C146.59 8.87 148.552 8 151.167 8Zm0 1.557c-2.071 0-3.596.724-4.65 2.172-1.017 1.412-1.525 3.475-1.525 6.227 0 5.285 2.07 7.928 6.211 7.928 2.144 0 3.669-.615 4.65-1.846 1.017-1.231 1.489-3.258 1.489-6.082v-.29c0-2.896-.472-4.96-1.489-6.19-.944-1.304-2.506-1.92-4.686-1.92Zm21.759 17.848c-2.724 0-4.831-.833-6.393-2.534-1.526-1.666-2.289-4.019-2.289-7.024s.727-5.394 2.216-7.168c1.489-1.81 3.451-2.715 5.958-2.715 2.179 0 3.959.76 5.194 2.28 1.308 1.521 1.925 3.62 1.925 6.264v1.375h-13.513c.037 2.57.618 4.526 1.816 5.901 1.199 1.376 2.87 1.992 5.086 1.992 1.054 0 2.034-.073 2.834-.218a14.71 14.71 0 0 0 2.106-.579c.473-.18.981.181.981.688 0 .29-.181.58-.472.688-.872.362-1.707.58-2.47.724-.908.253-1.889.326-2.979.326Zm-.508-17.885c-1.817 0-3.27.58-4.36 1.774-1.089 1.159-1.707 2.897-1.925 5.105h11.624c0-2.136-.472-3.874-1.416-5.068-.945-1.195-2.252-1.81-3.923-1.81Zm26.299 17.559a.82.82 0 0 1-.835-.833V14.916c0-1.883-.4-3.259-1.163-4.091-.835-.833-2.034-1.304-3.705-1.304-2.252 0-3.887.543-4.904 1.702-1.017 1.122-1.598 2.969-1.598 5.467v9.485a.82.82 0 0 1-.836.832.82.82 0 0 1-.835-.832V9.123c0-.434.327-.76.763-.76.399 0 .69.29.763.652l.218 1.882h.109c1.235-1.955 3.378-2.932 6.502-2.932 4.25 0 6.393 2.28 6.393 6.842v11.368c-.036.507-.436.905-.872.905ZM62.097 0c-1.708 0-3.088 1.303-3.088 2.932v.29c0 1.593 1.416 2.933 3.087 2.933 1.671 0 3.088-1.34 3.088-2.933V2.97C65.184 1.303 63.767 0 62.096 0Z" clip-rule="evenodd"/><path class="tw-fill-text-alt2" d="M22.052 17.087V4.142h-9.08V27.14c1.608-.85 3.047-1.773 4.317-2.771 3.175-2.481 4.763-4.908 4.763-7.282Zm3.891-15.534v15.534c0 1.16-.226 2.31-.679 3.45a12.86 12.86 0 0 1-1.682 3.033 18.741 18.741 0 0 1-2.392 2.579c-.925.836-1.78 1.53-2.564 2.083a32.288 32.288 0 0 1-2.452 1.568c-.851.492-1.456.826-1.814 1.001-.358.175-.645.31-.861.405-.163.08-.338.12-.527.12-.19 0-.365-.04-.527-.12-.216-.095-.504-.23-.862-.405-.358-.175-.962-.509-1.814-1.001a32.279 32.279 0 0 1-2.452-1.568 27.823 27.823 0 0 1-2.564-2.083A18.74 18.74 0 0 1 2.36 23.57 12.857 12.857 0 0 1 .68 20.536 9.273 9.273 0 0 1 0 17.087V1.553C0 1.203.128.9.385.643S.945.26 1.297.26h23.35c.35 0 .655.128.911.384.257.256.385.56.385.91ZM195.682 44.967v-7.753h1.12l.088 1.415c.177-.354.408-.649.693-.884a2.853 2.853 0 0 1 1.032-.531 5.033 5.033 0 0 1 1.385-.177v1.297h-.766c-.295 0-.58.04-.855.118a2.183 2.183 0 0 0-.752.383 1.825 1.825 0 0 0-.516.722c-.128.305-.191.688-.191 1.15v4.26h-1.238ZM190.546 45.144c-.688 0-1.297-.167-1.827-.502-.531-.334-.949-.805-1.253-1.415-.295-.609-.442-1.321-.442-2.137 0-.815.147-1.528.442-2.137.304-.609.722-1.08 1.253-1.415.54-.334 1.159-.5 1.857-.5.747 0 1.371.166 1.872.5.501.334.879.781 1.135 1.342.255.56.383 1.174.383 1.842v.295c0 .098-.005.216-.015.353h-5.999v-.958h4.805c-.019-.756-.241-1.331-.663-1.724-.413-.403-.929-.604-1.548-.604a2.24 2.24 0 0 0-1.149.31 2.214 2.214 0 0 0-.84.884c-.217.392-.325.884-.325 1.473v.413c0 .649.108 1.194.325 1.636.216.433.496.757.84.973.353.216.737.324 1.149.324.551 0 .983-.103 1.297-.31.315-.215.546-.52.693-.913h1.223c-.117.432-.324.82-.619 1.164a2.941 2.941 0 0 1-1.09.81c-.433.197-.934.296-1.504.296ZM182.179 48.386c-.697 0-1.311-.088-1.842-.265-.521-.167-.929-.428-1.223-.781-.285-.354-.428-.791-.428-1.312 0-.246.044-.501.133-.767.098-.265.26-.52.486-.766.236-.245.565-.467.988-.663l.943.501c-.56.216-.924.467-1.091.752-.167.285-.25.56-.25.825 0 .324.093.595.28.81.196.217.467.379.81.487.344.108.742.162 1.194.162.443 0 .821-.059 1.135-.177.325-.108.57-.27.737-.486.177-.206.266-.452.266-.737 0-.413-.133-.737-.398-.973-.266-.226-.782-.358-1.548-.398a15 15 0 0 1-1.503-.162 6.95 6.95 0 0 1-1.003-.236 3.329 3.329 0 0 1-.648-.324 4.345 4.345 0 0 1-.457-.368v-.34l1.459-1.4 1.164.384-1.591 1.311.191-.56c.108.079.211.153.31.221.098.07.231.133.398.192.177.05.417.098.722.147.314.05.727.094 1.238.133.707.05 1.272.167 1.695.354.423.186.727.447.914.78.187.325.28.723.28 1.195 0 .413-.118.806-.354 1.179-.226.373-.589.678-1.091.914-.491.245-1.13.368-1.916.368Zm-.014-5.837c-.629 0-1.165-.117-1.607-.353a2.512 2.512 0 0 1-.987-.988 2.952 2.952 0 0 1-.339-1.415c0-.52.113-.987.339-1.4a2.605 2.605 0 0 1 1.002-.987c.442-.246.973-.369 1.592-.369.638 0 1.174.123 1.606.369.433.245.762.574.988.987.226.413.339.88.339 1.4 0 .521-.113.993-.339 1.415a2.508 2.508 0 0 1-.988.988c-.432.236-.968.354-1.606.354Zm0-1.017c.55 0 .977-.142 1.282-.427.305-.295.457-.732.457-1.312 0-.58-.152-1.012-.457-1.297-.305-.285-.732-.427-1.282-.427-.521 0-.949.142-1.283.427-.324.285-.486.718-.486 1.297 0 .58.157 1.017.472 1.312.324.285.756.428 1.297.428Zm1.297-3.271-.369-1.047h3.036v.928l-2.667.118ZM173.442 45.144c-.589 0-1.081-.108-1.474-.325a2.252 2.252 0 0 1-.884-.884 2.533 2.533 0 0 1-.295-1.194c0-.51.128-.943.384-1.297.265-.364.633-.639 1.105-.825.472-.187 1.022-.28 1.651-.28h1.931c0-.502-.059-.92-.177-1.253a1.407 1.407 0 0 0-.575-.752c-.265-.167-.619-.25-1.061-.25-.443 0-.821.113-1.135.339-.315.216-.511.54-.59.972h-1.267c.059-.51.231-.938.515-1.282.285-.354.644-.619 1.076-.796.443-.187.909-.28 1.401-.28.697 0 1.272.128 1.724.383.452.246.786.595 1.002 1.047.217.442.325.968.325 1.577v4.923h-1.106l-.073-1.327a2.752 2.752 0 0 1-.384.59 2.459 2.459 0 0 1-.53.472 2.6 2.6 0 0 1-.708.324c-.255.078-.54.118-.855.118Zm.177-1.047c.324 0 .624-.074.899-.22a2.28 2.28 0 0 0 .708-.59 2.8 2.8 0 0 0 .471-.855c.109-.315.163-.644.163-.988v-.147h-1.828c-.462 0-.84.059-1.135.177-.285.118-.491.285-.619.5a1.315 1.315 0 0 0-.192.708c0 .285.059.536.177.752.118.206.29.368.516.486.236.118.516.177.84.177ZM162.504 44.967v-7.753h1.12l.059 1.223c.226-.442.55-.786.973-1.031.432-.246.929-.369 1.489-.369.57 0 1.066.108 1.488.324.423.217.752.546.988.988.236.442.354 1.002.354 1.68v4.938h-1.239v-4.805c0-.688-.172-1.204-.515-1.548-.335-.344-.787-.516-1.356-.516-.384 0-.737.094-1.062.28a1.97 1.97 0 0 0-.781.796c-.187.354-.28.786-.28 1.297v4.496h-1.238ZM156.803 45.144c-.589 0-1.081-.108-1.474-.325a2.246 2.246 0 0 1-.884-.884 2.52 2.52 0 0 1-.295-1.194c0-.51.128-.943.383-1.297.266-.364.634-.639 1.106-.825.471-.187 1.022-.28 1.651-.28h1.93c0-.502-.059-.92-.176-1.253a1.407 1.407 0 0 0-.575-.752c-.266-.167-.619-.25-1.062-.25-.442 0-.82.113-1.134.339-.315.216-.511.54-.59.972h-1.268c.059-.51.231-.938.516-1.282.285-.354.644-.619 1.076-.796.442-.187.909-.28 1.4-.28.698 0 1.273.128 1.725.383.452.246.786.595 1.002 1.047.216.442.324.968.324 1.577v4.923h-1.105l-.074-1.327a2.747 2.747 0 0 1-.383.59 2.459 2.459 0 0 1-.53.472 2.614 2.614 0 0 1-.708.324c-.255.078-.54.118-.855.118Zm.177-1.047c.324 0 .624-.074.899-.22a2.28 2.28 0 0 0 .708-.59 2.8 2.8 0 0 0 .471-.855c.108-.315.162-.644.162-.988v-.147h-1.827c-.462 0-.84.059-1.135.177-.285.118-.491.285-.619.5a1.315 1.315 0 0 0-.192.708c0 .285.059.536.177.752.118.206.29.368.516.486.236.118.516.177.84.177ZM142.312 44.967V34.649h1.444l3.508 7.267 3.479-7.267h1.459v10.318h-1.238v-8.092l-3.243 6.736h-.929l-3.242-6.677v8.033h-1.238ZM133.566 45.144c-.697 0-1.277-.103-1.739-.31-.452-.216-.796-.51-1.032-.884a3.074 3.074 0 0 1-.427-1.327h1.268c.039.266.127.511.265.737.147.216.359.393.634.53.275.138.624.207 1.046.207.334 0 .619-.049.855-.147.236-.108.413-.256.531-.442.127-.187.191-.403.191-.649 0-.324-.073-.575-.221-.752-.137-.186-.344-.324-.619-.412a4.49 4.49 0 0 0-1.002-.221 6.701 6.701 0 0 1-1.15-.251 2.905 2.905 0 0 1-.855-.427 1.713 1.713 0 0 1-.516-.664 2.324 2.324 0 0 1-.176-.943c0-.422.113-.796.339-1.12.226-.324.545-.575.958-.752.422-.187.918-.28 1.488-.28.836 0 1.494.192 1.975.575.492.383.782.928.87 1.636h-1.223a1.214 1.214 0 0 0-.502-.855c-.284-.206-.663-.31-1.134-.31-.502 0-.88.094-1.135.28a.87.87 0 0 0-.384.738c0 .226.054.432.163.619.117.177.314.329.589.456.275.118.644.207 1.106.266.579.069 1.071.182 1.473.339.403.147.708.378.914.693.216.314.32.742.31 1.282 0 .51-.123.943-.369 1.297-.235.354-.57.624-1.002.81-.422.187-.919.28-1.489.28ZM127.785 44.967c-.442 0-.825-.07-1.15-.207a1.512 1.512 0 0 1-.751-.692c-.167-.334-.251-.782-.251-1.342V38.26h-1.356v-1.046h1.356l.162-1.93h1.076v1.93h2.196v1.046h-2.196v4.466c0 .462.094.777.28.944.187.157.516.236.988.236h.899v1.06h-1.253ZM119.888 45.144c-.688 0-1.297-.167-1.828-.502-.531-.334-.948-.805-1.253-1.415-.295-.609-.442-1.321-.442-2.137 0-.815.147-1.528.442-2.137.305-.609.722-1.08 1.253-1.415.54-.334 1.159-.5 1.857-.5.747 0 1.371.166 1.872.5.501.334.879.781 1.135 1.342.255.56.383 1.174.383 1.842v.295c0 .098-.005.216-.015.353h-5.998v-.958h4.805c-.02-.756-.241-1.331-.664-1.724-.412-.403-.928-.604-1.547-.604-.413 0-.796.103-1.15.31a2.214 2.214 0 0 0-.84.884c-.216.392-.324.884-.324 1.473v.413c0 .649.108 1.194.324 1.636.216.433.496.757.84.973.354.216.737.324 1.15.324.55 0 .982-.103 1.297-.31.314-.215.545-.52.692-.913h1.224c-.118.432-.324.82-.619 1.164a2.945 2.945 0 0 1-1.091.81c-.432.197-.933.296-1.503.296ZM111.205 44.967v-7.753h1.12l.089 1.415a2.68 2.68 0 0 1 .692-.884 2.853 2.853 0 0 1 1.032-.531 5.045 5.045 0 0 1 1.386-.177v1.297h-.767c-.295 0-.58.04-.855.118a2.178 2.178 0 0 0-.751.383 1.805 1.805 0 0 0-.516.722c-.128.305-.192.688-.192 1.15v4.26h-1.238ZM106.044 45.144c-.707 0-1.336-.167-1.887-.502a3.59 3.59 0 0 1-1.297-1.43c-.314-.608-.471-1.316-.471-2.122 0-.815.157-1.523.471-2.122.315-.61.747-1.08 1.297-1.415.551-.344 1.18-.516 1.887-.516.884 0 1.621.236 2.211.708.599.471.983 1.105 1.15 1.9h-1.268c-.108-.49-.359-.869-.752-1.134-.383-.275-.835-.413-1.356-.413a2.27 2.27 0 0 0-1.223.34c-.354.225-.634.56-.84 1.002-.206.442-.31.992-.31 1.65 0 .492.059.929.177 1.312.118.373.28.688.487.944.216.245.466.432.751.56.295.127.614.191.958.191.354 0 .673-.059.958-.177a1.95 1.95 0 0 0 .737-.545c.207-.236.344-.516.413-.84h1.268a3.123 3.123 0 0 1-1.15 1.886c-.599.482-1.336.723-2.211.723ZM97.563 45.144c-.688 0-1.297-.167-1.828-.502-.53-.334-.948-.805-1.252-1.415-.295-.609-.443-1.321-.443-2.137 0-.815.148-1.528.443-2.137.304-.609.722-1.08 1.252-1.415.54-.334 1.16-.5 1.858-.5.746 0 1.37.166 1.871.5.502.334.88.781 1.135 1.342a4.38 4.38 0 0 1 .384 1.842v.295c0 .098-.005.216-.015.353h-5.999v-.958h4.805c-.02-.756-.24-1.331-.663-1.724-.413-.403-.929-.604-1.548-.604-.413 0-.796.103-1.15.31a2.215 2.215 0 0 0-.84.884c-.216.392-.324.884-.324 1.473v.413c0 .649.108 1.194.324 1.636.216.433.497.757.84.973.354.216.737.324 1.15.324.55 0 .983-.103 1.297-.31a1.87 1.87 0 0 0 .693-.913h1.223c-.118.432-.324.82-.619 1.164a2.94 2.94 0 0 1-1.09.81c-.433.197-.934.296-1.504.296ZM89.104 45.144c-.757 0-1.415-.138-1.975-.413a3.084 3.084 0 0 1-1.297-1.15c-.305-.491-.457-1.06-.457-1.71h1.297c0 .403.093.777.28 1.12.186.335.457.605.81.811.364.197.811.295 1.342.295.462 0 .855-.074 1.179-.22.334-.158.585-.37.752-.635.177-.265.265-.565.265-.899 0-.373-.084-.683-.25-.928a1.755 1.755 0 0 0-.664-.62 5.43 5.43 0 0 0-.987-.442c-.374-.127-.777-.26-1.21-.398-.864-.275-1.493-.619-1.886-1.031-.383-.423-.575-.963-.575-1.622 0-.56.128-1.05.384-1.474a2.679 2.679 0 0 1 1.12-.987c.491-.246 1.07-.369 1.74-.369.657 0 1.227.123 1.709.369.491.246.874.585 1.15 1.017.275.423.412.914.412 1.474h-1.297a1.76 1.76 0 0 0-.22-.84 1.729 1.729 0 0 0-.679-.678c-.295-.187-.668-.28-1.12-.28a2.202 2.202 0 0 0-1.002.191c-.285.128-.511.315-.678.56-.158.246-.236.546-.236.9 0 .334.069.604.206.81.148.207.354.383.62.53.274.138.594.266.957.384.364.118.767.25 1.209.398.501.167.943.373 1.326.619.393.236.698.54.914.914.226.373.34.85.34 1.43 0 .49-.133.958-.399 1.4-.255.432-.638.786-1.15 1.061-.51.275-1.154.413-1.93.413Z"/></svg>
+`;
+
+export default SecretsManagerLogo;
diff --git a/libs/components/src/icon/logos/bitwarden/shield.ts b/libs/components/src/icon/logos/bitwarden/shield.ts
new file mode 100644
index 00000000000..15fe6dddf48
--- /dev/null
+++ b/libs/components/src/icon/logos/bitwarden/shield.ts
@@ -0,0 +1,7 @@
+import { svgIcon } from "../../icon";
+
+const BitwardenShield = svgIcon`
+  <svg xmlns="http://www.w3.org/2000/svg" fill="none" viewBox="0 0 28 33"><path d="M26.696.403A1.274 1.274 0 0 0 25.764 0H1.83C1.467 0 1.16.137.898.403a1.294 1.294 0 0 0-.398.944v16.164c0 1.203.235 2.405.697 3.587.462 1.188 1.038 2.24 1.728 3.155.682.922 1.5 1.815 2.453 2.68a28.077 28.077 0 0 0 2.63 2.167 32.181 32.181 0 0 0 2.518 1.628c.875.511 1.493.857 1.863 1.045.37.18.661.324.882.417.163.087.348.13.54.13.192 0 .377-.043.54-.13.221-.1.52-.237.882-.417.37-.18.989-.534 1.863-1.045a34.4 34.4 0 0 0 2.517-1.628c.804-.576 1.679-1.296 2.631-2.168a20.206 20.206 0 0 0 2.454-2.68 13.599 13.599 0 0 0 1.72-3.154c.463-1.189.697-2.384.697-3.587V1.347a1.406 1.406 0 0 0-.42-.944ZM23.61 17.662c0 5.849-9.813 10.89-9.813 10.89V3.458h9.813v14.205Z" class="tw-fill-marketing-logo"/></svg>
+`;
+
+export default BitwardenShield;
diff --git a/libs/components/src/icon/logos/index.ts b/libs/components/src/icon/logos/index.ts
new file mode 100644
index 00000000000..07a8a739289
--- /dev/null
+++ b/libs/components/src/icon/logos/index.ts
@@ -0,0 +1 @@
+export * from "./bitwarden";
diff --git a/libs/components/src/layout/layout.stories.ts b/libs/components/src/layout/layout.stories.ts
index e495367f78d..7ab0ffc7ce9 100644
--- a/libs/components/src/layout/layout.stories.ts
+++ b/libs/components/src/layout/layout.stories.ts
@@ -55,207 +55,15 @@ export const WithContent: Story = {
     template: /* HTML */ `
       <bit-layout>
         <bit-side-nav>
-          <bit-nav-item text="Item A" route="#" icon="bwi-lock"></bit-nav-item>
-          <bit-nav-group text="Tree A" icon="bwi-family" [open]="true">
-            <bit-nav-group
-              text="Level 1 - with children (empty)"
-              route="#"
-              icon="bwi-collection-shared"
-              variant="tree"
-            ></bit-nav-group>
-            <bit-nav-item
-              text="Level 1 - no children"
-              route="#"
-              icon="bwi-collection-shared"
-              variant="tree"
-            ></bit-nav-item>
-            <bit-nav-group
-              text="Level 1 - with children"
-              route="#"
-              icon="bwi-collection-shared"
-              variant="tree"
-              [open]="true"
-            >
-              <bit-nav-group
-                text="Level 2 - with children"
-                route="#"
-                icon="bwi-collection-shared"
-                variant="tree"
-                [open]="true"
-              >
-                <bit-nav-item
-                  text="Level 3 - no children, no icon"
-                  route="#"
-                  variant="tree"
-                ></bit-nav-item>
-                <bit-nav-group
-                  text="Level 3 - with children"
-                  route="#"
-                  icon="bwi-collection-shared"
-                  variant="tree"
-                  [open]="true"
-                >
-                  <bit-nav-item
-                    text="Level 4 - no children, no icon"
-                    route="#"
-                    variant="tree"
-                  ></bit-nav-item>
-                </bit-nav-group>
-              </bit-nav-group>
-              <bit-nav-group
-                text="Level 2 - with children (empty)"
-                route="#"
-                icon="bwi-collection-shared"
-                variant="tree"
-                [open]="true"
-              ></bit-nav-group>
-              <bit-nav-item
-                text="Level 2 - no children"
-                route="#"
-                icon="bwi-collection-shared"
-                variant="tree"
-              ></bit-nav-item>
-            </bit-nav-group>
-            <bit-nav-item
-              text="Level 1 - no children"
-              route="#"
-              icon="bwi-collection-shared"
-              variant="tree"
-            ></bit-nav-item>
+          <bit-nav-group text="Hello World (Anchor)" [route]="['a']" icon="bwi-filter">
+            <bit-nav-item text="Child A" route="a" icon="bwi-filter"></bit-nav-item>
+            <bit-nav-item text="Child B" route="b"></bit-nav-item>
+            <bit-nav-item text="Child C" route="c" icon="bwi-filter"></bit-nav-item>
           </bit-nav-group>
-          <bit-nav-group text="Tree B" icon="bwi-collection-shared" [open]="true">
-            <bit-nav-group
-              text="Level 1 - with children (empty)"
-              route="#"
-              icon="bwi-collection-shared"
-              variant="tree"
-            ></bit-nav-group>
-            <bit-nav-item
-              text="Level 1 - no children"
-              route="#"
-              icon="bwi-collection-shared"
-              variant="tree"
-            ></bit-nav-item>
-            <bit-nav-group
-              text="Level 1 - with children"
-              route="#"
-              icon="bwi-collection-shared"
-              variant="tree"
-              [open]="true"
-            >
-              <bit-nav-group
-                text="Level 2 - with children"
-                route="#"
-                icon="bwi-collection-shared"
-                variant="tree"
-                [open]="true"
-              >
-                <bit-nav-item
-                  text="Level 3 - no children, no icon"
-                  route="#"
-                  variant="tree"
-                ></bit-nav-item>
-                <bit-nav-group
-                  text="Level 3 - with children"
-                  route="#"
-                  icon="bwi-collection-shared"
-                  variant="tree"
-                  [open]="true"
-                >
-                  <bit-nav-item
-                    text="Level 4 - no children, no icon"
-                    route="#"
-                    variant="tree"
-                  ></bit-nav-item>
-                </bit-nav-group>
-              </bit-nav-group>
-              <bit-nav-group
-                text="Level 2 - with children (empty)"
-                route="#"
-                icon="bwi-collection-shared"
-                variant="tree"
-                [open]="true"
-              ></bit-nav-group>
-              <bit-nav-item
-                text="Level 2 - no children"
-                route="#"
-                icon="bwi-collection-shared"
-                variant="tree"
-              ></bit-nav-item>
-            </bit-nav-group>
-            <bit-nav-item
-              text="Level 1 - no children"
-              route="#"
-              icon="bwi-collection-shared"
-              variant="tree"
-            ></bit-nav-item>
-          </bit-nav-group>
-          <bit-nav-group text="Tree C" icon="bwi-key" [open]="true">
-            <bit-nav-group
-              text="Level 1 - with children (empty)"
-              route="#"
-              icon="bwi-collection-shared"
-              variant="tree"
-            ></bit-nav-group>
-            <bit-nav-item
-              text="Level 1 - no children"
-              route="#"
-              icon="bwi-collection-shared"
-              variant="tree"
-            ></bit-nav-item>
-            <bit-nav-group
-              text="Level 1 - with children"
-              route="#"
-              icon="bwi-collection-shared"
-              variant="tree"
-              [open]="true"
-            >
-              <bit-nav-group
-                text="Level 2 - with children"
-                route="#"
-                icon="bwi-collection-shared"
-                variant="tree"
-                [open]="true"
-              >
-                <bit-nav-item
-                  text="Level 3 - no children, no icon"
-                  route="#"
-                  variant="tree"
-                ></bit-nav-item>
-                <bit-nav-group
-                  text="Level 3 - with children"
-                  route="#"
-                  icon="bwi-collection-shared"
-                  variant="tree"
-                  [open]="true"
-                >
-                  <bit-nav-item
-                    text="Level 4 - no children, no icon"
-                    route="#"
-                    variant="tree"
-                  ></bit-nav-item>
-                </bit-nav-group>
-              </bit-nav-group>
-              <bit-nav-group
-                text="Level 2 - with children (empty)"
-                route="#"
-                icon="bwi-collection-shared"
-                variant="tree"
-                [open]="true"
-              ></bit-nav-group>
-              <bit-nav-item
-                text="Level 2 - no children"
-                route="#"
-                icon="bwi-collection-shared"
-                variant="tree"
-              ></bit-nav-item>
-            </bit-nav-group>
-            <bit-nav-item
-              text="Level 1 - no children"
-              route="#"
-              icon="bwi-collection-shared"
-              variant="tree"
-            ></bit-nav-item>
+          <bit-nav-group text="Lorem Ipsum (Button)" icon="bwi-filter">
+            <bit-nav-item text="Child A" icon="bwi-filter"></bit-nav-item>
+            <bit-nav-item text="Child B"></bit-nav-item>
+            <bit-nav-item text="Child C" icon="bwi-filter"></bit-nav-item>
           </bit-nav-group>
         </bit-side-nav>
         <bit-callout title="Foobar"> Hello world! </bit-callout>
@@ -277,77 +85,15 @@ export const Secondary: Story = {
     template: /* HTML */ `
       <bit-layout>
         <bit-side-nav variant="secondary">
-          <bit-nav-item text="Item A" icon="bwi-collection-shared"></bit-nav-item>
-          <bit-nav-item text="Item B" icon="bwi-collection-shared"></bit-nav-item>
-          <bit-nav-divider></bit-nav-divider>
-          <bit-nav-item text="Item C" icon="bwi-collection-shared"></bit-nav-item>
-          <bit-nav-item text="Item D" icon="bwi-collection-shared"></bit-nav-item>
-          <bit-nav-group text="Tree example" icon="bwi-collection-shared" [open]="true">
-            <bit-nav-group
-              text="Level 1 - with children (empty)"
-              route="#"
-              icon="bwi-collection-shared"
-              variant="tree"
-            ></bit-nav-group>
-            <bit-nav-item
-              text="Level 1 - no children"
-              route="#"
-              icon="bwi-collection-shared"
-              variant="tree"
-            ></bit-nav-item>
-            <bit-nav-group
-              text="Level 1 - with children"
-              route="#"
-              icon="bwi-collection-shared"
-              variant="tree"
-              [open]="true"
-            >
-              <bit-nav-group
-                text="Level 2 - with children"
-                route="#"
-                icon="bwi-collection-shared"
-                variant="tree"
-                [open]="true"
-              >
-                <bit-nav-item
-                  text="Level 3 - no children, no icon"
-                  route="#"
-                  variant="tree"
-                ></bit-nav-item>
-                <bit-nav-group
-                  text="Level 3 - with children"
-                  route="#"
-                  icon="bwi-collection-shared"
-                  variant="tree"
-                  [open]="true"
-                >
-                  <bit-nav-item
-                    text="Level 4 - no children, no icon"
-                    route="#"
-                    variant="tree"
-                  ></bit-nav-item>
-                </bit-nav-group>
-              </bit-nav-group>
-              <bit-nav-group
-                text="Level 2 - with children (empty)"
-                route="#"
-                icon="bwi-collection-shared"
-                variant="tree"
-                [open]="true"
-              ></bit-nav-group>
-              <bit-nav-item
-                text="Level 2 - no children"
-                route="#"
-                icon="bwi-collection-shared"
-                variant="tree"
-              ></bit-nav-item>
-            </bit-nav-group>
-            <bit-nav-item
-              text="Level 1 - no children"
-              route="#"
-              icon="bwi-collection-shared"
-              variant="tree"
-            ></bit-nav-item>
+          <bit-nav-group text="Hello World (Anchor)" [route]="['a']" icon="bwi-filter">
+            <bit-nav-item text="Child A" route="a" icon="bwi-filter"></bit-nav-item>
+            <bit-nav-item text="Child B" route="b"></bit-nav-item>
+            <bit-nav-item text="Child C" route="c" icon="bwi-filter"></bit-nav-item>
+          </bit-nav-group>
+          <bit-nav-group text="Lorem Ipsum (Button)" icon="bwi-filter">
+            <bit-nav-item text="Child A" icon="bwi-filter"></bit-nav-item>
+            <bit-nav-item text="Child B"></bit-nav-item>
+            <bit-nav-item text="Child C" icon="bwi-filter"></bit-nav-item>
           </bit-nav-group>
         </bit-side-nav>
         <bit-callout title="Foobar"> Hello world! </bit-callout>
diff --git a/libs/components/src/navigation/nav-base.component.ts b/libs/components/src/navigation/nav-base.component.ts
index 9b222c9434f..dc3084509a5 100644
--- a/libs/components/src/navigation/nav-base.component.ts
+++ b/libs/components/src/navigation/nav-base.component.ts
@@ -55,16 +55,6 @@ export abstract class NavBaseComponent {
     matrixParams: "ignored",
   };
 
-  /**
-   * If this item is used within a tree, set `variant` to `"tree"`
-   */
-  @Input() variant: "default" | "tree" = "default";
-
-  /**
-   * Depth level when nested inside of a `'tree'` variant
-   */
-  @Input() treeDepth = 0;
-
   /**
    * If `true`, do not change styles when nav item is active.
    */
diff --git a/libs/components/src/navigation/nav-divider.component.html b/libs/components/src/navigation/nav-divider.component.html
index 64e43aeab4e..2d8e1dfa24b 100644
--- a/libs/components/src/navigation/nav-divider.component.html
+++ b/libs/components/src/navigation/nav-divider.component.html
@@ -1,3 +1,3 @@
 @if (sideNavService.open$ | async) {
-  <div class="tw-h-px tw-w-full tw-bg-secondary-300"></div>
+  <div class="tw-h-px tw-w-full tw-my-2 tw-bg-secondary-300"></div>
 }
diff --git a/libs/components/src/navigation/nav-group.component.html b/libs/components/src/navigation/nav-group.component.html
index cbb270ad070..6a9ee4c0ab9 100644
--- a/libs/components/src/navigation/nav-group.component.html
+++ b/libs/components/src/navigation/nav-group.component.html
@@ -6,8 +6,6 @@
     [route]="route"
     [relativeTo]="relativeTo"
     [routerLinkActiveOptions]="routerLinkActiveOptions"
-    [variant]="variant"
-    [treeDepth]="treeDepth"
     (mainContentClicked)="handleMainContentClicked()"
     [ariaLabel]="ariaLabel"
     [hideActiveStyles]="parentHideActiveStyles"
@@ -16,9 +14,7 @@
       <button
         type="button"
         class="tw-ms-auto"
-        [bitIconButton]="
-          open ? 'bwi-angle-up' : variant === 'tree' ? 'bwi-angle-right' : 'bwi-angle-down'
-        "
+        [bitIconButton]="open ? 'bwi-angle-up' : 'bwi-angle-down'"
         [buttonType]="'light'"
         (click)="toggle($event)"
         size="small"
@@ -29,17 +25,9 @@
         [attr.aria-label]="['toggleCollapse' | i18n, text].join(' ')"
       ></button>
     </ng-template>
-    <!-- Show toggle to the left for trees otherwise to the right -->
-    @if (variant === "tree") {
-      <ng-container slot="start">
-        <ng-container *ngTemplateOutlet="button"></ng-container>
-      </ng-container>
-    }
     <ng-container slot="end">
       <ng-content select="[slot=end]"></ng-content>
-      @if (variant !== "tree") {
-        <ng-container *ngTemplateOutlet="button"></ng-container>
-      }
+      <ng-container *ngTemplateOutlet="button"></ng-container>
     </ng-container>
   </bit-nav-item>
   <!-- [attr.aria-controls] of the above button expects a unique ID on the controlled element -->
diff --git a/libs/components/src/navigation/nav-group.component.ts b/libs/components/src/navigation/nav-group.component.ts
index 5346a583e37..b52f9fcd202 100644
--- a/libs/components/src/navigation/nav-group.component.ts
+++ b/libs/components/src/navigation/nav-group.component.ts
@@ -1,6 +1,5 @@
 import { CommonModule } from "@angular/common";
 import {
-  AfterContentInit,
   booleanAttribute,
   Component,
   ContentChildren,
@@ -29,7 +28,7 @@ import { SideNavService } from "./side-nav.service";
   ],
   imports: [CommonModule, NavItemComponent, IconButtonModule, I18nPipe],
 })
-export class NavGroupComponent extends NavBaseComponent implements AfterContentInit {
+export class NavGroupComponent extends NavBaseComponent {
   @ContentChildren(NavBaseComponent, {
     descendants: true,
   })
@@ -80,18 +79,6 @@ export class NavGroupComponent extends NavBaseComponent implements AfterContentI
     this.setOpen(!this.open);
   }
 
-  /**
-   * - For any nested NavGroupComponents or NavItemComponents, increment the `treeDepth` by 1.
-   */
-  private initNestedStyles() {
-    if (this.variant !== "tree") {
-      return;
-    }
-    [...this.nestedNavComponents].forEach((navGroupOrItem) => {
-      navGroupOrItem.treeDepth += 1;
-    });
-  }
-
   protected handleMainContentClicked() {
     if (!this.sideNavService.open) {
       if (!this.route) {
@@ -103,8 +90,4 @@ export class NavGroupComponent extends NavBaseComponent implements AfterContentI
     }
     this.mainContentClicked.emit();
   }
-
-  ngAfterContentInit(): void {
-    this.initNestedStyles();
-  }
 }
diff --git a/libs/components/src/navigation/nav-group.stories.ts b/libs/components/src/navigation/nav-group.stories.ts
index 19fe3764852..b30acc63c72 100644
--- a/libs/components/src/navigation/nav-group.stories.ts
+++ b/libs/components/src/navigation/nav-group.stories.ts
@@ -111,31 +111,6 @@ export const HideEmptyGroups: StoryObj<NavGroupComponent & { renderChildren: boo
   }),
 };
 
-export const Tree: StoryObj<NavGroupComponent> = {
-  render: (args) => ({
-    props: args,
-    template: /*html*/ `
-      <bit-side-nav>
-        <bit-nav-group text="Tree example" icon="bwi-collection-shared" [open]="true">
-          <bit-nav-group text="Level 1 - with children (empty)" route="t1" icon="bwi-collection-shared" variant="tree"></bit-nav-group>
-          <bit-nav-item text="Level 1 - no children" route="t2" icon="bwi-collection-shared" variant="tree"></bit-nav-item>
-          <bit-nav-group text="Level 1 - with children" route="t3" icon="bwi-collection-shared" variant="tree" [open]="true">
-            <bit-nav-group text="Level 2 - with children" route="t4" icon="bwi-collection-shared" variant="tree" [open]="true">
-              <bit-nav-item text="Level 3 - no children, no icon" route="t5" variant="tree"></bit-nav-item>
-              <bit-nav-group text="Level 3 - with children" route="t6" icon="bwi-collection-shared" variant="tree" [open]="true">
-                <bit-nav-item text="Level 4 - no children, no icon" route="t7" variant="tree"></bit-nav-item>
-              </bit-nav-group>
-            </bit-nav-group>
-            <bit-nav-group text="Level 2 - with children (empty)" route="t8" icon="bwi-collection-shared" variant="tree" [open]="true"></bit-nav-group>
-            <bit-nav-item text="Level 2 - no children" route="t9" icon="bwi-collection-shared" variant="tree"></bit-nav-item>
-          </bit-nav-group>
-          <bit-nav-item text="Level 1 - no children" route="t10" icon="bwi-collection-shared" variant="tree"></bit-nav-item>
-        </bit-nav-group>
-      </bit-side-nav>
-    `,
-  }),
-};
-
 export const Secondary: StoryObj<NavGroupComponent> = {
   render: (args) => ({
     props: args,
diff --git a/libs/components/src/navigation/nav-item.component.html b/libs/components/src/navigation/nav-item.component.html
index f86f7e2c6d7..15fcc74e1f9 100644
--- a/libs/components/src/navigation/nav-item.component.html
+++ b/libs/components/src/navigation/nav-item.component.html
@@ -1,113 +1,77 @@
-<ng-container
-  *ngIf="{
-    open: sideNavService.open$ | async,
-  } as data"
->
-  <div
-    *ngIf="data.open || icon"
-    class="tw-relative"
-    [ngClass]="[
-      showActiveStyles
-        ? 'tw-bg-background-alt4'
-        : 'tw-bg-background-alt3 hover:tw-bg-primary-300/60',
-      fvwStyles$ | async,
-    ]"
-  >
+<div class="tw-ps-2 tw-pe-2">
+  @let open = sideNavService.open$ | async;
+  @if (open || icon) {
     <div
-      [ngStyle]="{
-        'padding-left': data.open ? (variant === 'tree' ? 2.5 : 1) + treeDepth * 1.5 + 'rem' : '0',
-      }"
-      class="tw-relative tw-flex"
+      class="tw-relative tw-rounded-md tw-h-10"
+      [ngClass]="[
+        showActiveStyles
+          ? 'tw-bg-background-alt4'
+          : 'tw-bg-background-alt3 hover:tw-bg-hover-contrast',
+        fvwStyles$ | async,
+      ]"
     >
-      <div [ngClass]="[variant === 'tree' ? 'tw-py-1' : 'tw-py-2']">
-        <div
-          #slotStart
-          class="[&>*:focus-visible::before]:!tw-ring-text-alt2 [&>*:hover]:!tw-border-text-alt2 [&>*]:!tw-text-alt2"
-        >
-          <ng-content select="[slot=start]"></ng-content>
-        </div>
-        <!-- Default content for #slotStart (for consistent sizing) -->
-        <div
-          *ngIf="slotStart.childElementCount === 0"
-          [ngClass]="{
-            'tw-w-0': variant !== 'tree',
-          }"
-        >
+      <div class="tw-relative tw-flex tw-items-center tw-h-full">
+        <ng-container *ngIf="route; then isAnchor; else isButton"></ng-container>
+
+        <!-- Main content of `NavItem` -->
+        <ng-template #anchorAndButtonContent>
+          <div
+            [title]="text"
+            class="tw-truncate tw-gap-2 tw-items-center tw-font-bold"
+            [ngClass]="{ 'tw-text-center': !open, 'tw-flex': open }"
+          >
+            <i
+              class="!tw-m-0 tw-w-4 bwi bwi-fw tw-text-alt2 {{ icon }}"
+              [attr.aria-hidden]="open"
+              [attr.aria-label]="text"
+            ></i>
+            @if (open) {
+              <span>{{ text }}</span>
+            }
+          </div>
+        </ng-template>
+
+        <!-- Show if a value was passed to `this.to` -->
+        <ng-template #isAnchor>
+          <!-- The `data-fvw` attribute passes focus to `this.focusVisibleWithin$` -->
+          <!-- The following `class` field should match the `#isButton` class field below -->
+          <a
+            class="tw-w-full tw-px-3 tw-block tw-truncate tw-border-none tw-bg-transparent tw-text-start !tw-text-alt2 hover:tw-text-alt2 hover:tw-no-underline focus:tw-outline-none"
+            data-fvw
+            [routerLink]="route"
+            [relativeTo]="relativeTo"
+            [attr.aria-label]="ariaLabel || text"
+            routerLinkActive
+            [routerLinkActiveOptions]="routerLinkActiveOptions"
+            [ariaCurrentWhenActive]="'page'"
+            (isActiveChange)="setIsActive($event)"
+            (click)="mainContentClicked.emit()"
+          >
+            <ng-container *ngTemplateOutlet="anchorAndButtonContent"></ng-container>
+          </a>
+        </ng-template>
+
+        <!-- Show if `this.to` is falsy -->
+        <ng-template #isButton>
+          <!-- Class field should match `#isAnchor` class field above -->
           <button
             type="button"
-            class="tw-invisible"
-            [bitIconButton]="'bwi-angle-down'"
-            size="small"
-            aria-hidden="true"
-          ></button>
-        </div>
-      </div>
-
-      <ng-container *ngIf="route; then isAnchor; else isButton"></ng-container>
-
-      <!-- Main content of `NavItem` -->
-      <ng-template #anchorAndButtonContent>
-        <div
-          [title]="text"
-          class="tw-truncate"
-          [ngClass]="[
-            variant === 'tree' ? 'tw-py-1' : 'tw-py-2',
-            data.open ? 'tw-pe-4' : 'tw-text-center',
-          ]"
-        >
-          <i
-            class="bwi bwi-fw tw-text-alt2 tw-mx-1 {{ icon }}"
-            [attr.aria-hidden]="data.open"
-            [attr.aria-label]="text"
-          ></i
-          ><span
-            *ngIf="data.open"
-            [ngClass]="showActiveStyles ? 'tw-font-bold' : 'tw-font-semibold'"
-            >{{ text }}</span
+            class="tw-w-full tw-px-3 tw-truncate tw-border-none tw-bg-transparent tw-text-start !tw-text-alt2 hover:tw-text-alt2 hover:tw-no-underline focus:tw-outline-none"
+            data-fvw
+            (click)="mainContentClicked.emit()"
           >
-        </div>
-      </ng-template>
+            <ng-container *ngTemplateOutlet="anchorAndButtonContent"></ng-container>
+          </button>
+        </ng-template>
 
-      <!-- Show if a value was passed to `this.to` -->
-      <ng-template #isAnchor>
-        <!-- The `data-fvw` attribute passes focus to `this.focusVisibleWithin$` -->
-        <!-- The following `class` field should match the `#isButton` class field below -->
-        <a
-          class="tw-w-full tw-truncate tw-border-none tw-bg-transparent tw-p-0 tw-text-start !tw-text-alt2 hover:tw-text-alt2 hover:tw-no-underline focus:tw-outline-none"
-          data-fvw
-          [routerLink]="route"
-          [relativeTo]="relativeTo"
-          [attr.aria-label]="ariaLabel || text"
-          routerLinkActive
-          [routerLinkActiveOptions]="routerLinkActiveOptions"
-          [ariaCurrentWhenActive]="'page'"
-          (isActiveChange)="setIsActive($event)"
-          (click)="mainContentClicked.emit()"
-        >
-          <ng-container *ngTemplateOutlet="anchorAndButtonContent"></ng-container>
-        </a>
-      </ng-template>
-
-      <!-- Show if `this.to` is falsy -->
-      <ng-template #isButton>
-        <!-- Class field should match `#isAnchor` class field above -->
-        <button
-          type="button"
-          class="tw-w-full tw-truncate tw-border-none tw-bg-transparent tw-p-0 tw-text-start !tw-text-alt2 hover:tw-text-alt2 hover:tw-no-underline focus:tw-outline-none"
-          data-fvw
-          (click)="mainContentClicked.emit()"
-        >
-          <ng-container *ngTemplateOutlet="anchorAndButtonContent"></ng-container>
-        </button>
-      </ng-template>
-
-      <div
-        *ngIf="data.open"
-        class="tw-flex -tw-ms-3 tw-pe-4 tw-gap-1 [&>*:focus-visible::before]:!tw-ring-text-alt2 [&>*:hover]:!tw-border-text-alt2 [&>*]:tw-text-alt2 empty:tw-hidden"
-        [ngClass]="[variant === 'tree' ? 'tw-py-1' : 'tw-py-2']"
-      >
-        <ng-content select="[slot=end]"></ng-content>
+        @if (open) {
+          <div
+            class="tw-flex tw-items-center tw-pe-1.5 tw-gap-1 [&>*:focus-visible::before]:!tw-ring-text-alt2 [&>*:hover]:!tw-border-text-alt2 [&>*]:tw-text-alt2 empty:tw-hidden"
+          >
+            <ng-content select="[slot=end]"></ng-content>
+          </div>
+        }
       </div>
     </div>
-  </div>
-</ng-container>
+  }
+</div>
diff --git a/libs/components/src/navigation/nav-logo.component.html b/libs/components/src/navigation/nav-logo.component.html
index a6169315333..40dbe8189d6 100644
--- a/libs/components/src/navigation/nav-logo.component.html
+++ b/libs/components/src/navigation/nav-logo.component.html
@@ -1,23 +1,19 @@
-@if (sideNavService.open) {
-  <div class="tw-sticky tw-top-0 tw-z-50">
-    <a
-      [routerLink]="route"
-      class="tw-px-5 tw-pb-5 tw-pt-7 tw-block tw-bg-background-alt3 tw-outline-none focus-visible:tw-ring focus-visible:tw-ring-inset focus-visible:tw-ring-text-alt2"
-      [attr.aria-label]="label"
-      [title]="label"
-      routerLinkActive
-      [ariaCurrentWhenActive]="'page'"
-    >
-      <bit-icon [icon]="openIcon"></bit-icon>
-    </a>
-  </div>
-}
-@if (!sideNavService.open) {
-  <bit-nav-item
-    class="tw-block tw-pt-7"
-    [hideActiveStyles]="true"
-    [route]="route"
-    [icon]="closedIcon"
-    [text]="label"
-  ></bit-nav-item>
-}
+<div
+  [ngClass]="{
+    'tw-sticky tw-top-0 tw-z-50 tw-pb-2': sideNavService.open,
+    'tw-pb-5': !sideNavService.open,
+  }"
+  class="tw-px-2 tw-pt-5"
+>
+  <a
+    [routerLink]="route"
+    class="tw-p-3 tw-block tw-rounded-md tw-bg-background-alt3 tw-outline-none focus-visible:tw-ring focus-visible:tw-ring-inset focus-visible:tw-ring-text-alt2 hover:tw-bg-hover-contrast [&_path]:tw-fill-text-alt2"
+    [ngClass]="{ '[&_svg]:tw-w-[1.687rem]': !sideNavService.open }"
+    [attr.aria-label]="label"
+    [title]="label"
+    routerLinkActive
+    [ariaCurrentWhenActive]="'page'"
+  >
+    <bit-icon [icon]="sideNavService.open ? openIcon : closedIcon"></bit-icon>
+  </a>
+</div>
diff --git a/libs/components/src/navigation/nav-logo.component.ts b/libs/components/src/navigation/nav-logo.component.ts
index 724406eeed5..8c40ea0dc79 100644
--- a/libs/components/src/navigation/nav-logo.component.ts
+++ b/libs/components/src/navigation/nav-logo.component.ts
@@ -1,23 +1,23 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
-
+import { CommonModule } from "@angular/common";
 import { Component, Input } from "@angular/core";
 import { RouterLinkActive, RouterLink } from "@angular/router";
 
 import { Icon } from "../icon";
 import { BitIconComponent } from "../icon/icon.component";
+import { BitwardenShield } from "../icon/logos";
 
-import { NavItemComponent } from "./nav-item.component";
 import { SideNavService } from "./side-nav.service";
 
 @Component({
   selector: "bit-nav-logo",
   templateUrl: "./nav-logo.component.html",
-  imports: [RouterLinkActive, RouterLink, BitIconComponent, NavItemComponent],
+  imports: [CommonModule, RouterLinkActive, RouterLink, BitIconComponent],
 })
 export class NavLogoComponent {
   /** Icon that is displayed when the side nav is closed */
-  @Input() closedIcon = "bwi-shield";
+  @Input() closedIcon = BitwardenShield;
 
   /** Icon that is displayed when the side nav is open */
   @Input({ required: true }) openIcon: Icon;
diff --git a/libs/components/src/navigation/side-nav.component.html b/libs/components/src/navigation/side-nav.component.html
index 3b77c981be4..124daa776d0 100644
--- a/libs/components/src/navigation/side-nav.component.html
+++ b/libs/components/src/navigation/side-nav.component.html
@@ -14,6 +14,7 @@
         '--color-text-alt2': 'var(--color-text-main)',
         '--color-background-alt3': 'var(--color-secondary-100)',
         '--color-background-alt4': 'var(--color-secondary-300)',
+        '--color-hover-contrast': 'var(--color-hover-default)',
       }
     "
     [cdkTrapFocus]="data.isOverlay"
diff --git a/libs/components/src/stories/kitchen-sink/kitchen-sink.stories.ts b/libs/components/src/stories/kitchen-sink/kitchen-sink.stories.ts
index d318e1b5f0e..97a782b7302 100644
--- a/libs/components/src/stories/kitchen-sink/kitchen-sink.stories.ts
+++ b/libs/components/src/stories/kitchen-sink/kitchen-sink.stories.ts
@@ -81,16 +81,18 @@ export const Default: Story = {
       template: /* HTML */ `<bit-layout>
         <bit-side-nav>
           <bit-nav-group text="Password Managers" icon="bwi-collection-shared" [open]="true">
-            <bit-nav-group
-              text="Favorites"
-              icon="bwi-collection-shared"
-              variant="tree"
-              [open]="true"
-            >
-              <bit-nav-item text="Bitwarden" route="bitwarden"></bit-nav-item>
-              <bit-nav-divider></bit-nav-divider>
-            </bit-nav-group>
-            <bit-nav-item text="Virtual Scroll" route="virtual-scroll"></bit-nav-item>
+            <bit-nav-item text="Child A" route="a" icon="bwi-filter"></bit-nav-item>
+            <bit-nav-item text="Child B" route="b"></bit-nav-item>
+            <bit-nav-item
+              text="Virtual Scroll"
+              route="virtual-scroll"
+              icon="bwi-filter"
+            ></bit-nav-item>
+          </bit-nav-group>
+          <bit-nav-group text="Favorites" icon="bwi-filter">
+            <bit-nav-item text="Favorites Child A" icon="bwi-filter"></bit-nav-item>
+            <bit-nav-item text="Favorites Child B"></bit-nav-item>
+            <bit-nav-item text="Favorites Child C" icon="bwi-filter"></bit-nav-item>
           </bit-nav-group>
         </bit-side-nav>
         <router-outlet></router-outlet>
diff --git a/libs/components/src/tw-theme.css b/libs/components/src/tw-theme.css
index 078357491e5..eb5bb469202 100644
--- a/libs/components/src/tw-theme.css
+++ b/libs/components/src/tw-theme.css
@@ -13,7 +13,7 @@
   --color-background: 255 255 255;
   --color-background-alt: 243 246 249;
   --color-background-alt2: 23 92 219;
-  --color-background-alt3: 26 65 172;
+  --color-background-alt3: 22 55 146;
   --color-background-alt4: 2 15 102;
 
   --color-primary-100: 219 229 246;
@@ -56,6 +56,9 @@
   --color-text-alt2: 255 255 255;
   --color-text-code: 192 17 118;
 
+  --color-hover-default: rgb(26 65 172 / 0.1);
+  --color-hover-contrast: rgb(219 229 246 / 0.15);
+
   --color-marketing-logo: 23 93 220;
 
   --tw-ring-offset-color: #ffffff;
@@ -124,6 +127,9 @@
   --color-text-alt2: 255 255 255;
   --color-text-code: 255 143 208;
 
+  --color-hover-default: rgb(170 195 239 / 0.1);
+  --color-hover-contrast: rgb(26 39 78 / 0.15);
+
   --color-marketing-logo: 255 255 255;
 
   --tw-ring-offset-color: #1f242e;
diff --git a/libs/components/tailwind.config.base.js b/libs/components/tailwind.config.base.js
index c38515cf775..829c812a954 100644
--- a/libs/components/tailwind.config.base.js
+++ b/libs/components/tailwind.config.base.js
@@ -83,6 +83,10 @@ module.exports = {
         alt3: rgba("--color-background-alt3"),
         alt4: rgba("--color-background-alt4"),
       },
+      hover: {
+        default: "var(--color-hover-default)",
+        contrast: "var(--color-hover-contrast)",
+      },
       "marketing-logo": rgba("--color-marketing-logo"),
       illustration: {
         outline: rgba("--color-illustration-outline"),

From c7fc9b88fccc15b93d99f03c60444ab1c7e79204 Mon Sep 17 00:00:00 2001
From: Jason Ng <jng@bitwarden.com>
Date: Thu, 3 Jul 2025 17:35:50 -0400
Subject: [PATCH 062/239] [PM-23197] update cipherService to return decCiphers
 (#15433)

* update cipherService to return decCiphers, update input to use signal, refactor observable, update spec
---
 .../src/vault/services/cipher.service.ts      |  2 +-
 .../new-item-nudge.component.html             |  2 +-
 .../new-item-nudge.component.spec.ts          | 59 ++++++++++---------
 .../new-item-nudge.component.ts               | 53 ++++++++---------
 4 files changed, 57 insertions(+), 59 deletions(-)

diff --git a/libs/common/src/vault/services/cipher.service.ts b/libs/common/src/vault/services/cipher.service.ts
index b4f79b2467e..a1727fd7a1d 100644
--- a/libs/common/src/vault/services/cipher.service.ts
+++ b/libs/common/src/vault/services/cipher.service.ts
@@ -383,7 +383,7 @@ export class CipherService implements CipherServiceAbstraction {
     const decCiphers = await this.getDecryptedCiphers(userId);
     if (decCiphers != null && decCiphers.length !== 0) {
       await this.reindexCiphers(userId);
-      return await this.getDecryptedCiphers(userId);
+      return decCiphers;
     }
 
     const decrypted = await this.decryptCiphers(await this.getAll(userId), userId);
diff --git a/libs/vault/src/cipher-form/components/new-item-nudge/new-item-nudge.component.html b/libs/vault/src/cipher-form/components/new-item-nudge/new-item-nudge.component.html
index 5cd1246fd36..58dc181f826 100644
--- a/libs/vault/src/cipher-form/components/new-item-nudge/new-item-nudge.component.html
+++ b/libs/vault/src/cipher-form/components/new-item-nudge/new-item-nudge.component.html
@@ -1,4 +1,4 @@
-<ng-container *ngIf="showNewItemSpotlight">
+<ng-container *ngIf="showNewItemSpotlight$ | async">
   <bit-spotlight
     [title]="nudgeTitle"
     [subtitle]="nudgeBody"
diff --git a/libs/vault/src/cipher-form/components/new-item-nudge/new-item-nudge.component.spec.ts b/libs/vault/src/cipher-form/components/new-item-nudge/new-item-nudge.component.spec.ts
index 0cc23456b4c..b3c8172a7a3 100644
--- a/libs/vault/src/cipher-form/components/new-item-nudge/new-item-nudge.component.spec.ts
+++ b/libs/vault/src/cipher-form/components/new-item-nudge/new-item-nudge.component.spec.ts
@@ -1,27 +1,30 @@
 import { CommonModule } from "@angular/common";
+import { ComponentRef } from "@angular/core";
 import { ComponentFixture, TestBed } from "@angular/core/testing";
 import { mock, MockProxy } from "jest-mock-extended";
 import { of } from "rxjs";
 
 import { NudgesService, NudgeType } from "@bitwarden/angular/vault";
-import { AccountService, Account } from "@bitwarden/common/auth/abstractions/account.service";
+import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { UserId } from "@bitwarden/common/types/guid";
 import { CipherType } from "@bitwarden/sdk-internal";
 
+import { FakeAccountService, mockAccountServiceWith } from "../../../../../common/spec";
+
 import { NewItemNudgeComponent } from "./new-item-nudge.component";
 
 describe("NewItemNudgeComponent", () => {
   let component: NewItemNudgeComponent;
+  let componentRef: ComponentRef<NewItemNudgeComponent>;
   let fixture: ComponentFixture<NewItemNudgeComponent>;
 
   let i18nService: MockProxy<I18nService>;
-  let accountService: MockProxy<AccountService>;
   let nudgesService: MockProxy<NudgesService>;
+  const accountService: FakeAccountService = mockAccountServiceWith("test-user-id" as UserId);
 
   beforeEach(async () => {
     i18nService = mock<I18nService>({ t: (key: string) => key });
-    accountService = mock<AccountService>();
     nudgesService = mock<NudgesService>();
 
     await TestBed.configureTestingModule({
@@ -37,7 +40,8 @@ describe("NewItemNudgeComponent", () => {
   beforeEach(() => {
     fixture = TestBed.createComponent(NewItemNudgeComponent);
     component = fixture.componentInstance;
-    component.configType = null; // Set to null for initial state
+    componentRef = fixture.componentRef;
+    componentRef.setInput("configType", null); // Set a default type for testing
     fixture.detectChanges();
   });
 
@@ -46,13 +50,11 @@ describe("NewItemNudgeComponent", () => {
   });
 
   it("should set nudge title and body for CipherType.Login type", async () => {
-    component.configType = CipherType.Login;
-    accountService.activeAccount$ = of({ id: "test-user-id" as UserId } as Account);
-    jest.spyOn(component, "checkHasSpotlightDismissed").mockResolvedValue(true);
-
-    await component.ngOnInit();
-
-    expect(component.showNewItemSpotlight).toBe(true);
+    componentRef.setInput("configType", CipherType.Login);
+    fixture.detectChanges();
+    component.showNewItemSpotlight$.subscribe((value) => {
+      expect(value).toEqual(true);
+    });
     expect(component.nudgeTitle).toBe("newLoginNudgeTitle");
     expect(component.nudgeBody).toBe(
       "newLoginNudgeBodyOne <strong>newLoginNudgeBodyBold</strong> newLoginNudgeBodyTwo",
@@ -61,39 +63,38 @@ describe("NewItemNudgeComponent", () => {
   });
 
   it("should set nudge title and body for CipherType.Card type", async () => {
-    component.configType = CipherType.Card;
-    accountService.activeAccount$ = of({ id: "test-user-id" as UserId } as Account);
-    jest.spyOn(component, "checkHasSpotlightDismissed").mockResolvedValue(true);
-
-    await component.ngOnInit();
-
-    expect(component.showNewItemSpotlight).toBe(true);
+    componentRef.setInput("configType", CipherType.Card);
+    fixture.detectChanges();
+    component.showNewItemSpotlight$.subscribe((value) => {
+      expect(value).toEqual(true);
+    });
     expect(component.nudgeTitle).toBe("newCardNudgeTitle");
     expect(component.nudgeBody).toBe("newCardNudgeBody");
     expect(component.dismissalNudgeType).toBe(NudgeType.NewCardItemStatus);
   });
 
   it("should not show anything if spotlight has been dismissed", async () => {
-    component.configType = CipherType.Identity;
-    accountService.activeAccount$ = of({ id: "test-user-id" as UserId } as Account);
-    jest.spyOn(component, "checkHasSpotlightDismissed").mockResolvedValue(false);
-
-    await component.ngOnInit();
-
-    expect(component.showNewItemSpotlight).toBe(false);
+    componentRef.setInput("configType", CipherType.Identity);
+    fixture.detectChanges();
+    component.showNewItemSpotlight$.subscribe((value) => {
+      expect(value).toEqual(false);
+    });
     expect(component.dismissalNudgeType).toBe(NudgeType.NewIdentityItemStatus);
   });
 
   it("should set showNewItemSpotlight to false when user dismisses spotlight", async () => {
-    component.showNewItemSpotlight = true;
+    component.showNewItemSpotlight$ = of(true);
     component.dismissalNudgeType = NudgeType.NewLoginItemStatus;
-    component.activeUserId = "test-user-id" as UserId;
+    const activeUserId = "test-user-id" as UserId;
+    component.activeUserId$ = of(activeUserId);
 
     const dismissSpy = jest.spyOn(nudgesService, "dismissNudge").mockResolvedValue();
 
     await component.dismissNewItemSpotlight();
 
-    expect(component.showNewItemSpotlight).toBe(false);
-    expect(dismissSpy).toHaveBeenCalledWith(NudgeType.NewLoginItemStatus, component.activeUserId);
+    component.showNewItemSpotlight$.subscribe((value) => {
+      expect(value).toEqual(false);
+    });
+    expect(dismissSpy).toHaveBeenCalledWith(NudgeType.NewLoginItemStatus, activeUserId);
   });
 });
diff --git a/libs/vault/src/cipher-form/components/new-item-nudge/new-item-nudge.component.ts b/libs/vault/src/cipher-form/components/new-item-nudge/new-item-nudge.component.ts
index 79defc271cf..eccf8f65715 100644
--- a/libs/vault/src/cipher-form/components/new-item-nudge/new-item-nudge.component.ts
+++ b/libs/vault/src/cipher-form/components/new-item-nudge/new-item-nudge.component.ts
@@ -1,6 +1,7 @@
-import { NgIf } from "@angular/common";
-import { Component, Input, OnInit } from "@angular/core";
-import { firstValueFrom } from "rxjs";
+import { AsyncPipe, NgIf } from "@angular/common";
+import { Component, input } from "@angular/core";
+import { toObservable } from "@angular/core/rxjs-interop";
+import { combineLatest, firstValueFrom, map, of, switchMap } from "rxjs";
 
 import { NudgesService, NudgeType } from "@bitwarden/angular/vault";
 import { SpotlightComponent } from "@bitwarden/angular/vault/components/spotlight/spotlight.component";
@@ -13,12 +14,17 @@ import { CipherType } from "@bitwarden/sdk-internal";
 @Component({
   selector: "vault-new-item-nudge",
   templateUrl: "./new-item-nudge.component.html",
-  imports: [NgIf, SpotlightComponent],
+  imports: [NgIf, SpotlightComponent, AsyncPipe],
 })
-export class NewItemNudgeComponent implements OnInit {
-  @Input({ required: true }) configType: CipherType | null = null;
-  activeUserId: UserId | null = null;
-  showNewItemSpotlight: boolean = false;
+export class NewItemNudgeComponent {
+  configType = input.required<CipherType | null>();
+  activeUserId$ = this.accountService.activeAccount$.pipe(getUserId);
+  showNewItemSpotlight$ = combineLatest([
+    this.activeUserId$,
+    toObservable(this.configType).pipe(map((cipherType) => this.mapToNudgeType(cipherType))),
+  ]).pipe(
+    switchMap(([userId, nudgeType]) => this.nudgesService.showNudgeSpotlight$(nudgeType, userId)),
+  );
   nudgeTitle: string = "";
   nudgeBody: string = "";
   dismissalNudgeType: NudgeType | null = null;
@@ -29,10 +35,8 @@ export class NewItemNudgeComponent implements OnInit {
     private nudgesService: NudgesService,
   ) {}
 
-  async ngOnInit() {
-    this.activeUserId = await firstValueFrom(getUserId(this.accountService.activeAccount$));
-
-    switch (this.configType) {
+  mapToNudgeType(cipherType: CipherType | null): NudgeType {
+    switch (cipherType) {
       case CipherType.Login: {
         const nudgeBodyOne = this.i18nService.t("newLoginNudgeBodyOne");
         const nudgeBodyBold = this.i18nService.t("newLoginNudgeBodyBold");
@@ -40,25 +44,25 @@ export class NewItemNudgeComponent implements OnInit {
         this.dismissalNudgeType = NudgeType.NewLoginItemStatus;
         this.nudgeTitle = this.i18nService.t("newLoginNudgeTitle");
         this.nudgeBody = `${nudgeBodyOne} <strong>${nudgeBodyBold}</strong> ${nudgeBodyTwo}`;
-        break;
+        return NudgeType.NewLoginItemStatus;
       }
       case CipherType.Card:
         this.dismissalNudgeType = NudgeType.NewCardItemStatus;
         this.nudgeTitle = this.i18nService.t("newCardNudgeTitle");
         this.nudgeBody = this.i18nService.t("newCardNudgeBody");
-        break;
+        return NudgeType.NewCardItemStatus;
 
       case CipherType.Identity:
         this.dismissalNudgeType = NudgeType.NewIdentityItemStatus;
         this.nudgeTitle = this.i18nService.t("newIdentityNudgeTitle");
         this.nudgeBody = this.i18nService.t("newIdentityNudgeBody");
-        break;
+        return NudgeType.NewIdentityItemStatus;
 
       case CipherType.SecureNote:
         this.dismissalNudgeType = NudgeType.NewNoteItemStatus;
         this.nudgeTitle = this.i18nService.t("newNoteNudgeTitle");
         this.nudgeBody = this.i18nService.t("newNoteNudgeBody");
-        break;
+        return NudgeType.NewNoteItemStatus;
 
       case CipherType.SshKey: {
         const sshPartOne = this.i18nService.t("newSshNudgeBodyOne");
@@ -67,25 +71,18 @@ export class NewItemNudgeComponent implements OnInit {
         this.dismissalNudgeType = NudgeType.NewSshItemStatus;
         this.nudgeTitle = this.i18nService.t("newSshNudgeTitle");
         this.nudgeBody = `${sshPartOne} <a href="https://bitwarden.com/help/ssh-agent" class="tw-text-primary-600 tw-font-bold" target="_blank">${sshPartTwo}</a>`;
-        break;
+        return NudgeType.NewSshItemStatus;
       }
       default:
         throw new Error("Unsupported cipher type");
     }
-    this.showNewItemSpotlight = await this.checkHasSpotlightDismissed(
-      this.dismissalNudgeType as NudgeType,
-      this.activeUserId,
-    );
   }
 
   async dismissNewItemSpotlight() {
-    if (this.dismissalNudgeType && this.activeUserId) {
-      await this.nudgesService.dismissNudge(this.dismissalNudgeType, this.activeUserId as UserId);
-      this.showNewItemSpotlight = false;
+    const activeUserId = await firstValueFrom(this.activeUserId$);
+    if (this.dismissalNudgeType && activeUserId) {
+      await this.nudgesService.dismissNudge(this.dismissalNudgeType, activeUserId as UserId);
+      this.showNewItemSpotlight$ = of(false);
     }
   }
-
-  async checkHasSpotlightDismissed(nudgeType: NudgeType, userId: UserId): Promise<boolean> {
-    return await firstValueFrom(this.nudgesService.showNudgeSpotlight$(nudgeType, userId));
-  }
 }

From 03a7530f8b06613ea2faf65c41d40508164d3cc5 Mon Sep 17 00:00:00 2001
From: Bernd Schoolmann <mail@quexten.com>
Date: Mon, 7 Jul 2025 13:27:50 +0200
Subject: [PATCH 063/239] Remove legacy key support form tools code (#15349)

---
 .../importer/src/importers/bitwarden/bitwarden-json-importer.ts | 2 +-
 libs/importer/src/services/import.service.ts                    | 2 +-
 .../src/services/individual-vault-export.service.ts             | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/libs/importer/src/importers/bitwarden/bitwarden-json-importer.ts b/libs/importer/src/importers/bitwarden/bitwarden-json-importer.ts
index 4291f7b1ab2..dfc1c9f58e9 100644
--- a/libs/importer/src/importers/bitwarden/bitwarden-json-importer.ts
+++ b/libs/importer/src/importers/bitwarden/bitwarden-json-importer.ts
@@ -71,7 +71,7 @@ export class BitwardenJsonImporter extends BaseImporter implements Importer {
         this.organizationId,
       );
       if (keyForDecryption == null) {
-        keyForDecryption = await this.keyService.getUserKeyWithLegacySupport();
+        keyForDecryption = await this.keyService.getUserKey();
       }
       const encKeyValidation = new EncString(results.encKeyValidation_DO_NOT_EDIT);
       const encKeyValidationDecrypt = await this.encryptService.decryptString(
diff --git a/libs/importer/src/services/import.service.ts b/libs/importer/src/services/import.service.ts
index 2b9d2e490f7..c9cb325d10b 100644
--- a/libs/importer/src/services/import.service.ts
+++ b/libs/importer/src/services/import.service.ts
@@ -365,7 +365,7 @@ export class ImportService implements ImportServiceAbstraction {
       const c = await this.cipherService.encrypt(importResult.ciphers[i], activeUserId);
       request.ciphers.push(new CipherRequest(c));
     }
-    const userKey = await this.keyService.getUserKeyWithLegacySupport(activeUserId);
+    const userKey = await this.keyService.getUserKey(activeUserId);
     if (importResult.folders != null) {
       for (let i = 0; i < importResult.folders.length; i++) {
         const f = await this.folderService.encrypt(importResult.folders[i], userKey);
diff --git a/libs/tools/export/vault-export/vault-export-core/src/services/individual-vault-export.service.ts b/libs/tools/export/vault-export/vault-export-core/src/services/individual-vault-export.service.ts
index 214b2d832a4..4d4ef217c66 100644
--- a/libs/tools/export/vault-export/vault-export-core/src/services/individual-vault-export.service.ts
+++ b/libs/tools/export/vault-export/vault-export-core/src/services/individual-vault-export.service.ts
@@ -225,7 +225,7 @@ export class IndividualVaultExportService
 
     await Promise.all(promises);
 
-    const userKey = await this.keyService.getUserKeyWithLegacySupport(activeUserId);
+    const userKey = await this.keyService.getUserKey(activeUserId);
     const encKeyValidation = await this.encryptService.encryptString(Utils.newGuid(), userKey);
 
     const jsonDoc: BitwardenEncryptedIndividualJsonExport = {

From 2e03b8cbac1876c3e519123ae57481c6916b3b1c Mon Sep 17 00:00:00 2001
From: Nick Krantz <125900171+nick-livefront@users.noreply.github.com>
Date: Mon, 7 Jul 2025 08:56:31 -0500
Subject: [PATCH 064/239] [PM-22180] Setup Extension Videos (#15419)

* remove placeholder image

* add videos for setup extension

* add support for mobile viewports

* add mobile/responsiveness for setup extension page

* add videos from `assets.bitwarden.com`

* align with figma for borders and shadow

* make text responsive for setup headings

* remove period

* add tests

* add tests for video sequence

* force font weight on `h2`

* add 8px to bottom margin of video container
---
 .../add-extension-videos.component.html       |  82 +++++++++
 .../add-extension-videos.component.spec.ts    | 170 ++++++++++++++++++
 .../add-extension-videos.component.ts         | 146 +++++++++++++++
 .../setup-extension.component.html            |  17 +-
 .../setup-extension.component.spec.ts         |   1 +
 .../setup-extension.component.ts              |  42 ++++-
 .../setup-extension-placeholder.png           | Bin 788300 -> 0 bytes
 apps/web/src/locales/en/messages.json         |   6 +-
 apps/web/webpack.config.js                    |   3 +
 9 files changed, 450 insertions(+), 17 deletions(-)
 create mode 100644 apps/web/src/app/vault/components/setup-extension/add-extension-videos.component.html
 create mode 100644 apps/web/src/app/vault/components/setup-extension/add-extension-videos.component.spec.ts
 create mode 100644 apps/web/src/app/vault/components/setup-extension/add-extension-videos.component.ts
 delete mode 100644 apps/web/src/images/setup-extension/setup-extension-placeholder.png

diff --git a/apps/web/src/app/vault/components/setup-extension/add-extension-videos.component.html b/apps/web/src/app/vault/components/setup-extension/add-extension-videos.component.html
new file mode 100644
index 00000000000..3764f7d828f
--- /dev/null
+++ b/apps/web/src/app/vault/components/setup-extension/add-extension-videos.component.html
@@ -0,0 +1,82 @@
+<ng-template #newLoginItem>
+  <video
+    #video
+    muted
+    [ngClass]="{ 'tw-opacity-0': !allVideosLoaded }"
+    [attr.aria-hidden]="!allVideosLoaded"
+    class="tw-block tw-max-w-full tw-shadow-md tw-rounded-lg"
+    (loadeddata)="onVideoLoad()"
+    src="https://assets.bitwarden.com/extension-animations/new-login-item.mp4"
+    appDarkImgSrc="https://assets.bitwarden.com/extension-animations/new-login-item-dark.mp4"
+    aria-hidden
+  ></video>
+</ng-template>
+
+<ng-template #browserExtensionEasyAccess>
+  <video
+    #video
+    muted
+    [ngClass]="{ 'tw-opacity-0': !allVideosLoaded }"
+    [attr.aria-hidden]="!allVideosLoaded"
+    class="tw-block tw-max-w-full tw-shadow-md tw-rounded-lg"
+    (loadeddata)="onVideoLoad()"
+    src="https://assets.bitwarden.com/extension-animations/browser-extension-easy-access.mp4"
+    appDarkImgSrc="https://assets.bitwarden.com/extension-animations/browser-extension-easy-access-dark.mp4"
+    aria-hidden
+  ></video>
+</ng-template>
+
+<ng-template #onboardingAutofill>
+  <video
+    #video
+    muted
+    [ngClass]="{ 'tw-opacity-0': !allVideosLoaded }"
+    [attr.aria-hidden]="!allVideosLoaded"
+    class="tw-block tw-max-w-full tw-shadow-md tw-rounded-lg"
+    (loadeddata)="onVideoLoad()"
+    src="https://assets.bitwarden.com/extension-animations/onboarding-autofill.mp4"
+    appDarkImgSrc="https://assets.bitwarden.com/extension-animations/onboarding-autofill-dark.mp4"
+    aria-hidden
+  ></video>
+</ng-template>
+
+<!--
+  On desktop, videos are shown in a 1 row, 3 column grid.
+  Below tablet viewports, videos are shown one at a time. The videos are absolute positioned, except the first.
+  The first video is relatively positioned to force the layout and spacing of the videos.
+-->
+<div
+  class="tw-mx-auto tw-w-[15rem] tw-mb-8 tw-relative md:tw-grid md:tw-gap-10 md:tw-w-auto md:tw-grid-rows-1 md:tw-grid-cols-3 md:tw-justify-center md:tw-justify-items-center"
+  [attr.aria-label]="'setupExtensionContentAlt' | i18n"
+>
+  <div class="tw-relative tw-w-[15rem] tw-max-w-full tw-aspect-[0.807]">
+    <div
+      *ngIf="!allVideosLoaded"
+      class="tw-animate-pulse tw-bg-secondary-300 tw-size-full tw-absolute tw-left-0 tw-top-0 tw-rounded-lg"
+      data-testid="video-pulse"
+    ></div>
+    <ng-container *ngTemplateOutlet="newLoginItem"></ng-container>
+  </div>
+
+  <div
+    class="tw-absolute tw-left-0 tw-top-0 tw-opacity-0 md:tw-opacity-100 md:tw-relative tw-w-[15rem] tw-max-w-full tw-aspect-[0.807]"
+  >
+    <div
+      *ngIf="!allVideosLoaded"
+      class="tw-animate-pulse tw-bg-secondary-300 tw-size-full tw-absolute tw-left-0 tw-top-0 tw-rounded-lg"
+      data-testid="video-pulse"
+    ></div>
+    <ng-container *ngTemplateOutlet="browserExtensionEasyAccess"></ng-container>
+  </div>
+
+  <div
+    class="tw-absolute tw-left-0 tw-top-0 tw-opacity-0 md:tw-opacity-100 md:tw-relative tw-w-[15rem] tw-max-w-full tw-aspect-[0.807]"
+  >
+    <div
+      *ngIf="!allVideosLoaded"
+      class="tw-animate-pulse tw-bg-secondary-300 tw-size-full tw-absolute tw-left-0 tw-top-0 tw-rounded-lg"
+      data-testid="video-pulse"
+    ></div>
+    <ng-container *ngTemplateOutlet="onboardingAutofill"></ng-container>
+  </div>
+</div>
diff --git a/apps/web/src/app/vault/components/setup-extension/add-extension-videos.component.spec.ts b/apps/web/src/app/vault/components/setup-extension/add-extension-videos.component.spec.ts
new file mode 100644
index 00000000000..9f39a3edcac
--- /dev/null
+++ b/apps/web/src/app/vault/components/setup-extension/add-extension-videos.component.spec.ts
@@ -0,0 +1,170 @@
+import { ComponentFixture, fakeAsync, TestBed, tick } from "@angular/core/testing";
+import { By } from "@angular/platform-browser";
+import { provideNoopAnimations } from "@angular/platform-browser/animations";
+import { RouterModule } from "@angular/router";
+
+import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+
+import { AddExtensionVideosComponent } from "./add-extension-videos.component";
+
+describe("AddExtensionVideosComponent", () => {
+  let fixture: ComponentFixture<AddExtensionVideosComponent>;
+  let component: AddExtensionVideosComponent;
+
+  // Mock HTMLMediaElement load to stop the video file from being loaded
+  Object.defineProperty(HTMLMediaElement.prototype, "load", {
+    value: jest.fn(),
+    writable: true,
+  });
+
+  const play = jest.fn(() => Promise.resolve());
+  HTMLMediaElement.prototype.play = play;
+
+  beforeEach(async () => {
+    window.matchMedia = jest.fn().mockReturnValue(false);
+    play.mockClear();
+
+    await TestBed.configureTestingModule({
+      imports: [AddExtensionVideosComponent, RouterModule.forRoot([])],
+      providers: [
+        provideNoopAnimations(),
+        { provide: I18nService, useValue: { t: (key: string) => key } },
+      ],
+    }).compileComponents();
+
+    fixture = TestBed.createComponent(AddExtensionVideosComponent);
+    component = fixture.componentInstance;
+    fixture.detectChanges();
+  });
+
+  describe("loading pulse", () => {
+    it("shows loading spinner when all videos are not loaded", () => {
+      const loadingSpinners = fixture.debugElement.queryAll(By.css("[data-testid='video-pulse']"));
+      expect(loadingSpinners.length).toBe(3);
+    });
+
+    it("shows all pulses until all videos are loaded", () => {
+      let loadingSpinners = fixture.debugElement.queryAll(By.css("[data-testid='video-pulse']"));
+      expect(loadingSpinners.length).toBe(3);
+
+      // Simulate two video loaded
+      component["videoElements"].get(0)?.nativeElement.dispatchEvent(new Event("loadeddata"));
+      component["videoElements"].get(1)?.nativeElement.dispatchEvent(new Event("loadeddata"));
+
+      loadingSpinners = fixture.debugElement.queryAll(By.css("[data-testid='video-pulse']"));
+
+      expect(component["numberOfLoadedVideos"]).toBe(2);
+      expect(loadingSpinners.length).toBe(3);
+    });
+  });
+
+  describe("window resizing", () => {
+    beforeEach(() => {
+      component["numberOfLoadedVideos"] = 3;
+      fixture.detectChanges();
+    });
+
+    it("shows all videos when window is resized to desktop viewport", fakeAsync(() => {
+      component["variant"] = "mobile";
+      Object.defineProperty(component["document"].documentElement, "clientWidth", {
+        configurable: true,
+        value: 1000,
+      });
+
+      window.dispatchEvent(new Event("resize"));
+
+      fixture.detectChanges();
+      tick(50);
+
+      expect(
+        Array.from(component["videoElements"]).every(
+          (video) => video.nativeElement.parentElement?.style.opacity === "1",
+        ),
+      ).toBe(true);
+    }));
+
+    it("shows only the playing video when window is resized to mobile viewport", fakeAsync(() => {
+      component["variant"] = "desktop";
+      // readonly property needs redefining
+      Object.defineProperty(component["document"].documentElement, "clientWidth", {
+        value: 500,
+      });
+
+      const video1 = component["videoElements"].get(1);
+      Object.defineProperty(video1!.nativeElement, "paused", {
+        value: false,
+      });
+
+      window.dispatchEvent(new Event("resize"));
+
+      fixture.detectChanges();
+      tick(50);
+
+      expect(component["videoElements"].get(0)?.nativeElement.parentElement?.style.opacity).toBe(
+        "0",
+      );
+      expect(component["videoElements"].get(1)?.nativeElement.parentElement?.style.opacity).toBe(
+        "1",
+      );
+      expect(component["videoElements"].get(2)?.nativeElement.parentElement?.style.opacity).toBe(
+        "0",
+      );
+    }));
+  });
+
+  describe("video sequence", () => {
+    let firstVideo: HTMLVideoElement;
+    let secondVideo: HTMLVideoElement;
+    let thirdVideo: HTMLVideoElement;
+
+    beforeEach(() => {
+      component["numberOfLoadedVideos"] = 2;
+      component["onVideoLoad"]();
+
+      firstVideo = component["videoElements"].get(0)!.nativeElement;
+      secondVideo = component["videoElements"].get(1)!.nativeElement;
+      thirdVideo = component["videoElements"].get(2)!.nativeElement;
+    });
+
+    it("starts the video sequence when all videos are loaded", fakeAsync(() => {
+      tick();
+
+      expect(firstVideo.play).toHaveBeenCalled();
+    }));
+
+    it("plays videos in sequence", fakeAsync(() => {
+      tick(); // let first video play
+
+      play.mockClear();
+      firstVideo.onended!(new Event("ended")); // trigger next video
+
+      tick();
+
+      expect(secondVideo.play).toHaveBeenCalledTimes(1);
+
+      play.mockClear();
+      secondVideo.onended!(new Event("ended")); // trigger next video
+
+      tick();
+
+      expect(thirdVideo.play).toHaveBeenCalledTimes(1);
+    }));
+
+    it("doesn't play videos again when the user prefers no motion", fakeAsync(() => {
+      component["prefersReducedMotion"] = true;
+
+      tick();
+      firstVideo.onended!(new Event("ended"));
+      tick();
+      secondVideo.onended!(new Event("ended"));
+      tick();
+
+      play.mockClear();
+
+      thirdVideo.onended!(new Event("ended")); // trigger first video again
+
+      tick();
+      expect(play).toHaveBeenCalledTimes(0);
+    }));
+  });
+});
diff --git a/apps/web/src/app/vault/components/setup-extension/add-extension-videos.component.ts b/apps/web/src/app/vault/components/setup-extension/add-extension-videos.component.ts
new file mode 100644
index 00000000000..2420414fc88
--- /dev/null
+++ b/apps/web/src/app/vault/components/setup-extension/add-extension-videos.component.ts
@@ -0,0 +1,146 @@
+import { CommonModule, DOCUMENT } from "@angular/common";
+import { Component, ViewChildren, QueryList, ElementRef, inject } from "@angular/core";
+import { takeUntilDestroyed } from "@angular/core/rxjs-interop";
+import { debounceTime, fromEvent } from "rxjs";
+
+import { JslibModule } from "@bitwarden/angular/jslib.module";
+
+@Component({
+  selector: "vault-add-extension-videos",
+  templateUrl: "./add-extension-videos.component.html",
+  imports: [CommonModule, JslibModule],
+})
+export class AddExtensionVideosComponent {
+  @ViewChildren("video", { read: ElementRef }) protected videoElements!: QueryList<
+    ElementRef<HTMLVideoElement>
+  >;
+
+  private document = inject(DOCUMENT);
+
+  /** Current viewport size */
+  protected variant: "mobile" | "desktop" = "desktop";
+
+  /** Number of videos that have loaded and are ready to play */
+  protected numberOfLoadedVideos = 0;
+
+  /** True when the user prefers reduced motion */
+  protected prefersReducedMotion = window.matchMedia("(prefers-reduced-motion: reduce)").matches;
+
+  /** Returns true when all videos are loaded */
+  get allVideosLoaded(): boolean {
+    return this.numberOfLoadedVideos >= 3;
+  }
+
+  constructor() {
+    fromEvent(window, "resize")
+      .pipe(takeUntilDestroyed(), debounceTime(25))
+      .subscribe(() => this.onResize());
+  }
+
+  /** Resets the video states based on the viewport width changes */
+  onResize(): void {
+    const oldVariant = this.variant;
+    this.variant = this.document.documentElement.clientWidth < 768 ? "mobile" : "desktop";
+
+    // When the viewport changes from desktop to mobile, hide all videos except the one that is playing.
+    if (this.variant !== oldVariant && this.variant === "mobile") {
+      this.videoElements.forEach((video) => {
+        if (video.nativeElement.paused) {
+          this.hideElement(video.nativeElement.parentElement!);
+        } else {
+          this.showElement(video.nativeElement.parentElement!);
+        }
+      });
+    }
+
+    // When the viewport changes from mobile to desktop, show all videos.
+    if (this.variant !== oldVariant && this.variant === "desktop") {
+      this.videoElements.forEach((video) => {
+        this.showElement(video.nativeElement.parentElement!);
+      });
+    }
+  }
+
+  /**
+   * Increment the number of loaded videos.
+   * When all videos are loaded, start the first one.
+   */
+  protected onVideoLoad() {
+    this.numberOfLoadedVideos = this.numberOfLoadedVideos + 1;
+
+    if (this.allVideosLoaded) {
+      void this.startVideoSequence(0);
+    }
+  }
+
+  /** Recursive method to start the video sequence. */
+  private async startVideoSequence(i: number): Promise<void> {
+    let index = i;
+    const endOfVideos = index >= this.videoElements.length;
+
+    // When the user prefers reduced motion, don't play the videos more than once
+    if (endOfVideos && this.prefersReducedMotion) {
+      return;
+    }
+
+    // When the last of the videos has played, loop back to the start
+    if (endOfVideos) {
+      this.videoElements.forEach((video) => {
+        // Reset all videos to the start
+        video.nativeElement.currentTime = 0;
+      });
+
+      // Loop back to the first video
+      index = 0;
+    }
+
+    const video = this.videoElements.toArray()[index].nativeElement;
+    video.onended = () => {
+      void this.startVideoSequence(index + 1);
+    };
+
+    this.mobileTransitionIn(index);
+
+    // Set muted via JavaScript, browsers are respecting autoplay consistently over just the  HTML attribute
+    video.muted = true;
+    await video.play();
+  }
+
+  /** For mobile viewports, fades the current video out and the next video in. */
+  private mobileTransitionIn(index: number): void {
+    // When the viewport is above the tablet breakpoint, all videos are shown at once.
+    // No transition is needed.
+    if (this.isAboveTabletBreakpoint()) {
+      return;
+    }
+
+    const currentParent = this.videoElements.toArray()[index].nativeElement.parentElement!;
+    const previousIndex = index === 0 ? this.videoElements.length - 1 : index - 1;
+
+    const previousParent = this.videoElements.toArray()[previousIndex].nativeElement.parentElement!;
+
+    // Fade out the previous video
+    this.hideElement(previousParent, true);
+
+    // Fade in the current video
+    this.showElement(currentParent, true);
+  }
+
+  /** Returns true when the viewport width is 768px or above. */
+  private isAboveTabletBreakpoint(): boolean {
+    const width = this.document.documentElement.clientWidth;
+    return width >= 768;
+  }
+
+  /** Visually hides the given element. */
+  private hideElement(element: HTMLElement, transition = false): void {
+    element.style.transition = transition ? "opacity 0.5s linear" : "";
+    element.style.opacity = "0";
+  }
+
+  /** Visually shows the given element. */
+  private showElement(element: HTMLElement, transition = false): void {
+    element.style.transition = transition ? "opacity 0.5s linear" : "";
+    element.style.opacity = "1";
+  }
+}
diff --git a/apps/web/src/app/vault/components/setup-extension/setup-extension.component.html b/apps/web/src/app/vault/components/setup-extension/setup-extension.component.html
index fc2b1bc60cb..3b9ec19fd34 100644
--- a/apps/web/src/app/vault/components/setup-extension/setup-extension.component.html
+++ b/apps/web/src/app/vault/components/setup-extension/setup-extension.component.html
@@ -6,16 +6,13 @@
 ></i>
 
 <section *ngIf="state === SetupExtensionState.NeedsExtension" class="tw-text-center tw-mt-4">
-  <h1 bitTypography="h2">{{ "setupExtensionPageTitle" | i18n }}</h1>
-  <h2 bitTypography="body1">{{ "setupExtensionPageDescription" | i18n }}</h2>
-  <div class="tw-mb-6">
-    <!-- Placeholder - will be removed in following tickets -->
-    <img
-      class="tw-max-w-3xl"
-      [alt]="'setupExtensionContentAlt' | i18n"
-      src="/images/setup-extension/setup-extension-placeholder.png"
-    />
-  </div>
+  <h1 class="tw-text-xl tw-font-semibold tw-text-main sm:tw-text-2xl">
+    {{ "setupExtensionPageTitle" | i18n }}
+  </h1>
+  <h2 class="tw-text-sm tw-text-main tw-mb-6 tw-font-normal sm:tw-text-base">
+    {{ "setupExtensionPageDescription" | i18n }}
+  </h2>
+  <vault-add-extension-videos></vault-add-extension-videos>
   <div class="tw-flex tw-flex-col tw-gap-4 tw-items-center">
     <a
       bitButton
diff --git a/apps/web/src/app/vault/components/setup-extension/setup-extension.component.spec.ts b/apps/web/src/app/vault/components/setup-extension/setup-extension.component.spec.ts
index 304aaafab9e..752e2c8d4a6 100644
--- a/apps/web/src/app/vault/components/setup-extension/setup-extension.component.spec.ts
+++ b/apps/web/src/app/vault/components/setup-extension/setup-extension.component.spec.ts
@@ -27,6 +27,7 @@ describe("SetupExtensionComponent", () => {
     navigate.mockClear();
     openExtension.mockClear();
     getFeatureFlag.mockClear().mockResolvedValue(true);
+    window.matchMedia = jest.fn().mockReturnValue(false);
 
     await TestBed.configureTestingModule({
       imports: [SetupExtensionComponent, RouterModule.forRoot([])],
diff --git a/apps/web/src/app/vault/components/setup-extension/setup-extension.component.ts b/apps/web/src/app/vault/components/setup-extension/setup-extension.component.ts
index 839572f3a30..9ee8e189627 100644
--- a/apps/web/src/app/vault/components/setup-extension/setup-extension.component.ts
+++ b/apps/web/src/app/vault/components/setup-extension/setup-extension.component.ts
@@ -1,5 +1,5 @@
-import { NgIf } from "@angular/common";
-import { Component, DestroyRef, inject, OnInit } from "@angular/core";
+import { DOCUMENT, NgIf } from "@angular/common";
+import { Component, DestroyRef, inject, OnDestroy, OnInit } from "@angular/core";
 import { takeUntilDestroyed } from "@angular/core/rxjs-interop";
 import { Router, RouterModule } from "@angular/router";
 import { pairwise, startWith } from "rxjs";
@@ -23,6 +23,7 @@ import { VaultIcons } from "@bitwarden/vault";
 import { WebBrowserInteractionService } from "../../services/web-browser-interaction.service";
 
 import { AddExtensionLaterDialogComponent } from "./add-extension-later-dialog.component";
+import { AddExtensionVideosComponent } from "./add-extension-videos.component";
 
 const SetupExtensionState = {
   Loading: "loading",
@@ -35,15 +36,24 @@ type SetupExtensionState = UnionOfValues<typeof SetupExtensionState>;
 @Component({
   selector: "vault-setup-extension",
   templateUrl: "./setup-extension.component.html",
-  imports: [NgIf, JslibModule, ButtonComponent, LinkModule, IconModule, RouterModule],
+  imports: [
+    NgIf,
+    JslibModule,
+    ButtonComponent,
+    LinkModule,
+    IconModule,
+    RouterModule,
+    AddExtensionVideosComponent,
+  ],
 })
-export class SetupExtensionComponent implements OnInit {
+export class SetupExtensionComponent implements OnInit, OnDestroy {
   private webBrowserExtensionInteractionService = inject(WebBrowserInteractionService);
   private configService = inject(ConfigService);
   private router = inject(Router);
   private destroyRef = inject(DestroyRef);
   private platformUtilsService = inject(PlatformUtilsService);
   private dialogService = inject(DialogService);
+  private document = inject(DOCUMENT);
 
   protected SetupExtensionState = SetupExtensionState;
   protected PartyIcon = VaultIcons.Party;
@@ -56,8 +66,21 @@ export class SetupExtensionComponent implements OnInit {
 
   /** Reference to the add it later dialog */
   protected dialogRef: DialogRef | null = null;
+  private viewportContent: string | null = null;
 
   async ngOnInit() {
+    // It is not be uncommon for users to hit this page from smaller viewports.
+    // There are global styles that set a min-width for the page which cause it to render poorly.
+    // Remove them here.
+    // https://github.com/bitwarden/clients/blob/main/apps/web/src/scss/base.scss#L6
+    this.document.body.style.minWidth = "auto";
+
+    const viewportMeta = this.document.querySelector('meta[name="viewport"]');
+
+    // Save the current viewport content to reset it when the component is destroyed
+    this.viewportContent = viewportMeta?.getAttribute("content") ?? null;
+    viewportMeta?.setAttribute("content", "width=device-width, initial-scale=1.0");
+
     await this.conditionallyRedirectUser();
 
     this.webStoreUrl = getWebStoreUrl(this.platformUtilsService.getDevice());
@@ -83,6 +106,17 @@ export class SetupExtensionComponent implements OnInit {
       });
   }
 
+  ngOnDestroy(): void {
+    // Reset the body min-width when the component is destroyed
+    this.document.body.style.minWidth = "";
+
+    if (this.viewportContent !== null) {
+      this.document
+        .querySelector('meta[name="viewport"]')
+        ?.setAttribute("content", this.viewportContent);
+    }
+  }
+
   /** Conditionally redirects the user to the vault upon landing on the page. */
   async conditionallyRedirectUser() {
     const isFeatureEnabled = await this.configService.getFeatureFlag(
diff --git a/apps/web/src/images/setup-extension/setup-extension-placeholder.png b/apps/web/src/images/setup-extension/setup-extension-placeholder.png
deleted file mode 100644
index 03a6d8951c01924b20d9e3c52d35d0456ae4ede9..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 788300
zcmafa_di?z`##n3(iUAtjp(GURYef1la_{>DJoV=RZt^{*t2G8RW%K5)hH!N5k<rn
zGt{V9(IR5Rt{5@C`TPUl_v7(Ak28Ka=RW80yzl3AU)OcwpBNhm92Y;%#l<D?=;3`c
zE-qfq;Sr<%{%?0t*KU}z<A43o+Lwz<<m&%z+>gwzta2`L`<fZt<tn2{&T~$Vy50fb
z;o`!hPV6}z<2uRv_tE`37J=N%eGk-C%^xyv&d<wUDlcZU#;unGtwv*Rp1LsKb!0b8
zMa&^I+e&Oda_Hgim51S98;_j$OCyDpl*nC9Ne8hE^HTlvWN(!t2@5!_8_mt*7?d7s
z%8w*AV4@ec6V_O+-St1lUa?_~0GCDJJ6FX281|MOtMa|;|6|nGtV?qJ&%5mizhiJU
z{EyJIyRbNIKCT?P_5Xi_#?Upn{&#3{^1a;Q|NAW+5rSO*`>P%A^5y#TKjO-vL!K(G
zVhl^u^<;L#wD?Bxhx>CHS4mrDiuIGo`asFUkfV#%6O*>O%?CXTx_|eXfvs}m-b=#{
zJb~kFE@Zj!uoD=--|Wnl2mzym3#`k*TMILf8Lm_-GAg4UNbri-M3N(f+fdv4m#H}I
zSEx0qOkKm}^5Cpn?)QrJM>MGg?~m<j&0rqSJeN3uIHM`q-nFpn6|MkX>2jQKr4Gyq
zxl-Ak(&;An(godgz4pbE=rEQFO}f#FPFqb5-2abo8I5z;7QpEw>;vpUKjIDWVT&5C
zXBol=An!k?p+f)^PUj3CsZu9rXXi3Cc3ptEd6Hee$FMA}N)CEGwe>DH6I*xSzPw+T
zD?oCdFjznQ2tUx#tYaKZ)`o5;)EvGe>g{hk4<D9>EP1(|mHwtxIomc_^EEg0U>yv$
zlE|fA7$tN|scSY~b={q2hh81IYX6Xsg*nJEFHmP~`hWBy+tNJajvcSG^4hBD=voR?
zI<~$94N6klNs6YWm=Y!rSU%~psaa$Efu1!J8#c%Hm+1ap+HJn4<!C~9hlx%9gP55&
zrDhY+Oa4>v$(`!;n3Tl!wSzapD=3C%Hfk&3R-+76J+AJpw(>jMiI@cnOaAGPcKq`3
z1O>Ryg`LbCZbY+v5KNfnwMCv>vrbhd0ye)qE#n^h2q~-WIA%*81BYtW`%|%g<BkyM
z1IDAkX6KnZbhWu>9+$MBM!5L)#n9T^(dhYSGb`#)$2NDFt`|^C1~+>2{(xqe@K`t0
zRLORE>GUEcXLw9tH7s@58Kbh26f$MRB_BYVfm5{AVYQC#oFiJG0O>gq%HP%QJ}sb}
z_c7#KAKnRJ08<oXiknONx4bK)>LWLS_!)S7sUWMSzq&Qzti6q6y`f~F^;|H-eiRs=
zO9R|tW+Jpurrla?5yUs9sgTOyZ@JQ=a<BK2SmI6={@%CoMS=|P3k$)XSaaCJp3>qF
zSB%OtV8!7xXkUHn7wP4fykaNTmOgs&J@<OfBY~5%I>qxf@R85I2R|avMXSkuB+UcM
z8pJ#QN9l=5%$Vf|qzK5Hm9JmdF)QHpCY`&~@74Q!-t)+79qh0MtD_QArzhv|6J?_H
zEGizSqzoi_FX4n66+=s@%#kP1ow`fC#dp3n`(G>&kmx!uu@-t7*2I33jM9SM2?R$#
z`rU59&P9P>WTFg0ubd*~g#mx^GCCP_pHVEDHY}r#$(eiRWbB2#PK|C^&eXZ#)xHR9
z=Dng$<3+wei!BW;2Dg?BSC6)|0OXt!L83@fS)d1XbxW|;K_YO8`O9$<IImiU0W${+
zv>FI4wBQ#~e1N}drOtzfjObG1>F@>Oi1TWuFmSChlhQkNdte8oe;TWzCqxtg4QsrH
z?D>%f9nmcj=Ye?sv~gkf2<ki<mD{Sjn@BxdX_BA3D<6h7tK5h%{K9J9yRR`H!Jl_0
z>br4hmh+D8$F9q<2FR>s?ZbaN#+`pRrRUdb7ytuen=k2DEYf>^vhw2)k_EFj9}jtK
zaDoQXZ17$wt^aenE@}7XhDkXayKo4tAu&d{NGQ^HoiwJ$SCp~k^!_9AjP$aQv~;u8
zk`BV}AX|y%+$)`#+Zv)#&kDcq#@ZN}_d>@q&}CdtT4#+SO|nj?y~n8}>UCx(-^c9p
z&%8}Z2TZT1bxeN!`$o!QSq$lREB6)o1{paQ9?^MLO}x_cm8V(WslzWS`dadRxLNeT
z@2~5F&aEn5J`o{oJNz4OXV+T4S7!)g$%g%c*T0omG=CYe-zz@_Y|Uu|#qrx}827v7
zlcRfZH?g03Bc%)9ii-@Pn}6%Ji(@+i>3Z8W@&20j5{<FP^vrZvN0T8ky*cO4gu!m~
z#sG-a5bJx%>O`fmu&e2=X;IJ8N9$)`!F5iKmmgx1!^cey|11qSm;7NGA{4=K;v02!
zXEst~m4y!=N8bDf6Mv6x%m!ZFx4`<|3{l29unHSx5bTn^e`<}t?R&#s`VdJY)CM`9
zqc@#ICnFREKPjozV=oF8DLsHXKbs3I)xpxRJu)9dq@7DJA;n79QA4^Sc9P*VNR8OB
zI>4u+P*>`|%g+w_U@eY`tOZ<^s3#60E%YnPY{jT@K=Y|Vq7=_b?*{UBKe0TAH>NqR
zPQP}P&t!epG4cteIazpNos(WMocC3!5mG(2Ur@mrb@l-ZOq|%Nd{}0r$Fb*oK8xW&
zb(PZXfyIK|skV)q`@nYJzZ5m8x0XAbojg#il7tk*9f{l9-#1idZ~o}mS1rKhOwK(k
z)9YNbV?$5CeY~#pVu<6Ce2ZlF>dRVi_*sJOl9JNMGGwCM&Wmc;!h2iF_+(BLEwMQ^
z2HUI7TzS4I8VBYRh_9+KH@J1Mx~T;(aBMv2N4GY25gPnA_)w(_4U^#>XouRh8y+`%
zO9XMl5?(8tK@xr4gV)9BfhAjLN+#sMb`VkHI86D|?^yVsl{n$I_j@$Od{DFA{3#=6
z__<WXp4LKeEO<s8`fKVbg`1C0CUYyA_@&ODb!|oEOQ!SINeO3Zga`Gk-6W14Pr(oi
z{umW+bXgS6+r;N)#ei`XQIdt2EvnA(GE!&tYOAsL?a_zO6fZ%P2ac@HbTELWYdpzQ
zy2CJPalalh+)uvNMEa$32}ppvB%Nal;~im0>y`-Xq+777iFLDZ$)9B&Q$ei|CP?t>
z7=KZ1R!ki!^U<Cvv)er}_gAlZ!@K*6@KmKt_}&%hM%wUJlSfR~airAJ5c$HtxECjD
zFt0;u`wd1a*FSZY&#w;4c{JVr60dxFlCD8*UWs1Zys>mV<poIj*jT98M&KDy<KpVR
zy4RQZ!)o8``RmXUdE-2TCg~CaVK1jTmV&-#^$MjY`)5<DI<6>5KE5meDoe}cF`{}X
z`Kb;tO^a!XQ^G%BzRXf5f97}b(KUH9_((ZsZ*nFwS!UuCL9Vi1F~FhOM>uS_@ll4k
z{3sCA#_xRE)>xvBZAnR2bDXinAA@FAao0MGDT01gILgAbOj4X-P3SobkH~rfabWso
zmN5gw{}|@P=<qgW?81svv~%W($63KGC67V>h%a_MJ7d8fP7PMuW3!id@I5j|(QBh7
zQwgBl^<pY2c;3ZagZpvsq|toHw{indl@jA287R)Px1>FF_y+NA#W4C07!MBNN61}f
z<x}8CYzo}p58rYM0FgmTwt5Ipx>4<%cCVjcX1z(B5}0YaNYJ>=dT)R{2~sLkC?p;2
zo4W0a>LWww3On1QtwjjQCulLIsSK}th}&sC#j~*OxRP>%+09X>w<FH)4x$l~8Yt7t
zz@wi%W?B?1K75SsIfl_5<JCV1qN7i8&7F9!J8u8+OGRqN&&Fsvd{KhFJN1Q<b@X}k
zQ-8ONs_bH)eQ@dnmpGP>)%fC7^hc=fR8q83RU3v^@ZqT$#J0l|O~-+n&zefPz0yYT
z23`SMf1jo{qD84~a*<VlS1WMm{UdIPh9kBzoE!_C4>XA`)qtUciK|`r0)=5Wa@TBR
ziFLC(aZfAwd(oZ0WS~`T61`lW)CR{fVOuk3HW`c`iq`?bDyNsYY-1<@2*{)nU|Pm{
z2r8sePB@Ex2cWC?HU7W{tDU@*YJP{mX8qix>Ht54tON@zQofCp@IIicX;w2lS`<k?
zl6aEnmJ-S78sTJ(hL<4Gos($b1s_AQw?qC${9daw&wFx_*{t^;7F$jgnU5rEybfQY
zTQC&$;iN$)i|i41xc6<G>E5$BPVV9ZsLKha0>}!3P2U8bEV$(RwxWszQ~2stmfEsL
z!;tPuRhEjswi6<>J8bgHQk+Q@B|EWOmmZo;NQ)wud9t>B{@%I%&;yE6{pjO~@toMF
z+b`{v4GG+IW;jjZd6)K-5wn7Nb!2)!uLu`RL*U;-x=j$Q15{qD^Q3YJM%}^KO+5EC
z3-G3Tyo0^!wU+x?<BqmF^6Dq`;(t2+yM6SU>U4y!%C+=~xVAq&Kxn$3j9HW=<(cEa
zm;kjXPj|kZ)?Sh|iK{0*3wpfX{U`82J)NR`o}fw_!b<sbk!=AByy~(HG20(Pz&h#0
zXSp6twdG^6bu|$M&v|xIhvo4f4y+)o_k75IAP6*VjmAzKnLcN$X1~7T>tP;|u8t86
zDxg66#cii6v!VtNXQ1H18|u(rCVp#!h7twE`P1n1TdTTGReF!7!Wr5T`qxsFxzUL{
zzDV#aL#@YSN?uSEb^%15))njyexw&P-(1^l#T;>SXbRMO!*c>@iF}T()?oMi?hr~D
z28s=kBRpaSmYd(Xu#STn6+d=2k7&ot0{`=sIM*VL*mK<xY=v5Wk~(|@;+;^B`{3~N
zx3v1<u(Rh0s`QZ9zng3Kvu9Q^cWVcZRt$PRJexm$zFKRnKEN2aQ2EU<*U1+i5b#!P
z3HzvT@^Y<Q8fki^p<tL$JVT0zqg@=m-&ah1Hl9RD-z3@T-0=*^IXsbw^gCN&r|kk;
zzU?Jal%JC~IQ2SAPtTkG1Nd>EK$X;?2;f?_PL1BzsKw2Y^xgVE!)*=tkV3IEZbND0
z;H{L<qmTLZt^#565rKet0RYzvG3BOiXr3HbboTJK=A18-CDc;zx^Fq;;F0mSI;Fc`
zLt5&BQi?VL%TMvGZapToQAZ`*m$djD{>a|0+F)-FO+H@2t1M@L><xu^6}8x`wSXsg
zSFaXD?a#jHnW(KYKp46{pK9E*9WL{K7+I|d7u?+j3q23WhEzt)&8gL|-X^E;Xu_ro
z32VunkbJK7$&p+yfeVH^m)is8pVURCh@d-cc2irg)z_rnDYAsXBFk>9=6x8vC?_30
zF1BP)vq{_iy8*`CnR^S~JJNUcbAo_o@mUxcT8p}s?z(*HlkxJXvsROCv&)thjEkjg
zy?8$~Rw2La-X;`guzr014f71Uj=KGK^gF&&1+REUUb<CxXr~kKIoHx3OUbL#jZ~O$
z$Ii;392XJC*cuZP4g9U1)d#2152b+obLkqNwxDY?oGkm)s>)GaC+urktSix4@`=10
zrfaO5xe1_g0TOu<1Vp?qIAw8j)m1qjUcd(I^w&|1gRfH>f?EJ<TlS&VO?^<rJ1;9$
zD<To5x?ypGGTuiSvdMQ&Bd5dqywka_h6a2x-Wk27v~HJ;ku)mjcl-HjEXHg<|6aAf
z{241qm9ajqCc^dD7WGMJ^$FXIuoJKw<PSJKn6J-=Up{Wsx9lYeC#|%_#}`|TeU^Q%
zP;Odg^|Xkhe~!m1j7C?K*B?iZIu8woN;tFM=m=6tX^>VCdP1_fd8gKo3}c1?^$WPA
zrW8YJ@E1nfI?Ck>7+zmd7KBamk2$k!+&0OxE?p~|PZ^s>*;R?A+O<sEwuk|-O<^Jw
zqeIxf9tyzqFgI28;ncu}FU>N_E-@i)s0*wGn$hj_6Tn@zJ&pDsyL@SNDKR*<p-}Xr
zAJyvm&d6ry1%4w~04wU{K5XU=v;>^ck&bkqa9tNBXmEQZ=u{q@QeFhuZXdvOZxZ6`
z)d&@DdjmJAmsp>dS4-EfvDU_@rT3%oy`Lq5qw&3tu^!jMPK^yy7yAL}EB7|e=2GAX
zrp&F;>2QqK&ETpqQRoV%=BhPYu@9<+2`dpgqs~b@176Pf2#SoZSRP<%GfLTz&9EX7
znnc*I00}&m_L-kH^Le1szYt8{_jW>N>QlkUX-m*Ez2M>X&%#`zf4|T-uZ}TM+c=2Z
z+yb-rXYdR-E8djPK~1wqpCpAu2x}@#bZWC_6yzKK{KLo_$p7@4JxebG1IyK%27*Uv
z+@~ZILLPl1m%(!#Yb*C?Wk_{*pp!dQ0*HYdbr~AX&qx6~eUI~CMSI;1343MaHmZPa
zDeKmJV2?-k`_iH(u=R+yjwdBKU`_S%J&z-w>}5m{Jwgk?4FJ5y`Mn>K80GHE9$E^{
zgz+zZO0D94WyIq^W=lv1@!X;!%=n-Sd{7L+I4IS$cr?mEr(KJpnpuieZLia{>o!*y
zhjmm5EDah1nE?mSTV_qfhO=dMCgH-#yZyjMe-s59;8c6tR-bi41#lVrzU)G&Q-+hd
z{gL;({o!_gH3s%~VO&zIFVxDlJmm%d$Ha@ktc1_J_Dv%ySOaB4oXLK$2;U{v&ppam
z$u{E1_FJX%Uauwd-r)}~=zmi}Fkf*xh(NupZK#<&C;w0E?a@O589H6lSAB{wyI3r`
z^kK;@4MeJ?YE8mh$k(+$`EUwzG`^r@{%&D*yBo_zTr2KoDbI1mi=~u;m2SBJUQ<EV
zsCe=<Sv{I2IC`|4l4Pl=_PWX=QbB_7SlK;BfR`D(q5{ig9bZ$v?lc_{*<-c)ZG3~|
z;W1k;_{Gs~ST4ZNBdZ6Lx=EAIs!N;EaLRj8eO-uJ=}E6FH8!hWFDTJ+y>2BohNpZs
zI@Z6qCuvJYdXT%vj7v0C^&Ni+J}8Hf$Lc^3WD;w1qs9bbj<LT^^K2U1hAp`7G-MGR
zuuz5^w5|?HP$N9YhbDukZ*yP+JcZ~bSnFSgL>C3@B3fu`uc*JhKQT)G^HPBZ)G)fC
z0urxBKUOQLp*a|2znRlD4WGlQW2DEXP4|fYO9iH7^YJOT2bf$oVp{keD-gh^It2Nr
zHp+O!lG^#Z=_7IU=X!N-TeG^H<*0zh{FBYn7?8uv<kJ+@w-%&VbB_vtr)q0zR>qas
ze*U^H^iB}%l=>rx_ILNmt0l-2Q?{6HidXFAMoq#<h&JIerZ_l8=b%S#C68E&!`Ou>
z5e#NZf&^?UsvJ~qpn$JUqzb7bq+1T=_K!--L7LxPsgyvSBpx}~k`M;FgOqCHPi3=P
zk(0u4DbEu%xNdIM=S>@MXg7%kDXK%HM_=~zPLg`<Op0%f#?APifL8g!xO1@Q{#fLc
zz@{rvW`X_5GWy5v22xELkg~Pgy{i;Tbak_EeDt?KZ4Z4>BQ5Ml#_m-e!!oVqz*E(~
zb=n1tK6JXqPT_|>YTdgCQ!dhn$p}4^p)Sq@g@s9d{@^t5X9};0NE5tYiz17ZRU*-n
zL9ig>r8Oj<^bw<miFxhS8lUci*vbj@eD4RezMmh4CvnZhZog%$(TGms!r&UHaduHk
z{7Sm-Lga8U{Bc=+)-`|7&*^I`dF?G(%MG((C?A18Pj4j!m6j=w@0c}MiLyp@PH4v_
zZ~nk(&Mm3M)tEKB)ge5Xc-=?Uo3VURIV9~-+`P0mj;noo@=mCU<kPmFPi{1f+UGA{
zhBk%}hZ+I4QqH9cf-Odr;Ol(VhOt{|4$Y`NX}!9;CtusIDQuw?@FB_NK(~R}{;D$;
zuG>N$bJpnb#dO!iWg|O_kqe=gFB^&#X9nlX(VT~LJ|WfU9AH3^B7gkCFDTFz@~KbL
z+L5rzW~+C@a)h9#Rn4@@N8<h~A3dy$P&!UVkvi)O_?Ly(y7DO5TQB9nP|(ia$n348
zN287<a55+XCPQ;Jy2LZ~OnZD}xtVoRx(Qf5TuCutj-Fno3m_{~x-<!uN}TEHj1p^D
z|Lh+o%50O9Y>hZlqMnN4nLj$lgcDZS4!t(31ZCc#Kcd}>@mO$zliVh?SBLc`FJrm}
zg`ddVsMfi~$`flP6=W5j+ZQ`Rpm8u{7d5QS-Gd$R*!ju)UT_8ylc*!J!hkgGPBS2n
zEdT3W7dXE5KEmvvLZB-VT+_&X{v&aXb>KPK3(EFP@3?d=j~~#%Xi|C?x!E-)0lv0g
zZs2w);^dc*YCEjk4K<SrW0xlOpH0xn^Q;<6Qd0rdlqG^&iWESZmTjg!lR4t^%BHPg
z%N%Nv^7J&CFjm`P_{I`9Bn-?j!MPQW29V{BGM{EZPy%={ta^2UpCv4I-(SixN<>tL
zP~s35u24epT6b@NW)6?_K4yHPMo~^j(Torw_n^m+E&4>-%p)8UDr{T9-<mTB$b`H`
z{F0^K#zi#iv&1~^&eT#%)@vp|`(_r#D2-gPb;Z^+t=w2Ltc<tk^q@Aupeevu#_%U!
z)KZ8e7TsJH)i=v<LW%Gl0alVh1Dc~Kr&_7Agj0MePJ<`WTlovl8Hqe<E!@ebSE+eU
z=A6e?pS9I}lPkjKd5m65PFXRO&U?bRDEL0Ngd&XeID4oKd{2#bL_5@PZzEb3?=p1t
zAHYQTR6}!Gin5hnh_dm$+<aAfb+2!99G}Flt-e0~iPdQScR=9l<f+cy;*e`#{xjCD
z*DZA40S)NHouQxqt~%B7A*-~%R;XSLbg617U1$$Ob}aJ%Db`E)(tfvKVeIP5<HDX#
zvF`+R6BH=_>5_G=bE+C#hy@7H7Zs?qNyz~20onn!_4WF^`M^g<y(V7iiuiV0v~?yD
z_6zDuIxz;xm#a|`{5Nm+91&m`CS`wQ?q?s^j}NNmk>Zr7TpV2in(T+(J9&$#EO-T1
zVeI@0Ys#2Rhh(y|L+$po<4sEjp_BI+*_%6A_JJy2Ge)_#%g60ARQe}-3iZN*l%)nv
zy-nP=EZq7j2+rIJ`Dhsy@t*bfan4<XFIiOw2M4>yL$$wje5k8=#er_W&1Zdz3;p0o
z=IN@YIzEZ{qK}SRZy|5>-KB7i3F<q(wd#JulgSf9`=_gq>Ca7W{p;ygy8o-Is><N?
zZjMu2rH)Ls?r8M72zCi4TgrOM__IfE2jpo(wdMu`bH|QOyI%=$#}x7t1d&4~IFM7+
za+c7-UKHy+V0!bj#s%PCzCVC?9y#P!0{{1=wUc9=IeIQ<eeEL}Y=e~?C5r+`S!sJ)
zN)-ujQ}xCKq~%6KxBqp92oAn8R+uO$7#^h9(oO{uK+#$c-7Mt~KL0E6^dC+w+=?9p
z@+g!I6wGa<hFtD)i1aM_M!iomiW|5{_}I8&EsRH0`|sIkK|#N@2{Sl%S!e&=S*@>c
z6PZ?fPRh{A^j|L?--Nx%w{0CFC%@^LktG&fgTR(+2mPQW0vRWXA~`U8$MJtt3n^4E
z;{;Px{`#c(e7j7f&Ij;)SW}6=w)A}PA21F<>q@GMp=7PMFGf)KkapDRlVhnmituF)
zCH|~TIuOG&_*pT`V;^)y@Vj5m5!Pi`=i&|h2T1Kio)OaIy`&G0T0bD7dJyG>)5z~a
z)WvVPwT;+{)%;9~Tc7DIaPWPGwsjt$o>T41h)z57CBy9JenZPuiaWHkA>@-lx0{%@
zM4sZ(4?lh$;Ck{DzAW<(oNTcHKEnz$R1%}OP?<HwS_+gCy@VQFaG74yyFY@=O10;x
z<B7wuzX#7D4gw$jog*$kz?`-<oItSV?tnMBhTkZ_*GE=DUVJ_ZYu^0z>@O6S7p(9&
zQSJyK6AKO*N;H9;6kJu9zKyF2F9ksL-mRa8CCXW;wF-mMjjVN}Io#0etjC8__~EnS
zj}78T{>zCrl)XcMvH8}@PFGo3@Qc%Ylm(p((NH(@8m^~{4C@pl!{Vx=*jz<bTx3|H
z#8xqRx;}`)#H5#Z4tx$ymbGra3AH`8a-J}>Nm{-GU1@A%v^b?Iv5oPdb{)bslZdK?
zQN=-83;_90jZPP{6<>(ufdT)d24PBw1yI?w>WhOqa%v7};Wl1#+V+S6@-g?=AYi2r
zLAhBeYi~k?F5z`-bDT<EhnL=m!ELHY>c5G-db01)6)n83#Kv(Mt{@D+xmHQgZ>tOz
z5D&WqrYq<VT_<3Zc{ozyZcwyNkMm%-j)7jla3c7tAM9+2#;GM`&izj53E?bpUhCL_
zoulZHJV)eeT}Ip1nSlSUY)7Mqhl9M%Zd!kREp3S8`}_4C^FsB@8>Y;;Gt%Lste!8b
zrj`CG5X<3f&5Ld>#VdWO9Tzf2S^nRp-u(W2nE`!S{`V#uAXeDv-XgOOp3(R<U(+N5
zUpWC&MORc<o){hZ>hlCPdU_V;cEglYl{zJk!rDq!Nm;j6k4M_!-9m0aV4b#^HES!a
zYqR*BlpjnyKh}1z`l}y$K~ih~2_rw>h7e4P)X~BO(XKBQF)aW6=Tp~ljC~GGZ8?Wt
z4Z^hF2^{dltBvLjmQv*!IMrY07$$(&wZ9%ce1`dJqk#HYk@%j{n!^W+S6_~8(7KN<
z+LvFYKz{*B{NBU`d|nH3!A2&}*aYB)EhV2Y&0)G61>hLdfT}9^-6><em{sI`Ax`6M
zq|Pi7_h^p@XzdNRlkM;)f?zaA|DB{7c_$10(9q~oz;+t>cWZ<#B6}`aIM1vPAp(nA
zxtg1xiJdfhu=>X^Jd4=)N^N@h-O}XVSlHIeidLoC(bP1PT>Edz1IbfYt?x$XUAtIV
z$?N;9>5ftK^9}j>Jsz*^<*dZp5`TY>cW0c{s(jW{^Ss+9ihY~wafQ>!1Ks9#>AkhR
zR964Hg9rz#;9^-`r=Ub2lY6XIMZ7gO4~=#}R{bg@$lgXJZ+IhN1l1==ZO(jgJsThH
zIuw~zITZ?QN&07mc@tB8;~TxcDM;jfY;<cmkV(!w4?G0}89_WQ9b*dEV%Cd^U_1iq
zj#{!~sxJgn+@CfT08=9=QopMxfJVv5MQtVAbylK8yaFGw?X-TA)eGOI_&QQ8*GX<$
zWmrd~mJYfdTgf6)a0)m%FH;7T9Or#|$yBdDgM%1aBVu&YD56w(&T`rajng>gWC3lx
z_RG!vdxoOmGg)QBEQ=IY4bI?Y`J<Gn+cTAZ0+Ff?a_Q7%eCzf+J{7EieAafY(jX&X
zEsd^uXL>0`qp!6$rcMU2!c5$L1j>@Ehb#U5yeYpW>e>7H9-r2|*Ypcj@adDucf%$L
zgwf^zpCyiHYD&3&_4zmVBkAruXVg=#YPQB`_{I$A{*k97!sU~Fnt++Z@1#Q`1qQGg
zQ}q4L8?EnJvF`7szRcfJtgw~o+T2Cr9WPc-$2cP^haM|W`jbmI^I7&$YQJ+LT(p(&
zwuIvN#kaFjkvLy2Ky+#2;7km?YI>}$DwC2pC_rXukbnD$<4uD<QtwZflA*j9wt%Ug
z3#wp)+g5-zhez1ID$lhkG`<Bb-^i!stjwtOBCgVoBL7`&BB=nu*r_FJ52vxw;<l><
zttEVVI)y<j2G5jhge!LnsBTg#dPMLs8aFHXjg{dhNs$*rDbrj5E?dMlq>%DL6zdg{
z7xO_|1voTsEg9GXFkreZ7)c|POl6O3XD+VF2V}m>6W{s}7~+;LxER?DY<!RwsyG9B
zpSM0U18k64|GMQnJX$BSg<axG!3|~Z9Yveuewf-k_`m~uv~vPJtOAoIHtA5mdJZ%m
zxAj1K_m_SaXpwR}d;=cj_eyA9__uDuUew8*d_P>|`<kqR#MrGI;Mxdpr6+3tdv}k<
z;TnC0@MQn!iM@4+mWTzIf2;e47H+QXVvW~AN-TEN`sV|OUfdg=)lYT1HHliW|86HG
zkY;gkVy;7pE6Fe1;{}Sx>+b=k4$u;z0(A}<rRgJn&XgGGo}uie=)SeDqT$lf*FPH`
zZ%hb17TWH8@9V<B;-L+9)3<WQRzc3xh}*5iJgcXfLoTQIcYAIvoa2+HckEZ_v1T)x
z;mR$2KZa}yedr=0KZ#$TP6!wT82>a8hUFRS5Jn}E<g8&%oz@F$rES$8>cGp&%_8t+
zx#)uz0L&=lPVPcFgPs?7a-ar@`<BkQhIaTSOQaaW<WB|^!7GOU$f;lq4*T-N17%^=
z$wYqvo%h>!`E<efoqorGu1hO_KMN-=__fNlUVG|zVoO_({?t>cd6qmf@=$<L*s->7
zpn?gATYdn0T0s5OYz83-&z!dPhY#}4sbGYtZMJ^v=dIqr+b4y`9_RiWkI{<t<}tDH
z(NxE{T8j_>oO<>&&4y1b>prHgRN+^>04~a9Wxak2!Bjg$`uHdS`yhs6SHADQSV+??
z&NvIZA?><n#;|SpJ>{E=CdHx*+6Yx!rc36?YyRQCQt-!70uC*+zQcLrz1RK<mYqhE
zja9yn3foPnz><f%;aWTAfd?GB$GCTcl~I++{g}};Pf)<YD{B8w={qPejt?60H{`;C
zg|X)E+Wr4_Kh8lJr^h~RgeT)sNQ*#Za`hq-(;LkH%<eM5DosN5!$b2l$$2@bW5Y5&
zHMi@lP%Cf5<tFH&MH#Wj>0fu&m)tF?zI_b{cFHEAy9*@va(TBRi3c99U`yWOCb*vu
z?ih8j^c~(}&FMWmuXPkg%kuw*1msz<G|D-!WVgRtCU!-IytwSF*FCj33gJbboK#8j
z0PwB$4%cmMY(wwDl(NQ0I?DyTpZ%1+8t-wg6BM4Gp)9)1z9gz~Kpcoo*m(9QPyoEm
zzcZ<z^skiY7P_rH`@NvUP*F)$fa@L5_Pp$!zx(*PmNTfOng)FplVi2B1IB$ad(RsW
zW_^YsFWJI#N%k|XIPQO%C0^u}#E(NGYoO)=B2*T6{du;<27zkSC^O`cvwmjXgR|_G
zOi%Deq(b66a_9DHri9@sh|aCL^m`2j^LH%@i+wBOBZkL)z9XSq=drRN`?cc$r00CH
zHgKl&C=65Ad0!s8@s&CVmF`1qQl+p_O8l%lj7ad(>4i%Hb=%_d%+0<mvjv}l5+z{<
zBU-^hoi+$KhH8x%lwnD=au4m?;DAoj0}K*Ifli(qYsr$=e>73~kDYePzi`6<v8jAq
zMtNaBRV<$bOf=OM9GA#@MmcQcP<Dx?*ONhdO$Dr{!$<|9G}GvZl2b<R8$-8<gk?SR
z8RRjNwdMp*xSYGdRn;o#uwXi`uq5NV)g|ubF6-nl+(+1pZfmeKd56s?)9e1MNDZp)
zva?_5vMya;$vq5-6d3(33H0PIf|Ih2ocbLLrcXve=nv=#JvcrX=!OXX+a44aFycOS
z-gVFWhybz=F&%=Bd(bU(sDQ()jn04ceH|4X4c;<)0^8IG*f;PwD3LZmRFEwt`!v=n
zN&nQ?!q>b6YI7%Al}4m4IAHHdYK-bl=aHgs&mymXcd|h3%M-$cf$vwook7?+*|rqD
zkPPgD7LsIGvBx&n>gw#Y>~y<`Efh2D(2(lBTL&~iqkvzf<YK2%NB)4!kg{xLCtBy<
zdhN!03Cd}SF4-Ldceifki{ETbd-On612D^gX2s!|-!CF#_HCWa5kq;$?Of+RY#of~
zei<;J8$o+vPB;Tnj`QQ)Q`n%DYhIXl7X#|%gCi&A_mI@Q^}C0qbgr?FRWHwOwQ*N6
zELIw6i_eynvoQtf8n{23|4EEX@TD;E9eUz<R-~grf`dY2ZauM$CzAiM#PDk~Mc8Ch
zGLe&ITKf4=#xI$)T5@g}qMVg5KVx0csxIy6EW5h1Q9|{h8;iQ-E);t#z3xY;4B<UK
z$T0#+Uft%EFt>GEz%m;3JGOFc69gYBPO|QMvTSXjFFlY^<@S@-1(O0&{%%H$^T5V3
z%oN8^a2nk<&TZSG`xhS5Bi$Ql4ii}sC1RZ9>byQY8+g(i*vx*kyc^VlhUSi{$B}i1
zs=sIG4k8+K9kiz4Yp?*vS~5Tsq*rcG9)F&|7s7vEsgP<#s+d~3BKRB<@GtW!cFW1O
zeP!+HvZysXZA~0k>NGg)Br(;{IV>3L_5vleA<og}`MkNhF0-~@CmqL!v@H$-?2@Jq
z1`$a|KA%*%R>6N}(nYPoO^6rL4>C|x8ac{}P^lIC)Z@Va<A$)2?W8#63ETZnS!o@W
z@~b|Z$P%(@RwLcJONuC<YQb)Xl|gg9FMk+iIw~nu*2i^jHsJF85)_&*Q-yFb5??b4
zi0ZBXe4Y*-nnKHK1L8&9C;B5GvOZyThkbK6%!r(%gF38^vGc<D3U*_$m$`Ft%plOx
zp65SSk+f<b`@@KH(IgIC2OP-*VY$(rjy@~dxy|2{HaD@jkfXJB=>9>M-`*ESR-_1-
zN)xB~-m%1k?=a4aw>3igD?F1Y++sW;?C?D}17uRDu7gCeZamMaU~oNYGf1N<J^~VO
zsqDxnhS7N^zOC|>ez^6o)0D`H`v1Z@j&MD^_e0>l_4P0483|p*CmH_xXTUWE9Q_Mr
zGB;D&jm>=*q(rEw84paP7MCD@LbW0{_Gt6A4o2=UsO#G9bE!sC#=$IV{@+D}&L4OK
zaNVZXHQn|%${}m3?aJ>@Mevm2Wm@oIY~61f<R5K-&5<ciAjN|_aCcUWZd66^zof=8
z{MX&COPBLkl4}}t+afqrCDVvYx@x%QtpO}b=}r>Q26{1Ip?Dn`XeW>$-CC5blOh_H
zxUE@FD5zFC4_sx5HB6r7OB+NTj`#!-B$nkLedIOIBauk2muKGETDx|<T7H4KUMi)%
z9d!$nI!}K9I(Z!uI6KmNiq565RMwr=Q|(dkNV7D5!%avk$tH{bm3A-3hiTHWLG1f5
zmEbe%nxjyRL7&#jPn-~~UVKshS7-KV0QDR@VK^u}8F(Eta~(qa4{1G97C`(h%*h9p
zP(EmsF_@9<dyo}kzo0EgFayC7bmUeNCKjLhMC7gqMVH3**yvy-82h?2@E9<!PK63o
z>)Oh%ovWiIPD&oXS!d82mDx&Hu^aupEr8%hF8U@20cyguWyt(BK_*91grk*)M#oCV
zInKjOr3cKd?X<R{TDT%L4P_cYoxTVpm-q)t&l9JI$k*r|5en<CLP<>k{4u5x>`Wdj
z1fO+;Q}ZIuIfdyo6aK*6P~v=s^Gnveycv+Ak>B{MrG|rgNe@(}mW8=g*S*>Mangu$
zP}ew8qDtLyQ}5Vaj_spl?B$g^XvZD83|ar8r(d`_>9>r*)XiMNjnnu)W`@`+-D(FP
z)Nw>gpUcD-v(uBZ<5cdp?2<qQ-fvl%dt9}>nx(bnw#KjGmRdD|y^p~aagmDV!JF*U
z8c=Tw0oS$Ab#C8=cQEUjq<|AemAR)S5mJ!HH@%b;8(u;CufR|Hj|aOnjn!(TuLGM?
zHs@seL-lcvXPKSuXnGG(pSgQx@P(?99Q47#4NzDMbnQItGOMnN9MDKWz_{5ZV?(s{
zw@Bs*=;TbR>Q=sCdHQ8+tX-f7D?xM6z+M?y`mxHIE{EKt7CYFk2h}daIR$Rp+poiz
z@#^fatXEyhAOA?A6${Nd)<-zi0E)CP?!y*|Ia`d4UGA!etQh6zeh!Vb^W8<l3W>A^
zuWyrQ>Frt2FLku|rLyhnzUtA%hQ&+z4>%GPR##usKFAl8%QpLr-MEY?QMwMyJY1*0
za=VZMlFE4?A-{L<bDU<W7hKbad?s<1)4S4N&{}k-Po8*uco*6AGd3OgL)Ao+re2Lw
zM>}4ekA^}&Od@yKT8rCLW+#dyv9*TUo9k~B%r7enQB7m@0!s;C7b<YH!6Qb1d2a&%
zgHnjMfMD0Zc<16%neMw;vB~C$;1keC?ED_jrl2RJM<9h*D_+?96;0PFCxy9>tc%&}
zLHX`h)RdV{3EI|=2H?O>9d%IVweZQWWW3avGyC?3k?HnDXR5G-*B=&~^$PeGH@%Nv
z&QzLb=S+T<G+(ZQcn<X79w0Gm2~;$;+oQ?J;`&6~6e0;kfIRbvtq)Ba2B4u@ZADPP
zesIkGMU2v3aP9M|NFNt0d2J()XzXn9D#}=r@0Rz*udV*>ES%KZKyLlpB;MBCrMMSs
zXP<;_@oZ^rLxm*#zG)x%s*TKs+W)f&s9Q*xksKVoW?BkX1UhaSVg8RJeXAzG6Jcj~
z-K}{+jWmt$_j=31T`nL40tae@k>8Ow0(uL4_We1{bp*q|t%UKI4po9PLp$-y{Dk@P
zJ7RCry&{`y>a^#yb+hckno35T2dnpts*d5a;=xbIB{YMssvqQI1QpBx>~%nB_IAPn
zlzX?sQU$pmu2bf>46oscS4a!kYZywp$^Q&rte9|_RG=0<{*A{Cdxu5lgR(-bAA&%U
zk=X(wKROPuO#<0(bpUIMTmQWObVC4@<Zoc@GkhO)BwM+?&c0XX8M|UnD?8$-Y(3T3
z4<3F`B{g0-FQo4$YFhY42*+ioh}2v7>?4HMf~8Hs6umNA<9?q$^RAG4>}tN^DSzrw
zd(p?^o1qnMF;aI!bRR;^e5i1jl5wM%KQr2YKLZh-nwQO6a$b}h9m;bfj|Z(iREm%b
z^CFQLnro|P{d!4%)b5<<^d~l0U37An5H`WfLV1NZVRwXskQIxI)Z3=kg;^i9&~HG}
zfdZgz8nn6csUjcsOcJZ8(R|T{ZMJ~Ryg-%%*+>47`vrBZKv8IUIt7Crh29tDRGkLu
zU+x~YhoHbb-!Dnw5wvbVRBiw%bIjfa6qnEOjoPj96`IE>EChF!bjq&zzA^oV;`zq%
zS#fVH;bR7el(>uJo$KPQQ<_)Xn$sR#loz~@F+gHk?Ky6#M=*83*$Vo**Gz_5``V97
zJ2DHq`8#N(klOfx_Mr>X8{1WFrw(nJb=bZk%j^7+_x3-1&v33b&~EOpBJWr4!S>JI
zdwb6{ckLj*;mg+u^wX*^mTG3!YrS5}x~PDsA}H`;*<a{T>D#%*-@A@CytZ_wDnB})
zyV7<x#L;@jH=7AITVH>k_+BJO=dv}7durjD2i~5}5mkcNi_>?tJ}!)pxfk}1ZX7=w
zg2V_7$2kurX03U{Jk(%v_HN{j-G2fOWVg1&T405Wt`kbm{=NMoQw?fs;zT{g7YUyD
z%UBc}nmXku5gczW-)P8)^*HeCV@vz;#8FfB0<E@g@B(QZ!!_H}oQAr2U}ZEQRh3sY
z4vO?UbxhXb8eH{P{?Cs?`4z!q4e1rd#)@}#mI4E!93k25PEnp|h0nSyW&U&1Li@y&
zl-};DDm`oJ*Dol7;rco$ri~lIwPqh)OQiZao&5cG5y-qS`MENM+LZK1y`yl6e!Y_a
zj_T`z$+wl@3uaI(z}6$(r#})h)x$d>iT!e~73$t~tW5v)(D}yx_*q1$3hbgmP5w!J
z`JZQQ%Ps|CX5XC{7ixM2=dGQt<mKpdTo~<jec*-a1_5-H0r^-?#Lpq<Wx^HeAmAc3
zk5-?<$)};Q`ySPcb(HkgA4uc_`S)lV+tBU0-CSTK$G-X!`we_V0`~x#dgAZAcnJS=
zIJ$_wq|EO>P`!TSCcSdwYBJA{tfp=me>_Ct-Nxh^sHMoJ(3>lmL*biq7K=XG5wBm+
z%5z?*M=aSs9qtyFy^{f0-%9cwhO*#Ms9L7U8qtI)97ze;`!~#{0;a=Fl>PEmL5X6S
z&vV~g#&iLM%{j*AkCd$o^$QDET+brkn0{g<gb-|V)2zoX*bl^NJmdZ(py9FSup1>E
zw%08Ld5&m*M}HsxJ71>8nwzqm7pJh_ZE1Da_Du18&+49q&*w?~ZhcC*16M^l^q;=G
zp4rVB6k@;eNY6Jt&CaWCz}DUX&r~E_3{bg!&eoFQO=Z=k-GYlyuM-;FTm0MQD9?LF
zaF+=gHXn{jcV})Tes#lT|F+I@!z@Z(m{C7T^aq~yTgIa~4B{mgH`-xk3EyFYe}J(+
z@z-X_(OVcfc-rpSt&A756{DBy1I4{Ye8RwiG3g-}Bv+t?Dohph924K(?e<U2LxUeU
zbKf<-)bF6E4&bE4vCjAl$nLc@WgZ9p7wCd=rJ97yUl2^9KG)x!WeP(a+F?7_4n?TM
zVDY>b0J`V-AKmp|S%GaV9(-N8^oGA!Ua@_FM!aceu0mUpu-8^gkpa`xHTqzkW3YXF
z<CACbob^|W;U{;I?6nO!BB?X!ari|@Rqp9~0&TBRKr~;C_UsJ^<^$18J$<5iiVGl9
z7WU!Zz938ivh7S=?lcd*qE{qwXi?+7GufUfm?6+Bv)-mPISqhWE>DhsN+C9Uzo)hu
z6se%g4hR1S`i-bWb_eQ^+Zf-p*U#V|ptpbO01;%ZB#<=oSFqznK8<nv>2?6erZ(<w
z|6w>pX=UvoU|uo^y%>BfV++50njOOF>M*Sl8)EQ=l2xC2>=mwug==dTj9rp#EB7iK
zg3!}-L6y`vC)up~JDe5IQxyyz1oYwzFeQ5oy~CywcaJp7AcFL>Zz*~(R7hw@geXjX
zkT5c(y5$4dc;Ce*I$<OWaWrs@biqQG$JQpVxNb%~(|sjw^;1bSFs<gIQ%S(=7$so#
zyP!|=yZ#0_$C66N!)pYgb=@Jvt8%x1UiY6>3^j(=dq`NT`~2ium@sD25i5s5uY7bg
z=b(dS`sN*bGx_LJpOnovc9105E&0i`;fvUV)Vf!F8?2hi`YJMHL!9X?%=cZo>}LqZ
z#ru!e=;CLkh?6;`Q{joGDj2NOp#hWg$`R_)Y*%W<-oFi{!LaZ95~QUkm3FM#)`DCX
zTW8wB@B?(R$sTuaiZeL0>)T_|`2KInvI;sjy!<`f^PjyAH+Hg1!j4?&eiD;^b+_-5
z@)xb^YF+xUD}&bgJ|YX;A8wrrD?8|LcYP=zAy-tKsx?()-aagav+kNy%y#B+y`NB8
zc{g#8M?gY+cq#0vB@Rptrbm`e2RDB2kfqKNWhX&E*Oi3=_qF;~m-9&=dq<-X#*uEk
z^cplDu4`}BBCvgh|B?HGM^kSxz}<wE`l$aL%qa$(!vUviz#78lQ9oj;@gTrb@h}bi
z*7(Ct(wv?HDqio}W@0a&4#6^*`$SfQgpiPtwX64q3!I+05L8&R)2Xbl3=EC!*jEtL
z$VTy)GTw@O2T-T2lZwU0OB9+HaS`hHpL@n-CL;2&8lP%D{kwb?_WBIpt4vXo8+}U`
z9YO{ES%~Dxu-*?ASmdO=x5kkL(Tr+}N94aya;>9y-gC{DALOydL=X>Oe&{Ye@$2KR
z8$s`$*ciBfxszVco^Vyac`uB2iRXNO{yG1FD_iG5!!5~`0C4r~t>f!~UiB9l7NL<n
zYRAOn)P5se7$<F++xKh;98Ulb`;9^+MKc2%D7*u7U<7Ur5p&w>D0v^pP)j2pnA|Y?
z2n_D3hYJ{_BL%E9*gw@*les127>61uSua?Bv#*HU6Nj#><_i;UtiME+XsnjPL!(0q
zHXIuky`sT%SLGX{(>DZzg*YHL{q(<P(XYP2QtbLsX#ElPUu3+Z*!1l!XiaAB;rfZy
z=nKRXVW@mpo~8t^VW+t672U8O7LT81lxS36?woERUCRX@^kuVzcQZ0%)U|vN7(1;E
zD9pQwav}F|$_9_AuE4jcM?N~V>Yp9Hq2VpgS}g}$UMkh(S$edN!{Vqxey*hY>OnFm
zK9Ay!(f+q)he8jLt#GbTAz0gD6QFd%3@-=N8E(ClY)6w>ZsZkm*kWm{iX+h5{SIec
zIbP7Ex5MG3gEh0l9GmzPhJB(!eoCUCZRw)MliiNiNp1a}slvsu8eUi>A;YDu1gwf7
zbGHIEIgr`FCpouE<CGuihe1!yDY`4Do;*y<Es<nLgdXfH%^E?BF1}gfQ?{+<)3zXl
zZFn6{)aND^TT<{}%t-o2<Eyj03FXOiKePBL!K8$#BHwSU9s1<+`5el^Q2rI|#4I{B
zwPU6xb)-cq-fQO6-kQbdx(bhuQ%**nA_zAXDm?zw`AkQi<^uM4RTxn+YNpR8W^w<e
z>NkR<lh=>u9=@?}j}Vx+olk|DrApR%;&#T18S<!|2Y6GXYMn8(yp$ue;~oA<C^#7C
z{-h#Rb$Zi(*_O<)>i<sRnI6)-&rf{UgfIg$j1Lrzq7|EJ$pzHxs@NXfiIqSpuTQNJ
z7dd{SwSGNoipBnVpI><CnoZ+Kbf+&aJ_YhtSo(JP{4nvZ=u_4)7H1;9K1t2f0omu7
zBqfI!MM0MXU!ZRylc{Ftc%7<YRfceu%`r^LO2ZAoD>S`4!-)dlmjVt_QXw0}(!h!S
z49HaJprT-Rpqd^8nK3uIsJ)%m!Y!TW;@!X=g^rsInbn9@#%VYxzj8udpswYJ4ppOg
zj2RXIphgkr+IFQgV<pV9zgoFF#=Jt8oeq(O8-u7eKIG#QP<8qcIpQPIzB65n9@v$>
zZ3yBMn+|VT4?rk+Ys+V#vmv*inzR09tzauHwz!pKZu8vwIoVXU^2GN1y$SH_@O$+6
zo%^2fX=S9)qq5hD^!%rMY6k**E*ka$$9?Q(Lzbq#Wo=w&&0PIQwIQE#j*5A<q2FBL
zNvtZnG-gG8{=%rmKLvxosNW_6GCL+w=d8ZN<-65({wiby<&1Wk^w^vr<J2%E+D=j7
zrCIi$OI?b&ZRf2Rr8w)cD{~(aa#Fy|63W_S;`C5`+_kKqRQHU<R~K8Y_+T-9l<F1+
zu?&|Caz(;8mZS%sYi95q$IlxjbW+%O);U|977=<>E+0}G#dC*&n1SbSh(tLgD2zJ0
zt5@E+#dOeX)+a8H0x;xHm!TdjZ}Y?~kx0p@+q+LCH4<|ftWJ;gJPllv3vmj1l27>+
z-DsPn%i0KWI(v#{H02Hl@Hr)!RkwwDph)qPyT*r{->ko!n-6IJ28Rv3((JEn)*p*}
zT3jKTUZDiPn+d-!)n3wmXXX^$M*a5UCzlsCwf$v$b2v9f@b_8@uB-Q?)*x`=rHqMb
z&S(IU%qdU;&n7mbh)vwA6!q{3$mHL`NxuJ+PF9(yxxJ*}AR#Y`3<$&XUV9+}CtF|q
z&l|c@Nmgy14aAI0cS5D<YR71g8FC!9AcCR=b=UL0rS}pWFyj1H+UW$*05h<rLj_bA
zG|lEnxquE6#Nd#<4CL?|k2Ci3o|ORdHICNIaht^LNm7>JtND3i!Z=wDBx;oLdBcMc
z*E_pkpWoe|eYl4`(6(8(X%RSoYVHB(NloeruEkH>+@;?nEB<ERy-FHL;rbeCEIVPF
z^Yv@!4i8jq=KJzY>E-UOW5?;=S%|#LKq)ts2Z69l<}XCT-4s`u8JK%KUhN($fnArd
z+_v!H0O}_%RZj%wP^W{O3^0J5T4<BoE1wQ=R$MiX`x9B<wAGtk?id#i#@}oBJ+D#w
z@zAXWIP*jnYHNp~M1fB$oq5W%cACh6*jGWZRClcTf7B$=!VRMq!8(fhe?f87Pf9BG
z;emBdD5}+PiM<wj-VZuamsbY@yv&>VBX@ngwi$#Uz5~ER=BAPkb@=K|vSb)SAd?W<
zUSk#)Ajz~5Fwv#oYyW@5qM-7B4!B_$*-bp}q;1j?mmQ1~*NPX_VWu)M>|j(20T=b_
z&B1^zWU-V2pNipdg*H`bwvN*J!7+s1fRx_)`o7vb7x79qX25WsSHCzt5WEt<Xq-CQ
zF?KuyDm1-m9A=s}OYZqit_eaAb$@5pE*5N#C19$99~f*<R=2_x?!vL(mW`)(#zmg#
z$w_7i&$Y`1XQc(flh+4o>SLU@Sg!(rzK7Sa{9lwd*A+9QX-K+U*XTg1{O;Q8wkfDv
zkg?B7CrNU(rln0!&i>72VPkJP8(V)M#&O-vEKA^}GLQaxKV4s*r!3eKv<$DyGhWEs
z_A_~LIjm%{w=c9I%ecfPIe(ff*e68GyGoL@EHWv_b<q1mqt^I#)K^H>AqE8X`|asp
zot|#g`e)`tm_%Y{3B{_%nY8o;$@>tElKFoWoqIgf{};zeNJVnL`<9T9q=vb6qX;3C
z%iJo-ko#qfQn{O4%Zy4=#J1eRX70;va^09avoPj5cYdGW|NiiJ@Oi)A=bY#3c{Cmm
zR?^b4eKk53f9_gCe*~TMgm?&8VCFC3<IHIAx8{B|O=s)OE3AgVVJ%#_IYS}eoSb9=
z9zcK4eh#fyE>B}!>z6puAfEeS!q5Sp1xy&DZdN+q)p~s7zbn)?%mLlzIhr5(?RniF
zB(xv|OL6%|H=AYQA-Q;k>@Op$#mc$@4bk2WGK^L5j19vQn;Bio1xp57jN9ElbEVmK
z6wb-+(1oqvkf+&%qS;WSb8Z3kPqYVU^7^fFk?q9z?*YT~bKRjfNUcULcH}TX8-_E_
z@c~RO!_Rp;t=c$_mDA@)7f1&?r>*1BtztCn9oTiC(EJ|oZ^kg0A{AU)y>{uB7<UBZ
zz#8f%`0@$bDjUF4zGJd)&IToP6Tg2n`>pjLMi0a&wfOSzPQk=e*&}$)H@0G1cFC*V
zzwyf}GxW|S<1IF^^^BRI#oVKPKQFa!{&}!ruvX9o&ZF!x72m~Kp0Ezueqx15QB4DZ
z%ORDi(_>gLeB!T~v=rvv*vQ!si@dcs?^$7UObuSh#7~-a*L&Xii!0%n46jeQn>jY$
zWf6<OT>@n)SJ@NsLZRB@Qq*h2-FQ+DrWAU9L=MIDClhV1*jE2+)Nf|}lM(j7@xhcr
zoo^bjz{1GCqnleUC2Up2la|g+ZSamI_eBYo)xT$o-%06n2zLfmvw{f28pFQgg&Kxu
z&htqv;NY#0lg@(NCWMwHxmCf*S7LXFjoBiUXMUfCdb4$d4cyoMFHPXlh1U(w=10L}
zvOAys#z+OF?u(pUxKua<e=s)5WNPm1i4yjvo*ktj0>Dq^ecvg+=9~2(%XS>RWO6S@
zzFR7pwSlK#<R5L>M_MoxDc2M`&Q)>jgwU2`AOvaO5nTc^+_SNW`DUqZq{VKxFFx1(
zXlrAgV~4!EbFK=#vCe#fco~akj}W6e_sS50auf;GQk7<gv*obF1lr&6*r?r|Q(v2;
z|BGO5AboY7dwR!R@@_n4P+xCf_i-e;@6X*yaNbzRtH(uwKetIrMW^?^U97aQ`_gKg
zkX3a~*=d2+O8aT9ih4@^>}*3eE1QU~4@jsDm>q^5v+@hux;55<X#OTm3Xg1A#<P6J
zagJeUaL-!1Wv4$0eqh}j%Ofw;GdG8It27{HWt(b1>AiQFD|I(MDUV#nJm;40>fqXQ
z@Z|E0^d~~p-!S4Ld)0G6Wt0V$o|PAb;n{(&;cooZ{tCB31uuVlj!;I%!EwLHvs@<6
zD5%l#fN>c;w9+O^0y>QZFe>gZBpaeRy<h9405D<<j^h<!T@0<T-W|x6V(nM5LWK$j
zWE641WLe6hiqS`sWeSsPb+CYP#E-5ltvXjzj_uz{D<@x|9Bt5@pBvIR_gehDWZ@MD
z7%?`?s))~jt{pK4CkaPWf)R%s@sdWB5|3Y~*aUl+2-ZBxtfU6c#G7ZmICbfcfr4ws
zB7W)fj!cZMTR-lveTW^QO3Aw6*(GlCC7Ha$(<k{buCyPKqFzOJQ_pA*a5Ih(-Ft>X
zm8Qe1-zesx@i-$Whwo~5vwovdluNcWEBa;7jGA<Com!NX^lDBZQ56x{N}V2#^)MB9
z_Qc34O)Uo8_>4jrlCjuu^FR6E4o3dvJpn4dz20^9`aeb&M3|aG&cuH!Q!9`e#AD*0
zN}ZtCvYvmFU9e@`b@xCx9bBO=sqp;_l@5jdl~JT{LF`!1DL}w0#%$CJktoI)%la@P
zBeL_V)<D7_cCT72utV8EJ|e8H$s%fp6QXIrmO2^3oOCw(G1&W!gY9kq?I}!`EPPAu
zL6vA<H3;rczPJJIOEJh)#xL2=MXD0hVsg28ih@G?<DY6k(-$ok&1V8Qr1Yrw$K9E;
zA+GK_8QHO+vWwrgTDURSwO^{-6J%Ua6KGbT)Ok3#8l>k_3-A*zP1FQCt#TqPsEp&2
zAe5W+vqzfdG!~14|Ai=mR{5()GDjU0m3L$Af*$ptl09WcWpjOkWdI{&ct*}ITH+>R
z4IueE07?M{9lkF5ym0%QEGYu<+ru!8hvUmlSjdE8e&ot}`TSah*-_j}B73y+_wE_H
z+r_>HRQ?U;9eiI)=ETwVM=rMM7D42`Yr13b!fe<Dk4olU6phM~4%QO)Ocb<e`uZVu
z?IyXl3pkSA5qwM9{b;%tHP3iHxT$Gr&tIii=Fa})qdWuBU+l0Y>+lwy=UXo8{wP<N
z-<ByirGONo$?n}+QYuqMuUXWAy8h}FNB1gV<X$?s6!1K^A`8L9*9rLxqr;2hRn4QD
z7>d`qRbz?6`b0faAiTrt?~WdBq0*G`+D!42w<3jahHaEUZn~vj44)X?Y=(38X$H*F
zfspFMQSSOD;w~b7F2V)%;TD;Kkk#G92qy67CcIGNR3yrd9v4%bS!Xkp6gq0-U>p70
zm#v<LD3>`}j_p~QUr(G>rFDysKaFoy42;Wo$E!X5WM|aloMPJQDK0EENX@_A?&15z
zRY$!EZoTeXhdJe{Pn9nJb9IViu6LetO}@c2^N)-Y@JQi{reKEbTJ;;>5eR?&rGORN
zefJ~J-f_|eby@Q8N)DCwe4+54q9x-F_U<M5yyNZJn+0mHSbs-$zsD=Pv;(|riT792
zuzmmj)grUd%y(j>@e3%^Xn1BDzk9!KO_%cF)Fzt)u_S=4>7AV8>oJ7Sv#CvQwP%8b
zRgu!aMo%rmf^gG%U|0|s!P>nOs@IgF3%7#Et0{RGhu4uEKDu<O`W_<tYp!=aq`%EB
zX5qqNw9(J`BJ~@0FnII86!?B;kR}xSDtd<+^u%(>W_>PQD*O9qbJ}CMDz#sM#q`SI
zmagm!@+GpD)ZggbTs6<X)_}=Eoa+7pch4~nZqB;o$L12jLueQHMUrWKreZX982Pc4
zJt>*;--=&D<VCS6v4R%J#GS+T)(VMfj~0<2zH@xHp%UCH%~I=Ud>eb5t44vL3WCXp
z9C_2WP~8Mm3S8A#v7gd1YNhzX;dN`BuyW!h-V@_61q3bu?YTcdsoyAEG!Kf<Pp~}Y
z+~jq%(eE6mc^F3)Ro|a8tvnN&ry9?>x#3^1T2w8%%{+=V5b#Ck`z*ytA~xUzX#!NO
zWp(c|G25;^JF@WI;M2N>y(Lr-et2}TllCn(ImHsK78voWx>_?q7>!nYBIoPN4BVgJ
z%={1UG{MtT((+18Q@eP%pZ1nZ=?dXI-^S$TQzDM!`;~dBLp^w+%mb>H8z7<SUfcR#
z)41!{Ma65bcxhjUX4ZLNQs;J~?#up2^-*Mam^?I&lXqv+R@8qNPIGTD*>mC_iqL@<
zMjD=Q5P??DY%TtoQJ_rBhZb$eQ$7;$u65Eg>*uTPKguNA!DGMd8~sz9Ru6h~1E3kT
z=Qc%Rd~}~RKGU6EU3%<yOWC_0k2`@7FmQfAub${t(C0zC3u;nc$PE>eyxXu-^+R<n
z{PXfd9K`!m4hhK{aTayvk+ZWT$b%y;*=>M!Ge{2Pi{@Q4^1h6tD>e?fn#Dt#7}iVI
zlUYA-muz)qCw!SQlJ)3JvcrMhd%_8{?<*pyI*r1%W>WuEd*Gun!(Lu`!q7-&5JHF}
zIma89Aye?AcCK7C;0Y%gT0}>>wTA8oUw6I<JMb^(VX%3~2s$~VfS*tRd&nfNd^kac
zk0B$+7eEtN2~ncX0;tZ_l7G3_t6AN90=oyLq>v<zg{{h+gG373`iDO~!`Urd5b3JX
z!13uKgk^U&3x#!_{q35pzR>5MDfU)+<6rfBgMPfn25L(gk9JmhhR3F8$`*hc!@XC9
z+y``I2}XqcmW#iK7mGTRizKTi4pulSl@1TLC=iZq-$PM@UzasCQy<=7`LWgJ!!gy5
z-_|0UpCNl#Yi`OBs~+2vgcq@fUh9_K=Z}c_@NYEsk#ki2@%;1?6$cHueZDKrrKQpJ
zW&I|BYQi*&9nJ}LPQRd^f4q>Jo=W$fjBS%AnkuUrCo-Pgyv3PcTwa@Enc0K!l)cUP
zw?#?x@~C2$$9$ZXK?bMsQf_j)WJrP{t8}n7o^l~LPACUU*!TTbbY$z^EpQ0fMh1Wz
z#91(`ymR(m9x(8Gl!6)SE=ja`*@T=Q-9(HonrfhWLJ5fghT6zFhni4EP$ugE#uRP8
zW&HnypCWLNzb6~J4T$?9-1abPs%`^w<E_fhyBIzFgzio|%5nv97}hSqS?%t~9v!KL
zu1L#Mlz6%Gh&m;3^hwP{;U^m*sZmPcR4`<)NkjU(#y#+hds)CUMJR8lR64>*?t4ea
zYlpB^BgL&RkL9oRe#yy|I@#XHC+R8mpHW84MbXj3_fRgT#UtuZbE}A{0Id7Zgz3BS
z?>M((hTM%k&O={E0*pWsN(T}6RW%H17(lHFXxH}bM0eBc*#ddlniX*D74M5x>TZ^F
z--ZsmH=ogL9a@FlIf@5|Hx8nCokm=`=6faDD%3@LS}Y+t&>Qqg?3DW9Wn6t3<`f84
z)lsnH?Oyf-Y?qg*`JDu@cA$L@62;O@Pe_f+crAn})|4CH)dS6yu9^croF8hdSQop?
zVALs4Zg<AWuLnb~%+s>FqZM(yAnZ!!b3tUb9IIs}b!5_Ps6G4VdY#FG4ZmnEd7PRm
zbov4PtYoXy)PsfC73d2Da^)vZDcB?=<7SdS>$~&^X^<#)aZ9|qky)SwM*h7;BoBAP
zbt7%4$SudD9O|MYJ;)954|q2IM{x#Pwmdm^0yJ(j?9nwhk<v{X0+q{4{0`E<hz+k7
zylS(g9xImVkklvk1Q)C>*E=^T-1k|JG|hH|wc`HnJ&=*GeMfRIO5}3IfWruX?s_U!
zU_QA9KGB+`%(t?Ft-A4D!$)-QqL!G=e7K53o4Lg3&yUP%5B==XIec0qz8$}onb}ct
z=F*P-f)F!1p+$Xi*YkS*ahsoBMSk~FI1{cb*=FF^JEtOzaY>SqcGwrxcgymua$jD_
zJj6FvRf!Y%U8btgl^3f4>p9%1Fglgs+rZ(}Cbu>h_Vy+c7S4$CCIeqFwq%Sc$p?z2
zee4qF2EP65iI32kO!ofGq?FFO)jzT~{@4gW^=zeD+`}>>#J3%{t#5OOstxX(T8k)c
za?fNB!fZ8UNrEcW7^%;o)e{pt2i~~zJr6^Ke>xTsZQpo!GtYU9Lu`n<=RV_Xo6A6r
zVT5)_a8*xk4(Y6yf{d^vF+Idg{M3SM=)?ukRNy7BvCJS>*_ZWG$0yD^2kP4P#=FSN
zJfOekJuSJXE=z9nI@Yhg_VH1`L$U&8MW5-$u??*l{<$q;*c?2CmJ!EzM5f}GlgXzR
zq-M~rK(49EF<0+bK4IzS*aa9ACx{phOxa|*q3bBOmG+k#2!yjB)_R-Vo<K)vy{RiC
zg!Z1Qzdahva2L{d2v#>qO2w!{o3n5vrDv<7J5CV=cazrOX!QiFXuM_X4nC2iNx79h
zxd^#l`et5v7$PjW`dn93#!(O|Wl%C)&}PwezP{YyCt8Y|<yL=OK(0&%xg{^U*UlC2
zKKVaiZ?4%RR%f>6+)=jXctkZstU76{Q&ZbmW#ZmHof-Fe+Lefx<da*GZ|vY|K2tqC
z-#G5-TA~<N)qTq2A3iE8i%A>_Tq{6{Yw?`o^@Y(I1D7rk?sD3Zdv8|p?O$FmzcCMU
zrd1Z^+*mIh;Jx~)sN-ODONG9mGAa&QXlPpGbjWZXs}?oePxp01ovGdP720XDg${Po
z9-B0jr9%f&JilZR-@zxbIy=a1pi6<>VMaEWP5kH+DUv#BLe__XA%*>dQlLy`Wp`D+
zTY=$BAK@6$Fw!=c|8^v&c~JuI;yPFp!VX5>%^q@krWE-$_Sa;l!u>dsH=E(|XO<Ri
z&^0QX=h<ZF62|i=quB`c!5<y@TJ;nN)mv8b{u`j|SweqX6N>mzw{_g1f_RCwEfHAH
zQ#Ixu(DRKlo=E*CJt+h`D_fKY#G080E{Kj(e~$n9;}wtVI1t*aizxp$?q>}hheReF
z`xj<5Iy~BXv8N=F<6A%tgyRLV#AOS%ARK*;FVy)MO|Q)&*|M_m_=xEuSpx=O#bJWZ
zaX3Id<)Cc{7KNWilB%|FUw~Zht#$c0Falnt{^HB}HDIv5;C6D%LgBU%WWoanW=Nw4
z3vUj+V_$9eHY26<X^Oe+&F1;19=mHasoaBW8NNU`S{+<sf54fp<s%+Ip4lYAj#Vtq
z2qf!!To2)@crTgC&Sjh1?LyA>r=77UbxvR^dw<JN3$%w;Ik=eACA(C6x>ScSvfJeh
z<)ZPffWx21PO|Ns`fCf>W1)=76jSakd<AZ&(itok23$<!$d1L^^wIX3CWzx<x6EF2
zDXaV=0YYb|wkUMTu#YHQ`Vo282<GUfhM<+nGFI7<arJJ>99@7=uWP~xkYZdI+Nd9x
zZumWWwdIu{6bL{hfoDrMfR`kWn{gI7vN*@ZxuY|!51qJR^j6F8+;ai$(4(ZirB#4P
z*5}ieDY(qK8Kq*Rm%uxLcP?XA2qCx%tw6c(;c?%ZRBvlF?z=_epzz@Bon4;8=BWKs
zo5!u3r542O%q_Wl%?b31)yafizTo63lk@}-W_2fx>lo@RvH@0OCHZRh?=#0@DNWfn
z!ep0aU)hHLQ<F26p3fwM`DT8SF9ij_-Y;INPB{UcrbV3lnUjaa{x&P(hcy^cK3{_>
zkRt=dB%RRy4<MJ;Z>}Z2?4W2@zFm2D)JZ*#{3A*U%}<ML_{I_TNBJSDW-iRE#dv1(
zJZik}+=rcjGai!bI{oc-6rsAc;MZeNw?texvf)EzFI&P!k|y-`x$Arlq`;Gfkq^2V
zes5LvsXU-Le7^dJT(eJjD?9bAwGc|$3gkR`67&-3s_fPiqxQo*?CC=fMCMYu!E)KM
zG^NMK7UoS+z{$91z%sNRC>Nda@|(OQ>xkTW<|}B|6dfe#du4Y-g-@)iVl5z<<CL>b
zyk&xSlI3IDlWQjWtil?-a8$b9u2|vf`bECK3p3uYc)3u@Rdc51bau%Wt(6n#rv{VW
zG6sWo5sV_&vmQOyHVl`7qoX#r@+a55ULQ3R4%s1U?fxBmB(<wN&0PE*hy6Q+g@Ord
zHl!n{ps?78?9q;5F+J0^+iSw^OFlPYA}Z*PVt|X%5Od|D-Af+woK9KHsTYKs1?hES
zg<F{h&+jN~mABpibEOCB2bJsJ$=jd|nw?vMK+nr!JP%|f4MqFUSJh$bYONc_2k}jy
zDVxP_9w9;2#*=as+cj8NogLjOJJ?>oY4JW?1A2x!lSCGThOBep%?X)$3$S}(W_^v}
z2)(?Kmg9SP&}Uqj^L_vQvjzl3z5#I04&fKix^N{iT5sXB2!$IKF_8VJ7eRdkQQoRL
z{A!Ohd!w~-5nV)yQJeqdu4oW{BdS|$5EuqB<tJDTYs9ES4IG}iq2HC7yAOyESBRMg
zr$^gN!F>*1k~VT_johc_85wd*6082T2G3!DCv>+#*nd?v-OlIE>MgqixQjM?^iP<s
zm4a2{H}-RGrfY)OQcTIsjA9vwrP)FEnZ)5o(H>udDQSPsU56@Nht5k;{}a7+0ZO{d
zHU4x&HR{2&2@vs$u6KnMt-Q8h4;PM7EOQ6~yObo9CchpjZ!Z<pf<0su2heP&1~OD>
z+@-1;J`@GkBd;RjbA$?-1C&PIWvhBSdTgjg#_N&(B}%cIobz<84sr#)eBRtot@<lv
zN(vThc1-<)ncrCQpf<V#hTv5(3c_(iWD_h=IC7XTTHt9eS}Axv;JIw_oEM+YSJ1-G
zyW!6Ez_1aP3L7u3CdQ*n8Q6vNTDnj!;8Np)YU}_mCHCb+j_^o7wadwt{aXU7f87Rd
zQKFrPR7oq^l~o@x^K!mZ&Xzx%I9_w771u9D+X*Y2gW!$zrAPe+OP^AV1PwvX18wrL
zRp(&_56qvkEvTfiQYnD+Ym9lRC`F#F#1uiBwGEM8d?xvVcjDT6@_=(szz%2KBbR9(
z<(ZO?7V4u-7yikH_MFc2>h5x1!d&00^yo<uZGBgdO2EGeymQ;1{dB&(HU!|3u_N_r
zP3|Q~rjyxavdR548vB1!8H)m8<?I_UCr>)G355o8W2-^TVlZ+Ahc!>KtFhJI0$ECf
zn)y62#(G0r|6NezR@8hJ4lRaP+Wq21TfbCSro55S@U5&i7K`M`HTy?3WR}v?69mZL
z)}H*#!uo^+`660Zhw@t8O?$~!Fy;^5Cm~WZY=*}sUPJd<s#4yFalgoMO{}*qycIf|
z*^F{S65}taUm}0gM6Vw^Wxy?({>f=EY$<~06QEz}j%eRA5#`=KFc0?!yseLsDVLSo
zylOOz<VCqp>)d86l>D8(50I?b0Nmxj^&0k4{DRrO#u#5eN7ofr-lT<rdq=_PYW=5u
z^PPpXarD|~{};1APy)!(+gt1Il$OZW))4&f#0)CR;SP22iTF_O>k>6dMKGm|&_8=d
z>XZ59)|fx4_>w#|Y3oZ-Axf~NaiyRz(hoeHcD477f>DRcNY>z|Kxs>x0NZ?5L2WH)
zMw*pkl?rBcGJHa@KsqkRsOMQRn9)I<^S8GMb8@}K=zx9KaWfU%sUwPnspgj109=+J
z`UV}I>iu`;7_}<39||Lu4=pLOx@UKF3cos1++(F(T4efCNf`R$u|^pW%3U~3D0BWa
zHHjRr7cRs6Wjrw7lBeAo*sNb^+};QbP-69VYrbvhRS<bV{3?4lq(1RHhvmy2CXv~7
zqLB@tks1C1e}_^mnx*_Ft!;<RLDWDIHz8QicbuvKUtGG*32oc!lDTd)Cdu7WkA<FT
zd-c)m;d_gvRdc9(%d2KFc@Cc59wgJ>H1;YVo5k%f3}NlZUgsh)!<YkP)E@Kjz!5l}
zf*+6X&j0FF5pe8iP^-VzB`_gxx7|uh9(sD_;?e7xkL(xEVDfwuOmU+;`A?~V?~KtO
zG&R7Fr)_t2o!+Rf-uF(^xw8bYw*7@~7p_$NNOiGhJi3f@n6_O!?x1nJwJb=JaR7Zb
z%ecgz6^e3c{+J<}uRMxxxz4P26_qQf5Ib)Ny+Dju?F(%TAAe)qWNS+2Pu4W>!VQ|i
z)Q_WJJ9V=&d9K!s!Szd^zoFg$C@}cnJjy1l*2D>lrc-p8z)Lzi9?t@_O7yM{uL|R_
zhj)X@C>bIBHM)sz${xTyR;<SEs<y%Ih0AJC&O>V-7O3%ndKPtDy~5^nSsIWDH>uw&
zaFm)C$^uA;z0U7X3PzN!SRG}<!h*m=!@X8&LE9_OB#Hhll`tFR2_PO)E_S_H0q_Yf
zc6Lk~CgooY@pF0Gt+ojhg>4iZbZ#s0YB0TmT+z9Caw~wSqvh4R<e;1<7HrLVNI+Y=
zXj1Yx>5Ev!|Ix&YtoV}Shih*GVu~(EU#L3M;Jd|9Un?UtpExC(6w9+E*1mGIFMD)T
z<D!zY?!ykb<b}D2F&vqHfg5qEkS$HO_XDEN9}+NLe#|<2NytKpyKWXioFQi?uYGX8
zm4I-*iy&`>gnRhs1$1*e^O%Zgi|Dp}f4zfW^<0VA5bk1j!(RP2)Fk^bZZmT|z+pTx
zcivuGcB^F8MXk=QJ0nVR-N6eI5TUPoxz>YiL~c3XHLP1>@a=v??F!r|G>IwR(P=?H
zHI$4M9HPpG9&t2gT|kGOWqin&3{W<W$-<1KY$?0nQpunmvg%~y5EqNMmJ=BvFKPQL
zwbi`y?3ZZQE&RJEq4n)`{o02p)+@uE#Z!9aOQ&ApY~Ugr*MAb0?Wn1Vd3VAtKpxZU
z{z)-!?9FAk!Hzl2f7nvH0?phy**Lc$S`?rQC*!k@OGZ{)=vGw2okvK@R7)}PGw4o?
z&EO*^%nZI4o^0IFUf)|O=5S(fDQs2D`0pQm9%ZWXu;E-T<MEP>{)*=G>R`nDd2NdL
zp3dN{dYiJo-X@$?ozs@a?*m3tfecdZoW-vqLsf6I{92~HYPB9Mh8vUIcaPox^kUk%
zE+^ZauFNrz$w#fPX+nzwx@0YOrtZ+|c88v7z)I&#yX3~#`%Tva`fFO)`>^HlZC>+k
z0{EgoGMZJy^WYu<?u6x2uhctQ*;fnsl;<5WfTs6#@^o~|g%J<BEpgL{H5lfpeuBFV
z;>qNX&lf1@f>gJ_)c#<1Mdk(w_A>BTUYY>+O4!RIwsLlKK;!PcKy#d%?pOvfkF43N
zy_3*(ainK*FcAJ;@3_QJ^6yLMqk`(6=q4mT>KeIP`u)4kqEzI3J{%qsb=WC<IC0d^
zcQh|MK9#Mev%j8yYQH2(X?1<cB%&|G<Hh{l3e{Ekps>V8MdBOQ#gPZ3+MAE49ix{g
z@wbBa0J^OcdAeg|FAXU+uQ?X{&(xb>iM-D>oc@h93sRpQl`hJy1C<9aGy2%w=e10*
z%y5-Dogvmq-e9oyAFT7{XXzt-Rf|>sdph>0QX#VVlZiX6L07XurrNEwJ(&1h=qa6i
zllfWuYPYc%Y2>JTJVmM}PjjZy)|5H5$Q2ujbV<b7zBfkgxlh!~V&2vxuQq~Q$nJxl
zv)zD&9yhO<@6vM?h9S$LV0$>COy#n0a3%4TUFM>ui&A8M4pD?){7Od+cwOs!C&l2t
z<GGx3h6~6$;^-KXB3z$RFd#j{cH6*tyYJJwOV2y`_D{x1mSsM^g4Fk<OnRK^N^PI^
zap#;>i7?%D`PQmm@xS5#xfb9knU4@QxFvN3mEZDRDAdf7ZnbsQXbe7~TNO`Ig`1C?
z_Chuve?K$ZS@-iheek1FWpK0c$eCf;ff4CdGn&CQxrbTS3-2<(I!{b}0#8UnC7C>i
z8b(%~AKw<an0t1~LvE8^-8MQ@4(XuX81E?gs?aN*KXT)b;NuHu_=|$*tU8E{ZGgRU
zaBa4V6OrD)RWwxU`C#Mm>bS#;A4Z_3cb}ms3Sa%ZzsX(83|sMs!1MlbSS%WaZQ@=B
zi0n`D7g$3+hLm-J?v`GjuoHk*1_uQge~^fnQRVUdZ)+$_o6^{}Cmdbs_Ad}#vUP&m
z>U;I1PkK_vW<N1)VU+V_CBe=^(55W5!OLnqePsbNuTYTF<7MhybJ;s#F|a-!^$^f&
zut|e5V6dP5_%*&$K%(RK^PNFD=R@cz*w=>hoBqZNZ4?vaop1F`I1s9wR~tHsDZ!sd
zfa8^2?4T}<k?z3LSAzR;pC3PPh(mBBO(W;lY={E5T5A%k6x=xHeaz&eyD6^7Fy4<X
zhgAJmPvkCM&o;Yr^OcqhXexA&9vZaT4-kLw_oAMbsCandO4ZK0oN{8EYK_*Fe-Um7
zZ5IwKQKZ11y5dLzzSkE|krbTT4P?!S3w#wJcc|Ao-4Q^0uUn+x6M~}+xgAC<X&&;9
zGY?Pw_$ET5+<5wN#AB=T90spR#`{ZIPY}$ZthnV=_imuW8Sbevf14v&*}qG6@b9y*
z{^-*L&EX+$8MR5LeSL$<3h{->z}$+@Hi;DeZjZ_;9$Dak>AA#wP*T@nW&Sbh1#+r=
z!=htI_0eF~4U($A-Yu_^#gUWoRrY7Be7t{M;0XTIlLbAKU={S1Gf3}M+2t1T&TH1k
zg-jhj7M7gRegcAyo-lJMe<8`X$~*Mg{Owb}UmrdvZym3Fl9khA=202kV=pb@y|P=o
z(*;WHP}aSpwjA*jR;@S{oVgIapayoXakYV_=0JY+hXvt)<plOP^EM}Ju#*jx#HA&3
z3VjFC7>_k93K;zH@-n#Sd&aN%cs?7t4gS@;EpA8--UNx(lK$<{?>_i@-f;#`aleZE
z15At*KjbgyB-kDp5>zG@ipN9Jc1&2hH(|C+FW@1!H@|rgqmBRr=^{7;g<lvwD1LPl
zJM^vpYyE>(882T!DemI(vmei)9gjPIG5@;!+tuA?0R1%U!=a+K^Itk&{a5u42G&2x
z#3rx8M2a8EVwkIqD^%cr;6}=484)}xc~@C1{R)InnEBkDFG(#Ilf~J3$v+>Hhs*Uf
zx5cu*`rPcDRxEsPvfrDhS#^fNJfcZ&o%p`8u69SZ{4souxi%2_{MLfbVqws=T<4O!
z^t#~cy1U!#GxODs+p93X&@WOJ8O1EkfAt}MA%W*l$K6+bGg7<fBdvFjCZTABJlz!g
zqDR6w^vc~m$%=zVV|W(c`*y+7tyWtn<7xtATvykW+^z>Qz`jUO_2ahl^UfFPmk4&Q
z&@iL5x}yg}ySZ^Mh=Sdte7FVXcEBd(;W9?Jr^Kb?wVB6TJGJcaWV=|^k(La*f8Jk0
z83NJW3R0jGJzQ(h>wkoiB%FQ)nL7w_zUq%x!_e2iRIgGzX$&t6d!Kp2vJ7OI0YFx2
z3_qIb0&F~67c^r7FQy!qS`Fvt)~))OFDj9wCJl<7q}zrqg~~E)M$FCvMzsE&7KH^9
zx*&u6kN$UYlz4IC$P=9HTmHwZK8Ac5e(XM$xBkM~$;kcVjT}EJO*>v|w!)ou(xN~w
z!Q@2`mVL>pdC(o_G<G1O1-z?@`!C_L-j1%@x<v%`WNqG#9s-q%)cK-Eoon^jb`g++
z6J^)d1w0)0m)8}y4-f`oXTj8TM4<-sRHxKK^SaH_Y@JrA#aba{i&^lo5;>(nf)^H-
zB4N0P`x}HJ>beQ`@jCQcettp;ddH0BwTHB;B<nlE7qCl!r#8kLkm1n>odF4ChTTrw
z)W=H#U4B_9(APIec7d~K*Zx=Ut%|#ip5<wMhyrr;GFw*9DSs56wEsN|TI5$vBKk*~
z#6HhI6(J>k_y^7zLu!=?0=*w8xGa4Ql@@98-}g%1hoi4b%j0j*iMTX0)KPPsXnXDf
zT|CNVUIprX1^Nry9*9VggT|1EkutWpG}6`>=1$G9yAQw?!3Gese3AoxA3vmU3HoyT
zxipoyqT!i0U%-@RtDGB`XBy)3^M@BL$M=QN+h>28QqIgoyAYu3k@w8q2V}B;jWdB;
zXr5!-wd8M>=APChz;dzw;&HU}+j*X}fSo!ZjE0{%6yIX|B;H#Z@Lyq;`DFE@5$=de
zzK3H%OnK4mb*l1y{*f<X^v~sMi^6pUFI`}Hw+>h`BM*q>x-?af%AUP0ut}Ch9UwRm
zc+XVu)jq29v0r^ucGWNtd#0JsVRKJd=x_b-@n4FD-r55-(wvvk`k-g4PU=xr?;_Lr
z{_=qCV!DnX_RHa^BtdE}6(hS;cx9~^XvJzxuueO49?68+Kx5YqE{5P|kDZ~|(2ZeA
z7pqh#a%kNv(*a~|NUMzXT&Dc`=;odOX9oPq+^C{Vy)?Yl8#x9LS22QJg9*bJG#`T)
zCA0>N;q4~q{EII%*1J^_{%lzT1sD>X0U_N7bgLFWX0S=tSDK~qf5QYUZo1*P13r!M
z9xr5sI-lhZDN=tyAM^u~B1tz1V>&2Px~(YSFF=~J9<Jir#9Bf9RChfrPq}f;_%n^X
zwGPS<>=;JvIuwlk$p_TV?&*_+{btU?Ln7~CUDN@`;;CXM=f>xmezkBV0^fc9U^ZCK
z2dQnH+k8vA28Z(=zf2(qIo?vK+$SeBAKS|&bp4m<?zp)cVz45^R=9q){*OXwr6m8<
z4}#L-kD;mEi{*_dow7>O<)}!~&}I3W@lN0<k-kC@MV8@EuIrRYa_X4c9}kK_lG*Ht
zXLZXv!q5n29zV#l++eg8-MwDl6#Ony$$1r=UZQsyLv`QrAaFPckCQOGxYF5hk|xG@
z!gB}D@Kea&b&KOLMQUM*=vKfkr30NVU_Bo!!{iS{+DUzI(fLKJa}zo~zM0F7>7I_R
zuRan{f3XWWNx|#2?ViE5mmkdJ!)rHV+zk2@yiKELcTHrx4NfE30wV8>KOX(v%tfYB
zb@me{j!qbia<OY|zUEhzzNB55@+k6AZN8Lme828PX-|Q#l@;<LrRv{NO5Q@M9femx
zw?*S3TzVfnJG_v_zIY<z&{5;n5Ef=X=tRBSYf`2`qN-5(^pIS!ane>uoA0KwI?zg0
z_O+erFF04Ppb&~7*h<b<k&;7Fq~x02$KHXQqqMvtc~BUk7~)xnwAvIvLcqmncYVAD
zq;VR2SRZ!Zc>&f#*=>QZ8YlxF1jI)+nIyxUGRv-zUImvEg<0qXjx!X%Yt{hlHxgX_
zh`#SO5DBL5E+=rvCRxh123sT*FYg0lq2ZawQWyQW>y6zWaxPxUrFy|cS`s+e07#<e
zDqD1v+0byT0iym*lxksBR_?!;e)JUE-lFZ48rfncYM-!wT(>H&Dl6{l7t?xvd-pfB
zEW<n7vOfG%XrCeUeu1o*y@6)m@9y`~`Xt)&oa=9|^mb#YeMs}r;)sEc7F2<GXuUIh
zJBu@IZgVd7zJl^8=vaW=k6*RB!bc5W_MK1BMYGtw+Re{j^_%F6!G0kL$q`zzE{j3+
zX$Y_{;D3N{m5ynXwGF7hmPZ1!xOV=)e9@K7d9<vzl6jNVmiB&OOi&MP>HTb21<%V1
zMIT8hV0D14rXfu6S~<f2Zc7mX%VO@eifAgbp68ySa0V9WkB&H<p|iAht@_*L)Gt8{
zT+$okf|9^9K@~&|2vKan?UAqV(r|>-_BUW(z(aca_6vpkgpP6#?BMc{{{<jgRB~<m
zbT#Sd)czD}op9hx=&Om^zG3GizfupC5^Ckb6V4x%p(fpvRjovKfR?id((rw{h1`e9
zYDi$;IZeV9-T}U-tvcC@!jE!8zc?!U`uQ7Y%*^t66D?@4F8t{1HZp%!m^%hKeQ#(`
zW>DdnSQWYvu&t#Co;UTYsrSm~OUJMW(zDPlbBY`H0ix7PP=Wd)kFU<0vBw4q#2_fQ
z2X;<UKbtjR^_tk3A;Tp^+mfK0c_VKYq!8A-scKWcR1|AukarUF&Nn!9cGvZ)$L}pC
zT+@MHgFDhSe>dm;>ryu$Z?DU;C#P%6Hu|uBHw0(v<+<v_bG-Z(;NgqHt=;a2xet5-
z0yVB^K=WGwl^=LbCjB2wq&&lck)Z>?6|Y8=h3YV_-3Upqf3K47@HsicqkSgdu|U{R
z!Z7~Xqkq2!rY~Rq^5~_Rzqd$9M0ML`N}oukwZ4yU%Xy2nYh<gDU&#YTHbUEV$1Tfr
zRXW+tbbz2KH=`_BTP4ymc7yV@$0Nmz=FhAO#B5M5(SQ0>bf!%l7kRYbm&NB`QgO+(
zs-?8uVJx(V54pOKGkV_Qb>WQ7?7;9l+zIsHV<dgaelc*^omk=)1M;W3mUuy>(dW^B
zCHBf`Ult7O){1YKlx<Po6+Q~byVP}bC)+(|X*GZA;bE7&4b&V}e-@V`+TGW|gm<E^
zcSah#masf(*H_AV#zVc&pecjd<92|;?ADAKRta78N9C=&&vg}cb5%na$|0U5G7Few
z-iXm8F67yj+x?qiyU66D*3p9m3dRA>22n{9lg1>HbO4e|0#pj9CV*8inzAK25IInE
zFTn0zn+x0FH;`8A)M9f{8!kZr*@ACyz5vu>rMeL>Q@%BON5Zr=bpVK}vLEFnL<KLW
znlOGguzETZ{kUMCbBDAz)@$8m=9^-a;t`gIJG4x&`4zI}c;Z@6fq4iJ7VtcwOn*d(
zlY;SH@!d3SlNv%_`yNBg$w^o<>X$htY9jhH?CWYorf9n){$Bld2U2@#)T<@SPwgue
zuP!X=T4LkxreSL`wRs+Pf`Rjhc60w3Uxt2dW*zQ&xb4K!Y;fGE*iZNWt;5Kg$ywy;
z?lpfj{)4YWR*m@MO3yuvQZQ!51gA)pV~RgWqIbUaFjyZymCGvS7nu{cbLhPfZK?8u
zY<#I%;-s3_FcMuRBy9V`nuh{Ol)n*WzdYF5g_SqJ^cm5dO}u1Pcj#>tA(SD5TncHR
z+@)V@HVU;xc{JK4&LXnizgOk6>z#T@3g!nEX}O?g4z5cNUj`E{`ewx7$p8eO!R>@8
z#u3|ykHfC3*s$JD<}%&^>tZ%4XG3WZJ!>tFGtWMFW9PV9;r;8V&1UPj3t(4f`M}g1
zTgY8p$0gmf4|rQ3?J_qGq$V|%#Xk|*pn`uR;@4K}rc~v}HNR}sKSbfD5pH)FITquX
zVrNq+$^e%kCSGrvAXIQ%a%53aw!o0}`#bMq;vBAWl$E;(aUXaFhYLH8bm{9LFXHu%
z4Z9~={+O|0VNxqfMGQQ9*y26e(yDCS1@`P${n)I3B#_izm)^a9Uh*uIVX8I_D-JL}
zD1w`>TFn@iMkc+!q+aYAwaUuThEMCbW#h&FC|qM%C)K9HOGeO${4eYFp#~`ihmMm`
zyZw^;6GsGt=BV8n$qV;{-)J9%ah_lcxhpyyt8*eWN{qzp^e1?*fs~&UQab$2Zhcz&
zIx)~d*6(~|?{Kq!U{zKr>u+6PHR+L8-Ba^>VZt@$kOeUPl}=1x<>f32d)W`K2zq)@
z(%_4E=WA-$Doq1S14;mkrB-`Xp~VfI(2a02vqUn)0<&~h@-97XpcG{TP(Oq2z>W^w
z?qNz?w`=S@<E3c4ZMrdZMCJk%BC}wg;1mdM{RYlv)d!vDD7xEit{*sZk9)gI;d{XN
zy1kd3=JD|YQoBN~o&>AUw#*_db5V_(VuCRqfjtPjgXBkD_P)7fIm;h$Z)sCvsj`B!
z)tD`%2@jYATr%|rI?jT6_EGUJ&hxpmBNOVY^4$pifBUDYH>6e~wZDpr#&9`X8B7FK
zK91v1WPK0?qbq^Pw)?{b*6#$%vksm=(tbqNPhT&TuWFQ$WA^q~xCyCDH(WD%m3SZ!
z^M6J9L45&XD9eX}(PpR{4Sv+~!A&H(b&h98NX6C9F4<suxH2pAlj=)M7qc6h_?08R
zs;Y~#-EFqaoEHVxWoUxm3#m}pI(^DJe@b4s`-02wg!ggUsMW+|Gv0)M<Ax>e-mLhp
zrAWAAyCfhg`%D=*{UmSdaKRa*Bwlri0-2>vW4%lg69YcPq5N&>qe1*WIRzs?H(dsJ
zut5!u(QMWjWO1~TILN;$*PirZD%l$G9Y@RpPDN#rvD4{_9h{KQ-Wk(j8jKXpV(Ow4
zDugOgbsonD?$N6nSZh{77YFpzxuWrUH!;TFyJZSUn%%sR*Cb)2uH<+OSfuYc;^`~Z
zx`!9qN@kp}XVDEH&ez?c!ZoY*z@j5x!B=E&$q2I`h$zKsHj|Ob!MUCTW{mgX(NAT$
z6@XEZ5?ZoC)JbHoL<1^ZtHmG0H*P0|mfr@-ofeU$uqjg;tC%np*+o!$AtKK5Z+m(R
zdpYsbIxzPLa!8WE+z<t9Ao5@{iI|6UeRw$ZJX#R?^tG8L*mm6cCe&B0Uft-i6hBIF
zFl^=e`g(2=rP!;h3zL~H_H;YC|J*ivxkvApm~roIo2Y)Np$c_b7e~*MTM1G#QKjeZ
z#GJT3OC5q$58l`Pkbc*ABY8?9e(-wq4R5vv*73jW22SyJw$cy+D&8;eVkB*4ww3rw
z^b<eLyn3)H{d}iVSaPDyB*q52s{X{>&y|uUJJ3DGZO27^e)>_ev9>L>a$OEYUYT%;
z8RA+K+&eb^^Ot$1@xjU<yMaVYcci-mmZdu<<K?Y>@4(0Ir+qdVTh8M{6xzc)MA<#~
zc`z5!As0lsvA!Bt36>TO`3ah&<!QEd2wvPcfE3=y@6Owi%d!6b9dA3Roe`|E)v4s>
z#R9cv<(PdRC5cL2{Hq`St6XzUXG@=3yRGM3r3KSe`?}<0O8Teu0mfMoicX%j4%hQX
zHuO&{B^C<E!2*5H=<9`5FD$7tZPuBio0E1l6YiTHXiv=9F$=laGs79bhD)T$3;T|J
zR^q{pmzY>{dYik`UZnJlArEe^(FZ^7KBJ=lGoV)HQ{<WWy!7Fc(_NB7FLZMvIVYM-
z1|dOjU;01lhHN^ej+!)zEz&|>de6*aUYFb94VFFjJ4K`OCr<9KDJWe%molfgXQ#7f
zcAk0eP`XyUP-%1P+*r|e%^}pd;#<ZBIL^zO@3jCp*U@}oZp#I!T8vA)VLpzJiKP7q
zD)Uq-G`n`rIbOSTD@zdd?8IK~V1jC;`MMJ*g9~9cQKN1V<}Lk1$k!>)|ETm^+i#{j
z=|yJ$o4gO@wHZD}m)-i~BLTq0?Dqo*kAo5i$lzlD0v9fI3TlIu%i=_TTVEX1t<XY#
z@)f{=0#$+q&9+jH@U??|XOS=8OQCP2Y@&eQt(?f`klF70T6Ltv*(ov^oW1>{m3n+E
zYJwY5I>1up?lZ475510jNx92+P(58AdvN_B-T#Okxh_xpzZQdtC349)q}?kcdm->c
z=JcmmSKL?&VQ<G}gdH~IE90*=%Wz8rR$6Mo3-r5gcZ>9clMm@685^K5?zUsA75mEi
z&ayv8Io>rB-JaWhp;3h3it{~9i8*jAKp!V8Ms)9B$zed0??9a|PH(}5XqmJIM(fuf
zO9F3UrDr9Fh6{$34`l+!fhtlFSDfo6UGbrFsr*|rh4j1Vv{H1&L$B0v8G58zM%2L>
z!X7((e?Pua6n?{(`b6mYd4ggH-ud;^I>9<75E1sdq+;r;<$PBD^VlDtzFHENrwX=q
z)4KYNt4=4dTCcV6(MVWUHLF+MO{bG{e4$=3B(mijMGiz8^N&nquST`^1RY)kEvy8B
zJ&c1W9Dp9S!D|YU5w}zTMywU+(qc%ij+gCE#_4TI=Y_Qbi3N%OD>D-a-o_woldThX
zeZ)X2uheW*5u(~VW$8YBtMwIJjWdyh^9}KklaO!&DDe&2ouY)ei&gwisV5NRkm!$k
zCP}rL=tDi$Ng($lHn`IV$T<~z)T<^<C$8~HwOpL<!fY#ndYM~m2W~>+d!0b}+Mj=P
zEdNQ?%U=(<dY<l&nrFUKBK=p$E}ScGKdH8dSdl%P>50}!R`l$uilAyC12{+}Xr}aX
z@weeNEy;lOu+QrMUdCRcMYfTsOUG0_f(mn&zVmjU!r$Wy%C~Uv@SVoaQL9MyvB_J?
ze{+WlUD3GWSKO&pz&{BhwKi6Fj+c7PK=-*v>0H0jPGaDt<&^3U<x5uJw&1hSLV9xK
z47jmvr#xPBpqX|)+y!z2W4#={Rw|0or8U$vt6FHgQJ<*2<pD`V_vF-#yE?2ElS|AT
z!x`6}mr;1AtwG~p=o7(q+L$i|)9e`nrUP3cz%HFBcFhW`2<^#CjN`xGL<QXIWgfPW
z*)lb}niC>a5Zah6gdB0tcgGXkkVJIoST^NuN;%z^QY8-9mmhpZp;;YZVy(6PVnp4r
z+(lmj?uPZ+d&@g1)sp3Lsv`x&clEE2knN(lVm)ifLGhl)b!Q2T>X!U`81064rLk_C
z4UgoK^i9;xCJ7khinwKrEGn?<!LR|`uGaIzt5{&3!~Ci?9Te|PlAPCV>9G%rI))Lu
zzMC^snP`dE`$AIYt$4Ow*CV-KeKdG#zjMNQ()p;wE=;o`-q~=I{SWK$q+;E_kmtfR
z^+(@%pL?F7JUN^%%Kyg{U5gp56o+>%ar1DN9(|rHcDv8M@z{3v;a>ggk)o%w27@mR
z^iygw>jDa`m1_u#2R3Cfh%xQT!kAv>#ifeRwHq=uJ)C8mB+L)oyIQ%qi?Yj0f0EWD
z{w&YFB8vz2B(Ii{RhOlMuFfoN3?Bn69cT40f~2seq4AW6G1k_fP80eXRGZ=u(PmEf
zk3v|}^7@5AGaCggv3&1mXg*>Wd7lZNTz8<(Oe)(G&jX@%5p7;RZiXz@I7)Q@6zze_
z?$e7Qf<}+{U`gr=C#Wunv&eLGsMD$s<r7&vg5Lq0+Ea$u%5OXTh`$8cSCroqIp>tu
z@+uR52Q|?wsS;{X>~Ls!bW~(;aGWqYvXy^X&53#gt81Ud!Ion!9z{fiItuKl!H+m1
z>Ur51Bfat`1w)TFAWjFZ4LqCnq+bYl%y2#U^PLpIGO9|Wo(S?RPqZJ?h26sr-r$>a
ztQYKtw3tArgyi2iNgy`akOX}+rY2g~MeuNQ7u3;#`g_NJ#9x%FXY!tvrpki(;qYvx
zwoAcd@U98CtqezHeEEs;zgl3tU<IwffojCx|B&6u{r@6fNJ`K+)g47SPLmCys62Sn
zfYE`<RvD`qloMS9TS~eG0x6%8TYNzU&~D{^+y8eF7ZxESCFMj3bhgLa%Y1(h6oL$d
zxMeWLnISOM1{I?pdbTNO;D8{$0<RZ-G*bz6XuTL&RnlLxs*t;@^%C%~I5fc3(CS9s
zDIWX|8<c;H(_{7g*SD>L>Vrjt%XzTX{IW%?)7;ELPEbldvHlGQ+lNFZjpl}|(cm54
zzE9|7ZV$Okkp%OS{R;zyqlOKdkLIJcJtQ!7cVk_#qYM{Gwbi{3r~eF{8TiV3z58*u
zMqvph`l0#J%b16>|L7d(ebcKhazTnUvM41*-~UjzzN}}Rl4j^t6(gDCg(};+pnvM1
z@L$EUf|=j42L{~q$V)n$4d7O`KpINp>SsL|^wXJf_wrgS7ZKLu;5DG|*+_D?tDxmJ
zKlC2fugDHj3WEIGx1_hh{%Ut_%E_69(vP0BcNU`3*Eo5Lk7q5OzA`roE$$B!51j|x
z?d%U*tx;+WOEq7xM}uSa9|4Q!ABN=)i}-L=!=4(jht5{epZzR`P6a7+x}Kjs#_UNs
z@d@+(i*;Vsqxq>&5dK@k;*#a&7gneg_jI}Z4|CgxExaeYvQI`Xst>)_JfZ$)SvHg$
zk~~t-_FwBaQ2#zZ7fPe*rng050(KR~TcLVha^!^rxLtugC_&W?nBd-#iUWjwDef7&
zR!eRV{V0IjotgNI%Zz>=0E9f$i(A<n%~>a2w@~E_Ok3X3k5+0M0lHCb#d(yA?QrX;
zd$F{e?boi=h|72R$W{l_j;M-qh!@8|d;B_b9}%@1zmf9e{Wg<Ff0zBpOSvO+`P>^x
znZv2AeC_V^3Z6P4p1*Wk)|ysL!ThVRdd00@Rc~#Ut&O*X_5WdqoWd~kUjDDnP%7NT
zTylt`^--Vl`NaXX>()y68*c??SGgTH&|fcQC1cYjO4s|MG$snyqsM?P&l@ANw0P&s
ztg(48ixjv_wQ)w(!4>SFHVT8elo>e+0@}20Puu-x`V1X1GINXa;<|KXi%cYadHFyp
zWhtmZfv5~Sh$C@BMAtN+9`zgNpdoD+o8UqPH)YLd54vQC@sV_ReFfP!ddbpxjj{pb
zp+bOyG=GZMTC(pj<}p{uzlAfEvTG)P$CTNbrM8Qy0kuOTLC4QoGFw#>zq@*xu68n?
zC_uesP4t-oA~lg$zUuo{3>B?inyox@I^rxy<(9s8Y-u`&A>;Jz=5M;R%8^*ab(OaT
zN+8b@R>pBK(5{2u-kAYF%3Vp)>M0@JZ>0)t`PXGlXD#j0dJUyRb0?%3!>OXqDo1sZ
zAGC6>v~%)xy9i5C%A;2eQNB%H!4n>>^SS?L@yhe{Ky~>Mp##y~B(%@Hv)7QD!~qt$
zb^!89)(I<)AVDfMFqawXceIa>3s4JoP8!B0V{QeQ&{XG%CDq3NwvPYjd`v9jhpN0(
zWPJ9F*9yB>mX5Y_aU~y^a1xZRGf^9k>Wr<P*Cjgo0DUUd|5Y}{Teb$V81l`f>=&N!
zP--skuGm|88(!#sS^Zav)k4Gw24;W`YF9q+W@hUZlae)``~BB;v6bs@U_CdZ7g9RM
z4{(tk4jFaXF`!Xh(C{82vVC=+75-?rV5Txjy*Tm_SsShTDS_08*<2OoB2;Ptj*o5P
zSnG$3gU+f}cRZPUyqWN8TH@MlcG=WdjS<a-rXt;$9BUNAZq1hfp~PJ*+FW90C`xEm
zUoG4i`7L-t^1bMLcPE_H73;i+5e`HDC~NrA7ww@}R{vJ5hETS(xY_Qk-@e(<M;N{?
zNwXSzbguIrtw~yMW9ntedO0yqOwwL758=gkjlO%ivuQQF<8h=;n+>1ZHMtt;0LTF<
zUzMH}AdS$JzBu}0YsF@ZEj714+cXWgtK;fT32x?Vk)x{;%`cK1mN80M)S!%Y=k*WP
zBaOFf7O!t@B`(_;68l^gG%9%<vS?dz-d>c8M><RFsYyiBq5#sW^Zf95oIy*Q_TW~V
zm+G(4`o06tcevT!BD~Pao-5;0pj_eoX)F&jXZ?RHoqIUb|Ns9<D1}N65sHv=ieXMk
zD94=3VNQh@-VU3?kV84MoD-u6<+KSC=6qPl`LH?5X_z^ibH1<7@B01g;-A^|yq?ed
z<Mz1UY+*SaS|6R!yH02*GM4##G<z*qh;+;s(9n3r^OH`(?%G1IuQYvoB-Q^q;vV$3
zmBCN#4g+e((Ojklu4Y-SLxqMLjZ<rh+X-Bd$x=x-Ag%b+G19D!EWSp@_>7hW4>ew^
zUmSIYM#t@}IY%*@l3MeL3!1(xYq}1|&-^*3);mp(x4+NrthuTBkN1b3-X=2m8qz@Z
zH;R20M=@)BG|=2<acjTKn;4r7g1)E}Ui@<MW~-6)2IEB@a*&Aaap?)?NBuj<%a0F&
zzi<_ZgXGZvv|f&*6}47pn55U-euh7TLGHP?EVXupq-u9pN^cvv3;aL}RcQ0)r&`1q
z`8OP^gtX@4UdDHG<OiL$&mPPl(Ae>O;S%b9B2&EU)1KbW=cz1&jroT2ql$rNL6cUr
z{U)|zH}i=(%u3_@A3f7NSVK|&;9Xt*TBYCF^!E>z+@sF7`I%1Ja?4E*_9rITHa9Km
zAT!i4zNO8l=@HB~t30o{<E_z3N2VTV?fZXGw>~#F{Wb2&t(tope%D!UCkxh;gxb@L
zFf=GXamCr9cN%@z-s@C!@qBZu;4L<s*ql(`6-G>~y#6*1?!@RvA4t<?9m@xko=rsE
z0(H#Tr_@#c_KWK6*$%j#wIsu-$epxYDh#b&x-h$>^xKipC)&p6pMZ0Z?cHVyvrrE4
zBZ48kpxlUQM_@8?$Ge>>1=EHwD|M!17lB2x?z`_BjMU-_abdqpCf+-k%<NBFC^%}V
z0FE*`tmKv}kpnm8!ggJ$N|m7+@Aur~;qZ|Zu9X)UT)qk}+Y9(pMyI?s<><5XeK*xg
zY~1hp=ED>}Vm59#V6VU!jEDz(B)vh;1I!Q?SJv5q=C?aqNqxLn15#hVbE7Gz3;-zt
zsA=!X#C4!XwSV4Ou^IBUpX-HVyfLtzCIb4q@HpORSvQu_$Hh*8Mdup(sQ~x$y1jyk
zgB!k}7UiD*Xs)ucHs)E+^Pj4em^$!2{`n(m>3g|yw^r|5>m$d3PuuvNx#cO?9IUoZ
zeY3;+c%{v}o;*c8!c^cab4bD@M{c^m<h!pP&$yU8Xf#iY70I}ay`n$+U!_Kke)e<n
zM#U-=fl^n-_YsEUA+F~&OX@uCS_S#d#24=Qn%yO1WjM>WhrgrhB(H5rWQNIS8X5hv
z$XKE=fmAj@z?QYwdpn~a4b+$_q2!^ToU_%W^hhj|c5Lb-D4P`_rvBC@ZPq*ZVny?V
zSk8d9PPIi`J6y3D?u7gUgiv^;zAuxfN59?Lo%%(=2Z|?Q@~vSb{Z5gAc5Hoo+lL*i
zQ<IKivRmLo#gJ#CRT#o#108mT@Xg}@%FL79875n)Jt6xH6IOZsFKm~Z?m;U2+05Zv
zPMlNF+V`@ny1ZYFi#FnB9O1Lrt{kqN;Yp+<RY?28yzcbRhqhsF^)pYx9gw2!-|MQh
zR}}!lx}Ek1;#U6u60{m%4C5HjMEy>rIkih=@mVp(QN903a?U2HpU**i@BI_x7Xn|?
z+<f``YYX#8!VZqyIqqKyQs0IC7``gOp16EG)(M{GCyRFh)Frj*ePn}V%ZLnm3gj4G
z{0KC0$1=TcHUD<=VtpIS9#qM`WB12oxGjSzzfjKr?%Oeo{;0R*<VE^jA)2H4Bm`$v
zf?@%!yDp=}Ri2$S3({RQwuJ-LA3^y5YJ5+<>!v)<UtA6I4NXwBWJ4+p{~=GIxg*x8
zH1}a)4a|pc7c6%@A0q!vxBU2TKseUU2vXA6L|f-?uql)I-AD<NCSRf7qC+QU5LN1f
zdG&g;&~bUxJp3}!ovpcS{F9vwN~FRz#_!{Vo+Q@!?R*bHV#n!iAjXz`>T1oj`{PRk
zCpQ#Oq&Q_Ip`*W(76G97G>TO^-*0W*0>3vm%KaZ2%biq(`NtIvG}I_lzx#9;;BPQW
zc&a+oPOtQyq&M<}P7d8>j9snx9Vb<hwBxfDU4ERb%2@UMBE{xKyR~LxO~M|K=-N>#
zjubw&3*YN3pi0!BUzH$XQYHFOO)GCI7sf2ae2ZA>F_>Z(vFNWkTbexF6stdi9n9&J
z?Gz4S^_ZJIGG+#QqL`b-oxCSC3dWWXIvf=7cl1QBa90*DvY=g??$4q;pT|GqD`9rM
zhW$KokLxWyLn>s9nnRQG=>p3nWMW-)<Ik)oN|fgO(E0Z3TITE*os+K-;%{S`+&<?*
za^j2LPClL}_on|3f8bejHUO4AL?kSDW<}#6o%EE2`SN_~5568`4jMmKE(gGb!n6Pw
z@**@y-ng`XT-fR8xis{=1C(NRqzMxzS`g<K@3NpBDlIJ>KR64DgIX+6y*H(!I38&w
z((8WYY;nR_4qW8H)cvZf;%i+lAN4PmdAgaQjJ2Hh<s%#<CEJ&*Wq2nZJVf^Hx)M)o
z4Gh=>FnkAqp(>|j;-oO79tQRlc?9~aom;j53)6494_>#)o~yfxC_|};VQ&J(Eaa;J
z|INCgq&0cM<j@+^F62a>wN!IR2jS<8MzFr(dw{5)y$&hai&&A9VF^un<(pO~?^jxh
zWA3@f;*XG3%T=y72sK5R)ppXx8O;cP(SMqNsx?9Q0*kV)Eml+*J%W-Ww{w*QF7mtp
z_>Qb6V=pVst}3Wn#S&A<O3Nuqz{XNR!<g8~tLnqGS&U7*@p_U4=Om*otkKck9laYZ
z*?FInkwML`NrdJTd`rZy{NGGeRFqD}g=q2DpVMCQ#<bo7ro#))htrg(=8TY61{J4h
zk9+iqyK5r9qzwa7@j@CeL;}9L!G4GxBgCnQ-KN=;qHOIv=N|3DUp*!7fcnK83s;HR
z7|E@PrQt}->+i7<zoQ=B+M6Lo73p!Q`l&P@EL69@Q3T|!m&sMuc8+S2ev=C-;F^}G
zJ0g&S{SbO1Quf`hZPon(ynh6vKgyn*F{=*9mkT1Me)u%0gbXXZuzGA5kmC{Mjq#Z6
z<1?%fQoHs&Sg-O;!cgcXuP?CA@3f%<n?LfTrK&Ge(<aEL;`5|7>Puf($9*Jm59Q0v
zxD(u?$-l(Ac@9T#{#)&T7e>h7<i2)*pm`zE&1l=%6q)ChF)1|)hPtqZl39T?3#~SL
zn!lx`FQ4cIl7Y1j+)*4*x@}PaIBX={hZyX62jXqAVMg~hE0<@>^D5gP!3XaHFp=D(
zSO&Igl=Q)azj*3vM?kkaCXF4`<=8m<<$4W&&9{=P3i2vtVB#$vX~M;|sSCX}(!`av
zW=B6_ovbBa*5c^_@!D^*-KL(<`|~Y{mHMjw5}XR~Q%c7%308P-Cc^vQ70|9w6thn$
znX%EnDGjyr)(sNue)tFk+5WHKWbMm*Ini+=5UC%~gv~y0_i2voH*-m&b(}rm%OWV+
zCx8iOOah=7ibb!DT8lXv=S;IKia+doMD@32RE~1qs8k7rijs@N`K%V%oj)#UB&%Ej
zEu}%vCpHTnQ$K}Ptk+!-VDkfb8^xYT_e8>+o9v^~9SGB%h=(T7^sGiON)Ro1uC#4^
zsPY;%sCrEvB0V`ma1nmD<uk$4ZohE4B?!WCn3&mn1TL|+&v5mmP29}riNjfFA?^XC
zX`zP!a|!Ea-UM>x825S-bpFHaxs;Y!#jSZ8%q?_?^apyZ7%o#fDTouHSLidLtDgJj
z2ID2GMKcQfJ+0AzcvmWyKO0I=MAV@_T=T&A67ku_0?lil7j;*+Q!H3VrC3boRn%`F
zMm*&@;3s{-h^VHMGx~p%=Q{^m2WrBHv!?{<X-2A9`YgHL1MO}|!@GjXKKFe`^UC*)
zd(!^^rbL@xYZ?<QV7o0V4<)<5s?n~LH_$5%O>N}34gQwSk6&R>IO_3`lm6eF#z#Vi
z;P&c#kpftbx7uJA*vySNlO}Oj>!fb=;Wlcm;)8*PLL0~8j9pxbQb9V?)5)V8#@r$8
zCf%0le(=6><JJ@}i478D1g&(gtmDM-kOI%yvQ{wa=oG<qXVBl;%r)!AO)%78v(U#v
z{_unm#X{WKR%O1PwJk+*iM`WbzxlDRPk4RSh3yJLX-Kiz1vyCYt^)Ap7o>oFwPHZv
zS`LT{%@oysYO6RKA7o08EAlskh)?_cCIv5**9{yA%B;ovg+7l54<5;CDI!ik>bE;v
ztt#7P?X2ZW8d5PYJHn#%7eA?PQN|dCZa(g^IY{cFv!{7n3#Fq`W-A`Jk)n2bNO!t*
zl#&o~tc8UCUXi$!RwJZ3)m(AQ>A8|;Y|vx99d|;=Sk1hQps4bsyRKuSyV;AVGAzSW
zq`nej>gq$k(w;`wb_g)w;QgO{=D*G!TI^c+!CPkm^fe4^)ve|bQ=(%QfH*#xHe(20
zaTHGQ&awx!fOfb6#>@PBf#Po!u=JxDzAC&F@`wrH{#Glw&4IYt0l$+wzQEycV1jB}
z(bXniKp)sCRcS{B$G8{leo&EG2z5}x5Z>Ot1R4ZYs{SNgV-x_n2u}EQgwZPXhbSc&
zg&pYc0Nh@7A8nP7OQQRaU3&B*+o23xO@F3z?<p=d-2ezGwPn_Fh?@(|u{9cMhLVhS
z;|GI$VYb+&IpJotGrfSfnFsfff28M-xafDxA4K!yg&s6ajYsouOIKaqaz5OA!%CyW
z^Q0)AS{%Sk(V&N2Emu!}OvPVA-Se<ossF}2_8<pd3f{vPD=GH<=;vXcaDg_al_gx1
z<TYgv7(=RLnx!D1zW<oAl>LUBOMFVZc^r8ww)MpR%7`5B`4H93pWRzB+oPe3|HO`q
zk!1}!UHXSM65idX%|csM9CiA}Dbj>UM_!#lYf86TJ#5mNxq!V$`D8UT;QcOQ>pQ-o
zPX+s<uf+z*JJozNnesc1m=D7op7>FZKdFR|KTXM<aAYPHv!pJ2z_YRqKm(YVT%k`}
zT>As-7X3)-C9$S9zR?*XL#M((;#Vt~F5(13{j2OB_CC~?Y(;YW#GxtSFAu^02GG4V
z%9~x1yBp9a;72=jGGbvz0<4LQh<yN06neS)Wp@m_6@qND%Ub&cRIfA#%ZL%lMnHeX
zieu`|*ra21YKkhgpJF5;8m~-kOt%bd%~a`jlFs#5;8P1}Y(C$yZESvbfPS~q7?<gN
z_Syq+!LFNov^xD;TG*LJ{}HkVOJ`{M7d~3ZN)Jw&tFbCRRNaZld5WMpHDI9W-d;>p
zkkN#FrBu{=hsCLADbBpD=^f4LCDzL6?OfQ9R%qp@0QAcH(>2q#unJ$bmw2(p>nHd%
zVQm9HdmjHXSf=9{-^^KU$dmq?N`=SCBmV(4Ry$PQtzY_A!AKloe6beY4sRygp`#^9
zkerj}7{vlPbU^{n(Ix64ECksg2KqEva$a8bJc_@WDi^TdzxaN7yq#%MjHUgu)9gc_
zt&Mg)tCp|hd!VwS2Nk-d4y8gxs0!`hUC`iPAslM_`@4d*?e`~r{Wwl~2$TbFz{`EK
zP)6Ab;i2(Q@=d!_Qu8+=g|$*`fT4u9rwQ6VWw#(i8j4Phnswu``PRo)Taj$E=XN0|
z;xmskVM6PbgCM)Gx1b@p6(PQ|28L>ez=&U{x|i9lVEsRy?YFgor)Vx<3ttMM18YZY
zvXvbsRmMkyFZFC!r;4Iu%a)LwB#VG~+=(*|TOq=QVZ%=JRNA$XgQT{;`}FfX{@IDc
z&wT4T>wDSI2Mo|8`ykI=6ya`QCngs{r^la0+0gxJ<Je7gi!cj7*$+FndGCW+VHPeu
zo$OYlp?npJ>ub7iBHfqVu4i>4F(-9rJ)PU!!EYmjsWKC*K^P0J#Zmm7PwNG9FeV2!
z0AdTujx8mp9so<ynH^y-<z*d81$ivvA3{fA;b17Z=trE9I%&<#=BhW5VLcAm-k`KV
zf^QSQ7MR2UP`h4SE=6$0(X(oQ+Xx2Xc1NM#3f>5B2t@5vqG63d07hwWqOL(kW{M^y
z!gF|34r(kX@@x8}D;wL7TW_u2_y2keuOJB7UGwzC^~j*h=Uz1u7Z<GeKkR(+>2vKn
zGUQhm^<r_WRa+{@Z9!eKx1ZyaEt<Zcj=gNFk}iO(`t?nBBWPBdS^6J1K>=(`am=l{
z_qJcxSA*JCp#wjT^=Rh)*{6wZ7SWPdII<;!(v+8caZ06;lnKn=tMkDkP=D6XF*fw|
zc7wR(mqCfJZ1x0YtO`x+!jV8lwsXS5*;`hcE*rxDr7N4Ltvux`*dEQDwJZJKOxit^
zA@}+v9D~_WkC4e0{Kh?J!AZWt=|#7fa<uh4JMqLzAxYMA1RHld@=hwLN4KqRsWbo2
z+CDMb!gWCgUWM0Rm+9f7jb$#&hCx<e4KhE2SVMxB_Epwt?UWxO5mkg~M-3EE#QG|+
zWzsR}?9mIBsel$ROD$P`S~u)~zuCDYZ$aW^m+D{$yHx`Sk?L3(_UDANdB(rMj1{&?
zG4svo;A2;EKxiXO1B&|?d^cH_yz<GiEDz9Yx-mODyAY;q3)|ol1*q&V@sr2EzNT{2
zTHhbR4d4m{EK@q(bo4}++Fhww8g;g9y|rbv1H63ivG^))P!wv|pGw33)RJufK>S+7
zLJX8Q5(ylP-x~n19gvtC&o|ug$NtOOj)%t|Od9j&k7W3=hGz8Q?{Dg6J2wpnTu15L
zeioi^@L^7cMz(RMk#*he{n^C4v+>Ez_1AQ7<RMC>g}c*1&mGU=;`aC9jg)<_H?zm5
zfwc`OH2?U|R}HsV)f&bT?is!>jzjS5+f!0)#-jLlJQs@rO05Uh#3?aiudTQH^qL1}
z*A?%foI^?WgUlHQgX9ot@2GCgb(i#E%cV^Lg2BycesmAL6sqWsH`!Vz*<yC7YD{HW
zYH0ZjZm@dk!`SBY+)8fOo-4tUQqomz92Jux^p#WlL${9kye-{g<tWy%wdAr#rb8ba
zr)ShUvy`)T;HbrSO$?CW#QosTlG0R*nIMtMS@h#g8+x8g*c+Gyl+;ge$+gouK+{~u
zgr-=`Rq%lRGM`7nO8S6a4jFu%eb4S06Br^wtkUqx+FA?HZJm@OIvN4(N!QjZ#$@~&
zx_&VKNkRN=&M0R?Oy~725i!rT-KR)*CrSvl+pe2h%fSUcOY9f0x;dL?UN%H>b4eSP
z5qfR@F|*g5<?;is#{pSO?>2+FI>K12;*GBJRCRR&owl=VG#Aj5>hZ?Bz|j0u?|Rlq
z!y@br@&=<Gi59_8yBg$xp1eohT=M6?w7W}(vfx((3IaJ8A552Y_J_K60&BiNEjVuV
zaW1vNPPF=b`QNiuD$QJE^ro`@9_`lvwUR%W=JoDupJX5YA*^+ELf{L=xIe!zBX@=V
z{7QwC8m5zK>4nx5?kkr#NRa^ClGx<~-wCR3%(dy}7mx4NO3_gZT=e;7feap2{$|Hd
z0}f2RfL+Y#1tqRvoF||!od3d!Ugo`&DZ@lU0x<DIzC}4kU`-Fr7JZ<2-2C?;azSna
z+Pl~0-PeL0cP$15RMQ_S+cl^d+F-^BlIy6;lJyRR)yBs3+MsJ&nd>LqGD$K>A~uww
z8Ge47Cmy(QpZRv>TL(YC@L`ElwY3lzrxI>Q_MZ;&I359xWl7$XiL!FTT6+<MtnGX+
zb;ZYjS(hfiuZ9w)FtD30?A5Gh#S*d+;7(jiCiFZd4H8`A>5>Qnm7CcrpQlc0-+_*r
zp(St*pj%ME4ruonR*$#box#9>+8N)*rwG5RxF>N&88Lk-n^7SwK>C6KKswtY&c>ZU
zi}+$Zac}fD9sM8H(8l*Lg|!;U4Zom!|IrPcqQ@_R+TqWeDjHsdygmEXw)fDC+cjuP
z^&->i>XV9XcT)E1r;Rv<*cFXCx{Q4CBSvZp8n5KPdnz7Z`LULVPc}rPOzm#|WTYul
zd7JR2y^|QgO4GJ8gK^Ng^ydKbR&f5xTw1EmQ_TF)X4T-b6aS#>gS2mKrEL?cbMh_4
zIQLq7=c?m-3-GeO+I~bXh6#RqzSUXX1c_@DN4GlW`3Ejs&(*}(b*Gmq8#~r+uLOAD
zypBI5YSWzjB3JB#iz3ep>`Ph~q`-#ZX<tm0XI#_-IwN07CEzD8jhppB%{8>ik-e+R
z^6QbK_9RpN7@!;3>@RzEUkP;i!)7@4NJV}{uGcAQbkZ%V0IvL_!8}PE>!8d8T9P?7
zW>*oyUalrwtz9zJhH@QMF38w??;XU5VI7Fc!$+F_Pi<vRe2H=_TX=q3+flx|F`ja2
zML>BV4)Tn|RX^);Cse71*=oLpdo-ZR0%$mwl48LGgAg0**Pr4i!i1DvZ@*}28nW}R
zByi+|0+F^9-Zh6*yXTz|ou!>t>0C<`qorO31udba>hL%^Nv*Ic^oXj~59!r-Dw)q=
zr2NrTs>Pta2k{U3Yez`zz8PQ-mjIbOUTOfUMTL(-@zOmuKu1z?pS0|+0kBpeO1$6G
zCf*g_l)rd>xe>QeI9s#%htMm0eXC~SgVQ;{5VYdPE{++6cNE<<Q<N(RwRrTcylZRH
zLu~}iHwnZkA|(lTs-J^=`Sc<UT6-<6?v3BO8A`uU4G-9-gme|aLiaTeW2AOX#)u_j
zONmze{fbn&*JV-x>92SvX1^%&PQQ!Q$B^~L|ILROI|TLlpO+_c3)6R=6jdz-D~!3N
zMU4pCt~P*cM>fga>uwHgNfz&#xVOsoI0AIopt>i>{_2kr3uQS#y=i4q<^mIX`shIz
zEvDVPo@T)IQC2uR8NBnM1;SZ08qqY%#wdVghrcT&vIckAzAI8`y$o+#u4VPI`!omI
zZKGS)nBG1{4=Cy_UN6Ce_ID#55|88kei`DO@vAgeqvy-2)dcPT<w71khL`KUB|9I^
zYT3?~Z$-_%i{w`$^U+AyO7_I;kOyizRbG_f28iFQPRj?RZ{_s?cNb%~k4TQscb9D)
zyn~O9&zR<KB(R(e4yiAC{(SEqQ?_%%zL#AUPo<$=26Y$^U7PgQ1DBMSL=$u)OE<nn
zT*rffgVUmXiw!EtY}9Oi@<!1XNg+Z4E?+OQet@W2%7dbxFR`s3Hc<vL0wHr35f@fA
z2=+~hy2PtluxG13wXX3^dly+Y>5!s`4!1w8-sbR{Ywzbr8sWV{Gt{wf773vVN>8SD
zaMu{`AC$HKnug_x!#&xMfU_29B$g}r=1mic^&hgMA3skX5>5r4d{P-Rd_ZX(3Rg9L
z**1=OAJ`XHI$d?1qI;ad;H-3BgS$WzS3cByE?#pe^=_Q$H0bQ=`CqkvLHTikZY@rq
z2L2e2lQlqrBX258O}b99r9qY94(WfQ=Q0P)92z`=tSHCi8NV-Ub1&0RnX|>GNHWrN
z*w?&;qoCM_wVl8%is&C2?VPv)XtzN3%b9sd<)l981pAjkIo?z4k4&_Ekf<Fuw~b@U
z5Obs`$fmVXALA85v6-Pyu;?f(x#a&qeJR=a;timI%9NxuZ<Tr;oRHxC-BCng+fqU^
zc?luiC#<7;y|r?d7p=RVeC4*We5j=+2{WLmx?8?I<hY5k`LS#6Q|eag`RHBw-qa(g
zyYz>23)>1APf0(Ohuwhdx-%j<%%Umd2?vDEGg9TyxDt=@ZRy#}>I>dDzDIQ9+Oj~5
zvJ6EhIA`}jm;&6u7Bg4SbFVsSr%AMD{x=xQe+oFH7;FjDBX+;ttFZXk60=4%{*U_U
z^?!FAD!GI}GVQc~>TS_C9TOdH9$Cg4vG9!NUv;|YqI-0}rluBeq)9dAau~Td83wcw
zv9QJ}L5p`+bX}3o#O}}X)p#FhLxa<*%`B`b{B#HtM&$XWB6a~wc5f#&{X1d)=LdjL
zhi9ZKr)RU<G_;Aq&rFDWcGSzwKZ3)js27_F^UPyvr`sYesg#L(DVK66j2>z(C$|`H
zp0k+HbiKbS(QPD(f6KpaQ}+=sD?II2uar|zy2S>s>OGaL&<t2N!HgECko9w{4AyR8
z1&;)Yeg0>b(6!A22c`L7Rxrvzmn<s;EA(k>u>q@fVCR`tU68S5R5o7=u)fHS2Gq~N
z)_&JpS&(sNhY>R^IE%!jrBkWDg;k4pH6S7(2CyR8CH?KiX7Y8<S#XFL=;|Dz+1!o7
z!1d2u#&ua&+sp0^@Ilmg+96+@s1Lsb;5||Lfe+M<`OU|Tz4#$U$UOfygOyI<MGJkx
zlOAs46Rrz)={(1r$`{98UVJ4+AD1|~m@dw4vvHR<$iSdS9X?al<!xDFoe>kZ_@S>%
z#y_$wc<K*07*;6fs5_88emMTM!@kCPj@D|M=$gg~=`8e~5?7b+F^0%T^P0VVAb{+3
z%ypn!aS~jp-K_5Z^DmM){8Tf*v4a>tSJIXog``AF5}%fx?Fiu~m!YkgG|cC=u3o;5
z09Xu9=<@3xI?skaq&whI4gf95P2_Jg&G|}|s3%L%-k7P0k?vK3S!qL?*4-BOfAd**
zmrYK#FRx#}SU>JIXGVc_i0_({sNB9fUd>Jc2h>CON$t0hUA~~V`J*~y0IV~QP|=#P
z-zoqn7!hAp#R4<1REq?o?yR+`lc8+Fzc)96dwp5{<I8_?n+T9Fo=Amvee=yIaBj!<
zH4J*a+NxJ3hVE)PKIHPI(9f6%1&pE^AH|C=UxMEU)jNMumeHBO5@ht_PK34+*?%Ey
za2g!tPag@#dHfX3hlfDEMMN?Tr}?I8c!?K$SK<c&sdT>!oyEhfmtdC_g>BdRwM6!;
z4Z4a|S1_4IPgYzVshIO5s%(hncb^x{>q=c>nWIicSX>QzkgEH}o%YO<4oA}S8eorH
zkk6;Tr0jLlf?j2srUB8{jM;HP-EQ@lfLd>JA)45Nk+;p<Ehfg}vja;f3x*Zl?OgE#
zlTXv1U-_^}@c$r+K8wv=!^F%YP#QgL6iNmDGjrU8<32HYL1lqS5PKO&g`cd$g3#|-
zBi!xLCr?PO=+^o^EfB;9sUIA(ks$=r9Q0eE5X}z*Q6(y_>rRkLAb^GuZ=+SPYeC|-
z#<&={+}a|&tQNdb?X=5s2Vldqi*fgq%>nEL-v_A&PJo5rDA0@t^*EVlQ<9~My}9ml
z<;URgI3w7qZl~kk{~PLmDR)do(gnomQ>EvmdnRjpGolCcN}3Ufb%&95zNo`nL6nXY
zz|E7m-{Ej`{HYg?2|4bdbP-YJgf_LvB<3@l?#t*bDV62WLPqDo5{tVLu`sTinIj#p
ztBYfuYy|@MET76$@#HXHwtexTny=E>@b!q7&z*w<YJ@aQAa`1+yIP~XP<5Y@Pn?JG
zVn>X>7*zb2;>l}cxN>B4cF_HuFVr)t4ED?`3G@bHX8~cYC@Tj{yuW60<o6NWWtg%<
z#a5KTTH*oftSr(w(|*zbScxZ^zwuul0fS8ZS>E;gvmVlb>ZuoVx6@m7lG$u4j|I`;
zX6|b%6K2m->Z<ALfh(4bl43JQFy%KNe?o4AO8GjBJtBM7f<)R&JP7%|LkAUK=MXel
z7oAwRzA2;iXTysXl-56QyIS7)F9zx`6R{$GK(n#{G-)~$jCYIwQx$6Rsd)Sr=-E%c
zon<X1-a#s5Aryl0qgjsFYQ=wXe~l!c38by96=r;Rr~0GG05jN7RVk%xbwd>=p}9Vw
z72<RtoLW%Dl5__h8C+@wxT-~tzPiy-&0&kMtIGBD2Uo2!e@p(pgq8g(w|%)xgC(2p
zLbELAFYA=sprwSy17)loz|UINtP1TTSVrzg<q(Xsm@TIhqg2mNriAAnZ@4qr_0|7m
zcW?FED*Vqq5e#hP)Ghc}a6-Y5YLB9YO!VtoN5y!$uA$pUh+O;Kf|-c2$di+k!7~xS
z=b@~n&d)eemf!F^-turL)Mjr8LWH%H+-9^jCa=tgzDo}+lL}HNgX3}^{I#h_y9}yJ
zI0dwHgFvBU_=q%r$4@^Z$2Qvqv@2T*7qDg!$z|3&&7`Gfo-imuj9{4YM4J-IU1fMy
z=an;lGB(4Ll$SPBP0mu5KQwmd&}8*oK`D&#gBSpAC2si;KQ%MdqG{98#z!NW3m-k*
zd^NP|QXbevZy?V6edCIY)K<D9@6|~%yyA4rr2zeqC&JtE3aIy$`w2S@Y4m{Tmr-fC
z`-v<wKax#Gzw(Z7WFeOZbSG(d(I@VZ>+Rn_DKDK-;&9iV>&R>mB(Pt`Lz0|*^Df+?
zqwatR&VfmPC_S1x;zDa~+;aQs^VX22tI`uJ9h+c5UhSsUp)CZ3DSL4C*r0Ld_Y(-W
zkf|j(Ncn{{pD=N(*vaF?^#hS+ee4t;P1fRQ5&JDkbfX%-*lwyB>GQeDgqsI~=H}YS
zhzbpt_$J*~gy<f^^uI)yiaC_?c~{k>Dl0ZOk|+{=CI%V>-V}6r@gfu(PzhV5A_}>H
zj%B`hQexNUCiPj{7CJY&YF$y%2Rt~uhJP%N6L81MkGDLiff}uWNeYAZWZ#+f6xhbj
z#w_p<t^M78^{<y3SgTR>ho>k~mfHdfZ(JJm1EbA?wH;06X6r7YbMW(yrf>vJw6v&s
zwRVD0F7PZm4!F=F+?YJ!dVil++4jJgrq-6jb~j+(wimLHBW4k2w5WU25P^DES9K=m
zi)MZ1&KkO`3;cTv5ycPsU$doIs1xlX+xztsPtG8(S!tro0!(a;dA^)ox|d@<?)ah6
z#B1}T+hqH{;($1#i0b}TBnfBYT9Sq%s@_nRyWoF8^E`>Vg+D=;nI7ELL@C86s;gKF
zb);eY0d<mm7yZVPD*jmP;2~re)MbO*cdMI!wGk)*?$YuxcZ=d3mGu5xdhcz4IdMh+
zJK;Ut?@fqs(3SLSfH%SbG1bIOF!<v!oDuzK=BCwRb@mo_McO0io8)@c-4J>{E79Oa
z$}6e=kPU6=0HT-ZU7BJ&l-`TkyaM<yLYl?L4nTuPe;}1xMEjELSPvvIuR#pU?M*0Y
zV1SxH=&-n<S_d?6HPnEHPy6Qh;Ke2UZI)invS8Beke|i*^ZMMHSf9qzA==9U_Gf>B
zDh@bxMl&v2#nTlvUX=7Z1E#>w6J60MhXISal?o5q4VUyCP1}WuZqama{_2kO&-nwv
zMa_r41=VZIBxfo&jL)Iop=92zuDccUqd_PB_!8QPBpYzWvI*B9Uf&pnKe_w=&31%{
zR7=J$GY6KkMZBI|2dn#|d=TfS&=}|KIo3YC!Gf=KvYkWOra3XLs1&n|zN)11xI$<W
z<YI0hZQPPaxuh+qNAV5)n5||Gd)AmFEe8;HO*{5rZw7pr#>7~&$MrwJcPb{0-pRMF
zSap(<vn#ni8BWkwwW}T;b!@wx&Y96lFR=N85;X@a#*x|+T%y4>bv{`}L9K4Dwu_bF
z#DEw$9?=|G=>fqG@|l%WFNM_v%44UPjbB=dt-7uI0@ACLE%S(}AffGblb0(~(7ZnZ
zW;4z>QS>!`Gw7?JHyG_Gcc1?B{9IC+N~;}P11=jM_GS0xd}ywyLR&dAu|OKNRZL9u
z*N>3?04Tva6uy8eI?Y*vyBsTTzT{@)kP%bg@(E2mxb2^??ZckWSAnnksIka?XXQ3{
zJ>W(@7LZChQx%YOocs}AI_|q(wDvpP38_Y`T=_ivwTXg0{CiZgB5v;})^<)h_e*<~
z{P0wZxl)4eRa!{VLh%n>|LPbPhVk{fJYAnjiRiU8XC9M=6`hNavzA5?(eZCauHJL9
z;?VF{iA(A?<p21-P@vtEX@-fLXFj7*&dO0^Nae9nFCy**J%G+taG75#1;VOsnU5;o
z)?c*>3%M?I=9qYBWV0yoI&5qw5}=#0OxLp(M(raEa_Ep*hdGnYxV5zgD5+<DB8Ol=
zsuNY*HNR@*8j&kHscq4g9#4<}mxmF=HeWAQe`<I${9}Tqz~lz1#@^$yo^g#sSDp`_
z$RDXfA-tet#G(b=z2VH7%b(*sU&<AVV$J2JrIpq{xAtO$+MK`#)M9?IJ(oTPCf420
z=sDYxsVkO~3}Bu)b|^?Nd1Hh;<!Cs6P?|9(-Xh$Lr`;)ldWDLF$fFJ#Q*Wbxa??Ae
z90q%VjCymvbleN1P8>Z+pjx(cWIMo8aABUfG3Dz1NX>(v&zE%@`qGMCgAK3EJL_<?
z89O5fy3!8Doc@@oNwe9Cp@IW}2KZQ`fIasA8iDzaZ2Nr=L_JrUWj$FrM0nT7lg$Qb
z4?5)3+m51>&xJfZ<$UK)zwL6+Xn6e2O;=u#+}Shg@o#4dB^=|DmDlkBBuB29PW<kK
zCQ{qkbN|?aPFnL&A6<JUI7<F;eK~<IO!{Q?)d<}O>ELxmGRQt2A+E5JvW#>FvF<Z5
zB0KimPH0*6<Ox{?Zc~j~`qfrWIUJcs;oK>~uNtQ8>F|?GR=}6Dzns8>Huh^T+`PBY
z+XZZ!dp64m7Rpzo@-c!5hlRvFz$%s~a>lR??(gF($&d!fkT~E7U@;;w0`eDipr!|Y
zd;RU4TsIvW252`5+&-i-oG7)K>#q7|ZrA-Jr~nc#0+l5~mBk-;HRTx2(@5|6c-e8}
zU$lzET87NoP`2-AxyNz6CZ5WK2CI=5d(3Vt>=fJ#7VW&>0wRh(F50C$BeB^&TtAjz
zY+PJ$V+NWTOEM6)UFt=sh8%kzoR;lF#1*0>7I9Q|x<l0}VXUAu@88R~u(Azmdm}lt
z{N{rVzcp_UDk;j%Iy7=W`RfI{17q7ohWo@Gp_q?I@x$)XyL*Y>;-?IL{EOrTV>s{L
zwzFbyTizt6L%#p@Ri?l1YWi>duANC~U;`esFxp3d2`2cp%xj~fnw8^+6<{h=_+7oR
zVQ(4i@sIL*^67@BW1pgoLv_T%mUPth>u50o+Z|c1f9LCGC!0`RIDceW@$@t)TZuHI
zWT?8Vp6Jk68XbEzDe2l{R>8=ponHhV7|_tt3PhZ0zWAcnocM%<f2?*nO#QLZ)u$g{
z(_h%py>l&EGTi+2Qyqs(dCwvjqcyxEZ}%ZKrtr0-p!)jmhMa0wO7ZmB*^JUdWoJ+T
z@WYaW@_q=q*s|KS><-%_XoXE0=hM|wbi?(L+}~PX5rp)t-bNq8pPIuolX?)PSGo7q
zG-K4!ZtFb5^p=Kx!yTc$wv8%UU$mia0s7On^5bENA9rvUrx&Lkck8ahM5zrOK1A2t
zecnZxwa-m_tv&!*kG+gdHECO3C%@=tq&{*WuS{f-HeNTc{Bz-NINKxQ$^(?X_||u6
zsi*8)br$#s9F<>#sUOKB)_PzS@dRP=Q#c&8EiA`jxEQS(yFN})^nNnDY8?{McRfCY
zNa0AFQ00`;$t*Z5db(!U%kO*Dt~gpJY2=E2<o#}Tk@gH{AHI;L2hV(CX{6VAymD;7
zyssBleMN{0FjmcrB2vo<N%<mO73Dyj&Qn;}dZEP_89mXjnTO-lA*<Jte{e+GrSv|q
z#Ms|kixCX;tEaR7tEroo;1H#6BEX(_ZQLkKFGiLfdOz#se{8!UZgn#83N1mC@uS0O
zf?@Z=kpiepRx^PSna!is-$zw4c(8VxeB(o`VA02~BdT`9`-Y8AKWTKQtCCz+bAF*J
zyuMnuMQ*~svTKIsD3a8)cYHj&I@3irgOg4-<0QVj*sEuSbN%*y|GqlyWBHuFl&IS?
z;cwEtnz@fF{w|Lu9aoHmB<p;@<lGxN4^PNT5Xx2FRrbl*d8FMI(f!mt>!TQ2sjbtT
z=_nlxRWdH%;~AFB)RV1~tnbJ}zEVB7T}@d@tW&?fhQe`7uB+(Y6ds~Ch1jgIw+a6+
zRR)~~foBzSH1e~$-*=Y~!&pu-XWc~t4T$ea4ZOd$tasK<Qf(zX4+9K8{h_^+H8mym
zA-iOxi&g|3=}s8G-zqj}Q~!qG+cW;%d;DHuDySYc{-8?eHVsW8=_UH{D$^eys9L$Z
z=?&;pd>rpH4IbEAHO`XVZ#yOM$N7Jg;L#?lrTd`tbxQNh8v9Eop;U{J-FD5uVJ0hf
zr2%NFgUMt_@&vzlP8@{Crh)hOZM}%BO_!AD@<FYoKf!Sc4~q<8)Zs31QwyG$l@T&G
z3y&@0<RZGE^+U#}>cX$5ZU%F;Rbx-@W|>w&(hDu!joKEUCi^}~t*_C?`|bq|2>hE|
za&`NAk9;%7RG`7nxc?$qJs@zt-zr#yQ|^lU^pHW#o&gAzyBm{i?&EQp5~aeKKelox
zBp3CCVefDyz)f31-eK4T-@^f9t_dJ2Wv%pEN<uYKYYfI{??n{EPP0Rmq9oOA+pa8q
zT3N<yG7w#xH|TshkSg_`X=s4XsOFm|Hvv7gXU36oZqR#n5UiYExnBdJO`z>}1`c5E
zNmjameU`O|iw|KB?@}~!ihL`jY}(4J!G$}&CSf~uK19we$C}?Exe*NuM|2fo`Br>(
zR`zIjwz6TlA`%M6f?0TklS;twJMGlH$#*Te{@^FwBOcA`D>)vUN#z<mW^SI0!Vj<S
z-!`;+(x;Kb3VUvNB|Rj?;XQ>zX<+<*8r}`$>ZC?*rCjC}moPM3dMDUKY5MBv)$ON?
zecImVwHh_F0}OM^Bi{s)qMKx$(>Vo{s7tZ30a`0w9~%&g?%GeLRt2PMaQ&jSxMM7F
zgE0<ez|kL6>NAK-$}5!}mk7E!ED%@{XZ_*dcby9f61RX5w#&L1KGxyaoIZIStBI-f
zZsE!jZ`6tKO<wS&NhT?mt#AXq&APcKC*_BhOct2S(;3eQ<qcG2Z4u4x$l#7$ODkU-
zsTSX;Q1_(A#Dlo=iG;iJ@;>3aLq2`@Py$A}&60_i>WeC$XiVuyki<UHo+!f%IusRI
z5kkPQo$vUo4N?@j8+BEA)naH&7^Ux41(@q~Qc*ghvF<imJ)`PDsVC`lGi?Ryf^ZLj
z8Pbx|c?ZHSXRA|Ixz|Ghx+KthCy)xiBQm_eZX?vt9PDlyMKM>pv-4}HU?^6?4}M1)
zCAHMND@0<ax~SQQOZq8qE_uCX+zSvtc{TCG&d)Z76>4f&BS&?E&l#*>f6_tvlgh6N
zROBTT)A1A#y=`^F1l<(GEb_1Vv&|{>y?eK9{Y0Q~y7N+j`>)gbjOTX?{GMk!<bCqF
z-?E^h6xAm{_Z!c~Uj0VtWBc9jY|>&LG4z6AZlg4c^8NR6PfFR!9&IO>WYZ|V-EN&v
zTj^7LZcmJ)ye9UA%ef&$)05}#>_ig>4CdZ*zRAqi3`c<&Mq=Pz2BKKa#hBsiU0rOy
zjd8|1u~$H!SIF<pD&ij5m<Zj1d;R2X_wwctnabBy%2`wH!L0$Lu-Fe5jt;T7Pd(1Q
z$!R7+D*CM&IU-&<srh!3o3b!%q`t|wbw9*GEr8(iE9N*8LU02p_Ynv*`S(Q!r3$)_
z%hAn!z4=?RBrOp=)O!biDQ2D#*Udb|A;swz$+Ggy^%-~rh+%eQyMKtskCflF9z6H2
z3^sh!`!DeBeC==X?gWnT{T&@jB&D5rpA^^zCvGZ%d29@egwbidmFWT<U7I<tTURYD
z_4qhjI(dZu_>8zujD*537^}H`rBrsmUmUfyABH<K#*=hNx=qLr<%29YtLZX_YcXum
zg2jf;qdxF<<73Vihs1aP#o-?f?|)%g|E_Dm*Z-7|Z!g}lI*}-E`XU1^fG(({d$kAI
zvxcUwChy=zLKEJ!?w%$|9GVGpV@-U_xqvQq@8wjNai}RXD0b4%fzcpb-#xiIUopm%
z;h|EGvSC`EM%~6u#9VFV*>#>#KejrjirnZ(|8gF>@C5hN?u(Q6E9p=a{@?jhhhBp4
zC|{+OyS(tvu@O3i&bU%Ko%<Kcd1&h&6j{NI+vyKYwfm&eZE6sX5&NPL%h0HxmP8@{
za}CJ}zCYj<q0lO-N2M0VeJR7Rx{v>gymgARnrXPh)?oUTRpFpmk$rVY7S|l0xU-lr
zIfMxII}_w^01d<P==_wn(+ZO?;ptv!SAGlIMKYq9kR%9$DB>&K#nNwUqFoO7w*L)Q
zv%iM#@APvhrD##|YKEz+3uMaAYkLJL7Q|oW#GC(~bBFOv-X}Jece$+`s>4NxoOKBs
zh_dxivd{h`kFS73J;&a!58@6bI%<DqRNBTyR_cE@w@h#4lutFiIIlrs2)}hzlHHoz
znlSw~uiYs=mM7T7OGUXQjCpLK8wcb@=kTuw!dz4Nxjm=B#cdvXdqnFdE%5^zg2lD(
zfdwe%v^Sa-$olt<%DgQN1SYF5Ze;Ipo6WNFGDExCKD<gB!;FmVi$q}P1}SSOpQzKd
zy>)!w=eT@Czpii5tU?YPfzXNgS+K6*IDGa6UKMBIMbuK>RMl9}(Ailx%AH%O`>OjQ
zGW+crw5x<=CA{pg(U`ltxlqcz%k}fX__PTFF*vJ6k*}wl<?)xyTpW!xuW3S_Iz*qa
zrWMRwotwl#Yn5VqGSo;+#w*rX0sU-ygEbjHhj#nM{HTv6EPlB%-ez(mH%h{u)lhdE
z(JuMQV;d0g+w^t(zr8;_A=O`n|C6dnd2jfsT3@i+RyS!<&*-1EWN@Y;-{6r%ZJMZ<
z&TYlOsx%Oyg}vHZ!HnJ$V|?xMe|>A|3)q_p?F^zJ;<fMIw2>tgOS=Z?tiRp(rt%zd
z1A3_4mcGgxd!kp-Ri|F>GN=~<vM-U`vCN0Z*%irZgv*(5mvM~ieCR9iY%TOHxJ~$A
zav&5l)G^CuQ~k?jDZJ9mK=hIgbCyDtuLhh1T2ROk(rz-(<UEe%nwk2q<w~_CPTWRR
zC3ojHM##d~Y^XfDpX1KQZ=MP90KwJq`oisLUqPz?gRG}Iq;_AGTc8k&zUkf%FDfwU
zIRje{lic2}?)Hi0t`ki%iI+i26Z!@(5~>))hAcJtqx<Sn_PPd;G!GpMo!J`90;X+j
z&<GTf<`J-p@do3E+<yhu8PmQRn7bI$nL&~cD~B7?<Z3=_4I)fD>$x$sDygqZi(`XO
z9)rM6D}uNi_JXax@KEcfJt=`lJ09GF<v-}YW6M?pR)<!N-k-FJzA>%Q>t_TN+Yg&4
zaDQr{ukMvH6~#z`ii>%l-PmT~&K&oLXcFKoSvyn4bl@C1d&6%{RbS^|F-+S!s@~Of
zPHH8q9FvAg+RphSIeC|UoKcCU1bA)2fzsrsw?v{7>ba_110UHEW28eESsb1Go@%ZB
zdMUuEF6VYX%%I3ug=ad@<_WZv(5rQw*UJ$@b4j*!6)#&@8Dgx>{jOD8lz*MG<Vb86
z=2m|G)8;H2W64C1qO$@*$>4HtR?q)xyn<6LZ1Z!Cq&BTL-aLz#+Q%=*7Rk|1A7+nM
zPk1{1^Q%Uv2BvzO^CKgBL2*w#HW_Nk&cwaxn><Y4mM3#Y#r?w+OTL!5nJbncwSBs|
zsmlE&XyOhHLfa20%J;c4zeB{>tQOO%fzw?v$pEgCw+xfo@>w<fd1O8JJYemOL$eRc
zP`#aDVB0z(ZR9T3DxA+wi4iJTC&_2^{j%LdBgR_tAoZK7VSwm@CDTo1k)mEF<=j!r
z7dhGi5`CSX%P%=I2V9_O+FQP`oxp_hC9S$Zr7t4Qc{y3-X^0VVg<Sm%Q;4>&jerd;
zIKXDxdLNgX=<%pdtiOo(jn`wOAW7N4{bsYJu=O3<KZ{2D%67=GQu9qAVu+{OCLjj$
zu|VJ1m!mb-A-IWN#bojhWS_Iu@$uW`2h|%AJ~bD(6tk)+D(KUuwj(=2Ah5i9N_Ed_
zQ`GaEc8?FEv3~eFG<9&?DIj?3a!nF%4DOnK|3xV;Npa15QpWPuE~6NhBh88@eTrYO
zhcBy*4;gjm%Dj;T#}*v7n51TWvqDkBi-|aL`D?Id9ryGX-r&sY10qloCaWAvU#N%N
z0S{SL1mxsq538SyQT-)I9Kdf~fFs>sbzO8E{w;<q(=@0N)C6yhGS?k<Md9I>@Vhs&
zJac)y+S1PQQ46))iLH!*aEp~<%0dc_BUC&9_1jSZS|9R}d1nGsEg<H^h{LfgdZ{fP
zxx+(OIQ;t*PnU>955jg(MqrLO^<gs5K-|J^Q>O(01Z&Cu>#q`LMX7ec9|;^b_=JvF
zQ9^$UJ`G6NxfI~S__7~Qgk#)Kl<H>iTC~1^E_ir6>>-BkKHV$#n^O;@Y$}b|a!k%i
zuJ0y``HLrQ&-x5P>-1&wAFh0(=hauZF32rxU`F?N5Vihm;(2{e=j8bF$9j2@i4VM)
za>d3?bb3Ourm>PqDH*~Bw_hO>iyYss%57zmT7yOOD~$J2xkw#qIZuV}IUIgBs*{!S
zLKs2cqvA{@KQAwam)*g}UC$f(n7k2fkoRTs><_3cnXc}qAfK8@2SaK&<8W2Lx<BeE
zHT_SYHj<e?)YnYnFwydH9A^H##f+p$Aj{l*`eOE+pE@+D{J9#ZzEHHmG&WQo8f&A<
z-&_0Z8mPToxr4!GV4?mR)<-7uMb3hg5o9lbGxH;xiw@zN$j~LF?u*Nv&^|gti+?!5
zI&6yBXQ!wFSdu`Oh|<@VMALNqYhTkG=dX`?^svLvaM$K;YCPl6V;fodO?)x)!mdww
zTn4(Pycqy-kI>*WjT;zUOk25>CoaK89Nu0JkYbVe%Jc8Rklfb=vsFu?uyHwjuwZ?q
z_+iVB)Xz96!1i$!VGah{&<+=j?9Ft!u|svVs}{`mt&L^BNDA9@r2)aX!YH$+u?(og
zweDU~qf5WuN<4UFse(c2#WP5MLZTQ_jBWW)gXdlmpA_&#sZ-!dlXF(<xmcHV{RGur
zGO&FQR9q0|5U}o^I`&rQeVLdITaDnEEIU`1V8UP5{KXLE9|FE64Fo?oP%%NM4g2h~
zNRmYxe3`N*0qS-XAA|Jfz(Gu(DgC-i^pFm%?dRbRRMP+t_!k$IE2%XT+qc~>S7JU<
zw4q(ALtRMS#q|N=N2rF%D0PC;%({zvKpK%#uC_ZG12w$&enI$qY2b-8q)#`PMe0xF
zaN`_lN?RWP+v5C3M{WGDn-k?K1Fi4`=&j*{IpekbtSIYy=mfi{PRef>(tVUUv_TE>
zCR78ZeSGTzO4j8&xh>dW!)C%<?|kObbGaZosM$8OH-V8DY%6*?)|Ayq_;U+e@M?6s
z6XQ*%P_S8{2rj$~YLnUlrzBN<klS*-hn|S4*5*5ijHN3$RVu1#UCZTNlEZ4=8g3+C
znq)c+wXnd5^9uHBgX}sFxR24m%5a^z^1(sDbKk~py@|vbLmtqxlgc~&nK|{d$BiXb
z+A4|E(UtXF@dFQ|&RyK$zm~2dJjW`gW!DX>)<a6-{jOdpU<1Ive;bsseIXb2yf@b$
zGv!A0TS)X~VvczU;&ave_Y)3+%RT7qIv9`Da!LoA6~W~z%w1_2S*<38@b}pVX3mCd
zsUW!v%v`XuI<fiPLhg$p?<Jqev|T%VVEl1lx|dVMtzL0d4lCSDV;#SaT?jbf#LK=J
zyqe{?i787(bB6iSQL9?hCw|G|^64sF<x}cE;~r2iEyL>yCnuxo1~3I?2!Bi2-`6SC
zVa%ZNuj&-NV&5hAzUDa(uC|upI_yc;dOGh5Xm!mS2u*~t2toD6*Pw#)#dEITCIp;%
zOrdTI3$eWfkF_@*BYGU#Ok?PdONf0N@`&bc7HjhE7|1LJ96-*PKH4Nn9?CDZ=*8Ub
zw7$gTMpHGlpMGU($GLvQ?A5T-^O>_a6DR4nm99&sZUKLN6|0Q&Ysu9#!bO+Vi_(GZ
zTv?v<qN&@Z$p^1^{bD8E0xxxl{dg$=@2YYCVRn!Cw#Spd2$ZaIwX$K{2e0n-ly3|Z
z+YIVUzaRA)>eQ0ONt2PG(?u6wNfhWK8+zy=3LV<rk_qWUX2U6ORo(jz`g}Wl6}eRm
zudigr`FVG9Pg$Eldn-_PmM0;@l%O>?(f?A7d+7UCzi@O9_9YDh>x9Fwq(J&4(lgG)
zL-xA#N=3wOEJ+1xY18Oui?$1OmtOrU+l}Z-EKe=6UNkaBWAqfD&+~C{ZNjyykCgn%
z(l5AkJpdKBB`8Ow@8+&OiB@({vRA1Iq!&i!xxLE!)VKdfSvQ9iUiRO{@zbNfYz3&6
z73h4x1s(FkcHzL_<UK_RbU_g!rk1QYE$B|Y!8^`^QFgs~Fz)+&X>`r)qtp+a@Iq~&
z47fIse$MA#ieO#ol9}=S4IIw3KEI^K=q5}A6b(vg;N7abiP?_fO~a?FI(OAOG3xba
z{U1fw9S`;Y$B8IHGO~`MNY*!U))~pj4x#AG%DSUC<Lpt0kezk1L%540XYUnf-?_80
z_c|la_}%aSd%W)+@6Y4&zSsLX0dtmjo(M;e;okdMKQ=4u6AJ1&<*u8gHp0zA*h#PD
zyk1LuYH&YdyVbj+fd3)g(zTCqmHs{)ZIX0_><DMV|Ee-J$yZ+^Oa@gOJE^+5t6ncF
zGae>BFuV=dK2#)piy#Zb`ZTW$4_f<#$T0@++gETS^BoDf&e4g#q3<rG!41RnCRDx0
z-?T*g{Z#0>Pt-)cGGKKn8;4W<`FAS0eDk*YHoR>6?o<XrpU6z8T#w4Kv$|5#*v+}!
zJ-Z`9?Sy9bz}4TW<OUy3a=1~RHnlm-6jDW1ZHYUnuB90&z51Pd`t^7A9#RpkF+w7C
zgX0ecFv0mlDEygRk3&b$x1mE$_+tngCVml}zoG1l5Z>oPWrB)gLwX;umFm&J&6EY~
z!kHkEyvTt!_Q~}sMw=~^o!~ffg)s#hL0>=*8MfO=1`yn8#)KFDJ|*p(nwSdsc2z4L
za@oUNzztrSe8?sP4~RO?nxqcd%6ORI2D{&^@b^q_KKaM-2lsyTnfB$L&85+1!u2qR
zw0s^}xr2pvgs^i)e0@I$qKd<&{rZ%>c2UeDP9^!iJ%v7z%*2=ud;6CfR&J~<58wPd
zXSDo=em(GjcEZ}q5MrYBW9!*X`x10}5o;?UNZb<p9dPxCuD(6>?9o|-!R*_QTk<Vh
zF@RR@1DM3t*p-?jp}Ru{Yo*%d<}fdYIn)L!D~d@0i`UgY7K9Zp5Cw<$iLcnzi5&HI
z8><=SeF`0PfhunKViG(XJefn~gNwri-Wu`1Y`}EQ630DVlzZfZcq%r;(|Ci$N12j`
zlqyDk&3KA7`kT>H1S2r66wtph+#9l%Ve4x6d#u-i0ndxwV6ggt-*KQ%cKff2Chh2U
zhp7T*CCtXo)z8pdO~t`x<vQ3b?SMTThc-|`{xZ(G5F~`&daFLl@uQK?u5#<y5-Q1J
zbu(lSWE<W>T1RRrAMdZCBrK4kV52Aejj{Wn=7?BAC+qjl)Hr)`tXo_K<-ERDbI!Nv
zdL5=TYpXhbF%7^jCMPD0()}efx6IC1pkLVhrhX6FnX3xkl{_Cflz(l#su}Yb5f$;x
zh*w$IrQRn|P!rx$3>jSfLU1OhtL}6f>ls%SK6mp|RC!q9_}^`Lx+ssC)hm(8N;QUw
z9&e@K8SpQQrt%>3#}FN&j8q@D60u-<B>KyCDt~6p=t>?u@3u$FaJ{Wf4BtXiKo{SI
z4syY<Fteys;VTU&oy~0rb$_5+0$-2~u-M$3(#w5WlrMIp494Lod{JxjxNl<k{L0Y}
z*tA4JPPExt=~{$u7}3E&WQq=WqCe>Q_oUaiDJmQ}d>EiYzv-CBJO8(h`AMM=QQR<A
z1Ee1ysD7IPinw>kRNCG|RDv6TmF!p})vzR>HHl7Ns&eVir!QvK@raeh*DIiv$dIl7
z<`g76#_XW`0rv2A&F5=tS}(DJ@qM0=TjKbex7SjK4w0@U2~jIb3AoYp`K*+cjJRv4
z`w7}NH^&t|TV42e)ufq%E%m5pHRWW-n3Fx-=^tQK*5bzK*uZTy;J!p3o3|lG0(Z4G
zGvyQpe{tP_rOa1~h{OxC>D^kfLK?3Cg|`dTcKWog$1Cx2Ai1&1*;lPNH>n1Ky!SIQ
z^OrUu$?KdK1DLVJ4~2SzT7RpIZQ|ca!JihjGmo$SK&OEK-5^ILq^Xix<`b9vhy9Kd
zvEr0=LVcJU??=aBf0ZEYTEv%%u*2^lA0We}GQZKTQ`+2G5}@HoH-e=(<E>;n<JP*z
z#fBD@yZFJDi&4y<a@3Ab&g?LGl&<EFl=accQ)q&RI!)Z7+Oz_nH;^Tt^KPQgmw){M
zT)#Lo(YPVRYyY$=8=@<tc<IHf?UU06f?~J?ME2}m#5oTz%GU*KS4BSDnR^rstK-OY
zHyR1z$UFcq)H5OP$1}~f;w#Xu_q?=yTI~X_{Mp%Q{&oZwcu*+@=Q{{wvdXZP0e|c1
z5T2$bhOhA>MdK~-!uVN6EZc#1i$`TU-E<g$t1sXGb_g$$X-2}nYNf4%c`6KG`?kGe
zFQC9x2w~Gcp&b0(6#%TOtuhwEsD52(QttF&#Q)JMycvhFQ=LvTg;?PaXN2QF+biyD
zKknqk%F0U&&2h_FgP)5Uz5eNb@|54QOuUG07%kedp{@Bom^aj++t210=ye{_$`LOP
zuFq}TO1r&2>A#k;63=}s3OmI9%-wO~Q!Hf0>dFM*J__>Cz7&IOD+=)Whbw^B<cDd)
z4Fl>OZv+v!N5&i+Ax|P)0JF_>E%lHKu}k-4oP-H8yKj|pkZN5KjOm!!>^|4ZfC}HV
zqL7^5_FN{%V2DI3mzBSoQ7sQ@U^@nj?jAo;b`E&+^<t3pl5BNDT;OS@ReGGe-CRZ0
zEHM)ONiTnP`h8(~z$sSLvT&E}*auKusFPDx!wnXZew6o=Us<Y8jYn^{D3AsEuS4+g
zKTFe3<XG|93XA;EME=Xpb9S$$c_ZJ2PoCBe)=s*^U++bC0N=^)JhrZ;rpp4x_)27I
zr7}E+rLNa5LblkMGUTx`Jz9^i-n=)Xk@sNgUR>4)&_}@t8q;MoVo@rgC_wZaKWktT
zL%TNltmgkaka-(2acwSH+~`CQ-?9{0%!C|43bz)$6rZi>wgeyK+gA-x5{|_*+ujAr
zwObNJuMX6L-;PT6ihdgLFy#SLe;J%<)r6%2o0`YPUViWH!i%ZujdZc!&KepuM(NBB
z3DR*`ar}I>qOFe8Wbh4xnDEq$_<rM?7H@n7?srTK>s@_e-CH)&xf<kc?Egh#iBrB+
z`p$mo{>qvp=x9Hk56h7`%#qdLG80&=cgmgf6tA|w$>@C(@)(hlN^hRR6I_zH+S@Cp
z(58ftNzImjVu87j_Z+&PqP>8ckojRSle|KiOnmO)F-g~F@P_>UOUc%+fTd-l_rH2~
z)xcnHAe~5G%)2CulPt?I_y-_^{!V6WsbLz3Wn9Z_b*&4Nx(U8JWQ;0bv;2c_(S0O!
z*-50%mFW!`CEbD~_lf;bE-!D2SV8sOsMzDO+In;Ek>W7<)3(^4`BO*o?J8#{rC8>;
zijD=srkWS;na&&aEwx+z7GgN6JNNc0r1L_XoghjayE5jg$72KmbDgMVM(%IthwJ;B
zZ!sBcA1`w)MT$RM_zV=s@@i_Q)n6<U9P3(S|GT-9I~VVnbK7!>U)9Qbb!z2jjcsAQ
z(qD)5JZ<N!X3()bMTD36ZiF8N-(2~6n?Nk8*PD%QRKIpj9YQIfJ}|CNUKd+t@CjV-
z+?%dJX4BQRnKdf|qwo}r&&iykSP=ySroBdESJz!cv)mW!?A!f0GHaf;6j49p8Tbk6
z-Wc2q(8Tr6Qht((y^_0Ky}HFUd`bnY)pfig9Iy*oGVfn`;C$q^MCk}q2I89JH@iq3
zPi{mTEU^mXqgM$p(txWOX7M5l69)XsU~Hh8)UW}<(OYe4FB<S1(XJu<U(4oWl(BP{
zXD#Plc-Cs-<PWu4Lu&xm9c6rf-Q<Vy-gDl!=qDXDnXy;62-N6vQ(oC0g*Q=^E?33~
zq=qAf%aj!g7T5Z_z}vP+ZzWVRTLfkxo#w@S^M~t>;?%LOyQ)8maBW102^1-se0y&j
z_OUpgdG}yV?7%AH=4X%H`ELUG&SC#vk`!xy)mRxz-MVr!{HpLhM`L~^b>miov-%FF
z7HCDn&2Df@$!`4`ul=k6lA<GKu6Lj9GAC9&C6hlhRgTgi2Z$-#;vvzow7y|bMl$7{
zDlR)x?nIn_C{zGKgH<V01rx6wYf8T-d~8|)YLh6bQYx>Zwn(z-_RJS^T7<<97<xYN
zZclyFiWemJa{S!dd1B3xIil=^uOL!Ox2&BH7nUEff(@*Nrt?6CFi}EiB;khy1V7w+
zIKA2wI{@3FBVHi9t~Wfb%#a*dJN-}Ty$yJs(EeLvD@|%=+i-W8h?UPv-gf97k;r^H
zyM0?prF4?JPbOGP1Rm<><NvSF27atw#sCWJ1LpL;I?Fy|&zMoO&%ASS>s}K?-{ZpN
z0($ELDMa`4)0Dk^8EvL(<#w9htzhBR$GSP#GyTo(q?6}pgxH$|tGed>MxCG~lv(=>
zlKRVx!RW-JXmJuIq7h%Ug6FF5UM4bSR#&b8DLXi^T8d8`)^w&jf&}hpZ3(kYG=&0A
z{5Ua7JypEOP}`*P{0i_As+}@i?-;RK*%Pt=SOV|8)Y=dOqO!N8>u>MC5$QS6%M>LH
z9D=AoxZSBH!9E25h|l;9aEg$j*_}6nePzY<!3#gc(D`Nl?YV%Ei^+f5)c)(b!ovGb
zTViks-XyXyWXZ9!SsG6#`?vqo$2$s}6RH0sfqZ8o_EJ=C)T@Nn^H;=rV*PznS+a3h
ziz!vomUpnp()_G8L|w1Y6=0|5v2&x|RtO#!*x%`?40SzbLo@`*8GX&-1FpNr#xBcO
z0N`PsUoDuq5h~VmNdn3(EP?wdDAj5h_|Yi&6@7W*%lxFy{+*fMe*o`iazAx?ZMW6r
zHy-zU%btizBj%km7zOxuN>T-&w7qA^P$r_1iiAZyTVqh1&#mrEBbHoO=Ec=lCc#_3
zlnTqY(3qrrxU6dICq8E(8$yz+9Hm{*@V$q$dBsj%vjs(DEq(kcWPs05QEuXB<hEw)
z#*nDDw#7|Mn=Ire&I2t5;#o8A!#ww&%yV^qLi_RjPwNlF3Nmz{*238Wa^PP(_yuHB
zDFZIeVM6$%3x6*!{<7jB?GhzXD9NFh-0cd>wiDQ!s@&1W96ZNxI_In<qGzL^g%ryR
zN4<S!&&H!6bQR6)6^vhcl%GnqF&m^*uT*S@7YnF~BpCfl<FB{Xdy*DFJ@3J?Srb}K
zOB6uv(C_<}#Y*$CFMfDOpLbpmausD<uu?M1N1V1N=1Z2G!=yuTyzWhbd!4nWt<a0_
zo^|8_0Xof)a}7FE0V<=6n|Mi<;Oxa((Dh%UgykhW^YnY^`63rU`7m>=F7!#kR<E5a
zz<~dKyx6B;i+J<@=04mx66;plS~>|zC%OpvV$8W3h*bGAu7ULGlO0oTo2c5Rr4k`^
z`g<&e71MHmjVZaOBW`iA5$3-+h|!$+V!KXV;di+$vde$9yYC+~;a;cJpv?Sh`LpfV
zHVdk^|28(L`^?@Tu4CTO!<^-1X&oReg=M<KNaznnDhzK{gppPM!kAX!2AaKSCwW5F
ztOi!7wU*Ohwb|S}lX*apx3~F%>O8t|yHrDcuzQWcaV!pF5>XE_v;VF%v$Xfuwl1CA
zue(f=|NS_F@1BJIh+wm3^r<lK#v|yJqWZ3v?<@}x(OG|n1y>zk77Pg%ek|)W+<tCn
zlGQUDaNqcmp}J7qL;X(mZ@-EP>|DFA{#RCAdsQ{-TQiTSF5aVNRt{n^Mf!7itp^?b
z($#fk^|s-4_2y#Uhsv3Rk{v;O2;ZFvpANb(3E4<?%?yn9!^aN;O$#2|7eBVhikxz&
zy<S$Jcz3g~#(TY9Q#}VT{Vh({;&ZY}LgLryBAj?JC9l1$4)fU%2Hxdds+)?hYZNtt
zC-nY0n{ntqG&4ybI@=vWawt4P^}He9yA{n^q+wB%xjZZtw-S}jClOZe2k-dQ_9`#_
zbFoBWqP>u#zq53%u~rwUt@s)bwv#iu0Wla`d>~n@b^H+jI1w%p|Lb3VN@T$g1r#pz
zUzljhmkN*4xdQy}!SHT#eg5>I;ydw<m0|~E)5!CwUZMY{tA?^S)!HKz4vd9;17QQq
z|4k#~3wVbe<NmYQ6zTTt@J?ob>_XqyOQcRtkWr{Lwax(a@O0#gCTXb90OQ6SA?%vb
zhC)MZN|>(_FTw>w5!+wqt|W3x67*yr{--ztES2dm?iIs{Jzohh%;2vantkDL<=;i}
z_@hAKCdX2_ujTIGXNV0QzL)+d${QxPz$zRP5A+$R&r7Ivd`w4gX4b6q!7LyXlA_7`
zBkOhSKB~nTiAUmF(Gu5d`qBAeorsD_1_&=W^zfI<tPXPYcc*CU>cE@lxF4(If=W+r
zKYwc@B7OdgI{RnrrCt56f||U5Nt$bf*9Ob4Q>qiY#7gON<19WzIk_zxTRTC!H&Po;
z$0SP>>iITA(ODBFxXzU#n_vB}3_R*z_VwX|%r{GV!@Au>MJc`Nl3w6_s(PO{vHR_=
zF4#^5Ic>ah4G(f$0<xl#0*PdD>j78FCRf;*B4VDt=iY00|8YAInXA9~4hFD&Iz^B5
zT=@pJtGwHd$=@)8i*FxHTqDz3P3&nceh|4x<OW-PHygTN>?(#x6O(<Yg-Hen`BDT{
z5_OggFRQvXEXy6h`!FW7YN{>0AUI6|VzKB|XHU<mjk~qFx^!p_V*<%RX0+fKH(TNW
z5{}UVXV`8)*w>es@PgoRtu4Xn-C6|}Xs}lf?n&fMcx-e{aJ!bXuJgEO{CN{vwR-14
zrNZG|iQ(C!uP5y(Y*c0pS$oD2xEz(x?s$RPd{L@oD{k)AI>-AsxySilB30Y%i*Idu
zT57QH@rsjQ#FkFYtb=Fq{P~lS+2+lpPyhJqvdsnR{InUT>=hnbZ1Li8_=$QCA5D^D
z&Gg;A5@sf%okJQI8BYc+QS*+RB(&3w7{*YtIOnJHIcoY&elb~rclz$uG@2R$U`YpF
zk{KJG268E%!--xo(ogzCm~&Osvq|+k@9<ZN^Qbi4q>fG0z^bKhqB~p%FnxpfCu5Iz
zTtzhCqtV0orx2R-{}4DNSrYHfhMDP={8cQ*Rig_x6aq8(Lls7Rq@V0+AAD%_1<7D<
zOI4O^b;PamprFGXvHf=cos^6;jof!i5Z4|qEKKSaXB>e-baCNC=jlAxYGWVkG+V&k
z>R&XP9;f~8M%HP%0=X64DJ*Q8+LM20Mhc%<RIUKi(^pL#^Vb#U=YNN836mB6Dnx-!
zb><XokAW`i@bO_YK5AW@5^tJ!S0v^MF5x_DZDe|n*1h3S-$TIl@h^?Aro|ZF>?x$_
zH9+M-=s(gyipAW3PddvwyO0Qv;xF%4dH=<18h>W9;G5`kXiAqu^}KqiiTmaG;?t4l
ze!Yd~8`N30QF)YzL)wrXMElSD)C))kE}gSCnrR8jZL3s^ky8ni0CysKNyhm6!1NHw
z`Dgohyq!U(7|rwp-9SwoLegwTLdwO6*V}{2%|1K=ocG+t8FU|#;S#YQcZ^rtP=xGe
z0iS=VP@YCH=}NJ6neO5_J;!*aONYumtj~DfUV-+#;=J-A*j7AVCS46;)>X)yxuD=q
zD=xWp?IkU*rU@KD55J%Oe&PAnD$f%7H+Wo_O*o!eN&5w-B4<dT7}g)W@Mxr;Hq!oW
zT!w1S1SRSe(P`I6Y|&yY)y!H$Lm}CYAc56e!)VH?J$7V6PJgdE@qHvq|4l79SkcY|
zOstjpy&@}L=I#vbPJ{fYR=X8;??GS~<xkg#`?lD7ZoZ1O@bAnfVxcSVZGqQS7lOKG
zIP$eN{Yw_UAAa1GDR!5)0?;RWl@=n!Uo<bkIE%kdXtc_9rOTatJ$ju_udnqxf_?X2
zc2eLnnxD)3;de$~-PfLHI~kthXub<=iPKn^28MBhW?X&l%91$ES-Q)!>p*=}xN9?D
zjaeW^>SKA~z@1Gcgpcz8A{_E>FM~!y1un#36XqhsUJ{yGpwhZTis|RNJlJElCb#gb
zoD3_UwR8)FtFBibN}rmd4XnKylSzuvM;q=<OdD)e4cz~vjRbtxZ?3SU!P}F%Ul?_5
zhP_tVPuTv;i)KAI5Id1R@F6fm8$V-z+B+z7L2+LrO7A3P#W@H;|1#H{<b%d{&;#f)
zneO7W-E-cW0@0E#JWprKHf~P?WrkZuZ4kx~<;NSK)>@nP<!$saw=HRB+qt;ex!BP~
zX_5`OMjEBfY*vJ*XL2+joRnlM7FB+17Qz%WLGqi{Cig2xK3Uc*4l9#0KqKeON@`f2
zc<8<O-aU^#&$@U5JwCZ8q4+D2F6yrb-i%)f!Awv}-=#cst@M|@`TMY4H!9C`u0Dqj
zeiRr*^A!FQaJc<8zi40n7tMbO*N=G@;G#?`&#bBanyy0TW-f&xENEkDrIwe=V=CUz
ze+?$)m}*U&D^Rym8hL(7F0J`*WSoDp87DUzq(zd<>X&rezDaI4TsNe8?7#A{Bed;V
zy`^g{X^2k!;_IT)3I35_2`dbD>xMT3x8M{ozI}h~gu#+laDwKgx_^a)hmt3KHmgDI
z4iR;DJWt~EF*1Rm&)@Ie(7Wqm!IX9ZvbVsT`s~3z;O&);8=FL!h0iw%nx;o3Z1w&g
zpJo^H>LblsmzhipTvI_g+hrA%QOfP#r@4LJ!>~bfO#7C05^SQo&jDXA&d(yR&b@>9
zHSfvafHiIwa)5=VlhQ2yrU(Aa%4n(82CvV62|_i`Y85fJZIdcE@*1Rb6d@&=uSuj)
z_RM)xjPoT9$vZJ+x?c*o_A5v3AWM)n@5VU6H|zBJPO9YeM<&JZSweC(N+-ONKL%6X
z@u3C~QE=z>(jx+O+(`f5Ohkpeoo*|g7i@afzh7%Dt#|kEs4HQou>Pg_VF9Dj*297F
zhno9AIC_@po#78X3f(Dfe>Zux?l`I%h)%o1J=TfY1ux=ia?rTMw}J}Wyh0PNm}`&{
z<;@k@*#kTuf_Q7ZgUcEF-QtAkram^>!${KYMLWRmxK8gCyl%^ctE0qfi`M;@!gxtc
zZ7YfFK+G%a%i9fjW+B3+QR@oIL6erd`RbPiC`yC@B3`$q=Zx%N3eH>`0b-@Pl9`C?
znMEuayL`k-`^^50BEavwm8>-SrzoE!NB7Y~Aa5r=A+k7z#3e^HnAUu}^TIdC=VV*Z
z$46ugr_21Vv^<wIVfnUUE|%j(b~wbG-2nHDmv>yn)cUVUhS1=0|2XGt!(AI^n!9ya
z*aQtcl$Yw3LD8}209DWh09he4{U_9P?;2>-*wz1mx7e2$n>oSMD^wk=>17Atx(kN)
zTUT6)4Fq-8sCA<6%9#5}OGFuck^Mk^g;Y;mIF44{B4qKb^&L*0d}JQ*x%YB;zu|>f
zQ0G34hy8pO7b8|L6C_<?>VLcrEA|ulHWd5yhVT_k^FiVu>vEcv`#rDd@T+Gx1Epqj
zoT{`Lfsrk2$waoC=L*m4APh6lZk_8;^JU3oEO-3_EoOsquJ}oAWgJmU^+!q=3Pe+-
zKD!h=ckPgJ^ZWZw1iD(td9$Rhfs*s|bTe5p-^C#P4YgB*1nq~rKqg7uky!?!8?Lyz
zN3xl`6eRJ$a7UQ6_4@0f-1c{@Z8|_IsaXLnyveWEQ{-$ZlUa|`9Cjr_Q=14s#&)ou
zG>+m}+YVodS{c`*5(5^LEu`C<V%`lYN(5^B*TmM>A&8H1|Alg)b_z2n99wbJK51pr
z33OK;7^bK!7g3CHrtm{pc|e%iTC~EL#r`+TZMcy|icd-ccg@fJXx<65rIMzSMR|Xs
zA4L7QD$Sx;&lo38WpG+%&97;_lLfj3UK&$RJ-)Xo82=srv7%Iu%mfzPq=CPHn<>s$
zVX2A6Fj1DpJ#kDCHAa|iKOOj8>T)X_u)6wipJ$0xgFm)nB!}?BiN1P=1GofFX;En{
zf|<czU)85TN04M%t<8?1pj7X9b?Eb>tyV2Sid+9k*c;C>xw)kjU+d`M0Z4Kcjd0~$
zn1UIl+6%~V?>|EC*R?vl$FK7?k}GAUFGrs8l5pNa@0R{DJayIikYPc|josfrIDd?Q
zzMk<*U;6c+b*Vdcmb`CG7tl+2rE*Xlj`8{j+7YJ|fsb~4wF~vHA5<_tzI^R_Qq`(8
z;X}Ls6buKCW`=$*_}~Y%s_gnXdo3kKI*~X`pY!xmBwN>iKm>9}^GCArksBV7tHg}H
zfs_c_dJzy;_Hg(v6S0>GmQYa@K(tQxJkqAG0}Dl;3PEfWUTV}5;+Xf<d{rSE`Qfe*
z#0miDM3eonQgd3|`4eELlj$MEMi2=12HC^CX~2JnDwyDJwXf7-7meTKF?-ZxPxfs2
zY{{E4!@wYLI7kb;|8nhR5CaDI^>cXla-1bAFzdHOy*KQ?zK*C0HbhzrDFwh~OH@+&
zdj3&8Z{rB=>^Eb#An2(_37UF}$kczV^k1#<#_KO%1|})VnoE!BKWC`&tS-tbAvOx6
z*E9IRHb6*nahZJ##h$P;pw-(Oa@QN{xn>1TRvpnw%4ACawiob*zSOpz7YJn^mhjT1
zNAGwdjmtiWuAkf>+P*HWzH{}Wyx`R??_()arzxFx!+j4J_1-EiR5JJWE7LbJ>#~vC
zpJlZ23>SSwQ8%h%c|Y@r*zgdxAzMGwdI=@R>_Y!p)fcvwl<zQG5k7<DA@cf20T$bQ
zK+oSgebg{#3jSw=#M6GS0Z}oRwS4WEAyyPyb|0<POv}5SF5}b<a#Dj8E5AI37r2Tv
zTTp$>pQ<w}1bL`nv1$mrpFYH{T06u6L~WdlOB3-ei>MomkG$|H#S!Njpex0$p?J4I
zDG&GWN>g_zJiT!mPtD>R!JhnKFSXiGkos2~5jn7w@YcnR{=KJQxi3PIa+jkSCAkE>
ztf8UK>_)gzAnog$&`H!&dmm?Vg|eG3|J;IzVVUpg;>P25=QB9N-EDBF>OaNjx*`K_
z>!Xs^46`*(Uq$!6s+X5r^@MIw0N^_@kh36>Eo|YpVnp9?UhqG%Ol*So5Sym_8RzE-
zddp-_o5^gdiV-=9QmjOpM6ik+1qt5rO$eM|Q}-8~V{A(;KmR2DaSfir$X7FJn34@w
z=oh5})p_8uvV0S%mb`{d83Ga04u9Eh$3Q+d-gJx@9(JfdI613$CK3OKUMpmai1^pX
zY=Q}Xr7!GM@rzH*lp4lMgTcN?>}kxAnfm(hi1<&sxcT)nSFbrIf+R3MJ<IN*@4`L3
zel5wI+D^eI@Spzxbv}r9I!ApsN<LhTPlsnb{VaF{L0fM}^HSNWl40X}`aQ#jyETum
zm44U)#xq^;kqht#;Kg+B;K9J5+q9b%I~+BH=wM!RcpOD@vrb&7|2J#hxx6j$U+QNH
zNM#>-v*+Q?I|s9gyyY*h&*T!w>7X`!{;O8Zpu^DT|FtYHeP9LeOY@@4BDJMX&qEvm
z-g~#>2(9I10sbDCv8&%Y$$O2i*Pij(auY%c(c>HLTG9#h*ij!V;AYs>?I-T^XH|~C
zKBO;X$fkGi%pCqg(Z%2Eo5$t67A}E;oJ$BnM4<%iAl+3ZwIk00z5UDr{8W9#B6hfu
zQniw^TIc4Xfe^u2%;dT9rI}p&#ldT4+aBbn^xwB@H+e?t#5Z&cLspiza4s|<WNq~q
zuOeU6MtLz524d38gyh0<rL5?obF_FaJ^e+{qAc3!4cN)MT4!7Sv$X2ry}d1ueumkb
zygyOh{^u=r)gO-W9q&FGteQ{j6^_Zs)RPxduGE<Me~)Qq&+Jyov$FME*&G3MrIW;>
zbvl5q$6O%n;j`x*71O*m590rsZM_v~4_rjE$qzkMls%A=0v5TpEax=mkvSma(~LB)
zj<DO3oe^xx0NS32_dBw-LVzzjbjV(k^K7ksxEQ8r|MkZ6w2I#RVpq8wd>b9n`#T+E
z^D*~oB7qv}v;Vt>MtM8Zo`wq_I(BM38OlqkwN7Ogctg&urI8_DAKIXNtg#sebZ%#!
zq9;1N&SObw>KPI?F3Eh>q6hyR)f<pYzVg*}da)#A(fVCvq+7#~XGq}pL}7vTC<Q*G
zPTCPSv97+_EkBbBQRuw~q(Qw!K2Vx|tQ%&=BENf{wSO0`c|EWa!-99L=CiMCYHTD2
zB6Wmw4oOQFT}7>3<^TsHWQ{To=>@yGTxTD%6#?F6xyT`|TGkTbPu>Hp>Mg2gxw+VK
zO(OAmNv>l}m|8!`z%bJtU;VU+<71e>F?gqh67_i`17X28fV9%1_J0I4MM%tsuNWiV
z?aR0EZ&BHgwzaz~`{vZeI<E68JWtKKvcwup8m~3nbfTY9OCvD(s!reSR4J2`M+H&6
ze;+pMbQh9X&mS!2V4pBx;X?0L$*x~T<u0vbeIdSf5VDqdzC$fHcVh6{wz@##iq2o!
zDY<cO(X)yyl}a8KIKsN5i%!{U-Sx*GCk<Qb*k7*LcWC=a6}QzSmK&C*B6@`kx8Bg&
z?sQ2%G5<KoG=~na5iP;9_UL3?SDK>L?R=wdO3v0xDyswBJh7a_p#aZYJ5<Re@IzUt
zHQF}G5)`epTrz<z!@8iK5lml~QrrqiyzQ5qXhM+9HvgnDLLgN2U)>JdIC~eb6&vqi
z?pp1rpWr70{9G{8*KM$6QmGb5uY#=`F#vS0&+fsLo3$~C`TifvCk!Ct^xdBUl5uVT
ztf^l1*wyaoqzcixsY4mWj{H@QtFA?yvQ2H~x{=V7?gr-lW}95sG{%51=qKf#{E@&9
z2^XwnSw#G*Ulr(7?L}v*iMB<j%6K6Y<gEry40L?*mwacE38U^#&tAV$hbtttFi#ce
zS)Kg#++LDh%@{^kXI;u5Dj_e%3jMHChw5^_!=R(g@(`YzlXmpq`pXtho>@17Jhn<U
zyyvX(!oboQ`}}HU+XY2U&~Sk`2sByMRD1RwS5ZMn#g=$y@(uTAePfQ>?;0--IDBF0
zz25LYdOfJ1dC@ffVSL}En|gAhX174Chq=WdBNX1}YLoKH(^A0020h7!*oR_0ehQ_U
zbe+r!0bj0MS;-pzEEpklR3&52U%xFs;1Nn8(0=o6Sf50|V)3MVv)<PgCi;J;w*A$O
zJB%DNd1+VHa`nLWwX5C7*bTLwD{ZS?NnPCF+WqEseQPl(u7-xwhSRF7OELI>#LDFw
z9cIQv?@4gwzI=+s=>5Ty<~IJNM_5ms`_eS7r>xwP!D)z@M(H~p&?a}|uB*zt>`^%n
zNB-2|;rU46=UB@%lka7H8XYzBbs9egTtuI5`zdmx2f@unWm+irjk+|Pf%5H5D>VDN
z{dFUsFCG_VfS2PYFDU_^(}4Yebli(qy+U80mofE1OY=&6%+LfE!}2u$y+KkW=i`<D
z%{qnFNE`q0pcN8SWCh>x8v9Mi(u>|jZ&G9MPVXz_zVa`}CUyqh3r*Rt!N5>JEhCWX
z_M<<8sspcLFJ(8O+kZ*w@d$&s(zg-W#AEUX<<?2@;J_Slh8h|WzH}ZV{g&~paU3ea
z-y?bp=5jKNrl>Jy;{wbO+M69DOl)A6XNGGQ`PyGr@AjI+>j}8GU(U@j+Xbm@fhf;x
zk);z$et$@ye|wEYW&QNIS4r=JVrA1&Aun}PW40t>HBmB*om>%XDg@zL0;~}hKS)+O
z@;KD4MMF>h1wM}>v2e*MrqeUDoXyvy6Pe)m^gi7Tv%chKaTn)t@t<e2;|4@umBr@9
zKk&Hx<LU4UKhmJx^_*{IFwr7sef7EZd6mRJREU&T`)vi~ZupVWVn+~(Td7HvbQM(i
zol*aK*Ok>U*59AfzKY6MRH8TB8%C{;-|}z$8x%Mh<5#)Jy^5IqpiGnDE_lQU{u<}c
zvr|advP80*9DTY9Mh5<6zmZWh_q~{5FraTPL0)%TUE=Cb66v6q+1h`JO5k$$it4|;
z_O~G2pL&Jkp4|N(RkN!n3M+$2P(9W})6>DTCz9DpbDAWX4?jVH``3;lvmpeTz#h*2
zvyh50ddURO0(Ms#ZkbXt6MJpKLlBY*5Lh$CC`ubnDGDhJTm{LVkO9C%jv)i$NMk)+
z8JC0>rO(voghI1s7&6UDH2H5@&Fal6l#|T5o9d4wHcPg+SWxs3-Q#B##Fmg25-a#%
zS~##0S;*PjtW#@TzXDIb4#$dOwXx=yQjiwLXmR{XJ_uZk?7X0?yYqF$O8SEkHnx%m
z;|m$1^Mp@V)5zJ^>!w-3w|BZFmu52$U%y#W*_U59L6eJN*}V&#(_tV(FDBb5ew5K_
zMX_}$&eKQv8UKzbn^rBgccVMS&p7sNMzyVoQbHd<o)4A>pY77`e^{^IYrfuwe1AwN
zZ(h%7`MA=IUDBw<SHv{DJd#TG3_jCA<fd)W^&Y>nzV$Imf#N%mJ=A`%D_7=VPrbPw
zW#tc=E-nEi&s_v%B|5x-MGj!xltNryd(6rf_k?J*4xjg)BeJwh`G)x3di`^2yy69=
z0@Orh=V1UfioO)CFxTG$pGJ*ESJE1^j)YV^MbKj&|E#VXC*&$*E7u&Ji}nc3LO?9X
zyxASdI3#@YqiT;IleFCq^a^fNw$I-iuLZjwqyV29xxb+_bbkQ(BzVgClSE;z<Vn{0
zg3n6i{YZ)StctfG66*{tFRjm6@+4oi@`=P}yZ!DAX}S~!ZYbg(ylf^)f3Hsq9cPsn
z!A1-W*R=~D$5OuQDP)kjr#q!07IyUt*!8<>hjquR_X50yTQbC*r2z-4$sg=69Y`X<
zd&~b*V7t~6q_N_MO1mqhY`vAoK!d8_1l{#7>%kl2FGSqcZtN<KNoEp=Z%U`75-MX<
zn&Tf#G`)j}-E!7Fjt00n@Z>wkm+k)nE+3kvL>ZubuW!zlP23FKw32)0?X`=$W)<);
zC&$w&zC4G<-OlQGy5b&o(rp&;dx8maxZX$v<&?coN+UFV0|gW6^Iem>@l8#&gQ!X9
zPx07zYinZRRstoz?jtk?=@s4B`-~}&D5V(m9D`(#cKP{s9Cke`3H!(^HgGVhh-E=w
z4);m0$DbEiOXFv=?n}9#sfGWs!zPVd2zWx#-To>@sqC4!`o(uFrwYAzksN37<^a%q
zm~nS!hsY9xY+gQL^3GjY!fZx)BiE3l&u0eC;PY&Tou(gRmVYXbM`j3LFXE3IIDIej
z!p1^?maCS`LR=$)`<g>yOJH5;>)$P=JK4&q0@(4N)<v|t<2W@aO0ckg?Quq@*qtJ2
zX@1@o()ZEqoj><iJ3bc?ZYj6KO3JI}Sk={l27M%JrE7BT<Dcd~k-eI-L_B)(C@nbN
zCriC=--|qTm?Agrok(f7o^X23klYqP@Q~V{FfkPFMOj;39IvBjey($T@d$POdLu}H
zwC>>dGu!q_$-}!o=h?QVE0eE0CP%AuUoAyevhvzD%V#Fqw)+qiAihklSH^VL(Coa{
z`3<KrSch$o3Rj7%okfR+;_-Du8~{5)9BdOQioMEfO}Ln^C}bL4aULrl4;}Km8rE2-
zZas?r{miwqsBSIh#zSjsC4@G_t;(a*Go||(E(E&bfg>M%a{xG(K4H-D((z>;GST-5
zH7RusGkBX94SJaUBJImcis!{n@(R8}`VOW5?-Y0+Gw=D+G?2-Hm_LZr@lW*O-JcpY
zTN<`gH9%5chkAm5h!h*TGAEbf_=@f;TjwdNt3UAMvMZ~Q{5%z$7<(x}Q6oF$2b5oR
z%-6SeZH%o5U5Qo}1&1@mQ2dJzY{)cYT6Hgax#pg~21MQ34CxaiP^Z+20$be@&IQ?&
zq$))!G?(B_&+e4i%V3x`9e<u1XPtv6nC1BIdmtl0HoyDnmoHYp`y0Q>)=6ws&_|`8
zY~#3C_xketgN;^w9)%^wch9rF1S%Hane$^e8NF8SX|6{t3boMc$^4MALd$b?IY!2o
zO`DD(bv@4dzVfYUZxdavj}GKjr<fyyt$e?$bz3)1qvoOvguVnQhq>Zk&hY}T!J4&j
z96%@IHv!d}g0D*1C8yANHhhhL81-W?0~xgq-N3}pQRUtItCn5b^yiD64*6$0dhr8U
zl^LYqy4aQB)mS7e_U-e-Eo1&yL3-`x3py#()7zh*nJc)}(qUcUc(kTv<?6D?H5x=b
zvV5~e7W43^RMUbGS6WLmaDB<wnrLiZPC^pDb~D&26}$4HL!o2a!m-8{@1HB;6l;xZ
zchC5bNExyF`@ZAMA3x)230kNCMR2KC^uT6ut#M%nNtF<4wdloY#h2#$%PT@Ir!k~G
z?-bGTVT$j=+I?_8`J}zhiCsY8_-uE>NGd7&1AE=Ftz%=6v*2O_US`}UUF3MgG54gA
z_!ie)Oa8$e+`Jwpkk%lj105qrY*BCVD=A_%4lMA^OO%4baqoO9mrO0r$AU+Rjsdnc
z{8Z-nwF`GvFnXtFv<~!3;>Z5B?lBkZS<na=_2j#MGR5azR&0gbnze@?;3F`waKOLR
zy@n)<8mov#b;b^^$xwR21FusR)x7qfEy1M99PmZ??nJ$|-<_q@w813UptBDw_O6%y
zqH*<BTuH>{Slg9xv?mWB?pg6;d6TcV1<toUy?<QV1n&X<rR6BKCINod_{^^i7d{c#
zJ3g(gaaSSlcPsgDT!^UdUZZd_S1-1VHvf*!Hs&W$U9~jeVB?zek@{qGa1V+zcwmb`
z^Khu+*4G3(3)X765q!5AJSM-NG{q~237mH1mjJ%?3Zau``pLcLT%D0b_9m_}H_67I
zB)W#N(A@n}bRhzyu-lL;on5N`>m|T4bl^q>patkT_E~2Z_zs_;zH#G+sfoyk)I43-
z0MIj_zT!z1Q#c`qBI_~wRj1JM4v)&7cp}kQXiu?R<7&&50%v*gpBl8}+KXUG<VZYd
z+LV%YI9y(>UKp`uj?tp{&pyk2GT(}GW3^(CwrdJ!LXc&9zE&J}3S)N&DHRGz7W_R^
zt-Tu@6t5rO9>_j^-#1*cL|I_Jp{Dwe-~8FT^j#26_CSN*0w!Q<Gi*SC0_Ao=)UaZf
z7suP3q)>o7`9v&^#y(OItORc~=6CeAWuxexQlvt+*JFlkCwoZqkg@Q^NA}^wt(HGp
z<(n(|{3#Vfkf=RSk5CH-FGVv_OL{7E*qC@7Y6=gZ(JIjwJfe&lkwE4nlU0CuQzW^N
zmH;M)Hr-J1WDnJeJ1JmGn?PxndWR$?JkNRYv2=6HVcv&v^{8WFJ4dQ~{o`m;R4CJW
z;Q(4>yBX%55s6RyoYu~HYA9Mw_K|^v(VRM&CQuNYdw6(Su@uY%!jaZuC8oOfPEi)Y
z4a_&#LYmIz(RSVl$t*4AWPSZ*rOwmW3+9C{Z8yI&l9hG`P(v66ybvyMFD$dyE73fw
zd62s)n~H)X<0@Rf#pG_K{7AFtT8{i|DC`nn9y}^*<cM#9iPg>DozbX3IlGsN-S2Y%
z^yItW#%O{|vk@$-z$%)jko_e!3v<k4B+cBLX8)l1Pp`FcQRU2#<UofO+qe0cw;NnU
zT?-7km5<<jFTRy|Rih@Pc)26U`}IdRssrG&oyK0~9;J!Uik}en>7;3UjGZ1}dq#nh
zUvo4(c_aZ*?;h0Bk(^(IB-hf+ZK_r3QOPLFIkGG0SkAsaV7Og$TU+BDnTK(2%HixB
z*f_Q}BKaoW?GL#AD<Ui1AWpweNC;ftJ4kpltHRB5_Qt#N&)*D$`q(fL87L;TW%Z%%
z?ogJ=JCByk(I?gW{;f?PY*LQobIs37a{W6w1@_Cw&{46bt&8K=_||HKxlK=-l1Nq+
ztl;&VnWKf<+E7qEH&OYm{UHP(5+>OxR%79_vrH23EBu#x&4_Ir;&owPtmnYXL3B)W
z6IU&oQ~IL*PW!RcOK$r5RSvUXsKnM#0qab|a958lzsb{<^HhrcF6eA?`pW+UWCZ+1
zZg<e^x^lL%Y?MVoxdEqpKxe<op_767e&LpwEACC1f49YptEL!#(Wq|>w4~_4-j7uZ
zaVAx>$~>vm;|ayDnFM6ju&l=2)>J{%xwX%~4|bdhv5=j9(&mtTgE`Nxad-I81!oS=
z{q!}!<p;~-+$h`YH(u1Qc}gwVtV2rXLr}1eRe2BA4NX3sS7gbzDehK8>|G~ed!-n*
zI6i4+;ym)N=j}))LEsvrhT)nF!t$$kPL(B2ik~bDEG(N5K!vhv4on(yyi#$C#Q<!r
z=soEuM$)i^hiW*LJR&=9HIs8rQ;KU@L5lwKdM#`jj2XGM@^ID**6CORiXiLo-zU7v
zVKSzaL42uTCMH)TY+G9hW5)K*5cn@{rFsfhvv?b7A0CYp6RRN#ePYOOfo}vUZUTUN
zjNY)P;%J3xrcB#C<M}Snlh>6!3xAkz9G>OEyg<{xXflB=LqP*t14s!WxPD0$jm45N
z!C~gitlpk2;J9^SlERzZte-Q6>#HAo3}~h7{a!reOI}fkUqUB)0j}W;u}PhoGqX@h
zHFVv2V8xQ^Y5e7B@O<+#H{<WY32oMDAeGGr@wv+o^uqo9efc!AyCbd3i&5cNm6W4>
z{Dr!Q>~^ZR##8P{X1)P<-80%B%pXg?B!??g|9b|3Y72cx7UJcRSfX#M64l_`3}1N8
z(S?`1<Tv{P0^ZaXP-`)d!2jzRR*XIqKT$+C_6y`JI_WP7xohA^lgValx(ujl?{>~r
z7n;A(6}M6thwR!x|F+m^cI&SqJl%}9GllEtko^e;`C?j@pWC>A0k?0X%kZ)mzwIMK
zBu30cVkfK%W<vX1%gwWTktqZK>CsybNWmXH{yw2zjW8(1a88dm@;<w6&L%fsH(FTL
zUWC^JY~13)%3f*0airit3D-NdI&l=bT-jo?*p}W8(%29-0^X#GI?HTem=*-KB`#y$
zP)I%h+)Tqe=9tCBM<XdfLl8C_A&?E)ujf$lPPN=VO#yuCac%4)g`Pj=9UmP>jw_Dc
zFWl&3o{BDK_j%3o3@3=)<0glKgezBsi2M+CS~vujP5fcnvP|R!uN+kgQ0mm*At)pF
z{F_5s*j!+9w*O^d(>LK?5=p+V0|W5HH-no?#&6a69!q~9ZMk^182o%ziOtB*CXOqN
z60qI`ox_>hg%Yhnfo3;tF1$~9K!y&n_wH?!6jNre<78I^)bF8)5i&Px3y6|!T>jD9
zq-=l`^;YHl=Us8~ae>UGWM9R%MG+T8?z=OB|IdXyffje1dbg$$btDE_2l2@j|K)D<
zu0PXXv+RO(y6Rhe+sz^#PIi&lQMqT2H#0%atX4_gP)HzIhx1qLirA(pTseVh5oP;_
z#C?QrC`A-A^D5T*EB!Z7SOR#NsF|X<2|IOrW`U+r#?}R{c{$&SkB)^o!?}PpG>mh9
zTjHBC=KNK@NyY8ZlFzTWH~V)p4g=yHEUng1Me$!B9UvEY%)asFxKQcbZCW^iaSO@t
z9WmM|=g6ZwgZ?Jb;Nx7Q+Ev;sFE6-*R{AM5l2SR63j)iyl^?*^_j-a#M&2*G>AM?`
z8r_56rv2cw4D}*!d(0*^4$4hz#Y=9*AMgL{_gBU=EEA<32Fz+p!cK0+HKwm0BzqK{
z0_1Den)1q}91X*f`KR=b8MqzU!fPW}e=~CzLu?gQ^4Ofs*1x?spgIE#D&OoEi}&6o
z&`SsW8_!N!u~iKR{D&w;Nj8$t;+8)s;)V>qrv+ZLRPF#Di$Qm8##htDDA1M>Lo6`k
z7#AG<Xk+d)U%-C-vTkU_^tOdQsP54#s^H-ABdZY~pPg&}cM`5%@XZ>aaLeL{{zezm
zo3CP5DfSx*=fOKHQ7ty@(h`wIcl(KpanE}r#OxQSx(`<`?Lq7Nn=?!u=BaAO>u>Vf
z&8-aIV@Ff;sip==5}4%xK;}VC#jxxMl+kLgZXcp)QD=jKg9Q<hNAwPCWa;E?G5q>9
zD_!vJa^R*~Q)H|z5}Hp%_kTqRYvu}E*Hr1heAnqY1r1DVO{_`AY#YVBRnaFl<&^(@
zk57G;s+Ncq1%AU*|8~pok^10M&_bPMG;(?WtIq&ShU$%{`=tvEUU%FF*|_h<on5<}
zDI9Ce(uxlYF^`M|_`4{7`1=ZO91PLDu6>eD^|R5xH<=KZ5HMH)*dgJo8!@;4u=-0+
z5NMe`5Lvl#jo3pdev0L6u<|JT3UC&|2cFzZ$y6^`oR4qidj$aIKkVsJGqQLezAUMN
zoo;TEJQu6E`uJ^3e%YnOZ=uIiQ`aqz@OQ4|+KzggYMBY=#vEDD0P|hv>aL@EzHsNN
z`LqesEa_UC@zYFiF;LF=p=)ew88k=FaEpsxA25qdtg7)$-O@?dTeo8&%ybTEQ>@64
zY2*{0^~7FRsImEEqq9gQ8jxvn5K~11{9T}hV+Fo-Hgq=A3tiGi_STC|-=R!DE20M=
zn_kx;(hT##{*OR^$icP+p{%M>22pnYn!?HstWgwmA1lO^ZhDE1m=S!a0NA^`PI~-a
zPoL*BjuhJF=QZ4#24U@N>GNWB&wr;hBDBf1d1YzW@7f)Xa>zL~9ax|{K?Wc1U49z*
z1=g2S<sY2}K3Q>ujvoDmb+6!hw?qd{kMgI`O_g?$<Mlr0M(&3~fpR~60<nncRm|s~
zlRuK_&f{k#E~@Rywqq1qW=3TV5XE><;@uhvjA2D}n>h_|mDt)};?Cma%5bd0PCPwP
zo(83|dUM&5F0B(j_qv}QxWK?R-!wMCk=r{M>Yr_B>j-84d}bPcTBY{}{B~hd;1i~S
z1gY>p3s3X>s8%1$E@;$OpS;)<`-D9b{c{|6&o7I(<`*kCE*a+vJ6mWn**;xW8uE|W
zp$3@`enSn@Hr|V&nft=~*roqemNQT&C-&*P=if8K_dqSg?-LFlz;0|gB&)dW#-`fk
zF@bq(E#_V39o&C2jSXpWb=h%d`k$VQ$9~kh=Gk&{_C*Zic28oOO_+|;)1vne@49xs
zo-Zt1d{6<%iG=rAMN59oo0FW=1}bq&yqs}n)UTV`L1}LCTMZxaBG)49l!pH(lyUGr
z0H%msAKKgc=QcA5_ojr0l`BHP7yqce^NCdTZf&Aq<(g*}4I8US*4g_Hy6Mkglp{8?
z#x+<BqTmDibVuepK6yp`cyZ#UcJGQonmq}Y(r`gB&{FnP+va1hgU1@B8}0w{9sn3n
zlhCkEaQjsL`^6s_xEcHgNEN#KddYaL2$L*~DUfDe;&_KwCo2pcF2Yq>A_CJwpt=^V
z??NA@VMR(39{r*bgWUQGr0B(v#sFYK_c}`FYk4hAc7r11rf(4c<bz6AlLh;Gm3^c^
zW_kDv^7T@^RxNI9I3VhXjo+3&aR@!?8DL(0&W5m9g}z_{;pW~X;X({H01yIoVdlXW
zlnXlvlkR5zyi8w4IRSpUP$9+Z9q3xxKKR^rrFwB!KM@<=Fm!Vt+OD;|M0!ve)bCn7
z$T*;_?sXh{t)!b&y8Ifeac|(m_|hkD{C2j(`Jbve$^FN53;Lf#9`&;P;<tLWGO*)m
zUc366ymG~+RvSWagL!T7OlmimZ~aTu`V7a!`fihhr0O=bVTY9Qt!^p!7;6pzZ=W8w
zk=p8>jQ(i!cvI6W)Y~(OL`jA|2wJF9K+s^(=SP+dwf!0end`b~_56enN)u?0LhDxl
zzjdzKG?u593^U9x4Qm!RIG$B3B{!k*wqQMKp+?wWey`7m4R$f!bDVI>`|EEj0;y9N
zFf!zKZn<5i+7_e-jpsNzcFNC?WI}rF^DLs`D51gedMsUZKUsb=UJm#mTJz6mR?D12
z_<u28Zo&5M6-0S95(=&{o=}+C;@6wk-&~~SDm6i3ZaBLujDg>1CZ6rAYfuB^GOVqk
zX(0AT0=4c&1K2V2Xny_C!-d3t(+g{4$!75}4VlZTzjbETpY6!s-W1V!)MMI!w0^<~
zVVOViFCcOrk(3vWZx8Dp2an>thI3<RMs$YJmy)aNUTZ4&ciwa7W2AC#sd&`%rrKBB
z@l$Mqu)DI7X%qSXm6l9=Q^CSWy_p1|%n2?HIm6g6*1hC7Lxz-f9^=~sV{sxzYA$pS
zrXQgh5Vv|bE@qqIVU<m<{x+Zd0h|rW8M61PVqoo;FKzvFjz<}n>=IN{A2%KQ!n@-s
zJcuv;Z}5dfWlPS#zcdYp4MURB#q&@3QTgF3W_1$VGTJ@P22=&S*QUR%2-^7GqIx8*
zR20)g8+7cHCUtrL-@!58oVLozznKM-<m-vY{Z+HRB&gru6T^Dp<Jtb8$+J+6>LKT;
zVk3TICaV8&bl!nf|Nj>^LJ=j&#};KqkrCIbjO;`du34#EgzLK39vP7plAY{zT|3v_
zE3WMt*R`*8jeG6+dw+lbyZ+$5pYPY}ob!B~oGOp0fPd^Q<Q94OD07?2{)VoHU!IrK
zqD6XI`+Qa-?H6JX?U)vR_u?t&T#(?TTTSSzZ<<UkZ#BUsFA8p!ZHI}^WbosbE{x4@
z;)=KL%Er3kd4S2~)HB4093+au3`|4&x%%dDxxn*&+OXu(N={PLKW)@J{i&!AtnkHd
z$@OMcS&bw(Ko1oev7a97Vy%A@dfh1EzMT&5-vOaMWxcuC2@Uq@T~u=acJW}jQ1`m~
zwK+5+)j6VB7GC3J*YqKahd;Wak@xed5a~%3HGoKD8{oD~9e|Y^%4x(m9yXZBP?)Ke
z)~7VMxw9+|r%G0-zkhdmi;v~eaW;dG-qXyH=MIVXA3@7ztSzKN^3rP|9q~lBJArp7
z4QMij3!kIrE51@Pn^Rrwl&~IYjC@+VopOx;Q>bk?@gQSgZLO`8<@k%|oZ4_!O_->?
z?N9yp`t+31yh4lkRgD$>)MG}(gEnhFZN|?iy{~B|T>)K!dYYB8Jv|$Fp)ZEmTs4bp
zm_A4C%CXvBsqK=D0nk7{hF&7JroRymjGX)o6hp<(<NIlh=C1*<C7}zhWUw_kaP!YR
zKufxNuq5kM&;6xOE6)B4)GZdA#`x#(N(FUz$u`K*x=t{f8dw|9(>j4c521j1(3MUh
z3o)*EDzF(}$5Zx1sWFk;zy7BtCxsWNSw-tcq9$GfP1R$=k`xBxLvR}JPc$eFykDTi
zs?s`S7DOgUONb^~9q1sMD~DJl+h6a0pG%<Bu;gboFnwh^rf*;{H(pLO)}G+mny6+k
zN-f~I2x)I(G;+N^(Ih&}3PA)qKK}~&9P8v<${K>5dbA|e@M(W`YG7dJdJ5JAIwV`h
z#*!?XO7V%0Wo$A<;kUz~6RLA|etOmGtCH<>eAf(la73xMsE+e<+T(L&(ki*62z-5H
zC==PgY}l#$-;d>|q$h1Zw?5Gs^Vmaugk|wO%R_fU9>p9c)mv5=K1wWjK$d`BEV^vF
z-a-c`NFJ^H2wy8dFyMp?2i&=;FSRvxZ!vYo>OIf>Z-}P`qHsrpg8A0*v}}~8Uig)w
zt3sL+q8UZr`V@LGx1t&Twgm2M-HU0>bs0=2s5h-!gon)8=0!~Z0%tS6L(Z;Ps%t`H
z<y7pKYQGO^Eine^2x}QS&1gOP*_A|`(8)EPZ<UURKXYw+((o?vgxy~lb2iAx*&uEE
z>Qdsz0^2LzhVN`N+GA5xrk@?%p2YlaD<5dsoR)E|+%P{;c<ZT~<PeRrX>OB&6uiH?
z<C8VFnMw|WJaYnG!VdJ<GHwAqHgPH9slEg$e%KCBkLtQ;0Vr7d2PjK%)<IU=PYvun
zcY9Z|@3vQ~%(*ZgHX-5DbudDU<A>or*suiOQg6dedo3BzLM@H<WXK#x3dv&nZg>0D
z6b?4MZ|Kj7_P|=p*RAIe!$etB<ZAW(XhN*SH52*;SE75aj=860c#fmxP}OZ6Nu>nM
z+KCO0t3S#Am?-``z}*4fd-_Dx0YH^m7OycnCjj?H&4~(Y;6qV>1T2Rh*lhMEh`;iA
zP}<{j0Q;@n&UEE;t?c*!s%|+SUat(akRxI=ufiw-k%-f`@2L!zRno4lH|KLM-lzpO
z=H8#&BMYpD2(~HOjdHF33XKilN8HtRJ)?dyVH@aPNg}fl?kc_bk7gP3ub}U3q{elj
z#-olN?o3sF+kwyCcb0z@Lt@--%0k|fn-*R2A1`CnfD|Ujw96q-T~~Dk@!kzm6Io~G
zj^-{S%0qJ^uF66Jxz}nGlKFevvF1=7DT8U=c>>p;&n$%EPGMYExL)v!KmV>yFXI~=
zG*1K^W2k?P{3sLu&V8(^xRjq%*XMWIhmTk)UJ3)+<TT)0f;UZ;@=`@!Jty0D+VXqY
z4`llOXWbUD&T4U?{Ni?r3ga`VJGAZF@%mr;P#o(gt+NOJ=mtolSnalh*5!+@dWc{d
zK=`o@@(uhAB`%k-E5&I7p;Oaz{5MJybji|w`;bnqP5{y)(5Gf;%$nJ~fWEp|{#7tC
z1iYFHy^pw;{;(4AUBkfPK9?ZW=Ps5viQAg}WxCsWgc`ynOM)4!#RCwSpUQ6TNdQ7N
zDovhuH|rYMs#~&z83RB|F-Fmj)>#^`=8=7iDJ|Cenya#vb+Jy7NJJPhc!$f;IJi0!
z{T)Tgi!lPBzV-JMts@MTCMdzHQ)`HlJJ<T;FIiX>xF&_oD&c5P&igRcvLtRk`*v2&
zWw<ZjX|hS)9m_Wo%K_)39hTZ9s06h3E6#Rze)3?;(KO*RneHM*<>i(3B%#NOf}sLU
z!O<@k)}jE{r6k{MWoC~+-gVvf{TTN}A|ON3qq^7M%GeFL%@BP9)JBcuHjrP)0NJxa
zrJ@eGqdoi)EzEW5^R%0(Mdn$qO4Tg#fq&0!urG@bPTfJnHEkyMfh!67bdo;HU7q&Y
zekFabySiA{^>iF6<01B7qAZ6U989?BDF0A**SUD?H@3c{%VRoLJQ0?tl7jGMzdZD6
zeW_O3{{a_@6hjopgHp?apMB7n5KzD27PZa;>f1<~)$uEpYEiUL`RW7s>;#<Py(&3K
z>{d9~y?_?&fqf+lHUgSMEfeP~NuIaUOQ&D+=n1~68c7qO0rw)_)BPf7{=C*#cHz7J
zD$aDdV8Sh~E7cSY#c2R=06L)TuQhfXPcGv|V4E%&)2C+*qb{#UGtqJIZmW6hNOO?L
z9XZ@x-RE0h*xU3gyE_lzl`4Y`*h}9@W?!IaH^W7-i-Sr>p+wee=kY+$BkfBZ3kcIh
zcn(+^QfGB4C%-yfc@E8X{BvnW8GSB_Wd{Ea?#j(7wD5YLU$Lq`J1kZ9^H`%M#0ND#
zl!lY8p56r4J$UP)|0TZiKk2SI>n@MX+MZ=4mx04)>oHss8A(VF#ptHNYkG^g;LxMC
zu0)t(nud(<7e?24PG!RJ8dK60g98wKbW0r76QR4{!t;|bhg>-4>(wg&ETPK{$4%M)
z2@g6|mD90m73=vBMeE6z3BR!Xq?m)cofQ48by|Vv;UAC6*Hy@M%YxKDT)5$_iQ{_t
zdv5>52e<CGzv8fF$+%+Ua?pm7-^7U=vCB>zUggZW_8P+Wc64N>r)p!%c!fqN<A4d+
zvpZ!uVL>yYJfLn+ZX0smr&TwXye01Hc=P#wdI`M>2LsAFXWk)qb&t0MHORZ^uY^kF
zeZ{U*mj^(k0J|MQoF(NGpYp_Ic}+G0pg$jK#b1Pou9Y=WyRSny`R1(j=@|)ow=Z5@
z1$hpy(S^m%0G)4WU#acRTH&_ISENq1*HY~hSPgWokoyZMAIp!)id^U?{U(TjYYc}E
z2bt<KWJMz#PfJJ~We7CBSm$+6S|{lvfW>no4|lt@$u1z;SC(G8-|xMG;4Xy3L|o!e
zId~Slu#R#yVfIt%%8!3HTn$+XCr90&F>g~9*zP<Oed8^!v(|dP7R9K9Z>XodvrrUz
zH}q;G_{hhSL)O)Y0e0f^gZpFn-vDG_rH~>`X!d99n$JvK35s$Ld;d>fmqdY6ywjkl
z4?stZEYJb!yenS_*)0kK2MSN;BwZ0|5Tq*k=>#{AfyY7$%RO%sP1BZXl#t5+nXg-F
zh~MS`YaIK_&SeCX01#Jt4q>XZbxSj<J8dA6#xEKaj!QajLsZ%X@d(Jw>_?^;TGFrS
zX3D`owydRHA$}3_Lun&RC~-@kj;pbXCgU?5b{=T?KVmj)Sy%OW1Z3Ngo)4`}Nrkj;
z*OKAS9$w-{z^5?mPgbzk@#5JQ#T|IU2uEGFKp!CXAElM5|CWkv^<tZ->D`#^Nr{#o
z?Azc_MNvN*1kQzCUZUk(Yg3z6Ua)Ie1V0@Be1cw<R~z2k>)QJ-_53!+2NiZhbYbKz
z9%FfJ)RS~mIZ5iwja!ahG2apt!(YsA{12x!q+uxjYg9^74nfSo4S`Qg0QjRryoS^l
z-yz>7%A@IRDN)K@W58|D|M+X5>Rch`i*wc{Tx#UkR+i=d(hE}N;O>A}@i*eR=5X$Q
z4bmCEB9L}$0JC-1aLC$*)37`~p|NQ4^bYB7<gr_{XT!Fd*uUfTR+$neZ#S)Yp-BaP
zmfEp5+{5*B)sN0kj;D#{hnVTT#m%4H<Sl#m{r-H-k7%fXEK7hINuh2zx!%bx!dtrm
zun{Jp6+>**P~h`;Uv9q*2T0Zlevh<CE9mH);Z$x|$y0lV8R=S84KY!<U$yruO=Dbe
z`OG}RrRn=n&ysqFhQMq~j40Y))6dA9H~QdB5yhMlFV5=1a<iuXlLT4p%wlpr+HRYD
zN{j#c9^&LGzO1#vgP}fx^RSLa!?fUnl|_2uk>5(KUXhMEXGP2m`gQK(Zw!*<G@TEp
z>xF8Kp3p39`itb<;%ARM*|kKB_q}*%6+j?S)f*3v6zrri7~3bQqANT52_s2qZ?$~Y
z+`zSjHz&4h{Dm{=uNdNgREfyDi(>R%3VJJhd^XLCDP|T9t;*eb9eVo_=MW;8==E(+
z2=Z6r_M+RZyjMRX2brdq(GdeON#^Su>Op_Y6)HbFVsDDAkj87PXAH3I`l+{5EYxQ?
zGlDbKXz*YIdWzz;@Tje}maUwsi7@1|hzAaZo&weCYlXyeT2-{6v`=%jFs?(Z6gWU9
z%;{wn&1kyhXi@PQnc0k>tzhUjI~}6hj8@=s2v$@xSm?U;-(Uji+}N^%d3Bj}=A@u4
zmn0hCJ%_T7)+_7t)GHIiRFJru*pehS6ESo`KwG8;<d4eRP7RKlm$TCMbM{KG#ym0~
zRrf8*(h5N$b5okYCW`cC;-w`Vd<!&aLmt|roMum!xIgCh1@_xD<_(OQI5rsoB1l{H
zr~%6BKR8p+i%a3s#M2v}gT6W&ao#@^1B&^&XSbi0E|h8Ucspl}GUZDooflUDGplCG
zAX=&R0Nj2D&f_l9yD_LiIUOK9cRZ-U2-k<+kp0X&m7eWW>efE=_Z~X_YwptH>m<*s
zq~tV3&kXc#?wx~zz>|!#db00CAuYwjB{L?g@X9L^X!72!-BGhxG`kx6QZQ27c~A6V
zWnW74gfKy+3F3gM#n2#$KglXJK=p3pv<#(q4u*kP_I9ao>oeM7cGTk=A`@}+m!^*W
zR)=K(zY)+Ixd}z=%b_|B{y%zJ(eiv)e);EOVHmR!;jM_-l`5MJ(ys}k#XNVlzfZTD
z&<>a0gzT@6FB=2(1PV;03^i(-+lE>~hpP@c;#UuaB0oBi{w^S#s2_3Uo;RRMqGe#m
z_#mV@1k|h2`;}A&yvv&o<i~@zt_gZFNve2Hd%q!jM-m%hzvCu`CjzW_oO>4Mgvb9e
zsX^4UVrYr14_YG+WA53`B}XRjoF&)KwvuIlI`};pMH#Cz-IY3tzx)QJQ~6(9*F75o
zYq`S!)x$qs21RWs=v0t1*yj+<m~puP53HF*=p#NkQj5sgWBR<0kApN;hObnl&OI+x
zs_MwsFvC(6hC7G{=%t@`nkQ6WL4{}kP0l-`Bmx58=?fX~lhNVSD(2G~DszY_T7B~|
zWQr%_ywUDqLq%0YC9TWBKNKB6;ks~+M;alrLA20qfl<8GCh=Z)k3+y~rxR9K%cV1b
zp+G%-$nqGpgTIg2zqku_SUf%rCK}(WKOSJe*nQ|n<~RDLzZ(-b{aNIT8hXoMVVG5A
zkw3Oeu<+i4eR?(JjkkAV86>lY*IxMh9c*~)B*-zGT`IfLHJwJXDDKKo+<Ma=q;jxE
z?Y;9U<dS@O;59$imGtU()%nSe>Z|RKja;kK%$=Oh8S{s;PueceGwNwBLocUI=j)W~
zYw(5MwuTD^-tPjs5*b7NE~A^MR4$&=!A~cXQuj86N9*f#pD2HuVpAVu^nUTI=8vJf
zH~P8KeQsQg2HU2A#CfADqG|gSOX<7H61}Y?p`J8&3It)<*IImgifAr8R&I=4sQb>O
z4eYFU5d8BHg&bEiO$&pPDV&<Mw%+3IM~&P*+1z3iN>FgLt=lir{pr;#A7p}UJvaBU
zYO5Y=Y?b}oL~;TIw=eq_XE%WzEWRjZKV0jGISQQFCxd20Y@td|8pnB1ud#E-w6a;J
zK1;hiSY)q2y&M{bF#%8ixYjVCM7|4ccq_<XEe`r(fS758#c=~aZJbCkTM>!Yo;bDU
z+&KdhUX$BNgem18K$QJgZ&u}qN)=Pt-G*5>nR`GXQ29;aTKrQVmK#Z+>-rR{dpfYr
zd$9ryd2WI2S#ON}MMJaRjB)e2=*xSu>+rU*NGLo56Es6Yh>1-G{4ZADaPssOaJ)@M
zFW$$V-sDszz;g~#`)vqilLMPlPb|w@X@8GVpPyrq7}HJ9(cra{*{J15vj2_9NaD`R
zQq`lDQ?s|nXHoNYN=K{KzrAR%OULWoH>&}A5O-=PALeL?HbCu4kPe1g)=|;R%;O|s
zXbzP2bwpGZ3|efdq5waCBhY-b$_MGO3uWZMWa%zltj@UtPp?R|aA|<kxnc42rm9fs
z0Mktj`7CVb=5&Z668g!OZd|rdeZvC_JKqKQL1Q-ac%}Ja9Nr{B%zU^+<o~cRu)s9;
zPn^@e8tM=M&~G1V2-*9qqcz>?>=X)tz=7i?(A9>|A;XQp*ii^*blW#oslD3?g^u9A
ze<TQe9F=_XnZRf*?-;VFwd<Q=k8x?`y3F4mmmohygbXAD@sBhqgn!s58V4-UdYy5l
z%!sM{H(cO^_ZvxA!CJ^o6DiG04o}Z(77881buVQRkb%aF1>T~1CuL5jRj-{*{X|-9
zvC@88@f7b>r--d0d%9e!37PR6g+?%>-^=b~bMhn-xjT-1cTV>x)}xjeNrpk+AM-}N
zp&ooZ*~7(He6t>P<s@}adBX}}gma5~vOax2p4@rRoXpbw4Rm3CWBvXqo<32@)s-aB
zUMKKEDVYA3`&vTRwRBv9$yrS`VWT2poFfgNs`6JA_GZa1UZOTAS(Sms*vpw%KGflB
zqf(l?WSN$?INZw=mTvG1IY5)}J(m}6+qRF7)9KoheXajY=$hgXp3)!iM4pE7*LRX1
z<@KGtj1%ECeokCiwW*^9&-z3%jkyO#bL|i9pWx_IoS0}J+y|UxpS;=u@y+aaybU#~
zwyX;fmWNJ0Y8)~`z&ojnMK(s86lo()!Hz+B@B-ac>D{}E69+G9GIjkK;$638vNy8R
zmd5t!0>NFwUPCh7i~WlD=9R3C(jEt)XsjQk^mQlNn{_%2DPtYv0OQ*+6lmAP7PWnV
z_9NU~-)l@Ha0`p?IDcj2`AkQJ$pa9d{m^TjQj`;L9%#oD&eK;o`VT?bT(hB-97g=W
znQ)>jnoAh$%bKEOkWK^onA-kc`2tQ{^6E=wM#bH@QrUSA!wu&MYr@<xJJmI!c%5{$
ztYvKSAz@)7>S>t3%1|rIf3G!Ux;+(3LE*2bWBDOnc6xL%T**%m<^6O6E+wDD_MXJ^
zc!)l$5Bl#;`)c&_v>aSszwlO$jw3U-Z&?xXVd`Qu>CePe)W>`O5MVQHM%IrMpmcjI
zi<hth<j+ky9XG>F&`+ad;eHz^^bup!GCV}Pj{bqGdh~MfY9X~9V;5NwoC7Z74q$bC
zXgELB#O+w17!W0*ayG=~8bkG8#-^~zlDuj(c(vNC*P$!ZKYBSP^O|PKW_Qfs@!a>{
za-MB=?*;`UKMFs>4Fsr^*XLF@gCf{|x2;Sm0ourc&n+|$j0H%y0Zb5dF7Wgw6M&^u
zGo2Q4J&5T(QQWMwYsLN3{b&XF5(G-d#vo<vtaS1KPVvtu5lZp$pT7x{yv#7Hv8BD|
z*4k%959+ju`{mR;DSNn03cHOcrjTnIE>MMtb4B>6{K9cNQ~h8-KV!Dmmt;kBK+%jX
z9T)d6<a+PdyWkp#F)L!!>nTxnW#;drG9ouPtzUY&^uTCYCOE5ja5}%6oK;cN`}m72
zeFk{UH}{<;n5fNFRUjk!<2JcyAa>W)a^PuB9P3%pPYM1&x$mO&a2L&#2k3%D^17ST
zvcT@6K8@=cxeoG|lF<q)e!R;_g2kM>fQOQ{7RL&G*QsUwlUMB}V^^-azp$*I6WFZG
zG&@mDf%nq81=ywUj?pTANq0q>qRegVA+I(TAN6K3#Zz;hax6>cS<HKAW^UMW_N60_
zoQ^Efh!6-rt~b?=8_&9y%jtKtm(ylaSAWV3@>LlqV`_CPF}+#F)*9tl%`EJm`sGIi
zROwFaw`*XLL%CgVjfpbdN0<o`)(*rD=Bx%*_3t)*hYt|*bU?Ns-8EU@c)E@lI4CE`
zUl2D`g)zHtF&X$+#kIO>miQjH@^FsEgd`?56ssI(3OSUa9LIi+`Sy+b3v|rL@;f7U
zzkLhL3IOm{p34Dnkn`_|!^8p!1mrUv(1x|DuqYot^8UNn&b;a2&O+GGBBp@&ZIlA;
zo5>IrOIJYYU%PS026-be_d<s1jVTX!meGOjF1Jg)hFQbk?)6>LX;<C(vRp*J{eez!
zo)-_^o1Ulsqf_~Fv-_UPcQ~~XZ*4A#5AiL2M{-RRc(}=Yjo%^D4yxrCN2Nk)Gnn(+
z&$A4T_NJJ_p9|3a$zb|9DmN9$J<ia&c-l-8(xc_KqIilhsPu91=vur?S5ZmC7`&*t
z<)g8p3;+POwHYbSzT@pc7h6MFniin>XA$aCyN@q;HmEnVqvF&5?8tu3G@}Q)5@H7G
za9Ac|pXpHyi{-3*P?H%tJN{i(VPK?{@P<9X2=&qRW5E5D{2x<7ci!+5FQCOY6oEPf
zeLpJqLCbOZaTlJ5@#oy$W{D_<Y**~`+GI#1K@Lv^L4qr890_|HnC3g`zC=r)2X?Vs
zKwSh2(334Uj6P^KGQQSkIdP1SbXrjBgOLt-uwS=gk!$qe1SjqTVHQgspsh4;DNqEA
z{u6~HJt(O_JmU<u%f_O_(Xa4GANHQFygEvlwCH&*BM}7fxU!&~d$LsKODSVNF_@#M
z3lGtP_YmA`uSTl^bVr%1ZwJcwc!3Fip|O$4z%sm{K96%bH4CC)3?L#+9mNmdoDPB*
zi^xp}#OlVsszz)%8jBdEw~52%=rJ4JOlq7m&Eu03eS{o+Dt_GG(a8YS8d-()rdqP*
zJ@+9zxp$-Vl^5TI&1Ib0#bZ$C%<no=nxK^juOI1rrZI}BM9dk-NcAACOXjGv2Y+uT
z{2Jc!DElONPos){b#tnsl0~x02O$0#@m*!>yN-STGsNw7KaKtnSC#zreG=9ltGYD-
z%PP8>V58$BO}|hb_O4~cBkztuO*|U>E}t@GZ-T#@0~{&AG)+~)q-J31gwGkZ8Cg98
z)D8w|xpXmbFu)dsVe@fA{Uc+mE3~1kV54bCX>_ZqWl{InN>-wI83V=yT9xSb$<U&1
zUuglzvw*`%Q@h@S9@!iDO7fc*H~<$G_s!pt4MhkOpQ1d3xc=kE-A$5kH@rb<e#@Tq
z2_!T?!f|-aX4(;(pCCcGhrZGvVUrlqbqCtBsfx-7SL$8VPW(MV{+OkJh=;Y&KE>GB
z(g_0fX+?^D+NRFa%Lp+}nn&^9vax(vO2?)a4Pt7fc8kX3r&w`Fi$=%3ygP5}S>VU|
zucltdW{x0=kB=!*?Q|L~f6n+3(qpr6K%WP)s%d|T;Zpf+6Q9r86$Ette4~*D^aULm
zzd%m;YFmd(uU{&Mz##_~(|o;)upR8ke_o%rJ2Ay2PbE6XH}jnHuA#DlrqMB!P|BG@
z9oyRY;ddnQ&1d(xcQK%!_d&YMUh7k1*DQ*%94yK8J_9S*G&{~dwW>xp_y>#|K5tu$
z<b5xC#<I-~*h#c2Qo^w7om&0;c4b5OA_P2w=^(h`r_tF^T&J>}_jku)0=$g-KRY?l
z9LmL7^;B_WF~l*K5a<Z=TX+9<+K0-~>F=qtp_{4DAid#)cN;&E%Pi%Vs$_vE=+C>4
zBTRd%cbyk~hz1*!e=&S^*5cz11^@k(8Q;pD6FsCE;Hk5sXe4Q-Z_U{mu)#^|RHcpR
zAo50Cp9i~TE&RAFN_ANH*eRYuTf~_A?&`73$e)Rf=4_T&CmX$OOLJ?6VSR@EoEa{9
z_0+pZ*WE|&rRf-(x`~!yLR*#wIxFg{YocI$Hz4tiMq?)othsh0eQ*(x!XvJa7cuaa
z-%M}oyS2Wy+=p2a`DHQdx|EN)tl5SN^xyhd&wlFsnyRY&rX|&w;*Pi(7yisygkH{;
zdKD!m>yz$rFA_ERU-<S43PG1-Il86n@gyMaNXDCv(p=AR^I!m|BV9if)?XbnB$mC_
zoFMxnfz5+Y?z&;2)an1zRQIu?Nv6hvNSg>Ev-$dn*PPMXq`rTD>HIR#O>G;YfMA4{
zI5BD{NA!JISnP@xfvZvv-EIp<UO0C!4ca_Tj~J2eEouPBQ&rD@7ZK!}!;u|*Vtc^<
zY(E2|j}iH0^LEO9sDG&wrJtAzT##6Xn1ro9x33^aUL-Ebsjo6UwPZ|*lQS??xkwK}
z!Z*dh3!!`1>;_tdG33JWs`<yz9Vf&yQy}}B?=d?_zU62flVLQ<YVbTk6TgMZ&^%!I
zy;0P*g;EFL`c{*^{z#=M;j38V#KI{9YQm=fFcG?rD(Ng?2NQ2y8kS2m*D7uKFd9%`
z{e$@2O@4kv+V?)MP0)#@@sw&ksUN(Z1L^}mjOG0)rnoutk!k<_64F3wXxL)zZR!)_
zmm2gLJA4mfFKcbg+kdG+6jnRx2bH4{f$jsJqrqkOSIb<W-9BXr%3Wx{%Mg&g_o8iJ
z3l%1Q1GNz~xp3!2Jg@JBU|UC(CPd-wBna}PwyH54bdZk~({&5Jv6fsRKA>0~=5sHa
zImKBBO@nso*|=&>4;^bk2a0{U2VFVP?f4;ni+Y+4s{oclGr^r|H@bi#OHU|PwXC2`
z3-vx$b2IUe6Px8;6v`cKd?Mf^hG_WTwsH3on&=(0`r`p@>5g}{PNj>-eUI~hOsQO$
z%<%yx|E`rye~oX3jtOEwxh(DvAzTT(c+3iVd1cz^IS@Xkl@%p?Bi?{2(c?m-GNEZ$
z$|}P;FD!=jfN44znI2W;KPkCnlThDFAwZbcf%m*q6B3+DgOXUnQ^n74!sv8mwnqr*
z2GiqWuB3H=H!miPX)AG&MxF}alo<r^9`=0<Nh}T%*X#x+xr`@Kk7eDt;`GdHKs6sZ
zTE@q6MU<-Ped@Z9locG2n`MSx+%^u?sZ)}-K-&tCaVKc#{!II-Y>UZT7H@zdyT*ek
z+|I??dIigaC$J=1jC0&I@IPE&iR#1XDW0{hG6%c>S_1(gvZPy$<e&o@%Hu}t$U@ZN
ztF8}Ar==tp5$(B(dMuC=pn&QC>l#XIBt7{90>rVdt<C0}oR$5dVUer8>OA`wZ5?kf
z<|A0nC&^dv@K6B@$px;78w~4`%i1bKANHIk$^3w4N_k>2_mz3)zcPu8h?%Bourix+
z(yL%g?B3S<v=i+&+(^0R<9cwhO8}d1XL8_Q#2@Iv;o_U9yqkBtL(J<fLts<hznNtu
zxsTj(WsK#eVD)}AUk3b=c`a7M6MCTOU-NF=#DQaP^9ftM{IunNV*=v=WL6A39)L1a
zDj#|WuHr!7_iq1_HdtKvhsf12-Biu=uvKtjw*GzDlJ7CIbT)81(BW-DptOds@l^IO
zqOiZ?ozuq@&>YoZHf|3*;`s4Y3Y8`GsfECG_BUfZWxgzmIc*@}+Km#umpjz5jx`jI
z-S^Zs@2*!*|1GZCFfTjSJ7AU7>eAXq9M^lw`FI#iyh1lOL?KbtS+7^CqnX>n^`^HY
z#4GJH$#*a=NGs}UR#<2W6RM+e<Z23u>)u>nllj2lJ&kmqW1{m}r*kuz?crRV@_{7B
zW975?8%8QvOFC%B2C)VoVs%_)6@<Ci@MBcDB&*!uJ?_?=YfHTJJ?rwle$i`nEcVq8
zuqa6Imxu?!a`C%q-lt!Y1?CKRzETR<dWbKB4U<yL#0yjJM5~h=t3W>=1m5oebHRRg
zQhKRycARl^?WjB0<nqGc{I>UHo^n+ykg;K%{#ozzzn4|HGSFd$HWE!{!0B}&2gmG!
zC}oqQ<(oEtDsogaCUr~M8$#r5`w;nr=a9S4d};#39VhvIO$#q4tsVO#Czi^_TY8GD
zvlPI!AF_-w2}lL!67g>9_bSfZiGh)?rq=Fhk6fu*qxwXFMW1#$yrJgHaWYbC%I$e%
z;N4ZbK|Bh(DOLx&|6P8l+I58byIcN**zr6A0h#x4Q9YU{4e>QCJblpB8G^_(0u{dZ
z8KL^EUv^qQB%<ePVt``DrMC1lrD$C3>WT2sANS;xwdAuX&3W_>TpBX4%O$i{q;NAG
zd0Vn_<+%9gv*?E9F}dfgsD}ve_7YEkCb-wt9it4;i0V(wNx$k9$2q3FASMoX4>hZP
zzNnElJCZ|`i2T=}P-<#TdSg3#9#dxt{Zv!DpL(Z~dK2xRZgZ#@%1QLkn||P-v|7iA
zuzVLgX14*=qbr}{9b1PZp@tB-6=WzM3xOFIh-^<5eV%S`!n5`YLl%q%!oo3{IRG6}
z4Dzd89F$I&*)L&=M{b)rBd^U7{j2e!(ad$Wpiqybo-Bn<=sZ)=)s@7vTV1UEciSaD
zX`Z~d7=!th1*r*2dN!r}%ct(}y;0JjK2eJg(*MR)$<g!)LwnUNy~QBy+MY*6o52av
z2x9S-)B1r3&*`dJe-|y$p}QpCBT?X$?|)?-r{<?HUw9kv43z)IRcHcM>e`fz8bI+;
z%JvEFXYRHO0#2r^DK??$8kT}*tjjJ8r#?WDVCI1<0Qy;5U-n^`-n48psaaF_lag1o
z4Zx_oul_^foalz{R8!(iu}cT$#O4^ML|)~o`+xg3nY(Iv`Wbf+QWx(wN`EwT_zSi>
z5fzZ%1Q$AG5<GMqcj+Z&hjemieKQ5>yJkiVmkn>|d~vb<*9V%@96Bw+{t4h_Zq$aU
zv10;eO9CIt{-d(U<_Uybut&J(IoyiLf2x9^OBX=12`Rtg^AEBZN4xTZnwi~odBbm(
zJez*!K~<kk4ih}orc2nc{PNQ8j4M)hXpf!b%;sM`<kZ4FO5}5{{CE6n6LdcXbQ+hH
ztQ>do6Qk_W;M^qtuyX1iAtK+kDYt*@<IufBBRql3!RcWgn}-M_a)2Ep%Z9efN>&wG
zJA=^sCD0LItXC<g5}r-e2Q#)?)-}d09v2Qg*IvPnNY`Er;~P)6>XrsCx3*6t-ttP(
zjKzA~dN3;zDniqA)bX&@*?UE9KI3A<Pn$`5h5~!))d5fEGI*^~aUot=7p*vc+AF3S
zC!%TkFk0abjHu7Edon{%rfWLuYr5XF!_Y)wb=1l>mvF<ILV4c@Pxrrx@HR^a@epfU
z*LH_UQNkzy&f->8Dse<k4CyIjRy|o{{q<Fb+nJ7F8FiM+V<$}L>Xh!UG+mBEW0S(T
zv*EZa0GjbDZpi0D5D<Fg!1#E@17G1=Xc#H%JbSdK$R<Kow0`<Is)ZJlb^hSDTk%wR
za?HAr9NymxT*OF$&pgPC6LpV2n%Q3u%S_e#&647ogxWF#{Y|DI{H)+;`7H6}{gsu-
z*&OMC%k-189ktus?>f3mNREla{O~IqzCg<6S=4@eoGSm1|KQ)tGpFc45_~#X<J~wl
zZ92$piU&>m@+GX(f8+~`#$UY&!G{0$rwdKJ%>MU}*kR~)xlWuJ{Vka+D&@XQeMSGL
zTb?-)Z3o>1Bw)5r2x^8imc8U57bEt~w@y-RqufQxX{<#)+@3D9eEJ#Dw%gQ@Xu9e)
zvbfD#_YL@tmsX)#e+tToQo-~Lo=dqqDNa0{guUGOtI^>~4NfqS{S~G=mym``k_ad=
z<%@%~hk)ABkt;j5(FowLCHlt0<;Rm|q@ptbCi$FUs`5W_)~6Bj0xE3@XXeA$h}U;h
z<Gg=V<^L~@YmuZVloZnvQHb(N5AE60#%!Pk0rfcN*ZHU!eW-&XuZ>QLWy=EUE$&v>
zKK;AjBaAP9t^TM_8Fv4Wr9rwHMbMPD^yu~}p&7f6q%L#Jx}8!(%?*pa7N?20QFR_l
zd9Vb(=<W#{W_3J0p5dY`&%1xQXz`Gh59e{^LbkrL`CdP}cG>Zj;T?-(DA)2yh_4aL
zWoMXfKh1z)nKg@L{Uv;z++<gm%hr-_I#5)a_w?i=s-*tpi0fZhqzaK7FIGKeV_xHS
zafqWg@4K|5CzSI#rdQ4EhqB6cMEOLL*Tt$8d&&l|JI>J!Hf^g*pm18Au~*ic=Cx}z
zt7gH-+6ZfWyNTE4kyG-ePvkkotsb%EnQN|XmyTHtKmWcuZUdS%-1{=4W{Ma)p$RWx
zf-ASe(g=LmcWxemY5Ewg+wrVneUrQ1nkoHmkj45F?Fn{_Na;l@v(HgoK0yiW1<|dk
zvrOb$KSty`Ou(aVpzGKGu_>ICFMkOT5@kzF=iCdB&;m%W-ROPqqHSN|uvO<r59HG_
ze6#~a{UC-7^h`$R9@}|V-?r5e2SwuLmc;hACWKnXuJk%$Ij|G+%kyg54#Cd6c-Y%e
z8IHK8a2L$ttC4bJ=csw)TSXn4J;Z*gZ5dxlFjM$N_8U8Ve>j&wJ<LQVTP__-*)DSJ
z3(H^f+VqD9J5bG??UyZ`b){Z(r@W!2STlZ6Q%Tz#uvN#BF2)_}v`;#;D^8+>_wJ}o
zGs10K=zhiMrcN?RbH098q3T{zdiZSQ-?|*LLTi1zskS4FYL|C%+x^+p-Gis@v~&(!
zhI^x3<$uq%kN*8LtN=uw$)2S^(14HSN4@8^lqxup=+7WU@S|5-Waa1d$CXvM4bXRe
z?mFwNu!eE>)3s5Xq6=KF0v_hRZNd-JoG8Xpc%lOs6u4}Fo1LMwclO40^O8GC1_~w?
zmgmi68*!R>L=+H#VZfSV2M98<6G#UZ1Jg53AK|9+=_bZ)MK9XRWxrjk=ETOm`$wDh
zDhwEj47~S-IC^_GOLH&Pz<YsZCm_P@)Zpx!3Z+4Ya&X2;LB^kLCE2r6a>l6=e51dn
zfBvkh)Q9n6u3W@lv1QxJizrg+Cqy#C)g=t;CnFGJ6qRvtrksaH>&vXofz=wMb@u{`
z*sfbpM!(aszEhu-#~G684e$%D#^Xrmn8=B~zKs`{23?D>`=P)^B;IAqGt1#x?FLTq
z;P%;z!yjGdkWp697be->CHX38xBw^3V_+r8{lNKMR&O_xE<oJ&1X+7ZkkD~+{rZA|
z+^djL8T71mmI=%{P@Lo)<|rkBK&(ts(h07vT#ZiCx(N2N0tRP-Lj(3O1N%)d&QO8Y
z(9EerxBX_9Xla;fm+NR!qgA<5kt9H~_ve;&_qp<XJEI0jT=Cv4=i+>=>07<S1X@@r
zE1`{0PrDu0NIX<b0bP&&vUC2od*NAz<I}R2YG3-~5&kPLUZbm_?1}gZOL_8lr05_;
zHJ{Rh)Y{o8pV+$i5bQp#yqa!#rIAG)@vs1<c!+%gM0z6AZH+c#Oz0o|xCXKmQrt!b
zpB4?KVJ#hmN?qK#?1GrQeiyaD^msy{RavH<uR4ZgHkR^eADl1Lweehsl{yHZ{dZ@0
zmr0}-QDgo}>&G$(9Nnhn#4iH;L9y<p>Qps#nxX>YAs0(XABFa%WM)zC;y(?dhOGAV
zNF>afFZy073+MX-qgC07`xeYJ-~jZetYmKg0!5f7&!)ev`76H%C5f7f2fseO2h|w%
zc}i^o_ybk@tm;kGO2eEybDGYd1QHsE41cg{;M!qQ>Q0z@Z`oX<Q)2?<$(**Vj}dA}
z6q|gwT+y9~0prz81!2uc_{S<qHzY&h*FRVz99jNd)Hr5U`c>-|Q^|UnJJO}zi$Yb|
zpVsWB6kZ$s_A>-~`*i$@!HDknhf3)RodchBjm&nWxXPSuQmn3dt9BO3M3x<&`p}2S
z$l^#_Wi<ply!#Z-@i3lYqHOtnZ(>OFX%s1+VS-)O^^pOvwU~1D93D~W<m`t?2RceE
zYkxaVZB9cznQefrx-zYd)RJDj1Oda$!L!jR8XE%Dn?}b|;Y`Z!!uV!Ou^b2K1Z~rS
zW0lVFjbv|qYx$G4+wYu)+!SssN>=puebg6DA>M0}O3a+nnp|$vSN;*>3D&yXA0Y}&
z_cNPF*MvGipBgjR<FYE1;q=Yby)LO820xT<<b6p-idZ@#Bik20zWN<sV!dYV-uN2<
zl@YyhnN_Rv*)Wu&fiB8PL9<<l{M}8DVh*90PpyiV8U3I&q#=_=_h$N+s7faEX@Puw
zliNNzBwNT&jk!zry6Q;XXuxt1=yMexGOn9$=?;9D>d@?6p~C0FCx6ESUJZK?gBGQK
zyk<<hAv=6rm=goVc3;b8VoPY6qEjoRrgvpH+NF%ON7OK-bVXrdjsrPlSi;~!86Eo7
z;B{rZ{fob6PA?`#>7E6gr9b(zEdkuKyJ_cBdu?=j*~$#LtJnDp#zOk31i59uxQTb@
zW4R8Z2(~Ip823~obcd>lk6it%CxIJIj+7G)X3Q-=X1iRl!lGNPN*fM1>Mu?<c6!B1
zUn=}=+F`p091_1KyM#|{JY$6~Mmm>2HgOH}Thp=1^)DoNVCH4u+W7xD!^~dnJw=P`
z@)lVVIir0=|Ku6~`ck3upE%Q*+po+EpdRS2P3N5xP5OBhv$ccFrOv*9qB-GAvHDuk
zz(LHv*iiwLO;OoQ&ezdkOJEOW%otnyG1wn?t4N13)q)~<#G(GIfIUHTj4U0e8B1W5
z4Q*hMPPn*Zzs-*so4-NYOgM)^_hq%qUYAh|Y;uDsO=Nqg1E?H0mmF`)<K90PYcazV
zbr<Q&D$3TIU_bjM3-mfHA!1$VxL~}{d`_{)oUg$r6HXR^vj+}-FU?UOT(J9}$yYA)
zU>Urw?wk}4vZ_+%V&cB08{lN}qR$A?w==(0DGn4;kRURCZ(D`xvL0$hNAxZ!=Zuwc
zMO5n$pTt!ysv*%cd+yK&p=qm)K9MEtl12khPgj4vp^~_rOXb{^_VrGLE{xHf)a5#k
zRY04djIQk-UH!hgE+njw$p?Az6xOAqdYfPVJrrBzEUsXKt(W>SALAhwmlgC6yY+(E
zZc(M2>zlHCTT4jxu7$wY3Zt09ZTVIcdAWjRsvD$_*!ub?lo+@zHj@e12xasZImALx
zFVXb4AVrgh&gR%Fb;R3ITWr+0sCU|x4V?J{RqFX0e?l3|fOL%`_D}ttW5%NAJOG3S
zaA+wkrH7o!x|V5*<Bo_*;aj04i-@&o0xRN0C}XnW2S`s;QU+l6#by<k50_p{qVAS9
zM{QaHDd=?-l;H=u!Q&V%*|zk}${$<Cc-yRnGL0NBMTM&xrb5xrj4G)0Kj?E}uY1|k
z1x5xwl28W$BRRHf;J{<?hr*R`Vbt}VguJ9e^VWgHtwQ%Rr5<zJ%&cd46OX*^6J6q!
z7oI}t58U^q3ZKMEfhJ?=B=NG7#s5+oa%LWTG!(N|;WUePwgcd$hI5hzwOzSHbF2p9
zU*10b%b8&fU-;xl9`%W6)bW%wGiOc4bOkMTJDM@KcEdnw0G<vYnYH@rw%2;A?tD<J
zX)Jnh8)$U*f*`^oCmy&#zWM|^N^*8UGsvlXHc8ejh<zz$Aa%-*@qX&iR&A$QNzkFm
zamdYg2&ZyKYe2=&yOOz_q%%*SNXB#q98jWx*oV!X@wk7AAmjxwzDl1y_w*FO27Jg`
z!NSwf{p48<5nlQ<2|>ibiwJGzja0e}w+Y^k^x;o8BR@7Na>`j?UT5vxDL8k@Jy;&r
zAm(&igh?8Q(v@aCIsF7_tL=K<+!;hqyys?MN&)k<RRAl}kj}zHzQ22%Wv#?N`?*>1
zv@%t>AgiJ2qtlnQjji@)HC9YJXC1rG2rTlpumV=s>`0qd82|4VY+N2uQU>Lzm%)VH
zGxpWVFr78H$1U{ML4(`#6@3AOF()g6hv=`tx9+V)*4a(XMA!HpOZ-$y5)rz#9>dPn
zD^AO8wkJ%=LmQ)h*qH@=xI_4&k<)CXTU9w1mFAH@Dw-GnOhMO>mR_Uv^eI<`yazEq
zBVy^K`qZt+RJBUPb^3vfJxljd<zC($U})|-+t!_Vh53N&6UHY8^}?364N|q=lx>*3
zPc*wpRg!ZbUE5}YFmep;A7U-_>CPkKBUk?tSb_;*dTYtxcMmRjtkq3<t*ieYggJi0
zN^hTEO{uhsyGF4(B?9j6NV@bpN%3R3I99nN>?D->vZjMmvFn(ly*w2?p^7g?{`w9L
za7wGDCv}&z_){<FEec|%hu@(`o7IVq-?w)h_|5%3!4|6v{8{Pzq4FgHe)jQ(ft63f
z$x$rtg$+IYWG)9R=|NIxaU#(>5>wqQck4%Trbsc{Y#y$1gN&tZ{!Vi!pqy<A9>{qY
zE=u(&OoqbuB+oBdU*~M_#+m<`9w7Q|aC$0rZI{{@fn3wAH#Yr8+&(v*9q?6>IKwS@
z5~600k=qqyQa(Bti|i3-e#!G1^QrN+`;bk_q`_S-8n=^YZI3x+{-oFz$zcOxBl&s1
z#sLOaoV5&Rg4yp?Jy~rOW|QLhwzSv3ZeQC=Ci6-|=^NcXkIqIlXwZ4WEViX7g;llG
zr<;?6q%C=$Rd4C_<}di2dpRa<Us$rj6cQ6-pH|VA{S-C4wNTtM$mRdzWA^m5#cQv+
z-->@PTNHThnr|N!Qhw^=<%-A%rh;WZpYDjgvhcMvV1O{4>z(9eoo&yCdv6!b)1c)T
zTLhjx4`ckj{04JNJfqZ_MG!m0mRZC-_9Nh4Z6gTMT%ZEgd|9?T#G0NHO?H{k&r}2>
z7X1Z&XkhPz>b-9zTd+}A3W!sEh<Y9QpUEaS&TQ#lDq-^|`@>pYUs<}VW(|;zc3For
z1rUx_xMicy?*LwhK)O(igrX_p9`$#)1BU#7wi-s#?k)e(l}aTmgelY!0PNbMOF@<>
zq#;j*A}4?K64&5?)BI6d1@*B8=;d#{7be)6CBrpQ(tqy*Z4F;lQ0t(mBNWn+Q~%qa
zzvYarJPR#$$T^6+8?6NNK6Kqm*qVc23z^!#6UuNsc9Z3Xlqq?jA@M2UFVG0+YcwLg
zNH<K;X>F=kV~hi0jH0%jP(3l>q^WQz=%v-uA&yqVr}Mq=Kt_6b_^?we?2HCoTj0GL
zyC9o*(^;5TE;x6hdPi3(iB@iM$P2fk<COBS=wL=RJUNR7-C@UYt8`$p2Y93RYpU1*
z8$H##zd=mN<&Ia&B`WLBZ23CmM^UF*HXEEAX~vcT8N@OX-c4va&}!F9wrj*6_7iKf
z#B|H<4+;4yU*yYc1L$+&j3$*|p&<u*k<B6o@xs&xBZE<@mVUyxfIu3`LH!@drE8>*
zJZoLeJ&0TD6}(HTPn^h9<R70|atYR>qHB)KwB%_K4~(}@-x7dmr@Ry54|oS=6XiC@
zLkp6w?&7F$X^Nu621P3AYR#k`O0P=lPuey4I%E4_we)tTRR)Tt=QR{X&9keirli%i
zg|%K{1NR`~e1gQ&3TkFhc9r5|eEYZSsVBmdf?vCkLr_I0;?JK4THLeHR=t(u8Ds>k
zx=YY?>1ODfdWxRT?}#r6yF$s)F%KI@Kg4|;xU#dvEYU6|PwHWkf1Oak+{CE@hFrH*
z+NISsd&gs<#(HO9%?cjXN#i~?uWgVJ_h)PLL4I6!-@_4gH;SNaha!F*t|e6Q5@RY-
zE&ZVwXO07Y`ycy4hqozX8D;H|<~U8=fgMWED$RjHm9SpYnwaW{EJ{>J-BV#qrj*lg
z;5@gK6>C{T9+WuT=?^VAEJbP6_1aHAamN~!-{z6C(Gg!CZ%RpjCra|xVW;drW*8W_
zC#SL@H{u0(_q?65DCHfWn~RT}zk74E)TEse`o4p{7=*_wyUuo6Z&t~cEcD=dig{eg
zYB*<JUwLb;+ccHlY$YCl){p;cb(~-&X_kLxJtdhY1fahxXNCkRG|(!ZdttJ)(no3;
zp#wuId*^rqAK#OajF20?J3%{2_|t|xUdv=DsbR*4;Z8s8MM?y~6_1t873qYUmi!8<
zvQiods+Ojt{5M5KHg~047}CypPggbPBdktt<>;NX@SZ*O^w5pFr<OKFxn4J}&!%|e
z)e@pPS1NYK)8!rASpmnxXb$TSFl+wONt+<P=$r4>?{MZQC$Sqe)Jq7Y8=wk+5vN~C
zO%3_vFOEnWilRF(3}Q0HUeUScEk5K+drT{2m7bT5oB$lkDg|`zwdzxB{(4!#bvTfT
z%6(f#c6(<bt?}L9J>HX8odWouIQ#HI@iCa(OLpPQ(^lsHq>l^APk-JkCFkJ&v|FIL
zzeXNcPPVl7PO4wIKakXOT#1m%H<TA0gzc%*ze5B})St$0r2Oq9qU%CvZ)H5K-C!{=
zDXLsN*HlDaX+HkTLO7CxQ2e~)zG5DF{!B>mPcSHV-6EH3gL3-ms)o<R&#poG?Oqo<
zg$46M^~f}7`>M7O6=}4#IF0hBlq;bBz>-!%w$p3x>h|hdv`t;pjia`vk3DIyNcqtS
z(AGVvA$Yp*RNSg4U?75v8=|QM&_i{PWR-H`+O<Aa-Fa80WhfUWPH5B!UM%SO-dj}P
z_x4!@%=PQ)CPD((vrqKXvwTeEDif8>0m2bNpd+uiuHK+;+{}ex4a0Lk0u=-Qd-D=4
zh+=%Od^|)-`i8uYN|6|Yd4F4CzK7Ntv3Rn%{z(0~`y1(uw>d8!hyP?jkB601gW)AP
z{zR=M!?K_~y}C_`gL<G#@F7~mJM%>`&ED+@0wRx4%WCiW04nrRp9hnU6lLMZXxFGO
z$wVNRDS_c~-!?*48y?Q!xr6}d95B+0pit{WbngDuAA{~6vu>I%1dH}~HT&L1uLLOm
zw9dL&H#TxJi4Vtt4Y(q1l|BA=6{wKS!U|VqgfKqpeYu&pURyy;2#6H@O!qY}2d!|!
zRz)Q6KQr#Iv{ARakk+orzgML0zCcu}Iu1l9o_-#<m7Kcj$zyiqn&tYx4vYEjAg~js
zq-Ya1O1?<M!}T-qbDt!M{kWC5xm2)VtXqHqV?JbJSfhLdkZn&PCMfyj=V13!Z>H)q
z_#a_2QEl-7>54r2?>Cj%Vbd``8nu*N6ondAMn21yKEt8vPh7)w*=UoDXzqd^Jv>m}
zzMhiDX=n97>a|dxg5<=Daa~U9;2qh`;LTg(ubK~}+D%UL1rD9M7He&SUYJ4>J!!r+
zz_6cYq3@<8cBLHeIzSzPlWUb3z1OfqwD@oWYVrG@qXSSEIjkhF$Y$hti52poRLHE7
zzy}nKy{c~<N^mQ7@N6J!n?B-iAQgQ5trNzb5na3dI&lZballU!mA`ZV-I-ktNBpa}
zZfBYJDx*%hTi}9eIYA)DeAFmTb1WyPt#Lf(eQ;V?nH|@uevFByZ}!cD4|EG!2~o&z
zU6=RHHPZpC)2}VP#PBDRNl2|#&+Nv>*#k^)w3$z20+L%&N4aOz$+Y`gqXpMo2`vR?
z4MsYq>BZ9!F8J*<3n)=|;-~ArE~2lftqq3kALi3GGxJ!%w>JEUiS!1ra*2--Dis^Q
z7A{raT1!HCCjvM+W@N!%c>nA19d0$|<D^JzQu)#>-@dG5U{BatW|$B-@;0X7c+Vnd
zI(63Ef5xp&z-uv5Kw~l;;l4{#^wDa7lIgF|J=<W%Q`GM%AwzM%)|IkymIvf2@QWgA
zbqw4NHi*|cnNm4YPZh0_iP4I@lax#(KJ9S3b`0CCC%hdx?n5gUuWjs-1~Jt=Kjm9r
zO+1DDD5+$uUzn;ouxe_NE4`+gqT-%bH#_A4GPhbcn<TvKn)RknkhsZL>Nc_Q=HE7c
zd_TP3j@O1d8hnyGCbmPY%UMR|b;Jx;#cKdEObZp#M+mb%MUC44VkiFMnvhnu41?*B
zsy0DI14?s7tP(~O>&@gI-p)HDGst~;p?SH=+tPGmdP(nl=;4=ma<ba-Ei&r-5@&U}
zv2)HQbkX%t-|Osqhku5OAJgTU-w7G|c`oBD&WhiQba;7z4^=q}y?k^w2K<UoT)ulp
zWsVEJXN$a{mpczH-{;=YNU5teEfDv#+P{Adr+j#fY1_US*lzAp+0}xx8Zk8-h)$>*
zBG}NLLS?<=h1Dg4dDBd>DZK|TzvulQMQ0w!<p02NlA|z{Z^VpBxsP&8n5!I>5DH=L
zoO93I_gO-6<&L?<%x!LxQ0Cs;$}#snbMLp`zx#L3_Iy6?<Mr-)<VsHJMRkyZ=lR!U
zb#fq<81ug;X!*o`xCZ7g@&9s0gc6Bx$rZ5F&BKRzSXlSVDQmiv_-*Q18X;&!vR$p7
zOXl4TY{L023)<5RSIiAmUTo?=Q0DtmL-TfGk5_@;ceaYg1al=UZtj2^+<ySKq5p!M
zesRvLzi9%#jxMb2Z{9frpBZn|$Bjtmbu0Fl>(n+{(F^@{4z@#%6coKo$LaZq<K=Q#
zs@CWRYWYHHM_o@o)PnmsjjmvtXi04bK&lsP$dS0hRto~FM#hR7*GR{3j#(4&y@+_N
zNb*06s_bXbEn)8IcfTEq=-wf%?4J^D3!DVZSe(=o8KUZe;I-zco~C7v;+Yv_%aAhD
zljG1w#HO~r1K!@%|Imess5a5(t2Il&%G(BsS11M*|7KHn(Ut&%YQuF_*uOiOL!hUv
zR|=c0BsUAk^}f+otajgGdS(`&TF4bGRJb9pvUq~L%lc<%q1Q_^GJCnw8~<(oMa}u{
zwFJNs1j`LvE&;%)#S;{cpbIB0sa?i=pTxsN&8tAEa^Hll<wYuY0U`4D`(9$^zi5<X
z;yu1haSNw^Mr6T%Ma*z9$`@-2zz3>1e~FO&AzzwANL4hU#o3TbFTr)$aqM$VyUz+x
z4N44nv``~)JG=7x!Fp!gKE76=d4^b`8M4px2e5>A#RLl6`}(zk=EahOEmALRWB*A(
z^Lo>2#>hC|jeOyB8CKj;(y}uQc?HXlkJ(OI^i}(rXOA=%jkL*>9}aRn3wmd;kFU~l
zeEqA(->~m~nveeBvS}kqJV(03^LPI32P+;pt<#R{1yi$)L(e(uuHHCkKRAz=Hoo+p
zH>k)awt#L<AhNMbV!>x}U%Ck6uDYsyb4mOp1#oM%YLPbjg_v7wArZMVA-;0hI(+~<
zI?Cj3Mit(0z!M(h{F5M=Yg1K6_`^3$PI|_F3A7yFcN40{ujeUv!DXgi=uo0D828im
zZwV>cAAE=V;5$BJc83riYst+U%X^&lR~H;bRnuQ%;$SblfV7t<t-qH;#iTczXQiPO
zVg{yb&bs_rkf(pHOmKnIP5&f~(|N5;M@i#M0ZnKA--q%j;hUKWY+MwY&E55p441=*
zBF(!d6b@z~rU+O^^Q)`6tH!$NNzb0lEu)Z3_-BJb*{o-JWjfmHELo?q;S_Q_D;C;V
zqEJlNU6Bcu4R@K#5s!Bj`PIDfVz5!{o7qer4an8p{@)#55#a3d#WIw{?oT=u<_Owd
zr1v?>@50TMvTG>79iOjJVJ+6~s04iVv7wu9y?!LbU+$AQm>3-}lY^sfxi)-X=z=p+
z{eIrGF55EK#ivmITgw6xp=%$HZ;H%!En6tL*3j(B9kxj^4Kq8*A4-^wGrQC!rYm(D
zizhzh$WrXHJKr%CKJL_e|AIHlLDF=k#;1Ma>gy<D|J4CSq_T*pcVKj3{qwg8T7{u2
z>yV*ZZ<@6GbspRSDLUey^@PbEbgfb+N7qI53>@B>&dXsNP8q0y2`7tfW4>ARfx;kl
zBi?$kmpHQG$Xi%ITGW4>6qLvV?BI3{ipEmn-bRhKde*DjHNExwL3Jqcz>|SDEo{7}
zvUgnQQKnp2GE(VO<FAHT`~@yY(YceKU1PCWktq1(A^ZrrxL46I7bb3=qcR9J%^XjS
z2X6hLS310BQnPyc4qXR_wXlutRNdJ#6dOD-H21%#R-9txmcLD<4Dh)SttfwQtuntQ
z04()!5VCD?Gkt0&pvVK-bZyzAn`sT>=Tub3yCsE={8Z)cHcpdj?Di2mHVY)a^*Ie?
zsUkmL-C2v5rk0Y(T;ciKIv22^mA_mwU^_rB*4`6$eN#vO<h40vb`rO5V4N(YERIzt
zfnRJRJDi|>&&M7HS8RrKvpK&B`zEhVYN=F{uWD?!CR6G@G#QuGHQs)~V`pR9-pbnt
z+Z+CsK|9mg%<HRVxji!AeBt5Ji4>60q(B{NyJkv$pkrZP+A7zQ5iB&~Wurv>vp)De
z@{`$RLQwW1xsAxlMqS^o!Y)hox1gvsOet)*^?N-(Uo^MpP}fapS?m}=us6QsGw-hg
z(P-Xh9U4!PUL97ME2Jiw&i4^4q7}uZENMOnm0#S96N>oO=CSQ*zzEK|wvkW8KQ!xJ
zG*vYmV8HYOoZ&G~DYno2Q=aC>e+ygrgLClDO)y!Tig)ydeax=%4b|d&4~%CLoGlxv
zxE74{3~JWG2+c-T9uH-|a8993PrBB<a<ES7-P!+G{1j)5gQR^3`a#F*>xCD%#vrTK
zS%vj+*>AKT7SiTRzJfh_aep+M?cOtJ+0nUn8bjUa!^GYtI^zAc-0!W)RY;yH@9+;}
zdLfX%O~o5V+`LDE^@$*XFZFj-x(%es{<om(2{wL|H6-^W$WusJAs|X1!HUu|H4R$b
zqP*F<!C!jEtesdHTqp~t%KS=#7KXsLt#KZR5IQeA`Uwa-g)WwWr)+Nk?44Ooa;90w
z1W?+1|4m<)KSYGU-_w}b@i;;EOwlC29Ihk2gec}Qj=#Iny5395e(%InnCmx0cOGhJ
zP{}6PHf;n}y0&<ykX!2!@xKKg^*5u6Z;3upnM(X)(zM~5giaV77D%f3gqq^^49(p@
z<aiwM*!UxU7;H3}QEy0(A~KrWjwqh$_30W#JL%E7F8={^WhA7b>hX~@xW&pWP@MIp
z%(*{_3Z{+|gKATNiG9}JH7wwfIRq^;g4f;311>N{gw2uh0gTAJs!DJYJjA~Q5h`V%
zVdxglqp^*QV&K{o8*~5+-C)M2mhV5Qr?HC`rC3a3fZtWiiE&@rG(Y!JsEV#e%Ws|-
zlYcjD4c~N@B@227CbFue^BOqWi$`+Fo`mW18lU_}lPmIL^mecQW4{Ie)+d%hCRLgl
z_LanKXe7UPOe9~ogc)w|U08eX^UL=R7;o<u7*&7;eegNGB2_!FNB+1A$loYD1U)vn
z9zpZS-@5?I^`5j1{VQi{Pd^f`tvclA;4V$gFc7Z|e62;*q5s&Qb2>pz=Sv0^zoDjz
zj_R#hu|bKc%_nb>j96+M(M%3HRYg+=maF#)^?u!<>3`yoET@pdWjwD665#A{E?ydc
zSGkd|a#-v-f7UWc>9t)3ecmw1ZNM8D8#Z+?XI=%V!`@cCjdtd+EWbSw`er6=;;E4(
zN(==Ttf1sbR31eI4go?d-z(z+JAx#kk!jG%U4M&FR#xF0`Az?XKy@6oPQ~o_(-??`
zX>=BFRsjpjj%VkWWc&Ws%<{omw3xR4?~R0}(?3muB=RQqk_qBZ;y7Q@x%91OJ?3Gf
zIRfI%Px=iPcFwcgY0R6S?2-RcPLL7Hlg&F_<W2tITbC2_rzXEW?Yx7xa6zD;leA!t
z%MJ1=nYR5<lYD#fqG8@QGi%PraXt8S=fZzC`f`XT3@0||wYjl#Ior;dd$DP^c5#y=
ze%>YC!E!OglD>876ugD%#I^4+A1?==i1+30?VO{P)QQ(0X^`2;3oHw+WIJ+t_9ZUn
zP$&3wbeC0Wk9Ak+xZzUt*!+^7-1#ys+2sMYQTN8`=|LLlv?usH;qO5%8It|^czA%W
zKdCq2Z!p<Yi9YyHBX}%`+<v^48)bemZeD1&5Ug}oqoi5P7qlo7L^J1ipmp41ey*n2
z6u0m8m+XXU1I&{Gb0cz3(sM(1F6MS3l}`A{OMGC6n%%w+CG2gNg0rCSkBZZSa;#4&
zV`Gn9<m5jak2N~SG@jMq9{L(kDiW|sYm*tl^beprYfWqYR6rk?87?36nN>_*{x0~}
z^>!WDSSrY9t%-2b0cc?dru+>(lC<d7B-{u{f<<|$NV@GfeYp|?6_k=Kb<Y3JYM%8#
z*Z9L2k7t#&O$VcFR_#ezMP)0+p=Ssb5#{%)2$a`>$u9S=$3$@rG$GSQtcP1Z@An=E
zM5?XSvbcW+S%o9uyQ^2*x;Uqyf6GYa$nZv!GQ6IL#>Z1+xP93pqSin+;{}?ld&1f<
zr-1tCalP5E-3ITJY>URby0C>Q!M6-z>J}dG8&VmUob_%H)Wr6z9EJnyi|&GRaPbO%
zXAnsk2fJ<>0b=x@5H+GkZe!HbzxG*g`%EnjuL@mwL3Fa7s;#v#!TYX%0Z_Q>DApXp
zP3ZEScgcoIMgm6y2@6%Zg%^tOhp@C@1#n0mBm-nL^Wok+r7953o2inPABUkeN$!2_
zZ8TXTmr9u})D}W?P>7$(6iF1@Di*gz^?lRH4mtDmUs>FBgoQgkKThr{23kYuwbJ;;
z;pNj`Pv_Q5QoA9Pm))hrM1cs4hWAQ=^YH}V#0t92`TXxHmw`>$WDI{7dGDu|mMBXB
z)_N|C$2UyZxjIRtBB{81HuLnkL#(Yn@b>=pMqy;M3V4=t#jPEGdezxuWm;4TQXAP|
z+0GAc#Wf^|B`~i$ZwbSO9O;y!<JRQLC?&N6&$GUj7%`U4R1mmT4g)}I&NqhMT;*Pq
z)B7WeF;F@gY*mh1#iZgo4wzwXI<VR1a<NVZll#DwO3UabilytdgP_3@@G}>@uos(D
zKKu^G!_KkWNGDBh6ZuiKwfcIRzID*2Rf#XXm9BNHkI=d~m4$_)d7M;IY0p;*{$k~G
za03C!KTGtsYFwC-yJ(R&&zg4aKE@Zn@$nX+vFPT6#>NmnkbW-!U2D1tp5_W&8o6SW
z{u<7qf0wl6PY}Esu(_W}-eZA;@?1VB+NJhc%)UY%7gq|$1}`(5@xK7Sh>$v+N;zBk
z@4Ioye+=^K>x;K?32QBRpK4eE+*Wdr5ek3$nqq3{B7;^&GpbL*w>*^Td7q={IxN#*
zpGM-)0<MzNJn!>y2X$s@&8O8+t)8+#?NS^|js8BV<521(@d)BTlEX4Pcm-!b+T*uL
zTcz2bw8D?HV5JEe%P2jPH+v%YnL3A>FE>MSai%NIdl*q4vPj64nWC~d9=x3WrNUjc
zrocJrIy~67d@EYr`|JPnZXdPQz>T=7$RoL?dHMCdr@%06#JD${FW=fvT$gyR|1%D;
z<gawudgw3m-*3TtjD=;xihErQN8&+yn!9J_$AQNc^QWR4n&hJcfdH{0_R}d`+x7ov
zkvu1vj^D<x%bmF^L^ycuPPQL8wbPlOj--91OFMg9#y!()rPO#W)Qfrdv_lxxv4LvW
z7L03io22SEe7g6PNy*QB%)0eTpgT%9$AuSqx=+g@w|7%Gr%1WQ==jdsf9Sw%&s-$-
zxz3O9OxE0s3alB}YOd<dtF5P}kZ@O1u+*;i$9sd~lxA$NzCtuu=M@kG#^C1Ok5sBe
z>ypY>uLyuo<eThf^M%JR*u6+)abajm8qCAd>$!~A*7f?z!H60fNf;GwOZg)nJ`~ji
zTHUm+(nYuaBG69;F@XCmg^x7NvZmB!FMJ@lR)q5e)i-46HRA~9zu7DjZkG%u6|;Lc
z=PvMd2>ao|b)(^d_+Wt~cNyKRM^A{j`^kPiSj2Djbl!O7yc@(~{NPA%%8R_-BCJ($
z{B)g8Up(MG_z^4|8Qya{YRLP5=EI?LJE~48HGJ#Vy#oCC-p&4ZTRA8Io4+e%!-BT6
z#21tQDrL?huIk-bc|g74TM+<oc|6y$Tr?V4AKtBgGRK@LY;R*U^xCH8mDEifc!@@x
z>TQqNSvFdz=jrU)4RMs8DV(rMH^ejGU?i*b-Kyq;QRY?+lg}n!LPg-s(btjN3yl4Z
zZCG9IytHfLD0iz=WJ~3$F%WC1@cFhI#wx%~1C?Cd4D}{6P^L<6^G+qsd@_*oGvhPB
zJP0t#`mnX+u8O;hI-KtSlt9#hYT+3R2N)X&3%E?aU#^Pg8-@+`hGVt=6XEDxRcRoR
zwW9I!st<QnIrEh?#Cxw#!;?C#{3CTWDnSy<*-vk<-Fix*1f#TDFpG#zz#CsuOd!Rf
z!Kcppm{v=<-)sgN9v%ymKga1_@p{vncPXC+eVUQ<AVOX5U7Itz*R<o6=i8@K`H6e&
zqaQq_9JvotP11Ssvb~ftZ<>Bs4`DGXwfS<$HD?mN*~}{Y74Zya`a^5u_JZeW%bA+T
zckyIf>umCcYCEMC`ya4gvffIz+*-=xyWs*FY1-~HjMIz3Q?jrH5654>K&N(bW?BUw
zu3EsYrLpmqkA6h4vo&|Orx3ErgG^D%Xp=V;!(KAK$#YdZ6@VX&W}O*?V}N%C@cdDt
z#&2S)0Mw-7Y65e13=&b`Zb)wx;%tDjc!+X<YUZH~t12{Kky2e7y6K#9cpesGdJXI_
z$rj_>zH`>rzMJp!d!rJk=_|G@@fkUb!A|l+*4=)z4k6CvM;b}J?r|Trx$ntROh-xJ
zvRCPxE%H`^e4|khO7JBQ=$Nsn%3l?W5jLf<Xb)DErYdP;D{?XgxP9lZ)QE^LiTz~N
zN>xVvnRM%un})>h6CSa7QI9f@z%BN7JHN&j8`}KBSXz@7$mA36zy6A~;Yuf``i>gV
z7cX%G#B-y+TLjv<(<u<-w6b?sGWhawz&dY2iOb}2@ow;WZ~&{~NhhtM`=sg<wj7p%
zN3d_(3UiBJ@16LL=GYVe1!x>h&UWR_KkS|6Fq>4!e+-;XBqVslYI3r-AAlA^&HkON
z#rNjTT31qs9NonEv18blZjQ?|9=7ssH4Y^@Rk|y8I4|lsDfKm~<~c}Um$g#Ct~cz)
zH09EsJ2%lmG)h!&oxcjb>o;=0PL7k)(zp85T0WD;N#0DOJZbs<BYnmQxtIO7wFqVW
z1)>5!>4ByCN=+S#f68->0bX+viyf@yhC|ln)IhVx`;_KfsNkDikp>Iiiljo>@@pn8
zvK4(3540yg;twNUB6e)yDW}%R81rtr4SnXRZL}A)LYOGs%VFb(%~X;JvlSqz)f+fQ
zdhaRg9?vyK2sm$1*Q4aDV{DV6^6UaAiRy^~P3LgV?EX7j<g<42*%&?Bm7l(S^T)to
z8b!p(C4bOAesS$R+}|_G4PP@UJn@9wt+cOU&!sZ(trVu`*z<Pp;P3A9up2%gB#_oG
z@8Il!-R^jvj3s*>x1VpdJ1;U1P7bjJ{@+v630hCul~0QcH7672Lkx3+LiX1eKhW|y
z6&)(o=iLij3^?3d>_t4K0$nynJtfFbw4d(rklj6w$#Xjw+<gPnuI*ZYqxQhg-Qvr!
z+^}Fm0@?j|=soWOeeeSP1m=yGK5m@%Iag#{?GLgW4VBETDk`_y*cfv(vhpH4c$a0h
z$%u!3p4=O>*=rwvSe~W@h`U4Xde6H|2-+qrV9(Q)Xo635$PQhfum-+T>AMJv0?kO?
z-!(NfcCPerv9uo?-0&CEX`wmZh>mH21m_0{+E|L(hyQrk>ghM=^~n$BRt|Cl3t90@
zmIU;uzb__8;{}#|J?ev%s%WI~q3dXQ`EPzfu^<6n;O$L2_TL}s=i@XJE2*j!(cn92
zROd6l{43^6X1{gPg=AjgOCzvK@lW)WEM<duR6=6ec86z(LkQ)mn_#*o;F8x$D6{=g
zZk=J%{JuJ)m=phf(`2QUX!d&)77?8V02aUcUSq_u>N7Ru?VmJ-4l#<?s<ufz{Vpq8
z#OAkZS>eK5#Q-f}rd~Pr_df)CDUZj1Kddok5>>T#Uynb_zk=h&n(>{pGQJQ>u~?t~
zo$%dm_~aR{nh+~s+U3heGv=&fCrcid%*cg=2V}?0#82yO``ubd<&N4<eQEP$c^pS#
zBWS<P(eW|9U;hC@`B*@4=7&a|{V0>oqZfVuKiWQxD!h)pM}%wjsmU|1+TtS#3roWs
zFtMfUf!luW>)Tn7e>d&_prBf2PNQ|oX)~7PS(V>hhTg9IgRA+@jh8UMi)Ff#RUWWH
zh8`n2-%VRsX#Y)&+lRMW(Wl-;MfWwQgTD1oJ0D2;10PZ}f*5fc;5e?AK_iA9+&>V}
z$Lr&p%+*<kQTsfS;+*e&C=4A3C=VTIb1z<b<)va{)&3Y9((Tf_lTXohN)R@cx2J4d
zWG#S`I^qfa2kSQ4-OrM?$gKg4B%ikpA$CnK`Es8q$Zc}+>{{6s%jMj<eF{rt?kha~
z@}J0dP<&&Dn#{r7l`Dp=BU;d0p@PEOpE-1B-TzSr*sA<!r`m>8nVICRo$x0L$7Whv
zf6-2-qF(T~_QNg)12oFoPb>6CA8DD)D}ehVccud2qxTn;?#!l!RH$KuK*n%M*C0U(
z#<`jOstK*&Zvrg7MR-*D-PtQXgo<r4SmDT#G9Xo|EIDbc%~*s#Z2!97I~qq&<IXI4
zxPjion8GZM_OGiOZvGiDg5&i_bN!TU%G;T=f>$w#kkopm51yDMk6Nchz45|d2TNHT
z__Q>BP5w8N?hf#+C3KjM;g5iY2Hl*;^^hOi=q)5<q$VRrLtZ)aSttSDFt4ib`-xZ$
zsfVj^H!1Y<9z;^WJz&T8^mkWNdnXPcA6nY>203zChx92AqV2l8<m}-3=g;2q4uiqT
z*W8NX<9)u0v5=ic(CBf;ld?O!<O`Ax3Fb{6CKI5?OB(FQmz0SvLopyHO5q)h7$dR&
z|K*E+-SWqh<Rk0j<K=mt^Bn%&@rLW?O5`5-UGl{r@4su-iXac~l^l&gUXZpO0GO8)
zkfufZ(FGw*^?J1?3;#qGxXdfSPI$BnQ5cXj&=FnF=UVH+cFSPCyCPZ)4j{C}1f+Xu
z9l=)eJ-`xkRWAB@)Y)<y-u8`I!H^mpTX*)BREl9$qY~5exG<Ue)fN1fdVFOZ98{}z
zt0COK{#5l#Fv6W$fvVi}A9rRi61%HnJ8r2-1CtVG!5d&vVgjPIlm1Qfr#p@v?`XhZ
z>^dd#od8dam2Jr`6Wr*gw)+U<_Op3F)t~L1Dj^E)aUYvy$(Y9SZ{%^!ByC&C>yw_G
z^G^2m=YuWH&Fl|^zDni>@clb{qfuYEHMVEB13lULwI%acHv56k5mVb~3Tmi*>ryrI
z7(Y+ByQ>3;gdN3jcI^B^4S5%Y_f8=;CD^%wf9Jzm^se90CX|z3>7-8wPlvhm<}YSw
zyCkBzYX+h^gwvR>-aCJp1`DNqRM?QK513YKYujHIA9baK|GlOfkMX^VU7n2t{v#{L
z%TV;OMA7Zjb;I`S^?56E3ck>I{JQD=R|&}m_pP%Pl}G>NiD~^mEq=rKKjmUOVc4-!
zr@Gc23k?6f;r@}>5DO(k*5>qM#m3PdIWtfE2r6Nf|7LX8YLutgjngZ{*#?=vr4wJ-
z?cUe!<dYzEmNmke)*4<gR`1$qm(4Rz$jG5urF-M+(64cAOYKjdV|&_%JI}S9-h{k&
zr+O$}%VaaFYzU1fj_o@;$?wek%5OTNm3vZM^tuwuR64!J_mr(O)p+dtwZ`Xa72z$z
zL04YqVfDrE%Ix(E`|D|JZ)4|kMV^*`P%ikhHfz<-Vm3aOZh17v0n=QeSL-Oexaq5w
zVR0_b&2N$w>DQv#dqJq4+-)~slBPh1uCHY)E37d>!0Yp<61s}g%qo-@?VyT+^pfp|
z0b<^*Ty|jILi~UJ<MzuovHAl$oJ+bh`rn#5F5+E~!f@aIR>&!2S=CTOCaL$K$(tC<
z0n-wuGWo#=_>qzPG%db}=>Hrl_PO9&1*dC#fn-ttU`}Tfj}-cRNvo~E!6q5kBR$(P
zoe$btQ(t_fq?H*WN`&MVRjjSesE>SX@d>(bgLBZnD{1o!7j8}cOmuJG>n~KtQb#(!
z?6R;C80Eb7s8tzs>*b4*zBfYpld~<pI|_C?w{@KmHzij-){ztqJuVg;U-0j|<DW3z
ztC*~a;qV;1OS84!E{U+OTKlK*2rgb~@DXHaA?+b|&>OX}?w4+lzKsz^JW6s*#IgYo
zxW0ov$AI6a)^-DGDcUa_U)`W<p$L~4s;=8`c0PS5|1GIm_bBvk&ND<Jxy9W)TuYI=
zb4tM8*F~vo0ruvr*43j)fl>{oe^+S*3Psh?G@Gweu6;eRw{xR7rCIB{oH@}JiejGf
z7RzY-QO*`S1Y>tq_XS-Rk+;<bSrGWD5O5f<!}3ffPgrXHp)+dVF8WS?nC*yH68HBh
zuNmc;Zf0D=d3sNb@%Z?=R_8qTWWVVW5=KBj>tPW>;k_R7vy&iR6IiRMv-qIQZe3T+
z6P3aV?~*MASVVA7ylvd;Ufw9*z~eAx<!Z-M${Ob{x+dcV6?iy|vlbsyA39)Li+7Ck
z$`1<BtI3eLUvcyW-eY-ye}VHb;W0Zi2qMtJ4xt-EDO2x9{z#8)Gz%jFFTWDtbsVX(
z{us>E!Q>O8q)Ew+UHI4GY*6i3gTG8q5xf+y*HeUN{mPkppdbVR4;(Bl)ltGk34zT)
zs26;y+{mO4VG4a#D2g&C&Mp5NU0N9zzx^l7pc8xt_Il1a+1Gw^HKSL3*yfJq`^}Jf
z^Jnayu@Fv}sX<<R_%~~Md{AyLAVTk;y&w5WV^pF(2lP7K=%+!uppIE5L(ePSG#~Ut
zB@bQcNxO7mh+dqj$s|HSXA$0(C$csEl60j{t@2G9v4c|8byxSepUUGuEt#YrOdGsB
z;8F<n+HQOh&;3hoGlYG<CT!;tGfl13?hTa-Q#$RCKIRFc*zxE448?XFl~<%D6Q_bd
z^ZY*i@tYnHZ=@A__p5YGN(Nb&(=*N_4q)#7hb#gg@kM4GboHiQRz6HhcF|pp*upTV
zE{^`YYIU+b9f}dZwxQ?6#Aj#jmG_!=CQsXrDblqKi2;6ENTlWN`&n67AT-F{2(iu9
z#4j)lp&VA@qSZfaG>)YD76{l~dxcIUPicp~zQxh1<*eYG;j~bvq4DWYozs%ibE!3a
zrwh{2k{T#t!5AjGJk!hVwB?sUhz2KxRK}q#%)5#bD+q-f=*>bmhI)JSwd{`iUd|A8
zPs?YxS{jN5vpOWY^W|DWdAE!6C3;boJD7+%zkM9PbBs7XawQM;b)G-zlQ27Q4L-74
zOD9vRTdF78$l2iWax*or<MusZ`v-8##X#^0aP{4W1kTpj;=kY|T1!A(O7P)PLpLdK
zo;0l9<+E_Gd$~it+=*_##F6D@W3}BsP4v3|poECYz`4UBnLaD;6vJtmla3-!<GVUs
ze?HBBCn)SF`W$4=tIpfch$~A{&7BN-cX<a9yxCxB;^tB2!5b!}E@T=O$ZL4%z(F!6
zcXl6L`;TXW75`<ks3hpNd3n!!$;^1H-8$bFzqo%9yZrISw8`8)o6zk;mdj2h0jVF=
z>Wzk1Y-L(b$5CSYUqRs4uwRm~v;D|XPiLN|0sxE5ze%2RrJB@$T3w-p5+{L#L4e3)
z$-OBHZ965bB@%=97Oq9|U7e)P<WL3+jNN@!O_N#)$n4oBo?A?}cLP+h2RU)KF!6&y
z#+%W*EjUtQGGG(|;-v?)K6KS3-Wf^CJlVddVMl%UEB*U-lS=@v0;|XpEqABUUx&s4
zgU0s*zF7WeM$k8beT*tn`7FVFQJWR_YJCX3qF*O~d6t!CtYd;!>!C}hyF)Fv=4)&&
z`STwH_k4{{v^ZK6H^$zj-cP&CYg(0lcr#;lvEY`EzRqolOg|&NnXJ63{trek<A{NH
zx->Zfnu?-1a2+9v;Amv<7_s(|cmAy%Rifz8z50Is{$+i7Mnt%%987LkNbs4v033I%
zLd<7Dp_V10oQ21-*X(+C&X`K<pMLB9n&kX163H8M62h_0CHp1enNJN@$BamL5p15;
z_(!1xM!XLzTUyz}GpE&FOQUqSUM%R_q<Qx=^=coob3&_~QrQ3v#m@mAr2R{U2~Aw7
zXY#r?ur@LXAAShDZS92o1R9Dg`U&_EDP`Kl_wcI4y~rm&@1rDP7!9?&X^2;q6TKD8
z`ArPt{@2hN6((@p(^_~0!Yzr`B#t3U4Jci6focEwE2&!z7#W*{Z?m9Z_b#3N<Y0T|
z>1?O*>^o!3zLv=RfZKugzY5PU38pItOE<m{3q<y_^u(l5Uap+b&m5|XHBVNfzKp+T
z<4;P>PmDCe)K@HL$06U+oAq>Vo=zNDz9t}DQNzF2-3)s96MomW&IZSP@#{A#o6Y@Y
zRddq@FT>3(Z><T!?1jN&nLnOK4RyOzy=dod-gKQCBF^9iFh*-vvX4yJZV7yZEOTJf
z&^%Gj?AVm(0s<rcCAjZ?J^t5^{$EJ3pIkx-oX+hJ5~K$Tmrt1dSNl|ZDvvf=_Kk=w
zw$lH>!Y%^vj_IISW)`p4{_-J|-R1*(3Uu-i4?xo>0PAe%5th8rkAXS<zIAYoXeqgV
zndw)ds&8s|mVgXiiBH+{rJk#|=OJY&vhYg|uAX~}U%op=K&(6a1f`-c${au!&0<y+
zdsIrqdSSPX7a^zst*}^)n`W0?tc?eH5v~^_nr;rKXOdVxpTo7Ab0l>6Zk`To;V*yv
z?q=QERGrB8Oqw%po5xY5B8+*ByD!gfzcRAy2?$LLPwTq7h`oA{LAHIY;Z>SNua9^&
z_|V!aS%GQ@&GVj>@zO<fx}=&RRcgTP5_-MN+xM}>K@p@(D{)iB+9Y<jPi_4W;>}Z|
z*xe#(sHE}1rB0^l$fL6T3_%VnnzbHa#Iv1&NrO2Q@Iny5e{mdGxKY{0(lcSogGeZR
zMhLj(pGIgtWoZ^18v3($xO(j4Az*%&AfKAj>EUD|)LdWa|7d@nVtSem`qf1h=lFeW
zWA&l9pQ3~JFNgYL6slN0ZR28sgfyRAEYws*#M6x}u&DpAzIM;+axrgbDSP9{lwHj2
zF>$2OWQ{8~Jh<CK;kX%;x%l|y2e#>G-zTleUW)3)_-gg?#3o<Kg)P7#pIpIuG2E0e
z|8_Y#SbWwybkI`e=-KK3?n};wGov41Xsvfm(>?<+YMHhvKHFYkGI`#740*EKr~(7q
zSC>2G3RP;)w-$?~JgX)7!;YZ-;9Ur~Z1cckD)#&O9SNGWRXb!;g6gdGW14R*R0@f_
zQl-CN_A2AsZ4OwMf}B)g8P6W!9CPJ#Q<Z*CZ2?p3Y2PD5x!Vd(p4$xw^svnyFo84B
zKaGW3)MvZ0{%+IE7nD7@*T=X;yb@#(A`8B;X`Dg(P147WI1hx~t9AIeoH+hyiTg3F
zN!|(N2OgMCHDoyO$9FVtv5A_0ziMdvbd(;8`UBlW!+Ezrn878q@5j7pz+yXN1C<eY
zs43NK58urVy+@?|%5gh3*2XGY%opPe8|s{J+UY}%7tUEs9$2QG6GbeM&6@ac>Ki@#
z0-d&-Av0qTVQ~v3RRh_i{?^zz6yn=Ki<MIAcmv);tZw63YaZHC;T04(?$G-?^4{V6
z_{5(E#3yuZ_&EoZX0wh)G(%SX+l$jH6q>i_n2)xO%=(1sK>D?zC(rj#@^8pR@}JrI
z7@SgRAIROl@4mGo0I1@GVv}NC)wQ8TKEKSGIPaxFRd^9qBn%z<Xank76|a5Gh^(UZ
z3c1haY<KpfZk+>oki5}sxFT_MTi*X#b3MH~mq(lz13KWqabC<ru5OsbN!&u$%)N^B
zTrBF053CVfzI5O3>!iI4ufPune~4Ez`{v3!t<0WNoGY#1YG$2{UKRtl<g8`L<MBay
zhv;1{R5_`JY1byDUZ@zQAiml6RY;{!*wPi9x0oQwhl^zC_xxc;5`LXiQ=`pBCkieh
zz8W8fzPA$CztfBl>$D}6+!4Ir-=F#Cqb}?Q1o|uyM>Iyc`o?eRa{b96_*i5gAdzn=
z|J0#5Hr+;3nt8kluMG9&MERpDdR)+Z&92G=E`QMPYv@C;)z>1oCjg(UQ<Q$&7l=F(
z#g186`~L8U)Q4|UZPwHDdrlOl68d>zxYHf27e6}uMN6#ToqU7$3ODG>yS#G??5-E%
zp9@~~@lw@Z-}taW03`i>IK!(fp^FAcq-1~HR5h(|NDR#MosYJZ>n&*;?R%H}+;-x-
z`F^%(4--Gl^!Acs$ML1c7a!v0yAb}$2gl|?CmfB7Rw0_~5;NX}3^pp4_V={&hlLG`
zz|Q4zlj9CvyIr#XXp)=d?S&*A*ArRy%RE)U;(^Yxe`b0iYaE~5pO`{DUvilKB+OIG
zpGp;<<@~}B#|nM@R7azp#@Iuf_d+L1I*?bp!R}DvznQR`Mb9-LJn;gn)Fgvnf@~ar
z)p%WzWnw2guV&AXvuP1<swa%qpr!!6@F76<i?q8qru7H!d5Fyb(_7V7uP8HTOg`r*
zu8S=j52=<cg|^r0)_psZ-)$4;>{tv>k=p&CUg`Mx6WzDJ`58S1VTnvfg;PW};1k%#
zR#pCRo1WfAig}m#;9K-j?YoNW&`c^Rc#N%B&xbod$J8%f3)p<bJ){|r=%xXfRKKY_
zI$-w6!jl6RRa~;I*YC8d$&hTOgH|?MJgDBC1=|b2=913|qX!fv_42W)@6q*^wLfG!
z?x0o6;}r8tHJ|gnUO`SMOA8N)L7C$ud;S7+x_!CJLe}@`5jMX@-qZ-LwGp~cSM60T
zo;|45e~%R)(r_@G5L6q0a%Y{xwQhUuel%<e8yt_XC`Qw_b*BaQ02h|JM0XF!+XQ=T
zSoPiP^)M;%nFL#rk2lG=G~#~4u?s!oL62L@=^$;J@5Pa{@&4PbX_uGiYmC20%<Z9m
zzn4;ujLIPV3fbF+gjVi9J9()pV>G>Q%t^%HYuhacfJP}%zl93{o#VFoUFLb^%<GG~
zE7_w5uleGa0u$p+coT$B#$|m2suW!_LxEai`dB?p4so}Gk`RTLIw4;*<5F7jw|3su
zq|)9+Y0jy8p;ag#YW8|DY(>s=$giBZmwdvOoku)Y^nOQ@&nkqhmUVq|{2|_W4UX~(
zmm9#4>4vK-V8=(*I^Fk((!WT$vo13K{J)A)B`3I9$yA=k;$=iLr++O$o|))p&{d-W
zVXKReYrXOe(b-aZj+zMRa-v_^PMc6adzhB9rAWAQ0$71Xb9k)8#4D?k2@(4zD1xy*
zuL3$x$y8W`e;>X#`mvys4OD**|2xFAY9j((7hbur+7`jg1>OQCB&lKeIG4C9tfs{h
z#h?F_281ymae%Xa^n9$)z=c(WUo^&Q=|w%-M~!N;@&_7hS}%6K>X~?D52}|%P^!d}
za?4b7K$ZpXKH(f5&BOh#p5Y4eo0!Sxa0s?4yb^>YtYxsn3p*zguO&Eto^-<j;8oIz
z6LC2W2#dK&#N9#P9ABlYv(w%CGgAVwAhuOZtV>+ZGmw;?|Ejf4Y3e;-3y7*7mGQSm
z0$y=uS2gT>*n)II+<%;=A+V3p=VnKH!;*&!y>$3Qpz?TIyk|~ef$J~8lj%0b%rx9X
zXumdguY~mtwAP_`PiBLw4HUo-8YcCtNv<QMX!AEL`tJJgrFr*f;$Q2W%r{?inVNvN
zq}L5VDTsZWjrQqlQIJ<$@uxwPmeX<B=!)M>AHK7Uqfz_T>~p?1?m*iuPAl<S((fNv
zbfyyEJ)9fv%WluYr9VC!s^95OWrUg-mszK7r(dGs`iNx04Xksh*k9qR=|hsx@b02m
z_g6SPh>1Ywf2G+xqMmeGiTkts7!0BR>wBhMhiDxd-)%|hb)0X3{F@iWc3SeD;T^>5
zueIlCc=|efInYY_&fG&uSG$U_&ZRf80)OcA0hnxJ2nc0%xB@tCrk7V5Uh&?|Si!uW
zCdGx#JEiy87Ui5c!h9jdqVQOj+^~6G49O74lyW6DOAm#^_e%?1!6w_!H0Kw7r1Y{F
zpGJja4uP0NH3h_ZWU0>FIgSU8O1*lE)%_C~;jw={!ebU~B9_&etB@h6xj^g9JbI;*
zZSEpZ(&s#V?SfC?$+XRaPz?1?Up2=5FF&Q_pgzB{UcJitA)$b0v1IwKxmwFnYKtgP
zW4dS?y<{6z_0{Jx-h7P=Tz%|ocBK6z=|$6aVHL<Tk2hYBA@<Px-Dn!FOmk>=W=dx}
z8#|V>A1JfdVToA!7jB`Mu1Tk!_t|tPzGXd+ZGs%<%Dg4J`3%{<RILo&8M<1tBsXy_
z`?Aw?v>A}PJ?hW$WWP&6)BCKQhcj@#^}e^@8>I*SIU8v4HZ;;2e~*<I+q_uScsL30
z+{I0)&`lYfJfHQ%D!6(30a`W-#S49ZXzm0H&IFxp)iQJd<6UEZ;`pLvb8^j^o*pYv
zKyuyAqh7d5^WraJP8X~1>wXWlp=1wDzRydyup{S&AI~+jAc;GTi-X2yuGl<@P;8H#
zBREvdNcS4(Q%9NzmACf=s`#L5*uR~rIl;uGiGf{wb|gOA4Is+Fa(UuqTOF|JB*S9b
zGC#$6)*M*xx|n&^ie2*0g|7B(<ZOhGiyGCZQ6o0S^IN6bz2`^Q&0NB*{O_Fm8qSM?
z&gai}6!5c3QL+ZBqnhrbbvt#sKC5_1oQKlHNw7dH@vB2{Ufeh5l_>PZS0C#NVV~AZ
zVvluk-2E62#BeV)%=FQP!4!1olp5h`UY~jk)_uhbVMX)R*=4kO9=DjI5ZtSgaw<j&
zpW!iv$%M>WAFvLNh_#E?VI^oO%iZj&2UaF>VTt^5JBQ;|I9G($06IyTOm*S)<c^7x
z0G!6~%zk>#ruw&erE{(V<#b2-WD*7}-uO}(@el@rYDz+-1EWt?WVomG{7j9$O@9G>
z?Ncqu#6$qcQVP3+-&}v21^Kgd)7ZCSzb{xI%48}!zg(`w6G3%kO<FX>>hB0d(r#X!
zoWX8vcGSnrT5mwg?aU!ile25f%QX!SmEnP4dwBJ4RBmL@`szpnqgxGkh0!CeC$Br@
zikhVLq-bMm3e=T)jd;bH5DHM{jLP!FvH#N7*Bz{rD~qH^Qv+76C0_l`^Al@R-9<OM
zrUt$GPa>r_-|*kIzVg8+je+e$?TSFLEO_I5W8A`3f(FoKFzt`e-zFx$f(AIC{OKZ!
zcAny9iiL^Ud9Ucws<yh?v`oz?CBZhumfmf290+qdb)@y;^K0L^qz_`?%6-9oV;P6K
zK+hki^}GoK@IRBdN~K&#R1^W(SC)u?zl<u=EOS!ut(8DOKuvA?Dkgn+hVJA7c6<Rn
z;R4G3lgFpRhCWq3ZBX-Ns#^-}1&i&T-;n<%aWXdkL>8^`^6tbGak`-JqIPUP%B?a=
z8rP%q={D$6Fu`;#@#WO>$<7D<S1eAre)HwWs0r+NfrVx_Wc0Kk{{-jfO7|u=IK<3p
zj@KNh?`p?BRw5ob?RJ^)2K;dn>xx!FN9LYY2q*OlcFnS%godZSlEe<V(hQ4k_{3wI
z+68vxMp)!Fb$K3-<nWRWYoByIWK9zJq&&%LQTOi`Syz)L587epid~;$kTt~I%Pv;L
zf=lsqKk!Mt`I<xfW7E{2q;XQEbt{(3;->>-V0cgR9sM;xXE$B11JvH1ydE+|Jg;z~
z34(KBj0}|sK@L-Q23oqUYl!s<h%<$1Jk?Z*$-G%rIwfV5@8FI9^+K5OGkEIcHKvmN
zzP>-a4!&U(Ym2&?P@!SSI;8Iynu%`h$vGMtpAdAdB7pn_?`$H(X}hAXi`4zt<And?
z-Dx|JZ_C~$=j@ztt6pIVK41LrA(@_HtH0SM^ah{z{@vrx31JD`4TsP2CP1E6pN+a+
zIy6#XbPG;xD^6csMy+_$I5V+vM3ZG2I(y5`WUi;Y)+Avgo%yh&MQK%(yn4>=!WSi?
z>(N;RWrOvE211g><^>VC(7kz9HIS_}&ROt9o4Y?1?0sIRRVIkq22RI}^_-yH_Ono@
zt!L-(!slCg?ms7S$`6fICP<HxUIXjO5rI0~?8JaOA0g8nt9q5Qs~Id`>gqNsn7G~;
zDve3_XADbH<c+Nwn#f8)uWA3Y+eR?(s#_o6!RmDA!|8T=<R|By$xGm0*^cTs$Mc$h
zI7{=0O~I?VsaheP7xYNMr)%_ZPt6Qi^Ba-(Zz`-6QMB=7mj@{hP`YFKi7N@xtpzW7
zUS`*3sqo7<A1YXOA3|QZAMjXK+#Y<IOpq?mG+t=RJgt^e7I3ghHoNt$6e=EA?4DKp
zQ#GDp;>c|M?(kbgyxlz*x;PLn3a_bKJNO=00l_*;d73o037NkLe8JV)f{0p<^2zxE
zyR+syxK?Mzmoe5Uu%96em5~sHNI1lH4hTO#ypUZ+4@t}U*5XBuq)^a=V3SwuS}mQE
zm?V!<UGv8XM_g}YtvXV8R!Raz5F4+v$Q;BLtdwDysvx}yud#rIy22ImEvUQIZSRey
z2HlLHUcVf{eQ^<s13zw;H)ib4$tk$aL&z|d^Udac2%)LvsHzn7xlL0pr(3Z%^~c)8
zR7v4~4Q9~5kPN@p#<Z?`;Fqh8%fr*5!y8`!gKD^bGih{tT3A}|!s$dOlUgGn)Db|x
z(8{6ciGSvFd`0xin8Yn~U*oTIFO>SS;~Gn89^f_j0m}c1O(hLzx(^xmeSB&l>rb9n
zzf-F-(5oD4YZqTiWcGv^IbQAQw#F$4deFIJ>KGHDu=G}y@slUL>i@;MM^!{$Jc1P|
z6pPir{Z2Fqly`NRw5q``-iTFL_LhyPtW!Vhw;V;x)wWGcYZuN81fU`x!g4B^!JXU7
z!&c^^zf@&$#tXjMB%y=|3+)CYnfP%#VS_^dIeru~R<vFgdseqmE;iXFT2J}<2KQR=
z>)f}`sw%R?r2WHxC?a~;=;l}#S};=GbBVoo;vhv$Vxp6w+*k!LV7F`au+QP}$L-T?
zF4TiFeS%InOtGRcjW1gIvOXn}YPK=4|7m2#ng%0%MBul`uq`7}WX8<w!_^-Kgm*Pl
z-BEu8kL%`=ZcqDV9ppW+sJG3!+>K|+=^C$LBF)zD`JKiDb9&O68BK?&Pc_6cZmfkd
zZoJCu+h}I8{OsW|VX2%&aKDur`0`cSTd7!?Z;6-hRt4Tgy)?AISm19s(|yvG5c%*h
z_A>b`w>6TWW~Oll{f8*pa4gdFQ<X6>lx^}&z!<({Ewwxk%oXFLCGC7yILx>3cvsq=
zO-Ko;yYccrEjoLyG`8jvefDQmcn;+iv^3Vt(HqaUL;f%RH4lF1CAspF#@RgI#5d=+
z<YqH1Htm4>;~!!QamK>6(wp#6Yo10j5kC0zKrOu?H>+yInyq7PQt%>{<7vYz0_g1G
zv=$$~y-|!SXKlTeZ|2=`=Jf9CLp$FuuHmj&=Je|DArzKpM*8yW+DF3LW|V2z@?bDL
z#~09a1evv?ukBS+*qLnyI*0cRAie0qU2}sx5-PWY5}ecGru>bJS8Lv=BP>k(8Yr;X
zN?HvPQ1&%2sfT-|kib%%AYY{`DKdT3`bD8ew{G(--9s(W8b?=IEP6kX%?Hwct043;
zp{~Vaon(dM2|p2UZ1*;wxluiN{*704$oHp6K3-QbL&?)y{(i(W5T~lWlIqq^rfuh^
z(;7RIM^JY3v$J2eP?-p^qq~jWR}dJMZ-wP|WSx7vT{?y>%x{!s{~VZeJ>7MN{j&0(
zJ7FOBsg!5Q+c&`DK&I~xP{j>^m(`tYS-N4|V9GNZ59Lverre=|Ki`{H!_A>J(rOig
zKjQs(w1tCb&l#LPTSh0sJvMUNeKHZFO^uyw$Pa$j3a;o(JFmH#!(rKdYP<)%$*39U
z6^*vc4f{^SwantQ1{&Ieb+fbWRstS;7P?>kZ_Qwe5t}Wtg)FZX-=CQ^hxr>Fi~Wrr
zV~SeUs7lnTl_cF27miQ7L(II=bK+UU4Y@O-A|w^=1FwEivi!QNY0T9))o)gh5mLv^
z3+cIbD@8&u{HLFiyuxs2A@S)Z$pjQWnJigK();m9H2xYmMB>`Dd`2U0bL7nd^~e?f
zPufVYQraA+-q*YV&y2jBdF4M04F`@D3XVQ>19?V6&&*V2H9H$T1CKHMR7ZwLhp#TQ
znQMk<ceZXWpppsFagnQeC{7dcL*j1(mV{s0Ql?y$*s2ZH)DQdE&V;@<W42^a+1C2>
z>!#d$-tk6hCA;Yg{cjdi*HhGEnK@xE4V&jxdZOaHUgDyP->j=1-3T$@-U~LBQ4(3b
z^%Zma_HyIjl}o(bim2Zl^8N=g(NV7#X^ktvraufw!ZDICA7>N8U~R*t*eUAyO1%AJ
zZ}8RW3e6c31IAp%5Zkb2c3l+Q&Y~*3fzbUGt`CgB{_v1Fj`Q8@({FT>>WECTe)oV7
zL$rn;>+GXnwA>V%sO%NE+-UT9>~;-Ud7`8zb$4X{6fxjW^$HUa0F()6%UE)K_|Q$A
zq<$>#8W9T+`#NsMC&zME*X#V!P>1zBZNO%!d)GC$-fL-RlYFF~>Cu<Z%OHcf6_lp)
z%dm|4ufz^%vJMtM86|yzrjwQ%**))isd@3-0{hV`c9qR1PnDR#b==$g#>qi)ElmCB
z-&E(?FMldGj)Dh+QudopDImbzDv9BsG^yrrk|_G%BNep9OP|~8{0F)0MUPr}Rb+;O
z^%b4ZK;Wd!ZOy<NJNnFzx))!qJD;td-kJ#|&OftvG?v*)f~kFA6AOKvr(YvC@g<2f
zFP_@$xTVfn245$IOHB5keCrBCWzzQC1%FpjU>XS3<EwJ5H&-d<ZYVDASy}sNly)TC
zp`cDz=(K$m<QS4+p`)i0#10nSdHE2_1a3F)6r%u^w>6Zv#2z`;n}_x)4!7>US-Hn^
zK9t*Otpkbw8M%Jcz9Nl^ns#Z8>y;mEB|%6{W4MDIf9^h#`I%GjZEo@s|KDYl53Oli
zK)Q3!*lru?LeMnm@}R$g#yMN=4$*aa{=u@2?osj4VqXrlJqVQJyTWn&OGD}9a)k2I
zxC`v`lGM%<M5)~{=LDTPxFmSZi@a68;2!?xFs9%HevkZnH$cy~$Fm?dzVz#05>xuB
ze;JzlVJ4$RJvMxT)R0bR<iQ|A((<)D5;>6LinS#B8Nqt!?Q=qnUVbRZ0{TAiC3+G4
z>o)eFs#rnRiek+eE$3vL@IOml-Tr<R-jgMbE#iHpNg6!Ao3ghF7um*8M@L*H=FA~M
zjJokcGW9SZA#Q!^B5xUWb6S0q&_9W_>{Ne;vDGlF+tT{{y--*=jey``_;YFW!d!Bi
zB|11Q^(eFo|NYgQgio86@7vPK=m-iKv>_)g$)KE`$0Fib>9XnnWU}%2F~Q8RzfRv}
z*1S1hs(zlBC8bl>&mBS3!p}@z4wTld5gcsTGS!1m|6^|F577a=S)9?Fe%ED?;w{_5
zEC(-a^PGEO2>Z}nMICeRG2Hw)XsMOWZS--H+?`po>qV%Wa&>K@h}H4vT#c(v%~ryA
zYszt}KwcI$<wB{k*@ioRASgb~p7PB8MOvlIw9e^(L?FFslK5tbx4P>@TX>}g6v^)p
z7v{`|GR`z3`TmlQ6XC=N*1IQ&5vv~S_`hR}Csf(cpO#j(W{@93Ys0r*`$D(AIWZhy
zP6seHM|!LHk^riDqGArq!G|zK@k1XmnvdyXg&A^q<VM`;$?((bkB6BpI)hf);yxZI
zyp5s-MpE{%DCAjW8*yf}Ej8--ALDg9Tgt2dvhEYlMatHeA8m_nQQVys5$Z}}98D9(
z7sTu%k=%JStUDbK7%~Ri2_)8PN!2JDy|B$quuaX29J_*r!hAw|z^=JfD4!c;lzF`f
z=MEJsmnsw3n`VFNX~oT@-<y`<AD!zQrv)Y6=2TE_6pW@=PV_tjxM&08fMeE9A#hV-
zxXZpDYQ-q$PFXDOmTdMPx?#`F(gcN7v+IobZwXq{!r({ya=%yWfhK30E3<xh&ds;n
z&(goC^o7_E+J*~n*zPw{CW8(AB>tXJSW9UdPV}(mISTyy?%-Kli;zy*>PNo}5LR^7
z58i-h^92NArrJoOw`KUR`d~FG_31i#`t}l7TjNwIB)@NK=J3kU0Ms4}(Acy>x7hAq
z!QT<^_`Bjl7yEyV&k4MKb5RmV8dJ!ZSDc-!Ax@X{;b>V2my&6@BcxBAYYLHl=7*6r
zW=n-p$)~-R1Q=Tz6-Cwa&R6FABL(xG-BdfBpzoXOek|;A6bqvLJvQ*=VL6=T-|znc
zJwd|0K%NPmbP}#~EOeUs!ifG2Eheq#{<?^}UnX#oqJEdu_R9hg(JiwcerCAf4pCxA
zLR%^O=EhagTuIK!l!`aRFVT>Onfs%CkT^O)^iUljwzm+g1F-~w>AAGq=f#|x#n2|G
z&fQ<ip2+nU8!doAJEm-~OW(7oSfK+zXFM9J*C_aQ!B*%R>ZY?ETMx_Z+|spk^k}mS
z8wERQyYRd&h&vm!2V04twterw=G8QI-s_Q1d;%VP@B@G@Y;=0wdg&6}e#afOVJ<r6
zgSi*y%~zhe0#82mlv#Y{e{a3@5?s1?OMz52w};Ll7vb~oyz@@_9TxzuUcCyRoE8^8
zF=2Y<$`#5^z&iL>o_&_)HrVg8)9=Mu5A7m%(Ss1?GO|k^8#;y=oqNyo&r+GwBa07m
zac(7Y5kxNh^Og>~$e{1Fgl$Pziad5?+1r7ZGX9$x7Hw33T58b#t?A3jqqPG;-nG~T
z)w5g-EJR~J3wEeBsG*xbH`sgEcWspU-Sf4<?)6lke}Ekbu$!&`tvvEnYA&lYsk1gp
z=BO5XHnQlyOTKUGaNmW^_7G@Z#cx_o=7MhQIri=VLMgPsFBOMf#=KoT$gulp6d>>o
zMgC^bmX*&8^Tv9+{q7YE!L-jVxPc?MfAvfs?W1mM-|bCHLZyV10Ml;&`)CU@Y@v&7
ze(6%XfcJ*uoX0Ng<!MXLUhKQY*6tHgryYCW9S)$YH=rK7{lfud_Ts!C-lc8V5f1$O
zQs1Q?xxnu8V6k~N6x~~RUbl~2Yn6o_wk12D{Vd2xVT%K^_^z<~2nV$J{Rr&GVSYzG
z7#r-7*PYte)s;fMPO7UD*aP)^7thaUqgq?df8f5edzx?e_k(NaSE;SLbPS-6drpQd
z=fRxwwA0G=&3&-_<%~M1??~m7fM}%?k03l!XR%IpG<~@Y&JxchxvXGypan4$IdLfo
zFzx<`rrjR7wAa4(VN+bxuGm6dkgDG$gDspNo8lWfeYf{_uz@;z6<c-47VNpwP1~Ek
z9bJ1zT)^h(YM;&0u}oJ8W`5GaekisOrObe%dzswO{c--@2VhfqoMD^EV`}BK&}AQ8
zYrDS}U_o9%<TY03QYndJbcOeLwz^bp9Lw7>HY<;wZY?&LVb2Y=7JH$qV5@e(U~_iB
zTkKrqIWA%gbbsv1<04%Hm<6-L<k9PS&WG42-0U{Pqfc*WA%HV1#IX!AsRYiHqK$9S
zF%2A5R~*y0$SsQxHX@K5nN*5u1l|L{M6QW4lFWtHAwPD+(|$+C9Upsa+UDhZkpvrP
zzsWlHLDG^xA2&2kAn$^a`6D^-`8<_~L5fJtQu9Bo=-Y$s*ddqr;u`<>;8o;>6s`GB
z&jK#L$mgp<2jwxBaB?;-&%aCl+feOmZYZG6e_pu!%%DLJrIT(Ifx#LpEx(o9+REBq
z0#ovG?PVVvr)3{{(V?^UED^yN4XWSy+?F5IcCAfMV;+kwaS2KY3$^QWp4Eje*xlYJ
zU2HKnWzDSqZ>8Mp$^=L>^|qyaree$I!R7;gdUOr*y80TdVWVzm*c7{z-t1xD$@5Y7
zLaBZGh~Th~=dqS`&K;g>=GqVa;19x^-~1-(8|}mwe$jsh_uY3d{ICD)N8toBjpR^U
z_13q(m7?@Z)IIQb@l_8z0C!Fc2l{=*#YGHs$(`?+R;75!w8-$S-}<fa_P4(se*3q7
z8{YTc_riPs<WK0Hk9_#U@UoY^3?7)C`|H2{>+s1Zo`8S%mbbwB-uJ$0`(%t__W;l_
z`yk&GtTwQcJppW_wmmdU2M@G=gk8=l3!xVrCo*G$CC<*f2SDbs;}r0r_9O0I0>Gdd
zl@rBQcy6!}&t3b_(euH{gq2sTOZ#k;)g{|b^6K<_pS;d&RNAvAfU{BgKx_ccM&-Jf
zLOiF9vO!!;FsEVz=(g{(pZn~9wf$*<uB!z*pyh{q*hbYYk8K#bbXB^nJ9O9Rf5M0F
zOJhQM>J9lG_AUVM<d+A$I@m5k1hq~%r;pSLq^+w@samEkbbT4%n$+gwFs3&3<rIa&
zC}XdVxlPOI)rBT(LReMS2>sgi*<y1-;juL}*7HKmYJ-g@KQ%39bal#As5Avml`#ZY
zV;wkR2aW$x2b-rW_Nx;F!Uiy_Q=V*l>esFx3^p1tSh@nVbWLsTdMguWqKxaPo2ea6
zSFKa-_gb*nM%}MK=?+ZyLE2Sb!yarFyVBLlBfueb^%wS1kUG$+>{gd7U7K`K#FBD}
zo^P<_+}~frv^O#_J!j0h@*H(d<aIFEw7s{N0_s{xcM|zt`#R7nud))lUa$j=p69+y
z_`3Qtc^uk(9##j+<34O>Za{F5yhe>cpW7&nz+AKgP*YtQ8>SZa_x|wmYV~}^^W0Cv
zo!NmM*sMI3y7~)ys_e8;9veW{e(tja#YTxd+V2vkj$_25rK?7jAM#!5*(mzx2OV4?
zelDHB$7d$-?SV7+v8<UEC!S0!Xi$fx7-A^(wlQiK@3ZycdC(}em7zMiN|}<OwnM3H
zAEZ6g=9j=txMEi)o?9+mgHgBHIP@B9fulK>u^H^pwv%laY>6CLwHEkxtL2CWv({(J
zj4-yisu`Cao5fC(!{F=cSM0uyxu+`>?6J^|oE;HLyE;A<J3Bjcz}nVG$HUWAGo5C1
zE!eqz7hP*<nwIBff@83S04`#;VjE<KQ~VB+LwYZ^K3%C6c#J#gTIDf|ybdLOSKG;X
zY3T-@Zo+e#gv-R#VVhxh@<=6AtS-5IAP^rrxLSF{AErAyQf+&KP36&Gv+cX&k+Jpc
zfWg+W1L!KQJdfg>!>;p8CRVFqQ639jXLcYTXrpSo$|D|Cm(&jAvLJ`|D9@urjQ{D!
zu1()Pj*92+@0Mg`O_BTfP2-Xvm|=mkOEvr<kmG~0G3A>{6W3I0{A0V0llXki&!;gT
zFAO~Q)(E#<2=K>8T=#$J;IcTJ88EZ>flCIlvtr(k?~Zl<$6WUW2(JAoaNE`C=dMc;
z?!GNf4zx5ah;aFcIIOv}3UEdx$}GOOX7=IpbPoW|`o=w}gl;mS$MRQM&Xdx~w4Y6V
zfoz)08|>+K%i5?t-z8_GO0-~8<54%0*C2w=9QqARl8tQLo_685ckpuAavSVu52iiL
zK`|~IN6MHm*lWcROOCIgi=FMFZ3$#t@Y3k>x@|H@uw{tB;@#0+`u6u_yI2)=(sd^`
z*B(4J?ySL9qTZqMJMX}@i*7Vm&ix4S=$`EZ6r#u3yja+cEwmXD7=eG+U3bH?&t4&W
zbnV(zD#i1zcfA|#zyBqrfBeBH{SSWVLlmKJ9oCmFU4pwN=l`W!Z*8FP>(9&G$-ojW
zUc5+|27mTve^#D_b2p6sfB4~t%jF-P791{5nDF~?a&kiDd~`lcGT@$X>F(*<$p6C8
z1YKC3%1dQ)ZlmSZfo^HG^AK6G@O$!TvFjM!V)OE-@7U=3K0WsB?%G3b)RG<_Y6s}t
z_8la{XAkxzJFwS&+P*`ZP4p?-D7oi`ZBz)YjdFIt+y0piJHQSs*&u!1p>$RGQC?_!
z5+4M6<RyS0KzZsu73m!dn*iqq{U{+GS{|f(h*0U><)vh$BIkbXde|Y1bd71B3CHZ>
z&{_bCK^T>-PzpBtJZm(f!?w%VEo~rE$|osPm)=*6hPDf?g0*M-0p<e{m}3l(TkPi9
z&2#qfV#cc-ya^7QZwsC40HABs{Jr+?<=@W7#bS#K*t0t)Y)&RDrkyl8Km)t)XFsy;
zoUh?%d``>CeV&Va#07qUdu|pHvog`6+u|FkF}E0UHCNsa=*Pgm_Yz%u*uY+|edn6?
zwGSIVrpie2*cR+spC3EyfW_RAFU1yoyI$t(0Ap(hDAq=K{jz%OWovFPVfOc~u9WLr
zx<lt(vwQp!&vh_x=vQmW4tQ*hF6EXMtwn{!&BVMd%FvP5Fi_bcfLg!)GZXmA0`$A!
zxPc-gh0bFczzF|=>rbv$Q9@5^xhG!qmKvd<N;*1MG^&FlI>n(yYYkbPX{zHC>6)Zm
z2^AF}M(Ttjk&}pGRH#o5C{~+-6R0y@%o?;#c`oHG=zS<c*w)prk(`K~>Xb*(c}Ox>
z(<qPxyqT>o0LWs+U>A1-tV|wY)jM=TZOZS2P0DB~U8&ah5as<+Yx@M-YE_+26?<T8
zQd=BC6s(yXg+wQ!TN{nT@1~0z8zGTip9{~m?!IDcv9k;ywzYT}v7I*ouJz%QY-Flf
zL8OEG-ZHiohces!2JrbvH$0TCxGb0pcC2AL(t9$`v!g3G?3rqfuSzt$@cgJ^Q>P(g
zAL(6=%e!a^nkuh+%xnG^x?+ngvX8mtIXX32zUI1whsCDtbrWB!OJOFDx?h3r15xO1
zuvzRD8)y8S8F|!ih;mNl(diOBAR26aJHWb<44v)f%T*>&SG_#qHJgpR_b`{&ij8d)
z%VVa9OzvBq%`3q!fjdRdRc0*RZFJ&D^QtI|Wsf|Kb&PRu2@Vv%MP{-_v|=>Tg38?l
zIGOAQM!T2AH!M4p64kPgVKq7FkKhdTa@>~4-x6Sg3jny7hV~I1-_y0YsD1G`!|@S1
z+A}<Jbqkx56}|7O4qGIkgpqH?b{xeNp4!)JOD9#5$ukQx{=Uvs^^*1jI349)(>`@i
z_dh$m=9Onz#x5M;qC4vvF1VxJ!36+%_Z3H|o`KodByjKn0;W<wXzQtD5|;8?)8DUc
zd0~a<!c3;?Q1{0zXGr8UNTv(F9S<d{jZ*uGql>NkE-l$8JKkwWWrvM}{yZN#9Lu?8
zBxR7jeaxbo)~xOYrr@zu|6R+sF4eBrAQ-Jv?(1z25_p33v<FkO8f~4HP*b^Fs#)!8
z*Zb(trCQ(`?6&c>>kT&SYa`ff&1&0@&-b;$J+@sntMdX~37grkAiMVDuxljrjIPtY
zHnLya$#yLSBkjYcGNIT&c)CQ_!gIxrbai#giEjGslLg~9yx}Y0r7yi7e&k1f1U~%X
z55v3P^-gO4`mg_OYJcr(UrS|p9((LDqV@Y9e2^AkweROY|M~DapYu8JWv_od%a4px
zPfyR9EIvP1#dmw<D_;q(dChC66wt4~^{vFir=NNXe&cO#gWvp(-=OO#_(>Ka5z9A!
z^Ebo4|M&l%N(Gg%p=7<;$YzSZFW<r~FEY#dMt(2yxHTIK2OLjrnleM9lh@u}3Md1(
zIN=x1^iXX6!18Y!gLUKd+|m!}(Ch)w(<Qt2N6roQQ5Mr}kgP_aQ$VC-FjH`Gj9nWQ
zMAv4zg!gy$C5cX6o4piv*{J09&%krp6CiYSN$u;RF72>UN$o%gUHhpvN*C_6?*_XI
zoTiKk<f)A1@cOk0j6T%%=L4`&O@CuQdvvw7eN>)@u=l%kh>a@pYOwV(Su`seM6>o~
zyDS~EO@KqF5j5(A3p@`j9rMfWPQR=5-A$T9?$oZg206@AG<MgfmzveNUl*EdUN6_K
zU)!`CnAe3~4f8tXr9JfPltcd1YF3vT>;_v&dkkSl*U^2XyL$q7Y_NMTg+jM{_<jY^
z(oNbI>*^1keIT4nc)BXKDA;lbTe8@4ZZcIocAu70YK8Ae%Tal>1Bi-k|6U59@~k{R
z2VL=hE5q{)ht;N^wJ++5!IloFT`xwjsa+rALAtbr4f3wq^>M!)NM>J>JvJ&XVS~f=
zQqXqgxtB-P<9#-2pnAu#!5%`bU2k~~&VGg^UCO&{)Jz^1uzMTT&~=|Kb?CZNUI837
z*tw?)((%aZ`3_z3-zCx|X<yz;VVLPT9T{Y>hdQV=>a+Q7!cBjuv#2^JnWp6aQ#woA
z@$tIY7>)eN(vGq>3~TdUGPUbzJUAE!=DZd-ZGH(0b;^T8(b~QnY@EJ4!<M;SYtvh7
zwjKN8ck5%b_1{x+*r45S036*2yEwXLeajebj@{HLA8-@V<#)r3i6Kj>t6+}}HmQ*=
z<u%Hp1u(0*y^jr+=&E#gbW@&Nx(){WjBZ4iT861$Yp_FKCIEKIBVzN|6<ZFK=UyI5
z`>>kmzEJZ&FgAT}k1c?<clJ^cU1E8LMS1mf)po`<h>UdhQV5mjGwdCnD>jRLpDuOj
zt~}pk2PgwAEZ5bydnI^muz(F<*+!L2f{r}SZB%W~#)+wOw{2p_{yRT#m1^Z*zA}<?
zyo~W=UlFZcuTJJundq`Zi}wVe@6`H;&uMc}xqtfi`sR!lHC0}z9mgKi^;=wE*=*s~
z3tVF8Yrp6g__7CXfj{}!8C*L}@XYl@m{w8dg7S^aSr$0tWri|Ggi2p&$9pJqMB3?I
zxrVYegFb^7>tB7_0Jj`Rc;$-+c){HfPS*H+jksJwPBYC6L`VEK@Ios7Y~*_#g@<S2
zd{VmUUJ8SpBVCXVvFrgLnFC0->G{{rl4L4Gngj2%QF+IAN!x`w&;|^ArhK3tI%XJ?
zmRHg-g)Cx6sab6fOGzz3p%Is{eRvZjm0df@Mp&+M9-wBCf_c6Mn)K@4H}@m<C2Y{z
z)!4%xYd!6>(7x0+=olx|z@yl9Uh0<9v!FdR*lH1*p;?cvO&#+fHT})Am9E*e2X}wd
zpS?eFy={%c?b21QPww7=UFD+JZs_Xy7UggE+<Py5J6>}C{ZwBc>+P$<9BGOh?q0ig
zjoP;2_(x24-+ebZqQBq^z5qUZS^!XoqNR<u3k@Ab=J0R#O^XO$`lVkA*REcLhaP^I
zobTw!4&tDE-t(SEixBtScOU($-@1lQt{=PT5DYDX^c{M*?76XXU3u&rw%m~&^Xxj<
zSsI#iy5IGQG$;8qy0pY|&*#z%P9A-Gs1fI(({624_t{2Iy)J>nUTl!NKiGHCkG1MX
zjFm3_-PK0z(k1h5vv#BBGrF30vwipU+}Z){OYP@Qx-Qs(u%zcg7aIFHdG7MXKF{7S
z*a~*gaF>cb?6dveM#-}+3YH1!Q*c=QJkPPP32-sP<wbC=7u?_#+|Bmo{Gl(qbg#Z_
z4pkJ&yN9~r21m$-_DR0IJi%N-o!jTn@pZAm0(RkQfcDwFTJzMNYU-f5eF3`_Z^1Sb
z1oLcI#@@qbpKkBZOZU4rA8o%Y^#x!zwy@Bi7qIEz!?%|xB8M&8&hotP!{xQz=fNs^
zcA$gubfFzwJ1q3Sgl!jHi(y%i^@7dGqq)FgpL1vz&$WH0E-mR{*AC2|UF`sLu`lUL
z!45ZIqZZnWOn7V^A~fyL$95h)?|lRt^S#eTnFlnwrn&^Jo!E!%M(7%#wF6#P7VSW;
zj)tzhDb`QNcgeJyuakfauI1)FifAe0EMe_nU&yC}MLWPJ9hJ#H(>Kp`UE877vfR}^
zJ2F5peK%Px=+}<q@|m^M`y~}EKG(7^6@2Y`347RuO<%j$E~i0+U*FwgE8n0nuU)Tw
z>oB)@zT98w4&DA2u`9N47`BG4z&s~xa(z=%Td{}s`3GYw?F;up#l9b#$}0<bcGzx6
z9us5J_wGPn)D>EX3EJM?@9BPsF7>f3w0C&!+bgypy0V0=y`SHu?w@f(*!Rh6*kcDm
zOZO!^(0%vD4z%sr&<%fm@=BVV_zA9WMdqcQC!Etlbk+bWUNq-m7@&Zd6r|i31adwD
zn410|?IYfcOV$HrLS^A8MY2sc0v8;xOwelb(m(f(HQaSufQO#o-F-1qKX0)NA?snm
zt|X*&zzj!`$BUY=I>>L3G}wim+}h3=Hh~r((D9E^{`fC07~Fa>!gFpPCM*%|y&X&V
z;9`FyqH_twK<}GmGiNFp0lX(bmUirA%(74tWHazoO92vHDTpJ<UJ9woqkOBz)V{B^
z1704pv#(t{V7`l^$o7um>P>Zs?*`PUFuk+v<HGfiXMs|w%|ye)mS@Fh_#m#GwU>j7
zx(#LnbF&yufho8UC6TIjK|0E{9-FOE?W5~w*ra^s44W+a?s_+BM{E*B-e8kJDa~3a
z?KwACx^>D8-SQr~(gJ~RSGw-Qrstv*q~GRQg|4AyOWR;1|1LJ*Y>{rR*7uC(!_Wj9
z6$h?a;Ctg6-&p2J?|t9<;79+LABB%U@-PKY;qi`lyaVPkAK?vecmq85xzC0F;UE8F
zS_rUCd3xW?DLM45ExCO8GT)C_@OruDTmR}`g}*laeBc8gfIs}hKY&LceT*^=upeB2
z`1WuAcG?TzXMgr*;lT$Vq>@8ghA26wJN{g`a)tWRD1KbLxGGpk7Y$bAE4JYeVVwHg
zoSjnXHv7Kdd2Z;A$JMEi$3FQ<!i&e_k3UW&lXR~Hr302%(gQOIPO-0PQN_!v>Z-~L
z9+({g);^0qcx*dm0-#{G^62Gnv35NiV52&<>wB3h(b);jO2GFXC_uvLT3o34@328W
zf9?8cg6Ed775mw<0|uK0L~46u2YT4V4tVS{`?#<tK+g{JuxW5{T);MVZ2xMX?bmj{
z-%H|wrtYT~^nW^*kU_<Ho&SVk{wHyGlmRM~!8Z=6C`E1pc+^XC2sI5tYpnZdWsPJx
zauLC8ibj-roGwKpbDeUGHg0NxhgxeCYl$C4Tf4p`yx$Wb8EjO?Jf)rKBNS<6KEe^8
z!G_QBHLEp!WFzgiKD<rK*%rFaQ-(AJPU*TcePjW<M$Op4O-X%`bf%hq2Mu=5^U(>k
z#WqXJ895s1=p5LBp{v#@*Sh6fhiyZ3^=&P1oluyxXIme>!N#e=78^KuRi3L+EAk2s
zTh6l-H<U*!uhww1JP&=I8+q*MQo#o8z^m#~J7~1JWa(b8$GTU-*6LE4r;(Mt7Q*?`
zowBqq*?}aw(qd~<Sy9)HV%<w&badUN=e(CfyAMQmx-`Rfs4gwosF^Osb}t1@9VBc<
zmu5Vd4_g<T&=n_4>o|0DDLHwCnT^stDuxcWy?QQm-I?Onk=LF)_H6%|&^0dD0Z-TR
z(Vea-Jl~Z%xR2+eOIng<7J=0)SKNF@ou3rf5J!pA!Gr6iy8FsgEXRS-lT>S22JF6_
zONCTNC`Z{2R9*$6Y_UDKc09Q6+>{PMR@U~dU>k~)Etmo8+1a*W(@1HJ7$$k#GIqtP
zeXAp$ORmhZ*S^7(H94$ZvEg%9vI$xb8`G)X988_ESh8ZZs(Np+<GpwfMN)_JW7}-D
zppnx6J)Uo8*lat#oAO-Wt;L>p(ADrfcx)}tm#`OX3)q)r;t*^!;X->FVF5cVU<09R
z+_`5!rE9;vC$ARUGSBC_H0L?g?2V++_jXT!*w_IorxIFhgTbcQRbKb;9G$v-y3ToS
z^}LnGIo((u?c}h^W5urWS~DiFoyJAe^^aa2sn-989yy!-P4qkW#S!W&+4Bc$(MR)L
z((_}g;Xh7e-wln|j-{qQmSV!bXitC<$8cOK;AAaz^G8W>pWbaF*W>v*t_j=q>4Sgw
zCH}^}@h`4;+!fimPEM5Re>%t5h~C%p4Sz!?EJO#{sF>>P%h+Q@S%s@I#>06Y$_UbI
zq_SfJ>qEv^{{)wg@!LMo#=m3QluanHFXS?gPtjSA&l;zDux}(_DPthcjWbhH0hQ%!
z<Z@a_7vkxb%NpR=1>YI3Kbd%N;b=t*6WNRrvn)c)ze`3Y#J>9P5=YF^s1$}~ap*IP
z04cdYgz}&ICrhLd%J|+!MC&4*j?Hw#MCA<~Ik)XlZI?Q6n|8GiP)9e#vE}dQRlymy
z65(mF8QWIgA-83N_1@CAVhgpzoqe|qZG>?b8yg#nG!4*3w$k$qcJElyE6HJK`_3F-
z)L`q;-C(or+Sg8OhOYFxIL7Q^eGs0|<w|pleF+;tU33r{H*|v<jF~%h)qn4}>n?cV
z3ttFt{Hm{nM;`eEIk3+r=d><>WT7iY;NuTE<Zr+IcD6&Or!Y)^Q<=c_SG?ktaL+yW
z!b1-|M9)CS_?LXimlR$j4$Lfg5;F|0UW3!gS^lw)eROi%KSK`wTP|Ltcg95oydRzE
zPfZSREd4`S2-AUk2+-n#E0=@)V1M`CdoR7~=YH<zQuaWUc~zkmVx6Ax`Y-=-a>l>o
zkN+56{_>Yk*k1uJc;55MGrhbPx*8e7EQqiC%CDro3qJnHBk;=U8Ayk_Cc0W|U-1=R
z0q=hIyQ%CEVt?hUUIn+^dTU)kQKLHj;GPPvn%Xhj0%?WilJI%QW^-mQ6Ad<}OV(hk
z{{xJ?p4$$XzV*mCH}W`>H-Mcs%+k3huZ!69UVXN)1G%G1S@qu7s06TRqZAwIrqgq8
zqv*T4WCwJv05y<ehJDFCN*_HtP}&z{LT!|%YlF?vHJJO0Jn47IWAF8Cp3N9}A%KGr
zIGEzovI%fCWH$04%VbM-ymlX9$R<)t2_XWmS1O@;ACzDewM2VC-<1+!w~J-y{LLHi
zMtLm`XrJA*g*JU;AGSPe4F_TO?bf9f4E7mTgU!DSuN<{)b9CnKmihAcW_X}HU%=*%
z$RRO{eFcZZ{!91UzdLN&ZUl_m<=oTBV<+P+3K*ax1JV2?a5QnPD?U$;0!N32r#f<U
z?Mv9oEoN}jTpnYWcKj&0-t)usJ)@0j575^o+uq1~sF^IP%WCNChpys_GiY8W7Ih`)
z$0fH{Ic#1Y3(pBJ%xIy9*CpHDvtRy*u=|j8VScKU=O`^p_OrAbTywtnvExez-;n3n
zcG-cRp0{)j%Qi}%X`Z)uEa`b^UT6<3UF~ErFYuJ^rAW%Q&C(vMOk^D-=n!mf?Qh1z
zv!vEv2XcU*18SgB3QRZryRWy+4m0L-0BACec<oDvmU_Jzdq5}R(j48$Y9q>tB6f4r
zw_;<{mLQuA9CMyyw^GXOERTGDJ@4VjIl(e^*m?B(w%A;>YBqJ2b1rmWvTZkxt&S&m
zW6Mpu#lcRJmgntz(9-nm`L!MPVDI;>JS((qWKFNH^15_Cln9+x2K{@_v1Q;5NQc?8
zwS5>E8_BD58f3gz`-akYt4nR)J-Yfn+ji(4><F)Q@_pa+T?D(d>jb9i!V+C2;%exR
zs1@5V^zrrWKsI__c^*nRsXclw%2aKXe&y9JF;x7Q>tScOKKWjrzPg3evjoRS?3e~|
zGzXcPwTodaFNx+^9067)-?+~L$i5;-N7|jcI%i4{hw2{A({NEzC(y>3d9vn(@!=9X
zyHD1<pnAIDAcB)4S&YCU|I^J!vR}vbGv2R-&Zm#*^~v##4u9Ow10(%$p<|_s6A5bx
z^Md-(^zOKJa5nOSJ>GvhIn+<L80diCUDUm8p+zWrW+Y-V)mRqnIyNke#}ceSbQ4)5
zt&sAK`d!a*FOL<NPWUIC&ZegH6))_xdOnwlDzmB8HL<0f#i+L7{FC=TZwKpssNW{w
zl28d3$Y9%)?6pCM8;R~Mwd+aAY6NDf3#|*<HYf(KH;Y5mZlXiAcKsl=z;iOu^N|D0
zuq4&mMA_P?TG|spf@bi*d$Y%uckBsZYS+`d$(~42u%ok;f>I>NYc$cLy2w_rf$m2#
z6gniSX|0Qwvmh>u%|*>>&|y@%;UaFX4y#kd7HcGHgFU61K_UF7b_uW{y2^e91zXM)
zJ1zKSI2N9dxs6_KYJoeRBQ~n<F4&akP2@Dn#4wcLIZs!rAK#%X9{=Tk@m~;6zw2-Q
zO*;R>x4#{peDcZ334I&cs;kdlq33?l7k*)>CvFcL%!y9wzxB8N7XAJ2|NXz;Tvu$$
zgyGNr?8ETuzy4OZIytu=diWuD*-Kvvci(k4eEC<r9-cQj?EQgG@b|s%ee^FLxc2}q
zLg<1%h(7$ofA|mEKB4{Ms!ZVZxC!wO|L_m*oY!rn#yWK9x)r*9$G3kweCKz3$LwCb
z{`#~)aw1t0|KeZ#i&;CEal%%7HOTW9zvxBqu6Mm_etkKSh;%O#B9B`Cy~v}CL5jR$
z7TpdzP;8X31CaBquD;b3)wL$*&}0T!UFykWqf5JNl-c_Ok8W_B*a2@JwVf8rdNxY!
zr?*j|t*gIiqtJe0pn&Lk&kpFGD%5xC2S!I@+e;P#h#gQHr0qt}HG@LsMX_1Bs*Rap
zGqzv9OF;sH@OrD~9=qD0pz;Xn3zV@449?f1eu(o8B34Tcb-WU2pu$cN1~)*Pf}yp*
z@n<Eq59c+j6Agx!YS(KTeTfd0kAtm4jsT8a%8=HD#wZJoz_4jKij5*Lu&+2z9n@zp
z*RGd#mzGno6XU{S?Rv#V>APZR26;DMliH?_@G4SU$NbQG+lqah`o;nC(W*@uQfx@~
z7!6$|EvMEguXXp8Zp0Vmc^00>9W~a~s5xwD<W*C@8Iw<qS+6SHEH>PDi{w$UiP0<A
zWRj>+WL{pg>nrtm9_P`@wtekVhAhvq@AWFq<W;dz->X(0E4Ef9Ql9Uhv0kF9#nz!~
z#Wu%I8}3=UNju4_%3~I~JDx+R_2HNI{t#@|PB=RdtxR<6K(n_;nqyz}c<yxxM3;JY
zU|6bMuh@q|w-7?tMrD=9j*TkVyp3A012DtBgXfy5A|E=-bHuV#SAQg3GJ7c?&qdc1
zTf=i_qlz5>=%n9?9azmbU88g1d4mn+Hp<$8!PzK_ZJX;}3q{vVP2RC<KkawQ*iZQ`
z9W|5BBo5*r6Zm>8Im~XJqdGOqphZriM1zW_i~eZSok>2A*5U|ZJ-6*EsRhpM^No)<
z`aPEWeY@5I*P;KseURZ(4;$CjSL_<)ZL#yFTK&HFVdH4zVF$KagWXOP@F4j-TFcoI
zwqWQQ99=E8IbDZAYg#YUjqdDXtM%cRc+S`Y^mvZ#SZ{kTb{YK6u+cZL&vV8$?7$WT
z`!cpxCg$>5qjI!;jxB^1n-1fvyw0)VGtqI{U^nlk*!kJ>`#rWLx-ILPV3RsHzI}$R
z%kw@q&Pv#==fe>9W0N?vzAgduWTMh-8GCD^=5(Fj9<E;B(l>XT_#5`gXHVgD`j$NP
zbRx(0_0y4^##zRQG7gHSR(*XJ*;Ei}?fNsRT|bnF_ASk?wC4ZWre@_JnNKkrM9y`i
z(*Sk9f{a-cGFI72<^b2SiEwShGAj9{aP?F+s}9`vc$S2kD_Q{Ao^E9xx`MNelWflV
z!gh4>BUbt@gf-x;o9nz=a1PpjR`@p3BE~e4mTZxc#(0~8mCmzqB1tBn?g6mTu|~;K
zkn9j0i;Rq|&~dAKEv#wsO=Fn}7nKM~smw|29u+}sKR&>>XOfv!Sy-m=2on$5<NTBN
zKc7c#{vBzRq&jZ(ps!I`5Q?Srr;R`_!5@(qZ+U^p)rHPAdnemxnlaoU<J>IIjSdGG
zyRGd_w5Y+ZfmuCl!9AO0r#`zx1Piv1xde-1CnzD5#Yn|osVR$?mJYT(%<F9jOE)*J
zZLon0d~(<_%mb^`L8<L~vB`6xLpS=VPOE~=<exU!qF_swZVT87-ORDFJcpL<x*)9Y
ze(SBb$~fi%nbec%`+?6t+i=FzO7R=)y|Se`mewfhZ2peC!i{q=^8X!w{73NkCqD@n
zj*qAB%r*E6f8j3>FEASb%K;(H-ucdV!bd;)Q8=9(>Ui9L|NZcS7rcO;0Z<o~gXyFE
zUHAdHMyTuiCY2vUFZ&LIlUIA4ov&v1-t;$_b0+t9i>>@?bxF>3v0M4v&`-V@-VW%!
z0h}($^P9at#If7818SojX2qu&6+L-WI}p6CDD6V^Sy*`tUY88Eo()pEc{?z(pN412
zVC~r`fH}{7Aa&11HTH9d9YEU~7i>FtY<h0#-m^hafUr!!4*Ti9OIBu#?Qi<-*s$4m
z381l2!TiK3@TEj$t1*Wkvju?MJSWfqA3J10aKurkSJc6{QF<YSwsRCm^JF>_kNn6v
zki)V8C-MX(WhJH(hgZs~+?BK(!G@E>WQ3C)IC=wr-fL}2!H&<y_otW;hb`O992A=<
zKzTPlEH)CdA`}{R6z15384RVis}RsYQ;mW^vmfCmT`9QsplLZw_re$}ltGO@zk7sG
zg%k(EQ74bF8N0><v2lO3?<QqP`Uoz%HaKiN;pNUlgDuXnIeArPG<453Ezz0i88(d$
zV=m6+)ncRjRi;9vTS?=Y$s_;tu!ZvRZ$F&PV93g&ZI?e-M}aj=B;$cs6_fe6t3l2I
zy1LZbfzar=PoHCK(zp2_TRUK}2S-<;Tdrwh)s8SW+_<)qagNQ(W3aj=&xWd*jg5gc
zw*z)l7k-U;zcuJx8x>3{Yr)p?Ji^=#SfnbCA+^zG)NbfjbVZ`giY|&gGM`i)`MH|1
zmP6Q&jfqjjy}Wm02aG%-7Flq^V=%VAu~E>mQ9}22fI64QnH?xM&+R~~>0s<H%)U!3
zk2-iM#-;wvKkOzv3Jo&XN6)f&#SwS8sEFmMwYYT*Ql~&|`+Ts|Z_j($+p9tYD|g$8
z>p3^==FS7K`=_4o-TXBzHhum+Y`f^57yG^uY;7CB5?$+kH%K@7PdjBkl;``f(f1%P
zW2-W;5Bp*Ad_HXZc&@+yC(^a{Aq&s{RIugdujiM?8<UB{bY-EPzC*mwjs9dr@XYm*
zBH*96lHmFoet$-qTMR21RMB9RKS>#C>9iq8O@HZzGSwtPo#rMH7b~PaXilm`Da%+e
z2VRh;$s&zmMy@N1-$$&}ACei1@i;)E8>yB({x3n<OF^;Wc!$R@nLe>)zk$Si7-*Ty
zY_R3BUjg2a&rdZAfyTtrZl0G-J1que+4Q%J8#B?Hu|joh0Jn3w9$q9I1-nlAdCYCG
zW!{t!u>~ILmr;f+Fi=UP0Bz0x5N4SrS?*s6-HMG6tSU=>?tIf8hI~p-_VILrjez-V
zgW-H|oNu26BZ*v<C~p^-l5P9+yN#+X!Etd%&1%!vm})6n2%(ET<%OEo(3VJT+AX%Y
zT&LWYO4hzhd*YI*4K~wvkFGOpu)H6EmO$-c(`aOk2%ce+cPmar*WS?0%rnk|t!ei%
zA#_!2TH34de4$o2gql(DIiLO6&^t<r4;e7;!>;YccA2{QK*1N8>i+-oFa1*K<5z#}
zSK;$M@AKeAFM1Jt_JrfDZ+$B~^2j6bp7*?`>?4537k%*;!{>kg=TjDd_SNILV(ntf
zwVX-exz3?etq)&#?&yxc={^t~yg4*uLreFx51Y}w?C88*z_zm3RM(W}Mt2tN0Mr08
zZwL13`9c71*G3sTQ0UgN1G})rC0+71%FCmpYp~e84cdXNkqM}Jt^tsWty@<=guS+X
zFI`i+r%F#A_1%)eKC@BA4(#0T#oMS|-z6iD7CVm;5pDJD)Z74o8yQ0^WB{ncNms16
z6CDgvw5S;5jihKCQGG*KLtWZ)Nt2i};#BHFAIV_Tr{`@-&1%NrQ#3YGW4(Ta+w?pf
zupQGz6FgAe8b)Z1^|kcP^|npj=u#J&3B8OhR&2qf<t$(u6x&2cs{bB&u(K7TS5k^{
zmUfPWu$x|#w48wlqn@tUsotin4CYSipxLhg$E~vzw^IL|GeEX3b#UB{l*-F=<q1er
zS6_He*hU`o_G{ONrgnY7M%a05zcndC%5#+o#ctDbkmpJ_#ij;XQ?&}V#3`A*v>dB^
z8i9iHIuLef<xxKP8!=+BLs#7gqG0P_$Md67|2;Pw9+58PT-qC+H}X0ZY$c6M=&JIX
z<=KVjRHHRf?fAj)+{!EJ{aR#VH1ZmZp07pMyd9X;Snpvg203(j&U;iWVblExpy*mj
zaYGp}Ja1Cm6gxnr8__klDQ>7cY6mPfXQMJmMEg)v2RCE8mjc-Vqvus#!w#Oap8M=1
zYok0}wXS}lYwn~D_Ur&g{06s2g|SfuTdI3h=m4X!1C5Pxse{uG=~Cn@o8WDG#+v^l
z)IC*No{xfUy<np@hUYQVy%f|ASR3W(w(q;tEQIGQB?)Q?iJNs1AkX}9JOD&T$jRgd
zdHk6z{KmU4Q}nK8$*BAdlR?FeDmSCZBi4ncn$^hTiH8{dIdW7j+8E@+hSEP1T}w5s
z&-k3vNu$VLDy0FaMs-Hp&Z(@Yn=>dGX3~z1AdCRcV<IfHACa76<SNy$p3alB6IQIR
zy&b9M^=iU8?7}+m`I($++U`bESp^%_q()t$4^3ojnWK|);=Z-MHaa;m;+JfYr6XcL
zTG6*!?PsCumItf@)e7H|%~}saM@+95y{7uw)3Zs>B?TC<l<yGHnd!P(*IM92N5RH>
zCmF0{lN?sTHWs=LLPxHtzLF9QXe+luM~nzQ6P_Opf_3U!=@^BMD3>H}@*RpK6Gs)B
z@?5Y*DO-{S8=tSqHWs?BEgd-$dlY$9Y*eOT<PAoZt|&K0>lHooOz6npOr>My=;I*K
z%9$h9(J`tu|7Ua+tY-$>oQ_%Qy|1Tsp(B0ISzgPzlqA>~`HZ4VxzVi+O<IsHIA$g+
zDxbiq{spU%*CWv##5xF8(j}<}Ka|?_Bk2;+(a;sK5;mh-7F$cls#{D)#=6~bbo+Y6
z+te1iI=x>TtYo8BBCkZp6=fn6Y*@Q~J%}C9Jpdv_zoXN6t=~+H%uiTm2eGZ_JA>y`
zW+P^@VQ8$52rHM-z;`^dk^2#A*B`MwZn=~N*RIFx0xk)1LVBL4oof6~{h>T<@f>w&
zdj6T*kN2)r??)cPVgIK^23VI)rHsL`lnOXI+fV=j^E}fzVmp>hJ;X}b*IHNqjOawz
zQpJYtTg8UwM@NM1Y&u6Qm@T@IbHsWi`xVgqN#ylRZPr@tC)<gmiB5s&xB<;{W^7vu
zrNcb{XfFl)7EI4M5jtMS%_ONW&7$G?@Jbw1SpKN){Q<HlArpG4`7c?svprP?vg?#}
z5$a;o%{pdi4p|4|aa5X*Cv5Nr@O3tdTU{Zx9S<J`ZuvpZ8o6&*JDtmlP*N<?&I^8>
zn$@Q75^S`9&10YSjsFqHl5N-JQ5ysXF}B#CW=z<~+EQLIm|!G_Eu5FGrtgAn343VE
zwb}^d8q6jRZyCQ^o}U|Ak8ZHc^8oYUI(3|ap<B}~b3y^r$g9nmut#YZ=lLP>3eZLy
zW0nDy@p;t)4@`>yZznsBdk^4uoudBHrd_`dk3RY+ZS0GY{uup__uwO5djI`!&pr2)
zjI$YCqd3D4!6uI1C3*C8w{%q=le}7<1GMt$>;M=$&|ovq-m6PH<k1ETSUXU7o_Ex)
z2WJPIOymRU8g^g@CldvGZ0pAtY>uuVzlRWR$bQcHcG$d)3Q+xh!Q5X;_Z?uPWc|Hs
zyAQQd1)FVmGSjmIWnpRoTihX!HozQq&@~&|t^6w=Nt{~;vk((*tc2jg0sz;3l&8y!
zvID)Oco^l7%LqVpPg3UP@?_T@V-qRcw3BnCwyV&ZhnLmXat>xa#4yq-=M10zZtf+l
zF*>TWhixwcZm<o(M3;83`Mnf^ymJw%U}8+eJjG2vVxfa=Ww2pw>sk6<Xj4usPr+l8
z{=pau&J?IGL<Sp-vNY$gNH@=OzP{FnFLVutPU3LyVWU+%|E~0)mag`Ct2r~CLVFBO
z9%Dxyt%P};Jw7z=9?fPW4x1XqC7#dd>gCJ6ThP_R+B?f@Wois<3ZT`s5ZcITtLOW$
z0d(YXk1jP>LYp!f{PTn6jz~t2++(vEqQf3+-_Rc60PL2Fjjn{YG()iiw!MeNv|Gn=
z=wJ&A*vKCD=xXg{#}0%Yy5zA8J8b04M!9DVJLEM;-@#)yID)nPFt_Dimpq-amDhdP
zY@?(HXci8eWqneHIhSsZgGty9mP>$U#D(DmSFWMcadN^PvvU_0d9b?7(WvK%7JiS`
znKoA3BwRe>5)PXUm;73<cySodY2!yM2QpyU3*Kz;c$J7@bdL9r97#my)4#`SEc+1Q
z`Wa_89-|`~9atMYpPZVbl#<#c!o9{#M+NKTJB8KAi}zegZNf?p_CyZ0qY2xv1%ov<
zSZT9*I_LV^n}N$)oo+bzU@O?pHe6=oXd5U4<&^4cGo5JR1Q!_r9bAzdjCj4LBc2~8
zbXYQ83^rb``90X73Pejw$I0JCHOa{tzT!w+rQ;?=vZmM<(Q(BK`-m+FHazfMaQJ(?
z=DOsYGsKdK7PMKnU{kCcrQ?d<3!Q<u?y*8_dX79_0X++`t_GF?qT6(SCUiYJ6FRO&
z61s{N=@`lJhq7=yCZZemO;|_9dL~#s9glDmQsFc6ft}Qwt<sS<0^JgigX1}t7-70%
z<Tv((&o~uq_}-)+XTtL}mnG3ME_gk@6W$*p%D3`-PREsz&x%dyh>K;DgLk{C*dj07
z;CqiEuTik4Mh18xy6}9%o7Ey6D$f}!{^gYDhzl)|oa(1rrt5Z$f{mYR>Bv|jJE~DW
zSJ=Lyz6l%BQFxAYJW{M@BkAwaq)TK6&Z>N(V_$XaWMqdw(hWpDaT>2!k&a1tuGmJa
z_lQmDI86PoSr@iqqgG?2zUiE76xY3{#pg8#FVt@Z)IDj$UTT09NT#3t_F03f-<`#;
zjLg^YCrdv%vMbIhS`~--oM6f_NPBjjhYXEVmSI-x`t8%<Pif73MHck+P58fhZ_;!3
z9dEGN@r$%+d)9M(ctbdRelYi#DMdDYfunn<_m_EOZEfEqo9?q6`LqXJlk;aB|J@@%
z&Dvoa+30#C7%c#%y0EVftzOM)JVsx$dRkON1=l?RMjL=83s<&weR4ruTEbUrS|<|`
zTxx;KLKI=k{hHN;%?3&Vl(H}un~t;bIk>Q@SoC>O78^@Ik1UG$EQJz)CJUoTqtOO&
znOfixY8mIH{R+l3-%9~f4QlYgNM}<2y*M!qHVxccOFeDHR@#xS7z|=~o;ujH-ADEp
z>@m)<iA)rp<6N;5D77AV19IZIlp(DFk+sG;SZqNzeowTpIpcW<ZH@H~_Ui^4$%Mm(
z?azC`3#fz-4kW_#QT)xfy%m1zw|)yg_`wg-k3R-l6kfw${~P}=c+G2H3t#e|eKB0T
zc!Bw7qM0q-K;*HJ*R!))r(CdEp6gx;TE=A-Xlmq9b*Tx0Rh|o7Z4`Kq=K#yK>qi%K
zX!n8edfw<#XfrNUUK^e}UD5zEDh(H^Q+>ws4&CrLwb<nTnT--%!tZ-Bc0jSMM3+=o
z+5p}y>#>zr>D%x9LGmc~du-lD`P%g)GaVasB-tIr(>xE__BP7u5(oIS?{<idQl1kw
zxqs~0s2w~n*douvlHobk{7<Ru*8;n+^>k@#_NsyTcMA_h#fv07ma^WT8yQc8D_2k3
zVUi47cp)a2^f8QFx%J{P+;Wk3DCcy?T7R>Ns_nFI-OFmtYKo@J9Nli6;#~Jx%lG7x
z(#j5f0IfHxjy+9Tjq(n>P!WL_E^2-E(7`sk0feS<YNY2<z3mvyh8xByt*e^sERzqJ
z!A8pXe*-pZx7adB`mSJibj5b9|4z>;ScT5#<oO)C!`8u0Q<XSRBh!JPV)NLSuzkAd
zI+~Sg-|pqn%S4U5&<*bx8@0osy3}HWbJBH5UR54-(S<g-GT3}N)A@OR4tW(j5DlHJ
z9Z1=v<B{>_vR&%b-iPh{be*^BN4Utuf-Y4XBokC`2Ne5(*gh3qqV~oP=qi05yRG^E
z>7v_C8)e&bTi3H^`%}k8osZ}3cj;hkz#mzRCVcwYt27YMi~@Cjs{`a_J=DQP@-G7*
z$`qO$Y}Ym?@V0k9Tb(aKoL)H_`x(UvW)~Dvv7e>vgB)~!VuxQT&!i48xdPkiw^(cJ
zmwSP625Hy6XV^f>VnOw6h0tQB@*JjbDnXIh`M87)40bJ9(ZhyiCsN~d5(h~#*!0;R
zTa4vh3hhCo>X@$Lm1>_abOXKLwJTkt(yfP$%->M4!ET;cy4MY8OS`2z*{D?MHlsV!
z)i21mbeq$)q5GmdF7UiVch7T+%`Yr_Y@qiq$V4!7=jv`9x-Qb)lxDN-23yPX78~n=
zl^NgO!RF{nPEgY~+kS@~<}wjQUUNrY_t^oDZAKSZvIAO*W<l3f9y@fM^L!Z_d@44|
z^W4ZIMX0O&oY?_~Z695wUF}s)8oAce)wUPx2g>8jMmc$86wBBwU3=JC8#UJzoF*Ml
zt2!ss!p%$XJ%Z1BA=k#nSCy$-9pg!MdM(o=&uBIdW|pJ8KXv&Ejps1qDux>5L8xx#
z!2?v9vg-3f=A{cKu%=D2rOvpFD|9?tqDEz|r;clNP?d<(P{-1E3?Y<geh_DK8K;LD
z*{hzFX!{OrlqX5RE^K8EZT52uwH$<<Q&_Co^sU&66Ejzdj@A$2u$6X;-MpK}Mlz{3
z&eK)iv*@ZkTj%R_PTXSibX7hVx?1eJu<hWvmJHd+bDd-Cz*cw;uu~>_bSre<g^ffz
z&FD(S-gHdh<k31QVF%sb|Ni&GJKyzgc<5svCCC5Ot5@OKXP>2LfBYSz{4ZR%0Jq+H
ziEQ2*-td)h-}9aapZ!@cgIjL7rLRjW-$o`pHqy0SbnVIGp*%l8CW6tW(9Gp(5Sz!Q
z5!rinX`dZ9kGx9zY>!ln4cPHa*bcE#A}?K;u=3ckL16(~?$`nKWsDx%joPSBCtVM)
z{mS!TpM8iOxDjm1(|tCoqia37>G9MvS12%uvfe{1zA@3zbNe1<835JME9bT?R;P<V
zt5LN<(sJ;+rk!P1r#kH1X`f6JHEoxXZLOyrI_&^8=3LG~D26>~-(YIj%Lm5}Ph|{U
ze(Jq-AensMDfIhxbkX+gu<_H|`tOR3+UU|)?j_+Wf*TFZ`2LDb>E22}Y>Z!?W3%rD
zbs($*(XyZtDmI@{k(z#M{|#NUrM9DM=}+n6uw{!4ijX($bkiK0@?5b~xzb>;rG+}>
zg)VxnZZydBXy}#;rD}UeCOprJOcd<xyS2ImeQa4D0F7o;x;mM#*ve$e=$gS+C+Cb!
zM!BYjdgXZ;II6sMu!F<itJ&Q0w6z1}etf>jBhd|N?fNQ@P_WJ9wZRs;eX~3+*a4MC
zZwJb|d7gLdfMB25&mxa_X~j0TQ9Jq;8<j&Y)ZJ^N?7JbHo;>EPBG6!K=;rtt0Cw7_
zxt{NMH+jC=0kGIq9vAFD4?Dnad7Skf<O3VDCUJ1r-`viBJ~I8}YIK2JHCYxQB^Fgo
zHeD04@rQ|<NAEXJRXr+^sDT|SI+3<tpjxxK-VfFxiDw~~>$x?Ti|5$5L#k3OVxp$E
ze15buZ4aSo2h*-jBrY~)uxI~Ei!GE7QcYtI<=dT$2xl<Zts*BV-||YgTwf@&-&v=9
zv`8t<WecX*@}qI|QoF&HYk#s|tQu}<mvWPy?)r3*1K#8jz!Hkz4QeTkRIydML4z&F
zDhX;&XFNC9a<C5yZ97ytSHo=YuVhzw%rG|)D$gP2R?em4DzA-{)h~-RTPkl>=z4Uw
z0PM%DBafM6BE#G|w({CaY{h0H#dGPwV*~%>Lf06;J-fvg)DAR9Ze+qBDs5Fy!Rc|w
z4ivhyx)wa$Ed*-^S_{$GsFvs6MuB^)9X2Z0b1#qe?ojEXGNE?5Rce@}LMnE7Tna@4
z8atpowfp)6`{D=4<IF}G8$?i}`!?kAIJOf!P;6d@y6@Rf)pLWbV9J(y{e$)mh@tjX
z^gi_OBHsCI;29Ne>O)16ONdlTmZ)+0-Ik=(xt<N$vQ9Rg-<8_T8evHeidY;|S{Hg&
z(>k@a>q`mMU;=)2VKeRBy3jprrtjdfi6d&UJ=TDq88%nP+_zKIt-)sLx>#@9V7J&x
zyR8-8tD%ndwjDOO0iNePud%*F*Df|kSNvUTfp_bihZ>E)3mef@u^A^{gDs^}BDIUH
zCyxWyO2!CcEa`(kdf+oouV05pKJf|o$VWZ`uY29=%Ki3eBL90lN2jloi3XbwloE&Z
z47>1DeJHU**AkTId2Z#==@QY+U<WU+FyBjI=wZ{o1zYa%Jhip!XLLKj4x9(u%tnbk
z?z00W_-g3ypHcLD2eui{bIk<k*42-3QI~ShMp--1u~8Pgr8{L}Is18#9q5#xw(YA9
z&wbw>o0o}#ZAq6pw%_Yo&wf&-2mQ)HPugbv!sk7jJ98OOw*wLD1fmpfS^?sTVj-3Q
z#uSNDByJ2mk<6({<=TvrMjbiI64SfwDjufWa@qxd^vUpmL{S7zMds_F2vLB#QhO#f
zv(?67I&r}!?V#91IUJpLG@JkXhpAe%+FCV&+NEfXC=wK<rMB8pdj@UAh}EK~y(ubc
z)sDm#qiBuVTSSddt=P3!@q50%|MG`(a!!ut{k-q{e%;rl6;1igZ(LB9v$gC2h@ew?
zfUMXSwlAFuhKNn8+7#OAj`?<>qF6ctAvzjy=3xfYz#$Q&TTvi_C@}v|{rTvrClSH~
z*Yu_O@~#m7d1qF0df=$ODc)hlr6Yb9Tq*wmJnWTD9U~@#2h)L_iN+4LaH7Y0AA%9*
z80=GzNSk1f85}zr7?E*`q+8dlL)fS{q@ycXXR&>vpI(lr7}`I(k8^461DLzBq3#pM
z<nZ3>adMO~e0B_--I(g5nb&`GmCvCv?VhI5MUjX0KzWpl->)AXdu1<3HQe$NF2C>W
z9Y;v%5G;k!4TtYoW&CZ_*(Yv&D0Zv3v%}$5fI(IKPuR-g0?@<9nEB413)aqAtHSoc
zeX}9Fj5<~gYQ8IBSYT(?y-BC8quv|rI#AgXF9l0(%K`lb&L5c^PXs=>Cw=TCSI;vA
zy%XyPxR1NZ<>LAx`FWzV#}mDL?<0Sz+YG{cVI1KOY-Q-lOFDCyX8*C_n7(MGy^1-E
zCim^t_<ue0L}Gi$So_Q~BL&DW)YFg+<t3hj=VRh~5IyZJX1O0254o#LwINvqz0nm}
zZVHC0q1Ldw!$-9UjLB)+wa{5FOx4Fe_zVq|sbVBFBpHHT+AB&4qVtpv()h-BCDcJM
z=Z}x17oA-K6?}tuvHF3dCgx__0v{Cdo!HybOfg&mUcEyzs0#SoKRtKFVzseo=i6~X
zdq^gD?9uWk?47xg^=N{cX|Y!YQk$lpB75wuz){QIYz%@QE-JpRvOQjBlx>MY7lN>Y
z9o>jICOCX^n5Yns$b(vbjQ@E+@=~^ULiTQ|y$a_36fYwlNMY<O`swJ)QDoaf!T1ly
zwzfE9c}Z{~$1jq}?O}e#5KL8h3$IV0Y%lpHwR#21SslJ`=uC6PTXes#ZkKV-udD9B
z<>8k`u;SF+g{iwVr?DcrElxChPof~*rhYH?OAycCg<26FZt>`%1JjkaZU`5q3L{;s
zjl$x$7MRk&yWomA&*eKuhTb$-n`Hw@pAT4fVnA?<!5O6BeZrJwP0l<}FFR3I6GDUo
zXsL#ofsy`1eGl&XWB9Rx-WEqk1dgdR=P(c|4N)A0J|=ShR3{y$`@Hk0M*ksW*a&lM
zoH+-u-U7tXH)c!rUtD|vF4e}U8rs`)`E|wEkvm6R+a&Ti4fd2DJ@nisu*77-xGQD-
zGpm&U<YtE7j`xZZ47V-ZnQSb|;|PgBZZ)qf0#}4E!i^mXSCyv~Z1PLFFv)j!(=W=6
zrC|@|@5j1pAu1qFvk4b$18^e}E>`W~mN!5B<91=)1xTxDjuYNIY*Yn1-sg*nt->-~
z@VAU!kvPknh^0Y)VsrTc_j_r+y0Pd29T|~&HOFt&sr~xj-iaA_A8zY`8fsVVy7SBk
zTDLR)n$I51NQ=vC-|RV@`{6k2V(EIWc$32qzIrz2)7AEYjs?>p4iBBPrHS9+vLLo(
zA6Fs<Xz++OTnrkuhK(GwU5FeUZ9UxfL+fk>eud0Gf{B5J5&*%yS=4t`?0;{M2r`Y5
zmx~Qc=;obJrz$IV7PbD}{eLk0A91*dD#2s<t@^Yjt79`Foc)c@qdA|Exp8Kn(aF7u
z&9mf}TgzvPa4jGPrtcaikEjDGycL*#TfaK#7cDCwPK+=4^RNM52_jn8;I$}72abN*
z(a>KYw?3>PeS!ku=i)`XWPa$jLjl~-cJXBuwV<p{<QuZ9NJmnh-o+xh0oBQwHkLKV
zsf@TR!A^B&(B_6<RmGj$r?Q_omsdW$5sho3@E3I7xToT!^nsTC?^PbUJ<Lr5e!$Ef
zHfTFM^C)_OL8t|{E^L!BS(<u^bn8InR6qEYjtQf+FNx2#R-GI*V(@2hG1=nhSA`o(
zMWIC!39NMSjh<Z|tVR=^7VsDIl_TEg7X)iVp*LOh)izZw+$wpSJSVe*&rAhR&qTW%
ziJcD~=^3vZ=fTMNx56cY;PT3rNO-4R(S>=H23+5*<rUlwFk|;kv!d2;{^l5JpDuty
z?ajk|E}Ez*o2C&7ThU*4rBu;J2ymb*ko?}-aQLlZhuilYo>eDJlfy?h4Xk^FpCDHz
zPFxR(zYl&}Q`%7)cNA);rOjXBKAJlJnBUs^khd8Po%mOlH(8fvYXa}4w+|CjfK~f^
zjjFhFCW??*X=}IfB#PjHRp)v<M#6~_@s-k8@FO~XZDz!~+v~D~9SAJxQN=+-bU&f1
zRdlwo=tRaj6(WI0g7Fy_2S*nI#s*`rh<mqxFB;`#akFk)-Kxm5`tm85G2%Q#XsdK%
ztnYvMn@9W4FNFq45<Bv(_2hs5*6?<nh`OUOWU#DSGVSuSgkHMtLB<<*)d9}z7cp0&
zt)$QG%i}})avc99BR&=mKf9u6Qh2TwHt&8OzlyZi=l8FrpIhat5_~61*&(8zPhe45
zn~$dZ7=a*{|G@F@DMeEV_;vV|p{5fek~Tkib73buFUS$}(Pv(ayh)ZL%L1o`@Ob#&
zq_=erNVgv<XECwgg7>lPF0Na!yrLge`^{kI<*{zgeNVIS-DS-2??>2w8G95phe8M!
z>+Z2!!WmO&lF0$;d}pj_|3<+Vjz(($-w;?LKDm`;jc^%K(n%3E`5<8Y5hXqC$!q~V
zIT_11E24)!bBZ2mveI5KTR;~DU}wlxcW-knB0?P4L|_875b^_^KGuJQE5bp`#)7H`
z3B<&D%D;`E2knkA4j_fkF<~7P*4wOhV#A-(uZ%rZbNLDBVOWI`Vnu7Cy&Kbc`@ftl
z#R2j==J2tI-B*(A*70BDz4t$J_+K<I{-Vwssp~6FD$}z9eic6*)2`!TGfVpjl;s4z
zzeq`P3woG?|C(V@O|=j!AUkJM$V)Oo?8Dxi`TJXoQzwt&tA3*PBY_au2Ld=Vxx-O0
zd?AqTa6CSR?$52d9ck5Nr=`3QA#*7Ucch_`;<U9q$fQ{Ckw6*=4}iVmSo_jNVJT~l
zO{$bRxN#evSS~Ke@pJNr2a)h&b@oAj=LqQMoqJ5#wW^e}Q?*V(4P4;G-3IwPG8j)g
z%nBF4$ba%ciznCJ^M<yYau(Mw@~=5;xCe9YZ+>_8y6yb3OF(}D(7qgvz9eA60E{4E
z)k5VvhZJfdK9dNg<nkl&$Q;6Yd>^_N7Ve=KM#41RF{@Jz9Pp1YWEpNENn?<{H-6_=
zznew|_%3D&uze%DJh$)^LV#jwV0m;s+O|Jho57RvX7-S_O~{(H1Mj3Hl)ZPlPCt(V
z1%~+gkW_$(>&buBux2m=l**gY<A5z?zAA;~$7Zng(aG^Sf^OK{YzPcDQK!HB2@Nj$
zuPLQx3q!Vr(FY-4%I?E7y&s!|$({v+vYV4eNPon`df*Hs!Or4JPyBSF3M4$_6hpNd
zEbUbak?syRrD$m}h1Q=Kojl`?k|>qu2uEnB87bXXVaEXgUMVXT<;s>XxmBN}5!EkK
z4m!qab9eNLu{>w_Ti@-^ZBa^A$B^x&<k{+8mZuZ#iV5GqFCD%rxsmldm^><Xa37Xa
zhYhO~Vgyhi^DD>_`rvr0Dhe+M2}jWi$-w%2UU^r2gHP*HQ(9(dWs-?WbK8G%OWgcp
zXXEkiueZ<jWhZP^WJ)WlzZ&_K;lt4|s1oHc1D4F_mqVV<<!5X0s<B|z{nPbovgkMj
zoueeyxq!v5O;^z4r~0TOgXHdS7s@Z<MTHMs`w>TASD|`X{p*#tqyRVkUg1AoR)rj`
z*K4UJo&}HC&kx}=!;pZS0{r@}{?>>#G@w{DhpkU2U8chK%VOWm9bhtBMK)>Ed++7#
zB5{OBu(bH@&+H+JKQ<NHNy5;*Sjvx<3fTIZL8=Lzu80zp&%+du_e<4MhJ?|dr5|IR
zTTdR&!0%V!@OK^YdV?EzzlY;_;cL{Rck3ZGOR?Ci=C~-?(iOsCd%6D~+F#Nv9CD=6
z^q?(B;|i%A1F*^h^j{V}3cNLb1x!R#e0gwMIr};bW|$Nves9-3$8w%PDkzQ>?kqt$
zRui%Fvqo*VE*503`=R$FOl@b;qG+P1yq-Hc?nKJ@;#-K4GssICV|md$62t&wR+xUk
z3P*@$fCipf6~!YrdI7H=&%72|)dMm3-QrJ0SrD$9G2fJU(|o^hs|stLuJNUwY0Iqd
z_2UF8i#Le6-Sj8gfvj^+2qU)RM%$Hv4SH9NbNx%zpy$gF)6|~Opch;k|H;jUh%ip6
zzry)*ymFh~?XFjot<?RvU3*iiMn7tvrc)fs%3+Lo#X)XmMF+0e&r6EpO-LL-kw9Tf
z@P1UBEwTau06r%L%pS44x>eIAdd$nHDSIRA=o-MyMg9G=#?`Ubws;e+M*)>r9rfaJ
z`!x7=`<?mD`;Gk?-V8|aqTJ07J9m7fxVQce=J#zuzWe=G0^gvLWWWqb#EtQfb-7aZ
z1!}lAKS9EqDRT6iW0xk`iu7|iF_iAGz)ky9pGPOMI-uExA879bAP%_?51t7X>u;7g
z-o}Jml5xjK4IH;JT-*ghkpf$?A1eP_ryF5rvA0#1?U;WkxYgmo_k|UEcCi#F5zaQ8
zM@R}nwBAQbBdo>*OcQ%rA+HlPVsehXE_8n$s4ja)XnVVG14u6MIR~8<6G8fpZ-}|D
z%IP-7+4nba;xi=&#IdJ7i{me*$&o92@N?Zr_h0Iu=O+Ioc1a(l$3;i}@ojv3tqOQ}
zh^}5E%ItoYOx|S1>d^8A?Ol?5{(V~?a?{<kJ$BH_5{G5;?T4988Eti~O}Tu1NAj0`
z7I23m^;zcZJd3b6$N-7|)3Cv#xD3G9qG|jn$jx5r`N@>9#<m4YD@-e7-gZ`Xx`J%M
za$(T6Uks-DXx(>A8BtzC6Wq3>6{^|kJa3U;Pq^h%#Ig0~!N7VOrA1yj<h%6&LIxjt
z_Mgv(XDEft839IMveoZZqPArtx@&`FL%xLKw#Q|XsHL^<O5iuLk~9L1^|qV`<oEGo
zl|`Zh=R;mNg3pry`p-R$zMj}4_yn!R8#0?m`*<KNvfJyHZd<1%`M5?O<pEP5v5uSg
zt?uoo2&i4KD=p*nOt8Bs$~#lGN@-|{W<dH>|D?xpwm(vIw{UZ7?h8l{iJBozj(RkG
zpb9sl%4zdXwi@R@`n^wFRg7(6Ofc*A8*w<%T^u0!^V)cRnKumbxh$|^n0_VG{jmN}
zRCkqdlo^JtX*FT6x~Co9<ImMsQ`uU|0+rq^eG^)V6uYJ_nzkGvkCe^!%{F__j9=Y>
z6OAg9<0nIr>1{qmcFq^|A68nkFH~2wkX)t#PQ=v<5296qCXJW)G2sM8w7Ob!Hbk+$
zR035Lby-u^bA;bqg{B}qyQZue#Eui|UJF{MjcHDoNRl7Vdbr$Yd-inJ@JyXD48#e0
zvH|tQJ}6UH=ky_muduS039lOY?I4|zwioO)+Fn6n`8>SCV+{n-m>faF!#S7Sg}+}=
z8Mkx?OR7fXRXh%9Z(W|9!-x8(mDApL&`%T(V`rvm9p8V<qL~;I|Jc^zk2HdJ5PJOI
zwzjQTZ9JC7leXk6`lit;w=VS7w9fb2br?HKAeez*;NT%At*!!CgvmD4=5@gL1}VK?
zoz=7d>L!15lHFJHv2*d)DamYisIFw7&N&{5Or;B2hmig5UA`RN3<;19PmET|r#LNS
zmu4hXz#+nmJVh(#yQRQhe^Q}VU4~2+<4?2NGy_=Idb(@W^G@*briv`yXW~H*tJQY<
z6a_Lf4qOC!?}-tu|5C)CRco>JPRvsih8@K0c0`<Py8;HozfCdtke>CWUYRLXN{doM
zpyf0=f&P96$2<HO-)m!tR3p&lT+$vAq~n|2LWDSOu40Oiao)3SX6+P`uZwxAhOBPA
z;ew4lgl95<RAf5^angWBaW$kQ4*dY;`!|r=M<M~5Nd<!A%>Irk-adS2T2BVNkeU!L
z0`J6Z8(ql`5x+6hSBQH9(M*V1#-9*ynP@^D#q*tNAjbN4CeNwhCw+yl&G1<uKtZ@r
zEtzDi57=50M*$uWkiu;RoVt{YLc7FTO<rGzMy*g@e5<m_pSm9p$=q)~#vR_#?22wr
zqAjf~hO%^f6^601xGQngMI5z&I^gP+W`p`$1*K+j_uK|uIa`bBb)-I&9&Pj1(Sd=@
zQGfycD4cKiCs?GOr`fJJ+<%t0{kBS29Cm6lJ6SP#n~U^QYoyqAVfoac##pRf_SEz3
zcKk1%V(Iec*Tm>;XTO`X!g%F#3XKNy*9uIT&(W~;RkvwYI4>iKcTub#*ViQKE{X_`
zbhJo9hjoKw9(Ojy><w7hNDvUjI5zlf!vWj)+9kMajB#lO&L+AQZ;J~Zm$r<~WOR7M
z8eBy^<Jk0M_%@7f(2AxV5jm#VQ~ws>?x*M)<l6y`r-L<g(|@p*z%hO8piuGU${t1n
z<{^2MM4#P|6h|s2%+Pg(IUSzb$M*z2rT)vh3`_PDyGC(QU$8c)cw1phxhq|yo_@F$
z=m=H!mG=lr-l=Gjhc0YkE>q_#z?$nDz&#D9e%uNOtxVvqd7n0|A@!os?SsW5OH55%
z{Ia63K*+M_my4^&><tWA(o`Mw@|<V@iFM9C>4_CSQS3h`N#Tx^HH^r|{$+xF!?OJ9
z<z}i~4$+{-+%=q0SJp_2!_7RwfR(*pwh|jVmA<KNr|s;@jg(-hxNhSrR15^Xm@wx`
z@*#XeX*^OGKn|Nd#Zs0Q(|vQSv*xHnUm=tx|4p-Rl4;ON`JiFC557w;u8bKKHWUD^
z2TR#pS2RP|1bTt$_*F+l{p#r_>|^8Z_%$b-P<!-=@jVxY57Ctq@3|vFU#&-s_E<Ip
zOT+3D{k|G*AqmO2GJO3vpVp}xlpVOc0HjyNX+`eQlrTQ=%5J9WgIk&BKrngYMld=4
z`cqwJ(bYvXfH=Oql|K<+f<xcq*lXFMZa3AX9S-Xgy(gd5%6z*9c$V>_Lo9G3yP)OE
zTY_KkikhV{%r<MzYi~Q_gDTxGPeO#oqT@C`$GlX_JFrGj&)(Mz^6M}@F(4VM<Jm8}
zP!<N=p|R05U{K_pqnIK4fE>EGgMpxnd@hZb^-s+4w_pj=vF>i$%Cwar62t2p*J;%s
z2M>L$Z^Js_yvaSc`>xoHGmI!|eW3jXJ0=(r2Wr0sN;V5B7;-luZtI{O9KC`i2>;nT
z+y$h&%93|16qIqbEO1;#=V2h1r)17_^|iA21#<;)9@}g8aOoT053k9}r^JZ8U=8(*
zkyFWfSKSxGszp+^fbAr;aw%$u2VtbJxZW2aV9L?8hG#waazgTi-S}C?ryk+=yo}M6
zc>l##rsy~WD62erg1!Vr`GB(Y*xPzG_iq1B9R65rJsYSqh3zCp(V$<!<gQBIx+EX!
zhxTS>)CD*GdAs#F$7Y_~d=9A}#bW9+x;jVB9OpmUQ2|@1&<Fi~1U=*78*-oFa&#a&
z#vncgM-8bp(V-zrt-|=FC%%izmf$;e0fr7PLd7}3uanEQCG1w8wxt!g%eDYWKiVkU
zn2v4e3WhwA?jiWW0!{{aKuI%vUuhWoAo!e0J1Dvv42dFkj?EJ3T`a5^X50;F{KSh0
zQ}!(sdJOGlGwhY0{ew#$-wnd26L0l-WpWP@MG#@B=ZHGIx_B-OQ{*EqS>RU2OqLE5
zcIi0~7C6m*mKrJmH__`BOLr_jr(!Yqfe-*W0pLp{?6_5OsL+{Z^0cLvujl_JN6oet
z$<t#E4P+M>mkWB>En}`Y5V2467>H%IZy0DcBR$r$T-URnaR}_+JNd;|8z3T5f3xoA
zp*TkxQ*&{7%j{iPWc)S*2$cZBiS2RvBLv=4KOFPkA|^KgO=YM;q5?QtF(fmL&GmLM
zHFHx4R`u|GufwwrMMws-U`vQ`p8*W?Cu?#<?L+#jc<T)nt!%p3kzceAl-eFnI8*(r
znzGW_e+gsOkJWJXJ7t*2&5s`&DvE7{X8HbfYl=r^J*#qDZ?+~Q+Hw@eVaPdJZ%99i
z<H|<p;3Lk({}*Y4oGymF*(TJDwSn<rwybZ=vlU-lkc_A`a<buU)a+>M{h1iD_$Hp;
zzwlTjmX(i$7werEU=Wk<*v;)=*ta;3qVhS)&OWug?3Jbf*+7~~I}fZ3;?+u;FYn}#
z_vB!o8dDpwIgN1i?t53n@K<Vd8nsY@u~n&(mhX=P!9RFnUs8dnU6?qmRh&7KWU7eD
z@u@CqZbYWGKjM?v)<{uZTGZEdC$V}s#tdfBmF{u=A6ZAWqz_LFs08;DucaPI2(iSP
zp~7sn#9&VQ&X^N;s+BEJLQ~AEzsOei^W&Jn3nL>1wyd}~U^navs<FBA^vm&=H-!>9
z4>CdcA}y9|$alAb_N@bwk)qAMu~*Bl5^R;AVE0`@iQY|m?7BvCha<w>;mA@e^4D<E
z_yO=5$f=FoUz%9|rYK1{l=W8akKf4G1&rmU%G#JFCEdGfb?g03rZk!m&23BG`~2U)
zH9H2Cn>QWTpE@XMQ7|UFdgoFOrrg>U91Hzp&`&Ju`|LVqiaF?Cmo>lsC6^X(G<Ov2
zFB@b`PghR@9+Gcl-w$ys3GIK=C%}`o?s_hck5dh={m~-2_v~UQbNw6sXePXv&4BKG
znlJeesmX78&Ng?!R2D(LS33@>b}PsOkGvHm7%{ja8P%Cb!V>6T5eCF^((imEI8w)%
z<P6XJ9Af2p#YH-B(vb9^L$H?WoCNvF)@`HHFrX{_)FHg*pN{KUN-gCNsYgMgFbh=Z
zy69x@dnyO++<lL)Gp4-5GxeJpg;rIs1?IF=9G)X>9c&Shu*@yj-FNRp_peYp;T~P|
z7;z)yU>r&cH2_w2?h<@)hEj9f4(Pr7DP?E+4)hvB>tI(<)>7`_B9CmcBC^vcb_v!p
zjTyoBcaTF~B+lMNcUuYfQlq{?=$>&|$cwzbk!q6W#%N^D1S@!H(BES^A9sC^re4Lw
zrTo~)kA;@Il5R=#7RU?x{V8#ZAl$_otv$9iY6^$mYqiHwgV}~DE|2;552SbVDRuwM
zdWrV6RW`}iPcQQdpMB$0HI-+QlfEv5a|-G4nZ?|kk&AqSl%|SAe(680zWM%B!M6e5
zSaE6Zft6r)A?TqDzKgmL4@Bj=BrfqjnC)mf?DL#=F_o#IR4q?3;Q{F6gdSn~GK%Ig
z(yvd#w3-jg@!j-3IsNPTnL((oba=oU0qL*eEu67~^=s^j>iFLfLnPNgz=L{T#wC2u
zD)AO*%c6!mL_Q^~DC{O5b)y{kf6p^t6$n=r9-{>eg$;^#f{jt~I6{+o#@bMWHJ0=q
zG9td^)}Ywj7}0fFVaq~G_6_cjA3b2k-5B-$rqz8Pcy%QzcB4>a()bo}2Rll2LtpNX
z=^eHQ{`54Gc?Z6tRUie7eL?j;C$O9}W7}|SNOWazqfB3(v^_YMlISgv$EBg!IEQOW
zcX;sZFtVk7!qe$cx|K=021MQdmiL2?5o<H2+7;q5crV508AI-rU+6>xl3Yv~`yXjl
zg-6T+Yfey-io6l-XxllD#i<m=M!&s}9nFM3pOva<#i~ln%~di0#r9|nd9U&J4Q);!
z*Jhq?9<GO1e13SlYIVh6t;Oucx-}mkV`tOGM!*(0NR6*oCdkDNBL?CQBHll3r&J`V
zdJjx%z5IKc+$wxAlNF)JZU4dx*CMi$-xX@yonFhv>!RKp?oMCnJ~DIM!v)~V-W}5C
zmz$k!+G>?nXmT0Qa1KY3<91R^zE7*X0MX|4@@f20Z8o5z!QG4mBxyIZ-52h`l_mAC
z`i0@Zs3+otH4|U3CeY<>S_1n{IV-N9XKXY{&yV7KbLo4wxMm5iP;7`}4-(mw!>n0t
zpGRwNw`=B`XApgyx6ireeAdU%farXl(pINI0DjrZ^ip$`6znPiJHeOue9wSFB3t-Y
z-pPVn{=vN{bd>_=#H~~LKUU`_MCNWSz$qEH4KfGZjDC!YwAW<w`E4rX3e4!e*G(n#
zr&5PP7*s*2&wSME;=H&{d)`4meShI*Fzy0(Gj<zvv#8062X-(r%IjTHcQ2wrRo`IP
z`|<a)=rDC4*Ta{FqLvtaev##9ZGu^wo>hax)7nbdumhnH1+E9~S!t_5qF{^S7F+Ic
z4==d==F?*e>VCYbtjJtleAAfs3NhkiaYZN@(VVD05B8yW`|BrG=U8QJ?h`u7Z^JFb
zBGbB+F5Kg(UmIig(t{?Rl(Zgl+_`Uzd(OMcpoKm+Z+<V>ocVzg{+Ml;t=V=~C?O54
z>06~$s|9p3Srjw`9?wlAr90tGtwdplnK`fEmIv>NBXQNYyeOMTw6S!&Ri%c_Z5k#c
zTe5~GO5!6xf_#)NAbL{$74oNodgok?zVYxHP)ov}W!Q5~{V?7pp_CukUP}f!W64z;
zD6+9+W?St8Z4p6u79t_72ZqqfU$e?MRmdL4cX=S^#}8Z!>hIz)u71%yd-4Vp?OMAE
zp&8%x)>`#kuQnULsvW+1o8oC>k)^_YJ+UHss8eq9>V}IS9x&99z*k6@S7v-Z&U!TI
zNtR8#nBY`dunuHB{))rb=SaBjFpQysngO>~jeD~?>n!<=YaqdqV-tf{2ugXf+nMfe
zhF&=y^QsCWwMg6yK;({2)<<q!>m^wgT3}|lXz+o}9pKFi!=I}c$B+fBX|B0te|O3b
zpG3&Xc|;ooMPu<uz}dHsJDN^pPRRi&Gh{Y<B98o*y44<MT~iCCtPex1s{=qm=x*(7
z8<0D@DlX7^b8q;B@D=3WrfcPd2-B?sJ)xStF*hW}2!i`vEld00;WG)+A2$L<_9l=C
zudau0ee8-e<~0Bz)?NScB$cv1&MV)1+U^=n@m*BI&qYDr`7byd9QI!LfwE}SM9SpL
zh4>RGak&hH@H?xl<3tf~++hN}g>Zajbe(NE-mNV9MO`$u%aH&D|GUKYaD^4;w$TFO
zyZ5x*=OdItPE%CbgA|H;M4`p~aoryhmlv-;rliok0YJif(SO~nF3cMb;uZei`^yR9
zJ|NK#7whhx;ktDUDR9#|`91cEvp8=A%G#oDfOR&w=b8zU@z*D+YqGeyL%8gwwLPgg
zCZj@I@qgQyX5FT%I*vAr-<<7B{RY#m?zUWbG`i($L}VGH+W)A@gcyjtf$0N%7I=h{
z;!5%G0XgzW(q?6}g=2IOh&j#m*+rtoz~Cy>+C+nu=kn-yU5qv&+#$c~Tlt<aBSH3_
z{JyJw94b<LST)TAvTJLRNX?f(p8eu22kr2EHnvBiEn)uwkJhNV92^)_&VEIq1!kV3
z312l&P;}L}<Vx|bM+M~@guMM;9D+g@a>n$`&a%~?Zc0P+iK2WKi<d;Fd&68ex2F@O
zW_LnTj~qC;Pu-WwB33{o4`0FtJ9vs?`tnlkz<nf+zMybHzpy?nDn8Cu=*4yO&5^0u
ztr=k}VLQt4bQUfOnY3Iv;z);H+yJd(`!_Q7x!5cr4LufrxqMzN&>{P^xH!|u!yDSi
z&kbsD^j{3;QuVLy(t$BSZt#*t(YND8bJqQ#>Kh>`5>cGqdij2JB66NLhVaDT;Csux
zOVlmje*);wsPWeqWHEGv1391DTk+!ifp6VY4>V7Vun&qj;I^JMPwZ;1d`hMR;D<9M
zp1k<m3GoHW`Bv|OWPfsPG&AF>6%vM3ySlfdq0-xriObJx?imHYTUU@p(5=8|>Me5}
zu<NdkQ^V7o5<l;jN&INd?sIaVhLUW2<cq1P8N0)d916n8WeOwS?oRdEtzGfF7fu>$
zyv>6e;7!O2@+q(&2Nc1U_PnzA#M>cA3LUPw%Mb}M$SdTax|Lm?8{w%*I#pT^&*<NN
zyamkgK{bx$CDcE?X8_<zv!hs{tO|O$Vu*(jLpEpZA$F1|7u3KXaQ{P{zV!-l@#QQ-
zg^d7?J}%ga-2wQPPp@4UIE8xICNxug<~Pq|-ETbUDj}G|Vfha7o|@oiTI=LmWXt&3
zP)6)ywwtGWBw}0<dL7kz21@1ft&~Wr-xZOcAtQMlT%6BMsz%@4KWwJ(C0>3#nK-+1
zMK>Gf&U#;@1GGAW;|W_bp_8B3sk00te6Jq4^(v!3P@}slY<*Uo!VHf2s6F)KE;teU
zs>G~G`kJ0I&J)WD-+u@LAQw_NdHBr8D>B}K;&PXSCh=G^__>Fstd>bkrM*Z$q_ZJ6
zdo6l!Y|<us@AsiQa^AY%wpo>ETZ7>6LhV6-t&EHP-BsdLO3%Yx53Ey+Hugs-<QTIO
z_@rJS)AXxbCgnXiVCmB_%M-u}Qp+FWkAJx(paD4+V!N;4-lZxARH((mVFWFf!w&T*
z__RAd@q@X-nQCzpDN%Ph8^X}fhV$z5p<C%|R)U%f^s_v}hlt%@<wdi_<Mh(|epK~P
z$nH$ACuOP!kcvO@Ybl`#aitqjUg7M4lPU}C7KvU8_g~kxrKr!iMzr@)k#~oKUM$zO
z{f_1yk|`>FpKz9%pWyOU;A4-^zZ@+|do&0A5s+&)mk<4vtgSh6s4(R`{q8=`dqX&f
zwK`hhRzpX`b|xSAG`KtBrd4<}%rH<moa%z5o6l?Lu13CysCt;T#^Vf$*AbE2!BoLp
zJy)`)XSvsBW+L%iC%?TI<cL@E3l{-@_f1-ESe@pxGLxwdf4hzqs6H~HjcQYn+gCeF
z5nkfKhu(vCMc|V>%>M`k;A}5|Yf^tt&j{VwpgwBjo6GF*&qQa1xB@S+%%3u6qG0$!
zyu}kJG^`lq&#rj>_s5(6PCp5HY`WaJ$x8CKeX}mOIh{-&S3df~C+-#l7ss(!pFgK4
z_=B<4-U8p}emA}ZlCE{L<;h;Ydztt6<zE2xiQhYy<vZ8*J3<<MZ-BkqP9X%CK_$j;
zQXp^B8B1zcgOhfQ`)3EARnI8=8C$fe7Q<IZ7V0^4&<1+K466ppc(_kwMh`zEL5GV5
zT(s%xOtiw3qINO*T96(kOIdKq$Ru%W2A@}6%L=&OnqE^na$t*%Gb-ZbQ)Wg-@WSGD
z(#4|vi!(kn!-`(y=p3s^4Xz9R-~Rp2&N~#|l9DhCdtF+ON9tghq1=Z*#&wt`g6Yfg
zX&Q6Id3fPJNb&lhCHMp$tM4z77WfM?BZ2SX7pT9nnauY2LA~?J<N@cv4Q23xK%Uk^
z+)Wj!2Qfl3MzQ5N{}y5?$8RYAYrDHbZP3HKX<-LjmC-h+N^nXMe*=a8V?lWoAJ{ze
zMm;v9mSQNSI7bA7#Zv7+&J}yHG2a{Cpwvq_;<v|DSo>(F64i$Xg}t+yy5-uBq|hP3
z57(x@c`eUSPdcrIOa7y`xpW&)X=<BE<l<(7n;ry1=Mvbgia)t8dc~w|MC+b-P;atR
z1ZJ$yd~OQGzqL6>$ZNnYPlBKAM)>4g&%vKZ>{(*(>#qmmb`drIz4I|r;2Iuwe(YMu
zg7aXzz;=Ois-`tQ28dozR{Vv1bIOh5cyb4>snH3Bshaix@I1?*By<SoD|+#W=%SEB
z*gN$&g_+4!_$hrGu*wboj2<|M1J)t)wh6p*Lh=UMhwC#O|D9<f6>q_c6?ICFA>(md
z_ia0NzfZVnJoFO=QO_bk$KmqtFSk-LpcmR#HFUe)df0u`U5#+G#d$Cv%WBiamWDi^
zZt;Pg>U8CZK9*-VYG_=_O!2J}smFKm{V2Sojlz=u7NeM6Zeo0xbtxiN>TFs5gb!Z4
zxz~D|WApB`ng)*7nA0oCBMR;Q!gs3HS`)&WsXTAHKy~AS{Uc!OGeuAjr>z-ViGf}<
z-0qnXJ|f(?KvZtry}E6j;4Zo^-^%T1Z!_neX0m+W*6{3So4&YiY~WoO$ao?k^}uj4
z;Ag16QVwH%)Q(?p1laZb^7-KxqOi}0bsV$8qnVN#x?h{rd!Mlh7BewnL}A1;<f}RA
zPie!W>iX2GVa&VDBYAwYCGK5lT;cw6Ty0*^U1QOrrFwjYl$)*-SR@fL+W4zi=+ouE
zyLi)S;|6w)E-=-_x62SPeDg&H*tQ@s-cZ3N?NY*cVh91vW50w`*26gJz7;9?v)UD;
z#*4ab>RS~f$>*K6Nyd_nML(mVa>?*Jzg0>2$IEW2I1j#`;d5wBUX0-16RzgIlcv`D
zTgQ%Z`QfhENIbL0PKYWM&aZPxL0&RJF4E{kZ>0Thi_N1UF0t0qJJVS~?oy}TSH*Tj
zvjDWf5j=pgP~fE-!J(yU`@H2Y6QgV0jRd-cG&bL{02ew$g4m?8(4Yv~tfy(HG6O@C
zR~Pt(L4kbmQ?3wD&C8aMGQx1-=7P16KxQoM`SJS6)79mIAyTn9G70>E<Z0SY2&+_f
z86C^)-MQmEOL}*1=o~GqhaBKMbHMG_{rUDyiS?8LNUJ|ze{j_UmFm{{R^E;$DHLh{
z3i=(g0qNgNUTNx8`<0yFt#l)Cfv^1wT9zjPe7X(su{IX_L2Me@BQ0adOX^9@dU+5!
zckDjvh3bz*HWW(Q%m;0)H;oERZc;QKKCU4{q1Q0LdS*rxO8mv^COgUsab|@?H@$j)
zVMjy_f--ZOOxlNMYqaPYhr`O-NYInh=H)VmiP4aBFzusMCC8FNg+R{HK>%^g&A}?e
z(;aeeQ}Z!fe935j9{Ras3KzA^tH!hEOEvtR$s36jrD77pg0`7HEqf*7I;8=>f!0&D
z4-Cov^^zwwO|*+eCC<`2C}nB#L~NK4uHCdB@7tE*`tQ19_geAU_4n(`-L)tV9pRsk
zZJsET{c*|-V!1l{el`8(V!Ppo@B0(qA6}>nOTWbs%0>Hkp&E~4aq_kMz{K^h!IyR(
z(Ex;yQ*n_+>|GcG{HyBc?-uI{M&z0X0phiyCPk3QAL%VGi8aN!LMXo*!E3(3lw5(=
zVShJ0gE%Z3-vG+8y(j;+zh5@|*9GW^9@<6487HjqNZy&GqH*uraPa^YLvh{!NR@@f
zkE@(_yWLnyq`fs@l$pXv>5uB9Sc`QAMC7;)EoNs?q0Ma<_i-?9Bu&lUk@9ytZF39@
zpyyzyo3o)5t%4$D_n+_6HziH;K!$m9&FnjEXS)tsREL2=CRw9vDv26GabQ!4->+`L
zwV8lmz+sX5;r%fnn`jKalyBM9y=K~J-nD9Usup;Cd_MhSI%s=(%<JzJTAUj8O3*ge
z0UK$r@>b>Z?65Nn`m5801&7R!HZ_yWM0KuO&97f;Bb(y-ChJ9yv-I^ZC`_-!9~{e*
z<fD~yt|C*-ahde6n~6!nZ<@%LwTisN#g1Ck!bG^2TkLa{SMnsEy5IirtspvwM0kxq
z@2<!oP3b!>#3DJf#h<9Cu6(?-d8sX(w-=G#SQt<16CiFn;bJ}ff+6jzy5g&aTcBmj
zSwq#HXu2xyG@a0#{Bmc^F0mwV-8wFB>e60N6jT#YeGh7)_-c!tH;F?&D~hW3LMU#d
z9^p`tr(ts7s7NTuE4MXdGYH5s5Pjct3}vrCMdlrd*XIal)w(Jv=-wJ8_cK#YJuX~Q
z2utgeCQYSUh2hN~8ngb@FD-WqA5uRl$=6JkUbY@DC97=PsI&I|wRfM|M=PW60KOb^
z6Malqi5^_Ob2w|8-+OmlpvU?UA|20ySz_;C`FvZFv;vphMKAoiui0U$624rwqx&_m
z_nDQ}Yt6O%9-ak(v}X@|oq>o)+O4V4SxzS<ugLhPvj>*J<tZ^$CW=J+YQnspb8(1n
z_}XVP)-r8_fU>o&;MJ+NblUqt^&J#e6gL&78`1vdrlmQ|+!auPxyJ}{x#3bm$U`5V
z{u)I5)8X_z`|V<ajPWG<GTAeB@0TCwL+uH#)|)EQ$DRZ_Qt8JF?mw<ukvjAImD;=<
zhov-AGt3m`NczK@{lp;DGGT3bB<l*~u&0sZ>!a$V_BGpQ^Ix%=6(xObK^Nk({&_RS
zszYf&0!>Dsf<o;r@Qg4AQ-EalGhL-mIp>pC$-nZuE{2Dm;GchI9{TkHZ#+3D#V(&r
zriG@ITI0d#C^=DN7jp>1NPWh|rbNgEM4w_t4+a9w`k&Y-Tv_qfFk6&m4?C8swpBw+
zwn};;)({?;rOU<-pUFA)o`$Z}+EY!k$>JXl*8qC(?DXf)P$^4qTG8O=4!j=?6xw?2
z%3_p1y4O62S1NMjtGa7#6GX{1+n4%95T{Y|LIhQ140K*j)-92W_mB_qu`jKg`wHqA
z8N}*un<Ec#{I$XyG73l|7%%S6B`@Q~?aAHN{lMCNDo#JAZ6G|$S2cFRQ|*bB@dsXN
zKFWTI(TofIZert*{nN3&kG-O80Isa$m2o~+KP;A74E7@wW!U_~(S5?1sB%Hh1O5+b
zM+r~>6VqKO?StJ{WX!kBT#rxucD9twM+DMz392f~(;L8Ik`N#wT)kSI#V{jlafLyQ
zum8@)w#2hb$AF)^r;Zod7H|S1*ypYn8EsmCsb&Ltd&|FMI5hN*DQ(Q|e~|d={gyK>
zlACFi2E5Ds{}}OFtnvS)$FQC{j1?Qx{LZj!r{YTY^jKgoSeZ>ZqdIV{Rimc$PX3Zy
zMH6=nd1!lrm;BOz4!#NEi>FuM@<jGqEM^3+XDph$KQj3bw(HOO<>WMk`;@ft`s(7p
z@BcQcB4Sv@Q@`)dRw@5GTM>>Z8WD@peoS^jPOI5a&(c^>o;TZ8(C?ME*}QP+aT>*a
z{r0rgrDNG7c*Ud-`u=413U;b-P2`S(4*_~Cxa4!ou5jP~qI%F!Qg&Q?8;hU21f-bm
z)rF?>I?#Q)uT0rj;BwM4PdF-tH7-F#@&josFHb7ei)LTtT@1A{RlNL^;{1Yl^}=nd
zp3Dm6YqLoZF1diDMiD#7)^N2y=x>7@n4!n(Sru^xa2l{{?&V>RIJ}W~I^DKC>rA?6
z$9-|{%a<?hG_OxpPSLyP;-~YwmsTCd+sdOwB}pt7+r{n+7ADuXQ5hj-G449kUOOk%
z8pCS=Vzu~@UtX7R^DnLbIR!Q=dTh9)gul5Bs>n{6)-#J1E=fzMLP$f~g^0CwBt%o}
zuNBli_A6(DG*yLnu9O_78`M2DD$j)>3E5UeILzd2B7OM+BRMj5EF(exIcw4{-t3m?
z&d4-i<@<I~x@*upZ(Tq*a=F7X`M4)*I;<tTgN0*jbHn)<PgJNiYHpkQRxF&ve{tt2
zWpjb(Q5+rwt_=Dv7Vw}VdOUl$;7}%dr$XeI>fb}+<gMvveU|{x3=<rHL9DENfCW6b
zJy*i=gb?Mu)NZmBa3ZRV<UGeeDI1!2d?FblGck%(FhxeFaC}oBjI&r|7V>|=N6c8!
zq<Iu1QLi`Wl?SUvA{A!(-B*yF66Dw;v-!HQ%C4zN0acT<9zDb}j7GDNGOGV4<{j?m
zJ}@D;r=W~)0gbfYmB-m{>;!D_R~7V7fD}gh?D(n@hujMg+@EGpBvKr8c}`+>H4rBl
zO}F~!M{X<vW1(=HcG!ZW3r_;X4UP%IrDq97R7I^$ls+Tgj!NaA5=ikKiDfhhv;X;i
zNnEGrtNH!>Ui%B(Z^(<TB`OKz&f~x#n)sNM=O@hl`>v9QJP*yfx%~KDrXPHgH%0}n
zip({$yVhF6ZZ;x&82;=^Kz_V`9I!fNq0`&6@_ngAxxU!guO!|bI)P@1Oy2(e<S!!7
zWj5?>ep;KtNk&`8!%s~Yzt&L(s$mAImlPP60O7-}1_|2)?_<rCx8!ymTroT~Ewced
zL7odVK;sjrDQRazw&{jX4xvjkdE5SR#hXZs8Lm%eX6#ZK#U0)H-wY`}EStl^tR8=B
zK_N)u*H5Iki@udFKICq#pAJ0WV!r19dNS<ikxQ4$rSL|0&hdl;iuzSxJNx4xY=!w;
zQl_9>(JlexjCpaLD-MJ{Hba2Lo&$OX%qKd(fw&9GoL^idNvkE3yKngHB6X;Fwo(S{
zk^fnf{7G7NkP*`$rOneG#jFc3Q8JQf25mVTJZzr`N<U6R)30n1GI>^l@6;Ncn7w|u
z@j-{6n!Qt4YOaY-jIELE7Q7UHuHPqEM?Qgdbq&!vA;kAE>Ox+4U%fv$31$f1V|{-I
z<-hUZ{36G9{@G>V_H>X~;Lcj$d~IVriqos-?|{_s$l~$qt7Y9zy9DU11f{E+McZv>
zgPsvIDNEOrRY77vK0jb_xs$p$kykglgXQJn-L@Y-?@VFeDH0(2ZyS%MEdB$oLf-<W
zBtHq@s0nV<XhU%43iS`EjNCl8MDBZ!1ADd`YEouK#Gc@iUn;|7f;US04==`bm8jXh
zW6GT*{5xoF<+$9?cm2jNr~xb&#k^S`D;i_12j%{Cw4AXnw)i_Em%${fxt60oud5i8
zS^WSFYt<~e3AUIoy{J*ztXVwugRML;TH~b}Ci@J1P&ni#;qYmh&TtgV-@eS*@@_>E
za<ptH-QE-6(S+DM6lYyrKDGZd`#4VJlLr&IJ@K<EY%FoM;$~o#ZuCP~(?99Dxs#R)
z!K})~Km4+6)+m&dcb9b)BBj^e>oPsxWuLzxA?4w_x$~C+5}e%JhS5i^bt1#xsA=)i
zlBG@J+o?F{uL)HKrA`2GZS$z|lj0gGz*)tA@ANZz7Fbh|VG)97<OWAes>PSU$@C&<
z`!vG_d+k#GI1>GR{57wG?cYTw%qD$F5|;Wzm+RGGW7ne`B-`nTE$4gK04{MWP|E;F
zri%AaG23;JuJG)Hz^(h~sxRkWb9d0Z{u@~DVnCAZ7SN-fp|_i;u2FqAs0ZZR4)dLp
z`Nb>2Kc@0IEy~(}QYvG7e;wKH^Hn>ga-T|J<#E_j)0oVF`}+)ZzLquO#Swn?iU?P7
z_lIveZTu>DYfy3Hd&1bQMX3~DsOI6L;Phm+f4$D>UzUih;yQO%R3G^>EdT2X0F0XQ
z&AktV^f8CwX+HBQETB|N*XJt<emBjtA18fTBXQ_JPjm>KX&tp#bIh<Y$-H}o(f`Ku
z`Qot!KXZlZi1Zx4|3JJjE}PTr3#^A;<-YD1ZaF&cBHlpR;zH!YEwyd4GxZoYw0<5P
zhpp;sX2q@GMg<?gz;g7YdC+QwS;PgdK0-$e+=EW}V)3fNcrv_a$ylqcAyDuYS*ZHH
zb#`J)Fn}6x(vTx%ON#g@lB=TAa(ZV*A0Mtf25v3euejFdzP5?h1eQpKFZB=1XucBs
zz&E72(Z`2(ay#4)g`|_aiY7#ppBYyx(bZSr|6Z4iBtRBdcJCJAOzvj-h%%1(eoD5v
zA8_MYoNyJS0l&Kc1mJ~*b~vsu*S2n?+tS2|N4*pVS2OklgH-`h#;~FS9dX07*N8-m
zHgZ13CvyE$^hO+M&0tN$3s!)Xl!=d1Z=jG!z*;-Ou|!QkJI=H4duv_Xhh#;DCf9dH
zn5(D3$2ud<Ad^~azp+RCF)UKkq~D9Je1w&9nl2x*U`vzr))+e__dLzX()mLvcPH0I
z%ezD*3Ab%-RAkf3&TMSt&2aLPl&f~ZoHLT{C>DB}FXspTrb-M6tdnv^RZsf}gkS7b
zC3Y*c2lA_Ztf29AVX+zOC+@>y+}X!(b+`RLcmM|~k05+M`C$RtLwX`>a;+m>wQ}e-
zXFZQ}!Pk2W;={n#=VcGQV9K^_K#)6QLfn15K5x^**<63V$w0sJaGRbz<^pT^c1G+P
zx2bM%ZjCZ?!dxW6x9iih>L4-@ATwDTBm~x#RrSqU;N(f5tJjm7*W|DNVfB5N1~*aQ
zmcFIklpAO#dA$L&ie>g$Qqf~vbaVZ?eO`Qgkz;kD3H!S`@QpxNVpOsKqslKPeE8th
z+=7Nlf;KjHnx0>44ThKBX9qe2%UEkhwygDJNPr-t$S?`)qS3kF;qe!SWRpu&Xp)3z
z6($lrMQ;j^0gE&gC7<kBy10GU>VR5^rkQ58?~*&@lnt~O2Un!CC(^Ue-1l-{3^B+~
z57U=4>M`1IU$Y<6P&50BN=XYQp31q>PJD71bdCQ;NnK7Q6Zdj<k|)yqN4%!e$d2~v
z4+lbmjErF21#@gv!L!n<065n0d@jA<MG2R0d+&s$5Srv0I{5aMyE%Q^Mq2rB=cH4W
zp4vsg!o_?<n@N>bNYyp&`^|-Yu?0)YUr{;M-><lX<Bo4F{`$=ld?5Qig-~VLbmK(v
z#OmG6o~Ts~UO8}gmZ{*Azmt1MsNi##=zm?@%dAr^t6A41xSfv<K05IU&MAL-1f33w
ze!1ivu<R%ysq4!37n@NpwnsV-jK*^idBplzkD~Ju?(0+4WoxK>6N$zjqHJ=v%+!NF
z!l_UHdZ7+D8#jj(Tt>srZ;J+BxHrg}-d6Bn3PilKbg=brV2m1See>U+iLMBuk3abG
zV(XPT(Qi_8deG~zHF51Jl0NS(7vBPwe*GSTfksEvu*bF3EC7Jlpk9A_2C5(pxY+i6
z+2~nb3dw70{szQF9v!l0Yb$%dmaxkAZS_A|lD^;Bl|-T!3<r6oX~?|GYU`<6N9w3%
zk|YCMAyu&&mGZc8Tjt{s$HnxRhLO-H-e_JjTy6w??Prh45nDQAgpm@o($W?&^-KSw
zMQ0_y#W6msmFc;!M&`dR_RFe6g&h0O7;WiiO-h-l@XQxn*?mIq5?z6F^(EEblccUf
zCsfm|;%vjRljs=E)1j%x{FjN0fnBE<@x!EElbb@S<JUUH;o${#^O>Y8cd(XBY?%(9
zKGA}z<k)8vW9DbR6iBgqldn9{R%$$5a-d-S7jgds>`pg1U7$prQ)7u2jW~sl{I?ck
zI6ogRqa8Rv?C&R5__9(E-oSNRS)CGkGS|n~&v8{Px!=3)^Ri*|Z%Y#O{ikf7)^7mv
z<R>;0hmaCBCbv1Qj^K=&3PBmYQ<P<cm9;!v7rV)Uh3n5I?%&<`c_kIe1zE8Vs3bG=
zu}UIy`8~#U$FwK#;ZYqnLVmioTYlUxxJ5ocYox5Fx2Fc^NPnGP=Fj&hq!dtW$`^Qi
z(TS<j-ae<>C2c>J6W<|yQ@cuB9j~TrPnsBY3ix%w$d4}N5}Oj6tWY#Bcqmj_)hc-T
zReqJv4rHv_72!Ql?1t6~at~yQ=AT;RF7lA;!)H!}^_VX{|6XZZ^lVtVZW?!f`bDaY
zTyaEJ$em4Ly6iPI7|oDysSmpxRNvUpFy~odfm>c!tVag{0ZxuGb^`a9*bB1n@ie9P
zQ)BPVk$oU$eIVYAiWg-!oWiYq^SNyIJ{d-Q4-LWQ@cNX&-mBGhXl;9TvUA`J=Jx5P
zZVad1jji^D9g`?;l~kE~+*!|}g8__s?+2wHy!-ZYfR9lV|CA=>FE*LU8F{Aaw)CF{
zki@<;`A3h^*^ibCei&f%CTIV}x5AH0Gk)C=4S8M3cQBShtX05mqywtzMQ&rad_Ny9
zCXwM&oGUsTN|LzN>zS%lS*jBt$|TP_tU>U4*7NX_yVTx4`#Qn3$D79aZIAm}fS*?F
z*!aX)8E0SOedNvkY0wOy_w1J*EmB*E*xmVAGnaL~t6^%Qq(68as(noI<UY!))fcq%
ztP-Y+`{}btU@NXIZ?W?9i+A}iJCqrT4tQS?J%6Cc;Pzk?X?{FxjWXOmUpEtSe1D_6
z4^j*znc6fk$?b-YACava)agHk8;OH&m3ZFtezy$dOnFhcW*h<#A!H6FNt?ZkzQUV<
z<O;=IF5Z-NU8@^4Lf0c>FEI@-!0cMWnfl!fILNoHZpC^Vo{(U`8_zekSaJJSw=AkJ
z%WaipT`5Nt%i=nrq7m(qkAJN_9({#);r{+7RHS}Vois!2`7E5+3sHI-KvEHJ^3!XJ
zgOxg|$}gDigv9i%W6Zz+e{aH?kFyl=3qOsNq)<0m4TVcp_EDex%o|5#@4nUQN6K!B
zvPkL<%P;@fs{QqEObCw+=-lCSG3c(zbE*yz{05Vffh+X>OYF{j7eu|E{8pgvhT=5v
zpT8@=;W1M#k|n<y8W(s=lC>T$d`jnP&1FO5jTO#%TxE;J2jEFu)vq<rMcBqEI2w;b
z<BZMxLb8Zi!pVu<B%=VD<d(JMdr`2M>X@5EN7j=DAdyEutG?Pv2MgaJw}@O@^z&f-
z&lt1?MOnZfOmF>6vqvG2JJ_BlOJ}Z>;2bw;gcqKfW3PlSfzXg)Qr)~?5x3GL&sdbR
zTsMy1|33gJLDs%%v4sw{jnK`P&F#@OTe>RUv;>fsN71#^;rTwgt`4;W78^i|&FNaf
zX6!%@8yGu~7qAceumQ9@Kc|gavI9yt4P;&9x#-#=T@ALGjS_haMqa&*>gkHNQC+&C
z9k@Z;U*vIgdjj<2(a>!suN`bbv7N(4b$PzSM$thF80brp&AlP0dB5RfwgAA<|2){?
zMB6N}I=QYck;78z5Cw@ArSlB7wlY4U)U382x-4m<uv9O*=-RBEB9e2K_I}OkAnjVy
zT5F<$I72<QQnS}%*GQ@kHuRt_)%xak_7i>R10R5&{^_5l(i?c_MDcI@jlTh3^VMGs
zFMi2OXfV58@n&s0XvWQd(P{m6{?7NngAcx+g?1V&|H?1_GQ9T%?}cypOJ6@RZ-762
z-}~U1>ALU#{{KG>tTC$j1uuLd{D1z=-+>Q4_#pg~fAUZ0xgY)L$KZhnUIlObs;{E*
zAFuziFXPGZg!%V=@Au%>e(l!?;|D(QL7Mbn)<6_v^1>IqfE<Y5@R$EGy!8J2;r^Gt
z6z;s^4j$Ml-KO_`_~D1?nLqP0KLd|G`slRi@g90tEIq=JMC_QpG&vtJqu^`5_G>9J
z`K$i(|GW&I-~avx;h+A~e?nOZzcnp-;3mMrI+DpB`H>%mxBt=G$;tZElTX6;e9!m5
zS5I_Il5&re2E_W4KlzhXYU#lbe25l5#w|}0abS*$_IaQCx#Z~m#&7y2!t$zDJwTJ)
zwKHnblsQ4{wp|@EANb%0;n#lkSK*<D9)jQgo!=p#SFc``$pR1_9N@oXqTMYQFT%Hd
z+qc1MU;A2)Sds{Py!M~}^M6h?+8>(ufcJm)=X?%r1pT6kU&zCs`PqL<GJy^eeC{n1
z{@W&6{#XCi|C8S3b+3C}8L+hSINz@zh%Qkb$LTs;VEThU{6qNAhdwmPzz1joe|mbo
zOn5Hdatq1+mwd^WO!D&r;@xwf`&`g^WNXnS9bo^<fAz1Xg_djZAOGWjgl8wrpP1x9
z7depE7p4UTT+I2xFa82}{_~y>-}H^&2%Cwg!{n5w=so<%N{zI4O^at(3hGZM+TcPO
z4p?x143!zp3i;9r8)EvJulX8y@rz$v^q6eabS=^pkDvdAUw|hbe;oe9fA|m6g3z;Y
z`RU6tXkz<;*ia_k_?2&f+opfNX_Ap*(8Y0pJpZ5nr~iqb_uxb?>=$(c>4VqvsxaFi
zbpGRp-&p?Z$tRy8-FW?%zn*mI%O*X%_uhNUB=LK{_y0=^g%_s<4gAoeY@^M<{X-D{
zd;a84X!41)#0e%k@o};2yZ+|iqz!#hH!<4<brEUxzx~*ck<7g3J?|+pjqm=BKl&s1
z@Bh314u1MgZ-Q66;uY|k*SrQ^{pwf4=T3UT5kOqK_(<(F&weGtN9-f$!fDTb!fb%h
z>Jsd+pP4uG&BpdiRs-Ai$$7*pSKN*tZPBG{Y&%#Rwd=d2(Vo)Y#U_W^cZxC$^#fcp
z0&dPjg9Pe1%QTZ(vf|2sHq%&x7Rv(<m??9M+IgXi_Y{)4rbfnCJb2_2Bx{E2LPM$5
zTr!km<bj!4Sjx&bl?lNKMMjcDVlgk#`JZL*m7tC%qF~vmjG3C(De$||kj@MgGlXW~
z$R#g0DvD%BgDwIu>*~g2E#2z7sNJYF)+H)U=(;WAF6<+A%FB#`HI(N=sP#D!J1=}i
zUH}xF8g;1H3jYOLi71i?cwP*JHnNb)q|`B?&Av;a4v0CLUf$KvwbTL^K7i;h$%M2)
z8RLP_RTltLp`)yAvb|QGi-RIW4Ft&YYN0GBSGy9*-U-E#<K@-R%3|Y`W2L+DFj0^}
z;W52@eb%;=ld0Exd8EG0_%;X~E%wTXT<WAJu=YGqze)B0!1}o(W$;wGCd2b0k6?96
z96g3E36##QJhDuUl5G+yHl@3ngcqLYT<l6CujRWH3SF6Q7Ar_rPOS~D5pU`c&{TGm
zyKSoSSg~mdz?SC>Ez6ukC*kH@Gh<h*8Ub8w5X-B+Cs8G3W5YZTmFFz4+0D1M`Ysx=
zE**qoSNPo^*0Ot{&=vb;8jw7Ri7z#N9Z#4KRepIfK9y)?uDcJCF$66(6Lb@-%m^LJ
zc);*H8@j5EQvI^n<de;8h}E%@jGk+hB$aB4A|os$ayRuv3nuncA3~js<BygcwC#HM
z@1!=}#6t%;#D25$0b*wR!kH>i0zq^<${d3lkuK-OPROCzpXBTaHM+CtJ>F|PDaqK7
zEceHTe>L)3pRduQ>g3E?4_<!M(L%Q0VC%Jm{iYh~=(~lK%s00kbB>~%4K``V7TvV6
zL_cQ}RjYbv>1xhxg$0i-Te`Zw^;winEYHXtY$a;eU@H;sJ)Y-W-qV-U=+e!cYjnJR
zgNZIgxav>RcCgswZ{+;dHldyJWJXt&34p##IJ)Xkh2TtmYz#KV+F-+Xv+tg3CU+9-
z+3|ev*p}qA!*kU&#I{vkD`S;B!xk5Kj)%%4?7#+g?&awUFr({|ye6RuS@OWPJ}UN{
zTWp#Ae!=myu>*RqnM)4lT3rBuCAxZ^sg2UU<oR72WqBS<mV%{oeRxAxm5GL~2AkS}
zay!iJfVDx^7J}G7Z4WyB^m^X06Be77iIu#&%JyKf!4957)umwR)YEgdVKFY+&mOix
z`QmJpr;WE!`W5KunzvD4{{?5?s>q&u4ACqA_<>2*hsvZXmURccs!rx~;9p)w9vFu@
zh$|h2w!8_o<BAnPNss1;%TOjY#Hd_LE>QX>)QPGxDuNN%P$z@<3{A^P4!chstnGCY
zUelF$;2##Thvs90k;;GY2Y&#MfAVp#$6x%5e~}#DDsXx|mI1=!%fI}~sqOo|@B4%|
znWA;x_0D&a<NNEsjyLZ_XX2xeeG-1|=l*RO7^6e+zxl8K>&fZ=QTW-P{n;`wdE}8t
z$XQ5^)yeUQ#tDBu{_&4foqcq$;ywQ02*{C~gXkE2$>dxG<)cLD5*;=ha?HQ=t#2hK
z@;l%84siNd4s>kafB*e(--Ol5>?c0)3HXVh_z7~F>!JxRe5ix={qKJt{pj(=H@=aa
zq&#WLWrHK!X!+-U?&k={e3NB>Kb&}iC6T`H3%`&jQ+C1xFiRsFMK>(Zb>;5Lv{>=G
zzx%u7xP9B(-Uds@J@?#0j`}ye;SKEI9!H}~K+f{t_>H&GA_%s9-sgQDm1;p*!G(r@
z_m-cd1r>W>hQk+s@fX8gcisW<^{=PD(RPCwnjPn90Bz+}bVV~8aPi_df8#euR&fzv
z>A>hW#PwCvLK4#}w1Xr5BfR4s@1TX3|Kq2AiX7LuBM2ua7pBFp>+tfIzZ|~ho4=W9
zq6SoO;lH1p9M*4t``h7dlU(6*mkwO~LdQSSSFzCmLmU7rSv-8-v}lI!_@>GE?de&u
zoxrWP-8wB!JP*F*TfRl;S{;v%fAW*GK{sMXoxw~M)GhoM7XX4phUv!x9q@SlC#U;x
zK@9ce^FRN!#9P!?dj9lml-WQ1(<<LsvJ0Pyiw9^+kWcnN`rLQleehQ%j3t$C(r>g2
ze>6Gyf9Bu(o924dC0v-npT}__V4^3=EiN|TA_nR>9`unN#MY|)1Z(?i$&kMNT-GHT
zFgtm~=c>H6_EoYF#CB`S9A}tS+dr5AZ}VNsZR((JFZ&TNHKlk&?qdUS9*6@2uU&=y
zMC|4~S{)Diy_Nj{C@KjfDr2HZS|rz6B81VdV7438LC>5u!%<9Ya!z67H%9%_^&^&X
z<C@lZJw>Eo<OW5oh{K=uh2V^z?bz1UuX|K*9cYYvrDsX)dc}s%M&}nrIR%b%Md#I7
zY3CAojBS`<qx0=JU4KT4Q!CMxt-*#7;Uq_qlYZHWm`i<abUNbLL+it1P2^y)3pS?X
z92-Tt4op|1Gqp#dJ4M%T7~4b}!iJfJ$cMmtC6KPIIFgmKWHQz6=7_<zc72PD%fFH1
z1tVTkHgx6hIR-o6#`Y_zT|Wvo$__!97&lZ_<w!Cx&Xng^Y6WFN=t}!Yj8fiYde)#k
zCv26jV6kllo6vDHR-SW&FGmbFbS4>D7rM@QE;2KnV`c%-Rcf?jJ7qzvhJp=k@k)7~
zl;=PZ<><FA=Snxh!txyW-Lm1i(2?aaw%DfjLPyc1Ra9(a!A2XG$({ftuju^U=2Ax=
zc^*h6)=byY=~AlLh>i|>kw?t17%O(f3Zq1gtGv>fm&aM_Fwo)vZF)IyMn$E2q!LUd
zj}-CFQQs=BO2@78T(PAV8}U3=c`S5Yi5;Mg_@dFZvC=&W&(TIn_DHc&NOz2A9}Qit
zjY1wbdnrI!w5-^+MjpZOT;(<P?ZEUb3^E#w9T*!sz<SQ|8jBsUJXiZ!=o)GreOef?
zcA$$bNVbx}COoY2xGuV4?I-OCuwuG0Hq<3!gSOm07#r2tevhrO{bw|e;J_Ipud6jJ
z?p!@f&3I;NrVK~ypQ0Pb8aR?<jfb88HR{>!8NeG9<4K%<J*z+GraSnZ1K9e=G;fK#
z@S}l98n_h2p3~URIm2mesHK_$2aW{egj{JkH*GibZ~T{RQEsC{^(fBs%;hmzmTJjg
znomhaj4mt<2Agg&n#{t~VCF_1TQu14eC^sTwqV=knHC!btZC+fwo6b=!A8I*nUAqx
z)An@<z^QaAedpXp{)bSWUFd4Dx%Mby82@gHT{ns?JP)$SXZTY3h8pFqa^WM?2MIRP
zW7fB6r;^FqE<CsIZh1b6pJ-*}Rpe0})*7S=h7L>eNST&BY)W_fHtvu|{4w$f2Aj%P
z3Cfk{aVQk?tidMNTJz-PwZUfF&nb^HY~r+C8F|!eH4wz|1Ufu#c$#yI&CBb8JX(1R
zR?or6T;QNXkZj1jWTOnWXlzuEu7k=9I9(Fwx|hcw-<%?kVpBo=J_Z}nRh<6zSw5(G
zk>}0^^<<)}=Suew=JvDGZuL$VOlI=vbZO;f!r3Ul!ES@i%Hsjpy^RXeZe>On89YzB
z*iGN%739D8XTKnIBS*6Uz;+}z-LX4_BWE;9Y!rt~sS9m{UME_-qk33&tj0D4L!&#3
zL&nu!E@@=qy!5GBT1KVRg&s6AP=r3z8ta5Dw2^oL+y;>DBMiH+DfVXbN~R+^w15Bi
z|6p=x^Q7b@FL?<$b+!D4I;XT`1sT1-H3RY4m<jNa4}TP{on9wL#20<R|AQRY8tFYu
z0*U2D6a)UCa}O5|(AkJ$O)2FQFYdYbxo|Q$)-`4K_kaKQX@LNvi{CjdEa0FYk5|6(
zmE`38*yL=)NNaR<KK9sS@KZnae@qU_x4?h%-~PAog<teV@chZ~c<ItDJfWC=e&~Pv
zAK{}P`3N~{(fNDlop;jY{DD`0KGE-kAACPWmVf-?57WT-U;fK~1)ud<p9Np?rC$b@
zCTHu*?tclD4MK-DI!GzneY>T9nO}Kwh(2d>R6d8^6CK0P$NdCIz}T?;)K9&cod388
z@$kbRFN+*s@C9E0_fB{}I4uaAP7c^dKJh5M+YkNF55X<B+yX!NgFi@)Sarr)o|C)|
z^Hi&kJ^V2IpTGDk@SbU*;}?G67eKQF&<Tx>R4fC8srDb4XoCAWT)lb?E?>S(8$zSg
z_$wwy_5a1*zXx5GT=jwI%G~Fiud2HGA*t1Rqi(5NZwY}k0tpBk`AWvZ%r#Hr@eDRL
z8pA~R`rgZ(u;bn#um{KWM40(wCT0i^0d@d3cz}@yV;Bix7)CE7BmsKA)vaeYQn$LR
ztE;~6oU=1$uV=2zo%?)Wbu)jM(w3^L&dIZP{&KCAYiF)pkLORuZ`ELE=)K{Fi}W{+
z8GnnLBgBbDnP)xg*|dqh_ul(BY<_z}5e+}{Gd}~*c*Zl}6|a0Hd4WG!#;_Fbq;m!T
z{r(SpfDSF*{`R-S@BQBI0T<C-!Ly!y=R~ik!pYUkB=2azMm*?M{;5xWdK%;HlPup3
zuX)X@iO(d<(=&hjw||GQzwtN!H#nYT7IC8d-FDj(iKggLj|T$C2W)%SJKqIgocQ!p
z6K|d}8QZ^mGM=jjx@V%%|Ngtb3-5jJd*Rpr?Y|{D;Pv>&KY{8};2{YrWTYj^8yd1d
z^5KubQ=aw=c+PX52Y>0cf1xt2|NPJYJQ>FESt!r?!h6=Uo<;L%CDA#b`1r>O+i$=5
zx5+4e`*cu+&w1@@UrRL0qAYRTI411>=38!oCr$@E=P^=3bf(|5V2y&?o^%`W6Au7x
zyzwF(g6VFLbkIaU`i>sY`VtR?5F5@1JQPy{J<eHC5j5YiNcf$1-bn?r@r90ZfRR2Z
zi!@iJ14uNQ;d5|vi*!Q__%|Lxp!{HD4r2$?pJJ)E+8(-?2_eq(XVLBD;GjE~Vjb4F
zr2EywxYe&zTf@J1obDfb@1+>)_fj~FjkvdjjTWUr=4>d7gX=tmpD#~?Tzym0IE_~K
zf#|FT#9?JRDg>XKnIi}+2fG+*Bky@QRhVq5`B0|htk&X~D{V8LYx_vKu2G(N6QYJK
zKITf5?&q{*ECZon1;!Qx8{O})LF7onr2WZzN+TAyV6Q};gj{0>o=em>ZNRv1%Jq##
zw<z)nV06Txn1>IPLr=php43Xm)oPGKGME1yN}h7kcQln8U9s4&F0SR?kj1G+`;NSz
zB`oC0A7<E$ZkDH<4^1`QmdeCvJQuoy<nLTbL}rDJ^OP5CtOw?Fjh2g+>00h5!z=0-
z@G{}+lsLMMg|6AjfQ=1QCiEaayY*$3_e3yk!RVe{-*fCL6Dp5hCTMLaGGRQ2EGgKa
zs%PNabJ9)AKu&$5)=~&OuWVB-Yca$ajOSx5>#32)%rd~(vXj?P(Xo=(!17PnMGshw
zpV47MTe{RzP=^HkK6K<!<(H$2q+RpBuU6tcH_CgXq<8W1XgbK%iNLUI#$IG-Xmk|S
z9|H9zZR9NsGL{B=ZsoCH122zioNMW-SX3T6dVmZ7#8af>=yEZ8{h5u9bN#CIH43&$
z9-SUwr!J`E(|DfSxg_$q;<1gn@SJ9r$RkG;s0=i8H9b&t5L7Zz<_h?^goTVTt<z8p
z3}OSbbr(R{GqZ6e0yOPassJt62ey2G;xrKKd0)NwB2vh_*Grv^LM*A3>gdcS_j1l9
z(%%_!@UuGZnP+tB=U4~VuKV-s`wGG4R^<?xIGs)xo2;c5v88#Qa>b^3$mvP0zp7nQ
zCC{+QJI^1SwAd88>Uzk<=o%b0qf72PL_%1|5AU&s+Ur*JqdEhH13V`UnCm>{YQxd~
z%lf>=rqOX-p3A-3u8wH5UT`)ZPj?*$?W-4fZceg}=h^W^osG=nctIvAc?>1zzhY6Z
zaczg7x_(@gM{}go$tIr_o29OD2H4ZEb?1`9rcQpTnLAx<$$4J8-)lsKI{X^8Mkaz{
zTariFL$vbh?VUY6;IY}kWoItM19|{*$yI+)N440T9*7-1VD`}t-Ml;w!k4!FtUBr-
z&t)#1rUz!&ygW8~z_1;V$5tl1yn)vPOZsy`_Y)5J+?B@|>ojlB(NVqklACKS-SmKq
z=|CD{!SJugBxk>7DS$MT5uiDFkcBOKuqDdX=m+QX6p<lD2QPoLBMr&azN~mna5Vv9
zSt#iV7AgC{g(TK)@EY2p-k)Qdhmk2Z^aIz)7&_Rtxfr}4l+-{gC(wFAO4zdt{R75^
zzl~5>@s$T3q*N;S2QM@lqQ^6)3n2#RrbNcNQN|4HZ~JZE_Ls<D`1vo~2PgY2JnqID
z$Y>XvlPl!~8j3GndYBCRdZBkE3L_Q6os5N}gw~@s@xPgVhbdanFsh3UEKvNS7ru~a
zhs9R!yO#^N{_!9G5w*YeFaAY%<{i(5C*Jx5<1y0xO>cTrm1+dj`=B@0?a#W47VKaA
z!sp1~LA0I>q3G$1M&-{;hV<LEx6%Os;zZ*m8i~;h`$Y2M%KRozcx(ruxu$<n8lXor
zdUm6c{L-a|OwKSZ64D)`C(w|5_dTB>y5J!Q8c}eZh_?#G3a$W0Bd^%@-~$g%#{4(J
zJ$HY?q80ErXvDqiuDd9*0#hmBArM}dFF$M;zcS%?{zPLw04Pd^X~#6e-{5uk-FMRn
zU-FU{PxQHg_=bjmqzTgTgCG3B)YrZ6CwSm9efJcMs+gX+b1(FEuBrC~;(qg+-%Oa$
zD6aDmY4ME7$bb3L1C%ouqeJk*)G~Pe!E~tg+0T7(I=p$M9RMIdFon^VCLAA~c&py^
znkor-iyrM77Keu!pZ)A-DBTkt*u40~FQx+k<s}v&#`IKpIE9BOdZB?B@u3`}jHp+<
zVtePi-VI;8?*aJcSAK&X0N{nZM#DKCQ2D43JOH8s$J4<J&NX`ZOfRQTe)1E<!*{&n
z?Grzr1AlRndzQs)C%j%Z>JwlwQi^P93a{!O2*o48zV&)Hz=uElVfqOk3gIE*?YG}v
z6{5p7oI{uz>`Qdu2W+s%T)Gp@l}?y?DA=Zy4KWyjfrkJ%{`1qn{YFY3UWHr&SW#fT
zXhAFg))yPZQhOnYe)bDoT?A@aqsrsnMHBhZLDki$UpI~J*LMRxi=sVr42s<?5c1M{
zDU@PiyrBxk7(u#Uj5ykN&;^Ha7ruHG<Av&KUf2NBFSFqdy?F5*pq|iF|AKO;OFnqa
zQ;vC|r}>E9nS05neMIT;wv^-gJm%AuyycV&9CgdYcg?F$`LtuS&s2Y7!f<@TbAGep
zJo{IscMHzZbL%4lebwdHMx5J|Ej<^pAy!J&M>(rGzxFZZ(Z~GSoVy<N-I3(}#&KZ|
zcEq}pod24)9NVu<hqowG=Qf-V{&+kg1Jebm0igNdH!c@A8i$Xj-{U+x-cJX4ITD>v
z?(wj7H8?u%*;9J6IpRF!yPf3O-%uN_1rV#|)z^9jXlx^_)A-LLwiu~z+&ogj_6gg`
z)OS*BNatf-+nifz9`h|R9kC|Dc0%)#uuad!&xq}u(ot$F;PZ%%d&&KcJl?a6oTvB4
zKr*m1I&z-!QF7N~AIFqeA9;R6205fl7M_!iQMyiJA!iAs<8)%MI(I}y?XA+0^1tt;
zUco?47W<uG6*^MA0+d(E|GqJ7h#kLUo|ifh_!*yh;piOcwc|+!$ir_XbUtRR=UW-T
zsL+J+c|vn%HDRGz3e#uAcBFJn(_8_jqtSIOb%`)P{DhTi^2l5=o=?BQzEnOr|9g?o
zfn?yA6uR*o>6!$q@EnVKuaNH3C}?g?@9Cqp$fwj+(7A(o^@oOzM>4laUPT5rnDc*X
z!&*{|P3QfN^Xjh{JJtBXxi&rHipPd@oOn#wk9eLV7S!@<nfF)l^P~taOrKHikGDl0
zF&g7!SMyx!J|S(<2?MbaR;u%GLgPEv>L_%)5uHS}6;?{e6FPXYc|Oq*)u`sKzaljN
z)<=boh!y#=m$`!Lq0Rb8bdt<_#kx~Eu1Ov&ufEk%5Uf(80;54z8?IwQI!fje%j=e+
zL9AZE*6Gt8R@6ZdSsq0X7#&CEIXYb&DbGotO8ZV^!qxtuIuK6RBd_o?di$G>+OUp7
zJpf8qr|VH4lCDR2%_tM+C~5#@grYkT`$V@ZxV}!2WG+y2(vBhmD5`<dwq^5B-D_=y
z%}UZ5C8`5Z+V^z$M(w~Umgu#pf3u}q-kAZySC<p)a45@TJ^-%sMw63DbUD;zZC5$^
z$=Yuxb=_8Sz*i2K`S9B!{G78#4E-GIYBbY!&7of9jg~bs+8KIzp%q(humRLL{c{JK
zwF~yG<g8YQNRD`3&RwrYHGDoro;5kGE4oU}FprHsdu)!bS_D+FYK^a<rK`ghJ$5mI
zb?KT)dNs}e&hO4TPkEI?-C-}z9K)Qhirw?P$^Wi<4Q;o2dY<l)^Pcze!zZCzOIMHm
zAU1%-{O{vw*d5(x*i<GOx~^99IuJ9u<|bO>EOV*JvF@>tOY#~^jS8(b*~;q-TZ8@J
zTvB;-^$eEufS1Rv9%!+t9_a8qFJP<mfYVW)=PkCbJRZQ7r0<oZ+min5>4DJdfhC^j
zc`b#pqX$}^N6+)7Mg<-4i46g<;pg>go>$-WYi};Oxn^`ds~%`{)T%>QO+Bjz0jJKT
zMh~>_CA0AYABa<$OyE2dP+6R>?OL7s3$?xg*eM1U&84&{xrB`HW}ib@HsA~{K~Jt2
zepTqi2@QYDi{T@5f8au^y>@bxA;UsB$*RJHvJ{^*Z<A~xJDT@)79KLxIsN-e4+Q%h
z8#uvKLZTrLQ^9BfQp;10-h9#BFE0!9u*b~<=6gpkJQ4=+Y9D3cV-^=+Bg@5$H^Qr4
z^-A)n{;PlWuhQ=@YCzMJ;Dr19WGqF)DtbF>LDTQ}j_;U$|NZ2xjo!p)Si~{^;xGOZ
zyzT98qn!F*o{YrrnGC64nGEKC_wW8)I><N?0|4HSp7v_U{_gMoZZd{H?di`TUOfEz
zA0(sh5B#V9DH-<B=#Df&5Bf)*`Am5E%f600mVe?Weu54X(EAz<&*+)1Lip|9{yO;k
zfB)~3K@%s?v+sO1eUGVr9(eGf3F8Oho_p@G6Tu(*u^*${=Fga(i-u}6FyjHrkN@~T
zB+qR;)WF|jdKQe#_(%WnAJS&u<Z)OIYeeJeD_`+-@RAqa3D3U$8RSKc{oFo{1-+{A
z5CdtBhcRz`>)Xhfi-#U)tjFk#M;?AyCzi<@D_Qka<$3k9Kl`&2FP}Ey<3pp5eB`5a
zkn^KI`u{esc-$0z==~pnOHX?$Jm;=ENv75Z=8Ecy$4z6#s1)=T$3vhOz34?Wj%VI}
z2i1N+<Ic^u+ywv4KlyLSaE=CaJeaumi=UqkQ|_OP7FX#x$WQF&jc@$TNv1x*9wbx$
zulR;<AUXVhOtONsK-yy}o43C8t#mN*&;Hpzo5pg54v*9eiwu2uK=hH1z%TyGe`!Wr
zr0I)a{1S=~dChD7ZzN0SBt6bYr{DheWCZ{CB+u{r!*|0Uz2{x<cV7PkFmZ<ZLoApQ
z2YG<=0XLrC_kG_Fw@mW;*S`OICpo==4$m-Z;}?G67YN&L{Kjw4A<_Txzq|on@rqZ#
z5B}f}k{shbNK4$X>Pr#nJnnYYNwm&m-(C#&Tr<TV<oSy|ZZf>!1urDJVMNbUpZZjh
z34ovbxnGzL7rz4k^S}Njn)7HpdT1Ia9s;0jU~Q3GCVBtbiDp<s;lKW`e}aq^nED9Q
zP~CRhlV~oz{`Ie?zEEf2VS!%ulBO3M>!|2L-?JFYSK>KJ^<aj1@h?8PhoV1Sd#yh+
zZT`(u`!wAzFJWz`ngCAs`$Z|fmxkuRIy!8qs`Vw?F2=3h9UQR7Q;_2Cs_MUb5P+A;
zKdUtMpbhjDr#WG-30|1t#U8<&x`CE5=#h!39Cn-%gEx<o*E~czM8iArfKGKLr3xYM
z=15MMdYBXaXMDEQ^eNFEau7Lcv1<OT*al4>Lz^PThDPKqrR@Rnz7JLdK(U~qD#?K#
z<*KJhtVk(0N5PJ61eTr<9dH5{+ODydR3L+3-&I(HZP?<ls<6}NsZaYo(G>`L$Wc-R
z@%_nR%a}3)KTG;FT4*92hk}j0^`t&Q&NI43IYc9#qSx-g>5M9D(-U^K(J0uAuGyvM
z!i{TYY)N@8v?01ip{qu`g_X21wyfB2GbVJUR5#K$VV?}2xx@28QZrHA6{Vx_T<MB3
zu%)y;rB(>{$8=TiJH(1(x4h)!_01b1c3df&l;CAxuRIt1x!2kWjD0)qtzEJ4TpH-$
zZR<98iY+V8Q6Exj9KkB`TFEDEnx=8a?B>>BH72s-dD6NLn5M_^+~!s)^IWmhL9ERC
z9q9p`*PIRsWrgVo61f;{ZY9|yA<tP4jDoF}N2<LsD&0h0N8x#7-A~vgEl*OqW|`N9
zjUy;{gSIoQq@!rA3AW5$<ffx=Gf7G@(vqO2V>Zv#VL?ZkzLd|~YA&^O6?x3r%@x%H
zvhhW%G>@5%AlReO8R^b45UmbL2yt0Q88+s5F(Al1M;Rh4p~8+)5j&l0(oXkhjkpk_
zl#^HT&JP;xK`}#QSg&+Fy_jRAKLg~su1~C^1}gUJ<#k2R+tS)+pt-}T?6P?hW-;Ki
zLq%C%@P00ulYyp6<oS`SJ+<GshwI$(pKTwT?Z0H~pn5H_GI8YkMoUqtZN9yBscG&F
zl3qgk*7QEQCo>OC_j|wJroQ|--}N69Th3i<I+oO6Rd40c!AA1eV5{%}n2hSb4_(=h
z73OsF?G+u{&%I|S&OP6BSo+Et@&Q~uy2j==6;{{owz#wQ8C`qW0N@biT5L1y4YsNs
zI&^NZL5oc<X+PAzMpPWc*5RpPY1%zq+qpvq(MBGFYll|8JkNV`>5#nUc};-!*Qxn;
zw61Dwv$-UFTW<R^%<~#rL)TVs2p*lAl^$q#uKiW>92{+WbnReM9n|u4b_pMchUeAT
zJD<-wm%8%k`#O#1A~ON{^KwZKn65uGmpc0MG;IDIq&lwq?(WPrKbKk^<>eJRGNFBY
z=fiBz2#;$0&?y4ke39IDAy$gO!bj}BWOV{YVOj}QV9@FTzL%Rcgei%YN5jzdqy}7j
zkah~e$R)gkBL~pn7!`6A&Scm^2`@25*kmg0v=PoFEJs&*KJ+CRHkf128Rlw&iHKgj
zXn<Q)-nNBqcIqiDni8abN-;Oh7Bs+N{b;1b^g37&)h`I}dT=uA-*flf@W5oqMMKM8
zJhjp2|2^OH-Sltu^1<t6FMAn$@!l`Or#|@!`urz<avv>v)jJ;z@wo9r13Ma5x#(@A
zlqq=7;f<VVsKhZvcMA69FWm<>-Fzd_8EHfGnHJobZiWvD%5}#bcM#6@dg#)_@cGYw
zfsELS3$Itd`qfq(*I&<m_8n8-+v&i7y$bOFfzrYlb?d@YdwqF?GSSfU>ioGi9BpnP
zBRUpS#hL<WOh-?5y<Yi^-$+L2FMs(<bO3;n0Ep4@&$|WR;N$|^(O`~s4)B>uGc>4U
z%A27Ieci(Y_kS5K-k|crCxj-Ct`D3mTBIyUKZqAS!SMj+>%ac%>F{MO2Sa$_*f15;
z=Rf~Bz`%ru9(oWkz+!Y>{y2_Lf9g|Iv>G>6=<$gMPI#bzJW%|Y=NDxX`K$T6F@OJu
zKJ-Bu3wvB4?;o0ERWD5agM54W%fFtYIgIxcZE<e?)^Gh5eMUOtb!qxupNAWJH0ocH
z=b=Y2rc^>h_&0vzD@{I77T)>JcajWK6vZ??l#9FXzK8xDy+L12)r|)^S1&@|QtQtp
z9fiC6%OxdfE>`V0S1{t`)vx{wlpag3_x|Dg;NEFYQk{d5v0RxBgC3fggU`ic)A;8p
zlBNp}tFB&UtjJfC6HF(BslH}cE(ZQ`H989P<-tZ?-@cbSR(>qGybCx>G+(v;4AkIt
zKRrJu7X>Ead46Lcx;r>*UiZ@mzj-ftY}sK;P%myO-42R18}@da@l_8#;)47;yZ^Fb
zjEt5sk>_a;L!KJ$_`rT;9xZ4f()urG1l9c9RLDJZ7&zsBCj+X~WSQDa-sgcnCpFxe
z!OGVJkm9qbd(~Jx?iy^V!bYL1VUTvk76j|aIo0tnSFn*hlNZTK3XP6Ti?A}?q#?zn
zUI81H*%JtgAzQJDk+Q;uSVoSp&~znAH`MorJr0GgBj?*5gsv3fLmn-RJ?}NOiqe&h
z-lX4TE-2kbF@jqjb4iuL#@tl#*suxR@u&ek?1`tI=Q_4=Bu{I^p$1jWT_1_Z4!fi$
zV`Hu!0E`@sq`APIVUXyEx$S{@m>tg*J9*=X<3*828O!KuCk%C7eZ`i@Q+s9k;wjw@
z@<n-`HBWiw0@z+&$6oIGV14cPel9h1OSMcWHjPMQy2@NLY?4<$tR&JfiwD(UJda{D
zH*A`#UJAUMH`uthzABy@9o<|?MGvS9peOjSa@ZVQ6&oKmu&y3~4^mKnvpljvUk|Jh
zbTm&jsaK%6?0fPUqnj%=UD-Qq)yRa*&9UeK)lpdvdB`i=)q#kvjt<FdD28fFgOxOd
zUF3Ps^)pOIIiBaF@>tq;rUz6<?P%Ol$1>x2qPe2j07}Y*{a6l2LuPqBsH40*iXIs3
zvzLjMu00(!%Aw+5^)*aK1+V*8rBHbWrw3%7w>-Cl<RY&Sz&UdTS!>m654O7m)Aj6K
zTeq`!qu;p8+i}4jb3I?Y=E{`;9p!W_-lFP(Nj{IVe)f(fJcsJE5F1VHm5Squwqqab
zj`zK9M+Z6cT#eE4X<O!l%|_NBJcp`wT!V;ypaZ!Eo7SxBVN>igZ1QZp??`GWwb(T!
z#m0Hv`p5#phQjCW9~!z=UbQ)Qv1O<|f_*zio23q2PsIjM(aq=%&~3*{9eS2{-jj*6
zBol#i(=X8t*J($d=LfK>yoQFZhp?>=$VAYwT`M+uUWF|sm*$bNuTPQJb;k?5qU(A+
z!)823y1Kb^nmkr>t)Xi^MGwFdHgFDR9eG@$D@C$QbhUObkIg(!_AV{yT`C>bq3dZn
zs+w!99#Eby(UtZ^vDQ(|TvB6pI>7U5(NWp!sE$19^V;a8aDeAygDrP>K3t=Y>dB+F
zQ!4o-dDUmRu^rM;xuXY`c&^UtmBXW4#kv&C@ZZ{ZujT5b0BQ~a$}tKIu|Cn!ywFL&
z2dMMv576Y*hbAlspr2zMoTp0S%G%w$`zcwP6EyxCp+X7a*vkYsgl%ZrV~Z^==d7M#
z4=y4C{Blo>%D5E?T<lc8jxL`zIBZ0RFt1mj%Sbw?2=kMln{K)pzW=ZNHL5c}3QHHQ
zfsJhU-FqLr>9>9x?z!hPjDN+27C-TcPr|SK>Ki6Q;$;eN#%FJi&cla3_<k8P_k-T~
z=t-@{R5VgzKmXYe`~VqpG1omBa6bHzj}VV2w0|<Je)MA>hlej;mPNc8(IOd&F+|x;
zWv9RKcW5NnFd3!a)vFwBpa($ud-SMBBmPy1M!4mc$I+NDz0D^lqjZo$U$`m5P~7|O
z`x9A!Gi|X>0~$&x4N0zL-OHnw35?|Up6~fy&~znVnT+zE{oEJe;mHtt>*F5}U%2;P
zc<_Ns@UB1jeM-}VhZA@`^w1^Rz$sR66W<r5z5Vvv=>Ua_ScQ^~2-Di2S9om%4e;PY
z55wagz6?4CDy8V=63!KVFJ<!h{|EozAFy(o`avWACnh>#IvwQe=RWs&O2hC+fBeVf
zUB2D!<?&LaM_wKu`Pj$c%ETLt7+~ekhURa7-Rt0Mrg5N`*IMKc(;>Y0Yrhumyz4HC
z&cF-9>@}6p<;z##)A!sn9Z)@Jec?0jnht)x_xrvdZjxN}Dg!Tg;S1pzQy;JTrf;IC
z3Y;S-Z+MV_*L&Xkhm*{I$*?OwU-O#3FdZn}UWIt#_3GEWmI^Wd^iTh^^^LSdxyQpP
zJ={5Rhg+)Pz3L=Az&k`SKo)+PaY)qwHn~Fp^|pKd3tj}b+<c481AW;%>sim7=sQ30
zzyHC9D7;@k<A}a8$(z2ARW|U&c2y3_bOGdZ{;#wzVB>gCN7Xt1<Famd@~vYJxyktt
zbN#xLMPsY`HFR(<*wnb0GgSIh-#hWt_Yy4YeveK07Rq6Q7WpYJVcWW1mlq%Cl)rfa
z40c-0H2}oGk~zFT1~#JbXEDgQod3LZ(A>;gSTDQWp<rGtAW;T*EX6Eq@<Icz2W;~f
zpw{&P44ZnCN3DJ24BFf-#`z&spS4ECDA;^HPBLTx=UC6+uqTcPD%kifU*)U@jXGdD
z@>+wjk7k^dsG3pQ5nC!X1_qzUT(Hsaljh-N-JR1iwwyShHZ3U}-S}PL@{TKZ$vt1y
z1W@eR(VZfILX%@%=q_|q?3A}ZxH?afqmgR5){E-|Zhh(L8o+Yb8;?~c6syT&O?Uc?
z20$2GPIbv8?y!;naYa|4He5XydF^8>bsjo>hfv9*%5w&l$IJ#voolhoHI{Goc2*fs
zo|DXgn`<(cT6r{{rY6U_U@JV=v535ley-(eu2pksHO#Q_yTD`9XgbnB#Slnf+IA>)
zM|{14o*r0ngpZd;ud{}>CIF5tX@pv!^fxmdl}f}!>|v|q6<qy{7Ta7N^Gqh3JPtgM
zlNjsO;0;a>c%G9)3bw)M+UNm_pa=`{8s>C$dLVn<PdZB5b1f4wG&(BKVSbXi<8{9s
zq#n?pi#%_zabe>@4*uOPE_km&jyllyo9@H3Z;eP>ToFWlCjb3dHu8TKuCo8*&m-yb
z;N5sF-+Yfsx-X8sXG86f)3)io-XpjHSBzQ*+Rf1lph^>(n|9y#Y1pB~)*5L-<9WSs
zf9yT8>HpEtHN*0S_jre&C2XO2p3&JE0}o*v7O*9FbTYv|=+o7(oPqA-j0DTrV4+R#
zjf>D4k9KHyxX|t%U=C|Nc|J`Z0S@pz%)RRY=JHlWx_BOkVmM!#i>K*<MQBh`&sNy{
zTs?s8R6PO0bJyNJ`!so6lBd}mZS?>gc-Of0*um!K%AtGVly;N1Fpr!%la6ZX>U3Vt
z`QW{$>8QoN7v!~l{!9-vI_flRs|9Q=&#U>^$U2QBvu02m(POzzjQ|MlKeXt|CEQM5
za@jKpYK3g=YG{%BWDjKCaUcVyJa9VDz#bP`Af|2Cg`5>*5Mrqi=;^cO@YnVho1Gd#
zVH9C=1~Frl8lD4txLNIkP{N^ncw8$Ofp-!xn+l<X;ixw?eIABBwj>2-Iv08`KlAoy
z!HqZG0Gi{>7wo{aCRiXB4Xt?LMu|N7w<nX4`b+TOgAb605P9KDhC=kh-bfy0yfp0$
z8nN+GkE+|A_(b}ARr1Mx@cr*6gEkt4(QyCiPu&fdA9)xKT{(oqiwePD2LSRF9u{1h
z4DcGwfRPqxfWH6!`^kt-9#9x=opxsQ_Xb(?Xvc{~X_b(!9l8^bBy<`teEyT4@)Vmi
zcvy1JbO5lM49yQ+dI<jHzAuph9X-e~9gyaoXCr?m4>LC;J3Z#d1xibE!wnbeT!ESM
zn&KZ;6ih9o|H;X=80euaZg?&Mc`Bx;e%gF6goR%*J(TxO$H)*&BZG2s?|t`82Md>o
z=jwfByvm#k1qpQN(q+o!f3n@V!<|4ynx8t+DC_(Pd_eYu>3}3mf1dI5r$c*<<8G3Z
zM=S@jUN_!!6Wo6L9qe`J=!ORenC|A8ooC^7{{vrv&r9KHr59p*+EbqbPn+<etl}R$
zam9@_rdzuF@RcfT4GkO^b>WrsAnD9{m%faa7I}oj9~g9AAlTQ<H{;lDsdN-xx7>2m
zgy&-2XAYF-Jf(GoBhP!b(`XtS)M06=Cscn{Mb@C`etI^_tE4Y!brc!d9etD*elAt@
zUZ9p&Hd02TG2`SJ&)(7HVAJdN8e0ja_V1<9>2^;iuV1xakIfS?IvuWZaXoL~@zO<+
zZsdc_H|B@(4D&{hl%sk}b53)EZz;#R%V9lYKJIm$w>)krPx*=FfgaYD7n*W`uQnt%
zRs*2QO|LZo0Ipyj=nyOg9<@*RVcve!b;rAX$y<)~3igukU30Ea-%(EMfolNlN6lF+
zSf{aIE_urZj@a;>D!J>?kiJ@#8UQGcTAzUOmJ3#tOY9qIcz%%l+S7Xs*EO1Nd%HcR
z_k`5|7$tZ8uz_9P6aEd2MRI}TSR&^Jr`+{O$GEn71xc|@_nb(c{R^uj!-klQ&Ula=
zfO3f!ItI%B&K|v6&Nn)><D4h#aVR`DY+3_gOaG=k`j|g^Cpp&z>z1&tXuMVfAg;-9
zNHqW^LL#=7uBZ!6l&**^W1iwI6>G)Z_4xUC$29;L>x3=s>pc4nR(uz&1Iq;Es>eM1
zBCjVzSLS&Xc}2N8zvAe!6Tx=m=$M^+5*?AQK5sd$=cER}c7L*njX!URW*ezdfpi>P
z4FHnI71PmbR79zzkhbL6O>~Ts|2<*OWtLBrby|z8O741gE|7figbjHvbs$6rP#&oU
zK;m4$N1o@d1^{|$D|U1aK)Mn(%d0PXV7ljOVr&>ef!MEN4FErvCORWwH<I)JnC4QT
z2q4BP*l3=Q6VE4}3O00HI7ufHU5iet=s02964n*rKS>Uo>L~m?YzW(l>8SO@^TFu4
zaXKnAbR5WerOc(E^$LXNcmTha&sZY`<=5y+GQrr6Gs`Q}bw%|8sFp&U>nPL%SOWlc
z_S)oiOM2a7MX;M#WPm(SeGPyZrS?Z6dEG><0WiWiJwL1`tP^dvdB<xo)Tc7<Sw|Il
zrP?0@*LgUWd2c)yon<<zkx$e0)9+ChjzyoYkIvDY+<JW~bj*pP6!;Jz0sC^WvjMKN
z*A$t;#lbO>K-cM569A(q*6WoyPUv1vjV-)p2cq8ryTf&Pne7i`d6tO!fTt;|z{MlU
z>2Mepb5`T$waZOUb1I&ayI!1Nd|rKZ`YP!#6UnakT(!K=ft|GQ9k(9pywDVl<FIcQ
zq86%L;5kD#?|$s$DL;hGweK`%wXB!D=PIQG%(?PFSLaT}22ebLJzWphQs`kzE{FO8
zcAth6pM`%s&ktcMQJwQz3o~r_K)r&qV)Jx$Jl7oS#B<p%n&VRx$Gi?*qvJV6!ycgP
ztd>G5-t(hixBT!PTL^{cqMJ^mtC!cD=eg@=*p~9YD_uLe>pk{yiLNr2GSpEthHZi8
z*Cem|{UXneu5K=!mb>2cK%=9e!Im36VAvLPRF|%v=N)W|ItuFg8jCz{=aOO*d3>~b
zz<BPlr&Q{eD9=0cniq7GpXZN-=c(m+N>-y*^*}nHquP1}-S^T0HoLMn6-oAj_~;i8
zokNM{L@CQAo(w!myg^Ht-r9wacw@S@S2@(ddt7E?ROQ_neHcWfR2{vr94f*TLLCkj
zOZW)3<HC7Zxq1cC-eSwmOIWdOhM^lKrtL=yVL9q$gO>$r$U+Z|h?q*}<mwe8@YrI@
z*}`)8C-or(hO}x}4@*NaxY7cBvxev1^=vXwd%CJ&78j*AUc4|Z#3i5TmN!Iieal-Y
zPkNH@V|}J71T?Vw%e-Pm0sf1B@h`~O{p<hk-%+gq68Iz@(9_?KT)9e{YK$Bx2O~|s
zLb9CtFe0eNrlLNCV02gd26u*uhJU<%`Imp0HXyz~yzsz)j6BC`WG;sS(S;TcULGNu
zyyAt1a?CmZj(5BRer_5&-iO9!oRDNhBm>u;Hujh=cIOJu65R$FH+i%98UPv8Xr|uJ
zcx@_~02?>|d)llYO&hz-U>+1pbIs<;^!Zbt`V@`fcYgPG;Z1LRBi(z64BZ^=&2-w+
z0S0Y2C2E1g%e5XthVxV3<8I?kqWG(6%v{`U<rI7n9pbTtC>}C_qdz|W(GSDDU;IKf
z*7Fz6!^IoUPqZusZk=l()ZTS`I4Q>5$slli<zc|o8+w+Dzo%l___u_6>tg%KPkcN)
z{NNMhw3R!@abpC))8&wXa^w1xK-drF_*bwQs&G15=t*94m8U$i@d;c%A-E7XtXnd$
zN2q2_w8BrA2YRfJ7tq`D{J9OMG{|LM;TU(W{s3Y?tjeqC<`T`jq#K8#KTStL(d}p?
z$uZ7C2bHHwA(>ry1gLa7UZmSo8)hqqzL<{A-5*=sF8Wcix9_F(Ft1n8VuPG#*mKr{
zW93O5g7?+UyuX5_#L{V@(RS$lNry=o%@ImoX!5F+eB1ncSq$wty$t7I=fg~p{O?KH
zk?@#?g61(UjNm{G05m4VQgAC<yI{+lJ_dikb2-$r%LPu0L?|1)L2_18JIx)*uPxa0
z_lTYRe`8r(Q}IaJ9A-HitaE`|&gzl%?a*w{IKO+Tr9i(AQh-vi3ignLVKusnXY9_^
zQqTiwO^dP@&sNQ;PIOKQN@}I-=nR$%yyUV^f?ettDBTcSbUe3oF}%^R-1SOV$8&rq
z(`S(PD7FVr*MaD%JddvK1M3O>jGq!{4S;d4dCa8-K*jU2`5d&K!N|vx>T$g9@Z9P^
zh`#eR075Qw8Y_8KY(*aHngAZ#K(!Pqd6agYYt>w$O%7Q7jKS3a;4~?^9;J~@@|p^^
z5QVN@9z!FqoNf>($NFGvBHe6SyI@UjQ(xpg2^R5KSGsC_jl`)AvqW5gq!h}Y=PCoT
zuC3)YgXV|dx;*<zH(q-e9c6S>d4v-2%MJ#y(ow<Hfq+U!@lKBEnmam*-z}V*9xMXT
z)1}bK<=uDkXmcw!_lu5Ftfr&fT-uY48tDCA<kj;$Eb1uMp9xm2{*0xT0*;+M{bf_1
z%iP+HY*5fhfTH`g#tPFl#zNPk>qSQyR$W`@Tmk?{m5!?Dx-asGk3b(C9-jBM3uN5)
z@A*O2CV~ArAVzg1sJ%b^-%QhB-|E`$dcT5&!?ITiNpgx7CF3?dr$4LxJNUfG0Ntfp
zKAabtKDPZR^E1!uwvSi_cMyBlzT~&T{WgbAy@Hfx3(kX->GU0DKPfVMXesNZHH6b^
zDOA`RI#lECVQbqO+O(e9LGKA+Hij14Y<{-bTP#BN%Gsy+eSn5`h)uAB=2-!jd1iea
zpsVipyY22?KaMJzMAk|@UY~}|^W2ZM!q(pC`#!+)C7C$OTxxMEU6%B~`~kt{@xg0J
zMsl6IUfbeAUm?$<HG<Ovy>VtY7Ow{u`E`m+9EuQH)St~fge5(&boJWLsM|eu{W~{*
zM}3~yoc7S6>ykV!VQYRL8Z4oM&2D$t{BL{nJalvr?+y7*i30#QsHG2IofJStk<#ZV
z3L=;M{j+;yP^lRdZyfkq3dPbzP@VS~$oPf3B3j%BPO%cCJ%jf!gwpO_(#9hwM6W|%
zPR9mNLfCwpe>N@7bIA`+{ksEzb~>T~{P_5a8JeKicV-d6N2mcRS1-#@)jycO8`%qo
zJpZYn8&oekyl`{ZzQ54Oi+|=<`E86Pzn8r*1;D-c-b;mb-}|2Tn4wtjhfsK(uW5qk
z+1SAK8x|CrdV6E;eXf<=dC>$d;u$?srhALR$)hSk%DX-pt3QXugx~kR&e)XZxx#BN
z>t^DHhDXK2A1ZuH7actKgQBM0=9+}8(*|ien82dGSVZ@a|M-tPPi^HScd>H+8V}uE
zPD$F!A%reAypVU7AHD=zlOcYl8kF?}6?szW0mY{ZU%o>xH{N7skHSSBm9go#&Ye4|
z@ZtS<aHY{N0h&1}izu(a{Tzqp_wJ|7rSqC`MwzE+_KW^Sx$<K*Ovak#u?Q9Z+=MA+
zuoNGrKcSB{0d(iI;yjD)_a5|isKZ~F5wc(fGVt_x-u9i(fDIPLh0jwDfa(%?*7;ez
zpARwTI=F28AS54!`yqg(y_#Oc&P!xEILw@fe4yO)YtFeox*XPNq%>ssZ#pnQuccJl
z^`IH`1AaG>ag4o8C@-``s$pM*iPDuMOPzv;vmp80**NBMQX@90SHP+A1e>)d!6t<w
z$7GQ$I2JS{W0V5tG3UdHO!W#RS3MaOIp6jW)F7G-8|BkRW0`oej+$yk^TA8L?e&Ch
zOv&X?UlaC|z2wywY)n^apR8dg<GzE<<yaTGq7`!#13tFJAn#Z-^r7c}_SlrJTRUh*
zD<rnhu*H(QUa^r(D9^DS>5frasn8wYy~r1QHsviB>?~t!NXB(57JEl!VLUej>Xvyb
z2O%C?CM;S9Vl8y`@+dq<d6o2uCKG~ntJo|zxX@MP6|o^tBj^FtC|;jHeWQX|iMO(1
zqaxIq>t}$>9m58tUV+h7Ql%+2lwYKq%_U8fITmbGU|4EY;2|p&f+p{JL>f8z4nLbb
zs_}Pa>j{r-)WZaE7C6D&^&%4##o*|c4O`IzNwBTrN+R|4JWoXr>=M^ruv!WYT~Py3
zy@Cpx<GI7OQ*2%yy^g}U5=0)w8_e{;G`DCjnT|?MN3AKMmi9QSwK=aSwy4-ZbWnhb
zZmI`7_M(HtD8Anb&s!bEa}7P}SBpAo$L~49#&c<JItnDO{$U+O`W1PYwHR`Z&GWpS
zD=e?2_J_?id>(n@vyNKHyibA+<zjC-YE8O+992gRd?0{y%>~;b9hE8_g@-&5PIjrJ
zX+&BiO?k+x4^6KcqNZ*u&IEiYR3Za(nc|ltCG}*0&a(KryO>V8DpN<lX!}mQyi=j3
z04YJ%zWAkI=X#%@hrmlYtGx#%{XUnR{~2KBfvMRB)H~F->z>%>eePm&*zud;05;ON
zl|y84cr>rup%kCi_9bkVcVDno?Ps9tdI6iq-lLm3?p4@hT`R$R1ozsz*xX*)w<qZ5
z)rSRaioK<qKF`-H*eCHumUjkW!$~X7mK3Gno}C+c>|t9i$m3~rHEf-z2BT{zdCaXA
zm14_ve)zrcVFk-`X*htb#jZS04R({qP-+6q+5u+RIGrn;ndh5MM8#=zHEbYyK;`ii
zJ%BP0W4{i>AstmkgPfJ;y?HJXLrT}dwGXjVw?ybV9?(&Tuz|xioIxHH+e}AYs~&Lj
z*u%a#Wv+GUnoGTcMR{!X=cA#kk4}Qqb=2Un(G~OnS{D#=8}7BP9~M&pi8+QA!t`JW
z24JTGADq`M5-SuBARfRx=l?F%p)Tg#DGGI)`Z@nsvY4dsksx`Wv*gtcCFlQE6f)(!
z%(8%pF7$=k#nYu>gkmqA{7v|sVsGjd^sp(@umI{yUi@N8qjS$a_mF}73!ncy{N?ZX
zzr!o@t7tKOv|bf#Q5HME`2LF@`7hwz?|wILNVZ$}&hPv#c;anOgdh6bf18Z_WaDeO
z9)hJeGHgoM7-xoR%$JX;X8y+C_#5z_zy9^`z+^PnLU0=GF=l?T1=+md{m*^QbLjrJ
zyyY!qME=+R`hT9r_Zf;PKw<yUAN^4(VEWXje+^tXe;%IyyyuWd`H%d_kI+E_))7Dy
z$0vK(?#5~y95Tyc(ju9ae5#UF`KS&9rt9fXe+Dh`|NsBwpTJAM?xnDs`VFDvVzz>2
z!c+W%-yKajRl#Ris8J!ZfA^<94L>l^O#8(`z%QD3edn{EO}XuFz4eLk+~++P{{6rI
z_wfGdfZ*+Ke>+83pkaa14au|B8cB*p!hmS*Ri9nNMU2j9tt^jb2-WeJk*%F;tASGX
zpuGOZZ@vls@lX6C**F1w{mWhkFM8n%;f`lL8*Y2jli{vAp9Rmk>n`}EU-~7u`|i8p
zjc<I@B*%BVIu6_$dQP3}_U<r+Bv=kuLiJMDmxIkU;kO#?Z@Td&c)^Rl7QXV}B^evv
ze|b7=!O-vR$rdi&coBFLDiJ@~d8q44Ir91F`3o1}rkfvU-ko?K(jRLuSO}WP6OQXk
z_df`q`P>()zOf#{*L~gB!Q&qPcsW!UZ7vZ{FmxS@U+bbou;~VGN6`}}z`2sa=%Nt=
zbZ|p7DPH=1o@!BB)f0V9kEt3k#J@QxoBoY*Jw9?pWG2mY#!P?4P^E7x`jb8TRQD4$
zr#}(x+ARpQT@6)U9%s7UHZ@H#CiDDrx<5&(ENQ3EL3%H-0Z{81L|K^m_fm_!((N95
z4_hoX0JwjS)VSU^?s~DfYRVtpykjK^Jw(D{<;-I>X70+y7C8ME-m@7>abH?^tyh#2
z7>!lD@KT<0xG2@ep}CydKofW_BbPNwk>?&46*T>b?JJ*SUGqRE!a~@@qnFa+d2Hj}
zHZc@wLf*&RPS_Ny6fhk%-#Z%H>5u}`Yen*2rNW%RhE#Go7#VAgy?Fd4X+IKdR1{RA
z8t}PBN37+8?{9}~pOd8ci<BOOLtQmgdtd{h9H0c6Yd{AT>Wz#vr(ED-6jm(OE}qs$
zE2Z1sVarC>BiRUyQh0MSXtCfOrxIBex-%Vxt|Mb*gCLqw_wr602wO^EGBK(#GU{fL
zv2KP{;kjT3#ReP|rt%mXc~tD^nD1pmd5-<!nvM;Md&7=&M+3WIQ#z6ddNdDpjZPW`
z+sbmy@2q`>P0|<QytBFFc+SOv85_$4i2Qo&5}FNS1eOC6O%(uw6=E%qxGNY_Ew4<+
zX!1JBA)1%R3cJv;$b`tJVB05^$Cb!qqX%G4S1xKf(7oBurBS`z9X4?CrgUuO(d&WO
z(*vrb_61umdO)!y2(ory`K*m^ihbp<IUOcCs_>lKk0jb?uA>CI*8?=~YdxT;07j)7
zwvQ^Gk$5>;`-*uk#efUXN7)}~tq#W8>VdTsSvIUad31E!NUfy3(*tw}tk?!U^wnq%
zk%5#;low$ubWJ@S1?7ED#ej!_imV3qpqRc7^lr({m|+FUM=kUoDuaR6E8=Ao*SMfV
zmCO;UtFNvb?9%-NFWqEatR5`xH{pznEnRaQy28T0AN8ecb6Nmp+gm&uZ2k)ROn~B{
zzWn2UdxNdT^QSTX(DpTh7Ro7DD7nYm`UXA+d*uMs+&>#4oPn-q#I}5UaTK%to5Oa9
zme<1b3R~&?Ojf=&BI2=Lx!(!@r61vJS8)<rp36PlOJli~IeuE(jBcmRwNtR2cK?~M
zd7g(b$L8ja8nSC}3o>(xyt1X_l&g8RS%f;+JRKJ2TKoG2J#ZSXL+xRyuT!44NY@a|
z4z0gkyvMa2?y$wC#(%O@nvTry*lZ80Lyi1+a3jeU_TA=42WOG&<*twN2+hl^Ltz_A
zVKVOMax9*?xXFr+81!s6VtT>ml6PNI&e+ScWh^pk#YRhyO@FHfFK~*0u;b@(EJ`nw
zdIa|9oM+ymn7bB@hFb6yJ>w~@3NBEk2o|{hgQFq-jcG^z@DJZ><9Oclo;MvPJdF%m
z8)*3Dt>b>&4PDW=v89}u*)ZO4!wvN8ubGV4_@{kt>L?cVHpg^3Sm5^Fd%s92j_|^T
zFB-&g?9aaIxp3oTuzlWLcaq^BbGEB|uy<ZEEH;TURHt1!oHjI37g%J(+m-zDSkM;@
zzAyieUJlQ>^G<*TTIma1`9@g85KW7dRC_0nsYI&aSUx`;=IF^DdKo<)^V)yS*HCfY
zr%i`HPkGXl;7`8vCAc~nUy+yK$JAg-a<HOf<<G@Oxs_MwKBdsfzYN;Bh8}Hr=z=vL
z9(dpZyAO*CWAW%`-hRg<2Y0~BzV5|v%gr~#3#UT?l#{o<^=%biOgn>5MguqI|4+?)
zL!<aw4yvjbzWh#$9_xk))4HG${oJ|p<N;QVG-pXS!^U1tpHmhSX0VpuqE`m%j6f=@
zRRwy2Ph%0D<L~#B+c{N~MQlhLs)Ye11%;-kz_~yvg-ovN7h4FSN*AQx%@*RPy@-Sc
z-NkR_6gH`q388Ip$|gD;sTWCFqd#$44ox4SxhJ|t)1Ocx!gQ>9Kn1bXRPnl<ta+yU
z>z68Hak@X$^<J{Hqjz~vw;y~jiEhtKm@+QI23(QO`qn<Z&XRsJJf;`&fA|;E0ri4L
zelV{_@!sV0O{)RZtN<NCZYcHHnv5>^8)Ok0J-1@i9K_h066Yz$112<_W1et)-kLmy
z2g_BzlKk(OE(hC>ni>G>mFV{UD28YD4&AFaC>fM8<(gkb_L>Ft@*XrrjbOuk@l)Ts
z%*M50%^oah_#FkS=GP{y_<3N@RmvB+8t4Gv#PaX5JS9n!VIEYJZ(9x{rY{H^>J;+)
zNu<j$UD#?pFkR759nm<4`L*|CTtj<3M@%SPxjqo4X+y)K$3}-~n9C9m3`WjdekA9o
zJ39Pjj}^p9^$G&!0%r-pdONtViBsSBzTxN&E~-ji-%3~1&-*>gfb^Xd+nV#eQwk%K
zfk?*N(ddW=0E~?e<_1pRG-l3K&oVF)eW)<H8nQEx(J?8{0~_{`&P>O_B2TvTY?enf
zm@-zzj)x*-G+*(dB+4HC!Li^00_V|BCa<vFQ#;a)!jUDXI_2NRv7KxQ8)6Tjbswa_
zYv%MM-s_w5=Sr%SsckELW7NYabY*PQ*!FA$Rczal=L)8HV|f>Bky9Y*fvRGqR6vR8
zi0jDxiRM_BbUAyDG}ZJtTj9AK-tM`8Fv{aT?<GgAr2bK!<J`j93)7mw^PK6bbQGSO
z9tc(sD~cZ2QSN$|%UXFZ@9Gmu#iPY+*?B=d&Vlm5?`<yRF$*?{_84n<+zQWe+-s7V
zor|c5ROgB4DsySn`Wgeb?<m)NlUE-oz=0+kV=Fx0OPvxba7;W;B)dd+%K1Oy*{A%T
zd5)g_YpDUidO+s+ZY*@f0|cj|XlyP5$jj@-VdHr(o@=6`@W2!IZCg3)qIr&UX^(wz
zVdq^6f=zXl@O<Dx=HuS!e*FD*CprIznT{GnM<vAyU}=WTTXDjM`_7FNOWyCb*!+?3
zJc;AOBr_7tk#l5c3P^Im5G-|2y_OX^TVw!K2CgLgn;126l~*YGdtNh~-LU;<_wvS!
z5<!bPb|3h#Q4gxHg%9{j&gxz+aJ+i?;qiCfywK382{7p+n*Z`y`D(eqCA!A2WjREX
z_YHZ24kc&xS+QlP^O#$E2sO4CO+O^xo;ta}Q}JB2-1Y7N(9>1ZifuaBPQ@<R_@I8M
z9eNx#pLc(B*hX=vsOSn{sggB!{iaDXx<uF3nbYUhpV3u#O4wt+mI97V^`g<e!Pcu$
z5l_Q*7P{{1ngGekqhj~+>Sdx=OM&)5k)6DDW6A#>7U(*YM~A(_wj{3(TQ{$Mtm_qM
zRD$KMU#+fbE~zso$zupz>^`Ee%E2BrwQOgeJ9+HYD=?miVAy(k!05I_*L;TD^(c>u
zt&zv2S_-BI_RF;t;1oSzI_eaj<JxD{k;g92MSoU0szZ0JrH}x+dZ49iKEqr(OHCD(
zN7Yeli9Gjn3H#{PQ~@~qd#RO)VzmagPX}9V06fZrfW-p<wN2>;UI)+%8RE7&jEwV|
z&htWdUnXL>!ag^hP%ZYnX3NvLZiw4FEQbw*LGrn06KG}Z2%Q}19y`Dy_BNzQ1-iwC
z&p@O4-}`%i4}SJ%f0lBsYySIx`Ex%9zyG$k!C(LDe;r==%2$GVm8qfhzx~OdguCy#
z2R`wMkAwF%`OfeBPWYP1z<lA{IW}77UUHjk9_~JLFv)M9G#RD;*5CSD@Y6s2)9}VO
z{%>Twzwf?#;a%@~7rgehuO)#)L$+QY`p}2TvmZUc(bNCp#f$XJ@A|IqhNnLDDU|mg
z4dE)_PkiDNsqijFE8KF+En;-bbm)L7dH(2+{+JFycwBiJi{!2seB`mTS;I{?-T>#0
zj%-YLJ^b(`Do{%WY$qJbqr2|9i~4%o+ulBX`rt&jPtb4PJ&g&+e%mx=j6wjR@7pHY
zW8vSAef$#?S@Gm2KbefX-}61+Bi_&*c@;&0{o{C%pVTJaM9+A})8Tuk`@cpG0MwZK
zp$~ij-tceUK=*L}JR&RZAyz}AJJxSd^W-3gG3A@(lZUx6TfMr=0ZJ~OfX!UP>yd{a
zhA({K3vl%c7iCrh?O%BHtKt9iU;dZ$-8n3fmUuz%hBv$c-u&h_6aVmvZc&N%zUr0V
zK+5<DkAEEH?#FwO$3OKy{*Q3`9e2P_{?mVIiVoB0{MK*%7Rl2;oxaE4Ub%7=zU5oK
z1%Bf<{vAAiIw1PSSG){9_nA*uV}1Yo-Vgu%fA`<PH-Gat!#91?H<{eO{T=Usk9_#U
z@UQ;WzoIloC>MCJ@N2*JYw(I!yaN8*x4a6%w|o=)Pyg(HFge2ZpZS@efhXQ}8~pI!
z`8#CX$7?%b{?%XkCAjDA&(LB+d5G;__tLK=0|d$^9*TU!H-00@{s%w!L3m&~1pCr7
zkG}RLFQMOS>VhwS`O7qb_f5Dy_OXvvVY3=Cx5Q7}fa<}4wxf=s*G4Ll0(#+GI=5Mw
z2Yr@94O)QU=3e9!$Bu_~T9YCM-h_JnXd!Mxomb!VXD%U`mh->SpR2Rz{-(Y4{8!zN
zVtup_Lag;(Rx5oki9tsUSCH!v;&kA>q%ZL$?39**4pj7ItQ&YeB!uhsVi~2?K#^xT
zY0+>-(iwq`#B|7lx>j=6+via7ZO5o-COH2)ekA{0NrMt}Q|@xtTZlShp-m4LD-W@3
z@Cm8rB_9Q-tYu2>ddUYrvMYpQ+c|8M58kk^BvNH>zbC(F!^Sx%6B!^i&wl2EBr2p`
zBBMwjV-A0v=9*7?EP2eS_@v~AkFxkSx=IZI&8tsX-A06dkB9I3OnJG9ZibC%#rd@v
zJF;(Q*f^*9m?YXv=(>}+1Ed#%VGDw_U}w7OAuG#7D0CO&C8eq}8R5lz5`Cz2&4Qg0
z{Gh%Lb&aY(`QS^mUC>$!qi9aWCLZn4JpW}a5;>oIkw?i@@8uPmdI!1WSVy{1x&@d2
zy~f5hpnx_}^4a8--4K*+!MvHX(M>mCCXb=yrjO#Wjxv#r=cPtP6mR9N<XETN^wdE%
z?4xWJl~yFmQfmRRs!S*yOMZCS<jBD)kEPVl&;w}0K5%~cg1sDan2hk`WqC9`Fw$qB
zs4td@fLp`p=aSafXnCG0y5hlDhAi_scd^-L!KQS_xwP}x0W4J$JueqM08S=CS4VZQ
zNsS7xqjX-YF+NG(OxID~Q-$YRXF`phst33RfYYC%2ZCT#dF8|KSYhM!rL3w%M{Ok%
zAX*K8Wb-~tyUC;IewLXPjbZEb0PB9%Q6!J3>k+%?7~{FfGe;?a)Kn?*2okBH^IUcR
zxL0GyP|0hQ8UPGE+To>M8l@{AibGSU-AC+lBc4A|6`1k`%%hmEw~M#4j>h7)#Evp*
z=HN?~70{!WwpGt=+Joz~eQpm}Ub?^c+q~@EoI@Rbf5=mtNAJGZ-^qT_`g8rv+I!bh
zd+6lR2RJB~i*%Le=|V6sU{mb5>C5y@^ZeM}?|*+S*!bptyRPNol*?i1Ve`+<4r_o~
zeskydaRGa7Fdmu*z57Fpy_LtNy?yqzXr~#^TlzTp=w7F_LruFLEqz;0o<grrfLR@g
znLG;JW^=8fYs+)rcdh+l5u4GmnJX>snT|Rz&;8h-GuD=_OW3NuWc*z{aNzzPwnhC3
z&0GsXJmKg1@+@?%+8TMw3p%gWIUZ}~FKQjq&ZV}!b1i+Jr7_GV{-bj~Ts#0!IuH?q
z2;YGsMZLMY6#h298TbXiB(I=^g)U`Gp}PA$eN6W}8Va51a>Q>4fktIagM$Wf`lToa
zG=ie%^`%P>Pe$#B$@r_`qWCu&TJN8Xhg&hy4dUs7hRE~IkbSz6#P(1K0lcurlqTxU
ztWyC!+7Sz4-KiJWv=GMcFI{?wy!**p91Uozl^MQScVs99k4ru@?2>W`lR@}cjQ7dz
zHI&A<!XqxURr3pt%7~F@f?iibHyjJn#ZFMAfE&^oQ^(vm@j%mkAU1r)Lk~R+4^9Uf
zI9BA*zQN=#uTa%^n^KyMAvmKXr)3Bf^?`r1c;BHuPI=!Qym||vRw?@VL#C%ZzXOe>
zbh3(hm?zwL3*y&<mliW#MBC{P@&W%KpYTH3KRg|JZMP@3iAQ5U9=@PFp#fdJW-bX|
zIX5jA>7{2694e2`#C!0W_!&=@k^h&c`*6OXu^kVn@ON~2D{}|&AU^WY7Xvn4co>J@
z;n-AOX%0+t@{va_7ezn)jlWxOj?Az@hg2BdAQ+RJvSZ&!JABT$Ngl6E@;B~F@#OAe
z3wmlzUl8-xRdrwJ-32oqg=W#L1)Y^nIM12xalSy9K@0sCy}J(S{zLbfycUHD-6hW{
zy1Yb{)pIKMpH{UWyhI+*X0aL=AH(=+5kG(Fp$J7V;c6wb0cgxr5p$BcJsHF?cm19`
zE%x%>kX+w;@fsm-<<SgM=%I=Crp!6~(a3a+R+`KnTUhXOE0IW;yPMi~YAj=e>Ymzx
z`X)o)j_buxp<A3Af{kkEP@Zx&)R94T<eb#(*|sLETf;WcZ<FQ%pRkf)&alM^8|PRz
zYz=mb6v*oJ5d?cFG`ii1w~ZX=BX+}<I1QWCMi^6tZ8u6vkjQk!&nMYo-%5V%)r$H%
z-m~{SV_Ow$l&2iAl{7G<Q+9h=Y7kwf?~`JuG(wp?uPM!j=eZaymB;86&2;tHmFFY<
z8~MIPV{JvZk<*ij9%JlUICuI?_p7%}Fqt6iLF5rre5^Hxx?<;)NF{f@$HpGRIBxW6
zA0&_Y77fLFCy%?4WPq`+3|kDG7Uo#xb$T`)*%rF8iST5r#gNxDcM3M;xukzmx*E2D
zjL>^Yt%B`4!N%>F;~aUeH33%SrA>4VTnB=p`V!Yt2vB&gbBXE3(T@oa1a@PCP33jX
z5fodU=K~pbIlayx^{Q&R;y6dE39zCl8IMipxxTxOcN}xX9$1mEXPrx-Gne*?eM2c}
zcCH<ti}zDxpYl96*v7rgrNPm4uA}I)8RR)tmDf?IYbv@1rYkakjS&$!RXWOJQyrB?
zCy%H<-8^sg0L`_r$SWQe)OtXplQ;#Z$A;^kV^7!Vy4uoh$Ln6A8(HwVeI;p&(!R)}
z)>_a5f0}zzqXMHADBUQwlk>rvXil|2R#IOhCrjxW14o5{%0vj}h_)IQYAIOG|Dj4p
zX0;envUP~o78%4F5$EQZIJM6z4z>nFeMg5*((ZHp>Omx~o^*{={CfVc*qi=`cj?j-
z^)eky4keXRn+qIi?43JMQcufW-_1=A2l7HcmYmfdTVBpxzmylcs#kCtws1Ii{j6Sr
zcjgr5&KO*}R_Cw-Im4lx)d3zw?)q5L!7gI+bXT4`x@tP&)hXD_;U~}Q5rhSqSj+_;
z!oghOhiWNkq)HE4kLQc>x*(5+Ev1eVZJNpJjORUhb=X#oJa%)eFUeyFr_xpH7R_?3
z19Wq&$0clVjd}G?k;gW#{-1X4`t|DcS_+Fg>J++G*klcIs*XB9*E7xYMn^5lL|aQ?
zI7JW4=F)JuUO`3Irf;R2VQa>w5v^y{pTmNV+Kc|I=$7-cj_P2ecD3)}^8;Acl1zK;
zLspgLYjxTWviz3>NdSy)uzN9tVrXz1`l5rQP%TG{2u+Aaj22EZ3%_gI$I(7ph?@%!
zp_D<PgqMt?hFll#PgNW(wpmz?EFRZOp@AM-BSeI4`VP~;+;PVp@TpIK8ZJ-9K=c~_
z)F(d)?|tuk$y@n%fA@E3k^lVXKaaf7Kl!OoO~%J7@VU=^#?l3$F#Nec|L4iT{i;{J
z3U0miR$376#fxWtQYJ-}a~3bJGCA?LXbgYcEw{k)U+@BW*0Y{PeV}*x8{Y75$b<fw
z&-@xn--Da>^XJdOJKpj86Yh`kf_Ylp|E1S`JKTBaUF_jBUC(>|3*bpldFr%D{2BU;
zhFDY@Klp<`NJdgL!0vWi_}IrjPKMyCS0Awnsz$Q_#ej`Vp_^{L8NTJ4zXd+?na`F{
zO~3ucU;HI_)0^G|PkriB;ihQ}Kk~yr4B!5`*AZSE%S&JSwd7fjQ4M%#@#8=K<3zWY
zzx?GCnSj`^ZyXaI4jdm}B_r<t^Z)guaO)FqWsf1JXlCI~7)C!GkYL0C_JbFB&P}v<
z=R5xZet5$3>}Nk4zW(c9HqrERWSG9^p3lI&_ugkl@!$>-=(A3IGJNfo8mw3(L<zqk
z&#ROq1P*3AzjD0ejidD8<uNz%df~!Fc=FSp2^Vg-k!QH@10z-5{N~?+TW-0TYC~X@
z0MZHTSD@it4>8neuX`8GOOFvM7}0{!C1_aw{ont6_`^T^BYF<X!L1Vy&`AH*x4gwR
zOt;+fc=*=Wd>ef2i(Wv_LT@V^9@6pqzW@8-?oWLh-u13`PV~iR{UQ9X|Ld<!yuO2E
z>*mKj4&L(ze*mAJ=9kj<)vtav$-+~f@)Y`f%k&$({>pcK7ku_JpMih-YrjTg`uU&#
zdEy;LgCI7XhdAfn{q8>?ImNMFxZwtP&9{9Ay!b`WC;1^-O@Gk1|B{!y1m5?)_tAGa
zR;2B({_3w%bOXxc3tsp_Du{j0Bq#VHx&8Lr;lBIsqk|MGQinwuvpZ?^+?2U`^<)R<
zPIlI;bcg0e$Nvsw&>>SzC|(D+VZ~Y`*f(Byh=K=TKlM{T1;6quze150uYUEn!gHVd
zJb1yR6KI1R&Ja3iy8l4vH5yRdyI@Hk+XaN`S6v{q3y4{Gv*`X_xTxuV!4_by`)A>z
z8V=gLm!jYy+Ulva9aLPuR}sV9{0(#fjeeEqHUXafBreXl8aB+6J%*~TKx<C0!DOJ+
z4CI|jJYP#L`b2>*tKo=@W?X2K4;GNeBk5E&M$*Cao+A;4fuqPqi&Wu5JJw~KB8A$=
zOxOm+Cf>wc%Y*M9;zrWFU_1VPZHsHdJ{++pDjq;%ia#<=vNwDd<2hnyY@8N?uo|`t
z4YrkGLlHw`CB4u0qZrdUz1b+Wju?Ap>|tf~GMG-&Jf7&9_Sp{i*=ttlR$=3M1VQPF
z#z?_N?ErIZQ{VLdmiAIulhqYs!{?5aeq+USO@-$XBY5_lPacbrQc54ehVnoLJ*2CQ
zCB#w-gz5!V*aqV{E|%AE)4`r85@3c6R#v}-u}7jiMN6d7=*oqMvHeKW4{3cNDMqdB
zO6NVN^uxYDc%F%_Yx=z3i4jQYsxpD;VR9xzEz09+&^2A*Ip<IxE1ol5H)KFVS*60S
zL&3&$<+;am4WG9*nP9q}CmGnQVP9loZ}O@<#~ChjNw9H|Wo|D#FLasBHIa$Jb3V9d
zY#MdQ?KrmeaE{({?Cc?WAd0s<%45`d?&vD>7?t@TGO-tIt4bb$Qdsd^>d33ibJjuZ
zX|Hsp!{Ls+dTc{vd9AQjI;zkOw`t0AiVlfP8|5h`>GOJk(+?eSdn1p^b9$fSfgt_f
z@jUTC6V3abzRy=gFPi6a*u!*_S_)2os*a*mUpvOeo8&wl9Arty7$;fIaOGr2(TbSj
z2eIs_$TCL%Zs^crM=2L1B^9=(ouvBWgIA2d;Lq%^V#eP9QX>Ej0FmB5Tdk#_n`-x&
z*4fy%e$HID7;~y|y(8HLiy?>Ctv=^JfJWdFokyPMl#(ifwd(;2za5#@lFk?S;OeUf
z0OgX182?pZZ%>Oz>Re<HJkSOU?Y4r;eCW`o=M2&}PM|Dn!X7ql=SS6EtY)kXOYS~!
z(1STFV1pL>!u{H=m&ZrzcYx)4Ps4Uf`x3Ui^n6FBL;Z(Su(v$-zoEmWoMG|V%G0LZ
zW1i8q;qSFzyO#EuJcim6+T>BOwKAh~DIbpRIEby0rx`ZaZjN2ofNg26=<^;8T|);u
z@8!hVufe9an)Vq>WAC;%<9M_>s(topdVuKd`|j|i_xwjo*Q#$fcl4gK=&0GV8$Iw?
zum#U^uLqlXzJzV|e8r~nnvy@wpJ6+*j`F;5I?AU!{?odu1Axjq)ybCqU3m<*qzd-!
zOj-Kp&hDr`2RQJ9_6nT0^^l@qpP>Guc->Wpk5n&;MoF}N&pxMAO*UMFZq~fe$Fw_W
z0DSN(4^BqN&(eYw4VLIBj2EVU!GC{((gZzB26Md7D2W^Mr#<ayWVk<n{sMdbK#v@?
zvdSK61`}8{Zr?l^+0ihFMrt&eqhazBpZKI1W^vJqx!6DVxzCc(5V7Eca7-62++g0&
zH{5t5(dpvF8{vTm?x%b4px{%}VFqp%&YjzEan&z<i4BUf2#4+%IGi7i@@TllF>5g`
z^n$_^K<GV=hT01kFIqH!o>HQb7E|%?LBo~F;D0|E=P{)b{uVJ{-&n5zd7vKL>xus7
zr?G}b)hjg3r2r77n!!J4JZ8`H<H_iMnXq6wqI>VXmuQQ0#b^d>uQ?-QZk~Uj^O@qV
zcrMD_{~kID4=?nfI(O~}E==;Yrb1_djMzxqkAM7_>NMb=`|p2XlFLU(Ca_M#<;#zN
z765F3&|heD*P0UKl}C{edy)k-$~-8>XQUUMa!$X!`Q}@w=<uz#J*lF{4HIqeyz@@D
zIvMK+Iq<?cgNF&|A$<PA1-N;l^XI3}_)PWi$AdJSYe$kkibKgWJbju&Xw1fF4;(8V
zXdvxAIUUF$f7a_Gl3T@w^g;gKe)}_N{#t|wu&2bWPq>wyr80z@d3+}R!RQ1$B)E4n
zy5qqgJ_l*yL&d|vS4}y5E&p{_O5Iy4_RHT$W1JT#hq_5cT4FR0&U>WQS0=rr5flDp
z*Lxv%UxvLagyluOF8m7g+2#As&HcI4m#4|$x0HKc5B4da^-IDhi<xqudD=_s&*tUV
zy8KycIPkYbul11OwwoduMb2M1BBSEfE63CPiDY;o@8uo7GY2@D-WgczdpjA4)|-Kh
zMB5!3YR(<4Y5tu|I)2<vhddiLETVTj8k&yIu~D9iZcoOTqv`jQdSb_^De!%S|G>VH
zd-(3fcJw00>4}Hl6d`lvgmR>#Cx&`2WA6CP^n8pGI62-<hu)EN2O1I4%NJAEttb2^
z6Ykygo1@K&bA9hPS2$w9JpK4=#D-%d-78+<=LOsGgbhi#;e^}dosWjU^XE5YU^>3a
zxxukNH0+_5IMVRwJm&PDuufyglvqd`)JteQMkfuV&2~B{KAC=lbY{Bl$@s_EruWp;
zH}<h1Y?1E8KCo}(^YK+q--q{OJ9(%hwsRXgC^)`)%-&vvjp>eb<#oV>{YqkN>y;S#
zMxxo#(T38J9Umv6^J?JqAc*hWgnKoO<zyNc(jMQ}*v=m8iQ17K#}iLb?hrc?l8lfU
z4{RAb^PK65Sn+<e5n?;?<I0thv0;QGd0z7YD7GWElL;Hi#D=3ga7}{$#y?x)c_Nxq
z4t1(ukckc?6IV}&7e_~&o(bC#1o8|IK(0P=)$u$?w1@B<4X9U6XpHK8i0zDRO>+rl
z!t)%TPx3nPbw~0#7M^2XZJZk$PCJN^e!EG=ux~tAq4YP%^K)F22kFK<XK(tgL{K0$
z{2u#ex~}Ondj6wf*m!<5(Hz~FJSH+~GhKHR-}YpzMY^Mt1$xvUO;|UROyE4j-zd+K
zr|1RFdLR<d@c?3dwBjh69jB1dxpZ}+JMKXWwvqN}hz&nqy^;v)h7RO0Y9SF8lqu3t
zSCe659knO<LU}!zbkq(F*%MaeG0F=Xr;nVD+Hdjm%H|U5s1-*5(OfF>ir)5UPbVFf
zF<P?BCFc1k`tuyg-pN(LzFFH`!Fh%A9BH<l<aI4P$G(-W>m$|!7>S@dis&ZT@Q?s?
z5Xyk@e9zwX$aB1qZhifEM0B|P2$ea<!X(pY{4LiGnSMqQF{C%9zOaUX)`y`30rRSx
z`kM|y=zw43F<Q?5v3y2(1&+GaeZWZ`#X*HV`S~E34_-6^631j7gOUb|9LF${lZprr
z&M2Q``N5yHxHz}7XTSE%&OK5S03!ih9WOIRG&_y!blGt5Qg3ZKgu?@rz~1wk_qlaU
z(S7Y!9OE`U56di(KTvyzs#BuRtKa5@9^?>hFL}%@-*%RR*dR_Znjb#Kx#J09&%B48
zVFS)n&e1b-?1*LO^Xdas*eH6Y$+51v>$M%%__R+7!BQnF-4xqeY!;eA&FB2j3v?xH
z9l8cbSC3ukGNY?RA6lwT-LHtV(Gt%Un>r)S=<4%n=X{W^mYZI&Cyh#~bJts)2j#hQ
zM4e%4c;3<#U>>QWQRyU)A(-8y$Me|AtH`6$wZ&%gs(M!sg%{}R)3-uPw-72Xal^Jm
zS1*qk#qZ|Q*kZ>+;8U>mc%A_&c|3J4_2`ODeVAb)#u;|Q*3i}JJZN2#12O?i*Z?ZJ
zwmM3&TkQ|w%c73**qpqo-RCr(_jJ^Z=L_?EQAa8Eo*roFnoH!A>i)H>rEpf=uR5yD
z`5zj2Tn+OY6`rn@ZqIeSm!#Mq4PEz*lY;aeW6$g_ktvnaz>=kV`Kk^8yfHB)UdYfV
zHFn6$q~utw!ytV4o#oYc?HT%c^>Z$HpM85bv}LICLZ55HasXWWw20Td&;Zun!<Ks3
z23OPq`t=GZ*XJqN(1Y&VzU|xKFTVD*<Q@E$x4eZs|IwQ{h){p-bDx_Gn{1S3!#jI7
zefM``PWflRkNn7wkP#b=n#h|Kzai*l)~2GNFn+fnX=^F4?JdBc|8sv1Uil5*0B?Eg
zTj7mwdLz8&-S2_-yyrcWvG$X2_uZc^LbBpiJU{RQ{}~x%|KsoYkKxX{?qbif>G>~x
z@eAqMKm5c0IT^kG`9J^XWJE=yFVSf-KtACKPk<l$u^%IW{pDZ&WipcD_|cH7Av2ln
zM1VD#Z=MXRXhg@H^p`JPf)9S^L-6ar{_EtShJAi<>IV;4Fz>pTmmm6}AA;Av{`KVD
zjk($J9>j#v7C!w8;<#}-xImA6G>-nwzxg-Wn7i4?qH`{<%5yz5dj9jD5C6yS{oX{o
zH^D#t$N!iVDjt-4_OqXb&wS=H<iY;p7r&Sczqj3X8|BbPkMY*X&mLsFEug}4S&yy2
z3M7%dI^(f&yv$cLJ`H5R!Edw(Q9IXEsoiw(0@33;zT<ThwkN=E{^oBIt#E;e2T^!%
zfprwV^;^FcUi#9P+JVO}{K78~UlprfB#u*mf9*f{Pe4QJFvSjfnIlb*9(ZBYgkr`6
zsPFo&@1$rFtUG|pRrLVM>~kg=`$s?i<1|-po#f}kANj~6pYJ9^HhTQ)W(>!PGWM7M
z@?WNdvcLVee~2P#H2*D=mSsbWwjhq*n8ti*I`F``r?h0l|2dMq*S+p_WcdHD{;MD3
zmrdrJe|pI9z2En}@T`f)IL?oL^rP^5lPstXefXhE@Q$~?9sbH+`70C^@y0j45kByN
z4@@}mP~tKdvD=?mQQO?`lfKD71{>VKE5B(`m=fg9yw8aZ4XTHfKF_-24*1ER{7Lwo
z-}xOnKtaR*```b5tHXhZVn_q5S0W%d)kk!jaT)iL{_N_0(VvQQCXb!SDzBrCy1Jk5
zZ$k&QAgbmoHf-3Q=k*FacA94$-4D4gTviBOHuACa!gc2q*X5Pn$+I|5nx{6F3PtsH
z`O1#h6q7!uf{@!p`O7gEJ{pL2*p6$Efax;=84ZO~l<Fg(w{(h>8yf9Ik=mI@SJ7Aw
zBYBzvr2^qQwf&J3UTBT7{K3AFUz{60OxU)v?wO2a*v(e@Ml6Jl4Yw&^N)=8wm*}NB
zknxbx)8Kvh*|5=@&9E!Bv;)coP1q)4wb;^@y*}vq6M-JN%Bexdz=byRiD09&B-30X
zY{1yiBluXcN5f9%#F)}&)LizFyyO`h(j5_DN)<v#*zxlf!Im@YqonPM?O3n@ds?Rx
zNq0f{(}A$_q1lSDohZ-I7!F(zRj?se!WMXJgbmjU3B8Nf^!xq3U}K&GVW;t6JyN7=
z;F)@*p=;jSN!6r3LWOOcFiljFNgjo+JEJS{_Snh9Ug|!Oyn1Y$hn!_16VI{z1hbHU
zlh+d-#iXT}uEg_P@jOdkJEYIH@YJv&-7&|y@;oTELRZATRh|c~F>$g(gP8Dq`i|t)
zuuXKsxk1KH<#{ghigW3h)94hsD$fVwxyq~2t)VOPd~kX|<`NYN-*)I4Dm}p1W0A*Z
zo-6i(Es~c$$t%q*!Dc!r6l^B1UPn2)3O3UNij8zi(NTrxERR>W!t-3qD~<r?wZ}HL
zIw}RxpP6-(%r%uq)dNO1ol77*C%W!MCRR>IvG+V-qk_P!2f92*x`@0YHu7pT{mDF~
zC>`t*i&Iap)5l%p6p)-^YX!GlykVl#2v@Fdset*ISEbemNR(J+Z+yf}#(7*HXyhQ)
z55QvVC<mBED)L%_w!u_WMWVPt(w1egG@n|K7dQNfTcbm?1^`Bhp=a&ME{R`()NGM?
zhleZxC0w6VvJq<~+JpJ5YhjW*l5<__1*jeVOAUbQef_{=4<vIOA)DnOC7a_&X!cN^
zT&;&~@a-W~UX-ERe}F@t#~NMxXxgD^tFS>y>#)@Bu`OXgBs%6b?D{dYQ7FzVy}ae^
zb6dLl&!KluC^hPO-pdtjq&<T_G^>B>@3-g4*k*KX`^mZP>j2O7`7O4pFMn@~UH5p7
zuB{Bf(r2Yvi_P)yOzjP};IKo}-a7269Q0)IEPaPl<aPF)m(S4KUlk|JC7yR>1{!%i
zz;Eg|#?$AL|9wXu+xvTTgyy@MJoTROXyo;j=U4KY^Rm2lbQBzD?_%@(?dSn$upiR>
z{!-oF#U4UehnT#D0H^8p%EP~rKY+fDYU%2qx1^)&``KbZo$za&0&qIrd)L7tz`)Bl
zh+^iLcTj-zuhO0l{7Q{xb&h_sB6J8HpbDs<jZ$ieRdUi7IPLR8g|v&U{iS@NkD|@F
zdp3_H)z41JPSw%KjD}B4OM?bzGEiZDS@}IKEOF6@Ir?$oc;k&1=^p$o-ouMgi5(T%
z;qSCAz)ny0I^$Msm?{LZpPvk!*bm~l@g~NE#?Q6nkke~39Xj9w7Y)E@7`^eP8_gq0
zQ!L@{(OVyl$M_sHE~>XP<xijf+<fy*^d0tr2OVe_$Ntff>=((bd-*dy3)8&dZ;=N0
z98G<MeI+-c@Slj0`?{Haj|SHpZn!8Sl#SQtBsCHK2FFy_MCga>6!GJhVd@8q3nPEj
z<9#oilTlJt;WKf(h)e0KIr8IBpX?zWa3g}x(oKctf^IL|be}sqKmB$`aF~umWt8t-
zdIB7THy19Pr-LPpX2AY9C;T9?w3)uYfi^YRjt5XIBdb~AGrX`3$By*(pV3<_%VIvr
z9KM12ypa!Hq@KfG3dlhyh1G7n@g|9WIZwaGi*w?#5gak$Gm&o0caF+nmB9t#6bt?y
z$AQno`%pIad-j6B^cUE-=NZZeditpsigH5b6X|}FU}L^T@t$SXir?em7q%hIFscBb
zjUJ!)+e*;`&lQ!Cz4JP0Uo1NBwcs%b?$}w_;4^R>_y=*|yuthMe&n_4Uq3(iMHA|G
zarIR95`yIme=!0aeyO@=v^r|OxL_lFi*2UOGr;l!>1^1c^IjsEV$+NL0ry(@>gHW#
ziF_vM4}Zt?CFnp2H}<0(MB^OS1A6?UsVw%1^ka|%uYKl2TS~RE*E9gr{|1gU!25^D
zNdqX=h5R0*Fl4s&lD;JB0Xp%R+YuBMpT&8E?<ILQ-Z!kGqyUlPx2S6s8|o`fPcq6o
z3=gc#`5@3LYIGhih^@jNIE_qduz~(QMDre_bP{s#hS#82)NU=gC-x)Lk<yi<n(l@z
zXq^>KYlJio4%<rTV%S2cJzS_LFdNEjY(_`L#sxVmY$=PU+aNNbbT8OeWQ~iIR%p!S
zeor^bVLM?P8*JHO8(VD2<<$()oIJ4akVSsPh>5xFNgiXU`eu2Jl<H|F6O>A&ILjdI
z=>EzX#>p$>4qXe+>DkEh%<@LqW3<#%L1ZGRJPI~V1w`#S*Rt?Da1M2kt)=UJiRWVA
zG<n2!G_XPzx<)C!4AoroUQOIL^!0$Y@3ZIumd8=`K&-J*N-%TeVY=$Uv|=~UOY$UU
z9#z;(56tD!uw|j^nA}{dbrk6Vl*e3jl=8gN1DWZrx#|JLu?OmTUh60+YTeOMULN%z
zo99|0T4CGZ<uP!6^-2dx`Z5giBs~xo^sDM1!B+G@F8USI!U_*)zp;t(ZjW?`fd`}y
zUOI-$kKh`Xqc=fxcQBrg6CFpYL83B2?^uz6F>z$Tu;K`dM5i7gYq`Kt1Vq;r9mW}5
zBAW_E5x^A{_m+0i-6+R9idK+!8}K%hoe@i3?Xm#}OKnBw>s<P?E7$+1j3H2-bG=?c
z<dd$<x;l#Uh8lLN9P26B=Qd~cICJhOhc$S$IjyVQ%dng)Ts^aCuZMMt)Nv)(`L;*F
z76qGk%F;E-Y6+Xv#b~j&Q46bHyJExrV<_onttJ4{jncslr9B_cUGM3-l(TxN*1{~O
zbq8COr`%%$n70cy&0P--cICqo&m$bjx9w6)w><CV0`Fm058yTzIHxIfbWNNw;xxKG
zYI#gej&<Bmwsgn+Wy^EX`5xQSTw2OqKWlf`pq0ml?p?a(ruIi}^1nNtEB1AReYGU7
z9lB|~f~@k`$V5fghUez7zMuy*mE4)=>Qd1f&rv5H%Bvq-y@HnK*Q%rP;rbfwTvBYd
z)@$fqVLwd|q`H<ua=PBnr3iB!wWJ3Q(RE1=boJ*c*z~=$R9_=Iy3O=JBX8QyX`PDQ
zgSTamZLtt8Upc8(C|N8TDyT^YhvA_&Up!Btt+=sU3Ui<^h@34fr+v|FCG@hY2_Oq}
z3eji?k4(1BhqSNU<kK**Ad6@XY4hQE7J`wuU=)RLsE{~p+P)a><grP6*{pE;uz+2$
z(FT-4oH<13?tAWmFMR&<<Xxj7*;t_K<u7{~tg*<b&^bs5m8UB)P!`{4)YH=|#6#&%
zLRiKwpJ`(>@kGOW@$;7-cmO{2sk<k`=0!UEdGb@9M21evr>#QmCXa^aY2G&Us=?0>
zKYW=&if_K<Cc<`3QnH}IQe}$`D;#!yv|i8Xx|h88^n0P1oq!@e&}dKN8bI?%<DV?Q
z#lG<KefQo=H34vQg2v;Qyy%4-A|;_j8wrPM!}GRckY0;N@V=2p@+eB2GU>|It8njq
z_fH1jTj1u&2(9_`bi+Fe-v^QPjqqqiMh7mQmc#?eTM{pvKX3Bw=hDNMFVo-ZHKLIk
zZ2T6U%kzz{hCNX@_#kwo9IDgruO1&$njcPW!$x^sV2}|Ac_F(XeCCD8SZ(=^9X2c&
zsXRj({mGZULMbq|S05px_>-UfB-R5+cQjn+LSJ->DOi;Okr~8#`N~ze|AC2@`(wB=
z(E#)9qj6hhGs;|9n&-z`P7{&kC2`-E?x#)f`6J$h-ZUL>Atu!WDkHtQq+w%3zv<8Y
z4}1lF|DErKSNum`4^MyEQ;jd9$RmygX@#<`;p_A=kPYYMX&xh%Rb&}i$zdMy6fu~G
zn$YR06lvCt<Vp?!DxT|H!W2r9=0{JavuvK%B0KDPH_!PW0J=H<59!Zt7_MM5-S6~g
z`_k2LP_O&fF*c#B#h`-ETQ7y*3AV-1LGcXSbg;E^3EzcZx%3Df)~v*E8|1(oAY9iQ
z_$-HRc(IX7-wk+BcLRLkODD1jWJA9dPg<z~T67fU0+$6X6^4!M{VSWpNZy`M-scf>
zR<l<t84U5DXwSx{HKo_clw+NYXe+7fu$Rr@nhQjZJN9fPBU)y!St{^IhE())<s!9R
zY$Ic%gFV4UDSp;0ub9g_OXLcur)mO<?jfU@U<)fv6~J=`+womHN^KW9gvek9Kzu$v
zXD`KnJvRJ|sY~`sSDHIqn35O%d?-V?=~FVgDK<<SLPoY7r!9$V#)f?(y@+mtP3cBn
z;&KW>*wOI6PsJcD*cBVCi}nYwA$ClAvMO|Cp7R=TFW8VSgk5s{uN^kLkgid9ir6qx
zuH|{b=6JpzX`#*0j$k^;=(?ZFqnB4LP>R^uD6FZIB(J`cSIP%(@|cP4%5#;+BCm;L
z#;`SXrFZDQ$Ro|Qk?E%Ln#Y1|FEYdL`^@>@6B~^U8`L}poh!fxb~9`px?&nC##ZJz
z(G}YT8}XbD0M*EwjmK6KKsMbxmoiytS8LYo`vx1;q!4+edL#?;9I;Vfdp5pBsr`ZN
ztfK<YHPizutw&Jn0mL>oI*REkdSEB1X@*8#H>!h1!^R%zj;=CSLYJ<Q4<C2qOb^sL
zipLV%Tr+H<qZHdHQCBvXb{x%7>ra_WXiS$VoFH_q<xw{LAsWxOqa5Q-H$8ME!Gl*a
zr3ylShLqXxg7e-|RiMrpSOzGS($wcV^5GCUab$ddbIKo#u;jH&q(1gCkGc47=HkEL
zYXI<A*3{0$t1q5g!Nm(3c={7oaM#n=p+wgM-U~I!x=20$+jg!Akfk_qfCnDD%-9E}
zt9ROXtQ-3OkgpQ`8YId!k&N7Q;T)wkgIwn;Pq`GDBs$_VWN)QwM%zc_Y`oKFSUd26
zP=Ml5>DwU8y}VP-mD7o~r?&6*e!)}q4PbTP{PV3nl+>faw<#VSyJDvYq*>p7Y@Tkj
zv8CetS07N7Ll{4{=%1~9hvE_A>7K=2;XTkjHt&eEME6<Wf=So?+ScXyS+Gf8(ftk%
z@U)_9GdAeSqkDdK<E!Z2%417cf4|bjU1!18wpVmj8Y<m8GBJ}!y=O@t7wCSfJf2}L
z&gP1H-XT4Z<$kYq;{kb`(PaVKAw2*=WBs5juX?GiOR=kc?=&5C8qZJFQ3rT#*gy=^
zjvn!lj_T0$kRF&}3$;7<k{$>xc8~2^<Pqk&UB`2+I!fEF>AhrxmUf}}rOEDq={w0e
zSR4_8*&b>fXSq5N0Ht#xx?>_5@KRpaoyZ_;0Q$!Zts`ig&!~diFuFICxbVIHzSm}p
zF^AU#qrKmaEmY9LVq35O+-cSEM>%!H&u9cbf8ho?*`bZXnhyYu==%%yJo7$w*y(w4
zdWXeI@v}eivhfr4SmCTD=CGoZEj13~#tL(c9&L{3d1z$6I6c3eK-DA(e1b)bYBWHj
zaq{XhZ79xPIL`}zrMVhb+p%>n^#o9C)V1TM8V*C_1FVMAl^iM{CL9m;Jgi1ILNDv}
z+6>ph(X@RTc)~?qZIl-s;+UR;23p+QW1d?4H$`jYl7mqd)KQCF4|34pj0XbpdmX1&
z3@tX5592vN{UU7mTwnY$!+!O|m@r|k;nj)A-+2y|RG#O|hG^gontEzke@?OK^M>g;
zBN@UThL|R0HEzgoit_5|yLa;1>H*DVr{7Wj;0@-noalRQPjtfrDtq~eVZVI==|?>U
zRzvf8_0UAaL<TR6z(C%q;aRa2Ij?nu9=1`cCNv07<HQ4mm3Z>&;?(Hd$OMi$yRl<b
zjy{)uFTh(mtLF!L^xJ|9O1d(T&z}1@wxe@QM=j`{8+pv*Sn<IxSWW&K9h7}rj79fD
zXD%Jkp`n>;t?b73x5VS}pbDG5cUs*Kbr&96ZpR`QeHY!gBKK_wzb;^w-%!`Xl}&7T
zvCJO-oCanjy@B*uVJelt22#>N>WM1GGxEZfLmM*Qa()N#P{;X$2D81~pUF@(ZpGk*
zhU)<2wMs=-(fgCCEwX_N3#l@%M$w;a*xMzJ0$N!S)NF@yc<&DL5a&RBlg~C;q{JwX
zMJmx-dBfh%lR1sjQ_$F^cFe)99xhQV-MSzQ(^&WUgmmu)u}!^lf)Dl{MvTSNS`Mh_
zUiJt^Q&<``bsBpJmxGmoykL_aXo<m#4AU#d#zsrQHV8IJONZ@y!M>JN3yurXvG;Pc
zv>O8!&js=L%}h5m!zIeiGO*`0j!o%+bR(W|eqQ!k;sbRMY+Ph@G6bS4LPR6z$UF~R
zG#GQSpiHf@c!>k+Q}!5k2l~Ww-B7UyJJNfXG&vI=#O$0rvgh<PHZeN#p>Za8BLncr
z?QF<iG0%mrgpFz|$n)qRdtZtKPxtKdXa-so3EdEBUeEnD%X&ak*vLke<rVQvV~@oP
zN!yvOnT_b{NS^+<-AWP-r*mmEc^}vlnm)5k5jLDVNOw_Z8l`~a*-L*bO4Je9^FOl(
zJEo3F;|>Ktc+MVtBqMkLuw{d(I&Sb<BGJ4lJWpaok0c*NHz@L&sNy@2{AJMtNGGbd
zAu@ogY$^^ev?HEpnddY|BdsBHo=1r^Ny0P4CRTKjiNOxR@$HQAII2vncx-#YHV8KA
zU5vxXXVe4qyn*S;@0`MOtRX>jhvc#0`PAz!?TKe-_|Bq32s@>}+gEx3XJWRwB-m1t
zC<XbwllQ&ItLlM06dgql1Y|8qx^lFo0Zo<ZGt)J|CU7Dq<~bKaM_o(uxMFM=fkB7D
z8#c0!lOni6dL~d>Dvcgn$=E_-JwSY;^{!wi8R4<gyCsTYMb>}nRkzK&;g4FhmkPWG
zk~tt5;LmobleK6&D-6<^x$Iy4x*QpRwB2mV?$ozuIRxio$z^v-B5X?qUP)EYz0R((
ze#*oXioy!w>?XODZG8`5-pZO|T_fKqO;i$(%n(XmXxT$lx#{sU=B&=_`AY51`(ATe
zs~4^AE!sTg>Ocdsr_;V^%_C9rAlS^SHk7&=n^>Ib6q~k_7p?3c)N_^eA^_znS4TEl
z|EptPEcvz-o3;<)BtyDP=^7StR_BF!1%i#=H!Gv7In4lYBzY{+{fgZ@r;+aXj_}w$
zHp#c`u?@;YS4+Y6(m7X-rfP3#d7g!CN+;#H^3<?t{&#$SLsxYA+VtoubV^d|P<4@)
z37-o*z(Ou?IgIbgqtZ=l+o`jh9)Rp5Z~ox0d3hb>@LcB`>3sRz&ZRCk-|nyxT_yi}
zbn;&!{<7t!2Y?z|6lai@=eT!v^D?=*ja@yUbXA_`T;vs_-CLfAP)DA$*hLhbhdY~Z
z8-}UcMO&*@C^c%fW)ZDYo7#KSsu`nAj2NX9zgkhVR#fdG#7>Obo7iHj6<Y;Slz#dC
z07s6)kvH%2-1l{zCqStIyG`n6!bP5asOk#Dpx(n5no-5|FB~-(oHOG#I7{d~;0RiL
zslR#-YXRmCFVP=>AoRr}#s<n)@HP<QrBniD7uKLKI8;0N@`E^e$%~BB@L5A*j<B%c
zcJ{nM{xsS51<FjFACxUOoKc5klZHR8mVzJCE}070YiYbKE8_(=q^SzcaB))WkTpKf
zdfVlAn<VDf@yb<q&$&3j!EpE_EvYm>sN^k)<;HLqXL8gMIC#@m|I^#9k6s^gVuI3p
zzAjf8QWv!bq7B}l=mtu!W(Jz4o-+)UEd=LVk#w}YXu*ZWRi1&);J<aDT(0?hPJJvr
z;(}OZL6Q~B<@k8o9k&qYFQOauR87&&gup}Q7_Zlzw`3E)xS(GiR8}|{N0yI|#E9_g
zEs#io6lA*uQuLL?givV<pge)9D|%V4bD;TiN!uPq89DVgMH~mLon`ny7LY@JYmo@1
z{*gpa8!+qM)Ihg=+|j5_1oY<I%&x#I+Ji5s^3(&m@5o3zmerHS#uSz8`O1R4zCQRB
zNrs=t+sL*|!C&4H-7LHyt|o|%w<O^F_c1Y{DW^b7jm;qVUguss@Er2uRU?2fzH>7P
zG0|rj>jj>kwHJJ$elgp-)%pn{KX<tLOCxch34MRg2`X;&H)yGQy@!I~ulfB*wi^yP
ze%z`)KzEa;L|*wgMz7X?&PEl%;Ql_mM#y7A%;M@Ju3X~v3}u%CXkKnbr17gH9zCg)
z_~zEx^?S!Yj0Jl$hkKPRg=W|Vfvq9S`=(t~5wto#__He>!Q3!<t$r>lq!8K&$vj)K
zKU&Xrl0tj_OB6T!SwkrXYz80Yx8a-^d8H3@@D@W%VOay8p7Us}aP2c=Sdm=bFCM{O
z(ig3++N6bXrfQUK4JHF!!Y_)81u>_gE^EDTUFQ$phhrm7Z<6G?ZrmUyzU#f^X`jd1
zcN_|kY8I)p`<Kz=`;=#b|GqM4g#M&=I~?Lu4DfUQK21hE$JcRXn10kTXS8|#+Jtre
zOUf&X_mSe)<4I9)CK={$g<tj7=5V)TVBb>BQ1=x=S&;=%e+7TH;W`D{drruJ*E4iL
zoI4JrZ_}b1r%5hk_fh9y{yH)PkiPvX4f^jY7_nXyIiBQ}3%&OJwHVE7KlNERccBG&
zC+DT-jQDG@=j4$MPCmg;>q;LgH2dqN<g05dSr~nAzgoRx*G6pH&s&2c6&FjZb$V|L
ze;-_>l_il>Xuwt|fn!BrBRTZlrI~(W2iwKVxKAT&_6+0oJ;mdrAxT00pogg@U}jt9
z?5@{Wg02R+4nuRXrCR`uQ|=78%IAIVV5}<F#ZRkMlp_bxR*A_^o24fhZyw*lTA?rf
z*P*KCzbe231AL+m=Ag<JS!~VXi<Ca%_i&=VGdk}rW^sb9Dz{+ozHF{etd}7mBk+Tn
zk}t_ZJR*V);XqUm765HAo#1`1dY&pLeGM6WQ)xjuk&olY!@Y*uE#+78RSx^nVn>Uq
zvIH=Uo6d*M^I}d~3$pDP?9jURNcN_)yz&mAB(oo=stw4#1s>0-FeqA0>!0tbUM@oH
zSVm7or2pC3Y*WtNdD&dbK<{-1_B1ajzZRc`*P%MbyZqU278hSG6TFcNjze_*_Zy<$
zc~K1-{cI&X>#}RA`!w>A6zM+)R%uO7Zw-40f#E_n!e4+D6`y2lbj$$Hd6rb&oIA&j
z=UXWiPUa1@1S+AkCH$iV=m#q6hJm#W;f;%Hx}{x|RK{%WDjst*@Jh$Ln$B1Nl|8`M
zFVIb$Ea%~=F>Mpsc>)mk4c)L=KRuTgO~2WNj%tsNWbnK{fE$jVk;wKi>k9m6b#N7*
zKL5C9E{DE>+A5K_ZlHiy`zI}^fMRai5j+Snd`5DXn?X1C$~<Q2pXlX>Uy%KqWiyR>
z%;C<*hN=sj@-Lj<MWk0SXV(7fRMQ_**(uZW{<{7XzIRvFdS~U2x@7?l?95=1mBJ>f
z552$6$TjBT4_qY^l}}2}nFg({Z}XkiY$il<PV}q9-BBgeaJRql?7XY3XeVO$o}HZK
z+T{uOlIpdC2}{LGB<Tz880%`au43q5$`%oh6wURR@nX5|KRse1fIYh|MMK*^PFp@O
zzpM5ojf?+wvAYxA?)!s?F<W}i=#QIh3_tgi799#w<FZPCIC<il7Or!6$pb9$*P=G!
zB+*{^qmQQ;8pu(RmJ2o8e`WqF(tZd%kRAXmTG}2Hi>^T$pxx>HdZLvH-YG^KhH^H-
zFoP3dIJCx)-meeb`MfEWClRM0>l6QV;MG<sd5&}~JBu*v%j}@mMCNT69g!>@jLrg5
zjG|s&tm}8oq<m)H{EJ(}Gt2(<I&`9?lf}Dn#{qY3I4Cka)NsjzQd4JAL~u?q$C7-5
zhqzWyDR#o^F7#AExXd`Fzn~u+Cl&-9#_#j=QeVU$m9$QXr6OIbC|iIuX5Es{xJ*w=
zhWR^Og4!L1z8Bn@HqqL&t-_izbdxJ3)u-Q@ef5+ptz+wZF^3+JAHAes7EuTwece0~
z8^`}9L2J3hCg|DFt;8)r(Ip%Int=AB^kEq)rg~)x(kxsDuc_B$?zx#x$Ek{aYf{83
zP5V^y4HK0CFO%<u>^1Y|HBB2i|IlrIo~&!N&o0AHyjd^YXO~aQ_X2iS#q(3fB0MRz
zcB^f0g|a?DG6I{giM8#SFI(}GZ#Dl3m-talD@IN-qg%!zht3WX(#l>fk<TKqKSJgo
z=CE0tGPbit0{uH@x)QO{tbuEgDi0!{zi6Ves661g2lyjLgVdOe#JFiSbYC?dj20$X
z7_ABUhtB>$pv>U7+B!u{7|g4ntZNZ#1yVvsI3^tH;seb<t2@Q0J>z%q$tw|fc}TSH
zu1(g!dLA#)7*WLM58-mG*qVQdMq|9#U5kR%W({U%ExNZBS{)k3$-E9PrFK4gu3r4;
z18;8=1px$z$^P$<$GCsHcd)DM$a+Y<5ZjzaCOwhrDQOdVvtQTuq^fKp#kEJh_m9+I
zK}k86u5Bcsz0E4q;Og-i17~h|{eQyQSQ(qHf9L<so&Jr5jfYVM+rk$r<n!u{MVW57
zmgpBXrM(U}d~atRm`jxzz3GNc6#mny>q0A$&#O1eXH4Pga9^B>LWv<%aSe-3qB|4k
z0umlQ#MV@EaS<v%Wf%aoE?OmLs$WLZN&onGHKX_Ie#08G9Z|AVFjn6a4dEbPxNm!L
z+7?6S0h&NClDq*-(bu5vq1iAT{M$(AzQ_pwZgmeiItcDFa`G+GHqcv=Bwo*W?m>e=
zD*W7kxx58EhG1*phcd&js%xJX$;%3oRkpyJP>v9vZ3WS>v`c@iRn$_~j3ZIE^ZGwT
zOTHOA7%B##6TrkKbmq_ho^TQ8Pcxqz6DLyQTqKd*;MD|MMRWXjV0wzhN}JxA-r9Tn
z;I5g`At$QZZT>1slfKm>(HxU4t5nqVpvY|0R}6R)HJdjuZn~3hr8MTK_#`8U2y-d2
z+08nwKHHGVHPxuUtj*Q=PN`xsR#kZzQ@c}&?cd8kzhA`TMhtPK-b-v$EEoJH@g~pZ
zAgIM+e{MA|m+Lm2tQ(OP>>2o5l2vS_;_W+djo>;phv}5{BZJX5YjcT8PC{x1EczLy
z8#ZfSjk#2%BRAqOIkP#uQe#il{q$o0eleuOO=Ru$><0wn@=2X-RPJ!T&MG9ti%WWf
zu*%D?Ex~m<S5vH;ZGF7?Upd}P^i|*Uew2enU;~ZCDLPY26F$Js?sWgr3Ub7ty5u<M
z7K&cY5q~^B)cV6MEIlcFSL#-kgds&J9_T0?$3!Txmi0}!SESdj+OXeujq~7>UVJuI
zj``kFT7X+eG{tkm`$glCaM7}~nyA}+vhzaw&&>bWN5w<MI(F_cjz<`aXnhEzxwpk6
z@=4Dq;ZDsB2s#Q-bCg~N>!l@Z!8B-{qqPB_5t@xTqG5mSp`#bAs=y-7ee!0UJVD>n
zVOXtA82y6QzmRzv^$_jR)b^Vbnc0Gl{M72W{`WYT8pCb&UBc9^sF;Mvb}@|aU6gxH
z3w@3EST@MH5GawCm3}aJ8D5Rlef0~)zE{xK`&oOyH+E($ZKFXh^Vyo!okGf6dmk(C
zKd^*&vAedaMU-Q4><e|hQEXA~1)%v6Ek=Tl{D&L=(PcKJv$JZN1LGf<iD4+$o(_pP
z(V_xfn7R0)oJYQm9HphP{HM;PM!X}(vDrf5u*0NCoKgOsoz1#D2q<N1XcvWhm2n$<
zjWUC#`K557Q3Rr?MS}5Jm2X~&g76Q3CUMLbB$iBF?D?hdGeQFtB8X|v1W*-Hnw+oO
z_bb9qcb*Ldg<Jb9k6oQ_IE$dI&qyY}$ZkH%s40}^Xli5m&^x6m0@YamQzl?=Csl!Z
zLu#7o?!~4wXJ#z*dj9R8nP2q_PHti0CyX$kwuhbTKF&*pcvJ@ReK-GDt)u9d(o_T$
z1d&=#*6=2`_w5n?SiNdEziZsyuVnt(=0}%bm!TrojQHK}&wQDVG~QW!T)SHU<AakZ
zZu}A7x7)#f*V(Y#<@cahnuj&NNsx%`lL$Gz0Kj1P^BeB&KmQjJXA<yg{6oz`wn=Er
zYEEb;r?slw3O$|wWm`wOEyr!#w~Yl=-`6iY=9#Vi4`wpD8Z^zfPZp~;1$-I_<Mw&u
zBlUUOv!31QTn!#AdMnxi1v)W@VzO@4nJo%d5(5Q&dpj&Se}}h>L|`%7GyOG#-S?N6
ztSP>Z@E4R5X_yWvl&72HlS6x?X;&1)!=0}z{7o&uZJy}lx=QCBM#?DsNSlpC&{zG`
zWq^VbTKqTfeaph#G>+NtIryvu0M;L(gFxd-&1pmgME(~IqBxv$jB%pR9c!gzFtF|(
z)PClL8D)8+HJfe(r@3}4oniR@k<Y+V^gUw3OnGpKE%u?@F3gV@vbn{SP5BLPpC?%Q
z{tu&b)v&7D;U=L8JBsnQ`uX7lmD$ErBX0Lz{^fpN6|L+Gas3r>f{jqVgQ#iqRf~tf
z>(Cd&G-S~I1}wx2jxfAqe%eo%dzd<~lebi7?z?o|+vqQeUWtBCKCnpBWDcBeooF<t
z7bC3h{J_j+lseL$VN>5nkHCt0wtDT3Z7vfLD{!Fr0Andoysi;@s(9tqB?nvD7RWof
zMQB)ZvW_x1r{seAY*~3Dn}aj9jJ&tXl&q0r!{8TYF9=lEC?U2yHrkQ2wib0EiC8$0
zLM~%}*#*v`AO}`E3OJa`o6S=~qtzUku6F<qVU$nZg3*+-0Y#MdqbG2H(0P}x-G$oL
zhm}c2#E7gIiPX}fxTb5+YP-!x{<c4PHj#<DJNhTPo(n}@Q);Rw=Vw7_=3dQrKW~_7
z0UAFOOYNGLn!qXP_*8<*{IRX@#ll?k8(yaTLd^OK*x|8s>gSRF64Fm^XY5%ciyx`2
zNM8TCfMHy!4Ddfjls^>Ty=_g=VKnimM%s;rs)u6hx&j->)nnHcn^2arWbswjQYrpy
zPM0%uE|b#z)1%7>bBq0i!Sl#P?tERc?uf6?WYPl@Bl~)t`nUY<-){bE_9r4*iJimE
zD$*HUIhGkWHOQ!T52vD`dFCQS#SH?{v2?fqS+kt;hwf&+F*$!2nV`5+`zdB_du@9#
z7Iv}v_EohtAfyKY20$Nt#i`jvjjEe}FvCldhWrQrRQwP>uOI_71ikDX8Rz4b$~>N5
z)QY8xr{}@wzvR<-C#nT6IqKyN`v%O&BK`C2!Nq}U3}fbwz?#~6&ABOm6-ZPTU2M{S
z=fl$KrK}PU-jnE*dbwq^293aOi+qj{0_)-KKY)=n`9&3HFkKk2jjwnvJ~jS6V@S+I
z5nsNPY>Fm9%J1ibp;1;E?iN9xzEhgG@P>C$jFO3F#wQ^yk>#%k4ED@_l?^Z*l$+!U
z%Z}$w0Qe~tg=}*H-`F2?c7q@z(PH82C}6f9T>X}>AeQ}6jexH?6Sc3m!tJl4cZ=&a
zgwd>6lrkOV%N>F2H))t}p7cd(N&FGJLHDs1BXl2Fskl_fIV`^mo#KzqbFLpYwl%lk
z%mk<&eGkwU6?qr7au!7XGdz6=;+-rFta0h?0t_!zY#3=gKNDEeQT(rBzvrFy0#Ywm
zfB1{`{4rp-q;i}nd%Iq4M}rS6=l#U=5<}^;6|%O2Sg$($4-{pv$8*8&c#Zp*{F=It
zfU^F#g`kBmFU=U-&dg>AkIt{oeqbUI*!Mz)n#<)G+rnkq5%GFE+VBcZ^Ns?D99r1F
zqu>mVe~i5otPO?-gC1M%=A?TQk$oJy@v*oG`dHiTUFhKnc)d|EhDh3+sP8jggRZq)
z3s*T!K3_+bln)jd1F{H(8s<GNST5V?RqQ6J%WkB8XBpWe0FK)J?_k|xgg<3A9Y-P~
z%Vy02uY3Kb*H{qdx`lE~@z2JM*l5$qrfBrc^p`uXG(+hPPL-pUc0R%rCDHW?+PGxG
z()LHThIE{yY^zaZ!p8Ine<jD$uC3EOtUbq)4SNsD_^f1>Oc(~ZN+$k^Fh=F;-p4Y%
zz90BqoIF0{=&))ldHd$wXWWxn!)AZ+0Sghd0$07_w}R@CpBYUqc4bl>r$k|-DD8qv
zRj8MF357CSj<=>SU-+sxT#-`F=9yq5BTwgPY7i>T7SU`HvstY|Yq0q=fMVj^)aOBq
z`Ia$Dyw_x$aGYx#lPyvYa1>3Kt<F}5oqtl}Ie5W<_?>7!`}>}0sZ(S^i!+0L*FU;2
z8f@v36R{}K1;?S<`wUy^NQTLrs>wU*kN-ZMHcGn6sIJF0W8Y`1UXP#Tw5F&w5=jhZ
z0w#cZ$Hs|-dE$tmte3)f&_>~v`RVD&Ly)BTl#r|f=+$}m^0DjYMM3&(PEpg_r#C@L
zN$-tK<jY=020%+3n*GtE3#OFyl25aB=o-uzL>&~H0nc)A5QW8QGDlzP{MdLrc;I|#
zHm_v7a^{-SFV%+?ly(D*Oti|pV{;X}GmH(#k<E}aK{kbh8I3Nfl@@6TZ8WgW%D>#d
zO$iTM<O|tV9QEcv)fDYQ(U0bKDREDk1_fSqr?lnNm#n!PS|@Ef-I@i^2qACYT4xX1
zkSM)M-88+m@VoRl@dGzk17VI98@eI|a=f|IN-(aTCSwIT5AVYi+ey(L!9QBJ_g8H9
zS1-Mh^#_#IxoJ2ZNiYqDnInfeSRcR~9H-Yy;RtLo1Gyx4S3ky_-AobZ5w`gfRcF{O
z?CX@zY9J}J9T_HL`$G~Are>#Kko_S1pLBJu7K8GV9Ptx~!xMV@*|z%DxPyJ5xk3)L
zVmsTZ>qTJ8x=^YFusW*BW*No%(K2i_OA0w2oh$msIxG!17P&-wNIggJ*i|YgT3qgB
zQ)%o`1pwX2FrnzfU}#PVeb#|3CgiRpMYR&?x$O-7S7CeyC3kUwzD?KNU6*TLr8kzT
z^%Fjg+yh(TbCjtw=tkp$ruWkv#Sb%VMzX$}o-;KRcfp;PN_*|Be9)n;@3A4N<&_%w
z!|P*p+2H()FLuqq1*b`5;C`%FQ=13~HT7GOE|?)(J}}xqae$gdCk?w;Wzn0CKpdqb
z=8h|S4vFOg&v@`YiRmZrxXLwXiI2Xy7y<Q&krF8b$#b9`eL3dP2>CScQ{vMpKrsQp
zi0oI3R_!DKg)v~F286T0U)&Tg6x_&W3-+fEbWNE(w24iabP>8Dq8TE`mYlx{!ti#S
zufOye<0kGm0BlvC-l%A}xPW&=@ec;$P7EiBi_-RNV@ZX1hlq)gmjcnAtI!O@ukgfJ
zq*YjsmWB+_=c<imDJ%&`dsI}r{gEF!73WFfo2pop86_ml7g4ijg}{EuPto9ZR+jww
zbfD~84auE-+mvt1s}T!(e+V8s*(Zxq{YA$82C01ONFSPHb<&r|N0K0vdrS>s-=6j+
zBU;R|xr>Fy*5c(XHnOX?&azj17;;Wo<Qdg!ARK)^R<6J^PH&q9D0}X68Csz<RuJr;
zWcvvx??pv|#-_%e5b*o#!4(_g3ZS`aG5aG2+Me>}9&aFKMBR&&!_?!6FDj0U6QCbZ
zDnzX=S9+QFp~?hPMBh+^N_E9%qj)6(!h=9#{Z7}C0a!HNLW0E;bSBfs;&MPz3FyBj
zwA<8~rS*}6#(Mm{Ak$%SnSn?p5&fkAJBHJ(3CmMuF&|n5;h|bCcTXjr0M4&EznDO#
zD{+v@FaCZnPES2^>dA;bNAEXTxXQ!{0x{XvlCgh7LimeL)yyQDJ>r*AWV{%D5(}AX
z8NLLRh*Xakh#Hy7;jb@Mejl_6CT({)pDWCLA@{r`;~2FZQS#S#*<x^Sv4f@ds5w$^
zfjs!j4t;~gA<Rp0rRG1q1uOJzm>$wKU#}>hlVCHMhE(%pKt*!V*rH^lLz@F6n3ifk
z>G_Q6U|DvS3#?0>dC@mlSjQ-_PxQ9*15Ot0={RiXodp}avzzU)Ml8^_IW#g`C++}@
zCQX%BOrbufKgN4tS4m_KtJC`o&bfG|uu^}blsnQDF)%fT?n9fngch_5OmFAD%5;Fm
zR~;~14okoNu_fFK(e<}>Ga)rMF@imK=!9hCT1P><8W-)IuWEi^jZ8Z;XoXfH$)nmt
zVH5wIi9cClD}Q*47|avqI}25t1uQ@-Q?&@sIAYW@p``SOl<EwnZ!_J$5{DEMM4?2e
zve64w4~`}!{iVq>zn!3$v-E*l%8Yl$F@mzy71E(OQrNM11@OGO*yYz8Qpsk2?Y9{^
z&e=h}YicoiYe?$%RqWvvM+OsK^YimgWToF(=KVw7A7G7~q@3<Et*1B|ODqkB3q^|&
z|FcB4^_V?J5b>p2W*a}Im78zUt7IFM{{bXsE5m$OPkzTUT8xR$ujk}l9r58$hI@jl
zO@TfPzMKu)&_iclp$3DApX{>Gbd1_^Q8rWY8CDpY77(7H0ZXVZm#fLp*in=P!o)B|
zN}~Pix^~tel<Za`wwH*?!{+KJjKW(Y2D_7iLHpxHO%O<wI>QDzNSJYMTudI6U*xI5
z@bx@IgW)bFm$JE`ik=vS-l(586o$P#3zxGBI90Z2r=Z1Bz{HqK`YMQ|6T2`PTc&JB
zpEG5*o!wJqeL!oA$MUrYTw=QvPE=27=+D9vcegQ_K(y*zH|I4Tq5vrY@O7YI(&4RG
z$~Je15G8EqhX+Y&y>@G92jX43Msgem7d6vyne#8l{LT9cT(ULWf~$Nv|GxTyz7UWv
zyYcashsneC42tNmRWK!vA90XXn?;VU+p9gF7^Pthr+p<4Dj-4^ZB~scyzT|BL2d&$
z92-Iw4mbQESfKyeV13B^_~rruyLqCGXFg&Kt};2JF?zAm;E>Xmb{I<+rcr<2t@Xu=
zIk9>sM?a&jlb=Tki2W$VVxw#Hs4WAtY>^0cK^KJq?rGnZ+rzJu`>%4Udkh@p(69d;
z4(^eH+zsvWlV?Q_qQ$BMY6kWqfI;wCtWlJnY88{U^&2O_U;c1hk`4e&lQt*{>jk@k
zD=4k)8ErYB@#?cvJ#9wNk)kKD<6>g7H_z^Y>==?d{UFAf;Vy7oI!*^%##i-;ZfAQt
ziyq&SPQ?AaM1CHX0@2xmH5m3=b*1s>p}CQw=a`HQ!<|@#p<T~sTxMHFU&sA?FTob=
zX1KquXj4C}<f@{(v56C?Esro0ySrQ<JB<s1n}V>Z<kLKz`a~nR=arBJ^8!Ixj6B>Z
z;}fd`+v|p4595l!vW!mis`oqJzkGLCBVl+k{4kZnippL5?Wis6#j@9hQhjmG6px?U
z6IZ{&oPQ5G2jYO=>d6Ps*})&36gLsvm0T+;{Z1jWViiwV|9n_OZp6$&6QTu}M2FAl
zBIsNZZ2>}*iafH2H`RbYB-&@|E~@ra)~RjOS05fpVCo$gU=8jaesm+ugXDnQ*5Cgw
zM2oqiGw?rsHc#4VCvurYiDcGi-O)Rifs-8&HB=wcQ2h6S5Jc>v0hNAh(iHrWu>r_}
zcD!mEb!ux|JpFsMl#WZ>wJt875n0W->9_7e09P~t*IYP@a|qY>-@st_2@n_HSi1cK
zeD58s`=s6J%ikj#jIzfq=MI*RK)Y=P1+>S_c{DB}xB822X^RUY_enKy79v(AoQmj=
zG;!cAgVj%qBwdmNvin7f4f9(rh(q`bi|yD`aV*i>1wUz?#YPl(cE}1h<lF0Xg0po_
zuk4Tb*HAMeNmewT1OM7sp*>2scecDb5cmgaB?IGnv5RZh-Qbj2TT2nSAQBvnV;8d5
zU{@I=U3KHH0h#gpavZ`3nSUonUUBamqzA_%`$TDMTj;5Ui0nG5jxRShaqW^F%*78Z
zp^}reI1=XC-0<VCe=fWa$lmxN$F+%!a-5n2zxe~~j`}mTUEofwsZkkm9KsJ-(ive&
zH{agY7vJ)PEbRg%pr@u`0%@P`{)g$#d(xT4SoljhIQ!s3U%j$4?q@}cX0#ApN5A~P
zqTFq?m6lf$my_)P+G9hhPyTcNR2_*;$)m}jRX28A&xuIWPDps)oA`}u7}#2Fe_A0-
zZo+|FgMQ}V+3P}Z>g9t6FE#h@rM>@x=-w&WJseJ8(^O53<J<VcVmHHm!myvDmgxJ(
zv*_(1E~@wH?A#*|A04tnZ$Mu$EL4sOILPPHJ=s?S>0R;4TE>Vwg3rq}%KC~SrPa-C
zkzEue4kril=8#DwTSKvuTxjH2D0Ozd;;(0~%-yP^Sh5Rx?pTk4(S&N!Ce=Q9TW*;K
zss2|{BLnNnx<U;kVE9!V!*R=Z>rp9ax$}2b^JgNm;ht;I-=P7g;m<kf?X$<laIrXB
zG@R60kwBcQ6L-i|%uDGT^#>dXQfrG&3d&OwruEhVCkE@_u*d^q{!9R!XR3j^u>z5}
zru2FCq_b{3C29wbts&cs-cLu^XQ^pxyoHWNp9IIi{Y}M{TeE3-9=qHY=ZaV?Ows55
zuKpG+_YCudL`opj+)gNtTLewDo3{2q@DoQC?jnQhrt<NpkY>jMW2G26mCbdN*W=29
z#tsw?pZQn(BccN%^cMW~384MvNLzg?rr>Dx?K-7Y#^=lyVK2l4oDxR1lZQUWHki|n
z+!c+A#+CgnRbqvkW52b;3!{ewl^mqe5v+Ix=iZ61rZ&oRc{yzL+aktpr*p``K)GWI
z<4f4cN&OmhG_57#14V9yj6PHI8J%DAU^i#>-pVns4!d|{4PUT1K2S3r+azAXs@<>S
z0k&r!!hBB8`;3-aH|2?;q67d*300aa$qC9CKi_Yyn9<VG5Y+AzNwW}<m@F%KUk>Xi
zWv<Df+yxG8aHI`|difF4{8>7*Smnbrh5o%KJuXCTnGsbei1<+ae0Glg)?YqQ(7Y0Z
z8$B&)P_3l2LJN;L6jN@2ANvP-<7s5xQ1qRk5``&6Pv>@=_g3at(XBM{@AC~=vid*j
z8HHgCShNOdZGW#`+pJOzwovWnuPKOVXDmoH(FOftZq@HjkyiY-CCbp9r}59XjP%=O
zSAc2Nm?TVf@<KkeYv&=Br1+l6AFd_#4u^t{&o=Mp#d9T!&5sq|6(;$?$1}GYi)Tug
zIaU6ZIx(wj9{T9$JAiwOo;}uH+A@#?kOw=A-IA_pe1MJkx!k1sn?ou=djd_DoCy?>
z?K>e!b4{XVOl`v&SDsq5oJpPaIH23(sb7}a1K+~dY$m6-WFIWm2pN5Ry~0Z<#R~-1
z`%G{d$`m-VLUq`a538jzU!7}mQTqP^V{>Hh?-L-nL<FSh3>_+lcb3N%gyxy519Sg#
zO+-Xh@cv|PBVJrjVUa%S^k?PPN)ybA4`kEWh)~LddxJo7I8Hha4E@Qh!~>>FmFQ4|
zy*22&QJD>D8v~XTDBJN_L(QxvcB<(p(?3=BCd$|YDGc=GerbuzzmErXRFOGXL{*7n
z%B^8@BV$wCPt=OA_Z{Lk7p(qK;677)Kx77q;j{Vczl|2%F$ySb<<8OcE!2?&*#my)
zHuAzMD1CF=WmvbB?$U}yY%{TW)l--)`C!bhMaZ;Pmu0m1pn$zcu5|`V-;U@CcK!~s
zu`KM%Md4SQjF<kI;z-+4>8(~s8FFMAC6C2rP;JIFEx5W8w}qz?5aGvGq0ha}UcZ*q
zsL$O>-7nku-QUV;w4RAR$EqB=;X>ac-WyGFzQazH2|U}MZw$H=%wV<RBOS#0%WBmt
zg%5SKtz>9%HdVK*z(khzl@6+pJNDXow~%rWokWE8IWb0ATKzU=$;lWkJnl|}8fJl`
zywuG*iVsjdvWH@HKN9rddO+@TW?O5YjinE+Se{Qb9Ng@)*xqPFL0>utsPlv$4TfKv
z4198+?Vwkr#c)8mhHM_<mT9aLT8lUomXd&Gcq=CzI?PMj!agg2D}*_-`t0?nsY%43
zr$v(72<mXbm=9LjGIP?BK07YY%_p>LjWgndt!^bByb~cFvtR1Ws@nwz@iZ!EZ%&^q
z4s_p_ZRwq}VLw>PQUtpLd0@MoMms{;Iu!-)%L~}iF3&0ofDNiaJa5Vq+0SbL*^_?7
zFB|~VQBJfSc6XQ?kSBH?d!B(yM=Ls0jWb469hFYlf$#|mb)UagvvaPk3Nj?&0+95P
zgc%a75nVW6Q{XS)^<iDeeAZFvXouarD=I_7vi&M#A^!n0quk^-S5!N3w&@1PFAmY#
z!b8(-R+$^5HlE_>1ob<FXKfj*h3$xmce*7>CjIT&jmN}0GNs4kM{~Xu8F{p=ZsB2=
z8tzwZ!Kl5e1S01$!5bgq#gH$G?elCeR%4>fYrY8w!XF2O3dsly@1sVIUt>5@9?&@m
zRQda?+G6u)WVeSrVTh$mcHt^5rPmOt?6?x?;mu>DeRjR;FQ{mCIP@^cp1f7r9Cm>0
zU$392PwQi|wO0Ba_7HP*F#C=2b~X+bM#yWsv4QKfJRt3wnItoLFp1%J^LXrhyr{@$
zE0XE9tfQH+zQc5b=j*Fh$4EcDv%7e?D*%Un+oOuVrDdXdU+F!jBLm=EWr*(n{i;`4
zi8TrO8thIYb=SDVXqip<IF=F0HEqFY5%U#P>#i#|atV^LrWxXq30+T9{i0Djt5(8I
z_8+~l!zv`NOP%7U35TU$K4*{H)`?en$b!Y#*qprxwr4x7#vyWp#uBfQpZ&nLwkz=*
zcKGZOlWG_PN7GFVIeIQXZ>Jg*6F%p_4Wcu@>`j>7t~Pu(DH><T7Vk(2)t`IlD3p&8
zW?Z*eMxrA1aIJ*OIQv}=yeJICrl3Y~$C`?G{UdJ1R79$z_CXe0O174ze=bzN^sz0a
z;dsH2y8GW0!uzh$5MXEuX59wB_$R;vL0p+TtLV84NRV?34d2NgEU?c`7#S$QL5nEA
z*_po;3Q}h1m?Dw+|BWe+t8Qt)X|x_N=5T-NwyfE-q4q3Mnf3_w)K&36fa9AN$rjR(
zIC|^<SHR*DB|*Hfn84*p!};eavo46YY}vaXwE>F6x6p#_!MPp#uP^JsYc1c+PYGHO
z19r+3YE&ltb1xaMD(C*HCX)QAKe@a9Jm7DO9xoXgGhf>;n@_I5cVrkS`z%pHd&|g2
zrj>+b`PtsWnNq>>e++g+v!wdC%)_swtL2_CyxHi{E~?BpR#~P2hhCY`ydiddFS;%J
ziQf*8pCvlaCpmSniP0{fW8YEA2Y%JGyyccF@ulb+_+`ApJi^nnmDS>@eYfr{u{Dl;
zs{j1UNJXs>btjVrz&i{tK)LjrrP(W<@5e|tt4V{fJXT97G}&E<y(iuh*!?G@f3F??
zCZigRmZ}aOiaQ$blUtYe&JdScE(eZofFNRM5#9IuHT9RTqrrFInR#u`J6d<Q{Wo$F
zBF@P4#q8L|S>=vq6augyGa*x2I~}3>X)WFl4UCXqE!DkaWZW~EfIMQ|9Cu=P3g~80
z&Gd{-I4^Qf)SFL3*k*pc(VKh466k$zbK--W_zpXA=p_1Z=>PiBU7i;i^q3QruBiRc
zA<yl>U*K^=r+2;-C6t_)d=2xI+3R@k6BLA|K^;)Jbew}MYnj1{2)-c>kxi$9I~+11
zW?aYeDE-2w>f%~PIlJ8-mK1w`7Nv4ID%xr-COiszRxA=(W%K_46$eu3ZtkX!ExX;2
zq@&C~?TnzeDJn-B8!VsVvsi!JGLqo05#MgI{ds&Rd8M4yP^fk9*1h+S&329|k66<`
zeWTZ%L1cUR{xq!swIh&oTUKFtTSP3q*R0mP2O316h-3>CL)c~+9F*=7ptan~mgTc|
zItjh%G?xOQFK@G^^8rN;491tL^H&w%^Y}MMedOjb-tfZ?B_K++fMW_0#kPdcIdtt#
zkI0Gt+&M<)p6@AE)p5P!V4d7&srVm|^30o6Up(yRa|JmpsSEhA;-l!wd_`q_0ebtP
zkf3c{#ZZvs>ojWoZTs(L_-!P)JgUz1B@FkMW<t+V(Y)f{YTzN9GD4;q3Obj=>S}DR
z&DFnZoVbVpZY2U$h*Kf`j5FdMhKnekT-CdKO%rok!fr$FFci|qOPoei5mBYPLMI4+
zH23TAJj%_d7jqeVNGQDVC|aE%>F<sWBj{8z0bMq_1pOee#J#1U*^1D++1v!=eB2CL
z9CkeyAI0098#S{7e+D8va$`vjuMvgd_iT%<1r<Nyzj>zGER9lWHx;o*I-dNAi1DMk
zPCLMvhNY3x2i|=+3pB4l{YSWy%^hCZB+Sc1XIo89>s4v4y6K{?FdZ}3T3cZY@ctpv
z_=i)>MlL_!`fxFuJjPr0Z>#JixpmbMVCnjWYVglJ5!UU$P@=5t@adL+ju@#Gh;DT8
z%d8tl*sFnP3-gWsPHGL621=osGKIkWieBvb$)D*7bL|e|u*;S?8`2jU@24}Ciy)fQ
zK)LF-2<H`gf?Zj!K*9~*wf27t_(i9^9nu$om4JSkr~A`+wA`&oD<AqZjg%fZpcHww
zX}ID!R%d=9DHpnDg4w*VV=y@?x&xlWwEeu#R&ZUWJLOW(J0t+x{7kOM1U7f~+CX&*
zkY8;)nc^+3Ny#N)F)b`V*v|tDT1fs0h#Xej^eo+R3l=D?BG?`=e{Zl14*34@;e#xN
z0N-2$$0@!ytmXUfdi-y_fgG2qm&E6ZnLEE6GftQ}-WWWd*<i^F1;Pzpl%HiK$hk`l
z+3G$-3HlfU|60<Cc!&)BA`x`g=oRv(VZ#b-Ei_syP+3=+L$)Jh=qvIq!+YOp1Z`7Y
zjlR7uyWhH!H)h42hq0@kbLfgpW_+C@R}ZUUD6ao~>MDX=n~Hv1)8G^tx_GPP(h7{0
zi=hjveK9w&Z>fJkCHU()-~L5<>W4jdP)O3C-6Hm!J|X2wjIGQpy48Mx|Mg}Rz0$J=
zWJg18^}{!rh;h!4Q{`jl&S;>yYYwuL!q*SY9oDRlzU5RBP*Y)8^&0y?aUyq;+~bO6
zQaYB5eL_HMSJfL9?WHA<C<rfTd&5R(wRZ)rcT4?k$-JcJaUW2TuTxS7J-xdGc7aY2
zl$iUUKU4)i|JfUjZ)%io{7-+u8ZC*rx6r_eAe(rn6N-@IxD=>|EOAdN%kA;P0NEL{
zU#O1);coj5o%Ijl=g1u!JeJ0GJl{?1@nd<TSIA$$-neZR4`}yOTec|NBbag>^~+o;
zHV!=PTgPaxES;PnZ+?hZU?M~(*#j{_2Fx&EFu00_w)s?Zc@F+8^ND3)QZg7}&cs2!
zdP{!9Hx-cirho3>L{2R$moZFgp3}c8-MAN408zVURaDpwTx63iURd4{%F&6!#gB}O
z9f_F=?tMf~kVSL(O?~o`21VgC<LVtIV~Z!A?~r!?cff-kyaC{dxL%_BSTe&zBVR1Q
z37Z4B3+e|K?&)fHS=zyhQ4v4}(Ctmo9fR13s_y4A!4e;XtK6ABPBV`Skygv`SJ6sU
zC73*~?Vqc+F{L9(8aQHYKsTvW{Q^&t#7x_3e-Q{?Gftg0c#ps>4q4jbvm!lTj5D$i
z^zAI%>yb_4oPIWF_@L|;cd4%S&G~)xf?s}$4=bP%s5Z7>f7D)f%UHTo=(ghm)MvcC
zBxKMc#KBvm$4<pOB+;+e?!DPnKM7M)D~+LOiC*kM;lRJ;iR)J<tqeUnoz(+G2_-Qq
zVW^*%bf_wH(U{UwXxV}LF&YVnOrzRqmyGlU*x}Y<<Vl>nPl%H=SBMxkVmikj^fcXy
zCWxj4zw=h5%lk(b2`!M)9Rp}i(I~Qh!WOO#NI(pNJtVLMVMaItV68gqFYZ<T_jf(;
z)_6U!py(b$cY);CL*H#hZR{~mVbv{jxW~xg-g<{Y`sQB;Zl3^!Wm6wlkgJ5MtzX>9
z9tFF<AtHmdiQBwsK8qxCeYs@wWMaM16+Ez0YJA%M@Op0aBt$vvkbZ<eZC0J3yOwCf
zmUS+E!GZoIHNypx;$l{j!sJgFiV;l4O(#_1wVYJ~51*G9LsB#PR3X!vDeH`*MHRGn
zrEX-y-n_}E1^(jSqk6v4_g}IMFc7LyE;~$~_+m*9(%o#9H5r6C`Md3=hQggEmvFL9
zZ5zIpFQ3hUW#e1*5BmB3MgpEc^7*RI0k-nd80ylOe2QO0a_$K#;z_z)`KU&X;cV7!
z?<<VOuWo1QbM!^aR~{e4V!Fsz?C^=6iD#`-pG&J9==a<wKV2ZG7kFeI3k4`SsroPv
zm&2B^P0PHI9sO|^1$?~<@ZY=;KKYraRnI5W{y*;<zSwy8uq^|ng4Gzd6uVd{xhhM)
z<z>Q_y){j=Fcot&thYYUk~)0!0yrT<vvhYTTJ9HCZX9a$WSwYjW(Jvc?=20$<u<dN
zl%CqkzX);MZz8dCNBlOarp7$>xzX-QDIp|mJYJD(P=ouN*Sxf5hV!NK5uPk@*8<a9
zE?czZ8!eya)(Ny{fg@5{{PDZBEs46bAKyCTHca=D0-<Wqq0X3>)qE+l8b*1V_+4XZ
z#)hNNL_b8H1F%FdFnRIxzHlfn_R-Pvy+h@Ymmk(`3RIjU?fD{^Pe^yN%Ckr+^mW9d
zzHE^sMxO3{5Ct+A>EwUu6FPXNo=iP;Cek4wKMA9<7Cxg%l4z3cwE|4m&M-b7{)xc4
zAuL-XKEhvO2kdz))MqqooMo%&RX`%HLU%@hn2G{7Z#K-k0>xx_=1wWIld8f)TP4|z
z3vH-4q{vkfdPek<G8OmCeQtp(I(7{$&l-gj6B%})g?m|dZdv^kzU$RgOvK$d0dfHk
zVsAi@RL4nFoz>2KCK8#LMQmX5n6*HQ=D7_$O@3pkvS$sE+aD@ipXe%VETTvOsG7(j
z^K)tX#X`X{((rY={0@805t2AbmHg}f{CX&6m%KI5R0%4dLi;Evh9$TqHEGD7w1)qD
zk+tpn{}uM#U&nIl*5!OlhFb>d5HT-!_{RcR9Yx&X%a)kS<KuLC5sH&V+R>!@t7sdA
z_K<_ZL@BGjkE52|R24Cz<6$iNT7Fo=Ai<|BhKk3pjYPut1fLx3oO`#zSk(&EWgn~+
zl|5r(JT~(%{6ogGpz)E3Gws}x5ZoeaIOO~a(EYf0YLcyI;#KdMLCdR9^^ZJQX6qyz
zxe&Sf__jJFmpFNpqj^CN;8P$7?aJZ!xv-*|^y{%w$$eYTkh@E&5a1^|8?HudN%<%;
z7Ezub2vOV@R`duths4pzeqfy?Bu{mypV%Herq3Q<nj=ldORHP|vznp&buk}*QX|3c
z7-b86zU7Q1>Km~nhu=JfDBoN@7p5%9?^VY)NkUH{BY08CDOqgY(uvI#ef}${wN?j1
zK#}eFv5K58<V|xIZ<m0RwLJ6;$Sndwlm=8FM{pCI)<fVf0d?o9lM!_nY%HJ}@+2Z*
z*4$gXhn_f5pflhkOY?p!E)SIkfw_wAU0X3|pLb3JVMv9-6No9u<lp03RW<&q&f2jr
zeVxW~<|<#0b9&Qtw1p*LVhw6a-w5~W&!oWvkkk^9XVBDB3uap{#Pm+hw{bF$7m4}L
z01?3wnYw?@lN(|T>Rn?@kBH`&%FN%&36mn^aXeFdRtNORbN)z&Dr&k=etlY{%Gj6Z
zgxkuK0b^v5TlPe;InO{I)|cZ(9c-4(qpU=wq&Cj6X27!^@j3oz-csnX1<{hZa9FK&
zo;>qTgCn@?0Uc_@{eU=yF&(C2_783F2V_)x1`BCdbqeIodgFI3T3HvZKGAG|qr`Ao
zh>1g6vk*AgBfuhtA1!RVI7G2g2H<E7ajw{$V*AnN6xnLykhtXV6dsHo`0AG<Qeq$a
z<DLO%<fQIAhs%GAJXZC7=Pg^EtFZ|gWi|8f&Gux1FgRi$K~2y5(y^jiW-!0k43jq2
z5U^#$&-hZcg~?jAF%j?}=Pwjwi`M4;t5&U6^y@Qn*r^oyyi4Ff3YxQ1ZL>vlHuTdl
z%64Ec8PHDX*y$oiLoas!UnBb<z5_HzU*!Coe?DnQ3w|s*u*Zh1v_c0d@c?aQB$;fk
z26u#}uW#_!^lHV<`G-*iwcfuh*%Q-yLbjy?>tFgj1z`lcTa@Z>>iqZ>r)E2eX-%}t
z>Whw<`ynX%!EX>cmD$1<?=+}K8KoY%ivaFvUH+)I49BaV{7d_}M0o=7+vZVh<?f!9
zd2~)YeGh)FWi_4j(1{8KdBDy&7sev-_KG*~)hQ=jkzCAyw#|oR)_RAMovpsgd3p1Z
z(}4GFfNyBn%$drJjJEhQKk0`U0X=^Tgvz<-zktyGTULn!<*v71^zK)`#emaEG#-yp
z<)e=xY`MKX#V=u=k-Un%gw^Xlou7mN@x}iVe|8KMx{KzQMTf^+A`jCT?<@?{W=9u<
zrZ=Is!|Wv*O^{|sRKjmicDe6v+aL7U{%(4jV!(>7C)TM_c3q!*Hv?8}Wvm0IcUGIK
zEC4i5x+uJNnSHLJH#ZAN_3(NS25Lk?9%~A&5crHq>F(cLHcrO4#0Z16w?iK~$HkPn
zNU5JgBSM^DdMEif$qz&Px6iPdB-^cd-_iqm*nZ%ctxR*GJXna~h16dHzu|xKlgTa`
zb=f5JBF9S&rld{#i&>TQYJi&jpMfu#J;j5<6;H-vK5o1iLT9J1QKK`SJ6`zZU9GrS
z$yTTM%S@<Z(94MX$Vek6cfaH2)L{p*eYqN0`j<wO353GJXy%J}KsIE%<mlGZ;<9_&
z&I&xgDHV7^Qv!A%xtiWVO939j288a{)l0`6>CECRPVCUU?_^mIevMES_BQM^S5Ari
z4qa!Tsn!CV$S!?h7h}$5Z=Y(?>6LQF&^NQMSBFYqAs|bEcAjVtkZMRnfYiG0yRV!a
zpjfV-3)F<Pg1Ej!h%wn$$MS83#I#>`yV>0N?KXDzohhbrM#w&hsCDev#f)%b1wc~!
z`44Ow;W#0wbqgZf!5q|d&i07cX`%nlz*M`s&VH~+wC{SEy+&VeC8veu%7i!mKYW&s
zSkL$XINe_+R#;X^xqSt$ndrBP8suC4>4*LMJhi32WF;pMY6>!-x3hwh3&NgJc(8(Q
zo<y`9AwwHQfIii~I9C*)blT>UHMK2=%)xGVZg{JfKO>VhKr6@jzgM>p8KN4Dx;m>r
zhwKv1@v4d$Mv@>nE|NHa=meTWbqzp_k6`rHMU={%SL|Gyn`}T^HHN_bbUALMoWhS>
zT;+{4)E_&nDG|E&OU+1W6_=Hg$&x)w)(g%s|2ci|NP-rU@Z(K3l=Ia&jvN#@mb-Od
zfu%o=`d@KfarJMzh|AU}r`kH@Rr;EuTt9Q<e+JQvKmUF7d;^5=lKeGIKit0l2(WnY
zy|{$ADgRtB(n)wZf6*?FB^YBmGX8@?IIlKgLB8raRO>cj%w#k1t3`V(Zg;z-J=4cB
z9z|{qQ3u0X2RXQ;%~QIzUhmN~7!WIL^N1K)9;_p!^}b^yyEUTKyLPKCF%)g|diV|{
z^09wsdI<b6L0J;6Vte|%M|K?=DV7_3Kw=x|$j~;X)iL9E<d_nY>+l%?;K0;JcnMVX
z)P`x<iNH&?Ql;L?Pd$bx{@2<mi$i66madT-dPr=v#7g{C2NaCT^sp3g(InUjD4YPf
zlV>Te+K%hgmBuFgWHTTD%r<*rRZU>#-nTBu*+C`nN5{m_-h@r(QK+J~q*6mBfS4qq
zJZmStmLJ`o&(t9nvr9%#CLyUCOaw^zsq(_|^ffJ*df}YN4Ej_VV~Y%|`VxzSvT?*x
z1+l`%)P-*SghyPX;1Vo*H7@O*sTVN7zyqrwzrIuU^Es9l%Rk}gd!3#o<Jw(3K$jy<
zyqgwJP*>|eWN4C`;%PU4Kg}$jGa_dWtndo1D38QZI2<2D)0HaeD9&d_r$sx*#^2fB
zL1!44p9*&%vtCQ>8&vZXl+8fSIfF#7b2Hywp}6d+4Kw=x{h_;Lju^29DsM5~Ak}T%
zbB+Ak|DRt;Hj=WH9Q(VJn0;ytx9&qHyX_B(oxbXBygh^h$T`j`fvo$da3l2FcM}%K
znCc0cpiJV0?Id*2CGgiJWd)@WH?CB&j)(DT7_hH0+nS>Bm*d3yd&|2O8Gk&FKSVDg
zVQ0R-+@7O0!@T;8%;6qr+@WANLS!`9u9~67#WPSGYo;wIQ6=<Kg|er?Jk%3XwG(^Z
z7mIrh&?wFxi0>-~>unkNf_pYF4kAI}$fS(G0!kst;3N#+)QQbom%A8GLB{;Z))Gn;
z@p~-wi4orm%<jJ}@DpeOvSXy`B~JcY`K3-gW`T}$><9@~B_s~M2C(|29xv{YYMA?C
z&m+W!AtusXGF|lc(J#`eWi+9g_I;lXd8v~|A6V3^ybW}Yix!qmnY<+N({)x|v70S_
zmvkQbrLUC@I@JY(@svh~zk$(<bVi)N_loK_WSjJx>>>4Tbr*|PeWDPtt<eJG0xQFr
zzY%)<JYhR?4@lcR<CTM8voV3LpY}qi9Xy5BzVuIzI|o?AnO8O}1d05Ht1(POge6wc
zMcjNj<6%SX$ZGjegC{??NrVoXS28mS=PXvOg;QvxUq${^ls<3#Ig8vd$Z0+WTsN|{
zohs@x%2BK|a#7UnO&R0_)#XJ$e7`MtWH(OzD%+p)@{R__KcLj8T<8hfYUa=3GG}Zp
z6NY{^t>DW<EB0|6L01Tpv{HwS=-N{9N~`KPmXQSt2I1CrxY+l5S)VDJcdRV?#I{c^
zIc2n+$-5*$AZP0!WUxk+nRiReZd2`FJGyk1or$h3?&-0oidoJ=^k3VKw)+loMv-Do
z$THoxuvQ|{7{(&dqqq?G1Cs&eQXp=6Jry&4yp!Lb#<IgZN%!qyE^rG#6X>V5L?aN1
z491!(%6u>0d|YWZaXyBK7)DfA{4>!I+a)c^j!aW47S5y^J){^}v>qe7Sy6R`PvX?W
z2-`mhB#CvRgpZOYTgEJQ^>qfBPi*pMX8QyM8~Tzr$$nq1kI!+V)xzsLn`n5qP8Eoq
z?DRO+)xRjdr!*&yYQ}w~0e7u5YwkWBa4n9{NiO@H<sfY;VX)$DVbdHPSNe<kl>FdQ
zT!Q(yD0Z{3)cZxanCI>-_l#g#*&C(pTITFJ!Azmm)DmH4<_C2D`b!*iit3`_b!G=7
z{u8DS)`gyv2&a?Iib1RSl;6^UXw3F}|EI3#SziG-2Dvk2Ls!t|5pdZ5%B{K)A_JN?
zkMnvdfUpE)U+MSEjMeKj^27Iza)Aw@=SXIZdm5%iS#G7Vo;yk7Zsxdev1h(#+<`7J
zUs-mPxnT$o&;uR~r}-n!Htx}nO*`$46tQFvcHhY!cr`MqAp(=)lIv18noXP4kbu<#
z+%}&=PL*L2I^Z2$G&lWTY03crfDVb0E!HLcDSgu(HY3i00o8P%*e}Aj7g4mnM`Vht
z8Rd)LPRaS@T9HeGmEJIKEr&Q4FF_4sdADeMi1n$uWg+3R*nduQ`&v)2HMXqvFndLx
z0QLZiH1rVYW!b^P+16q#Kb*+evd_GfH{R($Jgcv6cHTpz@_aRBv5sT{|0VKkXT`H{
z=!F$rMd%7GF--U+>MbbAZuj4oIP2ua1Y>pKrytnN*|J~JJ=O=q$InFZ>^)vT1sS!?
zdx}G?kFB83hopvO|3}evxU>0oVVhD^t+q;xT1B;#S_xgWR%?{nvnWCBk=RAmY;9`S
zUNI6<MEvZnH4<XAMi8;Z=F9g7JnwbA&-=X3Ip;q2x$g{l49kGf1j|x~D=5+}7cb~>
zZqQNE7?X=X{dJQQm>gro+NdIRKd)El2(#bXV?+o;pHZb|%I>tf<&Eyw*Ev9CGn++t
ziy`U33l!1bx8B}R3(u;-&Xp@|gz}Mv@Qx}}o<-Nl57ns12db@wU%jMObbIsL60%*)
z3tib`aF!6g!=6^>|15k*$A|CtZ*JO=NbzuZm7P}0!0vCQKY6&k#xOiECzfKoUJV~*
zRy3CNtjB0gtmmn06a_DZ%Fg14UsmHxdw^%xFlRUaoAN=QxvTiMt^5nnstikC#~SMU
z?X~%|tj3V!DElgpKLg*&9W@1N8f@gf^$Zim2UO%mn5kAoOjiupJ&2y$GXb8pIg0YC
z#6;JS3-9MLUS(|2ycHTrgw_*2roa*s?6$A=Zo0lysZPsknb8tQal$ZC^T{*pXAMX}
z@|$T&0mB5pXxQyJCG2D2?VEENuL}@tiF0jc7$FCVQ}Ov8^(TvpuGo8TP6RD};}jhC
zDM;Q8D){ftBX*r6xI({(qioi0YeA*$IO*=d{3mte=(fRe>b+lo9zRIHTUwII%RiC4
z=`g_JNgR2;&SuT_NanZgzTzJ{`m@VNw);VTb;8^q1^3o*N8zr*`zm?rm;~*rH`#dl
zWlpQF+2j78>#<4|D*=f$H#BDop6@A)=aq@_#q;f)8o;b1MtA?2GCCF!OzO&2oEz1(
zFu<2>_RSvy-AyL6M|?lcpwb^Re?v8qbWA06@Sm0bc0}`)7=B&*QoHn95Pdo4Hzkov
zqPB2U7r$GfIN>v`F(44z!Gsoh;j3xP{r8xMF~}qK86dZ`3tpI+r1guP&th^brZkB7
z*<_ERM}#PL^DDCwR_sm1)_p2f+{_2hM7M7pOejOkIPrJ1-4iW_Z?u63Nvsbz%iXM&
zG5gk#H`RTs?*KE;zd~doG{$E~^^Od37CgV$@+=@mziv01ALjhD=*ZOehKc)jbA8xL
zV3tn|@>bDE;5Z5WPj&?<xtG-a8}7Jf&9u2YZo4n@h@6*FI*{3)*L|=ok5y<X_CFc?
zBAWhkUI-5||9-82Fh5R({!heCIsI8#-BYeir&Zg~JGlSM$M0^A_3g*u3x1pj{@PL|
zBbeR~CY9(YDoC@|tbfvN{NA0ks$^+Pu7y2UG3GV$2jyv1C+r1Ut7G`*A>=U*<@Ebt
zT@jA#Qsr?uPVnME=<eMLlnrGzUrl7mT*?i}K{BuA^T3RXpY%po&V*NgeyVw<Wprli
ziXpj;b^CF#7AWX}_$arxp_BiBdWJSqu>n$;Ct=lgy!TS?k^VI%J)2-h5+mMx&>q~;
z`ses|tRj&ezciwT%=&gs1K;d`CVlo&T)IfX-}Q>9Rd9biA3a*ClB+i*XmA$DzRtQD
zg>OAaBZ<N)0nbmCimZ9or;o2YM{8rpD!m}BMIa*y`3W(E7rQ)1OwPph#Wqp=ogTlY
zNm*=KApK|8K+p<fFLds+s|I$5l`E_8moVWKa-@!VKcH4@gH5dWabZ#G`S`J4?=wu9
z_Z)lM4W97-&UYGPZq^!g(S3L42{DG*8HRrrwafJ?AdIZ_cu{&q2+9AHn3PQlq$h~&
z-{LO+o(}K|NDODjG{#98Ed0=d8vFBc@O(P^%(*@y(9=q{^6Q4RO6ly;`1V7%!tm01
z@Mb!Uc!LK+c$k^tee;j2j!Isc7#Uv~@H+5U-!!SC9Hbcl3<#~-FX;2eNP6oG?XN=$
zAp>bv!EoCMF1y$tMRS9d%aJd^w>}PHHCB=SjY6aEEZIh{`sc3{w7v^{w9TMq%X~K{
z`$QtfJb9C}Wv|YTIewxkB70G%v6uF%Et9yOSu+qvk#V`?rEufR5OlKb@zO+(_95gX
ziETHsrIY%T0>~KL)~0D?3mG!CiWqMwp7S2b_?`YUr@~xo<rHm;-H0;19yh$~Y<@^M
zWV_1-KAK7&YO0+|H+K^`8b+KlA$}e*VgWBy(HZYcuVERzEtPT_^4fytRK8Sr&b`FX
zV5+2rzn|F=4!f5TT2?cu#$3UnKBphQ;TNteF9$Xe_x@ZeM4#Qk)#AFyrR%c;y%!bx
zBF5DaedU}^zU;)AAxlgZ<<43WSA+37q;fz99R78ta{Vqm<EDv~)@o5zUZr{Yv<u>t
zCvL^1(vJcl?4vWJAuiviBd+?QhC7u9CpqXU2k0Ih1$}P#`=V3?BRr70(t~xc@Je&(
zLIn@pTuVnKKNd2Fx%p-0had{8&oj%<YU;fr3EZ>75C2oSn(YZ`d5|@2m9cMij(!)e
z&jZpL=ET|+091G9v4ZB4rlESh*jM~XNRx8?IK$QO=^l}SoDcpjAFb?S|ANL7TX&=G
zomxiU5Elro^?GuW4fnYCaTAY_*Ii!V9vXavfq4jV<-?Sx{J!0sE_|C`60jE7Fo%pr
zbBljSqG|Z|j8d=2`Y%;#zc2aA<;6eCd3N>PG}PSbQ?pUz?+mc|Lf9fl__j76B9Ins
zM1_#-7h~oDK=K9H!1<>SFTphFf<#?LtV^ABiA@XrW`;{uS;MYV3q6uETlv-7EssQL
z^r~_Q9WrcB)LN@(_PH|EEJn>@oc1tO=k#n<X;`2nl;RkpRv8g$ms0umCr!?FXLvk^
zFtaDEd_hgXc`$YLNao0MNEhAa&CnMQC&UZ{5mGZt*0teMeXdOqfxgWH>5_d90RjuS
z$Hh_<E6`NtMP4_{gB@dmEIVFM{Sxf_MGJOI)T<Gp=V;<1`lJwm13uwW8!DtFd(y2l
zBt1R?sNbkTa4{acT?Z_MF%=(pzdRBRUX<`Y?cyskF9LowKba17U2}m-lh`?6{Se^V
zIhQvmSz^Kc+T~-CS7}*2iqdNCB#dly1W?%5yXi<p8pDJ#V?P#p6~Mx0(~L@C`*~xE
zP{a30VZcDuC)w{eq3c>``95M`TVFGJ!Hlaj)uLbAMBw<}bqS91%Iyg_?MoAdR|071
zI`+-auQ;B)27p+YD0T%I%03KMiK$0;#^5CWz-XV*MZ5BFS^iQ$S8s+*O}MLm{V^rX
zjEisvdRj*NdOQ}Xx;X=MNxM@Dw-%zo<NS)TI%vAhtZz4AdeW^g;v4QvKiQoQl_Fd4
z3OV#iCh_RGl%`F>;;>PU^v3?+BM4^3M!7GC_Y=CuaRm09WjH2tc5~V#g%Ikh*s<za
z3@dwtrI~TW?v;6AwRvYg!i?Jy{cuvp5X+eagchMWpDBR(;yR(2=XZNWvu(r+El(<@
zMr4{-^OCSi{(C5nGtCMO<dkmBbJbEL;FeErxOtc>@3LkBI7xz+_|8Y^n9}+=q<BPR
zV~qS|OFWs6YNm`siDRSXN7O<j=)a;JekR!D%o(LKaTGdn2PWjtC(Kh<d<`)un?nzN
zfN{k3S-yW-Q<S(@G*u4x(mTY*>RGIZ2O>(9RCo0_piOF%JbhR9>~?r8TSH<sm@KVt
zT7B3=%l!8s^o8r7)LGWudj78Y6EBg`PcK&?(`*#5;6z&0BB>?*e76>s%g2Nh{ob;*
zgu;}#e_w}C_r$7h*Q01#5!a3Fm!?8FbF^e)B;cW+xB2r!-_;ebLEuX>&w_5lY@qoa
z8aa1o_{VB$v77oYW!+?9?B@-^e_mF@l)I<4&9^{mt}Or=l$F`4_SfyRxbEJ6qtE(|
z5&YcCj6m8t{~pZ_!3S16O3^<AFktzDN`jO@#^z=DhlPp@tTpaO`>ZmG>AD*{lycdW
z;fM}#ztXshz0Md@4&UyWf1&rs`Lf#Av%Ax=lPU*C`_5&{PA*i8*uU%?5&J_7TdB`j
z!OD1hddm2q&Hn36U9Y{l5}<sMoItYIwIg5fePiqAM)y``Ve3mR=1U65wuNN7&e>-V
zC~`#isx+)4%#+t&xt2_ORp*cY7Y?6>Onqg7#Z<`}=$~@0wPu+o9~B!q?@$K@6C_Sw
z+_p>9SLS_QlUo8<F}0~(23260W`g2=zo;;WtG)!hlYs5E89dCJ<r-v%84z3|690^3
zNBk%|5j&v8$%F>8lCNAkk&p$w8?bNj4HeV%NBhp?afMpF2LjE?r@`A0hrw=?)!%Fv
z;&<~3;e?+wAz$mfZh4i<9!Z*2xR%=7bs;pAL&yKjUx~*R6i|me(Vn@jeEulY?O#%X
z#nBnBRvF`2bad>*&;NQ(659h1Ws<Ml|F&}d;9-ArU@5gYuz-vZ8Gzn|){zBSq`f8G
z2-8I`?qG!&gMZQj{mfn@2Ym3y3wAb`QS?>kKk{Xnm7-wE(o>1FYoh&67;e$>C_j*X
zLH=9Q5)`ye=RB73OAW#G#|Z4AL?@@Q8FPxxyBDAX+hwcUy{)&!a31zV)u3n@OOM<;
z$uRK72K@cWK~^JLRvK_+^#rb|U}@$*@TJ@{13U8E@eYR5hC&w40d=lMwfwfv7vFl1
z9I?zE3R`PY;+(P8?CCcQx4qp|E$~LY0?~ERgS<*PSQ>9sB9oDQN^l|xH<oTaisck|
zdf34i7Vj~yj*RlPdVl+L2Ah7z!bKW`L-;&y5uRBZOW$*1r<Rv|Ooek$$~)X|9&5TD
zbPa3&q#vb>P+Bv08Z1m?REk%!iU8U@Wdz+%I1|Up-n{1!Z2d?z^p`N21suB$WxY@#
z$%O-8=qKJR;G)EEAm3(c?UOZ?0p3H?AbeO*+UH(ahWtMDZ;ez+95d+-)NlZ4Hp@%Y
z<0|2HU8pL12v!^^{q@sT(2Ai8t0W>UXvtQT=yOYY;y4_-uke=QDdpRG2P^J=>*I^W
zJit}(4t+ds`=J``kwAUDoif0~cA#C(&2&e_Oj!cBlhW&J@6|(<j+?5-@jJ0LGGpyy
z>6MFF%y1Rg3To%>DOxvl(8BiHyyRz?Woq25D+lT}u$%Linb2@zvAHsMbfp3-vx*)L
zzyT%%5U(4n4yr4a(f@v+n9U?4|JW&mT{Ep?<vqp%x*UjTqhS$2L|drw`IqXM7X_Up
z0Z35I{+Bk>vkpG)?1?Em-srvm_^kR<^WHQ&i-Y@B8Zi35xD7TX;4HKILh>$FdF$uY
zq`<KgCe=?(sm=$&RT<9KwF;#n2-MFYyonW~C*(sSHKJ5rFV#IGRzT|^8HQ$+h0M~c
z?o{QCE^EG6h#K~OaJOxJjeg8{mKCj$vv&UENKct=LqqkUZT1P}gkgbS&;%0_)L@JP
zai5;-TcKW&NX~kSjlHyq+Z$!a1?^?Cayvybb9~7~fc20wZf1U?t|!KXCJWdQ6)E<W
zQ4io(HrZtOk9$AvsceeDzKP6xne1usE`RT9+OP^uVlQ=&ulps{*|oztc5o*6W<f`T
zxI9VE4Bk!0ln|i&CST!g7_BHX>hQ5?<n>>6F4&V+b<Xb(A0}e^PDj4P<1%}oOBUaB
zYHHGHGrzNM`nvB5yn*ey|M#xkYUfdLYxMh??(hVz&j%34WV4RL?_NPJ`R^kF?u@C}
z8azq5$hlqj;Xl(*TWXS_*$oeq$BRgMq_0v)xQ;j9{PUub{lZI|h0YO?mR!$KyL4Az
zoiUHq2u!$BouQBwTi+j4iw_bvX|Z!5Zm0%4D{PzP{wSiP+F61XB{8TzBnR6xZVP#D
z)uhKa=FTXW$aB?$<v`n;<}D-<KkGMpe7EbmBX82Q$-yo-vIh^>iaf{4H)j7-SIoRR
zpe`~Wg&LObPlPWUfX~HR#jXF*|D=mNquitUesg{yr!4_H%ST`{3kN9F^;Rk03%-o(
zrG9aBFkZr;Ru46L(F^8;ry*`>wX%Qkx)P6l4DWwew-psM`Qf_B8X6K+w>jg-_umOr
zc$#u2@A8uUVo4RcL6!f9>Hf*7<8@yj;ydCS)k@2&V|=?QMc{6?(fL^}>zXFlun(uE
zbLe>s05tf3-Rd#C&ZOQtM!NMc198sh1GG<N;K|vYo;<ED-ERYxK_o>DhK!Pl@TNMT
z$TPuYOfqMbZ@_>0xd?X~fuerA97$ZBcEM)<bBlXN)GpdR)HQ|hg_$V3*|uRe+;B>T
z6T_rDi}FT;CQs%W6%+C8-wChaGUJNMuSkME{_=_;?uPHSZO>FS@oYE=WCC^s{Ev4t
zrmV=hAZ8X+xNqfB8yw66U!MPc!f(u>0qSIt9L?3SZI)g>tw~f$CR{(0MP6|!(UY-g
zVk+Rc42W7PI&QW!`bxOmMm62QeDVKXdU-HzW&hj8Li%TM#p9BqBh1gp#JkCND2T-|
zA==R%?F(zH?Pp=Z=jWM%ZIKM0hi<thxqXpb>T!D^^>CF4<$Yol0B#F$t~753DSd3Q
zgx29`I%EQ2x`Nd5N`Dzeoil|}Tu}v2A6s`Grl&}G{k&U8+o?YCAg&)*{-M`~mVPvR
zzewA_Nn_QpyWuuv`QV(0tryFoSkpE6`u<o8$k*W&%?B=@M#r%Ux^KT)nXNqT^&LB*
z;aOf)dKVfEDGiM;1nSp%g~(^}AL$CrG%TE5CvU0&G6%cF1b)AEXGNDh6b;+w%_))=
z9Q%2jd6WoGChUO4XY63N*9_05*s>3b*&*j&015;NdL%?-{+r(d@Iy*v$&y|?T$K*F
zVQO;%OWfGp9de*kRr`C+2ARk-x1utsuH}Wr2Z;-q)l7GZBQk*rSasD;u-*>Vl%B*)
zFRQbnZ5Mwe-vxTevPf4May>|D1KL08QW8h%8yzsa6LNYI>n1z2w0yB7{kJ`{ljAG8
z{kX-}1eq9;2fBE5HK;1VN%bNn{s_4*QeLh}9n$93f2PgUJd*#4!D*`WlRI_CFyFy-
z1^s4jHl*x1rjt%Ngx<{M2ojqk4_<4BKi#iY2M@=N)=fU;3TQo&06&NDNb_z3yX6N`
z6O?>5W59O<!G4c)U~rO1?`_13^@k6+G0zTxIe1ae5OGYD>(mwxn}ht*<yh_pNKqRh
z)_qOoYnYQvZlNrMne<BfoI>x&?FWuVFCbhB__68U336m~S>^z~Fr(3}<>Sc%8xG=-
zk#GzuCc81of6MD5;?60oc96h-?5f=37w1r+YRVnyL|U>&qLE}z`E-vWaeBo>%HS@v
zCA#QyorPb9Id~R5XsBu_d$HwJa^=KC5%_C_4VZr?7tWJ7JsW+M98F$)ac-<tVFGM1
z;d+e1ctr5pZH7hqL8=rk=eAW{5N+|sLZ$691&nSzC!-o)iIKJC92_3pPlxUTm)<6t
z)Y;`f-h1Zdu_;4yenawCsECklZF~#JGpsk%{3q!)juq=nj*}7UYkT2Lt;v;)+hb&g
z0ru%@12b&~BARsltSXIaCOvEbFHWj>s$c@WyXFy`YCaesMGIr_majX4b9@4E>H8IJ
zX4}M)jw(hvwQCqoA2^a)U8Evku0EVzS;OY8{Ybp+ccHPVhsyIJV5sHqc}Oi-*9t{q
zhWHkKpEMnZ^;zVB|AyxF$(@$fNCUqSnq~;(1<Kg@L%q>c#qWqbM1<cJX5&02apsW8
z3u3<N!=HOnri(A{en9?XU-u}~&TBQ;kJQwfC|{keKk{w9#wp50k@O?umkSEwUBpj2
z6=kCUX8)$>hf~TiMc?0BU82pOmYPNqy$~Jt;E*375(7;+`aBHJo6mcx{o2HDQp2)+
z9>%^u3DrkwEta?o>DkwR`FGt6n>l0SG8-<BteDK3tE2sJDsRzAAePfUcScWnTqde>
zFK2xUE@r{;MzO&PE-de`u27n#REF_35f+Nfk-U}uC7sI48`y-qgcLzil#c(vib=Ml
zQy15^6mGXtxe$jP;e9CFRGaOi(CZ-c|MF?Ju9z7sX5Goug`>|I=Wn9+-B5<ad$MAi
zUoJb#R<iKqxp?aQosBT32iHj})n0yy@7tcUbH^Rlv4={I31E|WhmYiu{~5$%S>*0(
z5-o@R(GR74JfQX^$|q`D-Xn~qFOt)RS1uv5)$TFoVN!iQ(K-~$dYJS(e!!DwwlZgc
zfJ1o3`%d2mZV!CXGu6BkO6<~>(srE&WTI+dm3|`=STdHr87!OaL{j*4nP;7S8aA=N
z0e~7#5d$oAQt!Z!<}M9KV;FNcQ4r%r>x>s>@$5J1CFIBPXf+AMh~hK(abmYU(|#c&
zfKA>k9nhLkH{yQbUywSUC9CFc<vvi5>+|<B)7{<lNV~TC^hLUb;G<|SBf@{o+uHW7
zRnyIA0H|NFGS<^v+9cxPn#7QCP@CicYdh_Oox&F0$TyI8d`>9!rO7AYyhh8Xoh7l_
zJk5mKSm+x9XVNE2CV8CrvA8w+gB|c)!kIduyP1$_b%xU7s@~t=PR1>r$oJM5K0VJQ
z8q7@R$s`8+=GFK|etn}Gn^8J2ExLLevlKgv(=<D+p4zs4I1SGmzHPH;3nV(#%B-2-
z_o+-2DSxy?D9Tycz{Xt#jW_OzU_#>`DZe=pO(x83s8x-fxXm7#Y*j9>ddew&l8O|=
z++7~P7N=3|r*0MZr-~NYx1RJn8!`CGokWa0&!JD3@MeMNEMF6C!MW7#cW=J)$?d*8
zu{6~Z7<?9PcV>Ucm?0Zv3?4dcr`-zd@lPHyo{%W}@Aua1VWNbhAJBUwh#t#_aaF>+
z{?>PBtAr;WA~?;E1iyw}$rk!9kSo2p3}pHD!)8KT+B4mR_;xWLzA_K$Se^G$v<PEV
zFk22zez&;Ik0!hSoihzZc0VU}8=cng{otN%&&h&a1UWn`(jRBaS6*~r#mG6o>(ltJ
zi$$TXtk}l9=Xlt)iBSfS^KZYM)k8V1le=|D^M+}f$gKNCfaV&V8eWnG?Da()GpG-?
ztu%Ga0X3Y~D$^_Q;p@`)aCp)Bur)9!-j?LA2lxO7rZLf9_f^cJUd^j9t_!RGm=jG9
z?B?LxPH3^8l*Oywj*pt4>2uB-*li#1V+47j!xpyVs+~N5*S@%#QitZrGD$n^q6JlH
z&O;L@XJ&O8Ug|wpV+!j<$8R>KKCvgIvhh~FJ8ddrF7pn~ll(aLGuc#KB3v(kVewd{
zuO}SppXM}0c{z9dHyv#;N>2q}tg)ioI_=9&3{4z~0AFWQsKl{MAzYSaJgcZ7yb6`{
zci3rApL@EF5$VunMn7<|xAJrYt*PREN?v@TFd$$c^76xCNg{FNM72W%+hL(<&(#}9
z^A8urZ?Rm%owF+Bn$X9I6~RXCt2V~!YArFgo1Mv&8>1KK5yf^C`7Fvf>&9!=?8s<}
zdoUk32in4&i8egQ^~Y7dtP*x<>5f%g%REk02|#?u#X{u=%$;0uCiVH~9iP&JBg~6N
zw2~^x&Ra2|I;)2ci4QP0pl?dN7IgSvPx1eMEf!o%TY}P&zZFblTkC9o+Af8#Mla~w
zm-9tQbrG%#g<hH0JnFl9c5~zV5R_w+6Qg`cT?C9mc|%I}`7sAw8pG!l-U+{M!Zbh+
zBHGlEof>*OdhMF{lb`Ce(!X9J>5#8I7ie%208XFz6aL$J%-h8`H=5HBFn*@T=iuVI
zeoy+awWVxT78f0l&!JaqToexE4LyCb!ElYV=3M$VGG)fY=uAt&#pd2+Z$zaFA2RcM
zla^kIwY}+E^-;VBcN3mJuA8&Szm}vgeHyKHksm=V&hUY3xz($lP~AiM0&L~&GqEjI
zIi`eON?(^_#kMw7INL(%Q)}6HXp!*LN3J3FF+X?^fBa8w^tG>|W8`dQk<>hZY76G_
zWQnE*p+`vAh_q6Dj_p#vT2~sCJm^ZsdNf$NGp&I&;k?*IzC+axA_F$enx#48Z~Ahv
zk(WK2XXD~2Y$6axs=#Wy`4aE0aCz%Sj1&W{?c&YJWefI?;IRYtIL{hzdb57COT<Ab
z8mOOzFn}53C!@{hMEH)P+H$Q4o0DhXZ6W~q!8|_CtYncQ*0QQ^?W`D;N(%te5v+I4
z6k&P&hgnjcMdM_hu4}Gqcur6S3pSKDnBrnqq^t<=1+=ku9de)t;(v(jpg)OC3U71f
z532C8E-EsIfVE2ZjY0P{RINeIw>Kv*(2HdE)}&!pZ<OkBncTWFDCdOqw1!uH{3I)D
z#D=}Fx1xn@=HK>l&v|g7Jtf<TyX&8wa}%BEx2G9dS=*({CI!%katR#w-Yhy#QKWks
z88^9?{u0<jSL`_2324#T{$fn2LmPYRQBgO{!9JL6vVnym4slOiv0vw;9nB2K@mlkv
zt_5O39|foH^>FP7BAjE<(=xU$o_W1b=jZGlwGFns?0et*@nzFN<U9=TUd|%Q+BJp3
zeY}FWl9i9@8_Q<RYi=Jttbk%xz}t@o2I^3_5nUSR1C#HL_UVSHr|Kg*_l-eM%FUN8
zpD|PtKcLm4UM?eW_>}m|FHk|Xm!p{1v0Dl=0vP+)x0ByhJ>6xKT&m-P$9!_NYg+o5
z<@FkHc7-#`S>M~!?eP=OE=|DvkxFl_QP%wQxf?os8lREA{+1|bk`^MD&7f3UK5aG3
zr7}35&LIEPH4X!N2dC=G^!B(nh@FO&3oifaK7F)&e>E3;bKeO!?C^cvkn5+N)guUv
zFD4)g@XB?ckIQ0?@7<+lz{{s@CZ}OoLpP?wI4hVv5f2#)s2*m$H?H_}E2Ua`h0m;T
zhmXHWgV7ET1~I~Ivl9Oh`Vt}v<#8f^ooly>W~J>h0WzE7l_M4F;<So~<lx>>Vh^rQ
zJ~NvvXY9r%8$J-H%?=$g=v-BLvnqO=_>TK<m@lka9sE>x*-mAj8gAq6^Lp70^{-}$
z^6+Uf2~#^|d>?A~5e}-b;eO5r`AA8%htjjy;w0Vo=Q(<`>G9)1k%_r94N&o`RDvBU
zo-nZuW#%si(S568{WzSG#t`|)jK}P4I!uTtpf|>T^h(D`S}NvSS$q&1n#$2fyT`6r
zkinZZmKDmsu1W4BOX`01Xm?CB{r5WC?!YSnh^?frr<T8FJL7Lu!@D&c(%JS1g#GX2
zyIKb&Y+{}n;*|LMk=+fxYxWEe66<KqnN%)><lj1|B`S^FpQEDmAIixUvXw6G<XZU(
zc9cH&kqGB_QS*X6r<cN6s(`^o9FepD4%Y?K^?Sg$8?_e4WWKT;D<`|eC`m~z{>qpo
zjV1gPC;Mh>19|`O5qEd@xn$Bxl>i%@o5lF|3q@^HGqk^R=suvih;np_ew}PSx;vxP
zhzulgyWo!_UbO+!c0g%_Eh4BKhdt`kE&q^O%8y}zte1Nf0>p$!dicLycmBPG#hBU!
z6~-jq*;IV+iU`4ly(j|Qf^sZxc}6B`uAA4ueX+`5yC`T9liq&bgC=bHkjO?Tv!`@X
zBI76v*z9)w(a8*#`<;)4>X6BwS*tjk#PmhgzjpkX+X(eZ?7SA|cJahbN!D$tA9<$F
z>_uocI1P%^pm&n#|2%?T?Pa{BSeJTSS#UbIkC<C$%~KsuR1Hqsj)%@{HKvI|aR;Bd
z14Blxf|sjm<lnnhs>QqWbjWExb7&o7#wpJp7Si-O;9TC+JppgMr3c3nYjf-%c@3w+
zB;bV5EtrPm!i-k$)q|(qcL|&-m=le<U7vJEPhQyW&&RZ2C*!Tt&}zga(tR?Z5krlL
z(P;+m9SZt>+yBk?8<a|@?doZla>sTR)W&(jL$72nk672wdBOCmNf7W3b)<HJw|`7Y
zKitvtA}KL&m7Ya<cwVERR#6_Js4{-i!3tHYsXfzo0r*@d05#P>8?C6($}2Y2otnfA
zLR;&0(R^L+m-yO?L*LT8%e_InxA~cI(^LZMX7lI}yXXXyuNRh|0j6|%iDe`BQB!KQ
zaCykCb(X`ZQ+~!p%g%>Ed=jrg8QeWE9*nO{=y$GJL;f50PPFIA?}_;^>7vKLqHxuM
zvm#}Qod=lk$a7>1-)^J@|DbIV@{f%vL%iOx>21)42@iw#>N@ai3a^9?rs*<%W#nU>
z%jsE2w%bFkhSg6VcB{*0LZI`+c~b5`+&lfEfI_DrA=*tzztxSh*Q0*m3>q@5b*V>C
zOPbKSRd+3gAHy+IzJ@G}swTB4(}QzH`eEO8H$=NxRNvA;I5yMz7y6}eha^Fj74c4o
z$6Cs<A!T2Oz4_|a10A<~bZzP#nFPMy&IzBju1z9LZGJ-%jzV>o9Vm^gx_lwRD<Oco
zZ~ee%6xWIo*=TZea<ieb_=b0a@7fRU>@-TVWFDOh3K91)B+bDSj&xz>wP$#CaE^JN
z%^)H+ze2}HDRR^#k!*ccWK=ZB1lpKj)%K|&6K-ttPRc^7iSzG}$^F&866=r7oDEAM
zL0k0lDuZmer!`OUE<1TUda&M1fK&hbH5YMft-UJM5OL48kkgN)s+U7c5(hxsYg@V>
z!V%Jty5r6Fa_Ghf+-4~smGGnA*GIz=UsCIm$y5JbbhSL@ySj|N>P@{Yz1o?c=l#|2
zYQg>a4Glbj7aub85PqU^u{)}YyCn?Kdj&!r?NZyazIS@6cCv7>)v!6Mwpg+_2oC`S
zDF4u`My$;Q;|UjgD^m;Dktc9u+nLR2$2sr;O+PkwLD6@+Ir*yE1$SttYz2%&aDYZ(
z-4G2h8m}NqTxvVnITN)ozZ)^XYu>kF1_Qc=EX^w%nZX2VQWlyouk!?tfNe{>8r9o!
z2Z+X4p%GvwXok>)71|2=T0P~3q-#Uf$AmCLpp%z|_|att>=#o>LAtCECP>QmZiut1
z;Rf2lbriOA+1@jcf?rr5bIEuQ$tspeP5MIe+x*r`)qeJO!-Lwrx8)1CHQ}t7Yo`}~
zcmAWoTk6GnOQ`n340|yvi$Dnzg)3DpYpWL9V*KUSkt#@J*H}6(|HGF`)f8=tPd4tN
z&f;SncWtKLa5=ped9Up+7h8D~wMwjFAG}%NyZwH%S2PR`*8sy^N{=0YwnEvjZ~L}2
z!DZ8hm2z{GT|#1pM^wq+4ks1!sQOgy=DfJAEU!Aa$o%eE%&aAxI{VHho0+un-n^Kn
zR>5)4^=zN(9E0C03oe**vbiFFre{ux-@j`7HaO1L&l}!k12r}Daw`Eg56x>PYODtG
zy_B#*FvkW=77@n|sakV+v!dRMB6aaq0&zop+2+Zf<8NTXf#a-W^qaepI&oOgzao}k
zit`<JYe=t#9t@*m%L8*<GaOMp6+0+i=wcmPTQau>EfRt_PLZhlOKt4T!HZ*~LI~@`
z(R1{U+byC8RQkh+Hyz^7eZUPJ=mh_h+^UeER;B<-Ym0i?yJy6Jh5Z+n7atBiXz2YA
zg^DG4#dM*%sO0sjmE7O-JJAoh{$0_uYb+rP_cnjMP(FcI*QO}ZyEY1yJEf1)pWH&&
z`>>Yf%#Xb5C<ACOac@#;LYiJ|D)m+I<_h^LsbshB|71<M43^WbNa~4~->9?k2ui86
z%roEGZHyW|$8%(p$G!+Fj0?YEIny-xa!AKBPk*e^fYh3bN_wt)h@=LXcv{@z5aOnU
ztyG014Kir8y9c*VEFsaLI*lVGcF4iL)%1%$+Y?Ug5x~Gj8@kJK;P(xcnXVx|m-FYf
z`(To3l$W^W0+*k<(-yrmaBX;-IXlB5j~lYowjK#ohvc4wJ*~+Z`Ir>jctkp$&|o`U
z`jL{Qb9Zxh)^b;|z<=kqd_BIf{}HJ;bbE;J!^Y9^$)JVJMQupyxaw6va%gMdi@3;7
zR;hrfZB7|=2t(-3U)!!`?T2r%>xOH+ggt*psRJ@*F33c&Bkk(MMori6<3E+a%N%k(
z{w6$~o7ek%tmpa_f?>?QM`;oKyZ!8fH7m@7r(Jo*&a)Q_TC!XXv2x4$7~I1owU7F<
z4-!(|uewNSxRY55_a(}XID=s0ubm{tb~ad#)UP`%M<)^onZV&WCkU-k9RQL5^iu6R
zjJpC32p3~!4~xv}><ZGnwgT}uOL%aUT}U{yXFSokhYJRP)tNi{Y@Hs1H}SP^U}3uV
z9C#9mMI*|aE>>EU`?pGYO#^fHj7fL$h!&PXqaZ$5w=eH6(p^H4xoSAEN;<6NG80&T
zuhylq_NgowL#V5LIHiVv+=)=F)96K^$VOV^6FO72pV^iP)Iyw+Pj?Zy^%2F(mUXTN
z6hjgBO&QxGM}%rYR}suZ%Ns%QWyFC~=AelozNZZcbO=juD7(Vtj=#G=2XPYex+fBb
z7q~XX%|gC6S4#8NeHQ@D#yX%ze}=D=AqRcEs*_8R58pSAj3KO({2o$%JCnMV1^wgh
z(PGwOFZN-@I(!G6{5ei}*hpMQ0gBqqJ>~kFe>bW;)3Q2<p8ov^uOocwj~w`?ZU*k?
zOSLWnJq_=Ei>>3pWgQ;JRlg4=8`eH`djz&Pb5L1Dz7seK@R%eDqS}y!X;jOmZF6<E
zeXaM?)8R|=e{2wlcS-8VY54CEY!FV@i5#icTR|NqUO&|a*?d^QW95Edo-I<nVdGie
zSP%`-8}K9ly0y7E?%2m(JftZ^RY%<#*S&^otrN<S$4Ip;IWUt!4U_vqM|BTLoda?G
zHN63N0_I+`pJwrA+D<$zl1?c{-LHPS;pZ5J0ZWGzZO{nU)v1A9Bi}m4ooO;aOu(O*
zM28hR@SAgrZj|l*zo2b$_onWMdMh;MSMXK@*$)`^=?yf+ww4!BH&@reN`cD`&L_B-
z;f#0`uXxS6SgshsD^Be7oF1$6`nZ2|0Imx)#a-$hy_V@0GJt!Ye!TR^K-Jp#^aYq-
zFh9wwp;sMOa630AF?>WrmCS=udU8L!LnDC5>Ou1}b8b&k7V@(rM1J1sP?>{{hGRbc
z3c;jCKQ{+hjz(qsNkNTLWYe=}K5L&WG-azpA82{zb&>d?Ge3#1MWzPo9$W<Kp<Hk0
zf#aEe915#sRXSX3`GyQXm>hDsWZ7PRzklELKYUABkV{+m=`C~V0S{N~@qAnmeI9AD
zUeDch@x4saYeg4D>K}@=!dmC3Yox(H&4iPdAz3N*_?CoskIV0xFTPf&q~+Onm0(Jn
z+!DM0q{Fx2=|?W@7T4-a=(|hazjPYPnX?T879d%xkHsuJgI@ynUnWFJ@${a$VQWXO
zYG&IN>9<Z}CylH(X+3qKbbJPw2;nci`M`n_#?2e&tDfUka~7Yz=w!_5k0Gs-9U&@%
zLHm!atFED&r|D>M7Dz%ve>_psJ2$1b^$y}X<lYLxFDJdki+R?t?i!11#fY3ln<g(q
zr-RZ0x(>CBzRK;gG+9`w@idcMYNKe`-H07&a7cCM5&5Nl^~r#5e-b7UU2jwAz;0Mv
z%c&pizoo@Jei95g`@V;i=AMwiR*{j+n)aI4K5pmR;OBzI_-IVA%g1QoGkpK?UzeqN
zZgQChu(Bvld*%U&G*9)C56~eOo&lBDb}}AU{}TG_kzPGXgLQ?L&mNd8-vbStA!pLD
zMTc^KqkFehCiI&TsIF-H{Z5gpT1A9jO`%t?mHU0n3ud$5zk~;LSOJsJw~>H{SJzbY
zFTIle1nsmYVeckr9!kDG`-&AM{J5al9N&V^IIc^exi(XS*0^9XfKYSk*>ulnsg~_0
zkk5%SNX>=%6E<A->8bMW<!cl-v~7&sr-M^2U0Uo5p4#PJxgh>4?YS6qeWvA<r)UjF
zi)M~+f2*{;fa*aaXJ0NkxI?X*lBZ0?<O{ZNFB5R9#4H8dSU%LoBMYUIngpdUYQ2}k
z+q-|2FTc{EZiIfTv(dDGu<Yl%$~4`W)398-kuSi+va4uC&Fx>T&eTEq668iLec-T=
znm@O6WR@R~z7?=y%1+&@)YAv{%d46TIHY!snLYbGvf!7y_a*1mhW%aGH`?^;JRz6P
zD9vRK7`0h1r`yHFP5*(M{XA1^CQn*Fpl_eGF4qd(=9jshZ767lO@U`+AZV8>;E>7r
zqUujDtIA4JWvepah!074bQEg-5>HKr<RWT^zh8QW$Ja_Lv0_P-XWDqZnkSWde>-%O
zB{p~ECnRnW>pC4gR~C>tSC>PUP3Y`}b!a2z#`P7{XVUv3+b$8T4qkC+{kzT5Ql$+&
zFUetvXI-mm-#T$jd?EcTcEXfl_AtL9%=~1g&a&e=4umbjy1+D!sNs46kL3BH)scMO
zsBPY$>tdn&O)ZD}UznA+0o|nL?Y5C&ja`MqK^mUic-0VQ&wZ5qnu_gnE6*G=Aa$32
zftNLo4lLJqs5Pdz1sp%Q&XadE*>i=a!?nNHq1bj2_X)NJmK#$bcNUb$pnus2A2ZIG
zeDeNGu$n{9Q=*Ravs%;jw?6)0s|<?|BVP<JPu62H4s<#~>L!=+4hlh%brZaN4LiCN
ze1=xl@2QP+rqDdY?faojm6BR?={a<tGceQ0bQfYX-Xzo*PbaOuep6v8fT}|RG-32+
z>EwKWV*x`#D1G>GWnk$vEMwB(fuIFX*HmNE6B+`SahLX$dfiHBXK%oOK~{@n^0mtA
z_O1|redOtVYd6jbWDpsz_{4tFT%0law5GuFsVL_Dkx2c|JUusYz22)!wKMS=Q?nMj
zAGdLyWyOowiW)axl@$}wOF`r8WvQoIE)(K@Q*fK!Hg;I%tUkJg#DJ7O1$S5;S_Xn}
z|AhPADPr%W_9>+jX8BxlK4EGL%95(z?~UH^W&}UBHlqWZYuW7P*G>xc0pFb1k|cxr
zjfRALQS{9pYt^+l&lpeZcG`PWt;Wlnct~|=RHrj5{7qAs_chS1Ou(YhjKryaqcOa9
z;v_7>Tq|3ws-U)N&_s%sh}YM$As0(~i}azx7iuXkczTf_sbk7xF-el-bJg_FzvYRA
zMiX0I8Wuu`4%TIM)v?J@hRTa&65XZ-@>gD2gieZ4ZN911%`45vM|x2?Bj*%nVuT}J
z--ejU^IAu01$j?!`Zf8(JcmSiwWm=r52#+aErw)wVP>SiV66b26V}BqqQ28*nwVy&
zIK#f!dzuP2|EwR<4X~l4xcx;~Q8gkj+wV5`rEE`wN2IZi!0>x0$Jca(ze%N3S_`Yb
z?)4R6V+iL4n{)DysA?y~TA@ji{&E^7W-2OvyZG=CSRmFNAr`GfmwB2i5HvM$lk%~I
z@k$@I7&uswA);&MD_QhTQ=sJJH>!?@O||Uh*89Z<&Au&ZlPx(pCDtvb7dE?kEBq4*
zlIg<H+Nn{z5dkYTO_F!}%lMZ<CTT%iqJ7~*d<v5<uiu8^x}L$L?ijM)zZtAsf`5pt
z16i}vDp{GfgRx&XRctb!*StSISo~?TwEfETwQ$j`>#?m|`Dw3pWOB^jYN|??a8DxN
z;+or5Lx+3#D6_AhKZo=@yL5|@HsJ=CxH*T+B-mE!P8vo4Z*Em{yjXKN=dKo?Jk^(h
zfKw#1PTIqQy<&pOg_~o657x9^l<5gDi6|pyzmp>fN)jN&pfi=L1ToxfAr-%j_?bHm
zznAW^!fWhMySM33J9(i-&~jr(BZLAXkc8Mt38%0gQ?N`rHvnR9^>{oKaUeG^!p;oo
zqS8k67oL{c`{YinHr8q{JCnsi(Qxf}V^xXjkpxtV0Xl7nwGr|hPqP`td<l=wuF5r&
z1DCHu$0@@eU{h@=qkD_*HQQjnlSB{oA^@R-f@WRTCa{npheY_HS3z?<s+SuatXA4Q
z>HPj@?{WB{kM!biIfz4!e*KZ0s2WEtWvC*9GX>bE$<ctm5=+)8&VPN4sbGrAq@C1#
z@mTVpR36j~Xyi@ys;vFZ%({^zY0b2<uzRC0#<<b#s&+3S6o4+6(gJNuJpD8|lN>}J
z10^p1doA_o?U&J89DxsA-CM`5;iIi*hHpY|OuRU|6_*?k1&4&fjqqHf^3l2?5szZ;
zVtU{c!AI1-=CO&8zBFC`kYvsWQb2c9WBQGTg0yd&nN=$pU6Cki<iGiE#tU_rv}>_l
zDht)dk30PzEd&E<G;C_P37lw*!8$jO=5bsCCwG|n1HGET9{|w2*~r3~<UtuXjlixV
zEtr9&#XM}-n;}P;#Q$XI+r=~;_)%GcKgIG_5+jn1Cq{k=l~;xdU|>oAi?pdFGkzZ2
zg6-lV?{7s~7A9DfMzoEd-aHMSP+WS><u8Z)n?qPS&IHOJ^k-2Ts$<iHE|FWkKpIF<
zUTE7^gbq4*ES(f%zVx5f(6ibC-e7(Qv<4&@H6isL6D1Yhoxl#^^&5yI$rB`UbZD+J
zs7X$>Lh|1v&h23B;J|n+BD6Xo$aO4$*V~^ph*l|f`sg>`xOF0V97$RV)bkulu`SH=
z=cAdw^xr3OcYAzYWm^hfDZUh-+pSw_q@zGc`7?*&axUi*^Va<=snzKBV*Os^WU3b>
zp>u-xaO7wm<j(%);{s&FIVcRb%%aP{lHz>>8Qvg6GwS{Q_W}=gp_^+vp7i3II|R)l
zq{+pPRSg}UfsAYzdlqwJ9}Ce>Gueic=uIZ-M)>IlD_gh>C#-LO4Wh|eI(zx#-va=8
zs^7;w`AIsDUa6?xeR~|4%Hx}%m1S4S#Q?R``b$mvb!5IMoBahl&6h6x2_tK?AzBiv
z*k?>S{*5~L+5)mIB6qXT;9=FyB?q>#lK=fRt#tf;$%V}&k)`;WuGL%6MgY`?zxxE#
z=7ron%imAROhl!W5vQ<4iAuZF-&!u4rcT6+|5k+blG%DvgA+|5vmwE6@znA(qd%>Z
zi5vBiaRvagHCAK0nU)P0P`7)i_#9uF*WUNvs_ntG(?fS$)KQc7+HnE)hdOo69fkSz
z@fG@0=_`FY%QgGfvE^h>6Z_ft2Bq?ZuTpOVcC@I}E1s-&*4Xe%g9=S~zjR%UcwYzD
zMhM%lF<SXLQ;+pkzR|U@$1;kjaivJ!`C`O!`0Y)0id_)74<cm}3h1Ei)m`HWbnjpR
zbIMUxNvFt%IS1KvO@&u;hAFaKy6Lc5j`CYCp|gV9Z48jRA>$l8Fs+hHG7oI=yvdYl
zcOEUj*Xie}gDCTg(h+$9r~UAW?1VtY13Q{M{G|q}El#@g=H#~g0&&XQvN}f=rPwy(
z)X&^<lCO!1rHFi0)K=n%)r9lL-Rk5tW4MNG4kFem`vt+(WHul5!O5fQEz$`(-XpZu
zM_%BKmQmQpe7|kjI?dW5JsntyUU%4%7279LNG;#U3Rf+Gb9|i^(%GC$mZ_i@3e0|J
z8FWN_Dp{TO%oXI^s9~*)wR44YY|fX02DnmIgDF6ohiW;1w@SYaR6j*kBWQ)|dfys!
zb3b4pk=1&YAw&0Ca)K{kUNm7S7K?v<&2paRZpW6`hn26@P)*aSQAd_yYl-*!Bm#6O
ztl1%O-o%f^qsD~*)eom{Lat&icgYL}AKSDN)KZ_{ScUmR7R|JwNes<mNXYrV)yf<L
zV?KG7bK&r~pgV1X&UgAzw;^L*&cAS0)>ZzsZ_m)~e-e;V)7T{Oy8;f9&fFJcv@O8=
z7dn1AN7cNsBn3cs?O|F_DE*RVR-?wILd9XaQilkh=MtO1Z_vewTWb3d2VQuY&%SWM
z1)girft?^lvFgaBJ4Lg*es>?~-lz*e6JKmOV*j-{VsmY_VUy0WHNB9KSaS`?4_l^%
z%v|^5;<@h>teyfJ+*b2RW?hGDkWFts7_Yb6F8|Rwppi_xsv&a92mYmx+9%^)vYVyE
zTkOyX;1vHjHr**)>NJcEXJQq&T4Z^W{~Y4>XyFU<LgtCs@xwrF9=&m`9X*bJkmhJR
zmEEW7KXcw({N3*+xV;279O;9ja}3r-*J49#8Tsc=nm63?yKP&frWfs~zrfjzazb85
zcA6*)FdQ{Y<jvA+&uBfDk<4qfTe()*N(jFuNtd2=F+ybOzE(4GBk6Tu?VVTMT<?;@
z9rwJ>gb9H$<b+Df`ZYWFQPMji@?swT&etl94`=(Hw#ANJb`$0r1uUJlGfRt-f}^RH
zv(_aQrbTW5<+JRH5Cc(#f{TQk$eEKFOAEJevY%eJg^6a-PM`YrqJ~!P8)}R_p9ttm
zOZx4Q4Cpk{tc#=^>`|`kJzCCUAt|In8hgvU`dpo?bXZ?<jt{0LiGQE(p;PoBnU=eh
z@*9hXbAt;B<ix!*O?&G%9|oF2xQ$RDW4%H-$6*r{mH)rwT}I~9_h@j+pp8^>UNc1K
zU;d_BV|2dArndat6S1ndiNT9sbSx<a#wHzIw22-YMH?=vNz_lozDe0G8(bkbHrtw>
zC>@c(a~2-*LmwYe*AsEDf;^07H0r0am}Oh~+RpdfQ!#AA@bRGqPQ-3uf4PlUG=hQW
zhHN+OU`&KEgHip%Zog#OitqY9PW*-q%9+05WLp1^RM;o$Ovwo@8g8B&HXig5KZfZP
z82X$ZzM{?>t2^bl#_?v;NQb%p4$ZV{8iHE9Xs|A&U-^EJI848AbM?3HAId{UaFj*F
zYlt-W(WCMce$CGXr*1D(<*dtIx{#+9Y=44UY?}yP`3p6p*yF&(b1TC*UU|VdW0z!?
zgOG`}JLYcGzP)KP4Ke1EQr=j`<=hB!sdj@IiSV3(>z4QU-dj9yjpL5+p6G{5l}(fb
zMH+hV_-tX-WUZ4QyR$M)2pTtNSjKVSDUtd~l_zD^>;_0$$mXg3HIhPK{5H=DXv5qW
zk|7;S62sGj-PoVj$YBW+eEp{%yH-)Wr1#25u1=KpIofUM{voyf!ESLs9Ky=kWZb(-
zy0v_q0Q|F9v`9~~#J5Zr#c_Q-&Fr?k)iyHTSX%~U!Im9SBTT%)UDJ=)&(*ezvH&}%
zMmeP06gdURP$B<RU!+bcO`gP)GI|`z*ksDtKTnOlo9$QIT`hh7kJjooA1JL{@OZFQ
zYc2w|y=Y>_nuf@8nT{!sVi{4lB8P0l(<47uG-~>n@<xEC6eSDCZYDm&xLo6&8&i9L
zp<<qWQ!zbs1YIK_;{h_fD+OGW%P|3BGujf-5mzNDS6qz(&aJ~H+~+E>sqNfU2^RV7
zqz*qC2SM&28A*;2`fAs@lN(&e_cG(lN>dn#ecuy~;ycE`AW;ONI*~{NhSzFP+}G7p
zgCZ!;WWi3-C4Kgzqz4FDWN-Id)pi7J?|YZ9L|)fsfUi5v<``LM%?HD`761M}|Ly69
zfc)REuxC%Q&6SbgPJbwMOmU44iX+IJ;N@ut&-6&6L8zrOlfzVKbsEU)G&HD-YuPd+
zengflOjIelEe*s2vhBR(-l!pyb8#PBd#<Lbq59TrY~If9&8hwmM_<tWgGknsuu$f0
z_q$|dI4J2%4AX#m(f%!Q@1BVg8Rhrt)qQ+uldEPTr+42rb~|dXB=L?9O9(G9=s@U{
zgz<QH2EDYLDFXnSuM_=-%*^t%K$eR%@xCjGiGaQHQ7QI<7JEHvsfce~!~ns&8??MR
zF9kN5@R442jtJGY3*DJVWj|wnpSG!MaKa`j&2p?`lk1<k9!6b_xoT;<u5ioXimLR1
z*0?u6%EG)VLcd5E5cp-04oY`EXu^9P5-P4AC3ya@85AN>W~&~FVN6-g<ax7mv>ZKw
z9S%#7?Knij+SA{TB!9G}OM8wtEXFC%0QoJ%W=8d&UT)tcG2jnqJixIw8ug4=tgGWz
zcXSX`u4_ec`EhDgh?ICtRz++5OUPB`Z4h$^VjexLkWT$Oy|Am7#Dl2%hI82<rjlc)
zr#HArhvp2Yk<)`RGJ{Fmijp@D+CKjGwbcfcV|b+p@9KUWMox&<wE7wk9R)V5eoU=K
z6n`oMl00wYvKQ7|ZA&pq3!<R=wnvmV<g%Sa)r1yX-$Xwp9C;rk=AOG}CW)8h3In*W
zYX!DBvpw0_@Uqqj*H&&u%T+acbbwgqt7o>Gb9()U3?8(OK3S=<G%8AasB5~D5fPFN
zX8S^|dTvpE4c&OF$D;jsgsQs-ztbix);**@4P*PLY}fXYnIDzAmqPg0(~Tr--*HM|
zxTR15w>a&wz^$Bi!)n!45g*&ASomM7Rj-lkSE(FZd0+$<>y94Je=c4WNh|+hVM`3H
zXX%wucTxeUud^lqw1}tlz}3j&z3i+y;LL5FeRs0BU(4QsW4g;XexxTxqE|`me;l1>
zJe&Xf#cf{{ZLONoWmJt)QJdCiDN2XEH$fZ3h?qrHty)Fxs!gmAd(RSTBu1&4mBc85
zSpWO?f0$=^CHMGT=Q`(o+>iaz@S1L-A}Agot4~Z{cf>K!dA=;0U#S>NcPe&Q=K$wP
z^bF`})&4D<5ugiMYE)%m!#*5Z9$S<${8qqddD+R{Gm(fItx5K<*1zY+z{dlw(KdqA
zN+DkBC<K6$v+x!KUm|kix^Mg7<8L^8mAXM1-c#YIy<T)J99QVzS<b@EJHO*8d(S~Q
zY}UQMF6rHcai0(v>CxZOGK}bpg1V9JwUTQjJ+wf!xQ|;FR1QbKP6hBL?bhy_x?QY^
zb_Nry3t1q+QbS7Byk|G(5yo&@<2LNYcsqLyN8zYhCChsodvukK?>%+jBkHz<;q{2?
z<c|k;*ZjEVqb=%4vd4fISbalF=EIKg6b%J94Ub@wEgy8B+--<tVI;QCKf|wDyf|G!
zWsK=nv4Q%Uv6gI_r{YIN?&Z|^q)Y>!_N<U1A?(N;;3L%Ze0(#uJIEqI?X2_HxwGC3
zOSURuH#nk0Gn;<xtfRuITJtoG^MwQYmu4=$V2931DiQN3(w%C`vgD%bx}d$hX96ZO
zvg0q9;n(zlNpEm!&a0Jwh~MjUs`*~c@lP_MIga2fXIy2eY8;8e-tMt4&*mrin@t=m
zV9k$Q)vZe>)x~i`mz=uIF<)m?unn+nnQkVJmZvY>`XsuTM!!ziGEIvJ1L>u1R%>d_
ztEXuIs;cCzk+JwIvHe>s15P<m(i48awz!>)oy<#0-jDS5#?(jzZSf%uul37E=S2n?
zOAo68x~$6o^{~l<yV^zk&cVA|)QbLx^7{uY!N-(Y`yKP~#D`sUXf23gRX2ygDrZgI
zr&cTVL`5V6Y?AtVl$$FbUhXY60rzDx#552x1I(oCtBlzRP{)A9E9UhK`I)p}z)l`h
zA?7m%wgo)g7cADi4eWXQK6VL4v3(^QcJKz09cCTs2wx=)ES-=a+C=Czjd_zuA4cV8
z{`auutjjmGh63&laZ~F*k3M^22il!*u*nk<Y?XjI5_^reamj#uy$HAq$H+fp#%Qyq
z#je8F;61D<FA8tXgdr*9K-W&4pjktQoU3$@#QBT_vnSTgdPp=#3gjz<1xDdK;kly-
z*6_9&Hh8wJGyHy+_F6_lrVT!b9Y1wO!TH}W?Tj|SHV#o(0(K||cWts}3xQ86Po0{l
z7j;pBO_4ktDqhmOxC#=$$xMC#9aDiF`ZElG?iFx+*#8-w;7K3K^7xNPuY@Ppn;awa
zuCxkw#EWMIYDmMmYfqoY$t_fsFVuPP{&VDhG+q~_cvq{R+VlnL{eBG6#N+GqRJfZ-
zW$N#UU6p7Lk)hh+Ti`5*=?W!V^c&EJ%9RFj#c!EUb8J_D%4nSmO7q_#jbX!fg=#GJ
zHDQ+S=4dm>+K`BWuPzKQG<A4Czt4<|;n8lk?NCWAA7&=Tm~mDOiqp1z-U<WhHL4X0
zWXbP1bSZVQRGoAQEp}-+<L)=7(`UIT$PzLF`t_=2uGL82r~a|L*jz}ZfUr%dhS+uL
zM_AOoo!?q*8T|CZ@t1AHf)NkWu%vH-{CU)J)wEg${++V~F66iVaKyx+G?T;dB{Un#
zNirH*D`P9Vj?B=LLM>p~5@Rl8RHe3jdY!;C%H}$r2}onC{QP@y*i*VW!eWuFxigf3
zq%a-uy74O}h@E`mg6R^7q07!v)<W~2%ESDWy7Ykuy^47+_*evYd#9qT^aKkjotnP&
zcQV+MWMcKdMZ2X?aHyc1tj>|)y~aOa3V5XQ$Aq$?^m$x5@`mA|<$v?Vp4=;^O7Zse
z=D4~dHv5j$=daf0!P}aP%gH@sX`QB(l**$FNd*fIEpHhaLgePv%)}qPNcpohQG>Yo
z&>s8g#1mJH)No*&&C{g%_6Pcm+Bk@^y-|pN(D4bS<;Z)}!*6!6Hk)wXEsotf22>f2
zlgPVJh2u1TKBX3L9imC*VYJqTd20!kzaw!ma%%;)a|Y@~jUF#~Zv`AOE3)!=mlWS@
zz6N>bPUkT0-0&cmZVSD1@3l$l(bUQ%ng?8|Z4=+QCZsM?s7>YN8E(PMd%U<Kf$ggq
z`Z7v&*KcK-tNF%Hiuc0}IJ*K54^;g>D)cl&p&G&IQ1E6$ovM5aDPP?leA#Y_S}gMw
z4Dx&S`+;!%%an4KKj`d%FSAAsrk<Yz%(B{=7y5qZt+-{p_mJb~Tu;yQrV)-TRNhU4
zTT8?5)E?a`{mPiHEXIH3n$_{QC)aFr6_%yYLZ?@@GFPFm(V~dwo;dBXkmS>Cg#=)g
zSk&p^6&zaK;sjMq)Z1t<TKQU~lYBeP?%<wf+{bSz>d1~1pR+QPX)g`XG+7=d$^-tZ
zJKR#uy&cs@mJed@YiIY7*kNVjF~;lO2XZ;@(A`$ch4o(I9(%1Mm3yh{ss?NKy1Xr)
zCPPk(Hmf4_*33Bj`dO}$7_(1JdKTL6A1D3gQ@IC#G>i6g+br0EUU~TH((oRoj`r`F
z`dQc=IZJnR&Q{#(@7uiZOQ;At|6}iH+A0cG8!AzjagaN0dBXL=lQ+k}qqoA6Gfldd
zA^iTaBKat%EKhIJH#ll<`AE_3k$^%_s0Ktp0(ws&FS64;ch$~%{}bj*UUC%dAQh5p
zAIQYXb_YM-{_-&|=4O2!BB{o)xaCG-V7>Lr6&KPcn;xP4;)U>1d+>u>@=yIC2NkHq
zu3TYU(F@si292CA5ipf+dG4Jv%8G{Rv(4C>yv;b=ox_#w<A8u$SUc<>*pF{#^r&S@
zp^tNoy?V(}lFfHWGe<rS;~x^`9&1ns@t0P8xaHA!C(KR3fEtXF?GKjCt&2thdwq-7
zcMw88t#Z<ZBQ^=a2t|;0A^Yle1kY^vPn9GwnBHpWDD?#x)hCgK_!|8W5CE=rT0FMa
zF#j=S^=>B=$N;bMZJpkduKTs94VN`70KPj{c3b9XJaif2SEF5kR{lJ<pnwyDJz(D)
zM<ysN=@v2^9Z}5@P19^uWQS9CYN9qy631q>Y0+BQEp3^6iiE`S!=5Lq0zvGC)s5H8
znW3?Wzf@>uqGCgU6RMqK?Vd*i3@fzdo1=dwylU3d0QjGFvQ9|HglljjIeL+r>B86F
z3vEH*k$(Kd`T=@lS4EI9SW!63J9^#g(Yh=}nbRwKs=@wlZsw5VU(Vz``Y8%2b;<Ki
z(HWX?4iWsO(s=FA*Ia`y-&lj@H29BdZ#cN5tLJmvfzh|fR=wrF)Bd}vdT0M}0^inT
zAT2e_ribzMfTeZWG=)pKQj%BJWx%@C$qhfm$}fbt@gu5=$HPb3+vJ~Ev6AoJt^PXa
zME^s-4Mt|10WuEfn_ByKia&|#zhLbRP=(=xEhSf{oK`-k26l+9)G8fe=N(oK%@;6i
z>S?g5FsHFPEeH33&}S!ChSNhDf))MF)i*F}3UvcuK_PQnX0ft{pW1FA8d*39@3GuT
z*c{fVgwsOcJam2~BSB$5_hmMH)(3OkUuC%OB_p~(l4G9Cb9y2M>0<pvI?f`Olr^ve
zufQI7Y5o0pR_rToWX<S1&Mt$HlgKKrQIx0o(fsNrT)B*PJ}Io>HNmFz;AE2ZpyT|R
zu(_jGWcK@y-HRLCUuWRlR8LV~8sB!-c?|TXEmOhu9KKF_{1i_Cy~aiyGbMTP#wz_u
z{>pUrL2oX*MFmA~os%>@fs`lFW~exZSDLkjFMRx`04^kaz#WG$T^EIfxxKF7haKQG
zx%S6uTu-m?s#lpZHMt3z2~+ttw%hZ8pelDImCB$V2lg)^Lp~}v8f1)@-{N^7MB667
zEAT^0?16Goq{m$orjFn2vdv#QeeX==3e-@Zs(UW93)CEv{Cj7HWKH83nLYzy<M6h&
z1$KNbs{K#$RVEuzutN_v2DmDnp-i}GAvy><`6p-iCI`Fs!IVJKqi>2ZAWEo;Y&`l&
z$%~l~ZcrUudNRG`UQcq1)S42ArJH@p1lCZcaLc7esc%dMkL^@e{>}H=@Y5m&y^02$
z3Wu61PPnlkcI4iDZu=x)7q<ZW$O*ZbfOw_~m@d%6RcQ-BuWl*Kt%O!i8<ni93X>j@
z!+sZ<0Dp=m7vIHSj0Lp~*Q_Y2FX&ur(1(z7*Bu&82)`*%Z6)$kPNIYX`74$4ttsLi
zWmvp{`{!RQmpzx~I+v3nQvs6YccElI(z9li6iRN<j`>0+L9(aG1k|I-uR87r-^8h(
zGuyF32KfA%%)la`2XA=>_Um9OQm`j)|E5>_vCj1Vj;GvRvWK^-1Rp){R@tyg=+a@;
zU^|Qn&<L)4XK2%U)Pievj`c|1Phx*EBX{+Y^4l<ah-?FmjNUi5*nw(f0yGx)_WbPm
zc0-@;TN`I@{?#ogD{*I7mTt9~bT#?Q5TaF%^Zo#AaG4uCF+yKcC_;ShHzDwPV|qnY
z299t_sGb9~#$EwuVxe-kexHyQ{48{=V_M++%x&io@Iv!Ax00Qq*|rHP_l9NTZJXg!
zq>H~niHBGjcqFm6{T0zvdO|n5!#x4Bs)CP2qgJub;CEZ}n+VY14*^S0^t923f1P#b
z7Xz4ICwpzZA*T9^=2izcFs?`I9p`_GI|e1F<DFfouDVfNz4>hU_JG30%_0)?`nzdV
zcj)hRe)B2lcKDMduDM3_ls_L6y>(Y7Jy~1KqN?^gBt424iJ7$D=bbwB61ocadqzle
zee?3TJLdPV@P?-|MMA#uMYNl#F|wHy^vf>or^rc6aDy){z;<FEJ(zLOMDvC*9(1?&
zcEEnaCXojIpH(--Uw%NH+2Pax`~pJti(~VUw8*bw3swN_%S<<4U{&F51%0+((7a6c
zK5Qq&Qo`t~M`u6OJFDckg*Aq_$BnYd-LZpvCZOxI0XUM|d1l}?S-;A1_a9BmZc4HK
zhFvu$MD?H{RGbypE5Nn#y|I1j9hM%xMoG?;UOS*f^PsY5-*nXkr<6D3&K5%cdLf<(
zd7}3^Mz(@HaZ-jKNSXBi%La=yZqi?wmjT`7UYEcEai#$u@Z>4w;DcPUh{BZ4+e^l5
zKjPF-B{rZ3SV`HO2Q_k89vDs><=PfrJCy;9RKI>4Rm*^A(d+B<^<UL{#!@KU&6M(<
z-e_VDwyDSJB-3^<fTwgie_ONp&T@VC6iiehb6#XANS#a@*!4J2YmdB{>3SI6j}rV3
z-o`8Et#6z7-_kj906s#v4tRAYZl5;m%%@(XpD-&i^&8zaC`6!c9o)!b-}vVl>vl7A
zbg9YR`X!mOj|H?&388{P-B`AV+7lC#oyB4hPP=K+C2g~5_P4vHY@fW%ez;qPBT=K+
zYq;rQ(R$&X_vF?m`}68-lfT-gmeY2MHmH+6#8DrXzCW6>3(7cMv{kj4FBr?RX!}w=
zgix=f?P19(`8-k1z4mdGGx?6a1zxG1Kc%m3<MqaWHpy4~SV>I@(3e@jPX;WZxE5XK
zkbRMF-aM>ra%W&NjcNYH^LXTrru#^*z+}u=mmX+U0dNVdwy&mrDQG2kM#Vhs{ockC
z8)$M$@LfcTt4ox5(_rCfKs64qrPz>66MSGdAN^d_-C#;6tM+CIovPHFy<6;tXTm3h
zyFyWy0KQj1_XewtdOy+7%O==nkM;(8rAPAHDIKZo@)0+t)6ETFJ#yClyKo$1Y*V;i
zxJoV>cw=xLnuE!{<KD;$PRdj*a%eFToze-ls9gWp06KT}s+KMuGF#FVMSL0-6L0o^
zRfatfm45xpV<Mc-9iEGCGtTM>)T5ZCyao}(x2VBxRxnv|{Ro+VRM{_Iqj%gelm6}^
znuPLar=A$7FlysOV59pLf9!hjCCyg@Jf-60pWk*KSQ8kQ444OP?{82FxPw^l|9loL
z>d2G0zaMw`E59hGRIS|{zr5gAliiS;Z4hNy+vd*vAW!AX$i|50#njGQ!F}$vICz3K
zL|ct3o076ce_N;+Kt%0C0md>KQpDI&iaXW{zkF)Ay~pF9mNBZfam~C}9An~MXo6sa
zUs;XEDQvtFKL*YBgrV;`&NIBw*|&vV8snTuA83(&YbtbKTb3%Thw5kuH;fTe0)-0}
z`iVWWClf*+0@19&oz$cL;KDE5^MB1(6(&yne?aW&v18hi7m>lnODQ8_aK41ulN*Hr
z;)(ePp~i<7aVpz|1+1A3lNripE%EUi1Lej%WMyCQ+|JWPp^q&TyHMSOq}w3RMP<K^
z(NOwdx3REn3yS2I^@?wAfhbO$7p4U6zv)SXN5L+haC>ph&9}Kl7x(XE*4?Q2Yb+iy
z)ai?3&ayY?sS{Q(3~WiC(@PNNaeuY+p>oJK-jb=1V_+^j%ZK*`Ge%m#k?^92?GrQs
z!^6e5d#(Tk$N>4KMsKx(i+Lm0Ub553pm~b0I8`NQ*K@dP<uE%2aGaF4DS1udy+83`
zo4=2vE~bWjABCJ*6pTfKK^9YQ@sy`sRy{{qET_)T8uCkva^~E7!6@NJLu{&@0|I1^
zgzmX_cAcCZa5q+1)=N-olo?|(pf`Ag2i{*>B|-T|j1v6kcD&))4TZUW(E4-(2rJ#(
z(P#=8K7Vqc0b3i|Ab*oQQIo*oT@oH1hg}=koMchCr!dY2ao#D)NGR*Vz7&nfDW`ke
zeRxUCle*ETRwEi&%HyMWD8VkE&`)zz#A)H6@1Azp2g`M_iAs5rU7!8LR;SJAePQ+n
zMS8iT>PUD6=VnTG@DJ7wH&W?aEbkK7|IjyVx~Vg+&J5@Mq2j6e>uquh-+U%7czD<~
zn?Y%<(&Q19#aQuZEQq5^p|78^l*8h83v`wVRW?6neE$y5rK0e$&`Q-t&X_Fa`{J+i
zs!W^?dY%pzOGA%->Q&JYVpfAv%YjrJtz4V_#S7j1a$}^!P@;H=w#}?aV!55naDrv*
zl9=k5gtBwnmc+xNE23kK`~c@>n~Y!$H+#X>O6EoKqV#-wad+6}{cTLEen+%dl>YsC
zXoK?`eC?ByZEOup`xJ_VB*u>knPWHoj37vcQtB>+hmdjfiwjBH)B3kqF<4iBY#+(W
zXgg3>PzusKuE(i%H`%?shytGa%P-NLmif8I5Odnq&OmRto>O(v?0drdS-<jYYT0Ay
zp>e(v=3O$iIc0CL?y7PG-L3OZ*;omF^BJkY6ftY(Ix;QNShQXY*czAH%2iEsG;qFO
zQjQ^5Y@msAw%M@@wH#^n?dgh;<`wrAF|Ui}JJ^6Nf^YJ>&l2ySR86hAVQS5?=_`%%
zhFGRohtstzuOFA(ZB)2geloC5UlH7o@K#MEEG}H$2G1OB#XeszlxP+!*r$&2h>P9s
zzspBVs*&Me5(rA!vM3Fni9IZuhwU2viFi?+w{JL&2x<Slzy9oIgI$;EGwU^HTY(U3
zLWw`dL^@)cVmwfij8;+cc9OTYZ{(rS(d!F-e0o^SwADheZ8aC+^jI^#w4{;;Vls0N
za;7k{<F{;-Ca5GY!BPKpF*B_qzrI(Tb*oX!$)deIjTMP*rU?<;F|xq=tvtXc#z@fZ
z`C|fxGmd6I^Ed{nE{kHD`O-enj%^v_I$ROu+xnK0E<JX|V!8XJr_y@f&9#mP)`!!N
z%3CriIHhRhl#fwev{tvOgU4P%9B`qQ<kR;9UoS6wdp(DIx-Z9Yon2$?1M84(ORu20
zqfn1J%{Z3%(CqmzqI)NJxY7)+;JUHYK?nI_F7-bf8fT1lHqbVk)RMC%y`^Mx`tPuO
z*sil5BV_TL8jMu?@A8y-9$Ukr;n7OAjw`lUM0A2}qJbRpFDvdWTY3~=L68;jzSF9S
zu4U<<gZH&=@;sW6)9r=Aui%^%Kx<pjx^_CqVXsh{Fk*-(dvKRvha<J;DuQwEZTA&e
z-?&pkJ!C&uc~%!%wB@G%3AV`?O!W}o`g-M*_E1J(V=>MkSjhOu(6H*e_r=1r*bPFG
z<8I$7>8EzSWCq^?D<mIit}JPyK`-WRwgLeWm5(8wKuS8{Ru8B9tKRnS4BbE$7E3vg
z+M$OlO_@nST#?#18p1Uw|9SD?c>!(*n66UNY+{a#YGFV0I;-9>$x=G-IqW>;7hdI@
z*CqZsnXu2kL{~ny^Hrz5-zQV9t1iSOE%i`DC<CYQUT1NTMbqY7+Ciq8+lRZEC*Z+d
zIGvN{{BzBB-Atz6iQT4cQ9rO>#rGRf&rDd%>$M?inu<;+7%nU>zWy5S`zH7H1!Pz^
z1N*EWY1`B04E1(qhBT1JLj89Pt1eF7?O^b8wCIODTu_5}OQfUt_o>z4d0Q-s!j5>2
zm-1A@6YICCGxe992w}Tso?~Mk%B)}zM|W?|K4b9kI%;J?qd47H-j0cMEIM2{8Nh+|
zBi-<|@)f2)-kwy@hM3AD4A#Il)^u4-oy!7bvj-4h1A5|<^lsCA@P#qqPKJ@f5m@5<
zH~kpk4^Y9`A5iD!04wG>`)(G-eRV!5Q*W>8<wb=Dm|{|(JW-b|n=P9R<djR8d8vN>
zDO}vqEle=W9csYql23Tf)jo1}Bdk9n#L1YxGv`VV`WMM~IUKME$4=GmEbUR_pKp{J
zQu#ua_s)I7#c8t=Pfe4k89a)Ena|Cwx<hoM<9VmFKk&~PC9I}>Txduebjk=8$s0M4
zz8@&s-b?8bJbG9Bk7@ayYckY~i%L#n-@PtA?&BTazDSCjhtD!1<UWdr{VUjNi2N6x
zvaSL1{=y8oYp3fYr}HVQ^67$;rEFs0l3PfyZ2aNtox8XPwza8deOBThoaSwYYCV%@
z%9dlr_(>~47Uo5e1B++dqo&D^#rwOi@-~Lm0xT?QYl#73(Zs;p#Oo<fu7?U41w#5!
zF5p^+u#JU}@@&$k0Y<0(l5XE#;<;`B-q6|6__%X%dJ1MmWX#wQYELM&{8%X&4@<AN
zS`pRe|1gkx6Pwk(ljLeyre_1?I9;yTeINO)3=`Lvaasi~YfvqlNh!J4sG;NCecAK=
z3aJS<oH}{aw30Th#o<O4Vz|!R>hNd(Shrrg(16hFj_U)0mc0-Y-(14=lD{R6X8V^9
z!B(&Ig&H-Y^j6DaJ4=cL!ATIqF2d{T;zLH%PZ2W{q#s^!722mibqnWRTKQjQ<&HR#
z0q-9B4&yzj{kJi*jS;2k?rHk>edsS3yCV2Pj6N^+=x)-_+T%Zdb;d=D6VDM$WEyyz
zIp>uvhKJ~T;A26L>S3+~=VunU*Xi{QY8Ehb9CTXYDv*6P{ax35SKg0lUzd)9IcUm`
zy9we|nd_BzrMA7+zJeO$NGb`Y0Mg8bMm_z|hN17P=hbD_d(=byw|1$W0MS~SptyC-
z;l8v6`ZG?W+Pj=m5OLSsnmg##gKXyp?N54lSfJP=kKoYMRi><0?s^o`I{9w~E$^90
z^%;b-9JT}*5dP>Nx4QCtBG2DxVecCd7t%I-^^@vP&NOA2z<ro7>($@m??O@TYC4ym
z)!IpI4@x6<?A!I0i1|!6NjLv`>RmI5E2WXFQolLm7|h1nJU-;tM|aG{D?GLxtI7B~
zenUsi4T^9r_YJI^U9wB_#cEL|TS_{a<i<Uj^e68Ax?bgI?S=&}{QDZ#U(b6^hYk$K
zTshK^`0(H+o=c%Zxb~xh)}P5QL!Wxpx@2rtZrcs)wEy?SLt@;vPJT24p^5%eCp6Xo
zSy%YOutZOcZqA;<_rx1|k~(v;tzT|!Cj_&tr9~iKEyR*lz;@n>Vaa6%a8o}GG<oT%
z2Mf*#s=NUAmneH8<mU(V{{C*G`vd<gUm5g_2=-ZvwPJ&xIwUstb_cw{&qi8FTA#rq
z_=14$-gj&X#;PoUma<Puo>(8$JWF){Nt3vZ-aK3;Iqf}Cky0HIZCfkkD?cZOiYvu_
zrB)3+Q5g03^W$h^s0}|<SCqH!kDwt8;NeS!*n!RYmDis=WS)lw9-AjTVWv<q6Z)o4
zwINFp-#Q-jbuR@o7ZXoe74N0ks$sAA=J_d1tSR-wE#^;Et)0hDnOlQC*`IT8`A5fH
z-KCFao1M8NNR9$rKQ)#4b~CR_Ewp}3(afHXOFBcF-lvxeb^|s)<}s^e%IpyKQ#t#|
z=zaH-w!`-!mf0Q10cw)<Y`PM~E|_#1Weh#Esn!hpy-K=T;z?a&y+Q924&I{%KY*cg
zZ3Y@HSyRgaKI>>r63wIqeKq-W+hB0&<u@)wjQ&|C6Xf!q3M29Qt1`(NexmH`qoV4g
z@R%+jv|O0*r#$4Oc>)u1a*OFY`ABQ1bKt1;zpGpn$Qy+RI*N$qi};Jb1}!wnKKZjE
z?K;YD&2;IO+_;-tj2Z@4nYddT_B_11bV`eBqBOs{#j0f7H!(NQe_NPoB41Z8h*y-&
z@%~;mDBMccj37PEqBM)E1X9Q&I9YwXZw;a6)-^d6k!Pc+9{sEaA1mJ=P~6}b#c^l5
z@Ps&w^(~Yg&cRrHWn&D56i$i3Co#3!0-%bv#!r?77B34aRz6wfD-GLr$&`-W4HcbO
zy;zL3P1el#3224Wn?B(2?oYVSSH6=fIRq-B^n%c{Pwz{NB-7nj(8{iRvS;UG<ab9l
z=U*kcjvwIS#Nj@Qi!hMBdvnJUc-~tiL8O4?SX^}-GwywwNbwss8!=_DIV90iDvFud
z(g3%fUq56F9d)O>PxLmQs)<Z`xLhTN*3rx5^WURJ)ygSrs3P@OquwRo{~`XQGLjWw
zp_U(VNV|zj!+p@H_TscSF+8Gv;Da7)^OFiAu0qm-^8;Nv68qeInst-PCGRGq0uTh<
zmj^H#xR2XZPh)M%QHh_Eg}+&hW3*L~_LTLu$$}>zm{snPDdEC{V^{a7U&1YGkMnac
z%^cKY-6_ugN<v~YXE99tv+j56GbuicN(8ILe${mfVWzD)YS{`hJ@j^!4Ni&Ltg>He
z{kfqFSPJiwLoUvR$)L;S<de9x0CO?Ufx&+Dar9l@#F;BdUls#_<MiB%d$I4+Ih59$
zb)$A-YmSbB1TQG=VM3f`DRkta!UHuk71^w;8XT4yXMv5sXpZ$O#c_ORZddyID7<U;
z+8eQRR4-?=?G&r7*|V(F{ZRuNF{}5K&uOyu9Sw5CBWYsz#(HF(77iagN})$5;Jz&m
z&bGZQNK$c%s$_vGd#H9rvCu&LXOspJ{ase2*3bRTw}lnb;q#~eVdE8)Hy4l?WGWZ5
z(tz+T#r+7Pi?LL-8xbb)_~wlHkcWk=Z1y|Jy#Q)c1|FonaX@qWylSORuV%JRlTZx^
z==+=W-$~?d)*q0^oHwB)e@4C4i+E58O#CPdlsK<_-YEmYtlkp`?HX>M{_SOL-8H-c
zT5biYTDL@215@9JHuq|tou{M|1J%pJYq3j?gw%bzc0K#6OV|A#5hyl6`n@(Gw?P@l
zB*m?Oe8k&ltK3~#%paY&yUvbUJSZP?di*%1-H};hTJp1UVY`34<V#`v^sk%;+^<F)
z8_Pj2p+JF0vf}bYE&#=!AE`;;M-6Obd2mr4wK{$OYC8#eR6h_%D?iAg1(lPxf-*sB
zV7Cm=_92m#bUFV-uwM~2e083hp0yqU?{c6vx?MtcLWjEO>v}cWf0cBV!+qjC{<^<f
zbx9C9a;e_@3MdopV}#TkTc%d>lNM+RE6(2fb4=H}d`9liz?>DFItGU{^3VTC0N2dg
z1id57V8bmOTYlC03xc;=@$QuK|Macz<y(azR8c$Gpr_dY{f@_1g&g+8ddo+j9<7gf
zrA0>`PY)F*?MHwFm+0sqcxXlSO+-xHvOtG*cik!*NEW{V_|q1&4VSPw4HdJuQ8gvf
zRF{e6*f3=KLo(Lytn=q#QU3Rj9z@<6(2}l)+`yFf^vrgk(5M?Ghq<IDYDe+dz?MQo
zq3O;UGyA>%{PugP(FgnvI$SFcFj`r+UkPv?n>jWZ`A-0FB-57JPunyu_DrmUCRY;%
zq!(F09FKmAHE2E<{qtsyexstQQ|qy7zPgR&qpM~~c9flbNbYD~7F<*I5^EpT!gVUM
zIeiZ6@j5{%`pqw&dk{a1JP=j4QB%m3*_r8nWlgSW&gAm(^%uVrfDjK?k5JHDMI!`&
zvE3=ra!|YnQP1d>(0m(E_~<RR3Yywp8wF>R&8GK+hwIr)*m)_I*V6X#f)Qh8q00YK
z+>w?3QPp>yfz}YcM#+sg<MkyLS<2yx3v*%O+=tIyF;%{xDWN;&Xcuu>W*A+zB<hA2
zlr1n-X}IC<!!0F1o-5gRsvglS{k&b$acyl3e;0dLbEB@YpfN(3%3L;kVD6#2iA@aj
zmjTlHTlITq^HdDNGlA#M8pS)>Y867wL9kjA@g>u(Tw7gg@PTY2)+XUOLvMX?ZK5Oe
zS$2Xnyk1k`KEyWZ@ekv((5=>e!@OP5s8OMJ7c82V#fBT5!It-ts{4k`O$?yv)%ZT|
zh8UhR_wcb<;Tn(>`t#_svRU`ChM{S$iMc-~n?RhH;u2k=yxnDWBzUxDn-Em>g6eM3
zS0i$T9&Act7G`pNtL45<X&p9r;Pzk7JC+VlvZHMcM?Z!<LU3|X3yDkoP|P~E5^WHq
zfOX&}+$>T8>wz7{!L$ErLGq<apCfPi3?^PpIH_Xo<<S{YC(K9hq)YF9o;-WH_~u-O
zQ~0jPE98Gpy3$~$sou|1wAi<m{wm97Zzbzn^im3_DGDUi^~j9<^vmc~?`<w4Yg=!5
zoT9V}Zw@ct<*z@1mGo#GxK1?51ydu=y76c6;l!+n-&?EPtu>l?Paw>vnNq$GP|_gP
z!|5oqb$|Hq)%J%B<_-IrNsj`Sp{G&I>W^3t^j6a_tKgnA*}^srbQEcOmTp!99&1vl
ztU$_3mw~iDk^&}8TwbyQI+$?uUqL+1<(6^T;nd7h68;$S5^_I%4pys?CE6wAf{Y<+
zSqF{?6oNweMzx3jD9%0itUe1Bengk`JQ1&ma11{u%sK@ItQCGf36sfgUn}e$Ihta9
zzth@n6}^<(mJTZju5nJhO)fp+=Hbjd(*dbAJBlEpE?$?~v$ZtQj<Yd`uJ}bU+53L$
z-=Tu)L}MsF&|h_fB!ue&tJm0<Y(X;3fxTMVj<ZD#`z*OD=PmP;<~~aHr>iRGpsYXm
zUG9(w0=_q?!MrUEPuUaNrjLw+##%$o^Sv{!D<`>knr-s&q8fcM@niC6P<&9hbChq2
zyW4L%!jPf^M0JvBwvPWIs8eR=hvT?mh-=n|_ZUOZI%3If)RR*wwJ*=^GUL9V^Myq4
z+u4MsPuf%;_OkkzP@@c^R}e9OkeB{S4cHpVlk}~#GxhBq8%3(jw&y<&czjbvY0M+Q
z$0erLx3_}EWmNMv`g1~h!F5Oe38ZsW5gXSRG9}Nd0-5qm$NP*P6qPl>wxl|zCdbVa
zl0!mvoZQY#FKa{{y_&W;7wU3cp9e4g%lfzFO_53~8J0dESM}MFd>r&LI3|`@50tbn
z1>|}4o5oQ}IJ-Ijqrgd=ZBKEAeSB9T*{_FLI4q^bGa?`Ojw6zH@KrTYan;NM-Z?H|
z&6>y0hhUtEP^=#g^^5cBmHA)N>v8eVkM$!jEvZ9Z`yYx6w$hIsR0Pe}cCH1@W$k&0
z-5moS&$Rf5yyUP$7&bKRz7xj^O+z-lCc5+PmjSmM$myTQ%UJ!YXYG?soq7XV|5B>U
zotndo&+M4~3m2aS2#;3hbN+{#8>N{R%vtsL#}AQ;)$PQOCNDANxq4N79*?QR3RYf=
zY8=n?5w78ILDf+nayif<s`^j%WqKQOmDk?BLuY=iO2i9cO-pHA`mDJ6zJG0cwk5hr
z^`?^!ovCbJFmhyNv@)$d9xP|Y-6ez|N<iCeC?}DY#y16wAPy~e{ud#A?FrHQlpSs%
z|Ghb@O&W~C@*gt1X)sPL7k{svC8a6|<R$~HrB&5X_SB?dCb}+GwT<Q`3(E~tKu%59
ziwo`~f5y?Abyfxas}*yOZgVrl@*_m^)4GM!mtzm_HfaBv{e8$FExj6NyhQ#?7MVQZ
zfe6Zi8lv0l`*=8<s*y1e(uekSm0?Ku51}T^qqZq0l3&egR@Sg7sOW~Z&(@Zji*;?V
z^%SeWsvp`-{OYFChR-hb$I(?gpty;U%4+%|F}T9(_jwiHk5-eLj>DB{^d&TY=9}hm
zWG|+#mm)kBxykjZ1!ou_=(P3NB|LSTU8I&`7}I0o==^DifEPYFYC+*A=v{OTc|XiX
z5bwr-@|yo@=Pd2*cCqrS*8kb0ZP|wYKHJEY(-6pu0i<8^*<;iR=ySRQm$y#w*-rQA
z+3}clN3inl<9!S!H}%}6-*gmAd*Qb{FSIpx;^(<>3T?TAQi8<IzhDc!)Ku}P-<JjQ
z_93hDbg-_p6ebJuD;ErKE$(xzuLvOX`ElPmSaFhJ_LeTb)L@l#)evs~VQs5(>rY-;
z)qUE%V_z;50FNPWV+(*DHPQ`3<KvhtjvGM4aN@gayhat^=X*f129T~rVfNW2$-Izo
zt!&k*Q`g_315^d}&N=@CjTg*6CpWRYA0ocmfb9%gvchSrFVe$+T$S_XnPVr);CSgo
z=5pSn^$v-Ae0InH#+C1WXGJjZ;VbqL0M*+n&K_Zx@QLUN9i17&*;#)MzUWN&rZp%#
zL(`NYzyg(3m6|+}QBBlVy^3tH$oF13OF+cbR2UFshdCNlfh2^(4+F%Mpz($027QI3
zuYw$8oO(5|lM^<qd8rej41)p{Fwp8J)^?Dfa~Y8A79T_B-lCE9$`5VjxnJ6;X{~%~
zjG)NiZKy1om@g@=)$qyep}*uWs*Ovh9q|`pOdB0TkNY$3-U*vm{iJnOlG~mHQf}s_
z5O0rXA}#ZezGxiM_#1H8_ip@s^4uI|^I=v0DW6RE#Momh=LYAHg3kU5Wp|SBT)_1W
zHX1kXE`IROX}%YctAL*}%zVAfUWO34Ny96@6a3@999y>G*w9KkbXzw}EB~jh!4vUF
z4Pj`*K4__JJ<YZ4TR*ELG`YSm3h}=aXX=<cRi}{F*d+$snQLnf#aq<yw~{>*I#o9L
zh`2eG9!}pJ00Y%_{SYu)HYCHhJZ>E>90EpPQo#59m*^_JDxmeFAuxRO^g7*Sgt8yb
zZ6TuocN-<$HRBjon2RN|n<vAUFzJ-$6}q(<`u5gl!ibp7O?oHNCeCG-I${iuOV=qZ
zGtD_JF|2wCN8G~VrAuue*cGA^3MRC>gmeH8AD#_@^$Su3?$GvSdj0c_F4lt<^>3Xn
z6{Y_QBsG_;a|eCJ5SG_ZSpG7ZT%@OLw92Yl&YfhbD9zIZcVRR9k)J&Ts{@;U-GAgt
zivky>{<cdC3PPL0{=Qa~F?g8k*H+P;6fCBc7-)en%dpB@9vTvfuBiTti>P=j#rpOW
z<NFlJd7`B2+pPI8kL8#!8=0&Jke_4NR*EbqxpyrD$TF!nqXH{1Z^TRbl>O#Tn6PMl
zb49#(Kw>$$isqsxjvD&9hHH=+*Ys<XxmK@shj+F4A%U;A!44K4w>C(r-lKJGUh7Tq
z9Wmx-(-2rJWim~NdUY423yZ_!s;D@baE>eqe~0Aqw;|L(mX=Sj)rybz1kQkC7UKrB
z+8Q_i2hA>LWx};a(ey*yvUtAf-IHVZWR+<_jgsUO5r?pq+hUn4Zu-@64}EVW-8U(<
zb<Xu2{k%LjBKzkhC(ga+yMh;q5i)A^dfU)*i15Hyft6%7Env%5%l5l~Z)*<Ap5>&+
zv$ph^7d-Om&85qM^bhe6?ej1pEMLt{-LqRGbnzZ>B$EgbZfeQRnlboyczASCoI&iI
zJLv(avGM4~HmS)6*9sf3tU)fwkOLSIqll@ZS#P6k8B}$+vTtx`vCCHBFtvG-TH~e#
zBryf`sUX43p>aUvSj0w=T#~n6Ml#V>-R;$`jA}a(furKWK_v&%LF}`~ug>zP^_%H0
zXIIUdgIPeDJ_p2I!yqpk-O`ho>h(f^3mf3S{E=(gU$|3~DQWIb#tviVmy{pcv!_aT
zi%eQ(<N1ouW(`}pOtwFlAWcr06)6RdZZSBq?|V1jxYO~Sp#GfZ!tu;C*>N^AH@UH~
z^8CHtA-H8*o5|j&_bBMqwO4sLgK=-V**<h9^)Frff!yhb8BlS*F;8^;d$yT8{l(CE
z<)kTuziLU6s>ri~y*itD=gX*~(^5PRS@<!>CKdzMef5lzbsIao`quM@()vn<#k=!5
z(ix3;>yqgod%aTKpEO{;|8la0^nMyv=OB0q9<bp2fF+KKM}D_j6#iVn#$(~Io!KMT
z<BQUSfP5}R_23@_N`(5V8TnPUr}hXN<RlWak7q@QIz3GY!K(<*b3max8G4UM%YibG
zI$&xBCdJ`~x`>H^<<n&=?xn+OJ`bl}>}+p^q-MvfdHwu}kRju9%hTTC*2J64k1%JU
zr#*h#a(mScdRoOB<ObL6j*}ZTquV>|>J?bWLwEUYvzA~Pxa3LQ_-y`ih`*9-x>q6V
zkLvcT9DD)s=3-Jsdy>D3eOwBA&{GUP|2(`5B<D6Zijzq?2FPr_<6wbpgu(}SB(o|T
z;)Xe5?<ADC8XmmEMLg7VRqn}&$_>`fzWlXweh`j<X}Z8^4hW)7oZlmi6b@>88j1m>
zsV~>=v}Hi?|AmEh=Wny)WE=*=zL(ZEbJF&+6!fLTM)hNyOH^gMi<h6mMZN%W`XaC8
zhSkvmxlEEQmup=qfK<loV$LbrHr)%0Lk6Hrht$N#Uzfi+Lc)o8eSuCG%$Q;qj#*<@
zdH^kBy^9biQ*40qNB?zBH8rolxqMiC{l7j=tt*hOQ`1`*`8hWK@6VWuj7(nrQRjO3
z{+ni1`Mccy+<SdblmERlj%y3h%9}|=KC|omZgMaeB)PoI1qs|K>JjiK%bJ=t9v1N9
zt|+3?XIRW(kTI-zDaYtA&~TX0X=l-yR+(L0qZZEw38Gq!5C7WDA%QC!sWelxHf|bV
z&KhZOGqhV9*OxeA2fEH)iFyg)%HqWIwr_)L80ML&(AsFBp0w~WE-ac>R%Wv(kTAWL
z$#2dGri9EQQ<oPVpt>3_vnZ<Nk=k(fpI>aMeL-t(zWP)sm+D07jIog}0o!U}(uaKm
zpPcY9d}wwAQr>ZZF3aTe#4YsL;ezyLt3DDS`SG7qd=zg{j)yWsRqK1K!T_OgS_B)D
zP!^RPsCpIg$|`)UbU=t$tnx9_0`Crr!~`5r6Fd~*07cYw*KmUMeK0}go+}luSKFf|
zmmZWFS_#g^w$1JvZZOZ+K0NigH1Q3qFj^sQ5YAIx!Sp;g6~*BeF#RFtzN%d6Yz<E)
zZ0+E)W~rCmCK|Ed@Q1!CAg!wm7{@>!YT-vwrbkCgPLBlIr0$6H!njntZw=DMn1u1L
zt8+Vu4P1HtA`1z=V}7ug;m05-mQJ+QMkzc0S9~Y-$z6xpMe+ILWbrqPQ58FO>}3mM
zxhLe$yLDCVlb^WiR8_Y-Oi{wpp^kFtjuqawn2_?R9=)VvzMA~(1PrD553)p>#%*Gh
zxLx`W*D(i2NRhwLJ>;Hhe=tJ}rxs+eqMa4T0%gvae7qEP-&|J*@I>O0+RlK(b3egh
zz$xQ0QA|2?qWz17K~0T?JxtoZ1+V{X^UO0>5dvY0io-;Y-8_nQMC|V%V>C-Rv-FS_
zJ5jz)3BVc5Zv?zfa!>%(DAySewaNhnUQKL*cJt521~t~*bx&6;X7qZ4kqnaoKgjV4
z25gX4IP3x8Hh4B^m^2J+Xs0bRUoc0$10#@Oh8qj*R}|7$@3yB6AyRlDg0$$5ZJA?3
z<ezQ`Q8Hy0sX&qeMW2R2okr}$;fEeg6EHQjS-<Uhk-wrKCw4x)x3Cl1vvvx?9SBAQ
zfS=Fx!2UpVw$nlYYjcS=4}pX91vrq69mt{k+ow(_NkoI7DFBg<*d^9f7sZU-#A4Jv
z<KxzxT3D*a(Zu?x2QcEI`Sj{STY5L#T@3N_s0o+163Hp=T2tUxz<vHsgsS4m)%?iN
zXRjRql&W5+<*J1IBx;=u>R}#HTzuwbl{Cx>3gv2EsWKQc*0<{~dY<O~yTG0=jTl2P
zs3`dh))%*G_}=+TLm4ZV>rDxQbViZP5)K*jzQKQdE<$a^hl$iCKe!>v1{n!OENs7H
zuvmh5kLpXKt-Mu$b;>{21fqS^j>yrM<rbQ360ubo=8Favo`bT(=T`kcwydf?GdqHp
z6;zYTosRWa6>L;(Mk*=HQs#fPhX`R=6b)3|T$7pWHr9Ftl+9HdhK8SS*jw`u4;5;(
zZEh>fgsEA#`0?Sz%^47`PSu_32-nWE0_FBZz#X$s4S@4tE$nn?001g*wX~t9KbI@(
z3WktGBs72B3|cSTj09~05RY3xznaYD$xrR1<CsQYebBz4GcM6%K(gi~1Q1@!yfaTr
zWR`Y-RyFEtryt^k|LG`7mloM9b>wU+wWs@+FXmpH#cn>e@6PD|l(KU;zWgM~8fA80
zZ7`zzv1$-m`CRhyFcyl4C~kGx)r<|jhn1u98Rm%Zt~M=IVhop0W3c?lVLVMrJ6W1b
z@@O?DDN&tf5r=>NDeIFSzReoI90`tf22t~FF|AU<p@h6^l*&=WM|h;zfRB3qpKJ34
zu_B7KoprS6iY1AXIHW5l<V_&4DpV9nskkZ;VV|EPs?R@(Jk)e=%dUByjL-D=T#<2p
z9Vy1yWRPZQZI^GyeAP=GAS}fW>D9Q>kwuIL#jC#%Xwh^KBZmylo{Xu7gQ<_$%+`by
zg#YCc5m9k#t#=v+9s&^dkAE$~k#BCmJgZC8ZFfYI6|s#J=}Hmr;Ii_bO>)PJjs1Go
z<HkP(hMG2jfc%i`01UTcMF*e$-AMSHKSkhByk9o-8aB}>Kn-rh-ajJZnZM$d?A#S{
zXWe(H{VZQU_17L=C;_7vBfJb|FfSE0TYLIVgj95Tr6vLxiSgpI;aa8Jg}n(=Z%Ryr
zhGg3t%QU_kPkob`6B11US`c>)Jrlyu-(7G<EO)W`Q*H)s)BmtyRqz89K_fv|FS(I>
zqa=?%5&En5paD0|v2jb7jEjwsi^rE|ljje@wDVRUEDIx+Mrd*(Ts1B(w7;t^?pW$E
zwql;SM+m+UCXIx}n>iSF@2GAJbcmftUj`S2oJE%(TdpOM<g(lM?`?IIbnwk147=PA
zXMc-x*G`PZhAS?8`1X`R;{9RA)Yy`H2lNtDkQV&$huOM!`qJ*g?glVw)R1-i0wLH|
zKWxuDn=3RG50tIUl1E_o?kah$nE1`TbRR%}xlFeX8<m-OVtz!p_wcov$Jx*JN5HHI
zZ*;%>j@xSeuY6EwkXf<Z8R|z^=lY2FzPC8H9Gt3un^e4!j!Iq|SFuU{1ssVEGnCuI
z&OOlPgu8R^?^|>WJ>PEP{78413GWI1PIB>9$K4L0hXzik-$LOo@`E8qDs=-tJ^kxT
zg~1W>KHOw^mceuOQ#O#Ms8sPdoTQX``gZ5Tuk%T{;ltObGN8zAfRo^K&PU8sQ)oNl
z1s-;Wh01{YJ3%h^a>Y5JPHlkvAHu>Bl0dk<>-=wJ;$qUC(5Xp~OfMe?3(aSgFj0aM
zlznc;3o5EoTxGKhDAl@I9M+N%616iJbl)nr#JqTOOwYbwL%GWJil8IK)l1G01Ml`@
zo-y%XMfB7kaeLu>IgwHOD-BCsi->a6k2ed71KzqT`AQZc;lFBx6zWHjMJ3Uc#a6+K
zDlJDifyNJgFo&V0zu)Ci<bv~1<vIH)-K_wO*eVY)b#F1)gJ*!G4CWyOoFRH)Gr`bH
zZdBbIJ+vr8e{3~8WZ6olE$6U-CtE6*MPcWRg3s0ENcaYME~8DQ=Q|=J%DvZF(%?)j
zH~L_r{ow*xp7hLGabJBE^V$V=ry%|OErIDJB)IEgNc?U#HEKLP#};1|E$Kt@NipAA
z)sn19Abr`2VJ(mnVI-ax(c2d&d~v;70PF)Kwd2~OO2VaLfF4Tmhi0E76^qnZY4!1y
zdtdf%&Srl*+m3Ty5*q9CA1pE{*;6YtDXDs4Iz9<wA?SETU9n~E=V0h{$R{%5YVBez
zes^=Z9_e<brGj!MbU0&dS8_#umMt8RGgw_EMarr$W9r3GdR!gfawuO`-UqwX-^%31
zm2rSE!;V864l7lXLXBdQ!FR-(T%nckX^okc7~f3&m&lO$&w1Y)#)n7WeIqC+rfCst
zH<~vz{-L^_fvd@}IpBN8-?LiOZ+=ra7-FK9s5!x`w8q)l5ZNvEks`uLNLcdf0Ml(9
z<|cgI<EroW69MtGYu63?e=p22XR+&#cwBo0l>b=C)nV_Lo;QCe^$9XMvZFpM`cCiV
zlwfu?1Gyy%%a<!P+X#z@Y~fJq-)5aai?==+0Njq2NGUdCj723yBNlsA;6ewn7s!sD
z5md=&L&tl+L2tKkT@$L)1~`3h17)&>nKsRctSIfj=88ys_wxg42hx9#v$VbL){^rY
zS7M|~!tiAU@MF7OjXZ)iXfu565jaFh;2w4Lao)%r%Nl(Ma<u4v-~RrGY+(cx6e*}u
zB9c7fD>fdGTz<3<^s86q+SiQc_7SFQfKCYHKuT-%3yCP8##OXh#iw23&3s`K$VG*b
zWM;9kx$(}>RSwkfZ85|Oa`T#s2waaMwZ~VM7gxA5aO=8jmxqz(R@%Y~OBSOh3zeO*
zbg>IIur01v)k*h<)MbF_l=d^d(B_f4r=~Vm^%7>FCj<<+Al{x)bBpfcwcD$!>kkku
zgGqR;7Y38kSE9e~@9gZj+?KL@`|O{7hi>j|gT-CV)r#5duPN%K8*j8`#E-Cwb1_O$
z%ND=CG7q<oqYa#z&Ax9*TCnA%JfWHw9x-uVbSWE6uuCGk&5rzF8g-Uf4%*#XV&<Ly
zDvSj1c)`@UBpP1&{#)SseN610$0e1-+fT*!V^7^OD$WSXciktRzwUSXI&=LKqq^Pq
zp_MD^%nj^9IBBHb+-<HV3(RWN9b~zoutIfkBCj=93;Qkb@huy__`~s~+u-2sQ#Qib
zOBLW{bv%0uHqhTnZcspd`9Pb!|LE8~5k4g!k~{ANZJ{9~DrV!vkXVsMKoJzVAD^jb
z@w}=LFno1T!JGUTp^<G0e!yYx&{r_=0H6<+7lo4MV7t4AN6GCew$-c<Ye>4j0QtHw
z_)NNs4*oo1jMhA{e5A6z+00TkWMPA={QTN^=k?R;BOD|PARXd8Ne}<gHP8xlv+Y0M
zsAUT!P9QfznP>N~Y-p;isf*v)6hPDRoc;Jo21sz9+Hp6x6Tp}D(xIhM)k4N!t+mlq
z<~K0Zr|EzrZ|&oI5)R|6!U(QW+d#&o#H$P=6LyM}TN`(+be<?87a&~JbJv)vzF54h
zpx*U}i0)yb5K+Cbx3M_bJW>rR0N~v8a={EQHge46p`bSkP_aVg8JgYSP&Y}QUrt}U
zW3}n=1>fe58yd15q&5y2DiF^GNdWZ_H7EwLS418X^M{YP!9jj5sy(Qt<O!04dbBf+
zuf=x?i_>4tT$y3}EcujDdh?8yB!eE?;%EX2a<OS$ANr>Lu|WoNxQW+@KoVob>L!4F
zeJ)vOaq>8`4bt_+7<ws=Z2K&BGYh>VW^e5cSFB@LF^N{rnZ?UMnn*Yn)liZQ5V2sW
z=X!Cw)hi)2xCrz#PsM+&aBiCwoz|c_d7=xNKHMK4Q&F5Nv`jF{93e)6j>XS~=WG)e
zFASG1hqcc+gY!N+zP|x(5nxTcT-&hrF|X0=e0$MY(S0e-uW&<j+Zk05#?6vxA*nhZ
za*|B<T~o*K)t1O<Y#b44s1Qug72&1OqQ%cSEvqHe{(}fnGT<9tU8ILRysx&r5Jh}@
z=hQ6I2K)3SywePm%gYM;NL-z*$Ub)xmWk`|g%Wr8)5hr9)Y&h>9tJp+B~NZ_&%465
z|DKRUZKB8e((i7~Y+3z1%UB5Y_!ttd=c^Y_6!gQ{yMfhTLdg4~V3jckUgX61*q?Iw
zfUwCGG%0t|9WOg9gT8)<2`+f~Wmz}tQ2^@X@ELjd2WybVhR;m!y08%9Svr{P{<QmY
zl`Pt}T)5atCs*Jlj%S^@&{GJRPB%LJqkT?+^*+JtQ4=olAg_a^;6=v=kEIWPyBI|*
zGwo|E<`lYf&QGz>JyW0gxB2s%_3DGc|D))<AEAEyIBtZ5d}L;qB3VVwI8MqalBmeu
z5oev<*|M^;w_HW$S*Od+4rjaL>~+SSk?oA{`}+_0>FwUH_v`h1J{}3!vy45-eSwPx
zvGb*%;};K$^B>f=4>-{T+rS^1zUK$zcT)de{O&1cuytFT+uQm2<oTy5ORe3#B|@o$
z@KFOeX>$AEQCZaeF9ZIZaWq!8KHUhC6pETcc2Iuk&zze3dc&~o8dbHvj{I9)QGOFQ
z?$~m6(#%sqZc2ZM0baJj<dyVDG+X<Vu`UcJqUqRCwY~3MWb6kiMnDSd&m#BXD-lf9
z8&NLU%C_bXLg?>?>)y6dqi*Vv9c!5PesISPuGnTEp2(>15w7(T*cH~%FGrX~JGG){
zKYxqTx%WjF$4h>^umBFG0vWwvgeBlq_h1jTm@VDW05t)6X5?TZe)T5xaDn@YBTkYs
z+ftTqHV)IvkYv3eW4%=1TY#nlsxfW+x8$%V9p)^L5)OYE&ndn_T!Hgdp@F`)3dRRo
zH@qS)lgo@NY>Ibh?dD(MKx(&WSmD27mO4*w009o3l93g`1uKAHU(x#D^KkQ@u8b{J
z$*TPP-tmAp$ZlT$F@Rc$6FQ@)Cq*#Pvyuxujs@w}_MV(Y1t6ne773vMjiKL8zL@_Q
zYi_%Fw|xVSYV2pi-{1197o$kNGYaHNmww^^9Z5q%*4m`73BV($B!1b7?T`!+6{Fl>
z8sM@oQx5lr_#Vw0HWNzr-$rdaOfM`gMXp?)U!GiETrLW1*g^+_79%gu))%Ep-0`8z
z&BPjeFCWq_xtxz$sMg15LA0(dua4ZIj(D;>`oJ{ijDhWP9-D2QZ^MJvgxbLCA{8tV
z{5(^9C2_W3qH4tn6SQ)Qk7xODbXLX}-5bVWFA^P*HTUS<Y<HRi@@B&YCH_IMZWtyz
zUKhD=N{uqa*#p~ya184S!2_yVVK%>JXbl%N>@?8KHHH^b;-h9<5*_9rpVQ_hkk<Q|
zJp)90l+OZpsQ39%7kgwJGi2i~N-bAe-{+5Bk=k5r+(^G>I4RdgrLqaocL%;tXwe|p
z6B2N1&I053B^i|+MtoJ}r%gP)^t(pq3v1nle00(FvBS2a#It;VmX(huYC$JcsDtW^
zJ2Lqx>6y#~{Hmp%i;4J(%%t~FN!#tO7JoHr?B<RJ)zW(NV_*L9#MOnRQ8Pp;I;h?H
za2+)M?VV%Cd&LPF1LdHOH0c9es{C(>XA&CGuicsyK!{E(ylAYhuPM&_$xqQ26@y4h
zvh|$Q`wjV)4RlhC0M6ZYpzIMEMuq`2Tn3IgZcyesabRNlz;yJIo_gMqcU>o5wny1I
z2BtY-pQ4>*6*EVO4l$}6+PsoW!0^MNiP@V<d|vV1(zzm*VyHEF008C5U6pTD)0`4!
z8XY>_*kpw$@IYg4pa?vu=1MF3=K#OLa7K0a3eTu8Hwt6^bJB(nNuTx|up9rxXu=2b
zGKSASO^QMPAnOA2;3^Mx^<;52u9cJ~+*Nutn(Z3TxHFH7m8LdBXEesh_r%_b<Mj9P
z{Wj=&6wb{E-zcdj5O^C0l|5=rfwwc7E0&dyj_(0}^^&G9M|-oHqT}PFim`V=ejT~Z
z)5#P`%UNY@9!EvbH(80On%6!zxxR<Zm@L1G^NxwRl6-ovdOL=f1}wr=wpesLH+Syx
z{c?+0V(pWUa_qCSC%)_5-sOHbx*!Qom;c6(!#KrN?u^d(D7!tl`SYyq^3CudbG{V+
zt1B~3)$W4QnlsxG-mx^fh~H~}^Y1L)!TV`Qw1y6v&)<Bc&yk@HTIF^?C_OMSS>2$@
zgE4U2lJ~4v|2$4*6faR{2D|E_0p(9AeH)fNa%tjrm9p)TlD1YH*(6lwYCktfDdx%*
z2_fHpb93?I^}#R3f==|fJ6wN{Ku{s?OF*hhyxKStEb;zIH<a8NN|J$EvqsRsXwvim
z15>Jx>^Dp5K1<f5QI)@5%(XxAjGS@*sYURr(uw8kNb*PV0ZORZN~C(OCiHHPmlaw=
zffn5t+Gkm*SHWVEQiER-G_+*R&2E}-VAXROqpGn(Mzd@>R3b1-g#W|wx4ue!XH^k|
z0X@VH4zJnXrrIoN?PK1sE*5;IGNgSqQ1H0eYY|~eh$uH1<MM)70^P;o$Xu(XK_C2y
z@0wE^ot-6kk6H*dy}>MRz|+$5k2;rGI{q>&;o9N57laRso98lkr+vMJvthb`FUItf
z-iI$|wGU@ue>bMRZ!JFu_Z{{*J1y;{1RhYe_VH2Zt3}tYwFv-R(twMz-g?!YCJ<``
zICR8*{MwwiXe7IfZRBiO&nNJZu`;+;4G~2Wbql9MaLJ6>g->tAIm<pIdvpQmud0A0
zN3ke)>%|TH5|Ck&*u^|*=g8$6R;~DQ@_1bo0D;FIxX@Tm2j^RrF2zTW9HVT=lz3J&
z@QadpDThCV(Zif?ZoJ*NDPHLbvDECUw1MBkYWMWWTOyY3OQYa(nLg=s`e;4T#tx1t
zS3QD2%I1K1i459cRFwH&g@OQ)oiunlGT;emk7tb2tFTdtG?kOL>~<NWx2}A95~~SU
z-lG-)hS5BLcir7%HrJcF^2UUe0C{?Dm0$vQm(5MqeNYtGN*rE^Xnu3b=mjPJ&at!y
zTHN~muOg?f2MSIaG|8P2W{?A?BQCHOK=A`qMkY}Ks|XD^FBzb&Va{4lRRzKi?YHmt
zq*C*z`|qFElQn?XcO{^5Az?YU>vwm~CHS0)g8BUycl)2_R|1pKMWuz^&L1|>v!h&2
z{n*fM8S!d;znzJoRo_8vhK-N!-wJ<?N~BM7E3yCC)RrXnW9q*ax4A2HEl*Eyk3HHw
zxtL|0<pxZ9t^U)D&>{B8Po&$W7O;*!rpQ*pn$@UV8w@P6-TQ2Y^xIKAnX^MmWQr{-
zoib%xwTP~S)MA(Gk~5x!clHhnAN~SCtK&?NZ-3qtJkL<su1nv%Vj_!%y>Mhb<tYDp
zdnu&*NI_%`X4HxClPkV5Zctuz8)rw=;xM%OK3O%XbVPck?9pw;3x3Znm<Rg4_w^T&
zxfo}>I5f0d{ijt+#`F)|i;5fn{rcdY`y#4XF`?PgK6fs5!{NT+s2@L4N=s&hC`+5u
zTIEtJ@81*?zh27+9P2NDo4iSfVXBUknD6^kTT|{L#k)6SJQdR)=3DU)-y&zSF(#no
z-g6h#f^lLcaDwj?4jKQ6>0SAq(Nw+7afuFn=`cDa0BwOEln*^gs57jxcRLGne6#ZV
z-W+*$`FHoxOW|av@x5gIh+h~co>P5UV((fxY@vL@r&Jp_5G#)>*f1NR3R<KEz90U@
zm8gX$oGTp{r|^RN_!J3&L9Op?)-w~htGpB~`hl+V+hPMPS@?Lav+<5Tr@gfQ8|lmE
z8!8_XOE*)<=S{zYa{nH<2Yv}uJ`T}N^KhEvUlPDbV)pYdPZ-XzL1^XKTc!4<S`*d=
zL?5!a4Xb%A&htr-8Cz+;OfpTe<H3|U_ASFTmxkWqQ0BAqxgcW!4|6~Ze0h45?{D>l
z`iBPaiKRo!(e#+J*4Tnu=JFzYoZ{CzonV8f#dpE}36Y)Z%ekuGsv^lx(}Iq7Wy~r|
zC05r;c+}XsO%i3M8m`=SAzUiIIPSyp)O}*Y)4w(0x)PM|JFXi{I$qDPC#fmxtn4TS
z1|DNfaQays3A`(ZrAXbWB&C#mQy#+LR8`+07ARzX7XnO&-wG6+33H=7isw2=pvpL@
zR%?R}a`a!9$>zehu!C(U>gfEpdq`vaDp4eps-Vp}73+k{4cu`%UBK96lgb#t?zwg@
zG8td`RjR4F+dgpKuvhj#YS4$c8>|y_@)mcz-RQyO@zm)~<BHR<<WzF+DE?<UGk!_n
z@{IGRZih|G+vbFa9j<SvEq(dvFKnJjvGFW%GOqc)ajl8fy6Srzcm(%VofL?QIGju}
z&RYGd^Fyo7H9<E~cyN?k=0Jg)fIFXkDxzyc4koRf$odxq&&1k!OECs!E&aHdLgY00
zxxMO^+9!n(717sQx>3BbUX8lnli|9RN;$_wt^@zVBc+}n^;pluJ)pmSmYF9oxSS>Y
zQTr(#f2fG|2;9xhY|`BG_m<j1lqbHB>egdDsLek*f}8=-=OBU_!3OVp;PT(HU^GU`
zJFv1UKLJ*1124b0&E>lJOT({mqnom??0o#>AX;E;X8;+Fa-WB{suHX#q{?m*ibNDu
zHVHfVAJztQ^W+~q`EUw3t4HvS*S!;WdU|=^sHvA$Md{t6*GYrVspI^!UdpG$WCsDJ
zV#zT!`Wp_zFRJ_BB37zdOC(m45RVNcjZm2qkAx99GSIAnSfYN&5S4;c0XVtfE&C-c
zkxy2TGTUn4<N5u;A0L`-;xe*ysyo=_dQXH!o+OI)D*rNr6m7uDzLBao|13KuEbjA%
zD!(1nAO7}Q;y4Rd6<SkgMQ|!|?1X0L+%hzZ6*{1=wh7a3)v%&M;2aI|;Fegwr>(-1
z2kKr~W8TQ)AE2+#c}hI=kQ`<@y~v;9^8O`;h&10MXGSrs7=->m1v|Eor-czyh>_<G
zZkbm>dIz&?fG14Hr^x{x8gS#<9qfD8+alzgN7}y@jgHChS<mv-ZL&ZY6CUoaTh!bI
z&PyJ3-IkSKD}VAolbIsTR?7$;-c>g8%IP8VUrJ!dCQEHqsAH^-0!{n*b+)Q07|;ge
zv9=f4%72e^2w7I@#*Jw`)Xbp+zt%GG=6<{5KRk!cNjjX>Oz`o*EKxQFi4qSORG6V%
zSdk5K3`}Vo0V!n4;p8cW>h{8fCl>DH18-?`rt)Ns^cIaGJG?iZNj;L42~slZ2g?7B
z4NoW;Zuxgq9uaH<^h%+aB3SDC<9qeptB5a63@b)zy<OcrD;pthdwNh6byDg)q8flv
z9bXh4megkb+^d9w@7;*%?_=M#tGQKIzerCtVyIK(a6~j^xc<vDpmlaIU_9tl)2W6~
zJdwWitC(DEmhfQ1g=y|V<RuSSkowA;xLd;Ve}}^w0~FELyH^`pKu+nU-_kzBK|E!)
z?B<+pCJT}b1yIWj@(N%8J81gf{F5e1w~HWI#~c(wixXSfRV7)=hITL3K2-7uQMsV!
zl;>CpE}x*53y6#Zy2u{JtW(jZk|XA&Ff1MMZY?!W*J^d?Ez1Uz^6-0d%@J;8_A3<t
zL8O(In7#Y&sVfWFBF<0%2Z%#00D-+BuoEkrsUel~!PKQwY#3m6xh@FP*Rc45N+@fc
z#6K@Z`|QNdkqunpz8AeB9jI|IIL^IY*dfsgwDoaFXjj%&$rfjoFodu{beUa_-!px$
z$cdhHk;DSGvSG~Wg(KU$XSGzop+&IXdFaG&sX`N8w%1CBUkZ#U=dKKFMbQB`yodDt
zUYPS~hk!)+p-IF+-3N=0{_%&;Y%B`9m{m?G$Hby=8^Lkga5=ylA85IXP^*9@sO6dp
zp)mZKa6Zqifc39SVFDSw<DQWBjXnq0EE8Daq^W4dTtmkL*+Lz0AOn9&+0Ee@-_cTZ
z$c5CN`65^^U1fNzn_k*m-Vw;Zj)s*=c&Pvk%FB0iJhLWh&3&|_lrIVAy^9}`|Lcp4
z521P%d1uBd*{yf2S$u!}<1GTdV%Z4IE)|ngM8eUs#7MZ29r3xK{HU)Fa;}SGX-woy
z8W^uT;)FF&xgFkASD|E=j;^jodDM{kXIF_U%)hOjOdi|@d9nR;_7ar<vyuK!_)frm
zd4G)`Ie7<W_L0~pX!xNXo=OQ+|0O(L$yg-Q@%e+zGh!2Uygg0g>{bkNQ`F-R0f2op
zMhJBeOM{zDa_T_I0W*48iWe?4S+TttgPiOG^pfH_E|V&BaB*V?B!1TRC={bGYHv1+
z?3T$zNTtGN(`lh}=)8UQJih@XT1R|)oj2e^?*8``M*KXTwZ&A^j%AHzZNtll$dYo0
zSAkC}>~3QfN!op5=Gh6?0-~SnJhbLHYprSiHc1{^P9u{B{MHDGPJB=*#YlmuWP)Qr
zHwh?<E+1`FZ-*shom{Zs|6MU5AbvMrfxjR?9GMRtNV;D9=dH))0F*B8@U9Df%eaG~
zT3P)4S(e<t%k_jil<)Pd#vgM~ZEpTi&#X<j7w{tWLNJ*>8^bU_Pvb~C`p`n^?)Uzo
zaEdyX6KL|=-bJ%mgYIJmPispC5WTvx>fJA3Ee1ZD-N$j_$>qcD@+jLe5REE`RQfNT
z2`8o}H>s^rw7@12p@V129(JcN@lvt&<c(!wqm9ocn*Z!g-HxOPWm<=|N~+EZ9$i6?
zFT>c;nHskY(|M4FW*I$3c6USGz<u^%sbE|vy)5)s;B{E}eL9I(=4KV_AiZR|vkqZK
z9t$YYs)p66)8Pte<+7)3chw=K%IjBx);;sgDn7b0b_}TVk-UbXYf%6%RGH_@Ng8c%
zTQ(Y+>G@el#PVYWt-h)=t5=21=4bmbOfLuDjik=R+9BCG=pUsXS*c0R7dMDW+yO7V
zE~l4GweYe4nmS(MU`$TIa#W)KH~4$}q5S^c;pA7f4!9K3u=8zw{5y+w$%o>|#}xzo
z3!89acvjPA<*j$Wu0b5f6fQ-NDJ?7S9v6R~M7)x?`vU5OO<$WwIJR?>^+y;#ejU_$
zpD;!)u9kx;ZW#)sQXjH8TQAbx_>Q?mJ(u;4)DZa2kX^Djk0>;K=puFK5{yA46y_-s
z&EGJq1X<<T{-epiMt-U~3r$hEI`))srn0}sR(-cTK<e%leQ4w3Q%E}F1t50WS$cAL
zE+BbLI;rn&^J;QjD*15PS+cvkMashEzO#wm=cUMPKjIMojIC8*oKK$n<M4jhpQ2&!
zMeAhrd-7^gS;o~Y9Ed7}9CLM=M?d6Cobt(kCMa(rYyds1;ESAV=Am|V(ELUlVi)Um
z-t3*?R>@+b+(v8E0f+P6?s1%sUS!x-kSwnIZEcGSp<zh(11`on57Dk28WGCO?=+yh
zz0B{v8j^`e*Q!Esw7F>uMh^<EpsX*75ysaCVFf!;ijr~O_omdikv8$4oqQCTA-C1h
zX|UEWw8T+3BETB><|SLUu#r+v%_ie>i_`IfSm3<9eNm;X->L4GGimP+8eT8nn`}Zf
zVNU=023Xc?xAQyWq)FO<WBP^WlE+eTQ~X|+UPV>qu%Hj|ebK_CGMWyjrC^=i!>%ax
z-NGRO_b~rvz?)in9jbTSsC)H8K83tO-ffQV^xJ){F7C0s{){x@UaJUNv==NN*CD;1
z8ir{<VokCU9oA%7n{hZb|I#u(E22)kyLRVqrcb5l9;N?yB@ft>f#S5_zs&1~{qc4M
zoozv)#De;R?S=19PWP`*&;E(P3(^)oQcbDUk2A@upMCWv^;Ty7-b<~%YwZzY;Oq)|
z(4IE+{Y6#acCZ;z^_j~fXA_OM3@T8s=}o)TL=SGH5xi6RfxNWx_%52yal<a_!E-L8
z-UF?In=3BWl&CO_dxC0Fd{a9py>#YV`>Oxta4R(`>YU9)WXY1XZso_uiDqsQHR^re
zE?SpVRf81*)oVIwV&R<l4;I%Bi)(78>x(?s#MV3bL&mCx`}yH2J7fGpfMUZ8jM0&}
z<i@=uxg+gcGyo~?`viNK7rfTVL|1XTVSRclU=h%~J_91n@qvQY+8*%oL(^aN`9a8T
zg~PGBQ4`!fh()pJ{KaPtG#!+sVFpY?bkS7}6awLv;DPf-Dk`Xiqh*Rt!yi&T63?dd
zL~_Vx{P(4967=ebEax)z&mSxmTp`{yo>(h*v=$f4Mo)_UXXlhgCts}K!OnYLjpOhg
zXk(Xbo7JM*`WQDVfw|n`-Rx4AO1@XEF0i3643rw6pUr5i>UNtn<Gq;E#yKc}Wl!NC
zQet5;qIK>|)xFuN@CJybjg#Ex0}yV`nJU7VAuD*q#-zu=rer4v=)G|xU1M0cG~EK7
zr%PDC;e#yM5C-JUG}$$!I%0?M6L>kFp*-|959od!O+^h&r<hUo<7AIWi2(&1jma;$
zIX2wL6%%`*S(nU{7>QWm_LIm%l!c87R2d~IS%>i&GR;;id)Kk?X0M+GOYGNCns`CE
zku*|)wVI)(GAGuV9(W(cZ6}E+ULOYO@;)|`ZMqUA{2HB_B#X%gKuF=|sF%xLJDtkX
zMUD>*;%|S993Z_Vk2oakP$RoB%x|ipk_<bB8;(>3t~)hf^9l0^V-@T&^)^8UDvVvF
z`)rC0NLg3%QLGPy9EV^uSEgy!zyftS<l<p|r$`cR@Giyf@x{48=f&mev8XIXe}coS
z5($c(+XJEDsU-||&&0)x?$c9<)rBiv;WmoTwy}qXzD3G3<u4w$Tx?ZQ?D&*6k$X9m
zl24*JdXi}F@1B1Qg0wQl8VdE1HnG|3pv(Z=yIrsV_&7zdgJ0giw~h|`-;k<?E$3Ay
z5wc`L#v?9j#dq(XMyyoxqBl<(d#naX_Kib1yJEdAD?P8TmnG?Y@yVCkxY6^D`<T?3
zr3v{cBcJQ*%rE6xJq@+(;J~w_9L~tZmhVr`J?tU!ZrbCDE58dK#h>j+AyaXXe_K2g
z<X4sR!6dbcR%44E_II1WwhbfE?jww?0L&ZDE$tN(a83>h?|u(Td2ThHZm&&Gfzd08
zNf)Z<3Yo1_Tsp)u!C~7`l<_>UDo}i|n)hUGj{$mi(+F!OK|}UOY8F1#p<s(|TF(1y
zaHId_vM@xH@c$tH-3|Y-Oyw_=LZ`F$4EHys*OaE5`u8m!MDSN-tDHZx2vyFr3IkGf
zN^N;zIu2Ajujm##nEOxl_w~+{(w~#XE{&*A0JL~6GmynIyyj>G`jwJY;LguUdN-)#
zjT5KT@BSg$Aq;`|%8yYD!P$dY7!vlWht9o={x1woP!D$MwrTDj*9GA;?XC690lS>V
zeHb=IPrUqH6jw-j;9pdF${D%A&VYd#A}S~IYu)R?2NOT%RtOB+es$SAE!W?Sn-G+f
zIJ>(Tn#3q(UvH*h0ESMO6DNN;chOvjxD1Gsax-jf&{Gsa9l|f;S3X8KCptkZzn$%B
zCyM2yS-%dW0YUe)TFp}gE?9pxhfz|)AEHOpD&(LR#_{8T`L@nchr(@?eBV4#Y;(Zx
zFO5l3aPJ!ewKt^xI!=Rl8yh8&WPfuOstxRA7p~4fkXw2f*|Y`!@G^=oT;Z#~Fjkrn
z#7Ueu%9~WfgaPBb!gH2_95ByQ6^Pq~Vc!P7XCM&sBLw_R7xOJl`ryWl8ycKp&d@Oh
z=L)Q>PVZA6>bU?}skO6IQ>%mt%=E6d%i+Du@7|T*J_&*cv91zuH%m2z$Muky8;4yg
zQ9R#{s0UY0%MX2lL;%ntAO|-c={>b5xdl&t(nK}(;--HKw)ov@onzj_n}=`{MzHJT
z`BMJn=`T**7wvxpzq@{<zbxk)Kh1V4G3;ygKWj7(Dge$omv3$BxB(ep!*5B>B`Uc<
z--TjHpcrq#v0(2yeb6g^nYx)B5Ls(Dqul+MRr0-&uS3pwp$7xSZ0x0(@4@pEfS>~y
z{n~6QaPr7+olV?8v6n2&i&M;)c+4`FuP~w@mX2Om5R7gE*=TwT^&!T^hC=v$ZAwMt
z`t2oK5h!r8R$>u448KTg-P7s(guV_LH*AdST%0CM2OyUTzdI@n{{c9ozH>>TN%w8b
z3`tHtgrIG|{z}8->@l%t@iSh5cIIb7-M?*riGMY3Lj)KZ_FdIz3Kc)XH>3X8@%k;n
z4U@918)#fk)#AF(J{p-3&gfR}+MmpMe@}JKWdJcurL>v_$wKR!O08}km>Nh>bn_C-
zdBsbat<nFQ!as*@vhN&^A1`c&7`9+fHnuz7SH8_Nql(&Wy$m$_1UKJsDvQfDhc13m
z-)@YdKietoshc|XNS#-i%O<fZt@^B)B1JNp3#6*fzJc^pHVtPYBw$fz+pXTrIBlLF
zEtR>l{08MITh}@YcAGg9i&22&VZLoqo^SI00>}&aIvkd4cih4GezkuZv2)}6@xGo9
zy@3ZunvIM~E5P^rvE94biSmmv9p`T=tuz^{bDc3IJhiw6(W=rk52(9&Jw?~4gaZF`
z)ut(w30P9%&u?LWbJlc=Hy#sJq~2E^eKn`_3`DnT&XniN&CT}8?z3;T`>grz==F_k
zJf7B0qZ+t8X+d#Q+}Ka@d(X}n6}NLTzF}kZs+*uK+6xAo6sXM+Hj*pe2hG+K_pp&=
zftN-=ho5|j*ScJ4X*msL3}w1{mM&dMAMAa|dRF-4!D52SITZZX@Q=$X$mO`1lTr{2
zvCO~RqARETkNVcX8U3?H`K>3g#CnlFRR8a#rF5zKr8sBaj6di0BwJOaO${l7A!B(n
zg2{iem5mxKYN}!#fAoO{Pr!Y#%B~Ztiq!hrJ4u?PCAKCB|I3@XEISuH9NYdc!;H+v
zQxO2$W<#cm5U@3yOK5W|@Q0uX9bL`pHq))Gt9f+*wqpN}@J4SP@P#{APK}a$^?Vz+
z$~PI*U?+FqR2-TP^B3XPct{7~%FT}5rbpSxrZqyPKTZrCg4r`u*<r~IDpj5s(hz6`
zQO<)NE(Y2qR06Ruj7m^5YUa%&KPeWk-pGUHn{`r-p#XjMBBr0`o4JW2m{0!{g?kFQ
zc&=8_@^(;rr-1$`PkrUj9k<Tu@{ivZgnRCMW+qT}=$q2tyAVFAE!1*L`JLNv?1P&5
z%x*LPs#gVJ{HQs9kx)^7JTG*?M6LHK^-aTdDvD!1JoM_Ez*dZSrarJ#d@`g};S5I{
zt)Fxn&heHi!&9`OhFM(KaHY=Ck}q$KR_OA9+zipvKR+hwRHc}^0ANE6DD`2}{zpAD
z2+-3z9i+QOO8gCX_~k=dF)n3aEzu-WqXtlMN3iTofOZQ18HOoc`h0w(=Thf6NIScV
ziPx$PfhEGR6(Y<q66xV#-6HHhMj2lrhZVhFSW`{}d?QSXb71sK=wDA`rxdfKUb(3S
znH>cP&t%Pl(JRlLF>?S?r;PH*6$oHEdtAOSwGvgC!U_jXszdE=16dR|UVbE<!o(Uv
zi+<2d83F4+MK-@tu}nZDI37+ATgJSZ__&xLj;^p`gex=7+B+TZdb|F+nlr_6emguG
zs@i2?Q>84s!JJc`tSA@0>o`YZ>3*j8WvD7dd{(<FN&<D)ky^UC?M_k)LBESjjqa9n
zwjJ1_!X#Bjp0IqLcF!n)w)$~w++6Y0`F_wiMOb&E9Vrbo3%E%A?StmM72dk4#|7c5
zy_2_4ud|-u@0<6`*;z*b!KBUz?baXKUR-BccBzMw{k<M{R*XgKY2MXaz7Eau_d;LW
zhWrc)H612+JuuF`{<=k$!$!5%K3RteVzgzal7ur3=#KEZ)&A3_C0L@~{_d#gnUaN6
z^t6*mq`bqRu*?M`^zg=TIA2fQM*2f@A<OQA;w;QA@uQ5BHxX#3{x&@@A9DW=67J->
z*+{0?gz2z3iasJvnZJ<|Hngl<WmTQ{6j&5c3W9(C;nDd%V5Ez)_cXp@%*tAGjHbAZ
znec6{?G8tFc4<IlnN)Osy+?La+Dk&}z2jGFru^flUv6fuD`~<bat2x+sU)5A6$J(>
z=GxbI0jbGC$AIU2(W4!*WOZf6W5F6tOR@2)(vv@$nNY0{s;N`^iBur*+ajZ3C?^ou
zpKWWrj|sPXzBrh6Hv2tUOf_MPnaQbcnY-<EV}9TD7YOqhTu)Vdy2;#EEz#3^j?p|<
z(3|v4(~5I*=66nstCzof0};HcEu0EV#+}uBO!xle!yu;tS}vDE(PUm+@N@%VKS7fT
zmMbtmrSl&2sl%pgiDz{u$b-(7f@kV8Y;aTTd6?R}DD|#o2{*C6W0pz8q$Ab4{Eq7?
z&)-l=?W1}_^>p)}^I_#KC4^=FS|{zcXv53%Ui_I`>EvIieGl~!+k(_G01Lx1j~hlK
zcb>)CNriOt*8ZS_{{QdX;GR0k)X4kS*;SdSy<GPG4GX!abnag8xT~U1)A*Hlk%HuR
zm6m=$CqC})9cz0(7<gOo^K)AV``n<L3KJoG(+7##n3<*%S3v(lNL%Kr3KN@VWe|bc
zUBZkw^7nX=Oo~2RACq~I4VXB?OMp%CL<iiXv+Q`lXj^p=-K3H04WrRLai~-!AhDSk
zd)%)$&OI7@G{%bcAsN8s>IWV_RFL|6uo-PS!_Q=bD0Bw;j(RS!cc;XdKo2+kiB4w?
zxXq#Tc{&$W!fQ07jaESR5XhoP6Jtq=`>DEZnz>Vm-c&|7Hk~VbQf*()|5@C%<3W9Y
z`^O@Nqv$)_FNnMIh$zMEV%3UtOV%Adr6RR+#v(NV=%P!2m2qXTmrL&t`-@~pZNV)f
zJLL1}jL;%p$}rk&I`T+Adi#4J{pQ1@f;0m#z}EQ^$K-W2it=g9+`8`?p7weqAB8Pv
zXD|(zf~$X9C8%%?c)<h>jobta=kzimAs-TMrk%xFlp(Jx(i%8M(TKH)@Ti%jWxy)z
z`IM&&Qc_G*<MzB~Fy+Yv^+`Pt5AVCKSE+3pOHQ5q<6E=RZl<1#uuvU?^mh9;)TZS~
zRoon%fsFi0y3oqtvU{oBuXPj`5MY<EDJK;TKu*3#^CsIZG{)%Qvw7|Ie}_3iho659
zc$wz)H1sX{;1m0|cJr|5R(2<tEOZ32kz!BXcLo0wBTKIE#JwR9a9NmuanJm|y837#
z)G)0gUkd=V)cxUc4i$RUy`@?Si0gQQb2Nz`GI35K*aRyNwD8aeq_P}ZgJ;e2LahQB
ztyiH8+_Piqm_b$Q3LvPh$?@PRW{vLj5W$;&xJM8A+Z0f8E-Ns8_87r;3%-6EF|v~7
zu~Vc8^$=huJ<K-EKMtAK?PTspDpz&OkaJFphlO7v-MhFhIOre(eo_m{A{Vkk$FDzK
z5Q<v-zv^yU2Mx|%NR;jbX=~O!6YOHH9va9j=*T4JujgO95#RZt`OngN-17GAZGYc_
z<Q}0OSv8$%ns0-lQXKCJrCqz4@=-!pg@dl*Zs_%y3i-ED|F*}Sm7+Ua|M1Zd9&&*G
zab?AuI5OC(bVls;?N4|>!_2SZ+}e%j+BN0`fnrTYPw-5o?B4*!>YLu(8UQF8w<Ly+
zCwVJj0SULJ=d2A6bk&met5h6`(ga>RMq_n8g?JGp0RpRZ_~(;Do|9#O)=D0R=vC<P
zvD=(Z;2=UkewG}rtYrzwodsLN@yushmwpbq0z1@|#NmjVp!1SPuP;}0eNJ6fwvD+m
zwM_ae+fY&ds_lmCyd@KE4kQM3p_iXJA!cLNY$~QQ=f?`8L8oLOKd0h<h!(BhGA)b#
zO;K!rI8~$Y27Cz&2BlbuCqoL8PcQMus^MKKiPO7F%!YH5A-O-_;I03oI#nPvE7#9_
z<=Wfb4mvMv1G2S$tDPnwdn}?VuYS4L%{*%!%HuANA-;%f!#Vo@Q_x1f@!pRxtMNa^
zj5Tb1<Hm!bqF$6gDssatc-{U=JRsn_CGMlSIj*!k&JLj%wYxff>#<jjCGn>B6&u|u
zIv}u>;?zNF%;bW1whu!5aH4s*jd}p%+lupM?hhz6b+!_Ezb*jS50_?RXw>drMenCP
z!cl&@J)-Ls7@C`Z6Z~DFz&P^IP%(0PLO%Z*35alSMq^xm?8%_x8yf9_Hr`brDCZjy
zN4|#Rb$DM{j~{KmgUg%z#11y60v!WAtk-Z`xNO!}7J%{%oZwFjn*Q)3O!ctw%(a6^
zpu_(Ec4sEW;`E+VrIaV+uiZpCWEmkJtn2Am+1z>(fjMyid+&XfY7@Q=aV+$R*EQu}
zm@d-L6WxyZ7M5QT@365cw9|wf;$_{s+#emR_Ar~3Q=lh(-S}Pke1B_Lg5nM156A4*
zy`UpaOQLtfr~rT4r9jZ}H2sZIo*PkR5{Wk~G^CL{R1$%Z4`-SNJI`zEPIxkGET>OT
zWnj9iq>EVHsczKkui+jmnUGkoK-Z7|&ZW_u!@H9})+?xdI?u}Q&`&W_q3sYdkzfsm
zm_P+qG#+8$DVv&J7sScD-X!58Met%%^8jsNdCnktN(LR5e_4kdAnx+1xC<Y-b{{qa
zAM@a3n~$tK;oB{LyuG&*Hh>SyAcow8ceekf_tIU@v-{-myesXoI?UJA>WfP4o(O;c
zE>-LO<ZN3h3+KyvdZkN4pVX?_#K(!hB8G|t)?3c@%*tZZ%Z>j0zKeRbWIoX;4N)e4
zvhb;T)-Xg^|789v4K4UX@4C7`-c>~>PhFcv$2ztbMqy9jx9>a=sOq)Uu9}|>kIf@q
zF`*y4ZF8qRUDZCqdn7q=p@I7y;RiF0o#(Own{HnRPj_?e&VzQh2gj-K)XDqZ_+<uu
zy;Wu87C$H#@txm91VH*`u6y1$Z1U^4o?B`PO@awyDS42Co_RW3ot`g8y~TL1L08QR
z0d?BzvTe)J)3Ou8NgH5N9aza*1=^bp&1}m6YIRo7XJMvDv98+|<nEXt0@Bk?kofzy
zKAAay#0ZGzh2>Jk^kmUP(aIc0M#~K?vwM0nP*#DJL;P85X2KtGSt6~($;*Q==6&4I
z_FNJV5pY^W!rL{0bgzHPX*&T@Qm<JOHl2?XI---j=o5biJW3itXMV}K3<Vdg0(PO#
zUs5+@>ex2LFkt-UbmvzTV$)kJBe|dj8H^mK3$F|30{-p`I8#1uHm4#4G1>g5=frTG
zT=D5iH%)N<rIvBu6IMD)>NzqlBq8H*YqhoF@5{dJK(;B-s!?O*s}X!RfwiCS0Zmr3
z8S$4J%e?i`T8$LTw5r=$8J}vsqWBZvA-OBnjWhRtB3}io)8hOMU4u2iU;<DiF1?kB
znacf*3EgJN)<2bv-<R}$Iwn72VQCUEZwn35tk}H5GnMZCwRKU8#e{pg1RUiPpfZ5W
zHa$M7if^aP)+>p_A!97xvjQwYmfV&<pnt2HaMQdVGY+Z<vnws%l}~SHF^c!SaT$bK
zD{N}Rm-bcKS8=aln2UtN@2>x-lQ;!za*z&Z{pKpSu~oF4VBDST>E+Miq1W-2l|ZfN
zkc)iM&p$T|7>XvM22M|m29m#Nh`|C@!Z1@I;TB_9dz|@kaa0_fRixi3t`f5D<}Wqy
z<+{h!Q?Sm((p-K9l|z`W{@=q`N~v2(^XEd{%)86pmk(;SPoGmvUSm|59*8wQwvHK@
zI{uqczHePn6Q0hZGNzl*HY8=y{2%I!>^N3bTA8!!6d;?|TZvlqsFL7ruJ&%i5gII)
zyz^c>YjCrz_?_71U#*?CP0h2H@sDDuc@xC9I&(l0YCy@PZ=^SrYXtoE6tfSN(1fN3
z*Zn;>CSbE&Y8LF5>=(V$WNel;-5MId2@qmT+f*2c*{}s^P}dAn1?l`-BDSS(aItjA
z&`fmEY0tjdTLfq>L|&834>J|W=j;yjfZ`^4a3`lo%9%h;l~U8H^AA?gbXk8FvBYdE
z?ba?n7t+dUZ&ej<Oz+zjVBw!C)LTQMDfQQ>z)9axlv9x27FF3aYzLZ?Wx0bZPHu<W
z=KJKysw$l|Z;?sGXZL*|&A$RR48-d+S4P;&x`O%#S8-`~aPJ5{qYCzq=4f-D#yeKt
zCj?M~ItyWD=X>VdAe@kmYrxO@MRj=l!cF^`MbL)na^rjSMZnyExyL4$6=>x080g-_
zUn@IQ5L1!XEtFcMGqx};G?h91Vu!GWk!_$Qd*jZQz)?&R2TZek4Fbr(%2EKqQ6@vu
z&ORuA`{iv5Z7#M=Gu1L^5uvqD9n<qzVRp=1Gq*<N%iz$-3`(lfZ|J0MPcLzk6IZ%V
z9wQn;IFG2$pfvf2CJ2NY?_x6jNz<4Jd=nZhT!s9t`(-+l|Af$by1r;acXJeG2F_m&
zq`-4j{*_@8@CvY8a=JXIwD8<{Uamp$S=vR|Fi2|GG04|7fPJn-VAkYnbuD}Ba`MFX
zc@&I`?)GoVSK*^sN0FwL+-JW$CNPJ`PzLG#*8|-}o3}l=c*x$E)3)nOfkE~w9l}n8
z;a=IzCm~RT-Q@?<#c532^XpU^@rPo2ecE$+A7jTo#cdKwua|%(%`M8fzFC#V>U2v^
zV}>hBX*9z(^8!ZHeb{E4@#U5>K>Y<P4n};^RuTn$Nbirg#qpDlZsVk){S!q^7bnb<
zzNbBNWJCrndv^%~gJxq~AYQgTs>;4yIMdwv@7v>F3c_6^-aEq|uihc?fmT)JAg*m`
zs_23vbN)H2X)iI9PEKq>12>Qoe(D0+eE>a+Y=GLYI+c>325#i!(6`zDLAfc$rWlMW
zENJlM-NK4k?kj%;g67m$&jvR+=~2r#Q-X9xrDMW#lFmvAP_-s(n~C7$|10(Kt~J|W
ze+Xi5`D5;v;gOm})i57(*aI<G`HR~Iz#)Y&8W2gljP)80)OVj1I)N>Av=B;$W2Ue@
z$lW7sSsM!^pP*f`XXcgn5p6zDUur7Xy_!Q5$EpKSxB5>4tIhU|w~t1SJa!MTfPJ<^
z`JeUeIl$PkWvXuBc*u2%9_O{pm7F|Ya7x@Hx!|gu9Y!A)S_7L^SRe@g21=!I9&DpI
z6E%HO+({mB!LK~uct~8OODpi$WertU0DaIMFwe#;ARbW@UFy^-Cep9tY`1=p0Fk5i
zgq`H<7tHAwZ%YP<qmMvp2mb<s<9N`qc_v_N3*uN4+F;Dw2E0f7u~}3bWPzoSN{|Rk
zSyo*4w(C!I;X^;xOk}*@k#Nu|&1I?G+q84ZWLs3&zYGEQmKBfhuLQRLad0!0di)`&
z<LkOw%|h>TwpVP|r{((8Jj_ScSw{9p`#5ucE_`A3xXp+8)j_xlPvP<4_Q6`W9)~48
zgAbHZffgF26fG>=)9HPUWIU$$Tp(7J!(WbeJ+Drv6=xUu8u3E4Rrr0}KVR>vU_mOo
ztNfiW76YOZI=q=BoBnWwesr+-1Gehe3jfQ57cYo9{KshGaLIwjAQwCs7uWw-DO>Wa
ze9q<i(7J_vSw6I?4Q0)JTH#Phxp@!koLG7#dM;%Xd?=67Zhg=rds-0{@MF&*L8>Yo
z-mM<*Q2D40(hh>~Y%~uGV%e4z+c`L||NU0k`3EV3_B#9+O6nK3ZrLW*@p8%@G6UIm
zcC<<xXira}$35GU=e#u&v)#rI7<TL?u!_0)lN|+n(!+j{62~FK_D!1zH`19Jp^pcU
ztD1-_^s_3joi!~#I#y-2-uy-%Gs|zysPGz*amKzB!K*ShMSH7NbdqoUn#jDBYVx1Z
z=jFjtlkLxF)ypL_a%^Y~2Pb<vjlI5?dB04e&dd?Mr7DNnn#4~qv8+~n-r2zNOmPlK
zC;h2LjToeA8`lr5HMNp!ed&A|cgp`OXY&!uXuYq_!p_!vH<OVb#5GwVYSN0rm(&El
z42=siFY}#{WR)rVlw{r4i!_uNqbXy7yRdPU+F+sdq7irF+w<;jGNPWbOG~V3DBvl+
z_SR)gb7hN<b&Ut2=-Mm9zNjPJfhFoZSs670k%M+J2r)1*UmLfRDDDa!m9P+&YuE5@
zx`#!5{2jGkVp`*hxB)c^OZwAa8(y+l;USh{iod3S+)(R7_F8{n!c|daO1!S1g&K*l
zbxJ=DH4RAp$c#UIK~NHW%ZIlG-vo_*NJjki8dE@SnT-0Oyy<hMI67ve%?%hMLNPS>
zjD<FwpkZLrWZKhI#NW5q3M)Q)b=%*nF(5->N>gIvU0(I=5YF7FUHjg6V^5w`OR;jP
zx7`)6X`nAA{H{!DJlNSi7yFVxj>gESRv1i6v`yBF3ou=EETF{sEuOa29Jvlui}z-7
zt+HgktviGiNm2Zue6ghX-vjO>>5V6dxNi?tg*ToHC$AelO5V@j2k(~%JZAlXh<X0V
ztoW7!XD9`2>-<!}%lw+dl9K+bKN^Cz7Fbf>I+5b?=rE8;6qz`!mwEENA=3U+WH&*N
zAll<)rj;n<{|2Ox{DQZ9E++n=U!ED^4#e@ZV*W?;6zX*vLtDOnqSIbc=@qFn|KUb}
z_Yp(BHzbtV6zceb%njLiD^vPDr*cc>b*l?Zr##>@D46|US=)~{G2}xa_Q4d`YOwb`
z-~LFC_uDI;j80c6Cwe1HyAQoU6C?cFl(dwPlr%o09Eb15K=Mup>4PA1h~8WLj_F@S
zxrL8zqAO;;SxAn*F%S?+e7|iF^XCDxe}%8X;JQowQ16S#Sn+hcfQ{%j%+_*5qb*IJ
zXS7ElZveN5{CRtv1E=4=tQO%Q6SsIIrK&`09xbA;O^I5txe~9MZ_k2ndc7--x845y
zW=bCN0^lrZv5bD&^?ZhL{We(TBL_{fj?$1RU1_fCrH#J*bMpp!kn87%8p$Y!6ce%8
zw|QxvjMlMRb*$Nch0xHCP?Gm^%>mIIc!QPhg~RTff2=DH5)K`3N6<fZx$Y`lMXUOe
zN7n~mUbyV8Br!=2J~k<z75H}RW+4&w3jXcAt5KDmoQ7k3-><c>!jfL$^*z|gwp+~-
z8*)@Wi~{6{D;)T{ovm!x*w9yI(4)~U#l#~!$zyOF(xvm}!vo3;lix{B@L@K$8uOCN
z<iprmjYf-Xj1h>&J4t_=4(5*5n9N*tx)ykwtI5Y}Tg-rbi%#Vg7>+-n9_9zyB_u}<
z`GKZ;cT6C?K8DVa$gQkKiw54pm!deel3eF@nvhOFnO?Dd6SNsA>Qz$cCU;PY?&bYc
z!e`J>;Mcry5zQM^cl2|%bei93AAP%e(S{DJI9if=YS1`1t2ZO-^Wfq1aX%+j*^d|o
z^BZ~-xxpnTVaBJA52`ucBn;>xQffXja*Rs&1Yq;N>^;d>jT@zbdn{4;Tt8S(tC`wh
zx6RH^&#RfbXS`+IVD3X*fuXq$<$uPAduRTqK6gaYyYl<vfL7UmA7li4`9nLqXad!5
z&vE(lRN;RG#NmFrhrlVk5;y%sj^8V-Fnm#9t+UMO#}*klwK?0;W#8>qkP86(xn~xo
zd-H?l@U2sZVvRx!dd4#_4tERtVarLh;|PX!IRb9jX1U4#RufeFJ{@usy*j+rsHPZ*
zUSodC6$yKH+utAlCSLJKcuHm5k@v&`cHv_i=c71>8T^WQI(DKAFaKUySw#U)$(}5|
z`%NdrybBsy;F157878#WxJQko-zJ2af}sWJlO_~y!~~$-<_AY=P7R;vSX{#qXUfb&
zdc90LVgu({P<wezS*BK%viqsmvnM-(NqGsMK`dnb{c{%lFW-j~VO4?rRhdl_VB8Cr
zVNIRan}i9UiCn-n;#+m+DW6Sg!dE0$dhV*o3*VmuUZa?d^}3}Ww82cUG6X{pDI~|}
zU(=Du$4iVO#XG^fXu-uprI|mPU*fvENgz6=GB=H%(;u9b$p465kv=MO|Gsp4=sBWV
z-6<`+y<N!SF-*N-=w$ck%mN8F5v@1o=PZ5vpy>XYw)bJlSmYP?62$rIs!8vnNLa0R
z&ZrZtb`R{27c!_;=iV&7ddJXYGKL_O#zNNYamNbxqp3}*_oCuR0d!6WtyO>DDhgwK
zs)9ZRY`Ir}4OR=KST^tH&N_+_t(xrfU05r7cE_996>#5NXRKogO{U}K2;R9*Uh<co
zDsF?c+!Jy(OA>~!n-wmx(K;)|ta+l6Q;na!EGqIpj|ZeomXc|X@9j|wtRoiDDw{Sd
z+{-wtr)k9W?YXv=!@2UNZGEf@etQVB71v^9p%PTE^vH=<(ugTIVJ`H@b?Pf+Y-kHM
zt@E{^V&3ei#n~Iul<!xGn0Bh$D7)nC<p1u)k$(SYuPVlnl=K=ah*>6mB8$`-7H&<Z
zeYkZ?^hyekow_fmLX*^k-_#^79W>y2)}_k$md5#@S|jWywF++I4qCBGAL+7{@yMqY
zawL}Q-m#VHxx5{yUtg2=8nI$JSvXwYn=!E5EF!_Ezo@g)BB``D*S!5OOJ}-mV$x|M
zJN1+nicp@bb-IGQ0xv~IdkzZI!r=q_<im@}nFhN)<KGG8iQUQDQyqDxGr|$go}+_K
zOP_-3q*&_2=UK?zYdMF&BS!t<Pt9E69v@Lf1$x?alaz!N0iLtv$uI%m7*idBe;HhH
zX4sE_=;z-)DP}_&I4=dko87+94!4}1YN=FlQ;ZW6EX=#rwI=N~)FCP$Owdm(t%~4}
zoShY9)*E`SUN?!$gZ0Gq+Vc~Vg~Eu+@qq|d`|#jb-oK)g;AZ8>Drzb5v*jX-zJDWD
ze*?=UI07(Bk-u84tCt>69?j+28Uli{E`K#iIqk)$oJ;QtJ~idAIL;Qoz~P6v1JTb(
z!)qRQZuWJht9F0k<*GJmILt{3maFANymHEHV5b!05ilCcVn$TY`vnuHOUJ4E*l}mG
zYLNV+8M-RIK~#a9&EB7SFi;i0Q>AwtaflQ56;^Hjn#=qg%8TqI;_k^Y1kPBNO5A$%
zSHfI{!#sYshz0-o<jVj7%ZDaB*aj|-%WZZ>-c{;o?+^%XN%C+$L1<f^hEFrQxRu|_
zMfE8{%kK^r4of)X=7cy7p)Dg{YQlM)t+|)^NnS*!r6;p_%36;f{Z;-@_`Eh+GhkqO
zBZfirq+Zb4#vT&sglL+&ZB=&u&?=AH$4(8NvxVzWhRRqo!-3aOp{b2>7{G2qv;X1q
zatT<GMR$6)gQlFuejc%pd}@?F7OW@e9#F$^j!b*IWSk<LG2kb_kPI3K`e8s`N=n%9
zc7_sk`?<gLtbZENT*=+Op=a{n!KnrZGgBB<DW&D3m-pp(!2W0R3tLpd;}r8MXGfeB
zlshZnkC&b>x|OhJ*=}_~Q8Kp~?>|%;%<5GCqVRg{q#dnu>P->PdM^Lq+^>$Xa|9>B
zal~UkrG`)NfcuB}A}CEPcIdG9yc~we-MsW#SF&DO%A4NfgW8b0dq}P^%8=}}CDM3c
zOh%{34A};`t$g{KJmN$WK<w39;^7xfM;{qba9BXOl)8B3%q1a?R6cltjV2Km=#EYH
zT}&Dc%-8QT!Rs6zmAu+DT-u47lL$yp?|Whqut(zHl@~-NwcojDXum=CZirWWBt++{
z51y(u|9tuW<(8_>@blfTVKk<8P0xeo6_KqA+*EH+X4M<IcMI+|G!>iaf_`ZR_l3IN
zOj<X_Q>otCs0yc0T~28E&@KOrt`SUXHTX=kd1F%0t^Ry<l8I;XppI~(GSMfwlt$_!
z)VddplQ;%hC)=h)F)3rt9TS}%Lcf`wd{(cDeo3Ng2i0!(nKjrYmu_SndO{jac(og*
zqyN<48)k4zeCXfGQ|I-g;oi$GxUJrRL18KoULC0ct;7kvMx;0ZIYP)(htr`vE?Xk4
zd{v5tc(83WB$}xlY43CHPnS)jbsIDn!dSfdpKTEkJ=EB8Y-zx)#S3sj3mMNFPl~@O
z9ek%bP?=!<Pd4vdNeK^9Qu?R&q)tO6NF_1Ec~DbtO)S@x8k9^v<$!k_406u$^~qA4
z(gX{4qbLMr-|hss#-OiOSW&iemQCAF-chQxX@zlfP(&%osVZCYaZo&~)J|M!q6uy}
zSsz@U{tU{R>9`Dx*L(pPyX05^UtFZ?YHdF1@nAfi@)B;R`5iaicNW?0dgIp<ST`l*
zrnIen^IxN;io7a#dnvOcD~1*||DS;CN`)K;WpiGFvLk<6V5GnW3n*}qhO({4dAqH<
z&OJo?fy^=J!UwUIaWX>-bzK+_x+mwJQ_o9Oxbo7_GF!khhUWRwlVKCzgYp^Vbgg~)
z_Xp;#l#fTzc3v&&gj~~`;3YF`LRX$e74{~ZJ@Bul47IMjnsd$UzVd1Xp<Vi`K<~k8
z=Rfy+v5Cuf4}UuZ#4U-yuwvs2wPJFJ<t%}o@wE^F80UTdm~kJGk8k`?FQq(xM%Z54
zmCf}~0pyTVo61mg?XR_FnQ|9<*Fi?br&n^jJF^*yZ{`fNzwS|kVds96h${=g5CNa2
zeaI_Sul}D!;_QiJr#=1vb=7K4^(Lze$-<d|;)TLM?QUb=ysOC-`8lVd?6)!L$LKe=
zEDZA>Yt!BTZqk+{!DVD9OnmAnb!WQIsqNcCdb;0xk9EsK6<Y)^HN;*S?z96CX%~CO
zF6}L)RqsG9^d^s-a=lE^!6NTwa?T#SoZ7x_cf;PTj6qicsW8!FrVDf-Eq&T|ZA~IL
zx@SGGh#T_qm*v92&P|Jl-<R-R8~2d9C<#r)hQB8_ki811Ile~owzoMy#>J2%ExM(5
z1dpyijVo$qO`%g(;8TwJ^@xVRf6mtFUWsDIvtSpuHjYj9d+dq38v_3$>Aa)a{Qov?
z)UHulzP75>T2&RB(xRwZwMT3%v3FxDTC-}kHA}T-h!KswSBXs`2sL6w%-B5no#*(|
zadJ-F=e|Gp`+Z%nSCroAvIZm$_o&#jy2RT9neaE$fU2l4D_X%HtstkDc8GC%cx&-0
z#znOtyU!7#&`!CNoP8Oba7;UZGYMdT>!>~I?ZdD8-l`5yuP}mAYkAkq5{o2*UT?5^
z5ZFC;%F#^<UnPHnxdMn7(2v%83=`5?iva47;@gNu4^Fcy|JwmPd}b>sFC>!k=p;0?
z&&G=|=Vor+F0{4nE(dr5e#IX&Ewy!TxZE#&JM>K+Cm?H$0{Q!SMTuR@Ilme4PO3tS
z)$*P#h>bvBKI6EI^mKH(n0ilPvX*ZNoI5e3Av6NGsla(eNH7IKq1Tc&zU<JjUs;vp
zVpU)8a5qtJsr&uWIfq&QFMzjTv8eRTyN0{pRXvVrkrEEX5adT|Eb(?8ycG~mEn{Mh
zEo;=O171sL@M?UUr?Od+JX>(O$n(0>R%KFGsO)=<j{L4VTpKVZ>~oIm%Kq~2P90JO
z<LLEHlS)C<PuPp_KKChlJoq@)D`#!^`pemBgRiiESId~rjeqOLi`B>PYP7eWf)ug>
z*Uu^0{_O2mmm9CosYLeY7I<Cmy}DNt=4b?Ni~b#|GX(W)Iq%nQ^N3DHV<YpRc`o)3
z?At&t-{p`Ht*LW6P*N;(@Mpe!S>oA2CD&|+r}a`r1WTQx@$P%?i0Y=gwGQ8vwm!_O
zy|1!x)6QQ?YjgP2Qi+z1Am00C%Ldg$zio)z>yUvcn~<S&2WcL^&bH%*ZQ9p_O5e;+
zy+sQ2T-#rwdXV&-Zj)jXvj$XTm=~IV6|xnWq-%qdZt^fAr<k(+b}jgU7w#m*!^Xz5
zXl0u$fe3d~$I1@`q_mtT<naz6Pl<&z%hETiDVDSjm~^3*m-KW4BLN5%5OJzx&x~U2
z^hAC+OxGkf)DsYC3j)4+L%fn<G%TM)+nz_$D^v^3((b;8l+-L>c1%t&!t^P`Btu#S
z!Fl;IUfC_|elJhRamh?qQOm`I8M6#rCn00*fi}<>BN0~howszC>Q5fDiFcrCCi;vt
zb30m0`_(CHm0ow4S8rXWEz#tu@ds-H*`gwHzUWnSw%-L19l?gh|9<)xI}oV^Q5MHW
z(TG%}9#(}`L2|>Ls@wEC!mNMB-;)UDsd6qYBLlz6Lrlw7Aog3U_X_T*xXJKluAWi&
z9=EOfHPHClv=oezqBl!dj2k{}wVW6E5#uIMBC-jt_w$S!TRiU6)yVq{*O+%$_u4N)
zLM5qP1}#senexQbC?%p#zPNf28B-?aOW+_eVtLkfV)o<t`-nH^V!zy{hBeMU$HtOZ
z&=ks$KdtT{qx~R{e<VX{zF1phkLkS|vv7psz2c{4MLK2vG8%pbOES|@j+ZIP|K2AJ
zc^(<hSYcw{SxgZw+fPDIX64&<#I?if4_gXdjfMQNZHuLrNM^6rrREVY!PaNF&Tc&|
zX5M2!3V7!{m0log^y*#5_aSTE`qHbZ(z)~%!DKV;-4`(<)ELqY;T)cijno80N%y2F
zfo1DCVW9V@P8dnfpiBy8M2N?Mv&Q%>P)F1)XCuojf}Jb@d`#=m;k{}eM9eJV2aoUN
zjdt2<!N2QG5h3h3^D&4Afu1bwG&|$@>GpI;4F4<`xqDnfOl@88b5prdfsSYa+wRW6
zfvEAb{d;hptBbmMLP<@{*jd!X?5&TemAI<Ov!-2wpw-XqowWC=c8OfSCPii$toDA7
zYr&P{G}1oen&Ok^x;jM~l~o^aDV0p&r;y`k$;!K@QQ(HVD!p3pc^*3=#n9gn#aeQR
zOQ|&S+`cowK<a3;htF!uq1YA-O!@CcqRNy$$Me<xkv{Nu5`&v{wB)L=GPZsHot0_+
z>@B{7Y^=wl{|Ijl$9~QqU#7OTs{h#uXijlbt7@XM&a)=dmxtl@qlbxaM(hc&7^?47
zEV}cLw7TAnNDRwQo2}7$G5k?5T|4cMBpYST_sx2)x&CZ*`s6(Yi|GKl<Xwm`ZDt#r
z$-!N@n>=7n`7HJ0Hk^?|S{4VaPtfSX6K#-@PoAOv?F~W$x@ivcP)!$2_5zc!UCnK=
z6OEPS<mfnOAIN*FcZo72x6!%7n=<l{F=)OhY-(Cm<jeRkb{^EW61A$*JHRs`;^l@6
zzC|4D3`M7E1?D`Kw+thj459bU<m;bvyA|9Togi-8@hEq@Zd|9#I!|%<48sXXe?SB4
z`{6l%ydJr7wu+>UPVcn!tFSk8Uy{5Xrp2AS3Lv%O+41S1%z4=<^Z~uNX5JDWhyJ*s
z<ULMhd!=x&TdWzox0Qaag3?lOHuw`6r0R-|2)ej!!JLx(D#gT|Y@kkPghSkt<ry?>
zHuf=mC~$ttG4Yu8g93=QLFLg8p-3N;F*y6HJj)eH=$9GMmrL=|V2U8+cX?DNh8v2;
zJm*FmR&S)_qFZN-au8-$e5I*m*!Jnz4m|NN&u4}y`uLqh`fVsJ$gYpoa^=l&TYddu
zLO7yg@=^;LTa|ktVNZv1P<h0t;^wJP-KzZkN~c|-Q;0UeD)p>wdv0g4{rObHWfLyr
zZ5@qc35>#U?+s30Fx1--uoR@F$iWESkGjv#yDU49@^fn?TEu$Vf+j+X^=-o%Tgk(W
zz{xvgVgptkD^C;2K1_uNLA|`6541b%IE<MzM!7Z#09Rg`NI%u_L?R0`eqH`E>Yz`w
z-4WR{?w$F$Zt?4lxbm!)(+BL=%J22{4B9=OD}O3SNZAbsP&4iKrkcIw-~5<+3?Gn8
z7sr*_iPo50O3DnnttUQ!1-<)nU+};n^VZ>KT?^4c3@g%Y1q<m#U)mUfWlbpENN>Tv
zGgv=*D5D+xPdDS?SxSshg-dEV-G)$_mr0{=lbCxj!>$)$%i`vThd#E-%O9Z?@R}G=
zx_+UigCJ)V6&tsWQuZgQ`~9}sl)ST2bV%mNVdQ{uU^Rym{G1+dQr0}<zu2x#;}soL
z_1T9upHD{g=q8)Syu_4>JV;we=IYmXF{44f;1`}Op6+AM7v44cWxJbz4rVusMF=uW
zuL13D4X-mAh5zI;w@bGU7vnz>KxU<g?qiuB+3CPM9eM@EYlQ}3*tUBpe`@F@fd-Fq
zDmHok==@h{HGnSdngfUCO}|`j@VkrS6rXrK?eS)@1QsOrA}{0nRm0-_na!J->*9o$
z%lPHvW?oo(KTSxBKnYqRcOuA<N=58cG9ufLUftI4nI!|mITKMx^3uY<`1_~aEdB?<
zu#BZxv4NDNe}^3vz;3zxOu?41sl#UQy6ABW(K!g)8K3YoWm`IVCc|7TCZ~1ZK-qWJ
z%JeZBdz;6v!i*_oSkRt|v~r+A5})!cpQ8N1Y)}tzbeCPSzctG=upSaASf~LC{c0WL
z{%~rpCf1TBpvTmG#jcT?r^Fe9_nB2B;Lf)vwv^0Y_1Em1U;F;f>Uzr}G|NE-A);b(
z2E*8E?jdjAWI=&?5UItd8!g3GQs7vGxCNwJ(?4b;fG4IkU}-vjzD2V)QqSSu{ldBZ
zE$sYu=*8gy2{HfoQ?G1nJc*l=JE(P3dT{L#O~%6jJS&l~XGQ|&`Am8ft-$!pPaRl$
z`*ed!jD&NAUy{5!oI83$lGKXZgADn0LzimutRqKXsIky5QL985)XBrLGm`J2GL*0P
zqrk6O(8E}#G3?=%QbQiif!M(G*0Y^WB{i&jRcorwW}lYD9lN?u=DM9RyM|al-Ss53
z;|(A&6hF@R(K;wJL-L7{u96IV_l#Ieve|w4>;W&n;cH1~c8y&}yi$(;@LR>G>X+r8
z;$a)N^)x-~LysPI$D6s4e6Du$o|$FS*IG6*y+Ey8R`a|`5=G5OjFF!_X#_%=atgmr
zb`H@}#R@FR>rwyr5Cf3>&-~XL9@AGVfp=*39_X3|7bKW`U?der+s3EJhZyV==4;X_
z&ySFxhQRM=w{MiMx*wh8Kpz3;{U0N4OejZ;OG)`+K$S1>j`~CQY{`XZ<_|p%@pP+S
zZ9DrK?mEfPBPZ_u*=FCaWN)%%vFmtm1~J<^AkC>#e+|o{@x6;UZrB-;>i3YlQ;}O;
zkm4aXJKTQZdwCZmaU$alDVeg*jBLB77eYSsQSWp`FD0tkmWnOiukvr#%lNAPM*vbW
zQ>uT)H48YasndU2;lZ#pC4ELHd|oiJ-BZOi3sYHv+OAadMag%m=tv_L1+=<h+r@j!
z`z8nf!j~XiQB}e1vz1+OdS(#~)CzFk;2f?&cghUTf)a&@4|=O|YAIg(zoluD!^li^
zl2fJ6C&w9I!bsUD!XuBRU?y$c!0@x!A(W7LYMbs93_Hm0q_c>aJxodUY6~0Bv-<<M
z|7;Jg|4+0?62`}mMmZObC~7Q@14B#H02a17%J)9LWFikb>vQ(Cq$(jx<DG|T4HcB1
z{5>~@3(q7zCCRtci!4iy9sFm=Q99YKpIWngHf$_m!CCF#9<?|F8I_n4kpk@{$#ik*
z@QS_^AN`fzw9d-8U{E^67i96c#QTP<H3`|(OzI-s$W<Kxn&ZLz?Q%2ja2b8gGxa0t
z+L>tfR6VIFiL}YjmKk^pNYjEdFZM!llS-M~phq*@#D9Sqh#y%zX!7du+=n>bJ0A?m
zaUMmthB91OWJlLkS@LbXj%yRe>#cx3AbY8)09rU^z@z??GI-ehKbYJhJ#2PW0r|qi
z7md>;wo5K-z+7v9txFlWLz>qp&qL$~ifJ#XATi2Wyd};(Zna|w0RA+@zVC$aQWLg(
zzr-$BfkD2pM2bE8jt`@vzI|KBeFGBlqjWFUkv?HM&&|UfvTux;FC9OZid$}FvdS%g
zCwXjlAm-2s`E>g-4xjREQPuf;gqM30e>2A-L(3ud-y5K7WbV^)d}m~N#4vE~SoLb%
z!bw4wUmHf$>3Lq-Z9U=vFG0K6@cB;hiIQFFg|%Zm(T(9ff&5Px+-;KP$X-i^J$}{K
zsI>U1O!uF6d1ADb-DzC^Qq?^X80K#S+$Rbz80T*>^g{OA*BMW)nf=AE3!RV}&Tbcf
zd8uz2tciXrm4vnGz1{o`<~G#b-8(@>0(RA4+<o^`J>*_cw`RBB%CY7J^BOBO;t{OW
zFYPdo5FD0)wyJ3rGW$gJvtE=_WoDw(yze5FQ2Oo3Cd8U|^K!9nQ|;ny^+Tl#P0wYO
z>P@9s*U3EBRO020IObJ^?+3ZU9aBR;>dn7v)X<y^2@O&Q@3^1Tpun2ef%A1*iaX~m
zuBqEwhjHLATpGgTWccG*n(}U|Rd_LPO>f05cvHJxSaO0gC{XF3K*jWa)Bg}<$AVTn
z$w+=ebmY~?ywnF@9YWX6lQC7VJSv%P35}j@&SGdqKRj0d&?d9BTGfvri@a<nH+POS
z{YhOjP4ZcdL+IzO-N*CnE<UuNZQX$xtBtmxf0I`Mkk7k0j|NE@FT%7;ZXx<#TIl%w
zGrp_iZ4VMGInW|R=Rc8+X7mttE2i5D)I?O4!BeXu0%J=xcdm}5sbAym3zV2BDrdBx
z3y*6%MBo{~?=(CKbN#N>1W;D5yRYC1Qy4cIVy!DW90f;k!vT4C^b5(^kIJy>|9bWR
zo7%Qx<SrxjbWGiFbF--p{YAbBzF{9)XW=e6dgeGk?&k*Y!>JVKcu_01K(HP$peOot
z1rQ@<M(-9WD!2KwZs(|k2VJF?VfdTkiV!uwdn_{@qHaJ$`iv*f+x~APTYfJKF4=gL
zfEdxL${j2y-<}sbJUpT#q8GO+0Q&%t@t$F0STeQZsmx=$Zyo`A<Yhz6%EbDkr+fe)
zeG(mDJ5ObD=7}marYJL{%a8mkTg{(d_mG`;Y6tWDf?ApiGn%iuK}OS%_Y|YIbV1YN
zvIL3|LzFLEE9EUt7F;(Ng`GZQ8=4&ZL~qAr5oHsEnjK4Z>Hmce>{b)Eo2LI++HTU_
zGMlf&G%G=k6j``Eu^6p~QC)D5Mi*-#kCtU|;Z@1~o=`CB9-kTK<%NDXzEydEAJaJ_
zbSJ1r__%rBcBL)|N&#2OYPP?y+R81bI`OQ*DO>HD5dwH#^^sKu;f^8m)NUR~;`P;#
zgHlCye`=bek;TJiuPO8TUGalg5WN@RpJtaN$1Hz{*}geULX}s<o@e!0sXl?+tCR2@
zk^V|VH{yBNH?wn{qJ980l^*}PV54{-@WIaoSH(Eo%~#Eh9BHbz4b*#>%cP+Exgb?p
zlw7Sq;+1czQrsJ#p0js1fcKKOq~$;zN2)*&9ZCCs@g$7IyK60WM-h|n?%<IgXyZMW
zlS)UTdWMp=fc+BW=+VB!1|yN;LVP;&_ExPo%dA0P#o>@e>}8M}Eie-GPSS)-B(!Jg
z^-ss(<U<VI_n8h0n*`TiI^NVYDT^s~<DJaE9iCP1`kA7GC%-tHD!9^%H2q!rh~cEC
zOx2+4v%PAr`a<$lUsGG!PE@D$Tbxg8gYHC<U1K5V7wV5n-W4<;1=(~yw%Sh*0N-Ll
zZxKhbAR5&m=>6tkk66VJrO~OucO4R#iOA%tn0Gpy09^Z>oI2?pJL8-`y+R5L;nMga
zlk~(bccf95#Ez|Jex%DNq^V*KYO+ADy3pG;bQr4u*yK8ug27G)52kzGR5d(1Z4KAI
zeZl|at{V?v{}{$fuGrVj18`E=_DsH$v)Lk-oao5XOT30EN}io3mnB0U4w+nb&G{48
z8>2kVKbE2pX8H+4)P1k=mafn&0d!36*R6R1`nOV}?Q8WGlfIo#jL_NE81Nz8s4rb@
zZhL(KHxio2E?QQolF~ZZ_}z~G`v;l-=sDN?o?;KTu39YFX!E#XzO3Z2UcK4qlA#_+
zv&wmRTYt9IaA!ILZ)i3M>Pwr*;iF`SyTn#_smS4KCp!7ZqnLNKc>{*`f12|0o=4q!
zG(lR;;D&l3+!E>GD2LKwk67)KcW;ekK7I1TZUpjx*m!y0Kfh4nS;oZEKdBw;Jc^Z;
z6H4ux9%>o=y`t7QVhyS7eV!oo<VF#J@tCcRv_+VqR1Q3iKY&c+fiKwgCk^M?!{ih1
zb1`b&Sz4>KGF)s`efc{Kp1*cg@U^*l!}K2O>BWk6ttn9%ntRKyT$*Bh&G`-l=h)H5
z`_`5w!5mH=#svDy`c+|oD(*}&wi{F9g*1ogYk9QWRSYeAGgl@hH?K7ddylkR_aM(~
zQ1Wfol0(l2Lh<OZvykDHJ`KxYg8<a-sKq^rS$a;@L@GY49)p=(rr3PN(EiorWF*mY
zs@yIDJBd%1i=lHhe>@YJ%t)N3XKyFknGjime#)fXeU#w}8-Z}?)j!KCU{RQM?L~IQ
zP}*7{Qo?tnIo+Y%6FY=~;6~A{C{#_W55_RB&R8*_wM_|F!q}oHvlDuKeJU{Z;1Uct
z{yjqJM7Jh1yArqdwBSV?7MBZkUL^Cku*Qo0u0wWY<^w8oY1(RXqhdY&p^0*|QQ_t9
zc|9(~U(b3#Uvcdbz<oUmhz`?v+Z^j^E6g%!S2J#b{USjAFV)!}<r{t^#52_u`9Rfb
z?ftkVwQyfJa`jw&mj18ea%X`C!#veuyXvRiVaogzEuZ&p1vy*`w!jzp@gpiU3RsLb
za1PRJi#V_k#uAzmM&-EjVZHr-<5Jh;wo?+fA0bV!RH!~dUzc`o1Mq6wk?r|}H~@Bk
zc~qq|COjlODlD!o0}MZSw(1We425m`zyA_znAO{P8F^Y-aXAy3aZ*C=-*$IA?O2cy
zwN6!E;6=JU!V_@8wMv;+U|-#jL(TX1P{IOX4+(~$S8C_Xp?A+`)GoLA!#-VYrs3{|
z{XUCIyldmgX{Wlke95m^UzGZ<?YLJ_ycFyM=OEPCsq&1C%7PthTCGj`cU*xm4EoHa
z&?wgfk#5&c>$Mxw+(_`7k)M?gW(%DXJQabN^$lI820+3iFIc^v=Z5*1!3;bjnjJdC
z<`)N_+@#-SU5N<pv|E3h_~PCa$)!DFHC==A^5;~<b5%@nV1%?ATd`DnURYOr*yllZ
zG!q_qXK_z2c-R<`p0L7lv8#b_Ma_%^yeJP%OgXqJaJnBSUwH=po8Dcqw=T^lyXDvt
zd6FN}d3MpZ;iP|B(|D7onyX=<g%YZWBHcaFH(GJZ++O1xYIbqUyyi!~9vU1CMK`U5
z8r=+;H@fEi#JD%#bN^CxDf(lvLoBS55?x#RAun8Cc&hodP-*4RkPhdgnDcK_d)vYq
z=+D_W<2vrKptR?bzaLQcWG3xg)E9xQC&byQR{zU(Vj4sSKlxLmKfXkz3KmZ!_VxEJ
z=m6I)Z6aokQ<@G1^&2FaQ0>UI&{*rte8bhIs(*PuDMufjV6nCHSw?F)szh!z|MguY
zQpmJ{<`|b=uPy$~B1l?$foUC%#fQ1@)(w2!jXWn!O2+MN{+vo<OVX%kVEI%a1+P^>
z@DgQF)e6}JT%W#`VuZ8?*1}!Kn@f8qGXN3b1%Q9QdR+>xv;A>MuNdL@P56r1H)I(o
zA)t_UuFh{()%~WIC($w8QmW`sY__h!x)U{u?|agce=ldc(ZS*Xb9QE=>r(fLJ;3vn
zvuD;j?^bwzQU$^-^|Fd3@9>XpXaqCd@^LXrbk#C|tM}lz?ZbPu`Pty2kg#_Fo~$7N
zkUGL_`s}9y)`$2_A&jugWU7T$XC|J18(wm5C#)4+?pA50Iv%#Y_$O;lOqC-0Yg%y4
z0s-nhwuwsd&_h3d0L*Ms9=(0sLJhpUt=d7T9g;m3nLo2;j6D8{veRxe1O*Kz7AzH)
zUx<Xk&P1-MxFfzJWcY@FHNS(X(#EIVjtV7hVp5wrwAcY<_j|+bzy$5{iAR9$Sz2+;
zBl5|rREHdq_2Tjrjj!iAwRNZh+W=u=yCF2gKK;Gf4zFuwPI5^sLA|C-`3a`|G>R>6
zd+n(o^cKxdwP-tfo$6OilKbh!eZTg~hSeV15Ha=AAd`xuZu5NJ;NkT)+kPT!vg-BM
znHTchDa;$E9l6&^0M-;|ng}N2V2c^q?J2T{tRMF)HGagkM7tCU_F6QHE38hDVPFG?
za0#-vb_Um)tUjL$smTma(|WkY3LV%#!%o)}gA#B>F`i=xtgiTLI7`fC=!-{;bda9H
zobh#QLv(x)n$`OSovF1X?r^75m~Kyx)#<@jslou_EQc=;x$)=$j8?Iss|OfyNPm?b
zu?Kv(R<+|Wz%wxQ-A9x6DV%$bp8~HU`NZ~#f<1kgPmyMR)!rVzf*~lZP?b_NKv*)(
z$VX_W(3E!+zuGxqWFY-ItZm!_`P#p$NRt^B6|2+HN9u&ilP*hj#r%E)rTz)gVfpTQ
zh48y#WUcWHsN*x!d;Nui$l1E}V0Id+UBwd4)(=542O5YH8qzCng+O)Bn#3erbu_u@
ze%<PWMe__exO7M)-EH98{<doI@Rq5ER=e{Xx<D~EsC1fnvLjuF@Vv^q$BUq@P0N~M
zAiH1&4^kxJ6}D_^*OL&Dr0iha{2-*!Dlh#>&@%{>5anR(!if2nA{D<mPgcPpMg==~
zhTXo0?TG8OLyu!Nt$T`^T~8P8TCwjm*!zJ;aGZ8;fGAu;cE!N>MrCz}5P%f!)4b7w
z*L6uP^2@rQ1q*aT!Up{z1dg)Q%GML|v}mmz__l7J$}=6B5rEGaKJ-qGK^~D@9IX!y
zFWl%72luceGZRGN2pXiaN|)4vxM}yvO(yXA&ehTdX7<|N7m^$}$V#)mCjon0s9=i8
zr@V2)?E-(ln>{I529{LYt9@Yn{c7dU^b#6p#ZOTzFXwfY|9K<Q3&qh#x(bBDj5pSs
zW1qD&pc(8G1%9*oBs*EK@P-UumF;J2*^7QUU_OYNF{>Rmx3ZW2Ipy3>{i^;itm!UH
z-Z9d#f=_FkFHvEG{I2NHV+zsrj9krsZ(GjgRB!39v3A(28zySh^`!oLDqj)$P6;uQ
za*zEsQlOYC<1QEI3s^tOiU(O<1-NGuV9MZrmnJ7*0xmaW`dG+eO)XfH_?<cQrqv`g
zZrHiNI`ya3y#=Et3o@{_w?oHYnRY)q(&U=Y<xq|vxTpDdbSC<J-N7CesFIl&^TaP2
z*CR=sEIQH)>KBRhqQ8CZ4a#7>6chOoLpsveBdeCn9qwcDjt@F#Ha-_w&+29rJ79wz
zbBkuaWCh=aOXy+a!YEDuzFs4Zt(2=xnVs8gq2x5L{=5z1+IFk%*T(sg9)GkK{hQBK
zWp`WhgLq2A+=p5J+c|rO6ftQQ+f)NuIRTze^=Cz9<3>bcIS8hYe>G}#11R7w;`J5-
zWuDfMn*J6&?{CEs+DoU5#NI()3}$uiTwc|ky#~(vbwr3Y<kw(`1|emuWzb}?gc4le
z=3k`-nM-vJXfrjC><qUfmqGrv_lr*<)v7bQl~cq^eHDIW$lsq)63N@i126DXQ{nvV
zP0}K;HidNyrP`RUz5AhUBPG=r{>vrxi@fwXDYD{NJgs6X)&R6lWuA~EeqI`bggK;h
zFm`JBz-aWdT3?e#<65navBhpZfQBxmvQpmC3~-(n@4dB0=7Vc<D0hqF=BR00(}_(q
zz7apssWQ<Wq<bS39_PVapo$&@M<7|>aMQhNh}I$Js{3z51QU2rY4Eq>Xn3SZ5$JE-
zeMQl(i>metVSFKOY`)9?U-=dJu17cP=v$M|PViR1m=VZ_u5p(^+mSN<3OL?FJw$JH
zL3+QKU%OyDX}ZH0p)#>J>E!AQg?_Pr-tke)U{#H!+l4)&L0sKpPr&I109p$AFz~=^
zHF&9)b38mg2Hx+ST_7H8=qo?P?3{8EC^#Lt;OU_tsKkjLrO)whb`Sd*rwp&0Dx4Tu
zsmxM;S`E9npX3#je@k(7uD-%frtS}Y-*Lc)qi$&CTb9pY-@No!2@2rYE7Ll&W(6ug
z8f4F+26mO;Mx2}df=GU(UqC)!x@(QES7}Hu-hL5nkU6a2ZfqT#wP_6pDS&7cBpc59
zm;-+pxGA01+{ylY+`t!<w{53$52W4~_x^c2!&^(?9<1=P$4^YxFFowN(GEr(58pC|
zCIaEVqp8J_z~nSX;RxjsB-=JMz@jR-rCAOz32)S94W;{H3brWvQC)9iFv9o~(pn&Q
zFb^Ty8q2<qd}G{^HBN8bY}VD&P|o$rb)8o<HXM{EeO@}}54lDZuEo_Mn;nG%^};=`
z7DL^8PgGDRi^rd1RArjoG09GC@UM{#E*U7O^H5(gB_^v0Zy6z=)aVfJ`1S`r<$8>R
zzhq@sf)%N<@h>=;J<Ea(ZQ;Wrc`aa&C_w)V`bS>sL(trzlD&=9m?8OOqL_rw=l)Y@
zz@1@ceZ<Qw#rMn)Zq_3OBwuIzBb*%WC{jG7SuWM4S^B9G6^;z<Ozk)yPGtN5m6+24
zO|puu2;`|^@{f71wQkI`2P~?aYDO^Zuiq-Qg6CL~2sHm<h*giW2VIu1Hnn3Yez6@L
z?blz0i%BXefMI+|PPz~4k`~}LUs6><KSM8?B^Pyp5!VDOy~mCm8}#$>ST79-zWr2v
zT{skhzudh7v)8G5VOy30-=El$6^^2>7|>)37r6Jf)=FOHDZf`>Ocw&$5!l1Ou(4|a
zb4js&oQ=NvjsN`am0I7~Jc87!ukT>VRT`F!brtYxGn4l;KWh&~Tz`b_|CfQ$sPV*!
z8HcmYU=ABci@JXY;cson<E}5~Cj%kAp=o?;_7~lQZoB|gEBJl8y|O1R;dpa1uLbk>
zkjmn2czdfX6+iJk$TV#mJTCY*HZ{mfk#jE|hw^P}r9(g2R%0&y?;`LT*N7SD`fazc
z_|3Vq(<D5ok8rT8;hhUWJqGli3z)<6ZoE1FTCVnyn!V0&;5;ofXV+z|9DP!-;_9<^
z5dsEmpI^nr;?kf}>nHejCeSDvF0k7QPW2;Z#&V$v){TCBedZci&Nk<C)ZyQ{0bKp&
z<?Tub@{S==bWje19KmN1;+!W9$fuHK&0^b5a{Q7Mt5%y*v2kh9MuTq;mc$=%`6B`$
zNRyQLYFoR4O25}xcHDkN*zvXZSv^i!B@Sr+wpJ?PY+s;5Ws=4v$#&>Axqb(N(1%GC
zhJB*nj_0m)C~&CO*crc=XnLuLIav@23YS3thZc5RS(VL_-p+vbhK~aNK5@OcD__g#
zSZTGCcOicQ-c{skW|8+CeWMx~-hP#e(Kw$8M0{<(B3Kc@;WqZw=(7vSHh&PP;1ZH}
zRN^IjrJ|Oyal#o0`&8Y2{k|DPbzTBIFQLb<TovE!tN!G@Il!bjJ==FJah}z!rD7#i
zy=-bgBOaD{b%xPEqjcYWyP2m7@yS-M7Rv?Qv@)~-<*qCsFKuNphzMJA2->SH(yNhz
zDoYBp($qQ|y`Xa-UaliZ6o2kFzc}@*xj7<K2)%Bw%r~zY@(^;nV3q08up#UGoy6-Y
z5=kvPt=d#>Rqk>WdUG{7vtLm7HDP*r>aI!ucao~GRZ~C$B_bi~umO9Wf`!cqDXmKf
z7bLQN*fd@7^_<S~kYSHfw25tuu5vfu*9i(CoVbz9_X6y+<?r%`(9O&z49;+vr9u~O
zsqNW-epVC`*A)<8+R9NNXpsSg3;kR?h+0({m?n!zr;>?5=vD;hwf=W-Ud{znY==fQ
z+R-UAX7*?S_R5f&@_<V7%=VbD%vUqzqL|Ms%6T{QYo`gsy!z3f{63pXn^v-sj!Tis
z>a(awVsA!q{9QOFEcjXoRNAn|3UVAtxKnXXTBXm&G96Hz)fEmrcj65gEwBXoM$Cm~
zs9sQ_(U+T6xMM?Atk+03u<b!H<-Z5M*N2#2dp28h@u`m^CQoyYj{(opW3_MD;!X-K
z_#-Jn^>TqS5}0zUGX4IbBR19PhhY?FEo{sc9O>`gy!%MX(XLqSr~eiR&iB2B-U9wa
zC{xBx$yF==W$<@O+%~6rmu!ZC)yF(nZb$r(7)?PEh(p5>S{J;-q}@&epQEXY23Cp<
zWU}_Fu`Q-*4A<;zF!RGZct{z>j!j8EqNuFi_zG#V{{5jtswjwMV<<}*ByR`2Ba0x{
zKTAO@2)T$!RIT+1>2$yxe25%wI<jJGFS#4P?itjB=&+OE<8-Ca4w!o?eE%7KBbO0F
z#syWLIAZ{~w{N<O*2D*KdKBG87PZ&=T-{0uu==p<`uF4_4IyZZTe<9z01Vi)v0O@|
z*Zw(aV6BzxdPSOZ5%p2r-LAUwxQ}N+DDd2<u3wSRgrz#7O316URokuWrOc~KQti_+
zX|V!;*3|Se{oPr>;gOWYRY?g%GDJL9f6wr87t{7OnY5bJE>X#XEn4o-koBefS>&7k
zUn1^iJ9QF(AJYFd6d0ILk1UBrxkRx4TOj#PvVRhO{F3OzDX_!Ocm?EFcG7T@->np^
zpL?RQ*k3AC^IA*w>YOt~>-E3da3?z1g0sEOcJ_0Rhs>2X`M08683Vs6pW8p_DS#}n
zPE;6Kc(<Pux?@9^8D<}sK=ZUzcEdZV{FzFE)n9VqEx^V3JJrHPIRpZ2Of}W|OA7mb
zGhmor#9n+vJ%x_`(UoL-N6@fY{@#VaN=!oAMD0d{<MzLAgiO$z@^vQTE;8pswOVg8
zOR$x=hT?g&#M^hx;@)ddVcY-Uo5pi#@;kT&T<*)bg++aOihbf@_T2M2EIXVXE$*%P
zn$+@h*`j0jZVXv@CfAy!6czMLfgVS6Gv(;N=eF{|;5k7vo^O7Cwt{Eo*jK!~t-Fl6
zOBBcCwEKfLWJ{E4KFu+6au5n9Y4d*Z&60s0QsfLY6X|?<5c6P(67iWXq4yvKd`s#G
zvvc4Mw2gn(Cg&NjR_>GIWMEUpp;gYGO!xXvsgohDsfq+Q^IwI2-PZu({NEZI!@GB;
z#N67$Tita}jK&|`9(H^@3R4A+<F9t{6Oz|^@w<u6q_QQP=iG`r__X&U*9(`_yx<1b
zopyzFv{$2fcRpTL%(0ct#rf;9;#Kpl_LLj|uYMy&yq{;$*qubImQSvP(A<jeu}V>t
zA)!rrqd1sQRicWF7I_6-QePTQd2?05&*rSIXrXAkC}ayLy*@wFXsmZ$Lo+jo`c-O}
z83;80M{DlgHruAI=BPO7R}&@P3+q@8olZJr|27&fk@%kp?CU|hd$T81_Ot-#PVF!$
zg4M=(dqxEi-dNH-lQan9;DG(%uAa#X10nA!4ninYZZ~_m*LQ4|r<f4Qo=3#ppbY3_
z&9X<R^5gVBI#QUgGuoHW3^nm=;6EW0dxzwG_Ku(5E}jm^s6l=ma)FlGtkKQvfaR6<
zb=JlmMKJ`?IYwz(mF&2yG;7xZk5OAatTIdtF;)wED3@VT{M;?|vuJaYdp(90Oz+$3
zpw*MnfMK6mNtrioLAw)0z(j7xkz*U5VmMpQQ3<U)A|)ATE=Oix9a1yfczhU^BeFP}
z?iaCW$GQ6c+04klP67>`7zexDs}Ze*x_(2V$QB&l0a{`T{SsDldR}^n&<a`J*`Ugp
zP={Hsryd%ftXdWxTHT;d1XbEKZ@vvjFrR-pBVFiwOZaYI9Vh-kdfRKem;*4qZ&*rt
z6!Q)KOrTAdrn6%UQ<c=&6b|z!;w6uJrQA(N(&VlIIUwx|q9b|2ojw}&L*4e|!`Ips
z<tr4>{ny;%_@DlVj2^j8EDoddjjk4)Hw*sn*m??n1(Oy%UVcx`@|`Q8vEP*uIX4r{
zV+F3>kDF@6j)a_mE*smg=m|FPlE|wR>*gR%XcA5qA9q9963`=Lb+fU4E^F@y&*DKV
z=ZrnH{$t{4H>I*cXtkX@<A!ftaRNdDg@Z)I9jY6Bi)|~H*H1@nK>m)HMgo#<o6@Sa
zp?~25ue1$Sj*Iw{Shb4=bKKZ7qTLA};R9pqqs*;iBgc2p`SZuuUVG$g41nv~_gNP4
z?T)F80TT<}9fUESGQ2x@mVw}VC|1NdU)&lzdHM*|R@aEc6VuYhuy$!MON8$AjxgK#
zc0pC`b3-zdsW#Mm$JSH|AHl4Q=goSnpSmPSnqh8<^JJm@=;s(-;U9dLBS4h_vS(#_
zdXEqsZQ7swpDZ@Apup~*GjGc2NRVo;eGbB#E0+8e-n@QPM<%%c_22^7l75ywi0-p=
zoLEM-^|ua32sGDIE`}i(ra6snAED=WZ1p0MDwMxwK67C|J(6N-=(o_Le)>b15f_S?
z+<X~v)E}XKlYMi_JBhy}c#Y$4iX&c1Z5%D^|NjrBzB}~rX65F%U@YSN=0^DFqW$LL
zh*R}i#^%-1e|H?{cG0uuy7w23tHClRMUt{^1*!YEFGogmkX!DJ8q&q-=WPPq>y2UA
zAC<<uVn3|}Ap#$VH;9wGr6(z28+ICuFMyGJ23~1&DM@S>>i*&0Cu0^Zn?5TyqDF4f
z3c~jSE^NNIpXqmvWNW}V8{WoIw$LKZ;Iq@gEdl|WaR0KmhJ3e~h`=C2)eN(}(;<Q)
z8HU%@vhd?r1K*yUdxuHP-#+{&yThL?{v4Hcw^y~jv)y`m-WW39QhwFd?utyR-fDU)
zbIN|1e=b2WY6=Q{u&jzkNG=V12|}+1Qm`tzrXZd+P>^>^T=w_U&TQy>r`Y}qOpmb?
zW0Rf}()toe22gRCax(yZr?>G&;KgzsTKGPgD6XqJL#)?x^CI=4Lntoa#@$1Wrc=Ci
zpA5+mMNdt`h9Y^k9@RfCv6n_jVfSrT^FV(~D6{L3FYdruM?AlGthGQsS5R7KGksvY
zM#;3$!9LDCLp&;%?w2f?uZdO_cS!g98(APU)nYDy{?PdH-YgvDXi_;mE9*MY5KI}`
z-8A^FN9CKfS?8~?!5Y^_(uesh=LyGxvmq00ed*lWx=9+Vw0Ty*CNay6{=j&VEP-Z!
zR*Yqi!p@zXGYa)R^P2CiMPZa{vjI}@M>C0xg>?kKTWe<vtewBEa-9WzHS9va2lU6D
zmgWZ4I76L*x9#DO5!-ZcCP%3k;rcb7ij+Rdm!;T1YP4YOD?8?c0Svs(;f3GzCzDP~
z{koZP0X||Ix}S6AybcW~?E^VQO3q5@YL8v-awmk_#il%@;B^jjpE#^QVdq&@dm_j<
z(Xsbl9E6Xm3|)$z2-+DF4<lNi5XN<+$K=y%kLI(*8aJpOfgFr@dYIc4mz$lxJtf#o
z4nKEm9^RvGaj4b4UMObjfR6QJm1!z?uHJQKWmp<KXZ7eveRO1?P35Kpk>l|PU;7$H
z3>`U!e%lEhv?hO!%iJ~?=n0-kava=Xx(?P8G57eVwE65c%!#M=a@p&QHs1~KBcK6S
zY`LdfT6%iI-rLm~5~d_Tgd)49+cP4+lIIkZO})8?^aqPz;-NlSbdwwhO<(NDXDg<d
z6r8g4`u+^E5f@A0W%kAw>9NnteZ?jBp1?%RiUpk@J{C#M(cRorQFLv1u^_U*zCdc^
zAAMp6VNTq=(%fF9*AwY)m=S7d?EgL8@AFodtc;s#7ANQ#^c$jqmsg5%HE4yT$YA15
zU@Vbuphv=~hMlfiUI?ZdBZDL4&(xQf3u&mLlie2th?-J_^AAqK&?sUo<O?BAFWP{e
zz4t(`^1w4x;^_T7f@K3G<;ojd|4Fz5Fb2_kQ!Clt#RDxJY`Oy`uGz*OR^68=ua7Z;
zY6HvP3afvit}#Ip=lRrk6Z|}p5J#X9H&ivN$V0vH_w@u@?RfTwCVkeN^tqmL0!IJ@
zDdWAJ;ZIePn1np#Y;q9mnx&f|+RmpF>M6iBPwNz)LoW5$K=K=0sOyyEcH{J+vVS&y
zv`5KQ!-h_?zND~4#<#!;kBvNDJKn$!IigYf$?Mtu(lO>I?V%G%%7=y%*+r?}4Jr-Y
ztUDrHkdD~m(+it7yK0bsRBqkG&x-duBDWVC2HaO@D@O<)35Lv&%1F&?{gC`-J;G@1
z8K&AP)I$kr#RCoMoE7Y{5$^?g=xImppEJ}w<mr_6e3SX*ZGCb~h%mpf3RlPYs}7-0
z8pB>~d43)gKWwaVs8_v~vCpkH1XHwGt792kD^F|h5g-1<?4h?3x&^k+ZzW~e;8nG$
zRyaRI*w(>tFW5U$+9;*r18GPPCK3R&)$%(TMq6`-kK6Ql?8c$<<6Hinp8Ym@uYldN
zErr+l$=_PJ-!RO3A|I`TF42yq>`eXNbV*B?-U?@x><6J+7Pk7dx!LU|1vtmv`P!tE
zNp`vSihAU_UCpwxwQw5&nk$!2vaUoEnZ#u06=8qX6<G~lu?Dp8;C?lp(*oS9tL>zB
zDmFtIbL=J8e&q$$gea2voYVvm35RNsI1ff}7$1?dGdnkHxJwQ*#Kt*?M2<iu6BSED
zWZ%;(&SA<A@1XU-e@-5N*2IyT;MN$Ao@)-+{yEs!W*52511Rd`;XNwh2vC_@dCO95
zSD}a`2Bn{?GC?2of!T6eILTJk?^T3fMV@j`QbMu2|MKU<<pvtY+vkE4!YWP)RU=pK
zZoRW5nk>e&9w)>JbUst=7vox~fG^^!rUN>COy=f)Zef5$cvYTx#-Gd0PBOOtf*wk|
z>REM4JVr`H{c#t+&b}c$T=^JsNi||k{f@^oeJD+w#WHzko0a4C)65gYI$7r}V^A6i
z&U{=o&V>H#^FA#D<(inm%Jupu1<b))rL`y8^FsA?tRY4`S40gPom_EBd`E>oDzRzG
znw+<VK>|LONf{kXQfPreQ0a?2?KGEyDo`-EuS{m$`%&R*Dh*5deOYMn+gj<h5YrOc
zWhdHs=AY-Vg@@94mve*%Zz#`F_WYmi5Jop`QgnH};O~cfTgEF7+Z{S0l!g%$2o|x-
z2k#U$<Yjl>l<PAwELmssJESxWG#}^QXtN1^=(mP8aF9IuA4I(hVYTS?kjv@7MQJ@Q
zjK+HDg~CSGARXK6!&l4I+~0)p{IiLHmyQWs+X<~7xdJHCr2ebE_DLWXd~)e?_P4;|
z6f;twXty3%M>u16I|yK4dB4oDUdzu21RVGPsLVJ*(GZ3-?JoBaa23>x^8GF2o;czL
zB{d#(@dfq!7NwYXY@1WVy_AOmgzr6?{>|)E_I1a3M&z)p9}t#{I6YiYCJk}CQ{G#U
z^20@g!W25n4VHnNKjKX^DB#<=jC@Z4hw1DU9j^K|SkhK`MIA=Oweoia-NLrBQo4md
zQ+W}6wRDyHJH#z@tN6BPZ(EOsXBw2}D$*`hK?~@cXLdlroKB1kc!p-YG8oV1Fk$I*
zwI@>?m=1mONrg7dy<tbFkDrw3xZt1uf~{fCmfNv~Wio9@)>+hcW@WhMR_I-~QfszG
z3{lRM>yClDsmX=2osvSd_|m;3K4;W#)CyhR&%w0oDzK}5z%%n&vUJEo&VqE?90uw$
z?i)-O3ZEQbp8KA=dLvD(1On!G`7x-Hl~_$MKi82-Jcm-5vz4V!vX4OaM4+8H<!`32
zCHW!pycgKa4$O#SQ?vrp2Mqd(TCrC8%r28jL>zg)=qU?GADKY2OQpY~xej`m1*HuS
z4XanGIKT226EM(G2hhfuHH|Z|_x=3#^F?=^UBQ4s!?ScdEY?D=u>4yS0UXdiz&r>a
z<adWu(BpHjO9h;2Key-PT4i~=9dq9bd^bu4h8f?gTB6I=pznl?CMvA8-p@KSGQf6X
z8cZYDW;PSf$+NVro?-1X#P0^AT%Z81Ir$%LjV3M9E9{Nm-x`;{mrbGC{0p{bwVlrd
z;*YWraKRn<ihm|gUDGiD)y=kLsR<q=Ic#&jWX?J%4~S);0{7Ilnr0hd`1(<6Gc{=g
zCezAg`^8=Y>@i=jYL|Lu53N{B3Lchjr@g`s?&#t3q_W3$M6OP1zhHoCzZ6EzsXu!M
z(jv><#GUiJIh2_xR69<-4Ko(HezdK)ezu!o6tCx@9+6|bqg&p6>*8T2k6GpURtRg(
z*r8BRYXQpZko+?5Ggh!^-w<B!t~bc<TE1I6^Tqjf`mol$9if4(*~^7r1W-2lyLQR_
z1yNSlG^F6DZrO1OSsvRVooO9EIj2ls6Y;hmb&xP6WIh_A9%n<}ULB+SOUMkqkf6GU
zd%{s~dB3(!rXe;YN#87-Qo&ebuI<eBn2tjUGGluz%UUB+BY6cF__V8YL=#w0R{crn
zs=xiW@Y0e*F7dH&*YMF-uH9*+3vA#~Cmknn6Qk@M?E`PH*el{Ua3y^|E-LAprsD@y
z%MJV8qhi(f6E_4HDj)J|edk6aN6myv@h8jrS~cnjMBlNl%Ik0Biu`xM(x*U>0AQez
zcQ5bTXIF{~oql~7V+rZHcBgx->F9s+7B571<~OTC!Jfrrm*6|?!<g_%9kO2JGT(j+
zK7^;y<~_|5w>CJ<4?=q5Z|7-)t5jeg19%^WOH<@!M~=*4_ws!VJaJhW{DUr?Lbr32
z-D6WXYAEC-i|6gU+<?<8{LIHh)zbL<gTT?pJpSJw$2|e1w9asX?hqX%=ilgPnzic^
z1l5Ma6WiYGUx+lmhPbehawa3~9zgtZ(94!y{dGM&yvPcwHT+o=@wx63V_Qv{gX(yj
zDvONaBAgpBoCAxA^Z<f~6r6z&T6`!+5abp%*$`}ZsAlbH>kRxIcEC0sd3jVSsR93&
zSH$~L$Smu5O(Vj#c)n<Uc6$2^dSc$e#1DOp+$QyJURV8HBdx>gcc1O=rT#~5Bp58D
za`}$PMd)f(#3X-xDtss3x6L9L=77oVxKOe7!o)d^rr%ku-=@;!y{Aci?fGzHemxW*
zU(fwbZ{h{7V)&ouq(6mfqO+6FgtEm+daXl&!Sp2Ds~WE(xa(0p(gsz*&GgT#F4mgj
zK*MRk3nCpO&=Z9ZS5YSR-#^M)7P~iT_%*z8eer%KwSzD&L$YhnTT@bY@9drywBIIz
zaa(JKWbcqTTd`e{is-TNnqPVVsOY+e`i4r&o}Lp4%J!UVIx%5wnZGY_G9)V8+sL3x
zr3kLy=V9{Y^ex<I45etq-fZgU2Q{rw$xm0y^OVA&{`1Gx_7`6{NO&hl%|Ib^{sy7>
zMfw~U%3+rDk@|$+YAI7^A`2#;pSMQG>9L9HL3p?IRZ9x$B+nMv@Go{(2+a$4qqo3L
z@;v1M<Bb;amzO(ew&jv(HS-+m&|NF&16-6LwHx7O$?tBKtBUFbNsii5p}$KSOcRuD
z>YN{L&kxYy2roa5|GfRZlIil%5QWNpJFhoyP-KMv#t_%ajfKS&KXu}(3T@Tm#TzSA
zYy11@L8iHi4${OEErKz%H`Za0N?S9CmG4jQuTDu(hHECP*Y?b0pi58P6>L_77<~on
zAwXhpO6W3)Uag0RQ_c|B>EbKnR(dP%yv}d<0MyywfE4Bk9-@L<Xr5Ve0tS@h4=E^x
z(__ky>AoZ4zmpVO^E$ZW3_S<eho3+r=lO!_K80*a8*nSuAf5v^YoxMh=-%zt5#JgM
z?#mvPobJ4a@Wza+F}&|@m?x~fxaPJbY6%*()*%`rBz5d`Uv^JP`w0oWkBPfk1vrJO
z9dcOcL$k`<gUe^#0OI2I@JF@M5jn9F?@k8e2%XYf_)^pvK~poBl1GJ1iX&>!ziD+b
zzI-yA!u!>ub24<Q^iT`AMCG(kT>H*jxq$~#;ujfT<k<0^j!>1PULIDPoe#>+$D3&<
z4NO+%-js+7xYx|e-3VJam37)S%*3Z?{89qjY19mMX&yth=jI9+Uf}h=g>P#KpSJ=P
z2gCe-YcCzea~Xe59Mr~Rhy?G0PW|=}p^>8;WxFG83Z{n0z$)`2v48q<yWVnJ$njel
zOOeJLZe-60Wit|T?wY;Cw4!^hu2ryvGSg-Aenz66kX1(i;itK}=N(UNw@)-XhHrY7
z<`?UX=}J>@*3XWC*MkKU5l6f?j_2T4q(`b}@vBk6Zp*yI{Y1NU8Ti#Ge)lH4TKQpe
zcEf_*^BY}?ME8Bv@|n;Bn@~|zSr8fNXj}Zqu6>johtmp@6272>R=gHP?t#uu_?mam
zr^qgRQ}=8VkUjl4d(NW+C~|Tymou;8u~iX~X5t9sJR-b=$SOosSjQlY)js=c?J`2!
z9a4kV2w8!lRJ^F3<oUSmbekK>yfzE$NzFo9vwejpa36syjRF4g=r@wMJW<YB!mr=p
zZq5qEZm>5O`Wq4Z_#2fgg4gBwdW8%*22X$4eBBTgn(mby=yW;B*L*iL0+b#8vK61|
zn|__-_uAm;Ic~T40|s|Sn$1oDzKtI~in9KAD#zPO8JR4rB1m|Qxi-$}aD1swBTx-p
zl8pIsi=H#GWHp_al>9-XI2*L%L)3cvAwkizt}Dk3G|Ob$R(|wfZ3PL}PN2m6t2I~{
z`&`wpjt^BG0jQPAnM|p?uO`?9tE6a$nZd^W9bSQ$KXNn5pfyS>#q6qx5;@c2S&>AC
zWfG^=X*LNk=r|eqA}Xp@IL(K$oa@WrJtT9!4bMOTW6q#SO$n;eL0fY#qcdvy6hjYQ
zF>eGp+hj_Yv#&@s;^q!TiD`)H%}a%$0FylZcZ@lK{}`-3SNMIB4^nm$e+GfIz6D~5
zA>Ex8PRDQQMz2gj@R?}gsx0-<is}$nWdKnZDSuRAh(*24TjVqAq})-Tjjp6zQ$|;p
zjGY^e`k)Xw2%4}#s8F%{CKPw<_wd7)hH8IYy3zHUMMEjqZv)8+UIf~_AYVbeqTg5u
zB|X9_^iBPzFy4kHJ!<jSM~1QrKuZ!z6`fMmB7}W4@i6(idh3!0)~`ZavA<W4dVZFl
zy5-+CnLTWqT77!m9ByZ`Tr9LXn=7cOr<2z8Ehfvx3B}90(KyV^o@=+a)*JP^&89BA
z>-PbRO4E%HFTk7Q+N6((qXpQ)=QQuZCfp)6k(6P}OI`vHnfUQS9p=0L%J=~Kk@BAs
z-^xgqNsOPU%eTi;9}sJ(H_ZeaP#pJcwgYKjoE}*MIpBq~6+!vk3<&1KAN@xl$6ks$
z6&Y;zD3SGk-P~dT73Z{RH@^j#T0M~+-K_DyKW%i~{BL~qy=dd3^Kcf}@_GFvgl<NG
z)dW7X=PBM%MMny)%5L5?X9ZJ&ST=}f*-A$LUD6(rS+YDT_}^Bcg=xXW%s)X<^CLn#
zw$gLEs1?Zn0Z&1&zT9ht%?xq_Hj(R6JM3gwrY6^f`#UyG)gmio=#!KZ7u9N$EA`L5
z!5(zp*~Ea&vY+h!qaPrXTl518wPBNvtvl%$T$EeH{s`M$drS#^b-%BT*!KKDPJ2E|
z-$PVFw)j)`{Q%v=cIVxKA8?%qKOjN=aJ|{GV6Slz4bLvRu=U6f(BKEWpT}oM-%ev+
zG8+KJ>9&Y9)d^X-W}g}?RzHA%8TYkZTYJ@anQWoe&SN{-f{N14P*ti|%PX}&MDeWv
ziDLB5zJ01w1opExBaml{5^=h3hlc?_>qD~|Wd#5WEU5cXk^LDmEX5{sNIEP9i)x`h
z3}O#f3oHhQQVQAjnBUAuMDg};ZtZJmXDoJZywJuI?d_lsv0bjVz!#s*hmGsUIEg)L
z!tSEAHaoHV8x6C)n`NjQ?S`=m&>%Otf9-22+{m@oj<Z?<QrQ;MS9~k72mcB0X6+d`
zJ8Ze_a*&1ipclthb<QziuJ#aHzUAANIf>bXVGlO3hs|w*G_lH(iDJ7Yq7*zU_We$-
zGAEhb9=$ywfx@nj*mmTW25i#4hYfNp;aO>vE518UU1->9eJs}jTMGB9!CoEvV2?5L
z+IAu2LGDqm(<8YSP^ILS*}bdtH`-%*4Li<9n;3O!I(O`YJ-_Co%x}yeiOmy!g3e#X
zHnfjP+jgXG!h3u4?P;eS@4nvJYxGh0H6{NhlfRpD{^R#6e30p7x2DSAKdrsQ_R+T^
zE^^QJA5asZ48C1swNvYR2-v%?A9Y@9uk%`O`a;*&!Z(8|#w01x-*&t(?<up|Q=kMp
zB7c)zc&)nS;{?H1{E6+#nGVH}u7cQhd7*P)uGwjp3>?kSU{3!7aWcoUUd12|(?JG+
z%=<hY5s<os06zzTE?42mV<qwV^`b$d`RSzF`Id`r$CLJ%UKZtjJc1Lw)NB7?D@J)V
ziyVX#70;@IZ3{v&*29t6h_~l$iaKVY2w`kjWZm-l<q`^T3RdL?KRjuD0hWVpM-lAI
z4OqbKy<r!gLZ->cmg&Ni0>+9A;G#UYmbJLR;3ObQ%6&Wsxn7q|u1A*ZQGzlOJj+;o
zxLj1uCkv=v1<zrAQfx1VO#`+U@QNSvQRH=Al<U*v>hw&VTsH$hXm%23?QlL1>$L(K
zUpg^|VpX{aZ`QV=wrnecSJ637+K=0{if!6-%nLPwP2{M0y1cZ37oVTON2WzIHl1HD
zV(-VSj%vB+1c-Ic|IXO>{At$AJqt3j+<DS*-Q>zN%1ryhlUSjq;_uG3LRT&euqqb5
zH|vqBgHN!>)v;~%`0}D3wpnfBvRolo<)U1`g?31@V2apOjv6q^LfvDWsahYSqAwk`
zf0>Vy&;VKAkzEe3$LYv6!~s^7Gs}@Pxyy!)@6XSgCe^vn7H#)t{$%D_D_BSozE||)
zsB^V}1A?`S)`S2T{Bl_(Lvot9N3C>bIVSB}>!u^_TN&8IUfCX5j<DA?+T)Azx-m~C
z-~YUTgBsW_7jS!Lom_qZkJ}-Ga;7L}?`c-7Z2!VTp6whv1x`od#9da^gY_lRF>}lX
zKcGSPY147k`DTx7ufY#omWw=t?T>xU`O-K)`5Eixqxb{zG-+0%`6#i+LZL6gM-}!_
z8MPA@kt<KA#7AAhqkm+29=`sfJkPWCwafWM+GqDs7qOYsQL$aTFHO>3uIFw$-ipEa
z5k5-g+IA(dTzx@l!^VAwwV#8J+C(ZgA->-N{N|&4;bc;KWnV8o3fNZEkjT1%&f$d_
z(Fpr4*?^)TFf-$$e8oq1!Z(rMMKW!C5ukl|Ygkx_=b!VTW1QN?jMX?id0{R||KM-Z
z%ZIb_HFE8awFq?@XHGnwHh=ixDxB8b#(wC$D5v_<yIE+tUOrsp9?Z8mZTCE1v_8wz
z=^!@7?Yv{|>FFSh7Ryx^`1zbI^!fRsG=kgpJfJ$mcfZ@P$@b2dtN2Fd{$6<D@3P3>
z+5Y+Om-AKZi@$U154o>!8)qw?w`<o8yKqec8^8bQNwI&}p3Q@Cp^)2*?0nU}{Pg}P
zm|mXGB09b|Thhx_GgZDg9V8?6`~vJJt=GbZ4H*kRU%oTvbHJtxdCcSew4HMXq{x+d
zhz~5+RlaSEjs3#;S^K%jbqmJvE=|Vv4%nWzXQvIr;iMU?FPBxuq3^lhvK*f;GPXOO
zblk*6v-v(J9w%+S^5yv|ee@_gucGtA_5o&_;P29P`^Fo#>!ROS)*0g$|9M$;_YM2{
ztM>DE+qZxNi)=G2S1y*w<3^Di+r&GiWjjNzC#lB*TDR>T_?yfDN&W`&_l|8)79lTM
zaO>S^lJ~ftuj04)`HYSI4FCOfgfADJ&+>jO*LAbm(<TS5wRB;*ZvS?CQrbYlRur4q
z>o+gZ`6l;N#U^+P`EDEAa3Ghtrqy0`5_7&NmUk@2?Y`&dtN8B2Q5U^0SC!Kd-+Pwp
z;dnq_QeJ(Q!%_O$S-!zHI+w9Z-t6^7`ZQn9F7ySIbE@+Moh!F0_oWxcwsj_^UgLg!
z*`Ce%dD?z|ML(bB)|W)*v-Ta8t71EC_CERn#&#8*>o@ep`Vz2zxI~?2!Nyn(8}Hy^
z`JWj3_PdvF6&uTe7r7VFdEVNO@=ZE_I14s@zSzj7bHV0)X%YRh&Aeb-#P-DZxNJU%
z?{PdG)Fv)V^HH081p79|<#VR3;oou}de1(K`~5d(u??YPq$*<<9<#7sxL+^_t+a3N
zB8%eeKiPgy7~`E)ZpXQe*~}(hHhW#S>!mME%7xByHS8b0Rqk_^i;P8htW&u-?oo99
zBK}i-6w^VmKV)otJtr(Nzb?y}-(51VFN^qk?knu0maVU`T*XJhCfIhl@b2YB{cGCh
z6g*y)vCcLgcsiWq`!C$Rh3mWMSo(wTw67bslk{idWnWb1Y?#ky#lk*@ZG+oo%yxQ`
zu_BMPrJewvZ*t)K*Ez|UP=^e*GXaTf*F`e;C4qn{zH6X_<-WyZZJ{m=0j+6ji`6vJ
z|M2m7j~P7nP&JUmlI67^?vpYO<1sX~#FAKGSI$FVln)CA35^cgIsEu7lI6I6m(r55
zjyQidyBw0XxSjvbw#G>?l6<r*sE4y*;c>&&=E^#!Tf*Ff-;et%qdkD))OM^gr?h_O
zuMHcIk@-Aevw8%_$>{CKgLW|i%>sfp7Pa;TJ6NpU;vFnGFK%hrM!9;T)a(I8k@JL_
zg_h8R9n&iUSrMCz_wQh{@w^8!xzD8JK{?y$8{cgYn`h@5mcb@sLQljVu~`t#6Z-~i
zMr$H9WlHg#LD3#Zd+o4M+hyEgBkJTD6Zz(_U@~Ge?2=puo$kuDv@CbN-&)!t#cO>j
zy@JjA+5?>%J<MHuwd(`6DAxkH<>&_nd+o3V8!$ics$B12-?fQgkG6m^TVL9-iCrIM
z_DC%u&67D}UmE&aCs)MO9`z-|_L|Ps=N0-t{-3|5uU`uN|NhxG+Zb)T{-EE^ZO}j(
z<T~K|Dm$QLvR;__n#WgMt7)Py-}88s=zsO^evkfx|JnDDl(^pdsBBUH?OVM0Up_Lj
z=f%H*W=G;o?Ejd4n%@=vmHj6l!pWbK(_b$}wGIDy!TAjO>ge0~Iqdt7@ZC}?GPJYI
zpSO7xx6knH5u5n_sx-_~Qu;_9-{1Q#b$(z+=g~*mk;vi<aj~WSz1q6K8;_d>01f`z
z12j)T*rJnWRoKVEwv<YSB_{g<gN>3Z&XcZ)Q=dVZYxPA2=XW=*ZwTkg#jLjfo}gIc
zDd!1<oL_Vs9|!3~co*fFenN58<)WEaJm9Mc+KD1z@EkxA-sjx5WIJ8avUFIuJ;ifi
z6FzNfyyPRcCt$w<+v(7*&-lG8{se5wU0(v$DjkZqwDQBeAem=UH*A%5IMT0pmxD6<
zNwL6))qc-KEd=YOy-P(lG$qJ!#754!&fI1!H=Y*icJL<GW1uPN&wHIqk+2RMYA=`^
z&zDZFQm_oz5+-hp?F4K!Vq@%A4fxHr8d^x}Kv32C1)EkIwsM25Ku#%Ocl(4~wSBuE
z7CoLqyH7w$3x*o6B+K1atkot~oGa~9#A4g*N4f3Qai|m)V1Qliv3A&rdYj;0e&XV5
zjFl&Hj+J1KTyR&nk8^K`PD>V4V2^ioE&*w9{s(O42cphLdsROGIohJgtbFihk5ZQc
zMQEE`i~L41&LJlWR5?{m)Oo#;>u9fxO?^~fpWq3_!S?(>=Yz~1k5T87WUg`F;R(<j
zbk4_Nn*3R#kCMJJ_^8w12cpgsjebCjD2g0;!b}{L({ovv1$L=RLMW0Pebm(GvJ9*F
zsAvPG!{Y;N_xu3cmis9C{jvaS^HEw$L9y|m<TRgrK*97R@?8oaS;<VO$TUrAPlT0!
zZlCaxRzsndF@sh3ib-oq^w|gh`AC{*Mphoo69aPgh5w4gfD#6wN-IGU<l{pr*pe2B
zA}dHv5+oFgtC_%AjfHzlQXpjfs2Z7qTNiG)T}r6fzzmB&+zuXnzBk)^Mm-|Yb1`fQ
z#ngcf6BQk(=`I}eE3$AJv1uZ!+~2c3NChKVUdd|HB;O`n4f~{W6Kn`XDK@={EJ{-g
zAa>XYbVxNx5KywAF+f(iW+B%#Y-D3R1Y=}OC)ikSI`OSYQD#nilUt-QA<I~)gd+5&
zbI3L8v#Vh%SrZ9F=M9_4b<UXd6bTEd&J(i0vt%=`CG^K>LI$v9D=T)XUjX|On@Eb?
z<fhpAN&19$yTJDgjaiVZ+3VG^nK`+Gz>_a>1r3(ep;GKFH<43udKkkdyyRxDgxWNn
z&UImJ0(L2m&d*~xIkx23Y&@VzIGVwnk^Wq~uZ6zkIw$W-yh<etpe*NX*>p<JV)m=1
zUL2bwR4hix1{=Uat4xf|4?yQC*Xr2o9X}vD1t;h*^d*^#T3@3Iopa|%Vqac&1bxYN
zf3n;>vs-K+i#$ZG74(JhQCfcs*p`C6#AEXePGQBafkhFF$hFqM!;1;K$dxnN%LE@)
zeSWmSUfl;3(3H*Q2OwAXQ7U(*YGNN$qTJLbrpa~+>U>IlRF=-Ka!m++P^)>OTLZ8=
zE;+rH1f0nFQgLje(-Q0zW5QN|Tzyo6Tzem-a+N@j?DQkqwJr9D;D<brgXdY3((0=9
z;8LEPOIheLQcqJRJ`IJ5&1QV}C%y%%e>*1WgV&{!ZVu33y}o%u@T6t!nq1+!$=J#*
z$f-S<aCIV7RFJXAcf$oeB9%l%9SNi%s?IG)M5=eySW7yz)*9|bJM9I*vhnD$MGZ@6
ziy4{}c*p^oJe!{bR67YGp8Z^k2Wx8xggZ7oC*i&wwyKm_l=qj5WG7aT(-<bQXWM--
z+|}RU{<c&0Ms7i-b}d;ueovhaThfeWzSbbu60nuw-ADXB-VQR2XgZn`YBmu0<?UIP
z(33}OW@97v5nF;&j5-e2+WSlqi`f)xz~we#qgG47u!_#)f_y7i+`C45Hd)|Vb?iIg
z{w7zKGYvYY{)p{nBe8GFeWF~6I-NVdAlGTY7CHaxU~~SAfMt4wEj+t>H<Kf<k0DjV
zmLBw_8su#6l?Lp4*zDZxHMI<Q!yawjbsn&FI=9JIkm2YDh;ID=g}`#O3E6G8{pg?m
z>6!lW>q7tGfBMZ9_}=0u$0xDPbp61C)$RLzBHm?BAI`cMIlq$_2CZjlFY}Rp@Pkb6
zw?%+|`!}Ba;iEl9xyEe$h`!t95M)(|djE;OG0wrqcDvS&&c6~T*|vTfcLWKQGU66?
z&$x@Mgz<*VGt&L<(&#_M4+Q_&`6$C;BM{V)>TKe+tGs&LDFPh-L7_{39)8=lkF<%x
z90DTz5tl(74+^ox(lRWS-;;cGt}KxkTDOagTQDNuwiU;T=d!||?R=$<2fFs0)oX41
z+Qs>`vC1ivlD2DM#mdacSv^H;xvj9SrLO@H3sIDCp2C15+xC&QNamTyh2;beYtGP-
z0q?T-Bso(Hwmsyor^d5ytDJejKHbB{!DcS%n}ZxfEd`Tn%x2J4`s8wK{P26c<(P!H
zT&+Gq&;Krgy+Mwn-1qb_1#BziEbkVuDaFzrS3R|2A~^5(;UU)=bUr=6vWHcEAMEkg
zUh@vm{+`YiD~;Gpu6S1cSZq6TRC~O|DqFQsqvAC==CDBEa&<q@vc#<b*K0aAIhIb2
zxAh829eMUkR|DV{8|1iyE!yi_bZ&CAL7i;dy`%FgHc^5P+PBZWbH_gV(~s2oo{zfc
zPiwig&*=`f-q+vO0C)?wu6^yXt<eWDR#`A>-zAcehYr>k4C3s&q=RQ{$;?@IA5q()
z$=~<l-^GM)BM;1Nh?nSdK5T&FbAXD$3fpob-90BkO>AkGg*)Z2=Ap!l-AlTYN_Tsd
z*v>mwmg-w!<Mo{VJBvLcD1_^U&S{mBKE%T<4+_Cw3jcdi&S}Oi&-Qz3kdxn~Ve7G9
zR}C~<W)QdA^@?2spiJ{NVw21^!<Im;MzzD1R~skUg1-jvQ)#^A^8r|wfQ^IZ(l_|o
z_pnK9SK8&-=5NtnA=i#$T?%aLE<{=p5T%Mm^F*!253t2#g@A2A?F6BHtF()45}TNW
zPDGMG(5_ibrt^$(lMcKm3;Y#A;zR|t8tFKyRs@<2yVeZgp6l33!&dKLllBc;9k8iQ
zD1D=0TY_9QJ4~@Bw~6A|nmv-N{w(lc5nIBu`Br9+Y7?=qC=J}cy=wA<U>o|{DmKB`
z%qEKaYWA0DwLo)Q0C1ffHo;mPyW6vjClhquW9$0)bl(q%&hxDHCVoKWx<amot#Q|j
zfjh06FVw9XdTH2zeQNfYc6C0xJw}_jLT-$$Ec)(Bzt{Sb_Ql%y0mmlx%E9!hEv7{u
z6|wL6PuK*@pliS92lA~S$mWAaKLBhLuyyvhgDu))^Pf%UGyLmyt<7Fbak=tNR(dH|
zP|dpglWlAPRg2J(E<QG9>OaMbT1)H)R;vjB+QDM=F=l*+u2@`{vB<bOHnxqIrPA8s
zG*Y8tlAWV1;YAlZvIa3LA-j>hU1|pCP(i2foQS}S998KFV;tvmK4K8u1SUZ<n*$<H
zX_?ZsG^!9jZ0xa@Rf``CNi(nw?(Zo%jjku~EVneKjPVo_PpsXtcG(V3xu@+hyDo+$
zH_D2*NJashVX=A>_Ipk?;(pAFi;eCsc@XS?q%Y5A4hs#F^r=G&RAo(uGr4kqp72|z
zwh3}Q>}9T^oqu<*c*?zY$jRmw{%nlDr+e6{?r^Ahmpz@2*mm1%?c{O~+t@C<m>^e6
z2(pAX!(M^i-;JoVR|4*~*m#RAVvll{XQ!~MA-9DnNz5B{{#I;|>lEaw3A~T7b=VQ7
zdSny#>@k^KYwh0cp3Z5I>mm4odQazf?3M25{8emto+g+ziXXvdawjAcPZN28@;CY@
z$Hvbt<-Wa+_GsA9&!=D$dFbcD^nrJ)wIy}ivw0jkG0pOoBuVjmU%sR1RJWkGG*fzd
zC*%B=HPMfMc%=XJzxRu@+P974rrY@Dr{7lk7k_@G=a)+V_kaFE-+s_U4);;D6*!-5
z-kmhoa(sFsrTlG)E3!znEL}3E*?-){aPWl5waGc0d!qD?@8-jkHLus3c9!cCc4pNj
z&_vfp`|Qb`%<Ay|<b5k*d1Q}t#~w{~CgT=sVx_c!!^e&xc6R_+(FVU^kvN%TD7jIk
zp7Y<b#+*AD0TgTZ2}Ehz@p!bv+dgGrdT4@F!7Aspb5`5n@eZf8Y$soCx$AX{1~~sY
zv%ew}MFzS!w-3B;BNG?6%l~eZ!nHK4yls^S&3pXr4cqG2BOkmt;Dgd17(bVA3?ehi
zuv;e8$W1@T0RylZ_7PjkeXRxI(}vviyvJs8*X!5D`M=G)IlD@@>o=^|Ys8j2j`bdE
zz@8cx_yX)BHV?QgfpcAGpnB|rbpo}Lv=_m~TW~$oRCx8L#wB($2+WdIw9BgxJs3}U
zwn3eD{2gBXPOd|}f=MY>Sg!uAOk)zTNq}V;IM$cu)Dp#d1-;JaDA%BKm*b7jn?2{C
z^PVq$K`@9XEx@|QdIYOuk-m1lQ%m6xIR7aIhp-**&}u1Uv5{Lp(DyZ^1Y(_w+?lRp
zDd_k7><K}(z^mWcV|MJjI<KuhLBwu0U_AP41J>6r_)v|t6wF7hLjX{#-1l;`+8?)*
z5M5yDYAK99Dx)uzW}m%}dd*&YKOnrNQtKm7V5QvKW3t^Fw?4|`YW{PwpxWT0VtX0v
z(QKmG<9cfopfS@4(uzT1mH`c)rDD8%{kF#%zguB&%`Y|CE{4!9zu@sGaynWD!e>5%
zm&0VBBSOh`<V;riyVd~UUswj7jwO%~QptItCk$A1%P=V~B(gzc#)NaUOA@ONkJuaX
zgx<3~F#i{olF}FYIEFOvC5Tr99Com!fURq{>x=U8+q>CBA#&HNwUB2YtvA>-)628r
zaPL&xB&XvqCW*&s`_d?^N{21u*>y+moHbijuFj#Jd|PhAR$Xo-k!PSQcYPbs#t9K(
zg?jzk+7q>{*m;7^*Lo{g=v>CWOZ72jd^g>-U<+@G=T_$>*u*V1*EuY=(`mi6i8h`^
z`%+!*YtTyu=RXCx*FmmkuPXOjdz9kSBKQ8iv8F4}rU6@zz1*~?*w@xJRv+!L#~yTM
zeW8SU1-o*EJyOehO=gd^b~e#;4tosP_xylhE6opxr!Td$$D~cz$uigk?Clm?vx!@5
z@ImNnhAsBh1YZ5x1?F@<WrbqNf)#Y%M{$R=IuPX*A9c?jC-lWfe&7~c?+02SuwhF9
z+xiA<Cf5|?HV3)w*<<%^iBKm36Mo(?Vc19mR<@&DY63v<vI8iEU13%06-?1DBn_}8
zJX@XxS{2!4%fSfUK+)b`6Z`xtm%Lx=b2V^BA*i2PK--HU=x&Z$haZ1;xH#m$)B;}K
zPDD1+l5Y)BmnlkQxfy|HKU}L#YH&6VcfDcEmxln89Tw0Z+Z{{U=Y=MsE{NkvGhrU;
z!8aS%AYesdJSx{xg3ZM@3h$m;*7ayrHMCo%f3!W5oA#~S;E?@trTvkvE#Slq_M7%(
zJA(Qw-4WXaY}S8FZV#~&`L2<BHc@MzJs+`2!X-Z|v{wYh%@)PpBDNTut93^s_w8|P
zUu&zuGh*X^U&6C*u-Cfpm#DXi_?vjWVVgb{d%$+jCPsTSY_UCNyz}AxJlNy3cYk_C
z=R`NV7&`2!B?i0&n?3Ia+h~tCFZj(PAGM2(|71;8x@)i0_k}%d>LwmvZ~nByMkGlJ
zOEFuo?r!XD`1{Y4qQCX4M_Cy6ApEANKmW-}fAzCfsGI3|i-}xJruu}juQk6e=^~gu
zR<|!-pc?#V9)jpG6F;`^`R<s(f6uqu5!++E7khTy!IpM(D)*wd`>1G-#ebz^Apbtf
zh53_)5jTEXee|udh&onXov<yN^77P-P6H$Qn>w`1KoNqD*I&!(+53E##TBPpEOkq!
z25|Wyz7;zoBTf{h=X_|^jh^$BmsLMkw!L)4pp(znT0N_L@|^@qZ6w>5OYv1v-LkG(
zX1el10jma&bqjmxu<)UVlBCG1$kX_{S51x4jCad$*GyQM_ZDP+<%X3dDMl#Ubnts%
z)4{rGB4V?5F$yOheDc;;&5mlF+2v%|LGi>`_}voZs+1tuk+GdOY|2Zx)==07#l+TH
zz<FtMEy9Uv4p??IVlZ|^kqy)NwSaPDZZ<+>IwsMv*#tL9mRZVu@GcSL7Hvki6fOQP
zdhZoFkLQ*RZE`m3oLQxGSfFSM*b+rrgvsSdz-E0x0=B^(N353ZycUyd@{hwh=vZuG
z*4637?K!lw94F&sN4BY9!=Tf2ZgQ6MLM|u4S~ROnGCo<3-WS!L7wBBJ!1J?(uU;t_
z#7P$0imijfYq1P@#cBm<($xBr=ot2SSsK;?tk&;^yE)KN$l}J@uu1T_(>XF5P3J!G
zZ4O^{62M2TCif}3kE+&}l5KG}KcLUn$))<NYboeU==bnZDo4Yn=S%bp==Xkp$48Zd
z%p&-x5^O;1wf0-!JxkJco*-AlMxK4IeXGan_DlUP9g!oom1^^!YQM2>O+n`f!slMc
zrZYPymlJHDVmp5xeOm5z77*=!x47TLcKJx#;3zd;-yPj&a(^KAc^(*)$Y6pz_|1zp
zt8g~*;vD3PMR}zH1Z`F+vT(!4ipAm6(Wn705{$N5H(HQOdC~bg<#b2(bWxu3gVYAe
z&gm$uF`2NNsmQbEDTA+9YZOQ@c~QP@!IqO_lLaocv++nxjHK9X0jwnqfU~_Q$F*Re
zG00qW!Rm;GYs04WCd$Ds*kw_3k>|}i)X*JlwFs3OzrQ@YfQBQroq^1!&Ga2iKUNJp
zkuSPyogS@kz^dYR7y1P(_;b5tjbF7E(==hXCl**aqeiIzuvnK7fK|C_c9~$8#W|8O
zh3*I{kQ;dT`S-K#q|pR{R{uaLzp7&65G8beg3cKm-+G=jh_gy!MUPG73T%r!YZBRC
zMXsyV2I1d`eUj>&7ee{o)v%d8ZteVR#wyrAzr)_n7GMQiE!{%6WW?KIFm_~$O_&b@
zHeL)Cdxg&VU8f9ssG@aE1iN5Ev3s*e>g|!S&9hNkg}zjcI<Sh3Ns!&Lm<|n_EXYne
zSzEEd%8Ts96I!U(Ib)j?Tk+j{1X|4^{O{7wudT09vc=-6eDt-^6doYg6^p}1lk4CI
zq;J3vH11aGOS&WY2)VA%xs6X(>r1F@BQ}A)k`0^ts04d#KB~aJPR9v->4Lr#{6Hr6
z17_dRN6qk2OJ}bM{!-;S88*~r(tf^*e9V8EAJDO~>XiFGW7EF0gk+u4`KVgWN2wq1
zeja?3*@)QVs^82*z^>fFunEI<)LKke_|FWvUW2_7Y{L4Q$Q6Af)&StegClmAZ~~W{
zOGaUlY=2Lns;kr+;f%cFq{&|VZ`>yIketv`7Sv$LLdi+65vi86YQJY1%nbWux&x6a
z`T`#saA5A?tJtO1UhdnA`A-CbBq=AU3~UX6!hb*4L&FYrIM;FGVskvi5SD_h+pN1Z
zuShCOq1`AdrJf#=O=LJyG(f|=&a9vFrW^TY%vQqzw58YyaP}Hw{Z0U_DMC^cKo&b=
zw&*k|uk>~u-`^Mm#Lt2^nloXUllp@D*<6EwjT3~peF@m4oofM3$%A^9G3s-+TAf!~
zlOAi|PMUpcT;diawlT8tqVsc&N8RUaMJZLq4+go?(9Y-lUN)B@YGde#t&G?b_}{G^
z^9k2E+D+#v=-lE+_FcE)nX%n!eqDF4x!g#7lf^KK$2VHm?!~Z0?0B{%g;9{}@<6U-
zPp-gj*rHqw`!2Ta+-kG!>AV7)>pa95W-MHdeW`@Lv_zd7HpuNB_R${iVhi@T*U#_C
zHNPU)=?=CvU^i?xHWB2yYmaDOA@@<P8SQ&MYQ2Na`&zA?&esR_YC6w%`uSz(=UrbL
zu~n;Clcj!{aQ-ismL*dzyqZrRN}^x<ey0EJ@4u)2;D7p_{ty5D59xpZKmR`c@3uex
zoBz?5^zZ)ed;0BP-hAfyg^W<=u8)Gx=ke_I@*-p21CkIgLpFZ&pM32L{Hy837FNx_
zUW5NE!MC$NX5VggVa@la;QRUBvXC2mzs`$vC%_qW#1WhNeyz#04E7p*RP0M>$A6AC
zp(DDs7+{Mg6^p_369y2wI{*x@+^{0!i@-(3gO@z}_B-1$RGiOM2T<eI7u&8DtK9QT
z*p`cnbJ6SMM7CgHa3@YpIIEKs6_Z7VYuk<|nXIA+6!sGO81O>dWM<&5=fU3$o<~#q
z?Az_sSR+TZOh|#n3dcEC;jC`h?DwZ5u%Ceq*RR3{pJh-UdG$}z)UX3<XB631r$~x+
zD%QsLF3%pY8#co#e6oqW7?upmsmWQ+lgd$cXk1WeR*Go!*i^1-z*cp_8RTl6L$I!Q
zu(_OjY^HOQ8yDcC6wXl;&wg(i!zU|*a#?qDu2@x0rSX=_z)CsO#Yrt=Ed|A9=a+M@
z<8`ptXpd$SIg#^}kJzr;gu}3{19!dizt5BFJUzf>a%wiw+XxqkjP`hi1C2Hj<u3IL
zI-M8i*_SNyPUn3s1>1&yG<!8{^T1v2{e0=|`J&idj<8SNri;1{+?R|Se3Ls*uBL;Y
z7ptW(O^!`IY}Dj>G`X4%M?c^?9sIyWi{Es8hXOYE3C3Ql1qPDZSW#a6Xs>-guktaB
zbsbpehkHJ18RWLCyM3+M<LC!^A9W2rN_1XEAGLOUNiqY24al=Yy#nbg*!p)X*GuQ4
zu7>S&#}8bZAE?la^sU1Y_PBQT${+pr@1Nvbb@#h8-EPmTXqTXwZ8xnIT++yhNG*4v
zeUd--!(?Iq&ykK53)Yha?n=?$%u`z^l}s8$k6<F0G)IngE#694P-glJqrTzmGM?EM
zlq;>sq}Cb`%9}5Xti}bt=z!FD_$^!Cc*<8SrVF;@He>W!S8!J6**Mn01)goE3l_l`
z7r(u(xNW!6niB<?E^_ax(zBf@EB4mPc}gvN#Q3&3>$VuDf9}R%e5l;O?{44dgt1Pw
zzM7Ojo-Zf~y!y(CEAs*y;{ls2CUQSu>iMjGf%~sy*<$fJVc}D-nOsE;wIxI>A-MxO
z=lgWnDuFtT2gt||nye6->fCls5Rx<GS-{4AKiBFy_oAI^zx{bdf0m5kpmV`0i<hJv
z>;b#e9c9xwIMfN)WwD%myleFeOy`ndLArQJSYXbkbJBOA)M_bk_A~!a=wm813d>-x
zP3KDQV%Q`=H8p!A*pMbvPzz9TUm`5hVvmziE-3%BVmBH*q0LYBdjcg;pxGl(FU=F`
z6(Eap!lDKGc^rF}5u4DzG`Ut#{+J&S3O1_)!58qtynH{Y)&79a#llR^RTt)4jS5YY
zQI703r<p?%g4WlVNt0~UwdGE(sZrgTACOfuZO`^yQ7G=CtVTtn-5{+~G8vT(be=7N
zqIyDv`6%~6*3U_G$_naqj>%{;d#$(jx}e`uwVEo~Q}yNh=l-+0y}FN56KL2_Q)NQ^
z46C)!&9^GKAHc9o{Vm7k7fU<=P0tESR@fx1`YuxrJ5>;rRJyF>a$Q1TUV_VOPa|Wr
z156Pl3xa|rW6@S|wFJ3@bK8Zx-)_%>i)z7+>M>lu&*yxY&GKQfhY52Gu8%Pu+5S@d
z%<K5~G@OghtI}k&%X>xG@6B$;Crdx8Es17axv@Z-*uj9!zJY0ce!MsSZrQA(VN|?W
z9<PrMHKm(-TYJZAUTbHF;|TU%P{{(gem-2A@ScPKF4=j+Hr{{4QXl9%CEpck&%UvN
zI%+;#%l`qkv?sUWeq(1HdCa@}SF3^9+n?);`lFLu8o28XTS{HKbA{8+G1%NF(^2Q~
zKCTnA-{_S3{*mIn25c4fe^00OZfUfKJJ?LF<8jYz?#VTBtarOX2AiNk?l-o&_v{gS
z4aIHk+MWJ9Vk10D*FRIU?-3i?_xkm%FmAEsK~^^>NylD^$EM-m$b<PBclp8l89VDT
znU(+O`-Q%I%JhzTgJdgf>9GL&jlE%hjlE9fng6)71erOU9s72=omwf@dolkSZ7v=<
zHOn`?eb4soeDvk+`|bA+o^|(=zhe{B{a&qG#(=5E^fAYL`%mb+)`{(*KFDt`BNO)F
zT5Goq%F!e(RHAco<xiGDC3wm+_=5HMn%%C|!K=J!_6d;=Sna%c=03L7aEAz7;3Idv
zWfyDv9yfSv*Q_ti7V?frnuRUdM?A<3*k}h^>aaH>vFhT+S*e5L@)6h?H@FlJTw1*X
z={&1V$~BATE!gDxfXy;^W$ScBpe0An^}LI1<gPD~AHFItZ^8tslv`|3=XDp`Aa^*(
z&L#r3`UY%`tKN#FsfFvxA>_&v&AK+5cnh|Qi7Ns~-kuxBe+yn9lmDL1<Mz^oRn6M!
z5vapVuvg_5Ho4SYY>%;b*vc&*{6lPOD5OWopseKe399Xa$)U(f#Ci`K<mi6D7sqV3
zhGOmf0A%y1pUb4<9<~C`|JUp>V+;DOk80TJfUOSL?3{vJo4vL=5Q5F^6<mPp>iyLH
zz~9zK1+05IAF<J_!Ck?|#qN;Vr*dunw8UKn^|2qg=c8iXhtUTWe0dVlo3@KuyZj#C
zU)iWa8vLr=m#iPp)!XsiXLj^cr?#C|cRfiE69Id+H_0Y0jYB=pMzgg_(B*&yP+l<Y
z>7Kx`Zi~5`(K}Bqi>@ejn(Rcms#b+#os17MDPMN6EZXFCNEQ%k3%`4@#j+%{ZAt^D
zi4crkc0vJL&-srGmSq*L@`$Z2pe4*2+$t+}Jf`Fe(Sog34=PTPrZAyMDy3U&s}|`s
zxn2frf_(z^#R_IOp5iO8&5{j|od8qdSQoi+XP8t@Yr`gTO`y}`0O>{L*f{^SpC1ky
z<YT#|;n|K&5+l&QE%a%Y(kdBA5{zD8BLN%Bk+E^jA_;=8SU>_c<<Ykt5LR4v)}pJc
zPWBF?&VikGBjtci7w}V~%M*Lt+Ou+~i`*l&rMf*UHhc?a1R>W(J-LR$xSh@=ogIt2
z0h<<;?(I=_h#kQ3zv?9DAXrzy7Wv;>UrSP7V_mTrF}IA<SpxV-;#evI`j*szjPjJU
zuO+(Cxl<@!7Jqi%muC4cn9f_fVv|g^rMS+GKF|C>8vKClep^+}Gq%l)*jCGeI~cb1
zY(ihjz$QC#;G@_ci`gS{{<A%=)pZ{I0G}U#twtYZI-hi>v-_xdhFn+2rhZ^`Kftze
zUCjPquZEo$#aG<{DRKpc;tjS%{o^!e&}f3rWS+5$MrjE%{D5Ge)Lv~zqsaA+k8+*!
zIk08XaqpuHo7gL`U7%yW|I5{C1~lqF)`jquqpxiq7XCB)P7<ymVdEyjHX#9Oy~2O$
z`Ne9<Oa~czTo<hgFk_2a%Lv7;?~qN%pEey@XWw098GtRrRTmv~Ev0cj*S#-it)DcB
z|2O6Eq(d7+B&A}S@=?B}Vz(99#?;0Zky}|}5(wT{`!TjxO+u8h9Cj60a)%{C9YQuI
z|JM^u(0&Y={%kvvgoySG+ldquM`}CIWC1#7&kp7!nL;7)1PKuZ{r@;(J07I3EGQh$
zhwT&=TGBvE;Yl!6vyrEidY<y!k_rvmJ-OBga^2%8mv-=wkJv1WI${%FHgMMy<Z8P)
zX1#e^l(odE*RT;$qzdVD2t61!@xg{|z;4(i5egZ=-kt;3cfe-$8nL}rufTcA2W(yY
z&a*q6L#HnH+IaOHTWPxv%q9*|uJsOgeUQr@_E9eP>~WOqWZ%|OI-S=&oda9GgDt%#
z*R)gTVU%msdD3rdv)7@P!qAsu``DNE<Z9T=UiWl<&mQ^r$9wjOXH5ayG-3<=lE0Q}
z6B;*?B+1SHR!}qYk!CIEn@Yht#7GUVi5t8lPkhwGzn`spb?@fbY@WD%m!D4W$=F@2
zMupV=*?iy}$MZ=O94v+=eaRAfaX$L?8FF;r9@@>{iVYz%zq>x??%UwLzx1@u=KJ42
z9ou}A?)xa~=dnEz-T0`MND#*e>2DQt*jX|PD{ppJEHb6ZvL;KnEl0PLPzb`I18~+Y
z+BLwF`p%npo7hzbbv%(uNw<y3))#!}cngP|A5>T`wjJbXI|p!nP(@ut(b~={{k;87
zCZRm}*@Cv0MGN&v`)cQyP+%(z2LPpbpr6k&`O__Jt7GHsvWAT_V$QN%M4z2-UVyE`
z%DWUu+xgHU7pt^O5i!}tpx8LG$*}P*iOFjQG^{+SxM1t>Bt?QI-x9><3399^*A3i@
zV5_^>C}6X8*~XX^n@)%qOwJoNk?Wz!Q3`WKIUW@I1zTHY6f_!jZrg6;*-5bp)=uZO
z*Ez73!6r<OVvh(UFjkXml;aF+O|H6?P__^qb*nI6%XY-q@+3226Z`!Lxe7(qb#b}M
z<VWO4nBX>@yPUDTl-sYsKJ(V~Iq2N%mAAGQ#j@9z?qQokyY(g8MrPO<+ga>&#HMn+
zj99n7U%W46={qu6G8<rQ?gz-R9?+LAJN8H^_<?1VD+c2Sn^gAw-2DLhlAQCT5;`|*
zj9<3lV$w;F;~M(XCHMg{Kd|GYBuGb9b#8Jk!AEu2vb0}aj)RY4xv^ZY==U5Pnlp4>
zg8u}a!64WBK5B8BSc9C+9<Q$R!;Q}UoaHuK-4m5t9^`8MeleYA{m70!sy^sTQLdcL
z=|0MIer+`{xKG+*=8Or`6%&t?`hgh_M6Whjn)>z(N-NFEXiEw9QQx21e@=&GV(6J=
zU#O%&vnT#ii!`r7O;b^Hv<=)2M_nYAKx`$@ZD=6OiipZWtQ3sYg|D{75=BO>os+ny
zuqAi`#mZGFfcRUGkv%FjImb!vA%R$6<7Zfb^TQEzZ&z*CKo=IY33X67_IT006S47g
zG{{^O8vz>vl8Rl6)Jq^%=wAXhqp+}AB92W5ojid{L9QdV1E`eNixpqDK$X&G9gYo~
z%)w{P;<D}YF4si^xp@j(R|VUo)F6xvR7&e=+j33ks|1y&*|Nrq>s&Ikg%U_<NTeNO
z4Us#q^I!3Mqpq<@jn#dU!m%WJk9?gR@Km|3jaJ7d>5wbSr9_=0z<oG|Iwz2;oG&IP
z=={3gU}G#6sO9!4MV(u)bJ7Cl3no#)UT4t1F!m9f=-m1eupO}Qx-QKg<@Z8ULXBQ)
z1@<EfN?%+30>_pkHpq1jlnST=RZu5N3&{qZPbkJ7<R;H9x|HgD>2lRwJ9BbuYLAMo
zU{{#gqZSj+!4E9AegJZnAaTT28a9zDu(3U6GTKpnw)g?wJy%pN8TKfPMMv9#sk<Dk
zE|2uJ-0DWH=u3Opc+4~UD4Y0-y<S!nx$k|H$OS%1=36uT=VH`Jw);-|+96^~@Imme
znmCZ;8@UEQP=X(jcJl+iAQP}n!AGH=Tl?hLpmVp!1&d3j^XQ{=m$&%OqtcSC>w-lM
zEiSAz(+E4QKv!h;DD4Y&tRoSi1PY*4ccihu%#x&N6hJc;XckFCm}KR@CB<2A*X$eh
zru935fP}S6up?7Tq_Tinx&2;-RJ+ge@ZpmuRcK%%>)IWf(#~}u*?=C8zAUBDlRYfx
zGz4Zm@dbe!&*rptyWZM&uD5neY>6)^VH^bSETh+UrbcWr2`4^#ltOw%F7e;&p119{
zzqjwtertOr{!{Ke&lQV4P{Q*|3GD?tK=!azO#-s(W3%bplImnsj(gh<u43)LW0#Lv
z!0|e1AKu4s@5$DVQr|xQw`8Ne<26q(>U_j@V-urXt-anR>&V~f^_k2)IpjO{_TLZf
z=_9cjz5&eRcDwb?@8iAGYuI*<z4jFT`&PN8o%VQb-0}2QY~>@c*8z<6eBtY7xp>FP
z*nQdk{Px}tTOY`6u-!cRSNyyArkwLlzid#m+kU*h^WCYhmqB#Lx7T{xe&^fpx_7;Q
z)DY2+KFa;yox8ne3wy`S0)WT-lMcFUSR#p;Rh?+JbpeCI_~Nm>`rt>;#Tf^nwgpob
z7*fcD6~&MQFnIu$FbXJZ;M=Cgxjtbe*0|}Fn{h=3k{1&zkz?IfqcOOyjl16Xw3Yi?
z1!El5##>&nQ$e}yF<DH6tZ;IQ5#>~``YwK6e4^mLFDg0Bgv9`YlJlI))|jmI3Dyu$
z$d1)AjA5X5p0H)OHqP~eiEWdk>L5o-9LUMA5(YC-jwv^6`t0l(4OkS#BwTf9I$pgq
zrGPcb@T{y>Bna7hMYr4g>K;Dy6R=5pR<3XA<dR*kl7R#{uC*Y0zYTJd%pP+K^kstF
zjHg_&uBLMY4jYd??6qpaMB^!6gOjqAN0X~$pPId*20+VL(5=*}^HzVL;@uMDYBd1j
z;+kPC=&#C~uiW-BX_<16W9Un;37HgAt3W@YM#Z|u+6g9CwSl!-c2mPrOYN}R!l3k}
z8tET&tG4sQLyoc~9(5qJeu4Hiq87a9s4}wED+sj|AlHHnP?u9_H32+Gl*zMjjpiU_
z%a~VN&ZJw2Wo6y6^K0vCRI$2D)_15|0oDM(8hjM&6@EjiG?Z57p~IR9bsYk)zSjb2
z*lK43u@*?QM-&MZom+i_Laj#1)O@?yD|D{Gwd6j^bRKoA*sJ@2<Z>mKYxAesb^gdl
zEfL!wR|{?s`ciT1s&kp758tI4KH~Aa<XB7X+S}k-?-8dD@w@qXA39=?@uE$5k+{GM
zr;U2e__bFJ8ijtX0W8&-1+-AY2bmVN<5bU8`Ld~6PzXWvg2K?GeM9>aFGwkuJ>N@$
zMojULkm*(x8y6#8ZShP#bih_AaD%V1J$BAja$q=Ul<;iEDgn^}n+Ah{&1zgA03g_B
z4W<cyHZPu$j$Mie*T7ZJSePa*S-^F{VwvvJT(l~eU`rGhRwSsd3n`juXB_JYRBI}$
z$W0a}@ND5spOp_@g6ymMtT|v4>@%=CHtc2+ookU-;d6%0WpPcuiO_jM(6XAZufUR!
zacp#GunE*F5bVHa*jcYC*CP5(GscgL+JpyrAXo9P>k6G4Hmy-{z+!~hqtL`u_w|+y
ztvX*MxTE%pz;jZai(GB-7vpQema8vLRM^Nw0UH*9q_zy~waK-%zQkCH-Y>x>3|mR$
z1>_Z*?h4BYs>?Xa_}}HltqugRt@;fWduBtjZ|01J7QQ#+D)zcA!Cn*Ox@uoZun}Ol
zg%mQmQ^k&r3T$Yv72|jf2IpK_KVOV*H+9(LGv+$az}D<_GM%$rQ}X&6iEO7!ldJit
zCD^NA6`gBeBlv-wGVB#TD#~>YaxLJE?R-?xzLs@iPId|q>XMj`vc<J)>uVJHxz#CY
z{<Ai@@;CH=u?gyu%&4+nuoJ-Kx>{c{A62keF~c4g^RL<EYC4y35c}Jd+((IhNk7j`
z=Q%a(8H+q*ixXjI%(}D;ZPFc?nhj~=D9yr~v+c|_s>-AbE%5C+4pVH}cakoEVoWy^
z{HgTwwx>N#u+4wkH?P*(=D3AW+Xj*TAvn>-3U=T4?fg8CI9`bVR!UpMwJdYz)22S@
zFmfyJao2m&;q}sZp{dbASxtZs=d+F*=1>!0`|s1!lW2%}pKURS|9g$R(A#sAVl~tR
zD7r(HGvfJPe7#|Fe)p|ykF(n5Y=({LF!|d)V+_rQXCT+c|DJPOY$UWZ)#g`UedScS
z{NESmz?NDb<edH%g#4SIeocS%*FVvB!S9!~$(5hQNjG18^GwgrFPMK84@`dh?YDH^
zWWm?+Z~yc!{+fRF&9~BiK40mlUwuu_FG@Z7?T0h{)!%$2?`L!6WnDen`KQ};|LU*)
zhQ8jO^TIMf|1+I`y|w@J>z{3SR(T)(`_H!L&q(O`$#(wL*WWrXx6PHMCIBgQ?1v2l
zzw<ZGA5d$hbaJ)1jm_!I9=(<V=2<P-<8{veDL<~YU~+!MU4KDhRTmRWEerfIaM#Cn
zmdE8mU%D=j>lIwyz+JzL*lOUem&Ctbt~AOuV7n{VfZgPJeWP6Cvm<s(rW@z+T`h${
z=VL8}N;`?sdB28*%N6~_<(BsAYuxCZsMGm9Y?>T*y{mKnjxMX!Mr9{_rL<nu-^iHb
z!#3u)3Z13+A5yjh(<yJg)m;$!ou+aoaK6a-J$saPP9i)%1DpC0r}jRb<nNb|%`de=
zwrdXNKev7?$)5>35!P1k#gaMi)qCOhf7$$%CONcSUgrDxcnQ9pk606c_2EghIs3x@
zYu_c)x%uCyQ?thjztO2E=Gc&E3pspz>|v({K=uDhz_#jEv!rua7i{F3<(rs89l4cl
zOPg<P8QPhXT0X+qa@{!pM-Fvxe>*R<wd36Q;q4=Q(Shf5I$~@5B3nk;pjTw59c-&Q
z_%V%N+qu5y$g$oys4oM@`t=4IxWG>hn`|e+yPVG#txs^m_T9DT0{3nE9z+Y=^#k9#
zZEGI+u_I48g=df0BImz2j?KWO)<WciPlmN%yKdkDH}3jr@?vS?V5jMIo^r3H(95;e
zQV4wSBDZsA6BqE5OQFL%*zA18b|#q+ScXt(+wm+I<2>b%Ypg*b&mOS1dIdd)deeDp
zmwE-86EnGXIzO+DO#<`lawFG<RkMo>YqZDuNUp<qljG&aCK~@c?6s5Y(y%UC?Dr71
zk+EDG-}|U@eKtGm6tNv6&wiBSrME}#YbWVDXXDjJ%?iFBV||)h=AX$?J~V3$&RZva
zV?RIc)SR$vxrpsN)>61MY$n$feAJE3VXsdvSH?P1tEI5^I*)zn(#!G2N8PRMaop`|
z+K##;c()AuRv(2r5Z<qK^2}5qnr&AdYx6-Ni~EjT_k7kpA0=2iKhWBx?nCfV;y)o*
z4osci&lqrot*#WdUJu`;r?@3Er7*aO3)nJi#o*<05B$eNv$Q1Bf^-tEhX!MecVCOC
zgY&;?Ky^Z-|GI##L$-V-;iOKfqF8E@qT<F`EsHZUHsNoi78}pDAWcjot-6`9=p}sH
zzJSc_6^pJK$P&7aif0QpiTC-!DSsPe+xet}amH3X5Y=j2=*|<xrVD;Wv0odus!%jb
zl>>mlW)yxa=>}Uhzs3b_<E*tN1g?y4TMKVDUi~ECCj>LEoaJ40SBxyO@gzZ3PJs>e
z3L>w5wt>G4i%@7xvTikNINRc*EZieWK!O+ghO!fY<tkaRx$)|wAMs)$Z=tkW3WiPF
zRjyhDRBdW9`XjGbpo?|Y7LZ97{)Iz5V=-HYO**MyY(yB3lE~fVibY+sN98#uaQ>r4
zK+Z@^Y4++m5B4e=nRNUtG$t%pb&2|(oJj?_E9IZwOA;d!k`P9n3-$^dNzSqEWACK=
z?S$aEVH5kEwSIwOOInYhwmK1vt?68ps^2AGll2H#t=l8m-dbNmyYcEf{iZGYDlK8e
z&O0YE{D9RPv%>FJ>|$`8V_u@U9_k0IFSYs_o6V5&>dUi|>D=s1<;rwN>KDvjt)C~n
zo9eFl0iA5k!AG&ZOMBA3<_SCI2cnPS`}0JOZJFP>7A(YP=)BqEYAkvg?@fwLRjhPI
zr3T)7^fmWUizv(MZKzEoS=6XzkLYVsU!#`b2Wnrh05%~>H1JUszF6uDxX#tbvk&Th
z6gA&2*z~Tg-i!J6)O<hW%54SoM>)4$44OGbNIY3X5XcswvtYbp-brR7E8Yj#t_Tq5
zq#Fxeq*R}L|I1?EFD+26M?&2Q@<W53y6~;H-m3|qhpI|Er+;_88$S@WEM`3~W_YCE
zpElMa4^pS_cN?LN%P8YH7$xnYe&2NG_wqA<vN289Hax4?ef@z-^%-&7b8RPpQAUlN
z)hWC)k!6k7o9FHxsbvVuLL-9T@!xpyaM5n3@sNZad1dtkiWQ6Eg1y=pxuT$W@m)o>
z<Mwp0!q+;N<Lh}&%09)C&Wh~VT|_SP0;<GykvW;|Ueasz-bDhQSfs{yM;FIiT|EAC
zJnF6=TgcY{Aa)-mD{{W|?^AB}#B&Y~46YT|aF8(zO_=$tUAYeSIJTR8`gzdvYxa7h
z+gkhf!7l31FYH<Ou;=l5+V4w`+Q)49J#01nF80}bhuj<2n+(Txf42v6O*_wu=XJo|
z=_~&Go$JT8*KESD&3^lO^Iq<fb};P8t%i4ryNAa1=m)xg4~LEb_pa7D4>h%a$*N>(
z+6i~GiC+hBXy3t>LbKf>zE27`<NYLUA>JRdw{J<RJM~t^ei3|ol#N{%pIy4wYVQ(v
zy{K*KmE(7csMqDK-0^I)#{q8&lF=@3&%)n!%=a4f-KsxG2d}rkYl{!*wi6A1-+Ngv
zae)gPpSymg@9~uHwfkz?ZoA!|yq!N*RsTUh(wJb$9tXUz7!oFX_qe|wVcY#Zo}Gs4
zeM=9w<HIA*CS<lIohT9}L1ft2p&R#iLFRtScc1+hxu(IPy;<%E%!tj{tjF$GETeaR
zn;d@**nJC+&8%}qCKYS~6J0{Kamq8~Zo4tmN+lZ^0U{X+y#ZVONbI{dL9j=B+EUQD
z4=zf}>ejK@eK~%rO?bA63a8m)iP&^yT(C{{fi`=M{PCLQT8ZAI^ZK{(0}t;HdnCnb
z!Qh;F9q;u8%^-i9J?3GcvhSk`e3UsU-9cdiE7y6p;)%eXrsfAa00cq%z8ffyb^Zpq
z-}h0a$Bw>aA0)$;cCq!(;=h+qu*Zk(!}&O2i${IX=7UJw&n`%qkm|mqG|o-$557Oc
z!)qj0&fcv;180kA5>S#%3(bTU9$2ARP)_R%4t38&-E5!vxP`O2Y9QJ<t5;B|B-99~
z#$!IWtRo5Tf<A;z2(@Ue289<%-N7d92Vh%5y@G&^-;D!ElKGz+r?q5GbLQ!QEg7~|
zv%JOctk@NU9XJIAHkDo^7I2MqbQD`1vDFId6HuYa1iI(jUO?f&3y(U%?&T&KEEBS5
zm$u_fGFY7dU7a}xR3+f*9LqX+pXb>NHFwxn@Rc5#&Qp$Z({|wsU;8={CRfwB&<@p+
zyB>5T_<pa@dBaw_qQ41pt+o2IU9LCSD%vOEHIH(S*fOv!b?xo3D7~0r*PVJ+OQDFJ
z&KA5~unQ|-yQgz<drWGNWgnYzE(6=p*OnF7*d`>%y^1|5*Q)M#WKMP61=H+tswfDX
z$gyeQCDegnEK{RtGi=8BzeGQ<gKb@{wufT7>E{*{lAw|8<O}s-B!F*yXLW4R4@|~m
z9Q^?7aWZ>FUy5>-z9#fIvpidURKu>>^OG+8bbbK#Dp_=ptL+}X@lo@x|BQW!*3m~*
zQ1Nk6(d=|hDPlw264SY504B#?up=Tj|2dgGR+p>mnAA6?!AH?u{~6?ZF@L(Xf6!VA
zu?TR>^q(bYs8l|v2~gAzOnHJF7xn!!c-)I(o3qj}N<vD`ZWC85Cd`vjOE#``&Dhq3
z<hB@rex0)~c5AjCxh#|}EVcWDS#V0au$D7@H)g<*Qa_&3q{B9!jhxkwIM&x8xx?ZU
zBd7m7TkRhtb?vk>pbIkhcdv&n*e-+SXHgSi)!Jr)J-^ObZCR|72e=o1Hv5q4+Nf$W
zwK3-&2m8;SKhTGlGd({)(@(zsn&#7qez@I7GU>N~_}~2OYkGNkq2Kw<Uzens|Mx%n
zFX-D3&-9Bw_<=nCU;OdEl;`{p{=5H{=;7t^vIXxi^w0j_kHiQ4!ViBScz^QKujqSU
zd`bV#f9LPh^M@DulfV2cd6%Dk^FeTP?Vmi=?Y`fmfA!aYL;v|d{R8^J_V*ur`31e4
zFZ8@&{Qmde(bMTbKmO4#Z-4)i{`nvNG5ztM{U!a<FMNM{w~7Ar&;MK!(thhVex2TJ
z@4^4h$AA9M|8TqhnSS(3zbN0X=MQHX6UiLu%P&qM<G=iypVAM$_XYhs|Lwmo-!=Z~
zfA!6`+dKbL`rh~6(+|J@J$l)${px4m(2sxRNA$bD{hM-|J-M1aPN~%~a*p-X;$hKV
z_xRrrbI)CWQ%hmq=dQOb>Lal1)&z*(GyLAM?ewL|5>p0jf}QU0>f_!c_VkL}#9kw>
z{?NXMt>fK~JHcyx$gzG8Tm49Eh9`2@3uRww>=+~V^?{Evdh~~K9iDx!pT9}x)Ytwn
zY&krezn#3B(Z*YKK2e5@<p$G9yB5YMk`{oNga*P{HoD_Z;zoye8VlgxZs*5*i_PN;
zTOU81-pNAYby?lN3iZwAW4NAD&HauFrR-Z>uI7uSZ_cguB&EJyOXs^o`<`!KHs3D^
z<+z^x-2~sR<FRY2M*wUmrb0HoyrC~en{a!pBdu2r3m%BcRU~PB!to%aU;RHd41k;q
zJRzV{N|z<cf4`Ix3U!vQ!*Irh6@B4@xx2Yti`!)7q%Ng#RC9K6Wv<YpT=OE?%2jyJ
z`M<iIj-*{aoYGFx&Vu9LOCc}gF_$ddB<->t%sAG!cHxBvZ#fTcZS`9?)`3kryPWH@
z%79I_nSvWswhC_lJ#r>1&K3JXc#vN(pg5p_#|7`g*UJ_n;oDa3dfBQ4{%zxb7i@<t
zlTgNXHGb{fxWEnD8Q3Op*}e!i#on+fzjl<P$@L{*;|Yh!k=sS*kh9b$D9XPrT%kvm
zBM-!tSAPbldarYnYjUiRYr;9T8UW`VY_4+x7L%)FBA_!L^&@@ejA7>dKPs>Ja&7er
z1lyuIpTYTm2{v$v_Q}|Rb%tCcw$$kyH7o))le5b8pgiUm&9-kf0WLDxi1i9guIwO1
zuFj*sI5zHUtRvlCI=c<9!#_UV+9L%y-rB_MPSfRDRnAsRfhV_IKurqvF?YSyQjoqh
z$qpQq<5BtG1*_RBbX;n%*MX~kz&7gq47qY&<Lgw8hF#kwSY-B!tyWT#g3nj2^Ds*-
z1#C;S+6kAYbH0Y3y#^n3fgBY(xsRHHj}q*sTOU<+bS}GYvg-H(tdsSn(s=eou2xUu
zs5T%z2)z1?<t+6IZv8;C$9<ivk21N=$iBa#pL<`D4<B@HazzaQ<NTMtG*9l6rcjfD
zuZi2672Cmm)P7&u@dNPn7JMr1qq1(ju3CIB4c{%>TE}v>ngEf`$hM2xcMEGpa^%z&
zhb%i#$1&ec<Yi1p)E3gJF0~1-Gw;3&{O;T=#V+}rx#>%7-1EZ!ZtW-{N}zio9oVs*
z^W?G?&2XEn9oO^U*=Mq^<RBf#v4mIOYR_<OnyJwd9p=XMZP@r33(`S_%7$!E33?Yo
zkhnH%OTb1p)*wPgyYlE8Hr=hHJm!LJg)g5$Q)cup8b6S0E3ivZK;!(MqFj0Ft6{TU
zWNMohP_RPC+&<NYP3nqdD>7Q7o$n+RK%BiQ-ysx01+Tu;Xk%<fsdC7gjmOwlrTWML
z8_OlRTx(|&@=ZKwAeW1?60p@hog1wVu({3!o9bL_ro)z8=c0$KIlD`cYjU}kjsi#~
zlfbq(wjR4;tBqD?#~!WS?70TH&Ct0N9i0^08n6j=!M1kxSYeMMXST<p_oe}xoCBNC
z>;Rk5zv!Ze+M`k{K~A$4Qr2uu$PM<$0qx1;dO<xR@aC_<9w!Pq4|0=5kKhN~UI#x=
zfbFKA!zK!_$>tEW%dW*k5?L-*e~9fr^*Wcnbk%+y?UA7Kn&6`t8{}%(q_0)<HTO|<
z@B?e31cJS~ADC3G_AZ9aeN<NLHTcgp_$cd3^82837UYSsL2k+IHDU{X;KoOh`>3dM
z@kyW~66}!cj2abX(crvdPhMXm_7y&kW{)OUqX6P|=-lbvlGfXhe!pV-{fu$bigwwp
zvWP5gr|Pn5UpY)FM{Z}E<{gwu*?@D@Cs?=`@P^^(pb0}%8%?Bq&Z_PB$sXvZQbW5f
z+-Bc#?%&0#xrAflz;_2>Jf(lH^$ou#@+`}}wiMbtvN7Hm0h)?{%<hAA;OH61MEx_J
zCp$bhKC5DZC}yB)5|L6%+4T`?4Z$DsL^e&TNb%`|0ZEe4@O~C>yJ9yv{@Hg)FQ_HL
z2hUG9Aa8=Lct%Q%UWDgwyjUi5rnO=>_Tse$d695I-IzrdjdjP5(Od9$PUfTQ;_!8j
zTeiiDi;lJJeZ%`H4Ow+6kczS8b-l=3*<Ma5YOCPnzHF4L3%;rB3m6;Ep?RL5ls~n_
zxP&UC?S3#hCkU?Y$i34W-9PTxYs_4)JNNCLZTAYc7~9hwY~A&Poxg_tF1D09?6lMV
zuM=CM$9~{ru+_I<+i5R%?r%2p5Zk@?!nLuzlijDtbqCvSR(mqJwsXH>{JXX~w%&h%
zHcuT^cgc<1Y5!<=wtfl!8{1;L?SzQeiSMK4+slq`7u-41qoWMp2D3-Ul5>AfkB{`=
zH}~w(^dz66)b3zEsc-pU4#&+70A0xmg<7Z$QaICT6rg<&n=MpZl4$L8-?{NmOLvZk
zQEEYiWC4X5E>`YZH#jUP6f%J%-L_KU8Zp|kH7hr558kw@*|8rL|NbWbP@5Ucjt2gH
zR*<9oOBAZVcXL;!%mi$$6JtA|y=h9_{S2Rcn8IK}vy1uf*xHZt_O2q;u$?FQt`7f<
zq}1t1HX4xW1^225?BM#kgN=e7quRvbRONwnIn)X|v6k;XK@T-xOPw64VXxs0>{&_M
z&4%^T?Dw;wTCKsRQ^ckhRUd3AR@=C1x%t%rG<)QK?d2Nm4ZBHhu_eb2>u)lpAj;C@
zs`Un%&P_*}q1>=4bUZ(`w|AX~l|;Pu&`-H<EWWkXe2?`d@fpyo+h!Q(rern%s*Mz~
zr<01L=@_yg_>mx&8gx#9R>WoN=2mZfOzdl|-!~uNdNQ9=)D9}J)X;A!=+)lcuwlc4
zzDtyIqPBu-Sjj$0?Owe`lH#nbUPjAMAU}6=z4?aO&V|%`RA{3dWYgIzQS?##u$-E`
zQuFrB=0d-BdzE)9c=@&qp~IdM_VKArWQ;VxY(jXv>%V$m3jQ-=0MG;%e3ab)SESkB
zGx{WQ-@bFCfVGKc?}wlLWZuRN{<+Y9C9(UmAPZLmpeY4T&nbhS6<qVk=#?PiW*}U+
zRI)J_6l7Q8am|R41=2|Zo^t;a2XU$d@ic>77~g3*UxiX<2F;5W;Vqg8&Ha||hwNkd
z4lV4*wOzO-1=}P6P~B2r1uJK!T@ZB4viLelpidUyd698z=O8v`1=CUMWmGISWXbr|
zprZ!ICK-=d=6^;Y?|QKebu5JNH?t~NC1>o)#D1PN3pWK$PnJu$Xf`5grnc1);WpO8
z8C>3st!<y*g0oqJy*#m(3`Pl#ae?d>yyc9*>&sPp<ur><ukf8(%vduaCChf!MefEk
zKFNCtRUfdGsuONm@Z^Q!RdqgLQQJ9_lj?kh&Xq?~cf*NXrx~<ER*-#ComyZngANQ_
zD=gQ-Sx*ZJxQfnKS@=tAfisGG%C4*`_IO1=REx*!;;baI%vl17>lTpU`^`bFjGr^0
zBw^$Vd!006_yS5AtKY)*YS?PlIyaLnN-`Ff?NwGaJb+)6nunjwi<xEF7Hc<|PY9S^
zi*n`*HV$~OJs*?Ut6@82%}Nz)i~e2`k$87UK{hVy;jD7aUZ1Km`<8R}GPaDxf1%}C
z7#r)A7w8u$ZcEay)h1eD+$@O#hAm50w=O2IM#WyauduzN(0yI3Hj?UzDduDff}H@Y
z7pXVEa^wG<H2|NF2+GMWL+wio3fC$&{C=^%lqCavVYy0y;2A+M^-<E-mId~zi`wP~
zj_^_92iVyhf?TW8->^KdXZ^w&9f#CWBIsOdT5R{{B#Z+VJ|yT2>=*4ToO#do&*j#&
zFL7Tyb~;!7XZWb3K1~)6;G@J|t>`rB>d4|lQF<qtkjqZM&0daL<Lq)StsiIXDj)>G
z7tk@zx^sY%+M^XiUdqz>DDnNP*2hYdj+&J7e^%@S9$_h#tO+LKKluTSZL!S%S>za#
z)@oIbWnJ9TgpjM8YrPddv_`;0M_G?T(O)u3Ce6O~I!oBqa6G2)t+TpHNrR1&=%Dmu
zI(Eombl3tHpL_Cvjcwx?SCZk9`X$e<r<TzxeU3DPk}t8~v9(*hfCF}<=$N7LHgn?0
zoEwL~ac}cEU&}QCc%g{1Zu$2%W?@Q7PJsEaUC)`L(*(a-v_JAW(^c|4PVfiv?Oj*7
zHy_3+Ep(XjZPjE-ejeXv#HKr_b(fRH1$6O!f<MsgQL8s5ve-<EsXN&}Yq50L`1Wl)
zFK4m&llYH|$k}MqzW3#q^4#D1?cX4y*y4Bj(?9=9@jHL_M?Vr@@OOUrL;8ky7ku^2
zc7CAe&Huje0`PXfFTVJae)aGC5<NW~<$iW>*7{)^=luBZ{38AC@BFsNoH754Kl+#S
zU;g30q+i*tVgK?wzy53V-}=p8r?0;HnJgH*fA>z_>-n2!`s$}Y-R}Jh68qur*1N+@
z|Mu_wJ(2yN{pDYYAOCjy9s8Hx{;glvZ#7euZod1kw)?TJK0JRAJiqnhU!nI;@8}n{
z=YI9mud%>b=%4-JAJY$i@B{kQU-|{{Cni^3AUIgYFXTQUlUl}4wYrW*do^zOF+<&G
z^sb97%(u*cYxhJvENsRMcEff>Hu4m(S^En6o@2H$?#<|o63zNjtg|-urCscM*ofYa
zZEL@WO~!uP^AF%}|0ucEmcZE6=7`wv4cL?GJ#1aOESC4}u@(YjJ4}rUq2AHCVYhn=
z_6OMR*`p*lrqr;_b7zmXTPgZaYgdwoEc2hbjdzGCv5%bj&zblyV9q$`dDR*s6L!V%
z!8s7$ykLju^t|<TwVMi?>g;u0J<+bpg50wt3mvzGf8q3J{|W!PV8PTl{3Vfj`!}u+
zAilr0nkjrdzr47wjyuUa-;eq%1#;r&aJwvoZhu%V2ceW+y*_~W_D$v&^ZmKilH~R|
z%wOYoDZRBXna-)z8?d-wvLKbmC2}91_=sbt20(u<fgeP4gj+VZLJ|`2%ixOz_o5gm
z-zOM2c{@4)wQUf*O(F`T@o|F}8s``A@*7vZW@seeDsw$+Hocys03YdgzPMfFn2lF|
zZM^zkn9#P{VE_^M<$7#OkL|43o*bKA?^_9ZH9h=(xq`bMfrLw0Zm_i)0J@_hZrds4
z0k(lF{Br5#Xup4Q{`gSuplZ#49DaXAHj{IKWBcvVI`6p*^$Kc`s}&@(ZH_&*>vhDY
z%)E}xbZ&AS-o<$KpN^(;-EyrQge><cSIzn{tjpT#Tn1K!ZscTqgrm;QUK>ArkFD{X
z2Ycjq;S6=dhTqGh*Q;YQ$6<0@fo;ypOL}XM%CYVo?AKmyW)rr(bk81Dj!o|DOHRCP
zn)KZ|ork`pHc<mMm8);VUHiUd*hYJ`XYnqE{@qYZVX)WJ>DCXZT(xf<XVZDJPw(d@
z*8$rCY=^-Q^tBZp_^5L)#|7NAN7z90QB;v3?DjhPsNw;^Xpf_hx~XAdgT~PhoO?OC
zA2{y#0ct+#I5!{E`>5*YvA)KxT$iPn<A7ZPHl00MeT{uTU^ZdC-m=1<gm!{_8?O0J
z9yGpx|KtO+z3<X-s0pASVOtDuSZlbZ#zmy>g8y>V8W+APtg<AfV3De!1S*j>X}?~T
zoSAorP)h9^9CR!JNB*8`R8Q<P&C17K*+wwn^{w$aBkQZtlq3t3QuXf=KU)^rY>Vci
zoR>n~K<cyf*@{iL!_m$S7s<LM*&ZqZp#{`6@a>XG%~%dt)I~tC;yWaP{j7n12}Tlp
zJt=ps*p^{4N+67*OfLLv3CgitQyVl&-zixNo+|dzCYM!rR0wZ5@0tNNl`D!+U382m
zRAQwfkeVeRt#wM8++@s`G<%q+jU9yE#jruA$+3av1lVda$_35*H=PSlxfFU$pd~@3
zwdq`hRhwLajU$e^wm#b?i>u0A7EFR%qdivLLYy2Mbe<Hu$z21E0UK<BdEqD5xdu`X
zGjzUcAl))vc}>Nzt?<osPv^^uXB)QKVPm<M0b5O`bI2Xn%R&RFnGW;p#m^;pc~DOM
z0$LN%IZslG$+Z&PC8(4Xo83Fw<1{yWEx{&M)cQEY@n%hqZAE<oSxl<P66b(4Y=Y(H
zI%nM6*Cu_>wbYxyiuwViR&wl)&2&BuI-em|T}ZHgzAS-;EXY-{k=umIRehA{T#_D^
zh)w&Y(&o@DwncZEn7yu}j|%qK=#E-nYW8Y!)!HA289}9sQj|==N2&j8Iv3iTWIC_j
z&uuJ`-Cm*dsmWF4hTuFe>fQLL-VgA>0f6Uih$TLVbh|xI@O8&UmcqzV13)tWCs~-g
zAgH6%h&2R*VPESCo9M^!vS_=tTvqK{Oaa8txX4&$#xB=ZjCKNDoLHv>6x#NFYj>8>
zNf%ITvA_<sY&}|n2Yok=2n!;XHnb-a&-X~mQ*FW<^E1YC`?uGQxF|FJUU{A)BXfVx
zF;n;M;mIio@TBC|#=rO2vB+dN$KTvFqAn|=zqe%p$#>wm^}XV^5Wkv?#-vK06RHsj
z%x1qA@APGVk}7#pnvRQg;mc}@_<M&jv-t`vO^_x0twsHw#fvNmCL@vBCoD-OI{d4A
zzbbWdR7z9GFR7d~sgq;@*D{Ti9&gfq3#!{&9qfsBU+y)EI9wagJKLdKo9gZg+xyfb
zMXa#Dt}V9HEjGG?)v?uj`*+&GJ+|AwJ!*e&Ji?ZSXQzAjw%>d#w!PohK>ORb-Xx&i
z$kFbZ($Hsa+lk(2kE71RdGw!lL)neYeJR!9)wC{=+HZn??o$JKO!4hm7Y63jMDs*%
zJEUvs{XJ>*=C$g0iTlvk@BeZAW>+t-{3iO<*w^;#^JAZ7N2?&zk`q5=5n#6lfZa?E
z`wtv`>OizoM`}|#q)9}9wLBg}R;(K!NufqU04ZZ}K^jo(#dycvc)<gmvTg$}#tDpb
zowaDDAK5wXua%&5Vk=uetR0g-$qHj=R=8(v*b-Kt_OQ9!@GRd&VNM`7j&#8lpN(Ke
z%V3-I!(Mb!!f8B$ZShKY@}aF(-EPu}LoFz8#~-j-kujhXwoVT21b{urtp==h{C$UY
z#k=*_)2zI@g00pjcgU3xh^cM%2yCj;5!>jnZscgG*N#=s#U`@xkmLR+P8YHHIm^vF
z)uKU2m2>s_1zIU@PmVn{*LlEJvlhams)hABxsC6pvu<);{b;|7RfxMIN9%_fne=P4
z{jzJ1)driLO(c<-?IxjU6IjWv=u1tGkP{|%gssm_j%#lN>k2u;Qw)A!HM!ieiE3Q+
zqug^ZxA9!<5wgPIQ?QZsrH0MxNN{@^{6Or-qa5)p<u5I5SI*$0MthV#u;N`!j(dK9
zEp}3xA@c)uGPy5~H5awFJ#6l?MnAA;kN4yl{3+SH#J)4iafKYG`*Q3DD$T#zpo&Hx
zHKE^+SUDS~`vUEKm-gFZ*S1|j1=||+cfJpSzRTciN5cP!n*3j@WVK4%g)=Q6(+LYq
z7Oa!+UO^#W;jGpGsJMlsbU4yZS~yqenpPCm%*hwYMQ5O*5FSe+?|Yt|1HJ}nPvn!v
z1w7G?&CPkz1<$G(?h}frTH)LjuxYzyz%Sw174JS7O~#5szi3~vKqV9&vRI*ZW?SbM
z&{&CFD0`7Smz&8oV9OC3T#QgxEIL59cPkMafd;E;rfUw^MDEr;Vk2|q*|G9CD&gMA
zb*^%^_8Xg6i?>H?f?af8UFR-W!v>v4Y(i5xV3SD>*JdbMAAs=e8tgHl7K7DF*t3as
zkgIa6Yo@e)Ggru!!L7zkA9PN@#*&TMW&DuEx$AW-f%vG`iIBd6cQ0-uNwB-lsmXN#
z_SUXgCuF3rz}7FA-r9sDd3b=8WJ+T1lHvOu8w$KeY-zw&*Cy8+Kag}0M~4UZv9-R|
zYWmEkbHkP)H~4I)y#kkgj`m2wN5LL%`dW~yVY~5BgCCGUvH2)oOfYOI;WJi)kBU0i
z09)^)>V97deNFtplsg|Z>kQxRQSLY8hkhUhol7Cyh%INgN9}7`OKA-{zm;nR$NylD
zJZ@p7Un(eOweEw=IXDT47od1oM73;19c#-@0<wU<77y2;o@VZ^m>+2k0QiNZHlfAB
zQJ-MaMIX&;Oa6Y=ZXdd8(*X3_?mL*;;+cE_D@GT58WsZDkm0-9K{_5SJ}woS**Q0k
z_1be*Tc$N1_xQGLp~;iyLc&>>Tm&l41I|}07R7d<3!bgk#s2k@{fTj}WIJOX?pe6G
z*@`5wltvL1Isav03D2^7OJ-|MQUkz(jvS=B#}BV^Qo2^Y?s$4~8)K@>cl9LP`{(sa
z@83Pi{r~&_;O|S|{ZIblFC~NaKl|tZLVo{`{)hiP`S)+0U*sM?{?%WSf9LuEtb>2+
zcYa5F&T-!Gu+L^%(z#J%!~mC!mpF+lHC-9~j_tr;fAmlP@Q>&Z{_s!eH-GK#(z|yj
zjmsqE3g4C+$ab3wb#c-$&jg*XY2Dn1&haz|o8+8l#hi?EF1ldIevIE+7W^(R+uslL
z;~)R3$dZ%64u_V3J0@w39PE+-Jl(HRQG-2>+4Z(~7;9MYGxzx4YmifX_6@cS{&(t=
z;jCTyQrfQx5c`rndmgY&_pp@$+Qr@;ce(2gTS~srx}fjOA%^xEcl|xNTKjR{;aDGZ
zS_f<dxf(X>_xyLqCN?y+Z*S>&_bn^@kzDW9E$QS+)akryzf((LPv>2Yiosr8uCl{d
zHY#q0f7;>-#r+M<Pa6KmVmZe*G{JI}L=8T^eW~<+`p4hU@BQ*j|I2^xm+8m9{9doE
zv@3VpnalBv)6;wTR?Ci5?C>)m82zWnO$XgK{?oqG?whZ=OWEs2U`NKt`F|MBk2~K6
z+er{>0xSbIzUKYYiHuITKKL#@>PxXbV?3oJZ6fETfIt6~vBOOqM1vl6=O6KLCS-)b
z2#rshQkx{Yk+D&Lw>(ZF%_!MWjcZLg){_WYwn;x7WdL|_&T8d-{vdqtH1L>{IPHRS
z88n<4FLdOrRz*&7J!djs<)e<80LxXf%$ajvIM#(%e`&n>9X36e&du015j`7MJ!4C#
z3BVs4sR7Wq!1?-0t$snz1)d~JT(&*hfI<o%F48W1+8aL3N|Ztr;M-;_SK&E5O4g8I
z75?pmWISEKu`bwi!#471k8%}W^6hsY&WbH^tV@SM?S!)pj<ydeI|7j_(<K~G1K@fq
zSHT83%2t_^Zj<~Fbk6cQyUtGmTXk$N7tLrtbl6C+@qne-#6jdLHh{v23u-NhT$#sQ
zY5-gt$2w{&2)1d49Gktmj-MLGx^6)lc*?hSeuocd<tf*i6iw%R{m5O<6Q@qDkfZ4Q
z(B#M*=**LP@mdN8={w4?X#DTl`QMMHLnlYmxnLXQ%Hy-sQ!iKLsyDd;TS1Kqt53jK
zMCY^o5v-tckZt;6uc!&Y+o>4a0(;HML&=|))06V*kNoc@$J3MY>Yu^?emq7wX3^Uk
z2j{3sarHV7N9kMF$Xy@ob3VkrwBw`lj*mJwoinx<)B>?OB+*9|^qrKGbNu(%uD)$j
z>=oP26x%Gkm)Et~t6*Ce*STU{`@U46^VIu+dgG&Lzm`JIuJdb<E7KvIr7s<Nor_#m
z$1F$2#*=@O<00sr<#9AW5bTk4YjWK6QBkhPUap733{KGEgD0<75IFzWFj(SDK&uHL
zT;TX_$zUhxBDW4dGu_M7`aF+DNo9*EI$%**39SU{^q`b2lEuARkPdv@#Qj)<bSrrE
zCDuvR`QMGFeD#_Dr1UYuQLX&%5>S+)x3*5T_I%q{rNj`H5)Re~XZ6}~R+AJR)gh2#
ztIna$_vXyl37pj{IM$gH+xWEk5bpU}d+vH*^K~y^n;hHfbTpG;b6$Py3_wkQhE4h3
z<y>}DC_lGjqn>Y@AUD453LbOgu9q4B)^6v5EeVcTub{&=Dcy&0hf6RXa*H(qNG46H
z^YsoFI1<_wTLOoAh1^}|fxF(YUDqBPbbb$;6qt+k3YIE5OBA{5b&+_rY-M0KY_nlA
z>~rdLK4VwndI@qf{`Z_3T@v)*HeuZLY>!u^Xqj`6YqeSmNp}turIRu2DcVGkYqj>I
znbuUauT{5K)T9t>z0O7MYpV$$^j!<;Lcm^E=YI#btJSb**vwutu+^aR1&J==2N>IR
zb?lv7ZNbK{N$^}Lgcuh;Z(U2P^N_$@UzFa6@3(?izqeO%><e@r?J?Tx8s%CoLp^mq
zY6^b9?a}-I_pPAw6^l(XXm>`P^ZOm)Kh;MS&vm*6?Bw=Z)eqF>qoh_sMNI&*1snu5
z<(nC>vFDyf|CxkN#Ia>^`jZ3tlJsj7lumc$T0G~b`6#71lVZS0cR6Sc0Ms4h9T+mt
zTtuH{1AIPb+o8@n-p-TSfYktCYA>ZfTBKbTrIWVvg46+%c-h@4J6l@@q*673f<Y+U
zl=Gizo3v{H06Q#eMUGhQ+WAQ2A4kMhz8gbW5YoaA2@5P9jY!FZuoj~*dD@Xf`;9zh
zAkep4P&VGHmbTNwa9O)y9C3HohjtkQS%4-4hwww`gO-?+LLjz#R<IjO&WX9PSi9cE
zVt=1)hxFyFJIFXTB87J^(wA((RAVOREvT=wM^C4d&fz4;rZqm^oo1muWUl_R?6}fz
zA1?%G&AJp4iwKE9baQy(S~!xfz`D{Uz?F3&lo#zp|7H}BjV7BE>EB^3E#wg;WbzQk
z?fL@^XzR`dE^2H+LyZ$@y)sI{{(=oCxYV+b-(ru{2k9&`+}JY4YoksrSQ;+AYoGDn
zWY4bk=K6@u2BOh+Ro2ZO?_sMWHfv957n`@k{>kipc(>Ts(vIBAPG7WpyPu%jz-Y#^
zt?$QYS874gd+nZhw)bw3D+ReelDo8-9s~CHY>L=|&dWWy)4m^|Xm3HTW4qG!R{Fa?
zoatA8kry_KFHGpo;e%plBTY`=tpA^Uv(lgb^%k$>vBCClzqu^}eE)rTk2`$@jYwi{
zcaFdB{3ns~{-+(A>HKGCFL+n~jkS@EaVUH{Myyu6-Lc{Cd)Tbid``5-n_U7l_<`_z
zYcE&`;45Sqv)a|4K5pnVP=nKSaEUx;zknZXe4KS=|2y>`Z3^wL9qO?6ehx+8&)6P6
zg1i4#t#g}Tqm#1Rr#3QEO;Ps+unzP9oBXU$Cy%-V_L0hJc%B_8p4aNxVfe0v-|7G=
zr>KeQS((<4(}4ZnsRnPzGhqK~_WrHcmL*FM!$w5TIoI0z>~pD8Ri~=Ei(S=C_QlO6
zXi}nOk`_q|kSWLyh5^BPHek^3iysBO_y-uU-|ZJefd7LYL{SoSWlNMOL25xQQDm#T
zZs*kP)Vb`v)|{CUn&a|~7!fmbuC?~57NFiIyLX+PJ7#8nImU<)kt0TY1G38D9vIka
z4P7F|kuxeaxe?<$Cvv$)2Q2Rrp3#GA@*Vt8FWZVIHayXpH-poEY1r@@&0gBk|K72$
zyn5<zG&!ywv2XdiB=V{Z=!_k<wjDCNeKyMvKll6An!0xZ?i?N-<!U+o;on9hsgBj(
zHFo6M<d}jDY~HIjdBCK`w~6N6_wi;IdW#xr(CEE$3jG{%rKU$@ix`Aqi*0Iey5$F&
zd8{65CXf=jt)@<C0SA0ioG^4gDqZza@wv6odVlGzs2l&@Y{3UIdwv4=Fo;rZa>ae|
zE*JKhT5?>DI;#Ei>y>u{a%d`ahxnNFaV);u@bBXfli{nOKR$ApdovCnhpb?)6;k8|
ztpPyFJztG>CLxeQPOqcf%T)qOd`LC~0)NKMESa=fKSGhII!%EKlXTqYCrjq_q=iaR
zP>vTTghs}kjbz<s%>dM0I}uxz#VgG+*WD+YiBv<Dlx5Ud@ma;Dzm<Ugu3?kK4NN|(
zWtmUOgAfz2StpX60Xa~HCB>qXOT{kPs0)fxB5<IF$<NmM20E9^$#O{oHnPPqwsYCN
zMA(&>yyzt|XL&J9r#q@6Da}wykQ;(5ngNq6$SJ`y!>)C0np_1NHEh1{CaXlIbE=(O
zvjquQh0ZaWjIWz4Guw7S$o(jJ=9|dX76K*6Y0uUKFv}*h=&uBmP3LTp#pHy{r^R-_
zsoab1P)n)Fb%xxOQVCq*yWC@gP4NFP9h5AV$&O2M?5gw9<W`zJN(~^!W^$n@*W7fj
zS>lt*bq0NkM5?7-3PCgVOVR$4AUEqvn&D0Xdv<IRK%KG&mvjSWw!ofhCSoJgbM?Li
zY~;I7Bs0`%1|Tq`^*CCV6swf8x!D%QUM&C%Y}Gzsr?``#*sh0Ua|W{d2Lm?6-uenl
zLi|82=A*#B3yK`ISLsVxZ2&s~y<S4+qpJG>3A&ry(9bc)&O4<HgO8dllNKL|J6plh
z%(!CqXuCy|^>g!4guZ6}Ipyj;%I({AZiStv<jGuW6WOs%lP*pu_Tv5Au}zxYi;r!V
zn@G;=6|_g3tuH#?>4?sYvqG&FG8R4PPAwp^vmGAr3u2G8xDVQy9^}~*bgp`l1OU>-
zWbtXK&4S~1++yFt80cyjG+1xPfjJLCDz#qz=FL28)|Ds(H>xk7biC2Fn8ZiSx&_ZZ
z7U@_gGkE(+zb&PREwap0@}Ld}yg4BD^8Vg!2?1g5_~4aBk{1GhNGt)5G$+BdabM#m
zlkrT?){b4u7{|dIeQyb8co*#8KUhM~9VbjKRs$e>OiuPJPP##`4jI9mQ1jk<@6qx6
zUf=)j59#BNe=b@7-}~@K^xysAAJhH)iJtBD^z!9P`uy|H=(|7o5&h8*eoSBc%DePu
zzWEJ$@5S5n;`wv>=_jAi&p&%fAAI$F`ubPip+EZmhxCIFe?rfmy(QmBfB4<+3irP3
zkUHz`bbbaeBJK`1UO!+qS@XhnxjXtI0Bm1<nNh{s!SzdCy!94+<=uC+FP|43cwuz5
z<PVkt*Q7b#ha$k-|2Wx*l;%PcQ_tt@izr!=K%%d{``%eE2m0PeKc-JU|D2v#0^^4t
z{fs{S?A7_bCa)2KEM@-R*%k|Qmy<2L;vEKiT!KCFff`KMWygs|bF|meYGaAq&N_{|
zi{@pqvDtJ!&s~64+6@~clItTj+hzy*IvVyAY$j(=B`>ZsrDST@GIVOsMqh&;C6f!T
zhuqv=xi6xSb8LrPs}`Kb=bP_(K>MOKny_Fn57_2WuAzPhpP!b+Gsns9P1J(DlAJtZ
zqn=VQ2Ag3M*|2NDZEZ(lwAWCI*vux%AXg;Dki8oL`=HYcY~}~*p!3dNPbasRxRXWY
zs$WX~(m(rx{!jnxJLmhH=(AV%go2=TzB^xY^ng*d(TuPE<Bw+gSN?w=(!ciiKBkX;
zG}DXQO#iok@jd#d|J<$1NwC8Y1bdYBvtPKszms?5c|o_c#gY!;Ki$6${_|)FL2Le#
z+siz6zMW%I2jlVQ<YVkW1iln}|0_#6gdVz@0s$L;1IAhm?gxV0M|(YuHequJv;%V=
zXN3j4UhJWx01^(`Fz~hjjt0qOGG+m&;#{?Pbz9EZzF@-Tf~{5qAo6ST7K?)zy6}{n
zU?tnb_+D>>i@vqvoVn|9E`#c<nW~c)&rx3ev}?T3iVYLh<b^0CdyX1s>S6|Zu*{P!
zY$!BwI&Nd*a~`Nt_&qp+Z*7-?6mQFs!#eD!IJK=V!lqy!oHy8>bkZ%Z;P?f$y<=_I
z*5tZ|Ee&!NY&$zYo~Ww}G26#+(D}}2cV^=;-J{;XNuRyj_t@gIBi7^HrCjqMcg;q|
z^(VvH>m1uj$?R3J={e+vk2dFnhuqv=g_FXut=VIg+v#4hjo5FnGv&_g)wxF1Ucnj6
z&j41f2~YzzwXeNpCoLw|gFkDu*W*QBx~lU#(>czMR!hO{)v)c7PuBMXcYSxB+Ey#r
z>!|ZXkZZ&OY`4K)*KESEdcnz7L<@auF}cb%vXoqIkfX>o<(6^g*!29k;s>G}Blc($
zhlhMrRxW0ydIC1JR}BWS3m*Hq*Vh16)F-&&qf+MwP90X*<Ib^;K590s*|7tw`%n20
zs5Z$;vID4LY5o-UJKE=(9}s)J8|6BC-%@PmldLcChd{Q1k!$0UPBz-O<n~%Gx3X3X
zGV4M`3=r7D*2QYUn{m`(!747%<gDWqw;U{>cRbowSKBoMniFidzB?+V6=$F61XnXo
zI6IWP!jX3dfE%3j{t_hH8SitcVdABDlvanwP@|LxTY?jUxQTZqTF{pR0xQ@AdjX#|
zNikUUY1ppc-p#QgD0Y6WW0>^GFO9pNeT^nQSI36Hg;IeqwyFyzMprmuJDn^Tx!(tD
zB)b~;xMyrU*9mf$fHLorDM^a*62|kY*d>6sPeN-W!9uI|B4U;xZjyUS7I+O53wSna
zCD<6d+xI%xY~`fbO0bDyftS5*8)v!la*bruGm-^z#D{4LI!7?lvWc;1;5t|P)WCi6
z0=yU4c95ISU3Q($P3|?=v(-{KEf#RzYXIvAxgM-G4HgL|!^X|7bI`dY!=@i(Ttqnm
z`)H3<>lHXQN)6k|#*V0S{(#ymPx-wS<lP-wUy>cVlk)1zhv%f>Gx2?k`a|Y}mtm;Z
zW{)M>V{P`>VKaLKHq&{fMiHcaDH%4kDQUMF6^Fgb@mQ9&8yWU${d_qo?On#)qxAN8
znpG~7+iMMrIZ5QoJA5KGyj!iUFHPp7PK$msxsNJE<+^WuiFZim+WRPqJ}T=%Q)78-
zeaU@PO~KyQ{pZPj)V}jkF88C!0`FGLe~Mhy4**-SF>fb@ig&7Ws$mPeEt~?I*jov5
z9sK9X?Afu^=A+ymlg!!pS<6uu8JL$}cKXdh=ViGF`iS;We*kk2$I{m;;F?ofqhcrW
znvF70`Wo->Jr&bUZizjZ6NW|K$rc|$C6}|l8|ZA1McV!Z7G<9^yrGi^@(_b1<{5P<
z)tDL6j;!>c@yNs9Yf2tC968+iRFep+|3fA6An0UvAKNMXzRUEtcnBW_!J1+;kt^3{
zJa1@guhwWy<TtqmqWGBXd012*kCb!wui5@rsCmvd`|KRZ=dlMnd2erSrOut&>?D6Q
zd7^0D5G>H`c2ck%x|vgwdW<}uJDum-vlTWz*f^j;u^Z`ESX53yR@1bj+vm4lV-Hf`
zdCrX#uGjv_{q|ONp!59U=nJW+cY`Yr`@Q9B>X<1zb?iAQE6u6|I48WL&I^PMf~k;1
z4(9;k@uZ8ECX=0Q@$rm$(qOXhDzJa=vdoims>A+T;*;6qptFp7bvh%L3#e7)9`+vH
zv(k`JJYvg3mbl>~TZBrXFWC~@1-81<*2yCNKHe+n+_44h`5LzI_v1PIfc<`y>xlKj
z4;ThM>RNm5DbKHBNvW4lYFXupR^%F<?dRjYBeu{cmXcd-inWaLwaos}CThUcJ>P8N
z+2K47ILGb3{k6ULfLEuMj8H8(M**GZY3KR#XRj9e{!bVB+2_m#LG;VtIM6q~GSOSN
zS?LA=C)o2Sx0I75{!sI8!GA`7j$IP59g8#WUvs0F;$x(RioTl<#IOA~!?WV`@!3dj
zKvI!BZc3~6v*`!oyU?XQwu^O4)P8O^BP>KcEe0{v07&5}<SPx}8X7z6+7XRvJkrXK
zTh_zlP}j$vr=fsET+9f+O<}>qF_>VVnvqdfu;9)_J=RJ@58mC4G@L`}6<V>T;PlrH
z3`irkc)p4)trz0BSZ*38G;6Xm!=+jue)j>-*7=$o%f$`)iC(HvBhdNy+u?i_ReBP(
zhve8{v*-J}jCxJYA<`9u^vHH#P1mm5lB4T<z!nEFoL|^zlK(Gw_KN*pv(>GCi}uS$
zljFv_gbTZUCrKUig-vZ7bpuN$*WuapSZp1xCfD_2-7?C6Yy9OkKagm}9!L8P?VG;+
zkt3AbM7Tc<`21OG_pjGH-YPO0ai$ADM?RUt?u+=irwqP-nvPNADvLH5l7PDvLqsr4
zKEyLJpGh)avt{(kf|GOe6bYPbR;<#vX!bgOuh%Qpg!02nM(?Ek1e3p=_#@-6u5J5l
zK~OSl;BOwWna;sk?bJM2{Bmqo;BwZ?Q{VDmtUVhxqxgu}BoR94qNHZ5w-0}rcqR)B
zhHPT~_?ZJX<*siNU6K7#8@957t!j)x<jT)pdbx36niqB@s6H2;nC4EdEj!+8DMYzi
z_WQhsji1fgGDUYKfM;A6?u;7BIM$0T0_lp9%AM(#vdgXdR$s_%7c!%T+kObBF!q|-
z0_sz+X*;;<2b)<mi&}R)kjmZUimkp=ZuVL{$WGm2FCQ0jlSre=74}FuWS9qRYM%|8
zV@F?`t1VDnVgq-*^tFJEA20mx0b3{6da3i44O`nT7_-NexBP(F>tr8{p)aK=V9Nn}
z(c~EYdCRu<zUJ7fF9KcYTzpiz#8!1KkYSIZFV(?ENqr5kOP1UZh};r6FD$UTJ&Fsm
zq>qTrYAIw}2%IGdp4PDy+i3#qwYEjbDPmV_)%~Zw%bFjM#e|%UE@#Ca$?Uc2A`R>j
zJ}P1>n|>h6-yv5%Kd++byN4Y)o)t&Bt4yeUBw(n4OD##I*k_>=s9FTLwtf$Lofl0u
z;Ed{$RSxQ3HGp_3-E>Uq9jG~4@$OQ59#Cz9q=}Nr6Em>*AkX*deWJ_R`}!Q^O*q=T
zNfnT+*tF|9wSas~IvhFHrG0}79E#+OZ~i-Yo<;W*Y62ih=A_9)d*dySywKjx9P!5E
zkLwRcE4qNkJZH}|j`at|bMQWw0bAG3T=kRs2iu(HV==hI<y|=Gg@fHGVGV)4_VusQ
zv$vknr=P#1Km6|Z=<8qkD*f^YA1K!I&0f6ywgkLiym(Ic_xJSOAN)Z4_xta@D*^Yf
zzyB2t-kDwJX)m-u|HB`Dk8W=E^sC?cB}tr-B&gdP`sHta^Sn?t(an^MZf)|w+1qcw
zpg;HPzeexA`?kJ=fqd`n=QMxgtMtxu%^3drd+!OC_9vfxP9J~rF};0Wz&Jd+p?7a?
z%qOVf{L(LfQx*d?G;)5I^YywQmz>t~yux^Xx3^>=lG{bMXItR+W!mLeclWZ3;jQyC
zzWSAS=&fhBbZd*|VwtvZJJ~&voxH}YkMAE@Onj(DMOdItv|SS*W{{&@`bOm4H*8c}
z<}@<WLCuW?rVH#3VDr8=V5<*cuhh8fJ8Z$;BlbsQGe02Dt|7VD;v!LQSLGUZ+(fw@
z*5qo}J2q>NI<K`p+DAP`=VSXr*u+LqOQAHn^~cCHV*ia_;;i&N{j2}-H|e`Sndx8s
z*FGZ7!F}84f$IXABccy~w$T6m|N9|*epl$<`UjuWU-_Nq^#A@pe~rHL^*w#(gM*Ki
zz~;L-xOPH}3!TT^{dqBtlL}@~eIhCL>=V6Kf@Q~#{&OGdH1OexrlB3aTQl|hdM-%L
zjP+b9e7%hgl5Di%`*#5w<G(%ZeExN{FPXh|HW75HyO5JDYTLqZO(B4d!Sm?}h?^08
zoil4u6+~BbD`hp#e<E!2T&oF?u%)^*Ze=O5a&9{=`Z2}6`)J#jln2^)^=oy`>Z5T~
zD?dD)2d1M4U}sx0j^KO0ZRf})!AiF}`mjAOYvzk=ClPMjNwQI}b&x0N{D-qgq;p#h
z0Osa)j`d8EMXQ|Z#{Yf~>^sN8sso?)(Rs`dmeF?9Ev<HbXT18#u@0=+vEh8$+14!P
zxZG#w0+-HinTGeXZX0uKr<3uNYjG=;BUya{#U>xjhhC0*%Mb#``VQRnC*|Yh>l-%B
zFcLYQW-)l@*<Vzy!c%TrvB3Gy8NkKln!u}HRp%@Z*uXAeCByF6s5(#i@i^2gkj}0)
zfo(dI*8m7|-7B_PChe0<hEB!>zOxMCqix5F9P6-GN&(w#kCm|r)=*2KMr`a@s`2Ot
zox>4vMuOBYn44TrwgpaWR3yp7Kwp}2tF0h9&rOb~rJy=*8E*H-W)uA1JJ)%`svPTk
zm#cCFPqMwT$#t*TX6W4HD7^Y@D;7`KG)R&RYc)TRf?N-R;SRMF%m!e;f{jd0N#)M(
zcm#L-UJJ!(t&bpA<CA5%Hf($8Pw4k-576;E=v@84q4}t)wLVhkqjvJ&<H%ia+rWSg
z_S*OJ<bCJpK57?ymT{=t7EIwS5A`&ZV?FTdU(_quxg1N-d9&9jNA;hrmO}ErbcD{a
zJ&yyoyD9ij<y7ZC*q*G|)SoV8qn1MOQKED61LQgnea-B#^Zh}NTBoEsUw0gr;+9Jv
zm$GdqwMnJ;Alu5C?Bm~7x#)7q<V`=?a!s+NG?`0~PGnA}*|_eFmmGZB2jgNs+e9tZ
zCuZP87cOwpT{$vYn#e!eIZ(w}w~<#L9PG+dt~&)dC<gBE$>?5q^2Q&j!n;3%<GNv!
ze(UuLPD-(2^cl`me!FYfB*3Ur@IroKk4xjO2fc<pYmcJ0r`Z-3jEZK_qFR$+humx)
zcE-w|y9ej4KVw^L2PWjoKFP2#7r4r`VOOqi3)(q%eZ<Cd5tXa%ZZd2g_9<X%G&<FI
z%2`j0ZI-NZ#g1AEtn(Cj%#m$BgPZ=4b<u;<iK<cj5ZP`dwF#MgpR5i<ZoK<bz$UWD
z+Ac-Gxh~Ewo6gVJPm5ripmUyk90E`I(sb_i3J#NFs}-~+<o3mNc9j1eiy-9o3~Z=Z
zAoe;z=SA9frt`&iTJcAca{f2$j14y8R5gYT_R0%5zy_TkZj4svsPr$Ixm|r%7e8P6
z(h;2hDe%8%<&Sr4=1*s%T!`4_;`Uffu7_J-o8?_W1=e&9Y{t94n>s(RKVWyBao10&
zvsbD2ve@?d)NG;%HkGSlTeK!X)?m6|JJ@a#-oduam)L?I@V;X9m^wcY>ua?784;W7
zT(Av3>ZEc7Hkk|WbsnX)L1vMQEF>7M)4_T5Pg=Jm`Y4(6?M26et)jh}k1}jlui(-T
zL?5-d&c$EC9(Smz!UYn^?GZjIM{GHJoe05pqu(TAk2PS2Kip-jNpX_<^7B%eo%0_7
zSw0tPrO9dlEV_g8VEpA$6JXM8#Kmd=@CQHthHC(D#CbQtfATm}==mWxilCzP4iF^b
zBi00void>v0R|~jZ&XXN$*j^wa>Sb%{O6+uE;QwXGZ~esG<8`kql9G5rC#R(*Pw9q
zL=kXcI}L<gn}#490<Do=4DCc=QPZx!2+ZcTK<0ti(o=o-B4rMALj$&$5TKNGy2uod
zwM=TNmEukW8F$Y8{Q2!Iz4O*vXWQTT_uIjCJMzK7#b@UL`}1ed&cX0!bbFqEb5=gG
z;HwE2*S&oXpmPD?oz43dk7nBoRnaujn4!$$4A0x~`xY48)3e)W{yyCI`FC%fF~2xt
zd3OGGeSXHqfj1QV)J2=U1n02WE7{xUzcModifPLCA@}$FPJE?aOID;_clW>j;>GzH
zxAGeV>^eCUbux_sK2MS=fn$B;`a-m7ubD7UuAXRtqY$lf(^I%l8rxH%3+k}}`vtaA
zHnGKbkJ#!O_VM2K``8|z60vV$+vw+cc(?RW`w%5f0UP>ad`^B0wy5)zE^Xqm*aw}b
z(2i&0?~pr<_SjzRQs-;fw%*O!-+i9x>+ekT7yryN`U~GW*u09QNbt*Z!2b`vdq@A(
zKfa@v_vf+v+>d_iJ2&*3zqF?h-Z?L{*<2GzOLdexd=&l>$zepkOQ8h+3;*d<ODq1f
z*0}q-wG;Ked-S(s`_{RS1sLapUL0F$JO0*m9{s>IdyNSO5Tq>Or52+{+f#%8eC)=5
zP@O0h&}gs7TDjO##Qzf(BDB5zLkhnex7EaF@*!N7gTZEM1!W|$Lt2Wr1FLq3#(~{L
z)3(du_xx|!&hcZQMmq)vta6EBsmUjW&aK$VCX0CA9!qv*6@Q+@k$|mDR~#$OGc+z-
zl)BoOD!8<j$2bR#OyDinA7~~L>APpcDN-~wX?tyQrIy7))XTDA3j<SX6E`vLOufvb
zPEzWensbTO8uDUL+yhRL6<kyn?y$+Rk-eMnky3cKVX#u2+HX_!b9s}JFR^v!f#;K2
zHl(h?!9Gn6$j-3mHX8`oC=T-G^x9Au?4|08pHIN5{LXoT(brP;c3^AfZP}63?A3K%
z2hM*x&uW|$`&yK{P2EiA$zr0avnj=GwaK52driR}9b4-Ay*@~@_QpYY>ij_9C3b8n
z^ySbG6Y61v-s0Fozee98Z2wH1J=<_#{VDZwOBCKsWutx3^h&AuO1IZU@JW=?rM=nY
zptU>r;Nyr|9SCZ2=4Y4QkLY_gIj-7c4LT;+1pFViXl9pdws#l*ZT1QORcjpB47zjw
zMxB!nic@MjPrwdr!4H&5E~j|^t`15{7Zbnk$j$rWJs~9Uwfa#Tifq5B0mGMvX0~!b
zy7<^!HDlM31tb7eZ9<hn<D%K1oWrKsqDn6zcEv?3IYu*|eaiv9X;HgoAI>*CD(4~x
ze8kpl5eL%|3FmVVoF?gaCuF2#rR)HfofUoLMWdRlCNrGxa}sQv8LJ=Vf^8?JqkYIS
zS=sJq(gmh{D*6F@)cMmP>%trdmBnAE+g2HIyI?y9l!UW7S%1<6DINk2N%^k1U8s9F
zz)70r%|hK7jbpWx;B1{v7T!oHlJKq*|DR-1lLfaJTTyJ{R+9!HZ6dliZy;D$CrPup
zHETQxclIRMDwj~Og*K(#l7IlecG7I-DOb<(Ui{gLTX=!3IG+}9JqH~RhRt~MCEqvb
z+%wyX)dT=Gn;cFqSMz1u-wTNiNVW~@FWK{Ru?f9>0Avjsg0p{@ZCAxYLW`7lniQR7
zSd$GKh6w>BM5UCJkdP9UE&&DU7m)5&7$7Z<F+x$gL4g5^bZx{CMk5Uy&0v%gqecxj
zns48q{o8Tuc>X;1?)$pVQ;m_^53ZuUs460J`^kEl?<n_6?9?8LNB^WlzoVD1<!pP`
zo}cGw{}YL+b7KRA+qZ(1TroJKqM9dEW9b2a_Z<CO?xwqG{alDUlWs`3w?aOBPUy}z
z<SB*ad|jJB`ki_A5WPEq@-JO}D`q)g-2TQa1cu^fdtZTB-HDPemVw!=<uc;|VfD6j
z&9*t9J#}>PGt$nAImVlb&%BC804+T6Y4+Zk)wJI7*MudY499=KX~s7&_qrb&H2dUn
zm5P~h{TZGXdN!X-^4s$xTc>3tU3QG2DS~~OI<>acCl6hCT>aw03eXbY%VP5i_~$I6
zm3iX=?r}+)DMp-2JLinpG44~=;lgy*QLd4uoE(^vojbK6`vXue<K}&%wm4o<c+vgV
zSr?FNj7sbz(fqRczsF)#<jJWlo6@t7=$`ng1&rkwB|hAM$?BvM9Fdnw1GgD;;AtX{
zDiR7T-oe5R#@f`1HO40Pah|ps6c=B*y-$LfvwLpS4Nn~KoO^e$4Ra`gzQUrf&LacZ
z`YIo!-<*5x*04#zxqj0L#X6}*M!cz@2m72U4)(t-fTy^RR~S-HaRqDIxf?ugLbPYK
zKYR4(1TB9utSy!MEuaNai18n_keg_|L$C|${_JaLEJrM+b2zAbu!0R93?9M7!!Vy6
zaO&0^P+tb-1201Bqsv}lpUnOg?_2VRi&*f=&M6zVAdGft_mNArjtu_vtfuukZ?m)Q
z5=WGnsf-ETYbU}Tu9rRS$Ch#qp=o~?g7YePhP|ZjMKm@pel$QK<ER~@C2)JBe}NZ&
zgPmp%)q51N1xl?vz}U0a+Irhuo={vx?9|+vJXUqDJs1PcXKdlPhdWs&g7+@;GBL7k
zgtn{2)QE>!zGKm8aSzS=LA6|LPm#|++q2ZGq4in<?mI*-xUKj6VJK(ry3~GSeofl1
zid<!F>KHvEY*&o8+Q1{1C0!>b=Vv=N3k)>B3!-BM5s#XO%@WaCfcVR|lg3Uagx%Sr
zh+mx$ae7}(yptj*f`RZm+Dir*Rs^&nQWn~nRJHxLI?y3Hdz{L`{d;AM%~c6T44-fA
z@E<(|fEaKaS*a~<=!ZnQ95Q`8JKPG?nBq=yxbfibsu3Q!%oHw?twuw-pyrcL(K++`
z-WQdZAv>4b*KyXTjXoeRL!PV3(e{h$3+L=SsaJb1+lgO@M_E_MJzaRWl5$D=0XBc^
zdV4SQ1y2j21bj9lJ(eDq;Hi!)N>T^WH}>KC`ZrH>+7#s+SEgo(PlN30U0U|@Yniq#
z&a>RF`<Fhny!a+8nEtMI%^e$*Nq#;<E1&J-4ypyaHoaO(`be>V*;xDb_sk7V0|EJK
z2&O3kObNKp@f*Tqnpt$RXWmyN4de=tkm>9}nec#nBIJ-86+FOSs1LJlzj-OFztu~L
z^11J}eh5l-dg3j>+<3$CPG7EIY>-z&H*9{%ll3)A-lZ4@BM|=SA9tEtNQz-s6*LM$
z>Y2=ir0TU@5&e{D?H!k`<L{AS-CkPOCZ#eLlVz4TbQ9)DR~Ol<ordi?`9v>3wvnCt
z8iiq|vJh6(qArlT>*Wk|rmx?ZsUqw{Om{p^<`xzy)`^kcVRY0ur}UdoMGQ%aCj6m-
zhr60oN54`Di$ZEOwMoDaF4U2UrZ{Ow3Qia!`p?~$fcA&--cA}*N74X^83E8cB_6Mb
zP8s19q5Bf74?{ung4?=NXU2F+jD;-hL54QyCyy{y&trS0oPpDK7MKuAZlONd(u6bM
z23l}r6)}y{YVtZOEpa+d(x9WJvPbdXg<q&V_pb745}<SHZ`v9EzL|y!{8yky3IBv2
z<?H6~d$_D-X5pLSKyR3sKgOtPH>Z9qTs~JU`>qPo^)KaebL%_fj88+!eyG^l^5Q*o
zv6h4Nss5j!v9<&6s|yyuLOVSUZl;+OB6&;NG4kv6CU}`{GDH1gIef`W1;_*h`(%mE
z+Hb8jEYyA3j;S6xW|v{$ueQ;}wQdf!Ugqb=dcDm$I3x$|NVa)1E!0T{w2hmat?o8P
zE1PXUtNC074q`xYe{OM0DkFd#|H!E1Y#dyMGGH`h4(MQ79*2MQbvrJ9w@q$e@InAi
zg)G4Njktvdj<Ds&@PmbWA;!bbxD+;8JMO@-H5ygLF+-IpTkb<$guIId8C7s+cUr4^
zK&I1M`F>TmL60t4Ndr~Yn#tA=GGmQx9}AW)rp0+V?yQ7X9i;p{O9%p)6(y;HMDU3a
zDhJ~ed@;8d?9*r0xJk2}^D6&&a&kWCorj~GQSWB&Nkcc{T)OZ7Sv_xUu7mv2q~U$V
zZ&HY{6e}%5$OdE`OEkuZIjj|+0E!w7!al{{q+%gO_n5m{7Uu4zzclJ!&{0%%|I>SY
z)w&1Dzq)L{1|C7|FP|OBUd^d$+%(XTU|tpQ5(&g5=g>&?5riA(f;xXLP@W}Mi2pQt
ztL30TU9AY<K!ufp{!}-lrEZ7*S%1#1CfU(D!}~gM5h2ouzIqL?#=ZV!+l@3loQr8f
z@o5r*(ktA9RSWPmBs8SYWI)rgw8y|3-@C7ONOgTs$;9cyU@)Bhq7W7W`~!EZdHP{h
zw`neT-TRe9g&*h>lE<@#kx&#qa@j!*rvrvAgsH%N`b}B2kd*)SuE%0ju3AQ~vG&(x
z@u}c_<%LJVX^FM>_Zx`$6Zx0xc~`{i3bvyRHm1v-y?Hr!-&sWaHP1EW8R`mu9eG8#
z-pyybCLB)LR){11*&Dt5cvNHYc9l^7&whc3iDZ6y2HUnzrSGV|6RH|ob>o6W++;1r
z)YT1}eu_>x^Sy;g|9M?mHlp?uS*X8%a3GWqVFS9&{t%E8wwBo59^nbvzNWu=3K4rW
zL>LZX4|BEDEpuh>lNkoiB*Lk>Z2Ff=VV9KHw@H}e<{;qd?%Br>@QB}d{G#!{`1%KI
zft^3j-U8SxY8)qcDzDqNg{{%mst8pdYcr6wepL>-ce}<}e<Y=FArhb&efp3<2Vkt9
z(ONWQ{ckl+6ip9R4!|+xx4vTv++G;(o>4Tz>8qes$EgQdAOj`+{EOnVd$O?a&ww|r
zXGs{S#Yc$wEo!)KQ=-N8Xx2rDVSR+wc4&8Aium|>sg~0-dGOszPjvg&q(grPXX~1z
zKEi+Yk8=p$8Uw}bFMjy=vc8L<Omp)mt{8L3Nli{?$h6KImycBaQP;EQ{&=EPkVE#K
zI@K+&R$p7wyFu)Zv7O&7ifo^;q@A6#mpRX<d8(N}f5DO-!L@|~k9@MaR@0RpIL?zd
z)Tx`LT5jXCpXoDLTXs@cpXQEMTR;qfq-a0%JJ(bOK_>xmbq~S%=SaNRjOj&Fh}To`
zv`(?7)xA{QYrVKMuv~qxM)8pgTE{f+@7<ghjA>JOTUIy;Mv{AOBPY5L3vNc<QpCg$
z0XwD#K&IZ0&4+PsN-XPs7#+!OTFgNo4HQeVisudsW`3=*g10Jj(AjLV%Sfy$9?Ot(
z`y<B_(aIZXb1eZ?AU2ZZQ@^&O0_5_abk6J6)@-EwHi!4qEt`4@0Ea?*V#2D3uvL{p
z4WyN|Po}?0uq3nGb;HwiEi;m*pjuL71SJhfY_01fX^eZ|PD$pWlg>Lv!Nme2Zn90y
zhR=XIIO$XG<aL_K#b2P&klQNdjkhXND0rkXG$5!J;chLHC-jydkK5HVhrPAzM`X}w
zoRo^r<qOG~G48TCW`WJy42!r<u-xp!oc!dr%sMJ7x4vS$@#Kxswg{LL)<3?dnEtU4
z#Cg9??E4Qm%r;m++^e$jRf1T)d_q`9u$R@j3(p3+N5Z|};XzND%-gmYlbCesX40id
zhc!M|LcU_6qfuXBsoVRhPf6wu?3;b!gUx=kETA>@la0v6xs;eKoL<s9?7ii>PX)7)
z#58e%*Jf3&%zZDIS2#T>I*_+1wWRmxmlG4RrIT&@oV{z4{d=vX>v*0IC+E~-d|+Q;
zk7RF1ifr7%Nzvs3?0D5=hfWs$XqGRb!y*{a;{7skeuq{dy$ld8wo7LH;9eLUY8~#$
zVExBVvnf+I?1NIpO0|8rofSdJ2!FT2FED>8^<K>YNEd4|dMdbg6+3SRD;oMpW#{Ak
zhc&XJV|sIbbs4Rt`ou|e&A2)uN_kM)$-3K)5`Gr0T<s_cjqoHi8__tKV9OFXNbl-7
zepcS{5l?6Pdq6HgB*q7+dZG(9YX@FW+n=zU{S8sOx<0tRhV@$D{m%$Aili7y(%#VS
zFmcgCT5_J72EazRxrCA?yWI%CQ;ZhE`>gCH_prJ>`sRJ*OM5JH5~_NFdRJLSszNfZ
zj?L60GVBb|EbUs*=S&JMe@;=}JF9(hy-f3uZ|)UCoI}!>;3`Ml*SRD9Q`w2_UY^4>
zRZHme6tB7&Em4MO_(-OHEDHqaqKh?S>M-x{qH0|+3+j2cbS`GI+~u4dSV6x;DNTN|
z*hS~{;7=cLg@Oj9LXFI6bx@6*7?+#b`&KjYVfVlM7tA5(2W-C&{b|3rj(I5!H;lBi
zExPw*l5D|{e7fmN1A&k}>ldX8GHYkmT{Lun4rFZ0v&5kV10m*)UTbX*v!{uHB#T*2
znveXwE1YdmqDSvj96KCx(0zXDDAbH#Q#s*lSusjnzEF+6bt}KU7H1M)<*5JEl0v4p
zK{oI3Yr?5C7TU1>sWN8aIcY&0n@v`U*Q@>4b4YQGa1xD9Xlj?{u!5E4&W0K3I_hHw
zL8WMB#FX)SfEA6C497;`;*P0@XtI+bK_Xrs5Xp?_9|LrS922c{f6Q(>j)oAjNxu^l
zPx|iUX;CY?Pt&H2x$aaLqcQrXMNaD?SCvCHbE>*H<2XCZV&kOXPvt{AEMq9-I4bcp
z7uKzr{NS1O(%<-xW3bKKd|p4n6LOqxhSeBbinAGz3ukT~G;?OWttiypRVy!#x+?JB
z)J;1+Uu68+y0{~G8SW^mh9$w>XbJA1%`4{fknS!t_CH-U4{)yPd#dvv$M{*fPlZVe
zH-NVDj4!IqN(5wiioyzxxpqA-Zuf;(y@Uk&>F*ZWRI4FdZQ^D<gU;u*NZSSIo~9~R
zrQ7e{-?w17BfkZasy_=x^3}nG*Gl#3CIf<gkyCw-#H$siZ&+}UPDh;N5t7bV6<<)V
zT$)EW%0E5+v*Xilz65@1w*guf!8(Hr5gKko%ga@z8PJ5>bbNbiz2P)60=Vx*x2KYn
zQfq4!^(pRPYcE*)!>=YU_`m8!iTUF+n{J#<r(X%)@$awoD9mw-qY$u>845{cP(1&*
z@1+H}h#HWaW+T-qd`Cj(*#8?{_K=E=i`w6L%(__An>&?&;6`^eR$a`y_&JMp!I0=(
zFU;QL(KwXK4&>d}(!W}ab`RNIT<b;GUbw-n=#=4)(M2`4;A`sG_=L5OPm$NH<2$0P
zX`W9Z6*hH4rgGC#k_sZh%FZjcUt8#ID!4ED^%O_QPpi6L?(mxD0iUQU1$d)pxqtW<
zWj%;|U0Os2sC`xuKp2deJmvQDA`F7vXAk@j&Iddxh98?3-}xurulMD-NJfm4sGrY)
zk<f%Zd>Ca`=v0Fjo|a!-N7oHN&a)ea>W2RL;h;u7HDV-jv&!gGc^Pztv$OI`fRgND
zh5lFN+kPxNY+>O7<#RixQMJ$+(3g?l+xl4egE!kM%<pHk02;WY?v281Ws)Mz{NaqQ
z{rE$p%FE8ZKQhv4*rEUhcTktz->87<u~24{l1@f4#K!RIU|gtTnI4A+cn6oeW;WTT
z#naQSNCiRgd>j7qBfn-N_gd_qY6j5`N{P85ZKWq~Y@8d{^-Wy<^qY0x*445UZl2{4
z=-|iaxdif|?XuEF+c&ik1g^gq?p%^WrwJt3#;{if`9u83uiR_(PB>=h%jvL<K4B~`
z{+>Z(Fzc|~Y-r%&tJr_!)OH0cLHEj^4cUk**Mv5F{;ZJreX>NbMO%yB>BGLrXE6$~
z#EkKK<X?dCI62y|oPfVpM=9q8?``hi$E+;|Rg-i7luq=J#}X!MRTgAwCEoKgeK)p#
z-qm8lmUKKD_||83<)yryimd_bez&?)I$5nwp$)v2gzs|#555P5!W&I$()0mA`7mWC
zM6|LKX8e?tA{nvWLr0&l5Fhn>{9%RJ+khE3@|5dm-jfD}`e<<y2fKna6HB)s42CAk
zkrkJ|P2T;WbW9I|swqK1$RP&ZRToj^-S0ZW7=S7cY@+3EPWN<AY9OGaAicqe4c)&F
z_zBFbVIy{Qwu8rA?XMs;n~w&kc4Y^v(zd_iVtG0mbHyBT`zG7ZFsM!N2smszGmL2N
zgF%?!7YgV32xD3Udmm<I{JK`=!M!~{dM-p+Iqp6oF3`U+Uz@oQTJ#!ebhc}rLiPbr
zNKssere!eMZ-b4Lu!n;^VQgONPWuFX$QwC`fgQHrn!(QmlqpOV`=S^8{8Z$)f;hGT
z?U7=43Fwr^=x9Ddefx{4aH#OLXzXIsmzvs>47SqQ$er7*h-ASKo=;HDoEO-NGbQT5
zbcdLeIoaNcdJ7;+AQU9gRnVb?f#?sPZB2?k;|^blfQEqg-_+aVj{L#Ne#mx7_;weJ
zNL_6yA~P0`a+CKX+>cN+6q;6sU$sOAt8UYL@{=fei0wFVYpJ)i&wFlS@GPM}*J-7y
zhw#)vXk?UcB)1UYC!#Q$a=ZQ|fE=;^{@c7?hn-GZh2u<RDf1!~lVr&0LoI9DK#q>O
zA0`dv4YxqSkEdX^{V)gVKtI58?+oMD&(I!I!IY`9SjUv>fhtMiBtP$2H#UNYW$DEX
zmBOUBw*MFL5PO}ri5Fk;N}YdP>A#ohSt})c?I<OLRzBXo(a2{ySNq`&_Obbd(Ntux
zhfj7w@%L{9V&jBW^y}J~M^aUPtmxhNZ>5V5isa2xcQ8WYqqXc3CEzC6oEdh-u3dqo
z(&)$PNmkW?fZRf)^HRB&wS7a|^9SwK8_AXMsM9C3mp1kb8!78fAbxA=f6IlLqm6n<
z5B1`eqGr_3hvqY<wci+NDdP=?nH59RH(ItrNaDwKMisHG7BWQ!6(RKNFAOqHpwHAi
z8IJ)k6%9!a2tie570$KUPXpSjv$2+}zIPTCJgOKk{*A~rhZG%avp6@<D_sI*gJQkz
zy5ZQF*{&mED$f{Uw3{{Sc&|_+*R4-Q+4(xDM)9yZeZQW%?>x`D>o?Ou%a3|`X=k*5
z!>xr<&p+@~T)k+@Tb_{8DuX*y%?l<fE6PmHCI?rPesNf-PP*&D%r@2A?Bf5l|GSd2
ze7Cu@V{*hhv<U+ua1@C$vkN2jsw!=3wH40ZL?>w~Lbu~wOv_P?`%xbL%KfH00vI2?
zFZ$IzyY4ES4|*c2>XQxx<+?M6sbe2i{wns@5${I#R=lmBg*GzQOhS$Fc}v?yRp@){
zJWn1%ZzqrZ(+MOoi49X^AVM-gQ&mjB?z5e8_+ssd%bP!J8aYwF!o_oJ>3L*(058|g
z+-hbQ_18RB<Q_H7<j&oH(V1j+o+e(%rJ&Wyv1e`RRheybyueS8BQgABaiS*Pie#qP
zVrR5yXv-|WWh>=D@At@7vwTBSG|9tp{E#}-v?2Rh*`|#mN3B^-lFl0tHysd1avFOg
zWJB8Z_un=API~?}(`$*saNvgdi11Iw)Szw8z!L|rtGWRe+|*h2nX?~6*FJZ-u)x3j
zv45jmlGD<skis@j_-{|I&x=})dEbPM87x$f6mDM}kY0j94N9Lf;Zzilr2%RAGv2vb
zOF7EUT8e-U!IN|o!d`?6+O}GO<;L$_4mSULig@=%|6wtSq;+<^p9=f0F<FYYth-*w
z0JZ+3Y0je8)4s{4en(l53pvfbDXWBeZloI@yENQD%UCa%$LZx;(lEqV^C)kAHgf4k
zzBiGY6tSP`s5$%*qd)j;1l8I|rOpVqMC=>*|BF!u>fmxH&;q_SVsM8A0M+GXfCA~b
zC*4#4S)&@HKU(^B6gfQ2zB)aS!FEHuFf3g(sVWrbMEB1HcVPXWTrKRxXq!sr9Vs);
z`<oh4A`Zcj);Zp2*nXFB9Qr=+i`QHC%4K5jPp-U2=>B_@!!+?|hnfLsur^c_oi&>G
zP_{qtj~l92_V!&?6bF1FoMDnrfpIE0&d-*6G(?D4;9t+b{8*-gd`hi)%r1$X!<lSq
zgk1*hkEPkMm0eSCs8Oqq9I0;apl<5s{t^U3p|j{Y-UhLGmS}A$IcZR2J7czVp?$v|
z9Ks}D0RsS0t>e+iEEa(7yCs?Vq_#7@vFkOTb}ca0{zKAL4fx#lEbD5H?qgWmCIqW}
z??cvCWrwJwpJQ6zZ{HJQ@T-+dnY#1ldVp?wKVM7WC;b)6mB~GQ6Tj<QOUQQjCB&zN
z|Hj%4_AeVsm{TF<va;FrAa6ryB#{Gt4~k39Jqkx={g50fOe**Cy|1Sj+Mg?NjG(f2
zzw1y$@*l8uHwFATed)8X_}cV?S09b5Nvcb0G~*8)acJ;BRVC8|0x10_GVv_CWmGyq
zrM{7!EY621BM4hbjk?;#d#Zk_%FOf{bsWlSIZK&1V~g-&^3-9QKW2192okkxlinbo
z#@PRz&1$;xqf&&%qw$Y|FQp+#IQgX9ZL9xQL@xH84j=@vGk*xl`p@kyaqMI>0gJ~)
zLTG0O?C}6P`ivca@j-q%uOh5IVrE(%$u=qar2P&|g%$IPA$+Gt%pS#^la!jYSvl)l
z;rINUbM5Rt$A?nt4(FXQP`Y^N2SsR?yYe{6R3;HRxw7_g%6)cv+l;b+r*XQs$P>5I
zcS5<BhO!$ZsENJbesOVTeQ;IJDSbowPQZ6pm`8Cp&i`zqgigA4kCjjRgeOVZ<mLw>
zI<(VNFXfPi_3xm%g-&Dehlh`qgqE#WDh&>3?ka+O0XaBI?><f3gB<jJo$w4y*#>;D
zSnmto!XQ>)Xb*7Q7pQh!Pr1D{w);|c&2NOe5%5n$0i>tMfHem=>0%jYMY9zktr9^$
z=~}CuDi}{9!~q;(9bSA6+leJ7<js)@ZxJ=u+9##VVJELZ%wfjn0fak*_YaMV5Mlb*
zm1D-!h+nGUcQA@-^8E=E>#SumMNlkrO^_`y*5ctJdzM!<nI4p@4L8C&QHRgp3w>X(
zbT(aeji~IIWM_3|4&4mZIQH4(T)*8Cb+BTnlC@_f@)3upY3<`s0d4$a<m8cqV6%Nx
z5%Swkdz~@@e0;*jAl@>P)`Bojld2jLQliElsyh2DSaa`vY|H3m<O}4f{h*+b^oJic
zzGlw|-PG<4V%)!aPm_Y)o8f7xXUI;7S5enr!!Bpq^ugOT*QO};V*onfbIH6D9c12^
zPHBdv$#%aRBT=1F%u@eKu4J4>FUu3Xqe!--#ZS7t_nYjh?TadC0iW*tCJGYBt^e$%
zhaVp_FmsE~07QwRewZ$52!D*1DK@Z3r8m}Q=4{*~z~HTY3Z@u2#Q%F+3m{5Rn0r~I
zX?uK!uz8E{TX05t$C_{-2BbfvJ1VN@BkDJ;XWkq?jSwaLp35=|tfo6>oZF6`Uj<%<
z)?DxJUH2X3U$|e(U&dW`Efw3JBlCYC5QQz*={5dWQFGY0bR6g6Nbrpf9wVlL8<3ul
zl6vP+zk<ccPJZf(>>@&jQ$wq?1_L`0m1zFNd<gdTVEL2He98Mji!$<p389g<8SmmB
zH<@9@Uk0(M9Ikze=z1XE?wF$s7f9L)KiwTudt>s|;4tSu7Y}BIV=KhrF#$(EQr9Pj
z={46W?0(%G3lH)UE{(=NS5mA|I_CxWmE5acE0ZT@r+--Gpb<3uR>`mjKFxi+pFH2d
zlr|FIL)Q<?2&b}`pe2YmCHjHuku-op8)g5e4nG*0u71LPDAP3cVks*^h1R~MRP)eS
z#1AE<dxrd+AEbrr=U8-3hrYDx(VWCg2+thdY*I1X4SZGIujku-2bzfPZ8Ix%<!`G-
z;%Q}$xJLeK!1)&qGywYFjcAQg6G|Kq>xJ*VHAewmLGFJ#IZ>oy#*kpK)=8<SpCLKs
zWY?FhO5=?>ban|Q%u2$88n`6OBR}d)x?lFd4mK$d@~buaf=)!Q5QnGvpR+RdAJ|kR
z_-89w*S(Hb&^A_O<t<Wf_?Fcd*ma!t3akWV0?~rL&Ji;(kK}%e%;$j3s~tq^BNu|o
zj4;iL@RG0MMPY~fE<DO;X_t$+yVmD200b3Rj+?Kfk;HvTJ{iQ)iFa*W!k_}YJklTF
zVp%(#ZzK6RRJUR4_etwJx*X-2Zvcr^x9azk^1nBaX9;6Wiwx*l!Sc;YiX6~am#)@2
z_jY>~>l(Hl4uWu-h*L$soS}?i+aKzs@$D8@9{0LiI)j*{)oDzj10A7%QkY~6TesNT
znetLsdGJR_-F-BqrJZ>{2=G^#q@l{W?(Qx>HuER~p1G3}L~Yg#ATKJ89ivq@B2kLW
znHNCOpbW6v!rki>uadNNaL#!RKX+dc>~%MBXL>y2I%3x&SnfJwe^#n}7Q!QEgQKg*
z752LOoJKSRr@4H3!;LNUGpmt0LzUuhV*-IY0d_d+F3*U!_Btv(;i`}Dm(f-5VbBzB
zP>sPy_lc(6#}D&mcMg9AYSROBWMWy8SmsKnR|}kT1sPT&81MLpH&iNN($rM^KTMR+
zE&Sl8<B=dfv_@^g+vz^9QU_mJK$)A#YOV%?Zrx;je%vyO{F`4#^F`C{ZChT{6JgeP
zcCrh1xSq-13)Jkp!=Q+$?4*7U1^}S@<{PP=Y8MXcE);%2Eod+7;-D{pxRv9_K;ii>
zDnZmH@}-$ixCf>vyd!h?yy|8HO>I|8$b;2hV#{(h&k6i;A=7IS)Eu2~Y@Du1iG~Mo
zhYS`bLVSRKq6uH1zTuL`%sft%y|6YwJtgLyr2=r(ljLowCx5_1k=dXQWgIZg^NM+6
z-Etl|0=P*qD<th%%5dm&KJ=*F$RZwEO1+cn0I;0B$)4nAs|o0|!;+tWMh<;jZE#BR
zL=PK^4F&F=!7?KqX2(xy38dsu!0jdpPX$Bq@4GH&<E<5~F~$J2hkc>b2v~)hW6m5l
zOAI9qByxE|bv21~H~z`{(su?Q<f{vP=m8h6MqF!(etd7gc)DvTe<8Wmik3eQ>K(xC
z<7%0fL&F{yC@coz#)x?3ya%tIx6!~?+1d8PxtPx%2cQ4^lN%-0>u^9r%86q8S5)KE
z?m`4Y%E+a@0arSP;0?0uKk89&^m7G0Uoo7C!;P)NJ_1Wg^2M%qcs?9wRM^Rvo^B4~
zMzAeZiAGXB&*NUnO+O>a=m;&nB~?o6#9rHWnkBez<zw^KLoa_Vw!}azwK?fS$~|$b
zgG$BEZ10Bk@{}xpi|Q7kNTZ_{&1jte0#@`Dcf;;-0A>)fjJbWW*A*<rxjk4>!;}d9
z+z;Ixd>}WSaE=KXOwhQT++q?YSPCweniu#9bgo<6z&Mr`-T5#aQbdno&k{7xT5-hs
zWzNy|G7O^1Nh#C+_IG$B<fa%C6VCgPf+TS?45tW*LfEa++JW}lvC%je(yUJbivd-b
zhb!DE$EP`(H>oFjC-t>uMz&yRWk_3B{GSHqW_FfATkunEyJ`6?mT-RvxR4-+uo-J?
znWorcAr%Snpb6h1vqFkvy0d1+s!R%>&#yoXlg4DKO3)v6oda;UR{&k3oY&F%mmODK
zj0KX%gb)Dwrk~!ScbuaM#QHMcq+76o*=>Kzu+0llYeie_UqLzMJ7K6_Jy^H2#Zt=i
zI*O;%gYp)^s)#_d_O?a=y%Wh0ZoUMwRJG6S@iZ&Q$Dc!$1!hj2IJY~sW*z=m%rk!D
zWILdAWAdMnXH+8obk4A5P$|b=e9;%1+)8)Z#1H+HHeIG6p$KCyuhvI5IYGA+SRq1_
zq7U(uR>0^!(K2ge9C5dhb;%>4SzsP~LW~ECWLZBo^k2C!Z_b9>ruS79&6#Pg(9FPU
zT`9IsPS<8yhWM^**CmF(RORl_?0?H=Uy`vWYr|=*R-<zDe{gQw?0xnrk|y8b2kDI4
zec#SGg`-sER(qW#2m>~MhxNg^uI4}YyW?6PFgERbNp_WtpgSyWU0SC3K1F(|<ZJDo
z{X)x~4B%2Bksqn1%}M-w^hwqIB>zed(&o<~GQl2{(ne`_sSVA*=Tn}?RHk|M$vm2s
zvAz#9Q@H<EMAf;8rHNFTj<gw};kwO!%lboT&GMAb#U4T<ldOLKoBPU{#Gnb1b4}KU
zW3~RK3WTgsu%nW5OU%3*UKixBLXYW%RqtifTkB*;3}L%W>`ZsBq~7_tK7QWD&AIh$
znC{EjqTF?o?nD#l^%E_H0K4@x#|ig18)D{^|C`%EeQsAN`6JlA6oefVkH87s=~P%F
zTkWKnpGTrCcB}Ef<_U3Q%ui&>v;&{EedzZx3o~|5)ozXaN%+Pd+=_NK&iOAfkm2HS
zFzC2VfOE&xOTDq)8uuU%oVT~FKy!_lOn=S3U)%O)T>$+F(MD^p2sNDu(X>}+zs9M_
z&n(yp1u~b`_&O6lY(Yt|lJh7k`q8XNo;!A+1Ikwy^d7+X_SSmX<!Z?iK6J3e%um8^
z{wBE2!c7lQjJkgKd9?Uhsr7WziEvKEr{+f&3xhMd%8@Ife+&Psd2xQK{T^o?SgjJf
z#Lu7-yVi{^-&CR^VQXCc`0+;ctSUM?DeY^3b7c&(-1V&BZ%Gzn{v`B3sedO>2C!Qw
zae+00VW&}3j5n6{{HpAj9E8x7)URsKZt%(C8f9gYx|$}<mOJ7mQRsJn+g>%^d%f^Q
zo3b{P0X)jHTF50$mVT8I+~WV&Z;?E?$f4=X`Bbo`$hx3xl*FMrWP7Hv<?7veTvOS`
z%Bs^mHoneiZ@_iZ5vhGhWoFq3TQ<ph>D<ZdQqN~u{i(^?AOgR1LyTNwml6nJ8nW<E
zQ}Hnz!1hD&Xk_2w7S>Vkg=PiwTy8OI3*&>jn-2U@Cja<(JH8G(z%3a=Gc<7`>G!a3
z;?i~Yq#uGbCT2<68|ejA+(cr4{2M|M!f7VAaUHuj!Nz;5>v7!;uF#)c-?v|<tGoHm
zki6g>zcI?}98cYJ0kZN6@cBI`vQzM(EO?q7zVB^vldo_AHjCgrc*kJvp42Jmu}|Zj
zWaJ$!P8xODgElz*_IBCwLEibphTcvbuoBH5wXx#V8L|NqGx%2Z-eY0&&gg|@(%=g%
zTBgz2z~&HsyVZ0G3O*sT8Izyeep}N~D>%b$q18+Hd+rxQU_YPBM&f2ibwjh>GC{RA
zS`z(iCqkex7s)*6+CB#+XZy!vTAhshkwSgEF1v_A;$n!QaBz5F%vE3yxVNi+XjH{I
zo_EkPv{9ThzK!e1Vh1s17iD8ez<4_bQRPUmH!3jf8$tV&Hd-beg##-68rw8oj80bL
zq~O#q;J3Hp){~Sag2<MsrAi|LUc1;tn)4VX>xtv<-e$vDtWil+eq8S5Z&!RAjHlss
z|E<^mX-%!(=~yJB_y}q26kAoW*I~ZZ0$Z+byq$7Psd0nnX_UZ|^kgp0#77KhPEYB|
z)YaP8)iIUzM*S)p1rHr2f{g%*C9LE!l@HDO9zU?sJr=VW`KHa~N;1|{<P_Hj7$kL4
zRLIT$yv<foArX94)G7+r^X=%^X3;Yl3exT!lduRp_~Ms;Iz2E&^H;Y?hmbtf03W8<
zed0uEAwHtdD3d~I*mRq_*|@l(M7)kn)N^XCE|L4!x&x)X`g&mU_Bdy8=;H?^AM456
zbOHbmY&>daVNIO32yfH)Ps2xtYs%RB&Wy7;bu;MW?W&odPFLJ`kZn_OTx3_B1`1Uy
zX+HW4zzj`t*Ufqg(mvoav*bRqiyIgVtVVy*nDA0JJ9^XCpx?5bZk(LskdxgS%UP%Y
zB;Jmi)9WA2Yx$}EC25CO_FaU!p4g9OIBdg<L=guQ`B+rBejjtd;+b*1;WjaCz|`Y&
zN8VJYb57YI65b{N(%O-3LjAk}oMN;?ztABCZ?I*jZ+gst0OmEToFrO5S1}PGa1-R5
zyl!T4o3l;jOt??8O7b0d)u5#(&jv8Qt@V@~uplrL=AlylZEuMRxaz*Ez9cXfvU0)(
z%&UJbyrrV22^enAdi8lf0#d5zmF9IGEUzp6iDBpDi`Bu3Wc%ECp}v8@yC2!N_jx(N
zCDASeR33&35Zb!?zg+$edN^Sh?uYJ`Keyqh2FVTFr)C*oifa4B#NNp^uQ)4d!XTGi
z7t^jNR~z7hFc5kx@HJuY@@e1COWg+SxQ5J|g(q=)k`E80o5?cRn_p@gGIG7t<yljZ
zUwn%kaDFm37{{UeB5mI~3~q3xN29>D`9245OziPfd?Yy|Ak}#KlV7}gf_X3X=(|ED
zbq-W3L@=e^@OcYtiB728Nv{HyPcG8IU|0kB%hj##l_c`+W=iCZuO0d|Ap?qjQNCi|
zlTWt{Zhj1gG=^m$%0js6UsHM@;CwtPR$MN{Xi2-@sqOk{wz#XDe@SJH@bt6KF9LcA
z_kljz4Q7yP0`*J?qFn&`l@UtREt`SOzQp}W7H$gf3ri{WeOG314{8+DI>TJU+i0t^
z0G@08ToGm!Qseld92W-BQ}nNcHQe@lm86H;8z9mqBQ$bPFy{zY5mwITmk6N8%p2nL
zDjp&Hev_*V-5!{i+Eo?6ZP$=r;=lwstdx{N8Mk8IfJw^DnsC#lA3=VT5Q%Cv4-qc`
zXZ0hdIddGB{~w;EpSHg8RM0b;<2mmaRj<h&gngF__jZ9hDCWFGeP%j9#>MF^>HMOr
zm|QOxq7%kRsn+M<jx<wSI{V0BG;vg~)zR|d-7QF^#+Sw5hVb!S&egwvej(0*0|E=y
zFJfxk&vb6{wJO*Tbyi^fJ9L6-t$-@_LrcP(1=xboD&LbKq6~P#s%vD(U$LFaJ}Ery
zMuC`22ktJ%NySnKmddvZws*bH|B<*5yg{k~f8s)VYe(tZ)?-^1yuo{OE1Vx%rsujx
znzwn*0rQ>!6e;StzE?psR8Hunk~s%`)ZaNR!*$o?3p5Hjp$s#&(cEjzgdI=x_zT_I
z18-|IcRKK*aR%CV8^eS<_|cZR(jW@j%(jV%ZX;xaHUlwulZy@}FQ=hJfzG1<B}v+y
zo<?6mmGjmt&Ks)dN`!oqf}3vF1A7NsJ3OZtzhFXs=m(M@#XR#^JQO(gS@tB%Th-!{
z?Br_T={ZSIo}YHxXE@7Tz+~=NNn&5w+Y3g4t`!#>s&+Bhg?@JW-h;pNaui6^t(7wp
zzxp1q&dQd^)NsnZKK1R%0WrUq(t76%*5}4RcEev6=SkMGPvUP|-Hm!~8tF{SBswcq
zT6*S<3kAEpRxPJ~vHUp`e?j&|;iO&*x#hY#wX}|D>viNZM}6??`hKM>gOL~_uPTEO
z(axl*S}cputzz+rC~<PpvfNUtP8Lxr6<nyVM6VJ1b&z<9J@Ahky0vv6!3=5^v&!N*
z1Naqfs=A|DITe(u_cxc*69=8TXBIUBP4Ke^d^TleN<GNrV6-wzJl0vQ=$TS*PUrV>
zKqTW$0ip_6Vs$H0k>o3dL57VghorP+HZ^2AEFN`a=j8UaJ$Le%KW;@%P{WP9|3QP;
zbGg<+O{?WlRotCcph#&TC(QP!s=)uK$n*bk+9^A&{HfE3S9yVD_(ee%wRf8ECf8gs
z9H+$^ns?*!rYh7asnBLYC64+@#pxNc-FupB^x?VWFN1+{WxIpR(xPRwl{i%x-6UDE
z@0T+x>6PCC1W(*hBwyY@pYo#X!2njlcQhvVcAJPTHE^k(AIXz^Q1Ja(t`SgI^~^#;
znwwK^(pAF2lRr{2#!68zizR~VE8@=QZ!D*&YPSz2zNYL)ye|TEu;z=e^rG|FL3Get
zgz;TA=a6@lik}J6fDf_{>~U8~oz&lrLmQvoSl{1ebcpk_?~V?t8On~&j*7JVNz(ty
zuI|c6Iqbd1)bSFf0m&6ZUcXgHZbia}2=S(fYB&wVzMB>E?$xd{aI#4ZNs<~i(hQ1N
z!D8O~{2ZNWcIThJ_(=F2Goo_yujmB_EOnyKVd&!*9Nk&O+oS@y52J$BC**SgMlh;8
z&dLKz!~Ic)s&z6W7^uwi3Zndvzqa}aZ~uwszL%5ft~KG?(HW^gBXyz#Ir)n+JeokE
zcu+SN`NO+rXdL>5i{gSnr?A%6Z^!<+eE*U>kXK;eoK0(c)lr|T!74BlQ1I74s^pXa
zt##`CIj^nd8SurXE)2hrB~8}MKmJGrl(jn^x_w~_g5u<M**tU;W9A39j@~dzIrGH0
zUSLpr0Qa&HRes2guzZ}&1{a0$t$)0nztp13+<CtQO_IGhXRdSA#^zUUrGZRVW_4c=
zTXy&E5eG_0s<*KH9}W30Wl(twc~OqUqr)i(i{x}0w7;%u7ebrayaO;;oz?FoegUA9
z-`s$d+IUsB9N8>;Tqk&kz_@<Hl#6y&WcT=1U(vTI(<bu&{`x!C*?eC)XyV<yCfmMZ
zX22}sl3jV=t5>SeO^@eQ(Iackn5sc>w~-PxZ|xo3cTZB@{6bHd0w6XsP(^q-8V9_I
z{%P|H%WBv>8gg>=4y|r)ok21})eL5^DY$Z0)bdZHom1~H&KAyn+Aa8OBiiss3vNz0
zo`{{lk+ZkI8z^!5eriXm;pZVg+<16#oD~kQYs+pe)^f7W%oGDUCRw9Ly+I?O_{HT~
z$);ABrl!_=O`OLITP%QWkQYNv=rxt<GHBplv^S~^)ILEb-}m^#58_k>@C;cKrpqeh
z>i$Ax<eJ@#`EB3rfy-smGr!F<)-LFgdoARA{UTa5hz<%~JiHuhOhPYXPS;%Bt1kjU
zHnGRj|1LU%Rno_grF$<)xy&(NyU;HhLG4mvZ<P->g2>(syFFp3AWcD(s2^8i(xYYi
zTXYQr+(tl=pF!g5Hqz3hjV155JG8dbWE=2uKz-wOf+42OVUjRs#@e_3eM%-`TS4U1
z1tvOvCvT*ecsQkdwz3CaYU~(#oE8v1`RVsr6C~<QuS~A4Y}<HSpo-q+#8=n1JT>Nz
zY_GWOoejGVJ5Imicq`f3QBRitUbT|}*sz83nt;h62CPJ5)%m5iQxt=;S)%lXw|*k{
z9@_te=;_CG-pvZ{JF2R}tG<)>R^9{C%2RksYW-ajUkzZ}Yr)@E2430ZM1e=5R0FTy
zrF<%x7QOE&+0htG$)~)0E-I1~JWeh<ZTxk%_TRZ@tAfN`1|B@jmO2=6A?Ct~)n=1Z
z?myJz87nTO+x1-6*wix#aLt{#H6w&MVAh+enm?kkeYBEcP~GD4{otdE#!Bbr{n4V#
zsqzRN{8;AjGI?#R?1Ww%dqU3~RhqsBKb+t_a$U&PI@ucYa+uv*E&=`ZVxfZfaA%Ks
zQPD~CO!Qc*s9V!fRgE@6;{!T2IPF}Ng)RiR@|w5<W;_%%tDgxUX*EgTrj_YuP{3+3
zYEF#WO9J>l%vOfUefE`o0Qd0gY4{+^nGD15H}GuY$_EY(XGg;3;snu(88o=DrI9uR
zUfB#$Y5Br}pa$S+gIiJq&bzbD+5XU-5yXJfG?PmJxh4Z!p)r%n9Eq@O$O}nk=qrwb
zNy*YzkhG!4gUUyr$uVzhNZF5tobNUay4^Bp(S{zDK2}^*hZ_&HiQ&;Rkw%HP6;!=m
zot3Tb(3oYKeX^c=u&Hp<Yb})tYT#t?qTu0Y(w;^c&V|gnsyiiTu^lC)ogFGVKPdtQ
za?IZ7nSRuM36P+{zYA5E#aArY*a8pRo>B3<5+vSJ@ToN|G0?q*@ad*wmi3B_GkaUJ
z@+KvF@8s}4V;x&g-$9F)1p9sUaMx9er1`;{r8e))`hto@hCH~I6B0SEFLJv(PTP4f
zUcBVEf=qGNPb=H*h1vL^LU)Wcxi;g=gorRCYt>YghwvND{Nu$CyQ|Lgy@_Bj31Wu0
zz5>7Kn^3;o5K{etQXz56!j7D8UG>81wo&iUKeR6+d5zkCm-z|sh!$Oc243?ats%SO
z0QiO`qhpDX(z$PY5?UC^)CRSwaRf5}oPkwr{)$%J+|VmNnDS;Q)wXj$;^tYtFx<3~
zAqVq^1)^$@*iN<+#VLym96jv@ZL)=Xt>p%rUk=hN6%dzzS&Jcit$4omXJ_tLgZ9Ns
zm$;=-1v0%9?<+Q?bL1(?Ke;^a{*Gba3)TDfn%4tyZDRaO?^r?=m3xUaV$SChCqY+@
z)<0qma~hbP^vT5BC=e$fClz1h@^6p{!BmjPTwk{PUXZU&C`o_AuijePmg=wva8O=j
zwB@$S>0_4-5-T1G4FQxtO&x#Ak{lLky(zR+_5P=Mvm$%a3NE1%-P)q6^I{9CdJ?3(
zc)KeUGmPk0LbbGNeCR`A`|y{)Pbl!~i!pa08?!jIJeszkrmOj@!xkrG*ZLCv)1JX^
z?Di?Kk&n(BtF}jQlVsXZtPpzd4@{<DX}L^V%GtYa<+)0}+HF7efh3&BFDxwG651I#
zZS_#$*a>iOGAbX|2(iQIwEPQHpsiVbaAFw)EXQ+67C}%x0>B0&u^b0+s=%t*71tv;
zAXj<20mdzeF=P);>78=^vz~YxRK@!*93x>^f4i~u?IG>Fd<&t8gnw3v*!KMVz$=a6
zFCrF<L18`?lrnuEcOBwCXDQsLgB}WaU+Z19=A{>^;sUI1HwtwRe*YoHF`&r`c(s&Z
zeq|1g<vd*y>_3=XRe*6OWj_@_2S;%Vr4>55mh|Cn0JN8S)^u<e?=h?2=tZ5e!GDLb
z3&L6w(*ewuGV<9BzmejtB7;V&LI2qf?!|5V2V2PDEJQx2a1*+V`R|XQ1<FrpDSuGg
zr5n}M(d;ZH)cN>nYjWXiiC8<&5x09~?YAJg=MV(v=|x5&r#s;A`?_Ci#;vQ*oG2{7
z`T_`RSQ9?u%T#p!tBSaEwRe)&NK8D=gG@$qGF0rxY|7Mrq(`GMke{40P!HVgIc3G6
z<+oV(?>ijRf?ApQvcC1pu&02yt<r5G4UQO@P;ZY=P8~=gRZB0_O-W{$MQeLM)qOo&
z$~oUzCI)+TVMud!vAY(+i_ZwP+21<0KN|vnZ@XMnbU#r*!z7g<YbUvvn@yK%3q~{w
z6_}2;98~_2$C7*=NS21u8`bV!S+hF@9yAcCmV94=Mg8{fej3+qwp4SK(TJ4_mU1>(
zQXP^f0j37X-Ty6FR3)BI7=@~;<~)08x4<<r(}?>3XrJkQ^pgM+KBjc(N=EqVzKaVG
z>QqUh|9F#A)$7jH1jwS}mj|nuzfB$5LJ~ilnOL*yDyH%T1)Ay#J;yKk_yl9U<?>Mt
zS3PPT{>*<<+M0~Q<|k6N?KxfVWd@h}YhZ)cd{h_9ly$0Z>!iwe_TdtC-^jNq#frbZ
z+wmAz8P*v@;JFBe95JB1)6??vC3!B+wRcSAN{O+@A8b~;a~r|jEs0+b9r503a8R*?
z!_IKY2+GaQGtcuT+`M;cgkY$>WwP(<k6^<nF1)*BL0+w#AI?VyhcD<PFs)58hXLdz
zYopSH(q-M7kikll%~@gH{uPCjD#n0$o<yS1cc7HlG!lAX(1XF(6(L6;(@f|Xn}!-_
zEaQCGRq#7DK-xys@y|f^pwxkYPd1j`uj=jx^UXl^YwDK%%jvJB{IayRUda?@-W!xE
zUpVkR5Q#>i)~i2)**uPtr(cwf%45jf!Ddw=J<4`lVfTaJhSPDAwsZPs@dpCr!ePPd
z2YE^4=Up<s>Fx{JNJF8^I}UaMRYSjW*8prp_no0r;stk$QKqNk!Fvi|D>yKHfUvmw
zSXwuBixd44>kb|PPW}3C)<r>eDeiPhsI%B_Jt$=&>>d|43U4|6;4Jk$YOi7O&UXBz
z5N3s3K{X27CWzim*Rb{Amm*kVPx)qaViQuQ(#Mk&zl$#I2*mBXwB>n)_a)B){!M!v
za_;Q~vf)&Q5W_+^-B2(*D{ZRtZ`&{FP}UTT!CRU1c3V$>*D@0mXVt8>mtEgSoPSNi
zv`6d$IXys|Z*wnYvA*wAShjW39G|Jae*z%Zokz6xH<c!a44p}6V`4zeLnB)>zRS@t
zA-s_b!Ag6robWp>Nj!y=!Zp5&$?{2c2ae@W_T3~A*e2BiCD1|pMsZWmb1EgJ2*6H|
zoZ_0ZW2KcwWV`3C7d^|4JN-OrK?{<km}#xgM|V&oXud02cPf0ulCnJzI_l`5;xW#y
ztW~GgE2t6&N^dz=^CWx1Fx(`0XcGa;t8|-805s-*QgKkZUXLy_vq-eT{xFkwSM6Bx
z5NqTRJ^5IF<|%7-l+<{J?^C?a!{vd&z+LyJ@cyl*;9o-DiLcj}-@(O{hNkOY)Vn?M
zBkQ1`kPnQZ%ihscm!0eFBLx4H4c;w~5`{=w48JTI`)N@NU5OD833>YUxw~j2_q}82
z$_=bdM&x#ecJE{14^qTBhq19XyfV|X8!N6f!cVPEZO%TiG`>Wz&}gRq5YzcYKdGYF
zqMVa7d$IoQsFv<?9Bkt6Y)JJvq8)F2s7Oc(uG!s~K&hlvhV<Ae1d$_G*Hly0#ApA;
z4a&LHAD+5MyXs^?(_9j({U)=y-sXqi?S2{|q)p6}k6Ofd1c_yzBGMEzIx>IRZqbe?
zRF^z=LRm4D2}8<5>sa*f^iQzMR8@^bIUv-p0C2j+)X&U7GwL{x$-d|W82(#BPA!db
z;7lJg)D$z8W{Ztf7J)mp@!LAkp%Vu0cj}&y)QGHoW_s0Wu5ekvV`7g7@%6}W=C#{7
z&^cxAnm8qm)xjnC3((Cbqu0=d$&l{i2B7-%B|9O6&RPbbS>@HH7A#qMDfz6_nFd(j
z_Dn1GEgy!(hw!=wwin6s`hm3I(E@kx^jYeJrO!a%sC?f+kV!ruKIq0b^EInVyM=U!
zObag6N9HfOeAf=$B^Va|L`8XrMgaiP-(iR6hVs@@tCB$si@UM1vQO6+^PH=df<wdX
zZY*<Ib(lmipFFD5+p|||<i;p2CBCvRvEO5h=pp)x<$!&T&EG4}1xFO}s0Gi8Q;W4R
zY4rJzE=xv%oNUzn%=N;Ld<S}!Y+ZCzlwaJ7l@M&XLUu|-MtH@2te@gV{meRw*^(4k
zPL+2#%nvrXKOn4K*1B`kfvrq)jzGIPuXGwvQVw}Qp3|f9HG^1lc8ZMm?tJ-Cc0eFs
z)m#8G^fc)kJH^zzbXtd8rBDvk^hVU&4R3cQxwhbjB;q+<Yl;MT-MH`#*18^QKS3xI
zFiXG3@mR*T={U@s$W-XR5m*taD9rHBG@fRRcr)2#t7`aB8F5b@C0<u9fwN@HrL@*p
z_&{qQ<5to55EpN_@p_zg`U^A(=l?;*ot^<5d#JG8G`Oj@L)gVxT3gJlz9yWD0|w@D
za%W&k79^q%d$UMi6+TdYy5$*!tucbGiQZx&O2(1!n@@|w_BfZ#XdG@+LG_A1h=WQU
z*ljR<J+6VaNF0F9%9q2;j;by!NE9_t2cZCIzB)+hp>BTzE>`=hovkvNe+U#g&mDyu
z59{frfJ>{sAF+FMpEn|7BILieDTkgA=(*PQCC|8Q+m-ak?b#~*MeWrQf3p+A+D;Fh
z)ifcMUuIfcmt`j?*Zq>GqsIG}<@U$NvqFYI(Pj(ioGNdf=iPQu>H8rCker&CGjdbb
zJAq?1G&?kXkIvttJ+d6k6AQVh|4EY28gix-o0&$ak>_fIk@2CS>UP;Ik^Uva9r0bv
zKfZTK6^i_gc3BrxDR4yyLntLrcnjaqiVw8AA_6n0QP514+%6^R=fVRRE{^qAzwo^6
zi+NsMqrNOCt;Mp28R%<1%bqDa0f)W{v$UKedqiL$pr6xw&zPem7LpaM|0yGVVcylG
zd8wjC?U3f2XCzb|E+zv%Rg$`BLp`4OA4%sK&gTF2;o4e7)oN{uQmZv$QxwGyrFQH+
zf{NYPN{iY`QKMD0iIEUn)vi%1k=QF%Y_WOrKb|A6lNUL1=l<T;_4%CVIs1Pv_sMnx
z5T><)zC3-uh{SWB1LZvH@1}deFHMK&;FolNDDy}@w*jN9>1V2wS)NfzUK-qEPR~_T
zw2uajd1<`t@8$2#SB3bqyTXAnY#?{tXiH!K?cqEIfiIrSx1wHfO_uFXv{<AAr2P=n
zc`w@kOuWf7gy$maTxT`mvPH|rP<BA^-nm!wE4K}y3l6J=jUDN82p_Yr)LXYuYPp&e
z9mC7mZ*!i^wlGB@m{b2|Q;~xwK#|KzF{XW0PPe&pv&FMC*1IfL7YYQHi%4+Dab9{x
z>3*%chX<Xg%jKQkNbYjE$`QuPU9@M`ycoroC%-kdrfB*LdEP!SKfK5VHM+MG0?4x!
z<e&p9`h4TuWcMpgd>~3`K@6q;dxY*%wCa1Zsl5K~_CYzqt_*GJ!O}}z=jL6^^#qLQ
z`K}~&LXLpTsx(TxOhxnw$SGbOLe<oru7$Tp4Bv?Khm5=W|9tZV=A*U_GH1q^moCO>
z{OTa>{FI@p!ekg&_im+uHnVJ$%1T;*!zx~xs&$NQky+0@S6Osgv~?^n@bC)zR><(K
z`vYC=v79?%vBbaSa|^_=Qlsw+a8NFpKvYtuTeJL1*kup!Sia*LXwf$ms}NRT_581E
z`s_%;hs)M^>%T5~shg3r5c3XQ5jB~HR7Lq7{5x+Yy;zYpasV!Y8gq6f1){r*3RYHR
zXMGHx^RTY~+@jL9?NKGv2yyu4Jwm=k1c@FE$F62xGlDkbM_dvpyzC`*fM7+i;eTOK
zZR1>~KlHpzYin#<Vy_2K<cQ3QP_0`COiUf5cF8<`ZgClr7_PiFO=wH>ClXjVIV0G`
zq6jjWt?b$D`HZGg7HK@Y)U)R&C8sskah3(T>0%FFZ53xT<I8&Dl8YPeTnDo)@_Hed
z7cN5z(%YySk9eN-DSS;Yxcvqqx<fXXePnZ0%j;?9<2CI_tM}SrVdO4T$n67Wm2o?1
zQ92mAtE+Od(3K5A;lo7A)h?6O*?N?~CM0#oNJN0Gyvrx;{!nAV-0RxMO7Wo?e~b%<
za_&@x{)N7ZaUAKTQ;~J?2WEF6z|miZj%JTu37rPY^l5)~g1m3p?*KBo_kw+@AHPbc
z{*4-xwwM2AS`)Uvq<QRpgSn--#(Q7$U!QawW{G{i9$NYTS9nriI3W?Jc5$tIwzpAm
z$r_#*b{<U|VhG;U&+S+(Ix5)Dnsg^t7(q6^7yE}aW!)DGxs9ozmAZ2lz1`z$<C<Bh
zw<~ce9sGo(gPW608lfzf7IHYFGqgXX^m-*|f|*Ei<-@IsBe;a<<mlDrx@_oKt*EOO
zn8Yom6iu93nO*E?nXszf-W*U?K<E0pZkIR1Cy-dgZiU12q3OPcJGA_uXN#AbXoL;j
z;*xGZ{I)Jwr+asFWHnp00`=6;K7|NaB+O886r3hjY5qpeemkGNcFMY%(tW$06)te<
zemXKKBm4vo;@N@5y|mzZR~KWLRq>#}wB&WFFyHu(BxV%BGLoADc}ne`B)7N50;PTb
z78C;-_A##RIexfyPxck)V16pU2V9fDq!m^<GWV;_TEeD_$v?llzR@pVyU2e$Pk$}G
zP3eP3|H(aoEj9wbj1!WpnX22kXg@6Eq(qtEPPh@<?!AO0+Ev7tQEI@_sNU*Izq7Kw
zMS?SHE_tT$?ggD`2%E(wHgERrrR%S4rLA#gd>Ge7U)>gkADd8@@^9MDV2{wM0F>BH
z>fmA#IpltOLHO-?XsVSYXP7wQ1eF^~$DCl^DscxN7pR8)k4JNecv#+Q+?D+4&|RHu
zbsJe-oCRyUH@-DNej>0vxNzZSy6OsJ$VKtvtEZ4}vi5GhK*JN(f79w4E(Ia{;R`^G
z=Qotg(pMNd_|KyTp6p7?j<~=|Te^mS(m5O<2L`u)0%ZT{)sq=3VShg~PiJ2F{g+`Q
zD5Y(Vsa8z(_N|$tHoTK-Kp0Q3o;uX&xb|J=F{NW`v})CZUxAuT|1b%r^}6&0(75Ab
zw+o^~@@;JEBc^jK&)Y{By%Ib+`C*TPn3tKm_-|nEZQfT}Udu1Wk4Pnixq*?a3ion%
zD1S>2d<mEp8^j5srqOd8raQ214s;_lI5E<|%hZo1x5+s<MQCJG+XhmuYfI7TTH}Gz
zgfKy@Ha+xHfo-u>u2yLxpc0fR$7T_HRebO|!9E$Kf$%&R$l4}R(%$eFcD=Cx$BcMd
z!`6%7`Rr?QRj8GXqEGNpdCtaOg(s(li9T@{lU^zDt4EE`Mb6LCN1aT?_YQOJKZUmH
z&Du5IjAj};a0aDO8@_O8m@?_gYWe#t8&z%u;z_sSddz7eI$61s{+xf?ug7^Uc&l+?
zV0sAsLB=a}1-B<ozIgFXME(y$TDn!oh6&3(pv2R>rX;C5nQvaF|E`bFl>i2x+`cs1
zTQ=tX&%`J#>*HFPlv`0c?<`rprNrWx*QVgFC#;_xH9V0<fKS?`VN;47JPtS?)blYr
zlla>y;quJ3sa<{NO6RdonpR`qU9c(*ut~WCQY?hJ`21I7Co0h*)52p#lW+XLv53U}
z)oODyS+`%oS+y%DctO6x+j_avUB36%&%q%4t^qa+Toh5|#ImLAC`E4!b5>o;^pCk6
z{77ef+f*t9hIm5QppX_@q5R>Tor@9Y^02aEu34!v#X*iuL+nMr%B~P<aZeHeq6~Uh
zrHf?T+YS}6R}15?Dh$t1)Bxex5V^*IHAR+M$|<=56bY61;}6!EqUcnSr!|vAI;x}Z
zp5MsLgA;h9>!il&yj}=sy$c&;n%uZ{InKJz$CR?{VPHwwF3-do<$W3xiN2~&BJ-@Y
zjVIaRI-<Sv82B4tUH<x!Qb$05e7p(`s;K-2+1!JO)CCvU_L(o3uTK48!Dq8ElF?>;
zkm32p<kweYAZV|L5bWDzys-II{?&W8zMq2TMc2<Sy)k)wZ;XHe3W@aMm)B%)H2Mjk
z{9q>NW(A7r#C3dGnBapq#CVcHK8g&gcln`8r*G!hquGHXON#y13}iD+j#Yy$N4`uu
zZ2Ovs3)-k<By?(PY}#MRo))ReE(<rPo?M-VO8Nd?DAIEa5(_?U{&9p3qYTe0#n-SG
zDB5;k*Qq76y|NLo?~ZySFX}%Z?Txav>He<}_OYj6Yj514<{)HjCPy&|{Ba>EnX{Ho
z3iA0h89;|Yt`flZ@hBdq=3|3-10m|`kRWLmsOK5cZ0>)3SEC%loY3MkNOJ@7tehE-
zW;N=z#{A{#37GA`@71mqq3a>6=JkD&=oJ~y`1f_e=BM-p-GFQu(nF7;+!fsOjMbWs
z%57`0*yQCqGwV`$h1M}X%e*6aI5OBOmu35-qW{~q(xm?cLpmo|L;su$|3agdqDcrA
zWGnIc>-U)Khta=(o^b8semA1cdF~OTzs(^gb;>zOpSBcYwB_q`t}h-q<_fbK1yIMD
z_4k{H(uLedZIJ_%7Fc7xG(PEPg7)FN2V1xkm{5GrEwuIhRSHZ0aal-#7-|XZl-eJm
z^C{az@}ltS(Zu&L=?O9kj~ZAV{^|Eq?=jY@CDn%NVx82mSE2O_ohIan@3xZEIH--j
zs5mH!J+8#7M!qq!5AE<#<ePr?2tz|MD&$}ssx#I&O$8zQGH6!6oTFGhBN5fx37AH5
z4ONaXeM-c~7alC7qOQ<dn|>UB;I7=L3LGf;MN_^X#RWm$k~`o(WPPgEF=yU;k)wC6
z^pO$rCyH}n`?n^woW8TS0X8pLTSUw5Hf4mfu8$Bie|^hKMI!#Fa!87NG?37Oy%=Rg
zRNHC#EdJx5?cylmBG40LGrKqhJwNM&?5<>9^NZTQCjQW)9%?X4@mpaB8gz~79yGSQ
zu)%yFpI{;nms}czOEAF&H8xqDt3cje551*{p6}t<$WI_EU`H<l8U}V|tCL)Ox!JoW
zun$|9=KSxjN9U))8twVsBPu}%PG7ilTENI{>O#TZ5K`=ynVXBK;d;@U?_1s#lj?uM
z;b)e?odFO1mKVgOp<dXxpr=bSt<3pCsRNU*%IQ;>-YKEC7>PN2JP0g+aV`0khimS*
zI%9I&^NdP`_HQEGM9(-LWuZ-q%#z@8#U+WcBz}6eZPRGRos2vdz{XPv${IY!ylx%%
zKCqHpnH50YyUA48^xUtGW(5U$qxnv+ma*GJj;5c#5e;Re;>~f85m}UxfP6+(&V}TI
zs=$a6M-+3V!D|fzt8@>OCE@15$pI;H#B-ul5CcS-;3qzjOGYu}zWJlIDoka8W>&wq
z;W4n~YjpiXH8e>FVe+S5QAbq*R@#VM<SlCZwMdaEVA|^}hux0ZmL=2xjlWq>1ka2G
zZ|jI~VP>Ap#9!DZAJ#T57p<$yvPbIfz$U433;%Jb*?5q-s4@MFL?nZY;g@d5B(iU%
z1rx8oITlW|*L_BL+Quq2>o!?Na|)aoR!^JC&?t$K0A}nf9}}p2wqDLRFD`X<b+&BM
zN#|US3RDB($jAfNoAk1|KQ{Mj_VnPxampeImbpD0BVg)Fuhi|?5asNeEGs9-8o1rT
zM*k;nefwO|4{Y=^&k2D0^47>?aCCHr^SFEYgOAWQ(@^jZR(&nD9sYF|rT0^;OF1`T
z)b9J66`8Zk2N}U?v_6VjPehk<62RfiOC^#W?+n`qx>f4UzxK5bevEZydx2EK5c@j&
zesrM;Iu}U$&usXCBVK6z%es;K(wI|j|7!ZtTz>E`e{8|KWS3#$b&r|$)tMIFQDQ(l
zMe?;PHkeO2cOkMs1ocz(yHAq@+@ZVI_RFZWKk7JI6!Ww0YiK_16DIj-A3y$SsM_U2
z2fC!$&pz5(aty$Sgp2lO8f3g0ka@f5%C@VW^~~&y@BDq{_CT!%^uG&Yq_sUL!MdPZ
zhQ}9f^>9bHaqTCk7DVWM&mINh5Ed^|VHu2kYMe^7kQ|(-C8MQVJ)5uP{_vgY+dR{*
zUm<Pk;>BxoUoZ1(vuBN~6ZUJU0GYWy>4f*jk0jUsHGcx=XGA>%MNRUj*}2G8=uQ?M
z$)Y@{!MYEP9nFbyH)f%@MPE`3ubfNv;FW~SsR1Y%(tkpVNZV{}8gUAHU*pdk0B^gP
zw3EmK+R!8NGfeRha4+zDcUuMUJv+hTxe+6Q_BC|C%+Icy9>UUHzeY0`fXxjkhbcLR
z0bDK1aPFW;wr;=7np~qS_YqeDXaC{pd6Q+o@ztH}D+ST#H|$UnRt!dO?Ppj-PMb-6
zpMdF(ml9*wy3(LO4I=-qW-YC|oN}ji!XcMLkJVE9pVsRNrDqhkZgP!tL-C1!|7YWS
z1TjQB?IzECgBUr~3kl~?!*ZFP6sUu$&PyYzA~@7*so>_JDI2q)le|jWA(uZSYwqIB
zmWuw@NA3}odOmWScQ)fs*LLvtgPYac+8iN656`FVy6AeZ@7Py0;sp)AVtiorH8PGT
zSqb073`ruk<)0&^E(5AxywFls9=O7u6UDjLzaw@SVWR(c#^-pcG};2<<AeJuMx>uB
z2)hoPzOGZJ;uKpr4psw>lxbx5X7c!=^zt)bf0dLaz0Q3oK!Fi8a7+}%hZZi(B}(T+
z%T&r2;}R{G2BHHD^?Be~<FEyt|DqHU7!nvb{;Rv>Mo>ix-SxUSb#jjs?(Xe+hA*O=
z4TuzdbB{fl88t?;(-|8`0#MTX&W;LXqD}Rt&aYo=8EpR-pppD1jJoR|UG5*RB+U|2
z^lyBMCEcT=2+0YbN6M#kD6l>mPc2(IkOnna=xfVbO9Gth>;(kOc9M(k>v^eN3d16&
zYa`=%ou6fmAAKXaltLs@IlVvyi<hSw@8}4<i{A@5IOyWf?6Qs&$+jfiD?WMFKKkui
zQ>)ZRlK?6XvP03y-}5d2Ks`5GH6Ubo*BULVwj@GC_I$pVvllSP7>fH*KpSQ|Y~2zT
z*26KQw`+QJhj<$1Zj~-~d{lZg5kDf&=_GZafgr|!l-zZ(9{5KXWXOYy;1`f#Ry<4S
zq`OV?a#2Lvt6VcQ&$r7+G?K0VyI9qE*c<XM<IAN6*nO({MBspZT&L(LOK(+1Ea}Dv
zD<j;3HP+1h4%D?UQX@q-AYSx>I~>ZzMn04Iy$tixX&I<dPF~E2cCl)EiCu|ueu$FW
zB&8NoQlMMU!sK>;nJQH^geD(|7`6_}xwvWk6smW`neUErzN@d=*!lT}Y@lyS$%F1i
zKHK45&%i)%ZL*S;h}CBedodJ$w!)!A1T6M*GDw3bZ&>E|ypfG^CO6e?sG1>10N(bE
zUHAD90qI_Ob9wUS`v}YlBwhaVYk?Pa&eMl~Zf!YJy&UBqH9QOQ#!3BGIYt9gI?x>`
zu#zJGfhrmy0p#22lLX8t8v2bVB>$lyTqCJ-z+W@PPNXGNph>$57;JBPXR4MA!C3sz
z2Vp7>aw7wNDI|k-3F1-ItT7;0n;3q<T}nj!tc0unm>xS|pkd^@qWv~GU^sT3R*pF@
zXO_Sa;yZG0l#t#0!-`^s4?w+8+gwOJED=NsvIEsm$Go~Hw@2V%Ak{Kh(G(Eg5Sh=Y
z@yVg7%N#F7rrbyVUYMKn&?3cV%QC({?BD{rg%dv8Zrcn(eRyotV+X5(ZOIV5L~OF%
zoDf4&wwF|~Lf5l2GgaMYAZ~_q_O54LdFx`#R7N<QCE9Zt_Im8MxJ=W72efs*KGm)1
zx?W8|+yXIam+vveK(*_v^y#$+!e2n(A2AP$6+VzsdJ@~IP-TD8-M;akv(BCEzlzvn
z5|~mpmLh>3s5;DsOeC|U%U6t-_VeVC{ffuwbqB+aQB9vJaqkoCzg?k%e=iXY=kuBm
zJaZIk0M$6c*y|Ge7=s$xQgDA$)iLff`E~X?sQ5X(K$`<jYD$T}%STVfeM;aUJuv81
zyF*&qfg#1b8?Zl1%aVJTMsEP>@SWq-OOh_3f#PP^zNI@NFAc*t(~@Fk<H+nd9W#7i
z^bmkdU%<SYATgfJ|L4_mDK7r$v29(95wt_7PwqCCp}BH3-Sqo-EkK-oY0h!hht(Be
zB<`2LGnZx%{q$Oq{|3LCL1!iba;E3AbKzl%nGzl7{mW+?J!0%N<EIyCVpAZJ<#4!*
z%Ar=NhMK0T!RPF&eHloHv|$-3FDCtV!Rg9Vt2t4Y^<saDY95@RQtqfcfinc1`M;T<
zW)Bd7A}n<u9SU#jkc|Qm7cFUn!_ArfA8U>80qoRy$M%Fq)ND$B`ATRZ^!Yawii*lP
zOJ^=Q@b_O<Gt|a}?SLh6@64%`<xtY$4EkR6!vgRYA*XZ~ZFqXv>CPT{)x@g0$LY%~
zZNqyqV}EyTQh4Sa19{Ls$*b=*Q_l2K#p}wR2347rP5-jePKrUX$-;QHow5nUV>9<_
zh4iwXt525!Q5Aa3_)plQ7yd0Wi{WS#S9|;K<down$GfyspR1X+x0gwFER;0^to)zs
zqb2a7zw8Qt-t0(>_?klNJ!4Mk_WM`csbgA8fw+a@cRv}+|9n?^dTz<|_-MC21?u2y
zNBig9P9dBt_37D%mkG?itLM%DQCD}#R2@p5g9W|JpN}>bLx>9Dpvk6s#-oczk6v-H
z5<Sh29x3)a8cN{0oE3mZShWXx?h2#aheUDEtnr5>V9time(WB&*BKTd(YBbX%ptBz
z4#H58i<<(hHXUqwXL46;z~^k9vlf`S`>>;+GFjI2Y~1xtFGNl3AeRMv_!2hY-*9&_
z@zb7($?AKSw9N-+(Uv-t<nn+9pzU*b9~m+4Cv^yE0P@^IKD=TI4a+jX4uR=Pdv{ar
z;uQ#K#zfS+(7N_0(gD{Rr?KE29m(V3p0tMMm@kHC8oWwLkzx{nI}Tz{y)?7Za^Mf5
zH>j?Kf8re$PD~RZPiPaHYJTsHTBzeT-6cu!XwbZw<51rdiRjoY(gxb%E*`eWsexT4
z5soWQrc+Frh;_011-nIH;D=YLs|;%#tMAcch`sU6W!|;lnr=~E_?{&J(-K@9m<pu<
z*$!baKqeQ>%EpZcg0uIkVF3d<*G-e_#9y@vZ|>8yP{FKD@Oxq5?+<IuNnR?c-iKDZ
zju5PZOIKKgP~>-Yy>RxX9Iiitx>fuU_r(2ieMQdDpcpSww@gOs4N#;4;Oilo`<>23
zP;n2YBrojI{cqC=l}T3iD=c>wZkIkD2j0$i=yqJncc_P-)Lgy&@Hgy5=TC{(R#j56
z-&e2?Dyw+S1x1l^(}u1%4;aG_OHI9PC&B!lEtFx!U^SUcY3M789ZDk?N9`;oqrXC^
zX^=gEpmQV|bH@EZ;^-d@2=!(E0bEd+<{i@jjD?XIA4GjQ?i+bz|L8HEE_cYvul1L&
z_(x3+%9|K_U~0>Mu|>L%;35b;?gt+upH*#Ksett1NT!$I-2HYVRtgX8>s7}JF{@yF
zO!7TBt8O^|>2%iTw=%Fi{Wi;iRT-2+uYE)q^|~7gh6D`h=a<WSyGOwQ+$V{>JiVC+
ze|<Z(cT05beY<`e8+Oi0m=}}ZZrvDNmFzxz7p~RumE{f)%iON?t=^iTb<t?2TIbF!
z^yG|*n}1rckjE?^V6s{^b^lEKtR{>Z#&o7Ecc3Vyhx6VnD)8Vw?%{v_jmSo)ZMD@I
zvRdgO8icTojF;SaOUx{zf9MSS%TjvL;C-M;;s-kI?OSwQIWiPsn$4esG6uJk3zERu
zlv4h>R1y59P&%M7i_l}%OmG(&NA0i^0S(Tyc%0{pgqn96LXEotZW=Xh7Ax)2m5)&%
zpYPqj=u9qO)&)u+%JtEmvG_8(qW}dAbf8{jV}otyP?%~<*q;^1FKB3OS}PS!nMc@~
z(3d_%?!4GOvP-T&fx9_s`8=|$tS+jYBe!+{wF$m1KfWX{;@WutFCGs&rBwKi9<}UN
z4@_O4|6>ol{!~?A@Zwl1vt;AjMp{eQ_=|Usq5k+L239pY`hYfE|6~986Ig~n#h+iC
zV^)+;05HO)*p~i(ezalQO0<U_vexrFl8ALx4*g`Rd6%MY#={{0N>};KyLo7w?&93~
z8+xwR+>NV*vr<L~LtegE+N3~jAO7+m|JhAJ+cLZI7o{t|?**Z~M<{jT-`^x7-;+7Y
z>Dm`)0J$2%wR(BFGT#&wPLaNRZgQbvnDgJrF*2r^eJ+1Rb<|rt^m1GJn6(33g!fiA
zJ1?DL$~68ji7ZrY-JI;kuuuKwy02hvz&jA|@kOn64P>H()+{Ae)=i|2Y88iV^z%hQ
z3T(OgeC=N>@_w8tJU*IS2cdr*?X*CKWY{r2KkeugNqzQh8Y;ponQ^(N<n5CILVkC7
zo#oBMEV^Sabv~1igpggTL(aUdA^3av7l;_c=4aBg5FIa9n{NJ_L!zBraNxl@73eBK
zjzAm41f3qt0oLRiNPw_#NTn`l@R|-acH@XpbfnjZYPxmsnCiEqJK@u!K21oNrpIYJ
zz@BOk|I|L26-7V_<|Q|AH&)>_F-2jE(tm>*38B0JycuTq(c_7?{kArnLdeyN#rnQ&
z533WBd5#c<fci?s%NKxuGZohw?fN6(ZF3$Wh4!j%NfMn{dPPw2Z3+BD1_@ih%f5n;
zfFxxGxt*uFGTPS#B^>961@0MSYm+y-UHo@`z}rl21tI)8;+?hZ$Yl~WH*IHH)W$1R
zl$P0fj!IQgBy>jnTIDT~lH5|{FSvd5V)_o->w(}KslrkrNgc8hV4YTbmDetRw%Mio
zdIklE#nJ-A%|mg+=O!I#cOnR^`j9y@9@X0)aEQ-PkZAU%1#hqBi>}5S!|hS!Fe`f@
z?xHk5*xcs_oZtI*eDi!EotY$Xo!sXjycZp0N2YV$jujosMTt7R2j4<vFbmmlua+}y
zqsDU-X;FrqdLAf&@#EE4k&Tc5P}$H0i~r37fZN9r0x<$Wx5iSdju=tF_MqvZHYf*=
zJ!mlzW-Nc2FgVYoG`A<*RLZ6(Y6ML0g}M!M3~fa7;5UlK<>1DMA2o$F#vxotYDf&{
zBR^{l;DvTHp?S~{=Q&LK8IRr!*(WKCDevMS1UIP5B_B}EcZci2e=Abl3YtaT`YF9y
zii3)Ht}FX`WiU-tdj`|z?fP*uv3=;j^V{rs^@z0If52l()F1Lys*nn?6L12)b-k#L
zjHMsTrqAhjE6FKmqg7Qfq>OsS(IxPMX>w&QU@gtmg6VfT`R$qlEZ`W}ZeX4fpz>HG
z{%WbC+l8?uu(!<vw$Ny086xEUlv>7p$=p#bH}eU=Jzd}NP#$ne5hl%2YYq_+X?ddd
zjx56{CvK~2;*+AsbhUFG(@^C!-W>-XOf9iT?aT|>+mMgo_r1#OKTGVe1BS~*7>#@l
zsxhe6&`u2xusRpA+FSniziKmR9Ewtok9HD|I&MX^KHXyDd}MYUp{S9!{R3<WxsQ@V
zm~`t2p~QELF+XP4ECXB^+$Wj;<@+0$L#M=TB_Lk{Cl+T=rmZq~HfSO$0WYP%iWkmE
zHzz6U@p~UBQl=OYM!+&S9kvJPVhLEbKR1NNV;i(@gf^p#gB$6Hl7^~yO+kZgRBa*@
zGv_((;$Np+-h;D&?0YnE4`F#>es0MFJO3^%{wSI6PlOmDk);7t)6h6MTOAU(+(vQ6
zBE=`skPIePQH;_c-1-De9cJqldi0y{*|sGAk$iYX<o2}Kdi;04p*700&=y`aml=Oe
zb@dANxcX`Hn}bdjZO<j0b__1}k(T4@fVV2&>mT$))Hht7)LLcexxYDHqoesW$!zl4
zKcPv@^37*+Y(M@_6iw-~ls_A|-DnGPXREtRxL;*dN^7q@4Lp#$aYEDiI~Pg2+#f3~
z+!dy*_$y9ef+6+C1G*yIl-Q8f)BrUmdnBepQJw<Co~NZflACn&NyI*N`=jqb1Ap_g
zMmA^??sCb>UVe28TgG=^o%NHJUB8|+IU)(=_(HVbe}W$lt+CZXuI2y_ABxA9EX^dX
zrJ^))$9noaA!JPApj`axNsNQL`C|1^VmomF#XZ!o+R&}CsvnAVt)~Ye4ajeb)#8Iw
zwcM0eD_-Zz3!Stx4(KfpST%a3^yuM8q*Em4C)D%>0i%Rm4VdDnYP*l~AJQydMU9OX
z>F$tMGH2gTtiHbke>I77e2hD=upvA%6K2w3wu4#nMB`jYfxeGB2i%-e=oNw}wy)y1
zET@m9s)80xe@y9#)TLs+;3#s`J^p~AAYEap>1)(R=M1^Sc~GM*0gRAocWJmP$gJ{l
z$8f)AS&fH=BgA{;m*odjn;4(E!hc~k7)`%~+`}J-KHeBDXb&!E+*6uuOg~`cbZJ`_
z<>zgj=g&&$#yTxk&g)E5i@l`$cw(MvN&m83!8gKPyj^0YX`O5Q9}{T=&KfFIMMTP<
zep*?tdiPzb^VVyVQTx_qgimF{!#Zp1th;mP(??MuMvb0!?M|;(-8qx(F4Kf789<?K
zxFnHA&&2jnS$Mi<U^!#LPdL?Yzd;-z$h8e)jiq##gOAgWKW&VgPO7x-i4{?&W_=8}
z*-zf%M`gazi7Z{YAO~c5OjSjfYQFhTtaE-99rY55%m7kT*)oe7l;;P-;uA}=D(t#j
zWZ_(<s8`4=%j&Wd*tmCKJPP_&1Cv-k<(FT{Ny6&=QRzHDV7wD1Qmu~I>~rdL9<}~!
zt!Ty_R_KRAn~K&J&%!&uXR6Mwb?0$S`=k`Mpq`w7qZMiKO<!k$&x;D43p?1@L+<Yd
zSZsP&*(?Pd`*t&3BAofBX;`f`zD@flxs)`Zv!<_JrUUmV%&c`bbfAR6y=(G&!=N7H
z-L`sMe=Ggx>k?mzoNxS-Z_G1RY}`pv0sq{@IgZF;Ad?*&o<bGhTn<_8$QKbeXSExL
z)Mm+Eo9kI7-)S#!6dvobEW4Y6$<(Pj9fz;<_$1W3>H}|liwo4MH^eNAWJJ}aZf~7A
zGrKg;J`vWo&v=e_zD?zHaVf<i1kJITbm8LR?}scG6=FH0zT^h?oag_T$UF2wx*zLJ
z1)WrYO^({|6qw&(Ir917Y>(Hv5%qfdgRt^r{Q>44#@s`M5a2{8s)}VHKs*fh<7#d;
z)G_i|x}{il?cb6)J0QblqMiIR=B9UsLtpz*X^Zse%5*-VRrt&IsBO6A8pb-KL}A-L
z`(302K7$>@0b>9i{0EhQcRGw*Jct)duW)!WOw6=XZ|~6Vow;NWW028dR(id~xWAWo
zIMkbG9_<_DnU!N1IKy-y^T;H}k_1kgSHg?qG0i`kLKC{Zf;;uwmc*5BD@{|10hB|P
zpLBl$_*JXF9WN==Xb(uR+BAS~kTmj-0smy7?2Nhl2({|B4<Q*Wj~1s2GUDw4vT?Jc
zr`G>rgX2*dbzVM6{^{FMER54xk1!zoS2S_?Z0<tLxi&Rxwl0)VM=THr@bvJT6$4b$
zuo5oq{l@5lXlDBw`H6Ekuh0Qk3G?d5c)5+%nTpNXs|fpC_4%mbRc*$Tdy*0|=xu_$
zciSUl8K%rMfpDmoWxu==W?fXOGoAI<I=dzRa{PJ+HLJ-7yQ_6yZc7HX;B;gl$6wC*
zhI2i%Oft_`B-g1&Q>FU9xTk(a)km2|e)J&^o{Dk<Z9+3H9`!lPF^3aErQt;?JeiQ@
zbqYNaJQb%CjN#V~m=Uq|kM^tHz||AXhbg|L=KJpS38#E`gObZ4+kAZIFW*$wn;U!3
zm1m~v3(cVsWy;}g9(lU#@f0^&^&}TziWL*AZ~jW{=fJP^jGitAqDKb3%#-A)d}OqL
zT&eG6i=n<Er~000YXL>f5>?YHQ#AfLs`0_jRke>bID>BWXka2xgR2p9;vVh0M4Pkr
zH2v{AQ7X&1EEMvbuLUr`al1bAyfi+~gR>%k^5pMU7jF#YRl2m61f@ZgXLntsklYH&
z(uZFmZ#-kD*!Fn*ZSdM(6b{`SG?^NYB#QZ$$MUIx<yn@CzHZ;9p1^0?)4x$E^i!jX
zDUa^q1*C%mQnndZ$#+tO{46MTdY}^#iuSoA!*^Gk7Z%M<U7|U|)T+nM36#_bYSa>E
zq3@*OqqTT%xdY?Q_TvoYhb#6VtTG+YqPFjn5wf}vsS5L;#S5Skz(_13Xjar8V?XN#
zjY~BRrwNU_#WmR{lR`e|k|I>9ue|279u)G|A+qg1&W=B5iGwj@b`tQdm121Wa!Ik6
z)rRDT!Ud7VrjEzSz4Z->&n-7H?~pdf#bB*-lAQ{Cvr{swQv7rX!;aK6>7!K^|J~5x
zi+g^}pHYAvI^11U4FSa`7lY<3;(UNGS8*f2+F{kld}lXO3k1tnPV&}O$-ppGNAk*e
zU1gF^+73d}T}*gc4ra*oTSI63)n65gL4dVVC~<90^diZN;*{%`;$`-a>b4A6q_6Fe
z@VA3Q{{;nGt)VH@7o93}!|;YAF9{E`6ljxVJv?`B>&R8GA`tp90r0~0-3@0Y7cctU
zG79@Nk8OTua$vym1@M4H$d;exJ^HcB2~Ri{>+!wHT((>`sKHe?BHCdhxicDc@U_{K
zr`+tzeAhic2A~QZ3nS2SAj%UfR3ixcV&>KuS3ycz;Uv<poz=VcVVhOxGdwNkzD)bg
zbLwxmZx?@IX(?w^F*S~M2Os|{VL<ayy2yP|wKV_Hn*W7>T%r^g997guxL_H3;H)53
z8O{XJjM<&v@r`y4|Ba7;^Moe~O@{9GCnes_)w06fwh-Iu)x}k=jm8SrJ{%r`j(1BJ
z=TPK4ea+5KC=j~W?g}OnT@s=6P?cRqxsu6Mi{-%zFR_kN(-c;?=gq0W>A;#v72!5>
z3vr=$PJZnkJ=-6^|FSw&?fQXfYY(lYMLx}?ZSvGAOFh>QMS{<yzjJIcncR{MScu~3
z)5uFcto&9<lrbguVBerApG5d=soe`(`T~cTm58=(jSFsl<}fbQwj_bdivIHq{>{qE
zu+dSsI#Y%5I$~Drm`|Kj@`A|b?<(cjDWh!Ws_(xO3Vv6JQ5B^t6u5E5hlULGooIQK
z{|7+ebMCAw!%$nxH%21~c%b=x@!dBEa~VJ`9ezp^Vd&9y0;&7ismQx8RUDtm6??-(
zBdaQu+%2k#BW`#yGzP>k1jw%!_G`{ko_A^rflCwkd40-vV$OboUB+LE&NMwGQoj2j
zibmAnt|a~6$a#?qen+zgUee;Af9in0QgtF@KI8~qcMLDoEKES$n0eq#_l6rdmgV{T
z8UAn9P&tdtiwZts)XC@fgZcjH=~E8`1_H==J!@XGys<HmoOVrEf}3gOOg)<f^oUPV
zfWC5V^*J2$fJ0<tdcN4{(^rd$cMt$?IYBSYLcV<wC&)Mby;L)13kcF>3k`_z7HjwP
zYJ4S2T0qj97E8jqM$-0;1$hhRgPlY;{Od$I;)9(|wgnvgg53$G{;o2b<-Y*(Rgi;q
zsvIx*)Q*9_wM2fE8E^V~uY_pzdE=8Zs*xNwtDZo8YSvYYzs~<*`#T5Lt>0|q75X-s
zuKBp+UG!Odu~nHV*xb)OmYN``^Wb~?u6MbaJjS4iI8LCx&110C?mN5`T>R@um{cU*
zQ`@;_3I`i4G&&d75Obh=H!AQkRK#~RP9wm`9e*!=Xbj1Q8UNoyT$PvzG<9};lMz*S
z^5w_Tqi%lDp%8|~io^}-tSHjE*IpJ1ZYs4RFtZ2sqt$&a&5Ck(c#2rR5JLB_3Rdv=
z%SMrHvLk+j@LSsc3AXZ6EyV3oOlmfB_V<4ST!_{qi``q|xuq7oj^6i+_%oOq7v#bE
zD+b%_-f|Y>EtuI&TW#uf`DSymy_x+#Fv$c8PDfURNr^*lLN0+S1s+t=d>dZA;0_9V
zhBhPVTz_X*ntY_93(lrIA`aPK8QV?&nEg9f$@`JBLBC2Fys_w5zG!jfomDO1=1Kc3
z6J<YovUxZwD__3_-PR??^=%4vF8oZ<<$a%46}cd`KP^#3tIK6Ho^6|Q>+`_tC(J?A
z3vmyj7VkNZ&URRcF%>w+*%J~#14*upjj8yw+8wHujJ>f$l&%*;yVm+RMXO2e%t?{u
zV{BQ5UNr-hTUL}@L@-2bc<J&kauC7-pNO~g5$nHRo+~`EP&)*+D7UX^Al!v{HbUH5
z&&T3K2lc$XYx91$#LZ?oO<8jzrRJ|(Yl;+;QJMQ*hjSLdwkW=hjOBWg!0Q-GI|<=N
z!jY01?1EsY0R7`QZ%)bz|6{Ffn#?sQVy`0<8pHmkp|A94gJLUQSKaHvj|>>M(l}6j
zL=vt0W}oEsV&YzA84fDb6Q)4$J4Cf`fcM-*3PZ^t#|3mPVhxr3iWhMLeJnd)fJt`q
z47FAG;x5{k*cbizQI_kB5JnJFMdFF|xNUOhdKeL&!=7qH+x8SI@mc2+-(qLe&xv2W
zd$H{^X{2b;cas*~e^vTowLNzqXpZ%<=Moa1$%7hsay1vNM^~Bo$}LieP46FX?K*){
zMAJ>3PR2;$(|kK6bN(suZHh^+QlgZPcU*THuYLw8k#TH1f3U>X^?YF7R^^FIf-0XC
zbp+g4eMI)_<xXt-ZFKU+!WqPpWKp`9JfcA?Qzd^tQi|1uZzkTvf0q!*AwO-hxTm|@
zZ{5^O%Spk%wg#gWVA*0!2{V&9EqUx%Y5Eesq{S_RmjqpR@<lrL0VYX1JLzl9@j2eb
zgNe5UHA(s7j&zEo3cFBVc$an2>{x!Ozu!pML-ZFmKQ9&ab2Gn>C^nTpqCGBwn9#C`
zO)~h9#XYl_Ki5|)Ns{yxc5fl1fB_R8Fv66|)gRSfI8tNJy7R?<H)Q7OvKU*9WV{Mf
z_s1rf+Wh6<EH8d8CL$63r}_xFNKsBsYMWfdc?Uj1`^LtxTxo!x9MZN<5!-Gg@&*sN
zUE~}OKer)Fb$tor-0F*oMP>Rf8=9NRkQU6!#<m)D1eMJwxPW{id>BaxeBu+Z96wv9
zN0C=94R>kCXA79Ql!DK-nF1#9b=TjeZ(QZM$}cV1yP2956-ttorrDqJ?SDl^c|uu8
zA13)vyeLj>nLnEwh$523s5Ur{KN+j+LId;;YSWwY$i4}L7)|!l)+qcV$_?G$&`h)w
z0?wY4`9!k9Egq2Svltx*BK~L`eh-eLR-!<S&HKdcSv+7vt-a4Ia{A!VB~kKem^i;K
zx5`tKzW~L0O-;cbIedT4L-6&2*^(eF7}&GEmpR!u+AKjRJ)Y11ynRCTglVX4u{tY4
zkV#tup%fwF@rG69AW2QpV5PbMSHw*bcKWlfA^{wFib_#<*<e-kQq9oe-J%NUB&~&G
zbQiIms|asrx-itsojqAb%Dh%W;$OtNn6BiPG<8aXkq(yMsUVKpKQ_4u`>A55<sWm?
z_r<R6FlG29x!e%?&d$j~DEA7x?+JHdea@qULScn_I(`N^-(fDahSO4@<)XuK#Y6q4
z1vcpFc1BRcho0wWP$}g?n=g|{Av1z}F4-arQ+)eh@zi7UFOahKPoF-}oe5-44Ylx$
zUhdOZ6BV{7l%|PIia2F@8_gRCND+a!WzSphN)ZJ#ueyK_a_+!A-sMQD@IK<5+t>Sa
zq;rdwrai_iG{Y{-lFs&PiMq&HFF;$1T~_)H|AGXscP2*tlpGU&zi$(<Z5_~5{~f^y
zV~U^G_HOep(u#$Nl=j#B{$?)PH{0D?ViEh2?vfDPHYJp3LjQ{P9#i8vFzoi8$NF<8
z_`rstYj@ACo~3!2-X87-h^@dW;NTHxYTlm;!-S{9OxM@Il<_nBA`Lv!7Qu~YAX23x
z`dZJnQww>f775R7f*8`r0AB{SYB>$MJ-DFozgJQpBhpYacUy~Z3J^haI?zWgMFt4R
z61vowKHK*>x}dGuch(J9CbjKd-ANISB-}A6=tk5o|Kt&fcJs==whE>^t?Xq7Y~gUY
zX71rXmCP-qxVl60*C&6cXe2$dF@HhEDs}$9Yxa?&!KN4=k>IPUO~R>qMPE7V>$zTl
z=pgAEtPi~Pdh*d9uPcgfSG+-)UH$$0b)K}u1Ss2!_&C*<>QB<<X-IIyqUy{{X0Kb?
zX!cRNZJJ~oGvfNR@^>xRJ%NW_uF7n}^$Q~oEsk4H=PrOMTB-b_!gG(Y$D2P%YqVtz
z+6ah;ft3MQ&4AvI!}3Hj(WIfY8WF1C{C^&1XI_KUnW1&r;C>GNVUrPrm{$)j^v-jC
zTwLr+6P#&qtu8;kKkCd0+AQkFJOKAaZrNaJLtOxcxE}vqP6_iPi)kp#HrS#ka~f)n
zmCbG&z<c`@PMXZ={o}A}<qr%g?6tZ}hsm@&5<r%b`4i$q{?afJ<si7Dh>=JTAQ<9_
zOa^z9`!**fmLlCUJUCX}(>HZ;UGbEliHJo1b}AG<>Q!gHCS-O@HgOMN%Z%7%fx9Mq
z(HrcVZ@yUW^AFPny|^<mpxCfCeen=F6pSKgx+2ICJx|VThZ(LqwQZUSL(Wm(4yUSa
zJWJTiUb-aE@abXKkRMqqUjg$AywHvB!`nDts_MX-^xu0TI$dRo0f*m9u&Wu0bqOAI
zRus$*T?BH&aN|(*2Xjl5^+s%+q2%LRj|L<a!m3si^#RNvox}Q1KfWNvdz~)&_N#J3
z5gGRUW!O*BGr#h}8~^EVcNz2#7axqc48?K{S1<a!t|w3*9)3k;3%_=Dh$Nr#>rXqF
zdmxo(A(9=Dn9OHe6yf=?=e0-HC9@aubnY==IEs6-Z(PsfK2Q*en*-f6B_=k9jo@xT
z;s}FIK!eU$l}Xg)Ztan!S|ATMY9P$5%uXe?LAO>4fo6%a>zH(-a<+huL!Y>Q;|@Fv
z7>@|b5Mp|=Jqs0c4MaT4Z9JYr`zhHcfa6dN1*SQbd!kCr29S)^2bmSNR8%BoGb?0p
zM=C(9$X06rij)W^por#>C*)^h6t{Sl&<;;c`>n=*r(5sgzxvhaxwR-pCjN)rq{D9z
zQt4C&q4ja|w4__zk5Pt5Q~o-unBsFH6BY5?*D6^1qE~QNx~tB3%lEmZ%=piLL!M#6
zUIy}+**GW~d3uKxhDPWG;d7F;b+$eJaXf+Bc03D26~RhW#9A8clUW=+QRpA!L%}qm
zg0gUMoCv;{5mLVdp5rJJVe-d+y3Dp5xHqJ)!TeK75HxSJWaG)KTDSPli*tq#B^CqG
zx&B@*ujTjRDXL~toJV;zZ8l0y1}z<TZ%|2jlHB3W82Pg>cI%(Hzg1PVmsD&xz)%#l
z=|gw4>MOu)IWsaC+8-AEAn{gwGlIQ_@v_RZ)@psJyMA9W{9pb>RLX2S7af_|j`>;J
zn>Td9b!o|ET756?J#P0~o0*MAXn^`?>iLH_fcM`|2_Q3C75OKKT2x#93Y^+n2<8j$
zwo4Zq?@YBzXdpzF=GcIO%qYr*y;$ng=1zcZvPyG9B<_VA=i0m-m1c01rB661WZO1b
zZf}4YjOffnE8HWR6gWLoARHKde^7vo!)I}YFCl+=`$%_8cYJhrZ4qV=>1>FZjrOZK
z2xx#&C6MDZ&*G9O&$=5R^|2k@E&*~P1I~=e-gZg*aJ0)m0W>11caC4$bi@4Bu$_kw
z;C%fsazu00|8`kdovz9MG`XjZ|B`o<CaW5%{{3S!g*bsp<(jK17gIz2oEj-S+$ov%
zvW&-x7xa8(?qw2xEJ@H=KfVHy-V|^|KYD@c?)^fVM``k`;lqgDB<;8OF7X>xm)=3+
zpFg{F{&G9K9nl%ePZQ?kq)eOu!$nx?)|k}=5mpq2>&e*d26oFxrq4nsjvq68A)Fw(
zLAdeMHX|?Q*V_m_Sx!!P_z$Z*$G3(VIz|HukF4+J(F0@MTa^STvok!vnu}0fNz5um
zEUC4uqV8P%xf!|3Tk^hIQjn2H$<ZS&U=QKjM$PhTfM5X?VeQKZo<^D$yYzw9Jh39e
z$S#<Sb+wwNksPb42%ii(vDziU2YC~clK0R>^u_CxP!hr(>Qj}q*W+?Kp2uroK_uEP
z5JK4cB>v;K>`MXeV7myD{6INQoM#H=6ZKvk{&{gA=%2Mbf(CD4a$)fYejh;oG0$-8
zLa^$%7#3zt0rHuWwzt7yC$C=45)NX%J1M|PS%Xd!2!aOn-S@M&Lh!PYCe2reu5#h)
zOqr9cF3v0{drg!oHwf}G^Ew)LzJpP(79bVGWNU5J?|)Z0gP*V%5!Z({9G%<;qJ61i
zOWA<j^;8gQuuyjs)8#{c>)}4h+bMEu$116|4mZu*`#GP5ltfQ#)E9c&6lC}6e;pkD
zpgC<j7bt^`yiKy;yi{A6!u|sc5u4D(r+^Y(hOqmV`hIX4H}+o}Sa7m3vS|2~?3gW)
zeEy?F_XEXy@%)W(=v|wTs=7PHC-*W6G~=~(TBa{#C<DZ4PM+arSGu%@_V|5i*8>~z
z#Gux~9?JzXg6rjzUCm$54*J~-^PAVm0Y`bO29AG@sB$}p9aPK{wyiQhlsS9-&=eE)
zb4dug%+l$UO$^WB#|;cRJ)h|$-+gaA`3=SqiHB?pk)a4|Gq}JrD2}$7iu&Z<uTSi9
z`h!+tmW%RKpIa=+2!M`nOAmQPG&Gr@gdo}M>NB}fZLwa3^=3$h@bkA;)k6f9MquZ#
zg_=|N7$3>fl-OACixG3fu(NWxr|Ck*D}n^L0fy90$)XchF7>wX$c>onE!33ouL`up
zl3ndl9F-6O@5y<e+)LTF=k%-J`n2uIm|kJ8gU+h7?wxlR6n0J?3*Ll^eAh^^ryseE
z=En$^Od~17B8;kKZRruIC%(%UV*E%(<<11jaips9La>c^`)S@x5ys=NnRhuFTvV7V
z>=1TW=~)+T3VcY$9?Y1ReqKtT$o9>ed+2r2cD4uZ8<=zx%el-9NZ*GtuGQt+*5Dzh
z20x|7>rNQYi0WK?L#gp30~f*6V1G`&yJp|TaO8QpZSGcSpq5SOinuhQZX}fX)losz
zoXo9nr2!FwulTTN47qq|j#aPg(tr3V^#ieza!vaIG2L4d?ZgQC0UOn>La94n*Y(}+
zWSHMn89b{?8pXA=O@(I{iyg>t$AJ>SWXcOe?F4?a(}DW8N4ARxI03?W(dqsvF0Hjw
zt{AP<<Wa2DaI`+cdIjB#4!yUrkUqk?4jwqy|K(A0H{~L)6GWAB)+lK~+3upE_$~Ud
zgH>6fRGDXu*QUGmVllfH6}Nppd%l!vM)v-{^=h%41{5RFnv%a4ebR|9X29LN(6#Eb
z7#6UEA#YR^V;}`Bz6rnE?g@PTHL<Ewwjx_Qn2-$!$R+{)pjy3?<nNV?>gl5ZJ?)N-
zu#-aUw@?D`6eRdhy7r1hz&b*V_U@I1JhavtH9AWHI-4gAY#SO5XnyjV*<XnjE@!(E
zDEouy%~-H@V&7G<4^ltc^8Ee3^Uk+n+{iBet->Sw0bMtBtXGW+)}UH!Z%-=XF?5s7
z9A_LfCJiE1SZAnZEM6zCQQFO-0L_LaTTrQBp?v~K54;5hBC5sudPA$W3bj438gC_C
zI@RZSm3vuu)bQQ6j}VQbzkGQ0GG#l_t|i)18k$F*7Z|!3f^$=^COjV;k<47ZoY^-3
zl?0|>p7@I@xtC;Yrd06HSSZti=MD{0wkslVWlDpWhWqrnO3z?1W;Lb{pms|qs@2ho
z)#s%f6pl2%!4)~3dPFUkrQIX4w@$9Cy?p0*GbWcmg?<C2JfT$$>a?#!_rnY2u6VdV
z&aEl)Wp{pf%b9Xc!n?3BG`Knzp|XG0B5!#KdDT?!M@QXYk{$6qBKv;GI&`YP@;R;D
zvO6ax;~QZ4PCmAX#_=zw7-o1|7^vz57T}bSGMZl3EOSWZ`ubS;nS(E&EJPrCJS!c>
znwZQ0d{P%>IM|oCs7a&J2$wRz(3)8p*SfdtbWC$i8DV&$`s-LYop`*(@U&*;YL{NE
zjgP-Hq=RD!1Zhy|>}Tv1thOMn@hJSo*@oaz%hL{J{nlTFZv%oTSOv<-ZWS)lRZXfQ
zV=TE?8}GKb-0n<1^G-&ZehJK|Xh;~|toJu1K0lEi<Z}~=*`0?X%hN~MgS1ScN1E2B
zJMY!8FwgV=(A^AEm|ab#(^nE*8o!Y}L+uH~zzi-C?egI`FUXq(`mY;BQ#32}-is|Q
z-T59Gfe!^MFQRtPP2;6<w5Y!vOD?n4WsPzCXDZmqI*xPqFCHeGPF?GQX9Cx_=Hw{F
zX>E1@+m-i6A=JZv_u%}2$n%)l+|W3J5K|P%a3PrLvO9DwxG@_wcQ~(tz1(=Z+(I3y
zbraXI8YuTYPsFxPKQnUXT%UvL>&PdP)2?tmfI!ZzU$~sdzo63+ri{hHulj$Rym9^y
zrXzGJaNMW#3pG?E^^Cl0%MrZo;dGa?C0kwn7)*4{ua>so9fWz#D=)FqFLyYLsVI7s
zX8g~&__7}LeEuYT9$}fD?4};{3#bu$p<m*d`-SE8MQjM=b}0X`I{fi?t;SCqDTl8L
zW8O;O@fR@H-bnI&?UNfuiD#tR<3Hf4{spyEA3;0?pG#)zf>8O1#2VGoxn`ZT9TU9d
z!vcD{6QmHPaiOk!$)cstRc~q|)z<%$J%?sXg*}xNqy`-c&Xkr&Vm^?ve)rCqJxd{O
zQJ`N2tHD1##peUZOjnyH$P||(T@cPxes`xRpA>|!U=^0xYKD3mhmi4~tsct$5oV{B
z-Wt+X!8)o~4)))xBRF$&!_e85{>*oy+MNLG6RRuU;)wlay@6FDuC#yoxt4r|Mi?gR
zca>CgmVdnbK8<`=+Dt37)rlQ0?O7Fh3VfX>WhG<24&NhQIb}f1SdxYnGi6nf(@IE<
zT)R^hx!1(c?Tqf?@UL@ti@=^JclVaO4=wrL#ot6VY<{lTQ#Z)^yN_nYOqKh(4Dd)_
z{IEab-I!gI(}kDb-{Chs{&LqSu$;D}x}LNEggT!3`a_+$+IZJ_^f2V|W!lSd<MDuP
z>^@0~5R|XLlyTxaUbnW--rONhl%O&<kneI-tDGs?QphH3Z`74L&HmE5V#mumP~K8I
zQmBf4<Ff9;Bgd2f11CY)zB6*CbE6hRz*+o2*85SizLd=mG#{mYAS*3e4Ox;C{6GrW
zWEo%HRccIh{ah)iMEmIHHn+O;pOe;7h;lW#xjmcjPu9*;fii<)L3aicg1x!zMi!}B
z02Lq9NUo5Xk6~M^9)V{Nmp+@XSWOB^O2}+8us^NWBJb&AJibxduEw?Y45x#`zbDAA
zC#wF<@a4gW?LeEgZ)hT(i%fKc;6<^Z`83SCk+6g0BJ#e4@jqnv)@ox^J2Dm*O7Yrm
zuG!Saj@bhG@p|#6=W9^QQ0|x7?mEv@h3%TXE&&^YS#A7mhu5>Rcaz=0;hWj9aWKr@
ztp?iyHh$j0zR%juKmGpp^MI|(7`DFFVYBNI?5Z2srJ!)Jx?t3L2VaYzBDXuXpf?ZZ
zp4)G7+X>)v4a3Iod(fLwU!=RZpYYf~cs>%q_*)xt^Oy|FebIUW$z-z(@5Y5f#bySb
zyIhNofu1p3+v0>TZrQhAUD3I)F;vY;k2;On&f;GOoktdq{h+r|=ab>X&cDc*kXNu_
z5k~B7xOWXUA$`SkUIu%uc7MbGN4efxuy#)^&K7-lWP8B8CE2x$^<%vEC>Jllno@@?
z$`$qsy?Hz9#jqVrHnH!>xMxLq_n{r{6?Z_O-*<9F`{1MCV~`XG8%^O_o_jFinb`l}
zqmZa~e`*EoM|;J4V|=~9W_^JyZm|qDfuhpby^&UY)DnEu=qHXruG30il7z{Kb=Vnz
zq(9ud8V>L0NKy$phg_o0J8ban!AD_7r^mswCVxmG$;!AS=Ruazx5&PilTNOxEk<D6
z(iu1YkK}FG!dv+1>2rtG8UU)~Djy{>->OA;hu(g6OK&|#4S<jhPc~VuSGenWl9+nM
zaQpGJge;nDlj$l>mI4oStN~E%obq-J0GSj{jR(5g1Qh3F=Q6O_c|t)<`+y=l@9PsN
zx4dvf-W=$AKm3UP?%!)Q0K|z!Uj1tP@Wx{fj?7)tTE}g#hEgeSD6<Z#9yzPWBXX#(
z-FtlYcpw;!XQQ~s`fvLctc!L`ZZ;;l^U~KN7>|>!47QcN#$A7DkL1}&d|cS$zy<y%
zQA@$O>&-zU%cD5wb;wv5u_5@dfi3p62Wu%T+r0Y7lpeY3r`$fE###y&{rn2HvHhWX
z1*_ckL9Vgg2gV#~Db!Zy0fS<PjRs!*Aa})ftq#N$xmIeE%Dlp>UunITLe4F4SD#S(
z!*o79Qs*i+&Bk<l9dsV;k^lYo{?mU*zyJIHE&Z*(`Pb=}zVQKJ8z=lH{44w?GN@K-
zsDyKEPa2Hy;6wBEH2C(h{tK=7{=v6LY#e-f@zyg!vCnJ$Tz-G0FKI@?Oh5npl@_E=
zUvl`y19Jxiw)y-d(bJi34$tYskBjk?+k|(g!LbF!Jn`WxoYlG$Pjy_q9lJ3kz?5@W
z1eNe%ioTR|X9<N#A$Xv{p)NZCEU=8lGx13QTg>J{Ur~Eix{{pNvB~1tfQ<~B+G}ga
z$Dw|-U|cB{PzAPuoBlD_rbc^(aYwG7tLp(=;w4~1G0zU0v?r5mZGpQ-VYBv~VO!d^
zTykG-*q64uG6%U%kn@_{Ozyfc(m2<F4M9bjgDo1IP1f!<u`?QjrSXpv>~Xq|&2?_=
z{*eOgD{^f%(YWiE&K@n;yMnFLc~YGgv*!zJ*4MVN+ZZ~?6^k-j7pls$F_)IUWYJoI
zD(}{B6OY)cEtbiG(gijy_G<j`csCi(OT$*K$(62RlOXz125d%m!;1+exxKbp3PEoC
z>}3U8c$al-me~s*<>UE=kK%Ewg7T0;{S33$eCeZNU%J57`GFo=_MIiw0}#C*z?SyQ
z0G9ixin=7p15A!>#U34-%eAiCtI)hA`s^hq6jb`~Q?3EP&s|74|0h}a&|p`?HZPh;
zwwpAww|Gzp^$BKMlu=q&4`NyXt1PpP=R3MRNARBCWct;w-_URV%8lG-L8dtAw{o$#
zax$IP+5*wK2xRtWV<Z3h*(WdMd~dpM0j0K}@TMLu_COXeEcEtUw?gCVfz8|p@?}w<
z!lKxfcGef_4%&}=hc49(&T4CmeE{tUz~eXG|A~BOX?(Y7_%@F15&PI)AA!y7*q#l0
z^Xv0EPx*+=->o3g<q6ox`hx!8q8;bsf1fP(2jq(S5Rk<McId5Ma(Q3KZ4KL%c9)Cc
zzov8k8|uD|*f+5Sxolw@?RoRvEV#Lbjp%VYe@Lzm+2h!k(7vj34O(37OPkmpvd4$y
z8roO=z;J!6Bk_gg`a~afVUHU=YJ4`HztxwXBG-rdN_^f`oA`qMa}7Iulw2R|HO5oc
zu#GyuW)pnb^V@xkS<v>l1V4**XM{+N23Olj<_@P>cV}oaX!h7ddX0(0$_{{vJ|<$4
zdsYo(Pg4tmFdDwt`MF|%hT0$<IjNBy2SH=o41d(|0KbHq0Q<vUCWiMo-)jv3F2E>T
zc@KNZbmHIdWIKq}2soc}X6SU_ZD6_$R0<|!U9sT_0B4f2(2hslva`3W7};LS=X({)
z{n56`@07h(wxXP`yE*9AlzX8J(CkwRMx$F$jh-lF=TNWm3@u9e)0Z#lv(I1BH^2V=
z*-&oj<;y$Wu5zA$GJo}Z@4hD!#E*XbQ##%s>E%hc(Y*Ei`B@$leekufXtuD)@gM*3
z59HaOzkDUe@s)R82+sH4dskMZe|)}=Yz040j9;FA^W7i(h`#-;Z_=;+@;B+HAAdsM
z|LCLhdmiLnKRaW4dH(aQU-~A!|CRRyKg;aXGhWV?{K1Dmrq4e8oSwg>i$UM|<_G81
z>-~ActVJ*W+kf&$^y>bep51CYzb8+~zx^xU5WD(EfA~jYD=%I=mn`33{pD{+k7T*A
z9RBDBKa}fUzPh8E+Z(z)|K{Dd-=eR*|DL?7@am_=u@3Hf=cc#LxW=pRT(+qNmsagH
zw?M7h@4#JeSzieH?rbF&*icIWAKPf3jap&Kfge5(y!yx%-M}{T!>?nj9ky!rm;yG`
zBZ$~!)p+2p-&rk%YH|a1A55-byUI;JVAJ!<cEMJ9UVSWD2;D#lwG;xjbm5~W4<u~)
zs2b&J16hZS2Ax-}LBV&LqTF*Hu;*4^!v-5*myc~~??z@r>{#aT0UHOzX-(%V*kXMR
zmD{B~uGK4$KEtc~^PTMc;2JG=cXv`uQv%=SKl$kgS=5-?7GU$A{Gr8n+6Dh9yA1ea
zu9EvxeB4QU&f-gCY!F|s^<fqp3phK3#|9n*{haF)2-YILpR*u!yJl72ZuCTCeqtK>
zd9*i?>z2Jz$PUn1h0P>vfmCM$uQd?=={fY1vCSbYfuUseX^W1j69TidQuH|=EbP&1
ze^`5N!Fr*Xplm$l#@$S9qAP2c8CkGKyAUSnS*Ie-IgPBD68ef#&9t$Ck0tb#8nN3h
zF<r#4jNoF}lV-tUG6`(e79(;0=1)~-z$V@`wcv&>3^cy%mNi~nt|K;)o6%D^Hse^2
zJiJpP57KFFNuNQf*fcBK=`2zkBT*Zpcp+oM76XP9utlAw5UdY25#<i-ND&_8COaB6
z@?h8_w*Es5_x8#6h|TTM<hmQ=nz6{S_~H+h(Ow&Oz1u5UAUBQn+GDE$Ym?h(kAu#G
zP1InIX_RY_dy4i-#qBl9HOkFDOfXjgHe2w+RCo#ZP7&KQ+61tbRk?chJT-eI8^@v_
zh}bUd(QLx8`LiuZJNNclhVgvM9-G_;oe$WUas)b$1$T9hH~1*mIj{vkK)sI=tgwk7
zH!QHwg&%0toy|uDo$CW0^aJ+j*3Vb4UGq_H6Bm7H@Si6nfr$f@Z>`-<#}R^0%ZdQW
z9r_VnU9JeeqhIoOU<vlTv-xSkVvz}6cZ;CFUJL@npoG$fA)=6iPf>Md9|u!H>?&Db
z*Ni`8+M4=(%zP7%>M!4R=}`&`A|dFK!ZjGbW59PjS|Ga#xLf=wji)^7QQFP+F@}%r
zpzdjylk-gDen>)$!B9TXPv>iV+T*-DrB!U3*O#6PJpLZ{s)ONS;g+*v>yTBuhHbnS
za>2bLwk|kauJG=McU!%G3cUN)$>MjZT(t}w>>F~sc=iVN$F^gkbWQHqQ6aQ=sby?O
zxz#9_G}M?_(RpVRqdi}Hw=J8vCO5`2&#O9F#kTcq{3c*e`2p_w6`QC*uE5sWYi&sh
zV_)j*akPo2`hn1nxCqsH;Rm8zqaV1|mqwjl===dcF#4$2@3;Jb|2Ej;Cbnxnil4nA
z_iOeTbzXxH8g<_J0Sejmu`gYd>l6F{Z0s>Us)li<+MjFVQo3kpa)ewYjOACI&r_=-
z^twl0htwt_)!}PLDz$M=<A+P_Up9(522aS^;?@Vve5DIvw(O`XnMcU3TuNWup>3tX
z#1EOSI_aF3(mBy31acO#Elo0ErWP>E*j~blM`0;oLpCTfl60ci1lHbduI(cqlb2F8
zWA*Oto<9BTm2*xBm(_W}f%ydQ?vL_2KJLyza1NmV_@_Uk4}bF0^EEHeLH@h8B523Y
zKlw~5ME~F%=>PFgKbBzKz424=WcsB9_0RuyzW2{R{fz#}AAgTN{^S#BKb{vCe){uI
z=%=52N<TUO_oJVDOn>yfAJS*9Ug@?LlNn>=!kj<)$<OGIzyIO+zaO8U^>bNZ&}=J}
z%g3Ld@&4@R=Y@q&<<Ae#nD`pWraa&4yFd8oyx{QT^Ye8PM1r;UGQ7$9r$76cesccv
zz4LE=bbgnQ&v;+mpInY`gwe*L{mm=(*x9RnsKj<0;v|E;#&))e$eW)M`3fM83vARM
z%jiUhzpIm8$A+B*X#-m+eJurzQ8tG^2b)R5y&<={fxQKr+cdh=OKh};ZD<#)0UH@M
zzuMZPT$gC?DP8EOueDGw-c1Wr)eCGR_E9eW;Tzi5blzdZgw*b(I&c2r0-HwEtQmAr
zJvNM+qt0VZmNjg#Ucs8Z&VwIm8n&ku<s(-Ass37Ab57wyT0i2K+7>?~3%6nyL<`o*
zud{J4yFYC^Wpwi1{A;4<`!%qfx?K_EAN}&K=KBRJCUywyQ2*f=?XglDmoQ;1ak4~1
zfAFHe;NaUF%HOb~lafuA^h|2(NOrSvRtulD@<Q)Ci&r_(ou~YyJ35>yXwe0CzMjYC
zlW|rnMU!z>PuY3Qg>yZV2X0DP0%!H&9M_YzH*Dlw;Ih7z$!Ru}yB^qzEY!0FF*Y)6
zd<d_;VF#~12L>J6$%<Z2$?9t?f&YCGd{b6x7K}^0ASQhc*d-9Ia$#vp(QEdn#;2{=
z$am!kcRkZ|9cPy-xa*ll<zT$};IiL=|J`aSC>Qu*{HNp`>%b<Ih{gr(atFuyP6KL;
ztp=U*q7ZbhJmz!IIqEza=Raw2@FeXP7@VzM0eJNTHq<TQd-0B=f}{`$+NT~nFSrUf
zeX(}Kc7Eo~!RkIm>@?UbX*=7(UIOFbu2)`tmLurObn_GJRe8;|UV*-=Wb<>!iP&7O
z=0D}5$9VIzCYPWu<z)8Q$yIAq>@8@IzNFY2|2w$p7n2kC-<wUCTuYG*by>(ZUVZON
zi}sy^B%Nfz#)0tt)VS*f``+YgH7a%)yC9S%F3OeveP=Z)njbJ~0q;xMv2g~u^rZzl
z2e#rI|B8K4zmPRBuYu_za^;10$2RF!@!4w4h)uA4nvdH14vtwC{H33h)&7Xs7Ohu+
z1Qo3jV9$2BW?9^hJ__w(uLq;334IOzQ>ZB;uRhi0qh|9_hvuV__cg7b0Y6X%KTyqo
zqF%x5Iyda7sj|;j`y<HJd=wu__1EOOpOX7_U}H4W&pC+CzTV`@KfT%QeL+C#7oh$|
zQ5_$cijZpn*tv54bKu458Dy&gP!}lzEPaFd#Kb-)dB!3&0Cb0@CfFfZqT>)_s}+k%
zb)Xorv7_pOMy;irCt++%-I$5*V0vSZ7#xy$9{<JWkO;WI*PP~7pi=C#=&n_62j6xK
z#Fo-_<8tE4NfHB%3w&uc0r)qZyfzyLHXpN51cMj)-sn6c7x<KO<9|P2&xg0$4r*za
z@BCwjjpyLP1<u^{Ol=dfS?~$i_}Q`j7_puIdoOigdcN&!*jSdYtX{!xg&%$n*xHVm
zhMln?Nhjl5xHew>dtkTSx5t4CT(A#vO@^H@UBf1F<#)4oNxZUqaXbGV2}YAqH}N%x
zz_H%RHDD8+2W+EF0K4m)l#L)ku0$O+*LjfZy~%Y7iCNPb+ad73V;8g3#SGZ)*dB*=
zV1qqIxt<2O-bH@+L9QHF<#sY`_|AvUPXjj4%|PdOW{-|-kn6qGf!Kk{d+1BAu3%$1
zL2iwnTkATwT&>mu<jVHSZTrxdrWA_WhQ7qu;Rn2*L$2rFzp`2iUHhQ((GLLoV)iK5
z(Qa~$*xJsup<cnz&qp71KiKQ>2|kK_&i(n_I=Pn8*(<Q85N`uE$gQ)-4IfnvTN>=O
zZ1^aiKe!)&PUlu%BkDXRk4{#vKz!67R~mfOvgHSo)+<;_UrS;1Q8f6d6y%DU07#N8
zC2;<4j7vMi>h(2j97J-c&i!=GFHr`IC+Xkm3mq3b03=9M+kZX4k=m*-=r;JDIq)vi
z;DRmMSTR&&yRhXIf=SlSzqr|hCPG(m!1H{v?EKcQMudVKr=tq`#(%H05-7-VI_l($
zv*0!GyhsM{WRqxa7ykF0ox9ViKu$g9H25<Q;aR}Cvu)M2TlvyJ)r}cRv7i{s?e6^B
zm&ZHZ2~dg$M<n~?4EWQRM|yR4q_^KbJD)?L&+hNe=Xdlwf9}r;kM&PK{<%52BGd{$
z{P+{+xaKVT-}v^oWP<bG|Iv5pt><_2-aGH=f&nT2>dWIxdi%u-`ak^hf75q5@b5o4
z2kd|SJKv`7eEV1E^Uq(21N-E&&*{JZZ~hVe`uX2j?%bKU?a%+luhHSp|E4TD9OskV
z|K<7Lzx69O%8hmZitb;&qQCH4e@;5er{{$R*55z=?hoX7f9tRQQ*y6=@?FjJ=bZ&C
zv-{J%6w7+&op<Q@^IQ50zx^Asqv0p#MSxOH=Y@+;Wyip?+Z)dUha)J)T`M~Sc01q3
zjEvuAuUh2GSJ*>))N!;|*mHuth2WuPoLhS`p7R<q*mK-&p427~T(ovz+wsT6F0W$e
zW53duD7Kr^ir7Z%SOm-0u&rR1zLV_3zp6dU7H`82Y@Qi7VvE>Qx}acLeKy)t<9qjZ
zn*>&)1{rm(HSA2T$~$3lsn@Yl@1wTl+OW~3&S8%=U_*P>T?rL*MO<KaQ|I*pTOP0-
zuG(YogXpn3xA&?EH2}zqCf>Nev|tVF*FK*4aQ|uNqyL;o{~Btl@B#nIzFY2RgY>Nw
zDm=H}>mZD=L4rTT#h6r%?AzP!C|L!jo9BBA0#~10j5;6t5|wgc6J!euIpuC)g~CF`
zn|xrQ-OdR0go-VpNMMzc*aUM$OCdA1DZ2&~Sf{z23$=)?FUw994zRHFx$hX~x-29K
z=X#Of3Tw6X(}g*y6Z%dCg|ucD^CVCvQ&j`~q*NiLsQm~wMqEMHK|)DUfK~XpN$%sE
z)<zi5!KFf|H^Y-azArzoVdFM_RoyAY0Xh+zwkPF5&4x{O5K7i=azCJi7K%-3BNZ*Q
zJy}H25{RA4p0QVv`{YRt64n%RPtwlUX*f_+rVDJj7&gn4kwuN9l!BRz>$@dyh+L~K
ziV2m|`TtIfF7zuleV3?nm#bl0Y~m@43f9i&lkL=6N^+eGHBQYgSMh-a?(bqc*TqF%
zB%H1HLaryHGg2C}|B=0af3{^w&cm>*>RxN_bLP$qj{yk`fgw#2Fcd*6ECv;(9gLtX
z>92N#e~?YVqA1ZKDVr3H2LTMg!94EVx%ZsC*XpivXXck#S+%;?-scRd2+f&AUd&m$
zR(F4$nU!6gmH8!)<K89Xm|tSrdRMcl)JMwqYS_rJEk*A+fxDjRlH9i&Hpy--av$>4
z<jPb$7b3Q0)!?AmBkZ-w)#ehOOW7(36Lozciczo`wgkTSgt^w{lJ`d70JHqobZ-4O
zTE&GVN{4m-YP|Zq*&}nQ`b$g|ool$$vFl`2ooC%NPOjs@50I^`ffas0{CcvvRxp<e
zp;dxrZROnLHYxTMOrKM*R|$sCN&SG>V|8reqf+Zxb+NewA0=%cs8t3i<xuod_WUm{
zSEWc`TPHk!b+cLD_iOK?s@VjvnN0{boonioYG;qCbMm=Eu-AmSCUV{J1G=$}jsB|d
zC)MOetzvS)=C@Tnh`p9j{TZ-{&k`S1nq0ZJN2)GYxi_9$o4qb8XLMSnfUW_B7A?U(
z5%iI4`%HKb;PbJPOG|*r;PEX;55c`HA&@MU1S_(%r&-R2{^T-d2_!1VxeL}?f<#I<
zHBG~q9xMOXH^i&cLncoE`Ls6y^ivUYXjM0qLTW|oD*-C?X$M5N$xB`4sm!1hf8f^=
z)fBUjmK?$#&)Pk>mQi06>Nhi}w(Qb^|2%;)&=1R{g8?K2VPZD&c<qey%X*-cZhXX^
z?A~?^O#P6XrhK>HndzVco8wtSzZHyY$OzAffFokDzu7TeHuO$JYfr9{dK2_osp&bz
zAXd1yy=gV-srxrJLM*%3kD-?86Xh1qKPCZoiFvrssPi<A1#EVF95-w(*8`mz*1b<B
z*YW&DsT%IXWMRLJ=kM43ZDX!Rxdz=iRZ9u!aN!<&9k(||!M1Vk4tw}6JuY(YbQ>kr
z-r@Rd6RHSk_-&?!y%61u$8+5zsRo_vt%r>GVQ$^%Ea=?i8tJ?ezVG^|(TCM~D_7Qo
z={#UJo$vXfG}v6H^N0)hkNjsmzQ%h`X?L#0#8I2~Imof|_xyeEQG0Wx^BVzs#Ae6G
zq*~L1%eD42N8NKM{AcHuX93Zzf5f#C?$iF-{6fNs>JHl1e{MDa?EdwC^`%G!Qz-8g
z40t;NI14}v<NC1-%I<=dkX@lA9+XFpe_iwy|9;#9z^GJG_kC)aQW9L7H0#U04?P0X
z0grUS&fng(1v|BDj_3%@cty!D3^{($AgbgWhJ|60Ous7B8QOGnlK<u1?XQ3Btpw~p
z&tGm2`c+osd<@h1C>*66;om)<F475JniyfHQ8q!)pp(z@&2N0>YT(U;%hOd}KHfe&
zXcLz0d|&+Zi!I3i#TJzRj$-6ZhwHXE@!7BGh5+wYUAEoxFW+fH4Ay7W03ZhpKYRN|
z18LX+|Fa+bSOUr4*ft=f@gf4aoK3?Eb*@n05C7)P`C<Fr*F-Wu`H^mTyxRhQ(=<o(
zX>zCFfP+0w)c@eFJ?_|R?#<Opwb!t~@nFet?c3RMf82c*&i5hMY+Qpvx9-4xA1eXU
z&at=HblK_-6yx*YNMD1EKV74f@%mXQZ?ZiM<y@7l0A2|cD2%tc7w6h^gRNgk-NVM8
zJ-M4)bNHLNNW0V;v87hJmG-WUKbjs)Zf39gEUJ$EuDy;6wWKfX75>$99v9^LAk*<1
zoi}GDjez-gU74f%OU?AZ@t;;6%De20V{M%Oa@}2D-}`dPjo$2Nyz~9&4YKFUi)(-1
zUiUsSp0#W;(=eZ^EkgQ-@A#tmseZcmDF2uCc$hgWwjxuSpYO5(Rh_GT7CNXZn?MrO
zo@ZpDu5vs-yZ9NltePp2uz|IrxfmJ$`>G4h4Ei#@sE(62BAsmW47}t@|G-rV$ifcT
zc-*i_)~t{B*!bG<c-iEa%>PM()iTah7rZu^)xK!eMpF{dLWI<@8I8uQn_qlxc@dDg
zRh?6vu`yPWYqH;0$0pbX+tOiMz->Qg!>$=thE1~PXI&2{wkp`=8MtCo2Us<U1K5bX
z>FEqPYV+@g&3Y$HL9U(Lq*sk*#~U`2yU1<PY~;+FyRxQQ2b~wOH_@qatUETATLtBp
zCPzr{Zop>P_pq_tSm(Sh;!Q}qH?!9{VAIUC0h{zvm=)U!e)wzwPV4`Yys5flTN^c>
zVq3+LOP`*ijhhXdWSCx550hhGWn8}RU@NQ2U2H<;THvl<b=^8kvsv5RRk`xBZz%&d
zH07Owjid=1_yJp+ORz^CUm^G42drlmbGWM?0BvCo_Go@!0YChVUS6Pi5qpI_)_~3Z
zz<fK;3)bz~{J_p!lDWp2`=;|%ssED6y;S!Day;ZZna&9f=MpNHD>iKgY<0&6MIS}$
zIIeooiie0j4}Ku`eqh!rgJ!R&DllwQ@1xuY1s|2m3qGotkAfcva%DZezgo`=-bgvg
zdlSDqun&@~x>XzTv5%O5omYud#zvm?1ei}Ucdkwaq&)zZ<*J)9)9mAn?Zn?Vt9i!e
z8h<n+TN6sW&lBv=1A*B1(0G8#eV!-ZAP_d)r0+=?FY*cRz<Le(<UVn^-U5mt2*v*|
zHD2i%G>vTc(hxNUkcm9A)RSTYZ#4hH6HP38*s?vbcC<`Y+Z?*d293wF?ZhlwygOSZ
zkNHBY5V52gJNGmsqS(15i#1@k>cf_lh~wcOJiB?gw=PpPAw#&7-cMuPuz6<cfbE2H
zuUJ!Czr7=Dc5b8TxrdGC!XqbdQp*yb4&*BDh}kN8TH+Js)(m~b-jb1ex!uE7!tXo1
zBvkBSe6r_0pAR;1#yHD5QZ-9P@Jl+!v3GU8gDu)4MV;TX*WC9~^GyZF#&pgxs2uFo
zt6_Jr)g5em_UiU{U=t?SH72M*&V==Tjo2sa|5)x~Gb)^y=1OOeM7MJ(>Md(!S$rm(
zcXaN4V6aE?F{4e~_$X{lM7h?zdHxYTsz5F+v9Dn-JJ_NROGow?)>pgO4s;%WKSAd;
z_$bE~=9bAZ+UGQUKe9*n1E<p=HlFvKVD9$q>s);fbv|kvKfQg_1P#R74BMC_Ynu}8
zUrS4DZW|6MtPM2w&^9$be%&x14QK#LGc%AvA&WRKxtJQCw(V%oDS5_)W%~JU6>gUK
zvJ;VKK0jZzWM6rotCyI~XMM4{=?Sm}lDQ;#3Y`BOu%5YG38gDi#>s(#4d;5{a-~_$
z$${qe%4K1^Ae$u6&iBKari|$snW@J4uVscwGEI%MTAaUeR&xn#S)ugm%A4Q_jJMn#
zREsJ4qzl>Q`b@TiBSyscx?T6YEr#DdK1inf*WSF5h3G%~7ylnQ<~M%j+rpX6@?f*#
zEPY-;KfXCjNz$ME+4sfx7&DjsGM6R)_toWD&h?w$`PO#qx!XCDmy+##Hd$;zt1l<n
z7gkczy?y`J|MpL|h53aZx6J}s2y=ODF{9L%mUPl%`9;!bZGP>WpP?~|W}&~`^zr~Y
zgo5%HeyRK79d9T+Z!ZGR^ySkNeev{OQlB0k&rShFupvIrHQHnCGu*9A(aYvxkD3`s
zw~bz5pJuNkSGZ5ktR+4dJVd9xal>X0*&S?VFE*D9n{n4yyxj07W`WZk?1s(C6fI+Y
z4_nTyAAy(Arqtvb1FeS5<~bh1DW#hX^}SvSHOTQA7Q|)`QLb0x+0Bi+KF*~JN==PQ
z#;R;wZUZ*=QPlS<NCBHU>)2G;u?^S_+e<bv>RjZChpJ(hd&`ZRp3$9xO%UX6<5DU(
zp@A;0ZP|96Tx*YgPv@hLvbiMB6P|0^JQNCmZLVJ5Kg;hQ;6K@)vQJ`v)OrGhg_V{5
zA#?v3{!@Y!we<veIP1JNUq8dYs;{4=-wQvWjq`sx&*Jl}|I3ViFI*`g&j#!FQmR~=
z@5V}3tsFG!++O}n=QPfh!Co_-ZMGAyFQ)mI!GC;o?LfY8k*zVV8Y)_nnK{FF)(i$+
zfRfU;fX;=F(dL)cH_;}iAu(=8<$KqSeqP8-%?I(Ru?xm}Z`B>EZ?xOIm$@-(K*71Z
z12)3Agq4;yZjCuJHSDYLbz|IKs3u&iV9}NYTagX(Dfmam%l63uBBM0(ruJ*!Z=l3$
z)6kE=u*m||<l3<LI0qET7Sn3qX$I8?usJuqV+&m1Lfw%YHekPtt*XvwN9Uc~60(zv
z239qosQm|4jORHdhmg_cD7UQ3)w74Wh@s7UsobQ<O;3)k-qCr5%}lOy*z2U&^f{D3
zGXiYM<UZP?yyj~lFgIE|%iJ#rXdAZ1U9XfV5gYB=V;fIV=k@~S8#WD_XY~p8)$O&6
z*!+1<645NdUOTx@``9|{HQH<5v5D48fqlDGtZ5Tx(1cdYKyQ9PE}c`G=cp>MbMvuj
zw8v4dwb`54<B`2muvcIc-u;3qMSIzUACLf7Qk@GIyv-%}DCLQ6a+YlQ9c<A@>Bd#_
zpC#!06y!!x=S3?hv|m9B2&5T4iUuD=py(UyF-4uj9$)fNE%>nS2V|omYgI3W9stZy
zBzlO!3VHp|jaM=oNHwfKwGTsl7ElQE$@gkK0+eDZZMe?c#(_T8wU@*UdO-o0&^xJE
z6TwWACz}@dg%+HUiXYPFllTF(2nu0u`qV!aNj-!F7OmWC;~u1>m|PH!uPqyNOh)pA
zoRlbLa^`Su%ifFuQEN&$j?4Mr&)1!C5By<4<Z~;Hl_&kXo%{=dJ$encopIYNIl}I8
z#5<3DmrLWhWx-%OpI0p```q<=fn>UaZ5-D=I^o`O-n}=OhzHp2$<@Y_`QCfjh}s%)
zxOT-mbvdvJnb&Ej4@9`PJ#0dqi0^s0cDLF13VSRE_ht!<(H?WaHt$rN%fE&yh;BSQ
zH>MZt?In9nJI9+nPT_st?K>+an8g-so|{d)2HQP*Os~K$_Gnm!c|Pjg&Oh2C9oU=s
zC?#p!pKEkyu9(jG-j95g1*Z3~nT|ciGt4zP*MT1}x$?Ek2kJcf&xGUakz7+_py{yl
z^ZhmU`hnQifX!*^N9?sd&10;U=pae9X#C24Z%MKV_a<vWO8(GOv#^Sh_P6wbONji^
z4=nq^GahQs8C`MZ_>i?1G8?z0jlNh!4(wL8W88?&15J$=S{DIHc$aI)#;Eu`mp!N4
zvM|*qbbQ4^%{DIzf)er_0A&JV0_lTK|0ZSL8Zq$umpe-kv`l{dI|X^TaN4(m|A_i>
zlpF-<%}PjLR;;3dvmb;@|F3?m*|X5cBnyeFY-I4m;kqqa-+lFt-ZOW9)r>gf-M1H0
z4z`^pT|m1Q5@e8C*<-SS@V_diESnBL_|Z@3t1UQxxva7gQ=Aaqj8X%f9u!O3NK^xt
z`ls2(iv}2I)j-5`xd=xY_dDQT2^{$20GwqD*C1D;Nr-==T8E6?eyM1aFX1=~3PfG`
z0-)C2@;wuXO=iQ=jZ@1ix8Do46rt^7vwzok{yW%+dfUs8i(lHV6|k?gW3L#uYmL~V
zT)TUxX1`?EO6iVuEcP&RY&&ur{7k1q$o;k0?D%{KoBJqn=yZ!MV6S!PM=<Dc@7nQN
zW%wHna-#v8EDFPTymmal>o{T~>b^&83HEq{+s?;yAEmet>UX29{0{yy+e5zkyjOo)
z#IKnD)!;@iM`@u#LlYzTe!-Dbn_F^xZn8?v_v=I2?u(kQw`Pr{bWh0Uv8c;%aGCn`
z(v4jE&(Z7Xr~Oesr8<!8cit$z8h3s6tPvLNd;+hm@j_=C*B%t}8Q+bwI)e)wJo!AX
z!D3yM&bCOD3``PQ56Kee-zN<ONhTXFfKM8@an5RaDbj1Rh01uMfK8u|5@5~DS&hx)
zi}J<W#-VasR>8*C5iaoBHsb^f_XLn&-Ktf82{a%@v2l`Zo@wB&w=BFO=jQw8YYR6$
z8c(j45qMVWisjnmN{~C>g~*LGYnQQ|AXlaQQn^zxj`bv*=z?8%H<f?eu*qfzf|epz
z!**So&XaBoiq6mKS0Xl*t8&-NwUct!v(8Uh=b2(l0h?y0%~&i8r@F}%8-o)z0c_J<
z_~A2pDX?6jbHPTX=^UK@(H<E?r}I*r!bx;aDtD@iEs0!}o@Oy@C$&$}IVrWv3T!Ob
zX+}T**yJS&YoHUbYrldO>!{eHBF-hF-7=j68&T_5U;&0jx#%0OKDg@>c`pSS_Z}6C
z_MphRSy6zEf1^5Adz5jOv&k({=(W&-N)oU=D@~WpC6&ANQc#<a<eAIja;rAaVH4bc
zK)LQikR820Sgx*fQr|9goK@{L!w=MA+^ja2)JHjYJ*iDp_yL}i=QB2wK~FmRfz#PI
z|B+1zoonw8)wy61ABC6ppz|rW-XGB(EBt`<_NcH&pG&khox5DMM}=m#sm;{jqih39
z=DF#-XkQYO8|&BRQa0?E=V}wdM+M(5<H-UHut(TL=lfT+zv<M1@_gO1_kmbF8&~EQ
zdL?L(zV%L+-PbSjUNynL3T+`L7(mXvfxuNcl4!AN)%2qjx)gsl=%<E?OWhE-NZ*pu
z#*3|?Y@Vyl*hkh{{ql`I)ip%FoZ=v+uK%o(^}4KGFiPZEZaM!c1Za%Ydh7|npA{5+
z&I`@F&pW)(4-XG=PU#6y%1uV`<Kv^~k*n<`06ApY^6_j}PsX<$#`)TjS6`@Uxnh4&
zzsO^A;8@?|tmbw3J7A0B{J)HiKf+^P>kZ#FW8=RIHefe9J%MkVaq)Y&@#^!vNLKhZ
z#+k4zx65+OtN$+aQi$Unwo-1hY&UEb<F(#$tPA$--|rz;!zS37SAV<yGq}L{SQ|IF
z3XeH>_4jnn*AQ;{0lQtBv3<3NeH-U{V}0!De2Q{KvQw0+=zROV>wIdw`c|1D*tT<D
zCE00Tu8eIhw;by{UZHc^u~)%{L@SwFs9fQg6K6)VY@b6f1+5BQy18W7_H=I8%O18n
zI-eo;^+2vObZ&CB&7&wc{tch|@&dM--XE}uI@s&YTq;HE{ZOvkzn@}tNhz*#*5h;N
zM=;u>$aTj@CCn9`Gw*`V?b_xCIF@n`+w~4Mlk0W6zS(Q^QL!h$>A(+sb)@s)2ae{s
z`_Ey#lPiyhx#a#8KI-~{y}sl>>)=19;6L97{~578KAh#e<8!GTJeN`!x1InOBt=_K
zTFtf5w`z@3)gd-TAN-kL`hkV<r6hJ+;JnGX%V@vh%MLq;{Fhs9<yNM{56=hZp&xmn
zuX1rOvynx0Qciysv>2?GTJedr2}=^C3lC(`=4+4KOk~xUmsXZj$r?my**(g}vX$rU
zm%8w|_1cR>t=QnTRKAsCSaTeCkw*zfDJ>Iad#ng=K4WH%ZHqbaM#Z`<KrdVc!Pzg{
z|DLwNU;ou#p<n&xLVx>repBxE5C8N}>D`y_>1#jznFjPXLp`4>{l<5GRTkOb`sUZ=
z+)r0+?821<jO-`#&lnv&Z^89*I(tA*bj+D6tcPJch;ctHi)SPL<cqK9uYUAn`aA!-
z@6orv@tHIe<}4lV1z<1r{K8`mISR6$66AV83AJn_Y^a`@D^zM>C$5C2vi+Yok7xSU
zH@+?#72o{EH$?XAV034%%7elJmjzkjkG6O@lDqH9)v&v+_ddVCU2mm>V_A;zzdxcp
zslT=!&vJd7Tc-6CkFSJ`x7p{?JYYKo?7MTx%E$^bt-^RRY;nB9miDnD+ips&+|C!%
zWE*(NotQi<YReoP<z_+EX~4$Z^C<-4du#*t8@cab&!LyX;G=HjI`uy2M(36h9I*A{
zdpfT@_JeW9R&`@eO5Uc4VlRce*amx?FfSsu80_wCLOK8UvGw*SbAl)3`BA=Ku6QT|
zt26`5T1lY(vJB<T`KHX#{U`h@FDO~*=G(g-0ZDzgR9xWM@POl`|4T~Yy9R?E(L`t|
zLkZ?~eeNj|D_Qa#n-F`&My2Ug<VyOAZh^MAF>0IH>0_S4zd#>-q+r7Ya*<EgjWsFn
zOd2rMmu8haSCjA`<T;cQvgs|ewe^L_C*?603KpT)(B{zP0-C<ms_`_#jROd%>Y9U(
zq3ZT|Mdcq;b%;%@nsgumzwIB_Yq+*x(|em|wGm#s@OgV|$)ADO%i6MN_(Dr@Y|0bP
zShX2yH6JFaq@aIMK?p{{Mw-Dc*n(Utf^vc#a(<S8Aj)uqTu;bmzFxq&ewrFKm+Lln
zE){Z3O>WsX5wuA+#nM%3&mqGmKE<#_ol8KFdTc?iEH}Nk6Ddtk1?|)1a;2O-!-z{N
zBoLo-lPjJhlIa|=ElLodf?Ub5HJuBsPNIhGq^ScJ$EMgt=cJTW#cV?QyC4x|(e(fa
zQU%*;nN`SMUMR?Qz0o;A=d9c-`ejYXPA&`V751#ys>~&^32>^PVE@k-D}PpsA*-s9
z7ydF(0cehkKZk@mf@L{dS-4K`d1`Vsx%KuKv6);|ZZ|rwN(W=u<XJK!7%22In?0V8
z0JNZrE9;s$@m!ncwiz9;TjS8lv%dM8ZtxN25>=(PQMm@}srjfJu*qgN<ZACQ8D-+;
z2a?E@eU$ovYC2zA1zPh_RwfQ?gU-!fSHpI?^#i?J=jNk`f?S(DR?MXo=hD(LtySkr
zTc#C0hAqKIAt}l2)#TRX>eq%%lwcFjdwzg;y|4ulx7V0@v0e%%S<kJ@6%~=%mq8jA
zCk^~x;Da~;iFMejJsXvUV9j%H6Zn2vwIj^DU5l@Akzn!M=(B9yW$RVa_b0A0mwON6
zmOo|zDS0*&t%gpuB}?ch{c`Q#dn&chEF#?y&{Tr(dumBLo<OuC!`t)>B!;BqYq}nQ
zeZ4)(&uQ=b^zx_U&_DRZjMLOELivtOxIFHhcf7{<xodGjK52LO{(ZfK?cTLtb4Pys
z-ZcWYdT{=iu5mPO$%C)KHYSfbw%XJ1#<?$RP`ZyV?TmXohxV^ebgawq+}-&CwwCzy
zI-A?WHeLrO?r`s%pwn|b()sW^$Bw_<o3B5Y_YE={vBeDkINtetv)9t6HtxyoX8b^Q
zuklgiZ|=$UaGo3X@$cb(Kg?S8&vP_pe&+5xH|+k-9?n`n4&AGdy7OGR_tDqqH2h8P
z=vLq6@92Xz0uD9+nt@udlK(bQegSlIFDCfW_)@%r2TYRkMCZT@UG-eqN+>mA8Xop~
zvV`B;xRqq^D%E(PCELAJKY!!+x6&5n)NdTt)*TEb9?Rk-XUXJ&Ys($hz6U_(fOyd-
zwd2WeUdp$VOW7Y%c35>$f)^?){f+MW=mvviF%)ei$0<7xr?Y1Aa2gS>qbHTC1V1M&
zlaa-Dc(R10h6m<*ZT8vm99Vnaf^ToOO&AX5@h;Z|J5=2?7fj(~InrY!{~w>688!f!
zK4RxlxrfyTG;p|j_OBuAU2FfZ*52mG9&b6;kDR5b!<_ACgQL!qWy9Z_E#-yrm*!G`
z{xXc4Be2Cphb?SajR>knq56^NAVtm00h@aregO7bP31lJyoym9>+NI5T*llOKWc%s
zn`=E9{gwu7dmsMAO2<yx{fs|=)!q#I9=bZnbx&^hu?=_P-ad7|whD{fJq>D;TU;pl
z@xdNbo1?C|(#r3S{pl2f4@CkgqEEbZCj^CPSv;s{8+nv92x?`9-8?H==1B0re&2Q<
zov%;+d&4$X$-MMj@^OgOFUMl2#l>UX?mFJ<=F|Py+JU?eg_SYRXZ7WTjX4RFa1e--
z3s%s_O_OsfDpgfNMhYPlEtIxS$m9o4vjkJ{d)dUCa?4c3crvc=WI^^S9Mk-<V2lJ3
ziEgk>5u0I=<BMm>6~~V8#WqNj_a|~}2nZQA{;yG|8O0a+o?xCTcP|2mRqw^IaTaXZ
z!<Ky=)v!%MvABkN^P~>QO)C5B_sCG;&jbpr)%B2l9_zW-3=rssPL&@%Tnlo)(K&3Q
z9ALA1v#LXto86mIspPCdM3tM6oA?H+H^%jimn_&;Y*^{WA7>Ne`8oA;j)sM?<q@0d
z-1yyd>q#XW(P)0GHqq>{@#=%-WgA@09#e8T3jK}QYogX{wy5tG8lp<D3ENl(Hi~j3
zm%EQ6GrBI(9@|_qY^&4p=vupB<I&tvSGnA%(LXH#TOF`Pd+f$11g1^y12(l+lCg-*
z1I?oH+)@9TJ&GR~<QjdH%dIrI?fQYDHWMk9EJ2FzU42w-IuF>18ck-l>Y{>8oea7g
zEPEu79CeP(u(k71nyeN5z_K=44Yx-rtx{~Y4EGXzlxzwGd+mLcHeK(r!GBKq#vbd9
zTzfxIg6~(Vp^D?dt6ww|KO>`0sIKsPsm>@`RUiTVq}a7zfzfDy8emdd!WA@E+5M$`
z$3``tUxfR!aevy`(u8{I0DlISf$NvrIdgc8uYG*tlm6J!ls{4lGi#5AF`>uan<H(>
zTJQG+V0}1G^wKAmTteov#68gP)W?yCHfGsA2&Hd7zGB@gnf(;1;>>Qb&XxCj*qz*O
zNSbNYEw|Uci;V~gl4*Bb?tNW5n$l$(kJ$Lw^VAZd)K^U|H{rSGbC=TdWs|Op>j5?j
z*v<!X6>RK_!Z=?$j?bu=h;lU@%Y9>wVKk&pO*deR*zMlx9i7|!KeP$U?8kbkjyflD
z`qnb^QZQ_%fGx`Ho?NYh@5mla?s=3uS3u=f-F?D))+krY%031A9OcF~ab%As*YgM1
zM5psoyh`R~F0HHgT@W2uABZ{d>eqUxbH4TwHj`@}bbe!x!Cs@@%n!u5G}^0FDePd6
zIzPhpqK^uGK%Q?0bBPYH@#h?>0wT5*+3n{YA7wt~HGZHQ2R1ui-T|?eyzKZWVKYJI
zfApU>^VD<#J&g05D;&~G*baQup8w?EynQ@Vj_-U2&m~LHjZ}-~`{iCrPfN}pgwN#v
zRKy=F_Vgj2n+*V4v=~rX*!cn|Il#!b%{QkRl>1!Z;?%;;5pI_M&Aj_uc6mN&W~y`k
zZ^Gli`!fudGc4A%@j{<ax^fl4D-Sd~CC(;gj(-0B%w?Nb{mvO~(p*={nPv$#u~Hcw
zS0ONG@YPGCPa;$fcB@mGn-L{#TvEVU&6Na}oo+I7E^w5fMxMyGkB{`(+qd+Czxpx#
z=!ZX||LN(y7y`dMuu=W`w?3mc^GOVJxn}w|fAlBxv#;K7LH8NijEgLW9v)6o*7SG2
z_gx8$|FeJb|CNjzsess^T%Moko8SBf{inbGcLmqw@<eYQW|^!KXsF<eOS*`De!57e
z7;XZKXANqZP4NpR_Zs*g|L1=rC9&tn2YD%dJWmv}7nbXVu20YYH`b$YvJ=AcJYm>o
zl9t=Dj#%cu`!~N!Kl=O&`ltW$U(?qfbi;#Rf}Wo*^xMDr8}z$>>vtsU@WR>0)cD~o
zV{N8ZMnC7iIY{JCFGQem$TViC#~u~YUPY%Y$I@rpkG%RkKIMq5cH>uI%NVzYrgOli
z3*4Tk{1#j4u!$411xCac#xLfy>}4oov+=MfG$+eW)3K$%eOLQ=UU2OrKR^d^<$JuW
zt7r1t1K+T_TvO}`(DzbUOs=V6OVK9yAv;Z-++tSao{utYeZPX8UJE-t0mL4$kh+*X
z20mEIt=GajVn4*zW3MmSW3Br=0iwOGYbRIp?J5ZF0q~@Oh0O<EpPnSJ#Z_3$)62eA
z{V8vhPU6eibx2Q@?Sb_CyvYBa;zL;cXXy8W@9g{RA#MJZD}T5eV@5N}XZb$Mvw^b;
zxe|bVKlcQ<E=n)M{*U{a7&gv&ol|a`!h;_;?>v|Gbl%ysQ>A72O8TgW?=RZN7B($w
zMK_jo(@ujpWx?Y6q?xDd#rl*;0=LsTaPw9UMlvOZR2xmYaVc51GpK0R*u0Lk$4*gh
zdU@_hKya1c3grYM3!3=69gj+r37pj481Ixq<5$I2t5Q--z*f-sRV$$^@QP-Zz_y}X
zl;dO)Y%JQ~RQ%`CD$>OF!#*cVO1Q2X<W06Ifr=hrTd!uH$*~!Sx;EMbc5tNoCIzs&
z+yxu%Z2|{28tP6d$aPh!4|zFU!h$wop^s||SGTMqR>$Uz&t~+Hx;D9%LFa}oj!Og6
z2?4{U$vp+RDp#mBORbA;Qi$9tntqzjz1lN*08ksjBG`Cs_E;iz)A=qo&GhH{cI+m1
z=zM})>w>;IDe637ZeXL7scdSnSIAAUai+7z(tB+D9J#K*9_%rPz`tV?b@t;+0hNuO
z{|KAdV`_74)^=H_QqUJ+k-O_0^lMkG)|k;Np<%~d3HDe5HmLwww5n@@+|3?Y=1CfB
zD^;D?quGSabH%FtFVr5XMr`_B{6NrY339D>>~Wq4KVUwJ=Ndnkl5XY{=-lU0)it8Z
zwG47C&0hI=k7{GMs1BP1L>XHeu;m>eb!3lLodj&H0rVs~tH4&X(lWAgW+WHg_$bGw
zKB`=;3bFZt=%aS+G5DzEs+*Vmz1FKxJ8@M2b0zV#<_-m#AT)srDfV?jF9cAgF{O{J
z*<yfzbQ9PEd)S1N04fJJc<qoiwZook+163Mp^_{+$OHfOu9vYHX{iC0J!{l9F-a<=
zUk3kEYRMLs04Q#y_P;ZE>X+IH?nM!%Ml;D(X`WDWgGDQ0j>h@p={$GFDURcup4ep9
zx9i38<Vd-BjBW4QBC<R8Cg;VwdK@>oRM=@6Wb3~Jws`HhDRxh;FOB=X?O^u#wS&#E
z<Nl+}BhK;K@w_i#^J~-oC(4~_%kX!5YsTGSOT)FP?pG4OR<3r=I^d?g<AKR+)swEM
z*D2xs(Cl@T8`}gO*&E%r$D@0@vB&YeHa^(njZTR=TmKN9ANheBd!*x!7R(*Yl>yt$
zv9H8-c<o>lBX;uxH$G&v3A`8CvHmlD*1pmnUwdygV617UDh}9ep5G+phVyiO;Du|~
zS77tcfse8{q{IvKhr8##Io-|a_wC&_66D_`dEa_=m(ku)_dhoY&wBn~ptWUOt_a?i
z@qjq_sGks`$kMXNM`5r#sR6fLPj4<$RFAAb?KbWA6!9j~Mtg0NNm36M*A?fNd<`t9
zwb7tvap<_7CziFq9r}id4h;|NX1PH$fh*G1i3m9H%k@P1GQ{P-njNfVxjE+!uQlgd
zQJybZO2~5J&4U?lVMgsCzm=E^=mU~+FiX}+Ze8B1OO3oKX}leVF{27Xw6VPu%+u@(
zV9iV_J^}3`S$DH?x!O8ccCe<_gv*-MOvrMREFA=&2?1LUXcuJq`9mqIlA;~i1Ig7;
zo7S2=)}|i>h~s$N!0{chPXDm7(pi6R&nZ*}?2Xf{qwlcU`F9+mVK2j6>K@#t@4aJj
zd^~nMH;oU9aXiW;^*sDX-1Va$@ZZxdws`Kla@!fFVSLQ`roq{l@!SX4#)tE`u(IPv
zxyEaCi)F($j@$9$_>TW90Sh6JJ>F}?Mgz7Z?DiX9P$)R}d1~62huwmp`PWL-{i9S6
z`E4WEV#pJG8@X7#qQZ~&2i%}u{BLp3tRMFEHMIw*HQ++ifv!sC$X@Myqt5NQBj524
zP2SXCNcynn?l0uWH-S@>ALNr8H*ZZvtGg2TB8vsY2+f#DHkE3sXjEFY5`Yls=I7EW
zHsmA(@r|=O1VzDR?^(C}eYU{2{+_p6y+M2}N>i9M*rtm*1i&OMyb5iGtRKM7ty#Pl
zL_*+@s#9OdGY%OvjOApRugi+;R07Ak^6G1_PI+M^2A^Yg&eZxBtc^-Yvu&ze+XJ>G
zaICKlI~lfG5hyQyt@DiM?}FeS<SGGJkz1Ca`icgfjD20Lfm~8bM90=DE?BOLom8h~
zMQ}M_lZ`~n&ao!L)q}x;ja276!?Udwz*DZxL^X>l<%Fid(D957Sn%zNOUTr+^!VCY
z8_L;2o^qr6I-itMq}O?rt7S(jHf_WgdCE<$i&i@YY})vI3fLs7s`kj-^`}Xz9*Xjs
zH@PbRJD+>XjW1s1+OkS{T;|q-{stM%?I8!gH?e_5snpCK*8$t2WjHdfFC(kigX!Ed
zwo<^NRh(K4qWucMt1om=m}|ghe!%CF`2nKl2c&VY(Y(PAl;VEF8yt(yli-ti47r*g
zP<zdCKEZ|!Fr7<9-Xvt6XQj9?xn`n<%^LIaz1D&xk=kRcaW1J1aNynLD%cnKy;m=x
zUjgGcUVY9`7js_=dIDH=6Efn%W}N9<H$T)yj4IFq-|7dDxk&|8Jk5Wejk<C{FNK`&
z9uly*J(5&YH*D&oWW4I8X!B9zK1%G-e3W6&m}{gPh5UP=(W;PB;>_e(?#ZbBX3RCt
z{y$~S@{=BDus7c9&?*LPa;eD=tg}@T*EEY%`Jy?wjJ3KJ?Ex^^%M10{{mLm`{S{wm
zyHae}0O~*$zp4IJthu!8$&7W7998=j*<P&SQ~LBvc=ZD*ya$`E*=8@u;Is-WOS)mZ
z>$sIu^1d&!VY7XAe)t@kTT<YE2N(FXGtSrK#1z{Ax1<{01e3&-?K_XlJ9S1-6dTl>
zoZ^(WDS1^BpTowDPg|~?^9?rRhnH)o<P}%auK?KMbKjn2HvZoF739_z%f>nBMX-_D
zX|>}y>1M-b{R%AE$+MTi_5B2%@;$jF!#-fMasJo)QLcENc)tRcE3VDhR#aFRkNGp?
zYID#st2sX6-1P&th~0XK*tlc>gJYe?Yi(J)5u4cr1-V*Mmn5pLYr_`an^>-A@amgf
zQ)-o!k@J5!uvgQ0iEBN?0rqU7)43#CmCjymoaO2|$F-*@*C@9;bLq)?DeTDA>~Y<}
z_6VCWdyF<=I$un#ajpRy>->Vbq|g1ltMe<c*B!Y!=l{W65}O#XSpwS%xyH<Ho9EU`
z;WA*8=g&4~eITv}bIIjuNe>h<-h(|_GIE7YOu#nICA+uS2f}P3Hk_W}2cq2Q1s_ER
zK5CS!W8bdz{y?rgZrD6o6!$(4K59y>x%D2l8$ZCk7HqDK*tY-m9u+*74*Y=4C5_8Y
zo=`c3=h9{8xisOqbT!U@_y|j`mvQ?qg^iA6|EI;jKlHOp0hB_s-5hp1QXzL@t)zOA
zlZ@qekz+mKX8fTT#veM~=U772^E})5<Kg(#kC*JyRUPW%x%C9_?B-HDJ6{dBb_VG^
z0laKXIjzq-9MoR&VL@`phHtjx+s>NttD6Fe{`TMeZTefk{atyfsYLz5fiy_Kf%M=1
z+uzfLsMc8fxzED&nWc9C-_!s3@BckyzNoUCVrBco*WSLNzxTiYJMw$|bDv55*S_;>
z^k4tVuXsr=;dg)QZ+w@&``7>4CUe!%-~8@x(Qp6eU-KqS795nUMbZ*p9{A7x-tS3i
zY(lBqx4-=@IsR9dZ%cqqyJu(m-uJ%iW%Y*r8=rkf|M(yNXYyUMl{MIs(Jw(Vf&#C;
zIf7!P>8a<gmqj5Fxa;c+_FBEft<fE{aee92lFi7wU!z{E^eSLe2U^u;=2ptubJtgj
zy!uDn^@5VI6Wz?UQ!FV;X?MKt*&`|eWW1DJ>@GJPKf}4dmb>2h;3KwLd+dYU2<PML
z+>@*KD=4jee2zXU$TgN??O{tV$#u{<+r%Dr>!pxVI`#uncAw>iI%3zxg}RuDJt{`I
zGS+h}C44Qm(H?iO>xABLO=koG@Sw92%#Ko^`XW!{gv`L0Z6|U(&B2$`uJ4Zi_3_;M
zet$MR-#!~yj`DlvGhUbA>nno3vty-TuSd_ND7O^sQGU~J35I|Fau-0?4I0?h#Z?J^
z*B~uR@(P}E=>x%wpSAf<{yaY;a~qu1S5U4<rC@1X;4`?uuTHrFonERhm^8`O`oS1?
zJ$wd{)9N%%f5w)i!j3=7+Mc=m5kBo=Jo}7IeU$lE;nUv!-|2Kl)^4POQSN)grsJ@`
zoE=-9jiQ3Qe+!x1*iUd3BWdt5%FV`S@NHi(Zaz$#RVp_A`;~e1`Ap)2l8(a%Nh0;4
z*iW*6h1~Kin=|O8C;>f|n<O%@wr1_6U~-dyACF%x0C@6iM{L(^UUMbQ%-9Iygz8XU
z(+QWj>Rdv!!3Rl&M5+GWIsehi!}=9u_vOGoX#m>nafUsbT-j&w@z0D+YzEj(?ijZ|
zC0u!`_GrBnvSXJlb6KCN4-sDr?D<l<eg$HW@HvK!IsYpm!=0i|p>wxKm0LGnNOjKN
zQ4Nx<UxCauU<>v*0h`RF*?RWinQ7Rf&TI3huG4G8M&MK@+3c~o#{V1b(XiJFKOi=w
zen9ECvIMAw1v7HjR}GMRAY?n2gb5kD$t@|hSAxBYUpURp-jc4p2{us(y=sEJYDF;m
zlGWsL7r7GFDl1oeDpqY=OxhCwfqa*%&|_uyQ4@NBTv3fHI!WYIOY<r89f6P1jnUHi
zDDjU)?U9HEAJzI5%;uw(X0MCLb@61O0y-jnq0f*T`ifMWOC?}iJ-{V?AkOpDe3beA
z%NlG(bdG!DAkPMKWgVwRsZg*Mneh^>YnMr6YZa53o0#NQ70ZcBf)$$(6TUw$w#jgU
z4_ma-mA^~CKxt!me#oXU|C4(soO;TU8FFPgaiUZPt*LJ&Qb@qi*!Hkm*jrP4TAze~
zMky`+U`Z(QAKs5yFS+z7L}};W75~n|b!5YzLXrXkN%mc<aZ*ddvG3u0@(q~cxcF5H
znE9V!?U?OG@$PJK10T<zS+@HN!9zQL!tt^hnL<F>0z|le3b^9&WcUn=9Us11rnmju
zj;-<7+)LKu7r<VJYo{R7cx{tQigF9s<N0M1F6hN{Z0rM$J$_Fip)<&}?qQEMfq(aj
zo_g+hZx$$xIv?+?OD+O-%U+&#<l14&EosxnqYSgjBFZIv&jEYHb~8WVJ1vnhAtqI+
z`MFN6)T+PAAlGg#)sRUYvEkl3EvJxZ3v8})*o0wox!djS$T1!0gmA3coaiXdHDIG~
zFE_{AwW1#gvWfOuhU2~0&W=v&fGv*i>D1<VjXvsNo)h)9o(6kQuqQG<R6~_OtsOQ`
zI309;&&N<oFZv*VlRolMgDkqa7<{W7KiVVitJ7)lOOxGyz)R83KtHr|ZM!$YA;B7)
zhnkO~!M6RAhH3{sSM-J5Pci2zk`Qsm^bt#kgB}2So2j`g`BTdKzl{HmS(fb_{mq(l
zEA{A1N0@Yh)p<uhX}W(3jE|)v{vBFr->WNyo9OMGI}H<FFQZCM?MJ<nAe}g}P(R@q
z>Q5ha&bzcnrFi_wIG7j9dmj&4BA9`AYPgoZoMAnyRR)v(fH7)zSo=PjObt5Lg<BEK
z`n{*Hna<4$q=7MB01S@qLh?fYd~<HW1}@OOkBNDI)J&#7->tn;_i(#8hpE9PXLoLr
zmr5I_gK>C*owBW$vDx3Fz0_fhC_I=_x*7LUMA=P=3k}Tn0h@5DQ@O=fYxnSd-R#|2
zINRb-{!b_w3)oZeMBVX6&S01?BerqAMQrH~_M1Nfs#Ozp*B<@AFn(l@5n~*$^a1w~
zTux4O<Ad6F+Pyh<rBzGV1w-Axdh@4Pd<_27PZ$9nBES9Elj#2EC2Yq>>^+x!eCHt?
zPgh8}jCE+gZ1>arU?C`*Ns_ZIQAG~W%*G3C8!xt@1Y6ArnEG>QLQkMov!<EanFD*a
zxn|t<?9L=ZH}zcLF+-*20uK%0R~y$%)W&O`9h+b^Y~ZYx4Q|;CGi)hv*DJM<W|*V;
z4cHc0m+oLo;I^mORK0(O8kL#^nTqn>8#dV(#-hr2GbKnq<$w)xp1@H{`rUZ-mqHZ#
z6-d&@-1y!_ZmG|xnv-Sl76ibsnPzfD_WR=4un8#}BP2TI%?Az?rd*NjUfh3)O{|TV
zpTH%~HlZ{y;CnZnC(Tw~0ydFbMZW^Wmat)(S|5lhG;Ehl$QhJ1vJs+vql)P?>v(0I
z8n1rNsOC^?ITP%ekO`fGPSswQRV$@LPoq6{I?w1qRUucS(@`VHW{)M#rPxaWaus_e
zR3R8Y{4KVW19$z@?6LS<(f$~YjauTw3{D!;xyzk1rKiR<AF<gyR%{sG@dHvBGBrQY
z&85;3QVeUxGta02h5DzojTEuhiVQ!}^RL!`I|po7Uz%J^=PB5u_yLZCFG{hfy|r5N
zSEHo4>!VU?at$^i*S5Y8f~|VRY{VvW&3N^5m}^t>NoJ4IFC*F`Dt1OcAaa9`az7B0
zG~!&t+{y^lE`!`wBrjz2D=<Hx*ed#KfSQd1@T*luV{TUK^N^9LU$h}MDV?djt^&JN
zVc7;i33ExXE*IUHn`b0~VJ>BCxR&;ws`jlf-TEG4{Ryx(z@k0lIiuN&Z395AZ%ZFL
zXZPa&%k_f>aR_?GN-npoZvMo~Q%jVxV`V&WC-Z0IUe?W<zy%&?pZNP3nbF4OeMXXu
z{eB!5ic7AL3di%mEn8WrKG%>`m{POLz;`Xj+O>>hec)Udir><B_wD!Nc-PN><z)Qu
zz}|6U<M_x)%|2x00*}29_}%SvfX%-T*d7d9<kJrK@`%i7r-4RN7mv^CARId%dj>X^
ztS9UYa*bGOkn8C{Zmv`7ArP?nIA=;*!r6}8`Px?9(aH5d=TWXM=YaiT;Fdo@XGiuZ
zSO$AM(z$H(gF}5qEXZ_jS>JUByPezUU6%v7o<_Njax-jZ6XD+E8NhRib<8%w+4JG}
zQLdA1^oO|=ZT~d)y*thWKl~}k#juU`xF>fRpXbgdA~wrVH=U1iq=R`L=LTb2@A#<G
z=%a!?j&d9AdB#S4)cNjQ!aJKMLYrJi|2gP<#=X4OM?DVr7RS5(0<hN{?Qxh(r(rHd
zpR(%*Mtj`xQFi<^_yN(O&86+(^?08BxmBr8H1+2gX)G<paa0v};s9tNZG+3154xb(
z$9<0CrTP%Y%bo_U^^d&3x-1J8NpNzdmEVc*men8Hy5K9G0msK)3%DD3ea91I8$X>j
zn_hVJt7hde1}>H18`g2n#3IsCcm6z!Vm3uTp8UJK*l~I7_Pb{>qUMOy=rp5fDS9vR
zkmm9{R;+x_;^et>i~pNXGq5RE`Oes{7g^w0HoYjb6l%=`^`+A}*cUA`jT!8!T5>D}
z3m}uL1)^-+;!kUkYld8{frwq(sv6jEWn6ww?S&XdS8;ABN13%e+{#b*$5PG&Y;upl
zF3<?r)?Vk)CRm1-fX%Smj#$H{i)y>JaLHp_o4{n!Mu%+zxm*eMSZkNbT}rgqTWl+^
z$0m%OTww#&Bw5C5^<8<@DQF@vZlzatZ-f^X8;=zj_plju!xrZfk6%iGvuM~Y<H)eB
zrBN}MTrJRL_NY9i)p@3;AXj!b5gYAd-@yi*kJzWq50oBzZQ1#kK*iwLs4eE77j5=t
z9IG;(b7vFUST^nJoE`oSHvWy2Y7KH*hq=_`Iym%g{8{Eo>9Gy=N|m~MO9M9AnM;C=
zebj-ynp_vdmU=%x!QW<-wja$UncE!E*nAwnho3@^mJEs&;pLYHVRrw?_bzlBoJq)w
zP*7Mf*Rx$)={A!4)APd#->+Jxf6`3Br;9dcV&5-vW#3M^nOV)(6KT(u(f7NrPjdX?
z3zl1ZHJy)gEyFywO!1b%;QvQF;lW<RC;JhK9>~OkY*(gr@DfbTxD*|q5bR`~%OVtk
zE19RPV-0>T&x<5hFx`yN>?C;!&ysb!T$P?f#)}?5W8;AXQ$ll+HP}_)W7sx%T>9>;
z`um8D$NBe+O}Owaz=%cW`Hbh5WCVj(n$+HO?SbIDV?)1<Mf)GkGlK6|y;sM^YYzlV
zg_>qjiVLY6uuRnxXiA>1p8aeKVl9WBfK9*8lVxt}To5XdO3EcpJvO0II-6V<rP;wV
zw!;o=)__;#ig_<`Td+=|M*Ae#lrCnuXq0W9Rj$^!Pi%sH)N_<8!6tZKPmaxWUZ8Wv
zasoEf`5fgMbY8Ek1UIK-a#Nd7Y-{U(K<#DoZ1(!B_rljsHV%8$UJNUO&bn?|flch2
z{o@sMF>J4(s!?pou}k@V((g*8q!k&C4NY)Mz?LC*k?R!X$~s3PhGR1x^aY&kGjx7Y
zdlb1cwn69XReAMI=lY_HxprA3*gt1-Y?AnLR+=Zlw$^U0@yD_8Tq<<q2j(+qo`N4}
z_Nsn>D|Suif{laiJg<R`Gs+d4^3$7Kg?fhNc9n))YLA1D%4Uy+d@dEpHTo!hp(B5}
zG(S)}KafO!CCH68JWQ?=u<2X^wbBATbhJ+J0||bhw0XW@on$_W{jb<78k@L}!sh0l
z9}qdsijC)*Ve@%z{uO>8+T&_+GkaWh{h3B=DO8Jq`fD+rgGy;xu380#%}%ELF<Jwr
z%Hr>HvK|Ag&K-WY;~oJkV^wV8%gZ902Tai+eWaEvf}W7$wlTm|Q;*QO(VZ%TT5TIT
zA!wu(NC;k+Rv93^9rp?bwwAqE1HI`d9{+clkZz1*Bv$mCoV}2+=R$i+uS9LH#m*`J
zu4rDLdpg`40x}f7Tc+#LIAINK>%tP&m8M^#hblO}RnPX+Qt{j|fu*~43RJ$pws(Ao
z?daaZ_hOrC)ZRzqrvy1!rt6E?OX<cdup2hhgN@7nevrG#wGQX6I5uL7a*f#1fZaBO
z(*btV;Y&7Q*zETd<YwcRaCfBh5nBuxc5<t?8?LX$c1PzXSGUiI4cO}-R~oSeoxet|
zcd_qa^Y67D$~7V0GTP&a?P%Pv#fq&G;vJn__pk?Skv7NW7OvgRwL5dE!@lPS2A!uP
z8wt;tz45Y#&8`jX7N>M<!GFGljb5;c8y|)1?Af!)&9K%zoyNKLf{(JfdW7ws&X4Rd
zR?c)EJ2oY+3fha`M<$r!*jkdn<Vny!|AJw613-<DJOC?hiWhWi9kTY@gV&w0{J#3l
zR*E4K8g8Z^_w$*P3CDHU>i&u>oSRJA6mTW~`EHCRz3NY7bUpTix}&{1{O|oU-u^Y+
zTyywWt;gpHWAQw7XVG+cjt>~?kkm@Y5wP2gch~KR&4X(P_j$BRw%@<7imqXD>0z}m
zcclKlQaHx09ZL}7x#$J#&5)1egyC0?<=R<ff2kv#*V_H%$VnZ2j`Y~(F`S(Jw#L8q
z$I#KW(*d^e9I5VN^S>VXD(dgP(($!MA9QPfY4@1>QluAuvG4QfW}fwrhT$9|)-j9!
zV6OB!))x-->9=}JWL@a{zwexNFs<aaE4M^ezIh96^lj?Sd-+xT<klX6vhMu8gOhG?
z@7Qkq!)<lJ%Ub_M{-`{{6RS2o@&7e0ZA~m7&(h^F%iiZ8b`tL8ig9F%&UhiP40+i+
z*8VUl>&CS$!a2Mo!2^tIMlt!gG?1t2l~9(6t(mSBlyg`I5rVtGX5)N%$uP`{O%`;E
zEmZZ6S8NzbMzS^Fth{)v$kaxrD}qKHHfou!jelFY$pvfGYCCCCnX6~%B0(6x)ye=)
z<BxJB3NJSyBVPOPkOaO|u5B~eGmwe!LNH>}b)wM3$q5ncl7!?{gJq%@>tj>UCrGpR
zRS(r|f^x{@UP0fJRjw*G^2WXT(n(#QPPu?Vr3Sf*+=#HzOs?|+n=!eG&U3TJir+VT
z3>opldv4Wmc<F<^^40uBOB#kZdOZoCRs@R#dsTW9=$x~&)h4QR!g6~AFS(u$o0O?~
zAc3fM+4gP|M9m(t=~Ix&EjD3tjGH`;P3KO5?MJR)xgPA5f?Q=Y1NZIrN;*$XZic<t
zqv^b&sj&G0%oT#psd|-!zC2?b)gz9rYSj&2R}&x9zKhL0fBq;o_7Mr=`Vv_^GcLhL
zNh4{wcEMb-U~liEs_ERu4O<B|!a6sb$?BsD{6Mm~CO)cqc77?AC{aW32#tAD4fd$M
zSLLd6ExXR4BPxTBDxDu7Tq|LtM4s2s`J_|a{p-}(BlS9W|G9Sl)pVY%U%^_?8;o3T
zf_28bSJjtc?V|=?9|NmJOJ6cIIm(6r0;M*$l3rY}%n2K+l5URkQ48>Eo>_65>7RA&
zIcHT7al8fj`(ydT6$Ce{hfjO?;GY!Mib~<PA{nWz8M=fXPTsgGEo4fdg$h}e#;t6}
zTjHH@flHF%5-6{%?+aJ5Z{Od8yWWF9mSKEW`mFa)PdeYR8KlW-lV_7YBYV_>ah4Ix
z|1nPEe-}Guzge{xMdYsUux;a<Ma%Qxz42`em0fC;1gOG)f4z3W<0bHvJ2q;8!V>tj
zjbq(|Z8oQbF<^EcbGvo{z1A7j$SjuyvT$rB*X{EZu<>z`L!D*tgan`L)r_DaMOOGz
zkgGkf3_D}H0vm;ZE00ak`GN`!!&ZY$JPkGxv9X-qaW92h8#dU7$<?q;ph52B$_Zx1
z`ENnW?HJ>K=dopzd&EXTuFuA8AMBBWT*V#@+aOo|&i7uaZTeWH3SWN>_G+7(rgQ%9
zY8>lP=a4I3?-{)m;y6*yyYD*Zxf<na*vwvSt{lj<MxC?V;0HYTYuLCV1HAf%&BkRe
zMV*IvzT!C@?X?Vk!0eI#ZQS+ICcH;Q(S)=(mrBsN*lWPH4sv_mu}89bo|U`4)P4iN
z<jQAad-Zv4_Xce1;G+tBn8}rKEup{0x;AP=!*)6Fp9y|I)+~V%IO@Ff1GOchL?1<i
zTzxJX_S`ntO0d`H2lnjo*?K92@k4tYeH5^d^W1dK8~>Uli|10U-s3Cdxn-3H_S{;7
zeO-|-Nq9Grn3}(1AYPGLoTq-o0%C^($V%{tVsJ6xg*uksc_uXJLQu0eCO5#C(OYmM
zr#Mc^1I-t^j-37%&4TsvC(gRrzQ1`;qflPx)Hwg2F5T~y7rK>f_+*`w=bkfyPH;k;
zal;?ye_xb;*m=jpwZ`w3wQEX{Os&#*qgjrU{U(_ww>;*?{~qOPa?2)HR+L0B_T;KM
zI)$=Fd0BCTRV;QdHr}|x+qh&aNyD)z@RS#ASUfkK^JHrr>-Vv%Ts0DK%d1~p&Jp|A
z9K`jogU$G0Eu*)?wqvi>n8f6I9_;Z(uAwJ@>2$>IavgLoj$&>OHAS5>HhtSxd#*j_
zf2F?EwE|m|>m0ESa&v6Mc#rKCyY^COjZ18?Ej;=@&&#gPo7`%TZO0Gn>3p<DTfB%)
z!$Y&vdEJrgj?SZ8PZ2xq_^3Pfc%yTo4x5d;J?{E}X0O%&W*=K`k9D-iqq#I-8~s4p
zu~!S4O~B5d$}}UVH|k%nnko1&p{ELLXqrI3vFYiAxwV2D;S~KRvA?wMYv)hRw~zkS
zeEm(om*Mw3Zv9^D{9>={>lxejAU(f*Yzu@v{~7#1J<z#)ui8vd<P%<06ZpMqrI+>~
zKbcQTfxxOF*fXI_7c#WwsTbi|pq|G(Sq3n;!bvOlSnf+T&gv?$92vK{Brh$5s+uZv
z8A@lh*+VAr33hJ&`*PKw?-WbmNdu+a?}o9Z(m2+&5~}YRz<*F|dT+`FK4I=CHhzvu
zpvrp!C`ANQ3<~8$QrZy8c-|A}h-z|v_@$_=nSZ@38nElI1-U*8$9k3w_8R0W;}zIQ
z@5O>>NuKvQ$A!ln&(swgI!;Hl>fFfDU#2#9E{jnIfTz6HhAnZw0S){+2YZRwNU_zR
zb8xITUVW9TJnxCxyq;7JiRFs>GTM>GT~A_@la)KiYg1C}qVws-9tC^ACUUR#?3g4l
zsy2~Pse%_S<_@2sqk@1?20wfaz8bv}vX>0^_IkbQhKTT(r$%L?^b#t!WO57k%J$gJ
zCH_u&Z}Jku-?#g|<kZ$tm0G46u%xm&wxat;Zm(C^qdZ4a>!o1!`fPKBuO-;(;0IPx
zUj2rR<tX+z%r(`yu21Qtb7z(6VwFSDml&-1s`{7&Y?w<N6*swFuGqwIKTvOcl=uPI
zqjLO1ZZ|%v`GG7IY1{eHw6-SIc`evXA@JneOLDEP4}|G_DIK<}QC4+6D%c|wqjM=K
zw$ya4>jPd#rOrqBT*8ZJCac(OK1$42<d)QbF6yJEfhxd#)YbgJzK^<CzXI5V&NZ!=
zxN`r>i&9Xsy{`xmh_5HB{%BRNM*ol@N4-{d&i~7*Ymtn(b2YlH3H>tg!p=U6Hwv_e
zz%0kx#t?t>B^}(rydH%QYvaksH6TS8Z%GRBi(f7l{1Y?Y6ZUBMV^x{D!oqJ!Wo;Wm
z$u?Y4;6%sovYn80i$>-oQQKfjpjRkE#(U{A|EUhyq!^Fc$9_J0A4q-U*EnwXY?TQV
z0!@{u3pV=i4O_IsoNvc*?Z{(ZsbzfHdzLdi1Ux?X;S22e1UdS#xlygzeHk`;ex)GS
zgnNv?cb(VTVK;11u2Jqr>t@(;#D;fQirB(^@Mq+%Pek3lOt7mc*BY^pdWq)?*!}z_
z*JK-*)N~H){(kH4t3hr=v{zwa_S4-<z?P`DiDYsQ<DP-Ob8jhN!{E)_aXFa%hTo4B
z5|NH8*}YSH@7kLyH*yX4VmdRKL?068QpLM=XRm{eh)o>Lr2*UM2jpECn4(QYn=!o<
z(@P3Xz>nrq#2Wnu|7Z3>ZLPR>ZFv@ldG30R#|OP+lUdL~2|jA<jbQ79y}4lL?tBal
zb7?r==)=061!2tmkNXMx_u!-QfYr}UxBipvV7s|KQCGbY<u1{I9KPeZ<iU0G1DH28
zr5h@8f3^&tl&rErld3dk{~xFafC83V4u92)<p?G^XI#9-4AYdlhcdZY4WC-u`DifU
z@EvJ&9<V`9Y8y}E>1>>a@&5R@B0IeH4K_>=oZ1!?@*7id7?*61+Kw|RRci8fhhh&7
zvIU~sh$~ne#V}6&ZTfYj@o%CIkNq1{qK%~1V5n6MWaqk$V5}KT9g0XIwjNQBjfQKx
zTvE&#?QLccn=SL=LZZ4o_V#N0xlzu3WwTe>|8&^vEj9|{diqSgw&@0&_c$1_L9#d4
z>BHqZj#tMv9uw^`b@td*NEr6;02H0q=7gdj*uxebRflcBZuT&a*Bc!+xhpp6u5pCT
z#~sJ9-1@&XTfDuu@j=l0fiN-K12`<`#(R5}Jr3ARXD$~qKQNpP_PFN<^w{D}^_oC?
zhgzfm#5qTQ`Qmqfzv}(3J%njo037;fLl(vd|9CskZ|$L<eWMS`nBe|MqBzgf?dd+D
zPYP2KGZz2mpx22vl%}egr3*65XXSym4XT#yg{;*nV-p82rQk8=<ArJ}D>a2=gHC9)
z%f}WS=f&NE;F;16S{6w10KQ~@rB<3QnbR3TNMMtf>4**3m2$?gO^!_hbBtvv&cB_q
zWxMNmwsGSM&)6hiE$~M>{R)6x0?Tc)Z3btpVao%yG#NL2MZbbcBA|-}{Eg>)Y1r0)
zoxd*#mPtmhY^<nmEr=Ph@&7KsCYzkK1w>}Y207<;ZNsKX8=%XBT&we#Ppb1Z=p5q{
zz6*8=o4+fv*^Rnq(O_^!@W?W4X60=`;Cj&cWIEr$X4rkxv0)SXr?r=B?d);8)}k~n
zYJcFapIW9_k4^nr>!naIm$b=r0R^XF(+wxc71)IS4)l*Qj=5Bq@O#)}b!@e9*T-H8
z1Uj3f!C<wKNp&8ualm^udQk75(XdtNQPKPWmF5SgoIANTY&O?Oc<rmrd&5=&wkzZo
z?XlQAC(o)gUVZKRuy2piUZ;6_0h{?K>ij@1$bQcxn~(&Z%SKD5bLuD%>y3|Ua&v5J
zoJ+OY<J9a?Xo4ogrd2G>-&Spw%$t-;b$cb~!2<RTTfN0LS>i(r%Gc2zf$hc~g@%=b
z_RvGpAU;$3@PEAN$PJTMp>x58e`cCNP8MJ+C-<jZ(IocD{&c;<Us?m>6%{#ID{x=~
zIV%ONx-6^?a|RD_>x(8$+IdMpE&EV29c|-}I*xjwpTPn{10kRKn&J3kv<g{tJ9UXt
z{IT_NOx9S(aq4>lRI^*!;jBjH>BwvTFmP5!+9yjg<Z~M@v}Ljy$NCIjXv^$3to#{y
z$)}MEeBd3Q0(UrH=k3FTJ_8`9$Hzx(d{#+n;p0~eGV*uuakE^`=)q@v+UL-_k3SFF
zxkYX<!yMP*k6qgm`_9|<q9>61{u;1Yu#T~r&iKC1$T$}r&c>Iml{Zr1uru!1fHh{v
zTi}mBZ;+vDLCA=m&+{f=W4T6bBG>J^UE8rkZl}{ecE=Xvs&Zp`>VR#K8`F>_YC%nw
z>r2?8T&;&dl<N|7ZuTtW+rLlf5g^z(6FTVp@!_m%VjMr(#GcL%v9X`s8!xCV+ps+b
zY?5RZu<^a5PUkAeBe~vSgAI_$6>_xXH>rp?z<w*Y`#Lwdt^;<%@|Le<HZjPRu|%6l
zn0p<zU=w+;3HEoVV6TSVu$f%VCPukF^0kN#{lH_i$32}#Y_cY4<KhS2yb-@#cjbCg
zxk?X;(j|M2{xkMc5LpRDYU`;I{b!d*8vW;;eg(AS`_FqlEDpxKvV`q>`+pCo2QoTg
z8lFq>yS#(dJ`vTf#lN$J3XdpeLZxCKbKuz4hpr{&*ZoZ2>TMz9Wi&}ME>@Ym%I#?l
zrHl`ILAl5oiz2%jU1V3`mgme-p4@!n%=<ix!+j7T%lC;hEYAL&n=70iX1ZJ!$=F~e
z&sJKsTqP5fAM*TL&Rl)_Fw27OdHc@z_<_wY*zcY$VwCLk_|~3;ceKjnVo|?;dX|Oh
zqhKQ`A)4gjah4YyE)Q9e;pD+6C{h*-$ci<i(57JeG9%?4JU%HOwr2#JT=D&kachd#
zvg<Tc<t)4G)XNp)8G!*^__l>^!MH7&OKqhsx7alctkZeX5=+rJwd{G%t}{n6?>A$*
zEUkHn*@Wz-0UPs(&%j=5D_e}%gcldstb}bcxw%{$wkfv^AzO%9*$uxSOmHL@;~yTf
zne63;u}u;CA+}q&8o&G5um$WUSIMN7W;U(d+nn6R9v*k(YBpimQtCPVP3OW-TtdGA
zjPpV}%C*BT_LyOh&7re=A~v%}qJ4WcAL7_d=Y}oV#F5U$9&>xy=J9jT`C4k%bft*B
z+DqMFueR9P^HIZGszg1uPOjkmN2Q8Y16>C{pk?#HUfBl@e!z6z=8|H&KbLxYb!_+M
zl5tE2d$ot?^Yewi_~}p71~-4n8M}ObUR-lv<NfA8)t{auJMano?Qb6S#o=i?o<9!{
zC-FgiK3349EW8T6e^!6`z?uFl`}PIC|124g?0?zUOR4l0RA3u<;05mXdv4O>zF*2_
zFOs$UX1f;OD_@(j@pC2Pp<VD|k~+C!o`=S-yK^bXHSYRbpo|W;YCfG$AN-GhXS-g7
z?m`!JNw~m;bNab8;9`B*qVN1TNl=U{0Xfja&vThei}Gc2@JKkRt-NzabKh0_1Es{r
zbJ;9-?kylq$|KJH^?FfXFPjjgnWf3FF<pyPmM}KWes^r=N&Jh916u($4$3k&z42vB
zf1z13ovSQhC;5%=;xFohI8ZlYlL|-*8v$mICt$m-{+!~4^VQ2{1GbbM8=qe|(p|1s
zmFuL~WPF~4Kc3IcK{x4zG?VmfV)uSJYxRckh%Xv|=DBbMwv%K&Z*shZW_GnW2l^Sk
zITlpxoDiJ22Ay-@(Xff!i_S&X;dJV;rwy;X)UbaQooB(87SP<t%i^NzrX9JmCtcy&
zRj%NkPq0VF4trdpO-v0tbiS<R#wHf<yR&Rr#_P3c04giBg>3em^!b0iSTj4#ZdRR>
zWEb<Q+WFa$alRbroHMJ<CPe3F4N&u3Q+rgoi9K^aflaT>i|_V2DK^nLW1F>K3-2E%
z<4||be$#oYDqwKeIG2jfV}3uFL({a}jW@YEwh3~-m|vJsK~c3g7q35g-b-H*ol9v}
z-!3m$u-B$@T?>2jx|7a(ldH|8DA(fiyy^S`p8Io{OB#rQAHa($$C%k>R`*e;cvx5X
zsMN5}SobiGej>~z8gy>F_*+o&VUmp?xi%@+d>Q<J+2b_WquA?qJlo<5|C&%W!}Cvi
zP~^#dly0i&dXhn@&J|lSA4SRKs{WHJSr!R)bFjS*a$Tcb=U(UTqn`PteS5xdSj*3@
z@{;|?JtSs*7vwG|GXk>Gw~4gsAcyzP*)sjnC&Vfwxe`DEE!GrpQTwz2>GQI^8*azW
zvJrq}3Iu+14cFFDJQquC8HZBURh434&Z)~bY#Gs(2-A`WKJ`!aWkZv<E-LV6mTw4*
z%AdL;s8M!>NC;99bi*aJ;}hOJi~~B-JlHtZ+pKTT;LVK|r~3}9rfW;;vBt2TSVgpZ
zZnAR$TQ^>i6`Qrk*5_Y*p+0K4x;=UZcqzN9()^ln*fbrD7i<JT%$79c8R?}`8PaS#
z87b%EYon3)OV~X*=wq;lO^o<C!uDG1cJDtowsI?1AIH1vee5A23CEjU|6|DQrSTVa
z_8(E_ZjUeMd_1?y4VhktIw#%G|4{6H{vDl<*be8KkH5wyUXQIC|42X3#tZzwV2_X+
zKP&lJ%A5QA{q43{AkW~0<d`z_q=5gljQLV5xvSla`))e$uSpXb_I$f+(BypR`<<dE
zrJM1V(5Q5aE+_o2C41VZx-9TL_;!Ex;hAT@w}W)OVMIV83Hq3I#LWi4I7gJrkz{eI
z^as^TE*zi%OE9{4f@ImG<WR%asO3^9os4JdBGX@&mhz}X_70AOO^)L91wm0Gn>1yV
zEPK>TItsOH((2O*C)8kjGa{2kZr84w`!2RL&7PI68B3Ed0HPeCY|_EF%ay1zmK)XD
zLwr}RZCrkn+I`3K#lNJeQ~Q21-VV|-pwykO`)$BBVjs&|a)+z-<$VLT3b`F&Pqc%*
zzmc13#~ulijXjKazaR8=qr=p*laIe0&$lP%8aCU;<6~*-o=xQ8T+!a54M-&b-CjF&
z+03b1U`L&g3ve$brG0y}1ucc&$Imn@*mDo;=3dgB<IN6&xvK3%yfoko$KTAQV2|nG
z*f<mJ+N1sLh4H531nlWh=STMH3j}<|xukNvox8QPs)SjxSsFGwk5yu|hPW*|UwnBb
ze@OcJ!Jid4*0A#rDi#IukXJu2Wz(YmezN=U1&aX#eG%@(eLdk`IifNpJWJYrc48a^
z8~wnIJy!CCAKCTNu691DPYeEs*_SGw#e|pT?SC_xcUy+9`JDvaf+mYwNNTpI@<IzM
zOF_muFCMFAi)x~O#UdZs5!>IcYN$*Ap`7|amQC5bxRh(_^_gi>_||jVs1u41MxWXS
zl4Qx2MK|)mWpCWx5|osHzGBsYlwwm3YaLe#5WUxoSGH<vt3;t}9<&>btyXMsCSNRa
zaEfJnEhRKHCuGs8++>XmY9XOb61gfRjW(2Ojlv}h_o5A3(}V?PCFd14)q2GRVd=?p
zfO*L+BUre#6}Ke35U`VCOQ<49I5$m-t#DWm*!<<DC|!wU@m?1>UbyBN`r4|dvJ#u?
zy%08e>g|i1F7uFmV{*>~dsMlJ$4w@;3VXEP2$fRcu9twlbPy)T#{X%?X~i0G)ADse
z0B6$L#bP>Fo2>GOM1eTV`PeITUU*Z7Z5h~VF0%eKdlhW_-x}=8s%B6zF=wT>(S8{S
z=$j2plP!V4v924_@*Rm1X0Jr{9%ZyHM!x}{sAizEisy@LlEVj>ADGNuwZcN>il7=Q
zCd58h)lt$cBY&A<y|9iYD}B-`Hw(ha@1b9PzO;%rwO10FDA5UHqeA|8B*O-qAjp*<
zS71x#qms?F&=Y`d;tC%%;TcoZM<v%eA%K|mzM*)<W&uCO#%1`mVdr~Y7x*aVx!3o!
z=%Zxrh}=q}NDSCT=WC-Ow7H``D!Y$L6YLf9IH@~?k23FR^mo-08B9koA758=K8oc$
zH+!SG`TiA^E?PK=pn95NujYd$Uvta%dDhoqWZ8k)hb|Q_*H}YS;O5meQ5)CHVXJz#
zryJf0v2M_c3x9Qo56b==w4M~>`-aY$EE^zD-QG`r`H8Z&zAgy7NK<b1Rh%WB(oI5-
zByUvZ$>&d>bXYWrD`%$%wnQk-eC3U$cTZ2UQDhv{kt3ZGPdE{fGnb{g^s?Z&uZbv6
z%zMB6p0j3Uj$s}M=k$h^xw!c|XQ0Obl4afUwR5&4nJUlqh>iKQIs2WHY`*{Re?b4Y
z|NDO<=lJnYK9@~w_U-fOOb^@m^V9Q&_gVhU36#&<wJ+O$k8j=zRoL_UCpqWin@0)2
zy?_5s{K4bfH-hzP8yBo^--?{yz57bDkGCKl>xX~OHvhPd^Lps%-IHwKJ#6P^+Rdk@
z_d=!hu$`ZiF&GbDm#=@>?t^8?+3$+=Nw7U^a#5^Lvf+2;@8{EY?)S2R&dHf9XTCPi
zLB&Rbm3_qH<6C(~2v*8+FZ`TjERs$CreWpt@bx%J;AuPGylpJ9EUv)H8=Vi2Zv+>A
z=d5f=K6<{0Ecw3J#zg1avz?Px=MC%o4J%i=@wwQK^0iowD%UL6;?LuDZW8S8^}EP%
z+hE?XveRQZOH%B+cfk5aHk0{!{GES)d43W+ykX4u!bw&lN5;Cz_IcC)b(8ZM*cprH
z9CBp2@a7TAg?%Z@nd5wXZAt3d<Y?H~UKMKs)>VGbI_KZ7j`bwpS?7Y4b<T3+BrTp>
z=Z9?r`b<}r<Av>cljGxAY=Dy>&TOySZ&*%z4nCIs`bDrVa&5)-uIap!;~R13&rk0Z
zE6b6wJJz?*`I97OunkE<8SIng$TAys&c9)qvP~+sMR1=tyW#u1Zkxt$HY|*lugyt7
zk8dA^`uqL6cjDA;bRMwf$#h=j-WZ$6^%`_8_PK25f4|x1X~V|fFCsgYqt1KP`B}#K
zTG#8dV4DORW4+QF*73xC;Jx@bmK!GnFjlsKx2$v0xh2@Q-}7_!{a5b<>l@d(%9Z7)
z*xKCU>#)ul>%)e{<aiPv_DDbd@@LzBU(t8}`ft*=zx6Hp{onh$^xg0NrmXYZdzki0
zU?0r>QRWgj{7dk!=0ExK7F7*bYzVL(#eZ(s=I6vi@a;FgfBQH4cjMrnQ8~rOGIp-k
zn5?QRU=tfCnjop`ry}oa-E)Z(QNweI#^)Akk^(=k7SLZ$A%^4haow5$>#&blN2D*`
zJ=gJ%mfa|27I;Xpk$rtL=C8phJOJd>JpDs>93OAi_~W0RwZTKh&Wo3Ut$2w<X*yw%
z?qxTx_@1yhycu8h4J0GW*1o3+8NyIRGG48StrUOx<^{+PfAkajgMa$Z=)1r5*XZ|t
z_ixJ!_1C}l_C}r*gQ;O%Sn-E0W8vO-wLsqfcnupdB4^t@3+ImG{~@v2=FzLMTed?u
zJ{s{oY)AL@(Q<voy}cG&4S)Ek@j))H!S<3)U$Ti0y|<5*>#jZ0aPL2-TwiUEbYJef
zavjI%{=I!H_E+883)o(oD@Qi-)%JjAUj2XbhkrtU`sd%LfAD|&KhSr6?N|Lp=|z7E
z|Cy~c)ynEoI(_6%6DR;a&evyo8Mzr>Rtf%o<~;yzpG*F7Nc7@3i-}9YfBNNn$z0UG
zrxsKuy4hU#R6cD3KzX92`5_UqI97T%y`g{qlT`w$wy$H0k7WNR`6*hknZkM}COhnn
z(fx76;@frNCmwJ26k+9X%y?`X&RGwRy?5<9<HjE5zZouFTP*5jY!rN#U7P6m-gdC<
z%6;$JJLBE4J38;M-I41DVJmcB=dZEH@Y9>?A7P^p!+sCjOV{o`FUjp-+=gB+H$HI3
z-+hQZzC!LVVf$#E(=eXGiOSBkcd*<4yxK>-R_8Pvzk@Aad(TJR)j1J1JC3jY61Kzf
zpVuC7x_4ZZy*)Di;`1y0_{&A<$KvI&p+|w%vin%FK)y3B&+gm_g9Atp=PjtQ{rA1^
zoauMJ`>3~72+t7(+GQu2-;(>N{yfZK?Z8vz^Dn-X%g(5vvZS|kbPu1vr@G$Ncy#}!
zNLA-&ZyzKGoFMB+&0;-&WNnP3jgE35^%WTW?=Q9>C`)=C=y+zUNMpJOsoqe1Sdhq?
zpe~@Eupp3O;qM&8u_|t@23h^u{2#9!8Si<xwl$&T&4nXuR>8v<ILQ381^WK#uYMr+
z%hj@4$x9L(m8#cOv1DN7e@m6uS(|sR*hrb?ldNACG`yU!v9jX(Y?L-!;miGp=CkN%
zLF46FXfuigDy7n43*a+Nm-J!eWDb50C<Wgq?ZL8#4ONIjqqiUt;5124QYxkR9RpbT
zS{z`rO(4M%uyS89X|abMlTwYua+HmgRk3EpMxyf`t2H8J*>JF!-y^bNTlM%!0)JV@
zS8P5qEt$xzbaE_^YYuXial&`OcG61aAXj!c92CEmW0pX>1R>W2I-lg-%H(MFxw>5E
zh7I<)K#qoOlw<dOz-l_@O^tl&<v1Hw$dUC{g~nw$)Va(hRL>>W`Eo^q#eJQR_G)rn
zxPc6zH&-S3y=-=$MxCF;UYpM6hHX;03O2I=9=C?T6R?MkK$B~4ug7yss64M|vg<ui
zukubi2YXELL6XdYxn$IdTFt3)T_8u+cf+<iHvTUC2v0pWlj}9gm9Z@iJAbrtFX?xa
zBV#+E_u<m!mSdB7KXr2D>pg87SnTt@@%6878v<`+(}9Ea-~8q`gp!GmHCiKS-px&W
zi8}vjm3i#@t-<yAz<&yx!yW(1$Dek5`)pN)+uyiqFo)-mQUBP6!3n;cD|ht~)IXPu
zg<z~Mkbpm)1^hd!R*1>6pMUX{R-lS5lP67D0^)~;9$u~hAY^ZFW)d2G)$aE_SNKsO
z!nk%6uvGhUItt||VPk>1@%rj<+r;qi_ItTtTR7MPQZ^p=i!a#h*xX$Ut2L6Wwr!Gr
z>s#NHU88r~LzuaT*Xx4cwamWMt!|T_rq;NCS5|l%Qw$XT+8^7-DP(2!;|0-<<kB}o
zY1sIC#+d)Q!`@%}!?4qE?LBOjEce{7#qk`^ZP*}}aon*{T+i1X?A5QTni;XhJMQIn
zgss1JyEi((7Or}LZC|bp+pRtIay>e}QvVtiY~oO-Dy3+TX}p8<Av(W59_?|o*Z+0w
zk^C;3&h;dkXxd*p$~E1wiJjVn4!gWC61@_8!)C55r<eS|jt`>d_xajN-J`S^-}uHi
z&<Hc0r=8gRX^Q@I^p`JuAIqJO#wEj*e>e7n$=P2R4V(LVen=LR?Ct0FxpX{^$A<nZ
zng8iGZ9diDzkZr6x||9!Co7u9<pN!6X0(=Cf)*=Dp0{MW%Hmqd4mFe2Ub2&BE9*id
zmfvzUp=PYhmQT@5oVL)yc+yHnHB$}x6kyTSO%k4A!<K+eOZc@PPW8;x+^_+Al}u{A
zb)!zx9y%JV;A}=IW<=^|haKY`HZ&5o|F_zF!?opE!Pww6))KI}T$NJBu-Uy;!^XNv
zS+Ug~n=DvK11S-ET)<9tcC7!jq9aK|R(X-VhmG{wlHFXi*{5Tx7@xFP0$f-tYpzXh
zve^`{S=qB;leW4+?!}tZl6qV#b3Ve>l@>>xW8G*vzrjXUIos@UPv?$}%*R&JSDM`E
zJi#XT4>RV<u01+-PNq?8767ZkUTrQ!xs_oqHMyD3MO6&!(JD-NUr)DNd!5%5=UNH#
zykXm$OTwgzdGFX*u2m^%92@*VH_ut_@B^;%!CrfNG>+Ra&yf{=BUkX`*Rq4%f|5Sh
zdLI@2fcdD1ZN_umnxtpbdB7%e4cO8P_Soc##<>UBCgG6X_XC}Ot!UU7d=wq&`~`cg
zdpa*_Pto_wy{3%7x(0i*`}(3ZMK+Jko(azik*luMYgjX=9MvxfRS%24G`VJcjVq=?
zcuu6DXA^#)&pPt;vcHeor}WRt_US8sKebP{&V^`9bk@hk*3gkFnS&}umuZzh9=Hzy
z7b5ca`P0C&f5W>EUgstB1Sr@Th~v%+4G!zY=r)bhI&fAO*s)V1FO4Qou!45z47y6A
z?i{gk=Kqg>^b`7j{K0=m-}{~K(*NZ@|NHdI&o4i}{QUCszx5BVss8!D`k(2a|4;vl
z{=wh>PwDYH-*NwJG=0%udf-2-pI*~b#eBOk91OpI7<~I2C<3K|2z?-IQ@Hc}8Fbm~
z`%4k}VqK5D?zuDvdTgy?AL7u%nxf}^__)tb4}gAQQfpf%>f)|QnZp@ei?ZVr9>TH<
zLdvbkM~s>OPbO$lYLXot7V=x>{NHYzd7+svTX~=tsSw}?E@uF6If?Q@Yr~D_Ezr(8
z>W>d6l#OY5-rL7*XKOlX$<elZ`u5GE;Nt*2V|}wJX4=NN9FG@-ywk+8{fasNw;N`T
zfBtZf0A57Cee)oTk#}4&G-<;Q-pTxG`~Hp3zDEDofAoK%A8ZfhfBrB3HGTE7pV6QE
z$sdY(mcqM9dadR8y_Dr}Q<T%0?{$%L%#)U~T%}}ayVo~wWk>QVJBZAEtNjVMq=<LZ
z9^QTiIqNRn>7={y&tH8hi&j3KKekvo%^UU&$Md_dWXJCO@J1HNm*pa*NvG{vyi<DR
zlA;GLVSA7r<E1RZpUI_x3zy?vo*f(S%&yo`<a1o4ba0{b+pm#uFK_4OYn)Fi$LDwN
z<Q{IZaT(4c$MfdW!<(;d$F0D|9Kh!d%SB4RxUBK?_*R;DsoWIXb;Gu7*iMgcv0Hx?
z{@T-YlJU#?uLRqP%g9&{hK;irSgw5SO^)a7+6<CyhW{?(o6=eCY{x8j#>R5z7m+hx
zYrD=x<jQ4XZ`2X2SK$ri-OuIvyvg-xlk20%Rd`FqCeE5Ivf0EcWsYxD=d$Cy0-M?d
zV}E%2HJ@9oYrZ$Zit;>`yE?Hb*Hv}SrL2!yX2vCIS$K3exo+4*u2PPtWsp~v(~Vr;
zY_fk48(Hfr*!cyRb;direC?c7=ltSn_WJZr%N!r1Vkk)kQN+f2VV#TIsfgT_zgTt7
za^s!)^W$6DtzOnkv&YMmmJ%{H$aNKaZ8}$MTq-z=PE4+>yUWv;^775cbJn@&oaMUB
z6&`qgucfZ1&0g96v0kJHfY`($Hp9E?Y|s4Ax~>;}7>HaiGR|^4bvi$ZAGkihlS~?J
z+QW8ZIv4DlJf5GvlHL2Wlw{5Un`U6J&RLg_U;9jSehoV3R5`}Zl}s$R3VRi~o)jDF
zT<rDXjmYe}$>x+#VkfL~#{Rqi$?wyz{>ERYzx6l1OaIC5|DFcJ_+6g;?dBWaKAyD%
zlXv6Ae`>RvuiifkrnjB{B=Ns2M=fvGo+|v5;T{4kx38hBQGEZTJptGjpSE!>_2cqE
z_Vc_k!N>BmfGZT9wqw|r^RwXn^Hpq&pBrq$d@iOCU|&9Mzmexq*qy&uen&L){-}K~
z1w4mA3HNEgxW`YVFY7B(I3T1iz$>_zEtAE0^-oHRuwdcEy+)Rzjh=+3JSzt~XG4h&
zw&(B_jbu-!tUl<niak!k!9r-fN5X+F!65LIYX*k(&&YDTR69DazS3VfXZ1;&t4hBD
z&dLEd{c1erC*%AF$ND79AC0?yQa){_FcRK;U{~&X<(PJCXkgkn*0t|Q<5<tqk6`s+
z1+ZOiu?hAE@M&9?PUyA3|K|B7-1f^Aaz#&+wK}gp%f;x8I1*!A;L2m(IM$WBp1k?5
zVyk-X)MHn<f(!hreDFOsaD%h&f4U;ON#$DPMWD%58f|hW*QD2Gc?oy@c1`Ei&uSBf
zO?6IkZ~Xib4)#ioLtX5VfQ`WaUOVgyc=b683q6(HCiwcyvF@Dff?b=8o}K@F)uxov
zoHa=g3B@+aX3csjH`sU`ewxuF?Gof#db!F=&Q<x}SuQ-zK9+yW=U+N|ReM}Lb5-ZU
z8nJac&z;Ws!`O=izb1KxYHyEpt8?o|aJ6S@^8<5~E3lm=^$VjPSUW$kqKWb(KKVLe
zi~Tj^yZ8RkvYM;)Be1!&w4Og@@KIvVY>zV6vdS&?fw-V=iD0MZqh|Q1O$RIwwa3)#
zRj}1=o*TC0_NsFwQS+Z`z%FtOKFaOU{J^DU<DDk*-XDgI*ZnKzp7;TI$tL)L)cdFr
z8}&T_cKxTlRKrJIP3PyPbM3W&X8}s!wSUo7sVd~%ZSwa_p)JekuOaLD))bJ(Pu8Pq
zX+0?TrmP2masKoB82{mfjLT<UcWvtkUSCM?*)|kIvOx?^SXSc%S|{5u6dz?x=;x^`
zL@>I#@C2n_e#jGIGWLKhfMOr^iU~i|J)7eHj^q9vy9%-aT3b?J<c+4(xR*_Lo|y@{
zs5l;v-y8R;km0v`oYgnuL|tQJ8&?WN1dGsr&zoUdb4=W`2aO2v8~eNcrdpCyvq3+W
zY8M8&9jCTYMlI>3yEc?~IDUZbXuP|27{7=8MQkr!`{;O_qodS)6}A_~Uvur3#$S1F
zKM%H##{M4*+iS*Q7eBX69N6PHmu&1+_8R`MFIWCAy=afGmFtM@&=35tXpcoUK(nle
zS9vyP&#HIEfZ$K>`qvNmZdvz7zTGxvJKs*^)XG<^6`hR$*rZY@$XBjiTeYAioQ%&c
zGCic^$(9NK*S_hct0zvF+`Fa3D?d9M0MWdC(?S009!{p*l>9*yon=^44;#ioN>D(g
zq*bJ(6l8SzCj@Ef(IqfIHhQBKL<FQ8R7%MWWH9L*jYy4d2GTWpd-s0Zb*}Se*V)cF
z&;8u@?{<pRZtw|6UMAhk`*Ij28!p23Jh1)Chv(TZ;r|t>GPkRg?Iypa%t!^lGf{J!
zU#e7Pry8*MRhwpPXQp0c=2ss(0!)&9a%ZaO`b&c@Ez=jgDN7h*joSO8$UjVPatMd}
zp{KKpCDpC6-kGU9f7xH^)-<&A$9c@yoXcVavLcFqX_Q#0r0-{u%^M+&4MLMsB_TnR
zOEbSHwiFo+)?z55t>C5u`>9uD53lrkik)`9)6Nws=u3W-=($66GW|ui?Gx9tRp1*C
zYgQ_3k6L`IAMF;AAu!Y->tSb*J!{h4!^54iQ!M&W`xVDAg3j-`HIvmXK#r4a-TVtW
zI&X;_TB|SRFM{VHGc9D;^vRGSs^?FO-?RHlgV-?UUf(^$o~MBtO-kBQvw?h#Th|X4
zMOQ7>kSwDd1M#N-2P^d|GwQv8jjn`Yowmts1sxKbHFvpcfM(?IBeN+KMznRU0t`$3
zE8NR$;n<{Vi2PcYx*t0%CD=*{;yl0(QPrU@Osg_nX@TBTF8NEvYE{&<tN8^F>r+53
zm}{n;`yi;7oU0;}-!Fv%zIXL+-(`9Z?-+VM?loCsLGU#>DG$IBaqR12kXVCcA>8k~
zVD+t~3xz?xp|@6Iav3h2(b11Tg(T^6(c$z<T@r_EOt8>n1yYVzuSyc6LF^!#E^bu&
zvSS-1bUsI?>iF~hr91GU`-2~G{Tz^rj75z9LMuMLdSF0=YUVT|4enSK&m=72BqXd~
zGZ=7IFoBi6QePg3$G<7~+?)PlF}}^yl#s1G%dj8Pny-H%=^Qqlo&gP=W?iHcJEf+d
zDc1Tb)nc2Nb>ma7xSYjO@FOW^ghi}pS*I1|lc66e@<P&xz{2=&VlwVL%E^0^;)efR
zRvh9s`j6-2_7~L4rC&BLBpY9sS&l^ON!A$F0aFdwQEv)q46Z8G{_0(S6>tu+<>N^Y
zAt}&c?+3RDx$(CqGaa2zOP*)O*gk#qygIGKK$_$iO1efr&ZUH=z@M_ff5MVv{ds+m
zehq&TrytJH$s`@QsgHsGt$Ej1!MEOK+Tv*)^#HJ(vB*E-0A^GvZxswb;(<*+5J*e;
z7`@&gHXrOIg;H}1<}rt9v+Oh9nI_NL0;i2w%V@HKv+sv8_*%YBNS@G@*za5KSHM!3
z++(cCGCMau=zLjKgqmnzU8j)-{e324Wx|$}b}A?EyTXy$@vQ}NOJRzcne7i-q-H;T
zt95)-I!tV`)_}TVmn~Lf#1I>MlY3s4Vk9>as`SyUya%D=h67i!>>2^<lBJ?o$&(^a
zA8m&|I#J3}s}0(ia}6d5qq7jFc$0YWv%OsWMW#i_vXot|*{vk7+GGPwTt&$sJT^zf
zVuRfyDE;%<V~nrZ(C>T~s7}B2KK%#O77#IEVE7GS7y6Y_`5}h9Ji#nLA+|#2L&ajP
z60b8cbCFJHovvv4Wv{SZtF`C(A!MC8)ULfr_Yc_)Gvt-@qdrNDvx2m;%EECZtSTq5
z#*c~ckTl0B^(8hp+yLU=!*Q7OUt9W<SKT)xBTAx@4Ov*@6T@DhRoRTNj^%Y*B+5>_
ztq3=8s__@w4pJFb*YyI7tS^j*nbxAmVQ<Dzdj?W@R47A@?&3?%koEt*ehZI$^t0e+
zAj^*)W_{#c&=><j{@bF4n#rv#h*QUT^2ds_l4ejG&>ecQr<C>;Vx@aGjnqFhFR#V2
zx3gy1(Pk;^P-*YpS`O%mJ*0<S;SL{VlIxhQDx=T+ei|q9zk1-9YGtU+roe&P|0(A^
z7bC<zuy1?^YR9MfZFhEa314r;HvQ3&-KYpnJPX!)nu=}mE)$xk6d1Y<@K6%nN5?f$
zi3GaVSo5)!TdIPlEWb$Qz%L%{t3IMGk;!{+LY@sI(ok|IJhVP7duZRH*ec12pRK!)
zDH+Rjj$+$~O_Zf3I}SV`-k{_XFcq&n_`sKUlOV(hNpuK(j(tX#P+?F_z$c?U$2d%V
z7)0$a8@Sd7jkN6OdW}eOd!6iDfmH;(kDnmhf#vbpv7#(1D5q*(Zwc8+?mRX#Fz==j
zsf}$$t;wN*$=If8@>@j-H{ip;EjeObzu@z&UZT0P5%&Nd3*>Xt_~{-D4S7|irM5=v
z0=iW#4_Vi$LQZ?(-cI?WzOSHvv^K2>{L5Wumzeax7M>^)YekzpOZJC}8%!eFjc7nB
zP&t01fpQSb8umt<_W3|@PZ8!$V*$92C;-<`@lxUY$DVOlF#K3S|8c&MFQ&By7$2Z~
zso#TN2rdJyZcveLV~o46U8lFsIuI{6LEUqiqx&C19+*)K9^3$`i^F;VVv0|fu6D0Q
zG(%(7{KU*Q!AB({eCO1))W5NXI~L)G$mU2_C-XZYJJ=Gc@Ro*pZj$@=W<|b`sd_Kw
zZ*eS;Eu|k9B<B6v_7aA`9}c%wg05eU^iB#P$0R87-@;gnS*&^&mLrCzc~~w({{CI^
z>sDi4JztP1mm*n@>sBWl@2EDRm#Lrv4F{RbCgjQ@f~m^W;;hDW!=|%bnqc8C{{STH
zmJ*!zp%}zJs4(Y&_hL7tEPrp3FR8eA1iz*aj#*s0jV5oQJD5J_I<z}(V!%8{_wAV6
zRrBT-BLPiALkn9zO=0?01gRb5X*4}tGo^gq>X)XQ5mm+H`$H4(Ts!VL;N6om!-T)K
zQNLobal|9pb|VX^&s#e}H7g3|&_T2n*MR)z87Jz>i$ou@Xr-<<=HXOg8{kqfW0mPL
z!Qd3-fC0J6_Uqa{i<(QkRuMqU0}P&phFkY<58{n~*SXTO?4BFvoXO+=t_L67^iI`p
zL{#sS-V0F{Cw}ubIT0^hzK(;$v;@hE&8229<W=ZQzJ+b*X%T0b5cuHcntsjpeWJ0!
z!w3A$ylWSiD$3WuT^rVs_YYYeT3}l4)MVVyibsp#zJ_k?Y}8U|{{|j6mw6q?c!zEs
zHoE|Q^JiS5?Q6gObfm|?jyn-sA?hF`Mw{K1Np?4WKyvVVRdqYvvvn!VGq2a$|3&TC
zMC7g1(G&UJmvx>^MgmhWcQnC^?fe8f03t@0dy0XhS+9zju!DFMK4;GX+Mt{j#YKi`
zqV^Jb8_f55hY$h<3Q+Jw=gZ<@ZlwM7?b#|IJ=|@Mxmu!7(UkUleiMeK{|wpX2C(l+
zITR{FDOlu?=vCC@US;2DXGm)6#yndF_9hNOF$DE!9(C)1I*rSE&EK@;19Nz8M}Bui
z_4srGRK=mVx0s8|{e0)@RD3d&1XlO=y(a~kfTA_*v4F+YCUAhx)Zljn>Fa#X#=93y
zqE1h~3=#;_jwSo}%Pjn!x8kKdLUEr$ej4(Vf~Uu4akKrfAnbyUTFCPGL(cYApmML~
zE~&5gdu|f%;hM?E8RhKpu5Rg*j4A;}2tZF@#m3rV=!gC{cS_=Y6>4l={m@D&+nY#<
zQNZL>{C517DdM^+*<u@SD{n-~;CDl@(omI_N)=4cL44=EC<rUS7ZBFyH=(V^vnPr8
z<*<acA3I<K^o+y<mPm`+enrayZ962=pZHK!%Z+8iu<D7Ze_Y6WzhKPBaY51xh-5-Q
z0xt-sq)ujf2N<y0hI8L3ob!h>u8>LN%&#)_V?57qJczt;?zLcgE6)8j|M1;9@F}D<
zJWo0M34~`>2lqQBWQx8Ev`0FdGzY};#18e?c9~ud5?NV?K4Wx9R?iiR9cek`BjOEf
z2*7)vHgw4@fAN?McFl8rMu;*XxtSt#E0-+dcNdw`!!w(Lela|V+Wc?#CZy<A&BH6s
zAK`-mSAmn{A73sO)CyEqQ(?{>(^~p$I1{dk*Rd1$_}me%4<-4E*3>XEF_(mGUfM4Z
zYQZw@*_u|?JtA6$56NrHBJJXaWEO^7&LZtevo`G9&-Lu*SOQlY#8y@h1+$`V!4zb4
zP|_9ei9<u7k8$QAv{Fwp>D{~pta=$5i%w48yHv|z=L?UYJ)1vdts08P9owxAN?DEX
z+e_~7PR{R>rE`EzmHg?6HH<Zv?6zQ~3}SV59d3&5j>HYV2Iz5St%Fb8^Hjfw+4pS2
ze;=0L5$`?a%OOGX*E7sgVOHrT_s+GmxAvy0s%y;7o_3x~V1%F3>c<d4z?z`CPQY*_
zeWxi`&Q0hqv`<w$xLNp2HQ^+Zw#kVR0sMVjy`oo3S+b-*G&O*r!q?K_kDZ4Jp@^WV
zv(@g=Q1RE}2RA>B1YV+~X>buE556WX(kmxZJi%{_Aj>poSGJ5pW2?CbN89dy7f$}x
z_bWn;DZz&Ber})WW+B>M)KIFXa7F!~!o53R%I??48d2k(59v0t)PzP#hvca7m+=fa
z3OSkyOAo);jp>Zv`zpcn5Q8#$_{iKa#WnV-8KL;Ky8mN5r~SaGz(9Z9K1T2-8Pea$
zNM0I6fsz407ybjCHxHx{?%BN2^>S`ofHU~IgNK|9)qZrLt-b1^8#gk(s`2%nQd(8c
z%OR9QZL4t53wLnJlG>wxFqK5>6E3(3hTO0=%L#VKUtflw^Ot1D!JUSq6j!{7bOHw2
z+<YZ&V)+_?Wmi@mO72f>9~tKBUA2DOv?m6o(YJ2nvl|>P>R!@=0?ZUzyl)2e_zaZL
z1MECVr)1~rV~NzZ_tC)<^agF|uM@_JK)f8?%()+nw|!AOc7-2BF+}3+Kde!sc&A1Y
z+eoBh{SVZ1%6V+CchyPry<pJp%sslg8qv!4R`h;V0ecw#b+x?2e|w_4y%X5`vxPH$
zl?~#ES0SZ3#42R55-{Gl{+k>7q*>EKf%~O)hi$h0E4;{*bt!ut(}LN}80X6F`KTJ%
zCSxSwW>I-w-%9?Q8kxWSbbs<U3(8@_Ohc-u!MX_9pKi`uVxU<`K$ysF1<ELm{LQi9
zhC`*<!}Mm66Uztn`(V$C<BNI$@<fqm%w#tLFG%AtpxjnvrMDZ~Mja^+uyGM0i>WG;
zyX?0taG`vw=evSaV9hF1)#tPk6K)UoWh&|6ea(-LXJA$_L-446kFL;^KV*bMcTn-j
zyTn!4!b^~r=@AG^hSKgi;DS2Y&Llhe?B?2bxd8m$>y|l9P6$7hL*)!7?ZRGUe3~Zu
zs%<-vIE4*=&y4MbK=(IK)vRMc7a2RJ8d!C*8EJ59AtWWIX_3cnL?#16UM8OaxA1R{
zZ+($rQ+Uh)y$e3>4}Ui0kC+C^wV6^Xt3&|<5FhNWxRFg!o~eyzEKhVBM6@1D+T3J@
zc;ofpx|WiPUa4}(_ON{Z;*HprS(toC_`a<VUWOZSD8<c~UCuMT3TL=?qq1;lh(~6^
zTVlFaAjdD2g9sxmFGjnQM5p;hHq-yg90i_fqI~<j{i*c~e@{l0{_W8{yqgh}%etIm
z)`>Ew=8~IGE<CO`kU7{FH&g9iy<Wagi^rTxo;&GdEke<)`W8Qh-`8?|Qix!+Y{(N>
ze`<YTFm*riRS%PuKS-x*V?DH1>qs%99R6M3{m*6d5_EcR;<x9Bk=(Gtgvi_N@L_X{
zFW1nGMHovJEZOHutQec(Km<9srUe-U?R?66)MAUTYWiuZJ&0wA3H#e8$~kR<W@Aj`
zKspeuAGHo<6`yqBGytwd%zs|dd45W6W{2f|qKkOOigJHDSKen8TmXfpKtnIEGfEy{
z=X!A@Qys%(WhhI7n?|tvqtnAZQF6FGcsu`X@Y<0`XAc&z!x?A<D)-Nh$qhOz1D6}|
zGp+ZZxqzLau*ig<CVS&g5rSr`iXqX%Y**@Vx3d7eZf8~F;GC@^H8`Z>Z0lDwq}^0X
zCvX4NE(4C;j}Dr;&p}6g(K1FoWyy+jsh;ZISBHBNZ0rg|T+skmRP^BScW`mh|2Mi)
z6>UApN07KwS3gwwG3Q!?z5Eu?2-JtAgRBOCnW3)}tov`iq&Y!!;7Ja`?eq$rl>7%c
zjXcRS(OHABixo&rVi>od*CIvE&{g@2hjxM=C32JMb%INElW%Aks-byuW@C73c@3XZ
zV2u0fr1*64c}r*g$N`y4;*rrB{>4BT(J(Tz8qm_SdBv=AaPxiD)Afe5WzjbK#AbX-
z7?6HkYcF5U{Turi;C}+F@v(;g&=oPq@YT2=SxWvisB7;|U$}++J2VsNGB?B4ro(Is
zr1Qkov!B)6&05V4L$7i^aq)s)D0#qp&sVafvk5I;=-Mvghb{43W&B+m{GBtWQU1iq
z%zcF@+x(C}CVooxxg(D-7^Q-0H6Ffc80l=M1u7Rcmqp!t0i(vq<QHNBuWA03iL|^%
zb)_uKmSF-(`Dq0`VZ$Acq9OiO>Y-s0pt;%T>LCy2jYQkjm(W{8k9uU~Z319GljYYe
zLFquo5o)>^*5i^bw&0gb28!10Ap^98GSK;-e|RNy)9^P+(nhbXhoeV<AM+K`olj0=
zRK8Hf#u+KxMiybtBSJga4cBQ<Cg2={szVwZ$U0K|%eIqTMi7vE3WUkLW4pP=)L13@
zrt0$$vEoTxkDk_w)IW0Wf*Xka+??E-ck^>AH{^an44O7)rW_298(CS<nWS$o%V_Yu
zQXsvefT-{Kp`JPqTvT|tws<FP&u!cv*e4=EKoFr#h4Q(JeTQl$gy?tiJe{Y~_!~A%
zQ3Y@#x!<J!?2#ElGYd`ZaU4TAkRqOCm{-Ax>Qd0rGpxMw$2Ztu&!qASQ6`QNRRsDy
ziUsjp8XtKSl7o$FHdd)p#dbuKLz$s-_=jMtQwlK((Bt}|<ECt&$7v{s1EczW{HYHO
z<^dK)3D{%12TN68)UCR1^3O|g3~N)c&1dDJ$7%gRIW+ddl&t6@x?$rxxPQmFFJvRv
zpAv=6Bm^IrMzuZE2t=Xe4&YfI@jf<;!zn*gemC)O)9s7LuUIGIS%=g&4#R+qU*6;y
zYdS}_&Ste|F#53ZvQ*xlRokL!>NUZTub)2q+*4^4U#TrZTn8sXXewhW7^;t~FSDP3
z9LN7fq}|zUuF?3Qu=JHw<g?ZOlL}D~P`XX{miD2ltb)8ULVr$WG~SdpFz}t=2N1EI
zQ>gPfcVH#LsL;^iUVa^NlGi=<$#e5C$ppKk_(oBKJH+hg*E}NHhkZAe$^}x$TXq}&
z`XgD_4tV6L)b9in>F4|rEPyeQ+njq7k-zy%GtHgZD#fPe-s<!m>Q$+VF%xZ2;`4#2
z&_8i~L(+vWm&&_5G<Twgi9HLmZ^^^;5)x>U%(B1E_9{C8z0A{8Oi}xVihu1Aqchww
zJM--<>vpkag+N8#D=qAv$0q?W8&Yn#m^Y6KWbGf=W#e7`2#D=$CLYB6m#ZTtJ(wne
zsUA?w&)KB3a%F^5p`#ZAFwYWS@1<T=gf=2)yY65#cKmntfb6?Tn|{R6TpqbZ^)EvA
zGo;Tc<vULs@cU8}EI$!ven}I-V8yle&Z#=M#w1uJ8T;y&E})R)69;vT>TLo$A^=}I
znUA}R1K~6e=C3oX7xl+4@Pg7Q#$6?H!}+EN*TfB~1en1*g8F-dn$|L^ba71cJ@?Vg
z@|uS5&=O69Z46^qfB0v@-M4Svbeng%0S(-r+*4rca}#E~MYj8Bo*VGrjaO<2)>yW#
z^L?LLc7zVU*3XD)Jx1^f`JZkMF!}m8j%%u{uGK%5bIKF@I)O^JKQ*{8i-IGFZF~(g
z<6tPDrTPlATFIP;33P+axF7h+lNuP8n}4E=6{12Ft0rXQzb_WfJ+lW#&IN;b6PXFR
zKh?sEQy)(K1FuJYW>H7A8HSp^PGAaLoA?9+&m2l1sLud<mM^hlX2qq?#OzmJdV_gw
zRbFd|s?}|c2ac#?gBJPycO*FgCqFWc=)kYre@^OE9ol>c&PKs~T7CkhzKEYWyin9o
z{k72P;v6P4Slq)XyjU6b{)ML-ACOT3JIGy{o89c9SkPZd%<85czYnTnqB1V>{RyZy
zikW~<*i}23zs7o`3U7QGg1m-hc(~CIy>8|)Ao{;j(}uU`g8SFZt<ez$^+c_UWfd7E
zwoP^L56kJlFP~@JnDJeHt?c+Nlosc~^wR!$A;c}RIXYihwW?&58Sp)eVn|aRgiD6-
zPPJ85GMSI>r0l3_;hVGPp1fqh%xTgd=du&UPHOy%Z(u$u*~b0S(C7DA^A1sKaa>k1
zbgRibz<+u_2&>#3t%5w(XerW%pvQ!C{8I-lIir_g(xXQquj!XiSqjRvll~ftEl3I|
z-$-Q7NaJDpHb;_4Yr}fvjP4r~IKlGYE2B;qY*j-#g>Ub%zDLt1FgRdxqGoY*Un-`s
zzlWcqOUll84kzIdG;%ogsG#1c%_+=1YdBvObJH?FTAE%Lzc_v8N%DV|ECKOar>qY5
zcKf4e#nN)MI6E1vv_)6DB~OI!3CST6W=;gNtH#OoeG(>-R;<okaLsE^+Sy;bCKSu5
z@zVTr86QJV=(`i?3FvAS8^3pr<E6`&EbJ+u&1W_~tv??|2rw&$#kz|4VJ{zDE$n_X
z5XkuCHf?{$wXARb-={w@F*-?Vbsx0(28%5luZqK;S|TvCQXqtdWfiT}k;en%%xthH
zc%6O(a?F&KT|C{~s5{O-1^h9@f|6D&ovt$b@5@lk_;vJ6aG=Xce#eK|rpyaL1Y0vt
z>wfTd)cu_oe!(7)p)izWh6ij@O0bYx`sR`?2dm5NTeb`o0@nLV+eYaflpgG_5zN-?
z+Jhv{S$4kd@#-`mer~6{&etjs@PB<23(2`@4T#6@chc|t%d(3-M4eEJb4Dk&94EU<
zrNc{B{n)A-tG`)hPciE}$awPK6UzPuiXU3oM*`92roWqck2Pg#Ad^mo_x?KqjTjgB
z%2@O~s|ry|l+y>$?3-O%ZDb>hUdjfv%s&j&FnZ02^>_f-C{CyCc=gk3*U@4j7i88U
zIl1NZER>oVeeGk(G*=4pTB@%>ao2nkMWrY|&X{TFl|{nsj{l-{_o8XrrEV8@@&lJK
z<`E3%D44<~jFn@rdr$bNNc{FNHNbsbhXu9`UtZX;PDVUPOX-`)iQ%^{)Y#!gGUGNe
z@Ai59J4>p;qVS>E&~@VIEi>J`+;XRf7datlc1Q<PcS!pb;wqMg8x-?Va06r6s}=1e
zKc&m)*<asZa{-@{5Io?^HtTa#tJ2_s2&Eo)4)BM`Z5uM2c4dv7ew7#FPd*LJ9SO6&
zO@$f99-w6mY6GX$sSp!l{0qHAa8Nh=Wp<^tBsZ8g0WUT+5m0>dYB4V3E2PtulGs}G
z+<R3fQs|Q?h8`_iHP={^jAJU=P@bl;Syqni=%MM6)e2K}D4>`Y#S1A~fOVb~M0zLU
zO<>A~`fTKj!{+%<ENU<Ob>1j_TU?c_QnZlhJ(&A+_g)R#^GyW_2_k9x@V-^;kE}_(
z5uVE+6qU+EG$Pj;e~OlD4!NS#h)VwUb8+62@8#t^V(H_+y{^%4kF?K5)Pj{E^d#a8
z$$8A{*z^teT#KQ`HBL+p`&sgf)4Z9NW9LY|gQg14mE#5(u4IkONaxYVQ$i;scF!?q
zCKBUD&?PDmt%rsISg<pRYD5^$?kW|AJ*01s-e+EomeRX+OBHs#t`c{w{qW^Qx>bdM
z$|}%xzIV^uNWea8Slqt&;9<7E?;gNMKLL<*tYp^k!s_M$2yb0G+Z~!woZ{$OO(n;T
z_)TnRo^9wu9Cmt`;$j?$iz#V{hXqHvgxz%7Dvd1Cy8j{yo|HOR%v+J#wAk~OY}-%0
zwx3LPuh$x8fO)5#;^KV?REwQuFx_51l#}Hbr<%w}6$$kAy(<eITN$?>yFZixj|U_7
z5#D{)vi@>0%0mG=r@aLwYmmN>No$bFUZp*+n^=hVLO=@-xHYcsSMq=&2-aE<f;07%
zQmV)Gv-@?{Hf#OT{VzmG$+qfbta?GG1gV&t;v~`pFTmfq-iqR$m<%vlf09GU^}IMp
z4?RHPl7eD+Y&b;f2f3_OBENM+dF}FYkp8Bhlc{8|6*~7EzFmLbAa<hD1R$cHej9?O
zvR?!lM=`eTp-X%68PHr;A4Rp|p6U5;3dnb{?9Cz!<BI*xT&4h^+e$O%sn;GHF>~aT
zq&P*?<@0%&A4>fRMBz)LpcsP#txSM*A90A-6{>n&$t|J)N!~4=5+W6USGcEK(IQp%
zqIdahLTCWQr#lq9Znv#n4M(rJH?T>AG$C73xXjLmzHZ<A@XD53IntKZ@h<3HKUcA=
zIoiQ|MR%MT$~!T2hTnSzTg3|E#SxJ#BlJ5%tBxQ*{xk10KX-6gykZMw&h&rJLFpgi
zg%HT|>&Jwr&?5VMfjsYhu_pgVmjeYhTWH&=><eI@Th`7cTkPGMX#=4_E^=b;_u@;9
zpYd^?m)(B3K1%tLin$UY`_jWF(8Um9`V?H@l$G)n%P$R;tv}O~KzWA|u1jtEe@B(m
zzVBpZ`sH(cZG1ECzD*@%M|T-|GgSDdBC|qti^@xdLqBHU2dH$L$>QC1`Ps<#uR^Ce
za!Cp3$oG5n#$N?g4Fp_RpiAD?jTL$vXG8Dp75Iw|1Sq{z1`6$07jLG|TJ;HQtv6w#
zXQ9}DO`e<1uqAA5g>6dIptuaVK2u@(ppoBbnZkG!(Aw)d#9LvyGf@H2^TS*)VRgnw
z!QmJ}wR3o$*ul~>bXNW7<Geku!s0&gYI6YxC(MEC4q4&NPtH#M0x#$vnl%ENiQrwv
zd}=(8kr(df_G|)hwa(2|Y}bKc{{H~3edoEyh7l(r(LM2jz@-edh>S<d;VO!-*IG(g
zE+FV!R^tc4UK54bu$KS@W;GAEwe3Mc@HF1yU(38h!q#N{Y+y&=^zn`TYUYo#T?URY
z?)tzB@*HUVT*#Ocn*ViA0bxftHp?nypB#p?P@2QV6^J=7<bT-pc8aSpKt?goy>K=Y
zEH>9L4PW#M9>o9R>Ov0KlX7~0A`5<C@`FM%Ee^;ecShs-`!jnB^jWBdRZxCBRs_w#
z^6fdbs)C1?+j=0ZApY@JKOZkz*b69Xen1qtcQto**8pTs1qL|2+&HPgI5G0kw;Ozm
zaf_E<RV%dD;R0OH=>>>kJuzi_Kn7XXi_atty^2Y$(pCoxoADJAU++AXM=Cw|2hOd`
z(r^Ro2$65+%spMxP}Mtzl|!yVqUYFh_5<}j?+Xxddki^_-h3~`>J_1UGZQEg4N<G<
z9@Zhw%+BUmPF2^3a{3{!lD1%?9^zB??wMsL^Gk<mP5k>M@5NXuG+1f1W4MQ#m!t|0
z>Dn0fX=9Oo_g_M-OV#-vKU@<UZ(f>0;S#WO*hZf!lTp;)1Lr%li1y5OxQCkdNVO7D
z#gdi-<%{*igf4$PG#kBe+r!G1rMyWvP(9D@po}N~S<3B^ZArF3ld}om-ONS!nE>+U
zf|cRhh3*B49rm%&yOUw=^q*<i1#8hEJnHhHDpk&_<5wdb%J&eu)9WH&a;cQ`53>;A
zRH+iv{{F0gHE_WY<i}<OzNYzsl@FUyJPoZs3ix9L?+pyTksaoK^e>FhgM#yE)_mG;
z_xSNVsS85oGWdu?$=h?a<e}}_c>27XI5pSGCy2pSlznaOOd#;7A13;c30@RF??v>y
zaEdD;eWN^O!rA}{S14L5&q6P>y+Xe(-ohVFk2xBic^-d$2B%;O-6e(|;PhDhJ&?0&
zuASu8?Xv{M%fl$(*6rDcXXmp(+m8HT=x40JZv>hhzB|1g=ncgPB?Mp#zfdSUc&x@|
z&t>1lpnz9Ctu~qT(V{Uqa@ji40K*(0L_Vm~)FW*7xAfG%@OZBc?Gi3!yEBb|YnA3x
zGFg>ZsWxpci`%=X&N|H<&Cn&SDqJFGH5bC-T?lJV{(cX)CW^?<waLkwrZ*<>IMvSs
zX_4(9?O)9gw%5PzynPzk>ua3EFoL)`V?Wq~X@A4d%P|1zR-XHv-CP-8zrlREYP?qr
zKjXqyR*BXYxX->z(l&MH2xpO5J@$$G^P**7d0v02Q0q30$0F0zMFbXh-TdaHr%vKS
z9mH*J_<5#N7ABf+mCKwlnm<f@qTx1tMsMbw_v4HTw%#-~xN=qdL+Qsfp{4#{Kh*AL
z)+@am$Y_qe8mr+RAm1Nuq44(8As+{Nrm>U7Psy&F%zyTM4yCL-Ah)xJdiy5OQ=ddT
z-g|+l)(>;bhlPIL)gZ0|a75=97-61muk*;x4I}bk>#!{R2HOGHobz0<Q;5gVa<D;P
z5-$V&Xb>BE-+ne}Tduc`GA{u<RH&FuJ02`D#R^}<tlCxki22F!^cer%jd>`i3`d*w
zr3L4F1QRJ-UC0>4OTlBZ7O_rAGuXJrR!mkt<h4!yU(Z&uxSUKvF1X-<%;m`Ivz1}?
zdaKBN{!a+1;&fa8mB+GnR`;S_YXVg3A)YjlcuHtxW|&XB!M9^3Rv^!LpC*~3-Ahg>
zw=ZioNC`?PJSgbZ@{t00)L~02(UK*$+%SpMhPANM|5CzKv4rPI8RKp#=}}iX<8MB^
zP$_O2F``SB4KH2~Vm-+I7npPmnYn$O@3HkY0gE~%S$aM8s-bg~(QeX?!;wK<g5}D_
zw9j`P^1#&XMbc=s$`4^n<y+}*I+5CcKoX$d7hk?Q$HHbL*BW~LE*6L`T|+&;9<*cs
z*)VXa)-mskC>P@J4BHKmd{CbLe3FzStm0^CdW|N^jQgmKBH^>c^78=Me@@nIY`I*s
zj|s6rEWc)Y`Mgd}#j8s-b9kmiu;>@?huURxw!)*#^4#fsk!O{Fq$o}^yMiXzoAulI
zV91j;fAtc8BlhY`)ohy!IM1$nl1fc>Du+|OYWA#DT?YY55(Ec;CUz%w40j-=P-{-;
zWIm~mo7`gP2%$v<3#yLW3N)pgyt9!`QN_kFaQFh_*g47mlWCBT!0pGqL1!Q3?t^kh
zJnAl)8!TCkJ80K$ryS=$=ggRB@Wu{@3J_s)UTYXQJMsxQ@ff&kD4bcONin<a(5zhJ
zv~--g8G+g?Zf##_`g_e&FdH(y@&4}i7SpxL2Tn;8Pi7LSH{_M}`@)e(&O)BIa{3NY
zpFP<&E+|6V)_#e=rz{Ya3&zD~hM;QwrF#iVWd{4o)9>oU{}VRj4oTf?dV%-s^uj};
zhglI3(^u&~2zN1YrzD#<B<nV45N{8$9D#8XssZ{6kezjTKLnW^GY>^4J`8%q8`5ie
zVf|Ms?|iqn6+I$4%hdgQpMTs)`B3_t>G6k_ueI&{Ir{yHl_qlWrMcb2Ddnfn*htTv
z5bO0P^z{9R&>%oQ7^Lz_>Na(TjM*=rpt5%nh5Z`Pui<xKQVD*=cUK+LN^?WrB)ju=
z^5+r;w0j(f`TM3e;vco^y(Km*b2_yE*#VSL^?f?D%WAEcN?#K*{%mLNG&<fB!puXq
zcS+H7d6`hgG3JCx#tEAfJLU(|VyJe%bttSeA&%$zU$)+|6MqBW8@0L96dOQ6bh->1
zhnj-G;<NO6-wHI=!puP5GH$UEptk@|LhfQ}wwu(jCZNYJ_bL)SrgTV~t~#vgL6fXB
ztNc?Ua<;iV3-F)7TE}t^H=H2H`KP>f*mLNI;W}GYW|ZV)Z+QW+)*O?`*g7ptktZyD
zL$fH3skszHYATsRg+9yKeuJcWbe4!)nDtI<{AIqe@vUW@J2g&+R&N&AV?ew!@ai_D
zcK+8`$(>WVe=rlMGpZM|_5Bw`e4`EGKj;h4^+vl~J)Zru)NtJ=m$QEBM5TK$@mJXX
zPj)#DIy1H}15YF7;jzuhC*}XH+n8^thIOlIo_pec3j(q{4#?J&%E}U!3;Pv$DDtfI
z!$&n^hq*X@&N=CtHIGDHl1`w8AvPSW?dh+p;M8g5mx4;I=TCBU(qV0QW;rt+W;jJ&
zLGH2buHhQsT<~z0Sg&ppT$Y(ggINL2;-9~wCs{wo&TjO}d*!1dR|%xKgbK4Q>Mv;;
zU!WxK(wkrGS^07o)SgC|ugjk?E|tKqt(4GNQ!ub+kJ09?#WW1%j#yEQ?C<?n(UPw+
z(GQMao%2|tDag2C$huj6OS*5%&v?QU&*KKOUlU^8D$%eQ9n~72DKq*ZRsZ^SiHOz<
zL`l2`A-P0jqK^kU_3TsH=O=0$%J#XnZ}?KA&f=xfl&MVjbsu9}`Ks=%2#|x=LKZnW
z_R<Q{81Fx!t#&Tz4}m<3ZGGv_BFMh(FPX3^Dj2|P_Pr|dVZT&@{`pOfqzw@+e1|xC
z6DMb(I_$ZJ?}B}2Fp;3I=v9NiJ{I4czbZ}ddVp9C9CdShBYg%}N0q8pQKK7xo#)&*
z!3+i~3cxL7WLq^?&fP0v#HbykxI?ED&R35Y`HYnp`8Kg|_?QbdBcD5PN(N6`p5d47
zG)4RLHs3vS0iF=!ny@$D&4!C-YWf2Fydbf`a%}87hg#SeaIuogO)?REoW?Nw6@pHH
z%$C<0y!L!<vnBuHn>WkbzPYoENyhLHEOUjxhO&;QqDfWK*y6RY;qlGJtmjK7^qGgm
z+vA(-0Y+Hk=h6sdRtTZ!P*I+TYfx$`=*!hxZ-5vN!yAgp^cP<{d0N6Z0VFH8o}8O%
z^G->;cc!O<yaubyuKy5~cb-$sHlF>k+MQu~i)ry9nQPk!R=*H*Qoh@=9e|hT88H&p
znN3P^EfRdX{Wy=J4kK2pl>g5XmZ4vhVrJbmy_eKH-bXiBw%%dc{pZ;E_|^OGk!0b<
zt8^LA9D~!PEV6j<1^6A-8wcQ$hSYukyy=goc_NqA7YkX7Gcpq&$b>lvjc;ihGj?Z6
zRkGT%+>m3=;M$BV_J&sVsxK)%5d&v;iG4`4jrPV$=RJ;Im|x%W4HH$WuGyOfSp$nc
z9Q~tL;u%m)DEO}`DFcXL4YNRyq&WN4cHH&Yx$~&eH+tfHxt;jm-g#sb9zyAN`_b)3
z37}D`i3-CcyMjx#hv4~^f+P43r=7a+1wlW~?L1D4Dkt#=riP<|C&D&WuA8~Lz3aD8
zF15<<-sr>itJQAf9(aZ$T)(#%D-zjNvhAd$Wpa6cuB+{;gpiZf;in^ER#C%#RbL!l
zepT6F#tl9k<km;Z@YK9pQDEf~|E(j!xA@_mrxPBM_(^^JZA28!&i!-CY+9!?vfB>#
z`VfHqc~|DEs_ApN`gh*tV%~Z`wx{};3}VyL*S{)N^j=U12McdDQ39^GLGSe)+8+%e
zy_@e(nv4zjO6S`ZsNawT3u_(Bft<G1e>*Um1vGevr1lQoIOoK<6qG<3O=*vna9UY*
z)naCx`h1(_YnCBmCPW;1(fc6XKdAKG;-y&*Y^yU_4>sA^VY)%oYc0i+CH~gK>nbEj
zy{U_El%ke?OWYkaYVLfD=5xB<Z`lkt4UV8wz5iXT*|+y#d~BxVHSHEFX-<WSuY!H&
z%Ep}3k*^ht#lLU<tGgbw%6}*%8-7J0wq~?O%o>l2_e2iop60ZSh3C(nC;uD?-evh5
z>!lY6k)(z0LEQT=&9tCK(}u(GP!A8oRpi;#lM^G7^$&T{Y+|c1XQ?Coo)3HV-(rU^
zoBQ~C=Mi6K&A7<9_J?ga%eZn@^VCskfnOHfzRwDI%gxQ-1<AeO`Ku&|m9qGZ*;%-0
z`}oZ8x?mRN(A)%)pv`<5EKuYte;1@AwM!N2ziYBQv8Q0DC!JF?O24!w>mUsOF~>8h
z$F?J%RrF4m9r?EWMy_3{upm5dYIc!GYuF5ZG!eQYpS~dc^XI=)nt8#JkXnz6HKS%t
z;y&=qOZlgKLo_NA$UlL#9HT+yo6t?8gA)y`vG+_HZ2pDv#CHT2cZmca8-^D8=Lnrc
zX)Y`HV2MWB!)HxruSOr2T|8)X?l!#~V?cG2cpP*eYF7^Cf84WsE5P$*p7Sqf+Yn?k
zqhQ0*Xm;H1@Xa5!k_ao=4?RVX8W-3-27<cNXDLY%b=25ex0lZ|cl)s8Pr42kV*MKV
zPreA0<f<Vzb-yzux;9C&>h@;wO=~g!*+~73iK2kB5UH(|Nl#|`-|GVI$i<p}Yzkh;
z25P?(c`*5D==L24F?--te=~5Zx3n2a*)29zXXv#lXS>L3;l+iPgB!N_chV=S<WpRx
z_tMjYA}PTC8d`|4ehut$$imaV7jupVsnTAp=SMoht)3)Zx~19?mQU;wM`{?XeofUl
zRwK6@aZHHBW~Qco4n*{JK9CBO2Q+gQ(t?63BW5Nyk}2K<z`Oq|8|8me4&5xa!^r2r
zJp_t>`+=eqjs67vqP`mU$<O#}*v3@r%E9BujbJ#%WwX<I#|(W)c>ioHXcuZe&YPD5
z^oP%Ha^~2QLwDi3gM2i&8GGK}Th#~+6eU5ZQ(n%N-j|qVWZ$^>3SsXNK83`h8>mz?
z23<Z7QZZ^DFSPVY^dh^@bB}d52u#-=afwKh){D@q=8Mqd-D}kQK;!QV^>HII9X%t_
zmRB}3nj@kqvk8RHilid^_S;>YlUF#p^KS)t+$5@ofe(B{wtnyS!*++Vl%Q9W=(TT|
zjtBlr*VQ5VBo_Bp&yZth*A-a|eo~jwRxP`N59kMXVbTI?i=|sG5^nV2NoKZg;zx9g
z$foPXcGCf+iC5@vHeRxmyr%J!xYY#O6u!mfTduXe)oWp4@j&mjO!`1vQW8KPJ$HKD
z7eTB8yo&q3LbDcJPo)w&xAaN$uq%u-$B~M~>RtbTJ!f=RbjZs`i@IL?nzhtu_v?dA
z*Lw&}SMGIxUbB-QUo?ic;}tbPP~0YjdbO`*f3SEqpSdzaEp;0af(&Ix(06&P{dQ#>
zrSFYGBf>Di%b<|)7<&&e(+C@U*FMBe%x}Gi3S)C*sIgm%)mNSg<L+YseC6N~pKY@b
zi!{0NfZ^(-ou&u;0=@cx{mUrzkWTyA*IyRBk54XY{*1H)&#*kSwE40B^C$g%*moXb
z)CT<--Cus4>oez+DXYu!0v7s%1I-`boL<H%JQPMBN4nJ1OtG`bu*1hQD9QaN@3m<o
z?wS%dxAy`=-F=#oRT^K*AD>G_6#ky$9#9_o&9i8Ke0X=qqqD4i7-uc5@Uzovm5q~u
z3-H)>ZJ^Grpj3eh^ln|w=AoIBQte#-yWL30tj4?&pxG=(9yw~CyD9W}0AW!rivBbl
zHMfEyLmFbMYMsObuH-W6Bms5XVgM+D7Sov>Fv87?bUHKIGTlQ>Z}-x-dN4|3MCB2C
z|8jQ?$+X7p>mkLlAfEL${zxD%puodC?oW~;9XO6ChJHulALt=kR_a|68`6!s=G!N?
zm^9UuRfc*Lj4Ms+HK&>Cx0}apJ3+T18{&p`{Qhhqcno+Lcm2G@g5CxGt(KNU&&eDa
z77i<SaToGzt_3?XlILt9rm<dO@leb|GaI_F(|k!}EdGY|&dr*R-dDjR!rFyic9*?I
z(Qylf=f`Xj&($K9@|7I8_cv|ktNW-bFlV(gw|?w`lFMbDZP?e=V=MZWgqj_du*1ol
z=k#KMfJZ$7i(QkhtNJalQfdZb#n4)NzWzC5l<Rd8NngogwX)Kmix>5@B$%wqMu%r_
z1U?Lh&AvSF!OV^sucmE`^xpBrcfNhI2gYZx^d9?g<`|D$=-Y>$*9D1MdDQ!VM%vv_
z(hgj}N|djT_s7DH_3>7hIg?~xbyW(YaL`07dDfq#xgE~Jx$i*Q?e+$)S!;Q_<BFgh
zh2`uMc2M0yLb-}<7r(N6TTf=_(U|zA?ai!m(c<NBHStx9qqP|O0Ax>p6^H4#nXjF?
zra|rgJD~uL@_(=Ny=NN{|Ns6t-lKfs!}DLRiR1ZWVi}4khl(+`FBdwYOLe#gd2Yo2
zK^87mAs>OZe=bI4LPU`72(d~kSe_`+&D@X$p6jtN4Z<qn%Jxs#sV$!Mq<Ilvb?#o>
zr7xdLC^lKyNvNJNF5W&%t{rGTuKry4ujhTA^T`bkq1*E@UU{SO0!VN7@wUZnF=M$S
zd*4OP5PWw=ht~7LurKqaHiXXd+X1GWyBZ%qhyC!SFTMpw@_I@?R_ko=OHEjPGEk2*
zYC}t^zrW3(@Mqv};Hi;z%eD(?*Y;oIh%Vv-=q{1v-q#uO*CVb&pm^E>A>S3ZsZht|
z+4Hz@ADCbj?=3IOr_xD@KMSv<1kn=71GJc1IE6ZmS|j$mW$YH2PPCur?I1fA2LlQI
zmBWZoYqG>p_r`a|g3!-k>qy{s0?@Bsac;nU?leW@Z>okSS+hr54_K-qk{0tJXAoZL
z(V3nSV5?8{|C70_1hCI+Mlrm`+r@2|h#~mXO1iavQq4ab7_X+kN^V<ljBw<sCI+|0
z?)jKXwhZXH>yWtr8$pt%&z34&ekT47mEKeCJ^eVkatpXs`#5isf#^?g`~-2c=4#ya
z(l$~1BOBowwzX47@H$qQ*`{c0V+;<#RKW-9!ihn)3SI1nK}0>C!kvtW+jc0Rgy#8*
zRYqtFNy}yf#ThvEK5RPkI1_;tzpU4~rPUuJH7bb!ZgD2F-sk#1j}4=Ddo(Am{*OO7
zGz54Z&jmD;I`Z%pN419m@?6hKM>VH`E3#iP|F}>9R8BP($^shqU#t`eCzm&7&$nU`
zc`EIkD3Os&c|Hpft?%xDYdyJaE8Q1gD-~6H(xyH=buz|82KXZH%F0APVP~%;YJfyO
z{O0xKjfmQ-gw=;g%CLi<Ju$C-kUakP!V!xOe0r04|Ks*bQF^p)%oXeDeE^Gl@qvWe
zkNi6rnmRin!V(F`1=RnJ3_nLX%jwusvh~P*TyL$~r@g*u=ySTwb<3X_^2_J%pJp3Y
zF|C<;aKY=GRxM{6BB#*+o7t%2A2!-d!)cb?UED}L>_?eBhnH#gF?redaXU#you*_+
z7e<*d_>{sXUluS*af$)zdEGU>rC>)7Ft!#5uJzNb5<B}Hw(A6D1+BZx`RcW$|9zWS
zFP8{D6)9$hcoJ8aR7W54{Je0M-}R_KAFiE+9O7{1kC75~tGYE{Vb;96#J2-D`fYWT
zqCc^`$HNV?H^fH+F7H$j7_*Q&GW4mEg6{ZwDZNGW0|9&(^QIPi<v+3)1JC>*&Qsja
zrM-6$WuRWH>4d9h%_r+*f!_<lRWZS}xEf-6%6~TMDHW?9Lq`I=2F8@7ngRW6SE9?%
za`#;d4iM@s-%lm9U=!ix7yJ29UzS@;1v{F~$t$<M+c`2(Vsj@{ClSGrwOjQK>g6Jp
zA>Va&gT7rzb~_1tGC>gk?c;*RQ(r{gbJSt^vQK`$JymF7eS_AQS0shwbE)V&D*v0%
zb+FP2N~ZhI1>>0#`OGWgX-c(q+`G`iAjGuO>Jd-RlOJZ<0#h>iL^o~RYF|Qiw{#0g
zX&SPl4ifT{J0lG8yW3LR;no1Ep2z$Sj3Hj=o2%AKhLDTBkd*Bi3Ew=z{91N$B3i|(
z3EAE8H=#Mb-KJcz9z25JuI6%v5bHn}fALDABW31wh_R?FGTcmdvmCLNdCwWmE$XOL
zRk}XI1ke{10_m5EpGO$QY;^1mB(Af2cEAHLkNu(53V(yR78q@kx4#~P^|4=$7XoQ;
znMy2HnI4660f>o(f&}7DoC-wT4{a^|cf3{Mfvoe#k6o`aU1Q0^-0@>F1jk#?%=9Z+
z#;CI{H?ExbVjdKQU`IBu9QDH)tj^}Krh5)6`5&MC%eCBT2N1>Z`atzSB_qapG|V4B
zGV{2LWmXpW?Li2&J*yL$zYs;%GxO^TU4+ps0gcpWHqV!RgKdgn|DifB&Zho0wDNkR
zs2BPV`Cm+)-jBC1cK%#zc?+6$OJDYUDTA1Mej3?oae=!B%MmrOP7N?absYQiu>a{_
zsQ!wrXxSkb5?$(#>y4uj((kdNQ(Bomua#1C&({CMoMO1&EmK)4hS^Y9@BQ!3L#UVP
zAobkW@^ty3r3o{TY8A^z|4>iQOW`=iUMY1DDO6~JtgI%;un^cusdBd_ipK^-9--z*
z$*wK&$Sh@bOMxnnmFSSu8JhNkSr8|?<5nzZ!wzd!CR+%XDfu*;)#{slvgs6it7)6~
zs61f8Os5)Z=MLNttl(xhbH1qm%{JoCb}muq8}W|#Cq-U{jc_ISJ38a+eAZ&jP{ZHl
z#Rc+WP>iw@4DY0DLOM6V1MZBGX+ip<g^`lQ)nZc^t8bo{BK8sG5KS!mg-g%OtgxAS
zt}7;7L;5?<QtKT+uk1Q9s0TyDKs(2O5+yH-m>=kh9M03U?eB#%?%>LDJ3)!C_&e9(
zgUA1U)BHd=R7j+CgF;??=P@q_&j=xnGv%9`{d3#~f+aJ2$26h09sp9xPe?LnDbuHg
zTPfpi_<HNILy$wYagI6beE;n{?+l9$@=`R>J}}gwHb*XID#zc@xOa(>5;h8}hN<Uv
z(v%$%r3U%VPA84|n!=|c)FYL-FZmtJcY15XS>>~ulG`M>cAQJ-#PQGHU2TP)Y^>)E
z^YW~*HK~zm^dPFP5B_bZ)#&M1#17M^aEfzI)=3p3b&rl;g`~a<VU#H^2b<o}mkl<3
zhK8;QnL!6StVEsbubW0tK9*CrK%4pxNB%tVhkqZ$Ef@Xz5Sb<^>uUXsDEUcF@^_S4
zw_n)K@S_eq$#O8qPED8Pb5xGPQzpUpAJk<ZzRlNrC5?aY4dqi9_De}#@1Mg_gI5=0
zLMg6WJ0Nr*k+<LUc%j43Mo>p?)p31Nvi@kwoukirH3MluZR+$L#@vXX!|?%&aH+iQ
zCWkzEoTaLvW?+>dAX2xe3@n}wd*)F<g--wV34N}^C0{L2T@Ee^08iLR#hvm<-~$fS
zB>|Dceq6;68)@%v$9C1FvQns;Vf`hcdK+!y&SBhB+}*r^TD!KMR$JYwY4#T4Pj$y|
zpo{v32JF6m1oJfAxRr34;yC5e*X##*6{YZR;B?{KvOL}~ulmO7D+JkEj{EU;?o@pz
zses<JW8u=3$%63;c$`ln+sh2DZq_~ctul2uJ_H#>d47)xTJR-C_y1lpR|HZq3=`%q
zncvzbi!`0NR0p;7SR#+06S5b<#vyOgR_8UD&jt0=g8MW{tt>wO8#(tSLkdqCZc@Xu
z3IFMry-oadI;mMaN<SFfG>{g|<97=%5wuxsFvwkdHg&H|yCTgq%C-kWiCoZR*fHEt
zylmE@CoxJ06N{A9Stly7`1Q|Efm`eCxdhO!rs3s7(0EG!a#(uZNrlO$*|QY#+XjZH
zd5$yI%>NQtOU0#Z!bbL1&vMrPsS2|+P>{Sh|8xDGJV?9H;LrO=&ivFzxWicQTXW<R
zW%$ZK{MXB5t-O0tib((3!v}4(cJhzDp%>Hx=gQTRUL3<vo54J)wG^am`^r7Jgi)4v
zUOK5O`6P%M$2t|JWV-eFClv1YnhFoY6aZf2n84w9y!ysxPi?Cun*DkHJ9pUo!e(i~
zb~&<pt%N9^zXhQL@vTJs&ecil^<ly2*jUORw~zZ4bseYkV`=zveL^liL-~^NGG(_u
z49BYcMTzCkf^|`{v-}i&*!6{ff^xC)bwF6l&4&0^b?Av>21h|$bsw5==wJDNXx%UC
zE2>#b#nG|j5BUWJ$ZdtOtJ1hL-HW4n`O9VfQ0;vrVciEcMa$vZg70R@ZS6gl97|Lt
z<c1z}^86)uH}190?=6dm9+;hU^58M29q6Nwkh(l<sVz*EfLpv_yE!Z%tovU-C1%hG
zBdzCbH>3WE1g}n9lrF#WOx0Cgy*CHf(H-!*J}1xa^Ignpd~?a4u-E>QG44K}HK8I0
zwNQ-6vwoahL}gpH3EE>euxNxGp)VVN`FqcNh>SRcu?XtAv0B|NvOFrKlG7Ot@(Qu`
zU(+_MDxT||h-}Lb2b@PV@lLU?|BjkRWX(lX?%7E`&E`c}0#9yRb%holbAbR#Glh;(
zbGoIPVBIfQ)=*l&sJ(FU)Rv5rU1OHc#x=@z7!Yv51`@e<XCv}rWP3?jR5b$~Gzd$*
zG6T)f@cl7?enZi!c&*sh@9#7Ya4m}8*nE^*{6BAuX-{+?vmHOYKM0Yxk=AyAExa{Q
z4yCedxncY(c{_`~>4D|xE0Jmb`~UH#e&By+Y9;IaKLFN1DZi)^02llmCYKo;AxOe!
zIL%rnAx)X8^5{wFoV<KjS&(J$mh<NXS`>a!;?LQ3WEL&mv>+SD+NENeAL>kdLK=)b
zk@Bn8ya*q5smZyzjZ1z3f4g)3Av5ZX$;U4f{1S44(Fmt{)rDyya_%t2it+9L8CHGK
zvOtxf*C5(V?d3b8R|2q4!h>I(LdAEo7ES*-1M6zs^Cm|LT=BSOuuGO~f!rzk!t^{T
zpZ0PMRSUK8mY>ZbJ2uVGDQNzuyN|p$Nz``yh71Y>!y|{k1|eENg<tH?SnSxnoFT{S
zWeGah3}TZbLFe+~MT%`%*2X&yj(+QYUa=^OJmX9_d>VA_UBU5^$8wZK=?Z&=9JxuI
z*z2TNTP8K+cvW6~d3h=J^37QBvVGB)6?tJ`YKByx^Wt(nAq%?%4)mz=X0L6o$iu?0
z2YZck$8;{(2s~&aS8{9(D~UbIVw!)z%>Xm145~y1bkoasTKk<;rMgjU{?Z4za<puf
zd&OL0tn%_r2v9eEPM0HIuEl-}p;4w{D+u1WTxId0n}HbtVUg?Hxa51C8`cS#fNHPe
zlakt_HjcBo)%yWyTsZisW}p0WO^#Ktb6`I6eQTcuE@!u9GrM!Cnp}d9a-FM>GOY5w
zC>DMRT`||(e#Is>Y@m@4xh9)iBpVaFK;Rgh^h!YRFIV(P$<?v0tJ$MvbL`9YJcX*S
zLcyPEU{!oh(7EYpH9s)7-FWGn;66(Iz=@JmUY)S1pqYC~d@EU&LJCx0c-cJ1g_V!%
zm?i(kY*3;xlkex)mjB=M$JP(JcF;vL|6S*zr5u<HQ#O7?J*2H42n#LEcrd+aDZS=;
z^8eGaXIxSiR=O^!HDsEQWuLWcGe@+PdMYxqY*D$EWS=HW02ZH7Emf7!Aet<5O0mdQ
zGmfX0#a8sz<=CVpD6-~|Ob=ks$OtNw@cX2{r?wKqsgYHinp}AOBG*=V6v2w|1i2>i
zjN#Sgp8Z~>A5YTzEG|c62vyzukZfTdvTWlNkJoDy!)tP_I7ZWn<XoD8nFbpm*Lg8L
zK{kn6sj>cEkFON5R>x|Ygpy&LLM9X;%RB42Rx=sHUNo>Qi7L>!W((4d{psRe?a<|9
zI!~$xO$rZH3p%)A&^4w$!4+V|@rKQ~>6^}zS1+kOqt^oN&%S#$T-7;XIxl2YIBGL%
zn0wXlO*akXpC(73u=zu>mWRDTPt~Tk^$DXOH?cR}=&(&wGPz~7yAtg&HG3+-59p<F
z!U{QLd4UK))L<hC=P);9WB9dU<2kN!w7FvxLgcosK1lDc3>&`cqf*NvhkdFjB)tYY
z4A{g5pdY)}1pQK&OL(zsItLaJMs3(^yke5NJyy5Jb}yl70oO~WQ#`ZOr8PVzEa`!w
zzi|68?wiutYlYks89#CJ1Lha-dwT{4do;Nw)45Nc<Vj=H`SwZ_tIAlmx%CQ=HD792
zs{J3lm-3oR?mZ=cZd8n?44;JS2Wt~7DLmr!xvvmXYBmzb`%m*NcHI8&KE03jjHq52
z!d_`b5J<*DU?i+INZ(#a5<5g`_RawTTZW|sulV~(li4h@SprDg;*tN8cO@i}@J5jZ
zc{l)MNiUYUZ-GA^=b-a-T|Hp$=eGb80{CYHkUXixGEe#UymrlPBh;`hz$VotIdzGd
zCWjUGjYq1?53}FrE%5#R`B?(p@7_Pt^A@an+V1Dqf9+c&#Ln2P;KUwYlmE$||HT%d
ze^1}~#<yf`{+(a_2E}GZUv2lwf%`xDv%lEnmFcs`NBZpTBmLU1d|R$p6Voj{Z^8K=
z%Dd1{e)>86)?fb(`p&O?N1I}A?>8%NV&Xx~9Tj+U<;$<$ZTR2HCZy2bZuifB`}}8L
z(zm|;8UK*J_}N$6Cc%69%WVUK_4^y&_&Pm2p6OS9<y(U7ij8~@_;XP1kN@=h^ziUV
zzy9rSOY#}t1#eFL>Gyvi?<sG#7n=(<H+gPX$ito;vcWgEaG5nZmG^HVPcBN~8Ep1=
zg$=kp;v8}|e*ZD21AAVnJqv`b0rp0@ZCKfu>pVAF6PX)T{p$+sBerZdQ(I=WXD3q&
z43>b6#<_+7ss%i|bMIiQHlEtrmV=&WbDAbsU|S=$fXA?1v6)a0{D8?dViT<VyVNq!
z2{FkIo4v;(-bevEp0qAk3h$DJy<l!z@3>K}Mv)$|NuW858#d87bh<0oa4!-Y#dtDo
zxHp$8u-moGCSB){YiF-P?s2oqu~F}XtTC?JYtZ?Mq*lUt&1US{mMGxp_<EbKW`Aq`
zld(kqYMJ{M&_9Lezhvgae=a!Ik_0LEZXSPPdu0DB3^1Db!M>k4{hv19$=82_4JMJ1
zB|PHyc7ByDV&sFp+FZKv17R+4Y{ujo{k$x9q*vNR-5)8L8Gq1crw4$Yu=>t1FOvA?
zzP>s4x0{n!onV3Ki?&zv1Q^DpiNba9?97xto?rWQJpdXnbPc;{8nCME_e;+W?u~O0
zBw9ZJ+Yvwf4OYjdeDF8e?_neAx$Iw(WBSk@06n(Y1E9lpgH?IV?R$rHkfX~frC0Y>
zxZ9uL$OaCvtr~3T<k~pb<M$hTEkAD$fKiV3ZD0>8{r}nf*JVqV<4h3qh|IP2t~wXo
zuLJ>-)?{;}8TFWKMk9@+9;w^LWO@w!(L+ckGd+r)LqA4lQulO^H0t4{n*)*{hz5u|
zaBy%=ovOXp%8XFD`{y1Wv2yLbs{lwQ6c$-HJ6EjC{L;h2Gs46DbHjRVEIlH}Cv&Vn
zBG-LvqrMJu9FKEL4Sn4j0G+-*h85%9YcDLVUcpstV|@bWs{b|1@dDe!wH5aDGrw^y
zg(un5;kcKhj`Q@$*m+%h`r6~1H+eRX#k=on4S+q)fBtI<@1?FC*xKS#Bfvg-btfEu
z`m2$P@9q6mIQy;U5C2D_O)A}P3$P#kLS0#!-bu|SVP2$tsuT+uJQ=!i7uwfG*CbzJ
z?lEB@U~`ciCg%K^;Y75#hy^1UU4yEl7SNVcfz2E=(`3;w<n83x6ZA{lvwE=feB3KP
zhApwIYLCq(ff){~RlQ>}HgRuCja~`OiVe?}LoJ1UY#N!mt|n(V_IPaAI)EprPA8J&
zB947hPfami^$aI>DK0l2ILjV3L=TITaIGCSLZ2t=^V;NY8%udg9&8YGV#KzTAXoH*
zj(c@ot~l=dG(=FX)g8eX`iS4VL)F@mMZo9E^-_;bSlcM~`Uq^Q6DsW`Vyi9nUi7iH
zv6P?_>xd2ddO6lo!<Kt}R7N?p@5=3REah6<IsA}5N=8}0mP4P`N9=(1Imx^2YM%$J
zie0h#vq2wM-&_d#m<V+ssFSPrskAq27ww^zLc})Ofi)bDeQx@=Z==*<+}o(;FlB5k
zRK$ot?vS(T;}h(FIN7HW+ZFqXRp%VAMH{sS`x$j21G_qNiCQLJv!^fbirAeWf3#{1
z04cuQHWN4-*WUM*Wk%6nq9(wcXLT%Npys5sfE;ilj+aU47~4QjbTf0nL!v+Y@{#`Z
zYr5`b>?5bYZ_>calZSTe<Eqfbk-4sj`VRAk-#Pz@ECWLHWUb<Rc<-HC4F;(@Jmzq4
zCA_5f+EeHU9#@~dy6>GTxQ0i4u08L*T}SeyYV~!hIJDr9GpDCVZHDuWgPK3)TubRX
zXEmk96<r5xJjedt_rFj7@?ZUH)ByO;$R;SJZ@8eImv{_qn-ZHN{D(jODSdx)#{c2h
zzCxec9O=9nz+;&=EqG4*Cx7sbZH{)7-*HCu&G9Jn_Pg^*-=WJ{=J4P6>X&7M;Lrc<
zUx^NX<LkdK{-IA^yr6kI=c`}%yj=UIzxa?cGOoD)Znrjb@I8BWyY=fc`rwxz(~o}o
z0e$T&U!>1}=F^f%@b7={WBS^cJ}(&goM)TQ>H9zaF}>L4+@IMT{m*U=^wXbzC=R(V
zf9VU`Gfooa&vJkF`7;^Yx7+nO+wMC*_<;l-eev_3mrab%eENNQxoswV^KZXR?`-$~
z(uS3T)Yv`x^ACPO-~5}up?|c=;eYfW{s&z^Pn2s4UbZ*UM{7@m?e~5Q?|U&RrF4C2
zx^b<~(;l|izK3mSe+ss)-Rzj%{|VT3+n<2#p>a+F_KJIrcA&d=JpUnVQLea`wLhj4
zhV3eL^z%3$pkyn|>vFre_kiuHPMALOpO_@RmQL(pqkVmS44b|C{`LR!|4skqFaDDL
z%YXL27Q4cmcjE5^HlyN6PqnZ7WgTkImf|!*_6$w~2K$?X?YFs#1eU}0d;J4o8}H4Z
z+s#f{z~+VA9<l>F`e>gIw~f!c`}4LTF)On|YV!vPjB2Xzq))!qpcg{aPF2T;2}yS<
zY~j{YI6URT7k+3*2gr^j+GT>5$obxN$GmY?OGI%>9cMM)y>ZvK9dc{06gk)}Ra0po
zgdT=;XImUPv!!M&ps1Mfasow=P=PF<6fnN+#<Q>3)(5dY#1C&+Wid7D<kZs1C!-87
zs*rhZ$Br$~zs%TulGI{N4?nMCy#m`f&>hLgYbivzYK3#dX1`Z@jmBf1a_X^9eM*tg
zl+2O4zV&&*y$xF#<XWwr>P4TQ<FnBYcm0AQPdnI(V@nO&+EXdnamqt2h1{@S<NRL+
zZ0CT@f1d)Ux?rQe&t0xYPn5;E+OTE$%^Lc=<F21`C&$^N?_Z<7hV?NG-1S4BUtk;b
zRj`4(o)>$ruS?JQZ#4iOtEI4C!=iR}z~$PFCD3ckfodt#D{ySxxSz#&5o;@m)9wKq
zbupG|-L+9Er|a03RtG}pi*PJ*>}*tad#dA{sH>?$y?uPN&uuKFoti2l*VQvwI;th~
z`8tjzljGFa1h}+Om-=|AuXSIpj;#b6rDIE+D(buJ-b*RGmn4!J&QGiRVC}kb)*K)9
zjwE{9qyF{N=2N~zAq$$+Z!$tEt4G%tcRsaAlrCKLf)xvnJcV{5k0_!Nc%ZA&jz}LH
zAf9V<eO^2gu-d)!l_=2c-U-(xU`vjTJd?oN1zSrC_sB)ZCO=kebPbzsniw_;a!6=b
z?%al5G!FC`mf_}+IQlS(4bFMP?%04eI_vegI5sVMOC7dC1NPFKfDL;Q8>UgTrH?v`
z*vPO|m#bq#M0^S3*4nel-6$moofxroa<ymE(^ak=w&ui>YnSSBs$HK4ouGg{CCI&T
zg?HG2&FU5GVaq$%I-Rh4mmPf_vBlpTHj}&SKy7k0Z00Q8lUunQOQreB_Vux9pO0h7
z`q<VKj-7VwfC%Q&4m7!H#z8mMO0Tc(tf#>a?C4_}^s&ixM_+xc_4-(cu~lkof2hwd
zY*fC)Mi*lV&ijDPb;9)VnjI*uA5z-GRxkAxSZu8MMg%n*m8WJ0WF1LSA4j?O`bee|
zuzz|i)>i&6W8o`uC!_RJ8CJ4&W}<>TnT(saW2Gl5waJ<AEJBAFR>)#+v%k{X_nkwA
zE*9bD7?4l03*pb#U9rCfAD>Gl%qc=!DFYX{IqQQH#oCQ>B&9~j!=E_>;qX5zrfBb}
z$op)+w@o|#I1e=R|1dRPX^A$SdS2)QoJrRH5a++t9|(Sw5u3hKxjjfFIPE-W2XkY=
zx$V5)Z^s{f@(KOJ4}K)hqtAZ&Q`^7y=?kCvEPeRPkLd5e`#s0U^gExt_?W)*`Onao
zzxY}D-1fWo-+fNM_~;Y*=%W{8K|DYI`7h|ji%+EeOP~KN-EI!`XSc`AX?LPm+or;g
zfBy5$S#?LB+RpvlXFjz#;Xg~Ce*Yc%@WWrwx;gfk;`FpRvp(213M>o#m1GS3WZR^<
zQ_5TRYiz%j|85%)FJEpLKK^*yu(+4(1Ku?F!skA%w6oioWqcog_@Qhbowk2J*)aZM
z`;PH_;j^CxeIC&dfAk~zWOJr{Zae?8pZ+wx#~B32nO?qlxov)&A=cFCk8Cmz4#=+k
ziTY^mer!4rj;-CCmlh~UxHk>=wqPe3u-Um5Jesay<KuvR#8!8()d8E$eRlN`V<`<z
z=8Va=x9?!10o$%zG1eR#+Kq~(23f^>`*A6|*iyunE^7i9_C(E5`w+IPHVXH<kSlCV
zhb{H>2rl%|<O;c6!)E%LuE^cyWl<*{#dbwsM{GIRs03%Y$$XxV$gog<6WiB9jdy>V
z`kDaIzDl15`#MGYTB~Pnc|8~SrR^O(8LNib{v0-D@h%X*2;_E{rVHC{K1Z)jbZso{
z=<A+7S`FT!7t{4<B4q;#(}y>iO6+U^=vD1v74I3F^c#0o^_$i%HAWsDO4_xPPR`|g
zN1B||&N$Ys27p9|X61!;2WwV-O}@K0>`B|XkDSLG$J$=N6`q|MND92NbB$jZjCIwB
zVRyEbwd49ONbyJ+9C^i#feqL>4e318D>$P_uwgr|jmKR1wZXAIa0D|plVgGdYc;tJ
z{O`iCo+ogFu5ehPXi#Z<+QzS)bChFnwgFp?{P4Li0&H?ME-OmG!7qK5<@#$i&h*B`
zW}NGG%+D`ewcrNlg12halFH3=!ZtIUS3d!3EBI>M;5oM%0LEu#eeT#H$83D>#rVz?
zyYlF(oSb7FhK59rjiZ&%ao+MtoxzUnpj1I87z*iA$dPh(PIcu{YuxoBSLnp*Ismz@
zs((?AtLXrAg5@~PfiJ!&l~CIhDuS(gpJO+ajAuXe`Pz;RYXbHaa?X%j(}5(|yFTwW
zQUbQB&f=P5v1QX&@S}D5dFdRsdIjedX}ky3M?I#7ZEe`r)$D*`Kl|oH?DM6`x#+I3
za#rWS)7!Y~#U^z&sz{&nA~M$3;NLMeG8<KTJ7D!Q^d&zlHt%yC=USvXi|o}#E!xLZ
zaywwP6pVL2+5uf?%x<G>ERAwr4O_~-$#aH{(y>OshRuo^?0|9p!+vT_m0+W?wu>AO
zt<S43g8Du-eH4d6z$zQfqMxk}1j|X^Rj8?QP<tEGBK;*C-%F(x5iEFjnX|(9joVu@
zwPUgg*4xehALemkBS8PlU$gCEYANBapLG&reXRWNTR+^NWb$*2o4HxJ>m>?pYv-w{
zae?cGQ=*&ge0DmnLS2=F6Wcb^m_z+w9P20L+h%hu1>N~x$60OGwg_EU#g?;e-WK88
zW}bG#He*9oH$aJQjaQ%BtJN#0sO7=WHVbW*(Ul#1!*rG3MvisH#@JbRrOpU*sB^sn
zPHEr%&2R*+urZE}xhq$DFSS|<jEyOBmV4#CJj9LYZ5%T;k>kDAD>#5x|GX&YKlh8+
z&#iq1Hk+$3hdQU}Gd9JZVROJ;zn#kyXzlX??2VG{CUUH=+UJb*47nb_1<rC+y0YY(
zyVB=J0RtZMfNg6xY{ju@boGMw6wBQDT;<yOT>0N;<%<V5z3HQ7GbwhFbI=La6|GlL
zMec@8`#kxkr1bd_@6=P{t~YF~t6B#_v1^$e+cYooT!LM&tzDn<I8(WrzE;;)>2t#-
zV@ZpwAHzoUbOoDjl8a98SmMoF=p)O`Hb_OT{4C664IPs9MQhE-SV?;Ch&|c?sr_-U
z^$L!&@xSZ*lXXJ%wb=n#?6F*@B<J(OvL8$O&OAb{I+j2WX>zSPmNImrdM$;)MzKD#
zT<OwA-GV<)uoJl*(7*`T0k=`1z6NZRVKceT7Q}%*7fxnrH>wJ3@WT#>{@$P3{FE$k
zN97*nYBeg(7)ydp<hnFF5c~Y7i)O{vYALL+QH*^txuW)m^*NtAo7~E!Tt#lsiD>)J
zXRAk~?{DVsW$M18Q+}$=xj7s$w$94M&I|maH2{vA0X`x?s@Su@`B1lc)6L<qUDMM2
zSBVmyrBAg6!1JTz6`&Tw>Khx*>7SMJ|6b$@&i^{L7jT?6ssmmv$H+b+daLIS_KA_3
zCM#R_@FzOUGx~ag&8IYQfwP{b<ZBO$+BZ)0<MAlLBlinx0z}GGB5CJyIMQ6}YV|>e
z+|D14cGr1n3q;{L>=6;~cT1m@&$_{s68ujc+u*Fm+C#<w>*at=f@D_R^pzR_P@j><
zoDft))q*og#tqZweB-NMqIaI%dQcD7<KU?OXE)DuOKiKy`|rO`pW6QY)!%-b{_L;5
zN#FYS-=pt*{|DQqz(@4z<qLUt@bi6UbEqG0Z|N`o`@g1t_t$?*FE@ue^ZDOy-@X6t
zyY%~C{_1x9n{9L9ALy_D?(gZ(zWFWs-j9AxU*5jIef}J4YNiUx^y1|mz1p1q?`@j}
z|MCCePh=c(X28$4&556U_)B{J?D^)z|GcboPN$XL+n(jK+XjUVnJ;de0AJpm{4B3e
zHal}ZZ+%i0`n@lFfxh_J&tR^&(#J2k=D<Rq{p@Gy`G(PS>UOgc&z?P_Pk-(+8~$gV
z)6Rp3!sd_#T1B}hw>`ymWYovm{2`_jp`Fj2pnp!Yg8uc5DYSc^1E=_zrWOo0Vz<CQ
zqj9c=t=10v?pT6jbi__X-KJR{uvvRG?6tbT&*WyCYV*{B49&^x!NpIJE5^<eHaT3b
zaPpd5BeuBVH)3C-T!AghwFK;ItvxohPuLK=*5_`cLZ8P>qP;#R>(c>y8SFsZjO_Zn
zw6$<2*Bxxq=deL>bI0^GJto&tU!y+5M(LcJaPCT{yO%P*IDn#!Y07y1KLv{63A8*y
z+Y{uv!Y9UU^Y-tA%|oMLGyP)Q%-7&+3-%!Z(ro)3XCT<U(LT$Z;~>w#?*<CC->~ud
z*J{;tcEIGC^R7OsPUu|00!r|v#NU>2(9b2F`njk9pgRsE3x$du2JQFcDcTtmumWY3
z01WK(h|?E4MH0;kXNyLgROPmVgGClv+b*yy3PA<r9P83iflvE{#f{J|Xh*U@j<Y(V
z&X{!H;J8-h+2@Yp$vmf#$^tcM`YyLKmMS|{x>#<5MIAv$IGlOX%b*T{(xMo)q}XIp
z=-9N=jUvLZImh~<{Mt7M<A1NdlV#ZKSkm%~?o>&-Av+RqEiwL!M&>)V)oLj;Y$|7P
zs;|mZZrGMn<bNkwbebH6WBshVaH8;#>y+EB881Q&+X}hOc@j==+u=L<;L>O!KRzj~
z$pM3F#fHhv0TVIl^D0<Gu4h}Y!g&dYiu}Inj-kBFv&r=w<jSWm9aero+rblqSc4p}
zduhie*P~^BoYZLDm|Wp-acuXRx^xo^ONJb&>vLT|oX^Y9$F0v<2W-M7#vK_A5o_^#
z*RD^k&kdV!*YD_KGC7jzbLgk@66DCm0u`Iq{?L?ek9uK#_!Q)}=u7ly1{CAi<hc4+
zL!X~@VrA{+Jm}D=>7!#KP1P0$_4aH{Ke-E6FaA|fjB<uUSvGo7z;<pn$Ls)q4)&ts
zx+AH!`UU4;2PnDRqm5$untn1it*0@O^6INx#SXwmS)ZF7IL1Dwu;UE59s<3V$aQMj
zNe|h9W$5$sU<Vd+=nXdN7_gZ=)p1>Q+^2@^IB7P<iau;u)p6g(ieYOLhFU`(M}2l1
zg}Nlw^b^lgv|d59QH=lg_SkmY?Y%{9(S5)q&$t*Tk9^j5pSA1c3egHg9+hPubAqQg
zdmsN6d{j0Ga{}WkcN;s~BvB(6tkCO%jeVJ0@I($XLZyu$f2RsBFKI+*7A_IJmTUq`
zq<+?@aM{^m9Z)I(nJ7sVY)g~OQVcb>YiBEDrgI<J$RgWVHEgLxrlMw$ZS-f@Q{7lX
z{iC8bPNRpdCO~m)?AIt+`D9B52Q^vLYXbJvCiW0<mcqj*5?aWe7q%#wyqM}L*U9k8
zSrpEkbC~OFXm#iy+MVU9T)@S!OBM~}W)ZjSGs|saFLKG+uJa_wZL(SmB!fe-rPk+K
z0Tm0bR*Px9kgKqmJC%r-SGm{Za?uQ)>~%_<`<veda8}E`8EXlVQu075H?iGoqY`7e
zuCdR7-LXNgQa49UyULv>?o*SiY@}uaosrrna1d!^HSEaRxM>ty#b)HB&$g_QvNA-&
zhdys(2{tfUpU1JJ&$7bCO`x`s=Q3<X`&i^!5fmQAl3>&Ii`3OnZd+1pM95qr=s@<s
zlMDy8MSWYnnAYc0!$w&g=*8NTW*I7Xy*e-KT2fbvk8AAnOoYv8!DeHrs$3?>RqE=L
z5S0j7L~Jfs%8=V=qd;{>mI+{TC7IVr)->tw<z16?{j`ERDe~s?L&#XMJ||?XF&29V
zO=bs7uCuObL?>)4W!Kj<n?6_7*Gz5)B&~hUuCHRFDvF4b>MI9pc$U?qV`&YvWy$rm
z+0PZ(o?^R!&E;BKO`tqCJHQ{=<PxfIO_QJCXsHO0NV!FKW)+49pUJx)eW+OjO1-p%
zv88e>?r`GI*%#~@%%M}j47x2nRh=~Y>^4j-fWq4Gm-p!u7wE`NsU^GaqJiFYA^-pH
zpMLWLRZtQF4<&d*ZK+8|blrZ9KAb`uq1|aGx_eozkLJWoIdG`k`R4p88q7AqZ$UWM
z9a`(^wFxiUYs?I6fhEzoYdBMwJa*B+z*fRDX!(smxnVY|Hm-2HzCOOrm*07Qt2NE2
z(Ox<~d{x==T$%6xv(54U>i%wX@;}pe;@#b5l8&mc;_I2^UG@DR{Zu0Vzw)`yYos=>
z6^{p@i$0%E^ub3T2?f`AvlCzb;uq)}U;B#Jp)-suXWmHRarUYA-lGqG@k_}fI39Hk
zaI-n<Z??Z*Z5st#p!@kd&(*%*IiGKv8i#`hdY#c{JkFlq+(>|tQ1@+uxZivNJjM^a
z`LnGrT<%12e7L>wZ2Y(hHI7Vk<k{erV9KChBQJWq)`dQXb_+gA=u@XTsTySKeQbSB
z!&sopng9`d%rcNbDBzvKb5S_9_E=xYty@z5ce;ix=pzN^vD0ty{a3B8VfQM*k-RI{
z(gJKBlk1)x$U&}a#Af%F6Y>SNLey;z$XYSV9oTFQaSfY|{fj>5?}t83QEr1=<vIcT
zx+6E!zYaToUm<@yIF+%_BX&G5;d<+iTwPz$o(F7GSP<9nY<0lqo4cg%aH|7xgneBh
zLtm@eShG!=HDpAP27gQ`UD(gK5n^+Ll9IQ@>&-j%S2lC8v2hI7Z`l}=1X%Do#VWEq
zq^~A7@6)Uq6j3MaclK8dW;FVr*Y!Je8vqSYbw`FCVSyxmw5Fi8yJm|sjV#rUv?3Rc
z)4Iy0Lfl=`ooYDau#01r%h$ys^^wj|EE07FuXFK9p|#sCx+u}A#TzCFvQ&#mx5BuW
zH2}EC%LFWpX{-V8Ahv)dVyipt;t-euRz$^W+6<zLr^%H-9VZPNjo9dtW4+@B2X^I)
zH43Cz4BTVb)-|-Rn8=%)C5pR6`mbTpEE_H0El)OhvD24#u(njG+@<(*a%5)(=tUlq
zyG8)FY>n)4tWD17<58}8kZYQI9&^Jg*!cJWIXbq-b;9~wk8_i2&;h1b$pO2yn*&uM
z_vcHV{g`@cax}Tl59s4V*tuP3TwFf`wx!il5FNOJEe9QlaxOuC+1^OnSI_~C_M9%U
z%^LCB$(6Cyek@rwk#YuWVcd*p1;#4ukMqOz3bfA+TS!5BsvXE7CC%h0$EEM%IF<tE
zzuHI3(COv4X9udu)om8qr|bH7f&D=n74=o^r%%jsei}AvH7laNI=0mMIAW`N`nvYm
zY8Xo^-WBTB)521g`e#la(MNDwcw|M^RN)n5%8?`67LeRBCwq6QgO5M2`x5@``sk8J
z9oY$s4-`Yn8m%t8(BQC^Y$VRsIG6Tbs#P;hCN4IwSu*FdE*u(dn>wJlT{g*Ayq9Ja
zQ(D3Qo@RCWRCVgeq);Z$wrPn?N}j~cR+~nhM%S@bclzk&?G<dZM*drNQpP4FJN?z^
zXf~`0Hp@hDY*c|=u_a&=xdHomz_u8+1F~WUY`ljl?Z;U+n$J4+EIRBAY#bHK_o~1?
znOuv>RkM$H)@s-|1z+3qF19FF9(UGm0VR&@ppnw?d>!Z7uC~6mtgjj4c7+2!A#h?X
z9kwhwVH9yi9M(~;t<MWKMw(9Oy^<FX8?kwxXT>gZ&)I*k?b{V6(^t$_6Y3MJ7Qt7W
zK2AnO0c=LaxAxc;1m?`xq}j!WJ~wP8ckOdz$0bClTc4*USB>VXz)s@)5xLq}%DQpA
zEH%8(du(+V8`@<a)sJ%?d%JcZ=TM-tjV0CBRj`p^E2yO)QQjzCZ2DNDT<Jm|Bet>6
z6<Y~*pn9K2eNB?RF>9ZCwx%vx)kcXYPwQ*cHkL+gdwrf#qhlPgxgD724%^&~r6fAx
z*pg-&M?28TH6yqH8!2Xk7JEltV0%CxgB>^x?QREH=gydCi4*=H8Lnr{@z_S`2EStC
zDCcF>?4lWg59ea~iE&?a?qSDgP{LXb0E^O`r-PjD+3YEMfR#F+Q11X6N~~i($HP2b
zof~kpVxvW!!HDIPc|vs0{q7^42KXIp<CFX52;C58lWeGH8-Fa4)F`K{7Lc_|&<t5*
zD!Fc0mPQLu!@M;_U~)g+A`pe6NqtU@b{;d#m2YbmJKxtX85t*~6$_qH+o+ELX7(($
zhO_n>uyJIoX3;fgtkXs$)T#;&V;+-tbT4ZcDf)YN_DwL~u;c5O#T~PM^Y`DQm#<#Y
zfB298ST+O1>Aqc`qxgCAKr*?v@$-jY|9zR;@mzyt^Ru6QNOzlq{U3h#V;P^%pFgKh
zz5gElPyXY7BAv;XXU_ls>c9Sf(Les9uhSoX?W>a6^zJ*)Bog<#-~XXd^?dHLpQ2B=
z5b$=w>2$YYDH6s1{(JAx$J_V!%UJ@AtbPdF>JMLhB0)?NxU)SoXYld6>VA9fIwg1P
zzW@A&UTjbN@yk!PXS?Y(V|b18$%{L&2~*s>Ny!5y?Dw3ZvDa?>@8|F6Yov^d{jjI6
zq7(3$RrL1(I<ki?KZLDnbaBo7=91}a#kI$=L=Rw}$MykR9E<#4!Di>%ytB4VgehQ`
ztc278h$UJ+JgfZu0JaM|VC&By7nf_&i1SWvz$W(^u(2-9IM*War%|rJ&d+Apyq_Mz
z_L_a39_w?)at%A_Ty6R__IZcR`h0BH3n0kwK<0X8W`g6*t@xYGzdYwY>no*Le{4d=
zUT=G?{bt9u>pazhH4hi<cFgy&_Vd#Fe$2MtAWK2|Jo<*}LeJ*eYhBeVcHqf<PBCyr
zH-9w1MKhNxHgCCx-Rt-tx($HN>0iV5Y~~TkMbz(@Yjg-nF#;=sXJ9SDLIrCZ1*Pq9
z7u~H@zUyAF2cz-`?Yd~x2;Yu#+8lzVdRl15J)e~?+oHH7>X4&FoF5yJP@Ixct4DJz
zh_07Z-fBvrG$WSIogy~e+pwJ-i!SsHtI?DQR`BBU%V%BnUK2YltQG>OJ{mSec|&1+
z0kO0!1zq4qdW<GlT`&~LF<rDDj_NR32f6aI@VzFZqOtbLiU(Hb5qEwqkCt0xcg-k#
z6kF~3+?)_fKM>>=<a)T7WnpgI-aWRd^|?Rm<k%))m&m@gdQ_LCAMtNl&(DzKZ0X&Y
zh#lt8=c)1HyFMO9&i*IpgmC&7$0l-JSKJ#Bk!uZd!@X^jEnsVXUN6Ry$dyXKGWBu_
zV@-BDgHG_h4wy_C6_P|^6<rj@G_R(Qwh&8~Iw1>89j9aq&T14>`9dH0<#8#u>KPNf
z0kej&rB2}rInF_jYr}>}JsbCuhE>6vFALhZsTS)81UmqIZ1=w2=S|KHTMq5IXw1GT
zQHel}FeydPV53-$t<Rg>ZK06DIJdDi9j@4c&c2piJ0SPYQLb5{ZqHqxU)q5Mn-+1b
ziTw=Nb>ZKzrOrn6eZH6-0JaO;4>?Y0Y7xB9XDa|`@2xdV678KP?>fA<yg2ZbFJ8hK
z&VU^E<FS~3-52n0-^U_d)U6>7PWcL{vjrQgQc+K%VkIgfg=oA)&hK6k4cN7lsGFWo
zh}sF0Z3(1K8WAi7$qC1{V75)0wM9G2Lc*^7C^mh}ipbX~HLm&&TPY2@P5k8q(qfeO
zC~vt=>LND&@b)v){nmKx0eh57w)W)`o7`*X*&_BFu!);0#RxQ$D|K?M<Gt4h`mE}`
zDYVyc@3Fn^ogc4Xje^p!Xq=5=-@#^b;BQll`ij`%*dF=a>)K<tiGM<IQp0YGKaZHp
zimf^}>vIa&hdzP6T=Y3zk()(g5Bh5Ms0?!L^<A;?7eXH6i%YBvTy82?lUw7#Czm_z
z=_C4VS0C%8K6Y{+?7$_qUSG+s{Rp;eW9cD%jB?En=%e+y*#XB^12(r&)NEAL$0zmq
zzCQZ1@9CrI8_RKN`q;@mU&_^@IY%3HfeoRD59;GJxl*&g#fk|}DmMv2*f#s7nl(Ew
z73fz|`Vz}tN^lHTes1)+Wi4Q!`*9xhG0q2S4zYU{jM;()_={xCX!CRRi~YHPh8ubY
zqP#0pMZ??qF*)h{sTEBh#b*)0P$4}R7qF=9`Qq9w_=C@Kdsup2aC0zq(f3bi7iz8&
z=qo!L)rwad2eq~H$F3DAqs+k-vj}X>(Bz~6loXylM_Ir}qrcVP*9sY!k4NUix{>8}
zVf(!J<dtyyGaV0aZg3{A(jDshNiz=0*8UEhWRp-~{N!gJ$e3j({mt=)-g)O8y16;h
zb8)n5V8e?~KG}ZvbNYj?ep#OvfoYNfaCc8%{2V(Bk4{U=o3^L(;(>gYftMuh3=hZj
zw&zvXN+}_$MmN{Rkyv$rT0O8Cbht|`a3B{CY&|2mX_PCCIybzdT|aA!h8G>VqL235
zhxB!+mG;bs>C}RE#Z$1EPI+-^w9jgM+O@-T?^z_zEO`pH+BR3>Sa58(w?~l=*ryR&
zxK@mCuRGZ25xK?)b#u<*wb-@CvATzSyuM+ZhU@!#<q3UGv@iE+<N7gd;XId9#1`6X
z?Xx!?>hm$fqQgGw<ABZOYVFj<O8l(`zNjBYYfAO@Gv|EOzShvbXFtW?6yEQnZTC$Z
zy8dox0lb*^=N9;UVf$@fgnz%vI8PMjC_EiXYP%cxfE6sK*ZOpQ-E?+@1Awa<(-Ka0
zel%P7(~y4R?fNN1T^i9@__(d(vh&C0$OTRzMRVzkf1Yjk1cf2b7TG#$%H|1Cx*Q=Q
z&O2GXYDY>9fbdfH0>yaQEZwdXjya`cj#!aNkSP>|4KEXd12;9S##?UO;Krvd+~5?V
zpIr&3#;=WMVF#>Y%>ir0aZ+A=D5V~Qe=2a-3vYRDauh7H)l#qt@<hgGY;qGvVJRM^
zvj#cJhCmJ2z#r>e^}x0ceO}>!6>Q+T)wCdj4p8GQhrUU4GAUoNq;fk?dGScWCP%|k
z^?V!~H@INQ+3P$Qw$-v6VxI>?qu5lg1Ubth-+9Wd&(%Te#gr$F&@^nUBgO%&lNIgb
zPOe2$98(T80E%K$9k`V1YJE=Ni!Z3HK#1gu`fAbq+4NI&VystSy!w(ZjamvCMFP3X
zMoY-b$=Ug0qnryi1hhUuNXN?LV=X(czS)6L1Hk&2n#0y=eHcHy^A`tf#t+{%uvXCt
zn_!BZ;B?Qq$x$QVqFtCeooKZ`hQiNlvr*#MwmyZvHajp$Mnd1`Yt!G{c%s`lhn%L~
zenuPB>;U9S)i*QDW@SX5njNsB>CU^Kr#7~%CIGbvxelAzQ?CUQ<XAO&za3k&KD9-Z
z+ku7DaXj@lX`cJBW%>%*jckRV&0YfQqwgiO+s5`9CNS*{XOqtHO`GsrdTT#z?hqE)
zy229sqZ>?GoKZNfH`{SOffqV%WD`k2HvaG?P$lEl$422y65%Db|74qWDEzz{XZ7p>
z2Ffg<lfo6e<IG!aywDn1q*3F-1-@b9d+_G2M4_<y<;JVe*o4EHsi<n>+qRkjN5c+o
zdgJ_GBle;jToMVJ3B1zET`yeVoL;&pxA<(>3ON5K6#EvAb)5u8?s}nlJNKObPV;uu
z3?jy68;cbj*AuW2u&Mn7wnaJrrItcjy(SR1ug(PyUj1c}%|9*SqZCLg*GcZd*rcWk
z3YF_-aBXr8*pl@*>J^BM0u|tlK4)x`anqyEQ*PK7@VTp8SKZVMIw5iecD}b{V4~2L
za;GXbLZ3T!viG^lops|3I>;v1wP7!)SC9v}G6%avVlN1+NI_p4ul^bO+PLe{=d7<8
z!3*efsr!Jr247pAg~uATS_&)rP{*1Eg)skn!v<b`2@qI40Kw&2z+I0%UzflSzbvk=
zQuF7$$nTBwe}!C+vCm6CmQvog15`_^uW<~0KD_T|;rs`8eZXd8DPq@p1iH9d@!k<^
zEZ2ao^*P2;1-5GS3Q+rFPOt;8QNX4V@T<$!Hr=PrMkzLlwq4HXbB**e>^H~O=Ykzx
zQNdQBk7lE!&(-n0noisprQ%sIY5+m7Q8x{nVo!aaAFR(;8A}r~0o_LBAlHf9M)4R?
zxn`H^G1`F~ZPZD}(h+qZnBzZbL?L4q%Fl$LCz0zy2etzeExro1t3?p<Z;Ma~Oybbw
zHm(7{zxB+4?HrC6RNnZL*L~7OHj1!g*T-yF#tuNw?@WS~P_#Wd4CMT(*DI-?FTBlj
zhtY8%b2PGzC;gkeFIV>in6t;$4yJb&vB@8+PhylU9IY-~&U2thCFOnQYcLhf;sHdL
zywE4`LR*Be@j@RF4a)8Ov38kba8x?CZ@;xn0>dr=J*Wxb*rus#H*6==q&a{#&pzVV
zsy)ZL`D!Fv=6Jico$1x97xdll|A7APJKq!T{{QCB|5B)R{^Sq7;Z8uN^LhU4NZ<O-
zKhQV7{auOZ|Itr=MrW1_2fR%hfb-w|#b45&|K-1<fB4Z)=zH704?q0nhVMjQ|JqmR
z{rBIcpZ@#<`r(g$O8@S!zeWG<Z@x|ccKi3UUwlM=@U`EgXU}g1_p|5Ex8tvgtbY8#
zFSPa`fB)>3KJ}i`{>+oUe;C{6Kl3U2!>@mpe!6WU{O#X<o4&hY`|b~aLVx%7-=Xh*
z_q+7<uY8IA_z!+xHb!}TGHor7?-ljNH2CR2U-;CggqG{Czy0s&o8S5l{rP|YxAdLw
z{lFvCb=q2cxz<MCVr%Caa<(;}ISh@4$GE<uzOE%W6caeqp|95G7X2(fhUH34fPifs
zv85J?-RXp31NH^&aV(iLbmS?IV{PQs-^E7yK8pPB#tdTZC&QK+9n79w?cU2ER||ZN
z*ez4w9ON49fMtJ6J2ut`>%l^Ffj#YDt0Ok7H{C`BxsFcev6ey_usL?f-LTW36A@d~
zN7D&&?q6WTe2E5qO@qFs9l7Qpw}<pG>ckS|x?`hO=&O9nW*_hF+U9(1HC1>satZb`
zGKH}Hu$n3sOd2-^q~6P<nM!N0{n57bv%TV4YBJYrwqG(VtR?_B|D)}X^<ErX9_nk1
zeID$<6vxsPx!T6DwyBqbXUZXtjCS^<9{ucO09@HZ5GRNZROMDi`pBdVN6y2SZHEQB
za6_7drR4}^5Cz`xrBBD>$swP2doUUaEv9;lj*!VCwG<EKuvWfpSrD9b@^yPWC{{T9
zEFF*A59-Y%<NEgE3+GGj`W~C{m^Z%c9vhA=eZ;VZXXEa>J%AguAe|&&Ygnta&&Ek<
zT;QIiFkm}h^0(I=?6*Ve%MB=4&RlTM<X#&M3O`%Dz{bw_1sv--@e(KOAlE}2OaY5U
zJ6~V}@1OAmnhu<#_*(1p75wkF$1I*EsR`h6Y;v_euctAkNYg=0|I$vMJND4$m0CaC
z9`<!&bscE!s*gvJtMTd^w$puaxhb928svzI;~q_4daR>9E`9pwIn>WEEHubHb#h-i
z{S@x{(C4+Zg;jw=uVF6|opl`gyy<H{&QHK{d+6mF?SQl&dpa4_$L3^<&uTibf+A?d
zHU})J)6de$?KJY@U$IdS*#R2lF10`Aew^RBT-Pwpi^R1Zrq<`8kG9G11~#hh_PJtJ
zo_@u~cHksM7BvNqWwr(zC7V!dudj^#5Yp!&))CuiU)O6k%CId#M_{9(T$iQU0j*ci
zCV}!ET6kf9fP-cKy)+N+tug)1+R37&NS$cHDNilZ<!%1h1Vrcfws~TFjF!fmM0V<I
zr^XA7-%rl}j?Es=9MpRluRgmzh5dR)&_O|TC)b`S;$HEMDdW?2?s^R^p_T$)b#rlQ
z*qEO=V{TJ8DzO@Oy<*dab(Re$W$8%`yG7;B;HH<oM|C7I_7Z9W@MDW3NCH<Up$F2*
zFE*{J$}l68mFYM<5)thca?2)HY>w-OGzB?AuE0i^$H|o@m2qNwo&)D)C3ku$Hj^D9
z2Z>y61<}eW8$YM^x^mYm?|6Y+?cPMKk6o^F-)<?x1rH;I<4q@IBVW^D7mPzq#Wtr=
z5+`lz^Q7mJZsKVqc2*jmTHC#$(^eC}<u(O7k!(>z@}5z-DmLS;&yz+Ot|nK_uvd;(
zkrU5Dv>>Z3k}Voj_0tNzQR{Om7kzH+`~!v3>!Ua)W~-&3{gttCug{jnp>BPy-1L}>
zr~+^Q59+fD>=jfscFfm;<fh32D70_#WRY38yo{}(&&^%~yU8s<?%L-Fn8*Y>fCx5>
z^AxaI1i9GegeY->9bkv^st?<02$;U=0!#X=_Sk%WTSq&fV@>I0GV~F0H5;X!1YZ4$
z^%Q}UL8H3#HIo9i$;YBxO>U)gYtL|ljgn0<yr)*9J+mxa=tPe86>?__p!QcYr6sx^
zH33T0$*#}g%!WRcRKudXs;mMwp);HUHmWYy)perBCXPn2m$d~SnXykw(I-)htIp%>
zeJ|>eG-A>VD;k!9=;_=jeJr3yuvru&2X|!E5j8`ZVhDgn`;mV#`Vgu}El#~fLsonv
z=UFWpzec#&Tli7mgZ|yQAh20NrEy%Fb2f@^{JV>c4bCVFT8y1%k)-Afi#`ww{>Uln
zd+o5>k!J?fem*EpoHRr~=SGtevt}I|{45-RGo{8;uX9qhYk5ay<oXmMJ4*{9lq}h8
z&GN~sSMv8SKK^L?`<~u^{_f`Rf2Q)Q<a45rKmLRVA-#KJevGr&w}c;lusQ6fZC?H9
z&wP4wjGgF{yL+J;xjh_Zt#o&HFXQW@k6r+Ol`+kZJd2LyG0RjujOXQxm%dgonpfLY
z)VfSn9P})gm#^;V!|l4Cf2DN;KKkfm8K}26H+0-KFkZfVg>&`YEEy0mpd5h2>n#5M
zqmN$7+U6w}13fPY5KwzkgPw?g%hmvx<i<XZbr`H4B6ocqbWR+ixE7{pU7Piv(?Sxk
zn?4&3+{^Bt+5}wMV_Vb_=ixUUBn#c?qm{4ey51gRBiy^gmQpts?S2%oKY-2U)&Xcy
z<W6A|&W+e>z&qLj8;dDizs7Nk-`9vOwEJ_#eyuIAxjrJ-?zy7z3%^f6R<-s~;({$a
z3k4^-^?AfjJLl8Xase*%mFNO{rc1dc!yfFGw2%5Yj1|XLYxit2FRI7{B=W#J{=2P-
zf^Db1UsmW}w3ig@r)TI4AGiH<`7W{cO8t0nS)|n2e*3+yFw#}I^0Nywie60Z!1&%m
z8@a4;Z}C0Yg>pdqdh>|%;^loe!n7}o119VqaT?b9@7_vb7yelBE?bxu?D9khKc7BL
ztz%>W1V;-C>mCk1<0;QZxe$)kan~ZBuN_--u^-zmx~GR|w6PzDb{Qb!@26H^^G&hU
zu=DpIR>QV~{UK~6aD$7Scd;ht@_q`otH*eew&P1VJ|tItvDUz~d>z}bjP;rhT*HRr
zY3?_i@=!}5Pt%25-xS+*If^&<dY`YY2p~Z}Wl;ip9jPxcV*Rzr@inont-eO4wxN{g
z9XVn#M~)TG^14_bumgL2-o{d^Pq2rrm*bmad)hd6eGGC;!&s6D_1xDh=;WG1y7Ky~
z$x$Y}uQARIn>f4Hy*~f-+Ng)dIlpJ#eSVAI+Y7qAmx$<M<J#IKLL@By_|?c<svp0+
zLs4UL#|P2dP5)De$#ku{$*R#QW!s>+rJwv#9skAZXJkZ5fQNiSmevYtG>?Kqb{o$p
z-1!B^jzlY0@N6cFlCAEf@p?mOHwrLwGPb%n>VOhn{5%xmOG+7L*s@_SS}b=0w$(ZP
z)!F7)=1J%%mWQxm<BuwJ*d%|;DCy3c$|?@ks+{a8D>kLUD&2&XkHt|uCGfjz(Q3)i
zDUjoYV_@&F6+~TUO~)sjN2TV-lOlWUxI1emo^jU~kbO%uJh1VJbL?}=&<S#F<GPAW
zO^&O{)vy=K(qj8pyUaY7E3j$d+<;B6R75@}-*Af9l-^OX3sqlE;k}|*B=ZE=TxXyY
zicPO=I?`c_wG`}~Y1pXIzDb|wbjeE`u-RDR0mqve6R=4X(Neu#qmERrqOVK6icK>0
zY^+Ta9HzkLV+qb&cIacRVAy2su;{U4XSrgWSM+%bV@b1EVF%WxztIjzmH_lIrhSjt
z#DPx(_N4TBtk=d}?=)|r&qej4jWTQ|*Fhhxo!h3UkK(9qa@G1n)b)8M*BP4$(GCO~
zr242fEJqs^>_F5Bo2ytRsAWK?9ms7iQlSITSF>4y&2+-Bo!cf)+aynt6<~cTea_cI
z7Hemtx;_Usu>-n^XxO;!$cvXnWclM4D}DHh21O{9irOHK+}DhpL#G2dv@7<5&PA}p
zYW&g5aw4Z4EZAI4S`?Zy6FA1;kG^!IKmC1O_wu97xxM3TGuE78+&5EbUnTp<_@8x&
z{^7?j<UGzqh|Y-={(c)jd-I3WCUEvU95E-44iWP?jGWXdwDZU2ZbWM9UfrGi_wM*7
zZ1L3QbbL~K&Q43_8$EFJP_Rw*F--o+*{^FhPJV~`*~Y5fkE2|_`~C0JzxbE`ivH*i
zzCr)=KmX6vi3UfUMI)P|i~qfN`I264&-~HHAJfl%@eBH+-~SqY`n~r8g{LweOvucA
zd3PuF<A}|0`>dG9A2)|RZ?xXs-^urfZEQ&-FK6Uz<Bkge>z<8f$2;|$nqA2P=75~z
z(fG49h==FZw>O#zA@A$bvS*GrN6+r!XS~0^7ds;NqS^w@kSSqQfD3AT@V)H)CgUF2
zo9291r)ial^cxf~?sOCK7u%B>ZAtv^>*}LBCvkl%2%U%X&8cb*?C89YZN5>J5?yR!
z)iyuM!@VOm)3?qUehs@}gP*W#2R^&EkEMsOh4#+Tjy}t|=gl|#4`Cymzt?{4-W@jF
z+vN_qIW|0dq<tFiEzb3wd)u>7=+lR=S)bP+_paUa!Twu}o;~Pmz*hF;8g#;(>G_G+
z-42E4erlf^_J94~{u}zUzxcQG&;D2c1%2adzlUtz+;nNMpUt+DKU4ff`x)C!$KtiE
zFY6=i=BT$oC&M1^&3|*jb({BI$c?VsffB}flbiY$ez9$OG8+cZS9l(&nE~2v_jsMp
zy!WL%6GDL&Oj_atte7N8L?whG3*^*jMWmodXg5K0sVb#<x`w2~RyDv{a6{8NPu30|
z@{^>XP0}s}&5(Y_F9J69#$#>;rNp2gkQOhyyH(QXa+;j~-6Qjn(sKa!_c=reSE80?
zERzvnOGw{dt6-CYWp?kg^5z>h!^)iNLLIaHo}Cta%=8w#;1F!{?AVUzXug&n8_mcN
zNo~>hz;1FpNZ~i|=w%ezswzi*@gGnGEMikR1N%YK{p|M|m9yvsVbb*Odr65TP35Ht
zY4g{yoh=hU`kY*jF4yzfbz*fLNLm+Sr_UYRtf_*G{V?mZFfB-_q0c!LxGFa8%X25!
z<k-4Cr=31GedS30Nz;%Gt6^iOZNz3NLL3cmI^c4jC!`q~HjVse$JQ~_0C0VUPF%<}
z^>UT5bfK>YanfoZr_krn3GZ{&ff>jAJO`;)up`$&U+)KOk}ggfwQb`(4{{ZKl|Jw7
zKzTqP6}yft&ghx9XA^9!0|%ba&Rw5hj-{3cw%6xPu8OT1b{w0H;TkB1V=u?)iXAvF
ztJ^3}sb>cb(>(A!Odk)E)&PidP1GoR4su)veN}9%1BX$rZlhFR=b(>j2d>yCmMiS-
zY0=`;ah&hlsMhC1EyLo}9XGkkLSQYOzOJ>`$F=nO*x3P2{WF?}Nef1|K1ZZ!01ZL%
zzHN*99A4Jrd&wq4?qr)LPoYfsy`@#!JF$Iq2R_UZ->Q#JlK3y1WW`pFSmCJJvu>Kq
z8qLsAch!o`qa@BBEAqxu1uLX&#aWX@surasJD{L0UsN4s8hOG&z_HGQMF5*)OYUvi
zAh@?-i|u@7kByx3@^D14YKu^}b`;WPAGEYPwj8j@6k8lq8km}7aouVssS{2%*$i80
z6YLrFEexA-rmI6ysAmonoWMn+QE>iZG<i7`rBC*3$j-<b2^$^Wd=D8L)uOzE+&H>E
zVFDYlm58mjdu#odf<p31sA;$hZ6PdFb<*b%o6SErYzHe6Uj6!|wD~5XPj!*g<f?tz
zHdut93Y_Z873_ws1Z-Mk#WrXHHlC~S^+An9u8&&$wb#cL5$wSxd8G7;jnhkgjM%JC
zt^EMGu0fxZ_4%aOWaA1talpowjWsS+rklP<{U5N&Mt*@@rB8$NBX0hLKDR!VIykjn
zj5WcQ8cp5`KIc6<U>huE2fWWGb=+Duh75%q3&!PsoKJ&XXC3Dk*bKXJA6?jiHP`_u
ztSwnJ3DNW#u{(wLie%`Z&&3XeJ}+z2*NANbMPKpyMQUp!_Bz<l(&^*mecp7Yf-;h$
z)WYU^vh(d7+2ksjD$^de!G4wjTeMM~4N9V~r8XON@Qs2h8$HuO7o@9D_Gpct3ORZf
zV$~vsYELJ(^&W5r`{~(4MfJ;zFUkhtcATyF`ZhOVx}eQbscUQQ$3)oIlJO;SvY-XL
z^e1FSiDD$%^ni0MslC+qV(ub+-Qo3?&K>xZ21ijb?`-&7i{P}+h4YX?G<?;|CCvG1
zaM;+`bca9MZBr)K%bEakFF1ng&~DTd5tn02$+KGL;4rnI8<|`3`6)T}<`imvm>@Wc
z(ari&E=`dt`9>A%vqZ@s)d9cvdA7CJ8`_aGGIHf!v^lt*@3t#NX{-N+ul*A<B*Y<|
zd4ujK1&77I#Oq9~cgBx70iO*H`Ws{m`+Ep}630L;3VE*En<MQ$d%bjgyMxrOQ5*Mo
z8RcGw%#?@pQE%YcNOCx~<68Vr!u*1Pa1QlwZ!;hl*c41BQwyYu*rpEJkacqn8~gog
z&pkgz+eg~(U2MZ=lzSc8Yp??kVdKv_w8j33Yq>paBX)E2Mr>xL(hjyV*feWT=r?t<
z?i+o_HuSljTZcZUfW2!EpU!@!{mg<Coa%e}D5nzSdIg)&Jf|!Am_{4bT^q%nscjmq
zM4dghjX~dh59@acHyiBhuI+|>tx;|W;EC-eoSzV6BO8I#^rOQD+uzA`=<^GG9X0_j
z>pWD_m9PE0gv^;YpD^V8uhagZL$t;cUYxcIMLvP49sg6Ut!9823Ur)(menGRLX?j!
zl9EwjV7DY`Bv+f*Rd9HP>dg}AsuOBiNQCH8<EGb%n{rfpbm^pN;O0;er9(#x|GV>T
zS6}#gR8K}_=@rrV=ooQAQR69JF@e^|8Re!W+*=j`7Kv!-&v?-ab~^??tko-!U8pH?
z(>Ft4Sq~)G?6}EM1~+3%ji$pEBJ7w{Y~WaTIcIk;kYNoI4A~SS$T`*kFu9r>$?6s0
zrCke(+gh}qwpTd9S+0)F((NauSWr2VN0lvzFct@b_qpkWJxhxubjKjDt(LwFIWKN#
z5b0HGORYwZuwyR`Tf{me-ClU}v2ak{=i+je=!g|jXH#xY%iK7DOX%~4EpUp}AlDTf
z>sY`o;P}@CS>S_*zR9yd-)dDI$jRhd5M8P|Ax=??<j#@Tki5^!(C3X0K6#&;zDhlV
z+9J1&yWR`Pf*Uf2aW48Q2HzrKv&)sSo84$~C6SxUG4#2}an8L?405#yIja%S*#RnU
z2b4D-<D5#cNpQ^ISf0)GwbfEE8<nS_4oNtkMr?D#rVg-#bwINNDFuDaO|F%i{WSWL
zW}{ZeB8&7@r&H`~DYf=}UibT4u_0;~4p>WV^|6F!sX?xtjf#CfsqI&LNx)W{9RPP=
zwDrC~v-cKJ_g?Y|1z|B*L;9&<v-eiUD;NKxKdWJKLvQ8BCMx<jbrXE0)>%EJdqyE;
zUkD#qC#uky@w@O~PI}vfKf)<$9P3H-v%r>f^r^f<#UV=)j39l={O~i$KjD#GVAIT@
zCHk2VwY!RAXts%;+smZU`@m+{HNssv{`vPtZ8ayGoAAbUacmsPEgb9i&g1lciHxO&
zl~TtW&A7#}y(o4eamj5i!PuCZMQGrFjk0Fla3{#US+2Yx3%QCMSKWM*c3@|02N^rX
zYa?h>Z;|MJ-S)!<0k==e4Q|-v{ckp>C}+Cz!LLfihG$z><pSqEmG=^7T$oLx#sx0-
zPUv&qY|hCY-?7h^bL(@*CjAnyk@jJQO=6i_pI4D<cK&zkbBWaEtOj5+onY|u5&A1~
zuiocMpI2q`S!_Q)8$WAG?v!_IoxV1?nZB|!S^Au9SW1JwYG#0rrQ{niHde&epP>V(
z%|{KJIJRYzzK}AnRMacT^6X`hD+Re`WIdQZTAvf-%JyHdNuNU}Kusl^@;o*IcGE`&
z&wZLJId-)JK~CGV@u+0EXB%s72lRa1j8ksl$#eo7|E#lX7)#j}Y@}l)LtjOIqdpR0
zEM>I=)W(u#3aA~Z&<V2xR%;=#9XRHp&oNJ5n~f4IVh0F)4lFa~{W6wT$EG$)ZA?nd
z4osbWRo?y-<(iasO7s<Sm-jtv)FH<{Pdd&SE95qXcc$A{!<G>38|9jCZ`dfe1FREA
z%$?m15cC!A_X9Q%%w|bVAMI1Vj&FE@=2e~au;tl!k5~E5>b>ZO>ni6?HZS7#N!<^c
zSx|{fC1mIypN}`)g;VDYxmtU3Dq$>%-7tCrwc!=-#W-JhTjvh^=|u`EC(=wFpa19F
zt%Ev_^_05ykqeyM)@bk&^EOX`7uvFIBQLZ?n~SY73d^<C4B!v9%Vs<>g(EMt2CgVC
zv~h#;{kcs7SGG0_D4Osrb--rVOSX<LRf3&NS0cxHmr+<%k2zrG)9<}2|33HWPd6&g
zQk;*QKi#?ra<D7`yN}70?`Pcg+FR}X$nS2lviZ0<Agw-=uASO^oghaGtg>-r*XD<o
zqQUFhVT%sIdB8?H*v<i)KidvA+mMO;@Ahm?<wPN1C^wGvx}%SC?z!nxXrCe1u06H2
zwei270ydLd9k5;K1mx=2hOuOFTOSxpdpzb5J3ou{x%t3sO=tY?SFz>5s}H%3<Ghrz
z%c~#z{JdPRrEr2=%>f?eO1Sq0cJ!%XxBGSa2pu`?$aO;dLpI9$d|mrKH@T&>i;e0|
zErlr8fNifvMS23ZJ-Mz!pD#PuBKEyLudq?p=l;HAET=n}-&l>Ld#(jkL(P>^+`dZY
z5VsH5E^4Y6=Rfq#YO36A=dQS(+y3ppwxP(^u6A!C)N9IW+qds8Y628xBe>Z%QN^$H
zfLzCM-r1;>E_6bqE0YJpyRl`Q5xp7vz)l8$?NpOQL`<0t3_5mg;6;h5I!Y%ofV%T3
z5$!}5sV_#YVA1xrQ_JaAe5;YOT8h|Fa_;ZO3w<LPxfl+Eyp_T`%300Vxdmr6bJKJB
zE%Qi6E^x)Jy!wZ!aY&0&T;tU@F7WNztcYjayK(xTfE7F7%egx?Y{ps5*m;6JfwS7U
zz;7ny=__UN$%|pPdIjsqr@a`@_(5Oz*J>#o=K-6_QTenJ_}^8o!uikF12&PX6uBV5
zCRp<&cfHqAFdp+OJmohXw$$^zr*y%gZrt?B2cH_RzVMWz-TFLppHGghVO8w28#Sw?
zV3WEYThobNZX-XuVh#E@AA(#%`&k#P&xE^Pe;={&v-x6WSz9V$l<VB{>UW&#=@Oen
zcm$oexjBmd-XjI}Ht3_(dEg5O*JC2#a+DWahgEfAtfdfn^m)O4jhp@&uYRkS0ezhZ
zeS{oaO#tY~S?g)s984ci)cD_HpHJZIZ4-HOcK7uL(k16V#+G3hn*}?-`g_xzuYGLT
z5~)5)pR*lEij{5D$@Mkw+9<|;ysD4aYAHbfuG#^}@!XHK)4;2LHXC*5`<y&tIMhrT
z>J?n=^U+3`J-t_KH&^X|^?7dxq&`74tlPWF?Z7ILq7xjYJf5CEyXkiS$M@19yqEZ+
z3n*>pv0%@l(SmIQyE*>*)YZ4~(=q^5X0kC%8g^$B6^op)0?W#=u5=y}b?&^-NgUVg
zkdZ#NKmggiOcFh>od1?Wj?Hwks2T)F@We_(r_^~Z8`K(Sf!CDsl-H2`!MKw;-m`4-
zR=pnIo1JhH-ANt^dtQ)AYncR99Xnd|6O=_ZPfGefvXPIC^R1CQ(i$5lP*2D1K?T^t
z(nG~oYX*0{Iv7|0##Mh_baE&Y+)l2@d<mQBx+$DouB*)HK-YnK1v2?WG(E=%lz?r;
z=8w!@$$}0VMV7kGTadvS_SiPhBQ|kR^QLZXeJ<EYc5ifp8hwu7eU+VID~NV7YB}_2
z!sZ?P_>BsLqCQrUt8Y%q26s}9_DRROQM6=KI9<`_wu#Gf*BStd&5HC*lLb8FMqwrT
zoMf{|`W*c4PE%G18>gxptLdX{K>JuqL9XPB8kjiMN9e2dIgfx9H323>tS=Q2=!jCT
zRh`cSxl%38u`W=8zAhTOq1YhTRGUsTY}q5XDd>c3t~)lByKXpZR*FzD$xgupY{m7p
zQQxo{X}^m3kv*}jeNK&=ela_M%ocO5S+xEN!Fdn@^fjX@_)@gCNe(uO+(s$Yg`7E|
zZpl(SC0%Tg7!AhSY!p9>WYJXUTh;|%SLY#_TtMGN8Q7F&PXbk<Tx*6MKoCMweRF-a
zv6iyefv92t)kbM{2>ho!9}PB0o<)_w$I^;=1Xk}wX`~P>k3M%h0J&w@tZFuj&zH>_
z-3XJozzhc~f@nybMp|2hP!m8L0PbZ+c8HHN1U4CXO8#taUyIQq=*vOPV|F>&r+?2U
z51{DVO-{NwXvb7=H0iiz*(uz&dk&EhP+@bhwuOTE1GxknhdO>2y2g)l_<d|AIC?FT
z-Xm92YP{R{Z^gaJaK2MilG<P6ac<87I;R>ogZLb5KG<)nUC+*~F_0v+DDTuFiBtbS
z7th{DiL0Z?oKW-B)B1FBp+4eQ<XA6x%=6B<VlP8m3bLYbZp0S*t%m!#TneIGQwvC)
z;`t9?D-pxcZrAVl-{bF7+SRFUR0eEzKgU)Z1ysCNqF#UZu&14S#bcM(DAxg7$6dd3
zJ;w&U8hP|b?0LAa-->pkhz*<Bv(RVVC-o8Nqs$5Ve^E<exc@afu$N&);rJp-n}VDN
z>@Jf5n?=Ao4U#?UPWv^vTA$OXkHc6Q<<!Y_ug{0E60z5al^*GH>OZ?S!)()Fr=Nr^
zUb`ywo3zwMbJX=8k3GveB=P|CWY18Qa+*S0cW!R9Y|-YVU|%f@BHI1#jUW4ExPA(A
z0kI3=xuaa|yS=~N4h;J4I!5u`U`?;T39wTGpy#+#t|p~lc<<S*@EYlJmX7m3F7Wv?
z?n>@)FY`C|_v%EGnO<(Z&sH47oHq1?<CJ^O>eh}*PPuW}%Ob`WNcMZ|vRAAQZBZO~
z$;o#9UK88Xu@+Y%-4z1%Noh6;oM##7%Cf2vXN2xR30C9RE?S&ZUjEbcYr{6mb^Lw0
z!VRuzIl4%ZiP8FWY*8mHP3N`b=-l;)<ln_c&i`K5CRfKQ1>N4f&)-<?tF5YW9P2(f
zHkIq^$nmMzI*#=#*v3AW;+`zfU96*=GwNwn^?p3k=Z`(hg+BW6Xa`yi0I^Y_&;2<K
z8_WM!v;%v*`Xm%eL5|iw+NdB`!Mdxj7)xdseuX}NEjtk9=r$@1HY)Abd3aqpKK?92
zA9K`qX*B?z`d*5ugX(;+1(j00ee~i^Hj?I?!uk2NU%<bOALIV#ajy{<x|wxzd`>_9
zQ2WaqN|W=$x5B5@GVzSNezEAR$XTs(K*=l#1u-oOgga3=)-5Zh^|2S1J%C0C#cQ<)
zr4|pBjGaAfHDqPMW@%C19-H`&#8wyD<ED3B^R+--Q;&UCr_mCey@CxJQsS(oN-$Xg
z8)#f2wrQ-T0PLtoV5zZ6{S)}$*K2Ym$n^>~$a%StTlGFyY$|8J_XF5$<4)R<y-{|s
zskzL}VH&Vy^f5bD`QBZh2W%D8D4kqEpX1m9=YNMSxAsx)T1&z78TyzSrP7SdCO)?q
zHc}hJSgvAo>`MDm0{^?~Blp96MXseH`>n^;GID_}0bAX{mXWQomaEu=F6RMk6?9IW
zJ{mS3E3MC)9Z0>t+WTCM5F)DJ<bDuamDQPCzZ61(uFv_T&qr*7PV||~%??BxWqqD1
zg{;@&V~H2jviX*%)z2upk&@g-4Yd@WVxvZV<ZDf-VM{FqUhP1u^-)I~MbL>_C3CvN
z7HpJE>EbxYyFpCz+^}^zQ7WiZiC(;{vN`<Yk5~G|3*Jy!g@%ylXjzIE_t>2CpVvcS
zZ0Y6%%TamEnZ{DKH%pV7*8Vt){YYE;?e>0nev|0yU$~(^`Mn#pX(1Y$?~AF1ZiJMU
z!AN9uxv^$|V*T*NOS!LbuY(rIHVoeO`9tr2C=$r>-t%Wdvui$wJ&tu*r(bDzM-$pD
zASF6#qa(=1kUQq6`9gARPdzU*h4C%#mT+DEjMzkH1_zJ%Pp)BO`W~(U@PGe*{44sS
zKm5AX0NCRSw`gGdTb45FAtTFtR^Qll?)oS<{${$;zJ_<e*j^vNR!6y})H$|OJU<8S
z`kg+Hey9uVNi)G{IN#+K<o*!$Jtyj3`|IfAV{(mh`~Ma;vt<uqe;sVr=SdCS<JfWU
zvCkjFX3zGJKJH<U`pAP~eTrNk(Z@aP5B0fkM&jMNJC+RVuh{30VSh*`o~o~pVH@Rc
z^AD~8@E3paSM<;R**~SPf9-3Vtwy~T^o?z_n>{pn*(Z+U1YNqY?bJ3Z?6*~op*~x%
zL08`m(N@)Z(a!&#-yYkX<^j3c96H)-8!N7lX#e1&7szNhAi$!{AKoNzAYXp9cM(J=
zgo3`7mLn-{<~Ykc=_A|U=W<D7GC>KMKVG7AnWsOKI9G&QoKrNmn{tt0nT#Hlv;7_l
zaj?i$M2F5ti+<MVW#$5BL7$KwBJJCR;@)`rIei2i?ZRt1E0;KP6!UMDKVDNXCc&2E
zxBM(xXeKH4TIBbJO;TTw)u34QIAZ1VS2;c@)&uyuw_{0dmuUM{v1a8#=k!;>dH{d?
z8R<;Szr9U%1skW|ZujEnle9)ofn{ur9deX*#_m|>3v4yY^`H}F{=M*?bNhDQJ<=Mv
zUo6d0A`A|V`#ys^+){}6TGMfItRh!nRXH95wj%8WxiY3>7ZF^&&rK(0V81uH%A^r;
zWKKfi<u9UBQc&`s{P4m(zWpuy@tiW`*d{*~Y}-s;<X99NFKQH9&{wX9KuxaqL9S$2
zlj$qu2D!FqdvM>2Tu(w}B-jgh{AX~o$3CBt$_i}R`n(kHb4hoq`}#<o92J|%@hJLe
zsjR9KmYT&fnvb#1vt#4T1d;2k`g&gV*s%tEy^}s)+gOsi5>2ir>+{3xSZlNc649>X
zzF^#oKH~Tu$4#z_%k_jB0@ml}bCcU-`Wfs1_vvET+zz16cWhKUp0NN4HmblzWz=FQ
z#cdMn+$qSF$2yNA;l^id^E~KlmTL*ULBJ-I7m%yjfdh2F^jG!OGA<N**|AagF4v|L
zI<{ufMITFtN%~wUFD}N?L9QXkkh5TmwjXw&A4@}@M;m3fKK425t5B>=PFIw|d+BuL
zy(DSloa$PdW4EUYQ%4>DYm)(@wp@JMKQ@Q336g%tZ+y>gIw(!qViYPCLF^POlT6Z<
z6Y6nHx*V5xUMA(hE_(iic1hI+O^I<YOI-*8#Y$D$F?K9TLEqDg^iQ-S{hp~hMr_%z
zRTP#bZRaAFOy|Pbl<EUiA;6aRupL1EhI$=}O(|GrU|*$P(b}*ha*#JI_!>e}vi8^n
z`vH;HLRSQAxVGAyhTS$vWYJ`_WCzVw5=w-KUFvNp_qY`5G;BFwn=NY*^e(`*I=19;
zC2@eMrmP5Jh}aUa$+NgzH9Xm=mI5}JZ_XO=>)4~*W^9VAO8)}iXY2C=Xmy;@2iROE
z2D!}v8_zEdTWEK=Z}&PJG`n*_CZN`#t)O!u$aQV~kg(9@_PJpbxf1$(ZGA3sJ?rLY
zkIkrS`aU<g%f0y7fKB=#lgl+nY(`xp`?jEanGy=iF0v`jxTj7ZL9=&KDx1UHQ+q{h
zb-?C2QCgA5*yoO|XsWg8tI|Lftrs&X_9b9jT_-dnV+FPu89`PzLhOLaO&qyRuCz0j
z+E`mqST?y%#Ia;lN|VcV>Bc$FEx2u-lupR|yt7f0W2+czj%~0}7j^)BUSMC{MqSu}
z)yI-#uE2&#-6*E~<JA5YR7$xYOGc%{o<|vb1UjPH_j$9QG}tJmiIUBsgHb2y+?b1w
za!rf1ET90=O$(tr$r%(PY#+7H8882~3MJ5lV%Uq*l!+WyP|wXeH&Hn%)e=+F>3gh#
z#<99xu&F?F09f(rT9sz3t@m|fKz`rc4{yEG-#*bHrN@{-1o?;~sy~V1PxieR)J3Gb
zL;eB5i*spgul@Y4v>#J^20JqT?|5%Jr{el4I8dY0%<f(H9!CDVGuNzF=AT*LyIS~t
zf}f^d$g1qz>LJyP?bqZU3xw{qU;8f81NYwP^Gb9PLEA*NFPDdENyzzd!1;IK_vtFM
zOKjKVTIpeZ&3eJz_EE0&5p0(kB&pvp**W(iZ0R+y1rUDk*nU;6k6;_+dV%js+upT(
z!|yR{d(XCKgF?Gq`?|K#<@ry*{v^3Q0oz6U&b^6V4;u~GuE~A(n$h0FMvl5Fn;{g&
zX=oQ)iuQQ7xVcz{bNc%S+rRTWvE9QdBeq_u?fdRFbbYLPdm8G%#1~@i#JvA3k9_jw
z&D#x3@N#h>(yqRn;Wzagw-;6vj&w%Yr5Pcjeiu$hdT7<?D&6%`aZ0jnZE3lnH6=%5
zyC-pnJ0*{H;v1COgp@NBM3hA*auyXNV3MZ1>%>k4(^B_TM!NftzZ23$?cR7c-EmWM
zZ&(fc>Zc=`L|e%=p-iqRfoCpY5xIEu3L*)r{927;t*(SJnbBD)j5D4^v?+ITwA2?%
z=a<x4O3o>!@5DwEm5?TGMcNVuhqou_gr(wA?sm)^OSLXUN^flg!Q>eG7@aPEOTp@_
z&8_;lwnsT?eFB?&+p`b~c#vZ$!H8+URJ*m_kF1~vbc!^>sX{h#5<0n#eU6AE!{+Hr
z;4Lqv@5%I&{9bZrV3l^0qdnUwS3<?|XliPs7P!#I(qvO9xf~sv>!0<58L`w-v8as|
zEtEzY^+?sD`%KQ&vB@J-sTBI9N~EURfeN{M$6^yQ*a5pYuo}Cg)bglpxutT|tR{Q8
zM19W2Gfi4@CFPxQkFk_M9iaLJyHQ&dxnXmgXVH1oN8zk?ZGAgKCv?GIVIYkb#Prj!
znZCLH`g2pjreN&Z34O{JY_bVsE0L$nuV$Mu7VI$FxbAF!6}$-@QwDvlq0e1k$zJki
z!z$#K5a}APZ;vwA0njE$SrTdy2)_8r$z|g&QyF~Wy;MW38b7Y>n8K%$W72bp-emXv
zx9;P%)+S=g6>TcG)Z+CrW<>RhQ^+=2lJfMkXt{W;MrtdM^aR^&<9<H00<!$cYW&6V
zXWaGb3|4M%jn1zUWt`y{6fEM@jM4jwEtz8*n?yAmwyK=}iJYHXuoG%dkaASZ*g%$!
zM1GV|`@@S|7DUdH^OW-@vp6wV<xo#pyjup*JRvJb_~8q(BGe%(n`M^a2IreamDqdd
zfXspdN1?ViY)30lEc7}$bdqg;&2aqH(4O_(uGl#1hrkctZ=Q)<t^Nx*)-`gw@xZ!V
zL!UENsgskEU=zzM&g1HRE}J+aSKGXR+`MiHvPoua0HENkQHCh?$*~pR_)~`{f3!$@
z>+>nfH6gm6$gyc{8t{^Hpakj_aB+H-8#WzRy_Xb1b!<s?CoH1av2h<Snu#F#x+?$s
z!6M|BhK>2)Jpz8l*jkix-RtHQb?6_(S*+M{#eB7xT(cJLEsBj?AN3uoeXh~@GPXQR
zXASy_=>1}KbwJhP*fCa$)>^2*Ccy`w<t*o>6RB#=p15Jf`o?x+@*t#DqVH!!=M&`W
z1&xd8BWnJvs6k;m0c;66VPi=g*=qqdjHR`;^O?GFJlLoN8&#r>LSbIifs%O=>gdeK
zEYKPih~5u&K(M9MbSCR=TO3P-vBZ6Ao7O98BQ<?hooM!R75j1sHi~h1Erq%Q8!`ic
z-Le+rSgLE&?<QC3Y?O~BvjfTW5%mlRo4v465-cN`*~KFcXN)!H{D+giZRi`PvSJgy
zX&GB9c(;>m4#@Fjl(vhkD<*%hmoT^14X)-ytzN&)=99XC0J1sMebV<-n2irphTlyg
z+}q%DO<T7Y=%|eEWpTc3%TP6rY2*BloYhNcw;-+4vN$)mjTz&GeszDZfhyL%8ineO
z-182>a}(zCy0M>ybDF=u1823<Ojg}EV#-U_i#r6<Sse|r@!KvLpMS?eU4{+M7P0ZU
zOsQpd)joUt@3O&HEc;Q%vjy3xts>Y_(2gR2hf>S_TAm=+j$<9;fQEKHwg5E?6g56>
z<A0ZSj4{WCb_q5b`aEJ=fz7b5q0dtu__lFv35GN52u`wS=q0>+Ss9IEJ+?bGwAWg@
zXB+i(lw0I~ALZ(EkO3Rv-p;X3)M2xBf?YJZmQn60VIwri^$C4m0`{@b9s7XIu2)?j
zLp!iVxf1lT*7_helPm3E%UX}%Df()2<UMTbhz;#E^mz(nEg80YSrgzXV<}=E$5I`z
z+dHSG)Q=@<H7c%RJ8SUV9=7F*zUGK+7)zz}wLjKDU+Xm+74%VT<#yiv{Y&}VYx$v%
z*#4e^{j_J5AOzUY6YMA3)|^sjKiLLLaB;BxT|3)Xw*BE*>^W|O?T@xSV)LL_9$O*k
z@G-e|bs*3l$9YD3#yrX1mFdDU@%j^piy8p%M`~vjU&^afkJ=<yIscRMl$*mv7sKR^
z^m$0fwG<0W!@oUPaRqe5z*&9474AIHffKu;cp#4X+Gj+zFb}%&X|I7BJaSrRq+Hj)
zX|2~fJWvy$raf$Phpln`EA>r0KU;g%^I2}kfUO-XeL~L%UmWWNkNG29;T)A)2{i-g
zl3SeX8F2sI41Dvqi1<C1h>b3=v6k5J>IHD84$I*hHm~z==-L}E`Du8zMfeRlJ(On*
zBG&=iC|B?Evd?3F9Qff)2gVu|7ufCxojCVA{d~R{60Z}XH7bttUY}Dls9Eb3=wt)D
zq_5HEb*Fvg;cvAT+W8s!T8fUvJ-OcG+!chO+-Q6v7RG)Ubl?KJ+ks2&dXe*Ry<4fJ
zFxmk`-R4lQV8AA+*H)wA0-NdUHMu_3M)fr;y#2Jmkriyz_L95Fv-df3&mPgoQu|}>
z$GKrWyN$Yn?L6q~xvy_<?rH{@9Y7t4s$<P;ltfyWW}{*;uxVGWONZ649j@r>`FyF5
zdv<`^6J56hH%Jpd57>y?pU=Jsir9)xhB48%_tpW_N+nFD?Ne&lDoDRuxW|t<Kx}fd
z$lto4SI5(&(aRj!N*o1yP{)_<-nhP>?$5HLn#H~<?|H`g1yQxaS$)8!mpLD2oj7IK
zQ<=A5W78*Xn?CZ$pTILNi}0lU*a_H3uz^Nmh0X|dT~hrl+D-}7BS|w&YHe8yd3!d;
zmd!ERY!qRkn^#a&<mA{mY*r`)cx(l1=Q9dn&l9kjlXsHM2Y&C!#>=5$vv$6KjC+<V
z%UzttMK?e|A0zLE42Lpycy-~>uyK8jB1HST2|S~SeB_olY}K(bcHPF6>^a%|F`AS1
zjulFc8GXL!ymLnM{7K}hea>^w;(e}@>0DZ$3;iLfO{(Z~4dYh1+T3>T<XT;Bf?cqw
z%@KWsPAK-EueIq+miL&-y~!2MOqT1cHLHlQkj!lX75luVmNM+vCY6g(R?Th?(dPl1
z=_65#u9vZ9*mw~lixhjd9Q3uizWP`)ib?3BEx!7C0&q}AY-e3GPxAzQti4Xa4rJJY
zb*b1yn*_6Ec||+G<9?oZ#!}U>=3MkXmNc8l>Xc3X4lR&t!$zscCJT58VaFy$(rgaJ
zW@D+1wG8aCuss#GQL^8>G-r5|tG##3Mn!DtLLc1@09&(Bm-AH?Y?GT_&*bX*y2)L}
z($dCKoR6ygRQsoLO^!|K4fsBKkv<mtiMfZ<7cRxexwRMT)0CW=X~tMG+s~PNvM+Sj
zdKx@06XyjM-F!8EzZ7}@Yh<%ILQ<OKz0;fz7z^%*@8?lW2}JU2+Ab7A+x6~OqqD;X
zj9z`yfmSm}GJr5|s!6Zi=;qocthIX}gL<~QHTUm6L?M=kKoB9(K{ba6;#&K2u3hBU
z^ofzEa!i-*mKZS}+w0DE5o6p~A_;s-?e`aov7;!jt3Z$Z-m_YF?p%lC=8tOlDSY4E
zC0sM@^x?(tsRbNe{B}5h?|SLVHSJvIcOS6(wWFNkwfC^^wAXm=+Jf`;<akY6(<s+H
zY<r*AX%E;R>+>3p)1GYNwTJsZRYRR0-kx)WPWye^VY_y1|KkewoqJtxtdF+24G90W
zaWm?`#oxm<E-*bZ=3m1ibl7A=CFs~LwuoWWeYx16ui+jt_QvyZFAX=&zOf$f>-zSP
z?dlHd!|i*Yly+^q*{*2I$BeajeM`_Xo!ot2&;vSfWt>}YWD{!&W8rl>oX?3h0Q7m<
zOUeGN*fDzlom+Z-Yc&A$(IRh=EC&6!Z;v}v{`;yFDPn+^Rs(?Gu(wI3MeJC+MZu(e
zonKqpg=5j8k!t%r(l@<G8hE2eer>|BU;`JpOxD3+y~j)bRIDjKk#pU!?r?uQzqTI_
zSpD~}C&worTN><GuYeb_M9x*;YAZDCF30rr`UG}wllxP!j&k&4U`udTP{1adi=Aa(
z*haY<Hs`K?Gi;Y~L}Zj*-}KjO09cgbjvO6Z6$kt^?)nO6!yC(S99xEMte+9(Xjlh1
zihWsk^mhmA>x`{v2Rb>9{P14uL#cZn=GCXcMir+*drBYMvy5`gL+ymv=iRtppHKtf
ziW~{M=)W;Jj`s8^ax@!NEZQ>*hwx+ebWbOC^)X;$huORD-i8f;r`M{nNS`Sz;_vTI
z^wFz3*|d@gOX~Ue(p$QkZ_|fX1AwYU{j79z!!-a_&|s+J#QU^rX41&3FBv_>__Hl4
zw)nirqL_5(Xr`1McO2_P;7laptmco6jmBBckh4eLL~KHLXPnhty@C*>F<GQDd3!M|
zC@B0OHaOX<VIw$@$dcc{yN_$L!+V7wuGTA9LoEgHzZ=)LMIXw&C-CNj$K0?bVDGS{
z9{Y@9$P!4ALOUX*C*_pctqCAb9^(oRIx%81ZhE=2y|=8-bCn{hkyqa`0S%jQs^eLR
z0=6vHz@xgaVp|Zs9<T`=m~+=tuM?%pbBoi^3S8$Fsa9PdliQ#Rxk;aA6lm?SslH~6
zrRs7a(??*_ECbrnSB$k#qaw=fLLWn)r)mX<QC~y)T(e*_)00qSx{%dNZ(|KbrKcxg
z<Kw02V|AU#LPu(LV63HJcEHvc-VUtFUC)tcgt0fu^}0T~T*EkT`q=CMN9}8&@<e@Y
zkbOJg`pSKtvKQyx!=_WZ9s3DveB-6;*a55a0PJI(2d}BJV+RzAtR#Fb7qOXKHDa&X
zs016;?B|s}Pod9c>}7e@Pwq;n0k8@kkI7BP&LVoon`0@|1ehRKq4ps-^i7V0u|id-
ztN3@exll{Xa=n=~%i|BfbfiE1eO>ojT?lgk#7JG4S?IFB+gX;j5hv^Ut>Kp+z0gQh
zsq3cW$ok@K{WM>V&d&-q#5nNe{pYtHkij35Q?sKsH@j@-PY&%8p?`m-n1ycb@f!Bq
z9NKGeD8;_FF=oLJ=KS?JG5$8Ej$NBSWAW(dcj2eV!}+|?^bbGy0sV{r`oEz+{QB?F
z|MEZopHkdpiq}aGI?5^~df1Vc-k|MC?Y}{6kG22m*nV^8yYui3&eiru<o2sR8~q05
z`WuwnW1rt7wx^u`7`D*~|LeT>uPXOnmmMfr*Z<{TeUtw7+ux=C<bV86=qq3PqDR<E
zzyO~En?Bmtcuo7qp9k&hVEeDNceXwJX7_x&llWPz?%<>EEleb>-F-DUj_n_Aa|g*@
zn@|Iw!|?hwgyzey_zLCn>#CD{NpWTVR}?Ucj(>^l!-VcIO+E=X2MhoA3}?^*ixp1C
zV?l7#EKiC!#e%PW1h2RpZxg5+Y1i}*P76LrbcnXIBj)DzC=ogLIA*@>)584Ot3;9t
z@3^GTEfO)F^Sqs_69K+AM-JYBXI!G=H?Vi$XTL!f0pE+U$}y*^@bQ#^t)OEv9XBkD
zjgMIlH`}Jk32BE%;T=B;2RR?}y(Z=%Kb>(rOJoeU^F*DaT3OC_NR_gv*n33uKD#~2
z<muJDa&wCurPhH)<{!6vvmE*NhYj0d2iqB`DSXV>IpR#PiX0D)m5(RXA295*@VB2G
zEBE=mq@-<fy*Wsqv%`#|H*O>{y2|f4Md#*L(`NKIOCR#WNBG${EVo<x8CYk*s@TqZ
zay>9F{?VUBux;3RgXz3YA~}Mb<-^xzc|5x@es+!GzCqoFS0^n3rgG)UqVm1+@d|7b
zVZLFLdII2UzX@_x{bafJeQt8S3H1i-nDy#jur1PuyneakW5&Kc7cVcgoi@2D_B%w!
z@v)_MN<{gFjg1CBi|Ff(>Zj<$CbwrSH()zJU%k)gq0i^p>p1XuGP&}-ITDMH8SA}7
zeO1B2Mv2pCS#aFvjQtK#-p_6=RSH-GHn9U6HeR&x@d17A`nqA^R4tRM93SS;=d;N9
z{(O?}bnNI@I-$>5KVNYz1jc^UD8+_N$I=~m@EIE~2=7tfg0ZL_fL!;+lGN&0Bogm%
zIC|O_%kg#?OIBxub)5B&#{kRaR3X=#Tt98x@AbK4mIQ2K2cWMi$5F0(cHk!Tx$5iv
zW=}cVp7oJ8BJNRh;zsN#*OXYqxqmAh{+gbw_VnOmiv@X$asTQb_Vh4=qyHr5JqH&4
zJumv%_AjvgqK`L6k&z#7?dM?ok2gnoE|!JJmFo?h7TEfO(7}i!zgo&~|K1|Jmv|%a
z7&ZnHh4f_556oe~XEPj~qgA|s-`+*M&BRp(Sjdw)W{oCHIMBu6f(YJ4?Wsh0vm^DS
z{Mi#Cr-iSbX&HC}dkO6mi33l#zd5qhsb#9uWr)+4(?h|BEgaK4k737b1tm((;OsZf
z>8cbw)iU#p-@W?1g`3;%-C@_s>fB+obY-Q3kxAc#O$eqAkf?1?9Wk8AvJ~K$QjZ|5
z#?LNJU)=!Y2-WEUY=Y(3u&LZs?!xUI<XSkAda`JG!xrg=Rus@x$0%WQlCiI6r8r?n
z{Zv7lBXZM_S<8Hy;aF{bt`0yxU*(oMxlWL4L6o=2l{b~M%XM`pu}mq2SFy>}`y9nq
zR}>_7Y)k9&YuLnLZ8ayZ=xe7FOygv7#YWbQKCehu);=%3@vm~#pcm=$s=WFMlvLvM
zT^fayY-(_pVQyn-4f<Gt&F*buO=`=`!&sX@yT~?<-}kA4#%aJ-$;XmV?o{365G-rZ
zSHqTiY<a+TA-4frh8>WsgLOrpo4%?(rwN<3K9)4_MC|jN5s1PDXhnp18%w%LG4^>y
zpXXg0#m@C8*L7zs*;w;F=k?Nz_s*)+F;3~j&qCnrN1tm@LK3~z`WMM{z<BWuyVn~y
zD445qJzm-<$xOjGpRBO<vS$ZS3|PieY4#IA2M^gO!&V0yRrc&B=GJPXbe+jUQYxjh
z{QmZcNPqr4sXfh`5=i|v$v&Qy)4wdf?&J^8efX~fivOOAW@(vYS=*Ifh&K^<etf$*
z=x^qv41!fRlXTOAoI-M%B8?O1glhFoW7at<PA&ZF{+diae|Vdx4Dkd1xNq)PokF;S
zPk(bMEF`L3{d5kP+6q2WaOlKHRf`DE=I}Qs9GpP)3Kn+|MQo*XztdzA-5A?zuO^6a
z%{1JbH;z8@srQ9;;*(Eas(r$|!6-h8Z6G9bKqc{@@vl~7$3?nKnW16hs%=PTiVu|3
zv||&k;@pO{wU=;j>f5hi!~U|)`D9Dpp1GZy0`_bJrz*gdha#%Uin_M*iQ2rrlgl-1
z;tCVTm%c}8D;k{Qvkh|H!`5LpLD3~P!o5`;b;s}_xtd%|ZWnSlY|#6LZC@v@VRNTt
zluJ_ESj-+??enpHxOWXy#=H7xa?Me!GT$?Ol<c`qAEQo~zCK+a4ckSZ<KB+V<!U-{
z1$!sg>hxV})YnJ!QC=B4`gpa^gFbpjPi^NnY>Bi}8}?2gk^N@&_|gv8y_>E-giY>L
z1C=pv)Pre+vsB-E_Z`gD^dzzGcrlFGI<onhT4vF>VG=hPqV1;8-u))L2mE^R_d|R9
zjoa>UJbp(wPC-5w6M%r1|4KIJPzmEVYQeML>CGk)^LSsynaI-i{biR?5UtFYV51Og
z?b1hF2!xIw05l=RFMW#C{+n#qhb}%wg%|JBUn(fX#V?xkCSIiO;x$F9j>j&?29Aq|
zQV~L5ne<6IDR|J&!cDb$gx1N5`0~|?@@f?nS>u=a83i(VaVisDDVkcOa2?C}42qc(
zgmXSGNSQ3YsL^y(rQlF(;HNC=$R>HARB?WtaV$|6?6f>97XHp0{xYx`+ro~(B3zlZ
zPAHP9SY<Ga<GPaZy`Iimj4or^!Pn<yjx9X-xS$^vI5iJ^Ut-5w@uI9O@kNTst}=n*
z-z&CN+)E`FaHkbiIiK8d&67D!&Gq85Sq-+xp{jF`@t)BqC#VBItIAn7v#e;Z6k-In
zS~L}!9X!%66<FE9deUQEY^eiQv8h8}7PgFinzhe)!Id;>MXrr!5#BfOwly74Y-fyB
z!#;uUTF%evdXrRt;{s&4ZP+CJ9(>hH=wreLk{12rbJdA1e0k8<b2zpF+2RmLYVeKL
zC1Y$E)&+|@lcPipRsz=Tywv1s`Y7C#ELU;jYSD3}F=8i#Vmli)A6u*Fo61pj!uos_
z9!zR|4!O=r`G*Z_f{{JL$*z+f)wwcZ!iup|O&^z{v;~ZP##mZcPh~#KrjP0C?0kAs
zkTUDovZ!AxK-~8^xVw`YXVp*e-QoH?5jr6Xo7=g+7;A3_R9{{Hlgdqa39Hg6*<{*m
z+{I#ynoS-y!p*Q!OeA(QD<>+3DZF#EwnDN~2V39YIYmPq{u}N5h;{en5q=+wh1KC&
zo|YP}ZV_V1UQloN68>%Zw7FS(6BnNh73Wu1N8z?PoEnuBJB{SMgrbsCIGo22Pcmoa
zw7zHO+IEfOF^SWMJ?2V3Hi;98Z30hP4-%YEK~+^XYL-w$b;EPyH&<4=hb;G3niz>j
zWoKK~Oe)JXQQrHt6}$x3JmY2O8Dr!3p^WRJI@7i@q{uV}Ixx076!SE`M_P50oaw%j
zyx+C>>``bks=WJTku#}KmwQacXT>VK!d0V47t#W)lN7q0MXn3(#T$|Lr4{Qmxr*Fo
z#dcbX^BA+uS%B?;W8MhVNLEeIy|3!fI*J&#cP!{}ggPzpdwcu7D5avf<=9ck+}i|a
zvSZuic2ehY0ygI1Ho3CgS*|iqlEUGWWVZ?S6#9H^T;KOqdBs_-GH<%q4b+3nRTLDw
z;aa;uHUg)E7^rgrxBT`jytvbOj>>T{eaf}#^BHnymn365;P>(lg$_-!YSQDIi4fGG
zzdugeeusI3I&)ZGL1UD(&(D?hb(?z})lq!{&5&@Or{d#IuoY~6aB<_*IMZk7tBfUi
zCngy`QjE6fJ5qu=&dMz>j%}X9Rq7&QIWU5;-S7;7`;>84a;Lex^SIA>oaQ3$U+o9g
zzZLIm?sMb4*9`#l`KlW)2cEMPD};-&gt_ujiu7*JQZaUNmGNPLJqOZ4x%Y(Pv?z4T
z^fs)=;zZ{;XVt1djD_Ek{{EE=%SI_@HcI4rB(W1#Ln6)SbJ(Z@un}~EDQ4JleuudN
zZ^AP+)=u37(s6z|Ylg*fI_SEA*HfH)hdvh_ludMXf~#`^b^zF>K_4fvp9l20%5|1t
zF70!(Q5qZr8>N-T)m~;4^*v*3$v93T7u`tFxAFNNSqZWsP(-eVjf0ZTW<SkNpwC4g
zp%ck<WCj1SZt_SERnE+sgN@>`Gl^sUZ1q}Da9B42m0Mlpx>!apoQezHL(}9%%Qc!#
zDGw!Ud|N+wf%i3LW|hIQpc{$&Ua~nr-`?IsjLr)AnXl@18vxWCp7A@(;5gIgL`z58
z7=t$!=qYnR%NnET=A_ZP+PdZdS~9cA61ZnUh8!#hnp@kfJV?;iSptUm+8lf$y29^D
z2~s>t5a7$ZJK>1t`w5n!wuJxPZEcGL?kR^qZ;J8xN6>`cNuU%-eE?h2@nl-4I3<Xy
z$9BJ6@3WuzH2rV?%YRNk{`t@8|N4LX7u#4k(=UGUO9@zFYAV^_lXcHY{vD1tf`xUM
z$K)YvmeT3&B=6pvn_C&P%VNCu`kp^+_u@^po7-pNM3kcQWE;>`up|lGyCvN#wE7~t
zp~uh8_dPN{How<b&8m~}eFC<_Q3It4Hb(ItUj+N+2iUNwU0!v)09$n0<i_{AefCT=
z#WJd9WPjb=y>x6cJ_l^~_jlTdf(;vlJg1m+6ZUkkea_fqbFoHjXX$s|fSC_7<fiLj
zmfii`y~=gFH@^c~J%J2tcf>a3M%Xlx(~{{XZxy+Ve%{>5@fkh<#lA>DC1*VG{a5&!
z_*oC|8{KcRF>EW|5oXg*hHY!-_w%y0tU9TWak|rYDeFW^cyHIx=l3#LZ(XkHL$VCi
z`&W1J-V|(>-OXbOYuoebUSv8S4uWkJyQrJK3kPd%{m%EE(C1c9!1|nJb=%1`_W7O2
zQLqsqi%zjOY#WxFO=mWJJexl9yHl{8B-rtIxRLoj>npzod40frF8av&D#6EEQ)Y5(
z8eGglt2|FNY@)9lzPp#!=Qm_obb@_OZ7lIPXRi60d_!8OK7|+mUf!cek?SgcvMFhV
zyZ9KkcD4~SY?_TF(Z@~Z>n2;#$Fa{R9p|zZVV%I{dehg<M%}56V(j9}!Q4&yd}V4*
z#eTcVHR_|xmp0qPIw#mR*_AMsSYKbfdPy%{zM?OF?(_8CJMYk+{>eY0Kl!Ksb27FB
z<HcvHVh&DW+bnZC&|UI4Ji)$-{S^O&z6<!nw%G!sqisJzPGZ|f+dpZ*IR}h$(4z#w
zVxF)f@RW6ugR=QIf^En4t9}>9YC(v`lyE`gTpHVejC%__nKS^S%`SqkA^mC;g7c%l
z(Cr$T6xA9E@f1w(7+_MTUJWnZmcpHJtS|H9@Di6A02N%{GO<0Vllr`L$JWl#rDMA|
z6z|nZ*Us07&0C4y*Wy+hU7~!lY)GvTgm6?>YDIs*?`oWs?OwBA+wM*1upj^Y1N!qn
z|1(MZ{n-Z}iV=DyFUHy&Pw*<qe}<i`H*fd<@gMA-AJ3J3eW*QozmNBJwMfZ#{ayzf
zh4wb#ySVuE=ca^R;CkWwYdb~{Jli93&5vNa_T2vGm3uqDgfA<-5w<$E(_{Az0N$|A
zpQMj|zBRNT*!g<-+OFe{Qwn`<7agqH6`gpnoz$P~`hEr5Zl70b_rExIfbkS;_ROLE
zjrGwV3i^0)?OyIz?;Wtoi+-C#@XP*lpZ%P?tpB6`;h)mizWOEkPVMJr^Cr|(fumqf
z$?a>ipUCn;F+Q=Mq`bMK{fxGKwEbr5FWb)-=jXxpPk3=^6#4cNe}3y!4n85K{r3`o
zGg1QCOWGqFvKA`r)BDDbf4e>{MKTUYjA^JXPvRu9HFEwZ;|eF)7?5M5>o{oi!|4RN
z8D2P$MSf&)a7r}kNx2y;0<IP~Yo-czx8f93678I;M_Mz*ghUY8L=2q&eDB1Z|7TkS
zDK?|wIUK-QeZpk^5GHadi8H^HB-kW6ls6xVoV%W#Rq8;@>fBDimW-w(DO(niQ-9gL
zZJwprlHNNtN|pm6wNEDwLQu|hnRG_ES9ONUvw}Lzu^ns!g>(}nCD6IpoUS@|w_%fr
zp^UMU44cUX5yc(0BF-_B+ZjCNj?K?M`ht#^BpEdU&ggToK}2xQXW3PhDO{;eiME3J
z!!v#s1g!|~KK0mQpGR!cuKnVDZgoluuroGxo}3W94Ckm6`;tCa8Yh{;V`D%f=t?L&
zw&<A2#^H}Xmy8V8*IwVW53|cv9AKssaMT{b{~r6i;@K=(nVnAOlD*Fr8z`qtw+l6F
z*drE>b=d&Nv5yrEfU)R%k(=q8=_^I<dRrJD8a8(P9~6sl(~Ev)^tsBFW(^*3UVZ38
z$>c?5Wv`pGeunC!&GWTS&(KG+1Lug%^|^=*YI3t;zZh#t`$hDXua#6^g_6g3^|SW5
z)Ddwfrj9Lkj&rbz+kq=K%CI?h8!J&CQ*wP4Y~JTdHi&qz9#Km{o;{8wi)cqsPBMEc
zju#>=e4X4z5mB(8WyeOr8J}9g!r13po<r*yoY#h3HVCm{Gh^;?Drb!Qj2ZwdXn3+N
z(i3@Y1sj)htUr{J+pIHaAZ7EiYJ0^7HE)#2Cdal+o<RL+QJP8-XmhNrb;zi_19hVS
z^Gl)b)bn(mtb_(Bt_z5MrG@-&$Hx~C^1;+ggU2w>P2rdAGz9oTfbw<<f=t8jm1UY}
zq-L;Vr<=eg&Xk4#!qoVn`TLQA$Ud$M;~YL<YZ1@(MW!5{>w<nL>3duvZBrJ9<GOAe
zkIzq%?Rt><IvJa(vpTB|S^%?Db+~GQVQdU<evrfF_>-|SH(EWu$Am)k$K$Pz$D$hm
zT8E^{`SM;7M|JUnsk%|GwvWdR+a$>VDn|b{$#_$2JhqN<?G^8D9$PDCP|pW(Xo~Y~
zZVpwshRo$xxi^E*XyxiPQY0E&u-%C4Jo2B%d9fnOSvE(sNcVxP){ztwXFEJ;7I(S8
zc2N9=?NDILlTgzMGsY&@qsi5LVF;iQ8L`dbc4`?HQsZa4&>`stD{p=<)<dyuqwGc2
zQ`T&FtH)*qUd8#yxR0&R%^A$j-U-;|ZL^5`Z!N88ul9}7(J_O8tmQ(VYv6<iBM3I@
zb4pI<dPp)+k^4&qrD0=zT!BscT>WyLTzNwV`YO)edF`<Ay%%g)DK>qtu!Eih*d~n2
z!)?PxL9TOBobyq2qRDl`v|*FLp-EW;_WJxVpL8tAxLU>6H$xveP(d=zZ$qDBt}OR}
zPlNBB(q*4>U&u6OYbVjy18I=LBn9dvdn{|e7Hp1BMhU$g^ZjM4%oElWx*;Xc%Z~W%
z-N{T3TpMSFPPkkl%j0p7EBbuGe1*?v&<Ar=PZ|hi1<CpR6>`@gS;n%-iZ|ATJp{hk
zusNaBoQa-2yWP&e;Q{JYmTo_(_u7n~9PMrJ#fZN;CF)`m2YZ_F-I%@AwTF9~<u0(@
z{Tqwiwnz6-d@n`YKl+Wvdp$N8Fn`*w!aC4x0K^5m;nH{q{GIcKd*j-zvFxWz4}5AJ
z{c$v==|x^WJASO)j?=YvL<l4d&WhQ1%HT1V>UQ9VH=I|nX_WU#Q*pVS&qE3hm`ME*
zJAbBlLkPYRO9crs!xuhDx!PV@yG=OlX0`6$TmFX^4r_1(hW6ZU*03Q$mvq7_@~EXd
z-~N_43P1S{HosS;t}Unl0IW3nh$FUC>fpqzJ{gxs@7lxpkIEI`>UC`P-1_r&?<V(h
zac@1=iIqjRU&ChowuddnKBac;U7fLGy6p4T9<G(rg+4xvE%|S)U#{z8JHN?oug^oF
zFKf4ax@-Dqa@`qAicLpijr|h;H(>K`(*yc=A@_Fg_H4E9^BtXN*y*CrUk6(%qm4<s
z`q<jz^;IYMAZO#E)iK02&5AJlIlK0>_V!eae*vj_6VyYt`Zso5Dn*U7_tLdb(~oOE
z2zCRD_%4OJ(qr%K-{KUVWmwaH7l;3Vh=72!(t^^Z$Y@X`q)WO(a)hHKMu^fdX%z<2
zAUR?<x>Fd<*ytKH5Gfh;?0LKE+N<C7t#dx-zV#a3;8RGw456}vpE5crtMG1(ZYJxC
zd1_<s#U*B=Ls6s@$8YK-jNSheW;t4VKNk~#Sz*4`T_G0p(KlA6wf)-%pDB43vmL)a
z1Tzkz?z15Q_<UYp>W7IYYv?3R-hW9Qo5vH_b~NJn*pe0Cn<)wOxzhQ5uu!X`Hvq^7
zPbjYgi4%tl?9-l*s;u#!w~3Y2HS052?!Xv{55p)L8T|6?=DB=3)y#f}<mtZRV@fg^
z<2fULD^xK_XFx4U)H&55%3|k`?12rJiV;dy1#J0{0uFdQ0&|azH|<X2*({g3;2-Jk
zp!l~v06^n<WKn+~OJSD<Y~GB1#U8kQtdW2RAatm*cRo42eSw%I$_CBRoKkD{I8(>S
zlM;A0Z&?Gc8Gh}NC-f0n!b3<b34@4y`nUXjrnMw#Xrd5!S<Ogn6#)ZB3{F)$c?4kB
zqGHY0>r+!jPyyl#+AZ?r;AQmrNG*Rs!AF6lr_am?v~+N8W3@`LmYf}F@`%Iq+fg+c
z7hLS<e&_VA;`^4wsi9iNU3W1*kgCpoR4t)eDWfnJpY$?+M)Q>y{jOt~zzf#KJ5YU~
z+D^thj>m7`?oTshnDssGrsjU%F!M21xe=#*U8tKd@0sZo><)ueSx1rmUadKe5l<#y
zz*VfvCYKKB*b)2+<)k*-TMy$DUU00txsTm8mZc4DZOW33-h6M6895}r7kf86c02Yr
zJul_f_>Z0-pS9i}J^rQF4*+E|W4p~^UEi<oCYMW;DMFNqtlAa}UI#&IQYz@5N7DM;
zQ?GPduJg^7y7yjQ&%}<+{7o6eWiA)`QPab8zNB)Ql~peq_g~%}vdz%lw!oc^f3{ah
ztHV|fB3gIzx0O8xHFhBf<Q(MX#*v9&f!{Wi@qT>a%<zCkmF$v-3`Va4XQV3}YfBd~
zIfqQr7LFmrqmHg~#h)6Ro=G}RnarMQsAt(5A>2c{qB*^P88;~)dc3gBR=E*4<!Ykr
zruwkr=~~87ald`zYxiWTMx>RO@w|j#d-{kY>X%adserYj<xXwW@x^t@(Piu?@ahGj
z52pe6bU|%;8LBR-%6Sl+M<C<l%|!97(FAZ&Se||-)1}ph`^X8)Hd<}pdmP*D)xoA!
z09l>S4g+}MP0~sngd4Xn@O!=epz<h1HMxlQ%l0wh0D@9e4jKYckg>f@JB2az3VsCC
zaJ`{~r+Tg=%4PvMO~+m0Mbu}1KW57Y7rQFiC(H*Vv_S)a9rGY~4b$6un5Fr!`PRw6
z&v~5aQMeXo7WX518NTKJTF;hP_U?brNq+4dfnV#Pd@jwh<VXKQh`4fPBiz2yZ>{O$
z($;lgo(6$XBc}HspBvJM-|G=a|74yp*qbU%^#&IsW+O-t5(;JPE}Tl)ki4`l_<b~%
z=7bfXu{x>q7!*K{u>9KLTP?6nbOgH#R4=%NLb5DNk4To;B$aU-CoJ8t_G{CN70ZoV
zg?|YMDD0^FCW=P!$L(3ir7s?B+M#?q5&mZ&7_2K4wcx}oFJ+?`XQMgHUh?(@s;@p^
z&^S<?-0l1hi8c67P*EODzchIb$7ffz+5V<?=N3;s26oOi){F&$Bdg$RCTlG0wL8>K
z8TUBNA56DXe^URv*;%Twp{8ZH^f#8Bt>Xin65){Fk;$~l6-9$`xMN8K=&s-XNW@n0
z5O|y}2D2SxL`{^MZlW74uM=mnfJ`>I4R@TVlyE=f2X4o2je@Xz*+$c&bSvdhB{`g#
zdqw3R4XWK}EQ!FczEtdaP+j?$*7lvL!@enYcRk$HtgfjjnW3{r^Cz4nh*|$ku1XUc
zJFLYGof2C%Kh)BxHhFMBcS(#LpW1MD)EF4fWgl16s}3)0|K5{h>$iNhCAA~Bd~tq~
zcT;*x4nFYBD{Z-yYsyQ^n>zf*R&JTv$Qyyu)AiOZ%X?)El!@Z>__+{OJ-FLuhNFQm
z%gZ=p#2Oj4hCHI!49-`l=Wi<0P0ETpgF8|G=Di=#`m40Xl+`GE+vz5<OdiHs;Mq3>
zb)V%R8+fjkQn@?1v>OV#I)=TjyhjF>R877Z^qa1ppaQqal;noAxA;>8yIzTaM4v})
z@juZh#cC{~nL}q)6LvAp{7+RsR%P)Y{5;fNjdX6N%IzFRO_2NjY~Hp<&c<7CuElZ-
zm3;q{+Fkn;7(axvm?3vg5$eN~GR+fv1rOW}L2#v8Fj*~x&Av5x6lnHGBYm<mnQv<(
zvrSR4<6{jy>Zd)XmhU}R*_1Y-JMx{mwP^E$8B)0sHQ=!O#NcibxA6Vxp<+}cKiF)L
zBZ4Y_nw-|NLUljhu~_gngi!6THG(Han%sGNQD+KK<UPHOY*yp>@r3l(3#gg+JQMXv
zdbLBn-xld~+>oEc4C%BJCDrevI!2U834PimgK*#F0`~%M{^N;l$25=O{2x1suKZKv
zJ$IpY`@ll!dVw9MsKJwrpK@_3E~%qBsp?kW2|C=;t$$LbRnp5r?eUdWPL8CgCv~EU
zPj^pX1fJY>p%{~-mfAjF8CBYhSnav)^c(@+19N8Ooh?<X=vfE#n+Yyqcl~C#NAT@g
z4Ts9tW)i^Z6aVf|Kaue`{hEkP_g1_Ke@HTDbT~@LpJyEVeXSZ?&1#<J$myA$R7{$^
z>0X$MDRTn1yXWZ*iV}Fwgz{Q;(&X8rGx`RdH|E}F5-6f=m7NV)beTpO-MeHdHx>71
z`!Si1pmv1}A=}69-=+wL?6-|Nl(RBZ150Y<IF}wj(*~N`RV*KVrLew|M1t)n5H3t%
zc#>t|Y>Sbe37VOA?XNX(-y45~Lbrye%Fx*!LNRem;bBF~msi^1S2LD@(@p$pLUd(g
z_eUtiOP!(>Gbg>*!v2gfuWdI-#zRZ<RJ@NFx(okQpgBuQLkOXsZyxi(>iyhdrLTkq
z#nXJd*=k6Y8v_K0LzS8Cg-xlh813-||5)_vBG#p7<Y2=%`nh#4U=*Y070HR{Wg0HQ
zWu6qQa1>MC3_R`X(VxYoE5Gxr+DFGlXB0FZn#`7Fj!KE1XKZs@W9t{pNI;G^juBUL
zywKs^;>hZ^))f}?(s}Nns$)XVs^PfJ$lY<{`$FS{|LA7G=2D345d-4uL7!e6{%Y`o
z7Gs3roGf2%P*fzpBmsMcWq6z?&4pE7KLal)DB0C3hQ}*@uR?pw6?F}q7)X-7pI|<l
z%8fC!^njdA)gD4Uu+v><m)_+UpJH=eFWqbbSL}0u27e)4lPkHyr!rwHZSMxG?tHy2
z%wd1}O7`E)V=#ET{xwm9*bD0~FR-S}RbM#XAdf57NE@ay_pc+z$jU#HCIdutS3_U^
zW)38X7^%9HmVg?p`2k5CEi4}rwgG55Pw^|sh3w5E0w=V)qCZ_}m^26|mY3fAY8x7V
z7Fq=s|KfOQ59CaDu2J~x!G1IzghexAm7+)UJl~?EI+-vo3qm2ct#{!D)pB!T_bx@@
zb`Ln+Z*@jaO}n;m9iqV3m#cHJ*Ux|fVZA1CH{o)b9Ij%JZ6O6azNI^sRw|0B)o$bD
z*%7rOA^w3eWp}viBaiA`kk9}M8mF`8=-c$QnQn;-m5AoRNEL4R4@NB2C1-NV&G@i|
zcBKC=U4o1qca}UJR&_M83@+1Q5h4B^uU0i<7#3G)R`BN!@_RtLUD#vl8T0a|=~?m`
zft5b(qvf$iZZZ`lXZ*?Of=c|cD2CF|nZ0Ms(sKWx!48If4DIK*+Xg=ceihy-Mx()B
zom~lf!!F;uHm&u&Bi#6%>U9cyO|BF*UOZQyr2v#CR*bdCnErv96dieGYhxM@M|Xy%
zI|as@wKc1_CH+%N<g`xH3RsZ?MJWd^0^;&<Ko0{x2EBvy=I(+&ydo<@V|D>foavNS
zAMoa8=Iq_4z+~JnH=7L^g!kuw!ndo$*k`=*o0G^iX$R!m+vR<SN!0<vSBoTw>Xn&1
z07Be4hGAHNUx8YQATttKsaE>J6lRmP*1BmPsQ);@Jem3Ag39d#<!}b<kM3?mXYst-
z{=|50GEg%o^k$mhnYS-fSK3)vSte>-<|GJquaXHUK2-z`n{`nd6O?Lil3q>w&RQM>
zTUB!PFMc3gIPuoy1R*Z`B;o7u;P(kM`6I{tcs3IaH!PKnz4<CEV0zR>Iqx|j44|y@
z--PMfa+J~akMf=F1RI2P(COy<y|L%;BUQu>L_XCJGtL~N_%!eZXPp`}C>p{{4!5AV
z3YiI9(jA7fNAQHqxIpVCbX+grch`%h)Ib+@a!CT)?0M3J$e4l4M{U_wl56RE_}}%i
zt5wiTD?f*-S`Bl&Tc4R@3We<p$<o$VAr&tc7+<!^mqps61UN0Ylk&m|tT`&WeRoFq
zde6YWe5ZZ(ul}$om7>1-hpy-h6=LM5+NgS!w~8*+kD(B3n%C7(boZ<<AbvX8EUzVr
zd-0_Y>t~&w|7SVul!{wlYLtZ+1KdSKG|f*^5=6A}mv{gV?ZT(-bF9yhARF?Sv6u{7
z9_|MrnFl%JYq`TU6^G=r9iLcq$H}*>m_ia0C4+`P`g148&+?4Z%>FhG-*<$34)&ik
z01xZ;EIeuJn~L3jYyT`F4pOQ1rk`><QD@~*>xCL0kT%osFmiz5!`ZbpMaw`W-<4MW
zwn!h3>BTvl_+aY<ovTCZc&z;9kB3`pVTfzTCF~9bR>}7E+xyDG12pX`iBQkkDXg-Q
z;UdD(Olck+bOm~#Qzha)3wt&vwM%36<Y%KVgW#ORFIob*`X`Lvf`fUX-)dD`@ArDY
z``)9otZq`9qTEQJiD)y?;M~^DO27eKm+q5L+?CvF$nrrS3Prb|Tuqy8kG-s0K$i8n
z;Mi(=>Nc?^W4FAfVN97qzL0t=$sX_bi09E+*)-8G1(Guf?l8y~9>=^0<1J{W0g+4+
z*z23(!dS;<0ClMB59&`lcWxaQDt(d3n%0h>jAm+#!Uw884^pqWU_G7cI|#ZBcT|DZ
zd`Iv3GpP9f!q~YphcDq|c19H=yNtY$YarFU<NCjC>cCJ4vzYDwRXTeT$KazjufUU(
zTf$&_lgl%()4aIoEP1BT-oAhXCixNTx+D;Wd?)OQ8Xm`9!4$WS>HCAyEqnV>dEOni
z5u*cib2q;xv1E4PqzD4Kn{!~2<%GZ^PzM^=+WO=vahXoc;k-v45Yk8;vA9@SUIW`8
zVdywEa|VFsR}6zYlKrEHS*PvY=eUl&{*Tq4idC-hbM%MHWY2MiT6R0{dBr;1`FFvu
z12%&h{#?ZguwH!sVWbS|j1Y|{&aP6wXfahz3B`gWpyI#@wZ@2~$&M_u<d~k#khlgl
zzK-SO$9s{m0Uh$7Wn*jGo$nO}<Z2yLMoLq+tGEBc@k-~m<;R0eM{9$;)_)e+8jSkB
zy*-I$%J7&d?hi74@Yo60FFD&t>8>&<YGUV{8B)VV&nRk;tN(cBI>NP#Sae_>lHq$A
zK`Pdy)f~@RgZnUZ5Ale!NcwrPGC5zu^VgqRRCue2SjC)wS=*qcPS(=0PMX4xMevi%
zN_qsx!C{b~Lg4G@2d2Jt#c-jglxs!wdI`gxpw~{4yi(kA)z<9%&!x2<g@w=S5@~7e
zX)L)!H=1ZExtWn>3oJ#9*6Nuav?&r{{#8aNDS31%IusJMIBG>%wS=6X3(^p>qXwAI
z^<nY2-3{Sa$&E*kqZRdD=h@nY6KL<T>?n>NFWkvnU}1YQs(O1pdvFG$0o76r7&Kf9
z2Kzw?pLEI_Bs>F`3(v0!K^5rUL8yUsOmQ!jGJ_F{<5)La+rlukvWMnnKm_vQK<O%?
z{XB|uLaP1d@?`87>y9+YsWki4iZb%g`KDl9{7Z5YIvQq@RF~lrb3MIn=&wzlX<m48
zYHbH+$92utl+pU!BZ!*`$G$1U+N!Xa&J=E0i?_+Zwr`#Rzko(0+5WbA=&v@LUA3|7
z$9&VYV}vWNR(~TmGn(y&<~=P%bH^qazSTDj^XC5BV6FEWiMlH&y949521^x*Gij8c
z3yZJ=bR;P6IeuRG^C}Y(7J2l;k3E+{OVcu49T>+JLLu9;Qs*coYOUqXt8WznFMR?0
zxL9jGN?})V<3$8d3~^j5oevhoxw#u`P9FHZ*>xQzk_*ofC1;hK-~5SE5moV`OlRrk
z{$lL)T&#kLoRTa!3G_6uH&`%GHP1m<20-{<w6#C^v{nf{BUtkeG-9Db*7n_f=aFa%
zlpw*11+}8x5kZys97ZcFWsBbyzt|Sa9VNtH%ZDWOh%61E{3SI4w%ZksJZT{msMpbI
zRj)V;t$O4&C-bI60kb1)Mq5=#a*)=Ll&Z1rmb@qa=OZtoY&_<BJ2hdPIDRywi6q{0
znR?soyWyAh*s2HSZ~dw8gn8H=6K;U@{t5nTFj$9S6OGUL159o+X)-A3Fz_lNxdaFX
zf*L~t!8Rjyh3-@8tk^+9HEkYK=1iu-*DcM7d+AaL@-7_oOm}8V#Ji#dPXV#eKZ>)O
zZRtWgZA|mMWhY1MF86sWwIri>9+5ss>@cE<wSsjif7hs5H<L1d@lOTvndaNm^cPmz
zv(3`8-K#2xN_pGIhn%w6PRGKQesWJqQaH0;%f%o__NErEHNwd*P&uofc}h?2eEXwr
zONDZECL59W?-Jq_N~wTmSUk`HmZA$fMYiqGDUC9w8|N#j%)+bfjsW%hgGa~YfP51c
z=yN!&<mW?&jx6*nh6i9<fwMafaQ6-C*)rof3x2dCjLb~E^yP+Yu0k2B7Z+P*b@Rk(
z<C66EVWYE3A)wO>>(AE|bMOFjl4+A4VZCZZm;7`4$4VI<98Mg0Pi5CcYrk7<$Lm_9
zR8-+WyArQOH}0}N-~A-<Fv5Pl!1gZUVCX5X0mJ7|?{V2i2|&jYa2ayy4G?Ihn%=Iz
z1DRzgpvwkb;tBK}@EM;wT3R<lxX!WKOrLMh-ke0V-{sV5t=_w{@jd#i3<8;tl<I>Y
z4EiJ0tXZ}6x|jxn<d;wUTjAGpm!SjEgRprd7auw(Qvn>VU7bSpWccw?h+g$9$F+Oi
zV-d-x(@K9(AsW>&hoi|)nsey?EWE;24mxe4EmyEcO6$K)C_llHKU?{$n~IZ+@}qvR
ziMdh=xJy-p0UCAhE7wR`)ij)tb2tCW<HRcd{W|%Dc(QF{keM|s2jfL&pKp9t8?+Iv
zAjdo0#xO8&NE#ovwd7kgohK&7)O<5^T~iY#?hXDk=b1Vk&iq4v4*M@QZ5@4D-GH;U
zEe)l)0@ziwFgH)D&q;cFD<P-%);P|nE#I)l;rv^PmxXcGumPs<>eaZG4(et3)ujf$
z^F5TEA|^xh{(sd>cjl8MI`qX){H_T{OV1K}X@%ZL>^)g}Udd}lkC^LjH7eA0<k>(w
zOivQr;<`N$BvoE8L4A^U^&i@mpnN_Zw$nW8m_vs=zFZq_OIcNKIb&FuB^~nzm40Jy
z@~s%_ZndsaK;hLrJ7n~K7}HvYeZL0ce=T#o<DuK(^(rZ)aYJJMx)~-ezB{>3hx-qk
z6Iv(x`FG^gbj?aF%E|0?;xDO2jf4st1<vQo)*Up$`1B?8<%TZ1m+63{f3lKs&jKKB
z;UfBeAv$NPAK4b8lWZz~-nZsYe71&ik6Fy=5oCtG=~l+nXGFJ+=Dnf(?R>|1WvO{w
zA806UUb{+$m>B%Fzyp^a8trl`PxcnB<1+2(C!3KF2c=o|nvejXW^hHaMRPGz(9MAY
zBH=Zo0B>~FkmO($T@G@HeFj~f+#4$bL4iIlxI?N^y}M0)om?=e142E=aQ~Ri|6^<0
z4{PR{P7`8)w1AG6aMtr-LfNTF(yR48xEfVE{-{<b;Lv~nm>u|BZ|2-QE#%-NgHRc?
zH)72T2C6UzygX4LmD3l6J?%OB(OzN=bS7I+%K*&EssnI)JfuLp?B3<V{(sgm1KuW(
zeWANc;S<+#`639R9$h$3w0CR~a;YJMLq|>!2L6#hAniwWrH~~oUW^Qpj31;gBQGa;
zib|K2Pe9|1W0HqP0ao+?LqUrE%l`OwN<*{b3+eMt%EHQGuTi_HN0hCx$4%cC8sLq8
zrOAcPtec<DfkOxYh^dGt*LH48@1jQJyW{0+D&)e*v16{x_|ZvUhhuESOUC4XiLEnQ
zvEv(;K_}&Ro|Yt=ejgW|li=7@-C0kL<U?2EzTM&XYmUf8p-r6{d@S2PRvp-{JND>q
zv`)CFu!ST=#<CAw!O*V~p_{xY<rfWecR#W@+sPf;zwShGz+)F{zfCo-?@@#NZ@kll
zayJ)918p2yc;`^qsTVj$k^o=LfdFMWPR@Q=+WdehGM*Xq=>^LM3r{SB=(14}GBGY=
zhdp|q4_W=7XY0FvEQELWe<usfS2(+nM5OMhq!SeB5!d(QUri18KGgE~Qa>{D+%kYL
zeVPD*Muo|q;iT1qApsF;-~|FFFB1Z87p_8*A%ds>aW%z)^=vn-Wwt-r3zR@Y2rRN#
z&pO2>7~>^dz>0D;J%yTWSHP&+ycwdTrjUIws(m<wQx^6RZZB+IPqN1Ya5uFLJb9n)
zL2wSC=g7~D`cuc*)9N1FKP;|0w)uN@-$G;Z!r(qCQGz@dtKEQA4{g)KvQ9Aj+(t3n
zn0i}%wzS1IQjFPjch8xpmoD>ssuX;|k%=Mf^9rr!S$+GsRKWY`6GfRNj_XeO>u!lr
zH$~&g+kYMBhOLn~0qV*08gh99@{^&9JxMHxG=81bvtqN|M3eGNWyOV*mGN{U{q)Ps
zAQ4hI(^%%uvmxd%Da%TC7WlBot9**}<@O%C(Lbja@dJr{f1!_DrIDGn^i6m6hv$L>
z<|GI;(%i7rw_~XV9ylV_z~;e6@|oRnac2T{Y3u|j$|S|dKj2S}Q-$3WcrzH3G^7W9
z7dSh>E7ikf<npkEv7|6UWO!!78NUr$B)DlBX;5(Z6#7@LPPLJ%H^^Ag!vl-$paj+5
z@ZEQQj_8U5RUthm^oijDiN#Fz=B+n(Z{-j<1R^95D?Uqy_W0sK@IcLdH{>(L{F4B}
zJFO>j?Z~*9+wCmpbZxbEHkn{Sd9RnXInVni88$WBtlZeN=KBrn4W`D-1PPbK#HV3y
zWc#$)BN?vh)kK&dHP!Sb1f7)^f$|cEvMaadTlj)yBFg%)$1B&;bnx?d*A$8EAuQ#~
z`D5R9dSG{##q`q8>l|yPd7CjQvaE{t4)r<@LWa)#`?Veo@VaPV)MfK9VOtNEI5w#T
zpw5?vp3i-O@I21Ui)-`1gD=X=o(Sy+UdgHEpm;pXzDx5%tiX8g2_aU;og1;%?j?Dh
zv5ih1w*2en8xvM<*b!4Lft9Q~{8vaXLFeT%p?>gsyy#!I@zP=Q3btUna?|h*p>sLh
z&Z3wHH3_{QLQ7dseI|BEcrwH=p}}JWe4>X@U`y<Nm$FY=HBmqr3>|kaKK^9{lqj$?
z`5pC;wa^~;`|tagxIKx3r>LNAid?^;`(^RaTPBVZRm^-7zu${QRVE5e$vOw3{>U%U
zo*6@p4(lPzT_yM(ly`=%n&B6%ioR*yhJGxV3E>vm!-z^vR25(gvG_FXNH?6x2qI>d
zseP~XXEWi?zZ#Hd{^bfOle)ET`9MF&k-&L-T}|0vZs!R7HDy5+qk-FD*|2y#r_u=r
z?5o?Q4ap$M*)erPBIIEu%7TAG3|SbvOwv6TU{w}Ez4)AQEanh-?$f~k*82YQGggsM
zAnKpN20H~X#ykP43YJ8`v_FT32`mw&{`=>?oRK@K_8Yq6DS*P96Y2~hl0b62pzMFZ
z0fE4Thvl2KtI`luE3z@S%K?<#aF2CrPW(_2(uBf#3Nxl?jYYR5JvG-a{t4FIIDL@p
z>y^yJ(WEYYPZt|q1pp2N?e<@6fUJA({$a6!K2r5T(q?a0{QZlOE}drkubRFRB7Y|A
zu(%OC1$+x)HMZ7GOaiX5Y`6p5bJIpLI4xbvWLZ@eXQ{jHk{4&_OB&A%7&dl#HyAYe
zd~H_bZ8UeLsp@=zx7vOD8RqwJ!yV*k`2+u*YtDePVnl~&W>4JYM~xG_qd=6#tq5=~
zvzPuG!)*OFAuQ9F;%2xYdoJubbM&=SNPIwk|AS$!lB6yRz3r5Tm)w;2DB)&i1h1{-
z{(n>1Z%bIlgP+?RzMh#NnOd;-&vZWk9iYYlYD*zSzPNOPTv0BY)O&tli(F*#<mi#{
z0$YnK&)*2nd60&PvYeVR>*p`tW*Lf;Mzg%Ai*i$Rh3CQS?nK+xKgcWb;`^kA?}f3v
zBOhr{?jt4heY`icyB`@GTNp>QX&Ov(Yy)a3Z_?SaheT*lY?rZAVIM2b;l~rX0ky?k
zrgF>u>!NV3bGF((#ViloE?(cn=fDH>2Wq5A&EVoJlYm`<!3@N{e*3gxO7xr%&(h&@
zVDLK!GQNl*O!&c&=e4B!J46V@Pq=dY!%KP6eW8Af(Z|ELai}6>v?2u5I9fn!8T``L
znosjRFnzuMufLo)foO&rVFd5@qZtv|3zK$*hU2ENI2kGE!~WE}_~Jbj2h0F+Dl?Js
zKG`uYxuc+FZog9!fkqhE5@Kb3eQL$idqTwe9F&RevtIZ4n6w>TRB57|z7%hVe5luJ
zA`(B~LQziTXsYedP0c;H*-m428<P2?bH9b*L1=6B)#qi)4Ly;hI%VzzRFJh0dM2g9
zfQx*>_UoO08~J8-KNm`ar{8$+*;O$ClpoWH-scq@77-@-=-|%I>s9O@p@jUiU-wdH
z=lMq&Z9MO8i(!6@2bqjZN7j&tc23!$nN6kk>aY7KSDLwTZyAT9<pFHFHf;j-yTsdY
z*29_muX{85L)ML^-VM*bAaHbcudo3)pBy=G(MV$ag5lwdV&Sv*Vsn~VU?vQ^?L(n;
zvv{+8sb>WW!^*XU$MevEdVVQ7q9u`Kd18RTx3dLuZm{?}X%8ee>2|Wil!_qCxasAD
z{oq0?xmRb7G1YccCF5A;54%s{t7$v-J+ggAn;=(I3xj3D)k)9ius_G2+fNJS@EFdV
z?ZfcUr5orrMya*1<8n2wy`DWhMD8Y=b786}?8D)}^3u%>0Np|O)#LJ#uVb3oi=D7C
zjnWEr8~7DeoeV6T#fGNNNQyOwJ;~VEh&4$IOp#sfyH)$eB|=I~GxuVCD^ib|cyL<6
zw4eGs9&iR_1ZpgbRc<_AhLIRhyGffC%IpN@CFp&?UObo%tT)VZV}h33<mks$k;KFr
zd`xL%RUlUvI=(<C*E}efHNRswg0DUQ_bI8_y*WbQ>+Ux=mVu3^ylqa1)I#KnBeL?x
zj5wa1BF(QYOYbgU!nR1e43@#3$y$%mm#NRopz*ztH9F1fzk6pz<?!E&HKbXu=wAbP
zg(+J7P+;!tK{va27pDhXMzUcg<$0*#e=}O-)dD>AWT3{lDw$`(X@=2CRA6d!flc+-
zgr^>S@3+cd>HA39m979s02-p6z9uI<_{drv)1k|Sy3_}df`Qk031zSI_*lw_k}U3_
ze4o4jSc40`dQ4?m7&+mR5klKo8U2HYoPPc%-wSY+jyekfM8O*Ow}hpj)7UF*s0v+Q
z0?7O|@>1(<=i<BdUvEQdNGt`wCN)V<-3e^4x}>Mb)Mxu&S_qBG{g*RY|D_CN0Cf$}
zYx0sY6)IMvXfM30tU+jwW0$4ihf^a~tYOY4v{`q(Q711*gm-RwXWb7LTSN)YfH~r!
zyPp-Arc7Ckwn)w_S{h^Q^%$61HS(+ujf0!t)RB7Q{FDdEs}fQjwPvxk1K))4>^Nvr
zoi>rQg~pyY|0Y2f<F4zknWQF!ChC?3$e8T13-Y>9?sB2@puQ^>PbW<~%~j0QGl;=6
z+`Yg*PGdPN*LQ3kX0yKRst6chu8kJ&8hh6)>aC1ZVy(wm#R$(hta?MTI4Q&R3ROBi
zTlLno+o|r0pJ$0HH1AKSaIG+>Y#qhB?&~rg10@zka~qI9n%)C!X5H6Ptg26!_`0KX
zS;|t~_1K@0=7v?sJisJDE`gDT<)oG7)0KaMqIg1joedg4CKYDCZXt*l+Eg(E&(c_9
zE)@<G9F(}|BMy~{nHZeSNy+TwUU_}nro-?uBbIWlB9mfeF$|k5ggQV;zKwQuBGsW<
zT7^%8n21)_hWmM@;_{evwO#hOX!daa;%2mBRv1Nc2mf3esSxf2F(gS8GKa++Yt+(?
zD4eVI64-i?Qf&u=GaI>q_?&@p1;9N~{MCbxzhXu4RwpT&6u_y7q?*SdcEbJlQWE^c
zZoSJJRKFrs?)@KPiygrso~g}O@~T=}jP+8UMmD7qIidS1&pR6Sf()Dl77egdw}nKt
z_m_EdV#nuTNOjgmsWJL~mXT57(EAvjant6Hp5R`!Z|!P?LfwmfwK%z9Npz$KI829+
z4KwZq=I~6nPe2t~73!*hg`>c@eZE@UY0zig4I$9x#d#3o#%ArN!9r#B;8mQ4$71D@
zZe-PezUy90&&FhO&%OnA^ko!8X+z~#bo--3w;3cIM3N$vJigi)XtsCCe+szS>Yr55
z<&W^$4$4(fh{LGnpPHc&JmX`eFU@?KVrE4LwqxsZj-E?zQxgzh584Of9e|m`e5a&k
z#W@-(`d$OcIuyp*Z=THzWgn@zgu4NXVR3H2!;QOz4R>S+*+uT(Lre#as&6wv_Mglm
z6U8hKbQo%Ph>hI&%;fNIZGp1(N@G-(XI(|{50j2Skx9Y(D$KaQbWe9T9B|Q9cY#Ko
z{q#3OwK%)wzAaSw+?=jgTe}6IUp1r`(E2t*{e>;=n7kwW0b$xEqER9u3#1c*5)mQT
z8tg~5r)2G>PH=)dXrs<08||$1&|Y1FRFz21QQ<zmxfD{UYnJzye4wmGbf7;;iVB>Y
zC!Z<0DXYXa7u_a%#`EFt`F?~W$yqz{{4^us^xF2Of@VjZQ}_g$2Tb@j$>z?}vHEe?
z&02)?pMLJL>-*vG8@=3#+nexXH&_sDi){6aO;a`=ZDa9eSBfnSBeJLUn){oRymNHy
z77CiP(w8(7VI|H=RbdIGC(Sq|S0@@^3p4FUoRlS!)NK7(Q$5MXSsCj0nGl?twm^!E
z;h^izibbB1GudyA=f(T1A2UbK;Nia?4R8ihBf@q=1RZHdzxiIRo-2gwE@1cX^*m!<
z+Ta``t0H+X>-J=?7pz?nHqHI^Cp^aSy&~u&bkk4Q_lajSG|919^9BF%v7eVD|2<Ui
z4L8d?h9+~@_S1pA+KK#J)OdiFy=e^e-KaPmco^7zY`Cz~_~VAuu>x^qdwI!*Vg+Or
z+3^jMo;xE%D~56Z?SHKLDN@s!%N58$#+Q(*^qb1kMDFn+w6S6TNuI~UfI<IRUsGx0
zDr@|Ue6M@?4~0^kLS)Y-b3M&pq{dw4xPJg>!ymN>|4^yk04r`TFz#=PFM6PO2WCeY
z7sqSADJt7$p|G&)53V56vo+a?4N-Epv|^qZ{=&r3e91vZd_So{#d**)AwAqbX&6F?
zyhS8oAP=>wYkXNfo~t|U=g`6&UhDR!dZ{7WHQ&ugQ$gtPtpmJ=sEE-6g&0^r=h)h$
z%O0+?dAsG!CIxsCF+>DzCuSYVSO#C&e1E&FZQG)#7ks#es(?7ASSAtVvNU*2LDMPI
zJ>M*k<^~e;=aX*=#`*|a5h<`dWSvkB=|?n}f-ZydA*CgdB|Up#NuY0O&4763CtepX
zfaXcYZ)!W=yv==-wk;X>#buoS?G$)#${j~Qyj<Fm2}-tf1NKALf_>z}p+#@FM&1dy
zj4Cd*Zw8J1jM6GNL_R;~T6|b#p<=#|DVmAU%k0~2hU~9A!Vge-X&QzkOWhsg9xxx1
z!YYIKr~!SwkA3bXcYdN`Y@7)dWtPW6WV!r)CrU(H>{+&v+Z~f->D9?pdwuDHcwKOP
zjrBBcL{n#_L!SL9L?4#R{3}^SMTJNE8(YsE1bgy?{MGT7TjnvJdiNxNc`)k*D8oIW
zIU|I$^m*~fcJQLr-o;eaBDA|FxFH$Yf2cbsVq;rPRhn)sx9i+$N@zpzf-+V<g|;a;
zRDhwMC(390tws#Tp|3D+bfJYeAPKk<2m9^O(o!yKeNU_inYstCsncKzNr)?@?{P6h
zTH6C~5zy0TdwrKKZ68PTM0WWk!Rblwtn`+0zFeZP7n*q(v>Z(bfwKh;Bh6+rE&Qv+
zEc>$OT8C2`zGx;6q)9CH%E9ilwi%Sl?#sz`VMhn=`XaVQVgt~Rv?TFloRf1x=S;Vn
z+rBOBJ8A#;iQ)WwP4;r2s#P0~4Bf2te~<U^2W^#lFbuZV+-=*J@<rRW@4q6o%k#Iu
z7biiBd&lY3!;53f^?52xFDLu2|Jl@?XMzKkE#;1hsNl1Rn0HUwcUm9YTFHNwj%MK&
zptYtCcO?O9cOElKG&0X@zSfUz&@Xh0GAi_bo^#BUGRgMhY!a(Sj$71{<|v(Q|DM|Q
z%Q9ay#9%%l<!`6G&L!%}ci!HB>G28AQeH_?3T4yJ9(Bne_9+&TvnT7eiBfSO<i?F+
zom{gKLDh5M22Qnb^2b##I~EdIUWL$DQlaXWvqcq;(C<QJTcqyp_MqHj`(STUH=<V_
zgZFC|9qTo=a@*ArOdZ@f#cau$)tgNitS$=NffU2Av;NmBgmc`(?2X%WbC*obok+v~
z1p?2Hqdg$lUe1Al0mX)_d?W=G{)6fP&CsdE<&Bv~z=}iVeXuN=NFlHAx!|HF<!V+b
zZrM8D6cetr+Hq)l-E@7uYqhiJ@@)w*dU8{*a_D&r4!k_S`kE2%*fJ-kXtRCLo=WcF
zEsP%NO&#+y{JQeSC}e)#R=dA1_wFTXo*<1=gwNTv#BFz<Wp$km1hi}SGI@soUKWS4
zTsB0X#o*=hCwNVM7qV?Oxy&t9Lv+%C_W8?yPmIg`{kRjpdM(OpY>d%`H|-kB^XNCj
z&#n$W9lv{CRMDBMmwl^hb3JV+L5Y5z-i5|3G2)V|l2Mh`5*ERVo^25ZK92yFUn-|-
zi_pNogVqq4b5cNC)4hrTrcDPF8IT{!g`(To0v*;iYHY=doK-nUi25if6<QZUPtif0
znc80KZ32TL@|H<B1HQ?p@OC6&o2>xdWO2<k@HJV3_ct{|P@LT+QSHjrG6O7(B84+B
zPn^d%d6NEII6GW+dp*{3T-~GQbzb&@*rhxbSP?WQ1r{z;oPEW)`N_a*JLc~lxd*jb
zJ~zg44^Ch!OIOx&*hd6R>DgCyAD}7l?GEl`%Xx89-MMiC2|GMN@$gi#7%cZP{cOO3
z{RBKtUXkHbPEUlXwi-Mgf~}$fOoq+QQTI|VR7{)}>wv(qB5Fp|!|m9Hxy(g-oDE4I
zo9K5v;>$OnN>GC~u{6_<aHsQ@zwZY)46vOgll#TDvs<x8fhyjuv9~z<laQI!#j<%3
zHrD~-gp;Z}10!rX-YpBmQ$?-g#St7HE8zs8$h$n#+q*fl=jZ266XRC~?uepSF_M4M
zW7Y>RYNiK=&Djy1kVx-K7QG7&h>X&$&dN+vKu<q<`p7d)4QFEKE9&E<AG^**^m0KI
zwbgDz)TC~6J=h|qtI1|+w;n=3_PeNbDD_%<TdmM>z4+4u0VNTvEHK_qhFVn{@J<Xg
zn3NnO2`$Tqc=Ozbd=a``au-m!30xNle^Wj8;q<%~W@XMPf}TfHSr+F;DeMx|s3*@9
zF>JM}(CuBuAK)xgP7v<o*`e<ogwUY<Q$O*eW)hoI95J|4jf}+o>apfLec%2(^S)(C
z`&g8U^PydR0O7$#+LwnSqBLAchR~b@J;GmoXCHh;NGZ(ocSXZM_pHulu_jup%GHpQ
z3;VLhT8~0$-%USs#-2{+U;Vtiv)X**oDjf0>|;{AquWyX^|O3rQ0o}Y_Bsk%m=urt
zq^YPkcF~b8lymz*tS^{!3;X5VWK8#!NZKQ9S|F9`%oa`Skp7OpQp=<N;Brm^WpLUb
zqWOXb58;$UR|l%nA$;FHB^fNaw0@|R)=4zkBHP@i*@8@O>um00eZ9TCpU57}Tx%4R
zL1GH;U59yKg(I@pg$;zxvG0s(NBKPmD3kLR*`CU7ddWE#hX#Zcx>;kE+1mc@e@Nd>
z&kA&Zd2ue>YkEG6yV#$vl9y;Yeqvl}T-EuT{e%s*-&f*CDj13(-Q=IREdF30!=z9{
zKhu{uTXgj`wNXFYs`vp74M)+;;K-A~QzwIl$En|=1L72O#or4?LMjE3zZ~o12*L@A
z^TbgGLtdK%mAVgtl=rJ;o)P$A1r^Xjb%|599lrb34@pJGzQ<Cb_6S!Gx0qz;9;JAV
zbnW|36ORWQANYf;?Y~ShA|@EYn=ZBK8d;a(K8Gncvl|v62vMy)-@(Oz(a{HNAFZ_5
zw0=w7-RFT5D8{kuVxegS@Y7wO5L#w(zMnVT1(z%`=zpvsg^1+T+xT8R=s!+yPtf!7
zp|MfAFRPQOD2eiy-dv()(dvIIl9Z#7KWey5*Y2I|ff`|NYj!F|7{y}Dq0m(L;5oHy
z-I~?ZT%RAeq@3M1q8w;%O49P>eB8|qp9@|p{2WyOUVcX|KF3{VNNd#!a<ZwXbJB5%
zJ$%!!Q`Pz>L8Z6tgK?9u(DlD4`s)#;%h;QLLiLaE)^c`8sI<zFA7495c_c`X&ivp0
z8Gl{4e_-lzJ$M6aZ#jxYo~686JbL0K*WNbc*G%|&O7ly9+ic>%i$DcV@3YMrjZ-90
z3A2n@e}WW*hldRPbz1v%ebcbGcL#$^`Lxh~NYXCl2qp(2A7U1MkrcMmot#?aWhb!=
zq{`C2lzk$$c-H<&C~B!+kLs8P^HSp=)JW_>hx!xQo3e@i-{zyTT&-)W^{Ud}|2glS
z9|z6sCkLelB;U724vQdliEeP9jyFzjYNO;P=9@WVD?K*)62uevMHBrCuS-Lma{o9a
z{oJ;C4$QHLKfe~9$X7i{f<1F-v|HYyPdy0w4_W`mcCX%tL25ZXbI3Onu)5Do?cTR_
z`q_!QBVJ;6tL&J+OHBm-;gv~}og-_HZ^m0$V0VaE&NU;dAt1)lQRespBW(aovy-b~
zQ5~UelA@oZH`{~`gBW%Fwr-e!?il3xFah`_I(vFNxl3L<W6Nba0RMq3)+HIr`Ay+0
zveK8OT0i737ykU<px|mgChG56-uzvt9vy6CpnFy9^sY0^DBkluaO<BdxINZ+tnQ6T
z?h#vU-XURr!$k@6WL7=*_*Hdcj6}VPEp{Bs3fEvN_z3|zf4CV&_Q<bphD{8*{8p7t
zQ#}pZ^R0enAo)|y=<oiQ^(1FT*E~K1Cx&Bn`|!lT=$K|e*!Ks&Y1bGiLou&6d5>6d
zWa0X^?EC%&9vYN19iF3nynammB3RgTmi*?>{KQ{XCHQY(iJhfT-LJRd#+=L(B8?;!
z=Q1Pl%Yo52wSrDlk)QpbzK?H~zV#1<TWkcG*%s?B1#KVG<3r(!wyj7~IbS?aParv%
z<1~exoQ$EnUeP7&AN~G+m@*#Vbe%<t5{~B^4a!Wm#;2DQ0kY01RPCtQ{Uw3$!oTUd
zdtugMaEZvVXxa9tHK071seNA(BRZa6BW(JA^C}W!I+zjk7a3T_+TTcPSBUy1I?qxh
z$@{@*w(fx}u(+9BnwTIUMU=#&_*t=DN|Dz;Q2%ZOM$0a1=SMbMheDY`#>~UIk2+2T
zFgH`P{a_x-0BJQ%AH|2)-AV7*xg~Ga*nTA9o;3I13}f6v;Fhq(dVNWaH-?_aA2@_8
zghZY6(JWD(sdKWsJh~!Zb)(qpI;4U)@^7yfc_T)7rZ;H=>J4|dpUHFonuT}0rLb1v
z%le4-Z#{zV{3}=eJFq?a+GnyqVBJ^hC(VSf`*AqrB{lUfF#C(yr6x?n&YT2bo2P4k
zp9(jV6E{~&E2%!!c;*vE5%%A@O5RkMlV5LuWIO=a{s14jFI~NEOP{TZ;Y^$%lHXdg
z*)s;h)d-jyBFqU3%Av(&=Jmmu?oREIS*```JJwt10)dTtur!Ujr_C7%D{lX=tC~k5
zcMIkSRf3!b5kLU@zG+&`B{kD?Lb15_m79ELLA|r=G;?87is1~FZU#GlL*%pPiJE!m
z?4qje>(4Hpu{KU|z`l7mO~tVz6rRj|@btzu*1=%=r$OU!9$-=590fW3%iud#aVdD3
z9fGicF|5$QYl6CxaPq}2nsaak_LMZN?@~SxhO}n&2LzF>wedbuDCWAS%W{IA{3`Cv
zb$hrMDyqz~TN|f81h_L8bXG69ayZz8Gia1n+Jx`f<7gf4x|AuHjWP8V9m&xbs0@C{
zBT?rMmzVSr2~)`aQcmYCSSI7j`_%E&nrS&j;A`m7k;OuaSZK+E*85z~pH|qvOi?n9
zJ$``r8e!?z)+l&uc`36N#>MwYyyV{M)h;M1ALh6#H^rBouMoC1U0Sr^<Lv?ATxF^j
z;pmTFU^$~^O)0%Ue`w2`tv+Sduon@xT)c3wiAO~QBANJ-?&N%2O!hs%l%Kj)!M+M!
zoUXNP(OS~94XCv(fY+Guj|~`nn-w$Nr^q{IeZsYP>V*QOg*G^Hi&;yja|&mdPJ@)2
z-8$i=HJ`A!4NZ{@W5}K=Azr5StocLiShqKL|36zQ5DxfO`O~T~Ylhs&?!>!)zoAy1
z#0v)sN<SbMnjwS)5@9e?`8t|if4>%`&3X$?<1;U6_ticrwQVU5KgqDf7mBfOEGyl#
zS>pSdX->+q^lj%>LI8{20_|vy1`>Cg>%KJNz($OzW$!Ei9<Mg>O+h3!?BryenA$nb
za^gX!#%oEr%b&~x8-oX%V(+)L;@lF|Ts}>Av2cq;S@C4mDl};z^t}rOt#?0-3`1}6
z=LBlEX&NUlALAn<ZqTOGlX1}CJsqYt4Nv(;e9fxiyBSebTRvm(d54r4f&2env?@(f
z>+(m9QQezoL&1H}!Z{-`eOp}R(L?N?VZ^E!M3WxmgSI%IL0Jq>K(+%RyG2Kkoi+gK
zN#-da(zWweqg?|Cwz4UZYh6&n(Lp`E=F)L-8^ry?*{7KDuDXwIRs+V=02Y+R!1l6a
zR>1As78%H#a&3!8A)0P-)P@4#@#wkl)8-FN7S!~joAl!T+p3l90anAn{Pz>4hkPbc
zcG=pt>uss-GLOzGCEbBP%NmPL?oXHw>u9G(2feQFG!%eqwbt)dXowkKeLQ_;sni#A
z$B#Xskb(cVo#6Gn{NLq`bUIZkS23FH(zYOvJzsExz8s&nJ30*&D7_5T$X^^gg_YpZ
z?|4e+W;v$&4JS&qh$>DI5<hv3Ot;DUQ-2UQs8k^ZWI5M?YB}yE5`}Q!6P#6><)n7{
zuAU3v9`bwn5VSy-lvQ>59i3U;&dw`NYek)E85Dm|Sjd3`pxS;!aqJZ3&XaD(x3BO9
zmglke5D^Az2I^EZ+%f|MH>V$Y?iDJVj1<0mJpFbkI+<6d;lBGG>*tSwr1r_Q!a6Uq
zo`c*6xv8ahe@O#E<F4j=YGT%Jf}VsF6gH9vT#8(ORcO%b{vZsyA=!#aV61ui_qUNH
znOVelut|t%YVvF9U|46>_7^BEf<<Qf-Tk#CCWQOd!9<V??yBjiMO_`~G%-^AK|Fn#
z6<4S68+F&^*<PXJYn9+$UQ{Gb)XsMw#pM)49tiIA!lm3Uj@8tXMJHi|#rtb#B5-&1
zjea#TXwfX3(tUDF=X!OZl4QC(*GbeuiuB(Lw9D=y4NFee=wYgbfLLKwjv<Bv9Jg7U
zyC5FxsC)1zL&My0#m6hDTx4B<VMbZG#}a)TEIVFL&|f#3uUisOCuGTs_=Vijjo}VC
zF8a=2djkZ+c`FUx;yt*6d<At^Y3VkmE&Ku@Vt&wDJ80!`cqoURzBF01JRjQ1-uH@w
z&lfC$TB^Jr0W2a&F}1w8^AaRyoko&(TvzgMNm=j8i|^+HJ2R=siSN7;Ii=@Pi65PN
z8l<sg+J;=eJhKrp65<Y{ee^8^cbFr1R%G5NHda-ychETNt*WNxtfqG5pvK!Nuv@6m
z;vVt&&g%Y<f?MW&#}wFI^J&5hlM9esJdQ1>Da)fhZCtaN#d`QmX1A*z;Qhx<=hP2;
z|7@uvSP1LLp!(fItwJlU-e|77geLT&86DyP6-mj;*dIim>{_6&6h#tCCD+)~a47`X
zt#vG{w7q|Mtp%K3GUML<v{P|vl)m>2UDieYPnrxK3vMt-G0h9WUp<zyBfQq=fR~@I
zd(8-W<)?P_oe_-<b`$<NS+VHWPeCIz2IUjmmLX@S#PT#lnH%tce^+}k7w?qxxjfgu
z!4ep97bm5KDLav2bcOOWV;&Zwh)%?HKlj4j-0i1-lt(_%*lc6+c{_<(Cl*9$*;1Hg
zS;ZREsDE~i(Y^1*{vrFLOyMH=*>zmi<G+V7jUW@O7EnqG)VcDx{tff&-cQwL>eXoh
zo^I20hnbH~zbysK@;m!sV}xukbDBr6|3NS$%w}$Ez7M(8p2Gu>Iv7UE=;Yf(GV%^x
z_&Q1yo;?6O5>BpyGN=X70hHM``|wVn7yJFU?Zkwr5+PVz*j}RLb!lMBZs{sj`fDhO
ztV}(UjNpWNE~8Clxs<XuXiaEc^pJ%BKEt-aEHHJbnZM(VJ?qH?&w_o?uSK>psBWur
z9wdMZZd+k$N2XcWuIa=H!N?;N0f<z{)8&VWU|og771_blcYyf2`_74Ce%yA<z|UU<
z7<CDqIQ#D2`kI<q4u5W!<RZIjtCS~1Y-;!FSjNszX17*uZEr@UT(7Q9jF!?vE6J#Y
z)ad{N=k^2CW+EgNL|hZ4E>5qw9I7J*LUj@IdV}EQFq<0k@pdvy?suGx=x*B&4(+e3
z3$p{kVsE^+6z7CL3pKjO+RUpB1sBcQhj8X7*{<odimFXRJ$0XoI1fEXK4*Gj@j_s(
ziA|P+g!$juAq#FuAgco1fH+b<4orIJT-wk(q4A<Zzer_l*B{c7`w0Rq!&Yaxuu3U>
z7(LXhaL85%_McYacw(AcwW@3+UIMC<MaZQPcDDXiYcHP4kGc5kJ<JO@`_16<ftXc2
zH(m*iw#U#gJtIsLIzo~*fu|HE3pGdYwHgYX6u2b%_am-e3OodD%wT`S-@nwD2^wbZ
z*_wa<HL%m#8)wuhimJ>cK9?z;#jZS?tBfJOWDYt_aC98|TQ5z+69{$#kDXia|5=ak
z*X#`{)&hEz73<eH7$J_8a_$m1UX7?42eDFafM>24>>1~!J1I0uQCAM-K5g2=i#N08
z8>=`&><H}@ZXZ9kTbDVD4JLi)5f*+Tg9&8U`U-iL`9x>}#&~iep83F9X}EFb?CYI0
zM@mo@RTe7p4uUM~L!w7+{V26G06wbq5bLsO$$1$%Jy!xL-r>pD^Jw!TJ1{*0680%M
zeJQrmhWI@zd=9K?1EA?HQbf1$Q}jr|2AtvH<``#@XFH?bis68J1iYLTG^!_w9_0}u
z1NyosRh%PEcO=0tSZ5q50mJ?1NOo-k%(?z3xp}OnsvqLi{8blq&Hx;roNJM0L>-jN
zX!d>+f9<8}d2TN|_@PaXu{SgS%QIS63BOz+p9f_mS~RjwVA;kqwpnV)M&Fbh$JWt}
z5S$o>kE)I~i1zXK_IKu*`j5k0m5{572VZ#P81_lsiR9+EYu?>{v1}+$B1(9f7d4e=
zh}04dHnZ%lw)Nio?f0$m!J%Z^9Rh|nyK&^}SC(Zs$8giVHK#-8bFK20FwG<ubGB_%
zNOtmN$m=s6s$==k($&iixM+hqc8dhHvG`}dnlOBEbtkONT1fM)SZy&o(CtgbND{V?
zEuqXvUE+JBb?CdTl_<924{q+S9?#N*fF!@W`aaAi@tHRLdtHj&e(g0e!2@T&_tA*=
zv|yGbci&Kfer-=pf27rHLWci9#<<7<{;_Q=io=@&wW`G73N5T!i1%fd49zkvqgeeY
ztMz)Fv0SLUUB^Sh%yJ<xbU#}04EENdQ!5_)KZ?%6t*O5a<02vo0s@jFq#LA0gOVa8
zAl)Ig(IqiJT58ggLqb4mw4*zJbd3h-7#*?^@7_OP*R@^e?40L&KllB)8T#}O&uNLt
zgk-?@<;%w!QZ}UcMOcg3&oR{Utx?Aj{_eO%@_~q@8a6@91N=R8-CFIVbi_|(38=<&
zPA9}Kq+*RFIrxY^SzmB{F;g4_7$GbDwh?8M{U9r#{qPOvTLk|O-%^CMgS8<~V4}A|
z+imgoLbUt)h0~8G#&=$A#2>l@_;H6ckDbXlBKTufmn^=B4|lhW7bMjWDpXHfJ@RfD
zUk?z8NpX+Xo-yK@F#3p`VTUfQC{<730U<!AM;(zr!1=7?`oL}Rq$-gY{B;~q|JSbA
z#etWfYdT0g`nzwveE^06tSHk!Ykj*G7+fUF2rnfrT_P~E9>&HnaAal8?)IV>r>1rU
zE;5amty-gU%tQHz(C@zl3FpaNX<AtQ5qTUdonJP{_sV-+&b^Doqv+?D<9ARL-^D!V
z937me0V~T%*?NA(im+H^xDh~sRJ%B(@c#Q4V7C9nN~htyOFAGPO`sw=5d<UmyZB+l
z(Nw3+(jatlHuV{1l9;d9ZHVjh&4mcN6XMA=YaIh|%n@LI=!|2TC}*22TC2wO<2fn{
zXUe*i+535={)ws)=1WvRPd@HkeW)hutgj9iW7GUR#zp7fLHaY9zinrF?$h(D^Un>-
zTIjF}4&>tH&|?MXhmYXFg|8J>&e}s%HeWNTH(I7I5ql|%U)g=3dc@?e@iFIY7?GUb
zTjH?N--aDp6>5x&OO5fF%L*jVoZcN9Hp>-^sQ5tSrT&&|_4yzwaE&d(4x0bY8@|@B
zV;iCZ6vaHKtxYwk4^-yRMxlG3&M%xU>XbO!mB64*J!#fY++2{|0lvtmh(9<&V4Q#+
zcBq>EzX~7ZKSt*^cSL?|*0SO++m7v;QbiUhBHmS4n-q`%d4rg-%W~So^m=s_<d}W0
zun^kR#|L}wo?{P8Y`^RL9&o^=kv9Tufciu3)ove21?PKs015gBKKLr2alWIWirk^9
zVvPI}&A#DD4XTK(7z0&7XEuSmHio$M-j0W!trqgIIgx?*zv3`24YCWt(BV$vwa1O~
zvj?9RoAM6My}q?hsR#k;3tYqKqfyJ^zd*;71d96mD;k%nfvsCUuca3+C8RN3#4mtD
zbi+CE+^w3?qeTZk9q=tu6GOS8oa${|n~vG}qdZ;GEU2h7Pf?!5AyxNObY^S)e~*Ix
zRBq`Q`dWJ%xPkheGCpNwzV7lb5ou030qd5Y>bkdney<3==lVy#TF{r@E|`2Wd?%O@
zjn)QK-ByPPdG?f>Ju)FYf?Klt{!-!~%~y)2T6nyq%zuJ6kuUF^MHX**N#<@2BD8&1
zcRD~7{A`+va)QC{T=e}r2npGx^TaSNuq|q$o7QLJDKu~?lt{Zluq3gXj?}M}`l=L9
zpY5k5=oPa(O|;MReS*LRdrR^|bt(f;|6OY=-!xCj7av+UMW7f$C#7J@*YQ#BDFJYO
zo&>3Hd4LYgti+bl6^{o|V|8)~WvqL)p9#MI=*S;SVYvTA+RX5p8;Zc198?g>VD?7N
zxdD6u4~CMjaW>1jkY`w2el2$TrNeffITJ5kQmaMAm&}yBS-FemBa!U9^Q7Ahd}cFP
z0-htw-@^x!HqYI^rBvu?iya9|e2R!X791DQ`K!q7M)=(e5s7_(0KlJ`CU=w}=~Y&M
zO*>R1Du1lFbmJDL&S+&J@Z}O8<M#}>^A7P;>diulrW{sMx5AD?=q7U-HTLV0DuG(<
z$oNW2VaQTynUz$I$+qguix_c%USm<VQ4=FB{?e>Qf?IM$?-T8wyDO?2FZ@T6?;`W7
z*Za2L>uQ2z^n{w|H@*lJ`1n*du&!+k69jYQ7u|RY+}0@ND_F<$;bd24yL2Vcxa>sC
zv=(l0!Z-*Or;^3}75#o`k!d(h_zrDxe(;$7HWDnym>rzur!BD%?(RM`E)9ATRs8Im
zj!{gOyA(Gt_7-TwWs%xu633tVjqs^VLqLz4o-CITA|t6#Uqrp2uO7n3#FrHR<5f(F
znG{droKpv@Gs<VkrH+s6onk$GVL1eAkhvWWfn0ub=}3^ZC{yYX%gI~#(n_7x4xkKX
z48BUapAWtq+rtmOC*M=)c0p5aIR&nm1u*Z#%K4%tcWoS7e*ZrOW{?cn{7bR*^)7#m
z$+xSP9+0S#cxYAN??|0*s)p!kn{68-%DR@=%v9(2t@LM3?eJh9V*d0nGG1rHPO5_E
zD!L-~>z*PHSZJ4ry+)WI%M1O%O=M#}B6LX}Hig`o&Tb{|iy4@?tgdpmLT664wHXtf
zhIxo0o*a%cGA^hbQXn%;%ZANz%~I1B4&P2JS5B)+e3+)ulHS?=m^k$Mmfy6_iA<_)
zEhsf<5!^cp05w3%0N$~7(ZC`0l%C!bN;m87p#4y$Z$zf2X5!V*S}0pA!)Idf_8tXB
zQmZq_uJJOd+Wm0qoONizStg&haV&@LHMT18W$at9l%7WL=(LsYA--0-8a1fM6qe49
zrh{ygO8%hN-O;Sg!BD~C9zH*O@(l0twT<$+RaGS^{sGDsmQSD~g~6XKEx5X}-;B0k
z=!STj%z1<`@5PZfQC<D5clVq&s<m=IKp5peSgr-`4u%c^?erX-$Q+t)o2M%kRFwbO
zJ4X<FOS-hdp+N%#Px6DHs<}UrU*46;w7*?-akY2X&n=4lE}JFCVHCjH$scj0iR^Ks
zWS+aSbio)^KZjjIx*HZAQ!HKI@@}`v)&$w}-eP;zI@9m~s~gXTdhiI5St@ZFe*fLP
z8pk5*a>-pxD>>}+$)t-aNBbdvGHj11+g$v7&Z=3F&=`#sHv9fj2(L#L3viU0dE{gs
zt_mY0LDP85B-Rfo>tV7Vw!#<G`;7*_|A7eQ7>csIr`*7vw08<k|HTf)hZ#_t2!f+{
z+t)!iVzpKqBWqW2S%9rAUj+S&MP_}y+#HH5FtWz~feuq~mf-=5)l`>^I`i%BGa}>(
zwg>c0ToGPCFTIuH3GewcBE}6?Ea^oFL$Q-?>0Vh}(FWb7u^wy!dt4R6UfX*@xhj2t
z+JB6&&xZqs$<>O?!l-kiVItti#XCb@V~)pJodwpuVE#F!?V2o;vKhCuYkM%Sz~Daf
z1y`x;uYAa81dGUU>;Y3r*y{zH^|thQP?GPCq$)Ob$5@n$a~Lw6D6Xb_@(yUKidniK
zmDHA$8pkdRdx@!mQwIMZv)L_Kc6m5PO5%0E$%~xyAfdFvF@uS3VT&cTEsW4}Uf@0}
zjqlRVD{xAkeV5^)mn{L%3D+CrkS55At-IH=7*T!>oHeM$#rFVXe@?x2LVW+EacEm^
z4>m;e7_e9ZKytQ;Q6)&)4a}fAc>VW~Z)QiS)yj2?&J4xBWwU{@Q5?`kX9dV`fZY6W
zPN5vag7w@L)c7}cXNz^t4bVPTlUvkAX2CO>KomfsGQ^5Rq~Sy7`o)Y&{u^>ipiZ*y
z9Z)AO|6a{@fR}V2{lR<E_=SFye44ZP>34dA_=AY5mWSI@T(7|Nau!VE^cPsOC2RSE
zjA7Ve2Q2W|3ZJm-^ViUo-Ye$kH02EIAR`tyNmr>RlQA}Cvv!#H%<`i?GE<TSwOwLd
zeO*LXBJ0G7{w8C3_TSnS_&(^dnKprTE!k%P{Iow8W%Oc}Sf%W+nTf;q-)SaZz&C0*
zOTx?&Cyz&4A=kRhieug{t^(6_uUL<ff+c(eqPA5eGbwtcG-ZhGxXr4uo31}iCrV>8
z=5op$R!c8~$NjR~4h1^l8j$7P?Wvcon#gFY41#|~=C?JOR_$%PH6vf_wdnF#ox(y~
zx#B9Koi8C6wkzb$VC_lRQi(R3-&>>a0Y&;@6Z=$#B6lx1;1`6%zf=%I_q8dpA+_(d
zy)`&YS3~X=#C>z9v93c>pO8?EBw8%qu_H~ltU_{;DIDX(U!4{I+h8+uV#lta4{PoQ
zu*}kDVLMhVM#guBDWqOHPp{N!Fv^U(RzVQuzLxk!zpCmAs-~u|Zd@=Hoy2h)(hDWt
z{mKYgV&HH2O2@e?kj5f);qJLks6e#{W92}q$i3x<k@OOvfRrBMW_@JL5`)@pe2|76
zJ$jwnve?gV<7w-jTx_(~PwPF$tn*(+VgGZl#9WSP=0E0I&?L!hcY=J+L`s>DnwP9u
z&(jjduReNc^2m5SOCFw{Ec)k~Tl2NfzUUnjSIbOgRn7PM_Xc|Te*=%ut*7mPy9wT7
zYY&IV&e|NUU@2}g@gId9EBPOIV}o^ntozGM7~frIpttgW5p%m{xTj~xe)8QUue2x>
zpO0bo)XN9Q7>rV~q<c--NA{vk;pJrjT|eN{5a|Gu%_;*C?bV;}W8Sobo)Z#heTwhb
zTG12_j}NPxYkalogs0o=quc-5H};<Pa)Q`UddLyn-}+fFiGM2yi#&9=sU6He%4BiJ
zx`Nzs=&FmN;G|{)y$ICd^;zCFJp1gU3NxElsV9PHuHQ$k`T(0HlK5!)0%_{fx!Vh(
zm(qsH3|zhgPZJYZ2N2Z^BA_oAwlbfBsXThGV`YoYIUHJYOZpR3#UfS{u9D?I)nNjC
zGT%I9op^%{G*Q#cFSq<>jJS<^5|Svti-?%X5O&*5=+}%3(ZcTGIvo5S0Zsg<=99#8
z)@%_VayQNnc^`UW+*oXlQBx6}1<RD8ILM;n2dv}qLs(xK$di6g)$f99bmXs|t6>5^
z>@fqL<Q&-ywsFJ)3;Q6qGb(av6O{eUzt?D)<;yaCu~Y{5-du9H4^zEmIQ!N|l@5~f
zyjnYnuGbY`(&~8Dy<>Av?2YJir$_d}dz<cBBHXOAPdWpBhE%l&pOQu$Ob0NbMrg@_
zv43WdbW9>&7Ey13bsUi%fsuPof;^V#7oZlwe8ue`3}nBwGW5rSe4R3QVCZoi!Mt7Y
zSpMacnl>{O+LZBo7cMKPn5e5Q=P`#IUeKB1NP~WAp~oqCyv?WJ%-1ldhqto7K;KQc
zP|W*=CmYMyQ0>mi8-m+bvW#6*VW(zE^-t4nPa%Af9otK<;2C{N2sT(jQL85$5Aj#m
zdw#}cK<iXi%efQq*<McISE~CR&4shukt6LRtYgBn{`&oo?x_fRhwG9ymq{@JtLR_9
zp#MsjR*$0?-v1h*sG&x^t<_$3_=X!=qO=^P#bMy(uhID?;yQY)rW-T;WXGoBvB_C1
z*0Pqh&V6LiOZ-p35;rxsLZ-D*`&%Y*Dld6(XW(gtj>sR1p=@=RwxbvAi!=TEHWdIV
zAd4C-<?7cDo=7P#@k@|JcXu#ghn6{Je&Ab4v+U@@X|l13c;$UNRr-te_Ny#`<NmZy
zHLrNfRLmEPpA@4X<EJ&AqP?6maE{zkwazXby<SwhiNv%i<LkMRDREOm^Nac#>FG_k
zZK?2QG@Hf$Am6d!>&1QyRhO`kgu^*tzHsk%!kwKIEFoH7U8NcTRrk5)&hqRX^TdyI
z3mQZZbDxL2&LRcKb^qybMuDTmZTRpOAF`$vH~UbCD<umej5SKa7s-2;=}zMdDP+mu
z>$YC26a(j&^5L=+5ocXU<fB;3zA2%FeWsol|9p<*_4gxyFpxy3bAW@}k1i0}%bCe5
zmlR0r>LpQIrY|pfFC%n&9iN*+VjIS!ATE-L%T&OD88~WJu@47_2%BM7<Z$B@LB+8h
zoGZ$t#?qVjL|=Y+<KXf6AxT#N|M2!uB<@^&geEW=AJRct?TZ$-ti2M3n@K&ZQ-8D?
zB`Y$DkATP5$TGs5moC{G9a8|zv(0FlF!B{t$BLmf7+$5#?}FbDocwk#3LRMT{3Qw3
z95$tdedFdl1)qkjwbZ?cZQ(GuxIq>Npnr53?i1^Wni{kRT|F|lkXvYZLLV)PQ?6CP
zDTSG!iYq#`$w-qZmulNxutNJj+_zsJUq2KQidev{+((n&sHiN_LF0cjzle<S&T_9)
zYkI#YQE?+SWjXD|l(9sUBj|T>t%xctlHv+~t)%KkYoBeUk2SYF((!Aeo`KR<b0<5Q
zJaSWvw?wt^Kr6@9kgB4ZP(o%^k}TdI`P<h)4<x&Q<5soRyQ{`R4qg`K?u>1^{U1+`
zdqbGH?Pf{@eNNo%8A)oVGz-Vee2bNCbU(NLrXi#9SQh!q!3g0U3pm?Nyi#-QP5x({
zptx@DzTKO`u_q8ThsO~fSZ7HLxksIk{2Vh~tj!5=Cb40#mVG-us0ACoe%P!X+ud6x
z^uIf`@qIC*Oh%fxeIe)0n)s?8w_VU{b3+R@bnKE4g+lmVa0Fl3`0tF&?JYO1>LAWa
zCD~=}sjKc&bg^~bW?$V)irol~aa++H2`Rvdm!`W1<C^u1|7Le?EhGvB!HPkX=}hTS
z@V(qkCU89?ND8TZ*hNYQpRZLp<Zq-SrkXVr&g(aSD)muW>Lg@|e}T(;UU42xN9bo#
za{A5T@ch+gQ-Vi4a7g^2yEXuDc_s@*rA^Lyz11D$h&>GMAU3_YDS@uYK5smIz_fqi
zHoa#I96H<LT8qPl7A#>}KA~q9h3~2!R9pwoN6gP!Wg*&oFvvrK>}~nD+}$$yU0;>-
zuiyiVfWHx6Zv5$`MmooS1f6s<PH4&Ah6im2tQK)V8NczXD>#V;r)P2-{`ccf1jBtC
z`7G`E>K42qX>rQ?xpb@DqH67nLanfhVkd2NMB|;^;#a;56h5Q$;;UgWP5-0<_U{BR
z&iSS%G*W)0ST}QYd!H|S*4_i#e)etjbyBnky*<9a`z-D~#W3M|i)Ns>sTs$=Zi{5a
zY!mK!$+yB@;fwX#L#&Vzl<Hy1uir_EZlDiE3~wE!4h61n3Ny3=Ls)Hm_r-qe09d~c
zw{_cjdtI3KdBdD5bVQr&?PQ%ThdcUw(|jy9>;>{9)fyVC0KJKLp&BS>VozM7X5{M@
z9_EtS=y-8YJbXR}u_1}U8bO4%z+4J0aCiw9m<)Q_AZm$i)m`Y9<ufD^50>7{{21#P
zu~3IrOo#AKSn9fX(8G(c9mgK^?i#oa^#nO8kti`a%hjFwZptm%t!+qV@<I4OjxkKX
zJnTPqBN#}8#wsjDBy;6LP_#|AT05DNSoCm|#KM`rs7_M*C<$j9vT~ufR8U#9dp_u-
zgJUwj^W3A1-=GhO2aXZ7Rs-sn%o&8rChf5_GIkl}i>ED!yGkbVFK`U*=ev}vz9#UJ
zr~lgIGSs2()0ea#eTkUI87?myb*_T^Qd@Mu*MZ}HU~F>5&od8o_Q0ZfG#Evv!Wa3B
z_4|$C+9{IQqP&hgXfrbNF6C{Og9XQkGy<+|s4~b7Kz^!Bu3R^tQO1+{{@T}huG&W&
zteFvUO_Z9O!|nL8^(fg(qa^E);<#&7;`izT`M$CvkRAOhBd}>(7tn7{uiKExQ+DuZ
zIALTnON;p8C~N;^^h9{j^xq8zNQw#k?N^QJCdZ}wzqZ8d4L&Df0|GZpZ>0)ZGk6VG
zT6~0uDD(=KDjIu;yWQD9RoOXCeA-eigVa;{_N-62sdv14EZ>6FmE%s|%;XEBUORz(
z_v_d1ua?7l-q<yRPTRabYh>)6t^Ir#RiQpuy>+ruldI)uasMxX_<G+q?0D*RI%yWZ
zFsjvLA40c+mCBI}Fo9K2EB72$QRSdwP6zc^AIN!zK<79HCO3_*SBjqcBk|GF6PL1M
z2Jo!F$&lsTiA#w}=+(f*jN2@!$->VXI&>gO7JVUY!){@M4d2kmuKB;s-6}P6I|XgC
zIn|PFzP_k8qXOtxjD&Q&?_2^r;^&ld-p_4P_FFkrtz!c|!iRPnoC|H!37CH0Mkqy1
z>u*;@5^F63_|0{R?)sEf<IS60#oJtqpJV+yb0-1*Ys-D^O&oK}2uzIZQ1Hfiq;EsO
zIRl7xr|6#)0h+o`RS04KWH?GT@zKFrW3^~Fs`+|5I!abbDdh8R15TEk&^wLiA<CNe
zy+6~1y@YO7R;8pldGU5aq!7HzoPg`XB2DA<^8D*z2o6aB8h*TSNkdp8#2K+ZvTn@v
zMiJ%3sZjw3=@2CbS4oZO7tCzx2>K0RU23tPwgOHuC+z#hut3Ezi=~NzEPzpX``WH=
z!q6(+is{AC)s=oFW^-zcHFWJhPPZ<_cH$0=&TQF0ohs+v*vs9QG8CTdon9?6E-epR
zjWoNqa*cA!c36FgAIs$`zHdTJ9ucb`axpzR9`iU?n-hF8EBAp{hcu9jLHkdue#z#G
zbRmCj7b#C+vXBpB$49$&zAHcbp&aY`>B&OwpQzC1M1;XB5R7voW(Z5(2nfEK*F_~4
zW<{wSx3E3j?@ehbrnS6D<6c=jmb=;HLYHM)F7C0SCkdQMnKOjYCGw0B<kQn6s8-qh
zk5D3M^$&&+YqrObh*2s%Cxkwy-b>78>>E>S5vhjkz5E*Q%ZV406yW8qCrBM4?eD<Z
zrw|ZwfJ&GJ7?8q8&?>XHm}WV>{PvgHVS;lVZX~Pvm2J`mV#}l4kW||h>e1UQ@h_$6
z;07kX-;xZf;GeS<P?tK^h?GLSJ6b5)di(^OW)@yn90KWKN8NmtrJ54oWjSJxN~95e
zl=RZt@vAvbC@%wL>>dc^T)(Q@R#8~&(KKIYgOs*Re}L2J7kzzM9KI+OU+5E%b*V17
zpcUIQ#}5L$x{)-Z)UR8vudT8>NS4WRYtl3TxAPV1nEasX)@P!k?L)MdRj}@Qlykbe
zJI~qt)pPzfdJmkHJ7&F2zbrVfic_bN^bhfD`<Ejg{EVz8v)~&YTAlhza5g#1a>paU
z;Sbf%mx2;(k0Sfo^aFssxnShsN&;UXbHnuN$zwo70Oqle1C()!ccBxwvN-d`6x%Zr
z1U@Q(1mv@eVKilf7EsQwkk%9homE^oS!1I0GR;bUjk2hY88_!YuJo()NHi(+rtCmq
zPXouCxr-F3xObqB(~r}+N{f>zx(m@Ozn^VdQU}@?tg-=zA}>@oYVYts-M}jeBIK3V
zuVld$Y(T_IX|8%#^%LWCzqW-Lj0g}!?k%6ogxYAfu-@-8+7+5uwiM&vG7f+&(||r*
zU!G>t|B0z+FItV2Yq$r<eN&ctiEjb`33RhtI1^v1=|uf()DGiMR|ESTN5=b`l~1>V
zeA_>?#!WbQhE=$OI?lO;tK>^ivCG}g0hfGlea*TuOGW(qTcM4||4{_NXb&T-9+Ij6
z`A*fGwg*rJ?sJtBC*MAj{HaJeGESwDQY&KCVqeQ;e$;i}B6#A&3~QC`_gRTDu`Q)b
zdAed>Ae~xrSU!=1N7_EBWRbFAk^LX#w-}jlrBGVvm$;Mq*Xf{DqFDUR>D=U|*OSxY
z_k2^U#25O-XeT6hAd$!z!>%pqb^_m%wP!w3Yq$*x9s4+vQpnNhg$9RBHdEJQ$}NWD
z;IBl)gQO-rn{Be3bJ`q|2<%K&<Fj#=;8C9^FuO{MK^C9N3~Rzvu(Ep7Q$zwPNJd53
zHF)O*RMZ-ml5l??Ep3UF7lhTC?9Hb7v!x^wj@duyzOyLKtBU0NIc8?zd9+1<;K)zM
zdif|(9T9D^miTm7Ctimp9Bb>?UZTg%>6c{oOj*Q5+Q5$IIgRItn=cowI<`I76jzRs
zB{C9iL*l`38Cy2fdTng)<rvnjPH3l6Ihku>mM8;>L*~aDGue}bY+{^21B->9vMGB7
z1|qwkW<*hgr~@J)F{pa~bqsUoRC2FgH~u>dhr2h&51uB=L!}bhCV{$2tYw-*X+mBs
z6WIi5!Jx>lFUPIa8WWrP1%+1qK$Xy?6*@NBFh|>e3me-Z+a(t}z8vd~(k`P;+bNqq
zKHxDi{B?`ZD?26$A6K)t|63lsZeGsbj~X%YX{?8h7LQ~Ev1n8O2OUg&18uNB-TUu+
zM0K<)D6mYsF0iS~kWr>Bbp|MfxXF29!sG|^UD!YcbsaognX+Yggd)-l9ZEa`S^R8u
zihu0mb+^uV_xx_+I{5AC{fh5y{G3GrWAF(Rq(Ndf_+}?4awQNY2tk386=iOZt{<Xh
z(HEtP?~pp#pRX&fS14Ri$3f=+vdc4)`%_n!KQ4Rr?RWQ)=j!d}QNilRVB)LxbFtu@
z+||`7-GtHL`@n$F{?K&Hi8y_cPZtR4vYR7jUO**aK0Z}Ewg)&4HY0u%bkT`_5fFS)
ze4#e%yZL&(qH%>R;s!gF<}u#xa$KORS{vveEltW{s)EyHZ%@e4MeS$w6Je_l$#UdI
zcYxr7cAn#tz<{drt2>h5lO3m*ja2Ijk*+P6(X0QY&=so~Ty1QEMJrtGeDB=8>22fJ
z=WJqOLy|>!!XkgOS)w@<$xY0nHVU&#GVdlPp{%Vg&2#ZeC8-}rWF5IF9-0ph7Q``#
zsCePi*YhO5A1LPq=7|zCNZ{6q+%D~_ZL8G4Iw@dF)rnk^3+rsi2==OfPoR#Z+;bx-
z@P2_!aA1lklu8H0-NAZ@*}5-DL*CDksZ{Mx5a!lA1@w7#_;LLsvA+*3haIZ0gf_#>
zmNA3%cXs#{?pK5jUf)JG{doulm!C~X^9{^6f5LL#>c{qK#(t9jf`;Y<GhQZEfBwj9
zB=gwzlNVChkNvyVPIX0K;Pb$Na@ZlVO)pFL*t;=>*w!VH0x61)zcjmP`W(b5t=(`~
z7QK8)0Z9?3)pUCF9Z4(ucJuVywwCG^>MNi*Db~1lvZJ6r%hNy~cutiC*>eByDiwD5
zcl5A$LASbU@mgikm!aFYYpiX)b)?OMKD@aiM<RzL3$@d&UAc4SP>ad-^KPGa(yUEA
zEbQi8HBvzWYn^xOYfW#i8J<)3(=y|@+Qq+!Ll3~D3U?W>gX`z6ALnCq*%pwCDJhYW
ztq;*6W^6Snem^sSF*_&NmyuE5GV{S#RdM9lb(zZ(cH3dqW{)eL;ARG&gDyf~3E4k*
z<CRnn2%-F>|JMpj*>@7;O?$D_h<~!b!Y8F*WYE%*LuSKCoK12~2un^ieP`6j0g;BB
zG9;|lBabn{zQx)4SG2SKVX;)<1#>bKHp1QOVU=Tzfa5#LI{lRH8_gV~+drf>I?{B;
z)l1cf-VEzi>Q$fqkqzk%HcFj>Eoy;G#yy<8*1h9q*~dTaX}ItkB*n?}1$h=+od-fi
zTy1%BSpz(4wZzt>+vIHArGM(j%@Rq_j{T#@t|fT*m~3ngZ+(+_78QT`t}Wn$@e9Yq
zO!(;@YG*&Mfm!;3a9wVs%6Npz=n{?m<2=|_p6yB(Kyt%Pa-AprY8?aL?m<Q~0{`P{
zU$zip3^SGRF!Hia#vQIa_Uvj=$S2Vuv`P+GH+~)^Q64|BQ_fNjZSj%)&kV-cIUhWB
zCH&J)5%20v8eP`(TWo@Si~>vzx?RBnR?_}u8tvPFA)}BO*&Rg4aqE!b5HkrtZDHp(
zd4AQdXPaz>sb5aB0}=iDp+%XriEe>}TFCdboI(pf{&ZUM+Wige$6wK?-MSQGW-x)2
zSi-1>Hds3CzlkJIfSS-K&4Ek|Oa9og;3y*J;qHF44`D~-rti`{3q4orL(De51Q-9R
z;svc(lv@|r*^Mp!(i%yV>8Vy6QKs=}(EbH|jt#=5ho%EZ4VGWk$}SiR9%eg}I#1s`
zZr&HZmRS5Ld>C^2GM1jx4qpiTiNY-1o$>#G8|fp2)`p?=Vg>NSLEInuHBo?*dUX7m
z?2c>%y(Q$c6#P<RRn9fbVKywLi4}@W6TYf_N<m}LH1UTneiR2sRjh=_7n&cKZN-Nk
zs{i{(Hg>`~J1o2LSiYdCo?hrcikQ}xBp(=ufymp+9Y|ekc=A%U#9q0-_%!~ur~-ET
zUC3|zKZAql`)Q@@`@>p$1=eABhngmzKa%k4`9gUltvlC~P*&U7?-ISn`jJu_6W1Jv
z=PY{o!7Xm=CH4z#ZJ*VZcG!w?lQUs<w+m5wNdhL@nxz~`QugD>wkSTy-+ewtjiYN^
zt1Bbf$)o@rlM0y%A}kWQ_6K(LJUd>Xi-enrGlngxfR`_aC#??P-CA#mJnGA>%N|5!
zUSFpV&cG2^R9~~^i8=15%Dii&y65jqCNqsn2duRL3k}d>w1F`)bVc5kU;*ePT<Qs;
z;t-V_Wb)#QVN;~@%HBC~^Ze&4d}4gvT=%BA9h^l456F8)IVe3cm52C~{{I&hQ)}OY
zC?J7)2!e+63j{<Akopur(Vw*IN~h)!OaZp*rd!N|&TR&bD7Ti66~s45j#?@F=c`Z<
zPhc~0$AN8y{Yn(|3a`QJs+QN_KYPkQhu-{xgIT6ElG6_5&I|Qf=P(h&#crX%5jc7E
z2?0#{zWdLk(jaaN!Bb{u#OnxJ@=%qi?c9F9O^Mos>4h|k*h1y*4UXNvoMQIH4d*+S
zqhr`UthI0E)z4+rOKRej+Bp5Ri9tS3=vgn#s2pmHtl2h|Bm~MiIN5Y()<lAbl0833
z0eSiD#q#S<{n<5??0Ea;K68ox_R<5sIb;nuK#A=g9JeVQw_g+Ab&Ul^1)&Urjh>7W
z`)Kc@@Y?R~#ddcZ6+&GhcQXFLnDdoISLadm+}@P^*k0{e?%v;GeTl*~Ik82^YT$u4
z+92qXYL`kZszrU^$%jl4=P^hf{hJoeRm?W#0_EDKvWo6&zBrm&Ss-RIPaizP;@Yin
zdn0(wSBY7^Or3jqP6uDz?rj@37pP?6o<Q7J+Ve<c(cvq>JI?5cV@N<ideubpV*A6=
z6@U9b&(%d@`rL_r#$bZ}Zg<ZMnS2f?Y<w*EdhsF$)oOTD&sj9QvB3v9KR9-IxL@&k
zc4mg&Za&Vh7_1-qGT>ig?NO9A%Zq;Br;reBeeXOz$F*CwXOkOOobAsqnAKA|n*k52
zct4!H+`-cqt?`ulg*Fi?VPt_Q%L*UZeT3{XbW(Dp$l_h{*noOsxARmvq$afR_4z#l
zpSDqP<N*aZipMAK@Atp7z@sb$hwEMcglz#@6MyRJuMF%9ulv)IYzkf*B%2T*heQEN
z`|$Fj|2L-N07FfsF@^eC1qKL|jhYnN_yqu-)du?A<ig8_35Blz79=}g<&dBr|5vgp
z$z&6TI0pS1GcQqyVxWHu$U~hcv^BhU&`&ZtVtd7X=<p`sIc+Ho+GO@IHt|B}Tv^r#
zn$=AN8O?scqs%Yrxk~=X_5-p-?jFxMq)Fnd2&+w2*p#gwpovHR_-OFiy}ttdTD!gD
zu%owSdaq!=$I3pN!`7ds;;kT4lL)T&O8UR4Y}#8#!We7qCq4VQm+6KruS{(Qy=J})
ztJZ2{6Xq%?Cky$Rw3OI}mHczZga>fckE8^y7ix98)|{Sz-j^!YbDW&arA64>9U|Y8
zpf?*;g(t%mq<H?)e*Dy*CjW`ACNGJhX)u%9=v8HF^nDn!f^99{mHt_TF;11NoC!(6
zg+Ii%cf}pvZ?5`$;v{+nKP?<%fRH^1C}4OL^b1v3GXwBf=+KY<Kt~0{cE%*g70dJG
z%)<wDJ-!3<TV^m3#|EgUYYbW_v!q}m55b&gNCL_!Y`&`Stn{mj#in&B8$aOSTwmb*
zgUXj!J5Mf4Qu@-tfX;Aj4U2U;-Y*STTu^+)yFYDs2=)U{Pg6U_<VpKd0I!DqGxUew
z0UnUEX`y&?0uQxsq1ohazh;Zyvz5N;*NK7l)fN!HB}4e2Y&}Fvt;<#Sv*L@wtJ4<m
zmNxUoHh|xb&GMHx{rX-;R4cCg?;S~7N5$9RZ|}RxcYv@yhplHqBW8Av-hl90NK@TA
zG$zK^Q8ZV*@)h_MVw6?am9}8p1V%238u52^suCD@?R4N-l5+sFDl0j#d}?s12V1_7
z88jq^^hq@lKgn^Zb)3R28?iKszLKqPe~WrDYb#%z*3}xqXGi=rm1*(w@RH7j#l}*u
z&bXkE8U5nb+++3wi75lvi6d#8_zNaa|2!mEeiqDi^l1zF89f}sEWYaH;viDg^tYoE
zY~)LC_&iEA@o}MHUCpUHiDn5N(%M!u`0t(Y>?p`F<LP!_tq+fFlMkjigs-U5u*3?m
zNR%bPEJF(`;dwL+8xUZWC@rv=V2<QNP6g5|uPc9moElGh`&CHw%7-P_JyrQbg-48>
zRNHK#N(EGpup2zNH@lG7^dd-H)OKN?OUw$2(EPD+(z5X-Tcfg*hJMQ_p$`wq0_5o$
zG6M8fyGT|)RS^m1{ed;_Uphv#CE&|=$mDnROTLWnza76U#Un6=Av9BJ%CxX#vCR)Z
z$Cd>d=qoAkVyiB1^2m#bMY%&wH`XIjQe#D?d=Bcn=i;Mg{E^F>nF@tI`y}N)n7~YF
zPWM0`UI*}{up|TvQYQFR&j;%C$|sgg>=tM2PioEDE3=I%yz6Qvd;jr@@PM|#n|jCR
zjSaHT9`iMIFMJS1&>$oA5+j{~iW=*K^L0L*uU%Hgevy9i{+Jn^XIEN}v4>tEq}KWQ
ze2eXQnhneTZXd5nxZHE+SKFdQ4CA6~rdrFgnAkrIO)nm`8F8h{k#!hRWjELfo^(0J
zYp#uEC}3iI?!6pe{zx&(k8<R^eG|X;feFP^@Tbc-8?dyPK3qqCr1)+3L=zUCEC2g9
z%W}Aw=viyH7YAn^&G-ylydmx0DzYE_j_P%jUlxAYZ;(8sabvqY_!dp>f1TsIyWF_q
zX7rG}dh3k7huwb<+S&=$Pun>Bw=))tsU0|<uN`AWZ^0fqVbSO7RI{+etMmM&`$j0E
zS~v=z#n4E+)FHh!01PVLd+XYAMSGWe+_E~+GO)ApP4?df7v%1MR<L)1hi<|<*m(Eo
zR{e^X4(~s0L?d8(ELRqLdi?hsva{UC#=MVeTuHhPY@ug&i|jmxJZOmrhP7Q+xPpUv
zDqO{5t(ten0x?<4?K@+~o4$1Jm$sfFZSBkbvW@-FJ>T|+ep|v|6Xc*`N~mcv#VGv+
zDT@5)&3>86*Rn{Hy+5&afT{r^?%3rkY|w*b+<qsr$MB<y_gVE{LSts?17I3~wpf}i
zVcK<Hl5+g{4lOXJP9dN}pD7)LwC%P~qv8`zIFEK-?hF!CB}PhOO<zy7RyDX9M9zYD
zJs(@xI1%61N6L$blTXosrx_Y#0H33%!c1#57`_MO`&c(WwK+x#F(%ac@UZLdO$H@+
z@NmWr6Gvf+lAc!W<8T6;X8u!U>zwAMz_)(K@gL5~-$Fu5YyQBU0($T#YBm1?)yab%
z`-J54CjrLmwpxGJT%#J98y)08Y7}u3Bxe3AlWk=vm%X2&$a{V^&$_#bS%D(@r3zzc
z2i>az&BFs5)P**h8jTh7=SP0UpX_VG1+M$0rwzqEd2?1zXOJ1Aqw6S%VnKhOX_$Ou
zkFA{dx-&26JO5SXUs7Q6jYT>_A*Wyn!O`G@2&(AX_|GN+150<OiE?b?>ijxUgJfdP
z?|zf8^~e!ZWi{NgtDsEW2mmI$Z}1^v=lsEA@0yOV3}_?(w_FVv_1}23Tk=iPJsOg!
z%D_|WU_U2_7+F%)y81V-3VhD(tuZ{K{)nb&O`Q^<L7UMUTk#0v^&MeYjfa>C)$nri
z*r2M8FA+HOHv2>;72~Z28^s{ScbRcb*c5Mp;Dg`D@-eodZ0A?`?lCO@Vs#Cd@<&l|
z>eE8lmhIbPiY(&%HEJ3-LU#Y>Myr+7TgI<<4vFu6k!xE>oLEgV@37B#Wz#J_VSuzz
z`Pvd^K(s9cHlIT3<!!L7pwv8kPL9-|mCAau1w*MO*`bzhWRW?!D8g}*7&u5f;bOz3
zVDXJ%_gsm@%aqZ%oCY}e4I=egQjqQW?F21F>@_xl;dkGdm-iP<z4aS{T~3PZ+I)D2
z9i{`zKOUT8Fb*8$W4I0EF<cBJ$hCAkeEk-l8kvHP@VR;WWYD-uwRW17pez6hg{x-E
zeD=wo|H>M*?Sg++L_Yw><!ycfR)gbaFHE9a_E>l#Y^2ub$pZC4O?|<iN?T<qM|i(C
zk>HPB@FXcQi3T_9R5X|)(f?i}DczsJiNs&_L2!1kL-ybo+Z^$MV2#RhmX@Yu>l}Gu
z&zCB-b;7eZoS;8c#goJ;e;RbE{XvkP-$%IKkZ~bgryX!dP;SY^`R5A%=o=-Se-CGn
z1@yZ%JsI}ci;M=J<h+b&2YMN6x^vwnlb$f<;XEL|w-5(SO}p!NrN4=A%2LSee+^lF
zSF2NNwU*%iwWYKJ!So??ZgrvZgOFq)bbaNlvO&4?80z*Oa79=BVlE38zSeBJ(;;g}
zl=!~i3Mu`Oo9#*aB@%qcKgM4qkVXr~=0`TaTWddbz1loNx&?Oyb+%=hj%W{|XfSy9
zaREdH_GZ4DP7vnRuXj(8`AdI~i55e{il2{u=nm?6_g0Co_XUES8po-FAtxD&M09!?
z;B)ACK_l0FaY|iHPAr;liVva3U~4$-AV**Qi%j=7Y;o#hul)$n(nF{}EOWc7o`}c;
z2=C9<%(h5b0i<hY{AFIJjwE6>4~jkfxN}-z!FuGV5GY&Ie=%+dV>@+fP_<q5h2LmA
zH_cdEhd!>}$TYS7?Q%&x$o}gy?9H-&_Y^BHTA%LH9)=9hfM3A}T3#K7SjA>Me&uCZ
zr>#5QPrS%Er!=P~W>{Ok{&A%5N<3}zyBPB8#*!{quWbF5_$)IJu=CAfj`)YHG9td=
z!7?FeVys|HW}D+LbVAmCmGQuyVFA^;QA|$~-hsypXd5{DDfOu1t||EmrdhG9>%eN1
zIW#$TO<GVTP3Z&M<TEj->CcAKNw=hZip-5QAqAV&2o=}aT@BB+<9fo@NC~mxZDgj#
z*Rn|}M}qfBDMkdu3Z4Y9VdXkIfAUYt4~tXF_<_16;N8%V%gK~nY&G0N8e<O~i8X;E
zyh7Y7d;UYo5k~`bs&e;h1<r~7lbnFPFdwI$M4?do=I!RyAd4xJ##Pzn`@oBJm72AC
z^xSG{{6X_^3)6?8Y3jfNx%+h}t8fSgRnL)4agr%+SC}a|NALyxsYIsj@+jZ}+`PTF
zUA_~BugvyJ4N7dB{-}7YX1>eX*KDk&Q`Ph~F@1)!T-5$mQrXXw=h@r-ma}v!@)B<t
zyB?P|ZLHSt#aXNn<QA1c9jXk!#G@T5B~4x%-a;!zRIuzkbj?*=6rW=Xr#65m9qI1w
zbSdi8V;8yMY0ZK~u=~u?gD+_tQUbv4*(6A?;7aZt+*At8F2<XOTBcjX^{DtQ{+Cz`
ztUNP0U-GWfhYa%pY0m7cCec8St*G?MpXyI(Q69ttPCN&jHUtL;cE2(TGG)b8F)yo(
z&d)jt;Q8XzFQqu9l^S#a)nd-F_}8cI+M0mI`R0%CMZfo_HC=mS8-p|bOb}ya#bTd9
zB@|ONI~vpw5onriGSSo7(Ei^Q$<=k&l`k?AMWsSH^QIGvNuNlde_wjwS*zmQP`|=v
zu@sDuYZB*rW>i1HWa5(%R=p-F7*Wj~OM8HS^Bcl$!xwd>7~jm$KBv(5cbVzkpFeHx
zY=4cWbLp#hmnLnd+;gQfaTT;w(#(#L3)yza>AnHz%sX2UQ}@%v!RaX677@$jxBJFE
zTeDUyX9{Kr2Ag+!?UGlmzC87H-V4zhFZ7)~x-W?W&K*7n1JS&fNX|N654D1&i_cij
z_=(GWIMaMO=Qc%kglzj4pmr7c-d7*F_w*Nh`x|-WgOpnhqcmHz>MB3adg0${PtWEl
zkUG?A)nncpKS>0N+Umwy@8tQ5Oy-iuKsbw>zEdj62YFB`4{TfLOH5!LE)CV;K8q4S
zSD<>n_Mk|%?_h(y?Z7j%ZBE~9{6aKUKU^yTRuI2%aPD6;Ms9}up?3J2oC`JoHE3C5
zV*7<pUhO-@ocN|nXgX3E((<J-1sx;^sr(5Y=@Zl+Tj*LRo;4Lp(|JBGul+!l0f5N|
zWchm0v8xlKGc%797ggI=xEeo)Ltg8&KOoJm**)3S6OG?Xa7aCJAPuybWeaa>-+w&Z
zLENaj8}=nHA3vyU3LJ;epSZ89w1R&qj(^$F>^cgM&3vSQsp&Ry#(&j!<C<8cd}o6S
z$ey`9eN@xSIU{oBMUtg5lIAgSg#34c6W|51P<VAn*IxUAl#NFk{mgC2Q(aiueY8uE
z^LiA~?Lo9i3y(+j>8=by%%l)!uK!l1usJ0NA6_yDEXUjxsO6GdQ9TvZ&>g+LY>n*$
zDp;}(;EK0_U;${D+Yf6gb5Fj!Wvto@S2{Z0E3>CB%ylX5?nB2MIASrQMDL!=U7YG+
zH*PlrX6<u36dr00jUbCiY*niQ+Hk#KX-Z}4d66dABgOCYp=V&atO_Q#Ex`lJVlc1P
zt}B2B$-p&8kY8i5VX1HN@^5mU3~P|g@$I2S1}XwIF<f6cr=}Mp=n-hcW?<UB+s6mI
zL;DLn6-aiNtPe1zdW8XE%~Nk~M;|RmU5=v-JI(cQcmhkj<u8Kc*B)90s-+(!7~FUT
zG@aJrJP<@x+?$CTL9B}BdgR-97A~8Ws~2o-!u+^sPdlqRie39Sh9_<~6q7wfo(VMk
zNLJMxl~{PP>UYXM!K}CjX8y*%19hvjk4@kvTkpKy!Vq44K6Q}Ejpo(0TsZ0{eYbE*
z6PR0e3urub6jS-e*ZYV5(n!sySt(!XZfG@3hd`g^jnS7%nz0eo1l6Ni&p2=S6xP)P
zt^13pi?QHi=$=;4$<9TX97fn^=tC2|%B=v84haX^^=@BaTp;jR>f&#&CwfmyF7M%%
z@m?6a^th2JdXqscKi?g^5`_9@iZOY(z23XN|EINk-6$t_b7Etle(&kqRIDX;pJE<>
z_5WNouaa(@#q9+jjU}nNwIGTbR|9RbSZhzh%UbLV)&TsPErZa{!T2ATWS@MgyW94W
z{kN&NR)~;Mmp``B)K0n|y+B7^hSV`K!IFdv_8p<@bG2H}{M$>QNx3`Z6)y0h1<yqo
zVLr?QmgMMYO?bqI8rO;q-Mk77@MQEs74H4AMUr`QrIgh#UPg{AfO<m<Bt!-JvEI!O
zTJ4^F`NG!e@ggs@!0C9;nV*<qvu^Ns4~;*K^Iz%MQCm2Om?akAxRVk>3F~ng?AMW-
z<+bkJH16*6jYt0eyw#zMvTUB+G1wYfCPd_dN!@yhFFY#ltot_!FkGWA#6?6R?s$V!
zXrmv#7Et|Lw&QxiD{A~0m^gnm{jl43yvqTrxbU=)8_#N7`=`b2yU@vwx)m6viFM}<
zseZeCI!d0Zv^rufmrjV`iq&j@O_i?_vX4pxIF<1(H3WFr=Gj?`E?QV&=1KcjZ#>0!
zzdk<ySM$uyoGx`?`?0FC8O1?%goP26({_(mn_nEHi5R_){vk3mM(jsU_e#Qu)G~F}
zfbo9%=y-dH^fzsSzqh|k(ZfW9v7RQlLA6-P=RRtl(!<y$3ej^j`=4Bu(n`n9Fyz^a
z1AB_SKWCeVvR5l_2uWW=l_;()_+-q0{<>VNYoonhaOU;g;(%&FpWlkrky}E@j(zfO
zv6Vm#yA}BMKjA-p_OFW5>jxAQG;;Z}cq>5pv7TF&>ARTozrew5YnPo%e2d}pyKGT1
zy$g2?Y*t~QtC&y36q_RX<PsNg^Jl)+TN(A!kC<??yyceHz|UvKukpJQhyA)x`ZKF;
zAX_oP$Do_}YDe30<rl(~ZDIl*V`Q9piArQ&svX{j4DdNh4Hpl3Ya?nj-vBGQ9wGF0
z!%v4jgWU@2#eJ+{!gGHHM$o2QV*e#hUEVn20p%$bQm@G>Z>N}#yU;&WG1+Dbw}*98
zJG5M%epYdd`S8ZH>AQsi8Ym<apLw(X9~JNcVu$6G8(DxzN4-m7ZcY#<^blibn!1Ia
zOPt<R`l2Bjw`h9V(>dGS0_<>TQ|j<5Ccdb*kL*HwYXPnrkCV&;Uwx0=W~;aHlO67!
z3&Tt49|7Y;`-bi&2UEptYxh0r)ROngEY+Cjdi#^?C<%bI?`j+7*oG*)e|{{pN<`C%
z#ueG&_bBJU-LcYAtld+(#8RP!lIk%ggZ`%o0<$NfF4i!E?p!@aLNwRBcocT@<GupI
z&M#+olIOqX`@CM@oShrojPy>PNpwSKCUHIjd`8v`6s6e}jM`y(m1!EtE+|MtR5o1X
z)Lw>te4r2~>y31@>m-QkW;$<n(BNK?JGobyZ77?yP6~}W>{$xxuAgBIcy%y_o6nNI
z#k$JqPV~ZDm+u3pB<eHYzR_HPp3}3s?!>knm}gqOn)7`yjH}!6^^8EpxrN-{t3%>X
z7q2a6!nl}M1EOuj8rAFTQyP2)qcmqZvB&6!#=3gCDyfKsFvtt5<LWhYO}rYEReu=X
zy*S&;x!6a*u?wPv3Qy#@pXHD=hE`Iiyxh>2VVpnX?qER<fc&?r3?5cMj=LZW=|TIP
za|%5PoSxXKI;a7B&;O3hL|*P?b_VvjL6n8!D_^E-)vi>reG03z#G2#-Bt5CmWHhVC
zboV#ek$%U512c3FHv~Wl@smtuY+D6+Vx}Dx#;0PK0*Uo3{GZaB5MR>W_rQQzf)|hP
z<UqT&u@(fM_hei;6?b}lAG{*@sr#Fe&gE}8o?vEIBs{*N-rxtD6JHn`z}e`AW=I#2
zJ8ophdk3^$U4IS^Qe`a)mO@FGuWm%ab_KgJ@tIEnpFM;TP>)*N-n|bnDAH@y%cuB4
zXh83x-jtyw#<Xf43z&!l4qZ%qxgqzG-=~Yen(3q6yyEtNj0X`T{~E>shc=t+F^H@0
zjBhd_@#i|!*Mi+$=w1l%KgfReL)`)Dff*FF6s$odChW2zy?&7+0#Tx?Pz*X#tDlIY
zd;LP{xvs)b9L9?8#eIE}V&s&T#xI12Lt#6&8(=OP`y2i`sX|m}1pUxqaaX>{q-*T#
zv+tpfwK`Ad9aD1u?MBMS#Atl5Vj?tn#Y7(SQ%^U}E4f57c4Nuu(QfmJZ@jFiUoW##
z+L?CQJ%%(9KD-TY4scgtgq(eHbZc0Z3%-|+xg7dsKPm4Vol0f|*)dtogJF19lbLO<
zO+UtOy*W_qD;-*W=!EX7Fa|2Rw%!r9UavG?7&NT5U9U)8?AdGWC2PqQ$ze|MFQ!Q3
z5@iE!|B>F61z)D`wl=P=5Wmo57(CzHe!qIVU~+aO_wQ6I;z)&94fr|ecDH(9_o$c9
z=;e9y^2*92VDViChZbxSDtn9Nu{8wTZ5E*X<Zhx@zMuqKFVP2~!p@_Ex)HTzUUo^D
zc-h<chx7C@!9Ts;nnvFc(>!B@TqI7@{m8pzz-echd$mv?`#~y*k>ySJ>=U#@YP++w
z5M=A%#+YlDbm8)oCXQRPB@d)J>GyiZa&2k;>-czz{I+Ed;7rl;W4o~iJidpN(*r{S
z>1`YnQLq(r9bN<<oL=gl$$B`FuPB7iY#^27M?O8gTfPrSf~>J&k-(1Oz>Q~zaJE|V
z=}QS4L`Le;Aj`sItjVm?{N*(Td@$hGM>VE}lHVS&m(L{mKTbMS7F^?cJ$AI#!<~I%
zk^-{F4>bktdL}Q%$u{!Rs6tj39xmI_Kknn(?+t<NJ6!-%?^_Vr94o*Q&L`zO1I6M`
zAI_n$$%ku3nc~aJaVaPVx-ode8=ZQ*zo}eb^vBz#H{M8}AWvs)bKoqnthx*B5pp-3
z@9Sxx`?>EqLIOepN68P@0!>^;U;D(k%Q?lTemwp>@%IP#;M>|#VYru^x9v9;OZ~;F
z(Shf&@_fwPgqCW<Q8^9O>>Ghi(*{#2-+JU>2Zns#jpF`Q-Md;GjlHBbT5LB;iJ;@N
zG9CUKnS>0I+0>9fFq6N4@fuRau8H{bSruO&N|p*IikhefK|AdlvSSj6Bnrc>mB<Y~
zUcU>fI?Bj@SLeT`K1fm~k*ru_cY-VPT_4=#E;HYp`qJ?|E^zHRQ01t9&g4reP`9g=
z&cx}H_hWhwa_?;8l!9Ge;)mH8=F&yxsZD+e*@DdEOOR}O+1FAE`~h*r+W5%%+Lzuu
z30b0+9Pu^vvg{Y7@QeeZFw=VIzj-$D7%_H>VC9^b;D6>5I}JA`gpv}C?yfbc%}i1G
zKZAUV;Gt&i?^*k`vWs3_Xu6c=pP1&RH;v<U-eFdS6Y{F8+gry5y?fw$R<t;T5)HNx
z{lNklVRlyn(b%My?R5A5C_2lBCfhy?lcFF)x<e3<R)Nt&x&#EIJ0wS!Fh`1XDD}`t
zHw<JrI;5pzqg6m+ga{1Sh<EQFurJ&0`-<Or9><G<2oT?hF?QA6qC8Eh(qR@B8Rv|A
z{G!nCA8hOTD9vN&arJJkg501lK&FvNhtQG~{`+_lYsIrjyU5VG*V0J%rBTc6<iA}0
zD>Db}-hEWvVs>h)ece+`&HAC9*L*TB#g5p*nIz8aH_m4H=}2HJXgIX5sgHvtlfYpA
z?7133uZsC~G#mNW@;PGP1@9804oG{kC=*&mxZ9xeB1>~S;!Ck({XN7Ye9@P6TXtqq
zc4_D;%D3pNb<x7El$vOn-)2vP@o?7&tRk(PSZ2jcwV;A1&#<Y`YGycR9;2fhMRFs~
zntk?c_OsT%j1{XQ!~ZUf75x(|_e^MsP1E1LT0SPV#fQKY??{9GhR1`te&jYCaE+Oo
zz&{RfrhcF_4Ta1Su(!0$rl=Ji%KVu5?Exauj_1iOkQcgyd)8YKA*E(S^%1Qt4XODH
z&;J{Va$S{SY%+(mHL5~}t!-=lBaN8zcXc)wvd{aL-S467LjoSMz#jl=P@<TCUJgWW
zJ)iB?MCzoZC0Gv5mF+YI1gAk*wwzHS|IKZ)z;x#Z`?SfCW4|t0-i=YNOs^m6sNe;G
z2K=H;Y6xxzX^c!J{t2#)UVsgQs8By1U|)dYpr)WXjc{O-dHn~9lt7e9`sT>77eKG?
zv*l|f-Farzz`|}&zZsrVc+(OwBE9HPw4yYzZYFE_(xQ87VX7Anz_M)b2Xd8kAMV!9
z45@<s2nfjYs!|K^r2oeAk||CWogJDg=I4|3T@^#toPqrZ5ldC5N?te>wD6;E*hltf
z9HA`O5j6b=7h4ped)OnGfk2?&Io`C&5a96DV5xx$xX(6pWfuKnY++cyy0O|&1N_T+
zP)`-y8YD?r!al+r_Qx<ER+g7tMH+I#|E1nAk8n67(TB0}wtC^>q3xN!0dX&*z@^v=
zuamB>ssgXC34e1-+^%N}|2)%O7j@f`$^SaPES-}z)FL*c_0uXre#(%*<kHSmmE`e@
zz~ntXk@G>l#DzZFRn5J4)6F`Y%@0(<-1!P%3>3HV%NgT7^QWOLe&!y9*gxTfA(C;5
zH$m^h|DCwxMdO6cj`Uqr+eB!(`bE9F3k4vBAc(r{Mm{zbAbzuc5zh7L5+3isF>7Q4
zB)f~vbG*yy#!XyEErGr;@=JcjuW#{A&)@%Bq6pnQ*En16@Sa0UrS6_<q^f>Yyqcie
zTd@r{Eml}(yE*PUk-fnm*2)yIEu1rL-6xbY4~8ZU;K3_|q>Q%<j*piC1VFM|-wMu~
zli0I^!J8n>6WzU{qOj}g&JCO`#FEYby=H&nQMxK&F2}E_3bFSQT-UijP807}?o1WV
z=__77=(<}+S~bX5>q$qZ&ioZn{jbBfq1|2_alFq%=_XSKF!K)$c5{BFY;*}F-|R!6
z59Jcd_@uQ<P8N0j4E8hV^lB(A7tXG0QTGmP4ml2obUBADQjVJ={8{w;<@Oc_;~et*
z(xd4D=v~0eocI|>@$AW;an$la7EzF}$zp53z4N3u!j%q$F{b_BPM@YasX^<fh<h-0
zr6pF97L(uj7FHmSk*f?Ci8I8ms=FQ@OxwIvx-0@zm$O5af=pPNl=$BzU1O&<rg7d=
zXW{J|L*p&Y$#XFhKuR}fH6HH6C;5s~z{<P3O~soe&}Be5j<aYtjbm;DcRnngKdsxQ
zcNzC^Eb=rRS18qYnv4pMZ`i!}uSNfrA9<0;f+T8A0jHHrJAbevPZp+-aBlM^g-r4N
zeR$XfL=&2vxCtix*mm6Jo;n!vD3Dv0$FK?SGm8f8ml#U@{mawQrL|Y9+X)4W7|2h4
zqFRv7wJwz^7{0DL({qvL<=@$~$y8DB;M;IBu*hDLUQCqz5+YxpxYVSZ2rvmqcrurw
zZ(h*B;ZLmbN%QQlJdZLXbF#lJ?N34A-+!FWJ~2g-6dtl?DCy9gkbV8)Mn`aNh+#$t
zh(Gwp+rHe_>B?6dk^_;SvH^J@OBgFW<U8N{<sbA7`Frf}55dI1aH-)*Kku1QxUaQU
zgS%}u{poasCkHIqPZD1sM<}qOPzLD3VM4is{s;bBAD+HuDEpVe58H13Z@7h5s74)J
zlRf6ii9lx#U$eoC7pQ-|mMZ*LOk0mn946g-2pKKeqlj|k`=`RXcUqUS*UGXJet4Ft
zXjAIYn?-e64x%}9EVXHnfk&I(ah=1!)|r=NUdI`xJr3R8ejexIUwyy>K}-Qe=aNT~
z9!>VODfJC_#R$7*AK=N%1)phsx!p`cLn?5x#S6hO0NgG0N3OKE_#mmUOvAaSfAT=&
zZO{ReSNOQES83UlQmYFvK^dB?#A$4+lkV}oumM#?gs6PBsF#fo4W14>M?Hnl#*Pk`
zEDDX)PpLRreCN};7oFVfYg;vpk9xO6AMFb{=C$2SIG}|Kk5ikaWb0ifWY2cJ>tX%=
z&3?D6K@}mAdF7ky`3aac>AR2vEl(EPJhr#fuBty@saJn%$UUixrP`<X6pFuf_=^ya
z%otKfzOUzt5Mg?>9Ch_##*{AVB%0oYo9d6x6>Nf^Esi=6ASc(P<GQ2Y)=1tH?EVPw
zO=~YIYq-S0dqO6DWN(CG!f}_u0RD%6SGwMRGX@^Pm3S}HWy(KxJIe6w5ds|?GGgQx
z>%Voa-}?ut_@SOD+5D-zydCV}4K>7cifd%XUEttkAkS*^B1K<LAh_#nX_nC_@CX}s
z!;AWS49(W_f}m=y%FP;fPhr5fTd~<UeG=AoEjMpX{-#Xq0}xiw<Bp)i2K>zCdLxf;
zCB}*j%!A=^)pLl*#S?R-FW%^#JhE?_A`YrGeRTdjrQU$^@O6L4#fd27nBi)Ja!NXD
zKLwP6!t7Jt2TIRPDIFQ43|(=;24POue?_G(pMJC9AnP%YNM5=^?U)W<&H5vYE{15(
zB;U{?EMZ#<J(<E+vuyK5rE<-=K-1yROBq7IF{1N!koZAsXi-t{!KN#jI_uk3x<w%<
zh{|uQpz%*a_n%I0vY??cJoc!M<4kgqBo3tt3|v}=WJ#LlXa5KmK#|pj#YKeFUwyPl
zOT5SVM)4Ivj(DqM^wdR;*j@F<o@j4_6h3#;Ps=t#A*a7Co3mjhj6qS)bteQge9D%q
zbILL%EhJu%rK|go?Ez-xlXr6D`nj(xA@{;f54mp?jIEa?>C*$V7$Mg-F2UE1DjgDq
zEt3ROKkI<e?v>6oCk@r37?_cx`G^UfX@NLfJ4<GN4l$d;9X7AgGx1(Z&|T6IP(#t1
zsQcsyxr<&YdLZ!afFS(e<@1|Menkf6uG?kD&_iE?nAO6I-5G<zlOwstap&K$iZ?H%
zsx0M%cBFc43$Je`q$dB}PJy6$Vik;MqrX}_2aI=-;fMGzmv>jgF@l{yK4g<JG&Zr(
zbM4Gk?)A?p)|Jz7Ikj0ldF_{vv>@5flaCxHEgPX80|6!a_*ZJ7XDq$^&&uy=ksE2<
zMwKEnD~&z(CiT{S`Y8I6A2nXDUZ~oJVSmLsS)E!D9GHe*W$&&9Z}=jxPJ{@!vLy@j
zNn(FVj17M_1b@YAdg}y!Bn#y&<NTyH9<wVW{_wx)%26OeIkU(H9p7%!$pJh_AgSQ%
zYhxHYNs}CW-qiGhG|GO|UYOdNPCkKj<Z0{EXbx7HHnR&aro4|6$u?;o61`%BS*HNF
z-F$^vImp`X0{@4|)(Xt%7!8~hN$}V`rCuS$RF@B{A=C?=60UUXF_GQTgTJ*|dt=gZ
z^0s^aUU$pr7CPEn+nYoFv%N&+yFSH`niLP88sy;;#hy|>m7@8c;@#oSS*#*x?)Z8y
z@$l!fxs9t8@9A({w%1+(vPE^?ZS8Y0ZL}3BvD|nzgt;Sqp5R-y$5PI~if3DqN$(o~
z(ft%?-kW&YWoq}yac6y8%>2XHF@)TF{p}4?3AoO>R4&tIGmURLt<FKipOTrr1FMZZ
zd^xYN+rr-Dq=>m0JK<E6RF(aAm*?92qmKeW@L=W?MYqzb#`9(Au|Vu6<%rZE=Eb;-
zKgXn>rsFdxI+wqQJobCde!t~5qb>+Q6riBZpm;HnYh}yP>wM9e;Hk~<bfM&%Kxdwe
z5L+I|YJ>73`=V+AHd^xBAr-&Wrz8`>7l6TsOAyq-+BP-`M`+m`gfhy`%Z~=iCcXgS
z9)stb5Kj{tsQ#&-G@}DHZ{!dF6yJylNbagrTz=(<5*$J$XS6V{bFd(Vzy9ga`*1%X
z$Gde%^#uYp-ie>Iez*vNvSZKOi;&Mus`fl)V*{~fT*7WrP^wNWOXJ*7?&w5AAT;2h
zop)&<>$lnH7kyiN(!G8u@(lzk0sg(ITfSG@Sc*rZ;kC7Ro52a8+)vamrxdK~l9E^H
zLrc%I>IwA)3h0mc_STUGd?QB$PpHRuW;i^S3HTI}qPd8F9}uS3UR>FgzTrRnX?NhC
zi6`Z^DRBk|5_z~x9L-xe$OBr+;y(G@y3FyvkW14-Q>Hy_MvJ+#nwdl*<wr4IOc2*>
ztXJSZd|~2w$;Cph`7Ry^boocMI>R;C{Pp?W*3bRgw*w2QXC4bG68^j6pl4rgeS~NO
z53l17>4<8_QpA4%GD^k4;I<!ID6g4(h8ZFJn)$CMuLVpQOIRQ-;)kp(9F~`zI#`;E
z6WK`-l6P>iNFL~%YP0sBhycIIrkWSh%w|LTd3WX=#frifgizo$MF)R=-l*P13zdvR
zUU(~<K%5!L6O@jd9{#Nu8gI3EJdAnZ*BEUz;obMo?ESj7lf)#wpE&pkavutE5I+!#
zvbxxE2N+!>FGP~9MSX+2=*yuR_CClwwjHuQ-tZrPy29>p`hHJ>3hHIB9>}D_h)1X$
z?R_`Xv1ii}YayN+KX}>eOz1lE%iC`|ydw=w9MroV=W<#W$b@~b&&dNUJ=!C>2x>aS
zAg=rxQB`q=UwpfjIV***!btxjTbRK%#d6hdu@r0T1vm@sn;UdkIc;YRGq5hI>}7E9
ztEZaMIr8Z3(Wszt)0mDT<xRh0pS6{D<+8n{W$-sE`<h%T>lHKCgJDIIQYdvrVb3}&
zIwbDdYW|kf@Nej+sGs!J9j>K`=hp5J<gZm@D`L!7o`9+y%cEb+&MNV#s*J`nmrU!x
z;s9M?^$R?!W$b2|rK9hPL`sN><K#k*jL6dK%^pjm^G8@G4m~^pHWeN3nq^Q^<K~x`
zoSL0YebAT2u5&)<vE@dZQZKTnMP{bwCOLSolJmWC_;obrY-wKJ;iI3Dp@*aYZ!7wU
z5I6Auz5H~0Q(6?J$r*kIbCw5Bh5Wnx^!L2yqP4BfBlYZT50js&_(k#Zmg<T2k!kp?
z3mnrnl7Q^&zQH6P-X3?}wigvDbSunucz5gBLUu$#z5Pc{Pt7LV+N1(n)=pdbQ@8D+
zs0hNa=~QaYud>hnc<680{0JONK_J^Ux-iQ;*1}4n2c5X}w)M)3^{_;Iv4-c15O%9&
zhx_;#dSQ9Ch`IIp`FP{0sU?X6Wdna^d3j<k2wSmoCJ9F_SEiS&9l2a&-FE=q0~#7W
zQ@v~pB(nskqMpik3>0Eu^#f)s!xr!1%q8v@cxh#vE?aZCu~a2HqT$PpvR7KIwY55!
zuw%6TV{kT1Z9=9SxsxI+$%-$_k`ROQjyz;x{CIb@*FZmHJXoFw<Hp=%y}QX}Dl<yy
z$6sTL%P+b+Vx_(Lfg{68-N~iyh5tkAyCTNVMis{K5!~@8){eEQBNHtCOVi)GJ5Mc~
zRlJ;-+NBEftGK(hg(&x6yI4cfC!Orybwzh<_*sB%4AE}#Q@MKHk^+2eJ|gxd);fuP
z8Cp3j$foC!`4U(elu?ef%nhx;f8g;PRx2=c90-elUE=2!r^%&|zlE;owH1DzB)u93
z1uaM7v;M*cdEamk+6<G4u{w8qF^|m!FZp4(VyKLEfa>R{(>H0%>B=7#siE%;3tczE
z87JL;Eok)iY9Y}4fA<@u|0<RoscZ=#V^+y0@e*9`{6*5!F1x%;3+-k#z7T3_oi|YU
zU+*GiT>{1F*`QnYp1dTTfsZgJ)FQ3)VoOCKIbJ&B)`F)=wXQK#8>VszF}{;&e9^{I
z1ouUb^WD$?f~U)o24#8N15$+jyp2QMM_pR~iD%hHDj`K^H0|ZLjW*Y|?g!xWonXP>
zUy{SQFTV}+HR2KYd1n(j!L-{Jwc`u>z-lWY={t|KTJ>!~;I@EE-&ApZ#t)%}`hbzy
zjif1efp1nWYjoyc{I}Ok5yo@FbO8?V^QY2_T~qXy>9x+$e(<N`nOB?sUVaOqq*$*c
z56V^sS#Y|S-&p%c3-aAlo*~2DAu<{vfSo!2lU(ylZPuNhvyf(($<`XLj<S4r4Q-0&
z0;sZ>Rz3?bWE~DfL~(|hv&kV_9S|AKpBF-27gX5`7qr8^ItZ)Dy^bvKkp`bjmi?bM
z`?41ZCac%wp|d7jVR?5R^LuVfwsx~iGdZCIB`vfQ5CmSr$)}W?H1^8e>Drn%Tqpor
z4YaU>XMyCvvHh2S-#HwunbdxiaICVcdsV&np%5{kuEc5Ntr(xH7YAy#I@X{6W40^Q
zgfr8&Xnc9_^1vTvkh>t%s$|k);NN1P)ZiRFkJ-^{a5_|KutI)tS-z^Gi$#ZK{g6-Y
z-aclDabf#0-mb}zsGeAQ@8#r(p;i9J*KQPyUy2?z1j4h0R{U;2qrs@B^Flv&a-yRZ
z`6p58cC;~e_X4H4SehB8<uWJji;bS-=h%vHh=SnV$~4U*Ex$Kn3~7RlsAikxteiOb
z{Zh_JT*~XWpP+aIcw>@g9+O|k#RX0VT)g6T_n;Bw9xH;VI_x}VnI{h{e3b8kCtq#j
zPQ8y$AeAm6$t}5!3+?LuZ5KaX#KS7Kt!F^84l&fd-}>?N(6b%PA?Vr*Prp7`B5o=m
z0uFewp-nc&3yOM&koagpS6%P1Bp5H_A~oWoLOqllKM#w8r=lK0<fV&ekt9u_sct?r
zr+snrf)ZfYY}YHwJbcIYFFPVZ4-es(-uZY4pdONuF1Xmry@znNTS1@ZO)yG~wHj8L
z6NB-y5mN-?*(cB61-?~eh+I9Zvyfg<s28?<Zs&dS?sqOz4@R(Mk!8m@Vzl77IOZuH
z6gXAU*taK-xuT=8;xc8{v9DV&;It<j!}m=+8>e`HVf@vty;Fsjn9px(I;<uDBs&m(
zQzwy(2+t@GD9&?OeZpQi*)JLY)DzAP#~sR}2nU?8u2>5)oFGcCGOK`f%ZrR6*qMx@
z7s&C_CduC}F_yu(bc`N1>etl~bqGXN;X@|o06wV)e|gUZniS2EOrAE{1DzT53U$xx
zphHUk-4i(_yR%IW`IAUSW939p_TheB(<eq-HtNey?;Okc_vBT^%PbcjILzoWl=JW#
z0UvDIY{m~51jqY5>b;QuFLI~^D=l<Bk`VRUQ9Cxj&_st;$A%JOJ|AC^sA9t<oLdu5
zPueyvU@?1UdFztHc4<?)uER%W@XRw9{Io1EgL3c#skS@O*WiIDm38(+T9XGNZ+@Jq
zYJ{SbrDB9O0IVp44fWplcO0H6(6FMSo1?b3)IR{hS;I&v4S6Cs$#_TJW+85Of?uD@
zwXCIBOqytS^iRYc<_~x$9A{z<kHOS~Q+OTp3|#}C_fNiGfB$SSHQ#EYirYrAS^cu<
zx%Ab|I_jt+%M#CS@rZl!<A`k=&AA5R-Z5`@d_K7KUEMQR3cN9o2G1nFdNje}O3t!f
z!~bXW9JYDQpZ};o2V9v+%dk#Q{CpoBS3ifWk)>U!oZfhU^B8kAtw#*>NOe?WsIH@s
zAp_T#d@3Aa8!?#t%<Xc~z!K;c`=E67X*q{nD*O2CQr{7s65j=39#a*UY2tqKlsqbO
zWOS;CN0}IMFuJ{b9@6!Fag=_lt&SDHx0G=d**0tlQruT8)f?$3cTSK)nBe7TB4Y))
zKewJeGwr#H0TJbC?c3h02f2Q``5S(!7#0nJ+UzP`^B0Zww21$S<y@P)JGr|hyg8f8
z?7kbIg?jp*-5uY$*j9RX`xp0INEJ@!rJgH9rS=RvLsK~4Owx>u)q3aIYB4iRo&tT{
zGJfsv`IFL~^%)UTuyL^%v_%bU98^ow)GT^G$K}?{4DeoezjfAvy>$O1{(FRb@?nIh
zA~MA*(c5dUXw57U3KBT)Q!C0_D=wZ2T0{@4Vy>d_Xor$i_K#>p+5&>h_v3xB5d1OC
zr%orK$$8{tnC%JLfjZZHJ1NmzoGiU580Vb&J-lv4Yl-b%tr(4D?T;74;J#crfIoiM
zSDqr=?RKv*ta_|%cZpk_xs0Czbm!92Q+%qaS>TC^U`JCngR7jV2NZw>9n5~4;Zh(^
z+b0g5&KZnjSB)7=8M)eWsUc<AT0c9TuI_>Vdp}yCE5zr8ayn9q^ZPQQJB2z^(DjO<
z?_<~F{R{yZPrM$lBK|U|Ixr+vD2uRgdKjRLWs0R^_>{L|^*fM7^|3g!8S+885Kv})
zr!1;fEjZoss7W6qT<S^)3}L&|*Dc<E_>_tjP6GZ%a?De}V97V0fDj~u)|23Lsx$}+
zs`fb<p%OCh*yG&xVfF`g9_h6c_D?qFhsslU{eK8lw(r-@dY+#Xj0}+jpgHrl0O-QQ
zDl7iS2s#9Voe}#R;hMVzn3UW!_wUPYHVHdNiqyrxV(>T997dW&8qlOa+JC?cRkO$0
zgPX-$m_stLBt}gJHAnxcJT{dRw&h(+LXOcpGS6!pBl+A*-`IM%loA1Th=-jGVJ-_A
zXCXsorG4rKhv%Q7^i)~P9oL3(gM1=ybnQ7Lpw>Eb+2l}Hzlnn6*?}{X6)M)RC79v)
zgUXesyB^P32lrd5`hD4-_kBrEG!nj_`pC^Lv+g9$q9_|bC1FP{Q#qMw@0E-wJR-o*
zIxsM|^12Xp@n7+mQt8rnY`y;xZM=~3OzrbF)e!DhjR$+XefLsYl}Z18f`CG*zwoqs
zbD;aQ8r7fC#XOWtl?nw$l%ERFtgr4QDCdx37Rz`RqejxQ(Pu{b`<x-hgVZWDu1>Vq
zMd{gvO5YDs^RK|E&Zos&)3HDo6L>Km{>K5cBxw@o*jgq1c0WkE_`eeHGGe_cKIIR?
z(!M{}atbQ_zqy$$ZfF2y-e~47ktHU?6~ZCc5!BG8T&m%&WR{YQ1Rs3kS?e)tVh#UM
zz550>&0ov(d_ZZcN713c+cW5n-Y?x1H(i;MT(H_{`v5|Ie0nG+cNg<ff|=5-oXHK}
zdTICa<7IOm4@(HxK-@!^|FR5fSng1Reg$Q>f9~TO0@+4cQRb0(_Az@vy#U6WF4@N;
zlaFL#LH-EZK)g!L$uHBwcjdg25W?P+>7#Im82IwTcN)JDhAXCa<7E}~A~kvEZ@(#$
zg8izPnwC2GmBd<)mLqX}fbXDe6?GCa1bgonT_^fD;60(^bwJaqrsta<X=yl8IUnxO
zZP*h(c5=Ja9KsZlHkIs2^^=ajzZeS5`&))Vw)b$MFL30so%jL4`j@yf4onw}Zg{W#
zYwi;Wux4@J?`=VRAT{5}rxQ+a9qGaK4hf<iu<$ay$l|roRc?yJv_Nb0{s+<zq^vH+
zg8PbCJ$eWuWLT`(OH;pS19`M)_QPDTR#l3wKIj^|sX@~!`ZJLp_D#MX<&hmPTAq?>
zneenXrv*^iLCVjY6=k3D)~LDb_yzO#<E+p2v^g^Q;92(Nbh=}SSffLk+Q^ui@<(rd
zhwk>M!e8Cp-R&w?^xT?;=iL73!Jx4?V@53eZwsxd2@2m#shqNr$0yw86nidPHY(aS
z-gTkry4SZ8^qwz2Ky#wO`j8(XZPA-V4sB4+LFXZtm2=?V?NO8lq$qo~HTd|sLv&03
zS-{o;ry|_W%dEGSs@(hf_$fhKY3iQ<wsYU_i)^p4syi~2c?^<G)uSRzt3$d}NBXL)
zsPAS;WU^A=Lz44tM*#;`G_wz%hW5ODqTiaw1*nmptws<@Lm6twpJ-wn-s%f-z#o}w
z?eOzY2OZCJYxn<SLojOK`8eqJKe7fm3-Z?Git;vM3!PthYB>CKm^|^8>~6dAY==|i
zEc~)3?B&I)${5};?XfPawt>i=6QQ=Vi@Sp0J+!ypS>xS4PeM@~)LR(FamRS~w`kV;
z7IQqkal?5lf?bsAZm7<X!+a%y2qvnsO=9xzwkr40v)^uW71r9$>4AUB;dcr3_~oO~
zGd7pS-c7IA^eb_6x1ZEs)w{h@MjG~!uO6W#Q}q)TP;;phxby2kk$<+^tvdr~OY8}M
zt#r~D%Uoxz+;9e;Cj09@((wCq-nI#qW(jSBcy4hb@^#N3gNa%2=skC1*-sKn+`69l
zwgOVydW|gb+1}$J5<$g*LOj2DCE?*vMmwFI@4Mei$flF6rn*fcnx&UUK5;~rHR{hR
zQSVkQJXwUIEP9V`4Z-FG3E3#S=y$MgU}dT7wNMj!agJ@254n$8mY=m3hse}M8)D@z
zP#^es?4%H;9vZ%r&G$5Hnu)x7vuYNFsz}J*_YPhBcD-sfAp3fiOOj`|(N}?jfW2C3
zWK(#7_Vp<f444OcK8qbwiHFJ!N}NkF?dss9w`+Y_3z$?CIX+|L7p3<Qb${Nq`hK}H
zn-0CB*0zbkX(e*_!^39kl|gCSTI9GZ%13h(6=1D~XdP$Eb-(Z`q4kJd)dX~4&J3h-
zLtj3Ll?~|yo`uMvJYq??k#?nce^n$4y-U=DIyEUcI++~h&X2cKp6bM7s2x2gAMbzr
zZ1CBpmDp&rnB8-}0rbbYl;+@NRCl=tb{DPd)K#~zJ=Pp@tL#B^y*n2J3LQf?vgChW
zjZK_npL>PK6XIk0kDHjAlf*Jo+*3P?)ZYX<t>tEYh?jt+r$3Rd-Q4N+EwjC9ID(kR
zfFX1RoQ1q*nO*{Lh?34LUaQlj1k7QEr~aqzt&}@>+ji=`OdrpL%=LGEwUO^z-y-wE
z`vE=Y*q>vX)rxkDws8ufzQO-ChPjA>$$!Zb(k<eGk`?%Eyu-!H1CE_$3Nay>LBXm)
zsEfv)k0NkZcy{Ybm*>XKbjy`DOMuT3NR~&D3jS>;6`48(<X^YJz4JtJVCM@x4@2**
zEbH>i9=u=%hR0i3)(VIXs>FN9`chg}>MH>nmv<moX?V}Wm3QGDseoN-Tq_7tjW3oe
z%&!CV8dJ+%$uP?rU}RGdxbC29#a5HkHYzy?oKZ&>1@il;`tZq3Cp1jAq0xb?Ve~DV
z4g}hr=&8Xk%p^G1!-QCF;bajy!CJE#EAhWq;|#eC{df6?dpgkD<{!o`k%YByNmTdj
zWX>f|%tpNM@X^q-_n*#Hb`YLZ<duH`&!nZsd+BW~&%T=O=~at~(&)jr<QOV0ex79q
zlqKX6yca7QE-ZtV44iPKa9?$mS^ap*0?C5-%ehed1XM{of2dHO`_DU#VTz8rQ%3d&
zi!Qf7jZ+MlM01Aq9gDd|*UuqpgDaD590B;Vo*_eU3AK}B=Zui-Y^}NXU64P7ZXJ@6
zs|fYP^Z&eVWD^~l-q^dw&vlqVUUfVtP4o*?)2p{p8up|j=0*wo6$5RcoF53~_^m<<
z$k3<xtl3Phq<t!=PK9zkes16ZhtZ^iNQ|sQo8~b)^k9o++26}*<7+gO1Ex<b1&wpp
zRPqX}oZ2Q?b=7P_z+et}-vM&tnGPqm{@*0(=$fX8gKzM2r}dkLDKhZCgNCl1g-U}4
zr(-}Y1+YLANwNd&H4)v?&h``G!OtFHtP7?bTlnjvcUhyYOI7MOz7y)nDADcqM%vJl
zwbT7Jm}&<UM2Y>c+8%ut*s&!Qw)ed2o7h=6Zo>t8Y5wJILoqDH_2(17UC*gUBYw!i
zi>=*|nLc3xytG@hEIQs*RR*)r-j?2rK+Sn>ey1ZCjvfklN=o`zCwA)@vODkQRZ}(z
zZgj)tt7ZG@$-76fV|#VyHa{>e^@{&_ZaBHa3k4z$F8Z%}T8kKTud;*U-z%B)$v-BF
zFW`895m$6Ajl-PJfHOGq4K_gyTVw>bc7R)*(;0zj1|D!Ft)zRepdS511JBfca~!4r
zGYhAh$?7MQ?B>_{?KV|e%r8e01b(6?mkQG1=028<xAX^Sp%THSX>R53-t-`F3u~wc
zDp^aM03TTTWD!Dzn?6E~N>>vD&kHEvs^yzRrZRSt3}BYP3yvm(IBp(kl8Y_D6f>e>
zS;<>ZN`bykRgSBCE3Z-Ut5*#+Tlg1FTHZ)tHOTZnX5ob>rDY(Pq`(K!rP@GG7P=TF
zV4AM8v6C{f15-NEyz&M6bYg$s5P~0ItDt)8lRdW4pxkbCFh;mJ#F5NW*$3tbA%!OS
zonu<>6}aMcW>t|t1lV<O*l$9})h6ChQmDj1L#hfc<9(N48yv57i8~NmXi+~jXOtyG
zET|oRLOXs{k{F2zg|4;`2eR$>#06hWF<Ig>JgCE$%lSitO*0Xc8_2LaRaP}*Q#seg
zY=C;np@&kD%`)Nfsh#2lIOF^(kd+jXg1t{(pdj}X-2m33dj0nY%iG$?_tsL|HDvaN
zv;^d}r&0z<-;K`qww=`khl3v6qqcaqk&VXfNN*VVJlyqv3x0Sg%3l|wdqn20M7l&p
zzpK;v@tGyyam+Fk=0v4+zFBZ6RW8uCjm@hOI0k6Q9T>ud1*KW^um33APRUvIhol}d
zI8~9&2VFW!3QCYetb?R$t7T%y7Z+vfG&Wl{`{p>{re3j0;M9pR{*3Zpp%BwlQFVe;
zJVt)(E!E1q8!SN(rw-FIQy8UR%Q30nM4x?7Wc}hgq6e9BV-YLT*|D}lb^kH)KLc27
zJ&R{zEAsVJu}NiAsc9On6+>-F1b?xMj!W+C>#j|0B|WgoT*(CKi_MsBHe^2}r`Q)f
zd<GiJycg^K9>ch(!O@2Q5IWF7lQI9!t#WD&u+^<TxZrEE^4Pe2(Z(`pZD;?K3kk?u
zid5SZD+T2qCq)%)_Q9G<Qw{X^5&@Q8k>QIwbi;qRkfyD~5XbErb`&hNAi2iEMHtj^
zd<wtUI<*iox_n|QXIEU@(*EzWUfRYhfmoom<@--lKE~&F`^iEErz+@s6&ZypT_%<A
zrehDYh{V4Kq(-(AIg09}T+|v80Z!b$NA9`xb=sez-Y6`q7W8b*2p$xF9s~;J)yM5`
zt5q-ta|LeI#odRw8g3G0;|Obon1Kwr|JL(!WikF~Y=O=3WCEXM2ljaL2KHO=#pFXN
z+hCizU9%*=Q?13Ooc!Reeb(cQb_q%CLxR5L&EFc^i%Fz0kd+POtXS*V-$KahS&E2o
zZ<hiS->*l29!`Bi#<}PH&KbG+Y7K$0jtX`wb4Y^*fmJaFu~I9K!>#u3YP(N^OOBTQ
z2*>-y`IQpp`Oj5ia1Hq5!rXLLzcOGt6tQduo|Xd-!tgjd=kKp<(^V=*IBi#pZ5^hn
z7p72y_Yh~t+G{S=a(M9L(2L!RTeJ4>&UmgU?J><+AoGyn-IHB3Jv0CTIHX=_7SEDB
z$m<S2J<JKi-0<9V^_;}r9yKbIT&#npk?a5M&A?`H$4=Oy+aX8nO86l)6t~9Hbuk3C
zGcJm6Kc>d_h2kl`Fx~lN?bLMt=1LPL(v!OKxD;L8AeDS0>@au0KVsc+24S`oA^O_C
zh~^ssZYOxa<2GmWJzq@nwsy#TJs<$a4y1UT8Zv|5cq@|O{#)@LF}~I5@VKB_bS^{3
zqDq2P7XcLCdieu|1%^ZEZ-cgpkY`YtGX8q%@Bf?|yl?aMUCh}Y@Jn89EIl4W(jJMC
znc(}#Skj}=Uv<t$STzJX#x&d*H!}4(TBR%w2*x|r`Vi~Bw~i+Oa2*XrGczeGspwzg
zgh(;`9c^>9wl667&%EejAvNj4m5H9rP_@L9p4vGZ?zHL=d#l{9Sy9&@^y4>u_A3(x
zrC&%b1(@W@@{td&|CaSpebfbvKk;}zO31Qt(fQSae4%N|ywDr(REw%td*y{M{w^M~
zWscL(AnZ%+{kEsv{S=BP=P+K^IN~h}hFa4IkfMj($CHfO{Lglqx3)7>g7|O+LGA}N
z^vkEf{));m$f>Ni684sm4ydhGjZ#z08SXS`)2axsX*Ax-y?=hcxY57Lbo#9It@wn$
zA@uF~joQZGH*{$?a58)WNmL_|i5Ip#TQZx?rHQJ~?XIzUtI}3gugC<)BbaI$)tuzn
z)5f~aR?nj-JF)LYHjUSzfqzYp{rwP=xe^t4zBL(G`H~m)wJX7DYJG<UT2P@$*v?f<
zD*O2Q2=8_`(NW6hEIXI1gGZeYkg)Qi02a0C9s)j!cJ;Ie5h>*@`H&az-$5^_O2_R=
zR{{Se|Bm(;348(GJ;nd7q_UHix|vBJ@6~e?ok*DxRa@PLz^WUiCIc(WzJp#m@O*|9
zf0-yr(~^xIntrQ+BQig{-l9i$KdWr@fd7T9NsE%k^kFZ6jVNfTmi_A#;vRwA9aWPS
z+k46J3-gV)3t$(@RkQ7;9HT3lxR>IjCcBPV9#?Y5Jr0x+%o3bd#1XJn4pxR+h1Cao
zF<(5W>L1wU-@QP_1ReUXwK?ZMdO~vk2oMwBeSpW<{Va?BVXxK<pu3{{_Z8Zav{Qcw
z)^oG$VWfLGu@v$}_uCLb@qA0Vp%mA<?`*c$&q1D>0>R`DrR5yu#DeqHi8`lOC#Cg%
zniVOPTE6tPXG0HFD*UoGJHE7Nd=MdgEn&Cmp;rlEZnKh7L9)xHg1Wmt-8FNZzW#&J
z0(416#G<h$J*VI7SjP_^7>|3m;qN4{whg1L*5NM?i$1J9HzM9xXLEY!oA$_7$p8Kx
z>W{};>!$Vb9%f(ys?2%BdB6bYLWIeyzxjk09=-ipU9gGiR0y`#PdG$5ZU)nW%TNLA
z22UU(P3AaXvK9M9Oin0*gL372&_!4}p4zey)NQkWtO`y;Pw<I%7aqP^JDT$Byq#59
z;Pz~jYLS=IQq*;zAhqOklLD(EaqqvI5X1B5Qzm!)wbCA<oQ530D=ljL5y?0l=AK`D
z;)sYtM`o`{A<v{7w9u--u}FuLDd-I0IB?#!0;SJ$*a?x^ueEnsy^h@xtcR9E47@rJ
zIpz9wQ|!2m+*KyaSSWqhA2cQFxc7no%!6t~fZu^E)ozy=XUNebaLXcc4|k2)E49bF
zW6rMd4WJ6z*&R1qPVpx8*Hc=}?%Ou$b}gW`pf=*9i6NSR{$ax*v)mQ4_GA<Zjv5{H
z@le^;x*>TMdGKXv3YYE-9<+0=E+WK@9?r=0(AB$)g^M2WV=gDc3iH>;4{PxaG57Ev
zU-Z5^q2S>?WNM3GNkVPkl^(nLU{4#1XJX}F*6_aHVwG9Uy1Dn8ye*|zh{i9my8vc_
zn|S4ZK8{MNxRIYJ?MgG{QR)0kSgz%G0cyd8qW}$pfoT5xyKjuagUNJpzmmHOfilB)
z%!5dPc8)K|+_$$hEIZlwbI_5Ih;w-ipTwF~$d{{&&MRq0al;lry@Y;$GhMH1OYvO?
zhQA1o`Z*XZ^_=V>I_ay4e^O{bShL_J_NX(bGbc1fDzLY8Zj80$QM}|>tD+=4&OX~C
z$w@0xim`g{N8?&~Z>T+ub>P@}P`H&hwTclr{Txg?lbdmnn=j;Kwq)-iB(@$H>kYsk
z06?tsTv?d+;xTw1g`7S@ZEiRSe)+ML9HRvz#Kq|{il#f}-GeSnsILw3VVR27Ms@Ff
zf)59)=#tBL>WkD^ZONYP^<730!=FkmZahV14L)k3^pk|L;p9odq@nU-3j3u@FeO{L
z1H_az(_sWEEl$C1^GG4Z?{HU^2p<>pi*D1L%Ol%nIqE7+CHo>Z!VafE9N|xsH{)uM
zY35<)=I2n-pxWoZW&%n<++$7WSCQ+``sq8&M(FrX#EME3r5FDs2{={(`q0r$xr5yK
zH~IUchwgbU+y4sJ!Whg|+1ii$YzjkhZuz%T>tPH@WNkODQkKVXPKpn-`(0e(iH+IH
z`YU~c^a><}WshJS&rUhbcem6ReB8+9b5O~x?9c#KZHDC614B2pDiJ>2RpE`&T#XFI
zz&+*eniRcs=XPOb<d-+VCloSk*W(UZI40`BgNHjkZcij3B`?KQYo<V1wa&tVq=^nR
zdRp<F)M5`Kd6fZeLax)_fAv~jSIg>O5y=w8m&9x)((Jyi*_ZS9Fc)a-q^HZW-6Fl?
z!vOFtpV9g48r{D4D}Ikn?D8P(LFFrqjZUv#8tYt+t3mB5z&vuhvx@O8`TLazsJHde
zDy<L9gos%DMEz{DYG1?e>wn|;p?1Jasx48|D>!aQx&CxCQB2ge=q02dI%cAG^_w<Q
zscMw|jjlymGS!NtrYhh}(?iPKCl(`<UlAp8_3QDS$@Vfg3OU=@a#j_a3mTI*lLgbn
zMPW%2M>1iNn7VyAeL~B@-~m32gCWZ&qT!+nDgM;&40&I<l{LePR}l;6^kxY&tS2|G
z_<dft+X0FW?dUx;?aZ@&Lq%_12M{|<{-Y=B%q*srrJng9EZ72VUjL8|5ah~u$*0k$
zEm%1kK!mDOkMKdN@Ei7Wz@DeL%|5Sa?NZgcCdhKadpIO{^;sElJbp2{)gpl_X9mL|
zcreIL1<(AJFfif%n;>StTF_#yRUkl8uGpNyToapXMO(5L_f<50%>3N}tx|*f+#Gh5
zYP_$u(MZ&h-!6|u3ItBGQ(L1c_i7f77oHSuHP}K6<C#~DFL9cGq}RVW6eeQF7+*CN
z$?7R>sA;qFUF6{v*t?utCeL^JF|=pC)SRV@568@Reu}$JU)z)$L@#xJ?!O&F+dpdk
znOui$ZGcin{Bd1uO<J}st>b==eWf^Y>6w3r@!s+qlkl2W%UIU7h5ptkFb&g;iXJ4A
z^K{s0c(yb6--C#^u{w+0E0y0ipIike3hVx|S@L`{{?O_?a^2=ItW_;zY|W_nTS6lD
z^{rh`y-2Bb!;Xr?^;${o>11`9f)4oAV1BcO`Zn<6=h?V|7{OO$GU2wS2ic#OJN(^F
zQzmuP+!;pOS<eZ#A*7znRC4SMcqv$nmggK%yNP-1n~LCdHkVkzo@_}Lqsz&O!U9H0
zzRxmX(m*E8054=w4#>+uqZBpk(B~ulN|@zZ#@@3M^;ftqQM1id_Tn^novK)GggKyp
z761<EHQ{w2@S{Y1yZL}SaZx()&xx%8SrQqUF4)7?4)E<>JH)80_Fy7tCZuz*&QIhc
zCE4lk;x}YFZU$tv95$>*5o(;KcD166lphSi%agJO2G2UQ?V<`a3ZGDzRC5l4_^)mD
zmfkctC>k+j5y{-Qmj3y2r`17LDSbRsy!Ft2m48-$1+Kg0EDN)zz4xKj>I~tO{MhxU
zVT0gswFLOO&T5tvo&eFRAFMkSQ|xGp?v?<DEP}SS3zNzvBoEeiY8snu3c$iSRxW4N
zX5^o$F)~^^9z`C1b1y;;VL2d%plKD`@_T8|a$G->^stVL;B~!8PA?FRa1&QY0dYLj
zPRLb2C!=-}N3oR~u!4qqZCVWhh71LkZTy3vnF{yGvl!+yP*rLHC8W<(bv!ZR>gZZR
z5ktq`FzEB}(_@hqcX{L3DPHwW7x(UCaygL;6^5*p)rd(?#Tj1UxJ9vjA@`wWUiR;<
zdIbwClO~%Y!w2E>s@tfrSaxzQs4fI9LR7vUXow{t7NQ7Di0V`QNEupwyM2DtUhTH`
z<k5V4Q0LS_z9T~M#2Zl6y(Uwq0wE&n@W0-vR=b|xXKx*5^*r?JQoW4Ou+8_b4c8xd
zG0DB|3Hv-k_om1ENuZe2J`c{L%QZDIQ#*Sh&-loq?#Y7s=9k0})dfR$0q`z=f$TGa
z5kQFH1=#YhI{0L6z254n{4a&?O!L1{l$NmycBS*2>Z5#lr8FmA21WBr_!$OlI(>))
zyj=t8?@I_@nKSK<eLZW{=gcZ-TfBUMCw#0oI8JPbsqz2D!;3r{X}4$zW{72}aq_Jy
zUoH=l6d6&j(;5N!GW-u$0=AcshXhSL#)6yBpB|^ljVDL^R>r?xKa*{y8OpVn%JZ{s
z@XS9#J9;_Bi?+G)b?EW?+y#(Y4$?XZ+RY;qeN#3LmZ$RNJ+_1Lq_3uI!)GtLWiB6F
z>Y$vY;a+v~dYs!F&7%PM-k=+L+}?&r;545-ovX{vhgZ#LmV@f$qgXH`Boi~U7<=6P
zt2A~<rca3lJf8xB3lo-Vako8}!+jOo<NwDC3?(st(p<!n*Fn<GzqFNa;6fIg*1Y$N
zl5w~2@{!iN66#-;CV{IHE0k9@Slj~&t2JM337071LR?x%i7#sKMwT<c(MnIPV1SJ`
ziqtdqu#EMI9GA60(aR<+xn`%Jrssz-;3z)-r=#TNfETJg@1A$n42(AaVp<jcYTk;+
zI({)3Ef(5L_WJ%O(YJJ_Ce3o7B2TL`&o0qV<3qc2tHBTd>RqV;^+^~9Y$hUE@uSGf
zW1jskRj|OtRM5e$|8`=mRe9>wOG3Za<k(Tq*5s2iwu4$w9?ojfDGJJ<LFiaIznmSR
zd+zJ$SKXSvqJl4Ym$T>STXv{wi?IaOQ~ya?csHg}q_3@p=r><+uc%^kVP$o30ufrW
z>ZE(MlYuGr86^&C$Ds?>?Maez$OU(j32N37M^ifu5!P|0O%I_VixM3$%^)S%mrVow
zs&4_UYFv=E8;m|B#a79-)R{24d!gi6zuD80fdCbi2AsMLl|Y8FtbW71Rqc%(MyxyV
zKI#o8gw;550{s#%dve$F>CQru2)!t>=FASO6Zw2a=lLde;viz506b537~%YJBp5|#
z?((>O{UE|gxxTm1McSrm-AVZElzI%PF&ZD)RX;bCgC2O!M;=Wk7_*tpDFH5I-X(^Q
z6W*_zGQ2M<WSy$|51HUw_`PrRr>f#oj)8>FtDY7|Rb;lfJArW3gJ)A@wwrq_)o<^c
zOW4P38n+~-J*F;saCN(1>6XGi&b^ab-_e6Tc<;1XMy6p^^eb*xKlPg5Z+JTCxxJD&
zjE|s=6WqCSJAWVufH>H3nnM;e!xnc~o%Z}C1j7AXvtJ4TWXsf(2SP<56p2m~+2$1R
z6ma0GNe>>R5CjPPIxo{P8(SoLW~pelOBEiVf4Agav^(?Z`Vnz$m~vhAF|TK;vT7VR
zuk?C9$4BLk)oNSRvdtKjY^@awrXV_ZIlaiZUNXKLY}BZmjm9(mdcH!xa{wdRF-oHC
z?&Y<p<qlqLxhaMVw+!55iw3xK^`dYMBL;;iLk3m8pRmD}l3^jKs4ZK=&Txtn9u|y-
zY17+qvE{>4tK|6xgXJW@3l}QCTEZ1sjEqxg{Z#2I(hb{}oM-@0o9{vg`ifAF851$F
zY^%$80aJJq+~2Xlen6e~8S*;<lv3`2`Un!Ba?shG(*e`tZIZTNvY4KeM5!~KjhsEk
zo)DFdTNaHY#ztF~!^$hlI<KEeDi)R3IicjWGw_{Qup+n(n%%qiWsT=X$@mxoy0koy
zYlLvDO|p}oFNC<cN}cFDN5At9epc+*e!PUcJbnN1AwhfG&%_LVjy-xl`}nFfHF)7=
z67@dvTjs<}_&<q|&1+MR-RM*0BCWa4fd<fUS)DhShm+x(F@*-SKOe5|KIojzU*_Li
zHJ7Okfj-S&SP_@@Oy78A<i%%7lc=h26>KaxG(@q)YBzV*m0lK!`rYf)=O^dri{BLQ
zlex)nX8|1K%e#w5p&~IOSKibfjB4&WrNGa$UhkzuA&nZ(9L6I#cqB!Ay2G?1H|x((
z37wVdn(aoyyB|dRB`L#_h>n{KN`Ed5EZS3{B;LL-7`CR8`DS(64FW=S8Bti}Cdv-`
z#6w2BZ*_b1bUzj|2rEw{t#?#8%SZoEaTGYi*X$c;4LF0F3ND%kK|3z|bRM-VlDHRO
z2sV_`aycDs3>988+lQe)z`aXnYnQ5|v+!^&57VJp;{wgda8VTDj?@nX=gv3V+6U85
zXB*CCNWn6@9{bq$y>J&YpT_STU)98G-#N%{Y-oKY@P2p60uM?0!*sykv+~^MRs%O`
zZYe*_>p^iSKgHG&Dz@aQxDuMu$%^huf)}yF5?>qAZC`HyFTi<A@!VgjXqc@f4Skx3
z$)+a1d65l)sV(n^Z1pkz_wKGa3@iEJEwy$&iS9f=dkOJmi=LuHPA22a*JwVs9m)=k
z5Oj^%xe-rL^0Eq$F3!e;EJ7A+!9aP{HM)|nDEF9X^0HB^$!(O}t~8?FzR`<{_h<;V
z)IT9J7xMTae;)LS4k4LeVWjiLM;qh34W%`MN1}=jdCru>D}(CGUI35yimA91vD`J8
zQiU&K1(xy-(MGyJal|m+p~=WQca-W;`XoLZ`ETcNR5AwSO%~=c9lyW%?Ej5{|ARSz
zPb+8}BkK1yLBRAF*<{J_ZRMlZsA%ZFUIy!tHoGLVrzTCirO-OpA`P${R+C9cB8gsp
zB~ZC3N}T;-3V&p$8r``InAx#UXWDtJ{5r{swdvE_gLwe!1>#&M!-FM|TiOJ=@d&#r
zZj><l(~Qph`=UMPVXsXQ73w>tgI$w`6bXLQJ^uiy5t6sAPMEh`w%D*DMO&L(u&&OG
zSx(LjHRil%3Xv!{r%;5r<>~l7>;wE)z|}&mMf{$r&ZWer)gXNtZ`Y$L?Y2Qx72{Dv
zZR4SjRq)%nO=0y1Uz1q6gqb^?%;Re!J{#l&td%=X{PCB*|778Tc@jyUA#D8>i}cH8
z?;l6;pX%1!$dw3|&aLygs;OwwR47!r{43(_Q5a8<ochpC%)eQV5xd}4Mgl}GU!Ofs
zM`tIA>=!UN43woBGCoxc(?T<jZV9PClLJO^!Z}f59#kHC`H(_CxwI4|DTX+j3$9O(
z`=~fY!3>K<Y^bQ4B>Ep&zAbx`m12T7x2aQSL!OJRa-8|IL@uQv|B`|PUweKG@||&}
zG_4uzcM?V!t$ldlv6k?%d+Siv`^h*{4a?v3{;pPQvS_Cc%BieZMCs`1BlD<UlPdd-
zfeJDYYSs|-|BQay*o8A$YCEq`tm~{5aZ8N^erMRWvB$OE7&d&=HHLELp*F-4JT)44
zfappCej7C}2mP*_<|#<QGqBdZOAfdme^8SFa_79p%9yj!Ugrxwyvf`~<=ArdzH4>|
zB0F;t!s<~ypvMjmH~|j^E$u|F+D3U!0lvd3PETCPs^*3%<a~@dJ&-%Tbti<qV&SZj
zgz+zV6YAoeazxw}shkz<!)*t{hR%67w;RqP@RV!?A`jbNrPM4#1wpssmIO`<JYU{D
z!~X32AejR_Sm*PoOln9jQ2D-lQ6knE_8-0(hTWi{Ta>kF|CV+1_WR=@TFZUgMX!U^
zb(yvfB*WlZ$)~`+?;p8M{ns6yQ<m>gNE2<nG#Y2?b&q5`?ayh4?$DNIY({-k0|z90
zQA9Plen^vx&-eN+%j~wj(xFeUH#94qx46A3bM&;cBRuwb+)RJc0#7AO`ogHV#=yf!
zGce?JgR#DZi=A12%Vz~vX)ufqwmj4;Z~pJ#3zQsMMeOcZAOu03?K$!9!xTb1$g$;S
zNV2A!)jG|OtvePSLFwqHZPw6wk=f;dC~zP3F!4PPj&1im2jOeOOWo}542c^-_3_~h
zu5{gUx_iO6n<F#se{>bRBTq00=3JxR&%1_-gZBaWj!n+?3v=GCW&7Gbt@(=F?x|8*
zkOR-zm3#{QHJ-s6i+LX?eD24ykF)waeGYT_WG*lwIp)bG)QEQ*LQ@9)MbGH{5>QVP
zeA9#!qf^<_(P&;cZ)aPB>3)pWFzn9=o_9JnmEA1k_0qC;W6D|olet<@RmMW0L%w#6
z{X&1RVdqCGIXm0KVm*c<reO<3u4>{9aJZoiJB{9z!L;>uulRSOynshk77CV69{wQ;
z<2Z0c?tGbY2UlXWqHo;-Y$+9hPD0Rl#a7J5AfiA*Fd64zp3#$w;6t7Y#>%r9_fh|+
zV^|{q`fDFH-y!!}pFM*yea`C2ZU+;@K!&<WR6FXE3`7w^WJTIF^QmYKLobvAqYwg#
zsy0G7{{sg>_`Zt#e(SU6&sX^`f9L+ZKd<7fI^N8(pgi3#qH9e5#7A3vfF-=F$4uu_
zk>|})q<WSVUB<@u;`Y;>Mhth@Hhn(cPU4)qd%lRHTsSvb-?wM;oPGQFDAxb}xkjk)
zVHhv&?iO{{-rg|(dKPX<!OmQ~#09e#ahx${^)_U;!@7HsQNy;%L7ZT_U$=IZEC1#s
zff3um-mP+{-f!5>z$Sqb8#b2X0od;DR<R8S;X2*EbF}=1?a@&WPEOB3(Z$%d{<uFa
zlKRijXD1BHbrQKvN<*++&wRNqSI4H*CER{{dywDU-z^fI&pN{IdlIgB<|ECm&l&s8
zEOzBiIL}G2GA72xDk?!7NhAGv{ELok?|65&h(nwy6W6SL$ZN2}Cil~Zjp@gf<5T6z
zdcybScd<S{2oGzJ>xPAS()rn}gU9V%Sg!Zd=T+WKus=Hqwh3}IDm2G-Qd&!XH?~g_
z9J67)x#2#qssmhK;HU?pB3H(?J^RcNRrhB(Jmo{r`=U|a%md4E7rCBvEKTTh)<@x6
z4%k>9+5R(j9y5=RN@v6R$~wT@r|jgs!(lG#D-XMqWXU9v`yz+As~l|1tgqJR64*0A
zuHeJnzTb~_V7r#}Q|!R@F5c%Xw<(LhRmhDkwT>m_{H|H$BvIc-%}TgC=^?n-q^c3=
zQip-%$j^EKY#b#{I?itl+cuUI8}l{K5_H7aZ<sfDVmqMv%431CnT@(-8^!v0ca}NT
z^pmeGz|Nn$XDYYjwCQVBxk=RV_U_!je1GN3JxDgC*iW{n&{x(+!^Sp%Wy`j84mL{k
zHH@X{R^|MH$I2$x17lCE&mSGtDRlQ-Iq{ETU-jMicelc~Ov0}#QFOu=UZh_b+hMd(
z%yll<SCMIyYfhW~9o4}vT)~IqhV>x!kN1L{CBQn*V}s}DM@$>YSXY&+@wC4{AJ6=K
zlm8vC9Rw@SD`#1o%-j9>z9+eUYtJ**;)s&8ppdg>0%SxxuTq!6q6;+>fNfMxIEX2F
zcpwC0ILxt6TQYpHP5fWhk4U1b<33kp_>%@_*kMczs<Hj)c?jg|0?fAmiEZLB1di!t
z;GBNWddW8aaPW41*6r=B=rnWw%NUz=onU>R!P$Sm{ox>)DYPF@YeMyQ)6<(9!RA4S
z2hBKnaeuGln{8FCEfN*jn1B5bezed({Jn*K_s`DsfB6qTqMJuNwplMvn_g|}g1oI~
zwm;0zZ%#Q4h}gyt>-Bs~ri4}MR%kXMtta`OrX!r6D;$oRLtU3UarULn7O4+G=O=DY
zQitWF&zgA5RjDD6Ko!FGO3QZt%r+XF=#Gu;@SR{Q+r5+Qb->~v4n@xNdCr@U9c(&2
z%X+U-$$~9AHhDMRdvZMjzSpGoK(Q%y$uwE+NunvF9Ys7H+dZ(&``F40(pqUpi7aUE
zHmQGu-<uSB7AAxhdrMH@t#`WPpKdhc3hk7PTj_q2+XU=YWl8pI^f|w$VRvksoVdUF
z_ae7xkUO`ZbpJRX;h5D}bzv`{B;4|XWxmnu+R*0&xhBX}_pX{@CD`Rq>?HoRIzb<6
z!^Yh4ELV}aWMr+-N639uxiU7V5rteC9dr68;X-V3wLX{q9%JKQ&cMdmUnUp6m+0%H
z&lhL-ir}|R*34_awO`do@ACutytrKDfS2nHT)`$-wy`AMulZ(2AFJqNW&PQ(v(*xc
z9_a{uR^s-n*mz@p2DU@j=Mr=fbRvV9gGlXwIQ|7Y`$3~V>R5AZS^K=#iCOwv^)W*q
zn;kH0iJw0m)J{Ps{^&={#h>Ya{@**(FMszy|K`8)n11owGrhQL_LZIgY(IJZB=&Wh
zP*bjS^;lR?LNCnz5d@H%{d}=q&-27J+y4T#o&R{9tBGq++{&7P=LUZE9NK5h1y)N&
z0wfWLN=AYDl6lG6<vTLWVj!t~5SponE+OzhKc9d7FhA5NH?QD?LS#%%%GG4tiVV)8
zB%_m9xs{VfSW=9>Gv~T`3T_UTV$r8;oDrShQZTR?;)#<NV3AjP`+fp1^o^xpoOHu{
zBa^sBD8+OV-e`LI$Z8S5;IKaT9W`P*g=e$ky!PZZaaMis$)_Tlx8Ha}Hx#HLV2-HS
zt8J5?CYj^ZqLsa!BU=fMeTwNL`Wu%k{vqD`qCKUqJrM<Lm+exIAUA%)G_=P)x9GbZ
zp6%T7_=geu(b68_tel7Tn}NS;4;u~G%%5jG<@S7w4AjBWV}BL7P7h%l<ep)8tj}ra
zbJl^I`BJVG*gBmcx{&M3upJ)2)?tUkxW{JtT6g<=+L3F-)_(g6avkpd(mwCx`T(|J
zEIGE&USC13^XHH&o8sdh_S&#TuF#8dK45o!Mf=P8{P=(!Fu7e|3w?gGV+X{s$y5Y4
zkLay;-<QQ)Ovf|Mf5UF}bq+OEqFgU*`%qKmEZI}(!oEH_TH&2gGoZ5L;MBg8K2Pes
z95kYGJ(XbVt8n?<Jf8hf+2khgjmUt>vz4l2_sIVsHx(X9jRC@;v<6gswQ+ABP5G>5
z*r*+)&Y<ZzpL7E^9k7{P5s^9QfF6J+aip?@4|AY7;kC#CMYxyZV@IgDVq{=ZOg46y
zj)Rx9!qts~Ppvng*E2SIwzPvM|6uyZ4#om(d^ofib`${w_I#LoY#NjUx{mBox6Bo*
z{MWdb-c0$33!)xvkqBq|1WFc*wx2;AaE6nPpY7Nncm9E3-(J?*iySQQCQ0^ZbS|Jf
z1U99r(L*#H_epf0o#(Q?r5YBnh#Z`4Q{JAP&@R|Op&=2%kekU><l)%VCTRguTk~Z(
zOkiyg>`Adpz(Z*T#U;|4O3T^`a?N4=Y4u&4V!@sbp5DpiDn&l=eUxh@?{m&Za%_;R
z(H-%oiS^awrhVS@)vzhWdF?g^iq)`H*H6W^=v*>Sj!h0T4cl4Uvrt)RyJe!3N-kF)
zOR>*wEX|>26tyVu^I{R}{W`ztqxQLtHO1C+g5^>mH|ukuXqolU*w*<u+JTg%n4XNK
zvV;g=9cz>KIY|8YSv90uPgd(|_3u8;6C%|2u&qiJCUv0<TTQ`66<|lP-=b?k>GMje
z6BjmWk^>V8HY&NkA{svGqv<OSIm`ydv1Zt*P=}3xtp<I~QD0Nj*E6WY)IPQ~ozBPT
zbCIjr*V63gSse!1<Qn>%f{mJjjY^#zIICQx$lvzYlSW8RlV%PUP*m~1a)5&tJZ}Za
z`6JG^R6zlR`I=JC@lUCZtvq+_LLtNsho#{CV88X|paG(gaiRLE^)LblaEY{!+O8w0
z1rv~e|MIROY(2{#4c4<Y1Wrn@o```p-Sy$`Y4~1gkZjdpx$%=i;M0Rxul&13z8Z#$
zcKkQnJ@DJ^y<UQi|HEeMgQqKf_}NN7dRFNzti>hkMcFmwpwp;oj9XitBem6a|7SrN
zT)>o{DSkYrMU$b>uAlICt@TlaqO95mhxE5XB!ZefG*@|^)-O=IBfnqp+gh<-Z}(QC
zq-zRgnMOcR0u~9|t?H~!DPU8Al3LV;8m&mgMuwe?FFxFxfE_&L2?0_(73jSY?JNZn
zs&MDGchl?TS;DKo{eFUT+24(%O=Mrg?<vTbV-Tbry6){DwK2IB#j528AgBt;Ntr|R
zI>lD~UV@$Rb=U|_@$EL|-~%2FCf2nVQ$Whv!LkqFo8WgV=+l&n_6y{u&SKeJ$@M9z
z>?-uT=_5ZIxThNQkz`KfHlEi~z*g<u*!Hr%721)jI#$_~Pm;A}*ih9dDeVm{z*#F<
z=8@`a4*FQ2kG07)A<zxA6x0`6`gbe(&QdQUllM(BeO)07P#_y^xM7!C%Y?vIdpDQ`
z!%hXy@A|yT`zmGM_SdO4-)z!*%2<(_78Oik$U<;C09_A#t{dHeEn&^t>1z#gC12At
zI{>Hk3KIlu+`lijYd+Zy{XcrP(g&aFyc?~ctj)3hc-hDNJaJNq0i1u4SvJlMG3d{2
zzuENgq#B+(;<sQ^qDx#l40Rk*_Z~45B+*~Q^{{gQpbrRhnMc#7E>>CLd-?|qL%!0E
zts#^ghNNP$mszdx?0XG>lw=Vp3wJmzoh}F8t+1mGhU}@-Rs+D&@8CUFC(sUuwR(^3
z#8xAQIu7gHIIGoxs%bV-7>{(bd%roR?7)Gjb_)Vq$hZPj8ro|cYw{1N{g9f2kHYmd
zTwlk2tYH$MA)5W7y<yXoR2s0gC|AKA)Oo~KjhL=lJJH1wt+uHD@p|clE7%Cw>J@Bt
zN3Px7FR%@|PDWc%UycpGy7p{Bw#<WlKD--I|Lopq*zVz)PK?*naCN|5{^HpBXH%z-
z4`Qp9n0W=;g+A_$l|dgL==1UVm&@%XeLmd(0{ct!u|0{d*nxPz&x?(GoZGYOH9K&j
zuXgaH_DY<TvpS6^)QvFv8SN=Wdm8xmH2S9To2o-}w5L@jhMap_A8oro>q`4rk04?z
zLwDPhY-<!<xb;)Cd`rpeXOM5u)Ojb)MTx@c@A=iI>7Luss!pY20_{dc!8gqB!V6tB
zTfnHQte~9rx%5L;YBk~f$M20IjN7HCThby}(w=)7tr_bWE$#_E?y3dbxMc$U$R0Lz
zP-VH+_~Ki;rdms(Nak4ApmL{+koGCd0z6`iMJw5Pm5q0wj9LoC<PteGiWQ6#>;YSo
zYxQT#VMGaZdHj16aqF=q6t}aDLzBDIN|?l}C2}`<6XoH=!G}@KSdmomE+?e$k{57a
z_OMav`+UU4-)H6Y2V04}yHPA?AwP98uE5syIj~vLU%`f;55>aJGWtAX(+yd}uGsPp
zwi^08>coWl1fmm#n%pFkQ}u1sSIVkGs*gN;8rB@J?a5V~@T1&Hua7mhPtaE!oJ>B}
zfGvlyW(Qa+qHRG@W5F}Aa4xw%7T4F<=gFR33$UktEIHj%vjbDG19GSy?LZEx*tHcF
z7l%ECK6jl^#|ao{x;{5MAm_%x4tSpv<hs`V_6b;*Xw$U4K41qHM1xIX>=5l^s{^)Z
zqvY^n9c@&V>;Qdsa-GP7jZ%Hov0(PLqo&Hq^;vCJ!)A71v{Bixk<kh@8<qF;aj;RF
z2OoUDS=R?u_kKPXtc$$cB()Sw&L+pKH30|?{c3chC@4%Ur!#4N0p*x?3Pl{W$T^Dd
z4Rq-t_Xees9RSEomq-tWWs}=e2VQ;>jZW?KC0;(XWvH&oY)PtPJ9(ysWXFcXM#*sX
zfF8YQj)6`T1A27jE1dncO5lkd-tcE#EOY3%+rHrY-t{{7YW)YJ(_9gKI$Ka;(tyay
z^Oqm$_6Miqy{+A_J$`hcAANeJ|MP$ROdOwYJvq<;PCPEmnGQF)uCJ)&H_gcUtrC4t
zoE0UTD|JLl-5GPN^WUer?J<!(YxIE}jhw7W!DB(J#%Dq_Gg<wTY4(Mn%%;F5tP7GD
zpxD?6%F)hroWL!vj`zc4j{SXX;7*ixlPK=Vu+@eQI+5q2>Q*V8&DVAgh`4QXNeBRf
z6SRt4Z~fl<M9!$P_QEG7hZ#jwiyRzw*dziyp*Dl=lVWg;MBn4J6f9oEwq*yEs}-n@
zw54h2bA31KbH={m0yeXo4V%ifPIGgjBYT@53&$qDVC<{lzmZXOI0Bpg>=1Oq^ighC
z5Ofgrk)LI9#rPQYF?ZOK=#1!u%%unKbNRoFynXcf6!cZG&EDsxk3BY>pRCX6s5+tF
z6`KVTNDY}hLnrk28Dm9u;Lyi}ce7f0>i62(=VRxCI}AF(nQlo91KDCQ$r`rwa>H)k
z<pzCBpy8cFA5$A^@{g_0EBvOWf0j{kDObA02Dk}*ZdnMlqmTM-HkP6tP;C5eZyqZB
z(?7hY|KxY>=x_Y|f&TjU^tlpk&yQO)<J$Vb>}{m_j=cIZR|MP6`g6QuyRX^bk@J7z
zOacD=j_r@@RQ_{wm^@>!Qa>-r8am8N6xzGU|5_;?G&B|A|8L&*FB*W@9RO4qL;X8C
zTNeHLKr3#^Q5C`kK5+g!|2tmpg0q@>{&!Z`lcz1K<Gk@e&k|`8d7)R~g+6HwfP)tO
zI)exLuyqVabMWtl^B?Uz2}>G&&eA4nrot1gDX)x)m4e^QzH7v<Dgi6aO~57#fTMC!
zKfk-9uf6>y{X74Qf17^vlb_N*_%HvFDCFJt??PiRAKWjR)<sfbG|lWl#;581#>Z;h
zjuf_F^Yp{1Qfxfro`{gZB2uigM>`!_|0O$wDDHHV`&XR4n$Js4{1(BMWU%T2Om3Zk
zO*k<bn=YKGyM9q8oMDspa54oRahps`fgi+1*gZKmO*twiH&IT=b%oqQq|Jy;77rPP
zGMbw2V{^IlPV0>JTe5{|@*gzpk^%?0Q9|>IKIK%bNuPbS&mCL%K>>C+VY@!*upQg@
zO~JLfXk?$ZkJwgV)0E9lA0u|bHec$i6kA&*<+7&i_TqY<TVz3cKwqu7=>36>Y8iAQ
z=wlw_>SL|%^B((2J9^YdTlp+!?4}#GYkl7IG3cwLHBP=@eVIO9>O|;sdI|PDZ2TrN
zkqvf$`%~mP!3MQ)%oFj8XV2-yi)ZxC*Wah(<0tgJZ@o`{`)~bCdVH%`dD7#_iR~*F
zROd+kMZWhnRgSZ!6kBv1+e>~Fx9cRVlP23+p*N89yA`%R2?a)VTR#hJh138Lx|m6+
z8JNx>)C6F9g9Q{V*|2Ro!q1uxN-?!!-iozqcIPGPH;+>1A+*b30WWYf=#DD+;mB7X
z{n&=SLN9skAaa*ERGsk>h~h;Ubst&I3ku~WcgUE7nw`_-ghgZ0z^EdNz@&8^R*Q7e
zd2zu;1c9X<C2MqCtJQg!bk4GR19LV<7HWTJt>A6w>A0VD>C&(tv>0VM74Vj8B$TuR
zyEw<I@x23EwX6h<(y9U50#0?sM&MA_8Y~6xB60*a;mc-h30OyLXAN5D<StG$jeO?u
zCyuRbJiJvLS$e2e#jbU76^Ehpw98Ej)mCj!wFYeJZDedUVl(dV^9s2|Y)P?k`^j`d
z1D~utPv~=V&U>F1cTk($M(nN=!c$&4Y_ZQB`=GCEQ@D#t(1|r*n{jBNDeno`du-L5
zl^57dAAt=aqf6-X+F={@(Z<T^`WWRpLvFp?ZLCci-3PfgY<6gYK3|(YioV(=2K(GS
zeN4b+&!(L|7i{Gkwl<b(v;#q|Vq+Goos?W3MXuTU9AgXS+Un$>rfp{jx;~#reH?XS
z5>9<9f;+=T5o}ZncHpAVb8n+uu0bE&4h-15z4rPz+9<(R%B4<3xduDXY?K=GYQ?Ej
z0u_rL0FKzGMe4_~bh@su{A{K{%Rwis4v*FZIBS;StXbQv-zy@YB_37|bywGkHO%j3
z>ot2x<yzdn&V4%$QYAZt>9ywM>+OPrvbaRI0E=}+-3QDa)}C|nLkV}Zklt_n#Et%!
z`=d1xY;C+Fs#p44yDSEe#f$<i3fh9MVmp5j4|}~G*V^J|FHlUbw`YcS3+zb&W7Gnp
zQRH7RJ?68!Lbn+^mfEgUnh!m=kMHk$UPO(H^Di}QI>jKsr)$TJWEjXvgMX(wN*L|_
z9<@Cn4cKaXS$|JZv)Hqd8-U+nbBKAUwqa>6Zi4gw*7)AkkEt5}60q6pR$S8d-22#~
z+%3{P-a6y=8Fs?<gO}LwZn(E#Dh->xH>E+Z<=%Rj?s^%nujy5=W#8Xd+e5?e+_F(>
z5LXTR?GankW4%&!qQ48d9PQaDv^9Nf@5We5=y1J0^m%G(X*be6nP!zlY!}!gwnToI
zq13X)i|NW8s=Zr3Rw(F19>*GK(3q@|D|P$DT58{?weNG6i}lSFeH^rcjONJ1<72J%
zI$?75!oHBJ(KNeU^(9>2dVf%FyJ+asdc_WyefPq_iL(QVKE5NebMwvy2K!p!;E!$k
ze)`|>;Jw*TK&kQIJ>h(-`h0%X_6OUZ<H2&+|7+cc>mRo-*V=1O(`+_Pf)&Z;g&6qR
zM$hM6I}AmD`{-v$Ctg)6Oj$hw)2JlyXR=jKZCv27JsV62%RX`r?ZU<;85%2R1PdbI
z7)#RhCjpJYsS#<^IRAYSrNUY<s<q?DDMSdJE{<!tR2@CyWS3EqLMH`m@Z^aPh#gAX
zg7nFw$Mn(1ht2VSk_F_`&pwj_2|ieW6@$}qb4<?Qk&8+ui|ex%uVcp^4o57_Lw7mG
zDR$!%p$<$eD$jS#VM^iD2=^l4xSQ0mI6PZ+vI}zq9>lTd?K;{W`#!cToM3)(7z~eL
z6RtJ>%XA{+L6Ey=eGfXHF0eK1Mc<ueHlH5AHtTOLurW{EDkriUF{~PCJmuO>dT+-T
z<jUNEvddWpY%Hf0*sow?XYLaFoZKOxyOgtR4&^ksldEEr_ZDaH4en>yf=-BBm&-nn
za-H;dYLt`TYgewOkDE-zk$!<KJiC;j6C<{Jwd|8ReO)JTs!8X2y^gOpxkwl|y>g$s
zz7Bn^*w(Aqw9l)`rF%Cm2q#W<>GNaX=Lvnjn7&4A7FmJzU47iaeqjeravE-j8@qkZ
zcn)XCt%k8?eVzyG7;BwedmF?~^XJc=(etOD(&N|OlK6IZcE9%8BY6iIs<7>{kbw!e
z!hIR`R2L01f=rMK2z$B0e(E#<j=Y-jnpPB3SQ}|c>QLijkSz2gNI507)y#Eiwm#!v
zT4JYd&h)uJ`SLv4XPCEaUb1=14iRm_ck5q<S_ydP<loZ8qT$Q=>FXg#Ps#XC%8k6J
z!-)^@*@?3VH~p-KI-7&&1WrW`05~lc<uMBl%>6blm4EwyIuMK8^C-N~%=doM?>7f=
zVlHPCguelI{pnu%_2#I2yQllJI-G8l|B(-zc%1OFIg**Fq^4PUqopPQuuaTKy&&Rm
z`z;?jo%n!?+lBvKX|nj;Zo#w9*oquTDQC6N-SFYrqZ`4%T=l|jc?7k@S$A&}Xt3^2
zO8qn67!45)J~nJD)4N5v>P4;va-J32UD3m^4Vm0;1vci6XSv?3%3Ue^?~`)R^SbYF
zdvLk3)0DaDW!-ev8UV+~2Z_vlangfm;Vn*j*dW;%w?}ab-feRz*L7mfb>_U~gOtR5
zykTW3#`ALT2YVbUe_}aJ+RohYC-k|=RXITqsuLSF<%>UPmIUe*9B+<-?GA^M6KW}l
zT(^Ij5y^8WwG>pY;*=D*W|u2-i8C4F9P}{@Z}~y!lI|DfHD{e*9ISurR1~?N!TEn^
za$Q#CE0sQfv8qlSl^?!<mW2;A8RhA8uiqugC`r5MEBH$9Ho0+qiNjIHlJz+UxSaVw
zbvX%6=6mN<eC=~!<H+gl4@a^|O#s2R(xa_Sf>=ynZ?xdM^m(=V8BMM%7dt3Xj&&UN
z-kl}Io8LvE?U{pp!+PB2rPC(2)2g&>R`6YT@{btj+qhgXmS#lDnp~xQIZ68wc0djr
zxX+n;mB$)mD_YBg$FpFUKEF{8aO-oCGY%CerkXkmrP1mBB>ll$^dxjRDpv_Q+J4K=
zm)Z&&o;&IDW(Rm2YF&t<*bdWI$0l;M`Whq=?!piM_<(VKf({^B?4$>E-sg-xCE?|-
zVo!sOI*m38`nvT$KmQ&zD^#vo^nvl2jk*{6xna%F*X`MC2ak_5fa=9r!{PZ^viCY8
z!Vfk|u@U;bimYhX1AZAxo7{veo!?FDr5@1ppSz+qD4}i%xA8U1E3Cy%75nYsM(aMT
zS_9y)=@SQYF}E)}^&ii=KRScQ_*S^BiJmWt?Kmlg><jxo-^yX@2{ix?TRY>pmp}~G
zS1sAA5!eX<0mTmkqyQ}BDt$^yFR>bpR?;km)#|-a_6@vlqf<9`ewjZh*?P8j{%cmq
zB5PDD3d%OeBL9U4nlx}v{8Z(#CV<SHbBo}Oyw6fkC-3t@^WRyo`P!rLKI8EG=H^ED
z{<$u|5uDU3IH@~c=yjEQtFCDK;h@1q!dXoSLQKgcPaPX)5u{eHfNKEU-52`vj|;th
z!;#Y4ng+c35~*A?(p96G7xk!du+OCHg0x*P5yY&U%=ym&7aRa4?F$aCGWIGbjm4id
zdS3b6N!HNf$KkyS|HE`6S}*PLU7xj00&?GoO?Gj>RwYA1x$9;B2aa~(7iXSuwl~ak
z4s7Jul)GLWq_bfI4>_X1h0~w)X+o5@wF6r{--{zt_emOLSb&Xjl(TZETR<cQY_fmj
zwc>n4B=ze2@-+inQGZCCbWdnB(6W9Ke@KO|CSbSddGR?+9X1iHWcY3OI^WA)RGtsH
zihoY_!itTihE2Hk6Eda++t}v~o9G1ZW019QiS49Wp7RaHrq+Ft;8C`Fysu}D{@DWe
z6r1Rb>0>?s8+5|-ahn5*1O%JDuDIUheo{X9?b(`TZ`hQHgXJdrYrOhsw``CKY{{?{
z4VKdkz7;w#iO+-E*P^w8IAdqjM=ct!z8VRDEbuvqT(kHIEFxaskNcFt$$X^P^-y@0
z`Jzgnrck3|0e0vsuk}K(W;JX>pHq-)lUu`HB`8sKs$wh^tEIqwE<Q5Y0gNTpM;+%x
z+UGu&_*rMI{lR@+d>kt_c@M!hYaNOmJCNAs<%6uTK6$>-(+~KtpXXMt$8#q(Q+V}Z
zUoEnqpK&Mievzy#$=Khislxxgy~6p=wtq6)j`j(*oozAS|2ShE8aV%@-V3kwxZVq|
z^(0$1*nZ2X=KW`wm*~p8#2>E-FlnYE-(LeL)Mt^Xx%zXur2hFLzK8jt#_C5js=GYx
zYI^QWU0S}p9HQ?gaMu@06Sas+bqd6q0J0gs!V4`t{E3{Snxj9pBeA%&iBi(*zzdzg
zX<e1ylb2c=y<a^2$#|hz@w^7WV!V%*ZdbbRhNZ{WIICa0xTm+@e3Sm}-}xVi^Nu%8
z32DkoXH>;GXq_jiI@!|eaFUfmd#!EonWNwO1pjsCdW|RU?PMz<i$J2|bL!eDY0C8O
zvw_VW&R4K0^+=&Hio&po!jIVSe-=ff84>9cyI_L>Poce3k0eziSpDF~un{73?cKf*
zHhowxcavMPdKaZRLhBd9c1^B|%_7nxb~OQGG`{KA1-4zeUem{xMjx^H^<AHbXYXK(
z85VGVYXmQ$&(jrstktQ%`aa(uEA8D-Sa?q#Z6Z?(yeoI(lYJQ54)&cs@8oLO@)dmq
zHeI0ZjPro)nm)Q6*uj3y4(wqQ2RPbh*dD33f<xaks2Gk&lPtlW3LVGVYN|+NHKkAk
zK<(=hX^9IWFuexA=J2V(o|=6%ThC5FvA>6A`=k98zGBk!J;u986k|xo+a}V-k8i1?
zi3szOO}hHMxC~^@1Kq{}2POpv!A=#HzSzY3m-nOclC@4%nm;=X;$l;IHkv3stg%fy
zJDbF*f|>y5P!mAT3s17`5XWz!L{^U|aiQ2!5q)nI7ZqI0y6Mq1VUa^G4pdl?f;<@y
zIe5x5Xr!2eLUh2m>rW_*25bu`E({wN)fI=s0est_uu$&$B#tn32DRvYs|}(BBS|(X
zvp6S6@13<q#j@Zq#he$bMnW}gI%=6OTMEaHwG{4GIb@sW1ne5{z}O_!^#or31L|$8
zm5d8q7O*EcvJQ!KS%k5Zb)6(f`Lm`IOZI0b=K^1>&V%!mlhh7ye)y9f;u#mX^?9qc
zpqnJ`^HnKW(yZys^6uQ{2RnSMO|HOZG-Rud^K9Jpy0$e=b=l9Q#$7M^2<&OlM}pk-
zoVMwNa{g!ecaeKixeGSPm5Zy&Z`Ys`Jhzzr4A`V50BN!tbK*{+mICWD%dOYfSuhGV
z(Z`03+YblJ#L~5o@#>#JCv(6i$mU$hHYxh-SWBT8Hnzno7N@E>+rIUn^)sAm335Fd
zHt2*=-5d^0uFC&zob0Hd1-WuNZ(RA^%nk^)tac!aGk+EiY`Jx=q0jBTC+I6^b;39=
zW*4N-b?lj3T_;dW;f&0a6zl*=jfz7XOQNrnQb3)CJ}+jYj8|WOE76WBhF0eR^);+s
z!GesTR!d>^K2L6=Kwn}uify9HRrQq%L~C5Yij0laup2h+1E%c}2drjeSj`j)HmYF*
zMODBS?WfS3)mB?c<W{J+1H69V1DCTNf~XG6&iOA`DUsKA0|kR|{!2l_Tm$`EUjx8u
z0-QkiIwM>23}>>?J#5c7OQyh4`oZ?NDXs~Lkj1F)QW0*dR80x(pgSb(cf@6?<18-f
zi0G@O1b@UL>pImJtm)zxF1m#1&bTqT@{wER;a;{MK;S|QP_%ks-MT!rXwMixLc{eI
zEjmX0m*LqllGOrG9M^!&*a1}UYh&v0Yw%wp%ArB!r1MImD8II6pm42lu-hfL)~~5>
zMoD81_a~Q<@w7uC0b6^1!t?DKdze0_{Z3^{9Zq5Pv*_*AXG>_ns@=8jV55Ml`aKi1
zcbsC|fQ{0i57eujMpYL)JIQ*@!%36Uu(&K!>^-}0Qb%cR*wpUm6Q}mWcu}}#-=0Ii
z+b_N6a8JV)FYShs?RC0KEHJFS$G$#Z_K)8*JX4~oDUNIE?iRX`QXX#C$+32QBx8`8
zd`5k=Ycf&i*T|BEq_m<nXlk!dQBF~RQ|sH<|Nh-R#fe<%4t5*2nWz)2jXirO#4KN6
zN`B{lY`NSqR*YsT(Kyzc9jHNWhE?ng#Y`Ov{Z?JauIWS$7h2z2&?9y4V6#I132Hzd
zTyA!_8oppZbMCHB;adNDw88QI)Z6xG`#rnB+nc`a`60)9Uwn5(tQWr$IaFO+UKsDs
z`I%q(i||4k@t6iU@zaJ$xpq7MC1GHKGN$Neu6Io11Pcx-PqV1CbIwJlW#fr9=UiVi
zz@locJ>H+pNh-S<eZD-d=w@zon%lEhocg@;=n+ooM=b5#Ui#hnw9T<s@f{mg+&?*`
zj4DW9D*^OOwSK;5zalnuWaCiBu%%W@K^?Bmv6w9C*0{iN!u2l{+m-Ko*yQ^KHr-%3
zw$U-YuI|8(*qc86#pT+t>F)3XyPPb;nAPf>z!jSu=N7#BEZqBxVjbjm(dRT^6a5Wx
z4&(4&IJOL00+XY(uiasrw_Bg@VM}^&_xZ5BI`&wnWEcCS8`E0W9vgO>3C^{$uCLbT
zgT6kDZGxPXN52L;u7^tTepT&^+uzWRtTE;ekcER*wbb9%vUBZVFYUWME8M&8+5U@n
z?eAZ@ndkE3i(wif|FM>+6??{D)7l-87CNrFzhs}bP6^9wY+RIkQt3UU)?xuaHj(n?
z^Y=wF?~I$3okScltQ0jx9ApxFFyp|f5O~V9h@?3GrsQKQaWGDBdh<uJ_r%^7fjPsT
za-?j@<b_O~8fZpQX><5vZV(6mWY{&b+BvBswh3I|0h_EJfX%qTOTcFQ@P^GCSe9;T
z?=nv<tHQCB;s-8QvGFuEQRCH@LT2P#;04$+J5U#L?9N?J%7M*r#mQKe*PK5h*FvbZ
z5Dp_Cw*^5Uvtz3`Fi<Y=hHcP^dFruGnn)%5@IkJnDmK%J3T(-+rAF~(*kT<B!zTKP
z@0~tQDPU`Ivp&x_{7`*e^xmP*^BnZGs^ie-g4(c&gEX~1U%kMqVJibR&4M+G8t!wU
zd5PFeC)S2N2f0tcR+q-ZZ+%`2TheFonl#U$&r@q3x$AZ8>$7XXX8N`UZ1n=$6+000
zvDpEV0>Q#{pIf~G)ko^=z=XrKR(Ra7712kluMx3DeYCN*Mtu#~E^U<6D`-x2u~7w1
z^rW2qvi{6d(*f`EU<a@dSWS-Cu$eykSW|tRgB_6i7*nvHMynNd!fX`mKxd-{Y}3@_
znqZ^Wn)JXQ`dBXHTDv|kKF*bLiB3iORUP~q70L(vS!f3*jmDP)eGPV4ie|%dkXk|%
zo={g$%2ULg|6<!Sf(?phu2_8msTsiECq49$B_ZZ^%|u-Mu*=$I98;tE$>#M)$_UwU
z&{tiP%KZpVm72bC{1bJKaAO1z8@=gCto75&v#$xT4(<Foga}JHQ1-)hjZ{4zG)V9a
z&VC6hthKcxTJ(fWff=^#?3BPqxi^1j-8jIm3Pq*yKCd|J<_xXyY~idfrA4lyPL@9#
z?S@Sbqr`wHk9j>jR{nIKGiG(5!2qNKd=fV3(m{XEe}wY)pa;IvKKU9~>b6ctb$;U1
zDuL5KA;3atak+~M9Do*GyuuN;VUxfmte=GIyDGL6uq7Nob7Z*fMJloyYO&udHuCm^
zL^R9(j?IyAtYh9LM5t%SHtB*Ca$-*Z3akm(4V&_mKLYkkY%;))kM-}X^22K;y0t4d
z$>f%by}DP{dS#>$?48^cTY}9eX%BKnbbVTl{~g#cUnK<O685iYle@`Pu^psMgSI#d
z+^}iAf|SgMLCRe(6O0DQ5DrQSHs0h)pssOjco&vi)JJ7LfIg<a&m%VJXW_2bKCMAt
zRUeB!%XOkQiru2~xM6d-^0Slf1q@r%#|&y?rI1v)+E@_>Za#Rs>qOCDH}i3k?>`$h
z?Q_0C&<SDgfZR%xtJXds)R@q5Cs-}>1bb($10gjaux3e7AK6dZ=_BMmU^BT(AYd}N
zSFr&a#a-PG;MhbzZ}grBBuN<O@}2Di>Je1Pja(nqhuZ8w>Fj{XF-^DXKe0aN>#O<{
zgyNSE{?`?mzkx^JY(KZdetI-Ls1YwX|EIzB!?sI%&XPG$2HPHO{}J_EF4|%HXY)C1
ze~!1B-MtiDqm1*C*On<(|0(;s<rD%UiyjhbFld`2?VzR|WPScc#Psj}{eSP@kN+?p
zJXHMQ4!XTL$OPqu<v5yyCoiPLjS-d-k%kQmFFeih8Y3{D-D#?pMNn|sv~<jkQrX-i
z@}JW}B`qS<1h5o2{?6&S9OZSgngClzF6bD3HgjNV%B!Yq^B+#%=85@$Vhv}Wqzh8A
zw~o6<y2;_7Y5Di45pV-+&Uwuo)tj<%x(Rm>KcAl^=_le;o+Yy6PQGi@&dI(fUF@Ea
zZlXo)CP__ErBeD1mczXi!O#uF-Tles&KUSvdJv%zx|SLvo9FF!{47hI;dgv~r&uSX
z0>1z@{yod+1yU3F`OL4)*BiEzq&=QBYJ5^`Cg=Z#y?+h1Wl7G%u&nA{YwvT;y?5^1
zJMS3)17Ls|JSc#8asUw&gQO@iNE!@D0Ig8i@+*R}95$)2Wm_~942MMek16tp&9EcL
zFe!o#kq{mtMM??=AU=R0C13yof@bg<%meeDxzBUY*?X<-Ds^UlnU&S6*WTycq5km9
zA}{9juI{d{v$C?Pva-J9PQ=)cIBLT$HLT*)SpNTm>w|K-!okAjc67$E$z(~Ri47aK
zA)gdcY#I%vay&qegVcL{eXVu`a=nIJ*|2d(z7n~r0cSZ)lX8pmLk}QFOJZl(cj)-i
z#-;c|=?Yi``*PodfNd?;<EqW=h>=7q%MonT0TS7=jIZVRsXAr_3;JF)xuVUvzw)yk
z_C<~oC1TiJuDyN^FrZCeGp-Nfq~iNcj@IT)uE4fnJw~}+D>Z|bGuERl&UDkF2whgx
zS8em+Z7y<UeciEKCy{Hz2JA`u(h*o?S9WMvhpY~m*0%=LN5(qM&{xxe30$+)+t{ud
zYeAbc#)nr2w+nm>o#jfktmL|Cb2i{i{Q-TI1u(G6(Rq`r^d)Qa?AW|73HC{;KG<Gf
zwKgwk^BVdR%f;H<`jXj!3D*QWaP+>EltyAUo_*NQa0JeD<~Sp#irBPSa|D2n;{ZC2
z-CiSAS-%PPl0Sy8SuSkLZIC7m%8ZG>mF2>6X4`MJUhHjW`_<9KIR%7DWZWq>*h@(i
zgoK&t%(ygTLNQ=scSO=PyH=-%I&gSe#QH2w3rg6ylhN~uUC3{Jw?#h4)P$pmmr3Z$
z_u+uqAxivcr|%l?zVbphDjR->b2D3_y-_2=%hdSdXKd6;dyh$;6&`b&dsKB^jw76M
zpbk-IX5cm7VYB_HD+h5h6Jfjs$9hHGl!7C6_Du?-WJxF3l0<>aro(JWu#{erokQ$Y
zi`dct=3R3L?ldBi-_15h9fGxSg$Hb6gW!BGkqew1tCJoJA1wERaDhj;mJ_)eHgRUm
zwlR<zwlTxOtw-JmVDk+XVCOcM{Xr0y7hoTD+DFUObV8kWv-Dqe)K=$Mmrae(=7Vis
z&X60+)v=i)R^`fV#Fz>~*dsPgB%9hsYtqvk!pnbbawX`aw|Rlw;ovrG<`g!4HEbnf
zXE`4YTLLzzQQAys(LljsV=Oyv#m}<C!r^E<<{F3BxapA~+S|MZHJCn^xnVbKWhK|r
z$raAGo!V2CYsKl0urW32xMdVV*5*+s5}a+8__dl&WTOfziY+yLEJ1Fvi7_cQ#yWdH
zS9&>drq5MvJ+PU+${L2{it(G}R<P(EgIsB&&AYw^Y~I&~+_kx$oL<=|{uaq$Rhx~P
z)dMhCUoxElRm_%+5(hW1PpdXpJCJ%ikhNSA@=mxv$W=B9+<t=FelYuaYNNysq|`R5
zVB5w1S(~ryK(qb2F<d(vh3n=0Y+)JC%MXsrTJflD1_vvzxn%surW@OwQP!ol4qfIR
zd}@Ig;j^{zs91~I&qf=g`f1bxLg}-};Lb94dFEcG=bzS-L~%n<7wri_IpK7NZCs_~
z$=5694&48)u5=z`iHgP9giVGgb^f6KhP3*d>hmS&-^>>wfqHgR&Mm00T2yQQo)nxK
z;{3sQ<MpiWmH!ZAa;{vf&R(82>N|=0)P_EB)6`h+s=WJNacCv_@NXUHum8+zbh%3!
z32ha?5#*ni$m20m@~{ll*KX-zH_XM9aF0FcPNx3n&s*K=LW;7f-Ty>vq2?Zc?VmU7
z)%r{g-?^&y^tyI`^T+JlR&w-5Qje_$Z0%ijRb6WL;rY~I*}!(zhgVOoQ+WR5-7C4;
z{b>VRT0Or$Y0=5zHf&M<YI98bE7CSLe^lyDoftZ~n=He->sseJ>}zbR&sw$dy026y
zpNsVteKc&8T3<^W^`FR<R{suV>5NXS`%1b&AN`#HTQ%%NXLPdZqtWViWoI6V`q)3y
z%dL|m1a5MF@SxBSe&18{zOUHJY1kM+pM%}bSX)-uN3)-&ObaHfc3(i!u${BN4l|wF
z_LPWDHm>!z!%0%AwY`7!K84qhTPb`~EU)l^l%kv1sl$|Al#lc4&O_9wgJ~@Qom7{4
zYK#oDUDfcMMFiU~Mp)W)7d?pk`}&*a)>=35X~Tsw4WMhB|0s1_+3N4#r{SWi@dCv=
z@#?4^rT$xzVN1a{ksFBh5g=LGRYaCj>ST~|lwrf(<YFIRZB7xeNo8F-nG>e<x|r*s
zQ-PqACKIq)+PCR>8vS;u8xylysSPMl+R)I|U)bcB@ok>BA*;!3*jjt3tWywSvyA?3
ze!eurW(hh?j(kfAZ*V&oETPk0K^6rl?8uoJ&lJBEvM3I3<H!%nTC%605v>s^{z@pe
zcPL+<wpwvH;oEAwKVXl2B^XBvav^HZ>$7blNHD6REkS>pZU<@^0FcEZHGP$<N}fZb
zv?0uq)PP^#4XkDsq%=1<8n*Z~=nHjqO)FV=U&6>~-x?<t<lhx1%{Z|X^_lvCqQw3|
zy^U($*e35`t>Jaam*&21!&U&+vDp9;u_W{*SMXks^s{TjL%FkMF4x+=oB!=PmRmoM
zKQo`+Xzg{OUDD=tv35ZOoqks}!Swy5`(?NF)!t2}L&=Z)mhi-STtXF&H{QRlt-UCB
zg^xS<{<HQwnbgCki8DuZryz>Fh;vukoSj4kv@=PgA6TX%va%MO%o?)libQl~b@UYB
zT1JGYhN_VzuN}4X=;jzzq!!_Fb;wHkjZ#{Ka<W6)z?Riv6%%$^q_#Ncl5SSWMqySx
z6>LczTKp5oU&K~aw`JqIR_A;anpi}{^w=1CQd%PsMv>_H1gDa0?xu><c#3`;^z@%N
z+e!sClHdsbv2$6t@GU|fxkHM{6;bAfO=&7DdMtrXRZmN)+}a7t!5o2z{*i!T9}5bS
zi&j5jgo6Tle^Q4ni&`Cr1Z+qEOBxVBU7J^zYnJF|?b6!jB(l>ebW0kn^Miu-=@?o-
zBV(Hxy6H1SeI#HbYjc$=QP9`HqV?hQlyYE8Eqb4w_8DznJs1WwHE45j*y__FN5w{d
z%0Z%mq**|*G-RZoDM24it^}PRB*(SB1UVQsQf#s@lgJ|m1)C-2<@=eQhxMnTFZm(J
z(&Q>_I=fC-#Jhc~v@zxfA~(ZUjGn>z5>D|@I|U)9kYPtuU*T{q#rs-?^OxIO@<J5T
zSID6jIMu1cmT??j6Dle;en#39`W)ptj5;?KY~qY=*hQ|<MgcpOV50`3nTz@es<c54
z(2<|&q3qbJZ(LKbQPlL2$mObZd^Omp3j5k@6t}%#a~q`_WQL7jJqCR>8#Q~ITLgRs
zwqT>G$|9%8af>;i$aST!85@bUCGyquSw{8Ks0AzJY>{!Z1*YXjCn@$ewKg8D+@10|
z4%r631mloy2vh|7s%T3$*AY8V+jtk(4PySv+}+<rw_{#6)9LSIdHsa^PS%RGtuKp>
zKM6S)kdMcfZ3W|%1tD_q#sLwUvY8Xh6De;$A~yXLGm-E<ORkISYY#M#;1FzFaXJ4u
zD91K*s&5D?Z?pu39W>`%I|Zei;Y?A<8%vgRKsM2&zgN#0z|S6V$|RnU-2)qQjdRcq
z4K_Z_<fm;VFNX#Ik!`#(XSx_4RyyWjf2b=%1g%K_lmUr1E05qJC+Rd*<Uaf2gE{~C
zKV5*Lyta1<@BVaj%2iFYU2!C)Xr4mOEjJpC(JXTjEuXdA-)D6b*bXMmH3;lv*fJI~
z^P%M=z)9m8I&hf|@?Vdw_;p?C7H;#Q$wemuioJH&$g$}u=Sk(p<%8OM9vc%*o(X?E
zauQH#*b=Z8ldA=T)Z*BruBC3t$rsv8{92<1q*?jAIJNj>;Wg)TB%FL_4*ls$sL`&L
z@*~D=mlJP{^7BO4Of$KmJhXWVZQih5OI|sPh%Z(?Y8zc$T}jYpm9enb#|oV=x#_n-
zZr0{3chgrY-Sf;{&$$LWeRa8#;+_so&J{Kp0hH2LppUJuXn8h$EmPBP*T<phV?D(t
zvMEQ&b0}sFfrBNqx%H)n&2+-_@mkuZVjMS}FuBzgwq75RCjxS<v}Fgb^cvW-ZoSr=
z0SD-S&I@!bO#vHn4SJhb)Kye2(ATvckW)6SZ`{syVsMRZ(O0F(%FTYlzH)xBYuI*U
zz?cz~C^=UUIIXAp5UfOmyjxj<f9(`swEa8q_;ax41bfZDva<ae<lQJQ?OmPi=ekD(
zT!eAS^2n{nr6G)4{GaqS(#Zc3$}`rqGJEJKuM+hhs7L>$`wy<WC(Zd<ec`SXQtrf0
z-MOHr?%q+sU_qJTUC{;TDd)eH`+_o*OC;shp;c^Nt_n|64%cv8R-FZ(-v5Z#wnOCa
zGudG_;YYPr_r9LGzSQehKe@9~>0U6S{!;3?L5?byN0;LoYm;Mb|F$wwir0x9v`zGw
z?Q$bl$MR^{9!DqEa@>;ZBgxTpKmsIFTP1v{I`Ad7c`HA~+Q}8VD@WK~XPehA5$oo)
z*r@6T_w``gv{A2HjvLs5(N~KN(zNnu?|R*BzVU6heM>^Q+0Vzp@_KaQHap<h7Cd*C
zam%TiR^t|}#w9PWx;RUroL_f+eV|t!TuH)KZ6b~Q)8<L^B>&9O5$6v|y}?O3FX=Nc
zPEDScH-ly7n_;R)U0#h8BHe2Bs6UOGhu&e0sS6)<NO?IXuGnGHg%&&ZN{duU)XZvv
zL&=WcHf+jAF4#)x>t10O$5{>E)?wRt-pi3|r6^s2<msx^rgxY`7ko=Xl)P^O=AqG4
zos;X?x)qx_DIZs^Qg<zWI=tK9L^)rSQaZV{{;DSc^f-9jAbnKqMxWPXtG1Y4VLxqi
zJ-%I%I^3IFQ&)Z)HrH3fX5VIV?Xcaf6P-TF96PmO1esIosY}m0bf(Qu+Vr;aO?~X;
zR?()(>|`h}Q6C={+e&U{<+`>58*(M+L<;4?D2L~H0bu!a$okr?cHmLlJm}+XeQ8tf
zq^BRCkB^Ma^z~d{c_g`}GtX0yd$Uo^4v_2PsU2uK;hPON$d%jZ;gqDkKKbH-UU+qq
zq`XAxWb+(MrjHd=K!gN*2q5u(UTxg380V7*GUyGUPL<7sS)%{%E&qMxTSj{CyDse(
z9}5WMSet{yO+%Xt=mV;s+Hqfa`93MVfu2S%T@gG_@bsbjJh!@kfH%+B@4%--6ZC@}
zBNa{>qb231GW62Qg&qRsHs|1fzx>)m*|^?;9>Px8jyNf8C!2T3A7hCjIo}JPQk7G$
zgC<Lt4Y;BwZuuPtNmxD$eS_xsQKzFh^w~khwr-Ckz(#pFfbKz({*qDwRSFw=z;<Up
z(~th6hxCL0(HH5tOV$_k!Ngc6al8pN3SZMq8bG7li%Ak&Yf|7?UX@3NvLsn8LIb0E
zXdz?>4q~UD?0oLfVipNAz!qsTP@(6Mk*bh}4-bxw`+gZTF}#MT-Hgr3Y1#M?N)o28
zVQLkcI&6~kR2-iBO>C0fmhWZCBge+@^mI~MoR&;G#PmJL)YP!CQ*z$MCjT*R<xG=u
z+05{AVB3%@A#f={u2Qb84qK!1CBZH`?K>~mZ|59AlQ@D|U-qD);_>Xr)N8ZKl~0*H
zb$3U1FL(6n!wET7cq78(I%~4zlQvJ9SXX!&*L8#KKeTyQzPy_c(B0Yd#>7B}VzhZk
zI4p9Tq<%?kD{@nvFntuc2(~?*(M=h}mUYud=60Yh3fK~`5wKIhraDoyO@+sCf1-~h
z`icbFXjADc71&n#YHjY=N=pQ-1K`wQtIM<E!yWb=wub#$Wh^>T0(S1_v&zQ%d3Cv|
z)BH9&5al{_*aho+IIFLMk?T&U`q;4PCLrrX>uY$o$&Jf$lWWBGxzAnEkN&BzqVIqI
z8|bx%ht9rUWAoLLrki~oksr`m23Ax+W<L)|yt_YR`wvJ8yhFnG85_YP*hYjwh7-PH
zEHPT5Xxn!<MaVf1^^jj1mk8sQU|;#fCpiC&GF5|8Qg`a%rC09L6(>a=_Xs#i{`~9l
zJ>=6rVWzb4r~b&BR_2insQe^qvi8^Q&8e^4z}NKy)$f;jSJ2Yx-)j-9ue+!W|3B3K
zEp2}r)%DHw#=6o5zT58K#F_%u6K};@Znt1HN7W5-taLlJv%ggOhid;F9rhD!-T(N%
zQn*|_xw?P*`lKB@d}pwok?Z<hH`QI~cDX+CFV!|d-sl@!*HLcqdi}pdkK5+k?~jr8
zTm3lptrLBub8>$)IiAN_xBpse_t4GQR<)e9QRlJU)b8u|ci8I69;@f&yguGy2Oe3D
z>Gb}s>q`B%`zA`P`?far7o5ZT`s{$ct_Gy%#>h=AN$F(VN;+aIhWh#j-G7#U>(fR0
zLxQa#IZd2Kt`d0nmF|RpLdBMnCyF*+el1T*%LR%BFRxl|eDOk^X?Z7vJD3_}&7gEA
zbJ1u|<zTO%YRzrYF5H;FHmmI&k+@W-F^D{Y>>RN1PbQtfRt<a34cjy~Y}K$)`?g}-
zn25YKY=cI$C|$47@ffzj<*IAP0aydJgt{s4bsG;qXyoME3>%qT_4yLyng%2TpAE~P
z(KdyeTxZ2Tj7_fWD9+}XnQ$s>99*vA2o7zY@ogek$bAbN0bA<is@Mi#m0S)Y*CDid
zk`o#Htn6EwQ)yB=J3y|Yk0^J2tSt$v$=&lvL~KE>Lum80T$5p|jdPvxtCI=N_N4kK
zL7vv;Q|n7<g-zNVQBYl*6K!IX@_^0zT9BL2!kAp=B7I5oOf<Q2-K-N`KWFDE+I-l+
z=5kHV4#d9VI<dy){k&>9u<^RKAR)KgfnxeNXaa8JS~6^+uR>M1wgb?&+GAU{Isbh?
zl3|VfPo3OTv;z_Q$`0tM2CZBA`4sE`^l^=?y4+K*k7fsQuu+g}l)JZitvA@HmiMf)
zQFCuUMUENK^wX)0n%B19bi%N?ttTW^=QbVXz0BLstH%*kK*r}QIWMf-^>GF@8?Y7R
zAb?!?S*3ThMLDRdgxflcvjF5k8^0`0V|>2_oBp%qVnS4@c9l#me}`hT=)GE2>mfRw
z20e+t=KR;6EOT)w5s-eLp5o9%@wL$rXKWsaa-p;e5tMe~l$}GY8|=(C2Tp=6@IB1y
z%r@gFbPL7Ho%b2e`y-r9W85e}dE|-qd?#=w?Qs&ooKHDyB*?}AsBEL&8aC$s9wovU
z>%lb2>7WFsE^~>CLsm}7C2R~VB}Hwx@W+dz&7AY2EZMUt?jlouo<FL<8HsWk`<U}z
z_~Z3j9iM|>NisHG$~*izX(D*33)o~cU{br-VFL$y4cNF`8ce7X_rR9ah>NqbVH51^
zOkH6kU}1jvB;{(u<=wpLVOW>CIdQmPfn4Q2#~!dz!=_yJgJ2_X2bHUo1Dmu9`hRk4
z<k%Q{7DFo<C63u_SovAbi4fYH>ry+pe8X-}Z+do5|J=Jr`ucb7=xg78hn~3{)Y-q3
z-={r&<5yhLzw-XO^zJwB>2lfBlw|KR=NLuq($}Q!to4f=tMI=k%NYP{TCQ@-i%wKv
zBYYd5U%WaLp-uZe-~KFp>(}0+H$Ri<4R;4|pjXJX8b3UL!%FT=AMdEVi=FNsAxCwt
zr@?X(m|PkbVtr&Mc)(`*D*83@shW`o4A%+MNAXUg&2#80Vu$9|m)1JrIwROMYFzFQ
zauY19&n(*&HkadgN2tT4?$X+viuN6?+rEWb-LM0!j}`iO($}oby)O;k=6TjU5uD#6
zyH1Rx`3&@$+dPFfx4u>#+a;9*9r3=_+FbHPn2kDvP3LL{cix+Q-NAmwoGm&JZT53F
zD2=(<+h{+<_QRID^FF0kzTb=eJ7A;1c>0f^sN}JM|GsJafsL;<(%%Bz+PE}gT$<P8
z66zBAc-!>FxM$@R1EZchtzq8q`X>-48vre8!QNe|MK_Wh_YiLUq!V#F0w)6<c18H(
z2}i2udU`zXIP1}2{#{`L#yroqgD!)v?C_9YQ<WS6#x>3#EIU4=J3job{l!kiAUi<3
zfB<i_@<=Ohv|;1>xqQMkPfV51yEu>e03P&dwYx9Zf)&`7@8i1Vc*#<i@KEk_B70>y
z0xon{T6d=uyPSSFD#!Ic<TEgA4Quwi3x~-RJ`1O%@am76B*P*PjEC3cXxLn?96^%_
za#Xn)HpV*cb^)vMbr*a~3fQhKVbVp*wIIBxz^Vz5hQ=KZY{oUtll0wwjSX##i5Itd
zw(A9*aD_)~z<y<&ai_^cu1&5Nt2Q6Cb6p>mOLPP;`oVVr70c1(3LU_83UW1lZEe02
zy<1~zZ9ckAI5w1Po9`T(wE2Dva#gI1!?7*zJ3_9^=V}ScjB}kGZTv3d*_WIaBFCk?
z(?`W#gB-iQ1f4JrcI``Jz^chIxjhfyT<0B9=7T?q0dD$wl-*MpVAfag$x4n3=6mHf
z->?HF*Gk48-}G1Yb=Bsz?@O+az$X0f^Q4Z19k}i%Yx4p9zUk`$a*Q@=1~#_?Y@?RC
zE#E=)Hm}Zg-|0j;?MvR~lVY<rmNp-NZC3khJiNzXqj+(C9r`(AJFe`2=)lTGl@om>
zw^6Olqm4?<Mja=S5%*2Q9@|{yIBKqj<Lq*cay+q7EVpQ*_TvdQyEeI+ewtio*h|e9
zvzH`?M<fc8aj9$^8wWqKC+;bY*Y^lJV9&>&E$F`-{cjTy{ojHpQ296Mf`LyG^3m2&
z94>@h3p~E#`k=hhd+@nTm`HIszn9Bd%0f#*;5BDn{XHClhe_!-kP}04R_wC;#|x(U
zs1!g<t0IomqJ4qypN^UnXcQ-~CM;!anj<JVHgo#Qq;dJj#eR_Zm5H%cql2l)gQNM2
zI4Vo9k&Z)hvJ(AxC;5qrlq-FaI+hBsvwdf5az7HD>V%c;rE;`0Hl9!$HAr)24B|<d
z4$9Hayp-G|N63}sCeCw{>)4Lf4jFQt8#d)R2R6a3T;N6ey;1}Tc8-D+xsuc^a}!X}
zw8=J{l>wW{)!Mv3C)Dw(5p#-7%Y_Tv<T_~LcaxK0W3F+rS^TNMW^K;;z_R80hk%X0
zo5!U|<T|T90vrECAAzl+%^iDIognBVky2VoaxurIixw`IrQwiVZh~!8Y%|8x0h>3q
zn!a+~vm9aHjX|!!X8Ou~&afT3zC^$Vov79GHc7q%w7K@BByzPjAC~7C*DP`)aSRum
zCqb^qgGL^XpeJ&D1vb&gS)+6fo6D8Z=1hMS?Eu<b634PWTARndwDdLpH@B&b|3iZF
z4R(P0`9bxS%SK=P1#HZ1-`RmC*W_}oVPi_=dI1|XS)0Q~9YbH5%?`juX`U0tmUMhS
z7I~hh=_BeE8?_&FOg*Yx_v3(mKD+&t@t(g8a&7twJ5W_0wJ+%o_7QXA-KsC`psy-d
z)z=v|im?rOrLVi>*sRS(M<BP+Y*Z<rR<ek<>U~M%R#hLxejX>RIR@DBqr6wXougd2
zt_3_hTq~|6vRgI=)LwE9fW729nuOwm%NPrfLGyCW3;Gcb0^Y@td`2SIqeTARxyU%o
zs`G(S*Yh5kZ8R^sL8#PDMq8l$ew2+K-O#Rx9gwXVi>sD))YA|2#Qsw6av*i6k<((G
z`$>7}>6v0#qUJzpaVL6hb31dc*a?mGsZjH@=&75Ha?-h9%8jzZHhruvZTRHnHt%%o
zvVoNRM1Wy)I#I97oWQs&MdP9kDiwSS0&;-0CJXp!*Y>=WC7-py(WKv9QBLRs{%q1`
z<sNq#6$k_GD}7ypEvYCf-W|)=*raa%meOIX0lPRCy&(cN3zoyTsAsjwrG{^*Ru<mv
z&xUU^#t47jRiIsKRqg%B$`krJ<kn-WD>>KDE&(gB>wG8Cn-(Ygd*8mNw?8}3z01YP
zekaqj_Y%GJ4Fi4k^CLZdp}`H3s|xFu7Kqj4?ro^T3Ey2iIXV?hGCUf^?AVK*=Brkh
zy((#p_l&B~wRx1=NqLZai%hS5o7d9oV`xKtwzj&w-=FpsuRHbF3huWyxBF}DbxNBT
zPTLH*b=Y)wsBU3{oc&!WPeiW2=lV)rW6KTO$+uCEQ;l{&`%0&ewQkyh8v0t=z~+6e
z_I7~W4xD1Mcj+nciZW38gt67^CnE9Oey(l1*-tAs+idogV7s-6d)r<%Y=5F~@(<Xe
z?bjwx_>$9~ADFbUVWZqO4XO`}pm(;hk($3DZl2d0#!5Pa<>sFVk!0d4QBqZTU;A6y
zwJLlV7&qP*NBg$3-(Q;ow?Vu;4)Ku*!fd^jnCNq;3L9nJ28SF(N@`gwlGS*+YqK&^
zmj&M283-A(^`E5uL6tW8hEh;y@>)~(ZTjuizs0_@VQt?<p}|wi;oXR^Ovx3*j*XzN
zQf>g;Ajfi*3XHwqll(hRzQqN*fz7U~3tj#zUKfrSTbqY(k)zr1TWa<8)FZ^zbxNpQ
zDe730WA|+izV`YAY<-)i*0E$WHRIcwob@|HM6nM>O+WfEHU<3(*s!@~9XJK_eq0)(
zvS3TN20e^XuK277{m%3^wzK_`-9V@M80D5|CD&SeEK$z5j;ue*t(uwzOgVfj`L{)T
zWhxWpY_c>wy&WLnNexXQq7!WG-__skqmduOHn~f*Bl@-LGlfr~SU2nlS)0nIdS9xB
z+g{*u#2-?`T7!*&9K5^&D}^IranXpQz$=TJqFig~OY^oJpip1L*2xv$mV>=a)Ufq7
zsx8nmHJw=7_GV{ReWh+-Lw~7;J*Dui)!$eB-W2*Wt)xV4f!0LReyM-f`a^LVfYcUx
zPw>wsT<x0wZ|gO7G@rortz$PPRB%!X=RX`N@^nGYlTl~sns`_Fx(QAhjbP96oKNuh
zVbE)6KyUKN<3ON`0T;M%tS9oti!)!zq*}S_g)tAj`s&2NWHF&`(sH$Z1R9CPV{XyP
z3FSt6q8m=6`cyO`M#yHWE;g*ZKz2H3A)BIWa_h*eZ`J~GHQs!at940}lO|V0(#lG3
zU^Q$5l4naaB5`b2*6187&){4ypdKMinyX?<HYqPQwl-|m=9)7AeBD8=t`n2-m}`$O
zQ78N~h`!&PbGDIJ@$P|A7fmB^5D9g0o7w_q-R8cafUPPz2gz_^3O3YN$?^*jIMfRk
z-)Qq%dTf<ES+3OOjwy2N%8Orpu_DQBGdcA|!Q9-ii5y0?d<7c@8RbnMwJ(|6hNyp`
zuQcv@eRsiFX-R;M|6Mgq-{Eqdt<Br>B3JO{8+Pf(X`{_&%U6K0#_BRYUE7Scep{3e
zUi(^s-9WTdt<Jk|eM$6J&5~ow$X8$q;lUu(=_~(1<Vub6zpUhHNvv}$&q&^EHi}xC
zYqWfFyFmEXNMVP(&#n`aABo5v2iC^g=FQQpbbO_2^IBW*mSZ16n^!D=O}|ppS8MZu
zPW80}eRX{%O|q^hSIqXezC~uEQnUS?+(hnj<w=4i(2Q!ZVR|A+^IxP^cR`e$_mzsA
z0m(W4)e+n1j%>cA{a&fm#ePD^Fe*{}@t-Z%!q(3=4{Rc1^mi>k9d&c#C->LS%2@YU
zsunzCYhsqAMgH5V4(CozI?ssZ7DUth1>n_R^Frq~Uh$91`JE3A2YKJlPFO+jxSa2N
zaCHUy(ws;V4a()EIIT}CH_qxKIIY>IGKLKS4pfrBJ`UIk*r@918d;;T195stJr_6@
zAsKw`Q{eoUImtve2}$7FwsPbAH|~0-0x1)?!c*ia*U4L*uY?YS>1h(?4TN{ekiyuQ
zM#ZsBzP=KN<5Hf1o!`gU60l|ASbym6t3GyWIltGi88>~y#?i&sC%pO{cRfElH|~1g
zFf4)3y-u31z}D0e8ws`t3r5_}r}Is2S?OWqd1}~Z<2g^@u3uzlgFs!$Rm#AtZ*p_W
zI<`fJhqNCix_oL!f8_o5=x_e}@1!64qi>?`__}-a`@iiTegFF}=zsnDpQb<kZ@!tn
z^F4c-9v;Oe?-3LxE25-*>A|w${L1x2uN(@!yui9XTrV57oHKxwMu<18S%;VFhs%Gj
zKDeTnmj7N}n)Uuv;S&tp_0UJjvm)5}#GtMP`9#~{>VX8QU6)L+EgQ-&zILQnm&#t7
zlWZOf|9iDIuT5?;9vwxlCdZDuUi4M-5vW5pxzk<dNBoTF<Duze4S6Ea=G=BE>ZA1~
z)5p5%D~@fF_qY5STHf^aAm2u!o=u;d+^#7>Ut?d>zEtGdI=6nV`e<~0umddU+;Rf+
z`l@|Nb*Q%kocn`Jt~ur_P`M_^)%;DGOQH28(e>#Nuobdg3WDtzZItHnDQ*W8TLO0J
z@7Sp4(@y-ZhnzD7V|BEj63n^S&ns~L4>ryR`+6O0yOl@V&y+%I+i$j=e-e0FHG1D{
zzXn9^r5|xlfVFKm+s}RDI32rjDFz+R7?;vUxd$CimNUToCARX@ZNW$%Si^kckw@G|
z$^lR`V)owUo}RjU*FUu2!&NXgxk)gXwzx3C^yT(E^C?S>I@2WQX_kdOI2o&5w_Wo`
zxlV)f^`0xwI&;;Drym7Q+R?~%br|gI&)VWbu?_A-=-w?J)b;%<Y}x1s&R~z_wYDSB
zjEx<hL-xgi$}RgsiNI4ViZbImx5dO`%kdVhE=Mc3WAw8grxm#}*J@R{dSryI0B@+f
zm7kO2V_jE0@|Mh*18kz1NcJK3s)9lXFln4M;gIi2z7A}U)#kArSo>?jVz}x+A=roR
zSsj@AclB6XU%L(4x?R!`7Ii)m(qo0<xMsP^bvq*M4n7~Ci7-15?2+^Pe-t^M$W^ho
zzNOfZea~%>Cc3Vq=hjc#-1y30pFW=2sI?p^wd9md?zZ5`&|m1l(Ayy8)&8f@cOF5G
z?OV)#4oxnwK@@CMC&w?zMg@KB%2hx4o%ilu`u!}~@yxiiHE!vA6XRCpQx7w}a{nQC
zUK4CuTgX4jKbt=&_jN%8n@;+6!v%fz<>H%Mwr|-UCf_g<O-bAD_dokfPM<$lUhrqK
zy5j?3qv@pXN5p2&--IpUrb?myHTI4ABjg68Jxk%;r{MG+hZXUyzb&`-ZeqJZt}^S$
zE4<;}?)_VJ-_Yi_waYndR=&n&<sG&Sxju56e+k&=%=6tZoz{JuTsmxt&dZ&s?+;%h
z_O74a@LgW_<LJaWY_CIKPw;K&!<o8YuN~;>ejK?zA~t{Q7Hlc4RIHw{Q5)s7_5Lr#
zMul<{2~Wdb1C{cpUp&$a_b1;3bccBg^+`RL!`a7S;as8s0sw<psJ(=*=S8@8_lcgm
z9Ozwd-qY8=^ODRlY-4`y<k12EJpV(~1AHCd^Wv)y#5uqxN=Kg;(Gx#+u%F4<9R2t1
z?Dce5YMVLyJIAfu+DUs^<W}bS-D?l8HKDNaKEr`zbPtgiTAVa;%5V^;lsTBB9K6t6
zz6US#3Fp6^W)GbI=HTa_a9UI2tTya|ZMpAYIRQW|u}ov>$3F0Ye&El3o}RrRO*YDF
z+RR+vMS1Wg0x64An|&F1#Z50^0<zONspFc<Wv)IWZ;^4+>&fN>&VS?0C-CO;yY;eh
zfotFoa{Y*deE_!FW0Sfkq1vike{E|P0yc4c^Se*5@%rqbYw!`+JSrK%g|nU(PR9Rk
zQEkWxz~y>sV;8WI$Vqa-lu7(M5u3hSoxO}r<eEpvR#Pump-aN1joMPxM@c*@P)7aV
zfX(D;*bSS~->4j>MJL{HZ=`3QxuD<k&3EX3^?RS84}Ro8Kl7n0y2m=PwDTLE-qG8i
z-_wu%^egl?f9@6fgWvWHefRtB(0}p4*XX04)05JyYR}zUoSn;O+y$$}=U=&6^dD`$
zV1LM`CzpHg?bWCA^bYJE%UqsM`G4YtgM8JDNnHi6{&gMbE8aNLcYWOjec_ctAOGS}
z*0lE@9KfhC3f8AD>$1Vd&d*FQ-M^-nmkj~Qhas8Y;rH;I0Y_O!B+m&D%jsr)WNhq=
z&D!QoCz9xMm89={g3P$<TRwu;rW5+gDYjZP7Xx{Y3M3qcPDs*U!8VG1noiu*=3ZVk
zX8`*`IR{3q0UIG%@*MS1?LgE=)z_VTE9*xMc0f4&1?q?mfSBVV>T91rquBvCxjC1E
z*Nspn{<q`=IAfzASHsR50iXT+fqwjlzJmVn_dG?fzILrF0U@V~K!L4~IRT>m9N;&R
zgzMCDsu=Hn<owT|4T@AgvN^lT_rmu_&i@H)A?NbFSkT6hSK|`qC&nmXr#0iaRS|T>
z?P0zO{=NL_{bf@Er&F_TY9#oKUe9k_|3P<;YPd!uN@)YCmr<B7COTc{(e1zXjDCPu
zjY(FCz@)r}@^HOTt`oHL<>KNE6T-&LsN1C7^-0~@1vlTF9swK0_uo=ZsvNolhfeAD
z0-OA?VXfXtQ$LY^1i7utZ^W9CM}K*Ftq8<U4Qqly!KRYlOSja0TlwQ(R}7{Rn;qfl
zv4wIGtDZersq5qEBRxi&$MVp*+jYQ-WlU*D9thxX!A7^%Ej4Yli^(M}rV8XFi(Kh^
zb)^Hzu{7NdeJdD@N72V^Y`5!c!$Xi;jbg;+4~4!&aiw>H?Is)3$#GL3PoJ-6zT4#9
zVLL0Q{K(i|S9z4P*-xv_u|bYu+|bAK_P5zhH`INrK6dxh>A*z&xV8Spzt!-+$zPpL
zZqz@Wd*hS!OKH{js?8^oCOynbqa#T}lSY`!qF4j;d{aoc;%&iS3-;nHKmgI2lrZrs
zn7}5VXz{o{;E0Pwb8@)`*{aTtG6}89sh%(~Bby|~==ZvTEgVVZC~w=qDi&Rg&A6%6
zt@9`?*NBqvZK0f{HDUuFpVnhbN>{_RSX8%88Z{Ds3mZai6}xR>&V|~Zr@l+DL2h$J
z6nBSB<!VW+44cYTj}1$lWXeKUrc)N(gtVle0}^ct*SwWSxemIiSb)tp?yNl7^?7Wz
z(I@SKvC_)r+h))a@cSz1x2EJ=(sK!IUNs1&$+c)q$QCwii0TQ6+_14e)+~82);eKP
zn**E|@;t%On6Sy7uxSZ>Olxdp!3)~vcFehK=p**n$r8m{^lHL}sp;e3ZM>3ekh^1p
zKCTxrC1B$_rY&r#>7zWp>T5$ft-B@vZ2DTDuc^b<W7oM{mWVQ)FC~}j6#98GeKfh%
zb2e&2AA=o`x|!Z-YBnkd8<iurm5r+2=D`lQel{B=x*c_*=(nBNf!y0DaXtrZl=MW;
z9CU)ee+IVP=_^5Bwav;J8*G%gDoUV4S?go%?SRWQYgDn!$)T|30ApuO7Vcj3#n9I#
z9NXk?t2TC2$b~ebRGh&X^i4%0@Z?>ogubJ+M5-alby^qssZFuTrZ4RjU`Lr-Z2A+{
zmsS5}^AM`>BrwJ4{uA{x-$Oh}s3%MYaiZ9UfH_QT&L@2Y_GHG`YUTVh$G#>=rH&p;
zlQk;6r8)jBa(`WZbUIdb9vLt6C6cc?Cp9~p@ce*{0?U8H&LVDJb7aLt!*-gb!-jIp
zCqQ(eW0W2PP+ooEW7qLaoRioP;r^0#iiP>LYt}v_W!w+hF*WG@NfTpWw@gm~aS~9O
zYU89B-zyHlf;I8Dcg}N>v^Y1lT;@~ELtb$|u%)V}6%CurS1=Z{gRlTAW6Q?h&i8lN
z_*?esf1GWNp>3QnmNGW=0i%2v+cjewFC3edi!W$~^HRzS0;?2TMcsw%;sCkhewJN=
zT$vN!<f_I;9e{FO=`1#rV?tusH8ySI#U3wp-@VNA4euD})dz+C&IhmPAN+R@=s)}W
zFD;(@MJR_#zwbMrqCfCmBV8S(1Mr{d!Lib7*M(lZs`ShP|FBg5yT9dWde>XV<z0Jv
z=BZ47<tJaI&%QV>I;L~CPkvFU<=*qw#bJM$==c5hH!b}k$^7WkFHH1*|B)}yz@IUj
zPF(1?c4P|HN-sPlx_{tPFooXq%t&ANm3L`JIv4!Tue(G4@^{{&fAlL?^vUI2fB%;<
z{nW1{dgJm5Bg@t1B&-wC<~wy_7o6}zUoknJ=%WOCR(EuyU2AjE&#ZlmVDlNf=woSZ
zF1DHHB}w~Qb$x7eY6~nS>r16!_r5sn+h&gprr^b&i}xi9EKSze0@eh5tv;t7^&}u1
z{TbM-FKI3g!=inu*@5i(D00k5oLz$*2-q}{u}qSE<I4220-N|tPq3+P&9FrqC1vQ>
z$*|38qc}luAw2;xA_1=@<Q-SZeRpBgHrh`scl&wHzQWcEr+={hG2ctH{TkUn`}47U
z44b&J>3exWcG|G6$0fctECr{v&6kU{hHpq)IfYY#@R@Y;3QCVXcgS0R>?wWJts@N%
zC(ncqz<`bSStrK*@jK)CHco3R_hS&Goc_WKz3+F-FTxQGp2Y2p`}_K!oYi(j<De%9
zoWq)TbgUue{%h%o$_qUQPV2q%nDZpsIn|eIiOkq3ul@w?&<rkce#VcF0IOijime80
zSB#x1IMwTdO?Ra)E)3g2jO%Fp+J|E|0dZb^;n$wQU9bG_6Cw`;`v`2jTeVXzaOUPV
zY{LJ3&}`a%>`~;{<l5wT;n-ziw@1DLKI+2QF2b?KOkEBD#<m9+_|fI635_^vR*vNe
zKfLk9j(wEGekXb**b4aHv&oU=b^)x)UB7c|2Wex&b~q?DE}vI&?RfQt|9$d&1$_Sj
zT;Q4`z;Xgi!XwV#b8Y&H9dnbTBo8rtrFtq?92sIcvRro^r+SueQ)~w^j&<SHH*Db5
zKLoj2^a;O<@8LFA&g+&jeS%!=TDa`JuRtG7U*$ATMVlA7U-*nKE`oj%^sz|0u&zm)
zbEJ&RRr`+S*BFtbqUo=+Ik@YYvzPnUm0{bfT)8eD0JyJY=s*QFf*d*M!1}rIzq3Bh
zf^92Dg<_lLhJ|HuKpqH|sc`-awn=j-uv`zvkozOps0*`ENEWu&d<D|RD;rfQaMfEL
z2=w!-1MEO-^Fig>wfUGu7X`au(|#^oxZu@4Y4c;lrgCli+H92B0c~S8|I+5sM(xZ-
z9R!Qz*AV?3TE2n<20}aDd;~W$|91`hsd63No;o(S1I<P;CU0}dv9|;0OUwULtl4$I
z@)dA>Ece^SrFd-IY}9((lDGzJD!3D1wZZV^-`a^$Wpc^=m${H-Oticu*ON>vkrT9W
ztnW0sMEJFr$2Da|#Uh=A-<=hddB~LuoYdK4+}=Cg7?2zRNe-n+^pJ2?k4gUHGNBY2
z)Pd=Vq?mU<E2lL(Oh>FeoeO-YM_sv`C&9ZRU`-7he_JB(kn_SfU>E*(+&>yN@aP*h
zcFf7Qt+6rBK0A@w_D5`0-_462<uNZkHelzU$Q^R!Z!#`$E|&zPQ<N*NnY(^O5>J%N
zry@zM*-yq+3|mqzaK<(UxspWIXq(U8=HLduZf$Nl!EzGpmHb<Ff&X1{eT>QF%I^_|
zpkjF)l8jZ72Vzq0dg0aQIp3l;gXB`6uFVsLd<DC~+nn`vH?-(dS%{cikA_Wc#2ngO
zob}g=ZCL3m%e4TT=%eQ=06+Xd$h9!bvn<z!O&6OY$GK5eOi>?G(?_I#as89NR%^=x
z0c<+Iq#hduY{p#=C$dsikmpk1w%Nt}MAO`1^ES_lO>`vMfrxEt*h>v|VAKtlh7B79
zoYRLn|Hss@1KVu8`Xh2w91WZHB`LRl?)tigE$9IBv9-D8$FRI4!^#erjf(o3kv~Hc
z#O+ecOEM`1P<HI9k2#~C^S7c+)kf8ZE!wEs+bEIab(32S_LZNnp`WXb0(RKXGATBh
zA9UE7jUth&QU;m*be&*qqOYmxBegc44jO%`c}X+}0NW3V_LK2iZM)>KD6_8Ba`s#x
z-1nK@jlXR|R4zLVg!8{>4gh{u<jPTwJU2m-K(33&tWlh%%^4jz|K&Q_@Yd*vc!SQ8
zG(#o2O%SCzbF#K>%zRRv|NN5;u+-BC=Iq-f*aT{HPWCJ94&R85<rVjcY!f!BG1nv9
zuXVNlTy7|zJr`6fPw{%5owK^pY&D7>+aPNje}VJA^tq?j<!p$GM+Xxne7%1ys6FI5
zAzGL3(BVi=1>jn}Nv&LVILqvTT?tXp78q5FMZyzyuZle1aso_#oyeZAfkPb>K=Sh1
zumi6|Q3q`8+Y+!%j*V8>G$MNn*NTlIHpuM+TWZ)MXTQbtD7HCZqYk@&8<`$jgm%MX
z&u?R!1%IDQp>E2Rf8(-I$;rt-^Ag)DqOX4IK<|6kNZ<Mmcj?>SeL-LOPIbus+9$8+
zl?OW4dj4*vuY1Ri?(Nkf`Sv%A^v&<ui@m;of2Lpj&1?F=FF&NGmhyK#pXvE~nVwrV
z6E2qb-&xG<yWg^-x4&_uU;4-u{lc$5q|d)J(fx;o-uvbqz4h6V*1eINnKugF{M6#m
zU*2=M&-66sC|EWgo_jjeS1s>*`L&sT{HI@`&%JP@XBT`=-^uijXEI%mypd~iYdTSb
zTvL!6ozq9zv2Su->ti*YAZwbwO>58z3Ob`oQ8)F``j(!2pH^}yK?l&+R@ho!o4l_j
zvTqA(&N6pc{o80uAJ=w3_0i=Ru+=lz)Hu_oKAPN9*H>0{Af4I)Bk^6^DCx(jF4|8I
z8d=%L+pbUSYwhWT?A>i0Rc{;{;&m*KbyH{!85?kKU5!f>Wr^CjC1W7UG*|-V)YA;h
zCM|twxr0tN0M@>YRPAp`CRK!}7t^$?U*BEl@Sc=greg{pi`sl6pw2oNiSUwfG#2M(
zs>WAp+^Z10@0!f*+Leau8+3(hkr{)Am2`u4jGPndkhui@NaehxT3tyzVk;^^QEY}K
z0gJ@QAltPiVKHu1;orsN(V}k*8$l`g2IoJ`x;WQeyG$+d1oaAU*JOh>uqM#QkR{^M
zh?`!HIF@2<YEG{_bl3(&tZ0NGIW~>>q7!V5Bed~yDrc>AR+~swO`@2Ay_g)^#7pI*
z*j<jst(qHOX~j;Oep~gOHOu>;pOQQ5jVp{CyF@IqL9C%okyK(B^cYrgeH~Pv*K&>e
zNX_sJ$)fsZkJyrKU1D^ZMsy81PAbWrna06v&dUP13Kolm6J6INcHWm(v?m$*tJo9z
zQrk@(AXkDM$BYH8$vFk=IV8C%%0oQherxmW`f10cNXjevlJEv1^vxn>$+2p`Hn|S4
zNfyC1W^gjkeVf-9A&b7`yt1}ApIhJHdz#IO`kH_ZHVV-xRQoorD;p)w$Q<~0GvrwH
z+r6J7@-460-1L<uL~0JEpQLR*42pGbHcBT;tuKkb&N^`#bF>4kjit>Ai3%$wG%20h
zSJ;V)$SsTVtKFcj)eoV~ZJ^B5<mNUC6A05sTJ@#g4iM}>!u=|@<Tgs>Ciax5jYDQX
zwFV!zREiW9T)3t%ZrOO)Mf`mUqwqgNzuIQR^0Vo+MvR00iImz(17yNcT3ci$<F2nB
zW!@!W%1FLQ#cfwS!KG2;IED^A)JO@PMCAdLV+GOB7KJObPK`JeUj0%q!D{0XPh@l8
z0<OTLwxx7YCURU^uq9w?<?a-!>I~B0p8{+xQkE>jT_-V^AGPv`O*zvU8>rxF<NUYr
zC`+Q<it)@iM3qKPUNveIQ$ah30|tDgW{XU&8c~=rF}3k2b=V9$x0Oa}+C-ShIYg~4
zcH|{$a_`3NEaikYSDhforrh;Su0|gz{hz2snHRmkLMJPfcFc{=%uX@sr>cb*#-@L@
z_PG=!$~=rm1nd^Y#NVjp$^}f~%+;~5RvUjB1)d(BhHa9uZ|I`TRh@PIq}=t^mjbp_
zTVJyBd3L!vuYR&`tF15bJlL^iVAK0+ZrD`cTAQ04Rwtg0jiN8Pooq=kq`CkM^m|2f
zDI}l&KyFd)=;z7#bG6Maw}&iNF}5l%J}Jcn#{EQ)oA)K?NI`PHlyLah@;qp^5T`jz
zVV)}3tS`yA3x8Iz71)8|c^)_qfb^}}qRgAVsvQ!!8n%HPn~c(lpqt>;M?Y8W!A240
zAl{dH8>Koiy4+PKnvIfiSrV1EzNAzZMeQfr+)fI>P+-AZbe`GCHES|Lo2$uMB6(kH
zIV@BTnlpgJfiG{j8~}CpzG8jP=62$O0QM2Iv9i{%a$p}4=FAn2flw}UHH<@MqtyQC
zNVYzaZP$s~sRvkFw*zWknv+TIx5a$-=acIv?N{MzSZ@NDV<q`Kz4&I5ov@1B%2O$U
zI~fs}Hij(1m%ypgJBj$`fhQ7l*gK6V1zzajB=S>EIRx(6hF)0vIcGJ>;|740YoOHR
zfhb$pN;%3YD$0!uTqY5Np2lG=aj~Pw?Q_ZnenmoZE6>9*ZRNtTevSJZcRks7!@T<Q
zp<Vmfi*cMOe>iz|);=WIWI-e=5@4G^Uu>suv|KsXuL;fz!8XGQDfjcgnTOo4JGP|%
z3HBq##@t~Oyz^1<IW{;gZGE)JrG$J0Di>fA>{rw{)~nhk$W5^yl)D}|Y8vOiVk^`2
zhTPyG<va?EkMD)t9UDt<x>lMMU|m+l^xD--A6T66cNWL`ANck=^soN&PtpJBUwfXu
z|9hUM-}Q|b^o3U^`hWkem*^Ki!Tjvk%Lc(ffAn`gO>cR_K*y_zzT-WY^gsQ+XBVeD
z2ZvVrk)M8*{_Nj+k-qUOcl1ZT`ziYNuf0p(@-=tpO^dVsZO;z$um1~A(;xWGd-T_S
z=4JZJfA1Cg?8_59yq@V_`i`gQyWe|B6WXC*d^;@v=68R?vN7>BZylFSf}Lz4eA8F#
z=zErpihtvGKT8iE&h&r#v%g8d_1SCsuCKqOZ+PdjiSh0|z47URqz6e*j0S;OJH(s-
z+!t6UO@B}2%G~uz`=dTZ<*wH@E=tQIv^|=yAad8czShQFKSL)}f2U3#*Es=_=%dol
zm`*foN>Qb4n%v*nu#sXzo9le3xE!kM<Fv8^1UsO8sp;b?mjZ7#c|SL7GZw*W2gvj_
zr%(>LGPWSsuCGCE>s$(E2js*8>od~~VKY720r{pQQ?#jTd~IJn;C#crn*BVk>}#~2
zTrRnU%!h+<Jlg&l8~yg~6l}i*A;!9$^FLr4M*FtYTs3iADywnJd~N)5zZ}Y=PeR7a
zmCGS#dhFkL`lqnNkU)=tg<!?xUInWYm@x=~0XIG)b-augDOGSR-|yGtR~I`R>5!<J
ztVcQ|`a^l8;_*EGLOXIH<*XETeN=_phjMlZUE+E^YNK1!jYT7g(VBH9k&o_W!$QfA
z=aqBVa1@XuvpQ@zPQup}*l3L{+|SP|HoY#>QRQgP+gXpivZTrhw%M_W!X2mXda~;v
zC%Zm}Ev@9r*e>@Cn`50dH^dm^SkQUIi9Yqm9M{;j&4E?w4%n<b%5kI3^GYX9unT_|
zj<z%QQI8ZEw*47wWm?J6vGwI^Y&#seJSW%7(B?_*$0F`<#BtFb7Q^5o8<HnM9F5}=
z*C%bf#=Z;Xf<>J>cD)PO*Vv*yn!e_sGs6(&SR4Ol#74awY2D@l`^6fo%l)*?DPY}d
z^C4m{bHj>U3UUps1z2gT&4I1ci8VIJ`BAZ*+NeRIPbG@6PAhD4;|85{BEAnt-ZtCZ
zu^&&rWkZf<uhHhimQINMR9h}lO_1x}j^Cj#t+DOS=xe+#ZU=%KkGI?YY;vF1Hfk2R
zUg9K_j$7?G-s$l>9sj)CH@~nsR>`BwY&^8Tr_?r@pX^_BZkUrqCn#(mc@llN)``-{
z6RYLsBR0qQv<5$WeFdrpa5o+&b-L~OG{^GjL3k<kWC>dwjy9FVtQ^tHk*9O<Q;KtG
zPF(&?2c1l3^d)fykVcyF?{EM%s~bmK4V#qLMlGP&63VNVC;c{!P={lGak??x#Q~FJ
z!A6)wj=BY<*vPR>r8+jo!YAouE^T#3Y*N03EnvR_A2Oe+sVXZ8d|(?kt8;`58|(Un
zgtron+%}Tck*|(cliTqyci4|c55ta9ksE>wc6#LfF!gQj*mn9Y(vC9u9(7T9t-Pfp
zoWe(MbEUSK2@~^-O>-WXMmzFrn+zsbSzbs4d5vwpS8T42yWv)Sq}uC@XxG#x_B;<h
zz^2LkQ}$v*n+vw0ln0`Znv~e|)!scA_F0{dyFIWS^u)xlsgFTlFZ7uC5pAAXt|ffi
zPO%G}%u@HR!)BBz*5+t~W9jtK`q~a{c!a)2Y!u|`*vt-e*ca!-Rr_|+30VwEn=f)q
zlef9*YdP)b&{vHmX!<%q9}U}K)+Dj}QIpELjoO*qTbqmAuayp_*9q0v3LC{0%V{LR
zrp|5te{2)x)beL(S1BUbhCN^_#iQZn`s%!mqLq!Rn>wK<CV7lBxyokFFzU&vIbzez
zlVL=Z9I%a{%|#z!qppvtkDE5C1{;OzQyT?+Ty%mD(3V3HneBFascWj3i}0eEH?^>!
zmqj+ONm2{Kum$-zD(~~57>6+Aih0t&<uVSb({VR~1N%^<?YJFzZ$LIQWbTpMW)JK_
zvAq!C5FR?`1^>js&Hlh{le}#j^w&?`Pv=kkFBPOZS_uJY*c3>**_3?_2ES_fw{KG8
zy=%XS%<WQ(4yD|D7*cLI?685gF5ks#;IV6&GuP_(5}x<6lsq_&fYmlQZJwDzU1?Rf
z(IRTptp+HHgeo@M@(#k#jbyU9sBAiBq5G(~7M)IpQz?VgA*kbv_<G1RvI<>C^A3f`
z(`tbdqdM$s!^-wiLj<@DcS2Vp*pjxZZHMWG`%dY1<bC{Yz*a37Ky6tDU7vnA5ZMMO
zsU5X$)M!XGFp3--m#I@(zikg$woP!At5E=}J!pLV9$BGsWcnh;gg~j*yIGie>Ro)A
zNP4f>FgMPFNApspPOj>E+o5w5I3E?;on=n>vCkaoNB_|S`s|Anz4#iRf+l+Q-bml_
z)tSEj9eetf-{Oe<WdmYqhr<zp7t8;9=5AV?@|k|_*Jt|ti}SLnwb<|Fy`T6zpD<^;
zh*P;xwNHIvru&Os&P8L*UwT#L^tNYp)6}S7bNDvdL{I9lW_mqIp|{B4g;!_#g=O>N
z^RFzn_$g*SNc6&e#n7yu>BK0yU~)Gfv;^KUB^-Kp<IJbFlbST&qg_kTDehH$9NmF!
zdo|XV2yHGr`d&BmRoX~)s$Czg(F|K<imR++M8wwmy^asbu>q!GF>J1n?cJhX9X5jQ
z+P7w4Z*nn>Owd=&V_<#7z>&=LglZ3VsMZ?f0=e>cr_eWozACm+`{RZkDA4B$#gae>
zwKk+SC`(_hrUNQ0y~2k7+9sNP<u|P9-(uhxQSYy|ata#-BLXOm&wp!du<MGtZJZxM
z-4bMLIX=i>wt%EWr{j_bZS#L(OKNj0_)m3Eb;mYf^p;Xqw?4veBL_gsChU<`q>hsu
zIk63Cd(cdIGkyV#eeCLylZLWLH42d!vHTn-wQ{t#_vtP$jB30;NU7r~*HL$Kz_;u3
z*iw(po?l@*%Tu2FZz0=wfl;+6hnujSyEg9nlk!Kzwk216zBsmGhAf#v!jR{53%0&<
zcGzltU2RTXJ2YNSSXG&QmvlR}+vU2At)7*u>GwJ8@w&;;zQa1b8l@yFiATZ~j96Xi
zt51$ni#)S-+tLY&eHF%k8{6w>^K<2A+We7qB4SN9%kegBC)d#T6FX2&^-;{_rj4r2
zo?^#)yN$n8eLdC3h>af64zwH;so86@{cHR8Pt8U>h8=(${rxtOk{vnhe_P{HS8n~9
zLe<IsQtg72Ccq1y;9m{@s}YvU#hggzT4-ysNq3^KTR;{uZYT1LXH(TqISws)Qcb$@
zbqm$1%v3nV6{0so|I`VWwha!syQ6^62M0nVG}Zpy{O@XdW=;t$Ut^OAo@2wep@V1C
z9kI#tq<ScGF3eaITXAtFXzFZ}>Md+t-TG~IGRLv;vswXJB)qtxxo+4V<DMsTI%vZ*
zY?v?EST<OHqvFx_ggJ`__UP$~;=@@M-7t<@i4acU{HN-2HLUI1%vJ@tV^LVKRLWR|
z`UyNe_j9A%t1e9%HX9eKVZ*7S*ycg*{9&MnM}&IyNPejb?Gojp`lfdC9JT@2X6q}V
zZfzHpo2f~@O<!fv2AiL>zLHM+S_%4Sea)PhrV|OhY4Sy$E(lEyI5P+5Y3OS%$A-=H
z%le^VHGN*|BdxK8Hs|XBc3`cKCFq2l9wIui0}4R3qR{y^*F_%|#~XIQ^gVCsE2*67
zN+-zL9DU8Pm8Oq!5(ItiQEgPJ?NnT}Q4w2N+kw*L?(;?~U)d-V+X(w<bDF#*w@x2*
z>0hEwpr5Nw==*iffk<4@LBdItgi|(lOdkEXpkI=vJ=JYCn?E(VR<wfzrlBwRlo$g&
zW36t3vB=K2SWg<T0FLY47|Gsrm%`LR|52;e`DFe!#DxA~!5J#F7`(9#I<&d-x!?{z
z%>@o?r*9k7;dC}9fCZ+Yd<@rC9(kc9(%)&uM$M%H3O@;sqedkWd83Wfn)TiC3#>V-
z*{LZfU!j+hT(jtSBYl~33~-;BF^+>*UmVPA3wSeAf(n;waqy0|Gb#y2W$CFq)I>Oy
zO_q~pXx#OpwcxJT@hpMcKJ;hEx#HMb6^?e~sF4%iz@|I*g56I2^NFFHGzWnEjo&pY
zHtmBwHs>)9*hD^N8zn(0`6(pJXHad|ZrNNEIZiN)S(E=teiD`&+T7%(*f92T`JkNZ
z!bmgdNk+oFl%26+cP&@d3L6a@IROZ{QAA1hK6dJfh*37H>#~9U6F>hN{pbho({s-a
z^zOHe^xf~dOW*!=cj-NE9q4zw?}Gj>|GzKLFMNnkv}lAeZ+g__1HSsLJ9_^&?CH<{
z_>unJFFl}VpBaVD?7#ZOhxE*yOuy@!F6j-U(y4KsAN<HedT^+8|61oOAO7Tl?p-AM
zx_4gCz57*j0PsmJ(Ld6pw3X>vnR0CgCE6%S)!F&~-+%Hxy|_62mz@ZDb$RC}K7XW#
zM-42Hr4$DWT)=_va@LcKrX!XB+I1l0d5~6RUVTz*Cf8&-0DY7>$E=b0nuDTR$I`xn
zzGXQo^jMrG&aNB!Xmb$hmp0d%(WcN>L4(BF#uj4vGo(Jl&M%rUp&u+?ff_|AFHI*h
zc=zQR`bu8+fa#M>6bI>hj?MT3S9ZX#rrfX>V6!<cg}zqj*|8PqE3Nw)&!<P&EOC+#
z`ZsP9*c{qjO5l?u0f&7qu&*(Hi`h@JuV$Mis1W6rJlzw)uWWg=_2+DVwC#JG;$l1!
z`5($Xk{?uvcP>VE`m=zBFfIx9Fpe2ToPAqHl3y9O;K!&~8&_=Rs&ui@i+|H&`XAPt
z5Mdy$?#?hLx-Mqo5e%JF%aOH&<9T)jBX4snbJ-Ex%KYxDzzgk1H0(NQGzqIAU-QIE
zxalc!tRLm?J3F3tw8)lGp1V5qywC@5T#h^C)mNT!&H6l{A(`@n|C?|ePk8l*##=su
zr@UbWcRl#DZBRGv`hCO(?2JwG6(r&7=Jz<~|1M(HsB$~{!qIMQl!d!~ZrByu>|Edt
zo8>ELyr-1gQ5KimL9vZNt~xGigpkNx<Td~+uvspJ$@q(NpRWL1;1hVthcU=;E!R;g
zYOav4K-)YyZ@FRNcN=!cma4XSErDYla<w)eN9Thd#_Vl=1c$I=L$VR!T$kgbGq~$h
zhh5|vb5x|rOCIG)9@Tht(0m1=150N+9QD}ZZr^j&a}-&ZOJUS#C)ZcYSuxKYufFof
zf*;<v=^@u^;kGS-n_juxEPAx*#7^|K<5;f^+ipJwtlH+Y@x2dOb1Crk-1?I9!85i&
z<!bsW*t(n*O@GIbOTn;N-!g2xR5!kN%?VI}O(W*K%?CXNVf|inDKu;xi7)pvwyEz+
zW(V@n<h%oSy<nAoy>}ZWk%l`R_)LzP2cjbCj8^&@<T_2T1B3GF2ODMALzhcIxou5<
zXSp6$HY(&Rs72mwa-3;pKdI&ZI2bk=7;CUmgWD*U<L+YD%N6+wCh+Vs{-gKvUan(2
zp0~15+QvEoIfOQkSa+5O!t$2v2FD_if){F|^!VLs+zR8;VT1GEj@@y&bHBog?JT}B
zJlaM8J>fr-L-M(VIyZPClZ6l4II#I|e0qa#+sk;*IRTC`$yL60EYdSCB$U$UxRi4Z
zBQ}L}vc&mcMwx(4u%~-*2r7s5epEhg;Q~J@PdP_B85cNnPIKSkXXj~d*o;pb`H2);
z0Uep0S|qx>&}3s$Uc>2;qxR$7MLQKH*hfuXIa}Y^X#_i;eCe<)b?uQqL$QI=8s#&v
ziG981Bgeo7>?|+FMoGE8c|l-&+kz#v2zKL#-w!=Dp6l>Jl*<|0n3W2W<;2nREIa1Q
zwh6G5i?d@^Y>fRHy!t3NY&)4CCq2=_T;QY537zwQuO~94%`3NQX!GScUR?5XlX2Gr
zn=BMYb*9XWO-_HRT#Z*>c*;et;Ie0Isd3kPo3l+>o?$*)Z*%A?gJWzZI-Mq^WDslx
zr<n|UHEb$3Sva5_>?D=sPGEf<5hV_6vdA%PhMmWmNqNe7u58@(mwTP7SYI-I)ss}Z
zC>N~PEr)<Dl6Vfc$B8t?o~_NN$+3+h*GY7e1J)&Rtemt8`pV;qwRy5U5Gogbr|ZO^
zn@NJr<Vu#KqPGM5oa$@fuFvZ9Etq?-9pHY>*d$_}ebA6AziT(DzA83g7r7Q~bM&<W
z?)qj2ppVP_N9pHPbb_E0Y@?*FRkZ_a8>M5Uko=3z$()aE6nOTn%{daEZ4}GAVXGon
z!=|}E6x)os#~y7ic3?i$N5+;RH|cvT8x`fs*d@0@v3wagsXEySOL7||_S3LKZn4eF
ziT$k2Mje$JK<sBmKA584O2H0{d&>bZ`3Vi-{4Ym&m!D>y^;%B#Fm~?egRSk3@;y5^
zwfI@SzGP|^#>SKkY#&FBux1@$M=DcnWZ4*i16TI7if<;_0$)yCl!DlWKv^>kGM7B!
zTcx<__EHXGV@g{)3Qx|@_C6{28q{fJ6kB#*>K^h){pvf7{%_foByx%{=T<iQr`%{D
z*1XV^+NsaS;f1a!Z>PU{ng_!&z`^6?DdYqoYA32o<dxQ+O*cgnMdv6&A(qHD_4Tw$
zCF4-H`&$s0ZhTqJ0Hf2hsB^t}lIO+2=<hBq2u66yXMbJ;%BsaK>9ZavNZ2gI#za+Y
z@(uX3cyB_vY%QqQmuz=V-!(fnRSDe|wdX6a8Fn&Soq#RHZ!L;VY257F0)?VsL#I`2
zkfXof<k0dJXmCR5zD?x<?73m1DAzJuY#qwmiHow>lFPBuyWh5__q=6CU;B<7z4e(v
zPD_3CGuQO@{>dx!YoEHNFT66*gKK;@>E^NWxleTeL7^|aROk(NGri@_yT#5W*>w4)
zckbx7fAyX)9AMvJ8Mk-r3{8qt=FFN~h3AIFJ`~uEE~dCXtMilBOxHZ_F7JN&&OjHE
zB_3lT=6>eeC*NFda!J<abgHkd&6`dr4Pou%T2FEY)D}P{`dHkDYP6bZ)z@^Ry04oe
zwq%=;=qp+K5{15G*!#W|zQwU=x#a|i`p9dJ<X8>csXiJuvjgTt_Hr;z)Ri6Zz7?>0
zKZaat=xY|Fs3$5^?ybD`b|CcYH8v_n{SF$PU|-E1M*BG%r4Om?t#G#MiNKjG-;0&o
zyHZMzWZRwY4dt2IxIb-RlXVbIk=8Tgl8C+bCj@Q5?6jCRZsi;t3l_xD&QCQ8;xINo
z;xC{6sX7)PY_YL0m(oWA2_En_h7a{!53=ZsHnov~Fbv`<jO39S2@T`XJQ>kE;9R#O
zZ;fL;iN5;tj;BQ?i3v7tRdY;8dE){nJGzx|azH=S2Tl9#jB7IaV3NXyLk(>5x{dR?
zln^-w?AmZzSHTXsVrz!OvDfO+H?qTC^)!acN$*!|37g0({z6i&RyiWa?<#t1tM3p{
zpc=13#7s)a2Vot#$yIsFlMfh)jBgj%l3ErKTWPrzYF*1!PZGpq{N$Z8lO5F>Y+_eJ
z)E?PUuGC{st<4n+9C*cyXy8~b(Cwt}(w$x8sKCdilp1z2PG;(&9m%lCXS;=Na;>H_
z)FO;)<f<p<vi2zPqB3`Vr4l0Bs<*k-RXl>r`et?gYf(_ByOSfKO+$HY+`iuC$#`KE
zTeS&nZQo-0ZMH=FR>4u}<ocRwi#pXd1)nM+5))B48r$?SVza&z%XP9}TboyloNK)L
zCRdH}tKRQr0%HLgso4ST_rWfdW`J$-u7gdp13AZ&0VX$Xrzls8WNUVyc5QC@YJJQ5
zIf28rC^kx_ud073$aS!Znh!=TuSpGZCG<5y-*758mpk+~2OCBk`3eYpytSe)wLq5~
z?5j?2L!?%1b-C@&+1tFjK4S-+sC&N8`vCse+z)s0%8qB(P-df)w`uAJSi4M*KkoiB
z_p9~vx`{>Gk2hsJ(%K|#6H)xV_{(bd;uPj3{ygiH&+jYxR3$q|X||`KK%cO3LOsdS
zQIXdb+a50lHX=_7Nwv+pDzF2a;(=b1M!(oNo`BsJ@?KA^?PcU=7b6ft42Vw2ASXXX
zM9|wx?Zff@;@^&YZNB4jS6R{uTSA0wbHPBa_V3g_JW*)3V*f7wY_@*`w;jLt027nD
zjh$3lVlaO<+CBW+C)O*S5}sGcwY7N@bD|(8Ys*?qfaJBJetQF~J&x^@*KHA88M2eF
zuck{?ChcU4qfTGj92rBSK2ckn38%j!YVBzEM{IUq(?|POv$GZY+T@bjKuz{x1^vtH
zWU=~lMayYlYC46=sMp7utd)zGd33!Cxu_E>=%cku>$go?nodCnL@2e#;*yV-)m5`$
zH+|GT>n9<}bh>z(2TNp~wta1iaw3a|hd%2&N@(*G<m9%pwr_Q8ZcJNW-?C3G_wfGk
zv2c-DtC<cKvNKr(+N@N&uLKypyO{m#0K_SU^mEhy9PpKhtx{*BR67i73Evc3kzCo;
zPUyFI-wA_`_nojlwRZ8ucHY_AX<L)KiLI^8+uU+J;5Yl^6*LUpJ^kb5<W*muNZ7BM
z>XObIj#Eph8G{bR$y16)cxoT35*TIW7RbjxIU!hj-sd$hwA@>(2gMjK^ymN-LF>LW
zXpI-Tpxl!F@^f=(ywHr*0#(}FSj#)k>a01bWS(9$8MT#{5QxIgIQbM=cP`&?yix}m
z@?uzWP^FcbrCjV+)?PBNx$BSD+V`{OR4O&(1mI1xNrP%?*1!O@)7k;cd|3WFYQ(Wl
z<Oz#t8Dpew<JFgTv&{<RyP2-Q6+VE2-8KYd*VeIj*mPmKRHgX}#1`bnV=m5FzMc=x
zv0mY@E!D7*KI<IoNwFm@7s?{xF`oq+1#DH?Sg{%ZyN)S_ZBS<{zu&&4DnGo*QSvBE
zmP;WAY${jgf2X<SBPd9^s&#R|*cH9uve57N#(VU&Z`;wc&t!VIe9ABV){*}9&%Hu_
z<*)q~{kI>!uhfXMI{bNQBy`-|=1cudZFc`5(VdG#Z+|Y+E5}N&+%NRq@4G|)^0(ck
zySrtRziKe2+C9x3mzY<-9MHF<Rdwx|;h0?7RHFY)uI3Aqo%lizua80pG-k|Hsya|L
zA|2E#skYN%b#^&wn_p=?t2S4CRbGDe<0XvcGZ`1X@a7k^Ik#TboB+~Stj*_kzqUCB
z0p!n6{SW%+*ru+pF|}5)#Lm*@$QfYQ)$|!{EN$NOwb<qd^oyX66tLL<CD>UX<$dNn
zwthT_3_5JE1FnzASK!!UU*kVAF345<B9d^s^(DtXSYMe#U1h@#Xd5fG3E12HENjil
zg+OQt>O$@`*nj@FoV1!-pkE43_#x&5SZ&DiujBk*<pkh=UzqKO?H-W#&4LE^pm)6j
zHuEja0UP(d<7!-rxjrWZ@T&fE;_H@AlYboi>v_4T&Es|2Qk(BGu9qM4H=Zl#CoIV)
zyAml)Z4h?;_o5S|$oXGNpA&#z5s&BbA1?RcB|WGhFK~oIBFvK=$v`A3^Fm*!U@ZdO
zj%;vrC}T6;=p*>wIT}iMpeN)2Sd>amDM)mk@oP^K1sktxxIP|n`~zI!M_{{HW83R-
zlVjkfXXn#3P9YeF^#MHP#;bok1kP$ijS27QKpM438sQtU*|kTcg=@pAkts))V~yAs
zIr0&l!zv%a;h@;swU%FEGBY_Bc*e0Dj+o>qLya0^V-vAOtR-Tt8a0yxRy+2139Jzt
z%aJ)*^AOwIu=O14F&BfJ#=sFGJuzW&J;fH=TyiN;YMkp5y$Q~L(N~qTV_W4TaBQK?
zqa3Y#51#Ua<x&{*goQ+?-GFsIk!z6Sp&eI}T}sj4?AWiauITRFyYv)zeA%e%mw#Mc
zYn1(oPF!mQ`rz19u9^d2k^$pU`;tUN205C(Uc@%<uFtjk-t{$N<-R61#&ZBn!fQKv
zUs@*iIF5IM?bxm(wjJ^lm>sZu1&7WKl+F&g4eI205E({0z}PO4OM(BN+fzA-QqIaT
z_9eE}rmu>P8nzK~ygv5!a+TZToE`9QnT}m91=|&u2+SMWT;v$~QoX@OT?9F+9CeWG
z`pQO|bNL{)Ui;EC2OBkM<R0H^i3|H<<T}uG<5IYu=l*z}Mw_WKM;3*;OF~cj4|{>+
zP8(cTI9Y5n%(<8mFw!`w!Qp8Ae$phKyKFq?x+y+lj6D=h=F8`n=UEs0e5_n1R;-&f
za8^&Y5vM0hCTzYMXSMTfW3F;UZaLxOuFP%UV>{03#FFP3+chFpcMThFChfqnJ})1e
zfsJdLjaQ%OguC82)Q$7su^Z36`bi~9mP^*y4v0{3?)q!c7MNWKawnO)SbfMLP)@NW
z^z+#^L=mCO-@yWE*x<}Y`6)K-DUJUfo4d}zzM&InbD2D2<5_a1K(3CB^aL~4%@i+;
zO*RRK*5;Y0ao3~nm}|kYg>ue;B6F1q*v6s9X63-fy!<7~9XSDb1Bf?YnSNq2xmlZ6
zrFL@e`Xe@DhbGqq>~ekVv90xyb1n4x2%QMr^(nUbq<u+_S_ggP{=znn|I6r0+UB!I
z$6A~3R&pKIbsInY0Y|lCUrLd?e#;IdJ-t!U=6JrqDckh5${4D0CAS0XHn(Hq$CVve
z>!V_`+%+56X5DP;>;TGLU%AbZx1?dqa<boSlwg}e@?Pj8MH_WAM@q|AkP_rx&)I?0
z@<f=8vYY^{j}&cG@xCNBYCdP98aCJ0$*_TU|50t!ekC{8N8SAAzIeC>Hp<d>c#Uxl
zCyh9NWl@blh&*^iUa|%IY}hdFOcUg6IRMn?SPp<|oAa@pv*o}T_5NZJdo8#{Sq(By
zRJ2HQ4~(cPmjPpAi)L3xjs|DAAM(pTYWtA3`y_L@K~Df$fQ|-XsS`w_i-~Foz@b<k
zA}TE!S+3!Hu{pQ#KDW8w?7E=3g!~a<E@<|F8*zryM3YQccPx#m<r`3+Z*xTLf>VnE
z_IU%F{3MCBew%REGmS}7r?fpU8_m4Z5wGu_bc0K`TrGjNMpiHX9wl^9orekO-Q_c6
zFx5@Ss+*rV2IvSBP_R^NE22-xHe;26TZ3|Hn12ZtonQ$q53q~fHSTY7e5Quo=)xj4
z3iWltL*f`6^;yugS<n_C=ujwFHnC~`0WPmWt|m7PoKU$+Yw83S)PcIqsT&%}<t%k0
zXhiB?-Yq8_AlHTs_Y9+BF>G3w?EEZtbWhhM(?>piO>cX{AW3*X`Gtvo<1<HkYJX?3
z&-du7-gZHs`r<^A#s)ezS0zMC%ev~9K6Y5jUZt;i%TE6Lwy!F}`~Tpo(64`L5*saT
zk}{m}#(A#TC8>JJ_;#J&C_RztV>#&LzYEe@zJpKT4@pm7Y4;wm4_&|-!ghOhs@d$v
zLyAz*)Ra59k#CAuIKNx)aVxhr-}h~vtS`)~HZQHsE54oY9rjq)l-5@qo3(jHyXna>
z^P6h^j9y<o;6TK%lQwQS0kZ3lwEY&g(66PRhjmu$tI{vIFFLl=>2npjqOyTavDd7W
zRQ9(Ra4T&wAWuVy_OZv-+ksYYeW_v3^0yfqAnVBeXg_6~<&yxVQTXIwn*~eY^lx>y
zYxY6#`^@$a!I96HJg=eI<7nGa?$~TBl5#y+F8UJ3C2TGed<t&+b045+^C9m$DFlkj
zIx1W9z`nH;_mA`2*Z|N<RMGpWqijl}U+a;hgxx=aL98it9pBHbq!wwR5xOc!vI!Fe
zZ;Kt7m?D9c4e|vOx>1g*TSM1w641(PGbBl4T4qZQn3|H<gu(}5%TkZJPq3lxIYcMN
zLA=Li<@KbzhC$!nFA^Sez-E!sP_m)#5EK+P0Xv=4-6k`RZSKn*+h~#cr{(s3{dOeB
zv|U~(V%%jT@4U(ko6ca1a;Ye<TjiEO@67Xj%zCc<b*YV;b<Al4Ta#<vkZb?0Q=PcE
z%^#tBRzoAl>5PAldO3<d(#`rB-@V3WI$=6;=k6W)=tn<Fzy6V5m&M%+U;HAy?;E~>
zzUiC4NuB${=<oBsSWmH;QOl|I!!5b4ueFU;Cvs?WlXErwgcGiwk!w05S9Q3cZ$by`
zn4(3?i@pxGB-|R5kMNva-9|mC9T?0G)PTKVlYU-nJ0<f7HcED+QBGam1Dp^|4r?1$
zZ_?M59kAoe{LtW$0AcXDsm(X^G2LQ6Z*21oxyL*tgE@=Jj7cRXf`laYwM7HQQ*M5$
zpklgPlTY5|>1sNnvi1{QwYKr^iT>FPMCTA{5vniTce0p8-?Q6QgdR;Tm$vw?<U0xS
zC!6eq>MS;)y)Ug21jabqhA!gdAEuuE*Mu=cqLISmj?LN|<!fv;{5xVxVU`x7((UD`
zws`n1%6o-9-g7%PM2oECP=nl~ocr3hu-z=z<p1{+o0VA<x{4*#eOsG{cc(Mhy7GD+
zo3(j@9MbC9ExB*CdEc(9x&yXN>k!+3&dWW8vUK{26Kqytip?NKxwTA+xC6j+3$~_W
z>u+1>;|WTWiwdsq=kcybw*zZz=X4^i_3<1wY89tYcc-tk(brb(venj6t~oaGS|9QE
z8nE$i%SM^<_BJX(NVv1p*Cv-@`Vnfe@h@UKZwI!lz#4xqi{1`Ur(<btAG-#Iz671{
z1u^yC5cRR9H9CB!y*le(WbWlJkbz!a(%OJXsROG!?5p*sOs<z*Jys6f-qp-WS+n;h
zv(aDvwN|uITu#y_of}Kg1@6?Qs$KLY|7~3!ojNwR=HKLNVgxps!yY`*aRWdDdNk0)
z0->g`Sv2GR5!4j3E>y{aM}#7+Xi%5r(eQb>Zfw}*f^k-tV(Y@e9Zsqr7dj`k)5L>v
z*Ym=+i0^EWq@>1OFV5crp8WwES4H`@3p-l}-Mr9pC~_%KPvtQ;ZgA{8kmYd^Cpzox
ztj=E=;5dZSodyl=%tiC=>8S*Dj>(!dE4B>&cyZuvU?b-WC$cC6iOkO}e}S!ks2Hbu
z<IQi_QJz|PLSU-!q}K{Ads4ZI9JPNtR<4fk%_g@dcg7+~Sz|fhFOmJ(In{?j+jxyF
z6{Bz3t5J0Bdc~IDWY3Gkl!GOH_0tFXj<0>1{ty3?XXzJz<3RuT*B;Wlp5M{ipBw4^
z!$O~Xc_PhoKgdS$U8W9X3f^S{;3q$HML+iQ59t5<zj-UY|9yApYH`>z{omjD+57aX
zFC6IY&oa%hZo&>sA-B_jCv6h~{T|WX%YiP&S#>a{zz;vuZV~jI%W-*DH+YzW@7bqz
zbg{Rnf5W!iw=Y65#P^KaS(kS;et4F9F}Zg77}^{gQX)sw3CJ<(gvn8jc=a3ruCJy8
z;<RV|#t8@XwF3RE0o&O&7dud;uO!o7V3VQNa{%m`zEbOJtY0#A2=?MhZ5W#bKa}d&
zq~8U7RBW?j)4s;<3fQ>WveH?K%;j4eHtlP>6MZx}ik%(y=sWNQ2W+&Gt6^()K>Klz
z4LJpjNh0v<kJyYg-|m3&vpH2(_ET&<QI|8oY(2Nh9)6Q^`Cdj~SwC;s%=WWi=Q4rf
z)chKx?QU!$J`Rb_lx}0$HWR#@@5e@$ZHlBY^Qm=fwsre&`1k(g5B;h2ALG$QwdcBv
zcCp_{1d0um!j)JGjy>QSi+$yAO5I5S8B6f)0iEyu!-Gt&Il7a72k_(yUv||a7!nDH
zXiq+}!S7-oXjUNR4(Ds-s-5MU-=!Ss%C9ZEjstU0>yZnN=;d<0cM^Wr!0kO391ls#
zHD4=uNs}B!Ve}F`UrCRqka4DS2KJ*UG~dtfx#GyxA&cA;>#Tg5%kzTmcvSvj<B4Q$
zPs4uHTnRfwULSz{LU_jqd6wm&*pqyx9c$#i9r@eYVjsXe%DE7@UtV2bD|fO*P9K$<
zmXAHoGdTR^D2sBYs~j7)3D`XUfMFA?%9q`+X;O@M>_)K~mp9rRa(&2=(g~5*RONY<
zqhXsQqI-ut4syNRE7!*fas+4kWLWz)7tZuS+mv<mg7Xb5*d_nK0^$OEuiS<_EMH!z
zJ|37Gbh&11{L?m0ekAB%9I1Ofsd8m<WRCwC5$Yr4I#1HBd%+&DWp8tlBV!o{iQ*QX
zUC33iG1dhe_dUL5dF^+qua+y}5_07>XPlSI`+n*te~SL(pZvel-~5T6puhB&{vy5U
zP0!Q6^!tCmw9B2#OTo(biyRm1+~&-Yz6S@ev^mRpdG~-epJqL}%55e3ShS7V;B%Dr
zT-1hGn^)=Qnmgg@0PgO+?lxZ=-|NMN?9e|vST2NS2N+vt2S(-5=QfxiSB@4vbZwsX
z8d$h3t{j_Ac(tFaTp5()86k}hHMx@5feZ3H4rT{{O^*N@wxipqNsjy~HtS0V;U^wo
zqbAo!jvQl~!h@sc%V_$#zub#_wBHxEQCGmSWuwFn@V6jO!(2+!U$Fy|*eK!lUi5@d
z%p8sl+YB4U{gmZ)9qd5VfeX(&qS*J4tLfu~=mfCinz2PYpf>6t8)F(#saU1&zz!Ua
z#!sw$>3TBTKfp#6?@Px2YU9=sN!dnBcBT-$AUZJVQEDwu63uB262Y>x%YaBg8Fo{C
z;ur8ri3ca4IA|*74mw#Gmr3qRuW9~^3y_TRX(gV{*rtyj-Os}L&k?=GQSF=V(+vBm
z$D7MhqmhSfbCD`#9G%M1!o_lV@LXiZ(SO!w;hvwQPFb`kk};VG{Ovpm<dam@qVy`b
z<g;*EvobJuy<o>l0ge{USj0#)GEVx90ow@9e|}e;W}P=>-B{+ikznV@Q^r;_%60&D
z5?ikkfn2v?<H{u}JkttWJH;@`WIHW#AA}=(!U-Y%c8&}aY@;st%27Gh6}wJAIm&h?
z`39E0a8$V}_T*8vd*tj<-g|8L5J_L71Z>DhkSc{X57;1g)`1a=prg0>pq#UI3UNq|
zjd{WuzsnVE&T=gxS8em7$hEjm91Xk4_4?Si`BadDViXz8rW4qhmW6?E`e(rw+nmR0
zZF7|?f9H%jV9GW(Zu%;1J{OG`4s9-S%MqLQGnR|CdDB;G^8)P3?~X-{oa#a#MAc39
zVbt<j@?*?RUuR%vuHT*ZC3SE?Cm>hlcjqYYSr(L%(}y&oUE2IYQ}XgDSE|bO%XLq1
z#6;}AKx4TDo#0ak-sZB|JImh;TkJ~%uzQ;i&<U~inp9Bqk&r(lw;U7Rmk{J}ffEzb
z*Qhz;cy7UMF4)lK(w9a=q)!ETnvw)qh>aT1uO(MP72MHA4N)H}`WiU>4IA6gBNmg)
zoA20AUff2tHlNMDj^M1F%|;C?ea$C!K(Q5IC+|!9eXyT}<o?)~nvF91sbeJTEBEXD
z9(~8LrDg|4*nvsM26nQf1^X+n9hSA?B>eyKtwr^5hn#4(DBt5`szmhRTKbaBE#QEa
zq?C-+P5@2F(*y?t&+{*q_ugCN{LH;f&pkc5vsq6mB5HZiT>_6*OgND?*-`%%{cYt}
zS4Y_{lKdBhpakDYYMU}o=1(_5Y|bF#InUFFc3Qc@`D0O$2t6X(AF@Cdr>nHNAGQc>
z9x6VF6zGJle;X}B?jzpq<d6s3K^H8t-=jZE;B7{^QB;_7zoR-PJ8_l0?!1AGfBUi0
zhkolof8ztMEsj-ezzG<Lugu``#tx}DiS)<>Swcy>-#752eD-qN)FOL7-Yxgz-6_1g
zhH{}XL3vPXDVO&3NLPCv8+jYpRM3f(E4*Q&h)p&Tm6k->ItOeiVk;ds)r}ro&8gK*
z>L<158y4#1o*cV<OT(r?7G?Eqr`Y7wga^`YVXyvf{*D24arE=&7Ki<R_wnO0x32Wr
zmnQniXD0f!PafzuK7FJQed3Bf@ydbTd~cu^?^pT<zx;qce}AHPFPj9sS@6_8$wtA?
z|N1rk{70@A9k2AvokXuZsPy2v(l7nyLwf1{y!@N!6Q7&tqo30poUD%bA69zpHU8T*
zef$N@e`0cD{{M@i%GmbN<+)G2ILirxmtLLdH$QV+>YVB22ZdgIc%-K<65U^3`x~D+
z(C1z`(u)s@oLm@EuM=t2=0fj7+UDeS2Yp?<<>HuL>0@2V)hK_|kT-p<We)n;+B|s<
zi-xU+a;>DSuq!r#P7vsaDD<VY(#P1>@~W@ZsE-u;3ch1QALakbo=9EwCCCl$cWhnx
zsXngz3W4glN^tOo9SD6zZQeGv*OoQn4}RY>^bKEmA%07<pB98T!&zQe_SN#ii2oTU
zr(yu3Krc!{YtP4WMl*$gbiri)Y73}zil|n%Js)kq1zTHC!+PA3cVk?#^0L|(kn-B7
zGR=o#b!7KFB!B1Q`XDw=09f=td86wDhm?1^wkSyvlr8#eXS@C9JVm%(mybE*0Pu#U
z7U`e$c$HHKIHiz9hhp%M`*8$=8+q2anlTL0atdH*ieQnm6;29Kf!vg$(LMmXMY_(d
z(M4ji%cl$4gmS5SQ2zMYv1#L2=5JZd6m^vNj!#`5BQ@-bRilTi^HpmylH}Ox9C^qo
zD0tH6=K^QUAjhjZIm)7N<Cr5)R`bwd8<HO1)nkx`t$-<xa8yeT>bQ#F?fKl}kxZS+
zjfg~$Z!e}J*tPRE&jDMO-OqxZ++1_Omb|mdg4gwxzXeD45;)7L1Z?Ek5;c9yolfX+
zQIX@UJH2`oF!}E37`{#0Jm_!I#W-O%RIxQqb&(^u=y``wx#SacqP00M(rPDHsUhgA
z8pXSJ?$F0S_A&Z}pZ_5J?9cuz9j*?tP~rCc@P~he{_0=-EA-r(-a_wq$GhnHWkcYN
zZ+xR-nUUB8{e-b=6gcFb3L+_ST(jhGbPM_l>@i<~NG9}iyI)U$f?tmHu@Dj&re+6Z
zhr72E)=n0ouDkoy+gv7DMV(gMM#e2KeJQ1`pC`z5tIa(kY1V<z_~qN_qoLCo({I*^
zEJt{CLzVSUP9s6Ceq=etzJcLW1`pL&`4qHyZ=+g*(gH`q+D2uQ<6Pm?$iWUMHh!^e
z^13}Gjf75iZFxwNN8X5yBIRE6ex72Rr>-yfqKBwEVIhM&W2*&pa>;WqjCO*^ZB+8U
z<TO1Mwm-GpAEJXp$6Tysaa>vroI`FSl}aZ35X7N>ul{En1E1ud_A)oQEwYmISf>gN
zlVO`tR{VPvt=XbCF$rlUWGzx+#a(Ige}`pm57Zm1Qk>+<zgG?J6Z=p{`xm}CMK{E1
z4n;Ppsxm@4b$$(Vbh#^eJuRZSuIfcZZ|bqd`2BV>zApu+jxDu1F;*w9IpDTBI}8D@
zzi@p|2{Nmv4@a3tbs$<jSEE!{E!pcvJ9VA9zNibN)K})u_5WMrtJAu6Q<0TEty?Mu
zxt_G5maVng^b|AN?$xqLNGnZ95pi<W<vNpvAJ<T`$;QS)iYlGx<a4Bd<W@tC@}t$)
zbYNRQ3U}*0;CT(-0mvINjdw-e=Q;{mSBa+-sB81p3xY01b!_h@Ux1%zN3EytjCH5b
z2C4OP{*?&gWO1c;p0xSaKSQ60lI^9oan<$X{?|mV1|`*~?d^BM`>#_dnC#T+r9D%t
zQ(>IGG+GKo!f!zAbrkaJI<{V~Wu)zr+VipRq~yAzeWiA&%ql`8UiUgmKc$G0Hpc%R
zz5is=qj?6J?N<%>@+ko8c{m#({iQfJbCQiu<;CZKFS)yfxo}Dnh(bjJ`MBIz24t<a
z*o~vnHz0C<f<wsy#tv6kQg&hG2+ZUEuCK4<{Y>pTgp&gjxVPNT^r~Eb7bgXd2!OQU
zw+Bl(zw@32JbF_3#yKt2n@05&B2OhjeK{yC73TTO<*h+0yphTq$XCn8>BUmc0c(?N
zlx3sKS)NVICBC~u9A&#KA~cHDs8g8Vo#)>BO9^NZUVK?YjOrI*E^pTH-KF-qqST&A
zsDc(53qSj^NwSnDX|slnv2eN2s7SDpCMFfi7xpCxwgc7il9YOAf}?Mg@-jc<1=#}o
zQr_p-K;<PI<&I6UOJA0E70n62V~=2~z?M{Qq#WrI$t+Z1OhGeYt;Lbq2j%o<s*=2y
zZ{^d)hK<Vd?6P5)fxR%#JSpvqbav*&XRIQ3!v?vso-f$Mj_&Si&`g;yRoPJnhkE7B
zYyNgpn&qo$(d9YQf4MmH|JFbJB7Nmo-J|dOZEv8DefC<M?d(K<;gy-5+D-J1dlUWW
z&%Q!`ec3d+cW=?Pq0rkG=l{Fkx}%@^&;xqmwL%~J*z$e%3;p~5*7NkPH|^;IzsiAW
zg+Bc8`}Er4xc|UM4<e7}E;NtRhd;%Btpok^haSpi_j6C(g@f}b<K9!t=J{_en-RbK
zQ?E+jxO;I)ANuqI4cb~Zm+$gM>vHd#_ec7<k0$yDADQSP7wMmOcN!o`tZ&RMzq@oD
zGM$iliL`mqHZ^^vD&-P{#QIp5dl!ACfKBBNPXFb-X@5tY*4m~?{+6ren2^Z(F}C>t
z{kxX>rA@N-J*9^OHt9>HYx9O}`O~C9hIw}velFX%V{AorhIMnNZ9W&ZSzTXpeYC!&
z*l5AVoc^wllFU2W0mi<_Li8<S3wD6l%p%uB#W(Ii3Fg=?FiliD!0(rTFV9P#?(9J8
z=hAL0(|mz`j6}FxF8ML8l|CsoALI`9_O*u(MP3q6xje)6wZgvg@A~RWFd04ep|pH0
zOg;R714r5CBKlW7KY#=eFXbG(xz9>Bd_<5n+g^U2Z8tmM@4>cDRZj|V8DBqK%6S9f
z4o-pDhJg7!#MZODh3%hLer68V<c`1hK!Ta#NdOXAZ=V8gW9Q@j(tY0MTm6jNNu8us
z7VbPSK6B@S?%utFM$tify|dDDE3b|@P;@NoaR!d0lxuu!#x8uk76(z$vz9`4f<`wU
zNGo3_(n*N?G|p<jAJLuJIjh&#$n1<A|7yEJXRrwtU=uDhB<nDzU|C`HtkeN3t;&t-
zQ=DCO8(X_h5+N>aHcuVa4!dFV>qo<u&S5p)EaNSIB&@iG9M8$sv45#@bZkWii$}s{
z*KBYHJFc{W?G`yc?zQxd@GU3$8TjFElH-=Xay|F%UebU3!~cK!pZy#Ex_185jvm`i
z=KJ6Oz4U#*>vz*1{i8of-})`zERlS#J$Rs#ZS1gied~t46Xocc%{zTP*SFA@?D{d~
zn9tb(U=@m*l(*%0E4Ewgz{)1k4cO#5*eF?yK8{>(z`BY3jNBf(Zy8oA-^BWu*v{C~
zM``o5tzTo~3F}jf?(6-xjZ3;&Ytaeoa_%PA%b4}bgNHIPuuV5DPEY&--slZ%Lux9P
zD1Mpv@9)y*UMi#;apst5wkPb>2Ioj$u2CL=b_5T|byi1J-6$vW`J`|3rTDCrC&wPK
zS&L%7Qyo3AZp>B9j-Hg?fK4{i9Gh*HJsP&?FijpA^a$A2a(!HE6xy3ClBb@?^;T@&
z=I60xl&{<THtem<zf^2mUP`ZzO(zgcP*>QhtY^+*YdUeNkGA0$<-XPCqK_Nc+qa$S
zW8c?Kv7MFc4cHz>uJHG6_LVI=uvvbCzBXGN<VugL6F9|m#zqM>-xjvVXmhX-p0QCk
z+kpz~In*8Xv24jTVq5jK*KMOr5I4x}Hk~-p$AFD(JugprNdL?$M|$DanQ%x0{W3{3
zqGCs213||y4qFsw2AzX_n2}W#cdRt-Xl)?QNyIsnGQIn4dwSoyE~RMJX%HMAE&5RO
zO^3dqe|-RnG{f@XORwBl$HFjrK!?s7`c2Cx?Pub*ARqo;J{7`qw>|Ph`5FX24=%Jh
zA2n*owJ<G0^!|e@iUD@^vnbCaPQUpH0@UmD4k2meNjXlIS};r05n)7_=Qi&rq8LHS
zzoX5CQ|ij?bi&=sN<a322lNB~&o9t(mq~*uuuCP5Aw=#<@;K=zP<VNb1_d#nxpn;}
zd@Yyy(%|D>va)WV%I(=2+ixZfU_b{5b<4lN{ok;)ceHX1`tgc=(|O*&hH@BGwHvwr
zF8le!$*`^PJGRyHRg<FLhE0`sz&p0(4g=i%<j*080<GnK4qI*i!#3;<cL#dQ8}{_t
zRiTGRK0(jEHC{(qn<F$c>8YA`Jh!8#?j(BOJ1^*s_p<NV^9BL`>mUB|!{zx(zww!C
zWqz^1Gg`|n=mY_Hz?LF*Dc{nGjBl%*+{H<6ZBEq7y&FXHhAwNln)1^&*Sbw79#tRh
z-O?Gz@;fxaw7y7GumL{wb=$9mHeZ(qouCb!IFaj0AFG{w5ZveO0BvClb|7{78lJDA
zFKy^!I?;)(y3yt<xpVpFK7XM9^oQO_-~axn7pFVuqOzUh#)*Iw6W})cDJTCZuGf3}
zIU$HRM);fUHtHY#_mEp~bhQ2a{J66Hoo%n}<k{ur-f^h;^a*FvnQHW`tMc%R!HF*}
za|b?2xx-0D!)7=i_jhsvz$V@Pvk;f6jX=~QE;$K}aqNpjr`G->svg_tud_W2ADl_~
z;#g>Mgnv{A^@QDd;r|NP*~-yCIW(x2H!df6-npL&j#{FDXFVdz9nZLxh9M|VO3p)W
z$3aFr4sLa=>Skv>59)?3#iPPmd7?~t;`3bJfNw3Of4^*~RLhp$u(tdJx??zEM(lFy
zs1#H#6?I4Fr7QZnZpe8K*Rl!Z-`3tgB;|0Ql?+@K0Q~=$PJ`8E2-vvMqg-WYYu&~H
zTZ-5w<?>!*9UL3lG_=bQuvh3S@5p-+P(&A-!LW$)*yas;>J13$t^wPYPLz!{pKNlu
z(dM%@tnNY&ij^voT~cZsm&35q*QQUjAy=kMdGUo8=+{5;5&GE2KNgHdJ9?~ZwMt)n
z;fwT(zxWG6$M`cJ_-Xpy@BLo-ZQt~biy=OEhH}O}L$2DFnjAa1hBnvoB+&v9+ge|5
zvja^hR7ciw9|Ip}dp~w!VFy%>^GUxKY(b9s7Hp^bXm+6KMA^`Zd2I(6o2+=1LSS32
zeKMN7VWWCGaK=V$=;M|h@V><ZUJ^sol_$_hRH22?Nk2y^$O1UX)%wm&HfnesHfrnI
z^iv&Q1j>pe5u=sbsT(={f$?Z-Tq3F`<=tZ5j%B8G1mBl`_G2-(b-GwsoQ}eT&WrkE
z;??FF__rS)#loUsk$_8&-jpdw)kSbzgiz<y2@~m1W@|QGD4oGpSJ-0RKF@8AGhd*_
zkJS%q>l`@N8n$|hZR0xD-C?8Zj;&;M`Qzbzes5p*S!{L!h)#bA?@sMjubZf0OHuNe
zGx{<7AeVKUtJ5r$<Nb-c3LQ@;cht4j<}S#(>bX%T$eXOw$N0RYIa}$3ag);x`Y8G;
zay`YC<Hv01gx6i$r$@PX6nkxsV3UhuqbB!=Ey^{@{RA82eu8ZqYSY(Dt!`TNwRHM?
z{DWarj@{G#5c^X24Cs6f>bKFig1*wK@2u^FnYFIX?b}Rl;dM?Y5pCRBCt`oO!46no
z%d~9=G#5^&JIb~C|7mt0_1|`*9av*4>o)IC0G;Y1_4-&h^s!Y-*0I_xYTwKOsGT=F
zAMFNhd{?~22WE6^({(f<z9rI)0CT33pRI@O1u$>!peV+P-dP&ttRp-B@nk#y^`{*p
zm}XEWv^&hXZvWPKJ?I`Pc%egZ2mi*EGiXG>&zg7Ng1q)|o}N#00z}?tp4)EmLK|nb
zl}lYA$ZLzUTCf;LHIh}Yv9ZfW=21o5(sB}?Ovhy1xC3{+QBhcs3~7)I&(&uQz@V&i
z<;JN#s(#OKrsuFj&DVoQFAHzE+>g#M7bJiM2Rolm7Qd*je<YfiZxw6^_8io4swb1N
zc{A>ClAa`AfipkwJvU&}Yc1czMv7h3h^fD_ZTL~!7+C6-ab?END&vt;+VhRrgcT#J
zT;*8_M#^d^igD48vYxJ!B~67s;)FOkHj^XR8;}Q262w+~n_(mJji|in2uJ*X`lTzO
zCKP%@W;0+}FKxiIYLeRk*m&Lhh5Ivo?8QR=>f&Vm#;@cJ&K*7b^g#cg|Kb(;=w~NM
z68y#Gp68y~HD-z0u(dYVe1QqHc{Mle*5<M~gGB8T4euv`lgPCKo9ZJ@(zD!$CRfc_
z-Evq|=%crB?d4|JtXzH>JJ7|jjXD+}IL-o1Jm{6N6=e|+x+M#!fE;Cw&F`L9*rcx3
z*T6ZW@(KDVas^eQVUx8#HEiTMpaY8~OYX5@gS(m>v(#5huaCw8z`iB+DRugosIvn(
zhc?fl+^|7kt*@v)s~?WUK2|+V1UsPEs_L%gRy?r-YNPmcfCe!rEu=)-&$CniNRwit
z)p_@0Ffx(b*R}nO`Cj-Z)ZOKLzL&La=dnS?753AG^2mx|_h;Js`bdH(47>Rtb8h1n
zwM_~4Ypnh4m}7`7z+9p^{a@eYp_|V5Tr!NfJRJK@IH{B6P>jL>9~S@@l<Up}X_CvZ
zBhJE;#Fdy;8t3&0?r`H~X0At8o&&hTWuVM@jDl-tXC42q9+4yA*XG~hh-)clF0rF1
zFmq@#_9N~Wj>}nj_SxaYPNt&|>S{zq>4cw?k9>^6fzHltes?x3MfpD2@LdZwy%sE!
zat$&sc_qD{n_B8-Iq{K?Fu_o4>WCDqFiebHc={K-3D}M@!BFgc3{I}0l*T0}lOxVV
zot5{z0&A0_b`X=BbQs4ziP4j~m+NbjGdjQ#4p@F(u__<89g8%%GPVg=JGq)1ajkOA
z+UApC)ePM#$0*m<xfR<{zDe3#<l3;w_0)7?wrj@9T;a1iYzJ)IIMy*@pY(dUhrfGv
zIRabJHZ{5OZ`>>2tjSe$1ahnaTc?lQ#vDz}a@sW=7$8?`W6{?gu1#OjclcPP$u;uH
zzwqLV^q2nPU!;HZGaqO@J8A#b6F-{Q;8%a;!}NFl_TQpE^B?{P^l$%Le~f<q=RZiw
zd%YK4bej;*kh3^wWwT-y9`+3EN9#LLU+0KTuf++U_1Lc3fgRd>YIcBdJc`<c`PwJQ
z+Ry!{>|XUV+5yv7!#0~7bCBx<Y}S_`SN>1+Q`?;RXeA#9uH6n)<>}{d5q)%hg+3<L
z3ByVOo9M`}woyrJPHgi$sJ=FxFdH?AK4=~j?MpjgbFTZ{=yt$t77I{q5(&?K>|5Sf
zHf@w8!zrEpoL1P5z&7qeUn;OsrW4Y4te?*(Hp*>(YC5nRl@Iwasa*Ma-Z)XLW~1iT
z=Fo{_G49p`nz*?emkt=0B#LsL{S*XOa=?ZxVcauEQFL0wh=eEk7kyG5slk8X@s;`G
z=a73rxR|SOsPo)W`QwXlh4b?h7G!&j@6#2y?FWs_Qr>71PU|Wh>&k<^8xl5Pi*T$9
zKR4?matg57nTm0Rqn!K3q}T+@q{p3wqkT~Rcq+xI{-&v66B`BYd&SoB7hLezFcsyY
zuF9ER5Z%c23dg!(&pL0K&AH*&)SiwJd%(uL`a*Z+a@EQF{&EyY8rMyzPvnU4o#n>&
z3D%0l<SV%f7RQ#b!CHj3eB5W@XP+^K?u^@h)-f@U%D*i<{aNW96`SU&5jiuqsqx3N
zPKaE0x=7+SPcB#FT0ptz)Isyb@MfQFz%sWzV`E&!+dR2km3KeMcd1+(Hj^ta@)?_a
z%cz7dk`sU`@|rNVDFhTCAb@jPU8<95J~ke7iD;F421(xUas_sGXi5Ge#on+Px4r2^
z5`K5fV<K|I;!<)3rCuKy9p^=%gd9O=b1vs^^8goMtEKfN!zNT2BG<w7bx?nn=la_1
zp|1y(o6B`pxf(XEyIOEgf<9K&x3t10CyB&XYn!vhV0|}i7AZVPE(XPBT=-mWG#?_j
z0c|RBr65<$4Z=Fla;l<_$!!#)5F3@XuZdj8guVnjZ~+^2z}zI-0rVxdFDEvtzz&S2
zud~S2^BHjYKFgRX`Z~|x-M2Q^d<TZDu5DB*qL19akH_9d9U&)v-rL-4R53dMeU+Rm
zQ^STf7rE|o>r2QPAo)3{<y^5f$N+uRMY`tOBC`X``3^g9fZX}rV(XWA)gW@yelK$i
zwy#XvforuvSt9@WBqHA{4qdKmk((U<AN2I6<Onb-7tqEqwIt6jBqzXfeTU`Fwa=5z
z7i55I4g`(zCUF?Z31j(dU(QZMkvoAZQ@$Dj1z~sQNuN7dE(GD|uH+jdGxUsq=3^*u
zbPWiUn%(En%583E33$z~A$lqO7r6nES1YeK4va>E^TLI43Cv<=k<FP82ghasJvK+K
zn3qQXh$REIje$ALL+ym?E?~2|75%L9&_S;X)8^1D^IVY~PQ>U5gCgZZH-qs>Pm7Z{
z0GZZ=sY1-bSgW0`wK?*#ww-lOt<;{%4W7a6U6@v<9L3RTb87L_Vw~o>*^%2}t2q6@
zbqO{k0wp^M3~bVW54u4n0YPhQlhTFQH6pSzunOgmU{CN<L1%FCLf#GRdcR^zkP~Aw
ztUb0Y(bw{AkZVpBv_)V9m_a$D*tp;832b1UC&A{|_HFJYK8U?hY#QNT35jR9*6AR$
zE(w9D{BBMY^vs=+F2}{b7Hx9^Hf?h-2pD#@ZOi-rs}J6%zx;P!ra$x7U!))U%U`7b
z`WIfMU;fS4#0J0do+f4HIfn(hE4HILw1G{c-7$_gY^}`+`Y2er%}aq!^w@;n$n{k>
zw#2Cnov6?WZ}WmEeA{mUwlr*%1DnuR4e3N5$*|QKr}B*vK--x6it1wt*vcukq;*>&
zWbIq3uOhe9+FTsFXya;qNgV2}ubFdR`l(~16}H-8%lJ0Mrfn|IllA-B^l=D%DcAvJ
z1VG;@2iI5WD~=6*VaQeWks38JHo62`ozYje?EnQE#Z+GsWuIX`4+poOE$3`=zDu6N
zU|*+TUytC-w<vuNqJ@3sch76vf6lg}ytD0xLwAC}u$g~vYg{t+f^OVO$;*wkWSZM)
zGUxaw1TlC>gZ*CL{GmGmkP@vTZ?sbv7+&Ks-)HPb5eDsS$8YsRS#-7&m9eu`5Q-Cb
z<11khPCD@wC!{%KCf)Vh!2!tSRFvCESVUzqmXHu?DLOO<wvOMka9i7MK2-|XkW7$w
zv`ag+FgjMf-*#wbOU9NPHxs{O4`;hXpmQQl!IpjUw?jgywjkhd$-Y=7M7|1ZPuA?`
zf`?|OmXPw=_}zJ-TuhG13^0k@2ueh@yOh;&pbnM6Cqv2Qh)Fj!$NxOFNCcjY^YeV)
zUa-<Bwxf1d83xeE%I$4(Z983xE%_0ed1^ah$>eO<AXl3ViCiN#U^i?e8?j0mB<ovX
zYjW+eYgB}tu)ySnQs3qgJ9hVXpc)ZJKrJ0s!ETY-NHFPgow0~yov?*gz{cO^Z9KO`
zC)uz<ZWVImHXJwF+_1^wdC=s69Iej_u;-q8jy`?wZtH)`fA4+od+87U!9Pqt^;17d
zAN=6Y!HKD-H+X~WC;#r>rTeeEO8@-t{66}c_q<2?-JGD0kaMv%N8hO@*qU4$HrsLM
zO!eBAL|?J_)B2VgY~yqjIa{0Knx!OuESBp*<*GU$2S<JKY}h0zEZN4#3fqak(urL6
z@Om(|Vs;?u0+@B`Li#;8+z42z+9<<HqL1M0A9c4q_H(lXvCZ8^S>K8_s>4RIxgz${
z2AiWUa63Ctn~f@F2Zm+`RF2I?k?X52><8rAkSLjw^`w+7&T6w!+j3P~&-$s(o+8-A
z!8jMUQEvNd)B)|QlBiRhMS9|gq;IJmP&uOC&PYa`$Q{ushkO|+Qr8tfg&>ht8W<>8
zeW~t|kM<YB;QM6?pm;RWCKNJZt+oMU<!Fnf3;jaLf`W9yOW-<$IE~&z<{I(>oFUY3
zV2#@J`csRtr5XZN!)62-Lw6M$P^fxjmGo8Fy&%7)+OXM1kW&hwJlVHYM3N@0$G*+#
zHf$mn{%1AraEp^~jN48vgQF%z{&Okn`=}-D6R}tF&<-^l3Hf9q%>@<$cvB{embNHc
zeM!NyE?;U~^oEsk?$98%gEV(ZvI8?B<3a%&?zWy)DC`{Jx}wcp9|+Nelv^Zrg3L{>
zCKFYN_Cksg!ni`C_SjS>D!#?uCsD%qIE%D)T9hW%Aa|9IwRwV0iA-a#jo?rId~BmF
zxd^sOIC0qmv9tFTe7~(0s`ZT~cfB8dg{Xf&c}z0ir$Wv4-eNicy|z1Lai_8r8%jZM
z0=7cbbVM`a=?xk8CsPq?ch$!NS!CR!b^u6|>PiV%^uyZe6tcQa=G0_P>OvA*V)PpY
zIuP|$?$6Z8?UY)qeXGa-r+8a^%?3JDw}%N>&;|y+nk_XO1#GVG(CA>3)NbhiDJ94q
z_OZPmvGZ<=$xrRK`w^L){Cti_kNLZ73<U*%+c4CZ!?(7|iDuJZ7)8C*c2@Tip^ee!
zYY=orRHj|?+(Z`Z3Hk*U$@;9gO{&^@oePlDC8+*X$hGOCwOMs~hdx?Ar6`Tla{01U
zf<#OXItPE!=M3>@Cogy+XL-=nsiW)lrc=#%A@lm$=J^%xvGN0)I!+6LYva}DKos^1
z7>hvV%^*0K*tx`kf4uhR`R0W6Nk%zyMoUfr4uS~|{EUsIhv57lv7YgAOFj(;lLWiT
z8ly$M@;5N&^oa5T2fNW^i4%<-ceJOX`~0vRa2m3cZq@*v>K$(u$#FkUVia_ZEHo+A
zw4c`iNy@b24(Ri`ma7?*EJE+Pd=p3ZQ}KSu?-Di$#y0H9OuSH&fL282(87hkU>U9L
zXT4@@;uKfx+Ne5`FgA&V<!6}&C6BnaB)+3yPr_@SC0g02!VH`0fUXm3LWDXg^{jeh
zZ^A}u=$W@aT`E(J*q<WU)O^oc|7dcaVOKyAB=0UFS4t5Z#s|@XEWH2vZeFWpnZF6G
zjpSb7oB&9GT`?+J8;dh{FYV;dlgXW*U!0!PrRezI`_+dC=+!pAq-)wO&s<#I0j0HW
z%*(r2lI)aZTPczKs&AU-3pyeB4|cAPKC86T9PH?3?)s<`QLgL+Pr8P!K_4~Y>m;(2
z2z1?zfPRjmm!i+Ss?H-$cG(FGUGIxNOPdcw8`xAQ#$I2gZfo<S>dz)N?rR6UA9*FJ
z(&(7JN_}H%b9p|sQwTCIVSV+1DS5vnw0Rvju%XRUy3oE_snbX8=K))tQEqZn-vB!*
zYV2!i#6(Mdt=hLJ*a3hks;_=Bpf<Ux6GnAHv1?y3>Lm3Yu)bcZTt&{H08Shbc|gF!
z=)uJW_LJ=-+h+~p+R3|pquA_g(M|WA(YXf)KHFNM^oh1#f?#y>fSvota0;v<Xuz(o
zI3EnKb@ar;;B<0?`_GO`6zGT5>iX$U*{n$IBtToQR=;i(igEt&=)aR302PyF0aP?H
zrXUBvy^9Na>fW7JM&~*I8`a7X%56uql^+h;5gwUeo39a_c@t-~UJvRpm|G@kDW6Zd
z>!q{8DP9nHI=I7W>YPIJd^7j=<MM0Y#tkmmhY@4P1~w>g1@>Fzm_YS2KPI->c2xTu
z0H;`u$K0^$;1aQ}<>+!c!~d=kySgKK6V{V&acrgSIws{<7xTR#$9Ao9TI;}CuIJkL
zk+0X-POh6=DK&ohh@HZuaov~L`2Fgy{wn>)fAz1@uYCB!^b<e+qu$^D*dP1f(qH%s
z|1bLEf8yVvKmX_cBZ@!6%D*4^(I2CK<&S*7WM!AO!{EAZ^LYy!<d{}+-NO1M<p40b
zS-(Hqm$tF0zJluKQL#M+SG`0G43CD*Z4~--UFmCwmF?#=-z?W@KIuD;lS|=|unsLp
zMYX<TSZ;0eN3*B5_w!S1oK*O!r|ytNFV~ZCtBp(RW8)mTEWQA9z!p8h@yh)xjTi+d
zsqfG~;fr~jKPYE=5l574=*Y>pOZwc)x{+#5L5-ZyjWl;6;W`iGod0qSM~)q{)%~L+
zZ6w#`*z-2z|C=Na0a-aU2mT0pOmmJ6$*7{#kv1T(A!4)R$65CPi4%E?qhb@A+9Ywj
znWGulB$^&|xnnNaTZxQbD#D((K405L$RN%sz2D`AIhjQMWPDeFe?G0TCpj@Nhr0dw
zTd>)Q;f5`fQW6-pgb8dt!6xMcutmpVQC%@?#gb&wcAImbK8r1uXI;=6k9iK*Os=Uk
z%CBKihvMAnBl1{8Y&YoRx_pgon%e}vFW2n?KZ%`E+wdoi)=JQcZMmt_y1-_oh%NPU
zJ<;dkHo0o@UTgC;HcM7N-=vRKeI47_vIo1IVoP$*jXFUZ=uoZAiGm$Sumk11KEe)I
zc><Pm`najD1^qOo^ZFX>fXR)dFEty*&a)|ClXYa2J8j#jlYX2Y#YUaBxjjGF2Gcn^
z5cJXQKrJq(jLoj<IRir7&}WldrxVaew%^MzD}Kh$zB18^_h;Eg;s3{Tyi5&?MEXh_
zPtex^J|1k6BwbeXNmUhtmRHCnftsRJ4Jcvom%BuFFEV}QoA>nf@4VFK=i)R2>Vzd~
zxjagfLnz0kJN#d|{{YDWM{vy(*-p=sI(^WMPj#&EPsaz1=6w3jg(d~H8*xJm;=p`@
z|84^xo!SA@U8Xb5p*+$@s24*wg*>7^M(Cqa*PQ>xQLWRT>eu#eJ>AgCBeoi@-MJI7
z@!Brwxb)QBk^c72-lzY?U-%;3T@>fF2S+%vv8k7^;{}hC(AcCHn9^thWvx`<6nDMT
z&F=(9U^*$sd(D~5m(uU4yGLo`3ifAn!)7;aVUtLDJDGknHsKks;8<T_BRD;)>BFjU
zjZMD6<c2oLwR-ufTu3$_tZw_Z9^2Bk9dCa8b`0<v*q{{H+ici;1D5RxIN0k3HvP64
za<f2z>NKdLn>=3JfK5cvVGFl}a>rJh-AbilGr36JDe6RO{dhwk*Vt~>M=dvpzsa?3
z$W?UW7JXdn#9ALICEuv&v045Nb;|3TV_#J4XXV}|A17tj=I5|&ws|`3D<$U7NUu*P
zRQ&@s7I$d#^Vm|8d&pbT>gIoDdirjrPu`#CNB_jz=ns6yJ$mh7I{_tgm6d%oAN7qn
z0boD1y1v|LiLG6+U>Z_8k(*bx+amVuWST|juitGaoXPYZV@GHE2|fd>8_yeUkdJAk
zb0*FobeNPqWk^c#X1<Bn<9itXy+8Rwe`>412Ca(4JcGS^vDckw+~XXFK`6R+L_XjZ
zOnOv^)CO35)HRM!tQQc@d0k2<r<NJnxW%n}NZqv@Wv@D6OF2AWibk#uJ>PaVryM2%
z<}7Lx;pADHojZJ8_gs2xb1c{7E6zhz>*=>a+1$Yx%Eh5li&Ol}Sb&J5VCC3i`FZln
zA;=ZjD9SO^eIvG6j|v<2c!#a(WI*Javt!K`(Tl~C981o6jHl9S(YV4!UERPoHqLZ{
zTy;@dwsj&moiMo;wE2Kzi*smm!{%+COeaW=mv?eC?2o9AkqdvT&27hUTdvL7DIAvp
zyKKVQk?J#xadr}Oz4xAehF*R3W%}uV_z%ep__zM{Z>2x<hyIZ4c7FBOe2o~WkAM8*
zzT0X>h5!BYKmQA|5y-gt=rrdRa3`KmWCJ#|xz5Rv(*m4tb95{uJ<87i+vy|hK(&6n
z*2i1qZu(eP`m8#jbQ!HLAs2|XIr_O^TP@am8&x;#!0a}t!!~Z|#2Q=QmrOtNT3<&!
z>Nl0<JQBH@9HWgA9XO|t<<aec$u%{(mS8`{0Tb+J3H{vK+-+34#YS!QmAPT7TiD#z
z_x6+LMI$0F62>MQmt<m)bW*b(x2U%KFg9-KqOUCD*5r%4lxzYVCs0r7&m=`2C9M+~
zj?&oED-UL}Ig!qf8;3goPPpswe|+L<|M|Q<`QP*pwR=Bd5*nK&&d2<3u{`_w*`H1J
z?iA{__f!9#hOM@D*B)D<4Q%oKwf|mQ(b%)qzrJB3>anfm!asLL;s3Pn49`c|ZDFG|
zw%W;6{uIA0mZOZ;ZBA|NQ-drw+q|}N#}?jC;oE5aUE$rEa$U7ar;q7&eT?rv!B+eC
zo7_*Z(|Ng5-H^NbHWgdy+dcLL=VA}vCgm8{qQ2MgtYWKuo3F4vjy}fk%#N-4sR+lG
z(y1Mwwz%%TjaG75%k2!dwT|_233ac&n^Nlfg6V|Ig<{>Q{olG(-q&A=Ivcemw`ilN
ztg-d|bdCK)C(hV`2!B%_>k9j-&HdTBp^p^mHoaWwBmWR@vTOuQ^zcx9Q-U9|6A;)N
zmFt!tB(1@9by&IVvsyW@ib!h`il&QY-t^49fu4V6q`n29Q5oMCihNwbAJ?|w!PT|g
zW7J-Hj{^Pj{2|Iu=Wut}?-16+0~{`7zJ=f%k~!UmLnhgpqiAn8$^|RupRFl&ftNp}
zkpGP-B~x<xhgdFaw^>i@TCOh-w!=n&&<-IwbPhp@R<1OxJJGV}i{NWJ8E~=R(QkbE
zNI&x5JP>-+<0QNLx*;fY-BE2dbFL#Q*Z8-U=Nv&dMWd5#_fyLUF)ZSclO4YSo2Atz
zzpBhdPap_iH`jp;?TUFl&1gPE-`6=}OG2+E6frqqONNbbJt%L#U3b`)KXUXj<HM1%
z3T$>wpy-un9ecy7{P0PF$mJ(>Y4Dv!Vh@US2DaR=@w-yi$n8>ExnYyCtXK^j2MU=S
z)6lTVwdkK>6YVs)y4+Q6gpGXylSD<Nbi^jto~yw&qC$Bd99u#D0>fr)-gfKBq81t!
zV0Ss<#DyQ@0ydYUMUBhOKCqb_#d$fvpQPC3d6(lrjXz%HB=rSs;&g^SMr<NSYjejg
zvEH)bt()Nkbf7f3)zs;u*nzp}V<$)C-|)VbN1SX?ean8Dq{%gfzLYv_gJ6?3qlQg)
z{u9boA9e0AIySk+i43y?Irc38;Xoe0>Bo9)Q469IWdmCYeZ~5D)CuV0y3JL8vEEKW
z{|MN~0#meHhW@F-4yX?B`|n%~^wMI}e&D<A($~F%>D_|;EK2P&M8C+&es<CLEBk4|
zu<O7U3qq`B`=f1-o50cbV}5FWGC!q|joPQu#SZKsH;hZNkx<PiiJ(RESLVhzV*}&W
z;fOto?9c0*;q}cQ@=b*Tw6=+;9h3HmO@Kd|qcF7%fsFF#MCvvK6s~ht8^^lw9u1=o
zK1cBCTjc9ul|1K&>m07L4Z>CLZwX|TgO!!rx$MDNElF4lxJGxzw>=9Nn>Yf;$OW#P
z)yA*Q(fRyA#;ZRDtYri1xI_K|@RVERt0gvdzHK<&#erKRufB4DGewJhE4aY9U53D`
zFLIQG9-3>Rl*nB_cXB;~PkY?;a@GiB@NIY46#D=^_{ar5gCkSr+W6lMyYn6nt9%7$
zbK?RZzy;2AiM`(ktfb#&*d$*;$5XD@CbX$x7hZGaToP<kF^=^l5z2;5c+8EbyiUNP
z-1Vgx_9RDuH1ESGdUiyl_DP$MEe`|%n_{&*4}<HY=|q!j7M=9uBDu+Ro-CI_%U|Gf
zoo08mKl{cv(!cP1zmwkk-uIz*tEITS&_pGFc-aK_)BoXrK;QGd-z$GNqazEIaZf+;
zH~t3wKmN?0rl0wlpQaaHc#+173%Yx`Ow5-}0L5DUTdeQQ-sYp`T0onp(B{Jqa-E|c
zQ11F#jk}&;2WoEzGI@>)k#lNouH~BNVJf9d9?ldpCRfW>FxfTQe70N)LrXxj#%{d&
zsuQY@>%J3pKy8w?xgSF-Ek}jQaX!Iz3~fH4Tys<a3vw?AmeP{rtZh_wIhMw&-^sOf
zc0lqKtZbC@t+Cfvi{78sHmbDT3q!C;<F3hdavP<zMQa;H1Umq^MjO@1l|mkfUC8y3
z!-)<XSTPP6-=7Y;{kUa3vC>n*xMkNe<}?=!7Ol2&eKLR5JdmVwhU{)bm5fZ3pnuGl
zE!_222jv1Eb@6CzdU*++@@wUZ=5n#0%%?jl-?s3*b54Lt!da@k`kG6IxyHqQ9;U|i
zT|gzU%fe|b-1J8*+H>Pr7oKva?Y}<CX3vQE?EyUH7Z+p8S1^^vS$$NVOyL4&>>O!m
z*vtk2yX4PU-p|kR`*rRy3AVlQX$#+Wk_cwT#`o;^gZ3rnF+XaO>m2&Aa;z`qhoi`K
zA2|QHF2N3LR86i88<+EQ$AjfsAfGoWHa&qUy!%-L5DXjhi0=&BVa6If$+Obtf?YZN
zHP?sbD_~n)nq04rvKSbHT)AIgTqv)bQYvb>*;8%v0dh5LCReRX^6V_wrsLG}zq4Gy
zyU%q;?t0nq<~F|sPq}fd2W%AD{CG9V0(K|I^9#n~)az?r$<_1~*fc;TIp3*cJ2ZXu
zIo(pJ$c^uh`k1Qnl4s=4$gRzt^B?2R#l@g<y=wX>ww~!H7&~K|=8&%daxJsys`0-U
z&_NDizNvi)*qLg>+WdGF3@n!nY{lhTF%DIgdxcJ*%^B;#c=h*~J9{1o<AI%J9FR5#
z_O727<ObOR8*(!UmPvDUv0UYTt{XbUed1u)tS=!az<$g=A7$Qr(Fv9#B90x~taV8~
zgGu?}ht5VRHm2+2er&lvbc|H&Qg>F)e{np*Utl&$>P|g2LYupdB9%L9s^?S**rhKW
zTCN3a^IhcpKO&dHKt8^6o6FqUaxFlvN96DkoyZye95%}Bfa)X5^>BR<ecW9P+Ru*%
zX^+cg&Pf<cMl9MZ>?>14a&U^A{NwAT9{x|pomn~mEhhkTar3kMjw5meTrB0I%$*Np
zxfIk#-=h8W<ht4k3lA^{tpz~ww@PqXLhws)23r7xkVw=gd(N=+vkfNOHnUTj1c!^Q
z)A{FtQKd!U&!r`GBsf$oIk2qJmbQ^ObZ(KD{1fN<a{twu^M7s$Bl*YWeqzApl^OZ)
z#7Wb5p{<<f+k4}zW=`vzJM7~I?L>5B@w+qh^4WVt|Jt|Tqi=urj$S#aU2Gic*J2-y
zA6^q_lJaW{7x=aO-8k6A1J2z~jucLfyIz9Zc?~w>xDF{#IC%GU(-{O^usw;nyl3TD
zSDF+Zr;THsxNiO%P6jt@T&~#UTqCe?x#a+0nv#l~0Lpt_^m`bGP^unyLZ(V1yLw7}
zEI!yoEhm6+)mNQYCSYGC4N3ts;6y>4Tix9E1sm3{kZa?vpXJ;9TdQJIEQ+nn*N|gU
znO5asC&R}0;rG{awT0@v<TgFJoCO=&n9%0NT~F5LCMV(izZTn`R@gGyT)r*oi7YSA
zkfY~PP#w_n*5>?OsQ_DU*s`6H66`aa#Mb6bZWY*!+rD8N8aC1ZIMZjt#`c?xyFRxz
zH>M@k*N7c?SO!FMOD=>7a_q5@_obE-py`b1qhZS@*jOf-f5Y?<atnQ_pf9=Hq>Zf2
z8QW1eL_%LnE4iB73|q7VsfK(7=xZtHg!dI%wYk}W1bq}cFuA^pKBCQgJ21dMe7#KP
zb=^;Au<=Q|W(U;1K3pn%?>lz%gWq;ZZ+?RcCfY}~zijtyoxf#2*|x9C&3>|<fGO1^
zS5R=a^N({N4#D=@DL*Ucx+`qIjXPG(_wJDk)#{c!L#h>RlcJQ~7hc+&VhEcYGHwus
zfZxG=4*Gv9S&&OxbHBcM#Mu)7_M73@m@!e~2~zgRjpVx|au*_Yd{+VG85;x2?G_?1
zDvnfU<6Ex2^I^Nx*>}>~ZoTcI@W)#OF~w`5w#$-q((b1eEZRvnAq<;7ue?)=vHJbG
zJ8BV0L&Rq9L*2F`6S2v4u_L!(2dJ77VRyxLd>ngf38HE{VWESM?pWp=v7;SKDeP#7
z9m$0f+OA-ft8735ORdGfMWZYVu&l8e_R_E=$c=EUuM&2?l2T=mcE*H-SZi}#Z2Pxl
z%N?;HM{o1oVbj+ETRz2RZO+(+@GUtt&esYZFgg095s?Q?C)U`ST=nDt$-g(-JSjK1
zZfPfvDmQG#%X`}9*fEd#nzKh}M4jOKHS4(br4~*7Pk!;A(BJ&ee!_PO-}bh5(7WFC
zPP)Fnrsto3Ui#vD-t)DxAo}#DKP|>b5~BI9(y#sMuhHi|^J)6fhdxB_c*i^G?%lhB
z$NHAHVakqOu%v)3rPi-;-Q-SQuH1aBZ@C?ier=K3<ecvm7FtnX-9|Z<9Iyo5U+WuW
z{km^+nE<$r0#9kSa-%fZvQY^~yf)e#*rPsL--*}MU7JproHV-a#D1oR&Fuj6m1-~7
z+F>a&b6(ph&!N%jYmd#_JT?1TOKW588&VtWfMQeqRcy(lFwoaFY}9arjY_f2izdD_
z`UHzCwQCudG9q^HH#y~icS)Q2kfx_BcqiU-c91$ap7av{?b|h)NI5QTa>A3*9o@gG
zVt)yJPxKs78a9PlQ}rabBRbWw$Qte1y2wxVhJ>jFA!-P75W?SVY?8>dQhkmh$Inwc
zsxLN`QlrJF4V%!km`?)zMduf`IaFb$k}UY3b-;$Pgx?Q4;n-|q7_dqI;c~}@u?63r
zfK7PQQ}!{q)s4QMn%-A@n_|bqkh9sHYU5_mXNl~h5M|{3Ct$<eRHMIQ-I=Vb%8~7C
z?PQ|Sz9gG&HTenAYH~-IFHES9qxe$jUTTgu!$z%LD!$#?T#r=O*8Vjdo3^mxL~U%S
zc1nma--!BJi2^owKwR!pTvu{y>g#=m;(W!vE67#bJoXjsOE%xF8T3t*dVNHN+U9ly
zo>WI%t^k8i&#sTFHV=J?+7J%8y0Re3P359CG>IOVPGq+O_*k<8z$Q`d6%N3Z+zu4<
zc6(kaY1<sMxK4mB2QO?VC8~b+T3=1D&{wxXtP_^d&OUFY6WPZmtJ`dpHeiO1H9LUQ
z)j=nkjZ*!qweRO>;m|i~(?87fqCSGk7x!b{=ym}520I|p)`A^!uGIIX)*Z;F-rnX-
zU#-neC!|+ne&T(>Y?RBjMf00n?X>hP5t)fzy_)Iab;W7H(55NOg-F+9vD|PK)8`DT
zsf{*FC@+|UUP!X-fu6aW>G@|giZS_ANbB;2IXbHKWunx^5^|-H`mU}Iq8B!QNvTEg
zr6+X$;A56ww+#~BaEf#K*@If(#IgAyWXVn<kEkRaQ>>g{{MwZ|aV*iJt&RAa>$^tM
zNekk#=uUC)!vSTH{N}{rwv>P#PADuJo#TmvN|H`8?=)}VVY4AduG;2<U|Hn^Fl_VU
z(0uu|N-tfdWzAOUAOH9Fsg77Lb6}ctsKaqx8@IjixwFG|7(;pSa&e|IMV4@^W9=n;
z-Re<gr=ZY@<Q?p|8Ucwg=GJ1zA4^;!ek<yxW-z#JzQg#q$pS~)=7U7L16y_MNt2LD
zzJfupS96#qoD48*LY17!oQmSV;W3^an%r+4TLHF)T_e;7*uqvW4o)jSk!up{>=2cx
z>YM|%?AVkWyvJq~Rw8#<Gw)$vLfza4<}2wNhP?(~n5^6815SGkLGCJ7$wg31uBX^|
zbAp}KmD^PC%xbr7Z6(-vBW35<E81M_9FoftPE?feZ7R2e&Z2!oD#{JzI5Dx-S8+1S
zrp@R&X61q<=xeW!IzFmS@W<%JUBjlE4`qgfeq8H>I>{wDZC<x|lIy|_ZkAobNfb%W
zT^yU_G7x>;VQiioHj(Qj@=1eXlUYB?37ZQlS4lD*u+<ZN?Ax5s<{5IWU0=$&p(6>f
zcR?R(J2AoUc707<KNs6PM{KFnXKQmU->?JHR}S)T4*cVQ0_MWMp7~^4rEmY53wqBx
zM*8R8eL-)1b{B#x)!tqssqbzWPV6gV<#JYF$q|`Sw|QHO1vs`y{!QBthrZkPVGw&P
z!I&Hr!<z*;oJf<v=h2hNGd834^Kpr&8<%J`F4?#xV$1Esn$C0ET!QBgN1-7!UtgO$
zyq@{P*&F~Bld6LMSa45YUM$YOOI28>duTf$O7Sslman;$E#i_Rd1QjN=2%C>x${EL
zy2EdDCUwmRAEJxx_?=(l_{Vvk@-5zSI-dhTBAwH%*kpo$$ov!(*0ByPpFzW_JE)E8
z8wMBo2{y42o#(DU0{f`P6stw-aum!X%8@%hx8rPbjJXwx(vf&)t93J%g0*pn{Rr;*
zG4PaU#U{M^##_!haYl{_(Z*d~2$y?t>W`c9Jgl+BYe_b;lB*pV5+~zs^t#q^+`{I^
zKMiZnE=S?XPg}VZZr1_FUK^+S5E7g4|6bm`LqGh(KTQA2fAfD%=Ai!W@BSV1FaC?a
zkACm({XO)3-}k%R4*c;y@h9ld|G7U$@n_ii_uIbto9Xh-CH?r1|HQHh@D94>NVbDU
zJ>4e9bNVZj{&~X=L^+1Obz%oN2SAxULCj6L6t?X^f10RRo9~b;d<$FFNPM>gTiAjf
z7z|r^y!-_7<H&JkPx%k?boAsjTiE`o*wX=a;IXh(Eq7ZF8+FE>>h;PF+<>j%#Lm-C
z-BX(dZ<BKXZj4JJXKd0;)|b3oqkdm`@K7fqa7-Du^OL%Ok3ZcQ<9{iSwnkyhbg{of
zpMR<7Ny52p)Y)7iXN^MQXY~kiCd-$hjx3E@vgGmR_@bg4NWw{-G;f0)4<+=qRCRq+
zljaQIpKa=?bCWtMKXVp|KESKTG+KtuoJCf*VD|}Wg>xuSqYXGQc>^~7z-cZWwhC+-
z6`}zXWX=#^S8Temrjth77(jI5V3Y@KQ_%Z$C7b{ba$R8)?)jvV(^Lb8Wv#%j*u>tZ
z)L}Qd$@>2Un;yl^D=I&eBSEg*_sdk=SsJ;*t<8nUJYe^6NUk|zl=OYWTCTFR>GKt=
zu$}4z^pVS1?vtJt>UBaR!}2+7E?3f=04r=Fx7_qKK__a&E&=AL(?{p72R6w;QNpHm
zS#j3~Y&I@YX!ChC9ce)kH}$26P20Sl=%bv-HU9Uxc5Pk_8<)@2B5~Jp%PH7_EFWyx
zg=UaIT}miVfp<Srat3TJ_cQufH{|Nh_Y(6JXq#9NhC1K+Tnn3afKJ;y-C(0yn_8fP
zV&l^aQ^3~j0H{(nY?SEppqnb%=G)jPX%36EKB~Sp8x{4jguWtm&!Ml>t^67Y9#|@T
za8;zf&%QEi4uI6;mZaad@m_KQcmR`bsMvg!`SvR{IZ6-&W0iRk2O^A44XMrwrT^g*
zD_`^0J-zQMbluA)5KCH$(ckKbwgrD*zRnr&(*65#-<aA401=)1@00fPO-yWjRXIss
z=&7eJ#i65t9oT3J_meqN!}GSj;h$}u$=YdYkB8U*u%B)QClB&4>dF+#eUqyOZst&K
z|GV{U{NHuC{bEGv8e69ii%ec!`oxQ`75cSLP4u7q{Ri~my3j{H#}rwGKKJs303&Pw
z6M0@09qD|Fk+6SD#XUf!ajX;h^L_w>z^e~QS-jUx<+Zl<isi2do4qA|+iCet*zoRK
zuvvL~_oK>9%hz@5cD$@QZou|vayu>Wv7O4r%D3xYV_Scl25pi~zF#-?+pzWR(v{ch
za(!HV+|r5L^zj6ngu!p=%&AU@93QdGsf8)riml0|S&p0axtE(cqRUBNdkndSZ~M~h
zK&$(>bpE%#VWg+;Bzo6#Bfa5Xra$;ycj;TcW>3%EO?2;4*IUsBZrRUuIh`pxS04ZO
zrgHO%-}J0uV_Dq2vlqXDKT~xgv>umIc&Fc+T5v<GFXjNSK-CsRkmzxL<LRGj_b(rm
zH7r*ZsWg71f&>w^D0OacOg>GZwm|S*4OuAZ#=?*@oR`IuGKgcfRHyD3cIp&9;y5@{
zduX}R<cv6i(YV3EVJ*j)b!STwzhMDl33>!8vH|+_pbayDMr4FD-Rjc1OLGqG6nn##
zMRDz#cbBGO#}diEjj;(|_Nd=7gJV#RkCZtqaB+MjY^X5p2dkRVW4PP`kG|}5?bHeE
zavYWWYXUYdcj}{vZ8pv;(7V{TW!>d1vqr$!kxb*&CyCgaWngz~M#B_2{^2|qC(*3O
zzF4jio3(koE~V*+wfQ7+L^9T@^^IBIZ`eEsfXi_R3j{k>7_iv}O3)G0M>!>cjerw<
z+`wjXx1+&IFQjsHp7UKM%e67sPQG8OA(x}+X$xCcC+|w14V!ER&9rGGKJ}?j(trM+
z|84r(uYJ$50njGTKkx%TK;QOl-$p<Cvp+{4`{>8$AOGVI&}TpUSvQ2A`~2r+7xmx$
zcmL1y{F|PqKmPChAL*UTMgV_rlPj&-98Td1x~tUpHKWBTTXrDoL|xl~Q=Jfs9??fc
zbh#Xr8c7|{x`W!wt?7hu(Z@FAKg53D*A0rFl^x&{6dd)u12(sx*6$fB90jvE0B^)*
z4!_0?D&;lUs1bDsxs)yYxv~Q%HVT6cVR1eOJK%D_Q9r{T+guj9!4BB*xJoN*6?7Sy
z9NTe)?Rd@(fZ9v!X|}v0vrILFB8AJjj~9zn-X50(dt8X6ut^cdEjy9XNAG?47k}cE
zEp2imj$}E~iH)o<X-aL5y*PSnD2KyF{y;h*nUr=xlHTbH&@LqNiGl@8g`Lt<F(mq_
zP3%h@s_|LU&7WLPv0*0f*d#&J`uVC3L&I(k40&8;?;6pVA)E?tP=_s*6KpB3u$m(R
z`szW@kPBk^_5MU5a=u~rIh;5@t6~f9Ut=S4qyoDq)J3^qN$3x2?2wyb+m!pfg-zRB
zpiDuotM}VUI||qnoT1i+wy4!_334M_6y2Z`vwds7K=9|!V9Qv^+A=T7HM!iv>7sMk
zYV90Ty<GWOIJ>CnL=HL;v6YQ)OD6Z|*mAj6^reQa*VnqOua0f2&C^L=iff7l686px
z)auSZ$5v{v1672TQ7#)WXn#A&=lWbjo35}q_APxh8x`bgc7WpZ=qsvoc3Lx*H#=}*
zqtND5&*)>lMIWObi1sl>eQa`#Hi{hE89Sh#(Y1M5*(h;_2f3ZIQIys;id-LQ{d_VV
zKs4Tn(>wToKK}CilisiS)6usuRu{7IUELdY?Gy>2?`WIr=8!Naxh+v0hz^M67|`!Z
z<m-GdH{EtG5oB41{yq2?J*mG0orLE>O(ONqcHc-Pa+_sN3?B!=2DQvT$((a-<Eq4Y
zIQuQA*`Qc%C+979ocldOxdo=g6EiWfuu)Fh+Da%Ur=H3<&POeu0RMItG~+sy#bNg5
zXLPOmHSgHdr(ZbIuYX~p<MN7^ui2Sd)Uz&zAgi)r*EeA^QX?ivJEvdgHgU6^Sih#W
z^VKqvhii0XsoTm!-PX}{_fr3j)4#&7z_=W1(K0_du!Sw%f;DtnxgLOZ4p@LqjD}$=
zO>Ts`yZbk=Wt6)dPqB$^cXF)MIMi2i#pY$>f4BP!`Cw3MGf44U(yGl90w&JNF<ci~
zVGr2s+T<SF*syt<udulsZ^34A@ANV1K-y^IbRL_0TiwQbqK~~CrM)(=OQPWUHf*al
zKap#Y`&M6x`dDtlzR~7UAJ^D6?Z66Kv;%_8uoAT$?nh{I>nk_3d093t-}KBN{(<M;
zFwnc+G|<<*eWdrk<3f^~Pg9@sl!E>2PEHXyU9YX@Et=jU`?qYn`YwjE<!<{+PvIv)
zgYeVEd;}3&qX%ribZ%U-^3+ZOWL(D$gA(th)b9Bbe&e}<3cb?EhJs06b?4eHL^a4D
zjE@sX_wv6Msao;hs9z|Y>HNQY)Fa%B!tXQ^|8trT@-9voxHRM9^qFb5Tx-IcLWjdl
zm-~d{BS+zfzZjL@X+9k2u-t#=QjgnB$Acc%+g-{gzyUm?m&{SQJkPWzypT}tKced+
z5=HD39bdE4Xt;Bs4l0f=UcTy%lvhav$=JsIPHYG}<@dtp%1Sp2cICfh=iBvyzY4FX
zUNctacipRkFW=3PE_-ly^EErv_WKJ`r{%R^*zGQ~@8O7$@?kG>JzOpCslwOJZE~EH
zFH?B(jX!fBD7<p08kSm*!q+((HeBz<3(7d|#P>^9>pV29A~)vpz81N%+>$t|^|+lK
zv1B>$!fqUQjx8s{%8tHku_1$$Yh8N8a+GU+o+ti;V>>R`cEGyG@t{1peB`Oj%I~;e
z<iy9bn2(Gj7k7^Jpj@EB=eS@!Udbd=6F)H*=(Q}WS!Wm<%bj&&1UA7kaOb~-T(2Ql
zE1#4r7IHnXjzDgOzm2i(cXC{ikDwier+FvG;Iz$WO|Hw>1S{H{ox$L5Y;wH{*s3_1
z#eq8L^)X+EHrIvHU2wlvWMKQuXFfxp_{1mZlb`&g{vC6V?|J|G<-fPS?d|k)Kl{OD
zBjCTqbJ~u)8Nk24_Sb$`WchFZ@Ba6y`=j;^#>PK2z^tza*H@F9Y}}1@Jp=0)<T|)q
zRbNMKW0teab(Fqz6z=04^z~Yt$)b;GaJlaHm)e(($kVXfK?klKD`U57#R`4R99amt
zF5echDOd6+Jo|!Gu;tK~3b3#3z@Yj%X+P&dS^By4rIbYu4I4?h*(k+=zO;+jxZm%6
zqol{mr(y{DIdyh``;s`}lYYyChu6N_%>P|oslMKE?An)@XIXQ1OtNq``*}4f_wle-
z9bkLSeTzAKg@ga7T&Q9%C(iqDprr*xc07u(9Qj_^EIVp`feUQNazEnZfnv*fY`9kb
zz01qJMDrb&ey^KA`xbe~a<p-4Yh0qR0Z@Z;4C9(?A`(&a&QM#>*Fb^w1pn3%5<(p@
zi6?WJq|Mj_N@A~P*(9ID1~Bh4_e<thX4}78+Lil-@I3EzesH*&q@2rSJfC!;wZGh{
zPCPh(i++?j?P1bnOqX}H?;M1CUU~A_zFr-5!~J4;p8tN$^MkA${5;3wxdiJD>zE{d
zet3|2I2R3{N)ayk<=+>K^?Jc}&DVpB`P|1<KX>xCYhdH?o!`m2%{nGISTfh$unE>l
zH?S@*bX>ZAcrBQPk6mn35u3#C=lAmaxgQ8`xYz-;m&~Dly~u15PW~*|d1B4;F79_c
zrZeuz#`h8Zc)`EF9HlJ|%XbTH!G6SMtwuLrUSi(#;2;=xd$pf@8jQOLmkYKl-MHg9
z9Ag*Tz5JW&Z*87MmPg2y+nDk2y__pyhkh<?KFuNrzMtEi$9J8ZELbMp@E2^0o?Sms
zu6f4Bw&x1Y+dHAnO|AuVI<Dt(c^|)*b%r-A_mG=&_FwD-m*kjW{?Yv)GUa<%PK=ko
zo4=3sk!>!|_gG)qMhUk6fxW+txh+f1!?0Rw?{m)k-tL*^d=FbBhaW>yq$rXiDU*gM
zQIz7ylo`wVV=Ew%7>E!ALIMTJAH_~0*l?))2#^Gj1Q3c5Bnn_eaqLKr<2Z&T+mw{>
zL!1#k!%+N`=0o$z>7MSs?|a^J_FgNys-CJ<d!2pWd%Fn)$aEj_PTzgkIeS05R;^lV
z)v9`m>kSmcp2Ze3x|`+RJYG)sXR$F-KcMn@RD(23Uyt`EvGqIA&nnMi{p9a6uRUWQ
z<=I)<9~OLujmMJc?@o1w`-~5J4_wy=*k)kkwb{d2BLPJpmv+_(9_#zP7J59P&spDi
zuXntE5IVt~*SpfXHn%Ldlg^Pso539Xg|yFiI?j14oq=r}Rj%`--14L7tLn3G%`flI
z*m+Zaz`CEGZM1Ka7LE)`>2sFjg1zt_gb$txwYUZy=e({J&VE_f58{-5z*yRgjat5c
zd=T9en-gr*LHc|W-hS3MW<@wnn%OF2X_=RJ4y|URvg!n*V}0ch_o>tk*|1SOx5^$S
zCwbO1!wzum4jW6XucO*e8|S-yUfTE4=eEw5`a(+^+gPzt%QcS$*>hajDBY8AJBf|j
zi##9B8Z5x|T2^vpxmA5P4rJi_v-AJRavKKJ=ux?|9JrnVkGts<v00D^k1cf=aJ2r-
zvKAI9mD9<oRM?5nsr!umcCR(9j-UcK;QHQZU8K)Re$Tpbb2uoi3kMgZBx`TJJ}=Lz
z%Xe8PWHn*|R~cE~nBR2oR%GqH!#K7q8+RC>9)|F^<B(wc^G+~9b8(QY%Y>AKoh_Y%
z#vEu|zhN$o##a4Q>S(e<vY5pgX&;OR;?&VXtb&nv{z72M;92wP!?1Ry?HOa1G93T>
z;b-xD%)hnl8?7OO8XWN;fZM0Z@6Df+1qJf@o`1_hV40(5Gkx$~1O3;2XtAedPk-h|
z-z9VB)B6d*aHC`_^EhJrFNYSWan$Mpp2cq=dlk$4A<LlBwVC)L2Q4h@*|7+W@_Jz-
z3TMvh9GCs3jBf<H4az-Vj46SAH#}D|l?B%mLqJZcR;x@8NO;cLjoHVT97tz9P+{yv
zd<-KpA=O!KfqW-mx1yfLy*(n!SnCQw&cH^%W^xm3S%X}~p$BYIw?$~4-~gOk!BNI4
zaxJ>Y<I(PiJHW<r<#q8mXgdch37f!>vENke`;gI3xiLye{feZu&Mc!!XlRE~>=ds%
z*VwGjv)HN0<eJQRNn-EwCN{-B0-NgNy3bRf8a^S|Z5#*4tzlC?Qt@ZkRi9_E?~ctg
zeGS{v=QH|zXmZuFopqm!QyAEo5^?OX4d9+{a@9WPxqKX;zZfgx1ZKGcn~bHHg**&o
z^_XVyi7CaR%FQy<wC+fCebh`O!J4hl&ob`42rb(Ywm~wMX2CYt*fM?0sA(wk753?l
z4H<vg#@Z}<u0$a#d0b-~hlm|^pswpHrYN^O1pBG_YJHx7wFqSzumu~W^#FKJz^lhX
zU-#lbPnLDW`(Iq<>f_mMpxDn@DcFQD1sVQkU#D;oz#kiHZa=v$8|Hlp3<<WI<;=ES
zYHIOVn`dVuFx!5zphDRG83F4FL5I^>_p90J3IUr3MiYYJaR^M*0&b>anU&!Dw|2}^
zlVOEVB8C4||HXPOVTTZJ=Cg4CppHQ~Fsk-1m{>W2W8Y3$Rw>!F;;<+;?&PY9po6u#
z!V_MWyJ{~^yCjQOzUPP&bFJE}N+lhAMsX`Ryk(N+jT^TYjnd`ML88b>3b!&6UgTG#
z#L8ex35Rg(ydQ+W)+XH@PJ?*ioCMn-@i4Pb(mG(KNu%@kpqb!Y<yW6h^r<h;^gCaj
z=+{1bCr;vOhk0yhYfBlHMT~~qEPsD+Lu-Rp;<}Jok@CG<>!4&KpoK>)6+7jlT+cWi
z9&qi{07*H(EZy1DcBSu*zy|&^YbQilE%y?GAQLQa;ErUx>s1a4@6}Q5*zQFsn=Sww
zqRGY!Y)AQbqXyvbTbgcO+Kj8*oo^9)K1%=278#V355G7+_|c7-E*zkTj_u^w_`fPQ
zi~I?4#UM89%H2$YPn^Z`8XMJ?x-A(fJo(ZQ=|0A1e{@4E{m4<uNMCN)2!@&`Z^c%z
z087BCQO>lIYmeRflySZI(o6JrKmM>D?JyV?wJoWP)!s4Dw}1Ob>AmlL554^Ihv@a!
zUZbD+nV+Fge)5z4do#rU`oH!U=zZ^dFMZ1&`tQ@tyT6{Fu8SJ<>7`CwldGP(&w(1i
zB7In2BzjvGbhGNnO0IX_=ThKWo()6R^||SzVOx!*qH#wnxdK~EaksHTz&^OX&ZKoM
z6k9=`v-OyY6?TC>lJe!M{@J32_4VHMwZ|rMk8-0RSI2hju-yq3wu7>K0(O2k8!M&i
zrvAIXX)pYHU;my=?|oq>I?Rp_apEPl<!nFAp7Mf24)|bC-F^;QpxNywY`ap0ksg{P
zwe8|e0tJ>7Y8P9-bKB1{*kLY^jfvR)K@S#CoKn6oK@XEGPJ}Li52TmFf^l(dA#TCx
zw~~$bZeHS#MF#fm6~8gg;y8}p$^`ti{XxVC{yQW3gg*rbkd4<@*8>@mVa0=Z@O|i%
z7TikIYWif2Y@KxTDg5Sy#~L3x?j_5mjL6s2=s8rM)n;qJ1CmrN3#Xti2{K(An`OF8
z8gZNvk)-XZE$o0TS1ax$FGjf(GD<3qj7fSho3L)GO&?uf$>bvcsJ5&mU`e4J*bqh5
zC<e4$7PWkTrySDXCJBJ!Q{;k(VU6ms4W5WFWEB`Kj`VWXgB}gUQn}TzCbS3^#R7^p
z((F6_!W{cNVl$rbLSc;pxh7=x;k||JMQmA;cS#6YmpQ}&(kkq1UCY(5TAxd;0?TeH
zdN}TVJb~_Li29ldd!{CL=!ncu66I)pp!P%O6s)!RR<*5BL?@C3URC(K%>K5l#bR>+
zq8<gC$t?wHk|?*(4;u6c;c%80QJCL!tSTQr^s%H6oy3<GC7uv82AarZ(bnYauXze}
za%gP_1iR2kHEi1FS|h4hJ8AZwi;?9t==zBDRo18(bv~$#r5S=~eU8i)TN}<g7hAi{
zt$rvx<Nh|*I(?m2`f34iW}`IfT=g;bdD3xc_e$CKUY9mXd3x2RnT=BU2&GW$^A)z{
z+*{N7G<|itBhyE-QL?^HB1tTQS{4Bg!e>M+IySSPS@p_kq_Rd$YGzB2ThzzY0$q7c
z%1ehb>%h*)>gJcLVc*%ZmvrrCwTBAk<O*!&9Imy^Ll(W~^O8CDbE{dR<2pBrgJe;8
z*pjEVe)fL|?WW82srEJMKXvn8-%g(u)efo6mTXT6<``T${BOQyGpBo)hbq2r-=$<U
zj=G;65dCR|7sUw#Cyl5+sS`;YdzOj1{2O~2*r7kdNhAkPs0kpyC)Fu)0*ND=4}VDY
zV1mAlLI3!(v*=G8UYIXp##+_p&l%X*;Jx@H(f54QEQfztc+OF*lX=Mnt#W}UX&XZO
zp47*{{O;`VI^eEnofDJ#SZYN<;e3PZGwi?~at1ej;@?+om;T!e+EVTpnebt@ao3+V
zu<_q_m)Pq`uO0iOJ`uTB7Hk}3nFBV}pB=EN-=txifNdw(6#D>K^w?&(f08Pv2V9?V
z??L2Lgk$}11)E|wY+S&%uCQ&%l_1xu*ksN<1Z=|!`x@JXc9km!nKf+B>hp<|AAbKx
zpA-7fuv5U+_xVw<G`XHv*ebWnZ%4dKkn2UCU&H>GTr2KRz@A*LtdEalgPhYoU^AWI
z0G%_i;roxtwQAr=(~09st^|E;eSY8RBWihE=<5O3Ykg(8s}0zNJ{^24712lQ^IopU
zAh+ky*9TzRU%?i!8@63|m)7U}9;N6t+X4;*I6i1FlGIc&`&lcHlOLe6-kor`et?hb
z1RtE&Z?Q;z!uqjRXAO{pdH%Eb4MZDZzs<H=kilR+ZTztVf*H1d2WswU`;+;K`1uwL
zUv1rP^u(Y_4r>$sWb;$w@WK~b_*Co%>gr$LTJXR|4S;rO6eRqAJQ2Qdb66&wTeO7=
z#rUqCeykT(u_l1NTw1krM8ERKYLN=r;MeuFoti68v~hjoItL!;oautIIt701$X#Cp
zXZ5Uy50N)oHYKYX0NHs^ErK8oS`q$sU+6PmF7yvSeWp+T<1_vHKlhYgI1GyeOecIk
zIUJDIrCB-4Dd%7`8pRhR+Kz(}J1w>oTC|%Sch>F;`?e`(ZQNy}Rw=r%Os$<|u!CIB
z>;RNKEx1KX!zL$O<r3Qt6iR1Ax>!+D+lcb-Sqo0Vxj?n0zU(c+Ahwe_frd;t^;B%R
z$Ci_)-AvUAjbejN+Aa$%lPm7+*ny4PWuX`38nGD{bFz0s8rU8Sv$H#5b%Q<20TYQ6
zRODKlBSf;FNEdzA`kZgS2WRkBpVz1pz;5rx`o(`0omjqjDxKVmZpNOx^g;UcFZ^}-
z_}}>NkZv@p8^XWzm;Ms{g}?9@u%RN?*Z%Xz{@5R*zw>wgj>;ybmA&B4_x{=cjNbk7
z_tEX36WnyVzuxEOP=H(|Dtr#K8SLD(J|A+>M>s-&RZi`bj<qP)l|Hh*f|s|~SCi{0
zKAYND+mF|=X`id}eDZ@Wa0qkz5cG9r2W%`UWzBgGyyjbdUJ4doYiv8vMVVYL^--N;
zy&d3oK7<%^v;&EbQ>CB$q1)vUU`OBo%?J9X5A5mg{;bhD*Xk9(ewsav^)+N%Z`IF8
zfnFzEyRF}{{drw$AwOp8!!?iH7hk;9=p8?J$}2gp=B3cC2T`q^59xT3^7_-GM*ik^
zIDF$r?LoyMdx0*_k~+IP+|n0cEmGiFH@2y9*H5_4mI7Zi@+X5&dsZi*_hD5By+$>u
zvs!AX5H{7U|3X~_-G@%_#~jNXeQbvZ#hkgdMKwK&Z7@nX{k^U|Qj4y!aX;bUe+yfp
z#uYw<_6lsZ=dOpNj{Wna9u{zBj9hPE6FR*~7qE`4)P{Xp7cn<(aE_3YT40lXzZIn-
zThk?KH35QL`5=(7vD1-*I#zNkMt#=g=Fww#wqu(^BoXYV*2w`@!+wEH7tC9Io(b2C
zo%s?HBD5-^aZ>2>c*tuyF@T=&S=eShz#byDqS0fjj}=aGv?JBp<XSjWAO)R(?H&U*
z{^B^aJ~w@ha$R9#Ige}Xo?0!~;bfoIH31&$bHQfVM?ILEXXx(+wm6ow&y7PpHSYQ#
zSEI)p%nn@XbCI(|jb6b9r}z{P5uuMHo56<74wR&p0@li#cHoM>8aA^7hAl=6wsF2K
z*BsUoqBB*;u^%YC1sgR_#r4tbfJFQaDwn!p2h2u^1HZRn^gP(GZa-gQ<8?~fumjCT
zWyz#^<4%JQzVHSIS+R_?rjJHcL+(`Nz(0u`C&+cwO|-3x28;ea%VC1FV{VE8JW>-t
z?Bz%|yF^b8i9Ygy1AY7NQKyp7i;k8>OU9^xJ#dQzCN<l#FBx;28+m>D+8cLRx9Ym|
zcf;ZPwf0f}jmpvHj2CZjG()S{o-DgV#puuEw<R8I246;MbXfe2<4J2$#lwX7vDy@k
z-l_Wi;+zoM{pcn&?q(Zns}Hb0`s}xWt=&HR0Y+@My{^ftZ+{+ab|8GM-5gb$_kIMM
z9c)IqUHtwz<SJk5+6}K4+`WQ5)`{4{{w%r2_Ws!f2jbSVbszuy*kb!*`q+MaU2b~D
z+v;a*$u)P*$Nt@}_30M&XJLEOI`IsBjrzESJ&v_E)8{7Z=g|p!_ve-C)^F*`yQSyU
z$KFO+@Wxvm=htl1bLnG;U4vaNZIoj#W##C8mfWH~Uc>&_IKO7Yo<|=|u7rPoa<lg}
zO~fwu;{S$uDYn~pD79K<*8b{iuOp*k2j4@!`0bndTx0;~ixosZfN2qZG!89Ff(12V
z<0Jr5TNo1t$54v552TwPYqw3`Nm44vYXF>)^0q_Ty|%Z4ra}*sv!s4aXcxyS+RwNa
z-so9rBP8`*=wBw`CS`|S#_5r4R%C@XcskxLq~CEzNjejeSCHnc1F7J=-0VxQ6aCs}
zC;HV-pXmSc_g|C6<<mP74l7RGsd5U3Q#YIrjS>kksd6WcO5lYpzyD|{aI>bcmZa%U
ze7Y!oV1;6tW=E6=+;(Ngh5;!?TzOtjKed9n6i3b3)AKkTOP?LunR;Oho3u|tfg%nV
zIN8?Nt8ku6R6ej9HaU%?hONwo-A;jL`Q12bdeb~VtgsQV^JYmRC`7K--ijy>!6CT9
zMu;9s+t>)$WDyU!s@xm)-Dp+APs)jl6KuwofK4~sr%rBj;0l{Ib%OhRK%a|TvsBn4
zKBbi>S)}x=)JnC(7Ufz3wi>XBJ-Iv5S6|1eqeQ<<ZouroLman5h(g5JJ|i{i-}pEG
zP5N_R{387ufAKF$CcuD{N{xWX^tu1+FVdF|FVO8b{&S1aZt2Bu{PE?6x68%~Sq!1i
zg=019t89SQ`r70g<)(5sxlUVsUfU*7(zn^B$?sLJ33BB}&fQq*<vK%ODOsQEhINF)
zT6C_*zS75l-Sjadopjdd5yP(fSX-ZiI%%bk71UqW=YmZS0@Mz))YcghlhF<gumf9i
z<+1&r{8FX=^kW14$sd~NJHO#b-}8+J`tW;3rHPnZq`pStZ`)5jd~BIh1pCSI-=qC(
znODK~NBerRS{`QmVcT~Hr8l^+{hXFNXlmklYEfZQivdd-aq^|q<|QnY;=Dv*UK=}S
z5$n^iDu|_#!nSvRXA|%1IbTbNj37I!0ibhg#bJ9A=c#0Gz!B>y#O9Qf_UcYKo-fpC
ztPUI+b+M$Inm`p$u%;_*b2E4pw?12I0+B|RUc*)m8wG5w-FV5x3cxPR7>hY#WB>Fx
z0E_Bm&H)=1a(-`iE|uoo;IXFI;B*_wv2Dq9=&_A@xX$ef?FDkr_HJ;(>7g77rq&i=
z=~+s0G8PK%+WJtim6hBC+i)pYr3x*+&Z?bU`Q0ZtiLK_8v<IC~hqb(|+uMxAc<Hg(
zdR5G2Oe06#9eehWVCt{;x$6YvTA+`Vg50YWI7OeA+OT0^ZMA9IMgfWfozXt0HMa0<
z?enrdmaNY^xtZMMQH~v1qA1Xtx;`hsl6Y`nbGbT2!&)D$Zq8PpyS@gwMtzh(l?;6?
zWuwoL@q_t4>SOV7o_(xkOp*1mKCf$i?Df_45eEl`z0w++9LiBV&`y2`r{lcqb2XUS
z538}X)<?QB&U<}a$+gqRwH*L9^ox$Q7RbUk)nF&p$9c;}L2mUzZsh_ST^Z-m4h)8!
zv%)zLKz^?@JS_7a3ic{RgT&{H{>!0;ZL;}YQz0veD&w*y1f(S&r=nj}TKhO6(}byM
zl~$Bea{`!c*H7|57QTl$@!e6KveP4L1ZBpWK~|yk&S&dmS(MfOf92c|dl<g02Z-6*
zqSMSi<|LGzUhQgFq<H8BPXClJ)Yk3p_`@16w%Z=WIRDi@P~0iR^b$su?1ymS-F&Uw
z+uPh|izEOdt!t+A*i-jzDI3>!5gz=(Y)o)sTF}f2TW#~y>;aV754sFntXE*cMk{P+
zw*%!|>jgH=z}C5D-e@l-SEAMZHCuQsw;FUp^Z~(0QLeq*WWAZvDoCN1tJOq#tUdld
zVUHpE`(CcG&pSu#Rejue_G9|E!j|(&XWX$^ba5Q9_xhMG=KqAl^vU%%Klbdt&qAMy
zZ=%zgs1q5_>)(A2`l>^^y1r^gdN-D8tNq~tXd7eY&Dw#-u(=(;STk&;A4|1fjB~@D
zo`J1ik?WQ|ZrP~#F4SSmz-HIF{zSdOFwWvQuR-^Fxr#l69q6%BXQQ^pQp6Vfytf0J
z`dCBI;THBFx84r)Hp=g}@%w0_^po5s_4AS+#_(99c9`OFL;olAo9O~VP?4#&^aXB&
z^Mcl&&-uAH08o9z1WdY#Pe`5BMHlEew9$oQMJg*gXGF&qM2C(DgRn_>gc3-^M&f9B
zo@lag`tOayu1v~nz8^I5s-T$dey`E_%tbH!n|rxGXA?}|+hks^)AS(iyYWVTf1Z?%
zgHvauFyu)cuKNsHAyBZ~pn#@riaC9S(LNNUgYW`%(xN|{K=G-s5dG?B&h%gW{A+ah
z;0?Y1g@Z&HoX)4^)kaAh;`AZjm~y=W=ES@^p6Il^YaaL5xSqwi_hgrZzwHg?hh=Bq
zpj_aKRTB>77Y_$n6!Y(Oqo5p@><Hxkc;TROx&y~$8V-{FLyL2Hzbtld4(iNhPE5s?
z#JSJ-7~3slV?JZ%Bol`}Q!Jfi@%_SHo%Hw2eap_}VJEVr8Q2$W3{|j6#1K*iXXW3#
zJt&R9Q|8^xx~UNAp;@DDUOZ?t(%tDnB5-umG0D5JQ}FgMENzM{W#wKYmYeXq?*#w-
z!%6tOne&{zBbD!63+hJbvt_W4n*PM8eB9?R9Mqt{aeqRp|6VB(X5}$|;YJ7IQ{fVo
zF3^p`;-EbYqr4j*PTe`Sy<q3(Gc^fwl^z#;W9)oy!)ATX4qb_~mguH~Y$#d(Sw8PF
zY)5rOC-gbXH31uc@9yD5=Ia$zF3MlVQA`{me$SLSZ=7J7N*M2LBC?Z5Gel-^Z36kj
zKl-C`{nP)}zqOjM^rn@*^c(-V{B@W=vW(N0=tCcR57pfZ^x7-`MC?e~wLTx96SIt?
zqw1RVc~P#l7j6cLxV{%Iwo!D>bmC^W7d~3%raj7G2lSP>0+(yPH%ElN!E)gVVAK>h
zN#Cp_a!HV@o}277Jw1#i-l)F*a6*)rrowZdvpspTVB^{acjq%A)D!yrwDjkmZl%wm
zuY;zz3AUxrIl7D;>D*^h^kvkPIMqkaD$?lx*X~=Ns{vK4Pi}M~diro8HMOt<@+{ba
zWh^~q8<cVzOU3L!7H;E*V54L#E#LX{SC{^HJ<+#*fP`!K+h0D2edV#o{FiyJH7%H1
zT#K-ct{?n4z<F^zfeI+E)A2ZJQTX4nIOcl`zqUB=2e+?k>qn_A!JPkM%MW{T`18St
z@Nw_;_xH?W?zVoAu_(1a#=$c-3hcM(yVtHsf$P#1xG2O!*`iH#8doP1Q9+a%*#Yc3
zAAIaE1dB(pG@_Xze~CmL^#F@?$vD?{%nO@}bAj)eH~(P<Pq}jbpNsPI9>7h{eA|4F
zz3@P1nNNA%5n93J`gpJDq0Hl4GN`4f%3Q&phdW&q3QgdG?_q`$T!IUj(_eYZIXj8B
zI}^CTcgxs0pR^v4I-~~C<+E|qF9%Miha#NTQtxE|uRiPBVUXV(?<UD)5e{2E2t4Zo
zcfVKtJl&y))qW>)%@G{y%&*O3ho3Fj2Mtc(u{;QWHq$9;{Q{O5>%YoPc{rI5oZoAD
zfLyso3b7oSLtU|*?k2CLz&4HVC31bD^f(X4nY4D29<UyZ9;h-lb^`P7S&)h?DaZP#
zhdOK{`1x!<Tc6Lux6asDuFk8^K^vswo@;^dSU(*Lc=eU<^Z^+@%#qGmAC9`o*$H<y
zw}VP@Cnp4utLi{WD4H&E9%RkO>BoF{%k*V))@QLj;XaqTBPU?zcbQZlcd^f*zk;nO
zHolk0^&VWT2jv16Zu+8ipV%%Q?=)y*;Po!cxhOW_qF=suJn6y4p6j(FJs=hR+-K#c
z2S4df4p6lQm18>>?Q^aHAlTITyNBF`yZ)?WiRb0h@@(#_+Z(N`!(*vd(+SjCkUm%E
z!o!{F06&k{Pg1Xd9r*h}IR05~e0^YAjjHtuIO?CVaa|hb{g?V0LK}y5{2q4TSehNk
zgV1}jZ8tk0<9yZ{0W3!uYl2OKIv(zI4<g+42{kH`%9Yni4>p$edhlEr>zGzHO8IrU
z{)XzKVPjp^T3>1hPDSfP91c6}bJ#Gg`?OpawFBPgM-8^IS_*2TRIX_e<ng4L&^(8h
zT!af)bbxCoOtaQjz*ytNk_jp4-sfzixXy#v&w_eGLmNvc)n7g|Katk{7;kpXMg=?Y
zfZ9oBqmFl46HPe(Q+9r6u9d*cLa|YTZ6^-;6Y9OFjau+LJg7~IHp=Y4v7mNX(wZw&
zWe;*#)>YgOoSx4Itjz7pI?uHd*w*u2kkLKNR#QdSP4^f(V@9n7?2pES*3aNQ5$iqI
z4B|cOJ==|vHOfwY(P)e$0~qh3Mb|;4XxZ<xVm13{YXuFnNSF=j;s~G}oYUL#6MYX(
zg-4`&qN>giA>S|uAUN0i!}G~~4r^X$3&=TxT7hdah)<yu%&mKw_l}ER@)~nAN?<sy
zxShw>133R9MTPM|^S#d)gF*oW$G?n8wyWo}kAFFoC~8NwMqQG7Cu+qjBR0m$bqfbP
zyBIdHU0S>10i4u=P3FdVg_Ylp?>z==CPyAqVmCprVFv}f$fr%TqSvSao7d4`x$+p9
zHQ30p0Xw%F^^(0?#Acam1#%rBSD}GIznq~1tsdTah25NHV)JFZYDW4sxgI-gQLYoP
zkLXjWgNaNap$cJ+^<F3JK!vfM&yLmQ3M@R>PtWM{W9aj1`Y82uz)L;{xo_#K?Rx|}
z<ZAUv92;s;_WCGe33I9R`3d!MjH)}xP4pG?Svv%22{v9|f#3ZIxkhY)9rRo0<^KC1
zH(8e&{mV6d1y<9?YuHY}wzocycA&?``r3^pmn+7S+X0LvvjfJ{|JYdS`#g@NYj(i&
z(d@toxjxHAoi=P#1vZmwH67^nl}L3WC4ZM*ZYvvAitFpn^fAaaQm{oEwU2h-5gRo@
zA9)?X^0eAM&n?$5mTau``q<kj$HxAzXa~5@SxyMz7E14uR`XH~IuPfjWb+n*0ma%=
zs{ueb$dbc^q_mYDh!p}H-^^#D27s+Xs2yd9Q-nOqCR@}mSyq6hYG|5-#G0-sD*BhL
z-fl&jv@j=0@iqROA5;mM-%i{0glCTh9=F@?<@+Z+N8#_wB+o{XvGN3fNuC{u40o1v
z-IHURz(L6ywRW#ie*lZ}gK<!wlp~8%JYIczr2oU;es!4uD!uUGC-lND%cg<f^Y(Cq
z6Okf?j!oQBpcG0YJ|vbLJ2w*+1zhZMXIyyNCy5J^(umBAA{%1qcIz%U2raU}iebsg
znoL9o`FBli&x-@_27xWh_c;}KagOr$rI?5m?l}M(u-l|BhGz8WX#TxplLu&Fu1#!+
zGJmo-@ie*v&Stb*9Rrq|JzKHes18h4bQ#!$JiWs<Zeb$?M=Q3b=2f1pa;mbazCG-{
zNfmbQ3pH`J@8Kkt#$_|GU}b0Wgj3}wT+CGh`-)aa9}kX=jpD7)o<Q!S_PInyO>lfs
z(+Pq;8nzqgI(2e2?%CVDaWgJ|nEhhZcPXH*d2!iD9dF-9`Gw!3p?t4@#xnqvXq8-t
z#PAGOAze2<dz^mq=l}TE|GK>MPyh5!({KLfZ_y_|`3bteXC6DX73ov|-lEe7`tsdx
z(D1^C>B;x}_m;7^^c!!iIO2BDV%3iQa08vOK8M^9<^94T=%dK>#@l&PdqS<xMISJh
zcmaIFa>iJbu{1y~66IP~a?=pBHkJr|E=?6YyU^bmC*n```wMKX&lfu|9NZ4rSh03-
zD2{EMS3Yz@KTIfUx22E9mAux+<-dp4=iI)s0~qJkutggsV{LIe;UIVSBGE5@YNAhm
zuF&^><V@f8!BHpaeFl}nnqyU*7-Qq;m&Lc+PuSP7*;ldk-St5nvCY2P++g<j06B9Z
zM7`em?>Q>pY&|;>CGtNj#Q=LF4sf_MTB!BB)Kk?Ru-I;6Aw;2->QOcApgh0n$@gpX
zWAP3;o-`w=MMCIWMyW!S`X<Y1D$Z9lYPW*+L?SE)9ER#5NBcC1V_2d?GXU>E5Wkiw
zY@^syo{MixGlCFiI9=q~Rk^<P-jNHO8h5==UgSpSfw9-3qwxK~4v#b{LyI@HY%1rb
z7pThh&3ygrWRuMn+H=(dWp?-#go9YrjdK1P6`s<L>HPxVb_LZ4I}jsJc?PzmR3-9z
z9=pzMukU7@|BOwjN^+<-P{Bh^1Z-6U5^@E{b|G7z&NDhOU}M=@Ed|EL)IcJ~q=#tI
zFNkh-x#q#K@kjcc-NI9HxeDD3xadU(Fs_q^&FI{c3ORSZ2K>sq$Zw&KqHc+RO`k3A
zUhO(z?a?^a6Le7Ink5pT^*QvFv56EiXs}QqF;~sT6YWmQt<U$8KFfh~KN&X2jY4D=
zfxBK`Rw-O+jL_6ECJxEcbJH6(eLy9%&tWXpHTS$?<NiSX4I-DT?pdnW7nra`aebRx
z6dA*vOKUfNc#*T{EBN856+~>bJ+K4l<Q(jP$N@T0^i`Bs-^LQ6@6>$_JCLBSm0WJK
z^*L%X&4He)0Go)-`dlc7lH0H?J5Zq$1qRUUfa<FrI97Y_WH!o{W5vh$1e<DhzzR<`
z8<ku~bS$<gUF&nz3DELv$hFx4r3?}q1v^C1MxoEg(C1>KGU4#N)lyJ90Oz^WYl@aD
z9aqk48&%s_lNtbA>tIsBC&*pa8)Ab9k=D9)O*Y@-5TDFJV3B+n8$|`9*s&>3kdsB$
zC8HFYY&^x-z63f%@{eY_g+8QpU_e|Os9j4Jk?Jk_{q6d(1$bTk3wDaK{x+f4?%OiX
z>^F7Ik8HhW?W{AAdWlffQm#ok{<%I+!Wz&VFF6E{tYO<45K-c_Mb+vLG_uv^l>$FX
zwcqmh$90g5>4CkoN7XV8+&|&BW)IDwZy$@KrGQ<W=smWaeZAq4-Z?w9XL8Cb(3XbZ
z=7_Dfh+Luguy@118FrJE$=%mF?8xKqvt58=&#+h);ttqtPh;4MUEA}gsmU;DZG{nS
z(x-Uus3R+Ewb7Xf9USS1HXU&p2c5`q?3&*N?=8;X4Y^jlx9pe5wqk{%aj~G;ongnH
z)w3hEuFo&@HS{?_uKNxf8J#Pztgz!*R`bHfh8+&H`5E(P(1D0uiqqD*c0v}+d9crO
z(8m&V!sU8JUwteRt;gER4%gNFq8*UAAz*t{u6EC82WUMWYB$bfR)V}k&_}BunKtw_
z+5!GEhOuV%t6iU`4jTm<mBLu^=zGX@hd%D@fa$tL!$)j!oNx8HVZWx2HdZR+K#)zc
z!(LkVdB#Cu4%lq0#Cvbqs5q9aeXcD-%yhz@T{~>48w&(%?9#J!R~&iQ<|WfH(+Rm}
z)mmIR>TI+<wXLh;{eM>n0Q#)J>z#sAjOCR2B}?^XOvPj~UbI87s|V^0Wl?BK!z(Q_
zO6XL(wiI8!HqL6hj<hd*O#p8Xi@ccfmd(gn4FFRjODBof8`zRWy%7D{7bkkxE{Stj
z>lu)&Hgv(N8^EL$PLZZVx{{aGe`%{1tBlSzchDV{6@Ik^ttr10nb4|iDrp#VFBFRn
zlsFxe_MOn{U~VyN@T186=o+@vu*pB+`yzAJi$OQ^Gp^xDv6XYfW(uCx@0P6atIc~^
z<3_7teNJq}u;Jb0umsq2^3dNWVAH*1Qc9nq`e-|_S{pXqI24zg9N2(TK?{*FFL`)2
z72Dy<pDk>fzCqYz7fCG#xjk6{=#|_%Y%+q<C04$X$&FByb`BomniePP?%m5@j=?QQ
z7lx^gbU1lzoRd1$zx((7KDqwzhd)f8``qW6&A^zS@4le#_T?uuJbaa2WT*J<1xoj?
z=!*e+<6u{;8dYuB3DxfL?&$NHn*P-wSCLzgqsg^G&erFqe{uj|I>Kmb339A(6q0iW
z8@8Hoh{+q>zEATteYAe+bYf`wZNpsXgi77C1FEk`;jCz<U?*%*hdxhv!wz)VOl~P)
zAC_l+`DvloW<C|y4ZG>P*-xLedwXi>p-xSuo*1hEP{YE%xAoU-d%U(3xs~k~KHXsJ
z2er>q1E5>~#(Aj_tu~KM>)Xa*wef6fPPX+l9zN^eH#rA?jeWxUfj?%OuxR8%PKgdX
zt3D1AiBYteI-i}5I~kW8J<8*5*ddC99Z~~HH0V4PuY2O{QllbiMEk5f>6UKl*&X1^
zafhntr(QD_i@e|iB<0z+h%0U12@i2aWGdPnTaxH%wpYwApYd*nO(?-q1-5yGtr&Gh
z%FU6?2UfM&N8zld>W66;*!f_wv;y3YeNs7cJ7eQ_<43KrsccwgTriuzpAk*Q^O|t5
z4+%Ww<j&lJ%+PUAxys=|3fM45IyM|cbDt?TbsBPnGItRl<Ox@J*XKLPHOk%E8JlDh
zf_I;tt&CN<?F}1YGpg7U?4w}eK2LOs4f@5{s$<KmXB)PPK2K2}IS7O!+!uZ1dE$&3
z7Q?R91du}T*5`A;CN>8YH4&TjsmT=)>=X1=ejl)TpU1Hl+d0#9B8du@niYn<C`AoN
z+e@E9e|aS|W6l)0rh2KbsFh@Lo99knSw9UM4r^03Y&F;c(^uGmuFrR43U(leKCi$=
zsIQ?;?i}qvhb;ly>~>(31D1xZ*_dp0V6H1W;W{ybvTlMt^5$?ikVhKB4oE>^dDjs&
ztkk)|<FIb@c`<A#e809)Wo4tdpwv0&V?}hmWL)H?6TSU(J1`a4&jCzSh{DU`N*}FH
z^^mAx)A|}wA9ZbUVWYye>MO<yvPDEEjv7Ijgtvdcyc*<;y&y;0TcN!HYiX%(<Z`r{
z06VdtQcEf6d&)JkH?<}}m9e05-pN|&IF;r=W~UYFe#XIcwRy&zA@KF)jAdB8s2Si(
ziQ2X=?|kgj)>tef39N#XBd4|ow|QD@SzS|s@TZUbj}esojTWe)nE<0XVzF+$2~p)9
zP0D?V>&@TS>Oo%OjI?zv@aUlxqB-HL=g-guq8xxlvS~uQVe8vh*zj(31KR|LxCD{G
z7WM6h&9FPR8MLB?WuAR~pX|EUtIxLf!z0)vSQ7z2la0yP9<n`@rmXpbypJJQvzt+_
zdtmRMZ8RubeOiEpKQ|G3kBza9x~}zt(c$@qt#opo=a$9EpA)i<<8MuF{ArY`xCYk4
zGy43RzV>om^||<RTD0;R*dq3*uUpunzFyVGFxGM>SAHG`g_%Bjzd$b6<Z1^6PDMM<
zD{KY&``9>6ogG+V>+FDxMd+j30qjrbD}COAkJobR?Z7n~72B!9mb*TW*rSaqTQ(}n
zmG{ncX`}X6^l=N@o7P9z0Se#eu`CDu!A2SO9Q+3S*@a->9vfk-6nex)ZP<R-NB+HK
z4ggz}n+M5a{l9y1KrqPVyu|;~&s)222%K!LsL{Wt^P?XUQ1eG<)0<ySTm&Js8{%Pb
zbjYSL>*<aZ8BOh!F9MbnZ*kD9`H@Bph_f4Tb(APo1E+p!3b&*ru@df;pWD)>xZP6Z
z7|*y1sWh_i)yUTq47P3LBt?lgz<Z>n@qic-()?%nzND+{H049uc{4L=>XuB5oF0|4
zr%Um@WdqC<M9X6L?x=JCS_xcMh&TvfsvC|f=S4m{=@fesI;2^tLI#dxg~NLWg^Lu|
zQd%C~=-lk=`lP-~ae!-8a!v*2Kl0l;;gEyytcebXL8E?V#g^a@7h0ZNmiAGKR4JFZ
zVbctW0oaCsjjVmSKX<{+ffoUaEdyHuR>pPM@d^4_@Md@3E7qGmW7lipHV@cHvK+F=
zM{5QY!B&A~SmessbFNB-BRl3bcBTw6YzfXz!^UaICRe6K0pT23C3?fISkI14DOzU5
zHa4tQ>C3R(25jmjY1sI$H-|yx3T&b?%n#3U8<NTmayD#SJ)Qp?(C3O(DPPo9Xdg4S
zoj65;PB8ZAele!Ebo-$nqI~nAmD7JlmW!oh$=I1SX3prhJQ{j=@d=y4KmX_dJpJXr
z{Fmv^{kcC!KlM{TMNghQ(S^F5e%^g{IRyA6`s#oDFVk!P@t;{<{M|x1GZ&S!>8p$t
znt@&A$nAO50~qgf*2i2yc~#f?m{lJ+=2z|~D?#q_S=z@imYD8F<&Lqm$c|Int<RZ)
zNSw$Wwmrs@&~uH@SJwT-E5d!MW9dQlF^(nJ0mJIpD|BKc^!Y6MD2E(EAlt?{V>kWf
zKG$=Dll<GwPREjt^Vy^A<h#ol5PchZeXWko$5K)K9hOdb`Y_Y0uN+B^e}o<hX_diQ
zq%;(R*jKZsZa=59Y``T=e>X^GfGj|qS_J8*oYjSEIc$RMe?ThYxVQ8^r19>X?I*PJ
zreCg8!=|==040WQ{$*ns7mXY9k`<bboUJFH=PaT`9Zzl2y*Oof+kRp+q#mRY4$P5F
zHy6UtL39bp*yPX5C+Y>oTx~JV&Lg43&`dy>OWmMZJ2<X|V#wOzpwVL3%KOaM(oWR4
zZ><0-id~|1aN`;s)xJ75teOOSQf%S?KTmGzE7}bkZ@T^20h^?54@xm5V<TYG)K~ID
zHd#j{#G-cCn94)2rzqDdPU01|p<&krY!X2-1(C=V^<NYlfs<XaNls!Sk75)j@d&vV
zIBuzJTwQKwV525i#ilRA&$d2Kj*VoFwmwf=a@}j6OFe_su;~U24sN7wo2hqarUoBt
zpU+LMvCj=#b!@d^0}YDE9oSab_k-(WTJ`zta<g`mYjvBG1ixSfwjp8z_J&QLEjj^g
za(!xYOBgGzua$pqhfCyREkhr9s+UaGD7T_T?6nZGj-|01OM^r|C85z_Y|6ME^cC1d
z9}78l9ZR*@0oT{g4(zPB_0+JD9x4wQYdX$5ohWJtBm?+d9NQ4F?Vzu->0{_q!Z=Ra
z=Ty6Pvr$E<!qmyEHcI7cc3{@%dLK*0ZPWl8RWR0u4I5OZvg&hf$5?@lQXL9%CA9-m
zeEmGPWz&U?f*nY(m(}J-f{mKp4j48YOM}}_eHXV;q~p}==Y@@;>SKxfrP-+J`sy_-
zW~CU~xjmho`ogZW$(?H(G1hE#q^t&;#)sIo&?sbZH`_Q*a2PCWvHjTQcaudt-!?~o
zK@sQFwOh>q%gEda`+u7U4788RK@YN6hMLT=j<|Mb$Yb|;Mtck9SQl|D`1c&z<8QpZ
zbKLmv@!yt-RossvAvCpmU`ceo5!zOf+L%LoY#!kme%oV9&%j31=4i)e_s%WgEj~M9
zv)`uv-YI$U%myvByqRao4Siigztr%1k9LjNB6h+Y+P4R+*RWmf(@yRlHQZrK8#)uQ
zMY-F@f@WP;H~Pfn(*O1<wm0)`UHes?&>vIn<XSg$;sV>ov#(*>dUoE>$B5mql}_#z
z_l{im7udGsMwfD5*@+E1Ksa!S&-d(+4*QlJ=yk?|m3wSgu}5r=VBZ=`7d8s_-n3DM
z&947{q>s_gTpLR^&M9E)`#jDaZy8${i}gyM_w$NBhn{cV>iaZ4!$(N!>3-hYB4V{1
zSuaFt_&43q*BK|KWd&u`Njh_P3LhZKVkv;0LqRXTwiFJfRKR4AbW_1A*BPnal-8*(
zHehBf!Zbpjz)PLHh>N88A_BP$HeA<Mz)Mq}TdIs-lMN7kHb-NfPaGX5=ruYVZ!VFw
z;y@({XE3?BYE(qwWE9q@O|BZ+TxG$TvH6TfMr2e8SRrX?$Nlkl;jqkF%(*3`7&ZjR
zCp<5-3pPT!^F=!e{m!841*PJVenT(USo}^AwPuT8*XXFhR(s*z)t{YkyJ%=C+O?=#
z0#^A?3fPksTC0xT^;@u`z#{*<-9M3IYjRl|1AR8Auu|)@)b%-Ii|zc$*5}Z#gmxPd
znlf3$AuH+79X6Je$R&9)KvNgj346CB_exQ=63)3CX5D^ZIc2@2_%UN@le~@Vi-|4#
zh7Sn7<y*dme*f?P{q$Ym^<DHG-|-!Eb9;*jQGJ(sdY#Js@6hq{KTi)|{6+b9=8Hu+
zURvopsZ%LK-{M%Z2zH6CN+y?}k8nUCXp-EdqYp(c+3ZLOua$f(jVrlEY)X6}3)Ecw
z+DA)4F-7z#)qbo3yXeFkyXcCKC5(lx&-tr^ny8CD@v)RKIaRf|YNyD*o5NU2!L}!}
zQL<@oHcAQ*FB|gtVTL(x>COCiPjf6*Cq*UF#=X)C2+ap3D~{eXTq)YqVEe1Qt7hdG
z?UvGZAl+YIMlh;v#-yDPp`0<HS5P_-A<F^p)-86LnCrztt)0BndP63ngr3s6tJ7PX
zhyVZnvtF;5K*A!Ws)L9NJ4)p1fCB+@673MB%M+<MYA~N8+H?nxRS|kAPzTlK1lsMi
zsHOZqt8J&EP9u&O9wgcs&S0rOlbge8L{V&Uvd=o-X3%U<k;qoXHUV1-PD_$!i}U!b
z4lOC1ONhG7h-_tSpfQw;BEdF`O%O*lu*(6|pyS5mB&9=GPPm_76MZZyH+Eo6%Gd2w
zD~N#E^J!`-E4i|~Cv%$bG;48&lYJQMP!i7IJ>-h$d@T^G{PBD^AkMW3*b)v*i^&zm
z?<aL?%AA&yM-Vdiw@|GFY$?^1T=~B$H!GG4M|IL#NfONn>>_uQD@QxSQLRPaj4G&c
z3lE4GERcK3=1?{4s*knPM^<*$M~U1HIw3Sga6)o@7tzm2NpY0gN~4)2Q)N^d%~=<Y
za?tJ3Vq>T?<$a!-z5@GvR(&1JX^9LC#wM8ss4?LBiay_4J+8^*s`hbmM>YDK^;y=R
zHkJ%K<O*!m%XQFaYoCY1HPV_a;tZY)yRI*dW>fl{s*j}sK^=C8v)e&GPZP$PjwL;?
zN{Aw##m>mO-So9+4UECDPY6g^V@uFi>vKO4a2u5&H*GJ}A_n(6aJL41G<|h!IIxmF
zk8%|orTS)a&C#ho<fgCly3gH4kw)cJ=%YQGX{f{w5Dw!omiTwx=WajE4kX1knUlR0
z4|jbm)uS7SG4y$EeO?S(ZsS}XGwncXZ{ys@l8rUX_|YuXX`aC2uZ4T(Vs=2I`sSh$
zg361GKF?|g_`4jm!M~LN7d`-}O2McH{*zpb{^DM|h~Ro~+{-g+zUf+_1S$-z7k7e<
z!Ys9-%8+0Lk*lr~wP%{ss$8ZhzVo42gtn}Tj`mUD+;*~ps;O~>TXZPPJ{DXxDq5x!
zmU>ZKPXhH*B<s`WPL7sON$N!ibq;(C7WsNO97OMq2vo6X&j}I1k(XceHgG$08~@>;
z72~D0h+&CH2et<UA#P#gXBf7@*1(8NWo%^FYTd-f`ga7!yR}=Ctzcuho=)xu@C*#b
zzKk2jcIvQIU`vJ#hj1ySmE1P5Sw#GP?{cMU*qM*pu%%X@m$|*AE*yByN9cf!wUyk^
z-eco-2|ltu$GaIe!%mR9MG*7v`1evr0@%#&WYP96SMGDj)ebzOK3c@_)jo$@MIS91
zA9CgTjwN6-xp8|n>_i^u7v;*4{tu^<Q@mK83so)TYTuVVU0IJMzPHtWNS!_!_R@`|
z3v9Knu$eycvy6W}I%+vWoO#(@u1P81gu@+U&9KEjpM%`;);N!L!1UGR8n8QmJmi`;
z<jUC04&=@bIDh<xKH6A%fQ`x<b|3+}t-mU;o7_#V=}Mo^8+{(fQq<Q38x{32j<sw0
zYWiq>{-$kIXtyi|!)EWc($@t$|LL(^U=Q{)Jz_tjPFQ`762?-*F4zvLuTwWKS=Pc3
z=B56?WdxIg)D}TM+CjK_g41gKpr5z4h8V9k*u6n5DW6gsc#Bp_DTT=)c_n162|(WI
z=3ChX<>!C8*&|&9JkXwAa$a9MZ!~zHr>XHw^Rv%T0!cq9x`5;Jw;K%3GX$?G8te>e
z=_IllCTb~e(>k5R2jjS|2_RVuX~ss3(~y;?TzIK?Yda`E_whK(36$}kCy`ASE^^-I
z@bgO2@0+tyY61{vEbsvcM~{r|ke2@eodKr;i%Tx=RvnkJM$O(oX!;&s8#W=pFl-Mq
zqK)_Pit)QE7G5WDdr8^b1sh|}JE1>f9;_nR)KMvJKu&8WlA?K{KWTJlrcwlHsvj3$
z)2JB5YD$v9(SCfejZ(vwAUCE3EsP!4P40sjSd}Z^e*guGZouU_4Uz&aPQHj;ZlZE@
z?0H;c%PKd+o<g6>K@;REa<_LuyY;bQn}x$V_Bm%P3@X=Z*oS~k$I63YcWfA-Uf`_B
zt=Mk~hZirrOgG>0Q*=Kci9Yjp+^JdW`T#&C15fcr<i9PnYHDK%4(UJrr~kAV=0Ew9
zKPlh;=l=K~r`KP9o$MpVdAg%7|BXLH!%N>v@BXpBA_o!~PW}}7-1U)ctUzBM(?`fv
zHprr%(1|G5vpVjjK0vOku|}egt<Q6iYZ{uq3SBK1BKC2ta-KVVZDXyCrTZhW0~<fP
za34coY0`0?Q|;^kNkKn#ey{sH=iLgsVKr<CW9<k#u)>zscEI%0un7<DxW~kF?(Anv
za}-JdiDJ~yX`?BzG{^JwteODlwXHwv*tuENcOle8K_oUM*na(eCd>^5MdNay3|e&J
z$?c&X1Yj{?!<y~tMNI%-2!UDwX^m=z^gwkA(ct7;`?u$3`{1KCyF%bs9F;q{KnK`4
z#6O)71)dS!Z1fz%s1#Ob)CdxK4e=HgrT!R|=b3r+DQm=!M1^M@4CUmM6C7HqJp9^|
z!)R%^8bvD$^Q1Kb<WOP+ul}Twu3`@bn@n{2`>F*_`IdS={XPHEsBQEhK=ni33X%Uc
zgYtxjrf^Oxm6tp_>pCfNb@NB)1(U8-Om4ObVr&*^I^x~fF_lUV&UZwl?@-|ItQ8V6
zoM<N3G-}jzJ!>=)n@GbZV<&6$I{#k+7FqM<w&q)5qvVuo1N!`oc9AO_JyHbM<Qn>1
zc=aJy?nlYyoIoWuLaqfhB64zU1X>-z9<hN#z0n*rY`O1qV3S9W+K-G)`@HFd(BzGJ
z_{fX*3Thg|#&YFIYpp?5{NPg5aW2lOK2Lf)nPQ(ueKr1fem8MYH+?0@wb=Kw%B|XA
zk6^R4iS~=uh0;Tb8HYEfuMEDV7FjyaYq_$1*VNL)mA@U>QgVHaeXg`Tqw6DsA9sUe
z7he6bVPo4mK(5lBvg?F9I<ng1JPBu&%<n~s?a}A8Ve9I>^!g}rbA6;HcbBW?vIzZ4
zQhgM;;(%|!Tv39)8a8o8S)W(PH5;{8bPkZ)KmK>`bBwha`sz07jC6hIqtKis8%tV<
zTh=PDQ9^e_85tA$ZpztjHmWvktPlJp*eJ!;ir%VyZP@xg7uycoUt!yO8<k6^6JoBj
z&<F8&5c(}H8qPW=o93(;6IHW6^zad!|Ab(Olu-jf?Wv9((3iyPs+2*Z1K8^ggBE8$
z$>7_|yU4s>Yl!sIAOb1Eyl?6KvL_yLTb9EKsX-1F-+|yKA{>$nDthO`A6rZm$yx!^
z+;e|yo!0-``l{pACp(yFAET(O9V+>IaLRZPV%L5xn)KqDh+;Hn3VI>m#dB(R|4J<&
zC~Z7HKC5pRY#!i}JP4**TfA3yzpOu^8lKx@O95N|i4n&{m#gOZ{B)(gbpKYvyV!L#
zIc_}r+GmBW>(^EE@kXE9cVhn<r@FOW!&1BN54EmpI9z<c)>Xf(us?#$|Gv@I_lpFz
z)MoP{Ry~%#xQT&V=|uc}z4AW2Y-j@?)w;q~x_gVS!rD5$^N9Lu_fBcE&*fQImqmTO
z7)v%DQd(Dw2|AMk_PLWoedN8PEI036%4#gG#&rty2)6G1Jbk{Q1Mw5bT7Q4DQEGA5
zw(VJV!1~<UQg~jECF)PFZ`ZK-vpap=!q$IQHfm#BTd%oJr55fQt!wT6et|UV3I0c9
zQN!O|ru3#i8wUVU)ph1orwPfTD~E51p>jc!{0qv9d6Bi;-PhVD{K%Cw^6Xa<Zb#ji
z4lU~-uX&;)=YP)!CD&4@DS0}5<cTh}`9r&JMENbIjT!(cBkHh%6HlY8<n`q+MC%Jk
z$uw;y<I@(-*1-x-fa5>MXa(J<=%O;#03hcEbs85ea6Lo99epY{E38LYpsL(#(k$*k
zNZE>yv}e->Hr?eSgQ6&>s;-s>Z%;$OQfd3zu;E(dTHv(IYSwCL*s9e|z`JN6zv6N<
zxoPBHldDDmBPwhI8x2;BZbOa%+l;INrD1^_9jk6Ohxl%Aeq`le(hXLR4Sesy8C+HF
zDL0OP$2vb7Ta+W298nj-xS5?F9$fXj9jn9b;wgRCvZr}h9Q1zJrJQE!^h_Az8kN|1
zOqGfP`U&IyzW2RP+TZ{F_b-m_qtLaOzE_=r#41d${nqlIBc+?KQ@s{v1b^own5Sw7
zElsW&H6?m|Emr5j#u|$DxsJHpgZ>gY+Y_zi-o_eXtgY)4lpY(QpTbxYeak_A1GY9+
ztT0Z)=8h85i9-2KH|#*C6Ac?C=t{6rYdawJw3G{MVxzLv1gL(Uf*l}muTqHQcYB(z
z*8nj4DL<V<O@Ix1su7gU)>CKeOR)8|yWX<(A`2^M1nLwb^37U5FUe30n?W~mrgNmx
z{)tTPEn`jf#TI}16wLQ;%a5&BR7XkrRgb~+kVR;ui`qYPIx1%(94E%P$j-G9Jg+l&
zpObRa7tE<63Wq8eIHKPXp^|2ez|{!B;?6cX5HM%1>EDDbL)M|H2S~}BXGI-{{639?
zU2W1hs3V#kToSn-u<5f0Ip`3ca%nexRp*)NXC*zmK-5xc&M(0Rr@J{V<vmHWi8$b5
zEjK(nB}Bni;fEJKZId(ROo<d?Y*XVFw|2ue3$}{ikB)7S!nnB=TMpQmA6_mi0xJ@n
znvh%T^V+ZvgRheW8@JDEoe*p+N8!~6HuSmB#EDKBcfIOFbY?g<xr9!5pX*@<0h{vV
zqt65Ol^lC)L9T)wwG@(Jn^j-4VMCv1=r_+VLc>xma=L9S1$!by>MJ%ofO2f9IUNn#
zN*_~@>$$joH+=<%?NnSJhtVQZjWR|vb`85anp-Am4K*xQ*r*ksHJup7(B~%iRi6(o
zx3wLptFcyleZ^Sw!!Vsn7=g>N>0=FYg%ck7ntHkQHmdLQg4!Q>ZKDRrb&htx_AoOd
z?M-eq6ic>4n?W;4COe?&#?sJ_C19H)HnRh<mO{~}HvTukR_$H$6+006+-;O@(5JG2
zP5PW9SmXj*#Q~{d-_pmd)ID?t#TV%T00$nheOAu@0c$|WRUH1vYRNdbD+TK!V4F1}
zPdWcvq@>%+8N9<*N1|XdBTxg*bKCsGKcR)f8=Zp{O}9C4h>qY|RzY?8y|=!B|62Ok
z+QFTKRdxoVlRN0`T=kGQQ*$u)+{#1ec(>pUoqMVALR$ndc%4_A|AZjJ3SQ_6`pcXz
zc%g6bdy77nJyg|bdWmkvc$cW{z`yO-a4-Hm4;Q#$XLUJnkW7cYP>8bKs%L=q$OUdu
zwSMpAySt3_71rd}>J@BZGr3-Sb_#O4#sxlv_FnE{8_bTn-Aq@pU2xYw(&rU@ehr&p
z@82y(09!Uk&$%vroLeMx1-A5@a*fy?g1+_G`1esC?Rmxzuj^K&NR8a}J2_0h)Ct43
zw>nuJHpjjtw@$9t<d)Lo-1Rb+FxPI$)q;!9fuDVa9piYb&-wG1J{tc!UC~EjT|lt$
zgbdYa2X?tp8Ewk-iatK3uP!&1E9}6QP7Kfqdv-5Z{<{^^-NI&aovz6BQ9E#@&!ZiP
za<%#z_IvN+s`WLt#*$`jPOEYL7`93=L;AW-$XLSng(`ld&xat_h>h3jPi}VMx^B)(
z@}9-k(9JIz$3kO5uzCU&&KtrS<oe;vvpyFg2kRS!la15>&TzntFmfmGNJfXufOcLC
zo=Yo~WNFT__*|a#AT<Cc;o#@*9EBHpF+_*GEc`h|LwF_;VPPp3mX`B?>)qa>bWxy#
zd7&%PM>2{JE{p7w@j@frNji4ah4BfggdEw=JkpjvBAnGj(rY%7oIWB&@y<Fq4&dEm
zUj1eIy}ilGR|~%F1b%ns+uku3_zf2V(`#`o4dDLfcHyp<7&H!bRi~YCfiKqw=dM3F
zf4op+%*qFUD?H}OYXXovl}|JR8wb+X=_Ib16u7_>uyJjGGPimK!l6Dr$nO~2kd%j?
zzpwQQ&hmYJ?%~j|TD=0nx!`4N%%e_4dG%RHR<D4u+$_)D1DjBl<i`J=(?qwoj1Bzn
zCRfO99I9X&lVK;XrNGyGUw-#YXVgEyhDJEnPr|=`bI9^{!3IhIn)RAF)J?7|XN`gk
z*cdzN70BU%Q7KH|f4|96{7rr@I}&vQSI4IH3d-F2w8>SmCB|hn0c7)~*jVN_TuXs@
z^}$^)KNo$R7rAD6#=P{Q9Gr~@vf|w~-hbg2enGhWKmPHLlT)skk;UTsgp_UBB-XOB
z13bo0`2Ow94gJdh=U3>LmV3SY@;AUJgC2>U;m0r2SN@$JpjZB{{}p=USAK?$zx}t6
z!GhW#=<~(QE=H6o1?oy4<(Q52F{|9T&!wMSA5|v~&{wYs0DYAHwXqcBn$YJ7a=gJ<
zlHa1wO|E=|$<O975%p0Pa-q*ht5HE~Z0uW9eVkW)&V2qe+kwRybZgi;o#6XjVpB(l
zUGs1ER-=MzEsV`ZvAhJ^pku9#CDq3favemj59$bzx(%}&?5O?JiBA?BC^C97d%FBx
zt{2<RbpY75ihZ?oJkFdNa<Hd6IT&HvueM%m0%&S=RnGs^Y69$U%=WjM06gX-?RF7@
zVpA+hs26sAkd?!{bOIfW&=r-gCcr#vYT%%eg*I;~eL+^o5+=vy{I@xj-nO5W9LS<L
z;O|JFRH+*AD{?&<7r6dV7ULD%_2Rf{T;NKpGl8>OGf|jpT>Mhtt}l|3o|HDCD78(_
z;Hbvoy*TCAS;{pj<WNrgvP__V*=5lQezrR6^}QV1&LV;*iBJ?icOoo85s6(aQ-wh3
zQ$aftC{{qpBJIMnKl!>z=wD_O`UEyvH;tgGaW3%W*hH>~0v8_g5;)Z@%h9MnkWq;Q
zGkrJ5R-OOdup32!Y!+uw1SMdb8#al`of=(?(B#aq)`H5FfSt&wXd1T3xa&b(Gnrg>
zdLYx+D=2WZjGzGGck8hYpin7RgxUJsf<XedS{jwyjE!r=*6XYHd8MYWW5bp*HOe1g
zi#j3tIGWsw1PUmpdL^Z<fsNt_^_iT<e2Um|%c5CfBScy!?Q@eWMSV57^1G*XpNqZ@
zdQeqnqgEu%vY7)mcD7HT;fvU?##`4?Ag6&EcMV(Z`dro;dmO?!cEvXNSkjsR<vhDw
zBR0tnn00JfpDTBL(^s!iF(7(x(r9{@Yv^;w7WK8SS1>7EmSGdQcXq&RloYR?f{l`c
z0j1~}fsKQ9l%fw=t?2XAjV0GtYSH!4MmaVd_=y7`Vq4i)J&@_`08^@sI9OGEt%T&F
zFwO^cmY>TC+vM1;+X1st2?whUYtcT;TEC6tpkR_`?*<FBG8;9>L4nwygktL)gizE0
zYsG`@Iw#N;fF>&E3|o(S23iP@EMrI=0HD``GrvXtW1PeJq35{O+htEJw<}?;Z1;aV
ze@q@4Xi_gC<LwKp$m6_rVZc3dd2jzq;KZ)__pJy~DuMqxw8uX3zat=Mb(gA?lM)04
zjIuWfzqQC%N|7pY1KS2Z=gGga*mS;jb2_b{1-i>1zsT`!&#tS(EB$j78{Ws-2?y90
z*zuft4ZF$Uiro1*smFdzZr9|>7wIzU{CTnUdbibH`+LSd3w@r#Z{^R%y<?wU!@k1y
z$h)nucXFYPK3!qEBG>XPo!HPvlTW&W?P9F4K8AbCZ#MLC6}i6gZd-D>W(PEou-e5Y
zHtO29>_9J<dQBf6ldJu<!+!PIwAP8T@od@m+E}&rPG3Efro+FI+lK5`W8o1yV85;5
zy}i#uJASn4bApX}Zu_~V?{qnD_*e_Jd&~B3=_C0ayZ5!fJi|edui1RJ&!7WJYv03L
zSwCD@8oftuH}wW`WvN>~YKQh7MQNZeY6irgA_CL%8!*XaiqH2i_)FRWh#QfV>~0w6
zSS(bWj--|fBX5`u>-v69`;k!hfGl+;q;{onZQ$kcVNsVFy4BE4*1`JyYOf9S(v;h~
z)bM*-5aCsUFZp*gY8BrJ&ucQIuuxg|g4`)3$7TsD?b*h+9sgzhk@ghv+IzO=UMzaU
z@3XfTR|nS^$W45py<DqBN2itC<NKu*E=&wMf;7{><~8}k8k^QDuwjQ+O0~TK-rJ@&
z1WL(bGX=R?y@G6V%!KyXXF+x~U{9*6{^l-MVDkw8nw0!5%0)=%n~W@l&cNK=-P7kj
z_c^-1y9*d-{r6~KQd;Szw3U{H^UdG<&GaoF`3Sx6!VAlv7v;ciCnv$|q*)I6o_?0*
z*FPnP0p;Np`8WQfeb{s_Cx4@cC<T2??Ruq=Rr|#^6=9NfDW+yb?PcsK`t0_ey*x6o
zT}&TItqN~olJz-VTD{n3zEJ5VaXpBs;rYq?Ag>3L+X3r)@9z$Ig}$1F>5~tW%N6}l
zTZ_yAZZFp<lW}vF`UwnuRKmSn?i7A*wm;a{6egDS^cO9VZBj@nnqa%VehZ+iHjZXM
z+f}%~-Yj1C79|3=jr}_x{nWK+$$Cn&WSI5}y!(k7FLcaoN#Oji>Y(Mn4Cq8JHVdba
zL~K?>RaIS|47o+^TA@;l4r9lkFii~L(Vw`er8<dpv8^18LLp+#V@wQ+t?|E0wh0c6
z<S4oncUTG5365&RX4rQbP9lv?RSsKq{xY^<B<HRl3>&F^Rp%L^#t~_h$)X?Od_$Ha
zl@fwBz_Bg|f#9C6RWrG$VH1vZ$W0uusbN=anpx%i+(yFzCwqodQ{~p=E<EKyt|~Y1
znD=splT(Xqt6cf-j7=SZ1v=5mb%0!pIjW7uOKUA;@V`rOP|`VBqsWb8J%v68kGVx?
zjTT5T`$1u%rmxoLQg6Vpk!E{HM3%|b3l=A*(H!i6!24V?2PF?c9Hd&0fCFRXT?pBv
z-sjK}yo=Sz5p2-6gt1nEjsII9ryYvbi@sL$c?{$UPECpImculRr9q?nmDXsIv9y-!
z;2CnI7&kD+9<b-m4j8tSLhTQu<6(R2!3V8=hGim%V;b0`Sp5hrVh0*Fp^F+q!FL-=
zc(+8Q$+fdl_G}wVGS+HwxkejBp)Q2W)oc`^&I^izo3mkNYD7L*8SUU%?SNrpxkejQ
zK!HQ4MT?2PnT>LN3^r<KbW<qA8^*a6TQ+QF2Wn}3&H?sbj{xgkr3NhS;I}@{-B=o(
zD$Q(EumdjFR-+>C2s)vWn7aYls3p+tPz`}+1NNP>7gwH(75}yx00p)laxAciS!)3B
zv*aMKZ46iI6+7(k`K`7nJbsO7nlGF@{Lz2|lJ}pAIjHEJ&&9{q#^k{n#*<$VsAu1@
zb%oIr^Wlv}bn>4mv}@2Ixa%!zH1KWnckUk^lnWd*W;1x4FF31l7-ZbsJ4AyzuRfwh
z3!+20eKOAKlsvN4icxd>(Si;wniK~~7u@y0ZrCok=|i@yL{6if-;LGHB3WZQ2XU=9
z)~g+)DmLLUM>MoyD*+qJbq;c!5iqf;3BcF`wv-y@KWC0dxt72WALW`uyJ4HaWA1Xr
zc;_fvmet8>DTGX68SlGY>vP<%*9pdck3dw<BnWb=6u7`OHB+%cC#FuWHT3x&{O=El
zDz|6zJ$C_{MQTUvQ6J}0*4SvxU0?9Lm0Ve0mwO#MY*Am2s8JCkv335@;_0TZV;oCS
zUpc6Y?-%4MQQs_A=%d)>9$Tod;gQ|d0w#tgSB&$1EDh-MGa|R6K3bngeeC<3$JBAr
z$AUGC>npHDJCHj&(AO&%EE52I#MoJ8-0wrqo~d3T2mZ4uS6~}}eGWFtvBi1?HkP0h
zV{fApBHn{s_ZxP=4j~*H>O4s1K+wl%qs)d?$UR-r$KFPX9k7}zHqPf(UxR~8k1?w!
z*nts2hNq|#kZaV(xwHNJtOMj4ZGW^;USDI;2_NSj_Svuz*bHz;Vm`4M^Om}9+PpNN
zo!ib+t5q|FHF%>D#H5J-MBl?($pW}S0d(Qlk$;y|{$v{`UA!2Ne({AZ7VKzWb1S!E
z3KG3XnxerUiC#*{Q(ZXHG+s+2OHxjMX@AgmPvJPVYrgks)>N2VNy~vz;|0Q?SWgdD
zL<O9_hHWq`DC9=u>EfP-gJ(%3Yn~)>q}Js<#)Gs!oEkT{Mk8sYG<zL*(KkP^((z{b
zAlPKZnAyN`7J|~EDE~Xsbi`?_3d>yJ@)6$r>dr&q{>HOaLsc#nY0u2{tr-z;mXCYc
z1l3u&K$tRvqap7fQ~_zwcG&=A#md;uf-MVYu}x&kUz~(vT^*1XUWat?1&b8(IK#2u
zVIyD{?s~y?P@d-5QnIxe2xHR-wI)}=J{|=7aW;PV!QV~kTn3dZ6_+c)*^|Kc{?K9b
z0U#Xe0UKi#Y;cr9u1}A%M5nQ#`M|pe`iA$9%fF4n?f%7ACi>i~=S9~uy?Wl!pZNA$
z`u5*5(l7qT1AY1{Tti}cx1&;ErC|U^waIn#K9?wY7-M0=acq5`<4^)}d*i;)2VTnb
zBY)uC^u<>Ted_K&`NciG5k~#TKmIZL`Jewedimv-=@0*rKcdDVw}LQnoO>E>umf?N
zi}7CC+4=voKl`)G;lfk;nV<O?`s!D|D*qLy2<y*$Pxrt2zZc!S`@~<N!`J__^zI+~
zx0eC;8k<mgx4VbQ-=(5Yc~W70Jac5=1N71Qyr9pSclXRW1V!5s*{Xf6a(ZBXYf(^5
zQL9M1Pn}!`=&v2vu|ChHkECO(`dCU$AA4-3kITECW*g^<jSO4T$iDNWQD&5Oa+siJ
z6os<ac~ETGv4I0{&{V)9Y)~9))Y$>~MP~=tQ>JoN4r`M71=xJ&mV(LkHyY1AA_KEJ
z9V8->?W0jvx&1`?-1*YBZ`ppc^)@$ns`bOE`@PzFt^vUPaGuXA#}#kx_p<1V^Oi<;
zno}aqTm0E!VdM^#+zuHuazGC>G7d7{Y6{-h+NV}KfYGs_woFGef2>%g)vl3f&eXV@
z&5_FO>R45-?{l$Q4BV#)6c~t{CW3<?OEkYwNQ4dlgoD%(4mt!E`zCoZN2zgIpM}|8
z7lHD7JqX*uamCn*Q3<3Z3ue)GaDh*-*ZgiPY{s{JYS;>drWs|tSXMb2C%@6Xnf`I@
z8d>-;zjjSdzoE4h5^CF&hRyl5HH${%UQ?616s9z6`fhCJ$7Fof4ZC84?FJWk$)P~j
zR9Dz1c((@0B4nGUHmAw0hCbJ4v)V*#{9kqm@-MkvxWA>(Rqlq3ah{8&0}DkE1IXb3
zM5gc3uoWG{qt_`hEKMI(M>IWOY68{1&w)Mm`8YOgq_q@;=EUT>Q@Pq&S@hBL)l+_}
z>ZA2J=#0dknLZk}r1~UO8Aw$TY?K<dFxINeEr|~CqomIX*hrnsy5V3skYW=jt8KDF
zEd}UALVb-X$VK#VQb)hhZJv$aeN>9S$>bXPJW(4<=Tox_75&CKu!FwJb+!XM@(q*7
z(e%}#wh<^Y*t0R#M$o<ZSQ;$bqaYI?=p(5eFl;iG*hWF_$?QO>uxYSSwaGQbKF=DA
zq54`w9SCYzOdq4ZTA#DN1#Fh>A^K)Eiq<+&A$RE~=!DpT)a-!SC`t{x=qo?Vu(AG-
z>PWPoYJ+OCub|T$p|94yX$K(Jk~DMgJT1>Z8Kn^Fy-jKdBn#V|Mq>MM=s>#0QaP8_
z$7F>aGwNS7&VQv^Qo5sAu<S&y9%id~poc#Qe~^rF(XQawuR7Ji$**#cYXd(n(9~kd
z@bI>G))4rJOW*%$@?OPP$RXf5IIh1#jLhuAGb|vg|9Eg=O6!Q&_Jzx5rWQgY|IXvP
zw7LOX*iv|&2POq<iNc{#4iWft`Mxm-M{M>ATDth|g^mT?OyQb8>wuYd&l=t}ci2jg
z4ehCWUX+1dry%o)W7RJafB1Xk+PC*i;rd#{eta+57=O|iSPN|Fn#m$v-tgi+@i+2c
zT`YSB$+hoq*@f8eawrnzMVI(CKX~WZUhLoT$-XZtj>GY!<oX&<F)Q9p_R3wGT#6xW
zeY!PPdVSxDZkDix4ITI2p)J;Hh<E9)SI-V(&pxsipetjs)7R!UUCSlPE(L6{AB?a6
zYQNETpU3yPrcbGR))xNWe%k%@bzp1azi;Sz%x*DVeVzz))2Cji?Ah_XO~-nhu+o_n
z>XFb|W)W|+F&8=)^>t%juy^$L_Ltta0ruUz@$OsSUwtR*FKs5O*xTxBJ*F|+pNj(k
z-Mk0E!$!$qe})mQ)ES(5*_OK>_yP!<=mcR~^rqvfn$BVEwqWu?DdGFhiH(y#xwj|-
zY5){On4#THu#%k$k)~3oc>0#|CN_H^>vK8gs7)t*;8oH(wAG<(8s|#Qi6ZNsN?!0m
z7DT$Pmk2M@%T$}JXIq5Ei52(O%^i6}Y*a|Qo@*N<*RV-j#&fCtxD+#TDi-PQ+6EH*
zC|;D-2M+F2qTGTtv&Uf1zLqWiUTbTo)%&HD+ytAAXUHl=>}Dv?X3I0r60lCGYop5T
z?3g$lhUL&H(F=Q}31J^DpHWFM%dGOfS+3uGo1MOaW3;g6Z@8;N_sHoew-f}|+Er-D
zWeeI27|s`%DroWdjt_~3u5<72nYaI8aaupD{=HJVFx);tURjvfw|Ue5!4H05IRJPU
zec%Hhki!wHIxk$nLWlEo5z?Lh?&%k(PHzb1P0gArJ=bPfeW?%>w?rFFm-=44-%Lj2
zO6>ZG|IH>#8(T%ktTMdnmvd_G=VOi5x?nPk`s#f~$;XlDR1U(cVg69;wX*~IqiXsZ
zu!SK*v%Podx(jS+Ew9$U!A{tO80~Q}d#m&~Za>YQR<oxW<4g-Xrg6QPjJBMDt*_C(
zKBL`qvDx~%vh7;;0m7wieZBg@?=Ln|Q1Zd;0ll+<zxbg32P{H?6LADjx$(?q@V`sJ
z%pr1G&&r_=dIv7@s~pzgtS+Dn8<eVo+l|J>+XwJNB4S)=Fa~u3CD4NqvJ6TBg-3D@
z&lIqkV{ZmF)_cbuuqjXZ?AYW$)Ug?MeK$K$<-y8x2Os_!cfIi(7hoMx+rzN46W+M%
zHOdIILiTPRJ)?54$owsAS*TD3k<*0lud!v&VyMxvdIfR-Ka<nnD6LD<=SA#BE7W6~
zBCmek#5PLkw9+>kHmjRcf?S1;q-vy)MVwc|Mimje9X3jVE~mq05vS(N-I5!ySID*3
ziHJ>fY6#dWIM%ZkITeSnN4p1oq_o18fi22a+A|`eSO)?&<D^}UwJD6XEo`8mVJE8U
zt7cD_+<2Wa7}eCIa<uvxGm1=&RzG7yAJY|VF4w`RR7$f0=yP_^N}uMu8s}vCI8{Fw
z5uKpgbRy^@6$;q$8k^TrXnksOF`ekglFN0}AfsyIJgW_Bc3_aTyYTAw*o_V+VXP6Y
z^iiGQumb^G4mPUQEeZN)V{J4Vtm1{qqkUc5s7q{0={4wKS0b?)u8$?yDAPwcL#HUW
z-bR(q4n(=~yPUMovlRUuk=-%Nvn7LUIVow;+Jid$s|F`%Z3RSqjysvRRX^Jy(V3}G
zC0GEw*r@-KQG}fXhvFKOyJbY$soROH_26WdDTHh_ZI6+=wrsYb1KBg^RN2-$?|fWN
z{1M8h4BAEf;~0XCcyBXyPVzBuC-cYp+8p@1$k|U8WU%I>_V%P)%%TgpmdI&tXUa*A
znjP(6YMU2YDW_DgB%+st?Lx$FeD)sqJ|oiJ4g@1Me>O)OcO2IHuH7Q5&lV)px5GYg
zyI><d#7!Xz*7&kLD2B0bVB3QOy~h^0>7Rvd4swm{B1h|UmNQ5E25h6%7r7=^WLw2&
z6VapCSbI#aEjUTB?E<#GUnDXb`p9^MH{SxMI=Lp(FT9t%OQC1fN`O9I(+LTP*wWW1
z_dx6DSvH9DkJxOUW?L_j{8#i<uyuXj>qLC^qdI}H#P^eI!J^UgMn_z2oLiq0c`bz%
zHpo@(Z2@Cf#?n?Tg*nRgkv`|(ja|p9KOn+;!ZmgJXx}xv@YpyXJ1+Zu&_|xXcAbv&
zHtJfRTLwgiJ~G~2z(yELqK~uEh+gR9u&xVn%|<<s9ay#ZwHB7^7-(8HY}7vVfz1_l
zLnnH<J`39^U}K$_gIr^M0<%#p$D7?ijkmweOCDTwW#00dUR^uEzfmk`3mK^iPR}bY
zxko?a)<3QsesF}DGgS*EHSWX$2a6~bz{^QlYTU|%b}?F|w6yr5MJqTObHCTf{RgD%
z2#3F<b)98lY1c<Fu>Ac|7RlVcUj)s((Uw*tX<xfha30UIM21R=#aUAW57IHiaxYyR
z9+-nVkzSKUss;lKY$qRlW)x4d`5X45q?q$!l0y))MDBB{xhlneS$uNp9EbI2L@*n!
z$y2F>Lw%Z*5<rSq@j_ZTDEE?Plb7G0HL^R8>U63os=^Vx3AGSp@34orTX{$ihn?K_
zG@a$XNq(<9`MikUL5>_XTN5H<it%A8w$nVRq2lOcS%@w7o^|kX-)NdwRqUiZ=By_-
z<4!d4bUxt}eg|iwrpa)hs!=*iBoRl~r_!)-AD_iYon&#Jr3l!h>D)3250a6<wHQR^
zX%K7`*!Bzd<D_zCxk;L|P|Z~7V;(@PZ+cjy*twmOVq+y>xrytLqr4^k`XmL+SSNUp
zbGp*IZ+A4lkm-+q&kOY5{fU?8S3h&2U;XSv@46{;7$#=nr^DiT|9|}4tMoVj{;Lbt
z+eK%LlO4`X;n_XQGuW6jws}%c^lH&W<*cdX3l`o)-f_JPzDLqwJTNxst4v(ylW(rI
zA4qgT9o=n=%jU(dYqJ5&kuE9G*ucucQyk}=9k6lEpL1!E(>FH<`fvZ)KP#Ctzwdi~
zKmF!!{wDqF|Jwgpo|!F^Wcl;(rGG%L{JVdE4&V4E=<vfoz39TdM7T>tjd0PAG6C?o
z=00C`h}e9qKC(XWMo!W_eJnvAmp<olJ6NAn=<}*_+@p}rN#stV?{b7PpOEIIT=S>1
zjwRK{BI8`r>v$|J&pl5Mi%gcb-1L#{z+u1Gob!Ze`$7AqOd`8IQYvMf%fnSa3B{2Q
zK9*EpHEW?l9~*W{kIRED0!5#f``#W#iN2h~MyU<TWo-v^EKSHpQf!2GmrR%PARBZZ
zmz<e$W)AgP?WJ<|p9RAnMSm>a?I6VnNZQSQN`C|Et)$P*u>DDG`>bh-EEneV=WDk0
z+{bb~&Ea~lwtYU!y~hk}RmV9mB&En<Q975D(kfG>LSOl_v*=Na=ETO~Yzs9+#>#i>
zfTkvDd(5}{K>$uis2wiJ5f$cp$>byQqO~)e?NZ~1ZT(3X>*g%dO^I%Ln66?v&1laW
zu`4zxs{?zQ^dKQ?@zqH~SIKzsl~MwZElSNHxYNi}O;t5#Woe6ZaHO9dn?~{*_WfQ9
zjLxSSMXa)B&A<V`4t9w&ovOc^II03R4l<Cu1E~j;+)3utGDuY&aHwW{?8b*JT;ACZ
zSgdGT!#15}cf8t0*$*wIwn=hqRU_1SIlyCWp3Fh5Sv2fq(`aLG(^Ca@9PkmMi_xdT
zi7uS|$+2;txAwfo##p6r&8#{xsN82{Oh%nxiWZr7KmkOc_F$}5Um#*5BJ^qF$v3&i
zJ{RYD&_~CX6k7qdA@sS)RSt_pZg$=1i5f-Jq-C0f11PncJJ81h${w>py*`>;rQStt
z`ncN<%6osZ+6emWX-54EVAFTAgDs>R4{)AyHsz#puVb6vC2}8fWqtIqBz<1}-KO~L
zfL-*_`<xKf9g5TK)j8JW+OTn-@6hM7Ij|vD0`_dY`EdMez>j(qO|HT{pBi?TtLfu;
zYKK2H=;PS*afJ=-yD--B$_{`E33h-F?h<NJxQ*f(PBpJ=RH|v+=iJB0gpSy>y^W>Z
z>!aC$2^3U0=;K^ghe0OSY-6pqLkX>oFa>NO3x*V%W*gZduh9*`ITvhHt*x+Qvr*I9
zM&Teq_K`ySbe61aDXz}?NtU$@hpIUCl>%)lN^RuD7XbS}1iz6|G0K{c#~~;c;LPBI
z1lDU_U(QwSA?wx+uWe+JjY8en(Azw32UYWI6f`YJ!5xXkihk>XpT-X%2t|%eEp+3Z
z0|5S52BF&PO68F-jmIPx|4qJwFPncu{U!)9NonP*kv&<h?YH(_YC$6@{FXoc@8!F-
z1+RDjOV=LnUF`dK29j&^0JPTiv%~LGhs}aD<Mrn6H`)!)DiDX-+-XtUrT^{5yKiB8
zo@bj}<61iYe)acSSJ-;F8TPG1wr9yDKFix<A8mZUggrnCa*Y3_4Y~SzqJ4$Uo=eZr
zN4>$L?JoDAj~DM2_DN9=X$xD2ebwikP7tuCXX)bxwiwZUF_yx2oyw@w3Bx9Pky=}3
zKzMdPPGdjS?me#Afvs^~?7f3rGY-fNTeLwvwk;dgw?9{(Z^&I~|MCi3N+|>)qR(xt
znSMW~KE4$@K=gcLG0L@<TeK<ZijAUYVSfx;*XOI>hrjn93yywt-h#|SPy4P~$W<r?
zW@ccZH~qN?>DT9mm#V?wBXX&K(#1qu>-Ipwe=k$Zg2Alhisir79&QsYUACt#drbbU
z5Ne0%q^{RFe4m0q>sHUDsL0f?;s&x<Asd8_Oz(>y%mIzIBXz@#MD_O(?(Yhews7&^
zSNxyeEWW34c<Y@sJ{T_s?CakOKWB<)_3swDnIK4&N%eOxF6S8k++<U0d@ob>D$lo%
z@#>fGT)&myo5I@>WYc=k-X^LgU+3_9>(2x!=(}hCuJ?Cp&zJ9}6m+$&2P;%cu;(g=
z4KLm#`ug`}diRq7v<)OhV&8R}=|eANdU8lU6C}a`K+rYbU-Cw9&jnuhNj7F&^mvdx
zjt+d~?A7ZXIGOqTJ3GGst{epEeTt1p)M0-+Gv@u`IMwwlN5I`pwiW~YZ@htf>D}+9
zm%i>L`sR;(GkxSEAEEcW=RHCZ)F!hk1!vDszfAMfe@f~6#^RTMN;29L_}I~>a&7vE
zUl)7VjY)#g=T`fmq}JzctdNhzy7ew*XIwv;EokEsi_NOzC+efhGP};K^r<#Gz#Ho}
ziBVf<V;l;>$4Z~u->J8F_<aVpY*_5KUT95a<M*p|eW#!U{`=I%^!n}FvlG5w16aRr
z(hXL$mobxRHP}+CZ$JTwU2|qlP5#x^r(v=e%eXOj1!$|mn8J024)vd$A{PBldMmT=
z*VG4^=t_`Wbjo3l=x6-17XwAz8{>r@G3}Mvs8}$UaI~n{cb*VYG!^#IDC?5xqB-XV
z(&C_1sjfIqh>yWNvM6IwHG{?wc2;@EE2tW1#j9`F_(9n@t94{sof?g9t_>T4A7oEj
zLLpr*uxZ#d%0r!=YCi?bTpBi(B|%PEIsGkaUFE9L`Vy%PK6ow$I$)5_h~_ccjxq;q
zQoMeaxknbhrC}3djRJ1_tc6OISKr#PPP9JEDMU}}`lCe_>9~|WlkZp83I2-}S1xdx
z4z_W#Vzgt@!w+*#8@35fdK3kYeO?1Lx!tVAln3<NJcB|h>O{a+ESn@0jIAzrI5o+#
zO~9#MNo3g$ytL2Ryx3uhsE9ebC2|}3S5(&{ul@iYalNj3s7cL{AO{MmdcoMH6R1yM
zW62Ng338p4|9wb)SRp!MW69n#6b0rsDIZ^~$S*Z+`cly6z)H1c5|jdt_3HY_m?aa2
zs*gQ+6)MnA<;9n=F(HtM#ccI6vW_*8<BS7b*VkDK>2jYJWVTSOpHVa;Gebwj4pgn}
zA^J)yN4Pqh$;Xb&p;otKQn{HOkl*LBvQeC2sza^o^U`coPPFRt6m-P((Xs1Xe5sG@
zq%TT)<aVK|9AKj~s6^{)n2j1#!9rGq%3W(IB#})!pe10}LrvRLh)w{TjxDRD(Dae0
z!bU-ktV6jrxw?%Chi`*Yf_e6n@f@2RGx@t%w4>Dku(}U64{3Bc99<Qe2&9<;LPsWN
z8^sTyHb2!eVZu5oI2-hUKo53oij=3+u<oR{`?{g+F{3|#`*H#|vh7DD_^zxu|4*Qm
z<n}4FYvA7*R8N?1(D%&iEFA0Lg|@6wiy{}^=jGaXp?6*6w(*n;cRe*HkwyL+cYV+Q
zZV|%9tA9k$qa7yk_~nDC5&ZB|hmAi6<ECGp9l7n>L2KaruhkC(=D?>dT;NN4kB#4x
ze}6(iWo)<TdgHFQNZA!Olk0-*++pL-&CQMc_xKpL&_0BSWRt7aQlPZX+8Yf!V?zXS
z&Uw}6{C$?oc}uRq&d)B$G_ZEV#(jOq{P4AL*IWAyW1r`XKDS6~j*jLaRFj+cd97Y2
zj{~75v|BX3wToPVeHXA9b^^A!hI$1Z_N_kG0JXj7`EjGqchJ{|fZee1N4V*kAAY&_
zX`|0gu6JC|;7Xs<wLV9?aQ-txLBM8xE@NrI#&Y)>6+y22oqJ##gH9N>gg&>i=HtB9
z6*dc!xX{<-@AsWt?YqKVZ`g8P-G7I1{(u@4c>|m1BL~@b`f4_au}hzKHcIqy8EZnH
zy|i!kxyd!w{=n~}jXH-~3{kH9eg5rfYPA$%pSz8^BDdZS#IeNfv)L$WHB}57KYxN;
z1zXOm%mC3>VC(fY>SJ#|uj!*<A2!BPZ=?2%eJ)q$CBDbmY67Hnts1LYVRcKiJv!^%
z!9j7|P&XadkAF5Ofc)@*j4xUD^4cI16}9v`PgOTA@Z2IO`O|YN??XHP%K_1%=aWXJ
zY9;_jgPdj6ct8r#nR%aCp>ZuyJUM&&>3CXQOEk&Qt~mmvMPz8ynDLq`f2$VG(KP2t
zJW4ySPoNRMQt-u|oixfe<w-dGr#(kX-(Yi5(0-6;lDqp!c6j{#$hXZAz|1{+=4^p%
z(f0*B=E_U@;GF-X_DzA)EGsv7t2dyLEEQbI3EbcJ4>PV0zVS&B+p%%16Vh>0R&1Pl
zdp`l&*sxj6fQN~rcqirCL?kya;5lNQMf(tV$`u=wY|wPv`v>JGP6^S>;Co@LyxF*S
z{`Uhm_Bg2=w3fp3FhPz{?kY!)b~@EHHq8X!fj+ca2`onqiP!bH$W1xcjSpS~Jn4>&
zGc0&>aeUBCUs<rfa5K=ieR!nTkA?pI|JObJ=l}32{jLA^>x+YXkf{4V`hB<bqu)*R
z%G1P_hghACi`-vd=CW6hmA>va(Hl!Y|CxXGCHl~NNBZc8#^s)g{)3-?N}qdmnIyn3
z`h~CR2J_oqUX0(O+kfc0-z$y;-b4S+>ofhe|Kzo0a;_rRj6P*Ka-TDe`fJBU=4UvN
zaR6dQu~dvpb9yfSz9&LjbXkw{+R|?4vQEQw4s~3|bSEB9Kkx(JPv7@_-%CIFlm7yJ
z;=lYa>BoNTk1l=13$?)y4DLVscj@?l`T^R#{D<kKpZGshz59~t>vFIANyokGW2j-l
zy!s~;!!h1{3DwOSA$&CcZ0^%c;3uzoO(cD4Iw40(#p*nuMg{sj8?XKZ2O!r3DAo0K
z7;oJ1WctXH!5wqm4;hjFumf3Z0BHS;S>G)W?l4TqnlXKqYqJCVtgL-}Ji+Mzti@}8
zXi8f@mdI);47vcAj?JbCwn?$EEX3J^?2^&!DWYy=u_6>KliSld*iYH~o^|tO89#EJ
zwOCSh+n$2$pH{ZM%?)OM&ud%%pjixxZPp1L`X*7j3)UB(XjX&ZA-d4l{Uh@h%XMdt
zQWTgZjExp$l<4j5`)?cg_6f@qb%YK&k4=ak-64APB!xCf(&zaO&K17X$n4Weox<68
z^=BMj^HAh*Uodu%%_J07Vh3uVu37p&gJYc#eb1CXlP+kJ&G#1Bil|$`Mmz=YWKNg@
zHZp8P5*02}1v|T0-$8A2IwM+{v$_b*c9~<rQ7vXdBd=%Zqt_#t5bNRCRGNm}vF&#&
z>{85^*lsBOmPA^oR?kRz%oUs74|1If<XTbtLnDUy-%M^wuTdd~hOJ>w0h>ln*MNPu
zQ_g>p8;_x#@p0Ft6G5(dr^UhQtj@zMMU=I@=2lC=9DcmkQn@D4w*qYL*c5%kT!1y-
zgjW%{8TP9BmPH>cbVA3v$!#TfN?N0$LhcDQrx?4KSLLoZY{~2=Pg8Ssxy@%i6eEkK
z7cthxk&YTw*|5(w=mfPs-R~fGog4Pxe|LSgwDP%e*UMVkuq9xtO3R~iVka$%oSEDR
zHC0%yMh~;w`B+%#>#6BPvi82uYg%C=sZUUmnmvmgMF&XbCWTse718vwQua`b9yWbF
z16#(uU0)5`8Ps(vYzg{ma%FvOHY!nPqeyio+5wRj>nkXMN^WxXv1Ix<XpNK}+Zp<3
zHp<3|>4epZVtq_eAED0=u%9B=r1d(I+bDfEsi^{eRazb`COyl>RPCqywygEd=!#bM
zb0t?jG!tr+ppRzz1zTy@+zu?*&nM0-P#qYs&YG&u{{w1LlnK~*FIV(gT1$z%2EdR<
zjC-teaDASkkAr3@ildpw0?$)^zfs!FxzHRb<ZEfpS|n<b#_A9t&zj9xBY0G5Ms&3}
z*b=3*-ps!pKN<qiJ{5;#GI!>+Y%+zg3vTBx!*P+j`(_J7(7U=rCT4-g1JoFqZF?8~
z%vahooI^3-#3PV{Q*A3ES)yuFqcQf#{o3fI;&1&L!878R%ImC@`29#D5gkOXr};86
z)}CwF`g_~`hHKbx9Sgwsa@)cd<(9j4bCP+xNBV5gMFUH|g3X+b*ZSPQ-(k0BTc6jh
z-;2^_r(nMLeM+8{VDG)v=jn>Rh+NGHd`0dVR5)8YVfx(nxkq+)_gh7ALzlPYYW@{#
zkNvRHiJTo<{KT<HwB0Y#=Nmfb*q{@od$zsX@Q6<MIL}In*FT%+lCotbSDud`(=DAD
zy0H}7Z7e0aK9=%h&n9yEt{M8hWuvZP%ld#v<r=Z~SRTV}Hp+D3SvKn8-BO@x?XcN*
z{oWgLddv>+XWZ!X*hi1)<JMSmx$&Q@Ykr@X%(-sYIj^s2{fYX1@k#Y!Y`&G?!;8D?
zdnEGlS=*$Xh7B;@5tmJm!SU(Xh1U#d@*6gTZa-+(sk^>xm%ny~#-D{vqeg{ti$=WY
zbry$|V++Q;+Ot<L+!8u9y2F}Pcr~nSY9|1HbNMM2Cw@=8U$rOLoR{!jqV{i{9PGWT
zKQmyXfGvI}x!Bjgb!;x$)uZCQdu)_K7bJUEz4Ho7e?MvqLd%rc#D=T1!d6#pey<eX
z!?01qqW#q59<erX?cUaR{1x#nS9TOKPuSv|yx|jdElSA;DSS8}e$dJkDVc6>7H7bs
zX6NPlW|!#wPqdI7`vCYX>*+(44bZ!8xTXM8xFm@J<2@Gt+q<7Il?`v62z+6QUN|J-
z_@^j02!-!^7?a>*o5B-@L@{C`v^`F!lVa=p3w7(-?Gw68K6)}c(u*&?NKckO?|a{S
z>AmlLZ<MA`9hLb(Y6Hwqzd+^m8cCdCZSvmI$BPffO6;o?q?1CQQqb8L<xaF7vz6Lp
z6JP9E`Y8XK!cTzh!X9A2^;p;XN*;aQ`k1`NNW5R)uUD~A#7~zU=eOIizo<*l?5WyM
zkC?;Yb$jZYm=ffeuG{wZ@Gv*T_OzZyR@m0BVS2Fsq|K|^{WoIM?<Lm<m*a)J-@YFo
zC!|rrvJf1wSd@hiiE~Wm+PU}wPTFT%G=UC9B3HrJZNHbpH*=usW;>x>7DXJ*nUv~9
z&TO#gva{Ztlrlu4z}1f00fMS&M!Ozf4~8AZJ>;M+CC3&w=b9N1umc<6_rlK&Y-QGk
zrD1n$LRm-Pz&7ky=qBUgCojq>QMbMj1-1#;hJcL}o66Y&2%20Co17hcFoR)RW3O{{
zXMtuuQNt?OtbGI9tQl!TzQjg`ts<h`<-XPl4Q3dwVv_^dthQ;AXGd(dK`{HF*u2jT
zTLSHoV>f+l6k-LoMw~%a9jL25ubMHD$A&Gf^iflJHRA&3*0DY6BibFC$<6F8^f?8&
zR$A+$*ui+nnbc{S3N=3Y*yj?}J-9wzjHOISvj+B{6GRQWXEnq=uiN@)b|Ce3Ag%2{
z)Yp1}tztSF99!!36@9K5K*0tXwxRX;rX6?|ws8Ynuu(bKsGNeM%dzQiT?bNH*(mFC
zGM%8*^fB52TH67UD-MOq+}gL~s-+!NpNre5rjK>*u)&6j6V2>vumi4-W(Uyc%?{WG
z+4NHbBh2A%Iwe#?!71-fddZl`Ler;lKiRX9+{u<f(PU1IOr90yeO`!KG<v>V7u#~D
zb3Dl3Q?M~{BcI3v=6s(@*A}sFqfaLS?z;){8#RS*71>X<1tS@keQdWip;FZvm6%eh
zal3G?^L~sEQgO|?p%kpiIoUZ#Q4WDYzZv<wjk})zo!j~2k*Wwp;rnadGowXQ$|`x*
z2wKx=^5|2;Qh{xFq`k*x#nvO2IDdpXlp5ugVc7@l5}6tzS$Bx^=kLboWS0}<dKLR}
z?*UjW8k*Z9k2wK5e|ET@17G(_t^pfAm)m=69PlH&`_Cb_*v`+sCRd9nj@Y=*Q@}oi
zS_%WOOJLO$15ZnnE1o?)N1ylDOs<B_qL)`S0|K@S{`pYjf^uGEF|4q4k<-sBSL<VI
zPaSp&`fArUmSVdGC3ItHw_A;+9@}mM`ve;3zR$PxmHYgJ>u3jheU-5mv87fg!oDBd
zeJu6Z!&n-gVFygEQ6Jrgbz>>&W32sQ*rHr5qo<dvjiqPVD8p{pwseA?p^s*x2-v9W
za|r~D89f1;*@1}7GEkqTuh!>6!H#}N7+YI?9_7~CD4%yQ?gz8=HZNg~V*68@w>W@y
z4sx@D52IkW%mDsedN#xLTW~#$+y4w2nQBfYjfS-)%!D+D$OXO|$Ck26ZBr-hENGmP
zuL>X(jo6ix3g%Sh8UQCvhhxrkPGLS;4FK-sc?ReIqL7E3aPo5MjPOEo4FFD0TD+{x
zfzEgyxPAFP^Izw@qto(te*TT51aaETNjmH1paWfM0PyvVrguC@Rsmt~D9=7)yIHU)
zpXON?&WLK97pEmhj_eN$mU(h6aEU?_K5e9~j630HXTEKY=w+_(RL-*5=E1@|sLU-d
z2NHP)r8+5h{r(`&;xsH-oFZbK+qr??tqRr$T{KHXuyTFxnCttn7c9r6ot?jm&FU5G
zXn!*b4>?C=CvdDY7dR_CN8B<tNvV{<G|Hm93a@_Av_#=pKj{V+k=3PYv8CJHUi9hV
zLF*ONLF*MLxBcQUzuAc{F*c5flxX~-*m<C^+$9~Us|mmv8@olOtQUe^u$kPHSN}#P
zrbVt2QdAJ>&k;Chkt55E_4mlw_~UXt3)b5kjX*yk?a*ohEYhGi?soLCe^Tk&J~+~!
z`r#+^ZC^jqkACkh{o~J{=^uUefqv@?XZm0L%~zMcFT$z*Lm%DKzw$@Fj(+(!@96LU
z+5`QOKlFb3-fw<FpZ(I2UVl2%|NS34rO&-K)BoUK_&WNImv{6VpPi%_+4+1Ysn-9E
zAAf1l=}iC4|Mll375k@t>?Mh+`jbC!LtlEW(7*R{_q1br7vXQ$f<^Cn*GNC`(H(vE
z%ZrY@TIhw}^I<CA{)6=NwXf2b|LLzc>rrMHld7qDDY+4nVr$^pmBoxLrb#)}D-3Sh
zumfECgJ1{D$bI*Be>eU1Z~r!Z@)Mt=AO4XamNChZX=3Jhf%2taqF4ULAD}1S`BU`5
zkNhR7$5*77QYy>=d|JlJUZQSwEU7+9wujW$m==B5OJw+i)TlrW3wicQQt(w@Nm3qV
zGmXp?9*eA}tFa_JBfF-rS@n^l-C5r?3t_P%O!Kgedr9{^u)dyjtb}?6waj7z*j5~u
z-xje0d%>29+7x-WAtMEiLVb<1=q1~j3Y)|q%lMI+09m8wIgMTGmJDj6gn~lHl3-&S
zb-uI%Trf{kd}XXWfQpK3;Dgw`+vT^sp=SFilPqeiu&rht;IYD=`(-S#i~N9eWFGe^
zXIvM$Kc2ka3qRXzKg;zz6&Z_%T}C~Z0$Z>4m2J7({@tiG02bSD%UBrua_>nNeaix1
zr;dXfqHFqjDMtRY2A+^&X&k~+DJ>d}QaB{Clal(j-^lBlp+7#cg8=<^U0^0T1eKbd
z4=D6BB)zsppYcMUmA70LphXKr?z~u~W|N3RZuxU&+cj(CzAW6&mQ{eY2pmV+u3X@Z
z%BVZ6C@9wyDyUcBR5F#qrdb_F+|CRC9h?h%f2Ok-fo(!zsGVS|GXHC#%|Us}i$0ql
zzlDuI^8FPyaH^kq9aTgYr8I0iM8_My`)&-_q#bg7K+&o}dC1SQ5ztI29^*=xl0BN9
z=kp!p$`R-Z&TpoJIU}l;+u3b7p8~ep`kb*<$EH~|t3KbM2<U^!t?5L>=DhmQiHh|n
zN7YK7o8x|<R#<PR4!!wg84uw6=M5OoaXVd)3bv$0Zp+G10y&yoz0W5Ur_*B7!Vk~-
z8tXt<pR-)gTC+m1t@Jgo``q+3X~u-i$6h}}_4T~cM^b+G)MEo5JQtk}a-E94yJA&r
z=ab1*v9VK^`%E0Er`c<L<)L9~-1I1}y294_oZA_@aQFwui0E@sY+1&6umgkI0Vzs5
znH@+nma43!VF%8$9*7L4kD;~)^s&b#a@v8OfycREQ-|@q>htP0>H^z{+8^f$*j4Ul
z+YbpfR~3AtVS^no8|88x)B(MgYjSJ@#!|spGkr9jP<^A7zD_HB9K0Z*)q#-O9}h@>
zhaHg2z7d5W*+#{&Wcs?toO!y`$F#ChllOV4<<dqy=zPD!vpsWfr{i45;wV^a)ji40
zevnKomJ?Tckjy>X;1fBe&orxCcZiJSwGPX1KU%ThfKB8wNoKn^Ld@yN<61JWtIuQ3
z`9Eo$h5^~R{C;)_p&1d|H32k}emy_x5?M0=;Maazf5h)l=~5O+GbSwJcIzY2p0vFR
zvmh^zY{mon=uX*7@OQg*KeR0E0JUOW8Gmn)|8kJG6_J}7opFs(t<(;Xl3ka}2;eR3
zIkljddZpdgy-9C)@$QCA{@!CVxnGf+N6tPXSF3M8SL8Z@;;V#yw%?mvHsuzuRg;tb
zHm@Vj)0JmiVdE|A)%p}Vk?J<Tyz7MZxqjif`<$-yxfNff$Mi7_7>iD(sE>Ak`>yFs
z(M<4ba(y0s+`|66I&n=O`+hBkbz>}DlUv2RU2DIlk3*-A70%FW5$+XoHDl%P4Ld-v
z1159FvZ1e0uD#q6bvA~s>x2hiZP+N2YwfUI*r-RaJ@eU}KF0gcCYKJIMaT==2e4i1
z^JihZumjJjk8{wOO*;|#G+nWuR`1ScA)BeL%}ds9Q=Q>7JM6zVeS@z-Mf|&C9=MoA
zlR5l>#@rhUz__gyhX00wQgkoVx5xYSrx(VRE$v0Wont&EWLmtvIbf`4kg)uT<JO{3
zXg#sIp(7tqCd?oJNLTOZeB;?tQQB9v2xM^n=;#J*_PSV3HEhm>lgPq=YYXv}`!N@I
z!nNL8BYP5VSP|N4(WeQr0vtlA6v5skj~A~BUT#%eFR5ao9jZp5-F{H~-ID*^vDvAS
z^%+%A>m$;ogy-3$$$w9J?+R@GeY~6TgQwcwrG|Gi9do(Y>b&qo*2gN>N?{R>u<TUV
zyzu1DCe=X~BzPok5~YOAOQBbv7W(zio#^wgOmqi2nRnj~^r4qV`i>9pB+6e|UbJwZ
zgbr1$5%9sUTMnd_jp~;c$N$s&StwubkA+^l)6J}Km#Pl~&e0+VVCQqCr_0}uXU!zw
zKU2_0?~<zgr<$@<#L4^Qg_q>uto2ok!t9Mz>aKlaTm4hJt{cCnXyA*c?i-gHpSC}F
z@?>pC*cpDlmxBy)1K*x6&#;A-^||XrpK2J!CdQ79TT>|;=cbb>>RXC7%=E9caUXQd
zZCEX>jV#y1r4j4^%y6xy?XZD$1$|{zYZJ1WtccBCEQPURW7TYsWgIm-V9&?><o>yh
z6>8(MmN;0}_O((-^-H<gSKG7+KQDz%T>Gs~q_8e)GvfNRezv}Rf)s0zTbmnVpEMb+
zXR&twL~DKD)aCBCZUa|?<n8!@rdFbLN@5ktxdIv)j{Y>RaOpp*kD;B9;<#9-Qgt=d
z%|Eq5z4(5@L|+g^YZMIp%xpHB5V<;N#*`Nq<!^-XF9!k{9M{#-^xFb#6|G#APg}IU
zsBMuVmZa|{TA^XD4Z9V|#5y69jlqJ$Hf+>zzZUU}NY&Ihtyyl8C;&N$Gmqc3s9Xmh
za<GafSMbVa)Ly6o8w=6oDvv8TJR4fts<dZ<+$@bbMBy5?WNR^`Im_*5)sNiTSrFN|
zz)@5<D^}<F9@V`wSMbS8b7|N!ocg68dRe)`t<R%eWi^$^sTam<2h&<yR3otw<xSLz
zHP_bX{82eocY<1t0L?lu%8({k=@;?!suR>w+lQ{tc{Nusj;ye$^|?GcB}5SyA4``0
zEq#{4hBk~f>xYUy&%jnmvFRbFPF>ore5F>Cf`4FZa&-;|PIZ?nuocim*jN*})Swe3
zWP8kV!vt(mZZ_^sClbcJ*#R3%Y6q&*|HwKkY%;YT0p<gYrM12$-~S}Rmc0&y*r=RA
z&lCC-`YFL6nbz20qe^Mm2x}kh^Fj3!*ocz%`RFwPkd;6oi>9i+84ZMuHH%<RHqMjD
ztu!ZdFIVvJbH9+)tjMj9ul2b)GYOPRt<MYeRh>(a>!6251%2N3^3X@OQN`_s+o;^?
zmdutJAnZKQPsoj^Ia-IHGtTK>Rn~k!YaIV#Uvu{Q25KK$)SlT_IX0>@HrO_QmDSpm
z+e>MyU3W(L^&IBH^-94$zWTBC5mmbK)vx(alY#$>ujfjsD?4e?pt@CD*95TWPK)4_
zKmg2V8M+}sWb^D)DyEmtw|&y!k=QN=Ti7cxAGhg_If*ogQ7I`oFhvgSf}_wmtI@96
z-fav?W;D3K&)}IJ0=CGvEr<0T_C4wq91%D;>LfrGk!wLX5>P~~n6<YX7q~^~hIcbQ
zZN_y%w6obwiJ~=Z;H<vD7O+di@esx@+AB4V^(|~su45<Hodt)oTp@SECRqxdTq8D%
zu0I;KuFpj$$b!V`>e+^kv76jhea=}5==0Mx?8_h4RnrNt^;0zhoimYGZqtUox;}C+
zXot<P*JohozjLsuVY9h*0QLve&lq4g&ABVw^&Pex`qakK1Gww2j-`M-_BpqgYjU-y
z?@q3UZL~h;On{|*3}Y?!xpA!TkU_DME03k1k5O)h{lTKbH`=%Q+^`9+{;a`yV;JWv
z?5Il;<yJczWzSAwocA`$D3{De?K>M4v9D?ZKp!{dim}w!Qm}C@W2v)2QD0BNMx|aK
zm+L!j@8sHJ+p@1?H<mW-=Y~F7JKyjAq(P0lZY=GC{Y+P|%@LbWfv)GJd73;(!seye
zen#d>JRFPb)SS)JrS+lQPxHI@tTF(a12j=|*jMv_B;~YJdI#Oq8HbWg!gb9BZWE2Y
zj2CjFwz0DG5aESRNTVr@_j$M9k@N27#=|e|e2w&w+1vHHoDf+EUg)_X6)QK+>YZVi
z1^&Dk0`L<9%O2?-8g-NXdIGlLu$LMDB*m^q;nU`4Gat8z34GfX(IOnhE1muz-Y-fL
z!Cv6C;0_*zSM)Sl4S=G~e$68#j^t%NO>v>*QQZdS&o`d(lP>TH5y4ap%U&afPPRGO
z>n03~XyXc3o^$0Xw+*Ra8x<QnpDWUF)v3_1aZLbQHA~bnbiktJAI>=Kb!=E53(tAO
zK0uBYgD(Ml<1ybiY{vP|(N0sl=J$4v^`!jp$R{PqY>>?fNyIo0CdMv2k{(G7{pSpg
zfGzp6!NE8lq`w%-fA~vx^dBsLKKxRq_r7bS@A-y3eb2Yt(7*H}BYpoz_w>K~cVDId
z&95An?<R>Ls=~X!r*Hnyo__p$Z|L9tk6xvp{k1!K@g__3-QWJ@<?p|d>4!dgOHcM%
zaFL^v{=sjY1k2r7t-vS#$%C~2@OM6uNso*w0XlK_z)|Omks5ch34P=4L^n^~Lm&CJ
z?_V}qAEVFHCw;u15mC+?LrZV6$z$lod3Gm6<NQ}gRvYK`*~ROm2JG(X9ew<lf0;h@
zseeL$?8kqcUVHs@`g?!x@4<OExIy9#f65$Ho;_kgY68p}8CX-`)h~z+TE>U+JfqLO
zz6K#PWf`YSpAXeCRjMBv60WV!y_N#EC-P`}sTmM-Vug)sSe&pyMSFoA;GI2lN}s2I
z4Mh*-ninS%oah)EelC|aMeV_`<%W$gww~7x5U|o}EDge4Ji+F%EM_VAIH3jr>?=5e
z#hw;*-s~~q&!;W>*{;RDX1i`RRV>wSI(7A4&g*(FX8UjK`{&6wIdVOnSJ)W;4YCya
z8WyXJv@kF2wldbp&Q;XetQ%A~h~Z4dS;O1>gA*IVvLR{Il%_Rm#?XoToE=?QST*i?
zU6LHZ6>j|S6N-LvmKUqri6c0T3!K&4x$CiT!orI6Wa_x-C*vtMZu)|PqQ;@_k=TI?
zoEkQ1=b`J|^*WX~6GbwYEHW0G7#%C%qX%}wrojv-6ij2|0uMapimlZnkOK4I>^Ht`
z!N%<zbt~9*0UIKU4LfNqk7{yFDrXj(@NwtHO;3|L>LpWPvVyjQnPPG9H6HRAbK)AC
z*HQpC{eblOX$xDS6*jXQnjI=6J~+fM?5YEer(ET#a;tDQROczrh7D)0>ex>rH^tg`
z%2gi~`!Vq5CzC7mG3rdVIuMf{EVX(CYQxkfkrr^4On}t%b&T~2s@H)KY%6`$F=p6A
z-%5uqrM13>v381mUeV{wu?}8+?sL({Ve}dmR!hODkhqo&DX;#j&*fYwV1vH;SekSW
z-Rg7e(**3*v9+;gb)fc;<7zC49YFnzYFP>7H36nsv8`$;^y55XtgYm>3;L*i?$~Ox
zQ76>v5E~^9fYRA0$jxhi6dy|_H?dKykFW#LMy1s3z(cT6HH@|W6&p2y0%!zwX-{#i
zk&h)EYoT5NY>-iLorC>c>1!D0Vkca#!A6-rW30K{QnM3Yw`8{$+Dy$T$`Z6PV?81B
zJ7vjo)B~9TnJYLnNGjKpau-RqB{xj7(FYlpv#i;?2EdG>^iuC7%Q{MZ1US6pzb3^Z
z`dC`Jz6JeppT<Lp9M=vB`#Bu&*{ax_0&mxk9lW*c<aIFQlN%?s%ujIKcys)_$q|dO
z+&?R?gM(s3FMkG{SX~4S+V{KbKEmDBgYo{W-==i&YztBmM-S=YYu&(RStOfLyWRa#
zhpqO{i|>Xt5QY2MyF|Ix4Y|d8MJMou+_1NyzCFBK-NIG_7kQ9tjFk0u1@GAG_a@gU
z#|vy%`aGfSn%qpzscSc^sh2CQb%OFGZ@$Z+){8#h(wWusHl7vbc$ujZqV0jz?$z_J
zM>!aETH0v8rUP4JDd|64%AIuoApV3-u4KRK9JSQ-IpO!$u%rz+#e?N**ehMP1M+PC
z?{nyD|7^pXpJk&0wo1=$qbxE%L$`Wt(T?=`<nPvv^DS(Sz1B@Tu!YT^y@B0=IHHZC
zYwz~Rv+^T-+GDRBcC(*#1Dole*(kAb!?;<i#;*H$Dcawyb_!vL6+vUE`}a5dSsehh
zNw`q}VZK^-q<?q)V@Zj)0>`5r!oRHq*%=xe*fEu>hHHe(G(&Uc_j;WqBFx*>Vq^2I
zi_e-gGP>6Ow~t`62;PKS^0qF;cgDS;1t}E|fVc0<f{_SvD?vVJ!*Au^Q+3{OkC4T)
z&0zBLWnpOwjceJe2W-ZnKHxXjGxopM9<dbz4lLsDtF|askj8VKH0&SP6hZB<MILhk
zj*MrefX(D&>%ko5mM*bbdwW^SEHG^C_cn;C-RlarCObG@?KculpM=k!9ZmN$R}$Bv
zY)_AcUVVKz_4~kbnvQ5Pfdd@+KLr~F(#R|D%kuN~`z(h6BXrkNe`fS6q0iMgwHF?2
z%(`6JC?$2ISIzR+9d2oO>AlMV+pP&Hye;|Qwre*wY~*Syywraljz_`s<u893hS7el
zcd`u_U*6r{)2BcE8T$O^J})P$C!@1T=#iw#ZdNCCeO?1TagzHuRJmU01p3u-L-@CI
z!dRfL&vBz_eNGOC;{V#SQa@H&qwBMb7yQz&xgB61MkTkOZF_@p=-7ymQlrnW4Vz&%
zJD~p%?7)?=Qad})WQzZaKIz-J4NTD{s(mf?yyvu^Z@qon_SY-6Khs*5<7aDLdaT_w
z-uo6)aM(Q1?_xs!TKT9v%4%*J5KXN1uKJ>ga2U(7mdH}J8?#05w&)k-P*e_bS(}iy
zSNxv;&i^;Z?}tV9AQ9<R9jFzXKG?E~b{-2BMZ1lS9D821D>jW*Yzw}&k=Mv+jTUa$
zB)Gw`;oWGBjpSV#HbVPQw4n7$Zg{pu>Kng%#Fq627w<NMY+h?8AhMD)8kvBtY{+#C
z*&Fj#dxy=_@Od+VevnxZ4%n64xqV10x#nK3Yzvp)#%G&c1siEW<GP7mV!c<JnH-<Z
z*ir=-eb=XWJ|7&<5gX*rPV|(b+|`iV?}wz3{#*K51e+j2@C<qMyRC!x-2_`{o10{P
zU~=o^ZfjiEnWDdU?s?Zoy>@-Pz?K{vp?$1;c2LpI`l^RA6!dY%<~Zu>HGLFpumh{H
zBJUEgQHw~YfZecOV&BHr>tnQ07BDh!KMYN77y4*p4V?X(?W8P}c1@jJD>dh54t?JA
zv8?(ub#mi(nL0Z#BO_vMqp&Y>eS}<t9k|p-ZLh#$Yr%3wA2)6LV|D;pV%Def`(iZ!
zRCmSpBMZT^FC?o#e@|%V|6{5j{s*S=sR3KeF5(+<JImFQHZ@vY`za)1B7lT~!>#R;
zZQ-WoP#0*mb}NfwHl+PidS|(SkFNXOQATp<#XHSkunIaX#Uski;WWnJjan}pc?Sfd
zIL|n0$T)Al1sQ_Zc^5dSr5)G2UlB^Rz)P;R)f(rt@!rqa_Xsw$%QZNst=%Z9IMQAY
z-6Gd_0_QYiaT+rO!A#Q%Tg2|%-YI!dP2YY77q~nNS(%2-u<jxj!U0~bt7q46eGS_~
zC%1FJHeZoDe_yh_`1?%F!jaTDU&XcySWK?ZgU$MQhX`}Kj&e&8Tll@n*&@vSx|f^P
z69|1y0juzgr*t9LzR!Do?B!;C{=E9y>!U<M<AB-pG3rE0X;o7~-o=BkT0n0v*C=<B
z>#5gAi{eH!eSr>);HsA_gdo=n9dLb3Y1QXFwkTJVi`8j}cHo*m=3eg5N0%!{qywAj
zL_f~2>1ztuU2dSJi*mPTvn|{|VxuhUz_Ia!gKML2@B92hU%Nh!<9_VM*8UNFjO|<c
zXnj6ooLj#LrQemY)c1KDOIvb%Odnlt8~SKAD(YiDmYj~TFxC9HI!K8@hk`w?53g3W
z5r(17TSX6~YHHpsn<wMi;jOGAE@}Yi<lCGpHT=7QWxnrS-~uo9GUy1t-dXfV_p&GJ
zs6lylkLO98p0~pJUnG5mzsnreoHB8Lnk1TtBRJUr-ank_W;aR%24D02SkTM?FTBvq
zRnP4MM*yEC(&fp`K_b1FbGmiRPPpb7!xQ1GPRqR?M0pqs%isvk>f3`F4(7DZxMuEe
zjx^=Y84t|sujx!lc*sZL`Q{n{dvJl@OX>;p$&V88D?H=OXS^uXE|0<^t{uPEMg4r1
ztrYW^^M-@@vt@(KQQS;pQ#3W|=77|c<AW%O{N8!W8S6o!V0hA1M}YF~Glx3&5gR#?
zBlCUd5s}i94z}gl`*Dp;!(h(B!Kysvqozu6LB0{Z`drUo!Sn>!q@IB+%6C{qpJXuI
zB5g*}nRws>TUoGi#F_DwPbOF6{D&dX6g9;r(e9FUa276H#>U^dTl$zY0p!_9Ybh{R
zezrtXFLLFWAH~M)53+dYXS3!$pe8^@7DJhJV&dPkQToc$2l|c=9q0$X^F{j7D-(V3
z^_jl<MxkH-{7nDovv1JTFW=Gs@W1|H`oWLhYK;luVCOm$yum1f_p485`plPS`nq>z
z`sm9eeflf&BC|^W)$e;k-}Oy<`bVFhJj;OR56O@g!vbE@-Hqs<joI5h8;>gb%tbIc
zWxD3-QI7*1>E&<w4*I=6`u%iT#?vQ%{y+2sJx|Xh<v|})OZSw62Sgi4S}p6qxHcib
z{_DTK$n1fB;wOHB?iUBY89y_~{YTg2k!x*$lR~4u6w7jt=_K#O&l6sKj&uz=QB7ZW
zql{bES5kdt^jtrKZ3~ZM;cVq_Vez`@SUNyoPofi~zh{74b7DY5dYyGFa@`Kp*WlkX
zg#_0vVO*?}8Frwceg<P>yT$2k1+_m?()t-Z2}=!%MfQwcCIr+gNQ=I(WNsuak&xm`
zp7B#ko0ue;^WmsGm09(b$0BFB+@gL4|6U6V@>p#)ipLV$fb*<!mAreYTk@dX%JMEp
z)KF=h|BRLGA%ExYsP>evS*%CY`rxs`V&rz7Gj1e{fPf{7{pCy!wi7$C{hDrk6kESr
zY@~AhbJU~Qc3zzGHQRn(+$`-pw)i`2+gXPtwX{@~>u&Uj%b4!z^Hw)65v?QtZSkG4
zSrng*o!(Gz0MI)WK(>kJj~!N;ZPDzxvp8o)<Anx?Kl4U&r05wu<$LfzpTYIb9M;om
zS%^L8;#yKBWdk<Lcco6rNf%yBE5bIK=K=2H{T>UelNNsBC|E{$@&zd(gdbWFD&wpk
zGTJ#~$FO-lf(iAB28lLiZ2WAlwZqsrtC80(><DJNz!ApW&R98{PPprLnss<SX)!P1
z1}CK{V2nG9D1T^0(O7epr#uM{xva?^bYmLj%Gh=X6!Cjde)pa6!Jnrl*9E(9fpd1o
z;^jNb#(?C#M9wTX?uWhBA(>{S$Jj9+H)9QQWB27GT=dA+5c3&|dr_5fI!1o?6ZqeE
zS_8)9YS={XQiv=`=9Csy%Yv72OA0#M1zCTh&l&r2E!eBpfnco04<GxS0|K=0SkaAc
z3Uwf$udGADOFp$473DOqbmD9}!2tn_+?n5<@o=AW#QG#_MwJVj9gWgnbb@t+6g$gz
zw^uoxCF60{Xk&8<0UJ*{XV_2O9G1pizi<5RRx3drT9ec|5RP^4bLFz<tN|;e$3f|g
zjej$64HaOMO*Z=ce6m7$gB*{G+@oBNr<FcR(KN_$1~#z+q27j#CBB#Td9wr4thGO+
zpc{{+2W$p2YE(>$g~tTT&Bi%fcf&4q##ZCJIsW)}Jh#YZ4x7E5)c~+Q=jeE|1B?xF
zbA9D`hG`jLqr8CIG|6vmEODTS*ny<_Sc8p{Y>ukY@X;x`M;#j*OCpz21NK42^`<_u
zTty$%4kYgLZ0)m*GqzEz6Z6u}HFLxcOc>{0qv9-ww<<St2(-xlGi=lz`snot_SyAO
zZGYG2Vh3g&Yod>42WEA)4ORo7&F{Roo9nuu>s+<AlGszerYhGgN87;f%&{_^o0CZ9
z5!F}0UQi%&SzF%nUXcTcB+DB#VmOdVSQ~RD>ghCVc3V!~Zjrg7f3<o$Va;n1B(?^&
z`Sb0%hDa_8TT?ZkL!|-VS$jPEFgGExIVGp<GfwGvxGS|O$~uxX9;#b3r)Gr=tG!EX
z=g(kkMT}9qzeOM0LB@=FQVG}?ll-<`;d942v({}+^ykGE9beDWzKSlsg3W)+*YkY6
z{Teo4H@Wrgg5?oxglj5|KBMUfum?x$o5Dt|2H2aGtJ4&sMu@*llxs(QbPd~9pFbD&
z=jih-eWjqU9#oam>UtOSHT^EJJxlH@Yz4G};rBgO*T-kbH9p&QCan(upI0AO{Uq!I
z1zCERc7Ps{Yb<Q-&)#?!3!Ln0SiF^S9^Y+z4s0uZ+>q-E`<v+V{@^wCdBke%DX#-{
zBG!CGE^i52N}G1T>j;XU^}3Cc;DL+`>WYJG{61Zom+bJ`^@(UTHf?pV3T3n<M8ZPi
zEqpGr45~#tV4}7EwT`#wH2<V^>J#DR{bf?}(|dc_by}H4Rv<DXSqg>;M<eGv+Qv>n
zYD*UpIR)NljT|sTr49-Gy$Rpi!4oUol~w>pqcdu4@2UKdz>aJ3duvpPE(k3(h5TLk
zn=^>XYY?}@*r&z?EO&IiZSn#gfTmrA#bc$~7CQy)N^t7^kRT^n+#m{29Ne|Zxe|rw
zv#1IZ3ZxDkpLo~UHQJ^bQ3Cyih!)X|7HK3gS}D2m8ukg1L^3D>HhY!~kg|TZ+&DMv
zhLsN<^!dr<?tHo_U?cIK1G{3S4Qv&1HKSOAJ_`pkqEK~{m*~|u*bznaoi88gTR*s?
zZ++iDzxTsC`nGR-LhpK#B^#iipGs}|%wbnwTn-MH#^<Hwd*A+{J$>)Xd-}d_+Dr7&
zE3X%tLj+Rt$m6Pglt3v^$s=YYx(s}}{%*C6wE`U~lzqJ0=apApq0fK*^K^H2=gv`+
zyWYP#mH`VbHiEzWiBHfk{K7BN$3FHk`uN8`?h!C%RN46;POxdh-_P=g57PAHS;wfz
zIcXk9zIiVl-v2!`yz3)!*kSr8g+}q6hOdpa8g!_d&XA7l8T3e||E51F^mz?^o-87X
zS`?~yZ^E;EqXN#_6rYW2#qL&6-XT8UB8&C9-Ma#tPCoiuO1+&{J0QQ8XRrHB#>$LM
zDdbi=8>O}#a*8^U;<!w!^y(Det=U(*He0UTz_u6?zH^uqPjiG^H1!(SmHb)7+f67f
znzG{erjN<78CF|FruDo<>nYRbrPf0f&f3Wra{doQA+<EjfA4%&K?AwAIvYmMAXeDs
zeV@l|-uM5}n|L%S=33Y;568rU%_3iA!9<B#?H}c|)~U5Ny(RKRmqv?HShJw3YxTJ{
zrGO3C&FDHd(r9FvqS(Gx%ltvaXVpm81ninl8>YAF6*%ON%x;N%!C0l9f$DNKY#H-m
zwe=DC`bXs^Ks8^ghO8}crW<w;kZHTWr;eeR+39^m>SQ64dr@1NgA(YN3FCwmv##wl
zB01q-<GiAMs@PJpR|&PJN?9$WZGJQ8`~$;Qv4F~y+IX%y8Csv4{m{vgpAESt=#2L+
z;XM^wO|Z#kwpX?$Ne_BXXChyd7#F?CIiuh7R@L<ti#^R?GQk5oD^ex$>`T+<M6Iqv
z3Hq$i!<x8SpEr9h@17erc~r2&LU%^C){A{sTOVd>(Yn;el4TY<Hps>52`J4aN!CJY
z(r$MuaXnA|?!GpwwT(4<pQ`t-u8^j#+7|6VKbC6HcPi0g*lJVx$L&B9Ws|#4h6vhd
zeNLtV*5@oMEJAc9ZZ@i4-v?#JyQ$Rm>vg4%%ny~b$qY6|{@?0np!P!5evxbw*8$kS
zjB#45N>MNq7^iBZs_J7hxhhSUtzpzg!9G_VYdTiQpKbka`O*pFu#gpfgw3jO^k%GK
zf^9BtlQd(b)|PcC`zGkCXTDfJ$aM{rDdf*;od0Px-<t((I<cmHh&mBJ@t<rR7nXi+
z+fT(<<`2uCX`arA^5u_3{+pBEii-2c`rZn7W*ov<AfisaYwmhJSS@fSC)|(cJdW<9
zten>T>*&ChgDz0~NdOx)CzKqVB05x}NrRKf96u7#F0{J(ZmO1WXqCok-D4{OTQ+Q6
zyG5?@=Lnv1cO-^(iN;4HY;^8P)Gc`R&yKy({|GiYgww<K-r>69)$g$J`yT>NxnUD$
z8v0bQRUE<*t?n-eipKwLeV!Uc$Pnaa*jA40!2f=MjoXbYoaJ8YN+(uw1qb`8#!PO!
z`l~*Vave1w!}>gO{*TXzUAXOWzrNkDmC)xdH_*L3pnitw;~cSd*v*cazMg>Hot);(
z<-h^suHTYt&<XF;DA$fxKaLd(axh+f`~6B^`M^8qYYK9;ciX}yV`;yaYt~15o{#e=
z*KRCDedNC%JGq)2*oXQVshh71+X;PYdt#GYZ=+%j3yWYk8)feru^F%a(F1_j`na=t
z1wFQ)6H%^tYb-_VU3&`lvzOboK94rac=c1)=QdW{4y1NK5V1doO~%re{bacYY^HC?
z?5Ei%v~S8aWEO~xLVuTTUNZlx1PWAS$YS!dOal9T^GWDh!Pd34zV$`JMg{=+BC<`y
zzEV{#aB7pVL=2~v5^KDrGbXYjwDT>@sc5P2Rs+ByTMj$p*<Ys+X}d<@N-D7NLR-4Y
zNh3IVUT8}(D$WbN(;5J?7XJ`zlay=ow48ZTp4?sJtWF(=^>S@B0A`Lt<46(V3U8-t
z96>Bu4#!EnR}xXoSY~k74kLKXmDe<*CV;d{4S+?#IC`D=>2Y1*WTdQ-F3hVhmxE?4
zIAxMta}>BbK$I&So83f?Rd~!Zt+DZfKC5Av<_=p?UQ>>aIdL05pR)!s`2?>#<pj?E
zs=p1`3@h`P8&;~8if--IYbkg;N7Km{fX%s;wU3Seon^=GanBsDz$S~nxgbNs<kqlO
zaIhP;<Jqw7u!lpTHptQ1ce?|<vCL^7`^P8xm;T@j^gsER-$x(&?FahBUpvw_eQ>0&
zfB%l&SPln1^`!^8pIB}O(YsyNXo2ByL;ud-dxQSU-}(yu@BT+G(?9c_H;caLhV1|O
zv8VKN%Y9yc?<fW4IFc$C{x5t0;4z)0UlZNl40O07$(kulIRrVf-1wyTg&QuOGmFmc
z_BZsxyWd0m<@sVpu)1dF{a^j7f0h2!pZZhugFpC#8Zl?7tYMrRA1vRWBmV#7KmX6u
zXFvN{y7qCWc+7n!qTX?8n{)2>{fB;pUiugRCY9H}u;|(Avd=y`cm3YSis>Wk>Wn^5
zgXtsd_dr%(qn@kqYs<4lA5|y#k?TI!4P*)Wd0dUPs?X+sU|#*IwLN64nLYv=XDKv0
zFnH|``F+GT;W~}J5lG;sHGNGvVh`gST+BVT3p)Ut)S??ypYO#EB(G<nc3=>@r8NLF
zYiERgWo~_*3pirGOj<az+0)1E=RB>iwcbmp0RY?XH2_XXbM)&;#z(XLYTK>;i$s;%
z0+k~R7i=1Ji%gcfu2n;{PREnYp3PG;A|<T7YB51~fI?@@vDG{?Z_khUXw3<yT3YZ&
zizCTGDscYuweZ7NlBiw&a0DpZZReGKP=0yguqN%7A#6gV#*1Bx{wrrS|KDWe7JS=w
z5GT?0tbcfR_7r%<rtRRouC-wc{O}dn_#cdyUuw^gae-Hf4wVJs@`t}^wLrwVA(;TF
zwcBBrj3v~yp@0p}aE{vLb>A6w!T7Wrc0?3EC`r&bT0~20=XX1SV|^S0cm0rMzKL=j
z1)Dyb*LeJF;}th-E?2ZG=YREk&v2CPA~xQ%jG@mByJ2IU*oQh0$?6rTTp8PdO$(ot
z>$5eRg!$d9$ZV4<up2+TV-Ipmt<Nv8?VCRGjU3yo^U^3;4+(M&a%X)7$GT%fpNpv%
zIl)O2xa+mgYtYB4`W&#$pibH$qFu4Iv0^%5-1XdEyFQo5Y@P=>>joPXi(-<wfTQol
zu?Fme$yNTNQQ9I`8|U3viP$h!YHtT>z`l~Z$<_3={hr5<Qi7-)=DCeEu>&>e>sdE3
zL#MBf?bPYx-1ISp_A&74r?j?F_I<MhLQJz)eJuf-+}iY&n%ty*RUAvKzb4nsu>u=)
z>g;FG#}&39cV3(9P@_Vkd6Vj^+bHRCjE%Wm+RrgVAA9>5^f7J7t*iGE`@Due=M0Ox
z6DL^eq1w*s7nM2KB<|zpkn)H<=qG16<e-m|0VIwRT+gizgvjZ9Cgb>L`J4soDBq9k
zCMz<pF&VrL+TjfCvR&y*RA#nCGH1Uze)aRt`XPlil}13SEwVz<_F09iWu?K=!>6?3
zQkL(Azw6$4JIXdj!rHYId>jVnytdzaJ0WY@4t!EOsB>LN-GNYA2b6hmT&;fZ8l0bY
zP2ID}o}Jfx^3ew|cE8Wz-NYXPToyo3v7WN=#Cw4m>lt%KozIg=@=-ZTwrsej;QKLb
zet>JvMZ?xPp!;{XIt~7ACU@>5tO?R1*m_56FV`X78#-Zfm3K28vS<5#VRlDp4c|||
zW@}Wq(^T%^*><R~!WQ~Wo*f*qm9}*vksZKZ{(i;LP5{_IC%@qUrRu@-3Qt-G_>SGP
zqQ1((Rd?@AeSHQt>iU!*=K*r|u|;crm2sBV^)*b!wXO@|_Sj4xUFS@nBKCl-$8KY3
z_3l9j44XeM{C=~~uh^(4*GioY+ITn7N3`2}*3jp6s9>LH2h5)~q;~js4O^z|K2KNr
zJdTaN&sR1oq40av8l4w5%H&wLIr{B8SI0T*XB=y0gD9noS_`@B!(qcliI0P6wsWEw
z40<sy<!p-qy{7iDbwMArD1i~B1#5Xw)LUFPTpR#2-Gy?>|LQ_F4LST9t)e=@do?)W
zq-y;N+O7qWwhhHw;f0ot@7gzO1|)SzT8afoNZ<6ct5xR2(M+jGSISrzB2raOr>b<F
zZW!!5rCP+W!q8|LYe&Sc$%&K)cEE2XwyZX}n`3pC5R2krw)&rljX$$t_qAtf(OU8M
z8`$jKbTGER`?IfL8@lThp3NWBU|h>3Jc|pYRlJM6n=DO$ouSOJJt^;frN)cDB{ylu
zSbPkd$&teEQ=MhQe^@-upL=DZ|MZvNpwE3}rmx-=`t2`H^rhFd_%ZKwzViCAa5_}_
ztuLJD@Biup{m$#NL}7j4g;8iyKKnZp{qk=;&{yu*X|KGk?|CunA<go6<td-UR{F=E
zKewoa1;^`m9AQuNoB#BIUVTH2b_#MkF#Xkn;U9hWUa&pAC;I%WXS!X!|CKk+{=WSF
zPoF-e&wcKn($l*;vQJy2wf9!qrGb9&7k+_W`N~&<9W#T}e%q9c56#{!8>)PGkBq^(
zdqF6zBqqy+$|v&6p~XwzO8NN4;*_|DP9@igQrG(EbtZy7wuo^=wh{C{=%eaP(>K$J
z)agXuZaU%5uGA8E!dP03MH4dB&|bqr%qE)J^tpRBQNtd`O5VU0^_jxh%Ap@0w*ysW
z>4GcUHZnxy5f-#>)^;<1=dr&D*Uw}74O=QrA7z12aj+96UwL)=3Ryp-)!e21pph#n
zttV!+DQ|5O{#yL#oDn{Sgc>Jh-6+`H#?EHreO5J7#g)V0+PJ-)ryQKsO0ht4kS@Ul
z;JCImheX<E?LR9*so7gZe&~a2nz`R3&TYXjp#dvwn#m<|=>WRK*|6n?ZBT3yY)~6E
z%O(_}AAYx4qr@W@xY{l_gME3l9s}8GaMZ3|K`+-iMCx06()K!)X4m0FDUOYVa?r5b
zd_x4gnc88*7PchV8#d!9mo-elMhWj0v1M(qp}iEVouJopaMH`wu^F#^7p+yPaev1R
zLQ!sc!^So;w!1#!-qK@_U=w{6AEg<2eYbHiUj5=WUb4T6+F&agW}NCPr$r^N1+?N=
zH*Btt2>~Xw)<^#S2z^8l2t~Pr@4cG7qTlS@bgbCsqh30DlD5w)Z2eei*eK|mVUr+?
z()7{aEe9_8()4j{2a@QMN0OyZAEow3z*bs4t}(Z9e4&pUHcFiYc(<goD{-tu8+Bm^
z6q{_Wp^t)X4)q4A>Zh(jRE|^BN7$&0>u95L>~q6bTP=lX2L{-I8FnCb{UT&fS$|8g
zr)Hy?{p|W2*c=P=`2t&Kqf+W@SZY~ax))bD$u-MS&LZsH^*x32-_}R+zi>2E!&coU
z4HTV`=%WN`A6Wwpewb~GBdIwsxBaZFk%}&jEGHuFEeP!@7IRE#AcpjRYS}99tR3_t
z<B(dG9?NvhN@FU)9ks3<adll2VD8%aGx}kr)_8C(=4s6f?UYrBJiW?k4QHBhtPhAt
zcb;<oJ~*qzF$rGiGx)Z5m`i2P-0_q@iwj&1`X9kIg3@ZMJs}#|vbHUPSPs>ecK)r`
z{+R-&H4No`f6(!aV&^wEx6)xuBO0>^;<N2t4BKPadu;oz2EYz|JauxFK8^?ZRr%qq
zmIC+wwOR_!V}3=hd?3g+nA>Z_*4I*qI$_uti%?jOo~crCZE~s9>K6!INlGi7h*)Bu
zUG#Y;w>e<ncQpZqC|9O`1-7ZfwvsEb^?dKUNS~7~>l1MM-04Kbez?L9Z+)(mY}fnT
zoV#++zlA-HwQg+fp21!JOgk`+7uZFAS&oQ6H#;zHao0z=MeJMH#x-}n=<AiSB02%u
z$7?of-_-^gkeTAxY`x#<MB2a_ZPa7qJdUNScA&#%wLgr9-)t0PD`ulo+SJ!*Kcl{G
z>7)F<8!OMUQT<pFY-WR&{~vA+vSyfIlP=~Zn}<p}Od#m9$$8a|IZ_WVdmr0d`=mGS
z9#;Ew#nw)REsBQu?%(y~mJT-uKQ&4K$1l7`I#SR1e+CW6zJD1Q^RK*dCkt@pg|5OY
z&A+{gywJi8x)-5yJAaosGnp@w4LskQBe6JA^fb-V&XF_13%&f?lN+RUozAEMu$SnS
zyW>d)$<09vbnv}-1$ZMh0UqP5-b?h)m?!$%|L{cr;{W1H^xh{tah@bngzqn@Qs<NN
zX$wzznZ)36y#nS5KZ}Al?s|@@<@7jK(mUqQmeu1<SD3S=_^_jx1!&y$!sX5CP&CEo
z7F^(5-$2Ndh8;H3EJx-1XD-@@(<QcXk@4*!%loCTCn<KLJmyjppiC+^;nzOPJ^0?t
zV@{}7Abi`Yr6o!vHEF#9)&{Ou!0N>{17yhzUVXuynQv1Em)0xb#m7##H(543xNd~=
zU+WdLS__llW8*IM3Kne4V{SD8q?SSjZ@FN9(9JurNj(E1ksFVrdtei}^EfDz?3r$t
z#Sd>Dtd;_yUO^R3f0gU~@@%dN@Lk_<OF#6{C-kW=O^c&_akwuI{MV1Xu~_c4-0!|F
zx>|?j(16FrM1SzxU!-sPz>a?HvuAPC|H^01ba!9qfBLVym%jTO5A=6GdB5Dd(0}x?
zuhP?Fg-$H;q*mO9$L(v!qZqL#qso<ah9k&tmVP}i&wcIwBn}Raq~hXeWqgs&pZKeE
z{}2A>?&QC{y%l5j*Z$i7mj2a$^}pq5);7*}$OJf^XK^xr|Mz`Aee#o^XhsOeEgBW`
zd-I0p@b&);rNet^_bq>#((c`K`0yW8TQeO+7xVrFBJ{a%+mA`cwDoz0KF%_hw9bQ#
zC5fI(+Fqfr8Twj8C-$IBI*Bvr#`;{+=g1@f`L`*lPOz#xoU|?k4e0Z7mJP{G7)u0R
zec_5_eO*p`4x{qw3wLwi)vv&=HtM8Ni;PXY^jcSh@6CP1`Y4WdsZpW&${(pqQjyxn
z(ngko)Yn*a;8w5|kxe4hD-Z`tvjfbdd&W3l+bGmhSnmC$S03p9_CNaw{fQrXkzRY_
zDEAc3|5Z(ubxnXLu%A)`pptO<^C#9&VVlIiw`-<?VtcK&e=pq1_ly0#+4Dk5Z9k8F
z&JdG&1*cQ9{haEzyaz`dKe^e-f`OlH*w}Gl*$Fmpolxj(YhGgAJ%<HD-_G;SD{s7^
z`a^J3kU0h3*~nX=(Tat+reJae@-2Pli$|gPI0zT`EVA@MWK}t-`R~jN&Hc$d`kXbu
zk+Nq*__A&e%u#)s<sLiK1USh&1&;NBlnY$4os_%&G-<Tw!T7ep1uhGDGR|p|OcIVV
zJssf?;Kgx=jU!3VhMhU9XN`^)j&<e+7i_xl7oFjafau#GV~3y3*kr+)N%Xx6Hq-#%
zwMb2<34qAe<+HyT<sGNv+4;1qY;<R}?Hp}9X;uthbGu^$-?r3Jz~Wj``CV?h!Q%It
z;jCaAtk_j<tlp;w)GHWu&BxDXjLb96FJW?(`UHH<nR`Q0ZhBrUA2mZqu*ur8hzy<o
z{WQrsiXG;{$IW#fnEQLoYq<{kY{9-?^Xj)+3Xt30qPWk3aksPLcC*ayjGgauJ~l3J
z?eikfVV#h4;*(+*9{ssu(>%y^kB!&9e3r!ez}OiZXCz7FbJBJOA=p?4j%OJ+d@s?@
zskmH4j*Cqj5;pv#wG_CI4_2Q5wG>3Ir9iI0hIZw9x3N?t0-XPivGG_^eMO%y4`th}
z*ubmLJmyKUiM}2*tKcksj;QaNFz02+wMtC@-C#9+90sciV115pUUZyuAMOQP97~Jb
zxW3kmjL0FYK4L6cN_w?EH+`il>u!;o_4yvy4cqc8b|9W5yC^}f5gX(hv6+p69cXeL
zq!xtRD7Hx{OHC{8OSe(SR!gBmUo(Z80Kldj+amp#WKW{lPEj9AbsM#Vjbh$^v!Bnj
zQEmrRM^4AH_c_b4*(k-vYi$nRU>$PoJnp^E&vM{k^)%E*DYj;#)^bxjptTglX}TOU
zaKztdzI0Dt{_08g2tzhX1huC*H;RNkiY=a`KAX~w$T;V^Oewqb!e|3-f^$N$3gK|#
z+H~()Z0*;*xTlxjH_}I6-Xj3T9HcXx6D<NTyJJ}cC5-dGkK%mgwKudM;LJ$j&*}i-
zZTP7OkdcFcs`~z}CpTKZ0|6%XF`1S2<5jy;MB0H3Y2j~PceVp63Y5M$ye0C(wHV!L
z?W<>(vU;A;u369uh40HH+AT<{ZnQs!&7YN#^|sZX5%n76v3j=-TWqhPea0I23t#w>
zjE^sW=?i{fCHwaUDEotc@9+ICiu5DHGvu1UnO--rd8G6eZ0QlX+5u{Pr2Vb-xnYaZ
z^44w+W|#YwKF=H21WRo^;ps8CnFH}Lo!IDeJZweZvW1;~7jk<PTWT2*kI8ild%YsJ
zUas-k2@VI#&PZ3}s#>i2SmC6l=j`*x<m%sl2KKZexA@y<%KZ_!`m^}=$Z{iE+o-Lv
zl7Q`b$J*6Cr)S$w!Pd!r?rack*jsKNI{W9?O7VNAXJLCpt`>~2sjpjd3)oC9yha=B
z9mB_hTRh;kYhPudbaUEkuipvtimn~VgW`zZ+WKL<{HIFhzLOWL8a*qA8b!g#>)GH6
z!j!*vck_jfz1#%=C~+ZQM2YN`$Q<cTfop8AQxd(SrfOBB-D@O=EFKV1Gui?TQBUoZ
zMc<>kk|yUjwP>1_?xa{fO-CYPKtGcRovHV-h(hVNY?0XHMwXu=r&k2dDtWG6%Zpb{
zt5%trTno7Bi>F0a4Q2Ky2_q4eeuA@AB3RL1v%E_}3T?zDad}FeQ;}|7F#vQrQ;iBd
z=Bnhn!8S#%q^ZP&f)q7d30G@ZIqHH;v5-gGBgGQD`W09+qMNJ9ZPsWWH%xf{noO?E
z;H%6l_}o>_@?(~1E{?4vJxz;pjV!bY3lin0CzS)RiEiXpk3cHJFN2<=@xSoO;&8v?
z(_nqgy-0Gw$WHL(zq_n_r;Oz3;_UzIS0?)4OM2q{{uh}NMpONM=c_Y)@zqHj|Ln*e
z@+?vB+IdO;A2#BE1(-#^&w21Da{dly0-)N0+?z9cYQBtQUQK4<zcE$p@BZw6Az1=n
zeeE^;PWyd$@f(N>*z$k1FJNN$pl0dk-Fv@#as0nX!{PnQe{VDrinM5?L_+b#t<Geu
z({n*zLLZek799T7($S4yH#g&#QG^9{!rn89Y!JD|esyWq=(1E}Y8A#k`dpsj89lAu
zKq)#FD)d=wc535XMxV*8QqyO$v6Q?$QM3z+y#kxx0OMZ9IoZUQJ(^t(6FCx2>}e92
zSBz8rs_L&|ODh|tucmTkXMwd><0WQWJfsi>WIC}<AC2`|N>Ycg=thQ(n%g8U_7wKg
zDP1_qt`^vOJfAdDQ&g!SZ9mXTX@Opy0P7r5uhIW$XdK`KY;<K_vN_E@h5C6*EPzM<
z6^Zh*8Sw4>Q8jECLxozJqD3;dHAcc;Yq&#d|Eb~M>gp+UDeKzi*|hp6#nXQ`rEr_t
zeWTqA8n?Q!Ezf=K_1}kaN)d8*Z@jY2-kH{Rw!QoRm%V=vwr)G>!_XdM&b9XbzH@XQ
zI_KztbcA^5Af)I)z$VDt#MqdGm|WkANiO)_s$AnhDs{^@WxG<>amp3Q&8_4Qr&4hq
z#<8)L#~-n);y{1`2Mi7fNk|F;3>XN)Akh19-ru+PT62z()!o1D(Q~Z1_TJx->{R%)
zsDr+_$69m#W_OPsWAy0p>vq588&~|z8T9dvX^EqD_oOCyRZ{|Xn`pL2r=C}`E-_ZW
zcj~_uW}s1sl@=n3KS;~wN)dGNTQqscPg;P}v9P*|n;F$`m!+N-a_VpG<7{32X~krZ
z{|vvo(iVT#G^yIetft*o9*_B|->JI)s`1X~PfPvb`}KrPUg5TadV-yG&s+Q(vPz~@
z{1^JmqL1QkYVP*5LJL38Ju3Nka9yL#)b-a2erNeLlRn<f^=$8%1GZyPrMi4rTKIz%
zAGNU8w1k%G$}h0Sif>#i#m7c`SAXgie}Rsmuij>teyRUNd#$i!3I^V6Li<mYO<mq!
z{;NlKcUfWFc2A7oEd7T1ue$J?AyAyc9lHf~gl)}wW1WYz4gO=k{^P~>nhk{SVeJ&Z
zaW9Ma-)o<!223A7KcUG-Hh(m3WZ{_R?;`LrqFpw3cr!>6G(z@r)-xl#amqoH+sLXl
zUU1>N=0uZ=3)u+TgzRH}7XQa|r_A-u8%Lx4o;S;JeR23LKmYdmxo)Nx-3&4=?>mQf
z-b8%x(9SQp!&+-=y!eN9e$R6xrtCuYJmcWsOEMg?Z1<pNl_Z$mPLg&6n<N0uvXN^^
zGTg?=N{np;HjyLR4ch}}XJY4jBrW{z$3IGU4{N=@|KmS~jV;X(uJfKAefeYbwzs}b
zvTAn+*;t|Nf{jw=5kFwx9q!L<lAKf<UE3yL<2JrFx$$pVws-H|6+D~(*~^u&ym)Bm
z&n;lzg=~4A53o)%<SN<9LFbZK3Tzu>_|6eKCl_5_B5`!|`gW%C>Cnc!{I@x23-9ha
zKVV?F^0i>gxh2Iy=iJU8){9}2Ebmb{&MywKXKZI3c78tN;smxWuvgR%7=zB)F3y3i
zLhfE~fOQUg%^fzregRAX+|HjpGONw@S?(;S^Oe3N_Ikj_$-&#hyHAj-KRf7L?gtKj
z(>cq9Wq*t9H7jTOqAwk=aqp4j&48VG?@j02|8E7k_Sm=|+=e|`-33c1<Gy|?=saTM
zB-Ts#fnmiDF!mYtDoHj$u8ir$6FN70ec>Qi{@pE{WLdM<Es}+=@=;sJW$Jy@;rcfB
zr4_j{HukBvCD}L~+3Q_kJJpx?-OcA%HvN&0V(hu`;G0eC57=4f=bay5?0gTlH`#1t
zy>!_5WAy@9?mQ;MzQp=qoo{kGDYfr>{|<6JXStPDPe6PS>zwWNptH?j$xD-bpTBdL
z`x10+r*q}q5KEA8iRFlKDvnFizDMFzM%@wgwHSA!#d;MpEtyZewB&)K69D|N0H6c|
zNjcyc9Ph+Gc>5N<qcfwN+pz`Z+Z?=||IfhpCj*2}@z8#`Q=wD{BN?AwxURbUK$JA&
zr`UB4g-8mhPvSLBB@|?P`u8X0rZvvW<7@CpBGal)>)0N+y`dlb;2rvw@A)V_^0HAW
zlBB%~6^R}tuHe#A{!IC|ZZnY`$CW^m#O-pp?sf+A$~EhL)}V?Up{^8o_Hzh^k?@(w
z!WhS#`TnWs#z=9jcy@=4BzYE*F4;WL=gYmT-rKRr!!;1=n=(Vd7O{d0G|H{Nj&c<4
z`K+4@4XZw{$L2dB!?2JOV@;>925feGT(K;%_HvZxl!lf23v<<Pm_v2YrJEJ%P90W$
zfd|G)AANDA|Npl=PH%kjjNb4?8+zG!rvL8mKTE&+>6!kApLvd+xpSB_-Wt8H$$H9c
z#IRW~c14b4a;exX;~E6FUQRFm!e6H6-}gPf^StFu$K9U3@B6-wzT-Q-13~uU8*lb`
z+uPnwzxa#4pthJA@80=S|Ifot!^`QBul<XXweGvmz*0DyUIH_EGD8CX(mph7No_{H
zKUddrwWxPKmZR++=b-a~zLsF0G=r)k=s27GuE@~?*|v#j6ampb%_d+2Jyye(j6e1o
zYzbUd_WP55ptnamhCeL(R)+m*y#d3vv{&;3)^|iMMgRTjgI)f>|Mv;{=C3(F44&ix
zdOO>${<QhaBmWuvWgdpb^-J;fve;Ym{qE~~Y)bI-;O%pKe>rZg9lvA2S+U8!on_0D
zjOSjwD}7?b#*{WMDTD5}PYppfHP<2=$}02eusM30KJko>wbf(l&39;Q$1+-MGNacP
zAQE3)LTJU}j6|Sf=-X3^EZ9CAT)$@u5jj0xMSDVf3BfQPqcu@s<=&}XM(pv~YuH-$
z7irKj@H<|GZSm~u+U?mLHkW(<Z2Z1a!RT#D@mF1Z;<K-7UzgiyohJ+MT`9NII)5qH
z8s8_dnZ5S*NNN)t{V23z&o{8gqjsW&&Q0#C_Lu{<{@(U(b!o3x_oXZB@fvJ&B-bmj
z^?jw6TW=FL!Ir|kuC<AVji~jth1}@aCYs#t0ox7zz)5>Wn|=4C_^2a$ywXRV_5+4J
z+GG8E`KT2?Ai=X8Q;ZOO{JA|n{le_I6!IQ2k(%NAHF2kQI}|O$Z}2wRFv12^MSvh1
zC2YGnoo%xG_a(2~(pS7z17Mh%K#rRD;2D4>Mku4t{1>?&+Map#1w93VgdBT!k^Wj|
zx=%i4r!8w#Ppmv}>r75ynXEn2GKEyFWSdKk1}0&%$n4BAb)UO)frOEPVutF7fd4$T
zni5gRMn7Vk5o_)HsTJ#t?RG!kys)`3o}Cf&F^Z1?bK?@Q$?3UC>tBs|nN4dn84`3q
zg`ETX2y(`Z*duIG&m~FFpMU$8|FgeLPk;6^^r8RlH%O`LG=Rl+{_rD@(7*O4zk_bw
zx=mm4#;?><+h-b#^Q6sy{iR~-<r>>XZj+r#92d`Sr*fty*Av)I$(3>KgIq0By_ef5
zZ1Qd_*PJymZ4Eookv$H$j@Wwaz0P~=r|k76a?RLCF>Gu080FgcC2O~58TM$e^9}6r
zI-OgcQS<eNrKg4Ib#AmTt8(r9z`bIV4TD;*#!koF{cHBRCfC@PuCvGMeAHTBvx3^x
z`KTV-P5aU*d%e!Tp2U_zthd8v&pKs~*I|FDeaSY7OvikBR{l*kZwjYQQt}Lc8^@fA
z7Lx#*$;28q&ph{noTTK_tV3?`2Ae<Vzv;%GaqW+mu@^JvlL%SwEHLFO*_9^)0=0#Z
z-XeLsg%7=5raoF2O9YUYM>6!f(kid>71xdPKO8?v?G%E1zvrA5LhW#jr*jA=u~`N?
z3i=uMye*E5Z(BHT!9B0{C!LIn@hBIka?r-#+i?<do^qF~XlIrz7vrYyxx$Sbn6qMw
zVXY0DP?-oe({=F$1_4`28cUt<eZy|Qm+_2}a;VpcO`m1hCeQRItT)i<fUPW^-JUgC
zwsEyi-sF~my@d9q+>_|FP+Mt9f5WxKvuDy{_z6b7;83S_9kEGY7+O2Jg3F!n{owfk
zNi^A1`#mpinBG9&PBi=AVWIIWzkNZUd48hb_~>B=azpfMzq_MnUz{b-sH`fjUV+)f
z0vnm!^j}df5vvxSvqCzy=)pp>hCYsuovPuleBc8=N1y)8r*-#Ie<=SA54>73|2L0(
zDUIik(R}fl!}mvD;8{W<pZF<MLpGMlb-van#NLw1t+z*!d(wcn*`qC5dwaCL(wJM2
zL1c0xl}jt~x|D0=)lVi@*dxnz#tJvuqtq#u(<8+f=Ly(S4gFje^UASF!4G8HC!k}w
zB(lDt&#Ixl)LHIj*w*ZsfPD^rfE=63T{j+310Vn>2*%q0r*c{MpM871(!aLJBCY!R
zy1aH@-(zcIkNL-{g(5`x{kTNb22!%X2fpn#gFj?D$rL`(58m$|?fPo9GU8_)Elidc
z1kw{&ZC)T8*!aEh_{SiV&KmUo@;8jF_FKJM0}%qcBf<r91PQ-K_<fBbq<~GH%_oeQ
zAKview+n3OUxwX-$tSSc?}zYwH=jg43yj#JdG&Hh5u0Hbo6I`qyWrsO<-N!Q-4UC~
zeZcP%<Q$((kgL6!1!E}6?OJTeysj%cM?Z@?k8(F`SLys}Y?iMagGw5N^mzd!W7rlt
z=Q(iF@g-tway^Z$x92v2YBr+?LoKNeyJMqud%V_OPuOFVO_(3pOP-P&`t8wg{r<GD
zN5-b*;_cn29WSRQ#~$0z*{jOB^^XyE=-<tQ7ZlIUbl7O6uSL1nrH+r}+GD$+A86S4
zo;ud1Aa@_ysEtMT+tk@3b$!L!-5yW*s3Sk1b7DQIYKz6}I(GqjJLWe;Zr?;pA4Mnn
zvCG{SNo}xRY6>^k6UNE=b&9{QI>jgp`-Zg_or^BySSwBzRCj8w`)2Y@-xNPOXO3gO
z%>i^nqfq~;kc!MhQaFEdpU)d?14!kd8!BSAp#ZQ2SnS`z`9Ca+Oj@#rZ3I}sShKC3
z7kXT|j={?qP?Rj)E?DG&t-z<<b68u3u>F25IO)%}XL0)qZ+Q%4ZF+wA73{HnJk=gD
zyN$b^6L{E1|2Kd0Z_r0R^1CSh+dfRw_sC%b;8m}BH9h&d*U?+v_BO2>6yIe9oAJB%
za<#y#$u+h|x$ca%EMYUqY@nV9`kv77DY=?l<`X)X?0c45*KR!J8_<v$wurp~d!kSb
zc@29?3wv=nTw#w>I4yEY?n+PC)vyTm8u{N%uH0*Sxn3#9d+1B!HTJrJJ(hsYPFM^f
z*v=R?Cf8H-3RbXPCD*I$@yHKw20P?tS>pq+OlvyNx`}3Twaov8z4ra~lpi=@k5T7W
z`KTyY*^uEmL+_(ft50^Xed#8Cpl^@<(~>(2u&2H+rL+j-$IYL<?n95|CVpVe9)&t_
z1$&b-p9I+Gsa>02*(L?Xr7?_4aon1qgO)gexnxQ{<E^$vp%$0dF_iA<lTS6&e(s*y
zE`{w1YS6nb0JD;eU(pIsO{G<p=QcimqA{8z*_7PA**5-87U;ND#qv=W>D=H+<>MnP
z0Or`{sU~wZ@>^`r+7S@OrR_y|`-K}9T#uqyZJ%&0e6xH#7Yr_0d3q;3PBm<le^#!G
zUQ2O@iMj3%_hVjFiQerrh@UmU#Qg9>;-g=Tor_&D_5%8xBH!nrBGbkUgm#PO3Ag>8
z&d030z;%-E>r6S3@}y6~+k3Xn!u>73L8MT4^$*Ld^D{nrLwL5eSGi_v+`i@UhieP~
z8vzTCOXp|o*p%zuv2hURaJ`jwrkRP@IHQ<#xL0h<XIpvKPLH=p!A|~nodoxpR8nOQ
z_JEz`2y7YHOl}p}#*B7g6PgqRn2OXpsC4^m@M~GfWW^@fflZ3|3O$X!8)IWE+{W2I
z#*1#)ls|qFZt^YUDw{Eot6<4Rp3Q%n=S#s(2%ye_jgKe|B7goq^Zv5~|F7Tm4E;xc
z=ackj|GQ7p|NEVvrg#4IGxP&L_Z;1siqydnZhE!}=v?{am1otkX{PNU*+nJTgg6Gb
zN0n=VoLS?2*3vu|cQq1_M*DYv&%a0C{4f0T^eeye%kT@jsNB5f4-2pVqhI+a=+U?Q
zYr3f7=fla7U~kx{vscEJVXs1gEbX(~Bg-knCRq1sk7d!mfxYtgsOwA8J}L)xv&YuX
za%E0omaW)`R&i7ZjlRRYyj;IVuK724aC^1BG@4wgc+gzh5C3GF5E?Jos}}rI`(#^U
zn_?N14jY-y8Jl3=`3WG_G5?L**`~$*>g4TOe?#qY<9$irO*defhacFzFR5ImcF6t`
z6D{?h>R*%dOq;)y8Z6;jd8U=ecifJC#E$(Zw+nZ(Tpw)vY`gIN>|Y7Kp2rXN-FmI{
z4@To4mTW0f-(IzTjQVySlxIIa&FvE=YBp{${n8Y&Pq=L_*GbytxGHw{c^ndK*z~fE
zp==R?7=pNu7x5PK(Es9OL@B#?ML!D<dciTsgPix1%r%71J27WAbZ#dwCLQ0!-yOcU
z-zk6ZCTkFlZA`huvlhi-8(^Er<P$UDm1ds)iQ9F9cFelK;_q<3;Zs3^1=wU$eo}sJ
z;l|H~t;n;JVN1%}FZ6i<n_%BfVowp9wrlZAnc$AvZ;Nrb^G2azn{kRPVB2K1JIN{|
z#m2v3Y+NyTgs<oCv%DA^k4w`|YX~_u&>(Cf*M?m;RCMyK{N0=c!tGLYJsXW6V@oR6
z{Up5C{H{YU*Fo=HrDhV69iVg8sm!CeU(fYOu7ZuC&Rdbe44aTe5@RF9)^x5Jw#>gi
z?TceCkn2L{`)Pr#RFkV>Q@ICh1bc+sSw0)g`Bbiu`$Dd|Ijh)`>U@UIVKW68ag2Kd
zd!23ZiN&Juo(uMf4LZj{SnM&!zNFm54O`TCMPI5x=Z0;!kehJZk4gHIVB^Il>{b0`
zlj|NjmuH*3)~a*atk0I(VYcYmD^LF!bUw*E-}+K@owH3;VCQcR@B=cgzz?X-F&4lk
zcwORhWvT(#V+MB7`BwXqV1XYnxsv%P$hCGp>ZH!m&U0zOE`DHw&Jn~sw6k3KKepAv
zH3c%Q=$x_7@KMRJi67WDKfv}lVpBf)D8oinn_Tx%uGQtL1vj;Rf!PEX3!bEqA1(X2
z_}3(D=0C^iqawCBVB1??(s`6%>*XrrJ7YsYAR%+U@HL8Djwm`P>w+XYmVm*$mo_OR
zIV-&cx2f;fOhT?H#P2#!S`SX<F0S*#TzRYWB%TkJS;r2lHDn%YqL0)bLBf}8Fot%k
z)nHpY#&8tZ*fCr2e*Dzh<WYT-(dfEb=CN^D8^3o31%_o$^2ds(+g!wgaxn=|f}02)
z?J*DSvy?5^xd$~#-!6e!BB8YqY)C}0@AknZ+u-m3p=IrtmNi;z(}GX5=4DoCk4@&K
zsJEB9q#MWXbKYgUWx!gkE9Vj~#pkylc>nw8r+)ff>gzUJ4<1XsJ)sNH6AK@B|NH5E
zKl?uV`+x5z=zsmd`(@tFbQ%1=7D$WF=HJ`1SKlpQvkcoP*DY!YM7fHOhuloA_Wc|;
z3WCl{FZW(<Cv?uzVMYwYX6>@p=r&}c&V6HnHwwCE8+K(7Xs01khy6;qp?!z(X-)1i
zINHl~KwsKhpw*t;+3Vb4uV$}ok1Ks;Ay;l+!M0|vJvIxrC&U_KUm8uWwx;W_$@(&2
zyBE1`LVItIB3Fz*yMWC$DWcA&sMF35#AiEpqJ_QIQ+@#USgz2y(97IFt|xtzZ49jF
z{3iCeW)sm57`FKPcmgJOI$y}O^8>E)POg1F7wp&B>k77bdhC?Fa(tweW+U=jj7wI#
z!N#RUJL?c9TH3h9t+tp>Ej?rL_m`GHu-E{w<ClIzvLgn`0m%+f&Is@sFSPDHY3w_D
z;R6YaWIIkF^CRV7@?DRLo!l%7NZA$1aDvk;SU4~$@j-4cRxw={Bs`7W2n9=<OpapE
zBol3(y2&6sYtbe<mclp+j-l}LN||x3iWQFPS-G18I|`!lcNr^R%ezXUI_5Xig>VHw
zJc08%OAt+qV{x{JP8Qpajs)3eE3T#A*LV`LYSSQ_5+WN(5gw6|QZ=BGviw#HgN<a_
zJ+j-x+1JEQuaL$v^*UnX%$5DV2w!-^rujHoih`1~D=&G##*)v2)DlqaS)Q-h6l+de
zc#aFIWn6pqK5u{sc5t69u&G=Oo6`I=Z2UXMHUnFeo6237@_}s!Y}v3?qlwa@dHWgn
zO9L{2ienSG&y7}!{1n0{dX}Pkv&jvaJ{3AIN#$O7p|tULOC7d??-MeY9=kQt6EEA+
ztIjjM`aIF&w+4Fjd<3sC0?K)iA|Na~#Wr}Bl<AzY@nU`8>yYs!I;*7EiZ0@4eDJUW
zd)eXQA(gRbu30LSKIbQX;wR{D{q4U^pZ?UR^j@hsBtCb(edNn&`}kW9&%UJHooC^2
z2ivOz_AG_zCewMqMzXn+9h;mU5I-@)-bU#|Vvp6{+kUTdRC}C}*@nYS;E7_rO^_R3
z4?*Vyxz3Xo02H}8wyJ%L)JMr)kp%vAQCh3oL|Mr77+ZnPsiJRH*h~U;^8;p&(GO(n
zOWN;QHnp=ywuyPN4H5W(sy4y5y4-8+50wl03Z7j{LO;*&3xoo?hspMXTbRM@gDzoU
z8_j>tMFJ{AxYlEOItb5Fs1rr=#D7+qFpYx-s^+~ep3V2msWA8TB)`{d9NU{Tqg)4J
zZCCEm0lr=3kkN1F{VYCc$k`V;GA`LzQFTnqVZxgS^#e9OkC;ICIO#j^7$4~i8GQU%
z&LK3&WPjIyQ1^Y$?@TQtQ~F%;#lN(>?7LfAAV80-Pz{?g_Jb5J{j5jw>`%VT<PTrm
z-xE<A;5O&NzwPvxWusc^sE*Sz0^!{nO^9Q|_a!ia8!j@N+wDY#%Q;_dG&OZ`cA>pS
zI(}FGH(8c>c)t`l(o@1g0o>U#P#_yWrG)5BcPE^%ih3oS1PfW-_P*+@n$8olrBj<P
zY2>UuE8%6LNi?};oMM7aq+pBqvf*{Tq=w%n*Dh1X=Dl4ueH7Z_4Uq?th^Wh8=TAY#
zuiIC3CHr?Xxs9mK%R=Yv=h0FcHpjj&+GamaBZvR=RD)vkox3%;+P`z|{?eZBeTkw?
zg>R>H+!l1KCxC)PbF*DNHLTCGzUKWl_<^R9_F%miHT$ZyLkYdu+6LI<7B%`PWD=+9
zI_`Z`X)miiuNXGfNp*cTS=a)$*>|Evq_{Z&?~4t7%ObDU|6ju<8~U1mZ*Sr@1e?gJ
zgoPhy*huF)_=BBc@aMS`3qC05+$&ExHnS1fat<~DKd|gm+G?k{DYc&K!Ar-|`f1af
z{@c$js8eZjOUb{N!}CaAn_5qccmlFYC)*<a<vm-ys_;tp?WdQ4%_I1~2>~d#dkd5#
zoGB^Avwl5*Wl4#MTNni~>w8AP)ry8oG4>E7n!$PPL3Y_>YeDll1c?}v6&<%AQRG3F
z;F=|lgdma!{z3rD0*Cf&Nty|P>_ukw7!oE!FfKlu3|j~cI`2LL)vEz41So&@J@28P
z`0*d3=bwLG0%byh0la+8|2_BIv-DFx^}o<h|MXAMd*1yn`jub)2lTQBZqxbsIcRUQ
zBv?jDjXv<_bR5u`U_)>%b#j-$BJ=bg{(ZTEU4p@f_I(Jr#%H_Er^#hyI_cZ(ekRvN
zP!n>sAf>f4c1whEY(eKS6Z<Ni+r~*Bv@~o}hb;!O9ow2c*18B(^Jfa}(pQ4L+IlJ4
z>wF5^;lCX=w1!}>5xeoA$G+y9Wz>S~QRf*pGj;a5+Lu-~PON>`^`)a=a2Lpy6BykF
zK|RseB)K>Q*`wSYdoS03ZCcw1j5_Z&UZPwn$aNt%>*u5!1X1TkWwSwF>UADBR-{%)
zw<%NtHp6amS!}kMkLvpInve3n6nxYibRKDYye~nni_Nrv{W`hs`VE3$kF;iwYd)%z
ztIHj0UK^Ln+PGv4IA|ANP2|r~J?lD1))my&S$1l^hH2uxepYJ$*ks&z{HLN0>4EdJ
zPy+x);2lv1Y^9W;#StQFR|8wNOAP=bPyuD<+cs*Tj2$Wu+L*&!xz4%qLbV`{D%A$T
zgaDH(HM9?7<FJ-M@~8n!4mho0yM1dzKlLkj=-d9&Ptn7N?|%Au?o?H>Tr@tPJy<3N
zk`p+rRSqdzz=?#eMvEaAk(KTOk#p0hz_YL8DvE>7m{b}z@Rld%P%n6va)mKAQNhr#
zCA5=ZvB0untH73ljhv@kdCQkrE3hV9i?$6*(ZaWB#3BnE>XB1DrSSbZV3T$Wf}0$5
z5!P&gaJ??a9-FK+dJcBOR+?O84L56ckINZ_Mw832={(`tOF8PqKj-Y&wAMmCDaX8!
zvth#yso4Z6HeI`7i8pI-HwEr`$0iOIedp{!y7<uFq33_;uTi@A49zcmm~27+y?^zu
z(!cRt-{n5xU;g8NoWB2m{2v!i)Rx4&G4=TW?I&n_;w?14_-WP4s2fH-cRc|s#p2w-
zeru3xavSLE5juB!lz@p|ljuB)+-l#qf(?kDE1_=zTM2TEHXuGxt8+WHc~J*Kv3Xw$
zI$!vKE3k<}U&CsCz~mUNg(tt0qxKz8x2^dBaQ^q$+#Y#Q-B)`2kqy0YxX*w4Z$3)j
z@YZv>*r(2)4yu>lpGN;_{*r?L@jA7d0IR+})Bw1V?;lzX0HFX2zMp0B;DcHNK#LzQ
z$E`Rn^|fkd$kFNV4)^9U>-iTiXv-(TQlb?8yWc+*ffZl87u5&voQ<2?^r>ex6TkvX
zqQhDmqnGt-@qftpE1=&HcL<%69neX-p+v#IA*eNg<I5(?9-zbgW<;P#+y;?nzL_u2
zpvQ2AmK>f9n^2dd!3ZI1sSTU(N{8{<0vBZM)b8hjRhw50mWczoAjoADDT0mECuZEg
z;<szq+~-t0n}0tC$`%Wp;NF?qMBmzHU{`mUTHjg0W^&Knd+CC{=``Wqs<(zMwhy7-
zs$5m)r?Bb5ve^Wo-c$?Brv=|;u8kH-u+`e^(d4p%E%!E&dwa#H*=m7z{hMP`qja0l
zqUaUH;mP%8<E_lCqfN*>r#77@IVY*}9t!hI$jSVv$u;|;BlNYouG*s&dpDh@@NSAd
z!6wQ&whT%SVDmYgw|Cg=_Z_yT^StP5sk284a+h&0`hngaGiV2c&X@Msu<2AIT$@eI
z?OoLm)FXTC{Xn$G5_}Zf;}oz}U~`**JqoR0wrs)`d%Tg4TIxLdfdO)BK1%g=(jKD^
zf!z7us`Cz;*ki+XWRF?tM-Rg+@%sN0QUjpKX+}wg;p73z3wzUkZ2_X8Z75U=#8pW|
zP<z$(3Z*)g9OfdN)N;N#tntn>z3z!EJ@p!`0bs>J{npS!A_`dYqCJPrJpS*Q7w(8m
zG$G;(^9TD>Y^0c+B*XGBe!lGX_AuAlEH}PNp_ujQAM`Kozscu#?l9%wcQ1DE3kZP9
z{4@mSu(4qJm_v}pwsFi4%w15?+D)&vnGk<(0Z_wsRl6l!TE8U7z<itqkUWDQ*iT_2
z$R(e`M!GKIfZ^Z#zQ0aSKmA$ytKa**^z5_GdSLA}uX&C9`;(viq+&S4M;?9j5qj%e
z-%1ZW_@LB>d*T(Zpl|qwKP)GK`THV%^qV2K4CytwdLYky)(N>S+I?Qt<YsyxqGP#6
zokDKrgHE-_dD0w$j=p(~K;VoMWv8%Rt8)ZneY5-q*ivno=?iRTkEH(hp6&4jc6*k6
zu9K_jd<~mqd#7~LCI+9Em!&;_4%kvR@4C(&EhrxSw2yPCWot)l74LNuKM=9mz0(!;
zYWCswSjxiQZsG@SYL9*Ub=Z#Vv6I`8|Lpqtz50Qx>~&3Uu|00I-P9hh^8<EojSu((
zeL~Q0I?9*^nMM0`y!bx<|5gKF#GE_h=PzykFrI3#g*--O4{i~W55&0|XO;XxfV9vc
zb%S#=Y`?O0z88vDdgWuBDzKe>Yqz5)u|0+M(*Hho46;Bjg2q0BTTUdbaHbniXH0f)
zo=o1_WcunS&*{axGyTqIcl6L%mPGv`w>Iu$oy04jc9KQvEDE*^VM6wdwsT-&@=9Jw
zgN#(L!<Q7B)Brd<$CO?zE0(Y@)1X`O3@SY_VTsXmz-GVae{ba34V&`u@*`(pYuLrf
zh=W&bJfY77j&)#{4i&HoRRXY8Oq>n-Micb~n`ZVm?1}V<^el^?fQ?knLsmI1<*L{!
z<i^;dTvO8DN;mR$#X{DXaJ>bcy<(%K+>*A>z#<ONG5{AkZ#H4?#<J08r-j@!DGxR?
zXttq08`zCo+p&?pONrQ6?yEYl5|qpNoHh@9(V<^l=-m=|KjhDEefYyH9eUyU=dmlw
z{bWy;(RAy{Z=msIUv%&!XEa|vtNf~BGk8zvd<NEn#ZZFWN3&<xXTdeW283dQmO3TK
zx!GfrD^ga))ATk`O>Uwy3ijHtVT$GUN}(@Nut#n`8?`=01=iGIThn<uvWeK2f*%Oj
zYNfXDLBH1kp<xT{!CqzY4eSfKCG`V^*6lHAq?KO%FjFcex^>=8M93l_ArMeCSY`fo
z#=^_|=M;jIg53S*(!Z|xe#;oo*NhGA_v-71;M;BR_QN35f{mxfC75Rj$RO}#?FpHC
z$!=Kv9ySrVUq4}fg=@{ztq8zKA@Ld(H!}WOW*)k|%?D)eq2s2t%bzF|hsCx3I0TpE
zBZaL4r@l?l{IUT~)}AomO3QY89}Rp~zrPF>72i#?z(yT5e>Q$Ykq=w`(Y|9@_o>60
z<GZAK^e+DW4qKat+PKsvvo@)g_GIlf;8Zyqb~XF<yahIlTZHe+cRkonm{L|3jlD|^
z*eKjv#xtAX6F~Ra>Jl4;_g%={-*agbGO|Q$6ztK)V`!sv*iE(zd!%Mh(H@hm7{jyi
zorb*}$wlOt+Oz!L)O0MrhiL2sNA*8MxtHbd4ZDw-#_A8eZWD?v1#@1!ThRFeTX=W3
zN3wa1Vbf<z->S_Xt7pwOIrR2;)Yrm$QHQP4X`664v>SBxxct7;kECNi0Jn9ekBay5
zccW%ArNd_T^Y4de3zpKoOFH%&-cJKIDP7?}dOu(`v{1U*>nVE-zop<4qmS`t*DHQ+
zJ}Rt_9iia2F}wI!>>GUkP3T6aGE``3`*s=t!~0<!wcI3DEGe7_AaA#}CRlq;@`Zb%
zsI=wBhLwJ*V9UMx_XC}z6t0m-l`N@CPmWSvQZDdkMly);Yxe<}2?;_*-(d5@G4MDG
z#SN~ledybf#clIX=gps#3*4wFY?DH=WRV5CMdoSS&~AY!{%nys>YHqMPYYBTkNH*D
zr&1Q!terEo9ecoL@4{KDe0^uPr~To-X}?pdwvgb%-+BD;$0hs!!?HHi&!;~1Df)YV
z@9)XK|EC}L0ebVB-c0ZKx<8<lc3*lf6j~N&o#H%xMXvsC_Wfyc`k^@l{6@%?Kh9l0
z&rNQm8N4iEJ9V&FV?a(K_wDv-oe#qjTaata?030m&5ULnux#TwB%+$m3v{07c>NP=
z09=PHw#Op2Cf5>d!mv!hX7o8dHvaf2>~3>&)m}SnVy}bNQdqUe6>RbMJvM(g=%Ls7
z8g^b+TO!J;T*LL6J>JL<M7bL_PCyHOpvPv}@oPH2&K^C(JnH;}y`J<@#-m@6AcVfe
z*HXg**j9DEf^FfWJU+U_cFG=OKWAJ=eXa9R3I3B{6FK++>F0<AP=`%)9%?N_dt_{!
zaj?C@9#?%-==WCpL)s5m&XdMfblkaaT!PIY4xK~X+5Dx%b996xKLefGoZ+R+ANu)?
zE)0F{grE?GovGS6lEasGvrfcvPK#YS8|d^1M)G#g)+en2Fc;m?kRuroF7r0?^`+DR
zI9zXVT!cBBNQ>j}=Mu+mto?G23e<djr0Vy1M!FHsfAB&NSvdds=*Vu`D~I(s2%oTU
zSa0+=6Swo<tR}!E=u1Y_D`3v)TW5v-FK>Q;Uia8YcRzE7p1quqUBcPSdr?^qJmt)@
z&7A+tQ(h)MmQxXNn1r*^Y63`Tao!^!q5SX4X{nsS9K4;2a*s-oYF6(0^UWZ5nftqx
z36m#koc~;JfPe1TGO+E1`|`}|6==H`|C}y~=~?;r!c*?N`-Af2J2r5v&wFg1Bx%nD
zJmtb&zn37gVUzEIV_i7Z56?=*56{}4_aZOGCL3uTwmLE2Ym;l8jYB<P6Asov<SNh0
z2uz{|z?sW+FS3&$He=&|i(E(H?iIO|Imi{*m>(Y4s`5iE<+@e5GFDl61-bL@n7cj&
zY(iTT<ht1o8fb=G2{xg1Ab4VCa<v^v#lj_Vndel3*{~6@N8zHsI0)qd8Xx{L%9{tt
zdcE{>4ER6)b3af2{eS<r=(m3RxBVDs&TZfDk$>jjqbL4_chazZgv#!D{k1rBl_Se_
zWKLo5@EbPKf1Rb)0?#q3VH3qvyk`-9*l4dLzh^n_glG2L`VzS7wXdn%_?>wd*5#TA
z3x}C`W1#av`CYlTL&ip-)u>>(a$gdiw^|BjuWXN7w@2%1ut(U$kV~-FL4*C!x%Bh2
z#AbbGb1<4SEixfklPxgIEcn<~H=#y_*(-&<v@x9<c7jc~AAmhFwn2UM#pRA(*cE!_
z4$-R)8vtMZdZLGKXBiyXCfL8`5&m_yff4?5QvW)@e@@ffY6OgWj8Xh2+RdMCHrlVv
z_Y22Ad_M)>FV~6dy}<YTpg+pEB*z@#`}w|?lX9>RHqk3>^H+{!#&IcRNys?F<5txo
z?Qz@^^G;ZNt^}R>Ao%_DS-!lOwE2@-QB-Y~U<~_W-jv;4D!2VG7~i&*EIm8da^d@(
z9&MF=NTl4}!u5@!Sj?wgNvHsYSD&fRMs1h5$8K^R%EDOeFAJ|UQ%^B{lu}t~JKtlw
zReR*$DtCPrpUnK*j78cLX;D1z^vej&?OA;egWX;3CD7&A*uI#Xp0P6>*&d72p&bWh
zY$Ida9ptpLjl?#u;&H&Z>&sqw&jst=xWGrTPm$ZC*b=bu|87yQV1K!ncNqpPlqnqk
zjE(D*aKCnJy79+)5xH?+o3vfHzy}l$6KvYg88@GrWdE!D@LHyMvl)cDet)Tarh<)i
zK5GQi<jOX|ff~ck;|}-R?HS~{Z#KdA<=?YR`2KYYIv>dSp<S-RU2h2k(7E^^oj2_-
zo6be9IGrc<nAF}3JA<2KeyP|Q+tOau9@(ETcFC-~RBRl>nxnn4Tz3uI0Gp6H5R8re
zv((R+VULij+2fE}ortm3fl!@mO%;AO!^R)2+W?(c$Q|}reL)6nOe@GXkx0gsf_eQ2
zopYPoD{3bI8`}iWw~w$*QgUAH5!i&gelTpa%mcRPz}Cx^Y2BosE9IQnV?tjuY#W{D
z7pAw{O(M4;>Kxdm@9+Xn<BHmDK8oq}F14SJ@KJjihpO6RTH2%fC|wAvAE;sz)|U($
z%XJg5kG+rD4x)GO=YpLayZWf4Hc_;%QEIh6MCWN~j}(2>7L*I@qquJl!Cu7=jM|sr
z2S)UB_fb5jbDe8nQ~wEjG@B4VkiEW!*cZ>qvibq){6K;|YE2bTfNaeN?SwvddsrLF
zDO;%tz%;PR!MvBXoG#*JPRF$sI3U66P@XGrFcLw~GO66Q1B!`SI|o78UU^<rwI+aW
zc(iq`WTqQ;u<qJ)!L=$jAxU$Ij)HIcn`Aq7%MtWGo<H=-6OuTfyEpcQBhG(6jZ;d?
zY)89itcI8b3xDc(pY7DA1#o)K>IuOl3nEAUcUG5ES{TQA$G5Hh9knP*S@7=r_=F&G
zq@=KUY6Ui#mtKM0u*HC5q@>^t-M(JIg0ccWpQ$uC$oIN0em#BJmw)+Topa`!8vMO)
z`lfH9Z~OLdr~mjr`A_J(|NVcT-v0Kt(^F49CBI?npY7rM&ph`m{RjWQ@1}RY^ZV$B
ze&FxW``-UPdg1O}x^sEy^cqLlBeo8^^tq1m$K+~3I4jU=aVPPUXy^BGdKlchB7i6K
zFrCilE3i3sVB^nzMdvwe4D161i^ar7vx$Jso^2FWJ+=g!>Fv>d6R@S&9%=#@wltWZ
zEDL%Vvq#(1nC3=3WA-=$yI>2?HhZRMuN`-N#BO~pVvD~wKWo^`CVDERh;0hkCIn_J
z3*Y+E8vV;DdpzprL9Pp((~{ao`uSdKe)ZUT?55LGI`8fAq>l>rc%6@m_H1=p`Pohh
z)X8-Y*w^f_L~Lt5s<X%5UMU3Uukulj&1@q00js6p)L%ia{9Cb!j{3{&k>!#*xz=m^
zK(xn*&Fr;M%jmap>eRRteU{uih0_ni;A5N7fon?6=N@xdIRT)&wY7#U3jQR^%Haup
z_1y;UT>PJXvt{(?)`9KB78s}<V*+$^MqV&zVL0CX;qS<T0Y=BmYYhyb^RnQlzACx3
zYk?TqZDJ_A)5gUIX%>!Y4Jd1-m1Y9q7-`kr9{#)E3q?K)=r*=UujfUYWGvA@k35j+
z>z*p~@cEX0>yr=3g8DNr5Z%2T=;;>^3v5cD=itc)8;SCqOHBZtxH@+|jDTYdVsu!I
zR8=)4&B9d<a~AF3nKl|+RL=CvNi&v&LtVfZY$EW6ND?k^J-V#znyIB6>%wEc12*Os
z7ZP2~M@qx?5HKSxQbq$hpJvlC76LE6)h4i`&SE-J3xS=IVb{VXRE!=$vFr`o;aLD5
zLEyfUL*rTBqwu~nHep@KqrEn;@vdFQyR~`*;8-E$^e4^KB4CqSt6bTh_Eu-Xu~{|>
zIMk;mH_c{J8&YgduFgFl<jR;Yq4Oj<H`yd<XStT0>O4W`vfzNuC+M6x^~vR0^_n18
zv5`>&)WD{4N~kx$aGK7=9@$addIfD>^>tL9|3}&*p)+%Izx*q|Oh5V~KSED`_OtFE
zICy{S^?#Jo*~__C(Z$mrMK;S8UxEGc0(3$KTLQh2+v6y&v70PISg~q$Xo3!x_G<RX
zay&$tNle}PQr_s_1wRUC%{Vqly7|)jiWP8a{fc!}gU)4PkG|wOkJx$h^2i=FPgd-)
zsy)tTj|7S$*o2fc5$sEySK#4Aqz+CwWSLdRsyf%crM7O@s$=yrP3N(%HG73U9@@En
zz(co2x_ww|zv|(waA|z~o6hJ>uN!0oVA^Tn;BmC0m^K*(T~XHJko=I@{AZxg(rc~f
zV*b_qsRV_K)`t-v$id30lXvQTzX#cHKf?Vu=s99S%R@t?_>of$qwcQ9>>=qj-EKV0
z4@Eu6Gg~y9)VA6Q{IdySZ>Qt#bqD_U-Ur#6l|pPoGa{vLXH6*3$&D`h<rnU=G%%u>
zUY2-Zr}L_hiDeE);}b3E%S%!^2mb>}-?7Y9$tYKcrPs(b%z!M<D#@`GypNsmDd<c3
zK-4!Pr46!nLc7|S{#(XM#+KUe)qM2XLf;~p(23gF(a6h<IasX?J1&h%L}^t(=aoF+
zcomywqZGB{3~Z&zO@_#Da!O=eLF<>yXH~ylF&Arcs@C81dj(({Ht1Z1ECD%rCQcxk
z&V}BHN_!X4OQQHHViQHj8rM0s{-|=zc<(0H1h`5!Q~kswOEH!9``M_R(h_@)e!|*;
zO%rD{`&{S0No1^ZIzpCk^^7F)Q(D#3?K&?}=Y)**)cO*@1-a2u&Mu6!unC`=LlM=U
zk9#YP4}K7AF3L^U0vM+(M@b$9dKk$xH#zyE7Bo|i9rhLb+ET7sOGzTcf!b;IzJ@W{
zaPnrq-q7D8L$20utB(c1Cf_l-8tqHfD2F<o=d#o}1_#)Cvl(qt9Vf`Fg6c{8p~|aa
z)48w7RgoBW+#5O<Icl+j6LPbu%PAj~$WQ#rvEu0Ca<fS>*G9GEa}#^*fKAqbylFw?
zbV$~>)JMVpq@_)0KMpog&7@Q-`g`lSO5M~b<@Ec-Y!`Fk3OUNNfK}#wuoojZl0`Sh
z2ESLasg=@m*{7YtZP&IYHt62VyGcQ%_`5~Z7v>KuAJ&lbUmvdb1zF(Z=u>0<PgY(W
z#6i~Wu+{a5ogl-3UP<m44u3mGwx=w*5xC<34hIG;a4h|R14<$I#qH+^C=~>|Hu(L;
z#f2og+&TooE$BlCP)X47(5@TK8tn3<5@6***&H)Dw`1FrChtg63xZqR60sR}#>N4#
zGhnk~vIE*L4ZF}s1UgN;+nob8mh%~3A2#V8f8rJN!0iVQf&DWNp7HnI@s4-UD_{9a
zdgGhkEHpsxd+&Sbv!8vMe*M>foh&)+V;}t}egF4=KfU1%Z=fe0dyJks%-P@e_OBw#
z-0tOmVc0SXlOi}fM7bWWZw<qdTs<I4s2Q2F2jVOPnD6f=C?Gffo@GL_&2WfM0(qPn
z%{oV*nFG0u?JQ@{POfv~3comPYKYErE2`?TtCT#@9E<$QoDVv_u!8r8%@fC#S|<Mv
zIyZYY3RJcUv&Stmrz-;P3D`yFhu@#)##L_{L}D`sxr$x`HaYDfMV_-`yM3+{XsOHO
zzeLgaBW&nPY>yiYkis4}eP0ULYH6D~Tu7RKf7^6!n+fPkmk4s3T$5$Ak1b&=L9Q}>
zAqHuEX^*V#Tfi3WaR;3XHkK<kLJS+f_a(~}HfGq;;a(#G(YCR-hV24!i+*5XuZQQe
zzq$n*Fncw*^6z=W&9dh!0`_Zuz_2a)68duNOS$(^qsA0_?A#9r=-ja9AXk?AX3a;L
zy}}*`*sDET-tC}skvr4lAt)~Q$Gcn}u+`9)O7H_w=N1>P!PdpMv;A?Lq4NWV{et__
zL9W)9_&YiFrNiHDK~B|90t~1@0sm>(se(!ogZdtGs=?>cI$`i}i)C^6-z~<u8SBCv
zCKWnO);XUoVB(x1&OvVSS=j&xGdlmD>bndX-!b}!VQ7<KGk9Hu=&@dF_v26@FvIh>
z?P!G_)nUu;vGd149Y2z>S4Ewnvr6{d(Ap&fC>-IiBS!LlR^+6L<ZNom0xOdni3Y4n
zxL$59EU_W8Dk-P+D<7`(x+g|@^`k@|eU9i;&rI|)zj~LRKiu*&&yh@sY2GP0tt<dF
zqgSu9UN<sPbwWiVSgMLyGkQR7%MVvY3|;%Ea+7CKyjBV&Njc+5{<KpZgKm__DT5(3
zEH}Ys@50}e;~2o!V?DyQ@32jn*AFVEeZW?2f?(K6z=l<W%k>0yj?P|(&EyE3Uym(^
z_T;q`1dF#r&PUji-p{a^+^>{lZaN3AzO;)C1Z*i>PXQZaojUA}jl1@%h#q?L!IpoD
zV!uB-O#1lq!4H0r-u14Z#^VM*7Iyb_-%0fPZ>Bp>|2EN!FH+;4GVF$>v)46jd_Cr7
zBYpd-+=foBy?yq53D<njVQ5$?wZ1lWa-DYTHUS@{a>aE4_C?={Ixmt%*mQgfTj<vX
z&rWs4URU~3ypGs<Kj3{QVB;*sSD(?#4;z_pc<teTA0hgtuX&K(_}cTsgyHh=A7}Ot
zno-FC`#O;o^_{17)b*tQJmpUbS>35k0w<i}+TxVKJoUbR4_|J+UU_->q>B_BhVR$x
z8ZAJa4-2vs#-%>%qv!m$LE4HVjUj+#JjFKn_KW}f_0#ARG?1jh6J31EL@b#NRN0`C
zuC(3grVZksob@W^xYKN#VH4YvoFFR`XMHG_IJff;rmClZ_+-s&-)EiSNIdtQQL<c<
zZm1IJgtqFv%sy+xCeLo|jxDsyvkNkV#z9Y_OnT&a^mnr?51sc+UYiCPQ|uP_lp$%M
zaSk*^Y&l|^@N8cAVh%>YCfPGnz*a${HE<TJos#LXY3A`J4>&PVr7sSf!8d87Rze;G
zo5+o8fACa9vqT)*-r764%28}S&Cz4SyNTQga!s_*Ifr;m=WG-9`(g`&j3VnZ>J^C2
zv2YNbv%M9#_Hraw&Du`Ka$CW6Y>y<F+I8-2rk#4-WR>Hts9gE`hK;lQ`Tul(Ghjmy
za_q77a@|;BMSFINeQ9huPrW@_J7bf+rr7M=<U|gI6TBU^0oeATFQqGVK00>Q@o8*^
zU5}9~wxvz5T(^T3lefNQi$!vsSDEvRO$?eIFV7|<3Bg{M*c$diYdR$?+6U>!(H^7D
zx6pa?QPN(C?8F(5GfZu0en7Cf&VwJ=+}uYQHa3byd+qGe{6K1Q-xu<}q<)}yO{%F>
z_n+k0Zs0#9`KmM@C2}op&+=^8g!eVmIq50y-KCE23G;(lraA~R3D&9E0A=|4Dv1%S
z<(-Y+gJKgOmfE!h3?zABqo;|i{cz1m4R?{`A>&(4p7>zdhov+s72AxJL<m|^)Yu%s
z{*ykF+W4p++f2KkClVIYCv4DQJj#vN+va8xV5!Ia&m-2W5*$i;YQTif|DWwlC|6f#
zPq=-HY|sUrOl>q0XP$J3Aam|$dawx_sUBo3Mf`&|nqsCXe+uTI+wR^Go4gx>${whN
zZB1BLsoy21^H^Zx`4i?WbFD}B=kLmCm`XmD%N%8%To(Mlzw}GLL{C5cG`-=eub|tv
zZqavs=XcS^KK}8;hQSl`+_TTpyWjI3%^W`TEv_B#V?X}m^t&JZn8r&E8wX$ewf~H4
zbXZpHgp)kmo~Eah>o&El*eF+%i)9P<{NzOHdlIheO8Xf$5=?Hr+#^koE^mjWTtRzM
z@qOo&hdtI{6EOqWbY8-<`ez%qHG4ICjM#_JF4%%i+5HW>oOHDLREMn~2wcOn%r~u3
zFP)+g>aoSXv<)`knf_>(%zX>g277gEL!<I4D{_@~>l-U_-LB}|t`l@F@4n&(SgvQb
ze#P24Bj{^=DPN;=yH~{K6hNSZnSxwXco*?eC+snGI#1oZXRNKS^-*(IGr_PMwi7;T
zbA^xUu`N!f1Z*rv@dHGf0EG5U*OwypDA$wpMYirbVXxND*ZhF_&kFz9_ob+Fk>j}a
zcC#P;^y89J22!Y(d)&?+OEi(Ojx>CuwuPwtOPDqsZ2+XyCMb3-T)aFn8N#uLq(^;C
z@Dw_yf=iMCV(s=aR@6oWTdE)1lEn=I_qro9>SEb;wl=NOw(MkK5*|6RjQ33Mr|ldp
z(xbaLIymc*R7%-9j~zQUqiDyFbx_s8#g2FA;<)131&a@+xA}cvHXJ6mBfb5Lw}*-2
zOwYWayG?w*2@_#C($CMXS_pQ8(M-4=!ZlSwVK@s^!MRuEix&mLsP?wF$r%|Fx>(U`
z4g^%hfHjlJxVwd4tK$1;pB;;0?Xf9;VZb`;wPtA8F|fnCC0jrkcBRF!g_NESX^WSL
z&9iiCTNE~IYW#d{*pB3ylpB14qtMFR*|D!<Ye#-Yblf>iD*2alkYkUnK#oHqm+J&M
zN4Z9wFR<Zy1eU48I(NZJThOW;_1W<nYZ=8Jbi6US$zo(rFMIGd{m`_fpZwp*C(=Lo
zgFkqP>))YY`_*4{U%>t2>)!DWdh)feqAz*Jqx7;@J%9M)LlPWvod@jF@4<VIByeP2
zcRFY6*y|Cwg=-yDn;gfWbK`p#xmLaA_B|#9VxN>;?i&n5``DK#-AJy@CP=8nOs7$<
zCg*9z9tGO~Y$yDH9a9u+DP9w<L%>=x+QQ=72BH%B`H>$e@B>SG)FYCaZl7}ip&m9f
zH;0M+A)r1~x_b!z^CLH)RN;+S@yAS2fvngOn`#UHDSI4R%1{GWHj&bHkt2M4JAMqx
z6AQ4IuOHiy%Dgf*Y`k5uIW5TyY+_SYGA}dU)yE~9c$u7s^+7t0TQ&g8-Y7=h`+L#e
zJ{1WAI#)q<KO!SS?^QA3weKS!XwoYPHc5ysOpZ*vR^(ns5|RKDw@FXtqyqfA;`g!`
zwBG{T;@L!@z4*OrkF9ptLc9FFXr`iN!d3;_umc;>^4*r$$~v}+%;pXoQOugH&Y>RV
znypYLtzmDx`ogCTz4X}R-EzYwS=V(bw<Dc)*pIL+<X(eZh_u!MLP3@MWR~f?F62ti
z-<^rtDTPFy;d>Gr-NYsk@D6f0Wv>ftxnYZPrSN;XAEm{~lO9_-h3$kr(uzH<%8fdk
z>fTMJpTM5<MOBX84~b$83JG-5abG&Zo{zB|*(2oM`~YkM_m`UDsHK40Q7+}k9-B>6
z$sKR@SiNmkt}A_Q;Rk9xEm!m<(L)V>z<w__ah;F4+7F!cQPljv0$W<zqx&em!BJmY
z+AG}*8?9rbh1^Q(OFgzuuGRFIbPh>2R~fC=T=ltgwfiU7KvJJkv;8*SOXbq8bv<SN
zPY#)y97*dm*+;BGZ|CwRlM|8uRfG89cd+e+qE^1QyzBk?sqLQ$^Q$P!dRz$B=I!>&
zIH!~OC}i(}mK^xDIcUy_P1N+{oYk|<Czmw?dS2+r{cY=3yB@%3P~5*RIjb!x#^#&4
zrl^uB%^wTEu3<Bp7YjJWcEe^^W4mGVjniuLGv%E&+7>yrm0LhdWPJD@^Zhd|(An9R
z9(dpZ`eT3WkI{#J=XdDSpZ+v`<Rc%UcfIRf5{I$x@+pBA@7$p$o_L(z^yatFAN=RG
zvKH`cd0S%-Ek+~r{$a@_o}*kjW7uO6v>Jr0QLgY4krRDQr%~stJm$z4?)l*j+l&nN
zHJ<XwU2nE5_L@+Cu+zB}vG2L-PhpStc*-VX*7usddIB$OLgdDB?(H?`ECyVUIM%P}
zOKa_x^=;T>%?o=m8|nK}rB<(?yhOR3!ZyJkPx=AYIey<`JEim94@9|9XODj3;wpO_
zwARAfyG7ceQ`i#G)jkS+?Iv>Vb$XROUgx9y)XWuq$+4RssI~Q_&K}p~dYwJ?*d#6|
zapZM-R6kIBUVoEuY2m~8*<@p1+t`+Q3+6p`qM2i~ar66LKSvt?%llXnzKVrnb&jx%
z>?NDTdhiTE(`<?%6~N+n-r;|@xW60`I(+wRyOAs{F<3UT4b#9(64c?q9n(c{M$i5b
zSRb~mNT$))>(MLDp5yG#OFdq4dsM|uWd~0Ga|!J1E^sUd?Yl{hNOpY=U@tFp&=P*k
z3NBAJn(am=zrufgnALBGv%`d8l3ntRyyJ#m@#sk3_z-x%2mb5f8^S}*|K_*lVmf=l
zP4cT9Iwv2k;vf?T+BjQ}Gp{*7wj<3{-Aa2sv`fa@uobzLatWi-qgnHOA(P*f&qU(0
zaQ^cE&h5N|f2kBlf`$3VE+xz5u)loxZ?E5XY!j}}p}C#%ZwglKV7q{oWp%N@CfFs*
zQL!=CyiW9i{eVTUBle8;hz-|=?~jgcFM-9u<$CE(&g3c+2w<ZFwjxDYO^!QYJqOkc
z?DTEr-I^R5c3mi(i>6tQnQ4XO`vurcu2ax4<a&6QVcbHFQ;_2z*o$OnZXm}V+hwqU
z46IG(<#0{4VN)LbDA&8l*4#SwhK+T&m*?bso1T9EE&9pt*Z$An`MZDjN98~MYz}>K
zzt?Q|Z}>ysNPqYnzmeYlmZ#|DFMqiC3AfiXdACyT!akw%!@DTfTd>c&m~fiC9^{&N
zNB%6>Yj2NR$axPN*}8o$bWRtrk+Yz4mh-JuoiF9clg5kCw}8#<6ZR^B;B}oh`;GRv
z#r4HP=hDstA#6f*K0}VjI@k8vVe9&m#N*GU@3ek>w&DlO9=G0?_Bct!vU&0DCB1mD
zKWq$~Nyg{?;2+iB>Y&W^Q`CRjwH}!h{$YMo@CSP)#a`<yWK6ClfKOciVna-)$Tr4#
z4Qy|P{j2zT-OQbLMV`&aa5<Bx?9}(458A%JDB{o0&$HM(znAhFD)z-jG$8;%Z2;V%
z-FNBPQfvZDIQEE%dO}2Fz{0dG<iBtdz``RMK(XS<V!+CSx!1Z3Y%_CF{%p?LV9sgg
zr`{dLaQ3IX;l!Du+&8!;1ltsk-_zwJ+}SeO=3}-q^MsF*)wjE|Q!e_A*16$KRNhQJ
zzm1v^7ki0fZKRG(I@sqdedp|4vuH0bb~t&Wv_6t0dk8pjeHP9-<#xt4Y)9GjW{zvd
z#$!J7Su;=hC|vSd4}<?>+vdMr+)-{xDFQfVd2g1{`C$>w!!+NUF&KBZP<WBnhT%W#
z?q16ON^JwuOjX9t_vgvx<>CI^4_FR72V*(Qyy}dPt{!~SCAhd5`=mU?%%#md<;-!;
z-`{S4jr%dnm9g`@>F!Q`bGEf?Fb%w%pDX9*<sHSwb(>h%T-!tX^(|n#(2YAekwaAq
z3@Xp?20Gt2Y(cJ!hv~ki!|z#V;s++JFTlU$jCIyI|7MFiB0|-7kTYYGBkXr}f{C+@
zIS71#%*I<$=cK&i90a`FP4b*`$Z2=6m$~B>*HR0CYsVaZ&pO{<?3K55t4FQbPNe?I
z;Xi(FrcT>P{h%zqm9gGB-%202xX_wCie20J!`MZRceRFu@Uip!6MXAtuNQZBvf0V9
zl8kcZif6fUU)rHBF}95mv`bBtGxQ~%>k9Y$Ms4PTPsOs1&o{EU%g<)r8Q1)7Kg%3g
z?2)hU?%G_L5*bY!*Gk~n>czocIjKTwMsU{mUQeRjI>?!I%6&zGJX@ve+r$30=u3NG
zV_gVu>!kGpMzPm}TrXz%F2BFjl9{zm1N#MjHp@qNh<RSm?FW=BcgB2qcSn|esG0tH
zn)saUab}(GfK6+4aQo;!irX)xZIr%J-AA37T-m-4_Zp-f_R4ZS$m8Nd=XeVrMHM<H
zkt=ty%~t#UCDtIU7uggS9|b=kI#<qq_5;$F*j`8VpOxR6?e!qzv+Y*=C(E8~gk`&*
zbPdDr&DY!)#D2|3aeV>q=VuzwQvX@xh<rsqPtZBr>4nL4+fJtNI+3yQ+Ko>V%Ay&`
zT>Ne<2a(%OeLMRBmL=n2T39|HFDFx^_S~M%H%dps$MJ=(L^%8PTIyvSura1fu6=aS
z%^9xmGUY;2u3z?H{C&oHeh6gp{ER6Vw7$Sr=4W>f^M`tvhuo5}qO@cN3tAF|1-~XI
zY&I>prt^SM09NdAM6yo{Sj4Hq{XK7p8!3%(fbB?5cja)>q7=d;w*?5PCCmASvL(eJ
z=HN+PUGQgTCsOUC&NM9oSC>dcky=t5+zFYgQa5X-^8%UI&aGgsBpb2sLOf)d9lFfQ
zHYytn{9AjEZMFnSU^i+Txi)OW;2Q%%$HCY}t$QH}kRfZE#{{9xLA&_$QR!s9__eQ<
zK6vZatwz~$`0uxV>$mhI?oQ|byczJ&Ll4ov_|4xe)IWR*;8UOaH2wIG|CsbAmeI#Q
z{&D(&ANT<|J@DJV^^fRHZ~3R_pZ)rOR{FpLw{KHS_ORgkMTgy}KcvbV_t^>xX(Hc9
zSd$xt4GeEbT_LXz7IZE)fn=jz=VlWucfk_mYDGdh22~k50;h&;u#EAjb71dvE*n!J
zOFUwW_GmhfiBxWnozCq9|D`0w9=9K1<GzNI>DInSM!9jx7wcPNqhN7tMeDQ}9g$&|
z1V~`_;;J~^ElFPin{P^FEvmeqTfI>0Ypd8-<a!C6%ccdj&7d=k0akB7PM8Lrn>|_r
zTEyn_TC|THw&(|<9FOc3&+f5Bd-Q(4;-fBtT&12JY=YlSsBJDUHO>ia(GU3Pj2p^z
zfh}T(kCJ*iosa5uE^=ev0DIh=vPbAV+H2pJ3VcRh>q~oOl-R8KffM%V3FT&wL9R10
z{nIHQ1#G?<M1-Wn)W#*m6e9aT+^mcnPd0ApsAvg?jh>dm=EX~iJzR4FK>y)`aY2?(
z43ebe*-SD(r?w+e@$VFN6?~AEyX#=XGa@lEo+P2eX!Y!-SlLl7;Eg72=R0Wybdp6Q
zf3~>h;1}oriW8mn_^lm95q25U!dgWJU7g&GDBf$F)f*U@P+X*hYuybM`Xa$vrCpBz
zAMSU_^4SXp=H=vqn`7RgKo)0y*VbNm2WQfvyZ-$NCoA-NOxiB%R<tLXKx(!z-&=O)
zX63vb(;mj8nKDDxz%17uND|22iCh^gZ)R}27N6kj0&Kj)G|02KP^h&lR>PJB8~<hx
zY$<7xxVdVY%m8fsTRjS-I+|)i_V-?FYc9$`Iu1KrD>lZ;3pwFYPgTCJ6dqb^Rk2rj
zSN;C}NNzK*<}?ddZD%<tEsi|9RJ<FB90}M&_r<PvxXzHP^3P2rAyfSrn;!c<JbM@9
z3OQzA6aIS6y2^W8C&w1wg$2gXmR<S0$B6*D-Z|C;`=Z*g=A;xs)6{fs*!cGkJ;>_Q
z;I<UYp0qz$FpmSXPd@piIK?-7`Ipg`y#DnE6FNHti0v2^bXeGV@#Lk5PGmD7PsnD_
z0w%+->##x2GY8li+a>HT`@5)IhoJM`URB2f>~&h`eAWzpuJK`grI>wAoqg`zKG{gv
z9!;*CZO?tn`dWg{YryJqb^C4hI3&&@r~zA9_<@nJ<Qdm&&*ldVoAo8Nk*M?DUQOq<
z(lNH0VXx?Gv&zx?lDF^WIqYwB!l9X05}GQ?3+?`sgKnApT8`)^61oB1q)>Y@f2xy4
za$hfn2{|Y-YPOVQn^g1ljZ(;eFTo}){wMD+X<$sgFY=vb6M&~Hc3h8xnP$<p@Q!0;
z9GCbL690S<_U}tlT9W&YNyosp&wu}};&qr;UoK;m?fyfuI#I!72K8g&u}J07&m#O%
zpd)LyV>rfjUzL)jBJG>oWxipPC7mr{Az<0Un$4uyqR6_<Mhm6Svdmbqk*s>=V7Sb0
zB<Mh%)nK(dtO!=*;pdMAAQZb4>8{3MO=43bBhEZ6`W#Bh=UNGgj|DY&C@-@dvEQWF
zxX%xr{pNVGB{?^^ePQV2D&so;u9%!iC(LA6ji=nQxOHKhQ)<{mh}E-jO>Q~2S_=FI
ziY+a4UL`8Fl&iESvjJ^4oA7yBLJ@D1i$KvVO68+fj&qqPr<lQBT<1iVSwoJEgR6w=
z1fA8OW3@LDx${jc(t~AzMeRgU4k_~<z~X0VdcSNeo4rPC8Iyd{p$Kv#^o>?rOny>o
zz@|F&zJ!iglbvWI&*buVDaiQN$fWDsu!~-^+J<Bvl}srGdyVxqN|U2<u7kTC3zt|+
zA(=ha<?-l<O%Dnr(Q7fi@%3P*uyDLSw{a=jdx1?TcYTmcw8xa(9;rmRTHT!Jql)UB
zbiPC3ex~z;wDEQtBtxzR+3vVsRefe)6Ym3F{VK)<Y(eMAvDvdFg+u!qo^AGO_Q=nh
z{aq3@=NxLZ%{YOP%nztRX3Uope5jo2wth}fQBfb&e6J>sWsH-Wsf~Ucg5Np#Pcm%$
z9e4FvGqbhOl8hblY%G-RI@#|NYM`W6JI2?cVa=-c9CTJgR(Y*XCFWwHjLd9m&#5hZ
zFYAGDRG@FCq;o9$SW4aU({BgdUmx2r(LiuBQ61ikoVw*CFq4o321CE3IG4a6>VX&7
z%VL}&a$ac5M(5e(+_iH6NP<G(+ukEUpAbA|DjUzNM&Gf_RV$LpYky8XYMVoWS^_>|
z3x8?_T%FRRXng?=8tM62wGziZX#$0`Bd}z_xt(FlT8pEmmMJQn)%(5J|JGtG2*O)n
z@Z~RmMEs5gHEr{Rv-){cfampcV)xMY=p&ENSAEr2(GyQRK|lWszd*n78^0mXky>(x
zc0L90$xnQOKKq%^$jS1@9($Y~ee~f&aPY9faG0C(1~GrvvXz<t-QSJi`)i{^+(B=)
z!51k#WaEFQ>m^y$ViV2+rdD)U5={{BnqgPYU4LkoltJjle1dU-n_M-8i<;bd1DbUn
z0@ZT}sCuE%!}m9^&lwr)viVq0B%YsViBl`~%AYf~7t^`PC1A_YxqV`hRMUB!FY<rJ
ztG~hfM4RBxY%xGQcVBU$92w|B8v}cu(VueF&3Lod@$jC~*HWv=W<`4?*voQdIrV)}
z5&_gEVqf!MF~)&yZuDyu<%&#wx8?9`3HFA*M8Hl#uEI^vet-k|@GIWeP)lKZ!Vg@a
zps?#4HeuK#p1Fc8>U;xxoTI&UK57de#m~1>3)WYR+U!W@yqV5AhF*I=z}OSyDsr~X
zHJmCCdksEHbPl=gp>xKzfzIvOCim#0N~iN^ukHt+b4fa6A9ncudBA4BHJgw+wfsBi
z%=)p}BM0v{!5$;Fy`BC@tpbp3#9Ra)l>;_SptPig!~Hj{7LCj`2Cao?o4tfNokTTk
z@Z+&!x5Ii^-%b914IAZ2=MgsdPA_5lF#Lso_b+~T{6mP<`$vzSR0(+Vu`e5_3lwjQ
zLph>3<Yq*n-6pVhZ4)mm&{U8?G=!kLPOJtjqGy>*a`uRHkjaW-;5bURORAjz%i||@
z<V|+C<|>&omcbzbg%O1(=2r9~I&eMCM;_oBupyuhS+R+{rUG6`aAf+f{ovSr_fD{C
zc9if^BA8*=B>SPXqcBo<qPD^(f~{cp&S;HzLB&NcsTEfqMhm`S*U5OcfNdCu5KN15
zoc&!yjtFK*Cd`cEdNx5QIHo%czLOZQ8%4+{I+u+T!<uw)m<*eBkksU8I`<<;D>`?q
zay@m}%1LY`$}#F3*He(I*r#V|Y*w%#Xn74b|9&xQDl2SK7lX&D99QJ3g-}`+i4{h%
zqSuC9sjc+c;@A&%`-4CDL-gMFzQ+em{@7r|pC=xF{4i;IIsL2u>i?bI{<gOY$Ex^?
zRcuAF&U>B9_0+JYWCf87Tj1R^Kd@hByhMAfz1*1=X0~Hx`2HN^ICWLmkNiNe&urNb
zW}ht^qWP$0p()uY4A^>|TU`=6Ho4}b>|M$lHaS(ZZlAMZi*gNeoL217`c@5o;G~b5
z+rVjlfU&#3T==YGY{%E+_GeUUF2_<rmI-`+I@Y;ib^mEuCrooRWcN|L!F!IPRu&kv
z%nS=y#c^pdPR${^3=;^;?jEy_T^cwcvETcd3Mj>ih>O9B*j71da(8b*dHv3~v15-#
zf^-=^YzCKFql-cS)$Etem)l4FF6og=))5vW97K|=a;AZsb^anJjB*0?nQ}FojwRkT
zSp6cL4%uXkp<0kwu!)Um;Emh)@6-M?Hm*TB0h^tCQTtPDWv-wG92)kjN2{$gh+q%)
z${(XKoGi%B&rT@t4!KHZ_72zvI}&f$lgv2hxnU;+9I|062v7iflPfY?i<UL%u?c^?
zW7895hK(p-o74z+-jxst6o0wV`Q#+yR+Ovqm<#`Wfz3eY1=u(voS!c?vA{+_u1Rg8
zF0nVA6Le03jcjfbu{n0bR-toX+c#`x6Czi(*NH&EI7o4Fm21WLuh{gIt@`pMwsefG
zSO5Urt@|Du!6tO0VuJ6Fa!rF$Rceh2tqG7uqd}mCtzd%!V`Q_}By$4OdB)<=DZ4hP
zcOd-mcs9`zTh+NWxjmxq0Gr8OPmx&xx}fs{KQMOKGUy;@{r-{8N8_kP#ummUr~cb$
zkUZKWMSC5Cj|$kLA1LMrSZ+gJ_N75jLComq`3PHXIv?6xnROlgr}q^~p`QmIbpo6D
zsHGpMp)cw9&$etns?>&U%|}&g)PT)i)weJFKvlUX>g+Kmsn4<7lO!L!xZ_N1+2zq7
zldR<$O$Yl=zTO`MJ=^$=@m}d5mz>IDwv1~f|Kau;+K0Rm+3=9?@B<?~_K@+D7x*`9
zFjev(X!B9acJr4q3Ld_5mtU&tW{w4^ZNuVzojxEA>;LAD^lu_LCAUE>4BNa(_<?OC
z8uf#3l7$=UsSCs`tly><43~E3&(`^i_MCllN%6ILo;^EJ3(VN&s6F2TiY5Hs-fw}e
zl*PScQl(*wc4YU8*!%gXVedCZYKLusoiygNLlFJ@{@P!o=bwLG=ItEFef6tfO%Ff(
zFn!Cn{7ar$Zuq(Vi@xZK=vA+J6<r<zWUqP6Yv|)2`<MqhSvSu<_bh$rL%%_P_eXz}
ze*3pSeE7|o1oB??(92}A$8<S_cTJ(6$aT<pFE^)A$(l)G?frWWhzpn=qU=t|H9otS
ztF#B3Ff0pf_AV>fUB_rQY_^8$v6mHlT-a;C?mDl>8)Z>$ZjUQA;r1A?E$j`~LnpUh
zuBo%<BYVU;?5HmgEo`F4mb<>vKP&2dt#(MS^P$HU)`&;%6?DGl2NG<gp3r#;KBnFP
zTkOa7-M;2P#FAI~(n78${J@%zTJ=FEd{kP|dH-&)FZKPLuF$#D`lM_8XI|Fp>3#J=
zt}FIv>;8q#SFlCw?8i8vQRl5e$LRMyZmrlr!u>Pm2R06J+r_0OlWYCOIA?fi^M~=e
zFW7@6Q)Uc1?hu@3I;C(t&y-q9Yo|=cCr6<p?&L^CLI7H80&p7#C7Gkzu8q^*j%*m`
zKOfK4ngGfR-D(8ru^c&GA`4jXMpe!n)rsrggSbg1&ocQVEfU0^z3p^?)0(kLvA+!p
zm`z%!WE_XpXWR8guB&6^owy0uWan#x!dpyt#Mp%12>gbF^21LEMvh}BJW^Y|0>h>|
zU#+%+1j&kCJ9k};&sMqZJ8XvC__+0$j!`SAUSyX!kF8MVpc%jII_%0pPD`wVZ;)_%
z#Aeu|Tn*bEHgm1canyJ&D#sxWSd5g04aHSYVKW=i;vxk$K`z&(V?BPiv&?`iur;~Q
za@3izY=@0j37-q>QFkD95jZU62<(P!V>;)B5!-}e$FVWtNUzN%%pR?8u`m0Vzx9vP
z7d`n}`mNvmP5MW_`62rCU;p*PB<(}=hyKtXqBp$Z%jvCe`zm_;unF+GFaBbs^5El8
zoIT=;JY6_#!Zii#dt?TTp`RzSSI9M+A1Kx3$kYsTUAM>R2kc$s1OuNMIka;|c*@$B
z*w=UwJKtE+h5kNbh0YUI?@K#iGwi#m^%e6`8XQ_;>;1r*O(-o2-c5pPGZu}VkBY_A
zsU2Z+dqjPfzMs1v*y!fs<q03vupRp-)+q;@X2@0KHkjPZ9*=e2`>0q`WzpAw&E$II
zqfYn%!+PwaSZ*zl&pxVBE3lWsxaC>eVNByc%wZg38;I?miAZsx(J}z<?++$cmHfz}
zW-wJOT9o!FA)TXG5m7>h1vY<@_(1ZYvU5F`#?>spM*vYWO>5xOPMQ&1$xd@5az1#Q
z!&%lW*`|bL>}oq>%fKezFW{^ONws6or?E+vx2E*!1e4o`<k;-p7uW+9w<=rg;SUz*
zxAxk#8#c*+7x7zmvSKNy8J;@1%DZ&f96RJHGN)s1`iQLt>?LB0a>KLz_bB{s*cNiv
zAL#cbBN#S=MQzi$ZaLxdNT;&E>agVwo9VnpxsDySh}|C6+XS#Rn?T@|V6S9#Nep{g
z+Urg1k(xc$d1;R|*rUi|4Lko~unhGkcf)4ywyfijJUia|lEk0O74|59B|lYQ?cSI4
zdkcGH9giKhq<+Cp86D|7HMxbu7gyUW{D8^DZKChzM{<Xcnu9%~ubDl$A294uZpqr}
zx;;|3H+6l*{Nr@oPN@Y^m-Yy3qH{X(QOACu$(7QIkDBYkN3HpRc<*QvdBqP<Z;w9a
zDsG-H%cexasfB8s{|EpO>da8Zd&SxcCD@O0=n6KR9$K`c?-5Qz`k0n*+Q^Oq*n%5V
zfkgn4EEwR;6uyc88`%^hwA{ZRs7624<XL=tms4NVf)?Iab34sZyLSG>cJ)Ea;A{>_
zSe_(Um%P!7_MzjE#+sOLk{}@tVu3<Sdf|IoG1^$jR@T7tlKRK9i-E<Sow|Tjk4;aQ
z(E^($?98%xw*fUp>9LiTNgV@HTFle#Kgis=1@f}=H=8Z+@3|(x8{hawq2l_=H@%5|
z=XZX`lbiVS;tMa(^Upm;pZ)Zw>E}QALD`Ue%VBMK`|vxZ1l+q$O}_<lje)!zu*-&C
zhkZ0TOw+ntku=bA)0^DZbRL6<#{FG7n{l~kP*Xv!rn4BlJ%ueMEM94k*4|-1#k+6q
z7N@i1&7s4_r@T&Kvw-Jxs(r;C>xw-_?)uWn-RxzJAKnu4*6h_zqaI<at;lK(I(NTt
zO6Q&2%}<md_k|zG%i15&4;Z#Jd*zR9n#?Esz?xjIYCp2a&PPSLn$FkcYCh_yE=lk~
z*ZC;xYke(+HJgZa9zG|XuVAxw83k74cAY&gbiRUZ=uU9xVM}Fd>BptGQQ|cx(QX^1
zwy7xXwYJlVK8H!dC_|_=VB=@HhiSx7)FLf6IBd#m(?EF{nck%21-AC3WesD_i%G0z
zx@Z;|79rF+q`cgufke+5GhuHu`-w9x`H4sTX`9ALri#_s`W~691A?ByZ)J+ZQNk31
z?$)8KQ17ffsyUkx>d_nv8c8+@GJ-u@l%Jgy3(HNelU|D~Mx_?ogMW4aFRC6(BRos7
zlLx$tSK-b9dq(HwHp|wN%?%hOXXRuJKFTMr8E<m$QXIQ-XO$M9#fgi&4RXzfz2F)r
z1xj(94r4p|WkGwt9yD{%0>;uo(7EMZGO`#8j&O?H(3#PpRIYlYX>@Elk&_JqDjxK7
zxlNN}E8$s+Rk_3|+oq5Wq{=rtM<+Y9!akBsk4!8pM3u7XxTrm54K6R`I*Ba|a6A*_
zs*Z#tP$?5B3&_rs>wK<epUNw3a?G+x)Uc_}t#C?hay7>^sx#T6=0y%V=g;MSNAGyY
zJLup3vww!Z?c2YN{=hrFPB<O;^Y*vDo&NPd^{43D|HPl5f8}5KR(kSvPbw!bu+V^w
znptf^k2~wL4ZC5pYwJ5gVKwTz?BNF_xSXk-%Gr#eFIC5Ga?}$+Dn~MV41I^+T{Z~d
z;Pa5ZZ<$RP)`Uz!ovcG{*$O6A5B^S&BXd@3kiN)*RVE0DyeQFtEXU}h3b443DrUc$
zAu2(8>(>FB^>e!xY_MO;#<vZF68rhW4_I~k()lQryY_Qka0&mh_|F*&<pEexsCPsm
zUfE1RKR0Z_N6o=U`KBi1y6~r&y!cb^qw-=yHu{0K;UIm*PPQPEP&2QS1d({nUNB+c
zv1tzDmc(T+z)FBEX`$%ZiixJ=<CYDYHkQRv@(UmSXn4b7Bs%0Ny@eFa=2JL?x)B3s
zsPC{jrxO?(-<ji@=Qhk!POurd-_&Xd$Qa5T+1N0nYA30ZBoN3%O*WOpHKQM^zvS#w
zv9Ec?Mz&Fe6ydPu15W1W^rQ!{9iDY2T+Vh4d#36>X^XkZw43A|M)YePSC-iLK4VVp
z6d14-;bfmRIU*;Y7i}On;TFazl<YpIs$6-~Wv^o>XVJ1oX7F|MyKyLGLKf;cXr%@@
z@iQ9VJg|{wuPRopAt2ZaxH5TM8_4G#TswikGrL?hU^Y*XD`Oi~r=oKd^qkR;Mea%E
zX4qOXLlSHRn@EtmVpadR+2kfy9vd=2uEphQH3USbxp6XYq;^A+0EFs1<Fw~2ay?_Y
znVbc?TKa_XU36~P$m|u^pmUiw?VH?cwM7qVVgQ@?EZA!`Y(r|)1v2;0({e0XvBwOa
zS(^i<y68(XF6~ecVbq|FQ>Se;8m!n==Txjn8~WN@T<2qMIv=CX_pL9@kQ3X4_<omL
zhRzG@b!<8>wn<-`T(=nSO|Foeo~9$k7W>kmS)Vo+7JHp%^c5|dHqWMW#je<9xwo(&
zi9MpO1dl^Ir6(01MQv^@KFYAVkFwe}89u7I&b==|=bL~%`Y4y{82eI|c3T)*%?tHm
zg>V=|=f0J^mPo{=Sm(}1?X@qh_<<<bVStZfIc?xSXY)a{kgNJna0>(5kZ@v>RA(|*
z-Zy(C_$Y!s@?W?Xge;6Vx_**cOGyj+adH`-?6YK@g5&m@Ov3?&S=uELLjo_8_$_Xe
zAON3?o|O_}OnOq9k7;nC5AUsT?IcSY(M^C7g3T<)z0OauL9h(2(W2dgMxH=`kuopV
z+V^kv|MHW<|LB}d*V!5r8L_soIdz+#E8D<`V35&NSjMikOP1`c{oOMCE!l&!)HTcU
z(t}a_nUOHW?fkg}orj%BH3|z)0<(G(){eF87BncA;LNrl87D~aZ~4Tl(RnyOH`c~m
zoM07-m$_k|0ye%D&g-IqGBztaEhFuR`!KbRCY5#A4(<G0<MUQK*W{S5{K~JSH@)f2
zqK~_GFFZMHf9Q|9dFKI1n=kR_m9Kgg{fTe?f6%}6|M|D*hky8o>3hECd+051eJj1;
z4R4@GDfF}NeJ}k7-~AWqum4xyOYi)ff0KUcmwwq3lT2rJdO+R{*e%AubA6+iv81vX
z{}8zbnv{jyAb0*gpH`5u6#+yG7@AzU-GY1~S4#pjn+VuUu4WS=SJWJ_VCo#O8TM$8
z{ERKI8P!NTmE2+5X?>|NU`tooEBx3Qxb81;(j#IUgIuHBG@hb$U>0&cfsNa12{b*?
zUJuuIAy>zSwXyKSAFeNh+$ykH%>a=r-qix$Q;_T4sBzHOCTzl)Tz8;qTIf9Vr8@ze
zw@00?_yNN<2R|@a0315njEx${{D9c2`GFu;^8>w)ihh7PKVbHFm5(yH8g<j$`+<P1
zV4ZH*E={h`dGt}H^XNZq9(oq!Ryvyyd*pr&AH|=c)A^c@ntPo?u4~v#t|j=-Xs;Q*
zzsDAJesOu}<Bn}&7&h}!+;+ZcMaWN$OEzwe7?+IdDQ@mqk$a^m*4Twk7m~*&^kbW{
zbWfkvBEWiM{Wo$SG)PkPXs}F@k>xd{?#NHhD8_(YVcg7ifZNMeI639an)e#y-C~D)
zx>TODvn`HZVsT<d#O=|jWRiaP27h0i)PASOH`pkP1$jr>T5xgJdIRb(!NX_QJ8-gD
z$G63^VdLUA;d<V6*mirz*4mR4yW-FOfSsiz1}~8%aA0k-)+?ATb5)OIYx^KP+hyOd
z8TP!u*4iaVwVzy$hF#j(;9YLo&ibA%f?PSSDcBV&Nsw0qp<7IJ51vA@?JEqNZNsi-
zY<L(}snc+1KeJsr1ok&Ut_!*C8#cb)IkpyHF*)kuy0{~eIuE<av5L+MI#W_P&v>?U
z)ae*ov;hfJ!Cq5rH#uHvI}fU9A=fPe13TH_+d{5$RcvRN!1C`68y~qoNK<Q4B*n&*
zuWLG|pmWbIF>HoqkH8h=I0v2UyB4~bF60RIYhLpt{qx`aE%a4i{rl+SpZFyGQ*U|`
zJ^sYw(zjof0(AvJ0Pv!5v9_cEWC<g%QIv+YOiOz$)70sFsbjt_LC&$C%e$eknH;$<
zv5Vm#h}5>&P3|yN=f$(@o&L(@s6{{xTb+vcYYK8QtmX#{>;3{h%Ba6k^wzLW;LeLa
zYN2y0Kw~z+i|ee#0kz0yUFbZ;zGOPz7&d)3w?7`}>e3HXTKcH8z-s+mC;i;la?;|M
zRT5d6kCGs6Y7<V?d0F)HrOwMjj{7}=6v2Nkd_R0t)VbM!VT<<5_Rak!i5#0B*t-8b
z1j$Bf{**N6O0|tkgTITmZ#6>a3wPs67Cn1LAT9ovKli!=|9kJ#WMf(51sTP9B12k*
z@<M2JEK{cHgu}R$<zQCQO)<?j(R->Ml%j&|Rf1-CYy#IZ*U%7R2V2x216B4#t5N{*
zA1oN7)@ntam5!qp4P^3$l598Q*|KRiH=bzA;;kt;cH<(=IF%zwyuc>dX9R{ac%}6*
z;3>Cj#jJdq;D0Bj38}!IsqvHw^&)|yg_HtIPh9H#I3TA1L8Dp%-I3Je;Rv3}O@~3q
zP2%q@Yr7!3Lo;8JaB50MaMn#R?8~<~9vK$BC+ke)I+)y$K@4nM=(Rv@hK(CWWa&;*
zl&jf9lKV^0mk{8|IMpLKB@wvE0dhscxn~eJxq_b)cFfpBt~!Kb<DdNq-xw5^HRwDy
zY;x{(&@n~Yv&vfTT#+H1wIArb%8uS!wz101uq7-4bW1|N&wtqq?M@1FYZ43t<UCmx
z`2dQ*0v&Te8t<l9k-%d*=Xny_1Xa`sz`Icma@A*3HXc)8^MoEfQKEgN(QD;FGs7EY
zkVe2YX*~2LJGC%qKTclL22@MbvKFPEBOxkRYW+NEO$)_Fut!k*l*s>1u5<MRW{*kx
z5_tJ_>>$`gTD%+Ix%sF@Pa<8T>U{)Tflms4peD<9hrI?L<@T7=mk2G7>D>G$HF}3>
z4(lzKdy+uDU<ci%Cio<+(PZ{o^xaIZYOkG-61l>@urT$0uCcX--D(23e^l?_*x}o=
zVS^tK`ZmTrBcq<zKrryComr`rPzxm4_-+eW3jm-kLB|Dyfh1=jK%h2|Jj*VrffDkj
z)Tn&RKOvEY{G+r1cn^8aA+&|ec50dFLLZc3(%mtI%l-7Rj8lm_RF6FP-*S+X(;^Tu
zDyd~NnvE>(yO^YDilS3Jh;MF5DH0$>;LW~c{a9`tl}XJij90&eXA`g(o$#g1%R}}j
z0?{d+3;<U74g!0=(ZRoko!AL8vtQfjAOyE$EbOpL;5o`7yt^l7rbu;>=#fVs^}rY3
zpXq>}d+s@<`W$S$Y>Aybr+etZ2kEJ&o+3-s<DlRF^g}=7NoyAT`ot$bP9OW&N9nQ0
z9+RZAFZ<FjlXdGw!D*rp{4Jq>B%+p0k7q|34w_r729s4uODY_bt6(y@;x|+qeTea#
zk9NPH^CP)+a^*GhCE7Rm{v36lTHS|*J;G;^VIx}50y*|+^5i87*oJ7Y_)U*ZC@;aG
zzU{EZq*n<n<N3z%A2%~B6S~J{_FBUGMY*~?5;bh-Td`f@jJO|#zFF{YWU}exDm?o9
zZn>k*fn1G~Jz}%Iq=nnNehfW0wptef)FVG&J}lT=il-9rEYmsL=Vry$7do@p!J+*e
zxRc=ya$V3nh5PhA%4}9L;*r5_a?SW{Z?7fjxc8s&RDnIan(Ts3NBF3#bZ$1q_fMUV
zvhQ1xObQz%d{_5z+@2#P--`bX_G*1iV$#6odLmjd1BgwPvgix5=^^PFM5cUZKGeqk
zc%7jKnRocOM~=nxXLYgcG+d=d(fv~A4e5nDmy6M?Vzy@;#&)i_L%i&Pb9&(X9C9@!
zK(Iv@I;}9zvOQKjwsyY%1%kfSGfCU=C&|dogLnLBWHlN^Fp?D7os-fGIBPb%aa13*
z+x4VnHrn;%&*tyhagq4!Q`jo5`}Q2LDt5z$%;y_p)9dV;6)l5Y0$4VIz|oanZfn=M
zlcTrKEfYhpkL9?yM)sWZmICVl`jR=EaB!U;*+7$HxfiS}HgIEXCPzx1eH`UlA=e}9
z*U0tc^^qKpZ6LO5AbP2DS$KjzhclgyuwElayS9y|0hv!6nAjsAYyJExxgKL{_L(}l
z9?7xC+Ff5S$3lAie(>zhRX@;OJNLI`6^&zicEDP(8+=NRH}X*-lj5GR;hIxVWhol4
zQg<!ubDWA%tW`3euETb%k2=+tj(pS&u%Vw5?3I0g8k)a+$#Px6#$(unx6dhV0K{>L
z|23Q%x9lVd+Ij8Bi@4`ryekWvF-$J{|GghSIw8@Zo^ows>_2QEouA*PPd=-E)1s5)
z_Ng4w2=tX!AEWgZ@^;A{MnIq~G>mh)N^q=N04lXfo6S8mD+GaN>E{~Ilq}b(f#{rV
z0&0_Sl2bQjZr|79o*FQdK=A-h>6!fZw)j$RZ(u8gck8fW<8Og2EIMQY3c`1ri#YaC
zvCgF}_|=Em37m#aP8&Hk$TeqAj8LD0ML@COY`})7Re>ChLQ!h0B*RV^&#%IU&4W>c
ziY3V1bS_Yae1u)(#_c0EBPP^w$SvzLVq5AwV9N*&&!?~fJ5H8HY-W#=7}3kMC}pOY
z$W+}%7TBchjRwJcovTf>jS<tiFAgclb!zsg$u1Q7QW1I`u@T6vVV7=sjE$6qMFIfU
z*M=5M;K2WYzUG??{Oo|e*ST{Z3zvLCjfsY>ji~|qT*K+M<_ApY(GQS~1?~ro7k`Oe
z<T^H=W1Bj$FUe_(s(M@Ml-wp(`%+O`mW`aL$USr)<=77tuR+ma%Nh1qI=LPDs9tX7
z2l&C$9NR&gG2*1ts*ehOU^4q1j<A_r7ud{R12)35li5J@QFA@v`$=#qHr=dv;jU76
ze&V^Ao_>J?3syuG^@Cu*5@1bOqYyTVMUHlwXrqf}qa{jq3TBVf!=qzK*km~ynU0X?
zOJB96H@@~9V~3uAv9Zoh1!!PIr)WcHpF@VJ#T%Y^;RSil7AGBvY>l7p^SOinOV&SZ
z^IX&6p$Bg12`U6`EKpLrz>&9?(so@^a>@j<Kyc9-RF`|*$+AMJzJXA>z#s0Psck;k
zM*>L*!dXx$wiAM2C-05>$9DU5LR+F1AYH?D^4T|RKZQ+-e;ywEZ+_RmA%Xh$y!&T7
zc=sh=@+I^$?|!!=<uL6J#ekZ<cLCMb;TfO!_{ZrZAN?r(+OPg9{n-EfKhuXk^qcg)
z_q|WEa(9>X%2&RU&d$#08~?~R(O3V|Urqn?*L*d7`BPsZ*fvrNtl_rcpy}k4T&`_L
zu<p9wpVH}d?JpIZ+0;w1M|<{l_LyQ{=|3y>m{y*B65BO$y{Wz0Z~ggK$hEf#S%vh!
zzXA3&Z1Vf-<aVNc?b#6<-Gkix_b*ZB_WM)VKc~KQ3LDyQD%VrLKZ*VG;0Ny2f4YC}
z<Yu4EsP(dJJwfr=HWpEvcj9Kt=ciUzA<hY&dF}<;O-Q)SjV5TZX?qW!l^Os`0r=ok
z$txinmy;Kr003^cKz}TrAlF#H#*Khd8ZY_QIH)J^>f@OFZrV$Mrp<PgNiiR>-~mWD
ztY_tc7T#y(kK^Ku`w2(YwVm&8rwoK<Wa5bzPh<zl9Az|?^}U}gle*Cf$!^l99MU^K
z!fMzQt721*YB`ENHhyiv3T(T8P3SS0vzisT;R@%6K-FFgN8~hu{(?|doaDE9eT<Di
zhOJQ{p<V%>h?u*21+_Xh{(a-s&!F}weynS>cfk>&VHljYM2ak?p%u=OpmD~+3taS+
z{5ZE|40|mF$hGmo4{j6AV_q7?&ls+aD|`xAhwyvB2J8SYLD0T4C{#4NUKbFKZMMR$
znz6R5rJz~jypUMbQb?^{!ES1`7E0jN-voLW!#2adH^Y+t#dy(}s)!eFx;r|yf@QiI
z_XVvU=T6{YZ=C<JmV(JO=e($|A;&?FbUt`Z0M4G|zg_P1)QoNjDDSCG{uH~`QfP9G
zIu~r9ju|~rfFqX+os-*Rt68z+t{*y`_x8B(10&0EgT6G&br!6XERc<EV7Iq^E}=E2
zlCg~S{YqbAuxAp$uFF~=5ewHVm}m5@h;8Wy_BhfnegM=*d@t^wt)DZt!F`ft#|!nx
z!beTPN5Kyy^%K(1-A8R4OBVZtJ>JMijm<~#!gZtAM6Pw|qv{E4r+gImrR|ZALf>*<
zALVMkKVsd8OlRr$N<YL4|GBChjANa3wK^`<dbB}p9Dl}F7~3=GLl)y?`a<xZKb~1Z
zmf?U5g=_^Q?dU!o2Z@<0(X+fmaU`-pY|+Bn8W)v2w?J;Dmepc&mV$tc279bsvnt3r
ztL52L8W;G`u<>UAy-;y%<Qp9Rdugx7?Uwajj5?9PEneCt1>S?d&^XnRp(`1~nrR}~
zQhRUdg(G;&4O@zGZS)uso3|r_yluV{c+D-)k4dTpW`Qkofhz|l&RAr~HpoqbY=M(~
zRp%>mOR961dur{PVMM~qUlDA#cefx!#v<0R<rYB+*p%AMZNlsc_9l7PUKlnzHd^R>
zX%jBj5ST@>a@)|!G3Z;}9%(UG)?lSBY&(0jlLC&7j<EIi%3quv8+7j3^${B~j7o7m
zq#!rVZX!BWOJTri4aY{oo_)OUuu-#DvFAnmu^$ln7X)fWY%C+QiQorL$<^%9{;Sa*
zsWjgGVQH^<T=xUfW~yN$U(+A?feKuUzS8?B^cD95qyFKfkGjepQ*!FgVgc}*_<^AF
zIA$(%8tt*ewzS9Euq}Ll3fL)NM=)M|iuxp_Zxbb}p2$vR>BfW51$yuuyt~;p%}VQs
zMEEr=Pcc^Yx2gx6`bLJcsS0~^7Ed9o^-*;Z>^ir0+vxJ(KAxXoeQkk%f6p8Elgxix
z*eq55yM1iKMK+*osH@Yr6QKxr^-NZ`w?ShKatfQ&z6*tH;*>(>@?n07*@k78>b=xP
zWWJdj9k2nG#1kT?cZh)}*=R+E`T+ZC?P?h_>~BQeq{miaQ=0)N1tT_Wa&VD(o_UwL
z+$<3aQ_|D$eNfFZ(%VKENye}g1UBq=*NxD`AcPd;EGH<cp7;^!M^Z{4E*{LX`lWyH
z59s5E4FSfu+u2EgPssmr&45?D;uZAPuX?*A?d*0+9mkmfjMcF_6Gf97b#fy*ZkJ>u
zO1g;`e(#ypMYEShZb7a#uQmD{&eRtAU}~oZTAc@710Ts1+4FK*Ijv*U_0xEy^IAg<
z0Q{=QW_22bIu4sJDZbmR_L@WA>9OS_n@HGbos|-@mn#CAhDA59(-AfcevY;l3)qa_
zlI1eMUM<N%<toy^+ADkCiE@)Q^Qz9<n7YZsVvIHH&P`7^sT{_=$<~co;~XWm@!qfr
zg)aMnWG8e(P?y)GC$RD3t<K{nXXn+A*lg^OQb;R0mv-1=4L-`T)!?Jxlg!>N#wc}1
zJ9{-B#-9-<{nm6&z)qyG-5l-F`ck-#_Gt7uLuZeMjjy~AbLeXeY$tRc?XkC4?@N$t
z^q<WS%qQ)!=)_7B2jB-}9-jwKKr-z7vH9y_Tq5%9ez`a9XMNGy<X-G=;ah8aMaWBI
z5h<m`yyK>y6GedQ;$M2iA<4v80;(J^4eb*A4KJ&_&SPuGgVd4Oib&st1BYxNQUH#-
z66hN=+sU}M+YvW)Vj4`4u2=PlN0wRV>|C@`e1Vixi33csfZN-#9_<i2EV5Maho|q2
z#)vc2*@<bOFQf2HDSKUz=hPOWcs3i1JZnI3sI;Rll1Vcuueco<uJa`CE_`JC?)%A)
z{mAtc79Ko_+{1|TsFU@I;2VyGD8-Q#sZ#7MOEzRu$-;D28Un+%Q=VKYtUG2IlzEXf
zoGUN>w9_E__I#^Hh%9J{z~Cj0OKpT-I4kW72MROjM$oy8cT_SjIKyXDx~7JG6dhh1
z27L)CG7tHrbS9e&9(~8E!QFD0m`HF~I1&$7r=4W$8Mgi13wi!Ic=9EP$#MsO`%dVb
zlq)S|+ws<*BpdEjKsSQA4ZQm%I_E{pM8ZqTrauhKUp6&t9HeBPHs*2OW}LuK4zSI5
zE^^&pOpv4Uz3wi+=eiv=2yb%T;OLdnH?f>J15UX62-z{p`>dSj8}h;?>}W*JRX7{B
zya;D5wTqo#b?gN^glAh>kWD+~gJtZzXusg^o6h-2CkLVr_rHbRPVTqDua`$XDhT=;
z;d`aj=y0$|*1_R`4V-i`2otENCe7Ru2fiJ}9{0c^n-#Ff5xkgt2}J8;T}~2!$9ao-
z1d=3HOUroMsgK&GQ3qigG>7c81`;&NDp&CX{9_J2fajL7o|2GYMnUFl-pB-0Is20i
zoTNc>KIbUdCOv+~!7J&Du$e6@CiZh0+~)~41ZHLraE(IGAlL}C3#xI-;mCWLgO9S~
zdFoF!TVfVHk2v}#SaCdB3h9E=b89|nKcO8upUekBuKNnQ2T)B^)nW6WCHT)KSI_!3
ztdgxvZNkcY!c}dI1}#LU$9DNRGfoUmGyJJy6B>b{BahYqP`Ry+OQ~@MQW(c<z?aF-
zTo$|edP1Td^VfxZru+S4b6=f|Bwx_WBuh4wuz7X{p3J@a`pud8oZY1sndVJ(u1CTB
zo;jhnhrWM#QG_0f+t?5AZ#mQT?0gjed3i_uC*PY@wcpP&A-{E7NOWj-S2;U*GmNoa
z?v%3boX45Mo1Pca&$e3)5M1uG*2YG-;}6$|-^;0w?I8BW*fxUg;L9(Ij3w-^*k*a0
zVc&m#z7cE}z@|L-gDh<M8Rxfj(syw&OU9gxJGmk|QL!=Y$>m)=g3sLCydK(1U*Ptw
zWajTKF2RS3jb+&o9p(G{9{Zhcj+tE9e{%NTxaDz2>Bx94!tZ;zS8Qj8afAEX<z4ml
z+r!u(Cjs`lnal6S8~zt}c#PCd#%g0EV?XGH=Mk4oc{m`+qcR8RUdG$AgU<JdpK@?P
zHuAQkybJps#<@9QW4ZF!!S@y_0pZCn@?NYL*162PWFB?U=>Z$}&GTDZ$0iFbo&z47
z`vroKx3`1noU<IW$aNz=f^C9r>)dqCg~u6tuty%R4ci{?B66H`%sdn9qsWbIK>0~|
zb60)TEyH%99O?XBmd^#K&Teg$mSuOxbiNU}?RGl8OH#+-4;PnvdFL%QciG-qM%-8S
zhcS-n@dO(<{4Yf3quA>ubk3WpOoe%gniJ<T$2(xT3wu2qB_PWQ0o-@a&%jH3=aRHG
z!U!56<5Jy7p!DMMLj0rjCE3i?WP!7@LtoixUlE(&jb}^L0k+*G>~*WycEX*ibr?j>
zEZ6-k-_OH<c@kq&Uw`r9PW+GR{D5Vzi4wQBI)}TwvzM`ypT*-gKaT_K{CnQ(XL}qV
zXGt*GX<t$w#k7MLz&47`C-+f9@KGDF=^f;Hi~9=vfN)c9wQd8;h3)RvR_T>4?kF{%
z)os}Av?jzkbZ*?eY!j?=mIGtwe$Ui*>_6Fl<$7*?iSM`2`KZ{~rq9KH4$_xq^d<2F
zJ6)5w&My?Z>721A@t>MqFLJdFeb)I7a^(c612*@cNSt6l!#D-oPURMTl++tK1TphA
z%N$+i+M6?3gRmUf&z%X@QTnmY>$kEBHhyN~?!9Zg>_W*|k=@MW(3!mR1<OSeCC+4C
z!ii_~fL$pSwH88^fWaW^(z&#nP?Dg+{u65osiiQtc1cE<D{31Ur4uPVS_u5#@5ux9
z!BkDxzNED!QknxTZdn9aJW*;K7s2*Z1xqb(_28{D4*=>ZPtXn5S=SN>2ufWR38HO0
zz9H*$1UhBT!G6<&^9Q}2Z9-63*D-Q!^Y^sTV7Vklp{`YGrx!BW+IhwaK*nYpS=lp*
zWqm1g;x%k~ika6~v7qVswo%XU_%ne2T2DkBd=c#M;!@XaU;F#NhCcbpPtwnS@aGO|
zuf6iGANuYGKJdTN0}nnxzwc|l#`Pj{#-^Jk^cWX7KmRM9`U?8<fBw(YPyXaj(wBbe
zm(#ER`mfQu-~BU~16|P1zV|)!i@)&m^#1q1j~;pC5&GA^^SkI9{@_0+evQYA2X1XW
z2+Vj#@Q%;mduwvlQ}H8o+KPN{+-6wE1Nh*?#`5UF@q)TSrt>+-RfCrYUnBFMuo0C^
z=NgwXxf-@xz-B>TrhB!`B*#uMNw&8~@_Dp!%dhAh*f-~+2CNZm=cLkTudZ`oUtsIy
zD*dq8t8V(5TxYjOjpyn7UgQS3OLj6P^14GDLqI|Wub0pA5*t(E4hw9dmdBy}?0kz2
zX%L}YCD+<0ESt`)FR7CmOl~vA8|+}q_<{{Q#|A$TDW|MZHroZq$V?9eKhR@4vRBAW
zHb@v-YT4pBZtloBe51j4i+5lXS>h*~rt`YuqYRq`w9nyluEkd7W{+{xEG5UzzdHxE
z=%ZwuW1VkC#7mH9l1}Tq$Q<LmZ8oyKqObM+T#G7`BrsYmXARpB{Q$-lg8x+Jivb$}
zv&1iAU+Vp5?rh@heA6~&G47<Bj7vz0m2oMwThU}sj1EZ%2?L~zjj7Qqsms3i`NQxR
z{@uU$-OE2=djTI?zKgTvVh4vs;D|H_4VLFn13-`VDnDoOjRAdmY!qMzQXCf^kg>yK
z-?wZNR;(32P+Alf4q>+{nJ{Z@{N8XZzQg0xBG^66tv#pgnS(}oq1bD~9s+0jE*h+I
zY$<_y1ex1p4&AU4XnMlC+yGm<M)2OQ?Z|94?7CyQ#8wyBEIU8BQzSPklbdm_TK3am
zN9A$cSFxJhBDOhT)8J_@*CAkC$Z=kmtMP-GO_*Hk5!TtU$#q#~?Uq2_vA{kwx#eiT
zz%sbbm)K3`c?H`dTNK#p5jI?}>3nY3YUy-dS9Cs?<#laxtR`2do2d<JN?vqv7@|D}
ztS;wvy=ITiCXTVK>0Evvb&htk$Gl>%^IVpFX)eb)rzl6OET50;wU?X8bxr5_NUo~$
z60T>Q$XNOT>TE)Fnt+XfHD<t>AE*nR)5890XRl?&N16Sm6Fy3=SNy<2=Q%HQe%eRX
zW4Wf4etyz_hOyzu_pe~9OMBGGeZ)!&drT=We3S$VK-aY#m)fAc7`O1Os`Fp(OZ?%1
z`x3!8+a$36zVP8sJ1S|}kqNvb9LJW;sfuilka2AJrA93wSrXXbu9y#KRz#M`wM^bE
z`?MG@bkIRco-!{<?a+}}O|AND{!T4eAlk+m5+5uxwszR$UevOst7UovTWy&c@~GL8
z9+GFz$ajIAit;%&Y~+)Fsz$K^Y&GH4TGp=0D!E)EHhHgtwjfu>=5oyq8#Qc}X-IgU
zV~fAX_Y<{*5s@qUQcCKRk_C2RmU(R)vIOjlb~+)~6m;&`@$7)Dq$byjNwUsAZIjRB
z*03#f-eJpY*kBV)=a}Etgm;JBXo<~iLL^rk7p=TzDc~%Q*s`}*w;`ojS;%c+udt!6
z-E^Kho%h((#;EBC8FD69y&tvUh+xwNpxdK}DZ5<l+Obn_6X^(B^aC>D2b)NtFUc64
z8Z8?wbY5{<Bn4ThTw`C-cUNrGVKYJmx5pHGRMg8_Uz%HA^2M5AhmT5lw)eGO=l1UA
z;&SeM)Vd!y)_G^I?xXUmk6Osxu{C?u(<*4M=0Ag6HB{qA>fIibVnb1tBj3O0dM<OK
z=kM~EtIw<mj;Jg!#!wr7-CrhTPg_4v2tqBcn;+2E@-u6)S<7qlhi;AZ#3LF&@W4ve
z6ymBsLqA`(SKL#QAab)w-ni3*6rF>_#DXu(A;K_3A!cAnE!L08f;_a?5Rf%(*FJZF
zmq@E8ftOl+?Pc=MHpZdd=CU@%MSb$qIe?Ud&+)mezJ*`g$J;Rv@-=UGw#7l>{Ij*U
z-&=wY1?>8)>ZfED?IuUOi&IIYB{oYS`^A6oi?WIG?)SXMvvwbR@MZKzzUhz1y}tO1
zUq`mNVe?_rOK<zU`FH#FZTi%wK24uEY$`na?6dT{zxzAVwny>MyLay%HYLyL#TQ?o
zuQ_ZkyzX^htkkkePml>MH2SG?iFep#eL~B5dkS)!Pw719^hmC`wb!U~{B7vu>hz!;
zHcKvQ*mN%Haxdiwd#`hgyV>)SW2=fiHS7u4o4p?E+<cMwzXi4wv0rVEwozhotuFWE
z*rPqxAQ#8h`NY_l7~Pm7wzR-Tu`i{1ge|XO593BJSCh*^ZUI~Fut!SRrQB9@9<Y}y
zu&wF5*+ha=^khlIbES{!>~W#<BYW-S3VU1lFnQNwn^6B*7JbQl#8R%xo8Rm;dw~18
zz7(-RFh~A%Ay?{bBB!O?PWaEXYOmGb+XgM0pV>xC#Byrf;!pISZQeo)d*iu-CT~Mt
zWd63zhwkOGvH`IC7!cW&IqYVgfr`Qc_*R5P-@VeJC=0chwM@Wh(EKCW(cu>i#cmR{
zV>oH>v#j1;!?jKrNsnZt^}-Z3v5!Zy2^}h4Tk#x1KtFpRI$*0<Ajt&wYHY^wR2Nw5
zD%Qw*Zb9?3z^04nRcy6!g<J8PWji^?`qkJ@$T2PD=HCx;?638dLw`N5U|+{}Q#qdc
zzR58k*+7p?CztEkuE9#ld3)&|u`RyeW9x0=1okzoes5rfr}@0dQL*Yu_2$^Fuvf$8
z*GW#N7&h|*>Be&Gu-#OS*4I|CLFd-Df*fzE<5hdS4x7mZ^$enq%IRu*?XfnW^?CA9
z!4Is<HDaTM4LCORom6k`>#xLmg&c*pXxp-TmgADDdTrcl6O0tbxuO}@`^j|~7j|D*
zz(b(aCYG8V#ixO`^x}>uU{$i%jarQ*rd;AJTTFPPhqj3$*D2HrVe=Et>cKahtRL&d
zi)4}{M>J*g42vK>Ii)di;jEUqh$i2wy%LJ{l1&=55Tsr63(ac!UN~Agt&g!uyPTRt
zuq%fQn8EB*+iem$V_r25cElZ18QZ+o^_Uj(OnS_>M!7|7$*|>i3J3Eb&Jrd(o07d7
zidYTd<RGx~^Jl!<Fr=2$QON6WG`VTJ>C|cp;8Hj0fX&-$%d#`dI_ycd4SmBtG@VO7
z_jgmB8}?RfL9wa(RJnSc2-|puJ&GKpRzuLa*<(U-0ctszz4q8NV+#R<fKB9L-1bK{
z(XfflRBHB&0KYD(6<dwiT<$o2e}oM-Ga~B_MzX*@=&3IX_L_TaIoP9NcWfl{Z7W#3
zu*c3`mpX^Ng2r$z4V&A<!VjRYAWN#(`2t%tEF_tIGd7lOu59*b#gg?nzur3;HnYFp
zCZfH%&M^)Jxo4|)u%h#7HnH$gxwA*;97C@Afnqw&i@wx+RKR9Fs<%fuEgG;TTJ*)<
z513q=k5W3QBW%GB)ZRz+a-|dYm@`hzkenjoapQ7IWK=*B3`wwo(t>r9oq8Mwm$T?R
zL+41$86-=z(ev2cWcKybC^b6x9UpmMq{kk@DO}8pQkXwTy#l8KvW!y=R`BhI95zf3
z?R?rGQ3`<u!ood=f8W0!o0D0B4xcpJT3xOh5_0fG$$-ztNr!#=jJe@z@F=$o_C9Fm
zi6}O&48a~v$XVL$5TBi6f@E!ht*%{?WLB{0=0{#^Vjz6z*bQ66Zkej`Y-+)z!RE{z
zwl%rh7{En;AAImZ`jH>`5zK!l;r;)={!8C-hzV`!$tRy&1nEx6)$E;dJpT9-65N0D
zo8LrV|Mg!l_x!bA`!(8Zw{imO>8GEjPk!=K^zL`Pi@x`-{1y7-r#?Zy@f#nKV!<ze
z`OBsMNTzHl>vDzMV!O%Z2wNw2(|PLTN@1<A@KtE93!6AC*G1CS3idJT{FJ>Kwxk*C
zjxG4vh0d`NdxR}5?Kvhwtz*9dHmtLb?2($!U&^(v%5}Z33_gcm!**RiKk7?eUrE<t
zLwjEJ1NllnaFxyn*kklzt8y*N%}nX1DK#p)4tu40@KIOjd<fWw6Mb#XNA-Ov(bYc6
zH)L+;qoV)3$`AB5Q5Jn^#a?T5A48{XqLb^8SNam{`Ci7Qm>BA(Nid(gd%44g%78i4
z=N5k$Pc`@;Ol?QPb{q-<E<)H+igHqm(wl*bkx^g#cWJ<KbW*szmGi$E_jfYR>REP$
z2XIpJ_vM)V82Gfo3q61rdT*T7Xcx|P;ni0@Z5E!=L@50Wzt;wQ+r~Sklq$L-Es8)f
ztOaLv(PN)Ehk6BpPkX^x%}3k!4Qs?Md~wWc&c{SKP{lmu;|A0;jSJlPx};t~Qoe2J
zToD@)=nKes_cs9>%iOuZMUEMAE34R=T=n}K9OGenfeF~z5cm5gH^#8!0#_=A1T1>3
zM>01-=iF{`mE++;y|9!kPY(FIdvL4|kz-ws;p0el;0oV|+6k<4$ucMe9`n55DQENE
z?c#CK8sxfhEMlL=u^#Nv?C%I$kgI)P=!uxRW?#TvuUNUWi_Wv!1TWN#I%%o%)M4xS
z;FmgI+Q7Kb@ftRM_D*>8wcW67WKlTE@oYKDzR_d$YuxpTn$CC7`PMl8_jX(ywLj38
zOy?#?*12LiwnwHmII`DqiH)gt*#6{rp3o76em*J%kYVF@tqYxNUt09@gADfjM#W${
zHXk;x_^8NTFTDCwRh^q$i`M=~X$ZAHnvbHObLZ_l<)ijm)UNrcsbQacKQMQGU{V^1
z&JT#(*dEKIHB>gBFW5B-E0ZgAI$!vxh0c$C)MWJuf**)JYIlW?;$881QmO_HJnTSU
zAoe?8f`M`CcwC~kNWt~K1WwDYU3jRIPPXs&aR2eAEl(vVUNuWX!z?%@le7RT+i%&;
zlCi<`3;Z2B>dJu^2|VElG1FR=iuS=Wla=FA7C=e)I&~tYIP@f+QVjAlwH?9A!$-O0
zlN}PEb`pyG=qk65Xm8kb!=OxahplKaOVYr&pGNX$>qdyxRFOjOc>WSQp3RH7q=CTs
z2wMTR<k-?lYzRmv1m#MUJIVabunR{kunh~jHEe!D(%MV$$*9mW9$^E=`T#lZdz~vC
zoamgf@0;A*CJ<zk0Q97K-~ffoH7nb2?XlZ@({w&JotB{U3~XiJ<Wd55$7VJW?NJs2
z<k%A4UF2R-Ojw>(C0e>J*W}pbdDPlZ+oNIYY+`{eDK_bA%J<IL<{<aM`r2Il{_^aC
z;;c4rk2*K(!a-fN#zZPK(hadidp_j{GQJ=EK+?t79I(}s_Ns@_MXXeOvD56;u+MI<
zrSk(d_N8c#=A+j7nqW(^(OK<8<SCsaX<^}`fGtIAL>;!|*dq3Z4VyQs*hsl;`Put|
zz?`s-iV?Hem}vC0A5b6fI_>0om5(z2S*@Sv&VRa(LUHS4H3FDAankt!>HL9Lo)TEk
zN>5wC6HP>6ovGNB8$1MYkZ3X>fk(5Q<A%v3FQRcj)rn>ITVPsGv5-ePJS(uY)A1>{
zK!}fw#n#nCaooJewfpbcPn3gbv9{|<O`iIP>OZiyeB!=~-}TQV^5E~PB2rqMSnHon
zu#0Se!}n9fR_m46DxLl;u!SJgqWua3s<jmuUHgqCYoz5X%VRhjpZ`m4#hM7ieMZ(&
zhHd3zHlM;ZfB1fU65yG~9;eI8OM3LtM`e?N@3qU|CqKyV<DdA1tP4K<sZZ0bTes=O
z7hjYO0;Bed_OOPbmuWAft8Ajzq4j<LP1g>=EbOOV@r<kVeI2%B&&Kl{TS}|g-1o%$
z*Lu=!uCvFhK8_7I{GL5F{QF3*z}Cxh4c{sGT-lfScfFpvzHlA3tNNSxpy-$4z3H@%
z;&04ESFS17upPArTxrD~uf$eQOYT~G{XF=nlRAgZd`{S+TvqNK?KO4xUc-K56Y;wH
z_f_Lk|5-dI=-B4q=IvxnT`I(#=%pkdp1{;5BME@SI6;9C)u5br#g#3St8inTEVW-0
zS}JQQ$WTfOXZD>OJ;E9JtoRXAiPQjXXT~akYvv0U*@Q`HYDZb^sK2$_ZcEPXT_j^J
zYbJ{x1yg~~iwQtNks&y|q*;vieg3;<%2XVyZCLf$IvLk@!Gsvf^>-@~YefKy1fR*(
z6fb;KP-((@Q*DM}a<pA|!)CnI?YPO{aum7BG1}^Kw4ztV<(yk_lBC~X$`!|MOFQB&
zMPI5Jy6u3G%h?v6w((>cN2X(yQ^m8Y*aRg#_D02akM;XC$}vHw;5oN<nITvH8)GvY
zBA08k0m~59<I9Fkxy>o1BYTWGucjBsiGU@gmKELtjha2@a)ch{V6QWFY}H1{ZNT2e
z0uVNFa~rVDxPZ<2Vv}p^OVQq%{Y|wV>0EpVu*|_e6-$BKvKK;8at7n2Yhy>t>}qnB
zJhEh1=Z4MXjB5fm{xlxMCMTC;$Y`4-{my)j9xzR0ejs3ze&1!4*t^J}r#dbtd{lLv
zr(l03XYzh-$NOfp3DbE+A*z)9y42vKYVCYfq}hOvgMSo%y6^*OAxG`k)$LINhbBiH
zub<sVX`B1oAa^_J@BNrGfG!-QRqe-h9NwkbV_Nv69DIHAQ3ZaWVJjvF^Zj&sT(b6r
z|El*by^iCSv}0`GD}2qzsQdd<SFW^|vn>kmA!(fxp?H|~8gv?UjGQ!DCmh%OnPf9r
z1C27C3uhw<_r7JL@n?|eT#+EEY;bKfJ8Y6-;v^9-rJ@3_Ki4^79$DtlwcxT)Q5iqC
z)}E2R$c0I>VXNAnfURg@bbiwbbxXKiHWK&B=WW<{gNldO&31Hb{E^@@W8-9qQ44hQ
zdq^FWOd7zQweAjYdh+`jc1dgnHaQ+G*m8#r0j*TQEnZdbwW5e{k@g`gHZp7pfk<FC
zY*O!t1CN<ducKfiP-_UyjtwU+gbNde&a-a(RnY@{d%z}sVZT?MqwuNfJSjHr=d!U_
zarzF}7<<sUo?1wvZ?TC{YuOYO3zwjL)}Xs_vX2sYfX)XE-dWM=hE3&aRDaPX%w7|)
z7t)#l?8~<%SKe$kxrxqaxfk1W!<OU(iPE~ws4J1R=sIMfa-BqXQWGO955HmKtnmri
z%p<U~&P}c|2F@x6?Q4on(jrg*mfKk-Td5(S{P5&*)xNaUxt)pvHnG=HGqa_Dyw&d_
zaH?0wHo*_L&SxFp-4EdVRwQ_Gdu=)wdmVvIbgrAvb!ymB)H&P40Bp1J)yo(u2>^|!
zU+fV+DnsY|J+TSK$~IB8uNC+KuCpV4phD+@EiZi(*E1>w-)Bbwdxc#2c@hZ2CX<Y@
zQ?pmu0JHWX_)k)~kl8CWA2kObrS`g)cRlJ$E?4X4$Pk<-!8W-6H0;^2jn<cDeHYm<
zcOPZ;sC~_Sl=%UdD@lC~@$H-JzMeM|wj=xiYP4}JhJtH;u5#$2XmC~?^9BHK7IRIB
ztt6i@)=93F&zF7FEcYJaFL@JUll4@NjP|t^^4lXonK8;uNDk91Pb4?gg3VwJmJ-@^
zeqP#qBI!Nu_ql_<|8fqMusLMwKh`JP=pIQtmc`BeXh8df_Ql$`6wgrSHsk%L*p6M|
z9co{-wML_RWpJ8ESp9^_RBUro*AjaK#VzC46DAM8=jTRjJ@$xA=A8kXWACu>Ct}l@
zdI1}eQ+e)8ZmF$D4ciQC9$duSpA)J0KMnd%@aGeK@Pi+ufA|moAr#fg758QgMj35#
z#n)v%_~etXrLX<{zn}h{f9EgId*AzB`ZIs#&(J&G@ecZ;SHIdf=Gejf@DKkm{gwan
zzod7*^PTiJ{>I;+4}bW>vJt>f61ihDBFZ&p<q9@yC-PX1U_1QnI-T#(-xqSDC0}>6
zN0)1`*WMl_LpY^t?RD45)z<yJ&J%*JZjV9dmThg=tbIm1!6w%F(saUJ`@ZDZ4I9zI
z9;;ys?Q3#1Y^Af;Q*x!K^U^4M_Z{|Ae!$n01%=~R{6Ia?*BqO@n_)vcf1)4AYjU-I
z4tvZieMzvHk3#z?Z1t3n3fOiXHY;v@%160eyS{W}kI;GV2Wls`a>7Ts&arkk_L+=!
z!?tFxhV7^?)w=YbJ+{ssqg>}s=L`QC;vEbBNksWXUpnOnPU+liBGM2^OoXb}-S}KS
zCyM~Xm#A?Xe<Zad8qS@}+4+@dalC|(T|!H)ZvOZ&8?>JxYkWd+wk-<va1pQ?u641j
z1*NP#exE0@+|C*Dk`2An#mxCev!i9<pWAT}E<`r!DiFtKn-SQ;d^_58>7I2nY-iTK
zQ*80wSPJ~^5->y|ifzEwt}7<8np((MB%29XjU#=D<rtek8`;ih8*6Xas$knKu}^wj
z_1rRw7uZ;jdzYhQbGe4jL;9ZSDs0gC`DWRE=Iy)g-S#3!`95cA7hODaAzH(>(0OUt
z)Tu>mirwzr%k|hEb+6Xsc+|c>);YgB%TaZ{mp~0?%&*I}1i7Nt0c_xUozF|1cI~^}
zDQr=$Sqk<t7G8)gu}v;l*%YKGSKYjcSY*Mu=v(30N7#G0?>l?6zP6QsG`G7=Rm;}T
zQoQF_=f+JxAP}|0HbZW_pu8!zbw99ixl(5n84FnVQI6Ggj(*M=lw4eFXuS6&V7(68
zDIXPe&Y$xYKOk~sofC>*1KYw!mA=kHS@d&S$hDK(5%&E$w(TiD(A$LCD;MspE7%By
zr;N^kKZ|iGB|lPW?HfCCUfSZ$K323#hhpOsw(N<|Z9x7%`zL0lXy(6et8liaOahJa
zXE&1-Uyoyjof_i;k{UGAg3=Q>U8SIDNm4MFBPp82tDBcO+vfM--=(yTPPX6Nj?HqM
zNw^!`2CB9X8G$FAuyXMynW%x&LQb+AcF(w7C^R-&ylD>`krPC0ZadWY;eJj;)#-^8
z3m5S9%|p@*Xu-;X(@D9unS44|P@WL^5nnF!sq-$QrXk11=uNJU%}!jH@8{ydHF@DF
zmFwY`BTq;VvfS%JK?`yzcI6&TkQ<JlCZz?bxw_oAP^-udixk^Dbe-=(zcC_sIfKVH
zVxypQ(3*(OD+(WTfpQ71<4Ail?6t``wN2U4ihD^6wz^yedqSNY*rU*tj2qR1Em}r9
z)d;z7Ol~IE0sgXK7i_c1Rp-Uh&XaiE2heAW&Xqbw>Z}1<HG71;8aAdSvAJ_i4V&1b
z1jlueqYJL&eQDaEeiq~^S>SA;qso>0nrwED$lR{YUT4gc_}P~EEbpB&<`(>fMw=&_
z76BXU+^|*HW0dQJzBa%Qn9i*)i60PqZ#Kcf<I(JOSNur3*{fkwoy#OoDSe=`!N*V}
z35){*(6wQ4xl*$U#|~_Jtyd8JKqftnxA0M;VJpE$9sXU&DMi#r>D+`|uB|VaTnF@}
zh7Dt&@$}khyPc%S`|tO5x&zqFUbEP%2H3SPW%mP(HiNMh9Mw-v=OR~X?PKgqP0q4N
zuIk&P?>D*bZIO++2g{ZJqD8@V{-8R?3Cvlq2b^k<O$a1wXfVO}ghOBia<vVToR{;c
z(XVaIGKy|4C-oJCqy^j1wo|$BIKK`5O6R6>_v8!pKIkL*zsL^>2?Y21{6XK}=Md=6
znkiL0sfzu?RoS3deLPDtBzJUQkhY^tSj|)+pjrNeb&PiX>Twdp&|RPURC`vy60uc0
z&)y}iJS+a?=>59yr<LdT*{*Ec<EST&?KRmSaW?*~Tetjo@&1m@eqgc*@4{o<h)n)h
zz3P?X<6rZd*U;mSJw~7W#3$t55+FSEQLYuhxVRWG7YBaf#TTS#FjEm(Mz+0sidfQ0
zW~|9Iwg;Wp9(#B%|2^h>?NQ6`ugVpFPd%0^KB=>T)L~z<$t$t1VW3WKS77h4MSE;N
zIH7a9M{K_W+gd+aU|;!tjnAPg`kG-sbuY7t?%DA<HNFc`t80e8_i~fDad(f!vx7ZG
zxz;P*Q-8kRo;vJ)TEuYo?L;T<QNy$1-`D#2!X{SwQoTa1_`(s6tL&2kmL7Yww>3X-
z<fB$>;0RmnTiyLk?>Fg7y&p*ZyR1Dc=`Zcup_`qAb=7B410cSu-b^!vWKnyVINdti
zNMIy>H*zIcySDa<3|<PE&~5~}@U^UBbEvjcc+CA>uWesm>*U*bc9pF5>KXuR*P3P<
z`Lyc_pLXr8TRYtld;j~JW7F%kdIj`(!j{t2H31qnmGh1G;cF!;$Y#8xpC6q^Zt#1+
zR(d%W$0my)91%9GH`S?Ox$@nd4kF*o23EQ2*RjzJb$(U51%F=>wl%p{I$4uq%@5G$
zXcI@=^;cr28`Y$^X+NgV5!<mGwH8S1OY+gElG*@!+_LTm*6i_SexNuf=(T<za{hPN
zsKe%d;2!L8Rp*_3Mr_=Zg`O;><+z1$DN&m|^y8XQRd{>R4Y<qw<Uv>4(YNp1>mdAl
z>7(*fA<Bd}p%5+chR=rX@*ZwV*c9rxR1^5$NjKvboYmm49*ncvicVY6^rD%|9LEt(
z|G6RyJo`zzQMkY}GAj_E$~bjM2{i$-Z=jCgtg%xsqho`88P{sSCMS9<K!uDJX%~)l
z!&X2K(YU~c^^Ly|K5oe{&)8f`;9yTlHu_|q#ne{>en?=GY~-#cz!A1d`;KEPjsIPq
zHFemE`W$YzK=p$Eod{XoNiu*7{HJB-h+M~f8e0Ozhsl)!Hq0NzCQ4n%-E2a5%Gm~H
z<!HC!WQtw0t~2_veP2#}IrbDbBbJ*&LJ2b3rjc&yxV@HUuLPY_TDC8-Ay7Ru?)m}t
zI>TNYwq}o#Z8?WcpM+ChkgH)cxoV)>uq&mV$t~6=NKvjGw(5P!`kLB^>%6v_0I`<B
z0{f^0X^I`#5-7m3>AbG{fqaD@D7xVku`TSe=qUgjhoqLm(AleG@>@XPbl&*j6<b0=
z0G;qr>-M;)r7(lz*64U<J?#^Hl=JFGABDcg_f#L1{G{Drat+v)_6k1`eU$YzU~?Z8
z?J?M^`PZe7QtBV61u|LjI`f}PKVUve_;-m~y#m>sP->r(e!zWHmJNpe?r^=Ybmy?=
zf3Z*c`!FA!al$7X*Dw5OhRw*S8Mc{GPaVWM5OxZ|Hc~1jYNuESr)hfRfq@=>SWl|3
z`3~8}dt1L^4V-j-VC~X3Q8ZN-^g5NfxV)4Nx3ri$AfNAko;+yez^`l!I6uT4EVGqA
zkr#TdS92@ZdYV^%>e@}0WAJ5Sm!aLB%}Bk@Ms8uf$ossC4ZpYS_`ZDv_BCvo8dvyL
zywPOXvTls>$4(?fY~Efq(B!og&~BXRFMH@A`S1Jw`uE9mn6ihz!vT8!_cwp@zbL=o
zG94_iFR;}muf9Fo-rM{f|M%2WPthO!qkoiM``Xvi8{hawdit4X=;I&znD*^MU;548
z{7pG2z>t6CSN|b><>5OS8x)59TAdTEV@s`&@exls)-qm57CN_Qt?8UPdz6zvC$O#Q
zJlcfooYpzi*X(hD&9ECb^t8S&<r96WlqLUrS;4l}mwe6=`qGg-UWNUtevbCJTwVL)
zD!H0Xq)w-Xt(R->2MoJqXwyCVsLzYe`}Wjo0-V(O4Sdvmg^%)nP81Ra0=5%<$^GjI
zA2povQP$r1s8e!{^$hIU)cMbAv7NAq*jI)yUf)#b<p$$Y)Va0uzb|%so!=uCBXbpj
zkix%j{>jVBy1deusr=o7AnZPOIBu(4w%xIu!@qYHfEn7+7waIqV#iIC`}T6LFT}jg
z+|Jj+-HfBbe9WuL^#%gi2?jgDddbJY4&U3HZ3X=$vcx%ighN04eO>_YPBY(^@2}U)
z!LIz=!#K2S&L(9=2$%RI$BdM&K(R@7=|-_B)*?LR{62!MBKz*}QLKuM99wmYfD6Ii
zu<h_J{5&4)6zd@E?K&&AS&!i;5BjLs`1mgPxlOKy?Q*wo*iyj8JMf8|Ydp$T<+zpa
z@%IVXI9M$_{l?K=RF1M97)P&vFc^P4j=u1Op4)ejBkPp!u>;k@h#;NGafHq<UFVwx
zHkPYltI)Y{-?PqB5^OSI5nl8rSFwqxb3XdcI^O`B$W`kdaN7<xkRVsVD)!p2HhbNx
zju$%DXPZrky>8WBMdzSinCmQhVp|&nN4o@jHfEo!W0mX9uSYq)t~xK?m!ytFg}r7t
zj|H~9^evTJl;g55ZMUudMuxrebL3ry1P*rS+^|i09Lo9<<5W3rME0h0!^T*o#(>%D
zevf{y_UbxE#>j<VYhU8un;)31Z)MHcWc%dbOD2oSRj}oST)B<$+cB`%mrCcOX17lY
zK5Gj(Yd;^mzGOaX7kw1lr}!w<d2yX{jet>gyq}tnnwp$hj{Izv{m7H=!vb35Sf+)K
zigMjq-wJ-99{DJezNT{BLFamsO8Qn-oonBk+((%|^?p7nZ3N@yWBlAER3kyI>Ia(6
z*<O#Zv0UK?)_l|k{?mNaU~+}O<lw(iC#5iM`BB!xe~jJ7rF?vJaOdM(+r+lh0#}Wp
z_tU3_;J^J#CNIhI9g?0*5qb_Qu-i@s@Mq@JAKcfh5G?36#w`M^JF6>UbQ`k-w#JQa
z1W5Khk5gmvKo|d;=O!H7HrkVH)HLibx$cQjeazZ-4BG@+9d73dZNMg2oni%nEpD$J
zwyYWK{JYt)*~S2lhYlKy6#5v@!w98HY1n736*4Oac1}tOBqt~~TEu?dX$_$f+4wUG
zaYt;dieU_=@qk6K>4{0rRyJ&U;zAa#JIHNp$8zQL=g_d_5maC^j#_UZSFXn~E7gYt
z;{!GcszI)vL2M`9Hdw?!u1XI>3!A9GF8zA6qu6?)QuHv*u5&ppV%SDIMn21bUeHwN
zid4r!0ki|<&)71E4I2e)Bd|$^afeOjO(Tvw&kdW(RXNw4x(4=W*kq39g^L@u5jwAs
zo3{g74)!WkOVsGK)Fvok)4paWQ5!Z;Pz7wP^Fb(orY1MgKsD_8Y!1FI<SKI$^sT7#
z)J}~p<yw(>y7U7Davc`-I-^!tmH@KRZDp%(5c|?j?N#^x8by`$CB;^bvDrxhmJ2qQ
z+#byjl+H)F&PlKp^8@Hh6@9JQW0C&k<B<D-hK*@>j{IlPIj`Bq&{uRW()_3SD5}9n
zjm=(#hkxM*w59<2D8a@x1k%z+ZQ!E}o9TQ8wgEO#V2`=?Q7QIw+bFQUq?^d|yqEj(
z$!zAnm1pIw^dzzoFbS@W1OSwth%@{3cs@USlC}X9RdRj!tps8~*|V`gAfJ3bU^_#-
zAF4(lLD+~Y*a&NVN9;MY%i3<#`bBC(+U}<TQp^IZ_j&N&5+{(&T`jxurOPDU<9F`m
zS*K=s7Ob&IOu6E@=^9);wi<$XN8gXw?ccR7f8Sw??N>#PWPYFX(X*6xXQt~uX$kb`
z*|wRd^N~?%18_Y6t_$$c%U&i~{&He0>Bi^9#ig7Gc>3wj(q|7F1Y9uq?%lh(UZ~g4
zzhlPwDz?R+(o#;;<nJ4Qom{WOaH{nxn^^t(6*@b@w({(I?OCb+H=du?+ONV!w2F<c
z`Ta|g+fCY!zIzR}wa?M_`@VL?^R8=4C;D+c(a*2KmR7J`<)boP^XajLf3LM)_xm23
zpLPm=lb@w@rR;j`#b>8e&pz?nzJ1ky#%EvQr>}a(@(V|Apr^^ZH8!6bY+t?i*uz4<
z`jYV`RiveZaYCluX@}y#Wp|}|d+}EwX)87E@{?!Q=+7%22(D0)<WZTV@;Or5u_Z0B
zr33?EqM*m=wOy~PJX!u$YuHU`?Vf=Fuvuy0JoCkmf7ZtJZP%nwHG4#GH(q^v&D?b~
z=kUiYCjncrd((0t5iEYK3o758L2yN}Ro@NL?^f_l0-MP>zDrgm=`upGSIANLUNbd0
z%1=>zOn*(z(HP_`Z9%8<Zq@kX$&cp~<XBeaidqWE<W^VYXmuUzy)$^qaqrwR46NOL
zn{n;f@Hgj+hs_n^P^aZd7vt4$9TL02*6Q{Qta!F!)#LS+ovd=ndQ6<E+q3B0uSqkd
zOXGL9okaV->72luuX@1!J-a5#5%#+1E7Ww}+beFCbF&|PSH<aifZXgl%GGKolxp1b
zFcJHGZuVOtE6bd6dkt8vMupug?zpzWy#3ZPv8rco#eUxE6}Vg%eXI3L*%6NRnhcxz
zNaX42b!|S%eHMI_)oJi&n_ggJR&Z0F9eDLkr-mJVq(+^GzSR7HVstqKzY}$yfmJf<
zQgXSL+WMaQq=JBI(@R!16PKI%PXrXmTvq5y!qMN3eW%_p<c8C9PLQL?-TXjyTW|g{
z<#v+AKIkcKC-VEQJ#=28(od6Wuv7Bq-Or2o_UeuLz}zEiY(fxG3rkW9RFej*ENCRb
zw`}djgK7K`PIdEP>|-QTwMuY}e^-$yC-zqgvO^Q7R}j!5E?ilWF<c}tJis4IKsBiy
zX*P33mUzRKBX-`r1vj{53}?)vw2*1TCYh@;KhZgoa)Bc-&2|*AA>fn|U=?h0@pm^l
zj*>x)U|BJW#wJ%O(4CZnI!ORajdjK;oG}J5E6M!`{MjuStQ#p3aHS?!4xo;XO~(=S
z^+n!Kv0<~K5cC3GU*=fHX(q{@2exF`GPTVN*$}A6xU$n9zz(?zcGLN!avc$vHo3B1
zXA9(M@-o`1+l&U$3+xeD;zBD^-5yCcg&H;;3v$!B+iSyS_Bzi2Td8gnL#iHR*F*{u
zTx7+YP3N%J3`!aa$|uEEjB*k6G{h$4-q|+*G{~Y3bDk|zQ^yD?lp3+khK)LV#i<*!
zN7$?M+YnUOsR(QWeaZTY+JyGCW{;}#Tw8E>5V;q{;&QDmJ3nbn0KtO3ruK=9d9#UP
zn-#!vkgMkX8#djblCi|(oGUWeqmR;!87(+Vt?$4On2)NR9}u~Yc3Mg0Izlee*P!!K
z%wDZfugO()uJ01;F<@syo2MCBfO_gix#zXsL5ez0I)Z9pUSO*#Xa1gKz5$zU05l(k
zIUW3G4sunU(n9BYvI=sN_O_wLFR?Lu4SvAo%Fn`Sky4Z&m;F*f--_9eZ3CZtlX662
znsF@WAV=9u%Y*kV!teQRS`&b&EOqHU<K65NgDSPQjh5K%fg1Q6A007Iq{T13@X?QD
zG1?lDWaGZ)eRj@jY~Jhw7r50QvuxDebOVm{&_3B_B__2yBv$1dIMfL=Xa^ndkgQ~D
zu*vL_zmMdih}{xT_`f}{_t;i>%n6iMrO}%1kN{+JE$3KAHu3@+k$+dP)sAmF$SrbK
zk0J9_H-SgFW(uC&?$TopM{*6=hyvfXVGA_@Om1iA=W?>(4}QZp(4YFw@1#HZ9p6EJ
z`cMC9dhKhUY-_W_|NZU1{kQ19_|N`x`nUhwpQAtbXa6ky-5>o?`neB$05weV5f`|<
z+Zr~}dBkQqM|+`09cI`q5irW#<SI$9`@P3B#Aa;cKiF%J&6ANj>{FC0u*v;`y;Z{&
z>~&!iXqQC3PUpG_+<5hO9k2d;jXgTH&K?QaX{9ekdpy;bj<7+lsq+I7+ipc}L&SDM
zu4a#m`Woy9pi}EhrL5Fau)Y*^-uVH;w&n-&O?_1COSX9qxvtrxVXJG{U_Y7|b-m7e
zxz17N)3PSOqV`AE*9=>YI`26DqmQzB1#H1N`u>!B<6dl{^ZjdbrM@qn@KLd!?~vTN
zhRt+-G%gu-Bt+5*wsEDON1fBrxTJH{l&G7Bw0Ofyi9IYRfN&e?rzI5=e9n$IKim2-
z2j~1x7O1kL!ONpqUNfM!BW^Mw(>Fl-jNjW)VdXvbBN?DM8I1?k6anr<=bHz|WnHx6
zNNY;Y)mY(>BZqayv5GPyz{lB69GDHqaRqC4tl1VjicPWW;(AyFG1`&WSr)$heF@;<
z+6LKb$8&R|yfA||x!bO}9M@f7Ye(4)o5+0(N3bb52dhq8Q{co_s+(~%dV`J*AsijH
z49kX1jZ+qV!_XE4lEKz&Vgy#n(t*yKTp`DWTnE9V3$bv_5wtubINOU27BPF&<w_br
z$)Ff0joQZLS{k+}*CAkYtR=|RbiTj_osUiDIoM;5O%{Q6ZP?6Si*eUO=U8}+ZUZeF
zDO=xJ^rePf<QVMHuxno#JGl-Exei@lvcf2)bL&fWE=|X<SDWw}wlV0Of?VhM*bhj*
z9h)CWNA{W*en9OJa>X%w)42rxbLdNR4RV~jzO=6Mg`CX~7&iA&OFuxhVIR<!w4dwu
zZE~$T&#>3({?zQX$+5$B10S`tSM!JKeqeUFjtCAF*MrGz(U<1A*#P=Z^q-|J`&Pti
z{d_?a(fj^R=S!c|{DA2^<v=TO7(~yu?HKv`xRh6q=gFk1riDH8B;ayCBO5zX{~%lN
zKK)c%u~XYS(ak#z1Tio2oeQH&(C;ZlAWyE6^UYiFc59an1*AVD-NmDluqkWpGx-Ep
zuCWoMo4^@+<&CPLV1rD@rG!mjY!>Ohn$8Cdn{7<7jik0wnt)9<2r+SEes{JR!CtK$
z*m6Qu1YqOWDk_7BEt6%QV%$ucq)>D6z^YD46|8LH3ii5?Yt?vw+GY+L;6}|@Y|{;L
zJ;J6NU4#j=6cBg0^Y0U|>8^;$T{i-3BPhFE<yrD<-S8$9L|1H`P4qe^m21Kd%tGg4
z6AfF%?^D3-*rgvs$%Ktl$W@Nk3bxdeLtu~9u)%MT%N6!$I(K`eX6wOT9b3ds4I7~^
zh%5~|zH9bMrWTVcX<*SdjXjwJeMQ@&O;pIyQgsZw>QwZwYOks5OU))kCp9nnir6Er
zGk$AD=Ve?=!5$OZYwJt8Mu>9l>^0Se&Z`U!!5%5<+_0&zY7TORJzBDd^d(A7=cM+W
zL~*)tRp9Ne^ihsIdtWl06CL{~*=#3rxkjBk-AwGq0Xr4w*nL!jkIF|n7yoD2%$}`Z
zCzWM_%~aS#3VxuZW&>1HOAJ8Lj{2x3x90zvk4i!37023X;Rkp@ez^Bk>G_L77kmAU
z)#WjtX|Z(+Fcj0FMB3paAuAb)s!|YHvXj}r>eLbqk`%w@G5(=j13mG`#-CxIHr^-M
zpgG;%XcG9tCvj!YjJX_zzWRj^c^{Rz9B;yG2cM6nw4_8(`@)##_E^IPoNnl8KefcX
z#%Lh@tTakVxb4<XElDur+HBdd)bMPZw|I~eFJ$`nam270b_91LHp5OS&|h}XHeb2G
zX4qG-sXqiZS!C3sc9$#v8|xCL`r+cce9!$}Pg6hq@WYa=|E=HptuDV+xrOm_A-5VR
zXAB$e!Jo6UGy25GKQ7Pz$VWbcb;cyM)Fjw;nAdYX0LJ!;SG+>%zrFT#uan;n7(eWO
z$5fvU8&OOI1(r3rUZL}aT!G(pZu7UGmuRm&wi4{M^!9oKY!)m%)xM_l+}rC3Y*u??
ztuMJ8BesYg*qquVrDJSsa_#zg%6ZifL~MOul654mSLF(OJk^)V32ayOHHz(}9N7eg
zce~O@-OwI;AC-G-oew(sZYy$4CU@u|cQ%nu`6!}wA9amAF0e)aY46fwKcVvlwiUT9
zu%+aFA<F$KozsdQj{HDqPxw9AxI?G=QtzYqb8)#xGId5<T41=>PkQ0bWsQH(cdFhY
z`2U#4lZ(eb^uRgYzI86&vjG0EaOmWK=Ca(Cv|Wp~$k5+kT<q{*Mq?SjA*<Dm#3tU&
zX#VlGo2DGxKf!0mc8?xhjg5%vnucG(v&E1;Z`dn&+O`>(87fXN=y&PLd;jCK2{P%`
zkhL0IxH%Sz9qgaDJ+9ltkxW0&*i7zAo9MrPjm}+?;#nvduiJ8O+x~1h((_NiCS1qV
z@Eu|MKSt*O*X%L1!KWAGnjHVh*kfI`|6{^-?>g5E-Un`<Q{xD(-MG|FI?dgnd^B#6
zQaC;L!i7_HwBLVW5zil)=wrgm@|%igaG#&urjI>6NfzjgjW{isiOkc~CXteHJ{ny^
zX&cL+XA*Au5j@bGaa*j;NXv4Sjkk;f*)<d@wGAc7%(tv>Y`k&1P)`^wM!+_NZ1}94
z)ib#1HOt7dv=!R`Y$aktyHU(=cB5_R^D~s&SLs3+^Ca)Gf^9I~{P`p{k$s0vH{`K7
zCbU<W;AYUi2sXVIuJ4G=vfl@#?3j?0;n-%&;*K;!O{W0kKpejoxZ41m@#b4*+8nSc
zx3`Wva%~yo;CB~nrFxAX<3t_@4I(ObT43Xz87YvY-}3LP6^K=ALL~)kL$F7ojvTVr
z6Hsi~PYE!k3vWCN^$9j_9h+cR``w#8x?GXyuxZ8UD_PAH3LD9i+Psb}YrEN_C$pG6
zX5G9MIa+;;oZTM1udUf*sg6zUkyLK9JQ2Z|tQdXUV8@30s6l9@84C4T0yf?dpW=cI
ze!}Ed%n#&N*MXlQa?WX`pLf{yy6ZATdxRgT#WK>9XTMLtcI2Z5)E97j)k5J>=Otjv
zz*d3H<raO^Ua<;gB3Wi+YJOk}I){z4`WO-00BktfGz1?Nu^C<1pfyi)p{sJ#+6h&Q
zNM}0X2k0cWlRnCHDks2}{xjOEB@MA3df`ry;^Lotex|2iWSPx+DuFq_lh(%&xn-kk
zn&6|fFta5ONL_}?a@CAHO>7{g3lnUE%oVsMfYx0a>DDIEt+Pb0d*Y0qdd(U9#za=M
zT;8?VMlc1P58lr3?4*dTsh@uSMe$924I!OB(0%>UxueDsETi&ehq%Lb96e?*hJXow
zY|eFE`x@7`wX3d*2TqULYv4$~;@PL#`*_G&JDtGh*tyTx92oMF{#=o86R=xyoBX?L
zzgM~4xpPMf{{FxI<af~X&p%H;`?K$rKFtC8*T4St^#1q%EPq=z18ySMh|T5NVYA;~
z+`TLP^#dRH0KM?S^YkD7hyM}1=RNP1Hk)7Ye@qj^n*o36Fa0HY`D2gK*Z+Y(AT*?M
zpCDJ?L=8GUX%i=~x!gWSxn5<D*R@}Z&FnF>n-9MUwi{tLd%Ol)uk%xKv)_AcF$8r#
z-*SDa_UPFEG57)ND>wF0*Z6^2mm8s<tB<-Dx%P6qsZGRq@<Og?|6F|gb$%cdEjI+O
zkm~~5HTJqVRd56BmIz9{k2+jGbC^3Yy|&am0Uk?&dnvJp<0xGhMy{S+VgHYo$8zd=
zO#naUz{enFoAkHiBWi@nkAd-IlJ99e=G!ynSZ}=08+pbBxazmY2ah8d;|9Ftd*vzT
zb~fh=zUJe%n+-WH^x+TO&RB#`Tew3<x!$9=BQJO+ITAF3f3tDbZvz+jR2sI%1s<_g
z!4|P@g<qQln=F_&fwMXTd$<-XxE8KZzUIaIjN(@#j^PNG=;%k_3a~XEbMWqG<q9t=
z*fwVym!rycR5|XN+`N`TR=NN0?EMMUZQE5I2F|tiKIi}MeXaWDJ#~N@B+(6F8X=IZ
z*np+VAdZ3HxGSnm>|h(rh(`^|ZAhpZ88I~mIKg&RCBbEqs=|qZxCyZ_<spQOB#h`?
zHb_E94>eD(@9zEov-es#vt4toz4kfhzfUA%aJAv-{`;)me0$Eh=3aZQxxVS;h@6^b
zf1rW7Vr99G!nZxs-?YSNH&xg;L#A+nU&!*M?b&uA*DN|#xhl30mO9^v&Q-31)GNS`
z0+#CrE+)om1v%!a)GLTA=VaJ}$#J_aa%OCsh0baJQss(rb~-;}te2+q(d0M|jE#8q
zCz0#k22_rl{juY~%b`4Xy)L)gY+QYfl#EBe#dg!MbNvjhoq*VKrSpNVYjSlu#}6sx
z)yMxZ7=(I9?7L|;F5A-Y#|j(z0lbIy`|Wv=YZh$OcRGH6b-tzZJhr+om3}^`ToL=s
zyySz(QSA@$?tG1k7#bfHYab=pvg_yGN1=RGj%=^4Mg`R?D1B)wI!C#2A<lvH&3=G&
zzH5AxV%tdFl2TuztyfUwmRw(A|H(Q}>Q7_sqm*}dCOJyY3c=3USm$b=RKr5Bs?LW>
z=Nr1mW#gl6UKV>)tn3F`-#?aq9|N85bv{VDQ3g=I_U|RI_mV9aow(m~k;bxgkOm3W
z<d)J{m6z{w0_67D^wD`Rl8q{kKI=16R3Ljj@;*~A6#Ggl-1QWg-5+-*oYgzz)6O6?
z51H$VM6CP3eB09{+bi>JGo{5yHGT#PoFZp77ub~*JJTe-J~%G$K-4D6Q@+_Mcl}OQ
zGjU)BYXkuG9S+{_gvWg2IIGDA2{wE-d?v$2%hQ1}8gcd8q`dn>sIl*{rOU~Je4}8a
zzOrSGb*vZQx$6;IHf({g(X%Kv34oso|2xS&^U4?O=X@{4#vJV=*MSGXbgz+vp)+OS
zG2iy+>lI+eEc#D;pZ9q6H;i4e5#0-vW#D-4DA<r=U2S3~{d!As1(TcBQkaSIhgbe#
zaJyg!D-w!2pa8hmbsDr@LE(SL<9C<h`;~WJf}>}`UB6S_eF@~^d&G2}89QzpEe>4C
zmF*elC<c=&bNr*;s9pith!(RJ>?+sG$!x@9+gM*J_85YzS76w8+?PfdL=IvTf{l*%
zIv;{z!}sDKa?Lc!F_W#*`yK0N?6|KDUgz7wU61E%+)BPI*rH(LRbuR0$q$5V*e3G>
z9CY4^TsKmqg8Dg#Jv*I~y-tE{DA<zP<EV0N>J_Lx_I%WiC%Q^s;t3qp`9wY{O8pF$
zE8C+?bctNI>Z5j2k3f9XWY`5;+n4s&I5WBK%qG}JNewE)#uKh)k2Cuy93Q0YeAK|%
z?_4{f##Z@(S^YqRExMX2TkcC#?}gf34GYA!DfVjE02&{)m*a)hsMrkTA2B$Oed7$r
zS*Y`w{pn^De>zKFqE(4p`-8?RgX8?iaZ{8U7W@6J)hpQ1HMXuMK;BO_(CScGu|W1L
zf#^vloylBt2`KPnWwQ4e&)Jol0F<bpD-xD(Pq^JToe1H-0W9rOez1v_mGgaI%WqlQ
z0`#REq}>PA8eoj7xp#K$(YH&0uDyO<!5$p8yz*Qjm*kh;`K#EW|7^LzmsZZ#yXhny
zXYw*77f*V@>Xv)=ZUcm_J=h`ANA~>*zcsKXz+HFU4KI1gOW@@%e<eKU-se)lUne9n
zDF^ESU~PcMAA1ax#<kVC50dF>t2LW2oj2`k*n1mZf6ZR~y^po8Vr%4<%K*HR`yx0f
z?T7l($@bW6xxr@FTEo`fH<X0DXC>DIexMDW`(qEv4NmN9$Na#7bHkB#yY~s$sv}w-
z)j9W&+>c?a?6JYt^#h&j=OaGqXkY1EKfux^dVT=hwL^3MK|c`6YJ)XwYxdfEFX^O(
z{#{|urN{6>U{0RCmEgZ(Yqrqcr5hyWa_^WyUb#X8EL82e+vYFd9;=sIDvB5EYAi;M
z23~>87i3|V3k10!&yIqf%kBE24Lk`F$~|Q`Xo~gE(KCEC+l8ZprJ;c+v|KB=V?)6P
z;#e}sGnR{GXyumOvzD9jF{#Fs7l7!#UMwIlR=s`@tmNx--#tgUm^g=Az3RbTN}d}Q
zW|;i}?s|G?jIcTo>38N}=;<_G`^HTEAuNxs?9sV{Q1qhrPb)8;>_OmuYO%PZv%?+q
zUZKb}>wQCch7gM#yHgiVN1b5vdwpKrsxzYg*dhhDv`PO~r=$ST_S^+Jj%T^axtfI?
zs=fdYaCXnx$j)7gTC?1{5sdi_;xmY#uMx@=1n+O0#-uMSe3V{3!@}RC?E1Mw)*hd&
zPlu}SlLdrgFRkr0P^x=Zwn5I2wV*!C-+OKIVpE^uFBzPJ4&rY@E`Fn2C@gej=U3SC
zK`ica<=0$%V0N9Zve^UgrO@CD&AoUKBfQ)B7_!@UGkXp)0LsdvoJ%p=i3@H<@fAt9
zzz5;_P7*XC{|=JL5kWFKr3OHj6&k5z6jMMeD^GbK4tT9WL7CjTl3->E5k5UrFc|NR
zy!yr)U14J$bJD$WR@2imZB{6mulQ{IZVEhhQtXlePv_&af^vg%y#k}667G8CzGT|B
zz_ctWiQJfGg6PRWgOoy}m9k}@CJC}fm8)j`@~E4iErRjtr&(9R0MVYzicRVjFb_Y7
z+zK|WSCBlmS$N86GA+}p2hB?7c9yGh*B5L-<eDf5r@Z=%O|c8MSc2+WBY^0elH>lC
zBEWerbt2RzN1-W9x?;n0E}5B?&L!|C_J|FmWEitOayw3<GqoRQ%#&PYk_dI4R8BDz
zdOW3OlX@@sd>TNtY<_@}0S~G4rKH^TAXsHZhRJoJ;|GzeVjE1Z!nqy*lsBL0^o0IS
zv&^AnMGZ26T544A`O10x+<VX9-sha{12)&;&bzL$ETYoqG4|~JfWsC-DYVNrBz2)g
z=RtMu`cjNigNIg!00q{uj~8sE@1UGG*`IY9Loj<qc?{;GX2TXi=<zBal~_-a$3h(J
z1>w#2a?NZ5xmls1y!s+n&LVg93NXuD>ubzX=Va7=uh?0~nn_%Au6<8@)U4R~9hJ1E
zN@QE3>#2{**>r9-t8y}ImCnWI@WfuAv8dU1aQz&lui){Ma;-Zb6^mT8o(A2^>J<db
zu-6HFUU{HCNT~dBE<VXtjX4U%#49kER<o=i8YDXsCkt}2Arjex4@T&UBze=706*}U
zQ76FcMJO9DB;*k#FP!*n*1v8X-zY&vVf(TP6xDT-#1kDaYSN+7;_ifdSu;E>c|+Ux
zZ9R^4%KqH%V=%eLU9T%#@O;Y3l-PmtZAY=Yo${E+!WACm-kLPy?>#rzrVih>uD;nh
zE^um>KBd{CyOnwcN`Y}Hg>pT1rJ_Qc-8G!m6D35PaiY}3?L_q%f)xR#^Y;^D6&JW*
z&rYtp74CYEJ*iFsEO`z4`y1Zy2Kdr1{XOts{n!5ueBc*;0lxb${bl%*-}a~W@0RD%
zN(8J&@W>+%!;k#PkH8Q8&=0{gPdx<}`w0PEdDP>s&rYu0dIjPy&@eq0IAYdg$sPr}
z%C)se()nKQUZ=i&>Tv$gEw+YZ-LT2MTkd+bN3z%by;E9p*PFefO?3Lwa12{3*AS|{
z;&rYxidv&WGp*4cE4ik!nk<Rj*7`Zg)p6H*xd!zEEB!opY+kO?SIiHjWi16=LD<u|
z^>b+l@dI;5=W9MHG=8AhmnvTU#t*2EN-effXwFcsu%>hI1BZN6&n7CJd+hq{;rqFa
z4^Q?{p>Y21dc6D2_aEv@J4vu;eY@9rTR$T^o%gVrAIO}bcFbN^<?8DdK&hpm?M$i3
z<6|06LOpgk6t`L1x)eZJ(*Ajw?EWD!`(ii2o!8Iy|6QZDHA<f~%Aa<Ln+5`&F$$oD
z=HUSK2klqw9SVwkgvv%aCqqpe!C7J1oJ#lH{4Cqoo{a|Cy><z3g&<sFG9b5e@z{9a
z-u-rx^9k6L)AS(rUc2bntW*Pgu|1bRl;9ZM%d^Es(O<VrCm+Jr%JCL;x@vEywezZ)
z3_=p@u=0!Lchnva*+k@zIBxgYvdA%-?JjkG%w9i(IzPcC)Y*R~<Z@*{QQ4z!PoSK>
z#X*aY1Ch&`eS%>79kAD8k865?4z|;Ee#`c_W)t!fy;CTFPJ1tv_I9Z&Zn!exiKlMx
zDvVerWc0;;J8#_maWG4JOqW7B!ffGd@Zh6UnY=6Rq5KB!2Q?LFe%F7Qjime(<a+u;
z(_Ut`gJH#AEJH)?2?1<!=hS;IuwS8_@15&|oLg<NDfTWlIad#*(^lkar**JZ_l^M7
zJY3`Qp~1G8vpa<SSzz<O>n;4Vmy7tDAJEG&Y^_fHF-^PSxuVT1bncpSPwuB)J74kH
zLi6tdY_v5x$JLs@{lLfIhyTvsf*a2~1Hbi~ABNYx{*Cb6fAv3wr=EBU&adA=?};o5
zIi~YNI)gR2xc0^Qr`lsW;-e1OgzD^=T$etoT+REas(;bM99SI!=v_aZ<_B&?=dC>+
z^---(;J6>a|8DZU5Pag%OL+K6TtQMM=Gi|d@aZSP-CO<w-}g13pM1NX#KQ~@I`0oS
z-wtqn8{w5N+`?<_KW9j0r&<0koWX8BV83753%vyE;IX~^<1=js9<z9k-_MR8lzJFw
z?1ljw9J}Fa*&t)}NhViHZLShP!fldbn@m-Apj{|pJnbU|b!Jx|FxT`CDb+<LTj~lc
z<f!$m<lYwa5$qee_c3g~U9l<q0v(?U?S`(<X|Z|i#8}|kb1od$7Fe$2%KtvK52*jC
zKmDiSiN_y@pZ@8emg2t=Uh#@o!293-KEiU>-FK6`D{O*Yv8i0MU<-n6lGSb+?9yym
z3dmuwlvn{~qQAgZ=KtM)``^NY4?YM#^xyo~@buG9Q5^u3+1ua#b~ryjr%8bAe&XW#
zK3+x7c1W%w_l3?I>?T(^zt#EB%2mGYROhWtT*V&oJgaA!9hZHo3trRY;}LuHIyda9
zbNN1Nu?<o)vWq?V+HuKr+SB>7#pe5(7Q!8FMXtDy?b4Uj@4yQ7ll_3|Jn3Y3;|H8g
zAoewToSj^=w6`|V+T*F%dOj-4wLP|jat*#FUujplsgKG~(-y5^JJlw7*zg`hYp)&b
zJ)O^o`uQ#Tes8a>A2?aAa&5Io-5z`5X^KB=w<GyqEoRIc51g(th8TN4(uZ^|e{+U;
zwx9^CoD_0@Nsn$B4sD@6Cakn8xH6{Ww$6<+_=j0uzlSGt6+1eooZp=5uU}!S4=Q8K
zP~UIm+1eXq_m|}v%k%If;oq^y!zr%Dw$zBp@dRv@9K#i!&C4UWFOKF*!xrr<#BfCJ
zS+dHT50C1=R?j&vvVRxYG?FCZsXD|OwiUVf!z(#<<d%EaH~Bei`b8@aqObGic1&l*
ze#^7*Ppxo+-Fk^laM=M_`cf!;sg(^J*LihsfQ8Pl+ShV>Z^H(yd9I(kX0HJjen4DG
z$40$9`s=gft!;)|vy(Fym;|#|=-j&kyN3PB_P9Ks-K5ibxJ8{G@B=}hw(YAn(e1nK
zQ^CRZ;Ei2$fDQaQ<Qsa^zrDZV#d`I1L6b09vZ6IBsT2~Y{ZumTZD2KPW<=rBros3i
zeA<#dImD9X&DopE4bGD|WuTRbGa6Mx8NyI=foGZILEEb95pae$-D}XyeWrb?u}7is
zz>Ht8c8}e#rGky<OAK2u9!@%52Z6wu%ZyEI58LtFT(CjPRXYuE6KCS9923)X8#Wuj
z4vtqp$})es{zz%L%nwhdA7wx+S=S>?zOh^=ASe@utYfe&y2;B;<W8$E1`eKC=Dx#5
z?U;=`@uZTMI|qSeVvq`r^Sz_{Fd%G@iEF&F3B^W!E-pU0JvO}1<ZQxp8XO;dqw}QL
zKx;3w*lL~YWUtB<Cxk|FBvJ0|Y$DZJM{18WDewD|P|kGiQJ-b*V<Wl6j?R<I@Pon!
z&jp6Tf;#u!Gr~tdI>Y;Z_TBL06Hma0KlpFpnWvwCd+*%9<&6!TpPdnX(#6e7t4FZ#
z1F84{?JIO|l$+RNZgdXzp{stO);Za0<kdqnm$0b(0G>Cv)k6y(rS>@2exT~-XwMV!
z=z}~<==*_=k79cbi)=%Wjr-Dy|0FK6#t)<<ftT73gatNNU!#$0a`s9e!rn)ro=mQM
z?=1ILdnD|mu6Te7Tdi~TQBqj<GD$)fV$T);Qy;~0M9NMKP%+gS<l=*n7Kr4!Z&!av
zt0-exWxyZZ<9?#E^eqfB@@kJVS-|!UvigSy8~Se014wQG<hKl|vqVsbBRYAa8HLA3
zBfon$KW++c9LK?#V6+(;NX5+p+FEl#1nYxp#aAuceHOPKk2ZzDc|1~s>!WX%;E$gu
z@Bu`>!enl+dF*R^+gHK{P+<$&uGo-%HH50qYz3RP4<Qt6k(WdzeecV)m5T67zW9sa
z(MKPJpZS@0^YJ57Y5m;K{T$rA5B`7Imw!3;xdt2AH$cIL!FJ)W=5}3~!*w{auuPz=
zKKQ{8!UGRHus@e6o^z7gCwt%UoafvNT(_fS)!x`o1hCH^h#FV#Z*om#Qo_r<l3R>R
zosUeJR_PqT#+`$ct4=)WM3%SLbjTi4pU1ql$KeY07+tW^sEwUXRM=JL((bXX)u<R9
zHjllsM}S(c-iJGE?c`7oo3CeJwWgA;y1bfPeP2^7h7I2V$85r3ADvvSU$6NAXA`Gj
z3mu)Cz4m;RVD~y79kzo$s>OB%x%$2WiVd8P>dCd^qvDE>N{#QIb6)kIi@qiw52Lq7
zC%1)<YWmU|w$a&RWv?pNTk!+)Y~vx{uH%d-;}2hdgZ&@>ewA(P|6HO-^d6Qt4h{bH
zH$(2^t(zsb%>NK<3B*Qb4BG+-mom$-C7wp+9Y?`jKi|@z_U6SU9g7)6Sn>VFet)}n
z<Y#9aI``(y3pn4;ejv~D#r^{Vm$IDi+mP2BXNhrk1lxykLwxC%`{S>lpV7<e#!X({
zaZdc$oBgpDG(f|4d^&u2puwM=Ge`PO`Z$Sj4YBNx!*+c6;64r<@m`4ae1H7qe$b5A
zkUMiL%jIrfUee#!u5I@-)H~v&J{t$Yz9YQX&lnrtYqx*?Ysf3Um)*ssV%<{vGdC`2
zaC^SLHx4jSE*N(`-(yG9y>as<VLK=OYoL2Gwll(l*pVBPYah&n^=$t)J}ctD`<-oA
zuJ~bw&xSJJjvM;>a(_Nz8{$aEBR}>v#I}FlXKr4Q9bkJ11Kqol>mD204`N5#Ks}&w
zqt5XI5}yV45j#FJ>3omX<hsB2b~6xG<PAk0eX@!DKK^~NKOWB=QRln89CwUm+@8^M
zPL<AiIo!4Vxj3xEYhwpOY-q5E4Lj4dvoo@OT%m&D#cTU#!Sl2h0@>>x+cP3pJb$;h
zSJX4gaeJ=zcuAb4;})?^WRG}nlr!2o_LpnOiM~GupPS{lCFk(Wejk;2w%<qjaRu-q
zSCl(qyiV9M-3!md>*ICMW^lQ+)|9xh$Ak10*RGwD%usflP2AhTmavf=_c)Ma{pRIF
z{IFybXIrulEM9m`?eQjKJy*W=3tkR~_r{O4XKpaIYYp~0_xC1jXafV=D;C?sd!rw?
zruMqO-)4VZe0H`+mLvKFlIu;@`DV*HzeJtO{*8UV#-e(x^U-Qbpw93k80Drq57d_!
zI~6$J|9gX0CGoSM?^XMxexKM!p`6dj4{%>WnNUz;uTMN5d2BaWA7k2)oDu8x+L_3G
z+P9CitQIp|E_ZX~2PTv2K=+2s_NP87=c04e3qAy%kKF2b@1g6XI(`7#v9Im_K36|L
zK5BG6YT93WTd>WE{4HX`=bF`Cw^95+u6z`3h%J-7E`1dDCB{a+e~9FlcI2a2$E5R#
z`#IVG`=}lH|8w$LTk%oq2S)Qj<UghE1KxDwX5Ul$UfOTl&fo^+jqNdL)<e`e4*Te@
zK3;FrO$Q(;<r3tu!AqoQ8*xknkRQU}is#G5fE)2)N8xQwGJutWx)=yTzHQPOa!h0U
z#O>%S=A9c@5&t_=2yLi<sT7UNtW&g4T5c)#rhwp%2iqH>6{)e|56mqe1RJ;GwYHl`
z!R`4{291PG3r0o@s!`F<$iZ~P4#MwFfz*k4#CaL5D*`%lU<f(PgOeM|F&nmQ*oFqX
zVWVe5xkABCHF_kte#y^*fz_R08>mq6z8&ieOhSP$$j9I;g<)}0Lb&6pD06mWJ}t5=
z*heb_>p9Ys!{+2VFlRs6#HHHAUS}BJqX2@`pqiv;sL6ea4L6c&Y_MTKaEJXo3H1?3
zjfukFUTlI3mMV6%sade8&XdEAdcxwRM5ANaGV|bXBr~<KS1xE89JaZ^CN&|{9)+Ks
zv9V1sHYsH6<Tg2M9JtA(muT(E?>;h3(;l1Z99p@0dmT!a7wY(I|Bn0kK49~Q|Ii=Z
zUw4F${N{&<mmYoS2Y=&V!@vFYUkmrY{FU&g-}9Al-~F$EuX*d+>78{cwGc+pdBGN}
zA9G>tLF{#Q*wkL7uZdjAMgYkE_XkKn&t{K<@Hj1XKA9iz{oH)iid?C0PV5JQ*ZDLT
zKd|Eu*GlKv$#o}n8^jM(J}RY!A87lMx5ugHqjqzp^U1JDt%OPaK(SY{M~Icq@fYH`
zk3u&Dx$5Uh>@h5SR3uua)WufpaTaVqAK@4n+;P1OtbKsBkf@eSCclqhsqi*vU6Ck(
z{~|}+r}qvO|HTh<`A)@}Qe^v62>|TDUF^pjdxP4KH~3w_fk_<?(3_3)rIW(*tXa66
z9HSrYRwO)^0?$FNSFd9VpB+0i8)dd05sHrG*0LV`q-1+-3YviED(LFjCXXa%Bgyr@
zXD9&~)it<lfn2+XO|N0?F)rGpzxEn7Y0sfvd20I-c(U_yVMU;$Q(7j&$riobBp8K7
zevxXY%DyE(J6aGL?-^Tc{@Fq>Y9#*Fx=Gplk3IG{@%Q8H(8u1md4taXt&e^b9)9Q{
zSy9gVz%kB;KJ;NaPcwc=Kl@|uz2~0&x6(Q5xS4#*0Ee*wRC3cvh3xD{+mqAbLgzX6
z!*F_T#~xd3u-2|RZLl4(M~~gNwYGG~9=*M_TMv6>j}5kkJwh$_gV+wp?O1zH=jjNx
z)+Ty=u;+tLv58|kU-eNQ8=qY4(f<xhodYcWz-L0P9vd_mD!D@AKd<1Ug1a~Qq@0&>
zcNp8g>5r*&e#8%4#eXWcLvmGYYkolQ(PE<%5&6azt013PCJNxnV~A=3pwqYA@0x8<
zW-dS<R%SqgIQQ((_-fVkkytqwS=s^OtmR<>|3FV%vUxInTx#Y~b~Cy3-buQgLL`v=
zOs`~Wfa2kHypB>@AU`K(*#)q|$5H4xQZhl))dVXmim~HUD^?XGX7kXCbmo12sWbKf
zKHE%WC4)zzw4mb)_9%+y7f7HsO01=G%QBNB)C<wg%HgJg1w3DaAo^_94xyH#@)l#e
zu8k$V>a*nXEWuH#0COsPY}v3CIi`+W0~9_k)_Ia3U97Nq?9s4sc8{l}QX5pcM)s1T
z{+hQFi*uFE<T8msov6%UI=PNS-NaY|*{fVH)ysQ8?3Lu6)j5dV<oHtgyUdm*lPf#e
zsB($9U^Cj1XpSdIMj_w3V8`RrT;v!#SlOOSUt%2x(|O@Y*7o916J--RY+1U4V$YhD
zr#c7Wpe@)LE8FW5Ta$_4uxX~8$|{RqRp)eSY^cE?*g%gQI<VZBKN=SIG9Tsk`6XTR
z%Ca9Q*}No&IT!ns4#C(<KL_bckn0zY`Y0Qe%CY97)Lw&Pb2brFZpi{+3`l~Z-Ufo#
zx!OSOqpZKUXJhR8Y{f_Ei!(!6g6RD~XzY()7sW@Z&O>VS0Ht3if4=G*f{u>(Sun8G
zyd3?Th-UVoyzJ|@RQ=u}F6RKSeAiy_?fbiIQ@!#)FxlVSNq{DvNmm%eBuXb<CacRu
ziNjO4<wN8^4BH_G2B`o$a<p#)1%+Uif~{D191D?N^7RKT?3lQ~D`tn1wNkP9OxL3R
zj}roTJO-Fj<e(5?8_7>#05nIu{zySP%0|YlZYJkuJH+4_2FkH8?#$0Zc8*0Ual$DK
z^ufFnZ2YV!j2V~<d?XoB!A!#j!k3L1y)q$nk?4IthJi9bDCkN2@FNAjh-aLVGWO5n
z<Vtc$oJ>Hp;QRYQk|n?xARPvpWS{4v2a@al+ME5c7{I!qBB_b6p}#^ofndizKBXPW
zcMx6@dM;ocO;DDoqt54ufn~WD6%qw1#_6%CT(KRKB9I?GA_W9j#%1h*b&kPSE8ZP6
zOT5NLc1YNT@(?)l2W?@OBxt$6ULu_*T2#q8pDEFSt}T9z#wh#aFxZ@>*eAlKjH|?)
z=1~d`Pdnig6`N3dHJxX*S1x>?CLRCCgw+KHDKX0kX_zt<S!KB<df(`BW*LJMHYj~z
z|15D6NN&UaK0DR97DFa%+zzwaCs2QAv5{QF=i>8FQQw@UHUhub5yPG5dpS%O@Gsx@
zo`rvS_~D1)r{DEc@RFC_4|m^lH(bBtIz0E@2oF8JpTK?eCRPMColhQHl70?cv=?b0
zba_5~Z_Hd&dW$;8V)GZ$?_rSliPXo4Tuhd99wL-a1?lH|9Zr+)r>F<ES1=z1G^roA
zwY>(_`NV~qF)$s)53tUQ9{}|mBv;AQ)RiVO1{ubZm1jO`uXDm4gRNpP?88Vt0d<b<
zD^N!KY<;O<D{>7YSF%qj-feve<%<3`^H_{@z7x*=QD_MO{pa2$wmg2>UGT&SkBK>R
zKLX2@CS}kbv9Az7wnv@lL!UCsn3(0d*RfFh@$f!Te?<RAT)-gM2c8hv&1$cseOzOI
z)d~Ge>MQbHf_`XHtoyzYxS#7%|2dTGaaMz@63aod?@Fy1{U&33lzllq>Ni#9dI7Ye
z0p#0fF;>9q$18up|8Cma_=5&KX(9-~vTWPr4N5x9nfT&Se7&SY{C(3&?jYV~%?1^U
zm8u=bB>M@>LF~*{zXZ<8C2nt;=pVta{?dfVN$gS+Puk4?OR0U*O+1ljqb%Ac<JYhw
zCqHJQBDS2Xx)^xhonQ-cyir&L;T@-m*P&o<<tq2y?$7=F*S{V<{osQ{v4ax<lTh>E
z`wS=HFd+`@7nAdHgUztVQf~nFKlR|J;ZvV_5PtF}{|WrFpZv-FJK;`})35#7ufeB2
z`3akBm_?2(=V2fGzv%*t!QvFJ{=Cnl)d=<-Aswns=<(RJy_Fj!NI1FqcI05+s?Kxi
z?}O7hVQqCDN|Nj$ogcJUo%Ho`ZL#ADiw<_OSDENHS`#SWfrJh1)g|!iy^r-J!oJ%r
zvAMpaa*Z8(C40n#VAq#CHf^VVzUBuG$yE~0#wJ7EuxZwJN3OH@0qaYRA0V9{@B@|@
zeZUV~)kn28Q8vyVXJ?P*qxNz$olBg8`~be^p(JfzDLJm=qvoEEBD&mldmPjUHQ3EZ
zHGN6P`;&}OFwq)LwAZ-e2XfC3pzmLiYtLSFWx1y{^Y0~(Z6|WwtRx+3JpgUza0Yuk
z3&ra9HQd@Hz@i2KUnEK3jt5b={01F;T?3#zEE^5aM(`j9N>L?S_Mic&(vHVt7Af6R
z3zvw2`+W);Bp!s*z|`%l;6Vnmq1lJt@lv!aDo3DjGeuoKBC8ZCEc!8W0Gr36`x?YJ
zhIP@dv+RbAKMK3pPT0rmnH*>dbu1s-$K*ILPk&mGBYjLnE)<8+UBfO0u1kKh7HaEZ
zRV+lM5S`qgr5p`gBUjBFK&N*M+Y!00$+5S8CHrk`An1~!g<Ma-`mE)+hAj!UC~}?2
zA@y`lf#IuQZT4>!D^`)y!h?iW+kL;kRcvCfx9+3FKBX^}zE!Z1vnQPg_5(+-(#NmE
zwkF4`+Qh2d6|4IC6Z_6FUw^DG#gly040R2FtJSKRjpjinxb`~2RS{1<bCZHDOyjE`
z?zeXhfHw1pigji#m<SXII)jHE)0_(65si*tB#=^VmSO_sz+5J2=p*mI`8qFbX&1Tt
z6BgHZ|2k|TH`i#|3pU`fLHF7PTiYHIEGWa4&%SK0p6w{MT5k2Ttz+XK59ozr>4)^z
zX(Q~Jf@!VJWS+Q-eerBZ?+wtC`$=*;)^68^`XFjYyaJ-VcW89|J86%r*!V!5!0p@P
z)pd?R;U}JY8vgM={-5DfpZF;JjsN^FRsk5@@VB$G^Zf+CJ#hW{9dPa1b@+yF{KN2<
z|LR|a2Oqp4xeBM*#6oT>*w*|&^=us<(!F=vS5EZ<^!pX<(VyRGCsw_VJ=td13a;wj
zjsIM;iGy;ZLIbheUY@P*2PmVf@dIA2IMM#hWgtqRPds)Bk35AFf1FGpk@#ZLy2<-n
z+ZP*sW2oQ+CwLujJ0>t(-%m8(aczK?J%0<Yx$hjbZe7U?F7l&)+@!Z}4^VD^|M%z<
z&ycLQ@=d3SWC3pP@dIv}XvLuiP6)VuZMzSG3^Hlg;ZBxVLyTn-xYyp}tj4<;4V3Kr
z^EsKSru=~H>OLH4*QCiPK_P8#u~DGA!A9+Knfyo$zQ!)WV1IAJF5d~!f3qCICf7Ee
za>1s7wx4<TyW!KH{xp2&cYY^4_Sj=2w->(fh42GE@HgPzd+&v}z3puzN7NMsDLsdJ
zO2&ze`yc)2N8zI%`xt!u6Q6(wKK20o(l7oZ{PHjV5^T@TNY5X`%>RcUviOnO1}1ah
zHF4GVEP+GZ?%Yot+<o_5@E88VUmz@h@DKh$Vg$g|!qDhcb*|JZrt?q|$>v#CA33>(
z!Vh27D_FA$`9@x|M_m!rwMPJZw#pvm-kMZ!%h;Osg*{4Nx)pmgY)!jOl!Rc%)8x6w
zmTM}|MPCxR9`XZ&1aqNncO2_$*wiMhJvbV?6a9d%&8Y21eUy_cv^J4B@T@-SSU-O@
z*be&FL-wlJTDje-y~a|n;8dNredQE;Rl1#?AGk_CKj_;dPXb-_z2vEYbX4%z6HijY
zmQILpKgAY4;;Q3^l@$Ob<Cz!~Gmmhp8UUeW{_9}M-#f?;y`?SMPQxL+X)M{EcCp}=
zuLPapkU?tDfK0aIvww)rz8x<D^XGyZ7e{+&z-CyY&pbVhZE>%a{e0wjo!!<ikfap}
zTRAywxwkKw)Ri2<k$X4T$gW{sjv18lp<LTzDOh=+Uv$jaYMp~~5=E}r-8*-%uG>VR
zqp0Mn9|$J52HT1~w(W2L+bR3&a*zGz&UtB{E7)?=KTnb4)v<xQRu(yiTIT=<<Qj|3
zv^sa#)0K4IK1=4ng7hVBPvzRDV(ZB@^mTl?j}rTIU);$*cMqHTs7|}C1nBlHcy>N&
z)ka#MZ~$9g!&dpz7E9mvpXQ@9xKQ3f7Vqh7dX#e+%k}`xyYlKU-rt>@E=*(_Eb1Yr
z&Kb3lCy7z>G0Ol}GAcPB7R3(>-?qFDY}FC{Aa;cF`<Ts{mAk(9!I(h;Dv~XahpU~5
z&mX0~O}QSJkzHn>%xXN6y4(UAkB6vzR%|?}j#s15PGC;z<gihD#&*V*#5Y|98+9>|
zS_;|8P43Nd4NRdh*K$kZqG<(TO4ethp6{>`mv^q^3Lx$K^JuC!=LNPwdf3#%CUVIl
zHy&3;(`gWFY7>#cl~tI5WyN|a*i>!<xQ|6}1vmv8ukB)N`rMddJv+J42bb7x6rEFc
zeS7aNHvO1{O6OUw?X$lso#&!+vKiOz?J<izF0g^z8*evjCUrEq@UsnOk3s#k+C-KW
zs8Bw_m)J7Vu4LEVevp0iV;_Zw9{dEf+aQy>`23i?`RNC5f-V{VJr8^g&iAKpwgcR}
zv15PXo{i<^{6KW}49;F5FZ=)if8?OvtG*;F5kdMI$_<kha%+#!_fa92mAUq@XxM6d
zCm%JZsxOf}uJ|Z=7TF&qUwo?U5vmn>3m;YWbM;XjdkowcwXZNY{?bQL{fyQg!TYEh
zTgu)?mHp6>i~3Ks*Mi-zCggD;71j;T{{rg;w6E>&GJ#@q<CU!T$=|cYYaGf)ch-Iz
zv@c{@Y0ysW;61cH4Cv3vhBE-r&@BYeoQ^VPz(<j>Xi8@0w(|0J-u#$K`zQHyTs;%n
zf3%$cv`WLhf4aQTF5p7%C;z?*q0Rz_`dwRbRttB%Uu|r`A;D%V(WKoHNm7Sn-C;e7
z%>|;W_GV>3g*`g%`ou+RHK6FRrBrkNXX$gJ3!GAMV0?C5J(k!P;)WTrzx0d0055y_
z%i-Vpx87dKy;n;?`TF1Uo__&<`)~bC_|$_B!iPTeA(L6I4S};{vlI*7pO5$R8?P!D
z;PYPnYIw;@Ukd;3ANodk-t(Tjni1^fnh&)rcGS6KCs#VB6@RIcd(S40*<(IpkGF~~
zD>e!0RyN`6)!XBtzI0`5y}pF^ZdL{?`r5I+r0pJ?j5EDly_`+%KGQmMYAH0?^$YAG
z=VN|g?qDCCA4s<%SGCuUAE<oPF?&3MZF)BLdJJ2yz2l>FlEUaQy}hpZ{)ODsCJxAz
z>0F0ZdsTZ*4fZwPUvd67*x-uqCB?REFR>D1l6V$Fhv;|MPh|Hu)I3izsPY|1mn89+
zU6z|T;h^An$r2Cfrc{=M<3nD^vQy@v47|*LzmL4nxQ{CYZ~)01namrF-5Ytzal4ck
zg3k2bq$Nm!dCvieBb#|s*<oMG5+yu;l6_pYK+Dnhqh#b8$809NA9i&7P5C=7W!d!h
zjCs$IBbz#q@Xg*JY}v3~$UbAshILC^_?cHf1YmB_tk?pbKc}*f9Gr?(mvG~fpiAS*
z-D4rFymX6}?F&}CHpx-2GWH;H%(N`X%Mq~=cG<^v#ClWYi09+WACC`#+YQ?=&~g{t
zr=>H4EG@?6ezfdtAUz;gKFL+Ena-6@{_?WuJOFdJ@3EW-wwr{F<(hzb&@m`TI?pw>
zO6S{xmE<}W`y{y{C%a)S_DgaVY>ag_d%fv&u5w0fquS%8%5_712ai{|);ixhtYA8y
zM6M)f#5xz9?+DvW*l6jz*Z|7e>s+zpKG}p|yJ&RISlK3$*e7BkY?WNcf_;e229%GM
zvF%jnVz0Z2d8Jk7B-hQj=u3Fd3*ilBKfo)6Xc@m0c0xJkSma9f8`uvhR=n;;>Ppzs
z#0~SsBG$pl6=?;Ey|R5GHk2!3nVgSOIhv2!sgK$eY)<DF&PU-hU3ed*ay6aL)^|2i
zuj6tq+|AVQ$qy(U!bHpGiI<n;DE<CyboR<RN8K^j;-eUAwtnvYKoYsKJr*BD{Ku}J
zQ&BGTmx<--b<WHCSgz<>xi7JgQhz#<eM04<g7^W-9Cv;oulT59uPj&fpZLt1O&MU=
zdnu*W_Y&TFC%&J8Pp+M^&~&+7_1>hv;P&1mJJV$&$agN$F5t$?O*7TXAw6K7h?xgR
z6bPHRXyf^rEYrQ@4?yO^&&+#H{d%C_%e2=y5A-D1u3X~VfwDL7d<>ipvH}R(kw1G&
z9PPp@9htj%7T=E8@ESyOGN&3F^_`Jz=0a(E7~3r4pzU^~z|SOgdPXTKI*YyG`HBst
zLKN>a^KXxWZQf&}WxGW8!7JAA805<y1Us&_;=*WB69DBZ?^MKwB;lKpgT}Kgh24@|
z5gYqc&3vH`^MTuqOB{VY73iI*o#eKW<@?B0jzL?M8)9?xGE*0u^gY3b*DmdRZ(>K<
zW8(=Uwj<U#%Z>Igb?Iy{xuQQYZ1UbRxe4|f8<@`VLw8G5PLbs@r5d~FoU*0VCWeBI
zbZ&B;=--X3yi%QS&Lm*qv87_KNSnae_;|Gmtb?@`IwYcK5p0Sb@39eIk7EU-8A5vu
zf}M0uwQ!0(ZiM@uvEjH%`<nPu!A5dLoo|cWf?&_CFLAwt{r(;wKF4O<6pygK?i=3t
z1@P{F@jm#^{`&vTKCE;@-2dc%`f+&eYhDXK_ygYucieT2GezY%wny~?+?Vtt9LMcj
z&wU@HuZdhS6BU=Oqs%7h=cD!W?Bu$`4#4lw${q)jGufl~s3<xI?Ms1m&Kcbt<y9Rb
zwxB+$!A3r6!@T<w)iV%#oSELp<cebt(K*@#Vc+*h);afuG}S&Tx7ha2N`4?0ABE><
z@dFw>!9L1<AkedC@lk|bR`|}QbNN1^dxwSp90Yq3xd$)Tt@@~)VGCl9+?SZHYp3_#
za&b_iUfTbFb$}o-k3Z65ZK&qJOmtsZJ8Ua-Tu1>&a-(tnj<Ml43f2%vJE9)LEPT8M
zw&OL=WI6vdas4f}37W<L&OqiM(Qd~<QTis&zId=ui|vFWEAj`uZ|8miwmRUm;|JY%
zM5VC?-s;2<oov(JRGzxgbXhK$?rmFu5<K$f>ZBAjK|ME}V+jEMe8oY!1)i8o9c<c8
z6Hd9MA+52c1{<|&5I1{zsUkHWr?K;0AU(P^#pdN295(-~dMy6;oaa0T?!D(;nv7A|
zqOW@Vi6`Lcr=PCu++)Kr#uJY}4!{2EzYahD^FI&&@E`so_?2JzWqA6TXV}+aU9bIr
z1Jx$m(kg&^?!6aY@WL0u3tsR7c)|0Z51;#ap9inmza!rCrC$nfe)CuD|9dlh#aDbK
zyyG43gm=F4o$!{g`YQO+H@%4`nuUUARp)|__7BKCJ00c~xkYX~Y>!^9{@n*F_SmzD
zM&~ps;;^;$XxLI&c~PC;*rVz^H#TE^sq<U``t}GSSL;iS+`PSdY}sM+a#@qRVFOrT
zTk``68oBGW6*~0$lE<zS)rYX<roB8`josU0i>+&q9Y3&!-R|9DYy7|ho5N1nvP({Y
z6?=5p*8Hc(o?C2if{zNJ!sgHS_GrmINBUZJva0M6mi;)mXX{~$J#6mYC;I`tcE?90
znSh}rf*=VFki7`6ymgBJ7bg&C@RI@;9U#6*CoJ9k!vuX8a2Y9bO*OFkT)ip(k1d}}
z5;+J#r9+1mj_UdXDm>=iF4?1mExY!>=#pho1t-8D$)=i>t1~jv8VlVK9%ES>6}FPC
zA5?C>GZFSO$>JUjbkLI|n@2g<b&V_S<7AR@frHB`u`F55q?2VMndKO*19|MZ2(rbd
zZdGd~gn~_<O%<nDIdcq5?&Yyv)^_k%>&{@E&j}`EaL?+oF~vlYQ_(rtD<PTVAf4wd
z`G0CNu47B;Wc8e0E{%>^?%CvQeIt0e75mOr7Aj*4t=wf$sMshOD`?S|?3@r(4$gEQ
zU5yIR=MEM2;0?~*o8>Orl=>OgcO>%-nrGv`fl``EJJUO~4pWyoLuv-hP_O>r!Bjck
z*W2**HH;@;`U<#y?l<*2!LWh62!q)pJ8;(zrFKUK&6JbgK<z<ns?n*FOR4Kn_oe!!
zYN9YXvR>u6RSr;=rK(QlYT#=x@TJ}0+sQew({g>K_$b{6So(pWugI*|7klEnH#WiT
zQ3Pc=%<cshT}^;o{3*z)1=V@izh>|IHE+4}^H9WE`+k*80L%Q>CvIQDy6Jl>xZm3M
z7X9WAfaM40?Y33^$bQW-hUAPQO;J}Hwv0;<lcgWP1`+DBakxf{ImzeqM2u!Dk7OHc
zq-4cG?<xIX?p3`V#1|pwf3axB!tIg?odf5YN*{vAd8adbhyA^|HV6G5wi72h_a%Ll
zL9k_eS7yV8o7$zm&%^}-K#e`9zsi#JO`O(}DXGsA_*oEJl;iRGvw)#`D*%+~6HU~T
zRhxrglMF!M<Hebk{vhwZ=yrp=l>Dkt!Uo!X<)ww(;2`yO0*}KePzKzem@JC11oI_a
z2f}nL$FnSCP#tQUQJct$Pwu}MLnwAJKz*}~0D@ig7Winoca{$&u}8{I7VARnge@|6
zJKJBj<EaLPVbd{b7Fr~E*QtovlnEPA^Qg`tRoHl6&*#2Ee>!`e%pUn(Wc!-Y9<(ot
z9<)EuASjz(MP<c25O&SO4Dw)!e0ZYF>GtF4-g}<|U-Cs?0FONU2+MZFBJP|Bfj;BG
zPkoa9`^^u3kOHqe<J#rSZ0<{%^_|6!h}<P3+}mr>aV7y~P`NsL5Sxk84{@9|n!RKj
zC9=2CzNGI%zBgsqV}Ku6r#48SckM{W&(QQGwHwlT>G!&#M|Ez)bNAhp6r1Rgu*sNH
z{Q%uNMt3j9#^VNFDTQFj2UK#Ej+*#6dF2(@_nz65>RkFE^;3|3Dl#*Fs@PSo(vO4m
zNPM1AeVW*_j!C9m-t$qfFYf~Ten1-#>Pg<mXDdMt8lR8l+FHYcsQ_{rbE<!qF=h$S
zuzi49Q?AG0%}~=mSFKHdXg5)&_H#YrHXlB?Z^q&T`CU{fEKo?w`9B`wtj^2}O_R2c
z?uFWSyvm3;uch77j$mTR7)z$Ar-_)8<1uH5Mn$8%&ooIUyw6Dju*zlcIjfa^gI1(8
z*rLN$C0lAe0+E-`0#BOMqWtc8nW;+L^@5Ei1Zk2>unRWg3I`q|fMm9AHrssw{`29k
zyY7MW^DQSz?I+~07QnCm>aWtZE-x=Zvt~VZy!UT@<RkE7Kl-C|?2rA}k3k5b`Zlz0
zBT4GH?<FsR7ry94`^o7u>KAYPf-i!*@4g3q&wc{nrT4v*?zP)btbWbcyu~Kv^jf&h
zsbo8=O<;?0+cy+Ics=E&ht?)gZWGr^P<okJc=lC?$_1`LN|K{w@a`lD>uk%3OT8Ku
zuwoO2O?2q()${5rJqumm*#IRj2|v8Y7CZJz<HXGGeZ^k!zbiJVdG$kst+m&vas^n*
zRca|{jEHKfpqv%kTsYL#UNzIYSNlV;9rFW<ost55O@J6{KcJcZiY-Q~SK#I9`x5SB
z@>>?({QzKeTZ+BH*4Sg~2cYAlydO||R6pQ(^MmsP=7S`;Ls!XE_Uhznt7x*+AyVw8
z=-jt=d=%9}5W3>jB<4-tCf0N=t2w&%>an*v@A!U?{Ze$UbZ}nh>igGpuKrW8_546?
zu;DZHYAy6^LbojIUj5j?`@XAeiy8oa)=fVI$(ioK+_883cUTPo9_0BY6aHb_ngFfS
zqd_}l;!~yp(_C}gCw+Oy(&4Pxmm_n}YmqxOs_e2i?Re#8nz=BX9WR+EgK_>B-g4eA
z9P73(SP<;IhE1}Ql=F&aa&%Vw09FeuX!{=Tu(<-Z6|Aist9|6@n~!7b$=UYN$z|r{
zqrjckRyYM~Bga*&UXC+!ea97StsK+LTv=DfX8Xdq4w_9Ta>G6{*Yyk1AvvA6PfjWp
z{`k}62$UrVYuIex*(YZ54OhT6b74)80fa6GUBg!QEp87wSf37KUD&`?v8H;dAS7S+
zfr|mgq11usVLi3BLf1zfz=k$B3@biL`gu43+Y+nzPbb&UgdA6WRL7sLV-vY4Hhjth
zJ}Sxa!D=hu3;wu24UQwQdKMad1KfG1)&QvATfOCXgjKVTo0l-gelGVPK94_rgIDIz
zah%~;CYo;VjWa-4&bW#KH!N7X-Cl<WA7wk2SP$8OWj+80mo$K46G(DhmN8WGk9JQv
zmv06oy5ctDr0$$gn<ikT8XJI43OQ`;y+afH0S+?TRF%U<nV-3T?-rY71x1U)uiv|A
zU&t-jK`MXiEI}!~9=%ue-hnZ<*lYm0f<3bkN`SA24O*Q`d+xMDk(-_G<qGxnk72WG
zdu*ZH>r{K>Nr%p}xfv40?w@-N8@TgpY`1QY{CDXTc7Jz%i%sTNs%_OCBNtZv^h1xp
zM?UoH@F%|I>-hM+KYhzv-U2`QlRrtBqL&vJ@b~}z--qw|uJ4kfyOUiT>jK<y$6fFT
z-uVaN_kG<v;lBG`4xjtl&xac~Zt#SKU{ia|SF}ev=7>$8t4}NT80CLf?a}$D)*b<F
z%|~S@_E`C-tJ-4#7uc`;fKCKyKleVW)p@}t6ox%)P~%_NV~Y)zegH4`3?}AN4S*dy
z@)WP!f#AfJlIXNIMbGWDQ9<Wi^kqItk|xA~DlU}K`8LAYCc>*;w1wB+e{S|pJ`Mlw
zasJCg1(^)8EKiVU3&`X96!i<LAtd}kW!w<pb{#@k@LwmJuweIo+<M3L^Sv%MHUXmn
ze+`23dnVW%uu-hZ?`n8a{+-3>$&YBejCVDtW7)3F`R%<yjtL%HE(v#<$r(D>8AL4D
zpwyrW9=l={?4iZ3*mAZBJujCv>?SwC=H*7uE_TcBfdn@%F5wfO_yoM|t#5@-fBHcR
zrd_{&9p3b&H^Cd<_yzEN-}l$)=rdwC;CpC|f}i@SpMt;ngFgrlJ^V2I?9cuzW%^(2
z-v#&FbMJmq;ZAtbKG=`h{`c(P0l5FX=RJS_@7?shgm&=Km)^ghc(?}lzwACL@=Gh!
z_TM3|{=Cnn0I+8K<8{5<Rn98cp4?Qf_S`+2@a>|rAkTOed#uivW4bzT?9meD4q?9q
zomcI8eE@qlk8L4W*Ox-4uN}p<Vy_3Wt+mHkzf0ES+F+x;<ofX~_a$koY~p|)IEYQK
zFZ%frdjxrwE6KHkz4D)Q(a84}98(V){0{mkXMff%&!axd_w$|)I|bXCy<XWK6`Qs@
zd(<Rhuea9s$BtZddvrf`xTHyljZwM*lrhLvx6TRxf+m0QCoB$9CYYEX5;TK_o&Y>w
zsC+}xIgF)bP1IxVESVN12pq`KgE?|uqLG_@3FP{HY1hIXRk0T_HiqYpkDTGF=Z1ze
z6sllQaV`ri&Ar=p8b};y&uiD$qN21@mcFcE^ZRZ4Dz;fV@yfI1&a;H}etTR4b!zvu
z6AE@JG@RG5#UpZ!9l3a$XrIl?5upr13*oVKp98M0^HXf1*RD3vJ3lc1yZ)`}yuJ3q
zCWgLE9Fn`$Wq<%YLBqb*K9^Wx=ibUi-1hT@O|*VsxSEZ$#fKo4;#bUZTsYb^BmGpl
zovL$tc{lbr4(mRO`uPEDv>(>7^!;b8^DFhWLq1CUsmkUQdpy*>=A#bpH}8gAmJU|;
zqlo~%ExnuQohp$pXx>Zub+2In_wp6wa;@^B6;<7~AMNc{KH~Y`;NAxVW$eyuSGf#+
z1L(>e)=0*5=OovO%+YR|2_@)6r%Oc35BgGb{VGTXB`B{-%WhDZzz576Hg|9N|FRU=
zWAn>;uur>vy}koaHmB$F+JRh-4#@&mJSuY&3c%U^6zIz=2Yn937PRIDh+Nf*vtpMl
z^dKJ&dhg8GqhR;#id7$m<<2`9%B$88lWWr)b+BOZ0$bpV<y^3X(}T*@p3T`rY-~bp
z1_WCMmu(OA=H(hhCqW-<fh`+04Y2y`#TFaYp<wf@+AEuZVh-}K;8(F#D-~LMbl5<!
zn?0#bsJ-UWSJV&Ellpu0?AhcN=z&5ias!VobH?KHpZ8pN?2&t+-SB?*-g7q<0Djf0
zUS(NRs$aYo(nR2YpZLVb_Q9r`^r3mSnf8IAfhG`DcU=5-=?8+FB+!0tIuCyGq}VHM
zk>%!opuU&Ipm{ZzvkCPnxo?l=C!lUGSC_t&m)KP2N$pYlLe_J2{Rh~~$LvvboTT4*
zKajjX)V`E!orCuS#R<~thumQ29sbbO!v`q++~h2B<W&u9uPwI9_v;s81`9lB{U#E-
zIXKlZSl_K{0&u^cMJI#Usw|GRW3${0SFQwIMIqm=ilaP_OooJF|6Xra5V*t@fa^j)
zwPoiIC?UmWg>K*Af4zyWKwm{gC`yZ=-x!u13hbZB4n^RWNi7OdU0FNE9&n$WA&*li
zgI%+{HS3ljNo^s$w*+Q&Kg<2wcEi@RTSBB<`ye)XR>BrtW~$02ly|=t;?&I5F1D1q
z*nJYr3?(?E*qGjJpuqn$$*KpD8(*K-%_SF1RDC}1z;DC<_z(U81?Umm&6^i=XAJn?
z_p<xp4}9I%!SDUOzjq(#e<{4;6|WH2R=$UV?^H6b>}|%e?#6bja&>aA<f=NCXQM1}
z30{)i{C7dt6<Fb@J<jru@H$_$*H|b<#x{GtvBxo#Y-H7`-rulgm#y5f3B%^(=54}?
zsjkU&rLVP_)X_aV*>8;9zEt%!wMV@-bovs~4PVg@jPBXI+`LW~a$WHQZ7qdLt{p#c
z6>P1KGM%ejQ=#MW^$^q^*K}UltHbWGf!eFuV{Ul&6}!`!>S;RQqYS%S#n8j1*zvwz
z?p0sv*yCEezxS#iIK>`CPN8EHZJmcx{D8+kb@~cjCxrUjsu?VppS;4h@S-6&$1VRP
zSvsl#DP5{SgRGpZrCykEiG12LaExq_75DPKeTTtkx%0&|S6txAS&bR+LHXhL4?Apm
zNwD&iV>_)NKt9g>@1yZTPlOvYXR#fR$AKpDPS1iJapC#O13eIDb=gPGNad)WX3lmV
zjBi_c%)#+%k0gwnQm;U>c9D~s9G74ttdN*PegA(qji+4e6DYR9VT~l4N%uWZxnRfp
zG1j_XfnuZmoyc|M^}iRwtFN^aSf?y!mgA0&BW&_4hz)sklfyPD-?nhFV*6zKiftym
zBv&uT?PxsajE%WLNsfuR!f~`s*g^IMD|QLIH~vdDvHz+V6x(hRoo^gg#%@@N^M7<T
zDxzV*<y(jwk1zXmy#kf%g_mn6%Xmgy?ia9LfymWt;*zKuw0;3$3(Tuu<Q6OYRBV&u
z(Z}my+okAS?NzZAet71t50UF_pd82ZVvji|$E#ns>XX?kl=>NsJzgkxz1Gi=zJvGQ
zsoVy|KJoIY%~)~Q8#cw-@dJ!iv6UJCh7C&J*-*WLL|NLZbL%^TO?8gEwS%vxv0<I>
zTwn5X-E0fC$@aw$Wc35ux3peCW*Z<MrL{nuk4nW4jFpe#zC<-CCg#=0l{V;)^jQoG
z4aSR)n!7%VdG)C;IUjX%#Sc)w&q?YPFgEU6JHs~lzO;4rs+|9`)F&YSIat5<K59x@
z1EBT;5Q~o058M=cR3CLI{M*`>Zi>(H{oLE@<lb9IiPFB8CMn{G?UTIZX%$4^rH4rd
z!Tudv{w@K7&u+M73;eK5qH%d6XZ1D;XZ4O(0G@5RCJ-*mMZRt3t{2|@$nE&UPB^PK
zQm_<lACo(=9akzLH$D2(P2{l()u0eQZR7%<^&KmG+tja-H-CRWJXf*d!o^9Kn{Ig$
zX-8b(iS8XLYy$;*3pN?ZT}nURlED!#w6<g4LZ68Jc(aLg-^pW36D2!r<ekab<~_DR
zywcc@h`WBveDH*Aa<vq8%$bhZPze*t75TPxMdsxs?{}8#<gh1`YvB4DdwpO#`BSO$
zL|pWHnIZO>YAGao)<NoJ5KlSEZ3Low$s*V2ux+<oQ^j<yauxqb=R>P=<yaS+K%Gnb
zAl&slF5((L#PL6|O&IS!>0CJfceqr0uCUQE-i^nWNN%QclPhB*9`neb3RDwdZwzO|
zTh4Meo5-x=LFATZ(Rpxkr6uoduV@pq)KZ`&@e^~`Gj_&?$I!JA`^^6BOgPqe!d<_K
z95f(~f3a86In~c#n=rW!v0y`;2hab`I;Z!!^rfNcOXTZ^O_|8vZ=d|+C*Z&MFaAsT
z(I5RW+W&pO@Atz;Kl%WC|M&k5dT$}k1Fa~NZ-{sO|Na?#*Pr=T_>2G1e+d7<xBfBs
z`S-sEuHy<Ws_nraX!vYVbng8C+Dvx++;r~bic9zLSr9vM(aX|pvd4j!iL<>jrJd>=
zuN_3LtaIs0;s?$}uHFx1u?f5`Vo%}+A`~Ar(^!M$ihX?Em6`yx&Xrf6?GXf<VK*No
zegI0n0>l=ipVRw2@<$}ur}zQ#&mz~2)`7r}QMFg`QKs`rd=$ww5Vq|7XOboFitX}p
zi7j(Y0P0K5M`>T9@g?b;$3YlI*$z^;d*XUT=cCjFm@cg*0QaSdmeb>se69h&{&Xa{
z?kKqd>j`Y)K-a={y!Jr%-qGa5^)s15MEjrFW;7T<Z#4-R;7WGHpcIJOPUEDBYs=y9
z91!8j3vtC|V(PXJ{%8A_0>D`(+jyb`Hx0U3LPjV)T{oLJ0I-;aCgEs%l5>5#t<(TF
z@gTbPT;SQ=TibQsC^hXBwh$_8(cK$v1)G01m#7jNY<%kya0Ur(w(XYu5JH7b<)#6q
z7rpq!@cb9Nfc@~k&wuJupMpmpd6*_?=Tx$3@my^Cr~mXPiTa0D(#pi|OJ4dC_@XcV
z68Q43_;PsXJN^KC{_9^)8UGlEL0X}U%L^L+<F^#{#odm-*{GPhjNPdysk~>BfA$r*
z^yC`apz>98o=e7da&lehG}o)wR&@@riY+zwR+~_43wu?a1C)E?zPq>Ac@JA?<Q5NM
zTfv@Mxn)htU1IZn$r8{y_PD?Xbzcj|<l45kI(L0#%@6oQAy2nu*m6nQ_)PmK!{#TV
z9Cq+>YjqB=@B;_s3a8tv$Cf(Sx_wQ~RavD5TXyX#ceU+9*beyt@N&(0Vb1_7_PB=4
z`H6Hy=Ur?ao%?=H(5m1+k009YGqM7}2Qa+j^GicKCz0LMda}%1<P3iKgKja_a}LC#
zx&JrKG7IAP9n~?=aB=3WmLc*LiJ}68ssR&ZX3ZuIVquzv%LCn%*Z_I9O3&Y)8kr9}
z2ETj<<XXyE%~>jCUj`$>|Bl!r2GwX}$4k~oxP#0f*{TIrJ!jP-=O`bWkYG3j(0T+p
zWiukhPInT+U@psjXAu5V;+VDBDON_5K!D0M$|?ut86IPuscl&nDcQ4AGL2097`D8`
zW-ph__vY(M)?VPC8f7)5Vgsb*nKN#pn<>NdjV21^D!jK~SVQF$L7oNEZwy=14pguz
z_9&eRPsNO%(rIvDQFtG-mxIG*4t7?@pv!+bOH1WK=VuU#kYF}JTz*+*6y;g6*qCCY
z=SadEtk=upR04>-7P)!3DmIksU~(b^WS^8ZHL+7+>~Zm|DQQJ?c~<>64@IszBh7N>
z%&@H3AeR+6SzUqJqv$*od*xL|T0DnOXzj5)Ydu45{Ln<^%XD8s`bSUan!S-k?!nvh
zTn|24x!UR@#Xgt5L;W!oA4QpR+Rv#kpkAc!dLI?o4^Y3Jy}in8eBdQ|Dp!7%2-)@X
zC~_j-9Lh=p(rKty4tRUT--oUr2=-DO6r1*?=vGvO;xD6o+-Bhk$e_MF8@Ad<mHq7R
zt(nXu$3iC;Tv1T<pX!tNB^o&Mz<gBci$n#66Uy#IwDw-|gW+;;sNP#;H4LvPsb9Of
zx$^C`iHj&%vM3LJX;RR-NGDq#(4nMd^xD`V+lb5tXl{H$4#$qwKGn!Sm%s{Nk2R**
zqs#@)ob&~pV)ojU_Zy#N*EVbdC0hfnQ31}24f0$nB)MwVtaHVx)|8<-+;;T3<>Bb)
zsM*Msa1<Q<LsHKEx&>R=6KwXJl6C7oU{#-4L?okV`d8b7$1Qqc%8exd<{~$r%^aYh
z31Slg%$F58K{>yeNa?dG*C=@La$~jjgYP9W<;y28=*m}Ql|^Nb9H5%a=H#AP_}`;R
zOHL@Z9g46TCA%$vGxp@#v%~J><xdR`x7$=V_G$%i<4PzxaJJ9)upTRNExyuO1^tIU
zIM}#>kH7#ZQbyc)=bf~Vv=MjQaUEX%^84ZLyYHgk=-Wa*rf%GL8lHJ3?<Wo(*zfP)
z$tNC%%Nx%S70ftd^1^J-7Omfd1PWYVlR6S!=h{!Gzq`KXJ%7lP2q93tE$^euUW}+e
zIRk8cl==y_XT=(-&ZE#nIi>Lf*4fHnYJuIk5GamH{=;P(QRw+h=ek-*#!n&~v!u}Y
zpsMdJeH7@JLygBCN9zIvv;T5EwYMS%@YeuGFQi9=P<2kt47RQmobBc8x=og`G`Q<4
z&5IcjfWMc+S^L&{%efrCeoVQC{>74akL<1&0^D|6aNlWW8^9AuSg>N$RYR%Hu)K8K
z%6L3cDda*&Ovyw0^ORdzSLo_D%H%k$@wmCi3oSh68rZhPk;D_u#F0+l%ym}nL<u=*
z9otlMR(ovP&fj7kzHMNB_|aw2rVe+#=U7iu&0Wt$y+@PloEx5U#J=6qHI*m-b+3CJ
zW$wS{!A}v5&xbzrA$Z{nU&zTnG-f!He<OV4BOih9`@a7i9(?dY!h>{fD8pC2;uY|g
zuX!uH^{d|k?|8>MXpFBb4aut}PTtsT3XgfUN<rj03a|d`V*y_0A~!Erl*59%9w!?y
zVKFuw>#`aoX;$u<T%`^~a5^VmeYrQJbWrCW`^Cgb1KYUHv92`%===^g&t31aujyPf
ztySk6k!wmTy!st%8R~ik{LP)reiwZyFx9Q+u2*d2(^FGFLuvw$+|&=iN-YKLOL9KR
zRXG1+&ksmHj@}P6*sPyBx%pZO_#fFs#}6nrmHU-^6n;B7UVYPfr=Nq@xngtJX(hh|
zmaSgFRB9>Urfdy8xpw=S?@Qn^*n2u}>~R)ss&l&jRBBjYa%S>%AY2UE67y22uQ9j0
z`dUlD`2n>@eCDd&OQUneHZ*<7*HW0gAIMTitHDOJWJi4en$Gc^vW;UInb@a8uyN+I
z87ovZ0Ls8MSs<A*{1a!Z-En>fcUldAy7OsZPJ@PXV?=GcE-$&b;LM0aeA`JJD8zNX
z_a0}p@o5YHyB)va)nDh?Z?W{S9pa+*oYmU-!0oR+n_<Cw<$MxX{V}XrurBtSd$-tD
zu_~`V2I^v{c=l-sH=V!@-s-r;?&O$H(D_1+L*cHk<T{;ROMyNfPLb;su`RGhN=Ym2
z=y<$+>a$FBEd|9E1Z&p@OpZ8!ogo~-vakv5OYOd4lUfVY;aUo9jf#U<oBdn$1DJjn
z$v(L+d7k|uN4Rn=g{%01<36gz*7He?9N`MJ6y{sd`Klk7Dd=bW&%%GUSc@Nsg=*?5
z_SyP+96;>vap(1Od#N9LFZltlO*-l%<o?<>FDH2F=}Y1W1_^IyI|UVP!;g2|mg5Hw
zj#)<dcn+U>EJ5^PBgyKni+NjgZyEQ3ww))MefY-0brLyB381HvgZDnx9>4~D9$R+7
z=L(w(ss{gTK6dM_Z}cr`*~aY>a&qn2O(-11rq}m$MLoGEhqq~m=H5MQEq8r&Z^d?^
zT<i8Fwp#8^uE(%dfz(rUzO=_xxgW#UZmnFK?Ie3_Z02g%4%>ucYeS_fSKRR9<~M%*
z-@w<t^@~9#05HRUyFG)qzU{5>5C6eGu=6p~6SF&i{sX@R|L7<F3B2!T-vjS{*FTqA
z>!fRdyY9M+VEm{5+4sZ$@lXD7_~fT=vR}?cZVP*b;s+G_E%kFa#a<8C#EKtS#kP>^
z)v=xI2TsuWVSD9=S;uw-AJu8cZ2PA#FdzW%$;Y_{z#v7PgV;tnS)NU5&a^cFj1o%T
z?^+W;4W`g9COJ01wf+13`gw$xzhDcmx$hh-@gZvR37AgtnkC6X#tst4Rw#P@V^7_n
zaR()c1y0D&|8D0k%S4L$4GMzn$8UFC+sbO%U^YWz<xuEx%X>9iXN+zP$9j^^s^6I|
zXhWm8SZG)1QlSK%wH;(%&#ySGV_e4;YU~!s6PxK`gA#!4Ve4Y|_dXR{+b)4T4M=If
z#);gAAAT7A+;@BjeEj1dho5`@`#_WK-u&h_!~gUXKSBKqCwL!v=pp#EU;8!6{Quj3
z`)}_jbf1CW`mNuBm%QX9@ak8;8ounyz6{>_*0;fZ_umh1e8cOdU@xzzwsE~|YuJ;>
z!8>4&eIZvUfxn6_)H&~k&O@jsCKo*Ahp;vF*s}?by(FHc8rumvf4276lbf}xoV`u-
zuz7p!$gRb$ed$ztG@Dq#e#{Rnuphv-kn5@Tc#D3(+N1wy>0nd2Ha0OI(fO@lTkT67
zdp+c%df2*s?JC$#=t}?{UVXJ^=Lf=x*n0MQ%qFh%UUGe{^-)2t^BC0tV7e=sL<w~r
zfU9oR3V?!v`DL>Va5(d~1WA${j2UG`2n?~_gQmTV1$D-nC?YURRXD6?SELpPNy>Ys
z?Z$)Fv}-VFcKgOHhUdp}{vespwxR)-KxbFsyeam(hOI4PJ2m&7n&OtJ!9I7Mjj~uJ
z5N1V0V(G-=P-XzLQ+|u3V6XREtZQ=h*eEF*<tEol{`?qa8BOK_T`-hF9I?jgv9HNB
zUs2~;G_;Fth_=K>+pQ3XVACR%r($c{uWFCSo-O(IJyxv1J`UWQ2>Xi8*X$Mh>Cmx9
z#YXL&zLvDF;J(^~_NAflq>Zw&WX`-abE$Lw(4wWALAdBMbnTJ%uWl3birlR)(e+Ca
z8+GiabMpgBY(2U5`pPjsaGH+_ja=iRFBvc25p1gSxe2z<jZbRjJ{|E<MXt)-ID@V#
zsIY-h?4aeY=zMkG>HHA3+9rhKlH}OPU0#efkf`2U{3h~yP`$UB_P|sj`@8M$$CM|m
znk?^4xNSE-e$eO~k>1H~oT<j|SoFFa!r^1<QGx`>EQ43Gr@`dQ?X1rfToB3Koi$gk
z@8he1_RGWpUym<BE0or-HSLz6zJe{=J&H_{d-m+H1s{7WS=CvwRp;XGOxL4ht<YQ>
zq(;C3TPW?b$SvePHXFbidX*jPu!jv6$Me-Zc9kP^?_HkT7E3_UX#nO5_t^A)p_S`_
zYiE(O-&9ZK{{DPfX#&E+-pW<)oxR+${jb?8)S1oR(?r?#HqqK+7aLuh^R1OXzV1u4
zJwo?<zOMEU`<`;xW+&%Xt_i>-<TrfxUtV6oPACTT0_W%F`#;X%-sjv4&wI{u;Ds-E
z0o-xN9rPZ+%u;%H?YF0%dXh4&9(nW;c<`a8_HCG5xwW3z%C)_JkpDG%&b3bnu3xG>
z*FFkrdtE$xvBy;()%XFuhWe=7^bgYklz!B=XV=f6=&kZm9sgPEvC(-x;-lQeVT7`#
zX1%Y~_88zqd(>x>zQjQvFdrG9d_&3t3wy501~U7Q?Am?5gsl2yIr6pTs8HKdnXt(9
z$F?5cw3qi`y>XBvH+U@eaNBOJytH3Z;z}r-)}FIkv+;4GZ;n*+apPuV=ecAn<7TT|
zUAqscXuIz3d^V`Nw+0AjmmLZ%w&b|LLkVP6eB0Tre(zvg!=6Fo8nMD|*ko)yNWxBw
z&9d#iTpc$3W+qBs{Dz(<O6Umk{XYxs=qOpd`1=!2JV6rz4?OSy{HuTUuS_n;@&EN-
z|MfHh@b<UA-QJbsSVB=1ww#3m)n(bH!na+?t%H4<>x|%2<*LC=$^e#NTP0V)=Ckix
zY)au#VRO$mN%B%<696aa-0ZQ3EpYa{$F`7buP-$^H+uzG+UpUy?({pfxi_t7hdP7Z
z+V%T9rKQeuK8oG<bLjYiLvmGYihWqYW;W6D1B%W0f!y;0jlJR)uOQbRHs!AO_IgX$
z4%kH7*ED!uVH5jnv4MV%_w3R6C^~k<M=@36xZamKa`o845kIiz`!%Lx{<Viq?Db$j
zU(<QV_s5QpVqZ=_vG0X4o?MQ4Put>JgAPRe$DiKHGB(lq?}1+?=JZFr>hx66%GJi)
z$}%e=?Fb&Z5t$d7jTSkt$p|;X3$6U`W8nhF0irHfDLmz6Sp~k7Fk=8eZfR+aa8}QW
zIn=csgM!>)B6Bs)!edUHz#|zAu6)3D<lnrQXW>*A{&&SHoYi<QdYL)ia(ulZ$1wh@
z{P0w@9tv;y=(y`avG4cEiN?aW&HUOU{YTi8b6v5`$`2oT>5O2*dni{u$%*8;W4Uf>
zKJ9Vq<Qn+JOxSljlUq_O5h{Ld!Y1_#JT}GZv0u)mh|tc-)v(!q(fPLGDNiC-<|WS#
zTjBgyUh<iOgeq67UqD>8Gjjx^j`!`ChOJ<~oaJRSAm{(g^$P~!SQj~>y)wu8EOH$h
z`{Y^*m&Q}x@apfMjX2e3;ej3oS$Q*)%(PwsIU0}6>~%0Xn_ThPMCa6(WJ!`@)1`)^
z^(E$qWu0p+g~0aebgptGJyf+6W|1pnvE@{x^Qp!*vm6myaNPA=3k1lXsXhVf+~k~X
zpr~?0Y}xuf(6cEv*7;EEQ?Sj`B=$HE_T4l&KcLv0T%}HlV!xFAt#H?49TSx+#umIE
z$c>NkI`?%S)DLJa1*%uD84R2DC9VAt7dmfv^~HZ)$VU<JoU0!IsrwLuU{yaLatq3<
zzw}Wa8~ab@3g-`l+3J#@&WZbWAy>9X96+f*HEi?b`aSyr3?F!%S3b)8Dc39TKC0Bu
zkO?j~(L(Q~{r-;LLp-sa#9!)r3*Tu|&ZS-6TlCTl5scCRvIV_wWd{Ct<Hi9H{3}qP
zhkr~mu%D5@gLt2nV?9r@q!@rW*>O83Uj58G<tY;%HvkAvevp~~%x#Z@7;GnAeHy?9
z;<P57^2;4%lH%m_EFTUVsR^K*|773FT~Ga*?NK?_w>)lRY`N4cn1mmG8`&DL9evPN
z>lNVASizQM95g6)<kP-Xj&(5E5U;*s+cD?#CPKj`T;Mz6uAhV-p0S~SJlm973P=UF
z9hqiAi-{3-!G?NbsEH>?wU$C+xwBjwY#ZiSNA7UE??$=nQAe9d{Pr_pO9k7^b(|PG
zP#{=2)=B5muUM|!jxWotj82(Xztn-4M6SpcPCB2Y&Vym&dIiQ~PC6Iv`n^okZYG(J
zDpwqQcX;(l=QEcIB@T6|r9g6xg~xmi8*|f(4!5#=AMG&+H@(;^x?Z#y=2)L=dz_QV
zHPUk>xgOPl5Nv0{u}*azDr`mPK-~40)MvK(VIj89-1Ur&#sl~$iLv0f;C8EWolWN|
zSJgS&>r8SShZ4-;j~xCm#Yq5h2JBDeL+JBg`x^N6KmBd+H~-cT!pA=LG5FSR{nqjU
zC+`*9{`&vrufP|+_C9#mPyJIkJKxfK;rjJ+o*b6GRO>uS9SE)oFh=3kPh1BFv5%zl
zQu~8A|C5(%V0)ceZc%-d>Kwr8YhYiaXWjAped}xjue+663hbkp+n%spPU542eJ?Tg
zV10$!L$TL0@llicsJ8Y;r187*>Td_ZHWeS0GnmfJ58yj+U>~LZy!BD+KLgcLU?1gc
ze~8@7N6n=sz>X>4&U}3h@7oj85}r#<mCFl#-<KKy=-bY5EKXRsFKtIjmf7!P5c3Sj
zuZinE=vWz7C1StDHVkmkszvHsgVZzNngF<*A3wY&rNS5@D6hXJ4&lGZ`OhEf#h&e(
zc;<Fah$-L1+O88)`oBSDHg5Of1NZqN1S_6yGw@}VsAYD>SmY~|7y6#BGGG(02B(R=
zlokOTr5eF|Os+k<b{dDuwY@FSz0o(wYH**lW7wp<!sgm_+}XvZ*yY*Ub`8$ccqrA}
z^_s|H$w?lYwqyTv*g)*G!XBf<Z34XNm9K=C-TyMt4PPJo>W4o3VfeLQ`Biw&&%7Ic
z=4XBe-uM3Z!-qcjA@PM<!vFl|KOf%m)n85j+8AAfzVlo-)*bdi`g2d`UT(ANW2&?0
zY@!M{x^_xla^rt5*HKp4`}145YCCk~x{588V7+heVq3A-gV;iyz^3-9_g?g+p3WP4
z1&_TW*Wj=Z9eY)5S)L8I$@Qfq&qe|813HHewzz_A)ep4Tyj;}}IGZqRjUQOUmXGu$
zy>}1WsvmIJdf2tEwD#EbQ8K3T_8N}KRqWO5(FOVqTjO69TXub=l55kK(g7cZG1)mC
z@B?c)7ki8={xdc9*uy?L><ertCyD2s>Z2;1%eb<VTk8izk5Rs>Err16A#{=rj%{QA
z=j<*fSsuAKdwrSE3`)?Y8FZ)^MahB~oghOjvqM=@QkbiZvxM-+jR-5zKsHg;c@)ni
zeA}bYqRbLh+ZZJVx6>>(3VH$_xYA&e^K&q8GY&kHi332c7of|{q<S?PxLnK6$k4UL
z$zi~lu<1TxOL8y7Hq8!e-~xI3e>d7es0bJiObIH<fdZ}gEEp)6pqkY~E_|x_70c4N
z8e3p2AXq?)0Tyf<nP5RISlo)S@xICtb&@WfTycM9?BtLI8wJ^b2WC`E%?)OVZq)4~
zwrbW5N-YJV-^emE7Fn)}4QL=;<jNmjQ_-<tXE~0hb3AV&*eK8`_adj4g%f=M2}pTt
zKpz#OVFQyR{=hoV^znmcLY#$$jqQ~Jtyti+kt>KzM6n4FZ1~I@7)Y*MP)}=2@b$gU
z@m@A#O>5l?cDz@HhSmgYQed&PAXvmfhv=}0JthrM8|@U!bu;pyeAY>|My>+JGOzK&
zaVgi<UY*XZuVq=%#C*Yc3iqu@_87>1xi2N>2T+8w7Sy8`o7ki2Jk!dAR_E$)S%<ly
zgDE;UKQQQ^k+I`PA<AP?A0@$e?pw7V2#t@5W}n=bti}Xl2VG&IR5;6iPIW_q`nv|Z
z=$Kw~(_}sh1Y1@=K=wIP#$D|P_SpD6M{*6~qi7#H4^BqHAaavQT}-Vb{?1abU{)PT
z{fnw@LkMQC#h;3git3}B9}s)wzBF>*sQduy9BoB?6#4;O@xwJGW?IFfD=hTAr7u}O
z^G}H`p%ii@dM|C)mttmrt(#s`KVWay4|#p3hehTir#2?b^|YMNW*>i&bk0x;l%f1H
z)%uZiPUO6YQY4J-70VSfWk*EIruM-WH>`0fmmH*w9#Zh<M8U<__};TUG-C_gZh5Zm
z$pYI{5S-caE`nrMFjAj+T9P_KjZK8hqcRSl&w=F@@LduZTR~8=boq8gDpbFP<dpe+
zl=;~L7Vi`s_UzE)&PxB$92Dk62YFDL91D(9TvKglCz}9uUkQxFV+|<hkR{ugMt-0J
zVEtfbd{A91FZ2++I033KoWt(UvgZOGkej^)uEoQ*&}l%Ht66s7T=)=tK65V5Eq77N
z3so*oY2$lHT`9@%H-y!_^+9tn!N4C*tm8>UAIdU=$Wlq6mKAuNOaCyDh4LH<6<5!i
zeM@)Jj~s@S?LU@H@f9?7-C!_(19!q5<Y!;@vX{YgpZi?$&5u9+xZUdMr=OyKfBWMf
zgWvw`2lm0*0j^!Yw!d$rV#3-zDk=I8B&hXUY#>`(?|9uSr>RaOSaj0Mkjzq@QdyOd
zRemUo;B+1ep5Sn!T#L_&(#OH<AQz7zJod1#N6@wqeDAH>=`XQFv$FweA=0S0!sfT&
zY*JTUDR!z`MUNoA1?Pi+#}&aXVbH#&Ta*U#c-j}`9TCjm*#EdqWL5bZ?gJFm$ytn%
zC5c)gQd)UrLMh(@{JJQ5Zr}5HarfN81J(~pljy{*e|v6a3?=)(=8W$qrihUVHwlac
z8E32ZM!pCoaQSRyEkH>Y9pjQ08Urgjh6CoH*5EC@va+ni2R4OClh@?F6kr0j(@BDF
zn+Dq;&!gB4n>?!qVlG{BrD6+mK3>PNY(-v{)FRiSZ#B;aF4*<WISIeE+8G7z<lehf
zua4)jRW`Zq65I33?!TY)gYOoS#YnvLAO7HP!V^zE4!`x0--O@zjo*NGzw2Fq^uUx9
zMFo6ko&fl&uOi-X!lk_9P*w<o!=~6L4N`i!I_#Gcob_@g{&%_Fr6fRjoswMbo25|A
zY7ky!oJDT>Jz_c+o0tUq#;^Wp<%;$z-1U{tW3)sj{cfEb>^tECuk6udb2hP%n__eC
zW1VC%d!2=2-HmZ7xjJkKn!ZK}V=i;r$u)tiPvGR{?X_o*{y7bsd$yjvuKEFht{=!D
z*o3lv+a=e}jUho|Pq2dBYAJ}#Xg}X&`9==zebve}mt>42-y%IfK-X@3l-GIn9qV+C
zv4A1COn!i>UGGiL?y#v`7kx?OiqD-}AC*f%Y@bcv^-=R|0e3HVZ;xgZ+LuH=rgPU9
zTYIc@4y7+Gbnf~&O+p4vYUt@ac<kDja#<k}VCkdu{)glW;QWApFXcj=q%m_)eaU!1
z?UY7e0d6Vouu=oS57>D|1~VG&yzXlN$gostftpz$3KC_e*THS-1OoB+3t1N2<*W{2
z$*(;y_k7E@-STVaRA%~;&46+cNcVNd-}W7cHM+6Eg16IY*xbGSta)nNDci2WYS<Ee
z>>b7iwolj~7#H|Sa@6*dvB|z*v*TCfXmamj1>>%-C_s|Sk{On~<($!zD69LB&KEY(
z+Q2E;oX&%0jU2FnHEe4(vDl|9?MyoCW1Z<U#%8Y7$vHWK*z2kd9J0q_`)CtmsR3|U
zu8ftkHpE`R^`#^)k6}0gYvzf%tIE~-(h;n)aM$<x{d!+2H2{*VCQ`2YljJy@hRw^7
zv9<e*HQGeo0sCy^dOFry^rt7u@z(sQVq5ruH91nYL54f;ye64O^?Pf{`QNn9^>R^+
zk6_`TC!V=MnXV&^BccspZ|4tq+;q&qag}WJTlhJ!*`C9Lk5Sl#CtLw+i8_VLg03Ru
zSie%$EZS!%G!Z($1=bmbkdtqZGzrKbe~gjF-T-BAtjAjYqP)b0{|yD3wwHS|B?fb_
zO3+IDZMJskVuPkVx7U_uOY&?S7!EdYH*C4YBbV5?{d8<D_#kqd6&vl937tV!K+F!i
zVpF+ix&A_Df&ZiF4=FUR1KUJ8qWHJzoaG*A68sQ$<<I1g!&KTEY=Z^@Q%9$UjpZ6v
z>@m+}FkfTq+v6Jcr9HBoy**}+U3BiT(|7<neM#<3NgV#!oLuN5N1yEoHr46u><vF!
zHs@RT&_4L{wO{jv^x=+0A64I9wGaGYW@wo(m7r&o@Ul$6Q(?>fd+vL_=X>CLzxR8q
zRRDM%))c_={=on48{n0%`ds*?fB#Ry=X}m9;HjrB<bzBor@Y)zjuMoPQG;<Eoi}~$
zR6npLx24XPHlZK*ZC^Q#EwBz7d!)pOT=Y_~$-R&G0pE{<*prvr-0?9%uAdvZE$lHL
z@dJu2@U!9PDGt*<^~4SyeTrA0u+4BFKI3W*>*q32W=@J%T(FPgRoDua11Xu>`GdZ0
z#|>91;D4`t(H35J|2YR6QhAT)H?n2)nau0<D!E|)?_-ZY#espyD<SxN#(O)DAF@pf
z>i7XO#1q_g{ft)Is;o6D(}Km~NKWB@2jA`o1k#>e-~}Ww2)X9f&sl3|aG<8LfmFEZ
zZ9*e=c%eJ@K8g*%lIZ+kCb)a`IITT)pRK)$O|Rcz!{n@|pLquU=b!iq_~=J}3;x<)
z`;Tqa@2fuNRq*G(^Uo9a|GV~q|0kY!96s=Y50J0MG4yL+`&xMOS9}G0*_VGgeA~Bu
z8~J!#6<|6Q?5lE5hq=BN?YAh`9v8Tm>zdBH_PEx*hON`S(D@N;a6qS5sim-x>xxax
z9eeCyJ7|v~9ObUR6`MHL&ktd{svod>hcX$U*ywr=OE`jURjwWE5KDsVF>J?luGpSc
zUs|z8wTYwlcvU}emA)j`Hte0gG#|3Z|1Eq}C=|xHSq%VWdWjsH)cfm1z*V+R4S-x7
zkSx^+z!&)C!CjfTBB1h+rT{4I`VeZ^QAUG0L#P445)`g^qqUuuu+o0vDJQ-p$Dv-@
zg-<*1=#zP-lwXNIaA_8qp3Bz+;8A#WZ^&++?```HPkGB(-Eyqsa&A4p=IbupPwE_%
z?@KF4#|}1{q-pNmVr%6(x%Shrm03MKU$J>d9!0KbyluULo?Iaxz&6yJ>WnQf<T`ic
z&Kc=7^~Vs)OJ^`_O(&ckcYXF8>MQoxky}r$YuL*94x8AcVUIzAOE>|utfjE9N4H$*
zm_3GGJAQC?<Zf~l>^5N|awY!FLHd%@xylVr)Om94D%ZBXU|sVA$z8wnCG!KcJUhse
zHvYsNSFl}0=Lh}3M(s5@?A|^bormD$$Tr|>DRAKbu+E>YkFvTYLrbG0FU;BbPw}Ux
z^m91TN5!7bTR*UdO?-bCLdo<COiR<gm#X)c!~xm?o%snlM#9KYUV*po$GdL!VF_S^
zP##pyv=Rq2b6z&i*3X*M0G3M3aRAD$4{l6C*~W6PeVEw4CHoZI<zl&9eQyTruAi6K
z{CFt0*XBW9kW+n9tPOIj`}u7AP+{}!9&4!4R@cTYI&4fj!);k?k??2Tub(ft3sTmt
z${h+eYUWXEbAHK>)@QOKq(g*Ua<1!~-oXFgV6$^&a2@pC-X@@Exkgg!g+9{h*JSdH
zpu#KI8svs0WOuB{)uOD~J$o+LgF=O%z!{szF1rQ0*FQA&Sf0+XxjvP1|G6t{&Akbo
z_Rk8NWTpGQ=H;Sh>#;&87VX-(EKsxwfVEBCXz`!?HwKN+kKif*{11<L`st@B@d5oX
z)(1e}^3+pLz+;a-0*^lY5Il6(UHki;?cWU>)mF8kABibf&t-CK<eqze!1<_F?)E%<
zayj0v?R8%FZxuw$?s)L4MVviCYx|APGGkNQ4~AWYjK81Y2P&JX<OZ<lE4lUqb-&~-
zdTfoo(iL;97f`%3GgM!*VD7yGa&=$5xBe<~BNaLdd5Hbluc6p`eb3TgdzkFX?t0yJ
zb!?%%`t7}G|If|@$dcV^%a*=@vh9b$S&gSY8(w`~d9UqC-%#CK?zP4X9UZo{dIg5f
z5+;|}AoMw_@fqj&NKF9G5AU%Jh4w|MQd(>jAe0PZ)&naA$JICybKiY0h28FwGXGIS
zyIq3Iy-$AZu}5fS)=&TRyFe3ZkoFBvf6)tH1b^g@{!zI1-h1hHy>@VNB`m3_rO?rN
zYUJuC*(zTB6Ls$QyBzD0`QhoCccp#J9(_B-mr}#44{)V=1#tzN#?HF-D)%~6OQFK%
z`cm}RQd-BB+C-|xUX>2G>1#d?qJ1fM`jXjWIKZ*4320ZqMmk@qr7#|otFwtpZjH`U
zqw|H20=Sxwiic|{gixq^bR|Gf=e@p^+P>uc=fYk)a#d`r_9_EC^HB$Cs-y#c;AmgE
z1>cYRBgJ}Q-5yWGmKr|*2jsfICX5@FbeQ?8PFFkv?L`QSk;t);$#RR!pPB(;sE4b>
zO|LT<5@<<I(ZqAAGZ)b*R)Q_qwzJVyaGcdlPomuQWEhc`j^WYFT`xS)z?rZpjKWJ^
zc%gBh+l5zOxWMtc{8A6pu3YuVS3O7#0Oixh|F{OgOj)+*sFb&yxa=c1p8b(H=#>wC
z7<>(Y!dbneY-qurJr}s+*A{Gsb*O6s1m)9Ku5iqR9hifimnO2&dThi^FFfUhEjnzH
zQM^;yqRm*a#+tjH<t$iyEd{|k2p2d8d&njn=l?9V6o#?pe~*qEe30yD!j^o!0_H6r
z2wM<23XeYcdId#}RlS0F7MmC<IkFAR#7|EhPO!|P^B^4S<pmLnT*Y3MSD!Mo1CX2<
z8!ubCbXc?6L|oQV7_?r2VJkHNhRFN#<aqU^M#ZJnFHn0;POekMT_4y6lviJLj33Jd
zTd7x&&0fLm(K!Aq?s~`nZuUA@{R}!@<XY-$6rOzw7NcCPUIEwFD78RF>(>G5`Wl7}
z6dTto!0TL0bu9&ISMK`B)%L*lN&LXL<kdGnpgOPi#YfE|SE8;8r7pxM17zjZr`jLc
z`qnUdIhJ|_`YeO1^+7tsex4k*sP#2wu?ewXtEmDVKQI+P0IsIW==#0LS>+gdK59_=
zoJ{BHPY36tsC{%bRiu7KB}c_JFMX8xq)_@&bUq5@%6&=NMd#{2we|<?C(Wv8-dpls
znluAhS7_w2ycF9lt2pq7sb6@iA0oH==0$+Aob5wG>;t)zkr#U449^L5j6uIG4+M$-
zow(~|Fr*yoXCoaqUF;}}RXNtVUk5th^Xd~nyx1e^ANk?&zDfDEhr;oRoc~lC<Z>oD
zDKszUtQPM2?LhA~<hcdm)eq8+_I7qYQm`Dc;c#g)@*r$ST=bE!CB+6nG;t|u4W9uv
z+kx&oQN4md{NVG<{&2IA`b3w)v5xi_1v{;(;C_$TYA)~{DdX&XLu0s!c+8z#k^7rI
z=tZuGEi<3?{<DF(=#lGt-;U=QHsSnNo^otQT=P!e4N(Tbdwg5Lrrh<4eW%#Y*w<q_
z>TWwa>``n2<w$bP%=HbNiAZ%I&YaGn@W1nig~v7-PdUn+mX&V@;nknWCa7LP<a=X3
zSDm8{XTcWL9w8Gp)H3QE`~Al37446o4WyO=kX*5IFjm!hQvP?cSDrNICGR8i!z1=f
z9#`S>l0D+R47=1)V8#b(NBNLk_nl@(_R4Y#VvqQT^`%SJ1IaZD_A!!8<f<?61Rne9
z=&<di9sy6H6HUkd(n!nmy4SxEUiG=Jv5%hCM_lgDB|S>uf6^70^x?{@0KVfpz5_n}
z=}*IV|DXR7yx|MK1fKi6=Yh|<{^$SfpTZCSo&P8NpT6r)!k_v-{CoS!h9}|v7o9`c
zKQqcTI(x-cX(RRXNVpL{f8YhC9o*}N<R&(eC$1Y2S|5e>dr{;@{akqUsjp?WSAgON
zSgyhRfa-iZK=D!ANc9uYUK83#l$rokyG!g*u+3FpVIOrSHC50a$)}B42VzJ4AF+i-
z=LnW`Jn*w6u}|{@Gy4JUOWA6wuv{lsQwpgCu^*va(f4wVidp>UNMi!(D=1g>{g;C6
zjNk9HpS)aoTt93%v)?%XH=}X>W4}GaI#9BYI^~)GSl3}k;~M1sr^2QC->_|zzDE1|
zbMYE@F8jy9-b+YBczsI*pR~eqmhT8%MGI=LIg>qO|K|BYUCqqxXkXM0%;77a^=+?!
z&u+Lavlvq=?^JlqTkd+xa7{~IXbak<13cw=KWWFU;)TwIv)Xu}Q?gYko)>x;I`s;g
zV7$i`!fBk<*<tT-R#R|ER)_nV04=t>f(>Gyvl=%Y6KmojPj&@({D~*vAO53%3_ttc
z_tJB1&zST7zWeTjcf8}B@Yc6}4cveK{X_vo*U@LoO}&B!TVBDQ(hBE)gI&k(hji|3
zqRV6MbUtW+a0T0VK<7aM-d!&6e4MAeTcbj*odw&f&H?(o`YYI|y~P%5Zu&~DV!zXx
zy~_7x&t8M;OPYk++GDpbozl-!I*2XhQde+3B3Iv@8k^AX%br}lkD{c523xE1aLh+3
zw$?{!UxFr}E!gskkDAi~9~BPNsEBbD+nT*5XA@OTl_UPM?Q6&SQtZeTI)0#M6E-oc
z_ISj9_OOkOT&sF7AuN1U^<I)my7Fu+XGExD2U@+DIaMS)i`;>g8UT1vtpkuPqd^~T
ztFx<O%rumgLAhW0mgR5DNXdm;Imu&erJ(Ml9P2}&z(^U4OAp&|B4j&q5Eut^{4veJ
zAEiav47|S|X%h1(ec#Sp(2)XJL1`c)uuA((Q?ii^UmT<p541k##51#u4QMb(*aj&K
zhe5H#&w|oOGh^9G5O_9TeZ@Z02O8I2!+|Sf!=n`&?FXd<;u%8XYQ;f#V7_dWV44dy
z;s#f~Y&CEU^3n$?zg&naB(of&$d$3lN&?--^OJD20Uu91<#{rP%7bpkMzd2h+5iSA
z2FfP%awR!BY|O`1bPf`b%Zg2GB2#fet);+}EgGzxgjatnG$^wKs5fMPj1Bj<q+>9h
zQy$Wca?G@hCThpds&l3eQLK!8Hl1U;V&4w@QHb_P=R4Xc)TH(mr5M^;0W&bHicNJ)
zjs<vzkjOKVa?3}`qDqpnzL5+JvJsPOHf*B={@F(MA9+IK<L!~<s@UXZGAXaVyclOE
zSHaHwb3u6ad6t=js)=lPBLh%fUatF<&c!C8$Snr_sLUj{pf=*<I5{~QHsGRkl)-Mb
z6hy9BE7R+TM5X|YV#O}C)qS13F?-~`x2dp%3LD--_sIu|A7Ea6vHy_+E<37MAp6*t
zfCEqDKNI@_9T2D=pnlg3HbR4q<e0cXX~8l(ALZpbicJ(bQjpF3K<QgnOF?`T*#O-u
zi(HXQe=wb!Kb^HE1^Pq&ct+=BzFq8b<FHcwjG_1_$VJCgkdL0N&><;S3S3S6VZH_S
zSt&~}QnBE3pKT;?U*^f}qXt|ChP>>QbCtJXwL$a*<|3BXP?q3*cGKni{I_m4et_~J
z8FJA954L5XL0=ZCBPbuX0LD8{85JN|>r~^1Yc<&NNd$m%i)0Tx79hW`MgWCZpXmxY
z(~y2kVj}^>k4VswIf=NggtX&<<X0$qDLJT)Mv7@Bc+i)EVB>)kzjyGuiLvAuZ3ZPo
zxptOC(3S<s>jV^A7S4<il`p(mfhq3_wo$MY*dW++X|iVJ5XFVbRY-nh;Lig=(8OHA
zM%lqS0@Zd^k#G`)=yG#aj;3=S;8F)pP;5fw8o~M&(eTK#t6VMU1GE;0L=}=`&B%nF
z+KcjflbjO!PqP;n%mC3jKU!Sa1hr=#BU%JomIyGGEP4~)AaW(F^q5>LiGEj`$jQWr
z{wov%WPg)6c*t^1GTx4M?Epm$CRf46bxd>xFJlX4z(M+&$SToVSCgx%jZ84BTxE<e
zdcrYqw0rZvciwrIWG<D>uMFZ3u3|U*;Tqg?MEk&e=}TS;U-Cs?v>(6lyW`0xpQH%_
z9sAz6adZDpe*%8>mwy2sfBaE+!3*xQ@rKHrOfSteeyV(gVdr-R_a&BV5bCAYM=AXb
zl&%A%uR-anLTRLOCA|mHd6s68EBOeB*4MIpF!8PQgCDBp;Q<;S1=;RhN)u>bn#F##
zFZm=c9#hgPQ|AZBAJP~OfJdZYt8>VnoV}7foLsYrAxK}*A9U4#-Ww8FUok%;_Dts|
zeTzuHl!wc5EOo2wY6}p>RRF6MkY&|Fkidvc)<Y<iSA6*>D$Q)u;_KO!N1+TTGG$v1
z1(_OwYbRS1+lpQ`a?SE~1m}A`yJaV54MK9^>_OcjkJ&_C%BLM&Yyr257dnKBW1YT_
z#D~p}$6Nz1Y=4gbeHbjx;W?|7SAVO#`&n281e*n*l<Qt>f0esl9)1-6dwB>Oj_Y?j
zp^_>=q}X8BaWq{&ak84qadtfB6}BK8>UjKiTi*XV4$GM)%`PdCAd*jh|NGuYZBY`!
z@R)1YuEU$({FU&AH@pEp=W{;C#&LN6OD|W!7Ug?HSD<ejY|6W@!7;+7HlcEFbWU=~
z*>p~F-R+E4G(f|vFLG_`JSa_`%C+LI?_g8zdb0`9vFFt{d-d1^`_}1PZG!C8)dYYQ
zY@=jW`*xKpB^jt(fyWbS6NC-*Aabp+LBm}i%F1ZP?&}qJdknq46oMp*4%U~{9@XBI
zyFNJVTUR&2>@`X)g`DetF71jf$5{0x!<I{}L&GlELfg+pCNeTNY@96Y?A7Vq7(6<4
zOIn?)&U`<gcRQQhT9d2#pq|dPFI94lj*iIbyz2-2@y<s<>!aGf)acx>Nqd4)O99+C
zOXWlfWb<72CD+%`9<%cUsm12|d8q5Xs2^DKpR?~virw`UZxcb~3gx||0sn2=mpXo6
z@m`X?;8z0BCgTbHUe$eoTN^)AH2`!|<IR}|os^ZjYij`XIRCRzt1Oqem5*X-mjLU<
zB?omEywH?Y)9^wE$%Mw2OUnbToi!Go=xBv+IS5|yYa`Z;^1atw;5wOLM(Ft8X;!Gh
z#s<n6<PA1_mYK8RgUq0MtoEWzsbH62m}2X5e>d1<zhD>6^{htJ;oHWE6T;fZMukY-
zv(QW-$<5aU-~c_{D-{0iARVU1vk$s2*yttQaD{8ex$%}GCCHq*attEJ1y<QNIbH!<
zmiE>LRIaTY*K~Xgo7u10fH)GXwP09l8>r;iVsEjj9F@DC=y9e7Yad(LpJj!E$2RZ>
z<B8a6Io5J6H7r25><iDnt#~*|j)^|<F;jlQvmd2UGpy87Xt0t`q9VRwy}pJH7}Q6t
zVH500<ft>%eQYDW2T$=yEq3(-CRc}5<#<TPeLoPb=87)iZ2hSg$S(f$I5z6{U4Pp8
zdhJWm*#Kh=;ujA2dZmrH>&`oPqAsO6;NPhU0Iq$W3(XZD&#TIweCEO?t;z(z?fnr?
zv71zad^$$pU@Z=muET>*@L*G7Fq9cf!Pdm#Kjmg58yJF3hT(toK@*v?nu0Wg4Af?~
z3_O$xQ!Gl3r%W>sw_~UW*StJgCevg9%lGC$_OOaA1IMg+l2HTv3vAdvxn;E>Si54w
zN%N%GLg5N!Y^m^V`+EnCmj}THg|kwzQFbx=>jgGx-_MI!fkVDvqJY=nv32CiL%KjK
zW?F0{x5(2JvrPElv&@2x<yx@uiknz$BC>4g-nJsAU?(UsEU>k5C7W>A^rIt+&S!_6
zCRClyDbYc&_jTUKW;z$_EjFr$W!ShhFGTJ$ELRRUOcFSbQ3J(duQ+T<p^q(y+~^&e
zme?A(F6~wL<kcQ!(y3r?u?;3y?n|umu>bv`Pk##j<_~-?Jo&_v@MHhOkMMY5f4{H%
z%CCg?yyrb|^X5%BKR=gvQYm)FftK=Jqs#9#TkFSv{Kw(F?|m=)@DKkmeEj1d7oSu7
zEm8;J@$dh|55vn}em^|&*fXMIc24LAwBM)7Ud1My+=BFlRUc)Og0)T1dm=1tVxH7T
zN#agco%6#MA2rZqjMd*5cru`;^EDsU_VYB$hiw-dzK=`5pyvn7UW4-k4K@pMdu(ct
z4m(c@<|5Zw+B^1&pA}Et0I2~m!J|*%$2qUo;Gj{I$pxLX3ACzI{il5>qYVV@_p{i*
z2sQy4JeBDz0sRrq_uuW;&mz411!wS@`_Am0rdgL{zfkP8&B|1lH(2bSZQzk7pP^^O
zRX-t=$=MJh-0mCeD~s$B)epM!+BvUKNhO<-reAWY2~ce^b}Q6aj?_!!P45Qzy;`{$
zN&=$>f3sXe@2%IQd%Jt+y@PK*f~{RO>Yoh`U{kN>v1z;Bd$B6DX*XKT6R~kp-UJUn
z{4hN5zyt8@-~R1;Uw#4q`d|P5YyA83Ui_jL!B>36SHP=Y^(y%0Z~kVY{(0pqUrF*9
z<vZ11U$cu3$yKo(lk2mQyH4^PlA8u0*W}*2x7h@^Nyk&L^>ltfZbz}H&gHkyIJN`#
zz7>01^d-d&jUTvG>~NaSPwM9m+h@uT9KyEdqi#vAw}9=KO&r7qP;|Ctk1KLjY(4D9
zu+jZ<Asg)Kyv1hChkev3@1@|5&nx!Ye=qSE#%cgiEN0+(SK-!U4~rE5H7E){f+SPe
zj3W)2V&ReE_OcX<pG5|ex{m{}0H#m?JVC?0EuNYs^J!=~tChCF=rEX*dM7hs%BRgd
zQy|B?AhNVm)~zo8&NF>@M*7%^wtRzm%Y)6*aqv7>_inK%R~=y=6`R~kvDrR9OF4f-
z`$R1hne&<kpRx}c2+N#pG=$I$F8RX<HC4Fm3!gTEof|oLuJ7!z;nLmgdCD0Z1q=i8
zZO<ZiqD%=*t%b4hzbh6xKXbi;01dBxg|)+>o}JE=-+d=~P;4r9(K%&(qfS-l4!g>Y
zIn|?KtGMY^jv-XM`q<7Z0a^}qFdp+-$4h(Es^bfL9QosAp0l%e{lGvc<FQislqX;!
zV^z7rLg(P*R&<=bJ#QSvl<R9dp-PBq&uEX>R|T6EnxPM9%KT3So5+y@;=$=$C!(C3
zD|>6PHT4We(fL%#P3#fxwJCKVDml*bp{5__G7&Ze<<*asJu0?V=g`5n=qu(2n9p$G
zqr?VA+1C$Vt6`yj0I^9HAqTRe_4CmtRyjM=u(kHs^z$OevF;n2rmu}n?FD(ZB+srs
zYEmC%*n+);TK`%3s0N$*u;QcAx*yOw5N3}BTk#{g*efpa=g0$1LNF79WcbFibXDI|
zq;m;cR7(N%Jq9J)n1g!!?9B03-kG=Z0{-2!Y4Bf$d_3O5zMMFqNc~3xEHXOGa~7_7
z&7Lpg2}$py<20KoC#7)$&dQeHiw<}pYmp|ffU^u4ZQ!M0mfU1%g9R8A8yGgbw~U2&
zzs3e08=l7tUASGag$5h%Hth~uEW)j^WtNydi@!H0_FTaF^KqMl1oebT((D~9fT!4b
zwT8--Gh4ykyN8Y2gETMYqS$g58<<?Pf3^UEHLu7ugBAG%sB|jH?_IfOsO?d8QeiWl
zL&qKiSTTp$*@VXypek~#?D-*q*=vn0fUP7^>~k$wl}pKR@AMTFgg%>-YjAP}w~`|o
zwqmbKY^_`cTh5fB_o~l*9enZ=ABQ4_@)4_E0#^>G&&(pepa%r~UNcR?3t#v`Dkk~1
zx4jKM_`wg-e~&!!h+TuTP80mhyWa&bdFlP|`Y-qrdH2L(zW^?fSZpFR{n*<CI6sh`
zT&=Hqx$^<e9{D%A6tz1!y1rI?RI(3$ySC^=u~pce|13He#|t2RDR-~|_Z8vg@A(0m
z<Oteroqr9^-VR~YehR1A<MRAs2mJo#&Z4~iDI~KISwB|frvIzZpzim&ud9>zW8T>a
zO)MC4J~k-LK(^pfZLiMX$%+HD5x+(0+I4&B2e<Puf`do+S8iiIv{BL_Ko!8zF`FfK
z$g$>UWXwktkh#v5=IhJYdY&yaRfAa69wZAF+jHqF6?H_evz4J~w^&1it%v=}*yMbD
zE(pQyt$`}~uGDsL6Mn(b-yFe)dl<Zb-t(SEby%=I%TrH1X)FV!e{lBu7k}{=69v#0
ze&H9g--sn)v&E*_%Ah*cz9e!SuAp<@ZoK*{&xSS;p^O(yu2JYp<eMcpZ2AsYY~G$c
zhdRl%#n#*#4#=IbIk|dlW)n_sCf5!&Zxd@e&j3gJlE-F!sj)}AzPHzfJ*r%NdoGDA
zifv8jWHV6rm4#f7V2@sp4x7o<VbckY;QN}pcWSXU*cX1_2sZG~*3&uk{Xo|qJ32pz
z?T8<seK_EwbbQ;|gv#Cfpw!e-Ky10ZTPvN*@oWA36#t3856&Ka;>qlF4p7@;<D=}}
z?pT#;gwx+kRbN7EDi@JK-Pd?bqAL$IX#k-3q+8kI@~2P`0(Ue?vf%wp3xs80$6$AJ
zndu;-k~Yf7%*;uqA7x2}L)VB*w}S(!f%)H+vl@9NnR8wE--Vv!a*}{p#aUf~O2(&6
zJo|V&bKP=Qd1j7v4E~K9<5*`N{pfhiIpcUz4(lOWeFEk|9UQN|Wa&m;(v}>y%USma
z=BihkBHb76dd+-g&P&0bl)F9%_qX!H55lXj#d7L;1<Vz$T;PTOeJ7c)6p)R=1rEuw
zbPG?pa)S&1rasFwiQH;ledU8EY>~N?OHBZW&1G`$yqu%2S1`~$3a>r~*i4Swf(3O=
z9ATvM9S3wr&r{Apc;oyR?8LcFg97IKXB`WVzH<JH&Iiv`FFM~%O}zrKPv$WXR_7s_
zy*4!fCgwM0dt`eiY8A1^-K+uN!S+c`$g7V$yK=ngcxE2yBG;0sjkY^Gx$fLP3U=r0
zQL$<^KlAD{|2FoOByx+faMxc*eGSUg&T13Uu+St@EZBBV=UktFx$2n@exl&_Al&tY
zC9@w0*0*wHk096(^W`jj@M3=#Q@!u8%`{OnRrLx=?FEr*E^<Yj^a3!sDnGZ>D=<Ic
z<=FbDQcFQ~ZuTfV=Y&n<I5>Nxz<5+2#qEqOO5GAZUVRknxaHNCngCO=*9_43flS!c
z58&??jgQir6U3RG<i#pJYE~Ub@loCnjDpp$3{~w9u2C^rh7gD!fXeqXmd$3Y`c|p;
z!pl$9574^+`HQ8Fi7riy^7rI|d-!rqt{s=>5pA3W82n&NUf%M~)xp^9z7;tHjTJ$1
z?Q_nuVkqr{gab`-?S!*>j69&(3EdO&>f@E@J%oeOu@tw%tXAa2rg|DX=6@fDXc>bz
zDZSB}6+7nqCw}ZCR0133F~><o^ryT8RQMpXU>kXoady~@it3DcqIZ`CTM%prX1nD{
zPoyaUk4>?=30J(1@#<s0-Z+kR!9K*oRY~KbF%;~|r!D@Gu!lg{=y>I(pLhVgJ>z->
zmlv0eJ#sCDB3I_+B(8hH20~9J*fvt{Whb?lB9P2y!A2bGyGe?VNs;xL2%4xJv)GX~
zfOM`aG?eCzxa&dqv^g;YF>BqC?HSX$aIG4aJIht-6-XVDox`T}3XHpcV!2{lXyi)1
zAF<7>bCT;UJm%-jQ@+#sL^7IZooB11aCyl!0@z+l0t;eSu5d~ah)~%p>W#56wOVYj
zjb7)`*MVSuc<f75lR};qgX_8yi|jEfH$7v+e<v9y(X*ldL^=mxdt{wY1>4MWi((VW
z_oY$#(vDYx-F@fX@JIgme+a+#?eDDoqR-Id#0>oi3PS0VgjS|d-Y5_3#ok_V1;Mv|
z>;E2p=!bp?-uJ%u!RufDdb^&k7QkzL=ePfH_#@x^_3-pFPr@B{o)IM_)|DA05s2(D
zX?+dBj$;wd7oc|XQNsC8*ix~_N!~*!H~cVDKd>1&%X}x_Alr?+Q*jx3;JPE6c)>ci
zx;f^f_+yWJj?@HTohR{8VAu)Uz)44w^d&GKCH5HD9@R&w&e=!FJCuA>s{O!Nd{prR
zQTozseF=}9sV)gra@~3#H7D~?v-(f{wiDj`jrmWmr9gfF`~4mp{)>9bR5Rt0?t@F}
zk)MB-34i0Z7S4a7I>5ex)B>o7$SVV>E(s<C;CKPYXtY1jl6yQC&(WFyv@h7$CX@T9
z&*lfzUTZ#busSDE`ic)YG;d93!?$<vA2(eAfLoAA4#i332TI^c$&KA4@C6*Kp|M?Z
zoYm5%F$uCW86*2(54QUPlBqeLlJ97CoRe<U7Bu*Siq=HEif>!7HP|g!F89`W%G6?S
zvB`Mew`Xk^Y#Lb8b3xj(Vh0HrYI~4XdMeizn*_dejDpw3Nq|51=l&f0nLqPq;SYV&
zH^Dc3^Ebmce8V@uxBTHh4B!3T-wl8E&;D8Xy07~>_|h-^Qcz_sxa%D@!>&4Qv9~(!
zVe{BU?n>jckZUTz&^4V0uX8y*xL{?4U3KoUJA2dsq{pW9#}*vxs`CTbQe%(C|E}1?
z-VA$d6Kj3R$#rP@Qt<XD`-{Hhu{nFKbl$f6Ni}DWS>)DYgB~`o^R>R@+QGGZx%IFI
zht2w$@8>Nx=LgsfYCjNra!u(p>=H0v*hDU?8^QN;uXFFCG|r?GE~@jmto@<qYw*5{
zt+B^dAGT(X;Cxii9;LnF)o-vx(b?46L@xA2ip@_fWUup7c>1*+I&uvi|C!eMlIV2J
zUR$~LCX+Ott`kzavVO6O;ELPu7yr^<`H%e%!B3w+$zH;N92b4#;x4+30-((L8Rx&9
z4b`j)2`<JeD}tyVqAcYEUdE~&l9ydaItH@xN=C~{(+>#F7EE-utx~Yrr@~|Hiz(1D
zQV4P_okihm2e~%LzFd&o#1I&p?xzMzS$?kA!0i(@JsxB~6b>z&<tg_rMiZg%6%P)(
zVq@%X1}V#O-Y6BV6KC@kxt75SV{y+S8A-JqJ+@#OM=CeXj`4D(EZ!h_Wx2>Lh#}id
zoGuTJrTVtYiLRHtoFiz8&;px$RD$bl+8&%-S#Gh+m>PC1aKtvjFH#U}!5mdKY{gy;
zn;QgHIuAw8{M`Ctm1WW@*IZ`TgX;^mT%%i#p2~|e7fKA3Ykm9@o44OASStI}el9kl
zItzlu1{_eZv0T+&wK{xl17J(SV<p!?<j8U@HemMZ<XFiy6*&;LR5B<Q*v$T-4QSLJ
z1FfCUrYDeouYQ2-lezC{k}k#yTh~Xay~f~tRH&A#n>{u@DVv;&J$k>P*Be5pC<<cZ
z2a0{>MPJIG_Na0V9Um2BHoEll;-ea!t4(x$R9Q_@VH4~@o*l#nV9iHWa*b6##uXkT
zEwksWLE`nz{FXWPUW!5eYp&Yy91O_Zlp?Az)Dr-=`$RyNL;?L5^;NPd26*bG*fa$h
zC7V+8t_$_qPPk3q2iiYu01g03odPm20?_xa@OEkjs;rvJpg02Ac9N{;AStc-PA6>Y
z&!z8M)`lEE=WOo-;J32eyJU%ScP&{@pxDvGHEBY)r?bc^42&%cwkU-Ax<AA+xe}y5
zX~-msT$6iO(W<wc?L&q9yJ8!-fAQFguMLsq28O*12X&QE5-Js)1S{hW&5V>Rb;K5O
z<Hy*avriosa?^Jg>D-U|$VPxDL%dCxTtneA4dTaeJX&-fMduPE5PMUdTVHoNS9><O
z(yAiOoE)n6A`kOe6Vcf#DE0s)Q(RUXviAph9~66xp~#hzFk+O~q`sT@xuC)pj0y;X
zvx!(f;`BYL6LcVbf!bx|LlB+HXN<jDaHXR56&~X9y;$d=jGbgGKj#Ra`0bCvkN)>R
zY;t(v3tj+!=o`P0_@eK*=N`U;yxW5KQGGXRTabRu?cA3xg`fEsf8iG>fPLe}4a!JW
z`{5w;7QWyM-vkdo^zgpzCQSz1dFMT>2a&60e`T{*mw6VVn4e?-4y`?wer{t{kiMtw
zAVYt%*C=w$_O2p7pzl%ZOEorXiot>>6j+LK?NuKo6E2ni^fn>(n%Q51_z4=1@C%cY
zv-F)${TP62bPTQkbl+U&KLsia!}%!j?IPD`a;bfP778!4Bebt4Zp?7wqVT}a)tD4`
z+$TPavbA$rB}6{SuFXD-)-DF`AG7&W{qWvyB25t7b!{K;ynACG{`ziH8z@`dH~hFj
z?HRXcZt}$NAbRi<=X@O8=3Dt*!vDdEupu}e{CO@EmBFo!7dcMSZUr<YXk*1dn|<Te
z7dzcer64(O$+c4wgJhNK@kR|QL7>!POQjI$?6A?b<$Y(^BzZ{ptCgzKu2>9v2=;EB
zG+D^`LTyjdZZ-Vm*;;IRZClyj$PN1-PQoFl|9$u02Os;`Z^MgU_~N}!zZ+ih@|VNg
zfB)}?*S+p_v;qJp3bcUijwV8#+#ELJP+!45w{q=an`cKkol49`+R<V9qN>5mb+@bb
zlLYKF4xy{KeY??&W?o_Lzo!>+O@-Gy_3SY>9P2sT^>z-MUe9BjT`(6KdnDfc$<=KX
zY|+`*+{)G4qr(QBc1>6udf1?_6jVBQ*moU!^tSD>wQ`+iN1qK){6J5xg3aU<O6|j{
zpS!-ao9Bb}TIpQm9-V#VBYr>=^B@#zT9fNE9h9s00}#RzTgMOhe(k9hd-iJB#2!8N
zUE`y=I&b}}_ffttwf#IR%RtkYq#qMDhkfA(RL%{%Lv%Kw*r4s_Dp!@8wy*imPG3qr
zdv))j<b40)z0~U5^%WgEU?L2TuQ9H{GKn%?xV0q2qcs4CdI1OYyJ<fVI*04m&!w|S
zpl%4(d1y(|Fm&5nZe`ECJYhg(KY*7nHFAC`_%M`$oHXDfUVRL_amG1+{1lFA8f>~5
zdfFGBa#NI>9itC1on=%<qWe*}9JP=hVM(jlG)q>OfLf4nR;)~cP-A5pBn{Ti9=l*8
ztSz>IvkbFQh6tx+)t>445Xyd%4`k$UhqR6@1f|b8f=xbXy<G8nXp4rWk+brWFR&@!
zHnp$GQG!K8Nu$}ubwzjz94F4oF4(ky8)t7;I(At3-d?V<KhG6bqa~0^=H_rC)8jA~
zec@E6XA$h+X6y}{@S2jGQflmX>e_1$8x5Rw(1<pX%S^FOUKOl^$(23=2mY$GrCEfP
z`&thh*~B4i0F6Dia?PNe*MSL+%gf*hHj=B((5oMCa%B50_DcKn607Y~5aTemY{4V%
z2O<XtR{Q|Ua0tbIPr+9EsHJ_v!VeUztn<QU>uZ0sa%}q+1x~wuU~Y6?{Hd3tf2m#-
zTj}@3515Zy@dMhode}xOB+gmJp$Z!7dk43pH30;ho{!z@Vjui};^`ZdZ8*p~i<>_?
z3829dl4{CQxQlZg&bR0A;Nv`|z~B<T>XnZh1CVH*?8`H?o9|A%N|31ga1{)#8f5om
z{#C~wF)^n#wvQz!jBtoX3yY-BE)XmCCM?MRp0VK85*xQGHs06CRDI7d$9ke5wPMp{
zwfru?EL90Ojzhr)Vt)~6EM(Y#1B4VJ8#&O5*eF&x@I>0|uo2~#U@O>DgRM+h&MMbY
z_NTPOma?oG>|j&5jvS;-J0QlBGEtC#S7{x<7MVtn>aUVblq@8wFNFP9>X5J=3U;7X
zSDX!x=kg?Cu)%Y|2DQ!=J4m*B;7Pp@8heavLyTR<pXzg*JtFvNF3AB&Z9-PF5jHm#
zDfS5DFBjNkTr~3RBFVkNCPCp==gM6_J8Xo77nW9Xwe~JHp~Z~SF7~T(vw8*CmnQL-
zXk+++MB@*D^E=PsU%vOf@J;{rSDUQwzyE&t6My1Qz#HHAM);O*`4;+(9+gdh@j;cP
zT^6xeuwxu+=2Bc4fVBa1i_HiBH~;&89PYdCe)ubY^*@2U7y4t5-DJ6?bw7|6_Q>xs
z>O14o9?d33nUEp57C)eL599~b2em#*{XpPM|5YEAfbCW7t?^MvLp9B=uL<p-Ve9#U
zEPbu<1EsHIT1nxt4TFBbvki<R2glJKL7qD#$&QcVh>sF`^w{>tKYatgJu`gjshMj4
z1j*c$Zwy??Nr648tt9n|K*u7|PWHU9AP#`5`!MOM!O?6Y$~*lG6W;cw_Bk)!!t3tm
z@7`%)k4$~a!3ci;4J-C4aXonS$)_YpF&cehkO{8aedF;1`*M^K2I20$evMYF=mcn%
z1N{Um|5Ui0b>G_MZ!1EbvrXtkH(t|o^k2~S%#&T38Qz|+*pkPPWwH+7Fm`vX?AqW&
zY<6vJ*L%0^dhcWHJ-LRGfT6OajMx45-$y?3TXq}<x9++39vT}X@4x=$vFY`?*jJv-
z%bl=shgr(~kX+ZE+ui#Vn+TyKE425{f~{(oZ`xJ4>b0BpLpry1r?Z|tF67?WV=LF5
zz3TT{_ujt!MC_;9tLa4L9;3<mpuOt#I@i{}KV$YN*AHttm-b#?vg><naCIMbReNmZ
z-ji$39=m?vfIS}5c~|bo&R^5HV4*D~v(2te+@d|U_ip9B+79lW;q>f%6g2kk<w7wh
zd7j6fc$(NP(7%q7d?v2&mc|dA8UX%ZewBqRSvpY%<-9~<09Obhlw~>I=xjMste1Dt
z!^^-Fai5=Wsa?JqA#O*bAHs)=TUlz7<YOba_ECbmng8Q<=7q%LhjX1-<>#Vh^Z=46
z2Sl%e+a!MMY@-8TAP&qS40dlsHy*%-&q*;hYmfXaf{mAy7Hl*qci6@u+Ov@81gng>
z3%0C-O^-d(vf?cFh6WqTK)%g+pYGjabJ#bU)s(4y6s)CvsIcSG-r%t{ave8JJ)<_W
zz_xYRLcv0Ea&lz3pe8m2+t3`piIv>6U?)ujB-VLw*oGE+^g3typ)5Kho%?&mSlcTy
zLWLsNaX75=jkDjJ3pTTf^KGqjk)sx29Jj1<O2`7nmgU(4Wkt32TCh>}`*yRyR`;cG
z)gH&QZH2w3bF)X_fOaKUZ;!FLHx#*+e$Q<vo9)or>rkD)+0@s=tUxc<xEaj830oLU
zZY?&>y!ZBsa$ENUV~Z{J`dYEau*X)}t9uqNckiRBe(rS6*oSqUw>~N!_5;|LYI}?w
zY=MI$4jbJo1L&C0d=z1m7bifaW5haamwjd357asz&!WhJvt%{Xz`vJbF7GAFO3?RG
zh_=Fk-dpnVVmy6OX58r>{6a6opYqr3xN$d<muh19C>1qrR69Y6S<5<H4SZ2>D05v0
z>Rm(m7$zGTxn_{oeF!|aBx4cr*A%q_kmPd?&Vyeuz=15X<^VQ{OF=bknK%<v>U37v
z@MZ-Y-&@Zo$|=I0s&);0p#^6N3N!X#*rE*F6uTxs>$NE`hWm4kEsH%5LObHIDR#V9
z!6rU#2&LW0bxyNk%hp$TY(--<ht0AQgJkp0I;N|!D>e#NHae$%KJp~*Y;p@lZi0>E
zG$onz;Pxas4}#se$OHG=kV}Sjp3Accc-Co*_HnzWbDYMi?a@D*%2f)*d+ht0jZt+D
zhMjCE=f)nBWS_fhOHC@X*MSZz*oLLfv$Kg&<m%gl!=@{4nT{(|*hsF{mn3@+LYc&k
zWxthcf)ZHe1-<1%9ycuh`y0RU8}Q;6znJYr-wm041z$h9k05?ekt>$=VbD5b95lt_
zzV>UsmL?Z45Oss@@#{n%1Hcr4pZdhd;pUB-@c;dh{~oSgy93_x)o-^z{L)?z_Z7%X
zn@G+kSm&||#rr6=N7wH`d{l<kN7a6S_GKcght2G@<D<ME$m*j)sGqI!QFG;^%nyX2
zV3QZJ1=9zfoHRes_$a18&60?9$VWADo!L*&vr}@&#NQw^PUF5cYSICX2U6vOaMc25
z)n-VtQgo1sdfE?4&6y4R7?n#IGb~3-Xd~In`Q<%VCPC;o8f#eWK-!Dkg3NT09fX2~
zw>t23`);y24R|sc#5d|@$w@M9qrT+M*2F6PJ8QcJ#&QYPDUZ1-%MztryInif9P0G$
zkg<uNEbY?fDP~&iEjDn0pJUkYH}WYO9C86i4LE7C5no=g%eh^-9g(YH17K=Q;J$<Z
zz2-HqHW|sm^iP{vZRgKSWn5wNa)UzC5*oSt)r<@59i7vA&H3L+Y@jE%HMtu$#p3kT
z$~9;A!E*>((@ytRxjC7u49p&T*gDwPu*D<x*t6H*CW$?Jf?<;h?$DfD$#tIX+=aa!
zut(p1QeR?l-~-!U=g{gL`u1pj4GMLvZ*Tib7n|yQP43`Udw6V(&KLG5$9g{yR{Ve_
zE%xrMW07%1?sLapTR+g+qpo;v?KK>cd#lrv{Qy+pSZA7$;o9?oe%{r2Dl|Z04O?T+
z6}Fr$snEvOv8?cEeH1v^wLXf+GO{9pe6Nc*1b{MGR;l`=ZEWNxc(UQ*o5(;JvT=rO
zhe1AC<Y6U4I0+B_Aj_TRRD^**ce3PyGv1gtl8f|8wmov1OSY#eLTM?0d7nABR@w($
zLY*1gCJyCAh`i$Z<(W8pWTV;iLfJ9s%n5cDT3#{AZn7W|Zpbr^_Z>YpXEZm3b5gMr
zzqKfx_=+(bBo21HS=tR7%5^OF_8$g{-BwsA^@%zf#0Ifm0_U(_h+Ky&U{iy|dtDL*
z)F@LzeEk;N#@)O9s0kkX339a=FvQ-`xpgLb7~yM&AVJH5jWXiA&gtW{`3P^Yb3m2b
zFB5;@kN$Xv9d$m&+FrHL2=<qqR_vDJi9=QF5wT4Nu(4cgd*lhJ;=q@3E!eYg@b~N$
z<%GQZ#E;v-mZYC=C>yk1`d8$Nen7A_?K#adp|v7c$*it)uE7Pxw(tYRUh!j+vb<SR
zRbQH=A8!V+S4V@Tazm`!HM#Y$d3)75BOPqTN3HZF(s}Vwt-XTS>vp9tK}yBncI+`X
zeQD9xWO?1NBG;WPqg6emwl7`9M<opy2$o5(9q>_u!#;`cR=Msva`pXqmx_;Kd#ndq
znvGPww_?5Ynz)h!Q{IuzBNwlyOh0|$3&jD`9of*3P~OfT@b#F1U#H2$!SA<O_}sBb
z9PzbFHp7PauJ`Ym3-;xk{iNn@;sV_G_huX6^5(wpT<(wGPXM7Fxn{&(r)L||+vPJ{
z<AiE+3`iBiE3NQc+%9g;6ve^w@t2!B4kVxLCqU62h<iQ;;lIvwK5@&By!!3p24kbT
zH?#2K3%1<_*Yd!&QR-Wu?>|2u=^Vm_eAvP@PuTYNINxJOd%C#ED~vXKEI8h}l$pLW
z;+97q@(U6w@v#Ta#z)iMP>qxQ@i)0n%|`0pApbV{$IaOQ7ndwI3|65mr-_%@q8w1}
zmluh+yz#klGUP(Ao$ayVIr!Z8yu`te9|jYz2-@!3QI|KLkvdF!>`3N;*ipXc$a_CC
zT^9DEt<~yKY<rzwVx5Oe>W8ZHonjNYP8U1cM;%{G9K_s8`^7VYO>}-CIzN|e=bO*)
ziXfCL27E6>uGhBA)qO#n{m3i6p`xOQ4FkO!T$QjF^o97#t;mhu=fZ)G*pUC7bgngc
z_U&hcZ7=t|PSB=NCsYdwIn(zOIh%9AhC0V_m2k}?cGLNOySy=z<D>ck5!fDsO!)7y
z-@M@ZDqQ;jdC9pp4DqvHX5#!;Y*agDfB$pChBh*jJ#Ge;D^A3moo^@zT4A%kwAU%s
zy9$JjY+$RkWJKp!XF=$Qa^oK!ee_ZIdw=im?fb+v_6RB2N`iUzOR2>^QKvyBD{@&a
zNA(Ei$!hR?&-Z)}UGM+#U;Pk#`r$|5|N5W&HMq<dGI^WeUH|-_QTspoAO8n<$xH5s
zpZn#1v$wr-c<S*Rd!1uH=M407^g%Q8;tyhvs4wK%_daTeJ_`Fi`Jl{o8McFy>qPzy
zZ5qcp*iLfYAAfV-mvZZ)L~g8e=E>h|xvyP_&dEN-N1=?+CJ-CqLC$`>9^M!Ir}_c*
zQ4=Mv;PrMlxjsg**NObdnfOn%SF{211DDd5oR5OUHi4inq^`(D>=pYWVZ-_?8BDH7
z;es;2zNXkv_ZK_XA<2z=)J)@i^#e0a_70R(Lf@V^wi(aZe@cy$k+6>BV`zWNi4>Rf
zj(ymclRj>sPH9ZHA*?q=j+?VB*&f#B!uL6zkHOO$I3C#F=N$C}NhYpkl_DthV+l|p
zO$R;;7yqs8nJE>p1_~#&@GCKbju~*(8GmEPTl$FqUAyHHT%oaGD62kc!!bCNVyc6T
z4eM1Nt`KZ2R35mEF&eD{-ba%ZbzEvmi!$Dia=a>O6fC};U4?Dn`eTri(cpBk<!q}&
z^xmUur^!WGQQgB9VzkvX8t~IveMYOJ*d@?3hEjK^#YV@kVS_T>SGnp4IME8~C^UsN
zHZRv6Hk<SnozhsbgN?2Sl4zQw)|u0}wtJoXcGJ1T*2-O1HniA$JHAT|o5)q|QL)92
zTs81XSR6f!V#`f?EBA$5p#*t**bQ3<2kp`1Che_UE1j=l16bF&OoS@sPi*bg_oWyY
z*v3<JuGm^XkhT5|e_t9lfMSm+E&M<@f=#h2Mb+4oE6V+V&eaD&SjL&wd{is9os3f}
zxrz_cz7#vyMklwP|Ab?HpuwJd*stQF8sDx|N~ib%k1aMnY7Lv#Yg)6{h5u}Q)GhR-
z*y~GcHUUs2At+TOXISu9BgjPgt&AJ034rneuOSx@p=SA@=MUzsC_d#f%f`z<*+415
zLxMx4ok4HBf#U-SH3-W+Q_v5bqC#{T7J7b`0QjOk(D~*R@!pip#Mq(;P_aRUO=o0k
zBgC8O^RHr~grv-JaqZ>h!2#h-XlBG?tg$s6z{^#!SJ*;nZ?S=4;oVKsK2+GCi_K%l
zXEV9=us7H|b_%zIRAU#N!-~#%=ALb0>vY~?Bb&kYB(xKXjXEpOm5r^=mCu*3LDl(+
z+&GvwLRiW*mu1hb&h6gxY%<Z6OJN?$fH!Pt6R?Vn<+^SYLl3*dHpZU4f@O_wg6qc(
zHUQ0H<jhlu<zpwCTpMg5IBY@evz06Fj={+lz_?j?Rl*@Zz>bdmfXFRtJ7HzHk{|GL
z4PI^?dxYYnDr{<x-Va1Kk+A41>Z6Lzt9FrF?W0cbOVR7RV~<@w;Qeb{mus<!+P~_(
z{a|PfTU_Z&J$r2Zz|uzzm0W#a>iMWm<D;VU{iM?nst=9IM;&}GfxWl%c{r;uQ*c1-
zqsd3O?Y1&@pgqoH0UcMAED1mPZWA=KWX2Ah7%(T9P?5=&WLf0Q37upDCX4?}6BK&|
z8OY$Ju+9LFqj<%laF)}(BnFdG$=r&BEl^-k6Aw81N$6ez`zU%+S$0E|8S*TOjXv7R
z9+?g#<F$m(8u{9J;;Z-^`dj*5mNpu&61!Ul<=LKPVy;YlW}0Oo3KxK~GDeS|bkM1N
znfp>y?85yXZFOfbxhkhUzZ(L-7XmQdjI5%e{-OR5oR2~s&W@f7c!H6-dK9kEiGL}R
zyoxQFT*2v_SBD0YrJfIhEr|gVwj>lTkflx9#TId+OM5@yumLa?h-H%o#)cWiL6S{~
z#w3fq2GzOH!I<3f!-1ueB$yQ<6l{2&*)zA1&zTF@Aok|%m1<igaDA!hu+q81rW3VE
z<QnXF?rXY_@6ZXvkBgj>7+lmihhh&b+o1M{6H@|q+y=v=;|9&J8iXUI@cnBNO)wql
zF?zlpr~NMG+Sj6QdHKs<2G4)~^WkgW`ql8rBM-wbeBc-P<5SM3p!j~q>HqWJ{lDRb
zFM0`l`J3PBhsx9!vX`s)An&70t`KE~rT77od*PD>ksGO0mMzY}$xJCXK1$z#WFyL#
zFZUMVG6hkga46U~sLa@EKLAk1RZNYi*cyAye!^S&3UPS>ua-+}%XCNauLLWo>_Jxg
zm3t>^S3eLI_UQXLpU=ve-LqkaPo8!B5sABB$6Y}0e_nY=?J_pWVw)u5lx>Vg{W2F{
z&jA7Xb~K%-9~eMNBLN3Bqsf%9K()nK+oMkeVERHCbb}19Gq^sX$H8YevHP;I-7`&D
z8C{?>HF#mG;p~hu8Z-YWI>-GP%5~TtC6hJAYTvStWt>hL&ULmj{;lI0kTE7D!N}NO
zk3WdbZ9Ei~?*?g)PBIi?S8Ty$dAswwS>mpJkoN4_)n5IxS>W593r_B~+D<91)E}xG
zFt~;d+P7M4`rZ<mB=>Bo!KQLE?D~Dx$kk(0oiF6BIu^a2j19_W$wy9ZgOi)rTZ_#o
zRGM~g6W$f5=P)b|`&#zA*=q-TW#1ypp~04+^u+AWKZFe$Y*pV9IaM~L?e1EYy-Ir}
z*Ob7olu8HWnw(5Evs$rfhI=bFtN-M%sT_KJsp>0;P5V;g2TZOxSN5#m%$D`->@hU<
z82x(-j`wqIU-&4f{eWKI`-R*-TO(Hxx#z}z5-lmf>WYUJo60pbI*-1eC!r&TVvmEn
zc0S?<3>y^x38Ab$(Kt+Q>{0s~K<)1b_jk{KR`!_lqAyiG%58qH=LhWX%vYpuh-Vpd
zsA>Q(o^0R=Wa61I97x}B?Hum38USU<ZwaKh!E!pxt!ztItH4Y7XqcokMrYvKp47o=
zdlrX0xItVlMS)suioM2mI(A(e7(3WAluYYe!j{W2@o<aS!a}Z5V{MEL%HTWYrYiMZ
z7vj;S*z_T)I$yzl3O0Zy5ZLOxk*i;pGhG221&y5C``CVmbPnJ$fR;Kh*vs;xtJ`B~
zKU80%huveN8C=(w7TB^YWCCSyGc?%#*YpDwHjiB<frh4^e`fpAioHr-GMmWEe_rHT
z+oNLF!1S%?yvBBly`Ja?o~8f1sy!Z(E05#r<)XT3;h-Og@u0mPvd6l;#)j9z8URl|
zeM9ODNP%-|<{|p+yb3_|#eXw(5)ZN_INM%_Pd%O}Vw7a;$-L0Xf@u{8J8{!z3WzeV
zzEI924Y>1vLi5Zz3O<v9gFur8xh2A?1FunOFfi~Jv@dv$^&q^^V1d1yeZ2w+G*8T_
zuD-lrixoG$Vap)A(R?iqma(6x`%X5RH^U|aR4u+*6|)oUbni86@{K`3b<Fx!Jw&ag
zz?2^N8_7km(+5-2uPZu7!Nxk&cVe!wY5Q6&1-VxoMCZB4-LP}%B(C$I$5(O#4wz0p
z$mp>}^M4+@j(1yoEOm2~H^10ph%4CCUI)geod2W;wC71b9s@;5)h5QFCs*;!u(U^y
zjX2c@4z8+P4I9XZrgGQIq$W?AOFa$kYl<y6ojYu5Bg<L}ktRrHDG>df=UjvLzUTe$
z@4Vxy?46Bx@H^s<{jom=fA{bHT|2*Cvd(f<-|acn<uwEPtynUuNE+sY-urX^0v>+&
zA^4_$_uqpXH*SJvaA}b>++OuLuZH)0;9u?UHNuUjZ<78dsr_NK6kK1S=k|U;_RSB>
z*>t}21KwWw;k?|eE{R+_<l>_Sqn64`onuKKV#x|JDSf&hARiQ|LzD?j*Vj@mHB-DF
zsQfEZ^Cal{DD?yUO_61yrPw2pSdu*!`>pJ8;2IfE-C+OysVAfc08XRind%AQ$8Sj>
zQL2fl*ds)H7e&p?m-<6Ui^-Ip4jajhR|JJH!ufs@>-t%MSG?d1UVYyg_f5(C)o%=n
zC5XMY_Q-xld=iv^0P^@^kKPQ0E<wi(xBJ+E0{*$gATVPXYY*Z|BefmRV@_KLl@Irv
z*5%seZyk5~^Zj>^aW6v?2+etMZ)?{;&sDLxcKwbz6`MU9K-CT&kN<n^*`5V<!v^be
zukMY%$@skrkhR#bPe_{%TDsWuMj<TPd))O0u^o}?$?c8Y;D}sLvPYG}v&3d{U3>OM
zu1eRkhAntK>G^tm2o(hjw6=Lgdt6}e$n~oBh?|Z<PQnH&e&7Ub&&o%^XHe${u$_Ya
zGlGpTaJr9@V`3vW|7@#rb@yJ_^C|bfMVmOq576I-<ZAckG0bC6JO!5%uZZwW4t@-A
zm94V^Kp%;5Whnm*(RG+umfxY9-H_lr%W_gL=)1B!FK1|%L0n?c49YSd<BgQT<Ynd{
zTHyu-yB<{$&v}6j9QJ~3xpZ(RAJ=P32X_*vS}Y$CY}igp8lnZsJhmk5KFeE|=P5R=
z^t_PU0lC5g8`Rh`53FJg%VjyT^o8UKWniq?N4hMB<l4ao$FQ9s*H-802sT}g+hX%J
z(c0tC*hCK-tmxdgAGAl2o3{z2UW&0<s&xXkHG9>*<J%9))faDTY@)k74=Dstt^h38
z*jd)Nf~^}AHhYx76UyDu?yUKN+8&p3Cv2g!#BBxJF&{M^@&jIOjUUhe^(Y_9T_5H8
zIZXrz5AR`Y;UG3R0b6S9k!&I~ejt`5!gJ=;7(TN<EbNtX3G1N7F}XH<sVi6Fjf{tV
zR0vfN4!j=#elHE->hGmBAH@@AtP9{!0hCRL1h?mAgD?tkL6zY^6Evu&nW-0u-W@og
z!WAeuJ43lbF@qR6`8n_<$7i8d7^MDC(xQ#RDJg>~PSodi{6AgAHRWQjsH-Gdvoa50
z!F0u@oc^@j6WbNr2oh+OcEy$y8$UnM7GQf&Y*IuNbkdixkD1$(V5feLg|!0|>}HQ8
z^F*;_!Dez@!$$9WZbzz`DA-i)7;GFxZZwe!GJ!$^h%DUncyG=o_SgV;!i9ruoFhE)
z_*b%v3-)<ZT0L+{2eO}~NT{68*~vOq5o~G`(aVh|On60vU<dD`SgslX93fOX*V;%(
zQ5D1<6&uNQ%YjVhU@vl>B`JYxtLsXvBKJu$S0fbc1Mr9O1cJ4~#`aUcQyH7L$4cj;
zVoe=vV&B>IwaE2cm?yf(mHL{qM>OJ6k3b5&1FueLu`RG`%?jsV+mAx;H@J-_M7$fV
zR>e|EIzLMY03}10$JSZ|?K$^6cR$&92H*A{{3-bKgAc-w|M-vZCjxF%SZ>~U2LA8=
z<qyK$_uK>D@b7#h({qhdQ_9&Ri9xvO7k*$PI_>&_D1LzDYI1A1=y@V4FZxpJql!IB
zU)qp6v6=u?Um-sr6ZtDXDvFQF;s;1)(zo&6Bj_YX;|Hj(2{vbsguUtK=A)we0mi00
z`qtOfXQ{o8O#8&eucJ^o?I<{pZ6nqz!e@tBCMRXG5*)3m$hA!D&&@bVbSkxGs4o%L
zL3|X>AP&3=(Y}Xs6}VJ;RC{gh5kg70pk5U8TVH}rP>&XF_uzk#kNzuic485!yYn&_
zf3^fm+QNn!9H}_{eY+fEJm#S!n`j$u6!#FIWMkPC_XG}dww%`$Hu-LC@2%}{MQr+P
zkjtc-53(+>NgH8TIffE69S&gY%GF`>!Cq^3a`$q}uHEFS*c!Pp{yI||B$($7CiJjL
zoW+dm7&dv<Z~&W^yAOmHXvH4M7p%w)+`Rx+<eKxU+;n_U$t~w9!0EBIay6Z=U_U6=
zP?AAZ4?3x%*9rWG(;<{e7(8C6t$K1-Y_ZW>Wv>8TdsS@tM0@PEAHarNYR+$UPS08f
zDW&f{8z1HG?XX?d9xH6n@t;ThKv=<M_PBx#<u!SGgcbkU`Y4ApckUk@HrqddEp&8F
z=bxZ+kFBz28QWg@y#%G7uj#zlD<=X;uQSv2`fhc9%GS9r4_^EWI66nHe4PG4eHC!}
zP;nRb!Mt*Hc|ZUYjy`bpA`DO{9iVo=b}e=AvbD>?{Jp8YgDp4M6`RK%T$}#j&ov{|
z`-hTA%lpeEYjdt&`qi`NY%kUxw$#Wq$$zaA6)0V7{&rP+Pj0UB>EJ$hut5i#z6b+A
z^>VUj@i%Ja+QFv9OZ@e1kPgt*sn_|`+G~65HG2&uTi@TiU}tBaR_qbCp3Z$IoO;jh
z{!X2~*25N>bK{y^-PLBNm$tpzSDa0#TwA#Z=-8{-W5GH%a%}rTx34KqsQm=A*q~%~
zdu-7i+x8{zqr8tXdu{rP$L8(ZK7<!?ZTebv*qluq)VW}5Z6r7LyxNySSOjKTx#g5<
ztQ|i9u;K?W2%j4JmA^v>)qA70SKMaTuiN&8?{5YuGt|%C)A`)-QF<>gSJk;*OXgyD
zd<T_k;fn9y-&I>Z_$YyS9eC0N=*(m*$V-hMAM@ozktobg#?v_=0Ema0GKzN-U5m1t
zK?2uNc+jzc?7kfbM_j0vc{ni$gxuz2f5_=hGhkxt*uIaJA+JAPD^1Gr7$~@g*BptH
z9f(sqNx%#Zhp|Zw0mLfUDVrZOhy+qFe&2*V)4-YAc-$=5k>gsiF^!Da+r$B`4Q0kM
zHqPYc;254mH3Xu=PFdxQjV3#`%$u&*G;@2F>f+4Ty~m364sftf1&|X5=>;2M-LW2M
zH2`A6`Wzy+S=*y#7%LBF<lvo?YlzH&O>*5wsxf$oI;XlPqXzGo^JXh@C7S@9aLA(b
zz}SE}*2%sG);ZUe;G*wYun|qnz=3PB3Boo|z;l-CaRK9*u_Ko_1`IA|(RpOL9>q3p
z*gkiHU9<JgCZza1)fC7)*$c^no+ej(HYYcf6V({lC^oK<0fYF~RB8xd06#hG^Q`p^
zxGy26zhVo4?GbfI_SncZi@oAgP;CcbY%w!7!a5ghYL6gt)q=6L&Y6dnu>mKIgdp*R
zI<r?d{Qy)>cl{h>o5(T&0K{F77&(I~+2jXj_A|FV2ZjJ%`<mCmmweHi;0M0{`{D2W
zo&OgF_FF&oiBJ4Ce9vG0^YFcY?LUI&-o1tEcU&XeW1T0mt5Iq*OwLC|(K#N6K8oxU
z+cWny^lp<*AZ)}(VSC^e7?6sO+PK2z#YeIIVGRnDE9#UdYB-oo6ER{FC};9fG6@Ch
zKSBDj`Y5qSa6U?T``IRv>r0&6r9LWIKi5?cQ^6)WXY6s&m#AH^qrBK&*&d0`$NA5!
zegJ*{{@!SZ?ECkZ-UQM4M0U<Kh?p0iCp);d$dtGS+c*p|UY#l6&k0vEa6PR-k{{3~
zm6}5H{@k2-wFxH>Ok}^D`~Y-6A5`7#YI~igVvlC8S?pE%5<Z-*yme!$@-Yv$?N){k
zCAdLzC{O|)L3O#ext*-$(FsDOWEms-Nu~bMfFQj)qtqe9cJUwJ+l6bHYPGoFs;*+B
z_RPG|v)Dp%-|3VnCGBb}iY<y=PJ&&rrBo6D2gNSfe7kaocd-F1uvgfmJqtDstkFc5
z$CjAs0o=V0$+d^g<SN)Wxhc{$d)N%SVw3h~o_Piyd+afI_@Rg4lb?K$CU7n2tO-H;
z|33ViAAw*0;D@OAy9VnGTh5ly=CR|J*02Rm4Cv`xudnSvuqV}dV~_EO+<Mq5x%TW;
zbe39s6ztI0V{YWCNr*vouJ)>Z>B0Sk`A0wYG5Dol`4xEozx;WsIkS*!O1270vEjL>
zqxZh|z3~2@`#E^myWRyq|A7y{0}nhvwSQuCiL1HPiMv#6Uao@8%T@0^b>s>iY}A)h
z87II2Kj4!Tlf!n3O_<I_?&hOZu8kk)_9eAP#TH|?FJ<*njUO<%Hhn3#K1%ML8l6|z
zq+Y?Ay_($GzSQ{7g&$by=dF)YY!m|tg@GbUyJ7=p6N)`H*v$8f&J6pSZ(q@Q&wpyH
zTCc@*whFeZzL#hf^IAU_KcUIC+#HNz@v1?8zm01R;!7l$%$XguG!q9z^l?Jnk_K;>
zA!0K$lwm2$Npj$#ivUn%P-fwd4P1aj1AN|T2?aF`l2H?-z3`YLwvC?8U@f~;v2F(!
zkPAWh;1#<R9!`bJTeJ7*-oEe-Ky_`#wvHXz_Q;to6*m1KFzkh69XYSI0QF35;N`qD
zfNzQd89z4d7AMtW)AprYm2VqpaK5GVy)px?&yFK?${2QX=Rl88g~+wQVI%%7y*I$3
zog7Opa^D`r7W&vzwpqEYlRF+igizUIu}}U$9h}_TVobcE0*=e=B%5G+^w-yRl<WV(
z-k(6tmR#k5=#Ds<`QKZ&234s_b7=sfSqQK!Au(E*p|NPxjH1CnBQX8e0zbDKLmQeW
zKX~p3HW-8Pv>M}w!3<u8)mR|Bn8d?oG{OvGkPs3Q8cLK(s^Q+c_s`4|@y;G&N1QmB
z|9?yL>&4ZP{<@hN=bZRrPbbcf9ebm0Y@*17D50l&D~~lcm=}^V8Q^<u4(i&0c5(`^
zJZd}fTyh3yP`WyKm59tGnW*Ivj$rG^qq75)KBM6|zvOYG=s?k<D|1AWo@W<H+LK2(
zK-V+cfs`6~Y;9C7HcIdB<q>&aihgICOw6z?>iOYzdf8s!3)vvF^$RwN<PpaaW7kGO
zhi-$j1JJ=XIC(uN6GFH3D$aOrdd!12x~n`|`ym_Eqnqd&Uj(4<@RT}69>jVGscy(a
z7oTn3An_78YicEq%|^!-$uky$icun6b&?2Fj1}ZLh_t0he{5e3#3OdN$Xo<3#GL`;
zE$4-u1huZ@sJZAR%}FRl9La$#PA<i!Hjj3=Nm>)e7N`&`wXZnmi$)xAq^e*8;IR=l
z%_Yyeu~X+b=wc$<B*KCzgV45;LoSewVQfOTy{7Sz^CfkN7Vaj8A&%W)!()*81=u$|
z!&g$!H%T7JAqzI1tI#}%R@r20tHVa=G=@yzjgG((z-psF=?c6!gK|KN6q&KHlUO3T
z>}8M(q7ruDIqBX?Ukp&5nCDzeL3lpMZV#G^L`sdqxxc|8c)3Qz$aIyt3hC}3*!B)v
z5P1xYB>=yu()<E>?C7fUN^}+Ml$r_UQR$kwcracUC6qfwr4!p2x|?9hl02U2nuTY0
zz7~+n!c*qCwGYwpT<s~#BZxfG*ijyNb%%INx(1Am<+0`=V_VTe5MGd?I_@QPO_rT}
z!R`D*`+c&8$3FH6aJsz)fA*exz!t^joXpd3`VST|_5nV;OEJg`HbRlPdM;bJ^?F={
z;By&^4}iIL?G(QHtG^2Fz4u=DxBvFvQn6Nj38QD$G_HU29p3?uzUwjYd7t;iT(Ek@
zH^!7ekc%!+`lO&QgDewdqp&?hNvju10Xg7Z36UQqbiJm@Q5&V(!i$Zfw<+NFNG*~q
zi<3@X3(rL+WM@HnksY~CgzC~*WFpVxl_Tz1mslQmdoZUB?KFszwu5wqjTS9<WVUHJ
zB-53>+DC6+GgunQVxv|}*Ce}e)b`6uHu8p8uooL7HLCWa_k-*h%2*s2sS>5gWdM<p
zINwz}ij9eE2X>Mx4CjYt!$495MJy&P^A%vny@mv=$WA~buPl!}dDV1=6x4?2WS1Tz
zGd)X9j2ri0ng)8;qG_hitK=P851Y#a^Te;6WGH+A*G?P{bvhNjJ~#j>kG?;h)MeLq
z)#g4Q!UhMh(J=A4rrl$!1N%bVcXRLd(050lyFU9q^nG6EZ%|`T&HePdMP|!ADr{~t
z+y?&ju=!nDdvRi_;^gLD*vIL1%L|Pu*MWYDB?OyiMI)o+f7f=UtIAjhdlje`LU{oL
zM|Y3U(KR>i72Ti&%6YnatUmJDzAw-fblhHE8{MJjj}&&*T@qF(clsTlk(V!Do}QgZ
z+a13r##oKZbP0837|f~rz=IFcy&jzY#bbZxofhEH25dnOo8#MTT-xmDMb8QMyJExZ
zMlJ9PwJv&j4GZ!}_f9T1eFsC!^L7k9J@?-|EqnyK*`y<So;@vHdxDOQf-**v30GXU
zwP$UBrC|%T9-1y$C*dIWt~@s5G8^Uk4^Z2vmgm+N)OO0-0mF7k&r@B40vcQ1+Rye-
zJK<?vjeW`Xi(T+^YxNxDzP#A7au7>k!g-IX1^|JgZ%OFFLWbK`G13Hc@!e!K02sbE
z*f;>6TbU==WpxdpO}XImKD#Q{{9RX^m`EB)r4uPOTCzfg_d{i0txWkfEezZ0c`k6;
z+A4jWHy5}sn5Ebio3?A-+$_e{W1}s>i`amiB~|YFoSnm}ru$Ls9c+r-ut^jQoxj%z
zGO*RR!6x$3w>kRi71ML)F>flLkCrRcVHf9vVp~Z<&7A98;4EJCRx6JDTN%&sPp?03
zUi}%*8<`+^4dN6B-a>42&80?w=CIc7PceiUww^Av@>pZbG+|z%>rB@wY??+RO3^b;
zo#JaL@b-9z?Gf_a>v_)(czNx~<Dwl%vQq7M{z&BUSnm4$s92be`vx07Olmuz*whYi
z1WLb_!g+1fL3urg9axgbgS8Y6$i&f_0F6vk*p;pec3{y)d2A`U#fW3r=JM!e0-YhJ
z(**g!hp*BCMR4+<j;R~{P-m1zK=9(#2p3Mc1^_*u$C4L3n>`E`6@t!YjUZ1+qc6FT
zB;~Bm+2mPmlG=&o-1Ye1U^%OOiaC<Mq1ZdN)dd^1ulPCB#~vjYc;dN-TyNM1jwEGl
zwS$$h2-dOK0h`AJj>=YSAbkf+FCz6ZICp(^x)Y7goZmejz{c&=cWSUHUD080ix0t^
zlH`Du97=S5)g5UMp`@IfVN-iKXx)d>uGok!nqxiXdAnfqwHD0j2n8DzQEjj@HXLHK
zG)0H7&FF^ht2s7~l+L{HA$_Tg)DF>5%d6(qci7Mixp&d-wY<*hX7WhbL^sB~tZQ9t
zJ)ZM(iuwY^jv)8G$TWz3oj%-p>qYqe-}^oIU%&RN;Qsf&Z~FYZW*<KP^FJSc_=kU(
zK5Gq%GH<Vos^RT@4t3wIo6FR1TCmG=2+E7&>FFsv{_&3|$A&s2l#Y1K^FRC};TL}G
z^>F|DPI*x#LsuSKo_F;epQ-y~HGoPxNL>h+<<-xkOT0c6og;eLM)i3fX#3kfIUA;Q
z8_G^6em`O-d9vp>d#}yDRyHczGj@(Gn;n?jD5itjsJT35S$qht)&h?OW$?;1bOdI2
z&qG)P0Ov5pezLvX%lp#GjYU!@1+58yV_O?mk~gghKq=`WT~CV%LTBUwZj8YogAaM^
z2A*{{zxU$Mh9!9fo*(#jo;&Me0Kd!L|IlTUFOB@;c>_r@+{n`h_B~|zoMaxF;L@cF
zG}rQuZ*?T;vy!hV4l#9<;1N6RAnktsmW=oF9PHX|i(*at0O~*$zge;QcKRNdYXU$A
zTL>jp$5HID<eXNW@z|=I)pGtJY%O-9t2)CM=<3@&mau>gKfmcsZ<-v?*We%ggMR?8
zdCgD2_kaJtflvIzPlS^TlPs*)_N@A%zy8<Zfd?LdfBn7R3y*osV=AovP$wQmgu8c%
z3VS0z?e)4ypurezJIMW4!_e)!#isIO*Ej86-spRSz3p2anTyz__kMj3`gi~C-@$+S
zPyY$N?(4n|p7f+A!7u;nufn~5_Fj1HPre53yYD`D_OqW27cQK@umAdgnV#jh!oU2N
z|8nyE-DLOlj#A{+mwd^Wz@zWD177kmA436gPkHi_;g8?)7I^JzUkfjL*~{QnuX+`1
zHXC{d&#*ap?P5RHF6Vfj;{wFDe(SfwZMWS9fBSF$Z5p@o0glkE(xs%ed=B@mvhN+g
z!QuBj_hUIEuj=eRtBo@K!Osi2=KET*k7u$`P;_TjOF?ugb+8?@Q2^Dst&M8!#96TS
z=;puou=i~HdF|)Ya|sS$U&59pq8xw28UWWOU;N2r1HDh=dVLSG9RSQb6J0)deDp$r
zzhZ7?p1imsV{x9xTyx!0N3ox?+H$Dt7K^0YJv5(owssV#EjrOckm!^0qJ|1ikt_HD
z5Mp^b5@&k^w-qHu$st^@0>IIn)#eNuN+CHKOM}f`cy(+J8_{W)=dQP{C^6a#2k|4G
zEq8t2>FcniI{*6&n>f){tAfqwF73wiOx~SYF7Vj!yq{M;RM=*8_1JVvkmX)3TmQ6u
zbl4SJb~0f+*XteDa0pv$YAp<%Iu9P3lgAldgL_$5Y>}grF#lH%o60NXTt_QIC&&80
zky$NWtGxPN*H)_vyVn(8=OKBSkb6U{bF5Pi_M>$m8f-Anv0n2$&3N9*<5p}?We1{e
z_nu?R9c-;GnLIW!FnX*aui>b?#){{aOsG5#b$t!hb9MB`^V%qH2Rt@s2U?zcnHW2E
zKp%XqjSA=CdB;Ze?C0(bbRC?o&_meSfzjJ2#fA?wu><<uV?WDtDdoCefi8^MLqA{t
z3jANRgXzMbX+A;|3b7qX_Z`;&;4~wW4?a5kx#Kh=SYQ&L{Ye(n>A8hYw=JI^w78|@
zF<(ifJ~;r9KhZ4?nf>IbC#_{Psywd5w(n&^YsG<!JW`OscI1fNfg|%vO#n%ku}y>x
zopj_Q!$|*?)Fm0qgg8jVIyh`Ojm078u#uA(b!k5qY%=bG4e7Gy$bF%UVPBV29_m0O
zx=H#VvIAq5mrIXLa@Q+eg%7k?DHC2RXfD_=5<ez&0<%Lgx%L@dtr&0_YZ95TT;S-q
z@6kOL?BqO^T=!#Ey3%VCr|`+eK}`z*hAndrb&OsfV8-+8<*}u!@w|g=5W68MrBvRD
zE+eNtLTr{hG_t&AiSpLeN1We1Il4)Xb(w!EwqZdYF`ZF#?fbptch};pdmXDRijA7)
zMzEQa8EByiGA~L5r7M78Qzx+2i5R!YgXx9;DbJq9`}XNRZ?G2~{THLqDGd%eM)@UY
zkmtKS?_-enYrbX}$^x|p_~=oB1|)J+Uf!?{!22I~KRoH~CzDg@kKg=9l|v1Wix+PK
zEg+qC$>cG6c~qI$iX%qalRi^d%yY6MmV%0unRP7$vjeJ2`ux`vJ-n!vK*(5Zl<N5b
z8>QHw#TG>-5Zl;{ZLDn+s2zyK4zP(D%tjUaDT@}0-D7ifQS77GZj(oQo{PLXc~o5^
ztSe0cG|l<e_<YxzRN{OGPP>y~G?^HixryfZ=kLjCR&e?t-_B{qC`AJ9dR^&O`|>Wy
z;#<q>D7(D4zJWdj%h=eqN9Q3b4vX^Q-nyu6yu;>J#Ep3rtDOhplwD{8Sf=JuyYeCM
z7w{=1+xEP0e|<Mq2OLUC?DQ`)qHfz_-zq1ejtaMS#TMq#qq@-Pu~pHf&DiLj8Rmy#
zuf`oC&xMr+ZF`5V-uWHa>15dO&>a8|KKRh|_W-2>!c;PM-gOr_lGQ2v!1UYuraw)+
zLGKV57ksZV7P;?*3%r0AWS4Po+-Q%kO$)^|PZ&o_bA$bv19|$s+it0y^}ZD3T;alm
z_-^pLYuB!V2EyWRgnMc~kp&F>9T%thy^;%%BUXCnlJ`YShlG7>PEHIvy#r4;$mZz#
z&scVrYPu1fU#?{gI6lORJK``s&->o@K61)G{P0!k2d~lltk)Y#3537<bg9hp@(%Uz
z)vL5<fPJC!ANxV9_#H9gqB}a|FI~Ds@OS&2rL@Gp5F0J3ND8>!c4rvyIKgp;V3F0h
zLjmc9_tu^1_?)@v;zgn>(i8i<=bn2AJN_Y_3)7#<6}^Y=b|!!8i6<x0u7MURul6pA
z*mql_J02L&hvTFjxYKVqzo6$72K?gp2@8J5zLlp|PjCA7@|7#L&=5t|@SuOsspkQT
z1KisvuWMc>yq#(7*ijn=oMtyRHb!wk2V2h$R5psiRW{1+(y6d%dj%}auv?R}QD(ba
z?67RxkI_B*zNLM35BWFA{g>!Ezb>$U55x~2>hmATv6uqLRwcA2oK#_y)hgNKMZxC!
zLXO50VbFF}UQM^-ulGe*Fh_3|<qAzZ1h9#{zg|g34=(DvkkB)e=WT8^8fr%9N)PDD
zjK?kl+ZKWd4b5g_^K_CIXT{%6UUG-7LxXL#fZdcy9fPioXT*-K9m8T{ci3jw-H|G6
zyh_C{26Jq19=e8wEpCl+d+fyXCAuoj)zQ+>Rpr&w4WKWt6mjH?k{PjfV&<@zE(rMC
zG9Bg7MGW|;HND=T!ZOck(gK~WgRQ(S&=s2Yp1cyzeS6~Vf5))3?MBxnJqLc_Thb-P
z?tg9Vz@aT}MP3)=aU2bIXs%t9S9cD}M2*es67f97N?woIAeD)>-RnY-zF`SlZg}3b
zpVvld|6b420yd+Ilh=x;t-LPSC^&{)@2Y%iuniq~4GhjwGH82wE&)5k%zoktxUe`>
z+ahscfiVRCh`PZJ<)Nli63GoxR64OkY7^El2L8T^D{@q0YKZOha)3^gL0*2iI4!qt
zM}Dc{T=CQQyeEeizNnzHcsotbX{XgRnIA9}(2gC6Cnvn<xV_2_*UhjdE3uPF_iCDK
z(~H<Nu}23LMjN6tY)8&op0wj6{&YW5Rw;B^?vmvCp0Hr<`Q2$Ee5<&o#fTCAhhv+@
ziP*1A*bpn`4aXM&&V8CGzdH7LdX1y+4I4RJ1C2Fg%tNku@+Z1QcK(v1c^WG^;t(6|
z3Z<=~6J59DT%BITCT!QXdvgA+<OOXjd>H6u&CwO<HhHj4$32aIt>1V2!h3R}dGLjf
zD-Kq;Hqi}vyq>V-$i+J`hxh7a!*tv7%iIQ2c;E}(xF;H7uJHX9v2MvpNDKCPl7YlK
zCXsHt(>*(iH(a3eRC4-bUUy6zgV^>;*Fmu1%l0G_C}-Cm=Dg!X*U2Vt_w2}CO<0ls
z#B&Hl*A#f+nR%|*_oU@WE6(MeC@Od*Jl~N_u)}|PbtaiW9-vH|(n~n!M8^X4r+Fm#
z+(f~4jj^udiX5=lGN&WiP=5AEFPg;jfphp{j&qh*E`oXuv4Y5FX2)|Rx<;Yv<WQLU
zUZKNOoSt|t(M@=c*pRN2zm#-wAP4NVtL!Y^NFIEwtB{E2YtB8t<pQxM=s-nm)7UVr
z$y%^sS|MCEzUy&MgR2jp(m0CKBa0(|<$$NBB?St$A-46JQx<77Fu!zbF8sV`V>QZA
zkN4hp@8mqXAD;cZ4~HucJp^xk%O6)S`s7TQ<Y*l^{oYQT4;(0gi{kiwMRi9|4~gd+
zAikljk`qYm!0E^i2Gj-Q=@v$DT(3z+&<-fislLFDQ%`M9_(`<gio9-k>^sSGKTP+-
z9X}`&NXL_j5BrgWG}sPoXqWa*?7({ZkIExP)*~&qBRjU4=aI1E!uSQWQD_I8E|K0#
zE?$bbB^#A#?y{K{b~4$|k$5m{7(41YIm}QdCIdhzlqPJbi}>z%x<6&xPBO!~GpvPf
zTV4P_JHWPolt7CW*B_wg38rp3;d&TSGh#ig>6wl;2zBeiil50lNk?{J#SWFL`>kL@
zo?|}VEj^Rgs}thSwdvj*lz|H+Tmt}C<xW=o#(~&yw!u??vV%h96?Y=U$a+g>xOUss
z5V-(6{u;wPa$I);%-#`hkRyaLhs*Az9qrH#_Lj$4ccgNV4BHC)zLp)C?QU7kcfA(7
zpgVar_yg@^6yD=^-7UKkC+Aiise^o{Ij^*1U)$Zz9Dd}~%(>)sM!PzFUpwsd{^_uh
zzBkwgj}3}V^Vksw_RT?sg9Y?d*fm&F0@l=Fjk3O%`PIsH{?>HuVG9mhMb{8&x{^&T
z*fg-J#iq3nY{$OL&v6{+9DT+!o&g{K@gEOA_G3Q=Kl-CT3g7V^-vJ-;As=G(>d>y@
zJOvN@{-<yMQySC%`t^U;9Mq3`)T3yp0RH<CFL(jX@jcJ=_@h7iBZ`d2#fD$|wO@m0
zJ?mNUp&$C8@RFCjgre9ryTC91%CErB|NQIV?QeS<{K=oZ6+ZmKKOF9w7A9W#%2&dN
zeb|SQ!x_i@kN@#Mfw#QnEt8}D?X*kbZ~o1{NxKwYic#`{8T)$mt6xpmy#4KOr}kHV
z!56~q6V{LUn3uqN-t!*#J74>?@Ub8JvGA2&`IYvb^Nx4E6Mo_~KLJnskf*`jPkst5
za=+)@_s~1cW}0{XI_Bd4^<RglKmF;nYvPN(@C#`im<I1RU;lc_)BpRw|NC%pa>_sc
zagU=hJnFVb!Qc5ie}^Le@3`X*lGh*kksl#vx;|>Deuc>6m5D$9$B+LwVgJlmyaJy1
z#3#c4IANr@;xwmzaC+9h{4+j-Xz+dC_kHlZ=RcozJ|Ugo{jPVyo8SCqc-`w>2VeH8
zSHXYt=`V+Oz3Uysv!D9OpM?K1;d|VK3w8TzzUFJ-dCz+uKUXJyA#bqnfAz2a718JE
zPk#p7e*2@~>n1wkv+W=KqklvT7bq{dYavW_`3X;WJp9jp`+uSoMZf)9zeO0n_j|t=
z9{bqG!84xuY<R&7o)4e*xu3(%dRZ*m%dU9z-`sQ0d*GqVSKvSX$JfGZf8r<L=38!|
zasPLp_1W;kzx*P&`|c;gqi??*eqf^S@4ev-@S+#J7#{uTyWj_Z@cU_;U-G423b)*R
zGraueFNd3_e;=Ok<MrS4&3}J-rk}ze{QmFJLJaPdxHR4Sr62v#9Biq&<ZV>WmL0=%
z32l%pLg<18waa_gR(5}=o{tiIM0TLDpFJDZ+RxziytSWR&(#hLgMB|{qf%p|@cX*4
z{k9v?%~8~DKx03HV9z}p)zbBtjdFBTx)R-b*kq9lbv?j5YskUpQiDzXKm0z;^C9yK
zJpx}tHB-hL=|Z1Q*2SGcs}30?8ZWNwL09tT^SM4+nWFJxnGoTz@p++buw_E8Tm38o
zGrDc2({Uov%k%cck^d_f*(wU4*f3``xQBF$ZQVp#_pnz{wM}~;8}zZ6kmWL2i7uUi
zyLWD}osq8gopPu<Y%{utx?Sj|bdR(hHdZ{Z=sNI=85@p1UGp)z0#tO-c9n_L7&XPl
zFGDLcYKARyWR;i4qjc@?RF$*Bc2pj98;{Vf$Mc*mPq~-J=yl1-M3-)Evec8uimnyU
z8Cy@+D7wyL^K@5iGQm|NnHxLcu^r+$h~5I6&kj^P&#f+T;kK2NSC1WL@(SnBrDZ!X
zvr#IKtsQ6{Cc2HQCyy<*v&ic#Z@#w!(CB$XSB}Oj*khyTULG~-J-WVEXTa9V<04&W
zJg?hZJK%XvDQFyaq{p%6(t0(=o}omxnoQ(uDKqpaYaVr^#f^Ee!-UsPqHK5MH+d>h
zicXTiX$A3Etu*gG=fp;b5HcH`^Eq(Ne{u+J#g0&3{Q#P?I>=6eyk(wS;ixRTyrSmQ
z2FlGq#U(TIlyg#Z0Y|C^A`@Uu5oFl*GO;ske7)9#*=;%f%%BrFNof&QoMRoaTgnOm
z(|g25x<$|jE_$rkqS$uHw+)0XQ(kfU%K2enw<F|)jV7I0bc^zmqk|xkBa5QWg|0#9
ziuWNWozWHSc^_81`!dTjl?pazC8MOzNHP}EOPPE}pr~!^oSg9>dB+i(Vqa;2(nQ5O
zht*K%3ZY<gJkJnhcPP@8ZT(JoPLb6B%mc(0gJ5I2DbLMT15Uo#(G<ll)bbdG=b5kt
zp&JB{)MM%ZFEX*0ZMqcki&%F&@8TlMz`H+9Ue!Sui7p&yor*oAbpXyiPcJ31468ZR
zr8cTzvz=F~=;+#D6M4-duPt45R|CEP>{B$JGhKBXIrAJH(S}XlLRM01!LUs{xapQl
z@Y0vO7%pux{FL)-l6_{+9(|{0i7pfZzk9IrAMCq)pnu-=u6L31_-B9SrzwijZ>7dR
zAK8cUiB1A6Q21Z}%j+qpvD$c@2jTS>E?k@(;ygaht6%KEFsG}d+j_;%_nqp}nxAuI
z2SDsVDg_RMqpRtX+NhNjz~vQa+X1xSGZw|R(|MKFu-I|>EpG=vd74=sbH#IVXH!An
zBz7Qso~w;Qn}hsLVDhT+G)T=9#ZJ0J?U|w_^_kn+cC}IZ%q4kDEYI0=O$xQ|IPi>Y
z+^}ND9~FL-bVevfQn(nkLwA4T0x{ZC){Q9kw4^VJxJr_x<_Y9dFJt5dm;o0IBZy7n
z0^&MXC=2{5ud$NXBD361^CX!rpq$Xo4B&tRqA)!xxi%4hh8yw_^I$Z{Spz#<kdT~P
zkqDo)IopND$X5lGw4KZSpt*ncZT{T$d;>0nP;5u==-5K@`_V)CsE#EeS`sXGe(2!x
z*joCBW7uTuxzktgd<_CpM<g!HqeB`UeQ3kC5`CW+X!_vghv4*dOXuqI0G+_-fT!`~
zJj1Mg;&TI?vUn{<k)x9tufyN)z;;?}ympO#zk2N|MR?=)hbAYvF4*IDyyw-c*XUaO
zuJ|<t9o`3>z}N@=j(>O__JNM`Ad83i{oeP!mvibn+TlHLXT;U%{&)`JMF%xnmhEms
zMUg4`9v#ioXS_FIo6b9x^KmD`9zRe2BA%0J;o$bkiH!>-N*8oq`UQ2B32lF9!i8f)
z=Qi?5qxJDTbdujSwcYo=_qk{D9<EH7apwV!9dV(980Q4nCVE}H`Y>U}-<02Y9@32#
zdyxLbn}=x(#HVT8#Fx`+u*n;vH_`<chVfs#5A{F&j*9@e@PgOkHF)pKmzfVJbF=`U
zdL=YJot*UdKXCuV_XmkyYvubxm*M^QzaJj^m^+CkSEhU2H}MO1Mcgu-hv#D7*q;?G
z7QSA&a(R-0hiO;AsoW3GQ`y#Ma8FM>HkFB1Bij7&mF{^v+1SrncfEVtrJ>v#&S<k7
zmVB1;U~c<c``>#u9JN&)I}bAV&_1ElSBu>TE*?6+M;rf}=XCeE)LhB_`7#%|p1DIc
zYtga$K6OQ&-tB_MFBFiqcosHfxwa#|)^0-)y6b0Jd=MuQ5l$RAwJiJSW^wq&LQubb
zq}O*o@K8P^l!ndSx7I5uBIF*Z<bw(gHrL)lDGM*<{uOqBMY^V@jS4D3c640E4mvg`
z;By;N)Ag*_hz?DAMK^E{XLs+GuAcAYcyk7=!j_fCjXWNb30S6Ug{@JN8P97wQs}0Q
zg1waq&-3$QThe?#xva7AuS%B|dyB2^uiR6y4X}Xi5cW_<aWC3|MqafY7TPO20L#Zw
zx*oW;#in{*?FL!Eu3t1FK3tDH!a;C6d63WAw-uRd?5jRZT6sP6L}_=boW~Bda^AH;
z@_B|$+Er%NMtOPlyOV4z-VVTFx@vo6o2!B5at{L^;DZMqGGWW*v;Ip3EGa;}<b&r0
zr;=7HN+bq4eQ?2?@<LNot<;0j^iLz_+eQZ(o=eda=p2h2F^C?tl@vu~C$}uxMA_j3
zoC*b@(F-Mnl7n5+5|KkHl@xX4$WB_HfQx?;cEvW-*j7Ua8@BH`KRiXe?0LZ|N(2l!
z(UUrwvlMW3*eoSTAotO@ci3{tRgaE8bl~rH9KmAP_MG#d+V@Fv;tJgpN0BSGf?d9k
zOh?KUJ~`MF+u*S!PWb^4q)>C=X&Q^8c@(;F3Y*fmVN0pVgr?Cz>?;XC*(Zx`HoA@M
zFvZ0b&0Rlex*SdMAqnLRUAg#oof5I(xys`pX<ib`qteY|<7oOsj>W-Y^E~%C)+uEG
z_BDd#3g>8JUKC<^E~%=ZgN+@al8z+99NU<SOpJ5viLlGUG|A&wuqED^V%Shu@LfO(
zzH&+#(X}ADCbsyNTW*EF@`)c0d3U9HiCoLV1?Cv8YA*oiSl7Jh%qNaqYoC$({V9Cs
zcm8Ae-QRr!T(_knrvxuTJoM0mWnpIEg^;n*rBvG}r5nl{?HEcF&9CyPbRWb<?Nyg_
zq1kk4pa+TBsDUHciOwRAGoCNls2;Y;4mfPsjy%Jn*oH0gcfB6(jV7~e2ZGqBB&q$N
z6d2a@WLg+^hE3#gaCX4U<G2^P;n=r~Mf3Dy8ls)-UK%775J)N@#78;*bC#V@k#@a6
zPR_x<6Z^>v0F(+SaOxjUGq{%&i7S~$>HLgqn|OK5S>%=Gn-Xy1QimX)xQ2yapyGvX
z?^)Fsc>3=RJ&h12QUG2g$^3;=Qp%3NoGW_b;e$KIPW!qOU9as(ZVgQF(Vvh@ni>t7
z**AeF8c3o$1KM^_EHNI%=A%b_d$lv5#RgDg3w6K`@4AcD&Z(0Jd)M><XxKiZ>k(|d
zh~O6cjIIr~HtJTd)xfAHJmCrCK*fl3#PhR1`?K&fKl3vbZU5*;Kbm*0iB6&u_3OXx
z>)_q@+yg)G{ohYf!H=5G`LpT!mwnln!Q&qPIC$|#e>CO7$0%&Fqrgt__uYFh;d<_K
zp9@d_un(J_E#FCb@&DO(e>Z){h34P>?cavCzV)p{&s%Q31Yh_yUjrZhyyp?7*T4St
zlyU|!VPyFq{J|f<r+@mV!^eO8$5M3trAs$aWICSr{OLQ|!LR+=uO-a*FD_DG-hJ%n
z%fI}~Y1}V<@r&SXZ+jcO`Au(v=RE6KOczlQblfABJMX*$p8Vt|Q=Of+zV*%Igva^h
z=X~~O!$16o{}6ug2Y(R${lEYB6!DII{CA)EneY{_dKG-*H+~~LFgct5r@!^L;Ds-I
zq16{y(~i;+zWv+3ofgjj+F$!?({ub5lLh@3X@^eicTS7(xLW~t7hvBSI7|VJldRo&
z=biA9X;I-tQy=f09OHlbr|*C_{=x6lP6Xr$)*(P=`Rx;bf9fY*Lpu)s?-QoK_v%+q
z=l&`6@#8=K<M2=a=|6>U_=ayF8r}2m_rRaL?d|Z-|M@>BKK|5C{YOd<^_thbhU5mv
zhK_XH;eh=3```RcWL}X5c+Y=2@f64W%fI|f6Q=v%Km3RPFv-LgzU|w-4L<6lJ_=s(
zidTRJIqD1Gul({a!$0{a{{+6`E53quJzSm^X)aCl{FZP1R`|kKehcyZ@t^i-@F#!r
zC-6JJ`@8U0Klzj4w%cxj@0fUwbisS#u7po|*~=)s&-YF8i3>oleC6j-@WBgT_?Jk2
z{?;^h+y(LxAMp_+|Brd>V@;RRAv-YfEp>Eh(MFxae)e`Boy$h8*E2oW{(L|r*&z46
zkUchSKc|iIHfYgCDK^)i`e=uaeO0=8+rF2vEYZ~mA1^(ZtX_eCE;(%6F7MZn8$apw
z1s^skfLhlK6z4mB*4&S&&i|frp66bc!DvqFb@UPG!3s#7CGT?#oxJ)($xTl}q&b9h
zogcpBh2}*9$fYQT&$k_*j=Cjm=}?~X^I>NpfC`%`07tT96FSWgPuuYVZ%g)cCF7eq
zIjg~KA4v;2|A%?Kf+{z?&~+=y=<~x@*mCY-GoEMO_DF$VOW23yT;Rue&N<ctRJrSe
zY#Ac#(dbTc97~RM#csLSV5we#iwGV%dG!xsTd1WV+nt6OjPA8AVU)MzeNKmR*B4z<
zY}-_CA!;M3=kk~rbje}!y5!|C*9B&LeT@ino_jlxbFS>bQC%{+c5>Ha>IHf+5S}Yt
z^HT2mv**>H*{Czy0g=Z_mx@fN)7W%L+SLwVyQWa9bJvGCwsa(S{n)AV;Pt#?2Xw5J
zjS58`$qqPdv1bSJ@mdPU?B`-ll^I<dJK*I}WujvT@FBX6oD;NqE&<H2>Gdq{E?tqm
zz|WtZH`<YNnJ>sMloL56NqYdHI5XD+z2Wb+dvo644J`jCrV_y|l$hsSBdKNKfb(e&
zWnp08-E~|uMIuuJm}8Z4QiI<O64|-4XXhX0y$|x7BKx`FbT50u7Hpw_@@a3l?@{ya
zYd(0zhSAV_P8&hH4zz|!l89bBf6qDAX#soi*aWLOfd!lC&YB&5nv!Dh*o3a+5S*})
zE*Lg0COimTM`@2%Jb0vgk)s9gEjj<gim}m)!Ky5fU|c%sN(cp;MD8nHDVKM4x$8A*
z+^}&pJUd#M?ubogf^vr^El@5yC~47R&kjKyTh;=l%=0|*^}G{6pWijlOYVB%x$Qb&
zY^889^IYYT+r{xJdC3(U^PFX3<*=bSq&&T2lAP>}jd`BLVOZ!!H35P|sOQ3SO!0zq
ziz@%S$RjUIY0mUP(iLefg@HVkMpx36GB%Ql{V0xGT`Xd3xS#<J8|g}P^P)97ffJ>R
zaJlJa?!Db{${c^-OE|vNKlZVYfsg*^moSfY5kqqR+j9t0R&6mw)EfTv|L0%BFZ{ym
zC{m9iBkz5$Eu85~8Of*G`h^!Fows1>u*W?1@$fhQ=Wm!COn1W7huJGTimqTf0j1l}
z$|HU!J1|oHjU3D35Ir-Mr=#Syr^QeAexx>P-`Xg7ZVf_rSKA|dJFpSQ9kqiw+j};u
zvI9xval<xB>lx^-nlQ4Xe<iw>B{frCIU6N*V8rbnAsBYk^L3F&t!a@P8-<H?icO2F
zYrE>&sJ4HtH30UMc5Ed(&}mlz6*3-V5!cV*Smp+iU(WIGb|Xu^X`VYLSrpE+bCnz|
zsK=PDD6VONOXWr#(fX`2dDU7Uu@oXE-E?yget~Cu?&Fa41^z~#KdAGNzkmgW`3Rwq
z+u*nl%&tqjgUro&6(U#Iz|GxfeK+mBV7o_*ask^}j?jEgA0WD&r{6Q3AG}_$zM(Be
zM=wTZqhnVi!}T10JTy6GF)AIS*wLAN$Mi2oWuv2gyWLe$*tRGw?~4|Mr@YIYA`qW7
z9I<_cBG=KOi+FCE{zXierq35K)r??&SR&jp8veH1Zl&}zYe`k4=|HeQ+(m%nz<Z&S
z{o=)o^x3dt-xA5Lh3h?Sc=03I`-z@|a|CquUy!`_c;Isb>4trv1NuaA(&KrQj!06d
z;9{-M+mGp%5K}iuO)%hC)-Dy3>anIdi?Xo5sWkU?9sY**rZg_ocf|MLM3Yf!_-OiL
z#DX;jly8()YhQNx5wyvEB7g9nI7Us&g?|?=a!Q{oly>I|$;c_?=1;bOg!IEj1YC@e
z!4+Ktpz|Mi;C{N_trM?sOt=7m<5T&-1OL?pDNN&svVwS&KiGz;U2yT`n(R{HKp&P%
z94qpK(&jWYC%;OI?T8&XW*^UEKO>yuXzk}&E`j<jnm#*wd%Z_!{%w!kq2p1y`TNQB
zOV6eAS?c--q3j^jxgq@yoKBEt5|4mBtF|+{eaJ==0)g-6V^PX#(?xD_H8-DU(ar85
zSw|l?4_RsVIoPpAfaV>ic5&{(fysXLPyrW#4)X_yr$tF$(3>F4Cjj)lnIJ&huD7xK
z*R-lW=WKbWeY@Tx9l)*vX=Cx&w7sEAHJ*m1G!}=2X6y?&)~oNL)w%vU8w)g87jx4q
z&wY;d+(h;h)*4F{q27^+>hqFO6>Q+;G4o5h$!m)ZYD3ZEdAo~-c5MWQM~)<P2+dej
zmjW7y3R|x0Yvkqp?>${=jqzM2>h`=~2fR^KY^j6I3}#1Ot7!WWr1+=fD&>E0z?!4A
z5j`8_zn6E8v(-|VMgFV28lmK_InR0S<yH0efbO+=4J~$~D>OV;D9#R~d98&*_E9Iu
zhGW4-K`4tE;OXYEH{V;^4@c|(*`U@AwAdS69IEz$6>_P8GP6;kF3P6kC#PtLP@A6r
zb6%|euX^zK3vEX;cM|1+k@+irv7@}=R4A8o*Y9(2N@DTFYkQC!>g-g<#V(xuUs$cl
z33VzH_mw*7Dd!@T-1Iwczc4uuIeJE3kTyK+*`0D!IOkZ;oE{=@&UJKWCIP>p{O*D+
zti*wuD5o~wiN6CcSPhH~bIs%8#73}fr2r>7zp(w9<gmtk+pCE-r)kfHz@!M+{#2dl
zoVy-#TJz#AVgW8V9MI{wrZhVA@;5oGFvs;?UN#ilPNH-vKl}=FoM+BszUGCzE${*X
zW5Yb;9MQ7DJmmpwkupvWQ{*k@*_SBY>4$5HookzoI`}nW9bX6&(OnDUj<N`jdKe`a
zIAh}lfn8#!Xk1GHcMzV7QxadE&{@1DnE-LBPcNVsxB%z19ls2pP`aEzH3P_|QTmZW
z*Nx_`7pFO5M+YbJFiQIfx@%#eR4J6HWK5EGpVQq~(O=A=PP-Bk<&sAq>1mQk>yycm
zI62DEVM;p*5UcTgayniZNan8zHq2{|U@7On@Ej$PQl(6?z_k>D<f>-6pe|7z2+a46
z@|d-F?TQ@NJHmoBD|nG}FAG-46XH2y-(kvyNCjxO%JU0a=RtxxCWmOG_R%7)(8-I~
z0&wnm{C>LET{eTIh|*^X7IyrN-}nu9{_~$t3jp*2JYubdmF!Z>l^sPn!rw9S^GAN<
zhbw!7&LMRSXqqi=i<S-wD%hUF$%Pa6%D?fYaOGN{LWo$$faNuEapdV1>6C30MW91j
zEJGW0Dz!o=1ziM6BSd+%SA)qb+OQ2p&vOk5uBE^`RnSIJ&5EH!s<DlV^ys3Xjx6#D
zvfvqbVFZ03C~q<Ig4JFZq{K#T6U!sw!oZ82ETB>jTW6!Nz6S9exR@<E+z~(8D6Ut)
zJReDyGGSx;sf!V7a%dCX0!Td!AUnW|X#-)WV1yORqvan5u(~9)fVvS~8+pMigpKT)
z;01uVKB0NvNICyUvX2`1&ouxxq%)_ICPbqXcYCc*uwfe|H34vuXB^S)>?PQMi&3&}
zvQ1%$Do%g0&*J3KnGHL<bnyZIu%^HY+V@iWDxMsc&QdGjgNHk^f6q-8HI4+_iG$GR
z-S@#qsB_3H%?sT|f1+~@`MCBG>e8OX>8pi3+sIYT`|R`X>jLyjY%)cv3O21rpy^%P
zoYigck;m3zrywtvSD)J3T;L1!3I@S~k>ltjHM-?o=lsvP%2{1u6Fa-<U`v8sZBuUB
z8|)sN(iKzFtc7lS`HuHN=PTxzzxzo~f-nB!FNR<G&;J=-@Pdzkzx2YtOk*VnYv$)Z
zMx5inkGlPKa?m0zAAQFi@L8Yz*;H)yzx>*-P7eE9;4i=EMI=i&GIWw-#Qi(o`7ZeX
z{^EazpZ@8eg*X4v8_7|QPUAm$>su);&2RqK{|Z0+Lq7!H^iAJHIJ8f!QSfme`?0nd
zjSB#8c*7egZ#~v9Kpvq?VSar)@ElChbJL|uL@TTtaFbxgK0oQNeloSaeZupeKfBkQ
z$E`yV$Bp(BcQ7Qm?_(ePSa|YNo<elM<JQ|A1y6nI)8Lj{Z>Dxjk2ih3I4xdi9&&wF
z{>rcZD!ljJd#8IM?IV2gmwX8o*Y#20DiatifN74fXz$79L~7=^bg=-I@13wub`Db|
z;f{sRp7?>gE%3md2G}R=u=v9_z7f9u>%Shp<y*eRQYqnL3NA)qv1dGX+iSQ~4xjZ|
zp9Sxm76zV2J1j22;~)Qoi6$3#@jw<bs8Dc9^lX34Py7@uy1eaeZ-;lk``z%`*S?l8
z<01so7Z(|DAqKwS3rIG|4y?Fd4r0OG0!k<4*GpddQlcxSHTu<wcDRUva)%N8&w0*s
zKm!v#<x@Y6QV+f3o<D<oCZ6KXhx?~-{oK#}oZx$yFyJl;tflaWfB1)l<w=vwV?V8p
zs&omU1SL2d)!Ko<1;=rXrFGYSsvT(U=WqraW!StO=-4QJXB(Dnl(+4<)KoDW)#Tkj
zi;c=HHnHs*@MyMQc;414Xl+zQ*N*LPvGwTM+E<!GOB!dzHaP!^w*bk_IrM1UTt|;t
z5nvT?{)ZO=XoXbr7HT0B%eNi-Tih(Sa*WUuqBdu>K4eRK$x~i!!4Sr^`QdeI%MccF
z*8^C4i%r{SIjQv_o9eBDx+7v~>);Z$I%jn#+wa^2LUXJi!?tz?7J77bboX0VJl*G8
zTMlm>?BxRAcX;k2sq+zRtxPE0@(jD%GUT_$cx>6pqhgOuo^nUG+`+z#jg_&ISCHJd
z8TvdA%em|KIlE#bxrtsXbd4QsI;ot=gp=3MljoLh4YrNj4qCUTE;fx^&1aCum8WZ^
z=Y2b{I$#He#t!)0^{Pusw^m*c>Czz^)xIb|!}C@iDFQAtwxP9A0L2b8y0j#({$X=S
zUVGR87VN-+yv}sV+o%rR7VT#b8}#j~(!I6qdBH}h9cZ@>w(_`SqmJ6o4mLV6REyw#
z5rclaft~-}@vrMM9HAg<JHQTUnq+RpnY3PsGgBr*BClJFYz>?jnw+5$UAkV$&K8Ld
zMdvFeff%JGz#u%6-5^wmueCvvQ#zP#<VrsA-V|LgIjM2cf}%ww7dT<hoCbv)5|$D}
zc8P6^(|I&(B^UTk9AmsIksTbGyI!$T&VO{`rd(~irJU87Q-x%uTVT2c#g6T()eM_q
z$LJBw$4&R=)J%EgqNCukjao}VcmV9U%)(!^N}jI7Wu>e1U2@mU4kDSn+XQ&fT;L;J
zj@Yzd7xuT7Iy%&jXfa|KwNH7z%CcK27+uH2OL(@+Yb<nSo<rUDo_7Q(-Bcb2Np(ZT
zSu>|23V|0<_;ze>cT%L8a^pjg1skTT@*H!l<HCm0jd`x}TJt>U+!}bXhIqEp8WpTp
zicNLN>J^wS4Mm=nu7=ImsMyoXK4Bwy&4uTP1@Td;B#=l+Nzq_D2d7J5bfGo*Fi#JN
zTj78Dr+>!f7A`r|b)JPXgD-3Nvh+RQ^S{F{{^BpfZ~o@%#kQ11c^_q~FI{&(<!Ka|
z`4J!aLfT&cq^EqyBtsh-54wCPZI9G4yXDqf;okfAwtE73sf8%n4&<UMW7+9~G{6GU
zC=-LT11zrt=`_~o$U*4pbxCbblHDL7*g~nzPxrc0!0CCTD;bIn+IRFEQZ0|5HcjO<
zuuPCHC2;Z@Y_|y4sKA{8rS=EgsAxP_U0V%mKUtRo736KOdAhDx&v!!CL3ZJ&t_>6K
zagi;F-c#{ll)t^~REbh=V9z^(R<XR7;-VcD{kC^EwMn|mMxHaW)2h@6(1q6(>FX&K
zl4lte@u2g1@~Y1`N)H!#ae&{a0)5VIvOpC8C~x8578css#Eo^>JVD5ik~%X2J(E=D
zDc~ff>cXfK4`62!eG_j;Z2D0jhTM79PWN}t)@ptS%qt(A8(d!@1ZboFeLIc=?de&t
z(f1Zx(_YOtwSWKJ(Ix2E6pPTUrK^7Dr%$0llzaBD1(?r$ZR{QFq2U?b&pEnCXG2M~
zG)h5Ybkt)?p37G*!@KW!m(>H%dut@M?-$#zT|K3LFI>Edob2GRp;P>Q@4F99CnqmP
z^#exspR6b^JQn8F^EcB%!L7I5X7AthUM$Zktq*{U3F^q#T?%;6^Gx#4V^Lnjh}hf6
zehNZBhx!FBdW|*_pJlv*aI|}ovvR_lWHE}Yhw#n<`FQmFIW@saxzw=ZvzQ*}NFS%M
z-~xiCI@9!gt*+p%Hr(NW3oG|d4*b(;McUIHZRu5U;^TAe;fbDWd1pg<m0g5u-bpd_
zee?A9)Tcg`7Ba3%G(M)r!RUOwxAGVlS1|uSVHIb#mm#l<XoJydkNw_y>n#)R+u$kF
zLWw$L@ptSWYan=eY~{%4DmsKb#YGL|)g{>}p^JhQUuBnBl>1_zC<k}neK%b*%7O*f
zH^Q;w0+1FXCM=%r&DeCTv-Z;1w*&4_UAMNz4)~+(yK4vReK|wxk*;i5nAb?D>K-iE
zC}{d@$FYPxdTh|KQ8KUX-8*!!Rkddtx@h}Z>3Yb%mRmZF^?8rs{LX(oR>w{VP+sc0
zkqYi%0(m))`9WME)X|?yS6I7FmX_M>hw46uwv(KbZiT6B-#V5f*k*JxA<{*d{saWB
z2fGu{Ls3y(Hgwz17UimwheJo`L!JHJV#~c7b+8$qlr0TG56Npgow3OLjzP^mu&^|^
zx_v>K|6Go+giR?iYj4mU6B0PXSdI(WK|L-!K0mf&M>y;6CT}fN{vjW+ht28p{u(yq
zBd98QUBYJf)|~^;1$S0Ea2Q(;<?(ZDr^-^_pbz-EeaW6K>f$+$&;dXW<PgoaoNbgh
z!cm?v_6m~ag)Yhh6O<YNgQj3eS)6jRc)ORJ(?iKaPK#$N&Y`YFfGwSwM5H4}$Qhiq
z(5|N4P={);sFJ~@cVaAT<26lDbl3s}D+F0#Pl{bq)QqWWx3n8WDN@<P#tVPZ7N#{N
zk}lNgOPKCTK!@xgi(8i4Ua&!M`QdfZaR?Ggrm571Lf0W!Ed`}B^{0#E17oF{0h##}
zsFs2__7v;Lg-B_h7`Pp^VzBg19c;m+b?ebB$O7uV6jk@_me<^2vost4=0w*tMisU|
z8JfuXt?5g8*l1z8M>oNiJ3QAN5>fin!sR7JNG-2fu^C-6a53dU7QeDvAl1GKHfZHB
zl$11Gx~i^W8ZF233R^7o3WCFi?zKVdJP40TCICd9C6byJ>+!PM{$fNQE&@DD@*1OY
zKuUPJ<Dn@9e)^|>8h-Rgf0R#+C5=uym(`sBx88ai)gSn{PxutL?T*{wr62n;ik2ih
zH2HZiU1XbtK7Vw|KltFoEECQSl+;y@uG!Ib<Y@U2T&;zaEgdQAN|KaK&W0Va18Soz
za@fgZu~7@y)WP4#BLyQQmu}Q#qPCx0QzeLfEj23W{?116f`6*y5$R{C{6rq9hD8#+
zboMj#<W=R-Y!qX|Z8uEkNcZCfC=K>Pd%5QY)B&AUyzoNuOHN$g8IWjkV(pw>>eNE4
zJ34PAiwkOFaCZ_)A<2k{8Hy!BAIzbjs|BbmQ;oVkgMXFRc@;T=!UyLJ{^-9liA{&%
z*lBYwbGocD@6biEQ5@}U?q!Q+)>;*D9^{2*_JR_9$}x>>RXtF-8(M5ooQH~iFW6S+
zz((n@nqZ{1o`E`8_p(FUJJBt$FC}Y_u6-%6FUxz(s)?%Y<+MJAEjw(!Z%;Qo5G$ss
z!RydDtNmeqckJV<zxu1-+rRDG$Z3nu2~AUqQQR0st#vr`UhjP8pOVw}iBEbG+a{-b
z7!8j3@;~h9&wx+(gio9t!*|0+e#8qXqWinP>$~9bkAFPbDXc^A?B_fOwx_4?`rr5s
zc>2?yPN|0OpPbX!Cq92L<qP6PM>3|G!H9G07mr{3m0yGV?|%SZ_`;8*i0^m3^PNn0
zabDwrHt*`gmnR4D02ePz3l8EC$7pcO`H%O<9PubSZ+z36;6pz2LwV5wN@VuQ<dD}z
zY#iriU81Ff;|bz5Cv#vY^hdtn1@!gBFMcuU&rOo%W|TRxk4C;Q_48Lh>675?fAV(t
z&WTRA<KYuO{^RXU2p#yp_l7sXJ@0uBy#6<T3!XNO<0D@1e4;nfNaY5{ggnIgz(>9C
zg_QsQMK5|0;X}IMA`H$MkY>O1OTR>O2c$RFR6w5m{Of)J-h1Es;EjLy`<0I?N{|>A
zI6i?V-~9wQeas!SW8)(~@+09Zzw#?-To{>+sfRFsKhYM%K8w8Kp=q7GeBy!p#d;5)
z_GzC6&zu${aN!4ctjuiAz-jpM^t{2K4?GX+6a0&R@h=D)jvwDU-aE-Jjsf|ik>b9;
z$`0gC;Izz9qO${o*EP{2d)Br#3ZSx4As^0N@9luv#|j%jWk-U?-my`Y{XAl$4%I6-
zWc$fRX=>!gMr}McXWMl?6dP=d*qi5)r|VgsOMWrS=DDro(^T>L=Ml3708MMcedcQN
zqj~gc>!vWK-J(Icl~b~av^ENSCx*mFVCohOJa4OcBBK<LN-i>W`r%ZzkEo-d-J-FT
z9P6<W5{gzzyb8Boz*gn1hfZF7j}1Co2ltXIG|r3LC^ld8!nWgjY)IEwUSO*n>p5Fw
z>ewjX*5$ZtvD3C3-L~k)S|WahZmw?(aBJI9IdE>PJoh=)lh94+T5Zb_L$XNM9<~O1
zQ7(CrcXT~9x&`C8ZOaj5^zA6q7EviYU!-fQqrQDR$*aTO%41S&Dv#1$VQX~>pqAI^
zPouc?;p4Fp&pUK$v1OR+Qq}Gr7Km-^$b@b)v|0;7cb#0!u%%4VaNu-Jv7BnY*Cly$
zJa2W0=!#p|l&4Df2HQ#^&}LiQ67A8h3UFnpw`!rG?$UM14xGnECC;r}<h9<Omjs*Y
zT4g^E$m`60F6dG`Vxv|=ADiZN-cV#n-+msmQGR#FAsfXGnz7O?-a6Q~QG~70C4DIC
zb18`(P<hP_-SF6)!A4O|WIRb$9rE?BH~ob?ST@T1MB>8f*xNS8NX`_U<geFk+cE9K
zK$FP9cuMJEkjHyYFQdDU_L65B9ZQ&YW!$-9O9MxNlZ{$)bSLHH7kQ?_o0_kE&5@@g
zrJUdbyUAhWoYqnk0BzO~3_IRyvyQY&VBCtl5;jc}Q5>nGI9jRjCVLpU?;bWRW(iXG
z729`AH_A1SmtsVmVo%wy4GngDkwhmgrih`*x1{0O%NAkE!@uVUJIbR!1WFY`*jD2B
z-$@Z$lzrJ@0g^HZK~XMm0OC^=y(NdBU}Nlo>p0|==Sk=u8*Gx=X5_JH4tC02kJp<_
zNWs!$*hp_R4OHOV^=O-SsOQNFn(iu|XOjt!Ejpg>Pxn^vnF~ViOB$X%Ism;)WJ+O)
z@<=-%c8=$Ri}GF%f^9Txg>FjMBsBqW&d0ihbP0kjB~Ldeua2%bHsXWS(INYZwmnWX
z-4(jRAaolA8_o{|yVY?rp39=dZZ9v<!Sdbfi;4wk=s)BXEly!gukvqy;0NIQ{>{IE
zKb&5$^*WT7k9y&Y;Lbbmf)~H!6X6MWKb2DXAPCI4i}$#6>1J{W-+lK}C_3@<+UZ1#
z9i^(l^R7HFn!JKI(~CTU)0JA!*9~3QqUR)!1KTVrsC&ve|BdJSvDkrKnV*u48fB49
z?Z9p<i)O&`7);NTwd4H2%cIG}R%C=^B0C$!*s!LG%A*!AuWXd@oUhMnqXMU}B6(Fk
z-*XLs)<&(IjbiMPb{MdYij|G3?5C4Q9vkmQ;$60!TlvCfpcij!!`OYCqoLy;ZO#aq
z4lYu=&FN6rMwZ9*pgT=Dq8J@7Tmz+Szt1$k+`)y3pC@achv_@<AafIN@@k6~krz<-
z-MK7;DUaEi!D8=YZ+Qt<zI|{mVNN{OfN=EO1j|8Oc;o}u2G`yT97BfW5N7w!?tFiL
zAC1m@?ql<Fqi%b1Z=W(VLp`?88&?R1eF+;yqsD%uZaf3_9$iDzKD%DAN#8amhfS~5
zcS`y$zoTOm^$hL*U3WcZa<*Orjk?C;agTdE=^RE<qi%0DC)1+9d+B+C5!aaZMjdv_
zKRh3u(6}q-o_D`%a-gr^fu}u{9KM<_9_`DcZhI6weR8;C${loU<AKikH^2GKl*R^A
zx7>BtUF1Z@-1+aE9Q@eF;~w`o!u`&7y>q(XWnSEvzGEsJbdqC=AxyKgnf~s1_dVuY
zxn*+xqvIb_+u-8o@BZ%ZlG7NS$9V6()Ccf<2XQv~#c}+YT{{SE@f<ATiwhiB!vG!8
zn1deg`)3%@zum%fp8agHTdl0?dmTF9aZzJE(HR#YknUR703-MR_>cb>FsSCPJMWwp
z6E0ReHuRq4kHhg#G(kG)A`YhA!E-PT6F$4}nNABN6U`9kJ<~z}%FF%lzaJi+zI&dM
zoKE;Koec5@X^P|2S^{`I@)!HS)I#{)h%{J<)4kO-<O8Nw((4eD((B~pLfL_!w5pu8
zl1^RZ4*x}2!DrMvCO+c$@0j?yo9KpoMgD&1Bxm^S$AZ@ULY0YrxR|8QYO+gmKebV<
zeXs?Qo^4YbmHPp`hxEMH?ssMyHaKDj8XHxgQn%0e3kPg_gRO1z^1Nu<rSI7}YCk>p
zhQ?}>dUVxa7N1)SbRiL{G*HEh10=3z-q1+_q&H8q-zmRo&NE_wH>fK3LJ-a8-44Wm
z4hyrM++kn;L7)3AEjFkhHcZgA)4oXA*g6mW9=0XHoZ)Muo1rLit3II_i@(AP^&wn%
zq%IC9<MVv<nA}6U<*6E?9v^WFPYPjivT_ic!(fAHh#Pv?9hQp9?jafE#&a&z*lkQw
z7vqp|0gnZst1FAM{1zL`<#iETdn;JbIlZQ*lOfFIt2Jy350l)CjkkA}@43Rp*q7wB
z)v-lgJA$ocs=jIkH%aQz)eL+W8=T1w9M^vVXT0F=tsLggy+S^4_e0oPo_FM+?r3fY
z_%_Q0ZbCk=3v6j30`m(p8???{TDmP`_Y?h`^CDeI9;d%08&%G#Zck}ED4w&$zO0rv
z)<HbN4=fWnf6$Z&JYgx3(G<D5-CIq7K^6#T!4$Y19ZI<6dGZ+13lWT*M;{A0V>>Pm
z(D}IV7qSH-;EMzD4_{F50ke{{8RQH@r_sRa!>FJ(7JLnu{vneC6rG{ij!wJXp7ZE)
zZeK}1w&MGxk&AnU&6?9mB*wCqv0=&$ABBrfLCX0bB^?gcE68*&lC6=YQwwZbzHN+h
z1&K(>9B6@y2S}Gdi-wpoM55!P)+gAL6KXZ66P)RaeG%OzXBXwB-$>NS$XK{QXJop{
zf+`oM-_znQrBVUBKj-SDP=>$@?D%T0g+#ZykQdhEq)Qdg(Fux0Ucna0iB2mi@;frm
zhmAzZB`uoH*hj)v3YBN!d8GOUp<r8SZ~{NTHPspB{x-T2&lA<VVxEs&uYeXrCFK#(
zmD88R2^%>UCwal|W$~7yz4p7UE%+;4@%u^ST=ymuk{=%Bjd(6QZTF|LFdYVaUZLNS
zQk|gWV)QaPo^25v9ilu|tPzp+TZn6x$1L)_5^Uq1Wr7Ru0y$urFP!WCn&i$UXD|B6
z(f6C!F@<umADOO{o(UxK49a3IV;g`oDwPOXzlA!<qASY#UV>rp&`7A?`@P?TpZ%Gi
zq0c@A!lNdq1HM4N{1u-AFL>@#;mVGAb78|fIv%>5DYBny&;VS%dW}xtIu8l1?PO6L
zX-G0NVT(A{4e6!Yq;=%n^(YgA$*a(HauQ)$8BCd_bRu1oBGv0*Bl61k!@3PPhMMQ-
z;FsvJfuB97=S%~M%A?&!958^WNnQg6PH=FRVyBt_giY)KrACv2#48XxkvM(N#x0to
zyavX$_qs&s$VS^uLe3PDze&bGQv<PWr=3*O|F)-6%sX(s0+tEHwxPavV%uY2JFycw
zkgkZ0qGz$#{v^8;0<F&`UQ7#|pLfzcj%Xc(uA|ydNxhRf54@$6OT1etih~~UaPYuD
zHVK_Al&*35qqJ>U?;uSJ%ftq*Pmn<)F|$QlQfuN`BAX4{YHCj<w|~xB7@B7q{MuJi
z0_n#3@WDv~_}Mc%Vt9dW2YZWTZ3E19k{)JlDbnV-mGRhgB3CIL$$no_cjh|xG6f@H
zLD55b_4oTGcrLqzr?CXbg|p|Z*1#0P22ka!*1k30HZSrHRj`p_-Fa-e1fW?^j1)`t
zL0&CgHwzKJRnBTC!A816!eg6ZM{Jmn8=nylTXcP6`WOuu(PxG33j6d=e>uGLV?GYP
z`@8-zMQ0NarnXnU@(U>6`<H+Dm(v{auDc#P>E(KIu--wbRWMx)@?q!dIG}U)Q$F=m
z;kSP4x8OU!^E=4V`{V!N$Kg*Lop&_bkN3u@TD7WHYqx4u(N@JsjGCX?6tQ9}C1{Be
zO3iA`+O=X;sS&ZFVp9|)c0y{8*fdtv`sMrkKj-8m?~|K*pZna`Gk@v-mwYV45!iKD
z3IC&Os|KG{xjIm0X*;rR=eXRRzi1{K%0n4JJKqGJC^XGq_kMRq`0CLfcMqqs<*Q7q
zyxe}F_xBw+z_&AJ?oh;Mt*GwyI9`zN@=W^g+wZS@KE0a+hj5%vujF19N&mZ7)K`~(
zV1ob}+*j>W+%^AxgeEM?C?9a_uaOUk0w*hMHL<Np7vGa2&qQcXTT`icix(UAA0{%u
zBTm<48^lBV{!u$y$E0u2tWET-A6;Dpx6!ukowc#Fo#wQ|xd&e?mWFPYE<pA|<;YGD
zTkVrx(CO!6G5^5CxZAgn-W}8jM))y~+_|i6CxJzRl;~~$7IAeq&z&-pzk*BQz#a)(
z$}7Uv@zr}deWyTNeTP~cXBL&hpMo<(ymz|V&kq}f_6x!{ro4;)Es!23oYC*Mu)O1!
ztZX@w^bS|~+pQAieUagPxAbCCBKN`i<D?KqNx?F{p6Cz3dm+;2WJ<)|_|dz)$@%}9
zMaa*uJ%>{?^g!-i>TVM2dH%V0{x!Qla+fqEc4O+R97$YyEmxSU)py}?=fis)gLaob
zRui31UpM~#Cl<K9jGzcm{%61t)T<etH)0w2wOZfzlLU)h$(c~Ebj}Lfn|G%_UbO5g
zU_+!vsktH_N#5LL4D18WQU0$a=++*PxjCH-S0skT!L~zP3Fw?w6^{}T;!}t(n;h6C
ziUsNUQ_NT7UVxJLe!8o$;LDH*0hBR@0`Q;R^O`=zz0j}&a&0!+GZ=`~_cT=pS7|>w
zB#XU(XSJL^K_nY2&Xnvkxa<x3h(y{_^7jbe3zdCN>D=CVN@R%>4})^>Q}-%-sPJTl
zBbwWqFQmS=oOOc?6%u=VOyuJC6)ISJ3x6LeW9EFK`&M(OJZ;zAw-|Vbsgd}mSx-KY
z5Sol&aDcY8&MJPsfAvxqx2T67Hm?rzMR7q#4|ofjB}IcUQjR&}4Z~M+{nT^z#UF~y
zrv1m!C+pmN$45p*$%T<sUHqGhEbm(jCCF)8%2HF;-L_Qg@fm1F$x%PQ56E=nAI`0z
zaxO?ac|)HNy@oy^gKDl%`nuB2csl1AP;tiENbZB`o3^@}d~m_=`w$<%gMjT0xVt#}
zw*KzFiRzM(nec3)$(a!UH*f*qL2hG4mjm!-Fi0f{AyAXQ6W4VY6IuXG8>k@F&nn_K
zO>oRc^FATRr+i1$`RxZXY+n1tU%Us@fERpMN#8gG!xT)XGWy;c4xc_d@Z6hZ?WNX`
z?NeNf7TK8bxD5DsIPX(0_BGlF;eI1-*7hikA<f73;^FAP_+WtsI%SzLtf*LA_>7z3
zjSo=a-E|(V{uDOLdmjwR`xw;PQq?Ov^oB_P75}92Jyh%3yCkXT8^B9R;#CL!I0ACu
zx!gse9~Pq~*Nc8x$~z{TX0uS5239dSRC3CMIFTQ(Cb62fyBFpH`On&tj;?Sd;n2oI
z+<CCVyZPnQAWIZeO0X@w%^lw6m{kCi31|4E<_{mn**KeSaDPCWu&JV0j~`<<Vu=x@
z6>H}L2}B+6BdDeb>Zi{m=tH)8!DZCwxqmhM2)uH;hnv%~IFAqV%9X-#{Ox|Y@2b<J
zDdA2-W=n?*^j>v#<8RbzEYW%iE&~4*!9>8NT;*+gP^A6i4$dO{XWAq+@=0lV$j8N1
zXDKg42lu6Eiw|-qXW~sk!b4vAgm<^~zr`pX*7;5>{UMuusmONUtBZYfKV@-HJTdey
zgYqrJBLz+6gSxhxh>PDuL+Pu`1-`we-Z*8v{)*A<+EYQo-&K}XXV>L5xN(ZrjhD3O
zt^)_NgWsf0-(Ys7c_6%UU59idoo|7<`%Uk`(z?f?O}_3{m#=j7z`--mw2hhUo%k=)
z4v-rUlO~YBL>N%HbhWePymM>JcATyMAlvyGS3mFU$X7bRq-+KbZTqZ-N)T@%7ROuq
zl9r~<IIyx*GvgIgg6B<*2Q>Q8OOtTg7O`h>{FHo*)BZh6YGNuP6L%i=gt@q;PhB6$
zd~J1Ki$5{AR@U?_pUeB++9i1My4G_DEn33AE(>@4zw@7wwR!E^pu<A8e=RMeNe>xx
z&Mk|h3VD8i9lSolNrWF=JbehbFr8QbO#N!{ES9<=N)Zx|R`=B>>=x%%9OUf5_G}_v
zI?D8}?;3vl=0oF#g3q9&%j!?o&8f?tUn$!Ut#fbk;%GPUXQ3HwTr-bNt}^<cU#|B%
zB*Cvn>2-#D=E%n9WGN+2A37%;e!n)ysHccHgMf)9g7>?p4YNUnD)wmPg?aLi&+Q>T
z_m`JCWb#k-V%fEcz?ro(@_>SnKT6v9>`u$|@XcLHzPa`IUUaUuPI_cB-M+k~_s`_3
zwEn_GT1D97@*L9OU^D&L4d32*fJ2|nv6%G#FgUAsGfI{DyZxPm*5<Wdz1zJ9{eC+<
z+TrmLtJGUi=;qbZ;hi}C;uqWu{L2yVrP6)}4OYRFkM%cFerPS<9^E*fcvVBSQOEkv
zQAY@tt?bv8xI7B)xRvy$qisJFT&)a}bOZ%kL7P%vFD#wZ<zGO%q7T2nUW^KijpIqm
z8E*Ic2YuVuCOUVw3WcUjWP&H;zu68P(ofY};HBqs8)*tUN!@!NC(6~|lt`R=)3@`K
zxtvxef!>8;@AAvXm*3^Xhy_r=`I|BWH>4;8cZ_>S9#{KJZHf;p@348krlcXGSMD!(
zse`t<>R%VaG(&Ai&VDNGcJ+MR;H^{%d)pqkcyGw;Q3CrM?c-fxb-DqrF}^>7Qonlw
z2df%8`CeSv(hipspY^`T+uQliNkz%<u<mMZ20Nf7OZ0g`OQ<=PnfZtoQN_{lbpq=0
z^$B;a4rdZn?wTIU`u{s-j`Ru!KK@BErL+H*>^4PU-j3J)e!l<h?mmmX-$UO44%?0I
zr(@LL?<;ht=wm!YKWQn|H`NXkkkY9bQjsA{|Fn?BLh^5F&thzp8{ue9536|5eHWS`
zy+eUM{^xA*#hXU^eO_bAO9HovkM(o*|6V%*)xg<@xv9vH?@<1EKP4bf(&#IZHfsJb
z>w>K#`$0a;@r)~;J8R^*qky$PjBJoHfk>n0$a54`8a3GqJ=!Xrq?pxgOMaP|92A-*
zl+w{}=Yu!p=Yr3TK@#@zOZnXX0WkTLgvUHblyy{1Uv#%-#0s1LtbdkTO#$!TMw2bc
zaJSDbT@ie4o@oy$>S1T9cuM)PVHhxm&#mU;#gYF)vb{QgQTI}(1nwuih{4Xmq1H!;
zpL?ewPUf@nb-NTPgiS>7uE53}XJ*W^*q6enOgO~8gzkW%R_u9A>S2LtjKJyrNcOiS
z+Lbf@e*dmx#1#)G+opD$Iqbbf^f<li9@<Mf3{E?^(t0|F=Q;>&KVK1j<ZnyI3g?Jv
za~$7l#;bCAuLegHF(|UG1%G2&I!k>Ugn1sE(bj2~5C2`L-UvNT5p6A=j<#wvKi8tL
zvYB?0fJw%6hHT5uT5l_1xB*GC4#jOk%`wMb$#i)+XEzAB#HU;zWdVK<^En8Q;k>^@
zN_0fxkyL~=vdcj<={{T5-&ncw^{=D{_y})oe7aZ6Hwz4?6c^uhkR>$=9pp5+V;zy>
z-9{gJNercFJ3LUy<CXkQQGoqS?s(Jp)m0AF3z{R+US1`E+quadVB5FaZ-K*u${Q~h
zvr@;G>Qwf07o}VGPxsr-kk4njEC!uuc~qaeqDpx_AccP}a4};YiyvfJEHq7*Y4WgZ
zfOUQd_E+1Pk{#qvT(<^13^RKZK{U$GYeskf1AOmcR{f?ul8K|j^Fmzl1?YTR{tdXn
ztN152Z3E3O<_;F<_S%1m*ObvvXw5EOM%WCqXlTD#*EODhxC5%zo=v{j{>E&r_t4@a
z+9{&Pg_=u5V5TIME@0m88aD7A5Y}7sa18?nhW^1eEN2oQR00=f_TKH^puSrve2=Yq
zO083|vz3*|+H>`3=fV?6kMoqX`_uz_F86z7@&quaZU3)>5tI?JTnRBTHOE>tM7jlt
z^WCMTe|S^{Xz^^c7mDFqQL?L{{1tga2>>bZAe?3i9?{!0I}8e!NkonGg;EecZ?b=r
zfzqyLul~cg@M!lHkFNeh6D_;d{hVLYr^PDqyJiXsMZtqva@GjDx!5KArV#n$*4p<<
zb9<;YF=YOEZ2g=?Fn)%d7R(_v+SfL_to*)JTMm@5sT$RBbnSA*(>t=6|KPSS3G1IA
zcOu|YTGEai!zYgVee`;8a7s7phI93xJ+x)=e<xjH94AR^`44vxI`97DG(}1QxKDH_
zW}Y$BiN@O>93Om6(CPO#$m`KMJ+8z1TN!Ol``>9EE^NjFkLZRYnUW4bnde>64Tkf3
z@78Z9vHgLUHM}os@rGb?3uh<=0j7z+&#kFMs8g|NPLO-0Go3yfM#|q4;(g4u692h3
z5{C}d4hADULo9zns;%XbuXcm(RwiA3c{?L6=@l})t9yxKBm-Tn?H(nqSonks<*jJO
z#es)>aUPeBvxw5Bt;z58_)iWzTve4YtPbwxOTym7tF<i-{8We0Iwq}o4)weZk1xy_
z^IN`0b-;=#C*7U$a9dHtClK32REIOH;Wwec5|6S*#&0eE6mLSHD3m0vj=>Zlpf$7a
z4gi<vL|8XBHw4Fcenh5~f{4*OMNM5(10KVk2{*(qiGI`vn|<)zpmW<v3G&v~8cN%^
z2q0~4%uEVT$|h^)gY#d|Twi+AbHEIk6t>eXEb>^I+#BjLNY}|MnA1YL(K=3xm~WUY
z{k&{z0R$<Bc*A$OBu)8UVN6VDD$K<4>4>8pKB(%+o7Y<l*RX{pIpe|&3eL2g+Y%0J
z+oK!Vn`6U-vYSaWWeAYebZ8KY*8g)_e=%m-Yg^rJ$&;V;Z?lQk!DsLLB-pzL1a;ZW
z+O=rqJ7U_3mzIe~$-d^}E3^kGPG>)5Ddej!?|TbbB>KfJ_2!v-EY@h4R|6halYede
z1JQ-@cK(l`xrWw+Kk&p?K{sjF#(O0v)2>2#jAzp-La{sStF5Uv#}@haA0B$AXwmL)
z&hf0KZ>B|&v5${8(^tSnFD1EcS6I)q=6@n?EYlz7D#BJ<RzBMWYb#uyHr3C)E>GHd
z>Tlb@UG9m_2_I)Qe()*%m(o{{(JHhtW(U?t!&M^-v1H&AzJ*C*dO?6HxGI)RzXA2J
zOP;BLXD6crA6+Syh(AL(Nxk{9wbJ=J!G`ECzRxR^$C{({7YVp^+9J7e@6%G6xz5G|
z(gzv$)g~>TYD1c$!c~jXLydUP1|N`$3zTOOPVOetzFrSV5rp8Lfca0GA{C~LX+YTG
z0S}4?OEG8<L&CTMQ4wPrqI9jdi;xA^{_@kw^i=ODIy~?fUaJbM`lP0m{fWd(dDS<G
zu=S;y#a8;}^;-iH)7s??pB@Ud3`k__#Q*p9pG>~`x38D$3GW{Hs@WG@=l>rO<i^!@
z{)G&Aa=bJRWtnW34(jjglxW|7_qnZlp>?lSi`i?!?^m3mFGrfI_<3xBDVCMT>dG(D
zvvn#@#HFHv*fiQubx;7Be=QZ1^09N85-wumUZO-0>+OXJL+@872kJ=AdK3z2jgNm{
z0S-9XBZO468mMwQH=XJM?l)WK<D{t5v5$50csmvQw-UEIV#gH=6J~seugusH<6bPC
zyHNIN%2aK*Rym?V$}=xy2pQU|v&mMlBdU~<&911T<iOLQzRgyhY-mGePs=5CG?pDG
zZz+y9YLlOeHYPqV{31I-JTpg+6QsJ8#*dsEGT=a`*$>6=IBOOfgM%NMm8V%>6|Ryw
zt;B%9Qej|+JcM;8=wsoH2VzekymwbymF#f3=XPnue+42!z7{A1M6_{zi`371806L*
zkhokJXK<*H8LjN+vnbQS`F%ys6P$?eDhR9d-(V;{c=e_#Qt~?ZKIGrn;m^BK+}6uw
zU)nUKf_9o-o$QT0Fhsji+T$x*)xn<>8fZ$WlmAEoVrJ)gzF^&<&lp~3u1f7)kD|#@
zu&G;7$n3$OXMvM?F~9dFzf;}-EV`r|SYsmWr{;^6vjS+&&Khy+Cmj?CUL40p*GRC+
z45ec2fB=Zss#$1pfU;=PWCX@WrdS`zMGxgpLhDx33vV{ZFullJkfHXSAsivR^4c2k
z7q=klNxKmxH`Ce!xQebjxx=}2Za&^{9TxttUNnhsd-9?IvdZBOv<IEwbgTzcGmw`T
zvPXf;4Sa5^tP@(Y{uI1P5yd%-ZTmKUF3<RvZvmRxaSe9>ufW;)<Wjz6eYUX^wxRIL
zGfgV$;WP@7pcpl@T~%B`{$O#pT92ocztZpw(p)7)Jbn0j;a{R=lIEQc4{jDTPS6?U
z4VG=cXKh(rc-ubx7*LPflrHonmL+bkjBEiV+}4>MefM`MgH))kyc_qph+@h>$=Ufd
z1;bP_V@wjNYy`5m3OUngg41Fm_mnZ%2cP+y+rd#y_(T59A$qfSI{}8c41=0Y<zMUW
z5Q@p%Et1I|C$qiBSp;?ENaCcSV2knfKC6X~XSbg8`2WX;)dlZlB4w99?bvo6@v6U`
z-+D(luue;(xt39L;#}54lQ4SV-%)*zJ{cTpJxJj{Ys>2(!yN6$eMu<@s)vqszL_xk
zg#ys#g*6mq&!Uf=jjGFgeHJPX(T-D+yO7)%i{O)g-|9ctQOoziAq(j+H^tw!H@D8R
zkutrd4j4GH+q$K?jW5&D@_jPq!-Z>S+LK;lbvEg!y(P|fL(#2P<5*Liv0S|SDa#YX
zi2GKuTVF&!3x$aoKhEO&a{3?Vc<P{YQjyI{bFFZ{fRf^A!uRzo2N$T=&2^*Y=d#ZP
z5#vqlcO=*xrb~M52d^jg6(v{We=!)`-TYy3D8>bRo?PW9FaAXKl_CS;aP)_H(NFPP
ziM`pLV+Izq8O}L$kw04r{kJ|n+79N#xOQfIUsLq~PVGws2*TLHGa<MBEp<w(b~HbA
zewI#^DC|gcJ$Pl^5z&}QFaIPipz`^lt9eeYi?&u8nZZ7jRi@znw+Z6>{+poj_X7B@
zXy%W?&+_h(|8i$_^EUuJ6NE3h0WZV*CHB6)z-%#Gli{%Q3*>UL&w4J*&Ap+KsNShH
zif!8e4K?FLh_lEfNrXA-{tj5EaV`OVVAL#wN%8=uG!t%t;X~!kmVt>Ux8TB1g|K1O
zTmM~ear}e#P2qZMu;Vi*+1MG)AQ!F@JN~}i$#xFcx=UP?^oGYZY!xZ+H_pEi1)W$L
zhUIuSrIXIoR%*7q6#U=TK;cTFmKmC7BP5&kj0Xtcxsa)4LF2XQHE=X>m^n~s2QQZ6
zR5nK&3V$(6Um%@ROC`hU%0?)yjkK^sek@hs;t|G2%uv2!u`JbdFaE9+XMF#Z6XJL_
z2r%+AO>^b3?sJCeV-9ruB)4{5M4XTD5qPgo&X$C+-~)hko$>LE2ua7kV+aceJ5}Wz
zKS9)Oqzt4?hZ~_Hrv2sSuW5sGoLAiEiZ#PMEQd*!`5Xt9adQ<m%c4wj$JdKS)HgDA
zvhv@){%@)0zLG>q%BAdpT87klQOiP+_3_TK+eTj*#91?+u->7U*aTBzCq9;x%95d}
zTyIsRI2mi~<K*5J6zWkJ#XGVEYvWDIeU|t50DL^EZ{9nc;T^~Q7ot(W>l^VCZ~DW{
zUBK5v=cMf!W_C9oP}@mtXCLcdgR%1<8n^7nk28=>oq&Ohx1Tn}La>2IkQtEMNfT^@
zc`(a`x-;txT`L=EO40tY7I);Xnmsx>s<vueT)Y8ve1Va}KU;s2iZkN<$N|_H?B5#R
zGKqx1xuc|PZRrW2c7qZ$PPw^8;ZAx~QE?O*n=Hd3Nek<nHAjI+%GWxLH8oT+a41SN
zUA(E09EzhF2ifT;(tAo$1c0=&w{!XSLBiXKNI?t@8DITge_NGAA~&w2&)m@G>*WmB
zG{D|u3@Z>qRjBJuUbJIUKsv$h>xk&xP|DGR-vq;=t&|o;;HMS@5J<tt(*RT>J5WYO
zJU5!2Vu&e@9;*!v#tY6}oE$z%T$Tt|UKK@IigT*(=US=yS*oL(7Mm;42L0$~raKgI
z@L#y>I;+o>JH_l_V>S(*{J!zGJ3lU29jFa*GUamxksCxaRoc$PSr6olzpHBcIQQm<
z`3O&2i=rV&`;;5o^xPMPZ?YzS7Dpc9MxlTC(HXl&+SkD_KjX$|WK&VII5<8Lc`F&&
zv?W|LOX`+DTab1G;8Ht%DC)Atwt~tkpe*H09<5)-bAOoq$?<2iiE*6P!?U2Z_maeA
z{Cg`A5ZO~rgzc<|bM=s&G+w?q941Qob||?yKoCdz1@>wbAa@}q@Qj$3ueh>qufY-+
z$loG@NQJ3)rq#L2k<sVZm~o9j`8Iiqw<-?L8HmW^llR#Dha`{HSqK?4g70&`hZHa@
z$X{^PmhVFwpAnQZWIkOxGoXF4B+UaM2YA4PR!3i{+J>y-P)5)|DD$*fmpSxZ&w)8M
zNhy=r!2``a*6cX!b-Eatcy)UB8<%RaHU3TnyR`>`l&7^^?NZc(_|l-U<=uE5Qi6?W
z{kfHWu<0$HPQ^8MKVY|vO?*oI_ceBn#$Fxp6HWK=q6mVS`i?|sFE@Jf7CQO8Gmt^c
zA2fQByAhO9ld$r9zOLBk(^FCF*<k_M1jDsMsc{%%-*aUvf)dde=Q_Y)a8Q=MM{pn*
zAHC>Cryg^F>+Wx_|A4$&IsVzSB{V9#k7wr@`1kXm?0aIgmq}UT+;i1f2G?8=Lq1au
z$>?5HKyG4pQ65LL#!VTB2lPMi(&>Fef@ISJ;cEyNHPK#EJ9|d2+94k~F|7EEveA#n
z;~eV&aTfFR=8_@+&QmAM&PI@Ql1=~&<yE59qf>PBcr1UDt!f&<Iy=<%WL7@pvwd+I
zxr7B8jT)tB`wuW1h`2+49q5RtI^V0%Lm@Zt>(M&?sgI8B-`*+7Q2PRr{bEzwVQhk|
zX(`e}E&D#&R<)of9PVxWs2f_l2HKj&hLg`>Sk8C7+uMA!7XJKicV+r%FEex_Q<dfF
z$*D@{5w6Sb%v*(ax8>mR{_x5EpwO<?Vu0gU4^#N8=yUos@vgjw4N9);1XU0ru7x?F
zB^#72<+rWM$+PNA29zIxm3Y#7w5sG&Qk>Ng9%L#JcEV_VbB+J2ZY+~evUZH*Q$YE8
z_VySng0{x^C9MXTJthWNIu#>*0Jw`DPYen<cV=jk4PJhL2XqiK+sGNQRP71Aw2O^P
zf(8T4=gfTGgR>&tN?<byvgS76J9z4C@#9V*rcT=LuAp!5SdISSceH*NkLBymr0^})
z{WDVtn;<Q{|3{D1H|eX}<gwX`Gi@Q#mrg9MC+Nes#Z?2t{GYD~=d1*5p~g|~`|mS}
z+V04bqXLTv_u7T>8FjXnu8Q|-9~hC|JJL__OgtS+<nyO%#2+jp-82zOayZkI0NnV=
z%?Hprs~ba2p_3Io{5J1mhmgZfUC0yfKF*nWoB8Q+*{Izn+KrjS9=rMd7I!XMyZsOa
z1Y4eC<#4Iu%>}nx%TEB>xI0+toPLk>i7#}1rf-Ckf<ngaUXy~v{_5AP8d&ew?-K`;
zdA8pVIV8oPnl6v{C*^@8tJ#W+-Lv88zeN^K+F+|Y9(`o|jf4=wOKHZh=9xZDIO{{A
zhzyj!d5Hw`Bhd|A3~9ME0>3Rf$UCd3TYj;tHJ)P*ocXn4b~N~BkZ_4?>6+eF^(a;=
zCI+>u;~!wkLFkL7Gl3sd>jv8fH?H9>nHH{@98S{{5!x_Lit@ggN|6Ka(0j$bQ{Iss
z^RVC;#0YmHV;;X*frdl;<M8U?p(A$vDMr%-gz|k=Y@|JnCE@h^Uyx6|nxx*09W1{}
z`oub#d~kX6RBADi-3#F``0`UB-)GNu28Q2ewyLzicQ-LB@ZgJ%H5HYw3+vxzU1KyG
zQ^{%~=7IupchFq&t2GO-?t5~dP3-fJba;8kQb<w;aY3Z;+bdT%49~NiM|L0<7vVSR
zy4PwNX}7@ZV+}o1{L`OpV9^*Oh_9BUL~E<wQ<$XOutAtlqqls7WP`t8rkIiN<&k~G
zj4$%=Hw!sf((UN{10S7{{(ok+t$Y;HNqyTC54XlDm2fO*bMP<am!*41h-PcLc2ZSO
zjWaC>5_Bvpi?0*V<7)Qmf#GfD`?gheH4KaA7Dd^AgHMYHn!Zv(kVlbn3wNVT_zMsG
zKHRF=DtaaqoFe{L#;qP)R4>E(QNSj6;ZPwsFE>KdcA+KC7pH5m^^5XaV2Z+D`awZs
zsMp}8*sD6VRzWj|?!DT;EnoAPAI$fL3;AE})IZY3X~$j~#^D1?SLEGyU$^fwuH?Re
z3htzlU0O_Pa{1oYyb13mMJwoUmWWU!NJeOuIp2wMES}}i!Z~9dY8{>cm<?WAC>>W)
zCn&7uqAS?aa)lxvp6|f9!q=`<uPbw6B9;dWfTlHkIs*~LXUB1CpIl)OeGoRBtMhK=
ze>y!cNf`3mkJLeB&Fg1ZjN5cOV*9?5be<&pOlvNnSg{a(-%r%!029TG2JcU8&ojBR
zj35sDk&?M(@z)pOoKRypqOePA$FyFN;224Q)l)~PX@8mM@1M!Vy}bLwLK${?H*m{(
z?%H1Pe8?0n$NdbqGM3<fGK(+ljx!e_d$TW$Rc#m<sJP<tHcY(83$&@cN11)2{bZV%
zBU~eAxF=N|<V+hFbKMjW9}v9KO2an^%Oiwa1(;j4_(Nf@^hA<A_`SQHQ%%L1%Qs>r
zXv?pUphe3l0Sf>()N-Bb{QV!q8}MgBO$(dtU%<_v;rUz-vA@)9eh)Q$A#?^O)(^g1
z=^E-dDSe810%#!Lk2NF=<VwYIvd~zirOIma<T!8Kg0Jq?H>n}c(z~;xm^)&Pi<RU1
zHFx_3etMCQBoWJVW!gu~B3DH=jP<GY+Yv{deB5H1nQmul7>6NS6kaM$AxDIwYG8<0
zci{Q_aJWSOwV+;RfWYV4G_HTQ(SUUn&VY5J_WOFx;z>fWb-W*PzZj-;leaXan-!{D
zAd1G@+{~o$7+&A4iGI|LHmzRJgAMtWuatW;J=GUBdm_L6UUCxtE5vIbK(T{a$An4B
zk>tC-;+^`hc2|#*_d)q3v;D;mY!F?h*=BqilAo+wz3t5dV{u-__<NN~vq7-vHa<6B
zoIou(hGP5x&39I{;<p%7LRdIFzm0VTlt+eyP@FMZe<sc*=?iWypv(XdCXX0X#uR$D
zrb@^scyz9{R52(f(uiWURMvSA+%p0_G>`0rEpf%A*hL0tmSY$Ht+90D-gV1eDqW=T
zNYf?hlbG}iq@aL9N0dx-^7F*t&+)ZN&in9UGX*N*{QbK;ML7k}CJjb~NL`O(mwSC|
zoAa(Uy(+DeM25wnE3U;iX)J2NSzoyH1TQq)cTNeg<5;-qFAIttVlZPNFgDYTS}5JV
zV@-nT3#XW!A;|#?n^CW~YN!)u=)Fj4cvUdX3xQ^m4N6-ZH#%yT{-WkjMxhH72p>Jb
z+lM0`cq?JZ=%sb0kBZMgvr)qp7N`<o%r);AlS<288c9Qrvj~vX9}w|rD$cklXY$P_
zo3j*<mLYgjxXCu5$dN&NWfa9=7;+}otX@Bo+lM4{1d)P%F|$KQCVipv{Dl%+p2;!V
z<s0QeZEm!juvhyqrV(6;FQLrFVcuo<)lLl@z9QKri_Sp)eRTVMqErLO8^wdx;&<{;
zNheA|URc%VFS5=Uddgu|VIsgsPmg`wwk!HFNY@~FQX60PHvP2?B5!tZ^8d{`?c@kM
zUeGMj0|Lm=AQ|i5`JcuHue6+rN(snaA2>CDe|gSzZIz%UdV4MXE8jD!uk74#@a?s@
zzJq{|q<SHiQR%p0u9X8VAFCJ6%6S40OJyB9-_Cq^cJRjg$5aKm&D1-sHRhg*-2IQ|
zd4>TXmn(>f+TgT@1tH~<eTVieFK-HP7HdFnd&UR)vjGOVs`03hA^4Y99`25q<jB`{
zDC!dHsca4#3Ch*W>%KTc7`OP6Tw0##=WZ*~XAi01p0>UNa_-&7ugjr!sD5+zAMcYF
zs0pgfJYPK=p=H(@;JH(->pTip2F^H~`Q~orbm7oxLl$xUb~W6V^!WuptP+d@=S=L|
zY~J~jLB#Kp5!H8J43&40A45vQ6R4vTO6jBCNF3D~4OvdcbK!JVLtiML3gX#HjRc_*
zy%9uI3k@<;wjuvEc2I_W)u2&`=lI1`$&gN<6n;vS`?)0M%aL7~Nc4nNNA4C739p&T
z-Cq7LKN%aJumRGL+U|oTtUy;`%(>uv;yvDEgNEDJc}Q<RN3p%Q0__ReGIB}(W~{#W
zC?I=wUP$KIzTG8;N}aDKT?p)Ng5L?X9OUgiDOI^V!(GK(@w~;hp9buwv4n8u?(X+M
zyBaMIj!&y5VmhNKQo(2{3u1VF;R7~3aJlPE*^+Am#qu9N60=rWH@;6|fIV8HyTfdW
zBoW}vh@ZvmkJy2aViRHwY`=N+E8Ya8XfHQu<T9Y2)g-jY^sGMs+|aN!-u=X~Y4Hc(
z9&8n8;9J{TXDo!HE2v?NbSMs@F~Qy6>2;*-O-vw%c57DaKB%_B+6!Zx@ut`&FZyB6
zh{GzpRt;4Po0<DRqo>MyrtpOUPAR)tR>Kd-WyH*zm|`i;g!}DOqZu0mNAqQuG;8NE
zdOOa=y-FLusKryBGf<LYv(2~BY<UJ>AJ4yiL)|#XzL1zx{P67`hIUQu&6XP;lh-Yu
zzS%KtbXJ*Rb~p#7|Hd1y@w;5UcA~wxUy)AJAI9<ND|cwhvd)x+{3r2Db{}Q2p=&wA
z<NP}J>#6Ann)%OEI|4lwCYb_~qbKT#TIPWYo4NSkK)&z(>-7R%UnxO4+7=x&eA{HH
z1{=o24ILS2==r*Xi<5+*qGcRkWPNscvF*C3@J~I;8?xO=-5La?a3zngpfzf8K+&M4
z4D=Z)|DzWzdB2)QRLj(aD0cXI)4mMJ2a|7)GXk0WR*m6p_t~N@DoOYnV_m#e)&}YP
z14wE{EKFuPToc;#Wpit@DHWHMkb)Hu<KY+{+eJmz<@ce8!b&PpRpZPu(D2K5K^Tcn
z-Y0hU5SMdeo{GkmrZ-LK{<eyvw)xUE^W#S;aqBrg!WrpLg`*HvdWRtza`vD6UtfPk
zX>L7r_;2kJaYMuHU1<E|>13-~8G7Vsw+c_FlHO_c9Y+pua6>!C`$uIvaus69!Mz2Y
zQ|PVkjuYPO;J)=nW`8tMHpQ%A*{<>+4ZO1iJMiqBZB7xTyQqOz?i`T>A<z?;r}G00
zZJuMC=lp<gYa@^75BXGWoMj`T;}-Vl-|vM38gEvfj?SH;_xd%u!GqeKxE?`^5wm4@
z<m@iTa#71>L!7^0loaImLZuP*E|lM<f>_hd<)KobTLp5Vo2{~mdqT+oJIZ&0$hZvS
zs39pHL!oHQ1U`IZQ{myXe~fUHCPLd)J8`<~*vcayB*uUYjLc<$06zhrxUk&_@SZi9
zuDkHBn&tV0;CL~jGfK-s(a0vI+os_{d+DMa)9#u|#v7=%KI?x2+0~b@06E<&&D1xI
z;=&Ay(0NR>ZLmu>^9;*#>CAWD<nD;5%9eCzNQx49M>eM<YtBxu*F1}s1UHrniBH*t
zj(;p#85~Z3xhelW@(Y_nYpF&7=enZB@Ev4cOviWOjy&v(+Hq%8FO3Xi|4~l8Z;f!%
zA>_|puF!DYB2;54cjN6V_)8AOCuryiE+kS@V|x<l8dJ4EC7mjw61_V5e!Fi7#At#o
z`1P^2-<m?`rL1dhaWZ|-4t-Mri>6(C@6f7C!D{0}Y5sDnetMMjzV^!r2Zo{6*9%Q;
zz8lh0nE1wyvU2U&P@oNFb?SzwrjGvb?jV?7M08`a0$h=q^*`$gXt^74L(UEpo!bnp
z)3uApRdKzUBaq8ZL#J6(FpU=9L3o#EUdmB;7n4!rcjJ>s^M~?3-@3(G9qV)=ZQjQZ
zX*%@4^YWJ=<VF^vboh7vbvW#NWq|oRDt`p|%*SW$t}@U^+hBBMXKQ1M&@&eqe2~=m
zl6o)=8XtZ$-v7?|e|4<o_@Wf|XYD*g8X^<BqS{au>5&>7mZC<Sl`(GD#x1GkOW%+}
zI--n^fee^i=D%#({c3r5ro1Db&Nj%sRhraQl6$r6R@>41UvD`?NVx&x8!i+nuBz`V
z<8)@>6TN&=g+0wzP>s>clmCL2;*$R_7-n#n>2>iMKY;%2tD0BMyH<sQkCHt95dcSY
z54M>A=X-8F(-1P>4T+B!)UR&pNJlaO?ASV-Sacdq5&HeqqhW^-hfI46KcFPX!BEN&
z&O(s4V&7-9&LuuJ9Lpr-q7ulm9mV?CWG^R~45yCj`2`@hD@5{aH=7cX-m7nLg&tn0
z5}KS$Tn2I3Vr*R;YepYT`X0r!XG}h}s+uh6pzMx8nSr=4o2|kA_Vf7gZI~yH^cLpF
zZ-t4~qj<R9WPbo6C&o-IHq8aUr0soUoVkBqZu?9-6Maj5XH^ymaj!{8kP@G5LH1~g
zsKpRtXV-5eAnVCJ2Qh=#0npiq4W~>Cu$!?0qP%y)uA9PY{I)yL-M;DCJyVV>N|-VF
zCU*fW$;N%PVG*88|K~Zr<=cb>l~{Y;30<auvSiYnjqTq<>3#t%w%NCDWb}KRK5=<h
z=MnFK`+mNaFrS?x6g|_+q_lLde~^l-|L{zInhSRA<9d4V^D`ZhxaU5mS~whUvxH;v
zztj0llm{%vK;s*#`xaosnov#4lN*VIKnp5z|Fe>NY!dl^)zyVsH|{6>v4zjLK%cEs
zMGbbN9A6KqaS8e0`1I!;lyRcpPY#x(eu)kcS0FhapxpCgY#uq`%M{}g^?hL3J~mVt
zkspoJCC!j{-`&mwq4D3of7t_O+8ixX#d}UAVwP5tXY%+gR!*B>8*fR0@yMAu$6^RA
zGa-e~V(HXx8e0r_kR2l6Ym27(Ht|Lth!qG=(8*nHEY+1n3j-I%LG}2$I;x~J<X=94
ze=N3bTBA|95kENMSmgf2wFDb;+K%W-Xzd}TyMp&l9`hRUmTbOb8m8omW9v9q8$nkL
zm4}$Nd=i;|G2eP?;#mtmlp;s3&EoO~z^^t4$`L|g13d9;Ckp|6Q}wjClgCg+fMFv=
zw4^pFOUR56LU;_FX><e%LAH)LdD4O#p4?p~J^4fIJwQWt;h%_?ZW}>fPy?_P<^&aO
zZj0?axPw-}9$Dq8{DzHlUyhS6F)z=s7pBc?V<o!#KSY)8>;~`Ucb?5(h1RX+@7Egs
zf9~6RuD26$3!2iW^56gMoB90s`V!iQvNVdS57_XJN0O~1*+^d=zhBIO(DPgjGaST*
zuA45~O72^RDa9mg)(c?;lr>{0I+R$p7cMfjt)70-j4sOywhtep{DXI-%3uoTEdTme
zdnrovVSz=URD_t6*S+7cyIrY!GaWLBKnDP}ziD?a_DAE+OKZ!vz4mj|w(1`s#kJWD
ztvqGtLY6^|TfiR-QF0KQaVZMW#57HlhPX$_Gp3+{87W`YJ&GsS26^kU8DfkiOSG;G
zDi4e)e7~GB($?${uqD2LQh6qs5_g2Rg*v?s>g2y<@D_pWDPqo%LYal8q?Py36-AD8
zIi29Zu)!Yjx$gJ0?j|NP1Na9}q<68$cmNQs3Dt!`mYU)lwB`IJRynP^53=+Ep?vV|
zfvE1K)tXf}&7+u=k&Win(|9iikcx!=EK~K~@1T&LgYEMN{5-0b>vU3MZ=Z{#mBy?X
zZ`_Cdv3y*{cZ&a6F-`dj?1~HsY6R_Vj@?=LQ|WL2l{jWQP08!=P&^w1IEwCZdh$kt
zpJj&fXiMBK$iE=@f2fp!Wueg$PHRKk!VGOg+#)Zzwm|x((s6Y&lnwdA%<Cru%ufM2
zrPL=XfiC1zWjCDA*Tso9p{o8AX@BCv{x;w3?abqs?@B={sb<+^y!_a4J&f@p(a-jW
z?{a8of=|deGVqzG<tSE3*FM{!B3=3W@xMfB>sKss_y%vKT0N1D+2$@zwP-#osQdPV
zZDB`YfRjg(GJ2%Pe0Lp1jrc*_Oq2z9vdpxp1~iqqSGW|_yJ!|^m7JUGY8Wj2wwJEu
z<^v!mw6Re-woKMiI9mCfmM7BOP%mC~$vg6`aqVsUQSY+;fTT61#Qo(TRx2TbzC=k*
zkUsNl!=HgUYX&bew^aqK+m&ST@O57x1=FnkdnR`%MI7E8!#{OU4iS}-M89{X81yel
z>3feXtfAU@!)QIv?A+};!AvpOL?jg@jBWXL`jexR-V<ffiAV*YJ)RrmDw=e8c|bG?
z>n7b^3#m}@^FNA=QE|T`!femY4#Rv<CamytU!afmRHAP6dg?%1`YDv(XCfz~1)3U3
zZNGCwBWf$v>ux9sIN!@q&G**D>&){lTQr^pH)o3UaDx2h06jD^&;?Y_4W1!SAl@fV
z^1rLjH@c(%>9HY)xCms*zlDu~ovyAMISybb1tg2k$O&uK9B@fJl8%U&-GZXdTw^3V
zeCB=9d76i{-Jvpwt)sS~15nJ&lma3Mqc#~(xjxfJqX|}9AD6}9*LIiyVNzHLXbrjO
zOOtvx0uP1Bbbm0?CS0!d56eQ^*=}8#7>KMzOZ`O=K>}XQ7tB5wQevZgx9tjtB22<*
zYn+37d$9ndRw6O{QgvQyXq{Oz>7q`_AEsZ@xNef5?U~lM=4l@`GAUfakL!GS(HF>!
z;NnS_fX>MMBGZh-#(i5={$~FDI)wisli?QSzF|7_++?HTmx6mp*~ZUsULEcd<9J~@
z>JAkyM#U@S4kh$W@rmOc!RU4Iu&{-T>;hG8+nXSB0h=ObE_W{1l?9&;>*oCd9~oC$
z3KQ4%F{{05aS7dhdhCAr)33vKi<7@*yqi<FUHGc8gM-3X8NR(1@AJQZk`fx8r+C%f
zszllIOmbp8fvZ41XX4w`5OCIBM%#jx=W=JYIZ;vp${o$%Q{|A_mVlg*0?9(hY)2;>
z8Vy?bu@Ze%G@=f>e{KuQ_t18fbRAf@%RY4U@TaMV9T}|Z*mC3yXowjs-hlu?;H-Vv
z_?uh)VUaLeu?<FRNYU{&sh|-g@I7$~?>N}hMPn-x6{7`CxW>|B=}x*KypXb<;j4d=
zyJbJBPTJ)C-!AEAl;hS6C0WiV-3|in;lr~KF^?LljJL8%?qFktq2w40a@A=n_2|>$
zBgY61`|_-;P7W61Z%>x2dzu>ZQwLu!TX}rEQX^D-(9zkewV@WCs=XhCY<||Fceq_K
zzU+kgvO~W~H1XQ*z~jO5jRRYsVWPK<E#|6gbEH>xd6)6VLw~!W_o#ZEm9s<x&R*tp
zPobe<o*pBeOH;PLwF*yJ`d@#k)pXJ&@M>YqsV#hEg*Xh}5SUqC%((FU61=7pLdE6Q
z{gbkqLM*J5nTP(bMQrj2XMz&(*<{Pe*~`ICYp2575&GaChAwgM`;hT{%W3GCr}%51
z|EM%bYEkoOX2peN_?wF)F>RncP&;HJee-x3EZXt)pO}rkG&GtHAhx4}dqKD*x>Gx(
zMV&DtG%mZE?S+vP)d8-(@~WAHRW-KVL_gkWt{a^swGX0sJ>~<@j`R?Yoc;=XmRL!m
z4taAL(Xyn3P9#o9g}~vtqZ|W~n-dO$2AL1CKDEixqBq9AS8vR$j}1Ft(-Rr+7cH!?
zr@hm-k<#yhTrnodk`&}foAA(?Iw}a%Xv4&9J4~7Ju=8VDIf^>HuSi!Gjq#o=5yZO<
zT4#ITRVEM0S~ydFeOojB9xa!XuzCL-)iO_0U2yWpY+}lwZ7-)rk~OdZe)ep|Y==VC
zi8hKT1JCPUz6NNxAa4;c2A%{herq`23!&<A2}#H#v#KYp6}+J;yxappMDo4rh2;%8
zv11Yw5=f&K|5b^xIE8Hmk}ji_uHkd9>kP2^XS^QO%oXth<Z^m7&N|l6K0s<nO9K0Q
zS{6ZTxpLVDey*>yLmil*o_*r@Y(#Qy1^+>x6R^$Z&1E18w3gN#6y4J&KaXDfX=@22
z#`JlhLT<TPY{{6S#Qog`WE{F9p(fFux_CKqwne)%zRuo>r`H;+fDJ7G;qY9mT}d`A
zc$6`-e{V|Z0Zu-XHTVOp&wt3X8eindwjIml_rCCD@R~#LSDQtfy)c8m-$(pBj(ypb
zl<t^Umw)r(UBvKDy%k2&QNoE~98eu_kqp{(Md33UPo^f!W=z`M>+g)eNYcP5DX@Um
zz~|}+53gWkKt~T~Lm^dRKG^2@{Mmik@EZ_geh%v?E5-;W&)7`up7+hRAT0fsMnHFl
z);HG<n5N~#0mE_YNc!sI7ku=ef@q*u?(oWu*w6IV*T-Zh?sZF%f@&9=K020?D+Dtk
zaRcK|_9|wlAqNhAfV8a~HTF<TnfM$p3>j|ujMO=3f!L1{?IQE$YW9~h--6yA>Z(v8
z{(fmLJvd$wmxQ@AtKo|_n^tDQ5FS~9w=4f>th&2K6Wq;jLLx`}(mp^@3VEYueq`F2
zAdD&<H^aOj->P>TFj4a6DNhe<mUXCds!OBNp{HqoQmcyG>Wd#S8i@c%Z9f398_W-?
zE#U|W9**1uD+OTKF?Ao}x^>jOqygWet%<Jy_kDkRzHc|5%utqiV6}GiGIK8&9ciCT
zS>1$N`wj^dZNa+w-SvBLe=H-OK06iSk=-prhjX%N&K6oRICJ^i&^o#o|D!#A_+g@t
zY+n>*w~QgR2**$mDBr9v=NjfRSwvoY%v4+cDfa~(L#)#Ua~k2<8vi%8A+8@A5GAE*
zqU5FYL}4?<{VIq*gYf2h+Nr|D_3bcS{pJ$Cu-XyrVJ(~&gQricLLb3D?1^+b;KKGu
za=2?HS969x*Xdi=8iDfHXt9rxgG!V>Z^@eKA-+KVbE@wzG@j-EBgDXdOPFK)E4!|j
zupyT|x1JY0yBjlw)`}5BCrTbCFu$F(!B?nNnjCZ^o-Ff<AQa&?OK|s^)msXBc=fUk
zDPn#)xd=NEke8p-VKMJ_-&du7v>EHPn15^zVsS03D9!1fD<ND1bo1+6Z`>W*CuNg2
zSMvFM6c%gW5*u7;efX3@e=);6*%1MGfbvOUc`aNb6Yynm%6JJyjAxoRO9Jv2ssT`5
zN*rlq>phUM-%`q4Qpne}<pTMKk@zKNG0Xqfm})NWf+^|l$d75=>6_Kgy1rP*G3wV7
z%`2w<k<*1%r;<G{N^!I<4gAd1;mN$U5alDsSaagDcw{|SuGJ$G^I|p2@Mr6PU)^+R
z@b3}X8Ev5LL_}>#c(3f+#4sh@0muP7X<xC7$^HC7QyMPuc!9$|#*;%g%I=Y?$W=j)
zWa=2ieA*}FtZ!Y!r01^KEjtI=J3MI(2utcMv5MCdjp*R*?_<Kt`~{V@kI`;;6Di{x
z(Znv97|H*D;`!_~tH{qp+2iceZbs|+aPi}9#`{kFT8%fF9bT>Pu1v0w(Ng`zX!Xd}
zRfRx!f^d-|T?whBFQeAlczYuy)wP?G8#)$%I&PDi-p~<cHQElCtfP7oEWnHPEtY7i
zp?ZL|$8fIUX{3JA7U^<8(!K5_>3~DT)DFd?HEh-Es@V6^10UM*lgp$NEqjgw7lMXN
zx=6CBE|91;ASZ+SdPa9{cg*xVd2N@D&2Ce$6EOqJ<;A)VB1sJiCJ^gqd6yq*Z~%8V
zSoDrK{+`B&Yuvc7<-KZD7GKy5b3Nz;ZyvL)N+-j!ny*`tm{6PPTSKhhxl>O2^5DFM
zl_gQbXjX?L-KzI<D%2Jvp3MIBXQc+O@pGT-LFPLZO`p~;fAIYGa`0)(3m2hsNPXMD
za7~BYqiH&1-WENod%|Cq5;(4>?HrKlbsF{a?B<~@;Lnh7UUZo2cBF=4#HJ;>>}D@b
z0gG<J1lA`cjf114dM-cT)yi4#UX*VJ`#pO{ZYp4X$~t{uR-z*7a3V4r-Qnb<ta=xi
zFW{o~4gWMCP|7EKSX)i!MpaYasa6zI;N8bO0R6$cSoo>}Q?H^Z#^{SYlf-BP1{h`c
zo2qe;O5*90!OL-@)=z;)%m8uljB~1XN|r_7Fi{S~Wt|q~M)`Cmy~bno=w4D!?dwNA
zxqosId0j7Zs3ZWPVUM%U51#L4YAP4SGkIqeY`as5ddKVUf%mElPL<kQ!#4c7eWzGL
z5ld66H@`M*qH0g670twbSom<FJn~JiS*0KtimjpE^-uaL(S1*oO-p0qORurq^A`5(
z)8i7t@})_=&-6-{P%`J?h$q@xucQh-+z9gVEC!(~vC^L4R@z5A>3162G@f94Xy}K_
znr&<6pIID^+1g9Me;tR_X6kv8LE?D_b*#VZ%=$%^8Qm-NZ6mumV<o}Rdr8m!Ii4D7
z$*q1I*7bEc3;&iI*Db{(pr)zq>vI$Eu{<?c^d`KtMrZymJ|gtB(WJ6gs;Fx~0p9CV
zvd8=s5?kLR)O@fx?=?}J2fVBBic+{#(M)|w@OA_3=I0vKZ}p$Rb_7}Jdi1zP$#70S
zuS#m%mtN&y1^h*GHuh@Hk*q&_4FRRqaSu3R90ayL*liJ<B8&FSq+W+fp(_<Lwm@s_
zf?3&CH=3?<BuYX;RGsO}ly^|7;BJu+34f-r>xQ^DpkKaZ*`=Z5ZJcD3f$hb824OYP
zE)l1}2qiHz^)|w5x$Q-Dhm-e;@oGcYTHspE&dEXU)rh^!stLw_MHaTwunM2#*D(Tv
zMbzX!==<rDIcMsR<}+|5QjoqB^;r}>wl4$OucYo+FW4<bR(Sj*Pgcw#Hd^xb!@tVF
z$=1MXiT=TgI`ReJQC`!M!d!C=RXRu!A%WHrNkd9vd3e%Wkvk_Lhzhc90|dB>BpG0v
zG1rZz%aD9@iv@gij>RuQSQm$AXnVaMe6Eu-SL&2#VrXkkhLiqs7njd6diQZy!83@1
zedjc(oF;5P(kp*OGml0%)_**j>G#`lO%a<^pk*EiBYf{0m2NT6**>l*6LSA4e_ifm
zzjw~!)^zXpn6g0#HjV+rY6gvjCb-w+$w@!e3cMcj_*&VG7Pn?cnQdZMh9vm=+IJF6
zDXK~v?B|0;NubMHzm<GSQDC*k90l&4DQAP*yM4_?v~ko>$>TeKo=eJQcqjTkn@AEx
z2|nh|yS9MWAiE!k;mqc_gTv2y^)Sc}a=M*bU*Jnbehktq7~y?D@)ta%eM{#He0|+I
z30ak(Sf(p(W<7x+Yvf|bmN8kNY`)vW?{|{%V($MN3ohba9zWzu?qhW9UZ8R+b_c!=
z<!MNvC&E1^;AHQ-VL));{y;bCt|(_S<KbKD7OA!{o?X>G#xtr^PoAE6Kn}yc>xu5~
z$b;IMYlaId&d;6@b*I<LnVVO9%n3gPe!QoA+O#u`9J%nzn_m0+<T=$%Z86~fPku${
zz`#!r2d^a#w;E^~nyyn}d$TQ4{<Ad{^Ir!(5L)*}0ov5b%+HhBvddG$XwTred<`N2
z9YeA{KUBVtSFIVmr~U|2j2NzQ86g@VoT&Vw?)kU1Z+>?as!E6^2E8jG+=4J*pWjQ|
zZ-HLW&U@i4URpupA=|>RU9xe&Q4Zses%cqMKvN@PDp`#eu4(8r_wn-{J7GA1q%u5v
z@Gq(CiXKk5_VB01eS&wOP|KR=l~Bv_j(1f4S-(KI;c5L9P22Y170vIrTaf)jSLFbV
zTiB#k(RZvHtvkdKaTY{#bT7~@bK53MG#R9baWOpUW#;WR4;*%h4fYotII3@aSVBcA
z2gJ_bJzsjSS1h=y#h;w$NJ~o5`?Zq3_l}c?gS;+C?dxTpAX%W6<zFXX4gfN_DZtL6
zP8n}llLEo^@sSQ(uO||LR2Jtn{xb{~wi-r#w4nmOzG27M7M%GOojDf1B@sI65U_Br
zJ0|c%w*~b#X^+roB}@|)!sm)AbHna;h^lGE)~U>Ily*bMJ>T~i%KFMNsjqfX04onc
z!+o{Xt>1%Y!R1^%Z`(W-ZGtmSV`nNKEx(caH|5c809Bqxf26p>9m5o;ToE$vCvI6E
z5EnAl*!_PLon=^)ZyUxzgo%`rN(_Vg(}E0PBNPPbQ0Yc`gv4N!G}6){C9NQ^2@Dx9
zLTP052BVZ1HM&7~_kP^B=h$&S_jASXJkP*e<`vuV9z1B*c{Sq}Pw}VfTKId{-}9h>
zWx4f)XT;kD=0PdsrFQlzERpEcg(1HX<Rc%u%3k^pP0r62b*agE^Eb7B(E#p#rdU@a
zXL+q>|HCN23W(Lhq5g^P;ZcQSYL>Dns-yjH_(8_J%o<`>C_C3gZ%Lo(&;9-WU-0E!
zQ5c08I)+(4rsp4%Rr&Lq^rfbKd4j(-3c=r|dGE;1X&c@7enF$y|6jPgd|J?FRi3Cp
zHJ8MD=_+ATFY>GRNF?gWZLxI3y^*~8qV<uMy!AZRcS^(0vsN>1S@5|O*p4Z+8ES;|
zwXwm3()ARYJ85J<CclgXI;gp>dT$5Yq;J~z(y^hW$6iw_Mcp*tvLnWQD{x939c7xY
z$@@Ig1I*3eKz8kEnUxaW=IFz#x*dIU?Mr%J2$b%aSb?tVFo9>yk-3zAWm7`Q;K7Rg
zr(vtpXJ2ZW^leLEPTvlm)IrXIvU|oY1h_$JM8xv+*OC4WZD9WW(ripJWC+pdYiuvr
zJ-HdirNY}h)7Ie#y3^l>>_9n}jNedE7cfk7qk1JZf~2zIh=<677yPP=v~X%NzWIGo
zYA#0yEtx&fCOOaVF1;<+as=E2jZy#1s?yCSDFcEgtTw}}tZnx}l_BDC<%0p7Zkq~R
zr9-;ig+gW)%b!hJxb|(>pG;wG7%RSebu*H&N40r^!iy7c+puZBCZX8TCHd-a+FLes
zt@F}9+=@Cn@Xs7V;xV!7EfK%x`P(lpyV!S?kWEZ$WIGPT8oplaM0fK{f7aT)fs#(f
zC=}>eBGMp|x)d~i8?49|D>%It4H&OMXZt)q)>O%RJJgZXuHe>jELb7Zx=HUpwmIZ?
z?b?FNgS}BRe~FYmK4?vWedHW|Noho>xw%ue2lvxxzR;7EeQOvtHW8_xR}*Mp61ILd
zq4i2Y*fcBM@UUTqoMQI(__wT*tM|eDO@GMQh!?3pe`i&Fp4NZv@X3$UthM7@&uBUh
z&y{gWx!1==rw<d8c=R!WaM3~s?IcLdikXsE?Y;t<n9Q?dQa8qiE}ZFAIy9RL08{7|
z9^7DXczWyldumVd#czxwhl&f+7$cZ+&DxZZ#}LDjMSg{4M2Xe}V>N_b-iarHS(m5^
zq6dZ`2SDRDqbtl6tYXP3)Y<?hv!&hz;up&J8NXg<!R52>r{S3BU;7pJ&sgeOf_^f<
z>ru2a4tgTu(f2sN6c_$?@)Nc+NhkhEB4~N&xP#l>OTE_ep+ps?OhR+Hj3md~wL&n5
zo+XpcX&9g*7;3Hp;(lT*4H)%OxVBH@&3<U?>;pX+w{~V&ECU3zskM3fVD{M;Zfi`4
zKRuU~QpPoMUh6u?HK98igxk&XBSSxZ{6nL~aJO3(pc#Q4;Y2aicf@)Cu=6R|5|&2J
z*w+)8+7iDg$xSYqq#px6^c0AT^*!7Qd!N>W$#hD}GqPOoe^{o;jmB$an}LV>tA^nQ
zKy#=rwuc{l5Aq7?WrPOdsoI~C4SCsWCnB2d^#t^R-2cB^6hJpAhN6BCR5en?S2q~I
zI~bkgd$YEr6}ItTHX8n!PB)W5^@JY8q3_qO$!SWB`=-9x^AQ1xtgAe#^Hp#Ub*GMS
z)4sn*1XY*~rCQ*^ywE9!XOk~W9@GetOM^)5XdEd7Pdy87Vy7A`$*k=&`obbo@Ih$r
z%?*bH&N7x=YH2$S|46yAT`Q5>Uh$Pln^8r1mvQ^H>sj=MLu|D^o2m;qAz#Uq%2`)&
zGr6{|P+>VC9L6hIatI-2gCo6&v~@ajRYlkl-nTcBAud5+ZV7la)BAoiOhz=If`qXt
zfywkf7&b4}@{NAsU4sZJXuREljwY!F%=N3L)Xc5Agu+_d3TNmGY95)b7mV1BVazup
zMWP~!wH!-_cd!kZu5Pw-N$98t{yXafgPdDv)ZUXPv&s-RJ>wJ|AT+*Oq;@Pxk{KRX
zQ?7My<e(^(oTtlxT8$Z<K+s_Uk5;0IEjQs-XxG*-7CmEl0QVTVrt>MVCG?s&`eu>}
z1p#a80ahb2dgzr^8o#0ney)jrx97%!wao@ThQ}mgVvR0vBD6Be5b6jpgTCN$0%R?X
z_<kMPpJaqO449P>?~0ne6M^?OgIv)bf-Kd3U>9HC*XSIcJH6D_tLV>K&8hoLwYkNL
zRzRu)_g7h%*V!n7Ld(@2+Y{4Tm#yC}uYa-K_84yTmkW51#eeb?#$?DRwi1J(*#2>x
zF*ym^VEc#pnYZ$hDX6a80@pmovwYLK8W4Y}qG-eD1bG*PuHeRPtVx%T+_%)olMZC7
zIC3-3n*W;bt-Y<5hNTk}`JP^ZJ39D_p8nSBn7;*&2=ta()4VzMukn}Cpj^`N?C4gB
zvJY@j8q<n;Xet1;uR+)jIrS@~;E^vlCllLeX2u!<hGf3^h1qvOR>yb?QbO|bzBymk
zHFuj28nf_x2z|i;LGWbSf=8&C5))|x3pk)JdPoyuwkosJT1$K@ZFAZ<&k9Vpn4U0h
z>{QhlI&Xu4W)Tgn7<Yk$w-UaVsiAi)X}N};2jq$z=^UB^75UF<Ch-L~z^)yA(K1*b
z0kpyV$6PMtw%X4ac<0EU0be#K3(3e$k@u}<95GLT2L5cHFZDL}v5=4a-_ruP2fijh
zO)w5Vgx|$$<A<sI;~|BY75K(x)$h@AS7UEn8$Uh_K{JhBJB{1FHyDeNGkpp4x-i!<
z`B3}Ir(<YO_>^EQTKkyet|>5bm<_J@4K8?lG#Wl6g=j?yrVt$)P;z<wB7H<(g;BOO
zNyFBAp--LAQXtLRy1y+;F9>81xs-pMd163Wz8JD~7o42_#s)3>J2TaT<qr%Ts^$UG
zCX!wc1*J$u)k?g;t*!~<KN9<v4m%%%mWZLQJ(1<&wxflqg}8uszglY%Nskq4q9sTC
z$QvD8)g&W5E1Ms~cG6mmzVQRHhBH<D;@|WypJ3N}h5BBpTLFc1>A^1*KD!P2lxB`H
zEc@w5NitifuBge@QMtM9gKm<pj~w#dMDc({0zo&!po!~p{Z-RKOaIB2DS*B|bu5|u
zrMD!qm-og_6di>>VnOAPW<psf^Ln*qzZ+OwJ*auU?Y}3kE@MEGYP`}kr3Y1q{~q-D
z)KiO-!QLkH`aXo`pTtNs;62a}K>dVp)oq@!eSh={&#_hXu_7Wefv?b6$zRp~(;`Cz
zTU)K{;~s^~3?9K;hLPJO2|LqTd`!MwYvR{GoxX}geek(oCSO8_eJ{n*TOjKz43MoO
z%7V)i88HzCD%`^b|83^eMnMJMU$*U}<>=5-e}!={<ceHJ74!~n^T``uEih6b$jjBD
zh@(5p$K?rvzc{P_X*PU$b#$bA69xyI3R<KlRrgBi9zd*fhQJRPy4;<Ke}eVMiPVQ`
z#zQ99xfMWyB3gI~3krQEbAmr0NCx$a-Jsc?Y#bXm$p*cgi%EL-ah~hfR1HK<ja(Zp
zNt(CQ<Rf_!3lx-bngT=0IO!4hue19WtE@xu?ixUIv_x-}oq4HSWHrv?*ke^Qgf1&`
zFF;km3|j6cPySBTPL99O*tMvD6g)RhwgdCA>=54ovV6b(IfWCP(6C-Itp_YR$p_vB
z`G?{d12%_y-PD0WXwc$m_)!f6*ohfGzKtHKu4n^PG*LO;YnPj}nF3sJ{|#2(yvnQh
zG=J4z`{@{39iuHT6HOrrXsqc>wbvfv2hgMFkV2zk%5h`8O-oi;Zg$c_19a6?UL;D3
ztw8sbGGGUV_&mzapJ>LvwTUtndCm!?b^YryuZ5q`sQCBiqaXE*{Xjv@JsJ=g`q%em
zY)OQ5kdx5K3o)SvR@NZ#DuZh^WI^mU`JzQ?SS!|srpC!x*4d?>lV^-I&W6|3Z)8du
zlc|obg}tBWurBszna!7?ct@!}<V>k$PIEA*Ohj3XEcF7_`@RNJcw*xi%~$O<_AS;p
zh2c?q_hOU9W$=%y<B4#B_}{4pDh2eqiLo^JR^{P9Busg2-Ff0?ISnT#RHR9fEHW7q
z_g837tkHm)$SGkHSMQS(Og?Agyla*x08UC|fo^usr<#!sW>z>o18Nu_Ze;9;rw}I8
zwB1GBas&xSJ$vu^oQKnL1g3|(<K(LlQ|&H+w{x&ISFq;!Zjf9Pz^7@#%*VNR!8F^}
z8!IohWZq>hx@XCU+$^yv_+c^C%_f<T%G-bHAUn*voGHMSK^hvbjrkKFUO9?o75R?^
zNzoKPn8cnr<iFz6Z$UOYxK)>AGBj*@Ek*Rl(X-ne;cdPM$*R=M^L`;|dn%ov@Cp%a
z((o+!Nf0e)?(s&ydK6Kh#$5M513@zzfsFh|HXjB~qjB0CL$-amz$`#4gD@0=xCbd|
zCVuh?1?DiAdl@uOB^767KNIRM6`gPrx3pEJvSo^9^X35NHpX2JU4*;a$9dr_eYVt0
zxow!Y@;HGAQ5={uzRVCE#psaM>kWq8`t&{RjqLor$(7aZA>yZ7kJ%+3k^cSgiA-97
zj?oQ9Cvf~J&-E;`xT+7})iV1!m70*RKkf?9Jb?*i7zT@3Qns(NI_o`E&uZTrA82hQ
zi-GDXeyh=1st~f4#Hj^^U_!n_#f$oV4Ud-sWp6C$@6UJ>SmlmEUnbcI=h7jsxMW87
zn;0t}O{PvYuwCn5AH=Na54d@6r)$C*0IGYH)q~7#R$75Y6y>=BU8d`7lBO29U|Gq3
zejc{W1$1QxW;}W{VHin}(h9s;j!Qn4Bu?Qxv{v};A$L=t?ubOYOmNto2y&q=KjJC1
z{)*Qp^Qljinn4SH$AgH8Bd-_@<OwqHWAzc)Ox40>D=IzZtwNiEu}{|`y#K4;K$1a<
zgjw6M&)kHyBwQf0Xvng#=t(=|sB$}x6auK7mTl^E!p|ILTJw1q?6v+ZXOzqbH<FV$
zM_*6Z*$u!8dbs<WImH-3_WO!l168$n%F5&Wg;xp(2#tGLJv90&*UVEGK2~(t&NrLU
z2Zr$1(vfHV@~HnWYzBs)A%HpZqxD$KxzOj{wZyy&Q_Ft#(f%bmzJ=ybWQAL_j<1fx
zwa-I3h2~KGjWn89G_fJR5I_j_dTI|l7Xl+}>7UkYwe~3x;*VEAwS+Nnql~P2GSI$t
zNR@dt%5fM)3fcBbFZ=T!xpqpfWs>qwpPfKpr$x3I`G??vyS_-ubO8r~ca)zDn1cGr
zK2?V|TGBC205pVGeP`@JC+3Y(tEbVLa7XDqqParkEn%?D-gIw?gtz<LhqFT#U|)+Z
ziYm-Q@HRc#FTD6i`D?&nm$56wf%j$h%%OW!Am?dW2hr$=aTL^ZrrT(9V>h_jZjZ!T
zR`)l^W!ycVLtbL#5ixJ<H#>tD**+XA){k$ggJ$v05eY*r15c47Mxq_;Lt)ig#!oD?
zY~yP9+Cw+AvR0Q(j1X$GSr1L*deBQYdVZlN9<A4&=xv=b&OXb%YJHLlb82^#n`AM0
zlVv;LF23VXP}peIfl0;vE7;FqL0N3S`op~;gZ0aP#zY=(WomPelx5Xe89R3__`1Z1
z4S=K)&bD?gxc8=ivNNuxxnq4`VGn8^4sN#ltr<E1R{Vgjn>i=si>z2H{N`#0wBqLU
z*vM44JwCaABasYpWYsuF(u}Y*PzkV9^W563ibnIPugRm#O^GlHB?hMt#sy03&{8)Z
z@UY!}gVLQ1K(|`b-rwEfpE!XFk$4($T+j5WPb80&tP~M2ajmygPkE}%S%$)QxA4Fy
z?-PYSD)JgY>w1&Ka&(N%(c|-@SM0a{ExiuW__|AotD<+5s|pFS2{zr*V|?ldya6K^
z<qlk1c?A8|l@IfO2Z=FREe<)4mNuKuKz8lh(MbvFbamCR%<=isjyC@26Navoq;JFy
zuf$6DG7Y{O5E&v-n>)jG>HPNw2Lat#-q{{`k@@EWo8ND3A|2Fay`;v{<2ZBk=dycH
zmh8`=A?0MePj;nAdl^hhbQezn=B_iRkZzFw6Ts3VS^O&jRzezN($^ksNESZa1eFDK
z2<(0A>dvEV?kV>@-n-#4<l~;AfClY7;UbU)y>Q5z61C;EMB>1nGsrbgJcdCN5ms`3
zkH-iC@C0P7adIDRAPvk24|#|8Cwxbj-P&a+fHNKE5{o`j9IxQO(nw>kC;oS-b0Z?Z
zOFs3@paxpAgmvHD%z0i|(P3!;__6jZN^rg*+zGN9p@6I3N`WN>+nm}7WLBTs*#FrM
zR@kCwC%dYX3X;4T=+=|u-`(10pm6BObEVMke7n{e0~;UyllMwsTYP6Qx&7;lU4&Dl
zm4v)Awq=u@Cl}_|e|^4jCTOye6K@qn4EzvejK_voyKdVKz>|46!N}pz8@bc}@qS#X
zRf-RZ69*DZ30%>pEtlVXEsF<`NA~y(39(s=;ryw~GK{S$uo-_a*RzV@BVQq(Rd6c!
z=Dh$$w8T1R`&;mEiCcx|p`Q`SJC7^3x#ua^O97ue6{iG%I-v}R?(d=kb+HGikpGuB
zoqp4lt9U*CS%b|Y)IZqC0)e_<ar;=wHyQ^1>p{+pRE^}>?AqK^Z=hJ<?UXkydJy`Z
z!fWF<M+NPOMr-DM8N$5-cY^vtM1n_!DeV3o78CBTdm(d-3Fg)r?fsHFIKiPSV9^u1
zudN-rYq1eFK7%_U*sa-)ECPlHCCc*YC{UO8egyt5m!$|9%G}k@B4nRgm6}(C&=L}f
zJ%~7Z?k-s3R*~w-`f)IQZt#%zw$}~wVKI-`RrI}DTX?R?&6B;cDc9F)hNk1~n2X7$
zx8T$+SIPtS13pibjZ=P42l*;gK?+6~xifnhEsN6B&pfSxwtZ^(SVqx)d#oBI*Y=&W
zy<Q0Me7SDb?1W+pJE`^`w)Q9E9c;e%<X(VDb{5iQp7~)w7BTIJ`qN+a<=d3-oR0$!
z=e9Z7DMMFn@!tT&48w3=A0@pX_n8Dl0Jjpq-}zau=e4`U+_I0U*8b4WEqkBCiS`6_
z?_J+4uSF@m!tz}s#fi!EfNGum#P6Vs6d6!6rYox>Q}hWHNVdBr%yRqPE%PxCd!LX(
zYVgvjp6>!aJ>PI7$-Vs=Os+YBBnrvKC}0=9`7*>JPv8IZvE4tu4NVS)bO@eP#KIW?
zO9tAxJx10yV#zWUGx!1cX<*2?qN9|-$7d?ny{`SO8LQjPi$?N{^M|Pmu#hx0qpKGJ
zRPlM@ukdJ4Wl6%<`}x^D`*!=sYj)OIJzIxK1%&0TGxl@xG-UdIkmXxtM@aQr%zja9
zqq0jK;>ON7u=5~VKIJ_Mu~-}Hc)5iBz~UfD1_mLx<VO**?thnplf8~D1;?(n$ITRE
zE1B>{tci_%8x)CXQCfHh6??F8t(^_cKK5~~^`kg1{XGhy$EBw~5Bvwp66#GxX$n})
z0ASvCE<Q$XL0kb+Zl2f5g2ADjmNwR=^uqfdya5rByI>L_tiZ=!DM}3YpCMa{Ucw)$
z;Tv4aejb5Q_+W$q$N4qX-6IPy7eh16QD2a<$&KWV!z9g#m21aR9SNB|aF1<11}szm
zb?z+nC(301Z%1Eua*G^Sw{vj=wZCfE<+Hj}gLR1gDf+Rl>G;v6`z_ofG&v7L-PO}q
z>;|Z$>Usxi5C5}Z-&>LhM_`w3GZMn>L6zh*TkZBo1rj#W=mK(Bc{Y*QU_kafaCp!h
zU1m}7_A<;~#gZAb`p=B3?B$~au#LQ(wu6Zw#UInI({}}Ost4Bns=xjTC`S%1r9ITm
zz&5`sH+fReOvx;!X}nz~@^KvaCMeE*n|Q5$>TaZ^FxO{f>uh`j%ftSB9HD3jogXtv
zUJ_Bw4L$0A@YER@8@NHIZY&3FPt-^bSTEhfXHIdGIVRd!Db~%pYKduofVn4Ej^}*Y
zl98JaM=mPzz{&S@0UDO#&PrwwMcF{HmLA4q3YqR10SSD9hY0F0&StWGgeVE+r%!%E
z_PF{s_)?^y`as3oGm{<qh_z--Nx0a}nNjz7o7}#QkChyZwOS<yp1L=kQH+)1(a(Hp
zwPY+es%vb!_sxvI_uK#Uxhg;%@6Ff{WPRP2N5=A3r)?ghD?ttDH|T3@ATN9+3`sRI
z(tt8>aReLzpyR8n>?%$hHV%OH2M}Rsb&_}B5Z)DDun*xz7&HK}&{sdlirt1AsTff7
zhlk`Za;pv1D&b2$&PSbN^m#3@TAcELL?PPi7B&SNnWcnI_-G(p_==~)N0hQZLw?9f
zSsV%uPz9`L{`kX`Uq8%8{lr~!`emZj@>x0eR0X*AhqU8@T#N@1(u8=>LyjV=$S!3A
zzk;35`ts=OLIc$bw&JYu$$oy$6$8E!gE$?qsbuZrvv@nW<KL!_L4m(o#tgAkgj2XU
z-e|_3Q;tZslADq3r#MP_M)s$Ao3|Ln&;jN1R7y@lFhnG|n%y``MH-a4iGHQHL0AgV
zY);*|e{?_V6~#w&`I=`PieA4i3S6%*ugw`^?K@+9EjJi{D1cEQ7RwSFl}&BqAzL1!
z8OCRg%J{IClAArxWM@8U%1|RPu~iOrD>Hv-$?>aV`t$FT_D*VlcouKOugRNPU9!!l
zuWGWmqTs)L2AfmxQN$+||3P}DWm314ge@Pc-wG;VVzER@l)HV-zfn>mQecmNFy>b(
z)}FI;J10)+Df~RTrlm_3Odc?48h6(02}9H|!myg~M>kNZh^`o7)bBnKTMp>2{Wahd
z4|;w<I6YZq_9PZ;TOrSE3M+E>57dp0N!IHuFa_oiO;S`4N!pD<QmGj=>5zL^4PawQ
zsUckyOV7X_C$0G?k5~BeZGuMjbuI#>xGPvQ<Y6a`9pDByEf@K`BL?(*EgpwG;3jvp
zNt(D9L`hWYQZ&5aJuu4smZj!%;4!0l?{h2MuYKtAnfF`5wGl~;gu0|oG;2o1JTzl4
zDYM3{JEq=_i#lc&;hs<vJ|&c@-e8bSEOm1&Q6@}Xk{6&R9O*Xp;LpB1ce&O^3zq!&
zLH!8#DDpsndFn=S)wCWo1$v%3BvMxx)J-OxL}VfnL#myD)aL84`)7i4)!f%6B0lqE
zkNICD`cX=))1V&mKCthaM_93MIqID8JX{;LvYS5$(ZPM*TG+n{=cK{{cfjBqQWN(+
zA236n`hlsNLI*t>m*H8f@tAS-5z7!>dXKI}h{V>rRHhQD-veP0;O~#=w`Prbx*q%g
z#6B|G_TtRRc{8NY%WXFH?3J$Lmjv_javoynC&d5>nO~yI;zLv=r3{(GC%=8{HL&r=
zX5@A1!Y+v{m>>nwaw$ja<i94@Ut%IZSI%hOCcggfzd-yi&|S;2ch*7fw}T?Zw8-+=
zZG!zV+3xYsvb3c!8%p!*<=b&#RF3qx+zoT|vjhd=Xk&}uYpIc)yf@d@SziOqefJ=!
zy+Bpq*frF1bRe9qAXn!Y55cN@2_O#yq%HT*lQy*hbEpAu+30iRGFc0APHD->ne(Jn
ztE4Au^ug@w$=AS+wNq_@Jf5&*9?6^?e7)y~V{9@{FFEJ>F=TuCOH9p0izan$9hI2n
zV%on~mfj)$qz%cuDYXU&lR7kGic+U+2^qvSv1hS1jSt5U`%SE#Y6Da7So}_K%<P&O
zR;|e;;^cjNZA!{tCpqlxAf*+E|C<k050NiTjJcn-yFJo=K+hU01I*&!{5<Vg8N2dM
zLJe8JSowbCn-O&)+oMj1UXz<Fv`PD3Al@5B2sek);Z=m1h`()x)P}8jlWnMk)VA+g
zs(eAXD3ba|Zblos;rvH~0De8=O`Q#G{Ad~%W9Z{G_UJFG>(dIL7T=iJ{h5YcI%gML
zU;K#7_#r*3x$|nduVjHdlnu*;=KU+T6uNcx3^n}wYHMwM!%11oIIIaG59ApuBa^`)
zBB+`AT!=)kYQ}l4c2v35Q)h3S%FliF<{p7#;JtD5xE<9O_?8!N@QSf)_?v9+u#J)`
z4)M#!d4CH>dfTV=wWZr+Dty?Esi>P#fop=;WcRXQ$d~rnJfkl;5>-gg*wZ=)<Z6<p
zE|lI&4_Lh!yG+KnhleK+l&?U-AdoPMyfP$PQVefVoW35r5xvtP8!(|?z(Jk!{w<x3
zNmMVZMh?&K$Gji~W6klXITd5PbI<b?T9AQ~t5uI76IF8uEwk8Wddv5WE`9b`A*Q<C
z6h{u@%dubb8Xhnq)U^8Po3&=u-bn*xU(ECHn<yc?&sUviCgD6!A^&MdC3UDRoLzV5
zNPd_c)*9VWR&>wu=87m%h}-hzq3{2%Ewt30)7-2n)?PVpSz9(MMBp)tV8o2(UR$J%
z?dyTj#!||Do9186;JndCV6-syxqz>1!Si{|r378^2%A3it;%_yoFF0C<<mko&Sk2s
zvt$@pL*xc~xtsTV2N`a8?XS)TZQ<p65w9F-$|4~3dh_|cW)9l-nzBL=4(R<DO)EMO
z%Qai6TcmhM;Q22+E4V;j*z&dGJv!`Rmr2jxLS%%V&!v5Cd36L7{S=}h%#z4J3}}ga
zG`=U~DJzVn&|mg+*c5Hdo7S*qY~|@=!+upNs<M-2=l`Q>18=}knNu|wj11U2Bd8@Y
z89HxTZnaCK2-kj2r>ZkB-C&6NL=;YGp%Rb(Qf0NTp)uF>ie~)QAoK%{?VK?avdA!{
z7Ly}hsckTuYqFHI>7-u}`wS<vmsQ8+a0vOW3(Tp}?<+Z~-e=HP92Nh?tl$0ZgOIu`
zyHag!TU9k+jE$bt@Edw;8o>84@y#Or4K`E9yg1*NOj&XIbJraABl4oJn$BxNN`Si2
zr$IFEO97w$>u*g?Ef&^WO8gmJ^hS06W~Rxd*0=W4<*#-)Ve>)rD4a|b2z{|LUc)GY
z%qA<BA*g%UeD)y2%}^)<>RTWXzB{|&;m+&V!Rfj=n*4G6(JJ!X@_W7H%E8dIIh4V&
zDDt<xI@-v0ph>Z@YZA41oJC}w*nk6PejMaLNlEsPBy3{Yn}-{&bM2ap!%{{Wfz3;2
zj5VG<@8tzc_IwYTHoD6HBc~%3b*wD=Wmqz4;((y#IBQm^|8K#PWoF4_x3=gWw@pmQ
zHj>u;V0zppl7=AUJ8`t+`+IeT9C|Ape7_)Yvk8SePZnPz*P(uR1(3<-4KhJ5WU%t|
zB9QZ=H+z8-l1kp+2--LHyRXXDvzxqT-0}58gOV4&WpySJ=hWn;hK5snR;(1jw;)U@
zQ{it#VV@fclWT@YU%R)>fuqhWoR?m&JOJVJ&)3!p`aRN+Wp1toZh%$J=i&jAi*qXN
z3KF?4-KNPN3=}NiEJi8Z{lPyD|5E>0E2r~L{+4IqzZDp|W-@3>^8QjaEOft4n_0}M
zfpZ2V;hWLt^NARJgda-d;8Z#do=$u|&HuL|yV;828`d;QhT4comO-aCV~X4W<~R5o
zo;T}!GuG<h{>)QQDB&Mc%#mcfx_@CK7EQx7BEv(DAF#{qThz8HvT<9D59tX|w)(Fp
zP$*qB{)l_fHn70#=Gir0Nj<n?Uh~|5n+S_yEvCO@IhF&RDdu6Q^(QfKF5CEtG>SY{
zUT#2AMarv@$(@vt9HKOo3`*9JlbOk(1kPg7WLqosH%eovEoZtw!qFsSJ$xUl+PFXc
zrH}EKG(Nm;`pZO9K<Ga#zwch&mjBK|W)-W>m(ws6A>CN6(}lhlU++gXzx+7=(BjD-
zPKvyW7VTeka*24|4;OJNg?S6U3g^X=5sIXN;>0KuqrH!Yao_Zt+tD4#xDlw~8>d7*
z7v5i{38X;JE;Uk>azo<diXg8LE|kGVKCIQI;@&1&8J57{83F3DFCj(+s|ymyb?;JB
zG5*%ZYTk#(pl=LPPtfAFbW$K2!5_9S(W6Tyh`8hIfET2{JL6rkSv4vjh%ai8{BI{2
zzwi5qCNp=bjg>ND>0lbSLFFFc4LHiu&<D*<mZ7u2`8Mq~sxZ47l{+n2w54GFLSKjz
zkbtKt7&=BY?5!j3!isWnWgmWQ(b$6@)IMD{h%_ccHIgXJ>{10r*Jk40dy$^V^d37v
zUO^D}78w86LLk0H3d=!iX9hU|dbdUV2FT}A6DNxH;x=~&eDwGxa&hs+owZFA=J(uv
zycj~$so?0z+f`Igrgodi<W1BL_XcgMiV|9EEh))$*?<Tn)2+*I_0<6fequYxz%r4!
z?LC)bR^@HD7Zce&x*5{{_uA-NJ;uLxjG@++@rBB$JnJ9EFTqKg0fPzgtKVkFI=gQf
zwIGbHGkc}~a{S~3A-&}am`p!u<&ZVZ+%w&asNGioK72prz8kNo424e60y&4}<-9zA
zX=__ev1RNI(?ue<oV>56)SayQ8?5yeqrc)v8PDQ9DJ~VS-mv-rMM*deS=Db=iwPQB
z6}s7ju+(clV&D&0hTz$9Z9UJkHm<PU?4_;6<|;V#sNW6y=@gpl<LtR8-qj!%sKVx(
z0>xYS6q`CE&(D=D9Xv1&@=OIcW7-ZG4^<V|1H31y=JP{)Rs)U5hR#LAsWMKpG~Cs@
zzLI(>i$ciJCNT$*Pjyb8>vk2^Yp>Xx6!;50IsK)b@#>tnMVq?U_{Ymf8SNenA83hr
z&j#5k0)nUB7bP3b>;-K6mNj6YD9Fo-XpwBA<kGd=xBXg^k!F3z`4b~Wkxy&oe^;`r
zjd>2ApW4~Ixu^fJ_SX*S9;wpiz^<J1tijYHuq%dC&=iq$Mpx8fB#=FoG&oJb%=$@h
zYGN!>UL~x`L@r_;eG<%L;8NC+RczBU{`68S$m}y%v^Q#0;d+mc;Mb$kJF^~1FzBc(
zS&9qjVSjemDgRS|l;BIp-=h?kPMdaSvp5=Q<-uqpy;&&|Q2OS$JkEV<EXgigCDmBT
z#Q?n*gs%5rT_KB(wDhu*_gVz85h4Fyqz>&odnnBV|Lwhfa$^bU2H-@$wSJb<&B&T_
zEBCsLWoyfCD@BXuHeL8<YRfFB35U5JkO?0y-B*%-D-SXW$sb|+@uIHHnym5VXO?)4
z4?Z6xQ%%uSpl^aK?5DSVNA8@XWZ}n~A1rCL@B-*U4}Y(#<yb*LxHyHXx#W)#>%Y67
z4`>E$;#QS=W`MflGxWzZjbg+mw`X78eVaZ|$`SO|P&_A6L=EXIS2@w{Pc}3KrQ4Hn
zdI}c;;T*UM_D5_m$u)~J{W&`J@R<3jR=;*QYvF|W$qkih%e->dg)8`Wuhh!!j~#_1
z)@;RE%_E{(o7(zSJdhof1%+j;W3pu3-zmL&-4R7d!Pz1O)+vN4PY0NL4nxWuALG)r
zuLu0vGYO&hSOt(7kHxe>c+PuRgblcyxD~je)Gnn5#!2-11ic-D4Xep~43ff){`=-D
zmM;UUbXO`Cxg-k`@SA6hIu{>nNCDxb+2id6Ozcqx=-U%7M}=^ARJ&i85UJ_b{fN4k
zn$FB$oN<eKcV2jpIfl{Y-q3>&(iF&vQIx)Eyd9KX)l|+{j`Q#-Z<pBp@2!3(fP<nx
z)u)IH;OeD}6_d^P`XpFH>>%fl{<I4{c{TTRXO;S4bh+i2v~y5qof)?}djByw5=!*)
zdf45g{grFDRh!psrbDi=Jhj@3-gE!h&vVElg?-<R5kFe4h7`Z8v%9n3OIx3W&Dw)s
z;5Pn{{UQ_xj_-nYIqEy|$c`Kex$FURCFjhbQnFGtzd-~g-CsiL$1uVzi>vzFO0<?O
zH=%n0t@!DgL%=e!h>QAWfI=(=!dP_Fd<S$I`oc;9CB18b?701ZZZ;Q43=F^srFh{P
zZyoKv&|wQJc1y~CLWd1GH$4c}uuAEF7*<LJ`Akd+t8xA5b$cNkAg-72_aPf4@EQQP
z3dc#md%s_}p5roU3XHYdu?vgw3RC<>htv%E(3hdQOJUOdyfKP7^()TvWna>rD3b$y
zj-vVGKGY!BqW4rmqYipmW!jIZyZ~7ulrma%l&i7W6jVSaZU+R25xuVMh&+3`Re|rY
zeF!Mb1G^oY8?$nar{9|ee$R$Yn^Nez^SnaeJ~BZ#=*i+_$=Pky1{C@uJg0evZ;$xP
zM8detQGHc*W2CNX?Zg6)+fS~I?{Y7f^;bzi5*47{+w}S)4K2vW<}q2TWTS383YeQs
z+a<8Kg`{r!19G{1{6QnEq}c{gW^Pkb5#tCYD1cJcyNvp(#$<}!SmD1H^1h_)TW|3`
zFDUA8+`D4}teXMLpi4u}V-sxM;EH`4;-|q*QgClP%1$tz=LH)oe-TdeW$AXxn1R*X
zRvzcI%E{`?p25>UDp<z%+M6vG{+r6o1uj8lS|vFCFUzlyO-Cc1wF6U|ZmT;p(?R5#
z;LATKDQs_M>Cw139}g&9y^BVFRT%QSb8Hf$W|i`3Ev>fp=^h?0#En~Bovt%jSVr2H
zyb@@E(0HCFyzmP8>GM0(&^}T#dm2!Ewa)R+<5!8c<0{>f1^c7a(2w??{Gk~$hbM_k
z5&g>Wp^>rgsFvZhy1<`uRgE7x<b4#kpr`W{M~Cryg=0fi6yv(!h;HQ4Sog&Ta39lr
zAGL1N1})b>#Y&Aj^p4Coyr%e0njY8k`)NwPLRfje5!t|9!6e!BK;{pgo^b2y6(8w+
zQb`Fv$B8D=R@ZH)F^M<~GhDdXiCnp+r(qZxUUv6Mk;Ot@w#C{_{k@M5LH~5|lAn~M
zLH$UK_-TWE#*HO*@QTTN%H#W1GVsG);JIao8vZyhJI__@J-tn@)V>AcCN^%!e5k4|
zE1%}!@<cXd<-J3X-@Qq4JUK)!ZJ+mT5IO75KrNW(MiJLOWb_$dU&U||bfJKyAOL!A
z??wdA8dh#{8EmH_<@B{IOh!0^_{sQPm>l-F-^a?Po_m9@Hhlk60=bST%ZeDCuvOU<
zO1Y2bWb2HTF*aHbr0#sV*krTVg49^;Z(vUw|MJD{zZX^^Jw6bp40!Vd))`TCaods$
z>O7l7bW0weqa)i-Ce{yR`6aE%#~08Y^(72Kh`~GcTzX4W2!pM_4p1Pt9m2=O7CAhD
z!#VG*Z@<dMliSl~Hfy~GC72Ia0}Mixza?2^9M-_|Lh-Gr$g*6U{Vmv^Q)f`T+ka8*
zGE|8*ax9>{Oj2vovr|>59e|Y!hx?FE1vK|Qyva)VB15@w)iXzs)Jj{Nw!K%k4#RG4
zrT;{Us;^Gn1b2Q9En$rxuFX8)+aPVWOr>C6YoKo|gxyOUtRzT_JcsIS9r+p~rQpm@
zl%<~D;$G@M|2VVt_k2R#wvB^OyD)cb_`;RAsmF!t4*#d7(`o!DOWoT4NY-M%Q0`t;
ze%V3cCZ*SJuGR(xVc6GGEI)+MO2ShuJj<@%b=oCyIqm#JO<$+jP96@m_RqKRT6EQ6
zccb-AVv%c6DiZA=2?Tp2c6b$ypVsZ0D@fL)tMtI1&-F3MRKbHK&?{){;Jy_qDl*@+
zzX=8Mz)sEmk!Nza0zmbr7_WO99G}A4%)P39yd@3;kqR{f=YKNnAXu_jWss)Ie6F3!
zXL`KoXMFeIaZs&`&Oe3q;zN`Z-dss21)gg&Al)S2WIOTC^52(CLtpPCJWW#|l=IG_
za@9|xdY<sQr#11Ua(uA`L$h5_`F_TkqGw3gl`3)CiVCJpFUgx*>vA--SatBKM$SeW
zgMRWfV<V*4N6A)tHSet1=ciG)d(pn-seJkdtdsU`$<kM`iD<F=!<_D4X`p?!&1-c5
zlbAF@JFZv#@N_jO1)t#wFc)^%p*ru(N?Y6r>5O~tz5+0kKW3pbsF^eBXMvv6qB^p4
zPXbbcga4Me?oa{1ILrWxZr<q^vAx|mi#Q8vI&6=b`V}n{Q5H6f$j6T^$BDt4I%Dsb
zf7R2f{_u&B<p!^ucu(!pbG6INljTQmSJb|T_2mjDM_S04-%W?b6vCH1zdK57I1|?s
zYkAz&3?m+qXoNlSs>$tlLtNDUaHXsUov%!D&B<1*suddr_8|CG{U1AXA&O>cJZqrW
z+s5;4bL$6MHG+b2f)_`ur4|VR`@(&c9=Z!+O@ky#b9uWu%=L4!PE9ZND8ca+Ymya{
z_u{^Ro$|Feh2!`5Z1Mtf{C<IO@W0EAi=W{yd6@Uz#2QOxY_)*|0{fF9rnPw3T~khL
zKt4cGE#Ep@-nhxrO>s1Cris;XJ@*FEB2ug&ySy5fFK8@K*`RLz-QkQ*H^4jrpO}*P
z{B)Hd?RsKVbJ{PF<hSG&8uPoMZFg@Ey+cJrO(H^LW~$Pg?FcWH`wO4f5Nx!>*7dU#
z*QFZD&d|IcPlWcVSa>t@c>`Rv=9mUgejHHwG<gg$E#>ff;h|TF#)y#-_22F;B!C+4
zVFYh)KFhx%uHf<hHZ|U51iUGZwpW-JMYUdcV!cmsNdUjO(0AzG*lpD2(QtVm^0D0m
z;1s6+*PDBfIUg_ZX~u07OS;)CA~yQQ8hK%G5j;XGcK40I;bF>rwrZuJ818;xI_A-%
z%19xvzu`@g3l$06eFvKWncK~5P3r&sd!ARMIW11qYJaV1*L!$7?*sN1j}N=lyP_w)
z?;<~)l`==DezchX&t>vsFWNF;0RH*nHYFWReWzyz9c7_UcXx;|7fHY0uRdGOfWj&Q
z@s5&-mJnh@s`7>AeJsMiQPvWW{l@+4N5YH#&%Jfm`J>Q`I>d<$i|zoa;1?~YB8Wcs
z_d_q)LO=B9yTQL-mbLc99>dup`cz-4eCW+&cWIk!PoTfskWUXrAhA{7_k_Sai)CfP
z71Jl6NTv0$wB3eTb%U!ic|FUT=coPQqc8%$X}L&c*2ik)8b+>c?%j)rche(ONY`@j
zs5HCnP3be7|NM|q`&B`nzbV$(8?G2{0cT`Km12}p*I!r+l?lxYx4qi^@|5aPv5yhm
ze6#m^V-pQ`qm1l6vvNT91C>Hh-?zJeO^+}2^UFTTqps(RzzmRH#e8*1F-iO`C_ZkM
zrWJAZop(%y6HM<%c_o4~w299hzw+Bw*s9D(_j$faYN)L$gmMckigwZPMq_08oZnyk
z%JL>Y+_YV&%IekZs~&ntKH?JI68!cKvc8qUm9rJB#Y4t;_{8_XABv~Dlqc_ZBlCLF
zX~5kdI{je{W{Pp&H!Z`Q;;7#p0v)(tJDj$7^WM!VElicsEnieb-M_1w%N^8?X?vK^
zpO(p*$5UK)d0u&(JudM6?BuC+EoSOr)3N=3i&|32Slhj*z@2OMXiZCLZR>v)&v?5m
z)i3Oq4PP&HV@wGr$3t5uKBPXE8;A$(QAY{F%(M_Lgc`H~h+J!W0qt9mrG3Yco6ZJ@
zQl7JS*HC43`!h%uU2QI#^@k<hJAPdAjs4v;R_BBHxefN~?OeT<2r(FVShWqZWs5RU
zf`BB950+D&ZfP(_fL1Neb*((sIUMCZdl;Jn^Ua+e$ToAdUM{mi(~p?v#Ar4ffCz=f
zjn6*I!(Dv`<5>duy_@Fs{LAzwiN`an2!jtB?8}vJZ{^wJUGh{9VL-oRjY4i{&w2Ql
zpE+Vvr{T5E$Dv`T3E0PbZ&z~#U^9w^4Om1IrW~JVVXSzw?GRuW2KoLXje>sjw?9c*
zQ9PJ6_|}%&0=*ya^?WJ<e|`GZH@xBS*Ha;)^+Rg~-i`|9H-DC230z9saY6q(VSSfa
zIF18P@g0lYZR8WNlT6<i=_$T`%k_jE_|dL>v2nh2#Ix;cPJS`h?`Z+ex|>`0{(zM?
z$<{R4vvJeE-q^3#T$WKOo!QNZAUaG7Do*FzbdsrZv6%ke37VWx>RBNa+KG_!D!#|J
z+y2yoO$7GjKoJI=-?{%3I=;;|C7p%+qXngeRPNuRpg;-X*ie}4h@Iotii)#<zn}M$
zd8X(dTAyo?42bJDym@!BtZxytw>G~i2$F|syi4dcf~AH09ly)|%e%abRV@eQIlNyC
z8*xkQ7wzh&0Si%+7na+`UKv4+{9RdTnQeEME1A|za_3HkLgVJx@ddpkR`YSWkvDpo
z4|%W7Pro$qzQ-E{Tb_sa`K;X)bS9NdFLheaZ6A#BUUd$PBDZ5dwqCbXJfXkLm49<_
zFX!sU_)N}#KiaCT;_586lj^%=w@u!JaKlD}DvOotCtl}epm!$cM)Pzl4P2NIfAV-J
z!kznvFToXXG?g<kK|Ina#NLoEwiG<OZl2n1We7ESn;zZf{=sN#F9#{~Zl{U*E5GtK
z;`L~Vj%zJ)%c@%*^#-+sbb$CXM=W@x`!r;JV>yTrds|=g%wyVWTbHQ`N5hL?<5*&Z
zh2Vnz1nqmjgyxAAu9}Ek6ywKH`ni}VP>Zp79iv2f!LLZguI|pIb8#TonTKN8X<X2w
z{KYbA{FC$6;nWm@2);gq7is(bvjW$a|KXv=`)j%u5h>sK+iyC$hzK8d-v!prI~3bf
z@ix>t@&duoIKj{28p}5o)2_Qwp`H>uCe79~w8x)AQB11!Y*_U!5Z>%<=z?zXOZVCZ
zdZ+b`%e!>YmYV{0kwdc3xvA3|yc6zU>)o}{)eONrr|%~`4hES-gI{?o_9Lcz`uk)y
zLIKYa>3c{u^9Wx2S-eF~=?KimCs=$KUYE&(8^f-YTptLD(eazRcI6<U&O5d=82n1<
zL$hv2TsN`sQZ(>9me>F6pPoB6!RUi+TO-s&@((%d+eJd=szLict&$|ISm=VC#16E_
zj2Y>0Ht>cNt!N#Gxyo3x{<p7paCI@D*ZHodEePpk`C3k(;$@wAn#RL6C*||8egLWv
zbb89H?0q30`e9e4;kA0(>7{f?VDmwk1{W8optL~FCANRA>$&Jh!n?G%V4ER;ouS0}
z2a5&9HuVKMQVcC=S{4v;kUz~W?iIa&cbTuX%WX){UC@k!RBL-MY85MX1E<}XKJxn)
zMp}&M-s<7zs(C%UvJBcF@TfE^@#1i8g?9ViIX2)`$bmaa1bR8$-w@7HhiRQr?Cdd}
zclP(bd$L;7wiIQ>>;3g{4#kUB$UwL!7UA~pzy7YpB5K~ZNk@#U|Jt!5r!1Q<!B_8R
zuGIG*73i_>QbW%alGy}>S{EV<>eZEY2Gtz|>zou_1#lJK6|}t8hX!j)O^?&htK|Jj
z)xitaK>H6UZ)B1wpYDUVv9))>kXfqF3@b;%T6eCt{O1*DR141%(U>o<FpsEHXQL}?
z#}Z+F{KDLWH7|JfUBSbGttd}Vi97nB^}mbDa&K2=iu3uX#8Bn}H`m($P@d+w49My7
zbY(j~$Zh+uQRp2#_<h76I00IV_^R7$uLYm=Z!gFjD(I_b#D7)N(4@s5=pOLT+heD#
z_RWahaZcU|M0My>Vz;`#XDP{5(|h{5x#4D}BAM`k{RFub5||nAEf%d7jHq%6m0BCH
z*WbIKor(QNc8eH|nycISV}O5Q{f^^u`FjSwm2Cy5_ll!=KN9*!vYZ!6JPUV624otu
zT@DQlh>mUxA~hi^B^aX`7HDL(PROes(BZ!wssxPn5fvk0T%8B1f!sZX$5+d5lA2L~
zcHYo4>FkpC5<6=pdJAnxm2M{HUme$HhB~UB6)J`3UG28DCRoS>g$7LBKOU5}ybZ5g
zPH`>FO3Qg4bKA=>$W?Ko;c10;t19am%8g&)>#z^>k74jyp4#R_e#((llc&ePP~$Bf
zwWDd>9?s33uMij)vdjz9=Hb_9X-lQM(z+c}&Hd=qO+~|R1cTmA-$)qx11`O-@_^W~
zJb?Zi_2!jv1&d&Da%*o{{5BzqMYj@rI_)WTIOw2WJEY!vJe7()dD62o$MwQW+c&rf
zucqtU20$`cRR4*Rx0A+H|JXu;6+c;V1oQR!*%4O&>z&E}PABqN2`(dzvqAa$skQlP
zm_Xe({&i15Ct|ggN1gYS)W)2QzEbh7IY1vTN3}Jwo}AoQQhpBj>809Q*fAN=%5(Ch
zO8_<Ov8%UzZBgmpW&Y)EAxxy9>!qyAwOZEBN?r^rrn~GBsD0n;!}Rl$muaQ3+e+>S
zgl(yR|E~7buFkAO%Yk_t*g&37Uue%3EZ0d-O8QHen3Vpd7AE0H&s+k+ulz13PIpVQ
zv$W5h+WsY{i`hM6T2jdH{9If0a)@-_Wo3A%tfh3OaMjzAgL9q%ulY7zorqV8sLpRx
zsyej}y!NS~iphSHw>{?bT_d%(@bZjFZ>0{9Rsq<CxaYy)=YmC^9=&Hs$JBa7EKmE^
z1o?3<8TDMR#~({$blon4niLl|=m~)3v)lQF{fE>TMwSx6U>aUy`FFxNr(jV%SDaFv
z3=v?2A7r|&wEH^fUCTP)(~x<y_uspyuS0ql?bwdVC9ikg>f0s7??O6p73WUeX>Y81
zk}<z09Whr?wY8h1x5CDJ?2yZgKNU)Er7o8r!G3rZ8%^pPpH(7N6hqn6zV<O_x=x7F
z_7#7i|6S=9?|avSC5FZEQI}hc!CPHvw|u?_)%FFY0)8V7jnh{3`E|h!S!`Lpnrh5h
zFr3wx{D9$0n|)GRS=C{g?}q^&in1g60Frs$7tF&3&NZ*${}}M}L0$_e>!)e^Wwpsk
z2N#ui!*&6xUz1ieP_c)rKt$5ia4Vx+?WY}lghh_;<s7{^iDbcql4#s6qvQrH|MFns
z4cV<O8ES$#PfQ=0N<|sT13)&ORO{fa-w0B?p8!s3qG@;HZ71SCYxqP|f2MR|J1r@9
zdHoEe8vspCVI{YC1BZ&eGB)I%+59EcvZjF$Kb=OD9$?#^U^IWdDPvQM;3t9iChWOR
z%=*9hD9kUFGvz+5`Jh$LKLI}^nYqEsed>IO0N7ZQcpL$Xcs<#i?S_Pz5#%n~|E)$2
zW@V(TefIgZe_P&3#fW#=SMf}Us5IfU9hq_yAITIs#6)hy!;^Y_Jy7f<h)n`1hO|(^
zj(QcD4^a9r<Kwhm!iX&c<|W{_=7w^`K8gmyp3>XAtLo9Fzra`R@gB*F<%DglD@E{D
zJNkLZRPlF4LSK$wUS5>@k;e+(Cocp?(PvApM)RePeggs%3Y60g;wc;Z_`k45vw5Ai
zYW9FC(^*%u<4+T&{W_BK@#AAdqmASLaWHD|{FWLgc;L-jH(~GmZGzJG437OfU{8Nv
zHE$X3#K<q(|MTy@bOxYik3{r&UzT154V*21DwL&t@6a{*WVU9OCR!c(g{kdPd5q4I
zaG9!Ekci;kS`xsezOAG?aK8CZvEQIMd$ld$45Mq*(=u^}NdW$E46JgPUz!Bfj4Dtr
zJ*R4DH%ABm!91^t*Lmq=N=#`!Ip~g_sqaSHNPMZfqVNex@H_OoDl)?UJG*nyc(yBy
zOHia+AaH?d2FQ~KV?|KDkJwIZ%g2;HpJIEr`Jj9*P^Q~Ji%0NM;$*jRmys56!~EwQ
zVs?A5>zg+Z`Ghp;AZ443jO}OF*Jb4<G1#A6xVYQqRd}tU{lmJx!)}X5Q2%P=P{YP+
zBB?7dQcMP_Q{$>7YK-K+w4e^6IWlSv-H`VT$9ZV21AMoczHWaD4a?*G@xrLFv7s0?
z<o(**4gYDV7O&M|+kD=t1R?@_*`o0A_|vQ?7HMc_Pi4?MRzk@$gu|3ImAqgqgW~%7
zMcBSUi`~hmJ51}Gp1GTa9eB4tm?;zx=i%+3*s1=X;0?w21%R0jAs;?FokKNf+|;-Q
z$Vl0tn#<Cx%9S|oly7C*t<C+`?z|{GC30Wu_Z3elh0J9~kGSz%3I)dc6dycJO6Vu)
zAW5=Tayzir{wI}FnxhI7@tdY2*ScD4H^qY}ynbJa%C9I;03~)Ua{nbOP=Lglgn~*p
zzgMOpzvL6Y`CN6ijvLpUVi&35XAI|08f>4rc|tPp7jBj*vu_e*`9mB9jyEq(=q~2}
z-d_~{t{){au(Z+ExDD;nG{qUkq_iy|VIh-`5Y+9mQy-Q<U+I2}SV?>*(l_Gd6Q%9*
zy}im<jXBQVUg}?k#LU`i(LpighX}(TK(|ZtBtJ0~d7Fov$gkK6HdL1t9e(g^#TCKi
zJ(k(2BIea)L|!GPc)OG2PwS?&?%NGe=GIzbx2FT=O~UgHKTW=?9foIAp#;0ETrD>)
z=n2wI!q%Qeuz&46W<6&+Piq>)U2%f{A^%6wc{oD-|8bm<uY@uZ;#6ir*&{SavLYkS
z9w~Ro+1!~~6_=f?tTNA8C+qCJ=bbyN&{=1@JNtLPKjE|9pV#a8e7v47*Ap&i994!%
zFMmRKUslPQW!4kx_iLY*^2Sb=l@H-#W)4tkiNqbwv(ezydfoaky|FPYsMMZj&OCVk
zQNS7b88L7b`X|3+KS3;m4}=K<nD+OnUlUdD-_{L($a<Y0I=N_D+#{&|H~&+TM0T|R
zu+tra=ME~V`9vc=w8HCc)9(bovdwr2kW^i04l|hyI5^{ka-Jqb4HM;Zmm-&x{vIw>
zx!$DXo1*cYdoe%zyy^k2Wub`i8E>Cci|l)k!kY?eX{siUuK}GAipIj#uRjG{>Lk6X
zRzWpxc+H*ZZiVr>5rj)v`PStQXKuIoPR;z3xpqLGQF;jbU6&aYM8p;ezS?%hVDhaL
zW0ybg=_vI7#Z|HbPXw_3*RF0df<c?6cOf1P53M}u85Ix=2!pRKoGckmPi^bmR)hG~
zlSSJU4u~tk{|{-LqkM$-{zoG40m9T)ZxPKh)O+3dT*F2vznfbLCC^p+xrk*K-@!}l
zy(xeaR=lA3N-1GUkKhEG;6VR;U7x?nfomSdckRBCN3VZoC;f=Yyt%SB$d<V~wl+JH
zShs(pv*_q)@LL5Vf}^za1gv)>IP_np7;>Kj(B(5Ya@MLxm^VX6Q+_loFMa3m2_ybR
zR%Sw2RWOX4V@!Z9?i_p7>cVyCNiS1n;T7OZ7)k&Ou81szuVWn-QpJjdS-(b#!Bew&
zD3SvAT<@ekZk7Hf#FOVn*CleqLc5k>@K26)*`}ZNoMg>td|IzYsDVaPj(d*E!~I;_
zKCDImp0sw?Qt)YAla-_Ah9-iSU%H2UG3%+sn{{*tM>5tJ{|vA3kQ(s9_|7Hx)v-(R
z;U9$)i(!`)P+Whw86$TuA;MUBKA4HG-BmQ;_4^BByozrwD%S}eaRep0VUOn36pYJm
zwNATy-a_AVZ0JePz)lgRYEu*Ky|CNgkV%!79d&)g6nj-_6J0Ie67HNlnw9ShC3ClT
zY9LcOVQg3v#Oap;(s=t_1F8BunXj^Jy=4qH>bQF)bGOu%EmagGGe?rv1n>+h7@e8V
ztGT;lN=eoB+y*8S0Vgm91$M9&o^PbOBZ_d1f_odTl=~fU%L&S$u-a5I{Qtw!!u5|B
zsuP;5BbNaBOZW!9KcJLc;Q+d0o{)uO6?uWv;sqS#ny15M++E2Gc$|MN%jTQqf6Lz$
zN!P8UWbL@KN&&Cx-MIt01x{&B<_9@+z`C_94<0^BZg9-1d+j@ufNF4Aoj$s^eLuq>
z-mjj0`DH&-m)Yx(b6up`dyAYhvIv9_%JnPxGkg!*yYXlM*DCU{1iCWy!|(Q$OA@9h
zsWL%q!1~y7XILda<;7n||B5Kx9+Awi50`o|U?`WytKWJl*u>uY84c*<**vWF(K7~#
zW!Lku<&tgl*0<`euK}hh9CKu<0u<+RJhS#FI51(V=TSn=jEh%jsM~ABn;1f^Q@5%4
zC!I}fh&$t@+Zn;nElSMpybuw7AhNo`VG*C%EFH^mYSHs|N4&_)#%K0pXgFGjxkAp9
zb}8CJ?Zh^|z){@T{{7edgJz|o_*m|*pl(8vZ*tZPuJ5-%m^!*8osi)B5=L{|o@dL*
zKe9L||2`yq&arw#gl8qGLqI$0Q820M1M%i|_xGvmKm?+InW4S`?OiZ#et%8=znn1n
z!nGq=@HgyERU3@$u<r2Kh(I|Djq5dgDxtI|KOQ!P$<gRS5YJ<BnyupCfokwLPT&>7
z+l`l%VyJX0qRkBmziSyCAEgWu2R+0_ofOncS}X|gjUl78n26EeFF3&Xf)FfD&;=eB
zuaa(0mY>d-<l6RncgOtK>pUZO&ZCkLD9rzguK{ag&s!BT`7dm?L~Zs&Fxr>s#&--4
zDjB4>s)%}L9ixSQr=HxZ%$U8Dy*%t(&%i1SQK>jIA&hCa4F~L{We%I8YFf=|=a5<&
zG#6{zqW$uA5mrR?tc%$!c)MSpLF>JEcl9S_()`ivk1v^|?O;m6&Yx~?`yDqfK(!Y_
zL~E~oM%S}eb8&(sa-;$89W19Fddvt_-TDar`8~So#=+!$H(@8H0mvtGXTfBpo74}>
zzUJSl1fRh%#f$l=Q$~`@0OWM<Yx88V$I9>f(TW-><<=o6?+11{b`i4=H`dZtYTBBo
z&dZjnZfyYjF7yaq;Eh7dXv;+{nH(4F9TJ^_-GaI?Gjs?OF)W(dYQx;E4V2ML?HVF}
z;0*N80?pY-xuE3wojc9M3$F*|d9E$mf#?+eI0oe=nl5yS7{6*n&*4Lf9ne!6R4eA^
zz8fFe_;Dkp$ievyxZBi?NH{6-()h3trnT(PhILgV(`lVOKDh)ru>|;(SzpX*KiP^d
zEVFdMowjy{1Zxs1C}P_ujGOw1VY61IrKNuDmC7>$#SmWJyd6@%u-c<>o~~{!MY<C?
zh(2Ix=^)d_Ozx$see`Z8Tpv3=o%2`&1b-b&c2HrJFRgwH+f<{N_P>#UVg!}U4E~(D
z>GC>F#<tDMhIA6-z-u*c<xj1f6zYJ)V;<jHVbT+R;26PgUMR@~X}ZVr+6<ts^8s}k
zyy+#y&&SOHQa2*sUF>5lb=*P*G}<`aEzOnE4TWPB%AKWYU#~Q*M=niMPmG!1%RJJ4
zBgnPj%T^LrbOp40jXzlA&w?K4uYcS4n0WcI?r4Cj6!tYk<|v_MYH9&l#^(r+DR<Q9
zm5jA<s`$vObiFbTQpjVwWOL=wNa7G<09a?G|J<|Z9u-nkAGpFa1G2XV(Ps3`QALBh
z^kcQ>jVMv<u_gg#NMjLOr;lXu&7PWmneI5Cb4IhauGB-7#deHF7=6EVm<Q89AKA%f
zCB<p6`p$Pxlk+Uv*}rTN`6`BY)LmPre-x;D*7199ojx8drWAEv9}3zfns)1C0Qs%%
zDEtAAqyOaJQE0beHbf?n)HcagJ`2IEsW4P7rHFK*ajqqD_xw)|PJl*rz<np@#JcAY
zFXqxUkK^N(I_h5%UlJwJV?Bg8`ivdt6=<QSN8SlsLKox~|NM~s5a<mJ<DFZ%Z7qM*
zY7B67Zq)?Gll>DwNI`$!bD3gcN6oi?E0!3?DG}=>N9Y@V?^bS<GRF(XL_Vy}{Kfr3
z>h}v+lREuijaoTQ{=d}O-xDrT-6Ss5=KO{WcD!JYk<n4lz7^GufN6u#+a)kU#aF(p
zTEk@pkVewL)r_<a>ZywCK#w5#y|WYbmGpe(5lhSG=6~)kpFdF#*4(<Xl}70N1ZS?l
zNX(>&*|K5p_!6c2&p_ViCJ0$|vpGYDC~K(?N*e2@X;p>dfE;Z9pZV<70}zG688rGn
z$s)`Cga>*$6Koe=4kLHKLkh?z?kmy4Q61*{)=kh`W;DND;DZf9wE&jEy#eDVb|{xE
zc}}8(<F#^^B9EDr&D;mqsUfo>;ov5@<_2GWFe;J54g0apY08)Sr6wkz-C%Zjq&?TA
zOQFhkcfVu)RFiPkI#NJe1pTH!M#vFq;MpgK#+#&dnb8zER@IHicx^EM$r1f$VBSv%
z(PD`;C<&Nidbvq2Jw!0ySH0zh@>QFtr<Qd!oD)Y|msOSRN?kHv)z5W&o-rYOD!)<p
zy<-l4S^ZK5D&NC>B;RU+33Ur^NclEGd9#sFVNsRD2Jyp6i9$0SKBIg`>qlO-c-ON)
zDy9{YwwF*v`;v!gFGesGhjdi8AWXMMVaL=ben|SZ`TZ70bpz<+Yw-LqckrSDrAUQL
zSDf~}xQ&e_V<v#e#<5S=mijL^bQ<-qa%`0`555P{Le8Dgj>N+5)VZkS9EGi~1pZ|l
zZ)X$y3V=;21W7SyEFOK=Xw}xUvNx`H7jj&1`qOqEpX-oo-xLv|m_uF5K}In0>0S%h
zHXTS5CaE?(s%g;o03wT=M?j+=nSCCJdN0k~i4fMm=AwR$ZCK~%`PKg-vWFFm>D*=x
zSov^xpMsh+2QRF$Cl?1DZWwDh`mMC$-H*?KH&~Fd($b%rT~Ie|eg4Gum>r;xoX3zA
z$U^n^fAD_vb3*$q7O1}3b$a=ci$k4SG4uD^*zf3>=&6QIvoXIt6>06w(SZFNvJv8)
z;ZLvLw{dZfYsDLK0B-}YEW_pR|Fs4DWf$8Ny@VRF*Da}w(eIY2x_xipu(c<uOz-4|
z!58eOrF?oMId)hTmCKJx^}%qA^vLZc^u|f!TapM%yueF<jY`;}W2ZY-N%J1|r4c&O
z3Agc4zkjPfS#vw+fNnJ-UWL0pXTNebLQ)wJrNf*#k|Bfni{u`#bW%5fnWWp%k*XH+
z9lW5K$FvYs!IH(U5qlG2nC%wToR5I3beM^tycZo+2=py}?#858U4HAT=7PJ=UQ=)n
zVlth_pF(d`&^zCUxX}|<jtp*5()x7IHbu@eZa2RVxTE~b@<`*+x@6F|1)Zu?zD?=B
z-+upn#vp#<IqA_(%f;d7REnFtd5J<Q(u`%$?w!#RThYePRgb-btc9F)=oCXpeju>c
zJi05y<zkxLxK_)L8n_C4sSxI}&={QU0CKc6|0GIs!}9Nz#Gj0@x(gr^?)Ua-PN4rN
zj(?mypKsc1iWgMO$$|$(eu0tDEed0wRS41|RXVULuXk+FXF=mG9K+g;WHvz8bLOl(
zwF)GMMfk^4A-z|lAXHU34i76lFwJ}yT%n|nKn9?nt4~{|VWdC%+Tq_%_KXUECIA0j
zAieT#+ih0p8zOVFvh82rIyK+WUD8OX_{y+_&(>uIev}mEg*_u-*J1(xVGzuly7lU9
zC<YC?Bo<L@w!_GGlYFJ+u<B{$1<V(CTZqW7h@1_^w^&M((0`voSY@uR5%V2m)Ai%n
z;tO(o1V1+nEA1d(JYeSkHuX%^BD7RV+vMPuG{wQ%oa}KlvV{{raC;)m9fnMEKO<hv
zur4KqT6DV8DQhRws>WeIApGhlf_}M|ozMeWv2P*zzonyLtH4Ukxu^dJT40vlGuxAb
zIRV_wFNR2Gm3}Vl@3T-z{^j+R=~SH&?;Djo5&2g9qPQGbxZ9#0QCGpjT>#i>z^bae
z>030Llx^!kHDjeIN_HIsQgP6Jm9Kl%NpuQoev2St8)tP&gq0~<t-;yjWe^x}N)tyW
zt|(Ls&+_4#eY7-?hRav#r(^+K&}+koY$%nbQu~cs`lTZ})MEZ%yoMO&sdl~bX#MS2
z6*f97d*yZh<(*G}AF;Dn@!=KvtU<{j|Co4mvq9y|T>CI6%OPX$p#!;!iELf0!XG4k
z5eG2!LF6k@-PADu8LEUeV6w89HQl#NRkwbOP2t^p5J9k}+<D(p3w=}B>cXx4ZuwH@
zOQlm2B8XfAC_h5$;`elI%8LJKMg?Z4MsUrV<n!C6&W5>ZGxHDrc)4Lrh-j5$UFn%x
z?f_a22ugxnD{tPtV_Rd=EmhlGfiMVA^?GI@iAXa161TA~p&-?@N3rr=F+J(P)@&(P
zO#YSOt4h0skq=3us%jhS+m^UId(hz_P;#dq>(dV6uD4l`g2KzKk-{k(!%5cWlL(I!
zo|~vV`3c#yeq61unkWqzc7J@>jaEsD*ikDP>(gP;`0;qV{07Bc#Y5u>@z__LEyk4a
zrToZzOQNqi#l|r!VnoX|f{t%}-OER;3*}YrQG5}sSpU;ze_>;G+nh#ShJ+TSDW0{6
z_bX06k0m2leGb!Q`!UnorW-9wHv7|{PfrO9SOq3MURwaUOa7V1VkzS5>nz2r_EdkZ
zXou+GLf_`eXpg;4A=PD9tb4l$N`6Y&t9^#u>khLm1Ae-ah^>B!ls{^EsIbO|wTS;-
zJcI?cKEG2}7975^en#VcKFW>91uKF_mA5rUk(H7}nS^iE2%%NfBzj3r!sM6oA@0z8
zX(R5T^<-+R^uLcsVlo<nCn_;ESD+^2KbrTAib_4OKGKm-2(G#rYfx^qgLEX2O!p-c
zmfWkRob_3fYu89T7GRgPomGL{zYmRshtGZw*@H5mn#4sPq1+CPcvK80-TIDbjWtHM
z638R1Xf~!ox~_QX)1!V4J~AXJu>R5e1#ht+nkIQwkMo*!0h-MJCYJ*VpuTfy7+Yu=
zYW%IRx-D?DbhY~S<bkNZp#RkyxGMoqhb~l5UNUi8z;?%1*_-0QMNb{yt>IPI|4grZ
zmUL`MFv|XR`UJx08n&dC#X%=Gw!Y;W2K<sc{mdHHsTO5Qu4O$$ohdz>F6;hQYuM@j
z%=+CzJfwnZqI-23z;5w^!tS1MK9Ps>w~03aKgf*#bHy;$|2u7Z>toqhd%(LPz_)C9
z36&QnAGFPc{XI9puYw`Tjn&)x9WJnBr0Vf`XSds2k(&-7Z(BVp|Ip>`DcZHQu};+)
zCz?5pRW=Jl{bqX2KR6Us+5{2<N3>g_yV_Dq%8;KjX#hOHVeR_o=xLh^*eA)o>kxCQ
z5mD>u(1sz>1DBWD*hU+Cn+YH53fqQLI9#xh*3=v7SA0$-f0~NcZiqt5IKcC4$l*%u
zArAC-C)<t<b0KER*1=B&o*4s?1zJ*Q@wU&D?c4lzOwTsl{%Yg{usM|Ajm8F;0JU`+
zDTGtPI=pmz)|C?uD|@%Ukw$L;GS}$ZE_}fkq=mDSiw{kq%-)<VSIuUY%iUU?YBNiv
z{=AUcA3a~*1iksZ_{uD=)&mdjIj|AEGBb3`N~cfKHsN++N?;Le?SWGm*ysvzHA5CS
z723}UOf1ah_3u{+6;oPpobXNl@E($3Pv@Jw@PZlq=7xSCtT*MB?|swmaUOWwi5Vl?
zrp~rxe_Uo}>2uI9GQ$d#6YzHs6wSY)@>6A`>KE;$ae)l`AxATW-mR}qVgcYlVhl^5
z1tk34r}Abw)NzhLMqdiG{H#B;em_}Uy8(7tzFS_&LM3!O5{EY3oF@aS+BoWiBy145
z{Mhkuc=3I(IC+o|RuKk|pcY`EMJ~o8r=e?)R^|3;&pwO>SnT+8Ye%a|<C-N`M1vPQ
zP&Io-GgIv$|1^fQb*$zb_lflN+Ter{Ln^Rkwgx_ci}QO2eg*E(EkjMz4~^tjmd3Ql
z?1H9FE5J0$EBVJGl-Vjm;?iA@)HDBgb=<)`NSC0;1N-|CRBy6A|GR-xV!^e3i$d+m
zGeg@>zsGtyAf)VqPeZis_Nx$-Q2Y3cMA|FbJG*!%l`UDej~2qLO20~YC^}WU>GF@3
zQs+W>{2^>zPDiy?Esl4+3$gy}2Fhtpb(_yQ-96OIzQnN~reC+a3yV**VvcYsexF5A
znX)g1Y6vCWV!{|qOBn+yW0i$LqP#0FBfoUuO0W}R=2Wo>CXn-|^8-=cGQw>3D=26a
z=QqZS8x6=U+Q<1AOs;(IUA_Vy4HyspZt$5UJE_^J;3GGeDEBu>$BC=fXn$5nmu$@m
zPZEd-k&x?;yIlX)+UK_V>)?D#!_j(3UZ0k8x{Rx$V&luLz<Bs#^+dpwMSU1Y;eM@g
zo$zc%tNyet<n;Ya{Z|REJ507j;ep-Cl6Q%?#F;C_0-1mZo7XdvB(@|OG>`!rkHbIv
zATn16CJ)_PbA?8t&RJh$P=8^`eUkk?$@oDwf3%355wN}XDDbqp$ZIxe$0%-_v+~)m
zqaXWYspE_Jd4R9n8$yr?^yl;8s=tEfv%p9XjpL#)xXuddbN&vxWv;t9=Hld+2KO-p
zV|r5y^H3-tzE#`jyf`E>3o{A3HkA;P+%Wtapy(MZFs~VyzW}Qn)40e%XuiFnqtAOf
z#s0n6@fz+hQT?W0t@QcnN|rMm;=H4?u!p@}eCw#?r>^*g|JXz6(;V#WwRPRUeW@h=
z{^qTlCnex*=ld0Fcx9&N5&w3rhcB5)zDSyT6L!3xNN1+<@Vk}jX&~s?<0~zSV9it(
zxQvl%H=4B(z_%>`eED54cj+Le*>%P!I!<)))r~rPPrlzz5y&-IxMY7yxYd}S>Q`q_
z*pob3;BFz2lds$Mp+Db>S>`Yk`7bgEEW7#b2i_{ghOnYZkgdM~*^WeQ4_#M9PRW98
z5PwcfGF5t~b|3E5Hu$b`!t660O&P)^^;bUmuH02dZwuhtQ>&Ihre(f4+3?}iA9oEL
z#?W_db7sbW?7!2k6|Ll@E>(d0B48P_=1^1qxo4ZDgWfh9txO(N5qXtCRr(1*AOp@4
zT0sq%A2}`U879sTn-U_j8hz=f>RPq88B-zoW8{f4H7xb%Eow9mX8}Sz0N}ovmlhxX
zF6LV;NB~kU+2(pdg7f%o(X%i572SnwT~1CwQEbs_G$rWk4i5&G15X1&TE@1~7kVv6
zHm<ktBpuX9dB@eZJJV>(B|cTx{o!m{jjO}o589&hJ8x3%N`A%N@bdAYF!;}(-7*Ba
z=dFPhIaK^D2;bv^J^doFe2?A_QV8EPf6$g{#d4UZ3r#|2DsO`IBE5g83?pbyw2}N9
z$r>1Cq*lEEl7AUT0mcW3f6L8rJh4y_z5kv~#ZX67<(N5M?NRu!#;2i6KcxE(W6JTy
z!dc6k2FOPXy7mWj6&t6*8V|7bz;ysp8|($(LMm%~XeC|OXl0XuiBo?pHx7-`+%km$
zAWTK&8I<ab8n_aeoIeREeOO$&gx5pRiQ*!p3oG`Ft_K|$d1*YD+3vdhwxta2iV10%
zTcgTNUF$pcKO)~vV;;p^n6ZB0!G#S91zayXSR<+)k7&F|6&3mRYIyAxAQ+=(G$be4
zXn<Q@w$V#yE3MtAQ;)gJa!by|v!$>9ng-G%#I|PZvPVpMfe^RNx!7T%SJC_C0C2`>
zFriA*`IDpsDh~@rT9r8Mpn{h41D?VB*L?<^JBFB0`c%EFc{_gsX3#Tz?4mlQ_mZd8
z^<-}9(#UrmBK5#M4pYZWd9>AM&?{Azv^s*m=_3N}EBZDIky4r-O0z$IY2TF5SNmZu
zL{AQXPVZ)X>*TQ>QU~T=GZ9+OGN3phHLs5_v3{Pseu^GdmN{g@me?(gEJ~1Q{JYKZ
zt)?(m7XwjzMeBaTTP$ZI(a2L;8;oNGi#Os(4KG98hIZvecX+U!H~eRP*7(#E>-@%G
zcd*m!`jxf&PIO?~MzrJ77f7@|DKEiPA_8y|slTjZ_Zp2Fq%wI4rS$23Jw5;Oec|OW
zUlnNvh_L}x$G4echnZxUh>)*3XOYjU9u&ugwqB+_yy06#92(asy*yA!Spas@&|72C
zt#9W0n$;Nr4S<>$hx9LHqi%b)b{8H?&4mb1C`#1Gs@98xp7!8>fMDEOw1xtohlIZG
z%r?sj*DFBj?6zX+l5=A}bMU||YC#uu_*4Dm%Zr-9J$2TSrofMs{YZ5Usok?*dKc?C
zA$b=B+hF4sPl9p$Y1!R%N9Q{(gp686BWp;A0!lrYvStW{zYu)K*v-ALCqxr}r&{OK
z52!}+qhcNAuE{bL<yX_QYR&T=wi0lCSsHq-_4~TSSc9X2Z5Lv7!{{0l$#>J)nj42K
zbcFdQxbR1yrAb8m`#W{C_`GI=WtEO7QpBuH@(JmV0zfH6XH4D~6cXh&b*{VPDU87-
zJsdeE5!EW!xc@G_beE>KGIjg9JeMXl%n2INaAa*k)sgTijatX^irw9Gz#ID$Q12AZ
zT;)vSsHh@ELg|5BK8A8?o&ao(Vv?`+O7!ezqbjZFM}OJO<J1JRk7_HU2X-Y!`Q^(k
z`w}~Cj|5*li}-#)d;;r}`6hn*LFCMEX`^z$%ygl+%9}5THEywymm`k5t=*Y`%-tr%
zuifRRGd{ew#kCJ;2A~RDo@#^BGNT#!FV85N4!)|!*#}8GO73**sYF{}j+S%4JL}v-
zw$UJK3UliV&f6>7pR=B5*}C6B$=1KTCfQq?`~-phHh_Gx6;QZ;JbI*Hr)sy*ZMg^-
zJL;Cc)rUM<`Jv^rRe7Yc(i*>FAaG)g=*Ji#yj!~u{{+0Ql&Z^xwMd|xAY_yfbn=VL
zht@u>Hxu-DL5yIX%2+@r2?5=N@TbKRv*E6~smiZT&v|P|bfpbPZES-p>y-m8c0pvQ
z3Apd1s3&Jbq)_E8Hs;-b!+f@C3M(Ep``t_}Y3*B-|ELw#SQn8P_Je<*)?T#lziKpx
zs+D=8IsnP05<-j5gr7V?h&y<p!dqJwwi#v)que%5>R)yKgPJUFw6#FiKAu)>lY`!P
zs{$$m&^WK+>3sO#&;w6thIIe0iouUSxG>uGI%x0jpDZQ!W+-tl=u{QYoqT>s^D#bg
z-!}GL4u71ox7%L$=t^4TqNx<Oq*nESrbfl1nbPEv_hH3m;dzTkQamY{VYyF~$Mu4k
z*geWnW}otljY*AySsw+vr+;@idqS#sr(|{yC}qON^o@2Bt<x0$>zk7PZDIHAmRfIk
zel@%l)wtV-Y^(FS_9nu8iosI4LFK=b>tf{Xe;SHRnPRBV4ic<DJWXBg{=NGwf_GYB
zm3BX!(BKHG-Pv6Tzo=x1g9lIhe+~AD<}ZgHfd|%VR+WnE8%u`CW<Q0<eYdl(%^svT
z=+@t1t+7F==eD=?m0-84bRfPn-rri$+fiII+J7SyQprObO-h^HJwc00h%mENE99T~
zPwP<KKo393nItv9RGloU<Xq}L+@p<b7GI=x;|-#(&(vGJ>#{m4lt}Kz;+yA~83_S@
z*Z*Fs4Uh#liP$IYN&2s?skGn=v<808&FweMb<OQw7dE*Xv<7Xm$^>AA=o;@SVA;L$
z1UX)jJVPZ->ueK*FMWuO&x3gRvYuBBSNDy%PLu+^?TsCUQROr((f?)`eE?jQ4@ozy
z7KC?3-t2zSGQLFC*WR4<BO7J7v$JN|h7S+1CClv87D<Y1mR6fnSszrP6vj0P{IO3P
z65M)Z7;NL^3lTs*Axy13I;LH6lweABy7RbyeU@T1kF2v7P3D{NzGLSXd#^V;De<-2
zEQ_j(vR7ZRriaQjmK+3-NJ@n@IH}v3rT5AT1O?guHR-lzFYBg9)qIXG#AN_f-#w1l
zL0A%-k1@}xFYrpat|B5K#c{<h6$l|S?gi1jm4Lo1)lwZvYtS??j~`p+tCqm<?g)2V
zOkpD^@+?$8BIKMma$2VC=$yQ3<3iQikCt(z=!qnfzk0ACEj}H+!Q8Uz|6$Ho!|zy0
zL1P+zHmp7p?>(-*<LQImdmlMO;SJuF63n5?v0b^FRig+{#51-pU*1Hfg!)8ElFq76
zA9wzA>yEVpp(|uH!bna2ijR`kWPuM=Z7H;QaH<_boinO-M5eUXnY&2}oZGmZPvkW2
z8Ohck`yJ9<tk&OJ8Mw~paxrnL1j?{4?JKu50Y?(LN<04+rvY@e*~ohj+vIr5{zKvD
z%2(rlp5Har^Ofzgj;k;_R@AC^w)O8*<8C;ppBn{kzsR<-^~}%8_1FS&_VFmd)gpaw
z=H#T`+p-#z3y8Si_D292IYQSQU}EtTq93>*+&^WX8!Fjft5k2?RJY@CvYCZ_>ON~y
zni81qP_d6Yl%Up-aj~YNH_hIh^{uMbFHA>T9eIg^42rByT)wYETc0l(wR6)cJiRft
zK8x0Ki=xt}&((hlVmJ|Skk(06hy-AlI5@nfiRc>6+24Jjv`eJrRy(9Sv;#sctsOqA
zm-wa3Hb>LmL)do11i?E`=NG2d4s*T!8%7q!>w5=xx~piknf3oB_Y}kLs9g1axl<w6
zrrvS+;%24R=CV3GQ|Y*KjIC&xPCJUgZg{io$a2nUa7;VpkFx2b)H0Z}M$A{6@t*9K
zkk^de1$JMttUAb#*NTF79&!ygxK;A82HtQAe(|a*YrdaFAxziTd%%oqLHNl)$rBM4
z6LWooqN3Lb+WSNE9vn}<B`2RT_D)q*SUrsxcsKRb7!OpqyTU}@^}N-LfqJ?r$2C7d
zDF`MNV)|t2>xX~$m=&;|uaxj~HM%FJ7h&FbU@hMVWjBe*j14Ub21wPm%2nLQ%705!
z3VS0Hm63^PU?QRUP@3#YVC{_z^2qOjJ(HPlbsuQHtOQPN60FVFR(q?@(Dq4-l?Gy8
z-CvfC3@TWRhDXd|Y;+Ra6UKx~a}xV%g>S|*bN<?&wq+(&86^3$u)1DS)mexY6)IV4
z>htkZAuMdX$vs1NooOPDgZLlwrG8FMSW_9%<F$wa^6(+eQY4HBrE8f-|DkUH-}`u;
zsK?A^4tx2~noGHlCvn`&n2zv(G;cUPM1Gy@TUa#A-IsG%S^%|@+DmW9zhec0-T*~>
zxxhcY>^g*u+}<2hl9Vf%T5x-315XeQjE|o<Tt;$ru!60!@96A`CbR#>U11GAxegrT
z-4N$y>GuOREXz4Ge!Yy!06gwf*)fHV+WZh*aWqnvuTM;dQlT=6)(vR$OMCHuFBn80
z#HRbSm%izXV(y0j+}E!j&dB-<xW^g<yx*Gi*iFL{!XaJw&VsW_$H0~~l4wOXqY3F^
zo6K(BhMJsYR~pp`?;4pNtx`%(>g1q}$6~t`>@|^+_HdeWSpUC#iY2$=6FxWb&%-k=
zbM!#;+ayrqNNR6ei*%PrIyO4R#+G~gCQ(6_Vi`H`;%XvSyMwMO_?K|&PVIJ8xY*Kr
zg)Lg4LdG2?p71@UBv5Sw`M)p12Npv24Fjdl0<mEa)0!kqUplrMrk;J6hs~`TgHxI}
zmAwG#9r^T^MUUS%PCYd2WB>S7|0uYT#V6nBQb*!Ojg;Jc@s`w+cNkI>OVX3>iTgp&
zrkqJc2pe{Q36(tlwetn8ZlS{NMf-aqe4qL7q2&6fe38STqKhrJ^}7)LCkXw-*7zv}
z0X}im+(7NY$J+)Jro)<TR=mLS`am}Ldd7TRkNSji@$g+#2{D!Pau&vQgxI*WbjAR7
zfjEN^TWF8yVHhz`YH6ubK1<u6AbapA*!b6}!k@cJ2`LrXaFi`ArG$v)jPEm5ro~5D
zg_Vnuc)hn)0;7n<R-)Lio$pX){Xh2GQn%bgSi1g^js4jU|JbMDJI#J#!{H@uY?}!c
zZETwAm-z6;_{Mv7_;A3tU3rJkSc_j_91&LL(2rTq2*Yff!{m-sG0J%wSUmDf{su&C
z=OM*#=`NI$a^*s~?J_XX)^0!oP>4!Agg?4dc&p%J`tjmznAVPc<)z2cFOIMMTdeRN
zj94rv<a!}v>K~*Id(oZ9nMVA^kZpC6qUa5op~5P7m*WEB!)h*`H4k(%lS=NF*ta1z
zRrYt?;Mi-epRpC+S&W-JX9(V%sX=|8elo))8Nun><<b!XpkwNAK=ZoHB=sgr8*oo!
z1O!Z!aw;R+bTH3?YZ^y*W(M=Tf-PF9hzUm)00$aDf6nyJ@XT{XCRFMx83kJR4%rWE
z;ilHSvG7Gr1aMS&+4Ax)2Jl+UP+v3bya4;jpeW`U0(LEJZk!TBOt;GU;IO#Fqp<oY
zPB^qx+rnn6|8es>UE+?#;`I|8TY+QaF)jUS-mo*9>Qq3Z*>lny2&zUY5;TXq_4TYH
z0{~r+l7F*xw@yP3t+m0@$6@Of${G{EC74EC>{zVKBz^ZVU%h|h5#nl$x+{@!THSRg
z=LsRZ;unf@GxKQZQ$_cgZ8f=@j*k5Zcp)@6@nW=8XA@EAp#-dF**s{{r@N^0V=~dP
zh*fx%^dmHRY4o_dY5Y?eNdaR&e;}M|r{m0=&EX*+?TeRr%^*?bzOC{v!OqYO-03?I
zq1num46lE$>Q$7oEtXj6X{wIePmhqSuFd)}auO9+*|IT?Dc}&|k}y<3k)SJju8CLK
zm~bfCvdb}*{oVE;o6nW|ls^vG-&gy!L>^i$lnW@P-O))b?gF8dkkZ&!`^HvZrT9jS
zpKH1rxZfX9_|Gj7i@j_~rPv%H<?M@p!7kmy%74F<GyLbFGAUP&_NzDTnnp-S$d%ZE
z&hk%<68cyhVn)OYx4k+>mQ5P1{8*N)owOoj>eDVa&ZW?0Y})n1O09Sr?HgBhS(r3Z
zDvaB;hNXodE^$^uz~8miR?>MM|G1G{hq5JJ!3g0$j!9&F<=Ym2iXF|tNa56=iOSA?
z<)C>aSAs;2tq?ZTdxaU#E3S}RniBD+M5%D~C;nSO*UJ*Kyb?V7zNwqO_je1#W=QRG
z38d$>H<fjtWdK8L@80uuh>(XlLLY(qd9j!vBVc$rKlpvbu%{&KJqh9l0gWuYO#S1o
zeg##q{e+v4e=jYq{y*D*%tGM^f4bHCZ>F>p;?`cKfl@7d8)r#v+HS+zOehY(3b@aE
zxD9ehC$v)68cPq%-(vh&;iO(tVzmneoD!V9P$nw29&>C3mih>8$q?@ei1u5MmRTGN
z#1vd--CvM!{D@T1_-H%nuT;bMW3yLgiD$G5+3(P6`>M{cEhIqf5nU#BtJ3%}IKn*X
zl}uJ$Gi-&u%Hf$*s=sh($U<tLdwS;$758U+tRKFuBz+v%x>r!aurQkd{xTZ>(lm!(
zheP7ULe}-)I#N5iEvuM3$G<NiZk)lY4EZmMq|fJ(_2;{ahL;~#erk?dINJCnyD5t8
zJ@m-g_+!4TW7a{9RylY~ooUbH-}Q4I->MuL7FBVuU6-1tnhgXA&xwK-O)qd()bLGt
zF~x&&;%l|ZO7B68!)I3eVm3HG<rXQ%Erk}Ia&N|dANF^F^WpJ^rYPz!s57b}+m2j%
ztAvVeRnFCK2zYPd^Rl3m*BK2o0nXT(Id<k8>!fK&={q*ms~o%1EkE(aeU!q|#_QOR
zL6%2hyp>u_TMITly7k87EEfexH|^>3=N(BRd1I)&VR6cV9O8{GM~?4r^c?oo55lkW
z*EKM$6VA3HXCu8uJIYG0R)YT0D>deKJV#y_Bj;$Wc`VCGFc-AMwN<BWd`qj8lDlL=
zJpbTU^Lemz{V`{hMTX7xmq1lyp$&Int4+7DM1@^YJZ$qMW@u{amrXS<v7(<STrXnl
zS6ZhH{;Ksd;A>FlTQW)0-8O&UYf~F+=#w4PESoBEu~>^cTnp8g>1M@Byno)?LwQGJ
z$f)`PJr#C)FN}$aqpOOr%Gm6-bQ8<f<N)HPEG|slVs8X5awGROMSTtpks~V#ZP`I?
ztvTC_DgXlXOhsb{vtx8nV#UKOxpEJMA{iN<>&T{M&4yeD2SNi{#{NH3#E5+r^eqPb
z>R1vWqadMRbayGbe*t!W%72!&u+2^r=aW0|#$02%?BDmv45x2iL+d3^4!aYqMb4EL
z)8!g}_dnMWzkOm&o_IlJ{f9q3KLa!W+j_<i3Eq15_9DIvTW|uZsZ8h)Nk0mgY#fpN
zmZGKrE-K^*l1YDTyx%hZ#xNtkb|a`bC7xwwo66y34K#pzdrg73nqc1(Xu^W-jXDQi
zrxhQi4{4?J6jKCsl~u9p$_rlXGvaZSJb=oo{e*Aoj)O4Uen(#h1rbSe{mQk*8j`9u
zJs-bt5%sB?Nyg43sz7h3X$A<MWq#nFpoUd?4ny~X>_`*RFw;E8q7(;zpFPJW-+;Xz
zwiUxn3iwUdWP-<$CEnGp`5l3s?Y4qV!*;Sn`5<N1Icz~DHvwFYPIb&EeIF^*BsmPL
zD-Ybq;+nsehgC2F6GyBX(bL&&e%Eb-Tl~O_cQ>1qfKSaxzu7tqe4CR>?FSGF%^lsf
z8{&4+)W3bxaQd;|HlvAqJqEE*Tb7DZKBe(y1uy{nB{XO@xzh)))sJ&hcLYU_Y1^|g
z@6#1-7a~{2w1p3u!?nngVSwLFG5Sf4xDwiV-8LfAV}@8ZZ2-f9v;`#g>{^;0t~B-X
z%Y%s=C)=11is%eo=&xHdsR|OryQQoMI!1*<BVuz3W#+?_CVvZAJA=j_vu7wH8|}%?
zeiZ?)xY!QaeSY!p;%oCZuAEK&?6Ypv`voq&*@Rtw4#24%l>qB7)JSkLaZe2pTe|$^
z?rMhGS0%xYs#GmJnFeXf`CdI6PV@v5@DgKRL!&m1TK}pCD8_F;2_AgZ@ozx`cJj5d
z@tq4F&peDyVSULs<h&Gn+SseT%)5~E7IFyT!-bvcEOZ31kNt?Km^ylbIDBLMx71sT
z+rMN#4GDXU5Ww%ARYxD1ZRg0=hp>>+C9~{p9Zq;q$-%elpJ$=_nL3}H^P&zW*-rJc
zLRb_)Y}BFMFDTMIR7KZ0yDgPbsvv6E?$XKD%LkwR>B*s_W4k4q#)S)SpYMz<Aus)y
z-n!by6e+tIV@nL!5$C%ZXHdZtM&$;0*zaAXx5O_fT02Ayn$4Eknneh!vxIv9)}In=
zI;L=+ryq_~SzS7O6qZt{hI7Hn92N$v1Jh&vVT%}}Ly4aq8k;_{NE3h+7IR2@!_dWp
zR};sQPR0?M+izruD-Er~#D;_St=+KF*(-;_X<F-jHqzDv|J=hvRE1fHmt3e>^dpA)
zpZ|9)J`H&f!{AsneLauDh_*BaS2<@w@OVO4l#reYI0d>!GS<5WoqruJG!RG5k@F?3
zZvpUr9#TmSfmw|829?6*n1jw#q3RMx{9Vz^iN>p_n(HKq2Vl5wx0#$6fttE~<BVoN
z(t(*cG_Ci`$I4l@df$B6HS?YN6_pSNUD<jCaBvRe2vaI(Z2;X$O(EoLtf+00q+9{x
zH4#**<0uf0Jw*#K(5Ab^4&eh1j0E_~DZg9I{^Tda8G%=Ve^`Uy=hf?b^^1)6zb&u)
zY#XfOhH?tj+`MI%w~WaLs0fIR>#6Hqnf0&)9o@0OkzYCT%a>N9Ikn~f94V~@ol*2<
z+;!+?hs^4;70g7Pt%XBr6iiDU<Im)fm2WpP=&-E7j`fWe^4S%cv_CWQqg}${mlTQt
z(iRJnF;mALPh{`gy8Bmh;?}>_{qXpl2J+oQH^zNRn#8|VUk|1?vwRy~E~a2}`$*)l
z(oLFSPJ@oN)8>M|c0;?-keeyhD?RZoGf&}r*PiL+=ax^SMK9Of`0cPCBtD7TNVZ)l
zxZxjQ9s;6$8XdQhyl^n@q;ZLgM$q<))ZwK{)pS<o=>@S>DJqGC#NN2Ho)%#P!v?&~
z75)s2@_Gjw*0{$v$PS-3OXWNm!?y2`B`E7i&-AYl?u+`B;T{P}$<m1A&TgKBnCJ=D
zV?;sb4i?vG)^XY3$Jr;|%|h(?O=?r_BaITuD0X;eT`gP(c%oBmXo;N{Xg9Ybpmll3
z7_qyeslj#=Olgg&#(Tj(RyECo;^*W_8;=5ZYNz9gZRWvSb`_Da!+d~dKxlbwbbQ~?
zHZYM8+<H=k`kS}gCQ`DPe=psN+-TD8M*d#1PlqugV2a`QUQ=Z<YW1^Qz~^D3wndj9
z#h*bm$`u|}0Sr7aGDVuVJ6(K9hbO}LRTL;<JG<_De075tc)E?ac?2K4oI;-LF^bF4
zg1rLXt_1P?DvcBF)V9~SpL{oPVk)c2miBrY_unZ#_(+aG%h~BSrCxTQs$I?UM9#ZO
zuGkiu75?$j_-1aL-?+PdaH7oP$!e*VwbqOE^O49zn|Gy23&P|cv=`0q%hh6#E1Mq>
zB*zv*$DbjO_LvkvepJP4rptvDJMJ0z(Mrl`?1qKTvs~$ei>oI!+e{=H_f<X!&^`(K
zdJPl!L>kmb59YP&s2o4C%in@_7|1ytYjluwJ)f$_OBmikVJ~8HEk3A8B6IkUbWW%|
zRrLZJ_R_E{c;q;^8$)eGevE@4s!nl?8ar3<#c-8fx@?c=-$dEXK=trBK-*htT1*JQ
z3{Z=#J?JzGU4SMZhb^DB7PASdxT)^bjcoc)3)BaQkgEyff2dpD(fK$R3vn0c_>G>W
zYrjwttVb<6Rd-=-<nxYKK>?mG9{rHEu3T8UHTxhqXZ_D5pXoY|(MoOd#18pjLAFQJ
ziR~9fO%kE?$FdsD)|nqU;fsX^S=l7rpdi2a1t_rtM$Eol&bv@|01DK`s{jycV@40U
zpUMq}YklxndecZqZrQp7Oy1Z*8V1)JE2XR=L&B`Re9Le-Z-~jNfmwm12YwiZUsYc}
zpYglBw`V(3>^oO`G+CPbaHmE853lg-z#^lV9dqV4{_8;N)m+MkLHzgjs^Oi*z?GXf
z<#*|V9}k3dk^WdNwWx(pwP1eFZZFX&ohwnA%n@gt@WzE)*wj!s$8~edEWV>#mq{J<
zr9t|%<u{Y2=?|~jrcEuZ(_Vi!80Xw2=W2?n?N-L1%v)f7@}=bl0c(ds!Z9D!XbWcP
zFdhWONt^29lERX}%T1w=skO{-2z}&NpW&nzW*se<1H#~7frKr|rg7deNib<TU>aSo
z$~v#}0nQ=(iN5t!)HR>|0Ox^Fech-UrpOxwcZz=v@yMqY%$zhboVo3l=XE#qYPlBa
zB3Wx&sg%^^B;Cr*DfI1MlOyg#;{|Kv8_6C0$_3}DrKc)9vp8wq&5oaK@ZdtIMdk6f
zvAL~x{7|)X%cZe^jt}N)A8tH2<lRVPR?xhWrCXd!CHQ|oR(38emF7zqnfdxgwiftB
zetPacyYQ4Auib{qLb*ZxYSVA<yVa)kPSy=*8t+BBd4<;zlo9p0?6l+Gu(GMSyY$+6
zLcI0*dNfQB*UaT4NXK`n%BQs(Wu~buR%<Nx%tntn47{F>^E+zZE&sg<>p~R|4HUeh
zYElIdOv;1#R6X~^A$TlLg;!M{TiL8})_Sw2_1TH_%FFJa=?bUqZ4`i!^xO{kKB+@8
z9_`mG2)c#k)$&`B-k0oZIMz{oB(+R7ekbEE3lMH|?u(*cz0csV`6e2nzO9>wnuJpK
z$^~Y1c-Wcd_Xtp^>YW%@cXvjtqnBse!I+e@FM2@znpx`Cq^G^aTI9yOV63Mf+V#?u
z)CmA-a|@-v@_aoXi}KE&SESn66tO?HC)TCi69~r)%l+>0E_R9Eoen3k1bSMVu-tR6
ziP&dj#hYv$>cubO&Qo=wxwIbL#^ZFzG({=qG}pMS!zQ)kgTWTyJC(zDzw}o(wVTAR
zTB3=~G$Ix4_w~zC>m$EkD5O*CaA*3qErc4uk+>4HR-2AjM!)q@-FkcR{rC8~TUzB?
zpN{b50y5c;mqbq^z278tAc1uXe=vFJm(4SN=MgCJ_@!EGLM5g$TLI^G7&p&1Fg3@A
z^lT<-pIikF_nck%>J-8Cu(X-8$%;*WnhwRj%(`jyYt|l5C;ApkVo<1g-5RxUmo~0Q
zR2Jr`0*9<<mS_>FMLwB6Mx`aIcWUF-%yc&V%UPJ@migoC3J&1QPi|}{k2SL@NC6Mf
z!`@qNLsJMiH9V@86-tlFLy_cB$+s2F9r>}0>IUoUz(lNrG{YkaM`GYMqk9tW@cN0{
zpZxK5?ErMJ5m*)&4p&)ybX=7D6KimE1>C01wVf{jYgx|+dt6(c^}KUTJ8_f_-#c-6
zv~SeL_Km8h37TKQ4pJF031EZ9L_GoYviZJwBKgO|J9}VWaPX~{G^U>qT&+#BZo584
zpFj&2U>9l^Qg4e!`rUd7WjPok`>(YX8JskAPKKTX@?COFP&me>F*{8>HoX+kCQwPm
zq-?w1O8Zo92ijEKc}s7oYbn%npO6C4BoL{x;BI5*dAOB1_A~0FP}(_45-x1QihX)g
z3JIDH&Y|X`GH2bDRZ10C?mctq9r6~yv7t1_rW08kI%H&$@4mc)e<ofCxo>WAh+EUz
zY`wf0tG>=?LKp$BF#u{4gOc&N%>ro)%?`RP$?$e|h3$y4W-~sTc=db9Cb|_VBgeep
z1UMRI_A+*jbiMxHzVXYJ7(kIGx`w;%HJ=@IY9{BreI^ECIlUiZ%{0oI5Kud)J>QC&
z2ZW`M9N1oj+LcE=GqKtH{4z(ge_CqcO%T^Y^6Am31-NLv-dDXZy1?s6SKWSEY(%h0
zp@Nr3$I!L9{g@Yto;|+Cwx%kE<<=gTiO!L6%kyus4-l`DAdn4eM)sX6)gQn+cTwrH
zY{WeVD&Vn&1kDD-W*yAu4O=Kga;qQw0rBSU%jRm<M{sb|FY&I`TfNp&+d^~R2-FR%
z%o54`4{NE-$FJOm7IwIMeVH>Ot#k?0`A_*F)i;&txIv-l5l%OSrs~r&K-<`V(4n8N
zYw`sk9vZz<M`80jootWY<tl3#03%AfdISQrjMV<mN1+QfdNis*p>%5R?w3GY*{){#
zw`+f2%go;2rBlC0np3!XvENvBg92{}`4w{d%bFBFno$&Z=>i?7T&F3&CdjD1cVBcw
zVHArXh?bY*!Q_)Vy_Pfg{FV#b`BmGCGnXJ~J%xB~T+IBZM*ifxlPBH;dH2)vUm6cd
zigTjRqC-WJJ>(PYzNmfG`=)-rd*<gMb2|fW%J{v&e`2EKgt^dLOeX--ieLGw02dk8
z0a~9W9QT`OY}J|Kd23>qCgvEf?*?5UqG`mCT>O0Yr|+>owN*X7t?{1C9lqq!rHwat
zYLh)*PjaE21%2HxC3`4$J*RR~Zt-7C6+0Snzr|glqRPFsUz}gKsAzO3bY|4>XXNc|
z&jpEiquZk%FF4;e&%R$)6%Oe)XK5YrcE{c#oqUA1q7y-rYp>B#VDavD10UAS60gr|
zRA8_hnr&ab%o6P;g5k3Dc!G$aPEDTOs^1dLe2`^m_JcYIkEg{mtK{tNI#YGnAn=Gc
zni1eb#$Nh=x79ZVHK{2KJyWUN=OLY3V}4Cdf(e5&q7jsD)%tJFZUKD$X?ULQENQ5T
zSP6O3o>4RaYJ0m9Jn4?1h>-VRMWm&Z6EEZimNq)-=oF7@@T1ZXmMR+r*=$6K^1&r8
z)P9K-MqM`#f5IdIKA^|1Pe@R0{aaIa6?#*~{cFX;?pdfG<eg3BXP)A|nG#?tq0P_1
zyQlshEuBUq%cJmj%t^M?jFSq-oU=VU-Bli_m5nZPs)Kx7*NlyGbAejhe<tc`*b&3s
z>I>Y%iJSgEbE_8$A|=a_8zAxKFRNTGHW=1Q0o+DH%LrIFJB0Nu1=DkXWNMKah6$By
z{zNP|a|Rpfk=ibFq_HP;URSGLZt>X0>b|ve_{qYqY*W1!MO_f=@jz)@kPVX|YB2tf
z`Jet}*V*h9Xt65M6$w&Z_j^5d^D3?sY}H2_c^{UaX>u}TO_y90JA}Prapn(x^W`dc
zv8p7t#9kD^HT<NpnM!A4Df7lvPl|fXxEim%l=UF>L0%fegUQ%Ly*Jb~NRe(6Ps;jX
zUQ|~cC-R+@Z=0tTTT=Sj;69(z8_!yfE|HnTaF&cK8N)1mGt5@1R~sGd!6nfuy|AQM
z;S|tQRb&_kyVfT5P0tK6)=Jg|xZRp9%nWT!HQolUG=bW;!#JX>LA5HIO?%5#EGmlX
zW?7TV$>w$#mD6s_a8DGh)l3bb8o~lJRZr|?K~e3HdN-Nd`B;S>OgCfq4dg=B@QQGe
zV}~v$QrMcMJ(geDju|?b&0%r&nE&Xe8&j}d&Hfg*oo;Z_Mls-<UBvK)9wAEq<aumk
z3Cvc6DzRMN+%al$wI8joAsY0|YhT9@(*#j=x?UPzpKFW?WlM`iXig3{E-y0bAtrqc
z?xHN?p=GV#Q{clPsZS8b<Q&*5lKQ<v9e)zB;plg&l}x<crt@qFT@b4r9wZ}ytJ|&M
zJSz)oxH*kJenwK(`Tp@^AAP_>GNZ^$YkH+O;`l9#AeQ<9EeqHUQrs9X@Cn}R1tnH5
zL}$NmN@ZM5BiS^hy4KPRn3Dhd4SK*7CPR<G=LG%t0HVXhB2Wu@gH$Kmg+zFFb#IFS
ze$fijM<AqrQ&#{jJW0`1hqLgs$vd!xA;o=(BaT5!kj&zWf<ZOA>@a=0_p$Fj#Z_*s
ze^0kE>OQy%y!tnx-z~x_Oh3ZE^+u&=7b;-WhR~`$cEp3)Tz*>O<+OGuh7mk^bd@g=
zKA$<;+s74lArYR7BMV}*fuIFZYWT?rh6kWXpF#(?ZBD=6racQ>-grrvvLC6yCU(Sg
z@tSlS*IE4?*-c1}_;wRNYTzDO(t*+fTJ|2I7dL#u=Jq{bgOO}PxwNXMkH1sG6h$$d
zXQ2+IwX7VrbPBa8YR6)$R!6R=g8y-Jo?%J8e;>{)sa(Ib<-~GjrdH-2wA?E#N8;WC
z7w!aSX<CXSHFss2IS?Ee4%9SfVoq>kjxZJXLLATie_r_xj|1)tuIqc9pYucdYf``g
zy!JDg4b^*Aa;fq5J}^Jvw&max6E;9kYXONE^`7p)b>o3O(26LT-oqK9u8B__!uz0r
z3#*jHs~g4>XZREc%)z^gsqZcygglHh04w7n7;DEz5!ae^gP4QtQ-MsNx-}2xqD8t`
zV4rNWKFztj2{93Tv5^?PzW{E$t>xO`WLCs3sB!Tc+jIa%TqeHi9Rwe@sFLy8<wbqc
zFY{lMmIj`I_ZpTNF67Sf-Iil?ue$JV?<KymmB!B4{@BD!QC1xEgY}QUiqO;-^I;*r
z>|{asTz~z;@u}`6Y-FbXQrlu=V$I*cB_NW!aigF1)1G;k_FX(Ov#fxAiz)0II@b4}
zviQ=@_a-Zep3D5Fb|d?I#N2W?ifn?x<X{NqH10L=y7~0uQ*erw`ZRx#O~%STdAxb0
zicLvnWjf>O9zu+?XQ$WDHp+Gq6pUb_*`R0Jqbrhor24Rq;B#}1?8@daK$Mzs!?wu^
ztLpt*>F@zY6d1H@y5VZTF!y$rmGD@VaXR5Qo?cSAlf-P>$0-umbZJg_g&(d#acgb>
z<xrQih=qAt_|&u^J@s4rQ7f1N`>?+dSF$P?1WPWf_C)nzR4Czq*wYxzFyFr!&T&=+
zV6c>7S@CPivZ%4(&+0tuUV@ipR{zZCFAh7=H6!+QGM?brg+n7>wiUno5_J=)L(m<)
zMmjJgATtdfL1#*v9NpZrZ!h4T(|+SzX>*XBX}tqqt6E*5(nN85Zim6=M5`a4cd5UC
z0fg&&$!xpA`@`*;d7HTSzf2Q0m%=(b)ZdA`u?%{D&@~yn<%m$12<j+yhOcrpu9HL7
z5j2K?NF2M2onV*=z9;`Q6C=DmeBgY_lCG%pnZD=VD?V%Ms03>yS6v<O8M8qx7jr!-
z9f@S!S`+OYdu|m<q*t)AOx1<6%G84m)1JCFR;;d)Z>@^T4gLQ%`Hc0?EG?L+1od7T
z-jr_fh6lr?^0~+SW(O6LyvX}|Uuf)-z3k+hi@Ew#gH;J27f~h%UE`yDA-A8f5WL5F
zIGu--Y+$Cu`jd{IJ&H^@NfR%;@2{trRC@U!Rq%YfM<rXcm={V?3!ZmjGoF{BaD)?q
zcXt(Z)4>xLFqHV+6>uFTawnoP?*ox+TBE%=o<qI#7Ea8S8q=QnBSSv?vJ(tFwOeAb
z4{+bkHMMF7Q4MW>v9=gebkf`0icpoSU{SbN1Q;>QP96pcAfErJKmNzG+6kFjL`C5J
zD2J0$KLdKkio@)o8Q3`A=#N{s*PgAUNna~i<!yYbRNv44E~IOL_D7ZwHnCW6BsO$%
zs1ll@btOVZF7Cyu4dYtQ_?GvX@qDg}X6%U2%;0JLyJ2gjjW)&bWIxi^Wz&^OLXu99
znoDa`p-z|zi7QTwroklQMWw`T(NxqRIPL>&HUD-DJtyEuYo#nq5-?=VylBVO@0m7q
z1_eoju3J;$JmbP*-X)Je8zA+!;*ys?t+@h&3wRow6+fZ0dRY1M%G$(Mtsy2fPX_zR
zhqf#M_EYODc+*FO+H;bNbA4%IpaUUWBTQcRj)Zv0@}xK)8e@P35cn;tO-ZuRzT%E?
zt9Y(`^%~@j+PGif%YuKC`+1Le;VoDCBmOeX;YS!$_V$rK;(hl?jQWM#mcZk~@VPxU
zLD|J8-Tgd}dDAwx{rHpSEiQ&~?)z=dFUi}VV}8T?b1{_u10C)MN^!)`r``U&+YjKK
z0KvW!6yOo)3uCsPi`R|5&<?VvT?Kqx8&ftACTAJTe*&C#_rtnZDLNC5Icq9zArc_Q
zk6PEjNm-bXs8SwhZZ}f6?@b}`fa5_ijWzs_3M$Wqyso6@@}D|5FkdU1{SfJmq@S0U
zQK-ow8o_jI<da@#G8ec<H6Y6+x}<BK)r{Q#d1YZ~qFRO0E4P%JX&N^Tf`xPqlQ4f2
z!cDd!rS^PW_&=Yur8#WWNkXG-ec=gI2N#NC88>t`LPe!+na<ZQo~!>4U-62P)|TOW
z^xA6ZOisl2BE&p-$zQGJ=Z;$`*oV(s$dml20TQ-daAco=n{V;$&iWH7$g@Wim_9>u
zwmJEGFjVW7T;lstBl>5Pbbv|$^WAUGIQOU3AKO2uE-PYEoh77<99F%%UDIEVr`|2m
zli%4pUo`GUEjRZjwOo%2m(3tt0K_r`$2MYn?eSS??a_rG_G!@_fr^g%AiEUzinMG&
zKF4OK-qN{JNkBNmoHJT7{nq8rk_jyD+`Q|9jau`wd?bIWzQ?x(-SKG-TX4Q-%<>np
z!~9OoE=8S(=u9WZWsIQI<L@NEHM2PAIh2;^IlUkL)JVk{;6uA(H)va{OYdWt8&f2D
zYZVPoLH}rR0s;?nkyFpljL3q34SJB84LbX*w6cs-;4ju)lc%r-D;a#ZjqjrX>1BQ;
zzWnFj5-(^kNA=9quU4ES3AvcU5;geWX_}=vIO27=;@3_0B)@N$i_STgy69DrqSvvv
z0Is2|V&fHLY1Y;E6kkWe<o-dA7P`$gxZ*?_(5M*T9VIOUr<T`yw-REH<RaM-6*Gl&
zrdqj?P>18FO0KSH0o%6@y^YNsE@b#pkfDYG`{=>?PXll5bsSmna>MEofE&Lj$mp2h
zYs3DLCz?mh_-xmR8N*bku95vx#5~;H8XavAzydSKFt?LLPkRS(pRqIt1Gih;<KO&e
zXCQef2Nk0!txtbX(C`sCU=tc9)uJ^rpyfv)YK<%%MUp%CKnoMD?C+NaPmu$VH%C%2
zpFdlgiTiMs6HY##X9{a=r?|vltKI!YQE!c~&$;QvdCEFeR116l)baD6Fl?s{YskgS
z^U^PFh|Cck7}{O_<>OykmgsaTLHLRFxl|o#dHb|>gJ4S)9wzbkEe}5H_P!&;)&Jft
z*LSz<%+;-Y7Vfz-wdW}1>l86<Wxc5TDG2Eak{2-yT|q@q3_Z;HG1vXmv2_H;K941y
z#oPeL@NJ9E#wlpUTQw#@QWHLVB#g(?a_#N-_RT22oZ-`ZI~1Ri6EvaKkvfmpu}0dt
z;`3IRv7Rb<U4fiCl&C~(T|M2H+JYu8UC8MXpgn^bP!o=9l6EL-;$af{bc^M#PLqz^
z_eskAo#Q(i{R;Tem*mP8$BABxlcT>LL(F0NAKvXyuGa-M_RrV1TrnSL;rtblZ#ch{
z*0_tb*#bOMq#c_Jb=}9j1DweY3XmD(b6|JA>mvCnsA<DE@IoGGrm%E#0CrxvzX^S8
z;7RJ=?+KrQp%R|vOf#7FKUSqm?kjFE1Bbf2w$YDUuh$A_MNgYf8YxD5qAvhOPW_gH
zY+k{B$qHgvl0cbI8mDvGe|~*V2L#_9EC4Hsg`Juy1a8w=NXn7)KB~e&-yX#efU^QB
z%qrc?_LK%b?^Xe<E@l<zSW2j+IYo-{G5v7wt|InDtI`yzzSsf^<`)caTJFZ<CZy>Q
z@0k_y7wPR66~5Ssq>83DLg!v2xU49`s!q?&k$3H^Kr3A{2LFD0!+R~3p8OT!fmXz{
z<vOSggqDl$UNmH5M#yP)AM|t#P1$QTO&u};2U&H8A(IO;%aVv+$n#nH$9Uz1S`IR#
zbW0af7=*03EUDnz?vhL1lquf2j4J}SusW!%);<jpe%N|qsvMjf8jq@3XO<gXc$Rk>
zy3M@sJ@bbwWc?ykdH*IAxO%^e7;)Z6K?zPgMBDyjM6t_UZwZ=NPC$hWK!)i32x%s$
zisgwdpxTHy04^y0+UDHujNkHEOWuen`vZO3Q#1H=+4UffLfH|pt$MWVp~+vEwN!06
zx#m%I>YaeRa_VlIn>NTm{<3K&!7uyRby@+FK301a$166gy(ZrM<%ME_kGYYG9pAV(
zDG5p9hJA&PL_C2l%3DziWb7;OR)I6Zk3QHf*X7NFYo!;6V=`!;+#3|+Qz|n-9In=S
zg%O@E3)eZ?DOYnmhW*frII8?J7tJj!uS_<1-yl%!S<t=nYPpSllUaN_v6ls6SCvBN
zRC6VEPELOv;%Cf&^2bcFmaTA?fd|Nlu3fWj3=HKB(~j##Ns4!OD(}w~j_>P#ZQCJ{
zSK6L|N1mAeGg5dluu%|xVt7LPnuqq1i+agNh$cj)g{}77|0MWHAnkCJgMVB+WXh1S
zDz$MTGGeE>Y2bvhSMc*t=eX_Mb`0lXwcGdJ>HI13r`nVCIio}U#-*jlCsZh;W$bfQ
zmi+MnE!by!G|16#EV}Mh@P``oGlILsd-t%Vz@F~f&U@EP(7JEzC3Si&R#}`CVUN)7
z<jUd*ml?&PN=xT)yyIm!=A2p(j4&P49!|o-W%|uH$(!6OUjuiplJ%5E55brb$0n~c
zH?NbHuu_=j&s(nW#N0RJQX7aC>|$7WN~J{>q;)h2T2cmSbIJW3JYO?gmY-v@P*#zf
zy(Kq_mf?n40yPFiS8@&lkZe>RT^Mi3A@~<K#8?fz1ix|96J4AHrFupGi$~Sp_8=Af
z<0lJ)hqz(jUE})9AN{j)XC^*bS^QRFlxQ%X<rSXpd_v9VuI$>80LNI_ZWNdzpXb~A
zhYLBh4Rmm<d1?G}o?E)gmE%=6Jog#Qqh*z3>mD1OlzfLp^U8$?afk}rsTbOpI$pk<
zxw7;nadPHsy=S-YGZvq4iKOvA8;6!&^owY@ckZ>;M(2Z@TK=L3u!&yBCcqS)Wl9@M
z&orCNF}KnU{C>+(Wir5Li|m4AF!FH?o^0eu<i0+WXVu4*?SlYmk}2b66xts$x1=;g
z>1S|B2)sp+{0cTcCyO6}=}YO;x|+iq*^jrnsJuQmik=yMs=JJn%@cn)Fq$oE0+JFl
z+dv6bzO0eE!RJ(-lum@Kf_@l%H}?8ADq#z#U=&kq+WyiIu@!@hj=zI2qIR7sRkEIB
z`Zw@LdJ1z=3~KZE;>j*DjBw+(Z!}G)pmO`DB{uAB^G47#WQZwj`{4j5LJI6ZBYg1q
zPV!)9=G2iFxX@ZR(y;1twaet^N#<o67XiA8L|S^yrPof=p322Iac`d@k>4Qv)<m+=
zy}dxY42_d(ZeG8Z&DM-RjEY|u<%Z0?t_XtZh&Nltf6T~}DPswUj%b;d-3h&Cf%OYg
z1yw&y_zZuM%p?E)X*pBQuj@guC)vM#v-Bo-&AlXjfDJr!tVqznnzrW0OafJb4C(uJ
zj(8Y((h&R2+7x-cVUgpD%6yNWbU-9DzV}B>1~Rr{DkoiBsV5y&a#iAC%<e;Km!UV!
z2ng(@;$-E;%{P@PsTtbYU5T%_12T0qO@PR<SMP`QN}$SpqWD<D;|s|~Sb)4(vi1D!
zPiGmtqwt9RoTPlhPVT7!tWE_0Q<68?a>%@xvEGlI9Xw!3(xhvi&+M1DqkFkTQO~gU
zEA*SVQMxuT?P0pRAk1JY7voj>Lnps4`;9{U>YC?7Y=_%H_LzTl-U{3`K(8}nwt&Zb
zu?@(x@(#Nr^`3rfD#^F=Bu%S;{d^kTCua&ZPwM}z{p8d~T(Wm0e0(-?7Zz_G9HLH`
zE!6g6N9cbkv-=pAaq6j5%WEgJS>X2y#aZ5sS0mt_EYP%yI}SE}`<gvcLFvkH_w)x8
zwz&CyJy*WS(QW9Xu96>3EZZ~9o-%$8=w>#uMIXxfN@XbJ_jUL)<4tUBx}#3oV{Pt`
zVaWZH*=6avHlNa))CMYIsJ1drVBC1QflDAY1@TnMMOe?F;7lCutbFe~B0U+8;(~yG
zXx>k<ubI*f_7J*29`~W}<L+KBQO_)E%NK(;8Oo2pqwSo5j#^G<$mQ6bWWT?L{e$eW
zhlq8mk?4_LMgCp2+B!8Q{=kKpo}HvPTrSUZ{ZJGyjnPm~1&9ScP0sidDxxSdQ4GF=
zu<A*7yD6$?Onta2=dcI2-WWJbfqeFV8BKf7o$UFWu7}&c0KQ7AphQ)2L;iTV`v)D{
zgXLPo)wYZ!)mdOWm%*kTBIBo(s92GMgi2YwO`{bvE*)&Kks_{ih0LMM376uA-do8>
zAqZ@`|4sb$draGSswyjLzv&ngr-Qh-^X8ygiF%`(!oJcV<pp`6KAV9q6zGM&Oa$&t
z!!0tNIdumwbBna!tCDGKe>858;#OI|q6r#J?^w{s-R`vCsvc~-|JF5HMgG_RzUbo+
zrVYIWwj2l0`S{7ri_jnn))>yXJh>*n{|-L2b9f08byE;Ze7j(n>}eRcU}!?+*8}x3
zF>Kj#pc!-X2S66m(a~^)3TIcYD~drmwiF}7V738ci9oUO_kiCR5X``3?V<NYh5#*r
zJ#dgOXsq9E-jN+~KkqAMo(rMR3N?ZDa^t-(Li1$;r+T~0+cFOB-9_b1&itK%ecQTg
zKv!-p?#+tyvQRz;`KXKv|0pnLGHOhv?Z4f67<*&~nA&icJZC{w_F*ZN0~sciIfs@j
zho?+=4<EpTj=j}yfnnc{fDme1Ri~Za&oQoLe)U^Lc+@@UEoPjo${xH=X1^rsWE*jx
zvKAnXcm=-s4Dz6r)9w^Jjwp`kdrLL3TB={pKf^Vd5qHl<KO*l;%O9stF_&QVW6`>M
z6M30_4wO`D`fl;goR95lwsUbA<bw}t*Qn~^Fzu*V#(?*`7Y+4bU}B=<VI9LDKqRmz
z*xP3TI$m()4y-m0dg|+0reN#RgP;`NRTUY|Ji8&w*}dk;@Bi&Or>zsw$CdV;X@Pqn
z`7@BHL{JSobZ&w%h1u#!7mJgU#r+^ptjS@*t}0mz;C5YOj65yCO^xnqs}q?y!~gm%
z^R<zCkzSeEfO9}@g%f5~FwtG>7{>O7a%ln>ajoELZSU>Lkb}JEcAMxQ^31zxmTMUv
zJM9(xaq8SW(6nX7)Y9j#krl{Rc%?OULE2)R9vBSoyZ6CGNeS3TclYjm+7ctZO)Ilo
z7Bv<k#Wv9*0h>)yoskJwiG5n)3EamB?jyw&8bMJBTG;AP?r&tv#)|*ZZxbcUdxNn`
zc=z*?9i#Jvz`Uz=z42Z}_ASL8!9IGltp?xr3Er)pY*Vy?R9z97-!>RY;6#*LqiN#{
z>YIMQ=@r0ku>+1A%KW&82Ey7OH&T$0{cJ4)p~+fsi3?vF{+e6Ge-JYjB;7l-k8u_!
zDM-`?H0x!t+vaN{hDVQ10m7kDl*7uah5g^5OW`x&3gDj$Rl`IL>TDYect<gg9+EQ1
zRN);l^kNgyRBAP%#f}hJ5N_3q=M;`6o`o8($bxrRPC}Q1q{+ENzAFm~{gQV8ny{M0
zhe#eDpR$hup8`+#HI&ITd#iSMzjP-d=Z@sZ6{*Dj-MZx*^?tBL+WQHQ@8i_EPQ4vI
zpD)2w|M4bmx&jYhvvnoEFL{s8$jquXcl79(nC4YLnYVcgPm~n@#~PusZU}Gq^vcwS
zirtK*CQW*FRNwtGG9mgFF*kRvTu=nQB{JL@MSFAp=7*alY0IJ%8<dVmmYcR}N-+D+
zN771P>d#A(^2KQT3S36Xq8{W8=+b$&xb%0Du!MrOpF7sf@;bUH1Yd|OY#zf-4TA-!
zasb^XApF0hPR}ry=|t1Jsy6wCx^hy*s)~v&qwc|27O<J(4@wKGXrn7;E<T~I+8`NP
zfrcFY?@;+b48u8E4S!0G_|?}3M5xE{W1~<qcBu0yAXr-1+bX5Dzl`wGt;NUuIIjIS
zTTvBgO!{D;`rMfT-@Z)jKs)E~s&Kzz6k(Yg^3+XwuT|?}o+Angf{B?&_&_?fLZK%7
z0YBoih`$Aq&uc`NRmdAWxJ6JG<9HEt1E^Pd`+ns9lM#Epxt><be{FMdjj%t{jJfaD
zxt_^`i|cCLE7c7zj(bk>wtU-w&{fXXIwJ(K(a?5eC~`-5YDGIB;C5T+{$o#AS(|Gi
z$5EaY^O-#R{*5}~^+Exy!0(RW)!F%oyJ3nyDf!)UujMPRpwu*A5(W!gjNJnJcaK%n
z2TO+DsJ-qFO;BT}ju-Q%cuK6lXjYum3%MDm$G@QK3O88Bwbfmmc+$f<fss7BA_=WQ
z3Qo4H%z(^Dv5tjusr<^@FR^hC1t!W)Xj$MH0_r7Jo-_}>vQbyoA5i=(yEm|9b=(CZ
z2jhmux44jD>?69(twc_EQGEw)vjDysIk){`{V^JXV_c2Nsu*j|LKU90e=Q|#eXum+
zbp_vWPR^e>a^aAA{qakSikevcZHBD-7zgVYyDnoTx2#VPMw3-Pk^0uN*hBY9$e;5e
zyPP^5GO8`95H`(;M7|2^zmKIJf53{e<(B>QfQ{ituiC@nYu1va{xNHtDQQ2|?(w+J
zz~2jUQt@|Z=b=f+|EpW96$0fqUOr!)8`5@%=rYQ-y)^H^Jfz-rd8ITndV%QupOqGD
zz3pBkDgE4+7vIZcdJ>Y=POU$BJIK!tU4E>mv$?iV-FRr$An5wz)2n>@LYsri#WjCp
zysqsF@Aud!?h(b0<R^Dio8Aqq=u^Ka%h*sydOkUS1=+3TMot#_*f|QAA+Fe7fAJJv
zncKu^_%x!`AU|T#=A5WTskGWmf3oMTV*hP+JV&k_tcQt~Q&1FgQL^4vGgW@>j82$w
zLy?sMI_sd9tvPod4Jx-=0fGg%K`b_6<~(8`^d8KVUKV7iJoYgc^YKY~JIkMU4f$hu
z0zVTp1$H>U&jv&IXzbo*8bv=#$+R1?tAw{7o(hEs!MW7U*+m|E-!MPcKHB)PXY8@Z
ze98yuj)Ro5tLxH9nZVDg=>gG@D)+CcMeCnO^lU)>+lt#Wp40?|!9VVCnTB1L5x>s!
zprfUp@gBJb5-6~<v`4=!!&KC_$l7@yymS*6)_z^Di%VtsGZy!aSRH+}VXsVU_^a3k
z_v7<gG)8jYn$xNBxxFdM_iMX%MvnrAXHZUaTC8W%^k<ruMRF0+kFx~P27qyzVy$8{
z>j97R(Sn2UPNJH>$M>dm>uctkMjFk|eqIZ*FnKq6+9%E#CuVL=v7V^fQo}Jqt=;sK
z<hwtLuwt4$t&yt}wb0Yqqvg0DS}#`-|1Q@&@Kv7cLl*R^&K|Kr6O!l+qv+07AevFT
zn|(4m9gvF&?&pU-3e%hP50kLC5^6&_4dyDU`P=-@N<2!+xTiM9>Ko{Eb4Z?N1CTjf
z1vsak^ZlKoIEDrFkg%tg&I|g^qB36!)bT`BoPp(6##njEypDOLJv`!?_bYYIyDkc4
z48Xh+LAQVzP(DfzaMP@2k=Dld-c`2XQau4+ApF6?l2_69Ywbtj;ONzNQU^?(<`eyP
zv!LCNz^tRL{(u#h8~Jx%dw^3lNv58&{iDAt^<CnFEalCeaBzT)%kfaJ+yT>6rQOV{
zwq5nsD@PBu3#KzLob4^=(-||2^vb<R+ON7W^+(hh;ee#w*%ehIM04j~Y>r`B1`ukV
zA*?gE#G1mcIbJU})v%aHDTDKK1=|Eqg)1@Hs0ST2Om*!6)lh(v1Q-cgb=(;(S1)^J
zcqzkez2!N}%Fy^u?QUi|qP%V@+cM*<JnlztuLdaCxoW<dACtH<&z5r>-eTs^<TW+<
zI9+xa4R||uC2+i+W+?KaDW1!tWbbO|YR=4X31{if!x6#q7oN|@epzqol`c%Gw#sKN
zzwv4he=mvoq=px27sRIL_X%RJ&)fr|fS<RX!48DRbJMIgQX(QUl^2ekU&iD@x;oA0
z58hRZk#wydIsWYA)f2rb{?h9wm3-@;;8mF=AhQj@`ay=#RIMtOryXic2@aI-hwAw~
za>M97+@RpS#%<(6;jzl%;UcK&ERRcgOQ!D4OP<FOzaj=f82_n3H@*9N#<GwZ5TEP{
zfVi0F>$&E(l;(mX4p^7D_yTl=o`iFY^Ad_4vs~A3r2XvR%teOM^-mT!f8LAdx}hU~
zk9Hz*BRhVegQ|F$`Zb&oa!%m(-Sd<5`Dp1e<cl^R2g*ghf$J~*TVlK1vU3Zpo6$#+
zeR*pe6HO!H<ZYJ@{X6bPtEzux!jA!4f_Y^#*#`BUHXTjmmYO%b&j#Zr%7~NS<on-P
zM7&1s>nN8TzM=7miy@F5T9!4O@U1=de-p$A7eHN`*E~}Qp-foL&y{3~Bdo@HW~W_n
zL9sMn)w#JWRMiRpMDwVY0OnudSM?=R*m!d$-&>fyUgbVhtJ(Ywnf;sar}ROieX^MF
z$+oB;Psz!4TjKG?*F19$RhL`m_?-5`=EEKfsZ)(P7E9mJ;+l9%_1|TH*4HTaj&}Wv
z0aAzZ|D=ur@nS3KAxSx2&)(=1N&1@P(YjHD$+<CIO{Rr9)gU*J8PobPb-2UwbvWaQ
zuTsnt)NAT^S_cAElIpUqd>wrE9o=GX=Jm1QT;CJqkE}^L4q~R9Azu4(0=uR>ny4B3
z%?AwF9lKWhriJzH!mvIas}AfMXGFN)@qXMS7fu$FYo$VAe-4@DXM&K-&>xI`TRn8b
z<?fJ+&<nX604lr%H;`SC#P`i-Pc5<Zn>U%wKM`%@RKgo#m>3Vejj66=|5bRAot`VA
z+<SJ|QMj&P;uQ*n4^Kwvt#A`ksfC^SgI%PnN*mYnjP?OLQLn*CM;Nt*dKEc5%&FQY
z?-@rl^}!U#Lhh{Zyh1gXSjF4y9s&O4G`!&%jg<i{<YoEw+HFPF!<JY=x-3W?x9lD^
z!Tiy**{%PvbmCVe{ll16(h6js)#A=$kX*&rKK9a^iF(-i{EjVT*j0nIYfg`kGddx+
zW6sfb?}%&R5LP(H-p8p3S?hy)c4f@C>D9;)WxLE}s(mDtl74IF!IgCm=0P5Lx!I(q
z<~s{*O^Lb%_K#6wb?+xXs4hNF{FpYDIG6@Ka4_#{>pFVlHLQd#-m)CMf=#!S_&v0g
zbr8lpcnPz?>I^3rBly{;o7dQs#i<{zl4JL35_I0BpuVq(g0GU<R0h6D?d;}T13Fs5
zeN2Rc9g6%0_Fr{XQ4H8(aS~JH%_IwXz=7IhKAKK4SwvE=-{i*j?T6HCQNushN5yUU
zxkz3@UILg<N&KLl4fF1FaFIFU5;|a;c{6b*?PY8Yb?yQ%)b+#*Vm(8e9^2Y&X<bnF
z03!SSMJvOpVq_xXx!_E1j0J(rC3e0m-+;2jim2F-t=bRZ-$)(_Y#={jkG*{F+6~qW
z@`VS!I<6yf(ss<(M{P5LHo8R`f3|ZD+*y2u&gr?(D&x{>{;j#(PN?oj#)1FDxM<e)
z8w30d_Rna@5546Q(ghfv;ntHECudi9Y$YROzsxt7B@=C1AshtU#V_yliJ9#E7_qOu
z%2{)jW`w;=QNRq4>;5643=T&77j7ze_uH(F-HSaBqytQNF`^OP$z_f6PHo<ZS2k9Z
z+P>q_`@Rlt!6Xp)#cB!)EwD$!8h=jV1{f~<kSAQ6mkulQ=-L=?BvH*X3+D<u%>=;D
z)|r8~2@|#kD#mFRg4f9{JpRVF>K>v~Q2+2KURYw6L%%F|Vc~E8RrSBCg(kN4i$@Qr
zPg?$Bg7II!ffe`r?`NtE{NVgDFlwSD{xW+bWpM`N3)mp+;HG2i$U>iEB*kAy9QNv#
z!rT69TQ6aDl}%|9g=NZjyReJrb+CVwZmg%gy0MRe*hK8f#r|V|YOCfnM=qu8Z8B|)
z(U%{}7kj-=6=59^1;M(u%(%jn?<k0|j83DEKh|$ukANw5k7fKh9PQOm$eoW&#NExj
zpX`Jbwwp`U`t2PriS|JuwGn<aD``D!dSoKMJgX4b3tRwWN<(3D5;<eGa0NRzehK>!
zEeX3UInpI27}+;pO1-fNg2hFK0EmSlnvjRZduqWlM2edq%2xsqNS2i_fa2bOjH;xR
zQ6({F4U;n^4{`v*d|4a7vAIbHqxyCPy#BpMRh09rjyRT$U_J%ZQ5{c%V=AuGhxeDf
zx;Hk2%<X_tWOB}KBGte%#!ABXG}$a%XjATNp86IufB{+ezqXR$CIDLB8OAVYBuWx2
z=MEO*dah}V1_9u$X}<y$;*SAXpIU&w`>kFrit_pc;!y9QM}48qiyQL?0Z(_)mMkpD
zXQptA8Ae^5ersqMLU1VD2(t6gq?E^RuT}DB&6~!Y&3)FanDCgbSLnX5iH-M}63PSn
za#p03$@Xhcv$cCc`kl`I*_KP!;Nprbs_s9{93v^$)b-m2xWBE<w7Hs%^>e9nvad;;
zoxN9O;V7^}nUJGYT>0K+7AC*c=V4Y?DXs?s`iVMMGf`||Qo|Rawwjs&Ha^gs_w4j^
z7D~wuD)W}hzrBIl+n!$bjlkIYgP){{jFmZ8#$|F9zn!Fo1Jdf=_Nt;iSpWw}5=OA0
zD+(3jy$C>^pKH;eK6?6OHh@TDhtAABM1u%}4*_@Buo;IQC@@qI2H46#;uh~htybRy
zOT`#-nQS>6I$u`KagDCL)Hp$J?5J<N(|zw=UZ5G|w?~ld`%8)!=_S;!%<{Z2c4Q9m
zGPL}J1M)l2reLdfRHrW@DE&rox?V+i1UnTJEu{gmJ01!!yg#A$CvU-087D?sEPTFt
z|IgfWY7)ve*9T(vEH9XVrn>=5$J;tlw*Oebrdp5(_xGdHQR6XdsBpXYW#tKDUkSE?
zJ?qTz|NZ{vt*nusvN`$1XY;oo>WDp5NT{o|q4Q+5g!M=)a0d|Ln_WG~t~I1r07eb!
z$G<10%tt2T5Wl?5ppDV#Si45Q_oIi@mlNhM#HN>Y>wbc*mUEW9>XiHAm$fOOp(SN?
z6}{ePb8gpq*DmuwO<<h=6-);-pGI?@w4iI3D>{@h$crnuZ<k5>M!^1{qu0aO+!kZY
z0(%`1(LIc<ZQ_!j-8Exvv<`a)OAM=M@;lr`lcn!{Xf6{_SYhX0<9S-vW4b+vo)~wQ
zdCga_$1>qZe#(l_d+1F9TD}}64bY?t(t&pn+e%}9+Z?Zrcgv{$GBA%W4>P=vtO@$t
zZlHwi)~pJyP?<(IHym9+lTjb-LubaN`R3~Vrx1V69Ev(N+ysO7DFHJgMNF0yldY4W
zF!Pn!_q;f<Rx|MQ{y3&id7)<6;?Yv)mj9yl(uZCaf<~b9OUVQ&*Oelnoj*`$+R@a0
ziTc0T@tu0Dp9Ws;%W@}U8QGIno7mB$BM!XxJ;D9x`U4=}jcc#{cNrROg>8-nB)wi%
zz3ROx%*%}>R@H5*0n=DX@Z0r^WZu6<1^?g8(-mNdY>v(uK8#=`Pd_zp?&g8}lcha8
zSFY9ssRe{D6~3>e*+HKE<P5<7ZPgOBlUz4;f_omdY5n2BW3AHYOdS8MlOJIs29GXy
zbEssYN^udf!^Kx24}gyH!VsC)tA*{Hm$sN`)4@B&Jh@~oaIGXRmN`rUV?}YQ-a~J#
zf_`a*0?ps?R;E<j0C3#jv?X-dDUpK!JiO_67eAG;a{l*jTfG{()-Q-3q#p>mIxXXv
zxyfE2=tWbY`A>iz?B-u5Tp17T|Hw#WK0V90SW?M<=n<iS?@@Q&gtZZL@8KSV)gpCZ
zMv;wUzfue?94a&2;YSL$m2%tO61uARD0$3isfIb~sjX#)(S_^2C?Qt5|1-|njv&_K
z#oCRrRHy$!;7D0BI5(0><s!b@Hm>RY;|2p|w@BXvgNgsnmHnCasEC<FME75S?vOnM
zFe7g&F0uZX@6fCE={62vbD0>jFiC(`mPR`vm*rfPzlxJxXk*qBTt&qFbNB{AFDsb?
zUX+3wIop4COwrfjr<P1`_Lg6ZJXREZbLYjNn8FcIu?EjsL||&;t-g}4z{SN$QK;Ia
z@CRNrJH1v=UM**Mq|LUm%=+DfD6+Tu(i3!dZQG~|yhxm^+g{A%^;tYz$WDf+b+Ku+
z@CMjD+H0LTWY=V-Y^y*L&jlDhL!?8&TPf7k%(p&!FL@E6o0bRUl!BvEoL@)%!=li{
zknX8QB->R3-m_?Q+dR{}>bZ%!nB;u7$Fa`38KScgPLdHagDoj$a>u&;5!F-^MrdY&
zE{$0~gRz#k(TBqRo!KB2*jN9ORqh$NQSsz)F(*1bCYJ-*zxwlE$QE2&xhv3uD@_yD
z-CZk44AlF+c+;Hi%jW5@&%(Rf@aB8hJC{A}MhaBc@A^6vx4m2}tE0*${g;TlJnj$I
zi(gc-1wplun)L#5eT<~sH#j#n>HQV(75W*dIzDK=U3Q||7|jY4cd(~ahT2mVGaohh
zY%wy(Z>JJa->;JL3+VSpLzhVY-_y1Vk~K29*~4Of9a5iDC1Gcjc8?`cqjFouvalyW
ztpu~INey8w9sKdN)DJC<JS~nLkgCApSN01(@Y<46arMpd(ccLJ%<z`~G>1iAT-j`@
zw3m8SdTnf-k{h2`Po>3W<lWx+?Q93Vy_MekXtBs-Nj3d8;mMtwPL`er?9xQqy${b|
zV-5CpZB2`7QEHwZPX-#vlWS5;e1E3zg#T#jm90!|OQ^eE5$N-N7Mpot2onr5VO2H$
zarrXzXCmp%l=bAiblFmAI1c>0FToU65}Ma2m=-S0l+%N02<iJgV!0>c@M*p}vDP}g
zte1{&3dq6LX;#?hcL5y$@I_^+@?VYlLAB34N`VJFMeDD7YNPMP8Z0E&^OdhMbybyI
zQ+PwfIG@8{6V5p<-dj{nDwucX@h~3y{bA%qy5ph2#hge=?bVEOn3k>br*B0o248a<
zQ_qC`+)-{g1C7<aP8wb)e)%akmhgvnX_(WkkYFc9Yj92B=Cr{WomrW*i5<GB(4(0U
zMf}gHcq#v4UZs0-*<92RUUg3k(h_`jg{bv{Vw(1CA1`=#W`x6lK34#I@|)yz)cxT;
zbG!-7mYjdfaFv6P-);28jtAW2nebF_`@15P{w++(zIUm2VBx{dcM|i{UEKy)B?@Zm
zs7ZG-3Mx<%%X#9y7E-&`%oKiQX+bRadfDyYnp0-C@YGPA0Q=*#$V97|@opqsBrOf`
z2(EDuxZV=C5;aK6-b>!-=F<=>c@3Rqjcw=l>b&L?9Cca5#81A|bML&HS+(U3wxRv~
zD0Ql~u0KqBG0XlfnTB+aW{<z+wx?sI`iJWAdM!isRkt<(RuPboM2st6<XQboRux+{
zCGD+xMuA{4lYsQ4k2JxuJJ|V15SnH0-yLX!?w*>+B6`lZPkSD(0RT-V-_I~%Ud2}B
zx>xsFiD_#OSCy9dky?3~_l6_(a%V&;dB6g=Fj!st*LW*t@I<JB45{V3-4^1Vj!lfz
z**uC|cQ5Akmo_H8#Idd1I~TDU`02HnNe=Sbo`kqQRoX(e%}iCkQ)@qpH^4hg;-+o7
zZ$EG=;rx>YKiIA{r3xP5eD13E43@-=L$$R>tTF+o6~T#L5!1rE@u(Z=fCx4B*Eh1c
z@*Y4EA)Dux1rMn$o#$;SZO1$Vd;N&_bwywMi&{Ff)~G|R3Zzv>w>NP+*V`-rF`Xls
zInt+ow&*P^BkFZ{!w@jJc>**Qs~k_+0+S6_ZAEd{otkCr-xGk3Vj!U&kB&6X^#T~;
zCpDZo#{YqTbkm?8T}$GVOW<XtrX-pp++f}_$_VrIk_+Y%;|aRa>U`kVGHDpShHMML
zWn!-)jSISJai>fu`eF{Y_R#K~bjukK>>DWG(Hd#nkY6n?R=fOcQt!|C-DXYNK_T%f
z`5jOL28bfH7CgukkB98%mhs~|DS%TcN_h)l-JTSJ?+~N`_k84$BvxSIz={eYXhM<)
z?<{+h=hXje{!S#(@_@pHm*9oNQ<%!#FuEwVw(zI<^qRuK1}fsyvU6HIbFILcJIxDi
zAoXn8_-1F^jI>X|zve@XUPEGoXzrU+Sq8)1j=F%8D8L>Hg>{ghg)N4vC<i<gD7&<9
zqa}`joDs)wr7_-E<h~B=K3%YLCa1PJT8dvsmL9jbb0LR?p})!sD~=W?M@glJc9l7H
zUgjQ?DX@Q=`%yYuR6ZDZ5UlDh=D=1Z$sGh{`GZs9V&og*i)Z-oI<LQwj<10q11}I`
zC@h}p<=c?K$CHm0NPGHnl^d$G!+d6}siTvV&UAt7=Hl6p+1dTFZL_gqn%Dfwt5vJC
zNx#pIwdL>rWc27Wbz&0gpx>8&|Dc_-hI&*mJ)tK*5YZuc3QEn{F3MY=SChmXH#Gxi
z^PJ{9B?u$pY8nw<uRE!o1t-f9VTC7qYY^`GIdcU9`}^YmS}ontUxLj7=j_8=FaClY
z{t-WByiBQyCV*P%@*YH<zmn7Sr6=sv;nZHiKN`(p?oscp(a3XRGs$maxCAo}XQLIL
zbbbVy;!nBhHib8UB{Q)cO0PFcBkK4t^xbjuMTZ-=9ID|K+^}<s0vJ>C>H{_)QFms-
z1pNdF6PzcTcL_4WZ;{UKx{_o42tFjCf+j5%B@XhN+g%@QTGU7IbM5-xAedpN4LYT=
z`2!K4m(DP<h;JLNMoS$HDnr~W1#{XAC1Hl>j87-#$&%A5=HWB{+az(20aZN$am)Oz
zTH`9HSp7np>G<9+vkZiF7fl#Z@jbJp(=~i1iwId_G<QUB<XY@U@yPQ-4)?Xti1i@+
zxKG;KhluTKng)a52H%Dc*0O<*XJLE-ryRbWXO@HST>L1OpV%vukSO$eWgG~O@I<h6
zm8ukY*xoy{sBCuWdOAV1vi2%3cI2!)ob2HyGvCp~y>bb2IjozVCgUKB=i)MeU?#r>
ztk|HxaD3{Q8n|hm`jI!+{hM%*k75ilZxZPG5S(~~9z~PT&tMj-?>Ui=S8HYp|5;J^
zD_pADk|;9R%k<(v|Cv|aE<ZXgL3yN){#|MS*GH;<KhcxHVmSN~X5?N|bXk7RGtW`-
zZBYyX+1gptVsl!4m$}=%@PF%$X<mJ?kx>$IEQxqe0V6N*>?&_3dZOSo1PcX5w;slK
zYVNdX^_#C>q=6t$RctxKKbqCbg+jrY$EeCpEE+Sw53PvX<r+^!1+D_6&z$dHqjWd$
z@7<*8HruuQFsDd$=h%0ynjh>$_6@I|v{u6&W)nors;JhDdND$~<?x^u@Hf}M$Ia;n
zYsN+s_p^|F9y^>*u9SbeziY5MuG(d7_qLyHd$qswNf5TWA7ktjZ0OuBpTwF3l%NkP
ztZE3FqnkV^Hdj^;0Ub*>LkxfLJKqJaQ|#|aBJfSi;o2kiHZ0XA`Ph+Kh9P--1j&cq
zRX>(mwA%j8%l|3tzKr~;B);!&7(=Wkg|=h}xSAopJOfyY(BYJ3g~8pB<4CERg&4v4
zl2z^weMJN%Mk>_scb9AHC_^_2HDWz65vtl;*Kj1)r5u3ljR3(e?Q7rnssx5CRK%B7
zPB-oEC&wR$!fj{fqPRb;rL2W2Myvxuz7LxC5EyWVy%~HG+S7SIlg|M2$-kjrMBK9P
zWX8WL$$k9li=(2<29WC^EMlGbH&FwE>wh}r`{me(jc=t)nV#a~_`!K_y#nkJTDttX
z&91;a>YWa{$*ME;J^wk$RQ^F-IXV}(>o?3%&bxn1mqg!<ZSja|`1Slu<ZlJnwEA~5
z^H_;11$bU8L&!QPUZ%zD5ndm~PQJK!TE3=Ev2V&biW)z8So%84DmX6j2F{WbKwqQ{
z(HHrE`6pl=X_$5%DHhthNh*b_4qE`~g*-5@vKyw;AIamzfWLmTk%@~foy_u?I*EIC
z(>x_W>L$NK+gb1x7(U$l+l-LnE#3Q@BlaL%7E#SsFIh!HT@xtbL?u`xDfR?9>vd>R
zfRVqS+&RprBR0OOE%Wfm8a0Q<$i4b?W>@td$L27?U%;wUGvhDDJD(kGXpY;iLYb&%
zWO16n`uBN}&n*`be?ho-snC=2D?oyBf>r%iYlaH}P+pVigPi(@uG^Keu#s5-uD;ok
zcL!Gb%6Cd_FGiA&Y0Zqi6DII|7oBVGeE$=3Z=o?Q4duXQgNJe+dcB<F7fev$_gGT7
zUU;PEe@SEqI`)0Fi5SAXo-{rUEf~O#ed(m`3CIlv`clvJ=*9A0IWDI$h_CEnxAqON
z*Wa9nDX_0-wC#~!i;TH!m{bVk&IZ~1FiU8&0mZqK0R^(c@bl*SL~ZT0pO_J4*z?m`
zCNWkTtHDt8@Ik1n(hb%+Qu%z;fAgi}l}~R8HAk}xOXEHjyYMVWy@ZN;yD*N+aFlZA
zjEF<8#0wT|revj!#K?x6-B8r%$iLy<qhf>{aIQ+0#H75(-vQjF!r<y2i6wq`9idi0
zS*9NlgL@#HR=A>>Y<(_<G1wXsanAv4W?{~`x2=3DvLb&O0nAwMkXc}ATgt>+&0%;Y
zkeVGS>{}6w`jzPjJ5f?_TYhGE%Y4RQJZh<$4uU4YP0JMo+#aHzsjIiLfHej<pPY=X
zPSK;Rk;55Rl}SNlr8=z>o<KoZh1xS0gjYY0w~@(7_GgsIinVwB?M8b8pgY%oLT{w+
zeUkdp(HSU^f#SzF+S)AYmF49s<m7c0m%DEgPoxBNgpa$l|D3YhiW_zc{RDi6d-qF(
zM>Y2fs#?i3d>##UXvQoHRgPS5h8vue?o?F||E%=rL~&-0h65{jAb>oMt$bY89R5dn
zz6$i9jL{?ko@m{vf-)M0_g%vw$E`G-rMkL_D&_ec{ipU3AI-Mv=^xCvRrqk71zHgm
zm1S)%e2`kpnTm|V!nNMH<Dd>4pFG<kl+q{Yv!<f;MEdG=i-x)&-zM1L_$H_DczJ$M
zX9qJe_=RA^&zbKd>r~}AzTUv*DKFtFoOoLI&cL*<9?hpBv+3&3jQu^Y=BQl+MY>+$
zhcr$YUSWt9fVOSESWd1BI&V{AwN~o?Gu(%vs;W#-UrAIl4kC=^bng)5I&*s4!XKOe
z?0`>cc;_7S1{q}J{A=9Y$v#UN54r!A$W!JJv88Mjzs62}g5G3<?fmuPOz3RRv1%p#
z^~qlOfNC_4UPL$&3<JW`L|bB|Hcj_*LncHT#vEm#x<BGGu)i4cRu~A&e)e}F9Zjw*
zd0Q!W6vYnrRHj~ima$Ca?_OyTHF??OZAm%GW87C?<qxDW*cG93{p@^<s6_lQ2Iy9w
zm?+GPu!sEKxBPC6P%;KGq!ARl!i;d`lb2l^L#9iA74m9@;AtAV0uvL^&eUy<I*mx|
zRjo7wXG3kNm(@ja{L(L!{ML<=J>lxQW@9!WaJn;RB=nCOJ1@iny@y9_D({hf28e4_
zD1)$I*}O2q^q0!ARocLMJXkxr;s<9yp6zq=IYsNS=F}CH&q4XXS$Yio82Oy0Ug|tv
zojbjjU=2%D(u&{NkAqAveuYq+`r{3lzcjql*ne%?i?V{UpH!?x>;yI4vK<LtE>+`D
zS3THAG@S!sY&$d#|1sLUA!_rRIcw6}!4%Phf(YUB7o(e8PdTcN!)m+7c0q7j)tWZg
z{D^MPcj!G;eA_BOMYQo(L=MQ?`ZQ0xS2B{m;1G39Frt=Hv%%95>-?+n$$x$KY&>fp
zTtfG&>5qH5X(b1_`H+mHzt07Dolkht^KRSeixZP-LF<KbK?WBzwS3^Q%7CxWA)byl
zi4C%PD?S9r?Mm$a-n-6_?|L0+P?;yx89(VtF0KB?#E0>u7z4YFhv?Xf+GUZpODgjg
z%a{1h8j6UU_qNz9=JE&GAvLHe00dsvDX17lsj|wOG$$9st?i*3ckL9^HCF^D+B24Z
zWF$wiLwpmYbZ|RaR@F%lZ{U>M<Ok@(M8EK1B}^Cr4NJ5-^)gy&b0B~N|5g1u7j}SW
z*Bm1S>)!I~AXRM|v%(}H$%GD0)r})JBV%+FYLOAyw{bV30%d9U`13?&C;3xeQ1^{6
zRoS%7!$K|fa5>_QZNtgi)fYel!ZU*$zZ^cKKI;#0x2?@g)T`3?%E@)p_lSveX)5vK
zC1wuqJ%yQYPcovRtxAHxq_V@7+NU<$Fk^bdRG#T^gzpm&?7$lMHT*B2t;yJXI3`ap
zr&c`llU!%=<lqf1{Am>xUU*FRE%JKSgo3zuQxLoWB=9u33<tRIrZQ?QROZKBJ-Y2d
zSBU&~%JbG^tTM@B<iO9Tkk+5Ap4p<qW+booPS#dpqAHynI9Sq)5no;tCF~mhV+Yc^
zW@@<EjJ(r&w5S(9Vu)dEY7s4jKwuvBY(}`p?@LR3mX(UUdvgfhJG3j43+4|!ZEK(d
z7(7;r*vL&%q3Xpmg~WY}LgL8iA+RdwfzZ?P3CBa-JBx+G;>PO$6s?b4co_Sm^Ae`J
zGf|Ub#0`E80*VfASX9lZLM+_3ncXN|XH*VKgzB6SZ15ej7`);S0=Ot+VIi<U?{c_x
zd{nI)E9vsy<bymx+~CfCbvJ7}yOM?}1r0AZnD0TI;w-0-otEk9ptLV6@h>|PJeOSa
z-f3(8^Pn}kY3`(ew$eoL(<W4Q*N<Wm(qa+yyIum1QZFN`9Ddr@{bJt{IDW}24}VeQ
z<(yPz-<N0_eHtI;XLF&{3;r*$S)u#UZ5@S;s*QxdUoL!{&ZxH%BDLl$z=D$`oe@u4
zC*EFh&Jmiubk0Xb^-f2+sBahicF45oPqP<Pmtc=(T2Np0hzGenU-IP_X|l9G&$jrS
zZ~zDFFwij1s5E9JHKgq9rU)~u3}p3u(TN$svgs1rw7neKvni8VOXxz=sStbhuEffP
z;iSF@^!J<<cpcB1w6ffRHEwuqe|L;rwO$a(nwnguZDE_cQp}o*&M?QacF9P>e{o0k
zzfRuCs~=0NHjR6dGjE&J-%VdVqt4h!ZA|#LP<1rU;)w8cuK#Ls4=PdoT#~y`ffR^_
zn?o1L4TeRPe@?g6u9Q?I$UrHd9aTShz?F^aOZz(FfvbdHA}#U13z51H(cMO`%A`!z
zjWKe<jc%98^VR)RYs-qBOM9ss{3KgITof#yOM$hU39e^a{QI!4G`O`aBur-}Sq^nq
zH>Eaj9-Je6cY@2TKRBoW3uBEpE4{+K2HO}($L?uoO8WcyM7Vt>^PM&~SEmgwzKXW}
zse9_^A!p;FE6jnCWbbc8W97^4<*dmq&PSbp#6RT|xDrfS#a?GRN9G#f&%u$%hDZli
zka$Uv;9kp@YGB_dvLP4|zCrdETqyN2PzXUx@ylo159v6gnqC4Yxn#ac?{@ig&lVP=
z_tC_!@IacF`I61b-#|1?3@ABfOsNSAfG;z`i~S9BMSfaZ>Bj{wE?6$VsTfT`jVr9?
zrCn(xriuI#wVW`S7sfpHK34N@x#H#id58%LtCU{kSlN3G{!J!NIeL=ZbS@@L?MnIr
zxb;PHRK?&VQNn?hTu4+CZ>$J~eikwx{nV+c1)Z(m2Xug3yq*F;&)rh~2D7}YUaXXz
z0$x+ygW^g~(T;T7Bew!27G35MG{El+9c09z>WvU5y3_&A2k2Ne)y$su3{~-B^;?UG
zU^qxDv{E|mZcH8B90dS3Ut0Vg+7MfaL0>6|@IuP*Ulj&>mD+-AM%+1s6Z#;C5U=62
zfXqx47$xlSE@7LjNiu70ds1V$%JUVeN1+2*ms>}xQ#i=M$ZwW*Dm4vkwykCdPtF<J
zW~V0aOktTAF4Yf=Ft2wVkM>;QQmQk5_jo^J5FA-U-Ta@Og(b~&YJQ7meHa+rl?Zy-
z6m;~Q`b|d5gLbYei&$Vc5n#625+84+hWlFkgHyR+-LC~5*z=6)NK$f-w3)`_+voJu
zHhKE=V;`=DXlug0?6MOC11zm~56zbjyE?aDHtaE{D-QJs*mRBv+WyoM-^-e`*=7F4
z#Lng%YK&=u5D~*ahy{ML%ZTB(;X-6C$2o${o-s2HwI2@ruiZ)D&E%!?=Id=A5JXeB
zX$KW76cps>b@kb!Gx~=NsOo>dmxs8lSIT2ltSc!4Cwnn$f1FNh2aX?qo#WRZ_YDg+
z=2vXfi)A0IdbM7<$!*dp#O7zz@d)|AgSqRrhT-qkel338&eAK}wS;HX!X$GZps(~g
z`1l4%+RvcvZ6?>x4)Y)TGTrgV)1}i;_0|sfTXId_CFoKncwu#Z7E2F-Co21s8x4<I
zcxzkk+6WL)<ga`3J&7g--#wA8U;XtXD=`8<k7B2j-yk<kIA}4K@xu4?t?5gA^f2Lm
zQj&nOQdb{FkA<F432Mq+zX(+6Sd9U64jWYBMhuU<30?|Y0rLae-G#kmWbp<8>b_#*
z^zCVWag%=eGxF<xv3*+ujGOCX1$JRmT02+!AAW`ZXz5G`wBi@TKT0o*E2TsmDj08O
zqrO#$2)$Hw0Y4P|d~!IK7=AKD98#g3&rd0dOiMfbn(==eo%bUZ{{O|zq>K=fxH2oD
z$dx@Z%1l<`a;=1maM9)3Br>w!w#bNZuW@m45!qbZ<yvK2>sr^I-~0Lg1NVn}U-$KT
zj&mNzDwS3(S-9JfCLJlF!Xlfv_V&=*dE|7<D1Teo;Z*tRg!^J6=wxax(y%&rS%2r^
zq8av~a!iC}{~Qo_&ZbN$f&Y`pw?j5<sb@bZ6s1g@54`LU9exnuH{FotsPeuL!?0Jo
z89=9+x_OOeI!-0K_Jz~5+x8tN!=n>(|BfPJCD;O0th6Rw2FlIKvML4T5^7rm6p57y
z8(Qlv639Zr0m=Yb2>nnwEsp&hW$7{xJvAoWY=CVpu?}Cuh?8|W3+-0lHnfhPCzX}+
zexk&4S+lsjd_<7iB$gDyQwE!7tcPXoMt%PYS?|VVk(uA{tdo$+<gz0}SSazKh*c{S
znf6pB$VfiQdXP1Nz=fZK*>QAahsDZrh9msPF!K+x#w=irY!#GN>fL2gD!n+01O(-`
z%xpDP?dIF@IbEW6+Z_%IXLZ@WSQ&*s29%z6zn9$?g!Motcf$DB8=m+`ElnrTIuL)-
zS%yFMr1uX|su9VI_;d2-VR%qkN2U!YWY0MaV(WtKvBJ>Df!Jd(j27iOWX-gRmM~a{
z4Z?E9C!^eY<Vg$cj;gjEVUa(8oT_f!eJ(T}6=62if&wgQLz7(s@=3V5_M9AW9~-1L
zhP!<~fG*y%yw;8|@1HHwqb~o4<K)isHgEKYa<3jI?P6RE8zp!7Qjr`t<YBiWnRyg9
zFl`hRa)4S|)~@OFS+GNp!yjG9(eVo|<@yHSX72eHfeD6g-hb^r{O$@SHURig(t|)n
z-1-djuTA*6^@f?PQ8qV<{;+LA7^Ut_ERb{j;%d92DhklJ4Ih)uW#k?RNS>NzkoQ*p
zi1505rcY@B7Z(axbyg2kpP4lcRJ44Os%5P0*lU>@I?_z%P?|2-RPQiZ{H}J^(d{cp
zs98xrQ8Hqz;V0UW_wCECLt$$;m;N)9&xL(LHt%s+uNTerCHaf)wR{0o_+ukW9W3zz
zyFE}K7T%ioQTzmR&~hi<<7FP&e-tCi@BCu^zJMuzl>ll?L?#ZmbaHJrVf3rEp=+XM
zHf_TRITq{c^b_VrexEeBoxSv*;N7!pz!07@rN06i*_7PofEVuc%(lw~p7{(%!<C@L
z0}uE1JLtGc5qD8u|78<;0f5NSXMcC|eJ8P_(o1$Z119bYt&sTsA-O}wCr!4$Pq#3?
z$?cR^Aov4w)_*<a0Rk>yD%7;%iz0E(-_05jTVB9I2N_Ew@fjm<xJq66O7A2~X}!R2
zK5X#k*&WNEb-E@ar&lzE+X>;OOs9Y)H7%u|iGN3(Tj!A8LFQriq^Ot>i|ZY7-Fn_u
zA>|~x#l7`y!Ev{~D5kC_EYMG%bf*g_I?H%4vX)1g3LUH|H>##3k4A34;WZMbz6FmC
zc_ioyzE{<-V9%fXUua^JqRMJg{jKw!cLL20{%&b~w**&ca!o@^Z;P4Lr(dZw+T6qm
zpnNP%aW(hecPN#MF>g+dx6d8f93X5a=kuGMH2C8=JhOWSf(~)I6>JbLTtoOgu*+14
z`i_H!%Lm7Xl$@6ld%C<9WOBH5jt7<Zt{E<mG}2c$5oIaHVsg?Qh}~#97DVt((gM#f
zJB3bHaHV@JxN8j?ExswDg}j;n?Hvf<^q*5IRau&$ihKeIiAiZc2OR_RX0OQq9%V2*
z3+xDaL{>5lVPx<7Ez>m(hKVhkxvq6E-vJbeiJi9^yOERr@U2}D@p1>bbEf>(<8fx>
zkbvlI|IZ+7%kROkc)xXJN4PPWlC^rVF*`La3RgHTal{tBsaab3GSH{kSuVKMI$w_k
zaH}jGYt(v_FeN?dPIl)CpQoU#O~V^Jx6okZYxL=PlKN}zO(&!5bi+~fuQ_BhPl;%(
zP*vcIIG^@y4J*4O%);s6#9jq6ji{nwry}*+`e?@5-@|co1X<b5!B=s(54io%n(cS;
zD9JWq=I}U0Sx6l}<umJ1zi*j+sh<~BJIQ{7&LxikwrLYLlUJNbBMnsF2foHRe?6!F
zebW89cbx;S@9<37qCTE-bUuCP*{<|z)vYmKApltug*}wo$$C)ASxHi|lifpt7FQ62
zR;@SLJP6rME5bK_Ph7KQ8+|*+64_C#%_9$awUI~FxSHknelxh7iTpgabpgYXCd`!h
zfj;TukVX>qXT6iuR!5wgwvkeXzKx4hM<;LZ)H|lE=j7MR^<TkOAvSMu?!z)&=uE$s
zhVreG^>Y>TRRulB&x3%QxD};nVfe4G@^rxSHsGpdWo|!n|6x=KIp@6F#QWMjz|~=&
zTEF5ZKtl)My=VD`Od#4yBD~r7S-HAulkvYL#^tqmhA)TPKdAX#A4($J-?>Zw#78F_
z9pUZ5jT(f#<%`Fi-9+H0@V`i{GVWQW7Lff&Rc)PmcwN_tLdnwfQAh1}ohk2+ISpIT
zvf5^^i%*H<&F_)F6EThGQ7%6@<96!CHCWYedL)N_S?)e3#pgow|MQ#p3P}tVdy10B
zr-PF+a75mB7oR#&F4-h4{{YLhjYFd@pGmnhMvF2YtoNyx=yvfr{M_j%MdBSfu`W<2
zs|UX{vYCT7T5+jUqT!|oCcax}$hWHN28D7H9So=Oij;VZ>OXH7EXw+@{!}Uznc@bW
zf!E%NHZ_-6%KU7cKXtPrFVZwB+>1!^XZzxl@^tqr-|1u_mjrRnlP?<UOs|@=bGh)H
zM{odQR*yi8NJQ=i(p51>Z<>!ItQolb80A`KW8;6w5&WC4H>X#I4f0r*?Xk$YV}Bm`
zcbOKt$xedZrKh(;%V*2RXWcy^s1fp9@^wYb^1DB&Rnv)Ni*q8_#TgEOyxJ-cz#bLh
zGMXy4gy2SyaRkd`1tDXD5ihNCacl~>1T9S?O_D?*KkXW;E02HR-d2=)@q>eEg7!RJ
zrKcU%qmd*fmdwrC*4pjy2?l)U@zzXW9V@g-5OnP4?dcj&JqT-n6a8~)4+BE<PR#WP
zCP;_B>MRz{bd$60Iv3mJrp@5UcxTBcN~pA+vP~={<jotyV~8Bqsa1b22;+?bGB9$F
zZxtv#1t2S<HbdGjQ!Z3eeQJdUI~@VW9fXp>z5=rDd9G`T36i-E=Twpd{E>s>jVs7W
zYxGKw=m8ert}Z0<NBc52b$nV{s+D1lnBALRXEUKdcjiV8%-pe%rIHN3VK<QS*WyKX
zuJZqjagHuJm5zuu-J1oxllg}Yv_9|7nr+xIy*v3&u5ph(wf>5V-F9;w=fme$Sa!U9
z-arv%(4<X|)jK^{pr&Nv**N&6rWQQp=(8tpnZjTiDB`u(*%<EN%*wdk8;-rsSF{Vt
z=<2w8uQ~61Ew`P;HOTt1gw7h*%!5}U3v38x^P)Q~kr+CNTT9jVX4?o;W~xOi57&Gv
zZJ&7DZFxjWx+Ob)>rB6k0T&QDU@*ksIS%ZMySsU+bPH*nWhnsU#ug~@RJ)VdAWrvv
zOTDl6@+?IM|I;NbgcAz(_-sX`8rEw^=tab>+-@pqVlY3v{%|1+$uO#15h7VN%$%h2
zX`Tl4Ro}KBs&7bOtR!^wGb;?sBFfKO|Cgs~)#~%D%ta>mHiFzXw2`ml`~|xAa$Ozc
z>0&1YlYK+7k3K&=XxyKSKT@xF(5Em?&fsLXZXTR!@#B$zCm#{tsy-pH6?t`ge<ztC
z7(E$r@8u4#Vt`1k9qan$e#uXM_k<}Dg{-=D;p6t#X}a;g-MtQlLJ*8L>Y1^c&a;}#
zCm;F)RGM9Zm#^g4lR5t+&p!A$doJC_)xBwx_;2M+Rd#)3zv(2V;qW$1sN9Ma<P}n+
zeL~7C^6;5$L2zuh!>n9`&*m6UWP4ybn1n-GQ`SXd@EYV5O1OW!d$1mMTUBCQ_P`H6
zZWo3mOKf!-R`R?g8-&a3<{X>uiQMM4rz96+vBq1iD<^*5a$T)`*xu!cK|MEK{{?|*
z#V&rI=Hwp5^(<$e_h&T?c-Cy3cI(O+My_EzINNy3>D$?G>J$1el%cy%apX>dvaw5(
zfAXfRya=;vN9rT!oWt{O>DAlB_7|T%lc}#oaPKM->h^L56<~lY)EQl+V?sUKHDvd+
zI5s%u16!}1FVJz|-gFdAR;pHv_Ym3Vt(;cqgq3<dglPc|L~;z#WaZz6<&!(h83u^V
zJ1#s{3mcQlU#~thsh^i&_HWUVM=!sYbpM&kG_u}*fv?guLEQNe^)X3@xb)TI$+cYb
z7BO5tmfl`!>LlYc_A7Y0_8>?yl(i|!Z^ETLHCmxBLI#)h(7X{OPiaA06F1<1^xHCB
zCzxHlkJCe(F<A13joXSEz7g^tv;n{MzywPp6RhUNI}a1<e|`RP-)Vj;{7_H(b9pLe
z<n#E?#TSEW;u!@4Es;;_TR9MTDOqobNhN^HP8_%EI=E==`7*U;Nj7}JiL*<kBO@*8
zA43Q3n0JGEuN~fbQIuH7EbaG@N7A;vw%bE(eJUyEE9%jOd;=>qF*p|B*U8z<j-q+&
zDN%pqChF;pOWXrBNF13q)86V`VZfCrdr^+xvpW0s^pH6D*|O|(FHSGe3Dv>*>laBq
z&;gRx2><@ZTaHuel>#z?lLOdSO8=bL^h+uDl>Bne8+Ug4n#lunD+K+Pt|p%0G}G5D
zPb<lmB(4C8q^NS}R1}ZNm!Y|q(@TN4GCjxWfjJpxB0PNNk?hr)_uTT0)S@lhx7G*^
z3*wNH!@9&k^uW33lJ4o7U-0qFrvQ_KIYhpCs<f$>Z%q0Ac)&&QALlE-P)nz!mnIh;
zjh-q^&v^xA>5N6XqLHq|GUXfB^lj|NMabZzj*IH~mj3{WR8^%)HoBo3SAI3^rOd`v
zg!GiRdKqv3x%?7%t!5v>F&61~w1x+u0y8)1`4*oKkNW=tRbFzo1RVKO-8u-*5me1O
z`Z7Qppa9&%?VqQPD}u`uuNzETS)RSt<R>G1x0IM`H^M9%czldEhLp-qm^T^mioLbT
z_urFvT_))u#W=wHys)P<8FqKlVptKwbMRLYcw*a8bYZSZT-^4RkZHEMfg7Ogz?jL2
z{9T;2Givb6zfGSz&sn=+246-mE)<}AGfN}+md>;*D7ovxq@rCHM2A%gb!=pl*ir$r
zLQCZIfdu(*%!<fK=o5?}>f`~fOH19)!B^)hH^@V9p}Vpy2-S+p^`=LF-56<$Jx^+2
z%4p-F-IC~e@T}Rlvwp4dJfrvkU%8TJ$dr%eNA;7Tdt!PBlSw9d_o(YVc1K4m8|wz=
ztph#f`PmabaXpsDmp=!itd6Lqu3iPOhIFaaPF{6IzsMqyBQEHIuUpN$?(3d95Wc%Z
z#wn*`uC}U!nQK!b&3j&*L83G_98Idx4#XO-DUP*>>4WlS2lxLLo+il*zAmIk6(7v^
z-6W53uv;I9t({z|VkE4Mi*$knpv@HP5|Z01{g~_Sp=imX)s1gw%m3bQY0p%G$6$+H
z;~QDOH^l>f_*}fYI0}v>>$>;Ka5>$zyUw+fY8I{uqZ#B%p+}5Ix99kQQ~-!T{(yt!
ziyP#S80^NnmOgHzjUHGAa+jWXl_t~to?vit8akL3m>1_S_R)3v-3PC-YlG0sF)g0d
zuQ_KSA#C2J<oMz+z=A`p1ZlTli&j2prQjaG&VQe}+&y9RL0w9GH2fS9FZZ{Dtdvh6
zOQ#kCB>?{7*;Cpb6VH#9eF^|q$BsQ5OO@3Zdi%Q$pMrF>#utRHDeGnY!gjUH%_)rr
zU8t(*X!PlRobAdF!|P^6SosXIZOH2!a{kksnPcsc{U$;*wwJu`(s^8g{hn2ILOYC%
z6M}}PJyrcts|aL7XoFtvgTzYeYs2Rhofafs-Lg7+4{5;1HQkoq<bKt2gHcWsqBajy
zDW?W1t3Zxw<Qs$zX32%23{2$)#Ls=Eu6iTTo!7z?z(zhhQF1`WR!?x~v&Prt=*Jm1
zoSaX4s<B(jwFWBgzCs86c?~zDqSJ&Ao?7F1g3#*<B`pN|ILv?0RkebZCfl}eOoWn7
z|Mu5rR0{t=Th|3UB!rDoTb>Ztk->>HKP&R|k~7%c4i<YgUpsh`@yx|3BG$TOELESJ
zYTC2bWWzSEN7sP52^lnH^6c|-m+us2v*>-pjgeEPz(kitmM1hnzYmVTU?{?kF{==Y
zai*x`kvD`LYJ$=uauw@JtJI4a=OqW8x|gw&1J&2)if|l(D#%*v83AAbH8HUDOpAst
zIi41yJm6aH(*V@J*wqoWP}yfzo?AOop7rJ}c2*<`cQx)-+tfwH$2f-20K}PJI7F4j
z8D6W-mcSl;r7?d^Sli7tnCuXxxU9Uoh`k(`@AG$GjA7#Gu7sx^y<U4~eg9WLbrr3o
z*<L#!&^D`Oi}Itw6WBb>l<E6g<lOwlid5woV!`6!;ww2|wWmWZW-iAbuJ6n|zB^SX
zvJcw0wZC|zI3E~FY$vvAD#DfpaOC8N!}jI?F&~!oyW9zS=NHn5-Lr9tFXT*AL;dr|
z*#%@(0a==NbqBIPGlBVB*>VSfMU3aH?0h|@R3vaBN!E9{FMPjk&;^V|A_F>@hp-C*
z<Y`KfUW2ElLr84byGM3->R_`+C>ovS&v723bdk4`=z|ZfDWgO9vAs?6WIW@cRKU?m
zHD!bvOc!XS!Xq-DD(mk_rT$IV=i7REhcNg0ls-F^2bJ1|Rz(`umfTuU!l*rglWSLG
zosDj03n^sZ(Azw=H2CKrX{1p5@LP-feKdnOnOWT|WIt^B=hdNwNkQ{3<DmI-_o_F1
zsNv}C#$}SwpOu&P#7{QCP+jq!p4nO~nLCpy(9ze_^u;7M#9~+NyDBi=^_zby2UI*)
zyNlcmE*Gq4Ih0pBmZ;*l^<v0)M*yNn5*#A=*Ulu{PoG9>Nvc>&Nmy#<9d+?9#i??I
zxt*x<tyH)fzuDk>vX{s@PKf$fQNzqNB~8fEme~4?P1jOno!9fCcVU2!I5MY-XtMoy
zXE?iMX;IYE4Dzv`4iJ&naToF`pgY+0y^Fq^(?7B}e*DHL*OJ@;bw$8>L6+s;g3?j8
z1|`YR%(d>W?x=#9BsM$c;<J#B+smpAiv>s2v~q#}3i_4(vNN!cjg(dj-F-3EVRypH
zGiGLLMFJNjwzu~qb1(NlUAG3bQNS9~@aHJ&fAR<IG%BQ@@hW{sxj{NtYXEmatp0_Q
z_Njki=yS>S=`Qx=`Ri4qKNL5XwX?wjd-Ojef&UGCSLE_W$1ClNVdA?4F^UKNQNnWV
zsWT_LFAb2svVIT*Qk_SB>!x$?%*GG*q_U(lhO;u<3Q;>!F4Vumi(YX0Yeel4sYRQB
zY>pdx!nA<#c7O!1XD)W!$n-wYZnQo7FfXyD5Ret$d=VbMlN7C?|Ltl4cFdy0d)`Wi
z_~RmRvg$l8V!=3zZ4>!u+j^J};0v{kKf)}PHF6*fmjtd>I2Ssi;-fvScaalZDA+vF
z@SGsQ3cbPx)ekFQj_Tt!uyLUb%`=Rlc}arRJ;WVK)%8*hbLE`f^&5o0tAsk;+{*OJ
z@s@A&6xqeq<L{L6zCj8<Pd=SKs}B~T;FZ{QWnGRHp{QaEIp4;NQ%i<fT9B&&ih3*Y
z!;6~R(K&dg?kB<n9fu}Fzxge;p(j)AR}}$!T`hKkM;5uyyjJA}|G;T1&K!Q36S0II
zoydTQfx533=tC*UeW&*maX%u)o5^*A)r#$BBHxkqTk-|PA*ZD#h)Mb$bgF@<-LS+^
zStKns$Mj_VBe7c$lM>b{Lx|yQos+?gL@A5YFWFr*HOwUGo#FFO86rJ{&uz-i9X&4^
za9P=B7;;wRc5~0JM<FR~NxPE#G{v)R8tK2yU+bWg-5fShSlqzwQX3LPmF}WGZeyXB
zH&E&2HJ>`-l`j*_?pul{?gTHrRqI#{YmdCwa*O+AdtTy9FxjksETme?)JMwT^Ar0h
z<mBDw89nw()7qaW?L(7`*n9ekRsEj99*hg|<IBKF7gfU#k$emmXEL>v8eFOMj5ud+
zozH^QHgEF{1>4_VgG5zoog%1FwrXq;K5q{kUmwV*_7m(2>cy(b?(g8kXuW4k2d0vu
zM;QC-eOgtv)J_7x5g&WEHQ$+v|1X<RWc)>Ik>`ht0(G@UT^$Y@poLrsfg`1v(6JQ*
zmSFO4ozPt2<z8|QFCVWe9vYM@zO*GEYccavT>EE_DDlnD^^+wNTxt!K=OaDis8FSF
z-QKQ$%Quut^;;(!ZIk+5`2eQLa6c5Qyf{yjs+*wd?M~C#MBPdKQqo;=$sH{wR9ADW
zk1u3)m*vc{J1^zb)3Es($$N#)_>G?9AAAF0WARKPA->iJLY_f+dIwUFtz$Y|JON|P
z&z0mXoKeSHi0`uq*@hyrf#c`SxuoQrk%QLHXma<W)Qe|bx&eq-hJ_8b)y<^c^3UeB
zE_;7Zqz*dNlTz~_@`(ChK{q^^ARvJ?YOuMAy~=G4vPl){8tzc}#!Hy{^=m!ju6Lae
z<h{?N>HEYr8Es*yi;3E`tu-x05)4Z(!cMb8$(O~;LU@m|H<f8#Ux~VoPRd=>_(r4Z
z2QJ7r0^^K1^NBK>&+s8nAJc&<8zuhT1+{tA8V=QVlZNGT3-f$}3u5H2Mce%T*WA2q
zJtb5rQ7zbCl&_OE>(txO*2TmW`zUC1<{(Q3&6kVX+_{5|<53Bl0VqdH9h|Pk2DN+?
zge-b4RRF3E4}}f$ITgKZac+a=ik_3(IbG+!Pf!~1%5S&)x;h(LU!3eL3+AG1MR;yA
zLaduVo+eD1b#($a2fQXpCv+K+SD`ZpO;WEB9&S4_J)jm7tb;5fJ}ArgN{*=~vEi|-
za=}B??~@uXe-m_R?D5BTps<AO)nUmtzogu12TmE%pBplcNKm(m`!Z{&?9MjXbZUa!
z-IC9u-x0<MI^^T9<n4>u>w4EV;hP`a&4x$Yi~`d_mM0$CnK2XQO(BaQE9K_6pQ_>j
zju29EwXWrHw$=RkW7?II%c6#j6t@hspwYc-q{$y26SN#^I9KXWua|DyDpY|Z@qD|r
zb1;zot4O4D+#Y8dWj9T(*)7EEhpHD=GB*_FS+UZUN_}>Vjxv7+!?3ZsR<Dq;X9=X-
zT#>&|L)<`KRgP%SEx)KD$IV|lKhR_KvpRVj-=bJQDfNnXpHwQ$=jnu1yf7=RnKe!;
zDN!iZ#Z3V|>m67UTT8l#!K)(`dvef${ib?x(03hbydK6!Nhc(^;x{Q?xKbu(JEX#_
z2ZUX&1I)Q8IHEI}wi3;PR;TR?{xt~gDfG>^X$mPa`vfBo1S{=CzW<<lkA{L<6r~V7
z;o;LI-(3oyqING#u-Cz8qnkiywoDpW^Q!DEZ8M~yYn5TAmm*uM_fK7gG?G>6${$XM
z8(sI{Wa|m7g!ZJN(wxWG{7Dl-LKn+Lr#$GGAvsnF)AU98$sk4j?32Om)y5pkkBz=F
z%05eR<uno|M#WYUU5isXv&VCTNqgMI%pF`5EvMc0P3n9BJ}R3`wX&1$+t0139jSg;
zw$>5&=1tDp4Mhi;KXRV;9RmKbQ|J3+f8<JAewUhg{U^Imwikk4gVlNOc`0lz;ElD%
zIettz<Q|@eIjXX8?T&cr(bk%I!szL=TE_KcPT8xX0@q}h3-1uIRFa^SnCF|M<7JE8
zSM?m7lIL^u<aofhRxj``x<w$Tx*b-MAXS;f{Y*#Pe-$Ba|BXqZC*<rl?kmGv1M~1a
zIcZ<ScF%)d+ejR+3Qs2-|7<UOkXi_BchB2^cY_B#A;0&9AOI>*U<XfLuCM@m_e$Bw
zh{yo_%*K3C2Z*_qk!+vckH+4P9Aw?IONBPnY#S=E>+KvTP6Rf#SF|jO*5AwMO~a`i
zMdWDZ05(<b5VT+li?E48YAh%ES&!XsrJlv8*!5({f3{yq0>h}fx4f&E5upjvgs?nf
zNp`l5I-T%7EKwn}!ZZ#A*g5Bt4@MQl3Un5c-Yl6v4UC?DB1Z8c$R&yI2iWx=N}8wt
zlVgX3QNXgxt$*J*(Z`Q^O{E>Bh0jqiY42W;0eYS4NwWd$sIb|#Quz|IdV#!$v$a}{
ziG8q4Wd`v`@%xI)gV1vekDyUJ^cQc8;=Gwfk7o80D*l)em~pHiqHge(s6(C$CFr4U
z$LAEe5tJSDwU`vBSYi2@mT6c;vp?qdjlcc4*D^Hk*3d$bFS`7NnZvceu&^gNX_BMO
zkN5s#lRdPU>Z1p>k;L{Cz<p3+)K>B|M~<0)<-3ocBe*x|xraN9lzz#L@ZhL?z+t*$
zKU{<>(<`_#Qyn2c_P*@BvU2&Iy6UVDp{ou_a5LsWLzB(4_dd1GIj!pkGZNTq<bmrk
z1Y&~tFu(7`Zzf$}X}{0HSm4NSCK`z1h_s#cP8O?AQdf!2O>{<e4pC${f$%N;gR%`7
zycwiE8K$5quktM0P*phI9y(hJs9+-o@1A!A+SXz+tTrki_kD_By|!n)M;lk)&w%>q
z_xVB_hqX6kUNC3=s^}S(s^fYegqprLTN~k-7!mL{eXIX(!~<Bc%$<b8$qci30aKI7
zvAP9{>%Z^b+f?(mey~(TKy~T&Xt%X#$S&2Abo1v8fab%?*S>QHO@dx%ejfbPoz-E>
zB+do&q<gFL*pH^C=ze2)KeSk>xv!*&Kk>)eU<K<E9?{myKahS|xxN7%XRaCenR{dN
z{+ss{7InkmC{$z8Zt`RHIAwQg+H&jeAH{c{9aozC8RpDt9GPLdDPa8{4d|!*?DO81
z`U+;=USGn^bt%YgI%7G+uegC$1l+9S)*XZU0-j|O54=*7oI=X4NrqKOq1+TiNW0ge
z#JdmQe$A|9UCJz7XB9$6H}wV;mKsjPXgT*$&)V08pHqOOV4L}bgsxtDyYI<qV7dpZ
zg*Zxf{`@>0v~aO1wP(x5!=)ZN6*f?;+n`YewJOy(ks^diy`tEtMMK<3TV~P=T-L^<
za{0yH5oD6d0n>l49J$%ZvsxiKlnti-+Edmm($Ms(w8$2Ib1=rXAdhe=uA0_LVqIO|
zGhXVaPO0OFZOjq+t;e#eZa>P{zyI;GcD&*7?<7s7FR`fE^9+xm@<&$LLs4PO3r_cM
z04sF^1DdplQeIK))bVM6o2JK#S(=sowkwIzHJ=&tqa#Yb-8}cHy#?xJt9bZen17*6
z{M;_|t35BZ{OZG$>X;9C^!D%LVc%<A7w)xe%NEz#inel))Z$;|e-X0*I5eMx49ipT
z4_kErd+o$OD#Y)_xF%Z*EwkH=ZksYemTrnQuDq3aSEu3Zh)$Ipt_^m}6J6!lY{kgw
zs3PO%kN#`4LQ={bV9Gs1BoIiRR`q$V!+z53dyWc~Z};^YHbV5eWFjpWRIQ5X&6@Dk
z5YW6B>72o$GcGWuOXfs3Sn(d1_me&)w>^Ka%aUw-nj|V%as5rq2RChz?nUji=v3bn
z`bF8{1hR-fhYsXrb@3qH+{!Qx6*BN;dUKO`=m4E3x=Dd>NT)!dib>M>ye=^LYQtWy
zUi9trE|<ZwT-V#7OafR=;0@^4Wik9@%0)l=$8t6YP#Zb+pfZmeVvM-heH;Oyo7TqK
z6qxRnzU4>7Gz-E8d=|iGs*`j+;Bg5JMNa1KfUY^mmPN1g$RsI>AM{I50H3vW<$h+R
z^4#TxwpC5Jr>H;EfurYSyaBgdDTwFbo4@Qzz}yR_{w9Z)Iqo?}4V8Op@+kJhFT}s;
z6lYHfL53pn5i7yXJf3d~&bc6T=#jHQ(OV&7t}<=^g;ms|rIPBHlm<b$2<2AI@8_)~
zpgYgK<yO>mYW43GSa0Oxx?-<U<#sQtDT`!Bh^8-iqpbS&OHzAKj)ErIF{g4>X>=UP
zv)b#_LS=B)<h_$ll9B}GA9a`M_NNr`3^g@t_;5PNBl@p$kO?E%bM6IO(;?!+drgIn
z;;YlI)}G@-a{B_6><VHC>R+WyLV2FAj_B5D;gll@@99q0A4hcgfZKyH7d0d+PZ-Kj
zK-+UaBIt69?(`E3N&mun>7<Ho4<ur2Kj^smnzgu`!Qy-`;qm|r%5uyu;4)llUwNMG
z9TFvAP-w6WpKcTv9CKFq?K>y*M7Tnt!Xoh|eCEkLubl6Rw6DbgoLX%@e?25H6w_mq
z&$}jM^L@vZp@B=q1QnXt)mYqgt%vn(WP<G?#%2-((t&8y$+*BcPwZx=?5DleB@J-K
zW}O#JPuk=KOBq9Db!LQ@FQ)BfEO#k`s8Q2Pzi2Vm*I50>Hu6~r^zw*UZt}&h|ID2;
zT?GJLoOS89FHEwvLqAJl*=ce)slT|Lc`Mh!Hi8jX*~BjhME2>wZUd5L_O?W^0K3sW
z5F%lEl<Ms5SG${RmW%Sa4R5}{ocHcHP~pbjyBhL}o}^P~Pl~PIh+?4PUUif77#@>0
zOVJ8AQY6ce?@2y=W3c7_d*X+3niOScqqm~Oi@C-Zmz|Bo#BHAC&960Jx=z_!H*-jh
zoQleJQH<2^?;EMh9-}=Gy9)OCKix{ic{YPrsyNf1_by8Lv_fvLYKzC;fqKdwMa}l!
zkJoS=Dj^5B9u@N7?zhCna(a+?;NP@xjw`a8tvqKi*O0B@KsDa#i+dNlh+A;Yh*U?|
z%#REApbwCitCP&^%VXk>U02>6Li4zaBeHlBbZtkVMM=W=L&M`sm%*UKtScTkxHh?9
z4wjJ7rNeo;UN|%fxOowDbt!Oxy;>G%A*IyKTh~+?p~s#Co6U#yy&B<s*yoD;XD}a#
zt!h=JML&7$^*YidRAN2ai&@QLit!9@9q@x0U<D6x8!Gp;SgM(if{ciw!A7zTAdO6r
z5{|SZ`q$m3#e8~#@QWyqm4V)Vr$o!hs>i1Ax!gB5W&_je9Zl@<)O{_16dmYQ+-xm!
zEk`Kki%wTX)N4U+9vAJM!xN(#akuBIq5copu;2ngshcqMOb@l);=S`=v5E2)o=?2u
zJMfX({kdbfrkVSeNUz=Rz)7ZC<|@n|{5iQ5AF{2@8o&ZIk4khLT}L5wfmI4cC}yYu
zt{e`ZxXhr+70KC<+O9QxPseMc<I@Uta41m24+koV#`~@nVHG#I^A&{AN-lI;HfN*O
zm;wVCz|t~*BOE63eNeGq^*R<5NlW2!@9Je17HI-q`gi7+MHw9F9a=7GBMA9&{X5%Z
zg?dif+CCZY{^!9l9h8d`$>|y%dGMx31eC-G*pN!vwedp-L%7W&ExdzxU0&)_Ctp$L
z)}rmW>p7vZtSR@nqwLyn-$=@+a)y=mU)sAR$>(m=XJ2aM+e~9B-p#>lb8B3=|HkUD
z+y0(NaZ6qW4%h0^In5NfEH!{dDy<ztW86TOYptO*uDmWE-<nSb_oi>P3NMR5r6ADc
zpD{#TUh3J0yIC%kHOWzTSA76@HC{6XGZ?=oXr10dxjP)Amb7Yi=Pxy?!;8TuC!woQ
zHw&D(NwM_Q`&O!13k|3scbG{Xk_<`aDi+@RZ>`jKKO$B#hfNVhU9#<1W7xFn;a}$y
zI^b%YzoE#j;Ud2y3v?c-g%p74p1jH-QVfdLj~;sYEYNe;E}W#t%5@i99<Ck4a#D0s
zb>s9xueV49P$*Zd-m;}+ilhiSKbF2&+_skXG_LL9VhP|O{QOdFT47DyxAV9+ZJy*1
z@I6}n1D+CkBRirFBzdRFw*;Mh61ny9U!E|Bg-Mxj53X~}R0N{_U(ct=ip6MopD*t%
zp`ig0jL=NvT5h=OBZK)c7yiTVM{7Azg+kQ%XObU3$F7_*E8N8GlrVfb{jS&^#B5Qa
zT>W4+_d8(esjb9ic(VnJFFqOLJa?>xn^3TB@l8!<2f}88?l{kq%W(?-NH<3XnJ3ja
zyt`@gvd4Fw_|4Y8v$<^?6-MY`9?)}epYkf{$ew@Z5&U^703mX&X!BJ;8CN2Yz6Sdx
zV@-~eF@Jnstc)4nZfVfIQC%U%UZ0Lh>Jerw(RC~N8FzSPTsBJ=l)oqzO_Kz_uql{_
zgVtIuiFBvdmwjf>418`wjn}JehVfj#fdwTO6mj^z^WDtt51Vi<>LZ<l?9Z^S#k5Z+
zGt@zgDyc2QQWTyl%v-g5X@`7up7JZdI>Xu0w!7eX4@ro+SMP5&GbQ31T9lZs9RKqk
z#DT2DK4?>}s0?e1pHFDSoH2n$UOi*_uO_1W43}|=;|OR{9%Qy|Z&ZiK<~c@X8wpui
z8US__$W{5<{Qynj7=pmUQ(NlUQ#tMzsZmCdr+HM+uTZ@Ze>xaBgb&Jy8?^uD1hWJO
zRf<m$cDLgcUhrZ+U7ADn6tK`()Df5b&UNn1*7_Dl`5g+2j!SXw@kYXUi$MHm*FPj*
zT*(ob+cO~G2SJoOWwW&!xUMpJ(FT+7g$_W5u0K*}pI9MD&*3G=_s1#A>huF1M`nyw
z1k(_a^|JX$?$f=1y#lnnx7;Q8el(sh8Cl?(qr5f{BdB$YYf;+StiTU(Knv^tllusB
zpds2+I^=2m`eBw`Vhz!)V`JUx&<Q{I;IHNUG_Y3+_&Tk?Z_lS>;#qX$dr0AP6hC?N
z>dV>;KKUEMxczGIlRATe#f*yCZ_DMTau(SM7Z1qOyLVx15ix)AjS$W1h=k(TU$!*^
z5jX6e4J_y)+|bgEXTYa;j3ZRutq(b4%C6w9uzM}1h0?!OQ`7fG!*uWf3<Fq|bLUwq
zN#tWIudG|%3AYlvOPqY4{u;8-(49LfX4{7+&22WOy@<MBIlG#HIQZ75wEE64$C?w@
zO1cYu)um4|od|_jOU*vTMUdaK3Pi2jNv}F~mPv)zx0;Q&Jih$xFw^UYIyt^WdPE9N
z4VbztV%U<2d#s12A*#Y8#}U$_DV<`rdRGWEHO>?>@3RW)m`IA1TYWP^Vns3iUJH-C
zf&0ce>}p&s)?v=u)k3a+#BgRiO*F86=&S%xOk#@ZF_Nc_i9g7S9yP!E?t<ZK3eW0I
zZuUBv?FosL9wzl10~`l%eMlmNqfj@Aq7ZBwj5+QT&Z8%(*h=Mj-E-9jdA{T9VHbye
z7Yb#=L#&mw-TVfbvHCv`kIZ`hUj21ggaQiSU+6qTtfeEb`pUCN+g6pSjl2OXUw-hy
z3bjC4kuAoeX-%h9dF}Z3nJc3en1RD~E!oQ8mO3{_s*lP)aGla~uD`nO=c1ky1aeU;
zRF1Imms7%yR1_AY=i7<sUXp9eOs^)7yPb>kb2gO`h8aZj2kRZ-`#lnr7KUikKPynz
zL~?A4MZB-TpHAqkV00?dHM+b9WzhrLzBp+GVo0bd#VoTt1;<TJNyx$pJ9ISbYSN5w
z(t7Tba_<tLRIi&X4(&3(A#nO>=N>fW-iDj9>ZEF95v=#?N+c(mBge9)=`^DlK1m9D
z%X@Pwor2>6-hB7)L1oyMXX<Y^$A=$(0Qc5K53}hwG?vVfNWE!(tOHg1+B;hL!4fd+
zm##>W=(hMUaZh6zDTlR2^y%VlAwO_vQr0pvuGK38OH<DP$y_pacb9=^khZL)eHHu4
zz|^zqyh6SgbORu)<Fyi92DKYLFqw%$Fx~NETBXY1ECPbs!W%MFI2=FIE5u%yQ#kZ5
zog#7mBL9+d@C_IODF|&UWu!t4vuWgbwT_vb@2kqp(WW4G-IjklD%RK+=vq+&cd`z$
z9QeVDVw?FcG?`;51cy|u?`7-LT6Km((;>rMR;Ae&EX3e_LSwdBE7}&=-F0uF0grVC
zI_E9yy<^8i3i_ECny&<p+$BO?vnW6QB}klSfkhQ;C@qwgT6T^=gV#&Op^gv<F4@bj
z1@l3QZ`=6<>OSI`!y@VCVcC&R_l9z8e2rz~KKkZ8C;D%ms=fZC+c&D(Ux=L7iXSUq
zaMFb$KK>>>{t;sMJfJ~4qqFQ#Yq2WZMNc^XZH1;>>}nSZ7#r&`$7V2;4C@kgk`*qD
zf;-X~C^_N(qxg+OJpk@6{zu_F(DmU3&{xdY+-a2L!(sBLV&#334j1=aIkkTpEnAZ)
zeA)vU2Q|<$^4@G)rp7-Pp@s$oGhPODn39v9g^#~!`dYGZuL2QweDvx(T6vK|IR=Y-
z2Ujk?uWbV3q7}^KtfUqD6A9@RdE60ReEOf_K%Yc&Ci}gzufFWTh2x1d+^gD!Gk-e2
z@~iTiL7N33=99fq3hzO3;0=t<qrD~(*fWqe?!kzw>ZFzrIHFk#M(d-;EM;SaR{s6j
z^W9X4Aeqb_yO;3^lP{_PV~`w95?AF-P%8WNDX>d({N-c}u|v}wHbyGZ$+M_26h$+^
zn(gS;6>~&qdwD>TAd6i~*IS5Mb`%|Yzr=caaJ3Zow&gb4O!&K%K$2HQ->IXox**fL
zMUfpz_0+y3x{|^VbDj0mW3s4!tPJAU+mpam%Aw4V-+i84)jcYueUmR_X)G}uVri5&
z<thvZ@h{!6LB=7RcUAKoAvob^le8k3mbEQ@v6-FQ%<Nuc`9xW;42b>sOG*t`#X%=_
z=ztngY8MrC#R5z;OX10E>eYDzcguvI5&IM&b!Ys*8_V6X-1Cf3I^fc25%nw$KJ}9o
zkc%8=;*vuL5m^Q~K2lx{=Ua7_WI+m{?{il5mAUg2N#zu{Hd%c4hAqH~@Na}~bN4dh
zAA$<u-7aQmj!~hsE`OYM;-uwZWZ7&&)cvmj98xrg@YJ@<N;9e=Oe>8}p~aET6zUB#
zhMdeAV+BBZyqr+Q=@QMC%w7O)a?8<YH$)28^GSYrF1x9cxo_!eJVGko4DMAo2WL9u
z|5w5DX|AtL6Y2HhhsC5D?pjM&KsNF~8tWt$uXXn7eSxV@o}hf|A*?(6Q0G0qQENPF
z5AJ-H6U*=VE%N7*?9yV#5y877$Tcl7yZaybnWhn})5-Uxi29f7cJMx0Op<tX6bLB}
zfBZlu>e!xl%oghzWPXhqru<d!*R$BY8pa3T%Wb>S%Wr3V>qJA#u>pT-r?!%8e8oOZ
zd%kPr`D>uZ`P<=~Z!I?ZF}f;tHBs21DFHr-UNYR0FH5YtKl^!D&*?kPhtzKW7uqGq
zJ~9Amv=OMm`su1oK7DH8Fd0*V6wd&jSj8}_iETb%g_QD#6l3a3{N~|(>*{sFP#dND
z-ujcim6FKm$9mdN-}O*s-MZmOvAUU%CG*<&v?jjV_{*bownK4mvqDir%kJ$76vIfw
z5%(uv1d<`7LgSP^^*=*jqmzlKis3^<Eo561HO!f$)g`>V7$oV<1nHGZ)xtflHCO@A
z1lfRHs#>lQrP*1hxE?5Uop23F7rkO^STo737c*pXa}lY`T(0an%WQfy`{`-6b{_t5
zJR|yAdN9vx3wfq@?*sT1zp!kNMEraasf+z9^OJJ2R2MM7q=Gf!^aXRXorM8G_C>l1
z5}#dVW^Y-p+HHipZq9A!nyq>-25LXi^Ba_Wvn>A*crCm~Dy#e%!b7jZVqiHTQ~?NX
zLF@iE`xNGy*q*DN<~QVZ$<R{zkD=s2Wk&uZGW>0=A1yQWAVDj%ADW<rq&8vb*4Mnb
z0uGxKHE4|A{?>P0{?LcmB1UNFrFod@;=YdW_SbGP>HiG!J(e=z_IWG>J<x!?y+I|b
zcE3$|s4O}$)$V*&!t8$R6ElEX(42J2ol!%PWaz-xn8MTT8wBdhf{C^yo;%9ygxy<}
z(~9NP61@}7k|Q;i&=A2}8opF-8!o?w__1&^b^hs)jCf|44d=ghDcmMAG4JxA^7}oO
z)fI<Wg0zMNEu`con=bGb0Kdh0Y|PS=fefkmklDnn(HX`nJT6Ps?B5zUP#}nQI&w{N
zxQ$5vyn5XIsiKJrRX4%l{t6d7ixA35vYox1>);-&CW`&433&1O<G0m{<%55tPO;~~
zW-BMhW&|ldGpID=bhG|StlREKnN1&b+>@z^8udmvCsQG}dxHyWCu>k*%Ou<zj=K0l
z_}0Z7MZi<xqbqQ=<55hwDW4<#UAb<TvBEiWW&G>)W-`JkPt@k|R3ixvrk?*$PGFfO
z7k8+!LYpvS>|&#_C+xAvUVTBpxL5MkZHT5>Az3jzKcLA7alTTiD=GF*HWO<p(WSuq
z{I3$8D+bB4@7=>>5|#hTPEVUDM2ZV@r>voml!m<>=(JJP%?6mTWBbx1WBRYln;wUf
zCxTeZVn+(_zjP8m&^(*Rks{`{3d7-(zb(CWJf=b8_p?Q6Zp>mql_xb$gCGguTD=A}
zp5&*+)c*~T1K-f;ywtS{sA=xNC?my0Y`N8_yD&U;%OCYO8XGp|Ljpn=ac1}q%^Kdl
z<`q|25KOK-A21ylPMiZ)(auT%^-9u_0K@^zV$iFh6<e3k<21Kiq1(~D#!*Lz4e@a2
zU7IJAhnbsAK)unwP`0z9g)d;O69XTjDtPLowf)oJn9jzf-OCA8^oz+huf8<BEedLj
zuh4)zLj2M}`pf|fUXV@ZiJA1JD7ORkSA_S@x5gZ$c}>OSsFYa#s8Eor0}tB!74+-`
z!L#Nk%vKCsm+Z4su(tbm;@Gnxi+Vb_<468R;06--2oZ{5`m02$m*P|OYPyd%E4YSJ
ztOL$7E|(2h8Rw+uQR*+-e3Haw?mJ2|)6_HH&UID4*fP73WHT;I1Nk`l<o^1_Sp6*!
zyt}xZY4dZB&44)%(&I#f<g{^-+KAcc*qsn6_7<t8&H-34*SmS_^4SVp2F}Lg`is61
zf*j|Iq%*r$R{yDPYsQt!^DtTn)KUv&7v@37ebbTb6=R4LR^f-)6>4R)APEhxNfAi5
zQN`EiiK3Q13KZO5DfYH}gRJtA_MWLC`A30jlT#=F%xa(|3lXw)-?zEOB&#^(TsN4^
zu{GHy>`CPq1>Chz_>t8j(B)^*Q?Pnt$-{iGu?pQ&xpucsh;52ITEamegAWly$&HxO
za^XM1)TIL06L@Gi<IR0Fkv|is&{Q><oSP`}4A(a1FRrH#yYv)Cc_=L`{|)<Q2b@Wb
z?V`DmX5cOML{eAy)8p&w_*|!{xR*Ra7=g}BIPZTAy;9IZ?`p%(t`2k@1chJ%7k3)9
z1<FuP$!eMsToyvmvj;cf>vHe5Y$#tjWKlkW|0n)c&UvF!&xd794@>jS<U4}T&!M4t
zj1!d$qGkGd;WKd3GMnT6?={uEfP3=3ZdaE<S8LQ4l~)I%<pxkYOO7muK*cC{k>}1^
zxLUq)z?s<Se*1ES{nPv6x4P$#n3k^IiKhpxt^k<LxgQ31R>ar8$nP8AKYDaCyy0eL
z%+=dlZ{fVyN87e1#=g6^IV?HXItE_B47T^KXX?cXLq^`d-1ta$R=Q;ZYZB=#SB%F}
zTA0_wmeuDe|G-n?dC&@eff2F317(<OTY1>F)aJLSBd`U=BHyL+v)mnSp5@vue@@BW
z+p}xxyqpTkDP2;VxewV`=HKu(hX{e}E{a_j&*aw*c_AamNQJ!}E=W9Nh};B=Y>ebL
zjRe4!d;;|$AMC~tc{Y)5pO0ksj??`DKV4=6qrd38%CETxo%i`R@jdVKZ;zbPt_33>
zb}#g7{H3B0zOLL%2KNV&L{E=*1u9Wi+9r-wQ+;1va9oQuF52@T-W17x!ZJO&5J?=d
z92BknD}Vbsez`OF)6IFZwBMLN@exzgDkLHFvE=+c5YK-HJ{_h#bk4p=rxQwx-5y<9
z5kp2_1f_ouZhux1MGZ1Q{Mq}f*%IvbASk%}Gv%f^jJ*Bh<*|ki$&ixgx4!GDgaopJ
z8ks*xM7aTfo-ttC8#QzA9nQaf#tON(Y13u9?Gnu<3(1I<5k~krtT+nXqL7E@*b4ew
zA(~@xLO;ud!!FehhHaD|Q!PkALAwfRM`7aGLkDr<Hj*XctLwn^my`V@YT#Z^{;RYP
zu5`Tk2LN3y?%KpIN61)ulV<w!l>aRtn9;`DJuZok>P~gO`#OsZ!Q}J86L9di;Q8jC
z>^|&T_|>#H!(7+vbS%L&(RpdHuW}U-colVa>y@0^bzCwG{{CnEAp7zUHY35LNp;o}
ztluwUPt$Fm`-vKmycuB#AM5v~Tc<xev7D}%-aWn2SN;}Y(LLtj?pBm2&+&rZjhkci
zjgKEo2jo2V6SU<7c|aym82J{{R$*6pkPwxk;=G~?74G@Fh7A%O`o<wU2x&o|$c(-p
zd=#v>Yk3XxvuUITq1=pD6Ml&#Z!8{40PjDyNh^&Z=%7Wh)lGM2Ma`k-s#cA(L61=E
zph9V&syZE7Ng!Saw9e`syGK1+>sE1boBQYXCi)u4W~w=Cz}~jUE1|1Y-gyG|9!A!s
z@Vn9aP}ImTHrSZu%%@DsZJY>jYZ#J^=buc|Zk#aX`0rguAI9zC-%Wz)*6j<RszSJu
zs<A?8&{xda&)CoaOWV<i3%2w-lko~I)~kTa<EYD>fdimZMba9guC^ri$DXr1AI;1{
z*|9k8=?YZ%!VRa51lhXRMG-2M-S#&s#rLhRwjwwwZn3Ou-ERmI3jaB>V%`9}ELIK@
z4H1?3P5#mDJlGRDyES^=9y=Gt97M{*Qw47w$KHIjsdFUjcu=p>;<%^QmG_?m3`F>)
zS@WUae73#%e~UW1%_Acua-f$|aXt4P#k-EV_J5x`ig0Pr=E(Aakk`sl70sE%F8_|;
z9NnWUi%(W7Di6<oL6@I)L~k)86n|_e5grCH1H0`~>7UMa1$Xz86t)zGyni@6Ty{ch
zqW^2U28zZ~bN6ER;Uk6pBsxh-<*VCg^uPj_0CC@oL;^E{Ww`N^+fDWTRwjigV)0T%
zybs^CHjJ6DJ}l6dF6ZwF_Pup=>}k+-{7{SXJUkLfvEvCtf@;)AFs*;pW{Q_I!@nIz
zqWJljw$q}xX*CAlYLrR5ZOWQ)qS^g8C3w4m<zV6rx?Qg_a}1AqdkvUe#@azSMwU`c
zIIwB`VB?DBPSWmttiX-fbe)r9LmpN8GUrzQg@MZ``*@LtuOB4#Jj?tz>R5jGMi^2!
z6jDL%6=P-t*Lm;LLFhIU^rI?RECv)LY*?+^^r50!Xg$gAxYm6sh_oUAncnodM>(RZ
zgJbR9GRzX`)-_iy*2(*f({(h|%}`j9-0Ji!OOF)ZLwILCi-opbd?x0(*h8&)>;i(b
zsZhWCljg{Ycye2=i97TbbcddA=FU3mdNdti)Sw4bl<jX)f$PTDS_OQG6s)PsYsMWI
z{hm9lO{LRks5aQOD)-_8UBy)AFr<LVj~9}B#8cfA%5<iPel(lyb`k6<#Ks=*;%Mf-
z`uQb8WI4j9gLhS~=;0yCWtK@Q>Nlrv4^8L(&8M^`75I%o3p=gb#QJTtj{bBXo$S~b
zQnJka-;kzZ34ndUQg_$DPpM~|&j}A(WVIzS>;jgkMB+Ln&a=IY<1H6Bdyq=Ku#pdC
zJ{9eKh0eSr5QnI^hCqyOj{RL&XI-$XdKDF(;^^<^*!g9Xy`6Yp?jQ%SY7Xg2Z*Rvv
zQ9T>at@N)I<ud4;^K!{-O4bwJ_)>f)@W3;!e@>|DG>@AgJz0HQ6Q4SoL1R%_hmwvz
z@fjZDY|Q#DiSQ8IEQjl!dce#e+Gc}Xa;t8*4BmdTlaHNl4IAE^>FW(((#(NEgF^n9
zNX~q(wQqZ8!-ntojpeYFrvO;5yTM1Ar``j**6P9;D{r?$V=wrWe&``$v5#Mvh}<>7
zrW3}oG`QQ1V3*&dkOMvYj%C9=v{ekjUBUk$?yj=6iSSEO3)`!GslJVJ_)P-4<@{39
ze`wg?5X*PWtbIO7mf0+oB`yx5X65kjqk`yO>CM>~Jt!@~g#luzw0r*h2&wy;^JHCn
z@*NdWcD@z*s;(weTmuGa9I1T(Ts{##ndc@?xgZ^W*EjnYL8(6CzX-DkWW~2tm{5XQ
zkqd%aywVTT8QVGJl{AUEiItGfs(r1Oc5VADuZb`ddQ8LWq$yw3%sEMcV_dr0FuR}W
zrFMek6y@KBQSXJj+i21MX<uex7*#8iqgF3)qym-vs0X-m06}yv==dy+YWbz}Txyxo
z2fT9fyd?}P0)|xG{kQiBN(&@3ENMHU-N?f{vmTiWsHi>g2HI!#Am;yAIuCC)|M!g-
zRaHe%6g6tA)fz#?s=cc<YQ*k`R%lC%m{qM=d(~F6iioPHh*h;)v4vPgB(e7%zvp|-
z?;ps?NuKk5?)QCN*Xv4S{I$saJnAop%#f>0!hSA$jyzF~$UJM!pcAXr+XzOk*>w>+
ze<TYW_hI`u#5=B${{@zSTgd}f?6X#UpsJUgC91?dUayYT$_=gO8FRwlqt++9$-K42
zwIwaPvO3#gLYa*J9*s-AP%u%(o`R2h8&eyl8I;3)7vg-xSFP2I@L)6BB`|k?yU9kY
zgPi1&Z4V>wxz<wE@@{~r@qZaf>^4~W?44y@sAAK7C$2dq1r=oK=@%wt;n0UB(zMEK
zQx8z0ZQ~<ZSCSEKIGZ}{N+F1?>{^>&CSqncO#m_>`noNj%#h!J`i;_Fiwnjx<!ocp
zIJkyj!tb0$b~I}AtcruGb@QW8@re61;!yb!`H|{BMAqN65=gEY*ja-v+ydIQJ1YW>
zROwwT^Yi&-@*~5_^OUb9yc{%y9xUZ?UEn}_^)ghs{#x3nRZ%k<6<%ZFLTcKRe=|&X
zSf+wABobqYx0f-NU<F_k4G2SP>c|55$*<{B>mq)Rjd~48v(v}IfhekZC8)VWL4|iB
zq8xSkN9UtbT?|45$FP%KTMZK%-cR60hKdc&gwXssOe<KEhF;=<0rRY2JL+lhtvTNX
z!%u$(qAWv>w!DKV{&rUB6mnj-=9u{<NViiGA5#5Tv{ybBt<c{LT)BHpqh3B;5{@YT
z@zMJ`YTqGweX)eVfq&Ee_Lla9%v&7nsfhEl7xRGp9$A_XG=bu723cp?;!BN=e|`Sf
zWn1o1(AUwl?dX={jaNqfm?}WVzgmH;8CZGdw6Yu3Q|I%#7CnbputxfnbffjJJ<bi2
zbEd=26?^o;jA6YyqzbJM2e?;%U=~n*me}e*n>65}h3f-;GInUXL%#sh6kPrhd>@pN
zEcLc56_84`*Ge&|2o<Lsk^x0fo~v_;?pR)xI55wChl(FW?dT<SKj*1^+1SUWjb=}d
z$%dvW_9S%+K!j{c-M=M!OC|2<*>B>$hNjWRJfCpBFN@V6nwho<%Z&0)eSPc!k%5*P
zfo{kMJQ<VPQ=JUgYhWh*2ae*t?%S@Dw}avJjWK|Xqz|mCFTt(J$CNoeE)OBjZfoOW
zVS(JK^vp`_EPao@(r~w~8PaT_73GDsj-E}DPOWBMnCn4}heDIkWp3&)3#&$fLmJM|
zuV-(pY}nJyj5zr+<xiw=>dV2&Es+I8XRWj%mH1c%s7y>0X-sAk?AY-^d*}pBl2HOZ
zQ)ElfppT#Cld+-TBK{Npp1T>Ka761`QwAG$w``x)Y;;WhFe?OA$|HZPWA|o!$2oKM
zf;(pz!b|NS_XO8>{Axk1*J)GG?fTVxyt5EqZ19D#74Cfz43^JMS@@}%Tw>ETV6p$a
zb@%JnV6!;<TLEmPOR?U>JL7YmSa1%K6~XKGO&6Yk`}6u4^cz=84;O#fjWxNx2&o~P
zOruC)bgIiUbQUH9iL^CWt@f}u#ouey$W*kc@V*)-%iGcK22Cc;1XJQJ^e0ld=hO7W
z^DEWZ2ud(xjm+x_{2GEqQXCMvqOBAR=fQ$sp_cMsGk7@t%|+%ad~<5w0(UzE(^o_r
zz`#X~ews(V23Qsly6{rb`SF^RZOqmZ*j1e;3WLs5cen$ejfh`qi!9UIJ)*Kjo-Z!e
zv(8d%{Y_LpKl(-t|GIWqXgjWO%b4QU{5}3cW%%IL^3Rf;RN&at%3^e)bUM5J#j+LG
z`T1tj3&km?!C(G&+1LG-5?9NPZY{K)ZIQ=>=~sS)T=pMu=UTd+OX^O()@EM~zDXCF
zK$i;2*pQEZ%k;xpjM75&_Xb;zT-0S_thuBUIHET+|K{opTd#p=%{N_8xQ&~24$@cc
zw!HIVZ~gL6zdIHgziFj*gmPP(!OA`WfRig;DobIeI2lNIwFoqg6pQL^>W<KfS>~%m
zc<Q3P3!Zjt96f;NkcBC3B}lp?g0Tdn?ht=8vn1Ja_|EwHPBKE$`B{F!&^{9?20=c~
zM?OpGKDeSRoMC*8k7X?4>PZZSQW=@t=fb$7>ZCkW%DGhEpp@><xbw5b!^5v|RRGPi
zB)=2<MO@P5b)4K{?=@@q^QDLAYv?Psqs{s}zTskhze|YiIzudhp%Xf#jp09gp0S~S
zsNJhE%RKl>)bfA}+KlY~W*DW$_W#nUUIR4xdN;1IQwlC2E(=YFc$OmWs~aq4{QRi|
z??j@)TsXGF?B-Tj>@of3?mY&vchNo9`m23q?{s{=Jh9>>DL8~let6X#JoPJjA9TIf
znq$Xv(|Za-cs}>`iC3-nome{_E6MoJahO5&XG^EJqgy|A671$*R*o~DQb8ZO$?GnS
zA_GClRSF)CQ(1VQ3;cHm{npXHzULU(dC`s_H!&^EFUQK#{<|w`QR|<GplzM+_jzmA
z>HB<tgR}y`uakq;%L_`k?DK6mPN=Z@MGC8Hf}wu)=Mhr9l(QU=MI}afoUIk~b4etV
z*2alj01x4~XIB8#1dDeQQx`Vap5CVj>Oy@tW0}d;^;JX#`KjCC+>kzUkWDETh&M5t
zJ0Ozi-zSSLXb0t0cw-qP_Q0s~o&(-m?)A2#A1W?1k1B#siuzlSW`_e$?_3Hit78kS
zl4|2m)S4k={ASn^Nu#H9aJiqSEzvOe^M5h|V($cHmMa+@hQcnNjbH|4Uh>1g2;|9s
zd#PI@n!AeFSykQ^EcYe21;G-GYY56jvCY24dzy<E3rdyvS?I&~(Xt09V}W8>P`Ym1
zRhb-fH|X7ZZdBqmfM9&PpO^9YAX>DYAM}lsK(n4m2lqO`wwEajp44;k9>GU~@}SpY
z`x<?1ItEr*X)tJE4!(&B@Pfbh;hFm4*<J?U&vD5?S}o0BaWa0{q%M$KDs7iI!<#X0
zH9LFcT2QOz#D7FqiCPW&>eeX98gMPf!43Wbeid7>nnm#<Wr89Ue~Wfz0@j&zB^(hM
zPqu%&abn(Lkv<^@ANr6`WC&r{G(ijEenugu_r;+!aQajxK)+&leQn00Ji<x0;|7E5
z<f=zW?I;e|C_0XSPiVOqRfodZ)4PA~>f3K_<<@dw^SnO8rr7{ZZ%&@QdHZffI2-6j
zU}!A8AD_!&-jk2m24qZo1UDZ6J}l3CN;{_!oLJ1=v!l3s=1x;26`%KDE>x{6Kkwo=
z=k2w&`MJ-9Q{}mrOn3{%2X~at;|G@F1iv@A9|^N(iN0)V_zN43#@HTPNozTTRqb6K
zpC<0Lo@FMU4S<Kf>pNgWX!N&eg~b<KKa7TfW#<{gj`L4@-bMnbUxRl3(aaFvzmwxl
z!OOSR9r`)0e7+UV8~c$@*naaMBx~2<TFffZ1-{)@!Z87U`JX4b*)J^5$C9|Ci?hOY
zy@<;e!9B5(NK6ee8l=I7NdeERspsNFbhY$sHK`8R5kj*zrf&Virx4rx$}yL>(FIOH
zk%&?wv8Rl<le@0IItm?So7uH0MXSUfEw9rji08AF9%^x5VU_OlWG`{_e^5erei#E5
zc*Tm4B2l4!aKXTyU0qllZVTV8Q@!^&G&?@FprF=lNUHFRh&1cp***`?U*sf&o%A>C
zEqY%3>*%MummV_K){V^y`^<JF?V7N}B5zGme8SN<>2=t-{P{{HBkHe{jgy!v{I<hE
zXlMY3U7V(0zG)CR1~XVIuv9GpQ}b`GYJ;BHi(+xNw3S`x@Tn_{xtBCh6;l(COQ2-S
zm|$kdJvrz<h`N;ljsciQJ`U`r<)qpd^g|e{SZ0_}r!3`+B+jW=Tmmdzv$Kn6JXb1i
zDt=tD!FEmA2HwZ0*1sx?vn}wMNK7<l3=ByGb7E7$Q|)ia!SUs!sa-hr`Mlgl45H5H
zNRW$dvS`Q$N}gFcm!-(qx$#IC4z8zi+qnZP9XX!leP8YK8zcl}^fb@x2%!rp<L&`F
z;KEUD7fNVXf<JOU9n8jir9)pr9PYKd!QXJ+a^1gcw~9!E_T$*foBUet8Fo%~Glvx&
z8>KHf249j{LM~@SX6d6=GpVmMelYsuSw^luc5b`QbM*Rh$3W&~RRS-+LX@?;YoKJD
zyH`Y@#GIV7rKifv9~&DN>vjkuGuo{@!<8UDvRvW(ttZ1Vk^zB|jvmfu#}xa!Rd-X}
z-E*Gx>wRT)B0lq&0SYJI_xRVk<G<!yvMSle)W6xJ4a&Xk#R6KI7yzyw0*iX`niRHT
zY(uiyX)&YDQMGLQ$~jeLB$G#;TrdHy*U1FL92U-ieoqW&Fj7dXd|9ybnd@Ld=3eTX
z2x-oO4`>1&0(Fi^0Q&gYL^Sbx*SScX1PgW(<NWuS1HQyN0Y8BHNc6@x@vhw`Eh*g*
z2qve9xR$AKq8U4QOVCjkas$ogE9Pvw4PJ3ZQ6+D{z=q*9DTHJ#rBv>(qEWnB`aJAA
z227`vIg{b~Jn1PyQxv$bh^SIs^rIP^@Q;Hh_KY&go=;*x_xmdci-st<0!)f7pFf}C
z0X#l;Y69%1b>gE!e_D2(Glm5dWUolEb65IyT7Dc@DDbOWf7pF_Bn~f(qgGe9SNNov
zv+3p7x`J}tU9AC~tWR*AXSSZIU+#uo^aWo@rsb}zX!-Q9Y*uVq6NPg@rToSob$H%V
zi{2@svl>Iy1R_T={lq5sd}PDkNRZA>mKB2c|2Z$#cs`_6Lqs*E<AItU|32#r+q&&U
z<ELyrIj7rp4vch{rjDm#I1P43DxPT%m^e?n)UfF?v7sQE-iIC_5jfWEY@{A+&+u%Y
z&1nkDU;((c%n+8U6ky%#>qFgOyl!V^Vwb95Mw~6(&|VvJe^4yOWQTJ#RBHl^3c6w2
z$?%LLQ?=5=4JQl<isJqm#SK#~K7GnVp4Mq*$9L@BNXhT^{$twQt+QSCG`xSc6`0db
z&II7#EwIz67>JZCMSc=@akhTA*F`}{$zTg0%pPLZMvsKl{@mc|ONy)L%sF}F=3DEG
zP1jzcqGA5|7&FLojmKS%Se1X5dN?L$%jGvn)u9n8g~b{CG6`fH03$b-{`BI$-nB|V
zs8pfTIcyc6C)}G}YE`wY9e#hTRfZl8NsjDuKDr538>%&SUs6H4SZ`0~8-vw`>$yp<
zthPO0Y{O-`rvyF=Lo3enr=-5DNgV(N?3n-141`t`8|h}sADD;8jv~UND_gZ2yu4ZD
z@n&f&PiXEFEjQ^=uZtC&-rorP0R0y?uy@8+Q)@?f$ca`N7U~xt62uNU#So&1R2ke6
z5SxCjaiJOm5ungH^59Sz$C+$uBE6zEQL5^)s+*-)M@7UvZS2#^Xg`8u{rEz>L}cEU
z5mSRB(fzcjXUggX_tVpbyU`c97!#cPxC_qo$B)gw#|E=ztqr^9tC(C~<{?o!0hy!)
zt=ng<$tG`%g6-zyh+!H(#C9GVBE~A08N%8b=$FRAl4CYjdk8bN$gjsgDuKH<_4Nyr
zN4;W=ZQY0nCdi|eh0}_a4_PJmnW1?;RX!JoMX5pAQ2|S3HEWFP)63BbJmZ!q^bOS8
zw_brM)G}Ql@BG(0V3!fhGKR&;5pWn$IcN@CKIOQa?YsuDzgp>%N&9GkRh3lIBz(t~
z3iLg9G{vgbFx21g=L^crT@NeC*T(+W$t7VPXgVVjXx3#~%|5PnuMEBuS5SHd%{Vi3
zclA^CjhUm1Z*)<8KE<m!M_KH7o?Qui1D7U`72X@|ea^8DVBko0;r|g#1tENT7pF5|
zL{vBL<(M+(QE)6C*m<5tq{sCVERe}%Dx}<?T#*7_xA~r06Jzi9GN`|`@!H%O6Cn+|
z^orRIr`+wr;LavazZD||)naFV^!PA6z7yHH-DC$FuKOr^{{sTBTrvBMFhbcU-?oFx
z-{tx0`_Zi3ugNL92EFHh9&i~Rzq|E%z{imWtDBRvW4B|Eg}pdl{@B5`_D<@WgSI`*
z+#8<pwk|iZwfCNw!)tRt^%*V=M@#uxy5iYmvYjivQ9xY-nL(ixKQG^3M{m;PEZ(lu
z+juKy07l1{j))COn)Xa{9=Y3~81NKH>*r<btB*{b#5xC>Xjo0_Xb3wNcWwSxJj#HB
zQ!6G?fehA($Y)l{Y7w_{)=C;NBsg`S&mb$vz2`THt8F(fau5grGTDYuKx#5}9lG+I
z*`*Z2ienJ*>Wr%Flx~#fwbsCDTO(@Q6!0+BvExElIIc(wOzaP?`Vq9RUsb*dZ(E23
z2q7a&2QS$>?0B$O=d)qN7*he9Xim$hA@N>09l0r~E_nKlS)&c%2hR`PS)zh*e8gMy
z<eCi8lE+Gd_pr6hZXWgQbI2zb`w*#`Y)v53<+<iQ>HB^=1v&Y-8a}Whwkg}lNDn>6
zynp!%S-yMYT|796z>0$f->FT+z7})ammiW}t^y9J%9Fv*M}2N$RY;d)WVt_{)pqGv
zevn?~A;9oeDi(L81k<3Xv4<@AHOP8utO)u(=;>M^7yjGRjbT<?M&qggRu;9;4m+0k
z_&ju7%)dD!GcdnASb<ky8$1}&xts4x_G>N!WMJD8kKe!r3Q*yR6X{Zb=DA{E_dNRe
zpDZ@0%g>pHl)xPgTsQLFlpS|I!`5$dxfZD*&C-_Y1<?qod5Ei8{RXu7Bo(yMw!7zL
zovA+I>2zwC(k;t1mI~gm=8*-IE8tBpi{~X<^5RSl!~O(x1P_5d4>nf4E!#}ckM8HT
z7Qo(pp^7d$HtY7&9ax`1R^P6C_5RPZ=SM4Mw1nWoX9WW9-d?_8R(qxN;rzX14X5YM
zy^KnYb#7Zi_b!lv1zfZ}IR&+hy7e?`(XP}G2HXm!UNIxCwp<9b@f`Z*J&f~^e4obY
zFYbvwB?OoweR+eLhw2A{IcW0S^Ih|AabOiDg+tm<^GbQ!U?<**sE<aU{7Q?z%3`Td
zW?Y*$uj5`NHRQwd`!+{>GrIMKA5{|`j+`Hy7dvZSJu5NPW(>YLU|8k>B;Z)GqG2-;
zyF(FD9H=GrH?iq_i7EVgH-}SzLR6+8G3@p<$v%M)xW&LY%m!}Nf?DW&{rmv<uZ2K1
zcnX_IiXIoB!h0smMAQLC;n9Re@0D=Bfd`imMRo$;$KMVr@u=CagQleydlp5+pCHq8
zD_)Zf;$_S#@uDeuFTZ7$0z2K1zH6mBrZulQXS$h9T^}~KR$Xzd&>hDJLgFRmX50_=
zyXis>UlQe9J8JHrHNdyb9yxrFuCe;pp|}4a@P`5uMgE{i_11YXLvLiK)})dJYJlZI
z?xT{v1uD01Vl({jeNEz?#l^>oOvLrwG*#5I;ZX(X73TD_elKl>$K+C$i)di-)@{5v
z8ivpYv&*(es&_1z*Q`vt+Yc*)cS_bQD()azJB3s4<*~O@pZ<kgPI7tnFS#y~Y`e!_
z5ZkC(Dva}WkLQP?Pg}3#kQ#5^?J2$^j`U?<LIht|(6?nx{rB{+hspe?`NP9tM=|}r
z!dY<_aiJx&JT$L3ggZxKa{ISxJOu}1?F;^}(TUitGye0oS!9H6ZK}>c299|+7J-Ag
zdE7Iccsn)<67cPbUU_l+6iRiP)UCR02fd8+4;k^Fl!}c{L+~HkIcV?6SZB**{gl9n
zUJHtx$sxG`q-|r9h9a=%iY%LB@d7x^!-!>EKE->vr_h5Pogn&3^+9GXF~!S}eN&N@
zo^8374l2R_b;Gl;vSfmC29cd1;>_~sn-PW@@>Kark1ttrGQ9GnT!PA_sNT1qo&l2M
zTY;aH(ora}NvR9b&Wt5FkzK{?uiCQ1t7NPn4+?dTH}T-A{0ftTMF>je`473qeuQO?
zx?6bOCLX=WXxH(rH`5b&hPzg4M3TyFP{4_L+BWD!2m2*=Uz=fu3bW8~S&UjT!X;DV
zSK1l0&<F2~Wy5PFrCzDsW0443=o949es!wRpfzz%Q#un*{1s=q$dD0^AUDCv?;na!
z<h>DQ?V>0Z<sR)aSE<o;$Z2IsHWuD$^m|oY*zE#150dXkescN&QPlRh`=%o!vq(9x
zFZjPJQbqyo8xMp|gRy|aUQ0&-ZFynrfAmf27(#~MXy?|tT`afwi(dH8jXvL-=FFcF
zsxK1fV~NOtdAiSY@<ES(QF*yAyM5%cUmCUljcPMl;p#pK`~^x+JT*R8`nKKNOCF;_
zyzRV_9Xxr?k+Y!c_{_%mXONnsG<hb&lf^h(RS1kt?I2q(D)qH1Y}vuh-_@mY<h0;F
z7~h?Z8E1jW@;*VFTb6hP(`X&0Iv0P6Pr*cNd}+Qbp({5c+9!TN8DxllTPQ#cA4LhH
z2?r6-T`SB4B^Uo_d8L0x2BEb4k<9p4agHV@s>HMb73Vm)QflDj08F5Pl_hjtQL@VF
zB47uyb(^e8Yf=o9#@QBd5`sj>KY9~Zhjpr#?zI9E%TaEvwsQRsGaGgqouOZ$_q~9k
zPjIVkS6M+nEy&I{T*1X|3j5KREP9%SAaGoHCb${x_%HgJ(ofRn<>KbA45!JyM7IZD
zYiTDEJQovvr04oC2O?4e0`xM8ojj2{D-{+2eAd2nXQrLw%j@?Ny{i(v9phNS#)R#7
zotk{?HGUn0q8}Z6`b%m#ZdZJMoXT3A<rSTBE{4--#;X7qV_zVhNCsNtRF)owF=BW9
z%A3HO%uYa#RqLB@K0DNZ;H48Atn_e6%oI0;DRmcPaohP!>U%Yt-CMkkIiYN83b?q5
zis04*OY^)Gic@?=^UL+MwWIBj{O~#8MREi3M&v($8X5dc=WX}l(lMuL?`nymedv7S
zu=ensT*rR!Woy5V@ApkJVc~pYD47Bj7zJ)=u_q_ag$7lc?i@OE+23^xt;kgN%V!7|
zIYVpdoSiIwHb2h3_;*+kUH;~aIA&h({2VFUk+I<yd4u0in>`X?Uz0yE?QN-$b(Po|
zncHOVV{3=H!@8<;QQOl4LKwm;WI^_Ko35jnv^NMT1wd8rX@dEydz+!D`oC{LPo$zL
z?`2^5Q$Jy{)mczqd<7gpE_iBXwYiR8dCMaMZj_%ki=`4o=Y+z*#DuD245f;plY>*G
zjG2G>CM$}!=>}}U#P8nG@43&Pi)~<L_z@Kw1L^(kB)VL<y&F3IW1@GZL(z|>p%C3;
zZIN#^m9i8)0~e0y{de@qgE<m+)*jKl#AO#)J(y~gLe^qleK@ZF3*Wcx^6T1t3fLkX
zoEK@4tEwaPbVY^YSm8?EF-{kb?}{hcOq01-ad(>mnYZi0t$=ZGRt`dk`*}GV{O}Vj
zrTJikDL7(-KDAyJ+Yg{1Ql+xMsz|EB)%`#RtkR}x>CWTBT8pJI_G1-CaprT?y=Y(Y
zo~tAKMJz*Bx%Zx&Pp6FgZi`QeUJl@-i)_V}pWGPudW*}VIR4f9ycf=y{&ApB#Y<8+
zB}(Nd<+2uQ7)l&P9@4?N*xD-K>6tcieMm?Cs#_jT)G-3QF#{d_d6~0Gy{bqxZ#pNx
zp};?*6MJX!rOb&-y_4We2mOBQ2`TB7)Qa`)g(;v^INSxV9U_y511vYSZ;4?iro5!E
z^RO@>zY?Yj{kO_yAr!ALVSkR*+{1ULyY{<VgAEJ3RDbL7MyF9SGbtK~hg57t{A7Tr
z`JY~ZPSWti)^o;IloI>V^T~n&;om*Phn5xKfKTJInU*3_f{tGf<XH6_N<NC_n|-NQ
zdh)G2hBrfdUmD0WZL8#zE!iK7p{OAbx8;ZG!FtBe5|u{7Zh!_4m<|rh{>FeEO2wRJ
zpWX=r{6}C%I+?f9ov}DJQ-$2xyxv6!T6(E=+?O*o2)1rx?=Hz=+z%uS>ONxFBok$7
zXWDi4)OpC^+=|7vz?7AxXjr<J3N=>)J~i036iXS|vx_w@-P6lF_z1S4IZ)csQ>%%O
zB^)koCvz)y9$YykXw9BbDI>p|El%<}%#lpzf;#{pYFJ5VF0c98ZV)0BXx|&hIW3IS
z6iYSqCi23$wxbw%^>Qzicokl|y;o=dOFj9Y+uK<kO`p-V^(Y04anjLKi3wVcyP;!?
zyA9YHO%7U`C%#;tsJLV!i?w@J?0KF~`CLUia-}tb!|7S9IPjMLLDzy)UTe2ovJKKR
zwWH!AW0lsEfj%5WZ8L+2@}Td>b!JlRx|b;Le!peff|xPCpC?z|1Ekr45|c4bIP1An
zKln8>M2kroDF*l+y4hYW!n2UNXiAT+mR|?<@VhWPKjdDb1<KA|<B$cN(&tfv*RWSe
z%qZuhdi(ga&?8AVJw~4gzHkLsnO+=0aZrY~q&hHG{zV(4<eWnQ>>NEF)7vft%(}`J
zn6&a0FrSYvkdX<XS12kP_#Yf4#83>dLs~Q(DIW;3B<Xg9E;Z(LB9T--27T(NVm-xb
z`bI=+%KZw_QbWIV!U28Pz0}Z*CzbnM{I^Mlui(cMC>CWt@ax=xQZK2*&lol32G=oZ
zU_rAsS3Y4CfAh<OHwAgW9HefNgtY%yEXz)YAJ5F)(oL*uDrRxWMQi%L4(lwb)$#GO
z)>@1ie^_x))~KZ<L`_~u+_*U%LRo8N&&{mtcwi>X^6L53j0><4X2-QjTJB5m^IMLU
zia(zd_FpWC@Q`g`IghDPLkgero(b>;OhhDBYT3JF#!KSjJ4BB!ewp=v?o10lMUw^J
zj72Eqko&q=>;;VVhg6e1*-R0<wap*&f0|7oH)Zbq6i3N8RT_v4pVEXN6~)YE!oBL<
zrQVd{<91+1B`Gd6sN_gjBRN#^tBQBT5;`gY%78_`!<^}xnvi-swkt1W3g9iuGxWA&
z)W4GRwb@w=m&n@4_!t{0ni>C@w_jkM=;yAuv<*DX%b>7S$>#Y+M{x|$Z#kROdvl2i
z7f|%0UrVY2%T8c=srkw4OKxp*1%Mi)10I7)XT~^_KMVzVFVuZ$Wol{i=}aSxw8B{E
zaHn3d;*F3sZT}Hk$b0Z(dyR%lDM35Fn(ylLc-7(8=^x@>IFGg}C@Z40@)HjwQVd>>
z_A0-Ue_o-b{HF72{R%VNwMa0^YiA9YUH_L(;+sdLrxT5xFpP#!xOy#r#K_A2E2pRa
zNmXbfQG+K)B5V@&#Q^4+1JfQ}hMBNm&1bKt%JUC}Y9GDVzBNgE3!2n-bsyv;u%rDW
z2BBf4ZZ$|xxW4mfO0-1JBjvv;zV(rGf8j(@sQq5)Mw4<@?Ki_8VtxhhJeApoT#2`(
zucj?DDYx%_BO`Utm0Ssl($Z7ibiDsq4idB%|FZeJG9jKTZ608b{?#vX(*3)>@~+_t
zY^NZjHr%00NKUjpakzFkK63G_y&(r0AMsA(&<%mOT=~{agXK?p^G*6FAjHfeXr9V%
z-%S8TDD|A!V0i`Uu6kOP8uI0?%T2H;MU#`J^?mH7&LNVicgZRk^!V^bbu|x?19A#Z
z&Z=$nO6zFa|B%P*u;J9*#EBZUEc3|!gqkx@a;Do8CC@&CR$E^^Q<+|5h_g??nJjt6
z0MvzW@PP=~hUDH@B$Xx$-FaaxBJ7Aou!4GAGrH{ze+S0W;|d1T?T8;d_k%H+12s`Q
zpZiUhwr@A7UP{6LZq_DsGp~SD9ER%a7n_8jZhrF|&{}ZcVp6Iwy_Dyu>_PIcrW#}(
z1iEQ?c=gefUy%+DuP?xktn1?EXM8_`2TsQ<GWlj=O~bnO*BR9Y6v%>Rf+osjBXv<&
z)nlU9Z$w`-In<Mi@y9IVC+(=VOHWyN(0@i!jGs1ac&AprVA68y(BJ{<8OTkpsSR3N
z2N#Nb_fglTQ8S8nk~MPLXtN@ZVD_{IExJ>?G${>~;IfEQapPTIT^{Qh3Xgu=d!u(!
zD&y?<aHb|r-B?^;!QDGKg7KToNV(>@78YX|#A&r6_c6R|L<RbEy3Af;yjwi0P+&-l
z-I3843p18^c%P)93OP9a;3@OIy0Q97-h9$QXi}C$*t#{8+#HXv=5Zk=k)}13NFY4k
zng@$ahXR<KBE)rt-A~^UdrJNxaWJ7rH=S*UckjxpbKqkz|NZZk;VHc9U3kmW+;B77
zx3`dq8)^2vMg`wL*7Ok-bd~Oy&dM)=Au#{=_Nfs60QP()QLRs~>&_Z`%~JlzeyQD^
z+f4jSXeqB`EyG}En&osx%cawpfTwQL4~uklW2qBx(0kozliS{|;`eGoCt!ib#V`VV
zqr)%j3c%D5CZy2W`B)@q3+}|cUZUh(<Qs5F$Q|q4U2(AgFd-1N=<c$VPXhvIT=`be
z#Rc$EN#kne(mL<+fRs9qN4$=exyGh`%y&?~6tkTdKR#Z1Xw_QK$}({Emc*G9dcLo*
z=~VAUC!%Q3jNMR=Y@fDKviZL5wz^f;hfD~Ai*s^qvW~KkeTcsP0+BVTOxhz*_?^z}
zIg*Tfh!{V6TNgo_e>!dlb03tS#O=vGlRTu-{m4bUGXTgH7CLY=k}93?@}^3(j9HAu
z)zvub8!pa!j}z#@yqhjW^(#5c=G{&u!S)&+T|NW<u!QL^ea>$ID%QP0V?S-tgDHCa
z=fN6H;jV?>7E8%59`CNy8I3v<nJ}V|5Zy@UR)f&|&rL0&eljz|5zm?&-5^tEXE(oy
zS9r;nt(Lh_{-`X__y?92P7H2cN$C+E_?kpbnSVzbw=Xa3s=N#9`8QBu4Qsej0se+b
z;8s#}&>X&V4H9Su1vnSXe&n?(w}^wLWd!@$eX0`Ti<?<(9IQe;#eJ)MNj>U=LiHNb
z=r`_uh1asa{`G_Ypn|;k_ZlZ^Quobo{`>r~7t!O0<MyX>{sVw|b^}Fus)Ss7AFq{9
zqo<!P#4?kj>i`o2JnQ)PM)T85$+`^%P=|FerP68#bhHfI-6*Kty7|kctBl}WT%y+K
z+|V0m)VE3D0c>R7o4<D<(hXd>vry$`V*WP>%oY}P6MEffWV6A|`dYR`SG@Q5Dg=OU
z{Z-02-+TMmz<5ZgKJoN^_Ju~Pi+@j|TIldDU*D+PfkSXKK}bq#QT0GM&p-P3hldK5
zS}L5P+it$}u1}Tp?&sp%$M&QZ4cW!Vw+2@6IocmMQ8EDUtkw<c2LBRO5M%dmL?iF~
za}$r!xTk;CwYla6%=`N<_naTF(4hFNj$#pq-j)+eiAw3I)BC`hwtITNCcEk4Cf=hD
zg54}56wg{Y8p4`^4z;OZ`*0_^&HrG3!6MlK1B3`-GZv;`Tin=Y2#hw+*K}){BLCaD
z@jv;NN`qj4(q!@N@F6=nSm%#<U=>oNz{9)I_|_O8zBqq;!<OF7ToA6s;LGrY%Pmq8
zM$X50G1($pQ!%gbshE`nfDCN1#I%!5MpMJ(m6M?6^f;c$uU`#E*?~<TTD8scdpx>h
zHwd({o}XWU6V0HdKe5@li~CMLf+|p|;aho{)(tH_kVP+}f(i&`zUxNzoBM{DA}2yU
z0{N%g>*?Jn?T{wtRo0fTDdnoX5P$zGNma62(!~Ni1H+6RF~|D@Oy-IosNr9}^k}uv
z^Osv572@yNJ}{t?^R^V=r^54rhb@Htbxc+@0>m4Ld1O&yI9S(F4<Gy>M`ndH&Fy~q
z;z4pQ-Q5cHg<Yyst8$!kiGipU^gljcr;&k=8-uJk)CYQ{Y8QN=c%KL~d_#cqSX>1O
z{mhgmP~caxihxxx+4eM?Cm{?J9(7m}r}uM)h8QK@J7tl0NSw9zx=+L)$=z~;)IdqP
zo`Ml*yyEV2Ca0LX+XG1LHA6Jnzho@SwM=5kcevjBx2jVmW?~XK;d0^M<Kp1h+U>J-
z8z#N?f%`g`TOrtPP{p}v`rmO>Au*`Tc38-<NxTNQO1GlSLSE9~bUp%tKZO6$)I^=R
z0q@>BjJ`dY0&5D3fg_kQ0NdUTe7_33q&PksIi&14+Rkuvuh42esoKHdpnhh^r>Bwx
zPwIX&%oL0@i{k~Uc82@##y#7h6KG}$>0LbPr4U=t<%@LMT9TeS*9*IBnj2D33&zG7
z_Ry(#+ZbLP#wlXvJG9rx`xeDtq*Gk-HYIy%r3lTI4uyDMWuNuz@6I<-g3@~f;ITAz
z!A4^DRTkn6=@j+?ku#9e((bx3gKmv<TN(Q6OZcq4f7X?Nw>h9!8G4rOU2!_v4F&ww
z)~pgcTf!^>_g@Dm3F&jP<Wn?8|9RQP8u$A@G&K~JO6?|g6P-jn3#*e8MdN!(XeCgo
z`0!eivm5k-rmIk<zZujerOEI?9l74=S-yAZ`T`D7(?oo3iqnJ7isUyW0W>E-Nsj-)
z)1-#GCQo(%=5%HbzuurZxyvTvUaR{?;9}$Q^DqwzTMEDQiTiHXuA|}!Cnr+@-+#Wk
z@Sp1By_1^vxWPGsnJs)7hL?PaULLbLrOVI3y!X0a<Cm|Irpx{O(<-%_`PKa0V@~B^
zJ$<#k@%I=%>#I7iu6(I<Tuf8TgN8?3S31T2@!3%|hm{7v!KcL{=#=3+YzWD~s`qf9
zNuzDI_Q*RK=HiRVDHBKu?f02zt&n0Zt6c7sp20p1V1Y{n+PB+2%G6qFG{zYK_1lH3
zaYr<F{~=`VweLQ*+M0&me#t3PN*AEI2DtecK`WA<3Z@zK@Iv@-d{ayFib*E>UwjR^
zUzq}ZH^4-kOM3>6z{Pw0r<RVeRctEe_8jdY&;7vcsZVG$=+trZS@&=fEfvZ<2oO>S
zNP)+Em7(`uffbzHp3iKqg!E;{s(#G2)0($W;P3HeWZkVd!tYE@dN{7&lmdq8+=8Em
zJqt^3WmWn7Su~B&p^#J(xAy3$|8JORV2?aouS%@xK<eO1%Y1+F{pa?|1t!0grK574
zw!hc#SP%`XMNU7z`1W>e`XPIO$fNjTt$71|-_MKXsuk3Ig%YUpxfjgc5#Bed#lq+M
zd)G`%3;MHIY#zVK%Q)0-tgparYG)TXm&y-(Kavb>nPA(MYtA{Isn`f|FV~x6MNxY)
z-~e<M4*f2tr8wcwuH9ktriv4|({Bg7q|m?mFVLIMXOkg_ILIcH`<AAwc87xt>WT4g
zTLKVZ_!PW-ua=lD+HI||T2>iZ_?8i8@JiWbQ_Fl~JJ{?{01C4-@n0iEp!#DZm4Tq0
zN|sk#T=yp6gZ*~jDrDHNTe+ZD>zC?K_3geU;T2j)wdXnDGW!^WuVy^kBkKm9?**=2
zs)~-+rw2TKQSMQp>{BXe0@XPFn|!=%OBF*?5^OoH`}jlu>i8zv-epby<MFWtS3lQ=
zqjJ;kr<TYNu@C1@oRn&=m<npS&GA4so*!s^jkums=LJYKYxem~oGKa<S~O88=N(Gh
z#Q)@dc^DB<hq+FM4Jzi3$I>rcPZMF}y?c*3#@$4>AEvg}|C!uPgsl&3Ch6KZH@VP|
zw1&cTpjdlr`)XPJIikow-n))XQ^jfGM=be99;vTFqdDlW%)b2;I{2@r+u@d@NLhJD
zh?-`rR_DX`^b@tP)8<l@fBF?GGsN4+7upWu9GP=nC4GqnI=7cZPMYRImU=TE(wZ~H
z7`xIK^1p869lqb;WkRjxz1+8DAHZMsa$vP6?xj|Smu?@yj@IO|<hZ#TBS`Gx9Xb*?
z|9xGZhb2mTYQs{BNv8QPE)t6SQUz`*_oRk`+s8=njGtDsb^xt0P9jR1g|BR~xZNB{
zjUpv9UY391GiON_67COCfxrJFC}R9xhi`D?xXj5wqShLIel`n`c|I=lD~r<jDYesT
z>)=?e62uKUuQV5?5nHD2->LJWOc_ZBT5_Do-9SJ1DF%=hGU1e<-qa0nl+ks_i>Qx-
z=|(&v&?RCol+E$hz|ALc!5%HED%KsGk#L`IYPT_=_A6q|4M0C?Wag8z159G8<*-9u
zGIbGNFNRCM_foQ(Vi_z3-@T*Fnfmt)ILTxv&|=*EH}D7?2*P&-E3KO!hq(sT#Ojmn
z(-SbrX8n`A4Hz|QTU8!Ke_Xlb=O~nTZpR~?X`T6pVUHtcQk0&5k_!7mcW_E4x$mkr
z*Vy;?UyULZwr}AdLYi}N6#8RqwaPPoxbSFW&)Z1f(#o}K+tiXc(_jTIi(A*V0)?N{
zUrDdrxWx%`;c1vbem`6PKKKh=Os5g7SFb~OdnG)SC@X{JafhN>-a5!nIc9szC5W~L
zylpHCO4|ey(hSDKi6NJZo>wj-^}J?OdaUj#a#kvRmp;B<Xv~D)$$Z@^WLRCIp%5(?
zLfbB2E7h7FzvGcp?Da5Qfzl8p*)U@-Dnbjc_@<fr4G}1{V`g;|`ei{w;rgdQ{cuVA
zji6o8ZO%U3Norh-#QE|K{LgpXLv6g!d!UUXA7~_`_#e}J1{wX!j}~{JrSKH0S>qh*
zsHH}Q&p`5$Zmjh^>j<qp)Lb}LfyxhlZ1aK4*FoqRNjISKL-Yh1^uevFABC$e^GZm_
zdkkXft#Y!iqqx?yK8wMSAR25<IA9M$nFC4TIZu(AUYF!6a<+w*Hcm33Bi@eU968RL
zF$fwJH6Sce+2^9%j!Ji~@XEyTB{Ht5_xh>VYGlqw>8L~@?gFZ<6<i*|UvQLwE5e}M
zklOhItcx+{V3HDaw5??`<8&4&1TSS#c7z$DLFD0<CMikeCLKJ478PO&(0)FGf4!zY
zNI{Oo0%0d((ET2*A7-{~ptCEu3o}B4K){v7hy*1$e>MXpBZ8W*=l^@{y9<(eGzBDj
z8TYw<A8mK@k_d#4s-XeNB&J!07LI2cx!?L=^nI>TpDbpk-iKcn1)nA8v1dWWa*2%}
zO!lffH8-<MdB5jfVX|dx^bD`o7mV}lCx=FpYy&b`L88Ulso%aAoz;J&GBiax4bniX
zf~VMA=%SLe*QoHJQHTk3tM+B4j^dGkvD;VLZiFYoxJ}2Oc;Ou1vBQ8HLr#byMl!86
za??E4w=dZX_Sj16O6HRmY2?2*CO;rQ>;h(m^ML`lJ^IDkxsiP;7=3duhFE+y7SK{y
z>8xDru?+uhnF8i<eeB!oS|p&I$Qyl7rW6J*WXu}$?#Ni;z#WtThBMF{8wlF3qU;D(
ztEI~FdRTOR8;{HON_9O%{)LHi;2+!1rEudSFj-RR)`^B)_WKeasZoD+-HQ?W_PZt-
z4IkrU11~sXy#YM6+FbR6yH$qk2~soZ-OSz$x^M}7;iB_Tpl=PO@st_B`{TP=7IE=#
z?((1M34%+PpTW+ZE2PxU;e@|UfAlK(_dtB43;Vyh^NoqSlUsik3ifi70W79YTP6U@
zTa1;p#N;w6HoIROK?XkFNgV(?DD0i_vsegxj4i!akzG`yfBT-PUHqOD<TUICKG^|e
zviM63K;@$Rc^`O6_wcs*y!kEUoQOl{Lf<!Yf=W`Hp{JkXIfbwGHoy}{<;*4Wy7XEp
zpli5R_XLl>)C^G1@aEgOn*6x?$h_e(My7Si!7*e-b4co_Y%tPIL@jt<+t2(B-oWZ9
z^b<kbA4{G8tgzCk#4ju}29eX#qq=LiXEU-es;*$X-;Vc+bEbiuPJ<Yc_P^SZD%-)h
zG(+Dk(U^_<ES@Q}-fN5VxVT-6`wd<^H)n1AEqL?7F-1<F3p+dk=4mrvRv#PB0AtOX
zuVWSlC?Sh{iwdR>Ef{ehyo!y><4iJ|NnY4N5cOK5<Ti!^FDw@NiD+AB``oVNT|9eP
zY`MWyP13|G7zHR{AZ!G4LI*XomrjkJvdct>fWEz&Juf5IzWR-bOMGorXI6T8b+`Yw
z&m$aGmW!2;>`M+TsU&4@O_RUj@TyJ%GfLN$=MSDeI}tq10^At@L%Pr~-aqaWH+R_a
zMSRQYzxZc*y+t2#j|GUWq(){HBNJrJJ%Tqw{ElMDSv$gS`RxepQ|>LFfnz-G!ipDk
z!q|$~Q#<?H*#%^so(ooLD=XgpAsHtPjut6dK@S5dPB#_CvZ-IXlHY%B8E(C^>lQUJ
z-W2k9cNhFX_)!-|6M*o^vNc;T527@;fRh6p*zzHdva?vpWl4nm`u6q*Y~z^<ZZn;T
zGW5c~R;_xVk&o>YUMmRq)Sh_mkmy^Dq+TO1pk&wfqP-Xc^3{0ru>?B6>IzB&%p{4{
zqCGA@-Go?Zpt6OU_{4yV>$c_AJo<0hib^rVl&1pFL(%~c#HMf2w3Dr`j{9f1IJW0Q
zdijABSbCFi%>6(7n4b=7IzVTc^(=NiE?U={uxt6Q5rr<Otw}^ugT<led9cpI&6d;f
zXN>*MZDl^cI$`VOM~qP~B8o$)%>UuVV-`<N0g%6a&1>eDOg!`YB~N%;gFX7c_8;ZW
z6ue&HiOZ#m3Ibq+?rlg3UR+?#O5A%J9>=)8*$6(4T%H|+0!L-X?sG83)c^K+G*g40
zLYNI~e)}9A=Tk{qZRYn=VK;Z;{{!q9D$aR$vIwEp>-c5Ycq%wB=lor>u{=}1c<G51
z&Ra<wOO@68C@>Lme4GM%xd2!40^r!cRoNc(jQq=Q!e&;4WbA&ZCb*fB0xb{CQNz1!
z9Tvw~EmDMSA9#Lk`CMR^!?I*IN07A7Z0O?g<B2{>tO~lyo!RsHh7$f26c!T2O%f^S
zXF)Ts+Kx4&&Uc&K@~zV5M(WHD3odr(LjuoBQZHrxC3g7BRH&A-T&$way{Ne7Zzt#%
zJ*1W4zjwLL7*=vQ5q75T5b~9cLn;3sE#m#&Et!{MFTt_Im}<SIAvxX#iQk_tn8jA5
z*q5Nw@;)C;{_IJy*yWT-FUoO`F)ZEnP0$zCI$L<~-9B7$>EVRCSxH}83FCk`PIF_<
z$syY*GolpEO!jm6*Yirn$h_9Ki8r;KGcQ{74FsBc-M<8p5@FIUS8f`(QY1JGgM1qv
z+x23WFJA4}W_Z+DqB3Gqdj<d8F+I0oi7tZ5w)1M$tb^PmYjWRlJrmQkd~1*y)M&z3
z#I>f&rwc70^m$1#v*T^k_T4B-E{I0ML;XqapqX#lHkNPQ2r5$;mKT_U5et$qOGKYf
z{9~cVh%qm6;TxTIOAHLhg_7MT79>k`1-Pm8^x$cX+~b+z9l_y1_G3ioyS2io9+xa+
zJnU)4f4fC-8wOS;iMlhSwu<nt<YVgh@islSf08encI@^(i?}!KVrcTYP{QC$2%Rwi
z$o5}ri_|}10Af}tH|S){0_ptJpVs}vjNjUqY+Qvi+p|x8MD*>}Zk7985!;HDy3N+H
z9H%ojaP<w8zu@tq<lw$zvB3|jSH<t8vf_t7LdVmMi||2)fwS3p1+^Xt&xh(C&|-<K
zM;sLVH8anorj%|?=x3^zyBB{ZYGWtf@x0F0Z0s}mDS6W#lo<}-4_gA9KsSgP=AGY^
z%T@VivX&*6J3d=%!rv;Etk&%%E`}Ko=s3dHRkYy0>_LW%G1Twls1>4(cVNj@lj~00
z);YowA2v4f9KR&#+H%inn_dv+E*ytq?s&TxNnYq*cE0BO<a8$6|3VB@#n~itvGdm-
zlS5g-$%J7lPWKsDxkD`#r|h$F@>A9^I4me=SC%5WEPDR!z1J-ykA|MGt7S`fSMMS%
zYj>e)OCt%%m9Ir`4bdTUB5RA^3$v3hXOPJ>A#Vp>?Zi|@S4(;WsPmlReIV$gH4&m=
zrA5+#-W4r{?~6cfRFQm%$H4dtE2hTYW65}}yfuoX0gzC2#)&}s$neWmfTjnWVs^7d
z7zSuzC2A%Gj1sI#(j8<Cy^qYofYey#KM|F>Pc$-rcy`QcCQXO}P2*r*_JY#EDXj_G
zQ*Nj+A(;(rKKsRRi!cCt`HPL<>qKLeX=6JTUJlG(Ja7a-#hDk!SJTS?>zqviXSf&d
zNqm$=&!$d9OZJH`F#%r_4z4px>UO1Ba8{-~=LZFruRBbcI>zmsL=)+tLZsnUZYUNP
zt~U|B)otr=7^McZc-=DPQgrB_OfLVQx*A8T?Rls5CUG5z!4%f0hL$8sf9G!%zo)<r
zP3)Got-rqD{-)WkNE^t38bt&wN~20*pKUyr%dbD1lGB|j!hB8r%U~_4i_dXRbx%Q_
z3pnbQhzqTO^}jH629a)dIn1;_axulN(4tJ_0L(8d=sM7dkXGbnp&l=lhO}<fvb!_$
zRB8FowE^SZ>>8w}Zx>1uNyP=or!DTl<_y(0RJ0G!eqQ3+5~3Z`Tyhxv>=gaH^Ctq|
z+_KpX-V&}ErxjqtaX@^FkO8VkO}KjSh$kKRwPDs9c&@L$$U}YzBYMG2x(exrp33MI
zOl<yZHg9bYBve(L1hUB&RoqY3x^@K<%Xc_yg@9bC<cz=M-ZEIN$Kw*rMQGyuPx)PM
zp`O)axY*02_h0iroNMurub!5n{g7rNJLn%~rPJk=C}R~b)3PYP`9k8L5NSIGqoXpH
z5y*2=ia#7Wz98UVd$I6KXa85aqn7YT3avh{R<&#%+{-Sk5qT@#GnS7Qddu|D+(js7
z#k&LXbK>Q81FU&yw`miBrt4y-JleZLptD?a{in^}91@9sUfxedzhXZ?BTRlJvTJk=
zwl?uH@J_$2^?%2bmKz~7r`pC(t8V*_>*5u+;^&e-e#*f84DN1Xg~(YdeN!}amAGo@
zL&;&dUtRI!mZL~oYDR+>4t+vZDDJZPxPcOS8z~NY`e>EB!UEEvRs}X&Q;WSlAFBBX
zH!cfPzX-zfsUSJS^k8;$hWdmvd{krN8#uF0E4D^;9|2C|C_%so`a<_*AzXg$kNk?c
z%s#(~1+&AK(AjHpilrW@?*Gw#)(0*ep0V^VvA?@|O5RwZfe77_(o}veJS{1mD=*LM
zga4{VW}!HmC5deRK7{I^$hI0_Ef)cyv5~(I4uG__+Zbp~Zm60A5{D13@<_$_m3ll>
z*}U^aY(|unqUFX~E*@|fkot5(KKC%fSkRWm5xpKrvyTZNgJ1)a5^1AC6xUj4&Er%o
z1CrX5+r10=_SHxb4(_RR@>we#P+j=#bJ24A9zfnc<+^$dbZ;oELC%5HC0YUp!Q<YV
zlX7_dPGISW5o!-ECT_5??WxczN7k!NZ2k%V&g4f}xR|w2*vfm*C5aZ*+v9DS1!6X*
z{Hg`f(I<4SsT6*~>d9zi+fL2pK~Vk@dRn+focFGMJ#Q>ia8i@Q8O;p}PVMVet&bVF
z&bMX`bHnF5)_FI$tt4knKbe-5ulW4dH%imwp*t>7?7CYf{?FR_Xzjn8Ac+Yy63Ih+
zQs%w0O((P_=~VviFX`z}RI;%_aW%p>{S!T**_6P+ReCB55pz<2zVcCTNFmMk`g>0B
z0lc2GEmpr+*cj2HknW>D7M4S@0go{vBNEmOONikiRBRzFs`>y9Fd3r*1^dzA48-a%
zMT~T?v410<B>P<g8Z3@Eu)9sJkY4mv6~y7v!`(fGgDQ_K;z3>ldUUgARfA_A-s90_
z(#{~^tIr98oA?#Z4efrN=(#;q2d06<!V+LpDcoN*cz^>D=z1U@W<zm6>cqbI+z2Py
ze|0DuAykqU%vUoOJfsXZ^>gg>vDpSsiuQ;H*l%nF+lfPD*0h7GwntW1#m`4tFYK2;
z1RTzP?DyVlJyO}w#SpU@DA+`>>5O=ezsVw1|Mh;+RhzzY(f_yonD=tyHMx?}Talub
zRP@EbAF<8cT&^h|`%gnDH0ezDd<&CqOaCw9=)L%LSg2%eWxAx?#7x9J8z*H@ZeP&X
zGukx*H%_m%^IPA|7w;2xz9TL$=OX=<zQsEX=ntpX8Zl)Zc`^rgN}qX0Kxl&g9h-RM
z`i3j^xvbNP(af;;rRr{Gv73$4<rml`_T4$n!W6EL!yL2s_TO>OO#18`kpgevzXZ=5
zgnvkc#j9#!JA62jVSf6VMiV5*>mqC03Xg(j0iwFHfzfZTz_T`n-#47kA$UK}p+^@g
zq#O9x`=n4I9EHt9yyrhHH_%{h3uBJ%&x?yhmz_)HUaIFqy(^$g1k0Uq^RU5ThfUVb
zU+9OY;+UnzW?=<--UR}I>f9R3d}4aJ?Z3BOI=p$g_v)-=<55<r8D0S4ycHy&7q9uW
zCa^$DL}5Tp`Xxk;z)rsUs`_56=8`o-q}HehvD41P!c2uZnh=ue9`Hk+-%QtH0>XAt
zg>m^}TJ*fec+(1+dq22j<_Ze2X<2E!<jF}^+kq%J3S<x4{Zk%!Bk_b9nrVD3R&for
z@?Mmv#p`Kh{lN(hIFDe}ok*8^*9e*Sb$%n$lLkH|vDdLMOjo^fdAIM)q{iHI>lU~z
z%Gdw<4EJK;v;4&b+~<w-5u$s>owA_B{{zTCH@`eD#N~Uy=GYPWEK_?`L;npM&pB65
zoyORdM_T`Y9eHlpI$4^R%=7Vm3#oieo|SGLJWujU6?uvU8?Z9!x|zH(_91?~INiqr
zWx&R}T>1iAhc1-~Tcq2jQQw2-z*Z)nORr+`SS4MKV-q7VVN-b=JQljn*rGgMAdd@d
z7p4<U*dULi`Koq6uy&)X@!YV{jLqaxBKfbXOGY>2c{!EGswrpM4jUzDionxo2U?(O
zlt<Q`y`N$mS{U1=q$|X_=I^$&1H6I9u}yj&>;QNkvF$q+$C5m<uC-Hn+=3mLY*dqp
z!bu+0*3+w|=iz~`MD};x1;bHw?aGG=Z`%tm?lwJ%ob`O9rrNKH?P3G`abYp`y1(%|
zjR|_$HPD#`bxhcok%o|L?8}~T3yUn>cNmTf!_r!1m&iZg#>Q{AG4ji8Y%G%iRf8zv
zgcEB1GJS{jRoI_`i^{(!d05YH|Niawf1uy}?zi-t-~4)B3>>_S`L4<HHe<5#<xcs~
z#}69Nh_s?p`R((Es?p3L?=uz#_}=P~tq8EOa{cc5ejnSGuyIc5JJ>67PLJJOBZsug
zX~aH7{FZXSCVj+wUI1gggDqpPi+B5wux$Zb3>pNs%UL<F6<-*b=o+v;L)Qsg^K%*|
zo?k8$Q_ULB7uX}VOxJyZEz*@v=tg(sG480a@`P=oJLK_<t|vTyMqXFtEUz&~dX~q2
zJRjo>TUBhM&Y#Njmz2MK%h-k;$aE!IVn6Ua*nxdz2i~De2R&DLG#i!5IY1Zks_6(X
z0b8W&{>VlxWa6%k8a%pV2kK|ofmnW~OYf0a$YVTL#B>cjPiG;l?B|wj)MWb;ww`z%
zvE_biT;F~FJ?|U@1`C7}FGA-&FzLUVO?vK{b^sjbcI1a12rL78@pQ(2WhcP*T=wzf
zM{$f=n<A?a%{<D+76}nD`HqNSMAc&341_91{EpvaUg)mn7$6UfZ@NtsQDHHXdIw{}
zc?CJA^&WDC$6X7gZS(g{upZ7U&_gU%*rALCMvmsF+P%ko+tuiX)u?Nq&ojt7DqgQ4
zS7<3yWGm=OfzB}^7<8kIt<1UWnNAuNwkNvfb08wm-*mg|WrYoNP1rJB$#_0v%X!L8
zCJF`!ZAn*PySDkfg1Ci^>8fcUF37v94o8i2P4b8+anRLyp0J(pJkvGGW0cpCzr7{w
zhV4vVlP>k(>`c34fUVG7c?8`v_E+7S9`o+EB#+q+WNiNZD37A&iRaZL(C%Sd$!p{}
zV<X?C@Ql1h9<O+QkXOUrC+vIgcXcV}u3zc-LtO%06ZV$m@f6zwx`O99y8dlpqcXN$
zlKo6{g*<X<g*$ZR^aZ`!Ss=#q1$OAU*uO%bUf<|ne*b&!*Ir)6Awiq;8A_L-?=O|R
zVG=THguoYi#aAy_d<v^yy~p)1UEtA4oNvGXk$(8`d-{*R{fhqfKm3X(&VKwPGeBKa
zdu*EjohP<lBM<ekui@a1$)&5Lu91l@PmjT=Wya*vo2F11<wO27ebC6K&GLAC(|$@P
zwp5Qf70B(r>!&x)vCfBpnyw%hxL_N&WrrDZfmg;p{G<k_($bEIeLTh1G}T9y?V(7o
zF)kdM{GvJ5uQ!<`o%E&d`L;iNs6wY#&1=3PwZ~4IV&~LIZ%1sBuX?oIB#*fsOpNWw
zFPeA%I`Wij|33K3DSAdKrI!m&<h;Gf0j0q1bk*HQuR2K==xS+kn66jF7IKAGq3giK
zxyBXSj-2WjeU}?Hqbq6t_ksOI(hXfTuYSZvfv%%%?$0ky*Qzo>ij8g17I;3ef6%<-
zSDCz&$xZP!jBY9uI83!^N-3lx;_|?AJBW;Ptl!Fk4LkSLhP`O?@%2@vprcI8bd^ES
zrV9m4ePhlCKia-FJG@s8q1ALlo8<gAY^6-{$aMX5WxbE`N=436;02l2-3RezyBE5I
zgIrD5G#$~~Y|EibgHOV9u^Yg~y7VG_>Q!~k`k^c6raT|pu$$BME!Y9$dG%eez{cm6
z>~dy+4BTL&c3yPY*bZFvz}&Tsir7p(ho1y_d{eq!jy&f)`@;_C#D0go4s0JBo7pIy
z=--(~oQ`P7tJ#4>*G<l-*n!RTya&2U|1N`cO^p=faUUW4$wo2HU)0wKJV*K=-Xn4A
zfB*8`8-4r38_UN9{;2vIW3rypW9j#;$RU)R5=i@P_S02YMjvJAux<nXLY@lgWs_Y3
zW2^s%+dKdI<Ar|v>q39~n@xS0qCr$4LeuQ2yytg6d{6)VpZ}G|WG|On{bf@<+DzuQ
zF!7Ip{TJ*)*oC<TpUjZYLT{4ad5(eToA175U+q^PKM<la5vd7B#QhFmL^ofpd*I2q
zA5ouJ+$s8dET@2Ks*8LM0@0xo9O8aZ4RvK~lMmV9Da~cb^KMbA0Sh99<9+d3VWWtx
z`l1x-?+Y9Uy3tHmt{e2%Iu3LX_)vZb+&jZYGhHM7OQ5U$w&M9cY~i!fJ<~1V$aKvY
zc8*Olv1rGz(OO<P1TWBalGlL8=)S^M=HNaAz|e`jPGg!C&x=R9#~`jAbY-I3J#2K;
zC2xAB%PBU+UZWf(naDiPZJ)|xk_l^?7JB|jCX%k(yXoAJVM}^`kjMC5igB`Gi?)|G
zDwX@o^~dshCXdN}W*dcP$^&c<?Ev^&%3R+g8%1<#2Oh~pv;%js%{NT?JJGfJ?%Lt=
z{P{0`rhoh6AKAxz+2nBOs%b!F$FcWy@Etzaf2ik0W%^XL<F)MvIvH}&6Po|^wp#Ju
z|M{QgwBpE!T0<U1-`WuYL`9Qr&DyTk69tCi{bhdM>Imfrn$$XV`g!8!ysknz+Y@NA
zz?7QH&s&ES>j-VRli-o=R#(7YlJbx$fW0Qo??OSy3el0S56a7eZ__o=l@8djl{jOA
z6CED4cct)NCDDEAq;X%UW8z16H<n?Vul!#1OkVM9G?JmdqMsx7vcUQtY_()Pq~&`8
z`y`KvZU>&Hcf&mt-Y33Glt<9Ko?xGz4ZqoYBzej_q)FE2=k13qQ@Q>0Zt<#j>_F5r
zU_0n>D60!><&iwrR8AAPNtbE@f4A<Hyp(lYXLjK3{SWLw<ay=^WNv!)AdmAqX8RoJ
z8+Fy~Mv}+aUe>ix#*+%SLHxhn`mz7^kN-s9{~(k9mnwsIr2Y{dhLh0EKj|xP>kGSP
z8dPPe?wG)@Rkt`+nb`SoqwzQc;J^LDKhf|1@Ne`#{Fdl{`mevH|NOUK(br$USQ<V_
z{m?Yur0h+ReD55dpi#7%W3-9Xa#Z;ar%NKGIj41#iR2wo=|vpVcGc7t@_$=k7<jp^
zMi%YL6VXi%D6Bf!#%&X~g~bbw`o%=xj&vzx*pV`VVO=9O(g<bIBA%SvH7ZieC9P7`
zca!MUu{)B}UNlc>)5E(KlKXffyi>>#>gN?XUA1p+5<!f*QJ0*_R2`c#d0^W$Rm(U$
zVbGP=cf0J`l7mlW0jO(R4cMp~U4?G4W1}e^#x9jjbmey^k1&>9qLts1Wk6-Zu#xN}
z9nXTU1Z*ramCLUhO<gF_wd&4*rte0@4x<%6ABWF-iX7gdv3rV<w#&{15edg8eYe&f
zu{Ba27LES$T@_vV0&Iw^?nal$^GsKb`b5+@%Y<NqJOi7wUNt(u$-60y_T7dwMmO*r
zJSHrT4Q#u<7X`X&+q=<~>}&*J-&M~!b=+hJgmzcmr89OM6~&Hd{_&r2o`A>*3!E%~
zHJM->ca0rJf*p1sVC&A8qIO_!E;EP-giLT$c}S;Y@*DZ0QRhNuks%?9%5z6QC_4+<
z#B)TiVb=n7ILRbwo3N3|gkWov9pD`mW(SJfN0R56|B4MZ2)e|2zl$A_h&Q)UCD>mv
zuNt(m>n?~Ysr&d@&{b_ORQL6E@9W#G{;Sx<@%i=k;Z4?dZWH{CKJoY4<ozhW%KdvA
zIz9rVI{(&G2gmofx28Hs{4CesWcS&pH>qoY5qf!FpM4Yb4?q0)<82K5FZ9p1f8)(Y
zYFzd?E=Y%fNd~7GXp`NXFZ&wAa9aXDB6^f#LF&V8api{}ex(2ZKmH^A_ka1f+hV}0
zW?qwfJg{nK-+^l@BKNUe&e_<#yfq8b;)SiTizJ*Ch;mu*=~5p2*7*FmWCx4*x1(Fa
zxfqO%&j9h9)Qk;nE4Bt~p>34Q4wpW+P4IQG*nWbo(3Got)Dy9F@&!iFtx=n?MY{5G
zU7zVjbK6DfRtgq{kL8Z-8uX$|+eX)J3*zW6Gq%C=60qSc6v4KiVyjBG9^Wm{ZP@W^
zzy{iwOmsgJgeAGme3RfK&znDCQ+aK<ZOE%)M>>%#6T<WBlIPos=jq+RbDR7m-;pXo
zi*1(29<Wtectyu;bV=Atme+(W4jQ98%A)c$VGDF4S!_3XEz-eH*kaq=BiJk2rnNkR
zu5Jgq@f`AcJ)!HC^js#9XI)~RQ=fFL9PGea9_8$+g&mk|)E@e)S!Q~&K?k}vDUWn(
zL6=rGs$~0_u(=)ROFM98qk6If!)}9bkjHEXq8^VLqCED#lTUHU2&9@FKzTWoSCyIG
zqy40*yij+Z6Y1Gh!47C3fsA2xK5OtF{^=iYlmCArIqX*^|7A`EIxx?r3SB$ZJ2UzB
zuJY~opO#Y>9`Uar)v1Hi$U`+A_+51XIihkT3hm=pAL#3^enlTXe&k3M<myA`hAohJ
z6_*(q77SuOF*d5rg^nF-qA6b(wrSXRBF+7%c~n>BfjJx@QbgzuZA(H;yWh%dwJ4xc
zJ%6VWIAMD~c3PHq^2x6l*}bHz4lphlaQDzQ$pGcpHaXTi*kwy@lkL9RcBJcg7OQ_H
z^OVR8_7?JYW}bU~yNF#3*P3n*$^#EYCN`sUq?;TJ<{d!Hjpo=@UI*4Qo^l=ll%Ml7
zVt**FA$pohS@0aXmUSu9MI9Cx#>Dd@wzWKCWp|=0@0vKlzQ9H(Pj&#id`w<-z+3Sy
zC-Qoq=W}_)5~KaS91cjtCIi}XMi(tVlL<cf^BJD2%piAewx9HXuF-~7%jN9YAMyOG
zT&4+v9q6h{lN}(Lgi-qnJFvF>Cw74JAkgaA_x^<aEFLkH%W+P|h#>y)(<l1=`ycqA
z-!Z8*A~natHc$SmjucygmuN>UU=<t8|1yY=7yJf%=1DfyT^Vr8jJ5a<SDus`5%^=b
z#n)foCjWo+EAbnu==rrvr0($PN4kbyx}{~|?bt;8{D|}BsCJUct05zoO?H5ce$Ec*
z>OKiQc5}S#x)ZEco#>NEyb-L*j^yr9@v<{V?D>lxzR8C>DYh~2;ECE!c9zancZ!XO
zj&Z%|L83VD_sR#|%0Y*46nXawBJy`Xq)W<o))g+_!y#NXp1reix)q6j#lfH9+#qcA
z)q(o9>EWA7H?e_@C)b8(Uu>IvXRJ=w5y`t*Bzf1t%Y_GBPFEj5N+j-xg5@apj)>=K
zlc_JD+wM`rGO4cHztui7-GMD(=Ttrmy5an#NY@Ell>xx(b+?@jmj0$A?a<iKq!G}A
zZp9}{T^=(wJtP{@*>6`(hof}gXS#A!vC&oJalAIm@9yaas!obCHhxz*h)w9W$zW99
zZOD4(-35?|3lCI~wgu<W$nKb82L#8oEH1CrcRsMZN;zY{?rcB#yB=)2>A>o0x+G~<
zWFm>w-U@b3$)yXgvQsSR(yqD&y21{Cu6&SMWf{8i*yTn?k_h{Oedyk1GJyj?H};R;
zcA4PV)b>Z2;O|%L2$kI}JSpCro%3_Rwy*<`3ARy+{ROFbR(7B|-Eg4Yj9uiHclWja
z*bZ!Zp!KlB<f#oTUCx&1S~cy^)p>rf1H0JujR&q(7iAjD=0)u*?{o;*#{2XAg;<w-
zcOcSaX%fO4h;M%w2k3Q6eISz|@;qbJ!}G*O5#!;5n5*t|xV_u3l^0#eXuUa46}z1K
zQ+1)Paay{ud*P)v`s%}+)3_`CvE$;~+a&bskDoYa?_hSh(eH)*1@#{We}=5<ID+jB
z{o+5IUE(%$_aW4u!_G93YyHfJjLPnhVJ|;^_(&f=ekErFe0cHHPPh6lWmEqT>9;UJ
zkMXncfzO2?4-nbY&V7snH(OlaZNiKFYSjywfa-?{R*8<)NpO7^*3qJ4g3=8e-j#PF
z>1vdWwG{jCiK@44=V@qA17oB4OcnOYb+K}{U9oz$2d%N`pmkkt*t(`%i*&`DO3_po
zj;)1x3!cX6&FYppl_q0?Ds=9eiZ-4rhVd^MU5o8T##qTFTzSmk*hg)bz;mK9%}a3l
zw(3}mVef1UVLy6mTl!+*d6{IQs1K8|iA+7@Iq8IG^NDLw6_;0Ft99nNVb^h>zuPR2
za{iS(Z|A*`r#syrVN<^rZKM32JeK0o<87ZaQ2?8Wm-oe_<MFIZqUY7+wRa2Xy8>G&
zm<8v><*oP`Qk}>q%@Gs;o^yasov{(#txHfr<T-S4Qy)gKId+^)!~PlMu@tjWQO}$D
zKy|~|ACubJcVA_qI_i>R8-YtZryeZXMw!p8Y4uKc4s1f#ndi`BoX<v+eeEg}GtWU6
zwx4~U<Pkvw$T~ng2Uv^`c7|2)OemOZ;(2Kec;KCUR|I5e+th`QNzbv^zzZ+k?ZD_;
zYLr(j(2^|N4I2f2Yt*YJsA*r)*}nYdE9g0)b0h2q9*fpv?&0;*E4}V-Y@h07Ge2si
zNRsi%rZlP6PgPq8_<Y~tbOAuH%Ibpj!Oa|fW}2=tjt+P@%!thEBPZjv`C$yaz4W5d
zn54$KX#K(H>I4B^WH3R*Py`Ey*|Ba5EX}!CtV#%uOn50XL7Xrlr83HYB~H{kb)BB_
zh(&G?5j|R7yFagnW;zh0JN>X)gQ!K-34KX7QV3k&yF1wgmeHS*;YxI&aKE(eZP{d7
z1)W7fIB&HHtw+*#9jG#Cj4#EE31jUt180W}ngr^kr}7$x1`5ecgYl{{zim}Is+d^Y
zKFKJwaDEHz$R<G1HfZ4!_N2lhe=J?MwkM9cN8%M_0wS%d3Z2Q9(%9ZpTenF|m7y`b
z+Qj3r$WNoIVlS~X0Q-!uJ@8zILoz2Lc>0WuR3;`m7MCYmeQxMnJTl(er?|l6GTLA?
z3t7h&S3YHZ46?3~7c6fid=G;ii(XJh>hXwyhuSg1z;!bU$`{oYKHN?Z!(+aAlor7@
zkn0wezz5@751kq4*xBIXfI;U2^ce5z>CQ+y7T5vli@JB>dXlKicL_4!bT?@#{=Elz
zHeE1PcbzvIS8JlN+=r+Fyt=<jpkpE9M3m=FVUY(isu2`Y_q?z-*#XF3#7<#bx7nm9
z1@d3f)vop)eMR&7YT{{e8yEQihoovJ-<4NL!NB&X>V(*sV4=zrQgrc&e@^95tLce3
zJT&XVmwx#IID7}#%WhFP5_K!lLSu3U6O>~B&@^S-xL(E}Uh|80l}#+JiCIw{9=gV|
zseLZmEm&}+plhUqS-16}6GhiRq&9`vNo~G(1;OrS9`!$BpAi8IdGAUSO!&YNtm-Ss
ztEw(^wXxkJ<UvmK-_RfEu^-53ug3q8$uo6YRbDZ<f__dS#9@C`@5!;sL>zXu!6p^`
zf8humbM^ym3Ga@+#uom_X@I_gl0CE@G)y>%e=P^2qF*q(K_T!0*b*Ofw}9JjGFn)4
zk(hpOYeYwv`M`NA4{{B<PCOp(R@AQoHnl}ncMmjMkOd#ed^SX<G3A5L=(G#=xEy5;
zi@mXXh*wv8jVM&2GV2lsfWY2W=7anho)+lHw%!N*-nQ$E8gru~<Po**m^`tzm7yv?
zjICFD-hFQ}yWzEA450&C*aY&O6u@pgj55-Kt^jH5e#1Dx>E`_o%A_vRa!Lb2*ER5=
z1XB5{=otrfa~m7<$@)`@4;Pakl)Jox7V_DA7m9`?*tDjTDd2gbWOK;*)Pk`E-@;^!
z*(lImZIDs66r-j5+CzWq@&W?6T__VBs@81pPSST28w{%aP^i-QieLfFXDkC5JwRFd
zFj*+m2-%Syt6p@`V^g2Pe;dzUG)1BN51m~1ez{`s9KJ&~5ri^mCOcPlSqRmr<6$@Y
zSP;+yFnAGu(4N%ZhQJ}zhqF#(!noN4vGn<R4h2Csn=Wp-{A0|`{bbQVA@vvdvyN+b
zo`92-k=LgEdnwkZ;-Gcy2E}HP^asrrtg8Khz#yKB(0AJkCUNz7JqyLoX(6&`^kQ--
zfo@}`9_DO!1U?jBWUM+FSW2;lKS^)X0$qh>yqGJU3-d_2ju2=`abkU!@fEpUz#;K+
zK)2kl&@3oPz&4!>ueRX7D^}S1hVw%dTUVZnIc?qtli(iOENSaB5}vBf8L4?z?2WK1
z5p*@IN>^Dps?!)~T$~zC<r>qLJCRLpV~j83H3Zo;8~+!zox9Slg6Bo}*0nD7F~b4|
zzo$*Y?tG(6Ch8eT1@kb?0<LUwTg`bzpQ}9A<8(x3HW66i+t4LR1;_1oNqxv^XLV<6
z)qa@Iaw;m?9er+C5FzNA`+!8g-~lWb3-ZtjXQj6VW<sX+7ADfA{w>jkg9Q|eq)8^b
zziS|d*_hFm_OTKO;eDvnt!n?>lxyx!usDxJ^}T6t<#s@9kdDBuek^z>U8?(SSV)2&
zg)u9}ys#@WE)e;HJi6|H$Lj0YI7ECVOKqswbP(dSAeZ$Tl&7hE?FD`x1sf!GUCNbK
z;rZ6CRLnLPeK$}4+q-ZXJnu@$@!O}joql+gNPjGF7@Z0h+{hPE)u+TxB@3j`Adh)5
zFv_cVl`Q*(IC$X0%XV7;DEh8yXLJEj{D-T_2dDYDaHtC3&)IdxT!bC|i#ZJU5r3-h
zuv`E*>x5<Xup7hVpKtk*fxHjwVJLR&rzIDpseVchd+$L|F@PQ~A05B&^w^rNe(qdf
z{({cBht-qgeLeWDvFPx7aK4LnT>QJP1Y)w;1_hI9Bxs?|IDn1J^$F+svmJhwFrH9r
z`VE6d3~cgEXh%9;<w_5WDR=6|g$YEXyAC9cu6hp-65_klny;BIag4;6)xnQjWqfe6
z;$xTuNbjH<KSB$AqCM$=qJ~PRXE3>HoyJkn@C%{`x)~F>y;E3dh%_P}!mi$v65TL~
zFOw?%KJmt`KcAVDNFQ`4;urz|Sr22AJJa(s=Bd8Jy}3*r8VvI7I*gVTiuSM;jBrx_
zS`U5ex_8xyuBtn9uoX_%ENe#`#R%DJ{9Pv~sf1N)e>&ou7H@R5Jio_ER#tQXW^`z{
zY>{QMpJLBe_VLUXM55@t5!ZR_#GqIADmtxtzA$k`q?2#r&><>;4>Q!!7CTo}4h<xY
z_!|cdV&bGyNP}k$ef|pkU*pwH7ZF+IJ_P~=q#xeZHa3gy<DGULy92s8UvUuuf;zbo
zCFvCPg%B2d$ZhC+OAF4uJmSwt8X{@<9=pwMYa1mK=g@bBMddb6(lvE1DwX5w#IA&n
zYLedtsXgk#hq3RA{?6|KPxW*0UIgv&f=QTEl+SRi`)S|8Jl4TO?%(q(qfP8)!+Y?=
z0X?uiz)B<oX`;!8gF$bY@C)r0qNRa}nC8nTc8iP{e4#$v6Z@@aZRo1arWFWn)NgL;
zH{UT(%XSt&Hl1V@nbt+&J};oyoNvMIyy1(LAXBkVq98`TH5?Ogc7QLfe2JNEEB{W0
z+8Tsnk#7_xUIQleTb|Xgru~+@YY7aA9?Sgc%(r=TS$`XBkvCV8ArwWBz?Qil(Z5Q*
z?2-Jd#rp~kGkU+l?;|^`kBfsHiT51jUiIGn2iz^?O&1bs0E+RH!wta`CA=$@uprXu
zuB~(;O@0q#saQ}&vFO@@2?ZUT%i>10-A??y;_M)?gEEm+Cma9E<o|rR|DgRsmkC6%
zZ#t3Ho9(vY9Z7s{7XtN~{9n^%bnR2S%8uDA?aL8xRWNSp!Pe+x6#50XcP>R15QTEs
zmtHKgmQk7gjKb^-xr`2a)5(>*#(p^TzYytKCZQI4;Z0zrRIp<PnGWxO_m8@b1GkG#
zLR-LP;1zs>4$Nu?YVae#1DaY^n?~IOJPEpnaWL6E{(^yKB?JYc?rGswcYJhG-Sa+z
zDD++S{!CEjd2^F7_sOa65_xp2-aaOov9ODG5ZNHmE!s+*x4=TQ1#(*7rTBoRYu{JB
z8^Bx?u$jE}7>t7ViVLRdPjw1GZPI60Kv|u7jN@PZQ<UzkUR#LVrnUU|g0=?SO?_9f
z`5>3wxe^Quga_3F`H1M?@RBoi@-?;3u-{DQ8_a|XLYe8&9ltG*W5*^1mh0z8^MW0@
zgy2oFQIQ8-U#{r8O??^4@N=+Na+|z|kJ%&t;`7C95fL5d0(HW#!*TB9_QEE_G$@c?
zhRhalHER1Xs}UFy<iE`RZx6u|%>+yNT6N~3o6Imwi3*<<*X4V)xmbC>*vET4Cg0sc
z9?4}k1Y;Qm<sD13e-wgp$kR`b&xqb<KX=pl2hzm{^A$E*uoC}4gAi$s`iD=O-{(Eo
zW%c6}ArgK=L|5zGCQsNfjT?AnijP^ly~vn6kzD|MINQho)VxPSw3A%!7V>n`JVzcb
z-5y2~VN`V`UMdWA!SdPVMrYD}lH0rv?YIlMu;Io|bA7?#cgKS0oCQ*<bHUT))z9v+
zKNSr*pvt{L7U1*HBP8Bl=={l}1z`m9RT1%9%HbX4Imhoc*gBxxmUuwv?nl3_pC3Gz
zk(<x+sUas>S#GMCvQUEeQC>{)cI3g~QUcZ}JD47Yqqob-tM(rWa}Q3O;Lv~-zW+kc
zUs#y2aFj%`Ohc!i>jeMSl8C2w1<n=Utz$lI)%#!c2W_d}`Euhu>u;=o{oZHSBtQ0U
zT7PKOe|0QHF~oj|KlY<O9pB-22|ZnqJmMC1vfjskr<Lix#e|iEAVL&wc|gOtZKql1
zI%ZzU19T!(EBqb}y@Xjk8ew%$Y%0@Y)V*PVL|&+SOjHLXQfvH?C@oF<gMqyAyXr)Q
zufG3stuEn{aHRw%8xc>vpg$bj^RFz2x}jJ^@-|`E2i<Q>ztE<xLzw72*k6~wvXCQ|
zA3U?LVWs<$=v<%ovt8T1O!utybWIdm^sN@h7y1d;Mhqkn*<ur-Wzl!dGxvABfMefP
zZJwid@4Hs&7<G{8y5DICeh)ddrn(5;<6|2h+YMtg@q4QHY>#YM?8A!s1rPf!jgCS;
zxu$IP8zOV+UEarE4?ZgVJ|f-ix^9yPALb0u0UPtPr{afx&x|)>nf>NwgWeYW=Cbg6
z-t9MQ-?frO$m>&nGadVA9mm70q{`_|-{rn#nd&_Ao1OLjf!}kilW20wPwsy7>pj26
zehM-=`^{yt7i+)yE*GZ@&qrS!J7VG(V#Nd7y-V4KE#C7UruX{%q3()F4;y@mtwdTT
z<mr__C;v_%s*@KBo+H;6c}4#L-zy=qv~c7zN33fEChxe|I;Sa<pkoal8E)P9LG5-&
zhtcWO*YxWdnSRc0@~@#iOm3RJjOwoX-cInH%lNAA%DR>-qe<sWdN)f8qt9-kOk1F{
zE6!Qmvt0~9oIX0v6ExdJ#@wsrU1RpuoKH{o4|Afsj@j4tcJ8}C*LxBIFK%h40Aa$u
zt}Tyyr-hxaI~L|j@7H1Pq3!W=M;bC&xbN!gIiCam`2FO)Hhd@gtiEe;SDy3n-`sa^
zvCoLr(EEJ&c@D%EgIn;MCv^;%%boG<cKGF7vK+&mek;hr*_=;%qVHbnZlT4T&l+d+
zz3$oDGhb@LzGXXy5&SzY^B=r^*p{OW)Uj4q2?=u$M%!%bkInJL{H=5FgDi4wV$*by
zP161dWh<w-)u{g}{h#y=qO(|#xF=UnktFW`$SW}Mk`AlcRw``uk=+}zor-jUK=LH+
zW=(g&OPFm$RH`Xq)WxpkgSUr{(tJaW2+Ey-8gqFjeaCNlKNFsMVqd5ec*ZsD%PWqT
zV*Rp`Co4B3HA4ep8`H9K!j|#JRWz$hUm%nt^+C`bzwEovY((iaTW!tlCCrV&Hf?<|
zIvd3Vx?tZT-lrwHvApZ%T*kkui*(jTzk?3iJ~sDGd|R~_;Pxt#gQzgOztfR+u|AAE
zbgco3+=8w!eX$DcFc-X@<!oA^H=AxVvlNZFy<3nIgB<&V>7K}!NTB#kY$RQvrSXE&
zvv)oR{5b4VI?7c;sf|NDN$ySf`$EU_JBRr9J~53Z+mq!1^%ZBl)zgx`#m~t<jy~4J
zZ!+`fI+JaW)?HN3?YT*BbdptjDxp+6%5_xT%*(RIKJz8;z~nl~D$S%do1Xj?zdh6+
zY?aN}n%xap>xsMue$VeNFQ<DcJT(SMG*;1pB0JZ-(#{`vOF!v?K-FqW*usxS(Fy-D
zsF!OVppr#$h|i#hv{EBKfYf&aj0<@kn{MmmBy`O_S<Oc7)wm<}pG51v(S9lpI_ja-
z6Xc%!`=ReLzorK{4ecKMfdFEKG3hI&LVL^i>xU9XDA89^TP3pZ(bN+*i{hc9Kb8B5
ziH=!ElWu0)6IBQ0QNQE&IO9h)YjX69h!%Z7{u^)|`j(^b!UGthd2D>o_P|$)_Zdw?
zyS94K7xL&f#ov$Y{-XGL?69IA6YIx9vb86Jh?ZyFSN?_E>`gS9qd9ws=8XJZ^<DON
zrbCR=nIjw9Q3t@oAUl)av+BDh|2Z&l)pt!5rgmxW;<H;fw{!f>#4FY5*E6=Klh0zf
zy|T=RBy!5O2P-{wLaAUtbjfqu<Eqfge&Ppomn1ulV<79KU%9W&G;$<D9(`_-r^!xW
zq<7R^v)hv%9mhsi*TJtrxjuaFp2=Sm8W#8u7_bv2`{n!wNn;|*+DJ14zYnRk`1w_T
z@XHk@t;A=r$>gS~h`VPP;DZ>u<Xvxiur#7}p*yV*%`+vzevYe#zH%kMM6)`XNOV{5
z$?lbT{0cd>=PUWnf&(h8MkBB5qI%$(Y|qMmEI!AEl22pu9{qvIpXqey0i%(NeO^E7
z>jFKZ4VjFrK2ULYaU6wa|NhQ9=ABSxH!!h%W_$EzmN~sa0!8SwpICm+eKbAstf!8k
zsiV#EmFIj`eQ|N}uH~l$A~pA8tdCyHsnujYZIpLf^d*$W<%_y#?z`N-#`xWwoVl;*
zO0!B{2dGwMrl@C3ndXNvd$tAfUCG|T#(j`wyo&uj_FYyOY>#wm?NGmcj`b4F`V#fX
zDr|G#b><6aI%s<qbzg0^b@nS(yk6QH*rY|9M6(P6I+P3(X|XPrpPpPB^xu8DPxBQ7
zAF!)T^`oDwO}Y(eJOM9#yUrX$+p~Hu@}oo+x?vM(jQ%dAT>yICX_2(U{CA|cDj<nG
z^K<PUymJUJ|2KT^)9*IP-z9&Y<(6YhvwOZiY<pJWj*)oa`y9>VgrUh>C(7CpSNiO+
z*m;-*r|?`4ZD>8?F_X_cl8bl%K7N+=rRjqv(y^D8car8J>GLyq-;!vtVtB+gYa=pY
znHW2<U9e{_VyZ(<S0_3TAt0LQZNJ~gi}%MtGxAt5r)pl=3cZqh1a3F@d$9V`NYquZ
zA26csVjW0nF&Z@WpbP$5Q3Z{nN0aZW3mIMYl+lu8dZzl#$miZ6)&rS~gQ?sT5*@v;
zd-wL#<^%5|$v-XS&fgcg@YcPyU^Ur6c&0fkHT5-)spvK~8CQ>ify!K;bzSn+C5wJ|
z??A5u{{!y|Q3%PWgZvoDBkj6A9VhJSQM8OsME%r$PCXk%uff;Ry-k-X+#hM!^jAHA
zD%+l*r;<~ZsGoZW{(Z8!CDG16(JWute$E*AS56r<--Z9Uza)n`%LEF^wmbf=9kk~0
z#4flJ^zD}c{Qb-Q2LFpg!+W1o{O|#-M7AY%*9CPEt!BPtyu2UHavCE`iB`6Iem2@A
zl+N}|=9@!XlW(DI6pfAPA>t6SjeaY(mijJV*e06v0QD1T-<WkhzWaed%lDuCuiV$f
zx}z=6HbwMkr<lXrvCj3O&X)d0{1Lc68-{Un8<XEtPTrv}a1hbG(I6HHt?!DsIvx9k
zY?oGj7I`_grC6OrQC39OVx2VgUA}t^ZO8YCw4en>v{lGLl3T`D!s|p^TkXFyHM4z3
zyZW59vGRLz{aJRTwOKbv2j8nYX8+0i&`w9acD$ZaYL-onC$@WMzd650aR~TndIwBo
z#QR-lkSBL7WB!b<eL-g2Hn9AV_%Mc1SG14~su}#1--GY{#BWYAZuNNjgV_gL*q%xu
znm3lOeAmzMd;A@avX#G=^xR5D^w;X;mB=RjdHn+u`(@K8f1l`=0esBetFm=$=9ep6
z(QoiHA(DobGbwk;)lP)Dh~4Ig5Ktih^+P=+#Rk$yi2RgfGiEs-SJZL*&3zrEdmA0c
z4N;@AF3o*Nv0T_$FX9+uw(XrlB=U*9Ed-s3o=8cbSC?WqjIT)XicykKo7A@-I}AG4
z%~jtezaQp&%zvsr&YBivvhDH6UP3=goz`<c(eKf+V7TPxm9G@}2~O8U^Y~0`H_IU%
zXyN1d`0SZqmD@xeF(K?Mck4NyJobummu&U&a=kk4NC<u{k*<A&v84JAb?Ud!Hd*`L
zcNKj@w5k{}Pk?*Oe_!A}v~l#CW54IL@b;~5ws(rO$bHVjhY0!+eV=10sPK*lzPPP$
zo*(VTe19Z>znl9}na8tS_!Ogj_qm*vPvh+)<?)dY-j2@~20yFgcM3Wg=&62k_M6?;
zLVJ-`M16@R)P3-KR+#6jY6>`6ml1w(YBKCTs(wyKRsW%u7(jq})c5H>&4;*q2ynb&
z2OR(I*a1L(5UEhN&17qm4^*O%L@~x<!5BF5VGHCPwza9xbA}iG5*V_OTW_yx^o7>R
z_sMo0J~T#cxag1?{w|Z<D3|(0)5Y<t8a<^7S^a?9o>$ojWm=I&=yxen5vx4m0i`T4
zVqM#n$t!fa;UzU6R148?mfnV=l>_mnm3cD#u4;IvG3XSMwULHwdWWEcA3g+#B&Qua
zCrHnr)yTm!n!`_(1t-^Q<NB`p_pHCGNcz-WaYws43DMOg+5s(XU59&wwD$29`}C0W
z6N~Y3h;fs;)PTr@VWCxi5=0AQ5lnoOZXMi=kL+2YwepaVLz1R(kPH+%P0X`_l)u*`
zKh^nEi~r7NEEF}o<9$_rAusGC>%FXp4SXTj_aa1!_j(7a+vH%RG1%_9V?ytP$X==p
zkiF9&LJmjkLh|ko&_40NLO*(R@|v%1D{k#W)|bhTw%%s939l;VDL69~@?wP&=@$H4
z;kDLzz^=~pP(jc;?A$S1rxCq4m{%yH9T{FK^ywx)8p+qS4)Kj#exi)bwkOC0#H0j0
z=JphOm3+g<N$S3~uFVIZ1&b~1uybgnukgryoOQxA6f!x0>2=%VU3rhW;<PjMOSkKD
z2VC?!+29?61vp&LYkT@9biRM>SKdL0-+EjCP~P_DeuNw@&4Moj`p`K*?mcCM+Ma^L
z$7r&tW&?xzN<PTW&qWo%B9HYoD%&QL<AR=cx_{Mb(^K4ELZA63b)-w^SC)O3n>9Pm
z5_U8C(S4>(d}rCbRNWtozKz=aqIzYbtaL#BUmR>T$g-)ufgW?y(;n+!2a5j3`Vx7m
zYisUy7qUQ~7&VXnMGpS%=C5UblJ;F)`>qm<GVGMiJ+JyMg=qG!Dy?;tC3aW)F64bp
zKHp?}w67_}^WK_U2>Wb<qnUq>M<)ukZTU&sM=C8fjnDO6+MI2uNd7G@?_2c@1RbOl
z9XL%JKqFBx@l%ldS!js`Rp??ICYs-Dk$mvnJ0I|?TYf0cIbrgg55m);*>6@j)p<q9
zudcC=>0}23x~z`-)R#eS#Gw0Cb%xtkU6Ay3g(HzE?xG3%;C<W!;1Yq4p9<tvU&P#m
z))H^}+E!$~;{}7?OzJ1V?=qJ$$)B~=J5714d%DN`E;9FEQ{MaLoxnu>Xg;p`hZ%q@
zbcM8taGG0eTl)5r{br@!wX6JswW`<AZ|(&H@nFxReF%1;);#G!Y9H*S)MroxcKbLJ
zK;AP)?ful~y)Wf@v<QF$Byor~gc^P^d<^zE(FYftk<wFMbG1Ft+0b{1?eV2R<O#P(
z;cR=7Z=T2OlqW7s2E}jg@S6#B7v1TgXzNHXq5ZQ>XcV72u<;(LudV%$WmcH`E~bqx
z2#e~daZuY?lwNkN`Yudxso!G(Guj_WpVoDftC<To*%r+Aa2vsX1RI~nOJ;kRp6Xl0
zocA@(`Iu258w8me7hNb4+;``ETChFZCt!@SRgWMS>nmrT_144CCiQ>O-&8s9oa*6T
zHRsa~5!mrKK7*hx{T}$uelAgzUC4t@T-Z2|=do-NgbXJ`P(O*AR9_t3D$8CA0f;Nv
z33ZLaJ?N(OTYlTaz6*q&Hj<j(?DAtI#rs2cOmQgqOiI)i{T|XdilRl1yX)?w8d;b8
z=AwPqG%sXA;(jv++1S*O_FYjQgN%re>U=W487_{Fb$M*9ejetw%ueagu$L8McEu+m
z8+|P@8wlUk#_R>6R4C`8%=3lO@9~>x_Ip<H14k<RJ&QRX(FHnOac3$rR;+9sg}E<3
zGeUg4DwLJSFkjdy%{vSqVd#|v8cG)8YV8*FS4#2c=G4RWXPJ9=*8)KN?B7KwT3DUp
zZ{}mGmI_zb^_FrN&q9F6^3k5>eDW1BuFwXoE2j<T7sPg!@4G0I&Z<olKy%%ivyNbo
z8_%#}o9Lm9P6sBM+!9eftT=WIlRkuJDB+I>u9dr(J@@eP-L)gc>QoQy)bKemL+aGX
zi!+JMwi%yu`}v^WFxI!Z{rGG<p$lU^BS`m{(5`fg{b(UNr_r6?te;owobToDNgz5p
znX;CjdjbsqriPnkOyh&PNWWZN*Z<()qO6;EzNXLdKBpZffoHv$=&Ah8^@QQ?Tz`-U
zB3k03>0Mk8)V*F}q0la5WIA9F_jNiRP`$W+rqR)cMZVvA2j`XR=~Pdm$4nJ}zR*JM
z=y>rvpx4H4!6Av0r0^f=$$Q~@)+M6(nKL|?4A8zDK@~@N4ZlShoZnd|QrR$Uc1OkF
z$v*4$KXr)UGtLJ?|FVVu-sLXC%pLO|x}*lg#J$|_hp*Y;O#E|Cb<H-S-oeq-j-DQl
zPBc&S%2WJnS?ZO%Tnl#jOmAabM04L%3a$Mf^_M(dPtteRD@=jT_HA_tJl^KsS+Mu8
zW4^jjKkbWh|I7padWS2?en!76+XnEj1pfn=YFSoo^oYNqC&OSo_g&(#6`M1bUwW`(
z<*v-dKEy@8>)<KUcunm|M)a1I-xJ%4SXS83=PX-98$=eM(rw}Pysvj@Jyf;syI6Ky
zw+`iLf>joy-sktkcc<((OC#1sq}@q%2fsP?`@MKyc98p2R}Xs7lh91O3?PiUNry6@
z^ZV1C_c*&UEu`6*eniLjU;7NgX9|2SC)m8cZifKJ-zR=j8e^oojsqz@6f%tS>hfh4
z@1XVNgMg6^qr^U`R+@c=d6K{Cq?>QsCu{hZ$^YlCj=_k0Q(r*?3A)TZxc?yh@yVSQ
zW(pT}Ytbj3`suizXp*1VPR`FZM2ObVx2w^W;2zg$B3h1ZB33M@LOrt&Tw>pa_fGaa
z&ZAek@zxj5z2Rz1D7VJ(J>9j>xVNlu9&a~#mAmz8>gHe!rG8&%$rpU0GqpeKyQDvK
zo3^yM3%>^o_^S)@Hp@)(b%O2HMRN*$a-2cSeF3Drrg4|;{a2sM{Dv@JwVErDAhF_;
z*`d9XXyEB-)xN0{U!J5p(NR8DdaxQd#(F$xWxk5t=q<wU5m_ahm@lb4f8V41pnLDd
ziw}A@G?lw@FKzX4bSkx4?v7{Zq>iMT`dd597xFkjARRF+{23xz`<+3rXi?9o0g?Gs
zX4@n8=--n3*Kq%Ax7NOFZog~g@jYrObVzAWvm8xxuYGM}C;UX_x5dS;v-@o|H}MF8
z10Fyi3yJ*x{Cy56_&HsN&t3qKzx-c{tMMp@0N6qq7sRf|AW#&wd7H{)Qpj^fx>)4R
zP>H4F=I_{6#1fh2kvQ```SRN2Q~sWx<p>nZfvzjyosJB(mBz(_iT>x#T;J&>w<tY&
zu!kpaCfMTi`Yb9(?C117TuBjD@Tb}qij!1+Syz0Aqp_Ru7u^Qft-&=G{~Y9})5KSo
ziFw=lb60fF+5$m%&tNQ{QRJn(om}~xh4^fg!{_QeN4OSUbP1gv%ig`S1&)p2Sx+mm
zuG=4}Y`e||zDLYNkGXNC8}Yq~?A=fG`^=tVHMt#R^`7mK-)4G8deA}6-zQVK&g1o@
zB;T72u`3R0{I?Pe=#-1Mz&?^39E@*TzdNINmVUXOyt4DvwFBZ^Tpj(9$UO%5QTP3T
z(RE+s*HO;zUe?!UJCNE~*bm%y^g+_|q3=2qSGijwc49xL1~&RZ*%r%{{howj`aIJG
zb&228(+l@CRxXx$)_zZ)+p{R^M}AMC=WPD@Zws`OUF!=QcC7Qf?_JZrg*%V_pS@A&
zudO~hH(}@RcMtpg++$n2lAU|kGkw=He)Czq`HtxOKa!vMr$`U3=?R;i<vG*x*?Mwq
z`FhOTBMlFJPmsGuZRBU~@ftc%upoQqedlfYkK|`<d)A==?Lj@+Px8OB-!t3x`*y_n
zg*Or;QqR2W!?AN|CBja|?XVyaF^Vnv9KY#HzK$6PNc?gVUP)>}^()j_ozA<X*%qw*
zW*a%`uW^UaGkw=u2eQvVr~V7gnA9(N)|Mapt`i)~@wC^o^k1fD9=$^$+qO;j+96t}
zcFUg^xcGXH-!p&qJ|+4-(sz~M2}Q)rkCJ<c_$m7h%0I&7V4EyeCwgcHj(rX~c)D}V
zevi%hl=t`=Pw;q2rC@6*w3p;(I{RgHEoF4&tJBek@;o#XuKbQj1Lh6hyUzM9i~&|M
zu)1b1ake?LpPuJ6BL21f9C`8{zd1jB=06?i{lvAzG1YVK_Z;uNuQz;ec)&kC>o-3!
zr=;_Ray{WUBfTdUE_Ko&F4_#+y~zg>f1@saho9?udI4Zu^B}(a3XXngp=0)KcNCmM
zzDxf)fqii1^~K-iJMwcn;f|egIpFi>iH;N6{@lcD-KNsJY(K|4dD{_ZHe^wm@qIM_
z%^h}k+~IMr|I}=!_vlGr%uM)qbt>3YCE+?ZU~}i`5#7EUBu^X)jb?t$zxD9F>WXxH
zk98-J`6^e&LOPK|7M<g(>n=OMeOz3E(I`tAob#kFj0q)22DDhc-%Mu;NX}*YyxvHI
znHN3O4VugMwLZ=K0v4M)E5|`PEgi0-jLJ%~-lH99v^AyN8|?Y}LY~)r4V3H#`S6}X
zqiEYmA_^uMpYQdG1Kq9GqrI4IK)jsKnTH<T(kEKZ&l1tn;hp8kc3bEc<D=a~=d-eH
zXYITPN3yq6CcT|yd0g{i5OB*Qj&)^wq|W&)6kIh8W_TE1wDod-@Q(U_#=iKk{_57T
z&H4qt?OnG=cjq;t{APO<dF_6|xK?ry9ZT#su${c!`MuV^+4jtO>oN@+)>G4~zRP45
zA2Co&x)!6sT;D}6d~?{*hRn9d>2#zWP1rNex$ipKv31`?lx>b$^abtWGkUMtp4_*^
zHez2OzpZ^RI^fBDT<_Iwc;Y`LUyXUvyX}}9|0KXl@5NJQcgBBD7IYVOKFhM#k=~}S
z`>xq8lJ<vjAmg%xx+A@3YOM|1(Z38&ncwVUEuYJD`}x2>_Y-G**NO(NpYm>VKXK3R
zIbu3{cX=+_kE4#Q12-@P>LxE<*EC_*1G0mzpuRHIANz6F&ET8hVpmChEPKT?_ULr*
z4dxvIv;K8sQ4HN$Nl)OP$wTBXzNdkAQ?Wvyd#L^B6VF$q^*o-N7xdka<X@(7SJc;P
z^2gLO|4Hh)gzvcT=wp$U|8l+W%7KXTRd~ne4oU$*K0Q-MU)836XFY?QWZNIxJ=#E#
zFJBy5$<FGEy6Sy&?~PVt|JYae?)9!^>5kuQ&@2ftnVll&NyeS+Q5>_oPT;YrPf0o&
z^{?v<plPHp&TVj?+x7E!h5eG+K?pC2R`frgTky|9pZWf5wT}Ij*pqcXy`J;2_F}CQ
zxY_R7Z(VKT-FyAMwLLoWI?KL2tH1dU*6<wqxPI)rqV4rIpf7Z1%<0u&$~@~{lqty1
zncp1!gSAeEK9th?9qdIUU+h;X(Gc~v!~4y2j&*09q!V9T-fQmrWBn!2>nK0jAD;bz
z@QQk$yK>nUtmMh*?|$=)HOrhKE33dpn(It{k34teD}2y1zh{;o^x1iy3cNUuO=i1L
z7MQ!X9)buuO;P<?6PMK>Gg()E?!bX}Edby$VF*rL6h0V;aU)zpBDjaHh}`8B@1(gj
ze9t0=wkHEkG^ORjg*0W6S&_-wnlTS$kum&ybsWf1491||jQ`k)kS#_=3~1MBNXLas
zDfas*3u^eT|B1g%)ueZfxT6xSp3iMT;CoxY^HhiGWNbgvi;@kDG$;#u%Q*FS-};1{
zeKa}W!pCCy3(@yR`ROO$;XGnnS<wN>q=b<#;d7Kbew{YIkL!!S7n{9KlY9~RL{;QR
z)|u%&k{w*jzt%C{NuNz=gT0%HSc}t->+MdHh<k;@-m}a!2bQd>(|1bkCOa_E8?wD>
zKk+&0fE^UpY3Ur!y5Wvjv^~+cb4+<rBiOkz>k6}^N7_Tzw2L{DpCtDaAB?`UgJ5n!
zU&(#I^uYE&XCK)f3XZ|CEZGH`+l=oRF?eRQd5{BpI_ZreK(11e-K{t_(72@EBG#X)
z1OC!3=ervR;Z^t^oZi-bvA%a#ij`cL?bY(!2h*envwe>PsJpgHf3LZ2eWjk-i1IA&
zBM)GbAle7yoi?*&FQa`|2~BnPQ*z&xbEB4We3dN2ygj_CTO4Sa>(6#0wjqPG`Q0O(
zDPfQP)2Zzt*Wt;|r*X<;kIM1=vz?0XvZ4pd5B*56&#N{VtI}ceduVPq(reXb#%I{I
z-DBT1`@4|Qt`BAVKCbLHTi@B8-ns8G-RfldQm1~R(-bj|`l9Zwd`HbDN6~-Ea<J?p
zdguodPYlySk7M2A52yQk!f&2@6s19?XT%!6M>)!M;hv*k?(`bIXNxrKbKM8oN$;I?
zin{l4JqTmQVfG-|&~e4=Dw7SMXrqGsg!e}9$i#PYxiGpDE#+szTV}sG^3AZOF&N%4
z>V^3eg(m+i+BUb)T29z8=r1xoJNXcKvhJ7bJy(y6mtTTS^E77TvRwI7pkb^>u1Utp
zWx|64X!4s)XI6GqW#z0d>iyhrj{QN@>1+dYzcns9ey7l6L#OKr+q1HNxzEg)GL~$+
zh{(nmbYkP|eYL&V2Tk?FzOCoLp@ofJ&@aD7Cy%XaeYWFyTxYgsF=xf}GlKO<K2I5L
zcK0}TJ4|^lY&d?;eOF(YlxVl2O`hrQ_Grb|_}f`OxVm?G`99wp^)1@<b~fizRHu8H
zeBSt6wCTBTK;IP4|IPCcro-Xc?2~dmwjeF?$2O+~znSv;2!Jdru@B31iTzc!S6OEs
z&H2RN;{B^R8%K-hXB#*9iHqkWUwd2Ifyt*JTKfXw8PI5@&ntT_fqVTRhvMIqhki5W
zUt>EHeHJt?)&_H$u+WqB!TB2w0wzkqS9OvHqFE8Lo%^ZRyB7eQ(LD&raRtT9j{YVo
zg5tp04NtCf5`^Lg)Yr#nL74{N(@$OhTdZTj`4fd^VaGOp{AR0Gq&eqGIdrPBrc*+F
z&9)R(Grrv<xfoUEC>B)d>tlXuHgeKN1=!p1)%{)V4W{?;Uo8%wJZ6VdoLYV_w57Op
zkh^zUwh`+tL}9<hF@9%kmF2@;!X4h;QNkw!rT?*X<VqtulQ5K1cu&+rp&rl;DQ_Hq
z_^$~-d>gWI)LN%^(WC3KTt~~_U6$;9$YrMo*{4LErkKp2pbh+P?ds>y(H4pu*ZM?{
zs6pVZ$fvDiE@&9&T*%HG=!u$f@+|Ums!IWn4RG@D&yq1Ci%}tEl2<duhuWuK)E-2d
zQ<-s%iQ#K^eQ-XIze{(W0;MuNvb~8oiDurit?9v5sO<qggbQK}qT^vUbfq^zHiEen
zIvO#^WC`bU`+|@h)_#pn4Q1V*qmM)EFV)a$QwHbf@f0PQ^jf5ji}I_}9r+=*5Ah~A
z_+kfeqJl(vV-gy6)@vimgZ7`R1OAdO?>pyUfyr6x(H8aao9ZR(JVlwATA{MAzj9x(
zo8hCZEQM$o9b#c}|0aEnM|7Y@^s{}XhvaezyKcXipv(Gw54Ior9W6BMr1wFwHwv4Q
z3mq1b9h1Lh)Kl2_E!afVFL;XnE`E<&zq#)!#;ha9@HSH)q_V*W)M+0wCfL}A4D{*K
zyOPzNWyAX}nmC<p4+XmS)c3$H-~sG7JKEZ4tsGtU_@eJi6A#z5M!a|)eoy>ML{pZA
z)fsUVXhKBGL>Te&(eKH92;Q3%m-w&NclDXZvGT46<gmD)51|3)lT*=q!4mXorahUh
zki61+J3@%P429Zbo9O#pqtEEzK3tX`tGOKgW{Nb#m}+Y2cyER6p_2S-GMcPym%qI0
zrpr^b7ZHc+kJszAs|VhcgI;ByDcUFalmJ!D#_2CnPhuURfyrW(GWkH!k0fooO#F;;
zLhb_v+k>dQ77VBl+RH>#kJvkM*K7#UFaE=4UeSl}-)7;68Xf(MV8W(zDC3!-`h@d8
z*r~{_C{f;bmC0tp$B^JNzh^BQbH9!YcT0atoRgjCXnW8#QPSHI`mXWI-eWH_w<b1~
z4j3}pt;lZ84tWlJ*YOP&HRwylIUieW36D>|QR+jA@}Nh*$J;X7Q)a(srdyozfj{Sc
zS50Gf>x0bi(VXPUYn$^4^0ex^Vtt@F?9##OC{pj<{LN-bi*#Af`NX@<=6t;Uh|gP^
z=X{RyIBUO${5|43YaclKBWJRc>QFh(zD^5uL(VC@XG<7RCsF2amX+AE9iPFcstO<9
zJB|zN-f3(velzf&&H2PpiuYaqzOE<km*YGhJ{Y@4zxn8y8joonLqNZMK6gE4H##qD
zkNFRw-&<KfNPMF*jTf?<VPn8VuO+&ZE9h#pJ@Fkxe!RwMZkw{-EF3CSCwam96U{mY
zU7F7zEtCV$vK0P%1r2=G4uEmxt&*XHSo9EWT_}_v#m1shVePCAA*)SdhWe+KAFv$*
z@z4^i@Feh^7Lz%SwI#z;@O&JZQ+{WfCL>u$;^bs74$Cct3T)msrFrodctug-G~-Oy
zDRLnwkPH||jY#(hF>(b&mpD^=#fLz<GArM_g^B`3SsgRFc9)-NtCT4fdepfCuv#HI
z!ek?<y+uFLfD8|Ldr_9{*JxB^sM)&@a;?E2V?d84qDapUf1w-!jTRw))@}7jEK1jk
z4rnOq$t-g|aE7_+W~w5t=^!+vYn@5wG#c_<pl5N&Cp@2wny>f;ouKJm!fOy_USt(l
zDP3j*Nr`jvYv@7~{k^S{)zRJslTdg#%d@o{<XxOXn#)7IC5<S0vU@fe8TcJdO$oeR
z{f6p1cj-|8vy{8cmFeB6_l17a;-FF3tL~A?T9wcR?~IPJsm-9te#eQwh;Qa?puawI
z)a|1!I@Y0bTOu8uR3p8aJ3jR9)&YOXSB(0ff6Jf62AghoqG^k+=IBLrp8L@kc)T8~
zJOm^}`*?KVBF5RKF5gP;@pvxxIf4aQ`aNX##D&($=D<GcySweL(TY26wPmaRJJv<|
zUQFd+E4}Xz^@TTywD9x<;oYa_$#GHidm@eH+1Vyd)Xk>a-T~sWN^2;S%b}->_8c@q
z-Jw4?<#+76g6&#4?^EAZvOJL8bF_8A&YP*a*LO(=5c!>~VW5b5HvM?OeSW5Q*u<j@
z&wUq7eltz<Q|!IZ+L-z-q*t2io^1F^k0LEKg^bqS4}LXK?3-hqakodDy669PqsC$E
zK`Z;BlIs2VQTOJ)t1s-tjPf8qlamyub3(YtWH0pH4{|zVrZ66w-YfY*ee%V!U8dRZ
z!F}+TO>fJ=&L-C1@td`k9)rt5h+}%!Jjv9eKOY)8r%${Jow)>&hdIdYm+R-b^7#Ag
z_p|SZzL0#W%XSRV(T+|}Onrm*UB^CM?w3BzHACvuKtIzFh;F#A%Y8gOX0jY~Fxgkv
z(Uo1I!yE+#G_g-SV953$UGuo0FJwOGH@?Tdi)NZnxcZshUCsGuJK1-ciC{m)T|l_?
z=(i->!~b!6Az!`kns>|}gVEfc&vt&YNi$$Nj)}wQU9o5T%i}3UEOS1&@1uomg9vM*
zHTPXnJ|fSErapSA@~BU<^!0-uG57aG_xi4*-xF|7e$V(N`pxtGOxs18-2bb+Ys+pN
z2B9ctHa7d;lQk!CWWnWvl{D=%E%##@+XxWi<>$<rdSBPBX56%$#OS(GyY#h^Y3Htt
zMC@>*yWdJ5_U&-aE?qsCs-s4|ZPWAvK*~pDUN6)(wE9Ky>T?h7*YRR&an?8MoZAJx
zxYHg+^;ie_%^MDynZvY4PJbTT+K<KfgBWTX7Zz;4&#_Hf9Eu;t(>DOFz(!46BR3PA
zuETzuS_|2aZ5x+4j3Hvjp@Ha$h|C!3J?70mAEbG*aXJa0Tt}~T9@`y`4Ib=OIh3&<
znB$_k-E_Rx+!I}S^UZab`cDP4-55^|^SLE8Z}b-{%geVvA|J!c2Yjx~Cufq%{YOL3
zy(du?+5gZ>?40p+EarQIhi-1P46RoqaTl$fPV*>l+ju-8FCW`Bd9V79k=y*d4(`cX
z={aHiXgiO?kl~C^47qL{p?+%{T<))&N#Z+MKGa~Zw6l28Hi&Ga?W*Z?lRUP^n6a(r
zq?=Z369$`xuUd*M7ra?_cwBp09Uoeok-Kb+KdMh*9X7_%5wVesbJ$tlVlp+Y&h47-
zO6|hWwO~HV^8St9{W#B8sAJY2VBf>|vpoGs?Q$|lkI@(C1){gv+I6P0-ex({^++P_
zWNo+~i*;rbJC`{3JnBDZb&KV4oyJ%V9y7$J@~DnSA2ClJc~7G9C6OP=Kw!=A>uqg2
zJ`;pB1$nZb0DV*xA6>WcGf7yxj16V4U6=y~?OES5dI%wXv(^vwzuDsAbw2YSJ^!rl
z@iA}L0qeiBnL4gx&h=9*&tFI%;=VA*C(B)+-k}fL-ujJxSO__B2`xHY_%OV`cCmfK
z{3K+S4{kg}OdrY+_RH!=mV2BYDy+`xdRV(ijalh?uGlsk*OBZj_lz;CxyQ&l{&~E|
z7-O_8jctg%*qTdHBOcO8^0~P6(z>a!tF;UD2>T<wCW)@N?q_|^*ssT7&TNZ)56WX>
z5V&@%7Z@b0M>uMF5=WxW@1t6T{YG3vtx`?I`>b&PxM4n16V8drKaCsVI%D4>;%ntf
z?uq<UNZ*s`aF{_|FO2%0p-To9`|Z9i^Nj%BH|zDb^Rs<3^X)MfZz}0k)#sutm%kDp
zx&e@(hbu4^-k25klL~3J2VFEqlKm1KXYw*kIe52?%VOhkE{yi(lEU@8{`D`|#<C*W
z4R~lhPzKYXEy?yzV`a8R{}_MS89@u^V_oLFHWByrJ<U_|jz0=9w?)=$m(lHieL`)D
z!~Qh&PG|o^RSD<X7xtqqZ9J*84SG%8cfC=MY`r`1iF{px`8C1=ZGH*%H@eTie1<Z)
zKK5?5=fB$~@}p>NPzQ$g0G(dzEBr^%cKzeHx5u;Gg}Di7?LPY-y|cCQx=2_v^gPL3
z7T}A;R(}#`Y}cCruZL~^W)p<Ref|=eYipl?ne^EcuUQ{4#z%QG^QE2M>N3V5tq8BB
zcpSI!qa0DZoXH$nU8FtLOW?8lFO%mQ=qe(vc13n)vimWf`vmI4>WM7U;~1<vSzck|
zGhpp%!Tw1<>s02SSQ{lc&S-RQ9yx!L*moJ9Ob)As2yeT+#%_crs-bKidjFZfjV;|H
z+4?r~*gVe94O$?B`!MgP5V4Q&_!GKqxnq75pl3M<=Y+aQz%R<p8fU)2<nq31uQfh)
z=Xyo?nCY;;9dmZkq40Y63x|>KA<p73^8F^hZ$`csiR;45N#}iu9%bKNK^lL)k@Y<~
ze?~ER_B+!zsy}Q@lsk|Y=CCY2TOilxS$>|kf=GuUCmS>7g7lf)<&ZN!SK1SK)6YD=
z$;<PfW5>75Jq^Z27E2=Q{=;mDwvu2x1D_XO^O^P4+IjY{o5X(B6Zw%YevEyShtF$X
z^XcN={29MYT(fl&vDdqr@c5m&PHh{=v%L?#%@X$nYj$HfZ31-`@&3bnd_P7W1$Mln
zYdG<Bz$j)j*tq%X>kFTD1K<^4ca*-f>{s8ldAIq0C%mKWUZFGIjo16W67TFk|6BL}
z=|7*r>lxWse3krn&vgZhTF>Y4-D=lY<0tezSNz7lx%}q^SiPR{8KQrA?kT)4D)+oU
zo~>Q4%sp3>|2&7f=JR{b*<X!!z2@^#eCrzkg+ifFC=?2XLZMJ76bgkxp-?Ckp2I~7
zg+ifFC=?2XLZMJ76bgkxp-?FNIQ;2t`zwV)p-?Ck3WY+UP$(1%g+ifFC=`Aa{sF(i
V`^tc+8hHQ!002ovPDHLkV1noPMdAPe

diff --git a/apps/web/src/locales/en/messages.json b/apps/web/src/locales/en/messages.json
index ce35f2abd33..c5a7a64ee5c 100644
--- a/apps/web/src/locales/en/messages.json
+++ b/apps/web/src/locales/en/messages.json
@@ -10746,15 +10746,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
diff --git a/apps/web/webpack.config.js b/apps/web/webpack.config.js
index 04a68b16c00..a28052b98e3 100644
--- a/apps/web/webpack.config.js
+++ b/apps/web/webpack.config.js
@@ -268,6 +268,9 @@ const devServer =
                   https://www.paypalobjects.com
                   https://q.stripe.com
                   https://haveibeenpwned.com
+                ;media-src
+                  'self'
+                  https://assets.bitwarden.com
                 ;child-src
                   'self'
                   https://js.stripe.com

From b54c40ff009a49a1b50bfb4077ce7b62db83ae6e Mon Sep 17 00:00:00 2001
From: Nick Krantz <125900171+nick-livefront@users.noreply.github.com>
Date: Mon, 7 Jul 2025 09:26:34 -0500
Subject: [PATCH 065/239] Refactor `PendingSecurityTasks` to
 `RefreshSecurityTasks` (#15021)

- Allows for more general use case of security task notifications
---
 libs/common/src/enums/notification-type.enum.ts               | 2 +-
 .../src/vault/tasks/services/default-task.service.spec.ts     | 4 ++--
 libs/common/src/vault/tasks/services/default-task.service.ts  | 2 +-
 3 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/libs/common/src/enums/notification-type.enum.ts b/libs/common/src/enums/notification-type.enum.ts
index 6d731253ce3..d362ffc841a 100644
--- a/libs/common/src/enums/notification-type.enum.ts
+++ b/libs/common/src/enums/notification-type.enum.ts
@@ -29,5 +29,5 @@ export enum NotificationType {
   Notification = 20,
   NotificationStatus = 21,
 
-  PendingSecurityTasks = 22,
+  RefreshSecurityTasks = 22,
 }
diff --git a/libs/common/src/vault/tasks/services/default-task.service.spec.ts b/libs/common/src/vault/tasks/services/default-task.service.spec.ts
index d90889cf113..a1f9872266e 100644
--- a/libs/common/src/vault/tasks/services/default-task.service.spec.ts
+++ b/libs/common/src/vault/tasks/services/default-task.service.spec.ts
@@ -365,7 +365,7 @@ describe("Default task service", () => {
         const subscription = service.listenForTaskNotifications();
 
         const notification = {
-          type: NotificationType.PendingSecurityTasks,
+          type: NotificationType.RefreshSecurityTasks,
         } as NotificationResponse;
         mockNotifications$.next([notification, userId]);
 
@@ -390,7 +390,7 @@ describe("Default task service", () => {
         const subscription = service.listenForTaskNotifications();
 
         const notification = {
-          type: NotificationType.PendingSecurityTasks,
+          type: NotificationType.RefreshSecurityTasks,
         } as NotificationResponse;
         mockNotifications$.next([notification, "other-user-id" as UserId]);
 
diff --git a/libs/common/src/vault/tasks/services/default-task.service.ts b/libs/common/src/vault/tasks/services/default-task.service.ts
index 5858ba832d5..35a7561d63d 100644
--- a/libs/common/src/vault/tasks/services/default-task.service.ts
+++ b/libs/common/src/vault/tasks/services/default-task.service.ts
@@ -152,7 +152,7 @@ export class DefaultTaskService implements TaskService {
     return this.notificationService.notifications$.pipe(
       filter(
         ([notification, userId]) =>
-          notification.type === NotificationType.PendingSecurityTasks &&
+          notification.type === NotificationType.RefreshSecurityTasks &&
           filterByUserIds.includes(userId),
       ),
       map(([, userId]) => userId),

From a6ae7d23f7323a7dadb6455d21436ab0d4f64fc5 Mon Sep 17 00:00:00 2001
From: Bryan Cunningham <bcunningham@bitwarden.com>
Date: Mon, 7 Jul 2025 11:28:38 -0400
Subject: [PATCH 066/239] [CL-686] updated hover states (#15463)

---
 .../platform/popup/layout/popup-tab-navigation.component.html | 2 +-
 libs/components/src/button/button.component.ts                | 4 +---
 libs/components/src/item/item.component.ts                    | 2 +-
 libs/components/src/menu/menu-item.directive.ts               | 2 +-
 libs/components/src/table/row.directive.ts                    | 2 +-
 libs/components/src/toggle-group/toggle.component.ts          | 2 +-
 6 files changed, 6 insertions(+), 8 deletions(-)

diff --git a/apps/browser/src/platform/popup/layout/popup-tab-navigation.component.html b/apps/browser/src/platform/popup/layout/popup-tab-navigation.component.html
index 1170725a4b7..0a52518b250 100644
--- a/apps/browser/src/platform/popup/layout/popup-tab-navigation.component.html
+++ b/apps/browser/src/platform/popup/layout/popup-tab-navigation.component.html
@@ -7,7 +7,7 @@
       <ul class="tw-flex tw-flex-1 tw-mb-0 tw-p-0">
         <li *ngFor="let button of navButtons" class="tw-flex-1 tw-list-none tw-relative">
           <button
-            class="tw-w-full tw-flex tw-flex-col tw-items-center tw-px-0.5 tw-py-2 bit-compact:tw-py-1 tw-bg-transparent tw-no-underline hover:tw-no-underline hover:tw-text-primary-600 tw-group/tab-nav-btn hover:tw-bg-primary-100 tw-border-2 tw-border-solid tw-border-transparent focus-visible:tw-rounded-lg focus-visible:tw-border-primary-600"
+            class="tw-w-full tw-flex tw-flex-col tw-items-center tw-px-0.5 tw-py-2 bit-compact:tw-py-1 tw-bg-transparent tw-no-underline hover:tw-no-underline hover:tw-text-primary-600 tw-group/tab-nav-btn hover:tw-bg-hover-default tw-border-2 tw-border-solid tw-border-transparent focus-visible:tw-rounded-lg focus-visible:tw-border-primary-600"
             [ngClass]="rla.isActive ? 'tw-font-bold tw-text-primary-600' : 'tw-text-muted'"
             title="{{ button.label | i18n }}"
             [routerLink]="button.page"
diff --git a/libs/components/src/button/button.component.ts b/libs/components/src/button/button.component.ts
index 002b2a9d915..011360db867 100644
--- a/libs/components/src/button/button.component.ts
+++ b/libs/components/src/button/button.component.ts
@@ -31,9 +31,7 @@ const buttonStyles: Record<ButtonType, string[]> = {
     "tw-bg-transparent",
     "tw-border-primary-600",
     "!tw-text-primary-600",
-    "hover:tw-bg-primary-600",
-    "hover:tw-border-primary-600",
-    "hover:!tw-text-contrast",
+    "hover:tw-bg-hover-default",
     ...focusRing,
   ],
   danger: [
diff --git a/libs/components/src/item/item.component.ts b/libs/components/src/item/item.component.ts
index 1846a53f7a2..e1dfd599aac 100644
--- a/libs/components/src/item/item.component.ts
+++ b/libs/components/src/item/item.component.ts
@@ -18,7 +18,7 @@ import { ItemActionComponent } from "./item-action.component";
   providers: [{ provide: A11yRowDirective, useExisting: ItemComponent }],
   host: {
     class:
-      "tw-block tw-box-border tw-overflow-hidden tw-flex tw-bg-background [&:has([data-item-main-content]_button:hover,[data-item-main-content]_a:hover)]:tw-cursor-pointer [&:has([data-item-main-content]_button:hover,[data-item-main-content]_a:hover)]:tw-bg-primary-100 tw-text-main tw-border-solid tw-border-b tw-border-0 [&:not(bit-layout_*)]:tw-rounded-lg bit-compact:[&:not(bit-layout_*)]:tw-rounded-none bit-compact:[&:not(bit-layout_*)]:last-of-type:tw-rounded-b-lg bit-compact:[&:not(bit-layout_*)]:first-of-type:tw-rounded-t-lg tw-min-h-9 tw-mb-1.5 bit-compact:tw-mb-0",
+      "tw-block tw-box-border tw-overflow-hidden tw-flex tw-bg-background [&:has([data-item-main-content]_button:hover,[data-item-main-content]_a:hover)]:tw-cursor-pointer [&:has([data-item-main-content]_button:hover,[data-item-main-content]_a:hover)]:tw-bg-hover-default tw-text-main tw-border-solid tw-border-b tw-border-0 [&:not(bit-layout_*)]:tw-rounded-lg bit-compact:[&:not(bit-layout_*)]:tw-rounded-none bit-compact:[&:not(bit-layout_*)]:last-of-type:tw-rounded-b-lg bit-compact:[&:not(bit-layout_*)]:first-of-type:tw-rounded-t-lg tw-min-h-9 tw-mb-1.5 bit-compact:tw-mb-0",
   },
 })
 export class ItemComponent extends A11yRowDirective {
diff --git a/libs/components/src/menu/menu-item.directive.ts b/libs/components/src/menu/menu-item.directive.ts
index b52bbed2d50..37b68eecd74 100644
--- a/libs/components/src/menu/menu-item.directive.ts
+++ b/libs/components/src/menu/menu-item.directive.ts
@@ -20,7 +20,7 @@ export class MenuItemDirective implements FocusableOption {
     "tw-border-none",
     "tw-bg-background",
     "tw-text-left",
-    "hover:tw-bg-primary-100",
+    "hover:tw-bg-hover-default",
     "focus-visible:tw-z-50",
     "focus-visible:tw-outline-none",
     "focus-visible:tw-ring-2",
diff --git a/libs/components/src/table/row.directive.ts b/libs/components/src/table/row.directive.ts
index 19f3d3f775b..2f76ded65aa 100644
--- a/libs/components/src/table/row.directive.ts
+++ b/libs/components/src/table/row.directive.ts
@@ -25,7 +25,7 @@ export class RowDirective {
       "tw-border-b",
       "tw-border-secondary-300",
       "tw-border-solid",
-      "hover:tw-bg-background-alt",
+      "hover:tw-bg-hover-default",
       "last:tw-border-0",
       this.alignmentClass,
     ];
diff --git a/libs/components/src/toggle-group/toggle.component.ts b/libs/components/src/toggle-group/toggle.component.ts
index 03bd8e43404..ec0d060f7fa 100644
--- a/libs/components/src/toggle-group/toggle.component.ts
+++ b/libs/components/src/toggle-group/toggle.component.ts
@@ -68,7 +68,7 @@ export class ToggleComponent<TValue> implements AfterContentChecked, AfterViewIn
       "tw-border-r",
       "tw-border-l-0",
       "tw-cursor-pointer",
-      "hover:tw-bg-primary-100",
+      "hover:tw-bg-hover-default",
 
       "group-first-of-type/toggle:tw-border-l",
       "group-first-of-type/toggle:tw-rounded-s-full",

From 71bef25a96c999cf22eb0b7a270c914e9cfc0841 Mon Sep 17 00:00:00 2001
From: Oscar Hinton <Hinton@users.noreply.github.com>
Date: Mon, 7 Jul 2025 17:49:29 +0200
Subject: [PATCH 067/239] Resolve breaking changes in the SDK (#15472)

---
 libs/common/spec/jest-sdk-client-factory.ts   |  6 ++++--
 .../services/sdk/default-sdk.service.ts       | 19 +++++++++++++++++--
 .../vault/models/view/attachment.view.spec.ts |  1 +
 .../src/vault/models/view/attachment.view.ts  |  1 +
 .../default-cipher-encryption.service.spec.ts |  6 ++++--
 .../metadata/password/sdk-eff-word-list.ts    |  2 +-
 .../metadata/password/sdk-random-password.ts  |  2 +-
 package-lock.json                             |  8 ++++----
 package.json                                  |  2 +-
 9 files changed, 34 insertions(+), 13 deletions(-)

diff --git a/libs/common/spec/jest-sdk-client-factory.ts b/libs/common/spec/jest-sdk-client-factory.ts
index ff120ccd787..8e5e1c9d3fc 100644
--- a/libs/common/spec/jest-sdk-client-factory.ts
+++ b/libs/common/spec/jest-sdk-client-factory.ts
@@ -1,9 +1,11 @@
-import { ClientSettings, LogLevel, BitwardenClient } from "@bitwarden/sdk-internal";
+import { BitwardenClient } from "@bitwarden/sdk-internal";
 
 import { SdkClientFactory } from "../src/platform/abstractions/sdk/sdk-client-factory";
 
 export class DefaultSdkClientFactory implements SdkClientFactory {
-  createSdkClient(settings?: ClientSettings, log_level?: LogLevel): Promise<BitwardenClient> {
+  createSdkClient(
+    ...args: ConstructorParameters<typeof BitwardenClient>
+  ): Promise<BitwardenClient> {
     throw new Error("Method not implemented.");
   }
 }
diff --git a/libs/common/src/platform/services/sdk/default-sdk.service.ts b/libs/common/src/platform/services/sdk/default-sdk.service.ts
index e874dae3461..a0d00b5eef6 100644
--- a/libs/common/src/platform/services/sdk/default-sdk.service.ts
+++ b/libs/common/src/platform/services/sdk/default-sdk.service.ts
@@ -21,6 +21,7 @@ import {
   BitwardenClient,
   ClientSettings,
   DeviceType as SdkDeviceType,
+  TokenProvider,
 } from "@bitwarden/sdk-internal";
 
 import { EncryptedOrganizationKeyData } from "../../../admin-console/models/data/encrypted-organization-key.data";
@@ -41,6 +42,17 @@ import { EncryptedString } from "../../models/domain/enc-string";
 // blocking the creation of an internal client for that user.
 const UnsetClient = Symbol("UnsetClient");
 
+/**
+ * A token provider that exposes the access token to the SDK.
+ */
+class JsTokenProvider implements TokenProvider {
+  constructor() {}
+
+  async get_access_token(): Promise<string | undefined> {
+    return undefined;
+  }
+}
+
 export class DefaultSdkService implements SdkService {
   private sdkClientOverrides = new BehaviorSubject<{
     [userId: UserId]: Rc<BitwardenClient> | typeof UnsetClient;
@@ -51,7 +63,7 @@ export class DefaultSdkService implements SdkService {
     concatMap(async (env) => {
       await SdkLoadService.Ready;
       const settings = this.toSettings(env);
-      return await this.sdkClientFactory.createSdkClient(settings);
+      return await this.sdkClientFactory.createSdkClient(new JsTokenProvider(), settings);
     }),
     shareReplay({ refCount: true, bufferSize: 1 }),
   );
@@ -151,7 +163,10 @@ export class DefaultSdkService implements SdkService {
             }
 
             const settings = this.toSettings(env);
-            const client = await this.sdkClientFactory.createSdkClient(settings);
+            const client = await this.sdkClientFactory.createSdkClient(
+              new JsTokenProvider(),
+              settings,
+            );
 
             await this.initializeClient(
               userId,
diff --git a/libs/common/src/vault/models/view/attachment.view.spec.ts b/libs/common/src/vault/models/view/attachment.view.spec.ts
index 8ae836e1265..bc7a54062ef 100644
--- a/libs/common/src/vault/models/view/attachment.view.spec.ts
+++ b/libs/common/src/vault/models/view/attachment.view.spec.ts
@@ -67,6 +67,7 @@ describe("AttachmentView", () => {
         sizeName: "sizeName",
         fileName: "fileName",
         key: "encKeyB64",
+        decryptedKey: null,
       });
     });
   });
diff --git a/libs/common/src/vault/models/view/attachment.view.ts b/libs/common/src/vault/models/view/attachment.view.ts
index 2ef4280d97a..28bfc9f12b9 100644
--- a/libs/common/src/vault/models/view/attachment.view.ts
+++ b/libs/common/src/vault/models/view/attachment.view.ts
@@ -59,6 +59,7 @@ export class AttachmentView implements View {
       sizeName: this.sizeName,
       fileName: this.fileName,
       key: this.encryptedKey?.toJSON(),
+      decryptedKey: null,
     };
   }
 
diff --git a/libs/common/src/vault/services/default-cipher-encryption.service.spec.ts b/libs/common/src/vault/services/default-cipher-encryption.service.spec.ts
index c0b3d3be85f..4d05a5197fb 100644
--- a/libs/common/src/vault/services/default-cipher-encryption.service.spec.ts
+++ b/libs/common/src/vault/services/default-cipher-encryption.service.spec.ts
@@ -7,7 +7,7 @@ import {
   CipherType as SdkCipherType,
   CipherView as SdkCipherView,
   CipherListView,
-  Attachment as SdkAttachment,
+  AttachmentView as SdkAttachmentView,
 } from "@bitwarden/sdk-internal";
 
 import { mockEnc } from "../../../spec";
@@ -311,7 +311,9 @@ describe("DefaultCipherEncryptionService", () => {
       const expectedDecryptedContent = new Uint8Array([5, 6, 7, 8]);
 
       jest.spyOn(cipher, "toSdkCipher").mockReturnValue({ id: "id" } as SdkCipher);
-      jest.spyOn(attachment, "toSdkAttachmentView").mockReturnValue({ id: "a1" } as SdkAttachment);
+      jest
+        .spyOn(attachment, "toSdkAttachmentView")
+        .mockReturnValue({ id: "a1" } as SdkAttachmentView);
       mockSdkClient.vault().attachments().decrypt_buffer.mockReturnValue(expectedDecryptedContent);
 
       const result = await cipherEncryptionService.decryptAttachmentContent(
diff --git a/libs/tools/generator/core/src/metadata/password/sdk-eff-word-list.ts b/libs/tools/generator/core/src/metadata/password/sdk-eff-word-list.ts
index 8892016b609..9a653f88ede 100644
--- a/libs/tools/generator/core/src/metadata/password/sdk-eff-word-list.ts
+++ b/libs/tools/generator/core/src/metadata/password/sdk-eff-word-list.ts
@@ -31,7 +31,7 @@ const sdkPassphrase: GeneratorMetadata<PassphraseGenerationOptions> = {
     create(
       dependencies: GeneratorDependencyProvider,
     ): CredentialGenerator<PassphraseGenerationOptions> {
-      return new SdkPasswordRandomizer(new BitwardenClient(), Date.now); // @TODO hook up a real SDK client
+      return new SdkPasswordRandomizer(new BitwardenClient(null), Date.now); // @TODO hook up a real SDK client
     },
   },
   profiles: {
diff --git a/libs/tools/generator/core/src/metadata/password/sdk-random-password.ts b/libs/tools/generator/core/src/metadata/password/sdk-random-password.ts
index d6544fa115e..d9e06408d1d 100644
--- a/libs/tools/generator/core/src/metadata/password/sdk-random-password.ts
+++ b/libs/tools/generator/core/src/metadata/password/sdk-random-password.ts
@@ -31,7 +31,7 @@ const sdkPassword: GeneratorMetadata<PasswordGeneratorSettings> = deepFreeze({
     create(
       dependencies: GeneratorDependencyProvider,
     ): CredentialGenerator<PasswordGeneratorSettings> {
-      return new SdkPasswordRandomizer(new BitwardenClient(), Date.now); // @TODO hook up a real SDK client
+      return new SdkPasswordRandomizer(new BitwardenClient(null), Date.now); // @TODO hook up a real SDK client
     },
   },
   profiles: {
diff --git a/package-lock.json b/package-lock.json
index 900dc0d0b00..6b18b6f8af8 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -24,7 +24,7 @@
         "@angular/platform-browser": "19.2.14",
         "@angular/platform-browser-dynamic": "19.2.14",
         "@angular/router": "19.2.14",
-        "@bitwarden/sdk-internal": "0.2.0-main.213",
+        "@bitwarden/sdk-internal": "0.2.0-main.225",
         "@electron/fuses": "1.8.0",
         "@emotion/css": "11.13.5",
         "@koa/multer": "3.1.0",
@@ -4610,9 +4610,9 @@
       "link": true
     },
     "node_modules/@bitwarden/sdk-internal": {
-      "version": "0.2.0-main.213",
-      "resolved": "https://registry.npmjs.org/@bitwarden/sdk-internal/-/sdk-internal-0.2.0-main.213.tgz",
-      "integrity": "sha512-/AUpdQQ++tLsH9dJDFQcIDihCpsI+ikdZuYwbztSXPp7piCnLk71f7r10yMPGQ8OEOF49mMEbLCG+dJKpBqeRg==",
+      "version": "0.2.0-main.225",
+      "resolved": "https://registry.npmjs.org/@bitwarden/sdk-internal/-/sdk-internal-0.2.0-main.225.tgz",
+      "integrity": "sha512-bhSFNX584GPJ9wMBYff1d18/Hfj+o+D4E1l3uDLZNXRI9s7w919AQWqJ0xUy1vh8gpkLJovkf64HQGqs0OiQQA==",
       "license": "GPL-3.0",
       "dependencies": {
         "type-fest": "^4.41.0"
diff --git a/package.json b/package.json
index f45b04c06e9..8cd2e0991b0 100644
--- a/package.json
+++ b/package.json
@@ -160,7 +160,7 @@
     "@angular/platform-browser": "19.2.14",
     "@angular/platform-browser-dynamic": "19.2.14",
     "@angular/router": "19.2.14",
-    "@bitwarden/sdk-internal": "0.2.0-main.213",
+    "@bitwarden/sdk-internal": "0.2.0-main.225",
     "@electron/fuses": "1.8.0",
     "@emotion/css": "11.13.5",
     "@koa/multer": "3.1.0",

From f76276d303b41cf43cfc44cdb9f6f87f22f4084a Mon Sep 17 00:00:00 2001
From: Leslie Tilton <23057410+Banrion@users.noreply.github.com>
Date: Mon, 7 Jul 2025 11:12:24 -0500
Subject: [PATCH 068/239] Remove debugging tabs (#15510)

---
 ...password-health-members-uri.component.html |  51 -------
 ...sword-health-members-uri.component.spec.ts |  77 -----------
 .../password-health-members-uri.component.ts  | 107 ---------------
 .../password-health-members.component.html    |  60 ---------
 .../password-health-members.component.ts      | 127 ------------------
 .../password-health.component.html            |  53 --------
 .../password-health.component.spec.ts         |  49 -------
 .../password-health.component.ts              |  69 ----------
 .../risk-insights.component.html              |   9 --
 .../risk-insights.component.ts                |  10 --
 10 files changed, 612 deletions(-)
 delete mode 100644 bitwarden_license/bit-web/src/app/dirt/access-intelligence/password-health-members-uri.component.html
 delete mode 100644 bitwarden_license/bit-web/src/app/dirt/access-intelligence/password-health-members-uri.component.spec.ts
 delete mode 100644 bitwarden_license/bit-web/src/app/dirt/access-intelligence/password-health-members-uri.component.ts
 delete mode 100644 bitwarden_license/bit-web/src/app/dirt/access-intelligence/password-health-members.component.html
 delete mode 100644 bitwarden_license/bit-web/src/app/dirt/access-intelligence/password-health-members.component.ts
 delete mode 100644 bitwarden_license/bit-web/src/app/dirt/access-intelligence/password-health.component.html
 delete mode 100644 bitwarden_license/bit-web/src/app/dirt/access-intelligence/password-health.component.spec.ts
 delete mode 100644 bitwarden_license/bit-web/src/app/dirt/access-intelligence/password-health.component.ts

diff --git a/bitwarden_license/bit-web/src/app/dirt/access-intelligence/password-health-members-uri.component.html b/bitwarden_license/bit-web/src/app/dirt/access-intelligence/password-health-members-uri.component.html
deleted file mode 100644
index 936d92d8701..00000000000
--- a/bitwarden_license/bit-web/src/app/dirt/access-intelligence/password-health-members-uri.component.html
+++ /dev/null
@@ -1,51 +0,0 @@
-<bit-container>
-  <p>{{ "passwordsReportDesc" | i18n }}</p>
-  <div *ngIf="loading">
-    <i
-      class="bwi bwi-spinner bwi-spin tw-text-muted"
-      title="{{ 'loading' | i18n }}"
-      aria-hidden="true"
-    ></i>
-    <span class="tw-sr-only">{{ "loading" | i18n }}</span>
-  </div>
-  <div class="tw-mt-4" *ngIf="!loading">
-    <bit-table-scroll [dataSource]="dataSource" [rowSize]="53">
-      <ng-container header>
-        <th bitCell bitSortable="hostURI">{{ "application" | i18n }}</th>
-        <th bitCell class="tw-text-right">{{ "weakness" | i18n }}</th>
-        <th bitCell class="tw-text-right">{{ "timesReused" | i18n }}</th>
-        <th bitCell class="tw-text-right">{{ "timesExposed" | i18n }}</th>
-        <th bitCell class="tw-text-right">{{ "totalMembers" | i18n }}</th>
-      </ng-container>
-      <ng-template bitRowDef let-row>
-        <td bitCell>
-          <ng-container>
-            <span>{{ row.hostURI }}</span>
-          </ng-container>
-        </td>
-        <td bitCell class="tw-text-right">
-          <span
-            bitBadge
-            *ngIf="passwordStrengthMap.has(row.id)"
-            [variant]="passwordStrengthMap.get(row.id)[1]"
-          >
-            {{ passwordStrengthMap.get(row.id)[0] | i18n }}
-          </span>
-        </td>
-        <td bitCell class="tw-text-right">
-          <span bitBadge *ngIf="passwordUseMap.has(row.login.password)" variant="warning">
-            {{ "reusedXTimes" | i18n: passwordUseMap.get(row.login.password) }}
-          </span>
-        </td>
-        <td bitCell class="tw-text-right">
-          <span bitBadge *ngIf="exposedPasswordMap.has(row.id)" variant="warning">
-            {{ "exposedXTimes" | i18n: exposedPasswordMap.get(row.id) }}
-          </span>
-        </td>
-        <td bitCell class="tw-text-right" data-testid="total-membership">
-          {{ totalMembersMap.get(row.id) || 0 }}
-        </td>
-      </ng-template>
-    </bit-table-scroll>
-  </div>
-</bit-container>
diff --git a/bitwarden_license/bit-web/src/app/dirt/access-intelligence/password-health-members-uri.component.spec.ts b/bitwarden_license/bit-web/src/app/dirt/access-intelligence/password-health-members-uri.component.spec.ts
deleted file mode 100644
index e827f884ead..00000000000
--- a/bitwarden_license/bit-web/src/app/dirt/access-intelligence/password-health-members-uri.component.spec.ts
+++ /dev/null
@@ -1,77 +0,0 @@
-import { ComponentFixture, TestBed } from "@angular/core/testing";
-import { ActivatedRoute, convertToParamMap } from "@angular/router";
-import { mock, MockProxy } from "jest-mock-extended";
-import { of } from "rxjs";
-
-import {
-  MemberCipherDetailsApiService,
-  PasswordHealthService,
-} from "@bitwarden/bit-common/dirt/reports/risk-insights";
-import { ApiService } from "@bitwarden/common/abstractions/api.service";
-import { AuditService } from "@bitwarden/common/abstractions/audit.service";
-import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
-import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
-import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { Utils } from "@bitwarden/common/platform/misc/utils";
-import { mockAccountServiceWith } from "@bitwarden/common/spec";
-import { PasswordStrengthServiceAbstraction } from "@bitwarden/common/tools/password-strength";
-import { UserId } from "@bitwarden/common/types/guid";
-import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
-import { TableModule } from "@bitwarden/components";
-import { LooseComponentsModule } from "@bitwarden/web-vault/app/shared";
-import { PipesModule } from "@bitwarden/web-vault/app/vault/individual-vault/pipes/pipes.module";
-
-import { PasswordHealthMembersURIComponent } from "./password-health-members-uri.component";
-
-describe("PasswordHealthMembersUriComponent", () => {
-  let component: PasswordHealthMembersURIComponent;
-  let fixture: ComponentFixture<PasswordHealthMembersURIComponent>;
-  let cipherServiceMock: MockProxy<CipherService>;
-  const passwordHealthServiceMock = mock<PasswordHealthService>();
-  const userId = Utils.newGuid() as UserId;
-
-  const activeRouteParams = convertToParamMap({ organizationId: "orgId" });
-
-  beforeEach(async () => {
-    cipherServiceMock = mock<CipherService>();
-    await TestBed.configureTestingModule({
-      imports: [PasswordHealthMembersURIComponent, PipesModule, TableModule, LooseComponentsModule],
-      providers: [
-        { provide: CipherService, useValue: cipherServiceMock },
-        { provide: I18nService, useValue: mock<I18nService>() },
-        { provide: AuditService, useValue: mock<AuditService>() },
-        { provide: OrganizationService, useValue: mock<OrganizationService>() },
-        { provide: AccountService, useValue: mockAccountServiceWith(userId) },
-        {
-          provide: PasswordStrengthServiceAbstraction,
-          useValue: mock<PasswordStrengthServiceAbstraction>(),
-        },
-        { provide: PasswordHealthService, useValue: passwordHealthServiceMock },
-        {
-          provide: ActivatedRoute,
-          useValue: {
-            paramMap: of(activeRouteParams),
-            url: of([]),
-          },
-        },
-        {
-          provide: MemberCipherDetailsApiService,
-          useValue: mock<MemberCipherDetailsApiService>(),
-        },
-        {
-          provide: ApiService,
-          useValue: mock<ApiService>(),
-        },
-      ],
-    }).compileComponents();
-  });
-
-  beforeEach(() => {
-    fixture = TestBed.createComponent(PasswordHealthMembersURIComponent);
-    component = fixture.componentInstance;
-  });
-
-  it("should initialize component", () => {
-    expect(component).toBeTruthy();
-  });
-});
diff --git a/bitwarden_license/bit-web/src/app/dirt/access-intelligence/password-health-members-uri.component.ts b/bitwarden_license/bit-web/src/app/dirt/access-intelligence/password-health-members-uri.component.ts
deleted file mode 100644
index a4e8dd0ded8..00000000000
--- a/bitwarden_license/bit-web/src/app/dirt/access-intelligence/password-health-members-uri.component.ts
+++ /dev/null
@@ -1,107 +0,0 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
-import { CommonModule } from "@angular/common";
-import { Component, DestroyRef, inject, OnInit } from "@angular/core";
-import { takeUntilDestroyed } from "@angular/core/rxjs-interop";
-import { ActivatedRoute } from "@angular/router";
-import { map } from "rxjs";
-
-import { JslibModule } from "@bitwarden/angular/jslib.module";
-import {
-  MemberCipherDetailsApiService,
-  PasswordHealthService,
-} from "@bitwarden/bit-common/dirt/reports/risk-insights";
-import { AuditService } from "@bitwarden/common/abstractions/audit.service";
-import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
-import { Organization } from "@bitwarden/common/admin-console/models/domain/organization";
-import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { PasswordStrengthServiceAbstraction } from "@bitwarden/common/tools/password-strength";
-import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
-import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
-import {
-  BadgeModule,
-  BadgeVariant,
-  ContainerComponent,
-  TableDataSource,
-  TableModule,
-} from "@bitwarden/components";
-import { HeaderModule } from "@bitwarden/web-vault/app/layouts/header/header.module";
-import { PipesModule } from "@bitwarden/web-vault/app/vault/individual-vault/pipes/pipes.module";
-
-@Component({
-  selector: "tools-password-health-members-uri",
-  templateUrl: "password-health-members-uri.component.html",
-  imports: [
-    BadgeModule,
-    CommonModule,
-    ContainerComponent,
-    PipesModule,
-    JslibModule,
-    HeaderModule,
-    TableModule,
-  ],
-  providers: [PasswordHealthService, MemberCipherDetailsApiService],
-})
-export class PasswordHealthMembersURIComponent implements OnInit {
-  passwordStrengthMap = new Map<string, [string, BadgeVariant]>();
-
-  weakPasswordCiphers: CipherView[] = [];
-
-  passwordUseMap = new Map<string, number>();
-
-  exposedPasswordMap = new Map<string, number>();
-
-  totalMembersMap = new Map<string, number>();
-
-  dataSource = new TableDataSource<CipherView>();
-
-  reportCiphers: (CipherView & { hostURI: string })[] = [];
-  reportCipherURIs: string[] = [];
-
-  organization: Organization;
-
-  loading = true;
-
-  private destroyRef = inject(DestroyRef);
-
-  constructor(
-    protected cipherService: CipherService,
-    protected passwordStrengthService: PasswordStrengthServiceAbstraction,
-    protected organizationService: OrganizationService,
-    protected auditService: AuditService,
-    protected i18nService: I18nService,
-    protected activatedRoute: ActivatedRoute,
-    protected memberCipherDetailsApiService: MemberCipherDetailsApiService,
-  ) {}
-
-  ngOnInit() {
-    this.activatedRoute.paramMap
-      .pipe(
-        takeUntilDestroyed(this.destroyRef),
-        map(async (params) => {
-          const organizationId = params.get("organizationId");
-          await this.setCiphers(organizationId);
-        }),
-      )
-      .subscribe();
-  }
-
-  async setCiphers(organizationId: string) {
-    const passwordHealthService = new PasswordHealthService(
-      this.passwordStrengthService,
-      this.auditService,
-      this.cipherService,
-      this.memberCipherDetailsApiService,
-      organizationId,
-    );
-
-    await passwordHealthService.generateReport();
-
-    this.dataSource.data = passwordHealthService.groupCiphersByLoginUri();
-    this.exposedPasswordMap = passwordHealthService.exposedPasswordMap;
-    this.passwordStrengthMap = passwordHealthService.passwordStrengthMap;
-    this.passwordUseMap = passwordHealthService.passwordUseMap;
-    this.totalMembersMap = passwordHealthService.totalMembersMap;
-    this.loading = false;
-  }
-}
diff --git a/bitwarden_license/bit-web/src/app/dirt/access-intelligence/password-health-members.component.html b/bitwarden_license/bit-web/src/app/dirt/access-intelligence/password-health-members.component.html
deleted file mode 100644
index 5c980f75a81..00000000000
--- a/bitwarden_license/bit-web/src/app/dirt/access-intelligence/password-health-members.component.html
+++ /dev/null
@@ -1,60 +0,0 @@
-<p>{{ "passwordsReportDesc" | i18n }}</p>
-<div *ngIf="loading">
-  <i
-    class="bwi bwi-spinner bwi-spin tw-text-muted"
-    title="{{ 'loading' | i18n }}"
-    aria-hidden="true"
-  ></i>
-  <span class="tw-sr-only">{{ "loading" | i18n }}</span>
-</div>
-<div class="tw-flex tw-flex-col" *ngIf="!loading && dataSource.data.length">
-  <bit-table-scroll [dataSource]="dataSource" [rowSize]="74">
-    <ng-container header>
-      <th bitCell></th>
-      <th bitCell bitSortable="name">{{ "name" | i18n }}</th>
-      <th bitCell class="tw-text-right">{{ "weakness" | i18n }}</th>
-      <th bitCell class="tw-text-right">{{ "timesReused" | i18n }}</th>
-      <th bitCell class="tw-text-right">{{ "timesExposed" | i18n }}</th>
-      <th bitCell class="tw-text-right">{{ "totalMembers" | i18n }}</th>
-    </ng-container>
-    <ng-template bitRowDef let-row>
-      <td bitCell>
-        <input
-          bitCheckbox
-          type="checkbox"
-          [checked]="selectedIds.has(row.id)"
-          (change)="onCheckboxChange(row.id, $event)"
-        />
-      </td>
-      <td bitCell>
-        <ng-container>
-          <span>{{ row.name }}</span>
-        </ng-container>
-        <br />
-        <small>{{ row.subTitle }}</small>
-      </td>
-      <td bitCell class="tw-text-right">
-        <span
-          bitBadge
-          *ngIf="passwordStrengthMap.has(row.id)"
-          [variant]="passwordStrengthMap.get(row.id)[1]"
-        >
-          {{ passwordStrengthMap.get(row.id)[0] | i18n }}
-        </span>
-      </td>
-      <td bitCell class="tw-text-right">
-        <span bitBadge *ngIf="passwordUseMap.has(row.login.password)" variant="warning">
-          {{ "reusedXTimes" | i18n: passwordUseMap.get(row.login.password) }}
-        </span>
-      </td>
-      <td bitCell class="tw-text-right">
-        <span bitBadge *ngIf="exposedPasswordMap.has(row.id)" variant="warning">
-          {{ "exposedXTimes" | i18n: exposedPasswordMap.get(row.id) }}
-        </span>
-      </td>
-      <td bitCell class="tw-text-right" data-testid="total-membership">
-        {{ totalMembersMap.get(row.id) || 0 }}
-      </td>
-    </ng-template>
-  </bit-table-scroll>
-</div>
diff --git a/bitwarden_license/bit-web/src/app/dirt/access-intelligence/password-health-members.component.ts b/bitwarden_license/bit-web/src/app/dirt/access-intelligence/password-health-members.component.ts
deleted file mode 100644
index 8cad1f2f8ce..00000000000
--- a/bitwarden_license/bit-web/src/app/dirt/access-intelligence/password-health-members.component.ts
+++ /dev/null
@@ -1,127 +0,0 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
-import { Component, DestroyRef, inject, OnInit } from "@angular/core";
-import { takeUntilDestroyed } from "@angular/core/rxjs-interop";
-import { FormControl, FormsModule } from "@angular/forms";
-import { ActivatedRoute } from "@angular/router";
-import { debounceTime, map } from "rxjs";
-
-import {
-  MemberCipherDetailsApiService,
-  PasswordHealthService,
-} from "@bitwarden/bit-common/dirt/reports/risk-insights";
-import { AuditService } from "@bitwarden/common/abstractions/audit.service";
-import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { PasswordStrengthServiceAbstraction } from "@bitwarden/common/tools/password-strength";
-import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
-import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
-import {
-  BadgeVariant,
-  SearchModule,
-  TableDataSource,
-  TableModule,
-  ToastService,
-} from "@bitwarden/components";
-import { HeaderModule } from "@bitwarden/web-vault/app/layouts/header/header.module";
-import { SharedModule } from "@bitwarden/web-vault/app/shared";
-import { PipesModule } from "@bitwarden/web-vault/app/vault/individual-vault/pipes/pipes.module";
-
-@Component({
-  selector: "tools-password-health-members",
-  templateUrl: "password-health-members.component.html",
-  imports: [PipesModule, HeaderModule, SearchModule, FormsModule, SharedModule, TableModule],
-  providers: [PasswordHealthService, MemberCipherDetailsApiService],
-})
-export class PasswordHealthMembersComponent implements OnInit {
-  passwordStrengthMap = new Map<string, [string, BadgeVariant]>();
-
-  passwordUseMap = new Map<string, number>();
-
-  exposedPasswordMap = new Map<string, number>();
-
-  totalMembersMap = new Map<string, number>();
-
-  dataSource = new TableDataSource<CipherView>();
-
-  loading = true;
-
-  selectedIds: Set<number> = new Set<number>();
-
-  protected searchControl = new FormControl("", { nonNullable: true });
-
-  private destroyRef = inject(DestroyRef);
-
-  constructor(
-    protected cipherService: CipherService,
-    protected passwordStrengthService: PasswordStrengthServiceAbstraction,
-    protected auditService: AuditService,
-    protected i18nService: I18nService,
-    protected activatedRoute: ActivatedRoute,
-    protected toastService: ToastService,
-    protected memberCipherDetailsApiService: MemberCipherDetailsApiService,
-  ) {
-    this.searchControl.valueChanges
-      .pipe(debounceTime(200), takeUntilDestroyed())
-      .subscribe((v) => (this.dataSource.filter = v));
-  }
-
-  ngOnInit() {
-    this.activatedRoute.paramMap
-      .pipe(
-        takeUntilDestroyed(this.destroyRef),
-        map(async (params) => {
-          const organizationId = params.get("organizationId");
-          await this.setCiphers(organizationId);
-        }),
-      )
-      .subscribe();
-  }
-
-  async setCiphers(organizationId: string) {
-    const passwordHealthService = new PasswordHealthService(
-      this.passwordStrengthService,
-      this.auditService,
-      this.cipherService,
-      this.memberCipherDetailsApiService,
-      organizationId,
-    );
-
-    await passwordHealthService.generateReport();
-
-    this.dataSource.data = passwordHealthService.reportCiphers;
-
-    this.exposedPasswordMap = passwordHealthService.exposedPasswordMap;
-    this.passwordStrengthMap = passwordHealthService.passwordStrengthMap;
-    this.passwordUseMap = passwordHealthService.passwordUseMap;
-    this.totalMembersMap = passwordHealthService.totalMembersMap;
-    this.loading = false;
-  }
-
-  markAppsAsCritical = async () => {
-    // TODO: Send to API once implemented
-    return new Promise((resolve) => {
-      setTimeout(() => {
-        this.selectedIds.clear();
-        this.toastService.showToast({
-          variant: "success",
-          title: null,
-          message: this.i18nService.t("appsMarkedAsCritical"),
-        });
-        resolve(true);
-      }, 1000);
-    });
-  };
-
-  trackByFunction(_: number, item: CipherView) {
-    return item.id;
-  }
-
-  onCheckboxChange(id: number, event: Event) {
-    const isChecked = (event.target as HTMLInputElement).checked;
-    if (isChecked) {
-      this.selectedIds.add(id);
-    } else {
-      this.selectedIds.delete(id);
-    }
-  }
-}
diff --git a/bitwarden_license/bit-web/src/app/dirt/access-intelligence/password-health.component.html b/bitwarden_license/bit-web/src/app/dirt/access-intelligence/password-health.component.html
deleted file mode 100644
index b798a75ab3a..00000000000
--- a/bitwarden_license/bit-web/src/app/dirt/access-intelligence/password-health.component.html
+++ /dev/null
@@ -1,53 +0,0 @@
-<bit-container>
-  <p>{{ "passwordsReportDesc" | i18n }}</p>
-  <div *ngIf="loading">
-    <i
-      class="bwi bwi-spinner bwi-spin tw-text-muted"
-      title="{{ 'loading' | i18n }}"
-      aria-hidden="true"
-    ></i>
-    <span class="tw-sr-only">{{ "loading" | i18n }}</span>
-  </div>
-  <div class="tw-mt-4" *ngIf="!loading && dataSource.data.length">
-    <bit-table-scroll [dataSource]="dataSource" [rowSize]="53">
-      <ng-container header>
-        <th bitCell></th>
-        <th bitCell bitSortable="name">{{ "name" | i18n }}</th>
-        <th bitCell class="tw-text-right">{{ "weakness" | i18n }}</th>
-        <th bitCell class="tw-text-right">{{ "timesReused" | i18n }}</th>
-        <th bitCell class="tw-text-right">{{ "timesExposed" | i18n }}</th>
-      </ng-container>
-      <ng-template bitRowDef let-row>
-        <td bitCell>
-          <app-vault-icon [cipher]="row"></app-vault-icon>
-        </td>
-        <td bitCell>
-          <ng-container>
-            <span>{{ row.name }}</span>
-          </ng-container>
-          <br />
-          <small>{{ row.subTitle }}</small>
-        </td>
-        <td bitCell class="tw-text-right">
-          <span
-            bitBadge
-            *ngIf="row.weakPasswordDetail"
-            [variant]="row.weakPasswordDetail?.detailValue.badgeVariant"
-          >
-            {{ row.weakPasswordDetail?.detailValue.label | i18n }}
-          </span>
-        </td>
-        <td bitCell class="tw-text-right">
-          <span bitBadge *ngIf="passwordUseMap.has(row.login.password)" variant="warning">
-            {{ "reusedXTimes" | i18n: passwordUseMap.get(row.login.password) }}
-          </span>
-        </td>
-        <td bitCell class="tw-text-right">
-          <span bitBadge variant="warning" *ngIf="row.exposedPasswordDetail">
-            {{ "exposedXTimes" | i18n: row.exposedPasswordDetail?.exposedXTimes }}
-          </span>
-        </td>
-      </ng-template>
-    </bit-table-scroll>
-  </div>
-</bit-container>
diff --git a/bitwarden_license/bit-web/src/app/dirt/access-intelligence/password-health.component.spec.ts b/bitwarden_license/bit-web/src/app/dirt/access-intelligence/password-health.component.spec.ts
deleted file mode 100644
index f7c821f123a..00000000000
--- a/bitwarden_license/bit-web/src/app/dirt/access-intelligence/password-health.component.spec.ts
+++ /dev/null
@@ -1,49 +0,0 @@
-import { ComponentFixture, TestBed } from "@angular/core/testing";
-import { ActivatedRoute, convertToParamMap } from "@angular/router";
-import { mock } from "jest-mock-extended";
-import { of } from "rxjs";
-
-import { RiskInsightsReportService } from "@bitwarden/bit-common/dirt/reports/risk-insights";
-import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { TableModule } from "@bitwarden/components";
-import { LooseComponentsModule } from "@bitwarden/web-vault/app/shared";
-import { PipesModule } from "@bitwarden/web-vault/app/vault/individual-vault/pipes/pipes.module";
-
-import { PasswordHealthComponent } from "./password-health.component";
-
-describe("PasswordHealthComponent", () => {
-  let component: PasswordHealthComponent;
-  let fixture: ComponentFixture<PasswordHealthComponent>;
-  const activeRouteParams = convertToParamMap({ organizationId: "orgId" });
-
-  beforeEach(async () => {
-    await TestBed.configureTestingModule({
-      imports: [PasswordHealthComponent, PipesModule, TableModule, LooseComponentsModule],
-      declarations: [],
-      providers: [
-        { provide: RiskInsightsReportService, useValue: mock<RiskInsightsReportService>() },
-        { provide: I18nService, useValue: mock<I18nService>() },
-        {
-          provide: ActivatedRoute,
-          useValue: {
-            paramMap: of(activeRouteParams),
-            url: of([]),
-          },
-        },
-      ],
-    }).compileComponents();
-  });
-
-  beforeEach(() => {
-    fixture = TestBed.createComponent(PasswordHealthComponent);
-    component = fixture.componentInstance;
-
-    fixture.detectChanges();
-  });
-
-  it("should initialize component", () => {
-    expect(component).toBeTruthy();
-  });
-
-  it("should call generateReport on init", () => {});
-});
diff --git a/bitwarden_license/bit-web/src/app/dirt/access-intelligence/password-health.component.ts b/bitwarden_license/bit-web/src/app/dirt/access-intelligence/password-health.component.ts
deleted file mode 100644
index 16c783c3f4f..00000000000
--- a/bitwarden_license/bit-web/src/app/dirt/access-intelligence/password-health.component.ts
+++ /dev/null
@@ -1,69 +0,0 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
-import { CommonModule } from "@angular/common";
-import { Component, DestroyRef, inject, OnInit } from "@angular/core";
-import { takeUntilDestroyed } from "@angular/core/rxjs-interop";
-import { ActivatedRoute } from "@angular/router";
-import { firstValueFrom, map } from "rxjs";
-
-import { JslibModule } from "@bitwarden/angular/jslib.module";
-import { RiskInsightsReportService } from "@bitwarden/bit-common/dirt/reports/risk-insights";
-import { CipherHealthReportDetail } from "@bitwarden/bit-common/dirt/reports/risk-insights/models/password-health";
-import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import {
-  BadgeModule,
-  ContainerComponent,
-  TableDataSource,
-  TableModule,
-} from "@bitwarden/components";
-import { HeaderModule } from "@bitwarden/web-vault/app/layouts/header/header.module";
-import { OrganizationBadgeModule } from "@bitwarden/web-vault/app/vault/individual-vault/organization-badge/organization-badge.module";
-import { PipesModule } from "@bitwarden/web-vault/app/vault/individual-vault/pipes/pipes.module";
-
-@Component({
-  selector: "tools-password-health",
-  templateUrl: "password-health.component.html",
-  imports: [
-    BadgeModule,
-    OrganizationBadgeModule,
-    CommonModule,
-    ContainerComponent,
-    PipesModule,
-    JslibModule,
-    HeaderModule,
-    TableModule,
-  ],
-})
-export class PasswordHealthComponent implements OnInit {
-  passwordUseMap = new Map<string, number>();
-  dataSource = new TableDataSource<CipherHealthReportDetail>();
-
-  loading = true;
-
-  private destroyRef = inject(DestroyRef);
-
-  constructor(
-    protected riskInsightsReportService: RiskInsightsReportService,
-    protected i18nService: I18nService,
-    protected activatedRoute: ActivatedRoute,
-  ) {}
-
-  ngOnInit() {
-    this.activatedRoute.paramMap
-      .pipe(
-        takeUntilDestroyed(this.destroyRef),
-        map(async (params) => {
-          const organizationId = params.get("organizationId");
-          await this.setCiphers(organizationId);
-        }),
-      )
-      .subscribe();
-  }
-
-  async setCiphers(organizationId: string) {
-    this.dataSource.data = await firstValueFrom(
-      this.riskInsightsReportService.generateRawDataReport$(organizationId),
-    );
-    this.loading = false;
-  }
-}
diff --git a/bitwarden_license/bit-web/src/app/dirt/access-intelligence/risk-insights.component.html b/bitwarden_license/bit-web/src/app/dirt/access-intelligence/risk-insights.component.html
index c9408b806ff..627db269097 100644
--- a/bitwarden_license/bit-web/src/app/dirt/access-intelligence/risk-insights.component.html
+++ b/bitwarden_license/bit-web/src/app/dirt/access-intelligence/risk-insights.component.html
@@ -45,15 +45,6 @@
         </ng-template>
         <tools-critical-applications></tools-critical-applications>
       </bit-tab>
-      <bit-tab *ngIf="showDebugTabs" label="Raw Data">
-        <tools-password-health></tools-password-health>
-      </bit-tab>
-      <bit-tab *ngIf="showDebugTabs" label="Raw Data + members">
-        <tools-password-health-members></tools-password-health-members>
-      </bit-tab>
-      <bit-tab *ngIf="showDebugTabs" label="Raw Data + uri">
-        <tools-password-health-members-uri></tools-password-health-members-uri>
-      </bit-tab>
     </bit-tab-group>
 
     <bit-drawer
diff --git a/bitwarden_license/bit-web/src/app/dirt/access-intelligence/risk-insights.component.ts b/bitwarden_license/bit-web/src/app/dirt/access-intelligence/risk-insights.component.ts
index 11f7f336f61..b6da0f79255 100644
--- a/bitwarden_license/bit-web/src/app/dirt/access-intelligence/risk-insights.component.ts
+++ b/bitwarden_license/bit-web/src/app/dirt/access-intelligence/risk-insights.component.ts
@@ -16,7 +16,6 @@ import {
   PasswordHealthReportApplicationsResponse,
 } from "@bitwarden/bit-common/dirt/reports/risk-insights/models/password-health";
 import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
-import { devFlagEnabled } from "@bitwarden/common/platform/misc/flags";
 import { OrganizationId } from "@bitwarden/common/types/guid";
 import {
   AsyncActionsModule,
@@ -31,9 +30,6 @@ import { HeaderModule } from "@bitwarden/web-vault/app/layouts/header/header.mod
 
 import { AllApplicationsComponent } from "./all-applications.component";
 import { CriticalApplicationsComponent } from "./critical-applications.component";
-import { PasswordHealthMembersURIComponent } from "./password-health-members-uri.component";
-import { PasswordHealthMembersComponent } from "./password-health-members.component";
-import { PasswordHealthComponent } from "./password-health.component";
 
 // FIXME: update to use a const object instead of a typescript enum
 // eslint-disable-next-line @bitwarden/platform/no-enums
@@ -53,9 +49,6 @@ export enum RiskInsightsTabType {
     CriticalApplicationsComponent,
     JslibModule,
     HeaderModule,
-    PasswordHealthComponent,
-    PasswordHealthMembersComponent,
-    PasswordHealthMembersURIComponent,
     TabsModule,
     DrawerComponent,
     DrawerBodyComponent,
@@ -69,7 +62,6 @@ export class RiskInsightsComponent implements OnInit {
   dataLastUpdated: Date = new Date();
 
   criticalApps$: Observable<PasswordHealthReportApplicationsResponse[]> = new Observable();
-  showDebugTabs: boolean = false;
 
   appsCount: number = 0;
   criticalAppsCount: number = 0;
@@ -97,8 +89,6 @@ export class RiskInsightsComponent implements OnInit {
   }
 
   async ngOnInit() {
-    this.showDebugTabs = devFlagEnabled("showRiskInsightsDebug");
-
     this.route.paramMap
       .pipe(
         takeUntilDestroyed(this.destroyRef),

From e33792357d75c2b87fffa7fe423af446e4de866e Mon Sep 17 00:00:00 2001
From: "bw-ghapp[bot]" <178206702+bw-ghapp[bot]@users.noreply.github.com>
Date: Mon, 7 Jul 2025 17:42:51 +0000
Subject: [PATCH 069/239] Autosync the updated translations (#15468)

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>
---
 apps/browser/src/_locales/ar/messages.json    |  23 +
 apps/browser/src/_locales/az/messages.json    |  23 +
 apps/browser/src/_locales/be/messages.json    |  23 +
 apps/browser/src/_locales/bg/messages.json    |  25 +-
 apps/browser/src/_locales/bn/messages.json    |  23 +
 apps/browser/src/_locales/bs/messages.json    |  23 +
 apps/browser/src/_locales/ca/messages.json    |  23 +
 apps/browser/src/_locales/cs/messages.json    |  23 +
 apps/browser/src/_locales/cy/messages.json    |  23 +
 apps/browser/src/_locales/da/messages.json    |  23 +
 apps/browser/src/_locales/de/messages.json    |  25 +-
 apps/browser/src/_locales/el/messages.json    |  23 +
 apps/browser/src/_locales/en_GB/messages.json |  23 +
 apps/browser/src/_locales/en_IN/messages.json |  23 +
 apps/browser/src/_locales/es/messages.json    |  23 +
 apps/browser/src/_locales/et/messages.json    |  23 +
 apps/browser/src/_locales/eu/messages.json    |  23 +
 apps/browser/src/_locales/fa/messages.json    |  23 +
 apps/browser/src/_locales/fi/messages.json    |  23 +
 apps/browser/src/_locales/fil/messages.json   |  23 +
 apps/browser/src/_locales/fr/messages.json    |  41 +-
 apps/browser/src/_locales/gl/messages.json    |  23 +
 apps/browser/src/_locales/he/messages.json    |  23 +
 apps/browser/src/_locales/hi/messages.json    |  23 +
 apps/browser/src/_locales/hr/messages.json    | 225 ++++---
 apps/browser/src/_locales/hu/messages.json    |  23 +
 apps/browser/src/_locales/id/messages.json    |  23 +
 apps/browser/src/_locales/it/messages.json    |  23 +
 apps/browser/src/_locales/ja/messages.json    |  23 +
 apps/browser/src/_locales/ka/messages.json    |  23 +
 apps/browser/src/_locales/km/messages.json    |  23 +
 apps/browser/src/_locales/kn/messages.json    |  23 +
 apps/browser/src/_locales/ko/messages.json    |  23 +
 apps/browser/src/_locales/lt/messages.json    |  23 +
 apps/browser/src/_locales/lv/messages.json    |  23 +
 apps/browser/src/_locales/ml/messages.json    |  23 +
 apps/browser/src/_locales/mr/messages.json    |  23 +
 apps/browser/src/_locales/my/messages.json    |  23 +
 apps/browser/src/_locales/nb/messages.json    |  23 +
 apps/browser/src/_locales/ne/messages.json    |  23 +
 apps/browser/src/_locales/nl/messages.json    |  23 +
 apps/browser/src/_locales/nn/messages.json    |  23 +
 apps/browser/src/_locales/or/messages.json    |  23 +
 apps/browser/src/_locales/pl/messages.json    | 635 +++++++++---------
 apps/browser/src/_locales/pt_BR/messages.json |  23 +
 apps/browser/src/_locales/pt_PT/messages.json |  23 +
 apps/browser/src/_locales/ro/messages.json    |  23 +
 apps/browser/src/_locales/ru/messages.json    |  23 +
 apps/browser/src/_locales/si/messages.json    |  23 +
 apps/browser/src/_locales/sk/messages.json    |  35 +-
 apps/browser/src/_locales/sl/messages.json    |  23 +
 apps/browser/src/_locales/sr/messages.json    |  23 +
 apps/browser/src/_locales/sv/messages.json    |  23 +
 apps/browser/src/_locales/te/messages.json    |  23 +
 apps/browser/src/_locales/th/messages.json    | 113 ++--
 apps/browser/src/_locales/tr/messages.json    |  23 +
 apps/browser/src/_locales/uk/messages.json    |  23 +
 apps/browser/src/_locales/vi/messages.json    |  23 +
 apps/browser/src/_locales/zh_CN/messages.json |  23 +
 apps/browser/src/_locales/zh_TW/messages.json |  23 +
 apps/browser/store/locales/pl/copy.resx       |  63 +-
 apps/browser/store/locales/th/copy.resx       |   2 +-
 62 files changed, 1881 insertions(+), 502 deletions(-)

diff --git a/apps/browser/src/_locales/ar/messages.json b/apps/browser/src/_locales/ar/messages.json
index 6c7f7f0fccd..c56ea69d862 100644
--- a/apps/browser/src/_locales/ar/messages.json
+++ b/apps/browser/src/_locales/ar/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "يجب عليك تأكيد بريدك الإلكتروني لاستخدام هذه الميزة. يمكنك تأكيد بريدك الإلكتروني في خزانة الويب."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "تحديث كلمة المرور الرئيسية"
   },
@@ -4244,6 +4247,26 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Continue to browser settings?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/az/messages.json b/apps/browser/src/_locales/az/messages.json
index ddf82f37d2f..f63038beb67 100644
--- a/apps/browser/src/_locales/az/messages.json
+++ b/apps/browser/src/_locales/az/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "Bu özəlliyi istifadə etmək üçün e-poçtunuzu doğrulamalısınız. E-poçtunuzu veb seyfdə doğrulaya bilərsiniz."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Güncəllənmiş ana parol"
   },
@@ -4244,6 +4247,26 @@
     "message": "Ortaq formatlar",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Brauzer ayarları ilə davam edilsin?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/be/messages.json b/apps/browser/src/_locales/be/messages.json
index 3944569df94..2a691bc4987 100644
--- a/apps/browser/src/_locales/be/messages.json
+++ b/apps/browser/src/_locales/be/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "Вы павінны праверыць свой адрас электроннай пошты, каб выкарыстоўваць гэту функцыю. Зрабіць гэта можна ў вэб-сховішчы."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Асноўны пароль абноўлены"
   },
@@ -4244,6 +4247,26 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Continue to browser settings?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/bg/messages.json b/apps/browser/src/_locales/bg/messages.json
index 53e896e6a72..fa822d424ff 100644
--- a/apps/browser/src/_locales/bg/messages.json
+++ b/apps/browser/src/_locales/bg/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "Трябва да потвърдите е-пощата си, за да използвате тази функционалност. Можете да го направите в уеб-трезора."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Главната парола е зададена успешно"
+  },
   "updatedMasterPassword": {
     "message": "Главната парола е променена"
   },
@@ -4244,6 +4247,26 @@
     "message": "Често използвани формати",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "Разпознаването на съвпадения чрез адреса е начинът, по който Битуорден определя кои елементи да предложи за автоматично попълване.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "„Регулярен израз“ е по-сложен метод, който е и по-рисков, тъй като може да застраши сигурността на данните за вписване.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "„Започва с“ е по-сложен метод, който е и по-рисков, тъй като може да застраши сигурността на данните за вписване.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "Повече относно разпознаването на съвпадения",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Разширени настройки",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Продължаване към настройките на браузъра?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
@@ -5098,7 +5121,7 @@
     "description": "Represents the ~ key in screen reader content as a readable word"
   },
   "backtickCharacterDescriptor": {
-    "message": "Backtick",
+    "message": "Обратен апостроф",
     "description": "Represents the ` key in screen reader content as a readable word"
   },
   "exclamationCharacterDescriptor": {
diff --git a/apps/browser/src/_locales/bn/messages.json b/apps/browser/src/_locales/bn/messages.json
index 29e0e3800c8..48c0dbef228 100644
--- a/apps/browser/src/_locales/bn/messages.json
+++ b/apps/browser/src/_locales/bn/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "You must verify your email to use this feature. You can verify your email in the web vault."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "প্রধান পাসওয়ার্ড আপডেট করা হয়েছে"
   },
@@ -4244,6 +4247,26 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Continue to browser settings?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/bs/messages.json b/apps/browser/src/_locales/bs/messages.json
index 7c575cdb72b..83228e94611 100644
--- a/apps/browser/src/_locales/bs/messages.json
+++ b/apps/browser/src/_locales/bs/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "You must verify your email to use this feature. You can verify your email in the web vault."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Updated master password"
   },
@@ -4244,6 +4247,26 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Continue to browser settings?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/ca/messages.json b/apps/browser/src/_locales/ca/messages.json
index ff3226255e3..edc139b1f23 100644
--- a/apps/browser/src/_locales/ca/messages.json
+++ b/apps/browser/src/_locales/ca/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "Heu de verificar el correu electrònic per utilitzar aquesta característica. Podeu verificar el vostre correu electrònic a la caixa forta web."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "La contrasenya mestra s'ha configurat correctament"
+  },
   "updatedMasterPassword": {
     "message": "Contrasenya mestra actualitzada"
   },
@@ -4244,6 +4247,26 @@
     "message": "Formats comuns",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Voleu continuar a la configuració del navegador?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/cs/messages.json b/apps/browser/src/_locales/cs/messages.json
index 52c548a93b0..a9c4a823109 100644
--- a/apps/browser/src/_locales/cs/messages.json
+++ b/apps/browser/src/_locales/cs/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "Abyste mohli tuto funkci používat, musíte ověřit svůj e-mail. Svůj e-mail můžete ověřit ve webovém trezoru."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Hlavní heslo bylo úspěšně nastaveno"
+  },
   "updatedMasterPassword": {
     "message": "Hlavní heslo bylo aktualizováno"
   },
@@ -4244,6 +4247,26 @@
     "message": "Společné formáty",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "Detekce shody URI je způsob, jakým Bitwarden identifikuje návrhy automatického vyplňování.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regulární výraz\" je pokročilá volba se zvýšeným rizikem odhalení přihlašovacích údajů.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Začíná na\" je pokročilá volba se zvýšeným rizikem odhalení přihlašovacích údajů.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "Další informace o detekci shody",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Rozšířené volby",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Pokračovat do nastavení prohlížeče?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/cy/messages.json b/apps/browser/src/_locales/cy/messages.json
index c060d81bcfc..6f0ce7a438a 100644
--- a/apps/browser/src/_locales/cy/messages.json
+++ b/apps/browser/src/_locales/cy/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "You must verify your email to use this feature. You can verify your email in the web vault."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Diweddarwyd y prif gyfrinair"
   },
@@ -4244,6 +4247,26 @@
     "message": "Fformatau cyffredin",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Continue to browser settings?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/da/messages.json b/apps/browser/src/_locales/da/messages.json
index 1b79fc0ecf9..ebd10e7b701 100644
--- a/apps/browser/src/_locales/da/messages.json
+++ b/apps/browser/src/_locales/da/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "Du skal bekræfte din e-mail for at bruge denne funktion. Du kan bekræfte din e-mail i web-boksen."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Hovedadgangskode opdateret"
   },
@@ -4244,6 +4247,26 @@
     "message": "Almindelige formater",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Fortsæt til Browserindstillinger?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/de/messages.json b/apps/browser/src/_locales/de/messages.json
index 418c15dc3a0..8822f346e88 100644
--- a/apps/browser/src/_locales/de/messages.json
+++ b/apps/browser/src/_locales/de/messages.json
@@ -1060,7 +1060,7 @@
     "message": "Soll Bitwarden sich dieses Passwort merken?"
   },
   "notificationAddSave": {
-    "message": "Ja, jetzt speichern"
+    "message": "Speichern"
   },
   "notificationViewAria": {
     "message": "$ITEMNAME$ anzeigen, öffnet sich in neuem Fenster",
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "Du musst deine E-Mail Adresse verifizieren, um diese Funktion nutzen zu können. Du kannst deine E-Mail im Web-Tresor verifizieren."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master-Passwort erfolgreich eingerichtet"
+  },
   "updatedMasterPassword": {
     "message": "Master-Passwort aktualisiert"
   },
@@ -4244,6 +4247,26 @@
     "message": "Gängigste Formate",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Weiter zu den Browsereinstellungen?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/el/messages.json b/apps/browser/src/_locales/el/messages.json
index acd7cac0c9b..4779fcf021c 100644
--- a/apps/browser/src/_locales/el/messages.json
+++ b/apps/browser/src/_locales/el/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "Πρέπει να επαληθεύσετε το email σας για να χρησιμοποιήσετε αυτή τη δυνατότητα. Μπορείτε να επαληθεύσετε το email σας στο web vault."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Ενημερώθηκε ο κύριος κωδικός πρόσβασης"
   },
@@ -4244,6 +4247,26 @@
     "message": "Κοινοί τύποι",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Συνεχίστε στις ρυθμίσεις περιηγητή;",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/en_GB/messages.json b/apps/browser/src/_locales/en_GB/messages.json
index ffca2486ff4..dddae654d96 100644
--- a/apps/browser/src/_locales/en_GB/messages.json
+++ b/apps/browser/src/_locales/en_GB/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "You must verify your email to use this feature. You can verify your email in the web vault."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Updated master password"
   },
@@ -4244,6 +4247,26 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Continue to browser settings?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/en_IN/messages.json b/apps/browser/src/_locales/en_IN/messages.json
index 02d2ba35060..deaadf4f900 100644
--- a/apps/browser/src/_locales/en_IN/messages.json
+++ b/apps/browser/src/_locales/en_IN/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "You must verify your email to use this feature. You can verify your email in the web vault."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Updated Master Password"
   },
@@ -4244,6 +4247,26 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Continue to browser settings?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/es/messages.json b/apps/browser/src/_locales/es/messages.json
index 250aa3430e0..7dc607d30d0 100644
--- a/apps/browser/src/_locales/es/messages.json
+++ b/apps/browser/src/_locales/es/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "Debes verificar tu correo electrónico para usar esta función. Puedes verificar tu correo electrónico en la caja fuerte web."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Contraseña maestra actualizada"
   },
@@ -4244,6 +4247,26 @@
     "message": "Formatos comunes",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "¿Continuar a los ajustes del navegador?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/et/messages.json b/apps/browser/src/_locales/et/messages.json
index 6893dec3f4f..a5e53be45cb 100644
--- a/apps/browser/src/_locales/et/messages.json
+++ b/apps/browser/src/_locales/et/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "Selle funktsiooni kasutamiseks pead kinnitama oma e-posti aadressi. Saad seda teha veebihoidlas."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Uuendas ülemparooli"
   },
@@ -4244,6 +4247,26 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Continue to browser settings?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/eu/messages.json b/apps/browser/src/_locales/eu/messages.json
index 49e87abcf83..3c9c83777ad 100644
--- a/apps/browser/src/_locales/eu/messages.json
+++ b/apps/browser/src/_locales/eu/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "Emaila egiaztatu behar duzu funtzio hau erabiltzeko. Emaila web-eko kutxa gotorrean egiazta dezakezu."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Pasahitz nagusia eguneratuta"
   },
@@ -4244,6 +4247,26 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Continue to browser settings?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/fa/messages.json b/apps/browser/src/_locales/fa/messages.json
index a1979d703bf..77c9da484f2 100644
--- a/apps/browser/src/_locales/fa/messages.json
+++ b/apps/browser/src/_locales/fa/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "برای استفاده از این ویژگی باید ایمیل خود را تأیید کنید. می‌توانید ایمیل خود را در گاوصندوق وب تأیید کنید."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "کلمه عبور اصلی به‌روزرسانی شد"
   },
@@ -4244,6 +4247,26 @@
     "message": "فرمت‌های رایج",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "ادامه به تنظیمات مرورگر؟",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/fi/messages.json b/apps/browser/src/_locales/fi/messages.json
index 098e361223a..d7484b49040 100644
--- a/apps/browser/src/_locales/fi/messages.json
+++ b/apps/browser/src/_locales/fi/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "Sinun on vahvistettava sähköpostiosoitteesi käyttääksesi ominaisuutta. Voit vahvistaa osoitteesi verkkoholvissa."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Pääsalasanasi on vaihdettu"
   },
@@ -4244,6 +4247,26 @@
     "message": "Yleiset muodot",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Avataanko selaimen asetukset?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/fil/messages.json b/apps/browser/src/_locales/fil/messages.json
index de17e87a57b..260ce635a1a 100644
--- a/apps/browser/src/_locales/fil/messages.json
+++ b/apps/browser/src/_locales/fil/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "Kailangan mong i-verify ang iyong email upang gamitin ang tampok na ito. Maaari mong i-verify ang iyong email sa web vault."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "I-update ang master password"
   },
@@ -4244,6 +4247,26 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Continue to browser settings?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/fr/messages.json b/apps/browser/src/_locales/fr/messages.json
index e1397980675..ab449fc07af 100644
--- a/apps/browser/src/_locales/fr/messages.json
+++ b/apps/browser/src/_locales/fr/messages.json
@@ -3,7 +3,7 @@
     "message": "Bitwarden"
   },
   "appLogoLabel": {
-    "message": "Bitwarden logo"
+    "message": "Logo de Bitwarden"
   },
   "extName": {
     "message": "Gestionnaire de mots de passe Bitwarden",
@@ -887,7 +887,7 @@
     "message": "Suivez les étapes ci-dessous afin de réussir à vous connecter."
   },
   "followTheStepsBelowToFinishLoggingInWithSecurityKey": {
-    "message": "Follow the steps below to finish logging in with your security key."
+    "message": "Suivez les étapes ci-dessous pour terminer la connexion avec votre clé de sécurité."
   },
   "restartRegistration": {
     "message": "Redémarrer l'inscription"
@@ -1080,7 +1080,7 @@
     "description": "Tooltip and Aria label for edit button on cipher item"
   },
   "newNotification": {
-    "message": "New notification"
+    "message": "Nouvelle notification"
   },
   "labelWithNotification": {
     "message": "$LABEL$: New notification",
@@ -1093,11 +1093,11 @@
     }
   },
   "notificationLoginSaveConfirmation": {
-    "message": "saved to Bitwarden.",
+    "message": "enregistré dans Bitwarden.",
     "description": "Shown to user after item is saved."
   },
   "notificationLoginUpdatedConfirmation": {
-    "message": "updated in Bitwarden.",
+    "message": "mis à jour dans Bitwarden.",
     "description": "Shown to user after item is updated."
   },
   "selectItemAriaLabel": {
@@ -1129,7 +1129,7 @@
     "description": "Prompt asking the user if they want to save their login details."
   },
   "updateLogin": {
-    "message": "Update existing login",
+    "message": "Mettre à jour de l'identifiant existant",
     "description": "Prompt asking the user if they want to update an existing login entry."
   },
   "loginSaveSuccess": {
@@ -1162,7 +1162,7 @@
     "description": "Shown to user after login is updated."
   },
   "nextSecurityTaskAction": {
-    "message": "Change next password",
+    "message": "Changer le mot de passe suivant",
     "description": "Message prompting user to undertake completion of another security task."
   },
   "saveFailure": {
@@ -2525,7 +2525,7 @@
     "message": "Modifier"
   },
   "changePassword": {
-    "message": "Change password",
+    "message": "Changer le mot de passe",
     "description": "Change password button for browser at risk notification on login."
   },
   "changeButtonTitle": {
@@ -2538,7 +2538,7 @@
     }
   },
   "atRiskPassword": {
-    "message": "At-risk password"
+    "message": "Mot de passe à risque"
   },
   "atRiskPasswords": {
     "message": "Mots de passe à risque"
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "Vous devez vérifier votre courriel pour utiliser cette fonctionnalité. Vous pouvez vérifier votre courriel dans le coffre web."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Mot de passe principal mis à jour"
   },
@@ -4244,6 +4247,26 @@
     "message": "Formats communs",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Continuer vers les paramètres du navigateur ?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/gl/messages.json b/apps/browser/src/_locales/gl/messages.json
index 152f4d7236c..06b4cd73bad 100644
--- a/apps/browser/src/_locales/gl/messages.json
+++ b/apps/browser/src/_locales/gl/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "Debes verificar o teu correo electrónico para empregar esta función. Podes facelo dende a aplicación web."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Contrasinal mestre actualizado"
   },
@@ -4244,6 +4247,26 @@
     "message": "Formatos comúns",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Ir ós axustes do navegador?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/he/messages.json b/apps/browser/src/_locales/he/messages.json
index 215aa17988d..5010fa8ac16 100644
--- a/apps/browser/src/_locales/he/messages.json
+++ b/apps/browser/src/_locales/he/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "עליך לאמת את הדוא\"ל שלך כדי להשתמש בתכונה זו. ניתן לאמת את הדוא\"ל שלך בכספת הרשת."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "סיסמה ראשית עודכנה"
   },
@@ -4244,6 +4247,26 @@
     "message": "פורמטים נפוצים",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "להמשיך אל הגדרות הדפדפן?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/hi/messages.json b/apps/browser/src/_locales/hi/messages.json
index 64a98de313b..c33c6e249c6 100644
--- a/apps/browser/src/_locales/hi/messages.json
+++ b/apps/browser/src/_locales/hi/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "इस सुविधा का उपयोग करने के लिए आपको अपने ईमेल को सत्यापित करना होगा। आप वेब वॉल्ट में अपने ईमेल को सत्यापित कर सकते हैं।"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "अपडेट किया गया मास्टर पासवर्ड"
   },
@@ -4244,6 +4247,26 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Continue to browser settings?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/hr/messages.json b/apps/browser/src/_locales/hr/messages.json
index 69a68e921ae..2dfcd35da82 100644
--- a/apps/browser/src/_locales/hr/messages.json
+++ b/apps/browser/src/_locales/hr/messages.json
@@ -887,7 +887,7 @@
     "message": "Prati korake za dovršetak prijave."
   },
   "followTheStepsBelowToFinishLoggingInWithSecurityKey": {
-    "message": "Follow the steps below to finish logging in with your security key."
+    "message": "Prati korake za dovršetak prijave svojim sigurnosnim ključem."
   },
   "restartRegistration": {
     "message": "Ponovno pokreni registraciju"
@@ -1063,7 +1063,7 @@
     "message": "Spremi"
   },
   "notificationViewAria": {
-    "message": "View $ITEMNAME$, opens in new window",
+    "message": "Pogledaj $ITEMNAME$, otvara u novom prozoru",
     "placeholders": {
       "itemName": {
         "content": "$1"
@@ -1072,18 +1072,18 @@
     "description": "Aria label for the view button in notification bar confirmation message"
   },
   "notificationNewItemAria": {
-    "message": "New Item, opens in new window",
+    "message": "Nova stavka, otvara u novom prozoru",
     "description": "Aria label for the new item button in notification bar confirmation message when error is prompted"
   },
   "notificationEditTooltip": {
-    "message": "Edit before saving",
+    "message": "Uredi prije spremanja",
     "description": "Tooltip and Aria label for edit button on cipher item"
   },
   "newNotification": {
-    "message": "New notification"
+    "message": "Nova obavijest"
   },
   "labelWithNotification": {
-    "message": "$LABEL$: New notification",
+    "message": "$LABEL$: Nova obavijest",
     "description": "Label for the notification with a new login suggestion.",
     "placeholders": {
       "label": {
@@ -1093,15 +1093,15 @@
     }
   },
   "notificationLoginSaveConfirmation": {
-    "message": "saved to Bitwarden.",
+    "message": "spremljeno u Bitwarden.",
     "description": "Shown to user after item is saved."
   },
   "notificationLoginUpdatedConfirmation": {
-    "message": "updated in Bitwarden.",
+    "message": "ažurirano u Bitwarenu.",
     "description": "Shown to user after item is updated."
   },
   "selectItemAriaLabel": {
-    "message": "Select $ITEMTYPE$, $ITEMNAME$",
+    "message": "Odaberi $ITEMTYPE$, $ITEMNAME$",
     "description": "Used by screen readers. $1 is the item type (like vault or folder), $2 is the selected item name.",
     "placeholders": {
       "itemType": {
@@ -1121,15 +1121,15 @@
     "description": "Button text for updating an existing login entry."
   },
   "unlockToSave": {
-    "message": "Unlock to save this login",
+    "message": "Otključaj za spremanje ove prijave",
     "description": "User prompt to take action in order to save the login they just entered."
   },
   "saveLogin": {
-    "message": "Save login",
+    "message": "Spremi prijavu",
     "description": "Prompt asking the user if they want to save their login details."
   },
   "updateLogin": {
-    "message": "Update existing login",
+    "message": "Ažuriraj postojeću prijavu",
     "description": "Prompt asking the user if they want to update an existing login entry."
   },
   "loginSaveSuccess": {
@@ -1141,7 +1141,7 @@
     "description": "Message displayed when login details are successfully updated."
   },
   "loginUpdateTaskSuccess": {
-    "message": "Great job! You took the steps to make you and $ORGANIZATION$ more secure.",
+    "message": "Odlično! Ti i $ORGANIZATION$ ste sada sigurniji.",
     "placeholders": {
       "organization": {
         "content": "$1"
@@ -1150,7 +1150,7 @@
     "description": "Shown to user after login is updated."
   },
   "loginUpdateTaskSuccessAdditional": {
-    "message": "Thank you for making $ORGANIZATION$ more secure. You have $TASK_COUNT$ more passwords to update.",
+    "message": "Hvala što je $ORGANIZATION$ sada sigurnija. Imaš još $TASK_COUNT$ lozinku za ažuriranje.",
     "placeholders": {
       "organization": {
         "content": "$1"
@@ -1162,7 +1162,7 @@
     "description": "Shown to user after login is updated."
   },
   "nextSecurityTaskAction": {
-    "message": "Change next password",
+    "message": "Promjeni sljedeću lozinku",
     "description": "Message prompting user to undertake completion of another security task."
   },
   "saveFailure": {
@@ -1366,7 +1366,7 @@
     "message": "Značajka nije dostupna"
   },
   "legacyEncryptionUnsupported": {
-    "message": "Legacy encryption is no longer supported. Please contact support to recover your account."
+    "message": "Zastarjelo šifriranje više nije podržano. Obrati se podršci za oporavak računa."
   },
   "premiumMembership": {
     "message": "Premium članstvo"
@@ -1600,13 +1600,13 @@
     "message": "Prijedlozi auto-ispune"
   },
   "autofillSpotlightTitle": {
-    "message": "Easily find autofill suggestions"
+    "message": "Jednostavno pronađi prijedloge auto-ispune"
   },
   "autofillSpotlightDesc": {
-    "message": "Turn off your browser's autofill settings, so they don't conflict with Bitwarden."
+    "message": "Isključi postavke auto-ispune preglenika kako se ne bi kosile s Bitwardenom."
   },
   "turnOffBrowserAutofill": {
-    "message": "Turn off $BROWSER$ autofill",
+    "message": "Isključi auto-ispunu za $BROWSER$",
     "placeholders": {
       "browser": {
         "content": "$1",
@@ -1615,7 +1615,7 @@
     }
   },
   "turnOffAutofill": {
-    "message": "Turn off autofill"
+    "message": "Isključi auto-ispunu"
   },
   "showInlineMenuLabel": {
     "message": "Prikaži prijedloge auto-ispune na poljima obrazaca"
@@ -1923,7 +1923,7 @@
     "message": "SSH ključ"
   },
   "typeNote": {
-    "message": "Note"
+    "message": "Bilješka"
   },
   "newItemHeader": {
     "message": "Novi $TYPE$",
@@ -2157,7 +2157,7 @@
     "message": "Postavi svoj PIN kôd za otključavanje Bitwardena. Postavke PIN-a se resetiraju ako se potpuno odjaviš iz aplikacije."
   },
   "setPinCode": {
-    "message": "You can use this PIN to unlock Bitwarden. Your PIN will be reset if you ever fully log out of the application."
+    "message": "Ovim PIN-om možeš otključati Bitwarden. Tvoj PIN će se resetirati ako se ikada potpuno odjaviš iz aplikacije."
   },
   "pinRequired": {
     "message": "Potreban je PIN."
@@ -2208,7 +2208,7 @@
     "message": "Koristi ovu lozinku"
   },
   "useThisPassphrase": {
-    "message": "Use this passphrase"
+    "message": "Koristi ovu fraznu lozinku"
   },
   "useThisUsername": {
     "message": "Koristi ovo korisničko ime"
@@ -2380,7 +2380,7 @@
     "message": "Pravila privatnosti"
   },
   "yourNewPasswordCannotBeTheSameAsYourCurrentPassword": {
-    "message": "Your new password cannot be the same as your current password."
+    "message": "Tvoja nova lozinka ne može biti ista kao tvoja trenutna lozinka."
   },
   "hintEqualsPassword": {
     "message": "Podsjetnik za lozinku ne može biti isti kao lozinka."
@@ -2488,10 +2488,10 @@
     "message": "Organizacijsko pravilo onemogućuje uvoz stavki u tvoj osobni trezor."
   },
   "restrictCardTypeImport": {
-    "message": "Cannot import card item types"
+    "message": "Ne mogu uvesti stavke vrste Platna kartica"
   },
   "restrictCardTypeImportDesc": {
-    "message": "A policy set by 1 or more organizations prevents you from importing cards to your vaults."
+    "message": "Pravila jedne ili više organizacija onemogućuju uvoz stavke vrste Platna kartica u tvoj trezor."
   },
   "domainsTitle": {
     "message": "Domene",
@@ -2525,7 +2525,7 @@
     "message": "Promijeni"
   },
   "changePassword": {
-    "message": "Change password",
+    "message": "Promijeni lozinku",
     "description": "Change password button for browser at risk notification on login."
   },
   "changeButtonTitle": {
@@ -2538,7 +2538,7 @@
     }
   },
   "atRiskPassword": {
-    "message": "At-risk password"
+    "message": "Rizična lozinka"
   },
   "atRiskPasswords": {
     "message": "Rizične lozinke"
@@ -2575,7 +2575,7 @@
     }
   },
   "atRiskChangePrompt": {
-    "message": "Your password for this site is at-risk. $ORGANIZATION$ has requested that you change it.",
+    "message": "Tvoja lozinka za ovo mjesto je rizična. $ORGANIZATION$ zahtijeva da ju promijeniš.",
     "placeholders": {
       "organization": {
         "content": "$1",
@@ -2585,7 +2585,7 @@
     "description": "Notification body when a login triggers an at-risk password change request and the change password domain is known."
   },
   "atRiskNavigatePrompt": {
-    "message": "$ORGANIZATION$ wants you to change this password because it is at-risk. Navigate to your account settings to change the password.",
+    "message": "$ORGANIZATION$ želi da promjeniš ovu lozinku jer je rizična. Promijeni lozinku u postavkama računa.",
     "placeholders": {
       "organization": {
         "content": "$1",
@@ -2623,14 +2623,14 @@
     "description": "Description of the review at-risk login slide on the at-risk password page carousel"
   },
   "reviewAtRiskLoginSlideImgAltPeriod": {
-    "message": "Illustration of a list of logins that are at-risk."
+    "message": "Ilustracija liste rizičnih prijava."
   },
   "generatePasswordSlideDesc": {
     "message": "Brzo generiraj jake, jedinstvene lozinke koristeći Bitwarden dijalog auto-ispune direktno na stranici.",
     "description": "Description of the generate password slide on the at-risk password page carousel"
   },
   "generatePasswordSlideImgAltPeriod": {
-    "message": "Illustration of the Bitwarden autofill menu displaying a generated password."
+    "message": "Ilustracija Bitwarden dijaloga auto-ispune s prikazom generirane lozinke."
   },
   "updateInBitwarden": {
     "message": "Ažuriraj u Bitwardenu"
@@ -2640,7 +2640,7 @@
     "description": "Description of the update in Bitwarden slide on the at-risk password page carousel"
   },
   "updateInBitwardenSlideImgAltPeriod": {
-    "message": "Illustration of a Bitwarden’s notification prompting the user to update the login."
+    "message": "Ilustracija Bitwarden upita za ažuriranje prijave."
   },
   "turnOnAutofill": {
     "message": "Uključi auto-ispunu"
@@ -2714,7 +2714,7 @@
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "maxAccessCountReached": {
-    "message": "Max access count reached",
+    "message": "Dostignut najveći broj pristupanja",
     "description": "This text will be displayed after a Send has been accessed the maximum amount of times."
   },
   "hideTextByDefault": {
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "Moraš ovjeriti svoju e-poštu u mrežnom trezoru za koritšenje ove značajke."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Glavna lozinka uspješno postavljena"
+  },
   "updatedMasterPassword": {
     "message": "Glavna lozinka ažurirana"
   },
@@ -3058,13 +3061,13 @@
     "message": "Nije nađen jedinstveni identifikator."
   },
   "removeMasterPasswordForOrganizationUserKeyConnector": {
-    "message": "A master password is no longer required for members of the following organization. Please confirm the domain below with your organization administrator."
+    "message": "Glavna lozinka više nije obavezna za članove sljedeće organizacije. Provjeri prikazanu domenu sa svojim administratorom."
   },
   "organizationName": {
-    "message": "Organization name"
+    "message": "Naziv Organizacije"
   },
   "keyConnectorDomain": {
-    "message": "Key Connector domain"
+    "message": "Domena konektora ključa"
   },
   "leaveOrganization": {
     "message": "Napusti organizaciju"
@@ -3627,35 +3630,35 @@
     "message": "Uređaj pouzdan"
   },
   "trustOrganization": {
-    "message": "Trust organization"
+    "message": "Vjeruj organizaciji"
   },
   "trust": {
-    "message": "Trust"
+    "message": "Vjeruj"
   },
   "doNotTrust": {
-    "message": "Do not trust"
+    "message": "Nemoj vjerovati"
   },
   "organizationNotTrusted": {
-    "message": "Organization is not trusted"
+    "message": "Organizacija nije pouzdana"
   },
   "emergencyAccessTrustWarning": {
-    "message": "For the security of your account, only confirm if you have granted emergency access to this user and their fingerprint matches what is displayed in their account"
+    "message": "Radi sigurnosti tvojeg računa, potvrdi samo ako je ovom korisniku odobren pristup u nuždi i ako se otisak prsta podudara s onim prikazanim u računu"
   },
   "orgTrustWarning": {
-    "message": "For the security of your account, only proceed if you are a member of this organization, have account recovery enabled, and the fingerprint displayed below matches the organization's fingerprint."
+    "message": "Radi sigurnosti tvojeg računa, nastavi samo ako si član ove organizacije, imaš omogućen oporavak računa i otisak prsta prikazan u nastavku odgovara otisku prsta organizacije."
   },
   "orgTrustWarning1": {
-    "message": "This organization has an Enterprise policy that will enroll you in account recovery. Enrollment will allow organization administrators to change your password. Only proceed if you recognize this organization and the fingerprint phrase displayed below matches the organization's fingerprint."
+    "message": "Ova organizacija ima poslovno pravilo koje će te prijaviti za oporavak računa. Prijava će omogućiti administratorima organizacije da promijene tvoju lozinku. Nastavi samo ako prepoznaješ ovu organizaciju i ako se fraza otiska prsta prikazana u nastavku podudara s otiskom prsta organizacije."
   },
   "trustUser": {
-    "message": "Trust user"
+    "message": "Vjeruj korisniku"
   },
   "sendsTitleNoItems": {
-    "message": "Send sensitive information safely",
+    "message": "Sigurno pošalji osjetljive podatke",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendsBodyNoItems": {
-    "message": "Share files and data securely with anyone, on any platform. Your information will remain end-to-end encrypted while limiting exposure.",
+    "message": "Sigurno dijeli datoteke i podatke s bilo kime, na bilo kojoj platformi. Tvoji podaci ostaju kriptirani uz ograničenje izloženosti.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "inputRequired": {
@@ -4244,6 +4247,26 @@
     "message": "Uobičajeni oblici",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Nastavi na postavke preglednika?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
@@ -4390,7 +4413,7 @@
     }
   },
   "viewItemTitleWithField": {
-    "message": "View item - $ITEMNAME$ - $FIELD$",
+    "message": "Pogledaj stavku - $ITEMNAME$ - $FIELD$",
     "description": "Title for a link that opens a view for an item.",
     "placeholders": {
       "itemname": {
@@ -4414,7 +4437,7 @@
     }
   },
   "autofillTitleWithField": {
-    "message": "Autofill - $ITEMNAME$ - $FIELD$",
+    "message": "Auto-ispuna - $ITEMNAME$ - $FIELD$",
     "description": "Title for a button that autofills a login item.",
     "placeholders": {
       "itemname": {
@@ -4575,31 +4598,31 @@
     }
   },
   "downloadBitwarden": {
-    "message": "Download Bitwarden"
+    "message": "Preuzmi Bitwarden"
   },
   "downloadBitwardenOnAllDevices": {
-    "message": "Download Bitwarden on all devices"
+    "message": "Preuzmi Bitwarden na svim uređajima"
   },
   "getTheMobileApp": {
-    "message": "Get the mobile app"
+    "message": "Nabavi mobilnu aplikaciju"
   },
   "getTheMobileAppDesc": {
-    "message": "Access your passwords on the go with the Bitwarden mobile app."
+    "message": "Pristupi svojim lozinkama bilo gdje s Bitwarden mobilnom aplikacijom."
   },
   "getTheDesktopApp": {
-    "message": "Get the desktop app"
+    "message": "Nabavi aplikaciju za stolna računala"
   },
   "getTheDesktopAppDesc": {
-    "message": "Access your vault without a browser, then set up unlock with biometrics to expedite unlocking in both the desktop app and browser extension."
+    "message": "Pristupi svojem trezoru bez preglednika, a zatim postavi otključavanje biometrijom za brže otključavanje aplikacije za stolna računala i prošitenja preglednika."
   },
   "downloadFromBitwardenNow": {
-    "message": "Download from bitwarden.com now"
+    "message": "Odmah preusmi s bitwarden.com"
   },
   "getItOnGooglePlay": {
-    "message": "Get it on Google Play"
+    "message": "Nabavi u Google Play"
   },
   "downloadOnTheAppStore": {
-    "message": "Download on the App Store"
+    "message": "Nabavi u App Store"
   },
   "permanentlyDeleteAttachmentConfirmation": {
     "message": "Sigurno želiš trajno izbrisati ovaj privitak?"
@@ -5063,16 +5086,16 @@
     "message": "Biometrijsko otključavanje trenutno nije dostupno iz nepoznatog razloga."
   },
   "unlockVault": {
-    "message": "Unlock your vault in seconds"
+    "message": "Otključaj svoj trezor u trenu"
   },
   "unlockVaultDesc": {
-    "message": "You can customize your unlock and timeout settings to more quickly access your vault."
+    "message": "Možeš prilagoditi postavke otključavanja i vremena isteka za brže pristupanje svojem trezoru."
   },
   "unlockPinSet": {
-    "message": "Unlock PIN set"
+    "message": "PIN za otključavanje podešen"
   },
   "unlockWithBiometricSet": {
-    "message": "Unlock with biometrics set"
+    "message": "Otključavanje biometrijom postavljeno"
   },
   "authenticating": {
     "message": "Autentifikacija"
@@ -5086,7 +5109,7 @@
     "description": "Notification message for when a password has been regenerated"
   },
   "saveToBitwarden": {
-    "message": "Save to Bitwarden",
+    "message": "Spremi u Bitwarden",
     "description": "Confirmation message for saving a login to Bitwarden"
   },
   "spaceCharacterDescriptor": {
@@ -5291,133 +5314,133 @@
     "message": "Promijeni rizičnu lozinku"
   },
   "settingsVaultOptions": {
-    "message": "Vault options"
+    "message": "Mogućnosti trezora"
   },
   "emptyVaultDescription": {
-    "message": "The vault protects more than just your passwords. Store secure logins, IDs, cards and notes securely here."
+    "message": "Trezor štiti više od lozinki. Sigurno spremi prijave, identitete, kartice i bilješke."
   },
   "introCarouselLabel": {
-    "message": "Welcome to Bitwarden"
+    "message": "Dobrodošli u Bitwarden"
   },
   "securityPrioritized": {
-    "message": "Security, prioritized"
+    "message": "Sigurnost je imperativ"
   },
   "securityPrioritizedBody": {
-    "message": "Save logins, cards, and identities to your secure vault. Bitwarden uses zero-knowledge, end-to-end encryption to protect what’s important to you."
+    "message": "Spremi prijave, kartice i identitete u svoj sigurni trezor. Bitwarden koristi end-to-end enkripciju bez znanja kako bi zaštitio ono što ti je važno."
   },
   "quickLogin": {
-    "message": "Quick and easy login"
+    "message": "Brza i jednostavna prijava"
   },
   "quickLoginBody": {
-    "message": "Set up biometric unlock and autofill to log into your accounts without typing a single letter."
+    "message": "Uključi biometrijsko otključavanje i auto-ispunu za prijavu bez utipkavanja ijednog slova."
   },
   "secureUser": {
-    "message": "Level up your logins"
+    "message": "Podigni svoje prijave na višu razinu"
   },
   "secureUserBody": {
-    "message": "Use the generator to create and save strong, unique passwords for all your accounts."
+    "message": "Koristi generator za stvaranje i spremanje jakih, jedinstvenih lozinki za sve svoje račune."
   },
   "secureDevices": {
-    "message": "Your data, when and where you need it"
+    "message": "Tvoji podaci kada god i gdje god su ti potrebni"
   },
   "secureDevicesBody": {
-    "message": "Save unlimited passwords across unlimited devices with Bitwarden mobile, browser, and desktop apps."
+    "message": "Spremi neograničen broj lozinki na neograničenom broju uređaja s Bitwarden mobilnom aplikacijom, proširenjem za preglednik i aplikacijom za stolna računala."
   },
   "nudgeBadgeAria": {
-    "message": "1 notification"
+    "message": "1 obavijest"
   },
   "emptyVaultNudgeTitle": {
-    "message": "Import existing passwords"
+    "message": "Uvezi postojeće lozinke"
   },
   "emptyVaultNudgeBody": {
-    "message": "Use the importer to quickly transfer logins to Bitwarden without manually adding them."
+    "message": "Koristi uvoz za brzi prijenos prijava u Bitwarden bez ručnog dodavanja."
   },
   "emptyVaultNudgeButton": {
-    "message": "Import now"
+    "message": "Uvezi odmah"
   },
   "hasItemsVaultNudgeTitle": {
-    "message": "Welcome to your vault!"
+    "message": "Dobrodošli u svoj trezor!"
   },
   "hasItemsVaultNudgeBodyOne": {
-    "message": "Autofill items for the current page"
+    "message": "Auto-ispuni stavke za trenutnu stranicu"
   },
   "hasItemsVaultNudgeBodyTwo": {
-    "message": "Favorite items for easy access"
+    "message": "Favoriti za brzi pristup"
   },
   "hasItemsVaultNudgeBodyThree": {
-    "message": "Search your vault for something else"
+    "message": "Nađi nešto drugo u svom trezoru"
   },
   "newLoginNudgeTitle": {
-    "message": "Save time with autofill"
+    "message": "Uštedi vrijeme s auto-ispunom"
   },
   "newLoginNudgeBodyOne": {
-    "message": "Include a",
+    "message": "Uključi",
     "description": "This is in multiple parts to allow for bold text in the middle of the sentence.",
     "example": "Include a Website so this login appears as an autofill suggestion."
   },
   "newLoginNudgeBodyBold": {
-    "message": "Website",
+    "message": "web stranicu",
     "description": "This is in multiple parts to allow for bold text in the middle of the sentence.",
     "example": "Include a Website so this login appears as an autofill suggestion."
   },
   "newLoginNudgeBodyTwo": {
-    "message": "so this login appears as an autofill suggestion.",
+    "message": "kako bi ova prijava bila predložena u auto-ispuni.",
     "description": "This is in multiple parts to allow for bold text in the middle of the sentence.",
     "example": "Include a Website so this login appears as an autofill suggestion."
   },
   "newCardNudgeTitle": {
-    "message": "Seamless online checkout"
+    "message": "Jednostavna online kupnja"
   },
   "newCardNudgeBody": {
-    "message": "With cards, easily autofill payment forms securely and accurately."
+    "message": "S karticama jednostavno i sigurno automatski ispunjavaš obrasce za plaćanje."
   },
   "newIdentityNudgeTitle": {
-    "message": "Simplify creating accounts"
+    "message": "Pojednostavi stvaranje računa"
   },
   "newIdentityNudgeBody": {
-    "message": "With identities, quickly autofill long registration or contact forms."
+    "message": "S identitetima brzo automatski ispunjavaš duge registracijske i kontaktne obrasce."
   },
   "newNoteNudgeTitle": {
-    "message": "Keep your sensitive data safe"
+    "message": "Čuvaj svoje osjetljive podatke na sigurnom"
   },
   "newNoteNudgeBody": {
-    "message": "With notes, securely store sensitive data like banking or insurance details."
+    "message": "S bilješkama sigurno pohrani svoje osjetljive podatke poput podataka o banci ili osiguranju."
   },
   "newSshNudgeTitle": {
-    "message": "Developer-friendly SSH access"
+    "message": "SSH pristup prilagođen programerima"
   },
   "newSshNudgeBodyOne": {
-    "message": "Store your keys and connect with the SSH agent for fast, encrypted authentication.",
+    "message": "Pohrani svoje ključeve i poveži se sa SSH agentom za brzu, šifriranu autentifikaciju.",
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
   "newSshNudgeBodyTwo": {
-    "message": "Learn more about SSH agent",
+    "message": "Saznaj više o SSH agentu",
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
   "generatorNudgeTitle": {
-    "message": "Quickly create passwords"
+    "message": "Brzo stvori lozinke"
   },
   "generatorNudgeBodyOne": {
-    "message": "Easily create strong and unique passwords by clicking on",
+    "message": "Jednostavno stvori jake i jedinstvene lozinke odabirom tipke",
     "description": "Two part message",
     "example": "Easily create strong and unique passwords by clicking on {icon} to help you keep your logins secure."
   },
   "generatorNudgeBodyTwo": {
-    "message": "to help you keep your logins secure.",
+    "message": "kako bi tvoje prijave ostale sigurne.",
     "description": "Two part message",
     "example": "Easily create strong and unique passwords by clicking on {icon} to help you keep your logins secure."
   },
   "generatorNudgeBodyAria": {
-    "message": "Easily create strong and unique passwords by clicking on the Generate password button to help you keep your logins secure.",
+    "message": "Jednostavno stvori jake i sigurne lozinke odabirom tipke Generiraj lozinku kako bi tvoje prijave ostale sigurne.",
     "description": "Aria label for the body content of the generator nudge"
   },
   "noPermissionsViewPage": {
-    "message": "You do not have permissions to view this page. Try logging in with a different account."
+    "message": "Nemaš dozvolu za pregled ove stranice. Pokušaj se prijaviti s drugim računom."
   },
   "wasmNotSupported": {
-    "message": "WebAssembly is not supported on your browser or is not enabled. WebAssembly is required to use the Bitwarden app.",
+    "message": "WebAssembly ili nije podržan ili nije omogućen u tvom pregledniku. WebAssembly je potreban za korištenje Bitwarden aplikacije.",
     "description": "'WebAssembly' is a technical term and should not be translated."
   }
 }
diff --git a/apps/browser/src/_locales/hu/messages.json b/apps/browser/src/_locales/hu/messages.json
index c85de0ab542..b2800be9c81 100644
--- a/apps/browser/src/_locales/hu/messages.json
+++ b/apps/browser/src/_locales/hu/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "A funkció használatához igazolni kell email címet. Az email cím a webtárban ellenőrizhető."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "A mesterjelszó frissítésre került."
   },
@@ -4244,6 +4247,26 @@
     "message": "Általános formátumok",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Continue to browser settings?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/id/messages.json b/apps/browser/src/_locales/id/messages.json
index 125cd7ceeab..ccf35bf05d0 100644
--- a/apps/browser/src/_locales/id/messages.json
+++ b/apps/browser/src/_locales/id/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "Anda harus memverifikasi email Anda untuk menggunakan fitur ini. Anda dapat memverifikasi email Anda di brankas web."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Kata Sandi Utama Telah Diperbarui"
   },
@@ -4244,6 +4247,26 @@
     "message": "Format umum",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Lanjutkan ke pengaturan peramban?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/it/messages.json b/apps/browser/src/_locales/it/messages.json
index f1c2cd09ca2..24c18b1ea7b 100644
--- a/apps/browser/src/_locales/it/messages.json
+++ b/apps/browser/src/_locales/it/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "Devi verificare la tua email per usare questa funzionalità. Puoi verificare la tua email nella cassaforte web."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Password principale aggiornata"
   },
@@ -4244,6 +4247,26 @@
     "message": "Formati comuni",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Continua sulle impostazioni del browser?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/ja/messages.json b/apps/browser/src/_locales/ja/messages.json
index fd256961ba6..1a19ffe1ae1 100644
--- a/apps/browser/src/_locales/ja/messages.json
+++ b/apps/browser/src/_locales/ja/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "この機能を使用するにはメールアドレスを確認する必要があります。ウェブ保管庫でメールアドレスを確認できます。"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "マスターパスワードを更新しました"
   },
@@ -4244,6 +4247,26 @@
     "message": "一般的な形式",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "ブラウザの設定に進みますか？",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/ka/messages.json b/apps/browser/src/_locales/ka/messages.json
index 68a6a877e50..bb2977f31eb 100644
--- a/apps/browser/src/_locales/ka/messages.json
+++ b/apps/browser/src/_locales/ka/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "You must verify your email to use this feature. You can verify your email in the web vault."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Updated master password"
   },
@@ -4244,6 +4247,26 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Continue to browser settings?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/km/messages.json b/apps/browser/src/_locales/km/messages.json
index b6a8d1834b4..45dc3215966 100644
--- a/apps/browser/src/_locales/km/messages.json
+++ b/apps/browser/src/_locales/km/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "You must verify your email to use this feature. You can verify your email in the web vault."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Updated master password"
   },
@@ -4244,6 +4247,26 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Continue to browser settings?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/kn/messages.json b/apps/browser/src/_locales/kn/messages.json
index 987a2ce79cb..f34e98d3643 100644
--- a/apps/browser/src/_locales/kn/messages.json
+++ b/apps/browser/src/_locales/kn/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "ಈ ವೈಶಿಷ್ಟ್ಯವನ್ನು ಬಳಸಲು ನಿಮ್ಮ ಇಮೇಲ್ ಅನ್ನು ನೀವು ಪರಿಶೀಲಿಸಬೇಕು. ವೆಬ್ ವಾಲ್ಟ್ನಲ್ಲಿ ನಿಮ್ಮ ಇಮೇಲ್ ಅನ್ನು ನೀವು ಪರಿಶೀಲಿಸಬಹುದು."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Updated master password"
   },
@@ -4244,6 +4247,26 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Continue to browser settings?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/ko/messages.json b/apps/browser/src/_locales/ko/messages.json
index 41c01431ac2..abd7ff86247 100644
--- a/apps/browser/src/_locales/ko/messages.json
+++ b/apps/browser/src/_locales/ko/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "이 기능을 사용하려면 이메일 인증이 필요합니다. 웹 보관함에서 이메일을 인증할 수 있습니다."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "마스터 비밀번호 변경됨"
   },
@@ -4244,6 +4247,26 @@
     "message": "일반적인 형식",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "브라우저 설정으로 이동하시겠습니까?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/lt/messages.json b/apps/browser/src/_locales/lt/messages.json
index 3c2751d5fbe..b800a93241f 100644
--- a/apps/browser/src/_locales/lt/messages.json
+++ b/apps/browser/src/_locales/lt/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "Turite patvirtinti savo el. paštą, kad galėtumėte naudotis šia funkcija. Savo el. pašto adresą galite patvirtinti žiniatinklio saugykloje."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Naujasis pagrindinis slaptažodis"
   },
@@ -4244,6 +4247,26 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Continue to browser settings?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/lv/messages.json b/apps/browser/src/_locales/lv/messages.json
index 7108fe15a93..ad86e857818 100644
--- a/apps/browser/src/_locales/lv/messages.json
+++ b/apps/browser/src/_locales/lv/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "Ir nepieciešams apliecināt savu e-pasta adresi, lai būtu iespējams izmantot šo iespēju. To var izdarīt tīmekļa glabātavā."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Galvenā parole sekmīgi iestatīta"
+  },
   "updatedMasterPassword": {
     "message": "Galvenā parole atjaunināta"
   },
@@ -4244,6 +4247,26 @@
     "message": "Izplatīti veidoli",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Pāriet uz pārlūka iestatījumiem?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/ml/messages.json b/apps/browser/src/_locales/ml/messages.json
index 7708ea4b940..df0f2b4ebdd 100644
--- a/apps/browser/src/_locales/ml/messages.json
+++ b/apps/browser/src/_locales/ml/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "You must verify your email to use this feature. You can verify your email in the web vault."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Updated master password"
   },
@@ -4244,6 +4247,26 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Continue to browser settings?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/mr/messages.json b/apps/browser/src/_locales/mr/messages.json
index 36fdc74f521..1655daf6b37 100644
--- a/apps/browser/src/_locales/mr/messages.json
+++ b/apps/browser/src/_locales/mr/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "You must verify your email to use this feature. You can verify your email in the web vault."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Updated master password"
   },
@@ -4244,6 +4247,26 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Continue to browser settings?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/my/messages.json b/apps/browser/src/_locales/my/messages.json
index b6a8d1834b4..45dc3215966 100644
--- a/apps/browser/src/_locales/my/messages.json
+++ b/apps/browser/src/_locales/my/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "You must verify your email to use this feature. You can verify your email in the web vault."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Updated master password"
   },
@@ -4244,6 +4247,26 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Continue to browser settings?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/nb/messages.json b/apps/browser/src/_locales/nb/messages.json
index 747e37aadd6..419f995d83c 100644
--- a/apps/browser/src/_locales/nb/messages.json
+++ b/apps/browser/src/_locales/nb/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "Du må bekrefte e-posten din for å bruke denne funksjonen. Du kan bekrefte e-postadressen din i netthvelvet."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Oppdaterte hovedpassordet"
   },
@@ -4244,6 +4247,26 @@
     "message": "Vanlige formater",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Vil du fortsette til nettleserinnstillingene?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/ne/messages.json b/apps/browser/src/_locales/ne/messages.json
index b6a8d1834b4..45dc3215966 100644
--- a/apps/browser/src/_locales/ne/messages.json
+++ b/apps/browser/src/_locales/ne/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "You must verify your email to use this feature. You can verify your email in the web vault."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Updated master password"
   },
@@ -4244,6 +4247,26 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Continue to browser settings?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/nl/messages.json b/apps/browser/src/_locales/nl/messages.json
index af63059ebd3..6c1b03322ad 100644
--- a/apps/browser/src/_locales/nl/messages.json
+++ b/apps/browser/src/_locales/nl/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "Je moet je e-mailadres verifiëren om deze functie te gebruiken. Je kunt je e-mailadres verifiëren in de kluis."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Hoofdwachtwoord succesvol ingesteld"
+  },
   "updatedMasterPassword": {
     "message": "Hoofdwachtwoord bijgewerkt"
   },
@@ -4244,6 +4247,26 @@
     "message": "Veelvoorkomende formaten",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI-matche-detectie is hoe Bitwarden invulsuggesties herkent.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Reguliere expressie\" is een geavanceerde optie met een verhoogd risico op het blootstellen van inloggegevens.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Begint met\" is een geavanceerde optie met een verhoogd risico op het blootstellen van inloggegevens.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "Lees meer over overeenkomstdetectie",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Geavanceerde opties",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Doorgaan naar browserinstellingen?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/nn/messages.json b/apps/browser/src/_locales/nn/messages.json
index b6a8d1834b4..45dc3215966 100644
--- a/apps/browser/src/_locales/nn/messages.json
+++ b/apps/browser/src/_locales/nn/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "You must verify your email to use this feature. You can verify your email in the web vault."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Updated master password"
   },
@@ -4244,6 +4247,26 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Continue to browser settings?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/or/messages.json b/apps/browser/src/_locales/or/messages.json
index b6a8d1834b4..45dc3215966 100644
--- a/apps/browser/src/_locales/or/messages.json
+++ b/apps/browser/src/_locales/or/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "You must verify your email to use this feature. You can verify your email in the web vault."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Updated master password"
   },
@@ -4244,6 +4247,26 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Continue to browser settings?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/pl/messages.json b/apps/browser/src/_locales/pl/messages.json
index dba3a21d160..ae82f480964 100644
--- a/apps/browser/src/_locales/pl/messages.json
+++ b/apps/browser/src/_locales/pl/messages.json
@@ -3,10 +3,10 @@
     "message": "Bitwarden"
   },
   "appLogoLabel": {
-    "message": "Bitwarden logo"
+    "message": "Logo Bitwarden"
   },
   "extName": {
-    "message": "Menedżer Haseł Bitwarden",
+    "message": "Menedżer haseł Bitwarden",
     "description": "Extension name, MUST be less than 40 characters (Safari restriction)"
   },
   "extDesc": {
@@ -23,10 +23,10 @@
     "message": "Utwórz konto"
   },
   "newToBitwarden": {
-    "message": "Nowy użytkownik Bitwarden?"
+    "message": "Nowy w Bitwarden?"
   },
   "logInWithPasskey": {
-    "message": "Zaloguj się używając klucza dostępu"
+    "message": "Logowaniem kluczem dostępu"
   },
   "useSingleSignOn": {
     "message": "Użyj jednokrotnego logowania"
@@ -65,7 +65,7 @@
     "message": "Podpowiedź do hasła głównego może pomóc Ci przypomnieć hasło, jeśli je zapomnisz."
   },
   "masterPassHintText": {
-    "message": "Jeśli zapomnisz hasła, podpowiedź hasła może zostać wysłana na Twój adres e-mail. $CURRENT$ z $MAXIMUM$ znaków.",
+    "message": "Podpowiedź do hasła zostanie wysłana na adres e-mail, jeśli je zapomnisz. Liczba znaków: $CURRENT$ / $MAXIMUM$.",
     "placeholders": {
       "current": {
         "content": "$1",
@@ -132,7 +132,7 @@
     "message": "Kopiuj hasło"
   },
   "copyPassphrase": {
-    "message": "Skopiuj hasło wyrazowe"
+    "message": "Kopiuj hasło wyrazowe"
   },
   "copyNote": {
     "message": "Kopiuj notatkę"
@@ -159,19 +159,19 @@
     "message": "Kopiuj numer PESEL"
   },
   "copyPassportNumber": {
-    "message": "Skopiuj numer paszportu"
+    "message": "Kopiuj numer paszportu"
   },
   "copyLicenseNumber": {
-    "message": "Kopiuj numer licencji"
+    "message": "Kopiuj numer prawa jazdy"
   },
   "copyPrivateKey": {
-    "message": "Skopiuj klucz prywatny"
+    "message": "Kopiuj klucz prywatny"
   },
   "copyPublicKey": {
-    "message": "Skopiuj klucz publiczny"
+    "message": "Kopiuj klucz publiczny"
   },
   "copyFingerprint": {
-    "message": "Skopiuj odcisk palca"
+    "message": "Kopiuj odcisk klucza"
   },
   "copyCustomField": {
     "message": "Kopiuj $FIELD$",
@@ -193,26 +193,26 @@
     "description": "Copy to clipboard"
   },
   "fill": {
-    "message": "Wypełnij",
+    "message": "Uzupełnij",
     "description": "This string is used on the vault page to indicate autofilling. Horizontal space is limited in the interface here so try and keep translations as concise as possible."
   },
   "autoFill": {
     "message": "Autouzupełnianie"
   },
   "autoFillLogin": {
-    "message": "Autouzupełnianie logowania"
+    "message": "Uzupełnij dane logowania"
   },
   "autoFillCard": {
-    "message": "Autouzupełnianie karty"
+    "message": "Uzupełnij kartę"
   },
   "autoFillIdentity": {
-    "message": "Autouzupełnianie tożsamości"
+    "message": "Uzupełnij tożsamość"
   },
   "fillVerificationCode": {
-    "message": "Wypełnij kod weryfikacyjny"
+    "message": "Uzupełnij kod weryfikacyjny"
   },
   "fillVerificationCodeAria": {
-    "message": "Wypełnij kod weryfikacyjny",
+    "message": "Uzupełnij kod weryfikacyjny",
     "description": "Aria label for the heading displayed the inline menu for totp code autofill"
   },
   "generatePasswordCopied": {
@@ -258,13 +258,13 @@
     "message": "Adres e-mail konta"
   },
   "requestHint": {
-    "message": "Poproś o podpowiedź"
+    "message": "Uzyskaj podpowiedź"
   },
   "requestPasswordHint": {
-    "message": "Poproś o podpowiedź do hasła"
+    "message": "Uzyskaj podpowiedź do hasła"
   },
   "enterYourAccountEmailAddressAndYourPasswordHintWillBeSentToYou": {
-    "message": "Wprowadź adres e-mail swojego konta, a podpowiedź hasła zostanie wysłana do Ciebie"
+    "message": "Wpisz adres e-mail konta. Podpowiedź do hasła zostanie wysłana na adres e-mail"
   },
   "getMasterPasswordHint": {
     "message": "Uzyskaj podpowiedź do hasła głównego"
@@ -291,19 +291,19 @@
     "message": "Zmień hasło główne"
   },
   "continueToWebApp": {
-    "message": "Kontynuować do aplikacji internetowej?"
+    "message": "Przejść do aplikacji internetowej?"
   },
   "continueToWebAppDesc": {
     "message": "Odkryj więcej funkcji swojego konta Bitwarden w aplikacji internetowej."
   },
   "continueToHelpCenter": {
-    "message": "Kontynuować do centrum pomocy?"
+    "message": "Przejść do centrum pomocy?"
   },
   "continueToHelpCenterDesc": {
     "message": "Dowiedz się więcej o tym, jak korzystać z centrum pomocy Bitwarden."
   },
   "continueToBrowserExtensionStore": {
-    "message": "Kontynuować do sklepu z rozszerzeniami przeglądarki?"
+    "message": "Przejść do sklepu z rozszerzeniami przeglądarki?"
   },
   "continueToBrowserExtensionStoreDesc": {
     "message": "Pomóż innym dowiedzieć się, czy Bitwarden jest dla nich odpowiedni. Odwiedź swój sklep z rozszerzeniami do przeglądarki i zostaw ocenę."
@@ -316,7 +316,7 @@
     "description": "A 'fingerprint phrase' is a unique word phrase (similar to a passphrase) that a user can use to authenticate their public key with another user, for the purposes of sharing."
   },
   "yourAccountsFingerprint": {
-    "message": "Unikalny identyfikator Twojego konta",
+    "message": "Twój unikalny identyfikator konta",
     "description": "A 'fingerprint phrase' is a unique word phrase (similar to a passphrase) that a user can use to authenticate their public key with another user, for the purposes of sharing."
   },
   "twoStepLogin": {
@@ -335,7 +335,7 @@
     "message": "Więcej od Bitwarden"
   },
   "continueToBitwardenDotCom": {
-    "message": "Kontynuować do bitwarden.com?"
+    "message": "Przejść do bitwarden.com?"
   },
   "bitwardenForBusiness": {
     "message": "Bitwarden dla biznesu"
@@ -407,7 +407,7 @@
     "message": "Twórz foldery, aby zorganizować elementy swojego sejfu"
   },
   "deleteFolderPermanently": {
-    "message": "Czy na pewno chcesz trwale usunąć ten folder?"
+    "message": "Czy na pewno chcesz usunąć trwale folder?"
   },
   "deleteFolder": {
     "message": "Usuń folder"
@@ -474,7 +474,7 @@
     "message": "Nazwa użytkownika została wygenerowana"
   },
   "emailGenerated": {
-    "message": "E-mail został wygenerowany"
+    "message": "Adres e-mail został wygenerowany"
   },
   "regeneratePassword": {
     "message": "Wygeneruj ponownie hasło"
@@ -490,7 +490,7 @@
     "description": "Card header for password generator include block"
   },
   "uppercaseDescription": {
-    "message": "Uwzględnij wielkie litery",
+    "message": "Wielkie litery",
     "description": "Tooltip for the password generator uppercase character checkbox"
   },
   "uppercaseLabel": {
@@ -498,7 +498,7 @@
     "description": "Label for the password generator uppercase character checkbox"
   },
   "lowercaseDescription": {
-    "message": "Uwzględnij małe litery",
+    "message": "Małe litery",
     "description": "Full description for the password generator lowercase character checkbox"
   },
   "lowercaseLabel": {
@@ -506,7 +506,7 @@
     "description": "Label for the password generator lowercase character checkbox"
   },
   "numbersDescription": {
-    "message": "Uwzględnij cyfry",
+    "message": "Cyfry",
     "description": "Full description for the password generator numbers checkbox"
   },
   "numbersLabel": {
@@ -514,7 +514,7 @@
     "description": "Label for the password generator numbers checkbox"
   },
   "specialCharactersDescription": {
-    "message": "Uwzględnij znaki specjalne",
+    "message": "Znaki specjalne",
     "description": "Full description for the password generator special characters checkbox"
   },
   "numWords": {
@@ -531,10 +531,10 @@
     "message": "Uwzględnij cyfry"
   },
   "minNumbers": {
-    "message": "Minimalna liczba cyfr"
+    "message": "Min. liczba cyfr"
   },
   "minSpecial": {
-    "message": "Minimalna liczba znaków specjalnych"
+    "message": "Min. liczba znaków specjalnych"
   },
   "avoidAmbiguous": {
     "message": "Unikaj niejednoznacznych znaków",
@@ -551,10 +551,10 @@
     "message": "Edytuj"
   },
   "view": {
-    "message": "Zobacz"
+    "message": "Pokaż"
   },
   "noItemsInList": {
-    "message": "Brak elementów."
+    "message": "Brak elementów do wyświetlenia."
   },
   "itemInformation": {
     "message": "Informacje o elemencie"
@@ -566,22 +566,22 @@
     "message": "Hasło"
   },
   "totp": {
-    "message": "Sekret uwierzytelniania"
+    "message": "Klucz uwierzytelniający"
   },
   "passphrase": {
     "message": "Hasło wyrazowe"
   },
   "favorite": {
-    "message": "Ulubione"
+    "message": "Dodaj do ulubionych"
   },
   "unfavorite": {
     "message": "Usuń z ulubionych"
   },
   "itemAddedToFavorites": {
-    "message": "Element dodany do ulubionych"
+    "message": "Element został dodany do ulubionych"
   },
   "itemRemovedFromFavorites": {
-    "message": "Element usunięty z ulubionych"
+    "message": "Element został usunięty z ulubionych"
   },
   "notes": {
     "message": "Notatki"
@@ -602,16 +602,16 @@
     "message": "Usuń element"
   },
   "viewItem": {
-    "message": "Zobacz element"
+    "message": "Pokaż element"
   },
   "launch": {
     "message": "Uruchom"
   },
   "launchWebsite": {
-    "message": "Otwórz stronę"
+    "message": "Uruchom stronę internetową"
   },
   "launchWebsiteName": {
-    "message": "Otwórz stronę internetową $ITEMNAME$",
+    "message": "Uruchom stronę internetową $ITEMNAME$",
     "placeholders": {
       "itemname": {
         "content": "$1",
@@ -620,10 +620,10 @@
     }
   },
   "website": {
-    "message": "Strona"
+    "message": "Strona internetowa"
   },
   "toggleVisibility": {
-    "message": "Pokaż / Ukryj"
+    "message": "Pokaż / ukryj"
   },
   "manage": {
     "message": "Zarządzaj"
@@ -641,7 +641,7 @@
     "message": "Ustaw metodę odblokowania w Ustawieniach"
   },
   "sessionTimeoutHeader": {
-    "message": "Limit czasu sesji"
+    "message": "Blokada aplikacji"
   },
   "vaultTimeoutHeader": {
     "message": "Blokowanie sejfu"
@@ -656,7 +656,7 @@
     "message": "Przeglądarka nie obsługuje łatwego kopiowania schowka. Skopiuj element ręcznie."
   },
   "verifyYourIdentity": {
-    "message": "Potwierdź swoją tożsamość"
+    "message": "Zweryfikuj tożsamość"
   },
   "weDontRecognizeThisDevice": {
     "message": "Nie rozpoznajemy tego urządzenia. Wpisz kod wysłany na Twój e-mail, aby zweryfikować tożsamość."
@@ -668,10 +668,10 @@
     "message": "Sejf jest zablokowany. Zweryfikuj swoją tożsamość, aby kontynuować."
   },
   "yourVaultIsLockedV2": {
-    "message": "Twój sejf jest zablokowany"
+    "message": "Sejf jest zablokowany"
   },
   "yourAccountIsLocked": {
-    "message": "Twoje konto jest zablokowane"
+    "message": "Konto jest zablokowane"
   },
   "or": {
     "message": "lub"
@@ -705,7 +705,7 @@
     "message": "Zablokuj"
   },
   "lockAll": {
-    "message": "Zablokuj wszystkie"
+    "message": "Zablokuj wszystko"
   },
   "immediately": {
     "message": "Natychmiast"
@@ -780,7 +780,7 @@
     "message": "Wymagane jest ponowne wpisanie hasła głównego."
   },
   "masterPasswordMinlength": {
-    "message": "Hasło główne musi zawierać co najmniej $VALUE$ znaki(-ów).",
+    "message": "Hasło główne musi składać się z co najmniej $VALUE$ znaków.",
     "description": "The Master Password must be at least a specific number of characters long.",
     "placeholders": {
       "value": {
@@ -796,10 +796,10 @@
     "message": "Konto zostało utworzone! Teraz możesz się zalogować."
   },
   "newAccountCreated2": {
-    "message": "Twoje nowe konto zostało utworzone!"
+    "message": "Nowe konto zostało utworzone!"
   },
   "youHaveBeenLoggedIn": {
-    "message": "Zalogowano Cię!"
+    "message": "Zalogowano!"
   },
   "youSuccessfullyLoggedIn": {
     "message": "Zalogowałeś się pomyślnie"
@@ -808,7 +808,7 @@
     "message": "Możesz zamknąć to okno"
   },
   "masterPassSent": {
-    "message": "Wysłaliśmy Tobie wiadomość e-mail z podpowiedzią do hasła głównego."
+    "message": "Wysłaliśmy wiadomość z podpowiedzią do hasła głównego."
   },
   "verificationCodeRequired": {
     "message": "Kod weryfikacyjny jest wymagany."
@@ -839,7 +839,7 @@
     "message": "Klucz uwierzytelniający został dodany"
   },
   "totpCapture": {
-    "message": "Zeskanuj kod QR z bieżącej strony"
+    "message": "Zeskanuj kod QR z obecnej strony"
   },
   "totpHelperTitle": {
     "message": "Spraw, aby dwuetapowa weryfikacja była bezproblemowa"
@@ -890,7 +890,7 @@
     "message": "Wykonaj poniższe kroki, aby zakończyć logowanie za pomocą klucza bezpieczeństwa."
   },
   "restartRegistration": {
-    "message": "Zrestartuj rejestrację"
+    "message": "Zacznij rejestrację od początku"
   },
   "expiredLink": {
     "message": "Link wygasł"
@@ -929,13 +929,13 @@
     "message": "Spraw, aby Twoje konto było bezpieczniejsze poprzez skonfigurowanie dwustopniowego logowania w aplikacji internetowej Bitwarden."
   },
   "twoStepLoginConfirmationTitle": {
-    "message": "Kontynuować do aplikacji internetowej?"
+    "message": "Przejść do aplikacji internetowej?"
   },
   "editedFolder": {
     "message": "Folder został zapisany"
   },
   "deleteFolderConfirmation": {
-    "message": "Czy na pewno chcesz usunąć ten folder?"
+    "message": "Czy na pewno chcesz usunąć folder?"
   },
   "deletedFolder": {
     "message": "Folder został usunięty"
@@ -982,7 +982,7 @@
     "message": "Element został zapisany"
   },
   "deleteItemConfirmation": {
-    "message": "Czy na pewno chcesz to usunąć?"
+    "message": "Czy na pewno chcesz usunąć?"
   },
   "deletedItem": {
     "message": "Element został przeniesiony do kosza"
@@ -1013,7 +1013,7 @@
     "description": "This is the folder for uncategorized items"
   },
   "enableAddLoginNotification": {
-    "message": "Poproś o dodanie danych logowania"
+    "message": "Proponuj zapisywanie danych logowania"
   },
   "vaultSaveOptionsTitle": {
     "message": "Opcje zapisywania w sejfie"
@@ -1025,7 +1025,7 @@
     "message": "Poproś o dodanie elementu, jeśli nie zostanie znaleziony w Twoim sejfie. Dotyczy wszystkich zalogowanych kont."
   },
   "showCardsInVaultViewV2": {
-    "message": "Zawsze pokazuj karty jako sugestie autouzupełniania w widoku sejfu"
+    "message": "Pokazuj zawsze karty w sugestiach autouzupełniania"
   },
   "showCardsCurrentTab": {
     "message": "Pokaż karty na stronie głównej"
@@ -1034,7 +1034,7 @@
     "message": "Pokaż elementy karty na stronie głównej, aby ułatwić autouzupełnianie."
   },
   "showIdentitiesInVaultViewV2": {
-    "message": "Zawsze pokazuj tożsamości jako sugestie autouzupełniania w widoku sejfu"
+    "message": "Pokazuj zawsze tożsamości w sugestiach autouzupełniania"
   },
   "showIdentitiesCurrentTab": {
     "message": "Pokaż tożsamości na stronie głównej"
@@ -1113,7 +1113,7 @@
     }
   },
   "saveAsNewLoginAction": {
-    "message": "Zapisz jako nowy login",
+    "message": "Zapisz jako nowy dane logowania",
     "description": "Button text for saving login details as a new entry."
   },
   "updateLoginAction": {
@@ -1121,7 +1121,7 @@
     "description": "Button text for updating an existing login entry."
   },
   "unlockToSave": {
-    "message": "Odblokuj, aby zapisać ten login",
+    "message": "Odblokuj, aby zapisać dane logowania",
     "description": "User prompt to take action in order to save the login they just entered."
   },
   "saveLogin": {
@@ -1129,11 +1129,11 @@
     "description": "Prompt asking the user if they want to save their login details."
   },
   "updateLogin": {
-    "message": "Zaktualizować istniejące dane logowania?",
+    "message": "Zaktualizuj obecne dane logowania",
     "description": "Prompt asking the user if they want to update an existing login entry."
   },
   "loginSaveSuccess": {
-    "message": "Dane logowania zapisane",
+    "message": "Dane logowania zostały zapisane",
     "description": "Message displayed when login details are successfully saved."
   },
   "loginUpdateSuccess": {
@@ -1166,7 +1166,7 @@
     "description": "Message prompting user to undertake completion of another security task."
   },
   "saveFailure": {
-    "message": "Błąd podczas zapisywania",
+    "message": "Wystąpił błąd podczas zapisywania",
     "description": "Error message shown when the system fails to save login details."
   },
   "saveFailureDetails": {
@@ -1174,7 +1174,7 @@
     "description": "Detailed error message shown when saving login details fails."
   },
   "enableChangedPasswordNotification": {
-    "message": "Poproś o aktualizację istniejących danych logowania"
+    "message": "Proponuj aktualizuję obecnych danych logowania"
   },
   "changedPasswordNotificationDesc": {
     "message": "Poproś o aktualizację hasła danych logowania po wykryciu zmiany w witrynie."
@@ -1183,10 +1183,10 @@
     "message": "Poproś o aktualizację hasła, gdy zmiana zostanie wykryta na stronie. Dotyczy wszystkich zalogowanych kont."
   },
   "enableUsePasskeys": {
-    "message": "Pytaj o zapisywanie i używanie kluczy dostępu"
+    "message": "Proponuj zapisywanie i używanie kluczy dostępu"
   },
   "usePasskeysDesc": {
-    "message": "Pytaj o zapisywanie nowych kluczy dostępu albo danych logowania z kluczy w Twoim sejfie. Dotyczy wszystkich zalogowanych kont."
+    "message": "Pytaj o zapisywanie nowych kluczy dostępu i używanie obecnych. Dotyczy wszystkich zalogowanych kont."
   },
   "notificationChangeDesc": {
     "message": "Czy chcesz zaktualizować to hasło w Bitwarden?"
@@ -1204,7 +1204,7 @@
     "message": "Dodatkowe opcje"
   },
   "enableContextMenuItem": {
-    "message": "Pokaż opcje menu kontekstowego"
+    "message": "Pokaż opcje w menu kontekstowym"
   },
   "contextMenuItemDesc": {
     "message": "Użyj drugiego kliknięcia, aby uzyskać dostęp do generowania haseł i pasujących danych logowania do witryny."
@@ -1249,7 +1249,7 @@
     "message": "Plik będzie chroniony hasłem, które będzie wymagane do odszyfrowania pliku."
   },
   "filePassword": {
-    "message": "Hasło do pliku"
+    "message": "Hasło pliku"
   },
   "exportPasswordDescription": {
     "message": "Hasło będzie używane do eksportowania i importowania pliku"
@@ -1267,10 +1267,10 @@
     "message": "Konto ograniczone"
   },
   "filePasswordAndConfirmFilePasswordDoNotMatch": {
-    "message": "“Hasło pliku” i “Potwierdź hasło pliku“ nie pasują do siebie."
+    "message": "Hasła pliku nie pasują do siebie."
   },
   "warning": {
-    "message": "UWAGA",
+    "message": "OSTRZEŻENIE",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
   },
   "warningCapitalized": {
@@ -1296,13 +1296,13 @@
     "message": "Udostępnione"
   },
   "bitwardenForBusinessPageDesc": {
-    "message": "Bitwarden dla biznesu pozwala na udostępnianie zawartości sejfu innym osobom za pośrednictwem organizacji. Dowiedz się wiecej na bitwarden.com."
+    "message": "Bitwarden dla biznesu pozwala na udostępnianie zawartości sejfu innym użytkownikom za pośrednictwem organizacji. Dowiedz się więcej na stronie bitwarden.com."
   },
   "moveToOrganization": {
     "message": "Przenieś do organizacji"
   },
   "movedItemToOrg": {
-    "message": "Element $ITEMNAME$ został przeniesiony do organizacji $ORGNAME$",
+    "message": "Przeniesiono $ITEMNAME$ do $ORGNAME$",
     "placeholders": {
       "itemname": {
         "content": "$1",
@@ -1315,7 +1315,7 @@
     }
   },
   "moveToOrgDesc": {
-    "message": "Wybierz organizację, do której chcesz przenieść ten element. Ta czynność spowoduje utratę własności elementu i przenosi te uprawnienia do organizacji."
+    "message": "Wybierz organizację, do której chcesz przenieść element. Przeniesienie spowoduje zmianę własności elementu na organizację."
   },
   "learnMore": {
     "message": "Dowiedz się więcej"
@@ -1423,7 +1423,7 @@
     "message": "Uaktualnij do wersji Premium i otrzymaj:"
   },
   "premiumPrice": {
-    "message": "Wszystko to jedynie za $PRICE$ /rok!",
+    "message": "Tylko $PRICE$ / rok!",
     "placeholders": {
       "price": {
         "content": "$1",
@@ -1432,7 +1432,7 @@
     }
   },
   "premiumPriceV2": {
-    "message": "Wszystko tylko za $PRICE$ rocznie!",
+    "message": "Tylko $PRICE$ rocznie!",
     "placeholders": {
       "price": {
         "content": "$1",
@@ -1453,7 +1453,7 @@
     "message": "Poproś o dane biometryczne przy uruchomieniu"
   },
   "premiumRequired": {
-    "message": "Konto Premium jest wymagane"
+    "message": "Konto premium jest wymagane"
   },
   "premiumRequiredDesc": {
     "message": "Konto Premium jest wymagane, aby skorzystać z tej funkcji."
@@ -1571,7 +1571,7 @@
     "message": "Adres URL serwera"
   },
   "selfHostBaseUrl": {
-    "message": "URL samodzielnie hostowanego serwera",
+    "message": "Adres URL hostowanego serwera",
     "description": "Label for field requesting a self-hosted integration service URL"
   },
   "apiUrl": {
@@ -1615,19 +1615,19 @@
     }
   },
   "turnOffAutofill": {
-    "message": "Wyłącz autouzupełnienie"
+    "message": "Wyłącz autouzupełnianie"
   },
   "showInlineMenuLabel": {
     "message": "Pokaż sugestie autouzupełniania na polach formularza"
   },
   "showInlineMenuIdentitiesLabel": {
-    "message": "Pokazuj tożsamości jako sugestie"
+    "message": "Pokaż tożsamości w sugestiach"
   },
   "showInlineMenuCardsLabel": {
-    "message": "Pokazuj karty jako sugestie"
+    "message": "Pokaż karty w sugestiach"
   },
   "showInlineMenuOnIconSelectionLabel": {
-    "message": "Wyświetlaj sugestie, kiedy ikona jest zaznaczona"
+    "message": "Pokaż sugestie po kliknięciu ikony"
   },
   "showInlineMenuOnFormFieldsDescAlt": {
     "message": "Dotyczy wszystkich zalogowanych kont."
@@ -1651,16 +1651,16 @@
     "description": "Overlay appearance select option for showing the field on click of the overlay icon"
   },
   "enableAutoFillOnPageLoadSectionTitle": {
-    "message": "Włącz autouzupełnianie po załadowaniu strony"
+    "message": "Autouzupełnianie po załadowaniu strony"
   },
   "enableAutoFillOnPageLoad": {
-    "message": "Włącz autouzupełnianie po załadowaniu strony"
+    "message": "Uzupełniaj po załadowaniu strony"
   },
   "enableAutoFillOnPageLoadDesc": {
-    "message": "Jeśli zostanie wykryty formularz logowania, automatycznie uzupełnij dane logowania po załadowaniu strony."
+    "message": "Dane logowania zostaną uzupełnione po wykryciu formularza logowania na stronie."
   },
   "experimentalFeature": {
-    "message": "Zaatakowane lub niezaufane witryny internetowe mogą wykorzystać funkcję autouzupełniania podczas wczytywania strony, aby wyrządzić szkody."
+    "message": "Zaatakowane strony internetowe mogą wykorzystywać autouzupełnianie do przejęcia danych logowania."
   },
   "learnMoreAboutAutofillOnPageLoadLinkText": {
     "message": "Dowiedz się więcej o ryzyku"
@@ -1681,10 +1681,10 @@
     "message": "Użyj domyślnego ustawienia"
   },
   "autoFillOnPageLoadYes": {
-    "message": "Automatycznie uzupełniaj po załadowaniu strony"
+    "message": "Uzupełniaj po załadowaniu strony"
   },
   "autoFillOnPageLoadNo": {
-    "message": "Nie uzupełniaj automatycznie po załadowaniu strony"
+    "message": "Nie uzupełniaj po załadowaniu strony"
   },
   "commandOpenPopup": {
     "message": "Otwórz sejf w oknie"
@@ -1702,7 +1702,7 @@
     "message": "Autouzupełnianie korzysta z ostatnio używanej tożsamości na tej stronie"
   },
   "commandGeneratePasswordDesc": {
-    "message": "Wygeneruj nowe losowe hasło i skopiuj je do schowka."
+    "message": "Wygeneruj nowe hasło i skopiuj je do schowka"
   },
   "commandLockVaultDesc": {
     "message": "Zablokuj sejf"
@@ -1729,7 +1729,7 @@
     "message": "Tekst"
   },
   "cfTypeHidden": {
-    "message": "Pole maskowane"
+    "message": "Ukryty tekst"
   },
   "cfTypeBoolean": {
     "message": "Wartość logiczna"
@@ -1749,10 +1749,10 @@
     "message": "Kliknięcie poza okno, w celu sprawdzenia wiadomość z kodem weryfikacyjnym spowoduje, że zostanie ono zamknięte. Czy chcesz otworzyć nowe okno tak, aby się nie zamknęło?"
   },
   "popupU2fCloseMessage": {
-    "message": "Ta przeglądarka nie może przetworzyć żądania U2F w tym oknie. Czy chcesz otworzyć nowe okno przeglądarki, aby zalogować się przy pomocy klucza U2F?"
+    "message": "Ta przeglądarka nie może przetworzyć żądania U2F w wyskakującym oknie. Czy chcesz otworzyć nowe okno przeglądarki, aby zalogować się przy pomocy klucza U2F?"
   },
   "enableFavicon": {
-    "message": "Pokaż ikony witryn"
+    "message": "Pokaż ikony stron internetowych"
   },
   "faviconDesc": {
     "message": "Pokaż rozpoznawalny obraz obok danych logowania."
@@ -1833,7 +1833,7 @@
     "message": "Pan"
   },
   "mrs": {
-    "message": "Mrs"
+    "message": "Pani (Mrs)"
   },
   "ms": {
     "message": "Pani"
@@ -1857,7 +1857,7 @@
     "message": "Imię i nazwisko"
   },
   "identityName": {
-    "message": "Nazwa profilu"
+    "message": "Nowa tożsamość"
   },
   "company": {
     "message": "Firma"
@@ -1875,7 +1875,7 @@
     "message": "Adres e-mail"
   },
   "phone": {
-    "message": "Telefon"
+    "message": "Numer telefonu"
   },
   "address": {
     "message": "Adres"
@@ -1911,7 +1911,7 @@
     "message": "Dane logowania"
   },
   "typeSecureNote": {
-    "message": "Bezpieczna notatka"
+    "message": "Notatka"
   },
   "typeCard": {
     "message": "Karta"
@@ -1944,7 +1944,7 @@
     }
   },
   "viewItemHeader": {
-    "message": "Zobacz $TYPE$",
+    "message": "Pokaż $TYPE$",
     "placeholders": {
       "type": {
         "content": "$1",
@@ -1965,7 +1965,7 @@
     "message": "Jeśli zatwierdzisz, wszystkie wygenerowane hasła zostaną usunięte z historii generatora. Czy chcesz kontynuować mimo to?"
   },
   "back": {
-    "message": "Powrót"
+    "message": "Wstecz"
   },
   "collections": {
     "message": "Kolekcje"
@@ -1998,7 +1998,7 @@
     "message": "Dane logowania"
   },
   "secureNotes": {
-    "message": "Bezpieczne notatki"
+    "message": "Notatki"
   },
   "sshKeys": {
     "message": "Klucze SSH"
@@ -2011,7 +2011,7 @@
     "message": "Sprawdź, czy hasło zostało ujawnione."
   },
   "passwordExposed": {
-    "message": "To hasło znajduje się w $VALUE$ wykradzionej(ych) bazie(ach) danych. Należy je zmienić.",
+    "message": "Hasło zostało ujawnione $VALUE$ raz(y) w wyciekach danych. Zmień je.",
     "placeholders": {
       "value": {
         "content": "$1",
@@ -2020,14 +2020,14 @@
     }
   },
   "passwordSafe": {
-    "message": "To hasło nie znajduje się w żadnej znanej wykradzionej bazie danych. Powinno być bezpieczne."
+    "message": "Hasło nie znajduje się w żadnym znanym wycieku danych. Powinno być bezpieczne."
   },
   "baseDomain": {
     "message": "Domena podstawowa",
     "description": "Domain name. Ex. website.com"
   },
   "baseDomainOptionRecommended": {
-    "message": "Domena podstawowa (rekomendowana)",
+    "message": "Domena podstawowa (domyślne)",
     "description": "Domain name. Ex. website.com"
   },
   "domainName": {
@@ -2078,7 +2078,7 @@
     "message": "Wszystkie elementy"
   },
   "noPasswordsInList": {
-    "message": "Brak haseł."
+    "message": "Brak haseł do wyświetlenia."
   },
   "clearHistory": {
     "message": "Wyczyść historię"
@@ -2093,7 +2093,7 @@
     "message": "Usuń"
   },
   "default": {
-    "message": "Domyślny"
+    "message": "Domyślne"
   },
   "dateUpdated": {
     "message": "Zaktualizowano",
@@ -2135,7 +2135,7 @@
     "description": "ex. A weak password. Scale: Weak -> Good -> Strong"
   },
   "weakMasterPassword": {
-    "message": "Słabe hasło główne"
+    "message": "Hasło główne jest słabe"
   },
   "weakMasterPasswordDesc": {
     "message": "Wybrane przez Ciebie hasło główne jest słabe. Powinieneś użyć silniejszego hasła (lub frazy), aby właściwie chronić swoje konto Bitwarden. Czy na pewno chcesz użyć tego hasła głównego?"
@@ -2169,10 +2169,10 @@
     "message": "Zbyt wiele nieprawidłowych prób wpisywania PIN. Wylogowywanie."
   },
   "unlockWithBiometrics": {
-    "message": "Odblokuj danymi biometrycznymi"
+    "message": "Odblokuj biometrią"
   },
   "unlockWithMasterPassword": {
-    "message": "Odblokuj za pomocą głównego hasła"
+    "message": "Odblokuj hasłem głównym"
   },
   "awaitDesktop": {
     "message": "Oczekiwanie na potwierdzenie z aplikacji desktopowej"
@@ -2199,7 +2199,7 @@
     "message": "Generator hasła"
   },
   "usernameGenerator": {
-    "message": "Generator nazw użytkownika"
+    "message": "Generator nazwy użytkownika"
   },
   "useThisEmail": {
     "message": "Użyj tego adresu e-mail"
@@ -2248,7 +2248,7 @@
     "message": "Usuń trwale element"
   },
   "permanentlyDeleteItemConfirmation": {
-    "message": "Czy na pewno chcesz usunąć trwale ten element?"
+    "message": "Czy na pewno chcesz usunąć trwale element?"
   },
   "permanentlyDeletedItem": {
     "message": "Element został trwale usunięty"
@@ -2266,13 +2266,13 @@
     "message": "Po wylogowaniu się z sejfu musisz ponownie zalogować się, aby uzyskać do niego dostęp. Czy na pewno chcesz użyć tego ustawienia?"
   },
   "vaultTimeoutLogOutConfirmationTitle": {
-    "message": "Potwierdź sposób blokowania sejfu"
+    "message": "Potwierdź sposób blokady"
   },
   "autoFillAndSave": {
-    "message": "Automatycznie uzupełnij i zapisz"
+    "message": "Uzupełnij i zapisz"
   },
   "fillAndSave": {
-    "message": "Wypełnij i zapisz"
+    "message": "Uzupełnij i zapisz"
   },
   "autoFillSuccessAndSavedUri": {
     "message": "URI został zapisany i automatycznie uzupełniony"
@@ -2302,7 +2302,7 @@
     "message": "Ustaw hasło główne"
   },
   "currentMasterPass": {
-    "message": "Aktualne hasło główne"
+    "message": "Obecne hasło główne"
   },
   "newMasterPass": {
     "message": "Nowe hasło główne"
@@ -2413,7 +2413,7 @@
     "message": "Aplikacja desktopowa Bitwarden, przed odblokowaniem danymi biometrycznymi, musi zostać ponownie uruchomiona."
   },
   "errorEnableBiometricTitle": {
-    "message": "Nie można włączyć danych biometrycznych"
+    "message": "Nie można włączyć biometrii"
   },
   "errorEnableBiometricDesc": {
     "message": "Operacja została anulowana przez aplikację desktopową"
@@ -2431,37 +2431,37 @@
     "message": "Konto jest niezgodne"
   },
   "nativeMessagingWrongUserKeyTitle": {
-    "message": "Klucz biometryczny jest niepoprawny"
+    "message": "Klucz biometrii jest nieprawidłowy"
   },
   "nativeMessagingWrongUserKeyDesc": {
     "message": "Odblokowanie biometryczne się nie powiodło. Sekretny klucz biometryczny nie odblokował sejfu. Spróbuj skonfigurować biometrię ponownie."
   },
   "biometricsNotEnabledTitle": {
-    "message": "Dane biometryczne są wyłączone"
+    "message": "Biometria jest wyłączona"
   },
   "biometricsNotEnabledDesc": {
     "message": "Aby włączyć dane biometryczne w przeglądarce, musisz włączyć tę samą funkcję w ustawianiach aplikacji desktopowej."
   },
   "biometricsNotSupportedTitle": {
-    "message": "Dane biometryczne nie są obsługiwane"
+    "message": "Biometria nie jest obsługiwana"
   },
   "biometricsNotSupportedDesc": {
-    "message": "Dane biometryczne przeglądarki nie są obsługiwane na tym urządzeniu."
+    "message": "Biometria przeglądarki nie jest obsługiwana na tym urządzeniu."
   },
   "biometricsNotUnlockedTitle": {
-    "message": "Użytkownik zablokowany lub wylogowany"
+    "message": "Użytkownik jest zablokowany lub wylogowany"
   },
   "biometricsNotUnlockedDesc": {
-    "message": "Odblokuj tego użytkownika w aplikacji desktopowej i spróbuj ponownie."
+    "message": "Odblokuj użytkownika w aplikacji desktopowej i spróbuj ponownie."
   },
   "biometricsNotAvailableTitle": {
-    "message": "Odblokowanie biometryczne jest niedostępne"
+    "message": "Odblokowanie biometrią jest niedostępne"
   },
   "biometricsNotAvailableDesc": {
-    "message": "Odblokowanie biometryczne jest obecnie niedostępne. Spróbuj ponownie później."
+    "message": "Odblokowanie biometrią jest obecnie niedostępne. Spróbuj ponownie później."
   },
   "biometricsFailedTitle": {
-    "message": "Dane biometryczne są błędne"
+    "message": "Logowanie biometrią nie powiodło się"
   },
   "biometricsFailedDesc": {
     "message": "Dane biometryczne nie mogę być użyte, rozważ użycie hasła głównego lub wylogowanie. Jeśli się to powtarza, skontaktuj się z pomocą techniczną Bitwarden."
@@ -2488,7 +2488,7 @@
     "message": "Polityka organizacji zablokowała importowanie elementów do Twojego sejfu."
   },
   "restrictCardTypeImport": {
-    "message": "Nie można importować elementów typu karty"
+    "message": "Nie można zaimportować karty"
   },
   "restrictCardTypeImportDesc": {
     "message": "Polityka ustawiona przez 1 lub więcej organizacji uniemożliwia importowanie kart do sejfów."
@@ -2498,10 +2498,10 @@
     "description": "A category title describing the concept of web domains"
   },
   "blockedDomains": {
-    "message": "Zablokowane domeny"
+    "message": "Blokowane domeny"
   },
   "learnMoreAboutBlockedDomains": {
-    "message": "Dowiedz się więcej o zablokowanych domenach"
+    "message": "Dowiedz się więcej o blokowanych domenach"
   },
   "excludedDomains": {
     "message": "Wykluczone domeny"
@@ -2513,10 +2513,10 @@
     "message": "Aplikacja Bitwarden nie będzie proponować zapisywania danych logowania dla tych domen dla wszystkich zalogowanych kont. Musisz odświeżyć stronę, aby zastosowywać zmiany."
   },
   "blockedDomainsDesc": {
-    "message": "Autouzupełnianie i inne powiązane funkcje nie będą oferowane dla tych stron. Aby zmiany zaczęły obowiązywać, musisz odświeżyć stronę."
+    "message": "Autouzupełnianie będzie zablokowane dla tych stron internetowych. Zmiany zaczną obowiązywać po odświeżeniu strony."
   },
   "autofillBlockedNoticeV2": {
-    "message": "Autouzupełnianie jest zablokowane dla tej witryny."
+    "message": "Autouzupełnianie będzie zablokowane dla tych stron intenretowych."
   },
   "autofillBlockedNoticeGuidance": {
     "message": "Zmień to w ustawieniach"
@@ -2544,7 +2544,7 @@
     "message": "Zagrożone hasła"
   },
   "atRiskPasswordDescSingleOrg": {
-    "message": "$ORGANIZATION$ prosi o zmianę jednego hasła, ponieważ jest ono zagrożone.",
+    "message": "Organizacja $ORGANIZATION$ prosi o zmianę 1 hasła, ponieważ jest ono zagrożone.",
     "placeholders": {
       "organization": {
         "content": "$1",
@@ -2553,7 +2553,7 @@
     }
   },
   "atRiskPasswordsDescSingleOrgPlural": {
-    "message": "$ORGANIZATION$ prosi o zmianę $COUNT$ haseł, ponieważ są one zagrożone.",
+    "message": "Organizacja $ORGANIZATION$ prosi o zmianę $COUNT$ haseł, ponieważ są one zagrożone.",
     "placeholders": {
       "organization": {
         "content": "$1",
@@ -2566,7 +2566,7 @@
     }
   },
   "atRiskPasswordsDescMultiOrgPlural": {
-    "message": "Twoje organizacje proszą o zmianę $COUNT$ haseł, ponieważ są one zagrożone.",
+    "message": "Twoja organizacja prosi o zmianę $COUNT$ haseł, ponieważ są one zagrożone.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -2575,7 +2575,7 @@
     }
   },
   "atRiskChangePrompt": {
-    "message": "Twoje hasło dla tej witryny jest zagrożone. Organizacja $ORGANIZATION$ poprosiła Cię o jego zmianę.",
+    "message": "Hasło dla tej strony internetowej jest zagrożone. Organizacja $ORGANIZATION$ prosi o jego zmianę.",
     "placeholders": {
       "organization": {
         "content": "$1",
@@ -2585,7 +2585,7 @@
     "description": "Notification body when a login triggers an at-risk password change request and the change password domain is known."
   },
   "atRiskNavigatePrompt": {
-    "message": "$ORGANIZATION$ chce, abyś zmienił to hasło, ponieważ jest ono zagrożone. Przejdź do ustawień konta, aby zmienić hasło.",
+    "message": "Organizacja $ORGANIZATION$ prosi o zmianę hasła, ponieważ jest ono zagrożone. Przejdź do ustawień konta, aby zmienić hasło.",
     "placeholders": {
       "organization": {
         "content": "$1",
@@ -2595,7 +2595,7 @@
     "description": "Notification body when a login triggers an at-risk password change request and no change password domain is provided."
   },
   "reviewAndChangeAtRiskPassword": {
-    "message": "Przejrzyj i zmień jedno zagrożone hasło"
+    "message": "Sprawdź i zmień 1 zagrożone hasło"
   },
   "reviewAndChangeAtRiskPasswordsPlural": {
     "message": "Przejrzyj i zmień $COUNT$ zagrożonych haseł  ",
@@ -2613,10 +2613,10 @@
     "message": "Zaktualizuj swoje ustawienia, aby szybko autouzupełniać hasła i generować nowe"
   },
   "reviewAtRiskLogins": {
-    "message": "Przejrzyj zagrożone loginy"
+    "message": "Sprawdź zagrożone dane logowania"
   },
   "reviewAtRiskPasswords": {
-    "message": "Przejrzyj zagrożone hasła"
+    "message": "Sprawdź zagrożone hasła"
   },
   "reviewAtRiskLoginsSlideDesc": {
     "message": "Twoje hasła organizacji są zagrożone, ponieważ są słabe, ponownie używane i/lub narażone.",
@@ -2633,7 +2633,7 @@
     "message": "Ilustracja menu autouzupełniania Bitwardena pokazująca wygenerowane hasło."
   },
   "updateInBitwarden": {
-    "message": "Aktualizacja w Bitwarden"
+    "message": "Zaktualizuj w Bitwarden"
   },
   "updateInBitwardenSlideDesc": {
     "message": "Bitwarden poprosi Cię o aktualizację hasła w menedżerze haseł.",
@@ -2643,7 +2643,7 @@
     "message": "Ilustracja powiadomienia Bitwardena, skłaniająca użytkownika do zaktualizowania danych logowania."
   },
   "turnOnAutofill": {
-    "message": "Włącz autouzupełnienie"
+    "message": "Włącz autouzupełnianie"
   },
   "turnedOnAutofill": {
     "message": "Włączono autouzupełnianie"
@@ -2661,7 +2661,7 @@
     }
   },
   "excludedDomainsInvalidDomain": {
-    "message": "$DOMAIN$ nie jest prawidłową nazwą domeny",
+    "message": "Domena $DOMAIN$ nie jest prawidłowa",
     "placeholders": {
       "domain": {
         "content": "$1",
@@ -2670,7 +2670,7 @@
     }
   },
   "blockedDomainsSavedSuccess": {
-    "message": "Zmiany w zablokowanych domenach zapisane"
+    "message": "Blokowane domeny zostały zapisane"
   },
   "excludedDomainsSavedSuccess": {
     "message": "Zmiany w wykluczonych domenach zapisane"
@@ -2693,18 +2693,18 @@
     }
   },
   "send": {
-    "message": "Wyślij",
+    "message": "Wysyłki",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendDetails": {
-    "message": "Szczegóły Send",
+    "message": "Szczegóły wysyłki",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendTypeText": {
     "message": "Tekst"
   },
   "sendTypeTextToShare": {
-    "message": "Tekst do udostępnienia"
+    "message": "Tekst wysyłki"
   },
   "sendTypeFile": {
     "message": "Plik"
@@ -2718,13 +2718,13 @@
     "description": "This text will be displayed after a Send has been accessed the maximum amount of times."
   },
   "hideTextByDefault": {
-    "message": "Domyślnie ukryj tekst"
+    "message": "Ukryj domyślnie tekst wysyłki"
   },
   "expired": {
     "message": "Wygasła"
   },
   "passwordProtected": {
-    "message": "Chroniona hasłem"
+    "message": "Zabezpieczone hasłem"
   },
   "copyLink": {
     "message": "Kopiuj link"
@@ -2751,7 +2751,7 @@
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "disabled": {
-    "message": "Wyłączona"
+    "message": "Wyłączone"
   },
   "removePasswordConfirmation": {
     "message": "Czy na pewno chcesz usunąć hasło?"
@@ -2761,11 +2761,11 @@
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "deleteSendConfirmation": {
-    "message": "Czy na pewno chcesz usunąć tę wysyłkę?",
+    "message": "Czy na pewno chcesz usunąć wysyłkę?",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "deleteSendPermanentConfirmation": {
-    "message": "Czy na pewno chcesz trwale usunąć to Send?",
+    "message": "Czy na pewno chcesz usunąć trwale wysyłkę?",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "editSend": {
@@ -2795,7 +2795,7 @@
     }
   },
   "custom": {
-    "message": "Niestandardowe"
+    "message": "Niestandardowa"
   },
   "sendPasswordDescV3": {
     "message": "Zabezpiecz tę wiadomość hasłem, które będzie wymagane, aby uzyskać do niej dostęp.",
@@ -2821,7 +2821,7 @@
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "createdSendSuccessfully": {
-    "message": "Send został stworzony!",
+    "message": "Wysyłka została utworzona!",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendExpiresInHoursSingle": {
@@ -2853,7 +2853,7 @@
     }
   },
   "sendLinkCopied": {
-    "message": "Link Send został skopiowany",
+    "message": "Link wysyłki został skopiowany",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "editedSend": {
@@ -2896,10 +2896,10 @@
     "message": "Data i czas usunięcia są wymagane."
   },
   "dateParsingError": {
-    "message": "Wystąpił błąd podczas zapisywania dat usunięcia i wygaśnięcia."
+    "message": "Wystąpił błąd podczas zapisywania daty usunięcia i wygaśnięcia."
   },
   "hideYourEmail": {
-    "message": "Ukryj mój adres e-mail przed oglądającymi."
+    "message": "Ukryj mój adres e-mail przed odbiorcami."
   },
   "passwordPrompt": {
     "message": "Potwierdź hasłem głównym"
@@ -2908,17 +2908,20 @@
     "message": "Potwierdź hasło główne"
   },
   "passwordConfirmationDesc": {
-    "message": "Ta operacja jest chroniona. Aby kontynuować, wpisz ponownie hasło główne."
+    "message": "Operacja jest chroniona. Aby kontynuować, wpisz ponownie hasło główne."
   },
   "emailVerificationRequired": {
     "message": "Weryfikacja adresu e-mail jest wymagana"
   },
   "emailVerifiedV2": {
-    "message": "E-mail zweryfikowany"
+    "message": "Adres e-mail został zweryfikowany"
   },
   "emailVerificationRequiredDesc": {
     "message": "Musisz zweryfikować adres e-mail, aby korzystać z tej funkcji. Adres możesz zweryfikować w sejfie internetowym."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Hasło główne zostało pomyślnie ustawione"
+  },
   "updatedMasterPassword": {
     "message": "Hasło główne zostało zaktualizowane"
   },
@@ -2926,7 +2929,7 @@
     "message": "Zaktualizuj hasło główne"
   },
   "updateMasterPasswordWarning": {
-    "message": "Hasło główne zostało zmienione przez administratora Twojej organizacji. Musisz je zaktualizować, aby uzyskać dostęp do sejfu. Ta czynność spowoduje wylogowanie z bieżącej sesji, przez co konieczne będzie ponowne zalogowanie się. Aktywne sesje na innych urządzeniach mogą pozostać aktywne przez maksymalnie godzinę."
+    "message": "Hasło główne zostało zmienione przez administratora Twojej organizacji. Aby uzyskać dostęp do sejfu, zaktualizuj hasło główne. Kontynuowanie spowoduje wylogowanie z obecnej sesji i konieczność ponownego zalogowania się. Aktywne sesje na innych urządzeniach mogą pozostać aktywne przez maksymalnie godzinę."
   },
   "updateWeakMasterPasswordWarning": {
     "message": "Twoje hasło główne nie spełnia jednej lub kilku zasad organizacji. Aby uzyskać dostęp do sejfu, musisz teraz zaktualizować swoje hasło główne. Kontynuacja wyloguje Cię z bieżącej sesji, wymagając zalogowania się ponownie. Aktywne sesje na innych urządzeniach mogą pozostać aktywne przez maksymalnie jedną godzinę."
@@ -2938,7 +2941,7 @@
     "message": "Automatyczne rejestrowanie użytkowników"
   },
   "resetPasswordAutoEnrollInviteWarning": {
-    "message": "Ta organizacja posługuje się zasadą, która automatycznie rejestruje użytkowników do resetowania hasła. Rejestracja umożliwia administratorom organizacji zmianę Twojego hasła głównego."
+    "message": "Zasada organizacji umożliwia administratorom organizacji zmianę Twojego hasła głównego."
   },
   "selectFolder": {
     "message": "Wybierz folder..."
@@ -2956,7 +2959,7 @@
     "description": "Used as a card title description on the set password page to explain why the user is there"
   },
   "cardMetrics": {
-    "message": "z $TOTAL$ elementów",
+    "message": "z $TOTAL$",
     "placeholders": {
       "total": {
         "content": "$1",
@@ -2991,7 +2994,7 @@
     }
   },
   "vaultTimeoutPolicyInEffect1": {
-    "message": "$HOURS$ godzin(y) i $MINUTES$ minut(y) maksymalnie.",
+    "message": "Maksymalnie $HOURS$ godz. i $MINUTES$ min.",
     "placeholders": {
       "hours": {
         "content": "$1",
@@ -3052,7 +3055,7 @@
     "message": "Co najmniej jedna zasada organizacji uniemożliwia wyeksportowanie osobistego sejfu."
   },
   "copyCustomFieldNameInvalidElement": {
-    "message": "Nie można zidentyfikować poprawnego elementu formularza. Spróbuj sprawdzić kod HTML."
+    "message": "Nie można zidentyfikować poprawnego elementu formularza. Spróbuj sprawdzić HTML."
   },
   "copyCustomFieldNameNotUnique": {
     "message": "Nie znaleziono unikatowego identyfikatora."
@@ -3064,7 +3067,7 @@
     "message": "Nazwa organizacji"
   },
   "keyConnectorDomain": {
-    "message": "Domena Key Connector'a"
+    "message": "Domena Key Connector"
   },
   "leaveOrganization": {
     "message": "Opuść organizację"
@@ -3076,13 +3079,13 @@
     "message": "Hasło główne zostało usunięte"
   },
   "leaveOrganizationConfirmation": {
-    "message": "Czy na pewno chcesz opuścić tę organizację?"
+    "message": "Czy na pewno chcesz opuścić organizację?"
   },
   "leftOrganization": {
-    "message": "Nie należysz już do tej organizacji."
+    "message": "Opuszczono organizację."
   },
   "toggleCharacterCount": {
-    "message": "Pokaż / Ukryj licznik znaków"
+    "message": "Pokaż / ukryj licznik znaków"
   },
   "sessionTimeout": {
     "message": "Twoja sesja wygasła. Zaloguj się ponownie."
@@ -3141,7 +3144,7 @@
     "message": "Wygeneruj nazwę użytkownika"
   },
   "generateEmail": {
-    "message": "Wygeneruj e-mail"
+    "message": "Wygeneruj adres e-mail"
   },
   "spinboxBoundariesHint": {
     "message": "Wartość musi być pomiędzy $MIN$ a $MAX$.",
@@ -3158,7 +3161,7 @@
     }
   },
   "passwordLengthRecommendationHint": {
-    "message": " Użyj $RECOMMENDED$ znaków lub więcej, aby wygenerować silne hasło.",
+    "message": "Użyj co najmniej $RECOMMENDED$ znaków, aby utworzyć silne hasło.",
     "description": "Appended to `spinboxBoundariesHint` to recommend a length to the user. This must include any language-specific 'sentence' separator characters (e.g. a space in english).",
     "placeholders": {
       "recommended": {
@@ -3168,7 +3171,7 @@
     }
   },
   "passphraseNumWordsRecommendationHint": {
-    "message": " Użyj $RECOMMENDED$ słów lub więcej, aby wygenerować silne hasło.",
+    "message": "Użyj co najmniej $RECOMMENDED$ słów, aby wygenerować silne hasło wyrazowe.",
     "description": "Appended to `spinboxBoundariesHint` to recommend a number of words to the user. This must include any language-specific 'sentence' separator characters (e.g. a space in english).",
     "placeholders": {
       "recommended": {
@@ -3191,13 +3194,13 @@
     "message": "Użyj skonfigurowanej skrzynki catch-all w swojej domenie."
   },
   "random": {
-    "message": "Losowa"
+    "message": "Losowe"
   },
   "randomWord": {
     "message": "Losowe słowo"
   },
   "websiteName": {
-    "message": "Nazwa strony"
+    "message": "Nazwa strony internetowej"
   },
   "service": {
     "message": "Usługa"
@@ -3206,7 +3209,7 @@
     "message": "Alias przekierowania"
   },
   "forwardedEmailDesc": {
-    "message": "Wygeneruj alias adresu e-mail z zewnętrznej usługi przekierowania."
+    "message": "Wygeneruj alias za pomocą zewnętrznej usługi."
   },
   "forwarderDomainName": {
     "message": "Domena adresu e-mail",
@@ -3245,7 +3248,7 @@
     }
   },
   "forwaderInvalidToken": {
-    "message": "Nieprawidłowy token API dla $SERVICENAME$",
+    "message": "Token API $SERVICENAME$ jest nieprawidłowy",
     "description": "Displayed when the user's API token is empty or rejected by the forwarding service.",
     "placeholders": {
       "servicename": {
@@ -3255,7 +3258,7 @@
     }
   },
   "forwaderInvalidTokenWithMessage": {
-    "message": "Nieprawidłowy token API dla $SERVICENAME$, błąd: $ERRORMESSAGE$",
+    "message": "Token API $SERVICENAME$ jest nieprawidłowy: $ERRORMESSAGE$",
     "description": "Displayed when the user's API token is rejected by the forwarding service with an error message.",
     "placeholders": {
       "servicename": {
@@ -3303,7 +3306,7 @@
     }
   },
   "forwarderNoDomain": {
-    "message": "Nieprawidłowa domena $SERVICENAME$.",
+    "message": "Domena $SERVICENAME$ jest nieprawidłowa.",
     "description": "Displayed when the domain is empty or domain authorization failed at the forwarding service.",
     "placeholders": {
       "servicename": {
@@ -3313,7 +3316,7 @@
     }
   },
   "forwarderNoUrl": {
-    "message": "Nieprawidłowy adres URL $SERVICENAME$.",
+    "message": "Adres URL $SERVICENAME$ jest nieprawidłowy.",
     "description": "Displayed when the url of the forwarding service wasn't supplied.",
     "placeholders": {
       "servicename": {
@@ -3323,7 +3326,7 @@
     }
   },
   "forwarderUnknownError": {
-    "message": "Wystąpił nieznany błąd w $SERVICENAME$.",
+    "message": "Wystąpił nieznany błąd $SERVICENAME$.",
     "description": "Displayed when the forwarding service failed due to an unknown error.",
     "placeholders": {
       "servicename": {
@@ -3356,7 +3359,7 @@
     "message": "Błąd serwera Key Connector: upewnij się, że serwer Key Connector jest dostępny i działa poprawnie."
   },
   "premiumSubcriptionRequired": {
-    "message": "Wymagana jest subskrypcja Premium"
+    "message": "Wymagana jest subskrypcja premium"
   },
   "organizationIsDisabled": {
     "message": "Organizacja została zawieszona."
@@ -3365,7 +3368,7 @@
     "message": "Nie można uzyskać dostępu do elementów w zawieszonych organizacjach. Skontaktuj się z właścicielem organizacji, aby uzyskać pomoc."
   },
   "loggingInTo": {
-    "message": "Logowanie do $DOMAIN$",
+    "message": "Logowanie na $DOMAIN$",
     "placeholders": {
       "domain": {
         "content": "$1",
@@ -3428,7 +3431,7 @@
     "message": "Powiadomienie zostało wysłane na urządzenie."
   },
   "notificationSentDevicePart1": {
-    "message": "Odblokuj Bitwarden na swoim urządzeniu lub w"
+    "message": "Odblokuj Bitwarden na urządzeniu lub w"
   },
   "notificationSentDeviceAnchor": {
     "message": "aplikacji internetowej"
@@ -3437,13 +3440,13 @@
     "message": "Upewnij się, że fraza odcisku palca zgadza się z tą poniżej, zanim zatwierdzisz."
   },
   "aNotificationWasSentToYourDevice": {
-    "message": "Powiadomienie zostało wysłane na twoje urządzenie"
+    "message": "Powiadomienie zostało wysłane na urządzenie"
   },
   "youWillBeNotifiedOnceTheRequestIsApproved": {
     "message": "Zostaniesz powiadomiony po zatwierdzeniu prośby"
   },
   "needAnotherOptionV1": {
-    "message": "Potrzebujesz innego sposobu?"
+    "message": "Potrzebujesz innej opcji?"
   },
   "loginInitiated": {
     "message": "Logowanie rozpoczęte"
@@ -3452,13 +3455,13 @@
     "message": "Żądanie wysłane"
   },
   "exposedMasterPassword": {
-    "message": "Ujawnione hasło główne"
+    "message": "Hasło główne zostało ujawnione"
   },
   "exposedMasterPasswordDesc": {
     "message": "Hasło ujawnione w wyniku naruszenia ochrony danych. Użyj unikalnego hasła, aby chronić swoje konto. Czy na pewno chcesz użyć ujawnionego hasła?"
   },
   "weakAndExposedMasterPassword": {
-    "message": "Słabe i ujawnione hasło główne"
+    "message": "Hasło główne jest słabe i ujawnione"
   },
   "weakAndBreachedMasterPasswordDesc": {
     "message": "Słabe hasło ujawnione w wyniku naruszenia ochrony danych. Użyj silnego i unikalnego hasła, aby chronić swoje konto. Czy na pewno chcesz użyć tego hasła?"
@@ -3488,7 +3491,7 @@
     "message": "Jak autouzupełniać"
   },
   "autofillSelectInfoWithCommand": {
-    "message": "Wybierz element z tego ekranu, użyj skrótu $COMMAND$ lub zobacz inne opcje w ustawieniach.",
+    "message": "Wybierz element, użyj skrótu $COMMAND$ lub zobacz inne opcje w ustawieniach.",
     "placeholders": {
       "command": {
         "content": "$1",
@@ -3500,7 +3503,7 @@
     "message": "Wybierz element z tego ekranu lub zobacz inne opcje w ustawieniach."
   },
   "gotIt": {
-    "message": "Rozumiem"
+    "message": "Ok"
   },
   "autofillSettings": {
     "message": "Ustawienia autouzupełniania"
@@ -3515,13 +3518,13 @@
     "message": "Zarządzaj skrótami"
   },
   "autofillShortcut": {
-    "message": "Skrót klawiaturowy autouzupełniania"
+    "message": "Skrót klawiszowy autouzupełniania"
   },
   "autofillLoginShortcutNotSet": {
     "message": "Skrót autouzupełniania nie jest ustawiony. Zmień to w ustawieniach przeglądarki."
   },
   "autofillLoginShortcutText": {
-    "message": "Skrót autouzupełniania to: $COMMAND$. Zmień to w ustawieniach przeglądarki.",
+    "message": "Skrót autouzupełniania to $COMMAND$. Zmień skróty w ustawieniach przeglądarki.",
     "placeholders": {
       "command": {
         "content": "$1",
@@ -3554,7 +3557,7 @@
     "message": "Wybierz opcję zatwierdzenia poniżej"
   },
   "rememberThisDevice": {
-    "message": "Zapamiętaj to urządzenie"
+    "message": "Zapamiętaj urządzenie"
   },
   "uncheckIfPublicDevice": {
     "message": "Odznacz, jeśli używasz publicznego urządzenia"
@@ -3603,7 +3606,7 @@
     "message": "Wyświetl"
   },
   "accountSuccessfullyCreated": {
-    "message": "Konto pomyślnie utworzone!"
+    "message": "Konto zostało utworzone!"
   },
   "adminApprovalRequested": {
     "message": "Poproszono administratora o zatwierdzenie"
@@ -3612,10 +3615,10 @@
     "message": "Twoja prośba została wysłana do Twojego administratora."
   },
   "troubleLoggingIn": {
-    "message": "Problem z zalogowaniem?"
+    "message": "Problem z logowaniem?"
   },
   "loginApproved": {
-    "message": "Logowanie zatwierdzone"
+    "message": "Logowanie zostało potwierdzone"
   },
   "userEmailMissing": {
     "message": "Brak adresu e-mail użytkownika"
@@ -3713,7 +3716,7 @@
     }
   },
   "multipleInputEmails": {
-    "message": "Co najmniej 1 e-mail jest nieprawidłowy"
+    "message": "Co najmniej 1 adres e-mail jest nieprawidłowy"
   },
   "inputTrimValidator": {
     "message": "Tekst nie może zawierać tylko spacji.",
@@ -3723,7 +3726,7 @@
     "message": "Dane wejściowe nie są adresem e-mail."
   },
   "fieldsNeedAttention": {
-    "message": "Pola powyżej wymagające Twojej uwagi: $COUNT$.",
+    "message": "Pola wymagające uwagi: $COUNT$.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -3732,10 +3735,10 @@
     }
   },
   "singleFieldNeedsAttention": {
-    "message": "1 pole wymaga Twojej uwagi."
+    "message": "1 pole wymaga uwagi."
   },
   "multipleFieldsNeedAttention": {
-    "message": "Pola wymagające Twojej uwagi: $COUNT$.",
+    "message": "Pola wymagające uwagi: $COUNT$.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -3753,7 +3756,7 @@
     "message": "Pobieranie opcji..."
   },
   "multiSelectNotFound": {
-    "message": "Nie znaleziono żadnych pozycji"
+    "message": "Nie znaleziono elementów"
   },
   "multiSelectClearAll": {
     "message": "Wyczyść wszystko"
@@ -3812,7 +3815,7 @@
     "description": "Text to display in overlay when the account is locked."
   },
   "unlockYourAccountToViewAutofillSuggestions": {
-    "message": "Odblokuj swoje konto, aby zobaczyć sugestie autouzupełniania",
+    "message": "Odblokuj konto, aby zobaczyć sugestie autouzupełniania",
     "description": "Text to display in overlay when the account is locked."
   },
   "unlockAccount": {
@@ -3832,7 +3835,7 @@
     "description": "Aria label for the totp seconds displayed in the inline menu for autofill"
   },
   "fillCredentialsFor": {
-    "message": "Wypełnij dane logowania dla",
+    "message": "Uzupełnij dane logowania dla",
     "description": "Screen reader text for when overlay item is in focused"
   },
   "partialUsername": {
@@ -3890,7 +3893,7 @@
     "description": "Used for the header of the import dialog, the import button and within the file-password-prompt"
   },
   "importError": {
-    "message": "Błąd importu"
+    "message": "Błąd importowania"
   },
   "importErrorDesc": {
     "message": "Wystąpił problem z danymi, które chcesz zaimportować. Rozwiąż poniższe problemy w Twoim pliku i spróbuj ponownie."
@@ -3902,7 +3905,7 @@
     "message": "Opis"
   },
   "importSuccess": {
-    "message": "Importowanie danych zakończone sukcesem"
+    "message": "Dane zostały zaimportowane"
   },
   "importSuccessNumberOfItems": {
     "message": "Zaimportowano elementów: $AMOUNT$.",
@@ -3920,10 +3923,10 @@
     "message": "Weryfikacja dla tej akcji jest wymagana. Ustaw kod PIN, aby kontynuować."
   },
   "setPin": {
-    "message": "Ustaw PIN"
+    "message": "Ustaw kod PIN"
   },
   "verifyWithBiometrics": {
-    "message": "Weryfikuj za pomocą biometrii"
+    "message": "Zweryfikuj biometrią"
   },
   "awaitingConfirmation": {
     "message": "Oczekiwanie na potwierdzenie"
@@ -3938,7 +3941,7 @@
     "message": "Użyj hasła głównego"
   },
   "usePin": {
-    "message": "Użyj PINu"
+    "message": "Użyj kodu PIN"
   },
   "useBiometrics": {
     "message": "Użyj biometrii"
@@ -3947,7 +3950,7 @@
     "message": "Wpisz kod weryfikacyjny, który został wysłany na adres e-mail."
   },
   "resendCode": {
-    "message": "Wysłać kod ponownie"
+    "message": "Wyślij ponownie kod"
   },
   "total": {
     "message": "Łącznie"
@@ -3965,13 +3968,13 @@
     "message": "Wystąpił błąd podczas połączenia z usługą Duo. Aby uzyskać pomoc, użyj innej metody dwustopniowego logowania lub skontaktuj się z Duo."
   },
   "duoRequiredForAccount": {
-    "message": "Dwustopniowe logowanie Duo jest wymagane dla Twojego konta."
+    "message": "Konto wymaga logowania dwustopniowego Duo."
   },
   "popoutExtension": {
     "message": "Otwórz rozszerzenie w nowym oknie"
   },
   "launchDuo": {
-    "message": "Uruchom DUO"
+    "message": "Uruchom Duo"
   },
   "importFormatError": {
     "message": "Dane nie są poprawnie sformatowane. Sprawdź importowany plik i spróbuj ponownie."
@@ -4023,7 +4026,7 @@
     "message": "Nie wybrano pliku"
   },
   "orCopyPasteFileContents": {
-    "message": "lub skopiuj/wklej treść pliku"
+    "message": "lub wklej zawartość pliku"
   },
   "instructionsFor": {
     "message": "Instrukcja dla $NAME$",
@@ -4051,7 +4054,7 @@
     "message": "Klucz dostępu"
   },
   "accessing": {
-    "message": "Uzyskiwanie dostępu"
+    "message": "Logowanie na"
   },
   "loggedInExclamation": {
     "message": "Zalogowano!"
@@ -4066,7 +4069,7 @@
     "message": "Weryfikacja jest wymagana przez stronę inicjującą. Ta funkcja nie jest jeszcze zaimplementowana dla kont bez hasła głównego."
   },
   "logInWithPasskeyQuestion": {
-    "message": "Zalogować za pomocą klucza dostępu?"
+    "message": "Zalogować się kluczem dostępu?"
   },
   "passkeyAlreadyExists": {
     "message": "Klucz dostępu już istnieje dla tej aplikacji."
@@ -4105,7 +4108,7 @@
     "message": "Zastąpić klucz dostępu?"
   },
   "overwritePasskeyAlert": {
-    "message": "Ten element zawiera już klucz dostępu. Czy na pewno chcesz nadpisać bieżący klucza dostępu?"
+    "message": "Element zawiera już klucz dostępu. Czy na pewno chcesz zastąpić obecny klucz dostępu?"
   },
   "featureNotSupported": {
     "message": "Funkcja nie jest jeszcze obsługiwana"
@@ -4123,13 +4126,13 @@
     "message": "Nieprawidłowa nazwa użytkownika lub hasło"
   },
   "incorrectPassword": {
-    "message": "Błędne hasło"
+    "message": "Hasło jest nieprawidłowe"
   },
   "incorrectCode": {
     "message": "Błędny kod"
   },
   "incorrectPin": {
-    "message": "Niepoprawny PIN"
+    "message": "Kod PIN jest nieprawidłowy"
   },
   "multifactorAuthenticationFailed": {
     "message": "Uwierzytelnianie wieloskładnikowe nie powiodło się"
@@ -4138,7 +4141,7 @@
     "message": "Dołącz udostępnione foldery"
   },
   "lastPassEmail": {
-    "message": "E-mail LastPass"
+    "message": "Adres e-mail LastPass"
   },
   "importingYourAccount": {
     "message": "Importowanie konta..."
@@ -4244,12 +4247,32 @@
     "message": "Popularne formaty",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
-    "message": "Kontynuować do ustawień przeglądarki?",
+    "message": "Przejść do ustawień przeglądarki?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
   },
   "confirmContinueToHelpCenter": {
-    "message": "Kontynuować do centrum pomocy?",
+    "message": "Przejść do centrum pomocy?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant Help Center page"
   },
   "confirmContinueToHelpCenterPasswordManagementContent": {
@@ -4257,7 +4280,7 @@
     "description": "Body content for dialog which asks if the user wants to proceed to the Help Center's page about browser password management settings"
   },
   "confirmContinueToHelpCenterKeyboardShortcutsContent": {
-    "message": "Możesz przeglądać i ustawiać skróty klawiaturowe rozszerzeń w ustawieniach przeglądarki.",
+    "message": "Możesz zmieniać skróty rozszerzenia w ustawieniach przeglądarki.",
     "description": "Body content for dialog which asks if the user wants to proceed to the Help Center's page about browser keyboard shortcut settings"
   },
   "confirmContinueToBrowserPasswordManagementSettingsContent": {
@@ -4265,7 +4288,7 @@
     "description": "Body content for dialog which asks if the user wants to proceed to the browser's password management settings page"
   },
   "confirmContinueToBrowserKeyboardShortcutSettingsContent": {
-    "message": "Możesz przeglądać i ustawiać skróty klawiaturowe rozszerzeń w ustawieniach przeglądarki.",
+    "message": "Możesz zmieniać skróty rozszerzenia w ustawieniach przeglądarki.",
     "description": "Body content for dialog which asks if the user wants to proceed to the browser's keyboard shortcut settings page"
   },
   "overrideDefaultBrowserAutofillTitle": {
@@ -4301,7 +4324,7 @@
     "description": "Notification message for when saving credentials has succeeded."
   },
   "updateCipherAttemptSuccess": {
-    "message": "Pomyślnie zaktualizowano dane logowania!",
+    "message": "Dane logowania zostały zaktualizowane!",
     "description": "Notification message for when updating credentials has succeeded."
   },
   "passwordUpdated": {
@@ -4331,7 +4354,7 @@
     "message": "Zapisz element logowania dla tej witryny, aby automatycznie wypełnić"
   },
   "yourVaultIsEmpty": {
-    "message": "Twój sejf jest pusty"
+    "message": "Sejf jest pusty"
   },
   "noItemsMatchSearch": {
     "message": "Żaden element nie pasuje do Twojego wyszukiwania"
@@ -4340,7 +4363,7 @@
     "message": "Wyczyść filtry lub użyj innej frazy"
   },
   "copyInfoTitle": {
-    "message": "Skopiuj informacje - $ITEMNAME$",
+    "message": "Kopiuj informacje - $ITEMNAME$",
     "description": "Title for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
       "itemname": {
@@ -4350,7 +4373,7 @@
     }
   },
   "copyNoteTitle": {
-    "message": "Skopiuj notatkę - $ITEMNAME$",
+    "message": "Kopiuj notatkę - $ITEMNAME$",
     "description": "Title for a button copies a note to the clipboard.",
     "placeholders": {
       "itemname": {
@@ -4380,7 +4403,7 @@
     }
   },
   "viewItemTitle": {
-    "message": "Zobacz element - $ITEMNAME$",
+    "message": "Pokaż element - $ITEMNAME$",
     "description": "Title for a link that opens a view for an item.",
     "placeholders": {
       "itemname": {
@@ -4390,7 +4413,7 @@
     }
   },
   "viewItemTitleWithField": {
-    "message": "Zobacz element - $ITEMNAME$ - $FIELD$",
+    "message": "Pokaż element - $ITEMNAME$ - $FIELD$",
     "description": "Title for a link that opens a view for an item.",
     "placeholders": {
       "itemname": {
@@ -4404,7 +4427,7 @@
     }
   },
   "autofillTitle": {
-    "message": "Autouzupełnij - $ITEMNAME$",
+    "message": "Uzupełnij - $ITEMNAME$",
     "description": "Title for a button that autofills a login item.",
     "placeholders": {
       "itemname": {
@@ -4414,7 +4437,7 @@
     }
   },
   "autofillTitleWithField": {
-    "message": "Autouzupełnij - $ITEMNAME$ - $FIELD$",
+    "message": "Uzupełnij - $ITEMNAME$ - $FIELD$",
     "description": "Title for a button that autofills a login item.",
     "placeholders": {
       "itemname": {
@@ -4448,16 +4471,16 @@
     "message": "Przypisz do kolekcji"
   },
   "copyEmail": {
-    "message": "Skopiuj e-mail"
+    "message": "Kopiuj adres e-mail"
   },
   "copyPhone": {
-    "message": "Skopiuj telefon"
+    "message": "Kopiuj numer telefonu"
   },
   "copyAddress": {
-    "message": "Skopiuj adres"
+    "message": "Kopiuj adres"
   },
   "adminConsole": {
-    "message": "Konsola Administracyjna"
+    "message": "Konsola administratora"
   },
   "accountSecurity": {
     "message": "Bezpieczeństwo konta"
@@ -4475,7 +4498,7 @@
     "message": "Wystąpił błąd podczas przypisywania folderu."
   },
   "viewItemsIn": {
-    "message": "Zobacz elementy w $NAME$",
+    "message": "Pokaż elementy w $NAME$",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -4508,7 +4531,7 @@
     }
   },
   "itemsWithNoFolder": {
-    "message": "Elementy bez folderu"
+    "message": "Nieprzypisane"
   },
   "itemDetails": {
     "message": "Szczegóły elementu"
@@ -4536,19 +4559,19 @@
     "message": "Historia elementu"
   },
   "lastEdited": {
-    "message": "Ostatnio edytowany"
+    "message": "Zaktualizowano"
   },
   "ownerYou": {
     "message": "Właściciel: Ty"
   },
   "linked": {
-    "message": "Powiązane"
+    "message": "Powiązane pole"
   },
   "copySuccessful": {
     "message": "Kopiowanie zakończone sukcesem"
   },
   "upload": {
-    "message": "Wyślij"
+    "message": "Prześlij"
   },
   "addAttachment": {
     "message": "Dodaj załącznik"
@@ -4593,7 +4616,7 @@
     "message": "Uzyskaj dostęp do sejfu bez przeglądarki, a następnie ustaw odblokowanie biometryczne, aby przyspieszyć odblokowanie zarówno w aplikacji desktopowej, jak i w rozszerzeniu przeglądarki."
   },
   "downloadFromBitwardenNow": {
-    "message": "Pobierz teraz z bitwarden.com"
+    "message": "Pobierz z bitwarden.com"
   },
   "getItOnGooglePlay": {
     "message": "Pobierz z Google Play"
@@ -4602,7 +4625,7 @@
     "message": "Pobierz z App Store"
   },
   "permanentlyDeleteAttachmentConfirmation": {
-    "message": "Czy na pewno chcesz trwale usunąć ten załącznik?"
+    "message": "Czy na pewno chcesz usunąć trwale załącznik?"
   },
   "premium": {
     "message": "Premium"
@@ -4632,7 +4655,7 @@
     "message": "Dane osobowe"
   },
   "identification": {
-    "message": "Tożsamość"
+    "message": "Identyfikacja"
   },
   "contactInfo": {
     "message": "Daje kontaktowe"
@@ -4673,7 +4696,7 @@
     }
   },
   "websiteAdded": {
-    "message": "Strona dodana"
+    "message": "Strona internetowa została dodana"
   },
   "addWebsite": {
     "message": "Dodaj stronę internetową"
@@ -4682,7 +4705,7 @@
     "message": "Usuń stronę internetową"
   },
   "defaultLabel": {
-    "message": "Domyślnie ($VALUE$)",
+    "message": "Domyślne ($VALUE$)",
     "description": "A label that indicates the default value for a field with the current default value in parentheses.",
     "placeholders": {
       "value": {
@@ -4692,7 +4715,7 @@
     }
   },
   "showMatchDetection": {
-    "message": "Pokaż wykrywanie dopasowań $WEBSITE$",
+    "message": "Pokaż wykrywanie dopasowania $WEBSITE$",
     "placeholders": {
       "website": {
         "content": "$1",
@@ -4701,7 +4724,7 @@
     }
   },
   "hideMatchDetection": {
-    "message": "Ukryj wykrywanie dopasowań $WEBSITE$",
+    "message": "Ukryj wykrywanie dopasowania $WEBSITE$",
     "placeholders": {
       "website": {
         "content": "$1",
@@ -4710,7 +4733,7 @@
     }
   },
   "autoFillOnPageLoad": {
-    "message": "Włącz autouzupełnianie po załadowaniu strony?"
+    "message": "Włączyć autouzupełnianie po załadowaniu strony?"
   },
   "cardExpiredTitle": {
     "message": "Karta wygasła"
@@ -4740,7 +4763,7 @@
     "message": "Dodaj konto"
   },
   "loading": {
-    "message": "Wczytywanie"
+    "message": "Ładowanie"
   },
   "data": {
     "message": "Dane"
@@ -4754,7 +4777,7 @@
     "description": "A section header for a list of passwords."
   },
   "logInWithPasskeyAriaLabel": {
-    "message": "Zaloguj się za pomocą klucza dostępu",
+    "message": "Logowaniem kluczem dostępu",
     "description": "ARIA label for the inline menu button that logs in with a passkey."
   },
   "assign": {
@@ -4785,7 +4808,7 @@
     "message": "Dodaj"
   },
   "fieldType": {
-    "message": "Typ pola"
+    "message": "Rodzaj pola"
   },
   "fieldLabel": {
     "message": "Etykieta pola"
@@ -4908,7 +4931,7 @@
     "message": "Nie zaznaczyłeś żadnych elementów."
   },
   "itemsMovedToOrg": {
-    "message": "Elementy przeniesione do $ORGNAME$",
+    "message": "Elementy zostały przeniesione do organizacji $ORGNAME$",
     "placeholders": {
       "orgname": {
         "content": "$1",
@@ -4917,7 +4940,7 @@
     }
   },
   "itemMovedToOrg": {
-    "message": "Element przeniesiony do $ORGNAME$",
+    "message": "Element został przeniesiony do organizacji $ORGNAME$",
     "placeholders": {
       "orgname": {
         "content": "$1",
@@ -4946,13 +4969,13 @@
     "message": "Lokalizacja elementu"
   },
   "fileSend": {
-    "message": "Wysyłka pliku"
+    "message": "Plik wysyłki"
   },
   "fileSends": {
     "message": "Wysyłki plików"
   },
   "textSend": {
-    "message": "Wysyłka tekstu"
+    "message": "Tekst wysyłki"
   },
   "textSends": {
     "message": "Wysyłki tekstów"
@@ -4964,7 +4987,7 @@
     "message": "Pokaż liczbę sugestii autouzupełniania logowania na ikonie rozszerzenia"
   },
   "showQuickCopyActions": {
-    "message": "Pokaż akcje szybkiego kopiowania w Sejfie"
+    "message": "Pokaż akcje szybkiego kopiowania w sejfie"
   },
   "systemDefault": {
     "message": "Domyślny systemu"
@@ -4979,22 +5002,22 @@
     "message": "Klucz publiczny"
   },
   "sshFingerprint": {
-    "message": "Odcisk palca"
+    "message": "Odcisk klucza"
   },
   "sshKeyAlgorithm": {
-    "message": "Typ klucza"
+    "message": "Rodzaj klucza"
   },
   "sshKeyAlgorithmED25519": {
     "message": "ED25519"
   },
   "sshKeyAlgorithmRSA2048": {
-    "message": "RSA 2048-bitowy"
+    "message": "RSA 2048-bit"
   },
   "sshKeyAlgorithmRSA3072": {
-    "message": "RSA 3072-bitowy"
+    "message": "RSA 3072-bit"
   },
   "sshKeyAlgorithmRSA4096": {
-    "message": "RSA 4096-bitowy"
+    "message": "RSA 4096-bit"
   },
   "retry": {
     "message": "Powtórz"
@@ -5036,19 +5059,19 @@
     "message": "Nie masz uprawnień do edycji tego elementu"
   },
   "biometricsStatusHelptextUnlockNeeded": {
-    "message": "Odblokowanie odciskiem palca jest niedostępne, ponieważ najpierw wymagane jest odblokowanie kodem PIN lub hasłem."
+    "message": "Odblokowanie biometrią jest niedostępne, ponieważ najpierw wymagane jest odblokowanie kodem PIN lub hasłem."
   },
   "biometricsStatusHelptextHardwareUnavailable": {
-    "message": "Odblokowanie biometryczne jest obecnie niedostępne."
+    "message": "Odblokowanie biometrią jest obecnie niedostępne."
   },
   "biometricsStatusHelptextAutoSetupNeeded": {
-    "message": "Odblokowanie biometryczne jest niedostępne z powodu nieprawidłowej konfiguracji plików systemowych."
+    "message": "Odblokowanie biometrią jest niedostępne z powodu nieprawidłowej konfiguracji plików systemowych."
   },
   "biometricsStatusHelptextManualSetupNeeded": {
-    "message": "Odblokowanie biometryczne jest niedostępne z powodu nieprawidłowej konfiguracji plików systemowych."
+    "message": "Odblokowanie biometrią jest niedostępne z powodu nieprawidłowej konfiguracji plików systemowych."
   },
   "biometricsStatusHelptextDesktopDisconnected": {
-    "message": "Odblokowanie odciskiem palca jest niedostępne, ponieważ aplikacja desktopowa Bitwarden jest zamknięta."
+    "message": "Odblokowanie biometrią jest niedostępne z powodu zamkniętej aplikacji desktopowej Bitwarden."
   },
   "biometricsStatusHelptextNotEnabledInDesktop": {
     "message": "Odblokowanie biometryczne jest niedostępne, ponieważ nie jest włączone dla $EMAIL$ w aplikacji desktopowej Bitwarden.",
@@ -5063,16 +5086,16 @@
     "message": "Odblokowanie biometryczne jest obecnie niedostępne z nieznanego powodu."
   },
   "unlockVault": {
-    "message": "Odblokuj swój sejf w kilka sekund"
+    "message": "Odblokuj sejf w kilka sekund"
   },
   "unlockVaultDesc": {
     "message": "Możesz dostosować ustawienia odblokowania i limitu czasu, aby szybciej uzyskać dostęp do sejfu."
   },
   "unlockPinSet": {
-    "message": "Ustaw kod PIN odblokowujący"
+    "message": "Kod PIN został ustawiony"
   },
   "unlockWithBiometricSet": {
-    "message": "Odblokuj za pomocą danych biometrycznych"
+    "message": "Odblokuj biometrią"
   },
   "authenticating": {
     "message": "Uwierzytelnianie"
@@ -5110,23 +5133,23 @@
     "description": "Represents the @ key in screen reader content as a readable word"
   },
   "hashSignCharacterDescriptor": {
-    "message": "Hashtag",
+    "message": "Kratka",
     "description": "Represents the # key in screen reader content as a readable word"
   },
   "dollarSignCharacterDescriptor": {
-    "message": "Znak dolara",
+    "message": "Dolar",
     "description": "Represents the $ key in screen reader content as a readable word"
   },
   "percentSignCharacterDescriptor": {
-    "message": "Znak procenta",
+    "message": "Procent",
     "description": "Represents the % key in screen reader content as a readable word"
   },
   "caretCharacterDescriptor": {
-    "message": "Daszek",
+    "message": "Kareta",
     "description": "Represents the ^ key in screen reader content as a readable word"
   },
   "ampersandCharacterDescriptor": {
-    "message": "Ampersand",
+    "message": "Et",
     "description": "Represents the & key in screen reader content as a readable word"
   },
   "asteriskCharacterDescriptor": {
@@ -5134,15 +5157,15 @@
     "description": "Represents the * key in screen reader content as a readable word"
   },
   "parenLeftCharacterDescriptor": {
-    "message": "Prawy nawias okrągły",
+    "message": "Lewy nawias",
     "description": "Represents the ( key in screen reader content as a readable word"
   },
   "parenRightCharacterDescriptor": {
-    "message": "Prawy nawias okrągły",
+    "message": "Prawy nawias",
     "description": "Represents the ) key in screen reader content as a readable word"
   },
   "hyphenCharacterDescriptor": {
-    "message": "Znak podkreślenia",
+    "message": "Podkreślnik",
     "description": "Represents the _ key in screen reader content as a readable word"
   },
   "underscoreCharacterDescriptor": {
@@ -5154,7 +5177,7 @@
     "description": "Represents the + key in screen reader content as a readable word"
   },
   "equalsCharacterDescriptor": {
-    "message": "Znak równości",
+    "message": "Równa się",
     "description": "Represents the = key in screen reader content as a readable word"
   },
   "braceLeftCharacterDescriptor": {
@@ -5174,11 +5197,11 @@
     "description": "Represents the ] key in screen reader content as a readable word"
   },
   "pipeCharacterDescriptor": {
-    "message": "Pionowa kreska",
+    "message": "Kreska pionowa",
     "description": "Represents the | key in screen reader content as a readable word"
   },
   "backSlashCharacterDescriptor": {
-    "message": "Ukośnik wsteczny",
+    "message": "Ukośnik lewy",
     "description": "Represents the back slash key in screen reader content as a readable word"
   },
   "colonCharacterDescriptor": {
@@ -5198,11 +5221,11 @@
     "description": "Represents the ' key in screen reader content as a readable word"
   },
   "lessThanCharacterDescriptor": {
-    "message": "Mniejszy niż",
+    "message": "Mniej niż",
     "description": "Represents the < key in screen reader content as a readable word"
   },
   "greaterThanCharacterDescriptor": {
-    "message": "Większy niż",
+    "message": "Więcej niż",
     "description": "Represents the > key in screen reader content as a readable word"
   },
   "commaCharacterDescriptor": {
@@ -5255,22 +5278,22 @@
     "message": "Potwierdź hasło"
   },
   "enterSshKeyPasswordDesc": {
-    "message": "Wprowadź hasło dla klucza SSH."
+    "message": "Wpisz hasło klucza SSH."
   },
   "enterSshKeyPassword": {
-    "message": "Wprowadź hasło"
+    "message": "Wpisz hasło"
   },
   "invalidSshKey": {
     "message": "Klucz SSH jest nieprawidłowy"
   },
   "sshKeyTypeUnsupported": {
-    "message": "Typ klucza SSH nie jest obsługiwany"
+    "message": "Ten klucz SSH nie jest obsługiwany"
   },
   "importSshKeyFromClipboard": {
     "message": "Importuj klucz ze schowka"
   },
   "sshKeyImported": {
-    "message": "Klucz SSH zaimportowano pomyślnie"
+    "message": "Klucz SSH został zaimportowany"
   },
   "cannotRemoveViewOnlyCollections": {
     "message": "Nie można usunąć kolekcji z uprawnieniami tylko do przeglądania: $COLLECTIONS$",
@@ -5282,13 +5305,13 @@
     }
   },
   "updateDesktopAppOrDisableFingerprintDialogTitle": {
-    "message": "Zaktualizuj aplikację na komputer"
+    "message": "Zaktualizuj aplikację desktopową"
   },
   "updateDesktopAppOrDisableFingerprintDialogMessage": {
     "message": "Aby używać odblokowywania biometrycznego, zaktualizuj aplikację na komputerze lub wyłącz odblokowywanie odciskiem palca w ustawieniach aplikacji na komputerze."
   },
   "changeAtRiskPassword": {
-    "message": "Zmień hasło zagrożone"
+    "message": "Zmień zagrożone hasło"
   },
   "settingsVaultOptions": {
     "message": "Ustawienia Sejfu"
@@ -5300,43 +5323,43 @@
     "message": "Witaj w Bitwarden"
   },
   "securityPrioritized": {
-    "message": "Bezpieczeństwo priorytetem"
+    "message": "Priorytetowe bezpieczeństwo"
   },
   "securityPrioritizedBody": {
-    "message": "Zapisz dane logowania, karty i tożsamości w bezpiecznym sejfie. Bitwarden stosuje szyfrowanie end-to-end z wiedzą zerową, aby chronić to, co jest dla Ciebie ważne."
+    "message": "Zapisz dane logowania, karty i tożsamości w bezpiecznym sejfie. Bitwarden używa szyfrowania end-to-end w celu ochrony tego, co jest dla Ciebie ważne."
   },
   "quickLogin": {
     "message": "Szybkie i łatwe logowanie"
   },
   "quickLoginBody": {
-    "message": "Skonfiguruj odblokowanie i autouzupełnianie biometryczne, aby zalogować się na swoje konta bez wpisywania pojedynczej litery."
+    "message": "Skonfiguruj odblokowywanie biometryczne i autouzupełnianie, aby logować się do swoich kont bez wpisywania nawet jednej litery."
   },
   "secureUser": {
-    "message": "Ulepsz swoje loginy"
+    "message": "Ulepsz swoje dane logowania"
   },
   "secureUserBody": {
-    "message": "Użyj generatora do tworzenia i zapisywania silnych, unikalnych haseł dla wszystkich kont."
+    "message": "Użyj generatora, aby utworzyć i zapisać silne, unikalne hasła do wszystkich swoich kont."
   },
   "secureDevices": {
     "message": "Twoje dane, kiedy i gdzie potrzebujesz"
   },
   "secureDevicesBody": {
-    "message": "Zapisuj nieograniczoną liczbę haseł na nieograniczonej liczbie urządzeń dzięki aplikacjom Bitwarden na urządzenia mobilne, przeglądarki i komputery stacjonarne."
+    "message": "Zapisuj nieograniczoną liczbę haseł dzięki aplikacjom Bitwarden, które są dostępne na urządzeniach mobilnych, w przeglądarkach i na komputerach."
   },
   "nudgeBadgeAria": {
     "message": "1 powiadomienie"
   },
   "emptyVaultNudgeTitle": {
-    "message": "Importuj istniejące hasła"
+    "message": "Importuj obecne hasła"
   },
   "emptyVaultNudgeBody": {
-    "message": "Użyj importera, aby szybko przenieść loginy do Bitwarden bez ręcznego dodawania ich."
+    "message": "Przenieś dane logowania do Bitwarden w sposób automatyczny."
   },
   "emptyVaultNudgeButton": {
     "message": "Importuj teraz"
   },
   "hasItemsVaultNudgeTitle": {
-    "message": "Witaj w Twoim Sejfie!"
+    "message": "Witaj w sejfie!"
   },
   "hasItemsVaultNudgeBodyOne": {
     "message": "Autouzupełnianie elementów dla bieżącej strony"
@@ -5351,17 +5374,17 @@
     "message": "Oszczędzaj czas dzięki autouzupełnianiu"
   },
   "newLoginNudgeBodyOne": {
-    "message": "Dołącz",
+    "message": "Dodaj",
     "description": "This is in multiple parts to allow for bold text in the middle of the sentence.",
     "example": "Include a Website so this login appears as an autofill suggestion."
   },
   "newLoginNudgeBodyBold": {
-    "message": "stronę internetową, ",
+    "message": "stronę internetową",
     "description": "This is in multiple parts to allow for bold text in the middle of the sentence.",
     "example": "Include a Website so this login appears as an autofill suggestion."
   },
   "newLoginNudgeBodyTwo": {
-    "message": "aby ten login pojawił się jako sugestia autouzupełniania.",
+    "message": ", aby dane logowania pojawiały się jako sugestia autouzupełniania.",
     "description": "This is in multiple parts to allow for bold text in the middle of the sentence.",
     "example": "Include a Website so this login appears as an autofill suggestion."
   },
@@ -5369,25 +5392,25 @@
     "message": "Bezproblemowe zamówienia online"
   },
   "newCardNudgeBody": {
-    "message": "Z kartami łatwe autouzupełnianie formularzy płatności w sposób bezpieczny i dokładny."
+    "message": "Dzięki kartom możesz łatwo i bezpiecznie uzupełniać formularze płatności."
   },
   "newIdentityNudgeTitle": {
-    "message": "Uprość tworzenie kont"
+    "message": "Łatwe tworzenie kont"
   },
   "newIdentityNudgeBody": {
-    "message": "Z tożsamościami, szybko autouzupełnij długie formularze rejestracyjne lub kontaktowe."
+    "message": "Dzięki tożsamościom możesz szybko uzupełniać długie formularze rejestracyjne i kontaktowe."
   },
   "newNoteNudgeTitle": {
-    "message": "Zachowaj bezpieczeństwo wrażliwych danych"
+    "message": "Chroń wrażliwe dane"
   },
   "newNoteNudgeBody": {
-    "message": "Z notatkami bezpiecznie przechowuj dane szczególnie chronione, takie jak dane bankowe lub ubezpieczeniowe."
+    "message": "Dzięki notatkom możesz bezpiecznie przechowywać poufne dane, takie jak bankowe lub ubezpieczeniowe."
   },
   "newSshNudgeTitle": {
-    "message": "Przyjazny dla deweloperów dostęp SSH"
+    "message": "Dostęp SSH przyjazny dla programistów"
   },
   "newSshNudgeBodyOne": {
-    "message": "Przechowuj swoje klucze i połącz się z agentem SSH dla szybkiego, szyfrowanego uwierzytelniania.",
+    "message": "Przechowuj klucze i łącz się z agentem SSH w celu szybkiego, szyfrowanego uwierzytelniania.",
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
@@ -5397,20 +5420,20 @@
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
   "generatorNudgeTitle": {
-    "message": "Szybko twórz hasła"
+    "message": "Szybkie tworzenie haseł"
   },
   "generatorNudgeBodyOne": {
-    "message": "Łatwo twórz silne i unikalne hasła, klikając na",
+    "message": "Twórz silne i unikalne hasła, klikając przycisk",
     "description": "Two part message",
     "example": "Easily create strong and unique passwords by clicking on {icon} to help you keep your logins secure."
   },
   "generatorNudgeBodyTwo": {
-    "message": ", aby pomóc Ci zachować bezpieczeństwo Twoich danych logowania.",
+    "message": ", aby zapewnić bezpieczeństwo danych logowania.",
     "description": "Two part message",
     "example": "Easily create strong and unique passwords by clicking on {icon} to help you keep your logins secure."
   },
   "generatorNudgeBodyAria": {
-    "message": "Łatwo twórz silne i unikalne hasła, klikając na Wygeneruj Hasło, aby pomóc Ci zachować bezpieczeństwo Twoich danych logowania.",
+    "message": "Twórz silne i unikalne hasła, klikając przycisk Wygeneruj hasło, aby zapewnić bezpieczeństwo danych logowania.",
     "description": "Aria label for the body content of the generator nudge"
   },
   "noPermissionsViewPage": {
diff --git a/apps/browser/src/_locales/pt_BR/messages.json b/apps/browser/src/_locales/pt_BR/messages.json
index 4405d1c59df..3bd3e0f36de 100644
--- a/apps/browser/src/_locales/pt_BR/messages.json
+++ b/apps/browser/src/_locales/pt_BR/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "Você precisa verificar o seu e-mail para usar este recurso. Você pode verificar seu e-mail no cofre web."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Senha mestra atualizada"
   },
@@ -4244,6 +4247,26 @@
     "message": "Formatos comuns",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Continuar nas configurações do navegador?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/pt_PT/messages.json b/apps/browser/src/_locales/pt_PT/messages.json
index ba791785b0e..8e4ea6d6d7c 100644
--- a/apps/browser/src/_locales/pt_PT/messages.json
+++ b/apps/browser/src/_locales/pt_PT/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "Tem de verificar o seu e-mail para utilizar esta funcionalidade. Pode verificar o seu e-mail no cofre Web."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Palavra-passe mestra definida com sucesso"
+  },
   "updatedMasterPassword": {
     "message": "Palavra-passe mestra atualizada"
   },
@@ -4244,6 +4247,26 @@
     "message": "Formatos comuns",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "A deteção de correspondência de URI é a forma como o Bitwarden identifica sugestões de preenchimento automático.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "A \"expressão regular\" é uma opção avançada com um risco acrescido de exposição de credenciais.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Começa com\" é uma opção avançada com um risco acrescido de exposição de credenciais.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "Mais informações sobre a deteção de correspondências",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Opções avançadas",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Continuar para as definições do navegador?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/ro/messages.json b/apps/browser/src/_locales/ro/messages.json
index b27a1cbc519..d3636beb1b8 100644
--- a/apps/browser/src/_locales/ro/messages.json
+++ b/apps/browser/src/_locales/ro/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "Trebuie să vă verificați e-mailul pentru a utiliza această caracteristică. Puteți verifica e-mailul în seiful web."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Parola principală actualizată"
   },
@@ -4244,6 +4247,26 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Continue to browser settings?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/ru/messages.json b/apps/browser/src/_locales/ru/messages.json
index b9ffa0afbdc..031381ab09c 100644
--- a/apps/browser/src/_locales/ru/messages.json
+++ b/apps/browser/src/_locales/ru/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "Для использования этой функции необходимо подтвердить ваш email. Вы можете это сделать в веб-хранилище."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Мастер-пароль успешно установлен"
+  },
   "updatedMasterPassword": {
     "message": "Мастер-пароль обновлен"
   },
@@ -4244,6 +4247,26 @@
     "message": "Основные форматы",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "Обнаружение совпадения URI - это способ, с помощью которого Bitwarden идентифицирует предложения по автозаполнению.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Регулярное выражение\" - это расширенный вариант с повышенным риском раскрытия учетных данных.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Начинается с\" - это расширенный вариант с повышенным риском раскрытия учетных данных.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "Подробнее об обнаружении совпадений",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Расширенные настройки",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Перейти к настройкам браузера?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/si/messages.json b/apps/browser/src/_locales/si/messages.json
index 9f60625ce4c..16d96c59b12 100644
--- a/apps/browser/src/_locales/si/messages.json
+++ b/apps/browser/src/_locales/si/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "මෙම අංගය භාවිතා කිරීම සඳහා ඔබේ විද්යුත් තැපෑල සත්යාපනය කළ යුතුය. වෙබ් සුරක්ෂිතාගාරයේ ඔබගේ විද්යුත් තැපෑල සත්යාපනය කළ හැකිය."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "යාවත්කාලීන කරන ලද මාස්ටර් මුරපදය"
   },
@@ -4244,6 +4247,26 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Continue to browser settings?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/sk/messages.json b/apps/browser/src/_locales/sk/messages.json
index 8a10ad901e8..9abe948055f 100644
--- a/apps/browser/src/_locales/sk/messages.json
+++ b/apps/browser/src/_locales/sk/messages.json
@@ -1213,11 +1213,11 @@
     "message": "Sekundárnym kliknutím získate prístup k vygenerovaniu hesiel a zodpovedajúcim prihláseniam pre webovú stránku. Platí pre všetky prihlásené účty."
   },
   "defaultUriMatchDetection": {
-    "message": "Predvolené mapovanie",
+    "message": "Predvolený spôsob zisťovania zhody URI",
     "description": "Default URI match detection for autofill."
   },
   "defaultUriMatchDetectionDesc": {
-    "message": "Vyberte si predvolený spôsob mapovania, ktorý bude použitý pre prihlasovacie údaje pri využití funkcí ako je napríklad automatické vypĺňanie hesiel."
+    "message": "Vyberte predvolený spôsob zisťovania zhody, ktorý bude použitý pre prihlasovacie údaje pri využití funkcií, ako je napríklad automatické vypĺňanie hesiel."
   },
   "theme": {
     "message": "Motív"
@@ -2049,11 +2049,11 @@
     "description": "A programming term, also known as 'RegEx'."
   },
   "matchDetection": {
-    "message": "Spôsob mapovania",
+    "message": "Zisťovanie zhody",
     "description": "URI match detection for autofill."
   },
   "defaultMatchDetection": {
-    "message": "Predvolené mapovanie",
+    "message": "Predvolené zisťovanie zhody",
     "description": "Default URI match detection for autofill."
   },
   "toggleOptions": {
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "Na použitie tejto funkcie musíte overiť svoj e-mail. Svoj e-mail môžete overiť vo webovom trezore."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Hlavné heslo bolo úspešne nastavené"
+  },
   "updatedMasterPassword": {
     "message": "Hlavné heslo aktualizované"
   },
@@ -4244,6 +4247,26 @@
     "message": "Bežné formáty",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "Zisťovanie zhody URI je spôsob, akým Bitwarden identifikuje návrhy na automatické vypĺňanie.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regulárny výraz\" je pokročilá možnosť so zvýšeným rizikom odhalenia prihlasovacích údajov.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Začína na\" je rozšírená možnosť so zvýšeným rizikom odhalenia prihlasovacích údajov.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "Viac informácií o zisťovaní zhody",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Rozšírené možnosti",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Pokračovať do nastavení prehliadača?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
@@ -4692,7 +4715,7 @@
     }
   },
   "showMatchDetection": {
-    "message": "Zobraziť spôsob mapovania $WEBSITE$",
+    "message": "Zobraziť zisťovanie zhody $WEBSITE$",
     "placeholders": {
       "website": {
         "content": "$1",
@@ -4701,7 +4724,7 @@
     }
   },
   "hideMatchDetection": {
-    "message": "Skryť spôsob mapovania $WEBSITE$",
+    "message": "Skryť spôsob zisťovania zhody $WEBSITE$",
     "placeholders": {
       "website": {
         "content": "$1",
diff --git a/apps/browser/src/_locales/sl/messages.json b/apps/browser/src/_locales/sl/messages.json
index 2d73e99023c..310e9a28d3a 100644
--- a/apps/browser/src/_locales/sl/messages.json
+++ b/apps/browser/src/_locales/sl/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "Za uporabo te funkcionalnosti morate potrditi svoj e-naslov. To lahko storite v spletnem trezorju."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Posodobi glavno geslo"
   },
@@ -4244,6 +4247,26 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Continue to browser settings?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/sr/messages.json b/apps/browser/src/_locales/sr/messages.json
index 870338e3563..935b9d4876c 100644
--- a/apps/browser/src/_locales/sr/messages.json
+++ b/apps/browser/src/_locales/sr/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "Морате да потврдите е-пошту да бисте користили ову функцију. Можете да потврдите е-пошту у веб сефу."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Главна лозинка ажурирана"
   },
@@ -4244,6 +4247,26 @@
     "message": "Уобичајени формати",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Желите ли да наставите на подешавања претраживача?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/sv/messages.json b/apps/browser/src/_locales/sv/messages.json
index c4b72cc5ea1..819af390a19 100644
--- a/apps/browser/src/_locales/sv/messages.json
+++ b/apps/browser/src/_locales/sv/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "Du måste verifiera din e-postadress för att använda den här funktionen. Du kan verifiera din e-postadress i webbvalvet."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Huvudlösenord uppdaterades"
   },
@@ -4244,6 +4247,26 @@
     "message": "Vanliga format",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Continue to browser settings?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/te/messages.json b/apps/browser/src/_locales/te/messages.json
index b6a8d1834b4..45dc3215966 100644
--- a/apps/browser/src/_locales/te/messages.json
+++ b/apps/browser/src/_locales/te/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "You must verify your email to use this feature. You can verify your email in the web vault."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Updated master password"
   },
@@ -4244,6 +4247,26 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Continue to browser settings?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/th/messages.json b/apps/browser/src/_locales/th/messages.json
index f7895c8866d..84130e006ba 100644
--- a/apps/browser/src/_locales/th/messages.json
+++ b/apps/browser/src/_locales/th/messages.json
@@ -6,39 +6,39 @@
     "message": "โลโก้ Bitwarden"
   },
   "extName": {
-    "message": "Bitwarden Password Manager",
+    "message": "Bitwarden - จัดการรหัสผ่าน",
     "description": "Extension name, MUST be less than 40 characters (Safari restriction)"
   },
   "extDesc": {
-    "message": "At home, at work, or on the go, Bitwarden easily secures all your passwords, passkeys, and sensitive information",
+    "message": "ไม่ว่าจะอยู่ที่ไหน Bitwarden ก็สามารถปกป้องรหัสผ่าน พาสคีย์ และข้อมูลสำคัญของคุณได้อย่างง่ายดาย",
     "description": "Extension description, MUST be less than 112 characters (Safari restriction)"
   },
   "loginOrCreateNewAccount": {
     "message": "ล็อกอิน หรือ สร้างบัญชีใหม่ เพื่อใช้งานตู้นิรภัยของคุณ"
   },
   "inviteAccepted": {
-    "message": "Invitation accepted"
+    "message": "ตอบรับคำเชิญแล้ว"
   },
   "createAccount": {
     "message": "สร้างบัญชี"
   },
   "newToBitwarden": {
-    "message": "New to Bitwarden?"
+    "message": "เพิ่งเริ่มใช้ Bitwarden ใช่ไหม?"
   },
   "logInWithPasskey": {
-    "message": "Log in with passkey"
+    "message": "เข้าสู่ระบบด้วยพาสคีย์"
   },
   "useSingleSignOn": {
-    "message": "Use single sign-on"
+    "message": "ใช้การลงชื่อเพียงครั้งเดียว"
   },
   "welcomeBack": {
-    "message": "Welcome back"
+    "message": "ยินดีต้อนรับกลับมา"
   },
   "setAStrongPassword": {
-    "message": "Set a strong password"
+    "message": "ตั้งรหัสผ่านที่รัดกุม"
   },
   "finishCreatingYourAccountBySettingAPassword": {
-    "message": "Finish creating your account by setting a password"
+    "message": "ดำเนินการสร้างบัญชีของคุณให้เสร็จสมบูรณ์โดยการตั้งรหัสผ่าน"
   },
   "enterpriseSingleSignOn": {
     "message": "Enterprise Single Sign-On"
@@ -65,7 +65,7 @@
     "message": "คำใบ้เกี่ยวกับรหัสผ่านหลักสามารถช่วยให้คุณนึกรหัสผ่านหลักออกได้หากลืม"
   },
   "masterPassHintText": {
-    "message": "If you forget your password, the password hint can be sent to your email. $CURRENT$/$MAXIMUM$ character maximum.",
+    "message": "หากคุณลืมรหัสผ่าน ระบบสามารถส่งคำใบ้รหัสผ่านไปยังอีเมลของคุณได้ จำกัด $CURRENT$/$MAXIMUM$ ตัวอักษร",
     "placeholders": {
       "current": {
         "content": "$1",
@@ -84,7 +84,7 @@
     "message": "Master Password Hint (optional)"
   },
   "passwordStrengthScore": {
-    "message": "Password strength score $SCORE$",
+    "message": "คะแนนความรัดกุมของรหัสผ่าน $SCORE$",
     "placeholders": {
       "score": {
         "content": "$1",
@@ -264,7 +264,7 @@
     "message": "Request password hint"
   },
   "enterYourAccountEmailAddressAndYourPasswordHintWillBeSentToYou": {
-    "message": "Enter your account email address and your password hint will be sent to you"
+    "message": "กรอกที่อยู่อีเมลบัญชีของคุณ แล้วระบบจะส่งคำใบ้รหัสผ่านไปให้คุณ"
   },
   "getMasterPasswordHint": {
     "message": "รับคำใบ้เกี่ยวกับรหัสผ่านหลักของคุณ"
@@ -668,7 +668,7 @@
     "message": "ตู้เซฟของคุณถูกล็อก ยืนยันตัวตนของคุณเพื่อดำเนินการต่อ"
   },
   "yourVaultIsLockedV2": {
-    "message": "Your vault is locked"
+    "message": "ห้องนิรภัยของคุณถูกล็อก"
   },
   "yourAccountIsLocked": {
     "message": "Your account is locked"
@@ -1022,7 +1022,7 @@
     "message": "The \"Add Login Notification\" automatically prompts you to save new logins to your vault whenever you log into them for the first time."
   },
   "addLoginNotificationDescAlt": {
-    "message": "Ask to add an item if one isn't found in your vault. Applies to all logged in accounts."
+    "message": "หากไม่พบรายการในห้องนิรภัยของคุณ ระบบจะถามเพื่อเพิ่มรายการ มีผลกับทุกบัญชีที่ลงชื่อเข้าใช้"
   },
   "showCardsInVaultViewV2": {
     "message": "Always show cards as Autofill suggestions on Vault view"
@@ -1342,7 +1342,7 @@
     "message": "ลบไฟล์แนบแล้ว"
   },
   "newAttachment": {
-    "message": "Add New Attachment"
+    "message": "เพิ่มไฟล์แนบใหม่"
   },
   "noAttachments": {
     "message": "ไม่มีไฟล์แนบ"
@@ -1544,7 +1544,7 @@
     "message": "FIDO2 WebAuthn"
   },
   "webAuthnDesc": {
-    "message": "Use any WebAuthn compatible security key to access your account."
+    "message": "ใช้กุญแจความปลอดภัยที่รองรับ WebAuthn ใดก็ได้เพื่อเข้าถึงบัญชีของคุณ"
   },
   "emailTitle": {
     "message": "อีเมล"
@@ -1597,7 +1597,7 @@
     "description": "Represents the message for allowing the user to enable the autofill overlay"
   },
   "autofillSuggestionsSectionTitle": {
-    "message": "Autofill suggestions"
+    "message": "คำแนะนำการกรอกข้อมูลอัตโนมัติ"
   },
   "autofillSpotlightTitle": {
     "message": "Easily find autofill suggestions"
@@ -2148,16 +2148,16 @@
     "message": "ปลดล็อกด้วย PIN"
   },
   "setYourPinTitle": {
-    "message": "Set PIN"
+    "message": "ตั้ง PIN"
   },
   "setYourPinButton": {
-    "message": "Set PIN"
+    "message": "ตั้ง PIN"
   },
   "setYourPinCode": {
     "message": "ตั้ง PIN เพื่อใช้ปลดล็อก Bitwarden ทั้งนี้ หากคุณล็อกเอาต์ออกจากแอปโดยสมบูรณ์จะเป็นการลบการตั้งค่า PIN ของคุณด้วย"
   },
   "setPinCode": {
-    "message": "You can use this PIN to unlock Bitwarden. Your PIN will be reset if you ever fully log out of the application."
+    "message": "ตั้ง PIN เพื่อใช้ปลดล็อก Bitwarden และหากคุณล็อกเอาต์ออกจากแอปโดยสมบูรณ์จะเป็นการลบการตั้งค่า PIN ของคุณ"
   },
   "pinRequired": {
     "message": "ต้องระบุ PIN"
@@ -2172,7 +2172,7 @@
     "message": "ปลดล็อกด้วยไบโอเมตริก"
   },
   "unlockWithMasterPassword": {
-    "message": "Unlock with master password"
+    "message": "เข้าสู่ระบบด้วยรหัสผ่านหลัก"
   },
   "awaitDesktop": {
     "message": "Awaiting confirmation from desktop"
@@ -2184,7 +2184,7 @@
     "message": "ล็อคด้วยรหัสผ่านหลักเมื่อรีสตาร์ทเบราว์เซอร์"
   },
   "lockWithMasterPassOnRestart1": {
-    "message": "Require master password on browser restart"
+    "message": "กำหนดให้ป้อนรหัสผ่านหลักเมื่อรีสตาร์ทเบราว์เซอร์"
   },
   "selectOneCollection": {
     "message": "คุณต้องเลือกอย่างน้อยหนึ่งคอลเลกชัน"
@@ -2902,7 +2902,7 @@
     "message": "Hide your email address from viewers."
   },
   "passwordPrompt": {
-    "message": "Master password re-prompt"
+    "message": "การยืนยันให้ป้อนรหัสผ่านหลักอีกครั้ง"
   },
   "passwordConfirmation": {
     "message": "Master password confirmation"
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "You must verify your email to use this feature. You can verify your email in the web vault."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Updated master password"
   },
@@ -3416,7 +3419,7 @@
     "message": "Fingerprint phrase"
   },
   "fingerprintMatchInfo": {
-    "message": "Please make sure your vault is unlocked and the Fingerprint phrase matches on the other device."
+    "message": "โปรดตรวจสอบให้แน่ใจว่าห้องนิรภัยของคุณปลดล็อกอยู่ และลายนิ้วมือตรงกันบนอุปกรณ์อื่น"
   },
   "resendNotification": {
     "message": "Resend notification"
@@ -3639,10 +3642,10 @@
     "message": "Organization is not trusted"
   },
   "emergencyAccessTrustWarning": {
-    "message": "For the security of your account, only confirm if you have granted emergency access to this user and their fingerprint matches what is displayed in their account"
+    "message": "เพื่อความปลอดภัยของบัญชีของคุณ โปรดยืนยันว่าคุณได้ให้สิทธิ์การเข้าถึงในกรณีฉุกเฉินแก่ผู้ใช้นี้ และลายนิ้วมือของผู้ใช้ตรงกับที่แสดงในบัญชีของพวกเขาเท่านั้น"
   },
   "orgTrustWarning": {
-    "message": "For the security of your account, only proceed if you are a member of this organization, have account recovery enabled, and the fingerprint displayed below matches the organization's fingerprint."
+    "message": "เพื่อความปลอดภัยของบัญชีของคุณ ให้ดำเนินการต่อเมื่อคุณเป็นสมาชิกขององค์กรนี้, ได้เปิดใช้งานการกู้คืนบัญชี, และลายนิ้วมือที่แสดงด้านล่างตรงกับลายนิ้วมือขององค์กรเท่านั้น"
   },
   "orgTrustWarning1": {
     "message": "This organization has an Enterprise policy that will enroll you in account recovery. Enrollment will allow organization administrators to change your password. Only proceed if you recognize this organization and the fingerprint phrase displayed below matches the organization's fingerprint."
@@ -3920,7 +3923,7 @@
     "message": "Verification required for this action. Set a PIN to continue."
   },
   "setPin": {
-    "message": "Set PIN"
+    "message": "ตั้ง PIN"
   },
   "verifyWithBiometrics": {
     "message": "Verify with biometrics"
@@ -4017,10 +4020,10 @@
     "message": "Select the import file"
   },
   "chooseFile": {
-    "message": "Choose File"
+    "message": "เลือกไฟล์"
   },
   "noFileChosen": {
-    "message": "No file chosen"
+    "message": "ไม่มีไฟล์ที่เลือก"
   },
   "orCopyPasteFileContents": {
     "message": "or copy/paste the import file contents"
@@ -4051,7 +4054,7 @@
     "message": "Passkey"
   },
   "accessing": {
-    "message": "Accessing"
+    "message": "กำลังเข้าถึง"
   },
   "loggedInExclamation": {
     "message": "Logged in!"
@@ -4205,7 +4208,7 @@
     "message": "Available accounts"
   },
   "accountLimitReached": {
-    "message": "Account limit reached. Log out of an account to add another."
+    "message": "ถึงขีดจำกัดของบัญชีแล้ว กรุณาออกจากระบบบัญชีอื่นเพื่อเพิ่มบัญชีใหม่"
   },
   "active": {
     "message": "active"
@@ -4244,6 +4247,26 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Continue to browser settings?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
@@ -4460,7 +4483,7 @@
     "message": "Admin Console"
   },
   "accountSecurity": {
-    "message": "Account security"
+    "message": "ความปลอดภัยของบัญชี"
   },
   "notifications": {
     "message": "Notifications"
@@ -4533,10 +4556,10 @@
     "message": "Additional information"
   },
   "itemHistory": {
-    "message": "Item history"
+    "message": "ประวัติการแก้ไขรายการ"
   },
   "lastEdited": {
-    "message": "Last edited"
+    "message": "แก้ไขล่าสุดเมื่อ"
   },
   "ownerYou": {
     "message": "Owner: You"
@@ -4548,13 +4571,13 @@
     "message": "Copy Successful"
   },
   "upload": {
-    "message": "Upload"
+    "message": "อัปโหลด"
   },
   "addAttachment": {
-    "message": "Add attachment"
+    "message": "เพิ่มไฟล์แนบ"
   },
   "maxFileSizeSansPunctuation": {
-    "message": "Maximum file size is 500 MB"
+    "message": "ขนาดไฟล์สูงสุด คือ 500 MB"
   },
   "deleteAttachmentName": {
     "message": "Delete attachment $NAME$",
@@ -4657,7 +4680,7 @@
     "message": "Authenticator key"
   },
   "autofillOptions": {
-    "message": "Autofill options"
+    "message": "ตัวเลือกในการป้อนอัตโนมัติ"
   },
   "websiteUri": {
     "message": "Website (URI)"
@@ -4737,7 +4760,7 @@
     "message": "Show animations"
   },
   "addAccount": {
-    "message": "Add account"
+    "message": "เพิ่มบัญชี"
   },
   "loading": {
     "message": "Loading"
@@ -4779,7 +4802,7 @@
     }
   },
   "addField": {
-    "message": "Add field"
+    "message": "เพิ่มฟิลด์"
   },
   "add": {
     "message": "Add"
@@ -4791,7 +4814,7 @@
     "message": "Field label"
   },
   "textHelpText": {
-    "message": "Use text fields for data like security questions"
+    "message": "ใช้ช่องข้อความสำหรับเก็บข้อมูล เช่น คำถามเพื่อความปลอดภัย"
   },
   "hiddenHelpText": {
     "message": "Use hidden fields for sensitive data like a password"
@@ -4827,7 +4850,7 @@
     }
   },
   "fieldAdded": {
-    "message": "$LABEL$ added",
+    "message": "เพิ่ม $LABEL$ แล้ว",
     "placeholders": {
       "label": {
         "content": "$1",
@@ -4958,7 +4981,7 @@
     "message": "Text Sends"
   },
   "accountActions": {
-    "message": "Account actions"
+    "message": "การจัดการบัญชี"
   },
   "showNumberOfAutofillSuggestions": {
     "message": "Show number of login autofill suggestions on extension icon"
@@ -5069,7 +5092,7 @@
     "message": "You can customize your unlock and timeout settings to more quickly access your vault."
   },
   "unlockPinSet": {
-    "message": "Unlock PIN set"
+    "message": "ตั้งค่า PIN สำหรับปลดล็อกแล้ว"
   },
   "unlockWithBiometricSet": {
     "message": "Unlock with biometrics set"
@@ -5309,7 +5332,7 @@
     "message": "Quick and easy login"
   },
   "quickLoginBody": {
-    "message": "Set up biometric unlock and autofill to log into your accounts without typing a single letter."
+    "message": "ตั้งค่าการปลดล็อกด้วยไบโอเมตริกซ์และการกรอกข้อมูลอัตโนมัติ เพื่อลงชื่อเข้าใช้บัญชีของคุณโดยไม่ต้องพิมพ์แม้แต่ตัวอักษรเดียว"
   },
   "secureUser": {
     "message": "Level up your logins"
diff --git a/apps/browser/src/_locales/tr/messages.json b/apps/browser/src/_locales/tr/messages.json
index aae4fdd2486..f523df3c8d4 100644
--- a/apps/browser/src/_locales/tr/messages.json
+++ b/apps/browser/src/_locales/tr/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "Bu özelliği kullanmak için e-postanızı doğrulamanız gerekir. E-postanızı web kasasında doğrulayabilirsiniz."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Ana parola başarıyla ayarlandı"
+  },
   "updatedMasterPassword": {
     "message": "Ana parola güncellendi"
   },
@@ -4244,6 +4247,26 @@
     "message": "Sık kullanılan biçimler",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Gelişmiş seçenekler",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Tarayıcı ayarlarına gidilsin mi?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/uk/messages.json b/apps/browser/src/_locales/uk/messages.json
index ab4fe87a2be..e7d5d0dbdc8 100644
--- a/apps/browser/src/_locales/uk/messages.json
+++ b/apps/browser/src/_locales/uk/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "Для використання цієї функції необхідно підтвердити електронну пошту. Ви можете виконати підтвердження у вебсховищі."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Головний пароль оновлено"
   },
@@ -4244,6 +4247,26 @@
     "message": "Поширені формати",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Відкрити налаштування браузера?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/vi/messages.json b/apps/browser/src/_locales/vi/messages.json
index d02658f9e26..b979680cd81 100644
--- a/apps/browser/src/_locales/vi/messages.json
+++ b/apps/browser/src/_locales/vi/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "Bạn phải xác nhận email để sử dụng tính năng này. Bạn có thể xác minh email trên web."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Đã cập nhật mật khẩu chính"
   },
@@ -4244,6 +4247,26 @@
     "message": "Định dạng chung",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "Tiếp tục tới Cài đặt trình duyệt?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/zh_CN/messages.json b/apps/browser/src/_locales/zh_CN/messages.json
index fe70f8abe57..023d0a682d5 100644
--- a/apps/browser/src/_locales/zh_CN/messages.json
+++ b/apps/browser/src/_locales/zh_CN/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "您必须验证电子邮箱才能使用此功能。您可以在网页密码库中验证您的电子邮箱。"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "主密码设置成功"
+  },
   "updatedMasterPassword": {
     "message": "已更新主密码"
   },
@@ -4244,6 +4247,26 @@
     "message": "常规格式",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "前往浏览器设置吗？",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/src/_locales/zh_TW/messages.json b/apps/browser/src/_locales/zh_TW/messages.json
index e50117419b2..07ad7b207da 100644
--- a/apps/browser/src/_locales/zh_TW/messages.json
+++ b/apps/browser/src/_locales/zh_TW/messages.json
@@ -2919,6 +2919,9 @@
   "emailVerificationRequiredDesc": {
     "message": "您必須驗證您的電子郵件才能使用此功能。您可以在網頁密碼庫裡驗證您的電子郵件。"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "已更新主密碼"
   },
@@ -4244,6 +4247,26 @@
     "message": "常見格式",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
   "confirmContinueToBrowserSettingsTitle": {
     "message": "繼續前往瀏覽器設定？",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
diff --git a/apps/browser/store/locales/pl/copy.resx b/apps/browser/store/locales/pl/copy.resx
index 3d5c4f47864..8948e54a298 100644
--- a/apps/browser/store/locales/pl/copy.resx
+++ b/apps/browser/store/locales/pl/copy.resx
@@ -118,58 +118,57 @@
     <value>System.Resources.ResXResourceWriter, System.Windows.Forms, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089</value>
   </resheader>
   <data name="Name" xml:space="preserve">
-    <value>Menedżer Haseł Bitwarden</value>
+    <value>Menedżer haseł Bitwarden</value>
   </data>
   <data name="Summary" xml:space="preserve">
-    <value>W domu, w pracy lub w ruchu Bitwarden z łatwością zabezpiecza wszystkie twoje hasła, klucze i poufne informacje.</value>
+    <value>W domu, w pracy, lub w ruchu, Bitwarden zabezpiecza wszystkie Twoje hasła, klucze dostępu i poufne informacje.</value>
   </data>
   <data name="Description" xml:space="preserve">
-    <value>Uznany za najlepszego menedżera haseł przez PCMag, WIRED, The Verge, CNET, G2 i wielu innych!
+    <value>Uznany za najlepszy menedżer haseł przez PCMag, WIRED, The Verge, CNET, G2 i nie tylko!
 
-ZABEZPIECZ SWOJE CYFROWE ŻYCIE
-Zabezpiecz swoje cyfrowe życie i chroń przed naruszeniami danych, generując i zapisując unikalne, silne hasła do każdego konta. Przechowuj wszystko w zaszyfrowanym end-to-end magazynie haseł, do którego tylko Ty masz dostęp.
+ZABEZPIECZ CYFROWE ŻYCIE
+Zabezpiecz cyfrowe życie i chroń się przed naruszeniami danych, generując i zapisując unikalne, silne hasła dla każdego konta. Przechowuj wszystko w szyfrowanym sejfie, do którego tylko Ty masz dostęp.
 
-DOSTĘP DO SWOICH DANYCH W KAŻDYM MIEJSCU, W DOWOLNYM CZASIE, NA KAŻDYM URZĄDZENIU
-Z łatwością zarządzaj, przechowuj, zabezpieczaj i udostępniaj nieograniczoną liczbę haseł na nieograniczonej liczbie urządzeń.
+DOSTĘP DO DANYCH W KAŻDYM MIEJSCU I O KAŻDEJ PORZE, NA KAŻDYM URZĄDZENIU
+Łatwe zarządzanie, przechowywanie, zabezpieczanie i udostępnianie nieograniczonej liczby haseł na dowolnej liczbie urządzeń
 
-KAŻDY POWINIEN POSIADAĆ NARZĘDZIA ABY ZACHOWAĆ BEZPIECZEŃSTWO W INTERNECIE
-Korzystaj z Bitwarden za darmo, bez reklam i sprzedawania Twoich danych. Bitwarden wierzy, że każdy powinien mieć możliwość zachowania bezpieczeństwa w Internecie. Plany premium oferują dostęp do zaawansowanych funkcji.
+KAŻDY POWINIEN MIEĆ NARZĘDZIA, KTÓRE ZAPEWNIĄ BEZPIECZEŃSTWO ONLINE
+Korzystaj z Bitwarden za darmo, bez reklam i bez sprzedawania Twoich danych. Bitwarden wierzy, że każdy powinien mieć możliwość zachowania bezpieczeństwa w sieci. Plany premium oferują dostęp do zaawansowanych funkcji.
 
-WZMOCNIJ SWOJE ZESPOŁY DZIĘKI BITWARDEN
-Plany dla Zespołów i Enterprise oferują profesjonalne funkcje biznesowe. Na przykład obejmują integrację z SSO, własny hosting, integrację katalogów i udostępnianie SCIM, zasady globalne, dostęp do API, dzienniki zdarzeń i inne.
+WZMOCNIJ SWOJE ZESPOŁY Z BITWARDEN
+Plany dla zespołów i przedsiębiorstw zawierają profesjonalne funkcje biznesowe, takie jak logowanie jednokrotne, samodzielne hostowanie, integrację katalogów, udostępnianie SCIM, globalne zasady, dostęp do API, logi zdarzeń i wiele innych.
 
-Użyj Bitwarden, aby zabezpieczyć swoich pracowników i udostępniać poufne informacje współpracownikom.
+Skorzystaj z Bitwarden, aby zabezpieczyć swoich pracowników i udostępniać poufne informacje współpracownikom.
 
 
-Więcej powodów, aby wybrać Bitwarden:
+Więcej powodów, dla których warto wybrać Bitwarden:
 
-Szyfrowanie na światowym poziomie
-Hasła są chronione za pomocą zaawansowanego, kompleksowego szyfrowania (AES-256-bitowy, solony hashtag i PBKDF2 SHA-256), dzięki czemu Twoje dane pozostają bezpieczne i prywatne.
+Światowej klasy szyfrowanie
+Hasła są chronione za pomocą zaawansowanego szyfrowania end-to-end (AES-256 bit z solą i PBKDF2 SHA-256), dzięki czemu dane pozostają bezpieczne i prywatne.
 
 Audyty stron trzecich
-Bitwarden regularnie przeprowadza kompleksowe audyty bezpieczeństwa stron trzecich we współpracy ze znanymi firmami security. Te coroczne audyty obejmują ocenę kodu źródłowego i testy penetracyjne adresów IP Bitwarden, serwerów i aplikacji internetowych.
+Bitwarden regularnie przeprowadza kompleksowe audyty bezpieczeństwa ze znanymi firmami. Te coroczne audyty obejmują ocenę kodu źródłowego i testy penetracyjne adresów IP, serwerów i aplikacji internetowych Bitwarden.
 
-Zaawansowane 2FA
-Zabezpiecz swój login za pomocą zewnętrznego narzędzia uwierzytelniającego, kodów przesłanych pocztą elektroniczną lub poświadczeń FIDO2 WebAuthn, takich jak sprzętowy klucz bezpieczeństwa lub hasło.
+Zaawansowane logowanie dwustopniowe
+Zabezpiecz swoje logowanie za pomocą uwierzytelniacza innej firmy, kodów wysyłanych pocztą e-mail lub danych uwierzytelniających FIDO2 WebAuthn, takich jak sprzętowy klucz bezpieczeństwa lub klucz dostępu.
 
-Bitwarden Wyślij
-Przesyłaj dane bezpośrednio do innych, zachowując kompleksowe szyfrowane bezpieczeństwo i ograniczając ryzyko.
+Bitwarden Send
+Przesyłaj dane bezpośrednio do innych, zachowując bezpieczeństwo szyfrowania end-to-end i ograniczając ekspozycję.
 
 Wbudowany generator
-Twórz długie, złożone i różne hasła oraz unikalne nazwy użytkowników dla każdej odwiedzanej witryny. Zintegruj się z dostawcami aliasów e-mail, aby uzyskać dodatkową prywatność.
+Twórz długie, złożone i unikalne hasła oraz nazwy użytkowników dla każdej strony. Integracja z dostawcami aliasów zapewnia dodatkową prywatność.
 
-Tłumaczenia globalne
-Istnieją tłumaczenia Bitwarden na ponad 60 języków, tłumaczone przez globalną społeczność za pośrednictwem Crowdin.
+Globalnie przetłumaczony
+Bitwarden jest dostępny w ponad 60 językach. Jest przetłumaczony przez globalną społeczność za pośrednictwem Crowdin.
 
 Aplikacje wieloplatformowe
-Zabezpiecz i udostępniaj poufne dane w swoim Sejfie Bitwarden z dowolnej przeglądarki, urządzenia mobilnego lub systemu operacyjnego na komputerze stacjonarnym i nie tylko.
+Zabezpieczaj i udostępniaj poufne dane w sejfie Bitwarden z dowolnej przeglądarki, z dowolnego urządzenia mobilnego, stacjonarnego i nie tylko.
 
-Bitwarden zabezpiecza nie tylko hasła
-Rozwiązania do zarządzania danymi zaszyfrownaymi end-to-end od firmy Bitwarden umożliwiają organizacjom zabezpieczanie wszystkiego, w tym tajemnic programistów i kluczy dostępu. Odwiedź Bitwarden.com, aby dowiedzieć się więcej o Mendżerze Sekretów Bitwarden i Bitwarden Passwordless.dev!
-</value>
+Bitwarden zabezpiecza więcej niż tylko hasła
+Kompleksowe szyfrowane rozwiązania do zarządzania poświadczeniami od Bitwarden umożliwiają organizacjom zabezpieczenie wszystkiego, w tym sekretów programistów i kluczy dostępu. Odwiedź Bitwarden.com, aby dowiedzieć się więcej o Bitwarden Secrets Manager i Bitwarden Passwordless.dev!</value>
   </data>
   <data name="AssetTitle" xml:space="preserve">
-    <value>W domu, w pracy, lub w ruchu, Bitwarden z łatwością zabezpiecza wszystkie Twoje hasła, passkeys i poufne informacje.</value>
+    <value>W domu, w pracy, lub w ruchu, Bitwarden zabezpiecza wszystkie Twoje hasła, klucze dostępu i poufne informacje.</value>
   </data>
   <data name="ScreenshotSync" xml:space="preserve">
     <value>Synchronizacja i dostęp do sejfu z różnych urządzeń</value>
@@ -178,15 +177,15 @@ Rozwiązania do zarządzania danymi zaszyfrownaymi end-to-end od firmy Bitwarden
     <value>Przechowuj wszystkie dane logowania i hasła w bezpiecznym sejfie</value>
   </data>
   <data name="ScreenshotAutofill" xml:space="preserve">
-    <value>Szybko, automatycznie uzupełnij dane logowania na każdej odwiedzanej stronie</value>
+    <value>Szybkie uzupełnianie danych logowania na dowolnej stronie internetowej</value>
   </data>
   <data name="ScreenshotMenu" xml:space="preserve">
-    <value>Twój sejf jest także łatwo dostępny z menu kontekstowego</value>
+    <value>Sejf jest również dostępny z menu po kliknięciu prawym przyciskiem myszy</value>
   </data>
   <data name="ScreenshotPassword" xml:space="preserve">
-    <value>Automatycznie wygeneruj silne, losowe i bezpieczne hasło</value>
+    <value>Automatycznie generuj silne, losowe i bezpieczne hasła</value>
   </data>
   <data name="ScreenshotEdit" xml:space="preserve">
-    <value>Twoje dane są zabezpieczone z wykorzystaniem szyfrowania AES-256-bit</value>
+    <value>Twoje dane są zabezpieczone szyfrowaniem AES-256-bit</value>
   </data>
 </root>
diff --git a/apps/browser/store/locales/th/copy.resx b/apps/browser/store/locales/th/copy.resx
index f784b1884b4..f6b0c4b22ab 100644
--- a/apps/browser/store/locales/th/copy.resx
+++ b/apps/browser/store/locales/th/copy.resx
@@ -118,7 +118,7 @@
     <value>System.Resources.ResXResourceWriter, System.Windows.Forms, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089</value>
   </resheader>
   <data name="Name" xml:space="preserve">
-    <value>Bitwarden Password Manager</value>
+    <value>Bitwarden - จัดการรหัสผ่าน</value>
   </data>
   <data name="Summary" xml:space="preserve">
     <value>At home, at work, or on the go, Bitwarden easily secures all your passwords, passkeys, and sensitive information.</value>

From 4d9516cd9646e8f582cdf66f233b024f8c7698ec Mon Sep 17 00:00:00 2001
From: SmithThe4th <gsmith@bitwarden.com>
Date: Mon, 7 Jul 2025 13:48:05 -0400
Subject: [PATCH 070/239] [PM-22812]  Attachments get corrupted when
 downgrading from cipherkeys (#15324)

* Map decrypted key returned from SDK to client

* Updated sdk dependency
---
 .../src/vault/models/view/attachment.view.spec.ts | 15 +++++++++++++--
 .../src/vault/models/view/attachment.view.ts      |  5 ++++-
 2 files changed, 17 insertions(+), 3 deletions(-)

diff --git a/libs/common/src/vault/models/view/attachment.view.spec.ts b/libs/common/src/vault/models/view/attachment.view.spec.ts
index bc7a54062ef..b24d251d246 100644
--- a/libs/common/src/vault/models/view/attachment.view.spec.ts
+++ b/libs/common/src/vault/models/view/attachment.view.spec.ts
@@ -26,6 +26,8 @@ describe("AttachmentView", () => {
     });
 
     it("should return an AttachmentView from an SdkAttachmentView", () => {
+      jest.spyOn(SymmetricCryptoKey, "fromString").mockReturnValue("mockKey" as any);
+
       const sdkAttachmentView = {
         id: "id",
         url: "url",
@@ -33,6 +35,7 @@ describe("AttachmentView", () => {
         sizeName: "sizeName",
         fileName: "fileName",
         key: "encKeyB64_fromString",
+        decryptedKey: "decryptedKey_B64",
       } as SdkAttachmentView;
 
       const result = AttachmentView.fromSdkAttachmentView(sdkAttachmentView);
@@ -43,14 +46,20 @@ describe("AttachmentView", () => {
         size: "size",
         sizeName: "sizeName",
         fileName: "fileName",
-        key: null,
+        key: "mockKey",
         encryptedKey: new EncString(sdkAttachmentView.key as string),
       });
+
+      expect(SymmetricCryptoKey.fromString).toHaveBeenCalledWith("decryptedKey_B64");
     });
   });
 
   describe("toSdkAttachmentView", () => {
     it("should convert AttachmentView to SdkAttachmentView", () => {
+      const mockKey = {
+        toBase64: jest.fn().mockReturnValue("keyB64"),
+      } as any;
+
       const attachmentView = new AttachmentView();
       attachmentView.id = "id";
       attachmentView.url = "url";
@@ -58,8 +67,10 @@ describe("AttachmentView", () => {
       attachmentView.sizeName = "sizeName";
       attachmentView.fileName = "fileName";
       attachmentView.encryptedKey = new EncString("encKeyB64");
+      attachmentView.key = mockKey;
 
       const result = attachmentView.toSdkAttachmentView();
+
       expect(result).toEqual({
         id: "id",
         url: "url",
@@ -67,7 +78,7 @@ describe("AttachmentView", () => {
         sizeName: "sizeName",
         fileName: "fileName",
         key: "encKeyB64",
-        decryptedKey: null,
+        decryptedKey: "keyB64",
       });
     });
   });
diff --git a/libs/common/src/vault/models/view/attachment.view.ts b/libs/common/src/vault/models/view/attachment.view.ts
index 28bfc9f12b9..57a1deaedb9 100644
--- a/libs/common/src/vault/models/view/attachment.view.ts
+++ b/libs/common/src/vault/models/view/attachment.view.ts
@@ -59,7 +59,8 @@ export class AttachmentView implements View {
       sizeName: this.sizeName,
       fileName: this.fileName,
       key: this.encryptedKey?.toJSON(),
-      decryptedKey: null,
+      // TODO: PM-23005 - Temporary field, should be removed when encrypted migration is complete
+      decryptedKey: this.key ? this.key.toBase64() : null,
     };
   }
 
@@ -77,6 +78,8 @@ export class AttachmentView implements View {
     view.size = obj.size ?? null;
     view.sizeName = obj.sizeName ?? null;
     view.fileName = obj.fileName ?? null;
+    // TODO: PM-23005 - Temporary field, should be removed when encrypted migration is complete
+    view.key = obj.key ? SymmetricCryptoKey.fromString(obj.decryptedKey) : null;
     view.encryptedKey = new EncString(obj.key);
 
     return view;

From 0b1545264bebb58bc12fe486503cffedc7e3d794 Mon Sep 17 00:00:00 2001
From: Jordan Aasen <166539328+jaasen-livefront@users.noreply.github.com>
Date: Mon, 7 Jul 2025 10:56:34 -0700
Subject: [PATCH 071/239] [PM-23181] - User can access card items in their
 personal vault if they belong to another org (#15462)

* hide personal vault cards if any org has enabled restricted card item

* fix comment
---
 .../src/vault/services/restricted-item-types.service.ts      | 5 ++---
 1 file changed, 2 insertions(+), 3 deletions(-)

diff --git a/libs/common/src/vault/services/restricted-item-types.service.ts b/libs/common/src/vault/services/restricted-item-types.service.ts
index 7ec70831b22..6b848e6626b 100644
--- a/libs/common/src/vault/services/restricted-item-types.service.ts
+++ b/libs/common/src/vault/services/restricted-item-types.service.ts
@@ -91,7 +91,6 @@ export class RestrictedItemTypesService {
    * Restriction logic:
    * - If cipher type is not restricted by any org → allowed
    * - If cipher belongs to an org that allows this type → allowed
-   * - If cipher is personal vault and any org allows this type → allowed
    * - Otherwise → restricted
    */
   isCipherRestricted(cipher: CipherLike, restrictedTypes: RestrictedCipherType[]): boolean {
@@ -108,8 +107,8 @@ export class RestrictedItemTypesService {
       return !restriction.allowViewOrgIds.includes(cipher.organizationId);
     }
 
-    // For personal vault ciphers: restricted only if NO organizations allow this type
-    return restriction.allowViewOrgIds.length === 0;
+    // Cipher is restricted by at least one organization, restrict it
+    return true;
   }
 
   /**

From 632f1ab535979870567b5288bc17f8a91f5153af Mon Sep 17 00:00:00 2001
From: "bw-ghapp[bot]" <178206702+bw-ghapp[bot]@users.noreply.github.com>
Date: Mon, 7 Jul 2025 18:06:01 +0000
Subject: [PATCH 072/239] Autosync the updated translations (#15469)

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>
Co-authored-by: Daniel James Smith <2670567+djsmith85@users.noreply.github.com>
---
 apps/desktop/src/locales/af/messages.json    |  19 ++
 apps/desktop/src/locales/ar/messages.json    |  19 ++
 apps/desktop/src/locales/az/messages.json    |  19 ++
 apps/desktop/src/locales/be/messages.json    |  19 ++
 apps/desktop/src/locales/bg/messages.json    |  19 ++
 apps/desktop/src/locales/bn/messages.json    |  19 ++
 apps/desktop/src/locales/bs/messages.json    |  19 ++
 apps/desktop/src/locales/ca/messages.json    |  19 ++
 apps/desktop/src/locales/cs/messages.json    |  19 ++
 apps/desktop/src/locales/cy/messages.json    |  19 ++
 apps/desktop/src/locales/da/messages.json    |  19 ++
 apps/desktop/src/locales/de/messages.json    |  19 ++
 apps/desktop/src/locales/el/messages.json    |  19 ++
 apps/desktop/src/locales/en_GB/messages.json |  19 ++
 apps/desktop/src/locales/en_IN/messages.json |  19 ++
 apps/desktop/src/locales/eo/messages.json    |  19 ++
 apps/desktop/src/locales/es/messages.json    |  25 +-
 apps/desktop/src/locales/et/messages.json    |  19 ++
 apps/desktop/src/locales/eu/messages.json    |  19 ++
 apps/desktop/src/locales/fa/messages.json    |  19 ++
 apps/desktop/src/locales/fi/messages.json    |  19 ++
 apps/desktop/src/locales/fil/messages.json   |  19 ++
 apps/desktop/src/locales/fr/messages.json    |  19 ++
 apps/desktop/src/locales/gl/messages.json    |  19 ++
 apps/desktop/src/locales/he/messages.json    |  19 ++
 apps/desktop/src/locales/hi/messages.json    |  19 ++
 apps/desktop/src/locales/hr/messages.json    | 251 ++++++++++---------
 apps/desktop/src/locales/hu/messages.json    |  19 ++
 apps/desktop/src/locales/id/messages.json    |  19 ++
 apps/desktop/src/locales/it/messages.json    |  19 ++
 apps/desktop/src/locales/ja/messages.json    |  19 ++
 apps/desktop/src/locales/ka/messages.json    |  19 ++
 apps/desktop/src/locales/km/messages.json    |  19 ++
 apps/desktop/src/locales/kn/messages.json    |  19 ++
 apps/desktop/src/locales/ko/messages.json    |  19 ++
 apps/desktop/src/locales/lt/messages.json    |  19 ++
 apps/desktop/src/locales/lv/messages.json    |  19 ++
 apps/desktop/src/locales/me/messages.json    |  19 ++
 apps/desktop/src/locales/ml/messages.json    |  19 ++
 apps/desktop/src/locales/mr/messages.json    |  19 ++
 apps/desktop/src/locales/my/messages.json    |  19 ++
 apps/desktop/src/locales/nb/messages.json    |  19 ++
 apps/desktop/src/locales/ne/messages.json    |  19 ++
 apps/desktop/src/locales/nl/messages.json    |  19 ++
 apps/desktop/src/locales/nn/messages.json    |  19 ++
 apps/desktop/src/locales/or/messages.json    |  19 ++
 apps/desktop/src/locales/pl/messages.json    |  19 ++
 apps/desktop/src/locales/pt_BR/messages.json |  19 ++
 apps/desktop/src/locales/pt_PT/messages.json |  19 ++
 apps/desktop/src/locales/ro/messages.json    |  19 ++
 apps/desktop/src/locales/ru/messages.json    |  19 ++
 apps/desktop/src/locales/si/messages.json    |  19 ++
 apps/desktop/src/locales/sk/messages.json    |  23 +-
 apps/desktop/src/locales/sl/messages.json    |  19 ++
 apps/desktop/src/locales/sr/messages.json    |  19 ++
 apps/desktop/src/locales/sv/messages.json    |  19 ++
 apps/desktop/src/locales/te/messages.json    |  19 ++
 apps/desktop/src/locales/th/messages.json    |  19 ++
 apps/desktop/src/locales/tr/messages.json    |  19 ++
 apps/desktop/src/locales/uk/messages.json    |  19 ++
 apps/desktop/src/locales/vi/messages.json    |  19 ++
 apps/desktop/src/locales/zh_CN/messages.json |  19 ++
 apps/desktop/src/locales/zh_TW/messages.json |  19 ++
 63 files changed, 1318 insertions(+), 121 deletions(-)

diff --git a/apps/desktop/src/locales/af/messages.json b/apps/desktop/src/locales/af/messages.json
index 83842972ece..ff3ed461bb5 100644
--- a/apps/desktop/src/locales/af/messages.json
+++ b/apps/desktop/src/locales/af/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "Hierdie aksie is beskerm. Voer u hoofwagwoord in om u identiteit te bevestig om voort te gaan."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Hoofwagwoord bygewerk"
   },
@@ -3532,6 +3535,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/ar/messages.json b/apps/desktop/src/locales/ar/messages.json
index 546257941e5..b047a3c9455 100644
--- a/apps/desktop/src/locales/ar/messages.json
+++ b/apps/desktop/src/locales/ar/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "هذا الإجراء محمي. للاستمرار، يرجى إعادة إدخال كلمة المرور الرئيسية للتحقق من هويتك."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "كلمة المرور الرئيسية المحدثة"
   },
@@ -3532,6 +3535,22 @@
     "message": "تنسيقات مشتركة",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "نجاح"
   },
diff --git a/apps/desktop/src/locales/az/messages.json b/apps/desktop/src/locales/az/messages.json
index e1b46ef3170..193424e5542 100644
--- a/apps/desktop/src/locales/az/messages.json
+++ b/apps/desktop/src/locales/az/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "Bu əməliyyat qorumalıdır, davam etmək üçün lütfən kimliyinizi doğrulamaq məqsədilə ana parolunuzu yenidən daxil edin."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Güncəllənmiş ana parol"
   },
@@ -3532,6 +3535,22 @@
     "message": "Ortaq formatlar",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Uğurlu"
   },
diff --git a/apps/desktop/src/locales/be/messages.json b/apps/desktop/src/locales/be/messages.json
index f2eadaa919b..3b67a5a529b 100644
--- a/apps/desktop/src/locales/be/messages.json
+++ b/apps/desktop/src/locales/be/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "Гэта дзеянне абаронена. Для працягу, калі ласка, паўторна ўвядзіце свой асноўны пароль, каб пацвердзіць вашу асобу."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Асноўны пароль абноўлены"
   },
@@ -3532,6 +3535,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/bg/messages.json b/apps/desktop/src/locales/bg/messages.json
index b8e25d14b8b..69ef53c4db6 100644
--- a/apps/desktop/src/locales/bg/messages.json
+++ b/apps/desktop/src/locales/bg/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "Това действие е защитено. За да продължите, въведете отново главната си парола, за да потвърдите самоличността си."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Главната парола е зададена успешно"
+  },
   "updatedMasterPassword": {
     "message": "Главната парола е променена"
   },
@@ -3532,6 +3535,22 @@
     "message": "Често използвани формати",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "Разпознаването на съвпадения чрез адреса е начинът, по който Битуорден определя кои елементи да предложи за автоматично попълване.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "„Регулярен израз“ е по-сложен метод, който е и по-рисков, тъй като може да застраши сигурността на данните за вписване.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "„Започва с“ е по-сложен метод, който е и по-рисков, тъй като може да застраши сигурността на данните за вписване.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "Повече относно разпознаването на съвпадения",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Успех"
   },
diff --git a/apps/desktop/src/locales/bn/messages.json b/apps/desktop/src/locales/bn/messages.json
index dc413c24bda..684c4339a3e 100644
--- a/apps/desktop/src/locales/bn/messages.json
+++ b/apps/desktop/src/locales/bn/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "This action is protected. To continue, please re-enter your master password to verify your identity."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Updated master password"
   },
@@ -3532,6 +3535,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/bs/messages.json b/apps/desktop/src/locales/bs/messages.json
index 8daad2996e7..6911d61aa45 100644
--- a/apps/desktop/src/locales/bs/messages.json
+++ b/apps/desktop/src/locales/bs/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "This action is protected. To continue, please re-enter your master password to verify your identity."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Updated master password"
   },
@@ -3532,6 +3535,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/ca/messages.json b/apps/desktop/src/locales/ca/messages.json
index fda4e073bd0..0cf2836b3e7 100644
--- a/apps/desktop/src/locales/ca/messages.json
+++ b/apps/desktop/src/locales/ca/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "Aquesta acció està protegida. Per continuar, torneu a introduir la contrasenya principal per verificar la vostra identitat."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "La contrasenya mestra s'ha configurat correctament"
+  },
   "updatedMasterPassword": {
     "message": "Contrasenya mestra actualitzada"
   },
@@ -3532,6 +3535,22 @@
     "message": "Formats comuns",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Èxit"
   },
diff --git a/apps/desktop/src/locales/cs/messages.json b/apps/desktop/src/locales/cs/messages.json
index f48461c05c8..8c080c48555 100644
--- a/apps/desktop/src/locales/cs/messages.json
+++ b/apps/desktop/src/locales/cs/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "Tato akce je chráněna. Chcete-li pokračovat, zadejte znovu Vaše hlavní heslo, abychom ověřili Vaši totožnost."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Hlavní heslo bylo úspěšně nastaveno"
+  },
   "updatedMasterPassword": {
     "message": "Hlavní heslo bylo aktualizováno"
   },
@@ -3532,6 +3535,22 @@
     "message": "Společné formáty",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "Detekce shody URI je způsob, jakým Bitwarden identifikuje návrhy automatického vyplňování.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regulární výraz\" je pokročilá volba se zvýšeným rizikem odhalení přihlašovacích údajů.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Začíná na\" je pokročilá volba se zvýšeným rizikem odhalení přihlašovacích údajů.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "Další informace o detekci shody",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Úspěch"
   },
diff --git a/apps/desktop/src/locales/cy/messages.json b/apps/desktop/src/locales/cy/messages.json
index 42dbc5e42cb..2ec97626cb1 100644
--- a/apps/desktop/src/locales/cy/messages.json
+++ b/apps/desktop/src/locales/cy/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "This action is protected. To continue, please re-enter your master password to verify your identity."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Updated master password"
   },
@@ -3532,6 +3535,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/da/messages.json b/apps/desktop/src/locales/da/messages.json
index 995588202fa..c7539894853 100644
--- a/apps/desktop/src/locales/da/messages.json
+++ b/apps/desktop/src/locales/da/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "Denne handling er beskyttet. For at fortsætte, så bekræft din identitet ved at angive din hovedadgangskode igen."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Hovedadgangskode opdateret"
   },
@@ -3532,6 +3535,22 @@
     "message": "Almindelige formater",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Gennemført"
   },
diff --git a/apps/desktop/src/locales/de/messages.json b/apps/desktop/src/locales/de/messages.json
index 9254ca17f41..c438d9f0f52 100644
--- a/apps/desktop/src/locales/de/messages.json
+++ b/apps/desktop/src/locales/de/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "Diese Aktion ist geschützt. Um fortzufahren, gib bitte dein Master-Passwort erneut ein, um deine Identität zu bestätigen."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master-Passwort erfolgreich eingerichtet"
+  },
   "updatedMasterPassword": {
     "message": "Master-Passwort aktualisiert"
   },
@@ -3532,6 +3535,22 @@
     "message": "Gängigste Formate",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Erfolg"
   },
diff --git a/apps/desktop/src/locales/el/messages.json b/apps/desktop/src/locales/el/messages.json
index 57e0cb0b2f8..ce01417aac0 100644
--- a/apps/desktop/src/locales/el/messages.json
+++ b/apps/desktop/src/locales/el/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "Αυτή η ενέργεια προστατεύεται. Για να συνεχίσετε, πληκτρολογήστε ξανά τον κύριο κωδικό πρόσβασης για να επαληθεύσετε την ταυτότητά σας."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Ενημερώθηκε ο κύριος κωδικός πρόσβασης"
   },
@@ -3532,6 +3535,22 @@
     "message": "Κοινοί τύποι",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Επιτυχία"
   },
diff --git a/apps/desktop/src/locales/en_GB/messages.json b/apps/desktop/src/locales/en_GB/messages.json
index 70a59a096d0..c975d8be8cd 100644
--- a/apps/desktop/src/locales/en_GB/messages.json
+++ b/apps/desktop/src/locales/en_GB/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "This action is protected. To continue, please re-enter your master password to verify your identity."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Updated master password"
   },
@@ -3532,6 +3535,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/en_IN/messages.json b/apps/desktop/src/locales/en_IN/messages.json
index c1f46961086..4db532712bc 100644
--- a/apps/desktop/src/locales/en_IN/messages.json
+++ b/apps/desktop/src/locales/en_IN/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "This action is protected. To continue, please re-enter your master password to verify your identity."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Updated master password"
   },
@@ -3532,6 +3535,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/eo/messages.json b/apps/desktop/src/locales/eo/messages.json
index d63ff473ed1..fb66ee8c9c1 100644
--- a/apps/desktop/src/locales/eo/messages.json
+++ b/apps/desktop/src/locales/eo/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "This action is protected. To continue, please re-enter your master password to verify your identity."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Updated master password"
   },
@@ -3532,6 +3535,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Sukcesis"
   },
diff --git a/apps/desktop/src/locales/es/messages.json b/apps/desktop/src/locales/es/messages.json
index 78b6502bb29..fa78dc4f7c9 100644
--- a/apps/desktop/src/locales/es/messages.json
+++ b/apps/desktop/src/locales/es/messages.json
@@ -498,7 +498,7 @@
     "description": "This describes a field that is 'linked' (related) to another field."
   },
   "cfTypeCheckbox": {
-    "message": "Checkbox"
+    "message": "Casilla de verificación"
   },
   "linkedValue": {
     "message": "Valor vinculado",
@@ -1212,7 +1212,7 @@
     "message": "Tiempo de espera de la caja fuerte excedido"
   },
   "vaultTimeout1": {
-    "message": "Timeout"
+    "message": "Tiempo de espera"
   },
   "vaultTimeoutDesc": {
     "message": "Elige cuando se agotará el tiempo de espera de tu caja fuerte y se ejecutará la acción seleccionada."
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "Esta acción está protegida. Para continuar, vuelva a introducir su contraseña maestra para verificar su identidad."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Contraseña maestra actualizada"
   },
@@ -3532,6 +3535,22 @@
     "message": "Formatos comunes",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Éxito"
   },
@@ -3713,7 +3732,7 @@
     "message": "Allow the Bitwarden desktop application to be captured in screenshots and viewed in remote desktop sessions. Disabling this will prevent access on some external displays."
   },
   "confirmWindowStillVisibleTitle": {
-    "message": "Confirm window still visible"
+    "message": "Confirmar ventana todavía visible"
   },
   "confirmWindowStillVisibleContent": {
     "message": "Por favor, confirma que la ventana sigue siendo visible."
diff --git a/apps/desktop/src/locales/et/messages.json b/apps/desktop/src/locales/et/messages.json
index bfbcabdf815..0aca4d534e3 100644
--- a/apps/desktop/src/locales/et/messages.json
+++ b/apps/desktop/src/locales/et/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "See tegevus on kaitstud. Jätkamiseks sisesta oma ülemparool."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Uuendas ülemparooli"
   },
@@ -3532,6 +3535,22 @@
     "message": "Tüüpilised meetodid",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Tehtud"
   },
diff --git a/apps/desktop/src/locales/eu/messages.json b/apps/desktop/src/locales/eu/messages.json
index 8845ec04aff..3e21e88cddb 100644
--- a/apps/desktop/src/locales/eu/messages.json
+++ b/apps/desktop/src/locales/eu/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "Ekintza hau babestuta dago. Jarraitzeko, mesedez, sartu berriro pasahitz nagusia zure identitatea egiaztatzeko."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Pasahitz nagusia eguneratuta"
   },
@@ -3532,6 +3535,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/fa/messages.json b/apps/desktop/src/locales/fa/messages.json
index ae227b68e4e..94ec39fee4b 100644
--- a/apps/desktop/src/locales/fa/messages.json
+++ b/apps/desktop/src/locales/fa/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "این عمل محافظت می‌شود. برای ادامه، لطفاً کلمه عبور اصلی خود را دوباره وارد کنید تا هویت‌تان را تأیید کنید."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "کلمه عبور اصلی به‌روزرسانی شد"
   },
@@ -3532,6 +3535,22 @@
     "message": "فرمت‌های رایج",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "موفقیت آمیز بود"
   },
diff --git a/apps/desktop/src/locales/fi/messages.json b/apps/desktop/src/locales/fi/messages.json
index 53370012ada..7a1d3d68a16 100644
--- a/apps/desktop/src/locales/fi/messages.json
+++ b/apps/desktop/src/locales/fi/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "Toiminto on suojattu. Jatka vahvistamalla henkilöllisyytesi syöttämällä pääsalasanasi uudelleen."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Pääsalasanasi on vaihdettu"
   },
@@ -3532,6 +3535,22 @@
     "message": "Yleiset muodot",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Onnistui"
   },
diff --git a/apps/desktop/src/locales/fil/messages.json b/apps/desktop/src/locales/fil/messages.json
index d2823199175..fc26e247834 100644
--- a/apps/desktop/src/locales/fil/messages.json
+++ b/apps/desktop/src/locales/fil/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "Ang pagkilos na ito ay protektado. Upang magpatuloy, mangyaring ipasok muli ang iyong master password upang i verify ang iyong pagkakakilanlan."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "I-update ang master password"
   },
@@ -3532,6 +3535,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/fr/messages.json b/apps/desktop/src/locales/fr/messages.json
index 7fb2017b131..f2381618fdd 100644
--- a/apps/desktop/src/locales/fr/messages.json
+++ b/apps/desktop/src/locales/fr/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "Cette action est protégée. Pour continuer, veuillez saisir à nouveau votre mot de passe principal pour vérifier votre identité."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Mot de passe principal mis à jour"
   },
@@ -3532,6 +3535,22 @@
     "message": "Formats communs",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Succès"
   },
diff --git a/apps/desktop/src/locales/gl/messages.json b/apps/desktop/src/locales/gl/messages.json
index fdedc6a97e2..8780868a6b8 100644
--- a/apps/desktop/src/locales/gl/messages.json
+++ b/apps/desktop/src/locales/gl/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "This action is protected. To continue, please re-enter your master password to verify your identity."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Updated master password"
   },
@@ -3532,6 +3535,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/he/messages.json b/apps/desktop/src/locales/he/messages.json
index 8d2ebf8bb98..aa869a3fd7c 100644
--- a/apps/desktop/src/locales/he/messages.json
+++ b/apps/desktop/src/locales/he/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "פעולה זו מוגנת. כדי להמשיך, הזן מחדש את הסיסמה הראשית שלך כדי לאמת את זהותך."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "סיסמה ראשית עודכנה"
   },
@@ -3532,6 +3535,22 @@
     "message": "פורמטים נפוצים",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "הצלחה"
   },
diff --git a/apps/desktop/src/locales/hi/messages.json b/apps/desktop/src/locales/hi/messages.json
index 35076bcb184..d02a7057a80 100644
--- a/apps/desktop/src/locales/hi/messages.json
+++ b/apps/desktop/src/locales/hi/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "This action is protected. To continue, please re-enter your master password to verify your identity."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Updated master password"
   },
@@ -3532,6 +3535,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/hr/messages.json b/apps/desktop/src/locales/hr/messages.json
index 557695c5b6c..45af433beab 100644
--- a/apps/desktop/src/locales/hr/messages.json
+++ b/apps/desktop/src/locales/hr/messages.json
@@ -24,7 +24,7 @@
     "message": "Identitet"
   },
   "typeNote": {
-    "message": "Note"
+    "message": "Bilješka"
   },
   "typeSecureNote": {
     "message": "Sigurna bilješka"
@@ -241,22 +241,22 @@
     "message": "SSH agent je servis namijenjen developerima koji omogućuje potpisivanje SSH zahtjeva izravno iz tvojeg Bitwarden trezora."
   },
   "sshAgentPromptBehavior": {
-    "message": "Ask for authorization when using SSH agent"
+    "message": "Zahtjevaj autorizaciju pri korištenju SSH agenta"
   },
   "sshAgentPromptBehaviorDesc": {
-    "message": "Choose how to handle SSH-agent authorization requests."
+    "message": "Odaberi kako će se postupati sa zahtjevima za autorizaciju SSH agenta."
   },
   "sshAgentPromptBehaviorHelp": {
-    "message": "Remember SSH authorizations"
+    "message": "Zapamti SSH autorizaciju"
   },
   "sshAgentPromptBehaviorAlways": {
-    "message": "Always"
+    "message": "Uvijek"
   },
   "sshAgentPromptBehaviorNever": {
-    "message": "Never"
+    "message": "Nikad"
   },
   "sshAgentPromptBehaviorRememberUntilLock": {
-    "message": "Remember until vault is locked"
+    "message": "Zapamti do zaključavanja trezora"
   },
   "premiumRequired": {
     "message": "Potrebno Premium članstvo"
@@ -409,16 +409,16 @@
     "message": "Ključ autentifikatora (TOTP)"
   },
   "authenticatorKey": {
-    "message": "Authenticator key"
+    "message": "Ključ autentifikatora"
   },
   "autofillOptions": {
-    "message": "Autofill options"
+    "message": "Postavke auto-ispune"
   },
   "websiteUri": {
-    "message": "Website (URI)"
+    "message": "Web stranica (URI)"
   },
   "websiteUriCount": {
-    "message": "Website (URI) $COUNT$",
+    "message": "Broj URI-ja: $COUNT$",
     "description": "Label for an input field that contains a website URI. The input field is part of a list of fields, and the count indicates the position of the field in the list.",
     "placeholders": {
       "count": {
@@ -428,49 +428,49 @@
     }
   },
   "websiteAdded": {
-    "message": "Website added"
+    "message": "Web stranica dodana"
   },
   "addWebsite": {
-    "message": "Add website"
+    "message": "Dodaj web stranicu"
   },
   "deleteWebsite": {
-    "message": "Delete website"
+    "message": "Izbriši web stranicu"
   },
   "owner": {
-    "message": "Owner"
+    "message": "Vlasnik"
   },
   "addField": {
-    "message": "Add field"
+    "message": "Dodaj polje"
   },
   "editField": {
-    "message": "Edit field"
+    "message": "Uredi polje"
   },
   "permanentlyDeleteAttachmentConfirmation": {
-    "message": "Are you sure you want to permanently delete this attachment?"
+    "message": "Sigurno želiš trajno izbrisati ovaj privitak?"
   },
   "fieldType": {
-    "message": "Field type"
+    "message": "Vrsta polja"
   },
   "fieldLabel": {
-    "message": "Field label"
+    "message": "Oznaka polja"
   },
   "add": {
-    "message": "Add"
+    "message": "Dodaj"
   },
   "textHelpText": {
-    "message": "Use text fields for data like security questions"
+    "message": "Koristi tekstualna polja za podatke poput sigurnosnih pitanja"
   },
   "hiddenHelpText": {
-    "message": "Use hidden fields for sensitive data like a password"
+    "message": "Koristi skrivena polja za osjetljive podatke poput lozinke"
   },
   "checkBoxHelpText": {
-    "message": "Use checkboxes if you'd like to autofill a form's checkbox, like a remember email"
+    "message": "Koristi potvrdne okvire ako ih želiš auto-ispuniti u obrascu, npr. zapamti adresu e-pošte"
   },
   "linkedHelpText": {
-    "message": "Use a linked field when you are experiencing autofill issues for a specific website."
+    "message": "Koristi povezano polje kada imaš problema s auto-ispunom za određenu web stranicu."
   },
   "linkedLabelHelpText": {
-    "message": "Enter the the field's html id, name, aria-label, or placeholder."
+    "message": "Unesi html id polja, naziv, aria-label ili rezervirano mjesto."
   },
   "folder": {
     "message": "Mapa"
@@ -498,7 +498,7 @@
     "description": "This describes a field that is 'linked' (related) to another field."
   },
   "cfTypeCheckbox": {
-    "message": "Checkbox"
+    "message": "Potvrdni okvir"
   },
   "linkedValue": {
     "message": "Povezana vrijednost",
@@ -695,7 +695,7 @@
     "message": "Najveća veličina datoteke je 500 MB."
   },
   "legacyEncryptionUnsupported": {
-    "message": "Legacy encryption is no longer supported. Please contact support to recover your account."
+    "message": "Zastarjelo šifriranje više nije podržano. Obrati se podršci za oporavak računa."
   },
   "editedFolder": {
     "message": "Mapa spremljena"
@@ -1717,10 +1717,10 @@
     "message": "Račun ograničen"
   },
   "restrictCardTypeImport": {
-    "message": "Cannot import card item types"
+    "message": "Ne mogu uvesti stavke vrste Platna kartica"
   },
   "restrictCardTypeImportDesc": {
-    "message": "A policy set by 1 or more organizations prevents you from importing cards to your vaults."
+    "message": "Pravila jedne ili više organizacija onemogućuju uvoz stavke vrste Platna kartica u tvoj trezor."
   },
   "filePasswordAndConfirmFilePasswordDoNotMatch": {
     "message": "Lozinka se ne podudara."
@@ -1970,10 +1970,10 @@
     }
   },
   "cardDetails": {
-    "message": "Card details"
+    "message": "Detalji kartice"
   },
   "cardBrandDetails": {
-    "message": "$BRAND$ details",
+    "message": "$BRAND$ detalji",
     "placeholders": {
       "brand": {
         "content": "$1",
@@ -1982,32 +1982,32 @@
     }
   },
   "learnMoreAboutAuthenticators": {
-    "message": "Learn more about authenticators"
+    "message": "Više o autentifikatorima"
   },
   "copyTOTP": {
-    "message": "Copy Authenticator key (TOTP)"
+    "message": "Kopiraj ključ autentifikatora (TOTP)"
   },
   "totpHelperTitle": {
-    "message": "Make 2-step verification seamless"
+    "message": "Učini dvostruku autentifikaciju besprijekornom"
   },
   "totpHelper": {
-    "message": "Bitwarden can store and fill 2-step verification codes. Copy and paste the key into this field."
+    "message": "Bitwarden može pohraniti i ispuniti kodove za dvostruku autentifikaciju. Kopiraj i zalijepi ključ u ovo polje."
   },
   "totpHelperWithCapture": {
-    "message": "Bitwarden can store and fill 2-step verification codes. Select the camera icon to take a screenshot of this website's authenticator QR code, or copy and paste the key into this field."
+    "message": "Bitwarden može pohraniti i ispuniti kodove provjeru dvostruke autentifikacije. Odaberi ikonu kamere i označi QR kôd za provjeru autentičnosti ove web stranice ili kopiraj i zalijepi ključ u ovo polje."
   },
   "premium": {
     "message": "Premium",
     "description": "Premium membership"
   },
   "freeOrgsCannotUseAttachments": {
-    "message": "Free organizations cannot use attachments"
+    "message": "Besplatne organizacije ne mogu koristiti privitke"
   },
   "singleFieldNeedsAttention": {
-    "message": "1 field needs your attention."
+    "message": "1 polje treba tvoju pažnju."
   },
   "multipleFieldsNeedAttention": {
-    "message": "$COUNT$ fields need your attention.",
+    "message": "$COUNT$ polja treba(ju) tvoju pažnju.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -2016,10 +2016,10 @@
     }
   },
   "cardExpiredTitle": {
-    "message": "Expired card"
+    "message": "Istekla kartica"
   },
   "cardExpiredMessage": {
-    "message": "If you've renewed it, update the card's information"
+    "message": "Ako je obnovljeno, ažuriraj podatke o kartici"
   },
   "verificationRequired": {
     "message": "Potrebna je potvrda",
@@ -2179,7 +2179,7 @@
     "message": "Pravila tvrtke onemogućuju spremanje stavki u osobni trezor. Promijeni vlasništvo stavke na tvrtku i odaberi dostupnu Zbirku."
   },
   "yourNewPasswordCannotBeTheSameAsYourCurrentPassword": {
-    "message": "Your new password cannot be the same as your current password."
+    "message": "Tvoja nova lozinka ne može biti ista kao tvoja trenutna lozinka."
   },
   "hintEqualsPassword": {
     "message": "Podsjetnik za lozinku ne može biti isti kao lozinka."
@@ -2191,13 +2191,13 @@
     "message": "Organizacijsko pravilo onemogućuje uvoz stavki u tvoj osobni trezor."
   },
   "personalDetails": {
-    "message": "Personal details"
+    "message": "Osobni podaci"
   },
   "identification": {
-    "message": "Identification"
+    "message": "Identifikacija"
   },
   "contactInfo": {
-    "message": "Contact information"
+    "message": "Kontaktne informacije"
   },
   "allSends": {
     "message": "Svi Sendovi",
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "Ova radnja je zaštićena. Za nastavak i potvrdu identiteta, unesi svoju glavnu lozinku."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Glavna lozinka uspješno postavljena"
+  },
   "updatedMasterPassword": {
     "message": "Glavna lozinka ažurirana"
   },
@@ -2516,13 +2519,13 @@
     "message": "Glavna lozinka uklonjena."
   },
   "removeMasterPasswordForOrganizationUserKeyConnector": {
-    "message": "A master password is no longer required for members of the following organization. Please confirm the domain below with your organization administrator."
+    "message": "Glavna lozinka više nije obavezna za članove ove organizacije. Provjeri prikazanu domenu sa svojim administratorom."
   },
   "organizationName": {
-    "message": "Organization name"
+    "message": "Naziv Organizacije"
   },
   "keyConnectorDomain": {
-    "message": "Key Connector domain"
+    "message": "Domena konektora ključa"
   },
   "leaveOrganization": {
     "message": "Napusti organizaciju"
@@ -2634,7 +2637,7 @@
     "message": "Generiraj e-poštu"
   },
   "usernameGenerator": {
-    "message": "Username generator"
+    "message": "Generator korisničkih imena"
   },
   "generatePassword": {
     "message": "Generiraj lozinku"
@@ -2643,16 +2646,16 @@
     "message": "Generiraj fraznu lozinku"
   },
   "passwordGenerated": {
-    "message": "Password generated"
+    "message": "Lozinka generirana"
   },
   "passphraseGenerated": {
-    "message": "Passphrase generated"
+    "message": "Frazna lozinka generirana"
   },
   "usernameGenerated": {
-    "message": "Username generated"
+    "message": "Korisničko ime generirano"
   },
   "emailGenerated": {
-    "message": "Email generated"
+    "message": "e-pošta generirana"
   },
   "spinboxBoundariesHint": {
     "message": "Vrijednost mora biti u rasponu $MIN$ - $MAX$.",
@@ -2711,7 +2714,7 @@
     "message": "Koristi ovu lozinku"
   },
   "useThisPassphrase": {
-    "message": "Use this passphrase"
+    "message": "Koristi ovu fraznu lozinku"
   },
   "useThisUsername": {
     "message": "Koristi ovo korisničko ime"
@@ -3182,28 +3185,28 @@
     "message": "Uređaj pouzdan"
   },
   "trustOrganization": {
-    "message": "Trust organization"
+    "message": "Vjeruj organizaciji"
   },
   "trust": {
-    "message": "Trust"
+    "message": "Vjeruj"
   },
   "doNotTrust": {
-    "message": "Do not trust"
+    "message": "Nemoj vjerovati"
   },
   "organizationNotTrusted": {
-    "message": "Organization is not trusted"
+    "message": "Organizacija nije pouzdana"
   },
   "emergencyAccessTrustWarning": {
-    "message": "For the security of your account, only confirm if you have granted emergency access to this user and their fingerprint matches what is displayed in their account"
+    "message": "Radi sigurnosti tvojeg računa, potvrdi samo ako je ovom korisniku odobren pristup u hitnim slučajevima i ako se otisak prsta podudara s onim prikazanim u računu"
   },
   "orgTrustWarning": {
-    "message": "For the security of your account, only proceed if you are a member of this organization, have account recovery enabled, and the fingerprint displayed below matches the organization's fingerprint."
+    "message": "Radi sigurnosti tvojeg računa, nastavi samo ako si član ove organizacije, imaš omogućen oporavak računa i otisak prsta prikazan u nastavku odgovara otisku prsta organizacije."
   },
   "orgTrustWarning1": {
-    "message": "This organization has an Enterprise policy that will enroll you in account recovery. Enrollment will allow organization administrators to change your password. Only proceed if you recognize this organization and the fingerprint phrase displayed below matches the organization's fingerprint."
+    "message": "Ova organizacija ima poslovno pravilo koje će te prijaviti za oporavak računa. Prijava će omogućiti administratorima organizacije da promijene tvoju lozinku. Nastavi samo ako prepoznaješ ovu organizaciju i ako se fraza otiska prsta prikazana u nastavku podudara s otiskom prsta organizacije."
   },
   "trustUser": {
-    "message": "Trust user"
+    "message": "Vjeruj korisniku"
   },
   "inputRequired": {
     "message": "Potreban je unos."
@@ -3376,7 +3379,7 @@
     "message": "Prati korake za dovršetak prijave."
   },
   "followTheStepsBelowToFinishLoggingInWithSecurityKey": {
-    "message": "Follow the steps below to finish logging in with your security key."
+    "message": "Prati korake za dovršetak prijave svojim sigurnosnim ključem."
   },
   "launchDuo": {
     "message": "Pokreni Duo u pregledniku"
@@ -3532,6 +3535,22 @@
     "message": "Uobičajeni oblici",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Uspješno"
   },
@@ -3603,14 +3622,14 @@
     "message": "Nisu nađeni slobodni portovi za SSO prijavu."
   },
   "securePasswordGenerated": {
-    "message": "Secure password generated! Don't forget to also update your password on the website."
+    "message": "Sigurna lozinka generirana! Ne zaboravi ažurirati lozinku na web stranici."
   },
   "useGeneratorHelpTextPartOne": {
-    "message": "Use the generator",
+    "message": "Koristi generator",
     "description": "This will be used as part of a larger sentence, broken up to include the generator icon. The full sentence will read 'Use the generator [GENERATOR_ICON] to create a strong unique password'"
   },
   "useGeneratorHelpTextPartTwo": {
-    "message": "to create a strong unique password",
+    "message": "za stvaranje snažne, jedinstvene lozinke",
     "description": "This will be used as part of a larger sentence, broken up to include the generator icon. The full sentence will read 'Use the generator [GENERATOR_ICON] to create a strong unique password'"
   },
   "biometricsStatusHelptextUnlockNeeded": {
@@ -3638,25 +3657,25 @@
     "message": "Biometrijsko otključavanje trenutno nije dostupno iz nepoznatog razloga."
   },
   "itemDetails": {
-    "message": "Item details"
+    "message": "Detalji stavke"
   },
   "itemName": {
-    "message": "Item name"
+    "message": "Naziv stavke"
   },
   "loginCredentials": {
-    "message": "Login credentials"
+    "message": "Vjerodajnice za prijavu"
   },
   "additionalOptions": {
-    "message": "Additional options"
+    "message": "Dodatne mogućnosti"
   },
   "itemHistory": {
-    "message": "Item history"
+    "message": "Povijest stavke"
   },
   "lastEdited": {
-    "message": "Last edited"
+    "message": "Zadnje uređeno"
   },
   "upload": {
-    "message": "Upload"
+    "message": "Prijenos"
   },
   "authorize": {
     "message": "Autoriziraj"
@@ -3728,7 +3747,7 @@
     "message": "Promijeni rizičnu lozinku"
   },
   "cannotRemoveViewOnlyCollections": {
-    "message": "You cannot remove collections with View only permissions: $COLLECTIONS$",
+    "message": "S dopuštenjima samo za prikaz ne možeš ukloniti zbirke: $COLLECTIONS$",
     "placeholders": {
       "collections": {
         "content": "$1",
@@ -3737,114 +3756,114 @@
     }
   },
   "move": {
-    "message": "Move"
+    "message": "Premjesti"
   },
   "newFolder": {
-    "message": "New folder"
+    "message": "Nova mapa"
   },
   "folderName": {
-    "message": "Folder Name"
+    "message": "Naziv mape"
   },
   "folderHintText": {
-    "message": "Nest a folder by adding the parent folder's name followed by a “/”. Example: Social/Forums"
+    "message": "Ugnijezdi mapu dodavanjem naziva roditeljske mape i znaka kroz. Npr. Mreže/Forumi"
   },
   "sendsTitleNoItems": {
-    "message": "Send sensitive information safely",
+    "message": "Sigurno pošalji osjetljive podatke",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendsBodyNoItems": {
-    "message": "Share files and data securely with anyone, on any platform. Your information will remain end-to-end encrypted while limiting exposure.",
+    "message": "Sigurno dijeli datoteke i podatke s bilo kime, na bilo kojoj platformi. Tvoji podaci ostaju kriptirani uz ograničenje izloženosti.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "generatorNudgeTitle": {
-    "message": "Quickly create passwords"
+    "message": "Brzo stvori lozinke"
   },
   "generatorNudgeBodyOne": {
-    "message": "Easily create strong and unique passwords by clicking on",
+    "message": "Jednostavno stvori jake i jedinstvene lozinke odabirom tipke",
     "description": "Two part message",
     "example": "Easily create strong and unique passwords by clicking on {icon} to help you keep your logins secure."
   },
   "generatorNudgeBodyTwo": {
-    "message": "to help you keep your logins secure.",
+    "message": "kako bi tvoje prijave ostale sigurne.",
     "description": "Two part message",
     "example": "Easily create strong and unique passwords by clicking on {icon} to help you keep your logins secure."
   },
   "generatorNudgeBodyAria": {
-    "message": "Easily create strong and unique passwords by clicking on the Generate password button to help you keep your logins secure.",
+    "message": "Jednostavno stvori jake i sigurne lozinke odabirom tipke Generiraj lozinku kako bi tvoje prijave ostale sigurne.",
     "description": "Aria label for the body content of the generator nudge"
   },
   "newLoginNudgeTitle": {
-    "message": "Save time with autofill"
+    "message": "Uštedi vrijeme s auto-ispunom"
   },
   "newLoginNudgeBodyOne": {
-    "message": "Include a",
+    "message": "Uključi",
     "description": "This is in multiple parts to allow for bold text in the middle of the sentence.",
     "example": "Include a Website so this login appears as an autofill suggestion."
   },
   "newLoginNudgeBodyBold": {
-    "message": "Website",
+    "message": "web stranicu",
     "description": "This is in multiple parts to allow for bold text in the middle of the sentence.",
     "example": "Include a Website so this login appears as an autofill suggestion."
   },
   "newLoginNudgeBodyTwo": {
-    "message": "so this login appears as an autofill suggestion.",
+    "message": "kako bi ova prijava bila predložena u auto-ispuni.",
     "description": "This is in multiple parts to allow for bold text in the middle of the sentence.",
     "example": "Include a Website so this login appears as an autofill suggestion."
   },
   "newCardNudgeTitle": {
-    "message": "Seamless online checkout"
+    "message": "Jednostavna online kupnja"
   },
   "newCardNudgeBody": {
-    "message": "With cards, easily autofill payment forms securely and accurately."
+    "message": "S karticama jednostavno i sigurno automatski ispunjavaš obrasce za plaćanje."
   },
   "newIdentityNudgeTitle": {
-    "message": "Simplify creating accounts"
+    "message": "Pojednostavi stvaranje računa"
   },
   "newIdentityNudgeBody": {
-    "message": "With identities, quickly autofill long registration or contact forms."
+    "message": "S identitetima brzo automatski ispunjavaš duge registracijske i kontaktne obrasce."
   },
   "newNoteNudgeTitle": {
-    "message": "Keep your sensitive data safe"
+    "message": "Čuvaj svoje osjetljive podatke na sigurnom"
   },
   "newNoteNudgeBody": {
-    "message": "With notes, securely store sensitive data like banking or insurance details."
+    "message": "S bilješkama sigurno pohrani svoje osjetljive podatke poput podataka o banci ili osiguranju."
   },
   "newSshNudgeTitle": {
-    "message": "Developer-friendly SSH access"
+    "message": "SSH pristup prilagođen programerima"
   },
   "newSshNudgeBodyOne": {
-    "message": "Store your keys and connect with the SSH agent for fast, encrypted authentication.",
+    "message": "Pohrani svoje ključeve i poveži se sa SSH agentom za brzu, šifriranu autentifikaciju.",
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
   "newSshNudgeBodyTwo": {
-    "message": "Learn more about SSH agent",
+    "message": "Saznaj više o SSH agentu",
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
   "assignToCollections": {
-    "message": "Assign to collections"
+    "message": "Dodijeli zbirkama"
   },
   "assignToTheseCollections": {
-    "message": "Assign to these collections"
+    "message": "Dodijeli ovim zbirkama"
   },
   "bulkCollectionAssignmentDialogDescriptionSingular": {
-    "message": "Only organization members with access to these collections will be able to see the item."
+    "message": "Stavku će moći vidjeti samo članovi organizacije s pristupom ovim zbirkama."
   },
   "bulkCollectionAssignmentDialogDescriptionPlural": {
-    "message": "Only organization members with access to these collections will be able to see the items."
+    "message": "Stavke će moći vidjeti samo članovi organizacije s pristupom ovim zbirkama."
   },
   "noCollectionsAssigned": {
-    "message": "No collections have been assigned"
+    "message": "Niti jedna zbirka nije dodijeljena"
   },
   "assign": {
-    "message": "Assign"
+    "message": "Dodijeli"
   },
   "bulkCollectionAssignmentDialogDescription": {
-    "message": "Only organization members with access to these collections will be able to see the items."
+    "message": "Stavke će moći vidjeti samo članovi organizacije s pristupom ovim zbirkama."
   },
   "bulkCollectionAssignmentWarning": {
-    "message": "You have selected $TOTAL_COUNT$ items. You cannot update $READONLY_COUNT$ of the items because you do not have edit permissions.",
+    "message": "Odabrano je $TOTAL_COUNT$ stavki. Nije moguće ažurirati $READONLY_COUNT$ stavki jer nemaš dopuštenje za uređivanje.",
     "placeholders": {
       "total_count": {
         "content": "$1",
@@ -3856,10 +3875,10 @@
     }
   },
   "selectCollectionsToAssign": {
-    "message": "Select collections to assign"
+    "message": "Odaberi zbirke za dodjelu"
   },
   "personalItemsTransferWarning": {
-    "message": "$PERSONAL_ITEMS_COUNT$ will be permanently transferred to the selected organization. You will no longer own these items.",
+    "message": "$PERSONAL_ITEMS_COUNT$ stavke/i će biti trajno preneseno u odabranu organizaciju. Više nećeš posjedovati ove stavke.",
     "placeholders": {
       "personal_items_count": {
         "content": "$1",
@@ -3868,7 +3887,7 @@
     }
   },
   "personalItemsWithOrgTransferWarning": {
-    "message": "$PERSONAL_ITEMS_COUNT$ will be permanently transferred to $ORG$. You will no longer own these items.",
+    "message": "$PERSONAL_ITEMS_COUNT$ stavke/i će biti trajno prenesene u $ORG$. Više nećeš posjedovati ove stavke.",
     "placeholders": {
       "personal_items_count": {
         "content": "$1",
@@ -3881,10 +3900,10 @@
     }
   },
   "personalItemTransferWarningSingular": {
-    "message": "1 item will be permanently transferred to the selected organization. You will no longer own this item."
+    "message": "1 stavka će biti trajno prenesena u odabranu organizaciju. Više nećeš posjedovati ovu stavku."
   },
   "personalItemWithOrgTransferWarningSingular": {
-    "message": "1 item will be permanently transferred to $ORG$. You will no longer own this item.",
+    "message": "1 stavka će biti trajno prenesena u $ORG$. Više nećeš posjedovati ovu stavku.",
     "placeholders": {
       "org": {
         "content": "$1",
@@ -3893,13 +3912,13 @@
     }
   },
   "successfullyAssignedCollections": {
-    "message": "Successfully assigned collections"
+    "message": "Zbirke uspješno dodijeljene"
   },
   "nothingSelected": {
-    "message": "You have not selected anything."
+    "message": "Ništa nije odabrano."
   },
   "itemsMovedToOrg": {
-    "message": "Items moved to $ORGNAME$",
+    "message": "Stavke premještene u $ORGNAME$",
     "placeholders": {
       "orgname": {
         "content": "$1",
@@ -3908,7 +3927,7 @@
     }
   },
   "itemMovedToOrg": {
-    "message": "Item moved to $ORGNAME$",
+    "message": "Stavka premještena u $ORGNAME$",
     "placeholders": {
       "orgname": {
         "content": "$1",
@@ -3917,7 +3936,7 @@
     }
   },
   "movedItemsToOrg": {
-    "message": "Selected items moved to $ORGNAME$",
+    "message": "Odabrane stavke premještene u $ORGNAME$",
     "placeholders": {
       "orgname": {
         "content": "$1",
diff --git a/apps/desktop/src/locales/hu/messages.json b/apps/desktop/src/locales/hu/messages.json
index f06f4adb99c..fb95dee49ce 100644
--- a/apps/desktop/src/locales/hu/messages.json
+++ b/apps/desktop/src/locales/hu/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "Ez a művelet védett. A folytatásért ismételten meg kell adni a mesterjelszőt az személyazonosság ellenőrzéséhez."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "A mesterjelszó frisstésre került."
   },
@@ -3532,6 +3535,22 @@
     "message": "Általános formátumok",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Sikeres"
   },
diff --git a/apps/desktop/src/locales/id/messages.json b/apps/desktop/src/locales/id/messages.json
index df8993d75f3..83869dbedde 100644
--- a/apps/desktop/src/locales/id/messages.json
+++ b/apps/desktop/src/locales/id/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "Aksi ini terproteksi. Untuk melanjutkan, masukkan kembali sandi utama Anda untuk verifikasi identitas."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Kata sandi utama diperbarui"
   },
@@ -3532,6 +3535,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/it/messages.json b/apps/desktop/src/locales/it/messages.json
index b11c83c5de4..1b2f6898b9c 100644
--- a/apps/desktop/src/locales/it/messages.json
+++ b/apps/desktop/src/locales/it/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "Questa azione è protetta. Inserisci la tua password principale di nuovo per verificare la tua identità."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Password principale aggiornata"
   },
@@ -3532,6 +3535,22 @@
     "message": "Formati comuni",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Successo"
   },
diff --git a/apps/desktop/src/locales/ja/messages.json b/apps/desktop/src/locales/ja/messages.json
index ca07f36eb9e..066011e2d77 100644
--- a/apps/desktop/src/locales/ja/messages.json
+++ b/apps/desktop/src/locales/ja/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "この操作は保護されています。続行するには、確認のためにマスターパスワードを再入力してください。"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "マスターパスワードを更新しました"
   },
@@ -3532,6 +3535,22 @@
     "message": "一般的な形式",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "成功"
   },
diff --git a/apps/desktop/src/locales/ka/messages.json b/apps/desktop/src/locales/ka/messages.json
index 6c5e8321126..610e189b60a 100644
--- a/apps/desktop/src/locales/ka/messages.json
+++ b/apps/desktop/src/locales/ka/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "This action is protected. To continue, please re-enter your master password to verify your identity."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Updated master password"
   },
@@ -3532,6 +3535,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "წარმატება"
   },
diff --git a/apps/desktop/src/locales/km/messages.json b/apps/desktop/src/locales/km/messages.json
index fdedc6a97e2..8780868a6b8 100644
--- a/apps/desktop/src/locales/km/messages.json
+++ b/apps/desktop/src/locales/km/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "This action is protected. To continue, please re-enter your master password to verify your identity."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Updated master password"
   },
@@ -3532,6 +3535,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/kn/messages.json b/apps/desktop/src/locales/kn/messages.json
index 254b8ab988d..dab0d39b1c4 100644
--- a/apps/desktop/src/locales/kn/messages.json
+++ b/apps/desktop/src/locales/kn/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "ಮುಂದುವರಿಯಲು ಈ ಕ್ರಿಯೆಯನ್ನು ರಕ್ಷಿಸಲಾಗಿದೆ, ದಯವಿಟ್ಟು ನಿಮ್ಮ ಗುರುತನ್ನು ಪರಿಶೀಲಿಸಲು ನಿಮ್ಮ ಮಾಸ್ಟರ್ ಪಾಸ್‌ವರ್ಡ್ ಅನ್ನು ಮರು ನಮೂದಿಸಿ."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Updated master password"
   },
@@ -3532,6 +3535,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/ko/messages.json b/apps/desktop/src/locales/ko/messages.json
index 95620ce5f1f..636105331f5 100644
--- a/apps/desktop/src/locales/ko/messages.json
+++ b/apps/desktop/src/locales/ko/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "이 작업은 보호되어 있습니다. 계속하려면 마스터 비밀번호를 입력하여 신원을 인증하세요."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "마스터 비밀번호 변경됨"
   },
@@ -3532,6 +3535,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/lt/messages.json b/apps/desktop/src/locales/lt/messages.json
index 1e876467155..491e7f49ac0 100644
--- a/apps/desktop/src/locales/lt/messages.json
+++ b/apps/desktop/src/locales/lt/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "Šis veiksmas yra apsaugotas. Jei norite tęsti, iš naujo įveskite pagrindinį slaptažodį, kad patvirtintumėte savo tapatybę."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Atnaujintas pagrindinis slaptažodis"
   },
@@ -3532,6 +3535,22 @@
     "message": "Dažni formatai",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/lv/messages.json b/apps/desktop/src/locales/lv/messages.json
index e4fe5851e8e..ab668f7583d 100644
--- a/apps/desktop/src/locales/lv/messages.json
+++ b/apps/desktop/src/locales/lv/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "Šī darbība ir aizsargāta. Lai turpinātu, ir jāievada galvenā parole, lai apliecinātu savu identitāti."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Galvenā parole sekmīgi iestatīta"
+  },
   "updatedMasterPassword": {
     "message": "Galvenā parole atjaunināta"
   },
@@ -3532,6 +3535,22 @@
     "message": "Izplatīti veidoli",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Izdevās"
   },
diff --git a/apps/desktop/src/locales/me/messages.json b/apps/desktop/src/locales/me/messages.json
index 142a5e371f9..0dfb976af16 100644
--- a/apps/desktop/src/locales/me/messages.json
+++ b/apps/desktop/src/locales/me/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "This action is protected. To continue, please re-enter your master password to verify your identity."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Updated master password"
   },
@@ -3532,6 +3535,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/ml/messages.json b/apps/desktop/src/locales/ml/messages.json
index 56c6b32ac35..f7558da351c 100644
--- a/apps/desktop/src/locales/ml/messages.json
+++ b/apps/desktop/src/locales/ml/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "This action is protected. To continue, please re-enter your master password to verify your identity."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Updated master password"
   },
@@ -3532,6 +3535,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/mr/messages.json b/apps/desktop/src/locales/mr/messages.json
index fdedc6a97e2..8780868a6b8 100644
--- a/apps/desktop/src/locales/mr/messages.json
+++ b/apps/desktop/src/locales/mr/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "This action is protected. To continue, please re-enter your master password to verify your identity."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Updated master password"
   },
@@ -3532,6 +3535,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/my/messages.json b/apps/desktop/src/locales/my/messages.json
index 95724d9f2d8..d7dd5c90afd 100644
--- a/apps/desktop/src/locales/my/messages.json
+++ b/apps/desktop/src/locales/my/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "This action is protected. To continue, please re-enter your master password to verify your identity."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Updated master password"
   },
@@ -3532,6 +3535,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/nb/messages.json b/apps/desktop/src/locales/nb/messages.json
index ef96e448e8c..75dd248e2d4 100644
--- a/apps/desktop/src/locales/nb/messages.json
+++ b/apps/desktop/src/locales/nb/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "Denne handlingen er beskyttet. For å fortsette, skriv inn hovedpassordet ditt på nytt for å verifisere din identitet."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Oppdaterte hovedpassordet"
   },
@@ -3532,6 +3535,22 @@
     "message": "Vanlige formater",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Suksess"
   },
diff --git a/apps/desktop/src/locales/ne/messages.json b/apps/desktop/src/locales/ne/messages.json
index 2b92b43ff03..52e7c61d448 100644
--- a/apps/desktop/src/locales/ne/messages.json
+++ b/apps/desktop/src/locales/ne/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "This action is protected. To continue, please re-enter your master password to verify your identity."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Updated master password"
   },
@@ -3532,6 +3535,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/nl/messages.json b/apps/desktop/src/locales/nl/messages.json
index 35dd7233e50..8081e733d4a 100644
--- a/apps/desktop/src/locales/nl/messages.json
+++ b/apps/desktop/src/locales/nl/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "Deze actie is beveiligd. Voer je hoofdwachtwoord opnieuw in om je identiteit vast te stellen en door te gaan."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Hoofdwachtwoord succesvol ingesteld"
+  },
   "updatedMasterPassword": {
     "message": "Hoofdwachtwoord bijgewerkt"
   },
@@ -3532,6 +3535,22 @@
     "message": "Veelvoorkomende formaten",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI-matche-detectie is hoe Bitwarden invulsuggesties herkent.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Reguliere expressie\" is een geavanceerde optie met een verhoogd risico op het blootstellen van inloggegevens.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Begint met\" is een geavanceerde optie met een verhoogd risico op het blootstellen van inloggegevens.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "Lees meer over overeenkomstdetectie",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Succes"
   },
diff --git a/apps/desktop/src/locales/nn/messages.json b/apps/desktop/src/locales/nn/messages.json
index 278968c4eb0..c6c5540e922 100644
--- a/apps/desktop/src/locales/nn/messages.json
+++ b/apps/desktop/src/locales/nn/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "This action is protected. To continue, please re-enter your master password to verify your identity."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Updated master password"
   },
@@ -3532,6 +3535,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/or/messages.json b/apps/desktop/src/locales/or/messages.json
index 5333775eabe..cf660a5571b 100644
--- a/apps/desktop/src/locales/or/messages.json
+++ b/apps/desktop/src/locales/or/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "This action is protected. To continue, please re-enter your master password to verify your identity."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Updated master password"
   },
@@ -3532,6 +3535,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/pl/messages.json b/apps/desktop/src/locales/pl/messages.json
index df90ab92af7..5fb627e02c8 100644
--- a/apps/desktop/src/locales/pl/messages.json
+++ b/apps/desktop/src/locales/pl/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "Ta operacja jest chroniona. Aby kontynuować, wpisz ponownie hasło główne."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Hasło główne zostało zaktualizowane"
   },
@@ -3532,6 +3535,22 @@
     "message": "Popularne formaty",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Sukces"
   },
diff --git a/apps/desktop/src/locales/pt_BR/messages.json b/apps/desktop/src/locales/pt_BR/messages.json
index 376277ebd7e..9959e226394 100644
--- a/apps/desktop/src/locales/pt_BR/messages.json
+++ b/apps/desktop/src/locales/pt_BR/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "Esta ação está protegida. Para continuar, por favor, reinsira a sua senha mestra para verificar sua identidade."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Senha mestra atualizada"
   },
@@ -3532,6 +3535,22 @@
     "message": "Formatos comuns",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Sucesso"
   },
diff --git a/apps/desktop/src/locales/pt_PT/messages.json b/apps/desktop/src/locales/pt_PT/messages.json
index 33e858b7603..f435e57615b 100644
--- a/apps/desktop/src/locales/pt_PT/messages.json
+++ b/apps/desktop/src/locales/pt_PT/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "Esta ação está protegida. Para continuar, por favor, reintroduza a sua palavra-passe mestra para verificar a sua identidade."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Palavra-passe mestra definida com sucesso"
+  },
   "updatedMasterPassword": {
     "message": "Palavra-passe mestra atualizada"
   },
@@ -3532,6 +3535,22 @@
     "message": "Formatos comuns",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "A deteção de correspondência de URI é a forma como o Bitwarden identifica sugestões de preenchimento automático.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "A \"expressão regular\" é uma opção avançada com um risco acrescido de exposição de credenciais.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Começa com\" é uma opção avançada com um risco acrescido de exposição de credenciais.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "Mais informações sobre a deteção de correspondências",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Com sucesso"
   },
diff --git a/apps/desktop/src/locales/ro/messages.json b/apps/desktop/src/locales/ro/messages.json
index b66151a9429..334633f8da5 100644
--- a/apps/desktop/src/locales/ro/messages.json
+++ b/apps/desktop/src/locales/ro/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "Această acțiune este protejată. Pentru a continua, vă rugăm să reintroduceți parola principală pentru a vă verifica identitatea."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Parola principală actualizată"
   },
@@ -3532,6 +3535,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/ru/messages.json b/apps/desktop/src/locales/ru/messages.json
index f305b877d0f..eb954bd9e1a 100644
--- a/apps/desktop/src/locales/ru/messages.json
+++ b/apps/desktop/src/locales/ru/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "Это действие защищено. Чтобы продолжить, введите ваш мастер-пароль для подтверждения личности."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Мастер-пароль успешно установлен"
+  },
   "updatedMasterPassword": {
     "message": "Мастер-пароль обновлен"
   },
@@ -3532,6 +3535,22 @@
     "message": "Основные форматы",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "Обнаружение совпадения URI - это способ, с помощью которого Bitwarden идентифицирует предложения по автозаполнению.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Регулярное выражение\" - это расширенный вариант с повышенным риском раскрытия учетных данных.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Начинается с\" - это расширенный вариант с повышенным риском раскрытия учетных данных.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "Подробнее об обнаружении совпадений",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Успешно"
   },
diff --git a/apps/desktop/src/locales/si/messages.json b/apps/desktop/src/locales/si/messages.json
index 15b5b750cd2..65b49497a91 100644
--- a/apps/desktop/src/locales/si/messages.json
+++ b/apps/desktop/src/locales/si/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "This action is protected. To continue, please re-enter your master password to verify your identity."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Updated master password"
   },
@@ -3532,6 +3535,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/sk/messages.json b/apps/desktop/src/locales/sk/messages.json
index 8cbeaf1a934..3834944b3f5 100644
--- a/apps/desktop/src/locales/sk/messages.json
+++ b/apps/desktop/src/locales/sk/messages.json
@@ -1640,11 +1640,11 @@
     "description": "A programming term, also known as 'RegEx'."
   },
   "matchDetection": {
-    "message": "Spôsob mapovania",
+    "message": "Zisťovanie zhody",
     "description": "URI match detection for auto-fill."
   },
   "defaultMatchDetection": {
-    "message": "Predvolené mapovanie",
+    "message": "Predvolené zisťovanie zhody",
     "description": "Default URI match detection for auto-fill."
   },
   "toggleOptions": {
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "Táto akcia je chránená. Ak chcete pokračovať, znova zadajte hlavné heslo a overte svoju totožnosť."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Hlavné heslo bolo úspešne nastavené"
+  },
   "updatedMasterPassword": {
     "message": "Hlavné heslo aktualizované"
   },
@@ -3532,6 +3535,22 @@
     "message": "Bežné formáty",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "Zisťovanie zhody URI je spôsob, akým Bitwarden identifikuje návrhy na automatické vypĺňanie.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regulárny výraz\" je pokročilá možnosť so zvýšeným rizikom odhalenia prihlasovacích údajov.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Začína na\" je rozšírená možnosť so zvýšeným rizikom odhalenia prihlasovacích údajov.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "Viac informácií o zisťovaní zhody",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Úspech"
   },
diff --git a/apps/desktop/src/locales/sl/messages.json b/apps/desktop/src/locales/sl/messages.json
index 715d08f2e6e..e0fda878080 100644
--- a/apps/desktop/src/locales/sl/messages.json
+++ b/apps/desktop/src/locales/sl/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "This action is protected. To continue, please re-enter your master password to verify your identity."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Glavno geslo je bilo posodobljeno"
   },
@@ -3532,6 +3535,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/sr/messages.json b/apps/desktop/src/locales/sr/messages.json
index 54405b8a2ac..e3129ed3f1f 100644
--- a/apps/desktop/src/locales/sr/messages.json
+++ b/apps/desktop/src/locales/sr/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "Ова акција је заштићена. Да бисте наставили, поново унесите своју главну лозинку да бисте проверили идентитет."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Главна лозинка ажурирана"
   },
@@ -3532,6 +3535,22 @@
     "message": "Уобичајени формати",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Успех"
   },
diff --git a/apps/desktop/src/locales/sv/messages.json b/apps/desktop/src/locales/sv/messages.json
index 1ead0c46d60..2db7a1414ee 100644
--- a/apps/desktop/src/locales/sv/messages.json
+++ b/apps/desktop/src/locales/sv/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "Denna åtgärd är skyddad. För att fortsätta, vänligen verifiera din identitet genom att ange ditt huvudlösenord."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Huvudlösenord uppdaterades"
   },
@@ -3532,6 +3535,22 @@
     "message": "Vanliga format",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Lyckades"
   },
diff --git a/apps/desktop/src/locales/te/messages.json b/apps/desktop/src/locales/te/messages.json
index fdedc6a97e2..8780868a6b8 100644
--- a/apps/desktop/src/locales/te/messages.json
+++ b/apps/desktop/src/locales/te/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "This action is protected. To continue, please re-enter your master password to verify your identity."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Updated master password"
   },
@@ -3532,6 +3535,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/th/messages.json b/apps/desktop/src/locales/th/messages.json
index 3f37cd197fc..06663cac128 100644
--- a/apps/desktop/src/locales/th/messages.json
+++ b/apps/desktop/src/locales/th/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "This action is protected. To continue, please re-enter your master password to verify your identity."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Updated master password"
   },
@@ -3532,6 +3535,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/tr/messages.json b/apps/desktop/src/locales/tr/messages.json
index a84dd908621..be8d2540a05 100644
--- a/apps/desktop/src/locales/tr/messages.json
+++ b/apps/desktop/src/locales/tr/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "Bu işleme devam etmek için lütfen ana parolanızı yeniden girin."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Ana parola başarıyla ayarlandı"
+  },
   "updatedMasterPassword": {
     "message": "Ana parola güncellendi"
   },
@@ -3532,6 +3535,22 @@
     "message": "Sık kullanılan biçimler",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Başarılı"
   },
diff --git a/apps/desktop/src/locales/uk/messages.json b/apps/desktop/src/locales/uk/messages.json
index f7d8520bc30..ab4cbc5ff53 100644
--- a/apps/desktop/src/locales/uk/messages.json
+++ b/apps/desktop/src/locales/uk/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "Ця дія захищена. Щоб продовжити, повторно введіть головний пароль."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Головний пароль оновлено"
   },
@@ -3532,6 +3535,22 @@
     "message": "Поширені формати",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Успішно"
   },
diff --git a/apps/desktop/src/locales/vi/messages.json b/apps/desktop/src/locales/vi/messages.json
index f7b588e356a..97a3882039c 100644
--- a/apps/desktop/src/locales/vi/messages.json
+++ b/apps/desktop/src/locales/vi/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "Hành động này được bảo vệ. Để tiếp tục, vui lòng nhập lại mật khẩu chính của bạn để xác minh danh tính của bạn."
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Mật khẩu chính đã được cập nhật"
   },
@@ -3532,6 +3535,22 @@
     "message": "Định dạng chung",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "Thành công"
   },
diff --git a/apps/desktop/src/locales/zh_CN/messages.json b/apps/desktop/src/locales/zh_CN/messages.json
index ad3d97f467f..d9272844104 100644
--- a/apps/desktop/src/locales/zh_CN/messages.json
+++ b/apps/desktop/src/locales/zh_CN/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "此操作受到保护。若要继续，请重新输入您的主密码以验证您的身份。"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "主密码设置成功"
+  },
   "updatedMasterPassword": {
     "message": "已更新主密码"
   },
@@ -3532,6 +3535,22 @@
     "message": "常规格式",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "成功"
   },
diff --git a/apps/desktop/src/locales/zh_TW/messages.json b/apps/desktop/src/locales/zh_TW/messages.json
index ea017a14489..2d34071f587 100644
--- a/apps/desktop/src/locales/zh_TW/messages.json
+++ b/apps/desktop/src/locales/zh_TW/messages.json
@@ -2392,6 +2392,9 @@
   "passwordConfirmationDesc": {
     "message": "此操作受到保護。若要繼續，請重新輸入您的主密碼以驗證您的身份。"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "已更新主密碼"
   },
@@ -3532,6 +3535,22 @@
     "message": "常見格式",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "success": {
     "message": "成功"
   },

From f11d50ada7d0c440aee6d8603d4121409b35c305 Mon Sep 17 00:00:00 2001
From: Addison Beck <github@addisonbeck.com>
Date: Mon, 7 Jul 2025 17:17:52 -0400
Subject: [PATCH 073/239] build(nx): create per-lib tsconfig.eslint configs
 (#15519)

---
 libs/logging/tsconfig.eslint.json                           | 6 ++++++
 .../src/generators/files/tsconfig.eslint.json__tmpl__       | 6 ++++++
 libs/nx-plugin/tsconfig.eslint.json                         | 6 ++++++
 libs/storage-core/tsconfig.eslint.json                      | 6 ++++++
 libs/storage-test-utils/tsconfig.eslint.json                | 6 ++++++
 libs/user-core/tsconfig.eslint.json                         | 6 ++++++
 6 files changed, 36 insertions(+)
 create mode 100644 libs/logging/tsconfig.eslint.json
 create mode 100644 libs/nx-plugin/src/generators/files/tsconfig.eslint.json__tmpl__
 create mode 100644 libs/nx-plugin/tsconfig.eslint.json
 create mode 100644 libs/storage-core/tsconfig.eslint.json
 create mode 100644 libs/storage-test-utils/tsconfig.eslint.json
 create mode 100644 libs/user-core/tsconfig.eslint.json

diff --git a/libs/logging/tsconfig.eslint.json b/libs/logging/tsconfig.eslint.json
new file mode 100644
index 00000000000..3daf120441a
--- /dev/null
+++ b/libs/logging/tsconfig.eslint.json
@@ -0,0 +1,6 @@
+{
+  "extends": "../../tsconfig.base.json",
+  "files": [],
+  "include": ["src/**/*.ts", "src/**/*.js"],
+  "exclude": ["**/build", "**/dist"]
+}
diff --git a/libs/nx-plugin/src/generators/files/tsconfig.eslint.json__tmpl__ b/libs/nx-plugin/src/generators/files/tsconfig.eslint.json__tmpl__
new file mode 100644
index 00000000000..4e2f30c19be
--- /dev/null
+++ b/libs/nx-plugin/src/generators/files/tsconfig.eslint.json__tmpl__
@@ -0,0 +1,6 @@
+{
+  "extends": "<%= offsetFromRoot %>tsconfig.base.json",
+  "files": [],
+  "include": ["src/**/*.ts", "src/**/*.js"],
+  "exclude": ["**/build", "**/dist"]
+}
diff --git a/libs/nx-plugin/tsconfig.eslint.json b/libs/nx-plugin/tsconfig.eslint.json
new file mode 100644
index 00000000000..3daf120441a
--- /dev/null
+++ b/libs/nx-plugin/tsconfig.eslint.json
@@ -0,0 +1,6 @@
+{
+  "extends": "../../tsconfig.base.json",
+  "files": [],
+  "include": ["src/**/*.ts", "src/**/*.js"],
+  "exclude": ["**/build", "**/dist"]
+}
diff --git a/libs/storage-core/tsconfig.eslint.json b/libs/storage-core/tsconfig.eslint.json
new file mode 100644
index 00000000000..3daf120441a
--- /dev/null
+++ b/libs/storage-core/tsconfig.eslint.json
@@ -0,0 +1,6 @@
+{
+  "extends": "../../tsconfig.base.json",
+  "files": [],
+  "include": ["src/**/*.ts", "src/**/*.js"],
+  "exclude": ["**/build", "**/dist"]
+}
diff --git a/libs/storage-test-utils/tsconfig.eslint.json b/libs/storage-test-utils/tsconfig.eslint.json
new file mode 100644
index 00000000000..3daf120441a
--- /dev/null
+++ b/libs/storage-test-utils/tsconfig.eslint.json
@@ -0,0 +1,6 @@
+{
+  "extends": "../../tsconfig.base.json",
+  "files": [],
+  "include": ["src/**/*.ts", "src/**/*.js"],
+  "exclude": ["**/build", "**/dist"]
+}
diff --git a/libs/user-core/tsconfig.eslint.json b/libs/user-core/tsconfig.eslint.json
new file mode 100644
index 00000000000..3daf120441a
--- /dev/null
+++ b/libs/user-core/tsconfig.eslint.json
@@ -0,0 +1,6 @@
+{
+  "extends": "../../tsconfig.base.json",
+  "files": [],
+  "include": ["src/**/*.ts", "src/**/*.js"],
+  "exclude": ["**/build", "**/dist"]
+}

From 109fb7fb94c0dc026bb1934bf3e66d137b2d4886 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=E2=9C=A8=20Audrey=20=E2=9C=A8?= <ajensen@bitwarden.com>
Date: Tue, 8 Jul 2025 09:54:55 -0400
Subject: [PATCH 074/239] [PM-23531] rename `SendCreatedIcon` to
 `ActiveSendIcon` (#15528)

---
 .../popup/send-v2/send-created/send-created.component.ts      | 4 ++--
 .../src/icons/{send-created.icon.ts => active-send.icon.ts}   | 2 +-
 libs/tools/send/send-ui/src/icons/index.ts                    | 2 +-
 3 files changed, 4 insertions(+), 4 deletions(-)
 rename libs/tools/send/send-ui/src/icons/{send-created.icon.ts => active-send.icon.ts} (98%)

diff --git a/apps/browser/src/tools/popup/send-v2/send-created/send-created.component.ts b/apps/browser/src/tools/popup/send-v2/send-created/send-created.component.ts
index 89d1ad5e809..dd9e95b64a1 100644
--- a/apps/browser/src/tools/popup/send-v2/send-created/send-created.component.ts
+++ b/apps/browser/src/tools/popup/send-v2/send-created/send-created.component.ts
@@ -13,7 +13,7 @@ import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/pl
 import { SendView } from "@bitwarden/common/tools/send/models/view/send.view";
 import { SendService } from "@bitwarden/common/tools/send/services/send.service.abstraction";
 import { ButtonModule, IconModule, ToastService } from "@bitwarden/components";
-import { SendCreatedIcon } from "@bitwarden/send-ui";
+import { ActiveSendIcon } from "@bitwarden/send-ui";
 
 import { PopOutComponent } from "../../../../platform/popup/components/pop-out.component";
 import { PopupFooterComponent } from "../../../../platform/popup/layout/popup-footer.component";
@@ -36,7 +36,7 @@ import { PopupPageComponent } from "../../../../platform/popup/layout/popup-page
   ],
 })
 export class SendCreatedComponent {
-  protected sendCreatedIcon = SendCreatedIcon;
+  protected sendCreatedIcon = ActiveSendIcon;
   protected send: SendView;
   protected daysAvailable = 0;
   protected hoursAvailable = 0;
diff --git a/libs/tools/send/send-ui/src/icons/send-created.icon.ts b/libs/tools/send/send-ui/src/icons/active-send.icon.ts
similarity index 98%
rename from libs/tools/send/send-ui/src/icons/send-created.icon.ts
rename to libs/tools/send/send-ui/src/icons/active-send.icon.ts
index 099baebb9ad..da5932bf95c 100644
--- a/libs/tools/send/send-ui/src/icons/send-created.icon.ts
+++ b/libs/tools/send/send-ui/src/icons/active-send.icon.ts
@@ -1,6 +1,6 @@
 import { svgIcon } from "@bitwarden/components";
 
-export const SendCreatedIcon = svgIcon`
+export const ActiveSendIcon = svgIcon`
 <svg width="96" height="95" viewBox="0 0 96 95" fill="none" xmlns="http://www.w3.org/2000/svg">
   <path class="tw-stroke-art-primary" d="M89.4998 48.3919C89.4998 70.5749 70.9198 88.5573 47.9998 88.5573C46.0374 88.5573 44.1068 88.4257 42.217 88.1707M6.49976 48.3919C6.49976 26.2092 25.08 8.22656 47.9998 8.22656C51.8283 8.22656 55.5353 8.72824 59.0553 9.66744" stroke-linecap="round" stroke-linejoin="round"/>
   <path class="tw-stroke-art-primary" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" d="M5.47085 67.8617C2.60335 61.9801 1 55.4075 1 48.4729C1 23.3503 22.0426 2.98438 48 2.98438C52.3355 2.98438 56.534 3.55257 60.5205 4.61618M92.211 32.9993C94.016 37.8295 95 43.0399 95 48.4729C95 73.5956 73.9575 93.9614 48 93.9614C45.7775 93.9614 43.5911 93.8119 41.4508 93.5235" />
diff --git a/libs/tools/send/send-ui/src/icons/index.ts b/libs/tools/send/send-ui/src/icons/index.ts
index 4460070f43b..57636daadcf 100644
--- a/libs/tools/send/send-ui/src/icons/index.ts
+++ b/libs/tools/send/send-ui/src/icons/index.ts
@@ -1,3 +1,3 @@
 export { ExpiredSendIcon } from "./expired-send.icon";
 export { NoSendsIcon } from "./no-send.icon";
-export { SendCreatedIcon } from "./send-created.icon";
+export { ActiveSendIcon } from "./active-send.icon";

From aadb8853b14a01f13adb72e722ac7d1dc879cda9 Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Tue, 8 Jul 2025 09:19:52 -0500
Subject: [PATCH 075/239] [deps] Vault: Update @koa/multer to v4 (#15502)

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: Nick Krantz <125900171+nick-livefront@users.noreply.github.com>
---
 apps/cli/package.json |  2 +-
 package-lock.json     | 13 +++++++------
 package.json          |  2 +-
 3 files changed, 9 insertions(+), 8 deletions(-)

diff --git a/apps/cli/package.json b/apps/cli/package.json
index 520140a676d..bd77627f709 100644
--- a/apps/cli/package.json
+++ b/apps/cli/package.json
@@ -64,7 +64,7 @@
     ]
   },
   "dependencies": {
-    "@koa/multer": "3.1.0",
+    "@koa/multer": "4.0.0",
     "@koa/router": "13.1.0",
     "argon2": "0.41.1",
     "big-integer": "1.6.52",
diff --git a/package-lock.json b/package-lock.json
index 6b18b6f8af8..bde67319dad 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -27,7 +27,7 @@
         "@bitwarden/sdk-internal": "0.2.0-main.225",
         "@electron/fuses": "1.8.0",
         "@emotion/css": "11.13.5",
-        "@koa/multer": "3.1.0",
+        "@koa/multer": "4.0.0",
         "@koa/router": "13.1.0",
         "@microsoft/signalr": "8.0.7",
         "@microsoft/signalr-protocol-msgpack": "8.0.7",
@@ -204,7 +204,7 @@
       "version": "2025.6.1",
       "license": "SEE LICENSE IN LICENSE.txt",
       "dependencies": {
-        "@koa/multer": "3.1.0",
+        "@koa/multer": "4.0.0",
         "@koa/router": "13.1.0",
         "argon2": "0.41.1",
         "big-integer": "1.6.52",
@@ -7808,14 +7808,15 @@
       }
     },
     "node_modules/@koa/multer": {
-      "version": "3.1.0",
-      "resolved": "https://registry.npmjs.org/@koa/multer/-/multer-3.1.0.tgz",
-      "integrity": "sha512-ETf4OLpOew9XE9lyU+5HIqk3TCmdGAw9pUXgxzrlYip+PkxLGoU4meiVTxiW4B6lxdBNijb3DFQ7M2woLcDL1g==",
+      "version": "4.0.0",
+      "resolved": "https://registry.npmjs.org/@koa/multer/-/multer-4.0.0.tgz",
+      "integrity": "sha512-BY6hys3WVX1yL/gcfKWu94z1fJ6ayG1DEEw/s82DnulkaTbumwjF6XqSfNLKFcs8lnJb2QfMJ4DyK4bmF1NDZw==",
       "license": "MIT",
       "engines": {
-        "node": ">= 14"
+        "node": ">= 18"
       },
       "peerDependencies": {
+        "koa": ">=2",
         "multer": "*"
       }
     },
diff --git a/package.json b/package.json
index 8cd2e0991b0..ca84074ff26 100644
--- a/package.json
+++ b/package.json
@@ -163,7 +163,7 @@
     "@bitwarden/sdk-internal": "0.2.0-main.225",
     "@electron/fuses": "1.8.0",
     "@emotion/css": "11.13.5",
-    "@koa/multer": "3.1.0",
+    "@koa/multer": "4.0.0",
     "@koa/router": "13.1.0",
     "@microsoft/signalr": "8.0.7",
     "@microsoft/signalr-protocol-msgpack": "8.0.7",

From 437d27377b70b756caee1ae7c69865132d3bca13 Mon Sep 17 00:00:00 2001
From: "bw-ghapp[bot]" <178206702+bw-ghapp[bot]@users.noreply.github.com>
Date: Tue, 8 Jul 2025 16:46:53 +0200
Subject: [PATCH 076/239] Autosync the updated translations (#15470)

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>
Co-authored-by: Daniel James Smith <2670567+djsmith85@users.noreply.github.com>
---
 apps/web/src/locales/af/messages.json    | 100 +++++++++
 apps/web/src/locales/ar/messages.json    | 214 +++++++++++++------
 apps/web/src/locales/az/messages.json    | 100 +++++++++
 apps/web/src/locales/be/messages.json    | 100 +++++++++
 apps/web/src/locales/bg/messages.json    | 100 +++++++++
 apps/web/src/locales/bn/messages.json    | 100 +++++++++
 apps/web/src/locales/bs/messages.json    | 100 +++++++++
 apps/web/src/locales/ca/messages.json    | 100 +++++++++
 apps/web/src/locales/cs/messages.json    | 100 +++++++++
 apps/web/src/locales/cy/messages.json    | 100 +++++++++
 apps/web/src/locales/da/messages.json    | 100 +++++++++
 apps/web/src/locales/de/messages.json    | 100 +++++++++
 apps/web/src/locales/el/messages.json    | 100 +++++++++
 apps/web/src/locales/en_GB/messages.json | 100 +++++++++
 apps/web/src/locales/en_IN/messages.json | 100 +++++++++
 apps/web/src/locales/eo/messages.json    | 100 +++++++++
 apps/web/src/locales/es/messages.json    | 100 +++++++++
 apps/web/src/locales/et/messages.json    | 100 +++++++++
 apps/web/src/locales/eu/messages.json    | 100 +++++++++
 apps/web/src/locales/fa/messages.json    | 100 +++++++++
 apps/web/src/locales/fi/messages.json    | 100 +++++++++
 apps/web/src/locales/fil/messages.json   | 100 +++++++++
 apps/web/src/locales/fr/messages.json    | 100 +++++++++
 apps/web/src/locales/gl/messages.json    | 100 +++++++++
 apps/web/src/locales/he/messages.json    | 100 +++++++++
 apps/web/src/locales/hi/messages.json    | 100 +++++++++
 apps/web/src/locales/hr/messages.json    | 250 ++++++++++++++++-------
 apps/web/src/locales/hu/messages.json    | 100 +++++++++
 apps/web/src/locales/id/messages.json    | 100 +++++++++
 apps/web/src/locales/it/messages.json    | 100 +++++++++
 apps/web/src/locales/ja/messages.json    | 100 +++++++++
 apps/web/src/locales/ka/messages.json    | 100 +++++++++
 apps/web/src/locales/km/messages.json    | 100 +++++++++
 apps/web/src/locales/kn/messages.json    | 100 +++++++++
 apps/web/src/locales/ko/messages.json    | 100 +++++++++
 apps/web/src/locales/lv/messages.json    | 102 ++++++++-
 apps/web/src/locales/ml/messages.json    | 100 +++++++++
 apps/web/src/locales/mr/messages.json    | 100 +++++++++
 apps/web/src/locales/my/messages.json    | 100 +++++++++
 apps/web/src/locales/nb/messages.json    | 100 +++++++++
 apps/web/src/locales/ne/messages.json    | 100 +++++++++
 apps/web/src/locales/nl/messages.json    | 100 +++++++++
 apps/web/src/locales/nn/messages.json    | 100 +++++++++
 apps/web/src/locales/or/messages.json    | 100 +++++++++
 apps/web/src/locales/pl/messages.json    | 102 ++++++++-
 apps/web/src/locales/pt_BR/messages.json | 100 +++++++++
 apps/web/src/locales/pt_PT/messages.json | 100 +++++++++
 apps/web/src/locales/ro/messages.json    | 100 +++++++++
 apps/web/src/locales/ru/messages.json    | 100 +++++++++
 apps/web/src/locales/si/messages.json    | 100 +++++++++
 apps/web/src/locales/sk/messages.json    | 100 +++++++++
 apps/web/src/locales/sl/messages.json    | 100 +++++++++
 apps/web/src/locales/sr_CS/messages.json | 100 +++++++++
 apps/web/src/locales/sr_CY/messages.json | 100 +++++++++
 apps/web/src/locales/sv/messages.json    | 100 +++++++++
 apps/web/src/locales/te/messages.json    | 100 +++++++++
 apps/web/src/locales/th/messages.json    | 100 +++++++++
 apps/web/src/locales/tr/messages.json    | 100 +++++++++
 apps/web/src/locales/uk/messages.json    | 100 +++++++++
 apps/web/src/locales/vi/messages.json    | 100 +++++++++
 apps/web/src/locales/zh_CN/messages.json | 102 ++++++++-
 apps/web/src/locales/zh_TW/messages.json | 100 +++++++++
 62 files changed, 6335 insertions(+), 135 deletions(-)

diff --git a/apps/web/src/locales/af/messages.json b/apps/web/src/locales/af/messages.json
index 9350bcfc0ff..24e31fd32b2 100644
--- a/apps/web/src/locales/af/messages.json
+++ b/apps/web/src/locales/af/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Voeg toe"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Hoofwagwoord bygewerk"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "Daar was a 'n fout tydens die lees van die invoerlêer"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Accessed secret $SECRET_ID$.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Algemene formate",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Restart"
   },
diff --git a/apps/web/src/locales/ar/messages.json b/apps/web/src/locales/ar/messages.json
index f8a6dc1288b..cf29cc19d55 100644
--- a/apps/web/src/locales/ar/messages.json
+++ b/apps/web/src/locales/ar/messages.json
@@ -39,13 +39,13 @@
     "message": "إلغاء الأعضاء"
   },
   "restoreMembers": {
-    "message": "Restore members"
+    "message": "استعادة الأعضاء"
   },
   "cannotRestoreAccessError": {
-    "message": "Cannot restore organization access"
+    "message": "لا يمكن استعادة وصول المنظمة"
   },
   "allApplicationsWithCount": {
-    "message": "All applications ($COUNT$)",
+    "message": "جميع التطبيقات ($COUNT$)",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -54,10 +54,10 @@
     }
   },
   "createNewLoginItem": {
-    "message": "Create new login item"
+    "message": "إنشاء عنصر تسجيل دخول جديد"
   },
   "criticalApplicationsWithCount": {
-    "message": "Critical applications ($COUNT$)",
+    "message": "التطبيقات الحساسة ($COUNT$)",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -66,7 +66,7 @@
     }
   },
   "notifiedMembersWithCount": {
-    "message": "Notified members ($COUNT$)",
+    "message": "الأعضاء المبلّغون ($COUNT$)",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -93,34 +93,34 @@
     "message": "Select your most critical applications to discover at-risk passwords, and notify users to change those passwords."
   },
   "markCriticalApps": {
-    "message": "Mark critical apps"
+    "message": "وضع علامة على التطبيقات الحساسة"
   },
   "markAppAsCritical": {
-    "message": "Mark app as critical"
+    "message": "تعيين كتطبيق حساس"
   },
   "applicationsMarkedAsCriticalSuccess": {
-    "message": "Applications marked as critical"
+    "message": "التطبيقات المعلَّمة كتطبيقات حرجة"
   },
   "application": {
     "message": "تطبيق"
   },
   "atRiskPasswords": {
-    "message": "At-risk passwords"
+    "message": "كلمات المرور المعرضة للخطر"
   },
   "requestPasswordChange": {
     "message": "طلب تغيير كلمة المرور"
   },
   "totalPasswords": {
-    "message": "Total passwords"
+    "message": "إجمالي كلمات المرور"
   },
   "searchApps": {
     "message": "البحث في التطبيقات"
   },
   "atRiskMembers": {
-    "message": "At-risk members"
+    "message": "الأعضاء المعرضون للخطر"
   },
   "atRiskMembersWithCount": {
-    "message": "At-risk members ($COUNT$)",
+    "message": "الأعضاء المعرضون للخطر ($COUNT$)",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -129,7 +129,7 @@
     }
   },
   "atRiskApplicationsWithCount": {
-    "message": "At-risk applications ($COUNT$)",
+    "message": "التطبيقات المعرضة للخطر ($COUNT$)",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -138,13 +138,13 @@
     }
   },
   "atRiskMembersDescription": {
-    "message": "These members are logging into applications with weak, exposed, or reused passwords."
+    "message": "يقوم هؤلاء الأعضاء بتسجيل الدخول إلى التطبيقات باستخدام كلمات مرور ضعيفة أو مكشوفة أو مُعادة الاستخدام."
   },
   "atRiskMembersDescriptionNone": {
-    "message": "These are no members logging into applications with weak, exposed, or reused passwords."
+    "message": "يقوم هؤلاء الأعضاء بتسجيل الدخول إلى التطبيقات باستخدام كلمات مرور ضعيفة أو مكشوفة أو مُعادة الاستخدام."
   },
   "atRiskApplicationsDescription": {
-    "message": "These applications have weak, exposed, or reused passwords."
+    "message": "هذه التطبيقات ضعيفة أو مكشوفة أو أعيد استخدامها."
   },
   "atRiskApplicationsDescriptionNone": {
     "message": "These are no applications with weak, exposed, or reused passwords."
@@ -171,16 +171,16 @@
     "message": "إجمالي الأعضاء"
   },
   "atRiskApplications": {
-    "message": "At-risk applications"
+    "message": "التطبيقات المعرضة للخطر"
   },
   "totalApplications": {
-    "message": "Total applications"
+    "message": "كل التطبيقات"
   },
   "unmarkAsCriticalApp": {
-    "message": "Unmark as critical app"
+    "message": "إلغاء التحديد كتطبيق حرج"
   },
   "criticalApplicationSuccessfullyUnmarked": {
-    "message": "Critical application successfully unmarked"
+    "message": "تم إلغاء تصنيف التطبيق الحرج بنجاح"
   },
   "whatTypeOfItem": {
     "message": "ما هو نوع العنصر؟"
@@ -220,7 +220,7 @@
     "message": "ملاحظات"
   },
   "privateNote": {
-    "message": "Private note"
+    "message": "ملاحظة سرية"
   },
   "note": {
     "message": "ملاحظة"
@@ -247,7 +247,7 @@
     "message": "بيانات البطاقة"
   },
   "cardBrandDetails": {
-    "message": "$BRAND$ details",
+    "message": "تفاصيل $BRAND$",
     "placeholders": {
       "brand": {
         "content": "$1",
@@ -265,10 +265,10 @@
     "message": "خيارات الملء التلقائي"
   },
   "websiteUri": {
-    "message": "Website (URI)"
+    "message": "الموقع (URI)"
   },
   "websiteUriCount": {
-    "message": "Website (URI) $COUNT$",
+    "message": "الموقع (URI) $COUNT$",
     "description": "Label for an input field that contains a website URI. The input field is part of a list of fields, and the count indicates the position of the field in the list.",
     "placeholders": {
       "count": {
@@ -408,7 +408,7 @@
     "message": "د"
   },
   "cardExpiredTitle": {
-    "message": "Expired card"
+    "message": "بطاقة منتهية الصلاحية"
   },
   "cardExpiredMessage": {
     "message": "If you've renewed it, update the card's information"
@@ -726,7 +726,7 @@
     "message": "عرض العنصر"
   },
   "newItemHeader": {
-    "message": "New $TYPE$",
+    "message": "جديد $TYPE$",
     "placeholders": {
       "type": {
         "content": "$1",
@@ -735,7 +735,7 @@
     }
   },
   "editItemHeader": {
-    "message": "Edit $TYPE$",
+    "message": "تحرير $TYPE$",
     "placeholders": {
       "type": {
         "content": "$1",
@@ -744,7 +744,7 @@
     }
   },
   "viewItemType": {
-    "message": "View $ITEMTYPE$",
+    "message": "عرض $ITEMTYPE$",
     "placeholders": {
       "itemtype": {
         "content": "$1",
@@ -841,7 +841,7 @@
     "message": "نسخ العنوان"
   },
   "copyPhone": {
-    "message": "Copy phone"
+    "message": "نسخ الهاتف"
   },
   "copyEmail": {
     "message": "نسخ البريد الإلكتروني"
@@ -938,7 +938,7 @@
     }
   },
   "itemsMovedToOrg": {
-    "message": "Items moved to $ORGNAME$",
+    "message": "تم نقل العناصر إلى $ORGNAME$",
     "placeholders": {
       "orgname": {
         "content": "$1",
@@ -947,7 +947,7 @@
     }
   },
   "itemMovedToOrg": {
-    "message": "Item moved to $ORGNAME$",
+    "message": "تم نقل العناصر إلى $ORGNAME$",
     "placeholders": {
       "orgname": {
         "content": "$1",
@@ -1001,7 +1001,7 @@
     "message": "مستوى الوصول"
   },
   "accessing": {
-    "message": "Accessing"
+    "message": "الوصول"
   },
   "loggedOut": {
     "message": "تم تسجيل الخروج"
@@ -1040,7 +1040,7 @@
     "message": "لا"
   },
   "location": {
-    "message": "Location"
+    "message": "الموقع"
   },
   "loginOrCreateNewAccount": {
     "message": "قم بتسجيل الدخول أو أنشئ حساباً جديداً لتتمكن من الوصول إلى خزانتك السرية."
@@ -1070,7 +1070,7 @@
     "message": "تسجيل الدخول باستخدام مفتاح المرور"
   },
   "useSingleSignOn": {
-    "message": "Use single sign-on"
+    "message": "استخدام تسجيل الدخول الأحادي"
   },
   "welcomeBack": {
     "message": "مرحباً بعودتك"
@@ -1094,7 +1094,7 @@
     "message": "إنشاء مفتاح المرور..."
   },
   "creatingPasskeyLoadingInfo": {
-    "message": "Keep this window open and follow prompts from your browser."
+    "message": "ابق هذه النافذة مفتوحة واتبع الطلبات من المتصفح الخاص بك."
   },
   "errorCreatingPasskey": {
     "message": "خطأ في إنشاء مفتاح المرور"
@@ -1653,16 +1653,16 @@
     "message": "تم تقييد الحساب"
   },
   "passwordProtected": {
-    "message": "Password protected"
+    "message": "كلمة المرور محمية"
   },
   "filePasswordAndConfirmFilePasswordDoNotMatch": {
-    "message": "“File password”  and “Confirm file password“ do not match."
+    "message": "\"كلمة مرور الملف\" و \"تأكيد كلمة مرور الملف\" غير متطابقين."
   },
   "confirmVaultImport": {
-    "message": "Confirm vault import"
+    "message": "تأكيد تصدير الخزانة"
   },
   "confirmVaultImportDesc": {
-    "message": "This file is password-protected. Please enter the file password to import data."
+    "message": "هذا الملف محمي بكلمة مرور. الرجاء إدخال كلمة مرور الملف لاستيراد البيانات."
   },
   "exportSuccess": {
     "message": "تم تصدير بيانات الخزانة الخاصة بك"
@@ -1671,7 +1671,7 @@
     "message": "مولّد كلمات المرور"
   },
   "minComplexityScore": {
-    "message": "Minimum complexity score"
+    "message": "الحد الأدنى لدرجة التعقيد {0}"
   },
   "minNumbers": {
     "message": "الحد الأدنى للأرقام"
@@ -1685,7 +1685,7 @@
     "description": "deprecated. Use avoidAmbiguous instead."
   },
   "avoidAmbiguous": {
-    "message": "Avoid ambiguous characters",
+    "message": "تجنب الأحرف المبهمة",
     "description": "Label for the avoid ambiguous characters checkbox."
   },
   "length": {
@@ -1733,7 +1733,7 @@
     "message": "سجل المولد"
   },
   "clearGeneratorHistoryTitle": {
-    "message": "Clear generator history"
+    "message": "مسح سجل المولدات"
   },
   "cleargGeneratorHistoryDescription": {
     "message": "If you continue, all entries will be permanently deleted from generator's history. Are you sure you want to continue?"
@@ -1770,7 +1770,7 @@
     "message": "الكود"
   },
   "changeEmailDesc": {
-    "message": "We have emailed a verification code to $EMAIL$. Please check your email for this code and enter it below to finalize the email address change.",
+    "message": "لقد أرسلنا رمز التحقق بالبريد الإلكتروني إلى $EMAIL$. الرجاء التحقق من بريدك الإلكتروني لهذا الرمز وإدخاله أدناه لاستكمال تغيير عنوان البريد الإلكتروني.",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -1779,7 +1779,7 @@
     }
   },
   "loggedOutWarning": {
-    "message": "Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
+    "message": "سيتم تسجيل خروجك من الجلسة الحالية، مما يتطلب منك تسجيل الدخول مرة أخرى. وقد تظل الجلسات النشطة على أجهزة أخرى نشطة لمدة تصل إلى ساعة واحدة."
   },
   "emailChanged": {
     "message": "تم تغيير البريد الإلكتروني"
@@ -1794,7 +1794,7 @@
     "message": "الطلب معلًق"
   },
   "logBackInOthersToo": {
-    "message": "Please log back in. If you are using other Bitwarden applications log out and back in to those as well."
+    "message": "يرجى تسجيل الدخول مرة أخرى. إذا كنت تستخدم تطبيقات بيتواردن الأخرى قم بتسجيل الخروج والعودة إلى تلك التطبيقات أيضا."
   },
   "changeMasterPassword": {
     "message": "تغيير كلمة المرور الرئيسية"
@@ -1818,7 +1818,7 @@
     "message": "خوارزمية KDF"
   },
   "kdfIterations": {
-    "message": "KDF iterations"
+    "message": "تكرار KDF"
   },
   "kdfIterationsDesc": {
     "message": "Higher KDF iterations can help protect your master password from being brute forced by an attacker. We recommend a value of $VALUE$ or more.",
@@ -1861,7 +1861,7 @@
     "message": "منطقة خطرة"
   },
   "deauthorizeSessions": {
-    "message": "Deauthorize sessions"
+    "message": "إلغاء الإذن بالجلسات"
   },
   "deauthorizeSessionsDesc": {
     "message": "Concerned your account is logged in on another device? Proceed below to deauthorize all computers or devices that you have previously used. This security step is recommended if you previously used a public computer or accidentally saved your password on a device that isn't yours. This step will also clear all previously remembered two-step login sessions."
@@ -1891,7 +1891,7 @@
     "message": "New device login protection changes saved"
   },
   "sessionsDeauthorized": {
-    "message": "All sessions deauthorized"
+    "message": "تم إلغاء الإذن لجميع الجلسات"
   },
   "accountIsOwnedMessage": {
     "message": "This account is owned by $ORGANIZATIONNAME$",
@@ -1939,7 +1939,7 @@
     "message": "لقد تم إغلاق حسابك وتم حذف جميع البيانات المرتبطة به."
   },
   "deleteOrganizationWarning": {
-    "message": "Deleting your organization is permanent. It cannot be undone."
+    "message": "حذف حساب مؤسستك دائم. لا يمكن التراجع عنه."
   },
   "myAccount": {
     "message": "حسابي"
@@ -1963,24 +1963,24 @@
     "description": "This will be part of a larger sentence, that will read like this: If you don't have any data to import, you can create a new login instead. (Optional second half: You may need to wait until your administrator confirms your organization membership.)"
   },
   "onboardingImportDataDetailsPartTwoNoOrgs": {
-    "message": " instead.",
+    "message": " بدلاً من ذلك.",
     "description": "This will be part of a larger sentence, that will read like this: If you don't have any data to import, you can create a new item instead."
   },
   "onboardingImportDataDetailsPartTwoWithOrgs": {
-    "message": " instead. You may need to wait until your administrator confirms your organization membership.",
+    "message": " بدلاً من ذلك. قد تحتاج إلى الانتظار حتى يؤكد المسؤول الخاص بك عضوية مؤسستك.",
     "description": "This will be part of a larger sentence, that will read like this: If you don't have any data to import, you can create a new item instead. You may need to wait until your administrator confirms your organization membership."
   },
   "importError": {
     "message": "خطأ في الإستيراد"
   },
   "importErrorDesc": {
-    "message": "There was a problem with the data you tried to import. Please resolve the errors listed below in your source file and try again."
+    "message": "حدثت مشكلة في البيانات التي حاولت استيرادها. الرجاء حل الأخطاء المدرجة أدناه في الملف المصدر الخاص بك وحاول مرة أخرى."
   },
   "importSuccess": {
-    "message": "Data successfully imported"
+    "message": "تم استيراد البيانات بنجاح"
   },
   "importSuccessNumberOfItems": {
-    "message": "A total of $AMOUNT$ items were imported.",
+    "message": "تم استيراد مجموع العناصر $AMOUNT$.",
     "placeholders": {
       "amount": {
         "content": "$1",
@@ -1989,7 +1989,7 @@
     }
   },
   "dataExportSuccess": {
-    "message": "Data successfully exported"
+    "message": "تم استيراد البيانات بنجاح"
   },
   "importWarning": {
     "message": "You are importing data to $ORGANIZATION$. Your data may be shared with members of this organization. Do you want to proceed?",
@@ -2930,7 +2930,7 @@
     "message": "طريقة الدفع"
   },
   "noPaymentMethod": {
-    "message": "No payment method on file."
+    "message": "لا توجد طريقة دفع في الملف."
   },
   "addPaymentMethod": {
     "message": "إضافة طريقة دفع"
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "إضافة"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Master password saved"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "An error occurred when trying to read the import file"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Accessed secret $SECRET_ID$.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Restart"
   },
diff --git a/apps/web/src/locales/az/messages.json b/apps/web/src/locales/az/messages.json
index 062f0f35ff4..6f32a2704db 100644
--- a/apps/web/src/locales/az/messages.json
+++ b/apps/web/src/locales/az/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Əlavə et"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Güncəllənmiş ana parol"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "Daxilə köçürmə faylını oxumağa çalışarkən xəta baş verdi"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "$SECRET_ID$ sirrinə müraciət edildi.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Ortaq formatlar",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "$ORG$ abunəliyinizi davam etdirmək üçün, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Yenidən başlat"
   },
diff --git a/apps/web/src/locales/be/messages.json b/apps/web/src/locales/be/messages.json
index 05c49e30b44..e7a2c4a2f97 100644
--- a/apps/web/src/locales/be/messages.json
+++ b/apps/web/src/locales/be/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Дадаць"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Асноўны пароль абноўлены"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "Адбылася памылка падчас спробы прачытаць імпартаваны файл"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Атрыманы доступ да сакрэту $SECRET_ID$.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Restart"
   },
diff --git a/apps/web/src/locales/bg/messages.json b/apps/web/src/locales/bg/messages.json
index d3c7604f2d7..9e8718fb058 100644
--- a/apps/web/src/locales/bg/messages.json
+++ b/apps/web/src/locales/bg/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Добавяне"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Главната парола е зададена успешно"
+  },
   "updatedMasterPassword": {
     "message": "Главната парола е променена"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "Възникна грешка при опита за четене на файла за внасяне"
   },
+  "accessedSecretWithId": {
+    "message": "Осъществен е достъп до тайна с идентификатор: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Достъпена е тайната $SECRET_ID$.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Редактирана е тайна с идентификатор: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Изтрита е тайна с идентификатор: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Създадена е нова тайна с идентификатор: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Често използвани формати",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "Разпознаването на съвпадения чрез адреса е начинът, по който Битуорден определя кои елементи да предложи за автоматично попълване.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "„Регулярен израз“ е по-сложен метод, който е и по-рисков, тъй като може да застраши сигурността на данните за вписване.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "„Започва с“ е по-сложен метод, който е и по-рисков, тъй като може да застраши сигурността на данните за вписване.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "Повече относно разпознаването на съвпадения",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "За да продължите абонамента си за $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Попълвайте автоматично и сигурно паролите си с едно щракване на мишката"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Вземете добавката за браузър на Битуорден и се възползвайте от автоматичното попълване още днес"
+  },
+  "getTheExtension": {
+    "message": "Вземете добавката"
+  },
+  "addItLater": {
+    "message": "Добавяне по-късно"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "Не можете да попълвате автоматично пароли в браузъра без добавката"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Наистина ли не искате да свалите добавката сега?"
+  },
+  "skipToWebApp": {
+    "message": "Пропускане и преминаване към приложението по уеб"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Добавката на Битуорден е инсталирана!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Отворете добавката, за да се впишете и да можете да използвате автоматичното попълване."
+  },
+  "openBitwardenExtension": {
+    "message": "Отваряне на добавката на Битуорден"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "За съвети как да се възползвате от Битуорден, посетете",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Центъра за обучения",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Помощния център",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "С добавката за браузър на Битуорден можете лесно да създавате нови елементи за вписване, както и да имате достъп до тях направо от лентата с инструменти на браузъра си. Също така, можете да се вписвате лесно и бързо, чрез функцията за автоматично попълване."
+  },
   "restart": {
     "message": "Повторно пускане"
   },
diff --git a/apps/web/src/locales/bn/messages.json b/apps/web/src/locales/bn/messages.json
index c8539b19f79..ec9276e99c3 100644
--- a/apps/web/src/locales/bn/messages.json
+++ b/apps/web/src/locales/bn/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Add"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Master password saved"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "An error occurred when trying to read the import file"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Accessed secret $SECRET_ID$.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Restart"
   },
diff --git a/apps/web/src/locales/bs/messages.json b/apps/web/src/locales/bs/messages.json
index 7c611e9ad5a..18914ec040c 100644
--- a/apps/web/src/locales/bs/messages.json
+++ b/apps/web/src/locales/bs/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Add"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Master password saved"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "An error occurred when trying to read the import file"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Accessed secret $SECRET_ID$.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Restart"
   },
diff --git a/apps/web/src/locales/ca/messages.json b/apps/web/src/locales/ca/messages.json
index 0b5d5e96988..0b05c4a6a1c 100644
--- a/apps/web/src/locales/ca/messages.json
+++ b/apps/web/src/locales/ca/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Afig"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "La contrasenya mestra s'ha configurat correctament"
+  },
   "updatedMasterPassword": {
     "message": "Contrasenya mestra guardada"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "S'ha produït un error en intentar llegir el fitxer d'importació"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "S'ha accedit al secret $SECRET_ID$.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Formats comuns",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "Per mantenir la teua subscripció per $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Restart"
   },
diff --git a/apps/web/src/locales/cs/messages.json b/apps/web/src/locales/cs/messages.json
index 8a80664c6c2..c4ab2084f5f 100644
--- a/apps/web/src/locales/cs/messages.json
+++ b/apps/web/src/locales/cs/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Přidat"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Hlavní heslo bylo úspěšně nastaveno"
+  },
   "updatedMasterPassword": {
     "message": "Hlavní heslo bylo aktualizováno"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "V průběhu pokusu o přečtení souboru s importem se vyskytla chyba"
   },
+  "accessedSecretWithId": {
+    "message": "Přístup k tajnému klíči s identifikátorem: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Přistoupeno k tajnému klíči $SECRET_ID$.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Úprava tajného klíče s identifikátorem: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Smazání tajného klíče s identifikátorem: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Vytvoření nového tajného klíče s identifikátorem: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Společné formáty",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "Detekce shody URI je způsob, jakým Bitwarden identifikuje návrhy automatického vyplňování.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regulární výraz\" je pokročilá volba se zvýšeným rizikem odhalení přihlašovacích údajů.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Začíná na\" je pokročilá volba se zvýšeným rizikem odhalení přihlašovacích údajů.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "Další informace o detekci shody",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "Pro správu předplatného pro $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Bezpečné automatické vyplňování hesel jedním klepnutím"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Získejte rozšíření Bitwarden pro prohlížeč a začněte s automatickým vyplňováním ještě dnes"
+  },
+  "getTheExtension": {
+    "message": "Získat rozšíření"
+  },
+  "addItLater": {
+    "message": "Přidat později"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "Bez rozšíření prohlížeče nelze automaticky vyplňovat hesla"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Opravdu nechcete nyní přidat rozšíření?"
+  },
+  "skipToWebApp": {
+    "message": "Přeskočit na webovou aplikaci"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Rozšíření Bitwarden nainstalováno!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Otevřete rozšíření pro příhlášení a spuštění automatického vyplňování."
+  },
+  "openBitwardenExtension": {
+    "message": "Otevřít rozšíření Bitwarden"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "Pro tipy, jak začít používat Bitwarden, navštivte",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Centrum výuky",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Centrum nápovědy",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "Pomocí rozšíření Bitwarden pro prohlížeč můžete snadno vytvářet nová přihlašovací jména, přistupovat k uloženým přihlašovacím jménům přímo z panelu nástrojů prohlížeče a rychle se přihlašovat k účtům pomocí automatického vyplňování."
+  },
   "restart": {
     "message": "Restartovat"
   },
diff --git a/apps/web/src/locales/cy/messages.json b/apps/web/src/locales/cy/messages.json
index b8e3ccd5d25..5c9ccd6f54b 100644
--- a/apps/web/src/locales/cy/messages.json
+++ b/apps/web/src/locales/cy/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Add"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Master password saved"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "An error occurred when trying to read the import file"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Accessed secret $SECRET_ID$.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Restart"
   },
diff --git a/apps/web/src/locales/da/messages.json b/apps/web/src/locales/da/messages.json
index 1f288af356f..c1d88ad0ea9 100644
--- a/apps/web/src/locales/da/messages.json
+++ b/apps/web/src/locales/da/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Tilføj"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Hovedadgangskode gemt"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "En fejl opstod under forsøget på at læse importfilen"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Tilgået hemmelighed $SECRET_ID$.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Almindelige formater",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "For at bibeholde abonnementet på $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Restart"
   },
diff --git a/apps/web/src/locales/de/messages.json b/apps/web/src/locales/de/messages.json
index c065f26f98d..e034662d484 100644
--- a/apps/web/src/locales/de/messages.json
+++ b/apps/web/src/locales/de/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Hinzufügen"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master-Passwort erfolgreich eingerichtet"
+  },
   "updatedMasterPassword": {
     "message": "Master-Passwort gespeichert"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "Beim Lesen der Importdatei ist ein Fehler aufgetreten"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Auf Geheimnis $SECRET_ID$ zugegriffen.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Gängigste Formate",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "Um dein Abonnement für $ORG$ zu erhalten, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Neustarten"
   },
diff --git a/apps/web/src/locales/el/messages.json b/apps/web/src/locales/el/messages.json
index b8efb914a34..b333a6c30ed 100644
--- a/apps/web/src/locales/el/messages.json
+++ b/apps/web/src/locales/el/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Προσθήκη"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Ενημερώθηκε ο κύριος κωδικός πρόσβασης"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "An error occurred when trying to read the import file"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Accessed secret $SECRET_ID$.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Κοινές μορφές",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "Για να διατηρήσετε τη συνδρομή σας στο $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Επανεκκίνηση"
   },
diff --git a/apps/web/src/locales/en_GB/messages.json b/apps/web/src/locales/en_GB/messages.json
index bf15dd133f9..da91aca75fd 100644
--- a/apps/web/src/locales/en_GB/messages.json
+++ b/apps/web/src/locales/en_GB/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Add"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Master password saved"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "An error occurred when trying to read the import file"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Accessed secret $SECRET_ID$.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Centre",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Centre",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Restart"
   },
diff --git a/apps/web/src/locales/en_IN/messages.json b/apps/web/src/locales/en_IN/messages.json
index d290ea148ad..3a60b335255 100644
--- a/apps/web/src/locales/en_IN/messages.json
+++ b/apps/web/src/locales/en_IN/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Add"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Master password saved"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "An error occurred when trying to read the import file"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Accessed secret $SECRET_ID$.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Centre",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Centre",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Restart"
   },
diff --git a/apps/web/src/locales/eo/messages.json b/apps/web/src/locales/eo/messages.json
index 49924ab03fe..a80aafad642 100644
--- a/apps/web/src/locales/eo/messages.json
+++ b/apps/web/src/locales/eo/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Aldoni"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Ĉefpasvorto Estas Aktualigita"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "An error occurred when trying to read the import file"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Aliĝis al sekreto $SECRET_ID$.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Relanĉi"
   },
diff --git a/apps/web/src/locales/es/messages.json b/apps/web/src/locales/es/messages.json
index 253507109a8..4f0a5587fc1 100644
--- a/apps/web/src/locales/es/messages.json
+++ b/apps/web/src/locales/es/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Añadir"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Contraseña maestra actualizada"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "Ocurrió un error al intentar leer el archivo importado"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Acceso secreto $SECRET_ID$.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Formatos comunes",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "Para mantener tu suscripción a $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Reiniciar"
   },
diff --git a/apps/web/src/locales/et/messages.json b/apps/web/src/locales/et/messages.json
index 04b51e7c23b..403bd5d7049 100644
--- a/apps/web/src/locales/et/messages.json
+++ b/apps/web/src/locales/et/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Lisa"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Uuendas ülemparooli"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "An error occurred when trying to read the import file"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Accessed secret $SECRET_ID$.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Restart"
   },
diff --git a/apps/web/src/locales/eu/messages.json b/apps/web/src/locales/eu/messages.json
index 30f3f5488d7..86246581ca9 100644
--- a/apps/web/src/locales/eu/messages.json
+++ b/apps/web/src/locales/eu/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Gehitu"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Pasahitz nagusia eguneratuta"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "An error occurred when trying to read the import file"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Accessed secret $SECRET_ID$.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Restart"
   },
diff --git a/apps/web/src/locales/fa/messages.json b/apps/web/src/locales/fa/messages.json
index 99cdefe5695..3836079adc1 100644
--- a/apps/web/src/locales/fa/messages.json
+++ b/apps/web/src/locales/fa/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "افزودن"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "کلمه عبور اصلی ذخیره شد"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "هنگام تلاش برای خواندن فایل درون ریزی شده خطایی رخ داد"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "به $SECRET_ID$ مخفی دسترسی پیدا کرد.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "فرمت‌های رایج",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "برای حفظ اشتراک خود در $ORG$، ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "راه اندازی مجدد"
   },
diff --git a/apps/web/src/locales/fi/messages.json b/apps/web/src/locales/fi/messages.json
index 9f6afee3713..7eb5783ddfc 100644
--- a/apps/web/src/locales/fi/messages.json
+++ b/apps/web/src/locales/fi/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Lisää"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Pääsalasana on päivitetty"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "Tuontitiedostoa luettaessa tapahtui virhe."
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Avasi salaisuuden $SECRET_ID$.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Yleiset muodot",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "Ylläpitääksesi organisaation $ORG$ tilausta, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Restart"
   },
diff --git a/apps/web/src/locales/fil/messages.json b/apps/web/src/locales/fil/messages.json
index 4794aef1d99..8ce0e5095d3 100644
--- a/apps/web/src/locales/fil/messages.json
+++ b/apps/web/src/locales/fil/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Magdagdag"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Master password na save"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "May nangyaring error kapag sinusubukang basahin ang import file"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Naka-access sa secret $SECRET_ID$.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Restart"
   },
diff --git a/apps/web/src/locales/fr/messages.json b/apps/web/src/locales/fr/messages.json
index 3abcdf9a999..46d5af15fff 100644
--- a/apps/web/src/locales/fr/messages.json
+++ b/apps/web/src/locales/fr/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Ajouter"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Mot de passe principal défini avec succès"
+  },
   "updatedMasterPassword": {
     "message": "Mot de passe principal enregistré"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "Une erreur est survenue lors de la lecture du fichier importé"
   },
+  "accessedSecretWithId": {
+    "message": "A accédé un secret avec identifiant : $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Accès au secret $SECRET_ID$.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "A modifié un secret avec identifiant : $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "A supprimé un secret avec identifiant : $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "A créé un secret avec identifiant : $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Formats communs",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "La détection de correspondance d'URL est la façon dont Bitwarden identifie les suggestions de remplissage automatique.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "« Expression régulière » est une option avancée avec un risque accru d'exposer les identifiants.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "« Commence par » est une option avancée avec un risque accru d'exposer les identifiants.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "En savoir plus sur la détection de correspondance",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "Afin de maintenir votre abonnement pour $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Remplissez automatiquement vos mots de passe en un clic"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Obtenez l'extension de navigateur Bitwarden et commencez à remplir automatiquement dès aujourd'hui"
+  },
+  "getTheExtension": {
+    "message": "Obtenez l'extension"
+  },
+  "addItLater": {
+    "message": "Ajoutez la plus tard"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "Vous ne pouvez pas saisir automatiquement les mots de passe sans l'extension de navigateur"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Êtes-vous sûr de ne pas vouloir ajouter l'extension maintenant ?"
+  },
+  "skipToWebApp": {
+    "message": "Passer à l'application web"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "L'extension Bitwarden est installée !"
+  },
+  "openExtensionToAutofill": {
+    "message": "Ouvrez l'extension pour vous connecter et démarrer le remplissage automatique."
+  },
+  "openBitwardenExtension": {
+    "message": "Ouvrir l'extension Bitwarden"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "Pour des conseils sur les débuts avec Bitwarden, visitez le",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Centre d'apprentissage",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Centre d’aide",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "Avec l'extension de navigateur Bitwarden, vous pouvez facilement créer de nouveaux identifiants, accéder à vos identifiants enregistrés directement à partir de la barre d'outils de votre navigateur, et vous connecter rapidement aux comptes en utilisant le remplissage automatique de Bitwarden."
+  },
   "restart": {
     "message": "Redémarrer"
   },
diff --git a/apps/web/src/locales/gl/messages.json b/apps/web/src/locales/gl/messages.json
index 9ed6e922300..b294f322bb2 100644
--- a/apps/web/src/locales/gl/messages.json
+++ b/apps/web/src/locales/gl/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Add"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Master password saved"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "An error occurred when trying to read the import file"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Accessed secret $SECRET_ID$.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Restart"
   },
diff --git a/apps/web/src/locales/he/messages.json b/apps/web/src/locales/he/messages.json
index e569d94437e..159f5056b6b 100644
--- a/apps/web/src/locales/he/messages.json
+++ b/apps/web/src/locales/he/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "הוסף"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "הסיסמה הראשית נשמרה"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "אירעה שגיאה בעת ניסיון לקרוא את קובץ הייבוא"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "ניגש אל סוד $SECRET_ID$.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "פורמטים נפוצים",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "כדי לשמור על המנוי שלך עבור$ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Restart"
   },
diff --git a/apps/web/src/locales/hi/messages.json b/apps/web/src/locales/hi/messages.json
index f6e2e491f49..8b97a5610a5 100644
--- a/apps/web/src/locales/hi/messages.json
+++ b/apps/web/src/locales/hi/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Add"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Master password saved"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "An error occurred when trying to read the import file"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Accessed secret $SECRET_ID$.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Restart"
   },
diff --git a/apps/web/src/locales/hr/messages.json b/apps/web/src/locales/hr/messages.json
index ef5730fb6b6..9c55f731058 100644
--- a/apps/web/src/locales/hr/messages.json
+++ b/apps/web/src/locales/hr/messages.json
@@ -99,7 +99,7 @@
     "message": "Označi aplikacije kao kritične"
   },
   "applicationsMarkedAsCriticalSuccess": {
-    "message": "Applications marked as critical"
+    "message": "Aplikacije označene kao kritične"
   },
   "application": {
     "message": "Aplikacija"
@@ -141,13 +141,13 @@
     "message": "Ovi članovi se prijavljuju u aplikacije slabim, izloženim ili ponovno korištenim lozinkama."
   },
   "atRiskMembersDescriptionNone": {
-    "message": "These are no members logging into applications with weak, exposed, or reused passwords."
+    "message": "Nema članova koji se prijavljuju slabim, izloženim ili ponovno korištenim lozinkama."
   },
   "atRiskApplicationsDescription": {
     "message": "Ove aplikacije imaju slabe, izložene ili ponovno korištene lozinke."
   },
   "atRiskApplicationsDescriptionNone": {
-    "message": "These are no applications with weak, exposed, or reused passwords."
+    "message": "Nema aplikacija sa slabim, izloženim ili ponovno korištenim lozinkama."
   },
   "atRiskMembersDescriptionWithApp": {
     "message": "Ovi članovi se u $APPNAME$ prijavljuju slabim, izloženim ili ponovno korištenim lozinkama.",
@@ -159,7 +159,7 @@
     }
   },
   "atRiskMembersDescriptionWithAppNone": {
-    "message": "There are no at risk members for $APPNAME$.",
+    "message": "Nema izloženih članova za $APPNAME$.",
     "placeholders": {
       "appname": {
         "content": "$1",
@@ -2154,16 +2154,16 @@
     "message": "Uključivanje prijave dvostrukom autentifikacijom može ti trajno onemogućiti pristup Bitwarden računu. Kôd za oporavak ti omogućuje pristup računu u slučaju kada više ne možeš koristiti redovnog pružatelja prijave dvostrukom autentifikacijom (npr. izgubiš svoj uređaj). Bitwarden podrška neće ti moći pomoći ako izgubiš pristup svojem računu. Savjetujemo da zapišeš ili ispišeš kôd za oporavak i spremiš ga na sigurno mjesto."
   },
   "restrictedItemTypePolicy": {
-    "message": "Remove card item type"
+    "message": "Ukloni stavku Platna kartica"
   },
   "restrictedItemTypePolicyDesc": {
-    "message": "Do not allow members to create card item types. Existing cards will be automatically removed."
+    "message": "Nemoj dozvoliti članovima stvaranje stavaka vrste Platna kartica. Postojeće stavke ove vrste biti će automatski uklonjenje."
   },
   "restrictCardTypeImport": {
-    "message": "Cannot import card item types"
+    "message": "Ne mogu uvesti stavke vrste Platna kartica"
   },
   "restrictCardTypeImportDesc": {
-    "message": "A policy set by 1 or more organizations prevents you from importing cards to your vaults."
+    "message": "Pravila jedne ili više organizacija onemogućuju uvoz stavke vrste Platna kartica u tvoj trezor."
   },
   "yourSingleUseRecoveryCode": {
     "message": "Tvoj jednokratni kôd za oporavak može se koristiti za isključivanje prijave dvostruke autentifikacije u slučaju da izgubiš pristup svom davatelju usluge dvostruke autentifikacije. Bitwarden preporučuje da zapišeš kôd za oporavak i čuvaš ga na sigurnom mjestu."
@@ -2225,7 +2225,7 @@
     "message": "Onemogući"
   },
   "orgUserDetailsNotFound": {
-    "message": "Member details not found."
+    "message": "Detalji člana nisu pronađeni."
   },
   "revokeAccess": {
     "message": "Opozovi pristup"
@@ -3096,7 +3096,7 @@
     }
   },
   "planNameFamilies": {
-    "message": "Obitelji"
+    "message": "Families"
   },
   "planDescFamilies": {
     "message": "Za privatnu upotrebu, za dijeljenje s obitelji i prijateljima."
@@ -3276,7 +3276,7 @@
     "message": "Zadana zbirka"
   },
   "myItems": {
-    "message": "My Items"
+    "message": "Moje stavke"
   },
   "getHelp": {
     "message": "Potraži pomoć"
@@ -3348,7 +3348,7 @@
     "message": "SSO vanjski Id"
   },
   "ssoExternalIdDesc": {
-    "message": "SSO External ID is an unencrypted reference between Bitwarden and your configured SSO provider."
+    "message": "SSO vanjski ID je nešifrirana referenca između Bitwardena i tvojeg konfiguriranog SSO davatelja usluge."
   },
   "nestCollectionUnder": {
     "message": "Ugnijezdi zbirku pod"
@@ -4094,7 +4094,7 @@
     "message": "Ažuriraj preglednik"
   },
   "generatingYourRiskInsights": {
-    "message": "Generating your Risk Insights..."
+    "message": "Stvaranje tvojih uvida u rizik..."
   },
   "updateBrowserDesc": {
     "message": "Koristiš nepodržani preglednik. Web trezor možda neće ispravno raditi."
@@ -4546,10 +4546,10 @@
     "message": "Nakon ažuriranja svojeg ključa za šifriranje, obavezno se trebaš odjaviti i ponovno prijaviti u sve Bitwarden aplikacije koje trenutno koristiš (npr. mobilna aplikacija, proširenje preglednika, ...). Ako se ne odjaviš i ponovno prijaviš (čime se preuzima tvoj novi ključ za šifriranje) može doći do oštećenja spremljenih podataka. Pokušati ćemo te automatski odjaviti, no, to bi možda moglo potrajati."
   },
   "updateEncryptionKeyAccountExportWarning": {
-    "message": "Any account restricted exports you have saved will become invalid."
+    "message": "Svi prethodni izvozi ograničeni ovim računom postati će nevažeći."
   },
   "legacyEncryptionUnsupported": {
-    "message": "Legacy encryption is no longer supported. Please contact support to recover your account."
+    "message": "Zastarjelo šifriranje više nije podržano. Obrati se podršci za oporavak računa."
   },
   "subscription": {
     "message": "Pretplata"
@@ -5376,7 +5376,7 @@
     "message": "Pristup u nuždi odbijen"
   },
   "grantorDetailsNotFound": {
-    "message": "Grantor details not found"
+    "message": "Podaci o davatelju nisu pronađeni"
   },
   "passwordResetFor": {
     "message": "Lozinka za $USER$ resetirana. Sada se možeš prijaviti novom lozinkom.",
@@ -5388,7 +5388,7 @@
     }
   },
   "organizationDataOwnership": {
-    "message": "Enforce organization data ownership"
+    "message": "Provedi vlasništvo nad podacima organizacije"
   },
   "personalOwnership": {
     "message": "Ukloni osobni trezor"
@@ -5704,7 +5704,7 @@
     "message": "WebAuthn uspješno ovjeren! Možeš zatvoriti ovu karticu."
   },
   "yourNewPasswordCannotBeTheSameAsYourCurrentPassword": {
-    "message": "Your new password cannot be the same as your current password."
+    "message": "Tvoja nova lozinka ne može biti ista kao tvoja trenutna lozinka."
   },
   "hintEqualsPassword": {
     "message": "Podsjetnik za lozinku ne može biti isti kao lozinka."
@@ -5782,7 +5782,7 @@
     }
   },
   "emergencyAccessLoggedOutWarning": {
-    "message": "Proceeding will log $NAME$ out of their current session, requiring them to log back in. Active sessions on other devices may continue to remain active for up to one hour.",
+    "message": "Ako nastaviš, biti će zatvorena trenutna sesija za $NAME$, što će zahtijevati ponovnu prijavu. Aktivne sesije na drugim uređajima ostati će aktivne još jedan sat.",
     "placeholders": {
       "name": {
         "content": "$1",
@@ -5797,7 +5797,7 @@
     "message": "Jedno ili više organizacijskih pravila zahtijeva da glavna lozinka ispunjava sljedeće uvjete:"
   },
   "changePasswordDelegationMasterPasswordPolicyInEffect": {
-    "message": "One or more organization policies require the master password to meet the following requirements:"
+    "message": "Jedno ili više organizacijskih pravila zahtijeva da glavna lozinka ispunjava sljedeće uvjete:"
   },
   "resetPasswordSuccess": {
     "message": "Uspješno ponovno postalvjena lozinka!"
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Dodaj"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Glavna lozinka je uspješno postavljena"
+  },
   "updatedMasterPassword": {
     "message": "Glavna lozinka ažurirana"
   },
@@ -6324,16 +6327,16 @@
     "message": "Sponzorirani obiteljski paket"
   },
   "noSponsoredFamiliesMessage": {
-    "message": "No sponsored families"
+    "message": "Nema sponzoriranog Families paketa"
   },
   "nosponsoredFamiliesDetails": {
-    "message": "Sponsored non-member families plans will display here"
+    "message": "Sponzorirani ne-obiteljski paketi biti će prikazani ovdje"
   },
   "sponsorshipFreeBitwardenFamilies": {
-    "message": "Members of your organization are eligible for Free Bitwarden Families. You can sponsor Free Bitwarden Families for employees who are not a member of your Bitwarden organization. Sponsoring a non-member requires an available seat within your organization."
+    "message": "Članovi tvoje organizacije ispunjavaju uvjete za besplatni Bitwarden Families paket. Možeš sponzorirati besplatni Bitwarden Families paket za zaposlenike koji nisu članovi tvoje Bitwarden organizacije. Sponzoriranje ne-člana zahtijeva dostupno mjesto unutar vaše organizacije."
   },
   "sponsoredFamiliesRemoveActiveSponsorship": {
-    "message": "When you remove an active sponsorship, a seat within your organization will be available after the renewal date of the sponsored organization."
+    "message": "Kada ukloniš aktivno sponzorstvo, mjesto unutar tvoje organizacije bit će dostupno nakon datuma obnove sponzorirane organizacije."
   },
   "sponsoredFamiliesEligible": {
     "message": "Ti i tvoja obitelj ispunjavate uvjete za besplatni Bitwarden Families. Iskoristiti ponudu svojom e-poštom kako bi zaštitio svoje podatke čak i kada nisi na poslu."
@@ -6342,28 +6345,28 @@
     "message": "Iskoristi svoju ponudu za besplatni Bitwarden Families paket već danas kako bi tvoji podaci bili sigurni čak i kada nisi na poslu."
   },
   "sponsoredFamiliesIncludeMessage": {
-    "message": "The Bitwarden for Families plan includes"
+    "message": "Bitwarden Families paket uključuje"
   },
   "sponsoredFamiliesPremiumAccess": {
     "message": "Premium pristup do 6 korisnika"
   },
   "sponsoredFamiliesSharedCollectionsForFamilyMembers": {
-    "message": "Shared collections for family members"
+    "message": "Dijeljene zbirke za članove obitelji"
   },
   "memberFamilies": {
-    "message": "Member families"
+    "message": "Families člana"
   },
   "noMemberFamilies": {
-    "message": "No member families"
+    "message": "Nema članskih Families"
   },
   "noMemberFamiliesDescription": {
-    "message": "Members who have redeemed family plans will display here"
+    "message": "Članovi koji su iskoristili obiteljske pakete biti će prikazani ovdje"
   },
   "membersWithSponsoredFamilies": {
-    "message": "Members of your organization are eligible for Free Bitwarden Families. Here you can see members who have sponsored a Families organization."
+    "message": "Članovi tvoje organizacije ispunjavaju uvjete za besplatni Bitwarden Families paket. Ovdje možeš vidjeti članove koji su sponzorirali Families organizaciju."
   },
   "organizationHasMemberMessage": {
-    "message": "A sponsorship cannot be sent to $EMAIL$ because they are a member of your organization.",
+    "message": "Nije moguće poslati sponzorstvo na $EMAIL$ jer je taj korisnik član tvoje organizacije.",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -6423,7 +6426,7 @@
     "message": "Račun iskorišten"
   },
   "revokeAccountMessage": {
-    "message": "Revoke account $NAME$",
+    "message": "Opozovi račun $NAME$",
     "placeholders": {
       "name": {
         "content": "$1",
@@ -6495,10 +6498,10 @@
     "message": "Nevažeći kôd za provjeru"
   },
   "removeMasterPasswordForOrganizationUserKeyConnector": {
-    "message": "A master password is no longer required for members of the following organization. Please confirm the domain below with your organization administrator."
+    "message": "Glavna lozinka više nije obavezna za članove ove organizacije. Provjeri prikazanu domenu sa svojim administratorom."
   },
   "keyConnectorDomain": {
-    "message": "Key Connector domain"
+    "message": "Domena konektora ključa"
   },
   "leaveOrganization": {
     "message": "Napusti organizaciju"
@@ -6849,16 +6852,16 @@
     "message": "Generiraj fraznu lozinku"
   },
   "passwordGenerated": {
-    "message": "Password generated"
+    "message": "Lozinka generirana"
   },
   "passphraseGenerated": {
-    "message": "Passphrase generated"
+    "message": "Frazna lozinka generirana"
   },
   "usernameGenerated": {
-    "message": "Username generated"
+    "message": "Korisničko ime generirano"
   },
   "emailGenerated": {
-    "message": "Email generated"
+    "message": "e-pošta generirana"
   },
   "spinboxBoundariesHint": {
     "message": "Vrijednost mora biti u rasponu $MIN$ - $MAX$.",
@@ -6924,7 +6927,7 @@
     "message": "Koristi ovu lozinku"
   },
   "useThisPassphrase": {
-    "message": "Use this passphrase"
+    "message": "Koristi ovu fraznu lozinku"
   },
   "useThisUsername": {
     "message": "Koristi ovo korisničko ime"
@@ -7319,7 +7322,7 @@
     "message": "Prati korake za dovršetak prijave."
   },
   "followTheStepsBelowToFinishLoggingInWithSecurityKey": {
-    "message": "Follow the steps below to finish logging in with your security key."
+    "message": "Prati korake za dovršetak prijave svojim sigurnosnim ključem."
   },
   "launchDuo": {
     "message": "Pokreni Duo"
@@ -7645,7 +7648,7 @@
     "description": "Notifies that a service account has been updated"
   },
   "typeOrSelectProjects": {
-    "message": "Type or select projects",
+    "message": "Upiši ili odaberi projekte",
     "description": "Instructions for selecting projects for a service account"
   },
   "newSaTypeToFilter": {
@@ -7732,7 +7735,7 @@
     "description": "Title for the section displaying access tokens."
   },
   "createAccessToken": {
-    "message": "Create access token",
+    "message": "Stvori pristupni token",
     "description": "Button label for creating a new access token."
   },
   "expires": {
@@ -8002,7 +8005,7 @@
     "message": "Pozovi člana"
   },
   "addSponsorship": {
-    "message": "Add sponsorship"
+    "message": "Dodaj sponzorstvo"
   },
   "needsConfirmation": {
     "message": "Treba potvrdu"
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "Pojavila se greška prilikom pokušaja čitanja uvozne datoteke"
   },
+  "accessedSecretWithId": {
+    "message": "Pristupljeno tajni s identifikatorom: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Pristupljeno tajni $SECRET_ID$.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Uređena tajna s identifikatorom: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Izbrisana tajna s identifikatorom: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Stvorena nova tajna s identifikatorom: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8734,7 +8773,7 @@
     "message": "Omogući brisanje zbirki samo vlasnicima i adminima"
   },
   "limitItemDeletionDescription": {
-    "message": "Limit item deletion to members with the Manage collection permissions"
+    "message": "Ograniči brisanje stavke samo članovima koji imaju dozvolu „Moguće upravljanje”"
   },
   "allowAdminAccessToAllCollectionItemsDesc": {
     "message": "Vlasnici i admini mogu upravljati svim zbirkama i stavkama"
@@ -8868,6 +8907,22 @@
     "message": "Uobičajeni oblici",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "Za održavanje svoje pretplate za $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -9457,19 +9512,19 @@
     "message": "Upravljanje naplatom s Portala pružatelja usluga"
   },
   "continueSettingUp": {
-    "message": "Continue setting up Bitwarden"
+    "message": "Nastavi Bitwarden postavljanje"
   },
   "continueSettingUpFreeTrial": {
     "message": "Nastavi s postavljanjem besplatne probe Bitwardena"
   },
   "continueSettingUpPasswordManager": {
-    "message": "Continue setting up Bitwarden Password Manager"
+    "message": "Nastavi postavljanje Bitwarden upravitelja lozinki"
   },
   "continueSettingUpFreeTrialPasswordManager": {
     "message": "Nastavi s postavljanjem besplatne probe Bitwarden Upravitelja Lozinki"
   },
   "continueSettingUpSecretsManager": {
-    "message": "Continue setting up Bitwarden Secrets Manager"
+    "message": "Nastavi postavljanje Bitwarden Secrets Managera"
   },
   "continueSettingUpFreeTrialSecretsManager": {
     "message": "Nastavi s postavljanjem besplatne probe Btwarden Secrets Managera"
@@ -10329,10 +10384,10 @@
     "message": "Naziv organizacije ne može biti duži od 50 znakova."
   },
   "rotationCompletedTitle": {
-    "message": "Key rotation successful"
+    "message": "Rotacija ključa uspjela"
   },
   "rotationCompletedDesc": {
-    "message": "Your master password and encryption keys have been updated. Your other devices have been logged out."
+    "message": "Tvoja glavna lozinka i ključ za šifriranje su ažurirani. Tvoji uređaji su odjavljeni."
   },
   "trustUserEmergencyAccess": {
     "message": "Vjeruj i potvrdi korisnika"
@@ -10347,19 +10402,19 @@
     "message": "Nemoj vjerovati"
   },
   "organizationNotTrusted": {
-    "message": "Organization is not trusted"
+    "message": "Organizacija nije pouzdana"
   },
   "emergencyAccessTrustWarning": {
-    "message": "For the security of your account, only confirm if you have granted emergency access to this user and their fingerprint matches what is displayed in their account"
+    "message": "Radi sigurnosti tvojeg računa, potvrdi samo ako je ovom korisniku odobren pristup u hitnim slučajevima i ako se otisak prsta podudara s onim prikazanim u računu"
   },
   "orgTrustWarning": {
-    "message": "For the security of your account, only proceed if you are a member of this organization, have account recovery enabled, and the fingerprint displayed below matches the organization's fingerprint."
+    "message": "Radi sigurnosti tvojeg računa, nastavi samo ako si član ove organizacije, imaš omogućen oporavak računa i otisak prsta prikazan u nastavku odgovara otisku prsta organizacije."
   },
   "orgTrustWarning1": {
-    "message": "This organization has an Enterprise policy that will enroll you in account recovery. Enrollment will allow organization administrators to change your password. Only proceed if you recognize this organization and the fingerprint phrase displayed below matches the organization's fingerprint."
+    "message": "Ova organizacija ima poslovno pravilo koje će te prijaviti za oporavak računa. Prijava će omogućiti administratorima organizacije da promijene tvoju lozinku. Nastavi samo ako prepoznaješ ovu organizaciju i ako se fraza otiska prsta prikazana u nastavku podudara s otiskom prsta organizacije."
   },
   "trustUser": {
-    "message": "Trust user"
+    "message": "Vjeruj korisniku"
   },
   "sshKeyWrongPassword": {
     "message": "Unesena lozinka nije ispravna."
@@ -10531,7 +10586,7 @@
     "message": "Dodijeljene licence premašuju dostupne licence."
   },
   "userkeyRotationDisclaimerEmergencyAccessText": {
-    "message": "Fingerprint phrase for $NUM_USERS$ contacts for which you have enabled emergency access.",
+    "message": "Fraza otiska prsta za $NUM_USERS$ kontakata za koje je omogućen pristup u hitnim slučajevima.",
     "placeholders": {
       "num_users": {
         "content": "$1",
@@ -10540,7 +10595,7 @@
     }
   },
   "userkeyRotationDisclaimerAccountRecoveryOrgsText": {
-    "message": "Fingerprint phrase for the organization $ORG_NAME$ for which you have enabled account recovery.",
+    "message": "Jedinstvena fraza za organizaciju $ORG_NAME$ za koju je uključen oporavak računa.",
     "placeholders": {
       "org_name": {
         "content": "$1",
@@ -10549,10 +10604,10 @@
     }
   },
   "userkeyRotationDisclaimerDescription": {
-    "message": "Rotating your encryption keys will require you to trust keys of any organizations that can recover your account, and any contacts that you have enabled emergency access for. To continue, make sure you can verify the following:"
+    "message": "Rotiranje ključeva za šifriranje zahtijevat će da vjeruješ ključevima svih organizacija koje mogu oporaviti tvoj račun i svih kontakata za koje je omogućen pristup u hitnim slučajevima. Za nastavak provjeri možeš li provjeriti sljedeće:"
   },
   "userkeyRotationDisclaimerTitle": {
-    "message": "Untrusted encryption keys"
+    "message": "Nepouzdani ključevi za šifriranje"
   },
   "changeAtRiskPassword": {
     "message": "Promijeni rizičnu lozinku"
@@ -10564,10 +10619,10 @@
     "message": "Ne dozvoli članovima otključavanje računa PIN-om."
   },
   "upgradeForFullEventsMessage": {
-    "message": "Event logs are not stored for your organization. Upgrade to a Teams or Enterprise plan to get full access to organization event logs."
+    "message": "Zapisnici događaja ne pohranjuju se za tvoju organizaciju. Za puni pristup zapisnicima događaja organizacije nadogradi na paket Teams ili Enterprise."
   },
   "upgradeEventLogTitleMessage": {
-    "message": "Upgrade to see event logs from your organization."
+    "message": "Nadogradi za pregled zapisnika događaja tvoje organizacije."
   },
   "upgradeEventLogMessage": {
     "message": "Ovi događaji su samo primjeri i ne odražavaju stvarne događaje unutar tvoje Bitwarden organizacije."
@@ -10576,37 +10631,37 @@
     "message": "Besplatne organizacije mogu imati do 2 zbirke. Nadogradi na plaćeni plan za dodavanje više zbirki."
   },
   "businessUnit": {
-    "message": "Business Unit"
+    "message": "Poslovna jedinica"
   },
   "businessUnits": {
-    "message": "Business Units"
+    "message": "Poslovne jedinice"
   },
   "newBusinessUnit": {
-    "message": "New business unit"
+    "message": "Nova poslovna jedinica"
   },
   "sendsTitleNoItems": {
-    "message": "Send sensitive information safely",
+    "message": "Sigurno pošalji osjetljive podatke",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendsBodyNoItems": {
-    "message": "Share files and data securely with anyone, on any platform. Your information will remain end-to-end encrypted while limiting exposure.",
+    "message": "Sigurno dijeli datoteke i podatke s bilo kime, na bilo kojoj platformi. Tvoji podaci ostaju kriptirani uz ograničenje izloženosti.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "generatorNudgeTitle": {
-    "message": "Quickly create passwords"
+    "message": "Brzo stvori lozinke"
   },
   "generatorNudgeBodyOne": {
-    "message": "Easily create strong and unique passwords by clicking on",
+    "message": "Jednostavno stvori jake i jedinstvene lozinke odabirom tipke",
     "description": "Two part message",
     "example": "Easily create strong and unique passwords by clicking on {icon} to help you keep your logins secure."
   },
   "generatorNudgeBodyTwo": {
-    "message": "to help you keep your logins secure.",
+    "message": "kako bi tvoje prijave ostale sigurne.",
     "description": "Two part message",
     "example": "Easily create strong and unique passwords by clicking on {icon} to help you keep your logins secure."
   },
   "generatorNudgeBodyAria": {
-    "message": "Easily create strong and unique passwords by clicking on the Generate password button to help you keep your logins secure.",
+    "message": "Jednostavno stvori jake i sigurne lozinke odabirom tipke Generiraj lozinku kako bi tvoje prijave ostale sigurne. ",
     "description": "Aria label for the body content of the generator nudge"
   },
   "newLoginNudgeTitle": {
@@ -10628,7 +10683,7 @@
     "example": "Include a Website so this login appears as an autofill suggestion."
   },
   "newCardNudgeTitle": {
-    "message": "Seamless online checkout"
+    "message": "Jednostavna online kupnja"
   },
   "newCardNudgeBody": {
     "message": "S karticama jednostavno i sigurno automatski ispunjavaš obrasce za plaćanje."
@@ -10646,7 +10701,7 @@
     "message": "S bilješkama sigurno pohrani svoje osjetljive podatke poput podataka o banci ili osiguranju."
   },
   "newSshNudgeTitle": {
-    "message": "Developer-friendly SSH access"
+    "message": "SSH pristup prilagođen programerima"
   },
   "newSshNudgeBodyOne": {
     "message": "Pohrani svoje ključeve i poveži se sa SSH agentom za brzu, šifriranu autentifikaciju.",
@@ -10658,17 +10713,62 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Saznaj više o SSH agentu"
   },
   "verifyProviderBankAccountWithStatementDescriptorWarning": {
-    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the provider's subscription page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+    "message": "Plaćanje putem bankovnog računa dostupno je samo kupcima u SAD. Treba potvrditi bankovni račun. Unutar 1 - 2 radna dana izvršit ćemo mikro-uplatu. Unesi šifru u opisu ove uplate na stranici za naplatu pružatelja usluge za potvrdu bankovnog računa. Ne-potvrda bankovnog računa rezultirat će propuštenim plaćanjem i obustavom pretplate."
   },
   "clickPayWithPayPal": {
-    "message": "Please click the Pay with PayPal button to add your payment method."
+    "message": "Za dodavnje svojeg načina plaćanja, klikni tipku Plati PayPalom."
   },
   "revokeActiveSponsorshipConfirmation": {
-    "message": "If you remove $EMAIL$, the sponsorship for this Family plan will end. A seat within your organization will become available for members or sponsorships after the sponsored organization renewal date on $DATE$.",
+    "message": "Uklanjanjem $EMAIL$, sponzorstvo za ovaj Families paket će završiti. Mjesto unutar tvoje organizacije bit će dostupno članovima ili sponzorstvima nakon datuma obnove sponzorirane organizacije $DATE$.",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -10681,7 +10781,7 @@
     }
   },
   "billingAddressRequiredToAddCredit": {
-    "message": "Billing address required to add credit.",
+    "message": "Za dodavanje kredita potrebna je adresa za naplatu.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
   }
 }
diff --git a/apps/web/src/locales/hu/messages.json b/apps/web/src/locales/hu/messages.json
index 4ad900a4bae..60469141ef7 100644
--- a/apps/web/src/locales/hu/messages.json
+++ b/apps/web/src/locales/hu/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Hozzáadás"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "A mesterjelszó frissítésre került."
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "Hiba történt az import fájl beolvasásának kísérletekor."
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Hozzáférés a titkos $SECRET_ID$ azonosítóhoz.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Általános formátumok",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "$ORG$ előfizetés fenntartásához, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Újraindítás"
   },
diff --git a/apps/web/src/locales/id/messages.json b/apps/web/src/locales/id/messages.json
index fffe374b44b..de45c9bd7de 100644
--- a/apps/web/src/locales/id/messages.json
+++ b/apps/web/src/locales/id/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Tambah"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Kata Sandi Telah Diperbarui"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "An error occurred when trying to read the import file"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Accessed secret $SECRET_ID$.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Restart"
   },
diff --git a/apps/web/src/locales/it/messages.json b/apps/web/src/locales/it/messages.json
index a861f368366..f09e12b6042 100644
--- a/apps/web/src/locales/it/messages.json
+++ b/apps/web/src/locales/it/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Aggiungi"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Password principale salvata"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "Si è verificato un errore durante la lettura del file di importazione"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Segreto $SECRET_ID$ acceduto.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Formati comuni",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "Per mantenere il tuo abbonamento a $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Riavvia"
   },
diff --git a/apps/web/src/locales/ja/messages.json b/apps/web/src/locales/ja/messages.json
index 9af2943f1da..77102fddf47 100644
--- a/apps/web/src/locales/ja/messages.json
+++ b/apps/web/src/locales/ja/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "追加"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "マスターパスワードを更新しました"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "インポートファイルの読み込み中にエラーが発生しました"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "シークレット $SECRET_ID$ にアクセスしました。",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "一般的な形式",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "$ORG$のサブスクリプションを維持するには、 ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Restart"
   },
diff --git a/apps/web/src/locales/ka/messages.json b/apps/web/src/locales/ka/messages.json
index d5ae3e1978c..dc4e1933951 100644
--- a/apps/web/src/locales/ka/messages.json
+++ b/apps/web/src/locales/ka/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Add"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Master password saved"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "An error occurred when trying to read the import file"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Accessed secret $SECRET_ID$.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Restart"
   },
diff --git a/apps/web/src/locales/km/messages.json b/apps/web/src/locales/km/messages.json
index f422e74a569..64c86ffdfd2 100644
--- a/apps/web/src/locales/km/messages.json
+++ b/apps/web/src/locales/km/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Add"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Master password saved"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "An error occurred when trying to read the import file"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Accessed secret $SECRET_ID$.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Restart"
   },
diff --git a/apps/web/src/locales/kn/messages.json b/apps/web/src/locales/kn/messages.json
index b400d0ca863..66bde8ae3ff 100644
--- a/apps/web/src/locales/kn/messages.json
+++ b/apps/web/src/locales/kn/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Add"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Master password saved"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "An error occurred when trying to read the import file"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Accessed secret $SECRET_ID$.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Restart"
   },
diff --git a/apps/web/src/locales/ko/messages.json b/apps/web/src/locales/ko/messages.json
index 8293750eed3..041dcbeafb3 100644
--- a/apps/web/src/locales/ko/messages.json
+++ b/apps/web/src/locales/ko/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "추가"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "마스터 비밀번호 변경됨"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "가져온 파일을 읽는 도중 오류가 발생했습니다"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Accessed secret $SECRET_ID$.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Restart"
   },
diff --git a/apps/web/src/locales/lv/messages.json b/apps/web/src/locales/lv/messages.json
index b17131cf2ef..fa435a7a34f 100644
--- a/apps/web/src/locales/lv/messages.json
+++ b/apps/web/src/locales/lv/messages.json
@@ -3276,7 +3276,7 @@
     "message": "Noklusējuma krājums"
   },
   "myItems": {
-    "message": "My Items"
+    "message": "Mani vienumi"
   },
   "getHelp": {
     "message": "Saņemt palīdzību"
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Pievienot"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Galvenā parole sekmīgi iestatīta"
+  },
   "updatedMasterPassword": {
     "message": "Galvenā parole atjaunināta"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "Atgadījās kļūda, kad tika mēģināts nolasīt ievietošanas datni"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Tika piekļūts noslēpumam $SECRET_ID$.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "Izstrādātāja rīkkopa",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Izplatīti veidoli",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "Lai uzturētu savu abonementu $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Palaist no jauna"
   },
diff --git a/apps/web/src/locales/ml/messages.json b/apps/web/src/locales/ml/messages.json
index ef1bb77feb4..cbba9a91a66 100644
--- a/apps/web/src/locales/ml/messages.json
+++ b/apps/web/src/locales/ml/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Add"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Master password saved"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "An error occurred when trying to read the import file"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Accessed secret $SECRET_ID$.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Restart"
   },
diff --git a/apps/web/src/locales/mr/messages.json b/apps/web/src/locales/mr/messages.json
index 97eb93dd3eb..4c3912db8c5 100644
--- a/apps/web/src/locales/mr/messages.json
+++ b/apps/web/src/locales/mr/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Add"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Master password saved"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "An error occurred when trying to read the import file"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Accessed secret $SECRET_ID$.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Restart"
   },
diff --git a/apps/web/src/locales/my/messages.json b/apps/web/src/locales/my/messages.json
index f422e74a569..64c86ffdfd2 100644
--- a/apps/web/src/locales/my/messages.json
+++ b/apps/web/src/locales/my/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Add"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Master password saved"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "An error occurred when trying to read the import file"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Accessed secret $SECRET_ID$.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Restart"
   },
diff --git a/apps/web/src/locales/nb/messages.json b/apps/web/src/locales/nb/messages.json
index 68cd7725bd5..267bfe0d8b3 100644
--- a/apps/web/src/locales/nb/messages.json
+++ b/apps/web/src/locales/nb/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Legg til"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Oppdaterte hovedpassordet"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "An error occurred when trying to read the import file"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Accessed secret $SECRET_ID$.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Vanlige formater",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Omstart"
   },
diff --git a/apps/web/src/locales/ne/messages.json b/apps/web/src/locales/ne/messages.json
index f74848f0aee..722106ed1aa 100644
--- a/apps/web/src/locales/ne/messages.json
+++ b/apps/web/src/locales/ne/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Add"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Master password saved"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "An error occurred when trying to read the import file"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Accessed secret $SECRET_ID$.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Restart"
   },
diff --git a/apps/web/src/locales/nl/messages.json b/apps/web/src/locales/nl/messages.json
index fc2b6e9593c..8c33b5452a6 100644
--- a/apps/web/src/locales/nl/messages.json
+++ b/apps/web/src/locales/nl/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Toevoegen"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Hoofdwachtwoord succesvol ingesteld"
+  },
   "updatedMasterPassword": {
     "message": "Hoofdwachtwoord bijgewerkt"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "Er is een fout opgetreden bij het lezen van het bronbestand"
   },
+  "accessedSecretWithId": {
+    "message": "Geheim benaderd met identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Geopend geheim $SECRET_ID$.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Geheim bewerkt met identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Geheim verwijderd met identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Nieuw geheim aangemaakt met identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Gangbare formaten",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI-matche-detectie is hoe Bitwarden invulsuggesties herkent.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Reguliere expressie\" is een geavanceerde optie met een verhoogd risico op het blootstellen van inloggegevens.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Begint met\" is een geavanceerde optie met een verhoogd risico op het blootstellen van inloggegevens.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "Lees meer over overeenkomstdetectie",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "Om je abonnement voor $ORG$ te behouden, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Automatisch je wachtwoorden veilig aanvullen met één klik"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Download de Bitwarden-browserextensie en begin vandaag met automatisch invullen"
+  },
+  "getTheExtension": {
+    "message": "Download de extensie"
+  },
+  "addItLater": {
+    "message": "Later toevoegen"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "Je kunt wachtwoorden niet automatisch invullen zonder de browserextensie"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Weet je zeker dat je de extensie nu niet wilt toevoegen?"
+  },
+  "skipToWebApp": {
+    "message": "Ga naar webapp"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extensie geïnstalleerd!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open de extensie om in te loggen en te beginnen met automatisch invullen."
+  },
+  "openBitwardenExtension": {
+    "message": "Bitwarden-extensie openen"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "Bezoek voor tips over het beginnen met Bitwarden het",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Leercentrum",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Helpcentrum",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "Met de Bitwarden-browserextensie kun je eenvoudig nieuwe inloggegevens aanmaken, je opgeslagen logins rechtstreeks vanuit je browser toolbar benaderen en je snel aanmelden bij accounts met Bitwarden automatisch invullen."
+  },
   "restart": {
     "message": "Herstarten"
   },
diff --git a/apps/web/src/locales/nn/messages.json b/apps/web/src/locales/nn/messages.json
index 79700ff65e3..19941112324 100644
--- a/apps/web/src/locales/nn/messages.json
+++ b/apps/web/src/locales/nn/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Add"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Master password saved"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "An error occurred when trying to read the import file"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Accessed secret $SECRET_ID$.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Restart"
   },
diff --git a/apps/web/src/locales/or/messages.json b/apps/web/src/locales/or/messages.json
index f422e74a569..64c86ffdfd2 100644
--- a/apps/web/src/locales/or/messages.json
+++ b/apps/web/src/locales/or/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Add"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Master password saved"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "An error occurred when trying to read the import file"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Accessed secret $SECRET_ID$.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Restart"
   },
diff --git a/apps/web/src/locales/pl/messages.json b/apps/web/src/locales/pl/messages.json
index 13e67f9d33c..1a203376724 100644
--- a/apps/web/src/locales/pl/messages.json
+++ b/apps/web/src/locales/pl/messages.json
@@ -3276,7 +3276,7 @@
     "message": "Domyślna kolekcja"
   },
   "myItems": {
-    "message": "My Items"
+    "message": "Moje elementy"
   },
   "getHelp": {
     "message": "Uzyskaj pomoc"
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Dodaj"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Hasło główne zostało pomyślnie ustawione"
+  },
   "updatedMasterPassword": {
     "message": "Hasło główne zostało zapisane"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "Wystąpił błąd podczas próby odczytu pliku importu"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Uzyskano dostęp do sekretu $SECRET_ID$.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Popularne formaty",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "Aby utrzymać subskrypcję dla $ORG$ ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Zrestartuj"
   },
diff --git a/apps/web/src/locales/pt_BR/messages.json b/apps/web/src/locales/pt_BR/messages.json
index da4180ee0e6..541e3445755 100644
--- a/apps/web/src/locales/pt_BR/messages.json
+++ b/apps/web/src/locales/pt_BR/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Adicionar"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Senha Mestra Atualizada"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "Ocorreu um erro ao tentar ler o arquivo de importação"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "$SECRET_ID$ secreto acessado.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Formatos comuns",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "Para manter sua assinatura para $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Restart"
   },
diff --git a/apps/web/src/locales/pt_PT/messages.json b/apps/web/src/locales/pt_PT/messages.json
index eb06f4b7390..ebfc7429429 100644
--- a/apps/web/src/locales/pt_PT/messages.json
+++ b/apps/web/src/locales/pt_PT/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Adicionar"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Palavra-passe mestra definida com sucesso"
+  },
   "updatedMasterPassword": {
     "message": "Palavra-passe mestra guardada"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "Ocorreu um erro ao tentar ler o ficheiro de importação"
   },
+  "accessedSecretWithId": {
+    "message": "Acedeu a um segredo com o identificador: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Segredo $SECRET_ID$ acedido.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Editou um segredo com o identificador: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Eliminou um segredo com o identificador: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Criou um novo segredo com o identificador: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Formatos comuns",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "A deteção de correspondência de URI é a forma como o Bitwarden identifica sugestões de preenchimento automático.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "A \"expressão regular\" é uma opção avançada com um risco acrescido de exposição de credenciais.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Começa com\" é uma opção avançada com um risco acrescido de exposição de credenciais.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "Mais informações sobre a deteção de correspondências",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "Para manter a sua subscrição para a $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Reiniciar"
   },
diff --git a/apps/web/src/locales/ro/messages.json b/apps/web/src/locales/ro/messages.json
index 569faf4e9a8..ae847c1418b 100644
--- a/apps/web/src/locales/ro/messages.json
+++ b/apps/web/src/locales/ro/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Adaugă"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Parolă principală salvată"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "An error occurred when trying to read the import file"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Accessed secret $SECRET_ID$.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Restart"
   },
diff --git a/apps/web/src/locales/ru/messages.json b/apps/web/src/locales/ru/messages.json
index d57bdc8ed45..aae915a6af7 100644
--- a/apps/web/src/locales/ru/messages.json
+++ b/apps/web/src/locales/ru/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Добавить"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Мастер-пароль успешно установлен"
+  },
   "updatedMasterPassword": {
     "message": "Мастер-пароль сохранен"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "Произошла ошибка при попытке чтения импортируемого файла"
   },
+  "accessedSecretWithId": {
+    "message": "Доступ к секрету с идентификатором: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Получен доступ к секрету $SECRET_ID$.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Изменен секрет с идентификатором: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Удален секрет с идентификатором: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Создан новый секрет с идентификатором: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Основные форматы",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "Обнаружение совпадения URI - это способ, с помощью которого Bitwarden идентифицирует предложения по автозаполнению.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Регулярное выражение\" - это расширенный вариант с повышенным риском раскрытия учетных данных.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Начинается с\" - это расширенный вариант с повышенным риском раскрытия учетных данных.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "Подробнее об обнаружении совпадений",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "Для сохранения подписки на $ORG$ ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Автозаполнение паролей безопасно одним нажатием"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Установите расширение для браузера Bitwarden и начните использовать автозаполнение уже сегодня"
+  },
+  "getTheExtension": {
+    "message": "Получить расширение"
+  },
+  "addItLater": {
+    "message": "Добавить позже"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "Вы не можете автоматически заполнять пароли без расширения браузера"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Вы уверены, что не хотите добавить расширение прямо сейчас?"
+  },
+  "skipToWebApp": {
+    "message": "Перейти к веб-приложению"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Расширение Bitwarden установлено!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Откройте расширение, чтобы авторизоваться и начать использовать автозаполнение."
+  },
+  "openBitwardenExtension": {
+    "message": "Открыть расширение Bitwarden"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "Для получения советов по началу работы с Bitwarden посетите сайт",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "База знаний",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Центр поддержки",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "С помощью расширения Bitwarden вы можете легко создавать новые логины, получать доступ к сохраненным логинам непосредственно с панели инструментов браузера и быстро входить в аккаунты с помощью автозаполнения Bitwarden."
+  },
   "restart": {
     "message": "Перезапустить"
   },
diff --git a/apps/web/src/locales/si/messages.json b/apps/web/src/locales/si/messages.json
index 80dd700f848..18f6356aaaa 100644
--- a/apps/web/src/locales/si/messages.json
+++ b/apps/web/src/locales/si/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Add"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Master password saved"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "An error occurred when trying to read the import file"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Accessed secret $SECRET_ID$.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Restart"
   },
diff --git a/apps/web/src/locales/sk/messages.json b/apps/web/src/locales/sk/messages.json
index c3f204beaf3..ec99de4472b 100644
--- a/apps/web/src/locales/sk/messages.json
+++ b/apps/web/src/locales/sk/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Pridať"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Hlavné heslo bolo úspešne nastavené"
+  },
   "updatedMasterPassword": {
     "message": "Hlavné heslo aktualizované"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "Pri pokuse o prečítanie súboru na import sa vyskytla chyba"
   },
+  "accessedSecretWithId": {
+    "message": "Prístup k položke s identifikátorom: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Prístup k heslu $SECRET_ID$.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Upravená položka s identifikátorom: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Odstránená položka s identifikátorom: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Vytvorená nová položka s identifikátorom: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Bežné formáty",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "Aby ste udržali predplatné pre $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Reštartovať"
   },
diff --git a/apps/web/src/locales/sl/messages.json b/apps/web/src/locales/sl/messages.json
index 5b68d7e21af..77bc33b0b82 100644
--- a/apps/web/src/locales/sl/messages.json
+++ b/apps/web/src/locales/sl/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Add"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Glavno geslo shranjeno"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "Pri branju datoteke za uvoz je prišlo do napake"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Accessed secret $SECRET_ID$.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Restart"
   },
diff --git a/apps/web/src/locales/sr_CS/messages.json b/apps/web/src/locales/sr_CS/messages.json
index c0681d1224f..e66fc5a452e 100644
--- a/apps/web/src/locales/sr_CS/messages.json
+++ b/apps/web/src/locales/sr_CS/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Add"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Master password saved"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "An error occurred when trying to read the import file"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Accessed secret $SECRET_ID$.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Restart"
   },
diff --git a/apps/web/src/locales/sr_CY/messages.json b/apps/web/src/locales/sr_CY/messages.json
index 837b8c706b8..b14d1986877 100644
--- a/apps/web/src/locales/sr_CY/messages.json
+++ b/apps/web/src/locales/sr_CY/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Додај"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Главна лозинка ажурирана"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "Дошло је до грешке у покушају читања датотеке за увоз"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Приступ тајни $SECRET_ID$.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Уобичајени формати",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "Да бисте одржали своју претплату за $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Поново покрени"
   },
diff --git a/apps/web/src/locales/sv/messages.json b/apps/web/src/locales/sv/messages.json
index 41813e5edc0..12c781bcc34 100644
--- a/apps/web/src/locales/sv/messages.json
+++ b/apps/web/src/locales/sv/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Lägg till"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Huvudlösenordet sparades"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "An error occurred when trying to read the import file"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Accessed secret $SECRET_ID$.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "För att behålla din prenumeration på $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Restart"
   },
diff --git a/apps/web/src/locales/te/messages.json b/apps/web/src/locales/te/messages.json
index f422e74a569..64c86ffdfd2 100644
--- a/apps/web/src/locales/te/messages.json
+++ b/apps/web/src/locales/te/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Add"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Master password saved"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "An error occurred when trying to read the import file"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Accessed secret $SECRET_ID$.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Restart"
   },
diff --git a/apps/web/src/locales/th/messages.json b/apps/web/src/locales/th/messages.json
index c47c6caca85..f81bf922454 100644
--- a/apps/web/src/locales/th/messages.json
+++ b/apps/web/src/locales/th/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Add"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Master password saved"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "An error occurred when trying to read the import file"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Accessed secret $SECRET_ID$.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Common formats",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Restart"
   },
diff --git a/apps/web/src/locales/tr/messages.json b/apps/web/src/locales/tr/messages.json
index 211851f8450..26fac4a7fd4 100644
--- a/apps/web/src/locales/tr/messages.json
+++ b/apps/web/src/locales/tr/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Ekle"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Ana parola başarıyla ayarlandı"
+  },
   "updatedMasterPassword": {
     "message": "Ana parola kaydedildi"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "İçe aktarma dosyası okunurken bir hata oluştu"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "$SECRET_ID$ sırrına erişildi.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Sık kullanılan biçimler",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "$ORG$ aboneliğinizi sürdürmek için ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Parolalarınızı tek tıklamayla güvenli bir şekilde doldurun"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Bitwarden tarayıcı uzantısını yükleyin, otomatik doldurmaya başlayın"
+  },
+  "getTheExtension": {
+    "message": "Uzantıyı yükle"
+  },
+  "addItLater": {
+    "message": "Daha sonra yükle"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "Tarayıcı uzantısı olmadan parolaları otomatik dolduramazsınız"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Uzantıyı yüklemek istemediğinizden emin misiniz?"
+  },
+  "skipToWebApp": {
+    "message": "Web uygulamasına geç"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden uzantısı yüklendi!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Otomatik doldurmaya başlamak için uzantıyı açıp giriş yapın."
+  },
+  "openBitwardenExtension": {
+    "message": "Bitwarden uzantısını aç"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "Bitwarden tarayıcı uzantısıyla kolayca yeni hesaplar oluşturabilir, kayıtlı hesaplarınıza doğrudan tarayıcı araç çubuğunuzdan erişebilir, otomatik doldurma özelliğini kullanarak hesaplarınıza kolayca giriş yapabilirsiniz."
+  },
   "restart": {
     "message": "Yeniden başlat"
   },
diff --git a/apps/web/src/locales/uk/messages.json b/apps/web/src/locales/uk/messages.json
index 4ddcfa3c463..c145d4e16f1 100644
--- a/apps/web/src/locales/uk/messages.json
+++ b/apps/web/src/locales/uk/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Додати"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Головний пароль збережено"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "Під час спроби прочитання імпортованого файлу сталася помилка"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Доступ до секрету $SECRET_ID$.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Поширені формати",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "Щоб зберегти свою передплату на $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Перезапустити"
   },
diff --git a/apps/web/src/locales/vi/messages.json b/apps/web/src/locales/vi/messages.json
index c3bbf855a38..f1c75d66f97 100644
--- a/apps/web/src/locales/vi/messages.json
+++ b/apps/web/src/locales/vi/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "Add"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "Master password saved"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "Đã xảy ra lỗi khi cố đọc tập tin nhập"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "Accessed secret $SECRET_ID$.",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "Định dạng chung",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Restart"
   },
diff --git a/apps/web/src/locales/zh_CN/messages.json b/apps/web/src/locales/zh_CN/messages.json
index 550d4d56bdd..f70a7f460fb 100644
--- a/apps/web/src/locales/zh_CN/messages.json
+++ b/apps/web/src/locales/zh_CN/messages.json
@@ -3276,7 +3276,7 @@
     "message": "默认集合"
   },
   "myItems": {
-    "message": "My Items"
+    "message": "我的项目"
   },
   "getHelp": {
     "message": "获取帮助"
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "添加"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "主密码设置成功"
+  },
   "updatedMasterPassword": {
     "message": "主密码已保存"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "尝试读取导入的文件时出错"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "访问了机密 $SECRET_ID$。",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "常规格式",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "要保留 $ORG$ 的订阅，",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "重启"
   },
diff --git a/apps/web/src/locales/zh_TW/messages.json b/apps/web/src/locales/zh_TW/messages.json
index 2193c9503ab..d9671873aa0 100644
--- a/apps/web/src/locales/zh_TW/messages.json
+++ b/apps/web/src/locales/zh_TW/messages.json
@@ -6064,6 +6064,9 @@
   "add": {
     "message": "新增"
   },
+  "masterPasswordSuccessfullySet": {
+    "message": "Master password successfully set"
+  },
   "updatedMasterPassword": {
     "message": "主密碼已儲存"
   },
@@ -8233,6 +8236,15 @@
   "errorReadingImportFile": {
     "message": "嘗試讀取匯入檔案時發生錯誤"
   },
+  "accessedSecretWithId": {
+    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "accessedSecret": {
     "message": "存取了機密 $SECRET_ID$。",
     "placeholders": {
@@ -8242,6 +8254,33 @@
       }
     }
   },
+  "editedSecretWithId": {
+    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "deletedSecretWithId": {
+    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
+  "createdSecretWithId": {
+    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "placeholders": {
+      "secret_id": {
+        "content": "$1",
+        "example": "4d34e8a8"
+      }
+    }
+  },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
@@ -8868,6 +8907,22 @@
     "message": "常見格式",
     "description": "Label indicating the most common import formats"
   },
+  "uriMatchDefaultStrategyHint": {
+    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
+  },
+  "regExAdvancedOptionWarning": {
+    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
+  },
+  "startsWithAdvancedOptionWarning": {
+    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
+  },
+  "uriMatchWarningDialogLink": {
+    "message": "More about match detection",
+    "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10658,6 +10713,51 @@
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
+  "setupExtensionPageTitle": {
+    "message": "Autofill your passwords securely with one click"
+  },
+  "setupExtensionPageDescription": {
+    "message": "Get the Bitwarden browser extension and start autofilling today"
+  },
+  "getTheExtension": {
+    "message": "Get the extension"
+  },
+  "addItLater": {
+    "message": "Add it later"
+  },
+  "cannotAutofillPasswordsWithoutExtensionTitle": {
+    "message": "You can't autofill passwords without the browser extension"
+  },
+  "cannotAutofillPasswordsWithoutExtensionDesc": {
+    "message": "Are you sure you don't want to add the extension now?"
+  },
+  "skipToWebApp": {
+    "message": "Skip to web app"
+  },
+  "bitwardenExtensionInstalled": {
+    "message": "Bitwarden extension installed!"
+  },
+  "openExtensionToAutofill": {
+    "message": "Open the extension to log in and start autofilling."
+  },
+  "openBitwardenExtension": {
+    "message": "Open Bitwarden extension"
+  },
+  "gettingStartedWithBitwardenPart1": {
+    "message": "For tips on getting started with Bitwarden visit the",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart2": {
+    "message": "Learning Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "gettingStartedWithBitwardenPart3": {
+    "message": "Help Center",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+  },
+  "setupExtensionContentAlt": {
+    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+  },
   "restart": {
     "message": "Restart"
   },

From 3da58e1752460ef2f95329dd45b3072daedee9b2 Mon Sep 17 00:00:00 2001
From: Jason Ng <jng@bitwarden.com>
Date: Tue, 8 Jul 2025 10:51:02 -0400
Subject: [PATCH 077/239] [PM-23352] fix extra large spacing in height of intro
 carousel (#15512)

---
 .../src/components/carousel/carousel.component.ts | 15 +++++++++++++--
 1 file changed, 13 insertions(+), 2 deletions(-)

diff --git a/libs/vault/src/components/carousel/carousel.component.ts b/libs/vault/src/components/carousel/carousel.component.ts
index 275b9de4fcb..f2d211697df 100644
--- a/libs/vault/src/components/carousel/carousel.component.ts
+++ b/libs/vault/src/components/carousel/carousel.component.ts
@@ -6,15 +6,19 @@ import {
   ChangeDetectorRef,
   Component,
   ContentChildren,
+  DestroyRef,
   ElementRef,
   EventEmitter,
   inject,
   Input,
+  NgZone,
   Output,
   QueryList,
   ViewChild,
   ViewChildren,
 } from "@angular/core";
+import { takeUntilDestroyed } from "@angular/core/rxjs-interop";
+import { take } from "rxjs";
 
 import { ButtonModule } from "@bitwarden/components";
 
@@ -44,7 +48,7 @@ export class VaultCarouselComponent implements AfterViewInit {
   @Input({ required: true }) label = "";
 
   /**
-   * Emits the index of of the newly selected slide.
+   * Emits the index of the newly selected slide.
    */
   @Output() slideChange = new EventEmitter<number>();
 
@@ -82,6 +86,11 @@ export class VaultCarouselComponent implements AfterViewInit {
    */
   protected keyManager: FocusKeyManager<VaultCarouselButtonComponent> | null = null;
 
+  constructor(
+    private ngZone: NgZone,
+    private destroyRef: DestroyRef,
+  ) {}
+
   /** Set the selected index of the carousel. */
   protected selectSlide(index: number) {
     this.selectedIndex = index;
@@ -97,7 +106,9 @@ export class VaultCarouselComponent implements AfterViewInit {
     // Set the first carousel button as active, this avoids having to double tab the arrow keys on initial focus.
     this.keyManager.setFirstItemActive();
 
-    await this.setMinHeightOfCarousel();
+    this.ngZone.onStable.pipe(take(1), takeUntilDestroyed(this.destroyRef)).subscribe(() => {
+      void this.setMinHeightOfCarousel();
+    });
   }
 
   /**

From b9f930a609f1e7a006f8f08b3ba18192341bc168 Mon Sep 17 00:00:00 2001
From: Jared Snider <116684653+JaredSnider-Bitwarden@users.noreply.github.com>
Date: Tue, 8 Jul 2025 12:58:03 -0400
Subject: [PATCH 078/239] fix(tde-offboarding): Auth/PM-19165 - Handle TDE
 offboarding on an untrusted device with warning message (#15430)

When a user logs in via SSO after their org has offboarded from TDE, we now show them a helpful error message stating that they must either login on a Trusted device, or ask their admin to assign them a password.

Feature flag: `PM16117_SetInitialPasswordRefactor`
---
 apps/browser/src/_locales/en/messages.json    |  6 ++
 .../service-container/service-container.ts    |  1 +
 apps/desktop/src/locales/en/messages.json     |  6 ++
 apps/web/src/locales/en/messages.json         |  6 ++
 .../src/auth/guards/auth.guard.spec.ts        | 34 ++++++++-
 libs/angular/src/auth/guards/auth.guard.ts    | 17 ++++-
 .../set-initial-password.component.html       | 56 ++++++++------
 .../set-initial-password.component.ts         | 13 +++-
 ...et-initial-password.service.abstraction.ts |  8 +-
 .../src/services/jslib-services.module.ts     |  1 +
 .../common/login-strategies/login.strategy.ts |  5 +-
 .../sso-login.strategy.spec.ts                | 46 ++++++++++++
 .../login-strategies/sso-login.strategy.ts    | 75 +++++++++++++++++--
 .../login-strategy.service.spec.ts            |  4 +
 .../login-strategy.service.ts                 |  3 +
 .../domain/force-set-password-reason.ts       |  9 +++
 .../response/identity-token.response.ts       |  8 +-
 17 files changed, 257 insertions(+), 41 deletions(-)

diff --git a/apps/browser/src/_locales/en/messages.json b/apps/browser/src/_locales/en/messages.json
index 996bdcdae79..957386ba576 100644
--- a/apps/browser/src/_locales/en/messages.json
+++ b/apps/browser/src/_locales/en/messages.json
@@ -3568,6 +3568,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "ssoIdentifierRequired": {
     "message": "Organization SSO identifier is required."
   },
diff --git a/apps/cli/src/service-container/service-container.ts b/apps/cli/src/service-container/service-container.ts
index f27c69cf47b..53950e5da11 100644
--- a/apps/cli/src/service-container/service-container.ts
+++ b/apps/cli/src/service-container/service-container.ts
@@ -682,6 +682,7 @@ export class ServiceContainer {
       this.vaultTimeoutSettingsService,
       this.kdfConfigService,
       this.taskSchedulerService,
+      this.configService,
     );
 
     // FIXME: CLI does not support autofill
diff --git a/apps/desktop/src/locales/en/messages.json b/apps/desktop/src/locales/en/messages.json
index 991d07fb9df..703b65c35b4 100644
--- a/apps/desktop/src/locales/en/messages.json
+++ b/apps/desktop/src/locales/en/messages.json
@@ -3144,6 +3144,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "Region"
   },
diff --git a/apps/web/src/locales/en/messages.json b/apps/web/src/locales/en/messages.json
index c5a7a64ee5c..ba5e4841e3d 100644
--- a/apps/web/src/locales/en/messages.json
+++ b/apps/web/src/locales/en/messages.json
@@ -8454,6 +8454,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "trustedDeviceEncryption": {
     "message": "Trusted device encryption"
   },
diff --git a/libs/angular/src/auth/guards/auth.guard.spec.ts b/libs/angular/src/auth/guards/auth.guard.spec.ts
index a2e1613c6c1..1681fa2b4ea 100644
--- a/libs/angular/src/auth/guards/auth.guard.spec.ts
+++ b/libs/angular/src/auth/guards/auth.guard.spec.ts
@@ -70,10 +70,10 @@ describe("AuthGuard", () => {
           { path: "lock", component: EmptyComponent },
           { path: "set-password", component: EmptyComponent },
           { path: "set-password-jit", component: EmptyComponent },
-          { path: "set-initial-password", component: EmptyComponent },
-          { path: "update-temp-password", component: EmptyComponent },
+          { path: "set-initial-password", component: EmptyComponent, canActivate: [authGuard] },
+          { path: "update-temp-password", component: EmptyComponent, canActivate: [authGuard] },
           { path: "change-password", component: EmptyComponent },
-          { path: "remove-password", component: EmptyComponent },
+          { path: "remove-password", component: EmptyComponent, canActivate: [authGuard] },
         ]),
       ],
       providers: [
@@ -124,6 +124,34 @@ describe("AuthGuard", () => {
     expect(router.url).toBe("/remove-password");
   });
 
+  describe("given user is Locked", () => {
+    describe("given the PM16117_SetInitialPasswordRefactor feature flag is ON", () => {
+      it("should redirect to /set-initial-password when the user has ForceSetPasswordReaason.TdeOffboardingUntrustedDevice", async () => {
+        const { router } = setup(
+          AuthenticationStatus.Locked,
+          ForceSetPasswordReason.TdeOffboardingUntrustedDevice,
+          false,
+          FeatureFlag.PM16117_SetInitialPasswordRefactor,
+        );
+
+        await router.navigate(["guarded-route"]);
+        expect(router.url).toBe("/set-initial-password");
+      });
+
+      it("should allow navigation to continue to /set-initial-password when the user has ForceSetPasswordReason.TdeOffboardingUntrustedDevice", async () => {
+        const { router } = setup(
+          AuthenticationStatus.Unlocked,
+          ForceSetPasswordReason.TdeOffboardingUntrustedDevice,
+          false,
+          FeatureFlag.PM16117_SetInitialPasswordRefactor,
+        );
+
+        await router.navigate(["/set-initial-password"]);
+        expect(router.url).toContain("/set-initial-password");
+      });
+    });
+  });
+
   describe("given user is Unlocked", () => {
     describe("given the PM16117_SetInitialPasswordRefactor feature flag is ON", () => {
       const tests = [
diff --git a/libs/angular/src/auth/guards/auth.guard.ts b/libs/angular/src/auth/guards/auth.guard.ts
index 7b8c21fef62..58ee3a59bbe 100644
--- a/libs/angular/src/auth/guards/auth.guard.ts
+++ b/libs/angular/src/auth/guards/auth.guard.ts
@@ -61,9 +61,22 @@ export const authGuard: CanActivateFn = async (
     return router.createUrlTree(["/set-initial-password"]);
   }
 
+  // TDE Offboarding on untrusted device
   if (
     authStatus === AuthenticationStatus.Locked &&
-    forceSetPasswordReason !== ForceSetPasswordReason.SsoNewJitProvisionedUser
+    forceSetPasswordReason === ForceSetPasswordReason.TdeOffboardingUntrustedDevice &&
+    !routerState.url.includes("set-initial-password") &&
+    isSetInitialPasswordFlagOn
+  ) {
+    return router.createUrlTree(["/set-initial-password"]);
+  }
+
+  // We must add exemptions for the SsoNewJitProvisionedUser and TdeOffboardingUntrustedDevice scenarios as
+  // the "set-initial-password" route is guarded by the authGuard.
+  if (
+    authStatus === AuthenticationStatus.Locked &&
+    forceSetPasswordReason !== ForceSetPasswordReason.SsoNewJitProvisionedUser &&
+    forceSetPasswordReason !== ForceSetPasswordReason.TdeOffboardingUntrustedDevice
   ) {
     if (routerState != null) {
       messagingService.send("lockedUrl", { url: routerState.url });
@@ -91,7 +104,7 @@ export const authGuard: CanActivateFn = async (
     return router.createUrlTree([route]);
   }
 
-  // TDE Offboarding
+  // TDE Offboarding on trusted device
   if (
     forceSetPasswordReason === ForceSetPasswordReason.TdeOffboarding &&
     !routerState.url.includes("update-temp-password") &&
diff --git a/libs/angular/src/auth/password-management/set-initial-password/set-initial-password.component.html b/libs/angular/src/auth/password-management/set-initial-password/set-initial-password.component.html
index 4956f293d1e..8033d2022f4 100644
--- a/libs/angular/src/auth/password-management/set-initial-password/set-initial-password.component.html
+++ b/libs/angular/src/auth/password-management/set-initial-password/set-initial-password.component.html
@@ -7,28 +7,38 @@
     ></i>
   </div>
 } @else {
-  <bit-callout
-    *ngIf="resetPasswordAutoEnroll"
-    type="warning"
-    title="{{ 'resetPasswordPolicyAutoEnroll' | i18n }}"
-  >
-    {{ "resetPasswordAutoEnrollInviteWarning" | i18n }}
-  </bit-callout>
+  @if (userType === SetInitialPasswordUserType.OFFBOARDED_TDE_ORG_USER_UNTRUSTED_DEVICE) {
+    <div class="tw-mt-4"></div>
+    <bit-callout type="warning">
+      {{ "loginOnTrustedDeviceOrAskAdminToAssignPassword" | i18n }}
+    </bit-callout>
+    <button type="button" bitButton block buttonType="secondary" (click)="logout()">
+      {{ "logOut" | i18n }}
+    </button>
+  } @else {
+    <bit-callout
+      *ngIf="resetPasswordAutoEnroll"
+      type="warning"
+      title="{{ 'resetPasswordPolicyAutoEnroll' | i18n }}"
+    >
+      {{ "resetPasswordAutoEnrollInviteWarning" | i18n }}
+    </bit-callout>
 
-  <auth-input-password
-    [flow]="inputPasswordFlow"
-    [email]="email"
-    [userId]="userId"
-    [loading]="submitting"
-    [masterPasswordPolicyOptions]="masterPasswordPolicyOptions"
-    [primaryButtonText]="{
-      key:
-        userType === SetInitialPasswordUserType.OFFBOARDED_TDE_ORG_USER
-          ? 'setPassword'
-          : 'createAccount',
-    }"
-    [secondaryButtonText]="{ key: 'logOut' }"
-    (onPasswordFormSubmit)="handlePasswordFormSubmit($event)"
-    (onSecondaryButtonClick)="logout()"
-  ></auth-input-password>
+    <auth-input-password
+      [flow]="inputPasswordFlow"
+      [email]="email"
+      [userId]="userId"
+      [loading]="submitting"
+      [masterPasswordPolicyOptions]="masterPasswordPolicyOptions"
+      [primaryButtonText]="{
+        key:
+          userType === SetInitialPasswordUserType.OFFBOARDED_TDE_ORG_USER
+            ? 'setPassword'
+            : 'createAccount',
+      }"
+      [secondaryButtonText]="{ key: 'logOut' }"
+      (onPasswordFormSubmit)="handlePasswordFormSubmit($event)"
+      (onSecondaryButtonClick)="logout()"
+    ></auth-input-password>
+  }
 }
diff --git a/libs/angular/src/auth/password-management/set-initial-password/set-initial-password.component.ts b/libs/angular/src/auth/password-management/set-initial-password/set-initial-password.component.ts
index 2de9aaf7b75..27d4c11f692 100644
--- a/libs/angular/src/auth/password-management/set-initial-password/set-initial-password.component.ts
+++ b/libs/angular/src/auth/password-management/set-initial-password/set-initial-password.component.ts
@@ -1,6 +1,7 @@
 import { CommonModule } from "@angular/common";
 import { Component, OnInit } from "@angular/core";
 import { ActivatedRoute, Router } from "@angular/router";
+// import { NoAccess } from "libs/components/src/icon/icons";
 import { firstValueFrom } from "rxjs";
 
 // This import has been flagged as unallowed for this class. It may be involved in a circular dependency loop.
@@ -30,9 +31,11 @@ import { SyncService } from "@bitwarden/common/platform/sync";
 import { UserId } from "@bitwarden/common/types/guid";
 import {
   AnonLayoutWrapperDataService,
+  ButtonModule,
   CalloutComponent,
   DialogService,
   ToastService,
+  Icons,
 } from "@bitwarden/components";
 import { I18nPipe } from "@bitwarden/ui-common";
 
@@ -46,7 +49,7 @@ import {
 @Component({
   standalone: true,
   templateUrl: "set-initial-password.component.html",
-  imports: [CalloutComponent, CommonModule, InputPasswordComponent, I18nPipe],
+  imports: [ButtonModule, CalloutComponent, CommonModule, InputPasswordComponent, I18nPipe],
 })
 export class SetInitialPasswordComponent implements OnInit {
   protected inputPasswordFlow = InputPasswordFlow.SetInitialPasswordAuthedUser;
@@ -106,6 +109,14 @@ export class SetInitialPasswordComponent implements OnInit {
       this.masterPasswordService.forceSetPasswordReason$(this.userId),
     );
 
+    if (this.forceSetPasswordReason === ForceSetPasswordReason.TdeOffboardingUntrustedDevice) {
+      this.userType = SetInitialPasswordUserType.OFFBOARDED_TDE_ORG_USER_UNTRUSTED_DEVICE;
+      this.anonLayoutWrapperDataService.setAnonLayoutWrapperData({
+        pageTitle: { key: "unableToCompleteLogin" },
+        pageIcon: Icons.NoAccess,
+      });
+    }
+
     if (this.forceSetPasswordReason === ForceSetPasswordReason.SsoNewJitProvisionedUser) {
       this.userType = SetInitialPasswordUserType.JIT_PROVISIONED_MP_ORG_USER;
       this.anonLayoutWrapperDataService.setAnonLayoutWrapperData({
diff --git a/libs/angular/src/auth/password-management/set-initial-password/set-initial-password.service.abstraction.ts b/libs/angular/src/auth/password-management/set-initial-password/set-initial-password.service.abstraction.ts
index c167c1675c1..c1f6ba1a5ec 100644
--- a/libs/angular/src/auth/password-management/set-initial-password/set-initial-password.service.abstraction.ts
+++ b/libs/angular/src/auth/password-management/set-initial-password/set-initial-password.service.abstraction.ts
@@ -22,9 +22,15 @@ export const _SetInitialPasswordUserType = {
 
   /**
    * A user in an org that offboarded from trusted device encryption and is now a
-   * master-password-encryption org
+   * master-password-encryption org. User is on a trusted device.
    */
   OFFBOARDED_TDE_ORG_USER: "offboarded_tde_org_user",
+
+  /**
+   * A user in an org that offboarded from trusted device encryption and is now a
+   * master-password-encryption org. User is on an untrusted device.
+   */
+  OFFBOARDED_TDE_ORG_USER_UNTRUSTED_DEVICE: "offboarded_tde_org_user_untrusted_device",
 } as const;
 
 type _SetInitialPasswordUserType = typeof _SetInitialPasswordUserType;
diff --git a/libs/angular/src/services/jslib-services.module.ts b/libs/angular/src/services/jslib-services.module.ts
index 96a95de501e..acb1553387b 100644
--- a/libs/angular/src/services/jslib-services.module.ts
+++ b/libs/angular/src/services/jslib-services.module.ts
@@ -498,6 +498,7 @@ const safeProviders: SafeProvider[] = [
       VaultTimeoutSettingsService,
       KdfConfigService,
       TaskSchedulerService,
+      ConfigService,
     ],
   }),
   safeProvider({
diff --git a/libs/auth/src/common/login-strategies/login.strategy.ts b/libs/auth/src/common/login-strategies/login.strategy.ts
index f1b7d236fb7..dc51ce1fa04 100644
--- a/libs/auth/src/common/login-strategies/login.strategy.ts
+++ b/libs/auth/src/common/login-strategies/login.strategy.ts
@@ -265,8 +265,6 @@ export abstract class LoginStrategy {
 
     result.resetMasterPassword = response.resetMasterPassword;
 
-    await this.processForceSetPasswordReason(response.forcePasswordReset, userId);
-
     if (response.twoFactorToken != null) {
       // note: we can read email from access token b/c it was saved in saveAccountInformation
       const userEmail = await this.tokenService.getEmail();
@@ -278,6 +276,9 @@ export abstract class LoginStrategy {
     await this.setUserKey(response, userId);
     await this.setPrivateKey(response, userId);
 
+    // This needs to run after the keys are set because it checks for the existence of the encrypted private key
+    await this.processForceSetPasswordReason(response.forcePasswordReset, userId);
+
     this.messagingService.send("loggedIn");
 
     return result;
diff --git a/libs/auth/src/common/login-strategies/sso-login.strategy.spec.ts b/libs/auth/src/common/login-strategies/sso-login.strategy.spec.ts
index e5326a7ea97..98142003c6e 100644
--- a/libs/auth/src/common/login-strategies/sso-login.strategy.spec.ts
+++ b/libs/auth/src/common/login-strategies/sso-login.strategy.spec.ts
@@ -5,10 +5,12 @@ import { ApiService } from "@bitwarden/common/abstractions/api.service";
 import { TokenService } from "@bitwarden/common/auth/abstractions/token.service";
 import { TwoFactorService } from "@bitwarden/common/auth/abstractions/two-factor.service";
 import { AdminAuthRequestStorable } from "@bitwarden/common/auth/models/domain/admin-auth-req-storable";
+import { ForceSetPasswordReason } from "@bitwarden/common/auth/models/domain/force-set-password-reason";
 import { AuthRequestResponse } from "@bitwarden/common/auth/models/response/auth-request.response";
 import { IdentityTokenResponse } from "@bitwarden/common/auth/models/response/identity-token.response";
 import { IUserDecryptionOptionsServerResponse } from "@bitwarden/common/auth/models/response/user-decryption-options/user-decryption-options.response";
 import { BillingAccountProfileStateService } from "@bitwarden/common/billing/abstractions/account/billing-account-profile-state.service";
+import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
 import { DeviceTrustServiceAbstraction } from "@bitwarden/common/key-management/device-trust/abstractions/device-trust.service.abstraction";
 import { KeyConnectorService } from "@bitwarden/common/key-management/key-connector/abstractions/key-connector.service";
@@ -19,6 +21,7 @@ import {
 } from "@bitwarden/common/key-management/vault-timeout";
 import { ErrorResponse } from "@bitwarden/common/models/response/error.response";
 import { AppIdService } from "@bitwarden/common/platform/abstractions/app-id.service";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { EnvironmentService } from "@bitwarden/common/platform/abstractions/environment.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
@@ -26,6 +29,7 @@ import { MessagingService } from "@bitwarden/common/platform/abstractions/messag
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
 import { StateService } from "@bitwarden/common/platform/abstractions/state.service";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
+import { EncryptedString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import { FakeAccountService, mockAccountServiceWith } from "@bitwarden/common/spec";
 import { CsprngArray } from "@bitwarden/common/types/csprng";
@@ -66,6 +70,7 @@ describe("SsoLoginStrategy", () => {
   let vaultTimeoutSettingsService: MockProxy<VaultTimeoutSettingsService>;
   let kdfConfigService: MockProxy<KdfConfigService>;
   let environmentService: MockProxy<EnvironmentService>;
+  let configService: MockProxy<ConfigService>;
 
   let ssoLoginStrategy: SsoLoginStrategy;
   let credentials: SsoLoginCredentials;
@@ -102,6 +107,7 @@ describe("SsoLoginStrategy", () => {
     vaultTimeoutSettingsService = mock<VaultTimeoutSettingsService>();
     kdfConfigService = mock<KdfConfigService>();
     environmentService = mock<EnvironmentService>();
+    configService = mock<ConfigService>();
 
     tokenService.getTwoFactorToken.mockResolvedValue(null);
     appIdService.getAppId.mockResolvedValue(deviceId);
@@ -133,6 +139,7 @@ describe("SsoLoginStrategy", () => {
       deviceTrustService,
       authRequestService,
       i18nService,
+      configService,
       accountService,
       masterPasswordService,
       keyService,
@@ -203,6 +210,45 @@ describe("SsoLoginStrategy", () => {
     );
   });
 
+  describe("given the PM16117_SetInitialPasswordRefactor feature flag is ON", () => {
+    beforeEach(() => {
+      configService.getFeatureFlag.mockImplementation(async (flag) => {
+        if (flag === FeatureFlag.PM16117_SetInitialPasswordRefactor) {
+          return true;
+        }
+        return false;
+      });
+    });
+
+    describe("given the user does not have the `trustedDeviceOption`, does not have a master password, is not using key connector, does not have a user key, but they DO have a `userKeyEncryptedPrivateKey`", () => {
+      it("should set the forceSetPasswordReason to TdeOffboardingUntrustedDevice", async () => {
+        // Arrange
+        const mockUserDecryptionOptions: IUserDecryptionOptionsServerResponse = {
+          HasMasterPassword: false,
+          TrustedDeviceOption: null,
+          KeyConnectorOption: null,
+        };
+        const tokenResponse = identityTokenResponseFactory(null, mockUserDecryptionOptions);
+        apiService.postIdentityToken.mockResolvedValue(tokenResponse);
+
+        keyService.userEncryptedPrivateKey$.mockReturnValue(
+          of("userKeyEncryptedPrivateKey" as EncryptedString),
+        );
+        keyService.hasUserKey.mockResolvedValue(false);
+
+        // Act
+        await ssoLoginStrategy.logIn(credentials);
+
+        // Assert
+        expect(masterPasswordService.mock.setForceSetPasswordReason).toHaveBeenCalledTimes(1);
+        expect(masterPasswordService.mock.setForceSetPasswordReason).toHaveBeenCalledWith(
+          ForceSetPasswordReason.TdeOffboardingUntrustedDevice,
+          userId,
+        );
+      });
+    });
+  });
+
   describe("Trusted Device Decryption", () => {
     const deviceKeyBytesLength = 64;
     const mockDeviceKeyRandomBytes = new Uint8Array(deviceKeyBytesLength).buffer as CsprngArray;
diff --git a/libs/auth/src/common/login-strategies/sso-login.strategy.ts b/libs/auth/src/common/login-strategies/sso-login.strategy.ts
index 4f5479cd5c4..a48ffd09503 100644
--- a/libs/auth/src/common/login-strategies/sso-login.strategy.ts
+++ b/libs/auth/src/common/login-strategies/sso-login.strategy.ts
@@ -9,9 +9,11 @@ import { SsoTokenRequest } from "@bitwarden/common/auth/models/request/identity-
 import { AuthRequestResponse } from "@bitwarden/common/auth/models/response/auth-request.response";
 import { IdentityTokenResponse } from "@bitwarden/common/auth/models/response/identity-token.response";
 import { HttpStatusCode } from "@bitwarden/common/enums";
+import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
 import { DeviceTrustServiceAbstraction } from "@bitwarden/common/key-management/device-trust/abstractions/device-trust.service.abstraction";
 import { KeyConnectorService } from "@bitwarden/common/key-management/key-connector/abstractions/key-connector.service";
 import { ErrorResponse } from "@bitwarden/common/models/response/error.response";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { UserId } from "@bitwarden/common/types/guid";
 
@@ -72,6 +74,7 @@ export class SsoLoginStrategy extends LoginStrategy {
     private deviceTrustService: DeviceTrustServiceAbstraction,
     private authRequestService: AuthRequestServiceAbstraction,
     private i18nService: I18nService,
+    private configService: ConfigService,
     ...sharedDeps: ConstructorParameters<typeof LoginStrategy>
   ) {
     super(...sharedDeps);
@@ -343,13 +346,38 @@ export class SsoLoginStrategy extends LoginStrategy {
     tokenResponse: IdentityTokenResponse,
     userId: UserId,
   ): Promise<void> {
-    const newSsoUser = tokenResponse.key == null;
+    const isSetInitialPasswordFlagOn = await this.configService.getFeatureFlag(
+      FeatureFlag.PM16117_SetInitialPasswordRefactor,
+    );
 
-    if (!newSsoUser) {
-      await this.keyService.setPrivateKey(
-        tokenResponse.privateKey ?? (await this.createKeyPairForOldAccount(userId)),
-        userId,
-      );
+    if (isSetInitialPasswordFlagOn) {
+      if (tokenResponse.hasMasterKeyEncryptedUserKey()) {
+        // User has masterKeyEncryptedUserKey, so set the userKeyEncryptedPrivateKey
+        // Note: new JIT provisioned SSO users will not yet have a user asymmetric key pair
+        // and so we don't want them falling into the createKeyPairForOldAccount flow
+        await this.keyService.setPrivateKey(
+          tokenResponse.privateKey ?? (await this.createKeyPairForOldAccount(userId)),
+          userId,
+        );
+      } else if (tokenResponse.privateKey) {
+        // User doesn't have masterKeyEncryptedUserKey but they do have a userKeyEncryptedPrivateKey
+        // This is just existing TDE users or a TDE offboarder on an untrusted device
+        await this.keyService.setPrivateKey(tokenResponse.privateKey, userId);
+      }
+      // else {
+      //    User could be new JIT provisioned SSO user in either a MP encryption org OR a TDE org.
+      //    In either case, the user doesn't yet have a user asymmetric key pair, a user key, or a master key + master key encrypted user key.
+      // }
+    } else {
+      // A user that does not yet have a masterKeyEncryptedUserKey set is a new SSO user
+      const newSsoUser = tokenResponse.key == null;
+
+      if (!newSsoUser) {
+        await this.keyService.setPrivateKey(
+          tokenResponse.privateKey ?? (await this.createKeyPairForOldAccount(userId)),
+          userId,
+        );
+      }
     }
   }
 
@@ -389,7 +417,7 @@ export class SsoLoginStrategy extends LoginStrategy {
       return false;
     }
 
-    // Check for TDE offboarding - user is being offboarded from TDE and needs to set a password
+    // Check for TDE offboarding - user is being offboarded from TDE and needs to set a password on a trusted device
     if (userDecryptionOptions.trustedDeviceOption?.isTdeOffboarding) {
       await this.masterPasswordService.setForceSetPasswordReason(
         ForceSetPasswordReason.TdeOffboarding,
@@ -398,6 +426,39 @@ export class SsoLoginStrategy extends LoginStrategy {
       return true;
     }
 
+    // If a TDE org user in an offboarding state logs in on an untrusted device, then they will receive their existing userKeyEncryptedPrivateKey from the server, but
+    // TDE would not have been able to decrypt their user key b/c we don't send down TDE as a valid decryption option, so the user key will be unavilable here for TDE org users on untrusted devices.
+    // - UserDecryptionOptions.trustedDeviceOption is undefined -- device isn't trusted.
+    // - UserDecryptionOptions.hasMasterPassword is false -- user doesn't have a master password.
+    // - UserDecryptionOptions.UsesKeyConnector is undefined. -- they aren't using key connector
+    // - UserKey is not set after successful login -- because automatic decryption is not available
+    // - userKeyEncryptedPrivateKey is set after successful login -- this is the key differentiator between a TDE org user logging into an untrusted device and MP encryption JIT provisioned user logging in for the first time.
+    const isSetInitialPasswordFlagOn = await this.configService.getFeatureFlag(
+      FeatureFlag.PM16117_SetInitialPasswordRefactor,
+    );
+
+    if (isSetInitialPasswordFlagOn) {
+      const hasUserKeyEncryptedPrivateKey = await firstValueFrom(
+        this.keyService.userEncryptedPrivateKey$(userId),
+      );
+      const hasUserKey = await this.keyService.hasUserKey(userId);
+
+      // TODO: PM-23491 we should explore consolidating this logic into a flag on the server. It could be set when an org is switched from TDE to MP encryption for each org user.
+      if (
+        !userDecryptionOptions.trustedDeviceOption &&
+        !userDecryptionOptions.hasMasterPassword &&
+        !userDecryptionOptions.keyConnectorOption?.keyConnectorUrl &&
+        hasUserKeyEncryptedPrivateKey &&
+        !hasUserKey
+      ) {
+        await this.masterPasswordService.setForceSetPasswordReason(
+          ForceSetPasswordReason.TdeOffboardingUntrustedDevice,
+          userId,
+        );
+        return true;
+      }
+    }
+
     // Check if user has permission to set password but hasn't yet
     if (
       !userDecryptionOptions.hasMasterPassword &&
diff --git a/libs/auth/src/common/services/login-strategies/login-strategy.service.spec.ts b/libs/auth/src/common/services/login-strategies/login-strategy.service.spec.ts
index 981f5592621..8ddee96dd57 100644
--- a/libs/auth/src/common/services/login-strategies/login-strategy.service.spec.ts
+++ b/libs/auth/src/common/services/login-strategies/login-strategy.service.spec.ts
@@ -21,6 +21,7 @@ import {
   VaultTimeoutSettingsService,
 } from "@bitwarden/common/key-management/vault-timeout";
 import { AppIdService } from "@bitwarden/common/platform/abstractions/app-id.service";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { EnvironmentService } from "@bitwarden/common/platform/abstractions/environment.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
@@ -75,6 +76,7 @@ describe("LoginStrategyService", () => {
   let vaultTimeoutSettingsService: MockProxy<VaultTimeoutSettingsService>;
   let kdfConfigService: MockProxy<KdfConfigService>;
   let taskSchedulerService: MockProxy<TaskSchedulerService>;
+  let configService: MockProxy<ConfigService>;
 
   let stateProvider: FakeGlobalStateProvider;
   let loginStrategyCacheExpirationState: FakeGlobalState<Date | null>;
@@ -107,6 +109,7 @@ describe("LoginStrategyService", () => {
     vaultTimeoutSettingsService = mock<VaultTimeoutSettingsService>();
     kdfConfigService = mock<KdfConfigService>();
     taskSchedulerService = mock<TaskSchedulerService>();
+    configService = mock<ConfigService>();
 
     sut = new LoginStrategyService(
       accountService,
@@ -134,6 +137,7 @@ describe("LoginStrategyService", () => {
       vaultTimeoutSettingsService,
       kdfConfigService,
       taskSchedulerService,
+      configService,
     );
 
     loginStrategyCacheExpirationState = stateProvider.getFake(CACHE_EXPIRATION_KEY);
diff --git a/libs/auth/src/common/services/login-strategies/login-strategy.service.ts b/libs/auth/src/common/services/login-strategies/login-strategy.service.ts
index a9b7ef250bc..767d52de370 100644
--- a/libs/auth/src/common/services/login-strategies/login-strategy.service.ts
+++ b/libs/auth/src/common/services/login-strategies/login-strategy.service.ts
@@ -26,6 +26,7 @@ import { VaultTimeoutSettingsService } from "@bitwarden/common/key-management/va
 import { PreloginRequest } from "@bitwarden/common/models/request/prelogin.request";
 import { ErrorResponse } from "@bitwarden/common/models/response/error.response";
 import { AppIdService } from "@bitwarden/common/platform/abstractions/app-id.service";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { EnvironmentService } from "@bitwarden/common/platform/abstractions/environment.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
@@ -131,6 +132,7 @@ export class LoginStrategyService implements LoginStrategyServiceAbstraction {
     protected vaultTimeoutSettingsService: VaultTimeoutSettingsService,
     protected kdfConfigService: KdfConfigService,
     protected taskSchedulerService: TaskSchedulerService,
+    protected configService: ConfigService,
   ) {
     this.currentAuthnTypeState = this.stateProvider.get(CURRENT_LOGIN_STRATEGY_KEY);
     this.loginStrategyCacheState = this.stateProvider.get(CACHE_KEY);
@@ -423,6 +425,7 @@ export class LoginStrategyService implements LoginStrategyServiceAbstraction {
               this.deviceTrustService,
               this.authRequestService,
               this.i18nService,
+              this.configService,
               ...sharedDeps,
             );
           case AuthenticationType.UserApiKey:
diff --git a/libs/common/src/auth/models/domain/force-set-password-reason.ts b/libs/common/src/auth/models/domain/force-set-password-reason.ts
index 4a8ec8529cf..9e2069b30d6 100644
--- a/libs/common/src/auth/models/domain/force-set-password-reason.ts
+++ b/libs/common/src/auth/models/domain/force-set-password-reason.ts
@@ -37,6 +37,15 @@ export enum ForceSetPasswordReason {
    */
   TdeOffboarding,
 
+  /**
+   * Occurs when an org admin switches the org from trusted-device-encryption to master-password-encryption,
+   * which forces the org user to set an initial password. User must not already have a master password,
+   * and they must be on an untrusted device.
+   *
+   * Calculated on client based on server flags and user state.
+   */
+  TdeOffboardingUntrustedDevice,
+
   /*----------------------------
       Change Existing Password  
   -----------------------------*/
diff --git a/libs/common/src/auth/models/response/identity-token.response.ts b/libs/common/src/auth/models/response/identity-token.response.ts
index f8c40b41bf0..2d991e9f349 100644
--- a/libs/common/src/auth/models/response/identity-token.response.ts
+++ b/libs/common/src/auth/models/response/identity-token.response.ts
@@ -17,8 +17,8 @@ export class IdentityTokenResponse extends BaseResponse {
   tokenType: string;
 
   resetMasterPassword: boolean;
-  privateKey: string;
-  key?: EncString;
+  privateKey: string; // userKeyEncryptedPrivateKey
+  key?: EncString; // masterKeyEncryptedUserKey
   twoFactorToken: string;
   kdf: KdfType;
   kdfIterations: number;
@@ -62,4 +62,8 @@ export class IdentityTokenResponse extends BaseResponse {
       );
     }
   }
+
+  hasMasterKeyEncryptedUserKey(): boolean {
+    return Boolean(this.key);
+  }
 }

From b92879a839263542a3b698040436144685b0691c Mon Sep 17 00:00:00 2001
From: SmithThe4th <gsmith@bitwarden.com>
Date: Tue, 8 Jul 2025 13:52:10 -0400
Subject: [PATCH 079/239] Fix card filter restriction when user belongs to
 multiple orgs (#15521)

---
 .../vault-popup-list-filters.service.ts        | 18 +++++++++---------
 1 file changed, 9 insertions(+), 9 deletions(-)

diff --git a/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.ts b/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.ts
index 610b099952d..dde11aac5f7 100644
--- a/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.ts
+++ b/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.ts
@@ -266,15 +266,15 @@ export class VaultPopupListFiltersService {
   readonly cipherTypes$: Observable<ChipSelectOption<CipherType>[]> =
     this.restrictedItemTypesService.restricted$.pipe(
       map((restrictedTypes) => {
-        const restrictedCipherTypes = restrictedTypes.map((r) => r.cipherType);
-
-        return CIPHER_MENU_ITEMS.filter((item) => !restrictedCipherTypes.includes(item.type)).map(
-          (item) => ({
-            value: item.type,
-            label: this.i18nService.t(item.labelKey),
-            icon: item.icon,
-          }),
-        );
+        return CIPHER_MENU_ITEMS.filter((item) => {
+          const restriction = restrictedTypes.find((r) => r.cipherType === item.type);
+          // Show if no restriction or if the restriction allows viewing in at least one org
+          return !restriction || restriction.allowViewOrgIds.length > 0;
+        }).map((item) => ({
+          value: item.type,
+          label: this.i18nService.t(item.labelKey),
+          icon: item.icon,
+        }));
       }),
     );
 

From d1b1b5c57b70e6502b158f15f0f03c7537fe4242 Mon Sep 17 00:00:00 2001
From: Bernd Schoolmann <mail@quexten.com>
Date: Tue, 8 Jul 2025 19:52:32 +0200
Subject: [PATCH 080/239] Remove "require MP on restart option on mac" (#15395)

---
 apps/desktop/src/app/accounts/settings.component.html | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/apps/desktop/src/app/accounts/settings.component.html b/apps/desktop/src/app/accounts/settings.component.html
index e56615c9122..29480519646 100644
--- a/apps/desktop/src/app/accounts/settings.component.html
+++ b/apps/desktop/src/app/accounts/settings.component.html
@@ -152,7 +152,7 @@
                   supportsBiometric &&
                   this.form.value.biometric &&
                   (userHasMasterPassword || (this.form.value.pin && userHasPinSet)) &&
-                  !this.isLinux
+                  this.isWindows
                 "
               >
                 <div class="checkbox form-group-child">

From 609ca436931758e49a1e4e10c101ad1b69de4f74 Mon Sep 17 00:00:00 2001
From: SmithThe4th <gsmith@bitwarden.com>
Date: Tue, 8 Jul 2025 13:59:00 -0400
Subject: [PATCH 081/239] [PM-23303] Cards showing in trash (#15517)

* Filter out restricted items from all decrypted ciphers

* Fixed tests
---
 .../services/vault-popup-items.service.spec.ts      | 13 +++++++++++++
 .../popup/services/vault-popup-items.service.ts     | 11 ++++++++++-
 .../vault-popup-list-filters.service.spec.ts        |  4 ----
 .../services/vault-popup-list-filters.service.ts    |  8 +-------
 4 files changed, 24 insertions(+), 12 deletions(-)

diff --git a/apps/browser/src/vault/popup/services/vault-popup-items.service.spec.ts b/apps/browser/src/vault/popup/services/vault-popup-items.service.spec.ts
index 63cd0d90d05..28bf710ec60 100644
--- a/apps/browser/src/vault/popup/services/vault-popup-items.service.spec.ts
+++ b/apps/browser/src/vault/popup/services/vault-popup-items.service.spec.ts
@@ -19,6 +19,10 @@ import { CipherType } from "@bitwarden/common/vault/enums";
 import { CipherData } from "@bitwarden/common/vault/models/data/cipher.data";
 import { LocalData } from "@bitwarden/common/vault/models/data/local.data";
 import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
+import {
+  RestrictedCipherType,
+  RestrictedItemTypesService,
+} from "@bitwarden/common/vault/services/restricted-item-types.service";
 
 import { InlineMenuFieldQualificationService } from "../../../autofill/services/inline-menu-field-qualification.service";
 import { BrowserApi } from "../../../platform/browser/browser-api";
@@ -58,6 +62,11 @@ describe("VaultPopupItemsService", () => {
   const userId = Utils.newGuid() as UserId;
   const accountServiceMock = mockAccountServiceWith(userId);
 
+  const restrictedItemTypesService = {
+    restricted$: new BehaviorSubject<RestrictedCipherType[]>([]),
+    isCipherRestricted: jest.fn().mockReturnValue(false),
+  };
+
   beforeEach(() => {
     allCiphers = cipherFactory(10);
     const cipherList = Object.values(allCiphers);
@@ -154,6 +163,10 @@ describe("VaultPopupItemsService", () => {
           useValue: inlineMenuFieldQualificationServiceMock,
         },
         { provide: PopupViewCacheService, useValue: viewCacheService },
+        {
+          provide: RestrictedItemTypesService,
+          useValue: restrictedItemTypesService,
+        },
       ],
     });
 
diff --git a/apps/browser/src/vault/popup/services/vault-popup-items.service.ts b/apps/browser/src/vault/popup/services/vault-popup-items.service.ts
index 20bdbd2eefe..d47abb9e6b3 100644
--- a/apps/browser/src/vault/popup/services/vault-popup-items.service.ts
+++ b/apps/browser/src/vault/popup/services/vault-popup-items.service.ts
@@ -31,6 +31,7 @@ import { SearchService } from "@bitwarden/common/vault/abstractions/search.servi
 import { VaultSettingsService } from "@bitwarden/common/vault/abstractions/vault-settings/vault-settings.service";
 import { CipherType } from "@bitwarden/common/vault/enums";
 import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
+import { RestrictedItemTypesService } from "@bitwarden/common/vault/services/restricted-item-types.service";
 
 import { runInsideAngular } from "../../../platform/browser/run-inside-angular.operator";
 import { PopupViewCacheService } from "../../../platform/popup/view-cache/popup-view-cache.service";
@@ -107,9 +108,16 @@ export class VaultPopupItemsService {
           combineLatest([
             Utils.asyncToObservable(() => this.cipherService.getAllDecrypted(userId)),
             this.cipherService.failedToDecryptCiphers$(userId),
+            this.restrictedItemTypesService.restricted$.pipe(startWith([])),
           ]),
         ),
-        map(([ciphers, failedToDecryptCiphers]) => [...(failedToDecryptCiphers || []), ...ciphers]),
+        map(([ciphers, failedToDecryptCiphers, restrictions]) => {
+          const allCiphers = [...(failedToDecryptCiphers || []), ...ciphers];
+
+          return allCiphers.filter(
+            (cipher) => !this.restrictedItemTypesService.isCipherRestricted(cipher, restrictions),
+          );
+        }),
       ),
     ),
     shareReplay({ refCount: true, bufferSize: 1 }),
@@ -307,6 +315,7 @@ export class VaultPopupItemsService {
     private syncService: SyncService,
     private accountService: AccountService,
     private ngZone: NgZone,
+    private restrictedItemTypesService: RestrictedItemTypesService,
   ) {}
 
   applyFilter(newSearchText: string) {
diff --git a/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.spec.ts b/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.spec.ts
index baa34d7bdbe..1e56fd4d352 100644
--- a/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.spec.ts
+++ b/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.spec.ts
@@ -486,10 +486,6 @@ describe("VaultPopupListFiltersService", () => {
       { type: CipherType.SecureNote, collectionIds: [], organizationId: null },
     ] as CipherView[];
 
-    beforeEach(() => {
-      restrictedItemTypesService.restricted$.next([]);
-    });
-
     it("filters by cipherType", (done) => {
       service.filterFunction$.subscribe((filterFunction) => {
         expect(filterFunction(ciphers)).toEqual([ciphers[0]]);
diff --git a/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.ts b/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.ts
index dde11aac5f7..12d0c445b4c 100644
--- a/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.ts
+++ b/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.ts
@@ -215,10 +215,9 @@ export class VaultPopupListFiltersService {
    */
   filterFunction$: Observable<(ciphers: CipherView[]) => CipherView[]> = combineLatest([
     this.filters$,
-    this.restrictedItemTypesService.restricted$.pipe(startWith([])),
   ]).pipe(
     map(
-      ([filters, restrictions]) =>
+      ([filters]) =>
         (ciphers: CipherView[]) =>
           ciphers.filter((cipher) => {
             // Vault popup lists never shows deleted ciphers
@@ -226,11 +225,6 @@ export class VaultPopupListFiltersService {
               return false;
             }
 
-            // Check if cipher type is restricted (with organization exemptions)
-            if (this.restrictedItemTypesService.isCipherRestricted(cipher, restrictions)) {
-              return false;
-            }
-
             if (filters.cipherType !== null && cipher.type !== filters.cipherType) {
               return false;
             }

From d5e7f3bd0406e509b17f2e1abb532fdda29c5cc4 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=E2=9C=A8=20Audrey=20=E2=9C=A8?= <ajensen@bitwarden.com>
Date: Tue, 8 Jul 2025 16:02:14 -0400
Subject: [PATCH 082/239] [PM-23514] add send access storage location (#15523)

---
 libs/common/src/platform/state/state-definitions.ts | 1 +
 1 file changed, 1 insertion(+)

diff --git a/libs/common/src/platform/state/state-definitions.ts b/libs/common/src/platform/state/state-definitions.ts
index f9e6a5007c7..593a28d04c5 100644
--- a/libs/common/src/platform/state/state-definitions.ts
+++ b/libs/common/src/platform/state/state-definitions.ts
@@ -155,6 +155,7 @@ export const SEND_DISK = new StateDefinition("encryptedSend", "disk", {
 export const SEND_MEMORY = new StateDefinition("decryptedSend", "memory", {
   browser: "memory-large-object",
 });
+export const SEND_ACCESS_AUTH_MEMORY = new StateDefinition("sendAccessAuth", "memory");
 
 // Vault
 

From 682f1f83d9c211e886d6f05fc557eddb25c4c5c2 Mon Sep 17 00:00:00 2001
From: Bryan Cunningham <bcunningham@bitwarden.com>
Date: Tue, 8 Jul 2025 16:13:25 -0400
Subject: [PATCH 083/239] [CL-295] Use aria-disabled on buttons (#15009)

* Use aria-disabled for button disabled state

* remove import from testing story

* use aria-disabled attr on bitLink button

* remove unnecessary story attrs

* remove disabled attr if on button element

* create caprture click util

* use caprture click util and fix tests

* fix lint errors

* fix event type

* combine click capture and attr modification

* fix lint error. Commit spec changes left out of last commit in error

* inject element ref

* move aria-disabled styles to common

* move disabled logic into util

* fix broken async actions stories

* fix broken tests asserting disabled attr

* have test check for string true vlalue

* fix Signal type

* fix form-field story import

* remove injector left in error

* aria-disable icon buttons

* update form component css selector to look for aria-disabled buttons

* use correct types. pass nativeElement directly

* add JSDoc comment for util function

---------

Co-authored-by: Will Martin <contact@willmartian.com>
---
 .../vault-generator-dialog.component.spec.ts  | 18 ++---
 .../web-generator-dialog.component.spec.ts    | 18 ++---
 .../src/async-actions/in-forms.stories.ts     | 18 ++++-
 .../src/async-actions/standalone.stories.ts   | 12 +++-
 .../src/button/button.component.spec.ts       | 14 ++--
 .../components/src/button/button.component.ts | 41 ++++++++----
 .../src/form-field/form-field.component.html  |  2 +-
 .../src/form-field/form-field.stories.ts      |  1 +
 .../src/icon-button/icon-button.component.ts  | 67 ++++++++++++-------
 libs/components/src/link/link.directive.ts    | 27 +++++++-
 .../src/utils/aria-disable-element.ts         | 29 ++++++++
 libs/components/src/utils/index.ts            |  1 +
 12 files changed, 175 insertions(+), 73 deletions(-)
 create mode 100644 libs/components/src/utils/aria-disable-element.ts

diff --git a/apps/browser/src/vault/popup/components/vault-v2/vault-generator-dialog/vault-generator-dialog.component.spec.ts b/apps/browser/src/vault/popup/components/vault-v2/vault-generator-dialog/vault-generator-dialog.component.spec.ts
index b5d35e2005e..b65138dac3a 100644
--- a/apps/browser/src/vault/popup/components/vault-v2/vault-generator-dialog/vault-generator-dialog.component.spec.ts
+++ b/apps/browser/src/vault/popup/components/vault-v2/vault-generator-dialog/vault-generator-dialog.component.spec.ts
@@ -76,10 +76,8 @@ describe("VaultGeneratorDialogComponent", () => {
     component.onValueGenerated("test-password");
     fixture.detectChanges();
 
-    const button = fixture.debugElement.query(
-      By.css("[data-testid='select-button']"),
-    ).nativeElement;
-    expect(button.disabled).toBe(false);
+    const button = fixture.debugElement.query(By.css("[data-testid='select-button']"));
+    expect(button.attributes["aria-disabled"]).toBe(undefined);
   });
 
   it("should disable the button if no value has been generated", () => {
@@ -90,10 +88,8 @@ describe("VaultGeneratorDialogComponent", () => {
     generator.algorithmSelected.emit({ useGeneratedValue: "Use Password" } as any);
     fixture.detectChanges();
 
-    const button = fixture.debugElement.query(
-      By.css("[data-testid='select-button']"),
-    ).nativeElement;
-    expect(button.disabled).toBe(true);
+    const button = fixture.debugElement.query(By.css("[data-testid='select-button']"));
+    expect(button.attributes["aria-disabled"]).toBe("true");
   });
 
   it("should disable the button if no algorithm is selected", () => {
@@ -104,10 +100,8 @@ describe("VaultGeneratorDialogComponent", () => {
     generator.valueGenerated.emit("test-password");
     fixture.detectChanges();
 
-    const button = fixture.debugElement.query(
-      By.css("[data-testid='select-button']"),
-    ).nativeElement;
-    expect(button.disabled).toBe(true);
+    const button = fixture.debugElement.query(By.css("[data-testid='select-button']"));
+    expect(button.attributes["aria-disabled"]).toBe("true");
   });
 
   it("should update button text when algorithm is selected", () => {
diff --git a/apps/web/src/app/vault/components/web-generator-dialog/web-generator-dialog.component.spec.ts b/apps/web/src/app/vault/components/web-generator-dialog/web-generator-dialog.component.spec.ts
index 085a3d0d4b0..afb32738901 100644
--- a/apps/web/src/app/vault/components/web-generator-dialog/web-generator-dialog.component.spec.ts
+++ b/apps/web/src/app/vault/components/web-generator-dialog/web-generator-dialog.component.spec.ts
@@ -70,10 +70,8 @@ describe("WebVaultGeneratorDialogComponent", () => {
     generator.valueGenerated.emit("test-password");
     fixture.detectChanges();
 
-    const button = fixture.debugElement.query(
-      By.css("[data-testid='select-button']"),
-    ).nativeElement;
-    expect(button.disabled).toBe(false);
+    const button = fixture.debugElement.query(By.css("[data-testid='select-button']"));
+    expect(button.attributes["aria-disabled"]).toBe(undefined);
   });
 
   it("should disable the button if no value has been generated", () => {
@@ -84,10 +82,8 @@ describe("WebVaultGeneratorDialogComponent", () => {
     generator.algorithmSelected.emit({ useGeneratedValue: "Use Password" } as any);
     fixture.detectChanges();
 
-    const button = fixture.debugElement.query(
-      By.css("[data-testid='select-button']"),
-    ).nativeElement;
-    expect(button.disabled).toBe(true);
+    const button = fixture.debugElement.query(By.css("[data-testid='select-button']"));
+    expect(button.attributes["aria-disabled"]).toBe("true");
   });
 
   it("should disable the button if no algorithm is selected", () => {
@@ -98,10 +94,8 @@ describe("WebVaultGeneratorDialogComponent", () => {
     generator.valueGenerated.emit("test-password");
     fixture.detectChanges();
 
-    const button = fixture.debugElement.query(
-      By.css("[data-testid='select-button']"),
-    ).nativeElement;
-    expect(button.disabled).toBe(true);
+    const button = fixture.debugElement.query(By.css("[data-testid='select-button']"));
+    expect(button.attributes["aria-disabled"]).toBe("true");
   });
 
   it("should close with selected value when confirmed", () => {
diff --git a/libs/components/src/async-actions/in-forms.stories.ts b/libs/components/src/async-actions/in-forms.stories.ts
index 857a23227f5..7f51a8bdad2 100644
--- a/libs/components/src/async-actions/in-forms.stories.ts
+++ b/libs/components/src/async-actions/in-forms.stories.ts
@@ -13,6 +13,7 @@ import { IconButtonModule } from "../icon-button";
 import { InputModule } from "../input/input.module";
 import { I18nMockService } from "../utils/i18n-mock.service";
 
+import { AsyncActionsModule } from "./async-actions.module";
 import { BitActionDirective } from "./bit-action.directive";
 import { BitSubmitDirective } from "./bit-submit.directive";
 import { BitFormButtonDirective } from "./form-button.directive";
@@ -40,6 +41,13 @@ const template = `
 @Component({
   selector: "app-promise-example",
   template,
+  imports: [
+    AsyncActionsModule,
+    ButtonModule,
+    FormFieldModule,
+    IconButtonModule,
+    ReactiveFormsModule,
+  ],
 })
 class PromiseExampleComponent {
   formObj = this.formBuilder.group({
@@ -77,6 +85,13 @@ class PromiseExampleComponent {
 @Component({
   selector: "app-observable-example",
   template,
+  imports: [
+    AsyncActionsModule,
+    ButtonModule,
+    FormFieldModule,
+    IconButtonModule,
+    ReactiveFormsModule,
+  ],
 })
 class ObservableExampleComponent {
   formObj = this.formBuilder.group({
@@ -109,7 +124,6 @@ export default {
   title: "Component Library/Async Actions/In Forms",
   decorators: [
     moduleMetadata({
-      declarations: [PromiseExampleComponent, ObservableExampleComponent],
       imports: [
         BitSubmitDirective,
         BitFormButtonDirective,
@@ -120,6 +134,8 @@ export default {
         ButtonModule,
         IconButtonModule,
         BitActionDirective,
+        PromiseExampleComponent,
+        ObservableExampleComponent,
       ],
       providers: [
         {
diff --git a/libs/components/src/async-actions/standalone.stories.ts b/libs/components/src/async-actions/standalone.stories.ts
index d6f7f978bd5..542825eb17a 100644
--- a/libs/components/src/async-actions/standalone.stories.ts
+++ b/libs/components/src/async-actions/standalone.stories.ts
@@ -9,6 +9,7 @@ import { ValidationService } from "@bitwarden/common/platform/abstractions/valid
 import { ButtonModule } from "../button";
 import { IconButtonModule } from "../icon-button";
 
+import { AsyncActionsModule } from "./async-actions.module";
 import { BitActionDirective } from "./bit-action.directive";
 
 const template = /*html*/ `
@@ -20,6 +21,8 @@ const template = /*html*/ `
 @Component({
   template,
   selector: "app-promise-example",
+  imports: [AsyncActionsModule, ButtonModule, IconButtonModule],
+  standalone: true,
 })
 class PromiseExampleComponent {
   statusEmoji = "🟡";
@@ -36,6 +39,7 @@ class PromiseExampleComponent {
 @Component({
   template,
   selector: "app-action-resolves-quickly",
+  imports: [AsyncActionsModule, ButtonModule, IconButtonModule],
 })
 class ActionResolvesQuicklyComponent {
   statusEmoji = "🟡";
@@ -53,6 +57,7 @@ class ActionResolvesQuicklyComponent {
 @Component({
   template,
   selector: "app-observable-example",
+  imports: [AsyncActionsModule, ButtonModule, IconButtonModule],
 })
 class ObservableExampleComponent {
   action = () => {
@@ -63,6 +68,7 @@ class ObservableExampleComponent {
 @Component({
   template,
   selector: "app-rejected-promise-example",
+  imports: [AsyncActionsModule, ButtonModule, IconButtonModule],
 })
 class RejectedPromiseExampleComponent {
   action = async () => {
@@ -76,13 +82,15 @@ export default {
   title: "Component Library/Async Actions/Standalone",
   decorators: [
     moduleMetadata({
-      declarations: [
+      imports: [
+        ButtonModule,
+        IconButtonModule,
+        BitActionDirective,
         PromiseExampleComponent,
         ObservableExampleComponent,
         RejectedPromiseExampleComponent,
         ActionResolvesQuicklyComponent,
       ],
-      imports: [ButtonModule, IconButtonModule, BitActionDirective],
       providers: [
         {
           provide: ValidationService,
diff --git a/libs/components/src/button/button.component.spec.ts b/libs/components/src/button/button.component.spec.ts
index 6ddbc172803..1651b6cf12a 100644
--- a/libs/components/src/button/button.component.spec.ts
+++ b/libs/components/src/button/button.component.spec.ts
@@ -34,23 +34,25 @@ describe("Button", () => {
     expect(buttonDebugElement.nativeElement.disabled).toBeFalsy();
   });
 
-  it("should be disabled when disabled is true", () => {
+  it("should be aria-disabled and not html attribute disabled when disabled is true", () => {
     testAppComponent.disabled = true;
     fixture.detectChanges();
-
-    expect(buttonDebugElement.nativeElement.disabled).toBeTruthy();
+    expect(buttonDebugElement.attributes["aria-disabled"]).toBe("true");
+    expect(buttonDebugElement.nativeElement.disabled).toBeFalsy();
     // Anchor tags cannot be disabled.
   });
 
-  it("should be disabled when attribute disabled is true", () => {
-    expect(disabledButtonDebugElement.nativeElement.disabled).toBeTruthy();
+  it("should be aria-disabled not html attribute disabled when attribute disabled is true", () => {
+    fixture.detectChanges();
+    expect(disabledButtonDebugElement.attributes["aria-disabled"]).toBe("true");
+    expect(disabledButtonDebugElement.nativeElement.disabled).toBeFalsy();
   });
 
   it("should be disabled when loading is true", () => {
     testAppComponent.loading = true;
     fixture.detectChanges();
 
-    expect(buttonDebugElement.nativeElement.disabled).toBeTruthy();
+    expect(buttonDebugElement.attributes["aria-disabled"]).toBe("true");
   });
 });
 
diff --git a/libs/components/src/button/button.component.ts b/libs/components/src/button/button.component.ts
index 011360db867..671b1dfb96d 100644
--- a/libs/components/src/button/button.component.ts
+++ b/libs/components/src/button/button.component.ts
@@ -1,10 +1,21 @@
 import { coerceBooleanProperty } from "@angular/cdk/coercion";
 import { NgClass } from "@angular/common";
-import { Input, HostBinding, Component, model, computed, input } from "@angular/core";
+import {
+  Input,
+  HostBinding,
+  Component,
+  model,
+  computed,
+  input,
+  ElementRef,
+  inject,
+  Signal,
+} from "@angular/core";
 import { toObservable, toSignal } from "@angular/core/rxjs-interop";
 import { debounce, interval } from "rxjs";
 
 import { ButtonLikeAbstraction, ButtonType, ButtonSize } from "../shared/button-like.abstraction";
+import { ariaDisableElement } from "../utils";
 
 const focusRing = [
   "focus-visible:tw-ring-2",
@@ -52,7 +63,7 @@ const buttonStyles: Record<ButtonType, string[]> = {
   providers: [{ provide: ButtonLikeAbstraction, useExisting: ButtonComponent }],
   imports: [NgClass],
   host: {
-    "[attr.disabled]": "disabledAttr()",
+    "[attr.aria-disabled]": "disabledAttr()",
   },
 })
 export class ButtonComponent implements ButtonLikeAbstraction {
@@ -69,27 +80,28 @@ export class ButtonComponent implements ButtonLikeAbstraction {
       "focus:tw-outline-none",
     ]
       .concat(this.block ? ["tw-w-full", "tw-block"] : ["tw-inline-block"])
-      .concat(buttonStyles[this.buttonType ?? "secondary"])
       .concat(
         this.showDisabledStyles() || this.disabled()
           ? [
-              "disabled:tw-bg-secondary-300",
-              "disabled:hover:tw-bg-secondary-300",
-              "disabled:tw-border-secondary-300",
-              "disabled:hover:tw-border-secondary-300",
-              "disabled:!tw-text-muted",
-              "disabled:hover:!tw-text-muted",
-              "disabled:tw-cursor-not-allowed",
-              "disabled:hover:tw-no-underline",
+              "aria-disabled:!tw-bg-secondary-300",
+              "hover:tw-bg-secondary-300",
+              "aria-disabled:tw-border-secondary-300",
+              "hover:tw-border-secondary-300",
+              "aria-disabled:!tw-text-muted",
+              "hover:!tw-text-muted",
+              "aria-disabled:tw-cursor-not-allowed",
+              "hover:tw-no-underline",
+              "aria-disabled:tw-pointer-events-none",
             ]
           : [],
       )
+      .concat(buttonStyles[this.buttonType ?? "secondary"])
       .concat(buttonSizeStyles[this.size() || "default"]);
   }
 
   protected disabledAttr = computed(() => {
     const disabled = this.disabled() != null && this.disabled() !== false;
-    return disabled || this.loading() ? true : null;
+    return disabled || this.loading() ? true : undefined;
   });
 
   /**
@@ -138,4 +150,9 @@ export class ButtonComponent implements ButtonLikeAbstraction {
   );
 
   disabled = model<boolean>(false);
+  private el = inject(ElementRef<HTMLButtonElement>);
+
+  constructor() {
+    ariaDisableElement(this.el.nativeElement, this.disabledAttr as Signal<boolean | undefined>);
+  }
 }
diff --git a/libs/components/src/form-field/form-field.component.html b/libs/components/src/form-field/form-field.component.html
index c4fd018b3ba..ccea0546f3a 100644
--- a/libs/components/src/form-field/form-field.component.html
+++ b/libs/components/src/form-field/form-field.component.html
@@ -46,7 +46,7 @@
       </div>
     </div>
     <div
-      class="tw-gap-1 tw-bg-background tw-rounded-lg tw-flex tw-min-h-11 [&:not(:has(button:enabled)):has(input:read-only)]:tw-bg-secondary-100 [&:not(:has(button:enabled)):has(textarea:read-only)]:tw-bg-secondary-100"
+      class="tw-gap-1 tw-bg-background tw-rounded-lg tw-flex tw-min-h-11 [&:has(input:disabled,input:read-only,textarea:read-only):not(:has(button:not([aria-disabled='true'])))]:tw-bg-secondary-100"
     >
       <div
         #prefixContainer
diff --git a/libs/components/src/form-field/form-field.stories.ts b/libs/components/src/form-field/form-field.stories.ts
index 0c1fa8e6f6c..06a6d9547a3 100644
--- a/libs/components/src/form-field/form-field.stories.ts
+++ b/libs/components/src/form-field/form-field.stories.ts
@@ -88,6 +88,7 @@ export default {
         SectionComponent,
         TextFieldModule,
         BadgeModule,
+        A11yTitleDirective,
       ],
       providers: [
         {
diff --git a/libs/components/src/icon-button/icon-button.component.ts b/libs/components/src/icon-button/icon-button.component.ts
index 70331b84db8..6c1426adbe8 100644
--- a/libs/components/src/icon-button/icon-button.component.ts
+++ b/libs/components/src/icon-button/icon-button.component.ts
@@ -1,12 +1,22 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
 import { NgClass } from "@angular/common";
-import { Component, computed, ElementRef, HostBinding, Input, model } from "@angular/core";
+import {
+  Component,
+  computed,
+  ElementRef,
+  HostBinding,
+  inject,
+  Input,
+  model,
+  Signal,
+} from "@angular/core";
 import { toObservable, toSignal } from "@angular/core/rxjs-interop";
 import { debounce, interval } from "rxjs";
 
 import { ButtonLikeAbstraction, ButtonType } from "../shared/button-like.abstraction";
 import { FocusableElement } from "../shared/focusable-element";
+import { ariaDisableElement } from "../utils";
 
 export type IconButtonType = ButtonType | "contrast" | "main" | "muted" | "light";
 
@@ -102,41 +112,41 @@ const styles: Record<IconButtonType, string[]> = {
 
 const disabledStyles: Record<IconButtonType, string[]> = {
   contrast: [
-    "disabled:tw-opacity-60",
-    "disabled:hover:tw-border-transparent",
-    "disabled:hover:tw-bg-transparent",
+    "aria-disabled:tw-opacity-60",
+    "aria-disabled:hover:tw-border-transparent",
+    "aria-disabled:hover:tw-bg-transparent",
   ],
   main: [
-    "disabled:!tw-text-secondary-300",
-    "disabled:hover:tw-border-transparent",
-    "disabled:hover:tw-bg-transparent",
+    "aria-disabled:!tw-text-secondary-300",
+    "aria-disabled:hover:tw-border-transparent",
+    "aria-disabled:hover:tw-bg-transparent",
   ],
   muted: [
-    "disabled:!tw-text-secondary-300",
-    "disabled:hover:tw-border-transparent",
-    "disabled:hover:tw-bg-transparent",
+    "aria-disabled:!tw-text-secondary-300",
+    "aria-disabled:hover:tw-border-transparent",
+    "aria-disabled:hover:tw-bg-transparent",
   ],
   primary: [
-    "disabled:tw-opacity-60",
-    "disabled:hover:tw-border-primary-600",
-    "disabled:hover:tw-bg-primary-600",
+    "aria-disabled:tw-opacity-60",
+    "aria-disabled:hover:tw-border-primary-600",
+    "aria-disabled:hover:tw-bg-primary-600",
   ],
   secondary: [
-    "disabled:tw-opacity-60",
-    "disabled:hover:tw-border-text-muted",
-    "disabled:hover:tw-bg-transparent",
-    "disabled:hover:!tw-text-muted",
+    "aria-disabled:tw-opacity-60",
+    "aria-disabled:hover:tw-border-text-muted",
+    "aria-disabled:hover:tw-bg-transparent",
+    "aria-disabled:hover:!tw-text-muted",
   ],
   danger: [
-    "disabled:!tw-text-secondary-300",
-    "disabled:hover:tw-border-transparent",
-    "disabled:hover:tw-bg-transparent",
-    "disabled:hover:!tw-text-secondary-300",
+    "aria-disabled:!tw-text-secondary-300",
+    "aria-disabled:hover:tw-border-transparent",
+    "aria-disabled:hover:tw-bg-transparent",
+    "aria-disabled:hover:!tw-text-secondary-300",
   ],
   light: [
-    "disabled:tw-opacity-60",
-    "disabled:hover:tw-border-transparent",
-    "disabled:hover:tw-bg-transparent",
+    "aria-disabled:tw-opacity-60",
+    "aria-disabled:hover:tw-border-transparent",
+    "aria-disabled:hover:tw-bg-transparent",
   ],
   unstyled: [],
 };
@@ -163,7 +173,7 @@ const sizes: Record<IconButtonSize, string[]> = {
   ],
   imports: [NgClass],
   host: {
-    "[attr.disabled]": "disabledAttr()",
+    "[attr.aria-disabled]": "disabledAttr()",
   },
 })
 export class BitIconButtonComponent implements ButtonLikeAbstraction, FocusableElement {
@@ -233,5 +243,10 @@ export class BitIconButtonComponent implements ButtonLikeAbstraction, FocusableE
     return this.elementRef.nativeElement;
   }
 
-  constructor(private elementRef: ElementRef) {}
+  private elementRef = inject(ElementRef);
+
+  constructor() {
+    const element = this.elementRef.nativeElement;
+    ariaDisableElement(element, this.disabledAttr as Signal<boolean | undefined>);
+  }
 }
diff --git a/libs/components/src/link/link.directive.ts b/libs/components/src/link/link.directive.ts
index ad9c94b7831..1a653fd1c83 100644
--- a/libs/components/src/link/link.directive.ts
+++ b/libs/components/src/link/link.directive.ts
@@ -1,4 +1,14 @@
-import { Input, HostBinding, Directive } from "@angular/core";
+import {
+  Input,
+  HostBinding,
+  Directive,
+  inject,
+  ElementRef,
+  input,
+  booleanAttribute,
+} from "@angular/core";
+
+import { ariaDisableElement } from "../utils";
 
 export type LinkType = "primary" | "secondary" | "contrast" | "light";
 
@@ -58,6 +68,11 @@ const commonStyles = [
   "before:tw-transition",
   "focus-visible:before:tw-ring-2",
   "focus-visible:tw-z-10",
+  "aria-disabled:tw-no-underline",
+  "aria-disabled:tw-pointer-events-none",
+  "aria-disabled:!tw-text-secondary-300",
+  "aria-disabled:hover:!tw-text-secondary-300",
+  "aria-disabled:hover:tw-no-underline",
 ];
 
 @Directive()
@@ -89,9 +104,19 @@ export class AnchorLinkDirective extends LinkDirective {
   selector: "button[bitLink]",
 })
 export class ButtonLinkDirective extends LinkDirective {
+  private el = inject(ElementRef<HTMLButtonElement>);
+
+  disabled = input(false, { transform: booleanAttribute });
+
   @HostBinding("class") get classList() {
     return ["before:-tw-inset-y-[0.25rem]"]
       .concat(commonStyles)
       .concat(linkStyles[this.linkType] ?? []);
   }
+
+  constructor() {
+    super();
+
+    ariaDisableElement(this.el.nativeElement, this.disabled);
+  }
 }
diff --git a/libs/components/src/utils/aria-disable-element.ts b/libs/components/src/utils/aria-disable-element.ts
new file mode 100644
index 00000000000..f7e02f2cdd1
--- /dev/null
+++ b/libs/components/src/utils/aria-disable-element.ts
@@ -0,0 +1,29 @@
+import { Signal, effect } from "@angular/core";
+import { takeUntilDestroyed } from "@angular/core/rxjs-interop";
+import { fromEvent } from "rxjs";
+
+/**
+ * a11y helper util used to `aria-disable` elements as opposed to using the HTML `disabled` attr.
+ * - Removes HTML `disabled` attr and replaces it with `aria-disabled="true"`
+ * - Captures click events and prevents them from propagating
+ */
+export function ariaDisableElement(element: HTMLElement, isDisabled: Signal<boolean | undefined>) {
+  effect(() => {
+    if (element.hasAttribute("disabled") || isDisabled()) {
+      // Remove native disabled and set aria-disabled. Capture click event
+      element.removeAttribute("disabled");
+
+      element.setAttribute("aria-disabled", "true");
+    }
+  });
+
+  fromEvent(element, "click")
+    .pipe(takeUntilDestroyed())
+    .subscribe((event: Event) => {
+      if (isDisabled()) {
+        event.stopPropagation();
+        event.preventDefault();
+        return false;
+      }
+    });
+}
diff --git a/libs/components/src/utils/index.ts b/libs/components/src/utils/index.ts
index afadd6b3b41..91fa71cf0e0 100644
--- a/libs/components/src/utils/index.ts
+++ b/libs/components/src/utils/index.ts
@@ -1,2 +1,3 @@
+export * from "./aria-disable-element";
 export * from "./function-to-observable";
 export * from "./i18n-mock.service";

From cee4e6c4c73614de1d0c3428685938b789f4ae7b Mon Sep 17 00:00:00 2001
From: Jared McCannon <jmccannon@bitwarden.com>
Date: Wed, 9 Jul 2025 07:59:39 -0500
Subject: [PATCH 084/239] This is unused and can be removed. (#15487)

---
 .../abstractions/organization-user-api.service.ts     |  7 -------
 .../services/default-organization-user-api.service.ts | 11 -----------
 2 files changed, 18 deletions(-)

diff --git a/libs/admin-console/src/common/organization-user/abstractions/organization-user-api.service.ts b/libs/admin-console/src/common/organization-user/abstractions/organization-user-api.service.ts
index 3186bdaa84b..ff422231a12 100644
--- a/libs/admin-console/src/common/organization-user/abstractions/organization-user-api.service.ts
+++ b/libs/admin-console/src/common/organization-user/abstractions/organization-user-api.service.ts
@@ -37,13 +37,6 @@ export abstract class OrganizationUserApiService {
     },
   ): Promise<OrganizationUserDetailsResponse>;
 
-  /**
-   * Retrieve a list of groups Ids the specified organization user belongs to
-   * @param organizationId - Identifier for the user's organization
-   * @param id - Organization user identifier
-   */
-  abstract getOrganizationUserGroups(organizationId: string, id: string): Promise<string[]>;
-
   /**
    * Retrieve full details of all users that belong to the specified organization.
    * This is only accessible to privileged users, if you need a simple listing of basic details, use
diff --git a/libs/admin-console/src/common/organization-user/services/default-organization-user-api.service.ts b/libs/admin-console/src/common/organization-user/services/default-organization-user-api.service.ts
index 7289f41d7e7..c16fba258ec 100644
--- a/libs/admin-console/src/common/organization-user/services/default-organization-user-api.service.ts
+++ b/libs/admin-console/src/common/organization-user/services/default-organization-user-api.service.ts
@@ -48,17 +48,6 @@ export class DefaultOrganizationUserApiService implements OrganizationUserApiSer
     return new OrganizationUserDetailsResponse(r);
   }
 
-  async getOrganizationUserGroups(organizationId: string, id: string): Promise<string[]> {
-    const r = await this.apiService.send(
-      "GET",
-      "/organizations/" + organizationId + "/users/" + id + "/groups",
-      null,
-      true,
-      true,
-    );
-    return r;
-  }
-
   async getAllUsers(
     organizationId: string,
     options?: {

From 489cbd4856c08699d074840248b555220e2c717f Mon Sep 17 00:00:00 2001
From: Vijay Oommen <voommen@livefront.com>
Date: Wed, 9 Jul 2025 08:18:16 -0500
Subject: [PATCH 085/239] [PM-21652] Notify At Risk Ciphers to change passwords
 (#14785)

---
 .../access-intelligence/critical-applications.component.ts    | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/bitwarden_license/bit-web/src/app/dirt/access-intelligence/critical-applications.component.ts b/bitwarden_license/bit-web/src/app/dirt/access-intelligence/critical-applications.component.ts
index 765d979bbe6..fcca568da6e 100644
--- a/bitwarden_license/bit-web/src/app/dirt/access-intelligence/critical-applications.component.ts
+++ b/bitwarden_license/bit-web/src/app/dirt/access-intelligence/critical-applications.component.ts
@@ -144,8 +144,10 @@ export class CriticalApplicationsComponent implements OnInit {
     const apps = this.dataSource.data;
     const cipherIds = apps
       .filter((_) => _.atRiskPasswordCount > 0)
-      .flatMap((app) => app.atRiskMemberDetails.map((member) => member.cipherId));
+      .flatMap((app) => app.atRiskCipherIds);
+
     const distinctCipherIds = Array.from(new Set(cipherIds));
+
     const tasks: CreateTasksRequest[] = distinctCipherIds.map((cipherId) => ({
       cipherId: cipherId as CipherId,
       type: SecurityTaskType.UpdateAtRiskCredential,

From e7d5cde1057133f24f9133852bf891976ee9cfdc Mon Sep 17 00:00:00 2001
From: Bernd Schoolmann <mail@quexten.com>
Date: Wed, 9 Jul 2025 16:52:47 +0200
Subject: [PATCH 086/239] [BEEEP/PM-22958] Update russh version, and add
 sessionbind information (#14602)

* Update russh version, and add sessionbind information

* Cargo fmt

* Clean up to fix lint

* Attempt to fix windows

* Use expect instead of unwrap

* Fix cargo toml
---
 apps/desktop/desktop_native/Cargo.lock        | 159 +++++++++++++++++-
 apps/desktop/desktop_native/Cargo.toml        |   2 +-
 .../desktop_native/core/src/ssh_agent/mod.rs  |  75 +++++++--
 .../core/src/ssh_agent/peerinfo/models.rs     |  16 +-
 .../desktop_native/core/src/ssh_agent/unix.rs |   4 +-
 .../core/src/ssh_agent/windows.rs             |   4 +-
 apps/desktop/desktop_native/napi/src/lib.rs   |   3 +-
 7 files changed, 241 insertions(+), 22 deletions(-)

diff --git a/apps/desktop/desktop_native/Cargo.lock b/apps/desktop/desktop_native/Cargo.lock
index eadd75e5981..d02ffb9b026 100644
--- a/apps/desktop/desktop_native/Cargo.lock
+++ b/apps/desktop/desktop_native/Cargo.lock
@@ -377,6 +377,12 @@ dependencies = [
  "windows-targets 0.52.6",
 ]
 
+[[package]]
+name = "base16ct"
+version = "0.2.0"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "4c7f02d4ea65f2c1853089ffd8d2787bdbc63de2f0d29dedbcf8ccdfa0ccd4cf"
+
 [[package]]
 name = "base64"
 version = "0.22.1"
@@ -427,11 +433,17 @@ checksum = "5c8214115b7bf84099f1309324e63141d4c5d7cc26862f97a0a857dbefe165bd"
 [[package]]
 name = "bitwarden-russh"
 version = "0.1.0"
-source = "git+https://github.com/bitwarden/bitwarden-russh.git?rev=3d48f140fd506412d186203238993163a8c4e536#3d48f140fd506412d186203238993163a8c4e536"
+source = "git+https://github.com/bitwarden/bitwarden-russh.git?rev=a641316227227f8777fdf56ac9fa2d6b5f7fe662#a641316227227f8777fdf56ac9fa2d6b5f7fe662"
 dependencies = [
  "anyhow",
  "byteorder",
+ "ecdsa",
+ "ed25519-dalek",
  "futures",
+ "p256",
+ "p384",
+ "p521",
+ "rsa",
  "russh-cryptovec",
  "ssh-encoding",
  "ssh-key",
@@ -707,6 +719,18 @@ version = "0.8.21"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "d0a5c400df2834b80a4c3327b3aad3a4c4cd4de0629063962b03235697506a28"
 
+[[package]]
+name = "crypto-bigint"
+version = "0.5.5"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "0dc92fb57ca44df6db8059111ab3af99a63d5d0f8375d9972e319a379c6bab76"
+dependencies = [
+ "generic-array",
+ "rand_core 0.6.4",
+ "subtle",
+ "zeroize",
+]
+
 [[package]]
 name = "crypto-common"
 version = "0.1.6"
@@ -750,6 +774,7 @@ dependencies = [
  "fiat-crypto",
  "rustc_version",
  "subtle",
+ "zeroize",
 ]
 
 [[package]]
@@ -1018,6 +1043,20 @@ version = "1.2.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "75b325c5dbd37f80359721ad39aca5a29fb04c89279657cffdda8736d0c0b9d2"
 
+[[package]]
+name = "ecdsa"
+version = "0.16.9"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "ee27f32b5c5292967d2d4a9d7f1e0b0aed2c15daded5a60300e4abb9d8020bca"
+dependencies = [
+ "der",
+ "digest",
+ "elliptic-curve",
+ "rfc6979",
+ "signature",
+ "spki",
+]
+
 [[package]]
 name = "ed25519"
 version = "2.2.3"
@@ -1036,8 +1075,32 @@ checksum = "4a3daa8e81a3963a60642bcc1f90a670680bd4a77535faa384e9d1c79d620871"
 dependencies = [
  "curve25519-dalek",
  "ed25519",
+ "serde",
  "sha2",
+ "signature",
  "subtle",
+ "zeroize",
+]
+
+[[package]]
+name = "elliptic-curve"
+version = "0.13.8"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "b5e6043086bf7973472e0c7dff2142ea0b680d30e18d9cc40f267efbf222bd47"
+dependencies = [
+ "base16ct",
+ "crypto-bigint",
+ "digest",
+ "ff",
+ "generic-array",
+ "group",
+ "hkdf",
+ "pem-rfc7468",
+ "pkcs8",
+ "rand_core 0.6.4",
+ "sec1",
+ "subtle",
+ "zeroize",
 ]
 
 [[package]]
@@ -1122,6 +1185,16 @@ version = "2.3.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "37909eebbb50d72f9059c3b6d82c0463f2ff062c9e95845c43a6c9c0355411be"
 
+[[package]]
+name = "ff"
+version = "0.13.1"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "c0b50bfb653653f9ca9095b427bed08ab8d75a137839d9ad64eb11810d5b6393"
+dependencies = [
+ "rand_core 0.6.4",
+ "subtle",
+]
+
 [[package]]
 name = "fiat-crypto"
 version = "0.2.9"
@@ -1274,6 +1347,7 @@ checksum = "85649ca51fd72272d7821adaf274ad91c288277713d9c18820d8499a7ff69e9a"
 dependencies = [
  "typenum",
  "version_check",
+ "zeroize",
 ]
 
 [[package]]
@@ -1342,6 +1416,17 @@ dependencies = [
  "scroll",
 ]
 
+[[package]]
+name = "group"
+version = "0.13.0"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "f0f9ef7462f7c099f518d754361858f86d8a07af53ba9af0fe635bbccb151a63"
+dependencies = [
+ "ff",
+ "rand_core 0.6.4",
+ "subtle",
+]
+
 [[package]]
 name = "hashbrown"
 version = "0.14.5"
@@ -2112,6 +2197,44 @@ dependencies = [
  "log",
 ]
 
+[[package]]
+name = "p256"
+version = "0.13.2"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "c9863ad85fa8f4460f9c48cb909d38a0d689dba1f6f6988a5e3e0d31071bcd4b"
+dependencies = [
+ "ecdsa",
+ "elliptic-curve",
+ "primeorder",
+ "sha2",
+]
+
+[[package]]
+name = "p384"
+version = "0.13.1"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "fe42f1670a52a47d448f14b6a5c61dd78fce51856e68edaa38f7ae3a46b8d6b6"
+dependencies = [
+ "ecdsa",
+ "elliptic-curve",
+ "primeorder",
+ "sha2",
+]
+
+[[package]]
+name = "p521"
+version = "0.13.3"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "0fc9e2161f1f215afdfce23677034ae137bbd45016a880c2eb3ba8eb95f085b2"
+dependencies = [
+ "base16ct",
+ "ecdsa",
+ "elliptic-curve",
+ "primeorder",
+ "rand_core 0.6.4",
+ "sha2",
+]
+
 [[package]]
 name = "parking"
 version = "2.2.1"
@@ -2348,6 +2471,15 @@ dependencies = [
  "zerocopy",
 ]
 
+[[package]]
+name = "primeorder"
+version = "0.13.6"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "353e1ca18966c16d9deb1c69278edbc5f194139612772bd9537af60ac231e1e6"
+dependencies = [
+ "elliptic-curve",
+]
+
 [[package]]
 name = "proc-macro-crate"
 version = "3.3.0"
@@ -2504,6 +2636,16 @@ version = "0.8.5"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "2b15c43186be67a4fd63bee50d0303afffcef381492ebe2c5d87f324e1b8815c"
 
+[[package]]
+name = "rfc6979"
+version = "0.4.0"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "f8dd2a808d456c4a54e300a23e9f5a67e122c3024119acbfd73e3bf664491cb2"
+dependencies = [
+ "hmac",
+ "subtle",
+]
+
 [[package]]
 name = "rsa"
 version = "0.9.6"
@@ -2640,6 +2782,20 @@ dependencies = [
  "sha2",
 ]
 
+[[package]]
+name = "sec1"
+version = "0.7.3"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "d3e97a565f76233a6003f9f5c54be1d9c5bdfa3eccfb189469f11ec4901c47dc"
+dependencies = [
+ "base16ct",
+ "der",
+ "generic-array",
+ "pkcs8",
+ "subtle",
+ "zeroize",
+]
+
 [[package]]
 name = "security-framework"
 version = "3.1.0"
@@ -2854,6 +3010,7 @@ dependencies = [
  "num-bigint-dig",
  "rand_core 0.6.4",
  "rsa",
+ "sec1",
  "sha2",
  "signature",
  "ssh-cipher",
diff --git a/apps/desktop/desktop_native/Cargo.toml b/apps/desktop/desktop_native/Cargo.toml
index b1516ecfbca..1aa6f784ec7 100644
--- a/apps/desktop/desktop_native/Cargo.toml
+++ b/apps/desktop/desktop_native/Cargo.toml
@@ -16,7 +16,7 @@ argon2 = "=0.5.3"
 ashpd = "=0.11.0"
 base64 = "=0.22.1"
 bindgen = "=0.72.0"
-bitwarden-russh = { git = "https://github.com/bitwarden/bitwarden-russh.git", rev = "3d48f140fd506412d186203238993163a8c4e536" }
+bitwarden-russh = { git = "https://github.com/bitwarden/bitwarden-russh.git", rev = "a641316227227f8777fdf56ac9fa2d6b5f7fe662" }
 byteorder = "=1.5.0"
 bytes = "=1.10.1"
 cbc = "=0.1.2" 
diff --git a/apps/desktop/desktop_native/core/src/ssh_agent/mod.rs b/apps/desktop/desktop_native/core/src/ssh_agent/mod.rs
index 63348904e46..33076071a1b 100644
--- a/apps/desktop/desktop_native/core/src/ssh_agent/mod.rs
+++ b/apps/desktop/desktop_native/core/src/ssh_agent/mod.rs
@@ -3,10 +3,14 @@ use std::sync::{
     Arc,
 };
 
+use base64::{engine::general_purpose::STANDARD, Engine as _};
 use tokio::sync::Mutex;
 use tokio_util::sync::CancellationToken;
 
-use bitwarden_russh::ssh_agent::{self, Key};
+use bitwarden_russh::{
+    session_bind::SessionBindResult,
+    ssh_agent::{self, SshKey},
+};
 
 #[cfg_attr(target_os = "windows", path = "windows.rs")]
 #[cfg_attr(target_os = "macos", path = "unix.rs")]
@@ -20,8 +24,8 @@ pub mod peerinfo;
 mod request_parser;
 
 #[derive(Clone)]
-pub struct BitwardenDesktopAgent {
-    keystore: ssh_agent::KeyStore,
+pub struct BitwardenDesktopAgent<Key> {
+    keystore: ssh_agent::KeyStore<Key>,
     cancellation_token: CancellationToken,
     show_ui_request_tx: tokio::sync::mpsc::Sender<SshAgentUIRequest>,
     get_ui_response_rx: Arc<Mutex<tokio::sync::broadcast::Receiver<(u32, bool)>>>,
@@ -40,8 +44,47 @@ pub struct SshAgentUIRequest {
     pub is_forwarding: bool,
 }
 
-impl ssh_agent::Agent<peerinfo::models::PeerInfo> for BitwardenDesktopAgent {
-    async fn confirm(&self, ssh_key: Key, data: &[u8], info: &peerinfo::models::PeerInfo) -> bool {
+#[derive(Clone)]
+pub struct BitwardenSshKey {
+    pub private_key: Option<ssh_key::private::PrivateKey>,
+    pub name: String,
+    pub cipher_uuid: String,
+}
+
+impl SshKey for BitwardenSshKey {
+    fn name(&self) -> &str {
+        &self.name
+    }
+
+    fn public_key_bytes(&self) -> Vec<u8> {
+        if let Some(ref private_key) = self.private_key {
+            private_key
+                .public_key()
+                .to_bytes()
+                .expect("Cipher private key is always correctly parsed")
+        } else {
+            Vec::new()
+        }
+    }
+
+    fn private_key(&self) -> Option<Box<dyn ssh_key::SigningKey>> {
+        if let Some(ref private_key) = self.private_key {
+            Some(Box::new(private_key.clone()))
+        } else {
+            None
+        }
+    }
+}
+
+impl ssh_agent::Agent<peerinfo::models::PeerInfo, BitwardenSshKey>
+    for BitwardenDesktopAgent<BitwardenSshKey>
+{
+    async fn confirm(
+        &self,
+        ssh_key: BitwardenSshKey,
+        data: &[u8],
+        info: &peerinfo::models::PeerInfo,
+    ) -> bool {
         if !self.is_running() {
             println!("[BitwardenDesktopAgent] Agent is not running, but tried to call confirm");
             return false;
@@ -63,10 +106,11 @@ impl ssh_agent::Agent<peerinfo::models::PeerInfo> for BitwardenDesktopAgent {
         };
 
         println!(
-            "[SSH Agent] Confirming request from application: {}, is_forwarding: {}, namespace: {}",
+            "[SSH Agent] Confirming request from application: {}, is_forwarding: {}, namespace: {}, host_key: {}",
             info.process_name(),
             info.is_forwarding(),
             namespace.clone().unwrap_or_default(),
+            STANDARD.encode(info.host_key())
         );
 
         let mut rx_channel = self.get_ui_response_rx.lock().await.resubscribe();
@@ -117,19 +161,24 @@ impl ssh_agent::Agent<peerinfo::models::PeerInfo> for BitwardenDesktopAgent {
         false
     }
 
-    async fn set_is_forwarding(
+    async fn set_sessionbind_info(
         &self,
-        is_forwarding: bool,
+        session_bind_info_result: &SessionBindResult,
         connection_info: &peerinfo::models::PeerInfo,
     ) {
-        // is_forwarding can only be added but never removed from a connection
-        if is_forwarding {
-            connection_info.set_forwarding(is_forwarding);
+        match session_bind_info_result {
+            SessionBindResult::Success(session_bind_info) => {
+                connection_info.set_forwarding(session_bind_info.is_forwarding);
+                connection_info.set_host_key(session_bind_info.host_key.clone());
+            }
+            SessionBindResult::SignatureFailure => {
+                println!("[BitwardenDesktopAgent] Session bind failure: Signature failure");
+            }
         }
     }
 }
 
-impl BitwardenDesktopAgent {
+impl BitwardenDesktopAgent<BitwardenSshKey> {
     pub fn stop(&self) {
         if !self.is_running() {
             println!("[BitwardenDesktopAgent] Tried to stop agent while it is not running");
@@ -170,7 +219,7 @@ impl BitwardenDesktopAgent {
                         .expect("Cipher private key is always correctly parsed");
                     keystore.0.write().expect("RwLock is not poisoned").insert(
                         public_key_bytes,
-                        Key {
+                        BitwardenSshKey {
                             private_key: Some(private_key),
                             name: name.clone(),
                             cipher_uuid: cipher_id.clone(),
diff --git a/apps/desktop/desktop_native/core/src/ssh_agent/peerinfo/models.rs b/apps/desktop/desktop_native/core/src/ssh_agent/peerinfo/models.rs
index 35a5a508263..fad535cb80e 100644
--- a/apps/desktop/desktop_native/core/src/ssh_agent/peerinfo/models.rs
+++ b/apps/desktop/desktop_native/core/src/ssh_agent/peerinfo/models.rs
@@ -1,15 +1,16 @@
-use std::sync::{atomic::AtomicBool, Arc};
+use std::sync::{atomic::AtomicBool, Arc, Mutex};
 
 /**
 * Peerinfo represents the information of a peer process connecting over a socket.
 * This can be later extended to include more information (icon, app name) for the corresponding application.
 */
-#[derive(Debug)]
+#[derive(Debug, Clone)]
 pub struct PeerInfo {
     uid: u32,
     pid: u32,
     process_name: String,
     is_forwarding: Arc<AtomicBool>,
+    host_key: Arc<Mutex<Vec<u8>>>,
 }
 
 impl PeerInfo {
@@ -19,6 +20,7 @@ impl PeerInfo {
             pid,
             process_name,
             is_forwarding: Arc::new(AtomicBool::new(false)),
+            host_key: Arc::new(Mutex::new(Vec::new())),
         }
     }
 
@@ -28,6 +30,7 @@ impl PeerInfo {
             pid: 0,
             process_name: "Unknown application".to_string(),
             is_forwarding: Arc::new(AtomicBool::new(false)),
+            host_key: Arc::new(Mutex::new(Vec::new())),
         }
     }
 
@@ -52,4 +55,13 @@ impl PeerInfo {
         self.is_forwarding
             .store(value, std::sync::atomic::Ordering::Relaxed);
     }
+
+    pub fn set_host_key(&self, host_key: Vec<u8>) {
+        let mut host_key_lock = self.host_key.lock().expect("Mutex is not poisoned");
+        *host_key_lock = host_key;
+    }
+
+    pub fn host_key(&self) -> Vec<u8> {
+        self.host_key.lock().expect("Mutex is not poisoned").clone()
+    }
 }
diff --git a/apps/desktop/desktop_native/core/src/ssh_agent/unix.rs b/apps/desktop/desktop_native/core/src/ssh_agent/unix.rs
index ed297a9002f..05d07cfee46 100644
--- a/apps/desktop/desktop_native/core/src/ssh_agent/unix.rs
+++ b/apps/desktop/desktop_native/core/src/ssh_agent/unix.rs
@@ -15,9 +15,9 @@ use tokio_util::sync::CancellationToken;
 
 use crate::ssh_agent::peercred_unix_listener_stream::PeercredUnixListenerStream;
 
-use super::{BitwardenDesktopAgent, SshAgentUIRequest};
+use super::{BitwardenDesktopAgent, BitwardenSshKey, SshAgentUIRequest};
 
-impl BitwardenDesktopAgent {
+impl BitwardenDesktopAgent<BitwardenSshKey> {
     pub async fn start_server(
         auth_request_tx: tokio::sync::mpsc::Sender<SshAgentUIRequest>,
         auth_response_rx: Arc<Mutex<tokio::sync::broadcast::Receiver<(u32, bool)>>>,
diff --git a/apps/desktop/desktop_native/core/src/ssh_agent/windows.rs b/apps/desktop/desktop_native/core/src/ssh_agent/windows.rs
index bc63ef552b7..aeb20aefd66 100644
--- a/apps/desktop/desktop_native/core/src/ssh_agent/windows.rs
+++ b/apps/desktop/desktop_native/core/src/ssh_agent/windows.rs
@@ -11,9 +11,9 @@ use std::{
 use tokio::sync::Mutex;
 use tokio_util::sync::CancellationToken;
 
-use super::{BitwardenDesktopAgent, SshAgentUIRequest};
+use super::{BitwardenDesktopAgent, BitwardenSshKey, SshAgentUIRequest};
 
-impl BitwardenDesktopAgent {
+impl BitwardenDesktopAgent<BitwardenSshKey> {
     pub async fn start_server(
         auth_request_tx: tokio::sync::mpsc::Sender<SshAgentUIRequest>,
         auth_response_rx: Arc<Mutex<tokio::sync::broadcast::Receiver<(u32, bool)>>>,
diff --git a/apps/desktop/desktop_native/napi/src/lib.rs b/apps/desktop/desktop_native/napi/src/lib.rs
index fb80ec451a4..49f653d4809 100644
--- a/apps/desktop/desktop_native/napi/src/lib.rs
+++ b/apps/desktop/desktop_native/napi/src/lib.rs
@@ -166,6 +166,7 @@ pub mod clipboards {
 pub mod sshagent {
     use std::sync::Arc;
 
+    use desktop_core::ssh_agent::BitwardenSshKey;
     use napi::{
         bindgen_prelude::Promise,
         threadsafe_function::{ErrorStrategy::CalleeHandled, ThreadsafeFunction},
@@ -174,7 +175,7 @@ pub mod sshagent {
 
     #[napi]
     pub struct SshAgentState {
-        state: desktop_core::ssh_agent::BitwardenDesktopAgent,
+        state: desktop_core::ssh_agent::BitwardenDesktopAgent<BitwardenSshKey>,
     }
 
     #[napi(object)]

From 9f1531a1b27a8871f77402b11880c94a6f3b441c Mon Sep 17 00:00:00 2001
From: Jordan Aasen <166539328+jaasen-livefront@users.noreply.github.com>
Date: Wed, 9 Jul 2025 08:37:38 -0700
Subject: [PATCH 087/239] [PM-22375] - [Vault] [Clients] Sort My Items
 collection to the top of Vault collection filters  (#15332)

* WIP - default collection sorting

* apply filtering to popup list filters service.

* add tests. add feature flag checks

* finalize my items collection filters

* fix type error

* re-add service

* re-add comment

* remove unused code

* fix sorting logic

* shorten variable name to fit one line

* fix error

* fix more errors

* abstract logic to vault filter service

* fix test

* export sort as function instead of adding to class

* fix more tests

* add collator arg

* remove ts-ignore. fix type errors

* remove optional param

* fix vault filter service
---
 .../browser/src/background/main.background.ts |  2 +
 .../src/popup/services/services.module.ts     |  2 +
 .../vault-popup-list-filters.service.spec.ts  | 40 ++++++++++
 .../vault-popup-list-filters.service.ts       | 75 +++++++++++--------
 .../vault/services/vault-filter.service.ts    |  6 ++
 .../vault-filter/vault-filter.service.ts      |  3 +
 .../services/vault-filter.service.spec.ts     | 62 ++++++++++++++-
 .../services/vault-filter.service.ts          | 54 ++++++++-----
 apps/web/src/locales/en/messages.json         |  3 +
 .../services/vault-filter.service.ts          | 58 +++++++++++---
 10 files changed, 244 insertions(+), 61 deletions(-)

diff --git a/apps/browser/src/background/main.background.ts b/apps/browser/src/background/main.background.ts
index c6d68a9f047..16149ea0fb3 100644
--- a/apps/browser/src/background/main.background.ts
+++ b/apps/browser/src/background/main.background.ts
@@ -918,6 +918,8 @@ export default class MainBackground {
       this.policyService,
       this.stateProvider,
       this.accountService,
+      this.configService,
+      this.i18nService,
     );
 
     this.vaultSettingsService = new VaultSettingsService(this.stateProvider);
diff --git a/apps/browser/src/popup/services/services.module.ts b/apps/browser/src/popup/services/services.module.ts
index 9f79cf42553..d70418137f8 100644
--- a/apps/browser/src/popup/services/services.module.ts
+++ b/apps/browser/src/popup/services/services.module.ts
@@ -404,6 +404,8 @@ const safeProviders: SafeProvider[] = [
       PolicyService,
       StateProvider,
       AccountServiceAbstraction,
+      ConfigService,
+      I18nServiceAbstraction,
     ],
   }),
   safeProvider({
diff --git a/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.spec.ts b/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.spec.ts
index 1e56fd4d352..e530046a971 100644
--- a/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.spec.ts
+++ b/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.spec.ts
@@ -5,12 +5,14 @@ import { BehaviorSubject, skipWhile } from "rxjs";
 
 import { CollectionService, CollectionView } from "@bitwarden/admin-console/common";
 import { ViewCacheService } from "@bitwarden/angular/platform/view-cache";
+import * as vaultFilterSvc from "@bitwarden/angular/vault/vault-filter/services/vault-filter.service";
 import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
 import { PolicyService } from "@bitwarden/common/admin-console/abstractions/policy/policy.service.abstraction";
 import { PolicyType } from "@bitwarden/common/admin-console/enums";
 import { Organization } from "@bitwarden/common/admin-console/models/domain/organization";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { ProductTierType } from "@bitwarden/common/billing/enums";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { StateProvider } from "@bitwarden/common/platform/state";
 import { mockAccountServiceWith } from "@bitwarden/common/spec";
@@ -31,6 +33,14 @@ import {
   VaultPopupListFiltersService,
 } from "./vault-popup-list-filters.service";
 
+const configService = {
+  getFeatureFlag$: jest.fn(() => new BehaviorSubject<boolean>(true)),
+} as unknown as ConfigService;
+
+jest.mock("@bitwarden/angular/vault/vault-filter/services/vault-filter.service", () => ({
+  sortDefaultCollections: jest.fn(),
+}));
+
 describe("VaultPopupListFiltersService", () => {
   let service: VaultPopupListFiltersService;
   let _memberOrganizations$ = new BehaviorSubject<Organization[]>([]);
@@ -138,6 +148,10 @@ describe("VaultPopupListFiltersService", () => {
           provide: RestrictedItemTypesService,
           useValue: restrictedItemTypesService,
         },
+        {
+          provide: ConfigService,
+          useValue: configService,
+        },
       ],
     });
 
@@ -399,6 +413,29 @@ describe("VaultPopupListFiltersService", () => {
         done();
       });
     });
+
+    it("calls vaultFilterService.sortDefaultCollections", (done) => {
+      const collections = [
+        { id: "1234", name: "Default Collection", organizationId: "org1" },
+        { id: "5678", name: "Shared Collection", organizationId: "org2" },
+      ] as CollectionView[];
+
+      const orgs = [
+        { id: "org1", name: "Organization 1" },
+        { id: "org2", name: "Organization 2" },
+      ] as Organization[];
+
+      createSeededVaultPopupListFiltersService(orgs, collections, [], {});
+
+      service.collections$.subscribe(() => {
+        expect(vaultFilterSvc.sortDefaultCollections).toHaveBeenCalledWith(
+          collections,
+          orgs,
+          i18nService.collator,
+        );
+        done();
+      });
+    });
   });
 
   describe("folders$", () => {
@@ -573,6 +610,8 @@ describe("VaultPopupListFiltersService", () => {
 
       const seededOrganizations: Organization[] = [
         { id: MY_VAULT_ID, name: "Test Org" } as Organization,
+        { id: "org1", name: "Default User Collection Org 1" } as Organization,
+        { id: "org2", name: "Default User Collection Org 2" } as Organization,
       ];
       const seededCollections: CollectionView[] = [
         {
@@ -752,6 +791,7 @@ function createSeededVaultPopupListFiltersService(
       accountServiceMock,
       viewCacheServiceMock,
       restrictedItemTypesServiceMock,
+      configService,
     );
   });
 
diff --git a/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.ts b/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.ts
index 12d0c445b4c..a936aaf86d9 100644
--- a/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.ts
+++ b/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.ts
@@ -6,6 +6,7 @@ import {
   debounceTime,
   distinctUntilChanged,
   filter,
+  from,
   map,
   Observable,
   shareReplay,
@@ -17,6 +18,7 @@ import {
 import { CollectionService, CollectionView } from "@bitwarden/admin-console/common";
 import { ViewCacheService } from "@bitwarden/angular/platform/view-cache";
 import { DynamicTreeNode } from "@bitwarden/angular/vault/vault-filter/models/dynamic-tree-node.model";
+import { sortDefaultCollections } from "@bitwarden/angular/vault/vault-filter/services/vault-filter.service";
 import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
 import { PolicyService } from "@bitwarden/common/admin-console/abstractions/policy/policy.service.abstraction";
 import { PolicyType } from "@bitwarden/common/admin-console/enums";
@@ -24,6 +26,8 @@ import { Organization } from "@bitwarden/common/admin-console/models/domain/orga
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { getUserId } from "@bitwarden/common/auth/services/account.service";
 import { ProductTierType } from "@bitwarden/common/billing/enums";
+import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
 import {
@@ -181,6 +185,7 @@ export class VaultPopupListFiltersService {
     private accountService: AccountService,
     private viewCacheService: ViewCacheService,
     private restrictedItemTypesService: RestrictedItemTypesService,
+    private configService: ConfigService,
   ) {
     this.filterForm.controls.organization.valueChanges
       .pipe(takeUntilDestroyed())
@@ -424,39 +429,47 @@ export class VaultPopupListFiltersService {
   /**
    * Collection array structured to be directly passed to `ChipSelectComponent`
    */
-  collections$: Observable<ChipSelectOption<CollectionView>[]> = combineLatest([
-    this.filters$.pipe(
-      distinctUntilChanged(
-        (previousFilter, currentFilter) =>
-          // Only update the collections when the organizationId filter changes
-          previousFilter.organization?.id === currentFilter.organization?.id,
+  collections$: Observable<ChipSelectOption<CollectionView>[]> =
+    this.accountService.activeAccount$.pipe(
+      getUserId,
+      switchMap((userId) =>
+        combineLatest([
+          this.filters$.pipe(
+            distinctUntilChanged((prev, curr) => prev.organization?.id === curr.organization?.id),
+          ),
+          this.collectionService.decryptedCollections$,
+          this.organizationService.memberOrganizations$(userId),
+          this.configService.getFeatureFlag$(FeatureFlag.CreateDefaultLocation),
+        ]),
       ),
-    ),
-    this.collectionService.decryptedCollections$,
-  ]).pipe(
-    map(([filters, allCollections]) => {
-      const organizationId = filters.organization?.id ?? null;
-      // When the organization filter is selected, filter out collections that do not belong to the selected organization
-      const collections =
-        organizationId === null
-          ? allCollections
-          : allCollections.filter((c) => c.organizationId === organizationId);
+      map(([filters, allCollections, orgs, defaultVaultEnabled]) => {
+        const orgFilterId = filters.organization?.id ?? null;
+        // When the organization filter is selected, filter out collections that do not belong to the selected organization
+        const filtered = orgFilterId
+          ? allCollections.filter((c) => c.organizationId === orgFilterId)
+          : allCollections;
 
-      return collections;
-    }),
-    switchMap(async (collections) => {
-      const nestedCollections = await this.collectionService.getAllNested(collections);
-
-      return new DynamicTreeNode<CollectionView>({
-        fullList: collections,
-        nestedList: nestedCollections,
-      });
-    }),
-    map((collections) =>
-      collections.nestedList.map((c) => this.convertToChipSelectOption(c, "bwi-collection-shared")),
-    ),
-    shareReplay({ refCount: true, bufferSize: 1 }),
-  );
+        if (!defaultVaultEnabled) {
+          return filtered;
+        }
+        return sortDefaultCollections(filtered, orgs, this.i18nService.collator);
+      }),
+      switchMap((collections) => {
+        return from(this.collectionService.getAllNested(collections)).pipe(
+          map(
+            (nested) =>
+              new DynamicTreeNode<CollectionView>({
+                fullList: collections,
+                nestedList: nested,
+              }),
+          ),
+        );
+      }),
+      map((tree) =>
+        tree.nestedList.map((c) => this.convertToChipSelectOption(c, "bwi-collection-shared")),
+      ),
+      shareReplay({ bufferSize: 1, refCount: true }),
+    );
 
   /** Organizations, collection, folders filters. */
   allFilters$ = combineLatest([this.organizations$, this.collections$, this.folders$]);
diff --git a/apps/browser/src/vault/services/vault-filter.service.ts b/apps/browser/src/vault/services/vault-filter.service.ts
index f8b22f2f88f..f33e8e1c130 100644
--- a/apps/browser/src/vault/services/vault-filter.service.ts
+++ b/apps/browser/src/vault/services/vault-filter.service.ts
@@ -6,6 +6,8 @@ import { VaultFilterService as BaseVaultFilterService } from "@bitwarden/angular
 import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
 import { PolicyService } from "@bitwarden/common/admin-console/abstractions/policy/policy.service.abstraction";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
+import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { StateProvider } from "@bitwarden/common/platform/state";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
 import { FolderService } from "@bitwarden/common/vault/abstractions/folder/folder.service.abstraction";
@@ -25,6 +27,8 @@ export class VaultFilterService extends BaseVaultFilterService {
     policyService: PolicyService,
     stateProvider: StateProvider,
     accountService: AccountService,
+    configService: ConfigService,
+    i18nService: I18nService,
   ) {
     super(
       organizationService,
@@ -34,6 +38,8 @@ export class VaultFilterService extends BaseVaultFilterService {
       policyService,
       stateProvider,
       accountService,
+      configService,
+      i18nService,
     );
     this.vaultFilter.myVaultOnly = false;
     this.vaultFilter.selectedOrganizationId = null;
diff --git a/apps/web/src/app/admin-console/organizations/collections/vault-filter/vault-filter.service.ts b/apps/web/src/app/admin-console/organizations/collections/vault-filter/vault-filter.service.ts
index f4b6f41fab6..dc05248d7ba 100644
--- a/apps/web/src/app/admin-console/organizations/collections/vault-filter/vault-filter.service.ts
+++ b/apps/web/src/app/admin-console/organizations/collections/vault-filter/vault-filter.service.ts
@@ -5,6 +5,7 @@ import { CollectionAdminView, CollectionService } from "@bitwarden/admin-console
 import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
 import { PolicyService } from "@bitwarden/common/admin-console/abstractions/policy/policy.service.abstraction";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { StateProvider } from "@bitwarden/common/platform/state";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
@@ -34,6 +35,7 @@ export class VaultFilterService extends BaseVaultFilterService implements OnDest
     stateProvider: StateProvider,
     collectionService: CollectionService,
     accountService: AccountService,
+    configService: ConfigService,
   ) {
     super(
       organizationService,
@@ -44,6 +46,7 @@ export class VaultFilterService extends BaseVaultFilterService implements OnDest
       stateProvider,
       collectionService,
       accountService,
+      configService,
     );
   }
 
diff --git a/apps/web/src/app/vault/individual-vault/vault-filter/services/vault-filter.service.spec.ts b/apps/web/src/app/vault/individual-vault/vault-filter/services/vault-filter.service.spec.ts
index 59aa169481e..2154ecff1b7 100644
--- a/apps/web/src/app/vault/individual-vault/vault-filter/services/vault-filter.service.spec.ts
+++ b/apps/web/src/app/vault/individual-vault/vault-filter/services/vault-filter.service.spec.ts
@@ -5,13 +5,20 @@ import {
 import { FakeSingleUserState } from "@bitwarden/common/../spec/fake-state";
 import { FakeStateProvider } from "@bitwarden/common/../spec/fake-state-provider";
 import { mock, MockProxy } from "jest-mock-extended";
-import { firstValueFrom, ReplaySubject } from "rxjs";
+import { firstValueFrom, of, ReplaySubject } from "rxjs";
 
-import { CollectionService, CollectionView } from "@bitwarden/admin-console/common";
+import {
+  CollectionService,
+  CollectionType,
+  CollectionTypes,
+  CollectionView,
+} from "@bitwarden/admin-console/common";
+import * as vaultFilterSvc from "@bitwarden/angular/vault/vault-filter/services/vault-filter.service";
 import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
 import { PolicyService } from "@bitwarden/common/admin-console/abstractions/policy/policy.service.abstraction";
 import { PolicyType } from "@bitwarden/common/admin-console/enums";
 import { Organization } from "@bitwarden/common/admin-console/models/domain/organization";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
 import { UserId } from "@bitwarden/common/types/guid";
@@ -23,6 +30,10 @@ import { COLLAPSED_GROUPINGS } from "@bitwarden/common/vault/services/key-state/
 
 import { VaultFilterService } from "./vault-filter.service";
 
+jest.mock("@bitwarden/angular/vault/vault-filter/services/vault-filter.service", () => ({
+  sortDefaultCollections: jest.fn(() => []),
+}));
+
 describe("vault filter service", () => {
   let vaultFilterService: VaultFilterService;
 
@@ -39,6 +50,7 @@ describe("vault filter service", () => {
   let organizationDataOwnershipPolicy: ReplaySubject<boolean>;
   let singleOrgPolicy: ReplaySubject<boolean>;
   let stateProvider: FakeStateProvider;
+  let configService: MockProxy<ConfigService>;
 
   const mockUserId = Utils.newGuid() as UserId;
   let accountService: FakeAccountService;
@@ -54,6 +66,7 @@ describe("vault filter service", () => {
     stateProvider = new FakeStateProvider(accountService);
     i18nService.collator = new Intl.Collator("en-US");
     collectionService = mock<CollectionService>();
+    configService = mock<ConfigService>();
 
     organizations = new ReplaySubject<Organization[]>(1);
     folderViews = new ReplaySubject<FolderView[]>(1);
@@ -62,6 +75,7 @@ describe("vault filter service", () => {
     organizationDataOwnershipPolicy = new ReplaySubject<boolean>(1);
     singleOrgPolicy = new ReplaySubject<boolean>(1);
 
+    configService.getFeatureFlag$.mockReturnValue(of(true));
     organizationService.memberOrganizations$.mockReturnValue(organizations);
     folderService.folderViews$.mockReturnValue(folderViews);
     collectionService.decryptedCollections$ = collectionViews;
@@ -82,8 +96,10 @@ describe("vault filter service", () => {
       stateProvider,
       collectionService,
       accountService,
+      configService,
     );
     collapsedGroupingsState = stateProvider.singleUser.getFake(mockUserId, COLLAPSED_GROUPINGS);
+    organizations.next([]);
   });
 
   describe("collapsed filter nodes", () => {
@@ -285,6 +301,40 @@ describe("vault filter service", () => {
         const c3 = c1.children[0];
         expect(c3.parent.node.id).toEqual("id-1");
       });
+
+      it.only("calls sortDefaultCollections with the correct args", async () => {
+        const storedOrgs = [
+          createOrganization("id-defaultOrg1", "org1"),
+          createOrganization("id-defaultOrg2", "org2"),
+        ];
+        organizations.next(storedOrgs);
+
+        const storedCollections = [
+          createCollectionView("id-2", "Collection 2", "org test id"),
+          createCollectionView("id-1", "Collection 1", "org test id"),
+          createCollectionView(
+            "id-3",
+            "Default User Collection - Org 2",
+            "id-defaultOrg2",
+            CollectionTypes.DefaultUserCollection,
+          ),
+          createCollectionView(
+            "id-4",
+            "Default User Collection - Org 1",
+            "id-defaultOrg1",
+            CollectionTypes.DefaultUserCollection,
+          ),
+        ];
+        collectionViews.next(storedCollections);
+
+        await firstValueFrom(vaultFilterService.collectionTree$);
+
+        expect(vaultFilterSvc.sortDefaultCollections).toHaveBeenCalledWith(
+          storedCollections,
+          storedOrgs,
+          i18nService.collator,
+        );
+      });
     });
   });
 
@@ -312,11 +362,17 @@ describe("vault filter service", () => {
     return folder;
   }
 
-  function createCollectionView(id: string, name: string, orgId: string): CollectionView {
+  function createCollectionView(
+    id: string,
+    name: string,
+    orgId: string,
+    type?: CollectionType,
+  ): CollectionView {
     const collection = new CollectionView();
     collection.id = id;
     collection.name = name;
     collection.organizationId = orgId;
+    collection.type = type || CollectionTypes.SharedCollection;
     return collection;
   }
 });
diff --git a/apps/web/src/app/vault/individual-vault/vault-filter/services/vault-filter.service.ts b/apps/web/src/app/vault/individual-vault/vault-filter/services/vault-filter.service.ts
index b6548564ec9..f326034e806 100644
--- a/apps/web/src/app/vault/individual-vault/vault-filter/services/vault-filter.service.ts
+++ b/apps/web/src/app/vault/individual-vault/vault-filter/services/vault-filter.service.ts
@@ -18,12 +18,15 @@ import {
   CollectionService,
   CollectionView,
 } from "@bitwarden/admin-console/common";
+import { sortDefaultCollections } from "@bitwarden/angular/vault/vault-filter/services/vault-filter.service";
 import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
 import { PolicyService } from "@bitwarden/common/admin-console/abstractions/policy/policy.service.abstraction";
 import { PolicyType } from "@bitwarden/common/admin-console/enums";
 import { Organization } from "@bitwarden/common/admin-console/models/domain/organization";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { getUserId } from "@bitwarden/common/auth/services/account.service";
+import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { SingleUserState, StateProvider } from "@bitwarden/common/platform/state";
 import { UserId } from "@bitwarden/common/types/guid";
@@ -104,8 +107,14 @@ export class VaultFilterService implements VaultFilterServiceAbstraction {
       }),
     );
 
-  collectionTree$: Observable<TreeNode<CollectionFilter>> = this.filteredCollections$.pipe(
-    map((collections) => this.buildCollectionTree(collections)),
+  collectionTree$: Observable<TreeNode<CollectionFilter>> = combineLatest([
+    this.filteredCollections$,
+    this.memberOrganizations$,
+    this.configService.getFeatureFlag$(FeatureFlag.CreateDefaultLocation),
+  ]).pipe(
+    map(([collections, organizations, defaultCollectionsFlagEnabled]) =>
+      this.buildCollectionTree(collections, organizations, defaultCollectionsFlagEnabled),
+    ),
   );
 
   cipherTypeTree$: Observable<TreeNode<CipherTypeFilter>> = this.buildCipherTypeTree();
@@ -123,6 +132,7 @@ export class VaultFilterService implements VaultFilterServiceAbstraction {
     protected stateProvider: StateProvider,
     protected collectionService: CollectionService,
     protected accountService: AccountService,
+    protected configService: ConfigService,
   ) {}
 
   async getCollectionNodeFromTree(id: string) {
@@ -227,31 +237,39 @@ export class VaultFilterService implements VaultFilterServiceAbstraction {
       : storedCollections;
   }
 
-  protected buildCollectionTree(collections?: CollectionView[]): TreeNode<CollectionFilter> {
+  protected buildCollectionTree(
+    collections?: CollectionView[],
+    orgs?: Organization[],
+    defaultCollectionsFlagEnabled?: boolean,
+  ): TreeNode<CollectionFilter> {
     const headNode = this.getCollectionFilterHead();
     if (!collections) {
       return headNode;
     }
     const nodes: TreeNode<CollectionFilter>[] = [];
-    collections
-      .sort((a, b) => this.i18nService.collator.compare(a.name, b.name))
-      .forEach((c) => {
-        const collectionCopy = new CollectionView() as CollectionFilter;
-        collectionCopy.id = c.id;
-        collectionCopy.organizationId = c.organizationId;
-        collectionCopy.icon = "bwi-collection-shared";
-        if (c instanceof CollectionAdminView) {
-          collectionCopy.groups = c.groups;
-          collectionCopy.assigned = c.assigned;
-        }
-        const parts =
-          c.name != null ? c.name.replace(/^\/+|\/+$/g, "").split(NestingDelimiter) : [];
-        ServiceUtils.nestedTraverse(nodes, 0, parts, collectionCopy, null, NestingDelimiter);
-      });
+
+    if (defaultCollectionsFlagEnabled) {
+      collections = sortDefaultCollections(collections, orgs, this.i18nService.collator);
+    }
+
+    collections.forEach((c) => {
+      const collectionCopy = new CollectionView() as CollectionFilter;
+      collectionCopy.id = c.id;
+      collectionCopy.organizationId = c.organizationId;
+      collectionCopy.icon = "bwi-collection-shared";
+      if (c instanceof CollectionAdminView) {
+        collectionCopy.groups = c.groups;
+        collectionCopy.assigned = c.assigned;
+      }
+      const parts = c.name != null ? c.name.replace(/^\/+|\/+$/g, "").split(NestingDelimiter) : [];
+      ServiceUtils.nestedTraverse(nodes, 0, parts, collectionCopy, null, NestingDelimiter);
+    });
+
     nodes.forEach((n) => {
       n.parent = headNode;
       headNode.children.push(n);
     });
+
     return headNode;
   }
 
diff --git a/apps/web/src/locales/en/messages.json b/apps/web/src/locales/en/messages.json
index ba5e4841e3d..bc2e49e85cd 100644
--- a/apps/web/src/locales/en/messages.json
+++ b/apps/web/src/locales/en/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "Me"
   },
+  "myItems": {
+    "message": "My items"
+  },
   "myVault": {
     "message": "My vault"
   },
diff --git a/libs/angular/src/vault/vault-filter/services/vault-filter.service.ts b/libs/angular/src/vault/vault-filter/services/vault-filter.service.ts
index 3317f0c9002..fea57743055 100644
--- a/libs/angular/src/vault/vault-filter/services/vault-filter.service.ts
+++ b/libs/angular/src/vault/vault-filter/services/vault-filter.service.ts
@@ -1,17 +1,22 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import { Injectable } from "@angular/core";
 import { firstValueFrom, from, map, mergeMap, Observable, switchMap, take } from "rxjs";
 
 // This import has been flagged as unallowed for this class. It may be involved in a circular dependency loop.
 // eslint-disable-next-line no-restricted-imports
-import { CollectionService, CollectionView } from "@bitwarden/admin-console/common";
+import {
+  CollectionService,
+  CollectionTypes,
+  CollectionView,
+} from "@bitwarden/admin-console/common";
 import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
 import { PolicyService } from "@bitwarden/common/admin-console/abstractions/policy/policy.service.abstraction";
 import { PolicyType } from "@bitwarden/common/admin-console/enums";
 import { Organization } from "@bitwarden/common/admin-console/models/domain/organization";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { getUserId } from "@bitwarden/common/auth/services/account.service";
+import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
+import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { SingleUserState, StateProvider } from "@bitwarden/common/platform/state";
 import { UserId } from "@bitwarden/common/types/guid";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
@@ -40,6 +45,8 @@ export class VaultFilterService implements DeprecatedVaultFilterServiceAbstracti
     protected policyService: PolicyService,
     protected stateProvider: StateProvider,
     protected accountService: AccountService,
+    protected configService: ConfigService,
+    protected i18nService: I18nService,
   ) {}
 
   async storeCollapsedFilterNodes(
@@ -103,12 +110,20 @@ export class VaultFilterService implements DeprecatedVaultFilterServiceAbstracti
 
   async buildCollections(organizationId?: string): Promise<DynamicTreeNode<CollectionView>> {
     const storedCollections = await this.collectionService.getAllDecrypted();
-    let collections: CollectionView[];
-    if (organizationId != null) {
-      collections = storedCollections.filter((c) => c.organizationId === organizationId);
-    } else {
-      collections = storedCollections;
+    const orgs = await this.buildOrganizations();
+    const defaulCollectionsFlagEnabled = await this.configService.getFeatureFlag(
+      FeatureFlag.CreateDefaultLocation,
+    );
+
+    let collections =
+      organizationId == null
+        ? storedCollections
+        : storedCollections.filter((c) => c.organizationId === organizationId);
+
+    if (defaulCollectionsFlagEnabled) {
+      collections = sortDefaultCollections(collections, orgs, this.i18nService.collator);
     }
+
     const nestedCollections = await this.collectionService.getAllNested(collections);
     return new DynamicTreeNode<CollectionView>({
       fullList: collections,
@@ -145,7 +160,7 @@ export class VaultFilterService implements DeprecatedVaultFilterServiceAbstracti
       folderCopy.id = f.id;
       folderCopy.revisionDate = f.revisionDate;
       const parts = f.name != null ? f.name.replace(/^\/+|\/+$/g, "").split(NestingDelimiter) : [];
-      ServiceUtils.nestedTraverse(nodes, 0, parts, folderCopy, null, NestingDelimiter);
+      ServiceUtils.nestedTraverse(nodes, 0, parts, folderCopy, undefined, NestingDelimiter);
     });
     return nodes;
   }
@@ -158,3 +173,28 @@ export class VaultFilterService implements DeprecatedVaultFilterServiceAbstracti
     return ServiceUtils.getTreeNodeObjectFromList(folders, id) as TreeNode<FolderView>;
   }
 }
+
+/**
+ * Sorts collections with default user collections at the top, sorted by organization name.
+ * Remaining collections are sorted by name.
+ * @param collections - The list of collections to sort.
+ * @param orgs - The list of organizations to use for sorting default user collections.
+ * @returns Sorted list of collections.
+ */
+export function sortDefaultCollections(
+  collections: CollectionView[],
+  orgs: Organization[] = [],
+  collator: Intl.Collator,
+): CollectionView[] {
+  const sortedDefaultCollectionTypes = collections
+    .filter((c) => c.type === CollectionTypes.DefaultUserCollection)
+    .sort((a, b) => {
+      const aName = orgs.find((o) => o.id === a.organizationId)?.name ?? a.organizationId;
+      const bName = orgs.find((o) => o.id === b.organizationId)?.name ?? b.organizationId;
+      return collator.compare(aName, bName);
+    });
+  return [
+    ...sortedDefaultCollectionTypes,
+    ...collections.filter((c) => c.type !== CollectionTypes.DefaultUserCollection),
+  ];
+}

From 09fb74679dd42c9794fe6df2677f14bc9e7dedf6 Mon Sep 17 00:00:00 2001
From: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com>
Date: Wed, 9 Jul 2025 11:53:16 -0500
Subject: [PATCH 088/239] [PM-21912] Require userID for KeyService's hasUserKey
 (#14890)

* Update keyService hasUserKey to require userId and remove unused/duplicate methods

* Update lock component consumer

* Update send commands to pass in userId

* update SSO login to pass in userID

* Update bw serve to pass in userID

* remove unneeded method from electron-key.service
---
 .../extension-lock-component.service.spec.ts  |  8 ----
 apps/cli/src/oss-serve-configurator.ts        |  8 +++-
 .../src/tools/send/commands/get.command.ts    |  6 ++-
 .../src/tools/send/commands/list.command.ts   |  6 ++-
 apps/cli/src/tools/send/send.program.ts       |  3 ++
 .../key-management/electron-key.service.ts    |  4 --
 .../login-strategies/sso-login.strategy.ts    |  2 +-
 .../send/services/send.service.abstraction.ts |  2 +-
 .../tools/send/services/send.service.spec.ts  | 17 +++++--
 .../src/tools/send/services/send.service.ts   |  4 +-
 .../src/lock/components/lock.component.ts     |  2 +-
 .../src/abstractions/key.service.ts           | 19 ++------
 libs/key-management/src/key.service.spec.ts   | 45 +++++++++----------
 libs/key-management/src/key.service.ts        | 15 +------
 14 files changed, 66 insertions(+), 75 deletions(-)

diff --git a/apps/browser/src/key-management/lock/services/extension-lock-component.service.spec.ts b/apps/browser/src/key-management/lock/services/extension-lock-component.service.spec.ts
index 86781474b67..0ae0997fe4b 100644
--- a/apps/browser/src/key-management/lock/services/extension-lock-component.service.spec.ts
+++ b/apps/browser/src/key-management/lock/services/extension-lock-component.service.spec.ts
@@ -12,7 +12,6 @@ import { VaultTimeoutSettingsService } from "@bitwarden/common/key-management/va
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
 import { UserId } from "@bitwarden/common/types/guid";
 import {
-  KeyService,
   BiometricsService,
   BiometricsStatus,
   BiometricStateService,
@@ -35,7 +34,6 @@ describe("ExtensionLockComponentService", () => {
   let biometricsService: MockProxy<BiometricsService>;
   let pinService: MockProxy<PinServiceAbstraction>;
   let vaultTimeoutSettingsService: MockProxy<VaultTimeoutSettingsService>;
-  let keyService: MockProxy<KeyService>;
   let routerService: MockProxy<BrowserRouterService>;
   let biometricStateService: MockProxy<BiometricStateService>;
 
@@ -45,7 +43,6 @@ describe("ExtensionLockComponentService", () => {
     biometricsService = mock<BiometricsService>();
     pinService = mock<PinServiceAbstraction>();
     vaultTimeoutSettingsService = mock<VaultTimeoutSettingsService>();
-    keyService = mock<KeyService>();
     routerService = mock<BrowserRouterService>();
     biometricStateService = mock<BiometricStateService>();
 
@@ -72,10 +69,6 @@ describe("ExtensionLockComponentService", () => {
           provide: VaultTimeoutSettingsService,
           useValue: vaultTimeoutSettingsService,
         },
-        {
-          provide: KeyService,
-          useValue: keyService,
-        },
         {
           provide: BrowserRouterService,
           useValue: routerService,
@@ -375,7 +368,6 @@ describe("ExtensionLockComponentService", () => {
       vaultTimeoutSettingsService.isBiometricLockSet.mockResolvedValue(
         mockInputs.hasBiometricEncryptedUserKeyStored,
       );
-      keyService.hasUserKeyStored.mockResolvedValue(mockInputs.hasBiometricEncryptedUserKeyStored);
       platformUtilsService.supportsSecureStorage.mockReturnValue(
         mockInputs.platformSupportsSecureStorage,
       );
diff --git a/apps/cli/src/oss-serve-configurator.ts b/apps/cli/src/oss-serve-configurator.ts
index 875b8cc7507..14e6ace3b34 100644
--- a/apps/cli/src/oss-serve-configurator.ts
+++ b/apps/cli/src/oss-serve-configurator.ts
@@ -3,6 +3,7 @@
 import * as koaMulter from "@koa/multer";
 import * as koaRouter from "@koa/router";
 import * as koa from "koa";
+import { firstValueFrom, map } from "rxjs";
 
 import { ConfirmCommand } from "./admin-console/commands/confirm.command";
 import { ShareCommand } from "./admin-console/commands/share.command";
@@ -170,6 +171,7 @@ export class OssServeConfigurator {
       this.serviceContainer.searchService,
       this.serviceContainer.encryptService,
       this.serviceContainer.apiService,
+      this.serviceContainer.accountService,
     );
     this.sendEditCommand = new SendEditCommand(
       this.serviceContainer.sendService,
@@ -182,6 +184,7 @@ export class OssServeConfigurator {
       this.serviceContainer.sendService,
       this.serviceContainer.environmentService,
       this.serviceContainer.searchService,
+      this.serviceContainer.accountService,
     );
     this.sendRemovePasswordCommand = new SendRemovePasswordCommand(
       this.serviceContainer.sendService,
@@ -414,7 +417,10 @@ export class OssServeConfigurator {
       this.processResponse(res, Response.error("You are not logged in."));
       return true;
     }
-    if (await this.serviceContainer.keyService.hasUserKey()) {
+    const userId = await firstValueFrom(
+      this.serviceContainer.accountService.activeAccount$.pipe(map((account) => account?.id)),
+    );
+    if (await this.serviceContainer.keyService.hasUserKey(userId)) {
       return false;
     }
     this.processResponse(res, Response.error("Vault is locked."));
diff --git a/apps/cli/src/tools/send/commands/get.command.ts b/apps/cli/src/tools/send/commands/get.command.ts
index 1b3a8f6c500..2d6cc93c781 100644
--- a/apps/cli/src/tools/send/commands/get.command.ts
+++ b/apps/cli/src/tools/send/commands/get.command.ts
@@ -4,6 +4,8 @@ import { OptionValues } from "commander";
 import { firstValueFrom } from "rxjs";
 
 import { ApiService } from "@bitwarden/common/abstractions/api.service";
+import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
+import { getUserId } from "@bitwarden/common/auth/services/account.service";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
 import { EnvironmentService } from "@bitwarden/common/platform/abstractions/environment.service";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
@@ -22,6 +24,7 @@ export class SendGetCommand extends DownloadCommand {
     private searchService: SearchService,
     encryptService: EncryptService,
     apiService: ApiService,
+    private accountService: AccountService,
   ) {
     super(encryptService, apiService);
   }
@@ -77,7 +80,8 @@ export class SendGetCommand extends DownloadCommand {
         return await send.decrypt();
       }
     } else if (id.trim() !== "") {
-      let sends = await this.sendService.getAllDecryptedFromState();
+      const activeUserId = await firstValueFrom(this.accountService.activeAccount$.pipe(getUserId));
+      let sends = await this.sendService.getAllDecryptedFromState(activeUserId);
       sends = this.searchService.searchSends(sends, id);
       if (sends.length > 1) {
         return sends;
diff --git a/apps/cli/src/tools/send/commands/list.command.ts b/apps/cli/src/tools/send/commands/list.command.ts
index f611cb3f5dc..d3cb73e9b21 100644
--- a/apps/cli/src/tools/send/commands/list.command.ts
+++ b/apps/cli/src/tools/send/commands/list.command.ts
@@ -1,5 +1,7 @@
 import { firstValueFrom } from "rxjs";
 
+import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
+import { getUserId } from "@bitwarden/common/auth/services/account.service";
 import { EnvironmentService } from "@bitwarden/common/platform/abstractions/environment.service";
 import { SendService } from "@bitwarden/common/tools/send/services/send.service.abstraction";
 import { SearchService } from "@bitwarden/common/vault/abstractions/search.service";
@@ -13,10 +15,12 @@ export class SendListCommand {
     private sendService: SendService,
     private environmentService: EnvironmentService,
     private searchService: SearchService,
+    private accountService: AccountService,
   ) {}
 
   async run(cmdOptions: Record<string, any>): Promise<Response> {
-    let sends = await this.sendService.getAllDecryptedFromState();
+    const activeUserId = await firstValueFrom(this.accountService.activeAccount$.pipe(getUserId));
+    let sends = await this.sendService.getAllDecryptedFromState(activeUserId);
 
     const normalizedOptions = new Options(cmdOptions);
     if (normalizedOptions.search != null && normalizedOptions.search.trim() !== "") {
diff --git a/apps/cli/src/tools/send/send.program.ts b/apps/cli/src/tools/send/send.program.ts
index 6af714cb786..cbeda188a99 100644
--- a/apps/cli/src/tools/send/send.program.ts
+++ b/apps/cli/src/tools/send/send.program.ts
@@ -128,6 +128,7 @@ export class SendProgram extends BaseProgram {
           this.serviceContainer.sendService,
           this.serviceContainer.environmentService,
           this.serviceContainer.searchService,
+          this.serviceContainer.accountService,
         );
         const response = await cmd.run(options);
         this.processResponse(response);
@@ -193,6 +194,7 @@ export class SendProgram extends BaseProgram {
           this.serviceContainer.searchService,
           this.serviceContainer.encryptService,
           this.serviceContainer.apiService,
+          this.serviceContainer.accountService,
         );
         const response = await cmd.run(id, options);
         this.processResponse(response);
@@ -253,6 +255,7 @@ export class SendProgram extends BaseProgram {
           this.serviceContainer.searchService,
           this.serviceContainer.encryptService,
           this.serviceContainer.apiService,
+          this.serviceContainer.accountService,
         );
         const cmd = new SendEditCommand(
           this.serviceContainer.sendService,
diff --git a/apps/desktop/src/key-management/electron-key.service.ts b/apps/desktop/src/key-management/electron-key.service.ts
index 8a6fbfa085f..0f5555167c0 100644
--- a/apps/desktop/src/key-management/electron-key.service.ts
+++ b/apps/desktop/src/key-management/electron-key.service.ts
@@ -51,10 +51,6 @@ export class ElectronKeyService extends DefaultKeyService {
     );
   }
 
-  override async hasUserKeyStored(keySuffix: KeySuffixOptions, userId?: UserId): Promise<boolean> {
-    return super.hasUserKeyStored(keySuffix, userId);
-  }
-
   override async clearStoredUserKey(keySuffix: KeySuffixOptions, userId: UserId): Promise<void> {
     await super.clearStoredUserKey(keySuffix, userId);
   }
diff --git a/libs/auth/src/common/login-strategies/sso-login.strategy.ts b/libs/auth/src/common/login-strategies/sso-login.strategy.ts
index a48ffd09503..8b60e42f03e 100644
--- a/libs/auth/src/common/login-strategies/sso-login.strategy.ts
+++ b/libs/auth/src/common/login-strategies/sso-login.strategy.ts
@@ -266,7 +266,7 @@ export class SsoLoginStrategy extends LoginStrategy {
         );
       }
 
-      if (await this.keyService.hasUserKey()) {
+      if (await this.keyService.hasUserKey(userId)) {
         // Now that we have a decrypted user key in memory, we can check if we
         // need to establish trust on the current device
         await this.deviceTrustService.trustDeviceIfRequired(userId);
diff --git a/libs/common/src/tools/send/services/send.service.abstraction.ts b/libs/common/src/tools/send/services/send.service.abstraction.ts
index 0cf951e4197..f586e39a755 100644
--- a/libs/common/src/tools/send/services/send.service.abstraction.ts
+++ b/libs/common/src/tools/send/services/send.service.abstraction.ts
@@ -54,7 +54,7 @@ export abstract class SendService implements UserKeyRotationDataProvider<SendWit
   /**
    * @deprecated Only use in CLI
    */
-  getAllDecryptedFromState: () => Promise<SendView[]>;
+  getAllDecryptedFromState: (userId: UserId) => Promise<SendView[]>;
 }
 
 export abstract class InternalSendService extends SendService {
diff --git a/libs/common/src/tools/send/services/send.service.spec.ts b/libs/common/src/tools/send/services/send.service.spec.ts
index 777bc54f299..d2a2d5dd9b5 100644
--- a/libs/common/src/tools/send/services/send.service.spec.ts
+++ b/libs/common/src/tools/send/services/send.service.spec.ts
@@ -467,10 +467,21 @@ describe("SendService", () => {
     });
   });
 
-  it("getAllDecryptedFromState", async () => {
-    const sends = await sendService.getAllDecryptedFromState();
+  describe("getAllDecryptedFromState", () => {
+    it("returns already decrypted sends in state", async () => {
+      const sends = await sendService.getAllDecryptedFromState(mockUserId);
 
-    expect(sends[0]).toMatchObject(testSendViewData("1", "Test Send"));
+      expect(sends[0]).toMatchObject(testSendViewData("1", "Test Send"));
+    });
+
+    it("throws if no decrypted sends in state and there is no userKey", async () => {
+      decryptedState.nextState(null);
+      keyService.hasUserKey.mockResolvedValue(false);
+
+      await expect(sendService.getAllDecryptedFromState(mockUserId)).rejects.toThrow(
+        "No user key found.",
+      );
+    });
   });
 
   describe("getRotatedData", () => {
diff --git a/libs/common/src/tools/send/services/send.service.ts b/libs/common/src/tools/send/services/send.service.ts
index 2556fa2e908..623ab7c4a7b 100644
--- a/libs/common/src/tools/send/services/send.service.ts
+++ b/libs/common/src/tools/send/services/send.service.ts
@@ -199,14 +199,14 @@ export class SendService implements InternalSendServiceAbstraction {
     return response;
   }
 
-  async getAllDecryptedFromState(): Promise<SendView[]> {
+  async getAllDecryptedFromState(userId: UserId): Promise<SendView[]> {
     let decSends = await this.stateProvider.getDecryptedSends();
     if (decSends != null) {
       return decSends;
     }
 
     decSends = [];
-    const hasKey = await this.keyService.hasUserKey();
+    const hasKey = await this.keyService.hasUserKey(userId);
     if (!hasKey) {
       throw new Error("No user key found.");
     }
diff --git a/libs/key-management-ui/src/lock/components/lock.component.ts b/libs/key-management-ui/src/lock/components/lock.component.ts
index cd731629b48..3d5951a5ac4 100644
--- a/libs/key-management-ui/src/lock/components/lock.component.ts
+++ b/libs/key-management-ui/src/lock/components/lock.component.ts
@@ -249,7 +249,7 @@ export class LockComponent implements OnInit, OnDestroy {
 
   private async handleActiveAccountChange(activeAccount: Account) {
     // this account may be unlocked, prevent any prompts so we can redirect to vault
-    if (await this.keyService.hasUserKeyInMemory(activeAccount.id)) {
+    if (await this.keyService.hasUserKey(activeAccount.id)) {
       return;
     }
 
diff --git a/libs/key-management/src/abstractions/key.service.ts b/libs/key-management/src/abstractions/key.service.ts
index 452d3e02436..bbe0dd50f3d 100644
--- a/libs/key-management/src/abstractions/key.service.ts
+++ b/libs/key-management/src/abstractions/key.service.ts
@@ -138,24 +138,13 @@ export abstract class KeyService {
     userId: string,
   ): Promise<UserKey | null>;
 
-  /**
-   * Determines whether the user key is available for the given user.
-   * @param userId The desired user. If not provided, the active user will be used. If no active user exists, the method will return false.
-   * @returns True if the user key is available
-   */
-  abstract hasUserKey(userId?: UserId): Promise<boolean>;
   /**
    * Determines whether the user key is available for the given user in memory.
-   * @param userId The desired user. If not provided, the active user will be used. If no active user exists, the method will return false.
-   * @returns True if the user key is available
+   * @param userId The desired user. If null or undefined, will return false.
+   * @returns True if the user key is available, returns false otherwise.
    */
-  abstract hasUserKeyInMemory(userId?: string): Promise<boolean>;
-  /**
-   * @param keySuffix The desired version of the user's key to check
-   * @param userId The desired user
-   * @returns True if the provided version of the user key is stored
-   */
-  abstract hasUserKeyStored(keySuffix: KeySuffixOptions, userId?: string): Promise<boolean>;
+  abstract hasUserKey(userId: UserId): Promise<boolean>;
+
   /**
    * Generates a new user key
    * @throws Error when master key is null and there is no active user
diff --git a/libs/key-management/src/key.service.spec.ts b/libs/key-management/src/key.service.spec.ts
index 1fc998dc131..7d7ac99898d 100644
--- a/libs/key-management/src/key.service.spec.ts
+++ b/libs/key-management/src/key.service.spec.ts
@@ -148,39 +148,25 @@ describe("keyService", () => {
     });
   });
 
-  describe.each(["hasUserKey", "hasUserKeyInMemory"])(`%s`, (methodName: string) => {
+  describe("hasUserKey", () => {
     let mockUserKey: UserKey;
-    let method: (userId?: UserId) => Promise<boolean>;
 
     beforeEach(() => {
       const mockRandomBytes = new Uint8Array(64) as CsprngArray;
       mockUserKey = new SymmetricCryptoKey(mockRandomBytes) as UserKey;
-      method =
-        methodName === "hasUserKey"
-          ? keyService.hasUserKey.bind(keyService)
-          : keyService.hasUserKeyInMemory.bind(keyService);
     });
 
+    test.each([null as unknown as UserId, undefined as unknown as UserId])(
+      "returns false when userId is %s",
+      async (userId) => {
+        expect(await keyService.hasUserKey(userId)).toBe(false);
+      },
+    );
+
     it.each([true, false])("returns %s if the user key is set", async (hasKey) => {
       stateProvider.singleUser.getFake(mockUserId, USER_KEY).nextState(hasKey ? mockUserKey : null);
-      expect(await method(mockUserId)).toBe(hasKey);
+      expect(await keyService.hasUserKey(mockUserId)).toBe(hasKey);
     });
-
-    it("returns false when no active userId is set", async () => {
-      accountService.activeAccountSubject.next(null);
-      expect(await method()).toBe(false);
-    });
-
-    it.each([true, false])(
-      "resolves %s for active user id when none is provided",
-      async (hasKey) => {
-        stateProvider.activeUserId$ = of(mockUserId);
-        stateProvider.singleUser
-          .getFake(mockUserId, USER_KEY)
-          .nextState(hasKey ? mockUserKey : null);
-        expect(await method()).toBe(hasKey);
-      },
-    );
   });
 
   describe("getUserKeyWithLegacySupport", () => {
@@ -410,6 +396,19 @@ describe("keyService", () => {
     });
   });
 
+  describe("makeSendKey", () => {
+    const mockRandomBytes = new Uint8Array(16) as CsprngArray;
+    it("calls keyGenerationService with expected hard coded parameters", async () => {
+      await keyService.makeSendKey(mockRandomBytes);
+
+      expect(keyGenerationService.deriveKeyFromMaterial).toHaveBeenCalledWith(
+        mockRandomBytes,
+        "bitwarden-send",
+        "send",
+      );
+    });
+  });
+
   describe("clearStoredUserKey", () => {
     describe("input validation", () => {
       const invalidUserIdTestCases = [
diff --git a/libs/key-management/src/key.service.ts b/libs/key-management/src/key.service.ts
index eae52a2ba87..a8e75123b85 100644
--- a/libs/key-management/src/key.service.ts
+++ b/libs/key-management/src/key.service.ts
@@ -198,16 +198,7 @@ export class DefaultKeyService implements KeyServiceAbstraction {
     return userKey;
   }
 
-  async hasUserKey(userId?: UserId): Promise<boolean> {
-    userId ??= await firstValueFrom(this.stateProvider.activeUserId$);
-    if (userId == null) {
-      return false;
-    }
-    return await this.hasUserKeyInMemory(userId);
-  }
-
-  async hasUserKeyInMemory(userId?: UserId): Promise<boolean> {
-    userId ??= await firstValueFrom(this.stateProvider.activeUserId$);
+  async hasUserKey(userId: UserId): Promise<boolean> {
     if (userId == null) {
       return false;
     }
@@ -215,10 +206,6 @@ export class DefaultKeyService implements KeyServiceAbstraction {
     return (await firstValueFrom(this.stateProvider.getUserState$(USER_KEY, userId))) != null;
   }
 
-  async hasUserKeyStored(keySuffix: KeySuffixOptions, userId?: UserId): Promise<boolean> {
-    return (await this.getKeyFromStorage(keySuffix, userId)) != null;
-  }
-
   async makeUserKey(masterKey: MasterKey | null): Promise<[UserKey, EncString]> {
     if (masterKey == null) {
       const userId = await firstValueFrom(this.stateProvider.activeUserId$);

From b62f6c7eb5cf0ff7d05b8d6b785711f74c28b2ca Mon Sep 17 00:00:00 2001
From: SmithThe4th <gsmith@bitwarden.com>
Date: Wed, 9 Jul 2025 13:24:58 -0400
Subject: [PATCH 089/239] Fixed from json conversion for encyrpted key (#15536)

---
 libs/common/src/vault/models/view/attachment.view.ts | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/libs/common/src/vault/models/view/attachment.view.ts b/libs/common/src/vault/models/view/attachment.view.ts
index 57a1deaedb9..d943d21367d 100644
--- a/libs/common/src/vault/models/view/attachment.view.ts
+++ b/libs/common/src/vault/models/view/attachment.view.ts
@@ -45,7 +45,8 @@ export class AttachmentView implements View {
 
   static fromJSON(obj: Partial<Jsonify<AttachmentView>>): AttachmentView {
     const key = obj.key == null ? null : SymmetricCryptoKey.fromJSON(obj.key);
-    return Object.assign(new AttachmentView(), obj, { key: key });
+    const encryptedKey = obj.encryptedKey == null ? undefined : new EncString(obj.encryptedKey);
+    return Object.assign(new AttachmentView(), obj, { key: key, encryptedKey: encryptedKey });
   }
 
   /**

From 90b71972793648e90e1ae43acd958ecb0a413470 Mon Sep 17 00:00:00 2001
From: Andreas Coroiu <acoroiu@bitwarden.com>
Date: Wed, 9 Jul 2025 21:38:33 +0200
Subject: [PATCH 090/239] [PM-20210] Expand badge API (#14801)

* feat: scaffold new badge service structure

* feat: add state override

* feat: add priority-based override

* feat: implement state clearing

* feat: add docs to badge service functions

* feat: add support for setting icon

* feat: implement unsetting

* feat: implement setting text

* feat: add support for setting background

* fix: default icon

* feat: clean up old update-badge

* feat: save state using StateProvider

* feat: migrate auth status badge updating

* feat: migrate autofill badge updating

* fix: auto set to default values

* chore: woops, clean up copy-pasta

* fix: lint and types

* chore: nit updates from PR review

* feat: remove ability to send in arbitrary icons

* feat: move init to separate function

* fix: wrong import

* fix: typing issues

* fix: try again to fix typing issues

* feat: scaffold tests for new tabId-specific states

* feat: add diffence util function

* feat: add support for limiting state to tabId

* feat: re-implement autofill badge updater to only update when a tab actually changes

* feat[wip]: always set all tabs when changing the general state

* feat[wip]: implement general states for mutliple open tabs

* feat[wip]: implement fully working multi-tab functionality

* feat: optimize api calls

* feat: adjust storage

* chore: clean up old code

* chore: remove unused log service

* chore: minor tweaks

* fix: types

* fix: race condition causing wrong icon on startup

The service assumes that the first emission from the state will be an empty one and discards it
(techincally it just doesn't act on it because pairwise requires a minimum two emissions). This
caused issues when a service is able to update the state before the observable got a change to
properly initialize. To fix this we simply force an empty emission before anything else,
that way we will always react to the emission from the state provider (because that would end up
being the second emission). We then use distinctUntilChanged to avoid unecessarily acting on
an empty state.
---
 .../auth-status-badge-updater.service.ts      |  56 ++
 .../background/tabs.background.spec.ts        |   8 -
 .../autofill/background/tabs.background.ts    |   2 -
 .../autofill-badge-updater.service.ts         | 163 +++++
 .../browser/src/background/main.background.ts |  38 +-
 .../src/background/runtime.background.ts      |   3 -
 .../src/platform/badge/array-utils.spec.ts    |  17 +
 .../browser/src/platform/badge/array-utils.ts |  16 +
 .../src/platform/badge/badge-browser-api.ts   | 119 ++++
 .../src/platform/badge/badge.service.spec.ts  | 562 ++++++++++++++++++
 .../src/platform/badge/badge.service.ts       | 182 ++++++
 apps/browser/src/platform/badge/consts.ts     |   9 +
 apps/browser/src/platform/badge/icon.ts       |  21 +
 apps/browser/src/platform/badge/priority.ts   |   7 +
 apps/browser/src/platform/badge/state.ts      |  32 +
 .../badge/test/mock-badge-browser-api.ts      |  21 +
 .../src/platform/browser/browser-api.ts       |   2 +-
 .../src/platform/listeners/update-badge.ts    | 217 -------
 .../src/platform/state/state-definitions.ts   |   3 +
 19 files changed, 1237 insertions(+), 241 deletions(-)
 create mode 100644 apps/browser/src/auth/services/auth-status-badge-updater.service.ts
 create mode 100644 apps/browser/src/autofill/services/autofill-badge-updater.service.ts
 create mode 100644 apps/browser/src/platform/badge/array-utils.spec.ts
 create mode 100644 apps/browser/src/platform/badge/array-utils.ts
 create mode 100644 apps/browser/src/platform/badge/badge-browser-api.ts
 create mode 100644 apps/browser/src/platform/badge/badge.service.spec.ts
 create mode 100644 apps/browser/src/platform/badge/badge.service.ts
 create mode 100644 apps/browser/src/platform/badge/consts.ts
 create mode 100644 apps/browser/src/platform/badge/icon.ts
 create mode 100644 apps/browser/src/platform/badge/priority.ts
 create mode 100644 apps/browser/src/platform/badge/state.ts
 create mode 100644 apps/browser/src/platform/badge/test/mock-badge-browser-api.ts
 delete mode 100644 apps/browser/src/platform/listeners/update-badge.ts

diff --git a/apps/browser/src/auth/services/auth-status-badge-updater.service.ts b/apps/browser/src/auth/services/auth-status-badge-updater.service.ts
new file mode 100644
index 00000000000..4205ebc665d
--- /dev/null
+++ b/apps/browser/src/auth/services/auth-status-badge-updater.service.ts
@@ -0,0 +1,56 @@
+import { mergeMap, of, switchMap } from "rxjs";
+
+import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
+import { AuthService } from "@bitwarden/common/auth/abstractions/auth.service";
+import { AuthenticationStatus } from "@bitwarden/common/auth/enums/authentication-status";
+
+import { BadgeService } from "../../platform/badge/badge.service";
+import { BadgeIcon } from "../../platform/badge/icon";
+import { BadgeStatePriority } from "../../platform/badge/priority";
+import { Unset } from "../../platform/badge/state";
+
+const StateName = "auth-status";
+
+export class AuthStatusBadgeUpdaterService {
+  constructor(
+    private badgeService: BadgeService,
+    private accountService: AccountService,
+    private authService: AuthService,
+  ) {
+    this.accountService.activeAccount$
+      .pipe(
+        switchMap((account) =>
+          account
+            ? this.authService.authStatusFor$(account.id)
+            : of(AuthenticationStatus.LoggedOut),
+        ),
+        mergeMap(async (authStatus) => {
+          switch (authStatus) {
+            case AuthenticationStatus.LoggedOut: {
+              await this.badgeService.setState(StateName, BadgeStatePriority.High, {
+                icon: BadgeIcon.LoggedOut,
+                backgroundColor: Unset,
+                text: Unset,
+              });
+              break;
+            }
+            case AuthenticationStatus.Locked: {
+              await this.badgeService.setState(StateName, BadgeStatePriority.High, {
+                icon: BadgeIcon.Locked,
+                backgroundColor: Unset,
+                text: Unset,
+              });
+              break;
+            }
+            case AuthenticationStatus.Unlocked: {
+              await this.badgeService.setState(StateName, BadgeStatePriority.Low, {
+                icon: BadgeIcon.Unlocked,
+              });
+              break;
+            }
+          }
+        }),
+      )
+      .subscribe();
+  }
+}
diff --git a/apps/browser/src/autofill/background/tabs.background.spec.ts b/apps/browser/src/autofill/background/tabs.background.spec.ts
index 4473eb452f3..635ab8504a1 100644
--- a/apps/browser/src/autofill/background/tabs.background.spec.ts
+++ b/apps/browser/src/autofill/background/tabs.background.spec.ts
@@ -73,7 +73,6 @@ describe("TabsBackground", () => {
         triggerWindowOnFocusedChangedEvent(10);
         await flushPromises();
 
-        expect(mainBackground.refreshBadge).toHaveBeenCalled();
         expect(mainBackground.refreshMenu).toHaveBeenCalled();
         expect(overlayBackground.updateOverlayCiphers).toHaveBeenCalled();
       });
@@ -91,7 +90,6 @@ describe("TabsBackground", () => {
         triggerTabOnActivatedEvent({ tabId: 10, windowId: 20 });
         await flushPromises();
 
-        expect(mainBackground.refreshBadge).toHaveBeenCalled();
         expect(mainBackground.refreshMenu).toHaveBeenCalled();
         expect(overlayBackground.updateOverlayCiphers).toHaveBeenCalled();
       });
@@ -127,7 +125,6 @@ describe("TabsBackground", () => {
         triggerTabOnReplacedEvent(10, 20);
         await flushPromises();
 
-        expect(mainBackground.refreshBadge).toHaveBeenCalled();
         expect(mainBackground.refreshMenu).toHaveBeenCalled();
         expect(overlayBackground.updateOverlayCiphers).toHaveBeenCalled();
       });
@@ -160,7 +157,6 @@ describe("TabsBackground", () => {
         triggerTabOnUpdatedEvent(focusedWindowId, { status: "loading" }, tab);
         await flushPromises();
 
-        expect(mainBackground.refreshBadge).not.toHaveBeenCalled();
         expect(mainBackground.refreshMenu).not.toHaveBeenCalled();
         expect(overlayBackground.updateOverlayCiphers).not.toHaveBeenCalled();
       });
@@ -170,7 +166,6 @@ describe("TabsBackground", () => {
         triggerTabOnUpdatedEvent(focusedWindowId, { status: "loading" }, tab);
         await flushPromises();
 
-        expect(mainBackground.refreshBadge).not.toHaveBeenCalled();
         expect(mainBackground.refreshMenu).not.toHaveBeenCalled();
         expect(overlayBackground.updateOverlayCiphers).not.toHaveBeenCalled();
       });
@@ -180,7 +175,6 @@ describe("TabsBackground", () => {
         triggerTabOnUpdatedEvent(focusedWindowId, { status: "loading" }, tab);
         await flushPromises();
 
-        expect(mainBackground.refreshBadge).not.toHaveBeenCalled();
         expect(mainBackground.refreshMenu).not.toHaveBeenCalled();
         expect(overlayBackground.updateOverlayCiphers).not.toHaveBeenCalled();
       });
@@ -190,7 +184,6 @@ describe("TabsBackground", () => {
         triggerTabOnUpdatedEvent(focusedWindowId, { status: "loading" }, tab);
         await flushPromises();
 
-        expect(mainBackground.refreshBadge).not.toHaveBeenCalled();
         expect(mainBackground.refreshMenu).not.toHaveBeenCalled();
       });
 
@@ -205,7 +198,6 @@ describe("TabsBackground", () => {
         triggerTabOnUpdatedEvent(focusedWindowId, { status: "loading" }, tab);
         await flushPromises();
 
-        expect(mainBackground.refreshBadge).toHaveBeenCalled();
         expect(mainBackground.refreshMenu).toHaveBeenCalled();
         expect(overlayBackground.updateOverlayCiphers).toHaveBeenCalled();
       });
diff --git a/apps/browser/src/autofill/background/tabs.background.ts b/apps/browser/src/autofill/background/tabs.background.ts
index c093f1a3b00..4d520680980 100644
--- a/apps/browser/src/autofill/background/tabs.background.ts
+++ b/apps/browser/src/autofill/background/tabs.background.ts
@@ -102,7 +102,6 @@ export default class TabsBackground {
     this.main.onUpdatedRan = true;
 
     await this.notificationBackground.checkNotificationQueue(tab);
-    await this.main.refreshBadge();
     await this.main.refreshMenu();
     this.main.messagingService.send("tabChanged");
   };
@@ -122,7 +121,6 @@ export default class TabsBackground {
    */
   private updateCurrentTabData = async () => {
     await Promise.all([
-      this.main.refreshBadge(),
       this.main.refreshMenu(),
       this.overlayBackground.updateOverlayCiphers(false),
     ]);
diff --git a/apps/browser/src/autofill/services/autofill-badge-updater.service.ts b/apps/browser/src/autofill/services/autofill-badge-updater.service.ts
new file mode 100644
index 00000000000..42cb8886216
--- /dev/null
+++ b/apps/browser/src/autofill/services/autofill-badge-updater.service.ts
@@ -0,0 +1,163 @@
+import { combineLatest, distinctUntilChanged, mergeMap, of, Subject, switchMap } from "rxjs";
+
+import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
+import { BadgeSettingsServiceAbstraction } from "@bitwarden/common/autofill/services/badge-settings.service";
+import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
+import { UserId } from "@bitwarden/common/types/guid";
+import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
+
+import { BadgeService } from "../../platform/badge/badge.service";
+import { BadgeStatePriority } from "../../platform/badge/priority";
+import { BrowserApi } from "../../platform/browser/browser-api";
+
+const StateName = (tabId: number) => `autofill-badge-${tabId}`;
+
+export class AutofillBadgeUpdaterService {
+  private tabReplaced$ = new Subject<{ addedTab: chrome.tabs.Tab; removedTabId: number }>();
+  private tabUpdated$ = new Subject<chrome.tabs.Tab>();
+  private tabRemoved$ = new Subject<number>();
+
+  constructor(
+    private badgeService: BadgeService,
+    private accountService: AccountService,
+    private cipherService: CipherService,
+    private badgeSettingsService: BadgeSettingsServiceAbstraction,
+    private logService: LogService,
+  ) {
+    const cipherViews$ = this.accountService.activeAccount$.pipe(
+      switchMap((account) => (account?.id ? this.cipherService.cipherViews$(account?.id) : of([]))),
+    );
+
+    combineLatest({
+      account: this.accountService.activeAccount$,
+      enableBadgeCounter:
+        this.badgeSettingsService.enableBadgeCounter$.pipe(distinctUntilChanged()),
+      ciphers: cipherViews$,
+    })
+      .pipe(
+        mergeMap(async ({ account, enableBadgeCounter, ciphers }) => {
+          if (!account) {
+            return;
+          }
+
+          const tabs = await BrowserApi.tabsQuery({});
+          for (const tab of tabs) {
+            if (!tab.id) {
+              continue;
+            }
+
+            if (enableBadgeCounter) {
+              await this.setTabState(tab, account.id);
+            } else {
+              await this.clearTabState(tab.id);
+            }
+          }
+        }),
+      )
+      .subscribe();
+
+    combineLatest({
+      account: this.accountService.activeAccount$,
+      enableBadgeCounter: this.badgeSettingsService.enableBadgeCounter$,
+      replaced: this.tabReplaced$,
+      ciphers: cipherViews$,
+    })
+      .pipe(
+        mergeMap(async ({ account, enableBadgeCounter, replaced }) => {
+          if (!account || !enableBadgeCounter) {
+            return;
+          }
+
+          await this.clearTabState(replaced.removedTabId);
+          await this.setTabState(replaced.addedTab, account.id);
+        }),
+      )
+      .subscribe();
+
+    combineLatest({
+      account: this.accountService.activeAccount$,
+      enableBadgeCounter: this.badgeSettingsService.enableBadgeCounter$,
+      tab: this.tabUpdated$,
+      ciphers: cipherViews$,
+    })
+      .pipe(
+        mergeMap(async ({ account, enableBadgeCounter, tab }) => {
+          if (!account || !enableBadgeCounter) {
+            return;
+          }
+
+          await this.setTabState(tab, account.id);
+        }),
+      )
+      .subscribe();
+
+    combineLatest({
+      account: this.accountService.activeAccount$,
+      enableBadgeCounter: this.badgeSettingsService.enableBadgeCounter$,
+      tabId: this.tabRemoved$,
+      ciphers: cipherViews$,
+    })
+      .pipe(
+        mergeMap(async ({ account, enableBadgeCounter, tabId }) => {
+          if (!account || !enableBadgeCounter) {
+            return;
+          }
+
+          await this.clearTabState(tabId);
+        }),
+      )
+      .subscribe();
+  }
+
+  init() {
+    BrowserApi.addListener(chrome.tabs.onReplaced, async (addedTabId, removedTabId) => {
+      const newTab = await BrowserApi.getTab(addedTabId);
+      if (!newTab) {
+        this.logService.warning(
+          `Tab replaced event received but new tab not found (id: ${addedTabId})`,
+        );
+        return;
+      }
+
+      this.tabReplaced$.next({
+        removedTabId,
+        addedTab: newTab,
+      });
+    });
+    BrowserApi.addListener(chrome.tabs.onUpdated, (_, changeInfo, tab) => {
+      if (changeInfo.url) {
+        this.tabUpdated$.next(tab);
+      }
+    });
+    BrowserApi.addListener(chrome.tabs.onRemoved, (tabId, _) => this.tabRemoved$.next(tabId));
+  }
+
+  private async setTabState(tab: chrome.tabs.Tab, userId: UserId) {
+    if (!tab.id) {
+      this.logService.warning("Tab event received but tab id is undefined");
+      return;
+    }
+
+    const ciphers = tab.url ? await this.cipherService.getAllDecryptedForUrl(tab.url, userId) : [];
+    const cipherCount = ciphers.length;
+
+    if (cipherCount === 0) {
+      await this.clearTabState(tab.id);
+      return;
+    }
+
+    const countText = cipherCount > 9 ? "9+" : cipherCount.toString();
+    await this.badgeService.setState(
+      StateName(tab.id),
+      BadgeStatePriority.Default,
+      {
+        text: countText,
+      },
+      tab.id,
+    );
+  }
+
+  private async clearTabState(tabId: number) {
+    await this.badgeService.clearState(StateName(tabId));
+  }
+}
diff --git a/apps/browser/src/background/main.background.ts b/apps/browser/src/background/main.background.ts
index 16149ea0fb3..3f29151a1b7 100644
--- a/apps/browser/src/background/main.background.ts
+++ b/apps/browser/src/background/main.background.ts
@@ -242,6 +242,7 @@ import {
   VaultExportServiceAbstraction,
 } from "@bitwarden/vault-export-core";
 
+import { AuthStatusBadgeUpdaterService } from "../auth/services/auth-status-badge-updater.service";
 import { OverlayNotificationsBackground as OverlayNotificationsBackgroundInterface } from "../autofill/background/abstractions/overlay-notifications.background";
 import { OverlayBackground as OverlayBackgroundInterface } from "../autofill/background/abstractions/overlay.background";
 import { AutoSubmitLoginBackground } from "../autofill/background/auto-submit-login.background";
@@ -261,16 +262,18 @@ import {
   BrowserFido2UserInterfaceService,
 } from "../autofill/fido2/services/browser-fido2-user-interface.service";
 import { AutofillService as AutofillServiceAbstraction } from "../autofill/services/abstractions/autofill.service";
+import { AutofillBadgeUpdaterService } from "../autofill/services/autofill-badge-updater.service";
 import AutofillService from "../autofill/services/autofill.service";
 import { InlineMenuFieldQualificationService } from "../autofill/services/inline-menu-field-qualification.service";
 import { SafariApp } from "../browser/safariApp";
 import { BackgroundBrowserBiometricsService } from "../key-management/biometrics/background-browser-biometrics.service";
 import VaultTimeoutService from "../key-management/vault-timeout/vault-timeout.service";
+import { DefaultBadgeBrowserApi } from "../platform/badge/badge-browser-api";
+import { BadgeService } from "../platform/badge/badge.service";
 import { BrowserApi } from "../platform/browser/browser-api";
 import { flagEnabled } from "../platform/flags";
 import { IpcBackgroundService } from "../platform/ipc/ipc-background.service";
 import { IpcContentScriptManagerService } from "../platform/ipc/ipc-content-script-manager.service";
-import { UpdateBadge } from "../platform/listeners/update-badge";
 /* eslint-disable no-restricted-imports */
 import { ChromeMessageSender } from "../platform/messaging/chrome-message.sender";
 /* eslint-enable no-restricted-imports */
@@ -421,6 +424,10 @@ export default class MainBackground {
   ipcContentScriptManagerService: IpcContentScriptManagerService;
   ipcService: IpcService;
 
+  badgeService: BadgeService;
+  authStatusBadgeUpdaterService: AuthStatusBadgeUpdaterService;
+  autofillBadgeUpdaterService: AutofillBadgeUpdaterService;
+
   onUpdatedRan: boolean;
   onReplacedRan: boolean;
   loginToAutoFill: CipherView = null;
@@ -444,7 +451,6 @@ export default class MainBackground {
   constructor() {
     // Services
     const lockedCallback = async (userId: UserId) => {
-      await this.refreshBadge();
       await this.refreshMenu(true);
       if (this.systemService != null) {
         await this.systemService.clearPendingClipboard();
@@ -1363,6 +1369,16 @@ export default class MainBackground {
       this.authService,
       this.logService,
     );
+
+    this.badgeService = new BadgeService(
+      this.stateProvider,
+      new DefaultBadgeBrowserApi(this.platformUtilsService),
+    );
+    this.authStatusBadgeUpdaterService = new AuthStatusBadgeUpdaterService(
+      this.badgeService,
+      this.accountService,
+      this.authService,
+    );
   }
 
   async bootstrap() {
@@ -1437,10 +1453,10 @@ export default class MainBackground {
 
     await this.initOverlayAndTabsBackground();
     await this.ipcService.init();
+    this.badgeService.startListening();
 
     return new Promise<void>((resolve) => {
       setTimeout(async () => {
-        await this.refreshBadge();
         await this.fullSync(false);
         this.backgroundSyncService.init();
         this.notificationsService.startListening();
@@ -1455,10 +1471,6 @@ export default class MainBackground {
     });
   }
 
-  async refreshBadge() {
-    await new UpdateBadge(self, this).run();
-  }
-
   async refreshMenu(forLocked = false) {
     if (!chrome.windows || !chrome.contextMenus) {
       return;
@@ -1530,7 +1542,6 @@ export default class MainBackground {
       await switchPromise;
 
       if (userId == null) {
-        await this.refreshBadge();
         await this.refreshMenu();
         await this.updateOverlayCiphers();
         this.messagingService.send("goHome");
@@ -1547,7 +1558,6 @@ export default class MainBackground {
         this.messagingService.send("locked", { userId: userId });
       } else {
         this.messagingService.send("unlocked", { userId: userId });
-        await this.refreshBadge();
         await this.refreshMenu();
         await this.updateOverlayCiphers();
         await this.syncService.fullSync(false);
@@ -1640,7 +1650,6 @@ export default class MainBackground {
       // eslint-disable-next-line @typescript-eslint/no-floating-promises
       BrowserApi.sendMessage("updateBadge");
     }
-    await this.refreshBadge();
     await this.mainContextMenuHandler?.noAccess();
     await this.systemService.clearPendingClipboard();
     await this.processReloadService.startProcessReload(this.authService);
@@ -1805,6 +1814,14 @@ export default class MainBackground {
       (password) => this.addPasswordToHistory(password),
     );
 
+    this.autofillBadgeUpdaterService = new AutofillBadgeUpdaterService(
+      this.badgeService,
+      this.accountService,
+      this.cipherService,
+      this.badgeSettingsService,
+      this.logService,
+    );
+
     this.tabsBackground = new TabsBackground(
       this,
       this.notificationBackground,
@@ -1813,6 +1830,7 @@ export default class MainBackground {
 
     await this.overlayBackground.init();
     await this.tabsBackground.init();
+    await this.autofillBadgeUpdaterService.init();
   }
 
   generatePassword = async (): Promise<string> => {
diff --git a/apps/browser/src/background/runtime.background.ts b/apps/browser/src/background/runtime.background.ts
index 54fb8326cfb..1e7a0140022 100644
--- a/apps/browser/src/background/runtime.background.ts
+++ b/apps/browser/src/background/runtime.background.ts
@@ -256,7 +256,6 @@ export default class RuntimeBackground {
         // @TODO these need to happen last to avoid blocking `tabSendMessageData` above
         // The underlying cause exists within `cipherService.getAllDecrypted` via
         // `getAllDecryptedForUrl` and is anticipated to be refactored
-        await this.main.refreshBadge();
         await this.main.refreshMenu(false);
 
         await this.autofillService.setAutoFillOnPageLoadOrgPolicy();
@@ -280,7 +279,6 @@ export default class RuntimeBackground {
       case "syncCompleted":
         if (msg.successfully) {
           setTimeout(async () => {
-            await this.main.refreshBadge();
             await this.main.refreshMenu();
           }, 2000);
           await this.configService.ensureConfigFetched();
@@ -304,7 +302,6 @@ export default class RuntimeBackground {
       case "editedCipher":
       case "addedCipher":
       case "deletedCipher":
-        await this.main.refreshBadge();
         await this.main.refreshMenu();
         break;
       case "bgReseedStorage": {
diff --git a/apps/browser/src/platform/badge/array-utils.spec.ts b/apps/browser/src/platform/badge/array-utils.spec.ts
new file mode 100644
index 00000000000..3f41019f02e
--- /dev/null
+++ b/apps/browser/src/platform/badge/array-utils.spec.ts
@@ -0,0 +1,17 @@
+import { difference } from "./array-utils";
+
+describe("array-utils", () => {
+  describe("difference", () => {
+    it.each([
+      [new Set([1, 2, 3]), new Set([]), new Set([1, 2, 3]), new Set([])],
+      [new Set([]), new Set([1, 2, 3]), new Set([]), new Set([1, 2, 3])],
+      [new Set([1, 2, 3]), new Set([2, 3, 5]), new Set([1]), new Set([5])],
+      [new Set([1, 2, 3]), new Set([1, 2, 3]), new Set([]), new Set([])],
+    ])("returns elements that are unique to each set", (A, B, onlyA, onlyB) => {
+      const [resultA, resultB] = difference(A, B);
+
+      expect(resultA).toEqual(onlyA);
+      expect(resultB).toEqual(onlyB);
+    });
+  });
+});
diff --git a/apps/browser/src/platform/badge/array-utils.ts b/apps/browser/src/platform/badge/array-utils.ts
new file mode 100644
index 00000000000..699006e6153
--- /dev/null
+++ b/apps/browser/src/platform/badge/array-utils.ts
@@ -0,0 +1,16 @@
+/**
+ * Returns the difference between two sets.
+ * @param a First set
+ * @param b Second set
+ * @returns A tuple containing two sets:
+ * - The first set contains elements unique to `a`.
+ * - The second set contains elements unique to `b`.
+ * - If an element is present in both sets, it will not be included in either set.
+ */
+export function difference<T>(a: Set<T>, b: Set<T>): [Set<T>, Set<T>] {
+  const intersection = new Set<T>([...a].filter((x) => b.has(x)));
+  a = new Set<T>([...a].filter((x) => !intersection.has(x)));
+  b = new Set<T>([...b].filter((x) => !intersection.has(x)));
+
+  return [a, b];
+}
diff --git a/apps/browser/src/platform/badge/badge-browser-api.ts b/apps/browser/src/platform/badge/badge-browser-api.ts
new file mode 100644
index 00000000000..9febaf8d39c
--- /dev/null
+++ b/apps/browser/src/platform/badge/badge-browser-api.ts
@@ -0,0 +1,119 @@
+import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
+import { Utils } from "@bitwarden/common/platform/misc/utils";
+
+import { BrowserApi } from "../browser/browser-api";
+
+import { BadgeIcon, IconPaths } from "./icon";
+
+export interface RawBadgeState {
+  tabId?: string;
+  text: string;
+  backgroundColor: string;
+  icon: BadgeIcon;
+}
+
+export interface BadgeBrowserApi {
+  setState(state: RawBadgeState, tabId?: number): Promise<void>;
+  getTabs(): Promise<number[]>;
+}
+
+export class DefaultBadgeBrowserApi implements BadgeBrowserApi {
+  private badgeAction = BrowserApi.getBrowserAction();
+  private sidebarAction = BrowserApi.getSidebarAction(self);
+
+  constructor(private platformUtilsService: PlatformUtilsService) {}
+
+  async setState(state: RawBadgeState, tabId?: number): Promise<void> {
+    await Promise.all([
+      state.backgroundColor !== undefined ? this.setIcon(state.icon, tabId) : undefined,
+      this.setText(state.text, tabId),
+      state.backgroundColor !== undefined
+        ? this.setBackgroundColor(state.backgroundColor, tabId)
+        : undefined,
+    ]);
+  }
+
+  async getTabs(): Promise<number[]> {
+    return (await BrowserApi.tabsQuery({})).map((tab) => tab.id).filter((tab) => tab !== undefined);
+  }
+
+  private setIcon(icon: IconPaths, tabId?: number) {
+    return Promise.all([this.setActionIcon(icon, tabId), this.setSidebarActionIcon(icon, tabId)]);
+  }
+
+  private setText(text: string, tabId?: number) {
+    return Promise.all([this.setActionText(text, tabId), this.setSideBarText(text, tabId)]);
+  }
+
+  private async setActionIcon(path: IconPaths, tabId?: number) {
+    if (!this.badgeAction?.setIcon) {
+      return;
+    }
+
+    if (this.useSyncApiCalls) {
+      await this.badgeAction.setIcon({ path, tabId });
+    } else {
+      await new Promise<void>((resolve) => this.badgeAction.setIcon({ path, tabId }, resolve));
+    }
+  }
+
+  private async setSidebarActionIcon(path: IconPaths, tabId?: number) {
+    if (!this.sidebarAction?.setIcon) {
+      return;
+    }
+
+    if ("opr" in self && BrowserApi.isManifestVersion(3)) {
+      // setIcon API is currenly broken for Opera MV3 extensions
+      // https://forums.opera.com/topic/75680/opr-sidebaraction-seticon-api-is-broken-access-to-extension-api-denied?_=1738349261570
+      // The API currently crashes on MacOS
+      return;
+    }
+
+    if (this.isOperaSidebar(this.sidebarAction)) {
+      await new Promise<void>((resolve) =>
+        (this.sidebarAction as OperaSidebarAction).setIcon({ path, tabId }, () => resolve()),
+      );
+    } else {
+      await this.sidebarAction.setIcon({ path, tabId });
+    }
+  }
+
+  private async setActionText(text: string, tabId?: number) {
+    if (this.badgeAction?.setBadgeText) {
+      await this.badgeAction.setBadgeText({ text, tabId });
+    }
+  }
+
+  private async setSideBarText(text: string, tabId?: number) {
+    if (!this.sidebarAction) {
+      return;
+    }
+
+    if (this.isOperaSidebar(this.sidebarAction)) {
+      this.sidebarAction.setBadgeText({ text, tabId });
+    } else if (this.sidebarAction) {
+      // Firefox
+      const title = `Bitwarden${Utils.isNullOrEmpty(text) ? "" : ` [${text}]`}`;
+      await this.sidebarAction.setTitle({ title, tabId });
+    }
+  }
+
+  private async setBackgroundColor(color: string, tabId?: number) {
+    if (this.badgeAction && this.badgeAction?.setBadgeBackgroundColor) {
+      await this.badgeAction.setBadgeBackgroundColor({ color, tabId });
+    }
+    if (this.sidebarAction && this.isOperaSidebar(this.sidebarAction)) {
+      this.sidebarAction.setBadgeBackgroundColor({ color, tabId });
+    }
+  }
+
+  private get useSyncApiCalls() {
+    return this.platformUtilsService.isFirefox() || this.platformUtilsService.isSafari();
+  }
+
+  private isOperaSidebar(
+    action: OperaSidebarAction | FirefoxSidebarAction,
+  ): action is OperaSidebarAction {
+    return action != null && (action as OperaSidebarAction).setBadgeText != null;
+  }
+}
diff --git a/apps/browser/src/platform/badge/badge.service.spec.ts b/apps/browser/src/platform/badge/badge.service.spec.ts
new file mode 100644
index 00000000000..2a7ba2ce392
--- /dev/null
+++ b/apps/browser/src/platform/badge/badge.service.spec.ts
@@ -0,0 +1,562 @@
+import { Subscription } from "rxjs";
+
+import { FakeAccountService, FakeStateProvider } from "@bitwarden/common/spec";
+
+import { RawBadgeState } from "./badge-browser-api";
+import { BadgeService } from "./badge.service";
+import { DefaultBadgeState } from "./consts";
+import { BadgeIcon } from "./icon";
+import { BadgeStatePriority } from "./priority";
+import { BadgeState, Unset } from "./state";
+import { MockBadgeBrowserApi } from "./test/mock-badge-browser-api";
+
+describe("BadgeService", () => {
+  let badgeApi: MockBadgeBrowserApi;
+  let stateProvider: FakeStateProvider;
+  let badgeService!: BadgeService;
+
+  let badgeServiceSubscription: Subscription;
+
+  beforeEach(() => {
+    badgeApi = new MockBadgeBrowserApi();
+    stateProvider = new FakeStateProvider(new FakeAccountService({}));
+
+    badgeService = new BadgeService(stateProvider, badgeApi);
+  });
+
+  afterEach(() => {
+    badgeServiceSubscription?.unsubscribe();
+  });
+
+  describe("calling without tabId", () => {
+    const tabId = 1;
+
+    describe("given a single tab is open", () => {
+      beforeEach(() => {
+        badgeApi.tabs = [1];
+        badgeServiceSubscription = badgeService.startListening();
+      });
+
+      // This relies on the state provider to auto-emit
+      it("sets default values on startup", async () => {
+        expect(badgeApi.generalState).toEqual(DefaultBadgeState);
+      });
+
+      it("sets provided state when no other state has been set", async () => {
+        const state: BadgeState = {
+          text: "text",
+          backgroundColor: "color",
+          icon: BadgeIcon.Locked,
+        };
+
+        await badgeService.setState("state-name", BadgeStatePriority.Default, state);
+
+        await new Promise((resolve) => setTimeout(resolve, 0));
+        expect(badgeApi.generalState).toEqual(state);
+        expect(badgeApi.specificStates[tabId]).toEqual(state);
+      });
+
+      it("sets default values when none are provided", async () => {
+        // This is a bit of a weird thing to do, but I don't think it's something we need to prohibit
+        const state: BadgeState = {};
+
+        await badgeService.setState("state-name", BadgeStatePriority.Default, state);
+
+        await new Promise((resolve) => setTimeout(resolve, 0));
+        expect(badgeApi.generalState).toEqual(DefaultBadgeState);
+        expect(badgeApi.specificStates[tabId]).toEqual(DefaultBadgeState);
+      });
+
+      it("merges states when multiple same-priority states have been set", async () => {
+        await badgeService.setState("state-1", BadgeStatePriority.Default, { text: "text" });
+        await badgeService.setState("state-2", BadgeStatePriority.Default, {
+          backgroundColor: "#fff",
+        });
+        await badgeService.setState("state-3", BadgeStatePriority.Default, {
+          icon: BadgeIcon.Locked,
+        });
+
+        await new Promise((resolve) => setTimeout(resolve, 0));
+        const expectedState: RawBadgeState = {
+          text: "text",
+          backgroundColor: "#fff",
+          icon: BadgeIcon.Locked,
+        };
+        expect(badgeApi.generalState).toEqual(expectedState);
+        expect(badgeApi.specificStates[tabId]).toEqual(expectedState);
+      });
+
+      it("overrides previous lower-priority state when higher-priority state is set", async () => {
+        await badgeService.setState("state-1", BadgeStatePriority.Low, {
+          text: "text",
+          backgroundColor: "#fff",
+          icon: BadgeIcon.Locked,
+        });
+        await badgeService.setState("state-2", BadgeStatePriority.Default, {
+          text: "override",
+        });
+        await badgeService.setState("state-3", BadgeStatePriority.High, {
+          backgroundColor: "#aaa",
+        });
+
+        await new Promise((resolve) => setTimeout(resolve, 0));
+        const expectedState: RawBadgeState = {
+          text: "override",
+          backgroundColor: "#aaa",
+          icon: BadgeIcon.Locked,
+        };
+        expect(badgeApi.generalState).toEqual(expectedState);
+        expect(badgeApi.specificStates[tabId]).toEqual(expectedState);
+      });
+
+      it("removes override when a previously high-priority state is cleared", async () => {
+        await badgeService.setState("state-1", BadgeStatePriority.Low, {
+          text: "text",
+          backgroundColor: "#fff",
+          icon: BadgeIcon.Locked,
+        });
+        await badgeService.setState("state-2", BadgeStatePriority.Default, {
+          text: "override",
+        });
+        await badgeService.clearState("state-2");
+
+        await new Promise((resolve) => setTimeout(resolve, 0));
+        const expectedState: RawBadgeState = {
+          text: "text",
+          backgroundColor: "#fff",
+          icon: BadgeIcon.Locked,
+        };
+        expect(badgeApi.generalState).toEqual(expectedState);
+        expect(badgeApi.specificStates[tabId]).toEqual(expectedState);
+      });
+
+      it("sets default values when all states have been cleared", async () => {
+        await badgeService.setState("state-1", BadgeStatePriority.Low, {
+          text: "text",
+          backgroundColor: "#fff",
+          icon: BadgeIcon.Locked,
+        });
+        await badgeService.setState("state-2", BadgeStatePriority.Default, {
+          text: "override",
+        });
+        await badgeService.setState("state-3", BadgeStatePriority.High, {
+          backgroundColor: "#aaa",
+        });
+        await badgeService.clearState("state-1");
+        await badgeService.clearState("state-2");
+        await badgeService.clearState("state-3");
+
+        await new Promise((resolve) => setTimeout(resolve, 0));
+        expect(badgeApi.generalState).toEqual(DefaultBadgeState);
+        expect(badgeApi.specificStates[tabId]).toEqual(DefaultBadgeState);
+      });
+
+      it("sets default value high-priority state contains Unset", async () => {
+        await badgeService.setState("state-1", BadgeStatePriority.Low, {
+          text: "text",
+          backgroundColor: "#fff",
+          icon: BadgeIcon.Locked,
+        });
+        await badgeService.setState("state-3", BadgeStatePriority.High, {
+          icon: Unset,
+        });
+
+        await new Promise((resolve) => setTimeout(resolve, 0));
+        const expectedState: RawBadgeState = {
+          text: "text",
+          backgroundColor: "#fff",
+          icon: DefaultBadgeState.icon,
+        };
+        expect(badgeApi.generalState).toEqual(expectedState);
+        expect(badgeApi.specificStates[tabId]).toEqual(expectedState);
+      });
+
+      it("ignores medium-priority Unset when high-priority contains a value", async () => {
+        await badgeService.setState("state-1", BadgeStatePriority.Low, {
+          text: "text",
+          backgroundColor: "#fff",
+          icon: BadgeIcon.Locked,
+        });
+        await badgeService.setState("state-3", BadgeStatePriority.Default, {
+          icon: Unset,
+        });
+        await badgeService.setState("state-3", BadgeStatePriority.High, {
+          icon: BadgeIcon.Unlocked,
+        });
+
+        await new Promise((resolve) => setTimeout(resolve, 0));
+        const expectedState: RawBadgeState = {
+          text: "text",
+          backgroundColor: "#fff",
+          icon: BadgeIcon.Unlocked,
+        };
+        expect(badgeApi.generalState).toEqual(expectedState);
+        expect(badgeApi.specificStates[tabId]).toEqual(expectedState);
+      });
+    });
+
+    describe("given multiple tabs are open", () => {
+      const tabIds = [1, 2, 3];
+
+      beforeEach(() => {
+        badgeApi.tabs = tabIds;
+        badgeServiceSubscription = badgeService.startListening();
+      });
+
+      it("sets default values for each tab on startup", async () => {
+        expect(badgeApi.generalState).toEqual(DefaultBadgeState);
+        for (const tabId of tabIds) {
+          expect(badgeApi.specificStates[tabId]).toEqual(DefaultBadgeState);
+        }
+      });
+
+      it("sets state for each tab when no other state has been set", async () => {
+        const state: BadgeState = {
+          text: "text",
+          backgroundColor: "color",
+          icon: BadgeIcon.Locked,
+        };
+
+        await badgeService.setState("state-name", BadgeStatePriority.Default, state);
+
+        await new Promise((resolve) => setTimeout(resolve, 0));
+        expect(badgeApi.generalState).toEqual(state);
+        expect(badgeApi.specificStates).toEqual({
+          1: state,
+          2: state,
+          3: state,
+        });
+      });
+    });
+  });
+
+  describe("calling with tabId", () => {
+    describe("given a single tab is open", () => {
+      const tabId = 1;
+
+      beforeEach(() => {
+        badgeApi.tabs = [tabId];
+        badgeServiceSubscription = badgeService.startListening();
+      });
+
+      it("sets provided state when no other state has been set", async () => {
+        const state: BadgeState = {
+          text: "text",
+          backgroundColor: "color",
+          icon: BadgeIcon.Locked,
+        };
+
+        await badgeService.setState("state-name", BadgeStatePriority.Default, state, tabId);
+
+        await new Promise((resolve) => setTimeout(resolve, 0));
+        expect(badgeApi.generalState).toEqual(DefaultBadgeState);
+        expect(badgeApi.specificStates[tabId]).toEqual(state);
+      });
+
+      it("sets default values when none are provided", async () => {
+        // This is a bit of a weird thing to do, but I don't think it's something we need to prohibit
+        const state: BadgeState = {};
+
+        await badgeService.setState("state-name", BadgeStatePriority.Default, state, tabId);
+
+        await new Promise((resolve) => setTimeout(resolve, 0));
+        expect(badgeApi.generalState).toEqual(DefaultBadgeState);
+        expect(badgeApi.specificStates[tabId]).toEqual(DefaultBadgeState);
+      });
+
+      it("merges tabId specific state with general states", async () => {
+        await badgeService.setState("general-state", BadgeStatePriority.Default, { text: "text" });
+        await badgeService.setState(
+          "specific-state",
+          BadgeStatePriority.Default,
+          {
+            backgroundColor: "#fff",
+          },
+          tabId,
+        );
+        await badgeService.setState("general-state-2", BadgeStatePriority.Default, {
+          icon: BadgeIcon.Locked,
+        });
+
+        await new Promise((resolve) => setTimeout(resolve, 0));
+        expect(badgeApi.generalState).toEqual({
+          ...DefaultBadgeState,
+          text: "text",
+          icon: BadgeIcon.Locked,
+        });
+        expect(badgeApi.specificStates[tabId]).toEqual({
+          text: "text",
+          backgroundColor: "#fff",
+          icon: BadgeIcon.Locked,
+        });
+      });
+
+      it("merges states when multiple same-priority states with the same tabId have been set", async () => {
+        await badgeService.setState("state-1", BadgeStatePriority.Default, { text: "text" }, tabId);
+        await badgeService.setState(
+          "state-2",
+          BadgeStatePriority.Default,
+          {
+            backgroundColor: "#fff",
+          },
+          tabId,
+        );
+        await badgeService.setState(
+          "state-3",
+          BadgeStatePriority.Default,
+          {
+            icon: BadgeIcon.Locked,
+          },
+          tabId,
+        );
+
+        await new Promise((resolve) => setTimeout(resolve, 0));
+        const expectedState: RawBadgeState = {
+          text: "text",
+          backgroundColor: "#fff",
+          icon: BadgeIcon.Locked,
+        };
+        expect(badgeApi.generalState).toEqual(DefaultBadgeState);
+        expect(badgeApi.specificStates[tabId]).toEqual(expectedState);
+      });
+
+      it("overrides previous lower-priority state when higher-priority state with the same tabId is set", async () => {
+        await badgeService.setState(
+          "state-1",
+          BadgeStatePriority.Low,
+          {
+            text: "text",
+            backgroundColor: "#fff",
+            icon: BadgeIcon.Locked,
+          },
+          tabId,
+        );
+        await badgeService.setState(
+          "state-2",
+          BadgeStatePriority.Default,
+          {
+            text: "override",
+          },
+          tabId,
+        );
+        await badgeService.setState(
+          "state-3",
+          BadgeStatePriority.High,
+          {
+            backgroundColor: "#aaa",
+          },
+          tabId,
+        );
+
+        await new Promise((resolve) => setTimeout(resolve, 0));
+        const expectedState: RawBadgeState = {
+          text: "override",
+          backgroundColor: "#aaa",
+          icon: BadgeIcon.Locked,
+        };
+        expect(badgeApi.generalState).toEqual(DefaultBadgeState);
+        expect(badgeApi.specificStates[tabId]).toEqual(expectedState);
+      });
+
+      it("overrides lower-priority tab-specific state when higher-priority general state is set", async () => {
+        await badgeService.setState(
+          "state-1",
+          BadgeStatePriority.Low,
+          {
+            text: "text",
+            backgroundColor: "#fff",
+            icon: BadgeIcon.Locked,
+          },
+          tabId,
+        );
+        await badgeService.setState("state-2", BadgeStatePriority.Default, {
+          text: "override",
+        });
+        await badgeService.setState("state-3", BadgeStatePriority.High, {
+          backgroundColor: "#aaa",
+        });
+
+        await new Promise((resolve) => setTimeout(resolve, 0));
+        expect(badgeApi.generalState).toEqual({
+          text: "override",
+          backgroundColor: "#aaa",
+          icon: DefaultBadgeState.icon,
+        });
+        expect(badgeApi.specificStates[tabId]).toEqual({
+          text: "override",
+          backgroundColor: "#aaa",
+          icon: BadgeIcon.Locked,
+        });
+      });
+
+      it("removes override when a previously high-priority state with the same tabId is cleared", async () => {
+        await badgeService.setState(
+          "state-1",
+          BadgeStatePriority.Low,
+          {
+            text: "text",
+            backgroundColor: "#fff",
+            icon: BadgeIcon.Locked,
+          },
+          tabId,
+        );
+        await badgeService.setState(
+          "state-2",
+          BadgeStatePriority.Default,
+          {
+            text: "override",
+          },
+          tabId,
+        );
+        await badgeService.clearState("state-2");
+
+        await new Promise((resolve) => setTimeout(resolve, 0));
+        expect(badgeApi.generalState).toEqual(DefaultBadgeState);
+        expect(badgeApi.specificStates[tabId]).toEqual({
+          text: "text",
+          backgroundColor: "#fff",
+          icon: BadgeIcon.Locked,
+        });
+      });
+
+      it("sets default state when all states with the same tabId have been cleared", async () => {
+        await badgeService.setState(
+          "state-1",
+          BadgeStatePriority.Low,
+          {
+            text: "text",
+            backgroundColor: "#fff",
+            icon: BadgeIcon.Locked,
+          },
+          tabId,
+        );
+        await badgeService.setState(
+          "state-2",
+          BadgeStatePriority.Default,
+          {
+            text: "override",
+          },
+          tabId,
+        );
+        await badgeService.setState(
+          "state-3",
+          BadgeStatePriority.High,
+          {
+            backgroundColor: "#aaa",
+          },
+          tabId,
+        );
+        await badgeService.clearState("state-1");
+        await badgeService.clearState("state-2");
+        await badgeService.clearState("state-3");
+
+        await new Promise((resolve) => setTimeout(resolve, 0));
+        expect(badgeApi.generalState).toEqual(DefaultBadgeState);
+        expect(badgeApi.specificStates[tabId]).toEqual(DefaultBadgeState);
+      });
+
+      it("sets default value when high-priority state contains Unset", async () => {
+        await badgeService.setState(
+          "state-1",
+          BadgeStatePriority.Low,
+          {
+            text: "text",
+            backgroundColor: "#fff",
+            icon: BadgeIcon.Locked,
+          },
+          tabId,
+        );
+        await badgeService.setState(
+          "state-3",
+          BadgeStatePriority.High,
+          {
+            icon: Unset,
+          },
+          tabId,
+        );
+
+        await new Promise((resolve) => setTimeout(resolve, 0));
+        expect(badgeApi.generalState).toEqual(DefaultBadgeState);
+        expect(badgeApi.specificStates[tabId]).toEqual({
+          text: "text",
+          backgroundColor: "#fff",
+          icon: DefaultBadgeState.icon,
+        });
+      });
+
+      it("ignores medium-priority Unset when high-priority contains a value", async () => {
+        await badgeService.setState(
+          "state-1",
+          BadgeStatePriority.Low,
+          {
+            text: "text",
+            backgroundColor: "#fff",
+            icon: BadgeIcon.Locked,
+          },
+          tabId,
+        );
+        await badgeService.setState(
+          "state-3",
+          BadgeStatePriority.Default,
+          {
+            icon: Unset,
+          },
+          tabId,
+        );
+        await badgeService.setState(
+          "state-3",
+          BadgeStatePriority.High,
+          {
+            icon: BadgeIcon.Unlocked,
+          },
+          tabId,
+        );
+
+        await new Promise((resolve) => setTimeout(resolve, 0));
+        expect(badgeApi.generalState).toEqual(DefaultBadgeState);
+        expect(badgeApi.specificStates[tabId]).toEqual({
+          text: "text",
+          backgroundColor: "#fff",
+          icon: BadgeIcon.Unlocked,
+        });
+      });
+    });
+
+    describe("given multiple tabs are open", () => {
+      const tabIds = [1, 2, 3];
+
+      beforeEach(() => {
+        badgeApi.tabs = tabIds;
+        badgeServiceSubscription = badgeService.startListening();
+      });
+
+      it("sets tab-specific state for provided tab and general state for the others", async () => {
+        const generalState: BadgeState = {
+          text: "general-text",
+          backgroundColor: "general-color",
+          icon: BadgeIcon.Unlocked,
+        };
+        const specificState: BadgeState = {
+          text: "tab-text",
+          icon: BadgeIcon.Locked,
+        };
+
+        await badgeService.setState("general-state", BadgeStatePriority.Default, generalState);
+        await badgeService.setState(
+          "tab-state",
+          BadgeStatePriority.Default,
+          specificState,
+          tabIds[0],
+        );
+
+        await new Promise((resolve) => setTimeout(resolve, 0));
+        expect(badgeApi.generalState).toEqual(generalState);
+        expect(badgeApi.specificStates).toEqual({
+          [tabIds[0]]: { ...specificState, backgroundColor: "general-color" },
+          [tabIds[1]]: generalState,
+          [tabIds[2]]: generalState,
+        });
+      });
+    });
+  });
+});
diff --git a/apps/browser/src/platform/badge/badge.service.ts b/apps/browser/src/platform/badge/badge.service.ts
new file mode 100644
index 00000000000..d48150ac516
--- /dev/null
+++ b/apps/browser/src/platform/badge/badge.service.ts
@@ -0,0 +1,182 @@
+import {
+  defer,
+  distinctUntilChanged,
+  filter,
+  map,
+  mergeMap,
+  pairwise,
+  startWith,
+  Subscription,
+  switchMap,
+} from "rxjs";
+
+import {
+  BADGE_MEMORY,
+  GlobalState,
+  KeyDefinition,
+  StateProvider,
+} from "@bitwarden/common/platform/state";
+
+import { difference } from "./array-utils";
+import { BadgeBrowserApi, RawBadgeState } from "./badge-browser-api";
+import { DefaultBadgeState } from "./consts";
+import { BadgeStatePriority } from "./priority";
+import { BadgeState, Unset } from "./state";
+
+interface StateSetting {
+  priority: BadgeStatePriority;
+  state: BadgeState;
+  tabId?: number;
+}
+
+const BADGE_STATES = new KeyDefinition(BADGE_MEMORY, "badgeStates", {
+  deserializer: (value: Record<string, StateSetting>) => value ?? {},
+});
+
+export class BadgeService {
+  private states: GlobalState<Record<string, StateSetting>>;
+
+  constructor(
+    private stateProvider: StateProvider,
+    private badgeApi: BadgeBrowserApi,
+  ) {
+    this.states = this.stateProvider.getGlobal(BADGE_STATES);
+  }
+
+  /**
+   * Start listening for badge state changes.
+   * Without this the service will not be able to update the badge state.
+   */
+  startListening(): Subscription {
+    const initialSetup$ = defer(async () => {
+      const openTabs = await this.badgeApi.getTabs();
+      await this.badgeApi.setState(DefaultBadgeState);
+      for (const tabId of openTabs) {
+        await this.badgeApi.setState(DefaultBadgeState, tabId);
+      }
+    });
+
+    return initialSetup$
+      .pipe(
+        switchMap(() => this.states.state$),
+        startWith({}),
+        distinctUntilChanged(),
+        map((states) => new Set(states ? Object.values(states) : [])),
+        pairwise(),
+        map(([previous, current]) => {
+          const [removed, added] = difference(previous, current);
+          return { states: current, removed, added };
+        }),
+        filter(({ removed, added }) => removed.size > 0 || added.size > 0),
+        mergeMap(async ({ states, removed, added }) => {
+          const changed = [...removed, ...added];
+          const changedTabIds = new Set(
+            changed.map((s) => s.tabId).filter((tabId) => tabId !== undefined),
+          );
+          const onlyTabSpecificStatesChanged = changed.every((s) => s.tabId != undefined);
+          if (onlyTabSpecificStatesChanged) {
+            // If only tab-specific states changed then we only need to update those specific tabs.
+            for (const tabId of changedTabIds) {
+              const newState = this.calculateState(states, tabId);
+              await this.badgeApi.setState(newState, tabId);
+            }
+            return;
+          }
+
+          // If there are any general states that changed then we need to update all tabs.
+          const openTabs = await this.badgeApi.getTabs();
+          const generalState = this.calculateState(states);
+          await this.badgeApi.setState(generalState);
+          for (const tabId of openTabs) {
+            const newState = this.calculateState(states, tabId);
+            await this.badgeApi.setState(newState, tabId);
+          }
+        }),
+      )
+      .subscribe();
+  }
+
+  /**
+   * Inform badge service of a new state that the badge should reflect.
+   *
+   * This will merge the new state with any existing states:
+   * - If the new state has a higher priority, it will override any lower priority states.
+   * - If the new state has a lower priority, it will be ignored.
+   * - If the name of the state is already in use, it will be updated.
+   * - If the state has a `tabId` set, it will only apply to that tab.
+   *   - States with `tabId` can still be overridden by states without `tabId` if they have a higher priority.
+   *
+   * @param name The name of the state. This is used to identify the state and will be used to clear it later.
+   * @param priority The priority of the state (higher numbers are higher priority, but setting arbitrary numbers is not supported).
+   * @param state The state to set.
+   * @param tabId Limit this badge state to a specific tab. If this is not set, the state will be applied to all tabs.
+   */
+  async setState(name: string, priority: BadgeStatePriority, state: BadgeState, tabId?: number) {
+    await this.states.update((s) => ({ ...s, [name]: { priority, state, tabId } }));
+  }
+
+  /**
+   * Clear the state with the given name.
+   *
+   * This will remove the state from the badge service and clear it from the badge.
+   * If the state is not found, nothing will happen.
+   *
+   * @param name The name of the state to clear.
+   */
+  async clearState(name: string) {
+    await this.states.update((s) => {
+      const newStates = { ...s };
+      delete newStates[name];
+      return newStates;
+    });
+  }
+
+  private calculateState(states: Set<StateSetting>, tabId?: number): RawBadgeState {
+    const sortedStates = [...states].sort((a, b) => a.priority - b.priority);
+
+    let filteredStates = sortedStates;
+    if (tabId !== undefined) {
+      // Filter out states that are not applicable to the current tab.
+      // If a state has no tabId, it is considered applicable to all tabs.
+      // If a state has a tabId, it is only applicable to that tab.
+      filteredStates = sortedStates.filter((s) => s.tabId === tabId || s.tabId === undefined);
+    } else {
+      // If no tabId is provided, we only want states that are not tab-specific.
+      filteredStates = sortedStates.filter((s) => s.tabId === undefined);
+    }
+
+    const mergedState = filteredStates
+      .map((s) => s.state)
+      .reduce<Partial<RawBadgeState>>((acc: Partial<RawBadgeState>, state: BadgeState) => {
+        const newState = { ...acc };
+
+        for (const k in state) {
+          const key = k as keyof BadgeState & keyof RawBadgeState;
+          setStateValue(newState, state, key);
+        }
+
+        return newState;
+      }, DefaultBadgeState);
+
+    return {
+      ...DefaultBadgeState,
+      ...mergedState,
+    };
+  }
+}
+
+/**
+ * Helper value to modify the state variable.
+ * TS doesn't like it when this is being doine inline.
+ */
+function setStateValue<Key extends keyof BadgeState & keyof RawBadgeState>(
+  newState: Partial<RawBadgeState>,
+  state: BadgeState,
+  key: Key,
+) {
+  if (state[key] === Unset) {
+    delete newState[key];
+  } else if (state[key] !== undefined) {
+    newState[key] = state[key] as RawBadgeState[Key];
+  }
+}
diff --git a/apps/browser/src/platform/badge/consts.ts b/apps/browser/src/platform/badge/consts.ts
new file mode 100644
index 00000000000..67cb4b1035b
--- /dev/null
+++ b/apps/browser/src/platform/badge/consts.ts
@@ -0,0 +1,9 @@
+import { RawBadgeState } from "./badge-browser-api";
+import { BadgeIcon } from "./icon";
+import { BadgeState } from "./state";
+
+export const DefaultBadgeState: RawBadgeState & BadgeState = {
+  text: "",
+  backgroundColor: "#294e5f",
+  icon: BadgeIcon.LoggedOut,
+};
diff --git a/apps/browser/src/platform/badge/icon.ts b/apps/browser/src/platform/badge/icon.ts
new file mode 100644
index 00000000000..d6dcdcc5f7d
--- /dev/null
+++ b/apps/browser/src/platform/badge/icon.ts
@@ -0,0 +1,21 @@
+export const BadgeIcon = {
+  LoggedOut: {
+    19: "/images/icon19_gray.png",
+    38: "/images/icon38_gray.png",
+  } as IconPaths,
+  Locked: {
+    19: "/images/icon19_locked.png",
+    38: "/images/icon38_locked.png",
+  } as IconPaths,
+  Unlocked: {
+    19: "/images/icon19.png",
+    38: "/images/icon38.png",
+  } as IconPaths,
+} as const satisfies Record<string, IconPaths>;
+
+export type BadgeIcon = (typeof BadgeIcon)[keyof typeof BadgeIcon];
+
+export type IconPaths = {
+  19: string;
+  38: string;
+};
diff --git a/apps/browser/src/platform/badge/priority.ts b/apps/browser/src/platform/badge/priority.ts
new file mode 100644
index 00000000000..6870e571e6a
--- /dev/null
+++ b/apps/browser/src/platform/badge/priority.ts
@@ -0,0 +1,7 @@
+export const BadgeStatePriority = {
+  Low: 0,
+  Default: 100,
+  High: 200,
+} as const;
+
+export type BadgeStatePriority = (typeof BadgeStatePriority)[keyof typeof BadgeStatePriority];
diff --git a/apps/browser/src/platform/badge/state.ts b/apps/browser/src/platform/badge/state.ts
new file mode 100644
index 00000000000..0731ad81f41
--- /dev/null
+++ b/apps/browser/src/platform/badge/state.ts
@@ -0,0 +1,32 @@
+import { BadgeIcon } from "./icon";
+
+export const Unset = Symbol("Unset badge state");
+export type Unset = typeof Unset;
+
+export type BadgeState = {
+  /**
+   * The text to display in the badge.
+   * If this is set to `Unset`, any text set by a lower priority state will be cleared.
+   * If this is set to `undefined`, a lower priority state may be used.
+   * If no lower priority state is set, no text will be displayed.
+   */
+  text?: string | Unset;
+
+  /**
+   * The background color of the badge.
+   * This should be a 3 or 6 character hex color code (e.g. `#f00` or `#ff0000`).
+   * If this is set to `Unset`, any color set by a lower priority state will be cleared/
+   * If this is set to `undefined`, a lower priority state may be used.
+   * If no lower priority state is set, the default color will be used.
+   */
+  backgroundColor?: string | Unset;
+
+  /**
+   * The icon to display in the badge.
+   * This should be a URL to an image file.
+   * If this is set to `Unset`, any icon set by a lower priority state will be cleared.
+   * If this is set to `undefined`, a lower priority state may be used.
+   * If no lower priority state is set, the default icon will be used.
+   */
+  icon?: Unset | BadgeIcon;
+};
diff --git a/apps/browser/src/platform/badge/test/mock-badge-browser-api.ts b/apps/browser/src/platform/badge/test/mock-badge-browser-api.ts
new file mode 100644
index 00000000000..19bde1e1fd8
--- /dev/null
+++ b/apps/browser/src/platform/badge/test/mock-badge-browser-api.ts
@@ -0,0 +1,21 @@
+import { BadgeBrowserApi, RawBadgeState } from "../badge-browser-api";
+
+export class MockBadgeBrowserApi implements BadgeBrowserApi {
+  specificStates: Record<number, RawBadgeState> = {};
+  generalState?: RawBadgeState;
+  tabs: number[] = [];
+
+  setState(state: RawBadgeState, tabId?: number): Promise<void> {
+    if (tabId !== undefined) {
+      this.specificStates[tabId] = state;
+    } else {
+      this.generalState = state;
+    }
+
+    return Promise.resolve();
+  }
+
+  getTabs(): Promise<number[]> {
+    return Promise.resolve(this.tabs);
+  }
+}
diff --git a/apps/browser/src/platform/browser/browser-api.ts b/apps/browser/src/platform/browser/browser-api.ts
index 4ef72fa0077..d0bdaa504b3 100644
--- a/apps/browser/src/platform/browser/browser-api.ts
+++ b/apps/browser/src/platform/browser/browser-api.ts
@@ -437,7 +437,7 @@ export class BrowserApi {
    * @param event - The event in which to add the listener to.
    * @param callback - The callback you want registered onto the event.
    */
-  static addListener<T extends (...args: readonly unknown[]) => unknown>(
+  static addListener<T extends (...args: readonly any[]) => any>(
     event: chrome.events.Event<T>,
     callback: T,
   ) {
diff --git a/apps/browser/src/platform/listeners/update-badge.ts b/apps/browser/src/platform/listeners/update-badge.ts
deleted file mode 100644
index c168ae44f3c..00000000000
--- a/apps/browser/src/platform/listeners/update-badge.ts
+++ /dev/null
@@ -1,217 +0,0 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
-import { firstValueFrom } from "rxjs";
-
-import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
-import { AuthService } from "@bitwarden/common/auth/abstractions/auth.service";
-import { AuthenticationStatus } from "@bitwarden/common/auth/enums/authentication-status";
-import { getOptionalUserId } from "@bitwarden/common/auth/services/account.service";
-import { BadgeSettingsServiceAbstraction } from "@bitwarden/common/autofill/services/badge-settings.service";
-import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
-import { Utils } from "@bitwarden/common/platform/misc/utils";
-import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
-
-import MainBackground from "../../background/main.background";
-import IconDetails from "../../vault/background/models/icon-details";
-import { BrowserApi } from "../browser/browser-api";
-
-export type BadgeOptions = {
-  tab?: chrome.tabs.Tab;
-  windowId?: number;
-};
-
-export class UpdateBadge {
-  private authService: AuthService;
-  private badgeSettingsService: BadgeSettingsServiceAbstraction;
-  private cipherService: CipherService;
-  private accountService: AccountService;
-  private badgeAction: typeof chrome.action | typeof chrome.browserAction;
-  private sidebarAction: OperaSidebarAction | FirefoxSidebarAction;
-  private win: Window & typeof globalThis;
-  private platformUtilsService: PlatformUtilsService;
-
-  constructor(win: Window & typeof globalThis, services: MainBackground) {
-    this.badgeAction = BrowserApi.getBrowserAction();
-    this.sidebarAction = BrowserApi.getSidebarAction(self);
-    this.win = win;
-
-    this.badgeSettingsService = services.badgeSettingsService;
-    this.authService = services.authService;
-    this.cipherService = services.cipherService;
-    this.accountService = services.accountService;
-    this.platformUtilsService = services.platformUtilsService;
-  }
-
-  async run(opts?: { tabId?: number; windowId?: number }): Promise<void> {
-    const authStatus = await this.authService.getAuthStatus();
-
-    await this.setBadgeBackgroundColor();
-
-    switch (authStatus) {
-      case AuthenticationStatus.LoggedOut: {
-        await this.setLoggedOut();
-        break;
-      }
-      case AuthenticationStatus.Locked: {
-        await this.setLocked();
-        break;
-      }
-      case AuthenticationStatus.Unlocked: {
-        const tab = await this.getTab(opts?.tabId, opts?.windowId);
-        await this.setUnlocked({ tab, windowId: tab?.windowId });
-        break;
-      }
-    }
-  }
-
-  async setLoggedOut(): Promise<void> {
-    await this.setBadgeIcon("_gray");
-    await this.clearBadgeText();
-  }
-
-  async setLocked() {
-    await this.setBadgeIcon("_locked");
-    await this.clearBadgeText();
-  }
-
-  private async clearBadgeText() {
-    const tabs = await BrowserApi.getActiveTabs();
-    if (tabs != null) {
-      tabs.forEach(async (tab) => {
-        if (tab.id != null) {
-          await this.setBadgeText("", tab.id);
-        }
-      });
-    }
-  }
-
-  async setUnlocked(opts: BadgeOptions) {
-    await this.setBadgeIcon("");
-
-    const enableBadgeCounter = await firstValueFrom(this.badgeSettingsService.enableBadgeCounter$);
-    if (!enableBadgeCounter) {
-      return;
-    }
-
-    const activeUserId = await firstValueFrom(
-      this.accountService.activeAccount$.pipe(getOptionalUserId),
-    );
-    if (!activeUserId) {
-      return;
-    }
-
-    const ciphers = await this.cipherService.getAllDecryptedForUrl(opts?.tab?.url, activeUserId);
-    let countText = ciphers.length == 0 ? "" : ciphers.length.toString();
-    if (ciphers.length > 9) {
-      countText = "9+";
-    }
-    await this.setBadgeText(countText, opts?.tab?.id);
-  }
-
-  setBadgeBackgroundColor(color = "#294e5f") {
-    if (this.badgeAction?.setBadgeBackgroundColor) {
-      // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-      // eslint-disable-next-line @typescript-eslint/no-floating-promises
-      this.badgeAction.setBadgeBackgroundColor({ color });
-    }
-    if (this.isOperaSidebar(this.sidebarAction)) {
-      this.sidebarAction.setBadgeBackgroundColor({ color });
-    }
-  }
-
-  setBadgeText(text: string, tabId?: number) {
-    this.setActionText(text, tabId);
-    this.setSideBarText(text, tabId);
-  }
-
-  async setBadgeIcon(iconSuffix: string, windowId?: number) {
-    const options: IconDetails = {
-      path: {
-        19: "/images/icon19" + iconSuffix + ".png",
-        38: "/images/icon38" + iconSuffix + ".png",
-      },
-    };
-    if (windowId && this.platformUtilsService.isFirefox()) {
-      options.windowId = windowId;
-    }
-
-    await this.setActionIcon(options);
-    await this.setSidebarActionIcon(options);
-  }
-
-  private setActionText(text: string, tabId?: number) {
-    if (this.badgeAction?.setBadgeText) {
-      // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-      // eslint-disable-next-line @typescript-eslint/no-floating-promises
-      this.badgeAction.setBadgeText({ text, tabId });
-    }
-  }
-
-  private setSideBarText(text: string, tabId?: number) {
-    if (this.isOperaSidebar(this.sidebarAction)) {
-      this.sidebarAction.setBadgeText({ text, tabId });
-    } else if (this.sidebarAction) {
-      // Firefox
-      const title = `Bitwarden${Utils.isNullOrEmpty(text) ? "" : ` [${text}]`}`;
-      // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-      // eslint-disable-next-line @typescript-eslint/no-floating-promises
-      this.sidebarAction.setTitle({ title, tabId });
-    }
-  }
-
-  private async setActionIcon(options: IconDetails) {
-    if (!this.badgeAction?.setIcon) {
-      return;
-    }
-
-    if (this.useSyncApiCalls) {
-      // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-      // eslint-disable-next-line @typescript-eslint/no-floating-promises
-      this.badgeAction.setIcon(options);
-    } else {
-      await new Promise<void>((resolve) => this.badgeAction.setIcon(options, () => resolve()));
-    }
-  }
-
-  private async setSidebarActionIcon(options: IconDetails) {
-    if (!this.sidebarAction?.setIcon) {
-      return;
-    }
-
-    if ("opr" in this.win && BrowserApi.isManifestVersion(3)) {
-      // setIcon API is currenly broken for Opera MV3 extensions
-      // https://forums.opera.com/topic/75680/opr-sidebaraction-seticon-api-is-broken-access-to-extension-api-denied?_=1738349261570
-      // The API currently crashes on MacOS
-      return;
-    }
-
-    if (this.isOperaSidebar(this.sidebarAction)) {
-      await new Promise<void>((resolve) =>
-        (this.sidebarAction as OperaSidebarAction).setIcon(options, () => resolve()),
-      );
-    } else {
-      await this.sidebarAction.setIcon(options);
-    }
-  }
-
-  private async getTab(tabId?: number, windowId?: number) {
-    return (
-      (await BrowserApi.getTab(tabId)) ??
-      (windowId
-        ? await BrowserApi.tabsQueryFirst({ active: true, windowId })
-        : await BrowserApi.tabsQueryFirst({ active: true, currentWindow: true })) ??
-      (await BrowserApi.tabsQueryFirst({ active: true, lastFocusedWindow: true })) ??
-      (await BrowserApi.tabsQueryFirst({ active: true }))
-    );
-  }
-
-  private get useSyncApiCalls() {
-    return this.platformUtilsService.isFirefox() || this.platformUtilsService.isSafari();
-  }
-
-  private isOperaSidebar(
-    action: OperaSidebarAction | FirefoxSidebarAction,
-  ): action is OperaSidebarAction {
-    return action != null && (action as OperaSidebarAction).setBadgeText != null;
-  }
-}
diff --git a/libs/common/src/platform/state/state-definitions.ts b/libs/common/src/platform/state/state-definitions.ts
index 593a28d04c5..7472520189c 100644
--- a/libs/common/src/platform/state/state-definitions.ts
+++ b/libs/common/src/platform/state/state-definitions.ts
@@ -106,6 +106,9 @@ export const NEW_WEB_LAYOUT_BANNER_DISK = new StateDefinition("newWebLayoutBanne
 export const APPLICATION_ID_DISK = new StateDefinition("applicationId", "disk", {
   web: "disk-local",
 });
+export const BADGE_MEMORY = new StateDefinition("badge", "memory", {
+  browser: "memory-large-object",
+});
 export const BIOMETRIC_SETTINGS_DISK = new StateDefinition("biometricSettings", "disk");
 export const CLEAR_EVENT_DISK = new StateDefinition("clearEvent", "disk");
 export const CONFIG_DISK = new StateDefinition("config", "disk", {

From dac7014cf132ed4216a2b9b0e0bcb02ea2992ccb Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Wed, 9 Jul 2025 17:00:45 -0400
Subject: [PATCH 091/239] [deps] UI Foundation: Update zone.js to v0.15.1
 (#15283)

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
---
 package-lock.json | 8 ++++----
 package.json      | 2 +-
 2 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/package-lock.json b/package-lock.json
index bde67319dad..115f7cbf32d 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -74,7 +74,7 @@
         "tldts": "7.0.1",
         "ts-node": "10.9.2",
         "utf-8-validate": "6.0.5",
-        "zone.js": "0.15.0",
+        "zone.js": "0.15.1",
         "zxcvbn": "4.4.2"
       },
       "devDependencies": {
@@ -40059,9 +40059,9 @@
       }
     },
     "node_modules/zone.js": {
-      "version": "0.15.0",
-      "resolved": "https://registry.npmjs.org/zone.js/-/zone.js-0.15.0.tgz",
-      "integrity": "sha512-9oxn0IIjbCZkJ67L+LkhYWRyAy7axphb3VgE2MBDlOqnmHMPWGYMxJxBYFueFq/JGY2GMwS0rU+UCLunEmy5UA==",
+      "version": "0.15.1",
+      "resolved": "https://registry.npmjs.org/zone.js/-/zone.js-0.15.1.tgz",
+      "integrity": "sha512-XE96n56IQpJM7NAoXswY3XRLcWFW83xe0BiAOeMD7K5k5xecOeul3Qcpx6GqEeeHNkW5DWL5zOyTbEfB4eti8w==",
       "license": "MIT"
     },
     "node_modules/zwitch": {
diff --git a/package.json b/package.json
index ca84074ff26..be0c53914b8 100644
--- a/package.json
+++ b/package.json
@@ -210,7 +210,7 @@
     "tldts": "7.0.1",
     "ts-node": "10.9.2",
     "utf-8-validate": "6.0.5",
-    "zone.js": "0.15.0",
+    "zone.js": "0.15.1",
     "zxcvbn": "4.4.2"
   },
   "overrides": {

From ec015bd253aef5d9f455df7fa215379ac945075d Mon Sep 17 00:00:00 2001
From: SmithThe4th <gsmith@bitwarden.com>
Date: Wed, 9 Jul 2025 20:55:16 -0400
Subject: [PATCH 092/239] Fixed stale data after moving anb item to a
 collection (#15553)

---
 apps/desktop/src/vault/app/vault/vault-v2.component.ts | 10 +++++++++-
 1 file changed, 9 insertions(+), 1 deletion(-)

diff --git a/apps/desktop/src/vault/app/vault/vault-v2.component.ts b/apps/desktop/src/vault/app/vault/vault-v2.component.ts
index 2d741944071..2142b5e7a4b 100644
--- a/apps/desktop/src/vault/app/vault/vault-v2.component.ts
+++ b/apps/desktop/src/vault/app/vault/vault-v2.component.ts
@@ -637,7 +637,15 @@ export class VaultV2Component implements OnInit, OnDestroy, CopyClickListener {
 
     const result = await lastValueFrom(dialog.closed);
     if (result === CollectionAssignmentResult.Saved) {
-      await this.savedCipher(cipher);
+      const updatedCipher = await firstValueFrom(
+        // Fetch the updated cipher from the service
+        this.cipherService.cipherViews$(this.activeUserId as UserId).pipe(
+          filter((ciphers) => ciphers != null),
+          map((ciphers) => ciphers!.find((c) => c.id === cipher.id)),
+          filter((foundCipher) => foundCipher != null),
+        ),
+      );
+      await this.savedCipher(updatedCipher);
     }
   }
 

From 1f60bcdcc0295fe1b7b666237bca97bbc2fa1ddf Mon Sep 17 00:00:00 2001
From: Patrick-Pimentel-Bitwarden <ppimentel@bitwarden.com>
Date: Thu, 10 Jul 2025 09:08:25 -0400
Subject: [PATCH 093/239] feat(change-password): [PM-18720] (#5319) Change
 Password Implementation for Non Dialog Cases (#15319)

* feat(change-password-component): Change Password Update [18720] - Very close to complete.

* fix(policy-enforcement): [PM-21085] Fix Bug with Policy Enforcement - Removed temp code to force the state I need to verify correctness.

* fix(policy-enforcement): [PM-21085] Fix Bug with Policy Enforcement - Recover account working with change password component.

* fix(policy-enforcement): [PM-21085] Fix Bug with Policy Enforcement - Made code more dry.

* fix(change-password-component): Change Password Update [18720] - Updates to routing and the extension. Extension is still a wip.

* fix(change-password-component): Change Password Update [18720] - Extension routing changes.

* feat(change-password-component): Change Password Update [18720] - More extension work

* feat(change-password-component): Change Password Update [18720] - Pausing work for now while we wait for product to hear back.

* feat(change-password-component): Change Password Update [18720] - Removed duplicated anon layouts.

* feat(change-password-component): Change Password Update [18720] - Tidied up code.

* feat(change-password-component): Change Password Update [18720] - Small fixes to the styling

* feat(change-password-component): Change Password Update [18720] - Adding more content for the routing.

* feat(change-password-component): Change Password Update [18720] - Removed circular loop for now.

* feat(change-password-component): Change Password Update [18720] - Made comments regarding the change password routing complexities with change-password and auth guard.

* feat(change-password-component): Change Password Update [18720] - Undid some changes because they will be conflicts later on.

* feat(change-password-component): Change Password Update [18720] - Small directive change.

* feat(change-password-component): Change Password Update [18720] - Small changes and added some clarification on where I'm blocked

* feat(change-password-component): Change Password Update [18720] - Org invite is seemingly working, found one bug to iron out.

* refactor(change-password-component): Change Password Update [18720] - Fixed up policy service to be made more clear.

* docs(change-password-component): Change Password Update [18720] - Updated documentation.

* refactor(change-password-component): Change Password Update [18720] - Routing changes and policy service changes.

* fix(change-password-component): Change Password Update [18720] - Wrapping up changes.

* feat(change-password-component): Change Password Update [18720] - Should be working fully

* feat(change-password-component): Change Password Update [18720] - Found a bug, working on password policy being present on login.

* feat(change-password-component): Change Password Update [18720] - Turned on auth guard on other clients for change-password route.

* feat(change-password-component): Change Password Update [18720] - Committing intermediate changes.

* feat(change-password-component): Change Password Update [18720] - The master password policy endpoint has been added! Should be working. Testing now.

* feat(change-password-component): Change Password Update [18720] - Minor fixes.

* feat(change-password-component): Change Password Update [18720] - Undid naming change.

* feat(change-password-component): Change Password Update [18720] - Removed comment.

* feat(change-password-component): Change Password Update [18720] - Removed unneeded code.

* fix(change-password-component): Change Password Update [18720] - Took org invite state out of service and made it accessible.

* fix(change-password-component): Change Password Update [18720] - Small changes.

* fix(change-password-component): Change Password Update [18720] - Split up org invite service into client specific implementations and have them injected into clients properly

* feat(change-password-component): Change Password Update [18720] - Stopping work and going to switch to a new branch to pare down some of the solutions that were made to get this over the finish line

* feat(change-password-component): Change Password Update [18720] - Started to remove functionality in the login.component and the password login strategy.

* feat(change-password-component): Change Password Update [18720] - Removed more unneded changes.

* feat(change-password-component): Change Password Update [18720] - Change password clearing state working properly.

* fix(change-password-component): Change Password Update [18720] - Added docs and moved web implementation.

* comments(change-password-component): Change Password Update [18720] - Added more notes.

* test(change-password-component): Change Password Update [18720] - Added in tests for policy service.

* comment(change-password-component): Change Password Update [18720] - Updated doc with correct ticket number.

* comment(change-password-component): Change Password Update [18720] - Fixed doc.

* test(change-password-component): Change Password Update [18720] - Fixed tests.

* test(change-password-component): Change Password Update [18720] - Fixed linting errors. Have more tests to fix.

* test(change-password-component): Change Password Update [18720] - Added back in ignore for typesafety.

* fix(change-password-component): Change Password Update [18720] - Fixed other type issues.

* test(change-password-component): Change Password Update [18720] - Fixed tests.

* test(change-password-component): Change Password Update [18720] - Fixed more tests.

* test(change-password-component): Change Password Update [18720] - Fixed tiny duplicate code.

* fix(change-password-component): Change Password Update [18720] - Fixed desktop component.

* fix(change-password-component): Change Password Update [18720] - Removed unused code

* fix(change-password-component): Change Password Update [18720] - Fixed locales.

* fix(change-password-component): Change Password Update [18720] - Removed tracing.

* fix(change-password-component): Change Password Update [18720] - Removed duplicative services module entry.

* fix(change-password-component): Change Password Update [18720] - Added comment.

* fix(change-password-component): Change Password Update [18720] - Fixed unneeded call in two factor to get user id.

* fix(change-password-component): Change Password Update [18720] - Fixed a couple of tiny things.

* fix(change-password-component): Change Password Update [18720] - Added comment for later fix.

* fix(change-password-component): Change Password Update [18720] - Fixed linting error.

* PM-18720 - AuthGuard - move call to get isChangePasswordFlagOn down after other conditions for efficiency.

* PM-18720 - PasswordLoginStrategy tests - test new feature flagged combine org invite policies logic for weak password evaluation.

* PM-18720 - CLI - fix dep issue

* PM-18720 - ChangePasswordComp - extract change password warning up out of input password component

* PM-18720 - InputPassword - remove unused dependency.

* PM-18720 - ChangePasswordComp - add callout dep

* PM-18720 - Revert all anon-layout changes

* PM-18720 - Anon Layout - finish reverting changes.

* PM-18720 - WIP move of change password out of libs/auth

* PM-18720 - Clean up remaining imports from moving change password out of libs/auth

* PM-18720 - Add change-password barrel file for better import grouping

* PM-18720 - Change Password comp - restore maxWidth

* PM-18720 - After merge, fix errors

* PM-18720 - Desktop - fix api service import

* PM-18720 - NDV - fix routing.

* PM-18720 - Change Password Comp - add logout service todo

* PM-18720 - PasswordSettings - per feedback, component is already feature flagged behind PM16117_ChangeExistingPasswordRefactor so we can just delete the replaced callout (new text is in change-password comp)

* PM-18720 - Routing Modules - properly flag new component behind feature flag.

* PM-18720 - SSO Login Strategy - fix config service import since it is now in shared deps from main merge.

* PM-18720 - Fix SSO login strategy tests

* PM-18720 - Default Policy Service - address AC PR feedback

---------

Co-authored-by: Jared Snider <jsnider@bitwarden.com>
Co-authored-by: Jared Snider <116684653+JaredSnider-Bitwarden@users.noreply.github.com>
---
 apps/browser/src/_locales/en/messages.json    |   9 +
 apps/browser/src/popup/app-routing.module.ts  |  28 ++-
 apps/desktop/src/app/app-routing.module.ts    |  19 +-
 .../src/app/services/services.module.ts       |   5 +-
 .../login/desktop-login-component.service.ts  |   2 +-
 .../src/auth/set-password.component.ts        |  63 +++---
 apps/desktop/src/locales/en/messages.json     |   9 +
 .../web-change-password.service.ts            |  11 +-
 .../web-login-decryption-options.service.ts   |   6 +-
 .../login/web-login-component.service.spec.ts |  18 +-
 .../login/web-login-component.service.ts      |  37 +++-
 .../web-organization-invite.service.ts        |  38 ++++
 .../web-set-initial-password.service.spec.ts  |  14 +-
 .../web-set-initial-password.service.ts       |   6 +-
 .../web-registration-finish.service.spec.ts   |  52 ++---
 .../web-registration-finish.service.ts        |  13 +-
 .../web-set-password-jit.service.ts           |   6 +-
 .../accept-organization.component.ts          |  37 +++-
 .../accept-organization.service.spec.ts       |  52 +++--
 .../accept-organization.service.ts            |  62 +-----
 .../organization-invite.ts                    |  40 ----
 .../src/app/auth/set-password.component.ts    |   7 +-
 .../settings/change-password.component.ts     |  33 ++-
 .../emergency-access-takeover.component.ts    |   8 +-
 .../password-settings.component.html          |   1 -
 .../password-settings.component.ts            |   4 +-
 .../src/app/auth/update-password.component.ts |   7 +-
 .../complete-trial-initiation.component.ts    |   6 +-
 apps/web/src/app/core/core.module.ts          |  26 ++-
 apps/web/src/app/oss-routing.module.ts        |  29 ++-
 apps/web/src/locales/en/messages.json         |   9 +
 .../components/change-password.component.ts   |   8 +-
 .../auth/components/set-password.component.ts |  46 ++--
 .../components/update-password.component.ts   |   8 +-
 .../update-temp-password.component.ts         |   8 +-
 libs/angular/src/auth/guards/auth.guard.ts    |   7 +-
 .../change-password.component.html            |   8 +
 .../change-password.component.ts              | 202 ++++++++++++++++++
 .../change-password.service.abstraction.ts    |  28 ++-
 .../default-change-password.service.spec.ts   |  48 ++++-
 .../default-change-password.service.ts        |  59 ++++-
 .../change-password/index.ts                  |   3 +
 .../src/services/jslib-services.module.ts     |  18 +-
 .../change-password.component.ts              | 114 ----------
 libs/auth/src/angular/index.ts                |   4 -
 .../input-password.component.html             |   2 +-
 .../input-password.component.ts               |   6 +-
 .../auth/src/angular/login/login.component.ts |  45 +++-
 .../new-device-verification.component.ts      |  36 +++-
 .../default-set-password-jit.service.spec.ts  |   8 +-
 .../default-set-password-jit.service.ts       |   6 +-
 .../two-factor-auth.component.ts              |  22 +-
 .../auth-request-login.strategy.spec.ts       |   4 +
 .../login-strategies/login.strategy.spec.ts   |   6 +
 .../common/login-strategies/login.strategy.ts |   2 +
 .../password-login.strategy.spec.ts           |  77 ++++++-
 .../password-login.strategy.ts                |  37 +++-
 .../sso-login.strategy.spec.ts                |   2 +-
 .../login-strategies/sso-login.strategy.ts    |   2 -
 .../user-api-login.strategy.spec.ts           |   4 +
 .../webauthn-login.strategy.spec.ts           |   4 +
 .../common/models/domain/login-credentials.ts |   2 +
 .../login-strategy.service.ts                 |   2 +-
 .../policy/policy.service.abstraction.ts      |  19 ++
 .../policy/default-policy.service.spec.ts     | 146 +++++++++++++
 .../services/policy/default-policy.service.ts |  67 ++++++
 .../default-organization-invite.service.ts    |  26 +++
 .../organization-invite-state.ts              |  13 ++
 .../organization-invite.service.ts            |  20 ++
 .../organization-invite.ts                    |  20 ++
 70 files changed, 1301 insertions(+), 495 deletions(-)
 create mode 100644 apps/web/src/app/auth/core/services/organization-invite/web-organization-invite.service.ts
 delete mode 100644 apps/web/src/app/auth/organization-invite/organization-invite.ts
 rename libs/{auth/src/angular => angular/src/auth/password-management}/change-password/change-password.component.html (67%)
 create mode 100644 libs/angular/src/auth/password-management/change-password/change-password.component.ts
 rename libs/{auth/src/angular => angular/src/auth/password-management}/change-password/change-password.service.abstraction.ts (56%)
 rename libs/{auth/src/angular => angular/src/auth/password-management}/change-password/default-change-password.service.spec.ts (77%)
 rename libs/{auth/src/angular => angular/src/auth/password-management}/change-password/default-change-password.service.ts (50%)
 create mode 100644 libs/angular/src/auth/password-management/change-password/index.ts
 delete mode 100644 libs/auth/src/angular/change-password/change-password.component.ts
 create mode 100644 libs/common/src/auth/services/organization-invite/default-organization-invite.service.ts
 create mode 100644 libs/common/src/auth/services/organization-invite/organization-invite-state.ts
 create mode 100644 libs/common/src/auth/services/organization-invite/organization-invite.service.ts
 create mode 100644 libs/common/src/auth/services/organization-invite/organization-invite.ts

diff --git a/apps/browser/src/_locales/en/messages.json b/apps/browser/src/_locales/en/messages.json
index 957386ba576..ee8cd412625 100644
--- a/apps/browser/src/_locales/en/messages.json
+++ b/apps/browser/src/_locales/en/messages.json
@@ -1173,6 +1173,12 @@
     "message": "Oh no! We couldn't save this. Try entering the details manually.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
   "enableChangedPasswordNotification": {
     "message": "Ask to update existing login"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "masterPasswordChanged": {
+    "message": "Master password saved"
+  },
   "exposedMasterPassword": {
     "message": "Exposed Master Password"
   },
diff --git a/apps/browser/src/popup/app-routing.module.ts b/apps/browser/src/popup/app-routing.module.ts
index f836f5ffac7..da5a6c43d36 100644
--- a/apps/browser/src/popup/app-routing.module.ts
+++ b/apps/browser/src/popup/app-routing.module.ts
@@ -15,6 +15,7 @@ import {
   tdeDecryptionRequiredGuard,
   unauthGuardFn,
 } from "@bitwarden/angular/auth/guards";
+import { ChangePasswordComponent } from "@bitwarden/angular/auth/password-management/change-password";
 import { SetInitialPasswordComponent } from "@bitwarden/angular/auth/password-management/set-initial-password/set-initial-password.component";
 import { canAccessFeature } from "@bitwarden/angular/platform/guard/feature-flag.guard";
 import {
@@ -331,7 +332,15 @@ const routes: Routes = [
   {
     path: "update-temp-password",
     component: UpdateTempPasswordComponent,
-    canActivate: [authGuard],
+    canActivate: [
+      canAccessFeature(
+        FeatureFlag.PM16117_ChangeExistingPasswordRefactor,
+        false,
+        `/change-password`,
+        false,
+      ),
+      authGuard,
+    ],
     data: { elevation: 1 } satisfies RouteDataProperties,
   },
   {
@@ -555,6 +564,23 @@ const routes: Routes = [
           showBackButton: true,
         } satisfies RouteDataProperties & ExtensionAnonLayoutWrapperData,
       },
+      {
+        path: "change-password",
+        data: {
+          elevation: 1,
+          hideFooter: true,
+        } satisfies RouteDataProperties & ExtensionAnonLayoutWrapperData,
+        children: [
+          {
+            path: "",
+            component: ChangePasswordComponent,
+          },
+        ],
+        canActivate: [
+          canAccessFeature(FeatureFlag.PM16117_ChangeExistingPasswordRefactor),
+          authGuard,
+        ],
+      },
     ],
   },
   {
diff --git a/apps/desktop/src/app/app-routing.module.ts b/apps/desktop/src/app/app-routing.module.ts
index 42846878d03..0a60478c94d 100644
--- a/apps/desktop/src/app/app-routing.module.ts
+++ b/apps/desktop/src/app/app-routing.module.ts
@@ -14,6 +14,7 @@ import {
   tdeDecryptionRequiredGuard,
   unauthGuardFn,
 } from "@bitwarden/angular/auth/guards";
+import { ChangePasswordComponent } from "@bitwarden/angular/auth/password-management/change-password";
 import { SetInitialPasswordComponent } from "@bitwarden/angular/auth/password-management/set-initial-password/set-initial-password.component";
 import { canAccessFeature } from "@bitwarden/angular/platform/guard/feature-flag.guard";
 import { featureFlaggedRoute } from "@bitwarden/angular/platform/utils/feature-flagged-route";
@@ -119,7 +120,15 @@ const routes: Routes = [
   {
     path: "update-temp-password",
     component: UpdateTempPasswordComponent,
-    canActivate: [authGuard],
+    canActivate: [
+      canAccessFeature(
+        FeatureFlag.PM16117_ChangeExistingPasswordRefactor,
+        false,
+        `/change-password`,
+        false,
+      ),
+      authGuard,
+    ],
   },
   {
     path: "remove-password",
@@ -340,6 +349,14 @@ const routes: Routes = [
           },
         } satisfies RouteDataProperties & AnonLayoutWrapperData,
       },
+      {
+        path: "change-password",
+        component: ChangePasswordComponent,
+        canActivate: [
+          canAccessFeature(FeatureFlag.PM16117_ChangeExistingPasswordRefactor),
+          authGuard,
+        ],
+      },
     ],
   },
 ];
diff --git a/apps/desktop/src/app/services/services.module.ts b/apps/desktop/src/app/services/services.module.ts
index 0abd810bd18..4111a62d3b2 100644
--- a/apps/desktop/src/app/services/services.module.ts
+++ b/apps/desktop/src/app/services/services.module.ts
@@ -382,12 +382,11 @@ const safeProviders: SafeProvider[] = [
     provide: SetPasswordJitService,
     useClass: DesktopSetPasswordJitService,
     deps: [
-      ApiService,
-      MasterPasswordApiService,
-      KeyService,
       EncryptService,
       I18nServiceAbstraction,
       KdfConfigService,
+      KeyService,
+      MasterPasswordApiService,
       InternalMasterPasswordServiceAbstraction,
       OrganizationApiServiceAbstraction,
       OrganizationUserApiService,
diff --git a/apps/desktop/src/auth/login/desktop-login-component.service.ts b/apps/desktop/src/auth/login/desktop-login-component.service.ts
index 60e7791b384..d7e7ba0178b 100644
--- a/apps/desktop/src/auth/login/desktop-login-component.service.ts
+++ b/apps/desktop/src/auth/login/desktop-login-component.service.ts
@@ -84,7 +84,7 @@ export class DesktopLoginComponentService
     } catch (err) {
       this.toastService.showToast({
         variant: "error",
-        title: this.i18nService.t("errorOccured"),
+        title: this.i18nService.t("errorOccurred"),
         message: this.i18nService.t("ssoError"),
       });
     }
diff --git a/apps/desktop/src/auth/set-password.component.ts b/apps/desktop/src/auth/set-password.component.ts
index 48b18d7294c..55ad1f48a77 100644
--- a/apps/desktop/src/auth/set-password.component.ts
+++ b/apps/desktop/src/auth/set-password.component.ts
@@ -4,7 +4,6 @@ import { ActivatedRoute, Router } from "@angular/router";
 import { OrganizationUserApiService } from "@bitwarden/admin-console/common";
 import { SetPasswordComponent as BaseSetPasswordComponent } from "@bitwarden/angular/auth/components/set-password.component";
 import { InternalUserDecryptionOptionsServiceAbstraction } from "@bitwarden/auth/common";
-import { ApiService } from "@bitwarden/common/abstractions/api.service";
 import { OrganizationApiServiceAbstraction } from "@bitwarden/common/admin-console/abstractions/organization/organization-api.service.abstraction";
 import { PolicyApiServiceAbstraction } from "@bitwarden/common/admin-console/abstractions/policy/policy-api.service.abstraction";
 import { PolicyService } from "@bitwarden/common/admin-console/abstractions/policy/policy.service.abstraction";
@@ -32,52 +31,50 @@ const BroadcasterSubscriptionId = "SetPasswordComponent";
 })
 export class SetPasswordComponent extends BaseSetPasswordComponent implements OnInit, OnDestroy {
   constructor(
-    accountService: AccountService,
-    masterPasswordService: InternalMasterPasswordServiceAbstraction,
-    apiService: ApiService,
-    i18nService: I18nService,
-    keyService: KeyService,
-    messagingService: MessagingService,
-    platformUtilsService: PlatformUtilsService,
-    policyApiService: PolicyApiServiceAbstraction,
-    policyService: PolicyService,
-    router: Router,
-    masterPasswordApiService: MasterPasswordApiService,
-    syncService: SyncService,
-    route: ActivatedRoute,
+    protected accountService: AccountService,
+    protected dialogService: DialogService,
+    protected encryptService: EncryptService,
+    protected i18nService: I18nService,
+    protected kdfConfigService: KdfConfigService,
+    protected keyService: KeyService,
+    protected masterPasswordApiService: MasterPasswordApiService,
+    protected masterPasswordService: InternalMasterPasswordServiceAbstraction,
+    protected messagingService: MessagingService,
+    protected organizationApiService: OrganizationApiServiceAbstraction,
+    protected organizationUserApiService: OrganizationUserApiService,
+    protected platformUtilsService: PlatformUtilsService,
+    protected policyApiService: PolicyApiServiceAbstraction,
+    protected policyService: PolicyService,
+    protected route: ActivatedRoute,
+    protected router: Router,
+    protected ssoLoginService: SsoLoginServiceAbstraction,
+    protected syncService: SyncService,
+    protected toastService: ToastService,
+    protected userDecryptionOptionsService: InternalUserDecryptionOptionsServiceAbstraction,
     private broadcasterService: BroadcasterService,
     private ngZone: NgZone,
-    organizationApiService: OrganizationApiServiceAbstraction,
-    organizationUserApiService: OrganizationUserApiService,
-    userDecryptionOptionsService: InternalUserDecryptionOptionsServiceAbstraction,
-    ssoLoginService: SsoLoginServiceAbstraction,
-    dialogService: DialogService,
-    kdfConfigService: KdfConfigService,
-    encryptService: EncryptService,
-    toastService: ToastService,
   ) {
     super(
       accountService,
-      masterPasswordService,
+      dialogService,
+      encryptService,
       i18nService,
+      kdfConfigService,
       keyService,
+      masterPasswordApiService,
+      masterPasswordService,
       messagingService,
+      organizationApiService,
+      organizationUserApiService,
       platformUtilsService,
       policyApiService,
       policyService,
-      router,
-      masterPasswordApiService,
-      apiService,
-      syncService,
       route,
-      organizationApiService,
-      organizationUserApiService,
-      userDecryptionOptionsService,
+      router,
       ssoLoginService,
-      dialogService,
-      kdfConfigService,
-      encryptService,
+      syncService,
       toastService,
+      userDecryptionOptionsService,
     );
   }
 
diff --git a/apps/desktop/src/locales/en/messages.json b/apps/desktop/src/locales/en/messages.json
index 703b65c35b4..a139c0c712c 100644
--- a/apps/desktop/src/locales/en/messages.json
+++ b/apps/desktop/src/locales/en/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Your master password does not meet one or more of your organization policies. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Your organization has disabled trusted device encryption. Please set a master password to access your vault."
   },
diff --git a/apps/web/src/app/auth/core/services/change-password/web-change-password.service.ts b/apps/web/src/app/auth/core/services/change-password/web-change-password.service.ts
index b75aef0f1fc..ed384763241 100644
--- a/apps/web/src/app/auth/core/services/change-password/web-change-password.service.ts
+++ b/apps/web/src/app/auth/core/services/change-password/web-change-password.service.ts
@@ -1,8 +1,12 @@
-import { ChangePasswordService, DefaultChangePasswordService } from "@bitwarden/auth/angular";
+import {
+  ChangePasswordService,
+  DefaultChangePasswordService,
+} from "@bitwarden/angular/auth/password-management/change-password";
 import { Account } from "@bitwarden/common/auth/abstractions/account.service";
 import { MasterPasswordApiService } from "@bitwarden/common/auth/abstractions/master-password-api.service.abstraction";
 import { InternalMasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
 import { KeyService } from "@bitwarden/key-management";
+import { RouterService } from "@bitwarden/web-vault/app/core";
 import { UserKeyRotationService } from "@bitwarden/web-vault/app/key-management/key-rotation/user-key-rotation.service";
 
 export class WebChangePasswordService
@@ -14,6 +18,7 @@ export class WebChangePasswordService
     protected masterPasswordApiService: MasterPasswordApiService,
     protected masterPasswordService: InternalMasterPasswordServiceAbstraction,
     private userKeyRotationService: UserKeyRotationService,
+    private routerService: RouterService,
   ) {
     super(keyService, masterPasswordApiService, masterPasswordService);
   }
@@ -31,4 +36,8 @@ export class WebChangePasswordService
       newPasswordHint,
     );
   }
+
+  async clearDeeplinkState() {
+    await this.routerService.getAndClearLoginRedirectUrl();
+  }
 }
diff --git a/apps/web/src/app/auth/core/services/login-decryption-options/web-login-decryption-options.service.ts b/apps/web/src/app/auth/core/services/login-decryption-options/web-login-decryption-options.service.ts
index 3de3ec46457..fb30f04ffc4 100644
--- a/apps/web/src/app/auth/core/services/login-decryption-options/web-login-decryption-options.service.ts
+++ b/apps/web/src/app/auth/core/services/login-decryption-options/web-login-decryption-options.service.ts
@@ -4,10 +4,10 @@ import {
   LoginDecryptionOptionsService,
   DefaultLoginDecryptionOptionsService,
 } from "@bitwarden/auth/angular";
+import { OrganizationInviteService } from "@bitwarden/common/auth/services/organization-invite/organization-invite.service";
 import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
 
 import { RouterService } from "../../../../core/router.service";
-import { AcceptOrganizationInviteService } from "../../../organization-invite/accept-organization.service";
 
 export class WebLoginDecryptionOptionsService
   extends DefaultLoginDecryptionOptionsService
@@ -16,7 +16,7 @@ export class WebLoginDecryptionOptionsService
   constructor(
     protected messagingService: MessagingService,
     private routerService: RouterService,
-    private acceptOrganizationInviteService: AcceptOrganizationInviteService,
+    private organizationInviteService: OrganizationInviteService,
   ) {
     super(messagingService);
   }
@@ -27,7 +27,7 @@ export class WebLoginDecryptionOptionsService
       // accepted while being enrolled in admin recovery. So we need to clear
       // the redirect and stored org invite.
       await this.routerService.getAndClearLoginRedirectUrl();
-      await this.acceptOrganizationInviteService.clearOrganizationInvitation();
+      await this.organizationInviteService.clearOrganizationInvitation();
     } catch (error) {
       throw new Error(error);
     }
diff --git a/apps/web/src/app/auth/core/services/login/web-login-component.service.spec.ts b/apps/web/src/app/auth/core/services/login/web-login-component.service.spec.ts
index 95ddc74c3c5..4cc06baf32b 100644
--- a/apps/web/src/app/auth/core/services/login/web-login-component.service.spec.ts
+++ b/apps/web/src/app/auth/core/services/login/web-login-component.service.spec.ts
@@ -10,7 +10,9 @@ import { Policy } from "@bitwarden/common/admin-console/models/domain/policy";
 import { ResetPasswordPolicyOptions } from "@bitwarden/common/admin-console/models/domain/reset-password-policy-options";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { SsoLoginServiceAbstraction } from "@bitwarden/common/auth/abstractions/sso-login.service.abstraction";
+import { OrganizationInviteService } from "@bitwarden/common/auth/services/organization-invite/organization-invite.service";
 import { CryptoFunctionService } from "@bitwarden/common/key-management/crypto/abstractions/crypto-function.service";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { EnvironmentService } from "@bitwarden/common/platform/abstractions/environment.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
@@ -22,7 +24,6 @@ import { PasswordGenerationServiceAbstraction } from "@bitwarden/generator-legac
 // FIXME: remove `src` and fix import
 // eslint-disable-next-line no-restricted-imports
 import { RouterService } from "../../../../../../../../apps/web/src/app/core";
-import { AcceptOrganizationInviteService } from "../../../organization-invite/accept-organization.service";
 
 import { WebLoginComponentService } from "./web-login-component.service";
 
@@ -32,7 +33,7 @@ jest.mock("../../../../../utils/flags", () => ({
 
 describe("WebLoginComponentService", () => {
   let service: WebLoginComponentService;
-  let acceptOrganizationInviteService: MockProxy<AcceptOrganizationInviteService>;
+  let organizationInviteService: MockProxy<OrganizationInviteService>;
   let logService: MockProxy<LogService>;
   let policyApiService: MockProxy<PolicyApiServiceAbstraction>;
   let internalPolicyService: MockProxy<InternalPolicyService>;
@@ -44,9 +45,10 @@ describe("WebLoginComponentService", () => {
   let ssoLoginService: MockProxy<SsoLoginServiceAbstraction>;
   const mockUserId = Utils.newGuid() as UserId;
   let accountService: FakeAccountService;
+  let configService: MockProxy<ConfigService>;
 
   beforeEach(() => {
-    acceptOrganizationInviteService = mock<AcceptOrganizationInviteService>();
+    organizationInviteService = mock<OrganizationInviteService>();
     logService = mock<LogService>();
     policyApiService = mock<PolicyApiServiceAbstraction>();
     internalPolicyService = mock<InternalPolicyService>();
@@ -57,12 +59,13 @@ describe("WebLoginComponentService", () => {
     platformUtilsService = mock<PlatformUtilsService>();
     ssoLoginService = mock<SsoLoginServiceAbstraction>();
     accountService = mockAccountServiceWith(mockUserId);
+    configService = mock<ConfigService>();
 
     TestBed.configureTestingModule({
       providers: [
         WebLoginComponentService,
         { provide: DefaultLoginComponentService, useClass: WebLoginComponentService },
-        { provide: AcceptOrganizationInviteService, useValue: acceptOrganizationInviteService },
+        { provide: OrganizationInviteService, useValue: organizationInviteService },
         { provide: LogService, useValue: logService },
         { provide: PolicyApiServiceAbstraction, useValue: policyApiService },
         { provide: InternalPolicyService, useValue: internalPolicyService },
@@ -73,6 +76,7 @@ describe("WebLoginComponentService", () => {
         { provide: PlatformUtilsService, useValue: platformUtilsService },
         { provide: SsoLoginServiceAbstraction, useValue: ssoLoginService },
         { provide: AccountService, useValue: accountService },
+        { provide: ConfigService, useValue: configService },
       ],
     });
     service = TestBed.inject(WebLoginComponentService);
@@ -84,14 +88,14 @@ describe("WebLoginComponentService", () => {
 
   describe("getOrgPoliciesFromOrgInvite", () => {
     it("returns undefined if organization invite is null", async () => {
-      acceptOrganizationInviteService.getOrganizationInvite.mockResolvedValue(null);
+      organizationInviteService.getOrganizationInvite.mockResolvedValue(null);
       const result = await service.getOrgPoliciesFromOrgInvite();
       expect(result).toBeUndefined();
     });
 
     it("logs an error if getPoliciesByToken throws an error", async () => {
       const error = new Error("Test error");
-      acceptOrganizationInviteService.getOrganizationInvite.mockResolvedValue({
+      organizationInviteService.getOrganizationInvite.mockResolvedValue({
         organizationId: "org-id",
         token: "token",
         email: "email",
@@ -117,7 +121,7 @@ describe("WebLoginComponentService", () => {
         const resetPasswordPolicyOptions = new ResetPasswordPolicyOptions();
         resetPasswordPolicyOptions.autoEnrollEnabled = autoEnrollEnabled;
 
-        acceptOrganizationInviteService.getOrganizationInvite.mockResolvedValue({
+        organizationInviteService.getOrganizationInvite.mockResolvedValue({
           organizationId: "org-id",
           token: "token",
           email: "email",
diff --git a/apps/web/src/app/auth/core/services/login/web-login-component.service.ts b/apps/web/src/app/auth/core/services/login/web-login-component.service.ts
index 36e7143ccd0..cf0adb91144 100644
--- a/apps/web/src/app/auth/core/services/login/web-login-component.service.ts
+++ b/apps/web/src/app/auth/core/services/login/web-login-component.service.ts
@@ -11,18 +11,21 @@ import {
 } from "@bitwarden/auth/angular";
 import { PolicyApiServiceAbstraction } from "@bitwarden/common/admin-console/abstractions/policy/policy-api.service.abstraction";
 import { InternalPolicyService } from "@bitwarden/common/admin-console/abstractions/policy/policy.service.abstraction";
+import { MasterPasswordPolicyOptions } from "@bitwarden/common/admin-console/models/domain/master-password-policy-options";
 import { Policy } from "@bitwarden/common/admin-console/models/domain/policy";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { SsoLoginServiceAbstraction } from "@bitwarden/common/auth/abstractions/sso-login.service.abstraction";
 import { getUserId } from "@bitwarden/common/auth/services/account.service";
+import { OrganizationInviteService } from "@bitwarden/common/auth/services/organization-invite/organization-invite.service";
+import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
 import { CryptoFunctionService } from "@bitwarden/common/key-management/crypto/abstractions/crypto-function.service";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { EnvironmentService } from "@bitwarden/common/platform/abstractions/environment.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
 import { PasswordGenerationServiceAbstraction } from "@bitwarden/generator-legacy";
 
 import { RouterService } from "../../../../core/router.service";
-import { AcceptOrganizationInviteService } from "../../../organization-invite/accept-organization.service";
 
 @Injectable()
 export class WebLoginComponentService
@@ -30,7 +33,7 @@ export class WebLoginComponentService
   implements LoginComponentService
 {
   constructor(
-    protected acceptOrganizationInviteService: AcceptOrganizationInviteService,
+    protected organizationInviteService: OrganizationInviteService,
     protected logService: LogService,
     protected policyApiService: PolicyApiServiceAbstraction,
     protected policyService: InternalPolicyService,
@@ -42,6 +45,7 @@ export class WebLoginComponentService
     ssoLoginService: SsoLoginServiceAbstraction,
     private router: Router,
     private accountService: AccountService,
+    private configService: ConfigService,
   ) {
     super(
       cryptoFunctionService,
@@ -66,8 +70,8 @@ export class WebLoginComponentService
     return;
   }
 
-  async getOrgPoliciesFromOrgInvite(): Promise<PasswordPolicies | null> {
-    const orgInvite = await this.acceptOrganizationInviteService.getOrganizationInvite();
+  async getOrgPoliciesFromOrgInvite(): Promise<PasswordPolicies | undefined> {
+    const orgInvite = await this.organizationInviteService.getOrganizationInvite();
 
     if (orgInvite != null) {
       let policies: Policy[];
@@ -84,7 +88,7 @@ export class WebLoginComponentService
       }
 
       if (policies == null) {
-        return;
+        return undefined;
       }
 
       const resetPasswordPolicy = this.policyService.getResetPasswordPolicyOptions(
@@ -95,12 +99,23 @@ export class WebLoginComponentService
       const isPolicyAndAutoEnrollEnabled =
         resetPasswordPolicy[1] && resetPasswordPolicy[0].autoEnrollEnabled;
 
-      const enforcedPasswordPolicyOptions = await firstValueFrom(
-        this.accountService.activeAccount$.pipe(
-          getUserId,
-          switchMap((userId) => this.policyService.masterPasswordPolicyOptions$(userId, policies)),
-        ),
-      );
+      let enforcedPasswordPolicyOptions: MasterPasswordPolicyOptions;
+
+      if (
+        await this.configService.getFeatureFlag(FeatureFlag.PM16117_ChangeExistingPasswordRefactor)
+      ) {
+        enforcedPasswordPolicyOptions =
+          this.policyService.combinePoliciesIntoMasterPasswordPolicyOptions(policies);
+      } else {
+        enforcedPasswordPolicyOptions = await firstValueFrom(
+          this.accountService.activeAccount$.pipe(
+            getUserId,
+            switchMap((userId) =>
+              this.policyService.masterPasswordPolicyOptions$(userId, policies),
+            ),
+          ),
+        );
+      }
 
       return {
         policies,
diff --git a/apps/web/src/app/auth/core/services/organization-invite/web-organization-invite.service.ts b/apps/web/src/app/auth/core/services/organization-invite/web-organization-invite.service.ts
new file mode 100644
index 00000000000..b799358dbae
--- /dev/null
+++ b/apps/web/src/app/auth/core/services/organization-invite/web-organization-invite.service.ts
@@ -0,0 +1,38 @@
+import { firstValueFrom } from "rxjs";
+
+import { OrganizationInvite } from "@bitwarden/common/auth/services/organization-invite/organization-invite";
+import { ORGANIZATION_INVITE } from "@bitwarden/common/auth/services/organization-invite/organization-invite-state";
+import { OrganizationInviteService } from "@bitwarden/common/auth/services/organization-invite/organization-invite.service";
+import { GlobalState, GlobalStateProvider } from "@bitwarden/common/platform/state";
+
+export class WebOrganizationInviteService implements OrganizationInviteService {
+  private organizationInvitationState: GlobalState<OrganizationInvite | null>;
+
+  constructor(private readonly globalStateProvider: GlobalStateProvider) {
+    this.organizationInvitationState = this.globalStateProvider.get(ORGANIZATION_INVITE);
+  }
+
+  /**
+   * Returns the currently stored organization invite
+   */
+  async getOrganizationInvite(): Promise<OrganizationInvite | null> {
+    return await firstValueFrom(this.organizationInvitationState.state$);
+  }
+
+  /**
+   * Stores a new organization invite
+   * @param invite an organization invite
+   * @throws if the invite is nullish
+   */
+  async setOrganizationInvitation(invite: OrganizationInvite): Promise<void> {
+    if (invite == null) {
+      throw new Error("Invite cannot be null. Use clearOrganizationInvitation instead.");
+    }
+    await this.organizationInvitationState.update(() => invite);
+  }
+
+  /** Clears the currently stored organization invite */
+  async clearOrganizationInvitation(): Promise<void> {
+    await this.organizationInvitationState.update(() => null);
+  }
+}
diff --git a/apps/web/src/app/auth/core/services/password-management/set-initial-password/web-set-initial-password.service.spec.ts b/apps/web/src/app/auth/core/services/password-management/set-initial-password/web-set-initial-password.service.spec.ts
index b90d0624b3f..b562c54894b 100644
--- a/apps/web/src/app/auth/core/services/password-management/set-initial-password/web-set-initial-password.service.spec.ts
+++ b/apps/web/src/app/auth/core/services/password-management/set-initial-password/web-set-initial-password.service.spec.ts
@@ -15,6 +15,7 @@ import { ApiService } from "@bitwarden/common/abstractions/api.service";
 import { OrganizationApiServiceAbstraction } from "@bitwarden/common/admin-console/abstractions/organization/organization-api.service.abstraction";
 import { MasterPasswordApiService } from "@bitwarden/common/auth/abstractions/master-password-api.service.abstraction";
 import { SetPasswordRequest } from "@bitwarden/common/auth/models/request/set-password.request";
+import { OrganizationInviteService } from "@bitwarden/common/auth/services/organization-invite/organization-invite.service";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
 import { InternalMasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
 import { KeysRequest } from "@bitwarden/common/models/request/keys.request";
@@ -25,7 +26,6 @@ import { CsprngArray } from "@bitwarden/common/types/csprng";
 import { UserId } from "@bitwarden/common/types/guid";
 import { MasterKey, UserKey } from "@bitwarden/common/types/key";
 import { DEFAULT_KDF_CONFIG, KdfConfigService, KeyService } from "@bitwarden/key-management";
-import { AcceptOrganizationInviteService } from "@bitwarden/web-vault/app/auth/organization-invite/accept-organization.service";
 import { RouterService } from "@bitwarden/web-vault/app/core";
 
 import { WebSetInitialPasswordService } from "./web-set-initial-password.service";
@@ -43,7 +43,7 @@ describe("WebSetInitialPasswordService", () => {
   let organizationApiService: MockProxy<OrganizationApiServiceAbstraction>;
   let organizationUserApiService: MockProxy<OrganizationUserApiService>;
   let userDecryptionOptionsService: MockProxy<InternalUserDecryptionOptionsServiceAbstraction>;
-  let acceptOrganizationInviteService: MockProxy<AcceptOrganizationInviteService>;
+  let organizationInviteService: MockProxy<OrganizationInviteService>;
   let routerService: MockProxy<RouterService>;
 
   beforeEach(() => {
@@ -57,7 +57,7 @@ describe("WebSetInitialPasswordService", () => {
     organizationApiService = mock<OrganizationApiServiceAbstraction>();
     organizationUserApiService = mock<OrganizationUserApiService>();
     userDecryptionOptionsService = mock<InternalUserDecryptionOptionsServiceAbstraction>();
-    acceptOrganizationInviteService = mock<AcceptOrganizationInviteService>();
+    organizationInviteService = mock<OrganizationInviteService>();
     routerService = mock<RouterService>();
 
     sut = new WebSetInitialPasswordService(
@@ -71,7 +71,7 @@ describe("WebSetInitialPasswordService", () => {
       organizationApiService,
       organizationUserApiService,
       userDecryptionOptionsService,
-      acceptOrganizationInviteService,
+      organizationInviteService,
       routerService,
     );
   });
@@ -169,9 +169,7 @@ describe("WebSetInitialPasswordService", () => {
 
         // Assert
         expect(masterPasswordApiService.setPassword).toHaveBeenCalledWith(setPasswordRequest);
-        expect(acceptOrganizationInviteService.clearOrganizationInvitation).toHaveBeenCalledTimes(
-          1,
-        );
+        expect(organizationInviteService.clearOrganizationInvitation).toHaveBeenCalledTimes(1);
       });
     });
 
@@ -201,7 +199,7 @@ describe("WebSetInitialPasswordService", () => {
         // Assert
         await expect(promise).rejects.toThrow();
         expect(masterPasswordApiService.setPassword).not.toHaveBeenCalled();
-        expect(acceptOrganizationInviteService.clearOrganizationInvitation).not.toHaveBeenCalled();
+        expect(organizationInviteService.clearOrganizationInvitation).not.toHaveBeenCalled();
       });
     });
   });
diff --git a/apps/web/src/app/auth/core/services/password-management/set-initial-password/web-set-initial-password.service.ts b/apps/web/src/app/auth/core/services/password-management/set-initial-password/web-set-initial-password.service.ts
index 41e7e8ad4ab..19ddbf5e260 100644
--- a/apps/web/src/app/auth/core/services/password-management/set-initial-password/web-set-initial-password.service.ts
+++ b/apps/web/src/app/auth/core/services/password-management/set-initial-password/web-set-initial-password.service.ts
@@ -9,12 +9,12 @@ import { InternalUserDecryptionOptionsServiceAbstraction } from "@bitwarden/auth
 import { ApiService } from "@bitwarden/common/abstractions/api.service";
 import { OrganizationApiServiceAbstraction } from "@bitwarden/common/admin-console/abstractions/organization/organization-api.service.abstraction";
 import { MasterPasswordApiService } from "@bitwarden/common/auth/abstractions/master-password-api.service.abstraction";
+import { OrganizationInviteService } from "@bitwarden/common/auth/services/organization-invite/organization-invite.service";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
 import { InternalMasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { UserId } from "@bitwarden/common/types/guid";
 import { KdfConfigService, KeyService } from "@bitwarden/key-management";
-import { AcceptOrganizationInviteService } from "@bitwarden/web-vault/app/auth/organization-invite/accept-organization.service";
 import { RouterService } from "@bitwarden/web-vault/app/core";
 
 export class WebSetInitialPasswordService
@@ -32,7 +32,7 @@ export class WebSetInitialPasswordService
     protected organizationApiService: OrganizationApiServiceAbstraction,
     protected organizationUserApiService: OrganizationUserApiService,
     protected userDecryptionOptionsService: InternalUserDecryptionOptionsServiceAbstraction,
-    private acceptOrganizationInviteService: AcceptOrganizationInviteService,
+    private organizationInviteService: OrganizationInviteService,
     private routerService: RouterService,
   ) {
     super(
@@ -78,6 +78,6 @@ export class WebSetInitialPasswordService
      * as clear the org invite itself that was originally set in state by the AcceptOrganizationComponent.
      */
     await this.routerService.getAndClearLoginRedirectUrl();
-    await this.acceptOrganizationInviteService.clearOrganizationInvitation();
+    await this.organizationInviteService.clearOrganizationInvitation();
   }
 }
diff --git a/apps/web/src/app/auth/core/services/registration/web-registration-finish.service.spec.ts b/apps/web/src/app/auth/core/services/registration/web-registration-finish.service.spec.ts
index afaf1bd49d2..e491f95c1b9 100644
--- a/apps/web/src/app/auth/core/services/registration/web-registration-finish.service.spec.ts
+++ b/apps/web/src/app/auth/core/services/registration/web-registration-finish.service.spec.ts
@@ -9,20 +9,16 @@ import { PolicyService } from "@bitwarden/common/admin-console/abstractions/poli
 import { MasterPasswordPolicyOptions } from "@bitwarden/common/admin-console/models/domain/master-password-policy-options";
 import { Policy } from "@bitwarden/common/admin-console/models/domain/policy";
 import { AccountApiService } from "@bitwarden/common/auth/abstractions/account-api.service";
+import { OrganizationInvite } from "@bitwarden/common/auth/services/organization-invite/organization-invite";
+import { OrganizationInviteService } from "@bitwarden/common/auth/services/organization-invite/organization-invite.service";
 import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
-import { Utils } from "@bitwarden/common/platform/misc/utils";
 import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
-import { FakeAccountService, mockAccountServiceWith } from "@bitwarden/common/spec";
 import { CsprngArray } from "@bitwarden/common/types/csprng";
-import { UserId } from "@bitwarden/common/types/guid";
 import { MasterKey, UserKey } from "@bitwarden/common/types/key";
 import { DEFAULT_KDF_CONFIG, KeyService } from "@bitwarden/key-management";
 
-import { AcceptOrganizationInviteService } from "../../../organization-invite/accept-organization.service";
-import { OrganizationInvite } from "../../../organization-invite/organization-invite";
-
 import { WebRegistrationFinishService } from "./web-registration-finish.service";
 
 describe("WebRegistrationFinishService", () => {
@@ -30,32 +26,28 @@ describe("WebRegistrationFinishService", () => {
 
   let keyService: MockProxy<KeyService>;
   let accountApiService: MockProxy<AccountApiService>;
-  let acceptOrgInviteService: MockProxy<AcceptOrganizationInviteService>;
+  let organizationInviteService: MockProxy<OrganizationInviteService>;
   let policyApiService: MockProxy<PolicyApiServiceAbstraction>;
   let logService: MockProxy<LogService>;
   let policyService: MockProxy<PolicyService>;
   let configService: MockProxy<ConfigService>;
-  const mockUserId = Utils.newGuid() as UserId;
-  let accountService: FakeAccountService;
 
   beforeEach(() => {
     keyService = mock<KeyService>();
     accountApiService = mock<AccountApiService>();
-    acceptOrgInviteService = mock<AcceptOrganizationInviteService>();
+    organizationInviteService = mock<OrganizationInviteService>();
     policyApiService = mock<PolicyApiServiceAbstraction>();
     logService = mock<LogService>();
     policyService = mock<PolicyService>();
-    accountService = mockAccountServiceWith(mockUserId);
     configService = mock<ConfigService>();
 
     service = new WebRegistrationFinishService(
       keyService,
       accountApiService,
-      acceptOrgInviteService,
+      organizationInviteService,
       policyApiService,
       logService,
       policyService,
-      accountService,
       configService,
     );
   });
@@ -76,21 +68,21 @@ describe("WebRegistrationFinishService", () => {
     });
 
     it("returns null when the org invite is null", async () => {
-      acceptOrgInviteService.getOrganizationInvite.mockResolvedValue(null);
+      organizationInviteService.getOrganizationInvite.mockResolvedValue(null);
 
       const result = await service.getOrgNameFromOrgInvite();
 
       expect(result).toBeNull();
-      expect(acceptOrgInviteService.getOrganizationInvite).toHaveBeenCalled();
+      expect(organizationInviteService.getOrganizationInvite).toHaveBeenCalled();
     });
 
     it("returns the organization name from the organization invite when it exists", async () => {
-      acceptOrgInviteService.getOrganizationInvite.mockResolvedValue(orgInvite);
+      organizationInviteService.getOrganizationInvite.mockResolvedValue(orgInvite);
 
       const result = await service.getOrgNameFromOrgInvite();
 
       expect(result).toEqual(orgInvite.organizationName);
-      expect(acceptOrgInviteService.getOrganizationInvite).toHaveBeenCalled();
+      expect(organizationInviteService.getOrganizationInvite).toHaveBeenCalled();
     });
   });
 
@@ -106,22 +98,22 @@ describe("WebRegistrationFinishService", () => {
     });
 
     it("returns null when the org invite is null", async () => {
-      acceptOrgInviteService.getOrganizationInvite.mockResolvedValue(null);
+      organizationInviteService.getOrganizationInvite.mockResolvedValue(null);
 
       const result = await service.getMasterPasswordPolicyOptsFromOrgInvite();
 
       expect(result).toBeNull();
-      expect(acceptOrgInviteService.getOrganizationInvite).toHaveBeenCalled();
+      expect(organizationInviteService.getOrganizationInvite).toHaveBeenCalled();
     });
 
     it("returns null when the policies are null", async () => {
-      acceptOrgInviteService.getOrganizationInvite.mockResolvedValue(orgInvite);
+      organizationInviteService.getOrganizationInvite.mockResolvedValue(orgInvite);
       policyApiService.getPoliciesByToken.mockResolvedValue(null);
 
       const result = await service.getMasterPasswordPolicyOptsFromOrgInvite();
 
       expect(result).toBeNull();
-      expect(acceptOrgInviteService.getOrganizationInvite).toHaveBeenCalled();
+      expect(organizationInviteService.getOrganizationInvite).toHaveBeenCalled();
       expect(policyApiService.getPoliciesByToken).toHaveBeenCalledWith(
         orgInvite.organizationId,
         orgInvite.token,
@@ -131,13 +123,13 @@ describe("WebRegistrationFinishService", () => {
     });
 
     it("logs an error and returns null when policies cannot be fetched", async () => {
-      acceptOrgInviteService.getOrganizationInvite.mockResolvedValue(orgInvite);
+      organizationInviteService.getOrganizationInvite.mockResolvedValue(orgInvite);
       policyApiService.getPoliciesByToken.mockRejectedValue(new Error("error"));
 
       const result = await service.getMasterPasswordPolicyOptsFromOrgInvite();
 
       expect(result).toBeNull();
-      expect(acceptOrgInviteService.getOrganizationInvite).toHaveBeenCalled();
+      expect(organizationInviteService.getOrganizationInvite).toHaveBeenCalled();
       expect(policyApiService.getPoliciesByToken).toHaveBeenCalledWith(
         orgInvite.organizationId,
         orgInvite.token,
@@ -151,14 +143,14 @@ describe("WebRegistrationFinishService", () => {
       const masterPasswordPolicies = [new Policy()];
       const masterPasswordPolicyOptions = new MasterPasswordPolicyOptions();
 
-      acceptOrgInviteService.getOrganizationInvite.mockResolvedValue(orgInvite);
+      organizationInviteService.getOrganizationInvite.mockResolvedValue(orgInvite);
       policyApiService.getPoliciesByToken.mockResolvedValue(masterPasswordPolicies);
       policyService.masterPasswordPolicyOptions$.mockReturnValue(of(masterPasswordPolicyOptions));
 
       const result = await service.getMasterPasswordPolicyOptsFromOrgInvite();
 
       expect(result).toEqual(masterPasswordPolicyOptions);
-      expect(acceptOrgInviteService.getOrganizationInvite).toHaveBeenCalled();
+      expect(organizationInviteService.getOrganizationInvite).toHaveBeenCalled();
       expect(policyApiService.getPoliciesByToken).toHaveBeenCalledWith(
         orgInvite.organizationId,
         orgInvite.token,
@@ -225,7 +217,7 @@ describe("WebRegistrationFinishService", () => {
       keyService.makeUserKey.mockResolvedValue([userKey, userKeyEncString]);
       keyService.makeKeyPair.mockResolvedValue(userKeyPair);
       accountApiService.registerFinish.mockResolvedValue();
-      acceptOrgInviteService.getOrganizationInvite.mockResolvedValue(null);
+      organizationInviteService.getOrganizationInvite.mockResolvedValue(null);
 
       await service.finishRegistration(email, passwordInputResult, emailVerificationToken);
 
@@ -261,7 +253,7 @@ describe("WebRegistrationFinishService", () => {
       keyService.makeUserKey.mockResolvedValue([userKey, userKeyEncString]);
       keyService.makeKeyPair.mockResolvedValue(userKeyPair);
       accountApiService.registerFinish.mockResolvedValue();
-      acceptOrgInviteService.getOrganizationInvite.mockResolvedValue(orgInvite);
+      organizationInviteService.getOrganizationInvite.mockResolvedValue(orgInvite);
 
       await service.finishRegistration(email, passwordInputResult);
 
@@ -297,7 +289,7 @@ describe("WebRegistrationFinishService", () => {
       keyService.makeUserKey.mockResolvedValue([userKey, userKeyEncString]);
       keyService.makeKeyPair.mockResolvedValue(userKeyPair);
       accountApiService.registerFinish.mockResolvedValue();
-      acceptOrgInviteService.getOrganizationInvite.mockResolvedValue(null);
+      organizationInviteService.getOrganizationInvite.mockResolvedValue(null);
 
       await service.finishRegistration(
         email,
@@ -338,7 +330,7 @@ describe("WebRegistrationFinishService", () => {
       keyService.makeUserKey.mockResolvedValue([userKey, userKeyEncString]);
       keyService.makeKeyPair.mockResolvedValue(userKeyPair);
       accountApiService.registerFinish.mockResolvedValue();
-      acceptOrgInviteService.getOrganizationInvite.mockResolvedValue(null);
+      organizationInviteService.getOrganizationInvite.mockResolvedValue(null);
 
       await service.finishRegistration(
         email,
@@ -381,7 +373,7 @@ describe("WebRegistrationFinishService", () => {
       keyService.makeUserKey.mockResolvedValue([userKey, userKeyEncString]);
       keyService.makeKeyPair.mockResolvedValue(userKeyPair);
       accountApiService.registerFinish.mockResolvedValue();
-      acceptOrgInviteService.getOrganizationInvite.mockResolvedValue(null);
+      organizationInviteService.getOrganizationInvite.mockResolvedValue(null);
 
       await service.finishRegistration(
         email,
diff --git a/apps/web/src/app/auth/core/services/registration/web-registration-finish.service.ts b/apps/web/src/app/auth/core/services/registration/web-registration-finish.service.ts
index 05b8ab5cb0f..d6f0a27a79c 100644
--- a/apps/web/src/app/auth/core/services/registration/web-registration-finish.service.ts
+++ b/apps/web/src/app/auth/core/services/registration/web-registration-finish.service.ts
@@ -12,16 +12,14 @@ import { PolicyService } from "@bitwarden/common/admin-console/abstractions/poli
 import { MasterPasswordPolicyOptions } from "@bitwarden/common/admin-console/models/domain/master-password-policy-options";
 import { Policy } from "@bitwarden/common/admin-console/models/domain/policy";
 import { AccountApiService } from "@bitwarden/common/auth/abstractions/account-api.service";
-import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { RegisterFinishRequest } from "@bitwarden/common/auth/models/request/registration/register-finish.request";
+import { OrganizationInviteService } from "@bitwarden/common/auth/services/organization-invite/organization-invite.service";
 import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
 import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { EncryptedString, EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { KeyService } from "@bitwarden/key-management";
 
-import { AcceptOrganizationInviteService } from "../../../organization-invite/accept-organization.service";
-
 export class WebRegistrationFinishService
   extends DefaultRegistrationFinishService
   implements RegistrationFinishService
@@ -29,18 +27,17 @@ export class WebRegistrationFinishService
   constructor(
     protected keyService: KeyService,
     protected accountApiService: AccountApiService,
-    private acceptOrgInviteService: AcceptOrganizationInviteService,
+    private organizationInviteService: OrganizationInviteService,
     private policyApiService: PolicyApiServiceAbstraction,
     private logService: LogService,
     private policyService: PolicyService,
-    private accountService: AccountService,
     private configService: ConfigService,
   ) {
     super(keyService, accountApiService);
   }
 
   override async getOrgNameFromOrgInvite(): Promise<string | null> {
-    const orgInvite = await this.acceptOrgInviteService.getOrganizationInvite();
+    const orgInvite = await this.organizationInviteService.getOrganizationInvite();
     if (orgInvite == null) {
       return null;
     }
@@ -50,7 +47,7 @@ export class WebRegistrationFinishService
 
   override async getMasterPasswordPolicyOptsFromOrgInvite(): Promise<MasterPasswordPolicyOptions | null> {
     // If there's a deep linked org invite, use it to get the password policies
-    const orgInvite = await this.acceptOrgInviteService.getOrganizationInvite();
+    const orgInvite = await this.organizationInviteService.getOrganizationInvite();
 
     if (orgInvite == null) {
       return null;
@@ -115,7 +112,7 @@ export class WebRegistrationFinishService
     // web specific logic
     // Org invites are deep linked. Non-existent accounts are redirected to the register page.
     // Org user id and token are included here only for validation and two factor purposes.
-    const orgInvite = await this.acceptOrgInviteService.getOrganizationInvite();
+    const orgInvite = await this.organizationInviteService.getOrganizationInvite();
     if (orgInvite != null) {
       registerRequest.organizationUserId = orgInvite.organizationUserId;
       registerRequest.orgInviteToken = orgInvite.token;
diff --git a/apps/web/src/app/auth/core/services/set-password-jit/web-set-password-jit.service.ts b/apps/web/src/app/auth/core/services/set-password-jit/web-set-password-jit.service.ts
index 62175f1256d..3078b8e3b83 100644
--- a/apps/web/src/app/auth/core/services/set-password-jit/web-set-password-jit.service.ts
+++ b/apps/web/src/app/auth/core/services/set-password-jit/web-set-password-jit.service.ts
@@ -5,16 +5,16 @@ import {
   SetPasswordCredentials,
   SetPasswordJitService,
 } from "@bitwarden/auth/angular";
+import { OrganizationInviteService } from "@bitwarden/common/auth/services/organization-invite/organization-invite.service";
 
 import { RouterService } from "../../../../core/router.service";
-import { AcceptOrganizationInviteService } from "../../../organization-invite/accept-organization.service";
 
 export class WebSetPasswordJitService
   extends DefaultSetPasswordJitService
   implements SetPasswordJitService
 {
   routerService = inject(RouterService);
-  acceptOrganizationInviteService = inject(AcceptOrganizationInviteService);
+  organizationInviteService = inject(OrganizationInviteService);
 
   override async setPassword(credentials: SetPasswordCredentials) {
     await super.setPassword(credentials);
@@ -22,6 +22,6 @@ export class WebSetPasswordJitService
     // SSO JIT accepts org invites when setting their MP, meaning
     // we can clear the deep linked url for accepting it.
     await this.routerService.getAndClearLoginRedirectUrl();
-    await this.acceptOrganizationInviteService.clearOrganizationInvitation();
+    await this.organizationInviteService.clearOrganizationInvitation();
   }
 }
diff --git a/apps/web/src/app/auth/organization-invite/accept-organization.component.ts b/apps/web/src/app/auth/organization-invite/accept-organization.component.ts
index 838a3029711..b60007ca91e 100644
--- a/apps/web/src/app/auth/organization-invite/accept-organization.component.ts
+++ b/apps/web/src/app/auth/organization-invite/accept-organization.component.ts
@@ -4,13 +4,14 @@ import { Component } from "@angular/core";
 import { ActivatedRoute, Params, Router } from "@angular/router";
 
 import { AuthService } from "@bitwarden/common/auth/abstractions/auth.service";
+import { OrganizationInvite } from "@bitwarden/common/auth/services/organization-invite/organization-invite";
+import { OrganizationInviteService } from "@bitwarden/common/auth/services/organization-invite/organization-invite.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
 
 import { BaseAcceptComponent } from "../../common/base.accept.component";
 
 import { AcceptOrganizationInviteService } from "./accept-organization.service";
-import { OrganizationInvite } from "./organization-invite";
 
 @Component({
   templateUrl: "accept-organization.component.html",
@@ -21,18 +22,19 @@ export class AcceptOrganizationComponent extends BaseAcceptComponent {
   protected requiredParameters: string[] = ["organizationId", "organizationUserId", "token"];
 
   constructor(
-    router: Router,
-    platformUtilsService: PlatformUtilsService,
-    i18nService: I18nService,
-    route: ActivatedRoute,
-    authService: AuthService,
+    protected router: Router,
+    protected platformUtilsService: PlatformUtilsService,
+    protected i18nService: I18nService,
+    protected route: ActivatedRoute,
+    protected authService: AuthService,
     private acceptOrganizationInviteService: AcceptOrganizationInviteService,
+    private organizationInviteService: OrganizationInviteService,
   ) {
     super(router, platformUtilsService, i18nService, route, authService);
   }
 
   async authedHandler(qParams: Params): Promise<void> {
-    const invite = OrganizationInvite.fromParams(qParams);
+    const invite = this.fromParams(qParams);
     const success = await this.acceptOrganizationInviteService.validateAndAcceptInvite(invite);
 
     if (!success) {
@@ -52,9 +54,9 @@ export class AcceptOrganizationComponent extends BaseAcceptComponent {
   }
 
   async unauthedHandler(qParams: Params): Promise<void> {
-    const invite = OrganizationInvite.fromParams(qParams);
+    const invite = this.fromParams(qParams);
 
-    await this.acceptOrganizationInviteService.setOrganizationInvitation(invite);
+    await this.organizationInviteService.setOrganizationInvitation(invite);
     await this.navigateInviteAcceptance(invite);
   }
 
@@ -94,4 +96,21 @@ export class AcceptOrganizationComponent extends BaseAcceptComponent {
     });
     return;
   }
+
+  private fromParams(params: Params): OrganizationInvite | null {
+    if (params == null) {
+      return null;
+    }
+
+    return Object.assign(new OrganizationInvite(), {
+      email: params.email,
+      initOrganization: params.initOrganization?.toLocaleLowerCase() === "true",
+      orgSsoIdentifier: params.orgSsoIdentifier,
+      orgUserHasExistingUser: params.orgUserHasExistingUser?.toLocaleLowerCase() === "true",
+      organizationId: params.organizationId,
+      organizationName: params.organizationName,
+      organizationUserId: params.organizationUserId,
+      token: params.token,
+    });
+  }
 }
diff --git a/apps/web/src/app/auth/organization-invite/accept-organization.service.spec.ts b/apps/web/src/app/auth/organization-invite/accept-organization.service.spec.ts
index 253328b0c04..2fd869049bb 100644
--- a/apps/web/src/app/auth/organization-invite/accept-organization.service.spec.ts
+++ b/apps/web/src/app/auth/organization-invite/accept-organization.service.spec.ts
@@ -1,6 +1,5 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
-import { FakeGlobalStateProvider } from "@bitwarden/common/../spec/fake-state-provider";
 import { MockProxy, mock } from "jest-mock-extended";
 import { BehaviorSubject } from "rxjs";
 
@@ -15,22 +14,18 @@ import { ResetPasswordPolicyOptions } from "@bitwarden/common/admin-console/mode
 import { OrganizationKeysResponse } from "@bitwarden/common/admin-console/models/response/organization-keys.response";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { AuthService } from "@bitwarden/common/auth/abstractions/auth.service";
+import { OrganizationInvite } from "@bitwarden/common/auth/services/organization-invite/organization-invite";
+import { OrganizationInviteService } from "@bitwarden/common/auth/services/organization-invite/organization-invite.service";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
 import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
-import { FakeGlobalState } from "@bitwarden/common/spec/fake-state";
 import { OrgKey } from "@bitwarden/common/types/key";
-import { DialogService } from "@bitwarden/components";
 import { KeyService } from "@bitwarden/key-management";
 
 import { I18nService } from "../../core/i18n.service";
 
-import {
-  AcceptOrganizationInviteService,
-  ORGANIZATION_INVITE,
-} from "./accept-organization.service";
-import { OrganizationInvite } from "./organization-invite";
+import { AcceptOrganizationInviteService } from "./accept-organization.service";
 
 describe("AcceptOrganizationInviteService", () => {
   let sut: AcceptOrganizationInviteService;
@@ -43,10 +38,8 @@ describe("AcceptOrganizationInviteService", () => {
   let logService: MockProxy<LogService>;
   let organizationApiService: MockProxy<OrganizationApiServiceAbstraction>;
   let organizationUserApiService: MockProxy<OrganizationUserApiService>;
+  let organizationInviteService: MockProxy<OrganizationInviteService>;
   let i18nService: MockProxy<I18nService>;
-  let globalStateProvider: FakeGlobalStateProvider;
-  let globalState: FakeGlobalState<OrganizationInvite>;
-  let dialogService: MockProxy<DialogService>;
   let accountService: MockProxy<AccountService>;
 
   beforeEach(() => {
@@ -59,10 +52,8 @@ describe("AcceptOrganizationInviteService", () => {
     logService = mock();
     organizationApiService = mock();
     organizationUserApiService = mock();
+    organizationInviteService = mock();
     i18nService = mock();
-    globalStateProvider = new FakeGlobalStateProvider();
-    globalState = globalStateProvider.getFake(ORGANIZATION_INVITE);
-    dialogService = mock();
     accountService = mock();
 
     sut = new AcceptOrganizationInviteService(
@@ -76,8 +67,7 @@ describe("AcceptOrganizationInviteService", () => {
       organizationApiService,
       organizationUserApiService,
       i18nService,
-      globalStateProvider,
-      dialogService,
+      organizationInviteService,
       accountService,
     );
   });
@@ -103,8 +93,10 @@ describe("AcceptOrganizationInviteService", () => {
       expect(result).toBe(true);
       expect(organizationUserApiService.postOrganizationUserAcceptInit).toHaveBeenCalled();
       expect(apiService.refreshIdentityToken).toHaveBeenCalled();
-      expect(globalState.nextMock).toHaveBeenCalledWith(null);
       expect(organizationUserApiService.postOrganizationUserAccept).not.toHaveBeenCalled();
+      expect(organizationInviteService.getOrganizationInvite).not.toHaveBeenCalled();
+      expect(organizationInviteService.setOrganizationInvitation).not.toHaveBeenCalled();
+      expect(organizationInviteService.clearOrganizationInvitation).toHaveBeenCalled();
       expect(authService.logOut).not.toHaveBeenCalled();
     });
 
@@ -121,13 +113,16 @@ describe("AcceptOrganizationInviteService", () => {
 
       expect(result).toBe(false);
       expect(authService.logOut).toHaveBeenCalled();
-      expect(globalState.nextMock).toHaveBeenCalledWith(invite);
+      expect(organizationInviteService.setOrganizationInvitation).toHaveBeenCalledWith(invite);
+      expect(organizationInviteService.clearOrganizationInvitation).toHaveBeenCalled();
     });
 
     it("clears the stored invite when a master password policy check is required but the stored invite doesn't match the provided one", async () => {
       const storedInvite = createOrgInvite({ email: "wrongemail@example.com" });
       const providedInvite = createOrgInvite();
-      await globalState.update(() => storedInvite);
+      organizationInviteService.getOrganizationInvite.mockReturnValueOnce(
+        Promise.resolve(storedInvite),
+      );
       policyApiService.getPoliciesByToken.mockResolvedValue([
         {
           type: PolicyType.MasterPassword,
@@ -139,7 +134,11 @@ describe("AcceptOrganizationInviteService", () => {
 
       expect(result).toBe(false);
       expect(authService.logOut).toHaveBeenCalled();
-      expect(globalState.nextMock).toHaveBeenCalledWith(providedInvite);
+      expect(organizationInviteService.setOrganizationInvitation).toHaveBeenCalledWith(
+        providedInvite,
+      );
+      expect(organizationInviteService.getOrganizationInvite).toHaveBeenCalledWith();
+      expect(organizationInviteService.clearOrganizationInvitation).toHaveBeenCalled();
     });
 
     it("accepts the invitation request when the organization doesn't have a master password policy", async () => {
@@ -151,8 +150,10 @@ describe("AcceptOrganizationInviteService", () => {
       expect(result).toBe(true);
       expect(organizationUserApiService.postOrganizationUserAccept).toHaveBeenCalled();
       expect(apiService.refreshIdentityToken).toHaveBeenCalled();
-      expect(globalState.nextMock).toHaveBeenCalledWith(null);
       expect(organizationUserApiService.postOrganizationUserAcceptInit).not.toHaveBeenCalled();
+      expect(organizationInviteService.setOrganizationInvitation).not.toHaveBeenCalled();
+      expect(organizationInviteService.getOrganizationInvite).not.toHaveBeenCalled();
+      expect(organizationInviteService.clearOrganizationInvitation).toHaveBeenCalled();
       expect(authService.logOut).not.toHaveBeenCalled();
     });
 
@@ -165,7 +166,7 @@ describe("AcceptOrganizationInviteService", () => {
         } as Policy,
       ]);
       // an existing invite means the user has already passed the master password policy
-      await globalState.update(() => invite);
+      organizationInviteService.getOrganizationInvite.mockReturnValueOnce(Promise.resolve(invite));
 
       policyService.getResetPasswordPolicyOptions.mockReturnValue([
         {
@@ -179,6 +180,8 @@ describe("AcceptOrganizationInviteService", () => {
       expect(result).toBe(true);
       expect(organizationUserApiService.postOrganizationUserAccept).toHaveBeenCalled();
       expect(organizationUserApiService.postOrganizationUserAcceptInit).not.toHaveBeenCalled();
+      expect(organizationInviteService.getOrganizationInvite).toHaveBeenCalledWith();
+      expect(organizationInviteService.clearOrganizationInvitation).toHaveBeenCalled();
       expect(authService.logOut).not.toHaveBeenCalled();
     });
 
@@ -202,7 +205,7 @@ describe("AcceptOrganizationInviteService", () => {
         encryptedString: "encryptedString",
       } as EncString);
 
-      await globalState.update(() => invite);
+      organizationInviteService.getOrganizationInvite.mockReturnValueOnce(Promise.resolve(invite));
 
       policyService.getResetPasswordPolicyOptions.mockReturnValue([
         {
@@ -220,6 +223,9 @@ describe("AcceptOrganizationInviteService", () => {
       );
       expect(organizationUserApiService.postOrganizationUserAccept).toHaveBeenCalled();
       expect(organizationUserApiService.postOrganizationUserAcceptInit).not.toHaveBeenCalled();
+      expect(organizationInviteService.getOrganizationInvite).toHaveBeenCalledTimes(1);
+      expect(organizationInviteService.getOrganizationInvite).toHaveBeenCalledWith();
+      expect(organizationInviteService.clearOrganizationInvitation).toHaveBeenCalled();
       expect(authService.logOut).not.toHaveBeenCalled();
     });
   });
diff --git a/apps/web/src/app/auth/organization-invite/accept-organization.service.ts b/apps/web/src/app/auth/organization-invite/accept-organization.service.ts
index c68b174166d..a5f5eb828fa 100644
--- a/apps/web/src/app/auth/organization-invite/accept-organization.service.ts
+++ b/apps/web/src/app/auth/organization-invite/accept-organization.service.ts
@@ -17,36 +17,17 @@ import { Policy } from "@bitwarden/common/admin-console/models/domain/policy";
 import { OrganizationKeysRequest } from "@bitwarden/common/admin-console/models/request/organization-keys.request";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { AuthService } from "@bitwarden/common/auth/abstractions/auth.service";
+import { OrganizationInvite } from "@bitwarden/common/auth/services/organization-invite/organization-invite";
+import { OrganizationInviteService } from "@bitwarden/common/auth/services/organization-invite/organization-invite.service";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
-import {
-  GlobalState,
-  GlobalStateProvider,
-  KeyDefinition,
-  ORGANIZATION_INVITE_DISK,
-} from "@bitwarden/common/platform/state";
 import { OrgKey } from "@bitwarden/common/types/key";
-import { DialogService } from "@bitwarden/components";
 import { KeyService } from "@bitwarden/key-management";
 
-import { OrganizationInvite } from "./organization-invite";
-
-// We're storing the organization invite for 2 reasons:
-// 1. If the org requires a MP policy check, we need to keep track that the user has already been redirected when they return.
-// 2. The MP policy check happens on login/register flows, we need to store the token to retrieve the policies then.
-export const ORGANIZATION_INVITE = new KeyDefinition<OrganizationInvite | null>(
-  ORGANIZATION_INVITE_DISK,
-  "organizationInvite",
-  {
-    deserializer: (invite) => (invite ? OrganizationInvite.fromJSON(invite) : null),
-  },
-);
-
 @Injectable()
 export class AcceptOrganizationInviteService {
-  private organizationInvitationState: GlobalState<OrganizationInvite | null>;
   private orgNameSubject: BehaviorSubject<string> = new BehaviorSubject<string>(null);
   private policyCache: Policy[];
 
@@ -64,34 +45,9 @@ export class AcceptOrganizationInviteService {
     private readonly organizationApiService: OrganizationApiServiceAbstraction,
     private readonly organizationUserApiService: OrganizationUserApiService,
     private readonly i18nService: I18nService,
-    private readonly globalStateProvider: GlobalStateProvider,
-    private readonly dialogService: DialogService,
+    private readonly organizationInviteService: OrganizationInviteService,
     private readonly accountService: AccountService,
-  ) {
-    this.organizationInvitationState = this.globalStateProvider.get(ORGANIZATION_INVITE);
-  }
-
-  /** Returns the currently stored organization invite */
-  async getOrganizationInvite(): Promise<OrganizationInvite | null> {
-    return await firstValueFrom(this.organizationInvitationState.state$);
-  }
-
-  /**
-   * Stores a new organization invite
-   * @param invite an organization invite
-   * @throws if the invite is nullish
-   */
-  async setOrganizationInvitation(invite: OrganizationInvite): Promise<void> {
-    if (invite == null) {
-      throw new Error("Invite cannot be null. Use clearOrganizationInvitation instead.");
-    }
-    await this.organizationInvitationState.update(() => invite);
-  }
-
-  /** Clears the currently stored organization invite */
-  async clearOrganizationInvitation(): Promise<void> {
-    await this.organizationInvitationState.update(() => null);
-  }
+  ) {}
 
   /**
    * Validates and accepts the organization invitation if possible.
@@ -113,7 +69,7 @@ export class AcceptOrganizationInviteService {
 
     // Accepting an org invite from existing org
     if (await this.masterPasswordPolicyCheckRequired(invite)) {
-      await this.setOrganizationInvitation(invite);
+      await this.organizationInviteService.setOrganizationInvitation(invite);
       this.authService.logOut(() => {
         /* Do nothing */
       });
@@ -134,7 +90,7 @@ export class AcceptOrganizationInviteService {
       ),
     );
     await this.apiService.refreshIdentityToken();
-    await this.clearOrganizationInvitation();
+    await this.organizationInviteService.clearOrganizationInvitation();
   }
 
   private async prepareAcceptAndInitRequest(
@@ -170,7 +126,7 @@ export class AcceptOrganizationInviteService {
     );
 
     await this.apiService.refreshIdentityToken();
-    await this.clearOrganizationInvitation();
+    await this.organizationInviteService.clearOrganizationInvitation();
   }
 
   private async prepareAcceptRequest(
@@ -224,10 +180,10 @@ export class AcceptOrganizationInviteService {
       (p) => p.type === PolicyType.MasterPassword && p.enabled,
     );
 
-    let storedInvite = await this.getOrganizationInvite();
+    let storedInvite = await this.organizationInviteService.getOrganizationInvite();
     if (storedInvite?.email !== invite.email) {
       // clear stored invites if the email doesn't match
-      await this.clearOrganizationInvitation();
+      await this.organizationInviteService.clearOrganizationInvitation();
       storedInvite = null;
     }
     // if we don't have an org invite stored, we know the user hasn't been redirected yet to check the MP policy
diff --git a/apps/web/src/app/auth/organization-invite/organization-invite.ts b/apps/web/src/app/auth/organization-invite/organization-invite.ts
deleted file mode 100644
index 65414113e74..00000000000
--- a/apps/web/src/app/auth/organization-invite/organization-invite.ts
+++ /dev/null
@@ -1,40 +0,0 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
-import { Params } from "@angular/router";
-import { Jsonify } from "type-fest";
-
-export class OrganizationInvite {
-  email: string;
-  initOrganization: boolean;
-  orgSsoIdentifier: string;
-  orgUserHasExistingUser: boolean;
-  organizationId: string;
-  organizationName: string;
-  organizationUserId: string;
-  token: string;
-
-  static fromJSON(json: Jsonify<OrganizationInvite>): OrganizationInvite | null {
-    if (json == null) {
-      return null;
-    }
-
-    return Object.assign(new OrganizationInvite(), json);
-  }
-
-  static fromParams(params: Params): OrganizationInvite | null {
-    if (params == null) {
-      return null;
-    }
-
-    return Object.assign(new OrganizationInvite(), {
-      email: params.email,
-      initOrganization: params.initOrganization?.toLocaleLowerCase() === "true",
-      orgSsoIdentifier: params.orgSsoIdentifier,
-      orgUserHasExistingUser: params.orgUserHasExistingUser?.toLocaleLowerCase() === "true",
-      organizationId: params.organizationId,
-      organizationName: params.organizationName,
-      organizationUserId: params.organizationUserId,
-      token: params.token,
-    });
-  }
-}
diff --git a/apps/web/src/app/auth/set-password.component.ts b/apps/web/src/app/auth/set-password.component.ts
index e297426f2c1..f61981a93d3 100644
--- a/apps/web/src/app/auth/set-password.component.ts
+++ b/apps/web/src/app/auth/set-password.component.ts
@@ -1,13 +1,12 @@
 import { Component, inject } from "@angular/core";
 
 import { SetPasswordComponent as BaseSetPasswordComponent } from "@bitwarden/angular/auth/components/set-password.component";
+import { OrganizationInviteService } from "@bitwarden/common/auth/services/organization-invite/organization-invite.service";
 import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { MasterKey, UserKey } from "@bitwarden/common/types/key";
 
 import { RouterService } from "../core";
 
-import { AcceptOrganizationInviteService } from "./organization-invite/accept-organization.service";
-
 @Component({
   selector: "app-set-password",
   templateUrl: "set-password.component.html",
@@ -15,7 +14,7 @@ import { AcceptOrganizationInviteService } from "./organization-invite/accept-or
 })
 export class SetPasswordComponent extends BaseSetPasswordComponent {
   routerService = inject(RouterService);
-  acceptOrganizationInviteService = inject(AcceptOrganizationInviteService);
+  organizationInviteService = inject(OrganizationInviteService);
 
   protected override async onSetPasswordSuccess(
     masterKey: MasterKey,
@@ -26,6 +25,6 @@ export class SetPasswordComponent extends BaseSetPasswordComponent {
     // SSO JIT accepts org invites when setting their MP, meaning
     // we can clear the deep linked url for accepting it.
     await this.routerService.getAndClearLoginRedirectUrl();
-    await this.acceptOrganizationInviteService.clearOrganizationInvitation();
+    await this.organizationInviteService.clearOrganizationInvitation();
   }
 }
diff --git a/apps/web/src/app/auth/settings/change-password.component.ts b/apps/web/src/app/auth/settings/change-password.component.ts
index 15d106057ba..ce10a0e5a34 100644
--- a/apps/web/src/app/auth/settings/change-password.component.ts
+++ b/apps/web/src/app/auth/settings/change-password.component.ts
@@ -43,34 +43,34 @@ export class ChangePasswordComponent
   characterMinimumMessage = "";
 
   constructor(
-    i18nService: I18nService,
-    keyService: KeyService,
-    messagingService: MessagingService,
-    platformUtilsService: PlatformUtilsService,
-    policyService: PolicyService,
     private auditService: AuditService,
     private cipherService: CipherService,
-    private syncService: SyncService,
+    private keyRotationService: UserKeyRotationService,
     private masterPasswordApiService: MasterPasswordApiService,
     private router: Router,
-    dialogService: DialogService,
+    private syncService: SyncService,
     private userVerificationService: UserVerificationService,
-    private keyRotationService: UserKeyRotationService,
-    kdfConfigService: KdfConfigService,
+    protected accountService: AccountService,
+    protected dialogService: DialogService,
+    protected i18nService: I18nService,
+    protected kdfConfigService: KdfConfigService,
+    protected keyService: KeyService,
     protected masterPasswordService: InternalMasterPasswordServiceAbstraction,
-    accountService: AccountService,
-    toastService: ToastService,
+    protected messagingService: MessagingService,
+    protected platformUtilsService: PlatformUtilsService,
+    protected policyService: PolicyService,
+    protected toastService: ToastService,
   ) {
     super(
+      accountService,
+      dialogService,
       i18nService,
+      kdfConfigService,
       keyService,
+      masterPasswordService,
       messagingService,
       platformUtilsService,
       policyService,
-      dialogService,
-      kdfConfigService,
-      masterPasswordService,
-      accountService,
       toastService,
     );
   }
@@ -244,8 +244,7 @@ export class ChangePasswordComponent
       await this.masterPasswordApiService.postPassword(request);
       this.toastService.showToast({
         variant: "success",
-        title: this.i18nService.t("masterPasswordChanged"),
-        message: this.i18nService.t("masterPasswordChangedDesc"),
+        message: this.i18nService.t("masterPasswordChanged"),
       });
       this.messagingService.send("logout");
     } catch {
diff --git a/apps/web/src/app/auth/settings/emergency-access/takeover/emergency-access-takeover.component.ts b/apps/web/src/app/auth/settings/emergency-access/takeover/emergency-access-takeover.component.ts
index d683545db59..ede60887725 100644
--- a/apps/web/src/app/auth/settings/emergency-access/takeover/emergency-access-takeover.component.ts
+++ b/apps/web/src/app/auth/settings/emergency-access/takeover/emergency-access-takeover.component.ts
@@ -71,15 +71,15 @@ export class EmergencyAccessTakeoverComponent
     protected toastService: ToastService,
   ) {
     super(
+      accountService,
+      dialogService,
       i18nService,
+      kdfConfigService,
       keyService,
+      masterPasswordService,
       messagingService,
       platformUtilsService,
       policyService,
-      dialogService,
-      kdfConfigService,
-      masterPasswordService,
-      accountService,
       toastService,
     );
   }
diff --git a/apps/web/src/app/auth/settings/security/password-settings/password-settings.component.html b/apps/web/src/app/auth/settings/security/password-settings/password-settings.component.html
index fc6620762f9..b918e113e46 100644
--- a/apps/web/src/app/auth/settings/security/password-settings/password-settings.component.html
+++ b/apps/web/src/app/auth/settings/security/password-settings/password-settings.component.html
@@ -1,7 +1,6 @@
 <h1 class="tw-mt-6 tw-mb-2 tw-pb-2.5">{{ "changeMasterPassword" | i18n }}</h1>
 
 <div class="tw-max-w-lg tw-mb-12">
-  <bit-callout type="warning">{{ "loggedOutWarning" | i18n }}</bit-callout>
   <auth-change-password [inputPasswordFlow]="inputPasswordFlow"></auth-change-password>
 </div>
 
diff --git a/apps/web/src/app/auth/settings/security/password-settings/password-settings.component.ts b/apps/web/src/app/auth/settings/security/password-settings/password-settings.component.ts
index d94df18136e..0698ffe1f8d 100644
--- a/apps/web/src/app/auth/settings/security/password-settings/password-settings.component.ts
+++ b/apps/web/src/app/auth/settings/security/password-settings/password-settings.component.ts
@@ -2,7 +2,8 @@ import { Component, OnInit } from "@angular/core";
 import { Router } from "@angular/router";
 import { firstValueFrom } from "rxjs";
 
-import { ChangePasswordComponent, InputPasswordFlow } from "@bitwarden/auth/angular";
+import { ChangePasswordComponent } from "@bitwarden/angular/auth/password-management/change-password";
+import { InputPasswordFlow } from "@bitwarden/auth/angular";
 import { UserDecryptionOptionsServiceAbstraction } from "@bitwarden/auth/common";
 import { CalloutModule } from "@bitwarden/components";
 import { I18nPipe } from "@bitwarden/ui-common";
@@ -16,6 +17,7 @@ import { WebauthnLoginSettingsModule } from "../../webauthn-login-settings";
 })
 export class PasswordSettingsComponent implements OnInit {
   inputPasswordFlow = InputPasswordFlow.ChangePasswordWithOptionalUserKeyRotation;
+  changePasswordFeatureFlag = false;
 
   constructor(
     private router: Router,
diff --git a/apps/web/src/app/auth/update-password.component.ts b/apps/web/src/app/auth/update-password.component.ts
index c975f7c4168..bc53f824228 100644
--- a/apps/web/src/app/auth/update-password.component.ts
+++ b/apps/web/src/app/auth/update-password.component.ts
@@ -1,11 +1,10 @@
 import { Component, inject } from "@angular/core";
 
 import { UpdatePasswordComponent as BaseUpdatePasswordComponent } from "@bitwarden/angular/auth/components/update-password.component";
+import { OrganizationInviteService } from "@bitwarden/common/auth/services/organization-invite/organization-invite.service";
 
 import { RouterService } from "../core";
 
-import { AcceptOrganizationInviteService } from "./organization-invite/accept-organization.service";
-
 @Component({
   selector: "app-update-password",
   templateUrl: "update-password.component.html",
@@ -13,13 +12,13 @@ import { AcceptOrganizationInviteService } from "./organization-invite/accept-or
 })
 export class UpdatePasswordComponent extends BaseUpdatePasswordComponent {
   private routerService = inject(RouterService);
-  private acceptOrganizationInviteService = inject(AcceptOrganizationInviteService);
+  private organizationInviteService = inject(OrganizationInviteService);
 
   override async cancel() {
     // clearing the login redirect url so that the user
     // does not join the organization if they cancel
     await this.routerService.getAndClearLoginRedirectUrl();
-    await this.acceptOrganizationInviteService.clearOrganizationInvitation();
+    await this.organizationInviteService.clearOrganizationInvitation();
     await super.cancel();
   }
 }
diff --git a/apps/web/src/app/billing/trial-initiation/complete-trial-initiation/complete-trial-initiation.component.ts b/apps/web/src/app/billing/trial-initiation/complete-trial-initiation/complete-trial-initiation.component.ts
index 2b927f6db09..ce02ee8715a 100644
--- a/apps/web/src/app/billing/trial-initiation/complete-trial-initiation/complete-trial-initiation.component.ts
+++ b/apps/web/src/app/billing/trial-initiation/complete-trial-initiation/complete-trial-initiation.component.ts
@@ -18,6 +18,7 @@ import { MasterPasswordPolicyOptions } from "@bitwarden/common/admin-console/mod
 import { Policy } from "@bitwarden/common/admin-console/models/domain/policy";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { getUserId } from "@bitwarden/common/auth/services/account.service";
+import { OrganizationInviteService } from "@bitwarden/common/auth/services/organization-invite/organization-invite.service";
 import {
   OrganizationBillingServiceAbstraction as OrganizationBillingService,
   OrganizationInformation,
@@ -31,7 +32,6 @@ import { LogService } from "@bitwarden/common/platform/abstractions/log.service"
 import { ValidationService } from "@bitwarden/common/platform/abstractions/validation.service";
 import { ToastService } from "@bitwarden/components";
 
-import { AcceptOrganizationInviteService } from "../../../auth/organization-invite/accept-organization.service";
 import {
   OrganizationCreatedEvent,
   SubscriptionProduct,
@@ -115,7 +115,7 @@ export class CompleteTrialInitiationComponent implements OnInit, OnDestroy {
     private i18nService: I18nService,
     private routerService: RouterService,
     private organizationBillingService: OrganizationBillingService,
-    private acceptOrganizationInviteService: AcceptOrganizationInviteService,
+    private organizationInviteService: OrganizationInviteService,
     private toastService: ToastService,
     private registrationFinishService: RegistrationFinishService,
     private validationService: ValidationService,
@@ -174,7 +174,7 @@ export class CompleteTrialInitiationComponent implements OnInit, OnDestroy {
       this.setupFamilySponsorship(qParams.sponsorshipToken);
     });
 
-    const invite = await this.acceptOrganizationInviteService.getOrganizationInvite();
+    const invite = await this.organizationInviteService.getOrganizationInvite();
     let policies: Policy[] | null = null;
 
     if (invite != null) {
diff --git a/apps/web/src/app/core/core.module.ts b/apps/web/src/app/core/core.module.ts
index b8baa762e91..9cfe3117d40 100644
--- a/apps/web/src/app/core/core.module.ts
+++ b/apps/web/src/app/core/core.module.ts
@@ -10,6 +10,7 @@ import {
   OrganizationUserApiService,
   CollectionService,
 } from "@bitwarden/admin-console/common";
+import { ChangePasswordService } from "@bitwarden/angular/auth/password-management/change-password";
 import { SetInitialPasswordService } from "@bitwarden/angular/auth/password-management/set-initial-password/set-initial-password.service.abstraction";
 import { SafeProvider, safeProvider } from "@bitwarden/angular/platform/utils/safe-provider";
 import {
@@ -34,7 +35,6 @@ import {
   SsoComponentService,
   LoginDecryptionOptionsService,
   TwoFactorAuthDuoComponentService,
-  ChangePasswordService,
 } from "@bitwarden/auth/angular";
 import {
   InternalUserDecryptionOptionsServiceAbstraction,
@@ -52,6 +52,7 @@ import { AccountService } from "@bitwarden/common/auth/abstractions/account.serv
 import { AuthService } from "@bitwarden/common/auth/abstractions/auth.service";
 import { MasterPasswordApiService } from "@bitwarden/common/auth/abstractions/master-password-api.service.abstraction";
 import { SsoLoginServiceAbstraction } from "@bitwarden/common/auth/abstractions/sso-login.service.abstraction";
+import { OrganizationInviteService } from "@bitwarden/common/auth/services/organization-invite/organization-invite.service";
 import { ClientType } from "@bitwarden/common/enums";
 import { ProcessReloadServiceAbstraction } from "@bitwarden/common/key-management/abstractions/process-reload.service";
 import { CryptoFunctionService } from "@bitwarden/common/key-management/crypto/abstractions/crypto-function.service";
@@ -108,6 +109,7 @@ import {
 } from "@bitwarden/key-management";
 import { LockComponentService } from "@bitwarden/key-management-ui";
 import { DefaultSshImportPromptService, SshImportPromptService } from "@bitwarden/vault";
+import { WebOrganizationInviteService } from "@bitwarden/web-vault/app/auth/core/services/organization-invite/web-organization-invite.service";
 
 import { flagEnabled } from "../../utils/flags";
 import { PolicyListService } from "../admin-console/core/policy-list.service";
@@ -122,7 +124,6 @@ import {
   WebSetInitialPasswordService,
 } from "../auth";
 import { WebSsoComponentService } from "../auth/core/services/login/web-sso-component.service";
-import { AcceptOrganizationInviteService } from "../auth/organization-invite/accept-organization.service";
 import { HtmlStorageService } from "../core/html-storage.service";
 import { I18nService } from "../core/i18n.service";
 import { WebFileDownloadService } from "../core/web-file-download.service";
@@ -246,17 +247,21 @@ const safeProviders: SafeProvider[] = [
     provide: CLIENT_TYPE,
     useValue: ClientType.Web,
   }),
+  safeProvider({
+    provide: OrganizationInviteService,
+    useClass: WebOrganizationInviteService,
+    deps: [GlobalStateProvider],
+  }),
   safeProvider({
     provide: RegistrationFinishServiceAbstraction,
     useClass: WebRegistrationFinishService,
     deps: [
       KeyServiceAbstraction,
       AccountApiServiceAbstraction,
-      AcceptOrganizationInviteService,
+      OrganizationInviteService,
       PolicyApiServiceAbstraction,
       LogService,
       PolicyService,
-      AccountService,
       ConfigService,
     ],
   }),
@@ -275,12 +280,11 @@ const safeProviders: SafeProvider[] = [
     provide: SetPasswordJitService,
     useClass: WebSetPasswordJitService,
     deps: [
-      ApiService,
-      MasterPasswordApiService,
-      KeyServiceAbstraction,
       EncryptService,
       I18nServiceAbstraction,
       KdfConfigService,
+      KeyServiceAbstraction,
+      MasterPasswordApiService,
       InternalMasterPasswordServiceAbstraction,
       OrganizationApiServiceAbstraction,
       OrganizationUserApiService,
@@ -301,7 +305,7 @@ const safeProviders: SafeProvider[] = [
       OrganizationApiServiceAbstraction,
       OrganizationUserApiService,
       InternalUserDecryptionOptionsServiceAbstraction,
-      AcceptOrganizationInviteService,
+      OrganizationInviteService,
       RouterService,
     ],
   }),
@@ -314,7 +318,7 @@ const safeProviders: SafeProvider[] = [
     provide: LoginComponentService,
     useClass: WebLoginComponentService,
     deps: [
-      AcceptOrganizationInviteService,
+      OrganizationInviteService,
       LogService,
       PolicyApiServiceAbstraction,
       InternalPolicyService,
@@ -326,6 +330,7 @@ const safeProviders: SafeProvider[] = [
       SsoLoginServiceAbstraction,
       Router,
       AccountService,
+      ConfigService,
     ],
   }),
   safeProvider({
@@ -378,7 +383,7 @@ const safeProviders: SafeProvider[] = [
   safeProvider({
     provide: LoginDecryptionOptionsService,
     useClass: WebLoginDecryptionOptionsService,
-    deps: [MessagingService, RouterService, AcceptOrganizationInviteService],
+    deps: [MessagingService, RouterService, OrganizationInviteService],
   }),
   safeProvider({
     provide: IpcService,
@@ -398,6 +403,7 @@ const safeProviders: SafeProvider[] = [
       MasterPasswordApiService,
       InternalMasterPasswordServiceAbstraction,
       UserKeyRotationService,
+      RouterService,
     ],
   }),
 ];
diff --git a/apps/web/src/app/oss-routing.module.ts b/apps/web/src/app/oss-routing.module.ts
index 31b9ca26e70..d3e7fc495ca 100644
--- a/apps/web/src/app/oss-routing.module.ts
+++ b/apps/web/src/app/oss-routing.module.ts
@@ -10,6 +10,7 @@ import {
   unauthGuardFn,
   activeAuthGuard,
 } from "@bitwarden/angular/auth/guards";
+import { ChangePasswordComponent } from "@bitwarden/angular/auth/password-management/change-password";
 import { SetInitialPasswordComponent } from "@bitwarden/angular/auth/password-management/set-initial-password/set-initial-password.component";
 import { canAccessFeature } from "@bitwarden/angular/platform/guard/feature-flag.guard";
 import {
@@ -144,13 +145,29 @@ const routes: Routes = [
       {
         path: "update-temp-password",
         component: UpdateTempPasswordComponent,
-        canActivate: [authGuard],
+        canActivate: [
+          canAccessFeature(
+            FeatureFlag.PM16117_ChangeExistingPasswordRefactor,
+            false,
+            "change-password",
+            false,
+          ),
+          authGuard,
+        ],
         data: { titleId: "updateTempPassword" } satisfies RouteDataProperties,
       },
       {
         path: "update-password",
         component: UpdatePasswordComponent,
-        canActivate: [authGuard],
+        canActivate: [
+          canAccessFeature(
+            FeatureFlag.PM16117_ChangeExistingPasswordRefactor,
+            false,
+            "change-password",
+            false,
+          ),
+          authGuard,
+        ],
         data: { titleId: "updatePassword" } satisfies RouteDataProperties,
       },
     ],
@@ -580,6 +597,14 @@ const routes: Routes = [
           },
         ],
       },
+      {
+        path: "change-password",
+        component: ChangePasswordComponent,
+        canActivate: [
+          canAccessFeature(FeatureFlag.PM16117_ChangeExistingPasswordRefactor),
+          authGuard,
+        ],
+      },
       {
         path: "setup-extension",
         data: {
diff --git a/apps/web/src/locales/en/messages.json b/apps/web/src/locales/en/messages.json
index bc2e49e85cd..50a2cdbc4a9 100644
--- a/apps/web/src/locales/en/messages.json
+++ b/apps/web/src/locales/en/messages.json
@@ -1785,6 +1785,9 @@
   "loggedOutWarning": {
     "message": "Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "Email saved"
   },
@@ -6077,6 +6080,12 @@
   "updateMasterPassword": {
     "message": "Update master password"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "Your master password was recently changed by an administrator in your organization. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
diff --git a/libs/angular/src/auth/components/change-password.component.ts b/libs/angular/src/auth/components/change-password.component.ts
index ca81f741b23..6adb684681c 100644
--- a/libs/angular/src/auth/components/change-password.component.ts
+++ b/libs/angular/src/auth/components/change-password.component.ts
@@ -37,15 +37,15 @@ export class ChangePasswordComponent implements OnInit, OnDestroy {
   protected destroy$ = new Subject<void>();
 
   constructor(
+    protected accountService: AccountService,
+    protected dialogService: DialogService,
     protected i18nService: I18nService,
+    protected kdfConfigService: KdfConfigService,
     protected keyService: KeyService,
+    protected masterPasswordService: InternalMasterPasswordServiceAbstraction,
     protected messagingService: MessagingService,
     protected platformUtilsService: PlatformUtilsService,
     protected policyService: PolicyService,
-    protected dialogService: DialogService,
-    protected kdfConfigService: KdfConfigService,
-    protected masterPasswordService: InternalMasterPasswordServiceAbstraction,
-    protected accountService: AccountService,
     protected toastService: ToastService,
   ) {}
 
diff --git a/libs/angular/src/auth/components/set-password.component.ts b/libs/angular/src/auth/components/set-password.component.ts
index 53f6abaa33c..1550b648734 100644
--- a/libs/angular/src/auth/components/set-password.component.ts
+++ b/libs/angular/src/auth/components/set-password.component.ts
@@ -14,7 +14,6 @@ import {
 // This import has been flagged as unallowed for this class. It may be involved in a circular dependency loop.
 // eslint-disable-next-line no-restricted-imports
 import { InternalUserDecryptionOptionsServiceAbstraction } from "@bitwarden/auth/common";
-import { ApiService } from "@bitwarden/common/abstractions/api.service";
 import { OrganizationApiServiceAbstraction } from "@bitwarden/common/admin-console/abstractions/organization/organization-api.service.abstraction";
 import { PolicyApiServiceAbstraction } from "@bitwarden/common/admin-console/abstractions/policy/policy-api.service.abstraction";
 import { PolicyService } from "@bitwarden/common/admin-console/abstractions/policy/policy.service.abstraction";
@@ -58,38 +57,37 @@ export class SetPasswordComponent extends BaseChangePasswordComponent implements
   ForceSetPasswordReason = ForceSetPasswordReason;
 
   constructor(
-    accountService: AccountService,
-    masterPasswordService: InternalMasterPasswordServiceAbstraction,
-    i18nService: I18nService,
-    keyService: KeyService,
-    messagingService: MessagingService,
-    platformUtilsService: PlatformUtilsService,
-    private policyApiService: PolicyApiServiceAbstraction,
-    policyService: PolicyService,
+    protected accountService: AccountService,
+    protected dialogService: DialogService,
+    protected encryptService: EncryptService,
+    protected i18nService: I18nService,
+    protected kdfConfigService: KdfConfigService,
+    protected keyService: KeyService,
+    protected masterPasswordApiService: MasterPasswordApiService,
+    protected masterPasswordService: InternalMasterPasswordServiceAbstraction,
+    protected messagingService: MessagingService,
+    protected organizationApiService: OrganizationApiServiceAbstraction,
+    protected organizationUserApiService: OrganizationUserApiService,
+    protected platformUtilsService: PlatformUtilsService,
+    protected policyApiService: PolicyApiServiceAbstraction,
+    protected policyService: PolicyService,
+    protected route: ActivatedRoute,
     protected router: Router,
-    private masterPasswordApiService: MasterPasswordApiService,
-    private apiService: ApiService,
-    private syncService: SyncService,
-    private route: ActivatedRoute,
-    private organizationApiService: OrganizationApiServiceAbstraction,
-    private organizationUserApiService: OrganizationUserApiService,
-    private userDecryptionOptionsService: InternalUserDecryptionOptionsServiceAbstraction,
-    private ssoLoginService: SsoLoginServiceAbstraction,
-    dialogService: DialogService,
-    kdfConfigService: KdfConfigService,
-    private encryptService: EncryptService,
+    protected ssoLoginService: SsoLoginServiceAbstraction,
+    protected syncService: SyncService,
     protected toastService: ToastService,
+    protected userDecryptionOptionsService: InternalUserDecryptionOptionsServiceAbstraction,
   ) {
     super(
+      accountService,
+      dialogService,
       i18nService,
+      kdfConfigService,
       keyService,
+      masterPasswordService,
       messagingService,
       platformUtilsService,
       policyService,
-      dialogService,
-      kdfConfigService,
-      masterPasswordService,
-      accountService,
       toastService,
     );
   }
diff --git a/libs/angular/src/auth/components/update-password.component.ts b/libs/angular/src/auth/components/update-password.component.ts
index 47affbecdf2..839c3b24ebf 100644
--- a/libs/angular/src/auth/components/update-password.component.ts
+++ b/libs/angular/src/auth/components/update-password.component.ts
@@ -52,15 +52,15 @@ export class UpdatePasswordComponent extends BaseChangePasswordComponent {
     toastService: ToastService,
   ) {
     super(
+      accountService,
+      dialogService,
       i18nService,
+      kdfConfigService,
       keyService,
+      masterPasswordService,
       messagingService,
       platformUtilsService,
       policyService,
-      dialogService,
-      kdfConfigService,
-      masterPasswordService,
-      accountService,
       toastService,
     );
   }
diff --git a/libs/angular/src/auth/components/update-temp-password.component.ts b/libs/angular/src/auth/components/update-temp-password.component.ts
index db2f319998a..87db26a6b59 100644
--- a/libs/angular/src/auth/components/update-temp-password.component.ts
+++ b/libs/angular/src/auth/components/update-temp-password.component.ts
@@ -64,15 +64,15 @@ export class UpdateTempPasswordComponent extends BaseChangePasswordComponent imp
     toastService: ToastService,
   ) {
     super(
+      accountService,
+      dialogService,
       i18nService,
+      kdfConfigService,
       keyService,
+      masterPasswordService,
       messagingService,
       platformUtilsService,
       policyService,
-      dialogService,
-      kdfConfigService,
-      masterPasswordService,
-      accountService,
       toastService,
     );
   }
diff --git a/libs/angular/src/auth/guards/auth.guard.ts b/libs/angular/src/auth/guards/auth.guard.ts
index 58ee3a59bbe..3722a7c802a 100644
--- a/libs/angular/src/auth/guards/auth.guard.ts
+++ b/libs/angular/src/auth/guards/auth.guard.ts
@@ -47,9 +47,6 @@ export const authGuard: CanActivateFn = async (
   const isSetInitialPasswordFlagOn = await configService.getFeatureFlag(
     FeatureFlag.PM16117_SetInitialPasswordRefactor,
   );
-  const isChangePasswordFlagOn = await configService.getFeatureFlag(
-    FeatureFlag.PM16117_ChangeExistingPasswordRefactor,
-  );
 
   // User JIT provisioned into a master-password-encryption org
   if (
@@ -114,6 +111,10 @@ export const authGuard: CanActivateFn = async (
     return router.createUrlTree([route]);
   }
 
+  const isChangePasswordFlagOn = await configService.getFeatureFlag(
+    FeatureFlag.PM16117_ChangeExistingPasswordRefactor,
+  );
+
   // Post- Account Recovery or Weak Password on login
   if (
     (forceSetPasswordReason === ForceSetPasswordReason.AdminForcePasswordReset ||
diff --git a/libs/auth/src/angular/change-password/change-password.component.html b/libs/angular/src/auth/password-management/change-password/change-password.component.html
similarity index 67%
rename from libs/auth/src/angular/change-password/change-password.component.html
rename to libs/angular/src/auth/password-management/change-password/change-password.component.html
index fff873225be..7604ffacea7 100644
--- a/libs/auth/src/angular/change-password/change-password.component.html
+++ b/libs/angular/src/auth/password-management/change-password/change-password.component.html
@@ -6,6 +6,12 @@
   ></i>
   <span class="tw-sr-only">{{ "loading" | i18n }}</span>
 } @else {
+  <bit-callout
+    *ngIf="this.forceSetPasswordReason !== ForceSetPasswordReason.AdminForcePasswordReset"
+    type="warning"
+    >{{ "changePasswordWarning" | i18n }}</bit-callout
+  >
+
   <auth-input-password
     [flow]="inputPasswordFlow"
     [email]="email"
@@ -15,6 +21,8 @@
     [inlineButtons]="true"
     [primaryButtonText]="{ key: 'changeMasterPassword' }"
     (onPasswordFormSubmit)="handlePasswordFormSubmit($event)"
+    [secondaryButtonText]="secondaryButtonText()"
+    (onSecondaryButtonClick)="logOut()"
   >
   </auth-input-password>
 }
diff --git a/libs/angular/src/auth/password-management/change-password/change-password.component.ts b/libs/angular/src/auth/password-management/change-password/change-password.component.ts
new file mode 100644
index 00000000000..78128962384
--- /dev/null
+++ b/libs/angular/src/auth/password-management/change-password/change-password.component.ts
@@ -0,0 +1,202 @@
+import { Component, Input, OnInit } from "@angular/core";
+import { firstValueFrom } from "rxjs";
+
+// This import has been flagged as unallowed for this class. It may be involved in a circular dependency loop.
+// eslint-disable-next-line no-restricted-imports
+import {
+  InputPasswordComponent,
+  InputPasswordFlow,
+  PasswordInputResult,
+} from "@bitwarden/auth/angular";
+import { PolicyService } from "@bitwarden/common/admin-console/abstractions/policy/policy.service.abstraction";
+import { MasterPasswordPolicyOptions } from "@bitwarden/common/admin-console/models/domain/master-password-policy-options";
+import { Account, AccountService } from "@bitwarden/common/auth/abstractions/account.service";
+import { ForceSetPasswordReason } from "@bitwarden/common/auth/models/domain/force-set-password-reason";
+import { OrganizationInviteService } from "@bitwarden/common/auth/services/organization-invite/organization-invite.service";
+import { InternalMasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
+import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
+import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
+import { SyncService } from "@bitwarden/common/platform/sync";
+import { UserId } from "@bitwarden/common/types/guid";
+import {
+  AnonLayoutWrapperDataService,
+  DialogService,
+  ToastService,
+  Icons,
+  CalloutComponent,
+} from "@bitwarden/components";
+import { I18nPipe } from "@bitwarden/ui-common";
+
+import { ChangePasswordService } from "./change-password.service.abstraction";
+
+/**
+ * Change Password Component
+ *
+ * NOTE: The change password component uses the input-password component which will show the
+ * current password input form in some flows, although it could be left off. This is intentional
+ * and by design to maintain a strong security posture as some flows could have the user
+ * end up at a change password without having one before.
+ */
+@Component({
+  selector: "auth-change-password",
+  templateUrl: "change-password.component.html",
+  imports: [InputPasswordComponent, I18nPipe, CalloutComponent],
+})
+export class ChangePasswordComponent implements OnInit {
+  @Input() inputPasswordFlow: InputPasswordFlow = InputPasswordFlow.ChangePassword;
+
+  activeAccount: Account | null = null;
+  email?: string;
+  userId?: UserId;
+  masterPasswordPolicyOptions?: MasterPasswordPolicyOptions;
+  initializing = true;
+  submitting = false;
+  formPromise?: Promise<any>;
+  forceSetPasswordReason: ForceSetPasswordReason = ForceSetPasswordReason.None;
+
+  protected readonly ForceSetPasswordReason = ForceSetPasswordReason;
+
+  constructor(
+    private accountService: AccountService,
+    private changePasswordService: ChangePasswordService,
+    private i18nService: I18nService,
+    private masterPasswordService: InternalMasterPasswordServiceAbstraction,
+    private anonLayoutWrapperDataService: AnonLayoutWrapperDataService,
+    private organizationInviteService: OrganizationInviteService,
+    private messagingService: MessagingService,
+    private policyService: PolicyService,
+    private toastService: ToastService,
+    private syncService: SyncService,
+    private dialogService: DialogService,
+    private logService: LogService,
+  ) {}
+
+  async ngOnInit() {
+    this.activeAccount = await firstValueFrom(this.accountService.activeAccount$);
+
+    if (!this.activeAccount) {
+      throw new Error("No active active account found while trying to change passwords.");
+    }
+
+    this.userId = this.activeAccount.id;
+    this.email = this.activeAccount.email;
+
+    if (!this.userId) {
+      throw new Error("userId not found");
+    }
+
+    this.masterPasswordPolicyOptions = await firstValueFrom(
+      this.policyService.masterPasswordPolicyOptions$(this.userId),
+    );
+
+    this.forceSetPasswordReason = await firstValueFrom(
+      this.masterPasswordService.forceSetPasswordReason$(this.userId),
+    );
+
+    if (this.forceSetPasswordReason === ForceSetPasswordReason.AdminForcePasswordReset) {
+      this.anonLayoutWrapperDataService.setAnonLayoutWrapperData({
+        pageIcon: Icons.LockIcon,
+        pageTitle: { key: "updateMasterPassword" },
+        pageSubtitle: { key: "accountRecoveryUpdateMasterPasswordSubtitle" },
+      });
+    } else if (this.forceSetPasswordReason === ForceSetPasswordReason.WeakMasterPassword) {
+      this.anonLayoutWrapperDataService.setAnonLayoutWrapperData({
+        pageIcon: Icons.LockIcon,
+        pageTitle: { key: "updateMasterPassword" },
+        pageSubtitle: { key: "updateMasterPasswordSubtitle" },
+        maxWidth: "lg",
+      });
+    }
+
+    this.initializing = false;
+  }
+
+  async logOut() {
+    const confirmed = await this.dialogService.openSimpleDialog({
+      title: { key: "logOut" },
+      content: { key: "logOutConfirmation" },
+      acceptButtonText: { key: "logOut" },
+      type: "warning",
+    });
+
+    if (confirmed) {
+      await this.organizationInviteService.clearOrganizationInvitation();
+
+      if (this.changePasswordService.clearDeeplinkState) {
+        await this.changePasswordService.clearDeeplinkState();
+      }
+
+      // TODO: PM-23515 eventually use the logout service instead of messaging service once it is available without circular dependencies
+      this.messagingService.send("logout");
+    }
+  }
+
+  async handlePasswordFormSubmit(passwordInputResult: PasswordInputResult) {
+    this.submitting = true;
+
+    try {
+      if (passwordInputResult.rotateUserKey) {
+        if (this.activeAccount == null) {
+          throw new Error("activeAccount not found");
+        }
+
+        if (
+          passwordInputResult.currentPassword == null ||
+          passwordInputResult.newPasswordHint == null
+        ) {
+          throw new Error("currentPassword or newPasswordHint not found");
+        }
+
+        await this.syncService.fullSync(true);
+
+        await this.changePasswordService.rotateUserKeyMasterPasswordAndEncryptedData(
+          passwordInputResult.currentPassword,
+          passwordInputResult.newPassword,
+          this.activeAccount,
+          passwordInputResult.newPasswordHint,
+        );
+      } else {
+        if (!this.userId) {
+          throw new Error("userId not found");
+        }
+
+        if (this.forceSetPasswordReason === ForceSetPasswordReason.AdminForcePasswordReset) {
+          await this.changePasswordService.changePasswordForAccountRecovery(
+            passwordInputResult,
+            this.userId,
+          );
+        } else {
+          await this.changePasswordService.changePassword(passwordInputResult, this.userId);
+        }
+
+        this.toastService.showToast({
+          variant: "success",
+          message: this.i18nService.t("masterPasswordChanged"),
+        });
+
+        // TODO: PM-23515 eventually use the logout service instead of messaging service once it is available without circular dependencies
+        this.messagingService.send("logout");
+      }
+    } catch (error) {
+      this.logService.error(error);
+      this.toastService.showToast({
+        variant: "error",
+        title: "",
+        message: this.i18nService.t("errorOccurred"),
+      });
+    } finally {
+      this.submitting = false;
+    }
+  }
+
+  /**
+   * Shows the logout button in the case of admin force reset password or weak password upon login.
+   */
+  protected secondaryButtonText(): { key: string } | undefined {
+    return this.forceSetPasswordReason === ForceSetPasswordReason.AdminForcePasswordReset ||
+      this.forceSetPasswordReason === ForceSetPasswordReason.WeakMasterPassword
+      ? { key: "logOut" }
+      : undefined;
+  }
+}
diff --git a/libs/auth/src/angular/change-password/change-password.service.abstraction.ts b/libs/angular/src/auth/password-management/change-password/change-password.service.abstraction.ts
similarity index 56%
rename from libs/auth/src/angular/change-password/change-password.service.abstraction.ts
rename to libs/angular/src/auth/password-management/change-password/change-password.service.abstraction.ts
index b036db439f8..2fd3bbae67a 100644
--- a/libs/auth/src/angular/change-password/change-password.service.abstraction.ts
+++ b/libs/angular/src/auth/password-management/change-password/change-password.service.abstraction.ts
@@ -1,3 +1,5 @@
+// This import has been flagged as unallowed for this class. It may be involved in a circular dependency loop.
+// eslint-disable-next-line no-restricted-imports
 import { PasswordInputResult } from "@bitwarden/auth/angular";
 import { Account } from "@bitwarden/common/auth/abstractions/account.service";
 import { UserId } from "@bitwarden/common/types/guid";
@@ -32,5 +34,29 @@ export abstract class ChangePasswordService {
    * @param userId the `userId`
    * @throws if the `userId`, `currentMasterKey`, or `currentServerMasterKeyHash` is not found
    */
-  abstract changePassword(passwordInputResult: PasswordInputResult, userId: UserId): Promise<void>;
+  abstract changePassword(
+    passwordInputResult: PasswordInputResult,
+    userId: UserId | null,
+  ): Promise<void>;
+
+  /**
+   * Changes the user's password and re-encrypts the user key with the `newMasterKey`.
+   * - Specifically, this method uses credentials from the `passwordInputResult` to:
+   *   1. Decrypt the user key with the `currentMasterKey`
+   *   2. Re-encrypt that user key with the `newMasterKey`, resulting in a `newMasterKeyEncryptedUserKey`
+   *   3. Build a `PasswordRequest` object that gets PUTed to `"/accounts/update-temp-password"` so that the
+   *        ForcePasswordReset gets set to false.
+   * @param passwordInputResult
+   * @param userId
+   */
+  abstract changePasswordForAccountRecovery(
+    passwordInputResult: PasswordInputResult,
+    userId: UserId,
+  ): Promise<void>;
+
+  /**
+   * Optional method that will clear up any deep link state.
+   * - Currently only used on the web change password service.
+   */
+  clearDeeplinkState?: () => Promise<void>;
 }
diff --git a/libs/auth/src/angular/change-password/default-change-password.service.spec.ts b/libs/angular/src/auth/password-management/change-password/default-change-password.service.spec.ts
similarity index 77%
rename from libs/auth/src/angular/change-password/default-change-password.service.spec.ts
rename to libs/angular/src/auth/password-management/change-password/default-change-password.service.spec.ts
index add2e62adbc..78969c61610 100644
--- a/libs/auth/src/angular/change-password/default-change-password.service.spec.ts
+++ b/libs/angular/src/auth/password-management/change-password/default-change-password.service.spec.ts
@@ -1,5 +1,8 @@
 import { mock, MockProxy } from "jest-mock-extended";
 
+// This import has been flagged as unallowed for this class. It may be involved in a circular dependency loop.
+// eslint-disable-next-line no-restricted-imports
+import { PasswordInputResult } from "@bitwarden/auth/angular";
 import { Account } from "@bitwarden/common/auth/abstractions/account.service";
 import { MasterPasswordApiService } from "@bitwarden/common/auth/abstractions/master-password-api.service.abstraction";
 import { InternalMasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
@@ -9,8 +12,6 @@ import { UserId } from "@bitwarden/common/types/guid";
 import { MasterKey, UserKey } from "@bitwarden/common/types/key";
 import { KeyService, PBKDF2KdfConfig } from "@bitwarden/key-management";
 
-import { PasswordInputResult } from "../input-password/password-input-result";
-
 import { ChangePasswordService } from "./change-password.service.abstraction";
 import { DefaultChangePasswordService } from "./default-change-password.service";
 
@@ -109,7 +110,7 @@ describe("DefaultChangePasswordService", () => {
     it("should throw if a currentMasterKey was not found", async () => {
       // Arrange
       const incorrectPasswordInputResult = { ...passwordInputResult };
-      incorrectPasswordInputResult.currentMasterKey = null;
+      incorrectPasswordInputResult.currentMasterKey = undefined;
 
       // Act
       const testFn = sut.changePassword(incorrectPasswordInputResult, userId);
@@ -123,7 +124,7 @@ describe("DefaultChangePasswordService", () => {
     it("should throw if a currentServerMasterKeyHash was not found", async () => {
       // Arrange
       const incorrectPasswordInputResult = { ...passwordInputResult };
-      incorrectPasswordInputResult.currentServerMasterKeyHash = null;
+      incorrectPasswordInputResult.currentServerMasterKeyHash = undefined;
 
       // Act
       const testFn = sut.changePassword(incorrectPasswordInputResult, userId);
@@ -174,4 +175,43 @@ describe("DefaultChangePasswordService", () => {
       );
     });
   });
+
+  describe("changePasswordForAccountRecovery()", () => {
+    it("should call the putUpdateTempPassword() API method with the correct UpdateTempPasswordRequest credentials", async () => {
+      // Act
+      await sut.changePasswordForAccountRecovery(passwordInputResult, userId);
+
+      // Assert
+      expect(masterPasswordApiService.putUpdateTempPassword).toHaveBeenCalledWith(
+        expect.objectContaining({
+          newMasterPasswordHash: passwordInputResult.newServerMasterKeyHash,
+          masterPasswordHint: passwordInputResult.newPasswordHint,
+          key: newMasterKeyEncryptedUserKey[1].encryptedString,
+        }),
+      );
+    });
+
+    it("should throw an error if user key decryption fails", async () => {
+      // Arrange
+      masterPasswordService.decryptUserKeyWithMasterKey.mockResolvedValue(null);
+
+      // Act
+      const testFn = sut.changePasswordForAccountRecovery(passwordInputResult, userId);
+
+      // Assert
+      await expect(testFn).rejects.toThrow("Could not decrypt user key");
+    });
+
+    it("should throw an error if putUpdateTempPassword() fails", async () => {
+      // Arrange
+      masterPasswordApiService.putUpdateTempPassword.mockRejectedValueOnce(new Error("error"));
+
+      // Act
+      const testFn = sut.changePasswordForAccountRecovery(passwordInputResult, userId);
+
+      // Assert
+      await expect(testFn).rejects.toThrow("Could not change password");
+      expect(masterPasswordApiService.putUpdateTempPassword).toHaveBeenCalled();
+    });
+  });
 });
diff --git a/libs/auth/src/angular/change-password/default-change-password.service.ts b/libs/angular/src/auth/password-management/change-password/default-change-password.service.ts
similarity index 50%
rename from libs/auth/src/angular/change-password/default-change-password.service.ts
rename to libs/angular/src/auth/password-management/change-password/default-change-password.service.ts
index 4c5f3d10d74..888799d863a 100644
--- a/libs/auth/src/angular/change-password/default-change-password.service.ts
+++ b/libs/angular/src/auth/password-management/change-password/default-change-password.service.ts
@@ -1,11 +1,18 @@
-import { PasswordInputResult, ChangePasswordService } from "@bitwarden/auth/angular";
+// This import has been flagged as unallowed for this class. It may be involved in a circular dependency loop.
+// eslint-disable-next-line no-restricted-imports
+import { PasswordInputResult } from "@bitwarden/auth/angular";
 import { Account } from "@bitwarden/common/auth/abstractions/account.service";
 import { MasterPasswordApiService } from "@bitwarden/common/auth/abstractions/master-password-api.service.abstraction";
 import { PasswordRequest } from "@bitwarden/common/auth/models/request/password.request";
+import { UpdateTempPasswordRequest } from "@bitwarden/common/auth/models/request/update-temp-password.request";
 import { InternalMasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
+import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { UserId } from "@bitwarden/common/types/guid";
+import { UserKey } from "@bitwarden/common/types/key";
 import { KeyService } from "@bitwarden/key-management";
 
+import { ChangePasswordService } from "./change-password.service.abstraction";
+
 export class DefaultChangePasswordService implements ChangePasswordService {
   constructor(
     protected keyService: KeyService,
@@ -22,7 +29,11 @@ export class DefaultChangePasswordService implements ChangePasswordService {
     throw new Error("rotateUserKeyMasterPasswordAndEncryptedData() is only implemented in Web");
   }
 
-  async changePassword(passwordInputResult: PasswordInputResult, userId: UserId) {
+  private async preparePasswordChange(
+    passwordInputResult: PasswordInputResult,
+    userId: UserId | null,
+    request: PasswordRequest | UpdateTempPasswordRequest,
+  ): Promise<[UserKey, EncString]> {
     if (!userId) {
       throw new Error("userId not found");
     }
@@ -45,15 +56,32 @@ export class DefaultChangePasswordService implements ChangePasswordService {
       throw new Error("Could not decrypt user key");
     }
 
-    const newMasterKeyEncryptedUserKey = await this.keyService.encryptUserKeyWithMasterKey(
+    const newKeyValue = await this.keyService.encryptUserKeyWithMasterKey(
       passwordInputResult.newMasterKey,
       decryptedUserKey,
     );
 
+    if (request instanceof PasswordRequest) {
+      request.masterPasswordHash = passwordInputResult.currentServerMasterKeyHash;
+      request.newMasterPasswordHash = passwordInputResult.newServerMasterKeyHash;
+      request.masterPasswordHint = passwordInputResult.newPasswordHint;
+    } else if (request instanceof UpdateTempPasswordRequest) {
+      request.newMasterPasswordHash = passwordInputResult.newServerMasterKeyHash;
+      request.masterPasswordHint = passwordInputResult.newPasswordHint;
+    }
+
+    return newKeyValue;
+  }
+
+  async changePassword(passwordInputResult: PasswordInputResult, userId: UserId | null) {
     const request = new PasswordRequest();
-    request.masterPasswordHash = passwordInputResult.currentServerMasterKeyHash;
-    request.newMasterPasswordHash = passwordInputResult.newServerMasterKeyHash;
-    request.masterPasswordHint = passwordInputResult.newPasswordHint;
+
+    const newMasterKeyEncryptedUserKey = await this.preparePasswordChange(
+      passwordInputResult,
+      userId,
+      request,
+    );
+
     request.key = newMasterKeyEncryptedUserKey[1].encryptedString as string;
 
     try {
@@ -62,4 +90,23 @@ export class DefaultChangePasswordService implements ChangePasswordService {
       throw new Error("Could not change password");
     }
   }
+
+  async changePasswordForAccountRecovery(passwordInputResult: PasswordInputResult, userId: UserId) {
+    const request = new UpdateTempPasswordRequest();
+
+    const newMasterKeyEncryptedUserKey = await this.preparePasswordChange(
+      passwordInputResult,
+      userId,
+      request,
+    );
+
+    request.key = newMasterKeyEncryptedUserKey[1].encryptedString as string;
+
+    try {
+      // TODO: PM-23047 will look to consolidate this into the change password endpoint.
+      await this.masterPasswordApiService.putUpdateTempPassword(request);
+    } catch {
+      throw new Error("Could not change password");
+    }
+  }
 }
diff --git a/libs/angular/src/auth/password-management/change-password/index.ts b/libs/angular/src/auth/password-management/change-password/index.ts
new file mode 100644
index 00000000000..32734d39bc0
--- /dev/null
+++ b/libs/angular/src/auth/password-management/change-password/index.ts
@@ -0,0 +1,3 @@
+export * from "./change-password.component";
+export * from "./change-password.service.abstraction";
+export * from "./default-change-password.service";
diff --git a/libs/angular/src/services/jslib-services.module.ts b/libs/angular/src/services/jslib-services.module.ts
index acb1553387b..d51d5e650c5 100644
--- a/libs/angular/src/services/jslib-services.module.ts
+++ b/libs/angular/src/services/jslib-services.module.ts
@@ -11,6 +11,10 @@ import {
   DefaultOrganizationUserApiService,
   OrganizationUserApiService,
 } from "@bitwarden/admin-console/common";
+import {
+  ChangePasswordService,
+  DefaultChangePasswordService,
+} from "@bitwarden/angular/auth/password-management/change-password";
 // This import has been flagged as unallowed for this class. It may be involved in a circular dependency loop.
 // eslint-disable-next-line no-restricted-imports
 import {
@@ -29,8 +33,6 @@ import {
   TwoFactorAuthComponentService,
   TwoFactorAuthEmailComponentService,
   TwoFactorAuthWebAuthnComponentService,
-  ChangePasswordService,
-  DefaultChangePasswordService,
 } from "@bitwarden/auth/angular";
 // This import has been flagged as unallowed for this class. It may be involved in a circular dependency loop.
 // eslint-disable-next-line no-restricted-imports
@@ -115,6 +117,8 @@ import { AvatarService } from "@bitwarden/common/auth/services/avatar.service";
 import { DevicesServiceImplementation } from "@bitwarden/common/auth/services/devices/devices.service.implementation";
 import { DevicesApiServiceImplementation } from "@bitwarden/common/auth/services/devices-api.service.implementation";
 import { MasterPasswordApiService } from "@bitwarden/common/auth/services/master-password/master-password-api.service.implementation";
+import { DefaultOrganizationInviteService } from "@bitwarden/common/auth/services/organization-invite/default-organization-invite.service";
+import { OrganizationInviteService } from "@bitwarden/common/auth/services/organization-invite/organization-invite.service";
 import { PasswordResetEnrollmentServiceImplementation } from "@bitwarden/common/auth/services/password-reset-enrollment.service.implementation";
 import { SsoLoginService } from "@bitwarden/common/auth/services/sso-login.service";
 import { TokenService } from "@bitwarden/common/auth/services/token.service";
@@ -1406,16 +1410,20 @@ const safeProviders: SafeProvider[] = [
     useClass: DefaultKdfConfigService,
     deps: [StateProvider],
   }),
+  safeProvider({
+    provide: OrganizationInviteService,
+    useClass: DefaultOrganizationInviteService,
+    deps: [],
+  }),
   safeProvider({
     provide: SetPasswordJitService,
     useClass: DefaultSetPasswordJitService,
     deps: [
-      ApiServiceAbstraction,
-      MasterPasswordApiServiceAbstraction,
-      KeyService,
       EncryptService,
       I18nServiceAbstraction,
       KdfConfigService,
+      KeyService,
+      MasterPasswordApiServiceAbstraction,
       InternalMasterPasswordServiceAbstraction,
       OrganizationApiServiceAbstraction,
       OrganizationUserApiService,
diff --git a/libs/auth/src/angular/change-password/change-password.component.ts b/libs/auth/src/angular/change-password/change-password.component.ts
deleted file mode 100644
index 617b7ce9dd0..00000000000
--- a/libs/auth/src/angular/change-password/change-password.component.ts
+++ /dev/null
@@ -1,114 +0,0 @@
-import { Component, Input, OnInit } from "@angular/core";
-import { firstValueFrom } from "rxjs";
-
-import { PolicyService } from "@bitwarden/common/admin-console/abstractions/policy/policy.service.abstraction";
-import { MasterPasswordPolicyOptions } from "@bitwarden/common/admin-console/models/domain/master-password-policy-options";
-import { Account, AccountService } from "@bitwarden/common/auth/abstractions/account.service";
-import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
-import { SyncService } from "@bitwarden/common/platform/sync";
-import { UserId } from "@bitwarden/common/types/guid";
-// This import has been flagged as unallowed for this class. It may be involved in a circular dependency loop.
-// eslint-disable-next-line no-restricted-imports
-import { ToastService } from "@bitwarden/components";
-import { I18nPipe } from "@bitwarden/ui-common";
-
-import {
-  InputPasswordComponent,
-  InputPasswordFlow,
-} from "../input-password/input-password.component";
-import { PasswordInputResult } from "../input-password/password-input-result";
-
-import { ChangePasswordService } from "./change-password.service.abstraction";
-
-@Component({
-  selector: "auth-change-password",
-  templateUrl: "change-password.component.html",
-  imports: [InputPasswordComponent, I18nPipe],
-})
-export class ChangePasswordComponent implements OnInit {
-  @Input() inputPasswordFlow: InputPasswordFlow = InputPasswordFlow.ChangePassword;
-
-  activeAccount: Account | null = null;
-  email?: string;
-  userId?: UserId;
-  masterPasswordPolicyOptions?: MasterPasswordPolicyOptions;
-  initializing = true;
-  submitting = false;
-
-  constructor(
-    private accountService: AccountService,
-    private changePasswordService: ChangePasswordService,
-    private i18nService: I18nService,
-    private messagingService: MessagingService,
-    private policyService: PolicyService,
-    private toastService: ToastService,
-    private syncService: SyncService,
-  ) {}
-
-  async ngOnInit() {
-    this.activeAccount = await firstValueFrom(this.accountService.activeAccount$);
-    this.userId = this.activeAccount?.id;
-    this.email = this.activeAccount?.email;
-
-    if (!this.userId) {
-      throw new Error("userId not found");
-    }
-
-    this.masterPasswordPolicyOptions = await firstValueFrom(
-      this.policyService.masterPasswordPolicyOptions$(this.userId),
-    );
-
-    this.initializing = false;
-  }
-
-  async handlePasswordFormSubmit(passwordInputResult: PasswordInputResult) {
-    this.submitting = true;
-
-    try {
-      if (passwordInputResult.rotateUserKey) {
-        if (this.activeAccount == null) {
-          throw new Error("activeAccount not found");
-        }
-
-        if (
-          passwordInputResult.currentPassword == null ||
-          passwordInputResult.newPasswordHint == null
-        ) {
-          throw new Error("currentPassword or newPasswordHint not found");
-        }
-
-        await this.syncService.fullSync(true);
-
-        await this.changePasswordService.rotateUserKeyMasterPasswordAndEncryptedData(
-          passwordInputResult.currentPassword,
-          passwordInputResult.newPassword,
-          this.activeAccount,
-          passwordInputResult.newPasswordHint,
-        );
-      } else {
-        if (!this.userId) {
-          throw new Error("userId not found");
-        }
-
-        await this.changePasswordService.changePassword(passwordInputResult, this.userId);
-
-        this.toastService.showToast({
-          variant: "success",
-          title: this.i18nService.t("masterPasswordChanged"),
-          message: this.i18nService.t("masterPasswordChangedDesc"),
-        });
-
-        this.messagingService.send("logout");
-      }
-    } catch {
-      this.toastService.showToast({
-        variant: "error",
-        title: "",
-        message: this.i18nService.t("errorOccurred"),
-      });
-    } finally {
-      this.submitting = false;
-    }
-  }
-}
diff --git a/libs/auth/src/angular/index.ts b/libs/auth/src/angular/index.ts
index fc5ffd71e9a..aa0041c7ec3 100644
--- a/libs/auth/src/angular/index.ts
+++ b/libs/auth/src/angular/index.ts
@@ -1,10 +1,6 @@
 /**
  * This barrel file should only contain Angular exports
  */
-// change password
-export * from "./change-password/change-password.component";
-export * from "./change-password/change-password.service.abstraction";
-export * from "./change-password/default-change-password.service";
 
 // fingerprint dialog
 export * from "./fingerprint-dialog/fingerprint-dialog.component";
diff --git a/libs/auth/src/angular/input-password/input-password.component.html b/libs/auth/src/angular/input-password/input-password.component.html
index b5a9f5a56e9..bf3a51b98bb 100644
--- a/libs/auth/src/angular/input-password/input-password.component.html
+++ b/libs/auth/src/angular/input-password/input-password.component.html
@@ -32,7 +32,7 @@
   </bit-form-field>
 
   <div class="tw-mb-6">
-    <bit-form-field>
+    <bit-form-field [disableMargin]="true">
       <bit-label>{{ "newMasterPass" | i18n }}</bit-label>
       <input
         id="input-password-form_new-password"
diff --git a/libs/auth/src/angular/input-password/input-password.component.ts b/libs/auth/src/angular/input-password/input-password.component.ts
index 2d469e89fcd..5438674a4e2 100644
--- a/libs/auth/src/angular/input-password/input-password.component.ts
+++ b/libs/auth/src/angular/input-password/input-password.component.ts
@@ -129,7 +129,7 @@ export class InputPasswordComponent implements OnInit {
   @Input({ transform: (val: string) => val?.trim().toLowerCase() }) email?: string;
   @Input() userId?: UserId;
   @Input() loading = false;
-  @Input() masterPasswordPolicyOptions: MasterPasswordPolicyOptions | null = null;
+  @Input() masterPasswordPolicyOptions?: MasterPasswordPolicyOptions;
 
   @Input() inlineButtons = false;
   @Input() primaryButtonText?: Translation;
@@ -169,7 +169,7 @@ export class InputPasswordComponent implements OnInit {
 
   protected get minPasswordLengthMsg() {
     if (
-      this.masterPasswordPolicyOptions != null &&
+      this.masterPasswordPolicyOptions != undefined &&
       this.masterPasswordPolicyOptions.minLength > 0
     ) {
       return this.i18nService.t("characterMinimum", this.masterPasswordPolicyOptions.minLength);
@@ -463,7 +463,7 @@ export class InputPasswordComponent implements OnInit {
 
   /**
    * Returns `true` if the current password is correct (it can be used to successfully decrypt
-   * the masterKeyEncrypedUserKey), `false` otherwise
+   * the masterKeyEncryptedUserKey), `false` otherwise
    */
   private async verifyCurrentPassword(
     currentPassword: string,
diff --git a/libs/auth/src/angular/login/login.component.ts b/libs/auth/src/angular/login/login.component.ts
index 5e5d5bde4e3..b3509850ac0 100644
--- a/libs/auth/src/angular/login/login.component.ts
+++ b/libs/auth/src/angular/login/login.component.ts
@@ -18,9 +18,12 @@ import { Policy } from "@bitwarden/common/admin-console/models/domain/policy";
 import { DevicesApiServiceAbstraction } from "@bitwarden/common/auth/abstractions/devices-api.service.abstraction";
 import { AuthResult } from "@bitwarden/common/auth/models/domain/auth-result";
 import { ClientType, HttpStatusCode } from "@bitwarden/common/enums";
+import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
+import { MasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
 import { ErrorResponse } from "@bitwarden/common/models/response/error.response";
 import { AppIdService } from "@bitwarden/common/platform/abstractions/app-id.service";
 import { BroadcasterService } from "@bitwarden/common/platform/abstractions/broadcaster.service";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
@@ -122,6 +125,8 @@ export class LoginComponent implements OnInit, OnDestroy {
     private logService: LogService,
     private validationService: ValidationService,
     private loginSuccessHandlerService: LoginSuccessHandlerService,
+    private masterPasswordService: MasterPasswordServiceAbstraction,
+    private configService: ConfigService,
   ) {
     this.clientType = this.platformUtilsService.getClientType();
   }
@@ -225,7 +230,29 @@ export class LoginComponent implements OnInit, OnDestroy {
       return;
     }
 
-    const credentials = new PasswordLoginCredentials(email, masterPassword);
+    let credentials: PasswordLoginCredentials;
+
+    if (
+      await this.configService.getFeatureFlag(FeatureFlag.PM16117_ChangeExistingPasswordRefactor)
+    ) {
+      // Try to retrieve any org policies from an org invite now so we can send it to the
+      // login strategies. Since it is optional and we only want to be doing this on the
+      // web we will only send in content in the right context.
+      const orgPoliciesFromInvite = this.loginComponentService.getOrgPoliciesFromOrgInvite
+        ? await this.loginComponentService.getOrgPoliciesFromOrgInvite()
+        : null;
+
+      const orgMasterPasswordPolicyOptions = orgPoliciesFromInvite?.enforcedPasswordPolicyOptions;
+
+      credentials = new PasswordLoginCredentials(
+        email,
+        masterPassword,
+        undefined,
+        orgMasterPasswordPolicyOptions,
+      );
+    } else {
+      credentials = new PasswordLoginCredentials(email, masterPassword);
+    }
 
     try {
       const authResult = await this.loginStrategyService.logIn(credentials);
@@ -284,7 +311,7 @@ export class LoginComponent implements OnInit, OnDestroy {
          This is now unsupported and requires a downgraded client */
       this.toastService.showToast({
         variant: "error",
-        title: this.i18nService.t("errorOccured"),
+        title: this.i18nService.t("errorOccurred"),
         message: this.i18nService.t("legacyEncryptionUnsupported"),
       });
       return;
@@ -325,7 +352,13 @@ export class LoginComponent implements OnInit, OnDestroy {
           orgPolicies.enforcedPasswordPolicyOptions,
         );
         if (isPasswordChangeRequired) {
-          await this.router.navigate(["update-password"]);
+          const changePasswordFeatureFlagOn = await this.configService.getFeatureFlag(
+            FeatureFlag.PM16117_ChangeExistingPasswordRefactor,
+          );
+
+          await this.router.navigate(
+            changePasswordFeatureFlagOn ? ["change-password"] : ["update-password"],
+          );
           return;
         }
       }
@@ -337,9 +370,15 @@ export class LoginComponent implements OnInit, OnDestroy {
       await this.router.navigate(["vault"]);
     }
   }
+
   /**
    * Checks if the master password meets the enforced policy requirements
    * and if the user is required to change their password.
+   *
+   * TODO: This is duplicate checking that we want to only do in the password login strategy.
+   *       Once we no longer need the policies state being set to reference later in change password
+   *       via using the Admin Console's new policy endpoint changes we can remove this. Consult
+   *       PM-23001 for details.
    */
   private async isPasswordChangeRequiredByOrgPolicy(
     enforcedPasswordPolicyOptions: MasterPasswordPolicyOptions,
diff --git a/libs/auth/src/angular/new-device-verification/new-device-verification.component.ts b/libs/auth/src/angular/new-device-verification/new-device-verification.component.ts
index a8aa3bd5525..4325b4bcbc1 100644
--- a/libs/auth/src/angular/new-device-verification/new-device-verification.component.ts
+++ b/libs/auth/src/angular/new-device-verification/new-device-verification.component.ts
@@ -2,11 +2,17 @@ import { CommonModule } from "@angular/common";
 import { Component, OnDestroy, OnInit } from "@angular/core";
 import { FormBuilder, ReactiveFormsModule, Validators } from "@angular/forms";
 import { Router } from "@angular/router";
-import { Subject, takeUntil } from "rxjs";
+import { firstValueFrom, Subject, takeUntil } from "rxjs";
 
 import { JslibModule } from "@bitwarden/angular/jslib.module";
 import { LoginSuccessHandlerService } from "@bitwarden/auth/common";
 import { ApiService } from "@bitwarden/common/abstractions/api.service";
+import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
+import { ForceSetPasswordReason } from "@bitwarden/common/auth/models/domain/force-set-password-reason";
+import { getUserId } from "@bitwarden/common/auth/services/account.service";
+import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
+import { MasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 // This import has been flagged as unallowed for this class. It may be involved in a circular dependency loop.
@@ -61,6 +67,9 @@ export class NewDeviceVerificationComponent implements OnInit, OnDestroy {
     private logService: LogService,
     private i18nService: I18nService,
     private loginSuccessHandlerService: LoginSuccessHandlerService,
+    private configService: ConfigService,
+    private accountService: AccountService,
+    private masterPasswordService: MasterPasswordServiceAbstraction,
   ) {}
 
   async ngOnInit() {
@@ -141,8 +150,29 @@ export class NewDeviceVerificationComponent implements OnInit, OnDestroy {
       // eslint-disable-next-line @typescript-eslint/no-floating-promises
       this.loginSuccessHandlerService.run(authResult.userId);
 
-      // If verification succeeds, navigate to vault
-      await this.router.navigate(["/vault"]);
+      // TODO: PM-22663 use the new service to handle routing.
+      if (
+        await this.configService.getFeatureFlag(FeatureFlag.PM16117_ChangeExistingPasswordRefactor)
+      ) {
+        const activeUserId = await firstValueFrom(
+          this.accountService.activeAccount$.pipe(getUserId),
+        );
+
+        const forceSetPasswordReason = await firstValueFrom(
+          this.masterPasswordService.forceSetPasswordReason$(activeUserId),
+        );
+
+        if (
+          forceSetPasswordReason === ForceSetPasswordReason.WeakMasterPassword ||
+          forceSetPasswordReason === ForceSetPasswordReason.AdminForcePasswordReset
+        ) {
+          await this.router.navigate(["/change-password"]);
+        } else {
+          await this.router.navigate(["/vault"]);
+        }
+      } else {
+        await this.router.navigate(["/vault"]);
+      }
     } catch (e) {
       this.logService.error(e);
       let errorMessage =
diff --git a/libs/auth/src/angular/set-password-jit/default-set-password-jit.service.spec.ts b/libs/auth/src/angular/set-password-jit/default-set-password-jit.service.spec.ts
index 37afa77f0d4..2fd01f79ca9 100644
--- a/libs/auth/src/angular/set-password-jit/default-set-password-jit.service.spec.ts
+++ b/libs/auth/src/angular/set-password-jit/default-set-password-jit.service.spec.ts
@@ -8,7 +8,6 @@ import {
   FakeUserDecryptionOptions as UserDecryptionOptions,
   InternalUserDecryptionOptionsServiceAbstraction,
 } from "@bitwarden/auth/common";
-import { ApiService } from "@bitwarden/common/abstractions/api.service";
 import { OrganizationApiServiceAbstraction } from "@bitwarden/common/admin-console/abstractions/organization/organization-api.service.abstraction";
 import { OrganizationKeysResponse } from "@bitwarden/common/admin-console/models/response/organization-keys.response";
 import { MasterPasswordApiService } from "@bitwarden/common/auth/abstractions/master-password-api.service.abstraction";
@@ -33,7 +32,6 @@ import { SetPasswordCredentials } from "./set-password-jit.service.abstraction";
 describe("DefaultSetPasswordJitService", () => {
   let sut: DefaultSetPasswordJitService;
 
-  let apiService: MockProxy<ApiService>;
   let masterPasswordApiService: MockProxy<MasterPasswordApiService>;
   let keyService: MockProxy<KeyService>;
   let encryptService: MockProxy<EncryptService>;
@@ -45,7 +43,6 @@ describe("DefaultSetPasswordJitService", () => {
   let userDecryptionOptionsService: MockProxy<InternalUserDecryptionOptionsServiceAbstraction>;
 
   beforeEach(() => {
-    apiService = mock<ApiService>();
     masterPasswordApiService = mock<MasterPasswordApiService>();
     keyService = mock<KeyService>();
     encryptService = mock<EncryptService>();
@@ -57,12 +54,11 @@ describe("DefaultSetPasswordJitService", () => {
     userDecryptionOptionsService = mock<InternalUserDecryptionOptionsServiceAbstraction>();
 
     sut = new DefaultSetPasswordJitService(
-      apiService,
-      masterPasswordApiService,
-      keyService,
       encryptService,
       i18nService,
       kdfConfigService,
+      keyService,
+      masterPasswordApiService,
       masterPasswordService,
       organizationApiService,
       organizationUserApiService,
diff --git a/libs/auth/src/angular/set-password-jit/default-set-password-jit.service.ts b/libs/auth/src/angular/set-password-jit/default-set-password-jit.service.ts
index ec274b9c4af..7d228fccb9b 100644
--- a/libs/auth/src/angular/set-password-jit/default-set-password-jit.service.ts
+++ b/libs/auth/src/angular/set-password-jit/default-set-password-jit.service.ts
@@ -9,7 +9,6 @@ import {
   OrganizationUserResetPasswordEnrollmentRequest,
 } from "@bitwarden/admin-console/common";
 import { InternalUserDecryptionOptionsServiceAbstraction } from "@bitwarden/auth/common";
-import { ApiService } from "@bitwarden/common/abstractions/api.service";
 import { OrganizationApiServiceAbstraction } from "@bitwarden/common/admin-console/abstractions/organization/organization-api.service.abstraction";
 import { MasterPasswordApiService } from "@bitwarden/common/auth/abstractions/master-password-api.service.abstraction";
 import { ForceSetPasswordReason } from "@bitwarden/common/auth/models/domain/force-set-password-reason";
@@ -31,12 +30,11 @@ import {
 
 export class DefaultSetPasswordJitService implements SetPasswordJitService {
   constructor(
-    protected apiService: ApiService,
-    protected masterPasswordApiService: MasterPasswordApiService,
-    protected keyService: KeyService,
     protected encryptService: EncryptService,
     protected i18nService: I18nService,
     protected kdfConfigService: KdfConfigService,
+    protected keyService: KeyService,
+    protected masterPasswordApiService: MasterPasswordApiService,
     protected masterPasswordService: InternalMasterPasswordServiceAbstraction,
     protected organizationApiService: OrganizationApiServiceAbstraction,
     protected organizationUserApiService: OrganizationUserApiService,
diff --git a/libs/auth/src/angular/two-factor-auth/two-factor-auth.component.ts b/libs/auth/src/angular/two-factor-auth/two-factor-auth.component.ts
index 43a63498634..a281411f971 100644
--- a/libs/auth/src/angular/two-factor-auth/two-factor-auth.component.ts
+++ b/libs/auth/src/angular/two-factor-auth/two-factor-auth.component.ts
@@ -394,7 +394,7 @@ export class TwoFactorAuthComponent implements OnInit, OnDestroy {
 
     this.toastService.showToast({
       variant: "error",
-      title: this.i18nService.t("errorOccured"),
+      title: this.i18nService.t("errorOccurred"),
       message: this.i18nService.t("legacyEncryptionUnsupported"),
     });
     return true;
@@ -494,7 +494,7 @@ export class TwoFactorAuthComponent implements OnInit, OnDestroy {
       return;
     }
 
-    const defaultSuccessRoute = await this.determineDefaultSuccessRoute();
+    const defaultSuccessRoute = await this.determineDefaultSuccessRoute(authResult.userId);
 
     await this.router.navigate([defaultSuccessRoute], {
       queryParams: {
@@ -503,12 +503,28 @@ export class TwoFactorAuthComponent implements OnInit, OnDestroy {
     });
   }
 
-  private async determineDefaultSuccessRoute(): Promise<string> {
+  private async determineDefaultSuccessRoute(userId: UserId): Promise<string> {
     const activeAccountStatus = await firstValueFrom(this.authService.activeAccountStatus$);
     if (activeAccountStatus === AuthenticationStatus.Locked) {
       return "lock";
     }
 
+    // TODO: PM-22663 use the new service to handle routing.
+    if (
+      await this.configService.getFeatureFlag(FeatureFlag.PM16117_ChangeExistingPasswordRefactor)
+    ) {
+      const forceSetPasswordReason = await firstValueFrom(
+        this.masterPasswordService.forceSetPasswordReason$(userId),
+      );
+
+      if (
+        forceSetPasswordReason === ForceSetPasswordReason.WeakMasterPassword ||
+        forceSetPasswordReason === ForceSetPasswordReason.AdminForcePasswordReset
+      ) {
+        return "change-password";
+      }
+    }
+
     return "vault";
   }
 
diff --git a/libs/auth/src/common/login-strategies/auth-request-login.strategy.spec.ts b/libs/auth/src/common/login-strategies/auth-request-login.strategy.spec.ts
index 487afcb3001..0b19fecdc4e 100644
--- a/libs/auth/src/common/login-strategies/auth-request-login.strategy.spec.ts
+++ b/libs/auth/src/common/login-strategies/auth-request-login.strategy.spec.ts
@@ -14,6 +14,7 @@ import {
   VaultTimeoutSettingsService,
 } from "@bitwarden/common/key-management/vault-timeout";
 import { AppIdService } from "@bitwarden/common/platform/abstractions/app-id.service";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { EnvironmentService } from "@bitwarden/common/platform/abstractions/environment.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
@@ -55,6 +56,7 @@ describe("AuthRequestLoginStrategy", () => {
   let vaultTimeoutSettingsService: MockProxy<VaultTimeoutSettingsService>;
   let kdfConfigService: MockProxy<KdfConfigService>;
   let environmentService: MockProxy<EnvironmentService>;
+  let configService: MockProxy<ConfigService>;
 
   const mockUserId = Utils.newGuid() as UserId;
   let accountService: FakeAccountService;
@@ -91,6 +93,7 @@ describe("AuthRequestLoginStrategy", () => {
     vaultTimeoutSettingsService = mock<VaultTimeoutSettingsService>();
     kdfConfigService = mock<KdfConfigService>();
     environmentService = mock<EnvironmentService>();
+    configService = mock<ConfigService>();
 
     accountService = mockAccountServiceWith(mockUserId);
     masterPasswordService = new FakeMasterPasswordService();
@@ -121,6 +124,7 @@ describe("AuthRequestLoginStrategy", () => {
       vaultTimeoutSettingsService,
       kdfConfigService,
       environmentService,
+      configService,
     );
 
     tokenResponse = identityTokenResponseFactory();
diff --git a/libs/auth/src/common/login-strategies/login.strategy.spec.ts b/libs/auth/src/common/login-strategies/login.strategy.spec.ts
index a0ccba649b6..cc9cae20b5c 100644
--- a/libs/auth/src/common/login-strategies/login.strategy.spec.ts
+++ b/libs/auth/src/common/login-strategies/login.strategy.spec.ts
@@ -24,6 +24,7 @@ import {
   VaultTimeoutSettingsService,
 } from "@bitwarden/common/key-management/vault-timeout";
 import { AppIdService } from "@bitwarden/common/platform/abstractions/app-id.service";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { EnvironmentService } from "@bitwarden/common/platform/abstractions/environment.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
@@ -123,6 +124,7 @@ describe("LoginStrategy", () => {
   let vaultTimeoutSettingsService: MockProxy<VaultTimeoutSettingsService>;
   let kdfConfigService: MockProxy<KdfConfigService>;
   let environmentService: MockProxy<EnvironmentService>;
+  let configService: MockProxy<ConfigService>;
 
   let passwordLoginStrategy: PasswordLoginStrategy;
   let credentials: PasswordLoginCredentials;
@@ -148,6 +150,7 @@ describe("LoginStrategy", () => {
     passwordStrengthService = mock<PasswordStrengthService>();
     billingAccountProfileStateService = mock<BillingAccountProfileStateService>();
     environmentService = mock<EnvironmentService>();
+    configService = mock<ConfigService>();
 
     vaultTimeoutSettingsService = mock<VaultTimeoutSettingsService>();
 
@@ -177,6 +180,7 @@ describe("LoginStrategy", () => {
       vaultTimeoutSettingsService,
       kdfConfigService,
       environmentService,
+      configService,
     );
     credentials = new PasswordLoginCredentials(email, masterPassword);
   });
@@ -491,6 +495,7 @@ describe("LoginStrategy", () => {
         vaultTimeoutSettingsService,
         kdfConfigService,
         environmentService,
+        configService,
       );
 
       apiService.postIdentityToken.mockResolvedValue(identityTokenResponseFactory());
@@ -551,6 +556,7 @@ describe("LoginStrategy", () => {
         vaultTimeoutSettingsService,
         kdfConfigService,
         environmentService,
+        configService,
       );
 
       const result = await passwordLoginStrategy.logIn(credentials);
diff --git a/libs/auth/src/common/login-strategies/login.strategy.ts b/libs/auth/src/common/login-strategies/login.strategy.ts
index dc51ce1fa04..463ea676163 100644
--- a/libs/auth/src/common/login-strategies/login.strategy.ts
+++ b/libs/auth/src/common/login-strategies/login.strategy.ts
@@ -25,6 +25,7 @@ import {
 } from "@bitwarden/common/key-management/vault-timeout";
 import { KeysRequest } from "@bitwarden/common/models/request/keys.request";
 import { AppIdService } from "@bitwarden/common/platform/abstractions/app-id.service";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { EnvironmentService } from "@bitwarden/common/platform/abstractions/environment.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
@@ -91,6 +92,7 @@ export abstract class LoginStrategy {
     protected vaultTimeoutSettingsService: VaultTimeoutSettingsService,
     protected KdfConfigService: KdfConfigService,
     protected environmentService: EnvironmentService,
+    protected configService: ConfigService,
   ) {}
 
   abstract exportCache(): CacheData;
diff --git a/libs/auth/src/common/login-strategies/password-login.strategy.spec.ts b/libs/auth/src/common/login-strategies/password-login.strategy.spec.ts
index f996aa7a1f6..61a06f94b02 100644
--- a/libs/auth/src/common/login-strategies/password-login.strategy.spec.ts
+++ b/libs/auth/src/common/login-strategies/password-login.strategy.spec.ts
@@ -3,6 +3,7 @@ import { BehaviorSubject } from "rxjs";
 
 import { ApiService } from "@bitwarden/common/abstractions/api.service";
 import { PolicyService } from "@bitwarden/common/admin-console/abstractions/policy/policy.service.abstraction";
+import { MasterPasswordPolicyOptions } from "@bitwarden/common/admin-console/models/domain/master-password-policy-options";
 import { TokenService } from "@bitwarden/common/auth/abstractions/token.service";
 import { TwoFactorService } from "@bitwarden/common/auth/abstractions/two-factor.service";
 import { TwoFactorProviderType } from "@bitwarden/common/auth/enums/two-factor-provider-type";
@@ -11,6 +12,7 @@ import { IdentityTokenResponse } from "@bitwarden/common/auth/models/response/id
 import { IdentityTwoFactorResponse } from "@bitwarden/common/auth/models/response/identity-two-factor.response";
 import { MasterPasswordPolicyResponse } from "@bitwarden/common/auth/models/response/master-password-policy.response";
 import { BillingAccountProfileStateService } from "@bitwarden/common/billing/abstractions/account/billing-account-profile-state.service";
+import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
 import { FakeMasterPasswordService } from "@bitwarden/common/key-management/master-password/services/fake-master-password.service";
 import {
@@ -18,6 +20,7 @@ import {
   VaultTimeoutSettingsService,
 } from "@bitwarden/common/key-management/vault-timeout";
 import { AppIdService } from "@bitwarden/common/platform/abstractions/app-id.service";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { EnvironmentService } from "@bitwarden/common/platform/abstractions/environment.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
@@ -54,7 +57,7 @@ const masterKey = new SymmetricCryptoKey(
 ) as MasterKey;
 const userId = Utils.newGuid() as UserId;
 const deviceId = Utils.newGuid();
-const masterPasswordPolicy = new MasterPasswordPolicyResponse({
+const masterPasswordPolicyResponse = new MasterPasswordPolicyResponse({
   EnforceOnLogin: true,
   MinLength: 8,
 });
@@ -82,6 +85,7 @@ describe("PasswordLoginStrategy", () => {
   let vaultTimeoutSettingsService: MockProxy<VaultTimeoutSettingsService>;
   let kdfConfigService: MockProxy<KdfConfigService>;
   let environmentService: MockProxy<EnvironmentService>;
+  let configService: MockProxy<ConfigService>;
 
   let passwordLoginStrategy: PasswordLoginStrategy;
   let credentials: PasswordLoginCredentials;
@@ -109,6 +113,7 @@ describe("PasswordLoginStrategy", () => {
     vaultTimeoutSettingsService = mock<VaultTimeoutSettingsService>();
     kdfConfigService = mock<KdfConfigService>();
     environmentService = mock<EnvironmentService>();
+    configService = mock<ConfigService>();
 
     appIdService.getAppId.mockResolvedValue(deviceId);
     tokenService.decodeAccessToken.mockResolvedValue({
@@ -148,9 +153,10 @@ describe("PasswordLoginStrategy", () => {
       vaultTimeoutSettingsService,
       kdfConfigService,
       environmentService,
+      configService,
     );
     credentials = new PasswordLoginCredentials(email, masterPassword);
-    tokenResponse = identityTokenResponseFactory(masterPasswordPolicy);
+    tokenResponse = identityTokenResponseFactory(masterPasswordPolicyResponse);
 
     apiService.postIdentityToken.mockResolvedValue(tokenResponse);
 
@@ -227,6 +233,67 @@ describe("PasswordLoginStrategy", () => {
     expect(policyService.evaluateMasterPassword).toHaveBeenCalled();
   });
 
+  it("when given master password policies as part of the login credentials from an org invite, it combines them with the token response policies to evaluate the user's password as weak", async () => {
+    const passwordStrengthScore = 0;
+
+    passwordStrengthService.getPasswordStrength.mockReturnValue({
+      score: passwordStrengthScore,
+    } as any);
+    policyService.evaluateMasterPassword.mockReturnValue(false);
+    tokenService.decodeAccessToken.mockResolvedValue({ sub: userId });
+
+    jest
+      .spyOn(configService, "getFeatureFlag")
+      .mockImplementation((flag: FeatureFlag) =>
+        Promise.resolve(flag === FeatureFlag.PM16117_ChangeExistingPasswordRefactor),
+      );
+
+    credentials.masterPasswordPoliciesFromOrgInvite = Object.assign(
+      new MasterPasswordPolicyOptions(),
+      {
+        minLength: 10,
+        minComplexity: 2,
+        requireUpper: true,
+        requireLower: true,
+        requireNumbers: true,
+        requireSpecial: true,
+        enforceOnLogin: true,
+      },
+    );
+
+    const combinedMasterPasswordPolicyOptions = Object.assign(new MasterPasswordPolicyOptions(), {
+      minLength: 10,
+      minComplexity: 2,
+      requireUpper: true,
+      requireLower: true,
+      requireNumbers: true,
+      requireSpecial: true,
+      enforceOnLogin: false,
+    });
+
+    policyService.combineMasterPasswordPolicyOptions.mockReturnValue(
+      combinedMasterPasswordPolicyOptions,
+    );
+
+    await passwordLoginStrategy.logIn(credentials);
+
+    expect(policyService.combineMasterPasswordPolicyOptions).toHaveBeenCalledWith(
+      credentials.masterPasswordPoliciesFromOrgInvite,
+      MasterPasswordPolicyOptions.fromResponse(masterPasswordPolicyResponse),
+    );
+
+    expect(policyService.evaluateMasterPassword).toHaveBeenCalledWith(
+      passwordStrengthScore,
+      credentials.masterPassword,
+      combinedMasterPasswordPolicyOptions,
+    );
+
+    expect(masterPasswordService.mock.setForceSetPasswordReason).toHaveBeenCalledWith(
+      ForceSetPasswordReason.WeakMasterPassword,
+      userId,
+    );
+  });
+
   it("forces the user to update their master password on successful login when it does not meet master password policy requirements", async () => {
     passwordStrengthService.getPasswordStrength.mockReturnValue({ score: 0 } as any);
     policyService.evaluateMasterPassword.mockReturnValue(false);
@@ -251,7 +318,7 @@ describe("PasswordLoginStrategy", () => {
       TwoFactorProviders2: { 0: null },
       error: "invalid_grant",
       error_description: "Two factor required.",
-      MasterPasswordPolicy: masterPasswordPolicy,
+      MasterPasswordPolicy: masterPasswordPolicyResponse,
     });
 
     // First login request fails requiring 2FA
@@ -271,7 +338,7 @@ describe("PasswordLoginStrategy", () => {
       TwoFactorProviders2: { 0: null },
       error: "invalid_grant",
       error_description: "Two factor required.",
-      MasterPasswordPolicy: masterPasswordPolicy,
+      MasterPasswordPolicy: masterPasswordPolicyResponse,
     });
 
     // First login request fails requiring 2FA
@@ -280,7 +347,7 @@ describe("PasswordLoginStrategy", () => {
 
     // Second login request succeeds
     apiService.postIdentityToken.mockResolvedValueOnce(
-      identityTokenResponseFactory(masterPasswordPolicy),
+      identityTokenResponseFactory(masterPasswordPolicyResponse),
     );
     await passwordLoginStrategy.logInTwoFactor({
       provider: TwoFactorProviderType.Authenticator,
diff --git a/libs/auth/src/common/login-strategies/password-login.strategy.ts b/libs/auth/src/common/login-strategies/password-login.strategy.ts
index 8b92e65f1f8..cd3d5df1d5e 100644
--- a/libs/auth/src/common/login-strategies/password-login.strategy.ts
+++ b/libs/auth/src/common/login-strategies/password-login.strategy.ts
@@ -12,6 +12,7 @@ import { TokenTwoFactorRequest } from "@bitwarden/common/auth/models/request/ide
 import { IdentityDeviceVerificationResponse } from "@bitwarden/common/auth/models/response/identity-device-verification.response";
 import { IdentityTokenResponse } from "@bitwarden/common/auth/models/response/identity-token.response";
 import { IdentityTwoFactorResponse } from "@bitwarden/common/auth/models/response/identity-two-factor.response";
+import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
 import { HashPurpose } from "@bitwarden/common/platform/enums";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import { PasswordStrengthServiceAbstraction } from "@bitwarden/common/tools/password-strength";
@@ -75,7 +76,7 @@ export class PasswordLoginStrategy extends LoginStrategy {
     this.localMasterKeyHash$ = this.cache.pipe(map((state) => state.localMasterKeyHash));
   }
 
-  override async logIn(credentials: PasswordLoginCredentials) {
+  override async logIn(credentials: PasswordLoginCredentials): Promise<AuthResult> {
     const { email, masterPassword, twoFactor } = credentials;
 
     const data = new PasswordLoginStrategyData();
@@ -163,18 +164,42 @@ export class PasswordLoginStrategy extends LoginStrategy {
     credentials: PasswordLoginCredentials,
     authResult: AuthResult,
   ): Promise<void> {
-    // TODO: PM-21084 - investigate if we should be sending down masterPasswordPolicy on the IdentityDeviceVerificationResponse like we do for the IdentityTwoFactorResponse
+    // TODO: PM-21084 - investigate if we should be sending down masterPasswordPolicy on the
+    // IdentityDeviceVerificationResponse like we do for the IdentityTwoFactorResponse
     // If the response is a device verification response, we don't need to evaluate the password
     if (identityResponse instanceof IdentityDeviceVerificationResponse) {
       return;
     }
 
     // The identity result can contain master password policies for the user's organizations
-    const masterPasswordPolicyOptions =
-      this.getMasterPasswordPolicyOptionsFromResponse(identityResponse);
+    let masterPasswordPolicyOptions: MasterPasswordPolicyOptions | undefined;
 
-    if (!masterPasswordPolicyOptions?.enforceOnLogin) {
-      return;
+    if (
+      await this.configService.getFeatureFlag(FeatureFlag.PM16117_ChangeExistingPasswordRefactor)
+    ) {
+      // Get the master password policy options from both the org invite and the identity response.
+      masterPasswordPolicyOptions = this.policyService.combineMasterPasswordPolicyOptions(
+        credentials.masterPasswordPoliciesFromOrgInvite,
+        this.getMasterPasswordPolicyOptionsFromResponse(identityResponse),
+      );
+
+      // We deliberately do not check enforceOnLogin as existing users who are logging
+      // in after getting an org invite should always be forced to set a password that
+      // meets the org's policy. Org Invite -> Registration also works this way for
+      // new BW users as well.
+      if (
+        !credentials.masterPasswordPoliciesFromOrgInvite &&
+        !masterPasswordPolicyOptions?.enforceOnLogin
+      ) {
+        return;
+      }
+    } else {
+      masterPasswordPolicyOptions =
+        this.getMasterPasswordPolicyOptionsFromResponse(identityResponse);
+
+      if (!masterPasswordPolicyOptions?.enforceOnLogin) {
+        return;
+      }
     }
 
     // If there is a policy active, evaluate the supplied password before its no longer in memory
diff --git a/libs/auth/src/common/login-strategies/sso-login.strategy.spec.ts b/libs/auth/src/common/login-strategies/sso-login.strategy.spec.ts
index 98142003c6e..ea041081985 100644
--- a/libs/auth/src/common/login-strategies/sso-login.strategy.spec.ts
+++ b/libs/auth/src/common/login-strategies/sso-login.strategy.spec.ts
@@ -139,7 +139,6 @@ describe("SsoLoginStrategy", () => {
       deviceTrustService,
       authRequestService,
       i18nService,
-      configService,
       accountService,
       masterPasswordService,
       keyService,
@@ -157,6 +156,7 @@ describe("SsoLoginStrategy", () => {
       vaultTimeoutSettingsService,
       kdfConfigService,
       environmentService,
+      configService,
     );
     credentials = new SsoLoginCredentials(ssoCode, ssoCodeVerifier, ssoRedirectUrl, ssoOrgId);
   });
diff --git a/libs/auth/src/common/login-strategies/sso-login.strategy.ts b/libs/auth/src/common/login-strategies/sso-login.strategy.ts
index 8b60e42f03e..8ab84f0968a 100644
--- a/libs/auth/src/common/login-strategies/sso-login.strategy.ts
+++ b/libs/auth/src/common/login-strategies/sso-login.strategy.ts
@@ -13,7 +13,6 @@ import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
 import { DeviceTrustServiceAbstraction } from "@bitwarden/common/key-management/device-trust/abstractions/device-trust.service.abstraction";
 import { KeyConnectorService } from "@bitwarden/common/key-management/key-connector/abstractions/key-connector.service";
 import { ErrorResponse } from "@bitwarden/common/models/response/error.response";
-import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { UserId } from "@bitwarden/common/types/guid";
 
@@ -74,7 +73,6 @@ export class SsoLoginStrategy extends LoginStrategy {
     private deviceTrustService: DeviceTrustServiceAbstraction,
     private authRequestService: AuthRequestServiceAbstraction,
     private i18nService: I18nService,
-    private configService: ConfigService,
     ...sharedDeps: ConstructorParameters<typeof LoginStrategy>
   ) {
     super(...sharedDeps);
diff --git a/libs/auth/src/common/login-strategies/user-api-login.strategy.spec.ts b/libs/auth/src/common/login-strategies/user-api-login.strategy.spec.ts
index 957a6a8e777..7114afbf94f 100644
--- a/libs/auth/src/common/login-strategies/user-api-login.strategy.spec.ts
+++ b/libs/auth/src/common/login-strategies/user-api-login.strategy.spec.ts
@@ -13,6 +13,7 @@ import {
   VaultTimeoutSettingsService,
 } from "@bitwarden/common/key-management/vault-timeout";
 import { AppIdService } from "@bitwarden/common/platform/abstractions/app-id.service";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import {
   Environment,
   EnvironmentService,
@@ -56,6 +57,7 @@ describe("UserApiLoginStrategy", () => {
   let billingAccountProfileStateService: MockProxy<BillingAccountProfileStateService>;
   let vaultTimeoutSettingsService: MockProxy<VaultTimeoutSettingsService>;
   let kdfConfigService: MockProxy<KdfConfigService>;
+  let configService: MockProxy<ConfigService>;
 
   let apiLogInStrategy: UserApiLoginStrategy;
   let credentials: UserApiLoginCredentials;
@@ -88,6 +90,7 @@ describe("UserApiLoginStrategy", () => {
     billingAccountProfileStateService = mock<BillingAccountProfileStateService>();
     vaultTimeoutSettingsService = mock<VaultTimeoutSettingsService>();
     kdfConfigService = mock<KdfConfigService>();
+    configService = mock<ConfigService>();
 
     appIdService.getAppId.mockResolvedValue(deviceId);
     tokenService.getTwoFactorToken.mockResolvedValue(null);
@@ -115,6 +118,7 @@ describe("UserApiLoginStrategy", () => {
       vaultTimeoutSettingsService,
       kdfConfigService,
       environmentService,
+      configService,
     );
 
     credentials = new UserApiLoginCredentials(apiClientId, apiClientSecret);
diff --git a/libs/auth/src/common/login-strategies/webauthn-login.strategy.spec.ts b/libs/auth/src/common/login-strategies/webauthn-login.strategy.spec.ts
index 432e4142d0c..f5ba2d0be23 100644
--- a/libs/auth/src/common/login-strategies/webauthn-login.strategy.spec.ts
+++ b/libs/auth/src/common/login-strategies/webauthn-login.strategy.spec.ts
@@ -16,6 +16,7 @@ import {
   VaultTimeoutSettingsService,
 } from "@bitwarden/common/key-management/vault-timeout";
 import { AppIdService } from "@bitwarden/common/platform/abstractions/app-id.service";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { EnvironmentService } from "@bitwarden/common/platform/abstractions/environment.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
@@ -54,6 +55,7 @@ describe("WebAuthnLoginStrategy", () => {
   let vaultTimeoutSettingsService: MockProxy<VaultTimeoutSettingsService>;
   let kdfConfigService: MockProxy<KdfConfigService>;
   let environmentService: MockProxy<EnvironmentService>;
+  let configService: MockProxy<ConfigService>;
 
   let webAuthnLoginStrategy!: WebAuthnLoginStrategy;
 
@@ -98,6 +100,7 @@ describe("WebAuthnLoginStrategy", () => {
     vaultTimeoutSettingsService = mock<VaultTimeoutSettingsService>();
     kdfConfigService = mock<KdfConfigService>();
     environmentService = mock<EnvironmentService>();
+    configService = mock<ConfigService>();
 
     tokenService.getTwoFactorToken.mockResolvedValue(null);
     appIdService.getAppId.mockResolvedValue(deviceId);
@@ -124,6 +127,7 @@ describe("WebAuthnLoginStrategy", () => {
       vaultTimeoutSettingsService,
       kdfConfigService,
       environmentService,
+      configService,
     );
 
     // Create credentials
diff --git a/libs/auth/src/common/models/domain/login-credentials.ts b/libs/auth/src/common/models/domain/login-credentials.ts
index bce8ce54de5..96ee88945eb 100644
--- a/libs/auth/src/common/models/domain/login-credentials.ts
+++ b/libs/auth/src/common/models/domain/login-credentials.ts
@@ -2,6 +2,7 @@
 // @ts-strict-ignore
 import { Jsonify } from "type-fest";
 
+import { MasterPasswordPolicyOptions } from "@bitwarden/common/admin-console/models/domain/master-password-policy-options";
 import { AuthenticationType } from "@bitwarden/common/auth/enums/authentication-type";
 import { TokenTwoFactorRequest } from "@bitwarden/common/auth/models/request/identity-token/token-two-factor.request";
 import { WebAuthnLoginAssertionResponseRequest } from "@bitwarden/common/auth/services/webauthn-login/request/webauthn-login-assertion-response.request";
@@ -15,6 +16,7 @@ export class PasswordLoginCredentials {
     public email: string,
     public masterPassword: string,
     public twoFactor?: TokenTwoFactorRequest,
+    public masterPasswordPoliciesFromOrgInvite?: MasterPasswordPolicyOptions,
   ) {}
 }
 
diff --git a/libs/auth/src/common/services/login-strategies/login-strategy.service.ts b/libs/auth/src/common/services/login-strategies/login-strategy.service.ts
index 767d52de370..6900e5e5872 100644
--- a/libs/auth/src/common/services/login-strategies/login-strategy.service.ts
+++ b/libs/auth/src/common/services/login-strategies/login-strategy.service.ts
@@ -402,6 +402,7 @@ export class LoginStrategyService implements LoginStrategyServiceAbstraction {
       this.vaultTimeoutSettingsService,
       this.kdfConfigService,
       this.environmentService,
+      this.configService,
     ];
 
     return source.pipe(
@@ -425,7 +426,6 @@ export class LoginStrategyService implements LoginStrategyServiceAbstraction {
               this.deviceTrustService,
               this.authRequestService,
               this.i18nService,
-              this.configService,
               ...sharedDeps,
             );
           case AuthenticationType.UserApiKey:
diff --git a/libs/common/src/admin-console/abstractions/policy/policy.service.abstraction.ts b/libs/common/src/admin-console/abstractions/policy/policy.service.abstraction.ts
index bf02872ed7c..8df7e44986b 100644
--- a/libs/common/src/admin-console/abstractions/policy/policy.service.abstraction.ts
+++ b/libs/common/src/admin-console/abstractions/policy/policy.service.abstraction.ts
@@ -50,6 +50,25 @@ export abstract class PolicyService {
     policies?: Policy[],
   ) => Observable<MasterPasswordPolicyOptions | undefined>;
 
+  /**
+   * Combines all Master Password policies that are passed in and returns
+   * back the strongest combination of all the policies in the form of a
+   * MasterPasswordPolicyOptions.
+   * @param policies
+   */
+  abstract combinePoliciesIntoMasterPasswordPolicyOptions(
+    policies: Policy[],
+  ): MasterPasswordPolicyOptions | undefined;
+
+  /**
+   * Takes an arbitrary amount of Master Password Policy options in any form and merges them
+   * together using the strictest combination of all of them.
+   * @param masterPasswordPolicyOptions
+   */
+  abstract combineMasterPasswordPolicyOptions(
+    ...masterPasswordPolicyOptions: MasterPasswordPolicyOptions[]
+  ): MasterPasswordPolicyOptions | undefined;
+
   /**
    * Evaluates whether a proposed Master Password complies with all Master Password policies that apply to the user.
    */
diff --git a/libs/common/src/admin-console/services/policy/default-policy.service.spec.ts b/libs/common/src/admin-console/services/policy/default-policy.service.spec.ts
index 7787bdbc943..9db61ec5c95 100644
--- a/libs/common/src/admin-console/services/policy/default-policy.service.spec.ts
+++ b/libs/common/src/admin-console/services/policy/default-policy.service.spec.ts
@@ -536,6 +536,152 @@ describe("PolicyService", () => {
     });
   });
 
+  describe("combinePoliciesIntoMasterPasswordPolicyOptions", () => {
+    let policyService: DefaultPolicyService;
+    let stateProvider: FakeStateProvider;
+    let organizationService: MockProxy<OrganizationService>;
+
+    beforeEach(() => {
+      stateProvider = new FakeStateProvider(mockAccountServiceWith(userId));
+      organizationService = mock<OrganizationService>();
+      policyService = new DefaultPolicyService(stateProvider, organizationService);
+    });
+
+    it("returns undefined when there are no policies", () => {
+      const result = policyService.combinePoliciesIntoMasterPasswordPolicyOptions([]);
+      expect(result).toBeUndefined();
+    });
+
+    it("returns options for a single policy", () => {
+      const masterPasswordPolicyRequirements = {
+        minComplexity: 3,
+        minLength: 10,
+        requireUpper: true,
+      };
+      const policies = [
+        new Policy(
+          policyData(
+            "1",
+            "org1",
+            PolicyType.MasterPassword,
+            true,
+            masterPasswordPolicyRequirements,
+          ),
+        ),
+      ];
+
+      const result = policyService.combinePoliciesIntoMasterPasswordPolicyOptions(policies);
+
+      expect(result).toEqual({
+        minComplexity: 3,
+        minLength: 10,
+        requireUpper: true,
+        requireLower: false,
+        requireNumbers: false,
+        requireSpecial: false,
+        enforceOnLogin: false,
+      });
+    });
+
+    it("merges options from multiple policies", () => {
+      const masterPasswordPolicyRequirements1 = {
+        minComplexity: 3,
+        minLength: 10,
+        requireUpper: true,
+      };
+      const masterPasswordPolicyRequirements2 = { minComplexity: 5, requireNumbers: true };
+      const policies = [
+        new Policy(
+          policyData(
+            "1",
+            "org1",
+            PolicyType.MasterPassword,
+            true,
+            masterPasswordPolicyRequirements1,
+          ),
+        ),
+        new Policy(
+          policyData(
+            "2",
+            "org2",
+            PolicyType.MasterPassword,
+            true,
+            masterPasswordPolicyRequirements2,
+          ),
+        ),
+      ];
+
+      const result = policyService.combinePoliciesIntoMasterPasswordPolicyOptions(policies);
+
+      expect(result).toEqual({
+        minComplexity: 5,
+        minLength: 10,
+        requireUpper: true,
+        requireLower: false,
+        requireNumbers: true,
+        requireSpecial: false,
+        enforceOnLogin: false,
+      });
+    });
+
+    it("ignores disabled policies", () => {
+      const masterPasswordPolicyRequirements = {
+        minComplexity: 3,
+        minLength: 10,
+        requireUpper: true,
+      };
+      const policies = [
+        new Policy(
+          policyData(
+            "1",
+            "org1",
+            PolicyType.MasterPassword,
+            false,
+            masterPasswordPolicyRequirements,
+          ),
+        ),
+      ];
+
+      const result = policyService.combinePoliciesIntoMasterPasswordPolicyOptions(policies);
+
+      expect(result).toBeUndefined();
+    });
+
+    it("ignores policies with no data", () => {
+      const policies = [new Policy(policyData("1", "org1", PolicyType.MasterPassword, true))];
+
+      const result = policyService.combinePoliciesIntoMasterPasswordPolicyOptions(policies);
+
+      expect(result).toBeUndefined();
+    });
+
+    it("returns undefined when policies are not MasterPassword related", () => {
+      const unrelatedPolicyRequirements = {
+        minComplexity: 3,
+        minLength: 10,
+        requireUpper: true,
+      };
+      const policies = [
+        new Policy(
+          policyData(
+            "1",
+            "org1",
+            PolicyType.MaximumVaultTimeout,
+            true,
+            unrelatedPolicyRequirements,
+          ),
+        ),
+        new Policy(
+          policyData("2", "org2", PolicyType.DisableSend, true, unrelatedPolicyRequirements),
+        ),
+      ];
+
+      const result = policyService.combinePoliciesIntoMasterPasswordPolicyOptions(policies);
+
+      expect(result).toBeUndefined();
+    });
+  });
+
   function policyData(
     id: string,
     organizationId: string,
diff --git a/libs/common/src/admin-console/services/policy/default-policy.service.ts b/libs/common/src/admin-console/services/policy/default-policy.service.ts
index b6e03ddf257..667dd9082a4 100644
--- a/libs/common/src/admin-console/services/policy/default-policy.service.ts
+++ b/libs/common/src/admin-console/services/policy/default-policy.service.ts
@@ -89,6 +89,8 @@ export class DefaultPolicyService implements PolicyService {
     const policies$ = policies ? of(policies) : this.policies$(userId);
     return policies$.pipe(
       map((obsPolicies) => {
+        // TODO: replace with this.combinePoliciesIntoMasterPasswordPolicyOptions(obsPolicies)) once
+        // FeatureFlag.PM16117_ChangeExistingPasswordRefactor is removed.
         let enforcedOptions: MasterPasswordPolicyOptions | undefined = undefined;
         const filteredPolicies =
           obsPolicies.filter((p) => p.type === PolicyType.MasterPassword) ?? [];
@@ -146,6 +148,47 @@ export class DefaultPolicyService implements PolicyService {
     );
   }
 
+  combinePoliciesIntoMasterPasswordPolicyOptions(
+    policies: Policy[],
+  ): MasterPasswordPolicyOptions | undefined {
+    let enforcedOptions: MasterPasswordPolicyOptions | undefined = undefined;
+    const filteredPolicies = policies.filter((p) => p.type === PolicyType.MasterPassword) ?? [];
+
+    if (filteredPolicies.length === 0) {
+      return;
+    }
+
+    filteredPolicies.forEach((currentPolicy) => {
+      if (!currentPolicy.enabled || !currentPolicy.data) {
+        return undefined;
+      }
+
+      if (!enforcedOptions) {
+        enforcedOptions = new MasterPasswordPolicyOptions();
+      }
+
+      this.mergeMasterPasswordPolicyOptions(enforcedOptions, currentPolicy.data);
+    });
+
+    return enforcedOptions;
+  }
+
+  combineMasterPasswordPolicyOptions(
+    ...policies: MasterPasswordPolicyOptions[]
+  ): MasterPasswordPolicyOptions | undefined {
+    let combinedOptions: MasterPasswordPolicyOptions | undefined = undefined;
+
+    policies.forEach((currentOptions) => {
+      if (!combinedOptions) {
+        combinedOptions = new MasterPasswordPolicyOptions();
+      }
+
+      this.mergeMasterPasswordPolicyOptions(combinedOptions, currentOptions);
+    });
+
+    return combinedOptions;
+  }
+
   evaluateMasterPassword(
     passwordStrength: number,
     newPassword: string,
@@ -245,4 +288,28 @@ export class DefaultPolicyService implements PolicyService {
         return organization.canManagePolicies;
     }
   }
+
+  private mergeMasterPasswordPolicyOptions(
+    target: MasterPasswordPolicyOptions | undefined,
+    source: MasterPasswordPolicyOptions | undefined,
+  ) {
+    if (!target) {
+      target = new MasterPasswordPolicyOptions();
+    }
+
+    // For complexity and minLength, take the highest value.
+    // For boolean settings, enable it if either policy has it enabled (OR).
+    if (source) {
+      target.minComplexity = Math.max(
+        target.minComplexity,
+        source.minComplexity ?? target.minComplexity,
+      );
+      target.minLength = Math.max(target.minLength, source.minLength ?? target.minLength);
+      target.requireUpper = Boolean(target.requireUpper || source.requireUpper);
+      target.requireLower = Boolean(target.requireLower || source.requireLower);
+      target.requireNumbers = Boolean(target.requireNumbers || source.requireNumbers);
+      target.requireSpecial = Boolean(target.requireSpecial || source.requireSpecial);
+      target.enforceOnLogin = Boolean(target.enforceOnLogin || source.enforceOnLogin);
+    }
+  }
 }
diff --git a/libs/common/src/auth/services/organization-invite/default-organization-invite.service.ts b/libs/common/src/auth/services/organization-invite/default-organization-invite.service.ts
new file mode 100644
index 00000000000..0ebbbaa8c0c
--- /dev/null
+++ b/libs/common/src/auth/services/organization-invite/default-organization-invite.service.ts
@@ -0,0 +1,26 @@
+import { OrganizationInvite } from "@bitwarden/common/auth/services/organization-invite/organization-invite";
+import { OrganizationInviteService } from "@bitwarden/common/auth/services/organization-invite/organization-invite.service";
+
+export class DefaultOrganizationInviteService implements OrganizationInviteService {
+  /**
+   * No-op implementation.
+   */
+  async getOrganizationInvite(): Promise<OrganizationInvite | null> {
+    return null;
+  }
+
+  /**
+   * No-op implementation.
+   * @param invite an organization invite
+   */
+  async setOrganizationInvitation(invite: OrganizationInvite): Promise<void> {
+    return;
+  }
+
+  /**
+   * No-op implementation.
+   * */
+  async clearOrganizationInvitation(): Promise<void> {
+    return;
+  }
+}
diff --git a/libs/common/src/auth/services/organization-invite/organization-invite-state.ts b/libs/common/src/auth/services/organization-invite/organization-invite-state.ts
new file mode 100644
index 00000000000..c544fa3269f
--- /dev/null
+++ b/libs/common/src/auth/services/organization-invite/organization-invite-state.ts
@@ -0,0 +1,13 @@
+import { OrganizationInvite } from "@bitwarden/common/auth/services/organization-invite/organization-invite";
+import { KeyDefinition, ORGANIZATION_INVITE_DISK } from "@bitwarden/common/platform/state";
+
+// We're storing the organization invite for 2 reasons:
+// 1. If the org requires a MP policy check, we need to keep track that the user has already been redirected when they return.
+// 2. The MP policy check happens on login/register flows, we need to store the token to retrieve the policies then.
+export const ORGANIZATION_INVITE = new KeyDefinition<OrganizationInvite | null>(
+  ORGANIZATION_INVITE_DISK,
+  "organizationInvite",
+  {
+    deserializer: (invite) => (invite ? OrganizationInvite.fromJSON(invite) : null),
+  },
+);
diff --git a/libs/common/src/auth/services/organization-invite/organization-invite.service.ts b/libs/common/src/auth/services/organization-invite/organization-invite.service.ts
new file mode 100644
index 00000000000..15d9b1533f5
--- /dev/null
+++ b/libs/common/src/auth/services/organization-invite/organization-invite.service.ts
@@ -0,0 +1,20 @@
+import { OrganizationInvite } from "@bitwarden/common/auth/services/organization-invite/organization-invite";
+
+export abstract class OrganizationInviteService {
+  /**
+   * Returns the currently stored organization invite
+   */
+  abstract getOrganizationInvite: () => Promise<OrganizationInvite | null>;
+
+  /**
+   * Stores a new organization invite
+   * @param invite an organization invite
+   * @throws if the invite is nullish
+   */
+  abstract setOrganizationInvitation: (invite: OrganizationInvite) => Promise<void>;
+
+  /**
+   * Clears the currently stored organization invite
+   */
+  abstract clearOrganizationInvitation: () => Promise<void>;
+}
diff --git a/libs/common/src/auth/services/organization-invite/organization-invite.ts b/libs/common/src/auth/services/organization-invite/organization-invite.ts
new file mode 100644
index 00000000000..d18fdcedb41
--- /dev/null
+++ b/libs/common/src/auth/services/organization-invite/organization-invite.ts
@@ -0,0 +1,20 @@
+import { Jsonify } from "type-fest";
+
+export class OrganizationInvite {
+  email?: string;
+  initOrganization?: boolean;
+  orgSsoIdentifier?: string;
+  orgUserHasExistingUser?: boolean;
+  organizationId?: string;
+  organizationName?: string;
+  organizationUserId?: string;
+  token?: string;
+
+  static fromJSON(json: Jsonify<OrganizationInvite>): OrganizationInvite | null {
+    if (json == null) {
+      return null;
+    }
+
+    return Object.assign(new OrganizationInvite(), json);
+  }
+}

From 8c3c5ab861e286da36fd2b93e805f2e27220bbcb Mon Sep 17 00:00:00 2001
From: Vicki League <vleague@bitwarden.com>
Date: Thu, 10 Jul 2025 09:14:46 -0400
Subject: [PATCH 094/239] [CL-759] Remove browser style overrides for checkbox
 (#15552)

---
 apps/browser/src/popup/scss/base.scss              | 4 ++--
 libs/components/src/checkbox/checkbox.component.ts | 3 +++
 2 files changed, 5 insertions(+), 2 deletions(-)

diff --git a/apps/browser/src/popup/scss/base.scss b/apps/browser/src/popup/scss/base.scss
index 2b625678b89..0565de1712c 100644
--- a/apps/browser/src/popup/scss/base.scss
+++ b/apps/browser/src/popup/scss/base.scss
@@ -100,7 +100,7 @@ a:not(popup-page a, popup-tab-navigation a) {
   }
 }
 
-input:not(bit-form-field input, bit-search input),
+input:not(bit-form-field input, bit-search input, input[bitcheckbox]),
 select:not(bit-form-field select),
 textarea:not(bit-form-field textarea) {
   @include themify($themes) {
@@ -109,7 +109,7 @@ textarea:not(bit-form-field textarea) {
   }
 }
 
-input,
+input:not(input[bitcheckbox]),
 select,
 textarea,
 button:not(bit-chip-select button) {
diff --git a/libs/components/src/checkbox/checkbox.component.ts b/libs/components/src/checkbox/checkbox.component.ts
index c420b3f3473..6159b01d2b5 100644
--- a/libs/components/src/checkbox/checkbox.component.ts
+++ b/libs/components/src/checkbox/checkbox.component.ts
@@ -15,6 +15,7 @@ export class CheckboxComponent implements BitFormControlAbstraction {
   protected inputClasses = [
     "tw-appearance-none",
     "tw-outline-none",
+    "tw-box-border",
     "tw-relative",
     "tw-transition",
     "tw-cursor-pointer",
@@ -37,6 +38,7 @@ export class CheckboxComponent implements BitFormControlAbstraction {
     "before:tw-border",
     "before:tw-border-solid",
     "before:tw-border-secondary-500",
+    "before:tw-box-border",
 
     "after:tw-content-['']",
     "after:tw-block",
@@ -44,6 +46,7 @@ export class CheckboxComponent implements BitFormControlAbstraction {
     "after:tw-inset-0",
     "after:tw-h-[1.12rem]",
     "after:tw-w-[1.12rem]",
+    "after:tw-box-border",
 
     "hover:before:tw-border-2",
     "[&>label]:before:tw-border-2",

From a53b1e9ffb38cedd71ae90a0fe61eb814e84b152 Mon Sep 17 00:00:00 2001
From: Alex Morask <144709477+amorask-bitwarden@users.noreply.github.com>
Date: Thu, 10 Jul 2025 08:32:40 -0500
Subject: [PATCH 095/239] [PM-21881] Manage payment details outside of checkout
 (#15458)

* Add billable-entity

* Add payment types

* Add billing.client

* Update stripe.service

* Add payment method components

* Add address.pipe

* Add billing address components

* Add account credit components

* Add component index

* Add feature flag

* Re-work organization warnings code

* Add organization-payment-details.component

* Backfill translations

* Set up organization FF routing

* Add account-payment-details.component

* Set up account FF routing

* Add provider-payment-details.component

* Set up provider FF routing

* Use inline component templates for re-usable payment components

* Remove errant rebase file

* Removed public accessibility modifier

* Fix failing test
---
 .../collections/vault.component.html          |    8 +-
 .../collections/vault.component.ts            |   21 +-
 .../organization-layout.component.html        |    6 +-
 .../layouts/organization-layout.component.ts  |   15 +
 .../individual-billing-routing.module.ts      |    7 +
 .../account-payment-details.component.html    |   26 +
 .../account-payment-details.component.ts      |  116 ++
 .../individual/subscription.component.html    |    5 +-
 .../individual/subscription.component.ts      |   20 +-
 .../organization-billing-routing.module.ts    |   12 +
 ...rganization-payment-details.component.html |   41 +
 .../organization-payment-details.component.ts |  187 +++
 .../organization-payment-method.component.ts  |   20 +-
 .../add-account-credit-dialog.component.ts    |  241 ++++
 .../change-payment-method-dialog.component.ts |  113 ++
 .../display-account-credit.component.ts       |   63 +
 .../display-billing-address.component.ts      |   56 +
 .../display-payment-method.component.ts       |  107 ++
 .../edit-billing-address-dialog.component.ts  |  147 +++
 .../enter-billing-address.component.ts        |  194 +++
 .../enter-payment-method.component.ts         |  408 ++++++
 .../app/billing/payment/components/index.ts   |    9 +
 .../verify-bank-account.component.ts          |   86 ++
 .../payment/pipes/address.pipe.spec.ts        |   65 +
 .../app/billing/payment/pipes/address.pipe.ts |   32 +
 .../src/app/billing/payment/pipes/index.ts    |    1 +
 .../billing/payment/types/billing-address.ts  |   37 +
 .../src/app/billing/payment/types/index.ts    |    6 +
 .../payment/types/masked-payment-method.ts    |  114 ++
 .../payment/types/selectable-country.ts       |  259 ++++
 .../app/billing/payment/types/tax-id-type.ts  | 1123 +++++++++++++++++
 .../src/app/billing/payment/types/tax-id.ts   |   18 +
 .../payment/types/tokenized-payment-method.ts |   22 +
 .../app/billing/services/billing.client.ts    |  153 +++
 apps/web/src/app/billing/services/index.ts    |    1 +
 .../app/billing/services/stripe.service.ts    |  124 +-
 .../billing/services/trial-flow.service.ts    |    9 +-
 .../shared/payment-method.component.ts        |   11 +
 .../src/app/billing/types/billable-entity.ts  |   42 +
 apps/web/src/app/billing/types/index.ts       |    2 +
 .../app/billing/warnings/components/index.ts  |    2 +
 ...anization-free-trial-warning.component.ts} |   22 +-
 ...ion-reseller-renewal-warning.component.ts} |   18 +-
 .../app/billing/warnings/services/index.ts    |    1 +
 .../organization-warnings.service.spec.ts     |    0
 .../services/organization-warnings.service.ts |   73 +-
 .../src/app/billing/warnings/types/index.ts   |    1 +
 .../warnings/types/organization-warnings.ts   |   11 +
 .../vault-banners.component.spec.ts           |    5 +
 .../vault-banners/vault-banners.component.ts  |   11 +-
 apps/web/src/locales/en/messages.json         |   48 +
 .../providers/providers-layout.component.html |    6 +
 .../providers/providers-layout.component.ts   |    8 +
 .../providers/providers-routing.module.ts     |    9 +
 .../provider-payment-details.component.html   |   33 +
 .../provider-payment-details.component.ts     |  133 ++
 .../provider-subscription.component.html      |   88 +-
 .../provider-subscription.component.ts        |    7 +
 .../overview/overview.component.ts            |   14 +-
 libs/common/src/enums/feature-flag.enum.ts    |    2 +
 60 files changed, 4268 insertions(+), 151 deletions(-)
 create mode 100644 apps/web/src/app/billing/individual/payment-details/account-payment-details.component.html
 create mode 100644 apps/web/src/app/billing/individual/payment-details/account-payment-details.component.ts
 create mode 100644 apps/web/src/app/billing/organizations/payment-details/organization-payment-details.component.html
 create mode 100644 apps/web/src/app/billing/organizations/payment-details/organization-payment-details.component.ts
 create mode 100644 apps/web/src/app/billing/payment/components/add-account-credit-dialog.component.ts
 create mode 100644 apps/web/src/app/billing/payment/components/change-payment-method-dialog.component.ts
 create mode 100644 apps/web/src/app/billing/payment/components/display-account-credit.component.ts
 create mode 100644 apps/web/src/app/billing/payment/components/display-billing-address.component.ts
 create mode 100644 apps/web/src/app/billing/payment/components/display-payment-method.component.ts
 create mode 100644 apps/web/src/app/billing/payment/components/edit-billing-address-dialog.component.ts
 create mode 100644 apps/web/src/app/billing/payment/components/enter-billing-address.component.ts
 create mode 100644 apps/web/src/app/billing/payment/components/enter-payment-method.component.ts
 create mode 100644 apps/web/src/app/billing/payment/components/index.ts
 create mode 100644 apps/web/src/app/billing/payment/components/verify-bank-account.component.ts
 create mode 100644 apps/web/src/app/billing/payment/pipes/address.pipe.spec.ts
 create mode 100644 apps/web/src/app/billing/payment/pipes/address.pipe.ts
 create mode 100644 apps/web/src/app/billing/payment/pipes/index.ts
 create mode 100644 apps/web/src/app/billing/payment/types/billing-address.ts
 create mode 100644 apps/web/src/app/billing/payment/types/index.ts
 create mode 100644 apps/web/src/app/billing/payment/types/masked-payment-method.ts
 create mode 100644 apps/web/src/app/billing/payment/types/selectable-country.ts
 create mode 100644 apps/web/src/app/billing/payment/types/tax-id-type.ts
 create mode 100644 apps/web/src/app/billing/payment/types/tax-id.ts
 create mode 100644 apps/web/src/app/billing/payment/types/tokenized-payment-method.ts
 create mode 100644 apps/web/src/app/billing/services/billing.client.ts
 create mode 100644 apps/web/src/app/billing/types/billable-entity.ts
 create mode 100644 apps/web/src/app/billing/types/index.ts
 create mode 100644 apps/web/src/app/billing/warnings/components/index.ts
 rename apps/web/src/app/billing/warnings/{free-trial-warning.component.ts => components/organization-free-trial-warning.component.ts} (68%)
 rename apps/web/src/app/billing/warnings/{reseller-renewal-warning.component.ts => components/organization-reseller-renewal-warning.component.ts} (63%)
 create mode 100644 apps/web/src/app/billing/warnings/services/index.ts
 rename apps/web/src/app/billing/{ => warnings}/services/organization-warnings.service.spec.ts (100%)
 rename apps/web/src/app/billing/{ => warnings}/services/organization-warnings.service.ts (78%)
 create mode 100644 apps/web/src/app/billing/warnings/types/index.ts
 create mode 100644 apps/web/src/app/billing/warnings/types/organization-warnings.ts
 create mode 100644 bitwarden_license/bit-web/src/app/billing/providers/payment-details/provider-payment-details.component.html
 create mode 100644 bitwarden_license/bit-web/src/app/billing/providers/payment-details/provider-payment-details.component.ts

diff --git a/apps/web/src/app/admin-console/organizations/collections/vault.component.html b/apps/web/src/app/admin-console/organizations/collections/vault.component.html
index e8782ca0f2d..ddfcda04c76 100644
--- a/apps/web/src/app/admin-console/organizations/collections/vault.component.html
+++ b/apps/web/src/app/admin-console/organizations/collections/vault.component.html
@@ -1,14 +1,14 @@
-<app-free-trial-warning
+<app-organization-free-trial-warning
   *ngIf="useOrganizationWarningsService$ | async"
   [organization]="organization"
   (clicked)="navigateToPaymentMethod()"
 >
-</app-free-trial-warning>
-<app-reseller-renewal-warning
+</app-organization-free-trial-warning>
+<app-organization-reseller-renewal-warning
   *ngIf="useOrganizationWarningsService$ | async"
   [organization]="organization"
 >
-</app-reseller-renewal-warning>
+</app-organization-reseller-renewal-warning>
 <ng-container *ngIf="freeTrialWhenWarningsServiceDisabled$ | async as freeTrial">
   <bit-banner
     id="free-trial-banner"
diff --git a/apps/web/src/app/admin-console/organizations/collections/vault.component.ts b/apps/web/src/app/admin-console/organizations/collections/vault.component.ts
index 5846209e4c6..9c2293889e3 100644
--- a/apps/web/src/app/admin-console/organizations/collections/vault.component.ts
+++ b/apps/web/src/app/admin-console/organizations/collections/vault.component.ts
@@ -78,8 +78,8 @@ import {
   DecryptionFailureDialogComponent,
   PasswordRepromptService,
 } from "@bitwarden/vault";
-import { OrganizationWarningsService } from "@bitwarden/web-vault/app/billing/services/organization-warnings.service";
-import { ResellerRenewalWarningComponent } from "@bitwarden/web-vault/app/billing/warnings/reseller-renewal-warning.component";
+import { OrganizationResellerRenewalWarningComponent } from "@bitwarden/web-vault/app/billing/warnings/components/organization-reseller-renewal-warning.component";
+import { OrganizationWarningsService } from "@bitwarden/web-vault/app/billing/warnings/services/organization-warnings.service";
 
 import { BillingNotificationService } from "../../../billing/services/billing-notification.service";
 import {
@@ -88,7 +88,7 @@ import {
 } from "../../../billing/services/reseller-warning.service";
 import { TrialFlowService } from "../../../billing/services/trial-flow.service";
 import { FreeTrial } from "../../../billing/types/free-trial";
-import { FreeTrialWarningComponent } from "../../../billing/warnings/free-trial-warning.component";
+import { OrganizationFreeTrialWarningComponent } from "../../../billing/warnings/components/organization-free-trial-warning.component";
 import { SharedModule } from "../../../shared";
 import { AssignCollectionsWebComponent } from "../../../vault/components/assign-collections";
 import {
@@ -125,7 +125,7 @@ import {
   BulkCollectionsDialogResult,
 } from "./bulk-collections-dialog";
 import { CollectionAccessRestrictedComponent } from "./collection-access-restricted.component";
-import { getNestedCollectionTree, getFlatCollectionTree } from "./utils";
+import { getFlatCollectionTree, getNestedCollectionTree } from "./utils";
 import { VaultFilterModule } from "./vault-filter/vault-filter.module";
 import { VaultHeaderComponent } from "./vault-header/vault-header.component";
 
@@ -150,8 +150,8 @@ enum AddAccessStatusType {
     SharedModule,
     BannerModule,
     NoItemsModule,
-    FreeTrialWarningComponent,
-    ResellerRenewalWarningComponent,
+    OrganizationFreeTrialWarningComponent,
+    OrganizationResellerRenewalWarningComponent,
   ],
   providers: [
     RoutedVaultFilterService,
@@ -749,10 +749,13 @@ export class VaultComponent implements OnInit, OnDestroy {
   }
 
   async navigateToPaymentMethod() {
-    await this.router.navigate(
-      ["organizations", `${this.organization?.id}`, "billing", "payment-method"],
-      { state: { launchPaymentModalAutomatically: true } },
+    const managePaymentDetailsOutsideCheckout = await this.configService.getFeatureFlag(
+      FeatureFlag.PM21881_ManagePaymentDetailsOutsideCheckout,
     );
+    const route = managePaymentDetailsOutsideCheckout ? "payment-details" : "payment-method";
+    await this.router.navigate(["organizations", `${this.organization?.id}`, "billing", route], {
+      state: { launchPaymentModalAutomatically: true },
+    });
   }
 
   addAccessToggle(e: AddAccessStatusType) {
diff --git a/apps/web/src/app/admin-console/organizations/layouts/organization-layout.component.html b/apps/web/src/app/admin-console/organizations/layouts/organization-layout.component.html
index d5e771d1b17..cbb4e1cf064 100644
--- a/apps/web/src/app/admin-console/organizations/layouts/organization-layout.component.html
+++ b/apps/web/src/app/admin-console/organizations/layouts/organization-layout.component.html
@@ -74,7 +74,11 @@
     >
       <bit-nav-item [text]="'subscription' | i18n" route="billing/subscription"></bit-nav-item>
       <ng-container *ngIf="(showPaymentAndHistory$ | async) && (organizationIsUnmanaged$ | async)">
-        <bit-nav-item [text]="'paymentMethod' | i18n" route="billing/payment-method"></bit-nav-item>
+        @let paymentDetailsPageData = paymentDetailsPageData$ | async;
+        <bit-nav-item
+          [text]="paymentDetailsPageData.textKey | i18n"
+          [route]="paymentDetailsPageData.route"
+        ></bit-nav-item>
         <bit-nav-item [text]="'billingHistory' | i18n" route="billing/history"></bit-nav-item>
       </ng-container>
     </bit-nav-group>
diff --git a/apps/web/src/app/admin-console/organizations/layouts/organization-layout.component.ts b/apps/web/src/app/admin-console/organizations/layouts/organization-layout.component.ts
index dc1913a5336..89f62ed8975 100644
--- a/apps/web/src/app/admin-console/organizations/layouts/organization-layout.component.ts
+++ b/apps/web/src/app/admin-console/organizations/layouts/organization-layout.component.ts
@@ -64,6 +64,11 @@ export class OrganizationLayoutComponent implements OnInit {
   protected showSponsoredFamiliesDropdown$: Observable<boolean>;
   protected canShowPoliciesTab$: Observable<boolean>;
 
+  protected paymentDetailsPageData$: Observable<{
+    route: string;
+    textKey: string;
+  }>;
+
   constructor(
     private route: ActivatedRoute,
     private organizationService: OrganizationService,
@@ -135,6 +140,16 @@ export class OrganizationLayoutComponent implements OnInit {
           ),
       ),
     );
+
+    this.paymentDetailsPageData$ = this.configService
+      .getFeatureFlag$(FeatureFlag.PM21881_ManagePaymentDetailsOutsideCheckout)
+      .pipe(
+        map((managePaymentDetailsOutsideCheckout) =>
+          managePaymentDetailsOutsideCheckout
+            ? { route: "billing/payment-details", textKey: "paymentDetails" }
+            : { route: "billing/payment-method", textKey: "paymentMethod" },
+        ),
+      );
   }
 
   canShowVaultTab(organization: Organization): boolean {
diff --git a/apps/web/src/app/billing/individual/individual-billing-routing.module.ts b/apps/web/src/app/billing/individual/individual-billing-routing.module.ts
index bb1ada0b719..87b342ed997 100644
--- a/apps/web/src/app/billing/individual/individual-billing-routing.module.ts
+++ b/apps/web/src/app/billing/individual/individual-billing-routing.module.ts
@@ -1,6 +1,8 @@
 import { NgModule } from "@angular/core";
 import { RouterModule, Routes } from "@angular/router";
 
+import { AccountPaymentDetailsComponent } from "@bitwarden/web-vault/app/billing/individual/payment-details/account-payment-details.component";
+
 import { PaymentMethodComponent } from "../shared";
 
 import { BillingHistoryViewComponent } from "./billing-history-view.component";
@@ -30,6 +32,11 @@ const routes: Routes = [
         component: PaymentMethodComponent,
         data: { titleId: "paymentMethod" },
       },
+      {
+        path: "payment-details",
+        component: AccountPaymentDetailsComponent,
+        data: { titleId: "paymentDetails" },
+      },
       {
         path: "billing-history",
         component: BillingHistoryViewComponent,
diff --git a/apps/web/src/app/billing/individual/payment-details/account-payment-details.component.html b/apps/web/src/app/billing/individual/payment-details/account-payment-details.component.html
new file mode 100644
index 00000000000..c10590d8b1b
--- /dev/null
+++ b/apps/web/src/app/billing/individual/payment-details/account-payment-details.component.html
@@ -0,0 +1,26 @@
+<bit-container>
+  @let view = view$ | async;
+  @if (!view) {
+    <ng-container>
+      <i
+        class="bwi bwi-spinner bwi-spin tw-text-muted"
+        title="{{ 'loading' | i18n }}"
+        aria-hidden="true"
+      ></i>
+      <span class="tw-sr-only">{{ "loading" | i18n }}</span>
+    </ng-container>
+  } @else {
+    <ng-container>
+      <app-display-payment-method
+        [owner]="view.account"
+        [paymentMethod]="view.paymentMethod"
+        (updated)="setPaymentMethod($event)"
+      ></app-display-payment-method>
+
+      <app-display-account-credit
+        [owner]="view.account"
+        [credit]="view.credit"
+      ></app-display-account-credit>
+    </ng-container>
+  }
+</bit-container>
diff --git a/apps/web/src/app/billing/individual/payment-details/account-payment-details.component.ts b/apps/web/src/app/billing/individual/payment-details/account-payment-details.component.ts
new file mode 100644
index 00000000000..4a4d0f60c0b
--- /dev/null
+++ b/apps/web/src/app/billing/individual/payment-details/account-payment-details.component.ts
@@ -0,0 +1,116 @@
+import { Component } from "@angular/core";
+import { ActivatedRoute, Router } from "@angular/router";
+import {
+  BehaviorSubject,
+  EMPTY,
+  filter,
+  from,
+  map,
+  merge,
+  Observable,
+  shareReplay,
+  switchMap,
+  tap,
+} from "rxjs";
+import { catchError } from "rxjs/operators";
+
+import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
+import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
+
+import { HeaderModule } from "../../../layouts/header/header.module";
+import { SharedModule } from "../../../shared";
+import {
+  DisplayAccountCreditComponent,
+  DisplayPaymentMethodComponent,
+} from "../../payment/components";
+import { MaskedPaymentMethod } from "../../payment/types";
+import { BillingClient } from "../../services";
+import { accountToBillableEntity, BillableEntity } from "../../types";
+
+class RedirectError {
+  constructor(
+    public path: string[],
+    public relativeTo: ActivatedRoute,
+  ) {}
+}
+
+type View = {
+  account: BillableEntity;
+  paymentMethod: MaskedPaymentMethod | null;
+  credit: number | null;
+};
+
+@Component({
+  templateUrl: "./account-payment-details.component.html",
+  standalone: true,
+  imports: [
+    DisplayAccountCreditComponent,
+    DisplayPaymentMethodComponent,
+    HeaderModule,
+    SharedModule,
+  ],
+  providers: [BillingClient],
+})
+export class AccountPaymentDetailsComponent {
+  private viewState$ = new BehaviorSubject<View | null>(null);
+
+  private load$: Observable<View> = this.accountService.activeAccount$.pipe(
+    switchMap((account) =>
+      this.configService
+        .getFeatureFlag$(FeatureFlag.PM21881_ManagePaymentDetailsOutsideCheckout)
+        .pipe(
+          map((managePaymentDetailsOutsideCheckout) => {
+            if (!managePaymentDetailsOutsideCheckout) {
+              throw new RedirectError(["../payment-method"], this.activatedRoute);
+            }
+            return account;
+          }),
+        ),
+    ),
+    accountToBillableEntity,
+    switchMap(async (account) => {
+      const [paymentMethod, credit] = await Promise.all([
+        this.billingClient.getPaymentMethod(account),
+        this.billingClient.getCredit(account),
+      ]);
+
+      return {
+        account,
+        paymentMethod,
+        credit,
+      };
+    }),
+    shareReplay({ bufferSize: 1, refCount: false }),
+    catchError((error: unknown) => {
+      if (error instanceof RedirectError) {
+        return from(this.router.navigate(error.path, { relativeTo: error.relativeTo })).pipe(
+          switchMap(() => EMPTY),
+        );
+      }
+      throw error;
+    }),
+  );
+
+  view$: Observable<View> = merge(
+    this.load$.pipe(tap((view) => this.viewState$.next(view))),
+    this.viewState$.pipe(filter((view): view is View => view !== null)),
+  ).pipe(shareReplay({ bufferSize: 1, refCount: true }));
+
+  constructor(
+    private accountService: AccountService,
+    private activatedRoute: ActivatedRoute,
+    private billingClient: BillingClient,
+    private configService: ConfigService,
+    private router: Router,
+  ) {}
+
+  setPaymentMethod = (paymentMethod: MaskedPaymentMethod) => {
+    if (this.viewState$.value) {
+      this.viewState$.next({
+        ...this.viewState$.value,
+        paymentMethod,
+      });
+    }
+  };
+}
diff --git a/apps/web/src/app/billing/individual/subscription.component.html b/apps/web/src/app/billing/individual/subscription.component.html
index 934a24570f4..fa2eb0412a9 100644
--- a/apps/web/src/app/billing/individual/subscription.component.html
+++ b/apps/web/src/app/billing/individual/subscription.component.html
@@ -3,7 +3,10 @@
     <bit-tab-link [route]="(hasPremium$ | async) ? 'user-subscription' : 'premium'">{{
       "subscription" | i18n
     }}</bit-tab-link>
-    <bit-tab-link route="payment-method">{{ "paymentMethod" | i18n }}</bit-tab-link>
+    @let paymentMethodPageData = paymentDetailsPageData$ | async;
+    <bit-tab-link [route]="paymentMethodPageData.route">{{
+      paymentMethodPageData.textKey | i18n
+    }}</bit-tab-link>
     <bit-tab-link route="billing-history">{{ "billingHistory" | i18n }}</bit-tab-link>
   </bit-tab-nav-bar>
 </app-header>
diff --git a/apps/web/src/app/billing/individual/subscription.component.ts b/apps/web/src/app/billing/individual/subscription.component.ts
index 2a08ec85127..c6a20a9f6a3 100644
--- a/apps/web/src/app/billing/individual/subscription.component.ts
+++ b/apps/web/src/app/billing/individual/subscription.component.ts
@@ -1,10 +1,12 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
 import { Component, OnInit } from "@angular/core";
-import { Observable, switchMap } from "rxjs";
+import { map, Observable, switchMap } from "rxjs";
 
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { BillingAccountProfileStateService } from "@bitwarden/common/billing/abstractions/account/billing-account-profile-state.service";
+import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
 
 @Component({
@@ -13,16 +15,32 @@ import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/pl
 })
 export class SubscriptionComponent implements OnInit {
   hasPremium$: Observable<boolean>;
+  paymentDetailsPageData$: Observable<{
+    route: string;
+    textKey: string;
+  }>;
+
   selfHosted: boolean;
 
   constructor(
     private platformUtilsService: PlatformUtilsService,
     billingAccountProfileStateService: BillingAccountProfileStateService,
     accountService: AccountService,
+    private configService: ConfigService,
   ) {
     this.hasPremium$ = accountService.activeAccount$.pipe(
       switchMap((account) => billingAccountProfileStateService.hasPremiumPersonally$(account.id)),
     );
+
+    this.paymentDetailsPageData$ = this.configService
+      .getFeatureFlag$(FeatureFlag.PM21881_ManagePaymentDetailsOutsideCheckout)
+      .pipe(
+        map((managePaymentDetailsOutsideCheckout) =>
+          managePaymentDetailsOutsideCheckout
+            ? { route: "payment-details", textKey: "paymentDetails" }
+            : { route: "payment-method", textKey: "paymentMethod" },
+        ),
+      );
   }
 
   ngOnInit() {
diff --git a/apps/web/src/app/billing/organizations/organization-billing-routing.module.ts b/apps/web/src/app/billing/organizations/organization-billing-routing.module.ts
index 1bfb9fc4912..692791db855 100644
--- a/apps/web/src/app/billing/organizations/organization-billing-routing.module.ts
+++ b/apps/web/src/app/billing/organizations/organization-billing-routing.module.ts
@@ -2,6 +2,7 @@ import { NgModule } from "@angular/core";
 import { RouterModule, Routes } from "@angular/router";
 
 import { canAccessBillingTab } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
+import { OrganizationPaymentDetailsComponent } from "@bitwarden/web-vault/app/billing/organizations/payment-details/organization-payment-details.component";
 
 import { organizationPermissionsGuard } from "../../admin-console/organizations/guards/org-permissions.guard";
 import { organizationIsUnmanaged } from "../../billing/guards/organization-is-unmanaged.guard";
@@ -36,6 +37,17 @@ const routes: Routes = [
           titleId: "paymentMethod",
         },
       },
+      {
+        path: "payment-details",
+        component: OrganizationPaymentDetailsComponent,
+        canActivate: [
+          organizationPermissionsGuard((org) => org.canEditPaymentMethods),
+          organizationIsUnmanaged,
+        ],
+        data: {
+          titleId: "paymentDetails",
+        },
+      },
       {
         path: "history",
         component: OrgBillingHistoryViewComponent,
diff --git a/apps/web/src/app/billing/organizations/payment-details/organization-payment-details.component.html b/apps/web/src/app/billing/organizations/payment-details/organization-payment-details.component.html
new file mode 100644
index 00000000000..17f4349fdd5
--- /dev/null
+++ b/apps/web/src/app/billing/organizations/payment-details/organization-payment-details.component.html
@@ -0,0 +1,41 @@
+@let organization = organization$ | async;
+@if (organization) {
+  <app-organization-free-trial-warning
+    [organization]="organization"
+    (clicked)="changePaymentMethod()"
+  >
+  </app-organization-free-trial-warning>
+}
+<app-header></app-header>
+<bit-container>
+  @let view = view$ | async;
+  @if (!view) {
+    <ng-container>
+      <i
+        class="bwi bwi-spinner bwi-spin tw-text-muted"
+        title="{{ 'loading' | i18n }}"
+        aria-hidden="true"
+      ></i>
+      <span class="tw-sr-only">{{ "loading" | i18n }}</span>
+    </ng-container>
+  } @else {
+    <ng-container>
+      <app-display-payment-method
+        [owner]="view.organization"
+        [paymentMethod]="view.paymentMethod"
+        (updated)="setPaymentMethod($event)"
+      ></app-display-payment-method>
+
+      <app-display-billing-address
+        [owner]="view.organization"
+        [billingAddress]="view.billingAddress"
+        (updated)="setBillingAddress($event)"
+      ></app-display-billing-address>
+
+      <app-display-account-credit
+        [owner]="view.organization"
+        [credit]="view.credit"
+      ></app-display-account-credit>
+    </ng-container>
+  }
+</bit-container>
diff --git a/apps/web/src/app/billing/organizations/payment-details/organization-payment-details.component.ts b/apps/web/src/app/billing/organizations/payment-details/organization-payment-details.component.ts
new file mode 100644
index 00000000000..3618696f697
--- /dev/null
+++ b/apps/web/src/app/billing/organizations/payment-details/organization-payment-details.component.ts
@@ -0,0 +1,187 @@
+import { Component, OnInit, ViewChild } from "@angular/core";
+import { ActivatedRoute, Router } from "@angular/router";
+import {
+  BehaviorSubject,
+  catchError,
+  EMPTY,
+  filter,
+  firstValueFrom,
+  from,
+  lastValueFrom,
+  map,
+  merge,
+  Observable,
+  shareReplay,
+  switchMap,
+  tap,
+} from "rxjs";
+
+import {
+  getOrganizationById,
+  OrganizationService,
+} from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
+import { Organization } from "@bitwarden/common/admin-console/models/domain/organization";
+import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
+import { getUserId } from "@bitwarden/common/auth/services/account.service";
+import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
+import { DialogService } from "@bitwarden/components";
+
+import { HeaderModule } from "../../../layouts/header/header.module";
+import { SharedModule } from "../../../shared";
+import {
+  ChangePaymentMethodDialogComponent,
+  DisplayAccountCreditComponent,
+  DisplayBillingAddressComponent,
+  DisplayPaymentMethodComponent,
+} from "../../payment/components";
+import { BillingAddress, MaskedPaymentMethod } from "../../payment/types";
+import { BillingClient } from "../../services";
+import { BillableEntity, organizationToBillableEntity } from "../../types";
+import { OrganizationFreeTrialWarningComponent } from "../../warnings/components";
+
+class RedirectError {
+  constructor(
+    public path: string[],
+    public relativeTo: ActivatedRoute,
+  ) {}
+}
+
+type View = {
+  organization: BillableEntity;
+  paymentMethod: MaskedPaymentMethod | null;
+  billingAddress: BillingAddress | null;
+  credit: number | null;
+};
+
+@Component({
+  templateUrl: "./organization-payment-details.component.html",
+  standalone: true,
+  imports: [
+    DisplayBillingAddressComponent,
+    DisplayAccountCreditComponent,
+    DisplayPaymentMethodComponent,
+    HeaderModule,
+    OrganizationFreeTrialWarningComponent,
+    SharedModule,
+  ],
+  providers: [BillingClient],
+})
+export class OrganizationPaymentDetailsComponent implements OnInit {
+  @ViewChild(OrganizationFreeTrialWarningComponent)
+  organizationFreeTrialWarningComponent!: OrganizationFreeTrialWarningComponent;
+
+  private viewState$ = new BehaviorSubject<View | null>(null);
+
+  private load$: Observable<View> = this.accountService.activeAccount$
+    .pipe(
+      getUserId,
+      switchMap((userId) =>
+        this.organizationService
+          .organizations$(userId)
+          .pipe(getOrganizationById(this.activatedRoute.snapshot.params.organizationId)),
+      ),
+    )
+    .pipe(
+      switchMap((organization) =>
+        this.configService
+          .getFeatureFlag$(FeatureFlag.PM21881_ManagePaymentDetailsOutsideCheckout)
+          .pipe(
+            map((managePaymentDetailsOutsideCheckout) => {
+              if (!managePaymentDetailsOutsideCheckout) {
+                throw new RedirectError(["../payment-method"], this.activatedRoute);
+              }
+              return organization;
+            }),
+          ),
+      ),
+      organizationToBillableEntity,
+      switchMap(async (organization) => {
+        const [paymentMethod, billingAddress, credit] = await Promise.all([
+          this.billingClient.getPaymentMethod(organization),
+          this.billingClient.getBillingAddress(organization),
+          this.billingClient.getCredit(organization),
+        ]);
+
+        return {
+          organization,
+          paymentMethod,
+          billingAddress,
+          credit,
+        };
+      }),
+      catchError((error: unknown) => {
+        if (error instanceof RedirectError) {
+          return from(this.router.navigate(error.path, { relativeTo: error.relativeTo })).pipe(
+            switchMap(() => EMPTY),
+          );
+        }
+        throw error;
+      }),
+    );
+
+  view$: Observable<View> = merge(
+    this.load$.pipe(tap((view) => this.viewState$.next(view))),
+    this.viewState$.pipe(filter((view): view is View => view !== null)),
+  ).pipe(shareReplay({ bufferSize: 1, refCount: true }));
+
+  organization$ = this.view$.pipe(map((view) => view.organization.data as Organization));
+
+  constructor(
+    private accountService: AccountService,
+    private activatedRoute: ActivatedRoute,
+    private billingClient: BillingClient,
+    private configService: ConfigService,
+    private dialogService: DialogService,
+    private organizationService: OrganizationService,
+    private router: Router,
+  ) {}
+
+  async ngOnInit() {
+    const openChangePaymentMethodDialogOnStart =
+      (history.state?.launchPaymentModalAutomatically as boolean) ?? false;
+
+    if (openChangePaymentMethodDialogOnStart) {
+      history.replaceState({ ...history.state, launchPaymentModalAutomatically: false }, "");
+      await this.changePaymentMethod();
+    }
+  }
+
+  changePaymentMethod = async () => {
+    const view = await firstValueFrom(this.view$);
+    const dialogRef = ChangePaymentMethodDialogComponent.open(this.dialogService, {
+      data: {
+        owner: view.organization,
+      },
+    });
+    const result = await lastValueFrom(dialogRef.closed);
+    if (result?.type === "success") {
+      this.setPaymentMethod(result.paymentMethod);
+      if (!view.billingAddress && result.paymentMethod.type !== "payPal") {
+        const billingAddress = await this.billingClient.getBillingAddress(view.organization);
+        if (billingAddress) {
+          this.setBillingAddress(billingAddress);
+        }
+      }
+      this.organizationFreeTrialWarningComponent.refresh();
+    }
+  };
+
+  setBillingAddress = (billingAddress: BillingAddress) => {
+    if (this.viewState$.value) {
+      this.viewState$.next({
+        ...this.viewState$.value,
+        billingAddress,
+      });
+    }
+  };
+
+  setPaymentMethod = (paymentMethod: MaskedPaymentMethod) => {
+    if (this.viewState$.value) {
+      this.viewState$.next({
+        ...this.viewState$.value,
+        paymentMethod,
+      });
+    }
+  };
+}
diff --git a/apps/web/src/app/billing/organizations/payment-method/organization-payment-method.component.ts b/apps/web/src/app/billing/organizations/payment-method/organization-payment-method.component.ts
index 36ac7debae2..9b144fe59a7 100644
--- a/apps/web/src/app/billing/organizations/payment-method/organization-payment-method.component.ts
+++ b/apps/web/src/app/billing/organizations/payment-method/organization-payment-method.component.ts
@@ -4,7 +4,7 @@ import { Location } from "@angular/common";
 import { Component, OnDestroy } from "@angular/core";
 import { takeUntilDestroyed } from "@angular/core/rxjs-interop";
 import { ActivatedRoute, Router } from "@angular/router";
-import { firstValueFrom, from, lastValueFrom, map, switchMap } from "rxjs";
+import { combineLatest, firstValueFrom, from, lastValueFrom, map, switchMap } from "rxjs";
 
 import { OrganizationApiServiceAbstraction } from "@bitwarden/common/admin-console/abstractions/organization/organization-api.service.abstraction";
 import {
@@ -19,6 +19,8 @@ import { TaxInformation } from "@bitwarden/common/billing/models/domain";
 import { VerifyBankAccountRequest } from "@bitwarden/common/billing/models/request/verify-bank-account.request";
 import { OrganizationSubscriptionResponse } from "@bitwarden/common/billing/models/response/organization-subscription.response";
 import { PaymentSourceResponse } from "@bitwarden/common/billing/models/response/payment-source.response";
+import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
 import { SyncService } from "@bitwarden/common/platform/sync";
@@ -72,18 +74,28 @@ export class OrganizationPaymentMethodComponent implements OnDestroy {
     private accountService: AccountService,
     protected syncService: SyncService,
     private billingNotificationService: BillingNotificationService,
+    private configService: ConfigService,
   ) {
-    this.activatedRoute.params
+    combineLatest([
+      this.activatedRoute.params,
+      this.configService.getFeatureFlag$(FeatureFlag.PM21881_ManagePaymentDetailsOutsideCheckout),
+    ])
       .pipe(
-        takeUntilDestroyed(),
-        switchMap(({ organizationId }) => {
+        switchMap(([{ organizationId }, managePaymentDetailsOutsideCheckout]) => {
           if (this.platformUtilsService.isSelfHost()) {
             return from(this.router.navigate(["/settings/subscription"]));
           }
 
+          if (managePaymentDetailsOutsideCheckout) {
+            return from(
+              this.router.navigate(["../payment-details"], { relativeTo: this.activatedRoute }),
+            );
+          }
+
           this.organizationId = organizationId;
           return from(this.load());
         }),
+        takeUntilDestroyed(),
       )
       .subscribe();
 
diff --git a/apps/web/src/app/billing/payment/components/add-account-credit-dialog.component.ts b/apps/web/src/app/billing/payment/components/add-account-credit-dialog.component.ts
new file mode 100644
index 00000000000..2030d0e73ec
--- /dev/null
+++ b/apps/web/src/app/billing/payment/components/add-account-credit-dialog.component.ts
@@ -0,0 +1,241 @@
+import { DIALOG_DATA } from "@angular/cdk/dialog";
+import { Component, ElementRef, Inject, ViewChild } from "@angular/core";
+import {
+  AbstractControl,
+  FormControl,
+  FormGroup,
+  ValidationErrors,
+  ValidatorFn,
+  Validators,
+} from "@angular/forms";
+import { map } from "rxjs";
+
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
+import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
+import { DialogConfig, DialogRef, DialogService, ToastService } from "@bitwarden/components";
+
+import { SharedModule } from "../../../shared";
+import { BillingClient } from "../../services";
+import { BillableEntity } from "../../types";
+
+type DialogParams = {
+  owner: BillableEntity;
+};
+
+type DialogResult = "cancelled" | "error" | "launched";
+
+type PayPalConfig = {
+  businessId: string;
+  buttonAction: string;
+};
+
+declare const process: {
+  env: {
+    PAYPAL_CONFIG: PayPalConfig;
+  };
+};
+
+const positiveNumberValidator =
+  (message: string): ValidatorFn =>
+  (control: AbstractControl): ValidationErrors | null => {
+    if (!control.value) {
+      return null;
+    }
+
+    const value = parseFloat(control.value);
+
+    if (isNaN(value) || value <= 0) {
+      return { notPositiveNumber: { message } };
+    }
+
+    return null;
+  };
+
+@Component({
+  template: `
+    <form [formGroup]="formGroup" [bitSubmit]="submit">
+      <bit-dialog>
+        <span bitDialogTitle class="tw-font-semibold">
+          {{ "addCredit" | i18n }}
+        </span>
+        <div bitDialogContent>
+          <p bitTypography="body1">{{ "creditDelayed" | i18n }}</p>
+          <div class="tw-grid tw-grid-cols-2">
+            <bit-radio-group [formControl]="formGroup.controls.paymentMethod">
+              <bit-radio-button id="credit-method-paypal" [value]="'payPal'">
+                <bit-label> <i class="bwi bwi-paypal"></i>PayPal</bit-label>
+              </bit-radio-button>
+              <bit-radio-button id="credit-method-bitcoin" [value]="'bitPay'">
+                <bit-label> <i class="bwi bwi-bitcoin"></i>Bitcoin</bit-label>
+              </bit-radio-button>
+            </bit-radio-group>
+          </div>
+          <div class="tw-grid tw-grid-cols-2">
+            <bit-form-field>
+              <bit-label>{{ "amount" | i18n }}</bit-label>
+              <input
+                bitInput
+                [formControl]="formGroup.controls.amount"
+                type="text"
+                (blur)="formatAmount()"
+                required
+              />
+              <span bitPrefix>$USD</span>
+            </bit-form-field>
+          </div>
+        </div>
+        <ng-container bitDialogFooter>
+          <button type="submit" bitButton bitFormButton buttonType="primary">
+            {{ "submit" | i18n }}
+          </button>
+          <button
+            type="button"
+            bitButton
+            bitFormButton
+            buttonType="secondary"
+            [bitDialogClose]="'cancelled'"
+          >
+            {{ "cancel" | i18n }}
+          </button>
+        </ng-container>
+      </bit-dialog>
+    </form>
+    <form #payPalForm action="{{ payPalConfig.buttonAction }}" method="post" target="_top">
+      <input type="hidden" name="cmd" value="_xclick" />
+      <input type="hidden" name="business" value="{{ payPalConfig.businessId }}" />
+      <input type="hidden" name="button_subtype" value="services" />
+      <input type="hidden" name="no_note" value="1" />
+      <input type="hidden" name="no_shipping" value="1" />
+      <input type="hidden" name="rm" value="1" />
+      <input type="hidden" name="return" value="{{ redirectUrl }}" />
+      <input type="hidden" name="cancel_return" value="{{ redirectUrl }}" />
+      <input type="hidden" name="currency_code" value="USD" />
+      <input
+        type="hidden"
+        name="image_url"
+        value="https://bitwarden.com/images/paypal-banner.png"
+      />
+      <input type="hidden" name="bn" value="PP-BuyNowBF:btn_buynow_LG.gif:NonHosted" />
+      <input type="hidden" name="amount" value="{{ amount }}" />
+      <input type="hidden" name="custom" value="{{ payPalCustom$ | async }}" />
+      <input type="hidden" name="item_name" value="Bitwarden Account Credit" />
+      <input type="hidden" name="item_number" value="{{ payPalSubject }}" />
+    </form>
+  `,
+  standalone: true,
+  imports: [SharedModule],
+  providers: [BillingClient],
+})
+export class AddAccountCreditDialogComponent {
+  @ViewChild("payPalForm", { read: ElementRef, static: true }) payPalForm!: ElementRef;
+
+  protected payPalConfig = process.env.PAYPAL_CONFIG as PayPalConfig;
+  protected redirectUrl = window.location.href;
+
+  protected formGroup = new FormGroup({
+    paymentMethod: new FormControl<"payPal" | "bitPay">("payPal"),
+    amount: new FormControl<string | null>("0.00", [
+      Validators.required,
+      positiveNumberValidator(this.i18nService.t("mustBePositiveNumber")),
+    ]),
+  });
+
+  protected payPalCustom$ = this.configService.cloudRegion$.pipe(
+    map((cloudRegion) => {
+      switch (this.dialogParams.owner.type) {
+        case "account": {
+          return `user_id=${this.dialogParams.owner.data.id},account_credit=1,region=${cloudRegion}`;
+        }
+        case "organization": {
+          return `organization_id=${this.dialogParams.owner.data.id},account_credit=1,region=${cloudRegion}`;
+        }
+        case "provider": {
+          return `provider_id=${this.dialogParams.owner.data.id},account_credit=1,region=${cloudRegion}`;
+        }
+      }
+    }),
+  );
+
+  constructor(
+    private billingClient: BillingClient,
+    private configService: ConfigService,
+    @Inject(DIALOG_DATA) private dialogParams: DialogParams,
+    private dialogRef: DialogRef<DialogResult>,
+    private i18nService: I18nService,
+    private platformUtilsService: PlatformUtilsService,
+    private toastService: ToastService,
+  ) {}
+
+  submit = async (): Promise<void> => {
+    this.formGroup.markAllAsTouched();
+
+    if (!this.formGroup.valid) {
+      return;
+    }
+
+    if (this.formGroup.value.paymentMethod === "bitPay") {
+      const result = await this.billingClient.addCreditWithBitPay(this.dialogParams.owner, {
+        amount: this.amount!,
+        redirectUrl: this.redirectUrl,
+      });
+
+      switch (result.type) {
+        case "success": {
+          this.platformUtilsService.launchUri(result.value);
+          this.dialogRef.close("launched");
+          break;
+        }
+        case "error": {
+          this.toastService.showToast({
+            variant: "error",
+            title: "",
+            message: result.message,
+          });
+          this.dialogRef.close("error");
+          break;
+        }
+      }
+    }
+
+    this.payPalForm.nativeElement.submit();
+    this.dialogRef.close("launched");
+  };
+
+  formatAmount = (): void => {
+    if (this.formGroup.value.amount) {
+      const amount = parseFloat(this.formGroup.value.amount);
+      if (isNaN(amount)) {
+        this.formGroup.controls.amount.setValue(null);
+      } else {
+        this.formGroup.controls.amount.setValue(amount.toFixed(2).toString());
+      }
+    }
+  };
+
+  get amount(): number | null {
+    if (this.formGroup.value.amount) {
+      const amount = parseFloat(this.formGroup.value.amount);
+      if (isNaN(amount)) {
+        return null;
+      }
+      return amount;
+    }
+    return null;
+  }
+
+  get payPalSubject(): string {
+    switch (this.dialogParams.owner.type) {
+      case "account": {
+        return this.dialogParams.owner.data.email;
+      }
+      case "organization":
+      case "provider": {
+        return this.dialogParams.owner.data.name;
+      }
+    }
+  }
+
+  static open = (dialogService: DialogService, dialogConfig: DialogConfig<DialogParams>) =>
+    dialogService.open<DialogResult>(AddAccountCreditDialogComponent, dialogConfig);
+}
diff --git a/apps/web/src/app/billing/payment/components/change-payment-method-dialog.component.ts b/apps/web/src/app/billing/payment/components/change-payment-method-dialog.component.ts
new file mode 100644
index 00000000000..efd0055fb95
--- /dev/null
+++ b/apps/web/src/app/billing/payment/components/change-payment-method-dialog.component.ts
@@ -0,0 +1,113 @@
+import { DIALOG_DATA } from "@angular/cdk/dialog";
+import { Component, Inject, ViewChild } from "@angular/core";
+
+import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+import { DialogConfig, DialogRef, DialogService, ToastService } from "@bitwarden/components";
+
+import { SharedModule } from "../../../shared";
+import { BillingClient } from "../../services";
+import { BillableEntity } from "../../types";
+import { MaskedPaymentMethod } from "../types";
+
+import { EnterPaymentMethodComponent } from "./enter-payment-method.component";
+
+type DialogParams = {
+  owner: BillableEntity;
+};
+
+type DialogResult =
+  | { type: "cancelled" }
+  | { type: "error" }
+  | { type: "success"; paymentMethod: MaskedPaymentMethod };
+
+@Component({
+  template: `
+    <form [formGroup]="formGroup" [bitSubmit]="submit">
+      <bit-dialog>
+        <span bitDialogTitle class="tw-font-semibold">
+          {{ "changePaymentMethod" | i18n }}
+        </span>
+        <div bitDialogContent>
+          <app-enter-payment-method [group]="formGroup" [includeBillingAddress]="true">
+          </app-enter-payment-method>
+        </div>
+        <ng-container bitDialogFooter>
+          <button bitButton bitFormButton buttonType="primary" type="submit">
+            {{ "save" | i18n }}
+          </button>
+          <button
+            bitButton
+            buttonType="secondary"
+            type="button"
+            [bitDialogClose]="{ type: 'cancelled' }"
+          >
+            {{ "cancel" | i18n }}
+          </button>
+        </ng-container>
+      </bit-dialog>
+    </form>
+  `,
+  standalone: true,
+  imports: [EnterPaymentMethodComponent, SharedModule],
+  providers: [BillingClient],
+})
+export class ChangePaymentMethodDialogComponent {
+  @ViewChild(EnterPaymentMethodComponent)
+  private enterPaymentMethodComponent!: EnterPaymentMethodComponent;
+  protected formGroup = EnterPaymentMethodComponent.getFormGroup();
+
+  constructor(
+    private billingClient: BillingClient,
+    @Inject(DIALOG_DATA) protected dialogParams: DialogParams,
+    private dialogRef: DialogRef<DialogResult>,
+    private i18nService: I18nService,
+    private toastService: ToastService,
+  ) {}
+
+  submit = async () => {
+    this.formGroup.markAllAsTouched();
+
+    if (!this.formGroup.valid) {
+      return;
+    }
+
+    const paymentMethod = await this.enterPaymentMethodComponent.tokenize();
+    const billingAddress =
+      this.formGroup.value.type !== "payPal"
+        ? this.formGroup.controls.billingAddress.getRawValue()
+        : null;
+
+    const result = await this.billingClient.updatePaymentMethod(
+      this.dialogParams.owner,
+      paymentMethod,
+      billingAddress,
+    );
+
+    switch (result.type) {
+      case "success": {
+        this.toastService.showToast({
+          variant: "success",
+          title: "",
+          message: this.i18nService.t("paymentMethodUpdated"),
+        });
+        this.dialogRef.close({
+          type: "success",
+          paymentMethod: result.value,
+        });
+        break;
+      }
+      case "error": {
+        this.toastService.showToast({
+          variant: "error",
+          title: "",
+          message: result.message,
+        });
+        this.dialogRef.close({ type: "error" });
+        break;
+      }
+    }
+  };
+
+  static open = (dialogService: DialogService, dialogConfig: DialogConfig<DialogParams>) =>
+    dialogService.open<DialogResult>(ChangePaymentMethodDialogComponent, dialogConfig);
+}
diff --git a/apps/web/src/app/billing/payment/components/display-account-credit.component.ts b/apps/web/src/app/billing/payment/components/display-account-credit.component.ts
new file mode 100644
index 00000000000..7cbe3a27f30
--- /dev/null
+++ b/apps/web/src/app/billing/payment/components/display-account-credit.component.ts
@@ -0,0 +1,63 @@
+import { CurrencyPipe } from "@angular/common";
+import { Component, Input } from "@angular/core";
+
+import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+import { DialogService, ToastService } from "@bitwarden/components";
+
+import { SharedModule } from "../../../shared";
+import { BillingClient } from "../../services";
+import { BillableEntity } from "../../types";
+
+import { AddAccountCreditDialogComponent } from "./add-account-credit-dialog.component";
+
+@Component({
+  selector: "app-display-account-credit",
+  template: `
+    <bit-section>
+      <h2 bitTypography="h2">{{ "accountCredit" | i18n }}: {{ formattedCredit }}</h2>
+      <p>{{ "availableCreditAppliedToInvoice" | i18n }}</p>
+      <button type="button" bitButton buttonType="secondary" [bitAction]="addAccountCredit">
+        {{ "addCredit" | i18n }}
+      </button>
+    </bit-section>
+  `,
+  standalone: true,
+  imports: [SharedModule],
+  providers: [BillingClient, CurrencyPipe],
+})
+export class DisplayAccountCreditComponent {
+  @Input({ required: true }) owner!: BillableEntity;
+  @Input({ required: true }) credit!: number | null;
+
+  constructor(
+    private billingClient: BillingClient,
+    private currencyPipe: CurrencyPipe,
+    private dialogService: DialogService,
+    private i18nService: I18nService,
+    private toastService: ToastService,
+  ) {}
+
+  addAccountCredit = async () => {
+    if (this.owner.type !== "account") {
+      const billingAddress = await this.billingClient.getBillingAddress(this.owner);
+      if (!billingAddress) {
+        this.toastService.showToast({
+          variant: "error",
+          title: "",
+          message: this.i18nService.t("billingAddressRequiredToAddCredit"),
+        });
+      }
+    }
+
+    AddAccountCreditDialogComponent.open(this.dialogService, {
+      data: {
+        owner: this.owner,
+      },
+    });
+  };
+
+  get formattedCredit(): string | null {
+    const credit = this.credit ?? 0;
+    return this.currencyPipe.transform(credit, "$");
+  }
+}
diff --git a/apps/web/src/app/billing/payment/components/display-billing-address.component.ts b/apps/web/src/app/billing/payment/components/display-billing-address.component.ts
new file mode 100644
index 00000000000..f0a11321e5d
--- /dev/null
+++ b/apps/web/src/app/billing/payment/components/display-billing-address.component.ts
@@ -0,0 +1,56 @@
+import { Component, EventEmitter, Input, Output } from "@angular/core";
+import { lastValueFrom } from "rxjs";
+
+import { DialogService } from "@bitwarden/components";
+
+import { SharedModule } from "../../../shared";
+import { BillableEntity } from "../../types";
+import { AddressPipe } from "../pipes";
+import { BillingAddress } from "../types";
+
+import { EditBillingAddressDialogComponent } from "./edit-billing-address-dialog.component";
+
+@Component({
+  selector: "app-display-billing-address",
+  template: `
+    <bit-section>
+      <h2 bitTypography="h2">{{ "billingAddress" | i18n }}</h2>
+      @if (billingAddress) {
+        <p>{{ billingAddress | address }}</p>
+        @if (billingAddress.taxId) {
+          <p>{{ "taxId" | i18n: billingAddress.taxId.value }}</p>
+        }
+      } @else {
+        <p>{{ "noBillingAddress" | i18n }}</p>
+      }
+      @let key = billingAddress ? "editBillingAddress" : "addBillingAddress";
+      <button type="button" bitButton buttonType="secondary" [bitAction]="editBillingAddress">
+        {{ key | i18n }}
+      </button>
+    </bit-section>
+  `,
+  standalone: true,
+  imports: [AddressPipe, SharedModule],
+})
+export class DisplayBillingAddressComponent {
+  @Input({ required: true }) owner!: BillableEntity;
+  @Input({ required: true }) billingAddress!: BillingAddress | null;
+  @Output() updated = new EventEmitter<BillingAddress>();
+
+  constructor(private dialogService: DialogService) {}
+
+  editBillingAddress = async (): Promise<void> => {
+    const dialogRef = EditBillingAddressDialogComponent.open(this.dialogService, {
+      data: {
+        owner: this.owner,
+        billingAddress: this.billingAddress,
+      },
+    });
+
+    const result = await lastValueFrom(dialogRef.closed);
+
+    if (result?.type === "success") {
+      this.updated.emit(result.billingAddress);
+    }
+  };
+}
diff --git a/apps/web/src/app/billing/payment/components/display-payment-method.component.ts b/apps/web/src/app/billing/payment/components/display-payment-method.component.ts
new file mode 100644
index 00000000000..769472bcfcf
--- /dev/null
+++ b/apps/web/src/app/billing/payment/components/display-payment-method.component.ts
@@ -0,0 +1,107 @@
+import { Component, EventEmitter, Input, Output } from "@angular/core";
+import { lastValueFrom } from "rxjs";
+
+import { DialogService } from "@bitwarden/components";
+
+import { SharedModule } from "../../../shared";
+import { BillableEntity } from "../../types";
+import { MaskedPaymentMethod } from "../types";
+
+import { ChangePaymentMethodDialogComponent } from "./change-payment-method-dialog.component";
+import { VerifyBankAccountComponent } from "./verify-bank-account.component";
+
+@Component({
+  selector: "app-display-payment-method",
+  template: `
+    <bit-section>
+      <h2 bitTypography="h2">{{ "paymentMethod" | i18n }}</h2>
+      @if (paymentMethod) {
+        @switch (paymentMethod.type) {
+          @case ("bankAccount") {
+            @if (!paymentMethod.verified) {
+              <app-verify-bank-account [owner]="owner" (verified)="onBankAccountVerified($event)">
+              </app-verify-bank-account>
+            }
+
+            <p>
+              <i class="bwi bwi-fw bwi-billing"></i>
+              {{ paymentMethod.bankName }}, *{{ paymentMethod.last4 }}
+              @if (!paymentMethod.verified) {
+                <span>- {{ "unverified" | i18n }}</span>
+              }
+            </p>
+          }
+          @case ("card") {
+            <p class="tw-flex tw-items-center tw-gap-2">
+              @let brandIcon = getBrandIconForCard();
+              @if (brandIcon !== null) {
+                <i class="bwi bwi-fw credit-card-icon {{ brandIcon }}"></i>
+              } @else {
+                <i class="bwi bwi-fw bwi-credit-card"></i>
+              }
+              {{ paymentMethod.brand | titlecase }}, *{{ paymentMethod.last4 }},
+              {{ paymentMethod.expiration }}
+            </p>
+          }
+          @case ("payPal") {
+            <p>
+              <i class="bwi bwi-fw bwi-paypal tw-text-primary-600"></i>
+              {{ paymentMethod.email }}
+            </p>
+          }
+        }
+      } @else {
+        <p bitTypography="body1">{{ "noPaymentMethod" | i18n }}</p>
+      }
+      @let key = paymentMethod ? "changePaymentMethod" : "addPaymentMethod";
+      <button type="button" bitButton buttonType="secondary" [bitAction]="changePaymentMethod">
+        {{ key | i18n }}
+      </button>
+    </bit-section>
+  `,
+  standalone: true,
+  imports: [SharedModule, VerifyBankAccountComponent],
+})
+export class DisplayPaymentMethodComponent {
+  @Input({ required: true }) owner!: BillableEntity;
+  @Input({ required: true }) paymentMethod!: MaskedPaymentMethod | null;
+  @Output() updated = new EventEmitter<MaskedPaymentMethod>();
+
+  protected availableCardIcons: Record<string, string> = {
+    amex: "card-amex",
+    diners: "card-diners-club",
+    discover: "card-discover",
+    jcb: "card-jcb",
+    mastercard: "card-mastercard",
+    unionpay: "card-unionpay",
+    visa: "card-visa",
+  };
+
+  constructor(private dialogService: DialogService) {}
+
+  changePaymentMethod = async (): Promise<void> => {
+    const dialogRef = ChangePaymentMethodDialogComponent.open(this.dialogService, {
+      data: {
+        owner: this.owner,
+      },
+    });
+
+    const result = await lastValueFrom(dialogRef.closed);
+
+    if (result?.type === "success") {
+      this.updated.emit(result.paymentMethod);
+    }
+  };
+
+  onBankAccountVerified = (paymentMethod: MaskedPaymentMethod) => this.updated.emit(paymentMethod);
+
+  protected getBrandIconForCard = (): string | null => {
+    if (this.paymentMethod?.type !== "card") {
+      return null;
+    }
+
+    return this.paymentMethod.brand in this.availableCardIcons
+      ? this.availableCardIcons[this.paymentMethod.brand]
+      : null;
+  };
+}
diff --git a/apps/web/src/app/billing/payment/components/edit-billing-address-dialog.component.ts b/apps/web/src/app/billing/payment/components/edit-billing-address-dialog.component.ts
new file mode 100644
index 00000000000..c844d08df58
--- /dev/null
+++ b/apps/web/src/app/billing/payment/components/edit-billing-address-dialog.component.ts
@@ -0,0 +1,147 @@
+import { DIALOG_DATA } from "@angular/cdk/dialog";
+import { Component, Inject } from "@angular/core";
+
+import { ProductTierType } from "@bitwarden/common/billing/enums";
+import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+import { DialogConfig, DialogRef, DialogService, ToastService } from "@bitwarden/components";
+
+import { SharedModule } from "../../../shared";
+import { BillingClient } from "../../services";
+import { BillableEntity } from "../../types";
+import { BillingAddress, getTaxIdTypeForCountry } from "../types";
+
+import { EnterBillingAddressComponent } from "./enter-billing-address.component";
+
+type DialogParams = {
+  owner: BillableEntity;
+  billingAddress: BillingAddress | null;
+};
+
+type DialogResult =
+  | { type: "cancelled" }
+  | { type: "error" }
+  | { type: "success"; billingAddress: BillingAddress };
+
+@Component({
+  template: `
+    <form [formGroup]="formGroup" [bitSubmit]="submit">
+      <bit-dialog>
+        <span bitDialogTitle class="tw-font-semibold">
+          {{ "editBillingAddress" | i18n }}
+        </span>
+        <div bitDialogContent>
+          <app-enter-billing-address
+            [scenario]="{
+              type: 'update',
+              existing: dialogParams.billingAddress,
+              supportsTaxId,
+            }"
+            [group]="formGroup"
+          ></app-enter-billing-address>
+        </div>
+        <ng-container bitDialogFooter>
+          <button bitButton bitFormButton buttonType="primary" type="submit">
+            {{ "save" | i18n }}
+          </button>
+          <button
+            bitButton
+            buttonType="secondary"
+            type="button"
+            [bitDialogClose]="{ type: 'cancelled' }"
+          >
+            {{ "cancel" | i18n }}
+          </button>
+        </ng-container>
+      </bit-dialog>
+    </form>
+  `,
+  standalone: true,
+  imports: [EnterBillingAddressComponent, SharedModule],
+  providers: [BillingClient],
+})
+export class EditBillingAddressDialogComponent {
+  protected formGroup = EnterBillingAddressComponent.getFormGroup();
+
+  constructor(
+    private billingClient: BillingClient,
+    @Inject(DIALOG_DATA) protected dialogParams: DialogParams,
+    private dialogRef: DialogRef<DialogResult>,
+    private i18nService: I18nService,
+    private toastService: ToastService,
+  ) {
+    if (dialogParams.billingAddress) {
+      this.formGroup.patchValue({
+        ...dialogParams.billingAddress,
+        taxId: dialogParams.billingAddress.taxId?.value,
+      });
+    }
+  }
+
+  submit = async (): Promise<void> => {
+    this.formGroup.markAllAsTouched();
+
+    if (this.formGroup.invalid) {
+      return;
+    }
+
+    const { taxId, ...addressFields } = this.formGroup.getRawValue();
+
+    const taxIdType = taxId ? getTaxIdTypeForCountry(addressFields.country) : null;
+
+    const billingAddress = taxIdType
+      ? { ...addressFields, taxId: { code: taxIdType.code, value: taxId! } }
+      : { ...addressFields, taxId: null };
+
+    const result = await this.billingClient.updateBillingAddress(
+      this.dialogParams.owner,
+      billingAddress,
+    );
+
+    switch (result.type) {
+      case "success": {
+        this.toastService.showToast({
+          variant: "success",
+          title: "",
+          message: this.i18nService.t("billingAddressUpdated"),
+        });
+        this.dialogRef.close({
+          type: "success",
+          billingAddress: result.value,
+        });
+        break;
+      }
+      case "error": {
+        this.toastService.showToast({
+          variant: "error",
+          title: "",
+          message: result.message,
+        });
+        this.dialogRef.close({
+          type: "error",
+        });
+        break;
+      }
+    }
+  };
+
+  get supportsTaxId(): boolean {
+    switch (this.dialogParams.owner.type) {
+      case "account": {
+        return false;
+      }
+      case "organization": {
+        return [
+          ProductTierType.TeamsStarter,
+          ProductTierType.Teams,
+          ProductTierType.Enterprise,
+        ].includes(this.dialogParams.owner.data.productTierType);
+      }
+      case "provider": {
+        return true;
+      }
+    }
+  }
+
+  static open = (dialogService: DialogService, dialogConfig: DialogConfig<DialogParams>) =>
+    dialogService.open<DialogResult>(EditBillingAddressDialogComponent, dialogConfig);
+}
diff --git a/apps/web/src/app/billing/payment/components/enter-billing-address.component.ts b/apps/web/src/app/billing/payment/components/enter-billing-address.component.ts
new file mode 100644
index 00000000000..0419828d8ba
--- /dev/null
+++ b/apps/web/src/app/billing/payment/components/enter-billing-address.component.ts
@@ -0,0 +1,194 @@
+import { Component, Input, OnDestroy, OnInit } from "@angular/core";
+import { FormControl, FormGroup, Validators } from "@angular/forms";
+import { map, Observable, startWith, Subject, takeUntil } from "rxjs";
+
+import { ControlsOf } from "@bitwarden/angular/types/controls-of";
+
+import { SharedModule } from "../../../shared";
+import { BillingAddress, selectableCountries, taxIdTypes } from "../types";
+
+export interface BillingAddressControls {
+  country: string;
+  postalCode: string;
+  line1: string | null;
+  line2: string | null;
+  city: string | null;
+  state: string | null;
+  taxId: string | null;
+}
+
+export type BillingAddressFormGroup = FormGroup<ControlsOf<BillingAddressControls>>;
+
+type Scenario =
+  | {
+      type: "checkout";
+      supportsTaxId: boolean;
+    }
+  | {
+      type: "update";
+      existing?: BillingAddress;
+      supportsTaxId: boolean;
+    };
+
+@Component({
+  selector: "app-enter-billing-address",
+  template: `
+    <form [formGroup]="group">
+      <div class="tw-grid tw-grid-cols-12 tw-gap-4">
+        <div class="tw-col-span-6">
+          <bit-form-field [disableMargin]="true">
+            <bit-label>{{ "country" | i18n }}</bit-label>
+            <bit-select [formControl]="group.controls.country">
+              @for (selectableCountry of selectableCountries; track selectableCountry.value) {
+                <bit-option
+                  [value]="selectableCountry.value"
+                  [disabled]="selectableCountry.disabled"
+                  [label]="selectableCountry.name"
+                ></bit-option>
+              }
+            </bit-select>
+          </bit-form-field>
+        </div>
+        <div class="tw-col-span-6">
+          <bit-form-field [disableMargin]="true">
+            <bit-label>{{ "zipPostalCode" | i18n }}</bit-label>
+            <input
+              bitInput
+              type="text"
+              [formControl]="group.controls.postalCode"
+              autocomplete="postal-code"
+            />
+          </bit-form-field>
+        </div>
+        <div class="tw-col-span-6">
+          <bit-form-field [disableMargin]="true">
+            <bit-label>{{ "address1" | i18n }}</bit-label>
+            <input
+              bitInput
+              type="text"
+              [formControl]="group.controls.line1"
+              autocomplete="address-line1"
+            />
+          </bit-form-field>
+        </div>
+        <div class="tw-col-span-6">
+          <bit-form-field [disableMargin]="true">
+            <bit-label>{{ "address2" | i18n }}</bit-label>
+            <input
+              bitInput
+              type="text"
+              [formControl]="group.controls.line2"
+              autocomplete="address-line2"
+            />
+          </bit-form-field>
+        </div>
+        <div class="tw-col-span-6">
+          <bit-form-field [disableMargin]="true">
+            <bit-label>{{ "cityTown" | i18n }}</bit-label>
+            <input
+              bitInput
+              type="text"
+              [formControl]="group.controls.city"
+              autocomplete="address-level2"
+            />
+          </bit-form-field>
+        </div>
+        <div class="tw-col-span-6">
+          <bit-form-field [disableMargin]="true">
+            <bit-label>{{ "stateProvince" | i18n }}</bit-label>
+            <input
+              bitInput
+              type="text"
+              [formControl]="group.controls.state"
+              autocomplete="address-level1"
+            />
+          </bit-form-field>
+        </div>
+        @if (supportsTaxId$ | async) {
+          <div class="tw-col-span-6">
+            <bit-form-field [disableMargin]="true">
+              <bit-label>{{ "taxIdNumber" | i18n }}</bit-label>
+              <input bitInput type="text" [formControl]="group.controls.taxId" />
+            </bit-form-field>
+          </div>
+        }
+      </div>
+    </form>
+  `,
+  standalone: true,
+  imports: [SharedModule],
+})
+export class EnterBillingAddressComponent implements OnInit, OnDestroy {
+  @Input({ required: true }) scenario!: Scenario;
+  @Input({ required: true }) group!: BillingAddressFormGroup;
+
+  protected selectableCountries = selectableCountries;
+  protected supportsTaxId$!: Observable<boolean>;
+
+  private destroy$ = new Subject<void>();
+
+  ngOnInit() {
+    switch (this.scenario.type) {
+      case "checkout": {
+        this.disableAddressControls();
+        break;
+      }
+      case "update": {
+        if (this.scenario.existing) {
+          this.group.patchValue({
+            ...this.scenario.existing,
+            taxId: this.scenario.existing.taxId?.value,
+          });
+        }
+      }
+    }
+
+    this.supportsTaxId$ = this.group.controls.country.valueChanges.pipe(
+      startWith(this.group.value.country ?? this.selectableCountries[0].value),
+      map((country) => {
+        if (!this.scenario.supportsTaxId) {
+          return false;
+        }
+
+        return taxIdTypes.filter((taxIdType) => taxIdType.iso === country).length > 0;
+      }),
+    );
+
+    this.supportsTaxId$.pipe(takeUntil(this.destroy$)).subscribe((supportsTaxId) => {
+      if (supportsTaxId) {
+        this.group.controls.taxId.enable();
+      } else {
+        this.group.controls.taxId.disable();
+      }
+    });
+  }
+
+  ngOnDestroy() {
+    this.destroy$.next();
+    this.destroy$.complete();
+  }
+
+  disableAddressControls = () => {
+    this.group.controls.line1.disable();
+    this.group.controls.line2.disable();
+    this.group.controls.city.disable();
+    this.group.controls.state.disable();
+  };
+
+  static getFormGroup = (): BillingAddressFormGroup =>
+    new FormGroup({
+      country: new FormControl<string>("", {
+        nonNullable: true,
+        validators: [Validators.required],
+      }),
+      postalCode: new FormControl<string>("", {
+        nonNullable: true,
+        validators: [Validators.required],
+      }),
+      line1: new FormControl<string | null>(null),
+      line2: new FormControl<string | null>(null),
+      city: new FormControl<string | null>(null),
+      state: new FormControl<string | null>(null),
+      taxId: new FormControl<string | null>(null),
+    });
+}
diff --git a/apps/web/src/app/billing/payment/components/enter-payment-method.component.ts b/apps/web/src/app/billing/payment/components/enter-payment-method.component.ts
new file mode 100644
index 00000000000..4f5b2e3b15c
--- /dev/null
+++ b/apps/web/src/app/billing/payment/components/enter-payment-method.component.ts
@@ -0,0 +1,408 @@
+import { Component, Input, OnInit } from "@angular/core";
+import { FormControl, FormGroup, Validators } from "@angular/forms";
+import { BehaviorSubject, startWith, Subject, takeUntil } from "rxjs";
+
+import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
+import { PopoverModule, ToastService } from "@bitwarden/components";
+
+import { SharedModule } from "../../../shared";
+import { BillingServicesModule, BraintreeService, StripeService } from "../../services";
+import { PaymentLabelComponent } from "../../shared/payment/payment-label.component";
+import {
+  isTokenizablePaymentMethod,
+  selectableCountries,
+  TokenizablePaymentMethod,
+  TokenizedPaymentMethod,
+} from "../types";
+
+type PaymentMethodOption = TokenizablePaymentMethod | "accountCredit";
+
+type PaymentMethodFormGroup = FormGroup<{
+  type: FormControl<PaymentMethodOption>;
+  bankAccount: FormGroup<{
+    routingNumber: FormControl<string>;
+    accountNumber: FormControl<string>;
+    accountHolderName: FormControl<string>;
+    accountHolderType: FormControl<"" | "company" | "individual">;
+  }>;
+  billingAddress: FormGroup<{
+    country: FormControl<string>;
+    postalCode: FormControl<string>;
+  }>;
+}>;
+
+@Component({
+  selector: "app-enter-payment-method",
+  template: `
+    @let showBillingDetails = includeBillingAddress && selected !== "payPal";
+    <form [formGroup]="group">
+      @if (showBillingDetails) {
+        <h5 bitTypography="h5">{{ "paymentMethod" | i18n }}</h5>
+      }
+      <div class="tw-mb-4 tw-text-lg">
+        <bit-radio-group [formControl]="group.controls.type">
+          <bit-radio-button id="card-payment-method" [value]="'card'">
+            <bit-label>
+              <i class="bwi bwi-fw bwi-credit-card" aria-hidden="true"></i>
+              {{ "creditCard" | i18n }}
+            </bit-label>
+          </bit-radio-button>
+          @if (showBankAccount) {
+            <bit-radio-button id="bank-payment-method" [value]="'bankAccount'">
+              <bit-label>
+                <i class="bwi bwi-fw bwi-billing" aria-hidden="true"></i>
+                {{ "bankAccount" | i18n }}
+              </bit-label>
+            </bit-radio-button>
+          }
+          @if (showPayPal) {
+            <bit-radio-button id="paypal-payment-method" [value]="'payPal'">
+              <bit-label>
+                <i class="bwi bwi-fw bwi-paypal" aria-hidden="true"></i>
+                {{ "payPal" | i18n }}
+              </bit-label>
+            </bit-radio-button>
+          }
+          @if (showAccountCredit) {
+            <bit-radio-button id="credit-payment-method" [value]="'accountCredit'">
+              <bit-label>
+                <i class="bwi bwi-fw bwi-dollar" aria-hidden="true"></i>
+                {{ "accountCredit" | i18n }}
+              </bit-label>
+            </bit-radio-button>
+          }
+        </bit-radio-group>
+      </div>
+      @switch (selected) {
+        @case ("card") {
+          <div class="tw-grid tw-grid-cols-2 tw-gap-4 tw-mb-4">
+            <div class="tw-col-span-1">
+              <app-payment-label for="stripe-card-number" required>
+                {{ "number" | i18n }}
+              </app-payment-label>
+              <div id="stripe-card-number" class="tw-stripe-form-control"></div>
+            </div>
+            <div class="tw-col-span-1 tw-flex tw-items-end">
+              <img
+                src="../../../images/cards.png"
+                alt="Visa, MasterCard, Discover, AmEx, JCB, Diners Club, UnionPay"
+                class="tw-max-w-full"
+              />
+            </div>
+            <div class="tw-col-span-1">
+              <app-payment-label for="stripe-card-expiry" required>
+                {{ "expiration" | i18n }}
+              </app-payment-label>
+              <div id="stripe-card-expiry" class="tw-stripe-form-control"></div>
+            </div>
+            <div class="tw-col-span-1">
+              <app-payment-label for="stripe-card-cvc" required>
+                {{ "securityCodeSlashCVV" | i18n }}
+                <button
+                  [bitPopoverTriggerFor]="cardSecurityCodePopover"
+                  type="button"
+                  class="tw-border-none tw-bg-transparent tw-text-primary-600 tw-p-0"
+                  [position]="'above-end'"
+                >
+                  <i class="bwi bwi-question-circle tw-text-lg" aria-hidden="true"></i>
+                </button>
+                <bit-popover [title]="'cardSecurityCode' | i18n" #cardSecurityCodePopover>
+                  <p>{{ "cardSecurityCodeDescription" | i18n }}</p>
+                </bit-popover>
+              </app-payment-label>
+              <div id="stripe-card-cvc" class="tw-stripe-form-control"></div>
+            </div>
+          </div>
+        }
+        @case ("bankAccount") {
+          <ng-container>
+            <bit-callout type="warning" title="{{ 'verifyBankAccount' | i18n }}">
+              {{ "verifyBankAccountWarning" | i18n }}
+            </bit-callout>
+            <div class="tw-grid tw-grid-cols-2 tw-gap-4 tw-mb-4" formGroupName="bankAccount">
+              <bit-form-field class="tw-col-span-1" [disableMargin]="true">
+                <bit-label>{{ "routingNumber" | i18n }}</bit-label>
+                <input
+                  bitInput
+                  id="routingNumber"
+                  type="text"
+                  [formControl]="group.controls.bankAccount.controls.routingNumber"
+                  required
+                />
+              </bit-form-field>
+              <bit-form-field class="tw-col-span-1" [disableMargin]="true">
+                <bit-label>{{ "accountNumber" | i18n }}</bit-label>
+                <input
+                  bitInput
+                  id="accountNumber"
+                  type="text"
+                  [formControl]="group.controls.bankAccount.controls.accountNumber"
+                  required
+                />
+              </bit-form-field>
+              <bit-form-field class="tw-col-span-1" [disableMargin]="true">
+                <bit-label>{{ "accountHolderName" | i18n }}</bit-label>
+                <input
+                  id="accountHolderName"
+                  bitInput
+                  type="text"
+                  [formControl]="group.controls.bankAccount.controls.accountHolderName"
+                  required
+                />
+              </bit-form-field>
+              <bit-form-field class="tw-col-span-1" [disableMargin]="true">
+                <bit-label>{{ "bankAccountType" | i18n }}</bit-label>
+                <bit-select
+                  id="accountHolderType"
+                  [formControl]="group.controls.bankAccount.controls.accountHolderType"
+                  required
+                >
+                  <bit-option [value]="''" label="-- {{ 'select' | i18n }} --"></bit-option>
+                  <bit-option
+                    [value]="'company'"
+                    label="{{ 'bankAccountTypeCompany' | i18n }}"
+                  ></bit-option>
+                  <bit-option
+                    [value]="'individual'"
+                    label="{{ 'bankAccountTypeIndividual' | i18n }}"
+                  ></bit-option>
+                </bit-select>
+              </bit-form-field>
+            </div>
+          </ng-container>
+        }
+        @case ("payPal") {
+          <ng-container>
+            <div class="tw-mb-3">
+              <div id="braintree-container" class="tw-mb-1 tw-content-center"></div>
+              <small class="tw-text-muted">{{ "paypalClickSubmit" | i18n }}</small>
+            </div>
+          </ng-container>
+        }
+        @case ("accountCredit") {
+          <ng-container>
+            <bit-callout type="info">
+              {{ "makeSureEnoughCredit" | i18n }}
+            </bit-callout>
+          </ng-container>
+        }
+      }
+      @if (showBillingDetails) {
+        <h5 bitTypography="h5">{{ "billingAddress" | i18n }}</h5>
+        <div class="tw-grid tw-grid-cols-12 tw-gap-4">
+          <div class="tw-col-span-6">
+            <bit-form-field [disableMargin]="true">
+              <bit-label>{{ "country" | i18n }}</bit-label>
+              <bit-select [formControl]="group.controls.billingAddress.controls.country">
+                @for (selectableCountry of selectableCountries; track selectableCountry.value) {
+                  <bit-option
+                    [value]="selectableCountry.value"
+                    [disabled]="selectableCountry.disabled"
+                    [label]="selectableCountry.name"
+                  ></bit-option>
+                }
+              </bit-select>
+            </bit-form-field>
+          </div>
+          <div class="tw-col-span-6">
+            <bit-form-field [disableMargin]="true">
+              <bit-label>{{ "zipPostalCode" | i18n }}</bit-label>
+              <input
+                bitInput
+                type="text"
+                [formControl]="group.controls.billingAddress.controls.postalCode"
+                autocomplete="postal-code"
+              />
+            </bit-form-field>
+          </div>
+        </div>
+      }
+    </form>
+  `,
+  standalone: true,
+  imports: [BillingServicesModule, PaymentLabelComponent, PopoverModule, SharedModule],
+})
+export class EnterPaymentMethodComponent implements OnInit {
+  @Input({ required: true }) group!: PaymentMethodFormGroup;
+
+  private showBankAccountSubject = new BehaviorSubject<boolean>(true);
+  showBankAccount$ = this.showBankAccountSubject.asObservable();
+  @Input()
+  set showBankAccount(value: boolean) {
+    this.showBankAccountSubject.next(value);
+  }
+  get showBankAccount(): boolean {
+    return this.showBankAccountSubject.value;
+  }
+
+  @Input() showPayPal: boolean = true;
+  @Input() showAccountCredit: boolean = false;
+  @Input() includeBillingAddress: boolean = false;
+
+  protected selectableCountries = selectableCountries;
+
+  private destroy$ = new Subject<void>();
+
+  constructor(
+    private braintreeService: BraintreeService,
+    private i18nService: I18nService,
+    private logService: LogService,
+    private stripeService: StripeService,
+    private toastService: ToastService,
+  ) {}
+
+  ngOnInit() {
+    this.stripeService.loadStripe(
+      {
+        cardNumber: "#stripe-card-number",
+        cardExpiry: "#stripe-card-expiry",
+        cardCvc: "#stripe-card-cvc",
+      },
+      true,
+    );
+
+    if (this.showPayPal) {
+      this.braintreeService.loadBraintree("#braintree-container", false);
+    }
+
+    if (!this.includeBillingAddress) {
+      this.group.controls.billingAddress.disable();
+    }
+
+    this.group.controls.type.valueChanges
+      .pipe(startWith(this.group.controls.type.value), takeUntil(this.destroy$))
+      .subscribe((selected) => {
+        if (selected === "bankAccount") {
+          this.group.controls.bankAccount.enable();
+          if (this.includeBillingAddress) {
+            this.group.controls.billingAddress.enable();
+          }
+        } else {
+          switch (selected) {
+            case "card": {
+              this.stripeService.mountElements();
+              if (this.includeBillingAddress) {
+                this.group.controls.billingAddress.enable();
+              }
+              break;
+            }
+            case "payPal": {
+              this.braintreeService.createDropin();
+              if (this.includeBillingAddress) {
+                this.group.controls.billingAddress.disable();
+              }
+              break;
+            }
+          }
+          this.group.controls.bankAccount.disable();
+        }
+      });
+
+    this.showBankAccount$.pipe(takeUntil(this.destroy$)).subscribe((showBankAccount) => {
+      if (!showBankAccount && this.selected === "bankAccount") {
+        this.select("card");
+      }
+    });
+  }
+
+  select = (paymentMethod: PaymentMethodOption) =>
+    this.group.controls.type.patchValue(paymentMethod);
+
+  tokenize = async (): Promise<TokenizedPaymentMethod> => {
+    const exchange = async (paymentMethod: TokenizablePaymentMethod) => {
+      switch (paymentMethod) {
+        case "bankAccount": {
+          this.group.controls.bankAccount.markAllAsTouched();
+          if (!this.group.controls.bankAccount.valid) {
+            throw new Error("Attempted to tokenize invalid bank account information.");
+          }
+
+          const bankAccount = this.group.controls.bankAccount.getRawValue();
+          const clientSecret = await this.stripeService.createSetupIntent("bankAccount");
+          const billingDetails = this.group.controls.billingAddress.enabled
+            ? this.group.controls.billingAddress.getRawValue()
+            : undefined;
+          return await this.stripeService.setupBankAccountPaymentMethod(
+            clientSecret,
+            bankAccount,
+            billingDetails,
+          );
+        }
+        case "card": {
+          const clientSecret = await this.stripeService.createSetupIntent("card");
+          const billingDetails = this.group.controls.billingAddress.enabled
+            ? this.group.controls.billingAddress.getRawValue()
+            : undefined;
+          return this.stripeService.setupCardPaymentMethod(clientSecret, billingDetails);
+        }
+        case "payPal": {
+          return this.braintreeService.requestPaymentMethod();
+        }
+      }
+    };
+
+    if (!isTokenizablePaymentMethod(this.selected)) {
+      throw new Error(`Attempted to tokenize a non-tokenizable payment method: ${this.selected}`);
+    }
+
+    try {
+      const token = await exchange(this.selected);
+      return { type: this.selected, token };
+    } catch (error: unknown) {
+      this.logService.error(error);
+      this.toastService.showToast({
+        variant: "error",
+        title: "",
+        message: this.i18nService.t("problemSubmittingPaymentMethod"),
+      });
+      throw error;
+    }
+  };
+
+  validate = (): boolean => {
+    if (this.selected === "bankAccount") {
+      this.group.controls.bankAccount.markAllAsTouched();
+      return this.group.controls.bankAccount.valid;
+    }
+
+    return true;
+  };
+
+  get selected(): PaymentMethodOption {
+    return this.group.value.type!;
+  }
+
+  static getFormGroup = (): PaymentMethodFormGroup =>
+    new FormGroup({
+      type: new FormControl<PaymentMethodOption>("card", { nonNullable: true }),
+      bankAccount: new FormGroup({
+        routingNumber: new FormControl<string>("", {
+          nonNullable: true,
+          validators: [Validators.required],
+        }),
+        accountNumber: new FormControl<string>("", {
+          nonNullable: true,
+          validators: [Validators.required],
+        }),
+        accountHolderName: new FormControl<string>("", {
+          nonNullable: true,
+          validators: [Validators.required],
+        }),
+        accountHolderType: new FormControl<"" | "company" | "individual">("", {
+          nonNullable: true,
+          validators: [Validators.required],
+        }),
+      }),
+      billingAddress: new FormGroup({
+        country: new FormControl<string>("", {
+          nonNullable: true,
+          validators: [Validators.required],
+        }),
+        postalCode: new FormControl<string>("", {
+          nonNullable: true,
+          validators: [Validators.required],
+        }),
+      }),
+    });
+}
diff --git a/apps/web/src/app/billing/payment/components/index.ts b/apps/web/src/app/billing/payment/components/index.ts
new file mode 100644
index 00000000000..3bf7f5ecd36
--- /dev/null
+++ b/apps/web/src/app/billing/payment/components/index.ts
@@ -0,0 +1,9 @@
+export * from "./add-account-credit-dialog.component";
+export * from "./change-payment-method-dialog.component";
+export * from "./display-account-credit.component";
+export * from "./display-billing-address.component";
+export * from "./display-payment-method.component";
+export * from "./edit-billing-address-dialog.component";
+export * from "./enter-billing-address.component";
+export * from "./enter-payment-method.component";
+export * from "./verify-bank-account.component";
diff --git a/apps/web/src/app/billing/payment/components/verify-bank-account.component.ts b/apps/web/src/app/billing/payment/components/verify-bank-account.component.ts
new file mode 100644
index 00000000000..f79e9a1b5fc
--- /dev/null
+++ b/apps/web/src/app/billing/payment/components/verify-bank-account.component.ts
@@ -0,0 +1,86 @@
+import { Component, EventEmitter, Input, Output } from "@angular/core";
+import { FormControl, FormGroup, Validators } from "@angular/forms";
+
+import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+import { ToastService } from "@bitwarden/components";
+
+import { SharedModule } from "../../../shared";
+import { BillingClient } from "../../services";
+import { BillableEntity } from "../../types";
+import { MaskedPaymentMethod } from "../types";
+
+@Component({
+  selector: "app-verify-bank-account",
+  template: `
+    <bit-callout type="warning" title="{{ 'verifyBankAccount' | i18n }}">
+      <p>{{ "verifyBankAccountWithStatementDescriptorInstructions" | i18n }}</p>
+      <form [formGroup]="formGroup" [bitSubmit]="submit">
+        <bit-form-field class="tw-mr-2 tw-w-48">
+          <bit-label>{{ "descriptorCode" | i18n }}</bit-label>
+          <input
+            bitInput
+            type="text"
+            placeholder="SMAB12"
+            [formControl]="formGroup.controls.descriptorCode"
+          />
+        </bit-form-field>
+        <button type="submit" bitButton bitFormButton buttonType="primary">
+          {{ "submit" | i18n }}
+        </button>
+      </form>
+    </bit-callout>
+  `,
+  standalone: true,
+  imports: [SharedModule],
+  providers: [BillingClient],
+})
+export class VerifyBankAccountComponent {
+  @Input({ required: true }) owner!: BillableEntity;
+  @Output() verified = new EventEmitter<MaskedPaymentMethod>();
+
+  protected formGroup = new FormGroup({
+    descriptorCode: new FormControl<string>("", [
+      Validators.required,
+      Validators.minLength(6),
+      Validators.maxLength(6),
+    ]),
+  });
+
+  constructor(
+    private billingClient: BillingClient,
+    private i18nService: I18nService,
+    private toastService: ToastService,
+  ) {}
+
+  submit = async (): Promise<void> => {
+    this.formGroup.markAllAsTouched();
+
+    if (!this.formGroup.valid) {
+      return;
+    }
+
+    const result = await this.billingClient.verifyBankAccount(
+      this.owner,
+      this.formGroup.value.descriptorCode!,
+    );
+
+    switch (result.type) {
+      case "success": {
+        this.toastService.showToast({
+          variant: "success",
+          title: "",
+          message: this.i18nService.t("bankAccountVerified"),
+        });
+        this.verified.emit(result.value);
+        break;
+      }
+      case "error": {
+        this.toastService.showToast({
+          variant: "error",
+          title: "",
+          message: result.message,
+        });
+      }
+    }
+  };
+}
diff --git a/apps/web/src/app/billing/payment/pipes/address.pipe.spec.ts b/apps/web/src/app/billing/payment/pipes/address.pipe.spec.ts
new file mode 100644
index 00000000000..c497bbf2f0f
--- /dev/null
+++ b/apps/web/src/app/billing/payment/pipes/address.pipe.spec.ts
@@ -0,0 +1,65 @@
+import { AddressPipe } from "./address.pipe";
+
+describe("AddressPipe", () => {
+  let pipe: AddressPipe;
+
+  beforeEach(() => {
+    pipe = new AddressPipe();
+  });
+
+  it("should format a complete address with all fields", () => {
+    const address = {
+      country: "United States",
+      postalCode: "10001",
+      line1: "123 Main St",
+      line2: "Apt 4B",
+      city: "New York",
+      state: "NY",
+    };
+
+    const result = pipe.transform(address);
+    expect(result).toBe("123 Main St, Apt 4B, New York, NY, 10001, United States");
+  });
+
+  it("should format address without line2", () => {
+    const address = {
+      country: "United States",
+      postalCode: "10001",
+      line1: "123 Main St",
+      line2: null,
+      city: "New York",
+      state: "NY",
+    };
+
+    const result = pipe.transform(address);
+    expect(result).toBe("123 Main St, New York, NY, 10001, United States");
+  });
+
+  it("should format address without state", () => {
+    const address = {
+      country: "United Kingdom",
+      postalCode: "SW1A 1AA",
+      line1: "123 Main St",
+      line2: "Apt 4B",
+      city: "London",
+      state: null,
+    };
+
+    const result = pipe.transform(address);
+    expect(result).toBe("123 Main St, Apt 4B, London, SW1A 1AA, United Kingdom");
+  });
+
+  it("should format minimal address with only required fields", () => {
+    const address = {
+      country: "United States",
+      postalCode: "10001",
+      line1: null,
+      line2: null,
+      city: null,
+      state: null,
+    };
+
+    const result = pipe.transform(address);
+    expect(result).toBe("10001, United States");
+  });
+});
diff --git a/apps/web/src/app/billing/payment/pipes/address.pipe.ts b/apps/web/src/app/billing/payment/pipes/address.pipe.ts
new file mode 100644
index 00000000000..da612950a27
--- /dev/null
+++ b/apps/web/src/app/billing/payment/pipes/address.pipe.ts
@@ -0,0 +1,32 @@
+import { Pipe, PipeTransform } from "@angular/core";
+
+import { BillingAddress } from "../types";
+
+@Pipe({
+  name: "address",
+})
+export class AddressPipe implements PipeTransform {
+  transform(address: Omit<BillingAddress, "taxId">): string {
+    const parts: string[] = [];
+
+    if (address.line1) {
+      parts.push(address.line1);
+    }
+
+    if (address.line2) {
+      parts.push(address.line2);
+    }
+
+    if (address.city) {
+      parts.push(address.city);
+    }
+
+    if (address.state) {
+      parts.push(address.state);
+    }
+
+    parts.push(address.postalCode, address.country);
+
+    return parts.join(", ");
+  }
+}
diff --git a/apps/web/src/app/billing/payment/pipes/index.ts b/apps/web/src/app/billing/payment/pipes/index.ts
new file mode 100644
index 00000000000..d95cff6b6f8
--- /dev/null
+++ b/apps/web/src/app/billing/payment/pipes/index.ts
@@ -0,0 +1 @@
+export * from "./address.pipe";
diff --git a/apps/web/src/app/billing/payment/types/billing-address.ts b/apps/web/src/app/billing/payment/types/billing-address.ts
new file mode 100644
index 00000000000..eddb24673f5
--- /dev/null
+++ b/apps/web/src/app/billing/payment/types/billing-address.ts
@@ -0,0 +1,37 @@
+import { BaseResponse } from "@bitwarden/common/models/response/base.response";
+
+import { TaxId, TaxIdResponse } from "./tax-id";
+
+export type BillingAddress = {
+  country: string;
+  postalCode: string;
+  line1: string | null;
+  line2: string | null;
+  city: string | null;
+  state: string | null;
+  taxId: TaxId | null;
+};
+
+export class BillingAddressResponse extends BaseResponse implements BillingAddress {
+  country: string;
+  postalCode: string;
+  line1: string | null;
+  line2: string | null;
+  city: string | null;
+  state: string | null;
+  taxId: TaxId | null;
+
+  constructor(response: any) {
+    super(response);
+
+    this.country = this.getResponseProperty("Country");
+    this.postalCode = this.getResponseProperty("PostalCode");
+    this.line1 = this.getResponseProperty("Line1");
+    this.line2 = this.getResponseProperty("Line2");
+    this.city = this.getResponseProperty("City");
+    this.state = this.getResponseProperty("State");
+
+    const taxId = this.getResponseProperty("TaxId");
+    this.taxId = taxId ? new TaxIdResponse(taxId) : null;
+  }
+}
diff --git a/apps/web/src/app/billing/payment/types/index.ts b/apps/web/src/app/billing/payment/types/index.ts
new file mode 100644
index 00000000000..a8534c5aba4
--- /dev/null
+++ b/apps/web/src/app/billing/payment/types/index.ts
@@ -0,0 +1,6 @@
+export * from "./billing-address";
+export * from "./masked-payment-method";
+export * from "./selectable-country";
+export * from "./tax-id";
+export * from "./tax-id-type";
+export * from "./tokenized-payment-method";
diff --git a/apps/web/src/app/billing/payment/types/masked-payment-method.ts b/apps/web/src/app/billing/payment/types/masked-payment-method.ts
new file mode 100644
index 00000000000..8d07706b14c
--- /dev/null
+++ b/apps/web/src/app/billing/payment/types/masked-payment-method.ts
@@ -0,0 +1,114 @@
+import { BaseResponse } from "@bitwarden/common/models/response/base.response";
+
+import {
+  BankAccountPaymentMethod,
+  CardPaymentMethod,
+  PayPalPaymentMethod,
+} from "./tokenized-payment-method";
+
+export const StripeCardBrands = {
+  amex: "amex",
+  diners: "diners",
+  discover: "discover",
+  eftpos_au: "eftpos_au",
+  jcb: "jcb",
+  link: "link",
+  mastercard: "mastercard",
+  unionpay: "unionpay",
+  visa: "visa",
+  unknown: "unknown",
+} as const;
+
+export type StripeCardBrand = (typeof StripeCardBrands)[keyof typeof StripeCardBrands];
+
+type MaskedBankAccount = {
+  type: BankAccountPaymentMethod;
+  bankName: string;
+  last4: string;
+  verified: boolean;
+};
+
+type MaskedCard = {
+  type: CardPaymentMethod;
+  brand: StripeCardBrand;
+  last4: string;
+  expiration: string;
+};
+
+type MaskedPayPalAccount = {
+  type: PayPalPaymentMethod;
+  email: string;
+};
+
+export type MaskedPaymentMethod = MaskedBankAccount | MaskedCard | MaskedPayPalAccount;
+
+export class MaskedPaymentMethodResponse extends BaseResponse {
+  value: MaskedPaymentMethod;
+
+  constructor(response: any) {
+    super(response);
+
+    const type = this.getResponseProperty("Type");
+    switch (type) {
+      case "card": {
+        this.value = new MaskedCardResponse(response);
+        break;
+      }
+      case "bankAccount": {
+        this.value = new MaskedBankAccountResponse(response);
+        break;
+      }
+      case "payPal": {
+        this.value = new MaskedPayPalAccountResponse(response);
+        break;
+      }
+      default: {
+        throw new Error(`Cannot deserialize unsupported payment method type: ${type}`);
+      }
+    }
+  }
+}
+
+class MaskedBankAccountResponse extends BaseResponse implements MaskedBankAccount {
+  type: BankAccountPaymentMethod;
+  bankName: string;
+  last4: string;
+  verified: boolean;
+
+  constructor(response: any) {
+    super(response);
+
+    this.type = "bankAccount";
+    this.bankName = this.getResponseProperty("BankName");
+    this.last4 = this.getResponseProperty("Last4");
+    this.verified = this.getResponseProperty("Verified");
+  }
+}
+
+class MaskedCardResponse extends BaseResponse implements MaskedCard {
+  type: CardPaymentMethod;
+  brand: StripeCardBrand;
+  last4: string;
+  expiration: string;
+
+  constructor(response: any) {
+    super(response);
+
+    this.type = "card";
+    this.brand = this.getResponseProperty("Brand");
+    this.last4 = this.getResponseProperty("Last4");
+    this.expiration = this.getResponseProperty("Expiration");
+  }
+}
+
+class MaskedPayPalAccountResponse extends BaseResponse implements MaskedPayPalAccount {
+  type: PayPalPaymentMethod;
+  email: string;
+
+  constructor(response: any) {
+    super(response);
+
+    this.type = "payPal";
+    this.email = this.getResponseProperty("Email");
+  }
+}
diff --git a/apps/web/src/app/billing/payment/types/selectable-country.ts b/apps/web/src/app/billing/payment/types/selectable-country.ts
new file mode 100644
index 00000000000..71d6af95cc7
--- /dev/null
+++ b/apps/web/src/app/billing/payment/types/selectable-country.ts
@@ -0,0 +1,259 @@
+type SelectableCountry = Readonly<{
+  name: string;
+  value: string;
+  disabled: boolean;
+}>;
+
+export const selectableCountries: ReadonlyArray<SelectableCountry> = [
+  { name: "-- Select --", value: "", disabled: false },
+  { name: "United States", value: "US", disabled: false },
+  { name: "China", value: "CN", disabled: false },
+  { name: "France", value: "FR", disabled: false },
+  { name: "Germany", value: "DE", disabled: false },
+  { name: "Canada", value: "CA", disabled: false },
+  { name: "United Kingdom", value: "GB", disabled: false },
+  { name: "Australia", value: "AU", disabled: false },
+  { name: "India", value: "IN", disabled: false },
+  { name: "", value: "-", disabled: true },
+  { name: "Afghanistan", value: "AF", disabled: false },
+  { name: "Åland Islands", value: "AX", disabled: false },
+  { name: "Albania", value: "AL", disabled: false },
+  { name: "Algeria", value: "DZ", disabled: false },
+  { name: "American Samoa", value: "AS", disabled: false },
+  { name: "Andorra", value: "AD", disabled: false },
+  { name: "Angola", value: "AO", disabled: false },
+  { name: "Anguilla", value: "AI", disabled: false },
+  { name: "Antarctica", value: "AQ", disabled: false },
+  { name: "Antigua and Barbuda", value: "AG", disabled: false },
+  { name: "Argentina", value: "AR", disabled: false },
+  { name: "Armenia", value: "AM", disabled: false },
+  { name: "Aruba", value: "AW", disabled: false },
+  { name: "Austria", value: "AT", disabled: false },
+  { name: "Azerbaijan", value: "AZ", disabled: false },
+  { name: "Bahamas", value: "BS", disabled: false },
+  { name: "Bahrain", value: "BH", disabled: false },
+  { name: "Bangladesh", value: "BD", disabled: false },
+  { name: "Barbados", value: "BB", disabled: false },
+  { name: "Belarus", value: "BY", disabled: false },
+  { name: "Belgium", value: "BE", disabled: false },
+  { name: "Belize", value: "BZ", disabled: false },
+  { name: "Benin", value: "BJ", disabled: false },
+  { name: "Bermuda", value: "BM", disabled: false },
+  { name: "Bhutan", value: "BT", disabled: false },
+  { name: "Bolivia, Plurinational State of", value: "BO", disabled: false },
+  { name: "Bonaire, Sint Eustatius and Saba", value: "BQ", disabled: false },
+  { name: "Bosnia and Herzegovina", value: "BA", disabled: false },
+  { name: "Botswana", value: "BW", disabled: false },
+  { name: "Bouvet Island", value: "BV", disabled: false },
+  { name: "Brazil", value: "BR", disabled: false },
+  { name: "British Indian Ocean Territory", value: "IO", disabled: false },
+  { name: "Brunei Darussalam", value: "BN", disabled: false },
+  { name: "Bulgaria", value: "BG", disabled: false },
+  { name: "Burkina Faso", value: "BF", disabled: false },
+  { name: "Burundi", value: "BI", disabled: false },
+  { name: "Cambodia", value: "KH", disabled: false },
+  { name: "Cameroon", value: "CM", disabled: false },
+  { name: "Cape Verde", value: "CV", disabled: false },
+  { name: "Cayman Islands", value: "KY", disabled: false },
+  { name: "Central African Republic", value: "CF", disabled: false },
+  { name: "Chad", value: "TD", disabled: false },
+  { name: "Chile", value: "CL", disabled: false },
+  { name: "Christmas Island", value: "CX", disabled: false },
+  { name: "Cocos (Keeling) Islands", value: "CC", disabled: false },
+  { name: "Colombia", value: "CO", disabled: false },
+  { name: "Comoros", value: "KM", disabled: false },
+  { name: "Congo", value: "CG", disabled: false },
+  { name: "Congo, the Democratic Republic of the", value: "CD", disabled: false },
+  { name: "Cook Islands", value: "CK", disabled: false },
+  { name: "Costa Rica", value: "CR", disabled: false },
+  { name: "Côte d'Ivoire", value: "CI", disabled: false },
+  { name: "Croatia", value: "HR", disabled: false },
+  { name: "Cuba", value: "CU", disabled: false },
+  { name: "Curaçao", value: "CW", disabled: false },
+  { name: "Cyprus", value: "CY", disabled: false },
+  { name: "Czech Republic", value: "CZ", disabled: false },
+  { name: "Denmark", value: "DK", disabled: false },
+  { name: "Djibouti", value: "DJ", disabled: false },
+  { name: "Dominica", value: "DM", disabled: false },
+  { name: "Dominican Republic", value: "DO", disabled: false },
+  { name: "Ecuador", value: "EC", disabled: false },
+  { name: "Egypt", value: "EG", disabled: false },
+  { name: "El Salvador", value: "SV", disabled: false },
+  { name: "Equatorial Guinea", value: "GQ", disabled: false },
+  { name: "Eritrea", value: "ER", disabled: false },
+  { name: "Estonia", value: "EE", disabled: false },
+  { name: "Ethiopia", value: "ET", disabled: false },
+  { name: "Falkland Islands (Malvinas)", value: "FK", disabled: false },
+  { name: "Faroe Islands", value: "FO", disabled: false },
+  { name: "Fiji", value: "FJ", disabled: false },
+  { name: "Finland", value: "FI", disabled: false },
+  { name: "French Guiana", value: "GF", disabled: false },
+  { name: "French Polynesia", value: "PF", disabled: false },
+  { name: "French Southern Territories", value: "TF", disabled: false },
+  { name: "Gabon", value: "GA", disabled: false },
+  { name: "Gambia", value: "GM", disabled: false },
+  { name: "Georgia", value: "GE", disabled: false },
+  { name: "Ghana", value: "GH", disabled: false },
+  { name: "Gibraltar", value: "GI", disabled: false },
+  { name: "Greece", value: "GR", disabled: false },
+  { name: "Greenland", value: "GL", disabled: false },
+  { name: "Grenada", value: "GD", disabled: false },
+  { name: "Guadeloupe", value: "GP", disabled: false },
+  { name: "Guam", value: "GU", disabled: false },
+  { name: "Guatemala", value: "GT", disabled: false },
+  { name: "Guernsey", value: "GG", disabled: false },
+  { name: "Guinea", value: "GN", disabled: false },
+  { name: "Guinea-Bissau", value: "GW", disabled: false },
+  { name: "Guyana", value: "GY", disabled: false },
+  { name: "Haiti", value: "HT", disabled: false },
+  { name: "Heard Island and McDonald Islands", value: "HM", disabled: false },
+  { name: "Holy See (Vatican City State)", value: "VA", disabled: false },
+  { name: "Honduras", value: "HN", disabled: false },
+  { name: "Hong Kong", value: "HK", disabled: false },
+  { name: "Hungary", value: "HU", disabled: false },
+  { name: "Iceland", value: "IS", disabled: false },
+  { name: "Indonesia", value: "ID", disabled: false },
+  { name: "Iran, Islamic Republic of", value: "IR", disabled: false },
+  { name: "Iraq", value: "IQ", disabled: false },
+  { name: "Ireland", value: "IE", disabled: false },
+  { name: "Isle of Man", value: "IM", disabled: false },
+  { name: "Israel", value: "IL", disabled: false },
+  { name: "Italy", value: "IT", disabled: false },
+  { name: "Jamaica", value: "JM", disabled: false },
+  { name: "Japan", value: "JP", disabled: false },
+  { name: "Jersey", value: "JE", disabled: false },
+  { name: "Jordan", value: "JO", disabled: false },
+  { name: "Kazakhstan", value: "KZ", disabled: false },
+  { name: "Kenya", value: "KE", disabled: false },
+  { name: "Kiribati", value: "KI", disabled: false },
+  { name: "Korea, Democratic People's Republic of", value: "KP", disabled: false },
+  { name: "Korea, Republic of", value: "KR", disabled: false },
+  { name: "Kuwait", value: "KW", disabled: false },
+  { name: "Kyrgyzstan", value: "KG", disabled: false },
+  { name: "Lao People's Democratic Republic", value: "LA", disabled: false },
+  { name: "Latvia", value: "LV", disabled: false },
+  { name: "Lebanon", value: "LB", disabled: false },
+  { name: "Lesotho", value: "LS", disabled: false },
+  { name: "Liberia", value: "LR", disabled: false },
+  { name: "Libya", value: "LY", disabled: false },
+  { name: "Liechtenstein", value: "LI", disabled: false },
+  { name: "Lithuania", value: "LT", disabled: false },
+  { name: "Luxembourg", value: "LU", disabled: false },
+  { name: "Macao", value: "MO", disabled: false },
+  { name: "Macedonia, the former Yugoslav Republic of", value: "MK", disabled: false },
+  { name: "Madagascar", value: "MG", disabled: false },
+  { name: "Malawi", value: "MW", disabled: false },
+  { name: "Malaysia", value: "MY", disabled: false },
+  { name: "Maldives", value: "MV", disabled: false },
+  { name: "Mali", value: "ML", disabled: false },
+  { name: "Malta", value: "MT", disabled: false },
+  { name: "Marshall Islands", value: "MH", disabled: false },
+  { name: "Martinique", value: "MQ", disabled: false },
+  { name: "Mauritania", value: "MR", disabled: false },
+  { name: "Mauritius", value: "MU", disabled: false },
+  { name: "Mayotte", value: "YT", disabled: false },
+  { name: "Mexico", value: "MX", disabled: false },
+  { name: "Micronesia, Federated States of", value: "FM", disabled: false },
+  { name: "Moldova, Republic of", value: "MD", disabled: false },
+  { name: "Monaco", value: "MC", disabled: false },
+  { name: "Mongolia", value: "MN", disabled: false },
+  { name: "Montenegro", value: "ME", disabled: false },
+  { name: "Montserrat", value: "MS", disabled: false },
+  { name: "Morocco", value: "MA", disabled: false },
+  { name: "Mozambique", value: "MZ", disabled: false },
+  { name: "Myanmar", value: "MM", disabled: false },
+  { name: "Namibia", value: "NA", disabled: false },
+  { name: "Nauru", value: "NR", disabled: false },
+  { name: "Nepal", value: "NP", disabled: false },
+  { name: "Netherlands", value: "NL", disabled: false },
+  { name: "New Caledonia", value: "NC", disabled: false },
+  { name: "New Zealand", value: "NZ", disabled: false },
+  { name: "Nicaragua", value: "NI", disabled: false },
+  { name: "Niger", value: "NE", disabled: false },
+  { name: "Nigeria", value: "NG", disabled: false },
+  { name: "Niue", value: "NU", disabled: false },
+  { name: "Norfolk Island", value: "NF", disabled: false },
+  { name: "Northern Mariana Islands", value: "MP", disabled: false },
+  { name: "Norway", value: "NO", disabled: false },
+  { name: "Oman", value: "OM", disabled: false },
+  { name: "Pakistan", value: "PK", disabled: false },
+  { name: "Palau", value: "PW", disabled: false },
+  { name: "Palestinian Territory, Occupied", value: "PS", disabled: false },
+  { name: "Panama", value: "PA", disabled: false },
+  { name: "Papua New Guinea", value: "PG", disabled: false },
+  { name: "Paraguay", value: "PY", disabled: false },
+  { name: "Peru", value: "PE", disabled: false },
+  { name: "Philippines", value: "PH", disabled: false },
+  { name: "Pitcairn", value: "PN", disabled: false },
+  { name: "Poland", value: "PL", disabled: false },
+  { name: "Portugal", value: "PT", disabled: false },
+  { name: "Puerto Rico", value: "PR", disabled: false },
+  { name: "Qatar", value: "QA", disabled: false },
+  { name: "Réunion", value: "RE", disabled: false },
+  { name: "Romania", value: "RO", disabled: false },
+  { name: "Russian Federation", value: "RU", disabled: false },
+  { name: "Rwanda", value: "RW", disabled: false },
+  { name: "Saint Barthélemy", value: "BL", disabled: false },
+  { name: "Saint Helena, Ascension and Tristan da Cunha", value: "SH", disabled: false },
+  { name: "Saint Kitts and Nevis", value: "KN", disabled: false },
+  { name: "Saint Lucia", value: "LC", disabled: false },
+  { name: "Saint Martin (French part)", value: "MF", disabled: false },
+  { name: "Saint Pierre and Miquelon", value: "PM", disabled: false },
+  { name: "Saint Vincent and the Grenadines", value: "VC", disabled: false },
+  { name: "Samoa", value: "WS", disabled: false },
+  { name: "San Marino", value: "SM", disabled: false },
+  { name: "Sao Tome and Principe", value: "ST", disabled: false },
+  { name: "Saudi Arabia", value: "SA", disabled: false },
+  { name: "Senegal", value: "SN", disabled: false },
+  { name: "Serbia", value: "RS", disabled: false },
+  { name: "Seychelles", value: "SC", disabled: false },
+  { name: "Sierra Leone", value: "SL", disabled: false },
+  { name: "Singapore", value: "SG", disabled: false },
+  { name: "Sint Maarten (Dutch part)", value: "SX", disabled: false },
+  { name: "Slovakia", value: "SK", disabled: false },
+  { name: "Slovenia", value: "SI", disabled: false },
+  { name: "Solomon Islands", value: "SB", disabled: false },
+  { name: "Somalia", value: "SO", disabled: false },
+  { name: "South Africa", value: "ZA", disabled: false },
+  { name: "South Georgia and the South Sandwich Islands", value: "GS", disabled: false },
+  { name: "South Sudan", value: "SS", disabled: false },
+  { name: "Spain", value: "ES", disabled: false },
+  { name: "Sri Lanka", value: "LK", disabled: false },
+  { name: "Sudan", value: "SD", disabled: false },
+  { name: "Suriname", value: "SR", disabled: false },
+  { name: "Svalbard and Jan Mayen", value: "SJ", disabled: false },
+  { name: "Swaziland", value: "SZ", disabled: false },
+  { name: "Sweden", value: "SE", disabled: false },
+  { name: "Switzerland", value: "CH", disabled: false },
+  { name: "Syrian Arab Republic", value: "SY", disabled: false },
+  { name: "Taiwan", value: "TW", disabled: false },
+  { name: "Tajikistan", value: "TJ", disabled: false },
+  { name: "Tanzania, United Republic of", value: "TZ", disabled: false },
+  { name: "Thailand", value: "TH", disabled: false },
+  { name: "Timor-Leste", value: "TL", disabled: false },
+  { name: "Togo", value: "TG", disabled: false },
+  { name: "Tokelau", value: "TK", disabled: false },
+  { name: "Tonga", value: "TO", disabled: false },
+  { name: "Trinidad and Tobago", value: "TT", disabled: false },
+  { name: "Tunisia", value: "TN", disabled: false },
+  { name: "Turkey", value: "TR", disabled: false },
+  { name: "Turkmenistan", value: "TM", disabled: false },
+  { name: "Turks and Caicos Islands", value: "TC", disabled: false },
+  { name: "Tuvalu", value: "TV", disabled: false },
+  { name: "Uganda", value: "UG", disabled: false },
+  { name: "Ukraine", value: "UA", disabled: false },
+  { name: "United Arab Emirates", value: "AE", disabled: false },
+  { name: "United States Minor Outlying Islands", value: "UM", disabled: false },
+  { name: "Uruguay", value: "UY", disabled: false },
+  { name: "Uzbekistan", value: "UZ", disabled: false },
+  { name: "Vanuatu", value: "VU", disabled: false },
+  { name: "Venezuela, Bolivarian Republic of", value: "VE", disabled: false },
+  { name: "Viet Nam", value: "VN", disabled: false },
+  { name: "Virgin Islands, British", value: "VG", disabled: false },
+  { name: "Virgin Islands, U.S.", value: "VI", disabled: false },
+  { name: "Wallis and Futuna", value: "WF", disabled: false },
+  { name: "Western Sahara", value: "EH", disabled: false },
+  { name: "Yemen", value: "YE", disabled: false },
+  { name: "Zambia", value: "ZM", disabled: false },
+  { name: "Zimbabwe", value: "ZW", disabled: false },
+];
diff --git a/apps/web/src/app/billing/payment/types/tax-id-type.ts b/apps/web/src/app/billing/payment/types/tax-id-type.ts
new file mode 100644
index 00000000000..8f6264e088c
--- /dev/null
+++ b/apps/web/src/app/billing/payment/types/tax-id-type.ts
@@ -0,0 +1,1123 @@
+export type TaxIdType = Readonly<{
+  country: string;
+  iso: string;
+  code: string;
+  description: string;
+  example: string;
+  impactsTaxCalculation: boolean;
+}>;
+
+export const getTaxIdTypeForCountry = (country: string): TaxIdType | null => {
+  const types = taxIdTypes.filter((type) => type.iso === country);
+  if (types.length === 0) {
+    return null;
+  } else if (types.length === 1) {
+    return types[0];
+  } else {
+    const impactful = types.find((taxIdType) => taxIdType.impactsTaxCalculation);
+    if (!impactful) {
+      return types[0];
+    }
+    return impactful;
+  }
+};
+
+export const taxIdTypes: ReadonlyArray<TaxIdType> = [
+  {
+    country: "Albania",
+    iso: "AL",
+    code: "al_tin",
+    description: "Albania Tax Identification Number",
+    example: "J12345678N",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Andorra",
+    iso: "AD",
+    code: "ad_nrt",
+    description: "Andorran NRT number",
+    example: "A-123456-Z",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Angola",
+    iso: "AO",
+    code: "ao_tin",
+    description: "Angola Tax Identification Number",
+    example: "5123456789",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Argentina",
+    iso: "AR",
+    code: "ar_cuit",
+    description: "Argentinian tax ID number",
+    example: "12-3456789-01",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Armenia",
+    iso: "AM",
+    code: "am_tin",
+    description: "Armenia Tax Identification Number",
+    example: "2538904",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Aruba",
+    iso: "AW",
+    code: "aw_tin",
+    description: "Aruba Tax Identification Number",
+    example: "12345678",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Australia",
+    iso: "AU",
+    code: "au_abn",
+    description: "Australian Business Number (AU ABN)",
+    example: "12345678912",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Australia",
+    iso: "AU",
+    code: "au_arn",
+    description: "Australian Taxation Office Reference Number",
+    example: "123456789123",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Austria",
+    iso: "AT",
+    code: "eu_vat",
+    description: "European VAT number",
+    example: "ATU12345678",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Azerbaijan",
+    iso: "AZ",
+    code: "az_tin",
+    description: "Azerbaijan Tax Identification Number",
+    example: "123456789",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Bahamas",
+    iso: "BS",
+    code: "bs_tin",
+    description: "Bahamas Tax Identification Number",
+    example: "123.456.789",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Bahrain",
+    iso: "BH",
+    code: "bh_vat",
+    description: "Bahraini VAT Number",
+    example: "123456789012345",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Bangladesh",
+    iso: "BD",
+    code: "bd_bin",
+    description: "Bangladesh Business Identification Number",
+    example: "123456789-0123",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Barbados",
+    iso: "BB",
+    code: "bb_tin",
+    description: "Barbados Tax Identification Number",
+    example: "1123456789012",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Belarus",
+    iso: "BY",
+    code: "by_tin",
+    description: "Belarus TIN Number",
+    example: "123456789",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Belgium",
+    iso: "BE",
+    code: "eu_vat",
+    description: "European VAT number",
+    example: "BE0123456789",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Benin",
+    iso: "BJ",
+    code: "bj_ifu",
+    description: "Benin Tax Identification Number (Identifiant Fiscal Unique)",
+    example: "1234567890123",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Bolivia",
+    iso: "BO",
+    code: "bo_tin",
+    description: "Bolivian tax ID",
+    example: "123456789",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Bosnia & Herzegovina",
+    iso: "BA",
+    code: "ba_tin",
+    description: "Bosnia and Herzegovina Tax Identification Number",
+    example: "123456789012",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Brazil",
+    iso: "BR",
+    code: "br_cnpj",
+    description: "Brazilian CNPJ number",
+    example: "01.234.456/5432-10",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Brazil",
+    iso: "BR",
+    code: "br_cpf",
+    description: "Brazilian CPF number",
+    example: "123.456.789-87",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Bulgaria",
+    iso: "BG",
+    code: "bg_uic",
+    description: "Bulgaria Unified Identification Code",
+    example: "123456789",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Bulgaria",
+    iso: "BG",
+    code: "eu_vat",
+    description: "European VAT number",
+    example: "BG0123456789",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Burkina Faso",
+    iso: "BF",
+    code: "bf_ifu",
+    description: "Burkina Faso Tax Identification Number (Numéro d'Identifiant Fiscal Unique)",
+    example: "12345678A",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Cambodia",
+    iso: "KH",
+    code: "kh_tin",
+    description: "Cambodia Tax Identification Number",
+    example: "1001-123456789",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Cameroon",
+    iso: "CM",
+    code: "cm_niu",
+    description: "Cameroon Tax Identification Number (Numéro d'Identifiant fiscal Unique)",
+    example: "M123456789000L",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Canada",
+    iso: "CA",
+    code: "ca_bn",
+    description: "Canadian BN",
+    example: "123456789",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Canada",
+    iso: "CA",
+    code: "ca_gst_hst",
+    description: "Canadian GST/HST number",
+    example: "123456789RT0002",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Canada",
+    iso: "CA",
+    code: "ca_pst_bc",
+    description: "Canadian PST number (British Columbia)",
+    example: "PST-1234-5678",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Canada",
+    iso: "CA",
+    code: "ca_pst_mb",
+    description: "Canadian PST number (Manitoba)",
+    example: "123456-7",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Canada",
+    iso: "CA",
+    code: "ca_pst_sk",
+    description: "Canadian PST number (Saskatchewan)",
+    example: "1234567",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Canada",
+    iso: "CA",
+    code: "ca_qst",
+    description: "Canadian QST number (Québec)",
+    example: "1234567890TQ1234",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Cape Verde",
+    iso: "CV",
+    code: "cv_nif",
+    description: "Cape Verde Tax Identification Number (Número de Identificação Fiscal)",
+    example: "213456789",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Chile",
+    iso: "CL",
+    code: "cl_tin",
+    description: "Chilean TIN",
+    example: "12.345.678-K",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "China",
+    iso: "CN",
+    code: "cn_tin",
+    description: "Chinese tax ID",
+    example: "123456789012345678",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Colombia",
+    iso: "CO",
+    code: "co_nit",
+    description: "Colombian NIT number",
+    example: "123.456.789-0",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Congo - Kinshasa",
+    iso: "CD",
+    code: "cd_nif",
+    description: "Congo (DR) Tax Identification Number (Número de Identificação Fiscal)",
+    example: "A0123456M",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Costa Rica",
+    iso: "CR",
+    code: "cr_tin",
+    description: "Costa Rican tax ID",
+    example: "1-234-567890",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Croatia",
+    iso: "HR",
+    code: "eu_vat",
+    description: "European VAT number",
+    example: "HR12345678912",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Croatia",
+    iso: "HR",
+    code: "hr_oib",
+    description: "Croatian Personal Identification Number",
+    example: "12345678901",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Cyprus",
+    iso: "CY",
+    code: "eu_vat",
+    description: "European VAT number",
+    example: "CY12345678Z",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Czech Republic",
+    iso: "CZ",
+    code: "eu_vat",
+    description: "European VAT number",
+    example: "CZ1234567890",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Denmark",
+    iso: "DK",
+    code: "eu_vat",
+    description: "European VAT number",
+    example: "DK12345678",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Dominican Republic",
+    iso: "DO",
+    code: "do_rcn",
+    description: "Dominican RCN number",
+    example: "123-4567890-1",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Ecuador",
+    iso: "EC",
+    code: "ec_ruc",
+    description: "Ecuadorian RUC number",
+    example: "1234567890001",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Egypt",
+    iso: "EG",
+    code: "eg_tin",
+    description: "Egyptian Tax Identification Number",
+    example: "123456789",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "El Salvador",
+    iso: "SV",
+    code: "sv_nit",
+    description: "El Salvadorian NIT number",
+    example: "1234-567890-123-4",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Estonia",
+    iso: "EE",
+    code: "eu_vat",
+    description: "European VAT number",
+    example: "EE123456789",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Ethiopia",
+    iso: "ET",
+    code: "et_tin",
+    description: "Ethiopia Tax Identification Number",
+    example: "1234567890",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "EU",
+    iso: "EU",
+    code: "eu_oss_vat",
+    description: "European One Stop Shop VAT number for non-Union scheme",
+    example: "EU123456789",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Finland",
+    iso: "FI",
+    code: "eu_vat",
+    description: "European VAT number",
+    example: "FI12345678",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "France",
+    iso: "FR",
+    code: "eu_vat",
+    description: "European VAT number",
+    example: "FRAB123456789",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Georgia",
+    iso: "GE",
+    code: "ge_vat",
+    description: "Georgian VAT",
+    example: "123456789",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Germany",
+    iso: "DE",
+    code: "de_stn",
+    description: "German Tax Number (Steuernummer)",
+    example: "1234567890",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Germany",
+    iso: "DE",
+    code: "eu_vat",
+    description: "European VAT number",
+    example: "DE123456789",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Greece",
+    iso: "GR",
+    code: "eu_vat",
+    description: "European VAT number",
+    example: "EL123456789",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Guinea",
+    iso: "GN",
+    code: "gn_nif",
+    description: "Guinea Tax Identification Number (Número de Identificação Fiscal)",
+    example: "123456789",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Hong Kong",
+    iso: "HK",
+    code: "hk_br",
+    description: "Hong Kong BR number",
+    example: "12345678",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Hungary",
+    iso: "HU",
+    code: "eu_vat",
+    description: "European VAT number",
+    example: "HU12345678",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Hungary",
+    iso: "HU",
+    code: "hu_tin",
+    description: "Hungary tax number (adószám)",
+    example: "12345678-1-23",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Iceland",
+    iso: "IS",
+    code: "is_vat",
+    description: "Icelandic VAT",
+    example: "123456",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "India",
+    iso: "IN",
+    code: "in_gst",
+    description: "Indian GST number",
+    example: "12ABCDE3456FGZH",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Indonesia",
+    iso: "ID",
+    code: "id_npwp",
+    description: "Indonesian NPWP number",
+    example: "012.345.678.9-012.345",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Ireland",
+    iso: "IE",
+    code: "eu_vat",
+    description: "European VAT number",
+    example: "IE1234567AB",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Israel",
+    iso: "IL",
+    code: "il_vat",
+    description: "Israel VAT",
+    example: "12345",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Italy",
+    iso: "IT",
+    code: "eu_vat",
+    description: "European VAT number",
+    example: "IT12345678912",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Japan",
+    iso: "JP",
+    code: "jp_cn",
+    description: "Japanese Corporate Number (*Hōjin Bangō*)",
+    example: "1234567891234",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Japan",
+    iso: "JP",
+    code: "jp_rn",
+    description:
+      "Japanese Registered Foreign Businesses' Registration Number (*Tōroku Kokugai Jigyōsha no Tōroku Bangō*)",
+    example: "12345",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Japan",
+    iso: "JP",
+    code: "jp_trn",
+    description: "Japanese Tax Registration Number (*Tōroku Bangō*)",
+    example: "T1234567891234",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Kazakhstan",
+    iso: "KZ",
+    code: "kz_bin",
+    description: "Kazakhstani Business Identification Number",
+    example: "123456789012",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Kenya",
+    iso: "KE",
+    code: "ke_pin",
+    description: "Kenya Revenue Authority Personal Identification Number",
+    example: "P000111111A",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Kyrgyzstan",
+    iso: "KG",
+    code: "kg_tin",
+    description: "Kyrgyzstan Tax Identification Number",
+    example: "12345678901234",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Laos",
+    iso: "LA",
+    code: "la_tin",
+    description: "Laos Tax Identification Number",
+    example: "123456789-000",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Latvia",
+    iso: "LV",
+    code: "eu_vat",
+    description: "European VAT number",
+    example: "LV12345678912",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Liechtenstein",
+    iso: "LI",
+    code: "li_uid",
+    description: "Liechtensteinian UID number",
+    example: "CHE123456789",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Liechtenstein",
+    iso: "LI",
+    code: "li_vat",
+    description: "Liechtensteinian VAT number",
+    example: "12345",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Lithuania",
+    iso: "LT",
+    code: "eu_vat",
+    description: "European VAT number",
+    example: "LT123456789123",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Luxembourg",
+    iso: "LU",
+    code: "eu_vat",
+    description: "European VAT number",
+    example: "LU12345678",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Malaysia",
+    iso: "MY",
+    code: "my_frp",
+    description: "Malaysian FRP number",
+    example: "12345678",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Malaysia",
+    iso: "MY",
+    code: "my_itn",
+    description: "Malaysian ITN",
+    example: "C 1234567890",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Malaysia",
+    iso: "MY",
+    code: "my_sst",
+    description: "Malaysian SST number",
+    example: "A12-3456-78912345",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Malta",
+    iso: "MT",
+    code: "eu_vat",
+    description: "European VAT number",
+    example: "MT12345678",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Mauritania",
+    iso: "MR",
+    code: "mr_nif",
+    description: "Mauritania Tax Identification Number (Número de Identificação Fiscal)",
+    example: "12345678",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Mexico",
+    iso: "MX",
+    code: "mx_rfc",
+    description: "Mexican RFC number",
+    example: "ABC010203AB9",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Moldova",
+    iso: "MD",
+    code: "md_vat",
+    description: "Moldova VAT Number",
+    example: "1234567",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Montenegro",
+    iso: "ME",
+    code: "me_pib",
+    description: "Montenegro PIB Number",
+    example: "12345678",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Morocco",
+    iso: "MA",
+    code: "ma_vat",
+    description: "Morocco VAT Number",
+    example: "12345678",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Nepal",
+    iso: "NP",
+    code: "np_pan",
+    description: "Nepal PAN Number",
+    example: "123456789",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Netherlands",
+    iso: "NL",
+    code: "eu_vat",
+    description: "European VAT number",
+    example: "NL123456789B12",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "New Zealand",
+    iso: "NZ",
+    code: "nz_gst",
+    description: "New Zealand GST number",
+    example: "123456789",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Nigeria",
+    iso: "NG",
+    code: "ng_tin",
+    description: "Nigerian Tax Identification Number",
+    example: "12345678-0001",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "North Macedonia",
+    iso: "MK",
+    code: "mk_vat",
+    description: "North Macedonia VAT Number",
+    example: "MK1234567890123",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Norway",
+    iso: "NO",
+    code: "no_vat",
+    description: "Norwegian VAT number",
+    example: "123456789MVA",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Norway",
+    iso: "NO",
+    code: "no_voec",
+    description: "Norwegian VAT on e-commerce number",
+    example: "1234567",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Oman",
+    iso: "OM",
+    code: "om_vat",
+    description: "Omani VAT Number",
+    example: "OM1234567890",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Peru",
+    iso: "PE",
+    code: "pe_ruc",
+    description: "Peruvian RUC number",
+    example: "12345678901",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Philippines",
+    iso: "PH",
+    code: "ph_tin",
+    description: "Philippines Tax Identification Number",
+    example: "123456789012",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Poland",
+    iso: "PL",
+    code: "eu_vat",
+    description: "European VAT number",
+    example: "PL1234567890",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Portugal",
+    iso: "PT",
+    code: "eu_vat",
+    description: "European VAT number",
+    example: "PT123456789",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Romania",
+    iso: "RO",
+    code: "eu_vat",
+    description: "European VAT number",
+    example: "RO1234567891",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Romania",
+    iso: "RO",
+    code: "ro_tin",
+    description: "Romanian tax ID number",
+    example: "1234567890123",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Russia",
+    iso: "RU",
+    code: "ru_inn",
+    description: "Russian INN",
+    example: "1234567891",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Russia",
+    iso: "RU",
+    code: "ru_kpp",
+    description: "Russian KPP",
+    example: "123456789",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Saudi Arabia",
+    iso: "SA",
+    code: "sa_vat",
+    description: "Saudi Arabia VAT",
+    example: "123456789012345",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Senegal",
+    iso: "SN",
+    code: "sn_ninea",
+    description: "Senegal NINEA Number",
+    example: "12345672A2",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Serbia",
+    iso: "RS",
+    code: "rs_pib",
+    description: "Serbian PIB number",
+    example: "123456789",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Singapore",
+    iso: "SG",
+    code: "sg_gst",
+    description: "Singaporean GST",
+    example: "M12345678X",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Singapore",
+    iso: "SG",
+    code: "sg_uen",
+    description: "Singaporean UEN",
+    example: "123456789F",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Slovakia",
+    iso: "SK",
+    code: "eu_vat",
+    description: "European VAT number",
+    example: "SK1234567891",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Slovenia",
+    iso: "SI",
+    code: "eu_vat",
+    description: "European VAT number",
+    example: "SI12345678",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Slovenia",
+    iso: "SI",
+    code: "si_tin",
+    description: "Slovenia tax number (davčna številka)",
+    example: "12345678",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "South Africa",
+    iso: "ZA",
+    code: "za_vat",
+    description: "South African VAT number",
+    example: "4123456789",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "South Korea",
+    iso: "KR",
+    code: "kr_brn",
+    description: "Korean BRN",
+    example: "123-45-67890",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Spain",
+    iso: "ES",
+    code: "es_cif",
+    description: "Spanish NIF number (previously Spanish CIF number)",
+    example: "A12345678",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Spain",
+    iso: "ES",
+    code: "eu_vat",
+    description: "European VAT number",
+    example: "ESA1234567Z",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Suriname",
+    iso: "SR",
+    code: "sr_fin",
+    description: "Suriname FIN Number",
+    example: "1234567890",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Sweden",
+    iso: "SE",
+    code: "eu_vat",
+    description: "European VAT number",
+    example: "SE123456789123",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Switzerland",
+    iso: "CH",
+    code: "ch_uid",
+    description: "Switzerland UID number",
+    example: "CHE-123.456.789 HR",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Switzerland",
+    iso: "CH",
+    code: "ch_vat",
+    description: "Switzerland VAT number",
+    example: "CHE-123.456.789 MWST",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Taiwan",
+    iso: "TW",
+    code: "tw_vat",
+    description: "Taiwanese VAT",
+    example: "12345678",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Tajikistan",
+    iso: "TJ",
+    code: "tj_tin",
+    description: "Tajikistan Tax Identification Number",
+    example: "123456789",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Tanzania",
+    iso: "TZ",
+    code: "tz_vat",
+    description: "Tanzania VAT Number",
+    example: "12345678A",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Thailand",
+    iso: "TH",
+    code: "th_vat",
+    description: "Thai VAT",
+    example: "1234567891234",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Turkey",
+    iso: "TR",
+    code: "tr_tin",
+    description: "Turkish Tax Identification Number",
+    example: "123456789",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Uganda",
+    iso: "UG",
+    code: "ug_tin",
+    description: "Uganda Tax Identification Number",
+    example: "1014751879",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Ukraine",
+    iso: "UA",
+    code: "ua_vat",
+    description: "Ukrainian VAT",
+    example: "123456789",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "United Arab Emirates",
+    iso: "AE",
+    code: "ae_trn",
+    description: "United Arab Emirates TRN",
+    example: "123456789012345",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "United Kingdom",
+    iso: "GB",
+    code: "eu_vat",
+    description: "Northern Ireland VAT number",
+    example: "XI123456789",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "United Kingdom",
+    iso: "GB",
+    code: "gb_vat",
+    description: "United Kingdom VAT number",
+    example: "GB123456789",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "United States",
+    iso: "US",
+    code: "us_ein",
+    description: "United States EIN",
+    example: "12-3456789",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Uruguay",
+    iso: "UY",
+    code: "uy_ruc",
+    description: "Uruguayan RUC number",
+    example: "123456789012",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Uzbekistan",
+    iso: "UZ",
+    code: "uz_tin",
+    description: "Uzbekistan TIN Number",
+    example: "123456789",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Uzbekistan",
+    iso: "UZ",
+    code: "uz_vat",
+    description: "Uzbekistan VAT Number",
+    example: "123456789012",
+    impactsTaxCalculation: true,
+  },
+  {
+    country: "Venezuela",
+    iso: "VE",
+    code: "ve_rif",
+    description: "Venezuelan RIF number",
+    example: "A-12345678-9",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Vietnam",
+    iso: "VN",
+    code: "vn_tin",
+    description: "Vietnamese tax ID number",
+    example: "1234567890",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Zambia",
+    iso: "ZM",
+    code: "zm_tin",
+    description: "Zambia Tax Identification Number",
+    example: "1004751879",
+    impactsTaxCalculation: false,
+  },
+  {
+    country: "Zimbabwe",
+    iso: "ZW",
+    code: "zw_tin",
+    description: "Zimbabwe Tax Identification Number",
+    example: "1234567890",
+    impactsTaxCalculation: false,
+  },
+];
diff --git a/apps/web/src/app/billing/payment/types/tax-id.ts b/apps/web/src/app/billing/payment/types/tax-id.ts
new file mode 100644
index 00000000000..80df42a3436
--- /dev/null
+++ b/apps/web/src/app/billing/payment/types/tax-id.ts
@@ -0,0 +1,18 @@
+import { BaseResponse } from "@bitwarden/common/models/response/base.response";
+
+export interface TaxId {
+  code: string;
+  value: string;
+}
+
+export class TaxIdResponse extends BaseResponse implements TaxId {
+  code: string;
+  value: string;
+
+  constructor(response: any) {
+    super(response);
+
+    this.code = this.getResponseProperty("Code");
+    this.value = this.getResponseProperty("Value");
+  }
+}
diff --git a/apps/web/src/app/billing/payment/types/tokenized-payment-method.ts b/apps/web/src/app/billing/payment/types/tokenized-payment-method.ts
new file mode 100644
index 00000000000..def240f534b
--- /dev/null
+++ b/apps/web/src/app/billing/payment/types/tokenized-payment-method.ts
@@ -0,0 +1,22 @@
+export const TokenizablePaymentMethods = {
+  bankAccount: "bankAccount",
+  card: "card",
+  payPal: "payPal",
+} as const;
+
+export type BankAccountPaymentMethod = typeof TokenizablePaymentMethods.bankAccount;
+export type CardPaymentMethod = typeof TokenizablePaymentMethods.card;
+export type PayPalPaymentMethod = typeof TokenizablePaymentMethods.payPal;
+
+export type TokenizablePaymentMethod =
+  (typeof TokenizablePaymentMethods)[keyof typeof TokenizablePaymentMethods];
+
+export const isTokenizablePaymentMethod = (value: string): value is TokenizablePaymentMethod => {
+  const valid = Object.values(TokenizablePaymentMethods) as readonly string[];
+  return valid.includes(value);
+};
+
+export type TokenizedPaymentMethod = {
+  type: TokenizablePaymentMethod;
+  token: string;
+};
diff --git a/apps/web/src/app/billing/services/billing.client.ts b/apps/web/src/app/billing/services/billing.client.ts
new file mode 100644
index 00000000000..69f82eab19a
--- /dev/null
+++ b/apps/web/src/app/billing/services/billing.client.ts
@@ -0,0 +1,153 @@
+import { Injectable } from "@angular/core";
+
+import { ApiService } from "@bitwarden/common/abstractions/api.service";
+import { ErrorResponse } from "@bitwarden/common/models/response/error.response";
+
+import {
+  BillingAddress,
+  BillingAddressResponse,
+  MaskedPaymentMethod,
+  MaskedPaymentMethodResponse,
+  TokenizedPaymentMethod,
+} from "../payment/types";
+import { BillableEntity } from "../types";
+
+type Result<T> =
+  | {
+      type: "success";
+      value: T;
+    }
+  | {
+      type: "error";
+      message: string;
+    };
+
+@Injectable()
+export class BillingClient {
+  constructor(private apiService: ApiService) {}
+
+  private getEndpoint = (entity: BillableEntity): string => {
+    switch (entity.type) {
+      case "account": {
+        return "/account/billing/vnext";
+      }
+      case "organization": {
+        return `/organizations/${entity.data.id}/billing/vnext`;
+      }
+      case "provider": {
+        return `/providers/${entity.data.id}/billing/vnext`;
+      }
+    }
+  };
+
+  addCreditWithBitPay = async (
+    owner: BillableEntity,
+    credit: { amount: number; redirectUrl: string },
+  ): Promise<Result<string>> => {
+    const path = `${this.getEndpoint(owner)}/credit/bitpay`;
+    try {
+      const data = await this.apiService.send("POST", path, credit, true, true);
+      return {
+        type: "success",
+        value: data as string,
+      };
+    } catch (error: any) {
+      if (error instanceof ErrorResponse) {
+        return {
+          type: "error",
+          message: error.message,
+        };
+      }
+      throw error;
+    }
+  };
+
+  getBillingAddress = async (owner: BillableEntity): Promise<BillingAddress | null> => {
+    const path = `${this.getEndpoint(owner)}/address`;
+    const data = await this.apiService.send("GET", path, null, true, true);
+    return data ? new BillingAddressResponse(data) : null;
+  };
+
+  getCredit = async (owner: BillableEntity): Promise<number | null> => {
+    const path = `${this.getEndpoint(owner)}/credit`;
+    const data = await this.apiService.send("GET", path, null, true, true);
+    return data ? (data as number) : null;
+  };
+
+  getPaymentMethod = async (owner: BillableEntity): Promise<MaskedPaymentMethod | null> => {
+    const path = `${this.getEndpoint(owner)}/payment-method`;
+    const data = await this.apiService.send("GET", path, null, true, true);
+    return data ? new MaskedPaymentMethodResponse(data).value : null;
+  };
+
+  updateBillingAddress = async (
+    owner: BillableEntity,
+    billingAddress: BillingAddress,
+  ): Promise<Result<BillingAddress>> => {
+    const path = `${this.getEndpoint(owner)}/address`;
+    try {
+      const data = await this.apiService.send("PUT", path, billingAddress, true, true);
+      return {
+        type: "success",
+        value: new BillingAddressResponse(data),
+      };
+    } catch (error: any) {
+      if (error instanceof ErrorResponse) {
+        return {
+          type: "error",
+          message: error.message,
+        };
+      }
+      throw error;
+    }
+  };
+
+  updatePaymentMethod = async (
+    owner: BillableEntity,
+    paymentMethod: TokenizedPaymentMethod,
+    billingAddress: Pick<BillingAddress, "country" | "postalCode"> | null,
+  ): Promise<Result<MaskedPaymentMethod>> => {
+    const path = `${this.getEndpoint(owner)}/payment-method`;
+    try {
+      const request = {
+        ...paymentMethod,
+        billingAddress,
+      };
+      const data = await this.apiService.send("PUT", path, request, true, true);
+      return {
+        type: "success",
+        value: new MaskedPaymentMethodResponse(data).value,
+      };
+    } catch (error: any) {
+      if (error instanceof ErrorResponse) {
+        return {
+          type: "error",
+          message: error.message,
+        };
+      }
+      throw error;
+    }
+  };
+
+  verifyBankAccount = async (
+    owner: BillableEntity,
+    descriptorCode: string,
+  ): Promise<Result<MaskedPaymentMethod>> => {
+    const path = `${this.getEndpoint(owner)}/payment-method/verify-bank-account`;
+    try {
+      const data = await this.apiService.send("POST", path, { descriptorCode }, true, true);
+      return {
+        type: "success",
+        value: new MaskedPaymentMethodResponse(data).value,
+      };
+    } catch (error: any) {
+      if (error instanceof ErrorResponse) {
+        return {
+          type: "error",
+          message: error.message,
+        };
+      }
+      throw error;
+    }
+  };
+}
diff --git a/apps/web/src/app/billing/services/index.ts b/apps/web/src/app/billing/services/index.ts
index e291ca6a454..dcd2c05034a 100644
--- a/apps/web/src/app/billing/services/index.ts
+++ b/apps/web/src/app/billing/services/index.ts
@@ -1,3 +1,4 @@
+export * from "./billing.client";
 export * from "./billing-services.module";
 export * from "./braintree.service";
 export * from "./stripe.service";
diff --git a/apps/web/src/app/billing/services/stripe.service.ts b/apps/web/src/app/billing/services/stripe.service.ts
index 360187ecd1e..7ea0d7d52c8 100644
--- a/apps/web/src/app/billing/services/stripe.service.ts
+++ b/apps/web/src/app/billing/services/stripe.service.ts
@@ -2,11 +2,43 @@
 // @ts-strict-ignore
 import { Injectable } from "@angular/core";
 
+import { ApiService } from "@bitwarden/common/abstractions/api.service";
 import { BankAccount } from "@bitwarden/common/billing/models/domain";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 
+import { BankAccountPaymentMethod, CardPaymentMethod } from "../payment/types";
+
 import { BillingServicesModule } from "./billing-services.module";
 
+type SetupBankAccountRequest = {
+  payment_method: {
+    us_bank_account: {
+      routing_number: string;
+      account_number: string;
+      account_holder_type: string;
+    };
+    billing_details: {
+      name: string;
+      address?: {
+        country: string;
+        postal_code: string;
+      };
+    };
+  };
+};
+
+type SetupCardRequest = {
+  payment_method: {
+    card: string;
+    billing_details?: {
+      address: {
+        country: string;
+        postal_code: string;
+      };
+    };
+  };
+};
+
 @Injectable({ providedIn: BillingServicesModule })
 export class StripeService {
   private stripe: any;
@@ -17,7 +49,28 @@ export class StripeService {
     cardCvc: string;
   };
 
-  constructor(private logService: LogService) {}
+  constructor(
+    private apiService: ApiService,
+    private logService: LogService,
+  ) {}
+
+  createSetupIntent = async (
+    paymentMethod: BankAccountPaymentMethod | CardPaymentMethod,
+  ): Promise<string> => {
+    const getPath = () => {
+      switch (paymentMethod) {
+        case "bankAccount": {
+          return "/setup-intent/bank-account";
+        }
+        case "card": {
+          return "/setup-intent/card";
+        }
+      }
+    };
+
+    const response = await this.apiService.send("POST", getPath(), null, true, true);
+    return response as string;
+  };
 
   /**
    * Loads [Stripe JS]{@link https://docs.stripe.com/js} in the <head> element of the current page and mounts
@@ -51,25 +104,28 @@ export class StripeService {
     window.document.head.appendChild(script);
   }
 
-  /**
-   * Re-mounts previously created Stripe credit card [elements]{@link https://docs.stripe.com/js/elements_object/create} into the HTML elements
-   * specified during the {@link loadStripe} call. This is useful for when those HTML elements are removed from the DOM by Angular.
-   */
-  mountElements(i: number = 0) {
+  mountElements(attempt: number = 1) {
     setTimeout(() => {
-      if (!document.querySelector(this.elementIds.cardNumber) && i < 10) {
-        this.logService.warning("Stripe container missing, retrying...");
-        this.mountElements(i + 1);
-        return;
-      }
+      if (!this.elements) {
+        this.logService.warning(`Stripe elements are missing, retrying for attempt ${attempt}...`);
+        this.mountElements(attempt + 1);
+      } else {
+        const cardNumber = this.elements.getElement("cardNumber");
+        const cardExpiry = this.elements.getElement("cardExpiry");
+        const cardCVC = this.elements.getElement("cardCvc");
 
-      const cardNumber = this.elements.getElement("cardNumber");
-      const cardExpiry = this.elements.getElement("cardExpiry");
-      const cardCvc = this.elements.getElement("cardCvc");
-      cardNumber.mount(this.elementIds.cardNumber);
-      cardExpiry.mount(this.elementIds.cardExpiry);
-      cardCvc.mount(this.elementIds.cardCvc);
-    }, 50);
+        if ([cardNumber, cardExpiry, cardCVC].some((element) => !element)) {
+          this.logService.warning(
+            `Some Stripe card elements are missing, retrying for attempt ${attempt}...`,
+          );
+          this.mountElements(attempt + 1);
+        } else {
+          cardNumber.mount(this.elementIds.cardNumber);
+          cardExpiry.mount(this.elementIds.cardExpiry);
+          cardCVC.mount(this.elementIds.cardCvc);
+        }
+      }
+    }, 100);
   }
 
   /**
@@ -81,8 +137,9 @@ export class StripeService {
   async setupBankAccountPaymentMethod(
     clientSecret: string,
     { accountHolderName, routingNumber, accountNumber, accountHolderType }: BankAccount,
+    billingDetails?: { country: string; postalCode: string },
   ): Promise<string> {
-    const result = await this.stripe.confirmUsBankAccountSetup(clientSecret, {
+    const request: SetupBankAccountRequest = {
       payment_method: {
         us_bank_account: {
           routing_number: routingNumber,
@@ -93,7 +150,16 @@ export class StripeService {
           name: accountHolderName,
         },
       },
-    });
+    };
+
+    if (billingDetails) {
+      request.payment_method.billing_details.address = {
+        country: billingDetails.country,
+        postal_code: billingDetails.postalCode,
+      };
+    }
+
+    const result = await this.stripe.confirmUsBankAccountSetup(clientSecret, request);
     if (result.error || (result.setupIntent && result.setupIntent.status !== "requires_action")) {
       this.logService.error(result.error);
       throw result.error;
@@ -107,13 +173,25 @@ export class StripeService {
    * thereby creating and storing a Stripe [PaymentMethod]{@link https://docs.stripe.com/api/payment_methods}.
    * @returns The ID of the newly created PaymentMethod.
    */
-  async setupCardPaymentMethod(clientSecret: string): Promise<string> {
+  async setupCardPaymentMethod(
+    clientSecret: string,
+    billingDetails?: { country: string; postalCode: string },
+  ): Promise<string> {
     const cardNumber = this.elements.getElement("cardNumber");
-    const result = await this.stripe.confirmCardSetup(clientSecret, {
+    const request: SetupCardRequest = {
       payment_method: {
         card: cardNumber,
       },
-    });
+    };
+    if (billingDetails) {
+      request.payment_method.billing_details = {
+        address: {
+          country: billingDetails.country,
+          postal_code: billingDetails.postalCode,
+        },
+      };
+    }
+    const result = await this.stripe.confirmCardSetup(clientSecret, request);
     if (result.error || (result.setupIntent && result.setupIntent.status !== "succeeded")) {
       this.logService.error(result.error);
       throw result.error;
diff --git a/apps/web/src/app/billing/services/trial-flow.service.ts b/apps/web/src/app/billing/services/trial-flow.service.ts
index 81bcf8dcabd..831cc129e60 100644
--- a/apps/web/src/app/billing/services/trial-flow.service.ts
+++ b/apps/web/src/app/billing/services/trial-flow.service.ts
@@ -11,6 +11,8 @@ import { BillingSourceResponse } from "@bitwarden/common/billing/models/response
 import { OrganizationBillingMetadataResponse } from "@bitwarden/common/billing/models/response/organization-billing-metadata.response";
 import { OrganizationSubscriptionResponse } from "@bitwarden/common/billing/models/response/organization-subscription.response";
 import { PaymentSourceResponse } from "@bitwarden/common/billing/models/response/payment-source.response";
+import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { DialogService } from "@bitwarden/components";
 
@@ -28,6 +30,7 @@ export class TrialFlowService {
     private router: Router,
     protected billingApiService: BillingApiServiceAbstraction,
     private organizationApiService: OrganizationApiServiceAbstraction,
+    private configService: ConfigService,
   ) {}
   checkForOrgsWithUpcomingPaymentIssues(
     organization: Organization,
@@ -131,7 +134,11 @@ export class TrialFlowService {
   }
 
   private async navigateToPaymentMethod(orgId: string) {
-    await this.router.navigate(["organizations", `${orgId}`, "billing", "payment-method"], {
+    const managePaymentDetailsOutsideCheckout = await this.configService.getFeatureFlag(
+      FeatureFlag.PM21881_ManagePaymentDetailsOutsideCheckout,
+    );
+    const route = managePaymentDetailsOutsideCheckout ? "payment-details" : "payment-method";
+    await this.router.navigate(["organizations", `${orgId}`, "billing", route], {
       state: { launchPaymentModalAutomatically: true },
       queryParams: { launchPaymentModalAutomatically: true },
     });
diff --git a/apps/web/src/app/billing/shared/payment-method.component.ts b/apps/web/src/app/billing/shared/payment-method.component.ts
index 74793bccc01..0e116b4f39a 100644
--- a/apps/web/src/app/billing/shared/payment-method.component.ts
+++ b/apps/web/src/app/billing/shared/payment-method.component.ts
@@ -18,7 +18,9 @@ import { PaymentMethodType } from "@bitwarden/common/billing/enums";
 import { BillingPaymentResponse } from "@bitwarden/common/billing/models/response/billing-payment.response";
 import { OrganizationSubscriptionResponse } from "@bitwarden/common/billing/models/response/organization-subscription.response";
 import { SubscriptionResponse } from "@bitwarden/common/billing/models/response/subscription.response";
+import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
 import { VerifyBankRequest } from "@bitwarden/common/models/request/verify-bank.request";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
 import { SyncService } from "@bitwarden/common/platform/sync";
@@ -79,6 +81,7 @@ export class PaymentMethodComponent implements OnInit, OnDestroy {
     private organizationService: OrganizationService,
     private accountService: AccountService,
     protected syncService: SyncService,
+    private configService: ConfigService,
   ) {
     const state = this.router.getCurrentNavigation()?.extras?.state;
     // incase the above state is undefined or null we use redundantState
@@ -107,6 +110,14 @@ export class PaymentMethodComponent implements OnInit, OnDestroy {
         return;
       }
 
+      const managePaymentDetailsOutsideCheckout = await this.configService.getFeatureFlag(
+        FeatureFlag.PM21881_ManagePaymentDetailsOutsideCheckout,
+      );
+
+      if (managePaymentDetailsOutsideCheckout) {
+        await this.router.navigate(["../payment-details"], { relativeTo: this.route });
+      }
+
       await this.load();
       this.firstLoaded = true;
     });
diff --git a/apps/web/src/app/billing/types/billable-entity.ts b/apps/web/src/app/billing/types/billable-entity.ts
new file mode 100644
index 00000000000..79ed12a4161
--- /dev/null
+++ b/apps/web/src/app/billing/types/billable-entity.ts
@@ -0,0 +1,42 @@
+import { map } from "rxjs";
+
+import { Organization } from "@bitwarden/common/admin-console/models/domain/organization";
+import { Provider } from "@bitwarden/common/admin-console/models/domain/provider";
+import { Account } from "@bitwarden/common/auth/abstractions/account.service";
+
+export type BillableEntity =
+  | { type: "account"; data: Account }
+  | { type: "organization"; data: Organization }
+  | { type: "provider"; data: Provider };
+
+export const accountToBillableEntity = map<Account | null, BillableEntity>((account) => {
+  if (!account) {
+    throw new Error("Account not found");
+  }
+  return {
+    type: "account",
+    data: account,
+  };
+});
+
+export const organizationToBillableEntity = map<Organization | undefined, BillableEntity>(
+  (organization) => {
+    if (!organization) {
+      throw new Error("Organization not found");
+    }
+    return {
+      type: "organization",
+      data: organization,
+    };
+  },
+);
+
+export const providerToBillableEntity = map<Provider | null, BillableEntity>((provider) => {
+  if (!provider) {
+    throw new Error("Organization not found");
+  }
+  return {
+    type: "provider",
+    data: provider,
+  };
+});
diff --git a/apps/web/src/app/billing/types/index.ts b/apps/web/src/app/billing/types/index.ts
new file mode 100644
index 00000000000..1278e0f2e14
--- /dev/null
+++ b/apps/web/src/app/billing/types/index.ts
@@ -0,0 +1,2 @@
+export * from "./billable-entity";
+export * from "./free-trial";
diff --git a/apps/web/src/app/billing/warnings/components/index.ts b/apps/web/src/app/billing/warnings/components/index.ts
new file mode 100644
index 00000000000..1e1e0682e62
--- /dev/null
+++ b/apps/web/src/app/billing/warnings/components/index.ts
@@ -0,0 +1,2 @@
+export * from "./organization-free-trial-warning.component";
+export * from "./organization-reseller-renewal-warning.component";
diff --git a/apps/web/src/app/billing/warnings/free-trial-warning.component.ts b/apps/web/src/app/billing/warnings/components/organization-free-trial-warning.component.ts
similarity index 68%
rename from apps/web/src/app/billing/warnings/free-trial-warning.component.ts
rename to apps/web/src/app/billing/warnings/components/organization-free-trial-warning.component.ts
index b000878bf66..074358537b6 100644
--- a/apps/web/src/app/billing/warnings/free-trial-warning.component.ts
+++ b/apps/web/src/app/billing/warnings/components/organization-free-trial-warning.component.ts
@@ -6,15 +6,13 @@ import { Organization } from "@bitwarden/common/admin-console/models/domain/orga
 import { AnchorLinkDirective, BannerComponent } from "@bitwarden/components";
 import { I18nPipe } from "@bitwarden/ui-common";
 
-import {
-  FreeTrialWarning,
-  OrganizationWarningsService,
-} from "../services/organization-warnings.service";
+import { OrganizationWarningsService } from "../services";
+import { OrganizationFreeTrialWarning } from "../types";
 
 @Component({
-  selector: "app-free-trial-warning",
+  selector: "app-organization-free-trial-warning",
   template: `
-    @let warning = freeTrialWarning$ | async;
+    @let warning = warning$ | async;
 
     @if (warning) {
       <bit-banner
@@ -39,17 +37,19 @@ import {
   `,
   imports: [AnchorLinkDirective, AsyncPipe, BannerComponent, I18nPipe],
 })
-export class FreeTrialWarningComponent implements OnInit {
+export class OrganizationFreeTrialWarningComponent implements OnInit {
   @Input({ required: true }) organization!: Organization;
   @Output() clicked = new EventEmitter<void>();
 
-  freeTrialWarning$!: Observable<FreeTrialWarning>;
+  warning$!: Observable<OrganizationFreeTrialWarning>;
 
   constructor(private organizationWarningsService: OrganizationWarningsService) {}
 
   ngOnInit() {
-    this.freeTrialWarning$ = this.organizationWarningsService.getFreeTrialWarning$(
-      this.organization,
-    );
+    this.warning$ = this.organizationWarningsService.getFreeTrialWarning$(this.organization);
   }
+
+  refresh = () => {
+    this.warning$ = this.organizationWarningsService.getFreeTrialWarning$(this.organization, true);
+  };
 }
diff --git a/apps/web/src/app/billing/warnings/reseller-renewal-warning.component.ts b/apps/web/src/app/billing/warnings/components/organization-reseller-renewal-warning.component.ts
similarity index 63%
rename from apps/web/src/app/billing/warnings/reseller-renewal-warning.component.ts
rename to apps/web/src/app/billing/warnings/components/organization-reseller-renewal-warning.component.ts
index 6bcfba5ce6c..f45dd443dda 100644
--- a/apps/web/src/app/billing/warnings/reseller-renewal-warning.component.ts
+++ b/apps/web/src/app/billing/warnings/components/organization-reseller-renewal-warning.component.ts
@@ -5,15 +5,13 @@ import { Observable } from "rxjs";
 import { Organization } from "@bitwarden/common/admin-console/models/domain/organization";
 import { BannerComponent } from "@bitwarden/components";
 
-import {
-  OrganizationWarningsService,
-  ResellerRenewalWarning,
-} from "../services/organization-warnings.service";
+import { OrganizationWarningsService } from "../services";
+import { OrganizationResellerRenewalWarning } from "../types";
 
 @Component({
-  selector: "app-reseller-renewal-warning",
+  selector: "app-organization-reseller-renewal-warning",
   template: `
-    @let warning = resellerRenewalWarning$ | async;
+    @let warning = warning$ | async;
 
     @if (warning) {
       <bit-banner
@@ -29,16 +27,14 @@ import {
   `,
   imports: [AsyncPipe, BannerComponent],
 })
-export class ResellerRenewalWarningComponent implements OnInit {
+export class OrganizationResellerRenewalWarningComponent implements OnInit {
   @Input({ required: true }) organization!: Organization;
 
-  resellerRenewalWarning$!: Observable<ResellerRenewalWarning>;
+  warning$!: Observable<OrganizationResellerRenewalWarning>;
 
   constructor(private organizationWarningsService: OrganizationWarningsService) {}
 
   ngOnInit() {
-    this.resellerRenewalWarning$ = this.organizationWarningsService.getResellerRenewalWarning$(
-      this.organization,
-    );
+    this.warning$ = this.organizationWarningsService.getResellerRenewalWarning$(this.organization);
   }
 }
diff --git a/apps/web/src/app/billing/warnings/services/index.ts b/apps/web/src/app/billing/warnings/services/index.ts
new file mode 100644
index 00000000000..fbd1c56f350
--- /dev/null
+++ b/apps/web/src/app/billing/warnings/services/index.ts
@@ -0,0 +1 @@
+export * from "./organization-warnings.service";
diff --git a/apps/web/src/app/billing/services/organization-warnings.service.spec.ts b/apps/web/src/app/billing/warnings/services/organization-warnings.service.spec.ts
similarity index 100%
rename from apps/web/src/app/billing/services/organization-warnings.service.spec.ts
rename to apps/web/src/app/billing/warnings/services/organization-warnings.service.spec.ts
diff --git a/apps/web/src/app/billing/services/organization-warnings.service.ts b/apps/web/src/app/billing/warnings/services/organization-warnings.service.ts
similarity index 78%
rename from apps/web/src/app/billing/services/organization-warnings.service.ts
rename to apps/web/src/app/billing/warnings/services/organization-warnings.service.ts
index f75220a7744..fa53992afe0 100644
--- a/apps/web/src/app/billing/services/organization-warnings.service.ts
+++ b/apps/web/src/app/billing/warnings/services/organization-warnings.service.ts
@@ -1,25 +1,20 @@
 import { Injectable } from "@angular/core";
 import { Router } from "@angular/router";
-import {
-  filter,
-  from,
-  lastValueFrom,
-  map,
-  Observable,
-  shareReplay,
-  switchMap,
-  takeWhile,
-} from "rxjs";
+import { filter, from, lastValueFrom, map, Observable, switchMap, takeWhile } from "rxjs";
 import { take } from "rxjs/operators";
 
 import { OrganizationApiServiceAbstraction } from "@bitwarden/common/admin-console/abstractions/organization/organization-api.service.abstraction";
 import { Organization } from "@bitwarden/common/admin-console/models/domain/organization";
 import { OrganizationBillingApiServiceAbstraction } from "@bitwarden/common/billing/abstractions/organizations/organization-billing-api.service.abstraction";
 import { OrganizationWarningsResponse } from "@bitwarden/common/billing/models/response/organization-warnings.response";
+import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { OrganizationId } from "@bitwarden/common/types/guid";
 import { DialogService } from "@bitwarden/components";
-import { openChangePlanDialog } from "@bitwarden/web-vault/app/billing/organizations/change-plan-dialog.component";
+
+import { openChangePlanDialog } from "../../organizations/change-plan-dialog.component";
+import { OrganizationFreeTrialWarning, OrganizationResellerRenewalWarning } from "../types";
 
 const format = (date: Date) =>
   date.toLocaleDateString("en-US", {
@@ -28,21 +23,12 @@ const format = (date: Date) =>
     year: "numeric",
   });
 
-export type FreeTrialWarning = {
-  organization: Pick<Organization, "id" & "name">;
-  message: string;
-};
-
-export type ResellerRenewalWarning = {
-  type: "info" | "warning";
-  message: string;
-};
-
 @Injectable({ providedIn: "root" })
 export class OrganizationWarningsService {
   private cache$ = new Map<OrganizationId, Observable<OrganizationWarningsResponse>>();
 
   constructor(
+    private configService: ConfigService,
     private dialogService: DialogService,
     private i18nService: I18nService,
     private organizationApiService: OrganizationApiServiceAbstraction,
@@ -50,8 +36,11 @@ export class OrganizationWarningsService {
     private router: Router,
   ) {}
 
-  getFreeTrialWarning$ = (organization: Organization): Observable<FreeTrialWarning> =>
-    this.getWarning$(organization, (response) => response.freeTrial).pipe(
+  getFreeTrialWarning$ = (
+    organization: Organization,
+    bypassCache: boolean = false,
+  ): Observable<OrganizationFreeTrialWarning> =>
+    this.getWarning$(organization, (response) => response.freeTrial, bypassCache).pipe(
       map((warning) => {
         const { remainingTrialDays } = warning;
 
@@ -76,9 +65,12 @@ export class OrganizationWarningsService {
       }),
     );
 
-  getResellerRenewalWarning$ = (organization: Organization): Observable<ResellerRenewalWarning> =>
-    this.getWarning$(organization, (response) => response.resellerRenewal).pipe(
-      map((warning): ResellerRenewalWarning | null => {
+  getResellerRenewalWarning$ = (
+    organization: Organization,
+    bypassCache: boolean = false,
+  ): Observable<OrganizationResellerRenewalWarning> =>
+    this.getWarning$(organization, (response) => response.resellerRenewal, bypassCache).pipe(
+      map((warning): OrganizationResellerRenewalWarning | null => {
         switch (warning.type) {
           case "upcoming": {
             return {
@@ -116,8 +108,11 @@ export class OrganizationWarningsService {
       filter((result): result is NonNullable<typeof result> => result !== null),
     );
 
-  showInactiveSubscriptionDialog$ = (organization: Organization): Observable<void> =>
-    this.getWarning$(organization, (response) => response.inactiveSubscription).pipe(
+  showInactiveSubscriptionDialog$ = (
+    organization: Organization,
+    bypassCache: boolean = false,
+  ): Observable<void> =>
+    this.getWarning$(organization, (response) => response.inactiveSubscription, bypassCache).pipe(
       switchMap(async (warning) => {
         switch (warning.resolution) {
           case "contact_provider": {
@@ -142,8 +137,14 @@ export class OrganizationWarningsService {
               cancelButtonText: this.i18nService.t("close"),
             });
             if (confirmed) {
+              const managePaymentDetailsOutsideCheckout = await this.configService.getFeatureFlag(
+                FeatureFlag.PM21881_ManagePaymentDetailsOutsideCheckout,
+              );
+              const route = managePaymentDetailsOutsideCheckout
+                ? "payment-details"
+                : "payment-method";
               await this.router.navigate(
-                ["organizations", `${organization.id}`, "billing", "payment-method"],
+                ["organizations", `${organization.id}`, "billing", route],
                 {
                   state: { launchPaymentModalAutomatically: true },
                 },
@@ -177,14 +178,15 @@ export class OrganizationWarningsService {
       }),
     );
 
-  private getResponse$ = (organization: Organization): Observable<OrganizationWarningsResponse> => {
+  private getResponse$ = (
+    organization: Organization,
+    bypassCache: boolean = false,
+  ): Observable<OrganizationWarningsResponse> => {
     const existing = this.cache$.get(organization.id as OrganizationId);
-    if (existing) {
+    if (existing && !bypassCache) {
       return existing;
     }
-    const response$ = from(this.organizationBillingApiService.getWarnings(organization.id)).pipe(
-      shareReplay({ bufferSize: 1, refCount: false }),
-    );
+    const response$ = from(this.organizationBillingApiService.getWarnings(organization.id));
     this.cache$.set(organization.id as OrganizationId, response$);
     return response$;
   };
@@ -192,8 +194,9 @@ export class OrganizationWarningsService {
   private getWarning$ = <T>(
     organization: Organization,
     extract: (response: OrganizationWarningsResponse) => T | null | undefined,
+    bypassCache: boolean = false,
   ): Observable<T> =>
-    this.getResponse$(organization).pipe(
+    this.getResponse$(organization, bypassCache).pipe(
       map(extract),
       takeWhile((warning): warning is T => !!warning),
       take(1),
diff --git a/apps/web/src/app/billing/warnings/types/index.ts b/apps/web/src/app/billing/warnings/types/index.ts
new file mode 100644
index 00000000000..fc0c7d278ed
--- /dev/null
+++ b/apps/web/src/app/billing/warnings/types/index.ts
@@ -0,0 +1 @@
+export * from "./organization-warnings";
diff --git a/apps/web/src/app/billing/warnings/types/organization-warnings.ts b/apps/web/src/app/billing/warnings/types/organization-warnings.ts
new file mode 100644
index 00000000000..96bf5aff6f1
--- /dev/null
+++ b/apps/web/src/app/billing/warnings/types/organization-warnings.ts
@@ -0,0 +1,11 @@
+import { Organization } from "@bitwarden/common/admin-console/models/domain/organization";
+
+export type OrganizationFreeTrialWarning = {
+  organization: Pick<Organization, "id" & "name">;
+  message: string;
+};
+
+export type OrganizationResellerRenewalWarning = {
+  type: "info" | "warning";
+  message: string;
+};
diff --git a/apps/web/src/app/vault/individual-vault/vault-banners/vault-banners.component.spec.ts b/apps/web/src/app/vault/individual-vault/vault-banners/vault-banners.component.spec.ts
index 997d9bc3fe3..197b6426468 100644
--- a/apps/web/src/app/vault/individual-vault/vault-banners/vault-banners.component.spec.ts
+++ b/apps/web/src/app/vault/individual-vault/vault-banners/vault-banners.component.spec.ts
@@ -8,6 +8,7 @@ import { I18nPipe } from "@bitwarden/angular/platform/pipes/i18n.pipe";
 import { ApiService } from "@bitwarden/common/abstractions/api.service";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { TokenService } from "@bitwarden/common/auth/abstractions/token.service";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
 import { MessageListener } from "@bitwarden/common/platform/messaging";
@@ -87,6 +88,10 @@ describe("VaultBannersComponent", () => {
             allMessages$: messageSubject.asObservable(),
           }),
         },
+        {
+          provide: ConfigService,
+          useValue: mock<ConfigService>(),
+        },
       ],
     })
       .overrideProvider(VaultBannersService, { useValue: bannerService })
diff --git a/apps/web/src/app/vault/individual-vault/vault-banners/vault-banners.component.ts b/apps/web/src/app/vault/individual-vault/vault-banners/vault-banners.component.ts
index 7eafaa50c18..4dd5bb7ff2d 100644
--- a/apps/web/src/app/vault/individual-vault/vault-banners/vault-banners.component.ts
+++ b/apps/web/src/app/vault/individual-vault/vault-banners/vault-banners.component.ts
@@ -1,9 +1,11 @@
 import { Component, Input, OnInit } from "@angular/core";
 import { takeUntilDestroyed } from "@angular/core/rxjs-interop";
 import { Router } from "@angular/router";
-import { firstValueFrom, map, Observable, switchMap, filter } from "rxjs";
+import { filter, firstValueFrom, map, Observable, switchMap } from "rxjs";
 
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
+import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { MessageListener } from "@bitwarden/common/platform/messaging";
 import { UserId } from "@bitwarden/common/types/guid";
@@ -35,6 +37,7 @@ export class VaultBannersComponent implements OnInit {
     private i18nService: I18nService,
     private accountService: AccountService,
     private messageListener: MessageListener,
+    private configService: ConfigService,
   ) {
     this.premiumBannerVisible$ = this.activeUserId$.pipe(
       filter((userId): userId is UserId => userId != null),
@@ -68,12 +71,16 @@ export class VaultBannersComponent implements OnInit {
   }
 
   async navigateToPaymentMethod(organizationId: string): Promise<void> {
+    const managePaymentDetailsOutsideCheckout = await this.configService.getFeatureFlag(
+      FeatureFlag.PM21881_ManagePaymentDetailsOutsideCheckout,
+    );
+    const route = managePaymentDetailsOutsideCheckout ? "payment-details" : "payment-method";
     const navigationExtras = {
       state: { launchPaymentModalAutomatically: true },
     };
 
     await this.router.navigate(
-      ["organizations", organizationId, "billing", "payment-method"],
+      ["organizations", organizationId, "billing", route],
       navigationExtras,
     );
   }
diff --git a/apps/web/src/locales/en/messages.json b/apps/web/src/locales/en/messages.json
index 50a2cdbc4a9..9150028f4d6 100644
--- a/apps/web/src/locales/en/messages.json
+++ b/apps/web/src/locales/en/messages.json
@@ -10802,5 +10802,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Billing address required to add credit.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/bitwarden_license/bit-web/src/app/admin-console/providers/providers-layout.component.html b/bitwarden_license/bit-web/src/app/admin-console/providers/providers-layout.component.html
index 8266b20b306..0a084848dbe 100644
--- a/bitwarden_license/bit-web/src/app/admin-console/providers/providers-layout.component.html
+++ b/bitwarden_license/bit-web/src/app/admin-console/providers/providers-layout.component.html
@@ -31,6 +31,12 @@
       *ngIf="canAccessBilling$ | async"
     >
       <bit-nav-item [text]="'subscription' | i18n" route="billing/subscription"></bit-nav-item>
+      @if (managePaymentDetailsOutsideCheckout$ | async) {
+        <bit-nav-item
+          [text]="'paymentDetails' | i18n"
+          route="billing/payment-details"
+        ></bit-nav-item>
+      }
       <bit-nav-item [text]="'billingHistory' | i18n" route="billing/history"></bit-nav-item>
     </bit-nav-group>
     <bit-nav-item
diff --git a/bitwarden_license/bit-web/src/app/admin-console/providers/providers-layout.component.ts b/bitwarden_license/bit-web/src/app/admin-console/providers/providers-layout.component.ts
index 72d87136f55..d6f9af9805d 100644
--- a/bitwarden_license/bit-web/src/app/admin-console/providers/providers-layout.component.ts
+++ b/bitwarden_license/bit-web/src/app/admin-console/providers/providers-layout.component.ts
@@ -10,6 +10,8 @@ import { JslibModule } from "@bitwarden/angular/jslib.module";
 import { ProviderService } from "@bitwarden/common/admin-console/abstractions/provider.service";
 import { ProviderStatusType, ProviderType } from "@bitwarden/common/admin-console/enums";
 import { Provider } from "@bitwarden/common/admin-console/models/domain/provider";
+import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { Icon, IconModule } from "@bitwarden/components";
 import { BusinessUnitPortalLogo } from "@bitwarden/web-vault/app/admin-console/icons/business-unit-portal-logo.icon";
 import { ProviderPortalLogo } from "@bitwarden/web-vault/app/admin-console/icons/provider-portal-logo";
@@ -32,10 +34,12 @@ export class ProvidersLayoutComponent implements OnInit, OnDestroy {
   protected canAccessBilling$: Observable<boolean>;
 
   protected clientsTranslationKey$: Observable<string>;
+  protected managePaymentDetailsOutsideCheckout$: Observable<boolean>;
 
   constructor(
     private route: ActivatedRoute,
     private providerService: ProviderService,
+    private configService: ConfigService,
   ) {}
 
   ngOnInit() {
@@ -69,6 +73,10 @@ export class ProvidersLayoutComponent implements OnInit, OnDestroy {
         provider.providerType === ProviderType.BusinessUnit ? "businessUnits" : "clients",
       ),
     );
+
+    this.managePaymentDetailsOutsideCheckout$ = this.configService.getFeatureFlag$(
+      FeatureFlag.PM21881_ManagePaymentDetailsOutsideCheckout,
+    );
   }
 
   ngOnDestroy() {
diff --git a/bitwarden_license/bit-web/src/app/admin-console/providers/providers-routing.module.ts b/bitwarden_license/bit-web/src/app/admin-console/providers/providers-routing.module.ts
index 482d2c881c1..7a554275f08 100644
--- a/bitwarden_license/bit-web/src/app/admin-console/providers/providers-routing.module.ts
+++ b/bitwarden_license/bit-web/src/app/admin-console/providers/providers-routing.module.ts
@@ -13,6 +13,7 @@ import {
   hasConsolidatedBilling,
   ProviderBillingHistoryComponent,
 } from "../../billing/providers";
+import { ProviderPaymentDetailsComponent } from "../../billing/providers/payment-details/provider-payment-details.component";
 import { SetupBusinessUnitComponent } from "../../billing/providers/setup/setup-business-unit.component";
 
 import { ClientsComponent } from "./clients/clients.component";
@@ -142,6 +143,14 @@ const routes: Routes = [
                   titleId: "subscription",
                 },
               },
+              {
+                path: "payment-details",
+                component: ProviderPaymentDetailsComponent,
+                canActivate: [providerPermissionsGuard()],
+                data: {
+                  titleId: "paymentDetails",
+                },
+              },
               {
                 path: "history",
                 component: ProviderBillingHistoryComponent,
diff --git a/bitwarden_license/bit-web/src/app/billing/providers/payment-details/provider-payment-details.component.html b/bitwarden_license/bit-web/src/app/billing/providers/payment-details/provider-payment-details.component.html
new file mode 100644
index 00000000000..375faab8d34
--- /dev/null
+++ b/bitwarden_license/bit-web/src/app/billing/providers/payment-details/provider-payment-details.component.html
@@ -0,0 +1,33 @@
+<app-header></app-header>
+<bit-container>
+  @let view = view$ | async;
+  @if (!view) {
+    <ng-container>
+      <i
+        class="bwi bwi-spinner bwi-spin tw-text-muted"
+        title="{{ 'loading' | i18n }}"
+        aria-hidden="true"
+      ></i>
+      <span class="tw-sr-only">{{ "loading" | i18n }}</span>
+    </ng-container>
+  } @else {
+    <ng-container>
+      <app-display-payment-method
+        [owner]="view.provider"
+        [paymentMethod]="view.paymentMethod"
+        (updated)="setPaymentMethod($event)"
+      ></app-display-payment-method>
+
+      <app-display-billing-address
+        [owner]="view.provider"
+        [billingAddress]="view.billingAddress"
+        (updated)="setBillingAddress($event)"
+      ></app-display-billing-address>
+
+      <app-display-account-credit
+        [owner]="view.provider"
+        [credit]="view.credit"
+      ></app-display-account-credit>
+    </ng-container>
+  }
+</bit-container>
diff --git a/bitwarden_license/bit-web/src/app/billing/providers/payment-details/provider-payment-details.component.ts b/bitwarden_license/bit-web/src/app/billing/providers/payment-details/provider-payment-details.component.ts
new file mode 100644
index 00000000000..dbf948518a2
--- /dev/null
+++ b/bitwarden_license/bit-web/src/app/billing/providers/payment-details/provider-payment-details.component.ts
@@ -0,0 +1,133 @@
+import { Component } from "@angular/core";
+import { ActivatedRoute, Router } from "@angular/router";
+import {
+  BehaviorSubject,
+  EMPTY,
+  filter,
+  from,
+  map,
+  merge,
+  Observable,
+  shareReplay,
+  switchMap,
+  tap,
+} from "rxjs";
+import { catchError } from "rxjs/operators";
+
+import { ProviderService } from "@bitwarden/common/admin-console/abstractions/provider.service";
+import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
+import {
+  DisplayAccountCreditComponent,
+  DisplayBillingAddressComponent,
+  DisplayPaymentMethodComponent,
+} from "@bitwarden/web-vault/app/billing/payment/components";
+import {
+  BillingAddress,
+  MaskedPaymentMethod,
+} from "@bitwarden/web-vault/app/billing/payment/types";
+import { BillingClient } from "@bitwarden/web-vault/app/billing/services";
+import { BillableEntity, providerToBillableEntity } from "@bitwarden/web-vault/app/billing/types";
+import { HeaderModule } from "@bitwarden/web-vault/app/layouts/header/header.module";
+import { SharedModule } from "@bitwarden/web-vault/app/shared";
+
+class RedirectError {
+  constructor(
+    public path: string[],
+    public relativeTo: ActivatedRoute,
+  ) {}
+}
+
+type View = {
+  provider: BillableEntity;
+  paymentMethod: MaskedPaymentMethod | null;
+  billingAddress: BillingAddress | null;
+  credit: number | null;
+};
+
+@Component({
+  templateUrl: "./provider-payment-details.component.html",
+  standalone: true,
+  imports: [
+    DisplayBillingAddressComponent,
+    DisplayAccountCreditComponent,
+    DisplayPaymentMethodComponent,
+    HeaderModule,
+    SharedModule,
+  ],
+  providers: [BillingClient],
+})
+export class ProviderPaymentDetailsComponent {
+  private viewState$ = new BehaviorSubject<View | null>(null);
+
+  private load$: Observable<View> = this.activatedRoute.params.pipe(
+    switchMap(({ providerId }) => this.providerService.get$(providerId)),
+    switchMap((provider) =>
+      this.configService
+        .getFeatureFlag$(FeatureFlag.PM21881_ManagePaymentDetailsOutsideCheckout)
+        .pipe(
+          map((managePaymentDetailsOutsideCheckout) => {
+            if (!managePaymentDetailsOutsideCheckout) {
+              throw new RedirectError(["../subscription"], this.activatedRoute);
+            }
+            return provider;
+          }),
+        ),
+    ),
+    providerToBillableEntity,
+    switchMap(async (provider) => {
+      const [paymentMethod, billingAddress, credit] = await Promise.all([
+        this.billingClient.getPaymentMethod(provider),
+        this.billingClient.getBillingAddress(provider),
+        this.billingClient.getCredit(provider),
+      ]);
+
+      return {
+        provider,
+        paymentMethod,
+        billingAddress,
+        credit,
+      };
+    }),
+    shareReplay({ bufferSize: 1, refCount: false }),
+    catchError((error: unknown) => {
+      if (error instanceof RedirectError) {
+        return from(this.router.navigate(error.path, { relativeTo: error.relativeTo })).pipe(
+          switchMap(() => EMPTY),
+        );
+      }
+      throw error;
+    }),
+  );
+
+  view$: Observable<View> = merge(
+    this.load$.pipe(tap((view) => this.viewState$.next(view))),
+    this.viewState$.pipe(filter((view): view is View => view !== null)),
+  ).pipe(shareReplay({ bufferSize: 1, refCount: true }));
+
+  constructor(
+    private activatedRoute: ActivatedRoute,
+    private billingClient: BillingClient,
+    private configService: ConfigService,
+    private providerService: ProviderService,
+    private router: Router,
+  ) {}
+
+  setBillingAddress = (billingAddress: BillingAddress) => {
+    if (this.viewState$.value) {
+      this.viewState$.next({
+        ...this.viewState$.value,
+        billingAddress,
+      });
+    }
+  };
+
+  setPaymentMethod = (paymentMethod: MaskedPaymentMethod) => {
+    if (this.viewState$.value) {
+      this.viewState$.next({
+        ...this.viewState$.value,
+        paymentMethod,
+      });
+    }
+  };
+}
diff --git a/bitwarden_license/bit-web/src/app/billing/providers/subscription/provider-subscription.component.html b/bitwarden_license/bit-web/src/app/billing/providers/subscription/provider-subscription.component.html
index 7f2b205fc22..0205d2838d1 100644
--- a/bitwarden_license/bit-web/src/app/billing/providers/subscription/provider-subscription.component.html
+++ b/bitwarden_license/bit-web/src/app/billing/providers/subscription/provider-subscription.component.html
@@ -62,49 +62,51 @@
         </bit-table>
       </div>
     </ng-container>
-    <!-- Account Credit -->
-    <bit-section>
-      <h2 bitTypography="h2">
-        {{ "accountCredit" | i18n }}
-      </h2>
-      <p class="tw-text-lg tw-font-bold">{{ subscription.accountCredit | currency: "$" }}</p>
-      <p bitTypography="body1">{{ "creditAppliedDesc" | i18n }}</p>
-    </bit-section>
-    <!-- Payment Method -->
-    <bit-section>
-      <h2 bitTypography="h2">{{ "paymentMethod" | i18n }}</h2>
-      <p *ngIf="!subscription.paymentSource" bitTypography="body1">
-        {{ "noPaymentMethod" | i18n }}
-      </p>
-      <ng-container *ngIf="subscription.paymentSource">
-        <app-verify-bank-account
-          *ngIf="subscription.paymentSource.needsVerification"
-          [onSubmit]="verifyBankAccount"
-          (submitted)="load()"
-        >
-        </app-verify-bank-account>
-        <p>
-          <i class="bwi bwi-fw" [ngClass]="paymentSourceClasses"></i>
-          {{ subscription.paymentSource.description }}
-          <span *ngIf="subscription.paymentSource.needsVerification"
-            >- {{ "unverified" | i18n }}</span
-          >
+    @if (!managePaymentDetailsOutsideCheckout) {
+      <!-- Account Credit -->
+      <bit-section>
+        <h2 bitTypography="h2">
+          {{ "accountCredit" | i18n }}
+        </h2>
+        <p class="tw-text-lg tw-font-bold">{{ subscription.accountCredit | currency: "$" }}</p>
+        <p bitTypography="body1">{{ "creditAppliedDesc" | i18n }}</p>
+      </bit-section>
+      <!-- Payment Method -->
+      <bit-section>
+        <h2 bitTypography="h2">{{ "paymentMethod" | i18n }}</h2>
+        <p *ngIf="!subscription.paymentSource" bitTypography="body1">
+          {{ "noPaymentMethod" | i18n }}
         </p>
-      </ng-container>
-      <button type="button" bitButton buttonType="secondary" [bitAction]="updatePaymentMethod">
-        {{ updatePaymentSourceButtonText }}
-      </button>
-    </bit-section>
-    <!-- Tax Information -->
-    <bit-section>
-      <h2 bitTypography="h2" class="tw-mt-16">{{ "taxInformation" | i18n }}</h2>
-      <p>{{ "taxInformationDesc" | i18n }}</p>
-      <app-manage-tax-information
-        *ngIf="subscription.taxInformation"
-        [startWith]="TaxInformation.from(subscription.taxInformation)"
-        [onSubmit]="updateTaxInformation"
-        (taxInformationUpdated)="load()"
-      />
-    </bit-section>
+        <ng-container *ngIf="subscription.paymentSource">
+          <app-verify-bank-account
+            *ngIf="subscription.paymentSource.needsVerification"
+            [onSubmit]="verifyBankAccount"
+            (submitted)="load()"
+          >
+          </app-verify-bank-account>
+          <p>
+            <i class="bwi bwi-fw" [ngClass]="paymentSourceClasses"></i>
+            {{ subscription.paymentSource.description }}
+            <span *ngIf="subscription.paymentSource.needsVerification"
+              >- {{ "unverified" | i18n }}</span
+            >
+          </p>
+        </ng-container>
+        <button type="button" bitButton buttonType="secondary" [bitAction]="updatePaymentMethod">
+          {{ updatePaymentSourceButtonText }}
+        </button>
+      </bit-section>
+      <!-- Tax Information -->
+      <bit-section>
+        <h2 bitTypography="h2" class="tw-mt-16">{{ "taxInformation" | i18n }}</h2>
+        <p>{{ "taxInformationDesc" | i18n }}</p>
+        <app-manage-tax-information
+          *ngIf="subscription.taxInformation"
+          [startWith]="TaxInformation.from(subscription.taxInformation)"
+          [onSubmit]="updateTaxInformation"
+          (taxInformationUpdated)="load()"
+        />
+      </bit-section>
+    }
   </ng-container>
 </bit-container>
diff --git a/bitwarden_license/bit-web/src/app/billing/providers/subscription/provider-subscription.component.ts b/bitwarden_license/bit-web/src/app/billing/providers/subscription/provider-subscription.component.ts
index cff2d8e63fe..83a23760d80 100644
--- a/bitwarden_license/bit-web/src/app/billing/providers/subscription/provider-subscription.component.ts
+++ b/bitwarden_license/bit-web/src/app/billing/providers/subscription/provider-subscription.component.ts
@@ -13,6 +13,8 @@ import {
   ProviderPlanResponse,
   ProviderSubscriptionResponse,
 } from "@bitwarden/common/billing/models/response/provider-subscription-response";
+import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { DialogService, ToastService } from "@bitwarden/components";
 import { BillingNotificationService } from "@bitwarden/web-vault/app/billing/services/billing-notification.service";
@@ -34,6 +36,7 @@ export class ProviderSubscriptionComponent implements OnInit, OnDestroy {
   protected loading: boolean;
   private destroy$ = new Subject<void>();
   protected totalCost: number;
+  protected managePaymentDetailsOutsideCheckout: boolean;
 
   protected readonly TaxInformation = TaxInformation;
 
@@ -44,6 +47,7 @@ export class ProviderSubscriptionComponent implements OnInit, OnDestroy {
     private billingNotificationService: BillingNotificationService,
     private dialogService: DialogService,
     private toastService: ToastService,
+    private configService: ConfigService,
   ) {}
 
   async ngOnInit() {
@@ -51,6 +55,9 @@ export class ProviderSubscriptionComponent implements OnInit, OnDestroy {
       .pipe(
         concatMap(async (params) => {
           this.providerId = params.providerId;
+          this.managePaymentDetailsOutsideCheckout = await this.configService.getFeatureFlag(
+            FeatureFlag.PM21881_ManagePaymentDetailsOutsideCheckout,
+          );
           await this.load();
           this.firstLoaded = true;
         }),
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/overview/overview.component.ts b/bitwarden_license/bit-web/src/app/secrets-manager/overview/overview.component.ts
index 1fd0afd3458..ca17ea3bc94 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/overview/overview.component.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/overview/overview.component.ts
@@ -29,6 +29,8 @@ import { Organization } from "@bitwarden/common/admin-console/models/domain/orga
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { getUserId } from "@bitwarden/common/auth/services/account.service";
 import { OrganizationBillingServiceAbstraction } from "@bitwarden/common/billing/abstractions";
+import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
@@ -129,6 +131,7 @@ export class OverviewComponent implements OnInit, OnDestroy {
     private trialFlowService: TrialFlowService,
     private organizationBillingService: OrganizationBillingServiceAbstraction,
     private billingNotificationService: BillingNotificationService,
+    private configService: ConfigService,
   ) {}
 
   ngOnInit() {
@@ -250,12 +253,13 @@ export class OverviewComponent implements OnInit, OnDestroy {
   }
 
   async navigateToPaymentMethod() {
-    await this.router.navigate(
-      ["organizations", `${this.organizationId}`, "billing", "payment-method"],
-      {
-        state: { launchPaymentModalAutomatically: true },
-      },
+    const managePaymentDetailsOutsideCheckout = await this.configService.getFeatureFlag(
+      FeatureFlag.PM21881_ManagePaymentDetailsOutsideCheckout,
     );
+    const route = managePaymentDetailsOutsideCheckout ? "payment-details" : "payment-method";
+    await this.router.navigate(["organizations", `${this.organizationId}`, "billing", route], {
+      state: { launchPaymentModalAutomatically: true },
+    });
   }
 
   ngOnDestroy(): void {
diff --git a/libs/common/src/enums/feature-flag.enum.ts b/libs/common/src/enums/feature-flag.enum.ts
index 68228b63bea..8d9eebe6f9f 100644
--- a/libs/common/src/enums/feature-flag.enum.ts
+++ b/libs/common/src/enums/feature-flag.enum.ts
@@ -34,6 +34,7 @@ export enum FeatureFlag {
   PM19956_RequireProviderPaymentMethodDuringSetup = "pm-19956-require-provider-payment-method-during-setup",
   UseOrganizationWarningsService = "use-organization-warnings-service",
   AllowTrialLengthZero = "pm-20322-allow-trial-length-0",
+  PM21881_ManagePaymentDetailsOutsideCheckout = "pm-21881-manage-payment-details-outside-checkout",
 
   /* Data Insights and Reporting */
   EnableRiskInsightsNotifications = "enable-risk-insights-notifications",
@@ -116,6 +117,7 @@ export const DefaultFeatureFlagValue = {
   [FeatureFlag.PM19956_RequireProviderPaymentMethodDuringSetup]: FALSE,
   [FeatureFlag.UseOrganizationWarningsService]: FALSE,
   [FeatureFlag.AllowTrialLengthZero]: FALSE,
+  [FeatureFlag.PM21881_ManagePaymentDetailsOutsideCheckout]: FALSE,
 
   /* Key Management */
   [FeatureFlag.PrivateKeyRegeneration]: FALSE,

From 952b84a011c0013b5a064fb055cab99feb0c34a7 Mon Sep 17 00:00:00 2001
From: Nick Krantz <125900171+nick-livefront@users.noreply.github.com>
Date: Thu, 10 Jul 2025 09:46:18 -0500
Subject: [PATCH 096/239] add missing label/title for importing SSH Key
 (#15516)

---
 .../components/sshkey-section/sshkey-section.component.html      | 1 +
 1 file changed, 1 insertion(+)

diff --git a/libs/vault/src/cipher-form/components/sshkey-section/sshkey-section.component.html b/libs/vault/src/cipher-form/components/sshkey-section/sshkey-section.component.html
index b919ed69f0d..de528267db0 100644
--- a/libs/vault/src/cipher-form/components/sshkey-section/sshkey-section.component.html
+++ b/libs/vault/src/cipher-form/components/sshkey-section/sshkey-section.component.html
@@ -21,6 +21,7 @@
         bitSuffix
         data-testid="import-privateKey"
         *ngIf="showImport"
+        appA11yTitle="{{ 'importSshKeyFromClipboard' | i18n }}"
         (click)="importSshKeyFromClipboard()"
       ></button>
     </bit-form-field>

From b1b513b527eddae1d96abf2060aebd3a7e3651eb Mon Sep 17 00:00:00 2001
From: Nick Krantz <125900171+nick-livefront@users.noreply.github.com>
Date: Thu, 10 Jul 2025 10:09:42 -0500
Subject: [PATCH 097/239] when a colleciton is deleted, always refresh ciphers
 (#15549)

---
 .../organizations/collections/vault.component.ts             | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/apps/web/src/app/admin-console/organizations/collections/vault.component.ts b/apps/web/src/app/admin-console/organizations/collections/vault.component.ts
index 9c2293889e3..1956498322b 100644
--- a/apps/web/src/app/admin-console/organizations/collections/vault.component.ts
+++ b/apps/web/src/app/admin-console/organizations/collections/vault.component.ts
@@ -1138,10 +1138,11 @@ export class VaultComponent implements OnInit, OnDestroy {
         message: this.i18nService.t("deletedCollectionId", collection.name),
       });
 
+      // Clear the cipher cache to clear the deleted collection from the cipher state
+      await this.cipherService.clear();
+
       // Navigate away if we deleted the collection we were viewing
       if (this.selectedCollection?.node.id === collection.id) {
-        // Clear the cipher cache to clear the deleted collection from the cipher state
-        await this.cipherService.clear();
         void this.router.navigate([], {
           queryParams: { collectionId: this.selectedCollection.parent?.node.id ?? null },
           queryParamsHandling: "merge",

From 8135e840abe292106657d6164505f7c26c213d24 Mon Sep 17 00:00:00 2001
From: Leslie Tilton <23057410+Banrion@users.noreply.github.com>
Date: Thu, 10 Jul 2025 10:33:23 -0500
Subject: [PATCH 098/239] Remove nested bit-layout after bit-layout changes
 fixed bug that required it (#15559)

---
 .../risk-insights.component.html              | 260 +++++++++---------
 .../risk-insights.component.ts                |   2 -
 2 files changed, 129 insertions(+), 133 deletions(-)

diff --git a/bitwarden_license/bit-web/src/app/dirt/access-intelligence/risk-insights.component.html b/bitwarden_license/bit-web/src/app/dirt/access-intelligence/risk-insights.component.html
index 627db269097..89ea600f6e0 100644
--- a/bitwarden_license/bit-web/src/app/dirt/access-intelligence/risk-insights.component.html
+++ b/bitwarden_license/bit-web/src/app/dirt/access-intelligence/risk-insights.component.html
@@ -1,140 +1,138 @@
 <ng-container>
-  <bit-layout>
-    <h1 bitTypography="h1">{{ "riskInsights" | i18n }}</h1>
-    <div class="tw-text-main tw-max-w-4xl tw-mb-2">
-      {{ "reviewAtRiskPasswords" | i18n }}
-    </div>
-    <div
-      *ngIf="dataLastUpdated$ | async"
-      class="tw-bg-primary-100 tw-rounded-lg tw-w-full tw-px-8 tw-py-4 tw-my-4 tw-flex tw-items-center"
-    >
-      <i
-        class="bwi bwi-exclamation-triangle bwi-lg tw-text-[1.2rem] tw-text-muted"
-        aria-hidden="true"
-      ></i>
-      <span class="tw-mx-4">{{
-        "dataLastUpdated" | i18n: (dataLastUpdated$ | async | date: "MMMM d, y 'at' h:mm a")
-      }}</span>
-      <span class="tw-flex tw-justify-center tw-w-16">
-        <a
-          *ngIf="!(isRefreshing$ | async)"
-          bitButton
-          buttonType="unstyled"
-          class="tw-border-none !tw-font-normal tw-cursor-pointer !tw-py-0"
-          [bitAction]="refreshData.bind(this)"
-        >
-          {{ "refresh" | i18n }}
-        </a>
-        <span>
-          <i
-            *ngIf="isRefreshing$ | async"
-            class="bwi bwi-spinner bwi-spin tw-text-muted tw-text-[1.2rem]"
-            aria-hidden="true"
-          ></i>
-        </span>
+  <h1 bitTypography="h1">{{ "riskInsights" | i18n }}</h1>
+  <div class="tw-text-main tw-max-w-4xl tw-mb-2">
+    {{ "reviewAtRiskPasswords" | i18n }}
+  </div>
+  <div
+    *ngIf="dataLastUpdated$ | async"
+    class="tw-bg-primary-100 tw-rounded-lg tw-w-full tw-px-8 tw-py-4 tw-my-4 tw-flex tw-items-center"
+  >
+    <i
+      class="bwi bwi-exclamation-triangle bwi-lg tw-text-[1.2rem] tw-text-muted"
+      aria-hidden="true"
+    ></i>
+    <span class="tw-mx-4">{{
+      "dataLastUpdated" | i18n: (dataLastUpdated$ | async | date: "MMMM d, y 'at' h:mm a")
+    }}</span>
+    <span class="tw-flex tw-justify-center tw-w-16">
+      <a
+        *ngIf="!(isRefreshing$ | async)"
+        bitButton
+        buttonType="unstyled"
+        class="tw-border-none !tw-font-normal tw-cursor-pointer !tw-py-0"
+        [bitAction]="refreshData.bind(this)"
+      >
+        {{ "refresh" | i18n }}
+      </a>
+      <span>
+        <i
+          *ngIf="isRefreshing$ | async"
+          class="bwi bwi-spinner bwi-spin tw-text-muted tw-text-[1.2rem]"
+          aria-hidden="true"
+        ></i>
       </span>
-    </div>
-    <bit-tab-group [(selectedIndex)]="tabIndex" (selectedIndexChange)="onTabChange($event)">
-      <bit-tab label="{{ 'allApplicationsWithCount' | i18n: appsCount }}">
-        <tools-all-applications></tools-all-applications>
-      </bit-tab>
-      <bit-tab>
-        <ng-template bitTabLabel>
-          <i class="bwi bwi-star"></i>
-          {{ "criticalApplicationsWithCount" | i18n: (criticalApps$ | async)?.length ?? 0 }}
-        </ng-template>
-        <tools-critical-applications></tools-critical-applications>
-      </bit-tab>
-    </bit-tab-group>
+    </span>
+  </div>
+  <bit-tab-group [(selectedIndex)]="tabIndex" (selectedIndexChange)="onTabChange($event)">
+    <bit-tab label="{{ 'allApplicationsWithCount' | i18n: appsCount }}">
+      <tools-all-applications></tools-all-applications>
+    </bit-tab>
+    <bit-tab>
+      <ng-template bitTabLabel>
+        <i class="bwi bwi-star"></i>
+        {{ "criticalApplicationsWithCount" | i18n: (criticalApps$ | async)?.length ?? 0 }}
+      </ng-template>
+      <tools-critical-applications></tools-critical-applications>
+    </bit-tab>
+  </bit-tab-group>
 
-    <bit-drawer
-      style="width: 30%"
-      [(open)]="dataService.openDrawer"
-      (openChange)="dataService.closeDrawer()"
-    >
-      <ng-container *ngIf="dataService.isActiveDrawerType(drawerTypes.OrgAtRiskMembers)">
-        <bit-drawer-header
-          title="{{ 'atRiskMembersWithCount' | i18n: dataService.atRiskMemberDetails.length }}"
-        >
-        </bit-drawer-header>
-        <bit-drawer-body>
-          <span bitTypography="body1" class="tw-text-muted tw-text-sm">{{
-            (dataService.atRiskMemberDetails.length > 0
-              ? "atRiskMembersDescription"
-              : "atRiskMembersDescriptionNone"
-            ) | i18n
-          }}</span>
-          <ng-container *ngIf="dataService.atRiskMemberDetails.length > 0">
-            <div class="tw-flex tw-justify-between tw-mt-2 tw-text-muted">
-              <div bitTypography="body2" class="tw-text-sm tw-font-bold">{{ "email" | i18n }}</div>
-              <div bitTypography="body2" class="tw-text-sm tw-font-bold">
-                {{ "atRiskPasswords" | i18n }}
-              </div>
+  <bit-drawer
+    style="width: 30%"
+    [(open)]="dataService.openDrawer"
+    (openChange)="dataService.closeDrawer()"
+  >
+    <ng-container *ngIf="dataService.isActiveDrawerType(drawerTypes.OrgAtRiskMembers)">
+      <bit-drawer-header
+        title="{{ 'atRiskMembersWithCount' | i18n: dataService.atRiskMemberDetails.length }}"
+      >
+      </bit-drawer-header>
+      <bit-drawer-body>
+        <span bitTypography="body1" class="tw-text-muted tw-text-sm">{{
+          (dataService.atRiskMemberDetails.length > 0
+            ? "atRiskMembersDescription"
+            : "atRiskMembersDescriptionNone"
+          ) | i18n
+        }}</span>
+        <ng-container *ngIf="dataService.atRiskMemberDetails.length > 0">
+          <div class="tw-flex tw-justify-between tw-mt-2 tw-text-muted">
+            <div bitTypography="body2" class="tw-text-sm tw-font-bold">{{ "email" | i18n }}</div>
+            <div bitTypography="body2" class="tw-text-sm tw-font-bold">
+              {{ "atRiskPasswords" | i18n }}
             </div>
-            <ng-container *ngFor="let member of dataService.atRiskMemberDetails">
-              <div class="tw-flex tw-justify-between tw-mt-2">
-                <div>{{ member.email }}</div>
-                <div>{{ member.atRiskPasswordCount }}</div>
-              </div>
-            </ng-container>
-          </ng-container>
-        </bit-drawer-body>
-      </ng-container>
-
-      <ng-container *ngIf="dataService.isActiveDrawerType(drawerTypes.AppAtRiskMembers)">
-        <bit-drawer-header title="{{ dataService.appAtRiskMembers.applicationName }}">
-        </bit-drawer-header>
-        <bit-drawer-body>
-          <div bitTypography="body1" class="tw-mb-2">
-            {{ "atRiskMembersWithCount" | i18n: dataService.appAtRiskMembers.members.length }}
           </div>
-          <div bitTypography="body1" class="tw-text-muted tw-text-sm tw-mb-2">
-            {{
-              (dataService.appAtRiskMembers.members.length > 0
-                ? "atRiskMembersDescriptionWithApp"
-                : "atRiskMembersDescriptionWithAppNone"
-              ) | i18n: dataService.appAtRiskMembers.applicationName
-            }}
-          </div>
-          <div class="tw-mt-1">
-            <ng-container *ngFor="let member of dataService.appAtRiskMembers.members">
+          <ng-container *ngFor="let member of dataService.atRiskMemberDetails">
+            <div class="tw-flex tw-justify-between tw-mt-2">
               <div>{{ member.email }}</div>
-            </ng-container>
-          </div>
-        </bit-drawer-body>
-      </ng-container>
-
-      <ng-container *ngIf="dataService.isActiveDrawerType(drawerTypes.OrgAtRiskApps)">
-        <bit-drawer-header
-          title="{{ 'atRiskApplicationsWithCount' | i18n: dataService.atRiskAppDetails.length }}"
-        >
-        </bit-drawer-header>
-
-        <bit-drawer-body>
-          <span bitTypography="body2" class="tw-text-muted tw-text-sm">{{
-            (dataService.atRiskAppDetails.length > 0
-              ? "atRiskApplicationsDescription"
-              : "atRiskApplicationsDescriptionNone"
-            ) | i18n
-          }}</span>
-          <ng-container *ngIf="dataService.atRiskAppDetails.length > 0">
-            <div class="tw-flex tw-justify-between tw-mt-2 tw-text-muted">
-              <div bitTypography="body2" class="tw-text-sm tw-font-bold">
-                {{ "application" | i18n }}
-              </div>
-              <div bitTypography="body2" class="tw-text-sm tw-font-bold">
-                {{ "atRiskPasswords" | i18n }}
-              </div>
+              <div>{{ member.atRiskPasswordCount }}</div>
             </div>
-            <ng-container *ngFor="let app of dataService.atRiskAppDetails">
-              <div class="tw-flex tw-justify-between tw-mt-2">
-                <div>{{ app.applicationName }}</div>
-                <div>{{ app.atRiskPasswordCount }}</div>
-              </div>
-            </ng-container>
           </ng-container>
-        </bit-drawer-body>
-      </ng-container>
-    </bit-drawer>
-  </bit-layout>
+        </ng-container>
+      </bit-drawer-body>
+    </ng-container>
+
+    <ng-container *ngIf="dataService.isActiveDrawerType(drawerTypes.AppAtRiskMembers)">
+      <bit-drawer-header title="{{ dataService.appAtRiskMembers.applicationName }}">
+      </bit-drawer-header>
+      <bit-drawer-body>
+        <div bitTypography="body1" class="tw-mb-2">
+          {{ "atRiskMembersWithCount" | i18n: dataService.appAtRiskMembers.members.length }}
+        </div>
+        <div bitTypography="body1" class="tw-text-muted tw-text-sm tw-mb-2">
+          {{
+            (dataService.appAtRiskMembers.members.length > 0
+              ? "atRiskMembersDescriptionWithApp"
+              : "atRiskMembersDescriptionWithAppNone"
+            ) | i18n: dataService.appAtRiskMembers.applicationName
+          }}
+        </div>
+        <div class="tw-mt-1">
+          <ng-container *ngFor="let member of dataService.appAtRiskMembers.members">
+            <div>{{ member.email }}</div>
+          </ng-container>
+        </div>
+      </bit-drawer-body>
+    </ng-container>
+
+    <ng-container *ngIf="dataService.isActiveDrawerType(drawerTypes.OrgAtRiskApps)">
+      <bit-drawer-header
+        title="{{ 'atRiskApplicationsWithCount' | i18n: dataService.atRiskAppDetails.length }}"
+      >
+      </bit-drawer-header>
+
+      <bit-drawer-body>
+        <span bitTypography="body2" class="tw-text-muted tw-text-sm">{{
+          (dataService.atRiskAppDetails.length > 0
+            ? "atRiskApplicationsDescription"
+            : "atRiskApplicationsDescriptionNone"
+          ) | i18n
+        }}</span>
+        <ng-container *ngIf="dataService.atRiskAppDetails.length > 0">
+          <div class="tw-flex tw-justify-between tw-mt-2 tw-text-muted">
+            <div bitTypography="body2" class="tw-text-sm tw-font-bold">
+              {{ "application" | i18n }}
+            </div>
+            <div bitTypography="body2" class="tw-text-sm tw-font-bold">
+              {{ "atRiskPasswords" | i18n }}
+            </div>
+          </div>
+          <ng-container *ngFor="let app of dataService.atRiskAppDetails">
+            <div class="tw-flex tw-justify-between tw-mt-2">
+              <div>{{ app.applicationName }}</div>
+              <div>{{ app.atRiskPasswordCount }}</div>
+            </div>
+          </ng-container>
+        </ng-container>
+      </bit-drawer-body>
+    </ng-container>
+  </bit-drawer>
 </ng-container>
diff --git a/bitwarden_license/bit-web/src/app/dirt/access-intelligence/risk-insights.component.ts b/bitwarden_license/bit-web/src/app/dirt/access-intelligence/risk-insights.component.ts
index b6da0f79255..5f94db0ee3c 100644
--- a/bitwarden_license/bit-web/src/app/dirt/access-intelligence/risk-insights.component.ts
+++ b/bitwarden_license/bit-web/src/app/dirt/access-intelligence/risk-insights.component.ts
@@ -23,7 +23,6 @@ import {
   DrawerBodyComponent,
   DrawerComponent,
   DrawerHeaderComponent,
-  LayoutComponent,
   TabsModule,
 } from "@bitwarden/components";
 import { HeaderModule } from "@bitwarden/web-vault/app/layouts/header/header.module";
@@ -53,7 +52,6 @@ export enum RiskInsightsTabType {
     DrawerComponent,
     DrawerBodyComponent,
     DrawerHeaderComponent,
-    LayoutComponent,
   ],
 })
 export class RiskInsightsComponent implements OnInit {

From 318040233c8c17f0e909bca5d777c00c628b10c8 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Daniel=20Garc=C3=ADa?=
 <dani-garcia@users.noreply.github.com>
Date: Thu, 10 Jul 2025 19:17:13 +0200
Subject: [PATCH 099/239] [PM-23159] Update arboard and enable exclude from
 history on Linux (#15393)

---
 apps/desktop/desktop_native/Cargo.lock            |  4 ++--
 apps/desktop/desktop_native/Cargo.toml            | 14 +++++++-------
 apps/desktop/desktop_native/core/src/clipboard.rs |  8 ++++++--
 3 files changed, 15 insertions(+), 11 deletions(-)

diff --git a/apps/desktop/desktop_native/Cargo.lock b/apps/desktop/desktop_native/Cargo.lock
index d02ffb9b026..9d0fe633013 100644
--- a/apps/desktop/desktop_native/Cargo.lock
+++ b/apps/desktop/desktop_native/Cargo.lock
@@ -120,9 +120,9 @@ checksum = "c1fd03a028ef38ba2276dce7e33fcd6369c158a1bca17946c4b1b701891c1ff7"
 
 [[package]]
 name = "arboard"
-version = "3.5.0"
+version = "3.6.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "c1df21f715862ede32a0c525ce2ca4d52626bb0007f8c18b87a384503ac33e70"
+checksum = "55f533f8e0af236ffe5eb979b99381df3258853f00ba2e44b6e1955292c75227"
 dependencies = [
  "clipboard-win",
  "log",
diff --git a/apps/desktop/desktop_native/Cargo.toml b/apps/desktop/desktop_native/Cargo.toml
index 1aa6f784ec7..a778c9ed359 100644
--- a/apps/desktop/desktop_native/Cargo.toml
+++ b/apps/desktop/desktop_native/Cargo.toml
@@ -11,23 +11,23 @@ publish = false
 [workspace.dependencies]
 aes = "=0.8.4"
 anyhow = "=1.0.94"
-arboard = { version = "=3.5.0", default-features = false }
-argon2 = "=0.5.3" 
+arboard = { version = "=3.6.0", default-features = false }
+argon2 = "=0.5.3"
 ashpd = "=0.11.0"
 base64 = "=0.22.1"
 bindgen = "=0.72.0"
 bitwarden-russh = { git = "https://github.com/bitwarden/bitwarden-russh.git", rev = "a641316227227f8777fdf56ac9fa2d6b5f7fe662" }
 byteorder = "=1.5.0"
 bytes = "=1.10.1"
-cbc = "=0.1.2" 
+cbc = "=0.1.2"
 core-foundation = "=0.10.0"
 dirs = "=6.0.0"
-ed25519 =  "=2.2.3" 
+ed25519 =  "=2.2.3"
 embed_plist = "=1.2.2"
 futures = "=0.3.31"
 hex = "=0.4.3"
 homedir = "=0.3.4"
-interprocess = "=2.2.1" 
+interprocess = "=2.2.1"
 keytar = "=0.1.6"
 libc = "=0.2.172"
 log = "=0.4.25"
@@ -37,7 +37,7 @@ napi-derive = "=2.16.13"
 oo7 = "=0.4.3"
 oslog = "=0.2.0"
 pin-project = "=1.1.10"
-pkcs8 =  "=0.10.2" 
+pkcs8 =  "=0.10.2"
 rand = "=0.9.1"
 rsa = "=0.9.6"
 russh-cryptovec = "=0.7.3"
@@ -50,7 +50,7 @@ sha2 = "=0.10.8"
 simplelog = "=0.12.2"
 ssh-encoding = "=0.2.0"
 ssh-key = {version = "=0.6.7", default-features = false }
-sysinfo = "=0.35.0" 
+sysinfo = "=0.35.0"
 thiserror = "=2.0.12"
 tokio = "=1.45.0"
 tokio-stream = "=0.1.15"
diff --git a/apps/desktop/desktop_native/core/src/clipboard.rs b/apps/desktop/desktop_native/core/src/clipboard.rs
index bb3e3a43149..32163ca3d1a 100644
--- a/apps/desktop/desktop_native/core/src/clipboard.rs
+++ b/apps/desktop/desktop_native/core/src/clipboard.rs
@@ -30,10 +30,14 @@ fn clipboard_set(set: Set, password: bool) -> Set {
 
 // Wait for clipboard to be available on linux
 #[cfg(target_os = "linux")]
-fn clipboard_set(set: Set, _password: bool) -> Set {
+fn clipboard_set(set: Set, password: bool) -> Set {
     use arboard::SetExtLinux;
 
-    set.wait()
+    if password {
+        set.exclude_from_history().wait()
+    } else {
+        set.wait()
+    }
 }
 
 #[cfg(target_os = "macos")]

From c5be837b51c556c2e9614d188a27c76682edb172 Mon Sep 17 00:00:00 2001
From: Todd Martin <106564991+trmartin4@users.noreply.github.com>
Date: Thu, 10 Jul 2025 15:00:49 -0400
Subject: [PATCH 100/239] chore(feature-flag) [PM-22604] Remove 2FA persistence
 feature flag

* Removed flag.

* Fixed tests to no longer reference flag.

* Fixed test.

* Removed duplicate test class.

* Moved files into folders for yubikey and authenticator

* Removed TwoFactorAuthEmailComponentService since it is no longer needed

* Removed export

* Fixed export
---
 ...actor-auth-email-component.service.spec.ts | 112 ------------
 ...two-factor-auth-email-component.service.ts |  49 ------
 .../src/popup/services/services.module.ts     |   7 -
 .../src/services/jslib-services.module.ts     |   7 -
 .../two-factor-auth/child-components/index.ts |   1 -
 ...o-factor-auth-authenticator.component.html |   0
 ...two-factor-auth-authenticator.component.ts |   0
 ...two-factor-auth-email-component.service.ts |   6 -
 .../two-factor-auth-email/index.ts            |   2 -
 ...auth-component-email-cache.service.spec.ts | 165 ------------------
 ...auth-email-component-cache.service.spec.ts |  78 +--------
 ...ctor-auth-email-component-cache.service.ts |  27 ---
 ...two-factor-auth-email-component.service.ts |  10 --
 .../two-factor-auth-email.component.ts        |   5 -
 .../two-factor-auth-yubikey.component.html    |   0
 .../two-factor-auth-yubikey.component.ts      |   0
 ...actor-auth-component-cache.service.spec.ts |  84 +--------
 ...two-factor-auth-component-cache.service.ts |  27 ---
 .../two-factor-auth.component.spec.ts         |   1 -
 .../two-factor-auth.component.ts              |   7 +-
 libs/common/src/enums/feature-flag.enum.ts    |   2 -
 21 files changed, 9 insertions(+), 581 deletions(-)
 delete mode 100644 apps/browser/src/auth/services/extension-two-factor-auth-email-component.service.spec.ts
 delete mode 100644 apps/browser/src/auth/services/extension-two-factor-auth-email-component.service.ts
 rename libs/auth/src/angular/two-factor-auth/child-components/{ => two-factor-auth-authenticator}/two-factor-auth-authenticator.component.html (100%)
 rename libs/auth/src/angular/two-factor-auth/child-components/{ => two-factor-auth-authenticator}/two-factor-auth-authenticator.component.ts (100%)
 delete mode 100644 libs/auth/src/angular/two-factor-auth/child-components/two-factor-auth-email/default-two-factor-auth-email-component.service.ts
 delete mode 100644 libs/auth/src/angular/two-factor-auth/child-components/two-factor-auth-email/index.ts
 delete mode 100644 libs/auth/src/angular/two-factor-auth/child-components/two-factor-auth-email/two-factor-auth-component-email-cache.service.spec.ts
 delete mode 100644 libs/auth/src/angular/two-factor-auth/child-components/two-factor-auth-email/two-factor-auth-email-component.service.ts
 rename libs/auth/src/angular/two-factor-auth/child-components/{ => two-factor-auth-yubikey}/two-factor-auth-yubikey.component.html (100%)
 rename libs/auth/src/angular/two-factor-auth/child-components/{ => two-factor-auth-yubikey}/two-factor-auth-yubikey.component.ts (100%)

diff --git a/apps/browser/src/auth/services/extension-two-factor-auth-email-component.service.spec.ts b/apps/browser/src/auth/services/extension-two-factor-auth-email-component.service.spec.ts
deleted file mode 100644
index 432d00047a2..00000000000
--- a/apps/browser/src/auth/services/extension-two-factor-auth-email-component.service.spec.ts
+++ /dev/null
@@ -1,112 +0,0 @@
-import { MockProxy, mock } from "jest-mock-extended";
-
-import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
-import { DialogService } from "@bitwarden/components";
-
-// Must mock modules before importing
-jest.mock("../popup/utils/auth-popout-window", () => {
-  const originalModule = jest.requireActual("../popup/utils/auth-popout-window");
-
-  return {
-    ...originalModule, // avoid losing the original module's exports
-    openTwoFactorAuthEmailPopout: jest.fn(),
-  };
-});
-
-jest.mock("../../platform/browser/browser-popup-utils", () => ({
-  inPopup: jest.fn(),
-}));
-
-// FIXME (PM-22628): Popup imports are forbidden in background
-// eslint-disable-next-line no-restricted-imports
-import { openTwoFactorAuthEmailPopout } from "../../auth/popup/utils/auth-popout-window";
-import BrowserPopupUtils from "../../platform/browser/browser-popup-utils";
-
-import { ExtensionTwoFactorAuthEmailComponentService } from "./extension-two-factor-auth-email-component.service";
-
-describe("ExtensionTwoFactorAuthEmailComponentService", () => {
-  let extensionTwoFactorAuthEmailComponentService: ExtensionTwoFactorAuthEmailComponentService;
-
-  let dialogService: MockProxy<DialogService>;
-  let window: MockProxy<Window>;
-  let configService: MockProxy<ConfigService>;
-
-  beforeEach(() => {
-    jest.clearAllMocks();
-
-    dialogService = mock<DialogService>();
-    window = mock<Window>();
-    configService = mock<ConfigService>();
-
-    extensionTwoFactorAuthEmailComponentService = new ExtensionTwoFactorAuthEmailComponentService(
-      dialogService,
-      window,
-      configService,
-    );
-  });
-
-  describe("openPopoutIfApprovedForEmail2fa", () => {
-    it("should open a popout if the user confirms the warning to popout the extension when in the popup", async () => {
-      // Arrange
-      configService.getFeatureFlag.mockResolvedValue(false);
-      dialogService.openSimpleDialog.mockResolvedValue(true);
-
-      jest.spyOn(BrowserPopupUtils, "inPopup").mockReturnValue(true);
-
-      // Act
-      await extensionTwoFactorAuthEmailComponentService.openPopoutIfApprovedForEmail2fa();
-
-      // Assert
-      expect(dialogService.openSimpleDialog).toHaveBeenCalledWith({
-        title: { key: "warning" },
-        content: { key: "popup2faCloseMessage" },
-        type: "warning",
-      });
-
-      expect(openTwoFactorAuthEmailPopout).toHaveBeenCalled();
-    });
-
-    it("should not open a popout if the user cancels the warning to popout the extension when in the popup", async () => {
-      // Arrange
-      configService.getFeatureFlag.mockResolvedValue(false);
-      dialogService.openSimpleDialog.mockResolvedValue(false);
-
-      jest.spyOn(BrowserPopupUtils, "inPopup").mockReturnValue(true);
-
-      // Act
-      await extensionTwoFactorAuthEmailComponentService.openPopoutIfApprovedForEmail2fa();
-
-      // Assert
-      expect(dialogService.openSimpleDialog).toHaveBeenCalledWith({
-        title: { key: "warning" },
-        content: { key: "popup2faCloseMessage" },
-        type: "warning",
-      });
-
-      expect(openTwoFactorAuthEmailPopout).not.toHaveBeenCalled();
-    });
-
-    it("should not open a popout if not in the popup", async () => {
-      // Arrange
-      configService.getFeatureFlag.mockResolvedValue(false);
-      jest.spyOn(BrowserPopupUtils, "inPopup").mockReturnValue(false);
-
-      // Act
-      await extensionTwoFactorAuthEmailComponentService.openPopoutIfApprovedForEmail2fa();
-
-      // Assert
-      expect(dialogService.openSimpleDialog).not.toHaveBeenCalled();
-      expect(openTwoFactorAuthEmailPopout).not.toHaveBeenCalled();
-    });
-
-    it("does not prompt or open a popout if the feature flag is enabled", async () => {
-      configService.getFeatureFlag.mockResolvedValue(true);
-      jest.spyOn(BrowserPopupUtils, "inPopup").mockReturnValue(true);
-
-      await extensionTwoFactorAuthEmailComponentService.openPopoutIfApprovedForEmail2fa();
-
-      expect(dialogService.openSimpleDialog).not.toHaveBeenCalled();
-      expect(openTwoFactorAuthEmailPopout).not.toHaveBeenCalled();
-    });
-  });
-});
diff --git a/apps/browser/src/auth/services/extension-two-factor-auth-email-component.service.ts b/apps/browser/src/auth/services/extension-two-factor-auth-email-component.service.ts
deleted file mode 100644
index e9cb53f935e..00000000000
--- a/apps/browser/src/auth/services/extension-two-factor-auth-email-component.service.ts
+++ /dev/null
@@ -1,49 +0,0 @@
-import {
-  DefaultTwoFactorAuthEmailComponentService,
-  TwoFactorAuthEmailComponentService,
-} from "@bitwarden/auth/angular";
-import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
-import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
-import { DialogService } from "@bitwarden/components";
-
-// FIXME (PM-22628): Popup imports are forbidden in background
-// eslint-disable-next-line no-restricted-imports
-import { openTwoFactorAuthEmailPopout } from "../../auth/popup/utils/auth-popout-window";
-import BrowserPopupUtils from "../../platform/browser/browser-popup-utils";
-
-// TODO: popup state persistence should eventually remove the need for this service
-export class ExtensionTwoFactorAuthEmailComponentService
-  extends DefaultTwoFactorAuthEmailComponentService
-  implements TwoFactorAuthEmailComponentService
-{
-  constructor(
-    private dialogService: DialogService,
-    private window: Window,
-    private configService: ConfigService,
-  ) {
-    super();
-  }
-
-  async openPopoutIfApprovedForEmail2fa(): Promise<void> {
-    const isTwoFactorFormPersistenceEnabled = await this.configService.getFeatureFlag(
-      FeatureFlag.PM9115_TwoFactorExtensionDataPersistence,
-    );
-
-    if (isTwoFactorFormPersistenceEnabled) {
-      // If the feature flag is enabled, we don't need to prompt the user to open the popout
-      return;
-    }
-
-    if (BrowserPopupUtils.inPopup(this.window)) {
-      const confirmed = await this.dialogService.openSimpleDialog({
-        title: { key: "warning" },
-        content: { key: "popup2faCloseMessage" },
-        type: "warning",
-      });
-      if (confirmed) {
-        await openTwoFactorAuthEmailPopout();
-        this.window.close();
-      }
-    }
-  }
-}
diff --git a/apps/browser/src/popup/services/services.module.ts b/apps/browser/src/popup/services/services.module.ts
index d70418137f8..ca8a76f7bcb 100644
--- a/apps/browser/src/popup/services/services.module.ts
+++ b/apps/browser/src/popup/services/services.module.ts
@@ -24,7 +24,6 @@ import { JslibServicesModule } from "@bitwarden/angular/services/jslib-services.
 import {
   LoginComponentService,
   TwoFactorAuthComponentService,
-  TwoFactorAuthEmailComponentService,
   TwoFactorAuthDuoComponentService,
   TwoFactorAuthWebAuthnComponentService,
   SsoComponentService,
@@ -147,7 +146,6 @@ import { ExtensionSsoComponentService } from "../../auth/popup/login/extension-s
 import { ExtensionLogoutService } from "../../auth/popup/logout/extension-logout.service";
 import { ExtensionTwoFactorAuthComponentService } from "../../auth/services/extension-two-factor-auth-component.service";
 import { ExtensionTwoFactorAuthDuoComponentService } from "../../auth/services/extension-two-factor-auth-duo-component.service";
-import { ExtensionTwoFactorAuthEmailComponentService } from "../../auth/services/extension-two-factor-auth-email-component.service";
 import { ExtensionTwoFactorAuthWebAuthnComponentService } from "../../auth/services/extension-two-factor-auth-webauthn-component.service";
 import { AutofillService as AutofillServiceAbstraction } from "../../autofill/services/abstractions/autofill.service";
 import AutofillService from "../../autofill/services/autofill.service";
@@ -560,11 +558,6 @@ const safeProviders: SafeProvider[] = [
     useClass: ExtensionTwoFactorAuthComponentService,
     deps: [WINDOW],
   }),
-  safeProvider({
-    provide: TwoFactorAuthEmailComponentService,
-    useClass: ExtensionTwoFactorAuthEmailComponentService,
-    deps: [DialogService, WINDOW, ConfigService],
-  }),
   safeProvider({
     provide: TwoFactorAuthWebAuthnComponentService,
     useClass: ExtensionTwoFactorAuthWebAuthnComponentService,
diff --git a/libs/angular/src/services/jslib-services.module.ts b/libs/angular/src/services/jslib-services.module.ts
index d51d5e650c5..c3f33f2a796 100644
--- a/libs/angular/src/services/jslib-services.module.ts
+++ b/libs/angular/src/services/jslib-services.module.ts
@@ -24,14 +24,12 @@ import {
   DefaultRegistrationFinishService,
   DefaultSetPasswordJitService,
   DefaultTwoFactorAuthComponentService,
-  DefaultTwoFactorAuthEmailComponentService,
   DefaultTwoFactorAuthWebAuthnComponentService,
   LoginComponentService,
   LoginDecryptionOptionsService,
   RegistrationFinishService as RegistrationFinishServiceAbstraction,
   SetPasswordJitService,
   TwoFactorAuthComponentService,
-  TwoFactorAuthEmailComponentService,
   TwoFactorAuthWebAuthnComponentService,
 } from "@bitwarden/auth/angular";
 // This import has been flagged as unallowed for this class. It may be involved in a circular dependency loop.
@@ -1471,11 +1469,6 @@ const safeProviders: SafeProvider[] = [
     useClass: DefaultTwoFactorAuthWebAuthnComponentService,
     deps: [],
   }),
-  safeProvider({
-    provide: TwoFactorAuthEmailComponentService,
-    useClass: DefaultTwoFactorAuthEmailComponentService,
-    deps: [],
-  }),
   safeProvider({
     provide: ViewCacheService,
     useExisting: NoopViewCacheService,
diff --git a/libs/auth/src/angular/two-factor-auth/child-components/index.ts b/libs/auth/src/angular/two-factor-auth/child-components/index.ts
index 429da3f14b3..d48cb8a6921 100644
--- a/libs/auth/src/angular/two-factor-auth/child-components/index.ts
+++ b/libs/auth/src/angular/two-factor-auth/child-components/index.ts
@@ -1,3 +1,2 @@
-export * from "./two-factor-auth-email";
 export * from "./two-factor-auth-duo";
 export * from "./two-factor-auth-webauthn";
diff --git a/libs/auth/src/angular/two-factor-auth/child-components/two-factor-auth-authenticator.component.html b/libs/auth/src/angular/two-factor-auth/child-components/two-factor-auth-authenticator/two-factor-auth-authenticator.component.html
similarity index 100%
rename from libs/auth/src/angular/two-factor-auth/child-components/two-factor-auth-authenticator.component.html
rename to libs/auth/src/angular/two-factor-auth/child-components/two-factor-auth-authenticator/two-factor-auth-authenticator.component.html
diff --git a/libs/auth/src/angular/two-factor-auth/child-components/two-factor-auth-authenticator.component.ts b/libs/auth/src/angular/two-factor-auth/child-components/two-factor-auth-authenticator/two-factor-auth-authenticator.component.ts
similarity index 100%
rename from libs/auth/src/angular/two-factor-auth/child-components/two-factor-auth-authenticator.component.ts
rename to libs/auth/src/angular/two-factor-auth/child-components/two-factor-auth-authenticator/two-factor-auth-authenticator.component.ts
diff --git a/libs/auth/src/angular/two-factor-auth/child-components/two-factor-auth-email/default-two-factor-auth-email-component.service.ts b/libs/auth/src/angular/two-factor-auth/child-components/two-factor-auth-email/default-two-factor-auth-email-component.service.ts
deleted file mode 100644
index caae13acc38..00000000000
--- a/libs/auth/src/angular/two-factor-auth/child-components/two-factor-auth-email/default-two-factor-auth-email-component.service.ts
+++ /dev/null
@@ -1,6 +0,0 @@
-import { TwoFactorAuthEmailComponentService } from "./two-factor-auth-email-component.service";
-
-export class DefaultTwoFactorAuthEmailComponentService
-  implements TwoFactorAuthEmailComponentService {
-  // no default implementation
-}
diff --git a/libs/auth/src/angular/two-factor-auth/child-components/two-factor-auth-email/index.ts b/libs/auth/src/angular/two-factor-auth/child-components/two-factor-auth-email/index.ts
deleted file mode 100644
index 91f11b0b7dd..00000000000
--- a/libs/auth/src/angular/two-factor-auth/child-components/two-factor-auth-email/index.ts
+++ /dev/null
@@ -1,2 +0,0 @@
-export * from "./default-two-factor-auth-email-component.service";
-export * from "./two-factor-auth-email-component.service";
diff --git a/libs/auth/src/angular/two-factor-auth/child-components/two-factor-auth-email/two-factor-auth-component-email-cache.service.spec.ts b/libs/auth/src/angular/two-factor-auth/child-components/two-factor-auth-email/two-factor-auth-component-email-cache.service.spec.ts
deleted file mode 100644
index d2d86710b72..00000000000
--- a/libs/auth/src/angular/two-factor-auth/child-components/two-factor-auth-email/two-factor-auth-component-email-cache.service.spec.ts
+++ /dev/null
@@ -1,165 +0,0 @@
-import { TestBed } from "@angular/core/testing";
-import { mock, MockProxy } from "jest-mock-extended";
-import { BehaviorSubject } from "rxjs";
-
-import { ViewCacheService } from "@bitwarden/angular/platform/view-cache";
-import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
-import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
-
-import {
-  TwoFactorAuthEmailComponentCache,
-  TwoFactorAuthEmailComponentCacheService,
-} from "./two-factor-auth-email-component-cache.service";
-
-describe("TwoFactorAuthEmailCache", () => {
-  describe("fromJSON", () => {
-    it("returns null when input is null", () => {
-      const result = TwoFactorAuthEmailComponentCache.fromJSON(null as any);
-      expect(result).toBeNull();
-    });
-
-    it("creates a TwoFactorAuthEmailCache instance from valid JSON", () => {
-      const jsonData = { emailSent: true };
-      const result = TwoFactorAuthEmailComponentCache.fromJSON(jsonData);
-
-      expect(result).not.toBeNull();
-      expect(result).toBeInstanceOf(TwoFactorAuthEmailComponentCache);
-      expect(result?.emailSent).toBe(true);
-    });
-  });
-});
-
-describe("TwoFactorAuthEmailComponentCacheService", () => {
-  let service: TwoFactorAuthEmailComponentCacheService;
-  let mockViewCacheService: MockProxy<ViewCacheService>;
-  let mockConfigService: MockProxy<ConfigService>;
-  let cacheData: BehaviorSubject<TwoFactorAuthEmailComponentCache | null>;
-  let mockSignal: any;
-
-  beforeEach(() => {
-    mockViewCacheService = mock<ViewCacheService>();
-    mockConfigService = mock<ConfigService>();
-    cacheData = new BehaviorSubject<TwoFactorAuthEmailComponentCache | null>(null);
-    mockSignal = jest.fn(() => cacheData.getValue());
-    mockSignal.set = jest.fn((value: TwoFactorAuthEmailComponentCache | null) =>
-      cacheData.next(value),
-    );
-    mockViewCacheService.signal.mockReturnValue(mockSignal);
-
-    TestBed.configureTestingModule({
-      providers: [
-        TwoFactorAuthEmailComponentCacheService,
-        { provide: ViewCacheService, useValue: mockViewCacheService },
-        { provide: ConfigService, useValue: mockConfigService },
-      ],
-    });
-
-    service = TestBed.inject(TwoFactorAuthEmailComponentCacheService);
-  });
-
-  it("creates the service", () => {
-    expect(service).toBeTruthy();
-  });
-
-  describe("init", () => {
-    it("sets featureEnabled to true when flag is enabled", async () => {
-      mockConfigService.getFeatureFlag.mockResolvedValue(true);
-
-      await service.init();
-
-      expect(mockConfigService.getFeatureFlag).toHaveBeenCalledWith(
-        FeatureFlag.PM9115_TwoFactorExtensionDataPersistence,
-      );
-
-      service.cacheData({ emailSent: true });
-      expect(mockSignal.set).toHaveBeenCalled();
-    });
-
-    it("sets featureEnabled to false when flag is disabled", async () => {
-      mockConfigService.getFeatureFlag.mockResolvedValue(false);
-
-      await service.init();
-
-      expect(mockConfigService.getFeatureFlag).toHaveBeenCalledWith(
-        FeatureFlag.PM9115_TwoFactorExtensionDataPersistence,
-      );
-
-      service.cacheData({ emailSent: true });
-      expect(mockSignal.set).not.toHaveBeenCalled();
-    });
-  });
-
-  describe("cacheData", () => {
-    beforeEach(async () => {
-      mockConfigService.getFeatureFlag.mockResolvedValue(true);
-      await service.init();
-    });
-
-    it("caches email sent state when feature is enabled", () => {
-      service.cacheData({ emailSent: true });
-
-      expect(mockSignal.set).toHaveBeenCalledWith({
-        emailSent: true,
-      });
-    });
-
-    it("does not cache data when feature is disabled", async () => {
-      mockConfigService.getFeatureFlag.mockResolvedValue(false);
-      await service.init();
-
-      service.cacheData({ emailSent: true });
-
-      expect(mockSignal.set).not.toHaveBeenCalled();
-    });
-  });
-
-  describe("clearCachedData", () => {
-    beforeEach(async () => {
-      mockConfigService.getFeatureFlag.mockResolvedValue(true);
-      await service.init();
-    });
-
-    it("clears cached data when feature is enabled", () => {
-      service.clearCachedData();
-
-      expect(mockSignal.set).toHaveBeenCalledWith(null);
-    });
-
-    it("does not clear cached data when feature is disabled", async () => {
-      mockConfigService.getFeatureFlag.mockResolvedValue(false);
-      await service.init();
-
-      service.clearCachedData();
-
-      expect(mockSignal.set).not.toHaveBeenCalled();
-    });
-  });
-
-  describe("getCachedData", () => {
-    beforeEach(async () => {
-      mockConfigService.getFeatureFlag.mockResolvedValue(true);
-      await service.init();
-    });
-
-    it("returns cached data when feature is enabled", () => {
-      const testData = new TwoFactorAuthEmailComponentCache();
-      testData.emailSent = true;
-      cacheData.next(testData);
-
-      const result = service.getCachedData();
-
-      expect(result).toEqual(testData);
-      expect(mockSignal).toHaveBeenCalled();
-    });
-
-    it("returns null when feature is disabled", async () => {
-      mockConfigService.getFeatureFlag.mockResolvedValue(false);
-      await service.init();
-
-      const result = service.getCachedData();
-
-      expect(result).toBeNull();
-      expect(mockSignal).not.toHaveBeenCalled();
-    });
-  });
-});
diff --git a/libs/auth/src/angular/two-factor-auth/child-components/two-factor-auth-email/two-factor-auth-email-component-cache.service.spec.ts b/libs/auth/src/angular/two-factor-auth/child-components/two-factor-auth-email/two-factor-auth-email-component-cache.service.spec.ts
index 36d99ee56ac..e5ab04b51ad 100644
--- a/libs/auth/src/angular/two-factor-auth/child-components/two-factor-auth-email/two-factor-auth-email-component-cache.service.spec.ts
+++ b/libs/auth/src/angular/two-factor-auth/child-components/two-factor-auth-email/two-factor-auth-email-component-cache.service.spec.ts
@@ -3,7 +3,6 @@ import { mock, MockProxy } from "jest-mock-extended";
 import { BehaviorSubject } from "rxjs";
 
 import { ViewCacheService } from "@bitwarden/angular/platform/view-cache";
-import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
 import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 
 import {
@@ -61,87 +60,26 @@ describe("TwoFactorAuthEmailComponentCacheService", () => {
     expect(service).toBeTruthy();
   });
 
-  describe("init", () => {
-    it("sets featureEnabled to true when flag is enabled", async () => {
-      mockConfigService.getFeatureFlag.mockResolvedValue(true);
-
-      await service.init();
-
-      expect(mockConfigService.getFeatureFlag).toHaveBeenCalledWith(
-        FeatureFlag.PM9115_TwoFactorExtensionDataPersistence,
-      );
-
-      service.cacheData({ emailSent: true });
-      expect(mockSignal.set).toHaveBeenCalled();
-    });
-
-    it("sets featureEnabled to false when flag is disabled", async () => {
-      mockConfigService.getFeatureFlag.mockResolvedValue(false);
-
-      await service.init();
-
-      expect(mockConfigService.getFeatureFlag).toHaveBeenCalledWith(
-        FeatureFlag.PM9115_TwoFactorExtensionDataPersistence,
-      );
-
-      service.cacheData({ emailSent: true });
-      expect(mockSignal.set).not.toHaveBeenCalled();
-    });
-  });
-
   describe("cacheData", () => {
-    beforeEach(async () => {
-      mockConfigService.getFeatureFlag.mockResolvedValue(true);
-      await service.init();
-    });
-
-    it("caches email sent state when feature is enabled", () => {
+    it("caches email sent state", () => {
       service.cacheData({ emailSent: true });
 
       expect(mockSignal.set).toHaveBeenCalledWith({
         emailSent: true,
       });
     });
-
-    it("does not cache data when feature is disabled", async () => {
-      mockConfigService.getFeatureFlag.mockResolvedValue(false);
-      await service.init();
-
-      service.cacheData({ emailSent: true });
-
-      expect(mockSignal.set).not.toHaveBeenCalled();
-    });
   });
 
   describe("clearCachedData", () => {
-    beforeEach(async () => {
-      mockConfigService.getFeatureFlag.mockResolvedValue(true);
-      await service.init();
-    });
-
-    it("clears cached data when feature is enabled", () => {
+    it("clears cached data", () => {
       service.clearCachedData();
 
       expect(mockSignal.set).toHaveBeenCalledWith(null);
     });
-
-    it("does not clear cached data when feature is disabled", async () => {
-      mockConfigService.getFeatureFlag.mockResolvedValue(false);
-      await service.init();
-
-      service.clearCachedData();
-
-      expect(mockSignal.set).not.toHaveBeenCalled();
-    });
   });
 
   describe("getCachedData", () => {
-    beforeEach(async () => {
-      mockConfigService.getFeatureFlag.mockResolvedValue(true);
-      await service.init();
-    });
-
-    it("returns cached data when feature is enabled", () => {
+    it("returns cached data", () => {
       const testData = new TwoFactorAuthEmailComponentCache();
       testData.emailSent = true;
       cacheData.next(testData);
@@ -151,15 +89,5 @@ describe("TwoFactorAuthEmailComponentCacheService", () => {
       expect(result).toEqual(testData);
       expect(mockSignal).toHaveBeenCalled();
     });
-
-    it("returns null when feature is disabled", async () => {
-      mockConfigService.getFeatureFlag.mockResolvedValue(false);
-      await service.init();
-
-      const result = service.getCachedData();
-
-      expect(result).toBeNull();
-      expect(mockSignal).not.toHaveBeenCalled();
-    });
   });
 });
diff --git a/libs/auth/src/angular/two-factor-auth/child-components/two-factor-auth-email/two-factor-auth-email-component-cache.service.ts b/libs/auth/src/angular/two-factor-auth/child-components/two-factor-auth-email/two-factor-auth-email-component-cache.service.ts
index d274b8003d7..d98387e1cf5 100644
--- a/libs/auth/src/angular/two-factor-auth/child-components/two-factor-auth-email/two-factor-auth-email-component-cache.service.ts
+++ b/libs/auth/src/angular/two-factor-auth/child-components/two-factor-auth-email/two-factor-auth-email-component-cache.service.ts
@@ -2,8 +2,6 @@ import { inject, Injectable, WritableSignal } from "@angular/core";
 import { Jsonify } from "type-fest";
 
 import { ViewCacheService } from "@bitwarden/angular/platform/view-cache";
-import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
-import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 
 /**
  * The key for the email two factor auth component cache.
@@ -34,10 +32,6 @@ export class TwoFactorAuthEmailComponentCache {
 @Injectable()
 export class TwoFactorAuthEmailComponentCacheService {
   private viewCacheService: ViewCacheService = inject(ViewCacheService);
-  private configService: ConfigService = inject(ConfigService);
-
-  /** True when the feature flag is enabled */
-  private featureEnabled: boolean = false;
 
   /**
    * Signal for the cached email state.
@@ -49,23 +43,10 @@ export class TwoFactorAuthEmailComponentCacheService {
       deserializer: TwoFactorAuthEmailComponentCache.fromJSON,
     });
 
-  /**
-   * Must be called once before interacting with the cached data.
-   */
-  async init() {
-    this.featureEnabled = await this.configService.getFeatureFlag(
-      FeatureFlag.PM9115_TwoFactorExtensionDataPersistence,
-    );
-  }
-
   /**
    * Cache the email sent state.
    */
   cacheData(data: { emailSent: boolean }): void {
-    if (!this.featureEnabled) {
-      return;
-    }
-
     this.emailCache.set({
       emailSent: data.emailSent,
     } as TwoFactorAuthEmailComponentCache);
@@ -75,10 +56,6 @@ export class TwoFactorAuthEmailComponentCacheService {
    * Clear the cached email data.
    */
   clearCachedData(): void {
-    if (!this.featureEnabled) {
-      return;
-    }
-
     this.emailCache.set(null);
   }
 
@@ -86,10 +63,6 @@ export class TwoFactorAuthEmailComponentCacheService {
    * Get whether the email has been sent.
    */
   getCachedData(): TwoFactorAuthEmailComponentCache | null {
-    if (!this.featureEnabled) {
-      return null;
-    }
-
     return this.emailCache();
   }
 }
diff --git a/libs/auth/src/angular/two-factor-auth/child-components/two-factor-auth-email/two-factor-auth-email-component.service.ts b/libs/auth/src/angular/two-factor-auth/child-components/two-factor-auth-email/two-factor-auth-email-component.service.ts
deleted file mode 100644
index fa96b6b96c2..00000000000
--- a/libs/auth/src/angular/two-factor-auth/child-components/two-factor-auth-email/two-factor-auth-email-component.service.ts
+++ /dev/null
@@ -1,10 +0,0 @@
-/**
- * A service that manages all cross client functionality for the email 2FA component.
- */
-export abstract class TwoFactorAuthEmailComponentService {
-  /**
-   * Optionally shows a warning to the user that they might need to popout the
-   * window to complete email 2FA.
-   */
-  abstract openPopoutIfApprovedForEmail2fa?(): Promise<void>;
-}
diff --git a/libs/auth/src/angular/two-factor-auth/child-components/two-factor-auth-email/two-factor-auth-email.component.ts b/libs/auth/src/angular/two-factor-auth/child-components/two-factor-auth-email/two-factor-auth-email.component.ts
index 65641284cf1..9b402f3a956 100644
--- a/libs/auth/src/angular/two-factor-auth/child-components/two-factor-auth-email/two-factor-auth-email.component.ts
+++ b/libs/auth/src/angular/two-factor-auth/child-components/two-factor-auth-email/two-factor-auth-email.component.ts
@@ -25,7 +25,6 @@ import {
 } from "@bitwarden/components";
 
 import { TwoFactorAuthEmailComponentCacheService } from "./two-factor-auth-email-component-cache.service";
-import { TwoFactorAuthEmailComponentService } from "./two-factor-auth-email-component.service";
 
 @Component({
   selector: "app-two-factor-auth-email",
@@ -66,14 +65,10 @@ export class TwoFactorAuthEmailComponent implements OnInit {
     protected apiService: ApiService,
     protected appIdService: AppIdService,
     private toastService: ToastService,
-    private twoFactorAuthEmailComponentService: TwoFactorAuthEmailComponentService,
     private cacheService: TwoFactorAuthEmailComponentCacheService,
   ) {}
 
   async ngOnInit(): Promise<void> {
-    await this.twoFactorAuthEmailComponentService.openPopoutIfApprovedForEmail2fa?.();
-    await this.cacheService.init();
-
     // Check if email was already sent
     const cachedData = this.cacheService.getCachedData();
     if (cachedData?.emailSent) {
diff --git a/libs/auth/src/angular/two-factor-auth/child-components/two-factor-auth-yubikey.component.html b/libs/auth/src/angular/two-factor-auth/child-components/two-factor-auth-yubikey/two-factor-auth-yubikey.component.html
similarity index 100%
rename from libs/auth/src/angular/two-factor-auth/child-components/two-factor-auth-yubikey.component.html
rename to libs/auth/src/angular/two-factor-auth/child-components/two-factor-auth-yubikey/two-factor-auth-yubikey.component.html
diff --git a/libs/auth/src/angular/two-factor-auth/child-components/two-factor-auth-yubikey.component.ts b/libs/auth/src/angular/two-factor-auth/child-components/two-factor-auth-yubikey/two-factor-auth-yubikey.component.ts
similarity index 100%
rename from libs/auth/src/angular/two-factor-auth/child-components/two-factor-auth-yubikey.component.ts
rename to libs/auth/src/angular/two-factor-auth/child-components/two-factor-auth-yubikey/two-factor-auth-yubikey.component.ts
diff --git a/libs/auth/src/angular/two-factor-auth/two-factor-auth-component-cache.service.spec.ts b/libs/auth/src/angular/two-factor-auth/two-factor-auth-component-cache.service.spec.ts
index 5b5d486556b..24cd18d43e5 100644
--- a/libs/auth/src/angular/two-factor-auth/two-factor-auth-component-cache.service.spec.ts
+++ b/libs/auth/src/angular/two-factor-auth/two-factor-auth-component-cache.service.spec.ts
@@ -4,8 +4,6 @@ import { BehaviorSubject } from "rxjs";
 
 import { ViewCacheService } from "@bitwarden/angular/platform/view-cache";
 import { TwoFactorProviderType } from "@bitwarden/common/auth/enums/two-factor-provider-type";
-import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
-import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 
 import {
   TwoFactorAuthComponentCache,
@@ -40,13 +38,11 @@ describe("TwoFactorAuthCache", () => {
 describe("TwoFactorAuthComponentCacheService", () => {
   let service: TwoFactorAuthComponentCacheService;
   let mockViewCacheService: MockProxy<ViewCacheService>;
-  let mockConfigService: MockProxy<ConfigService>;
   let cacheData: BehaviorSubject<TwoFactorAuthComponentCache | null>;
   let mockSignal: any;
 
   beforeEach(() => {
     mockViewCacheService = mock<ViewCacheService>();
-    mockConfigService = mock<ConfigService>();
     cacheData = new BehaviorSubject<TwoFactorAuthComponentCache | null>(null);
     mockSignal = jest.fn(() => cacheData.getValue());
     mockSignal.set = jest.fn((value: TwoFactorAuthComponentCache | null) => cacheData.next(value));
@@ -56,7 +52,6 @@ describe("TwoFactorAuthComponentCacheService", () => {
       providers: [
         TwoFactorAuthComponentCacheService,
         { provide: ViewCacheService, useValue: mockViewCacheService },
-        { provide: ConfigService, useValue: mockConfigService },
       ],
     });
 
@@ -67,41 +62,8 @@ describe("TwoFactorAuthComponentCacheService", () => {
     expect(service).toBeTruthy();
   });
 
-  describe("init", () => {
-    it("sets featureEnabled to true when flag is enabled", async () => {
-      mockConfigService.getFeatureFlag.mockResolvedValue(true);
-
-      await service.init();
-
-      expect(mockConfigService.getFeatureFlag).toHaveBeenCalledWith(
-        FeatureFlag.PM9115_TwoFactorExtensionDataPersistence,
-      );
-
-      service.cacheData({ token: "123456" });
-      expect(mockSignal.set).toHaveBeenCalled();
-    });
-
-    it("sets featureEnabled to false when flag is disabled", async () => {
-      mockConfigService.getFeatureFlag.mockResolvedValue(false);
-
-      await service.init();
-
-      expect(mockConfigService.getFeatureFlag).toHaveBeenCalledWith(
-        FeatureFlag.PM9115_TwoFactorExtensionDataPersistence,
-      );
-
-      service.cacheData({ token: "123456" });
-      expect(mockSignal.set).not.toHaveBeenCalled();
-    });
-  });
-
   describe("cacheData", () => {
-    beforeEach(async () => {
-      mockConfigService.getFeatureFlag.mockResolvedValue(true);
-      await service.init();
-    });
-
-    it("caches complete data when feature is enabled", () => {
+    it("caches complete data", () => {
       const testData: TwoFactorAuthComponentData = {
         token: "123456",
         remember: true,
@@ -117,7 +79,7 @@ describe("TwoFactorAuthComponentCacheService", () => {
       });
     });
 
-    it("caches partial data when feature is enabled", () => {
+    it("caches partial data", () => {
       service.cacheData({ token: "123456" });
 
       expect(mockSignal.set).toHaveBeenCalledWith({
@@ -126,46 +88,18 @@ describe("TwoFactorAuthComponentCacheService", () => {
         selectedProviderType: undefined,
       });
     });
-
-    it("does not cache data when feature is disabled", async () => {
-      mockConfigService.getFeatureFlag.mockResolvedValue(false);
-      await service.init();
-
-      service.cacheData({ token: "123456" });
-
-      expect(mockSignal.set).not.toHaveBeenCalled();
-    });
   });
 
   describe("clearCachedData", () => {
-    beforeEach(async () => {
-      mockConfigService.getFeatureFlag.mockResolvedValue(true);
-      await service.init();
-    });
-
-    it("clears cached data when feature is enabled", () => {
+    it("clears cached data", () => {
       service.clearCachedData();
 
       expect(mockSignal.set).toHaveBeenCalledWith(null);
     });
-
-    it("does not clear cached data when feature is disabled", async () => {
-      mockConfigService.getFeatureFlag.mockResolvedValue(false);
-      await service.init();
-
-      service.clearCachedData();
-
-      expect(mockSignal.set).not.toHaveBeenCalled();
-    });
   });
 
   describe("getCachedData", () => {
-    beforeEach(async () => {
-      mockConfigService.getFeatureFlag.mockResolvedValue(true);
-      await service.init();
-    });
-
-    it("returns cached data when feature is enabled", () => {
+    it("returns cached data", () => {
       const testData = new TwoFactorAuthComponentCache();
       testData.token = "123456";
       testData.remember = true;
@@ -177,15 +111,5 @@ describe("TwoFactorAuthComponentCacheService", () => {
       expect(result).toEqual(testData);
       expect(mockSignal).toHaveBeenCalled();
     });
-
-    it("returns null when feature is disabled", async () => {
-      mockConfigService.getFeatureFlag.mockResolvedValue(false);
-      await service.init();
-
-      const result = service.getCachedData();
-
-      expect(result).toBeNull();
-      expect(mockSignal).not.toHaveBeenCalled();
-    });
   });
 });
diff --git a/libs/auth/src/angular/two-factor-auth/two-factor-auth-component-cache.service.ts b/libs/auth/src/angular/two-factor-auth/two-factor-auth-component-cache.service.ts
index 2d9fcaa5633..33aa76680e4 100644
--- a/libs/auth/src/angular/two-factor-auth/two-factor-auth-component-cache.service.ts
+++ b/libs/auth/src/angular/two-factor-auth/two-factor-auth-component-cache.service.ts
@@ -3,8 +3,6 @@ import { Jsonify } from "type-fest";
 
 import { ViewCacheService } from "@bitwarden/angular/platform/view-cache";
 import { TwoFactorProviderType } from "@bitwarden/common/auth/enums/two-factor-provider-type";
-import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
-import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 
 const TWO_FACTOR_AUTH_COMPONENT_CACHE_KEY = "two-factor-auth-component-cache";
 
@@ -40,10 +38,6 @@ export interface TwoFactorAuthComponentData {
 @Injectable()
 export class TwoFactorAuthComponentCacheService {
   private viewCacheService: ViewCacheService = inject(ViewCacheService);
-  private configService: ConfigService = inject(ConfigService);
-
-  /** True when the `PM9115_TwoFactorExtensionDataPersistence` flag is enabled */
-  private featureEnabled: boolean = false;
 
   /**
    * Signal for the cached TwoFactorAuthData.
@@ -57,23 +51,10 @@ export class TwoFactorAuthComponentCacheService {
 
   constructor() {}
 
-  /**
-   * Must be called once before interacting with the cached data.
-   */
-  async init() {
-    this.featureEnabled = await this.configService.getFeatureFlag(
-      FeatureFlag.PM9115_TwoFactorExtensionDataPersistence,
-    );
-  }
-
   /**
    * Update the cache with the new TwoFactorAuthData.
    */
   cacheData(data: TwoFactorAuthComponentData): void {
-    if (!this.featureEnabled) {
-      return;
-    }
-
     this.twoFactorAuthComponentCache.set({
       token: data.token,
       remember: data.remember,
@@ -85,10 +66,6 @@ export class TwoFactorAuthComponentCacheService {
    * Clears the cached TwoFactorAuthData.
    */
   clearCachedData(): void {
-    if (!this.featureEnabled) {
-      return;
-    }
-
     this.twoFactorAuthComponentCache.set(null);
   }
 
@@ -96,10 +73,6 @@ export class TwoFactorAuthComponentCacheService {
    * Returns the cached TwoFactorAuthData (when available).
    */
   getCachedData(): TwoFactorAuthComponentCache | null {
-    if (!this.featureEnabled) {
-      return null;
-    }
-
     return this.twoFactorAuthComponentCache();
   }
 }
diff --git a/libs/auth/src/angular/two-factor-auth/two-factor-auth.component.spec.ts b/libs/auth/src/angular/two-factor-auth/two-factor-auth.component.spec.ts
index 4ab3841e48e..e7678102360 100644
--- a/libs/auth/src/angular/two-factor-auth/two-factor-auth.component.spec.ts
+++ b/libs/auth/src/angular/two-factor-auth/two-factor-auth.component.spec.ts
@@ -121,7 +121,6 @@ describe("TwoFactorAuthComponent", () => {
 
     mockTwoFactorAuthCompCacheService = mock<TwoFactorAuthComponentCacheService>();
     mockTwoFactorAuthCompCacheService.getCachedData.mockReturnValue(null);
-    mockTwoFactorAuthCompCacheService.init.mockResolvedValue();
 
     mockUserDecryptionOpts = {
       noMasterPassword: new UserDecryptionOptions({
diff --git a/libs/auth/src/angular/two-factor-auth/two-factor-auth.component.ts b/libs/auth/src/angular/two-factor-auth/two-factor-auth.component.ts
index a281411f971..50cc2d88d6a 100644
--- a/libs/auth/src/angular/two-factor-auth/two-factor-auth.component.ts
+++ b/libs/auth/src/angular/two-factor-auth/two-factor-auth.component.ts
@@ -60,11 +60,11 @@ import {
   TwoFactorAuthDuoIcon,
 } from "../icons/two-factor-auth";
 
-import { TwoFactorAuthAuthenticatorComponent } from "./child-components/two-factor-auth-authenticator.component";
+import { TwoFactorAuthAuthenticatorComponent } from "./child-components/two-factor-auth-authenticator/two-factor-auth-authenticator.component";
 import { TwoFactorAuthDuoComponent } from "./child-components/two-factor-auth-duo/two-factor-auth-duo.component";
 import { TwoFactorAuthEmailComponent } from "./child-components/two-factor-auth-email/two-factor-auth-email.component";
 import { TwoFactorAuthWebAuthnComponent } from "./child-components/two-factor-auth-webauthn/two-factor-auth-webauthn.component";
-import { TwoFactorAuthYubikeyComponent } from "./child-components/two-factor-auth-yubikey.component";
+import { TwoFactorAuthYubikeyComponent } from "./child-components/two-factor-auth-yubikey/two-factor-auth-yubikey.component";
 import {
   TwoFactorAuthComponentCacheService,
   TwoFactorAuthComponentData,
@@ -180,9 +180,6 @@ export class TwoFactorAuthComponent implements OnInit, OnDestroy {
 
     this.listenForAuthnSessionTimeout();
 
-    // Initialize the cache
-    await this.twoFactorAuthComponentCacheService.init();
-
     // Load cached form data if available
     let loadedCachedProviderType = false;
     const cachedData = this.twoFactorAuthComponentCacheService.getCachedData();
diff --git a/libs/common/src/enums/feature-flag.enum.ts b/libs/common/src/enums/feature-flag.enum.ts
index 8d9eebe6f9f..71de8fb5433 100644
--- a/libs/common/src/enums/feature-flag.enum.ts
+++ b/libs/common/src/enums/feature-flag.enum.ts
@@ -17,7 +17,6 @@ export enum FeatureFlag {
   /* Auth */
   PM16117_SetInitialPasswordRefactor = "pm-16117-set-initial-password-refactor",
   PM16117_ChangeExistingPasswordRefactor = "pm-16117-change-existing-password-refactor",
-  PM9115_TwoFactorExtensionDataPersistence = "pm-9115-two-factor-extension-data-persistence",
   PM14938_BrowserExtensionLoginApproval = "pm-14938-browser-extension-login-approvals",
 
   /* Autofill */
@@ -107,7 +106,6 @@ export const DefaultFeatureFlagValue = {
   /* Auth */
   [FeatureFlag.PM16117_SetInitialPasswordRefactor]: FALSE,
   [FeatureFlag.PM16117_ChangeExistingPasswordRefactor]: FALSE,
-  [FeatureFlag.PM9115_TwoFactorExtensionDataPersistence]: FALSE,
   [FeatureFlag.PM14938_BrowserExtensionLoginApproval]: FALSE,
 
   /* Billing */

From 3bdc223376f03536ab5110f8f5b790f117a20742 Mon Sep 17 00:00:00 2001
From: Daniel Riera <driera@livefront.com>
Date: Thu, 10 Jul 2025 15:16:58 -0400
Subject: [PATCH 101/239] PM-23298 White/black background appears in iframe
 containing notifications on Chromium browsers (#15436)

* PM-23298

* Revert "Failsafe for Chromium browsers' forced rendering of opaque bkgd (#15098)"

This reverts commit 64e577e2e6480ea1d35962b410aaf5fa71ff4e06.

* set style explicitly on iframe
---
 apps/browser/src/autofill/notification/bar.ts | 11 +----------
 ...notifications-content.service.spec.ts.snap |  4 ++--
 .../overlay-notifications-content.service.ts  | 10 +++-------
 apps/browser/src/autofill/utils/index.ts      | 19 -------------------
 4 files changed, 6 insertions(+), 38 deletions(-)

diff --git a/apps/browser/src/autofill/notification/bar.ts b/apps/browser/src/autofill/notification/bar.ts
index a83e9fce531..285ae4aa257 100644
--- a/apps/browser/src/autofill/notification/bar.ts
+++ b/apps/browser/src/autofill/notification/bar.ts
@@ -12,7 +12,7 @@ import { NotificationConfirmationContainer } from "../content/components/notific
 import { NotificationContainer } from "../content/components/notification/container";
 import { selectedFolder as selectedFolderSignal } from "../content/components/signals/selected-folder";
 import { selectedVault as selectedVaultSignal } from "../content/components/signals/selected-vault";
-import { buildSvgDomElement, matchAllowedColorSchemes } from "../utils";
+import { buildSvgDomElement } from "../utils";
 import { circleCheckIcon } from "../utils/svg-icons";
 
 import {
@@ -238,15 +238,6 @@ async function initNotificationBar(message: NotificationBarWindowMessage) {
   const i18n = getI18n();
   const resolvedTheme = getResolvedTheme(theme ?? ThemeTypes.Light);
 
-  // https://drafts.csswg.org/css-color-adjust-1/#preferred
-  // Prevents preferred color scheme from forcing an opaque background in the iframe
-  const colorScheme = new URLSearchParams(window.location.search).get("colorScheme") || "";
-  const allowedColorScheme = matchAllowedColorSchemes(colorScheme);
-  const meta = document.createElement("meta");
-  meta.setAttribute("name", "color-scheme");
-  meta.setAttribute("content", allowedColorScheme);
-  document.getElementsByTagName("head")[0].appendChild(meta);
-
   if (useComponentBar) {
     const resolvedType = resolveNotificationType(notificationBarIframeInitData);
     const headerMessage = getNotificationHeaderMessage(i18n, resolvedType);
diff --git a/apps/browser/src/autofill/overlay/notifications/content/__snapshots__/overlay-notifications-content.service.spec.ts.snap b/apps/browser/src/autofill/overlay/notifications/content/__snapshots__/overlay-notifications-content.service.spec.ts.snap
index 1b5d9a73888..18c3baa876c 100644
--- a/apps/browser/src/autofill/overlay/notifications/content/__snapshots__/overlay-notifications-content.service.spec.ts.snap
+++ b/apps/browser/src/autofill/overlay/notifications/content/__snapshots__/overlay-notifications-content.service.spec.ts.snap
@@ -7,8 +7,8 @@ exports[`OverlayNotificationsContentService opening the notification bar creates
 >
   <iframe
     id="bit-notification-bar-iframe"
-    src="chrome-extension://id/notification/bar.html?colorScheme=normal"
-    style="width: 100% !important; height: 100% !important; border: 0px !important; display: block !important; position: relative !important; transition: transform 0.15s ease-out, opacity 0.15s ease !important; border-radius: 4px !important; transform: translateX(0) !important; opacity: 0;"
+    src="chrome-extension://id/notification/bar.html"
+    style="width: 100% !important; height: 100% !important; border: 0px !important; display: block !important; position: relative !important; transition: transform 0.15s ease-out, opacity 0.15s ease !important; border-radius: 4px !important; color-scheme: normal !important; transform: translateX(0) !important; opacity: 0;"
   />
 </div>
 `;
diff --git a/apps/browser/src/autofill/overlay/notifications/content/overlay-notifications-content.service.ts b/apps/browser/src/autofill/overlay/notifications/content/overlay-notifications-content.service.ts
index 01f8237581d..bc32bf23928 100644
--- a/apps/browser/src/autofill/overlay/notifications/content/overlay-notifications-content.service.ts
+++ b/apps/browser/src/autofill/overlay/notifications/content/overlay-notifications-content.service.ts
@@ -7,7 +7,7 @@ import {
   NotificationType,
   NotificationTypes,
 } from "../../../notification/abstractions/notification-bar";
-import { matchAllowedColorSchemes, sendExtensionMessage, setElementStyles } from "../../../utils";
+import { sendExtensionMessage, setElementStyles } from "../../../utils";
 import {
   NotificationsExtensionMessage,
   OverlayNotificationsContentService as OverlayNotificationsContentServiceInterface,
@@ -55,6 +55,7 @@ export class OverlayNotificationsContentService
     position: "relative",
     transition: "transform 0.15s ease-out, opacity 0.15s ease",
     borderRadius: "4px",
+    colorScheme: "normal",
   };
   private readonly extensionMessageHandlers: OverlayNotificationsExtensionMessageHandlers = {
     openNotificationBar: ({ message }) => this.handleOpenNotificationBarMessage(message),
@@ -182,18 +183,13 @@ export class OverlayNotificationsContentService
    * @param initData - The initialization data for the notification bar.
    */
   private createNotificationBarIframeElement(initData: NotificationBarIframeInitData) {
-    const content = (document.querySelector('meta[name="color-scheme"]') as HTMLMetaElement)
-      ?.content;
-    const allowedColorScheme = matchAllowedColorSchemes(content);
     const isNotificationFresh =
       initData.launchTimestamp && Date.now() - initData.launchTimestamp < 250;
 
     this.currentNotificationBarType = initData.type;
     this.notificationBarIframeElement = globalThis.document.createElement("iframe");
     this.notificationBarIframeElement.id = "bit-notification-bar-iframe";
-    this.notificationBarIframeElement.src = chrome.runtime.getURL(
-      `notification/bar.html?colorScheme=${encodeURIComponent(allowedColorScheme)}`,
-    );
+    this.notificationBarIframeElement.src = chrome.runtime.getURL("notification/bar.html");
     setElementStyles(
       this.notificationBarIframeElement,
       {
diff --git a/apps/browser/src/autofill/utils/index.ts b/apps/browser/src/autofill/utils/index.ts
index 97539673abc..614a5b014f2 100644
--- a/apps/browser/src/autofill/utils/index.ts
+++ b/apps/browser/src/autofill/utils/index.ts
@@ -575,22 +575,3 @@ export function areKeyValuesNull<T extends Record<string, any>>(
 
   return keysToCheck.every((key) => obj[key] == null);
 }
-
-export type AllowedColorScheme = "light dark" | "dark light" | "light" | "dark" | "normal";
-
-/**
- * Ensures string matches allowed color scheme, defaulting/overriding to "normal".
- * https://drafts.csswg.org/css-color-adjust-1/#color-scheme-meta
- */
-export function matchAllowedColorSchemes(content: string): AllowedColorScheme {
-  switch (content) {
-    case "light dark":
-    case "dark light":
-    case "light":
-    case "dark":
-      // content must match one of these types.
-      return content;
-    default:
-      return "normal";
-  }
-}

From 7cf10ba421c3293550555c0a8e25503bad85df1a Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Thu, 10 Jul 2025 15:19:32 -0400
Subject: [PATCH 102/239] [deps] UI Foundation: Update chromatic to v13
 (#15501)

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
---
 package-lock.json | 8 ++++----
 package.json      | 2 +-
 2 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/package-lock.json b/package-lock.json
index 115f7cbf32d..ceb912531ec 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -132,7 +132,7 @@
         "babel-loader": "9.2.1",
         "base64-loader": "1.0.0",
         "browserslist": "4.23.2",
-        "chromatic": "11.28.2",
+        "chromatic": "13.1.2",
         "concurrently": "9.1.2",
         "copy-webpack-plugin": "13.0.0",
         "cross-env": "7.0.3",
@@ -16700,9 +16700,9 @@
       }
     },
     "node_modules/chromatic": {
-      "version": "11.28.2",
-      "resolved": "https://registry.npmjs.org/chromatic/-/chromatic-11.28.2.tgz",
-      "integrity": "sha512-aCmUPcZUs4/p9zRZdMreOoO/5JqO2DiJC3md1/vRx8dlMRcmR/YI5ZbgXZcai2absVR+6hsXZ5XiPxV2sboTuQ==",
+      "version": "13.1.2",
+      "resolved": "https://registry.npmjs.org/chromatic/-/chromatic-13.1.2.tgz",
+      "integrity": "sha512-jgVptQabJHOnzmmvLjbtfutREkWGhDDk2gVqMH6N+V7z56oIy4Sd2/U7ZxNvnVFPinZQMSjSdUce4b6JIP64Dg==",
       "dev": true,
       "license": "MIT",
       "bin": {
diff --git a/package.json b/package.json
index be0c53914b8..d94295c5ea3 100644
--- a/package.json
+++ b/package.json
@@ -92,7 +92,7 @@
     "babel-loader": "9.2.1",
     "base64-loader": "1.0.0",
     "browserslist": "4.23.2",
-    "chromatic": "11.28.2",
+    "chromatic": "13.1.2",
     "concurrently": "9.1.2",
     "copy-webpack-plugin": "13.0.0",
     "cross-env": "7.0.3",

From bf50160a4794f70a6c6733a5ce80d301001b7483 Mon Sep 17 00:00:00 2001
From: Jason Ng <jng@bitwarden.com>
Date: Thu, 10 Jul 2025 15:30:23 -0400
Subject: [PATCH 103/239] [PM-19562] remove flag pm-18520-desktop-cipher-forms
 (#15524)

* removing the desktop flag and replacing the route in desktop app routing. removing code from old desktop
---
 apps/desktop/src/app/app-routing.module.ts    |  16 +-
 apps/desktop/src/app/app.module.ts            |  22 -
 apps/desktop/src/scss/misc.scss               |   4 -
 .../add-edit-custom-fields.component.html     | 135 ---
 .../vault/add-edit-custom-fields.component.ts |  16 -
 .../vault/app/vault/add-edit.component.html   | 826 -----------------
 .../src/vault/app/vault/add-edit.component.ts | 185 ----
 .../app/vault/attachments.component.html      |  69 --
 .../vault/app/vault/attachments.component.ts  |  58 --
 .../app/vault/collections.component.html      |  43 -
 .../vault/app/vault/collections.component.ts  |  40 -
 .../app/vault/folder-add-edit.component.html  |  59 --
 .../app/vault/folder-add-edit.component.ts    |  45 -
 .../app/vault/password-history.component.html |  38 -
 .../app/vault/password-history.component.ts   |  25 -
 .../src/vault/app/vault/share.component.html  |  76 --
 .../src/vault/app/vault/share.component.ts    |  43 -
 .../app/vault/vault-items.component.html      |  72 --
 .../vault/app/vault/vault-items.component.ts  |  39 -
 .../src/vault/app/vault/vault.component.html  |  74 --
 .../src/vault/app/vault/vault.component.ts    | 870 ------------------
 .../vault/view-custom-fields.component.html   |  96 --
 .../app/vault/view-custom-fields.component.ts |  15 -
 .../src/vault/app/vault/view.component.html   | 683 --------------
 .../src/vault/app/vault/view.component.ts     | 176 ----
 .../components/collections.component.ts       | 136 ---
 .../angular/src/components/share.component.ts | 142 ---
 .../add-edit-custom-fields.component.ts       | 125 ---
 .../vault/components/add-edit.component.ts    | 855 -----------------
 .../vault/components/attachments.component.ts | 354 -------
 .../components/password-history.component.ts  |  48 -
 .../view-custom-fields.component.ts           |  50 -
 .../src/vault/components/view.component.ts    | 568 ------------
 libs/common/src/enums/feature-flag.enum.ts    |   2 -
 34 files changed, 5 insertions(+), 6000 deletions(-)
 delete mode 100644 apps/desktop/src/vault/app/vault/add-edit-custom-fields.component.html
 delete mode 100644 apps/desktop/src/vault/app/vault/add-edit-custom-fields.component.ts
 delete mode 100644 apps/desktop/src/vault/app/vault/add-edit.component.html
 delete mode 100644 apps/desktop/src/vault/app/vault/add-edit.component.ts
 delete mode 100644 apps/desktop/src/vault/app/vault/attachments.component.html
 delete mode 100644 apps/desktop/src/vault/app/vault/attachments.component.ts
 delete mode 100644 apps/desktop/src/vault/app/vault/collections.component.html
 delete mode 100644 apps/desktop/src/vault/app/vault/collections.component.ts
 delete mode 100644 apps/desktop/src/vault/app/vault/folder-add-edit.component.html
 delete mode 100644 apps/desktop/src/vault/app/vault/folder-add-edit.component.ts
 delete mode 100644 apps/desktop/src/vault/app/vault/password-history.component.html
 delete mode 100644 apps/desktop/src/vault/app/vault/password-history.component.ts
 delete mode 100644 apps/desktop/src/vault/app/vault/share.component.html
 delete mode 100644 apps/desktop/src/vault/app/vault/share.component.ts
 delete mode 100644 apps/desktop/src/vault/app/vault/vault-items.component.html
 delete mode 100644 apps/desktop/src/vault/app/vault/vault-items.component.ts
 delete mode 100644 apps/desktop/src/vault/app/vault/vault.component.html
 delete mode 100644 apps/desktop/src/vault/app/vault/vault.component.ts
 delete mode 100644 apps/desktop/src/vault/app/vault/view-custom-fields.component.html
 delete mode 100644 apps/desktop/src/vault/app/vault/view-custom-fields.component.ts
 delete mode 100644 apps/desktop/src/vault/app/vault/view.component.html
 delete mode 100644 apps/desktop/src/vault/app/vault/view.component.ts
 delete mode 100644 libs/angular/src/admin-console/components/collections.component.ts
 delete mode 100644 libs/angular/src/components/share.component.ts
 delete mode 100644 libs/angular/src/vault/components/add-edit-custom-fields.component.ts
 delete mode 100644 libs/angular/src/vault/components/add-edit.component.ts
 delete mode 100644 libs/angular/src/vault/components/attachments.component.ts
 delete mode 100644 libs/angular/src/vault/components/password-history.component.ts
 delete mode 100644 libs/angular/src/vault/components/view-custom-fields.component.ts
 delete mode 100644 libs/angular/src/vault/components/view.component.ts

diff --git a/apps/desktop/src/app/app-routing.module.ts b/apps/desktop/src/app/app-routing.module.ts
index 0a60478c94d..db3e69f7d6f 100644
--- a/apps/desktop/src/app/app-routing.module.ts
+++ b/apps/desktop/src/app/app-routing.module.ts
@@ -17,7 +17,6 @@ import {
 import { ChangePasswordComponent } from "@bitwarden/angular/auth/password-management/change-password";
 import { SetInitialPasswordComponent } from "@bitwarden/angular/auth/password-management/set-initial-password/set-initial-password.component";
 import { canAccessFeature } from "@bitwarden/angular/platform/guard/feature-flag.guard";
-import { featureFlaggedRoute } from "@bitwarden/angular/platform/utils/feature-flagged-route";
 import {
   LoginComponent,
   LoginSecondaryContentComponent,
@@ -50,7 +49,6 @@ import { SetPasswordComponent } from "../auth/set-password.component";
 import { UpdateTempPasswordComponent } from "../auth/update-temp-password.component";
 import { RemovePasswordComponent } from "../key-management/key-connector/remove-password.component";
 import { VaultV2Component } from "../vault/app/vault/vault-v2.component";
-import { VaultComponent } from "../vault/app/vault/vault.component";
 
 import { Fido2PlaceholderComponent } from "./components/fido2placeholder.component";
 import { SendComponent } from "./tools/send/send.component";
@@ -102,15 +100,11 @@ const routes: Routes = [
       },
     } satisfies RouteDataProperties & AnonLayoutWrapperData,
   },
-  ...featureFlaggedRoute({
-    defaultComponent: VaultComponent,
-    flaggedComponent: VaultV2Component,
-    featureFlag: FeatureFlag.PM18520_UpdateDesktopCipherForm,
-    routeOptions: {
-      path: "vault",
-      canActivate: [authGuard],
-    },
-  }),
+  {
+    path: "vault",
+    component: VaultV2Component,
+    canActivate: [authGuard],
+  },
   { path: "set-password", component: SetPasswordComponent },
   {
     path: "send",
diff --git a/apps/desktop/src/app/app.module.ts b/apps/desktop/src/app/app.module.ts
index 58c3e10e334..112732d8f2c 100644
--- a/apps/desktop/src/app/app.module.ts
+++ b/apps/desktop/src/app/app.module.ts
@@ -18,19 +18,8 @@ import { UpdateTempPasswordComponent } from "../auth/update-temp-password.compon
 import { SshAgentService } from "../autofill/services/ssh-agent.service";
 import { PremiumComponent } from "../billing/app/accounts/premium.component";
 import { RemovePasswordComponent } from "../key-management/key-connector/remove-password.component";
-import { AddEditCustomFieldsComponent } from "../vault/app/vault/add-edit-custom-fields.component";
-import { AddEditComponent } from "../vault/app/vault/add-edit.component";
-import { AttachmentsComponent } from "../vault/app/vault/attachments.component";
-import { CollectionsComponent } from "../vault/app/vault/collections.component";
-import { FolderAddEditComponent } from "../vault/app/vault/folder-add-edit.component";
-import { PasswordHistoryComponent } from "../vault/app/vault/password-history.component";
-import { ShareComponent } from "../vault/app/vault/share.component";
 import { VaultFilterModule } from "../vault/app/vault/vault-filter/vault-filter.module";
-import { VaultItemsComponent } from "../vault/app/vault/vault-items.component";
 import { VaultV2Component } from "../vault/app/vault/vault-v2.component";
-import { VaultComponent } from "../vault/app/vault/vault.component";
-import { ViewCustomFieldsComponent } from "../vault/app/vault/view-custom-fields.component";
-import { ViewComponent } from "../vault/app/vault/view.component";
 
 import { SettingsComponent } from "./accounts/settings.component";
 import { VaultTimeoutInputComponent } from "./accounts/vault-timeout-input.component";
@@ -61,28 +50,17 @@ import { SharedModule } from "./shared/shared.module";
   ],
   declarations: [
     AccountSwitcherComponent,
-    AddEditComponent,
-    AddEditCustomFieldsComponent,
     AppComponent,
-    AttachmentsComponent,
-    CollectionsComponent,
     ColorPasswordPipe,
     ColorPasswordCountPipe,
-    FolderAddEditComponent,
     HeaderComponent,
-    PasswordHistoryComponent,
     PremiumComponent,
     RemovePasswordComponent,
     SearchComponent,
     SetPasswordComponent,
     SettingsComponent,
-    ShareComponent,
     UpdateTempPasswordComponent,
-    VaultComponent,
-    VaultItemsComponent,
     VaultTimeoutInputComponent,
-    ViewCustomFieldsComponent,
-    ViewComponent,
   ],
   providers: [SshAgentService],
   bootstrap: [AppComponent],
diff --git a/apps/desktop/src/scss/misc.scss b/apps/desktop/src/scss/misc.scss
index ce03406dd24..3c3d4ff508c 100644
--- a/apps/desktop/src/scss/misc.scss
+++ b/apps/desktop/src/scss/misc.scss
@@ -441,10 +441,6 @@ img,
   user-select: none;
 }
 
-app-vault-view .box-footer {
-  user-select: auto;
-}
-
 /* override for vault icon in desktop */
 app-vault-icon > div {
   display: flex;
diff --git a/apps/desktop/src/vault/app/vault/add-edit-custom-fields.component.html b/apps/desktop/src/vault/app/vault/add-edit-custom-fields.component.html
deleted file mode 100644
index bc0c3876b71..00000000000
--- a/apps/desktop/src/vault/app/vault/add-edit-custom-fields.component.html
+++ /dev/null
@@ -1,135 +0,0 @@
-<div class="box">
-  <h2 class="box-header">
-    {{ "customFields" | i18n }}
-  </h2>
-  <div class="box-content">
-    <div cdkDropList (cdkDropListDropped)="drop($event)" *ngIf="cipher.hasFields">
-      <div
-        role="group"
-        class="box-content-row box-content-row-multi box-draggable-row"
-        cdkDrag
-        *ngFor="let f of cipher.fields; let i = index; trackBy: trackByFunction"
-        [ngClass]="{ 'box-content-row-checkbox': f.type === fieldType.Boolean }"
-        attr.aria-label="{{ f.name }}"
-      >
-        <button
-          type="button"
-          appStopClick
-          (click)="removeField(f)"
-          appA11yTitle="{{ 'remove' | i18n }}"
-          *ngIf="!(!cipher.edit && editMode)"
-        >
-          <i class="bwi bwi-minus-circle bwi-lg" aria-hidden="true"></i>
-        </button>
-        <label for="fieldName{{ i }}" class="sr-only">{{ "name" | i18n }}</label>
-        <label for="fieldValue{{ i }}" class="sr-only">{{ "value" | i18n }}</label>
-        <div class="row-main">
-          <input
-            id="fieldName{{ i }}"
-            type="text"
-            name="Field.Name{{ i }}"
-            [(ngModel)]="f.name"
-            class="row-label"
-            placeholder="{{ 'name' | i18n }}"
-            appInputVerbatim
-            [readonly]="!cipher.edit && editMode"
-          />
-          <!-- Text -->
-          <input
-            id="fieldValue{{ i }}"
-            type="text"
-            name="Field.Value{{ i }}"
-            [(ngModel)]="f.value"
-            *ngIf="f.type === fieldType.Text"
-            placeholder="{{ 'value' | i18n }}"
-            appInputVerbatim
-            attr.aria-describedby="fieldName{{ i }}"
-            [readonly]="!cipher.edit && editMode"
-          />
-          <!-- Password -->
-          <input
-            id="fieldValue{{ i }}"
-            type="{{ f.showValue ? 'text' : 'password' }}"
-            name="Field.Value{{ i }}"
-            [(ngModel)]="f.value"
-            class="monospaced"
-            *ngIf="f.type === fieldType.Hidden"
-            placeholder="{{ 'value' | i18n }}"
-            [disabled]="!cipher.viewPassword && !f.newField"
-            appInputVerbatim
-            attr.aria-describedby="fieldName{{ i }}"
-            [readonly]="!cipher.edit && editMode"
-          />
-          <!-- Linked -->
-          <select
-            id="fieldValue{{ i }}"
-            name="Field.Value{{ i }}"
-            [(ngModel)]="f.linkedId"
-            *ngIf="f.type === fieldType.Linked && cipher.linkedFieldOptions != null"
-            attr.aria-describedby="fieldName{{ i }}"
-          >
-            <option *ngFor="let o of linkedFieldOptions" [ngValue]="o.value">{{ o.name }}</option>
-          </select>
-        </div>
-        <!-- Boolean -->
-        <input
-          id="fieldValue{{ i }}"
-          name="Field.Value{{ i }}"
-          type="checkbox"
-          [(ngModel)]="f.value"
-          *ngIf="f.type === fieldType.Boolean"
-          appTrueFalseValue
-          trueValue="true"
-          falseValue="false"
-          attr.aria-describedby="fieldName{{ i }}"
-          [readonly]="!cipher.edit && editMode"
-        />
-        <div
-          class="action-buttons"
-          *ngIf="f.type === fieldType.Hidden && (cipher.viewPassword || f.newField)"
-        >
-          <button
-            type="button"
-            class="row-btn"
-            appStopClick
-            appA11yTitle="{{ 'toggleVisibility' | i18n }}"
-            [attr.aria-pressed]="f.showValue"
-            (click)="toggleFieldValue(f)"
-            attr.aria-describedby="fieldName{{ i }}"
-          >
-            <i
-              class="bwi bwi-lg"
-              aria-hidden="true"
-              [ngClass]="{ 'bwi-eye': !f.showValue, 'bwi-eye-slash': f.showValue }"
-            ></i>
-          </button>
-        </div>
-        <div
-          class="drag-handle"
-          appA11yTitle="{{ 'dragToSort' | i18n }}"
-          *ngIf="!(!cipher.edit && editMode)"
-          cdkDragHandle
-        >
-          <i class="bwi bwi-drag-and-drop" aria-hidden="true"></i>
-        </div>
-      </div>
-    </div>
-    <!-- Add new custom field -->
-    <div class="box-content-row" *ngIf="!(!cipher.edit && editMode)" appBoxRow>
-      <button type="button" appStopClick (click)="addField()">
-        <i class="bwi bwi-plus-circle bwi-fw bwi-lg" aria-hidden="true"></i>
-        {{ "newCustomField" | i18n }}
-      </button>
-      <label for="addFieldType" class="sr-only">{{ "type" | i18n }}</label>
-      <select id="addFieldType" name="AddFieldType" [(ngModel)]="addFieldType" class="field-type">
-        <option *ngFor="let o of addFieldTypeOptions" [ngValue]="o.value">{{ o.name }}</option>
-        <option
-          *ngIf="cipher.linkedFieldOptions != null"
-          [ngValue]="addFieldLinkedTypeOption.value"
-        >
-          {{ addFieldLinkedTypeOption.name }}
-        </option>
-      </select>
-    </div>
-  </div>
-</div>
diff --git a/apps/desktop/src/vault/app/vault/add-edit-custom-fields.component.ts b/apps/desktop/src/vault/app/vault/add-edit-custom-fields.component.ts
deleted file mode 100644
index b4be2406c4b..00000000000
--- a/apps/desktop/src/vault/app/vault/add-edit-custom-fields.component.ts
+++ /dev/null
@@ -1,16 +0,0 @@
-import { Component } from "@angular/core";
-
-import { AddEditCustomFieldsComponent as BaseAddEditCustomFieldsComponent } from "@bitwarden/angular/vault/components/add-edit-custom-fields.component";
-import { EventCollectionService } from "@bitwarden/common/abstractions/event/event-collection.service";
-import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-
-@Component({
-  selector: "app-vault-add-edit-custom-fields",
-  templateUrl: "add-edit-custom-fields.component.html",
-  standalone: false,
-})
-export class AddEditCustomFieldsComponent extends BaseAddEditCustomFieldsComponent {
-  constructor(i18nService: I18nService, eventCollectionService: EventCollectionService) {
-    super(i18nService, eventCollectionService);
-  }
-}
diff --git a/apps/desktop/src/vault/app/vault/add-edit.component.html b/apps/desktop/src/vault/app/vault/add-edit.component.html
deleted file mode 100644
index 2cd384885ce..00000000000
--- a/apps/desktop/src/vault/app/vault/add-edit.component.html
+++ /dev/null
@@ -1,826 +0,0 @@
-<form #form="ngForm" (ngSubmit)="submit()" [appApiAction]="formPromise">
-  <div class="content">
-    <div class="inner-content" *ngIf="cipher">
-      <div class="box">
-        <bit-callout type="info" *ngIf="allowOwnershipOptions() && !allowPersonal">
-          {{ "personalOwnershipPolicyInEffect" | i18n }}
-        </bit-callout>
-        <h2 class="box-header">
-          {{ title }}
-        </h2>
-        <div class="box-content">
-          <div class="box-content-row" *ngIf="!editMode" appBoxRow>
-            <label for="type">{{ "type" | i18n }}</label>
-            <select id="type" name="Type" [(ngModel)]="cipher.type" (change)="typeChange()">
-              <option *ngFor="let item of menuItems$ | async" [ngValue]="item.type">
-                {{ item.labelKey | i18n }}
-              </option>
-            </select>
-          </div>
-          <div class="box-content-row" appBoxRow>
-            <label for="name">{{ "name" | i18n }}</label>
-            <input
-              id="name"
-              type="text"
-              name="Name"
-              [(ngModel)]="cipher.name"
-              [appAutofocus]="!editMode"
-              [readonly]="!cipher.edit && editMode"
-            />
-          </div>
-          <!-- Login -->
-          <div *ngIf="cipher.type === cipherType.Login">
-            <div class="box-content-row box-content-row-flex" appBoxRow>
-              <div class="row-main">
-                <label for="loginUsername">{{ "username" | i18n }}</label>
-                <input
-                  id="loginUsername"
-                  type="text"
-                  name="Login.Username"
-                  [(ngModel)]="cipher.login.username"
-                  appInputVerbatim
-                  [readonly]="!cipher.edit && editMode"
-                />
-              </div>
-              <div class="action-buttons">
-                <button
-                  type="button"
-                  class="row-btn"
-                  appStopClick
-                  appA11yTitle="{{ 'generateUsername' | i18n }}"
-                  (click)="generateUsername()"
-                  *ngIf="!(!cipher.edit && editMode)"
-                >
-                  <i class="bwi bwi-lg bwi-generate" aria-hidden="true"></i>
-                </button>
-              </div>
-            </div>
-            <div class="box-content-row box-content-row-flex" appBoxRow>
-              <div class="row-main">
-                <label for="loginPassword">{{ "password" | i18n }}</label>
-                <input
-                  id="loginPassword"
-                  class="monospaced"
-                  type="{{ showPassword ? 'text' : 'password' }}"
-                  name="Login.Password"
-                  [(ngModel)]="cipher.login.password"
-                  [disabled]="!cipher.viewPassword"
-                  [readonly]="!cipher.edit && editMode"
-                  appInputVerbatim
-                />
-              </div>
-              <div class="action-buttons" *ngIf="cipher.viewPassword">
-                <button
-                  type="button"
-                  #checkPasswordBtn
-                  class="row-btn btn"
-                  appA11yTitle="{{ 'checkPassword' | i18n }}"
-                  (click)="checkPassword()"
-                  [appApiAction]="checkPasswordPromise"
-                  [disabled]="$any(checkPasswordBtn).loading"
-                >
-                  <i
-                    class="bwi bwi-lg bwi-check-circle"
-                    [hidden]="$any(checkPasswordBtn).loading"
-                    aria-hidden="true"
-                  ></i>
-                  <i
-                    class="bwi bwi-lg bwi-spinner bwi-spin"
-                    [hidden]="!$any(checkPasswordBtn).loading"
-                    aria-hidden="true"
-                  ></i>
-                </button>
-                <button
-                  type="button"
-                  class="row-btn"
-                  appStopClick
-                  appA11yTitle="{{ 'toggleVisibility' | i18n }}"
-                  [attr.aria-pressed]="showPassword"
-                  (click)="togglePassword()"
-                >
-                  <i
-                    class="bwi bwi-lg"
-                    aria-hidden="true"
-                    [ngClass]="{ 'bwi-eye': !showPassword, 'bwi-eye-slash': showPassword }"
-                  ></i>
-                </button>
-                <button
-                  type="button"
-                  class="row-btn"
-                  appStopClick
-                  appA11yTitle="{{ 'generatePassword' | i18n }}"
-                  (click)="generatePassword()"
-                  *ngIf="!(!cipher.edit && editMode)"
-                >
-                  <i class="bwi bwi-lg bwi-generate" aria-hidden="true"></i>
-                </button>
-              </div>
-            </div>
-            <!--Passkey-->
-            <div
-              class="box-content-row box-content-row-multi text-muted"
-              *ngIf="cipher.login.hasFido2Credentials && !cloneMode"
-              appBoxRow
-              tabindex="0"
-              attr.aria-label="{{ 'typePasskey' | i18n }} {{ fido2CredentialCreationDateValue }}"
-            >
-              <button
-                type="button"
-                appStopClick
-                (click)="removePasskey()"
-                appA11yTitle="{{ 'removePasskey' | i18n }}"
-                *ngIf="!(!cipher.edit && editMode)"
-              >
-                <i class="bwi bwi-fw bwi-minus-circle bwi-lg" aria-hidden="true"></i>
-              </button>
-              <div class="row-main">
-                <span class="row-label">{{ "typePasskey" | i18n }}</span>
-                {{ fido2CredentialCreationDateValue }}
-              </div>
-            </div>
-
-            <div class="box-content-row" appBoxRow>
-              <label for="loginTotp">{{ "authenticatorKeyTotp" | i18n }}</label>
-              <input
-                id="loginTotp"
-                type="{{ cipher.viewPassword ? 'text' : 'password' }}"
-                name="Login.Totp"
-                class="monospaced"
-                [(ngModel)]="cipher.login.totp"
-                [disabled]="!cipher.viewPassword"
-                [readonly]="!cipher.edit && editMode"
-                appInputVerbatim
-              />
-            </div>
-          </div>
-          <!-- Card -->
-          <div *ngIf="cipher.type === cipherType.Card">
-            <div class="box-content-row" appBoxRow>
-              <label for="cardCardholderName">{{ "cardholderName" | i18n }}</label>
-              <input
-                id="cardCardholderName"
-                type="text"
-                name="Card.CardCardholderName"
-                [(ngModel)]="cipher.card.cardholderName"
-                [readonly]="!cipher.edit && editMode"
-              />
-            </div>
-            <div class="box-content-row box-content-row-flex" appBoxRow>
-              <div class="row-main">
-                <label for="cardNumber">{{ "number" | i18n }}</label>
-                <input
-                  id="cardNumber"
-                  class="monospaced"
-                  type="{{ showCardNumber ? 'text' : 'password' }}"
-                  name="Card.Number"
-                  (input)="onCardNumberChange()"
-                  [(ngModel)]="cipher.card.number"
-                  appInputVerbatim
-                  [readonly]="!cipher.edit && editMode"
-                />
-              </div>
-              <div class="action-buttons">
-                <button
-                  type="button"
-                  class="row-btn"
-                  appStopClick
-                  appA11yTitle="{{ 'toggleVisibility' | i18n }}"
-                  [attr.aria-pressed]="showCardNumber"
-                  (click)="toggleCardNumber()"
-                >
-                  <i
-                    class="bwi bwi-lg"
-                    aria-hidden="true"
-                    [ngClass]="{ 'bwi-eye': !showCardNumber, 'bwi-eye-slash': showCardNumber }"
-                  ></i>
-                </button>
-              </div>
-            </div>
-            <div class="box-content-row" appBoxRow>
-              <label for="cardBrand">{{ "brand" | i18n }}</label>
-              <span *ngIf="!(!cipher.edit && editMode); else readonlyCardBrand">
-                <select id="cardBrand" name="Card.Brand" [(ngModel)]="cipher.card.brand">
-                  <option *ngFor="let o of cardBrandOptions" [ngValue]="o.value">
-                    {{ o.name }}
-                  </option>
-                </select>
-              </span>
-              <ng-template #readonlyCardBrand>
-                <input
-                  id="cardBrand"
-                  name="Card.Brand"
-                  type="text"
-                  [readonly]="true"
-                  [value]="cipher.card.brand"
-                />
-              </ng-template>
-            </div>
-            <div class="box-content-row" appBoxRow>
-              <label for="cardExpMonth">{{ "expirationMonth" | i18n }}</label>
-              <span *ngIf="!(!cipher.edit && editMode); else readonlyCardExpMonth">
-                <select id="cardExpMonth" name="Card.ExpMonth" [(ngModel)]="cipher.card.expMonth">
-                  <option *ngFor="let o of cardExpMonthOptions" [ngValue]="o.value">
-                    {{ o.name }}
-                  </option>
-                </select>
-              </span>
-              <ng-template #readonlyCardExpMonth>
-                <input
-                  id="cardExpMonth"
-                  type="text"
-                  name="Card.ExpMonth"
-                  [readonly]="true"
-                  [value]="getCardExpMonthDisplay()"
-                />
-              </ng-template>
-            </div>
-            <div class="box-content-row" appBoxRow>
-              <label for="cardExpYear">{{ "expirationYear" | i18n }}</label>
-              <input
-                id="cardExpYear"
-                type="text"
-                name="Card.ExpYear"
-                [(ngModel)]="cipher.card.expYear"
-                placeholder="{{ 'ex' | i18n }} {{ currentDate | date: 'yyyy' }}"
-                [readonly]="!cipher.edit && editMode"
-              />
-            </div>
-            <div class="box-content-row box-content-row-flex" appBoxRow>
-              <div class="row-main">
-                <label for="cardCode">{{ "securityCode" | i18n }}</label>
-                <input
-                  id="cardCode"
-                  class="monospaced"
-                  type="{{ showCardCode ? 'text' : 'password' }}"
-                  name="Card.Code"
-                  [(ngModel)]="cipher.card.code"
-                  appInputVerbatim
-                  [readonly]="!cipher.edit && editMode"
-                />
-              </div>
-              <div class="action-buttons">
-                <button
-                  type="button"
-                  class="row-btn"
-                  appStopClick
-                  appA11yTitle="{{ 'toggleVisibility' | i18n }}"
-                  [attr.aria-pressed]="showCardCode"
-                  (click)="toggleCardCode()"
-                >
-                  <i
-                    class="bwi bwi-lg"
-                    aria-hidden="true"
-                    [ngClass]="{ 'bwi-eye': !showCardCode, 'bwi-eye-slash': showCardCode }"
-                  ></i>
-                </button>
-              </div>
-            </div>
-          </div>
-          <!-- Identity -->
-          <div *ngIf="cipher.type === cipherType.Identity">
-            <div class="box-content-row" appBoxRow>
-              <label for="idTitle">{{ "title" | i18n }}</label>
-              <span *ngIf="!(!cipher.edit && editMode); else readonlyIdTitle">
-                <select id="idTitle" name="Identity.Title" [(ngModel)]="cipher.identity.title">
-                  <option *ngFor="let o of identityTitleOptions" [ngValue]="o.value">
-                    {{ o.name }}
-                  </option>
-                </select>
-              </span>
-              <ng-template #readonlyIdTitle>
-                <input
-                  id="idTitle"
-                  name="Identity.Title"
-                  type="text"
-                  [readonly]="true"
-                  [value]="cipher.identity.title"
-                />
-              </ng-template>
-            </div>
-            <div class="box-content-row" appBoxRow>
-              <label for="idFirstName">{{ "firstName" | i18n }}</label>
-              <input
-                id="idFirstName"
-                type="text"
-                name="Identity.FirstName"
-                [(ngModel)]="cipher.identity.firstName"
-                [readonly]="!cipher.edit && editMode"
-              />
-            </div>
-            <div class="box-content-row" appBoxRow>
-              <label for="idMiddleName">{{ "middleName" | i18n }}</label>
-              <input
-                id="idMiddleName"
-                type="text"
-                name="Identity.MiddleName"
-                [(ngModel)]="cipher.identity.middleName"
-                [readonly]="!cipher.edit && editMode"
-              />
-            </div>
-            <div class="box-content-row" appBoxRow>
-              <label for="idLastName">{{ "lastName" | i18n }}</label>
-              <input
-                id="idLastName"
-                type="text"
-                name="Identity.LastName"
-                [(ngModel)]="cipher.identity.lastName"
-                [readonly]="!cipher.edit && editMode"
-              />
-            </div>
-            <div class="box-content-row" appBoxRow>
-              <label for="idUsername">{{ "username" | i18n }}</label>
-              <input
-                id="idUsername"
-                type="text"
-                name="Identity.Username"
-                [(ngModel)]="cipher.identity.username"
-                appInputVerbatim
-                [readonly]="!cipher.edit && editMode"
-              />
-            </div>
-            <div class="box-content-row" appBoxRow>
-              <label for="idCompany">{{ "company" | i18n }}</label>
-              <input
-                id="idCompany"
-                type="text"
-                name="Identity.Company"
-                [(ngModel)]="cipher.identity.company"
-                [readonly]="!cipher.edit && editMode"
-              />
-            </div>
-            <div class="box-content-row" appBoxRow>
-              <label for="idSsn">{{ "ssn" | i18n }}</label>
-              <input
-                id="idSsn"
-                type="text"
-                name="Identity.SSN"
-                [(ngModel)]="cipher.identity.ssn"
-                appInputVerbatim
-                [readonly]="!cipher.edit && editMode"
-              />
-            </div>
-            <div class="box-content-row" appBoxRow>
-              <label for="idPassportNumber">{{ "passportNumber" | i18n }}</label>
-              <input
-                id="idPassportNumber"
-                type="text"
-                name="Identity.PassportNumber"
-                [(ngModel)]="cipher.identity.passportNumber"
-                appInputVerbatim
-                [readonly]="!cipher.edit && editMode"
-              />
-            </div>
-            <div class="box-content-row" appBoxRow>
-              <label for="idLicenseNumber">{{ "licenseNumber" | i18n }}</label>
-              <input
-                id="idLicenseNumber"
-                type="text"
-                name="Identity.LicenseNumber"
-                [(ngModel)]="cipher.identity.licenseNumber"
-                appInputVerbatim
-                [readonly]="!cipher.edit && editMode"
-              />
-            </div>
-            <div class="box-content-row" appBoxRow>
-              <label for="idEmail">{{ "email" | i18n }}</label>
-              <input
-                id="idEmail"
-                type="text"
-                name="Identity.Email"
-                [(ngModel)]="cipher.identity.email"
-                appInputVerbatim
-                [readonly]="!cipher.edit && editMode"
-              />
-            </div>
-            <div class="box-content-row" appBoxRow>
-              <label for="idPhone">{{ "phone" | i18n }}</label>
-              <input
-                id="idPhone"
-                type="text"
-                name="Identity.Phone"
-                [(ngModel)]="cipher.identity.phone"
-                [readonly]="!cipher.edit && editMode"
-              />
-            </div>
-            <div class="box-content-row" appBoxRow>
-              <label for="idAddress1">{{ "address1" | i18n }}</label>
-              <input
-                id="idAddress1"
-                type="text"
-                name="Identity.Address1"
-                [(ngModel)]="cipher.identity.address1"
-                [readonly]="!cipher.edit && editMode"
-              />
-            </div>
-            <div class="box-content-row" appBoxRow>
-              <label for="idAddress2">{{ "address2" | i18n }}</label>
-              <input
-                id="idAddress2"
-                type="text"
-                name="Identity.Address2"
-                [(ngModel)]="cipher.identity.address2"
-                [readonly]="!cipher.edit && editMode"
-              />
-            </div>
-            <div class="box-content-row" appBoxRow>
-              <label for="idAddress3">{{ "address3" | i18n }}</label>
-              <input
-                id="idAddress3"
-                type="text"
-                name="Identity.Address3"
-                [(ngModel)]="cipher.identity.address3"
-                [readonly]="!cipher.edit && editMode"
-              />
-            </div>
-            <div class="box-content-row" appBoxRow>
-              <label for="idCity">{{ "cityTown" | i18n }}</label>
-              <input
-                id="idCity"
-                type="text"
-                name="Identity.City"
-                [(ngModel)]="cipher.identity.city"
-                [readonly]="!cipher.edit && editMode"
-              />
-            </div>
-            <div class="box-content-row" appBoxRow>
-              <label for="idState">{{ "stateProvince" | i18n }}</label>
-              <input
-                id="idState"
-                type="text"
-                name="Identity.State"
-                [(ngModel)]="cipher.identity.state"
-                [readonly]="!cipher.edit && editMode"
-              />
-            </div>
-            <div class="box-content-row" appBoxRow>
-              <label for="idPostalCode">{{ "zipPostalCode" | i18n }}</label>
-              <input
-                id="idPostalCode"
-                type="text"
-                name="Identity.PostalCode"
-                [(ngModel)]="cipher.identity.postalCode"
-                [readonly]="!cipher.edit && editMode"
-              />
-            </div>
-            <div class="box-content-row" appBoxRow>
-              <label for="idCountry">{{ "country" | i18n }}</label>
-              <input
-                id="idCountry"
-                type="text"
-                name="Identity.Country"
-                [(ngModel)]="cipher.identity.country"
-                [readonly]="!cipher.edit && editMode"
-              />
-            </div>
-          </div>
-          <!-- Ssh Key -->
-          <div *ngIf="cipher.type === cipherType.SshKey">
-            <div class="box-content-row box-content-row-flex" appBoxRow>
-              <div class="row-main">
-                <label for="sshPrivateKey">{{ "sshPrivateKey" | i18n }}</label>
-                <div
-                  *ngIf="!showPrivateKey"
-                  class="monospaced"
-                  style="white-space: pre-line"
-                  [innerText]="cipher.sshKey.maskedPrivateKey"
-                ></div>
-                <div
-                  *ngIf="showPrivateKey"
-                  class="monospaced"
-                  style="white-space: pre-line"
-                  [innerText]="cipher.sshKey.privateKey"
-                ></div>
-              </div>
-              <div class="action-buttons">
-                <button
-                  type="button"
-                  class="row-btn"
-                  appStopClick
-                  appA11yTitle="{{ 'copySshPrivateKey' | i18n }}"
-                  (click)="copy(this.cipher.sshKey.privateKey, 'sshPrivateKey', 'SshPrivateKey')"
-                >
-                  <i class="bwi bwi-lg bwi-clone" aria-hidden="true"></i>
-                </button>
-                <button
-                  type="button"
-                  class="row-btn"
-                  appStopClick
-                  appA11yTitle="{{ 'toggleVisibility' | i18n }}"
-                  (click)="togglePrivateKey()"
-                >
-                  <i
-                    class="bwi bwi-lg"
-                    aria-hidden="true"
-                    [ngClass]="{ 'bwi-eye': !showPrivateKey, 'bwi-eye-slash': showPrivateKey }"
-                  ></i>
-                </button>
-                <button
-                  type="button"
-                  class="row-btn"
-                  appStopClick
-                  appA11yTitle="{{ 'importSshKeyFromClipboard' | i18n }}"
-                  (click)="importSshKeyFromClipboard()"
-                >
-                  <i class="bwi bwi-lg bwi-import" aria-hidden="true"></i>
-                </button>
-              </div>
-            </div>
-            <div class="box-content-row box-content-row-flex" appBoxRow>
-              <div class="row-main">
-                <label for="sshPublicKey">{{ "sshPublicKey" | i18n }}</label>
-                <input
-                  id="sshPublicKey"
-                  type="text"
-                  name="SSHKey.SSHPublicKey"
-                  [ngModel]="cipher.sshKey.publicKey"
-                  readonly
-                />
-              </div>
-              <div class="action-buttons">
-                <button
-                  type="button"
-                  class="row-btn"
-                  appStopClick
-                  (click)="copy(cipher.sshKey.publicKey, 'sshPublicKey', 'SSHPublicKey')"
-                >
-                  <i class="bwi bwi-lg bwi-clone" aria-hidden="true"></i>
-                </button>
-              </div>
-            </div>
-            <div class="box-content-row box-content-row-flex" appBoxRow>
-              <div class="row-main">
-                <label for="sshKeyFingerprint">{{ "sshFingerprint" | i18n }}</label>
-                <input
-                  id="sshKeyFingerprint"
-                  type="text"
-                  name="SSHKey.SSHKeyFingerprint"
-                  [ngModel]="cipher.sshKey.keyFingerprint"
-                  readonly
-                />
-              </div>
-              <div class="action-buttons">
-                <button
-                  type="button"
-                  class="row-btn"
-                  appStopClick
-                  (click)="copy(cipher.sshKey.keyFingerprint, 'sshFingerprint', 'SSHFingerprint')"
-                  appA11yTitle="{{ 'generateSSHKey' | i18n }}"
-                >
-                  <i class="bwi bwi-lg bwi-clone" aria-hidden="true"></i>
-                </button>
-              </div>
-            </div>
-          </div>
-        </div>
-      </div>
-      <div class="box" *ngIf="cipher.type === cipherType.Login">
-        <div class="box-content">
-          <ng-container *ngIf="cipher.login.hasUris">
-            <div
-              role="group"
-              class="box-content-row box-content-row-multi"
-              appBoxRow
-              *ngFor="let u of cipher.login.uris; let i = index; trackBy: trackByFunction"
-              attr.aria-label="{{ 'uriPosition' | i18n: i + 1 }}"
-            >
-              <button
-                type="button"
-                appStopClick
-                (click)="removeUri(u)"
-                appA11yTitle="{{ 'remove' | i18n }}"
-                *ngIf="!(!cipher.edit && editMode)"
-              >
-                <i class="bwi bwi-minus-circle bwi-lg" aria-hidden="true"></i>
-              </button>
-              <div class="row-main">
-                <label for="loginUri{{ i }}">{{ "uriPosition" | i18n: i + 1 }}</label>
-                <input
-                  id="loginUri{{ i }}"
-                  type="text"
-                  name="Login.Uris[{{ i }}].Uri"
-                  [(ngModel)]="u.uri"
-                  placeholder="{{ 'ex' | i18n }} https://google.com"
-                  [readonly]="!cipher.edit && editMode"
-                  appInputVerbatim
-                />
-                <label for="loginUriMatch{{ i }}" class="sr-only">
-                  {{ "matchDetection" | i18n }} {{ i + 1 }}
-                </label>
-                <select
-                  id="loginUriMatch{{ i }}"
-                  name="Login.Uris[{{ i }}].Match"
-                  [(ngModel)]="u.match"
-                  [hidden]="
-                    $any(u).showOptions === false ||
-                    ($any(u).showOptions == null && u.match == null)
-                  "
-                  (change)="loginUriMatchChanged(u)"
-                >
-                  <option *ngFor="let o of uriMatchOptions" [ngValue]="o.value">
-                    {{ o.name }}
-                  </option>
-                </select>
-              </div>
-              <div class="action-buttons">
-                <button
-                  type="button"
-                  class="row-btn"
-                  appStopClick
-                  appA11yTitle="{{ 'toggleOptions' | i18n }}"
-                  (click)="toggleUriOptions(u)"
-                  [attr.aria-expanded]="
-                    !(
-                      $any(u).showOptions === false ||
-                      ($any(u).showOptions == null && u.match == null)
-                    )
-                  "
-                  [disabled]="!cipher.edit && editMode"
-                >
-                  <i class="bwi bwi-lg bwi-cog" aria-hidden="true"></i>
-                </button>
-              </div>
-            </div>
-          </ng-container>
-          <button
-            type="button"
-            appStopClick
-            (click)="addUri()"
-            class="box-content-row"
-            *ngIf="!(!cipher.edit && editMode)"
-          >
-            <i class="bwi bwi-plus-circle bwi-fw bwi-lg" aria-hidden="true"></i>
-            {{ "newUri" | i18n }}
-          </button>
-        </div>
-      </div>
-      <div class="box">
-        <div class="box-content">
-          <div class="box-content-row" appBoxRow>
-            <label for="folder">{{ "folder" | i18n }}</label>
-            <select id="folder" name="FolderId" [(ngModel)]="cipher.folderId">
-              <option *ngFor="let f of folders$ | async" [ngValue]="f.id">{{ f.name }}</option>
-            </select>
-          </div>
-          <div class="box-content-row box-content-row-checkbox" appBoxRow>
-            <label for="favorite">{{ "favorite" | i18n }}</label>
-            <input id="favorite" type="checkbox" name="Favorite" [(ngModel)]="cipher.favorite" />
-          </div>
-          <div class="box-content-row box-content-row-checkbox" appBoxRow *ngIf="canUseReprompt">
-            <label for="passwordPrompt"
-              >{{ "passwordPrompt" | i18n }}
-              <button
-                type="button"
-                appA11yTitle="{{ 'learnMore' | i18n }}"
-                (click)="openHelpReprompt()"
-              >
-                <i class="bwi bwi-question-circle" aria-hidden="true"></i>
-              </button>
-            </label>
-            <input
-              id="passwordPrompt"
-              type="checkbox"
-              name="PasswordPrompt"
-              [ngModel]="reprompt"
-              (change)="repromptChanged()"
-              [disabled]="!cipher.edit && editMode"
-            />
-          </div>
-          <button
-            type="button"
-            class="box-content-row box-content-row-flex text-default"
-            appStopClick
-            (click)="attachments()"
-            *ngIf="editMode && !cloneMode"
-          >
-            <div class="row-main">{{ "attachments" | i18n }}</div>
-            <i class="bwi bwi-angle-right row-sub-icon" aria-hidden="true"></i>
-          </button>
-          <button
-            type="button"
-            class="box-content-row box-content-row-flex text-default"
-            appStopClick
-            (click)="editCollections()"
-            *ngIf="editMode && !cloneMode && cipher.organizationId"
-          >
-            <div class="row-main">{{ "collections" | i18n }}</div>
-            <i class="bwi bwi-angle-right row-sub-icon" aria-hidden="true"></i>
-          </button>
-        </div>
-      </div>
-      <div class="box">
-        <h2 class="box-header">
-          <label for="notes">{{ "notes" | i18n }}</label>
-        </h2>
-        <div class="box-content">
-          <div class="box-content-row" appBoxRow>
-            <textarea
-              id="notes"
-              name="Notes"
-              rows="6"
-              [(ngModel)]="cipher.notes"
-              [readonly]="!cipher.edit && editMode"
-            ></textarea>
-          </div>
-        </div>
-      </div>
-      <app-vault-add-edit-custom-fields
-        *ngIf="!(!cipher.hasFields && !cipher.edit && editMode)"
-        [cipher]="cipher"
-        [thisCipherType]="cipher.type"
-        [editMode]="editMode"
-      >
-      </app-vault-add-edit-custom-fields>
-      <div class="box" *ngIf="allowOwnershipOptions()">
-        <h2 class="box-header">
-          {{ "ownership" | i18n }}
-        </h2>
-        <div class="box-content">
-          <div class="box-content-row" appBoxRow>
-            <label for="organizationId">{{ "whoOwnsThisItem" | i18n }}</label>
-            <select
-              id="organizationId"
-              class="form-control"
-              name="OrganizationId"
-              [(ngModel)]="cipher.organizationId"
-              (change)="organizationChanged()"
-            >
-              <option *ngFor="let o of ownershipOptions" [ngValue]="o.value">{{ o.name }}</option>
-            </select>
-          </div>
-        </div>
-      </div>
-      <div class="box" *ngIf="(!editMode || cloneMode) && cipher.organizationId">
-        <h2 class="box-header">
-          {{ "collections" | i18n }}
-        </h2>
-        <div class="box-content" *ngIf="!collections || !collections.length">
-          {{ "noCollectionsInList" | i18n }}
-        </div>
-        <div class="box-content" *ngIf="collections && collections.length">
-          <div
-            class="box-content-row box-content-row-checkbox"
-            *ngFor="let c of collections; let i = index"
-            appBoxRow
-          >
-            <label for="collection_{{ i }}">{{ c.name }}</label>
-            <input
-              id="collection_{{ i }}"
-              type="checkbox"
-              [(ngModel)]="$any(c).checked"
-              name="Collection[{{ i }}].Checked"
-            />
-          </div>
-        </div>
-      </div>
-    </div>
-  </div>
-  <div class="footer">
-    <button type="submit" class="primary" [disabled]="$any(form).loading">
-      <span [hidden]="$any(form).loading">{{ "save" | i18n }}</span>
-      <i
-        class="bwi bwi-spinner bwi-spin bwi-lg bwi-fw"
-        [hidden]="!$any(form).loading"
-        aria-hidden="true"
-      ></i>
-    </button>
-    <button type="button" (click)="cancel()">
-      {{ "cancel" | i18n }}
-    </button>
-    <div class="right">
-      <button
-        type="button"
-        (click)="share()"
-        *ngIf="
-          editMode &&
-          cipher &&
-          !cipher.organizationId &&
-          !cloneMode &&
-          writeableCollections.length > 0
-        "
-      >
-        {{ "move" | i18n }}
-      </button>
-      <button
-        #deleteBtn
-        type="button"
-        (click)="delete()"
-        class="danger"
-        appA11yTitle="{{ 'delete' | i18n }}"
-        *ngIf="editMode && !cloneMode && (canDeleteCipher$ | async)"
-        [disabled]="$any(deleteBtn).loading"
-        [appApiAction]="deletePromise"
-      >
-        <i
-          class="bwi bwi-trash bwi-lg bwi-fw"
-          [hidden]="$any(deleteBtn).loading"
-          aria-hidden="true"
-        ></i>
-        <i
-          class="bwi bwi-spinner bwi-spin bwi-lg bwi-fw"
-          [hidden]="!$any(deleteBtn).loading"
-          aria-hidden="true"
-        ></i>
-      </button>
-    </div>
-  </div>
-</form>
diff --git a/apps/desktop/src/vault/app/vault/add-edit.component.ts b/apps/desktop/src/vault/app/vault/add-edit.component.ts
deleted file mode 100644
index e9b18270f2d..00000000000
--- a/apps/desktop/src/vault/app/vault/add-edit.component.ts
+++ /dev/null
@@ -1,185 +0,0 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
-import { DatePipe } from "@angular/common";
-import { Component, NgZone, OnChanges, OnDestroy, OnInit, ViewChild } from "@angular/core";
-import { NgForm } from "@angular/forms";
-import { map, shareReplay } from "rxjs";
-
-import { CollectionService } from "@bitwarden/admin-console/common";
-import { AddEditComponent as BaseAddEditComponent } from "@bitwarden/angular/vault/components/add-edit.component";
-import { AuditService } from "@bitwarden/common/abstractions/audit.service";
-import { EventCollectionService } from "@bitwarden/common/abstractions/event/event-collection.service";
-import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
-import { PolicyService } from "@bitwarden/common/admin-console/abstractions/policy/policy.service.abstraction";
-import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
-import { BroadcasterService } from "@bitwarden/common/platform/abstractions/broadcaster.service";
-import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
-import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
-import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
-import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
-import { SdkService } from "@bitwarden/common/platform/abstractions/sdk/sdk.service";
-import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
-import { FolderService } from "@bitwarden/common/vault/abstractions/folder/folder.service.abstraction";
-import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
-import { CipherAuthorizationService } from "@bitwarden/common/vault/services/cipher-authorization.service";
-import { RestrictedItemTypesService } from "@bitwarden/common/vault/services/restricted-item-types.service";
-import { CIPHER_MENU_ITEMS } from "@bitwarden/common/vault/types/cipher-menu-items";
-import { DialogService, ToastService } from "@bitwarden/components";
-import { PasswordRepromptService, SshImportPromptService } from "@bitwarden/vault";
-
-const BroadcasterSubscriptionId = "AddEditComponent";
-
-@Component({
-  selector: "app-vault-add-edit",
-  templateUrl: "add-edit.component.html",
-  standalone: false,
-})
-export class AddEditComponent extends BaseAddEditComponent implements OnInit, OnChanges, OnDestroy {
-  @ViewChild("form")
-  private form: NgForm;
-  menuItems$ = this.restrictedItemTypesService.restricted$.pipe(
-    map((restrictedItemTypes) =>
-      // Filter out restricted item types from the default CIPHER_MENU_ITEMS array
-      CIPHER_MENU_ITEMS.filter(
-        (typeOption) =>
-          !restrictedItemTypes.some(
-            (restrictedType) => restrictedType.cipherType === typeOption.type,
-          ),
-      ),
-    ),
-    shareReplay({ bufferSize: 1, refCount: true }),
-  );
-
-  constructor(
-    cipherService: CipherService,
-    folderService: FolderService,
-    i18nService: I18nService,
-    platformUtilsService: PlatformUtilsService,
-    auditService: AuditService,
-    accountService: AccountService,
-    collectionService: CollectionService,
-    messagingService: MessagingService,
-    eventCollectionService: EventCollectionService,
-    policyService: PolicyService,
-    passwordRepromptService: PasswordRepromptService,
-    private broadcasterService: BroadcasterService,
-    private ngZone: NgZone,
-    logService: LogService,
-    organizationService: OrganizationService,
-    dialogService: DialogService,
-    datePipe: DatePipe,
-    configService: ConfigService,
-    toastService: ToastService,
-    cipherAuthorizationService: CipherAuthorizationService,
-    sdkService: SdkService,
-    sshImportPromptService: SshImportPromptService,
-    protected restrictedItemTypesService: RestrictedItemTypesService,
-  ) {
-    super(
-      cipherService,
-      folderService,
-      i18nService,
-      platformUtilsService,
-      auditService,
-      accountService,
-      collectionService,
-      messagingService,
-      eventCollectionService,
-      policyService,
-      logService,
-      passwordRepromptService,
-      organizationService,
-      dialogService,
-      window,
-      datePipe,
-      configService,
-      cipherAuthorizationService,
-      toastService,
-      sdkService,
-      sshImportPromptService,
-    );
-  }
-
-  async ngOnInit() {
-    await super.ngOnInit();
-    await this.load();
-    this.broadcasterService.subscribe(BroadcasterSubscriptionId, async (message: any) => {
-      this.ngZone.run(() => {
-        switch (message.command) {
-          case "windowHidden":
-            this.onWindowHidden();
-            break;
-          default:
-        }
-      });
-    });
-    // We use ngOnChanges for everything else instead.
-  }
-
-  async ngOnChanges() {
-    await this.load();
-  }
-
-  ngOnDestroy() {
-    this.broadcasterService.unsubscribe(BroadcasterSubscriptionId);
-  }
-
-  async load() {
-    if (
-      document.querySelectorAll("app-vault-add-edit .ng-dirty").length === 0 ||
-      (this.cipher != null && this.cipherId !== this.cipher.id)
-    ) {
-      this.cipher = null;
-    }
-
-    await super.load();
-  }
-
-  onWindowHidden() {
-    this.showPassword = false;
-    this.showCardNumber = false;
-    this.showCardCode = false;
-    if (this.cipher !== null && this.cipher.hasFields) {
-      this.cipher.fields.forEach((field) => {
-        field.showValue = false;
-      });
-    }
-  }
-
-  allowOwnershipOptions(): boolean {
-    return (
-      (!this.editMode || this.cloneMode) &&
-      this.ownershipOptions &&
-      (this.ownershipOptions.length > 1 || !this.allowPersonal)
-    );
-  }
-
-  markPasswordAsDirty() {
-    this.form.controls["Login.Password"].markAsDirty();
-  }
-
-  openHelpReprompt() {
-    this.platformUtilsService.launchUri(
-      "https://bitwarden.com/help/managing-items/#protect-individual-items",
-    );
-  }
-
-  /**
-   * Updates the cipher when an attachment is altered.
-   * Note: This only updates the `attachments` and `revisionDate`
-   * properties to ensure any in-progress edits are not lost.
-   */
-  patchCipherAttachments(cipher: CipherView) {
-    this.cipher.attachments = cipher.attachments;
-    this.cipher.revisionDate = cipher.revisionDate;
-  }
-
-  truncateString(value: string, length: number) {
-    return value.length > length ? value.substring(0, length) + "..." : value;
-  }
-
-  togglePrivateKey() {
-    this.showPrivateKey = !this.showPrivateKey;
-  }
-}
diff --git a/apps/desktop/src/vault/app/vault/attachments.component.html b/apps/desktop/src/vault/app/vault/attachments.component.html
deleted file mode 100644
index addd068f1a4..00000000000
--- a/apps/desktop/src/vault/app/vault/attachments.component.html
+++ /dev/null
@@ -1,69 +0,0 @@
-<div class="modal fade" role="dialog" aria-modal="true" aria-labelledby="attachmentsTitle">
-  <div class="modal-dialog" role="document">
-    <form class="modal-content" #form (ngSubmit)="submit()" [appApiAction]="formPromise">
-      <div class="modal-body">
-        <div class="box" *ngIf="cipher && cipher.hasAttachments">
-          <h1 class="box-header" id="attachmentsTitle">
-            {{ "attachments" | i18n }}
-          </h1>
-          <div class="box-content no-hover">
-            <div class="box-content-row box-content-row-flex" *ngFor="let a of cipher.attachments">
-              <div class="row-main">
-                {{ a.fileName }}
-              </div>
-              <small class="row-sub-label">{{ a.sizeName }}</small>
-              <div class="action-buttons no-pad">
-                <button
-                  class="row-btn btn"
-                  type="button"
-                  appStopClick
-                  appA11yTitle="{{ 'delete' | i18n }}"
-                  (click)="delete(a)"
-                  #deleteBtn
-                  [appApiAction]="deletePromises[a.id]"
-                  [disabled]="$any(deleteBtn).loading"
-                >
-                  <i
-                    class="bwi bwi-trash bwi-lg bwi-fw"
-                    [hidden]="$any(deleteBtn).loading"
-                    aria-hidden="true"
-                  ></i>
-                  <i
-                    class="bwi bwi-spinner bwi-spin bwi-lg bwi-fw"
-                    [hidden]="!$any(deleteBtn).loading"
-                    aria-hidden="true"
-                  ></i>
-                </button>
-              </div>
-            </div>
-          </div>
-        </div>
-        <div class="box">
-          <h2 class="box-header">
-            {{ "newAttachment" | i18n }}
-          </h2>
-          <div class="box-content no-hover">
-            <div class="box-content-row">
-              <label for="file">{{ "file" | i18n }}</label>
-              <input type="file" id="file" name="file" aria-describedby="fileHelp" required />
-            </div>
-          </div>
-          <div id="fileHelp" class="box-footer">
-            {{ "maxFileSize" | i18n }}
-          </div>
-        </div>
-      </div>
-      <div class="modal-footer">
-        <button type="submit" class="primary" [disabled]="form.loading">
-          <span [hidden]="form.loading">{{ "save" | i18n }}</span>
-          <i
-            class="bwi bwi-spinner bwi-spin bwi-lg bwi-fw"
-            [hidden]="!form.loading"
-            aria-hidden="true"
-          ></i>
-        </button>
-        <button type="button" data-dismiss="modal">{{ "close" | i18n }}</button>
-      </div>
-    </form>
-  </div>
-</div>
diff --git a/apps/desktop/src/vault/app/vault/attachments.component.ts b/apps/desktop/src/vault/app/vault/attachments.component.ts
deleted file mode 100644
index a116a4d2acb..00000000000
--- a/apps/desktop/src/vault/app/vault/attachments.component.ts
+++ /dev/null
@@ -1,58 +0,0 @@
-import { Component } from "@angular/core";
-
-import { AttachmentsComponent as BaseAttachmentsComponent } from "@bitwarden/angular/vault/components/attachments.component";
-import { ApiService } from "@bitwarden/common/abstractions/api.service";
-import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
-import { BillingAccountProfileStateService } from "@bitwarden/common/billing/abstractions/account/billing-account-profile-state.service";
-import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
-import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
-import { FileDownloadService } from "@bitwarden/common/platform/abstractions/file-download/file-download.service";
-import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
-import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
-import { StateService } from "@bitwarden/common/platform/abstractions/state.service";
-import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
-import { DialogService, ToastService } from "@bitwarden/components";
-import { KeyService } from "@bitwarden/key-management";
-
-@Component({
-  selector: "app-vault-attachments",
-  templateUrl: "attachments.component.html",
-  standalone: false,
-})
-export class AttachmentsComponent extends BaseAttachmentsComponent {
-  constructor(
-    cipherService: CipherService,
-    i18nService: I18nService,
-    keyService: KeyService,
-    encryptService: EncryptService,
-    platformUtilsService: PlatformUtilsService,
-    apiService: ApiService,
-    logService: LogService,
-    stateService: StateService,
-    fileDownloadService: FileDownloadService,
-    dialogService: DialogService,
-    billingAccountProfileStateService: BillingAccountProfileStateService,
-    accountService: AccountService,
-    toastService: ToastService,
-    configService: ConfigService,
-  ) {
-    super(
-      cipherService,
-      i18nService,
-      keyService,
-      encryptService,
-      platformUtilsService,
-      apiService,
-      window,
-      logService,
-      stateService,
-      fileDownloadService,
-      dialogService,
-      billingAccountProfileStateService,
-      accountService,
-      toastService,
-      configService,
-    );
-  }
-}
diff --git a/apps/desktop/src/vault/app/vault/collections.component.html b/apps/desktop/src/vault/app/vault/collections.component.html
deleted file mode 100644
index a87cbc6b180..00000000000
--- a/apps/desktop/src/vault/app/vault/collections.component.html
+++ /dev/null
@@ -1,43 +0,0 @@
-<div class="modal fade" role="dialog" aria-modal="true" aria-labelledby="collectionsTitle">
-  <div class="modal-dialog" role="document">
-    <form class="modal-content" #form (ngSubmit)="submit()" [appApiAction]="formPromise">
-      <div class="modal-body">
-        <div class="box">
-          <h1 class="box-header" id="collectionsTitle">
-            {{ "collections" | i18n }}
-          </h1>
-          <div class="box-content" *ngIf="!collections || !collections.length">
-            {{ "noCollectionsInList" | i18n }}
-          </div>
-          <div class="box-content" *ngIf="collections && collections.length">
-            <div
-              class="box-content-row box-content-row-checkbox"
-              *ngFor="let c of collections; let i = index"
-              appBoxRow
-            >
-              <label for="collection_{{ i }}">{{ c.name }}</label>
-              <input
-                id="collection_{{ i }}"
-                type="checkbox"
-                [(ngModel)]="$any(c).checked"
-                name="Collection[{{ i }}].Checked"
-                [disabled]="!cipher.canAssignToCollections"
-              />
-            </div>
-          </div>
-        </div>
-      </div>
-      <div class="modal-footer">
-        <button type="submit" class="primary" [disabled]="form.loading">
-          <span [hidden]="form.loading">{{ "save" | i18n }}</span>
-          <i
-            class="bwi bwi-spinner bwi-spin bwi-lg bwi-fw"
-            [hidden]="!form.loading"
-            aria-hidden="true"
-          ></i>
-        </button>
-        <button type="button" data-dismiss="modal">{{ "cancel" | i18n }}</button>
-      </div>
-    </form>
-  </div>
-</div>
diff --git a/apps/desktop/src/vault/app/vault/collections.component.ts b/apps/desktop/src/vault/app/vault/collections.component.ts
deleted file mode 100644
index 46455d04cd2..00000000000
--- a/apps/desktop/src/vault/app/vault/collections.component.ts
+++ /dev/null
@@ -1,40 +0,0 @@
-import { Component } from "@angular/core";
-
-import { CollectionService } from "@bitwarden/admin-console/common";
-import { CollectionsComponent as BaseCollectionsComponent } from "@bitwarden/angular/admin-console/components/collections.component";
-import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
-import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
-import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
-import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
-import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
-import { ToastService } from "@bitwarden/components";
-
-@Component({
-  selector: "app-vault-collections",
-  templateUrl: "collections.component.html",
-  standalone: false,
-})
-export class CollectionsComponent extends BaseCollectionsComponent {
-  constructor(
-    cipherService: CipherService,
-    i18nService: I18nService,
-    collectionService: CollectionService,
-    platformUtilsService: PlatformUtilsService,
-    organizationService: OrganizationService,
-    logService: LogService,
-    accountService: AccountService,
-    toastService: ToastService,
-  ) {
-    super(
-      collectionService,
-      platformUtilsService,
-      i18nService,
-      cipherService,
-      organizationService,
-      logService,
-      accountService,
-      toastService,
-    );
-  }
-}
diff --git a/apps/desktop/src/vault/app/vault/folder-add-edit.component.html b/apps/desktop/src/vault/app/vault/folder-add-edit.component.html
deleted file mode 100644
index d22628df046..00000000000
--- a/apps/desktop/src/vault/app/vault/folder-add-edit.component.html
+++ /dev/null
@@ -1,59 +0,0 @@
-<div class="modal fade" role="dialog" aria-modal="true" aria-labelledby="folderAddEditTitle">
-  <div class="modal-dialog modal-sm" role="document">
-    <form
-      #form
-      class="modal-content"
-      (ngSubmit)="submit()"
-      [appApiAction]="formPromise"
-      [formGroup]="formGroup"
-    >
-      <div class="modal-body">
-        <div class="box">
-          <h1 class="box-header" id="folderAddEditTitle">
-            {{ title }}
-          </h1>
-          <div class="box-content">
-            <div class="box-content-row" appBoxRow>
-              <label for="name">{{ "name" | i18n }}</label>
-              <input id="name" type="text" formControlName="name" [appAutofocus]="!editMode" />
-            </div>
-          </div>
-        </div>
-      </div>
-      <div class="modal-footer">
-        <button type="submit" class="primary" [disabled]="form.loading">
-          <span [hidden]="form.loading">{{ "save" | i18n }}</span>
-          <i
-            class="bwi bwi-spinner bwi-spin bwi-lg bwi-fw"
-            [hidden]="!form.loading"
-            aria-hidden="true"
-          ></i>
-        </button>
-        <button type="button" data-dismiss="modal">{{ "cancel" | i18n }}</button>
-        <div class="right">
-          <button
-            #deleteBtn
-            type="button"
-            (click)="delete()"
-            class="danger"
-            appA11yTitle="{{ 'delete' | i18n }}"
-            *ngIf="editMode"
-            [disabled]="$any(deleteBtn).loading"
-            [appApiAction]="deletePromise"
-          >
-            <i
-              class="bwi bwi-trash bwi-lg bwi-fw"
-              [hidden]="$any(deleteBtn).loading"
-              aria-hidden="true"
-            ></i>
-            <i
-              class="bwi bwi-spinner bwi-spin bwi-lg bwi-fw"
-              [hidden]="!$any(deleteBtn).loading"
-              aria-hidden="true"
-            ></i>
-          </button>
-        </div>
-      </div>
-    </form>
-  </div>
-</div>
diff --git a/apps/desktop/src/vault/app/vault/folder-add-edit.component.ts b/apps/desktop/src/vault/app/vault/folder-add-edit.component.ts
deleted file mode 100644
index cecd5cd671c..00000000000
--- a/apps/desktop/src/vault/app/vault/folder-add-edit.component.ts
+++ /dev/null
@@ -1,45 +0,0 @@
-import { Component } from "@angular/core";
-import { FormBuilder } from "@angular/forms";
-
-import { FolderAddEditComponent as BaseFolderAddEditComponent } from "@bitwarden/angular/vault/components/folder-add-edit.component";
-import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
-import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
-import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
-import { FolderApiServiceAbstraction } from "@bitwarden/common/vault/abstractions/folder/folder-api.service.abstraction";
-import { FolderService } from "@bitwarden/common/vault/abstractions/folder/folder.service.abstraction";
-import { DialogService, ToastService } from "@bitwarden/components";
-import { KeyService } from "@bitwarden/key-management";
-
-@Component({
-  selector: "app-folder-add-edit",
-  templateUrl: "folder-add-edit.component.html",
-  standalone: false,
-})
-export class FolderAddEditComponent extends BaseFolderAddEditComponent {
-  constructor(
-    folderService: FolderService,
-    folderApiService: FolderApiServiceAbstraction,
-    accountService: AccountService,
-    keyService: KeyService,
-    i18nService: I18nService,
-    platformUtilsService: PlatformUtilsService,
-    logService: LogService,
-    dialogService: DialogService,
-    formBuilder: FormBuilder,
-    toastService: ToastService,
-  ) {
-    super(
-      folderService,
-      folderApiService,
-      accountService,
-      keyService,
-      i18nService,
-      platformUtilsService,
-      logService,
-      dialogService,
-      formBuilder,
-      toastService,
-    );
-  }
-}
diff --git a/apps/desktop/src/vault/app/vault/password-history.component.html b/apps/desktop/src/vault/app/vault/password-history.component.html
deleted file mode 100644
index 362061b250d..00000000000
--- a/apps/desktop/src/vault/app/vault/password-history.component.html
+++ /dev/null
@@ -1,38 +0,0 @@
-<div class="modal fade" role="dialog" aria-modal="true" aria-labelledby="passwordHistoryTitle">
-  <div class="modal-dialog" role="document">
-    <div class="modal-content">
-      <div class="modal-body">
-        <div class="box">
-          <h1 class="box-header" id="passwordHistoryTitle">
-            {{ "passwordHistory" | i18n }}
-          </h1>
-          <div class="box-content condensed">
-            <div class="box-content-row box-content-row-flex" *ngFor="let h of history">
-              <div class="row-main">
-                <span class="text monospaced" [innerHTML]="h.password | colorPassword"></span>
-                <span class="detail">{{ h.lastUsedDate | date: "medium" }}</span>
-              </div>
-              <div class="action-buttons">
-                <button
-                  type="button"
-                  class="row-btn"
-                  appStopClick
-                  appA11yTitle="{{ 'copyPassword' | i18n }}"
-                  (click)="copy(h.password)"
-                >
-                  <i class="bwi bwi-lg bwi-clone" aria-hidden="true"></i>
-                </button>
-              </div>
-            </div>
-            <div class="box-content-row" *ngIf="!history.length">
-              {{ "noPasswordsInList" | i18n }}
-            </div>
-          </div>
-        </div>
-      </div>
-      <div class="modal-footer">
-        <button type="button" data-dismiss="modal">{{ "close" | i18n }}</button>
-      </div>
-    </div>
-  </div>
-</div>
diff --git a/apps/desktop/src/vault/app/vault/password-history.component.ts b/apps/desktop/src/vault/app/vault/password-history.component.ts
deleted file mode 100644
index e83ce0d56ea..00000000000
--- a/apps/desktop/src/vault/app/vault/password-history.component.ts
+++ /dev/null
@@ -1,25 +0,0 @@
-import { Component } from "@angular/core";
-
-import { PasswordHistoryComponent as BasePasswordHistoryComponent } from "@bitwarden/angular/vault/components/password-history.component";
-import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
-import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
-import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
-import { ToastService } from "@bitwarden/components";
-
-@Component({
-  selector: "app-password-history",
-  templateUrl: "password-history.component.html",
-  standalone: false,
-})
-export class PasswordHistoryComponent extends BasePasswordHistoryComponent {
-  constructor(
-    cipherService: CipherService,
-    platformUtilsService: PlatformUtilsService,
-    i18nService: I18nService,
-    accountService: AccountService,
-    toastService: ToastService,
-  ) {
-    super(cipherService, platformUtilsService, i18nService, accountService, window, toastService);
-  }
-}
diff --git a/apps/desktop/src/vault/app/vault/share.component.html b/apps/desktop/src/vault/app/vault/share.component.html
deleted file mode 100644
index 8f85ecf891e..00000000000
--- a/apps/desktop/src/vault/app/vault/share.component.html
+++ /dev/null
@@ -1,76 +0,0 @@
-<div class="modal fade" role="dialog" aria-modal="true" aria-labelledby="moveToOrgTitle">
-  <div class="modal-dialog" role="document">
-    <form class="modal-content" #form (ngSubmit)="submit()" [appApiAction]="formPromise">
-      <ng-container *ngIf="organizations$ | async as organizations">
-        <div class="modal-body">
-          <div class="box">
-            <h1 class="box-header" id="moveToOrgTitle">
-              {{ "moveToOrganization" | i18n }}
-            </h1>
-            <div class="box-content" *ngIf="!organizations || !organizations.length">
-              <div class="box-content-row">
-                {{ "noOrganizationsList" | i18n }}
-              </div>
-            </div>
-            <div class="box-content" *ngIf="organizations && organizations.length">
-              <div class="box-content-row" appBoxRow>
-                <label for="organization">{{ "organization" | i18n }}</label>
-                <select
-                  id="organization"
-                  name="OrganizationId"
-                  aria-describedby="organizationHelp"
-                  [(ngModel)]="organizationId"
-                  (change)="filterCollections()"
-                >
-                  <option *ngFor="let o of organizations" [ngValue]="o.id">{{ o.name }}</option>
-                </select>
-              </div>
-            </div>
-            <div id="organizationHelp" class="box-footer">
-              {{ "moveToOrgDesc" | i18n }}
-            </div>
-          </div>
-          <div class="box" *ngIf="organizations && organizations.length">
-            <h2 class="box-header">
-              {{ "collections" | i18n }}
-            </h2>
-            <div class="box-content" *ngIf="!collections || !collections.length">
-              {{ "noCollectionsInList" | i18n }}
-            </div>
-            <div class="box-content" *ngIf="collections && collections.length">
-              <div
-                class="box-content-row box-content-row-checkbox"
-                *ngFor="let c of collections; let i = index"
-                appBoxRow
-              >
-                <label for="collection_{{ i }}">{{ c.name }}</label>
-                <input
-                  id="collection_{{ i }}"
-                  type="checkbox"
-                  [(ngModel)]="c.checked"
-                  name="Collection[{{ i }}].Checked"
-                />
-              </div>
-            </div>
-          </div>
-        </div>
-        <div class="modal-footer">
-          <button
-            type="submit"
-            class="primary"
-            [disabled]="form.loading || !canSave"
-            *ngIf="organizations && organizations.length"
-          >
-            <span [hidden]="form.loading">{{ "save" | i18n }}</span>
-            <i
-              class="bwi bwi-spinner bwi-spin bwi-lg bwi-fw"
-              [hidden]="!form.loading"
-              aria-hidden="true"
-            ></i>
-          </button>
-          <button type="button" (click)="close()">{{ "cancel" | i18n }}</button>
-        </div>
-      </ng-container>
-    </form>
-  </div>
-</div>
diff --git a/apps/desktop/src/vault/app/vault/share.component.ts b/apps/desktop/src/vault/app/vault/share.component.ts
deleted file mode 100644
index 50842439323..00000000000
--- a/apps/desktop/src/vault/app/vault/share.component.ts
+++ /dev/null
@@ -1,43 +0,0 @@
-import { Component } from "@angular/core";
-
-import { CollectionService } from "@bitwarden/admin-console/common";
-import { ModalRef } from "@bitwarden/angular/components/modal/modal.ref";
-import { ShareComponent as BaseShareComponent } from "@bitwarden/angular/components/share.component";
-import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
-import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
-import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
-import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
-import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
-
-@Component({
-  selector: "app-vault-share",
-  templateUrl: "share.component.html",
-  standalone: false,
-})
-export class ShareComponent extends BaseShareComponent {
-  constructor(
-    cipherService: CipherService,
-    i18nService: I18nService,
-    collectionService: CollectionService,
-    platformUtilsService: PlatformUtilsService,
-    logService: LogService,
-    organizationService: OrganizationService,
-    accountService: AccountService,
-    private modalRef: ModalRef,
-  ) {
-    super(
-      collectionService,
-      platformUtilsService,
-      i18nService,
-      cipherService,
-      logService,
-      organizationService,
-      accountService,
-    );
-  }
-
-  protected close() {
-    this.modalRef.close();
-  }
-}
diff --git a/apps/desktop/src/vault/app/vault/vault-items.component.html b/apps/desktop/src/vault/app/vault/vault-items.component.html
deleted file mode 100644
index 8a869cd2a32..00000000000
--- a/apps/desktop/src/vault/app/vault/vault-items.component.html
+++ /dev/null
@@ -1,72 +0,0 @@
-<div class="container loading-spinner" *ngIf="!loaded">
-  <i class="bwi bwi-spinner bwi-spin bwi-3x" aria-hidden="true"></i>
-</div>
-<ng-container *ngIf="loaded">
-  <div class="content">
-    <cdk-virtual-scroll-viewport
-      itemSize="42"
-      minBufferPx="400"
-      maxBufferPx="600"
-      *ngIf="ciphers.length"
-    >
-      <div class="list">
-        <button
-          type="button"
-          *cdkVirtualFor="let c of ciphers; trackBy: trackByFn"
-          appStopClick
-          (click)="selectCipher(c)"
-          (contextmenu)="rightClickCipher(c)"
-          title="{{ 'viewItem' | i18n }}"
-          [ngClass]="{ active: c.id === activeCipherId }"
-          [attr.aria-pressed]="c.id === activeCipherId"
-          class="flex-list-item virtual-scroll-item"
-        >
-          <app-vault-icon [cipher]="c"></app-vault-icon>
-          <div class="flex-cipher-list-item">
-            <span class="text">
-              <span class="truncate-box">
-                <span class="truncate">{{ c.name }}</span>
-                <ng-container *ngIf="c.organizationId">
-                  <i
-                    class="bwi bwi-collection-shared text-muted"
-                    title="{{ 'shared' | i18n }}"
-                    aria-hidden="true"
-                  ></i>
-                  <span class="sr-only">{{ "shared" | i18n }}</span>
-                </ng-container>
-                <ng-container *ngIf="c.hasAttachments">
-                  <i
-                    class="bwi bwi-paperclip text-muted"
-                    title="{{ 'attachments' | i18n }}"
-                    aria-hidden="true"
-                  ></i>
-                  <span class="sr-only">{{ "attachments" | i18n }}</span>
-                </ng-container>
-              </span>
-            </span>
-            <span *ngIf="c.subTitle" class="detail">{{ c.subTitle }}</span>
-          </div>
-        </button>
-      </div>
-    </cdk-virtual-scroll-viewport>
-    <div class="no-items" *ngIf="!ciphers.length">
-      <img class="no-items-image" aria-hidden="true" />
-      <p>{{ "noItemsInList" | i18n }}</p>
-      <button type="button" (click)="addCipher()" class="btn block primary link">
-        {{ "addItem" | i18n }}
-      </button>
-    </div>
-    <div class="footer">
-      <button
-        type="button"
-        (click)="addCipher()"
-        (contextmenu)="addCipherOptions()"
-        class="block primary"
-        appA11yTitle="{{ 'addItem' | i18n }}"
-        [disabled]="deleted"
-      >
-        <i class="bwi bwi-plus bwi-lg" aria-hidden="true"></i>
-      </button>
-    </div>
-  </div>
-</ng-container>
diff --git a/apps/desktop/src/vault/app/vault/vault-items.component.ts b/apps/desktop/src/vault/app/vault/vault-items.component.ts
deleted file mode 100644
index c37a29833d9..00000000000
--- a/apps/desktop/src/vault/app/vault/vault-items.component.ts
+++ /dev/null
@@ -1,39 +0,0 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
-import { Component } from "@angular/core";
-import { distinctUntilChanged } from "rxjs";
-
-import { VaultItemsComponent as BaseVaultItemsComponent } from "@bitwarden/angular/vault/components/vault-items.component";
-import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
-import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
-import { SearchService } from "@bitwarden/common/vault/abstractions/search.service";
-import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
-import { RestrictedItemTypesService } from "@bitwarden/common/vault/services/restricted-item-types.service";
-
-import { SearchBarService } from "../../../app/layout/search/search-bar.service";
-
-@Component({
-  selector: "app-vault-items",
-  templateUrl: "vault-items.component.html",
-  standalone: false,
-})
-export class VaultItemsComponent extends BaseVaultItemsComponent {
-  constructor(
-    searchService: SearchService,
-    searchBarService: SearchBarService,
-    cipherService: CipherService,
-    accountService: AccountService,
-    protected restrictedItemTypesService: RestrictedItemTypesService,
-  ) {
-    super(searchService, cipherService, accountService, restrictedItemTypesService);
-
-    // eslint-disable-next-line rxjs-angular/prefer-takeuntil
-    searchBarService.searchText$.pipe(distinctUntilChanged()).subscribe((searchText) => {
-      this.searchText = searchText;
-    });
-  }
-
-  trackByFn(index: number, c: CipherView) {
-    return c.id;
-  }
-}
diff --git a/apps/desktop/src/vault/app/vault/vault.component.html b/apps/desktop/src/vault/app/vault/vault.component.html
deleted file mode 100644
index 9a25619b1a8..00000000000
--- a/apps/desktop/src/vault/app/vault/vault.component.html
+++ /dev/null
@@ -1,74 +0,0 @@
-<div id="vault" class="vault" attr.aria-hidden="{{ showingModal }}">
-  <app-vault-items
-    id="items"
-    class="items"
-    [activeCipherId]="cipherId"
-    (onCipherClicked)="viewCipher($event)"
-    (onCipherRightClicked)="viewCipherMenu($event)"
-    (onAddCipher)="addCipher($event)"
-    (onAddCipherOptions)="addCipherOptions()"
-  >
-  </app-vault-items>
-  <app-vault-view
-    id="details"
-    class="details"
-    *ngIf="cipherId && action === 'view'"
-    [cipherId]="cipherId"
-    [collectionId]="activeFilter?.selectedCollectionId"
-    [masterPasswordAlreadyPrompted]="cipherRepromptId === cipherId"
-    (onCloneCipher)="cloneCipherWithoutPasswordPrompt($event)"
-    (onEditCipher)="editCipher($event)"
-    (onViewCipherPasswordHistory)="viewCipherPasswordHistory($event)"
-    (onRestoredCipher)="restoredCipher($event)"
-    (onDeletedCipher)="deletedCipher($event)"
-  >
-  </app-vault-view>
-  <app-vault-add-edit
-    id="addEdit"
-    class="details"
-    *ngIf="action === 'add' || action === 'edit' || action === 'clone'"
-    [cloneMode]="action === 'clone'"
-    [folderId]="action === 'add' && folderId !== 'none' ? folderId : null"
-    [organizationId]="action === 'add' ? addOrganizationId : null"
-    [collectionIds]="action === 'add' ? addCollectionIds : null"
-    [collectionId]="activeFilter?.selectedCollectionId"
-    [type]="action === 'add' ? (addType ? addType : type) : null"
-    [cipherId]="action === 'edit' || action === 'clone' ? cipherId : null"
-    (onSavedCipher)="savedCipher($event)"
-    (onDeletedCipher)="deletedCipher($event)"
-    (onEditAttachments)="editCipherAttachments($event)"
-    (onCancelled)="cancelledAddEdit($event)"
-    (onShareCipher)="shareCipher($event)"
-    (onEditCollections)="cipherCollections($event)"
-    (onGeneratePassword)="openGenerator(true)"
-    (onGenerateUsername)="openGenerator(false)"
-  >
-  </app-vault-add-edit>
-  <div
-    id="logo"
-    class="logo"
-    *ngIf="action !== 'add' && action !== 'edit' && action !== 'view' && action !== 'clone'"
-  >
-    <div class="content">
-      <div class="inner-content">
-        <img class="logo-image" alt="Bitwarden" aria-hidden="true" />
-      </div>
-    </div>
-  </div>
-  <div class="left-nav">
-    <app-vault-filter
-      class="vault-filters"
-      [activeFilter]="activeFilter"
-      (onFilterChange)="applyVaultFilter($event)"
-      (onAddFolder)="addFolder()"
-      (onEditFolder)="editFolder($event.id)"
-    ></app-vault-filter>
-    <app-nav class="nav"></app-nav>
-  </div>
-</div>
-<ng-template #generator></ng-template>
-<ng-template #attachments></ng-template>
-<ng-template #collections></ng-template>
-<ng-template #share></ng-template>
-<ng-template #folderAddEdit></ng-template>
-<ng-template #passwordHistory></ng-template>
diff --git a/apps/desktop/src/vault/app/vault/vault.component.ts b/apps/desktop/src/vault/app/vault/vault.component.ts
deleted file mode 100644
index d8a54f1ec35..00000000000
--- a/apps/desktop/src/vault/app/vault/vault.component.ts
+++ /dev/null
@@ -1,870 +0,0 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
-import {
-  ChangeDetectorRef,
-  Component,
-  NgZone,
-  OnDestroy,
-  OnInit,
-  ViewChild,
-  ViewContainerRef,
-} from "@angular/core";
-import { ActivatedRoute, Router } from "@angular/router";
-import { firstValueFrom, Subject, takeUntil, switchMap, lastValueFrom } from "rxjs";
-import { filter, first, map, take } from "rxjs/operators";
-
-import { ModalRef } from "@bitwarden/angular/components/modal/modal.ref";
-import { ModalService } from "@bitwarden/angular/services/modal.service";
-import { VaultFilter } from "@bitwarden/angular/vault/vault-filter/models/vault-filter.model";
-import { AuthRequestServiceAbstraction } from "@bitwarden/auth/common";
-import { ApiService } from "@bitwarden/common/abstractions/api.service";
-import { EventCollectionService } from "@bitwarden/common/abstractions/event/event-collection.service";
-import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
-import { getUserId } from "@bitwarden/common/auth/services/account.service";
-import { BillingAccountProfileStateService } from "@bitwarden/common/billing/abstractions/account/billing-account-profile-state.service";
-import { EventType } from "@bitwarden/common/enums";
-import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
-import { BroadcasterService } from "@bitwarden/common/platform/abstractions/broadcaster.service";
-import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
-import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
-import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
-import { SyncService } from "@bitwarden/common/platform/sync";
-import { CipherId, UserId } from "@bitwarden/common/types/guid";
-import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
-import { FolderService } from "@bitwarden/common/vault/abstractions/folder/folder.service.abstraction";
-import { TotpService } from "@bitwarden/common/vault/abstractions/totp.service";
-import { CipherType, toCipherType } from "@bitwarden/common/vault/enums";
-import { CipherRepromptType } from "@bitwarden/common/vault/enums/cipher-reprompt-type";
-import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
-import { DialogService, ToastService } from "@bitwarden/components";
-import {
-  AddEditFolderDialogComponent,
-  AddEditFolderDialogResult,
-  DecryptionFailureDialogComponent,
-  PasswordRepromptService,
-} from "@bitwarden/vault";
-
-import { SearchBarService } from "../../../app/layout/search/search-bar.service";
-import { invokeMenu, RendererMenuItem } from "../../../utils";
-
-import { AddEditComponent } from "./add-edit.component";
-import { AttachmentsComponent } from "./attachments.component";
-import { CollectionsComponent } from "./collections.component";
-import { CredentialGeneratorDialogComponent } from "./credential-generator-dialog.component";
-import { PasswordHistoryComponent } from "./password-history.component";
-import { ShareComponent } from "./share.component";
-import { VaultFilterComponent } from "./vault-filter/vault-filter.component";
-import { VaultItemsComponent } from "./vault-items.component";
-import { ViewComponent } from "./view.component";
-
-const BroadcasterSubscriptionId = "VaultComponent";
-
-@Component({
-  selector: "app-vault",
-  templateUrl: "vault.component.html",
-  standalone: false,
-})
-export class VaultComponent implements OnInit, OnDestroy {
-  @ViewChild(ViewComponent) viewComponent: ViewComponent;
-  @ViewChild(AddEditComponent) addEditComponent: AddEditComponent;
-  @ViewChild(VaultItemsComponent, { static: true }) vaultItemsComponent: VaultItemsComponent;
-  @ViewChild("generator", { read: ViewContainerRef, static: true })
-  generatorModalRef: ViewContainerRef;
-  @ViewChild(VaultFilterComponent, { static: true }) vaultFilterComponent: VaultFilterComponent;
-  @ViewChild("attachments", { read: ViewContainerRef, static: true })
-  attachmentsModalRef: ViewContainerRef;
-  @ViewChild("passwordHistory", { read: ViewContainerRef, static: true })
-  passwordHistoryModalRef: ViewContainerRef;
-  @ViewChild("share", { read: ViewContainerRef, static: true }) shareModalRef: ViewContainerRef;
-  @ViewChild("collections", { read: ViewContainerRef, static: true })
-  collectionsModalRef: ViewContainerRef;
-
-  action: string;
-  cipherId: string = null;
-  favorites = false;
-  type: CipherType = null;
-  folderId: string = null;
-  collectionId: string = null;
-  organizationId: string = null;
-  myVaultOnly = false;
-  addType: CipherType = null;
-  addOrganizationId: string = null;
-  addCollectionIds: string[] = null;
-  showingModal = false;
-  deleted = false;
-  userHasPremiumAccess = false;
-  activeFilter: VaultFilter = new VaultFilter();
-  activeUserId: UserId;
-  cipherRepromptId: string | null = null;
-
-  private modal: ModalRef = null;
-  private componentIsDestroyed$ = new Subject<boolean>();
-
-  constructor(
-    private route: ActivatedRoute,
-    private router: Router,
-    private i18nService: I18nService,
-    private modalService: ModalService,
-    private broadcasterService: BroadcasterService,
-    private changeDetectorRef: ChangeDetectorRef,
-    private ngZone: NgZone,
-    private syncService: SyncService,
-    private messagingService: MessagingService,
-    private platformUtilsService: PlatformUtilsService,
-    private eventCollectionService: EventCollectionService,
-    private totpService: TotpService,
-    private passwordRepromptService: PasswordRepromptService,
-    private searchBarService: SearchBarService,
-    private apiService: ApiService,
-    private dialogService: DialogService,
-    private billingAccountProfileStateService: BillingAccountProfileStateService,
-    private toastService: ToastService,
-    private accountService: AccountService,
-    private cipherService: CipherService,
-    private folderService: FolderService,
-    private authRequestService: AuthRequestServiceAbstraction,
-    private configService: ConfigService,
-  ) {}
-
-  async ngOnInit() {
-    this.accountService.activeAccount$
-      .pipe(
-        switchMap((account) =>
-          this.billingAccountProfileStateService.hasPremiumFromAnySource$(account.id),
-        ),
-        takeUntil(this.componentIsDestroyed$),
-      )
-      .subscribe((canAccessPremium: boolean) => {
-        this.userHasPremiumAccess = canAccessPremium;
-      });
-
-    this.broadcasterService.subscribe(BroadcasterSubscriptionId, (message: any) => {
-      // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-      // eslint-disable-next-line @typescript-eslint/no-floating-promises
-      this.ngZone.run(async () => {
-        let detectChanges = true;
-
-        switch (message.command) {
-          case "newLogin":
-            await this.addCipher(CipherType.Login);
-            break;
-          case "newCard":
-            await this.addCipher(CipherType.Card);
-            break;
-          case "newIdentity":
-            await this.addCipher(CipherType.Identity);
-            break;
-          case "newSecureNote":
-            await this.addCipher(CipherType.SecureNote);
-            break;
-          case "newSshKey":
-            await this.addCipher(CipherType.SshKey);
-            break;
-          case "focusSearch":
-            (document.querySelector("#search") as HTMLInputElement).select();
-            detectChanges = false;
-            break;
-          case "syncCompleted":
-            await this.vaultItemsComponent.reload(this.activeFilter.buildFilter());
-            await this.vaultFilterComponent.reloadCollectionsAndFolders(this.activeFilter);
-            await this.vaultFilterComponent.reloadOrganizations();
-            break;
-          case "modalShown":
-            this.showingModal = true;
-            break;
-          case "modalClosed":
-            this.showingModal = false;
-            break;
-          case "copyUsername": {
-            const uComponent =
-              this.addEditComponent == null ? this.viewComponent : this.addEditComponent;
-            const uCipher = uComponent != null ? uComponent.cipher : null;
-            if (
-              this.cipherId != null &&
-              uCipher != null &&
-              uCipher.id === this.cipherId &&
-              uCipher.login != null &&
-              uCipher.login.username != null
-            ) {
-              this.copyValue(uCipher, uCipher.login.username, "username", "Username");
-            }
-            break;
-          }
-          case "copyPassword": {
-            const pComponent =
-              this.addEditComponent == null ? this.viewComponent : this.addEditComponent;
-            const pCipher = pComponent != null ? pComponent.cipher : null;
-            if (
-              this.cipherId != null &&
-              pCipher != null &&
-              pCipher.id === this.cipherId &&
-              pCipher.login != null &&
-              pCipher.login.password != null &&
-              pCipher.viewPassword
-            ) {
-              this.copyValue(pCipher, pCipher.login.password, "password", "Password");
-            }
-            break;
-          }
-          case "copyTotp": {
-            const tComponent =
-              this.addEditComponent == null ? this.viewComponent : this.addEditComponent;
-            const tCipher = tComponent != null ? tComponent.cipher : null;
-            if (
-              this.cipherId != null &&
-              tCipher != null &&
-              tCipher.id === this.cipherId &&
-              tCipher.login != null &&
-              tCipher.login.hasTotp &&
-              this.userHasPremiumAccess
-            ) {
-              const value = await firstValueFrom(this.totpService.getCode$(tCipher.login.totp));
-              this.copyValue(tCipher, value.code, "verificationCodeTotp", "TOTP");
-            }
-            break;
-          }
-          default:
-            detectChanges = false;
-            break;
-        }
-
-        if (detectChanges) {
-          this.changeDetectorRef.detectChanges();
-        }
-      });
-    });
-
-    if (!this.syncService.syncInProgress) {
-      await this.load();
-    }
-
-    this.searchBarService.setEnabled(true);
-    this.searchBarService.setPlaceholderText(this.i18nService.t("searchVault"));
-
-    const browserLoginApprovalFeatureFlag = await firstValueFrom(
-      this.configService.getFeatureFlag$(FeatureFlag.PM14938_BrowserExtensionLoginApproval),
-    );
-    if (browserLoginApprovalFeatureFlag === true) {
-      const authRequests = await firstValueFrom(this.authRequestService.getPendingAuthRequests$());
-      // There is a chance that there is more than one auth request in the response we only show the most recent one
-      if (authRequests.length > 0) {
-        const mostRecentAuthRequest = authRequests.reduce((latest, current) => {
-          const latestDate = new Date(latest.creationDate).getTime();
-          const currentDate = new Date(current.creationDate).getTime();
-          return currentDate > latestDate ? current : latest;
-        });
-
-        this.messagingService.send("openLoginApproval", {
-          notificationId: mostRecentAuthRequest.id,
-        });
-      }
-    } else {
-      const authRequest = await this.apiService.getLastAuthRequest();
-      if (authRequest != null) {
-        this.messagingService.send("openLoginApproval", {
-          notificationId: authRequest.id,
-        });
-      }
-    }
-
-    this.activeUserId = await firstValueFrom(this.accountService.activeAccount$.pipe(getUserId));
-
-    this.cipherService
-      .failedToDecryptCiphers$(this.activeUserId)
-      .pipe(
-        map((ciphers) => ciphers?.filter((c) => !c.isDeleted) ?? []),
-        filter((ciphers) => ciphers.length > 0),
-        take(1),
-        takeUntil(this.componentIsDestroyed$),
-      )
-      .subscribe((ciphers) => {
-        DecryptionFailureDialogComponent.open(this.dialogService, {
-          cipherIds: ciphers.map((c) => c.id as CipherId),
-        });
-      });
-  }
-
-  ngOnDestroy() {
-    this.searchBarService.setEnabled(false);
-    this.broadcasterService.unsubscribe(BroadcasterSubscriptionId);
-    this.componentIsDestroyed$.next(true);
-    this.componentIsDestroyed$.complete();
-  }
-
-  async load() {
-    // eslint-disable-next-line rxjs-angular/prefer-takeuntil, rxjs/no-async-subscribe
-    this.route.queryParams.pipe(first()).subscribe(async (params) => {
-      if (params.cipherId) {
-        const cipherView = new CipherView();
-        cipherView.id = params.cipherId;
-        if (params.action === "clone") {
-          await this.cloneCipher(cipherView);
-        } else if (params.action === "edit") {
-          await this.editCipher(cipherView);
-        } else {
-          await this.viewCipher(cipherView);
-        }
-      } else if (params.action === "add") {
-        this.addType = toCipherType(params.addType);
-        // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-        // eslint-disable-next-line @typescript-eslint/no-floating-promises
-        this.addCipher(this.addType);
-      }
-
-      const paramCipherType = toCipherType(params.type);
-      this.activeFilter = new VaultFilter({
-        status: params.deleted ? "trash" : params.favorites ? "favorites" : "all",
-        cipherType: params.action === "add" || paramCipherType == null ? null : paramCipherType,
-        selectedFolderId: params.folderId,
-        selectedCollectionId: params.selectedCollectionId,
-        selectedOrganizationId: params.selectedOrganizationId,
-        myVaultOnly: params.myVaultOnly ?? false,
-      });
-      await this.vaultItemsComponent.reload(this.activeFilter.buildFilter());
-    });
-  }
-
-  async viewCipher(cipher: CipherView) {
-    if (!(await this.canNavigateAway("view", cipher))) {
-      return;
-    } else if (!(await this.passwordReprompt(cipher))) {
-      return;
-    }
-
-    this.cipherId = cipher.id;
-    this.action = "view";
-    this.go();
-  }
-
-  viewCipherMenu(cipher: CipherView) {
-    const menu: RendererMenuItem[] = [
-      {
-        label: this.i18nService.t("view"),
-        click: () =>
-          this.functionWithChangeDetection(() => {
-            // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-            // eslint-disable-next-line @typescript-eslint/no-floating-promises
-            this.viewCipher(cipher);
-          }),
-      },
-    ];
-
-    if (cipher.decryptionFailure) {
-      invokeMenu(menu);
-      return;
-    }
-
-    if (!cipher.isDeleted) {
-      menu.push({
-        label: this.i18nService.t("edit"),
-        click: () =>
-          this.functionWithChangeDetection(() => {
-            // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-            // eslint-disable-next-line @typescript-eslint/no-floating-promises
-            this.editCipher(cipher);
-          }),
-      });
-      if (!cipher.organizationId) {
-        menu.push({
-          label: this.i18nService.t("clone"),
-          click: () =>
-            this.functionWithChangeDetection(() => {
-              // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-              // eslint-disable-next-line @typescript-eslint/no-floating-promises
-              this.cloneCipher(cipher);
-            }),
-        });
-      }
-    }
-
-    switch (cipher.type) {
-      case CipherType.Login:
-        if (
-          cipher.login.canLaunch ||
-          cipher.login.username != null ||
-          cipher.login.password != null
-        ) {
-          menu.push({ type: "separator" });
-        }
-        if (cipher.login.canLaunch) {
-          menu.push({
-            label: this.i18nService.t("launch"),
-            click: () => this.platformUtilsService.launchUri(cipher.login.launchUri),
-          });
-        }
-        if (cipher.login.username != null) {
-          menu.push({
-            label: this.i18nService.t("copyUsername"),
-            click: () => this.copyValue(cipher, cipher.login.username, "username", "Username"),
-          });
-        }
-        if (cipher.login.password != null && cipher.viewPassword) {
-          menu.push({
-            label: this.i18nService.t("copyPassword"),
-            click: () => {
-              this.copyValue(cipher, cipher.login.password, "password", "Password");
-              // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-              // eslint-disable-next-line @typescript-eslint/no-floating-promises
-              this.eventCollectionService.collect(EventType.Cipher_ClientCopiedPassword, cipher.id);
-            },
-          });
-        }
-        if (cipher.login.hasTotp && (cipher.organizationUseTotp || this.userHasPremiumAccess)) {
-          menu.push({
-            label: this.i18nService.t("copyVerificationCodeTotp"),
-            click: async () => {
-              const value = await firstValueFrom(this.totpService.getCode$(cipher.login.totp));
-              this.copyValue(cipher, value.code, "verificationCodeTotp", "TOTP");
-            },
-          });
-        }
-        break;
-      case CipherType.Card:
-        if (cipher.card.number != null || cipher.card.code != null) {
-          menu.push({ type: "separator" });
-        }
-        if (cipher.card.number != null) {
-          menu.push({
-            label: this.i18nService.t("copyNumber"),
-            click: () => this.copyValue(cipher, cipher.card.number, "number", "Card Number"),
-          });
-        }
-        if (cipher.card.code != null) {
-          menu.push({
-            label: this.i18nService.t("copySecurityCode"),
-            click: () => {
-              this.copyValue(cipher, cipher.card.code, "securityCode", "Security Code");
-              // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-              // eslint-disable-next-line @typescript-eslint/no-floating-promises
-              this.eventCollectionService.collect(EventType.Cipher_ClientCopiedCardCode, cipher.id);
-            },
-          });
-        }
-        break;
-      default:
-        break;
-    }
-
-    invokeMenu(menu);
-  }
-
-  async editCipher(cipher: CipherView) {
-    if (!(await this.canNavigateAway("edit", cipher))) {
-      return;
-    } else if (!(await this.passwordReprompt(cipher))) {
-      return;
-    }
-
-    await this.editCipherWithoutPasswordPrompt(cipher);
-  }
-
-  async editCipherWithoutPasswordPrompt(cipher: CipherView) {
-    if (!(await this.canNavigateAway("edit", cipher))) {
-      return;
-    }
-
-    this.cipherId = cipher.id;
-    this.action = "edit";
-    this.go();
-  }
-
-  async cloneCipher(cipher: CipherView) {
-    if (!(await this.canNavigateAway("clone", cipher))) {
-      return;
-    } else if (!(await this.passwordReprompt(cipher))) {
-      return;
-    }
-
-    await this.cloneCipherWithoutPasswordPrompt(cipher);
-  }
-
-  async cloneCipherWithoutPasswordPrompt(cipher: CipherView) {
-    if (!(await this.canNavigateAway("edit", cipher))) {
-      return;
-    }
-
-    this.cipherId = cipher.id;
-    this.action = "clone";
-    this.go();
-  }
-
-  async addCipher(type: CipherType = null) {
-    if (!(await this.canNavigateAway("add", null))) {
-      return;
-    }
-
-    this.addType = type || this.activeFilter.cipherType;
-    this.action = "add";
-    this.cipherId = null;
-    this.prefillNewCipherFromFilter();
-    this.go();
-
-    if (type === CipherType.SshKey) {
-      this.toastService.showToast({
-        variant: "success",
-        title: "",
-        message: this.i18nService.t("sshKeyGenerated"),
-      });
-    }
-  }
-
-  addCipherOptions() {
-    const menu: RendererMenuItem[] = [
-      {
-        label: this.i18nService.t("typeLogin"),
-        click: () => this.addCipherWithChangeDetection(CipherType.Login),
-      },
-      {
-        label: this.i18nService.t("typeCard"),
-        click: () => this.addCipherWithChangeDetection(CipherType.Card),
-      },
-      {
-        label: this.i18nService.t("typeIdentity"),
-        click: () => this.addCipherWithChangeDetection(CipherType.Identity),
-      },
-      {
-        label: this.i18nService.t("typeSecureNote"),
-        click: () => this.addCipherWithChangeDetection(CipherType.SecureNote),
-      },
-    ];
-
-    invokeMenu(menu);
-  }
-
-  async savedCipher(cipher: CipherView) {
-    this.cipherId = null;
-    this.action = "view";
-    await this.vaultItemsComponent.refresh();
-    this.cipherId = cipher.id;
-    await this.cipherService.clearCache(this.activeUserId);
-    await this.vaultItemsComponent.load(this.activeFilter.buildFilter());
-    this.go();
-    await this.vaultItemsComponent.refresh();
-  }
-
-  async deletedCipher(cipher: CipherView) {
-    this.cipherId = null;
-    this.action = null;
-    this.go();
-    await this.vaultItemsComponent.refresh();
-  }
-
-  async restoredCipher(cipher: CipherView) {
-    this.cipherId = null;
-    this.action = null;
-    this.go();
-    await this.vaultItemsComponent.refresh();
-  }
-
-  async editCipherAttachments(cipher: CipherView) {
-    if (this.modal != null) {
-      this.modal.close();
-    }
-
-    const [modal, childComponent] = await this.modalService.openViewRef(
-      AttachmentsComponent,
-      this.attachmentsModalRef,
-      (comp) => (comp.cipherId = cipher.id),
-    );
-    this.modal = modal;
-
-    let madeAttachmentChanges = false;
-    // eslint-disable-next-line rxjs-angular/prefer-takeuntil
-    childComponent.onUploadedAttachment.subscribe((cipher) => {
-      madeAttachmentChanges = true;
-      // Update the edit component cipher with the updated cipher,
-      // which is needed because the revision date is updated when an attachment is altered
-      this.addEditComponent.patchCipherAttachments(cipher);
-    });
-    // eslint-disable-next-line rxjs-angular/prefer-takeuntil
-    childComponent.onDeletedAttachment.subscribe((cipher) => {
-      madeAttachmentChanges = true;
-      // Update the edit component cipher with the updated cipher,
-      // which is needed because the revision date is updated when an attachment is altered
-      this.addEditComponent.patchCipherAttachments(cipher);
-    });
-
-    // eslint-disable-next-line rxjs-angular/prefer-takeuntil, rxjs/no-async-subscribe
-    this.modal.onClosed.subscribe(async () => {
-      this.modal = null;
-      if (madeAttachmentChanges) {
-        await this.vaultItemsComponent.refresh();
-      }
-      madeAttachmentChanges = false;
-    });
-  }
-
-  async shareCipher(cipher: CipherView) {
-    if (this.modal != null) {
-      this.modal.close();
-    }
-
-    const [modal, childComponent] = await this.modalService.openViewRef(
-      ShareComponent,
-      this.shareModalRef,
-      (comp) => (comp.cipherId = cipher.id),
-    );
-    this.modal = modal;
-
-    // eslint-disable-next-line rxjs-angular/prefer-takeuntil, rxjs/no-async-subscribe
-    childComponent.onSharedCipher.subscribe(async () => {
-      this.modal.close();
-      // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-      // eslint-disable-next-line @typescript-eslint/no-floating-promises
-      this.viewCipher(cipher);
-      await this.vaultItemsComponent.refresh();
-      await this.cipherService.clearCache(this.activeUserId);
-      await this.vaultItemsComponent.load(this.activeFilter.buildFilter());
-    });
-    // eslint-disable-next-line rxjs-angular/prefer-takeuntil, rxjs/no-async-subscribe
-    this.modal.onClosed.subscribe(async () => {
-      this.modal = null;
-    });
-  }
-
-  async cipherCollections(cipher: CipherView) {
-    if (this.modal != null) {
-      this.modal.close();
-    }
-
-    const [modal, childComponent] = await this.modalService.openViewRef(
-      CollectionsComponent,
-      this.collectionsModalRef,
-      (comp) => (comp.cipherId = cipher.id),
-    );
-    this.modal = modal;
-
-    // eslint-disable-next-line rxjs-angular/prefer-takeuntil
-    childComponent.onSavedCollections.subscribe(() => {
-      this.modal.close();
-      // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-      // eslint-disable-next-line @typescript-eslint/no-floating-promises
-      this.viewCipher(cipher);
-    });
-    // eslint-disable-next-line rxjs-angular/prefer-takeuntil, rxjs/no-async-subscribe
-    this.modal.onClosed.subscribe(async () => {
-      this.modal = null;
-    });
-  }
-
-  async viewCipherPasswordHistory(cipher: CipherView) {
-    if (this.modal != null) {
-      this.modal.close();
-    }
-
-    [this.modal] = await this.modalService.openViewRef(
-      PasswordHistoryComponent,
-      this.passwordHistoryModalRef,
-      (comp) => (comp.cipherId = cipher.id),
-    );
-
-    // eslint-disable-next-line rxjs-angular/prefer-takeuntil, rxjs/no-async-subscribe
-    this.modal.onClosed.subscribe(async () => {
-      this.modal = null;
-    });
-  }
-
-  cancelledAddEdit(cipher: CipherView) {
-    this.cipherId = cipher.id;
-    this.action = this.cipherId != null ? "view" : null;
-    this.go();
-  }
-
-  async applyVaultFilter(vaultFilter: VaultFilter) {
-    this.searchBarService.setPlaceholderText(
-      this.i18nService.t(this.calculateSearchBarLocalizationString(vaultFilter)),
-    );
-    this.activeFilter = vaultFilter;
-    await this.vaultItemsComponent.reload(
-      this.activeFilter.buildFilter(),
-      vaultFilter.status === "trash",
-    );
-    this.go();
-  }
-
-  private calculateSearchBarLocalizationString(vaultFilter: VaultFilter): string {
-    if (vaultFilter.status === "favorites") {
-      return "searchFavorites";
-    }
-    if (vaultFilter.status === "trash") {
-      return "searchTrash";
-    }
-    if (vaultFilter.cipherType != null) {
-      return "searchType";
-    }
-    if (vaultFilter.selectedFolderId != null && vaultFilter.selectedFolderId != "none") {
-      return "searchFolder";
-    }
-    if (vaultFilter.selectedCollectionId != null) {
-      return "searchCollection";
-    }
-    if (vaultFilter.selectedOrganizationId != null) {
-      return "searchOrganization";
-    }
-    if (vaultFilter.myVaultOnly) {
-      return "searchMyVault";
-    }
-
-    return "searchVault";
-  }
-
-  async openGenerator(passwordType = true) {
-    CredentialGeneratorDialogComponent.open(this.dialogService, {
-      onCredentialGenerated: (value?: string) => {
-        if (this.addEditComponent != null) {
-          this.addEditComponent.markPasswordAsDirty();
-          if (passwordType) {
-            this.addEditComponent.cipher.login.password = value ?? "";
-          } else {
-            this.addEditComponent.cipher.login.username = value ?? "";
-          }
-        }
-      },
-      type: passwordType ? "password" : "username",
-    });
-    return;
-  }
-
-  async addFolder() {
-    this.messagingService.send("newFolder");
-  }
-
-  async editFolder(folderId: string) {
-    const folderView = await firstValueFrom(
-      this.folderService.getDecrypted$(folderId, this.activeUserId),
-    );
-
-    const dialogRef = AddEditFolderDialogComponent.open(this.dialogService, {
-      editFolderConfig: {
-        folder: {
-          ...folderView,
-        },
-      },
-    });
-
-    const result = await lastValueFrom(dialogRef.closed);
-
-    if (
-      result === AddEditFolderDialogResult.Deleted ||
-      result === AddEditFolderDialogResult.Created
-    ) {
-      await this.vaultFilterComponent.reloadCollectionsAndFolders(this.activeFilter);
-    }
-  }
-
-  private dirtyInput(): boolean {
-    return (
-      (this.action === "add" || this.action === "edit" || this.action === "clone") &&
-      document.querySelectorAll("app-vault-add-edit .ng-dirty").length > 0
-    );
-  }
-
-  private async wantsToSaveChanges(): Promise<boolean> {
-    const confirmed = await this.dialogService.openSimpleDialog({
-      title: { key: "unsavedChangesTitle" },
-      content: { key: "unsavedChangesConfirmation" },
-      type: "warning",
-    });
-    return !confirmed;
-  }
-
-  private go(queryParams: any = null) {
-    if (queryParams == null) {
-      queryParams = {
-        action: this.action,
-        cipherId: this.cipherId,
-        favorites: this.favorites ? true : null,
-        type: this.type,
-        folderId: this.folderId,
-        collectionId: this.collectionId,
-        deleted: this.deleted ? true : null,
-        organizationId: this.organizationId,
-        myVaultOnly: this.myVaultOnly,
-      };
-    }
-
-    // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-    // eslint-disable-next-line @typescript-eslint/no-floating-promises
-    this.router.navigate([], {
-      relativeTo: this.route,
-      queryParams: queryParams,
-      replaceUrl: true,
-    });
-  }
-
-  private addCipherWithChangeDetection(type: CipherType = null) {
-    this.functionWithChangeDetection(() => this.addCipher(type));
-  }
-
-  private copyValue(cipher: CipherView, value: string, labelI18nKey: string, aType: string) {
-    this.functionWithChangeDetection(async () => {
-      if (
-        this.passwordRepromptService.protectedFields().includes(aType) &&
-        !(await this.passwordReprompt(cipher))
-      ) {
-        return;
-      }
-
-      this.platformUtilsService.copyToClipboard(value);
-      this.toastService.showToast({
-        variant: "info",
-        title: null,
-        message: this.i18nService.t("valueCopied", this.i18nService.t(labelI18nKey)),
-      });
-      if (this.action === "view") {
-        this.messagingService.send("minimizeOnCopy");
-      }
-    });
-  }
-
-  private functionWithChangeDetection(func: () => void) {
-    this.ngZone.run(() => {
-      func();
-      this.changeDetectorRef.detectChanges();
-    });
-  }
-
-  private prefillNewCipherFromFilter() {
-    if (this.activeFilter.selectedCollectionId != null) {
-      const collection = this.vaultFilterComponent.collections.fullList.filter(
-        (c) => c.id === this.activeFilter.selectedCollectionId,
-      );
-      if (collection.length > 0) {
-        this.addOrganizationId = collection[0].organizationId;
-        this.addCollectionIds = [this.activeFilter.selectedCollectionId];
-      }
-    } else if (this.activeFilter.selectedOrganizationId) {
-      this.addOrganizationId = this.activeFilter.selectedOrganizationId;
-    }
-    if (this.activeFilter.selectedFolderId && this.activeFilter.selectedFolder) {
-      this.folderId = this.activeFilter.selectedFolderId;
-    }
-  }
-
-  private async canNavigateAway(action: string, cipher?: CipherView) {
-    // Don't navigate to same route
-    if (this.action === action && (cipher == null || this.cipherId === cipher.id)) {
-      return false;
-    } else if (this.dirtyInput() && (await this.wantsToSaveChanges())) {
-      return false;
-    }
-
-    return true;
-  }
-
-  private async passwordReprompt(cipher: CipherView) {
-    if (cipher.reprompt === CipherRepromptType.None) {
-      this.cipherRepromptId = null;
-      return true;
-    }
-    if (this.cipherRepromptId === cipher.id) {
-      return true;
-    }
-    const repromptResult = await this.passwordRepromptService.showPasswordPrompt();
-    if (repromptResult) {
-      this.cipherRepromptId = cipher.id;
-    }
-    return repromptResult;
-  }
-}
diff --git a/apps/desktop/src/vault/app/vault/view-custom-fields.component.html b/apps/desktop/src/vault/app/vault/view-custom-fields.component.html
deleted file mode 100644
index 5e0389af25a..00000000000
--- a/apps/desktop/src/vault/app/vault/view-custom-fields.component.html
+++ /dev/null
@@ -1,96 +0,0 @@
-<div class="box">
-  <h2 class="box-header">
-    {{ "customFields" | i18n }}
-  </h2>
-  <div class="box-content">
-    <div
-      class="box-content-row box-content-row-flex"
-      *ngFor="let field of cipher.fields; index as i"
-    >
-      <div class="row-main">
-        <span
-          *ngIf="field.type != fieldType.Linked"
-          class="row-label draggable"
-          draggable="true"
-          (dragstart)="setTextDataOnDrag($event, field.value)"
-          [id]="'customField-' + i"
-        >
-          {{ field.name }}
-        </span>
-        <span *ngIf="field.type === fieldType.Linked" class="row-label">
-          {{ "cfTypeLinked" | i18n }}: {{ field.name }}
-        </span>
-        <div *ngIf="field.type === fieldType.Text">
-          {{ field.value || "&nbsp;" }}
-        </div>
-        <div *ngIf="field.type === fieldType.Hidden">
-          <span *ngIf="!field.showValue" class="monospaced">{{ field.maskedValue }}</span>
-          <span
-            *ngIf="field.showValue && !field.showCount"
-            class="monospaced show-whitespace"
-            [innerHTML]="field.value | colorPassword"
-          ></span>
-          <span
-            *ngIf="field.showValue && field.showCount"
-            [innerHTML]="field.value | colorPasswordCount"
-          ></span>
-        </div>
-        <div *ngIf="field.type === fieldType.Boolean">
-          <input
-            type="checkbox"
-            [checked]="field.value === 'true'"
-            disabled="true"
-            [attr.aria-labelledby]="'customField-' + i"
-          />
-        </div>
-        <div *ngIf="field.type === fieldType.Linked" class="box-content-row-flex">
-          <span>{{ cipher.linkedFieldI18nKey(field.linkedId) | i18n }}</span>
-        </div>
-      </div>
-      <div class="action-buttons action-buttons-fixed">
-        <button
-          type="button"
-          class="row-btn"
-          appStopClick
-          appA11yTitle="{{ 'toggleCharacterCount' | i18n }}"
-          *ngIf="field.type === fieldType.Hidden && cipher.viewPassword && field.showValue"
-          (click)="toggleFieldCount(field)"
-          [attr.aria-pressed]="field.showCount"
-        >
-          <i class="bwi bwi-lg bwi-numbered-list" aria-hidden="true"></i>
-        </button>
-        <button
-          type="button"
-          class="row-btn"
-          appStopClick
-          appA11yTitle="{{ 'toggleVisibility' | i18n }}"
-          *ngIf="field.type === fieldType.Hidden && cipher.viewPassword"
-          (click)="toggleFieldValue(field)"
-        >
-          <i
-            class="bwi bwi-lg"
-            aria-hidden="true"
-            [ngClass]="{ 'bwi-eye': !field.showValue, 'bwi-eye-slash': field.showValue }"
-          ></i>
-        </button>
-        <button
-          type="button"
-          class="row-btn"
-          appStopClick
-          appA11yTitle="{{ 'copyValue' | i18n }}"
-          *ngIf="
-            field.value &&
-            field.type !== fieldType.Boolean &&
-            field.type !== fieldType.Linked &&
-            !(field.type === fieldType.Hidden && !cipher.viewPassword)
-          "
-          (click)="
-            copy(field.value, 'value', field.type === fieldType.Hidden ? 'H_Field' : 'Field')
-          "
-        >
-          <i class="bwi bwi-lg bwi-clone" aria-hidden="true"></i>
-        </button>
-      </div>
-    </div>
-  </div>
-</div>
diff --git a/apps/desktop/src/vault/app/vault/view-custom-fields.component.ts b/apps/desktop/src/vault/app/vault/view-custom-fields.component.ts
deleted file mode 100644
index efe61ad1fa7..00000000000
--- a/apps/desktop/src/vault/app/vault/view-custom-fields.component.ts
+++ /dev/null
@@ -1,15 +0,0 @@
-import { Component } from "@angular/core";
-
-import { ViewCustomFieldsComponent as BaseViewCustomFieldsComponent } from "@bitwarden/angular/vault/components/view-custom-fields.component";
-import { EventCollectionService } from "@bitwarden/common/abstractions/event/event-collection.service";
-
-@Component({
-  selector: "app-vault-view-custom-fields",
-  templateUrl: "view-custom-fields.component.html",
-  standalone: false,
-})
-export class ViewCustomFieldsComponent extends BaseViewCustomFieldsComponent {
-  constructor(eventCollectionService: EventCollectionService) {
-    super(eventCollectionService);
-  }
-}
diff --git a/apps/desktop/src/vault/app/vault/view.component.html b/apps/desktop/src/vault/app/vault/view.component.html
deleted file mode 100644
index d3e3a751d9d..00000000000
--- a/apps/desktop/src/vault/app/vault/view.component.html
+++ /dev/null
@@ -1,683 +0,0 @@
-<div class="content">
-  <div class="inner-content" *ngIf="cipher">
-    <div class="box">
-      <h2 class="box-header">
-        {{ "itemInformation" | i18n }}
-      </h2>
-      <div class="box-content">
-        <div class="box-content-row">
-          <span
-            class="row-label draggable"
-            draggable="true"
-            (dragstart)="setTextDataOnDrag($event, cipher.name)"
-            >{{ "name" | i18n }}</span
-          >
-          {{ cipher.name }}
-        </div>
-        <!-- Login -->
-        <div *ngIf="cipher.login">
-          <div class="box-content-row box-content-row-flex" *ngIf="cipher.login.username">
-            <div class="row-main">
-              <span
-                class="row-label draggable"
-                draggable="true"
-                (dragstart)="setTextDataOnDrag($event, cipher.login.username)"
-                >{{ "username" | i18n }}</span
-              >
-              {{ cipher.login.username }}
-            </div>
-            <div class="action-buttons">
-              <button
-                type="button"
-                class="row-btn"
-                appStopClick
-                appA11yTitle="{{ 'copyUsername' | i18n }}"
-                (click)="copy(cipher.login.username, 'username', 'Username')"
-              >
-                <i class="bwi bwi-lg bwi-clone" aria-hidden="true"></i>
-              </button>
-            </div>
-          </div>
-          <div class="box-content-row box-content-row-flex" *ngIf="cipher.login.password">
-            <div class="row-main">
-              <span
-                class="row-label draggable"
-                draggable="true"
-                (dragstart)="setTextDataOnDrag($event, cipher.login.password)"
-                >{{ "password" | i18n }}</span
-              >
-              <div *ngIf="!showPassword" class="monospaced">
-                {{ cipher.login.maskedPassword }}
-              </div>
-              <div
-                *ngIf="showPassword && !showPasswordCount"
-                class="monospaced password-wrapper"
-                [appCopyText]="cipher.login.password"
-                [innerHTML]="cipher.login.password | colorPassword"
-              ></div>
-              <div
-                *ngIf="showPassword && showPasswordCount"
-                [innerHTML]="cipher.login.password | colorPasswordCount"
-              ></div>
-            </div>
-            <div class="action-buttons" *ngIf="cipher.viewPassword">
-              <button
-                type="button"
-                #checkPasswordBtn
-                class="row-btn btn"
-                appA11yTitle="{{ 'checkPassword' | i18n }}"
-                (click)="checkPassword()"
-                [appApiAction]="checkPasswordPromise"
-                [disabled]="$any(checkPasswordBtn).loading"
-              >
-                <i
-                  class="bwi bwi-lg bwi-check-circle"
-                  [hidden]="$any(checkPasswordBtn).loading"
-                  aria-hidden="true"
-                ></i>
-                <i
-                  class="bwi bwi-lg bwi-spinner bwi-spin"
-                  [hidden]="!$any(checkPasswordBtn).loading"
-                  aria-hidden="true"
-                ></i>
-              </button>
-              <button
-                type="button"
-                class="row-btn"
-                appStopClick
-                attr.aria-label="{{ 'toggleCharacterCount' | i18n }} {{ 'password' | i18n }}"
-                appA11yTitle="{{ 'toggleCharacterCount' | i18n }}"
-                (click)="togglePasswordCount()"
-                *ngIf="showPassword"
-                [attr.aria-pressed]="showPasswordCount"
-              >
-                <i class="bwi bwi-lg bwi-numbered-list" aria-hidden="true"></i>
-              </button>
-              <button
-                type="button"
-                class="row-btn"
-                appStopClick
-                appA11yTitle="{{ 'toggleVisibility' | i18n }}"
-                [attr.aria-pressed]="showPassword"
-                (click)="togglePassword()"
-              >
-                <i
-                  class="bwi bwi-lg"
-                  aria-hidden="true"
-                  [ngClass]="{ 'bwi-eye': !showPassword, 'bwi-eye-slash': showPassword }"
-                ></i>
-              </button>
-              <button
-                type="button"
-                class="row-btn"
-                appStopClick
-                appA11yTitle="{{ 'copyPassword' | i18n }}"
-                (click)="copy(cipher.login.password, 'password', 'Password')"
-              >
-                <i class="bwi bwi-lg bwi-clone" aria-hidden="true"></i>
-              </button>
-            </div>
-          </div>
-          <!--Passkey-->
-          <div
-            class="box-content-row text-muted"
-            *ngIf="cipher.login.hasFido2Credentials"
-            tabindex="0"
-            attr.aria-label="{{ 'typePasskey' | i18n }} {{ fido2CredentialCreationDateValue }}"
-          >
-            <span class="row-label">{{ "typePasskey" | i18n }}</span>
-            {{ fido2CredentialCreationDateValue }}
-          </div>
-
-          <ng-container *ngIf="cipher.login.totp && totpInfo$ | async as totpInfo">
-            <div
-              class="box-content-row box-content-row-flex totp"
-              [ngClass]="{ low: totpInfo.totpLow }"
-            >
-              <div class="row-main">
-                <span
-                  class="row-label draggable"
-                  draggable="true"
-                  (dragstart)="setTextDataOnDrag($event, totpInfo.totpCode)"
-                  >{{ "verificationCodeTotp" | i18n }}</span
-                >
-                <span class="totp-code">{{ totpInfo.totpCodeFormatted }}</span>
-              </div>
-              <span class="totp-countdown" aria-hidden="true">
-                <span class="totp-sec">{{ totpInfo.totpSec }}</span>
-                <svg>
-                  <g>
-                    <circle
-                      class="totp-circle inner"
-                      r="12.6"
-                      cy="16"
-                      cx="16"
-                      [ngStyle]="{ 'stroke-dashoffset.px': totpInfo.totpDash }"
-                    ></circle>
-                    <circle class="totp-circle outer" r="14" cy="16" cx="16"></circle>
-                  </g>
-                </svg>
-              </span>
-              <div class="action-buttons">
-                <button
-                  type="button"
-                  class="row-btn"
-                  appStopClick
-                  title="{{ 'copyValue' | i18n }}"
-                  (click)="copy(totpInfo.totpCode, 'verificationCodeTotp', 'TOTP')"
-                >
-                  <i class="bwi bwi-lg bwi-clone" aria-hidden="true"></i>
-                  <span class="sr-only">{{ "copyValue" | i18n }}</span>
-                  <span
-                    class="sr-only exists-only-on-parent-focus"
-                    aria-live="polite"
-                    aria-atomic="true"
-                    >{{ totpInfo.totpSec }}</span
-                  >
-                </button>
-              </div>
-            </div>
-          </ng-container>
-
-          <div class="box-content-row box-content-row-flex totp" *ngIf="showPremiumRequiredTotp">
-            <div class="row-main">
-              <span class="row-label">{{ "verificationCodeTotp" | i18n }}</span>
-              <span class="row-label">
-                <a [routerLink]="" (click)="showGetPremium()"
-                  >{{ "premiumSubcriptionRequired" | i18n }}
-                </a>
-              </span>
-            </div>
-          </div>
-        </div>
-        <!-- Card -->
-        <div *ngIf="cipher.card">
-          <div class="box-content-row" *ngIf="cipher.card.cardholderName">
-            <span
-              class="row-label draggable"
-              draggable="true"
-              (dragstart)="setTextDataOnDrag($event, cipher.card.cardholderName)"
-              >{{ "cardholderName" | i18n }}</span
-            >
-            {{ cipher.card.cardholderName }}
-          </div>
-          <div class="box-content-row box-content-row-flex" *ngIf="cipher.card.number">
-            <div class="row-main">
-              <span
-                class="row-label draggable"
-                draggable="true"
-                (dragstart)="setTextDataOnDrag($event, cipher.card.number)"
-                >{{ "number" | i18n }}</span
-              >
-              <span *ngIf="!showCardNumber" class="monospaced">{{
-                cipher.card.maskedNumber | creditCardNumber: cipher.card.brand
-              }}</span>
-              <span *ngIf="showCardNumber" class="monospaced">{{
-                cipher.card.number | creditCardNumber: cipher.card.brand
-              }}</span>
-            </div>
-            <div class="action-buttons">
-              <button
-                type="button"
-                class="row-btn"
-                appStopClick
-                appA11yTitle="{{ 'toggleVisibility' | i18n }}"
-                [attr.aria-pressed]="showCardNumber"
-                (click)="toggleCardNumber()"
-              >
-                <i
-                  class="bwi bwi-lg"
-                  aria-hidden="true"
-                  [ngClass]="{ 'bwi-eye': !showCardNumber, 'bwi-eye-slash': showCardNumber }"
-                ></i>
-              </button>
-              <button
-                type="button"
-                class="row-btn"
-                appStopClick
-                appA11yTitle="{{ 'copyNumber' | i18n }}"
-                (click)="copy(cipher.card.number, 'number', 'Card Number')"
-              >
-                <i class="bwi bwi-lg bwi-clone" aria-hidden="true"></i>
-              </button>
-            </div>
-          </div>
-          <div class="box-content-row" *ngIf="cipher.card.brand">
-            <span
-              class="row-label draggable"
-              draggable="true"
-              (dragstart)="setTextDataOnDrag($event, cipher.card.brand)"
-              >{{ "brand" | i18n }}</span
-            >
-            {{ cipher.card.brand }}
-          </div>
-          <div class="box-content-row" *ngIf="cipher.card.expiration">
-            <span
-              class="row-label draggable"
-              draggable="true"
-              (dragstart)="setTextDataOnDrag($event, cipher.card.expiration)"
-              >{{ "expiration" | i18n }}</span
-            >
-            {{ cipher.card.expiration }}
-          </div>
-          <div class="box-content-row box-content-row-flex" *ngIf="cipher.card.code">
-            <div class="row-main">
-              <span
-                class="row-label draggable"
-                draggable="true"
-                (dragstart)="setTextDataOnDrag($event, cipher.card.code)"
-                >{{ "securityCode" | i18n }}</span
-              >
-              <span *ngIf="!showCardCode" class="monospaced">{{ cipher.card.maskedCode }}</span>
-              <span *ngIf="showCardCode" class="monospaced">{{ cipher.card.code }}</span>
-            </div>
-            <div class="action-buttons">
-              <button
-                type="button"
-                class="row-btn"
-                appStopClick
-                appA11yTitle="{{ 'toggleVisibility' | i18n }}"
-                [attr.aria-pressed]="showCardCode"
-                (click)="toggleCardCode()"
-              >
-                <i
-                  class="bwi bwi-lg"
-                  aria-hidden="true"
-                  [ngClass]="{ 'bwi-eye': !showCardCode, 'bwi-eye-slash': showCardCode }"
-                ></i>
-              </button>
-              <button
-                type="button"
-                class="row-btn"
-                appStopClick
-                appA11yTitle="{{ 'copySecurityCode' | i18n }}"
-                (click)="copy(cipher.card.code, 'securityCode', 'Security Code')"
-              >
-                <i class="bwi bwi-lg bwi-clone" aria-hidden="true"></i>
-              </button>
-            </div>
-          </div>
-        </div>
-        <!-- Identity -->
-        <div *ngIf="cipher.identity">
-          <div class="box-content-row" *ngIf="cipher.identity.fullName">
-            <span
-              class="row-label draggable"
-              draggable="true"
-              (dragstart)="setTextDataOnDrag($event, cipher.identity.fullName)"
-              >{{ "identityName" | i18n }}</span
-            >
-            {{ cipher.identity.fullName }}
-          </div>
-          <div class="box-content-row" *ngIf="cipher.identity.username">
-            <span
-              class="row-label draggable"
-              draggable="true"
-              (dragstart)="setTextDataOnDrag($event, cipher.identity.username)"
-              >{{ "username" | i18n }}</span
-            >
-            {{ cipher.identity.username }}
-          </div>
-          <div class="box-content-row" *ngIf="cipher.identity.company">
-            <span
-              class="row-label draggable"
-              draggable="true"
-              (dragstart)="setTextDataOnDrag($event, cipher.identity.company)"
-              >{{ "company" | i18n }}</span
-            >
-            {{ cipher.identity.company }}
-          </div>
-          <div class="box-content-row" *ngIf="cipher.identity.ssn">
-            <span
-              class="row-label draggable"
-              draggable="true"
-              (dragstart)="setTextDataOnDrag($event, cipher.identity.ssn)"
-              >{{ "ssn" | i18n }}</span
-            >
-            {{ cipher.identity.ssn }}
-          </div>
-          <div class="box-content-row" *ngIf="cipher.identity.passportNumber">
-            <span
-              class="row-label draggable"
-              draggable="true"
-              (dragstart)="setTextDataOnDrag($event, cipher.identity.passportNumber)"
-              >{{ "passportNumber" | i18n }}</span
-            >
-            {{ cipher.identity.passportNumber }}
-          </div>
-          <div class="box-content-row" *ngIf="cipher.identity.licenseNumber">
-            <span
-              class="row-label draggable"
-              draggable="true"
-              (dragstart)="setTextDataOnDrag($event, cipher.identity.licenseNumber)"
-              >{{ "licenseNumber" | i18n }}</span
-            >
-            {{ cipher.identity.licenseNumber }}
-          </div>
-          <div class="box-content-row" *ngIf="cipher.identity.email">
-            <span
-              class="row-label draggable"
-              draggable="true"
-              (dragstart)="setTextDataOnDrag($event, cipher.identity.email)"
-              >{{ "email" | i18n }}</span
-            >
-            {{ cipher.identity.email }}
-          </div>
-          <div class="box-content-row" *ngIf="cipher.identity.phone">
-            <span
-              class="row-label draggable"
-              draggable="true"
-              (dragstart)="setTextDataOnDrag($event, cipher.identity.phone)"
-              >{{ "phone" | i18n }}</span
-            >
-            {{ cipher.identity.phone }}
-          </div>
-          <div
-            class="box-content-row"
-            *ngIf="cipher.identity.address1 || cipher.identity.city || cipher.identity.country"
-          >
-            <span
-              class="row-label draggable"
-              draggable="true"
-              (dragstart)="
-                setTextDataOnDrag(
-                  $event,
-                  (cipher.identity.address1 ? cipher.identity.address1 + '\n' : '') +
-                    (cipher.identity.address2 ? cipher.identity.address2 + '\n' : '') +
-                    (cipher.identity.address3 ? cipher.identity.address3 + '\n' : '') +
-                    (cipher.identity.fullAddressPart2
-                      ? cipher.identity.fullAddressPart2 + '\n'
-                      : '') +
-                    (cipher.identity.country ? cipher.identity.country : '')
-                )
-              "
-              >{{ "address" | i18n }}</span
-            >
-            <div *ngIf="cipher.identity.address1">{{ cipher.identity.address1 }}</div>
-            <div *ngIf="cipher.identity.address2">{{ cipher.identity.address2 }}</div>
-            <div *ngIf="cipher.identity.address3">{{ cipher.identity.address3 }}</div>
-            <div *ngIf="cipher.identity.fullAddressPart2">
-              {{ cipher.identity.fullAddressPart2 }}
-            </div>
-            <div *ngIf="cipher.identity.country">{{ cipher.identity.country }}</div>
-          </div>
-        </div>
-        <!-- Ssh Key -->
-        <div *ngIf="cipher.sshKey">
-          <div class="box-content-row box-content-row-flex" *ngIf="cipher.sshKey.privateKey">
-            <div class="row-main">
-              <span class="row-label">{{ "sshPrivateKey" | i18n }}</span>
-              <div
-                *ngIf="!showPrivateKey"
-                class="monospaced"
-                style="white-space: pre-line"
-                [innerText]="cipher.sshKey.maskedPrivateKey"
-              ></div>
-              <div
-                *ngIf="showPrivateKey"
-                class="monospaced"
-                style="white-space: pre-line"
-                [innerText]="cipher.sshKey.privateKey"
-              ></div>
-            </div>
-            <div class="action-buttons" *ngIf="cipher.viewPassword">
-              <button
-                type="button"
-                class="row-btn"
-                appStopClick
-                appA11yTitle="{{ 'toggleVisibility' | i18n }}"
-                [attr.aria-pressed]="showPrivateKey"
-                (click)="togglePrivateKey()"
-              >
-                <i
-                  class="bwi bwi-lg"
-                  aria-hidden="true"
-                  [ngClass]="{ 'bwi-eye': !showPrivateKey, 'bwi-eye-slash': showPrivateKey }"
-                ></i>
-              </button>
-              <button
-                type="button"
-                class="row-btn"
-                appStopClick
-                appA11yTitle="{{ 'copySSHPrivateKey' | i18n }}"
-                (click)="copy(cipher.sshKey.privateKey, 'sshPrivateKey', 'SshPrivateKey')"
-              >
-                <i class="bwi bwi-lg bwi-clone" aria-hidden="true"></i>
-              </button>
-            </div>
-          </div>
-          <div
-            class="box-content-row box-content-row-flex"
-            *ngIf="cipher.sshKey.publicKey"
-            appBoxRow
-          >
-            <div class="row-main">
-              <label for="sshPublicKey">{{ "sshPublicKey" | i18n }}</label>
-              <input
-                id="sshPublicKey"
-                type="text"
-                name="SshKey.SshPublicKey"
-                [ngModel]="cipher.sshKey.publicKey"
-                readonly
-              />
-            </div>
-            <div class="action-buttons">
-              <button
-                type="button"
-                class="row-btn"
-                appStopClick
-                (click)="copy(cipher.sshKey.publicKey, 'sshPublicKey', 'SshPublicKey')"
-                appA11yTitle="{{ 'generateSshKey' | i18n }}"
-              >
-                <i class="bwi bwi-lg bwi-clone" aria-hidden="true"></i>
-              </button>
-            </div>
-          </div>
-          <div
-            class="box-content-row box-content-row-flex"
-            *ngIf="cipher.sshKey.keyFingerprint"
-            appBoxRow
-          >
-            <div class="row-main">
-              <label for="sshKeyFingerprint">{{ "sshFingerprint" | i18n }}</label>
-              <input
-                id="sshKeyFingerprint"
-                type="text"
-                name="SshKey.SshKeyFingerprint"
-                [ngModel]="cipher.sshKey.keyFingerprint"
-                readonly
-              />
-            </div>
-            <div class="action-buttons">
-              <button
-                type="button"
-                class="row-btn"
-                appStopClick
-                (click)="copy(cipher.sshKey.keyFingerprint, 'sshFingerprint', 'SshFingerprint')"
-                appA11yTitle="{{ 'generateSshKey' | i18n }}"
-              >
-                <i class="bwi bwi-lg bwi-clone" aria-hidden="true"></i>
-              </button>
-            </div>
-          </div>
-        </div>
-      </div>
-    </div>
-    <div class="box" *ngIf="cipher.login && cipher.login.hasUris">
-      <div class="box-content">
-        <div
-          class="box-content-row box-content-row-flex"
-          *ngFor="let u of cipher.login.uris; let i = index"
-        >
-          <div class="row-main">
-            <span
-              class="row-label draggable"
-              draggable="true"
-              (dragstart)="setTextDataOnDrag($event, u.uri)"
-              *ngIf="!u.isWebsite"
-              >{{ "uri" | i18n }}</span
-            >
-            <span
-              class="row-label draggable"
-              draggable="true"
-              (dragstart)="setTextDataOnDrag($event, u.uri)"
-              *ngIf="u.isWebsite"
-              >{{ "website" | i18n }}</span
-            >
-            <span title="{{ u.uri }}">{{ u.hostOrUri }}</span>
-          </div>
-          <div class="action-buttons">
-            <button
-              type="button"
-              class="row-btn"
-              appStopClick
-              appA11yTitle="{{ 'launch' | i18n }}"
-              *ngIf="u.canLaunch"
-              (click)="launch(u)"
-            >
-              <i class="bwi bwi-lg bwi-external-link" aria-hidden="true"></i>
-            </button>
-            <button
-              type="button"
-              class="row-btn"
-              appStopClick
-              appA11yTitle="{{ 'copyUri' | i18n }}"
-              (click)="copy(u.uri, u.isWebsite ? 'website' : 'uri', 'URI')"
-            >
-              <i class="bwi bwi-lg bwi-clone" aria-hidden="true"></i>
-            </button>
-          </div>
-        </div>
-      </div>
-    </div>
-    <div class="box" *ngIf="cipher.folderId && folder">
-      <div class="box-content">
-        <div class="box-content-row">
-          <label
-            for="folderName"
-            class="draggable"
-            draggable="true"
-            (dragstart)="setTextDataOnDrag($event, folder.name)"
-            >{{ "folder" | i18n }}</label
-          >
-          <input id="folderName" type="text" name="folderName" [value]="folder.name" readonly />
-        </div>
-      </div>
-    </div>
-    <div class="box" *ngIf="cipher.notes">
-      <h2 class="box-header">
-        <span
-          class="draggable"
-          draggable="true"
-          (dragstart)="setTextDataOnDrag($event, cipher.notes)"
-          >{{ "notes" | i18n }}</span
-        >
-      </h2>
-      <div class="box-content">
-        <div class="box-content-row pre-wrap">{{ cipher.notes }}</div>
-      </div>
-    </div>
-    <app-vault-view-custom-fields
-      *ngIf="cipher.hasFields"
-      [cipher]="cipher"
-      [promptPassword]="promptPassword.bind(this)"
-      [copy]="copy.bind(this)"
-    >
-    </app-vault-view-custom-fields>
-    <div class="box" *ngIf="cipher.hasAttachments && (canAccessPremium || cipher.organizationId)">
-      <h2 class="box-header">
-        {{ "attachments" | i18n }}
-      </h2>
-      <div class="box-content">
-        <button
-          type="button"
-          class="box-content-row box-content-row-flex text-default"
-          *ngFor="let attachment of cipher.attachments"
-          appStopClick
-          (click)="downloadAttachment(attachment)"
-        >
-          <span class="row-main">{{ attachment.fileName }}</span>
-          <small class="row-sub-label">{{ attachment.sizeName }}</small>
-          <i
-            class="bwi bwi-download bwi-fw row-sub-icon"
-            *ngIf="!$any(attachment).downloading"
-            aria-hidden="true"
-          ></i>
-          <i
-            class="bwi bwi-spinner bwi-fw bwi-spin row-sub-icon"
-            *ngIf="$any(attachment).downloading"
-            aria-hidden="true"
-          ></i>
-        </button>
-      </div>
-    </div>
-    <div class="box">
-      <div class="box-footer">
-        <div>
-          <b class="font-weight-semibold">{{ "dateUpdated" | i18n }}:</b>
-          {{ cipher.revisionDate | date: "medium" }}
-        </div>
-        <div *ngIf="cipher.creationDate">
-          <b class="font-weight-semibold">{{ "dateCreated" | i18n }}:</b>
-          {{ cipher.creationDate | date: "medium" }}
-        </div>
-        <div *ngIf="cipher.passwordRevisionDisplayDate">
-          <b class="font-weight-semibold">{{ "datePasswordUpdated" | i18n }}:</b>
-          {{ cipher.passwordRevisionDisplayDate | date: "medium" }}
-        </div>
-        <div *ngIf="cipher.hasPasswordHistory">
-          <b class="font-weight-semibold">{{ "passwordHistory" | i18n }}:</b>
-          <button
-            type="button"
-            (click)="viewHistory()"
-            appStopClick
-            appA11yTitle="{{ 'passwordHistory' | i18n }}, {{ cipher.passwordHistory.length }}"
-          >
-            <span aria-hidden="true">{{ cipher.passwordHistory.length }}</span>
-          </button>
-        </div>
-      </div>
-    </div>
-  </div>
-</div>
-<div class="footer" *ngIf="cipher">
-  <ng-container *ngIf="!cipher.decryptionFailure">
-    <button
-      type="button"
-      class="primary"
-      (click)="edit()"
-      appA11yTitle="{{ 'edit' | i18n }}"
-      *ngIf="!cipher.isDeleted"
-    >
-      <i class="bwi bwi-pencil bwi-fw bwi-lg" aria-hidden="true"></i>
-    </button>
-    <button
-      type="button"
-      class="primary"
-      (click)="restore()"
-      appA11yTitle="{{ 'restore' | i18n }}"
-      *ngIf="(canRestoreCipher$ | async) && cipher.isDeleted"
-    >
-      <i class="bwi bwi-undo bwi-fw bwi-lg" aria-hidden="true"></i>
-    </button>
-    <button
-      type="button"
-      class="primary"
-      *ngIf="!cipher?.organizationId && !cipher.isDeleted"
-      (click)="clone()"
-      appA11yTitle="{{ 'clone' | i18n }}"
-    >
-      <i class="bwi bwi-files bwi-fw bwi-lg" aria-hidden="true"></i>
-    </button>
-  </ng-container>
-  <div class="right" *ngIf="canDeleteCipher$ | async">
-    <button
-      type="button"
-      (click)="delete()"
-      class="danger"
-      appA11yTitle="{{ (cipher.isDeleted ? 'permanentlyDelete' : 'delete') | i18n }}"
-    >
-      <i class="bwi bwi-trash bwi-lg bwi-fw" aria-hidden="true"></i>
-    </button>
-  </div>
-</div>
diff --git a/apps/desktop/src/vault/app/vault/view.component.ts b/apps/desktop/src/vault/app/vault/view.component.ts
deleted file mode 100644
index 7e7f7b57fc8..00000000000
--- a/apps/desktop/src/vault/app/vault/view.component.ts
+++ /dev/null
@@ -1,176 +0,0 @@
-import { DatePipe } from "@angular/common";
-import {
-  ChangeDetectorRef,
-  Component,
-  EventEmitter,
-  Input,
-  NgZone,
-  OnChanges,
-  OnDestroy,
-  OnInit,
-  Output,
-  SimpleChanges,
-} from "@angular/core";
-
-import { ViewComponent as BaseViewComponent } from "@bitwarden/angular/vault/components/view.component";
-import { ApiService } from "@bitwarden/common/abstractions/api.service";
-import { AuditService } from "@bitwarden/common/abstractions/audit.service";
-import { EventCollectionService } from "@bitwarden/common/abstractions/event/event-collection.service";
-import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
-import { TokenService } from "@bitwarden/common/auth/abstractions/token.service";
-import { BillingAccountProfileStateService } from "@bitwarden/common/billing/abstractions/account/billing-account-profile-state.service";
-import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
-import { BroadcasterService } from "@bitwarden/common/platform/abstractions/broadcaster.service";
-import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
-import { FileDownloadService } from "@bitwarden/common/platform/abstractions/file-download/file-download.service";
-import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
-import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
-import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
-import { StateService } from "@bitwarden/common/platform/abstractions/state.service";
-import { CipherId } from "@bitwarden/common/types/guid";
-import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
-import { FolderService } from "@bitwarden/common/vault/abstractions/folder/folder.service.abstraction";
-import { TotpService } from "@bitwarden/common/vault/abstractions/totp.service";
-import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
-import { CipherAuthorizationService } from "@bitwarden/common/vault/services/cipher-authorization.service";
-import { DialogService, ToastService } from "@bitwarden/components";
-import { KeyService } from "@bitwarden/key-management";
-import { DecryptionFailureDialogComponent, PasswordRepromptService } from "@bitwarden/vault";
-
-const BroadcasterSubscriptionId = "ViewComponent";
-
-@Component({
-  selector: "app-vault-view",
-  templateUrl: "view.component.html",
-  standalone: false,
-})
-export class ViewComponent extends BaseViewComponent implements OnInit, OnDestroy, OnChanges {
-  @Output() onViewCipherPasswordHistory = new EventEmitter<CipherView>();
-  @Input() masterPasswordAlreadyPrompted: boolean = false;
-
-  constructor(
-    cipherService: CipherService,
-    folderService: FolderService,
-    totpService: TotpService,
-    tokenService: TokenService,
-    i18nService: I18nService,
-    keyService: KeyService,
-    encryptService: EncryptService,
-    platformUtilsService: PlatformUtilsService,
-    auditService: AuditService,
-    broadcasterService: BroadcasterService,
-    ngZone: NgZone,
-    changeDetectorRef: ChangeDetectorRef,
-    eventCollectionService: EventCollectionService,
-    apiService: ApiService,
-    private messagingService: MessagingService,
-    passwordRepromptService: PasswordRepromptService,
-    logService: LogService,
-    stateService: StateService,
-    fileDownloadService: FileDownloadService,
-    dialogService: DialogService,
-    datePipe: DatePipe,
-    billingAccountProfileStateService: BillingAccountProfileStateService,
-    accountService: AccountService,
-    toastService: ToastService,
-    cipherAuthorizationService: CipherAuthorizationService,
-    configService: ConfigService,
-  ) {
-    super(
-      cipherService,
-      folderService,
-      totpService,
-      tokenService,
-      i18nService,
-      keyService,
-      encryptService,
-      platformUtilsService,
-      auditService,
-      window,
-      broadcasterService,
-      ngZone,
-      changeDetectorRef,
-      eventCollectionService,
-      apiService,
-      passwordRepromptService,
-      logService,
-      stateService,
-      fileDownloadService,
-      dialogService,
-      datePipe,
-      accountService,
-      billingAccountProfileStateService,
-      toastService,
-      cipherAuthorizationService,
-      configService,
-    );
-  }
-
-  ngOnInit() {
-    super.ngOnInit();
-
-    this.broadcasterService.subscribe(BroadcasterSubscriptionId, (message: any) => {
-      this.ngZone.run(() => {
-        switch (message.command) {
-          case "windowHidden":
-            this.onWindowHidden();
-            break;
-          default:
-        }
-      });
-    });
-    this.passwordReprompted = this.masterPasswordAlreadyPrompted;
-  }
-
-  ngOnDestroy() {
-    super.ngOnDestroy();
-    this.broadcasterService.unsubscribe(BroadcasterSubscriptionId);
-  }
-
-  async ngOnChanges(changes: SimpleChanges) {
-    if (this.cipher?.decryptionFailure) {
-      DecryptionFailureDialogComponent.open(this.dialogService, {
-        cipherIds: [this.cipherId as CipherId],
-      });
-      return;
-    }
-    this.passwordReprompted = this.masterPasswordAlreadyPrompted;
-
-    if (changes["cipherId"]) {
-      if (changes["cipherId"].currentValue !== changes["cipherId"].previousValue) {
-        this.showPrivateKey = false;
-      }
-    }
-  }
-
-  viewHistory() {
-    this.onViewCipherPasswordHistory.emit(this.cipher);
-  }
-
-  async copy(value: string, typeI18nKey: string, aType: string): Promise<boolean> {
-    const hasCopied = await super.copy(value, typeI18nKey, aType);
-    if (hasCopied) {
-      this.messagingService.send("minimizeOnCopy");
-    }
-
-    return hasCopied;
-  }
-
-  onWindowHidden() {
-    this.showPassword = false;
-    this.showCardNumber = false;
-    this.showCardCode = false;
-    if (this.cipher !== null && this.cipher.hasFields) {
-      this.cipher.fields.forEach((field) => {
-        field.showValue = false;
-      });
-    }
-  }
-
-  showGetPremium() {
-    if (!this.canAccessPremium) {
-      this.messagingService.send("premiumRequired");
-    }
-  }
-}
diff --git a/libs/angular/src/admin-console/components/collections.component.ts b/libs/angular/src/admin-console/components/collections.component.ts
deleted file mode 100644
index 9d36ab4619f..00000000000
--- a/libs/angular/src/admin-console/components/collections.component.ts
+++ /dev/null
@@ -1,136 +0,0 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
-import { Directive, EventEmitter, Input, OnInit, Output } from "@angular/core";
-import { firstValueFrom, map } from "rxjs";
-
-// This import has been flagged as unallowed for this class. It may be involved in a circular dependency loop.
-// eslint-disable-next-line no-restricted-imports
-import { CollectionService, CollectionView } from "@bitwarden/admin-console/common";
-import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
-import { Organization } from "@bitwarden/common/admin-console/models/domain/organization";
-import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
-import { getUserId } from "@bitwarden/common/auth/services/account.service";
-import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
-import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
-import { UserId } from "@bitwarden/common/types/guid";
-import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
-import { Cipher } from "@bitwarden/common/vault/models/domain/cipher";
-import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
-import { ToastService } from "@bitwarden/components";
-
-@Directive()
-export class CollectionsComponent implements OnInit {
-  @Input() cipherId: string;
-  @Input() allowSelectNone = false;
-  @Output() onSavedCollections = new EventEmitter();
-
-  formPromise: Promise<any>;
-  cipher: CipherView;
-  collectionIds: string[];
-  collections: CollectionView[] = [];
-  organization: Organization;
-
-  protected cipherDomain: Cipher;
-
-  constructor(
-    protected collectionService: CollectionService,
-    protected platformUtilsService: PlatformUtilsService,
-    protected i18nService: I18nService,
-    protected cipherService: CipherService,
-    protected organizationService: OrganizationService,
-    private logService: LogService,
-    private accountService: AccountService,
-    private toastService: ToastService,
-  ) {}
-
-  async ngOnInit() {
-    await this.load();
-  }
-
-  async load() {
-    const activeUserId = await firstValueFrom(this.accountService.activeAccount$.pipe(getUserId));
-    this.cipherDomain = await this.loadCipher(activeUserId);
-    this.collectionIds = this.loadCipherCollections();
-    this.cipher = await this.cipherService.decrypt(this.cipherDomain, activeUserId);
-    this.collections = await this.loadCollections();
-
-    this.collections.forEach((c) => ((c as any).checked = false));
-    if (this.collectionIds != null) {
-      this.collections.forEach((c) => {
-        (c as any).checked = this.collectionIds != null && this.collectionIds.indexOf(c.id) > -1;
-      });
-    }
-
-    if (this.organization == null) {
-      this.organization = await firstValueFrom(
-        this.organizationService
-          .organizations$(activeUserId)
-          .pipe(
-            map((organizations) =>
-              organizations.find((org) => org.id === this.cipher.organizationId),
-            ),
-          ),
-      );
-    }
-  }
-
-  async submit(): Promise<boolean> {
-    const selectedCollectionIds = this.collections
-      .filter((c) => {
-        if (this.organization.canEditAllCiphers) {
-          return !!(c as any).checked;
-        } else {
-          return !!(c as any).checked && !c.readOnly;
-        }
-      })
-      .map((c) => c.id);
-    if (!this.allowSelectNone && selectedCollectionIds.length === 0) {
-      this.toastService.showToast({
-        variant: "error",
-        title: this.i18nService.t("errorOccurred"),
-        message: this.i18nService.t("selectOneCollection"),
-      });
-      return false;
-    }
-    this.cipherDomain.collectionIds = selectedCollectionIds;
-    try {
-      const activeUserId = await firstValueFrom(this.accountService.activeAccount$.pipe(getUserId));
-      this.formPromise = this.saveCollections(activeUserId);
-      await this.formPromise;
-      this.onSavedCollections.emit();
-      this.toastService.showToast({
-        variant: "success",
-        title: null,
-        message: this.i18nService.t("editedItem"),
-      });
-      return true;
-    } catch (e) {
-      this.toastService.showToast({
-        variant: "error",
-        title: this.i18nService.t("errorOccurred"),
-        message: e.message,
-      });
-      return false;
-    }
-  }
-
-  protected loadCipher(userId: UserId) {
-    return this.cipherService.get(this.cipherId, userId);
-  }
-
-  protected loadCipherCollections() {
-    return this.cipherDomain.collectionIds;
-  }
-
-  protected async loadCollections() {
-    const allCollections = await this.collectionService.getAllDecrypted();
-    return allCollections.filter(
-      (c) => !c.readOnly && c.organizationId === this.cipher.organizationId,
-    );
-  }
-
-  protected saveCollections(userId: UserId) {
-    return this.cipherService.saveCollectionsWithServer(this.cipherDomain, userId);
-  }
-}
diff --git a/libs/angular/src/components/share.component.ts b/libs/angular/src/components/share.component.ts
deleted file mode 100644
index 51827bfb9f2..00000000000
--- a/libs/angular/src/components/share.component.ts
+++ /dev/null
@@ -1,142 +0,0 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
-import { Directive, EventEmitter, Input, OnDestroy, OnInit, Output } from "@angular/core";
-import { firstValueFrom, map, Observable, Subject, takeUntil } from "rxjs";
-
-// This import has been flagged as unallowed for this class. It may be involved in a circular dependency loop.
-// eslint-disable-next-line no-restricted-imports
-import { CollectionService, CollectionView } from "@bitwarden/admin-console/common";
-import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
-import { OrganizationUserStatusType } from "@bitwarden/common/admin-console/enums";
-import { Organization } from "@bitwarden/common/admin-console/models/domain/organization";
-import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
-import { getUserId } from "@bitwarden/common/auth/services/account.service";
-import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
-import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
-import { Utils } from "@bitwarden/common/platform/misc/utils";
-import { Checkable, isChecked } from "@bitwarden/common/types/checkable";
-import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
-import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
-
-@Directive()
-export class ShareComponent implements OnInit, OnDestroy {
-  @Input() cipherId: string;
-  @Input() organizationId: string;
-  @Output() onSharedCipher = new EventEmitter();
-
-  formPromise: Promise<void>;
-  cipher: CipherView;
-  collections: Checkable<CollectionView>[] = [];
-  organizations$: Observable<Organization[]>;
-
-  protected writeableCollections: Checkable<CollectionView>[] = [];
-
-  private _destroy = new Subject<void>();
-
-  constructor(
-    protected collectionService: CollectionService,
-    protected platformUtilsService: PlatformUtilsService,
-    protected i18nService: I18nService,
-    protected cipherService: CipherService,
-    private logService: LogService,
-    protected organizationService: OrganizationService,
-    protected accountService: AccountService,
-  ) {}
-
-  async ngOnInit() {
-    await this.load();
-  }
-
-  ngOnDestroy(): void {
-    this._destroy.next();
-    this._destroy.complete();
-  }
-
-  async load() {
-    const allCollections = await this.collectionService.getAllDecrypted();
-    this.writeableCollections = allCollections.map((c) => c).filter((c) => !c.readOnly);
-
-    const userId = await firstValueFrom(
-      this.accountService.activeAccount$.pipe(map((account) => account?.id)),
-    );
-
-    this.organizations$ = this.organizationService.memberOrganizations$(userId).pipe(
-      map((orgs) => {
-        return orgs
-          .filter((o) => o.enabled && o.status === OrganizationUserStatusType.Confirmed)
-          .sort(Utils.getSortFunction(this.i18nService, "name"));
-      }),
-    );
-
-    this.organizations$.pipe(takeUntil(this._destroy)).subscribe((orgs) => {
-      if (this.organizationId == null && orgs.length > 0) {
-        this.organizationId = orgs[0].id;
-        this.filterCollections();
-      }
-    });
-
-    const activeUserId = await firstValueFrom(this.accountService.activeAccount$.pipe(getUserId));
-    const cipherDomain = await this.cipherService.get(this.cipherId, activeUserId);
-    this.cipher = await this.cipherService.decrypt(cipherDomain, activeUserId);
-  }
-
-  filterCollections() {
-    this.writeableCollections.forEach((c) => (c.checked = false));
-    if (this.organizationId == null || this.writeableCollections.length === 0) {
-      this.collections = [];
-    } else {
-      this.collections = this.writeableCollections.filter(
-        (c) => c.organizationId === this.organizationId,
-      );
-    }
-  }
-
-  async submit(): Promise<boolean> {
-    const selectedCollectionIds = this.collections.filter(isChecked).map((c) => c.id);
-    if (selectedCollectionIds.length === 0) {
-      this.platformUtilsService.showToast(
-        "error",
-        this.i18nService.t("errorOccurred"),
-        this.i18nService.t("selectOneCollection"),
-      );
-      return;
-    }
-
-    const activeUserId = await firstValueFrom(this.accountService.activeAccount$.pipe(getUserId));
-    const cipherDomain = await this.cipherService.get(this.cipherId, activeUserId);
-    const cipherView = await this.cipherService.decrypt(cipherDomain, activeUserId);
-    const orgs = await firstValueFrom(this.organizations$);
-    const orgName =
-      orgs.find((o) => o.id === this.organizationId)?.name ?? this.i18nService.t("organization");
-
-    try {
-      this.formPromise = this.cipherService
-        .shareWithServer(cipherView, this.organizationId, selectedCollectionIds, activeUserId)
-        .then(async () => {
-          this.onSharedCipher.emit();
-          this.platformUtilsService.showToast(
-            "success",
-            null,
-            this.i18nService.t("movedItemToOrg", cipherView.name, orgName),
-          );
-        });
-      await this.formPromise;
-      return true;
-    } catch (e) {
-      this.logService.error(e);
-    }
-    return false;
-  }
-
-  get canSave() {
-    if (this.collections != null) {
-      for (let i = 0; i < this.collections.length; i++) {
-        if (this.collections[i].checked) {
-          return true;
-        }
-      }
-    }
-    return false;
-  }
-}
diff --git a/libs/angular/src/vault/components/add-edit-custom-fields.component.ts b/libs/angular/src/vault/components/add-edit-custom-fields.component.ts
deleted file mode 100644
index 9f774ca3c24..00000000000
--- a/libs/angular/src/vault/components/add-edit-custom-fields.component.ts
+++ /dev/null
@@ -1,125 +0,0 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
-import { CdkDragDrop, moveItemInArray } from "@angular/cdk/drag-drop";
-import { Directive, Input, OnChanges, SimpleChanges } from "@angular/core";
-
-import { EventCollectionService } from "@bitwarden/common/abstractions/event/event-collection.service";
-import { EventType } from "@bitwarden/common/enums";
-import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { Utils } from "@bitwarden/common/platform/misc/utils";
-import { FieldType, CipherType } from "@bitwarden/common/vault/enums";
-import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
-import { FieldView } from "@bitwarden/common/vault/models/view/field.view";
-
-@Directive()
-export class AddEditCustomFieldsComponent implements OnChanges {
-  @Input() cipher: CipherView;
-  @Input() thisCipherType: CipherType;
-  @Input() editMode: boolean;
-
-  addFieldType: FieldType = FieldType.Text;
-  addFieldTypeOptions: any[];
-  addFieldLinkedTypeOption: any;
-  linkedFieldOptions: any[] = [];
-
-  cipherType = CipherType;
-  fieldType = FieldType;
-  eventType = EventType;
-
-  constructor(
-    private i18nService: I18nService,
-    private eventCollectionService: EventCollectionService,
-  ) {
-    this.addFieldTypeOptions = [
-      { name: i18nService.t("cfTypeText"), value: FieldType.Text },
-      { name: i18nService.t("cfTypeHidden"), value: FieldType.Hidden },
-      { name: i18nService.t("cfTypeBoolean"), value: FieldType.Boolean },
-    ];
-    this.addFieldLinkedTypeOption = {
-      name: this.i18nService.t("cfTypeLinked"),
-      value: FieldType.Linked,
-    };
-  }
-
-  ngOnChanges(changes: SimpleChanges) {
-    if (changes.thisCipherType != null) {
-      this.setLinkedFieldOptions();
-
-      if (!changes.thisCipherType.firstChange) {
-        this.resetCipherLinkedFields();
-      }
-    }
-  }
-
-  addField() {
-    if (this.cipher.fields == null) {
-      this.cipher.fields = [];
-    }
-
-    const f = new FieldView();
-    f.type = this.addFieldType;
-    f.newField = true;
-
-    if (f.type === FieldType.Linked) {
-      f.linkedId = this.linkedFieldOptions[0].value;
-    }
-
-    this.cipher.fields.push(f);
-  }
-
-  removeField(field: FieldView) {
-    const i = this.cipher.fields.indexOf(field);
-    if (i > -1) {
-      this.cipher.fields.splice(i, 1);
-    }
-  }
-
-  toggleFieldValue(field: FieldView) {
-    const f = field as any;
-    f.showValue = !f.showValue;
-    if (this.editMode && f.showValue) {
-      // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-      // eslint-disable-next-line @typescript-eslint/no-floating-promises
-      this.eventCollectionService.collect(
-        EventType.Cipher_ClientToggledHiddenFieldVisible,
-        this.cipher.id,
-      );
-    }
-  }
-
-  trackByFunction(index: number, item: any) {
-    return index;
-  }
-
-  drop(event: CdkDragDrop<string[]>) {
-    moveItemInArray(this.cipher.fields, event.previousIndex, event.currentIndex);
-  }
-
-  private setLinkedFieldOptions() {
-    if (this.cipher.linkedFieldOptions == null) {
-      return;
-    }
-
-    const options: any = [];
-    this.cipher.linkedFieldOptions.forEach((linkedFieldOption, id) =>
-      options.push({ name: this.i18nService.t(linkedFieldOption.i18nKey), value: id }),
-    );
-    this.linkedFieldOptions = options.sort(Utils.getSortFunction(this.i18nService, "name"));
-  }
-
-  private resetCipherLinkedFields() {
-    if (this.cipher.fields == null || this.cipher.fields.length === 0) {
-      return;
-    }
-
-    // Delete any Linked custom fields if the item type does not support them
-    if (this.cipher.linkedFieldOptions == null) {
-      this.cipher.fields = this.cipher.fields.filter((f) => f.type !== FieldType.Linked);
-      return;
-    }
-
-    this.cipher.fields
-      .filter((f) => f.type === FieldType.Linked)
-      .forEach((f) => (f.linkedId = this.linkedFieldOptions[0].value));
-  }
-}
diff --git a/libs/angular/src/vault/components/add-edit.component.ts b/libs/angular/src/vault/components/add-edit.component.ts
deleted file mode 100644
index 3541fa0c8e8..00000000000
--- a/libs/angular/src/vault/components/add-edit.component.ts
+++ /dev/null
@@ -1,855 +0,0 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
-import { DatePipe } from "@angular/common";
-import { Directive, EventEmitter, Input, OnDestroy, OnInit, Output } from "@angular/core";
-import { concatMap, firstValueFrom, map, Observable, Subject, switchMap, takeUntil } from "rxjs";
-
-// This import has been flagged as unallowed for this class. It may be involved in a circular dependency loop.
-// eslint-disable-next-line no-restricted-imports
-import { CollectionService, CollectionView } from "@bitwarden/admin-console/common";
-import { AuditService } from "@bitwarden/common/abstractions/audit.service";
-import { EventCollectionService } from "@bitwarden/common/abstractions/event/event-collection.service";
-import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
-import { PolicyService } from "@bitwarden/common/admin-console/abstractions/policy/policy.service.abstraction";
-import { OrganizationUserStatusType, PolicyType } from "@bitwarden/common/admin-console/enums";
-import { Organization } from "@bitwarden/common/admin-console/models/domain/organization";
-import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
-import { getUserId } from "@bitwarden/common/auth/services/account.service";
-import { normalizeExpiryYearFormat } from "@bitwarden/common/autofill/utils";
-import { EventType } from "@bitwarden/common/enums";
-import { UriMatchStrategy } from "@bitwarden/common/models/domain/domain-service";
-import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
-import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
-import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
-import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
-import { SdkService } from "@bitwarden/common/platform/abstractions/sdk/sdk.service";
-import { Utils } from "@bitwarden/common/platform/misc/utils";
-import { UserId } from "@bitwarden/common/types/guid";
-import {
-  CipherService,
-  EncryptionContext,
-} from "@bitwarden/common/vault/abstractions/cipher.service";
-import { FolderService } from "@bitwarden/common/vault/abstractions/folder/folder.service.abstraction";
-import { CipherType, SecureNoteType } from "@bitwarden/common/vault/enums";
-import { CipherRepromptType } from "@bitwarden/common/vault/enums/cipher-reprompt-type";
-import { CardView } from "@bitwarden/common/vault/models/view/card.view";
-import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
-import { FolderView } from "@bitwarden/common/vault/models/view/folder.view";
-import { IdentityView } from "@bitwarden/common/vault/models/view/identity.view";
-import { LoginUriView } from "@bitwarden/common/vault/models/view/login-uri.view";
-import { LoginView } from "@bitwarden/common/vault/models/view/login.view";
-import { SecureNoteView } from "@bitwarden/common/vault/models/view/secure-note.view";
-import { SshKeyView } from "@bitwarden/common/vault/models/view/ssh-key.view";
-import { CipherAuthorizationService } from "@bitwarden/common/vault/services/cipher-authorization.service";
-import { DialogService, ToastService } from "@bitwarden/components";
-import { generate_ssh_key } from "@bitwarden/sdk-internal";
-// This import has been flagged as unallowed for this class. It may be involved in a circular dependency loop.
-// eslint-disable-next-line no-restricted-imports
-import { PasswordRepromptService, SshImportPromptService } from "@bitwarden/vault";
-
-@Directive()
-export class AddEditComponent implements OnInit, OnDestroy {
-  @Input() cloneMode = false;
-  @Input() folderId: string = null;
-  @Input() cipherId: string;
-  @Input() type: CipherType;
-  @Input() collectionIds: string[];
-  @Input() organizationId: string = null;
-  @Input() collectionId: string = null;
-  @Output() onSavedCipher = new EventEmitter<CipherView>();
-  @Output() onDeletedCipher = new EventEmitter<CipherView>();
-  @Output() onRestoredCipher = new EventEmitter<CipherView>();
-  @Output() onCancelled = new EventEmitter<CipherView>();
-  @Output() onEditAttachments = new EventEmitter<CipherView>();
-  @Output() onShareCipher = new EventEmitter<CipherView>();
-  @Output() onEditCollections = new EventEmitter<CipherView>();
-  @Output() onGeneratePassword = new EventEmitter();
-  @Output() onGenerateUsername = new EventEmitter();
-
-  canDeleteCipher$: Observable<boolean>;
-
-  editMode = false;
-  cipher: CipherView;
-  folders$: Observable<FolderView[]>;
-  collections: CollectionView[] = [];
-  title: string;
-  formPromise: Promise<any>;
-  deletePromise: Promise<any>;
-  restorePromise: Promise<any>;
-  checkPasswordPromise: Promise<number>;
-  showPassword = false;
-  showPrivateKey = false;
-  showTotpSeed = false;
-  showCardNumber = false;
-  showCardCode = false;
-  cipherType = CipherType;
-  cardBrandOptions: any[];
-  cardExpMonthOptions: any[];
-  identityTitleOptions: any[];
-  uriMatchOptions: any[];
-  ownershipOptions: any[] = [];
-  autofillOnPageLoadOptions: any[];
-  currentDate = new Date();
-  allowPersonal = true;
-  reprompt = false;
-  canUseReprompt = true;
-  organization: Organization;
-  /**
-   * Flag to determine if the action is being performed from the admin console.
-   */
-  isAdminConsoleAction: boolean = false;
-
-  protected componentName = "";
-  protected destroy$ = new Subject<void>();
-  protected writeableCollections: CollectionView[];
-  private organizationDataOwnershipAppliesToUser: boolean;
-  private previousCipherId: string;
-
-  get fido2CredentialCreationDateValue(): string {
-    const dateCreated = this.i18nService.t("dateCreated");
-    const creationDate = this.datePipe.transform(
-      this.cipher?.login?.fido2Credentials?.[0]?.creationDate,
-      "short",
-    );
-    return `${dateCreated} ${creationDate}`;
-  }
-
-  constructor(
-    protected cipherService: CipherService,
-    protected folderService: FolderService,
-    protected i18nService: I18nService,
-    protected platformUtilsService: PlatformUtilsService,
-    protected auditService: AuditService,
-    protected accountService: AccountService,
-    protected collectionService: CollectionService,
-    protected messagingService: MessagingService,
-    protected eventCollectionService: EventCollectionService,
-    protected policyService: PolicyService,
-    protected logService: LogService,
-    protected passwordRepromptService: PasswordRepromptService,
-    private organizationService: OrganizationService,
-    protected dialogService: DialogService,
-    protected win: Window,
-    protected datePipe: DatePipe,
-    protected configService: ConfigService,
-    protected cipherAuthorizationService: CipherAuthorizationService,
-    protected toastService: ToastService,
-    protected sdkService: SdkService,
-    private sshImportPromptService: SshImportPromptService,
-  ) {
-    this.cardBrandOptions = [
-      { name: "-- " + i18nService.t("select") + " --", value: null },
-      { name: "Visa", value: "Visa" },
-      { name: "Mastercard", value: "Mastercard" },
-      { name: "American Express", value: "Amex" },
-      { name: "Discover", value: "Discover" },
-      { name: "Diners Club", value: "Diners Club" },
-      { name: "JCB", value: "JCB" },
-      { name: "Maestro", value: "Maestro" },
-      { name: "UnionPay", value: "UnionPay" },
-      { name: "RuPay", value: "RuPay" },
-      { name: i18nService.t("other"), value: "Other" },
-    ];
-    this.cardExpMonthOptions = [
-      { name: "-- " + i18nService.t("select") + " --", value: null },
-      { name: "01 - " + i18nService.t("january"), value: "1" },
-      { name: "02 - " + i18nService.t("february"), value: "2" },
-      { name: "03 - " + i18nService.t("march"), value: "3" },
-      { name: "04 - " + i18nService.t("april"), value: "4" },
-      { name: "05 - " + i18nService.t("may"), value: "5" },
-      { name: "06 - " + i18nService.t("june"), value: "6" },
-      { name: "07 - " + i18nService.t("july"), value: "7" },
-      { name: "08 - " + i18nService.t("august"), value: "8" },
-      { name: "09 - " + i18nService.t("september"), value: "9" },
-      { name: "10 - " + i18nService.t("october"), value: "10" },
-      { name: "11 - " + i18nService.t("november"), value: "11" },
-      { name: "12 - " + i18nService.t("december"), value: "12" },
-    ];
-    this.identityTitleOptions = [
-      { name: "-- " + i18nService.t("select") + " --", value: null },
-      { name: i18nService.t("mr"), value: i18nService.t("mr") },
-      { name: i18nService.t("mrs"), value: i18nService.t("mrs") },
-      { name: i18nService.t("ms"), value: i18nService.t("ms") },
-      { name: i18nService.t("mx"), value: i18nService.t("mx") },
-      { name: i18nService.t("dr"), value: i18nService.t("dr") },
-    ];
-    this.uriMatchOptions = [
-      { name: i18nService.t("defaultMatchDetection"), value: null },
-      { name: i18nService.t("baseDomain"), value: UriMatchStrategy.Domain },
-      { name: i18nService.t("host"), value: UriMatchStrategy.Host },
-      { name: i18nService.t("startsWith"), value: UriMatchStrategy.StartsWith },
-      { name: i18nService.t("regEx"), value: UriMatchStrategy.RegularExpression },
-      { name: i18nService.t("exact"), value: UriMatchStrategy.Exact },
-      { name: i18nService.t("never"), value: UriMatchStrategy.Never },
-    ];
-    this.autofillOnPageLoadOptions = [
-      { name: i18nService.t("autoFillOnPageLoadUseDefault"), value: null },
-      { name: i18nService.t("autoFillOnPageLoadYes"), value: true },
-      { name: i18nService.t("autoFillOnPageLoadNo"), value: false },
-    ];
-  }
-
-  async ngOnInit() {
-    this.accountService.activeAccount$
-      .pipe(
-        getUserId,
-        switchMap((userId) =>
-          this.policyService.policyAppliesToUser$(PolicyType.OrganizationDataOwnership, userId),
-        ),
-        concatMap(async (policyAppliesToActiveUser) => {
-          this.organizationDataOwnershipAppliesToUser = policyAppliesToActiveUser;
-          await this.init();
-        }),
-        takeUntil(this.destroy$),
-      )
-      .subscribe();
-
-    this.writeableCollections = await this.loadCollections();
-    this.canUseReprompt = await this.passwordRepromptService.enabled();
-  }
-
-  ngOnDestroy() {
-    this.destroy$.next();
-    this.destroy$.complete();
-  }
-
-  async init() {
-    if (this.ownershipOptions.length) {
-      this.ownershipOptions = [];
-    }
-    if (this.organizationDataOwnershipAppliesToUser) {
-      this.allowPersonal = false;
-    } else {
-      const myEmail = await firstValueFrom(
-        this.accountService.activeAccount$.pipe(map((a) => a?.email)),
-      );
-      this.ownershipOptions.push({ name: myEmail, value: null });
-    }
-
-    const userId = await firstValueFrom(
-      this.accountService.activeAccount$.pipe(map((account) => account?.id)),
-    );
-    const orgs = await firstValueFrom(this.organizationService.organizations$(userId));
-    orgs
-      .filter((org) => org.isMember)
-      .sort(Utils.getSortFunction(this.i18nService, "name"))
-      .forEach((o) => {
-        if (o.enabled && o.status === OrganizationUserStatusType.Confirmed) {
-          this.ownershipOptions.push({ name: o.name, value: o.id });
-        }
-      });
-    if (!this.allowPersonal && this.organizationId == undefined) {
-      this.organizationId = this.defaultOwnerId;
-    }
-  }
-
-  async load() {
-    this.editMode = this.cipherId != null;
-    if (this.editMode) {
-      this.editMode = true;
-      if (this.cloneMode) {
-        this.cloneMode = true;
-        this.title = this.i18nService.t("addItem");
-      } else {
-        this.title = this.i18nService.t("editItem");
-      }
-    } else {
-      this.title = this.i18nService.t("addItem");
-    }
-
-    const activeUserId = await firstValueFrom(this.accountService.activeAccount$.pipe(getUserId));
-
-    const loadedAddEditCipherInfo = await this.loadAddEditCipherInfo(activeUserId);
-
-    if (this.cipher == null) {
-      if (this.editMode) {
-        const cipher = await this.loadCipher(activeUserId);
-        this.cipher = await this.cipherService.decrypt(cipher, activeUserId);
-
-        // Adjust Cipher Name if Cloning
-        if (this.cloneMode) {
-          this.cipher.name += " - " + this.i18nService.t("clone");
-          // If not allowing personal ownership, update cipher's org Id to prompt downstream changes
-          if (this.cipher.organizationId == null && !this.allowPersonal) {
-            this.cipher.organizationId = this.organizationId;
-          }
-        }
-      } else {
-        this.cipher = new CipherView();
-        this.cipher.organizationId = this.organizationId == null ? null : this.organizationId;
-        this.cipher.folderId = this.folderId;
-        this.cipher.type = this.type == null ? CipherType.Login : this.type;
-        this.cipher.login = new LoginView();
-        this.cipher.login.uris = [new LoginUriView()];
-        this.cipher.card = new CardView();
-        this.cipher.identity = new IdentityView();
-        this.cipher.secureNote = new SecureNoteView();
-        this.cipher.secureNote.type = SecureNoteType.Generic;
-        this.cipher.sshKey = new SshKeyView();
-        this.cipher.reprompt = CipherRepromptType.None;
-      }
-    }
-
-    if (this.cipher != null && (!this.editMode || loadedAddEditCipherInfo || this.cloneMode)) {
-      await this.organizationChanged();
-      if (
-        this.collectionIds != null &&
-        this.collectionIds.length > 0 &&
-        this.collections.length > 0
-      ) {
-        this.collections.forEach((c) => {
-          if (this.collectionIds.indexOf(c.id) > -1) {
-            (c as any).checked = true;
-          }
-        });
-      }
-    }
-    // Only Admins can clone a cipher to different owner
-    if (this.cloneMode && this.cipher.organizationId != null) {
-      const activeUserId = await firstValueFrom(
-        this.accountService.activeAccount$.pipe(map((a) => a?.id)),
-      );
-
-      const cipherOrg = (
-        await firstValueFrom(this.organizationService.memberOrganizations$(activeUserId))
-      ).find((o) => o.id === this.cipher.organizationId);
-
-      if (cipherOrg != null && !cipherOrg.isAdmin && !cipherOrg.permissions.editAnyCollection) {
-        this.ownershipOptions = [{ name: cipherOrg.name, value: cipherOrg.id }];
-      }
-    }
-
-    // We don't want to copy passkeys when we clone a cipher
-    if (this.cloneMode && this.cipher?.login?.hasFido2Credentials) {
-      this.cipher.login.fido2Credentials = null;
-    }
-
-    this.folders$ = this.folderService.folderViews$(activeUserId);
-
-    if (this.editMode && this.previousCipherId !== this.cipherId) {
-      void this.eventCollectionService.collectMany(EventType.Cipher_ClientViewed, [this.cipher]);
-    }
-    this.previousCipherId = this.cipherId;
-    this.reprompt = this.cipher.reprompt !== CipherRepromptType.None;
-    if (this.reprompt) {
-      this.cipher.login.autofillOnPageLoad = this.autofillOnPageLoadOptions[2].value;
-    }
-
-    this.canDeleteCipher$ = this.cipherAuthorizationService.canDeleteCipher$(
-      this.cipher,
-      this.isAdminConsoleAction,
-    );
-
-    if (!this.editMode || this.cloneMode) {
-      // Creating an ssh key directly while filtering to the ssh key category
-      // must force a key to be set. SSH keys must never be created with an empty private key field
-      if (
-        this.cipher.type === CipherType.SshKey &&
-        (this.cipher.sshKey.privateKey == null || this.cipher.sshKey.privateKey === "")
-      ) {
-        await this.generateSshKey(false);
-      }
-    }
-  }
-
-  async submit(): Promise<boolean> {
-    if (this.cipher.isDeleted) {
-      return this.restore();
-    }
-
-    // normalize card expiry year on save
-    if (this.cipher.type === this.cipherType.Card) {
-      this.cipher.card.expYear = normalizeExpiryYearFormat(this.cipher.card.expYear);
-    }
-
-    // trim whitespace from the TOTP field
-    if (this.cipher.type === this.cipherType.Login && this.cipher.login.totp) {
-      this.cipher.login.totp = this.cipher.login.totp.trim();
-    }
-
-    if (this.cipher.name == null || this.cipher.name === "") {
-      this.toastService.showToast({
-        variant: "error",
-        title: this.i18nService.t("errorOccurred"),
-        message: this.i18nService.t("nameRequired"),
-      });
-      return false;
-    }
-
-    if (
-      (!this.editMode || this.cloneMode) &&
-      !this.allowPersonal &&
-      this.cipher.organizationId == null
-    ) {
-      this.toastService.showToast({
-        variant: "error",
-        title: this.i18nService.t("errorOccurred"),
-        message: this.i18nService.t("personalOwnershipSubmitError"),
-      });
-      return false;
-    }
-
-    if (
-      (!this.editMode || this.cloneMode) &&
-      this.cipher.type === CipherType.Login &&
-      this.cipher.login.uris != null &&
-      this.cipher.login.uris.length === 1 &&
-      (this.cipher.login.uris[0].uri == null || this.cipher.login.uris[0].uri === "")
-    ) {
-      this.cipher.login.uris = [];
-    }
-
-    // Allows saving of selected collections during "Add" and "Clone" flows
-    if ((!this.editMode || this.cloneMode) && this.cipher.organizationId != null) {
-      this.cipher.collectionIds =
-        this.collections == null
-          ? []
-          : this.collections.filter((c) => (c as any).checked).map((c) => c.id);
-    }
-
-    // Clear current Cipher Id if exists to trigger "Add" cipher flow
-    if (this.cloneMode) {
-      this.cipher.id = null;
-    }
-
-    const activeUserId = await firstValueFrom(this.accountService.activeAccount$.pipe(getUserId));
-    const cipher = await this.encryptCipher(activeUserId);
-
-    try {
-      this.formPromise = this.saveCipher(cipher);
-      const savedCipher = await this.formPromise;
-
-      // Reset local cipher from the saved cipher returned from the server
-      this.cipher = await savedCipher.decrypt(
-        await this.cipherService.getKeyForCipherKeyDecryption(savedCipher, activeUserId),
-      );
-      this.toastService.showToast({
-        variant: "success",
-        title: null,
-        message: this.i18nService.t(this.editMode && !this.cloneMode ? "editedItem" : "addedItem"),
-      });
-      this.onSavedCipher.emit(this.cipher);
-      this.messagingService.send(this.editMode && !this.cloneMode ? "editedCipher" : "addedCipher");
-      return true;
-    } catch (e) {
-      this.logService.error(e);
-    }
-
-    return false;
-  }
-
-  addUri() {
-    if (this.cipher.type !== CipherType.Login) {
-      return;
-    }
-
-    if (this.cipher.login.uris == null) {
-      this.cipher.login.uris = [];
-    }
-
-    this.cipher.login.uris.push(new LoginUriView());
-  }
-
-  removeUri(uri: LoginUriView) {
-    if (this.cipher.type !== CipherType.Login || this.cipher.login.uris == null) {
-      return;
-    }
-
-    const i = this.cipher.login.uris.indexOf(uri);
-    if (i > -1) {
-      this.cipher.login.uris.splice(i, 1);
-    }
-  }
-
-  removePasskey() {
-    if (this.cipher.type !== CipherType.Login || this.cipher.login.fido2Credentials == null) {
-      return;
-    }
-
-    this.cipher.login.fido2Credentials = null;
-  }
-
-  onCardNumberChange(): void {
-    this.cipher.card.brand = CardView.getCardBrandByPatterns(this.cipher.card.number);
-  }
-
-  getCardExpMonthDisplay() {
-    return this.cardExpMonthOptions.find((x) => x.value == this.cipher.card.expMonth)?.name;
-  }
-
-  trackByFunction(index: number, item: any) {
-    return index;
-  }
-
-  cancel() {
-    this.onCancelled.emit(this.cipher);
-  }
-
-  attachments() {
-    this.onEditAttachments.emit(this.cipher);
-  }
-
-  share() {
-    this.onShareCipher.emit(this.cipher);
-  }
-
-  editCollections() {
-    this.onEditCollections.emit(this.cipher);
-  }
-
-  async delete(): Promise<boolean> {
-    const confirmed = await this.dialogService.openSimpleDialog({
-      title: { key: "deleteItem" },
-      content: {
-        key: this.cipher.isDeleted ? "permanentlyDeleteItemConfirmation" : "deleteItemConfirmation",
-      },
-      type: "warning",
-    });
-
-    if (!confirmed) {
-      return false;
-    }
-
-    try {
-      const activeUserId = await firstValueFrom(this.accountService.activeAccount$.pipe(getUserId));
-      this.deletePromise = this.deleteCipher(activeUserId);
-      await this.deletePromise;
-      this.toastService.showToast({
-        variant: "success",
-        title: null,
-        message: this.i18nService.t(
-          this.cipher.isDeleted ? "permanentlyDeletedItem" : "deletedItem",
-        ),
-      });
-      this.onDeletedCipher.emit(this.cipher);
-      this.messagingService.send(
-        this.cipher.isDeleted ? "permanentlyDeletedCipher" : "deletedCipher",
-      );
-    } catch (e) {
-      this.logService.error(e);
-    }
-
-    return true;
-  }
-
-  async restore(): Promise<boolean> {
-    if (!this.cipher.isDeleted) {
-      return false;
-    }
-
-    try {
-      const activeUserId = await firstValueFrom(this.accountService.activeAccount$.pipe(getUserId));
-      this.restorePromise = this.restoreCipher(activeUserId);
-      await this.restorePromise;
-      this.toastService.showToast({
-        variant: "success",
-        title: null,
-        message: this.i18nService.t("restoredItem"),
-      });
-      this.onRestoredCipher.emit(this.cipher);
-      this.messagingService.send("restoredCipher");
-    } catch (e) {
-      this.logService.error(e);
-    }
-
-    return true;
-  }
-
-  async generateUsername(): Promise<boolean> {
-    if (this.cipher.login?.username?.length) {
-      const confirmed = await this.dialogService.openSimpleDialog({
-        title: { key: "overwriteUsername" },
-        content: { key: "overwriteUsernameConfirmation" },
-        type: "warning",
-      });
-
-      if (!confirmed) {
-        return false;
-      }
-    }
-
-    this.onGenerateUsername.emit();
-    return true;
-  }
-
-  async generatePassword(): Promise<boolean> {
-    if (this.cipher.login?.password?.length) {
-      const confirmed = await this.dialogService.openSimpleDialog({
-        title: { key: "overwritePassword" },
-        content: { key: "overwritePasswordConfirmation" },
-        type: "warning",
-      });
-
-      if (!confirmed) {
-        return false;
-      }
-    }
-
-    this.onGeneratePassword.emit();
-    return true;
-  }
-
-  togglePassword() {
-    this.showPassword = !this.showPassword;
-
-    if (this.editMode && this.showPassword) {
-      document.getElementById("loginPassword")?.focus();
-
-      void this.eventCollectionService.collectMany(EventType.Cipher_ClientToggledPasswordVisible, [
-        this.cipher,
-      ]);
-    }
-  }
-
-  toggleTotpSeed() {
-    this.showTotpSeed = !this.showTotpSeed;
-
-    if (this.editMode && this.showTotpSeed) {
-      document.getElementById("loginTotp")?.focus();
-
-      void this.eventCollectionService.collectMany(EventType.Cipher_ClientToggledTOTPSeedVisible, [
-        this.cipher,
-      ]);
-    }
-  }
-
-  async toggleCardNumber() {
-    this.showCardNumber = !this.showCardNumber;
-    if (this.showCardNumber) {
-      void this.eventCollectionService.collectMany(
-        EventType.Cipher_ClientToggledCardNumberVisible,
-        [this.cipher],
-      );
-    }
-  }
-
-  toggleCardCode() {
-    this.showCardCode = !this.showCardCode;
-    document.getElementById("cardCode").focus();
-    if (this.editMode && this.showCardCode) {
-      void this.eventCollectionService.collectMany(EventType.Cipher_ClientToggledCardCodeVisible, [
-        this.cipher,
-      ]);
-    }
-  }
-
-  togglePrivateKey() {
-    this.showPrivateKey = !this.showPrivateKey;
-  }
-
-  toggleUriOptions(uri: LoginUriView) {
-    const u = uri as any;
-    u.showOptions = u.showOptions == null && uri.match != null ? false : !u.showOptions;
-  }
-
-  loginUriMatchChanged(uri: LoginUriView) {
-    const u = uri as any;
-    u.showOptions = u.showOptions == null ? true : u.showOptions;
-  }
-
-  async organizationChanged() {
-    if (this.writeableCollections != null) {
-      this.writeableCollections.forEach((c) => ((c as any).checked = false));
-    }
-    if (this.cipher.organizationId != null) {
-      this.collections = this.writeableCollections?.filter(
-        (c) => c.organizationId === this.cipher.organizationId,
-      );
-      // If there's only one collection, check it by default
-      if (this.collections.length === 1) {
-        (this.collections[0] as any).checked = true;
-      }
-      const activeUserId = await firstValueFrom(
-        this.accountService.activeAccount$.pipe(map((a) => a?.id)),
-      );
-
-      const org = (
-        await firstValueFrom(this.organizationService.organizations$(activeUserId))
-      ).find((org) => org.id === this.cipher.organizationId);
-      if (org != null) {
-        this.cipher.organizationUseTotp = org.useTotp;
-      }
-    } else {
-      this.collections = [];
-    }
-  }
-
-  async checkPassword() {
-    if (this.checkPasswordPromise != null) {
-      return;
-    }
-
-    if (
-      this.cipher.login == null ||
-      this.cipher.login.password == null ||
-      this.cipher.login.password === ""
-    ) {
-      return;
-    }
-
-    this.checkPasswordPromise = this.auditService.passwordLeaked(this.cipher.login.password);
-    const matches = await this.checkPasswordPromise;
-    this.checkPasswordPromise = null;
-
-    if (matches > 0) {
-      this.toastService.showToast({
-        variant: "warning",
-        title: null,
-        message: this.i18nService.t("passwordExposed", matches.toString()),
-      });
-    } else {
-      this.toastService.showToast({
-        variant: "success",
-        title: null,
-        message: this.i18nService.t("passwordSafe"),
-      });
-    }
-  }
-
-  repromptChanged() {
-    this.reprompt = !this.reprompt;
-    if (this.reprompt) {
-      this.cipher.reprompt = CipherRepromptType.Password;
-      this.cipher.login.autofillOnPageLoad = this.autofillOnPageLoadOptions[2].value;
-    } else {
-      this.cipher.reprompt = CipherRepromptType.None;
-      this.cipher.login.autofillOnPageLoad = this.autofillOnPageLoadOptions[0].value;
-    }
-  }
-
-  protected async loadCollections() {
-    const allCollections = await this.collectionService.getAllDecrypted();
-    return allCollections.filter((c) => !c.readOnly);
-  }
-
-  protected loadCipher(userId: UserId) {
-    return this.cipherService.get(this.cipherId, userId);
-  }
-
-  protected encryptCipher(userId: UserId) {
-    return this.cipherService.encrypt(this.cipher, userId);
-  }
-
-  protected saveCipher(data: EncryptionContext) {
-    let orgAdmin = this.organization?.canEditAllCiphers;
-
-    // if a cipher is unassigned we want to check if they are an admin or have permission to edit any collection
-    if (!data.cipher.collectionIds) {
-      orgAdmin = this.organization?.canEditUnassignedCiphers;
-    }
-
-    return this.cipher.id == null
-      ? this.cipherService.createWithServer(data, orgAdmin)
-      : this.cipherService.updateWithServer(data, orgAdmin);
-  }
-
-  protected deleteCipher(userId: UserId) {
-    return this.cipher.isDeleted
-      ? this.cipherService.deleteWithServer(this.cipher.id, userId, this.asAdmin)
-      : this.cipherService.softDeleteWithServer(this.cipher.id, userId, this.asAdmin);
-  }
-
-  protected restoreCipher(userId: UserId) {
-    return this.cipherService.restoreWithServer(this.cipher.id, userId, this.asAdmin);
-  }
-
-  /**
-   * Determines if a cipher must be deleted as an admin by belonging to an organization and being unassigned to a collection.
-   */
-  get asAdmin(): boolean {
-    return (
-      this.cipher.organizationId !== null &&
-      this.cipher.organizationId.length > 0 &&
-      (this.organization?.canEditAllCiphers ||
-        !this.cipher.collectionIds ||
-        this.cipher.collectionIds.length === 0)
-    );
-  }
-
-  get defaultOwnerId(): string | null {
-    return this.ownershipOptions[0].value;
-  }
-
-  async loadAddEditCipherInfo(userId: UserId): Promise<boolean> {
-    const addEditCipherInfo: any = await firstValueFrom(
-      this.cipherService.addEditCipherInfo$(userId),
-    );
-    const loadedSavedInfo = addEditCipherInfo != null;
-
-    if (loadedSavedInfo) {
-      this.cipher = addEditCipherInfo.cipher;
-      this.collectionIds = addEditCipherInfo.collectionIds;
-
-      if (!this.editMode && !this.allowPersonal && this.cipher.organizationId == null) {
-        // This is a new cipher and personal ownership isn't allowed, so we need to set the default owner
-        this.cipher.organizationId = this.defaultOwnerId;
-      }
-    }
-
-    await this.cipherService.setAddEditCipherInfo(null, userId);
-
-    return loadedSavedInfo;
-  }
-
-  async copy(value: string, typeI18nKey: string, aType: string): Promise<boolean> {
-    if (value == null) {
-      return false;
-    }
-
-    const copyOptions = this.win != null ? { window: this.win } : null;
-    this.platformUtilsService.copyToClipboard(value, copyOptions);
-    this.toastService.showToast({
-      variant: "info",
-      title: null,
-      message: this.i18nService.t("valueCopied", this.i18nService.t(typeI18nKey)),
-    });
-
-    if (typeI18nKey === "password") {
-      void this.eventCollectionService.collectMany(EventType.Cipher_ClientCopiedPassword, [
-        this.cipher,
-      ]);
-    } else if (typeI18nKey === "securityCode") {
-      void this.eventCollectionService.collectMany(EventType.Cipher_ClientCopiedCardCode, [
-        this.cipher,
-      ]);
-    } else if (aType === "H_Field") {
-      void this.eventCollectionService.collectMany(EventType.Cipher_ClientCopiedHiddenField, [
-        this.cipher,
-      ]);
-    }
-
-    return true;
-  }
-
-  async importSshKeyFromClipboard() {
-    const key = await this.sshImportPromptService.importSshKeyFromClipboard();
-    if (key != null) {
-      this.cipher.sshKey.privateKey = key.privateKey;
-      this.cipher.sshKey.publicKey = key.publicKey;
-      this.cipher.sshKey.keyFingerprint = key.keyFingerprint;
-    }
-  }
-
-  private async generateSshKey(showNotification: boolean = true) {
-    await firstValueFrom(this.sdkService.client$);
-    const sshKey = generate_ssh_key("Ed25519");
-    this.cipher.sshKey.privateKey = sshKey.privateKey;
-    this.cipher.sshKey.publicKey = sshKey.publicKey;
-    this.cipher.sshKey.keyFingerprint = sshKey.fingerprint;
-
-    if (showNotification) {
-      this.toastService.showToast({
-        variant: "success",
-        title: "",
-        message: this.i18nService.t("sshKeyGenerated"),
-      });
-    }
-  }
-
-  async typeChange() {
-    if (this.cipher.type === CipherType.SshKey) {
-      await this.generateSshKey();
-    }
-  }
-}
diff --git a/libs/angular/src/vault/components/attachments.component.ts b/libs/angular/src/vault/components/attachments.component.ts
deleted file mode 100644
index e4b01d3aac1..00000000000
--- a/libs/angular/src/vault/components/attachments.component.ts
+++ /dev/null
@@ -1,354 +0,0 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
-import { Directive, EventEmitter, Input, OnInit, Output } from "@angular/core";
-import { firstValueFrom } from "rxjs";
-
-import { ApiService } from "@bitwarden/common/abstractions/api.service";
-import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
-import { getUserId } from "@bitwarden/common/auth/services/account.service";
-import { BillingAccountProfileStateService } from "@bitwarden/common/billing/abstractions/account/billing-account-profile-state.service";
-import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
-import { ErrorResponse } from "@bitwarden/common/models/response/error.response";
-import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
-import { FileDownloadService } from "@bitwarden/common/platform/abstractions/file-download/file-download.service";
-import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
-import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
-import { StateService } from "@bitwarden/common/platform/abstractions/state.service";
-import { CipherId, UserId } from "@bitwarden/common/types/guid";
-import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
-import { CipherData } from "@bitwarden/common/vault/models/data/cipher.data";
-import { Cipher } from "@bitwarden/common/vault/models/domain/cipher";
-import { AttachmentView } from "@bitwarden/common/vault/models/view/attachment.view";
-import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
-import { DialogService, ToastService } from "@bitwarden/components";
-import { KeyService } from "@bitwarden/key-management";
-
-@Directive()
-export class AttachmentsComponent implements OnInit {
-  @Input() cipherId: string;
-  @Input() viewOnly: boolean;
-  @Output() onUploadedAttachment = new EventEmitter<CipherView>();
-  @Output() onDeletedAttachment = new EventEmitter();
-  @Output() onReuploadedAttachment = new EventEmitter();
-
-  cipher: CipherView;
-  cipherDomain: Cipher;
-  canAccessAttachments: boolean;
-  formPromise: Promise<any>;
-  deletePromises: { [id: string]: Promise<CipherData> } = {};
-  reuploadPromises: { [id: string]: Promise<any> } = {};
-  emergencyAccessId?: string = null;
-  protected componentName = "";
-
-  constructor(
-    protected cipherService: CipherService,
-    protected i18nService: I18nService,
-    protected keyService: KeyService,
-    protected encryptService: EncryptService,
-    protected platformUtilsService: PlatformUtilsService,
-    protected apiService: ApiService,
-    protected win: Window,
-    protected logService: LogService,
-    protected stateService: StateService,
-    protected fileDownloadService: FileDownloadService,
-    protected dialogService: DialogService,
-    protected billingAccountProfileStateService: BillingAccountProfileStateService,
-    protected accountService: AccountService,
-    protected toastService: ToastService,
-    protected configService: ConfigService,
-  ) {}
-
-  async ngOnInit() {
-    await this.init();
-  }
-
-  async submit() {
-    const fileEl = document.getElementById("file") as HTMLInputElement;
-    const files = fileEl.files;
-    if (files == null || files.length === 0) {
-      this.toastService.showToast({
-        variant: "error",
-        title: this.i18nService.t("errorOccurred"),
-        message: this.i18nService.t("selectFile"),
-      });
-      return;
-    }
-
-    if (files[0].size > 524288000) {
-      // 500 MB
-      this.toastService.showToast({
-        variant: "error",
-        title: this.i18nService.t("errorOccurred"),
-        message: this.i18nService.t("maxFileSize"),
-      });
-      return;
-    }
-
-    try {
-      const activeUserId = await firstValueFrom(getUserId(this.accountService.activeAccount$));
-      this.formPromise = this.saveCipherAttachment(files[0], activeUserId);
-      this.cipherDomain = await this.formPromise;
-      this.cipher = await this.cipherService.decrypt(this.cipherDomain, activeUserId);
-      this.toastService.showToast({
-        variant: "success",
-        title: null,
-        message: this.i18nService.t("attachmentSaved"),
-      });
-      this.onUploadedAttachment.emit(this.cipher);
-    } catch (e) {
-      this.logService.error(e);
-    }
-
-    // reset file input
-    // ref: https://stackoverflow.com/a/20552042
-    fileEl.type = "";
-    fileEl.type = "file";
-    fileEl.value = "";
-  }
-
-  async delete(attachment: AttachmentView) {
-    if (this.deletePromises[attachment.id] != null) {
-      return;
-    }
-
-    const confirmed = await this.dialogService.openSimpleDialog({
-      title: { key: "deleteAttachment" },
-      content: { key: "deleteAttachmentConfirmation" },
-      type: "warning",
-    });
-
-    if (!confirmed) {
-      return;
-    }
-
-    try {
-      const activeUserId = await firstValueFrom(getUserId(this.accountService.activeAccount$));
-
-      this.deletePromises[attachment.id] = this.deleteCipherAttachment(attachment.id, activeUserId);
-      const updatedCipher = await this.deletePromises[attachment.id];
-
-      const cipher = new Cipher(updatedCipher);
-      this.cipher = await this.cipherService.decrypt(cipher, activeUserId);
-
-      this.toastService.showToast({
-        variant: "success",
-        title: null,
-        message: this.i18nService.t("deletedAttachment"),
-      });
-      const i = this.cipher.attachments.indexOf(attachment);
-      if (i > -1) {
-        this.cipher.attachments.splice(i, 1);
-      }
-    } catch (e) {
-      this.logService.error(e);
-    }
-
-    this.deletePromises[attachment.id] = null;
-    this.onDeletedAttachment.emit(this.cipher);
-  }
-
-  async download(attachment: AttachmentView) {
-    const a = attachment as any;
-    if (a.downloading) {
-      return;
-    }
-
-    if (!this.canAccessAttachments) {
-      this.toastService.showToast({
-        variant: "error",
-        title: this.i18nService.t("premiumRequired"),
-        message: this.i18nService.t("premiumRequiredDesc"),
-      });
-      return;
-    }
-
-    let url: string;
-    try {
-      const attachmentDownloadResponse = await this.apiService.getAttachmentData(
-        this.cipher.id,
-        attachment.id,
-        this.emergencyAccessId,
-      );
-      url = attachmentDownloadResponse.url;
-    } catch (e) {
-      if (e instanceof ErrorResponse && (e as ErrorResponse).statusCode === 404) {
-        url = attachment.url;
-      } else if (e instanceof ErrorResponse) {
-        throw new Error((e as ErrorResponse).getSingleMessage());
-      } else {
-        throw e;
-      }
-    }
-
-    a.downloading = true;
-    const response = await fetch(new Request(url, { cache: "no-store" }));
-    if (response.status !== 200) {
-      this.toastService.showToast({
-        variant: "error",
-        title: null,
-        message: this.i18nService.t("errorOccurred"),
-      });
-      a.downloading = false;
-      return;
-    }
-
-    try {
-      const activeUserId = await firstValueFrom(this.accountService.activeAccount$.pipe(getUserId));
-      const decBuf = await this.cipherService.getDecryptedAttachmentBuffer(
-        this.cipherDomain.id as CipherId,
-        attachment,
-        response,
-        activeUserId,
-      );
-
-      this.fileDownloadService.download({
-        fileName: attachment.fileName,
-        blobData: decBuf,
-      });
-      this.toastService.showToast({
-        variant: "success",
-        title: null,
-        message: this.i18nService.t("fileSavedToDevice"),
-      });
-      // FIXME: Remove when updating file. Eslint update
-      // eslint-disable-next-line @typescript-eslint/no-unused-vars
-    } catch (e) {
-      this.toastService.showToast({
-        variant: "error",
-        title: null,
-        message: this.i18nService.t("errorOccurred"),
-      });
-    }
-
-    a.downloading = false;
-  }
-
-  protected async init() {
-    const activeUserId = await firstValueFrom(this.accountService.activeAccount$.pipe(getUserId));
-    this.cipherDomain = await this.loadCipher(activeUserId);
-    this.cipher = await this.cipherService.decrypt(this.cipherDomain, activeUserId);
-
-    const canAccessPremium = await firstValueFrom(
-      this.billingAccountProfileStateService.hasPremiumFromAnySource$(activeUserId),
-    );
-    this.canAccessAttachments = canAccessPremium || this.cipher.organizationId != null;
-
-    if (!this.canAccessAttachments) {
-      const confirmed = await this.dialogService.openSimpleDialog({
-        title: { key: "premiumRequired" },
-        content: { key: "premiumRequiredDesc" },
-        acceptButtonText: { key: "learnMore" },
-        type: "success",
-      });
-
-      if (confirmed) {
-        this.platformUtilsService.launchUri(
-          "https://vault.bitwarden.com/#/settings/subscription/premium",
-        );
-      }
-    }
-  }
-
-  protected async reuploadCipherAttachment(attachment: AttachmentView, admin: boolean) {
-    const a = attachment as any;
-    if (attachment.key != null || a.downloading || this.reuploadPromises[attachment.id] != null) {
-      return;
-    }
-
-    try {
-      this.reuploadPromises[attachment.id] = Promise.resolve().then(async () => {
-        // 1. Download
-        a.downloading = true;
-        const response = await fetch(new Request(attachment.url, { cache: "no-store" }));
-        if (response.status !== 200) {
-          this.toastService.showToast({
-            variant: "error",
-            title: null,
-            message: this.i18nService.t("errorOccurred"),
-          });
-          a.downloading = false;
-          return;
-        }
-
-        try {
-          // 2. Resave
-          const activeUserId = await firstValueFrom(
-            this.accountService.activeAccount$.pipe(getUserId),
-          );
-
-          const decBuf = await this.cipherService.getDecryptedAttachmentBuffer(
-            this.cipherDomain.id as CipherId,
-            attachment,
-            response,
-            activeUserId,
-          );
-
-          this.cipherDomain = await this.cipherService.saveAttachmentRawWithServer(
-            this.cipherDomain,
-            attachment.fileName,
-            decBuf,
-            activeUserId,
-            admin,
-          );
-          this.cipher = await this.cipherService.decrypt(this.cipherDomain, activeUserId);
-
-          // 3. Delete old
-          this.deletePromises[attachment.id] = this.deleteCipherAttachment(
-            attachment.id,
-            activeUserId,
-          );
-          await this.deletePromises[attachment.id];
-          const foundAttachment = this.cipher.attachments.filter((a2) => a2.id === attachment.id);
-          if (foundAttachment.length > 0) {
-            const i = this.cipher.attachments.indexOf(foundAttachment[0]);
-            if (i > -1) {
-              this.cipher.attachments.splice(i, 1);
-            }
-          }
-
-          this.toastService.showToast({
-            variant: "success",
-            title: null,
-            message: this.i18nService.t("attachmentSaved"),
-          });
-          this.onReuploadedAttachment.emit();
-          // FIXME: Remove when updating file. Eslint update
-          // eslint-disable-next-line @typescript-eslint/no-unused-vars
-        } catch (e) {
-          this.toastService.showToast({
-            variant: "error",
-            title: null,
-            message: this.i18nService.t("errorOccurred"),
-          });
-        }
-
-        a.downloading = false;
-      });
-      await this.reuploadPromises[attachment.id];
-    } catch (e) {
-      this.logService.error(e);
-    }
-  }
-
-  protected loadCipher(userId: UserId) {
-    return this.cipherService.get(this.cipherId, userId);
-  }
-
-  protected saveCipherAttachment(file: File, userId: UserId) {
-    return this.cipherService.saveAttachmentWithServer(this.cipherDomain, file, userId);
-  }
-
-  protected deleteCipherAttachment(attachmentId: string, userId: UserId) {
-    return this.cipherService.deleteAttachmentWithServer(
-      this.cipher.id,
-      attachmentId,
-      userId,
-      false,
-    );
-  }
-
-  protected async reupload(attachment: AttachmentView) {
-    // TODO: This should be removed but is needed since we re-use the same template
-  }
-}
diff --git a/libs/angular/src/vault/components/password-history.component.ts b/libs/angular/src/vault/components/password-history.component.ts
deleted file mode 100644
index acb89b82191..00000000000
--- a/libs/angular/src/vault/components/password-history.component.ts
+++ /dev/null
@@ -1,48 +0,0 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
-import { Directive, OnInit } from "@angular/core";
-import { firstValueFrom } from "rxjs";
-
-import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
-import { getUserId } from "@bitwarden/common/auth/services/account.service";
-import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
-import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
-import { PasswordHistoryView } from "@bitwarden/common/vault/models/view/password-history.view";
-import { ToastService } from "@bitwarden/components";
-
-@Directive()
-export class PasswordHistoryComponent implements OnInit {
-  cipherId: string;
-  history: PasswordHistoryView[] = [];
-
-  constructor(
-    protected cipherService: CipherService,
-    protected platformUtilsService: PlatformUtilsService,
-    protected i18nService: I18nService,
-    protected accountService: AccountService,
-    private win: Window,
-    private toastService: ToastService,
-  ) {}
-
-  async ngOnInit() {
-    await this.init();
-  }
-
-  copy(password: string) {
-    const copyOptions = this.win != null ? { window: this.win } : null;
-    this.platformUtilsService.copyToClipboard(password, copyOptions);
-    this.toastService.showToast({
-      variant: "info",
-      title: null,
-      message: this.i18nService.t("valueCopied", this.i18nService.t("password")),
-    });
-  }
-
-  protected async init() {
-    const activeUserId = await firstValueFrom(this.accountService.activeAccount$.pipe(getUserId));
-    const cipher = await this.cipherService.get(this.cipherId, activeUserId);
-    const decCipher = await this.cipherService.decrypt(cipher, activeUserId);
-    this.history = decCipher.passwordHistory == null ? [] : decCipher.passwordHistory;
-  }
-}
diff --git a/libs/angular/src/vault/components/view-custom-fields.component.ts b/libs/angular/src/vault/components/view-custom-fields.component.ts
deleted file mode 100644
index d991a0260c1..00000000000
--- a/libs/angular/src/vault/components/view-custom-fields.component.ts
+++ /dev/null
@@ -1,50 +0,0 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
-import { Directive, Input } from "@angular/core";
-
-import { EventCollectionService } from "@bitwarden/common/abstractions/event/event-collection.service";
-import { EventType } from "@bitwarden/common/enums";
-import { FieldType } from "@bitwarden/common/vault/enums";
-import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
-import { FieldView } from "@bitwarden/common/vault/models/view/field.view";
-
-@Directive()
-export class ViewCustomFieldsComponent {
-  @Input() cipher: CipherView;
-  @Input() promptPassword: () => Promise<boolean>;
-  @Input() copy: (value: string, typeI18nKey: string, aType: string) => void;
-
-  fieldType = FieldType;
-
-  constructor(private eventCollectionService: EventCollectionService) {}
-
-  async toggleFieldValue(field: FieldView) {
-    if (!(await this.promptPassword())) {
-      return;
-    }
-
-    const f = field as any;
-    f.showValue = !f.showValue;
-    f.showCount = false;
-    if (f.showValue) {
-      // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-      // eslint-disable-next-line @typescript-eslint/no-floating-promises
-      this.eventCollectionService.collect(
-        EventType.Cipher_ClientToggledHiddenFieldVisible,
-        this.cipher.id,
-      );
-    }
-  }
-
-  async toggleFieldCount(field: FieldView) {
-    if (!field.showValue) {
-      return;
-    }
-
-    field.showCount = !field.showCount;
-  }
-
-  setTextDataOnDrag(event: DragEvent, data: string) {
-    event.dataTransfer.setData("text", data);
-  }
-}
diff --git a/libs/angular/src/vault/components/view.component.ts b/libs/angular/src/vault/components/view.component.ts
deleted file mode 100644
index e3eb50cb29e..00000000000
--- a/libs/angular/src/vault/components/view.component.ts
+++ /dev/null
@@ -1,568 +0,0 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
-import { DatePipe } from "@angular/common";
-import {
-  ChangeDetectorRef,
-  Directive,
-  EventEmitter,
-  Input,
-  NgZone,
-  OnDestroy,
-  OnInit,
-  Output,
-} from "@angular/core";
-import {
-  BehaviorSubject,
-  combineLatest,
-  filter,
-  firstValueFrom,
-  map,
-  Observable,
-  of,
-  switchMap,
-  tap,
-} from "rxjs";
-
-import { ApiService } from "@bitwarden/common/abstractions/api.service";
-import { AuditService } from "@bitwarden/common/abstractions/audit.service";
-import { EventCollectionService } from "@bitwarden/common/abstractions/event/event-collection.service";
-import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
-import { TokenService } from "@bitwarden/common/auth/abstractions/token.service";
-import { getUserId } from "@bitwarden/common/auth/services/account.service";
-import { BillingAccountProfileStateService } from "@bitwarden/common/billing/abstractions/account/billing-account-profile-state.service";
-import { EventType } from "@bitwarden/common/enums";
-import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
-import { ErrorResponse } from "@bitwarden/common/models/response/error.response";
-import { BroadcasterService } from "@bitwarden/common/platform/abstractions/broadcaster.service";
-import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
-import { FileDownloadService } from "@bitwarden/common/platform/abstractions/file-download/file-download.service";
-import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
-import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
-import { StateService } from "@bitwarden/common/platform/abstractions/state.service";
-import { CipherId, UserId } from "@bitwarden/common/types/guid";
-import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
-import { FolderService } from "@bitwarden/common/vault/abstractions/folder/folder.service.abstraction";
-import { TotpService } from "@bitwarden/common/vault/abstractions/totp.service";
-import { CipherType, FieldType } from "@bitwarden/common/vault/enums";
-import { CipherRepromptType } from "@bitwarden/common/vault/enums/cipher-reprompt-type";
-import { Launchable } from "@bitwarden/common/vault/interfaces/launchable";
-import { AttachmentView } from "@bitwarden/common/vault/models/view/attachment.view";
-import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
-import { FolderView } from "@bitwarden/common/vault/models/view/folder.view";
-import { CipherAuthorizationService } from "@bitwarden/common/vault/services/cipher-authorization.service";
-import { TotpInfo } from "@bitwarden/common/vault/services/totp.service";
-import { DialogService, ToastService } from "@bitwarden/components";
-import { KeyService } from "@bitwarden/key-management";
-// This import has been flagged as unallowed for this class. It may be involved in a circular dependency loop.
-// eslint-disable-next-line no-restricted-imports
-import { PasswordRepromptService } from "@bitwarden/vault";
-
-const BroadcasterSubscriptionId = "BaseViewComponent";
-
-@Directive()
-export class ViewComponent implements OnDestroy, OnInit {
-  /** Observable of cipherId$ that will update each time the `Input` updates */
-  private _cipherId$ = new BehaviorSubject<string>(null);
-
-  @Input()
-  set cipherId(value: string) {
-    this._cipherId$.next(value);
-  }
-
-  get cipherId(): string {
-    return this._cipherId$.getValue();
-  }
-
-  @Input() collectionId: string;
-  @Output() onEditCipher = new EventEmitter<CipherView>();
-  @Output() onCloneCipher = new EventEmitter<CipherView>();
-  @Output() onShareCipher = new EventEmitter<CipherView>();
-  @Output() onDeletedCipher = new EventEmitter<CipherView>();
-  @Output() onRestoredCipher = new EventEmitter<CipherView>();
-
-  canDeleteCipher$: Observable<boolean>;
-  canRestoreCipher$: Observable<boolean>;
-  cipher: CipherView;
-  showPassword: boolean;
-  showPasswordCount: boolean;
-  showCardNumber: boolean;
-  showCardCode: boolean;
-  showPrivateKey: boolean;
-  canAccessPremium: boolean;
-  showPremiumRequiredTotp: boolean;
-  fieldType = FieldType;
-  checkPasswordPromise: Promise<number>;
-  folder: FolderView;
-  cipherType = CipherType;
-
-  private previousCipherId: string;
-  protected passwordReprompted = false;
-
-  /**
-   * Represents TOTP information including display formatting and timing
-   */
-  protected totpInfo$: Observable<TotpInfo> | undefined;
-
-  get fido2CredentialCreationDateValue(): string {
-    const dateCreated = this.i18nService.t("dateCreated");
-    const creationDate = this.datePipe.transform(
-      this.cipher?.login?.fido2Credentials?.[0]?.creationDate,
-      "short",
-    );
-    return `${dateCreated} ${creationDate}`;
-  }
-
-  constructor(
-    protected cipherService: CipherService,
-    protected folderService: FolderService,
-    protected totpService: TotpService,
-    protected tokenService: TokenService,
-    protected i18nService: I18nService,
-    protected keyService: KeyService,
-    protected encryptService: EncryptService,
-    protected platformUtilsService: PlatformUtilsService,
-    protected auditService: AuditService,
-    protected win: Window,
-    protected broadcasterService: BroadcasterService,
-    protected ngZone: NgZone,
-    protected changeDetectorRef: ChangeDetectorRef,
-    protected eventCollectionService: EventCollectionService,
-    protected apiService: ApiService,
-    protected passwordRepromptService: PasswordRepromptService,
-    private logService: LogService,
-    protected stateService: StateService,
-    protected fileDownloadService: FileDownloadService,
-    protected dialogService: DialogService,
-    protected datePipe: DatePipe,
-    protected accountService: AccountService,
-    private billingAccountProfileStateService: BillingAccountProfileStateService,
-    protected toastService: ToastService,
-    private cipherAuthorizationService: CipherAuthorizationService,
-    protected configService: ConfigService,
-  ) {}
-
-  ngOnInit() {
-    this.broadcasterService.subscribe(BroadcasterSubscriptionId, (message: any) => {
-      // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-      // eslint-disable-next-line @typescript-eslint/no-floating-promises
-      this.ngZone.run(async () => {
-        switch (message.command) {
-          case "syncCompleted":
-            if (message.successfully) {
-              this.changeDetectorRef.detectChanges();
-            }
-            break;
-        }
-      });
-    });
-
-    // Set up the subscription to the activeAccount$ and cipherId$ observables
-    combineLatest([this.accountService.activeAccount$.pipe(getUserId), this._cipherId$])
-      .pipe(
-        tap(() => this.cleanUp()),
-        switchMap(([userId, cipherId]) => {
-          const cipher$ = this.cipherService.cipherViews$(userId).pipe(
-            map((ciphers) => ciphers?.find((c) => c.id === cipherId)),
-            filter((cipher) => !!cipher),
-          );
-          return combineLatest([of(userId), cipher$]);
-        }),
-      )
-      .subscribe(([userId, cipher]) => {
-        this.cipher = cipher;
-
-        void this.constructCipherDetails(userId);
-      });
-  }
-
-  ngOnDestroy() {
-    this.broadcasterService.unsubscribe(BroadcasterSubscriptionId);
-    this.cleanUp();
-  }
-
-  async edit() {
-    this.onEditCipher.emit(this.cipher);
-  }
-
-  async clone() {
-    if (this.cipher.login?.hasFido2Credentials) {
-      const confirmed = await this.dialogService.openSimpleDialog({
-        title: { key: "passkeyNotCopied" },
-        content: { key: "passkeyNotCopiedAlert" },
-        type: "info",
-      });
-
-      if (!confirmed) {
-        return false;
-      }
-    }
-
-    if (await this.promptPassword()) {
-      this.onCloneCipher.emit(this.cipher);
-      return true;
-    }
-
-    return false;
-  }
-
-  async share() {
-    if (await this.promptPassword()) {
-      this.onShareCipher.emit(this.cipher);
-      return true;
-    }
-
-    return false;
-  }
-
-  async delete(): Promise<boolean> {
-    if (!(await this.promptPassword())) {
-      return;
-    }
-
-    const confirmed = await this.dialogService.openSimpleDialog({
-      title: { key: "deleteItem" },
-      content: {
-        key: this.cipher.isDeleted ? "permanentlyDeleteItemConfirmation" : "deleteItemConfirmation",
-      },
-      type: "warning",
-    });
-
-    if (!confirmed) {
-      return false;
-    }
-
-    try {
-      const activeUserId = await firstValueFrom(this.accountService.activeAccount$.pipe(getUserId));
-      await this.deleteCipher(activeUserId);
-      this.toastService.showToast({
-        variant: "success",
-        title: null,
-        message: this.i18nService.t(
-          this.cipher.isDeleted ? "permanentlyDeletedItem" : "deletedItem",
-        ),
-      });
-      this.onDeletedCipher.emit(this.cipher);
-    } catch (e) {
-      this.logService.error(e);
-    }
-
-    return true;
-  }
-
-  async restore(): Promise<boolean> {
-    if (!this.cipher.isDeleted) {
-      return false;
-    }
-
-    try {
-      const activeUserId = await firstValueFrom(this.accountService.activeAccount$.pipe(getUserId));
-      await this.restoreCipher(activeUserId);
-      this.toastService.showToast({
-        variant: "success",
-        title: null,
-        message: this.i18nService.t("restoredItem"),
-      });
-      this.onRestoredCipher.emit(this.cipher);
-    } catch (e) {
-      this.logService.error(e);
-    }
-
-    return true;
-  }
-
-  async togglePassword() {
-    if (!(await this.promptPassword())) {
-      return;
-    }
-
-    this.showPassword = !this.showPassword;
-    this.showPasswordCount = false;
-    if (this.showPassword) {
-      // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-      // eslint-disable-next-line @typescript-eslint/no-floating-promises
-      this.eventCollectionService.collect(
-        EventType.Cipher_ClientToggledPasswordVisible,
-        this.cipherId,
-      );
-    }
-  }
-
-  async togglePasswordCount() {
-    if (!this.showPassword) {
-      return;
-    }
-
-    this.showPasswordCount = !this.showPasswordCount;
-  }
-
-  async toggleCardNumber() {
-    if (!(await this.promptPassword())) {
-      return;
-    }
-
-    this.showCardNumber = !this.showCardNumber;
-    if (this.showCardNumber) {
-      // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-      // eslint-disable-next-line @typescript-eslint/no-floating-promises
-      this.eventCollectionService.collect(
-        EventType.Cipher_ClientToggledCardNumberVisible,
-        this.cipherId,
-      );
-    }
-  }
-
-  async toggleCardCode() {
-    if (!(await this.promptPassword())) {
-      return;
-    }
-
-    this.showCardCode = !this.showCardCode;
-    if (this.showCardCode) {
-      // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-      // eslint-disable-next-line @typescript-eslint/no-floating-promises
-      this.eventCollectionService.collect(
-        EventType.Cipher_ClientToggledCardCodeVisible,
-        this.cipherId,
-      );
-    }
-  }
-
-  togglePrivateKey() {
-    this.showPrivateKey = !this.showPrivateKey;
-  }
-
-  async checkPassword() {
-    if (
-      this.cipher.login == null ||
-      this.cipher.login.password == null ||
-      this.cipher.login.password === ""
-    ) {
-      return;
-    }
-
-    this.checkPasswordPromise = this.auditService.passwordLeaked(this.cipher.login.password);
-    const matches = await this.checkPasswordPromise;
-
-    if (matches > 0) {
-      this.toastService.showToast({
-        variant: "warning",
-        title: null,
-        message: this.i18nService.t("passwordExposed", matches.toString()),
-      });
-    } else {
-      this.toastService.showToast({
-        variant: "success",
-        title: null,
-        message: this.i18nService.t("passwordSafe"),
-      });
-    }
-  }
-
-  async launch(uri: Launchable, cipherId?: string) {
-    if (!uri.canLaunch) {
-      return;
-    }
-
-    if (cipherId) {
-      const activeUserId = await firstValueFrom(this.accountService.activeAccount$.pipe(getUserId));
-      await this.cipherService.updateLastLaunchedDate(cipherId, activeUserId);
-    }
-
-    this.platformUtilsService.launchUri(uri.launchUri);
-  }
-
-  async copy(value: string, typeI18nKey: string, aType: string): Promise<boolean> {
-    if (value == null) {
-      return false;
-    }
-
-    if (
-      this.passwordRepromptService.protectedFields().includes(aType) &&
-      !(await this.promptPassword())
-    ) {
-      return false;
-    }
-
-    const copyOptions = this.win != null ? { window: this.win } : null;
-    this.platformUtilsService.copyToClipboard(value, copyOptions);
-    this.toastService.showToast({
-      variant: "info",
-      title: null,
-      message: this.i18nService.t("valueCopied", this.i18nService.t(typeI18nKey)),
-    });
-
-    if (typeI18nKey === "password") {
-      // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-      // eslint-disable-next-line @typescript-eslint/no-floating-promises
-      this.eventCollectionService.collect(EventType.Cipher_ClientCopiedPassword, this.cipherId);
-    } else if (typeI18nKey === "securityCode") {
-      // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-      // eslint-disable-next-line @typescript-eslint/no-floating-promises
-      this.eventCollectionService.collect(EventType.Cipher_ClientCopiedCardCode, this.cipherId);
-    } else if (aType === "H_Field") {
-      // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-      // eslint-disable-next-line @typescript-eslint/no-floating-promises
-      this.eventCollectionService.collect(EventType.Cipher_ClientCopiedHiddenField, this.cipherId);
-    }
-
-    return true;
-  }
-
-  setTextDataOnDrag(event: DragEvent, data: string) {
-    event.dataTransfer.setData("text", data);
-  }
-
-  async downloadAttachment(attachment: AttachmentView) {
-    if (!(await this.promptPassword())) {
-      return;
-    }
-    const a = attachment as any;
-    if (a.downloading) {
-      return;
-    }
-
-    if (this.cipher.organizationId == null && !this.canAccessPremium) {
-      this.toastService.showToast({
-        variant: "error",
-        title: this.i18nService.t("premiumRequired"),
-        message: this.i18nService.t("premiumRequiredDesc"),
-      });
-      return;
-    }
-
-    let url: string;
-    try {
-      const attachmentDownloadResponse = await this.apiService.getAttachmentData(
-        this.cipher.id,
-        attachment.id,
-      );
-      url = attachmentDownloadResponse.url;
-    } catch (e) {
-      if (e instanceof ErrorResponse && (e as ErrorResponse).statusCode === 404) {
-        url = attachment.url;
-      } else if (e instanceof ErrorResponse) {
-        throw new Error((e as ErrorResponse).getSingleMessage());
-      } else {
-        throw e;
-      }
-    }
-
-    a.downloading = true;
-    const response = await fetch(new Request(url, { cache: "no-store" }));
-    if (response.status !== 200) {
-      this.toastService.showToast({
-        variant: "error",
-        title: null,
-        message: this.i18nService.t("errorOccurred"),
-      });
-      a.downloading = false;
-      return;
-    }
-
-    try {
-      const activeUserId = await firstValueFrom(this.accountService.activeAccount$.pipe(getUserId));
-      const decBuf = await this.cipherService.getDecryptedAttachmentBuffer(
-        this.cipher.id as CipherId,
-        attachment,
-        response,
-        activeUserId,
-      );
-
-      this.fileDownloadService.download({
-        fileName: attachment.fileName,
-        blobData: decBuf,
-      });
-    } catch {
-      this.toastService.showToast({
-        variant: "error",
-        title: null,
-        message: this.i18nService.t("errorOccurred"),
-      });
-    }
-
-    a.downloading = false;
-  }
-
-  protected deleteCipher(userId: UserId) {
-    return this.cipher.isDeleted
-      ? this.cipherService.deleteWithServer(this.cipher.id, userId)
-      : this.cipherService.softDeleteWithServer(this.cipher.id, userId);
-  }
-
-  protected restoreCipher(userId: UserId) {
-    return this.cipherService.restoreWithServer(this.cipher.id, userId);
-  }
-
-  protected async promptPassword() {
-    if (this.cipher.reprompt === CipherRepromptType.None || this.passwordReprompted) {
-      return true;
-    }
-
-    return (this.passwordReprompted = await this.passwordRepromptService.showPasswordPrompt());
-  }
-
-  private cleanUp() {
-    this.cipher = null;
-    this.folder = null;
-    this.showPassword = false;
-    this.showCardNumber = false;
-    this.showCardCode = false;
-    this.passwordReprompted = false;
-  }
-
-  /**
-   * When a cipher is viewed, construct all details for the view that are not directly
-   * available from the cipher object itself.
-   */
-  private async constructCipherDetails(userId: UserId) {
-    this.canAccessPremium = await firstValueFrom(
-      this.billingAccountProfileStateService.hasPremiumFromAnySource$(userId),
-    );
-    this.showPremiumRequiredTotp =
-      this.cipher.login.totp && !this.canAccessPremium && !this.cipher.organizationUseTotp;
-    this.canDeleteCipher$ = this.cipherAuthorizationService.canDeleteCipher$(this.cipher);
-    this.canRestoreCipher$ = this.cipherAuthorizationService.canRestoreCipher$(this.cipher);
-
-    if (this.cipher.folderId) {
-      this.folder = await (
-        await firstValueFrom(this.folderService.folderViews$(userId))
-      ).find((f) => f.id == this.cipher.folderId);
-    }
-
-    const canGenerateTotp =
-      this.cipher.type === CipherType.Login &&
-      this.cipher.login.totp &&
-      (this.cipher.organizationUseTotp || this.canAccessPremium);
-
-    this.totpInfo$ = canGenerateTotp
-      ? this.totpService.getCode$(this.cipher.login.totp).pipe(
-          map((response) => {
-            const epoch = Math.round(new Date().getTime() / 1000.0);
-            const mod = epoch % response.period;
-
-            // Format code
-            const totpCodeFormatted =
-              response.code.length > 4
-                ? `${response.code.slice(0, Math.floor(response.code.length / 2))} ${response.code.slice(Math.floor(response.code.length / 2))}`
-                : response.code;
-
-            return {
-              totpCode: response.code,
-              totpCodeFormatted,
-              totpDash: +(Math.round(((78.6 / response.period) * mod + "e+2") as any) + "e-2"),
-              totpSec: response.period - mod,
-              totpLow: response.period - mod <= 7,
-            } as TotpInfo;
-          }),
-        )
-      : undefined;
-
-    if (this.previousCipherId !== this.cipherId) {
-      // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-      // eslint-disable-next-line @typescript-eslint/no-floating-promises
-      this.eventCollectionService.collect(EventType.Cipher_ClientViewed, this.cipherId);
-    }
-    this.previousCipherId = this.cipherId;
-  }
-}
diff --git a/libs/common/src/enums/feature-flag.enum.ts b/libs/common/src/enums/feature-flag.enum.ts
index 71de8fb5433..fcc81070331 100644
--- a/libs/common/src/enums/feature-flag.enum.ts
+++ b/libs/common/src/enums/feature-flag.enum.ts
@@ -53,7 +53,6 @@ export enum FeatureFlag {
   PM9111ExtensionPersistAddEditForm = "pm-9111-extension-persist-add-edit-form",
   PM19941MigrateCipherDomainToSdk = "pm-19941-migrate-cipher-domain-to-sdk",
   CipherKeyEncryption = "cipher-key-encryption",
-  PM18520_UpdateDesktopCipherForm = "pm-18520-desktop-cipher-forms",
   EndUserNotifications = "pm-10609-end-user-notifications",
   RemoveCardItemTypePolicy = "pm-16442-remove-card-item-type-policy",
   PM19315EndUserActivationMvp = "pm-19315-end-user-activation-mvp",
@@ -97,7 +96,6 @@ export const DefaultFeatureFlagValue = {
   [FeatureFlag.PM8851_BrowserOnboardingNudge]: FALSE,
   [FeatureFlag.PM9111ExtensionPersistAddEditForm]: FALSE,
   [FeatureFlag.CipherKeyEncryption]: FALSE,
-  [FeatureFlag.PM18520_UpdateDesktopCipherForm]: FALSE,
   [FeatureFlag.EndUserNotifications]: FALSE,
   [FeatureFlag.PM19941MigrateCipherDomainToSdk]: FALSE,
   [FeatureFlag.RemoveCardItemTypePolicy]: FALSE,

From 2f1ab48c37d93d2e22325ad65401327c4de382a0 Mon Sep 17 00:00:00 2001
From: Vicki League <vleague@bitwarden.com>
Date: Thu, 10 Jul 2025 17:02:42 -0400
Subject: [PATCH 104/239] [CL-750][CL-751][CL-752] Fix nav item truncation,
 clickable area, and shield logo (#15522)

---
 .../src/anon-layout/anon-layout.component.ts  |  4 +--
 .../src/icon/logos/bitwarden/index.ts         |  2 +-
 .../src/icon/logos/bitwarden/shield.ts        | 11 +++++++-
 .../src/navigation/nav-item.component.html    | 10 +++----
 .../src/navigation/nav-item.stories.ts        | 13 +++++++---
 .../kitchen-sink/kitchen-sink.stories.ts      | 26 +++++++++++++------
 6 files changed, 46 insertions(+), 20 deletions(-)

diff --git a/libs/components/src/anon-layout/anon-layout.component.ts b/libs/components/src/anon-layout/anon-layout.component.ts
index 45e7f3973a9..1324e37a418 100644
--- a/libs/components/src/anon-layout/anon-layout.component.ts
+++ b/libs/components/src/anon-layout/anon-layout.component.ts
@@ -11,7 +11,7 @@ import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/pl
 
 import { IconModule, Icon } from "../icon";
 import { BitwardenLogo } from "../icon/icons";
-import { BitwardenShield } from "../icon/logos";
+import { AnonLayoutBitwardenShield } from "../icon/logos";
 import { SharedModule } from "../shared";
 import { TypographyModule } from "../typography";
 
@@ -84,7 +84,7 @@ export class AnonLayoutComponent implements OnInit, OnChanges {
 
     // If there is no icon input, then use the default icon
     if (this.icon == null) {
-      this.icon = BitwardenShield;
+      this.icon = AnonLayoutBitwardenShield;
     }
   }
 
diff --git a/libs/components/src/icon/logos/bitwarden/index.ts b/libs/components/src/icon/logos/bitwarden/index.ts
index e786eb90e78..ba78bdb4fe5 100644
--- a/libs/components/src/icon/logos/bitwarden/index.ts
+++ b/libs/components/src/icon/logos/bitwarden/index.ts
@@ -1,4 +1,4 @@
 export { default as AdminConsoleLogo } from "./admin-console";
-export { default as BitwardenShield } from "./shield";
+export * from "./shield";
 export { default as PasswordManagerLogo } from "./password-manager";
 export { default as SecretsManagerLogo } from "./secrets-manager";
diff --git a/libs/components/src/icon/logos/bitwarden/shield.ts b/libs/components/src/icon/logos/bitwarden/shield.ts
index 15fe6dddf48..b942715bb6d 100644
--- a/libs/components/src/icon/logos/bitwarden/shield.ts
+++ b/libs/components/src/icon/logos/bitwarden/shield.ts
@@ -1,7 +1,16 @@
 import { svgIcon } from "../../icon";
 
+/**
+ * Shield logo with extra space in the viewbox.
+ */
+const AnonLayoutBitwardenShield = svgIcon`
+ <svg viewBox="0 0 120 132" xmlns="http://www.w3.org/2000/svg">
+    <path class="tw-fill-marketing-logo" d="M82.2944 69.1899V37.2898H60V93.9624C63.948 91.869 67.4812 89.5927 70.5998 87.1338C78.3962 81.0196 82.2944 75.0383 82.2944 69.1899ZM91.8491 30.9097V69.1899C91.8491 72.0477 91.2934 74.8805 90.182 77.6883C89.0706 80.4962 87.6938 82.9884 86.0516 85.1649C84.4094 87.3415 82.452 89.4598 80.1794 91.5201C77.9068 93.5803 75.8084 95.2916 73.8842 96.654C71.96 98.0164 69.9528 99.304 67.8627 100.517C65.7726 101.73 64.288 102.552 63.4088 102.984C62.5297 103.416 61.8247 103.748 61.2939 103.981C60.8958 104.18 60.4645 104.28 60 104.28C59.5355 104.28 59.1042 104.18 58.7061 103.981C58.1753 103.748 57.4703 103.416 56.5911 102.984C55.712 102.552 54.2273 101.73 52.1372 100.517C50.0471 99.304 48.04 98.0164 46.1158 96.654C44.1916 95.2916 42.0932 93.5803 39.8206 91.5201C37.548 89.4598 35.5906 87.3415 33.9484 85.1649C32.3062 82.9884 30.9294 80.4962 29.818 77.6883C28.7066 74.8805 28.1509 72.0477 28.1509 69.1899V30.9097C28.1509 30.0458 28.4661 29.2981 29.0964 28.6668C29.7267 28.0354 30.4732 27.7197 31.3358 27.7197H88.6642C89.5268 27.7197 90.2732 28.0354 90.9036 28.6668C91.5339 29.2981 91.8491 30.0458 91.8491 30.9097Z" />
+  </svg>
+`;
+
 const BitwardenShield = svgIcon`
   <svg xmlns="http://www.w3.org/2000/svg" fill="none" viewBox="0 0 28 33"><path d="M26.696.403A1.274 1.274 0 0 0 25.764 0H1.83C1.467 0 1.16.137.898.403a1.294 1.294 0 0 0-.398.944v16.164c0 1.203.235 2.405.697 3.587.462 1.188 1.038 2.24 1.728 3.155.682.922 1.5 1.815 2.453 2.68a28.077 28.077 0 0 0 2.63 2.167 32.181 32.181 0 0 0 2.518 1.628c.875.511 1.493.857 1.863 1.045.37.18.661.324.882.417.163.087.348.13.54.13.192 0 .377-.043.54-.13.221-.1.52-.237.882-.417.37-.18.989-.534 1.863-1.045a34.4 34.4 0 0 0 2.517-1.628c.804-.576 1.679-1.296 2.631-2.168a20.206 20.206 0 0 0 2.454-2.68 13.599 13.599 0 0 0 1.72-3.154c.463-1.189.697-2.384.697-3.587V1.347a1.406 1.406 0 0 0-.42-.944ZM23.61 17.662c0 5.849-9.813 10.89-9.813 10.89V3.458h9.813v14.205Z" class="tw-fill-marketing-logo"/></svg>
 `;
 
-export default BitwardenShield;
+export { AnonLayoutBitwardenShield, BitwardenShield };
diff --git a/libs/components/src/navigation/nav-item.component.html b/libs/components/src/navigation/nav-item.component.html
index 15fcc74e1f9..3d4dadacffa 100644
--- a/libs/components/src/navigation/nav-item.component.html
+++ b/libs/components/src/navigation/nav-item.component.html
@@ -17,16 +17,16 @@
         <ng-template #anchorAndButtonContent>
           <div
             [title]="text"
-            class="tw-truncate tw-gap-2 tw-items-center tw-font-bold"
+            class="tw-gap-2 tw-items-center tw-font-bold tw-h-full tw-content-center"
             [ngClass]="{ 'tw-text-center': !open, 'tw-flex': open }"
           >
             <i
-              class="!tw-m-0 tw-w-4 bwi bwi-fw tw-text-alt2 {{ icon }}"
+              class="!tw-m-0 tw-w-4 tw-shrink-0 bwi bwi-fw tw-text-alt2 {{ icon }}"
               [attr.aria-hidden]="open"
               [attr.aria-label]="text"
             ></i>
             @if (open) {
-              <span>{{ text }}</span>
+              <span class="tw-truncate">{{ text }}</span>
             }
           </div>
         </ng-template>
@@ -36,7 +36,7 @@
           <!-- The `data-fvw` attribute passes focus to `this.focusVisibleWithin$` -->
           <!-- The following `class` field should match the `#isButton` class field below -->
           <a
-            class="tw-w-full tw-px-3 tw-block tw-truncate tw-border-none tw-bg-transparent tw-text-start !tw-text-alt2 hover:tw-text-alt2 hover:tw-no-underline focus:tw-outline-none"
+            class="tw-size-full tw-px-3 tw-block tw-truncate tw-border-none tw-bg-transparent tw-text-start !tw-text-alt2 hover:tw-text-alt2 hover:tw-no-underline focus:tw-outline-none"
             data-fvw
             [routerLink]="route"
             [relativeTo]="relativeTo"
@@ -56,7 +56,7 @@
           <!-- Class field should match `#isAnchor` class field above -->
           <button
             type="button"
-            class="tw-w-full tw-px-3 tw-truncate tw-border-none tw-bg-transparent tw-text-start !tw-text-alt2 hover:tw-text-alt2 hover:tw-no-underline focus:tw-outline-none"
+            class="tw-size-full tw-px-3 tw-truncate tw-border-none tw-bg-transparent tw-text-start !tw-text-alt2 hover:tw-text-alt2 hover:tw-no-underline focus:tw-outline-none"
             data-fvw
             (click)="mainContentClicked.emit()"
           >
diff --git a/libs/components/src/navigation/nav-item.stories.ts b/libs/components/src/navigation/nav-item.stories.ts
index 09642fd2b1c..c51cffabb1d 100644
--- a/libs/components/src/navigation/nav-item.stories.ts
+++ b/libs/components/src/navigation/nav-item.stories.ts
@@ -68,6 +68,13 @@ export const WithoutIcon: Story = {
   },
 };
 
+export const WithLongText: Story = {
+  ...Default,
+  args: {
+    text: "Hello World This Is a Cool Item",
+  },
+};
+
 export const WithoutRoute: Story = {
   render: () => ({
     template: `
@@ -80,7 +87,7 @@ export const WithChildButtons: Story = {
   render: (args) => ({
     props: args,
     template: `
-      <bit-nav-item text="Hello World" [route]="['']" icon="bwi-collection-shared">
+      <bit-nav-item text="Hello World Very Cool World" [route]="['']" icon="bwi-collection-shared">
         <button
           slot="end"
           class="tw-ms-auto"
@@ -106,8 +113,8 @@ export const MultipleItemsWithDivider: Story = {
   render: (args) => ({
     props: args,
     template: `
-      <bit-nav-item text="Hello World" icon="bwi-collection-shared"></bit-nav-item>
-      <bit-nav-item text="Hello World" icon="bwi-collection-shared"></bit-nav-item>
+      <bit-nav-item text="Hello World"></bit-nav-item>
+      <bit-nav-item text="Hello World Long Text Long"></bit-nav-item>
       <bit-nav-divider></bit-nav-divider>
       <bit-nav-item text="Hello World" icon="bwi-collection-shared"></bit-nav-item>
       <bit-nav-item text="Hello World" icon="bwi-collection-shared"></bit-nav-item>
diff --git a/libs/components/src/stories/kitchen-sink/kitchen-sink.stories.ts b/libs/components/src/stories/kitchen-sink/kitchen-sink.stories.ts
index 97a782b7302..9e7e6f5d3ba 100644
--- a/libs/components/src/stories/kitchen-sink/kitchen-sink.stories.ts
+++ b/libs/components/src/stories/kitchen-sink/kitchen-sink.stories.ts
@@ -14,6 +14,7 @@ import {
 
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 
+import { PasswordManagerLogo } from "../../icon";
 import { LayoutComponent } from "../../layout";
 import { I18nMockService } from "../../utils/i18n-mock.service";
 import { positionFixedWrapperDecorator } from "../storybook-decorators";
@@ -77,9 +78,13 @@ type Story = StoryObj<LayoutComponent>;
 export const Default: Story = {
   render: (args) => {
     return {
-      props: args,
+      props: {
+        ...args,
+        logo: PasswordManagerLogo,
+      },
       template: /* HTML */ `<bit-layout>
         <bit-side-nav>
+          <bit-nav-logo [openIcon]="logo" route="." [label]="Logo"></bit-nav-logo>
           <bit-nav-group text="Password Managers" icon="bwi-collection-shared" [open]="true">
             <bit-nav-item text="Child A" route="a" icon="bwi-filter"></bit-nav-item>
             <bit-nav-item text="Child B" route="b"></bit-nav-item>
@@ -99,10 +104,15 @@ export const Default: Story = {
       </bit-layout>`,
     };
   },
+  parameters: {
+    chromatic: {
+      viewports: [640, 1280],
+    },
+  },
 };
 
 export const MenuOpen: Story = {
-  ...Default,
+  render: Default.render,
   play: async (context) => {
     const canvas = context.canvasElement;
     const table = getByRole(canvas, "table");
@@ -116,7 +126,7 @@ export const MenuOpen: Story = {
 };
 
 export const DialogOpen: Story = {
-  ...Default,
+  render: Default.render,
   play: async (context) => {
     const canvas = context.canvasElement;
     const dialogButton = getByRole(canvas, "button", {
@@ -129,7 +139,7 @@ export const DialogOpen: Story = {
 };
 
 export const DrawerOpen: Story = {
-  ...Default,
+  render: Default.render,
   play: async (context) => {
     const canvas = context.canvasElement;
     const drawerButton = getByRole(canvas, "button", {
@@ -142,7 +152,7 @@ export const DrawerOpen: Story = {
 };
 
 export const PopoverOpen: Story = {
-  ...Default,
+  render: Default.render,
   play: async (context) => {
     const canvas = context.canvasElement;
     const passwordLabelIcon = getByLabelText(canvas, "A random password (required)", {
@@ -154,7 +164,7 @@ export const PopoverOpen: Story = {
 };
 
 export const SimpleDialogOpen: Story = {
-  ...Default,
+  render: Default.render,
   play: async (context) => {
     const canvas = context.canvasElement;
     const submitButton = getByRole(canvas, "button", {
@@ -167,7 +177,7 @@ export const SimpleDialogOpen: Story = {
 };
 
 export const EmptyTab: Story = {
-  ...Default,
+  render: Default.render,
   play: async (context) => {
     const canvas = context.canvasElement;
     const emptyTab = getByRole(canvas, "tab", { name: "Empty tab" });
@@ -176,7 +186,7 @@ export const EmptyTab: Story = {
 };
 
 export const VirtualScrollBlockingDialog: Story = {
-  ...Default,
+  render: Default.render,
   play: async (context) => {
     const canvas = context.canvasElement;
     const navItem = getByText(canvas, "Virtual Scroll");

From 3e6fd9fc15b52c5e1d09b903748a31f1ffc84b34 Mon Sep 17 00:00:00 2001
From: Todd Martin <106564991+trmartin4@users.noreply.github.com>
Date: Thu, 10 Jul 2025 17:11:55 -0400
Subject: [PATCH 105/239] fix(SSO): Fixed URIs for alternate signing algorithms
 (#15404)

---
 bitwarden_license/bit-web/src/app/auth/sso/sso.component.ts | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/bitwarden_license/bit-web/src/app/auth/sso/sso.component.ts b/bitwarden_license/bit-web/src/app/auth/sso/sso.component.ts
index f0761757c65..fd56e7d4afc 100644
--- a/bitwarden_license/bit-web/src/app/auth/sso/sso.component.ts
+++ b/bitwarden_license/bit-web/src/app/auth/sso/sso.component.ts
@@ -65,8 +65,8 @@ export class SsoComponent implements OnInit, OnDestroy {
 
   readonly samlSigningAlgorithms = [
     "http://www.w3.org/2001/04/xmldsig-more#rsa-sha256",
-    "http://www.w3.org/2000/09/xmldsig#rsa-sha384",
-    "http://www.w3.org/2000/09/xmldsig#rsa-sha512",
+    "http://www.w3.org/2001/04/xmldsig-more#rsa-sha384",
+    "http://www.w3.org/2001/04/xmldsig-more#rsa-sha512",
   ];
 
   readonly samlSigningAlgorithmOptions: SelectOptions[] = this.samlSigningAlgorithms.map(

From 46e066f9e12e3a4f71f9983d1a87ee6c8d6db95f Mon Sep 17 00:00:00 2001
From: "bw-ghapp[bot]" <178206702+bw-ghapp[bot]@users.noreply.github.com>
Date: Fri, 11 Jul 2025 13:04:17 +0200
Subject: [PATCH 106/239] Autosync the updated translations (#15571)

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>
---
 apps/browser/src/_locales/ar/messages.json    |   15 +
 apps/browser/src/_locales/az/messages.json    |   27 +-
 apps/browser/src/_locales/be/messages.json    |   15 +
 apps/browser/src/_locales/bg/messages.json    |   15 +
 apps/browser/src/_locales/bn/messages.json    |   15 +
 apps/browser/src/_locales/bs/messages.json    |   15 +
 apps/browser/src/_locales/ca/messages.json    |   15 +
 apps/browser/src/_locales/cs/messages.json    |   15 +
 apps/browser/src/_locales/cy/messages.json    |   15 +
 apps/browser/src/_locales/da/messages.json    |   15 +
 apps/browser/src/_locales/de/messages.json    |   15 +
 apps/browser/src/_locales/el/messages.json    |   15 +
 apps/browser/src/_locales/en_GB/messages.json |   15 +
 apps/browser/src/_locales/en_IN/messages.json |   15 +
 apps/browser/src/_locales/es/messages.json    |   19 +-
 apps/browser/src/_locales/et/messages.json    |   15 +
 apps/browser/src/_locales/eu/messages.json    |   15 +
 apps/browser/src/_locales/fa/messages.json    |   47 +-
 apps/browser/src/_locales/fi/messages.json    |   15 +
 apps/browser/src/_locales/fil/messages.json   |   15 +
 apps/browser/src/_locales/fr/messages.json    |   45 +-
 apps/browser/src/_locales/gl/messages.json    |   15 +
 apps/browser/src/_locales/he/messages.json    |   15 +
 apps/browser/src/_locales/hi/messages.json    |   15 +
 apps/browser/src/_locales/hr/messages.json    |   25 +-
 apps/browser/src/_locales/hu/messages.json    |   27 +-
 apps/browser/src/_locales/id/messages.json    |   15 +
 apps/browser/src/_locales/it/messages.json    |   15 +
 apps/browser/src/_locales/ja/messages.json    |   15 +
 apps/browser/src/_locales/ka/messages.json    |   15 +
 apps/browser/src/_locales/km/messages.json    |   15 +
 apps/browser/src/_locales/kn/messages.json    |   15 +
 apps/browser/src/_locales/ko/messages.json    |   15 +
 apps/browser/src/_locales/lt/messages.json    |   15 +
 apps/browser/src/_locales/lv/messages.json    |   25 +-
 apps/browser/src/_locales/ml/messages.json    |   15 +
 apps/browser/src/_locales/mr/messages.json    |   15 +
 apps/browser/src/_locales/my/messages.json    |   15 +
 apps/browser/src/_locales/nb/messages.json    |   15 +
 apps/browser/src/_locales/ne/messages.json    |   15 +
 apps/browser/src/_locales/nl/messages.json    |   15 +
 apps/browser/src/_locales/nn/messages.json    |   15 +
 apps/browser/src/_locales/or/messages.json    |   15 +
 apps/browser/src/_locales/pl/messages.json    |  311 ++--
 apps/browser/src/_locales/pt_BR/messages.json |   15 +
 apps/browser/src/_locales/pt_PT/messages.json |   15 +
 apps/browser/src/_locales/ro/messages.json    |   15 +
 apps/browser/src/_locales/ru/messages.json    |   15 +
 apps/browser/src/_locales/si/messages.json    |   15 +
 apps/browser/src/_locales/sk/messages.json    |   17 +-
 apps/browser/src/_locales/sl/messages.json    |   15 +
 apps/browser/src/_locales/sr/messages.json    |   15 +
 apps/browser/src/_locales/sv/messages.json    |  819 +++++------
 apps/browser/src/_locales/te/messages.json    |   15 +
 apps/browser/src/_locales/th/messages.json    |   15 +
 apps/browser/src/_locales/tr/messages.json    |   15 +
 apps/browser/src/_locales/uk/messages.json    |   35 +-
 apps/browser/src/_locales/vi/messages.json    | 1285 +++++++++--------
 apps/browser/src/_locales/zh_CN/messages.json |   17 +-
 apps/browser/src/_locales/zh_TW/messages.json |   15 +
 apps/browser/store/locales/sv/copy.resx       |   54 +-
 apps/browser/store/locales/vi/copy.resx       |   56 +-
 62 files changed, 2207 insertions(+), 1307 deletions(-)

diff --git a/apps/browser/src/_locales/ar/messages.json b/apps/browser/src/_locales/ar/messages.json
index c56ea69d862..02734de942b 100644
--- a/apps/browser/src/_locales/ar/messages.json
+++ b/apps/browser/src/_locales/ar/messages.json
@@ -1173,6 +1173,12 @@
     "message": "أوه لا! لم نتمكن من حفظ هذا. حاول إدخال التفاصيل يدويا.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
   "enableChangedPasswordNotification": {
     "message": "اسأل عن تحديث تسجيل الدخول الحالي"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "masterPasswordChanged": {
+    "message": "Master password saved"
+  },
   "exposedMasterPassword": {
     "message": "كلمة المرور الرئيسية مكشوفة"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "طلب موافقة المدير"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "ssoIdentifierRequired": {
     "message": "Organization SSO identifier is required."
   },
diff --git a/apps/browser/src/_locales/az/messages.json b/apps/browser/src/_locales/az/messages.json
index f63038beb67..09198824d83 100644
--- a/apps/browser/src/_locales/az/messages.json
+++ b/apps/browser/src/_locales/az/messages.json
@@ -1173,6 +1173,12 @@
     "message": "Bunu saxlaya bilmədik. Məlumatları manual daxil etməyə çalışın.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
   "enableChangedPasswordNotification": {
     "message": "Mövcud girişin güncəllənməsini soruş"
   },
@@ -2920,7 +2926,7 @@
     "message": "Bu özəlliyi istifadə etmək üçün e-poçtunuzu doğrulamalısınız. E-poçtunuzu veb seyfdə doğrulaya bilərsiniz."
   },
   "masterPasswordSuccessfullySet": {
-    "message": "Master password successfully set"
+    "message": "Ana parol uğurla təyin edildi"
   },
   "updatedMasterPassword": {
     "message": "Güncəllənmiş ana parol"
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Tələb göndərildi"
   },
+  "masterPasswordChanged": {
+    "message": "Master password saved"
+  },
   "exposedMasterPassword": {
     "message": "İfşa olunmuş ana parol"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Admin təsdiqini tələb et"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "ssoIdentifierRequired": {
     "message": "Təşkilat SSO identifikatoru tələb olunur."
   },
@@ -4248,23 +4263,23 @@
     "description": "Label indicating the most common import formats"
   },
   "uriMatchDefaultStrategyHint": {
-    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "message": "URI uyuşma aşkarlaması, Bitwarden-in avto-doldurma təkliflərini necə müəyyən etdiyini göstərir.",
     "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
   },
   "regExAdvancedOptionWarning": {
-    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "message": "\"Müntəzəm ifadə\", kimlik məlumatlarının ifşa olunma riskini artıran qabaqcıl bir seçimdir.",
     "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
   },
   "startsWithAdvancedOptionWarning": {
-    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "message": "\"İlə başlayır\", kimlik məlumatlarının ifşa olunma riskini artıran qabaqcıl bir seçimdir.",
     "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
   },
   "uriMatchWarningDialogLink": {
-    "message": "More about match detection",
+    "message": "Uyuşma aşkarlaması barədə daha çox",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
   "uriAdvancedOption": {
-    "message": "Advanced options",
+    "message": "Qabaqcıl seçimlər",
     "description": "Advanced option placeholder for uri option component"
   },
   "confirmContinueToBrowserSettingsTitle": {
diff --git a/apps/browser/src/_locales/be/messages.json b/apps/browser/src/_locales/be/messages.json
index 2a691bc4987..eb721e76850 100644
--- a/apps/browser/src/_locales/be/messages.json
+++ b/apps/browser/src/_locales/be/messages.json
@@ -1173,6 +1173,12 @@
     "message": "Oh no! We couldn't save this. Try entering the details manually.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
   "enableChangedPasswordNotification": {
     "message": "Пытацца пра абнаўленні існуючага лагіна"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "masterPasswordChanged": {
+    "message": "Master password saved"
+  },
   "exposedMasterPassword": {
     "message": "Скампраметаваны асноўны пароль"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Запытаць ухваленне адміністратара"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "ssoIdentifierRequired": {
     "message": "Organization SSO identifier is required."
   },
diff --git a/apps/browser/src/_locales/bg/messages.json b/apps/browser/src/_locales/bg/messages.json
index fa822d424ff..dad53b42e36 100644
--- a/apps/browser/src/_locales/bg/messages.json
+++ b/apps/browser/src/_locales/bg/messages.json
@@ -1173,6 +1173,12 @@
     "message": "О, не! Запазването не беше успешно. Опитайте да въведете данните ръчно.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "След като промените паролата си, ще трябва да се впишете отново с новата си парола. Сесиите на други устройства също ще бъдат прекратени в рамките на един час."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Променете главната си парола, за да завършите възстановяването на акаунта."
+  },
   "enableChangedPasswordNotification": {
     "message": "Питане за обновяване на съществуващ запис"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Заявката е изпратена"
   },
+  "masterPasswordChanged": {
+    "message": "Главната парола е запазена"
+  },
   "exposedMasterPassword": {
     "message": "Разкрита главна парола"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Подаване на заявка за одобрение от администратор"
   },
+  "unableToCompleteLogin": {
+    "message": "Вписването не може да бъде завършено"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "Трябва да се впишете на доверено устройство или да помолите администратора си да Ви зададе парола."
+  },
   "ssoIdentifierRequired": {
     "message": "Идентификаторът за еднократна идентификация на организация е задължителен."
   },
diff --git a/apps/browser/src/_locales/bn/messages.json b/apps/browser/src/_locales/bn/messages.json
index 48c0dbef228..d70378f146c 100644
--- a/apps/browser/src/_locales/bn/messages.json
+++ b/apps/browser/src/_locales/bn/messages.json
@@ -1173,6 +1173,12 @@
     "message": "Oh no! We couldn't save this. Try entering the details manually.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
   "enableChangedPasswordNotification": {
     "message": "Ask to update existing login"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "masterPasswordChanged": {
+    "message": "Master password saved"
+  },
   "exposedMasterPassword": {
     "message": "Exposed Master Password"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "ssoIdentifierRequired": {
     "message": "Organization SSO identifier is required."
   },
diff --git a/apps/browser/src/_locales/bs/messages.json b/apps/browser/src/_locales/bs/messages.json
index 83228e94611..afe20ff55ca 100644
--- a/apps/browser/src/_locales/bs/messages.json
+++ b/apps/browser/src/_locales/bs/messages.json
@@ -1173,6 +1173,12 @@
     "message": "Oh no! We couldn't save this. Try entering the details manually.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
   "enableChangedPasswordNotification": {
     "message": "Ask to update existing login"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "masterPasswordChanged": {
+    "message": "Master password saved"
+  },
   "exposedMasterPassword": {
     "message": "Exposed Master Password"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "ssoIdentifierRequired": {
     "message": "Organization SSO identifier is required."
   },
diff --git a/apps/browser/src/_locales/ca/messages.json b/apps/browser/src/_locales/ca/messages.json
index edc139b1f23..29859f03dd0 100644
--- a/apps/browser/src/_locales/ca/messages.json
+++ b/apps/browser/src/_locales/ca/messages.json
@@ -1173,6 +1173,12 @@
     "message": "Oh no! We couldn't save this. Try entering the details manually.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
   "enableChangedPasswordNotification": {
     "message": "Demana d'actualitzar els inicis de sessió existents"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Sol·licitud enviada"
   },
+  "masterPasswordChanged": {
+    "message": "Master password saved"
+  },
   "exposedMasterPassword": {
     "message": "Contrasenya mestra exposada"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Sol·liciteu l'aprovació de l'administrador"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "ssoIdentifierRequired": {
     "message": "Es requereix un identificador SSO de l'organització."
   },
diff --git a/apps/browser/src/_locales/cs/messages.json b/apps/browser/src/_locales/cs/messages.json
index a9c4a823109..05135190fb4 100644
--- a/apps/browser/src/_locales/cs/messages.json
+++ b/apps/browser/src/_locales/cs/messages.json
@@ -1173,6 +1173,12 @@
     "message": "Ale ne! Nemohli jsme to uložit. Zkuste zadat podrobnosti ručně.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "Po změně hesla se budete muset přihlásit pomocí svého nového hesla. Aktivní relace na jiných zařízeních budou odhlášeny do jedné hodiny."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Pro dokončení obnovy účtu změňte hlavní heslo."
+  },
   "enableChangedPasswordNotification": {
     "message": "Zeptat se na aktualizaci existujícího přihlášení"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Požadavek odeslán"
   },
+  "masterPasswordChanged": {
+    "message": "Hlavní heslo bylo uloženo"
+  },
   "exposedMasterPassword": {
     "message": "Odhalené hlavní heslo"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Žádost o schválení správcem"
   },
+  "unableToCompleteLogin": {
+    "message": "Nelze dokončit přihlášení"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "Musíte se přihlásit na důvěryhodném zařízení nebo požádat správce, aby Vám přiřadil heslo."
+  },
   "ssoIdentifierRequired": {
     "message": "Je vyžadován SSO identifikátor organizace."
   },
diff --git a/apps/browser/src/_locales/cy/messages.json b/apps/browser/src/_locales/cy/messages.json
index 6f0ce7a438a..c5cbbdd189c 100644
--- a/apps/browser/src/_locales/cy/messages.json
+++ b/apps/browser/src/_locales/cy/messages.json
@@ -1173,6 +1173,12 @@
     "message": "Oh no! We couldn't save this. Try entering the details manually.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
   "enableChangedPasswordNotification": {
     "message": "Gofyn i ddiweddaru manylion mewngofnodi sy'n bodoli eisoes"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "masterPasswordChanged": {
+    "message": "Master password saved"
+  },
   "exposedMasterPassword": {
     "message": "Exposed Master Password"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "ssoIdentifierRequired": {
     "message": "Organization SSO identifier is required."
   },
diff --git a/apps/browser/src/_locales/da/messages.json b/apps/browser/src/_locales/da/messages.json
index ebd10e7b701..5737ba66b8d 100644
--- a/apps/browser/src/_locales/da/messages.json
+++ b/apps/browser/src/_locales/da/messages.json
@@ -1173,6 +1173,12 @@
     "message": "Oh no! We couldn't save this. Try entering the details manually.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
   "enableChangedPasswordNotification": {
     "message": "Bed om at opdatere eksisterende login"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "masterPasswordChanged": {
+    "message": "Master password saved"
+  },
   "exposedMasterPassword": {
     "message": "Kompromitteret hovedadgangskode"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Anmod om admin-godkendelse"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "ssoIdentifierRequired": {
     "message": "Organisations SSO-identifikator kræves."
   },
diff --git a/apps/browser/src/_locales/de/messages.json b/apps/browser/src/_locales/de/messages.json
index 8822f346e88..352705ec281 100644
--- a/apps/browser/src/_locales/de/messages.json
+++ b/apps/browser/src/_locales/de/messages.json
@@ -1173,6 +1173,12 @@
     "message": "Oh nein! Das konnten wir nicht speichern. Versuch, die Details manuell einzugeben.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
   "enableChangedPasswordNotification": {
     "message": "Nach dem Aktualisieren bestehender Zugangsdaten fragen"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Anfrage gesendet"
   },
+  "masterPasswordChanged": {
+    "message": "Master password saved"
+  },
   "exposedMasterPassword": {
     "message": "Kompromittiertes Master-Passwort"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Admin-Genehmigung anfragen"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "ssoIdentifierRequired": {
     "message": "SSO-Kennung der Organisation erforderlich."
   },
diff --git a/apps/browser/src/_locales/el/messages.json b/apps/browser/src/_locales/el/messages.json
index 4779fcf021c..960de6670d5 100644
--- a/apps/browser/src/_locales/el/messages.json
+++ b/apps/browser/src/_locales/el/messages.json
@@ -1173,6 +1173,12 @@
     "message": "Oh no! We couldn't save this. Try entering the details manually.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
   "enableChangedPasswordNotification": {
     "message": "Ζητήστε να ενημερώσετε την υπάρχουσα σύνδεση"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "masterPasswordChanged": {
+    "message": "Master password saved"
+  },
   "exposedMasterPassword": {
     "message": "Εκτεθειμένος Κύριος Κωδικός Πρόσβασης"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Αίτηση έγκρισης διαχειριστή"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "ssoIdentifierRequired": {
     "message": "Απαιτείται αναγνωριστικό οργανισμού SSO."
   },
diff --git a/apps/browser/src/_locales/en_GB/messages.json b/apps/browser/src/_locales/en_GB/messages.json
index dddae654d96..aab61eca30e 100644
--- a/apps/browser/src/_locales/en_GB/messages.json
+++ b/apps/browser/src/_locales/en_GB/messages.json
@@ -1173,6 +1173,12 @@
     "message": "Oh no! We couldn't save this. Try entering the details manually.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
   "enableChangedPasswordNotification": {
     "message": "Ask to update existing login"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "masterPasswordChanged": {
+    "message": "Master password saved"
+  },
   "exposedMasterPassword": {
     "message": "Exposed Master Password"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "ssoIdentifierRequired": {
     "message": "Organisation SSO identifier is required."
   },
diff --git a/apps/browser/src/_locales/en_IN/messages.json b/apps/browser/src/_locales/en_IN/messages.json
index deaadf4f900..eaf11a04e57 100644
--- a/apps/browser/src/_locales/en_IN/messages.json
+++ b/apps/browser/src/_locales/en_IN/messages.json
@@ -1173,6 +1173,12 @@
     "message": "Oh no! We couldn't save this. Try entering the details manually.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
   "enableChangedPasswordNotification": {
     "message": "Ask to update existing login"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "masterPasswordChanged": {
+    "message": "Master password saved"
+  },
   "exposedMasterPassword": {
     "message": "Exposed Master Password"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "ssoIdentifierRequired": {
     "message": "Organisation SSO identifier is required."
   },
diff --git a/apps/browser/src/_locales/es/messages.json b/apps/browser/src/_locales/es/messages.json
index 7dc607d30d0..724d07f4404 100644
--- a/apps/browser/src/_locales/es/messages.json
+++ b/apps/browser/src/_locales/es/messages.json
@@ -881,13 +881,13 @@
     "message": "Pulsa tu YubiKey para identificarte"
   },
   "duoTwoFactorRequiredPageSubtitle": {
-    "message": "Se requiere inicio de sesión en dos pasos para tu cuenta. Sigue los pasos siguientes para terminar de iniciar sesión."
+    "message": "Se requiere el inicio de sesión en dos pasos de Duo en tu cuenta. Sigue los siguientes pasos para terminar de iniciar sesión."
   },
   "followTheStepsBelowToFinishLoggingIn": {
     "message": "Sigue los pasos de abajo para terminar de iniciar sesión."
   },
   "followTheStepsBelowToFinishLoggingInWithSecurityKey": {
-    "message": "Sigue los siguientes pasos de abajo para terminar de iniciar sesión con tu clave de seguridad."
+    "message": "Sigue los siguientes pasos para terminar de iniciar sesión con tu clave de seguridad."
   },
   "restartRegistration": {
     "message": "Reiniciar registro"
@@ -1173,6 +1173,12 @@
     "message": "¡Oh no! No pudimos guardar esto. Intenta introducir los datos manualmente.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
   "enableChangedPasswordNotification": {
     "message": "Solicitar la actualización de los datos de inicio de sesión existentes"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Solicitud enviada"
   },
+  "masterPasswordChanged": {
+    "message": "Master password saved"
+  },
   "exposedMasterPassword": {
     "message": "Contraseña maestra comprometida"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Solicitar aprobación del administrador"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "ssoIdentifierRequired": {
     "message": "Se requiere un identificador único de inicio de sesión de la organización."
   },
diff --git a/apps/browser/src/_locales/et/messages.json b/apps/browser/src/_locales/et/messages.json
index a5e53be45cb..99e7b72a524 100644
--- a/apps/browser/src/_locales/et/messages.json
+++ b/apps/browser/src/_locales/et/messages.json
@@ -1173,6 +1173,12 @@
     "message": "Oh no! We couldn't save this. Try entering the details manually.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
   "enableChangedPasswordNotification": {
     "message": "Paku olemasolevate andmete uuendamist"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "masterPasswordChanged": {
+    "message": "Master password saved"
+  },
   "exposedMasterPassword": {
     "message": "Ülemparool on haavatav"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Küsi admini kinnitust"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "ssoIdentifierRequired": {
     "message": "Nõutav on organisatsiooni SSO identifikaator."
   },
diff --git a/apps/browser/src/_locales/eu/messages.json b/apps/browser/src/_locales/eu/messages.json
index 3c9c83777ad..393f922463e 100644
--- a/apps/browser/src/_locales/eu/messages.json
+++ b/apps/browser/src/_locales/eu/messages.json
@@ -1173,6 +1173,12 @@
     "message": "Oh no! We couldn't save this. Try entering the details manually.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
   "enableChangedPasswordNotification": {
     "message": "Galdetu uneko saio-hasiera eguneratzeko"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "masterPasswordChanged": {
+    "message": "Master password saved"
+  },
   "exposedMasterPassword": {
     "message": "Exposed Master Password"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Eskatu administratzailearen onarpena"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "ssoIdentifierRequired": {
     "message": "Organization SSO identifier is required."
   },
diff --git a/apps/browser/src/_locales/fa/messages.json b/apps/browser/src/_locales/fa/messages.json
index 77c9da484f2..fb9380d5317 100644
--- a/apps/browser/src/_locales/fa/messages.json
+++ b/apps/browser/src/_locales/fa/messages.json
@@ -1173,6 +1173,12 @@
     "message": "اوه نه! نتوانستیم این را ذخیره کنیم. لطفاً جزئیات را به‌صورت دستی وارد کنید.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
   "enableChangedPasswordNotification": {
     "message": "درخواست برای به‌روزرسانی ورود به سیستم موجود"
   },
@@ -1923,7 +1929,7 @@
     "message": "کلید SSH"
   },
   "typeNote": {
-    "message": "Note"
+    "message": "یادداشت"
   },
   "newItemHeader": {
     "message": "$TYPE$ جدید",
@@ -2157,7 +2163,7 @@
     "message": "کد پین خود را برای باز کردن Bitwarden تنظیم کنید. اگر به طور کامل از برنامه خارج شوید، تنظیمات پین شما از بین می‌رود."
   },
   "setPinCode": {
-    "message": "You can use this PIN to unlock Bitwarden. Your PIN will be reset if you ever fully log out of the application."
+    "message": "شما می‌توانید از این کد پین برای باز کردن قفل Bitwarden استفاده کنید. در صورتی که کامل از برنامه خارج شوید، کد پین شما مجدداً تنظیم خواهد شد."
   },
   "pinRequired": {
     "message": "کد پین الزامیست."
@@ -2488,10 +2494,10 @@
     "message": "یک سیاست سازمانی، درون ریزی موارد به گاوصندوق فردی شما را مسدود کرده است."
   },
   "restrictCardTypeImport": {
-    "message": "Cannot import card item types"
+    "message": "نمی‌توان انواع مورد کارت را درون ریزی کرد"
   },
   "restrictCardTypeImportDesc": {
-    "message": "A policy set by 1 or more organizations prevents you from importing cards to your vaults."
+    "message": "یک سیاست تعیین شده توسط یک یا چند سازمان، مانع از درون ریزی کارت‌ها به گاوصندوق‌های شما شده است."
   },
   "domainsTitle": {
     "message": "دامنه‌ها",
@@ -2525,7 +2531,7 @@
     "message": "تغییر"
   },
   "changePassword": {
-    "message": "Change password",
+    "message": "تغییر رمز عبور",
     "description": "Change password button for browser at risk notification on login."
   },
   "changeButtonTitle": {
@@ -2538,7 +2544,7 @@
     }
   },
   "atRiskPassword": {
-    "message": "At-risk password"
+    "message": "کلمه عبور در معرض خطر"
   },
   "atRiskPasswords": {
     "message": "کلمات عبور در معرض خطر"
@@ -2575,7 +2581,7 @@
     }
   },
   "atRiskChangePrompt": {
-    "message": "Your password for this site is at-risk. $ORGANIZATION$ has requested that you change it.",
+    "message": "کلمه عبور شما برای این سایت در معرض خطر است. $ORGANIZATION$ درخواست کرده است که آن را تغییر دهید.",
     "placeholders": {
       "organization": {
         "content": "$1",
@@ -2585,7 +2591,7 @@
     "description": "Notification body when a login triggers an at-risk password change request and the change password domain is known."
   },
   "atRiskNavigatePrompt": {
-    "message": "$ORGANIZATION$ wants you to change this password because it is at-risk. Navigate to your account settings to change the password.",
+    "message": "$ORGANIZATION$ از شما می‌خواهد این کلمه عبور را تغییر دهید چون در معرض خطر است. برای تغییر کلمه عبور به تنظیمات حساب کاربری خود مراجعه کنید.",
     "placeholders": {
       "organization": {
         "content": "$1",
@@ -2920,7 +2926,7 @@
     "message": "برای استفاده از این ویژگی باید ایمیل خود را تأیید کنید. می‌توانید ایمیل خود را در گاوصندوق وب تأیید کنید."
   },
   "masterPasswordSuccessfullySet": {
-    "message": "Master password successfully set"
+    "message": "کلمه عبور اصلی با موفقیت تنظیم شد"
   },
   "updatedMasterPassword": {
     "message": "کلمه عبور اصلی به‌روزرسانی شد"
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "درخواست ارسال شد"
   },
+  "masterPasswordChanged": {
+    "message": "Master password saved"
+  },
   "exposedMasterPassword": {
     "message": "کلمه عبور اصلی افشا شده"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "درخواست تأیید مدیر"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "ssoIdentifierRequired": {
     "message": "شناسه سازمان SSO مورد نیاز است."
   },
@@ -4248,23 +4263,23 @@
     "description": "Label indicating the most common import formats"
   },
   "uriMatchDefaultStrategyHint": {
-    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "message": "تشخیص تطابق نشانی اینترنتی روشی است که Bitwarden برای شناسایی پیشنهادهای پر کردن خودکار استفاده می‌کند.",
     "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
   },
   "regExAdvancedOptionWarning": {
-    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "message": "\"عبارت منظم\" یک گزینه پیشرفته است که خطر افشای اطلاعات ورود را افزایش می‌دهد.",
     "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
   },
   "startsWithAdvancedOptionWarning": {
-    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "message": "\"شروع با\" یک گزینه پیشرفته است که خطر افشای اطلاعات ورود را افزایش می‌دهد.",
     "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
   },
   "uriMatchWarningDialogLink": {
-    "message": "More about match detection",
+    "message": "اطلاعات بیشتر درباره‌ی تشخیص تطابق",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
   "uriAdvancedOption": {
-    "message": "Advanced options",
+    "message": "تنظیمات پیشرفته",
     "description": "Advanced option placeholder for uri option component"
   },
   "confirmContinueToBrowserSettingsTitle": {
@@ -5095,7 +5110,7 @@
     "message": "بازکردن قفل کد پین تنظیم شد"
   },
   "unlockWithBiometricSet": {
-    "message": "Unlock with biometrics set"
+    "message": "باز کردن قفل با بیومتریک تنظیم شد"
   },
   "authenticating": {
     "message": "در حال احراز هویت"
@@ -5440,7 +5455,7 @@
     "message": "شما اجازه دسترسی به این صفحه را ندارید. لطفاً با حساب کاربری دیگری وارد شوید."
   },
   "wasmNotSupported": {
-    "message": "WebAssembly is not supported on your browser or is not enabled. WebAssembly is required to use the Bitwarden app.",
+    "message": "WebAssembly در مرورگر شما پشتیبانی نمی‌شود یا فعال نیست. برای استفاده از برنامه Bitwarden، فعال بودن WebAssembly الزامی است.",
     "description": "'WebAssembly' is a technical term and should not be translated."
   }
 }
diff --git a/apps/browser/src/_locales/fi/messages.json b/apps/browser/src/_locales/fi/messages.json
index d7484b49040..85c47f2733b 100644
--- a/apps/browser/src/_locales/fi/messages.json
+++ b/apps/browser/src/_locales/fi/messages.json
@@ -1173,6 +1173,12 @@
     "message": "Voi ei! Emme voineet tallentaa tätä. Yritä syöttää tiedot manuaalisesti.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
   "enableChangedPasswordNotification": {
     "message": "Kysy päivitetäänkö kirjautumistieto"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Pyyntö lähetetty"
   },
+  "masterPasswordChanged": {
+    "message": "Master password saved"
+  },
   "exposedMasterPassword": {
     "message": "Paljastunut pääsalasana"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Pyydä hyväksyntää ylläpidolta"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "ssoIdentifierRequired": {
     "message": "Organisaation kertakirjautumistunniste tarvitaan."
   },
diff --git a/apps/browser/src/_locales/fil/messages.json b/apps/browser/src/_locales/fil/messages.json
index 260ce635a1a..4e3f94cb474 100644
--- a/apps/browser/src/_locales/fil/messages.json
+++ b/apps/browser/src/_locales/fil/messages.json
@@ -1173,6 +1173,12 @@
     "message": "Oh no! We couldn't save this. Try entering the details manually.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
   "enableChangedPasswordNotification": {
     "message": "Tanungin ang update ng umiiral na login"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "masterPasswordChanged": {
+    "message": "Master password saved"
+  },
   "exposedMasterPassword": {
     "message": "Nakalantad na Master Password"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "ssoIdentifierRequired": {
     "message": "Organization SSO identifier is required."
   },
diff --git a/apps/browser/src/_locales/fr/messages.json b/apps/browser/src/_locales/fr/messages.json
index ab449fc07af..326f1e3c09c 100644
--- a/apps/browser/src/_locales/fr/messages.json
+++ b/apps/browser/src/_locales/fr/messages.json
@@ -1173,6 +1173,12 @@
     "message": "Oh non ! Nous n'avons pas pu enregistrer cela. Essayez de saisir les détails manuellement.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
   "enableChangedPasswordNotification": {
     "message": "Demander de mettre à jour un identifiant existant"
   },
@@ -1606,7 +1612,7 @@
     "message": "Turn off your browser's autofill settings, so they don't conflict with Bitwarden."
   },
   "turnOffBrowserAutofill": {
-    "message": "Turn off $BROWSER$ autofill",
+    "message": "Désactiver le remplissage automatique de $BROWSER$",
     "placeholders": {
       "browser": {
         "content": "$1",
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Demande envoyée"
   },
+  "masterPasswordChanged": {
+    "message": "Master password saved"
+  },
   "exposedMasterPassword": {
     "message": "Mot de passe principal exposé"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Demander l'approbation de l'administrateur"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "ssoIdentifierRequired": {
     "message": "Identifiant SSO de l'organisation requis."
   },
@@ -3630,7 +3645,7 @@
     "message": "Appareil de confiance"
   },
   "trustOrganization": {
-    "message": "Trust organization"
+    "message": "Faire confiance à l'organisation"
   },
   "trust": {
     "message": "Faire confiance"
@@ -3651,7 +3666,7 @@
     "message": "This organization has an Enterprise policy that will enroll you in account recovery. Enrollment will allow organization administrators to change your password. Only proceed if you recognize this organization and the fingerprint phrase displayed below matches the organization's fingerprint."
   },
   "trustUser": {
-    "message": "Trust user"
+    "message": "Faire confiance à l'utilisateur"
   },
   "sendsTitleNoItems": {
     "message": "Send sensitive information safely",
@@ -4264,7 +4279,7 @@
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
   "uriAdvancedOption": {
-    "message": "Advanced options",
+    "message": "Options avancées",
     "description": "Advanced option placeholder for uri option component"
   },
   "confirmContinueToBrowserSettingsTitle": {
@@ -4622,7 +4637,7 @@
     "message": "Get it on Google Play"
   },
   "downloadOnTheAppStore": {
-    "message": "Download on the App Store"
+    "message": "Télécharger depuis l’App Store"
   },
   "permanentlyDeleteAttachmentConfirmation": {
     "message": "Êtes-vous sûr de vouloir supprimer définitivement cette pièce jointe ?"
@@ -5086,7 +5101,7 @@
     "message": "Le déverrouillage par biométrie n'est pas disponible actuellement pour une raison inconnue."
   },
   "unlockVault": {
-    "message": "Unlock your vault in seconds"
+    "message": "Déverouillez votre coffre en quelques secondes"
   },
   "unlockVaultDesc": {
     "message": "You can customize your unlock and timeout settings to more quickly access your vault."
@@ -5314,22 +5329,22 @@
     "message": "Changer le mot de passe à risque"
   },
   "settingsVaultOptions": {
-    "message": "Vault options"
+    "message": "Options du coffre"
   },
   "emptyVaultDescription": {
     "message": "The vault protects more than just your passwords. Store secure logins, IDs, cards and notes securely here."
   },
   "introCarouselLabel": {
-    "message": "Welcome to Bitwarden"
+    "message": "Bienvenue sur Bitwarden"
   },
   "securityPrioritized": {
-    "message": "Security, prioritized"
+    "message": "Priorité à la sécurité"
   },
   "securityPrioritizedBody": {
     "message": "Save logins, cards, and identities to your secure vault. Bitwarden uses zero-knowledge, end-to-end encryption to protect what’s important to you."
   },
   "quickLogin": {
-    "message": "Quick and easy login"
+    "message": "Connexion rapide et facile"
   },
   "quickLoginBody": {
     "message": "Set up biometric unlock and autofill to log into your accounts without typing a single letter."
@@ -5356,10 +5371,10 @@
     "message": "Use the importer to quickly transfer logins to Bitwarden without manually adding them."
   },
   "emptyVaultNudgeButton": {
-    "message": "Import now"
+    "message": "Importer maintenant"
   },
   "hasItemsVaultNudgeTitle": {
-    "message": "Welcome to your vault!"
+    "message": "Bienvenue dans votre coffre !"
   },
   "hasItemsVaultNudgeBodyOne": {
     "message": "Autofill items for the current page"
@@ -5371,7 +5386,7 @@
     "message": "Search your vault for something else"
   },
   "newLoginNudgeTitle": {
-    "message": "Save time with autofill"
+    "message": "Gagnez du temps avec le remplissage automatique"
   },
   "newLoginNudgeBodyOne": {
     "message": "Include a",
@@ -5379,7 +5394,7 @@
     "example": "Include a Website so this login appears as an autofill suggestion."
   },
   "newLoginNudgeBodyBold": {
-    "message": "Website",
+    "message": "Site internet",
     "description": "This is in multiple parts to allow for bold text in the middle of the sentence.",
     "example": "Include a Website so this login appears as an autofill suggestion."
   },
@@ -5415,7 +5430,7 @@
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
   "newSshNudgeBodyTwo": {
-    "message": "Learn more about SSH agent",
+    "message": "En savoir plus sur l'agent SSH",
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
diff --git a/apps/browser/src/_locales/gl/messages.json b/apps/browser/src/_locales/gl/messages.json
index 06b4cd73bad..71841239698 100644
--- a/apps/browser/src/_locales/gl/messages.json
+++ b/apps/browser/src/_locales/gl/messages.json
@@ -1173,6 +1173,12 @@
     "message": "Oh no! We couldn't save this. Try entering the details manually.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
   "enableChangedPasswordNotification": {
     "message": "Ofrecer actualizar as credenciais xa gardadas"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "masterPasswordChanged": {
+    "message": "Master password saved"
+  },
   "exposedMasterPassword": {
     "message": "Contrasinal mestre filtrado"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Solicitar aprobación do administrador"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "ssoIdentifierRequired": {
     "message": "Identificador SSO da organización requirido."
   },
diff --git a/apps/browser/src/_locales/he/messages.json b/apps/browser/src/_locales/he/messages.json
index 5010fa8ac16..b9a0a3dada4 100644
--- a/apps/browser/src/_locales/he/messages.json
+++ b/apps/browser/src/_locales/he/messages.json
@@ -1173,6 +1173,12 @@
     "message": "או לא! לא יכלנו לשמור זאת. נסה להזין את הפרטים באופן ידני.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
   "enableChangedPasswordNotification": {
     "message": "שאל אם לעדכן פרטי כניסה קיימת"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "בקשה נשלחה"
   },
+  "masterPasswordChanged": {
+    "message": "Master password saved"
+  },
   "exposedMasterPassword": {
     "message": "סיסמה ראשית חשופה"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "בקש אישור מנהל"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "ssoIdentifierRequired": {
     "message": "נדרש מזהה SSO של הארגון."
   },
diff --git a/apps/browser/src/_locales/hi/messages.json b/apps/browser/src/_locales/hi/messages.json
index c33c6e249c6..74fc419d7f1 100644
--- a/apps/browser/src/_locales/hi/messages.json
+++ b/apps/browser/src/_locales/hi/messages.json
@@ -1173,6 +1173,12 @@
     "message": "Oh no! We couldn't save this. Try entering the details manually.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
   "enableChangedPasswordNotification": {
     "message": "मौजूदा लॉगिन को अपडेट करने के लिए कहें"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "masterPasswordChanged": {
+    "message": "Master password saved"
+  },
   "exposedMasterPassword": {
     "message": "Exposed Master Password"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "ssoIdentifierRequired": {
     "message": "Organization SSO identifier is required."
   },
diff --git a/apps/browser/src/_locales/hr/messages.json b/apps/browser/src/_locales/hr/messages.json
index 2dfcd35da82..bbf82ee2915 100644
--- a/apps/browser/src/_locales/hr/messages.json
+++ b/apps/browser/src/_locales/hr/messages.json
@@ -1173,6 +1173,12 @@
     "message": "Ups! Nismo mogli ovo spasiti. Pokušaj ručno unijeti detalje.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
   "enableChangedPasswordNotification": {
     "message": "Upitaj za ažuriranje trenutne prijave"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Zahtjev poslan"
   },
+  "masterPasswordChanged": {
+    "message": "Master password saved"
+  },
   "exposedMasterPassword": {
     "message": "Ukradena glavna lozinka"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Zatraži odobrenje administratora"
   },
+  "unableToCompleteLogin": {
+    "message": "Nije moguće dovršiti prijavu"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "Moraš se prijaviti na pouzdanom uređaju ili zamoliti administratora da ti dodijeli lozinku."
+  },
   "ssoIdentifierRequired": {
     "message": "Potreban je identifikator organizacije."
   },
@@ -4248,23 +4263,23 @@
     "description": "Label indicating the most common import formats"
   },
   "uriMatchDefaultStrategyHint": {
-    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "message": "Otkrivanje podudaranja URI-ja je način na koji Bitwarden identificira prijedloge za auto-ispunu.",
     "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
   },
   "regExAdvancedOptionWarning": {
-    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "message": "„Regularni izraz” je napredna mogućnost s povećanim rizikom od otkrivanja vjerodajnica.",
     "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
   },
   "startsWithAdvancedOptionWarning": {
-    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "message": "„Počinje s” je napredna mogućnost s povećnim rizikom od otkrivanja vjerodajnica.",
     "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
   },
   "uriMatchWarningDialogLink": {
-    "message": "More about match detection",
+    "message": "Više o otkrivanju podudaranja",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
   "uriAdvancedOption": {
-    "message": "Advanced options",
+    "message": "Napredne mogućnosti",
     "description": "Advanced option placeholder for uri option component"
   },
   "confirmContinueToBrowserSettingsTitle": {
diff --git a/apps/browser/src/_locales/hu/messages.json b/apps/browser/src/_locales/hu/messages.json
index b2800be9c81..ba49c0f1a60 100644
--- a/apps/browser/src/_locales/hu/messages.json
+++ b/apps/browser/src/_locales/hu/messages.json
@@ -1173,6 +1173,12 @@
     "message": "Oh no! We couldn't save this. Try entering the details manually.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
   "enableChangedPasswordNotification": {
     "message": "Létező bejelentkezés frissítés kérése"
   },
@@ -2920,7 +2926,7 @@
     "message": "A funkció használatához igazolni kell email címet. Az email cím a webtárban ellenőrizhető."
   },
   "masterPasswordSuccessfullySet": {
-    "message": "Master password successfully set"
+    "message": "A mesterjelszó sikeresen beállításra került."
   },
   "updatedMasterPassword": {
     "message": "A mesterjelszó frissítésre került."
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "A kérés elküldésre került."
   },
+  "masterPasswordChanged": {
+    "message": "Master password saved"
+  },
   "exposedMasterPassword": {
     "message": "Kiszivárgott mesterjelszó"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Adminisztrátori jóváhagyás kérés"
   },
+  "unableToCompleteLogin": {
+    "message": "Nem lehet befejezni a bejelentkezést."
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "Be kell jelentkezni egy megbízható eszközön vagy meg kell kérni az adminisztrátort, hogy rendeljen hozzá egy jelszót."
+  },
   "ssoIdentifierRequired": {
     "message": "A szervezeti SSO azonosító megadása szükséges."
   },
@@ -4248,23 +4263,23 @@
     "description": "Label indicating the most common import formats"
   },
   "uriMatchDefaultStrategyHint": {
-    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "message": "Az URI egyezés észlelése az, ahogyan a Bitwarden azonosítja az automatikus kitöltési javaslatokat.",
     "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
   },
   "regExAdvancedOptionWarning": {
-    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "message": "A \"Normál kifejezés“ egy fejlett opció, amely a hitelesítő adatok növekvő kiszivárgásának kockázatával.",
     "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
   },
   "startsWithAdvancedOptionWarning": {
-    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "message": "A \"Kezdés\" egy fejlett opció, amely a hitelesítő adatok kiszivárgásának növekvő kockázatával.",
     "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
   },
   "uriMatchWarningDialogLink": {
-    "message": "More about match detection",
+    "message": "Bővebben az egyezés felismerésről",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
   "uriAdvancedOption": {
-    "message": "Advanced options",
+    "message": "Haladó opciók",
     "description": "Advanced option placeholder for uri option component"
   },
   "confirmContinueToBrowserSettingsTitle": {
diff --git a/apps/browser/src/_locales/id/messages.json b/apps/browser/src/_locales/id/messages.json
index ccf35bf05d0..dc1ec15cede 100644
--- a/apps/browser/src/_locales/id/messages.json
+++ b/apps/browser/src/_locales/id/messages.json
@@ -1173,6 +1173,12 @@
     "message": "Oh tidak! Kami tidak bisa menyimpan ini. Cobalah memasukkan rincian secara manual.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
   "enableChangedPasswordNotification": {
     "message": "Tanyakan untuk memperbarui masuk yang sudah ada"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Permintaan terkirim"
   },
+  "masterPasswordChanged": {
+    "message": "Master password saved"
+  },
   "exposedMasterPassword": {
     "message": "Kata Sandi Utama yang Terpapar"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Minta persetujuan admin"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "ssoIdentifierRequired": {
     "message": "Pengenal SSO organisasi diperlukan."
   },
diff --git a/apps/browser/src/_locales/it/messages.json b/apps/browser/src/_locales/it/messages.json
index 24c18b1ea7b..f4829ecabec 100644
--- a/apps/browser/src/_locales/it/messages.json
+++ b/apps/browser/src/_locales/it/messages.json
@@ -1173,6 +1173,12 @@
     "message": "Oh no! Il salvataggio non è riuscito. Prova a inserire i dati manualmente.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
   "enableChangedPasswordNotification": {
     "message": "Chiedi di aggiornare il login esistente"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Richiesta inviata"
   },
+  "masterPasswordChanged": {
+    "message": "Master password saved"
+  },
   "exposedMasterPassword": {
     "message": "Password principale violata"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Richiedi approvazione dell'amministratore"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "ssoIdentifierRequired": {
     "message": "Identificatore SSO dell'organizzazione obbligatorio."
   },
diff --git a/apps/browser/src/_locales/ja/messages.json b/apps/browser/src/_locales/ja/messages.json
index 1a19ffe1ae1..783a9ff0eb1 100644
--- a/apps/browser/src/_locales/ja/messages.json
+++ b/apps/browser/src/_locales/ja/messages.json
@@ -1173,6 +1173,12 @@
     "message": "保存できませんでした。詳細を手動で入力してください。",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
   "enableChangedPasswordNotification": {
     "message": "既存のログイン情報の更新を尋ねる"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "リクエストが送信されました"
   },
+  "masterPasswordChanged": {
+    "message": "Master password saved"
+  },
   "exposedMasterPassword": {
     "message": "流出したマスターパスワード"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "管理者の承認を要求する"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "ssoIdentifierRequired": {
     "message": "組織の SSO ID が必要です。"
   },
diff --git a/apps/browser/src/_locales/ka/messages.json b/apps/browser/src/_locales/ka/messages.json
index bb2977f31eb..efbf97e9a92 100644
--- a/apps/browser/src/_locales/ka/messages.json
+++ b/apps/browser/src/_locales/ka/messages.json
@@ -1173,6 +1173,12 @@
     "message": "Oh no! We couldn't save this. Try entering the details manually.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
   "enableChangedPasswordNotification": {
     "message": "Ask to update existing login"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "masterPasswordChanged": {
+    "message": "Master password saved"
+  },
   "exposedMasterPassword": {
     "message": "Exposed Master Password"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "ssoIdentifierRequired": {
     "message": "Organization SSO identifier is required."
   },
diff --git a/apps/browser/src/_locales/km/messages.json b/apps/browser/src/_locales/km/messages.json
index 45dc3215966..ecc7da63e79 100644
--- a/apps/browser/src/_locales/km/messages.json
+++ b/apps/browser/src/_locales/km/messages.json
@@ -1173,6 +1173,12 @@
     "message": "Oh no! We couldn't save this. Try entering the details manually.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
   "enableChangedPasswordNotification": {
     "message": "Ask to update existing login"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "masterPasswordChanged": {
+    "message": "Master password saved"
+  },
   "exposedMasterPassword": {
     "message": "Exposed Master Password"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "ssoIdentifierRequired": {
     "message": "Organization SSO identifier is required."
   },
diff --git a/apps/browser/src/_locales/kn/messages.json b/apps/browser/src/_locales/kn/messages.json
index f34e98d3643..d4e4498a322 100644
--- a/apps/browser/src/_locales/kn/messages.json
+++ b/apps/browser/src/_locales/kn/messages.json
@@ -1173,6 +1173,12 @@
     "message": "Oh no! We couldn't save this. Try entering the details manually.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
   "enableChangedPasswordNotification": {
     "message": "Ask to update existing login"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "masterPasswordChanged": {
+    "message": "Master password saved"
+  },
   "exposedMasterPassword": {
     "message": "Exposed Master Password"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "ssoIdentifierRequired": {
     "message": "Organization SSO identifier is required."
   },
diff --git a/apps/browser/src/_locales/ko/messages.json b/apps/browser/src/_locales/ko/messages.json
index abd7ff86247..d5eba5ccbd8 100644
--- a/apps/browser/src/_locales/ko/messages.json
+++ b/apps/browser/src/_locales/ko/messages.json
@@ -1173,6 +1173,12 @@
     "message": "Oh no! We couldn't save this. Try entering the details manually.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
   "enableChangedPasswordNotification": {
     "message": "현재 로그인으로 업데이트할 건지 묻기"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "masterPasswordChanged": {
+    "message": "Master password saved"
+  },
   "exposedMasterPassword": {
     "message": "노출된 마스터 비밀번호"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "관리자 인증 필요"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "ssoIdentifierRequired": {
     "message": "조직의 SSO 식별자가 필요합니다"
   },
diff --git a/apps/browser/src/_locales/lt/messages.json b/apps/browser/src/_locales/lt/messages.json
index b800a93241f..33f3b0f0ed6 100644
--- a/apps/browser/src/_locales/lt/messages.json
+++ b/apps/browser/src/_locales/lt/messages.json
@@ -1173,6 +1173,12 @@
     "message": "Oh no! We couldn't save this. Try entering the details manually.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
   "enableChangedPasswordNotification": {
     "message": "Paprašyti atnaujinti esamą prisijungimą"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "masterPasswordChanged": {
+    "message": "Master password saved"
+  },
   "exposedMasterPassword": {
     "message": "Exposed Master Password"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Prašyti administratoriaus patvirtinimo"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "ssoIdentifierRequired": {
     "message": "Organizacijos SSO identifikatorius yra reikalingas."
   },
diff --git a/apps/browser/src/_locales/lv/messages.json b/apps/browser/src/_locales/lv/messages.json
index ad86e857818..2235baef2ab 100644
--- a/apps/browser/src/_locales/lv/messages.json
+++ b/apps/browser/src/_locales/lv/messages.json
@@ -1173,6 +1173,12 @@
     "message": "Ak nē! Mēs nevarējā šo saglabāt. Jāmēģina pašrocīgi ievadīt informāciju.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "Pēc savas paroles nomainīšanas būs nepieciešams pieteikties ar jauno paroli. Spēkā esošajās sesijās citās ierīcēs stundas laikā notiks atteikšanās."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Jānomaina sava galvenā'parole, lai pabeigtu konta atkopi."
+  },
   "enableChangedPasswordNotification": {
     "message": "Vaicāt atjaunināt esošu pieteikšanās vienumu"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Pieprasījums nosūtīts"
   },
+  "masterPasswordChanged": {
+    "message": "Galvenā parole saglabāta"
+  },
   "exposedMasterPassword": {
     "message": "Noplūdusi galvenā parole"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Pieprasīt pārvaldītāja apstiprinājumu"
   },
+  "unableToCompleteLogin": {
+    "message": "Nevar pabeigt pieteikšanos"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "Nepieciešams pieteikties uzticamā ierīcē vai vaicāt pārvaldītājam, lai piešķir paroli."
+  },
   "ssoIdentifierRequired": {
     "message": "Ir nepieciešams apvienības SSO identifikators."
   },
@@ -4248,23 +4263,23 @@
     "description": "Label indicating the most common import formats"
   },
   "uriMatchDefaultStrategyHint": {
-    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "message": "URI atbilstības noteikšana ir veids, kā Bitwarden atpazīst automātiskās aizpildes ieteikumus.",
     "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
   },
   "regExAdvancedOptionWarning": {
-    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "message": "\"Regulārā izteiksme\" ir lietpratējiem paredzēta iespēja ar paaugstinātu piekļuves datu atklāšanas bīstamību.",
     "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
   },
   "startsWithAdvancedOptionWarning": {
-    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "message": "\"Sākas ar' ir lietpratējiem paredzēta iespēja ar paaugstinātu piekļuves datu atklāšanas bīstamību.",
     "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
   },
   "uriMatchWarningDialogLink": {
-    "message": "More about match detection",
+    "message": "Vairāk par atbilstības noteikšanu",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
   "uriAdvancedOption": {
-    "message": "Advanced options",
+    "message": "Papildu iespējas",
     "description": "Advanced option placeholder for uri option component"
   },
   "confirmContinueToBrowserSettingsTitle": {
diff --git a/apps/browser/src/_locales/ml/messages.json b/apps/browser/src/_locales/ml/messages.json
index df0f2b4ebdd..7c0050906b0 100644
--- a/apps/browser/src/_locales/ml/messages.json
+++ b/apps/browser/src/_locales/ml/messages.json
@@ -1173,6 +1173,12 @@
     "message": "Oh no! We couldn't save this. Try entering the details manually.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
   "enableChangedPasswordNotification": {
     "message": "Ask to update existing login"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "masterPasswordChanged": {
+    "message": "Master password saved"
+  },
   "exposedMasterPassword": {
     "message": "Exposed Master Password"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "ssoIdentifierRequired": {
     "message": "Organization SSO identifier is required."
   },
diff --git a/apps/browser/src/_locales/mr/messages.json b/apps/browser/src/_locales/mr/messages.json
index 1655daf6b37..feb3377a2f1 100644
--- a/apps/browser/src/_locales/mr/messages.json
+++ b/apps/browser/src/_locales/mr/messages.json
@@ -1173,6 +1173,12 @@
     "message": "Oh no! We couldn't save this. Try entering the details manually.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
   "enableChangedPasswordNotification": {
     "message": "Ask to update existing login"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "masterPasswordChanged": {
+    "message": "Master password saved"
+  },
   "exposedMasterPassword": {
     "message": "Exposed Master Password"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "ssoIdentifierRequired": {
     "message": "Organization SSO identifier is required."
   },
diff --git a/apps/browser/src/_locales/my/messages.json b/apps/browser/src/_locales/my/messages.json
index 45dc3215966..ecc7da63e79 100644
--- a/apps/browser/src/_locales/my/messages.json
+++ b/apps/browser/src/_locales/my/messages.json
@@ -1173,6 +1173,12 @@
     "message": "Oh no! We couldn't save this. Try entering the details manually.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
   "enableChangedPasswordNotification": {
     "message": "Ask to update existing login"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "masterPasswordChanged": {
+    "message": "Master password saved"
+  },
   "exposedMasterPassword": {
     "message": "Exposed Master Password"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "ssoIdentifierRequired": {
     "message": "Organization SSO identifier is required."
   },
diff --git a/apps/browser/src/_locales/nb/messages.json b/apps/browser/src/_locales/nb/messages.json
index 419f995d83c..59a8ca94c9d 100644
--- a/apps/browser/src/_locales/nb/messages.json
+++ b/apps/browser/src/_locales/nb/messages.json
@@ -1173,6 +1173,12 @@
     "message": "Oh no! We couldn't save this. Try entering the details manually.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
   "enableChangedPasswordNotification": {
     "message": "Spør om å oppdatere eksisterende innlogginger"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Forespørsel sendt"
   },
+  "masterPasswordChanged": {
+    "message": "Master password saved"
+  },
   "exposedMasterPassword": {
     "message": "Eksponert hovedpassord"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Be om administratorgodkjennelse"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "ssoIdentifierRequired": {
     "message": "Organization SSO identifier is required."
   },
diff --git a/apps/browser/src/_locales/ne/messages.json b/apps/browser/src/_locales/ne/messages.json
index 45dc3215966..ecc7da63e79 100644
--- a/apps/browser/src/_locales/ne/messages.json
+++ b/apps/browser/src/_locales/ne/messages.json
@@ -1173,6 +1173,12 @@
     "message": "Oh no! We couldn't save this. Try entering the details manually.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
   "enableChangedPasswordNotification": {
     "message": "Ask to update existing login"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "masterPasswordChanged": {
+    "message": "Master password saved"
+  },
   "exposedMasterPassword": {
     "message": "Exposed Master Password"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "ssoIdentifierRequired": {
     "message": "Organization SSO identifier is required."
   },
diff --git a/apps/browser/src/_locales/nl/messages.json b/apps/browser/src/_locales/nl/messages.json
index 6c1b03322ad..71134c7a33b 100644
--- a/apps/browser/src/_locales/nl/messages.json
+++ b/apps/browser/src/_locales/nl/messages.json
@@ -1173,6 +1173,12 @@
     "message": "Oh nee! We konden dit niet opslaan. Probeer de gegevens handmatig in te voeren.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "Na het wijzigen van je wachtwoord moet je inloggen met je nieuwe wachtwoord. Actieve sessies op andere apparaten worden binnen één uur uitgelogd."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Wijzig je hoofdwachtwoord om je account te herstellen."
+  },
   "enableChangedPasswordNotification": {
     "message": "Vraag om bijwerken bestaande login"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Verzoek verzonden"
   },
+  "masterPasswordChanged": {
+    "message": "Hoofdwachtwoord gewijzigd"
+  },
   "exposedMasterPassword": {
     "message": "Gelekt hoofdwachtwoord"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Goedkeuring van beheerder vragen"
   },
+  "unableToCompleteLogin": {
+    "message": "Kan login niet voltooien"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "Je moet inloggen op een vertrouwd apparaat of je beheerder vragen om je een wachtwoord toe te wijzen."
+  },
   "ssoIdentifierRequired": {
     "message": "Organisatie SSO-identificatie vereist."
   },
diff --git a/apps/browser/src/_locales/nn/messages.json b/apps/browser/src/_locales/nn/messages.json
index 45dc3215966..ecc7da63e79 100644
--- a/apps/browser/src/_locales/nn/messages.json
+++ b/apps/browser/src/_locales/nn/messages.json
@@ -1173,6 +1173,12 @@
     "message": "Oh no! We couldn't save this. Try entering the details manually.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
   "enableChangedPasswordNotification": {
     "message": "Ask to update existing login"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "masterPasswordChanged": {
+    "message": "Master password saved"
+  },
   "exposedMasterPassword": {
     "message": "Exposed Master Password"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "ssoIdentifierRequired": {
     "message": "Organization SSO identifier is required."
   },
diff --git a/apps/browser/src/_locales/or/messages.json b/apps/browser/src/_locales/or/messages.json
index 45dc3215966..ecc7da63e79 100644
--- a/apps/browser/src/_locales/or/messages.json
+++ b/apps/browser/src/_locales/or/messages.json
@@ -1173,6 +1173,12 @@
     "message": "Oh no! We couldn't save this. Try entering the details manually.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
   "enableChangedPasswordNotification": {
     "message": "Ask to update existing login"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "masterPasswordChanged": {
+    "message": "Master password saved"
+  },
   "exposedMasterPassword": {
     "message": "Exposed Master Password"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "ssoIdentifierRequired": {
     "message": "Organization SSO identifier is required."
   },
diff --git a/apps/browser/src/_locales/pl/messages.json b/apps/browser/src/_locales/pl/messages.json
index ae82f480964..a6d5e34c03e 100644
--- a/apps/browser/src/_locales/pl/messages.json
+++ b/apps/browser/src/_locales/pl/messages.json
@@ -10,7 +10,7 @@
     "description": "Extension name, MUST be less than 40 characters (Safari restriction)"
   },
   "extDesc": {
-    "message": "W domu, w pracy, lub w ruchu, Bitwarden z łatwością zabezpiecza Twoje hasła, passkeys i poufne informacje",
+    "message": "W domu, w pracy lub w podróży Bitwarden zabezpiecza wszystkie hasła, klucze dostępu i poufne informacje.",
     "description": "Extension description, MUST be less than 112 characters (Safari restriction)"
   },
   "loginOrCreateNewAccount": {
@@ -29,7 +29,7 @@
     "message": "Logowaniem kluczem dostępu"
   },
   "useSingleSignOn": {
-    "message": "Użyj jednokrotnego logowania"
+    "message": "Użyj logowania jednokrotnego"
   },
   "welcomeBack": {
     "message": "Witaj ponownie"
@@ -38,7 +38,7 @@
     "message": "Ustaw silne hasło"
   },
   "finishCreatingYourAccountBySettingAPassword": {
-    "message": "Ukończ tworzenie konta poprzez ustawienie hasła"
+    "message": "Zakończ tworzenie konta poprzez ustawienie hasła"
   },
   "enterpriseSingleSignOn": {
     "message": "Logowanie jednokrotne"
@@ -84,7 +84,7 @@
     "message": "Podpowiedź do hasła głównego (opcjonalnie)"
   },
   "passwordStrengthScore": {
-    "message": "Siła hasła: $SCORE$",
+    "message": "Siła hasła wynosi $SCORE$",
     "placeholders": {
       "score": {
         "content": "$1",
@@ -105,7 +105,7 @@
     }
   },
   "finishJoiningThisOrganizationBySettingAMasterPassword": {
-    "message": "Zakończ dołączanie do tej organizacji przez ustawienie hasła głównego."
+    "message": "Zakończ dołączanie do organizacji poprzez ustawienie hasła głównego."
   },
   "tab": {
     "message": "Karta"
@@ -246,7 +246,7 @@
     "message": "Zaloguj się do sejfu"
   },
   "autoFillInfo": {
-    "message": "Brak danych logowania do użycia przez autouzupełnienie na obecnej karcie przeglądarki."
+    "message": "Brak dostępnych danych logowania dla obecnej karty przeglądarki."
   },
   "addLogin": {
     "message": "Dodaj dane logowania"
@@ -294,7 +294,7 @@
     "message": "Przejść do aplikacji internetowej?"
   },
   "continueToWebAppDesc": {
-    "message": "Odkryj więcej funkcji swojego konta Bitwarden w aplikacji internetowej."
+    "message": "Odkryj więcej funkcji konta Bitwarden w aplikacji internetowej."
   },
   "continueToHelpCenter": {
     "message": "Przejść do centrum pomocy?"
@@ -306,10 +306,10 @@
     "message": "Przejść do sklepu z rozszerzeniami przeglądarki?"
   },
   "continueToBrowserExtensionStoreDesc": {
-    "message": "Pomóż innym dowiedzieć się, czy Bitwarden jest dla nich odpowiedni. Odwiedź swój sklep z rozszerzeniami do przeglądarki i zostaw ocenę."
+    "message": "Pomóż innym sprawdzić, czy Bitwarden jest dla nich odpowiedni. Odwiedź sklep z rozszerzeniami przeglądarki i zostaw ocenę."
   },
   "changeMasterPasswordOnWebConfirmation": {
-    "message": "Możesz zmienić swoje hasło główne w aplikacji internetowej Bitwarden."
+    "message": "Możesz zmienić hasło główne w aplikacji internetowej Bitwarden."
   },
   "fingerprintPhrase": {
     "message": "Unikalny identyfikator konta",
@@ -344,7 +344,7 @@
     "message": "Bitwarden Authenticator"
   },
   "continueToAuthenticatorPageDesc": {
-    "message": "Bitwarden Authenticator pozwala na przechowywanie kluczy uwierzytelniających i generowanie kodów TOTP do dwuetapowego procesu weryfikacji. Dowiedz się więcej na stronie bitwarden.com"
+    "message": "Bitwarden Authenticator umożliwia przechowywanie kluczy uwierzytelniających i generowanie kodów TOTP dla weryfikacji dwustopniowej. Dowiedz się wiecej na bitwarden.com"
   },
   "bitwardenSecretsManager": {
     "message": "Menedżer sekretów Bitwarden"
@@ -362,7 +362,7 @@
     "message": "Darmowy plan rodzinny"
   },
   "freeBitwardenFamiliesPageDesc": {
-    "message": "Masz prawo do bezpłatengo planu rodzinnego Bitwarden. Zrealizuj tę ofertę już dziś w aplikacji internetowej."
+    "message": "Kwalifikujesz się do bezpłatnego planu rodzinnego. Skorzystaj z oferty już dziś w aplikacji internetowej."
   },
   "version": {
     "message": "Wersja"
@@ -398,13 +398,13 @@
     "message": "Nazwa folderu"
   },
   "folderHintText": {
-    "message": "Zagnieżdżaj foldery dodając nazwę folderu nadrzędnego, a następnie “/”. Przykład: Społeczne/Fora"
+    "message": "Utwórz podfolder, dodając nazwę folderu nadrzędnego przed znakiem „/”. Przykład: Social/Forums"
   },
   "noFoldersAdded": {
     "message": "Nie dodano folderów"
   },
   "createFoldersToOrganize": {
-    "message": "Twórz foldery, aby zorganizować elementy swojego sejfu"
+    "message": "Twórz foldery, aby zorganizować elementy sejfu"
   },
   "deleteFolderPermanently": {
     "message": "Czy na pewno chcesz usunąć trwale folder?"
@@ -425,7 +425,7 @@
     "message": "Centrum pomocy Bitwarden"
   },
   "communityForums": {
-    "message": "Przeglądaj fora społeczności Bitwarden"
+    "message": "Odwiedź forum społeczności Bitwarden"
   },
   "contactSupport": {
     "message": "Skontaktuj się z pomocą techniczną Bitwarden"
@@ -447,7 +447,7 @@
     "description": "Short for 'credential generator'."
   },
   "passGenInfo": {
-    "message": "Automatycznie wygeneruj silne, unikatowe hasła dla swoich loginów."
+    "message": "Automatycznie generuj silne i unikalne hasła."
   },
   "bitWebVaultApp": {
     "message": "Aplikacja internetowa Bitwarden"
@@ -635,10 +635,10 @@
     "message": "Opcje odblokowania"
   },
   "unlockMethodNeededToChangeTimeoutActionDesc": {
-    "message": "Ustaw metodę odblokowania, aby zmienić czas blokowania sejfu."
+    "message": "Ustaw metodę odblokowania, aby zmienić sposób blokowania sejfu."
   },
   "unlockMethodNeeded": {
-    "message": "Ustaw metodę odblokowania w Ustawieniach"
+    "message": "Ustaw metodę odblokowania w ustawieniach"
   },
   "sessionTimeoutHeader": {
     "message": "Blokada aplikacji"
@@ -699,7 +699,7 @@
     "message": "Blokowanie sejfu"
   },
   "vaultTimeout1": {
-    "message": "Limit czasu"
+    "message": "Blokada aplikacji"
   },
   "lockNow": {
     "message": "Zablokuj"
@@ -759,7 +759,7 @@
     "message": "Hasło główne"
   },
   "masterPassImportant": {
-    "message": "Twoje hasło główne nie może zostać odzyskane, jeśli je zapomnisz!"
+    "message": "Zapomniane hasło główne nie może zostać odzyskane!"
   },
   "masterPassHintLabel": {
     "message": "Podpowiedź do hasła głównego"
@@ -842,13 +842,13 @@
     "message": "Zeskanuj kod QR z obecnej strony"
   },
   "totpHelperTitle": {
-    "message": "Spraw, aby dwuetapowa weryfikacja była bezproblemowa"
+    "message": "Bezproblemowa weryfikacja dwustopniowa"
   },
   "totpHelper": {
-    "message": "Bitwarden może przechowywać i wypełniać kody weryfikacyjne. Skopiuj i wklej klucz do tego pola."
+    "message": "Bitwarden może przechowywać i uzupełniać kody weryfikacyjne. Skopiuj i wklej klucz do tego pola."
   },
   "totpHelperWithCapture": {
-    "message": "Bitwarden może przechowywać i wypełniać kody weryfikacyjne. Wybierz ikonę aparatu, aby zrobić zrzut ekranu z kodem QR lub skopiuj i wklej klucz do tego pola."
+    "message": "Bitwarden może przechowywać i uzupełniać kody weryfikacyjne. Wybierz ikonę aparatu, aby zrobić zrzut ekranu z kodem QR lub skopiuj i wklej klucz do tego pola."
   },
   "learnMoreAboutAuthenticators": {
     "message": "Dowiedz się więcej o uwierzytelniaczach"
@@ -872,19 +872,19 @@
     "message": "Zaloguj się do Bitwarden"
   },
   "enterTheCodeSentToYourEmail": {
-    "message": "Wpisz kod wysłany na Twój adres e-mail"
+    "message": "Wpisz kod został wysłany na adres e-mail"
   },
   "enterTheCodeFromYourAuthenticatorApp": {
     "message": "Wpisz kod z aplikacji uwierzytelniającej"
   },
   "pressYourYubiKeyToAuthenticate": {
-    "message": "Naciśnij YubiKey aby uwierzytelnić"
+    "message": "Naciśnij klucz YubiKey, aby uwierzytelnić"
   },
   "duoTwoFactorRequiredPageSubtitle": {
-    "message": "Logowanie dwustopniowe Duo jest wymagane dla twojego konta. Wykonaj poniższe kroki, by dokończyć logowanie"
+    "message": "Logowanie dwustopniowe Duo jest wymagane. Wykonaj poniższe kroki, aby zakończyć logowanie."
   },
   "followTheStepsBelowToFinishLoggingIn": {
-    "message": "Wykonaj poniższe kroki, by dokończyć logowanie"
+    "message": "Wykonaj poniższe kroki, by zakończyć logowanie."
   },
   "followTheStepsBelowToFinishLoggingInWithSecurityKey": {
     "message": "Wykonaj poniższe kroki, aby zakończyć logowanie za pomocą klucza bezpieczeństwa."
@@ -923,7 +923,7 @@
     "message": "Folder został dodany"
   },
   "twoStepLoginConfirmation": {
-    "message": "Logowanie dwustopniowe sprawia, że konto jest bardziej bezpieczne poprzez wymuszenie potwierdzenia logowania z innego urządzenia, takiego jak z klucza bezpieczeństwa, aplikacji uwierzytelniającej, wiadomości SMS, telefonu lub adresu e-mail. Logowanie dwustopniowe możesz włączyć w sejfie internetowym bitwarden.com. Czy chcesz przejść do tej strony?"
+    "message": "Logowanie dwustopniowe zwiększa bezpieczeństwo konta, wymagając weryfikacji logowania za pomocą innego urządzenia, takiego jak klucz bezpieczeństwa, aplikacja uwierzytelniająca, wiadomość SMS, połączenie telefoniczne lub wiadomość e-mail. Logowanie dwustopniowe możesz skonfigurować w sejfie internetowym bitwarden.com. Czy chcesz przejść do strony?"
   },
   "twoStepLoginConfirmationContent": {
     "message": "Spraw, aby Twoje konto było bezpieczniejsze poprzez skonfigurowanie dwustopniowego logowania w aplikacji internetowej Bitwarden."
@@ -944,7 +944,7 @@
     "message": "Samouczek"
   },
   "gettingStartedTutorialVideo": {
-    "message": "Obejrzyj samouczek, aby dowiedzieć się, jak najlepiej wykorzystać rozszerzenie przeglądarki."
+    "message": "Zobacz samouczek, aby dowiedzieć się, jak najlepiej wykorzystać rozszerzenie przeglądarki."
   },
   "syncingComplete": {
     "message": "Synchronizacja została zakończona"
@@ -1043,10 +1043,10 @@
     "message": "Pokaż elementy tożsamości na stronie głównej, aby ułatwić autouzupełnianie."
   },
   "clickToAutofillOnVault": {
-    "message": "Kliknij na dane logowania, aby autouzupełnić w widoku Sejfu"
+    "message": "Kliknij na elementy, aby je uzupełnić"
   },
   "clickToAutofill": {
-    "message": "Kliknij elementy w sugestii autouzupełniania, aby wypełnić"
+    "message": "Kliknij na elementy w sugestiach, aby je uzupełnić"
   },
   "clearClipboard": {
     "message": "Wyczyść schowek",
@@ -1057,7 +1057,7 @@
     "description": "Clipboard is the operating system thing where you copy/paste data to on your device."
   },
   "notificationAddDesc": {
-    "message": "Czy Bitwarden powinien zapisać to hasło?"
+    "message": "Zapisać hasło?"
   },
   "notificationAddSave": {
     "message": "Zapisz"
@@ -1170,9 +1170,15 @@
     "description": "Error message shown when the system fails to save login details."
   },
   "saveFailureDetails": {
-    "message": "O nie! Nie mogliśmy zapisać tego. Spróbuj wprowadzić szczegóły ręcznie.",
+    "message": "O nie! Nie mogliśmy tego zapisać. Wpisz szczegóły ręcznie.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Zmień hasło główne, aby zakończyć odzyskiwanie konta."
+  },
   "enableChangedPasswordNotification": {
     "message": "Proponuj aktualizuję obecnych danych logowania"
   },
@@ -1189,7 +1195,7 @@
     "message": "Pytaj o zapisywanie nowych kluczy dostępu i używanie obecnych. Dotyczy wszystkich zalogowanych kont."
   },
   "notificationChangeDesc": {
-    "message": "Czy chcesz zaktualizować to hasło w Bitwarden?"
+    "message": "Czy chcesz zaktualizować hasło w Bitwarden?"
   },
   "notificationChangeSave": {
     "message": "Zaktualizuj"
@@ -1226,7 +1232,7 @@
     "message": "Zmień motyw kolorystyczny aplikacji."
   },
   "themeDescAlt": {
-    "message": "Zmień kolor motywu aplikacji. Dotyczy wszystkich zalogowanych kont."
+    "message": "Zmień motyw kolorystyczny aplikacji. Dotyczy wszystkich zalogowanych kont."
   },
   "dark": {
     "message": "Ciemny",
@@ -1255,10 +1261,10 @@
     "message": "Hasło będzie używane do eksportowania i importowania pliku"
   },
   "accountRestrictedOptionDescription": {
-    "message": "Użyj klucza szyfrowania konta, pochodzącego z nazwy użytkownika konta i hasła głównego, aby zaszyfrować eksport i ograniczyć import tylko do bieżącego konta Bitwarden."
+    "message": "Użyj klucza szyfrowania konta, pochodzącego z nazwy użytkownika konta i hasła głównego, aby zaszyfrować eksport i ograniczyć import tylko do obecnego konta Bitwarden."
   },
   "passwordProtectedOptionDescription": {
-    "message": "Ustaw hasło dla pliku, aby zaszyfrować eksport i zaimportować je na dowolne konto Bitwarden przy użyciu hasła do odszyfrowania."
+    "message": "Ustaw hasło pliku, aby zaszyfrować eksport i zaimportować je na dowolne konto Bitwarden przy użyciu hasła do odszyfrowania."
   },
   "exportTypeHeading": {
     "message": "Rodzaj eksportu"
@@ -1336,7 +1342,7 @@
     "message": "Usuń załącznik"
   },
   "deleteAttachmentConfirmation": {
-    "message": "Czy na pewno chcesz usunąć ten załącznik?"
+    "message": "Czy na pewno chcesz usunąć załącznik?"
   },
   "deletedAttachment": {
     "message": "Załącznik został usunięty"
@@ -1354,7 +1360,7 @@
     "message": "Plik"
   },
   "fileToShare": {
-    "message": "Plik do udostępnienia"
+    "message": "Plik wysyłki"
   },
   "selectFile": {
     "message": "Wybierz plik"
@@ -1369,22 +1375,22 @@
     "message": "Starsze szyfrowanie nie jest już obsługiwane. Skontaktuj się z pomocą techniczną, aby odzyskać swoje konto."
   },
   "premiumMembership": {
-    "message": "Konto Premium"
+    "message": "Konto premium"
   },
   "premiumManage": {
-    "message": "Zarządzaj kontem Premium"
+    "message": "Zarządzaj kontem premium"
   },
   "premiumManageAlert": {
-    "message": "Kontem Premium możesz zarządzać na stronie sejfu bitwarden.com. Czy chcesz otworzyć tę stronę?"
+    "message": "Zarządzaj kontem premium na stronie internetowej bitwarden.com. Czy chcesz otworzyć stronę?"
   },
   "premiumRefresh": {
-    "message": "Odśwież konto Premium"
+    "message": "Odśwież konto premium"
   },
   "premiumNotCurrentMember": {
-    "message": "Nie posiadasz obecnie konta Premium."
+    "message": "Nie masz konta premium."
   },
   "premiumSignUpAndGet": {
-    "message": "Zarejestruj konto Premium, aby otrzymać:"
+    "message": "Ulepsz konto do wersji premium, aby otrzymać:"
   },
   "ppremiumSignUpStorage": {
     "message": "1 GB miejsca na zaszyfrowane załączniki."
@@ -1393,13 +1399,13 @@
     "message": "Dostęp awaryjny."
   },
   "premiumSignUpTwoStepOptions": {
-    "message": "Własnościowe opcje logowania dwuetapowego, takie jak YubiKey i Duo."
+    "message": "Specjalne opcje logowania dwustopniowego, takie jak YubiKey i Duo."
   },
   "ppremiumSignUpReports": {
     "message": "Raporty bezpieczeństwa haseł, stanu konta i raporty wycieków danych, aby Twoje dane były bezpieczne."
   },
   "ppremiumSignUpTotp": {
-    "message": "Generator kodów weryfikacyjnych TOTP (2FA) dla danych logowania w Twoim sejfie."
+    "message": "Generator kodów weryfikacyjnych TOTP dla danych logowania w sejfie."
   },
   "ppremiumSignUpSupport": {
     "message": "Priorytetowe wsparcie klienta."
@@ -1408,19 +1414,19 @@
     "message": "Wszystkie przyszłe funkcje premium. Więcej już wkrótce!"
   },
   "premiumPurchase": {
-    "message": "Kup konto Premium"
+    "message": "Kup konto premium"
   },
   "premiumPurchaseAlertV2": {
-    "message": "Możesz kupić Premium w ustawieniach konta w aplikacji internetowej Bitwarden."
+    "message": "Możesz kupić konto premium w aplikacji internetowej Bitwarden."
   },
   "premiumCurrentMember": {
-    "message": "Posiadasz konto Premium!"
+    "message": "Masz konto premium!"
   },
   "premiumCurrentMemberThanks": {
     "message": "Dziękujemy za wspieranie Bitwarden."
   },
   "premiumFeatures": {
-    "message": "Uaktualnij do wersji Premium i otrzymaj:"
+    "message": "Ulepsz konto do wersji premium i otrzymaj:"
   },
   "premiumPrice": {
     "message": "Tylko $PRICE$ / rok!",
@@ -1447,7 +1453,7 @@
     "message": "Kopiuj kod TOTP automatycznie"
   },
   "disableAutoTotpCopyDesc": {
-    "message": "Jeśli dane logowania posiadają dołączony klucz uwierzytelniający TOTP, kod weryfikacyjny jest automatycznie kopiowany do schowka przy każdym autouzupełnianiu danych logowania."
+    "message": "Automatycznie kopiuje kod TOTP do schowka podczas autouzupełniania."
   },
   "enableAutoBiometricsPrompt": {
     "message": "Poproś o dane biometryczne przy uruchomieniu"
@@ -1456,7 +1462,7 @@
     "message": "Konto premium jest wymagane"
   },
   "premiumRequiredDesc": {
-    "message": "Konto Premium jest wymagane, aby skorzystać z tej funkcji."
+    "message": "Konto premium jest wymagane, aby skorzystać z tej funkcji."
   },
   "authenticationTimeout": {
     "message": "Limit czasu uwierzytelniania"
@@ -1465,7 +1471,7 @@
     "message": "Upłynął limit czasu uwierzytelniania. Uruchom ponownie proces logowania."
   },
   "verificationCodeEmailSent": {
-    "message": "Kod weryfikacyjny został wysłany na adres $EMAIL$.",
+    "message": "Wiadomość weryfikacyjna została wysłana na adres $EMAIL$.",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -1523,21 +1529,21 @@
     "message": "Aplikacja uwierzytelniająca"
   },
   "authenticatorAppDescV2": {
-    "message": "Wprowadź kod wygenerowany przez aplikację uwierzytelniającą, jak Bitwarden Authenticator.",
+    "message": "Wpisz kod wygenerowany przez aplikację uwierzytelniającą, taką jak Bitwarden Authenticator.",
     "description": "'Bitwarden Authenticator' is a product name and should not be translated."
   },
   "yubiKeyTitleV2": {
     "message": "Klucz bezpieczeństwa Yubico OTP"
   },
   "yubiKeyDesc": {
-    "message": "Użyj YubiKey jako metody dostępu do konta. Działa z YubiKey 4, 4 Nano, 4C i urządzeniami NEO."
+    "message": "Użyj klucza YubiKey, aby uzyskać dostęp do konta. Działa z urządzeniami YubiKey 4, 4 Nano, 4C i NEO."
   },
   "duoDescV2": {
-    "message": "Wprowadź kod wygenerowany przez Duo Security.",
+    "message": "Wpisz kod wygenerowany przez Duo Security.",
     "description": "'Duo Security' and 'Duo Mobile' are product names and should not be translated."
   },
   "duoOrganizationDesc": {
-    "message": "Weryfikacja dostępu do Twojej organizacji z użyciem Duo Security poprzez aplikację Duo Mobile, SMS, połączenie telefoniczne lub klucz bezpieczeństwa U2F.",
+    "message": "Weryfikacja Duo Security za pomocą aplikacji Duo Mobile, wiadomości SMS, połączenia telefonicznego lub klucza bezpieczeństwa U2F.",
     "description": "'Duo Security' and 'Duo Mobile' are product names and should not be translated."
   },
   "webAuthnTitle": {
@@ -1556,7 +1562,7 @@
     "message": "Samodzielnie hostowane środowisko"
   },
   "selfHostedBaseUrlHint": {
-    "message": "Określ bazowy adres URL swojej instalacji Bitwarden. Przykład: https://bitwarden.company.com"
+    "message": "Określ podstawowy adres URL instalacji Bitwarden. Przykład: https://bitwarden.mojafirma.pl"
   },
   "selfHostedCustomEnvHeader": {
     "message": "Dla zaawansowanych konfiguracji możesz określić podstawowy adres URL niezależnie dla każdej usługi."
@@ -1593,7 +1599,7 @@
     "message": "Adresy URL środowiska zostały zapisane"
   },
   "showAutoFillMenuOnFormFields": {
-    "message": "Pokaż menu autouzupełniania na polach formularza",
+    "message": "Pokaż menu autouzupełniania w polach formularza",
     "description": "Represents the message for allowing the user to enable the autofill overlay"
   },
   "autofillSuggestionsSectionTitle": {
@@ -1696,7 +1702,7 @@
     "message": "Autouzupełnianie korzysta z ostatnio używanych danych logowania na tej stronie"
   },
   "commandAutofillCardDesc": {
-    "message": "Autouzupełnianie korzysta z ostatnio używanych danych karty na tej stronie"
+    "message": "Autouzupełnianie korzysta z ostatnio używanej karty na tej stronie"
   },
   "commandAutofillIdentityDesc": {
     "message": "Autouzupełnianie korzysta z ostatnio używanej tożsamości na tej stronie"
@@ -1758,7 +1764,7 @@
     "message": "Pokaż rozpoznawalny obraz obok danych logowania."
   },
   "faviconDescAlt": {
-    "message": "Pokaż rozpoznawalny obraz obok każdego logowania. Dotyczy wszystkich zalogowanych kont."
+    "message": "Pokaż rozpoznawalny obraz obok danych logowania. Dotyczy wszystkich zalogowanych kont."
   },
   "enableBadgeCounter": {
     "message": "Pokaż licznik na ikonie"
@@ -1926,7 +1932,7 @@
     "message": "Notatka"
   },
   "newItemHeader": {
-    "message": "Nowy $TYPE$",
+    "message": "$TYPE$",
     "placeholders": {
       "type": {
         "content": "$1",
@@ -1935,7 +1941,7 @@
     }
   },
   "editItemHeader": {
-    "message": "Edytuj $TYPE$",
+    "message": "$TYPE$",
     "placeholders": {
       "type": {
         "content": "$1",
@@ -1983,7 +1989,7 @@
     "message": "Ulubione"
   },
   "popOutNewWindow": {
-    "message": "Wyświetl w nowym oknie"
+    "message": "Otwórz w nowym oknie"
   },
   "refresh": {
     "message": "Odśwież"
@@ -2108,7 +2114,7 @@
     "description": "ex. Date this password was updated"
   },
   "neverLockWarning": {
-    "message": "Czy na pewno chcesz użyć opcji \"Nigdy\"? Ustawienie opcji blokady na \"Nigdy\" przechowuje klucz szyfrowania Twojego sejfu na urządzeniu. Jeśli używasz tej opcji upewnij się, że odpowiednio zabezpieczasz swoje urządzenie."
+    "message": "Czy na pewno chcesz użyć opcji „Nigdy”? Ustawienie blokady na „Nigdy” spowoduje przechowywanie klucza szyfrowania sejfu na urządzeniu. Upewnij się, że urządzenie jest odpowiednio chronione."
   },
   "noOrganizationsList": {
     "message": "Nie należysz do żadnej organizacji. Organizacje pozwalają na bezpieczne udostępnianie elementów innym użytkownikom."
@@ -2231,7 +2237,7 @@
     "message": "Sposób blokowania sejfu"
   },
   "vaultTimeoutAction1": {
-    "message": "Akcja po przekroczeniu limitu czasu"
+    "message": "Sposób blokady"
   },
   "lock": {
     "message": "Zablokuj",
@@ -2278,13 +2284,13 @@
     "message": "URI został zapisany i automatycznie uzupełniony"
   },
   "autoFillSuccess": {
-    "message": "Element został automatycznie uzupełniony "
+    "message": "Element został automatycznie uzupełniony"
   },
   "insecurePageWarning": {
-    "message": "Ostrzeżenie: Jest to niezabezpieczona strona HTTP i wszelkie przekazane informacje mogą być potencjalnie widoczne i zmienione przez innych. Ten login został pierwotnie zapisany na stronie bezpiecznej (HTTPS)."
+    "message": "Ostrzeżenie: Jest to niezabezpieczona strona HTTP, to wszelkie przesłane informacje mogą być potencjalnie widoczne i zmienione przez inne osoby. Logowanie zostało pierwotnie zapisane na bezpiecznej stronie (HTTPS)."
   },
   "insecurePageWarningFillPrompt": {
-    "message": "Nadal chcesz uzupełnić ten login?"
+    "message": "Czy chcesz uzupełnić dane logowania?"
   },
   "autofillIframeWarning": {
     "message": "Formularz jest hostowany przez inną domenę niż zapisany adres URI dla tego loginu. Wybierz OK, aby i tak automatycznie wypełnić lub anuluj, aby zatrzymać."
@@ -2353,7 +2359,7 @@
     "message": "Nowe hasło główne nie spełnia wymaganych zasad."
   },
   "receiveMarketingEmailsV2": {
-    "message": "Uzyskaj poradę, ogłoszenia i możliwości badawcze od Bitwarden w swojej skrzynce odbiorczej."
+    "message": "Otrzymuj porady, ogłoszenia i możliwości badawcze od Bitwarden na swoją skrzynkę odbiorczą."
   },
   "unsubscribe": {
     "message": "Anuluj subskrypcję"
@@ -2362,7 +2368,7 @@
     "message": "w każdej chwili."
   },
   "byContinuingYouAgreeToThe": {
-    "message": "Kontynuując, zgadzasz się na"
+    "message": "Kontynuując, akceptujesz"
   },
   "and": {
     "message": "i"
@@ -2380,7 +2386,7 @@
     "message": "Polityka prywatności"
   },
   "yourNewPasswordCannotBeTheSameAsYourCurrentPassword": {
-    "message": "Twoje nowe hasło nie może być takie samo jak Twoje aktualne hasło."
+    "message": "Nowe hasło nie może być takie samo jak obecne."
   },
   "hintEqualsPassword": {
     "message": "Podpowiedź do hasła nie może być taka sama jak hasło."
@@ -2389,16 +2395,16 @@
     "message": "Ok"
   },
   "errorRefreshingAccessToken": {
-    "message": "Błąd podczas odświeżania tokenu"
+    "message": "Wystąpił błąd podczas odświeżania tokena"
   },
   "errorRefreshingAccessTokenDesc": {
-    "message": "Nie znaleziono tokenu odświeżającego ani kluczy API. Spróbuj wylogować się i zalogować ponownie."
+    "message": "Nie znaleziono tokena odświeżania ani kluczy API. Zaloguj się ponownie."
   },
   "desktopSyncVerificationTitle": {
     "message": "Weryfikacja synchronizacji z aplikacją desktopową"
   },
   "desktopIntegrationVerificationText": {
-    "message": "Zweryfikuj aplikację desktopową z wyświetlonym identyfikatorem: "
+    "message": "Zweryfikuj aplikację desktopową z odciskiem klucza: "
   },
   "desktopIntegrationDisabledTitle": {
     "message": "Połączenie z przeglądarką jest wyłączone"
@@ -2479,7 +2485,7 @@
     "message": "Ta operacja nie może zostać wykonana na pasku bocznym. Spróbuj ponownie w nowym oknie."
   },
   "personalOwnershipSubmitError": {
-    "message": "Ze względu na zasadę przedsiębiorstwa, nie możesz zapisywać elementów w osobistym sejfie. Zmień właściciela elementu na organizację i wybierz jedną z dostępnych kolekcji."
+    "message": "Ze względu na zasadę organizacji, nie możesz zapisywać elementów w osobistym sejfie. Zmień właściciela elementu na organizację i wybierz jedną z dostępnych kolekcji."
   },
   "personalOwnershipPolicyInEffect": {
     "message": "Zasada organizacji ma wpływ na opcję własności elementów."
@@ -2507,10 +2513,10 @@
     "message": "Wykluczone domeny"
   },
   "excludedDomainsDesc": {
-    "message": "Aplikacja Bitwarden nie będzie proponować zapisywania danych logowania dla tych domen. Musisz odświeżyć stronę, aby zastosowywać zmiany."
+    "message": "Bitwarden nie będzie proponował zapisywania danych logowania dla tych domen. Odśwież stronę, aby zastosowywać zmiany."
   },
   "excludedDomainsDescAlt": {
-    "message": "Aplikacja Bitwarden nie będzie proponować zapisywania danych logowania dla tych domen dla wszystkich zalogowanych kont. Musisz odświeżyć stronę, aby zastosowywać zmiany."
+    "message": "Bitwarden nie będzie proponował zapisywania danych logowania dla tych domen dla wszystkich zalogowanych kont. Odśwież stronę, aby zastosowywać zmiany."
   },
   "blockedDomainsDesc": {
     "message": "Autouzupełnianie będzie zablokowane dla tych stron internetowych. Zmiany zaczną obowiązywać po odświeżeniu strony."
@@ -2630,7 +2636,7 @@
     "description": "Description of the generate password slide on the at-risk password page carousel"
   },
   "generatePasswordSlideImgAltPeriod": {
-    "message": "Ilustracja menu autouzupełniania Bitwardena pokazująca wygenerowane hasło."
+    "message": "Ilustracja menu autouzupełniania Bitwarden pokazująca wygenerowane hasło."
   },
   "updateInBitwarden": {
     "message": "Zaktualizuj w Bitwarden"
@@ -2673,13 +2679,13 @@
     "message": "Blokowane domeny zostały zapisane"
   },
   "excludedDomainsSavedSuccess": {
-    "message": "Zmiany w wykluczonych domenach zapisane"
+    "message": "Wykluczone domeny zostały zapisane"
   },
   "limitSendViews": {
-    "message": "Limit wyświetleń"
+    "message": "Maksymalna liczba wyświetleń"
   },
   "limitSendViewsHint": {
-    "message": "Nikt nie może wyświetlić Send po osiągnieciu limitu.",
+    "message": "Po osiągnięciu limitu wysyłka będzie niedostępna.",
     "description": "Displayed under the limit views field on Send"
   },
   "limitSendViewsCount": {
@@ -2776,7 +2782,7 @@
     "message": "Data usunięcia"
   },
   "deletionDateDescV2": {
-    "message": "Send zostanie trwale usunięte w tej dacie.",
+    "message": "W tym dniu wysyłka zostanie trwale usunięta.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "expirationDate": {
@@ -2798,7 +2804,7 @@
     "message": "Niestandardowa"
   },
   "sendPasswordDescV3": {
-    "message": "Zabezpiecz tę wiadomość hasłem, które będzie wymagane, aby uzyskać do niej dostęp.",
+    "message": "Zabezpiecz wysyłkę opcjonalnym hasłem.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "createSend": {
@@ -2813,7 +2819,7 @@
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendDisabledWarning": {
-    "message": "Ze względu na zasadę przedsiębiorstwa, tylko Ty możesz usunąć obecną wysyłkę.",
+    "message": "Ze względu na zasadę organizacji, tylko Ty możesz usunąć obecną wysyłkę.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "createdSend": {
@@ -2825,11 +2831,11 @@
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendExpiresInHoursSingle": {
-    "message": "Wiadomość będzie dostępna dla każdego z dostępem do tego linku przez następną godzinę.",
+    "message": "Wysyłka będzie dostępna przez 1 godz.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendExpiresInHours": {
-    "message": "Wiadomość będzie dostępna dla każdego z dostępem do tego linku przez następne $HOURS$ godzin.",
+    "message": "Wysyłka będzie dostępna przez $HOURS$ godz.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated.",
     "placeholders": {
       "hours": {
@@ -2839,11 +2845,11 @@
     }
   },
   "sendExpiresInDaysSingle": {
-    "message": "Wiadomość będzie dostępna dla każdego z dostępem do tego linku przez 1 dzień.",
+    "message": "Wysyłka będzie dostępna przez 1 dzień.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendExpiresInDays": {
-    "message": "Wiadomość będzie dostępna dla każdego z dostępem do tego linku przez następne $DAYS$ dni.",
+    "message": "Wysyłka będzie dostępna przez $DAYS$ dni.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated.",
     "placeholders": {
       "days": {
@@ -2861,21 +2867,21 @@
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendFilePopoutDialogText": {
-    "message": "Otworzyć rozszerzenie w nowym oknie?",
+    "message": "Otworzyć rozszerzenie w oknie?",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendFilePopoutDialogDesc": {
-    "message": "Aby utworzyć plik Send, musisz wysunąć rozszerzenie do nowego okna.",
+    "message": "Otwórz okno rozszerzenia, aby utworzyć wysyłkę pliku.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendLinuxChromiumFileWarning": {
-    "message": "Aby wybrać plik, otwórz rozszerzenie na pasku bocznym (jeśli to możliwe) lub w nowym oknie."
+    "message": "Aby wybrać plik, otwórz rozszerzenie na pasku bocznym lub w oknie."
   },
   "sendFirefoxFileWarning": {
-    "message": "Aby wybrać plik za pomocą przeglądarki Firefox, otwórz rozszerzenie w nowym oknie."
+    "message": "Aby wybrać plik, otwórz rozszerzenie na pasku bocznym lub w oknie."
   },
   "sendSafariFileWarning": {
-    "message": "Aby wybrać plik za pomocą przeglądarki Safari, otwórz rozszerzenie w nowym oknie."
+    "message": "Aby wybrać plik, otwórz rozszerzenie w oknie."
   },
   "popOut": {
     "message": "Odepnij"
@@ -2917,10 +2923,10 @@
     "message": "Adres e-mail został zweryfikowany"
   },
   "emailVerificationRequiredDesc": {
-    "message": "Musisz zweryfikować adres e-mail, aby korzystać z tej funkcji. Adres możesz zweryfikować w sejfie internetowym."
+    "message": "Musisz zweryfikować adres e-mail, aby skorzystać z tej funkcji. Adres możesz zweryfikować w sejfie internetowym."
   },
   "masterPasswordSuccessfullySet": {
-    "message": "Hasło główne zostało pomyślnie ustawione"
+    "message": "Hasło główne zostało ustawione"
   },
   "updatedMasterPassword": {
     "message": "Hasło główne zostało zaktualizowane"
@@ -2932,7 +2938,7 @@
     "message": "Hasło główne zostało zmienione przez administratora Twojej organizacji. Aby uzyskać dostęp do sejfu, zaktualizuj hasło główne. Kontynuowanie spowoduje wylogowanie z obecnej sesji i konieczność ponownego zalogowania się. Aktywne sesje na innych urządzeniach mogą pozostać aktywne przez maksymalnie godzinę."
   },
   "updateWeakMasterPasswordWarning": {
-    "message": "Twoje hasło główne nie spełnia jednej lub kilku zasad organizacji. Aby uzyskać dostęp do sejfu, musisz teraz zaktualizować swoje hasło główne. Kontynuacja wyloguje Cię z bieżącej sesji, wymagając zalogowania się ponownie. Aktywne sesje na innych urządzeniach mogą pozostać aktywne przez maksymalnie jedną godzinę."
+    "message": "Hasło główne nie spełnia co najmniej jednej zasady organizacji. Aby uzyskać dostęp do sejfu, zaktualizuj hasło główne. Kontynuowanie spowoduje wylogowanie z obecnej sesji i konieczność ponownego zalogowania się. Aktywne sesje na innych urządzeniach mogą pozostać aktywne przez maksymalnie godzinę."
   },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Twoja organizacja wyłączyła szyfrowanie zaufanego urządzenia. Ustaw hasło główne, aby uzyskać dostęp do sejfu."
@@ -2968,7 +2974,7 @@
     }
   },
   "verificationRequired": {
-    "message": "Wymagana weryfikacja",
+    "message": "Weryfikacja jest wymagana",
     "description": "Default title for the user verification dialog."
   },
   "hours": {
@@ -3055,13 +3061,13 @@
     "message": "Co najmniej jedna zasada organizacji uniemożliwia wyeksportowanie osobistego sejfu."
   },
   "copyCustomFieldNameInvalidElement": {
-    "message": "Nie można zidentyfikować poprawnego elementu formularza. Spróbuj sprawdzić HTML."
+    "message": "Nie można zidentyfikować prawidłowego elementu formularza. Sprawdź kod HTML."
   },
   "copyCustomFieldNameNotUnique": {
     "message": "Nie znaleziono unikatowego identyfikatora."
   },
   "removeMasterPasswordForOrganizationUserKeyConnector": {
-    "message": "Hasło główne nie jest już wymagane dla członków następującej organizacji. Proszę potwierdzić poniższą domenę u administratora organizacji."
+    "message": "Hasło główne nie jest już wymagane dla członków następującej organizacji. Potwierdź poniższą domenę z administratorem organizacji."
   },
   "organizationName": {
     "message": "Nazwa organizacji"
@@ -3094,7 +3100,7 @@
     "message": "Eksportowanie osobistego sejfu"
   },
   "exportingIndividualVaultDescription": {
-    "message": "Z sejfu zostaną wyeksportowane tylko elementy powiązane z $EMAIL$. Elementy z sejfu organizacji nie będą uwzględnione. Tylko informacje o elemencie zostaną wyeksportowane i nie będą zawierać powiązanych załączników.",
+    "message": "Wyeksportowane zostaną tylko osobiste elementy konta $EMAIL$. Elementy organizacji nie zostaną uwzględnione. Wyeksportowane zostaną tylko informacje o elementach sejfu i nie będą one zawierać powiązanych załączników.",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3272,7 +3278,7 @@
     }
   },
   "forwaderInvalidOperation": {
-    "message": "$SERVICENAME$ odrzucił Twoje żądanie. Skontaktuj się z dostawcą usług w celu uzyskania pomocy.",
+    "message": "$SERVICENAME$ odrzucił żądanie. Skontaktuj się z dostawcą usługi w celu uzyskania pomocy.",
     "description": "Displayed when the user is forbidden from using the API by the forwarding service.",
     "placeholders": {
       "servicename": {
@@ -3282,7 +3288,7 @@
     }
   },
   "forwaderInvalidOperationWithMessage": {
-    "message": "$SERVICENAME$ odrzucił Twoje żądanie: $ERRORMESSAGE$",
+    "message": "$SERVICENAME$ odrzucił żądanie: $ERRORMESSAGE$",
     "description": "Displayed when the user is forbidden from using the API by the forwarding service with an error message.",
     "placeholders": {
       "servicename": {
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Żądanie wysłane"
   },
+  "masterPasswordChanged": {
+    "message": "Hasło główne zostało zapisane"
+  },
   "exposedMasterPassword": {
     "message": "Hasło główne zostało ujawnione"
   },
@@ -3464,7 +3473,7 @@
     "message": "Hasło główne jest słabe i ujawnione"
   },
   "weakAndBreachedMasterPasswordDesc": {
-    "message": "Słabe hasło ujawnione w wyniku naruszenia ochrony danych. Użyj silnego i unikalnego hasła, aby chronić swoje konto. Czy na pewno chcesz użyć tego hasła?"
+    "message": "Hasło jest słabe i zostało ujawnione w wycieku danych. Użyj mocnego i unikalnego hasła, aby chronić konto. Czy na pewno chcesz użyć tego hasła?"
   },
   "checkForBreaches": {
     "message": "Sprawdź znane naruszenia ochrony danych tego hasła"
@@ -3473,7 +3482,7 @@
     "message": "Ważne:"
   },
   "masterPasswordHint": {
-    "message": "Twoje hasło główne nie może zostać odzyskane, jeśli je zapomnisz!"
+    "message": "Zapomniane hasło główne nie może zostać odzyskane!"
   },
   "characterMinimum": {
     "message": "Minimum znaków: $LENGTH$",
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Poproś administratora o zatwierdzenie"
   },
+  "unableToCompleteLogin": {
+    "message": "Nie można ukończyć logowania"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "Musisz zalogować się na zaufanym urządzeniu lub poprosić administratora o przypisanie hasła."
+  },
   "ssoIdentifierRequired": {
     "message": "Identyfikator organizacji jest wymagany."
   },
@@ -3584,13 +3599,13 @@
     "message": "i kontynuuj tworzenie konta."
   },
   "noEmail": {
-    "message": "Brak wiadomości e-mail?"
+    "message": "Brak wiadomości?"
   },
   "goBack": {
     "message": "Wróć"
   },
   "toEditYourEmailAddress": {
-    "message": "aby edytować swój adres e-mail."
+    "message": ", aby edytować adres e-mail."
   },
   "eu": {
     "message": "UE",
@@ -3648,17 +3663,17 @@
     "message": "Dla zapewnienia bezpieczeństwa konta kontynuuj tylko wtedy, gdy jesteś członkiem tej organizacji, włączono odzyskiwanie konta, a odcisk palca wyświetlany poniżej pasuje do odcisku palca organizacji."
   },
   "orgTrustWarning1": {
-    "message": "Polityka korporacyjna tej organizacji umożliwia zapisanie Cię do programu odzyskiwania kont. Rejestracja umożliwi administratorom organizacji zmianę Twojego hasła. Możesz kontynuować tylko wtedy, gdy znasz tę organizację, a odcisk palca pokazany poniżej pasuje do odcisku palca tej organizacji."
+    "message": "Zasada organizacji pozwala administratorom organizacji na zmianę Twojego hasła. Kontynuuj tylko wtedy, gdy rozpoznajesz organizację, a unikalny identyfikator pasuje do organizacji."
   },
   "trustUser": {
     "message": "Zaufaj użytkownikowi"
   },
   "sendsTitleNoItems": {
-    "message": "Wysyłaj bezpiecznie poufne informacje",
+    "message": "Wysyłaj poufne informacje w bezpieczny sposób",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendsBodyNoItems": {
-    "message": "Udostępniaj pliki i dane bezpiecznie każdemu, na każdej platformie. Twoje dane pozostaną zaszyfrowane end-to-end przy jednoczesnym ograniczeniu narażenia.",
+    "message": "Udostępniaj pliki i teksty każdemu, na dowolnej platformie. Informacje będę szyfrowane end-to-end, zapewniając poufność.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "inputRequired": {
@@ -3671,7 +3686,7 @@
     "message": "Szukaj"
   },
   "inputMinLength": {
-    "message": "Dane wejściowe muszą zawierać co najmniej $COUNT$ znaki(-ów).",
+    "message": "Dane wejściowe muszą składać się z co najmniej $COUNT$ znaków.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -3723,7 +3738,7 @@
     "description": "Notification to inform the user that a form's input can't contain only whitespace."
   },
   "inputEmail": {
-    "message": "Dane wejściowe nie są adresem e-mail."
+    "message": "To nie jest adres e-mail."
   },
   "fieldsNeedAttention": {
     "message": "Pola wymagające uwagi: $COUNT$.",
@@ -3827,7 +3842,7 @@
     "description": "Screen reader text (aria-label) for unlock account button in overlay"
   },
   "totpCodeAria": {
-    "message": "Kod weryfikacyjny jednorazowego hasła oparty na czasie",
+    "message": "Kod weryfikacyjny TOTP",
     "description": "Aria label for the totp code displayed in the inline menu for autofill"
   },
   "totpSecondsSpanAria": {
@@ -3879,7 +3894,7 @@
     "description": "Screen reader text (aria-label) for new identity button within inline menu"
   },
   "bitwardenOverlayMenuAvailable": {
-    "message": "Dostępne menu autouzupełniania Bitwarden. Naciśnij przycisk strzałki w dół, aby wybrać.",
+    "message": "Dostępne menu autouzupełniania Bitwarden. Kliknij strzałkę w dół, aby wybrać.",
     "description": "Screen reader text for announcing when the overlay opens on the page"
   },
   "turnOn": {
@@ -3947,7 +3962,7 @@
     "message": "Użyj biometrii"
   },
   "enterVerificationCodeSentToEmail": {
-    "message": "Wpisz kod weryfikacyjny, który został wysłany na adres e-mail."
+    "message": "Wpisz kod weryfikacyjny wysłany na adres e-mail."
   },
   "resendCode": {
     "message": "Wyślij ponownie kod"
@@ -3965,7 +3980,7 @@
     }
   },
   "duoHealthCheckResultsInNullAuthUrlError": {
-    "message": "Wystąpił błąd podczas połączenia z usługą Duo. Aby uzyskać pomoc, użyj innej metody dwustopniowego logowania lub skontaktuj się z Duo."
+    "message": "Wystąpił błąd podczas połączenia z usługą Duo. Użyj innej metody logowania dwustopniowego lub skontaktuj się z Duo w celu uzyskania pomocy."
   },
   "duoRequiredForAccount": {
     "message": "Konto wymaga logowania dwustopniowego Duo."
@@ -4063,7 +4078,7 @@
     "message": "Klucz dostępu nie zostanie skopiowany"
   },
   "passkeyNotCopiedAlert": {
-    "message": "Klucz dostępu nie zostanie skopiowany do sklonowanego elementu. Czy chcesz kontynuować klonowanie tego elementu?"
+    "message": "Klucz dostępu nie zostanie skopiowany do sklonowanego elementu. Czy chcesz kontynuować klonowanie elementu?"
   },
   "passkeyFeatureIsNotImplementedForAccountsWithoutMasterPassword": {
     "message": "Weryfikacja jest wymagana przez stronę inicjującą. Ta funkcja nie jest jeszcze zaimplementowana dla kont bez hasła głównego."
@@ -4072,19 +4087,19 @@
     "message": "Zalogować się kluczem dostępu?"
   },
   "passkeyAlreadyExists": {
-    "message": "Klucz dostępu już istnieje dla tej aplikacji."
+    "message": "Klucz dostępu dla tej aplikacji już istnieje."
   },
   "noPasskeysFoundForThisApplication": {
     "message": "Nie znaleziono klucza dostępu dla tej aplikacji."
   },
   "noMatchingPasskeyLogin": {
-    "message": "Nie masz pasujących danych logowania do tej witryny."
+    "message": "Brak pasujących danych logowania do tej strony."
   },
   "noMatchingLoginsForSite": {
-    "message": "Brak pasujących loginów dla tej witryny"
+    "message": "Brak pasujących danych logowania dla tej strony"
   },
   "searchSavePasskeyNewLogin": {
-    "message": "Wyszukaj albo zapisz klucz dostępu jako nowy login"
+    "message": "Wyszukaj albo zapisz klucz dostępu jako nowe dane logowania"
   },
   "confirm": {
     "message": "Potwierdź"
@@ -4129,7 +4144,7 @@
     "message": "Hasło jest nieprawidłowe"
   },
   "incorrectCode": {
-    "message": "Błędny kod"
+    "message": "Kod jest nieprawidłowy"
   },
   "incorrectPin": {
     "message": "Kod PIN jest nieprawidłowy"
@@ -4165,7 +4180,7 @@
     "message": "Wymagane uwierzytelnianie LastPass"
   },
   "awaitingSSO": {
-    "message": "Oczekiwanie na uwierzytelnianie SSO"
+    "message": "Oczekiwanie na logowanie jednokrotne"
   },
   "awaitingSSODesc": {
     "message": "Kontynuuj logowanie przy użyciu danych firmowych."
@@ -4187,7 +4202,7 @@
     "message": "Kolekcja"
   },
   "lastPassYubikeyDesc": {
-    "message": "Włóż YubiKey powiązany z Twoim kontem LastPass do portu USB komputera, a następnie naciśnij jego przycisk."
+    "message": "Włóż klucz YubiKey powiązany z kontem LastPass do portu USB urządzenia, a następnie dotknij jego przycisku."
   },
   "switchAccount": {
     "message": "Przełącz konto"
@@ -4235,7 +4250,7 @@
     "message": "Zawsze dla tej witryny"
   },
   "domainAddedToExcludedDomains": {
-    "message": "$DOMAIN$ dodana do wykluczonych domen.",
+    "message": "Domena $DOMAIN$ została dodana do wykluczonych domen.",
     "placeholders": {
       "domain": {
         "content": "$1",
@@ -4248,23 +4263,23 @@
     "description": "Label indicating the most common import formats"
   },
   "uriMatchDefaultStrategyHint": {
-    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "message": "Wykrywanie URI polega na tym, jak Bitwarden identyfikuje sugestie autouzupełniania.",
     "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
   },
   "regExAdvancedOptionWarning": {
-    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "message": "„Wyrażenie regularne” jest zaawansowaną opcją zwiększającą ryzyko ujawnienia danych logowania.",
     "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
   },
   "startsWithAdvancedOptionWarning": {
-    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "message": "„Rozpoczyna się od” jest zaawansowaną opcją zwiększającą ryzyko ujawnienia danych logowania.",
     "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
   },
   "uriMatchWarningDialogLink": {
-    "message": "More about match detection",
+    "message": "Dowiedz się więcej o wykrywaniu dopasowania",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
   "uriAdvancedOption": {
-    "message": "Advanced options",
+    "message": "Ustawienia zaawansowane",
     "description": "Advanced option placeholder for uri option component"
   },
   "confirmContinueToBrowserSettingsTitle": {
@@ -4276,7 +4291,7 @@
     "description": "Title for dialog which asks if the user wants to proceed to a relevant Help Center page"
   },
   "confirmContinueToHelpCenterPasswordManagementContent": {
-    "message": "Zmień ustawienia autouzupełniania przeglądarki i zarządzania hasłami.",
+    "message": "Zmień ustawienia autouzupełniania i haseł przeglądarki.",
     "description": "Body content for dialog which asks if the user wants to proceed to the Help Center's page about browser password management settings"
   },
   "confirmContinueToHelpCenterKeyboardShortcutsContent": {
@@ -4284,7 +4299,7 @@
     "description": "Body content for dialog which asks if the user wants to proceed to the Help Center's page about browser keyboard shortcut settings"
   },
   "confirmContinueToBrowserPasswordManagementSettingsContent": {
-    "message": "Zmień ustawienia autouzupełniania przeglądarki i zarządzania hasłami.",
+    "message": "Zmień ustawienia autouzupełniania i haseł przeglądarki.",
     "description": "Body content for dialog which asks if the user wants to proceed to the browser's password management settings page"
   },
   "confirmContinueToBrowserKeyboardShortcutSettingsContent": {
@@ -4292,7 +4307,7 @@
     "description": "Body content for dialog which asks if the user wants to proceed to the browser's keyboard shortcut settings page"
   },
   "overrideDefaultBrowserAutofillTitle": {
-    "message": "Czy Bitwarden ma być domyślnym menadżerem haseł?",
+    "message": "Czy ustawić Bitwarden jako domyślny menadżer haseł?",
     "description": "Dialog title facilitating the ability to override a chrome browser's default autofill behavior"
   },
   "overrideDefaultBrowserAutofillDescription": {
@@ -4316,7 +4331,7 @@
     "description": "Button text for the setting that allows overriding the default browser autofill settings"
   },
   "saveCipherAttemptSuccess": {
-    "message": "Pomyślnie zapisano dane logowania!",
+    "message": "Dane logowania zostały zapisane!",
     "description": "Notification message for when saving credentials has succeeded."
   },
   "passwordSaved": {
@@ -4332,7 +4347,7 @@
     "description": "Notification message for when updating credentials has succeeded."
   },
   "saveCipherAttemptFailed": {
-    "message": "Błąd podczas zapisywania danych logowania. Sprawdź konsolę, aby uzyskać szczegóły.",
+    "message": "Wystąpił błąd podczas zapisywania danych logowania. Sprawdź konsolę, aby sprawdzić szczegóły.",
     "description": "Notification message for when saving credentials has failed."
   },
   "success": {
@@ -4351,13 +4366,13 @@
     "message": "Sugerowane elementy"
   },
   "autofillSuggestionsTip": {
-    "message": "Zapisz element logowania dla tej witryny, aby automatycznie wypełnić"
+    "message": "Zapisz dane logowania"
   },
   "yourVaultIsEmpty": {
     "message": "Sejf jest pusty"
   },
   "noItemsMatchSearch": {
-    "message": "Żaden element nie pasuje do Twojego wyszukiwania"
+    "message": "Brak pasujących elementów"
   },
   "clearFiltersOrTryAnother": {
     "message": "Wyczyść filtry lub użyj innej frazy"
@@ -4518,7 +4533,7 @@
     }
   },
   "new": {
-    "message": "Nowy"
+    "message": "Nowy element"
   },
   "removeItem": {
     "message": "Usuń $NAME$",
@@ -4568,7 +4583,7 @@
     "message": "Powiązane pole"
   },
   "copySuccessful": {
-    "message": "Kopiowanie zakończone sukcesem"
+    "message": "Skopiowano"
   },
   "upload": {
     "message": "Prześlij"
@@ -4891,7 +4906,7 @@
     "message": "Wybierz kolekcje do przypisania"
   },
   "personalItemTransferWarningSingular": {
-    "message": "1 element zostanie trwale przeniesiony do wybranej organizacji. Nie będziesz już posiadać tego elementu."
+    "message": "Element zostanie przeniesiony do organizacji. Nie będziesz już właścicielem elementu."
   },
   "personalItemsTransferWarningPlural": {
     "message": "$PERSONAL_ITEMS_COUNT$ elementów zostanie trwale przeniesionych do wybranej organizacji. Nie będziesz już posiadać tych elementów.",
@@ -4903,7 +4918,7 @@
     }
   },
   "personalItemWithOrgTransferWarningSingular": {
-    "message": "1 przedmiot zostanie trwale przeniesiony do $ORG$. Nie będziesz już posiadać tego przedmiotu.",
+    "message": "Element zostanie przeniesiony do organizacji $ORG$. Nie będziesz już właścicielem elementu.",
     "placeholders": {
       "org": {
         "content": "$1",
@@ -4925,7 +4940,7 @@
     }
   },
   "successfullyAssignedCollections": {
-    "message": "Pomyślnie przypisano kolekcje"
+    "message": "Przypisano kolekcje"
   },
   "nothingSelected": {
     "message": "Nie zaznaczyłeś żadnych elementów."
@@ -4984,7 +4999,7 @@
     "message": "Akcje konta"
   },
   "showNumberOfAutofillSuggestions": {
-    "message": "Pokaż liczbę sugestii autouzupełniania logowania na ikonie rozszerzenia"
+    "message": "Pokaż liczbę sugestii autouzupełniania na ikonie rozszerzenia"
   },
   "showQuickCopyActions": {
     "message": "Pokaż akcje szybkiego kopiowania w sejfie"
@@ -4993,7 +5008,7 @@
     "message": "Domyślny systemu"
   },
   "enterprisePolicyRequirementsApplied": {
-    "message": "Do tego ustalenia zastosowano wymogi polityki przedsiębiorstw"
+    "message": "Zastosowano wymagania zasady organizacji"
   },
   "sshPrivateKey": {
     "message": "Klucz prywatny"
@@ -5023,7 +5038,7 @@
     "message": "Powtórz"
   },
   "vaultCustomTimeoutMinimum": {
-    "message": "Minimalny limit czasu niestandardowego wynosi 1 minutę."
+    "message": "Minimalny niestandardowy czas to 1 minuta."
   },
   "additionalContentAvailable": {
     "message": "Dostępna jest dodatkowa zawartość"
@@ -5074,7 +5089,7 @@
     "message": "Odblokowanie biometrią jest niedostępne z powodu zamkniętej aplikacji desktopowej Bitwarden."
   },
   "biometricsStatusHelptextNotEnabledInDesktop": {
-    "message": "Odblokowanie biometryczne jest niedostępne, ponieważ nie jest włączone dla $EMAIL$ w aplikacji desktopowej Bitwarden.",
+    "message": "Odblokowanie biometrią jest niedostępne, ponieważ nie zostało włączone dla konta $EMAIL$ w aplikacji desktopowej Bitwarden.",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -5269,7 +5284,7 @@
     "message": "Bardzo szerokie"
   },
   "sshKeyWrongPassword": {
-    "message": "Wprowadzone hasło jest nieprawidłowe."
+    "message": "Hasło jest nieprawidłowe."
   },
   "importSshKey": {
     "message": "Importuj"
@@ -5368,7 +5383,7 @@
     "message": "Ulubione elementy dla szybkiego dostępu"
   },
   "hasItemsVaultNudgeBodyThree": {
-    "message": "Przeszukaj swój sejf w poszukiwaniu czegoś innego"
+    "message": "Przeszukaj sejf w poszukiwaniu czegoś innego"
   },
   "newLoginNudgeTitle": {
     "message": "Oszczędzaj czas dzięki autouzupełnianiu"
diff --git a/apps/browser/src/_locales/pt_BR/messages.json b/apps/browser/src/_locales/pt_BR/messages.json
index 3bd3e0f36de..4d0e4148782 100644
--- a/apps/browser/src/_locales/pt_BR/messages.json
+++ b/apps/browser/src/_locales/pt_BR/messages.json
@@ -1173,6 +1173,12 @@
     "message": "Ops! Não foi possível salvar isso. Tente digitar os detalhes manualmente.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
   "enableChangedPasswordNotification": {
     "message": "Pedir para atualizar os dados de login existentes"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Pedido enviado"
   },
+  "masterPasswordChanged": {
+    "message": "Master password saved"
+  },
   "exposedMasterPassword": {
     "message": "Senha mestra comprometida"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Solicitar aprovação do administrador"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "ssoIdentifierRequired": {
     "message": "Identificador SSO da organização é necessário."
   },
diff --git a/apps/browser/src/_locales/pt_PT/messages.json b/apps/browser/src/_locales/pt_PT/messages.json
index 8e4ea6d6d7c..cc435eb4cd7 100644
--- a/apps/browser/src/_locales/pt_PT/messages.json
+++ b/apps/browser/src/_locales/pt_PT/messages.json
@@ -1173,6 +1173,12 @@
     "message": "Oh não! Não conseguimos guardar isto. Tente introduzir os detalhes manualmente.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
   "enableChangedPasswordNotification": {
     "message": "Pedir para atualizar credencial existente"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Pedido enviado"
   },
+  "masterPasswordChanged": {
+    "message": "Master password saved"
+  },
   "exposedMasterPassword": {
     "message": "Palavra-passe mestra exposta"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Pedir aprovação do administrador"
   },
+  "unableToCompleteLogin": {
+    "message": "Não é possível concluir o início de sessão"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "Tem de iniciar sessão num dispositivo de confiança ou pedir ao seu administrador que lhe atribua uma palavra-passe."
+  },
   "ssoIdentifierRequired": {
     "message": "É necessário o identificador de SSO da organização."
   },
diff --git a/apps/browser/src/_locales/ro/messages.json b/apps/browser/src/_locales/ro/messages.json
index d3636beb1b8..02fc0054e73 100644
--- a/apps/browser/src/_locales/ro/messages.json
+++ b/apps/browser/src/_locales/ro/messages.json
@@ -1173,6 +1173,12 @@
     "message": "Oh no! We couldn't save this. Try entering the details manually.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
   "enableChangedPasswordNotification": {
     "message": "Solicitați actualizarea autentificării existente"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "masterPasswordChanged": {
+    "message": "Master password saved"
+  },
   "exposedMasterPassword": {
     "message": "Parolă principală compromisă"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Cereți aprobarea administratorului"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "ssoIdentifierRequired": {
     "message": "Identificatorul SSO al organizației este necesar."
   },
diff --git a/apps/browser/src/_locales/ru/messages.json b/apps/browser/src/_locales/ru/messages.json
index 031381ab09c..2c9aa0f4d45 100644
--- a/apps/browser/src/_locales/ru/messages.json
+++ b/apps/browser/src/_locales/ru/messages.json
@@ -1173,6 +1173,12 @@
     "message": "О нет! Мы не смогли сохранить это. Попробуйте ввести данные вручную.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "После смены пароля потребуется авторизоваться с новым паролем. Активные сессии на других устройствах будут завершены в течение одного часа."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Измените мастер-пароль, чтобы завершить восстановление аккаунта."
+  },
   "enableChangedPasswordNotification": {
     "message": "Спрашивать при обновлении существующего логина"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Запрос отправлен"
   },
+  "masterPasswordChanged": {
+    "message": "Мастер-пароль сохранен"
+  },
   "exposedMasterPassword": {
     "message": "Мастер-пароль скомпрометирован"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Запросить одобрение администратора"
   },
+  "unableToCompleteLogin": {
+    "message": "Не удалось завершить вход"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "Вам необходимо авторизоваться с доверенного устройства или попросить вашего администратора назначить вам пароль."
+  },
   "ssoIdentifierRequired": {
     "message": "Требуется идентификатор SSO организации."
   },
diff --git a/apps/browser/src/_locales/si/messages.json b/apps/browser/src/_locales/si/messages.json
index 16d96c59b12..aa88e12ba39 100644
--- a/apps/browser/src/_locales/si/messages.json
+++ b/apps/browser/src/_locales/si/messages.json
@@ -1173,6 +1173,12 @@
     "message": "Oh no! We couldn't save this. Try entering the details manually.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
   "enableChangedPasswordNotification": {
     "message": "Ask to update existing login"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "masterPasswordChanged": {
+    "message": "Master password saved"
+  },
   "exposedMasterPassword": {
     "message": "Exposed Master Password"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "ssoIdentifierRequired": {
     "message": "Organization SSO identifier is required."
   },
diff --git a/apps/browser/src/_locales/sk/messages.json b/apps/browser/src/_locales/sk/messages.json
index 9abe948055f..356617ea25c 100644
--- a/apps/browser/src/_locales/sk/messages.json
+++ b/apps/browser/src/_locales/sk/messages.json
@@ -1173,6 +1173,12 @@
     "message": "Ale nie! Nepodarilo sa nám to uložiť. Skúste zadať údaje manuálne.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "Po zmene hesla sa musíte prihlásiť pomocou nového hesla. Aktívne relácie na iných zariadeniach budú do jednej hodiny odhlásené."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Zmeňte hlavné heslo, aby ste dokončili obnovenie účtu."
+  },
   "enableChangedPasswordNotification": {
     "message": "Požiadať o aktualizáciu existujúceho prihlasovania"
   },
@@ -2902,7 +2908,7 @@
     "message": "Skryť moju e-mailovú adresu pri zobrazení."
   },
   "passwordPrompt": {
-    "message": "Znova zadajte hlavné heslo"
+    "message": "Vyzvať na zadanie hesla"
   },
   "passwordConfirmation": {
     "message": "Potvrdenie hlavného hesla"
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Požiadavka bola odoslaná"
   },
+  "masterPasswordChanged": {
+    "message": "Hlavné heslo uložené"
+  },
   "exposedMasterPassword": {
     "message": "Odhalené hlavné heslo"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Žiadosť o schválenie správcom"
   },
+  "unableToCompleteLogin": {
+    "message": "Nepodarilo sa dokončiť prihlásenie"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "Musíte sa prihlásiť na dôveryhodnom zariadení alebo požiadať správcu o priradenie hesla."
+  },
   "ssoIdentifierRequired": {
     "message": "Pole identifikátora SSO je povinné."
   },
diff --git a/apps/browser/src/_locales/sl/messages.json b/apps/browser/src/_locales/sl/messages.json
index 310e9a28d3a..72f058254e4 100644
--- a/apps/browser/src/_locales/sl/messages.json
+++ b/apps/browser/src/_locales/sl/messages.json
@@ -1173,6 +1173,12 @@
     "message": "Oh no! We couldn't save this. Try entering the details manually.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
   "enableChangedPasswordNotification": {
     "message": "Predlagaj posodobitev obstoječe prijave"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "masterPasswordChanged": {
+    "message": "Master password saved"
+  },
   "exposedMasterPassword": {
     "message": "Exposed Master Password"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "ssoIdentifierRequired": {
     "message": "Organization SSO identifier is required."
   },
diff --git a/apps/browser/src/_locales/sr/messages.json b/apps/browser/src/_locales/sr/messages.json
index 935b9d4876c..b802fab75f6 100644
--- a/apps/browser/src/_locales/sr/messages.json
+++ b/apps/browser/src/_locales/sr/messages.json
@@ -1173,6 +1173,12 @@
     "message": "Ох не! Нисмо могли да то сачувамо. Покушајте да ручно унесете детаље.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
   "enableChangedPasswordNotification": {
     "message": "Питај за ажурирање постојеће пријаве"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Захтев је послат"
   },
+  "masterPasswordChanged": {
+    "message": "Master password saved"
+  },
   "exposedMasterPassword": {
     "message": "Изложена главна лозинка"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Затражити одобрење администратора"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "ssoIdentifierRequired": {
     "message": "Потребан је SSO идентификатор организације."
   },
diff --git a/apps/browser/src/_locales/sv/messages.json b/apps/browser/src/_locales/sv/messages.json
index 819af390a19..16b927ffd4c 100644
--- a/apps/browser/src/_locales/sv/messages.json
+++ b/apps/browser/src/_locales/sv/messages.json
@@ -3,7 +3,7 @@
     "message": "Bitwarden"
   },
   "appLogoLabel": {
-    "message": "Bitwarden logo"
+    "message": "Bitwardens logotyp"
   },
   "extName": {
     "message": "Bitwarden Lösenordshanterare",
@@ -84,7 +84,7 @@
     "message": "Huvudlösenordsledtråd (valfri)"
   },
   "passwordStrengthScore": {
-    "message": "Password strength score $SCORE$",
+    "message": "Lösenordsstyrka $SCORE$ (score)",
     "placeholders": {
       "score": {
         "content": "$1",
@@ -105,7 +105,7 @@
     }
   },
   "finishJoiningThisOrganizationBySettingAMasterPassword": {
-    "message": "Finish joining this organization by setting a master password."
+    "message": "Avsluta anslutningen till denna organisation genom att ange ett huvudlösenord."
   },
   "tab": {
     "message": "Flik"
@@ -264,7 +264,7 @@
     "message": "Begär lösenordsledtråd"
   },
   "enterYourAccountEmailAddressAndYourPasswordHintWillBeSentToYou": {
-    "message": "Enter your account email address and your password hint will be sent to you"
+    "message": "Ange din e-postadress för kontot så skickas en lösenordshint till dig"
   },
   "getMasterPasswordHint": {
     "message": "Hämta huvudlösenordsledtråd"
@@ -350,7 +350,7 @@
     "message": "Bitwarden Hemlighetshanterare"
   },
   "continueToSecretsManagerPageDesc": {
-    "message": "Securely store, manage, and share developer secrets with Bitwarden Secrets Manager. Learn more on the bitwarden.com website."
+    "message": "Lagra, hantera och dela utvecklarhemligheter på ett säkert sätt med Bitwarden Secrets Manager. Läs mer på webbplatsen bitwarden.com."
   },
   "passwordlessDotDev": {
     "message": "Passwordless.dev"
@@ -359,10 +359,10 @@
     "message": "Skapa smidiga och säkra inloggningsupplevelser fria från traditionella lösenord med Passwordless.dev. Läs mer på bitwarden.com hemsidan."
   },
   "freeBitwardenFamilies": {
-    "message": "Free Bitwarden Families"
+    "message": "Gratis Bitwarden Familjer"
   },
   "freeBitwardenFamiliesPageDesc": {
-    "message": "You are eligible for Free Bitwarden Families. Redeem this offer today in the web app."
+    "message": "Du är berättigad till gratis Bitwarden Families. Lös in erbjudandet idag i webbappen."
   },
   "version": {
     "message": "Version"
@@ -398,7 +398,7 @@
     "message": "Mappnamn"
   },
   "folderHintText": {
-    "message": "Nest a folder by adding the parent folder's name followed by a “/”. Example: Social/Forums"
+    "message": "Nästla en mapp genom att lägga till namnet på den överordnade mappen följt av \"/\". Exempel: Sociala/Forums"
   },
   "noFoldersAdded": {
     "message": "Inga mappar tillagda"
@@ -407,7 +407,7 @@
     "message": "Skapa mappar för att organisera dina valvobjekt"
   },
   "deleteFolderPermanently": {
-    "message": "Are you sure you want to permanently delete this folder?"
+    "message": "Är du säker på att du vill radera den här mappen permanent?"
   },
   "deleteFolder": {
     "message": "Radera mapp"
@@ -541,7 +541,7 @@
     "description": "Label for the avoid ambiguous characters checkbox."
   },
   "generatorPolicyInEffect": {
-    "message": "Enterprise policy requirements have been applied to your generator options.",
+    "message": "Företagets policykrav har tillämpats på dina generatoralternativ.",
     "description": "Indicates that a policy limits the credential generator screen."
   },
   "searchVault": {
@@ -566,7 +566,7 @@
     "message": "Lösenord"
   },
   "totp": {
-    "message": "Authenticator secret"
+    "message": "Autentiserarens hemlighet"
   },
   "passphrase": {
     "message": "Lösenfras"
@@ -635,7 +635,7 @@
     "message": "Upplåsningsalternativ"
   },
   "unlockMethodNeededToChangeTimeoutActionDesc": {
-    "message": "Set up an unlock method to change your vault timeout action."
+    "message": "Konfigurera en upplåsningsmetod för att ändra timeout-åtgärden för valvet."
   },
   "unlockMethodNeeded": {
     "message": "Ställ in en upplåsningsmetod i Inställningar"
@@ -659,7 +659,7 @@
     "message": "Verifiera din identitet"
   },
   "weDontRecognizeThisDevice": {
-    "message": "We don't recognize this device. Enter the code sent to your email to verify your identity."
+    "message": "Vi känner inte igen den här enheten. Ange koden som skickats till din e-post för att verifiera din identitet."
   },
   "continueLoggingIn": {
     "message": "Fortsätt logga in"
@@ -814,7 +814,7 @@
     "message": "Verifieringskod krävs."
   },
   "webauthnCancelOrTimeout": {
-    "message": "The authentication was cancelled or took too long. Please try again."
+    "message": "Autentiseringen avbröts eller tog för lång tid. Vänligen försök igen."
   },
   "invalidVerificationCode": {
     "message": "Ogiltig verifieringskod"
@@ -839,16 +839,16 @@
     "message": "Autentiseringsnyckel tillagd"
   },
   "totpCapture": {
-    "message": "Scan authenticator QR code from current webpage"
+    "message": "Skanna QR-koden för autentisering från aktuell webbsida"
   },
   "totpHelperTitle": {
     "message": "Gör tvåstegsverifiering sömlös"
   },
   "totpHelper": {
-    "message": "Bitwarden can store and fill 2-step verification codes. Copy and paste the key into this field."
+    "message": "Bitwarden kan lagra och fylla i 2-stegs verifieringskoder. Kopiera och klistra in nyckeln i detta fält."
   },
   "totpHelperWithCapture": {
-    "message": "Bitwarden can store and fill 2-step verification codes. Select the camera icon to take a screenshot of this website's authenticator QR code, or copy and paste the key into this field."
+    "message": "Bitwarden kan lagra och fylla i 2-stegsverifieringskoder. Välj kameraikonen för att ta en skärmdump av den här webbplatsens QR-kod för autentisering, eller kopiera och klistra in nyckeln i det här fältet."
   },
   "learnMoreAboutAuthenticators": {
     "message": "Läs mer om autentiserare"
@@ -881,13 +881,13 @@
     "message": "Tryck på din YubiKey för att autentisera"
   },
   "duoTwoFactorRequiredPageSubtitle": {
-    "message": "Duo two-step login is required for your account. Follow the steps below to finish logging in."
+    "message": "Tvåstegsinloggning med Duo krävs för ditt konto. Följ stegen nedan för att slutföra inloggningen."
   },
   "followTheStepsBelowToFinishLoggingIn": {
-    "message": "Follow the steps below to finish logging in."
+    "message": "Följ stegen nedan för att slutföra inloggningen."
   },
   "followTheStepsBelowToFinishLoggingInWithSecurityKey": {
-    "message": "Follow the steps below to finish logging in with your security key."
+    "message": "Följ stegen nedan för att slutföra inloggningen med din säkerhetsnyckel."
   },
   "restartRegistration": {
     "message": "Starta om registrering"
@@ -1016,16 +1016,16 @@
     "message": "Be om att lägga till inloggning"
   },
   "vaultSaveOptionsTitle": {
-    "message": "Save to vault options"
+    "message": "Alternativ för att spara i valvet"
   },
   "addLoginNotificationDesc": {
     "message": "Be om att lägga till ett objekt om det inte finns i ditt valv."
   },
   "addLoginNotificationDescAlt": {
-    "message": "Ask to add an item if one isn't found in your vault. Applies to all logged in accounts."
+    "message": "Be att få lägga till ett objekt om det inte finns i ditt valv. Gäller för alla inloggade konton."
   },
   "showCardsInVaultViewV2": {
-    "message": "Always show cards as Autofill suggestions on Vault view"
+    "message": "Visa alltid kort som Autofyll-förslag i Vault-vyn"
   },
   "showCardsCurrentTab": {
     "message": "Visa kort på fliksida"
@@ -1034,7 +1034,7 @@
     "message": "Lista kortobjekt på fliksidan för enkel autofyll."
   },
   "showIdentitiesInVaultViewV2": {
-    "message": "Always show identities as Autofill suggestions on Vault view"
+    "message": "Visa alltid identiteter som Autofyll-förslag i Vault-vyn"
   },
   "showIdentitiesCurrentTab": {
     "message": "Visa identiteter på fliksidan"
@@ -1043,10 +1043,10 @@
     "message": "Lista identitetsobjekt på fliksidan för enkel autofyll."
   },
   "clickToAutofillOnVault": {
-    "message": "Click items to autofill on Vault view"
+    "message": "Klicka på objekt som ska fyllas i automatiskt i Vault-vyn"
   },
   "clickToAutofill": {
-    "message": "Click items in autofill suggestion to fill"
+    "message": "Klicka på objekt i autofyllförslaget för att fylla i"
   },
   "clearClipboard": {
     "message": "Rensa urklipp",
@@ -1063,7 +1063,7 @@
     "message": "Spara"
   },
   "notificationViewAria": {
-    "message": "View $ITEMNAME$, opens in new window",
+    "message": "Visa $ITEMNAME$, öppnas i nytt fönster",
     "placeholders": {
       "itemName": {
         "content": "$1"
@@ -1072,18 +1072,18 @@
     "description": "Aria label for the view button in notification bar confirmation message"
   },
   "notificationNewItemAria": {
-    "message": "New Item, opens in new window",
+    "message": "Nytt föremål, öppnas i nytt fönster",
     "description": "Aria label for the new item button in notification bar confirmation message when error is prompted"
   },
   "notificationEditTooltip": {
-    "message": "Edit before saving",
+    "message": "Redigera innan du sparar",
     "description": "Tooltip and Aria label for edit button on cipher item"
   },
   "newNotification": {
-    "message": "New notification"
+    "message": "Nytt meddelande"
   },
   "labelWithNotification": {
-    "message": "$LABEL$: New notification",
+    "message": "$LABEL$: Nytt meddelande",
     "description": "Label for the notification with a new login suggestion.",
     "placeholders": {
       "label": {
@@ -1093,15 +1093,15 @@
     }
   },
   "notificationLoginSaveConfirmation": {
-    "message": "saved to Bitwarden.",
+    "message": "sparades till Bitwarden.",
     "description": "Shown to user after item is saved."
   },
   "notificationLoginUpdatedConfirmation": {
-    "message": "updated in Bitwarden.",
+    "message": "uppdaterad i Bitwarden.",
     "description": "Shown to user after item is updated."
   },
   "selectItemAriaLabel": {
-    "message": "Select $ITEMTYPE$, $ITEMNAME$",
+    "message": "Välj $ITEMTYPE$, $ITEMNAME$",
     "description": "Used by screen readers. $1 is the item type (like vault or folder), $2 is the selected item name.",
     "placeholders": {
       "itemType": {
@@ -1113,15 +1113,15 @@
     }
   },
   "saveAsNewLoginAction": {
-    "message": "Save as new login",
+    "message": "Spara som ny inloggning",
     "description": "Button text for saving login details as a new entry."
   },
   "updateLoginAction": {
-    "message": "Update login",
+    "message": "Uppdatera inloggning",
     "description": "Button text for updating an existing login entry."
   },
   "unlockToSave": {
-    "message": "Unlock to save this login",
+    "message": "Lås upp för att spara denna inloggning",
     "description": "User prompt to take action in order to save the login they just entered."
   },
   "saveLogin": {
@@ -1129,7 +1129,7 @@
     "description": "Prompt asking the user if they want to save their login details."
   },
   "updateLogin": {
-    "message": "Update existing login",
+    "message": "Uppdatera befintlig inloggning",
     "description": "Prompt asking the user if they want to update an existing login entry."
   },
   "loginSaveSuccess": {
@@ -1141,7 +1141,7 @@
     "description": "Message displayed when login details are successfully updated."
   },
   "loginUpdateTaskSuccess": {
-    "message": "Great job! You took the steps to make you and $ORGANIZATION$ more secure.",
+    "message": "Bra jobbat! Du tog stegen för att göra dig och $ORGANISATION$ säkrare.",
     "placeholders": {
       "organization": {
         "content": "$1"
@@ -1150,7 +1150,7 @@
     "description": "Shown to user after login is updated."
   },
   "loginUpdateTaskSuccessAdditional": {
-    "message": "Thank you for making $ORGANIZATION$ more secure. You have $TASK_COUNT$ more passwords to update.",
+    "message": "Tack för att du gör $ORGANIZATION$ säkrare. Du har $TASK_COUNT$ fler lösenord att uppdatera.",
     "placeholders": {
       "organization": {
         "content": "$1"
@@ -1162,17 +1162,23 @@
     "description": "Shown to user after login is updated."
   },
   "nextSecurityTaskAction": {
-    "message": "Change next password",
+    "message": "Ändra nästa lösenord",
     "description": "Message prompting user to undertake completion of another security task."
   },
   "saveFailure": {
-    "message": "Error saving",
+    "message": "Fel i sparandet",
     "description": "Error message shown when the system fails to save login details."
   },
   "saveFailureDetails": {
-    "message": "Oh no! We couldn't save this. Try entering the details manually.",
+    "message": "Åh nej! Vi kunde inte spara detta. Försök att ange uppgifterna manuellt.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "När du har ändrat ditt lösenord måste du logga in med det nya lösenordet. Aktiva sessioner på andra enheter kommer att loggas ut inom en timme."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Ändra ditt huvudlösenord för att slutföra återställningen av kontot."
+  },
   "enableChangedPasswordNotification": {
     "message": "Be om att uppdatera befintlig inloggning"
   },
@@ -1180,7 +1186,7 @@
     "message": "Be om att uppdatera ett lösenord när en ändring upptäcks på en webbplats."
   },
   "changedPasswordNotificationDescAlt": {
-    "message": "Ask to update a login's password when a change is detected on a website. Applies to all logged in accounts."
+    "message": "Be att få uppdatera lösenordet för en inloggning när en ändring upptäcks på en webbplats. Gäller för alla inloggade konton."
   },
   "enableUsePasskeys": {
     "message": "Be om att spara och använda lösennycklar"
@@ -1207,10 +1213,10 @@
     "message": "Visa alternativ för snabbmenyn"
   },
   "contextMenuItemDesc": {
-    "message": "Använd ett andra klick för att komma åt lösenordsgenerering och matchande inloggningar för webbplatsen. "
+    "message": "Använd ett andra klick för att komma åt lösenordsgenerering och matchande inloggningar för webbplatsen."
   },
   "contextMenuItemDescAlt": {
-    "message": "Use a secondary click to access password generation and matching logins for the website. Applies to all logged in accounts."
+    "message": "Använd ett sekundärt klick för att få tillgång till lösenordsgenerering och matchande inloggningar för webbplatsen. Gäller för alla inloggade konton."
   },
   "defaultUriMatchDetection": {
     "message": "Standardmatchning för URI",
@@ -1246,28 +1252,28 @@
     "message": "Filformat"
   },
   "fileEncryptedExportWarningDesc": {
-    "message": "This file export will be password protected and require the file password to decrypt."
+    "message": "Den här filexporten kommer att vara lösenordsskyddad och kräver filens lösenord för att dekryptera."
   },
   "filePassword": {
     "message": "Fillösenord"
   },
   "exportPasswordDescription": {
-    "message": "This password will be used to export and import this file"
+    "message": "Detta lösenord kommer att användas för att exportera och importera denna fil"
   },
   "accountRestrictedOptionDescription": {
-    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+    "message": "Använd ditt kontos krypteringsnyckel, som härrör från ditt kontos användarnamn och huvudlösenord, för att kryptera exporten och begränsa importen till endast det aktuella Bitwarden-kontot."
   },
   "passwordProtectedOptionDescription": {
-    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+    "message": "Ange ett lösenord för filen för att kryptera exporten och importera den till valfritt Bitwarden-konto med lösenordet för dekryptering."
   },
   "exportTypeHeading": {
     "message": "Exporttyp"
   },
   "accountRestricted": {
-    "message": "Account restricted"
+    "message": "Konto med restriktioner"
   },
   "filePasswordAndConfirmFilePasswordDoNotMatch": {
-    "message": "“File password”  and “Confirm file password“ do not match."
+    "message": "\"Fillösenord\" och \"Bekräfta fillösenord\" stämmer inte överens."
   },
   "warning": {
     "message": "VARNING",
@@ -1296,7 +1302,7 @@
     "message": "Delad"
   },
   "bitwardenForBusinessPageDesc": {
-    "message": "Bitwarden for Business allows you to share your vault items with others by using an organization. Learn more on the bitwarden.com website."
+    "message": "Med Bitwarden for Business kan du dela dina valvobjekt med andra genom att använda en organisation. Läs mer på webbplatsen bitwarden.com."
   },
   "moveToOrganization": {
     "message": "Flytta till organisation"
@@ -1354,7 +1360,7 @@
     "message": "Fil"
   },
   "fileToShare": {
-    "message": "File to share"
+    "message": "Fil att dela"
   },
   "selectFile": {
     "message": "Välj en fil"
@@ -1366,7 +1372,7 @@
     "message": "Funktion ej tillgänglig"
   },
   "legacyEncryptionUnsupported": {
-    "message": "Legacy encryption is no longer supported. Please contact support to recover your account."
+    "message": "Legacy-kryptering stöds inte längre. Vänligen kontakta support för att återställa ditt konto."
   },
   "premiumMembership": {
     "message": "Premium-medlemskap"
@@ -1411,7 +1417,7 @@
     "message": "Köp Premium"
   },
   "premiumPurchaseAlertV2": {
-    "message": "You can purchase Premium from your account settings on the Bitwarden web app."
+    "message": "Du kan köpa Premium från dina kontoinställningar i Bitwardens webbapp."
   },
   "premiumCurrentMember": {
     "message": "Du är en premium-medlem!"
@@ -1459,10 +1465,10 @@
     "message": "Ett premium-medlemskap krävs för att använda den här funktionen."
   },
   "authenticationTimeout": {
-    "message": "Authentication timeout"
+    "message": "Timeout för autentisering"
   },
   "authenticationSessionTimedOut": {
-    "message": "The authentication session timed out. Please restart the login process."
+    "message": "Autentiseringssessionen timade ut. Vänligen starta om inloggningsprocessen."
   },
   "verificationCodeEmailSent": {
     "message": "Verifieringsmeddelande har skickats till $EMAIL$.",
@@ -1923,7 +1929,7 @@
     "message": "SSH-nyckel"
   },
   "typeNote": {
-    "message": "Note"
+    "message": "Anteckning"
   },
   "newItemHeader": {
     "message": "Ny $TYPE$",
@@ -2157,7 +2163,7 @@
     "message": "Ange en PIN-kod för att låsa upp Bitwarden. Dina PIN-inställningar återställs om du någonsin loggar ut helt från programmet."
   },
   "setPinCode": {
-    "message": "You can use this PIN to unlock Bitwarden. Your PIN will be reset if you ever fully log out of the application."
+    "message": "Du kan använda denna PIN-kod för att låsa upp Bitwarden. Din PIN-kod kommer att återställas om du någonsin loggar ut helt från programmet."
   },
   "pinRequired": {
     "message": "PIN-kod krävs."
@@ -2208,7 +2214,7 @@
     "message": "Använd detta lösenord"
   },
   "useThisPassphrase": {
-    "message": "Use this passphrase"
+    "message": "Använd denna lösenfras"
   },
   "useThisUsername": {
     "message": "Använd detta användarnamn"
@@ -2278,7 +2284,7 @@
     "message": "Fyllde i objektet automatiskt och sparade URI:n"
   },
   "autoFillSuccess": {
-    "message": "Fyllde i objektet automatiskt"
+    "message": "Fyllde i objektet automatiskt "
   },
   "insecurePageWarning": {
     "message": "Varning: Detta är en icke säkrad HTTP-sida, och all information du skickar kan potentiellt ses och ändras av andra. Denna inloggning sparades ursprungligen på en säker (HTTPS) sida."
@@ -2380,7 +2386,7 @@
     "message": "Integritetspolicy"
   },
   "yourNewPasswordCannotBeTheSameAsYourCurrentPassword": {
-    "message": "Your new password cannot be the same as your current password."
+    "message": "Ditt nya lösenord får inte vara samma som ditt nuvarande lösenord."
   },
   "hintEqualsPassword": {
     "message": "Din lösenordsledtråd får inte vara samma som ditt lösenord."
@@ -2389,10 +2395,10 @@
     "message": "OK"
   },
   "errorRefreshingAccessToken": {
-    "message": "Access Token Refresh Error"
+    "message": "Fel vid uppdatering av åtkomsttoken"
   },
   "errorRefreshingAccessTokenDesc": {
-    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+    "message": "Ingen uppdateringstoken eller API-nyckel hittades. Försök att logga ut och logga in igen."
   },
   "desktopSyncVerificationTitle": {
     "message": "Verifiering av synkronisering med skrivbordsprogrammet"
@@ -2431,10 +2437,10 @@
     "message": "Kontoavvikelse"
   },
   "nativeMessagingWrongUserKeyTitle": {
-    "message": "Biometric key missmatch"
+    "message": "Missmatchning av biometrisk nyckel"
   },
   "nativeMessagingWrongUserKeyDesc": {
-    "message": "Biometric unlock failed. The biometric secret key failed to unlock the vault. Please try to set up biometrics again."
+    "message": "Biometrisk upplåsning misslyckades. Den biometriska hemliga nyckeln kunde inte låsa upp valvet. Försök att ställa in biometri igen."
   },
   "biometricsNotEnabledTitle": {
     "message": "Biometri är inte aktiverat"
@@ -2449,16 +2455,16 @@
     "message": "Biometri i webbläsaren stöds inte på den här enheten."
   },
   "biometricsNotUnlockedTitle": {
-    "message": "User locked or logged out"
+    "message": "Användaren är låst eller utloggad"
   },
   "biometricsNotUnlockedDesc": {
     "message": "Lås upp den här användaren i skrivbordsprogrammet och försök igen."
   },
   "biometricsNotAvailableTitle": {
-    "message": "Biometric unlock unavailable"
+    "message": "Biometrisk upplåsning ej tillgänglig"
   },
   "biometricsNotAvailableDesc": {
-    "message": "Biometric unlock is currently unavailable. Please try again later."
+    "message": "Biometrisk upplåsning är för närvarande inte tillgänglig. Vänligen försök igen senare."
   },
   "biometricsFailedTitle": {
     "message": "Biometri misslyckades"
@@ -2485,23 +2491,23 @@
     "message": "En organisationspolicy påverkar dina ägarskapsalternativ."
   },
   "personalOwnershipPolicyInEffectImports": {
-    "message": "An organization policy has blocked importing items into your individual vault."
+    "message": "En organisationspolicy har blockerat import av objekt till ditt individuella valv."
   },
   "restrictCardTypeImport": {
-    "message": "Cannot import card item types"
+    "message": "Det går inte att importera typer av kortposter"
   },
   "restrictCardTypeImportDesc": {
-    "message": "A policy set by 1 or more organizations prevents you from importing cards to your vaults."
+    "message": "En policy som har fastställts av en eller flera organisationer hindrar dig från att importera kort till dina valv."
   },
   "domainsTitle": {
     "message": "Domäner",
     "description": "A category title describing the concept of web domains"
   },
   "blockedDomains": {
-    "message": "Blocked domains"
+    "message": "Blockerade domäner"
   },
   "learnMoreAboutBlockedDomains": {
-    "message": "Learn more about blocked domains"
+    "message": "Läs mer om blockerade domäner"
   },
   "excludedDomains": {
     "message": "Exkluderade domäner"
@@ -2510,26 +2516,26 @@
     "message": "Bitwarden kommer inte att fråga om att få spara inloggningsuppgifter för dessa domäner. Du måste uppdatera sidan för att ändringarna ska träda i kraft."
   },
   "excludedDomainsDescAlt": {
-    "message": "Bitwarden will not ask to save login details for these domains for all logged in accounts. You must refresh the page for changes to take effect."
+    "message": "Bitwarden kommer inte att be om att få spara inloggningsuppgifter för dessa domäner för alla inloggade konton. Du måste uppdatera sidan för att ändringarna ska träda i kraft."
   },
   "blockedDomainsDesc": {
-    "message": "Autofill and other related features will not be offered for these websites. You must refresh the page for changes to take effect."
+    "message": "Autofyll och andra relaterade funktioner kommer inte att erbjudas för dessa webbplatser. Du måste uppdatera sidan för att ändringarna ska träda i kraft."
   },
   "autofillBlockedNoticeV2": {
-    "message": "Autofill is blocked for this website."
+    "message": "Autofyll är blockerat för den här webbplatsen."
   },
   "autofillBlockedNoticeGuidance": {
     "message": "Ändra detta i inställningar"
   },
   "change": {
-    "message": "Change"
+    "message": "Ändra"
   },
   "changePassword": {
-    "message": "Change password",
+    "message": "Ändra lösenord",
     "description": "Change password button for browser at risk notification on login."
   },
   "changeButtonTitle": {
-    "message": "Change password - $ITEMNAME$",
+    "message": "Byt lösenord - $ITEMNAME$",
     "placeholders": {
       "itemname": {
         "content": "$1",
@@ -2538,13 +2544,13 @@
     }
   },
   "atRiskPassword": {
-    "message": "At-risk password"
+    "message": "Lösenord med risk"
   },
   "atRiskPasswords": {
-    "message": "At-risk passwords"
+    "message": "Lösenord i riskzonen"
   },
   "atRiskPasswordDescSingleOrg": {
-    "message": "$ORGANIZATION$ is requesting you change one password because it is at-risk.",
+    "message": "$ORGANIZATION$ ber dig att ändra ett lösenord eftersom det är i riskzonen.",
     "placeholders": {
       "organization": {
         "content": "$1",
@@ -2553,7 +2559,7 @@
     }
   },
   "atRiskPasswordsDescSingleOrgPlural": {
-    "message": "$ORGANIZATION$ is requesting you change the $COUNT$ passwords because they are at-risk.",
+    "message": "$ORGANIZATION$ begär att du ändrar $COUNT$-lösenorden eftersom de är i riskzonen.",
     "placeholders": {
       "organization": {
         "content": "$1",
@@ -2566,7 +2572,7 @@
     }
   },
   "atRiskPasswordsDescMultiOrgPlural": {
-    "message": "Your organizations are requesting you change the $COUNT$ passwords because they are at-risk.",
+    "message": "Dina organisationer begär att du ändrar $COUNT$-lösenorden eftersom de är i riskzonen.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -2575,7 +2581,7 @@
     }
   },
   "atRiskChangePrompt": {
-    "message": "Your password for this site is at-risk. $ORGANIZATION$ has requested that you change it.",
+    "message": "Ditt lösenord för den här webbplatsen är i fara. $ORGANIZATION$ har begärt att du ändrar det.",
     "placeholders": {
       "organization": {
         "content": "$1",
@@ -2585,7 +2591,7 @@
     "description": "Notification body when a login triggers an at-risk password change request and the change password domain is known."
   },
   "atRiskNavigatePrompt": {
-    "message": "$ORGANIZATION$ wants you to change this password because it is at-risk. Navigate to your account settings to change the password.",
+    "message": "$ORGANIZATION$ vill att du ändrar det här lösenordet eftersom det är i riskzonen. Navigera till dina kontoinställningar för att ändra lösenordet.",
     "placeholders": {
       "organization": {
         "content": "$1",
@@ -2595,10 +2601,10 @@
     "description": "Notification body when a login triggers an at-risk password change request and no change password domain is provided."
   },
   "reviewAndChangeAtRiskPassword": {
-    "message": "Review and change one at-risk password"
+    "message": "Granska och ändra ett risklösenord"
   },
   "reviewAndChangeAtRiskPasswordsPlural": {
-    "message": "Review and change $COUNT$ at-risk passwords",
+    "message": "Granska och ändra $COUNT$ riskfyllda lösenord",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -2607,40 +2613,40 @@
     }
   },
   "changeAtRiskPasswordsFaster": {
-    "message": "Change at-risk passwords faster"
+    "message": "Ändra riskfyllda lösenord snabbare"
   },
   "changeAtRiskPasswordsFasterDesc": {
-    "message": "Update your settings so you can quickly autofill your passwords and generate new ones"
+    "message": "Uppdatera dina inställningar så att du snabbt kan autofylla dina lösenord och generera nya"
   },
   "reviewAtRiskLogins": {
-    "message": "Review at-risk logins"
+    "message": "Granska riskfyllda inloggningar"
   },
   "reviewAtRiskPasswords": {
-    "message": "Review at-risk passwords"
+    "message": "Granska riskfyllda lösenord"
   },
   "reviewAtRiskLoginsSlideDesc": {
-    "message": "Your organization passwords are at-risk because they are weak, reused, and/or exposed.",
+    "message": "Lösenorden i din organisation är i riskzonen eftersom de är svaga, återanvända och/eller exponerade.",
     "description": "Description of the review at-risk login slide on the at-risk password page carousel"
   },
   "reviewAtRiskLoginSlideImgAltPeriod": {
-    "message": "Illustration of a list of logins that are at-risk."
+    "message": "Illustration av en lista över inloggningar som är i riskzonen."
   },
   "generatePasswordSlideDesc": {
-    "message": "Quickly generate a strong, unique password with the Bitwarden autofill menu on the at-risk site.",
+    "message": "Skapa snabbt ett starkt, unikt lösenord med Bitwardens autofyllmeny på riskwebbplatsen.",
     "description": "Description of the generate password slide on the at-risk password page carousel"
   },
   "generatePasswordSlideImgAltPeriod": {
-    "message": "Illustration of the Bitwarden autofill menu displaying a generated password."
+    "message": "Illustration av Bitwardens autofyllmeny som visar ett genererat lösenord."
   },
   "updateInBitwarden": {
-    "message": "Update in Bitwarden"
+    "message": "Uppdatera i Bitwarden"
   },
   "updateInBitwardenSlideDesc": {
-    "message": "Bitwarden will then prompt you to update the password in the password manager.",
+    "message": "Bitwarden kommer då att uppmana dig att uppdatera lösenordet i lösenordshanteraren.",
     "description": "Description of the update in Bitwarden slide on the at-risk password page carousel"
   },
   "updateInBitwardenSlideImgAltPeriod": {
-    "message": "Illustration of a Bitwarden’s notification prompting the user to update the login."
+    "message": "Illustration av ett Bitwarden-meddelande som uppmanar användaren att uppdatera inloggningen."
   },
   "turnOnAutofill": {
     "message": "Aktivera autofyll"
@@ -2649,7 +2655,7 @@
     "message": "Aktiverade autofyll"
   },
   "dismiss": {
-    "message": "Dismiss"
+    "message": "Stäng"
   },
   "websiteItemLabel": {
     "message": "Webbplats $number$ (URI)",
@@ -2670,20 +2676,20 @@
     }
   },
   "blockedDomainsSavedSuccess": {
-    "message": "Blocked domain changes saved"
+    "message": "Blockerade domänändringar sparas"
   },
   "excludedDomainsSavedSuccess": {
-    "message": "Excluded domain changes saved"
+    "message": "Ändringar för exkluderad domän sparas"
   },
   "limitSendViews": {
-    "message": "Limit views"
+    "message": "Begränsa antalet visningar"
   },
   "limitSendViewsHint": {
-    "message": "No one can view this Send after the limit is reached.",
+    "message": "Ingen kan se denna sändning efter att gränsen har nåtts.",
     "description": "Displayed under the limit views field on Send"
   },
   "limitSendViewsCount": {
-    "message": "$ACCESSCOUNT$ views left",
+    "message": "$ACCESSCOUNT$ visningar kvar",
     "description": "Displayed under the limit views field on Send",
     "placeholders": {
       "accessCount": {
@@ -2697,14 +2703,14 @@
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendDetails": {
-    "message": "Send details",
+    "message": "Skicka information",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendTypeText": {
     "message": "Text"
   },
   "sendTypeTextToShare": {
-    "message": "Text to share"
+    "message": "Text att dela"
   },
   "sendTypeFile": {
     "message": "Fil"
@@ -2714,11 +2720,11 @@
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "maxAccessCountReached": {
-    "message": "Max access count reached",
+    "message": "Max antal åtkomster har uppnåtts",
     "description": "This text will be displayed after a Send has been accessed the maximum amount of times."
   },
   "hideTextByDefault": {
-    "message": "Hide text by default"
+    "message": "Dölj text som standard"
   },
   "expired": {
     "message": "Utgången"
@@ -2765,7 +2771,7 @@
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "deleteSendPermanentConfirmation": {
-    "message": "Are you sure you want to permanently delete this Send?",
+    "message": "Är du säker på att du vill ta bort det här meddelandet permanent?",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "editSend": {
@@ -2776,7 +2782,7 @@
     "message": "Raderingsdatum"
   },
   "deletionDateDescV2": {
-    "message": "The Send will be permanently deleted on this date.",
+    "message": "Sändningen kommer att raderas permanent på detta datum.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "expirationDate": {
@@ -2798,7 +2804,7 @@
     "message": "Anpassad"
   },
   "sendPasswordDescV3": {
-    "message": "Add an optional password for recipients to access this Send.",
+    "message": "Lägg till ett valfritt lösenord för att mottagarna ska få åtkomst till detta meddelande.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "createSend": {
@@ -2821,15 +2827,15 @@
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "createdSendSuccessfully": {
-    "message": "Send created successfully!",
+    "message": "Skicka skapad framgångsrikt!",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendExpiresInHoursSingle": {
-    "message": "The Send will be available to anyone with the link for the next 1 hour.",
+    "message": "Sändningen kommer att vara tillgänglig för alla med länken under den kommande 1 timmen.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendExpiresInHours": {
-    "message": "The Send will be available to anyone with the link for the next $HOURS$ hours.",
+    "message": "Sändningen kommer att vara tillgänglig för alla som har länken under de närmaste $HOURS$ timmarna.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated.",
     "placeholders": {
       "hours": {
@@ -2839,11 +2845,11 @@
     }
   },
   "sendExpiresInDaysSingle": {
-    "message": "The Send will be available to anyone with the link for the next 1 day.",
+    "message": "Sändningen kommer att vara tillgänglig för alla som har länken under den kommande 1 dagen.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendExpiresInDays": {
-    "message": "The Send will be available to anyone with the link for the next $DAYS$ days.",
+    "message": "Send kommer att vara tillgänglig för alla som har länken under de närmaste $DAYS$-dagarna.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated.",
     "placeholders": {
       "days": {
@@ -2853,7 +2859,7 @@
     }
   },
   "sendLinkCopied": {
-    "message": "Send link copied",
+    "message": "Skicka länk kopierad",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "editedSend": {
@@ -2861,11 +2867,11 @@
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendFilePopoutDialogText": {
-    "message": "Pop out extension?",
+    "message": "Pop out-förlängning?",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendFilePopoutDialogDesc": {
-    "message": "To create a file Send, you need to pop out the extension to a new window.",
+    "message": "För att skapa en fil Skicka, måste du popa ut förlängningen till ett nytt fönster.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendLinuxChromiumFileWarning": {
@@ -2878,7 +2884,7 @@
     "message": "För att välja en fil med Safari, öppna ett nytt fönster genom att klicka på denna banner."
   },
   "popOut": {
-    "message": "Pop out"
+    "message": "Popa ut"
   },
   "sendFileCalloutHeader": {
     "message": "Innan du börjar"
@@ -2899,7 +2905,7 @@
     "message": "Det gick inte att spara raderings- och utgångsdatum."
   },
   "hideYourEmail": {
-    "message": "Hide your email address from viewers."
+    "message": "Dölj din e-postadress från tittarna."
   },
   "passwordPrompt": {
     "message": "Återupprepa huvudlösenord"
@@ -2920,7 +2926,7 @@
     "message": "Du måste verifiera din e-postadress för att använda den här funktionen. Du kan verifiera din e-postadress i webbvalvet."
   },
   "masterPasswordSuccessfullySet": {
-    "message": "Master password successfully set"
+    "message": "Masterlösenordet har ställts in"
   },
   "updatedMasterPassword": {
     "message": "Huvudlösenord uppdaterades"
@@ -2935,7 +2941,7 @@
     "message": "Ditt huvudlösenord följer inte ett eller flera av din organisations regler. För att komma åt ditt valv så måste du ändra ditt huvudlösenord nu. Om du gör det kommer du att loggas du ut ur din nuvarande session så du måste logga in på nytt. Aktiva sessioner på andra enheter kommer fortsatt vara aktiva i upp till en timme."
   },
   "tdeDisabledMasterPasswordRequired": {
-    "message": "Your organization has disabled trusted device encryption. Please set a master password to access your vault."
+    "message": "Din organisation har inaktiverat betrodd enhetskryptering. Ange ett huvudlösenord för att komma åt ditt valv."
   },
   "resetPasswordPolicyAutoEnroll": {
     "message": "Automatiskt deltagande"
@@ -2978,10 +2984,10 @@
     "message": "Minuter"
   },
   "vaultTimeoutPolicyAffectingOptions": {
-    "message": "Enterprise policy requirements have been applied to your timeout options"
+    "message": "Företagets policykrav har tillämpats på dina timeout-alternativ"
   },
   "vaultTimeoutPolicyInEffect": {
-    "message": "Dina organisationsprinciper påverkar ditt valvs tid för timeout. Maximal tillåten tid innan timeout är $HOURS$ timmar och $MINUTES$ minuter",
+    "message": "Dina organisationsprinciper påverkar ditt valvs tid för timeout. Maximal tillåten tid innan timeout är $HOURS$ timmar och $MINUTES$ minuter.",
     "placeholders": {
       "hours": {
         "content": "$1",
@@ -2994,7 +3000,7 @@
     }
   },
   "vaultTimeoutPolicyInEffect1": {
-    "message": "$HOURS$ hour(s) and $MINUTES$ minute(s) maximum.",
+    "message": "$HOURS$ timme(n) och $MINUTES$ minut(er) maximalt.",
     "placeholders": {
       "hours": {
         "content": "$1",
@@ -3007,7 +3013,7 @@
     }
   },
   "vaultTimeoutPolicyMaximumError": {
-    "message": "Timeout exceeds the restriction set by your organization: $HOURS$ hour(s) and $MINUTES$ minute(s) maximum",
+    "message": "Tidsgränsen överskrider den begränsning som har fastställts av din organisation: $HOURS$ timme(n) och $MINUTES$ minut(er) max",
     "placeholders": {
       "hours": {
         "content": "$1",
@@ -3020,7 +3026,7 @@
     }
   },
   "vaultTimeoutPolicyWithActionInEffect": {
-    "message": "Your organization policies are affecting your vault timeout. Maximum allowed vault timeout is $HOURS$ hour(s) and $MINUTES$ minute(s). Your vault timeout action is set to $ACTION$.",
+    "message": "Din organisations policyer påverkar valvets timeout. Högsta tillåtna timeout för valvet är $HOURS$ timme(n) och $MINUTES$ minut(er). Åtgärden för valvets timeout är inställd på $ACTION$.",
     "placeholders": {
       "hours": {
         "content": "$1",
@@ -3037,7 +3043,7 @@
     }
   },
   "vaultTimeoutActionPolicyInEffect": {
-    "message": "Your organization policies have set your vault timeout action to $ACTION$.",
+    "message": "I organisationens policyer har timeoutåtgärden för valvet ställts in på $ACTION$.",
     "placeholders": {
       "action": {
         "content": "$1",
@@ -3061,13 +3067,13 @@
     "message": "Ingen unik identifierare hittades."
   },
   "removeMasterPasswordForOrganizationUserKeyConnector": {
-    "message": "A master password is no longer required for members of the following organization. Please confirm the domain below with your organization administrator."
+    "message": "Ett huvudlösenord krävs inte längre för medlemmar i följande organisation. Vänligen bekräfta domänen nedan med din organisationsadministratör."
   },
   "organizationName": {
     "message": "Organisationsnamn"
   },
   "keyConnectorDomain": {
-    "message": "Key Connector domain"
+    "message": "Key Connector-domän"
   },
   "leaveOrganization": {
     "message": "Lämna organisation"
@@ -3094,7 +3100,7 @@
     "message": "Exporterar individuellt valv"
   },
   "exportingIndividualVaultDescription": {
-    "message": "Only the individual vault items associated with $EMAIL$ will be exported. Organization vault items will not be included. Only vault item information will be exported and will not include associated attachments.",
+    "message": "Endast de enskilda valvobjekt som är associerade med $EMAIL$ exporteras. Valvobjekt för organisationer kommer inte att inkluderas. Endast information om valvobjektet exporteras och inkluderar inte tillhörande bilagor.",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3103,7 +3109,7 @@
     }
   },
   "exportingIndividualVaultWithAttachmentsDescription": {
-    "message": "Only the individual vault items including attachments associated with $EMAIL$ will be exported. Organization vault items will not be included",
+    "message": "Endast de enskilda valvobjekten inklusive bilagor som är associerade med $EMAIL$ exporteras. Organisationens valvobjekt kommer inte att inkluderas",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3112,10 +3118,10 @@
     }
   },
   "exportingOrganizationVaultTitle": {
-    "message": "Exporting organization vault"
+    "message": "Exportera organisationsvalv"
   },
   "exportingOrganizationVaultDesc": {
-    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "message": "Endast det organisationsvalv som är associerat med $ORGANISATION$ exporteras. Objekt i enskilda valv eller andra organisationer kommer inte att inkluderas.",
     "placeholders": {
       "organization": {
         "content": "$1",
@@ -3127,24 +3133,24 @@
     "message": "Fel"
   },
   "decryptionError": {
-    "message": "Decryption error"
+    "message": "Dekrypteringsfel"
   },
   "couldNotDecryptVaultItemsBelow": {
-    "message": "Bitwarden could not decrypt the vault item(s) listed below."
+    "message": "Bitwarden kunde inte dekryptera valvföremålet/valvföremålen som listas nedan."
   },
   "contactCSToAvoidDataLossPart1": {
-    "message": "Contact customer success",
+    "message": "Kontakta kundtjänst",
     "description": "This is part of a larger sentence. The full sentence will read 'Contact customer success to avoid additional data loss.'"
   },
   "contactCSToAvoidDataLossPart2": {
-    "message": "to avoid additional data loss.",
+    "message": "för att undvika ytterligare dataförlust.",
     "description": "This is part of a larger sentence. The full sentence will read 'Contact customer success to avoid additional data loss.'"
   },
   "generateUsername": {
     "message": "Generera användarnamn"
   },
   "generateEmail": {
-    "message": "Generate email"
+    "message": "Generera e-post"
   },
   "spinboxBoundariesHint": {
     "message": "Värde måste vara mellan $MIN$ och $MAX$.",
@@ -3216,7 +3222,7 @@
     "description": "Labels the domain name email forwarder service option"
   },
   "forwarderDomainNameHint": {
-    "message": "Choose a domain that is supported by the selected service",
+    "message": "Välj en domän som stöds av den valda tjänsten",
     "description": "Guidance provided for email forwarding services that support multiple email domains."
   },
   "forwarderError": {
@@ -3272,7 +3278,7 @@
     }
   },
   "forwaderInvalidOperation": {
-    "message": "$SERVICENAME$ refused your request. Please contact your service provider for assistance.",
+    "message": "$SERVICENAME$ avvisade din begäran. Vänligen kontakta din tjänsteleverantör för hjälp.",
     "description": "Displayed when the user is forbidden from using the API by the forwarding service.",
     "placeholders": {
       "servicename": {
@@ -3282,7 +3288,7 @@
     }
   },
   "forwaderInvalidOperationWithMessage": {
-    "message": "$SERVICENAME$ refused your request: $ERRORMESSAGE$",
+    "message": "$SERVICENAME$ avvisade din begäran: $ERRORMESSAGE$",
     "description": "Displayed when the user is forbidden from using the API by the forwarding service with an error message.",
     "placeholders": {
       "servicename": {
@@ -3296,7 +3302,7 @@
     }
   },
   "forwarderNoAccountId": {
-    "message": "Unable to obtain $SERVICENAME$ masked email account ID.",
+    "message": "Det gick inte att få $SERVICENAME$ maskerat ID för e-postkonto.",
     "description": "Displayed when the forwarding service fails to return an account ID.",
     "placeholders": {
       "servicename": {
@@ -3326,7 +3332,7 @@
     }
   },
   "forwarderUnknownError": {
-    "message": "Unknown $SERVICENAME$ error occurred.",
+    "message": "Okänt $SERVICENAME$-fel inträffade.",
     "description": "Displayed when the forwarding service failed due to an unknown error.",
     "placeholders": {
       "servicename": {
@@ -3336,7 +3342,7 @@
     }
   },
   "forwarderUnknownForwarder": {
-    "message": "Unknown forwarder: '$SERVICENAME$'.",
+    "message": "Okänd vidarebefordrare: '$SERVICENAMN$'.",
     "description": "Displayed when the forwarding service is not supported.",
     "placeholders": {
       "servicename": {
@@ -3431,28 +3437,31 @@
     "message": "En avisering har skickats till din enhet."
   },
   "notificationSentDevicePart1": {
-    "message": "Unlock Bitwarden on your device or on the"
+    "message": "Lås upp Bitwarden på din enhet eller på"
   },
   "notificationSentDeviceAnchor": {
-    "message": "web app"
+    "message": "webbapp"
   },
   "notificationSentDevicePart2": {
-    "message": "Make sure the Fingerprint phrase matches the one below before approving."
+    "message": "Kontrollera att fingeravtrycksfrasen stämmer överens med den nedan innan du godkänner."
   },
   "aNotificationWasSentToYourDevice": {
-    "message": "A notification was sent to your device"
+    "message": "Ett meddelande har skickats till din enhet"
   },
   "youWillBeNotifiedOnceTheRequestIsApproved": {
-    "message": "You will be notified once the request is approved"
+    "message": "Du kommer att få ett meddelande när begäran har godkänts"
   },
   "needAnotherOptionV1": {
-    "message": "Need another option?"
+    "message": "Behöver du ett annat alternativ?"
   },
   "loginInitiated": {
     "message": "Inloggning påbörjad"
   },
   "logInRequestSent": {
-    "message": "Request sent"
+    "message": "Begäran skickad"
+  },
+  "masterPasswordChanged": {
+    "message": "Huvudlösenordet sparades"
   },
   "exposedMasterPassword": {
     "message": "Huvudlösenordet har exponerats"
@@ -3491,7 +3500,7 @@
     "message": "Hur du fyller i automatiskt"
   },
   "autofillSelectInfoWithCommand": {
-    "message": "Select an item from this screen, use the shortcut $COMMAND$, or explore other options in settings.",
+    "message": "Välj ett objekt från den här skärmen, använd genvägen $COMMAND$ eller utforska andra alternativ i inställningarna.",
     "placeholders": {
       "command": {
         "content": "$1",
@@ -3500,7 +3509,7 @@
     }
   },
   "autofillSelectInfoWithoutCommand": {
-    "message": "Select an item from this screen, or explore other options in settings."
+    "message": "Välj ett objekt från den här skärmen eller utforska andra alternativ i inställningarna."
   },
   "gotIt": {
     "message": "Förstått"
@@ -3524,7 +3533,7 @@
     "message": "Kortkommandot för autofyll av inloggning är inte inställt. Du kan ändra det i webbläsarens inställningar."
   },
   "autofillLoginShortcutText": {
-    "message": "The autofill login shortcut is $COMMAND$. Manage all shortcuts in the browser's settings.",
+    "message": "Genvägen för autofyll-inloggning är $COMMAND$. Hantera alla genvägar i webbläsarens inställningar.",
     "placeholders": {
       "command": {
         "content": "$1",
@@ -3545,22 +3554,22 @@
     "message": "Öppnas i ett nytt fönster"
   },
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
-    "message": "Remember this device to make future logins seamless"
+    "message": "Kom ihåg den här enheten för att göra framtida inloggningar smidiga"
   },
   "deviceApprovalRequired": {
-    "message": "Device approval required. Select an approval option below:"
+    "message": "Godkännande av enhet krävs. Välj ett alternativ för godkännande nedan:"
   },
   "deviceApprovalRequiredV2": {
-    "message": "Device approval required"
+    "message": "Godkännande av utrustning krävs"
   },
   "selectAnApprovalOptionBelow": {
-    "message": "Select an approval option below"
+    "message": "Välj ett godkännandealternativ nedan"
   },
   "rememberThisDevice": {
     "message": "Kom ihåg denna enhet"
   },
   "uncheckIfPublicDevice": {
-    "message": "Uncheck if using a public device"
+    "message": "Avmarkera om du använder en offentlig enhet"
   },
   "approveFromYourOtherDevice": {
     "message": "Godkänn från din andra enhet"
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Be om godkännande från administratör"
   },
+  "unableToCompleteLogin": {
+    "message": "Kunde inte slutföra inloggningen"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "Du måste logga in på en betrodd enhet eller fråga din administratör att tilldela dig ett lösenord."
+  },
   "ssoIdentifierRequired": {
     "message": "Organisationens SSO-identifierare krävs."
   },
@@ -3581,7 +3596,7 @@
     "message": "Följ länken i e-postmeddelandet som skickats till"
   },
   "andContinueCreatingYourAccount": {
-    "message": "and continue creating your account."
+    "message": "och fortsätt att skapa ditt konto."
   },
   "noEmail": {
     "message": "Ingen e-post?"
@@ -3603,7 +3618,7 @@
     "message": "Allmänt"
   },
   "display": {
-    "message": "Display"
+    "message": "Visa"
   },
   "accountSuccessfullyCreated": {
     "message": "Ditt konto har skapats!"
@@ -3624,41 +3639,41 @@
     "message": "Användarens e-postadress saknas"
   },
   "activeUserEmailNotFoundLoggingYouOut": {
-    "message": "Active user email not found. Logging you out."
+    "message": "E-postadressen för aktiv användare hittades inte. Loggar ut dig."
   },
   "deviceTrusted": {
     "message": "Enhet betrodd"
   },
   "trustOrganization": {
-    "message": "Trust organization"
+    "message": "Lita på organisation"
   },
   "trust": {
-    "message": "Trust"
+    "message": "Förtroende"
   },
   "doNotTrust": {
-    "message": "Do not trust"
+    "message": "Lita inte på"
   },
   "organizationNotTrusted": {
-    "message": "Organization is not trusted"
+    "message": "Organisationen är inte betrodd"
   },
   "emergencyAccessTrustWarning": {
-    "message": "For the security of your account, only confirm if you have granted emergency access to this user and their fingerprint matches what is displayed in their account"
+    "message": "För att skydda ditt konto ska du bara bekräfta om du har beviljat nödåtkomst till den här användaren och om fingeravtrycket matchar det som visas på användarens konto"
   },
   "orgTrustWarning": {
-    "message": "For the security of your account, only proceed if you are a member of this organization, have account recovery enabled, and the fingerprint displayed below matches the organization's fingerprint."
+    "message": "För att skydda ditt konto ska du bara fortsätta om du är medlem i den här organisationen, har aktiverat kontoåterställning och om det fingeravtryck som visas nedan matchar organisationens fingeravtryck."
   },
   "orgTrustWarning1": {
-    "message": "This organization has an Enterprise policy that will enroll you in account recovery. Enrollment will allow organization administrators to change your password. Only proceed if you recognize this organization and the fingerprint phrase displayed below matches the organization's fingerprint."
+    "message": "Den här organisationen har en företagspolicy som gör att du kan anmäla dig till kontoåterställning. Registreringen gör det möjligt för organisationens administratörer att ändra ditt lösenord. Fortsätt bara om du känner igen den här organisationen och om fingeravtrycksfrasen som visas nedan matchar organisationens fingeravtryck."
   },
   "trustUser": {
-    "message": "Trust user"
+    "message": "Lita på användare"
   },
   "sendsTitleNoItems": {
-    "message": "Send sensitive information safely",
+    "message": "Skicka känslig information på ett säkert sätt",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendsBodyNoItems": {
-    "message": "Share files and data securely with anyone, on any platform. Your information will remain end-to-end encrypted while limiting exposure.",
+    "message": "Dela filer och data på ett säkert sätt med vem som helst, på vilken plattform som helst. Din information kommer att förbli krypterad från början till slut samtidigt som exponeringen begränsas.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "inputRequired": {
@@ -3680,7 +3695,7 @@
     }
   },
   "inputMaxLength": {
-    "message": "Input must not exceed $COUNT$ characters in length.",
+    "message": "Inmatningen får inte vara längre än $COUNT$ tecken.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -3698,7 +3713,7 @@
     }
   },
   "inputMinValue": {
-    "message": "Input value must be at least $MIN$.",
+    "message": "Inmatningsvärdet måste vara minst $MIN$.",
     "placeholders": {
       "min": {
         "content": "$1",
@@ -3707,7 +3722,7 @@
     }
   },
   "inputMaxValue": {
-    "message": "Input value must not exceed $MAX$.",
+    "message": "Inmatningsvärdet får inte överstiga $MAX$.",
     "placeholders": {
       "max": {
         "content": "$1",
@@ -3719,7 +3734,7 @@
     "message": "En eller flera e-postadresser är ogiltiga"
   },
   "inputTrimValidator": {
-    "message": "Input must not contain only whitespace.",
+    "message": "Inmatningen får inte innehålla enbart blanksteg.",
     "description": "Notification to inform the user that a form's input can't contain only whitespace."
   },
   "inputEmail": {
@@ -3735,10 +3750,10 @@
     }
   },
   "singleFieldNeedsAttention": {
-    "message": "1 field needs your attention."
+    "message": "1 fält behöver din uppmärksamhet."
   },
   "multipleFieldsNeedAttention": {
-    "message": "$COUNT$ fields need your attention.",
+    "message": "$COUNT$-fälten behöver din uppmärksamhet.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -3793,7 +3808,7 @@
     "description": "Message appearing below the autofill on load message when master password reprompt is set for a vault item."
   },
   "toggleSideNavigation": {
-    "message": "Toggle side navigation"
+    "message": "Växla sidonavigering"
   },
   "skipToContent": {
     "message": "Hoppa till innehåll"
@@ -3823,15 +3838,15 @@
     "description": "Button text to display in overlay when the account is locked."
   },
   "unlockAccountAria": {
-    "message": "Unlock your account, opens in a new window",
+    "message": "Lås upp ditt konto, öppnas i ett nytt fönster",
     "description": "Screen reader text (aria-label) for unlock account button in overlay"
   },
   "totpCodeAria": {
-    "message": "Time-based One-Time Password Verification Code",
+    "message": "Tidsbaserat engångslösenord Verifieringskod",
     "description": "Aria label for the totp code displayed in the inline menu for autofill"
   },
   "totpSecondsSpanAria": {
-    "message": "Time remaining before current TOTP expires",
+    "message": "Återstående tid innan aktuell TOTP löper ut",
     "description": "Aria label for the totp seconds displayed in the inline menu for autofill"
   },
   "fillCredentialsFor": {
@@ -3839,7 +3854,7 @@
     "description": "Screen reader text for when overlay item is in focused"
   },
   "partialUsername": {
-    "message": "Partial username",
+    "message": "Delvis användarnamn",
     "description": "Screen reader text for when a login item is focused where a partial username is displayed. SR will announce this phrase before reading the text of the partial username"
   },
   "noItemsToShow": {
@@ -3859,7 +3874,7 @@
     "description": "Button text to display within inline menu when there are no matching items on a login field"
   },
   "addNewLoginItemAria": {
-    "message": "Add new vault login item, opens in a new window",
+    "message": "Lägg till nytt valvinloggningsobjekt, öppnas i ett nytt fönster",
     "description": "Screen reader text (aria-label) for new login button within inline menu"
   },
   "newCard": {
@@ -3867,7 +3882,7 @@
     "description": "Button text to display within inline menu when there are no matching items on a credit card field"
   },
   "addNewCardItemAria": {
-    "message": "Add new vault card item, opens in a new window",
+    "message": "Lägg till ny valvkortsartikel, öppnas i nytt fönster",
     "description": "Screen reader text (aria-label) for new card button within inline menu"
   },
   "newIdentity": {
@@ -3875,7 +3890,7 @@
     "description": "Button text to display within inline menu when there are no matching items on an identity field"
   },
   "addNewIdentityItemAria": {
-    "message": "Add new vault identity item, opens in a new window",
+    "message": "Lägg till ny valvidentitetsartikel, öppnas i nytt fönster",
     "description": "Screen reader text (aria-label) for new identity button within inline menu"
   },
   "bitwardenOverlayMenuAvailable": {
@@ -3965,13 +3980,13 @@
     }
   },
   "duoHealthCheckResultsInNullAuthUrlError": {
-    "message": "Error connecting with the Duo service. Use a different two-step login method or contact Duo for assistance."
+    "message": "Fel vid anslutning till Duo-tjänsten. Använd en annan tvåstegsinloggningsmetod eller kontakta Duo för hjälp."
   },
   "duoRequiredForAccount": {
-    "message": "Duo two-step login is required for your account."
+    "message": "Tvåstegsinloggning med Duo krävs för ditt konto."
   },
   "popoutExtension": {
-    "message": "Popout extension"
+    "message": "Popout-förlängning"
   },
   "launchDuo": {
     "message": "Starta Duo"
@@ -4001,7 +4016,7 @@
     "message": "Välj en samling"
   },
   "importTargetHint": {
-    "message": "Select this option if you want the imported file contents moved to a $DESTINATION$",
+    "message": "Välj det här alternativet om du vill att innehållet i den importerade filen ska flyttas till en $DESTINATION$",
     "description": "Located as a hint under the import target. Will be appended by either folder or collection, depending if the user is importing into an individual or an organizational vault.",
     "placeholders": {
       "destination": {
@@ -4048,16 +4063,16 @@
     "message": "Bekräfta fillösenord"
   },
   "exportSuccess": {
-    "message": "Vault data exported"
+    "message": "Valvdata exporteras"
   },
   "typePasskey": {
     "message": "Nyckel"
   },
   "accessing": {
-    "message": "Accessing"
+    "message": "Åtkomst"
   },
   "loggedInExclamation": {
-    "message": "Logged in!"
+    "message": "Inloggad!"
   },
   "passkeyNotCopied": {
     "message": "Lösennyckeln kommer inte kopieras"
@@ -4081,7 +4096,7 @@
     "message": "Det finns ingen matchande inloggning för denna webbplats."
   },
   "noMatchingLoginsForSite": {
-    "message": "No matching logins for this site"
+    "message": "Inga matchande inloggningar för denna webbplats"
   },
   "searchSavePasskeyNewLogin": {
     "message": "Sök eller spara nyckel som ny inloggning"
@@ -4096,10 +4111,10 @@
     "message": "Spara nyckel som ny inloggning"
   },
   "chooseCipherForPasskeySave": {
-    "message": "Choose a login to save this passkey to"
+    "message": "Välj en inloggning som du vill spara nyckeln till"
   },
   "chooseCipherForPasskeyAuth": {
-    "message": "Choose a passkey to log in with"
+    "message": "Välj en lösenordskod att logga in med"
   },
   "passkeyItem": {
     "message": "Lösennyckelobjekt"
@@ -4165,10 +4180,10 @@
     "message": "LastPass autentisering krävs"
   },
   "awaitingSSO": {
-    "message": "Awaiting SSO authentication"
+    "message": "Väntar på SSO-autentisering"
   },
   "awaitingSSODesc": {
-    "message": "Please continue to log in using your company credentials."
+    "message": "Fortsätt att logga in med dina företagsuppgifter."
   },
   "seeDetailedInstructions": {
     "message": "Se detaljerade instruktioner på vår hjälpsida på",
@@ -4181,7 +4196,7 @@
     "message": "Importera från CSV"
   },
   "lastPassTryAgainCheckEmail": {
-    "message": "Try again or look for an email from LastPass to verify it's you."
+    "message": "Försök igen eller leta efter ett e-postmeddelande från LastPass för att verifiera att det är du."
   },
   "collection": {
     "message": "Samling"
@@ -4202,13 +4217,13 @@
     "message": "Aktivt konto"
   },
   "bitwardenAccount": {
-    "message": "Bitwarden account"
+    "message": "Bitwarden-konto"
   },
   "availableAccounts": {
     "message": "Tillgängliga konton"
   },
   "accountLimitReached": {
-    "message": "Account limit reached. Log out of an account to add another."
+    "message": "Kontogränsen har nåtts. Logga ut från ett konto för att lägga till ett annat."
   },
   "active": {
     "message": "aktiv"
@@ -4223,7 +4238,7 @@
     "message": "server"
   },
   "hostedAt": {
-    "message": "hosted at"
+    "message": "värd på"
   },
   "useDeviceOrHardwareKey": {
     "message": "Använd din enhet eller hårdvarunyckel"
@@ -4235,7 +4250,7 @@
     "message": "Alltid för denna webbplats"
   },
   "domainAddedToExcludedDomains": {
-    "message": "$DOMAIN$ added to excluded domains.",
+    "message": "$DOMAIN$ tillagd till uteslutna domäner.",
     "placeholders": {
       "domain": {
         "content": "$1",
@@ -4248,27 +4263,27 @@
     "description": "Label indicating the most common import formats"
   },
   "uriMatchDefaultStrategyHint": {
-    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "message": "Detektering av URI-matchning är hur Bitwarden identifierar autofyllförslag.",
     "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
   },
   "regExAdvancedOptionWarning": {
-    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "message": "\"Reguljär uttryck\" är ett avancerat alternativ med ökad risk för att röja inloggningsuppgifter.",
     "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
   },
   "startsWithAdvancedOptionWarning": {
-    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "message": "\"Börjar med\" är ett avancerat alternativ med ökad risk för att röja inloggningsuppgifter.",
     "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
   },
   "uriMatchWarningDialogLink": {
-    "message": "More about match detection",
+    "message": "Mer om matchdetektering",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
   "uriAdvancedOption": {
-    "message": "Advanced options",
+    "message": "Avancerade inställningar",
     "description": "Advanced option placeholder for uri option component"
   },
   "confirmContinueToBrowserSettingsTitle": {
-    "message": "Continue to browser settings?",
+    "message": "Fortsätt till webbläsarinställningar?",
     "description": "Title for dialog which asks if the user wants to proceed to a relevant browser settings page"
   },
   "confirmContinueToHelpCenter": {
@@ -4276,19 +4291,19 @@
     "description": "Title for dialog which asks if the user wants to proceed to a relevant Help Center page"
   },
   "confirmContinueToHelpCenterPasswordManagementContent": {
-    "message": "Change your browser's autofill and password management settings.",
+    "message": "Ändra inställningarna för autofyll och lösenordshantering i din webbläsare.",
     "description": "Body content for dialog which asks if the user wants to proceed to the Help Center's page about browser password management settings"
   },
   "confirmContinueToHelpCenterKeyboardShortcutsContent": {
-    "message": "You can view and set extension shortcuts in your browser's settings.",
+    "message": "Du kan se och ställa in genvägar för tillägg i webbläsarens inställningar.",
     "description": "Body content for dialog which asks if the user wants to proceed to the Help Center's page about browser keyboard shortcut settings"
   },
   "confirmContinueToBrowserPasswordManagementSettingsContent": {
-    "message": "Change your browser's autofill and password management settings.",
+    "message": "Ändra inställningarna för autofyll och lösenordshantering i din webbläsare.",
     "description": "Body content for dialog which asks if the user wants to proceed to the browser's password management settings page"
   },
   "confirmContinueToBrowserKeyboardShortcutSettingsContent": {
-    "message": "You can view and set extension shortcuts in your browser's settings.",
+    "message": "Du kan se och ställa in genvägar för tillägg i webbläsarens inställningar.",
     "description": "Body content for dialog which asks if the user wants to proceed to the browser's keyboard shortcut settings page"
   },
   "overrideDefaultBrowserAutofillTitle": {
@@ -4304,11 +4319,11 @@
     "description": "Label for the setting that allows overriding the default browser autofill settings"
   },
   "privacyPermissionAdditionNotGrantedTitle": {
-    "message": "Unable to set Bitwarden as the default password manager",
+    "message": "Det går inte att ställa in Bitwarden som standardlösenordshanterare",
     "description": "Title for the dialog that appears when the user has not granted the extension permission to set privacy settings"
   },
   "privacyPermissionAdditionNotGrantedDescription": {
-    "message": "You must grant browser privacy permissions to Bitwarden to set it as the default password manager.",
+    "message": "Du måste ge Bitwarden sekretessbehörighet för webbläsaren för att kunna ange den som standardlösenordshanterare.",
     "description": "Description for the dialog that appears when the user has not granted the extension permission to set privacy settings"
   },
   "makeDefault": {
@@ -4316,27 +4331,27 @@
     "description": "Button text for the setting that allows overriding the default browser autofill settings"
   },
   "saveCipherAttemptSuccess": {
-    "message": "Credentials saved successfully!",
+    "message": "Legitimationen har sparats framgångsrikt!",
     "description": "Notification message for when saving credentials has succeeded."
   },
   "passwordSaved": {
-    "message": "Password saved!",
+    "message": "Lösenordet sparat!",
     "description": "Notification message for when saving credentials has succeeded."
   },
   "updateCipherAttemptSuccess": {
-    "message": "Credentials updated successfully!",
+    "message": "Legitimationen har uppdaterats!",
     "description": "Notification message for when updating credentials has succeeded."
   },
   "passwordUpdated": {
-    "message": "Password updated!",
+    "message": "Lösenord uppdaterat!",
     "description": "Notification message for when updating credentials has succeeded."
   },
   "saveCipherAttemptFailed": {
-    "message": "Error saving credentials. Check console for details.",
+    "message": "Fel vid sparande av inloggningsuppgifter. Kontrollera konsolen för detaljer.",
     "description": "Notification message for when saving credentials has failed."
   },
   "success": {
-    "message": "Success"
+    "message": "Lyckades"
   },
   "removePasskey": {
     "message": "Ta bort passkey"
@@ -4348,7 +4363,7 @@
     "message": "Förslag för autofyll"
   },
   "itemSuggestions": {
-    "message": "Suggested items"
+    "message": "Föreslagna föremål"
   },
   "autofillSuggestionsTip": {
     "message": "Spara ett inloggningsobjekt för den här webbplatsen för autofyll"
@@ -4360,10 +4375,10 @@
     "message": "Inga objekt matchar din sökning"
   },
   "clearFiltersOrTryAnother": {
-    "message": "Clear filters or try another search term"
+    "message": "Rensa filter eller försök med en annan sökterm"
   },
   "copyInfoTitle": {
-    "message": "Copy info - $ITEMNAME$",
+    "message": "Kopiera information - $ITEMNAME$",
     "description": "Title for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
       "itemname": {
@@ -4383,7 +4398,7 @@
     }
   },
   "moreOptionsLabel": {
-    "message": "More options, $ITEMNAME$",
+    "message": "Fler alternativ, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
       "itemname": {
@@ -4393,7 +4408,7 @@
     }
   },
   "moreOptionsTitle": {
-    "message": "More options - $ITEMNAME$",
+    "message": "Fler alternativ - $ITEMNAME$",
     "description": "Title for a button that opens a menu with more options for an item.",
     "placeholders": {
       "itemname": {
@@ -4413,7 +4428,7 @@
     }
   },
   "viewItemTitleWithField": {
-    "message": "View item - $ITEMNAME$ - $FIELD$",
+    "message": "Visa objekt - $ITEMNAME$ - $FIELD$",
     "description": "Title for a link that opens a view for an item.",
     "placeholders": {
       "itemname": {
@@ -4427,7 +4442,7 @@
     }
   },
   "autofillTitle": {
-    "message": "Autofill - $ITEMNAME$",
+    "message": "Autofyll - $ITEMNAME$",
     "description": "Title for a button that autofills a login item.",
     "placeholders": {
       "itemname": {
@@ -4437,7 +4452,7 @@
     }
   },
   "autofillTitleWithField": {
-    "message": "Autofill - $ITEMNAME$ - $FIELD$",
+    "message": "Autofyll - $ITEMNAME$ - $FIELD$",
     "description": "Title for a button that autofills a login item.",
     "placeholders": {
       "itemname": {
@@ -4451,7 +4466,7 @@
     }
   },
   "copyFieldValue": {
-    "message": "Copy $FIELD$, $VALUE$",
+    "message": "Kopiera $FIELD$, $VALUE$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
@@ -4465,10 +4480,10 @@
     }
   },
   "noValuesToCopy": {
-    "message": "No values to copy"
+    "message": "Inga värden att kopiera"
   },
   "assignToCollections": {
-    "message": "Assign to collections"
+    "message": "Tilldela till samlingar"
   },
   "copyEmail": {
     "message": "Kopiera e-postadress"
@@ -4480,7 +4495,7 @@
     "message": "Kopiera adress"
   },
   "adminConsole": {
-    "message": "Admin Console"
+    "message": "Adminkonsol"
   },
   "accountSecurity": {
     "message": "Kontosäkerhet"
@@ -4492,10 +4507,10 @@
     "message": "Utseende"
   },
   "errorAssigningTargetCollection": {
-    "message": "Error assigning target collection."
+    "message": "Fel vid tilldelning av målsamling."
   },
   "errorAssigningTargetFolder": {
-    "message": "Error assigning target folder."
+    "message": "Fel vid tilldelning av målmapp."
   },
   "viewItemsIn": {
     "message": "Visa objekt i $NAME$",
@@ -4540,7 +4555,7 @@
     "message": "Objektnamn"
   },
   "organizationIsDeactivated": {
-    "message": "Organization is deactivated"
+    "message": "Organisationen är avaktiverad"
   },
   "owner": {
     "message": "Ägare"
@@ -4550,7 +4565,7 @@
     "description": "Used as a label to indicate that the user is the owner of an item."
   },
   "contactYourOrgAdmin": {
-    "message": "Items in deactivated organizations cannot be accessed. Contact your organization owner for assistance."
+    "message": "Det går inte att komma åt objekt i inaktiverade organisationer. Kontakta din organisationsägare för hjälp."
   },
   "additionalInformation": {
     "message": "Ytterligare information"
@@ -4559,16 +4574,16 @@
     "message": "Objekthistorik"
   },
   "lastEdited": {
-    "message": "Last edited"
+    "message": "Senast ändrat"
   },
   "ownerYou": {
     "message": "Ägare: Du"
   },
   "linked": {
-    "message": "Linked"
+    "message": "Länkad"
   },
   "copySuccessful": {
-    "message": "Copy Successful"
+    "message": "Kopiering lyckades"
   },
   "upload": {
     "message": "Ladda upp"
@@ -4598,52 +4613,52 @@
     }
   },
   "downloadBitwarden": {
-    "message": "Download Bitwarden"
+    "message": "Ladda ner Bitwarden"
   },
   "downloadBitwardenOnAllDevices": {
-    "message": "Download Bitwarden on all devices"
+    "message": "Ladda ner Bitwarden på alla enheter"
   },
   "getTheMobileApp": {
-    "message": "Get the mobile app"
+    "message": "Hämta mobilappen"
   },
   "getTheMobileAppDesc": {
-    "message": "Access your passwords on the go with the Bitwarden mobile app."
+    "message": "Få tillgång till dina lösenord när du är på språng med Bitwardens mobilapp."
   },
   "getTheDesktopApp": {
-    "message": "Get the desktop app"
+    "message": "Hämta skrivbordsappen"
   },
   "getTheDesktopAppDesc": {
-    "message": "Access your vault without a browser, then set up unlock with biometrics to expedite unlocking in both the desktop app and browser extension."
+    "message": "Öppna ditt valv utan en webbläsare och ställ sedan in upplåsning med biometri för att påskynda upplåsningen i både skrivbordsappen och webbläsartillägget."
   },
   "downloadFromBitwardenNow": {
-    "message": "Download from bitwarden.com now"
+    "message": "Ladda ner från bitwarden.com nu"
   },
   "getItOnGooglePlay": {
-    "message": "Get it on Google Play"
+    "message": "Hämta den på Google Play"
   },
   "downloadOnTheAppStore": {
-    "message": "Download on the App Store"
+    "message": "Ladda ner på App Store"
   },
   "permanentlyDeleteAttachmentConfirmation": {
-    "message": "Are you sure you want to permanently delete this attachment?"
+    "message": "Är du säker på att du vill radera den här bilagan permanent?"
   },
   "premium": {
     "message": "Premium"
   },
   "freeOrgsCannotUseAttachments": {
-    "message": "Free organizations cannot use attachments"
+    "message": "Fria organisationer kan inte använda bilagor"
   },
   "filters": {
-    "message": "Filters"
+    "message": "Filter"
   },
   "filterVault": {
     "message": "Filtrera valv"
   },
   "filterApplied": {
-    "message": "One filter applied"
+    "message": "Ett filter tillämpat"
   },
   "filterAppliedPlural": {
-    "message": "$COUNT$ filters applied",
+    "message": "$COUNT$ filter tillämpas",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -4661,7 +4676,7 @@
     "message": "Kontaktuppgifter"
   },
   "downloadAttachment": {
-    "message": "Download - $ITEMNAME$",
+    "message": "Ladda ner - $ITEMNAME$",
     "placeholders": {
       "itemname": {
         "content": "$1",
@@ -4670,7 +4685,7 @@
     }
   },
   "cardNumberEndsWith": {
-    "message": "card number ends with",
+    "message": "kortnummer slutar med",
     "description": "Used within the inline menu to provide an aria description when users are attempting to fill a card cipher."
   },
   "loginCredentials": {
@@ -4696,7 +4711,7 @@
     }
   },
   "websiteAdded": {
-    "message": "Website added"
+    "message": "Webbplats tillagd"
   },
   "addWebsite": {
     "message": "Lägg till webbplats"
@@ -4715,7 +4730,7 @@
     }
   },
   "showMatchDetection": {
-    "message": "Show match detection $WEBSITE$",
+    "message": "Visa matchningsdetektering $WEBSITE",
     "placeholders": {
       "website": {
         "content": "$1",
@@ -4724,7 +4739,7 @@
     }
   },
   "hideMatchDetection": {
-    "message": "Hide match detection $WEBSITE$",
+    "message": "Detektering av dold matchning $WEBSITE$",
     "placeholders": {
       "website": {
         "content": "$1",
@@ -4733,19 +4748,19 @@
     }
   },
   "autoFillOnPageLoad": {
-    "message": "Autofill on page load?"
+    "message": "Autofyll vid sidladdning?"
   },
   "cardExpiredTitle": {
-    "message": "Expired card"
+    "message": "Utgått kort"
   },
   "cardExpiredMessage": {
-    "message": "If you've renewed it, update the card's information"
+    "message": "Om du har förnyat kortet ska du uppdatera kortinformationen"
   },
   "cardDetails": {
-    "message": "Card details"
+    "message": "Begär kort"
   },
   "cardBrandDetails": {
-    "message": "$BRAND$ details",
+    "message": "$BRAND$ detaljer",
     "placeholders": {
       "brand": {
         "content": "$1",
@@ -4784,13 +4799,13 @@
     "message": "Tilldela"
   },
   "bulkCollectionAssignmentDialogDescriptionSingular": {
-    "message": "Only organization members with access to these collections will be able to see the item."
+    "message": "Endast organisationsmedlemmar med tillgång till dessa samlingar kan se objektet."
   },
   "bulkCollectionAssignmentDialogDescriptionPlural": {
-    "message": "Only organization members with access to these collections will be able to see the items."
+    "message": "Endast organisationsmedlemmar med tillgång till dessa samlingar kan se objekten."
   },
   "bulkCollectionAssignmentWarning": {
-    "message": "You have selected $TOTAL_COUNT$ items. You cannot update $READONLY_COUNT$ of the items because you do not have edit permissions.",
+    "message": "Du har valt $TOTAL_COUNT$ artiklar. Du kan inte uppdatera $READONLY_COUNT$ av objekten eftersom du inte har redigeringsbehörighet.",
     "placeholders": {
       "total_count": {
         "content": "$1",
@@ -4820,13 +4835,13 @@
     "message": "Använd dolda fält för känslig data, som t. ex. ett lösenord"
   },
   "checkBoxHelpText": {
-    "message": "Use checkboxes if you'd like to autofill a form's checkbox, like a remember email"
+    "message": "Använd kryssrutor om du vill fylla i en kryssruta i ett formulär automatiskt, t.ex. för att komma ihåg e-post"
   },
   "linkedHelpText": {
-    "message": "Use a linked field when you are experiencing autofill issues for a specific website."
+    "message": "Använd ett länkat fält när du har problem med autofyll för en viss webbplats."
   },
   "linkedLabelHelpText": {
-    "message": "Enter the the field's html id, name, aria-label, or placeholder."
+    "message": "Ange fältets html-id, namn, aria-label eller platshållare."
   },
   "editField": {
     "message": "Redigera fält"
@@ -4850,7 +4865,7 @@
     }
   },
   "fieldAdded": {
-    "message": "$LABEL$ added",
+    "message": "$LABEL$ tillagd",
     "placeholders": {
       "label": {
         "content": "$1",
@@ -4859,7 +4874,7 @@
     }
   },
   "reorderToggleButton": {
-    "message": "Reorder $LABEL$. Use arrow key to move item up or down.",
+    "message": "Ordna om $LABEL$. Använd piltangenten för att flytta objektet uppåt eller nedåt.",
     "placeholders": {
       "label": {
         "content": "$1",
@@ -4868,10 +4883,10 @@
     }
   },
   "reorderWebsiteUriButton": {
-    "message": "Reorder website URI. Use arrow key to move item up or down."
+    "message": "Ordna om webbplatsens URI. Använd piltangenten för att flytta objektet uppåt eller nedåt."
   },
   "reorderFieldUp": {
-    "message": "$LABEL$ moved up, position $INDEX$ of $LENGTH$",
+    "message": "$LABEL$ flyttas upp, position $INDEX$ av $LENGTH$",
     "placeholders": {
       "label": {
         "content": "$1",
@@ -4888,13 +4903,13 @@
     }
   },
   "selectCollectionsToAssign": {
-    "message": "Select collections to assign"
+    "message": "Välj samlingar som ska tilldelas"
   },
   "personalItemTransferWarningSingular": {
-    "message": "1 item will be permanently transferred to the selected organization. You will no longer own this item."
+    "message": "1 objekt kommer att permanent överföras till den valda organisationen. Du kommer inte längre att äga detta objekt."
   },
   "personalItemsTransferWarningPlural": {
-    "message": "$PERSONAL_ITEMS_COUNT$ items will be permanently transferred to the selected organization. You will no longer own these items.",
+    "message": "$PERSONAL_ITEMS_COUNT$ objekt kommer att överföras permanent till den valda organisationen. Du kommer inte längre att äga dessa objekt.",
     "placeholders": {
       "personal_items_count": {
         "content": "$1",
@@ -4903,7 +4918,7 @@
     }
   },
   "personalItemWithOrgTransferWarningSingular": {
-    "message": "1 item will be permanently transferred to $ORG$. You will no longer own this item.",
+    "message": "1 objekt kommer att överföras permanent till $ORG$. Du kommer inte längre att äga det här objektet.",
     "placeholders": {
       "org": {
         "content": "$1",
@@ -4912,7 +4927,7 @@
     }
   },
   "personalItemsWithOrgTransferWarningPlural": {
-    "message": "$PERSONAL_ITEMS_COUNT$ items will be permanently transferred to $ORG$. You will no longer own these items.",
+    "message": "$PERSONAL_ITEMS_COUNT$ objekt kommer att överföras permanent till $ORG$. Du kommer inte längre att äga dessa objekt.",
     "placeholders": {
       "personal_items_count": {
         "content": "$1",
@@ -4925,13 +4940,13 @@
     }
   },
   "successfullyAssignedCollections": {
-    "message": "Successfully assigned collections"
+    "message": "Framgångsrikt tilldelade samlingar"
   },
   "nothingSelected": {
-    "message": "You have not selected anything."
+    "message": "Du har inte valt något."
   },
   "itemsMovedToOrg": {
-    "message": "Items moved to $ORGNAME$",
+    "message": "Objekt flyttade till $ORGNAME$",
     "placeholders": {
       "orgname": {
         "content": "$1",
@@ -4940,7 +4955,7 @@
     }
   },
   "itemMovedToOrg": {
-    "message": "Item moved to $ORGNAME$",
+    "message": "Objektet flyttat till $ORGNAME$",
     "placeholders": {
       "orgname": {
         "content": "$1",
@@ -4949,7 +4964,7 @@
     }
   },
   "reorderFieldDown": {
-    "message": "$LABEL$ moved down, position $INDEX$ of $LENGTH$",
+    "message": "$LABEL$ flyttas ner, position $INDEX$ av $LENGTH$",
     "placeholders": {
       "label": {
         "content": "$1",
@@ -4966,19 +4981,19 @@
     }
   },
   "itemLocation": {
-    "message": "Item Location"
+    "message": "Föremålets placering"
   },
   "fileSend": {
-    "message": "File Send"
+    "message": "Skicka fil"
   },
   "fileSends": {
-    "message": "File Sends"
+    "message": "Skicka filer"
   },
   "textSend": {
-    "message": "Text Send"
+    "message": "Skicka text"
   },
   "textSends": {
-    "message": "Text Sends"
+    "message": "Text skickas"
   },
   "accountActions": {
     "message": "Kontoåtgärder"
@@ -4987,13 +5002,13 @@
     "message": "Visa antal autofyllförslag för inloggning på tilläggsikonen"
   },
   "showQuickCopyActions": {
-    "message": "Show quick copy actions on Vault"
+    "message": "Visa snabbkopieringsåtgärder på Vault"
   },
   "systemDefault": {
     "message": "Systemstandard"
   },
   "enterprisePolicyRequirementsApplied": {
-    "message": "Enterprise policy requirements have been applied to this setting"
+    "message": "Krav på företagspolicy har tillämpats på denna inställning"
   },
   "sshPrivateKey": {
     "message": "Privat nyckel"
@@ -5023,13 +5038,13 @@
     "message": "Försök igen"
   },
   "vaultCustomTimeoutMinimum": {
-    "message": "Minimum custom timeout is 1 minute."
+    "message": "Minsta anpassade timeout är 1 minut."
   },
   "additionalContentAvailable": {
-    "message": "Additional content is available"
+    "message": "Ytterligare innehåll är tillgängligt"
   },
   "fileSavedToDevice": {
-    "message": "File saved to device. Manage from your device downloads."
+    "message": "Fil sparad till enhet. Hantera nedladdningar från din enhet."
   },
   "showCharacterCount": {
     "message": "Visa antal tecken"
@@ -5038,43 +5053,43 @@
     "message": "Dölj antal tecken"
   },
   "itemsInTrash": {
-    "message": "Items in trash"
+    "message": "Föremål i papperskorgen"
   },
   "noItemsInTrash": {
-    "message": "No items in trash"
+    "message": "Inga objekt i papperskorgen"
   },
   "noItemsInTrashDesc": {
-    "message": "Items you delete will appear here and be permanently deleted after 30 days"
+    "message": "Objekt som du raderar kommer att visas här och raderas permanent efter 30 dagar"
   },
   "trashWarning": {
-    "message": "Items that have been in trash more than 30 days will automatically be deleted"
+    "message": "Objekt som har legat i papperskorgen i mer än 30 dagar raderas automatiskt"
   },
   "restore": {
     "message": "Återställ"
   },
   "deleteForever": {
-    "message": "Delete forever"
+    "message": "Ta bort permanent"
   },
   "noEditPermissions": {
-    "message": "You don't have permission to edit this item"
+    "message": "Du har inte behörighet att redigera detta objekt"
   },
   "biometricsStatusHelptextUnlockNeeded": {
-    "message": "Biometric unlock is unavailable because PIN or password unlock is required first."
+    "message": "Biometrisk upplåsning är inte tillgänglig eftersom upplåsning med PIN-kod eller lösenord krävs först."
   },
   "biometricsStatusHelptextHardwareUnavailable": {
-    "message": "Biometric unlock is currently unavailable."
+    "message": "Biometrisk upplåsning är för närvarande inte tillgänglig."
   },
   "biometricsStatusHelptextAutoSetupNeeded": {
-    "message": "Biometric unlock is unavailable due to misconfigured system files."
+    "message": "Biometrisk upplåsning är inte tillgänglig på grund av felkonfigurerade systemfiler."
   },
   "biometricsStatusHelptextManualSetupNeeded": {
-    "message": "Biometric unlock is unavailable due to misconfigured system files."
+    "message": "Biometrisk upplåsning är inte tillgänglig på grund av felkonfigurerade systemfiler."
   },
   "biometricsStatusHelptextDesktopDisconnected": {
-    "message": "Biometric unlock is unavailable because the Bitwarden desktop app is closed."
+    "message": "Biometrisk upplåsning är inte tillgänglig eftersom Bitwardens skrivbordsapp är stängd."
   },
   "biometricsStatusHelptextNotEnabledInDesktop": {
-    "message": "Biometric unlock is unavailable because it is not enabled for $EMAIL$ in the Bitwarden desktop app.",
+    "message": "Biometrisk upplåsning är inte tillgänglig eftersom den inte är aktiverad för $EMAIL$ i Bitwardens skrivbordsapp.",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -5083,37 +5098,37 @@
     }
   },
   "biometricsStatusHelptextUnavailableReasonUnknown": {
-    "message": "Biometric unlock is currently unavailable for an unknown reason."
+    "message": "Biometrisk upplåsning är för närvarande inte tillgänglig av okänd anledning."
   },
   "unlockVault": {
-    "message": "Unlock your vault in seconds"
+    "message": "Lås upp ditt valv på några sekunder"
   },
   "unlockVaultDesc": {
-    "message": "You can customize your unlock and timeout settings to more quickly access your vault."
+    "message": "Du kan anpassa dina inställningar för upplåsning och timeout för att snabbare komma åt ditt valv."
   },
   "unlockPinSet": {
-    "message": "Unlock PIN set"
+    "message": "Lås upp PIN-koden"
   },
   "unlockWithBiometricSet": {
-    "message": "Unlock with biometrics set"
+    "message": "Lås upp med biometriuppsättning"
   },
   "authenticating": {
-    "message": "Authenticating"
+    "message": "Autentisering"
   },
   "fillGeneratedPassword": {
-    "message": "Fill generated password",
+    "message": "Fyll i genererat lösenord",
     "description": "Heading for the password generator within the inline menu"
   },
   "passwordRegenerated": {
-    "message": "Password regenerated",
+    "message": "Lösenord förnyat",
     "description": "Notification message for when a password has been regenerated"
   },
   "saveToBitwarden": {
-    "message": "Save to Bitwarden",
+    "message": "Spara till Bitwarden",
     "description": "Confirmation message for saving a login to Bitwarden"
   },
   "spaceCharacterDescriptor": {
-    "message": "Space",
+    "message": "Mellanslag",
     "description": "Represents the space key in screen reader content as a readable word"
   },
   "tildeCharacterDescriptor": {
@@ -5121,7 +5136,7 @@
     "description": "Represents the ~ key in screen reader content as a readable word"
   },
   "backtickCharacterDescriptor": {
-    "message": "Backtick",
+    "message": "Bakvänd apostrof",
     "description": "Represents the ` key in screen reader content as a readable word"
   },
   "exclamationCharacterDescriptor": {
@@ -5129,27 +5144,27 @@
     "description": "Represents the ! key in screen reader content as a readable word"
   },
   "atSignCharacterDescriptor": {
-    "message": "At sign",
+    "message": "Vid skylt",
     "description": "Represents the @ key in screen reader content as a readable word"
   },
   "hashSignCharacterDescriptor": {
-    "message": "Hash sign",
+    "message": "Hash-tecken",
     "description": "Represents the # key in screen reader content as a readable word"
   },
   "dollarSignCharacterDescriptor": {
-    "message": "Dollar sign",
+    "message": "Dollartecken",
     "description": "Represents the $ key in screen reader content as a readable word"
   },
   "percentSignCharacterDescriptor": {
-    "message": "Percent sign",
+    "message": "Procenttecken",
     "description": "Represents the % key in screen reader content as a readable word"
   },
   "caretCharacterDescriptor": {
-    "message": "Caret",
+    "message": "Cirkumflex",
     "description": "Represents the ^ key in screen reader content as a readable word"
   },
   "ampersandCharacterDescriptor": {
-    "message": "Ampersand",
+    "message": "Och",
     "description": "Represents the & key in screen reader content as a readable word"
   },
   "asteriskCharacterDescriptor": {
@@ -5157,19 +5172,19 @@
     "description": "Represents the * key in screen reader content as a readable word"
   },
   "parenLeftCharacterDescriptor": {
-    "message": "Left parenthesis",
+    "message": "Vänster parentes",
     "description": "Represents the ( key in screen reader content as a readable word"
   },
   "parenRightCharacterDescriptor": {
-    "message": "Right parenthesis",
+    "message": "Höger parentes",
     "description": "Represents the ) key in screen reader content as a readable word"
   },
   "hyphenCharacterDescriptor": {
-    "message": "Underscore",
+    "message": "Understreck",
     "description": "Represents the _ key in screen reader content as a readable word"
   },
   "underscoreCharacterDescriptor": {
-    "message": "Hyphen",
+    "message": "Bindestreck",
     "description": "Represents the - key in screen reader content as a readable word"
   },
   "plusCharacterDescriptor": {
@@ -5177,23 +5192,23 @@
     "description": "Represents the + key in screen reader content as a readable word"
   },
   "equalsCharacterDescriptor": {
-    "message": "Equals",
+    "message": "Lika med",
     "description": "Represents the = key in screen reader content as a readable word"
   },
   "braceLeftCharacterDescriptor": {
-    "message": "Left brace",
+    "message": "Vänster stag",
     "description": "Represents the { key in screen reader content as a readable word"
   },
   "braceRightCharacterDescriptor": {
-    "message": "Right brace",
+    "message": "Höger stag",
     "description": "Represents the } key in screen reader content as a readable word"
   },
   "bracketLeftCharacterDescriptor": {
-    "message": "Left bracket",
+    "message": "Vänster konsol",
     "description": "Represents the [ key in screen reader content as a readable word"
   },
   "bracketRightCharacterDescriptor": {
-    "message": "Right bracket",
+    "message": "Höger konsol",
     "description": "Represents the ] key in screen reader content as a readable word"
   },
   "pipeCharacterDescriptor": {
@@ -5201,39 +5216,39 @@
     "description": "Represents the | key in screen reader content as a readable word"
   },
   "backSlashCharacterDescriptor": {
-    "message": "Back slash",
+    "message": "Bakvänt snedstreck",
     "description": "Represents the back slash key in screen reader content as a readable word"
   },
   "colonCharacterDescriptor": {
-    "message": "Colon",
+    "message": "Kolon",
     "description": "Represents the : key in screen reader content as a readable word"
   },
   "semicolonCharacterDescriptor": {
-    "message": "Semicolon",
+    "message": "Semikolon",
     "description": "Represents the ; key in screen reader content as a readable word"
   },
   "doubleQuoteCharacterDescriptor": {
-    "message": "Double quote",
+    "message": "Dubbla citat",
     "description": "Represents the double quote key in screen reader content as a readable word"
   },
   "singleQuoteCharacterDescriptor": {
-    "message": "Single quote",
+    "message": "Enstaka offert",
     "description": "Represents the ' key in screen reader content as a readable word"
   },
   "lessThanCharacterDescriptor": {
-    "message": "Less than",
+    "message": "Mindre än",
     "description": "Represents the < key in screen reader content as a readable word"
   },
   "greaterThanCharacterDescriptor": {
-    "message": "Greater than",
+    "message": "Större än",
     "description": "Represents the > key in screen reader content as a readable word"
   },
   "commaCharacterDescriptor": {
-    "message": "Comma",
+    "message": "Komma",
     "description": "Represents the , key in screen reader content as a readable word"
   },
   "periodCharacterDescriptor": {
-    "message": "Period",
+    "message": "Punkt",
     "description": "Represents the . key in screen reader content as a readable word"
   },
   "questionCharacterDescriptor": {
@@ -5241,7 +5256,7 @@
     "description": "Represents the ? key in screen reader content as a readable word"
   },
   "forwardSlashCharacterDescriptor": {
-    "message": "Forward slash",
+    "message": "Framåtriktat snedstreck",
     "description": "Represents the / key in screen reader content as a readable word"
   },
   "lowercaseAriaLabel": {
@@ -5251,52 +5266,52 @@
     "message": "Versal"
   },
   "generatedPassword": {
-    "message": "Generated password"
+    "message": "Genererat lösenord"
   },
   "compactMode": {
-    "message": "Compact mode"
+    "message": "Kompakt läge"
   },
   "beta": {
     "message": "Beta"
   },
   "extensionWidth": {
-    "message": "Extension width"
+    "message": "Förlängning bredd"
   },
   "wide": {
-    "message": "Wide"
+    "message": "Bred"
   },
   "extraWide": {
-    "message": "Extra wide"
+    "message": "Extra bred"
   },
   "sshKeyWrongPassword": {
-    "message": "The password you entered is incorrect."
+    "message": "Lösenordet du har angett är felaktigt."
   },
   "importSshKey": {
-    "message": "Import"
+    "message": "Importera"
   },
   "confirmSshKeyPassword": {
-    "message": "Confirm password"
+    "message": "Bekräfta lösenord"
   },
   "enterSshKeyPasswordDesc": {
-    "message": "Enter the password for the SSH key."
+    "message": "Ange lösenordet för SSH-nyckeln."
   },
   "enterSshKeyPassword": {
-    "message": "Enter password"
+    "message": "Ange lösenord"
   },
   "invalidSshKey": {
-    "message": "The SSH key is invalid"
+    "message": "SSH-nyckeln är ogiltig"
   },
   "sshKeyTypeUnsupported": {
-    "message": "The SSH key type is not supported"
+    "message": "SSH-nyckeltypen stöds inte"
   },
   "importSshKeyFromClipboard": {
-    "message": "Import key from clipboard"
+    "message": "Importera nyckel från urklipp"
   },
   "sshKeyImported": {
-    "message": "SSH key imported successfully"
+    "message": "SSH-nyckel importerad framgångsrikt"
   },
   "cannotRemoveViewOnlyCollections": {
-    "message": "You cannot remove collections with View only permissions: $COLLECTIONS$",
+    "message": "Du kan inte ta bort samlingar med behörigheten Visa endast: $COLLECTIONS$",
     "placeholders": {
       "collections": {
         "content": "$1",
@@ -5305,81 +5320,81 @@
     }
   },
   "updateDesktopAppOrDisableFingerprintDialogTitle": {
-    "message": "Please update your desktop application"
+    "message": "Uppdatera din desktop-applikation"
   },
   "updateDesktopAppOrDisableFingerprintDialogMessage": {
-    "message": "To use biometric unlock, please update your desktop application, or disable fingerprint unlock in the desktop settings."
+    "message": "Om du vill använda biometrisk upplåsning måste du uppdatera din skrivbordsapplikation eller inaktivera fingeravtrycksupplåsning i skrivbordsinställningarna."
   },
   "changeAtRiskPassword": {
-    "message": "Change at-risk password"
+    "message": "Ändra lösenord för riskgrupper"
   },
   "settingsVaultOptions": {
-    "message": "Vault options"
+    "message": "Alternativ för valv"
   },
   "emptyVaultDescription": {
-    "message": "The vault protects more than just your passwords. Store secure logins, IDs, cards and notes securely here."
+    "message": "Valvet skyddar mer än bara dina lösenord. Förvara säkra inloggningar, ID-handlingar, kort och anteckningar säkert här."
   },
   "introCarouselLabel": {
-    "message": "Welcome to Bitwarden"
+    "message": "Välkommen till Bitwarden"
   },
   "securityPrioritized": {
-    "message": "Security, prioritized"
+    "message": "Säkerhet, prioriterad"
   },
   "securityPrioritizedBody": {
-    "message": "Save logins, cards, and identities to your secure vault. Bitwarden uses zero-knowledge, end-to-end encryption to protect what’s important to you."
+    "message": "Spara inloggningar, kort och identiteter i ditt säkra valv. Bitwarden använder nollkännedom, end-to-end-kryptering för att skydda det som är viktigt för dig."
   },
   "quickLogin": {
-    "message": "Quick and easy login"
+    "message": "Snabb och enkel inloggning"
   },
   "quickLoginBody": {
-    "message": "Set up biometric unlock and autofill to log into your accounts without typing a single letter."
+    "message": "Ställ in biometrisk upplåsning och autofyll för att logga in på dina konton utan att skriva en enda bokstav."
   },
   "secureUser": {
-    "message": "Level up your logins"
+    "message": "Höj nivån på dina inloggningar"
   },
   "secureUserBody": {
-    "message": "Use the generator to create and save strong, unique passwords for all your accounts."
+    "message": "Använd generatorn för att skapa och spara starka, unika lösenord för alla dina konton."
   },
   "secureDevices": {
-    "message": "Your data, when and where you need it"
+    "message": "Dina data, när och där du behöver dem"
   },
   "secureDevicesBody": {
-    "message": "Save unlimited passwords across unlimited devices with Bitwarden mobile, browser, and desktop apps."
+    "message": "Spara obegränsat antal lösenord på obegränsat antal enheter med Bitwardens mobil-, webbläsar- och skrivbordsappar."
   },
   "nudgeBadgeAria": {
-    "message": "1 notification"
+    "message": "1 meddelande"
   },
   "emptyVaultNudgeTitle": {
-    "message": "Import existing passwords"
+    "message": "Importera befintliga lösenord"
   },
   "emptyVaultNudgeBody": {
-    "message": "Use the importer to quickly transfer logins to Bitwarden without manually adding them."
+    "message": "Använd importören för att snabbt överföra inloggningar till Bitwarden utan att lägga till dem manuellt."
   },
   "emptyVaultNudgeButton": {
-    "message": "Import now"
+    "message": "Importera nu"
   },
   "hasItemsVaultNudgeTitle": {
-    "message": "Welcome to your vault!"
+    "message": "Välkommen till ditt valv!"
   },
   "hasItemsVaultNudgeBodyOne": {
-    "message": "Autofill items for the current page"
+    "message": "Autofyll objekt för den aktuella sidan"
   },
   "hasItemsVaultNudgeBodyTwo": {
-    "message": "Favorite items for easy access"
+    "message": "Favoritartiklar för enkel åtkomst"
   },
   "hasItemsVaultNudgeBodyThree": {
-    "message": "Search your vault for something else"
+    "message": "Sök i ditt valv efter något annat"
   },
   "newLoginNudgeTitle": {
-    "message": "Save time with autofill"
+    "message": "Spara tid med autofyll"
   },
   "newLoginNudgeBodyOne": {
-    "message": "Include a",
+    "message": "Inkludera ett",
     "description": "This is in multiple parts to allow for bold text in the middle of the sentence.",
     "example": "Include a Website so this login appears as an autofill suggestion."
   },
   "newLoginNudgeBodyBold": {
-    "message": "Website",
+    "message": "Webbplats",
     "description": "This is in multiple parts to allow for bold text in the middle of the sentence.",
     "example": "Include a Website so this login appears as an autofill suggestion."
   },
@@ -5389,58 +5404,58 @@
     "example": "Include a Website so this login appears as an autofill suggestion."
   },
   "newCardNudgeTitle": {
-    "message": "Seamless online checkout"
+    "message": "Sömlös utcheckning online"
   },
   "newCardNudgeBody": {
-    "message": "With cards, easily autofill payment forms securely and accurately."
+    "message": "Med kort kan du enkelt autofylla betalningsformulär på ett säkert och exakt sätt."
   },
   "newIdentityNudgeTitle": {
-    "message": "Simplify creating accounts"
+    "message": "Förenkla skapandet av konton"
   },
   "newIdentityNudgeBody": {
-    "message": "With identities, quickly autofill long registration or contact forms."
+    "message": "Med identiteter kan du snabbt autofylla långa registrerings- eller kontaktformulär."
   },
   "newNoteNudgeTitle": {
-    "message": "Keep your sensitive data safe"
+    "message": "Håll dina känsliga uppgifter säkra"
   },
   "newNoteNudgeBody": {
-    "message": "With notes, securely store sensitive data like banking or insurance details."
+    "message": "Med anteckningar kan du säkert lagra känslig information som bank- eller försäkringsuppgifter."
   },
   "newSshNudgeTitle": {
-    "message": "Developer-friendly SSH access"
+    "message": "Utvecklarvänlig SSH-åtkomst"
   },
   "newSshNudgeBodyOne": {
-    "message": "Store your keys and connect with the SSH agent for fast, encrypted authentication.",
+    "message": "Förvara dina nycklar och anslut till SSH-agenten för snabb, krypterad autentisering.",
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
   "newSshNudgeBodyTwo": {
-    "message": "Learn more about SSH agent",
+    "message": "Läs mer om SSH-agent",
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
   "generatorNudgeTitle": {
-    "message": "Quickly create passwords"
+    "message": "Skapa lösenord snabbt"
   },
   "generatorNudgeBodyOne": {
-    "message": "Easily create strong and unique passwords by clicking on",
+    "message": "Skapa enkelt starka och unika lösenord genom att klicka på",
     "description": "Two part message",
     "example": "Easily create strong and unique passwords by clicking on {icon} to help you keep your logins secure."
   },
   "generatorNudgeBodyTwo": {
-    "message": "to help you keep your logins secure.",
+    "message": "för att hjälpa dig att hålla dina inloggningar säkra.",
     "description": "Two part message",
     "example": "Easily create strong and unique passwords by clicking on {icon} to help you keep your logins secure."
   },
   "generatorNudgeBodyAria": {
-    "message": "Easily create strong and unique passwords by clicking on the Generate password button to help you keep your logins secure.",
+    "message": "Skapa enkelt starka och unika lösenord genom att klicka på knappen Generera lösenord så att du kan hålla dina inloggningar säkra.",
     "description": "Aria label for the body content of the generator nudge"
   },
   "noPermissionsViewPage": {
-    "message": "You do not have permissions to view this page. Try logging in with a different account."
+    "message": "Du har inte behörighet att visa den här sidan. Försök att logga in med ett annat konto."
   },
   "wasmNotSupported": {
-    "message": "WebAssembly is not supported on your browser or is not enabled. WebAssembly is required to use the Bitwarden app.",
+    "message": "WebAssembly stöds inte av din webbläsare eller är inte aktiverat. WebAssembly krävs för att använda Bitwarden-appen.",
     "description": "'WebAssembly' is a technical term and should not be translated."
   }
 }
diff --git a/apps/browser/src/_locales/te/messages.json b/apps/browser/src/_locales/te/messages.json
index 45dc3215966..ecc7da63e79 100644
--- a/apps/browser/src/_locales/te/messages.json
+++ b/apps/browser/src/_locales/te/messages.json
@@ -1173,6 +1173,12 @@
     "message": "Oh no! We couldn't save this. Try entering the details manually.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
   "enableChangedPasswordNotification": {
     "message": "Ask to update existing login"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "masterPasswordChanged": {
+    "message": "Master password saved"
+  },
   "exposedMasterPassword": {
     "message": "Exposed Master Password"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "ssoIdentifierRequired": {
     "message": "Organization SSO identifier is required."
   },
diff --git a/apps/browser/src/_locales/th/messages.json b/apps/browser/src/_locales/th/messages.json
index 84130e006ba..c085b7557e0 100644
--- a/apps/browser/src/_locales/th/messages.json
+++ b/apps/browser/src/_locales/th/messages.json
@@ -1173,6 +1173,12 @@
     "message": "Oh no! We couldn't save this. Try entering the details manually.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
   "enableChangedPasswordNotification": {
     "message": "ขอให้ปรับปรุงการเข้าสู่ระบบที่มีอยู่"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "masterPasswordChanged": {
+    "message": "Master password saved"
+  },
   "exposedMasterPassword": {
     "message": "Exposed Master Password"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "ssoIdentifierRequired": {
     "message": "Organization SSO identifier is required."
   },
diff --git a/apps/browser/src/_locales/tr/messages.json b/apps/browser/src/_locales/tr/messages.json
index f523df3c8d4..5dae8dfcdc4 100644
--- a/apps/browser/src/_locales/tr/messages.json
+++ b/apps/browser/src/_locales/tr/messages.json
@@ -1173,6 +1173,12 @@
     "message": "Bu hesabı kaydedemedik. Bilgileri elle girmeyi deneyin.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "Parolanızı değiştirdikten sonra yeni parolanızyla tekrar giriş yapmanız gerekecektir. Diğer cihazlarınızdaki aktif oturumlar bir saat içinde kapatılacaktır."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Hesap kurtarmayı tamamlamak için ana parolanızı değiştirin."
+  },
   "enableChangedPasswordNotification": {
     "message": "Mevcut hesapları güncellemeyi öner"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "İstek gönderildi"
   },
+  "masterPasswordChanged": {
+    "message": "Ana parola kaydedildi"
+  },
   "exposedMasterPassword": {
     "message": "Açığa Çıkmış Ana Parola"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Yönetici onayı iste"
   },
+  "unableToCompleteLogin": {
+    "message": "Oturum açma tamamlanamadı"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "Güvenilen bir cihazdan oturum açmalı veya yöneticinizden size parola atamasını istemelisiniz."
+  },
   "ssoIdentifierRequired": {
     "message": "Kuruluş SSO tanımlayıcısı gereklidir."
   },
diff --git a/apps/browser/src/_locales/uk/messages.json b/apps/browser/src/_locales/uk/messages.json
index e7d5d0dbdc8..5a7a42d3c84 100644
--- a/apps/browser/src/_locales/uk/messages.json
+++ b/apps/browser/src/_locales/uk/messages.json
@@ -1173,6 +1173,12 @@
     "message": "На жаль, не вдається зберегти. Введіть дані вручну.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
   "enableChangedPasswordNotification": {
     "message": "Запитувати про оновлення запису"
   },
@@ -2045,7 +2051,7 @@
     "message": "Починається з"
   },
   "regEx": {
-    "message": "Звичайний вираз",
+    "message": "Регулярний вираз",
     "description": "A programming term, also known as 'RegEx'."
   },
   "matchDetection": {
@@ -2488,10 +2494,10 @@
     "message": "Політика організації заблокувала імпортування записів до вашого особистого сховища."
   },
   "restrictCardTypeImport": {
-    "message": "Cannot import card item types"
+    "message": "Не вдається імпортувати записи карток"
   },
   "restrictCardTypeImportDesc": {
-    "message": "A policy set by 1 or more organizations prevents you from importing cards to your vaults."
+    "message": "Політика принаймні однієї організації не дозволяє вам імпортувати записи карток до сховища."
   },
   "domainsTitle": {
     "message": "Домени",
@@ -2920,7 +2926,7 @@
     "message": "Для використання цієї функції необхідно підтвердити електронну пошту. Ви можете виконати підтвердження у вебсховищі."
   },
   "masterPasswordSuccessfullySet": {
-    "message": "Master password successfully set"
+    "message": "Головний пароль успішно встановлено"
   },
   "updatedMasterPassword": {
     "message": "Головний пароль оновлено"
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "Запит надіслано"
   },
+  "masterPasswordChanged": {
+    "message": "Master password saved"
+  },
   "exposedMasterPassword": {
     "message": "Головний пароль викрито"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Запит підтвердження адміністратора"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "ssoIdentifierRequired": {
     "message": "Потрібен SSO-ідентифікатор організації."
   },
@@ -4248,23 +4263,23 @@
     "description": "Label indicating the most common import formats"
   },
   "uriMatchDefaultStrategyHint": {
-    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "message": "Виявлення збігів URI – це спосіб ідентифікації пропозицій автозаповнення Bitwarden.",
     "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
   },
   "regExAdvancedOptionWarning": {
-    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "message": "Регулярний вираз – це функція, що має підвищений ризик розкриття облікових даних, призначена для досвідчених користувачів.",
     "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
   },
   "startsWithAdvancedOptionWarning": {
-    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "message": "\"Починається з\" – це функція, що має підвищений ризик розкриття облікових даних, призначена для досвідчених користувачів.",
     "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
   },
   "uriMatchWarningDialogLink": {
-    "message": "More about match detection",
+    "message": "Докладніше про виявлення збігів",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
   "uriAdvancedOption": {
-    "message": "Advanced options",
+    "message": "Додаткові налаштування",
     "description": "Advanced option placeholder for uri option component"
   },
   "confirmContinueToBrowserSettingsTitle": {
@@ -5095,7 +5110,7 @@
     "message": "Розблокування PIN-кодом встановлено"
   },
   "unlockWithBiometricSet": {
-    "message": "Unlock with biometrics set"
+    "message": "Біометричне розблокування налаштовано"
   },
   "authenticating": {
     "message": "Аутентифікація"
diff --git a/apps/browser/src/_locales/vi/messages.json b/apps/browser/src/_locales/vi/messages.json
index b979680cd81..5dbd200a0a0 100644
--- a/apps/browser/src/_locales/vi/messages.json
+++ b/apps/browser/src/_locales/vi/messages.json
@@ -10,7 +10,7 @@
     "description": "Extension name, MUST be less than 40 characters (Safari restriction)"
   },
   "extDesc": {
-    "message": "Ở nhà, ở cơ quan, hay trên đường đi, Bitwarden sẽ bảo mật tất cả mật khẩu, mã khoá, và thông tin cá nhân của bạn",
+    "message": "Ở nhà, ở cơ quan hay khi di chuyển, Bitwarden sẽ bảo vệ tất cả mật khẩu, mã khóa và thông tin cá nhân của bạn",
     "description": "Extension description, MUST be less than 112 characters (Safari restriction)"
   },
   "loginOrCreateNewAccount": {
@@ -23,22 +23,22 @@
     "message": "Tạo tài khoản"
   },
   "newToBitwarden": {
-    "message": "New to Bitwarden?"
+    "message": "Bạn mới sử dụng Bitwarden?"
   },
   "logInWithPasskey": {
-    "message": "Log in with passkey"
+    "message": "Đăng nhập bằng khóa truy cập"
   },
   "useSingleSignOn": {
-    "message": "Use single sign-on"
+    "message": "Dùng đăng nhập một lần"
   },
   "welcomeBack": {
-    "message": "Welcome back"
+    "message": "Chào mừng bạn trở lại"
   },
   "setAStrongPassword": {
-    "message": "Đặt mật khẩu mạnh"
+    "message": "Đặt một mật khẩu mạnh"
   },
   "finishCreatingYourAccountBySettingAPassword": {
-    "message": "Hoàn thành việc tạo tài khoản của bạn bằng cách đặt mật khẩu"
+    "message": "Hoàn tất việc tạo tài khoản bằng cách đặt mật khẩu"
   },
   "enterpriseSingleSignOn": {
     "message": "Đăng nhập bằng tài khoản tổ chức"
@@ -84,7 +84,7 @@
     "message": "Gợi ý mật khẩu chính (tùy chọn)"
   },
   "passwordStrengthScore": {
-    "message": "Password strength score $SCORE$",
+    "message": "Độ mạnh của mật khẩu $SCORE$",
     "placeholders": {
       "score": {
         "content": "$1",
@@ -96,7 +96,7 @@
     "message": "Tham gia tổ chức"
   },
   "joinOrganizationName": {
-    "message": "Join $ORGANIZATIONNAME$",
+    "message": "Tham gia $ORGANIZATIONNAME$",
     "placeholders": {
       "organizationName": {
         "content": "$1",
@@ -132,13 +132,13 @@
     "message": "Sao chép mật khẩu"
   },
   "copyPassphrase": {
-    "message": "Copy passphrase"
+    "message": "Sao chép cụm mật khẩu"
   },
   "copyNote": {
     "message": "Sao chép ghi chú"
   },
   "copyUri": {
-    "message": "Sao chép URI"
+    "message": "Sao chép đường dẫn"
   },
   "copyUsername": {
     "message": "Sao chép tên người dùng"
@@ -153,10 +153,10 @@
     "message": "Sao chép tên"
   },
   "copyCompany": {
-    "message": "Copy company"
+    "message": "Sao chép công ty"
   },
   "copySSN": {
-    "message": "Số bảo hiểm xã hội"
+    "message": "Sao chép số bảo hiểm xã hội"
   },
   "copyPassportNumber": {
     "message": "Sao chép số hộ chiếu"
@@ -165,16 +165,16 @@
     "message": "Sao chép số giấy phép"
   },
   "copyPrivateKey": {
-    "message": "Copy private key"
+    "message": "Sao chép khóa riêng tư"
   },
   "copyPublicKey": {
-    "message": "Copy public key"
+    "message": "Sao chép khóa công khai"
   },
   "copyFingerprint": {
-    "message": "Copy fingerprint"
+    "message": "Sao chép vân tay"
   },
   "copyCustomField": {
-    "message": "Copy $FIELD$",
+    "message": "Sao chép $FIELD$",
     "placeholders": {
       "field": {
         "content": "$1",
@@ -183,17 +183,17 @@
     }
   },
   "copyWebsite": {
-    "message": "Copy website"
+    "message": "Sao chép trang web"
   },
   "copyNotes": {
-    "message": "Copy notes"
+    "message": "Sao chép ghi chú"
   },
   "copy": {
-    "message": "Copy",
+    "message": "Sao chép",
     "description": "Copy to clipboard"
   },
   "fill": {
-    "message": "Fill",
+    "message": "Điền",
     "description": "This string is used on the vault page to indicate autofilling. Horizontal space is limited in the interface here so try and keep translations as concise as possible."
   },
   "autoFill": {
@@ -209,10 +209,10 @@
     "message": "Tự động điền danh tính"
   },
   "fillVerificationCode": {
-    "message": "Fill verification code"
+    "message": "Điền mã xác minh"
   },
   "fillVerificationCodeAria": {
-    "message": "Fill Verification Code",
+    "message": "Điền mã xác minh",
     "description": "Aria label for the heading displayed the inline menu for totp code autofill"
   },
   "generatePasswordCopied": {
@@ -222,7 +222,7 @@
     "message": "Sao chép tên trường tùy chỉnh"
   },
   "noMatchingLogins": {
-    "message": "Không có thông tin đăng nhập phù hợp."
+    "message": "Không có thông tin đăng nhập phù hợp"
   },
   "noCards": {
     "message": "Không có thẻ"
@@ -246,7 +246,7 @@
     "message": "Đăng nhập vào kho lưu trữ của bạn"
   },
   "autoFillInfo": {
-    "message": "Không có thông tin đăng nhập nào sẵn có để tự động điền vào tab hiện tại."
+    "message": "Hiện không có thông tin đăng nhập nào để tự động điền vào tab hiện tại."
   },
   "addLogin": {
     "message": "Thêm một đăng nhập"
@@ -255,16 +255,16 @@
     "message": "Thêm mục"
   },
   "accountEmail": {
-    "message": "Account email"
+    "message": "Email tài khoản"
   },
   "requestHint": {
-    "message": "Request hint"
+    "message": "Yêu cầu gợi ý"
   },
   "requestPasswordHint": {
-    "message": "Request password hint"
+    "message": "Yêu cầu gợi ý mật khẩu"
   },
   "enterYourAccountEmailAddressAndYourPasswordHintWillBeSentToYou": {
-    "message": "Enter your account email address and your password hint will be sent to you"
+    "message": "Nhập địa chỉ email tài khoản của bạn và gợi ý mật khẩu sẽ được gửi đến bạn"
   },
   "getMasterPasswordHint": {
     "message": "Nhận gợi ý mật khẩu chính"
@@ -294,7 +294,7 @@
     "message": "Tiếp tục tới ứng dụng web?"
   },
   "continueToWebAppDesc": {
-    "message": "Khám phá thêm các tính năng của tài khoản Bitwarden của bạn trên bản web."
+    "message": "Khám phá thêm các tính năng tài khoản Bitwarden của bạn trên bản web."
   },
   "continueToHelpCenter": {
     "message": "Tiếp tục tới Trung tâm trợ giúp?"
@@ -306,17 +306,17 @@
     "message": "Tiếp tục tới cửa hàng tiện ích mở rộng của trình duyệt?"
   },
   "continueToBrowserExtensionStoreDesc": {
-    "message": "Giúp người khác tìm hiểu xem Bitwarden có phù hợp với họ không. Hãy truy cập cửa hàng tiện ích mở rộng trên trình duyệt của bạn và đánh giá ngay bây giờ."
+    "message": "Giúp người khác tìm hiểu xem Bitwarden có phù hợp với họ không. Truy cập cửa hàng tiện ích mở rộng của trình duyệt và đánh giá ngay bây giờ."
   },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "Bạn có thể thay đổi mật khẩu chính của mình trên Bitwarden bản web."
   },
   "fingerprintPhrase": {
-    "message": "Cụm vân tay",
+    "message": "Cụm từ xác thực",
     "description": "A 'fingerprint phrase' is a unique word phrase (similar to a passphrase) that a user can use to authenticate their public key with another user, for the purposes of sharing."
   },
   "yourAccountsFingerprint": {
-    "message": "Cụm vân tay của tài khoản của bạn",
+    "message": "Cụm từ xác thực tài khoản của bạn",
     "description": "A 'fingerprint phrase' is a unique word phrase (similar to a passphrase) that a user can use to authenticate their public key with another user, for the purposes of sharing."
   },
   "twoStepLogin": {
@@ -341,16 +341,16 @@
     "message": "Bitwarden dành cho Doanh Nghiệp"
   },
   "bitwardenAuthenticator": {
-    "message": "Bitwarden Authenticator"
+    "message": "Trình xác thực Bitwarden"
   },
   "continueToAuthenticatorPageDesc": {
-    "message": "Ứng dụng Bitwarden Authenticator cho phép bạn lưu trữ khóa xác thực và tạo mã TOTP cho quy trình xác minh hai bước. Tìm hiểu thêm trên trang web bitwarden.com"
+    "message": "Trình xác thực Bitwarden cho phép bạn lưu trữ các khóa xác thực và tạo mã TOTP cho quy trình xác thực hai bước. Tìm hiểu thêm trên trang web bitwarden.com"
   },
   "bitwardenSecretsManager": {
-    "message": "Bitwarden Secrets Manager"
+    "message": "Trình quản lý Bí mật Bitwarden"
   },
   "continueToSecretsManagerPageDesc": {
-    "message": "Lưu trữ bảo mật, quản lý và chia sẻ bí mật của nhà phát triển với Bitwarden Secrets Manager. Truy cập bitwarden.com để biết thêm chi tiết."
+    "message": "Lưu trữ, quản lý và chia sẻ các thông tin bí mật của nhà phát triển một cách an toàn với Trình quản lý Bí mật Bitwarden. Tìm hiểu thêm trên trang web bitwarden.com."
   },
   "passwordlessDotDev": {
     "message": "Passwordless.dev"
@@ -359,10 +359,10 @@
     "message": "Tạo trải nghiệm đăng nhập mượt mà và an toàn không cần mật khẩu truyền thống với Passwordless.dev. Tìm hiểu thêm trên trang web bitwarden.com."
   },
   "freeBitwardenFamilies": {
-    "message": "Gói Gia đình Miễn phí của Bitwarden"
+    "message": "Gói Bitwarden cho Gia đình miễn phí"
   },
   "freeBitwardenFamiliesPageDesc": {
-    "message": "Bạn đủ điều kiện cho Gói Gia đình Miễn phí của Bitwarden. Hãy nhận ưu đãi này ngay hôm nay trên ứng dụng web."
+    "message": "Bạn đủ điều kiện miễn phí Gói Bitwarden cho Gia đình. Hãy nhận ưu đãi này ngay hôm nay trên web."
   },
   "version": {
     "message": "Phiên bản"
@@ -383,7 +383,7 @@
     "message": "Chỉnh sửa thư mục"
   },
   "editFolderWithName": {
-    "message": "Edit folder: $FOLDERNAME$",
+    "message": "Sửa thư mục: $FOLDERNAME$",
     "placeholders": {
       "foldername": {
         "content": "$1",
@@ -398,16 +398,16 @@
     "message": "Tên thư mục"
   },
   "folderHintText": {
-    "message": "Nest a folder by adding the parent folder's name followed by a “/”. Example: Social/Forums"
+    "message": "Tạo một thư mục con bằng cách thêm tên thư mục cha theo sau là dấu “/”. Ví dụ: Social/Forums"
   },
   "noFoldersAdded": {
-    "message": "No folders added"
+    "message": "Không thêm thư mục nào"
   },
   "createFoldersToOrganize": {
-    "message": "Create folders to organize your vault items"
+    "message": "Tạo thư mục để tổ chức các mục trong kho của bạn"
   },
   "deleteFolderPermanently": {
-    "message": "Are you sure you want to permanently delete this folder?"
+    "message": "Bạn có chắc muốn xóa vĩnh viễn thư mục này?"
   },
   "deleteFolder": {
     "message": "Xóa thư mục"
@@ -450,7 +450,7 @@
     "message": "Tự động tạo mật khẩu mạnh mẽ, độc nhất cho đăng nhập của bạn."
   },
   "bitWebVaultApp": {
-    "message": "Ứng dụng Bitwarden bản web"
+    "message": "Ứng dụng web Bitwarden"
   },
   "importItems": {
     "message": "Nhập mục"
@@ -462,19 +462,19 @@
     "message": "Tạo mật khẩu"
   },
   "generatePassphrase": {
-    "message": "Generate passphrase"
+    "message": "Tạo cụm mật khẩu"
   },
   "passwordGenerated": {
-    "message": "Password generated"
+    "message": "Đã tạo mật khẩu"
   },
   "passphraseGenerated": {
-    "message": "Passphrase generated"
+    "message": "Đã tạo cụm mật khẩu"
   },
   "usernameGenerated": {
-    "message": "Username generated"
+    "message": "Tên người dùng được tạo tự động"
   },
   "emailGenerated": {
-    "message": "Email generated"
+    "message": "Email được tạo ra"
   },
   "regeneratePassword": {
     "message": "Tạo lại mật khẩu"
@@ -490,7 +490,7 @@
     "description": "Card header for password generator include block"
   },
   "uppercaseDescription": {
-    "message": "Include uppercase characters",
+    "message": "Bao gồm các ký tự viết hoa",
     "description": "Tooltip for the password generator uppercase character checkbox"
   },
   "uppercaseLabel": {
@@ -498,7 +498,7 @@
     "description": "Label for the password generator uppercase character checkbox"
   },
   "lowercaseDescription": {
-    "message": "Include lowercase characters",
+    "message": "Bao gồm các ký tự viết thường",
     "description": "Full description for the password generator lowercase character checkbox"
   },
   "lowercaseLabel": {
@@ -521,7 +521,7 @@
     "message": "Số từ"
   },
   "wordSeparator": {
-    "message": "Word Separator"
+    "message": "Dấu phân cách từ"
   },
   "capitalize": {
     "message": "Viết hoa",
@@ -534,14 +534,14 @@
     "message": "Số kí tự tối thiểu"
   },
   "minSpecial": {
-    "message": "Số kí tự đặc biệt tối thiểu"
+    "message": "Kí tự đặc biệt tối thiểu"
   },
   "avoidAmbiguous": {
-    "message": "Avoid ambiguous characters",
+    "message": "Tránh các ký tự dễ nhầm lẫn",
     "description": "Label for the avoid ambiguous characters checkbox."
   },
   "generatorPolicyInEffect": {
-    "message": "Enterprise policy requirements have been applied to your generator options.",
+    "message": "Các yêu cầu chính sách của doanh nghiệp đã được áp dụng cho các tùy chọn trình tạo của bạn.",
     "description": "Indicates that a policy limits the credential generator screen."
   },
   "searchVault": {
@@ -557,7 +557,7 @@
     "message": "Không có mục nào để liệt kê."
   },
   "itemInformation": {
-    "message": "Mục thông tin"
+    "message": "Thông tin mục"
   },
   "username": {
     "message": "Tên người dùng"
@@ -566,10 +566,10 @@
     "message": "Mật khẩu"
   },
   "totp": {
-    "message": "Khóa xác thực"
+    "message": "Mã xác thực bí mật"
   },
   "passphrase": {
-    "message": "Cụm từ mật khẩu"
+    "message": "Cụm mật khẩu"
   },
   "favorite": {
     "message": "Yêu thích"
@@ -578,16 +578,16 @@
     "message": "Bỏ thích"
   },
   "itemAddedToFavorites": {
-    "message": "Đã thêm vào yêu thích"
+    "message": "Đã thêm mục vào yêu thích"
   },
   "itemRemovedFromFavorites": {
-    "message": "Đã xóa khỏi yêu thích"
+    "message": "Đã xóa mục khỏi yêu thích"
   },
   "notes": {
     "message": "Ghi chú"
   },
   "privateNote": {
-    "message": "Private note"
+    "message": "Ghi chú riêng tư"
   },
   "note": {
     "message": "Ghi chú"
@@ -611,7 +611,7 @@
     "message": "Mở trang web"
   },
   "launchWebsiteName": {
-    "message": "Launch website $ITEMNAME$",
+    "message": "Khởi chạy trang web $ITEMNAME$",
     "placeholders": {
       "itemname": {
         "content": "$1",
@@ -635,16 +635,16 @@
     "message": "Tùy chọn mở khóa"
   },
   "unlockMethodNeededToChangeTimeoutActionDesc": {
-    "message": "Thiết lập phương thức mở khóa để thay đổi hành động hết thời gian chờ của vault."
+    "message": "Thiết lập phương thức mở khóa để thay đổi hành động khi hết thời gian mở kho."
   },
   "unlockMethodNeeded": {
     "message": "Thiết lập phương pháp mở khóa trong Cài đặt"
   },
   "sessionTimeoutHeader": {
-    "message": "Thời gian chờ của phiên"
+    "message": "Khóa kho sau"
   },
   "vaultTimeoutHeader": {
-    "message": "Vault timeout"
+    "message": "Thời gian khóa kho"
   },
   "otherOptions": {
     "message": "Tùy chọn khác"
@@ -656,25 +656,25 @@
     "message": "Trình duyệt web của bạn không hỗ trợ dễ dàng sao chép bộ nhớ tạm. Bạn có thể sao chép nó theo cách thủ công để thay thế."
   },
   "verifyYourIdentity": {
-    "message": "Verify your identity"
+    "message": "Xác minh danh tính của bạn"
   },
   "weDontRecognizeThisDevice": {
-    "message": "We don't recognize this device. Enter the code sent to your email to verify your identity."
+    "message": "Chúng tôi không nhận diện được thiết bị này. Nhập mã được gửi đến email để xác minh danh tính của bạn."
   },
   "continueLoggingIn": {
-    "message": "Continue logging in"
+    "message": "Tiếp tục đăng nhập"
   },
   "yourVaultIsLocked": {
     "message": "Kho của bạn đã bị khóa. Xác minh danh tính của bạn để mở khoá."
   },
   "yourVaultIsLockedV2": {
-    "message": "Your vault is locked"
+    "message": "Kho của bạn đã khóa"
   },
   "yourAccountIsLocked": {
-    "message": "Your account is locked"
+    "message": "Tài khoản của bạn đã bị khóa"
   },
   "or": {
-    "message": "or"
+    "message": "hoặc"
   },
   "unlock": {
     "message": "Mở khóa"
@@ -699,7 +699,7 @@
     "message": "Thời gian chờ của kho"
   },
   "vaultTimeout1": {
-    "message": "Timeout"
+    "message": "Quá hạn"
   },
   "lockNow": {
     "message": "Khóa ngay"
@@ -741,7 +741,7 @@
     "message": "4 giờ"
   },
   "onLocked": {
-    "message": "Mỗi khi khóa"
+    "message": "Mỗi khi khóa máy"
   },
   "onRestart": {
     "message": "Mỗi khi khởi động lại trình duyệt"
@@ -759,7 +759,7 @@
     "message": "Mật khẩu chính"
   },
   "masterPassImportant": {
-    "message": "Mật khẩu chính của bạn không thể phục hồi nếu bạn quên nó!"
+    "message": "Mật khẩu chính của bạn không thể khôi phục nếu bạn quên nó!"
   },
   "masterPassHintLabel": {
     "message": "Gợi ý mật khẩu chính"
@@ -830,7 +830,7 @@
     }
   },
   "autofillError": {
-    "message": "Không thể tự động điền mục đã chọn trên trang này. Hãy thực hiện sao chép và dán thông tin một cách thủ công."
+    "message": "Không thể tự động điền mục đã chọn trên trang này. Vui lòng sao chép và dán thông tin thủ công."
   },
   "totpCaptureError": {
     "message": "Không thể quét mã QR từ trang web hiện tại"
@@ -845,16 +845,16 @@
     "message": "Thực hiện xác minh hai bước liền mạch"
   },
   "totpHelper": {
-    "message": "Bitwarden có thể lưu trữ và điền mã xác minh 2 bước. Sao chép và dán khóa vào trường này."
+    "message": "Bitwarden có thể lưu trữ và điền mã xác thực 2 bước. Sao chép và dán khóa vào ô này."
   },
   "totpHelperWithCapture": {
-    "message": "Bitwarden có thể lưu trữ và điền mã xác minh 2 bước. Hãy chọn biểu tượng máy ảnh để chụp mã QR xác thực của trang web, hoặc sao chép và dán khoá vào ô này."
+    "message": "Bitwarden có thể lưu trữ và điền mã xác minh 2 bước. Hãy chọn biểu tượng máy ảnh để quét mã QR xác thực của trang web, hoặc sao chép và dán khoá vào ô này."
   },
   "learnMoreAboutAuthenticators": {
-    "message": "Learn more about authenticators"
+    "message": "Tìm hiểu thêm về các công cụ xác thực"
   },
   "copyTOTP": {
-    "message": "Sao chép khóa Authenticator (TOTP)"
+    "message": "Sao chép khóa xác thực (TOTP)"
   },
   "loggedOut": {
     "message": "Đã đăng xuất"
@@ -869,25 +869,25 @@
     "message": "Đăng nhập"
   },
   "logInToBitwarden": {
-    "message": "Log in to Bitwarden"
+    "message": "Đăng nhập Bitwarden"
   },
   "enterTheCodeSentToYourEmail": {
-    "message": "Enter the code sent to your email"
+    "message": "Nhập mã được gửi về email của bạn"
   },
   "enterTheCodeFromYourAuthenticatorApp": {
-    "message": "Enter the code from your authenticator app"
+    "message": "Nhập mã từ ứng dụng xác thực của bạn"
   },
   "pressYourYubiKeyToAuthenticate": {
-    "message": "Press your YubiKey to authenticate"
+    "message": "Nhấn YubiKey của bạn để xác thực"
   },
   "duoTwoFactorRequiredPageSubtitle": {
-    "message": "Duo two-step login is required for your account. Follow the steps below to finish logging in."
+    "message": "Đăng nhập hai bước là bắt buộc cho tài khoản của bạn. Hãy làm theo các bước dưới đây để hoàn tất quá trình đăng nhập."
   },
   "followTheStepsBelowToFinishLoggingIn": {
-    "message": "Follow the steps below to finish logging in."
+    "message": "Thực hiện các bước sau để hoàn tất đăng nhập."
   },
   "followTheStepsBelowToFinishLoggingInWithSecurityKey": {
-    "message": "Follow the steps below to finish logging in with your security key."
+    "message": "Thực hiện các bước sau để hoàn tất đăng nhập bằng khóa bảo mật của bạn."
   },
   "restartRegistration": {
     "message": "Tiến hành đăng ký lại"
@@ -911,7 +911,7 @@
     "message": "Không"
   },
   "location": {
-    "message": "Location"
+    "message": "Vị trí"
   },
   "unexpectedError": {
     "message": "Một lỗi bất ngờ đã xảy ra."
@@ -923,13 +923,13 @@
     "message": "Đã thêm thư mục"
   },
   "twoStepLoginConfirmation": {
-    "message": "Xác thực hai lớp giúp cho tài khoản của bạn an toàn hơn bằng cách yêu cầu bạn xác minh thông tin đăng nhập của bạn bằng một thiết bị khác như khóa bảo mật, ứng dụng xác thực, SMS, cuộc gọi điện thoại hoặc email. Bạn có thể bật xác thực hai lớp trong kho bitwarden nền web. Bạn có muốn ghé thăm trang web bây giờ?"
+    "message": "Đăng nhập hai bước giúp tài khoản của bạn an toàn hơn bằng cách yêu cầu bạn xác minh việc đăng nhập bằng một thiết bị khác như khóa bảo mật, ứng dụng xác thực, SMS, cuộc gọi điện thoại hoặc email. Đăng nhập hai bước có thể được thiết lập trên bitwarden.com. Bạn có muốn truy cập trang web bây giờ không?"
   },
   "twoStepLoginConfirmationContent": {
-    "message": "Make your account more secure by setting up two-step login in the Bitwarden web app."
+    "message": "Tăng cường bảo mật tài khoản của bạn bằng cách thiết lập đăng nhập hai bước trên trang web Bitwarden."
   },
   "twoStepLoginConfirmationTitle": {
-    "message": "Continue to web app?"
+    "message": "Tiếp tục tới ứng dụng web?"
   },
   "editedFolder": {
     "message": "Đã lưu thư mục"
@@ -941,7 +941,7 @@
     "message": "Đã xóa thư mục"
   },
   "gettingStartedTutorial": {
-    "message": "Hướng dẫn Bắt đầu"
+    "message": "Hướng dẫn bắt đầu"
   },
   "gettingStartedTutorialVideo": {
     "message": "Xem hướng dẫn bắt đầu của chúng tôi để tìm hiểu cách tận dụng tối đa tiện ích mở rộng của trình duyệt."
@@ -969,7 +969,7 @@
     }
   },
   "newUri": {
-    "message": "URI mới"
+    "message": "Đường dẫn mới"
   },
   "addDomain": {
     "message": "Thêm tên miền",
@@ -979,13 +979,13 @@
     "message": "Đã thêm mục"
   },
   "editedItem": {
-    "message": "Mục được chỉnh sửa"
+    "message": "Đã lưu mục"
   },
   "deleteItemConfirmation": {
-    "message": "Bạn có chắc bạn muốn xóa mục này?"
+    "message": "Bạn có chắc muốn cho nó vào thùng rác?"
   },
   "deletedItem": {
-    "message": "Đã xóa mục"
+    "message": "Mục đã được cho vào thùng rác"
   },
   "overwritePassword": {
     "message": "Ghi đè mật khẩu"
@@ -1016,16 +1016,16 @@
     "message": "Hỏi để thêm đăng nhập"
   },
   "vaultSaveOptionsTitle": {
-    "message": "Lưu vào các tùy chọn kho"
+    "message": "Tùy chọn lưu vào kho"
   },
   "addLoginNotificationDesc": {
-    "message": "'Thông báo Thêm đăng nhập' sẽ tự động nhắc bạn lưu các đăng nhập mới vào hầm an toàn của bạn bất cứ khi nào bạn đăng nhập trang web lần đầu tiên."
+    "message": "Nếu không tìm thấy mục nào trong kho của bạn, hãy yêu cầu thêm mục đó."
   },
   "addLoginNotificationDescAlt": {
-    "message": "Đưa ra lựa chọn để thêm một mục nếu không tìm thấy mục đó trong hòm của bạn. Áp dụng với mọi tài khoản đăng nhập trên thiết bị."
+    "message": "Nếu không tìm thấy mục nào trong kho của bạn, hãy yêu cầu thêm mục đó. Áp dụng cho tất cả tài khoản đã đăng nhập."
   },
   "showCardsInVaultViewV2": {
-    "message": "Always show cards as Autofill suggestions on Vault view"
+    "message": "Luôn hiển thị thẻ như đề xuất tự động điền trên giao diện kho"
   },
   "showCardsCurrentTab": {
     "message": "Hiển thị thẻ trên trang Tab"
@@ -1034,26 +1034,26 @@
     "message": "Liệt kê các mục thẻ trên trang Tab để dễ dàng tự động điền."
   },
   "showIdentitiesInVaultViewV2": {
-    "message": "Always show identities as Autofill suggestions on Vault view"
+    "message": "Luôn hiển thị danh tính như đề xuất tự động điền trên giao diện kho"
   },
   "showIdentitiesCurrentTab": {
     "message": "Hiển thị danh tính trên trang Tab"
   },
   "showIdentitiesCurrentTabDesc": {
-    "message": "Liệt kê các mục danh tính trên trang Tab để dễ dàng tự động điền."
+    "message": "Liệt kê các danh tính trên trang Tab để dễ dàng tự động điền."
   },
   "clickToAutofillOnVault": {
-    "message": "Click items to autofill on Vault view"
+    "message": "Nhấp vào mục để tự động điền trong giao diện kho"
   },
   "clickToAutofill": {
-    "message": "Click items in autofill suggestion to fill"
+    "message": "Nhấp vào mục trong đề xuất tự động điền để điền thông tin"
   },
   "clearClipboard": {
     "message": "Dọn dẹp khay nhớ tạm",
     "description": "Clipboard is the operating system thing where you copy/paste data to on your device."
   },
   "clearClipboardDesc": {
-    "message": "Tự động dọn dẹp giá trị được sao chép khỏi khay nhớ tạm của bạn.",
+    "message": "Tự động xóa mọi thứ đã sao chép khỏi bộ nhớ tạm.",
     "description": "Clipboard is the operating system thing where you copy/paste data to on your device."
   },
   "notificationAddDesc": {
@@ -1063,7 +1063,7 @@
     "message": "Lưu"
   },
   "notificationViewAria": {
-    "message": "View $ITEMNAME$, opens in new window",
+    "message": "Xem $ITEMNAME$, mở trong cửa sổ mới",
     "placeholders": {
       "itemName": {
         "content": "$1"
@@ -1072,18 +1072,18 @@
     "description": "Aria label for the view button in notification bar confirmation message"
   },
   "notificationNewItemAria": {
-    "message": "New Item, opens in new window",
+    "message": "Mục mới, mở trong cửa sổ mới",
     "description": "Aria label for the new item button in notification bar confirmation message when error is prompted"
   },
   "notificationEditTooltip": {
-    "message": "Edit before saving",
+    "message": "Chỉnh sửa trước khi lưu",
     "description": "Tooltip and Aria label for edit button on cipher item"
   },
   "newNotification": {
-    "message": "New notification"
+    "message": "Thông báo mới"
   },
   "labelWithNotification": {
-    "message": "$LABEL$: New notification",
+    "message": "$LABEL$: Thông báo mới",
     "description": "Label for the notification with a new login suggestion.",
     "placeholders": {
       "label": {
@@ -1093,15 +1093,15 @@
     }
   },
   "notificationLoginSaveConfirmation": {
-    "message": "saved to Bitwarden.",
+    "message": "đã lưu vào Bitwarden.",
     "description": "Shown to user after item is saved."
   },
   "notificationLoginUpdatedConfirmation": {
-    "message": "updated in Bitwarden.",
+    "message": "đã cập nhật trong Bitwarden.",
     "description": "Shown to user after item is updated."
   },
   "selectItemAriaLabel": {
-    "message": "Select $ITEMTYPE$, $ITEMNAME$",
+    "message": "Chọn $ITEMTYPE$, $ITEMNAME$",
     "description": "Used by screen readers. $1 is the item type (like vault or folder), $2 is the selected item name.",
     "placeholders": {
       "itemType": {
@@ -1113,35 +1113,35 @@
     }
   },
   "saveAsNewLoginAction": {
-    "message": "Save as new login",
+    "message": "Lưu như đăng nhập mới",
     "description": "Button text for saving login details as a new entry."
   },
   "updateLoginAction": {
-    "message": "Update login",
+    "message": "Cập nhật đăng nhập",
     "description": "Button text for updating an existing login entry."
   },
   "unlockToSave": {
-    "message": "Unlock to save this login",
+    "message": "Mở khóa để lưu thông tin đăng nhập này",
     "description": "User prompt to take action in order to save the login they just entered."
   },
   "saveLogin": {
-    "message": "Save login",
+    "message": "Lưu đăng nhập",
     "description": "Prompt asking the user if they want to save their login details."
   },
   "updateLogin": {
-    "message": "Update existing login",
+    "message": "Cập nhật thông tin đăng nhập hiện có",
     "description": "Prompt asking the user if they want to update an existing login entry."
   },
   "loginSaveSuccess": {
-    "message": "Login saved",
+    "message": "Đã lưu đăng nhập",
     "description": "Message displayed when login details are successfully saved."
   },
   "loginUpdateSuccess": {
-    "message": "Login updated",
+    "message": "Đã cập nhật đăng nhập",
     "description": "Message displayed when login details are successfully updated."
   },
   "loginUpdateTaskSuccess": {
-    "message": "Great job! You took the steps to make you and $ORGANIZATION$ more secure.",
+    "message": "Làm tốt lắm! Bạn đã thực hiện các bước để tăng cường bảo mật cho bản thân và $ORGANIZATION$.",
     "placeholders": {
       "organization": {
         "content": "$1"
@@ -1150,7 +1150,7 @@
     "description": "Shown to user after login is updated."
   },
   "loginUpdateTaskSuccessAdditional": {
-    "message": "Thank you for making $ORGANIZATION$ more secure. You have $TASK_COUNT$ more passwords to update.",
+    "message": "Cảm ơn bạn đã giúp $ORGANIZATION$ an toàn hơn. Bạn còn $TASK_COUNT$ mật khẩu cần cập nhật nữa.",
     "placeholders": {
       "organization": {
         "content": "$1"
@@ -1162,17 +1162,23 @@
     "description": "Shown to user after login is updated."
   },
   "nextSecurityTaskAction": {
-    "message": "Change next password",
+    "message": "Thay đổi mật khẩu tiếp theo",
     "description": "Message prompting user to undertake completion of another security task."
   },
   "saveFailure": {
-    "message": "Error saving",
+    "message": "Lỗi khi lưu",
     "description": "Error message shown when the system fails to save login details."
   },
   "saveFailureDetails": {
-    "message": "Oh no! We couldn't save this. Try entering the details manually.",
+    "message": "Ôi không! Chúng tôi không thể lưu lại được. Hãy thử nhập thông tin thủ công.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "Sau khi thay đổi mật khẩu, bạn cần đăng nhập lại bằng mật khẩu mới. Các phiên đăng nhập đang hoạt động trên các thiết bị khác sẽ bị đăng xuất trong vòng một giờ."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Thay đổi mật khẩu chính của bạn để hoàn tất quá trình khôi phục tài khoản."
+  },
   "enableChangedPasswordNotification": {
     "message": "Hỏi để cập nhật đăng nhập hiện có"
   },
@@ -1180,22 +1186,22 @@
     "message": "Yêu cầu cập nhật mật khẩu đăng nhập khi phát hiện thay đổi trên trang web."
   },
   "changedPasswordNotificationDescAlt": {
-    "message": "Đưa ra lựa chọn để cập nhật mật khẩu khi phát hiện có sự thay đổi trên trang web. Áp dụng với mọi tài khoản đăng nhập trên thiết bị."
+    "message": "Yêu cầu cập nhật mật khẩu đăng nhập khi phát hiện thay đổi trên trang web. Áp dụng cho tất cả tài khoản đã đăng nhập."
   },
   "enableUsePasskeys": {
-    "message": "Đưa ra lựa chọn để lưu và sử dụng mã khoá"
+    "message": "Yêu cầu lưu và sử dụng mã khóa"
   },
   "usePasskeysDesc": {
-    "message": "Đưa ra lựa chọn để lưu mã khoá mới hoặc đăng nhập bằng mã khoá đã lưu trong kho. Áp dụng với mọi tài khoản đăng nhập trên thiết bị."
+    "message": "Yêu cầu lưu các mã khóa mới hoặc đăng nhập bằng các mã khóa đã lưu trong kho của bạn. Áp dụng cho tất cả các tài khoản đã đăng nhập."
   },
   "notificationChangeDesc": {
-    "message": "Bạn có muốn cập nhật mật khẩu này trên Bitwarden không?"
+    "message": "Bạn có muốn cập nhật mật khẩu này trong Bitwarden không?"
   },
   "notificationChangeSave": {
     "message": "Cập nhật"
   },
   "notificationUnlockDesc": {
-    "message": "Vui lòng mở khóa Kho Bitwarden của bạn để hoàn thành quá trình tự động điền."
+    "message": "Mở khóa kho Bitwarden của bạn để hoàn tất quá trình tự động điền."
   },
   "notificationUnlock": {
     "message": "Mở khóa"
@@ -1207,17 +1213,17 @@
     "message": "Hiển thị tuỳ chọn menu ngữ cảnh"
   },
   "contextMenuItemDesc": {
-    "message": "Sử dụng một đúp chuột để truy cập vào việc tạo mật khẩu và thông tin đăng nhập phù hợp cho trang web. "
+    "message": "Dùng cú nhấp chuột phụ để truy cập trình tạo mật khẩu và đăng nhập tương ứng cho trang web."
   },
   "contextMenuItemDescAlt": {
-    "message": "Truy cập trình khởi tạo mật khẩu và các mục đăng nhập đã lưu của trang web bằng cách nhấn đúp chuột. Áp dụng với mọi tài khoản đăng nhập trên thiết bị."
+    "message": "Nhấp chuột phải để truy cập tính năng tạo mật khẩu và xem các thông tin đăng nhập phù hợp cho trang web này. Áp dụng với mọi tài khoản đã đăng nhập."
   },
   "defaultUriMatchDetection": {
-    "message": "Phương thức kiểm tra URI mặc định",
+    "message": "Phát hiện khớp URI mặc định",
     "description": "Default URI match detection for autofill."
   },
   "defaultUriMatchDetectionDesc": {
-    "message": "Chọn phương thức mặc định để kiểm tra so sánh URI cho các đăng nhập khi xử lí các hành động như là tự động điền."
+    "message": "Chọn cách thức mặc định hệ thống so khớp đường dẫn (URI) để xử lý đăng nhập khi thực hiện các thao tác như tự động điền."
   },
   "theme": {
     "message": "Chủ đề"
@@ -1226,7 +1232,7 @@
     "message": "Thay đổi màu sắc ứng dụng."
   },
   "themeDescAlt": {
-    "message": "Thay đổi tông màu giao diện của ứng dụng. Áp dụng với mọi tài khoản đăng nhập trên thiết bị."
+    "message": "Thay đổi chủ đề màu sắc của ứng dụng. Áp dụng cho tất cả các tài khoản đã đăng nhập."
   },
   "dark": {
     "message": "Tối",
@@ -1246,7 +1252,7 @@
     "message": "Định dạng tập tin"
   },
   "fileEncryptedExportWarningDesc": {
-    "message": "Tập tin xuất này sẽ được bảo vệ bằng mật khẩu và yêu cầu mật khẩu để giải mã."
+    "message": "Tệp tin này sẽ được bảo vệ bằng mật khẩu và yêu cầu mật khẩu tệp tin để giải mã."
   },
   "filePassword": {
     "message": "Mật khẩu tập tin"
@@ -1261,7 +1267,7 @@
     "message": "Thiết lập mật khẩu cho tệp để mã hóa dữ liệu xuất và nhập nó vào bất kỳ tài khoản Bitwarden nào bằng cách sử dụng mật khẩu đó để giải mã."
   },
   "exportTypeHeading": {
-    "message": "Loại xuất"
+    "message": "Xuất kiểu"
   },
   "accountRestricted": {
     "message": "Tài khoản bị hạn chế"
@@ -1274,7 +1280,7 @@
     "description": "WARNING (should stay in capitalized letters if the language permits)"
   },
   "warningCapitalized": {
-    "message": "Warning",
+    "message": "Cảnh báo",
     "description": "Warning (should maintain locale-relevant capitalization)"
   },
   "confirmVaultExport": {
@@ -1284,7 +1290,7 @@
     "message": "Bản xuất này chứa dữ liệu kho bạn và không được mã hóa. Bạn không nên lưu trữ hay gửi tập tin đã xuất thông qua phương thức rủi ro (như email). Vui lòng xóa nó ngay lập tức khi bạn đã sử dụng xong."
   },
   "encExportKeyWarningDesc": {
-    "message": "Quá trình xuất này sẽ mã hóa dữ liệu của bạn bằng khóa mã hóa của tài khoản. Nếu bạn từng xoay khóa mã hóa tài khoản của mình, bạn nên xuất lại vì bạn sẽ không thể giải mã tập tin xuất này."
+    "message": "Quá trình xuất này sẽ mã hóa dữ liệu của bạn bằng khóa mã hóa của tài khoản. Nếu bạn từng thay đổi mã hóa tài khoản của mình, bạn nên xuất lại vì bạn sẽ không thể giải mã tập tin xuất này."
   },
   "encExportAccountWarningDesc": {
     "message": "Khóa mã hóa tài khoản là duy nhất cho mỗi tài khoản Bitwarden, vì vậy bạn không thể nhập tệp xuất được mã hóa vào một tài khoản khác."
@@ -1327,7 +1333,7 @@
     "message": "Mã xác thực (TOTP)"
   },
   "copyVerificationCode": {
-    "message": "Sao chép Mã xác thực"
+    "message": "Sao chép mã xác thực"
   },
   "attachments": {
     "message": "Tệp đính kèm"
@@ -1348,13 +1354,13 @@
     "message": "Không có tệp đính kèm."
   },
   "attachmentSaved": {
-    "message": "Tệp đính kèm đã được lưu."
+    "message": "Đã lưu tệp đính kèm"
   },
   "file": {
     "message": "Tập tin"
   },
   "fileToShare": {
-    "message": "File to share"
+    "message": "Tệp để chia sẻ"
   },
   "selectFile": {
     "message": "Chọn tập tin"
@@ -1366,13 +1372,13 @@
     "message": "Tính năng không có sẵn"
   },
   "legacyEncryptionUnsupported": {
-    "message": "Legacy encryption is no longer supported. Please contact support to recover your account."
+    "message": "Mã hóa cổ điển không còn được hỗ trợ. Vui lòng liên hệ bộ phận hỗ trợ để khôi phục tài khoản của bạn."
   },
   "premiumMembership": {
     "message": "Thành viên Cao Cấp"
   },
   "premiumManage": {
-    "message": "Quản lý Thành viên"
+    "message": "Quản lý thành viên"
   },
   "premiumManageAlert": {
     "message": "Bạn có thể quản lí tư cách thành viên của mình trên trang web kho lưu trữ bitwarden.com. Bạn có muốn truy cập trang web ngay bây giờ không?"
@@ -1381,22 +1387,22 @@
     "message": "Làm mới thành viên"
   },
   "premiumNotCurrentMember": {
-    "message": "Bạn hiện không phải là một thành viên cao cấp."
+    "message": "Bạn hiện không phải là thành viên Cao cấp."
   },
   "premiumSignUpAndGet": {
-    "message": "Đăng ký làm thành viên cao cấp và nhận được:"
+    "message": "Đăng ký làm thành viên Cao cấp và nhận được:"
   },
   "ppremiumSignUpStorage": {
-    "message": "1GB bộ nhớ lưu trữ được mã hóa cho các tệp đính kèm."
+    "message": "1 GB dung lượng lưu trữ được mã hóa cho các tệp đính kèm."
   },
   "premiumSignUpEmergency": {
-    "message": "Emergency access."
+    "message": "Truy cập khẩn cấp."
   },
   "premiumSignUpTwoStepOptions": {
     "message": "Các tùy chọn xác minh hai bước như YubiKey và Duo."
   },
   "ppremiumSignUpReports": {
-    "message": "Thanh lọc mật khẩu, kiểm tra an toàn tài khoản và các báo cáo rò rĩ dữ liệu là để giữ cho kho của bạn an toàn."
+    "message": "Thanh lọc mật khẩu, kiểm tra an toàn tài khoản và các báo cáo rò rỉ dữ liệu để bảo vệ kho dữ liệu của bạn."
   },
   "ppremiumSignUpTotp": {
     "message": "Trình tạo mã xác nhận TOTP (2FA) để đăng nhập vào kho lưu trữ của bạn."
@@ -1405,22 +1411,22 @@
     "message": "Ưu tiên hỗ trợ khách hàng."
   },
   "ppremiumSignUpFuture": {
-    "message": "Tất cả các tính năng cao cấp trong tương lai. Nó sẽ sớm xuất hiện!"
+    "message": "Tất cả các tính năng Cao cấp trong tương lai. Nó sẽ sớm xuất hiện!"
   },
   "premiumPurchase": {
     "message": "Mua bản Cao Cấp"
   },
   "premiumPurchaseAlertV2": {
-    "message": "Bạn có thể mua gói Premium từ cài đặt tài khoản trên trang Bitwarden."
+    "message": "Bạn có thể mua gói Cao cấp từ cài đặt tài khoản trên kho web Bitwarden."
   },
   "premiumCurrentMember": {
-    "message": "Bạn là một thành viên cao cấp!"
+    "message": "Bạn là một thành viên Cao cấp!"
   },
   "premiumCurrentMemberThanks": {
     "message": "Cảm ơn bạn vì đã hỗ trợ Bitwarden."
   },
   "premiumFeatures": {
-    "message": "Upgrade to Premium and receive:"
+    "message": "Nâng cấp lên Premium và nhận được:"
   },
   "premiumPrice": {
     "message": "Tất cả chỉ với $PRICE$/năm!",
@@ -1432,7 +1438,7 @@
     }
   },
   "premiumPriceV2": {
-    "message": "Tất cả chỉ với $PRICE$ /năm!",
+    "message": "Tất cả chỉ với $PRICE$/năm!",
     "placeholders": {
       "price": {
         "content": "$1",
@@ -1447,22 +1453,22 @@
     "message": "Tự động sao chép TOTP"
   },
   "disableAutoTotpCopyDesc": {
-    "message": "Nếu đăng nhập của bạn có một khóa xác thực gắn liền với nó, mã xác nhận TOTP sẽ được tự động sao chép vào bộ nhớ tạm của bạn bất cứ khi nào bạn tự động điền thông tin đăng nhập."
+    "message": "Nếu tài khoản đăng nhập có khóa xác thực, mã xác minh TOTP sẽ được sao chép vào bộ nhớ tạm khi bạn tự động điền thông tin đăng nhập."
   },
   "enableAutoBiometricsPrompt": {
     "message": "Yêu cầu sinh trắc học khi khởi chạy"
   },
   "premiumRequired": {
-    "message": "Cần có tài khoản cao cấp"
+    "message": "Cần có tài khoản Cao cấp"
   },
   "premiumRequiredDesc": {
-    "message": "Cần là thành viên cao cấp để sử dụng tính năng này."
+    "message": "Cần là thành viên Cao cấp để sử dụng tính năng này."
   },
   "authenticationTimeout": {
-    "message": "Authentication timeout"
+    "message": "Thời gian chờ xác thực"
   },
   "authenticationSessionTimedOut": {
-    "message": "The authentication session timed out. Please restart the login process."
+    "message": "Phiên xác thực đã hết thời gian chờ. Vui lòng đăng nhập lại từ đầu."
   },
   "verificationCodeEmailSent": {
     "message": "Email xác minh đã được gửi tới $EMAIL$.",
@@ -1474,53 +1480,53 @@
     }
   },
   "dontAskAgainOnThisDeviceFor30Days": {
-    "message": "Don't ask again on this device for 30 days"
+    "message": "Không yêu cầu lại trên thiết bị này trong vòng 30 ngày"
   },
   "selectAnotherMethod": {
-    "message": "Select another method",
+    "message": "Chọn phương pháp khác",
     "description": "Select another two-step login method"
   },
   "useYourRecoveryCode": {
-    "message": "Use your recovery code"
+    "message": "Sử dụng mã khôi phục của bạn"
   },
   "insertU2f": {
     "message": "Lắp khóa bảo mật vào cổng USB máy tính của bạn. Nếu nó có một nút, hãy nhấn vào nó."
   },
   "openInNewTab": {
-    "message": "Open in new tab"
+    "message": "Mở trong tab mới"
   },
   "webAuthnAuthenticate": {
     "message": "Xác thực WebAuthn"
   },
   "readSecurityKey": {
-    "message": "Read security key"
+    "message": "Đọc khóa bảo mật"
   },
   "awaitingSecurityKeyInteraction": {
-    "message": "Awaiting security key interaction..."
+    "message": "Đang chờ tương tác với khóa bảo mật..."
   },
   "loginUnavailable": {
     "message": "Đăng nhập không có sẵn"
   },
   "noTwoStepProviders": {
-    "message": "Tài khoản này đã kích hoạt xác thực hai lớp, tuy nhiên, trình duyệt này không hỗ trợ cấu hình dịch vụ xác thực hai lớp đang sử dụng."
+    "message": "Tài khoản này đã kích hoạt đăng nhập 2 bước, tuy nhiên, trình duyệt này không hỗ trợ dịch vụ xác thực hai lớp đang sử dụng."
   },
   "noTwoStepProviders2": {
     "message": "Hãy sử dụng trình duyệt web được hỗ trợ (chẳng hạn như Chrome) và/hoặc thêm dịch vụ bổ sung được hỗ trợ tốt hơn trên các trình duyệt web (chẳng hạn như một ứng dụng xác thực)."
   },
   "twoStepOptions": {
-    "message": "Tùy chọn xác thực hai lớp"
+    "message": "Tùy chọn đăng nhập 2 bước"
   },
   "selectTwoStepLoginMethod": {
-    "message": "Select two-step login method"
+    "message": "Chọn phương pháp đăng nhập hai bước"
   },
   "recoveryCodeDesc": {
-    "message": "Bạn mất quyền truy cập vào tất cả các dịch vụ xác thực 2 lớp? Sử dụng mã phục hồi của bạn để vô hiệu hóa tất cả các dịch vụ xác thực hai lớp trong tài khoản của bạn."
+    "message": "Bạn đã mất quyền truy cập vào tất cả các dịch vụ xác thực 2 lớp? Sử dụng mã khôi phục để tắt tất cả các phương pháp xác thực hai lớp trong tài khoản của bạn."
   },
   "recoveryCodeTitle": {
     "message": "Mã phục hồi"
   },
   "authenticatorAppTitle": {
-    "message": "Ứng dụng Authenticator"
+    "message": "Ứng dụng xác thực"
   },
   "authenticatorAppDescV2": {
     "message": "Nhập mã được tạo bởi ứng dụng xác thực như Bitwarden Authenticator.",
@@ -1537,7 +1543,7 @@
     "description": "'Duo Security' and 'Duo Mobile' are product names and should not be translated."
   },
   "duoOrganizationDesc": {
-    "message": "Xác minh với Duo Security cho tổ chức của bạn sử dụng ứng dụng Duo Mobile, SMS, cuộc gọi điện thoại, hoặc khoá bảo mật U2F.",
+    "message": "Xác minh với Duo Security cho tổ chức của bạn bằng ứng dụng Duo Mobile, tin nhắn SMS, cuộc gọi điện thoại hoặc khóa bảo mật U2F.",
     "description": "'Duo Security' and 'Duo Mobile' are product names and should not be translated."
   },
   "webAuthnTitle": {
@@ -1556,13 +1562,13 @@
     "message": "Môi trường tự lưu trữ"
   },
   "selfHostedBaseUrlHint": {
-    "message": "Nhập địa chỉ cơ sở của bản cài đặt Bitwarden được lưu trữ tại máy chủ của bạn. Ví dụ: https://bitwarden.company.com"
+    "message": "Nhập URL cơ sở của cài đặt Bitwarden được lưu trữ trên máy chủ nội bộ của bạn. Ví dụ: https://bitwarden.company.com"
   },
   "selfHostedCustomEnvHeader": {
     "message": "Đối với cấu hình nâng cao. Bạn có thể chỉ định địa chỉ cơ sở của mỗi dịch vụ một cách độc lập."
   },
   "selfHostedEnvFormInvalid": {
-    "message": "Bạn phải thêm địa chỉ máy chủ cơ sở hoặc ít nhất một môi trường tùy chỉnh."
+    "message": "Bạn phải thêm URL máy chủ cơ sở hoặc ít nhất một môi trường tùy chỉnh."
   },
   "customEnvironment": {
     "message": "Môi trường tùy chỉnh"
@@ -1571,11 +1577,11 @@
     "message": "URL máy chủ"
   },
   "selfHostBaseUrl": {
-    "message": "Self-host server URL",
+    "message": "URL máy chủ tự lưu trữ",
     "description": "Label for field requesting a self-hosted integration service URL"
   },
   "apiUrl": {
-    "message": "Địa chỉ API máy chủ"
+    "message": "Địa chỉ máy chủ API"
   },
   "webVaultUrl": {
     "message": "URL máy chủ của trang web kho lưu trữ"
@@ -1584,29 +1590,29 @@
     "message": "URL máy chủ nhận dạng"
   },
   "notificationsUrl": {
-    "message": "Notifications Server URL"
+    "message": "URL máy chủ thông báo"
   },
   "iconsUrl": {
-    "message": "Biểu tượng địa chỉ máy chủ"
+    "message": "URL máy chủ biểu tượng"
   },
   "environmentSaved": {
-    "message": "Địa chỉ môi trường đã được lưu."
+    "message": "Các URL môi trường đã được lưu"
   },
   "showAutoFillMenuOnFormFields": {
     "message": "Hiển thị menu tự động điền trên các trường biểu mẫu",
     "description": "Represents the message for allowing the user to enable the autofill overlay"
   },
   "autofillSuggestionsSectionTitle": {
-    "message": "Các gợi ý điền tự động"
+    "message": "Các gợi ý tự động điền"
   },
   "autofillSpotlightTitle": {
-    "message": "Easily find autofill suggestions"
+    "message": "Dễ dàng tìm các gợi ý tự động điền"
   },
   "autofillSpotlightDesc": {
-    "message": "Turn off your browser's autofill settings, so they don't conflict with Bitwarden."
+    "message": "Tắt cài đặt tự động điền của trình duyệt để tránh xung đột với Bitwarden."
   },
   "turnOffBrowserAutofill": {
-    "message": "Turn off $BROWSER$ autofill",
+    "message": "Tắt tính năng tự động điền của $BROWSER$",
     "placeholders": {
       "browser": {
         "content": "$1",
@@ -1615,16 +1621,16 @@
     }
   },
   "turnOffAutofill": {
-    "message": "Turn off autofill"
+    "message": "Tắt tự động điền"
   },
   "showInlineMenuLabel": {
     "message": "Hiển thị các gợi ý tự động điền trên các trường biểu mẫu"
   },
   "showInlineMenuIdentitiesLabel": {
-    "message": "Display identities as suggestions"
+    "message": "Hiển thị danh tính dưới dạng gợi ý"
   },
   "showInlineMenuCardsLabel": {
-    "message": "Display cards as suggestions"
+    "message": "Hiển thị thẻ dưới dạng gợi ý"
   },
   "showInlineMenuOnIconSelectionLabel": {
     "message": "Hiện gợi ý khi nhấp vào biểu tượng"
@@ -1687,19 +1693,19 @@
     "message": "Không tự động điền khi tải trang"
   },
   "commandOpenPopup": {
-    "message": "Mở popup kho"
+    "message": "Mở cửa sổ popup kho"
   },
   "commandOpenSidebar": {
-    "message": "Mở kho ở thanh bên"
+    "message": "Mở kho trong thanh bên"
   },
   "commandAutofillLoginDesc": {
-    "message": "Autofill the last used login for the current website"
+    "message": "Tự động điền thông tin đăng nhập gần đây nhất cho trang web hiện tại"
   },
   "commandAutofillCardDesc": {
-    "message": "Autofill the last used card for the current website"
+    "message": "Tự động điền thẻ đã sử dụng gần đây cho trang web hiện tại"
   },
   "commandAutofillIdentityDesc": {
-    "message": "Autofill the last used identity for the current website"
+    "message": "Điền tự động danh tính đã sử dụng lần cuối cho trang web hiện tại"
   },
   "commandGeneratePasswordDesc": {
     "message": "Tạo và sao chép một mật khẩu ngẫu nhiên mới vào khay nhớ tạm"
@@ -1723,7 +1729,7 @@
     "message": "Kéo để sắp xếp"
   },
   "dragToReorder": {
-    "message": "Drag to reorder"
+    "message": "Kéo để sắp xếp lại"
   },
   "cfTypeText": {
     "message": "Văn bản"
@@ -1735,7 +1741,7 @@
     "message": "Đúng/Sai"
   },
   "cfTypeCheckbox": {
-    "message": "Ô tích chọn"
+    "message": "Hộp chọn"
   },
   "cfTypeLinked": {
     "message": "Đã liên kết",
@@ -1869,7 +1875,7 @@
     "message": "Số hộ chiếu"
   },
   "licenseNumber": {
-    "message": "Số giấy phép"
+    "message": "Số giấy phép lái xe"
   },
   "email": {
     "message": "Email"
@@ -1890,7 +1896,7 @@
     "message": "Địa chỉ 3"
   },
   "cityTown": {
-    "message": "Quận/Huyện/Thị trấn"
+    "message": "Xã / Phường"
   },
   "stateProvince": {
     "message": "Tỉnh/Thành Phố"
@@ -1920,10 +1926,10 @@
     "message": "Danh tính"
   },
   "typeSshKey": {
-    "message": "SSH key"
+    "message": "Khóa SSH"
   },
   "typeNote": {
-    "message": "Note"
+    "message": "Ghi chú"
   },
   "newItemHeader": {
     "message": "$TYPE$ mới",
@@ -1956,13 +1962,13 @@
     "message": "Lịch sử mật khẩu"
   },
   "generatorHistory": {
-    "message": "Generator history"
+    "message": "Lịch sử trình tạo"
   },
   "clearGeneratorHistoryTitle": {
-    "message": "Clear generator history"
+    "message": "Dọn dẹp lịch sử trình tạo"
   },
   "cleargGeneratorHistoryDescription": {
-    "message": "If you continue, all entries will be permanently deleted from generator's history. Are you sure you want to continue?"
+    "message": "Nếu bạn tiếp tục, tất cả các mục sẽ bị xóa vĩnh viễn khỏi lịch sử của trình tạo. Bạn có chắc chắn muốn tiếp tục không?"
   },
   "back": {
     "message": "Quay lại"
@@ -2001,7 +2007,7 @@
     "message": "Ghi chú bảo mật"
   },
   "sshKeys": {
-    "message": "SSH Keys"
+    "message": "Khóa SSH"
   },
   "clear": {
     "message": "Xoá",
@@ -2027,7 +2033,7 @@
     "description": "Domain name. Ex. website.com"
   },
   "baseDomainOptionRecommended": {
-    "message": "Base domain (recommended)",
+    "message": "Tên miền gốc (được khuyến nghị)",
     "description": "Domain name. Ex. website.com"
   },
   "domainName": {
@@ -2060,11 +2066,11 @@
     "message": "Bật/tắt tùy chọn"
   },
   "toggleCurrentUris": {
-    "message": "Bật/tắt URI hiện tại",
+    "message": "Bật/tắt đường dẫn hiện tại",
     "description": "Toggle the display of the URIs of the currently open tabs in the browser."
   },
   "currentUri": {
-    "message": "URI hiện tại",
+    "message": "Đường dẫn hiện tại",
     "description": "The URI of one of the current open tabs in the browser."
   },
   "organization": {
@@ -2084,10 +2090,10 @@
     "message": "Xóa lịch sử"
   },
   "nothingToShow": {
-    "message": "Nothing to show"
+    "message": "Không có gì để hiển thị"
   },
   "nothingGeneratedRecently": {
-    "message": "You haven't generated anything recently"
+    "message": "Bạn chưa tạo gì gần đây"
   },
   "remove": {
     "message": "Xoá"
@@ -2111,10 +2117,10 @@
     "message": "Bạn có chắc chắn muốn chọn \"Không bao giờ\" không? Lựa chọn này sẽ lưu khóa mã hóa kho của bạn trực tiếp trên thiết bị. Hãy nhớ bảo vệ thiết bị của bạn thật cẩn thận nếu bạn chọn tùy chọn này."
   },
   "noOrganizationsList": {
-    "message": "You do not belong to any organizations. Organizations allow you to securely share items with other users."
+    "message": "Bạn chưa thuộc tổ chức nào. Tổ chức sẽ cho phép bạn chia sẻ các mục với người dùng khác một cách bảo mật."
   },
   "noCollectionsInList": {
-    "message": "Không có bộ sưu tập nào để liệt kê."
+    "message": "Không có bộ sưu tập nào."
   },
   "ownership": {
     "message": "Quyền sở hữu"
@@ -2138,7 +2144,7 @@
     "message": "Mật khẩu chính yếu"
   },
   "weakMasterPasswordDesc": {
-    "message": "Mật khẩu chính bạn vừa chọn có vẻ yếu. Bạn nên chọn mật khẩu chính (hoặc cụm từ mật khẩu) mạnh để bảo vệ đúng cách tài khoản Bitwarden của bạn. Bạn có thực sự muốn dùng mật khẩu chính này?"
+    "message": "Mật khẩu chính bạn vừa chọn hơi yếu. Bạn nên chọn mật khẩu chính mạnh(hoặc một cụm mật khẩu) để bảo vệ tài khoản Bitwarden của mình một cách an toàn. Bạn có thực sự muốn dùng mật khẩu chính này không?"
   },
   "pin": {
     "message": "Mã PIN",
@@ -2148,16 +2154,16 @@
     "message": "Mở khóa bằng mã PIN"
   },
   "setYourPinTitle": {
-    "message": "Set PIN"
+    "message": "Thiết lập mã PIN"
   },
   "setYourPinButton": {
-    "message": "Set PIN"
+    "message": "Thiết lập mã PIN"
   },
   "setYourPinCode": {
-    "message": "Đặt mã PIN của bạn để mở khóa Bitwarden. Cài đặt mã PIN của bạn sẽ bị xóa nếu bạn hoàn toàn đăng xuất khỏi ứng dụng."
+    "message": "Đặt mã PIN của bạn để mở khóa Bitwarden. Cài đặt mã PIN của bạn sẽ bị xóa nếu bạn đăng xuất hoàn toàn khỏi ứng dụng."
   },
   "setPinCode": {
-    "message": "You can use this PIN to unlock Bitwarden. Your PIN will be reset if you ever fully log out of the application."
+    "message": "Bạn có thể sử dụng mã PIN này để mở khóa Bitwarden. Mã PIN của bạn sẽ được đặt lại nếu bạn đăng xuất hoàn toàn khỏi ứng dụng."
   },
   "pinRequired": {
     "message": "Mã PIN là bắt buộc."
@@ -2166,16 +2172,16 @@
     "message": "Mã PIN không hợp lệ."
   },
   "tooManyInvalidPinEntryAttemptsLoggingOut": {
-    "message": "Mã PIN bị gõ sai quá nhiều lần. Đang đăng xuất."
+    "message": "Gõ sai mã PIN quá nhiều lần. Đang đăng xuất."
   },
   "unlockWithBiometrics": {
     "message": "Mở khóa bằng sinh trắc học"
   },
   "unlockWithMasterPassword": {
-    "message": "Unlock with master password"
+    "message": "Mở khóa bằng mật khẩu chính"
   },
   "awaitDesktop": {
-    "message": "Đợi xác nhận từ máy tính"
+    "message": "Đang chờ xác nhận từ máy tính"
   },
   "awaitDesktopDesc": {
     "message": "Vui lòng xác nhận sử dụng sinh trắc học với ứng dụng Bitwarden trên máy tính."
@@ -2184,7 +2190,7 @@
     "message": "Khóa với mật khẩu chính khi trình duyệt khởi động lại"
   },
   "lockWithMasterPassOnRestart1": {
-    "message": "Require master password on browser restart"
+    "message": "Yêu cầu nhập mật khẩu chính khi khởi động lại trình duyệt"
   },
   "selectOneCollection": {
     "message": "Bạn phải chọn ít nhất một bộ sưu tập."
@@ -2199,39 +2205,39 @@
     "message": "Trình tạo mật khẩu"
   },
   "usernameGenerator": {
-    "message": "Bộ tạo tên người dùng"
+    "message": "Trình tạo tên người dùng"
   },
   "useThisEmail": {
-    "message": "Use this email"
+    "message": "Dùng email này"
   },
   "useThisPassword": {
-    "message": "Use this password"
+    "message": "Dùng mật khẩu này"
   },
   "useThisPassphrase": {
-    "message": "Use this passphrase"
+    "message": "Dùng cụm mật khẩu này"
   },
   "useThisUsername": {
-    "message": "Use this username"
+    "message": "Dùng tên người dùng này"
   },
   "securePasswordGenerated": {
-    "message": "Secure password generated! Don't forget to also update your password on the website."
+    "message": "Mật khẩu an toàn đã được tạo! Đừng quên cập nhật mật khẩu của bạn trên trang web."
   },
   "useGeneratorHelpTextPartOne": {
-    "message": "Use the generator",
+    "message": "Sử dụng trình tạo",
     "description": "This will be used as part of a larger sentence, broken up to include the generator icon. The full sentence will read 'Use the generator [GENERATOR_ICON] to create a strong unique password'"
   },
   "useGeneratorHelpTextPartTwo": {
-    "message": "to create a strong unique password",
+    "message": "để tạo một mật khẩu mạnh và duy nhất",
     "description": "This will be used as part of a larger sentence, broken up to include the generator icon. The full sentence will read 'Use the generator [GENERATOR_ICON] to create a strong unique password'"
   },
   "vaultCustomization": {
-    "message": "Vault customization"
+    "message": "Tùy chỉnh kho"
   },
   "vaultTimeoutAction": {
     "message": "Hành động khi hết thời gian chờ của kho lưu trữ"
   },
   "vaultTimeoutAction1": {
-    "message": "Timeout action"
+    "message": "Hành động hết thời gian chờ"
   },
   "lock": {
     "message": "Khóa",
@@ -2242,7 +2248,7 @@
     "description": "Noun: a special folder to hold deleted items"
   },
   "searchTrash": {
-    "message": "Tìm kiếm thùng rác"
+    "message": "Tìm kiếm trong thùng rác"
   },
   "permanentlyDeleteItem": {
     "message": "Xoá vĩnh viễn mục"
@@ -2269,28 +2275,28 @@
     "message": "Xác nhận hành động khi hết thời gian chờ"
   },
   "autoFillAndSave": {
-    "message": "Tự động điền và Lưu"
+    "message": "Tự động điền và lưu"
   },
   "fillAndSave": {
     "message": "Điền và lưu"
   },
   "autoFillSuccessAndSavedUri": {
-    "message": "Đã tự động điền mục và lưu URI"
+    "message": "Đã tự động điền mục và lưu đường dẫn"
   },
   "autoFillSuccess": {
     "message": "Đã tự động điền mục "
   },
   "insecurePageWarning": {
-    "message": "Cảnh báo: Đây là một trang HTTP không an toàn, và mọi thông tin bạn nhập ở đây có khả năng được xem & thay đổi bởi người khác. Thông tin Đăng nhập này ban đầu được lưu ở một trang an toàn (HTTPS)."
+    "message": "Cảnh báo: Đây là một trang HTTP không an toàn, và mọi thông tin bạn nhập ở đây có thể bị người khác xem và thay đổi. Thông tin Đăng nhập này ban đầu được lưu ở một trang an toàn (HTTPS)."
   },
   "insecurePageWarningFillPrompt": {
     "message": "Bạn vẫn muốn điền thông tin đăng nhập?"
   },
   "autofillIframeWarning": {
-    "message": "Mẫu điền thông tin này được lưu tại một tên miền khác với URI lưu tại thông tin đăng nhập của bạn. Hãy chọn OK để tiếp tục tự động điền, hoặc Hủy bỏ để dừng lại."
+    "message": "Biểu mẫu này được lưu trữ trên một tên miền khác với đường dẫn của thông tin đăng nhập đã lưu của bạn. Chọn OK để tự động điền thông tin, hoặc Hủy bỏ để hủy."
   },
   "autofillIframeWarningTip": {
-    "message": "Để chặn cảnh báo này trong tương lai, hãy lưu URI này, $HOSTNAME$, vào thông tin đăng nhập của bạn cho trang này ở Kho Bitwarden.",
+    "message": "Để tránh cảnh báo này trong tương lai, hãy lưu đường dẫn này, $HOSTNAME$, vào mục đăng nhập Bitwarden cho trang web này.",
     "placeholders": {
       "hostname": {
         "content": "$1",
@@ -2332,16 +2338,16 @@
     }
   },
   "policyInEffectUppercase": {
-    "message": "Chứa chữ cái in hoa"
+    "message": "Có chứa một hay nhiều ký tự viết hoa"
   },
   "policyInEffectLowercase": {
-    "message": "Chứa một hoặc nhiều kí tự viết thường"
+    "message": "Có chứa một hay nhiều ký tự thường"
   },
   "policyInEffectNumbers": {
-    "message": "Chứa một hoặc nhiều chữ số"
+    "message": "Có chứa một hay nhiều chữ số"
   },
   "policyInEffectSpecial": {
-    "message": "Chứa ký tự đặc biệt $CHARS$",
+    "message": "Có chứa một hay nhiều ký tự đặc biệt sau $CHARS$",
     "placeholders": {
       "chars": {
         "content": "$1",
@@ -2362,7 +2368,7 @@
     "message": "bất cứ lúc nào."
   },
   "byContinuingYouAgreeToThe": {
-    "message": "Nếu tiếp tục, bạn đồng ý"
+    "message": "Bằng cách tiếp tục, bạn đồng ý với"
   },
   "and": {
     "message": "và"
@@ -2374,22 +2380,22 @@
     "message": "Điều khoản sử dụng và Chính sách quyền riêng tư chưa được đồng ý."
   },
   "termsOfService": {
-    "message": "Điều khoản sử dụng"
+    "message": "Điều khoản dịch vụ"
   },
   "privacyPolicy": {
-    "message": "Chính sách quyền riêng tư"
+    "message": "Chính sách bảo mật"
   },
   "yourNewPasswordCannotBeTheSameAsYourCurrentPassword": {
-    "message": "Your new password cannot be the same as your current password."
+    "message": "Mật khẩu mới của bạn không thể giống với mật khẩu cũ."
   },
   "hintEqualsPassword": {
-    "message": "Lời nhắc mật khẩu không được giống mật khẩu của bạn"
+    "message": "Gợi ý mật khẩu không được trùng với mật khẩu của bạn."
   },
   "ok": {
     "message": "Ok"
   },
   "errorRefreshingAccessToken": {
-    "message": "Lỗi làm mới khoá truy cập"
+    "message": "Lỗi cập nhật token truy cập"
   },
   "errorRefreshingAccessTokenDesc": {
     "message": "Bạn có thể đã bị đăng xuất. Vui lòng đăng xuất và đăng nhập lại."
@@ -2398,43 +2404,43 @@
     "message": "Xác minh đồng bộ máy tính"
   },
   "desktopIntegrationVerificationText": {
-    "message": "Vui lòng xác minh ứng dụng trên máy tính hiển thị cụm vân tay này: "
+    "message": "Vui lòng xác minh ứng dụng trên máy tính hiển thị cụm từ xác thực này: "
   },
   "desktopIntegrationDisabledTitle": {
-    "message": "Tích hợp trình duyệt chưa được kích hoạt"
+    "message": "Tích hợp trình duyệt chưa được thiết lập"
   },
   "desktopIntegrationDisabledDesc": {
-    "message": "Tích hợp trình duyệt không được thiết lập trong ứng dụng máy tính để bàn Bitwarden. Vui lòng thiết lập nó trong cài đặt trong ứng dụng máy tính để bàn."
+    "message": "Tính năng tích hợp trình duyệt chưa được thiết lập trong ứng dụng Bitwarden trên máy tính. Vui lòng thiết lập tính năng này trong phần cài đặt của ứng dụng trên máy tính."
   },
   "startDesktopTitle": {
     "message": "Mở ứng dụng Bitwarden trên máy tính"
   },
   "startDesktopDesc": {
-    "message": "Ứng dụng máy tính để bàn Bitwarden cần được khởi động trước khi có thể sử dụng tính năng mở khóa bằng sinh trắc học."
+    "message": "Ứng dụng Bitwarden trên máy tính cần được khởi động trước khi có thể sử dụng tính năng mở khóa bằng sinh trắc học."
   },
   "errorEnableBiometricTitle": {
-    "message": "Không thể bật nhận dạng sinh trắc học"
+    "message": "Không thể thiết lập nhận dạng sinh trắc học"
   },
   "errorEnableBiometricDesc": {
-    "message": "Hành động đã bị hủy bởi ứng dụng máy tính để bàn"
+    "message": "Hành động đã bị hủy bởi ứng dụng trên máy tính"
   },
   "nativeMessagingInvalidEncryptionDesc": {
-    "message": "Ứng dụng máy tính để bàn đã vô hiệu hóa kênh liên lạc an toàn. Vui lòng thử lại thao tác này"
+    "message": "Ứng dụng trên máy tính đã vô hiệu hóa kênh liên lạc an toàn. Vui lòng thử lại thao tác này"
   },
   "nativeMessagingInvalidEncryptionTitle": {
-    "message": "Giao tiếp máy tính để bàn bị gián đoạn"
+    "message": "Giao tiếp với ứng dụng trên máy tính bị gián đoạn"
   },
   "nativeMessagingWrongUserDesc": {
-    "message": "Ứng dụng máy tính để bàn được đăng nhập vào một tài khoản khác. Hãy đảm bảo cả hai ứng dụng được đăng nhập vào cùng một tài khoản."
+    "message": "Ứng dụng trên máy tính đang đăng nhập vào một tài khoản khác. Hãy đảm bảo cả hai ứng dụng được đăng nhập vào cùng một tài khoản."
   },
   "nativeMessagingWrongUserTitle": {
-    "message": "Tài khoản không đúng"
+    "message": "Không khớp tài khoản"
   },
   "nativeMessagingWrongUserKeyTitle": {
-    "message": "Biometric key missmatch"
+    "message": "Khóa sinh trắc học không khớp"
   },
   "nativeMessagingWrongUserKeyDesc": {
-    "message": "Biometric unlock failed. The biometric secret key failed to unlock the vault. Please try to set up biometrics again."
+    "message": "Mở khóa bằng sinh trắc học thất bại. Khóa sinh trắc học không thể mở khóa kho. Vui lòng thử thiết lập lại sinh trắc học."
   },
   "biometricsNotEnabledTitle": {
     "message": "Sinh trắc học chưa được cài đặt"
@@ -2455,31 +2461,31 @@
     "message": "Vui lòng mở khóa người dùng này trong ứng dụng máy tính và thử lại."
   },
   "biometricsNotAvailableTitle": {
-    "message": "Biometric unlock unavailable"
+    "message": "Mở khóa bằng sinh trắc học không khả dụng"
   },
   "biometricsNotAvailableDesc": {
-    "message": "Biometric unlock is currently unavailable. Please try again later."
+    "message": "Mở khóa bằng sinh trắc học hiện không khả dụng. Vui lòng thử lại sau."
   },
   "biometricsFailedTitle": {
-    "message": "Sinh trắc học không thành công"
+    "message": "Xác thực sinh trắc học thất bại"
   },
   "biometricsFailedDesc": {
-    "message": "Không thể hoàn thành sinh trắc học, hãy cân nhắc sử dụng mật khẩu chính hoặc đăng xuất. Nếu sự cố vẫn tiếp diễn, vui lòng liên hệ bộ phận hỗ trợ của Bitwarden."
+    "message": "Không thể xác thực sinh trắc học, hãy cân nhắc sử dụng mật khẩu chính hoặc đăng xuất. Nếu sự cố vẫn tiếp diễn, vui lòng liên hệ bộ phận hỗ trợ của Bitwarden."
   },
   "nativeMessaginPermissionErrorTitle": {
-    "message": "Quyền chưa được cấp"
+    "message": "Chưa được cấp quyền"
   },
   "nativeMessaginPermissionErrorDesc": {
-    "message": "Nếu không được phép giao tiếp với Ứng dụng máy tính để bàn Bitwarden, chúng tôi không thể cung cấp sinh trắc học trong tiện ích mở rộng trình duyệt. Vui lòng thử lại."
+    "message": "Nếu không được phép giao tiếp với Ứng dụng Bitwarden trên máy tính, chúng tôi không thể cung cấp tính năng sinh trắc học trong tiện ích mở rộng trình duyệt. Vui lòng thử lại."
   },
   "nativeMessaginPermissionSidebarTitle": {
-    "message": "Lỗi yêu cầu quyền"
+    "message": "Lỗi yêu cầu quyền truy cập"
   },
   "nativeMessaginPermissionSidebarDesc": {
     "message": "Không thể thực hiện hành động này trong thanh bên, vui lòng thử lại hành động trong cửa sổ bật lên hoặc cửa sổ bật ra."
   },
   "personalOwnershipSubmitError": {
-    "message": "Do Chính sách doanh nghiệp, bạn bị hạn chế lưu các mục vào kho tiền cá nhân của mình. Thay đổi tùy chọn Quyền sở hữu thành một tổ chức và chọn từ các bộ sưu tập có sẵn."
+    "message": "Do chính sách của doanh nghiệp, bạn không thể lưu trữ các mục vào kho cá nhân của mình. Hãy thay đổi tùy chọn Quyền sở hữu thành tổ chức và chọn từ các bộ sưu tập có sẵn."
   },
   "personalOwnershipPolicyInEffect": {
     "message": "Chính sách của tổ chức đang ảnh hưởng đến các tùy chọn quyền sở hữu của bạn."
@@ -2488,20 +2494,20 @@
     "message": "Chính sách của tổ chức đã chặn việc nhập các mục vào kho cá nhân của bạn."
   },
   "restrictCardTypeImport": {
-    "message": "Cannot import card item types"
+    "message": "Không thể nhập mục thẻ"
   },
   "restrictCardTypeImportDesc": {
-    "message": "A policy set by 1 or more organizations prevents you from importing cards to your vaults."
+    "message": "Một chính sách được thiết lập bởi 1 hoặc nhiều tổ chức ngăn bạn nhập thẻ vào kho của mình."
   },
   "domainsTitle": {
     "message": "Các tên miền",
     "description": "A category title describing the concept of web domains"
   },
   "blockedDomains": {
-    "message": "Blocked domains"
+    "message": "Tên miền đã chặn"
   },
   "learnMoreAboutBlockedDomains": {
-    "message": "Learn more about blocked domains"
+    "message": "Tìm hiểu thêm về các tên miền bị chặn"
   },
   "excludedDomains": {
     "message": "Tên miền đã loại trừ"
@@ -2510,26 +2516,26 @@
     "message": "Bitwarden sẽ không yêu cầu lưu thông tin đăng nhập cho các miền này. Bạn phải làm mới trang để các thay đổi có hiệu lực."
   },
   "excludedDomainsDescAlt": {
-    "message": "Bitwarden sẽ không yêu cầu lưu thông tin đăng nhập cho các miền này. Bạn phải làm mới trang để các thay đổi có hiệu lực."
+    "message": "Bitwarden sẽ không yêu cầu lưu thông tin đăng nhập cho các tên miền này đối với tất cả tài khoản đã đăng nhập. Bạn phải làm mới trang để các thay đổi có hiệu lực."
   },
   "blockedDomainsDesc": {
-    "message": "Autofill and other related features will not be offered for these websites. You must refresh the page for changes to take effect."
+    "message": "Tự động điền và các tính năng liên quan khác sẽ không được cung cấp cho các trang web này. Bạn phải làm mới trang để các thay đổi có hiệu lực."
   },
   "autofillBlockedNoticeV2": {
-    "message": "Autofill is blocked for this website."
+    "message": "Tự động điền bị chặn cho trang web này."
   },
   "autofillBlockedNoticeGuidance": {
-    "message": "Change this in settings"
+    "message": "Thay đổi điều này trong cài đặt"
   },
   "change": {
-    "message": "Change"
+    "message": "Thay đổi"
   },
   "changePassword": {
-    "message": "Change password",
+    "message": "Thay đổi mật khẩu",
     "description": "Change password button for browser at risk notification on login."
   },
   "changeButtonTitle": {
-    "message": "Change password - $ITEMNAME$",
+    "message": "Thay đổi mật khẩu - $ITEMNAME$",
     "placeholders": {
       "itemname": {
         "content": "$1",
@@ -2538,13 +2544,13 @@
     }
   },
   "atRiskPassword": {
-    "message": "At-risk password"
+    "message": "Mật khẩu có rủi ro cao"
   },
   "atRiskPasswords": {
-    "message": "At-risk passwords"
+    "message": "Mật khẩu có rủi ro cao"
   },
   "atRiskPasswordDescSingleOrg": {
-    "message": "$ORGANIZATION$ is requesting you change one password because it is at-risk.",
+    "message": "$ORGANIZATION$ yêu cầu bạn thay đổi mật khẩu vì mật khẩu hiện tại đang gặp rủi ro.",
     "placeholders": {
       "organization": {
         "content": "$1",
@@ -2553,7 +2559,7 @@
     }
   },
   "atRiskPasswordsDescSingleOrgPlural": {
-    "message": "$ORGANIZATION$ is requesting you change the $COUNT$ passwords because they are at-risk.",
+    "message": "$ORGANIZATION$ yêu cầu bạn thay đổi $COUNT$ mật khẩu vì chúng đang có rủi ro.",
     "placeholders": {
       "organization": {
         "content": "$1",
@@ -2566,7 +2572,7 @@
     }
   },
   "atRiskPasswordsDescMultiOrgPlural": {
-    "message": "Your organizations are requesting you change the $COUNT$ passwords because they are at-risk.",
+    "message": "Các tổ chức của bạn đang yêu cầu bạn thay đổi $COUNT$ mật khẩu vì chúng đang có rủi ro.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -2575,7 +2581,7 @@
     }
   },
   "atRiskChangePrompt": {
-    "message": "Your password for this site is at-risk. $ORGANIZATION$ has requested that you change it.",
+    "message": "Mật khẩu của bạn cho trang web này đang gặp rủi ro. $ORGANIZATION$ đã yêu cầu bạn thay đổi mật khẩu.",
     "placeholders": {
       "organization": {
         "content": "$1",
@@ -2585,7 +2591,7 @@
     "description": "Notification body when a login triggers an at-risk password change request and the change password domain is known."
   },
   "atRiskNavigatePrompt": {
-    "message": "$ORGANIZATION$ wants you to change this password because it is at-risk. Navigate to your account settings to change the password.",
+    "message": "$ORGANIZATION$ yêu cầu bạn thay đổi mật khẩu này vì nó đang gặp rủi ro. Vui lòng truy cập vào cài đặt tài khoản của bạn để thay đổi mật khẩu.",
     "placeholders": {
       "organization": {
         "content": "$1",
@@ -2595,10 +2601,10 @@
     "description": "Notification body when a login triggers an at-risk password change request and no change password domain is provided."
   },
   "reviewAndChangeAtRiskPassword": {
-    "message": "Review and change one at-risk password"
+    "message": "Kiểm tra và thay đổi một mật khẩu có rủi ro cao"
   },
   "reviewAndChangeAtRiskPasswordsPlural": {
-    "message": "Review and change $COUNT$ at-risk passwords",
+    "message": "Kiểm tra và thay đổi $COUNT$ mật khẩu có rủi ro cao",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -2607,52 +2613,52 @@
     }
   },
   "changeAtRiskPasswordsFaster": {
-    "message": "Change at-risk passwords faster"
+    "message": "Thay đổi mật khẩu có rủi ro bị lộ nhanh hơn"
   },
   "changeAtRiskPasswordsFasterDesc": {
-    "message": "Update your settings so you can quickly autofill your passwords and generate new ones"
+    "message": "Cập nhật cài đặt của bạn để bạn có thể tự động điền và tạo mật khẩu mới nhanh chóng"
   },
   "reviewAtRiskLogins": {
-    "message": "Review at-risk logins"
+    "message": "Xem lại các lần đăng nhập có nguy cơ cao"
   },
   "reviewAtRiskPasswords": {
-    "message": "Review at-risk passwords"
+    "message": "Xem lại các mật khẩu có rủi ro cao"
   },
   "reviewAtRiskLoginsSlideDesc": {
-    "message": "Your organization passwords are at-risk because they are weak, reused, and/or exposed.",
+    "message": "Mật khẩu của tổ chức bạn đang gặp rủi ro vì độ mạnh yếu, được sử dụng lại và/hoặc bị lộ.",
     "description": "Description of the review at-risk login slide on the at-risk password page carousel"
   },
   "reviewAtRiskLoginSlideImgAltPeriod": {
-    "message": "Illustration of a list of logins that are at-risk."
+    "message": "Minh họa danh sách các tài khoản đăng nhập có rủi ro."
   },
   "generatePasswordSlideDesc": {
-    "message": "Quickly generate a strong, unique password with the Bitwarden autofill menu on the at-risk site.",
+    "message": "Tạo nhanh một mật khẩu mạnh, duy nhất bằng menu tự động điền của Bitwarden trên trang web có nguy cơ.",
     "description": "Description of the generate password slide on the at-risk password page carousel"
   },
   "generatePasswordSlideImgAltPeriod": {
-    "message": "Illustration of the Bitwarden autofill menu displaying a generated password."
+    "message": "Minh họa menu tự điền mật khẩu của Bitwarden hiển thị một mật khẩu được tạo ra."
   },
   "updateInBitwarden": {
-    "message": "Update in Bitwarden"
+    "message": "Cập nhật trong Bitwarden"
   },
   "updateInBitwardenSlideDesc": {
-    "message": "Bitwarden will then prompt you to update the password in the password manager.",
+    "message": "Bitwarden sau đó sẽ yêu cầu bạn cập nhật mật khẩu trong trình quản lý mật khẩu.",
     "description": "Description of the update in Bitwarden slide on the at-risk password page carousel"
   },
   "updateInBitwardenSlideImgAltPeriod": {
-    "message": "Illustration of a Bitwarden’s notification prompting the user to update the login."
+    "message": "Minh họa thông báo của Bitwarden yêu cầu người dùng cập nhật thông tin đăng nhập."
   },
   "turnOnAutofill": {
-    "message": "Turn on autofill"
+    "message": "Bật tự động điền"
   },
   "turnedOnAutofill": {
-    "message": "Turned on autofill"
+    "message": "Đã bật tự động điền"
   },
   "dismiss": {
-    "message": "Dismiss"
+    "message": "Bỏ qua"
   },
   "websiteItemLabel": {
-    "message": "Trang Web $number$ (URI)",
+    "message": "Trang web $number$ (URI)",
     "placeholders": {
       "number": {
         "content": "$1",
@@ -2670,20 +2676,20 @@
     }
   },
   "blockedDomainsSavedSuccess": {
-    "message": "Blocked domain changes saved"
+    "message": "Đã lưu thay đổi tên miền bị chặn"
   },
   "excludedDomainsSavedSuccess": {
-    "message": "Các thay đổi tên miền loại trừ đã được lưu"
+    "message": "Thay đổi tên miền bị loại trừ đã được lưu"
   },
   "limitSendViews": {
-    "message": "Limit views"
+    "message": "Giới hạn số lượt xem"
   },
   "limitSendViewsHint": {
-    "message": "No one can view this Send after the limit is reached.",
+    "message": "Không ai có thể xem mục Gửi này sau khi đạt đến giới hạn.",
     "description": "Displayed under the limit views field on Send"
   },
   "limitSendViewsCount": {
-    "message": "$ACCESSCOUNT$ views left",
+    "message": "$ACCESSCOUNT$ lượt xem còn lại",
     "description": "Displayed under the limit views field on Send",
     "placeholders": {
       "accessCount": {
@@ -2693,32 +2699,32 @@
     }
   },
   "send": {
-    "message": "Gửi",
+    "message": "Send",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendDetails": {
-    "message": "Send details",
+    "message": "Chi tiết Gửi",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendTypeText": {
     "message": "Văn bản"
   },
   "sendTypeTextToShare": {
-    "message": "Text to share"
+    "message": "Nội dung chia sẻ"
   },
   "sendTypeFile": {
     "message": "Tập tin"
   },
   "allSends": {
-    "message": "Tất cả mục Gửi",
+    "message": "Toàn bộ Send",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "maxAccessCountReached": {
-    "message": "Max access count reached",
+    "message": "Đã vượt số lần truy cập tối đa",
     "description": "This text will be displayed after a Send has been accessed the maximum amount of times."
   },
   "hideTextByDefault": {
-    "message": "Hide text by default"
+    "message": "Mặc định ẩn văn bản"
   },
   "expired": {
     "message": "Đã hết hạn"
@@ -2730,7 +2736,7 @@
     "message": "Sao chép liên kết"
   },
   "copySendLink": {
-    "message": "Sao chép liên kết mục Gửi",
+    "message": "Sao chép liên kết Send",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "removePassword": {
@@ -2743,11 +2749,11 @@
     "message": "Đã xóa mật khẩu"
   },
   "deletedSend": {
-    "message": "Đã xóa mục Gửi",
+    "message": "Đã xóa Send",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendLink": {
-    "message": "Liên kết Gửi",
+    "message": "Liên kết Send",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "disabled": {
@@ -2757,26 +2763,26 @@
     "message": "Bạn có chắc chắn muốn xóa mật khẩu này không?"
   },
   "deleteSend": {
-    "message": "Xóa mục Gửi",
+    "message": "Xóa Send",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "deleteSendConfirmation": {
-    "message": "Bạn có chắc muốn mục Gửi này?",
+    "message": "Bạn có chắc chắn muốn xóa Send này?",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "deleteSendPermanentConfirmation": {
-    "message": "Are you sure you want to permanently delete this Send?",
+    "message": "Bạn có chắc chắn muốn xóa vĩnh viễn mục Gửi này không?",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "editSend": {
-    "message": "Sửa mục Gửi",
+    "message": "Chỉnh sửa Send",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "deletionDate": {
     "message": "Ngày xóa"
   },
   "deletionDateDescV2": {
-    "message": "The Send will be permanently deleted on this date.",
+    "message": "Mục Gửi sẽ được xóa vĩnh viễn vào ngày này.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "expirationDate": {
@@ -2798,7 +2804,7 @@
     "message": "Tùy chỉnh"
   },
   "sendPasswordDescV3": {
-    "message": "Add an optional password for recipients to access this Send.",
+    "message": "Thêm mật khẩu tùy chọn cho người nhận để có thể truy cập vào mục Gửi này.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "createSend": {
@@ -2813,23 +2819,23 @@
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendDisabledWarning": {
-    "message": "Do chính sách doanh nghiệp, bạn chỉ có thể xóa những mục Gửi hiện có.",
+    "message": "Do chính sách doanh nghiệp, bạn chỉ có thể xóa những Send hiện có.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "createdSend": {
-    "message": "Đã tạo mục Gửi",
+    "message": "Đã tạo Send",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "createdSendSuccessfully": {
-    "message": "Send created successfully!",
+    "message": "Mục Gửi đã tạo thành công!",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendExpiresInHoursSingle": {
-    "message": "The Send will be available to anyone with the link for the next 1 hour.",
+    "message": "Mục Gửi này sẽ được cung cấp cho bất kỳ ai có liên kết trong 1 giờ tới.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendExpiresInHours": {
-    "message": "The Send will be available to anyone with the link for the next $HOURS$ hours.",
+    "message": "Mục Gửi này sẽ được cung cấp cho bất kỳ ai có liên kết trong $HOURS$ giờ tới.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated.",
     "placeholders": {
       "hours": {
@@ -2839,11 +2845,11 @@
     }
   },
   "sendExpiresInDaysSingle": {
-    "message": "The Send will be available to anyone with the link for the next 1 day.",
+    "message": "Mục Gửi này sẽ được cung cấp cho bất kỳ ai có liên kết trong 1 ngày tới.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendExpiresInDays": {
-    "message": "The Send will be available to anyone with the link for the next $DAYS$ days.",
+    "message": "Mục Gửi này sẽ được cung cấp cho bất kỳ ai có liên kết trong $DAYS$ ngày tới.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated.",
     "placeholders": {
       "days": {
@@ -2853,32 +2859,32 @@
     }
   },
   "sendLinkCopied": {
-    "message": "Send link copied",
+    "message": "Đã sao chép liên kết Gửi",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "editedSend": {
-    "message": "Đã lưu mục Gửi",
+    "message": "Đã lưu Send",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendFilePopoutDialogText": {
-    "message": "Pop out extension?",
+    "message": "Mở rộng tiện ích ra cửa sổ mới?",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendFilePopoutDialogDesc": {
-    "message": "To create a file Send, you need to pop out the extension to a new window.",
+    "message": "Để tạo tệp Gửi, bạn cần mở phần mở rộng trong cửa sổ mới.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendLinuxChromiumFileWarning": {
-    "message": "Để chọn tập tin, mở tiện ích mở rộng trong thanh bên (nếu có thể) hoặc mở ra cửa sổ mới bằng cách nhấp vào biểu ngữ này."
+    "message": "Để chọn tập tin, mở tiện ích mở rộng trong thanh bên (nếu có thể) hoặc mở cửa sổ mới bằng cách nhấp vào biểu ngữ này."
   },
   "sendFirefoxFileWarning": {
-    "message": "Để chọn tập tin bằng Firefox, mở tiện ích mở rộng trong thanh bên hoặc mở ra cửa sổ mới bằng cách nhấp vào biểu ngữ này."
+    "message": "Để chọn tập tin bằng Firefox, mở tiện ích mở rộng trong thanh bên hoặc mở cửa sổ mới bằng cách nhấp vào biểu ngữ này."
   },
   "sendSafariFileWarning": {
-    "message": "Để chọn tập tin bằng Safari, mở ra cửa sổ mới bằng cách nhấp vào biểu ngữ này."
+    "message": "Để chọn tập tin bằng Safari, mở cửa sổ mới bằng cách nhấp vào biểu ngữ này."
   },
   "popOut": {
-    "message": "Pop out"
+    "message": "Mở rộng"
   },
   "sendFileCalloutHeader": {
     "message": "Trước khi bạn bắt đầu"
@@ -2899,10 +2905,10 @@
     "message": "Đã xảy ra lỗi khi lưu ngày xoá và ngày hết hạn của bạn."
   },
   "hideYourEmail": {
-    "message": "Hide your email address from viewers."
+    "message": "Ẩn địa chỉ email của bạn với người xem."
   },
   "passwordPrompt": {
-    "message": "Nhắc lại mật khẩu chính"
+    "message": "Nhập lại mật khẩu chính"
   },
   "passwordConfirmation": {
     "message": "Xác nhận mật khẩu chính"
@@ -2911,16 +2917,16 @@
     "message": "Hành động này được bảo vệ. Để tiếp tục, hãy nhập lại mật khẩu chính của bạn để xác minh danh tính."
   },
   "emailVerificationRequired": {
-    "message": "Yêu cầu xác nhận danh tính qua email"
+    "message": "Yêu cầu xác minh danh tính qua email"
   },
   "emailVerifiedV2": {
     "message": "Email đã xác minh"
   },
   "emailVerificationRequiredDesc": {
-    "message": "Bạn phải xác nhận email để sử dụng tính năng này. Bạn có thể xác minh email trên web."
+    "message": "Bạn phải xác minh email để sử dụng tính năng này. Bạn có thể xác minh email trên web."
   },
   "masterPasswordSuccessfullySet": {
-    "message": "Master password successfully set"
+    "message": "Mật khẩu chính được thiết lập thành công"
   },
   "updatedMasterPassword": {
     "message": "Đã cập nhật mật khẩu chính"
@@ -2929,13 +2935,13 @@
     "message": "Cập nhật mật khẩu chính"
   },
   "updateMasterPasswordWarning": {
-    "message": "Mật khẩu chính của bạn gần đây đã được thay đổi bởi người quản trị trong tổ chức của bạn. Để truy cập kho, bạn phải cập nhật nó ngay bây giờ. Việc tiếp tục sẽ đăng xuất khỏi kho và bạn sẽ cần đăng nhập lại. Ứng dụng Bitwaden trên các thiết bị khác có thể tiếp tục hoạt động trong tối đa một giờ sau đó sẽ bị đăng xuất."
+    "message": "Mật khẩu chính của bạn gần đây đã được thay đổi bởi người quản trị trong tổ chức của bạn. Để truy cập kho, bạn phải cập nhật mật khẩu chính của mình ngay bây giờ. Việc tiếp tục sẽ đăng xuất khỏi kho và bạn sẽ cần đăng nhập lại. Ứng dụng Bitwaden trên các thiết bị khác có thể tiếp tục hoạt động trong tối đa một giờ sau đó sẽ bị đăng xuất."
   },
   "updateWeakMasterPasswordWarning": {
     "message": "Mật khẩu chính của bạn không đáp ứng chính sách tổ chức của bạn. Để truy cập kho, bạn phải cập nhật mật khẩu chính của mình ngay bây giờ. Việc tiếp tục sẽ đăng xuất bạn khỏi phiên hiện tại và bắt buộc đăng nhập lại. Các phiên hoạt động trên các thiết bị khác có thể tiếp tục duy trì hoạt động trong tối đa một giờ."
   },
   "tdeDisabledMasterPasswordRequired": {
-    "message": "Tổ chức của bạn đã vô hiệu hóa mã hóa bằng thiết bị đáng tin cậy. Vui lòng đặt mật khẩu chính để truy cập Kho của bạn."
+    "message": "Tổ chức của bạn đã vô hiệu hóa tính năng mã hóa thiết bị tin cậy. Vui lòng đặt mật khẩu chính để truy cập kho của bạn."
   },
   "resetPasswordPolicyAutoEnroll": {
     "message": "Đăng ký tự động"
@@ -2951,15 +2957,15 @@
     "description": "Used as a message within the notification bar when no folders are found"
   },
   "orgPermissionsUpdatedMustSetPassword": {
-    "message": "Quyền tổ chức của bạn đã được cập nhật, yêu cầu bạn đặt mật khẩu chính.",
+    "message": "Quyền truy cập của tổ chức bạn đã được cập nhật, yêu cầu bạn phải thiết lập mật khẩu chính.",
     "description": "Used as a card title description on the set password page to explain why the user is there"
   },
   "orgRequiresYouToSetPassword": {
-    "message": "Tổ chức của bạn yêu cầu bạn đặt mật khẩu chính.",
+    "message": "Tổ chức của bạn yêu cầu bạn thiết lập mật khẩu chính.",
     "description": "Used as a card title description on the set password page to explain why the user is there"
   },
   "cardMetrics": {
-    "message": "out of $TOTAL$",
+    "message": "trong tổng số $TOTAL$",
     "placeholders": {
       "total": {
         "content": "$1",
@@ -2978,7 +2984,7 @@
     "message": "Phút"
   },
   "vaultTimeoutPolicyAffectingOptions": {
-    "message": "Enterprise policy requirements have been applied to your timeout options"
+    "message": "Các yêu cầu chính sách của doanh nghiệp đã được áp dụng cho các tùy chọn thời gian chờ của bạn"
   },
   "vaultTimeoutPolicyInEffect": {
     "message": "Tổ chức của bạn đã đặt thời gian mở kho tối đa là $HOURS$ giờ và $MINUTES$ phút.",
@@ -2994,7 +3000,7 @@
     }
   },
   "vaultTimeoutPolicyInEffect1": {
-    "message": "$HOURS$ hour(s) and $MINUTES$ minute(s) maximum.",
+    "message": "Tối đa $HOURS$ giờ và $MINUTES$ phút.",
     "placeholders": {
       "hours": {
         "content": "$1",
@@ -3007,7 +3013,7 @@
     }
   },
   "vaultTimeoutPolicyMaximumError": {
-    "message": "Timeout exceeds the restriction set by your organization: $HOURS$ hour(s) and $MINUTES$ minute(s) maximum",
+    "message": "Thời gian chờ đã vượt quá giới hạn do tổ chức của bạn đặt ra: Tối đa $HOURS$ giờ và $MINUTES$ phút",
     "placeholders": {
       "hours": {
         "content": "$1",
@@ -3020,7 +3026,7 @@
     }
   },
   "vaultTimeoutPolicyWithActionInEffect": {
-    "message": "Tổ chức của bạn đang ảnh hưởng đến thời gian mở kho. Thời gian mở kho tối đa là $HOURS$ giờ và $MINUTES$ phút. Kho sẽ $ACTION$ sau khi hết thời gian mở kho.",
+    "message": "Các chính sách của tổ chức bạn đang ảnh hưởng đến thời gian mở kho. Thời gian mở kho tối đa được phép là $HOURS$ giờ và $MINUTES$ phút. Kho sẽ $ACTION$ sau khi hết thời gian mở kho.",
     "placeholders": {
       "hours": {
         "content": "$1",
@@ -3037,7 +3043,7 @@
     }
   },
   "vaultTimeoutActionPolicyInEffect": {
-    "message": "Tổ chức của bạn sẽ $ACTION$ sau khi hết thời gian mở kho.",
+    "message": "Chính sách của tổ chức bạn đã thiết lập hành động sau khi hết thời gian mở kho là $ACTION$.",
     "placeholders": {
       "action": {
         "content": "$1",
@@ -3055,19 +3061,19 @@
     "message": "Các chính sách của tổ chức ngăn cản bạn xuất kho lưu trữ cá nhân của mình."
   },
   "copyCustomFieldNameInvalidElement": {
-    "message": "Không thể xác định được phần tử biểu mẫu hợp lệ. Thay vào đó hãy thử kiểm tra trong HTML."
+    "message": "Không thể xác định được phần tử biểu mẫu hợp lệ. Thay vào đó hãy thử kiểm tra mã HTML."
   },
   "copyCustomFieldNameNotUnique": {
     "message": "Không tìm thấy danh tính duy nhất."
   },
   "removeMasterPasswordForOrganizationUserKeyConnector": {
-    "message": "A master password is no longer required for members of the following organization. Please confirm the domain below with your organization administrator."
+    "message": "Mật khẩu chính không còn được yêu cầu đối với các thành viên của tổ chức sau đây. Vui lòng xác nhận tên miền bên dưới với quản trị viên của tổ chức."
   },
   "organizationName": {
-    "message": "Organization name"
+    "message": "Tên tổ chức"
   },
   "keyConnectorDomain": {
-    "message": "Key Connector domain"
+    "message": "Tên miền Key Connector"
   },
   "leaveOrganization": {
     "message": "Rời tổ chức"
@@ -3094,7 +3100,7 @@
     "message": "Đang xuất dữ liệu kho cá nhân"
   },
   "exportingIndividualVaultDescription": {
-    "message": "Chỉ dữ liệu trong kho cá nhân liên kết với $EMAIL$ mới được xuất. Không bao gồm \ncác dữ liệu trong kho tổ chức. Chỉ thông tin mục kho mới được xuất, sẽ không có các tệp đính kèm.",
+    "message": "Chỉ dữ liệu trong kho cá nhân liên kết với $EMAIL$ mới được xuất. Không bao gồm các dữ liệu trong kho tổ chức. Chỉ thông tin về các mục trong kho mới được xuất, sẽ không có các tệp đính kèm.",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3103,7 +3109,7 @@
     }
   },
   "exportingIndividualVaultWithAttachmentsDescription": {
-    "message": "Only the individual vault items including attachments associated with $EMAIL$ will be exported. Organization vault items will not be included",
+    "message": "Chỉ các mục kho lưu trữ cá nhân bao gồm các tệp đính kèm liên quan đến $EMAIL$ sẽ được xuất. Các mục trong kho lưu trữ của tổ chức sẽ không được bao gồm",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3127,27 +3133,27 @@
     "message": "Lỗi"
   },
   "decryptionError": {
-    "message": "Decryption error"
+    "message": "Lỗi giải mã"
   },
   "couldNotDecryptVaultItemsBelow": {
-    "message": "Bitwarden could not decrypt the vault item(s) listed below."
+    "message": "Bitwarden không thể giải mã các mục trong kho lưu trữ được liệt kê bên dưới."
   },
   "contactCSToAvoidDataLossPart1": {
-    "message": "Contact customer success",
+    "message": "Liên hệ hỗ trợ khách hàng thành công",
     "description": "This is part of a larger sentence. The full sentence will read 'Contact customer success to avoid additional data loss.'"
   },
   "contactCSToAvoidDataLossPart2": {
-    "message": "to avoid additional data loss.",
+    "message": "để tránh mất mát thêm dữ liệu.",
     "description": "This is part of a larger sentence. The full sentence will read 'Contact customer success to avoid additional data loss.'"
   },
   "generateUsername": {
     "message": "Tạo tên người dùng"
   },
   "generateEmail": {
-    "message": "Generate email"
+    "message": "Tạo email"
   },
   "spinboxBoundariesHint": {
-    "message": "Value must be between $MIN$ and $MAX$.",
+    "message": "Giá trị phải nằm trong khoảng từ $MIN$ đến $MAX$.",
     "description": "Explains spin box minimum and maximum values to the user",
     "placeholders": {
       "min": {
@@ -3161,7 +3167,7 @@
     }
   },
   "passwordLengthRecommendationHint": {
-    "message": " Use $RECOMMENDED$ characters or more to generate a strong password.",
+    "message": " Sử dụng ít nhất $RECOMMENDED$ ký tự để tạo một mật khẩu mạnh.",
     "description": "Appended to `spinboxBoundariesHint` to recommend a length to the user. This must include any language-specific 'sentence' separator characters (e.g. a space in english).",
     "placeholders": {
       "recommended": {
@@ -3171,7 +3177,7 @@
     }
   },
   "passphraseNumWordsRecommendationHint": {
-    "message": " Use $RECOMMENDED$ words or more to generate a strong passphrase.",
+    "message": " Sử dụng ít nhất $RECOMMENDED$ từ để tạo cụm mật khẩu mạnh.",
     "description": "Appended to `spinboxBoundariesHint` to recommend a number of words to the user. This must include any language-specific 'sentence' separator characters (e.g. a space in english).",
     "placeholders": {
       "recommended": {
@@ -3185,10 +3191,10 @@
     "description": "Username generator option that appends a random sub-address to the username. For example: address+subaddress@email.com"
   },
   "plusAddressedEmailDesc": {
-    "message": "Sử dụng khả năng địa chỉ phụ của nhà cung cấp dịch vụ mail của bạn."
+    "message": "Sử dụng tính năng địa chỉ phụ của nhà cung cấp dịch vụ email của bạn."
   },
   "catchallEmail": {
-    "message": "Email Catch-all"
+    "message": "Catch-all email"
   },
   "catchallEmailDesc": {
     "message": "Sử dụng hộp thư bạn đã thiết lập để nhận tất cả email gửi đến tên miền của bạn."
@@ -3206,17 +3212,17 @@
     "message": "Dịch vụ"
   },
   "forwardedEmail": {
-    "message": "Đã chuyển tiếp bí danh email"
+    "message": "Địa chỉ email thay thế"
   },
   "forwardedEmailDesc": {
-    "message": "Tạo bí danh email với dịch vụ chuyển tiếp bên ngoài."
+    "message": "Tạo một địa chỉ email ảo bằng dịch vụ chuyển tiếp email bên ngoài."
   },
   "forwarderDomainName": {
-    "message": "Email domain",
+    "message": "Tên miền email",
     "description": "Labels the domain name email forwarder service option"
   },
   "forwarderDomainNameHint": {
-    "message": "Choose a domain that is supported by the selected service",
+    "message": "Chọn một tên miền được hỗ trợ bởi dịch vụ đã chọn",
     "description": "Guidance provided for email forwarding services that support multiple email domains."
   },
   "forwarderError": {
@@ -3258,7 +3264,7 @@
     }
   },
   "forwaderInvalidTokenWithMessage": {
-    "message": "Khoá API $SERVICENAME$ không hợp lệ: $ERRORMESSAGE$",
+    "message": "Token API $SERVICENAME$ không hợp lệ: $ERRORMESSAGE$",
     "description": "Displayed when the user's API token is rejected by the forwarding service with an error message.",
     "placeholders": {
       "servicename": {
@@ -3272,7 +3278,7 @@
     }
   },
   "forwaderInvalidOperation": {
-    "message": "$SERVICENAME$ refused your request. Please contact your service provider for assistance.",
+    "message": "$SERVICENAME$ đã từ chối yêu cầu của bạn. Vui lòng liên hệ với nhà cung cấp dịch vụ của bạn để được hỗ trợ.",
     "description": "Displayed when the user is forbidden from using the API by the forwarding service.",
     "placeholders": {
       "servicename": {
@@ -3282,7 +3288,7 @@
     }
   },
   "forwaderInvalidOperationWithMessage": {
-    "message": "$SERVICENAME$ refused your request: $ERRORMESSAGE$",
+    "message": "$SERVICENAME$ đã từ chối yêu cầu của bạn: $ERRORMESSAGE$",
     "description": "Displayed when the user is forbidden from using the API by the forwarding service with an error message.",
     "placeholders": {
       "servicename": {
@@ -3296,7 +3302,7 @@
     }
   },
   "forwarderNoAccountId": {
-    "message": "Không thể lấy ID tài khoản email ẩn từ $SERVICENAME$.",
+    "message": "Không thể lấy ID tài khoản email ẩn danh của $SERVICENAME$.",
     "description": "Displayed when the forwarding service fails to return an account ID.",
     "placeholders": {
       "servicename": {
@@ -3356,10 +3362,10 @@
     "message": "Khóa API"
   },
   "ssoKeyConnectorError": {
-    "message": "Lỗi kết nối khóa: hãy đảm bảo kết nối khóa khả dụng và hoạt động chính xác."
+    "message": "Lỗi kết nối khóa: hãy đảm bảo kết nối khóa khả dụng và hoạt động bình thường."
   },
   "premiumSubcriptionRequired": {
-    "message": "Yêu cầu đăng ký gói Premium"
+    "message": "Yêu cầu đăng ký gói Cao cấp"
   },
   "organizationIsDisabled": {
     "message": "Tổ chức đã ngưng hoạt động."
@@ -3386,7 +3392,7 @@
     "message": "Bên thứ ba"
   },
   "thirdPartyServerMessage": {
-    "message": "Bạn đang kết nối đến máy chủ $SERVERNAME$ của bên thứ ba. Vui lòng kiểm tra lỗi bằng cách sử dụng máy chủ chính thức hoặc báo lỗi cho bên thứ ba.",
+    "message": "Kết nối với máy chủ của bên thứ ba, $SERVERNAME$. Vui lòng kiểm tra lỗi trên máy chủ chính thức hoặc báo cáo lỗi cho máy chủ của bên thứ ba.",
     "placeholders": {
       "servername": {
         "content": "$1",
@@ -3416,43 +3422,46 @@
     "message": "Đăng nhập bằng thiết bị"
   },
   "fingerprintPhraseHeader": {
-    "message": "Cụm vân tay"
+    "message": "Cụm từ xác thực"
   },
   "fingerprintMatchInfo": {
-    "message": "Vui lòng đảm bảo rằng bạn đã mở khoá kho và cụm vân tay khớp trên thiết bị khác."
+    "message": "Vui lòng đảm bảo rằng bạn đã mở khoá kho và cụm từ xác thực khớp với thiết bị khác."
   },
   "resendNotification": {
     "message": "Gửi lại thông báo"
   },
   "viewAllLogInOptions": {
-    "message": "View all log in options"
+    "message": "Xem tất cả tùy chọn đăng nhập"
   },
   "notificationSentDevice": {
     "message": "Một thông báo đã được gửi đến thiết bị của bạn."
   },
   "notificationSentDevicePart1": {
-    "message": "Unlock Bitwarden on your device or on the"
+    "message": "Mở khóa Bitwarden trên thiết bị của bạn hoặc trên"
   },
   "notificationSentDeviceAnchor": {
-    "message": "web app"
+    "message": "ứng dụng web"
   },
   "notificationSentDevicePart2": {
-    "message": "Make sure the Fingerprint phrase matches the one below before approving."
+    "message": "Hãy đảm bảo rằng cụm từ xác thực khớp với cụm từ bên dưới trước khi phê duyệt."
   },
   "aNotificationWasSentToYourDevice": {
-    "message": "A notification was sent to your device"
+    "message": "Một thông báo đã được gửi đến thiết bị của bạn"
   },
   "youWillBeNotifiedOnceTheRequestIsApproved": {
-    "message": "You will be notified once the request is approved"
+    "message": "Bạn sẽ nhận được thông báo ngay sau khi yêu cầu được phê duyệt"
   },
   "needAnotherOptionV1": {
-    "message": "Need another option?"
+    "message": "Cần một tùy chọn khác?"
   },
   "loginInitiated": {
     "message": "Bắt đầu đăng nhập"
   },
   "logInRequestSent": {
-    "message": "Request sent"
+    "message": "Đã gửi yêu cầu"
+  },
+  "masterPasswordChanged": {
+    "message": "Đã lưu mật khẩu chính"
   },
   "exposedMasterPassword": {
     "message": "Mật khẩu chính bị lộ"
@@ -3461,19 +3470,19 @@
     "message": "Mật khẩu này đã bị rò rỉ trong một vụ tấn công dữ liệu. Dùng mật khẩu mới và an toàn để bảo vệ tài khoản bạn. Bạn có chắc muốn sử dụng mật khẩu đã bị rò rỉ?"
   },
   "weakAndExposedMasterPassword": {
-    "message": "Mật khẩu chính yếu và bị lộ"
+    "message": "Mật khẩu chính yếu và dễ bị lộ"
   },
   "weakAndBreachedMasterPasswordDesc": {
-    "message": "Mật khẩu yếu này đã bị rò rỉ trong một vụ tấn công dữ liệu. Dùng mật khẩu mới và an toàn để bảo vệ tài khoản bạn. Bạn có chắc muốn sử dụng mật khẩu đã bị rò rỉ?"
+    "message": "Mật khẩu yếu này đã bị rò rỉ trong một vụ tấn công dữ liệu. Hãy dùng mật khẩu mạnh và duy nhất để bảo vệ tài khoản của bạn. Bạn có chắc muốn sử dụng mật khẩu đã bị rò rỉ?"
   },
   "checkForBreaches": {
-    "message": "Kiểm tra mật khẩu có lộ trong các vụ rò rỉ dữ liệu hay không"
+    "message": "Kiểm tra mật khẩu có bị lộ trong các vụ rò rỉ dữ liệu hay không"
   },
   "important": {
     "message": "Quan trọng:"
   },
   "masterPasswordHint": {
-    "message": "Mật khẩu chính của bạn không thể phục hồi nếu bạn quên nó!"
+    "message": "Mật khẩu chính của bạn không thể khôi phục nếu bạn quên nó!"
   },
   "characterMinimum": {
     "message": "$LENGTH$ ký tự tối thiểu",
@@ -3485,7 +3494,7 @@
     }
   },
   "autofillPageLoadPolicyActivated": {
-    "message": "Chính sách quản lí của bạn đã bật chức năng tự động điền khi tải trang."
+    "message": "Chính sách của tổ chức bạn đã kích hoạt tính năng tự động điền khi tải trang."
   },
   "howToAutofill": {
     "message": "Cách tự đồng điền"
@@ -3515,16 +3524,16 @@
     "message": "Thay đổi phím tắt"
   },
   "autofillKeyboardManagerShortcutsLabel": {
-    "message": "Quản lý các lối tắt"
+    "message": "Quản lý các phím tắt"
   },
   "autofillShortcut": {
     "message": "Phím tắt tự động điền"
   },
   "autofillLoginShortcutNotSet": {
-    "message": "The autofill login shortcut is not set. Change this in the browser's settings."
+    "message": "Chưa cài đặt phím tắt cho chức năng tự động điền. Vui lòng thay đổi trong cài đặt của trình duyệt."
   },
   "autofillLoginShortcutText": {
-    "message": "The autofill login shortcut is $COMMAND$. Manage all shortcuts in the browser's settings.",
+    "message": "Phím tắt đăng nhập tự động là $COMMAND$. Quản lý các phím tắt trong cài đặt của trình duyệt.",
     "placeholders": {
       "command": {
         "content": "$1",
@@ -3545,16 +3554,16 @@
     "message": "Mở trong cửa sổ mới"
   },
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
-    "message": "Remember this device to make future logins seamless"
+    "message": "Nhớ thiết bị này để đăng nhập dễ dàng trong tương lai"
   },
   "deviceApprovalRequired": {
     "message": "Yêu cầu phê duyệt thiết bị. Chọn một tuỳ chọn phê duyệt bên dưới:"
   },
   "deviceApprovalRequiredV2": {
-    "message": "Device approval required"
+    "message": "Yêu cầu phê duyệt trên thiết bị"
   },
   "selectAnApprovalOptionBelow": {
-    "message": "Select an approval option below"
+    "message": "Chọn một tùy chọn phê duyệt dưới đây"
   },
   "rememberThisDevice": {
     "message": "Lưu thiết bị này"
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "Yêu cầu quản trị viên phê duyệt"
   },
+  "unableToCompleteLogin": {
+    "message": "Không thể hoàn tất quá trình đăng nhập"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "Bạn cần đăng nhập trên một thiết bị đáng tin cậy hoặc yêu cầu quản trị viên cấp cho bạn mật khẩu."
+  },
   "ssoIdentifierRequired": {
     "message": "Cần có mã định danh SSO của tổ chức."
   },
@@ -3578,7 +3593,7 @@
     "message": "Kiểm tra email của bạn"
   },
   "followTheLinkInTheEmailSentTo": {
-    "message": "Nhấp vào liên kết trong email được gửi đến"
+    "message": "Nhấp vào liên kết được gửi đến trong email"
   },
   "andContinueCreatingYourAccount": {
     "message": "và tiếp tục tạo tài khoản của bạn."
@@ -3618,47 +3633,47 @@
     "message": "Không thể đăng nhập?"
   },
   "loginApproved": {
-    "message": "Lượt đăng nhập đã duyệt"
+    "message": "Lượt đăng nhập đã phê duyệt"
   },
   "userEmailMissing": {
     "message": "Thiếu email người dùng"
   },
   "activeUserEmailNotFoundLoggingYouOut": {
-    "message": "Active user email not found. Logging you out."
+    "message": "Email người dùng đang hoạt động không được tìm thấy. Bạn đang bị đăng xuất."
   },
   "deviceTrusted": {
     "message": "Thiết bị tin cậy"
   },
   "trustOrganization": {
-    "message": "Trust organization"
+    "message": "Tin tưởng tổ chức"
   },
   "trust": {
-    "message": "Trust"
+    "message": "Tin tưởng"
   },
   "doNotTrust": {
-    "message": "Do not trust"
+    "message": "Không tin tưởng"
   },
   "organizationNotTrusted": {
-    "message": "Organization is not trusted"
+    "message": "Tổ chức không được tin cậy"
   },
   "emergencyAccessTrustWarning": {
-    "message": "For the security of your account, only confirm if you have granted emergency access to this user and their fingerprint matches what is displayed in their account"
+    "message": "Để đảm bảo an toàn tài khoản của bạn, chỉ xác nhận nếu bạn đã cấp quyền truy cập khẩn cấp cho người dùng này và cụm từ nhận dạng của họ khớp với những gì hiển thị trong tài khoản của họ"
   },
   "orgTrustWarning": {
-    "message": "For the security of your account, only proceed if you are a member of this organization, have account recovery enabled, and the fingerprint displayed below matches the organization's fingerprint."
+    "message": "Để đảm bảo an toàn cho tài khoản của bạn, vui lòng chỉ tiếp tục nếu bạn là thành viên của tổ chức này, đã kích hoạt tính năng khôi phục tài khoản và cụm từ nhận dạng hiển thị bên dưới trùng khớp với cụm từ nhận dạng của tổ chức."
   },
   "orgTrustWarning1": {
-    "message": "This organization has an Enterprise policy that will enroll you in account recovery. Enrollment will allow organization administrators to change your password. Only proceed if you recognize this organization and the fingerprint phrase displayed below matches the organization's fingerprint."
+    "message": "Tổ chức này có chính sách doanh nghiệp sẽ đăng ký bạn vào quy trình khôi phục tài khoản. Việc đăng ký sẽ cho phép các quản trị viên của tổ chức thay đổi mật khẩu của bạn. Chỉ tiếp tục nếu bạn nhận ra tổ chức này và cụm từ xác thực hiển thị bên dưới khớp với cụm từ xác thực của tổ chức."
   },
   "trustUser": {
-    "message": "Trust user"
+    "message": "Người dùng tin cậy"
   },
   "sendsTitleNoItems": {
-    "message": "Send sensitive information safely",
+    "message": "Gửi thông tin nhạy cảm một cách an toàn",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendsBodyNoItems": {
-    "message": "Share files and data securely with anyone, on any platform. Your information will remain end-to-end encrypted while limiting exposure.",
+    "message": "Chia sẻ tệp tin và dữ liệu một cách an toàn với bất kỳ ai, trên bất kỳ nền tảng nào. Thông tin của bạn sẽ được mã hóa đầu cuối để hạn chế rủi ro bị lộ.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "inputRequired": {
@@ -3671,7 +3686,7 @@
     "message": "Tìm kiếm"
   },
   "inputMinLength": {
-    "message": "Giá trị nhập vào phải ít nhất $COUNT$ ký tự.",
+    "message": "Đầu vào phải có độ dài ít nhất $COUNT$ ký tự.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -3680,7 +3695,7 @@
     }
   },
   "inputMaxLength": {
-    "message": "Giá trị nhập vào không được vượt quá $COUNT$ ký tự.",
+    "message": "Độ dài của dữ liệu đầu vào không được vượt quá $COUNT$ ký tự.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -3698,7 +3713,7 @@
     }
   },
   "inputMinValue": {
-    "message": "Giá trị nhập vào phải ít nhất $MIN$.",
+    "message": "Giá trị đầu vào phải lớn hơn hoặc bằng $MIN$.",
     "placeholders": {
       "min": {
         "content": "$1",
@@ -3707,7 +3722,7 @@
     }
   },
   "inputMaxValue": {
-    "message": "Giá trị nhập vào không được vượt quá $MAX$.",
+    "message": "Giá trị đầu vào không được vượt quá $MAX$.",
     "placeholders": {
       "max": {
         "content": "$1",
@@ -3719,14 +3734,14 @@
     "message": "Có ít nhất 1 địa chỉ email không hợp lệ"
   },
   "inputTrimValidator": {
-    "message": "Giá trị nhập vào không được chỉ có khoảng trắng.",
+    "message": "Dữ liệu đầu vào không được chỉ chứa khoảng trắng.",
     "description": "Notification to inform the user that a form's input can't contain only whitespace."
   },
   "inputEmail": {
-    "message": "Giá trị nhập vào không phải là địa chỉ email."
+    "message": "Đầu vào không phải là địa chỉ email."
   },
   "fieldsNeedAttention": {
-    "message": "Có $COUNT$ trường cần bạn xem xét ở trên.",
+    "message": "$COUNT$ trường ở trên cần bạn chú ý.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -3735,10 +3750,10 @@
     }
   },
   "singleFieldNeedsAttention": {
-    "message": "1 field needs your attention."
+    "message": "1 trường cần bạn chú ý."
   },
   "multipleFieldsNeedAttention": {
-    "message": "$COUNT$ fields need your attention.",
+    "message": "$COUNT$ trường bạn cần chú ý.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -3750,7 +3765,7 @@
     "message": "-- Chọn --"
   },
   "multiSelectPlaceholder": {
-    "message": "-- Nhập để lọc --"
+    "message": "-- Nhập từ khóa để lọc --"
   },
   "multiSelectLoading": {
     "message": "Đang tải các tuỳ chọn..."
@@ -3781,7 +3796,7 @@
     "message": "Tên miền thay thế"
   },
   "passwordRepromptDisabledAutofillOnPageLoad": {
-    "message": "Các mục yêu cầu nhập lại mật khẩu chính không thể tự động điền khi tải trang. Tự động điền khi tải trang đã tắt.",
+    "message": "Các mục yêu cầu nhập lại mật khẩu chính không thể được tự động điền khi tải trang. Tự động điền khi tải trang đã bị tắt.",
     "description": "Toast message for describing that master password re-prompt cannot be autofilled on page load."
   },
   "autofillOnPageLoadSetToDefault": {
@@ -3796,7 +3811,7 @@
     "message": "Ẩn/hiện thanh điều hướng bên"
   },
   "skipToContent": {
-    "message": "Chuyển đến nội dung"
+    "message": "Bỏ qua nội dung"
   },
   "bitwardenOverlayButton": {
     "message": "Nút menu tự động điền Bitwarden",
@@ -3815,7 +3830,7 @@
     "description": "Text to display in overlay when the account is locked."
   },
   "unlockYourAccountToViewAutofillSuggestions": {
-    "message": "Unlock your account to view autofill suggestions",
+    "message": "Mở khóa tài khoản của bạn để xem các đề xuất tự động điền",
     "description": "Text to display in overlay when the account is locked."
   },
   "unlockAccount": {
@@ -3823,15 +3838,15 @@
     "description": "Button text to display in overlay when the account is locked."
   },
   "unlockAccountAria": {
-    "message": "Unlock your account, opens in a new window",
+    "message": "Mở khóa tài khoản của bạn, mở trong cửa sổ mới",
     "description": "Screen reader text (aria-label) for unlock account button in overlay"
   },
   "totpCodeAria": {
-    "message": "Time-based One-Time Password Verification Code",
+    "message": "Mã xác minh mật khẩu một lần dựa trên thời gian",
     "description": "Aria label for the totp code displayed in the inline menu for autofill"
   },
   "totpSecondsSpanAria": {
-    "message": "Time remaining before current TOTP expires",
+    "message": "Thời gian còn lại trước khi TOTP hiện tại hết hạn",
     "description": "Aria label for the totp seconds displayed in the inline menu for autofill"
   },
   "fillCredentialsFor": {
@@ -3839,7 +3854,7 @@
     "description": "Screen reader text for when overlay item is in focused"
   },
   "partialUsername": {
-    "message": "Tên người dùng từng phần",
+    "message": "Tên người dùng một phần",
     "description": "Screen reader text for when a login item is focused where a partial username is displayed. SR will announce this phrase before reading the text of the partial username"
   },
   "noItemsToShow": {
@@ -3855,31 +3870,31 @@
     "description": "Screen reader text (aria-label) for new item button in overlay"
   },
   "newLogin": {
-    "message": "New login",
+    "message": "Đăng nhập mới",
     "description": "Button text to display within inline menu when there are no matching items on a login field"
   },
   "addNewLoginItemAria": {
-    "message": "Add new vault login item, opens in a new window",
+    "message": "Thêm mục đăng nhập mới, mở trong cửa sổ mới",
     "description": "Screen reader text (aria-label) for new login button within inline menu"
   },
   "newCard": {
-    "message": "New card",
+    "message": "Thêm thẻ",
     "description": "Button text to display within inline menu when there are no matching items on a credit card field"
   },
   "addNewCardItemAria": {
-    "message": "Add new vault card item, opens in a new window",
+    "message": "Thêm một thẻ mới, mở trong cửa sổ mới",
     "description": "Screen reader text (aria-label) for new card button within inline menu"
   },
   "newIdentity": {
-    "message": "New identity",
+    "message": "Danh tính mới",
     "description": "Button text to display within inline menu when there are no matching items on an identity field"
   },
   "addNewIdentityItemAria": {
-    "message": "Add new vault identity item, opens in a new window",
+    "message": "Thêm danh tính mới, mở trong cửa sổ mới",
     "description": "Screen reader text (aria-label) for new identity button within inline menu"
   },
   "bitwardenOverlayMenuAvailable": {
-    "message": "Danh sách tự động điền của Bitwarden sẵn sàng. Sử dụng phím mũi tên xuống để chọn.",
+    "message": "Menu tự động điền của Bitwarden có sẵn. Nhấn phím mũi tên xuống để chọn.",
     "description": "Screen reader text for announcing when the overlay opens on the page"
   },
   "turnOn": {
@@ -3893,10 +3908,10 @@
     "description": "Used for the header of the import dialog, the import button and within the file-password-prompt"
   },
   "importError": {
-    "message": "Lỗi nhập"
+    "message": "Lỗi khi nhập"
   },
   "importErrorDesc": {
-    "message": "Có vấn đề với dữ liệu bạn cố gắng nhập. Vui lòng khắc phục các lỗi được liệt kê bên dưới trong tập tin nguồn của bạn và thử lại."
+    "message": "Có vấn đề với dữ liệu bạn đang cố gắng nhập. Vui lòng khắc phục các lỗi được liệt kê bên dưới trong tệp nguồn của bạn và thử lại."
   },
   "resolveTheErrorsBelowAndTryAgain": {
     "message": "Giải quyết các lỗi bên dưới và thử lại."
@@ -3932,7 +3947,7 @@
     "message": "Đang chờ xác nhận"
   },
   "couldNotCompleteBiometrics": {
-    "message": "Không thể hoàn tất sinh trắc học."
+    "message": "Không thể hoàn tất quá trình xác thực sinh trắc học."
   },
   "needADifferentMethod": {
     "message": "Cần một phương pháp khác?"
@@ -3971,7 +3986,7 @@
     "message": "Tài khoản của bạn yêu cầu xác minh hai bước với Duo."
   },
   "popoutExtension": {
-    "message": "Tiện ích mở rộng dạng cửa sổ bật lên"
+    "message": "Mở tiện ích ra cửa sổ mới"
   },
   "launchDuo": {
     "message": "Khởi chạy Dou"
@@ -4001,7 +4016,7 @@
     "message": "Chọn bộ sưu tập"
   },
   "importTargetHint": {
-    "message": "Chọn tùy chọn này để di chuyển nội dung tập tin đã được nhập đến $DESTINATION$",
+    "message": "Chọn tùy chọn này nếu bạn muốn nội dung của tệp đã nhập được di chuyển đến $DESTINATION$",
     "description": "Located as a hint under the import target. Will be appended by either folder or collection, depending if the user is importing into an individual or an organizational vault.",
     "placeholders": {
       "destination": {
@@ -4054,22 +4069,22 @@
     "message": "Mã khoá"
   },
   "accessing": {
-    "message": "Accessing"
+    "message": "Đang truy cập"
   },
   "loggedInExclamation": {
-    "message": "Logged in!"
+    "message": "Đã đăng nhập!"
   },
   "passkeyNotCopied": {
     "message": "Không thể sao chép mã khoá"
   },
   "passkeyNotCopiedAlert": {
-    "message": "Bản sao sẽ không bao gồm mã khoá. Bạn có muốn tiếp tục tạo bản sao mục này?"
+    "message": "Bản sao sẽ không bao gồm mã khoá. Bạn có muốn tiếp tục tạo bản sao cho mục này?"
   },
   "passkeyFeatureIsNotImplementedForAccountsWithoutMasterPassword": {
     "message": "Trang web yêu cầu xác minh. Tính năng này hiện chưa được hỗ trợ cho tài khoản không có mật khẩu chính."
   },
   "logInWithPasskeyQuestion": {
-    "message": "Log in with passkey?"
+    "message": "Đăng nhập bằng mã khóa?"
   },
   "passkeyAlreadyExists": {
     "message": "Ứng dụng này đã có mã khoá."
@@ -4081,10 +4096,10 @@
     "message": "Bạn không có thông tin đăng nhập phù hợp cho trang web này."
   },
   "noMatchingLoginsForSite": {
-    "message": "No matching logins for this site"
+    "message": "Không có đăng nhập khớp với trang web này"
   },
   "searchSavePasskeyNewLogin": {
-    "message": "Search or save passkey as new login"
+    "message": "Tìm kiếm hoặc lưu mã khóa làm đăng nhập mới"
   },
   "confirm": {
     "message": "Xác nhận"
@@ -4096,10 +4111,10 @@
     "message": "Lưu mã khoá như đăng nhập mới"
   },
   "chooseCipherForPasskeySave": {
-    "message": "Choose a login to save this passkey to"
+    "message": "Chọn một đăng nhập để lưu mã khóa này"
   },
   "chooseCipherForPasskeyAuth": {
-    "message": "Choose a passkey to log in with"
+    "message": "Chọn một mã khóa để đăng nhập"
   },
   "passkeyItem": {
     "message": "Mục mã khoá"
@@ -4111,7 +4126,7 @@
     "message": "Mục này đã chứa mã khoá. Bạn có chắc muốn ghi đè mã khoá hiện tại không?"
   },
   "featureNotSupported": {
-    "message": "Chưa hỗ trợ tính năng này"
+    "message": "Tính năng này hiện chưa được hỗ trợ"
   },
   "yourPasskeyIsLocked": {
     "message": "Yêu cầu xác thực để sử dụng mã khoá. Xác minh danh tính của bạn để tiếp tục."
@@ -4184,7 +4199,7 @@
     "message": "Thử lại hoặc tìm email từ LastPass để xác minh đó là bạn."
   },
   "collection": {
-    "message": "Bộ Sưu Tập"
+    "message": "Bộ sưu tập"
   },
   "lastPassYubikeyDesc": {
     "message": "Cắm khóa YubiKey được liên kết với tài khoản LastPass của bạn vào cổng USB của máy tính, sau đó nhấn nút trên YubiKey."
@@ -4202,7 +4217,7 @@
     "message": "Tài khoản đang hoạt động"
   },
   "bitwardenAccount": {
-    "message": "Bitwarden account"
+    "message": "Tài khoản Bitwarden"
   },
   "availableAccounts": {
     "message": "Các tài khoản khả dụng"
@@ -4235,7 +4250,7 @@
     "message": "Luôn cho trang này"
   },
   "domainAddedToExcludedDomains": {
-    "message": "$DOMAIN$ đã được thêm vào danh sách các tên miền loại trừ.",
+    "message": "$DOMAIN$ đã được thêm vào danh sách các tên miền bị loại trừ.",
     "placeholders": {
       "domain": {
         "content": "$1",
@@ -4248,23 +4263,23 @@
     "description": "Label indicating the most common import formats"
   },
   "uriMatchDefaultStrategyHint": {
-    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "message": "Bitwarden phát hiện khớp đường dẫn (URI) để xác định các đề xuất tự động điền.",
     "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
   },
   "regExAdvancedOptionWarning": {
-    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "message": "\"Biểu thức chính quy\" là tùy chọn nâng cao với nguy cơ cao hơn trong việc lộ thông tin đăng nhập.",
     "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
   },
   "startsWithAdvancedOptionWarning": {
-    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "message": "\"Bắt đầu với\" là tùy chọn nâng cao với nguy cơ cao hơn trong việc lộ thông tin đăng nhập.",
     "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
   },
   "uriMatchWarningDialogLink": {
-    "message": "More about match detection",
+    "message": "Thông tin thêm về độ phù hợp",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
   "uriAdvancedOption": {
-    "message": "Advanced options",
+    "message": "Tùy chọn nâng cao",
     "description": "Advanced option placeholder for uri option component"
   },
   "confirmContinueToBrowserSettingsTitle": {
@@ -4276,7 +4291,7 @@
     "description": "Title for dialog which asks if the user wants to proceed to a relevant Help Center page"
   },
   "confirmContinueToHelpCenterPasswordManagementContent": {
-    "message": "Thay đổi cài đặt tự động điền và quản lý mật khẩu của trình duyệt của bạn.",
+    "message": "Thay đổi cài đặt tự động điền và quản lý mật khẩu của trình duyệt.",
     "description": "Body content for dialog which asks if the user wants to proceed to the Help Center's page about browser password management settings"
   },
   "confirmContinueToHelpCenterKeyboardShortcutsContent": {
@@ -4284,7 +4299,7 @@
     "description": "Body content for dialog which asks if the user wants to proceed to the Help Center's page about browser keyboard shortcut settings"
   },
   "confirmContinueToBrowserPasswordManagementSettingsContent": {
-    "message": "Thay đổi cài đặt tự động điền và quản lý mật khẩu của trình duyệt của bạn.",
+    "message": "Thay đổi cài đặt tự động điền và quản lý mật khẩu của trình duyệt.",
     "description": "Body content for dialog which asks if the user wants to proceed to the browser's password management settings page"
   },
   "confirmContinueToBrowserKeyboardShortcutSettingsContent": {
@@ -4300,7 +4315,7 @@
     "description": "Dialog message facilitating the ability to override a chrome browser's default autofill behavior"
   },
   "overrideDefaultBrowserAutoFillSettings": {
-    "message": "Bitwarden làm trình quản lý mật khẩu mặc định",
+    "message": "Đặt Bitwarden làm trình quản lý mật khẩu mặc định của bạn",
     "description": "Label for the setting that allows overriding the default browser autofill settings"
   },
   "privacyPermissionAdditionNotGrantedTitle": {
@@ -4320,7 +4335,7 @@
     "description": "Notification message for when saving credentials has succeeded."
   },
   "passwordSaved": {
-    "message": "Password saved!",
+    "message": "Đã lưu mật khẩu!",
     "description": "Notification message for when saving credentials has succeeded."
   },
   "updateCipherAttemptSuccess": {
@@ -4328,7 +4343,7 @@
     "description": "Notification message for when updating credentials has succeeded."
   },
   "passwordUpdated": {
-    "message": "Password updated!",
+    "message": "Đã cập nhật mật khẩu!",
     "description": "Notification message for when updating credentials has succeeded."
   },
   "saveCipherAttemptFailed": {
@@ -4345,10 +4360,10 @@
     "message": "Đã xóa mã khoá"
   },
   "autofillSuggestions": {
-    "message": "Autofill suggestions"
+    "message": "Các gợi ý tự động điền"
   },
   "itemSuggestions": {
-    "message": "Suggested items"
+    "message": "Các mục đề xuất"
   },
   "autofillSuggestionsTip": {
     "message": "Lưu thông tin đăng nhập cho trang này để tự động điền"
@@ -4413,7 +4428,7 @@
     }
   },
   "viewItemTitleWithField": {
-    "message": "View item - $ITEMNAME$ - $FIELD$",
+    "message": "Xem mục - $ITEMNAME$ - $FIELD$",
     "description": "Title for a link that opens a view for an item.",
     "placeholders": {
       "itemname": {
@@ -4437,7 +4452,7 @@
     }
   },
   "autofillTitleWithField": {
-    "message": "Autofill - $ITEMNAME$ - $FIELD$",
+    "message": "Tự động điền - $ITEMNAME$ - $FIELD$",
     "description": "Title for a button that autofills a login item.",
     "placeholders": {
       "itemname": {
@@ -4451,7 +4466,7 @@
     }
   },
   "copyFieldValue": {
-    "message": "Copy $FIELD$, $VALUE$",
+    "message": "Sao chép $FIELD$, $VALUE$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
@@ -4492,10 +4507,10 @@
     "message": "Giao diện"
   },
   "errorAssigningTargetCollection": {
-    "message": "Lỗi khi gán vào bộ sưu tập chỉ định."
+    "message": "Lỗi khi gán vào bộ sưu tập đã chọn."
   },
   "errorAssigningTargetFolder": {
-    "message": "Lỗi khi gán vào thư mục chỉ định."
+    "message": "Lỗi khi gán vào thư mục đã chọn."
   },
   "viewItemsIn": {
     "message": "Xem các mục trong $NAME$",
@@ -4598,31 +4613,31 @@
     }
   },
   "downloadBitwarden": {
-    "message": "Download Bitwarden"
+    "message": "Tải xuống Bitwarden"
   },
   "downloadBitwardenOnAllDevices": {
-    "message": "Download Bitwarden on all devices"
+    "message": "Tải xuống Bitwarden trên tất cả các thiết bị"
   },
   "getTheMobileApp": {
-    "message": "Get the mobile app"
+    "message": "Tải ứng dụng di động"
   },
   "getTheMobileAppDesc": {
-    "message": "Access your passwords on the go with the Bitwarden mobile app."
+    "message": "Truy cập mật khẩu của bạn mọi lúc mọi nơi với ứng dụng di động Bitwarden."
   },
   "getTheDesktopApp": {
-    "message": "Get the desktop app"
+    "message": "Tải ứng dụng cho máy tính"
   },
   "getTheDesktopAppDesc": {
-    "message": "Access your vault without a browser, then set up unlock with biometrics to expedite unlocking in both the desktop app and browser extension."
+    "message": "Truy cập kho lưu trữ của bạn mà không cần trình duyệt, sau đó thiết lập mở khóa bằng sinh trắc học để mở khóa dễ dàng trong cả ứng dụng trên máy tính và tiện ích mở rộng trình duyệt."
   },
   "downloadFromBitwardenNow": {
-    "message": "Download from bitwarden.com now"
+    "message": "Tải xuống từ bitwarden.com ngay bây giờ"
   },
   "getItOnGooglePlay": {
-    "message": "Get it on Google Play"
+    "message": "Tải về từ Google Play"
   },
   "downloadOnTheAppStore": {
-    "message": "Download on the App Store"
+    "message": "Tải về từ App Store"
   },
   "permanentlyDeleteAttachmentConfirmation": {
     "message": "Bạn có chắc chắn muốn xóa vĩnh viễn tệp đính kèm này không?"
@@ -4637,13 +4652,13 @@
     "message": "Bộ lọc"
   },
   "filterVault": {
-    "message": "Filter vault"
+    "message": "Lọc kho"
   },
   "filterApplied": {
-    "message": "One filter applied"
+    "message": "Một bộ lọc đã được áp dụng"
   },
   "filterAppliedPlural": {
-    "message": "$COUNT$ filters applied",
+    "message": "$COUNT$ bộ lọc đã được áp dụng",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -4655,7 +4670,7 @@
     "message": "Thông tin cá nhân"
   },
   "identification": {
-    "message": "ID"
+    "message": "Định danh"
   },
   "contactInfo": {
     "message": "Thông tin liên hệ"
@@ -4670,7 +4685,7 @@
     }
   },
   "cardNumberEndsWith": {
-    "message": "card number ends with",
+    "message": "số thẻ kết thúc bằng",
     "description": "Used within the inline menu to provide an aria description when users are attempting to fill a card cipher."
   },
   "loginCredentials": {
@@ -4680,13 +4695,13 @@
     "message": "Khóa xác thực"
   },
   "autofillOptions": {
-    "message": "Autofill options"
+    "message": "Tùy chọn tự động điền"
   },
   "websiteUri": {
-    "message": "Website (URI)"
+    "message": "Trang web (URI)"
   },
   "websiteUriCount": {
-    "message": "Website (URI) $COUNT$",
+    "message": "Trang web (URI) $COUNT$",
     "description": "Label for an input field that contains a website URI. The input field is part of a list of fields, and the count indicates the position of the field in the list.",
     "placeholders": {
       "count": {
@@ -4696,16 +4711,16 @@
     }
   },
   "websiteAdded": {
-    "message": "Website added"
+    "message": "Đã thêm trang web"
   },
   "addWebsite": {
-    "message": "Add website"
+    "message": "Thêm trang web"
   },
   "deleteWebsite": {
-    "message": "Delete website"
+    "message": "Xóa trang web"
   },
   "defaultLabel": {
-    "message": "Default ($VALUE$)",
+    "message": "Mặc định ($VALUE$)",
     "description": "A label that indicates the default value for a field with the current default value in parentheses.",
     "placeholders": {
       "value": {
@@ -4715,7 +4730,7 @@
     }
   },
   "showMatchDetection": {
-    "message": "Show match detection $WEBSITE$",
+    "message": "Hiện phát hiện trùng khớp $WEBSITE$",
     "placeholders": {
       "website": {
         "content": "$1",
@@ -4724,7 +4739,7 @@
     }
   },
   "hideMatchDetection": {
-    "message": "Hide match detection $WEBSITE$",
+    "message": "Ẩn phát hiện trùng khớp $WEBSITE$",
     "placeholders": {
       "website": {
         "content": "$1",
@@ -4733,13 +4748,13 @@
     }
   },
   "autoFillOnPageLoad": {
-    "message": "Autofill on page load?"
+    "message": "Tự động điền khi tải trang?"
   },
   "cardExpiredTitle": {
-    "message": "Expired card"
+    "message": "Thẻ hết hạn"
   },
   "cardExpiredMessage": {
-    "message": "If you've renewed it, update the card's information"
+    "message": "Nếu bạn đã gia hạn, hãy cập nhật thông tin thẻ"
   },
   "cardDetails": {
     "message": "Thông tin thẻ"
@@ -4754,10 +4769,10 @@
     }
   },
   "enableAnimations": {
-    "message": "Enable animations"
+    "message": "Bật hiệu ứng động"
   },
   "showAnimations": {
-    "message": "Show animations"
+    "message": "Hiện hiệu ứng động"
   },
   "addAccount": {
     "message": "Thêm tài khoản"
@@ -4769,15 +4784,15 @@
     "message": "Dữ liệu"
   },
   "passkeys": {
-    "message": "Passkeys",
+    "message": "Các mã khoá",
     "description": "A section header for a list of passkeys."
   },
   "passwords": {
-    "message": "Passwords",
+    "message": "Mật khẩu",
     "description": "A section header for a list of passwords."
   },
   "logInWithPasskeyAriaLabel": {
-    "message": "Log in with passkey",
+    "message": "Đăng nhập bằng mã khoá",
     "description": "ARIA label for the inline menu button that logs in with a passkey."
   },
   "assign": {
@@ -4814,19 +4829,19 @@
     "message": "Tiêu đề trường"
   },
   "textHelpText": {
-    "message": "Sử dụng các trường nhập liệu văn bản cho dữ liệu như câu hỏi bảo mật"
+    "message": "Sử dụng các trường văn bản cho dữ liệu như câu hỏi bảo mật"
   },
   "hiddenHelpText": {
-    "message": "Sử dụng các trường nhập liệu ẩn cho thông tin nhạy cảm như mật khẩu"
+    "message": "Sử dụng các trường ẩn để lưu dữ liệu nhạy cảm như mật khẩu"
   },
   "checkBoxHelpText": {
     "message": "Dùng các ô tích chọn nếu bạn muốn tự động điền vào ô tích chọn của biểu mẫu, chẳng hạn như ghi nhớ email"
   },
   "linkedHelpText": {
-    "message": "Sử dụng trường nhập liệu đã liên kết khi bạn gặp vấn đề với việc tự động điền trên một trang web cụ thể."
+    "message": "Sử dụng trường liên kết khi bạn gặp vấn đề với tính năng tự động điền trên một trang web cụ thể."
   },
   "linkedLabelHelpText": {
-    "message": "Nhập thông tin định danh của trường như id, name, aria-label hoặc placeholder."
+    "message": "Nhập html id, name, aria-label hoặc placeholder của các trường."
   },
   "editField": {
     "message": "Chỉnh sửa trường"
@@ -4868,10 +4883,10 @@
     }
   },
   "reorderWebsiteUriButton": {
-    "message": "Reorder website URI. Use arrow key to move item up or down."
+    "message": "Sắp xếp lại đường dẫn trang web. Sử dụng phím mũi tên để di chuyển mục lên hoặc xuống."
   },
   "reorderFieldUp": {
-    "message": "$LABEL$ đã di chuyển lên vị trí $INDEX$ / $LENGTH$",
+    "message": "$LABEL$ đã được di chuyển lên, vị trí $INDEX$ trong $LENGTH$",
     "placeholders": {
       "label": {
         "content": "$1",
@@ -4949,7 +4964,7 @@
     }
   },
   "reorderFieldDown": {
-    "message": "$LABEL$ đã di chuyển xuống vị trí $INDEX$ / $LENGTH$",
+    "message": "$LABEL$ đã được di chuyển xuống, vị trí $INDEX$ trong $LENGTH$",
     "placeholders": {
       "label": {
         "content": "$1",
@@ -4969,43 +4984,43 @@
     "message": "Vị trí mục"
   },
   "fileSend": {
-    "message": "File Send"
+    "message": "Gửi tệp"
   },
   "fileSends": {
-    "message": "File Sends"
+    "message": "Gửi tệp"
   },
   "textSend": {
-    "message": "Text Send"
+    "message": "Gửi văn bản"
   },
   "textSends": {
-    "message": "Text Sends"
+    "message": "Gửi văn bản"
   },
   "accountActions": {
-    "message": "Account actions"
+    "message": "Thao tác trên tài khoản"
   },
   "showNumberOfAutofillSuggestions": {
-    "message": "Show number of login autofill suggestions on extension icon"
+    "message": "Hiển thị số lượng đề xuất tự động điền đăng nhập trên biểu tượng tiện ích mở rộng"
   },
   "showQuickCopyActions": {
-    "message": "Show quick copy actions on Vault"
+    "message": "Hiển thị các hành động sao chép nhanh trên Kho"
   },
   "systemDefault": {
-    "message": "System default"
+    "message": "Mặc định hệ thống"
   },
   "enterprisePolicyRequirementsApplied": {
-    "message": "Enterprise policy requirements have been applied to this setting"
+    "message": "Các yêu cầu chính sách của doanh nghiệp đã được áp dụng cho cài đặt này"
   },
   "sshPrivateKey": {
-    "message": "Private key"
+    "message": "Khóa riêng tư"
   },
   "sshPublicKey": {
-    "message": "Public key"
+    "message": "Khóa công khai"
   },
   "sshFingerprint": {
-    "message": "Fingerprint"
+    "message": "Vân tay"
   },
   "sshKeyAlgorithm": {
-    "message": "Key type"
+    "message": "Kiểu khoá"
   },
   "sshKeyAlgorithmED25519": {
     "message": "ED25519"
@@ -5020,61 +5035,61 @@
     "message": "RSA 4096-Bit"
   },
   "retry": {
-    "message": "Retry"
+    "message": "Thử lại"
   },
   "vaultCustomTimeoutMinimum": {
-    "message": "Minimum custom timeout is 1 minute."
+    "message": "Thời gian chờ tùy chỉnh tối thiểu là 1 phút."
   },
   "additionalContentAvailable": {
-    "message": "Additional content is available"
+    "message": "Nội dung bổ sung có sẵn"
   },
   "fileSavedToDevice": {
-    "message": "File saved to device. Manage from your device downloads."
+    "message": "Tệp đã được lưu vào thiết bị. Quản lý từ phần Tải về trên thiết bị của bạn."
   },
   "showCharacterCount": {
-    "message": "Show character count"
+    "message": "Hiển thị số lượng ký tự"
   },
   "hideCharacterCount": {
-    "message": "Hide character count"
+    "message": "Ẩn số lượng ký tự"
   },
   "itemsInTrash": {
-    "message": "Items in trash"
+    "message": "Các mục trong thùng rác"
   },
   "noItemsInTrash": {
-    "message": "No items in trash"
+    "message": "Không có mục nào trong thùng rác"
   },
   "noItemsInTrashDesc": {
-    "message": "Items you delete will appear here and be permanently deleted after 30 days"
+    "message": "Các mục bạn xóa sẽ xuất hiện ở đây và sẽ bị xóa vĩnh vĩnh sau 30 ngày"
   },
   "trashWarning": {
-    "message": "Items that have been in trash more than 30 days will automatically be deleted"
+    "message": "Các mục đã ở trong thùng rác hơn 30 ngày sẽ tự động bị xóa"
   },
   "restore": {
-    "message": "Restore"
+    "message": "Khôi phục"
   },
   "deleteForever": {
-    "message": "Delete forever"
+    "message": "Xóa vĩnh viễn"
   },
   "noEditPermissions": {
-    "message": "You don't have permission to edit this item"
+    "message": "Bạn không có quyền chỉnh sửa mục này"
   },
   "biometricsStatusHelptextUnlockNeeded": {
-    "message": "Biometric unlock is unavailable because PIN or password unlock is required first."
+    "message": "Mở khóa bằng sinh trắc học không khả dụng vì cần phải mở khóa bằng mã PIN hoặc mật khẩu trước."
   },
   "biometricsStatusHelptextHardwareUnavailable": {
-    "message": "Biometric unlock is currently unavailable."
+    "message": "Mở khóa bằng sinh trắc học hiện không khả dụng."
   },
   "biometricsStatusHelptextAutoSetupNeeded": {
-    "message": "Biometric unlock is unavailable due to misconfigured system files."
+    "message": "Mở khóa bằng sinh trắc học không khả dụng do các tệp hệ thống bị cấu hình sai."
   },
   "biometricsStatusHelptextManualSetupNeeded": {
-    "message": "Biometric unlock is unavailable due to misconfigured system files."
+    "message": "Mở khóa bằng sinh trắc học không khả dụng do các tệp hệ thống bị cấu hình sai."
   },
   "biometricsStatusHelptextDesktopDisconnected": {
-    "message": "Biometric unlock is unavailable because the Bitwarden desktop app is closed."
+    "message": "Mở khóa bằng sinh trắc học không khả dụng vì ứng dụng Bitwarden trên máy tính đang bị đóng."
   },
   "biometricsStatusHelptextNotEnabledInDesktop": {
-    "message": "Biometric unlock is unavailable because it is not enabled for $EMAIL$ in the Bitwarden desktop app.",
+    "message": "Mở khóa bằng sinh trắc học không khả dụng vì nó chưa được kích hoạt cho $EMAIL$ trong ứng dụng Bitwarden trên máy tính.",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -5083,217 +5098,217 @@
     }
   },
   "biometricsStatusHelptextUnavailableReasonUnknown": {
-    "message": "Biometric unlock is currently unavailable for an unknown reason."
+    "message": "Mở khóa bằng sinh trắc học hiện không khả dụng vì lý do chưa rõ."
   },
   "unlockVault": {
-    "message": "Unlock your vault in seconds"
+    "message": "Mở kho của bạn trong vài giây"
   },
   "unlockVaultDesc": {
-    "message": "You can customize your unlock and timeout settings to more quickly access your vault."
+    "message": "Bạn có thể tùy chỉnh cài đặt mở khóa và thời gian hết phiên để truy cập kho lưu trữ của mình nhanh hơn."
   },
   "unlockPinSet": {
-    "message": "Unlock PIN set"
+    "message": "Đã thiết lập mở khóa bằng mã PIN"
   },
   "unlockWithBiometricSet": {
-    "message": "Unlock with biometrics set"
+    "message": "Đã thiết lập mở khóa bằng sinh trắc học"
   },
   "authenticating": {
-    "message": "Authenticating"
+    "message": "Đang xác thực"
   },
   "fillGeneratedPassword": {
-    "message": "Fill generated password",
+    "message": "Điền mật khẩu được tạo tự động",
     "description": "Heading for the password generator within the inline menu"
   },
   "passwordRegenerated": {
-    "message": "Password regenerated",
+    "message": "Mật khẩu đã được tạo lại",
     "description": "Notification message for when a password has been regenerated"
   },
   "saveToBitwarden": {
-    "message": "Save to Bitwarden",
+    "message": "Lưu vào Bitwarden",
     "description": "Confirmation message for saving a login to Bitwarden"
   },
   "spaceCharacterDescriptor": {
-    "message": "Space",
+    "message": "Phím cách",
     "description": "Represents the space key in screen reader content as a readable word"
   },
   "tildeCharacterDescriptor": {
-    "message": "Tilde",
+    "message": "Dấu ngã",
     "description": "Represents the ~ key in screen reader content as a readable word"
   },
   "backtickCharacterDescriptor": {
-    "message": "Backtick",
+    "message": "Dấu nháy ngược",
     "description": "Represents the ` key in screen reader content as a readable word"
   },
   "exclamationCharacterDescriptor": {
-    "message": "Exclamation mark",
+    "message": "Dấu chấm than",
     "description": "Represents the ! key in screen reader content as a readable word"
   },
   "atSignCharacterDescriptor": {
-    "message": "At sign",
+    "message": "Dấu @",
     "description": "Represents the @ key in screen reader content as a readable word"
   },
   "hashSignCharacterDescriptor": {
-    "message": "Hash sign",
+    "message": "Dấu thăng",
     "description": "Represents the # key in screen reader content as a readable word"
   },
   "dollarSignCharacterDescriptor": {
-    "message": "Dollar sign",
+    "message": "Dấu đô la",
     "description": "Represents the $ key in screen reader content as a readable word"
   },
   "percentSignCharacterDescriptor": {
-    "message": "Percent sign",
+    "message": "Dấu phần trăm",
     "description": "Represents the % key in screen reader content as a readable word"
   },
   "caretCharacterDescriptor": {
-    "message": "Caret",
+    "message": "Dấu mũ",
     "description": "Represents the ^ key in screen reader content as a readable word"
   },
   "ampersandCharacterDescriptor": {
-    "message": "Ampersand",
+    "message": "Dấu và",
     "description": "Represents the & key in screen reader content as a readable word"
   },
   "asteriskCharacterDescriptor": {
-    "message": "Asterisk",
+    "message": "Dấu sao",
     "description": "Represents the * key in screen reader content as a readable word"
   },
   "parenLeftCharacterDescriptor": {
-    "message": "Left parenthesis",
+    "message": "Dấu ngoặc trái",
     "description": "Represents the ( key in screen reader content as a readable word"
   },
   "parenRightCharacterDescriptor": {
-    "message": "Right parenthesis",
+    "message": "Dấu ngoặc phải",
     "description": "Represents the ) key in screen reader content as a readable word"
   },
   "hyphenCharacterDescriptor": {
-    "message": "Underscore",
+    "message": "Gạch dưới",
     "description": "Represents the _ key in screen reader content as a readable word"
   },
   "underscoreCharacterDescriptor": {
-    "message": "Hyphen",
+    "message": "Dấu gạch nối",
     "description": "Represents the - key in screen reader content as a readable word"
   },
   "plusCharacterDescriptor": {
-    "message": "Plus",
+    "message": "Dấu cộng",
     "description": "Represents the + key in screen reader content as a readable word"
   },
   "equalsCharacterDescriptor": {
-    "message": "Equals",
+    "message": "Dấu bằng",
     "description": "Represents the = key in screen reader content as a readable word"
   },
   "braceLeftCharacterDescriptor": {
-    "message": "Left brace",
+    "message": "Dấu ngoặc nhọn trái",
     "description": "Represents the { key in screen reader content as a readable word"
   },
   "braceRightCharacterDescriptor": {
-    "message": "Right brace",
+    "message": "Dấu ngoặc nhọn phải",
     "description": "Represents the } key in screen reader content as a readable word"
   },
   "bracketLeftCharacterDescriptor": {
-    "message": "Left bracket",
+    "message": "Dấu ngoặc vuông trái",
     "description": "Represents the [ key in screen reader content as a readable word"
   },
   "bracketRightCharacterDescriptor": {
-    "message": "Right bracket",
+    "message": "Dấu ngoặc vuông phải",
     "description": "Represents the ] key in screen reader content as a readable word"
   },
   "pipeCharacterDescriptor": {
-    "message": "Pipe",
+    "message": "Dấu gạch",
     "description": "Represents the | key in screen reader content as a readable word"
   },
   "backSlashCharacterDescriptor": {
-    "message": "Back slash",
+    "message": "Dấu gạch chéo ngược",
     "description": "Represents the back slash key in screen reader content as a readable word"
   },
   "colonCharacterDescriptor": {
-    "message": "Colon",
+    "message": "Dấu hai chấm",
     "description": "Represents the : key in screen reader content as a readable word"
   },
   "semicolonCharacterDescriptor": {
-    "message": "Semicolon",
+    "message": "Dấu chấm phẩy",
     "description": "Represents the ; key in screen reader content as a readable word"
   },
   "doubleQuoteCharacterDescriptor": {
-    "message": "Double quote",
+    "message": "Nháy kép",
     "description": "Represents the double quote key in screen reader content as a readable word"
   },
   "singleQuoteCharacterDescriptor": {
-    "message": "Single quote",
+    "message": "Dấu nháy đơn",
     "description": "Represents the ' key in screen reader content as a readable word"
   },
   "lessThanCharacterDescriptor": {
-    "message": "Less than",
+    "message": "Dấu nhỏ hơn",
     "description": "Represents the < key in screen reader content as a readable word"
   },
   "greaterThanCharacterDescriptor": {
-    "message": "Greater than",
+    "message": "Dấu lớn hơn",
     "description": "Represents the > key in screen reader content as a readable word"
   },
   "commaCharacterDescriptor": {
-    "message": "Comma",
+    "message": "Dấu phẩy",
     "description": "Represents the , key in screen reader content as a readable word"
   },
   "periodCharacterDescriptor": {
-    "message": "Period",
+    "message": "Dấu chấm",
     "description": "Represents the . key in screen reader content as a readable word"
   },
   "questionCharacterDescriptor": {
-    "message": "Question mark",
+    "message": "Dấu hỏi chấm",
     "description": "Represents the ? key in screen reader content as a readable word"
   },
   "forwardSlashCharacterDescriptor": {
-    "message": "Forward slash",
+    "message": "Dấu gạch chéo",
     "description": "Represents the / key in screen reader content as a readable word"
   },
   "lowercaseAriaLabel": {
-    "message": "Lowercase"
+    "message": "Chữ thường"
   },
   "uppercaseAriaLabel": {
-    "message": "Uppercase"
+    "message": "Chữ in hoa"
   },
   "generatedPassword": {
-    "message": "Generated password"
+    "message": "Mật khẩu được tạo"
   },
   "compactMode": {
-    "message": "Compact mode"
+    "message": "Chế độ nhỏ gọn"
   },
   "beta": {
     "message": "Beta"
   },
   "extensionWidth": {
-    "message": "Extension width"
+    "message": "Chiều rộng phần mở rộng"
   },
   "wide": {
-    "message": "Wide"
+    "message": "Rộng"
   },
   "extraWide": {
-    "message": "Extra wide"
+    "message": "Rộng hơn"
   },
   "sshKeyWrongPassword": {
-    "message": "The password you entered is incorrect."
+    "message": "Mật khẩu bạn đã nhập không đúng."
   },
   "importSshKey": {
-    "message": "Import"
+    "message": "Nhập"
   },
   "confirmSshKeyPassword": {
-    "message": "Confirm password"
+    "message": "Xác nhận mật khẩu"
   },
   "enterSshKeyPasswordDesc": {
-    "message": "Enter the password for the SSH key."
+    "message": "Nhập mật khẩu cho khóa SSH."
   },
   "enterSshKeyPassword": {
-    "message": "Enter password"
+    "message": "Nhập mật khẩu"
   },
   "invalidSshKey": {
-    "message": "The SSH key is invalid"
+    "message": "Khóa SSH không hợp lệ"
   },
   "sshKeyTypeUnsupported": {
-    "message": "The SSH key type is not supported"
+    "message": "Loại khóa SSH không được hỗ trợ"
   },
   "importSshKeyFromClipboard": {
-    "message": "Import key from clipboard"
+    "message": "Nhập khóa từ bộ nhớ tạm"
   },
   "sshKeyImported": {
-    "message": "SSH key imported successfully"
+    "message": "Khóa SSH được nhập thành công"
   },
   "cannotRemoveViewOnlyCollections": {
     "message": "Bạn không thể xóa các bộ sưu tập với quyền chỉ xem: $COLLECTIONS$",
@@ -5305,142 +5320,142 @@
     }
   },
   "updateDesktopAppOrDisableFingerprintDialogTitle": {
-    "message": "Please update your desktop application"
+    "message": "Vui lòng cập nhật ứng dụng trên máy tính của bạn"
   },
   "updateDesktopAppOrDisableFingerprintDialogMessage": {
-    "message": "To use biometric unlock, please update your desktop application, or disable fingerprint unlock in the desktop settings."
+    "message": "Để sử dụng mở khóa bằng sinh trắc học, vui lòng cập nhật ứng dụng trên máy tính của bạn, hoặc tắt mở khóa vân tay trong cài đặt máy tính."
   },
   "changeAtRiskPassword": {
-    "message": "Change at-risk password"
+    "message": "Thay đổi mật khẩu có rủi ro"
   },
   "settingsVaultOptions": {
-    "message": "Vault options"
+    "message": "Tùy chọn kho"
   },
   "emptyVaultDescription": {
-    "message": "The vault protects more than just your passwords. Store secure logins, IDs, cards and notes securely here."
+    "message": "Kho lưu trữ không chỉ bảo vệ mật khẩu của bạn. Bạn có thể lưu trữ an toàn các thông tin đăng nhập, ID, thẻ và ghi chú tại đây."
   },
   "introCarouselLabel": {
-    "message": "Welcome to Bitwarden"
+    "message": "Chào mừng bạn đến với Bitwarden"
   },
   "securityPrioritized": {
-    "message": "Security, prioritized"
+    "message": "Bảo mật, ưu tiên hàng đầu"
   },
   "securityPrioritizedBody": {
-    "message": "Save logins, cards, and identities to your secure vault. Bitwarden uses zero-knowledge, end-to-end encryption to protect what’s important to you."
+    "message": "Lưu trữ thông tin đăng nhập, thẻ tín dụng và thông tin cá nhân vào kho lưu trữ an toàn của bạn. Bitwarden sử dụng mã hóa đầu cuối không tiết lộ thông tin (zero-knowledge) để bảo vệ những gì quan trọng đối với bạn."
   },
   "quickLogin": {
-    "message": "Quick and easy login"
+    "message": "Đăng nhập nhanh chóng và dễ dàng"
   },
   "quickLoginBody": {
-    "message": "Set up biometric unlock and autofill to log into your accounts without typing a single letter."
+    "message": "Cài đặt tính năng mở khóa bằng sinh trắc học và tự động điền thông tin để đăng nhập vào các tài khoản của bạn mà không cần nhập bất kỳ ký tự nào."
   },
   "secureUser": {
-    "message": "Level up your logins"
+    "message": "Nâng cấp đăng nhập của bạn"
   },
   "secureUserBody": {
-    "message": "Use the generator to create and save strong, unique passwords for all your accounts."
+    "message": "Sử dụng trình tạo mật khẩu để tạo và lưu trữ các mật khẩu mạnh, duy nhất cho tất cả các tài khoản của bạn."
   },
   "secureDevices": {
-    "message": "Your data, when and where you need it"
+    "message": "Dữ liệu của bạn, mọi lúc, mọi nơi bạn cần"
   },
   "secureDevicesBody": {
-    "message": "Save unlimited passwords across unlimited devices with Bitwarden mobile, browser, and desktop apps."
+    "message": "Lưu trữ mật khẩu không giới hạn trên tất cả các thiết bị với ứng dụng di động, trình duyệt và máy tính của Bitwarden."
   },
   "nudgeBadgeAria": {
-    "message": "1 notification"
+    "message": "1 thông báo"
   },
   "emptyVaultNudgeTitle": {
-    "message": "Import existing passwords"
+    "message": "Nhập mật khẩu hiện có"
   },
   "emptyVaultNudgeBody": {
-    "message": "Use the importer to quickly transfer logins to Bitwarden without manually adding them."
+    "message": "Sử dụng công cụ nhập để nhanh chóng chuyển các tài khoản đăng nhập sang Bitwarden mà không cần thêm thủ công."
   },
   "emptyVaultNudgeButton": {
-    "message": "Import now"
+    "message": "Nhập ngay"
   },
   "hasItemsVaultNudgeTitle": {
-    "message": "Welcome to your vault!"
+    "message": "Chào mừng đến với kho lưu trữ của bạn!"
   },
   "hasItemsVaultNudgeBodyOne": {
-    "message": "Autofill items for the current page"
+    "message": "Tự động điền các mục cho trang hiện tại"
   },
   "hasItemsVaultNudgeBodyTwo": {
-    "message": "Favorite items for easy access"
+    "message": "Các mục yêu thích để truy cập nhanh chóng"
   },
   "hasItemsVaultNudgeBodyThree": {
-    "message": "Search your vault for something else"
+    "message": "Tìm kiếm thông tin khác trong kho của bạn"
   },
   "newLoginNudgeTitle": {
-    "message": "Save time with autofill"
+    "message": "Tiết kiệm thời gian với tính năng tự động điền"
   },
   "newLoginNudgeBodyOne": {
-    "message": "Include a",
+    "message": "Bao gồm một",
     "description": "This is in multiple parts to allow for bold text in the middle of the sentence.",
     "example": "Include a Website so this login appears as an autofill suggestion."
   },
   "newLoginNudgeBodyBold": {
-    "message": "Website",
+    "message": "Trang web",
     "description": "This is in multiple parts to allow for bold text in the middle of the sentence.",
     "example": "Include a Website so this login appears as an autofill suggestion."
   },
   "newLoginNudgeBodyTwo": {
-    "message": "so this login appears as an autofill suggestion.",
+    "message": "vì vậy, thông tin đăng nhập này sẽ xuất hiện như đề xuất tự động điền.",
     "description": "This is in multiple parts to allow for bold text in the middle of the sentence.",
     "example": "Include a Website so this login appears as an autofill suggestion."
   },
   "newCardNudgeTitle": {
-    "message": "Seamless online checkout"
+    "message": "Thanh toán trực tuyến không gián đoạn"
   },
   "newCardNudgeBody": {
-    "message": "With cards, easily autofill payment forms securely and accurately."
+    "message": "Với thẻ, dễ dàng tự động điền các biểu mẫu thanh toán an toàn và chính xác."
   },
   "newIdentityNudgeTitle": {
-    "message": "Simplify creating accounts"
+    "message": "Đơn giản hóa việc tạo tài khoản"
   },
   "newIdentityNudgeBody": {
-    "message": "With identities, quickly autofill long registration or contact forms."
+    "message": "Với danh tính, nhanh chóng tự động điền các biểu mẫu đăng ký hoặc liên hệ dài."
   },
   "newNoteNudgeTitle": {
-    "message": "Keep your sensitive data safe"
+    "message": "Giữ dữ liệu nhạy cảm của bạn an toàn"
   },
   "newNoteNudgeBody": {
-    "message": "With notes, securely store sensitive data like banking or insurance details."
+    "message": "Với ghi chú, lưu trữ an toàn dữ liệu nhạy cảm như thông tin ngân hàng hoặc bảo hiểm."
   },
   "newSshNudgeTitle": {
-    "message": "Developer-friendly SSH access"
+    "message": "Truy cập SSH thân thiện với nhà phát triển"
   },
   "newSshNudgeBodyOne": {
-    "message": "Store your keys and connect with the SSH agent for fast, encrypted authentication.",
+    "message": "Lưu trữ khóa của bạn và kết nối với trình quản lý khóa SSH để xác thực nhanh chóng và được mã hóa.",
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
   "newSshNudgeBodyTwo": {
-    "message": "Learn more about SSH agent",
+    "message": "Tìm hiểu thêm về SSH agent",
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
   "generatorNudgeTitle": {
-    "message": "Quickly create passwords"
+    "message": "Tạo mật khẩu nhanh chóng"
   },
   "generatorNudgeBodyOne": {
-    "message": "Easily create strong and unique passwords by clicking on",
+    "message": "Dễ dàng tạo mật khẩu mạnh và duy nhất chỉ trong một cú nhấp chuột",
     "description": "Two part message",
     "example": "Easily create strong and unique passwords by clicking on {icon} to help you keep your logins secure."
   },
   "generatorNudgeBodyTwo": {
-    "message": "to help you keep your logins secure.",
+    "message": "để giúp bạn bảo vệ thông tin đăng nhập của mình.",
     "description": "Two part message",
     "example": "Easily create strong and unique passwords by clicking on {icon} to help you keep your logins secure."
   },
   "generatorNudgeBodyAria": {
-    "message": "Easily create strong and unique passwords by clicking on the Generate password button to help you keep your logins secure.",
+    "message": "Dễ dàng tạo mật khẩu mạnh và duy nhất bằng cách nhấp vào Trình tạo mật khẩu để giúp bạn bảo vệ tài khoản đăng nhập của mình.",
     "description": "Aria label for the body content of the generator nudge"
   },
   "noPermissionsViewPage": {
-    "message": "You do not have permissions to view this page. Try logging in with a different account."
+    "message": "Bạn không có quyền truy cập vào trang này. Hãy thử đăng nhập bằng tài khoản khác."
   },
   "wasmNotSupported": {
-    "message": "WebAssembly is not supported on your browser or is not enabled. WebAssembly is required to use the Bitwarden app.",
+    "message": "WebAssembly không được hỗ trợ trên trình duyệt của bạn hoặc chưa được kích hoạt. WebAssembly là yêu cầu bắt buộc để sử dụng ứng dụng Bitwarden.",
     "description": "'WebAssembly' is a technical term and should not be translated."
   }
 }
diff --git a/apps/browser/src/_locales/zh_CN/messages.json b/apps/browser/src/_locales/zh_CN/messages.json
index 023d0a682d5..aeb3640b683 100644
--- a/apps/browser/src/_locales/zh_CN/messages.json
+++ b/apps/browser/src/_locales/zh_CN/messages.json
@@ -1173,6 +1173,12 @@
     "message": "哦不！我们无法保存它。请尝试手动输入详细信息。",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
   "enableChangedPasswordNotification": {
     "message": "询问更新现有的登录"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "请求已发送"
   },
+  "masterPasswordChanged": {
+    "message": "Master password saved"
+  },
   "exposedMasterPassword": {
     "message": "已暴露的主密码"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "请求管理员批准"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "ssoIdentifierRequired": {
     "message": "必须填写组织 SSO 标识符。"
   },
@@ -4264,7 +4279,7 @@
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
   "uriAdvancedOption": {
-    "message": "Advanced options",
+    "message": "高级选项",
     "description": "Advanced option placeholder for uri option component"
   },
   "confirmContinueToBrowserSettingsTitle": {
diff --git a/apps/browser/src/_locales/zh_TW/messages.json b/apps/browser/src/_locales/zh_TW/messages.json
index 07ad7b207da..7403ad53705 100644
--- a/apps/browser/src/_locales/zh_TW/messages.json
+++ b/apps/browser/src/_locales/zh_TW/messages.json
@@ -1173,6 +1173,12 @@
     "message": "Oh no! We couldn't save this. Try entering the details manually.",
     "description": "Detailed error message shown when saving login details fails."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
   "enableChangedPasswordNotification": {
     "message": "詢問更新現有的登入資料"
   },
@@ -3454,6 +3460,9 @@
   "logInRequestSent": {
     "message": "已傳送請求"
   },
+  "masterPasswordChanged": {
+    "message": "Master password saved"
+  },
   "exposedMasterPassword": {
     "message": "已洩露的主密碼"
   },
@@ -3568,6 +3577,12 @@
   "requestAdminApproval": {
     "message": "要求管理員核准"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "ssoIdentifierRequired": {
     "message": "需要組織 SSO 識別碼。"
   },
diff --git a/apps/browser/store/locales/sv/copy.resx b/apps/browser/store/locales/sv/copy.resx
index af48fec33bf..d03c7fc808d 100644
--- a/apps/browser/store/locales/sv/copy.resx
+++ b/apps/browser/store/locales/sv/copy.resx
@@ -124,48 +124,48 @@
     <value>Hemma, på jobbet eller på resande fot säkrar Bitwarden enkelt alla dina lösenord, passkeys, och känslig information.</value>
   </data>
   <data name="Description" xml:space="preserve">
-    <value>Recognized as the best password manager by PCMag, WIRED, The Verge, CNET, G2, and more!
+    <value>Erkänd som den bästa lösenordshanteraren av PCMag, WIRED, The Verge, CNET, G2 och många fler!
 
-SECURE YOUR DIGITAL LIFE
-Secure your digital life and protect against data breaches by generating and saving unique, strong passwords for every account. Maintain everything in an end-to-end encrypted password vault that only you can access.
+SÄKRA DITT DIGITALA LIV
+Säkra ditt digitala liv och skydda dig mot dataintrång genom att skapa och spara unika, starka lösenord för varje konto. Förvara allt i ett krypterat lösenordsvalv som bara du har åtkomst till.
 
-ACCESS YOUR DATA, ANYWHERE, ANYTIME, ON ANY DEVICE
-Easily manage, store, secure, and share unlimited passwords across unlimited devices without restrictions.
+FÅ ÅTKOMST TILL DINA DATA, VAR SOM HELST, NÄR SOM HELST, PÅ VILKEN ENHET SOM HELST
+Hantera, lagra, säkra och dela obegränsat antal lösenord på obegränsat antal enheter utan begränsningar.
 
-EVERYONE SHOULD HAVE THE TOOLS TO STAY SAFE ONLINE
-Utilize Bitwarden for free with no ads or selling data. Bitwarden believes everyone should have the ability to stay safe online. Premium plans offer access to advanced features.
+ALLA BÖR HA VERKTYGEN FÖR ATT VARA SÄKRA ONLINE
+Använd Bitwarden gratis utan annonser eller försäljning av data. Bitwarden anser att alla bör ha möjlighet att vara säkra online. Premiumplaner ger tillgång till avancerade funktioner.
 
-EMPOWER YOUR TEAMS WITH BITWARDEN
-Plans for Teams and Enterprise come with professional business features. Some examples include SSO integration, self-hosting, directory integration and SCIM provisioning, global policies, API access, event logs, and more.
+STÄRK DINA TEAM MED BITWARDEN
+Planerna för Teams och Enterprise har professionella affärsfunktioner. Några exempel är SSO-integration, självhosting, katalogintegration och SCIM-provisionering, globala policyer, API-åtkomst, händelseloggar och mycket mer.
 
-Use Bitwarden to secure your workforce and share sensitive information with colleagues.
+Använd Bitwarden för att säkra din personalstyrka och dela känslig information med kollegor.
 
 
-More reasons to choose Bitwarden:
+Fler anledningar att välja Bitwarden:
 
-World-Class Encryption
-Passwords are protected with advanced end-to-end encryption (AES-256 bit, salted hashtag, and PBKDF2 SHA-256) so your data stays secure and private.
+Kryptering i världsklass
+Lösenord skyddas med avancerad end-to-end-kryptering (AES-256 bit, salted hashtag och PBKDF2 SHA-256) så att dina data förblir säkra och privata.
 
-3rd-party Audits
-Bitwarden regularly conducts comprehensive third-party security audits with notable security firms. These annual audits include source code assessments and penetration testing across Bitwarden IPs, servers, and web applications.
+revisioner från tredje part
+Bitwarden genomför regelbundet omfattande tredjeparts säkerhetsrevisioner med välkända säkerhetsföretag. Dessa årliga revisioner inkluderar källkodsbedömningar och penetrationstestning över Bitwardens IP-adresser, servrar och webbapplikationer.
 
-Advanced 2FA
-Secure your login with a third-party authenticator, emailed codes, or FIDO2 WebAuthn credentials such as a hardware security key or passkey.
+Avancerad 2FA
+Säkra din inloggning med en tredjepartsautentisering, e-postkoder eller FIDO2 WebAuthn-autentiseringsuppgifter som en säkerhetsnyckel eller passnyckel för hårdvara.
 
-Bitwarden Send
-Transmit data directly to others while maintaining end-to-end encrypted security and limiting exposure.
+Bitwarden Skicka
+Överför data direkt till andra samtidigt som du upprätthåller krypterad säkerhet från början till slut och begränsar exponeringen.
 
-Built-in Generator
-Create long, complex, and distinct passwords and unique usernames for every site you visit. Integrate with email alias providers for additional privacy.
+Inbyggd generator
+Skapa långa, komplexa och distinkta lösenord och unika användarnamn för varje webbplats du besöker. Integrera med leverantörer av e-postalias för ytterligare integritet.
 
-Global Translations
-Bitwarden translations exist for more than 60 languages, translated by the global community though Crowdin.
+Globala översättningar
+Bitwarden finns översatt till mer än 60 språk, översatt av den globala gemenskapen genom Crowdin.
 
-Cross-Platform Applications
-Secure and share sensitive data within your Bitwarden Vault from any browser, mobile device, or desktop OS, and more.
+Applikationer för flera plattformar
+Säkra och dela känslig data i ditt Bitwarden Vault från vilken webbläsare, mobil enhet eller stationärt operativsystem som helst, och mycket mer.
 
-Bitwarden secures more than just passwords
-End-to-end encrypted credential management solutions from Bitwarden empower organizations to secure everything, including developer secrets and passkey experiences. Visit Bitwarden.com to learn more about Bitwarden Secrets Manager and Bitwarden Passwordless.dev!
+Bitwarden säkrar mer än bara lösenord
+End-to-end krypterade lösningar för hantering av referenser från Bitwarden gör det möjligt för organisationer att säkra allt, inklusive utvecklarhemligheter och passkey-upplevelser. Besök Bitwarden.com för att lära dig mer om Bitwarden Secrets Manager och Bitwarden Passwordless.dev!
 </value>
   </data>
   <data name="AssetTitle" xml:space="preserve">
diff --git a/apps/browser/store/locales/vi/copy.resx b/apps/browser/store/locales/vi/copy.resx
index c262c9bffd7..9b6b1afa2a2 100644
--- a/apps/browser/store/locales/vi/copy.resx
+++ b/apps/browser/store/locales/vi/copy.resx
@@ -121,55 +121,55 @@
     <value>Trình quản lý mật khẩu Bitwarden</value>
   </data>
   <data name="Summary" xml:space="preserve">
-    <value>Ở nhà, trên cơ quan, hay trên đường đi, Bitwarden có thể dễ dàng bảo về tất cả những mật khẩu, mã khoá, và thông tin cá nhân của bạn.</value>
+    <value>Ở nhà, ở cơ quan hay khi di chuyển, Bitwarden sẽ bảo vệ tất cả mật khẩu, mã khóa và thông tin cá nhân của bạn.</value>
   </data>
   <data name="Description" xml:space="preserve">
-    <value>Recognized as the best password manager by PCMag, WIRED, The Verge, CNET, G2, and more!
+    <value>Được công nhận là trình quản lý mật khẩu tốt nhất bởi PCMag, WIRED, The Verge, CNET, G2 và nhiều trang web khác! 
 
-SECURE YOUR DIGITAL LIFE
-Secure your digital life and protect against data breaches by generating and saving unique, strong passwords for every account. Maintain everything in an end-to-end encrypted password vault that only you can access.
+BẢO VỆ CUỘC SỐNG SỐ CỦA BẠN 
+Bảo vệ cuộc sống số của bạn và ngăn chặn rò rỉ dữ liệu bằng cách tạo và lưu trữ mật khẩu duy nhất, mạnh mẽ cho mỗi tài khoản. Lưu trữ mọi thứ trong kho mật khẩu được mã hóa end-to-end mà chỉ bạn có thể truy cập.
 
-ACCESS YOUR DATA, ANYWHERE, ANYTIME, ON ANY DEVICE
-Easily manage, store, secure, and share unlimited passwords across unlimited devices without restrictions.
+TRUY CẬP DỮ LIỆU CỦA BẠN BẤT CỨ ĐÂU, BẤT CỨ KHI NÀO, TRÊN BẤT CỨ THIẾT BỊ NÀO
+Quản lý, lưu trữ, bảo vệ và chia sẻ mật khẩu không giới hạn trên mọi thiết bị mà không có bất kỳ hạn chế nào.
 
-EVERYONE SHOULD HAVE THE TOOLS TO STAY SAFE ONLINE
-Utilize Bitwarden for free with no ads or selling data. Bitwarden believes everyone should have the ability to stay safe online. Premium plans offer access to advanced features.
+MỌI NGƯỜI ĐỀU NÊN CÓ CÔNG CỤ ĐỂ BẢO VỆ BẢN THÂN TRỰC TUYẾN
+Sử dụng Bitwarden miễn phí mà không có quảng cáo hoặc bán dữ liệu. Bitwarden tin rằng mọi người đều nên có khả năng bảo vệ an toàn khi trực tuyến. Các gói cao cấp cung cấp quyền truy cập vào các tính năng nâng cao.
 
-EMPOWER YOUR TEAMS WITH BITWARDEN
-Plans for Teams and Enterprise come with professional business features. Some examples include SSO integration, self-hosting, directory integration and SCIM provisioning, global policies, API access, event logs, and more.
+TĂNG CƯỜNG KHẢ NĂNG CHO ĐỘI NGŨ CỦA BẠN VỚI BITWARDEN
+Các gói dành cho Đội ngũ và Doanh nghiệp đi kèm với các tính năng chuyên nghiệp cho doanh nghiệp. Một số ví dụ bao gồm tích hợp SSO, tự lưu trữ, tích hợp danh bạ và cấp phép SCIM, chính sách toàn cầu, truy cập API, nhật ký sự kiện và nhiều hơn nữa.
 
-Use Bitwarden to secure your workforce and share sensitive information with colleagues.
+Sử dụng Bitwarden để bảo vệ nhân viên của bạn và chia sẻ thông tin nhạy cảm với đồng nghiệp.
 
 
-More reasons to choose Bitwarden:
+Thêm những lý do để chọn Bitwarden:
 
-World-Class Encryption
-Passwords are protected with advanced end-to-end encryption (AES-256 bit, salted hashtag, and PBKDF2 SHA-256) so your data stays secure and private.
+Mã hóa hàng đầu thế giới
+Mật khẩu được bảo vệ bằng mã hóa end-to-end tiên tiến (AES-256 bit, salted hashtag và PBKDF2 SHA-256) để dữ liệu của bạn luôn an toàn và riêng tư.
 
-3rd-party Audits
-Bitwarden regularly conducts comprehensive third-party security audits with notable security firms. These annual audits include source code assessments and penetration testing across Bitwarden IPs, servers, and web applications.
+Kiểm toán bảo mật bởi bên thứ ba
+Bitwarden thường xuyên thực hiện các cuộc kiểm toán bảo mật toàn diện bởi các công ty bảo mật uy tín. Các cuộc kiểm toán hàng năm này bao gồm đánh giá mã nguồn và thử nghiệm xâm nhập trên các tài sản trí tuệ (IP), máy chủ và ứng dụng web của Bitwarden.
 
-Advanced 2FA
-Secure your login with a third-party authenticator, emailed codes, or FIDO2 WebAuthn credentials such as a hardware security key or passkey.
+Xác thực hai yếu tố (2FA) nâng cao
+Bảo vệ đăng nhập của bạn bằng ứng dụng xác thực bên thứ ba, mã xác thực qua email hoặc thông tin xác thực FIDO2 WebAuthn như khóa bảo mật phần cứng hoặc mã khóa.
 
 Bitwarden Send
-Transmit data directly to others while maintaining end-to-end encrypted security and limiting exposure.
+Chuyển dữ liệu trực tiếp cho người khác trong khi duy trì bảo mật mã hóa đầu cuối và hạn chế rủi ro lộ thông tin.
 
-Built-in Generator
-Create long, complex, and distinct passwords and unique usernames for every site you visit. Integrate with email alias providers for additional privacy.
+Trình tạo mật khẩu tích hợp
+Tạo mật khẩu dài, phức tạp và duy nhất cùng tên người dùng riêng biệt cho mỗi trang web bạn truy cập. Tích hợp với các nhà cung cấp địa chỉ email ẩn danh để tăng cường bảo mật.
 
-Global Translations
-Bitwarden translations exist for more than 60 languages, translated by the global community though Crowdin.
+Dịch thuật toàn cầu
+Bitwarden được bản địa hoa tới hơn 60 ngôn ngữ, được thực hiện bởi cộng đồng toàn cầu thông qua Crowdin.
 
-Cross-Platform Applications
-Secure and share sensitive data within your Bitwarden Vault from any browser, mobile device, or desktop OS, and more.
+Ứng dụng đa nền tảng
+Bảo mật và chia sẻ dữ liệu nhạy cảm trong kho Bitwarden của bạn từ bất kỳ trình duyệt, thiết bị di động hoặc hệ điều hành máy tính nào và nhiều hơn nữa.
 
-Bitwarden secures more than just passwords
-End-to-end encrypted credential management solutions from Bitwarden empower organizations to secure everything, including developer secrets and passkey experiences. Visit Bitwarden.com to learn more about Bitwarden Secrets Manager and Bitwarden Passwordless.dev!
+Bitwarden bảo mật hơn cả mật khẩu
+Giải pháp quản lý thông tin đăng nhập được mã hóa đầu cuối của Bitwarden giúp các tổ chức bảo mật mọi thứ, bao gồm bí mật của nhà phát triển và trải nghiệm khóa truy cập. Truy cập Bitwarden.com để tìm hiểu thêm về Trình bảo vệ Bí mật Bitwarden và Bitwarden Passwordless.dev!
 </value>
   </data>
   <data name="AssetTitle" xml:space="preserve">
-    <value>At home, at work, or on the go, Bitwarden easily secures all your passwords, passkeys, and sensitive information.</value>
+    <value>Ở nhà, ở cơ quan hay khi di chuyển, Bitwarden sẽ bảo vệ tất cả mật khẩu, mã khóa và thông tin cá nhân của bạn.</value>
   </data>
   <data name="ScreenshotSync" xml:space="preserve">
     <value>Đồng bộ hóa và truy cập vào kho lưu trữ của bạn từ nhiều thiết bị</value>

From 1c6439aae155517b1364a65e7ec1dac9b4cc5bdd Mon Sep 17 00:00:00 2001
From: "bw-ghapp[bot]" <178206702+bw-ghapp[bot]@users.noreply.github.com>
Date: Fri, 11 Jul 2025 13:08:53 +0200
Subject: [PATCH 107/239] Autosync the updated translations (#15572)

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>
---
 apps/desktop/src/locales/af/messages.json    |  15 +
 apps/desktop/src/locales/ar/messages.json    |  15 +
 apps/desktop/src/locales/az/messages.json    |  25 +-
 apps/desktop/src/locales/be/messages.json    |  15 +
 apps/desktop/src/locales/bg/messages.json    |  15 +
 apps/desktop/src/locales/bn/messages.json    |  15 +
 apps/desktop/src/locales/bs/messages.json    |  61 +-
 apps/desktop/src/locales/ca/messages.json    |  15 +
 apps/desktop/src/locales/cs/messages.json    |  15 +
 apps/desktop/src/locales/cy/messages.json    |  15 +
 apps/desktop/src/locales/da/messages.json    |  15 +
 apps/desktop/src/locales/de/messages.json    |  15 +
 apps/desktop/src/locales/el/messages.json    |  15 +
 apps/desktop/src/locales/en_GB/messages.json |  15 +
 apps/desktop/src/locales/en_IN/messages.json |  15 +
 apps/desktop/src/locales/eo/messages.json    |  15 +
 apps/desktop/src/locales/es/messages.json    |  41 +-
 apps/desktop/src/locales/et/messages.json    |  15 +
 apps/desktop/src/locales/eu/messages.json    |  15 +
 apps/desktop/src/locales/fa/messages.json    |  67 ++-
 apps/desktop/src/locales/fi/messages.json    |  15 +
 apps/desktop/src/locales/fil/messages.json   |  15 +
 apps/desktop/src/locales/fr/messages.json    |  15 +
 apps/desktop/src/locales/gl/messages.json    |  15 +
 apps/desktop/src/locales/he/messages.json    |  15 +
 apps/desktop/src/locales/hi/messages.json    |  15 +
 apps/desktop/src/locales/hr/messages.json    |  23 +-
 apps/desktop/src/locales/hu/messages.json    |  25 +-
 apps/desktop/src/locales/id/messages.json    |  15 +
 apps/desktop/src/locales/it/messages.json    |  15 +
 apps/desktop/src/locales/ja/messages.json    |  15 +
 apps/desktop/src/locales/ka/messages.json    |  15 +
 apps/desktop/src/locales/km/messages.json    |  15 +
 apps/desktop/src/locales/kn/messages.json    |  15 +
 apps/desktop/src/locales/ko/messages.json    |  15 +
 apps/desktop/src/locales/lt/messages.json    |  15 +
 apps/desktop/src/locales/lv/messages.json    |  23 +-
 apps/desktop/src/locales/me/messages.json    |  15 +
 apps/desktop/src/locales/ml/messages.json    |  15 +
 apps/desktop/src/locales/mr/messages.json    |  15 +
 apps/desktop/src/locales/my/messages.json    |  15 +
 apps/desktop/src/locales/nb/messages.json    |  15 +
 apps/desktop/src/locales/ne/messages.json    |  15 +
 apps/desktop/src/locales/nl/messages.json    |  15 +
 apps/desktop/src/locales/nn/messages.json    |  15 +
 apps/desktop/src/locales/or/messages.json    |  15 +
 apps/desktop/src/locales/pl/messages.json    |  15 +
 apps/desktop/src/locales/pt_BR/messages.json | 253 +++++----
 apps/desktop/src/locales/pt_PT/messages.json |  15 +
 apps/desktop/src/locales/ro/messages.json    |  15 +
 apps/desktop/src/locales/ru/messages.json    |  15 +
 apps/desktop/src/locales/si/messages.json    |  15 +
 apps/desktop/src/locales/sk/messages.json    |  15 +
 apps/desktop/src/locales/sl/messages.json    |  15 +
 apps/desktop/src/locales/sr/messages.json    |  15 +
 apps/desktop/src/locales/sv/messages.json    | 553 ++++++++++---------
 apps/desktop/src/locales/te/messages.json    |  15 +
 apps/desktop/src/locales/th/messages.json    |  15 +
 apps/desktop/src/locales/tr/messages.json    |  15 +
 apps/desktop/src/locales/uk/messages.json    |  31 +-
 apps/desktop/src/locales/vi/messages.json    | 415 +++++++-------
 apps/desktop/src/locales/zh_CN/messages.json |  15 +
 apps/desktop/src/locales/zh_TW/messages.json |  15 +
 63 files changed, 1621 insertions(+), 676 deletions(-)

diff --git a/apps/desktop/src/locales/af/messages.json b/apps/desktop/src/locales/af/messages.json
index ff3ed461bb5..c6d764fc8f1 100644
--- a/apps/desktop/src/locales/af/messages.json
+++ b/apps/desktop/src/locales/af/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "U hoofwagwoord voldoen nie aan een of meer van die organisasiebeleide nie. Om toegang tot die kluis te kry, moet u nou u hoofwagwoord bywerk. Deur voort te gaan sal u van u huidige sessie afgeteken word, en u sal weer moet aanteken. Aktiewe sessies op ander toestelle kan vir tot een uur aktief bly."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Your organization has disabled trusted device encryption. Please set a master password to access your vault."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "Streek"
   },
diff --git a/apps/desktop/src/locales/ar/messages.json b/apps/desktop/src/locales/ar/messages.json
index b047a3c9455..9a85cfbd8d1 100644
--- a/apps/desktop/src/locales/ar/messages.json
+++ b/apps/desktop/src/locales/ar/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "كلمة المرور الرئيسية الخاصة بك لا تفي بواحدة أو أكثر من سياسات مؤسستك. من أجل الوصول إلى الخزانة، يجب عليك تحديث كلمة المرور الرئيسية الآن. سيتم تسجيل خروجك من الجلسة الحالية، مما يتطلب منك تسجيل الدخول مرة أخرى. وقد تظل الجلسات النشطة على أجهزة أخرى نشطة لمدة تصل إلى ساعة واحدة."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "لقد قامت مؤسستك بتعطيل تشفير الجهاز الموثوق به. الرجاء تعيين كلمة مرور رئيسية للوصول إلى خزانك."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "طلب موافقة المشرف"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "المنطقة"
   },
diff --git a/apps/desktop/src/locales/az/messages.json b/apps/desktop/src/locales/az/messages.json
index 193424e5542..7ec0247a234 100644
--- a/apps/desktop/src/locales/az/messages.json
+++ b/apps/desktop/src/locales/az/messages.json
@@ -2393,7 +2393,7 @@
     "message": "Bu əməliyyat qorumalıdır, davam etmək üçün lütfən kimliyinizi doğrulamaq məqsədilə ana parolunuzu yenidən daxil edin."
   },
   "masterPasswordSuccessfullySet": {
-    "message": "Master password successfully set"
+    "message": "Ana parol uğurla təyin edildi"
   },
   "updatedMasterPassword": {
     "message": "Güncəllənmiş ana parol"
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Ana parolunuz təşkilatınızdakı siyasətlərdən birinə və ya bir neçəsinə uyğun gəlmir. Seyfə müraciət üçün ana parolunuzu indi güncəlləməlisiniz. Davam etsəniz, hazırkı seansdan çıxış etmiş və təkrar giriş etməli olacaqsınız. Digər cihazlardakı aktiv seanslar bir saata qədər aktiv qalmağa davam edə bilər."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Təşkilatınız, güvənli cihaz şifrələməsini sıradan çıxartdı. Seyfinizə müraciət etmək üçün lütfən ana parol təyin edin."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Admin təsdiqini tələb et"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "Bölgə"
   },
@@ -3536,19 +3551,19 @@
     "description": "Label indicating the most common import formats"
   },
   "uriMatchDefaultStrategyHint": {
-    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "message": "URI uyuşma aşkarlaması, Bitwarden-in avto-doldurma təkliflərini necə müəyyən etdiyini göstərir.",
     "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
   },
   "regExAdvancedOptionWarning": {
-    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "message": "\"Müntəzəm ifadə\", kimlik məlumatlarının ifşa olunma riskini artıran qabaqcıl bir seçimdir.",
     "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
   },
   "startsWithAdvancedOptionWarning": {
-    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "message": "\"İlə başlayır\", kimlik məlumatlarının ifşa olunma riskini artıran qabaqcıl bir seçimdir.",
     "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
   },
   "uriMatchWarningDialogLink": {
-    "message": "More about match detection",
+    "message": "Uyuşma aşkarlaması barədə daha çox",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
   "success": {
diff --git a/apps/desktop/src/locales/be/messages.json b/apps/desktop/src/locales/be/messages.json
index 3b67a5a529b..f32addab26d 100644
--- a/apps/desktop/src/locales/be/messages.json
+++ b/apps/desktop/src/locales/be/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Ваш асноўны пароль не адпавядае адной або некалькім палітыкам арганізацыі. Для атрымання доступу да сховішча, вы павінны абнавіць яго. Працягваючы, вы выйдзіце з бягучага сеанса і вам неабходна будзе ўвайсці паўторна. Актыўныя сеансы на іншых прыладах могуць заставацца актыўнымі на працягу адной гадзіны."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Your organization has disabled trusted device encryption. Please set a master password to access your vault."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Запытаць ухваленне адміністратара"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "Рэгіён"
   },
diff --git a/apps/desktop/src/locales/bg/messages.json b/apps/desktop/src/locales/bg/messages.json
index 69ef53c4db6..4c8bc325c3d 100644
--- a/apps/desktop/src/locales/bg/messages.json
+++ b/apps/desktop/src/locales/bg/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Вашата главна парола не отговаря на една или повече политики на организацията Ви. За да получите достъп до трезора, трябва да промените главната си парола сега. Това означава, че ще бъдете отписан(а) от текущата си сесия и ще трябва да се впишете отново. Активните сесии на други устройства може да продължат да бъдат активни още един час."
   },
+  "changePasswordWarning": {
+    "message": "След като промените паролата си, ще трябва да се впишете отново с новата си парола. Сесиите на други устройства също ще бъдат прекратени в рамките на един час."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Променете главната си парола, за да завършите възстановяването на акаунта."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Главната парола не отговаря на изискванията на тази организация. Променете главната си парола, за да продължите."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Вашата организация е деактивирала шифроването чрез доверени устройства. Задайте главна парола, за да получите достъп до трезора си."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Подаване на заявка за одобрение от администратор"
   },
+  "unableToCompleteLogin": {
+    "message": "Вписването не може да бъде завършено"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "Трябва да се впишете на доверено устройство или да помолите администратора си да Ви зададе парола."
+  },
   "region": {
     "message": "Регион"
   },
diff --git a/apps/desktop/src/locales/bn/messages.json b/apps/desktop/src/locales/bn/messages.json
index 684c4339a3e..1079bdddb5c 100644
--- a/apps/desktop/src/locales/bn/messages.json
+++ b/apps/desktop/src/locales/bn/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Your master password does not meet one or more of your organization policies. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Your organization has disabled trusted device encryption. Please set a master password to access your vault."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "Region"
   },
diff --git a/apps/desktop/src/locales/bs/messages.json b/apps/desktop/src/locales/bs/messages.json
index 6911d61aa45..60891d8072d 100644
--- a/apps/desktop/src/locales/bs/messages.json
+++ b/apps/desktop/src/locales/bs/messages.json
@@ -9,7 +9,7 @@
     "message": "Sve spremljene lozinke"
   },
   "favorites": {
-    "message": "Omiljene stavke"
+    "message": "Omiljeno"
   },
   "types": {
     "message": "Vrste"
@@ -214,7 +214,7 @@
     "message": "The password you entered is incorrect."
   },
   "importSshKey": {
-    "message": "Import"
+    "message": "Uvoz"
   },
   "confirmSshKeyPassword": {
     "message": "Confirm password"
@@ -400,7 +400,7 @@
     "message": "Izbriši"
   },
   "favorite": {
-    "message": "Omiljene stavke"
+    "message": "Omiljeno"
   },
   "edit": {
     "message": "Uredi"
@@ -1119,7 +1119,7 @@
     "message": "Kontaktirajte nas"
   },
   "helpAndFeedback": {
-    "message": "Help and feedback"
+    "message": "Pomoć i povratne informacije"
   },
   "getHelp": {
     "message": "Potraži pomoć"
@@ -1489,7 +1489,7 @@
     "message": "Historija uređivanja lozinke"
   },
   "generatorHistory": {
-    "message": "Generator history"
+    "message": "Povijest stvaranja"
   },
   "clearGeneratorHistoryTitle": {
     "message": "Clear generator history"
@@ -1875,7 +1875,7 @@
     "message": "You've upgraded to Premium."
   },
   "restore": {
-    "message": "Restore"
+    "message": "Vrati"
   },
   "premiumManageAlertAppStore": {
     "message": "You can manage your subscription from the App Store. Do you want to visit the App Store now?"
@@ -1923,7 +1923,7 @@
     "description": "Noun: a special folder to hold deleted items"
   },
   "searchTrash": {
-    "message": "Search trash"
+    "message": "Pretraživanje smeća"
   },
   "permanentlyDeleteItem": {
     "message": "Permanently delete item"
@@ -2194,7 +2194,7 @@
     "message": "Personal details"
   },
   "identification": {
-    "message": "Identification"
+    "message": "Identifikacija"
   },
   "contactInfo": {
     "message": "Contact information"
@@ -2369,7 +2369,7 @@
     "message": "Awaiting security key interaction..."
   },
   "hideEmail": {
-    "message": "Hide my email address from recipients."
+    "message": "Sakrij moju adresu e-pošte od primatelja."
   },
   "sendOptionsPolicyInEffect": {
     "message": "One or more organization policies are affecting your Send options."
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Your master password does not meet one or more of your organization policies. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Your organization has disabled trusted device encryption. Please set a master password to access your vault."
   },
@@ -2447,7 +2456,7 @@
     "message": "Resend code"
   },
   "hours": {
-    "message": "Hours"
+    "message": "Sati"
   },
   "minutes": {
     "message": "Minutes"
@@ -2612,7 +2621,7 @@
     "message": "Locked"
   },
   "yourVaultIsLockedV2": {
-    "message": "Your vault is locked"
+    "message": "Vaš sef je zaključan"
   },
   "unlocked": {
     "message": "Unlocked"
@@ -2735,10 +2744,10 @@
     "message": "All vaults"
   },
   "searchOrganization": {
-    "message": "Search organization"
+    "message": "Pretraživanje organizacija"
   },
   "searchMyVault": {
-    "message": "Search my vault"
+    "message": "Pretraživanje sefa"
   },
   "forwardedEmail": {
     "message": "Forwarded email alias"
@@ -2881,7 +2890,7 @@
     }
   },
   "hostname": {
-    "message": "Hostname",
+    "message": "Naziv domaćina",
     "description": "Part of a URL."
   },
   "apiAccessToken": {
@@ -2969,7 +2978,7 @@
     "message": "View all login options"
   },
   "resendNotification": {
-    "message": "Resend notification"
+    "message": "Ponovo pošalji obavijest"
   },
   "toggleCharacterCount": {
     "message": "Toggle character count",
@@ -3067,7 +3076,7 @@
     "message": "No email?"
   },
   "goBack": {
-    "message": "Go back"
+    "message": "Natrag"
   },
   "toEditYourEmailAddress": {
     "message": "to edit your email address."
@@ -3091,7 +3100,7 @@
     "message": "Logged in!"
   },
   "important": {
-    "message": "Important:"
+    "message": "Važno:"
   },
   "accessing": {
     "message": "Accessing"
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "Region"
   },
@@ -3215,7 +3230,7 @@
     "message": "required"
   },
   "search": {
-    "message": "Search"
+    "message": "Traži"
   },
   "inputMinLength": {
     "message": "Input must be at least $COUNT$ characters long.",
@@ -3282,7 +3297,7 @@
     }
   },
   "selectPlaceholder": {
-    "message": "-- Select --"
+    "message": "Odaberi"
   },
   "multiSelectPlaceholder": {
     "message": "-- Type to filter --"
@@ -3312,7 +3327,7 @@
     "message": "Toggle side navigation"
   },
   "skipToContent": {
-    "message": "Skip to content"
+    "message": "Prijeđi na sadržaj"
   },
   "typePasskey": {
     "message": "Passkey"
@@ -3327,11 +3342,11 @@
     "message": "Alias domain"
   },
   "importData": {
-    "message": "Import data",
+    "message": "Uvoz podataka",
     "description": "Used for the desktop menu item and the header of the import dialog"
   },
   "importError": {
-    "message": "Import error"
+    "message": "Greška pri uvozu"
   },
   "importErrorDesc": {
     "message": "There was a problem with the data you tried to import. Please resolve the errors listed below in your source file and try again."
@@ -3520,7 +3535,7 @@
     "message": "Import directly from LastPass"
   },
   "importFromCSV": {
-    "message": "Import from CSV"
+    "message": "Uvoz iz CSV datoteke"
   },
   "lastPassTryAgainCheckEmail": {
     "message": "Try again or look for an email from LastPass to verify it's you."
diff --git a/apps/desktop/src/locales/ca/messages.json b/apps/desktop/src/locales/ca/messages.json
index 0cf2836b3e7..5b2baa4b58d 100644
--- a/apps/desktop/src/locales/ca/messages.json
+++ b/apps/desktop/src/locales/ca/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "La vostra contrasenya mestra no compleix una o més de les polítiques de l'organització. Per accedir a la caixa forta, heu d'actualitzar-la ara. Si continueu, es tancarà la sessió actual i us demanarà que torneu a iniciar-la. Les sessions en altres dispositius poden continuar romanent actives fins a una hora."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Your organization has disabled trusted device encryption. Please set a master password to access your vault."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Sol·liciteu l'aprovació de l'administrador"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "Regió"
   },
diff --git a/apps/desktop/src/locales/cs/messages.json b/apps/desktop/src/locales/cs/messages.json
index 8c080c48555..07f7ffce4bb 100644
--- a/apps/desktop/src/locales/cs/messages.json
+++ b/apps/desktop/src/locales/cs/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Vaše hlavní heslo nesplňuje jednu nebo více zásad Vaší organizace. Pro přístup k trezoru musíte nyní aktualizovat své hlavní heslo. Pokračování Vás odhlásí z Vaší aktuální relace a bude nutné se přihlásit. Aktivní relace na jiných zařízeních mohou zůstat aktivní až po dobu jedné hodiny."
   },
+  "changePasswordWarning": {
+    "message": "Po změně hesla se budete muset přihlásit pomocí svého nového hesla. Aktivní relace na jiných zařízeních budou odhlášeny do jedné hodiny."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Pro dokončení obnovy účtu změňte hlavní heslo."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Hlavní heslo nesplňuje požadavky této organizace. Chcete-li pokračovat, změňte hlavní heslo."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Vaše organizace zakázala šifrování pomocí důvěryhodného zařízení. Nastavte hlavní heslo pro přístup k trezoru."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Žádost o schválení správcem"
   },
+  "unableToCompleteLogin": {
+    "message": "Nelze dokončit přihlášení"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "Musíte se přihlásit na důvěryhodném zařízení nebo požádat správce, aby Vám přiřadil heslo."
+  },
   "region": {
     "message": "Oblast"
   },
diff --git a/apps/desktop/src/locales/cy/messages.json b/apps/desktop/src/locales/cy/messages.json
index 2ec97626cb1..95332eaccc0 100644
--- a/apps/desktop/src/locales/cy/messages.json
+++ b/apps/desktop/src/locales/cy/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Your master password does not meet one or more of your organization policies. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Your organization has disabled trusted device encryption. Please set a master password to access your vault."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "Region"
   },
diff --git a/apps/desktop/src/locales/da/messages.json b/apps/desktop/src/locales/da/messages.json
index c7539894853..f6ac7c37fd3 100644
--- a/apps/desktop/src/locales/da/messages.json
+++ b/apps/desktop/src/locales/da/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Din hovedadgangskode overholder ikke en eller flere organisationspolitikker. For at få adgang til boksen skal hovedadgangskode opdateres nu. Fortsættes, logges du ud af den nuværende session og vil skulle logger ind igen. Aktive sessioner på andre enheder kan forblive aktive i op til én time."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Organisationen har deaktiveret betroet enhedskryptering. Opsæt en hovedadgangskode for at tilgå boksen."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Anmod om admin-godkendelse"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "Region"
   },
diff --git a/apps/desktop/src/locales/de/messages.json b/apps/desktop/src/locales/de/messages.json
index c438d9f0f52..40bc896d5e1 100644
--- a/apps/desktop/src/locales/de/messages.json
+++ b/apps/desktop/src/locales/de/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Dein Master-Passwort entspricht nicht einer oder mehreren Richtlinien deiner Organisation. Um auf den Tresor zugreifen zu können, musst du dein Master-Passwort jetzt aktualisieren. Wenn du fortfährst, wirst du von deiner aktuellen Sitzung abgemeldet und musst dich erneut anmelden. Aktive Sitzungen auf anderen Geräten können noch bis zu einer Stunde lang aktiv bleiben."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Deine Organisation hat die vertrauenswürdige Geräteverschlüsselung deaktiviert. Bitte lege ein Master-Passwort fest, um auf deinen Tresor zuzugreifen."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Admin-Genehmigung anfragen"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "Region"
   },
diff --git a/apps/desktop/src/locales/el/messages.json b/apps/desktop/src/locales/el/messages.json
index ce01417aac0..d40a5911d52 100644
--- a/apps/desktop/src/locales/el/messages.json
+++ b/apps/desktop/src/locales/el/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Ο κύριος κωδικός πρόσβασής σας δεν πληροί μία ή περισσότερες πολιτικές του οργανισμού σας. Για να αποκτήσετε πρόσβαση στο θησαυ/κιο, πρέπει να ενημερώσετε τον κύριο κωδικό πρόσβασής σας τώρα. Η διαδικασία θα σας αποσυνδέσει από την τρέχουσα συνεδρία σας, απαιτώντας από εσάς να συνδεθείτε ξανά. Οι ενεργές συνεδρίες σε άλλες συσκευές ενδέχεται να συνεχίσουν να είναι ενεργές για μία ώρα."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Ο οργανισμός σας έχει απενεργοποιήσει την κρυπτογράφηση αξιόπιστης συσκευής. Παρακαλώ ορίστε έναν κύριο κωδικό πρόσβασης για να αποκτήσετε πρόσβαση στο θησαυροφυλάκιο σας."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Αίτηση έγκρισης διαχειριστή"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "Περιοχή"
   },
diff --git a/apps/desktop/src/locales/en_GB/messages.json b/apps/desktop/src/locales/en_GB/messages.json
index c975d8be8cd..4aacce93079 100644
--- a/apps/desktop/src/locales/en_GB/messages.json
+++ b/apps/desktop/src/locales/en_GB/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Your master password does not meet one or more of your organisation policies. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Your organisation has disabled trusted device encryption. Please set a master password to access your vault."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "Region"
   },
diff --git a/apps/desktop/src/locales/en_IN/messages.json b/apps/desktop/src/locales/en_IN/messages.json
index 4db532712bc..c1896ae6339 100644
--- a/apps/desktop/src/locales/en_IN/messages.json
+++ b/apps/desktop/src/locales/en_IN/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Your master password does not meet one or more of your organisation policies. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Your organisation has disabled trusted device encryption. Please set a master password to access your vault."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "Region"
   },
diff --git a/apps/desktop/src/locales/eo/messages.json b/apps/desktop/src/locales/eo/messages.json
index fb66ee8c9c1..8ffd5c53ec8 100644
--- a/apps/desktop/src/locales/eo/messages.json
+++ b/apps/desktop/src/locales/eo/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Your master password does not meet one or more of your organization policies. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Your organization has disabled trusted device encryption. Please set a master password to access your vault."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "Regiono"
   },
diff --git a/apps/desktop/src/locales/es/messages.json b/apps/desktop/src/locales/es/messages.json
index fa78dc4f7c9..864066c684b 100644
--- a/apps/desktop/src/locales/es/messages.json
+++ b/apps/desktop/src/locales/es/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Tu contraseña maestra no cumple con una o más de las políticas de tu organización. Para acceder a la caja fuerte, debes actualizar tu contraseña maestra ahora. Proceder te desconectará de tu sesión actual, requiriendo que vuelva a iniciar sesión. Las sesiones activas en otros dispositivos pueden seguir estando activas durante hasta una hora."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Your organization has disabled trusted device encryption. Please set a master password to access your vault."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Solicitar aprobación del administrador"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "Región"
   },
@@ -3373,13 +3388,13 @@
     "message": "Se requiere el inicio de sesión en dos pasos de Duo para tu cuenta."
   },
   "duoTwoFactorRequiredPageSubtitle": {
-    "message": "Duo two-step login is required for your account. Follow the steps below to finish logging in."
+    "message": "Se requiere el inicio de sesión en dos pasos de Duo en tu cuenta. Sigue los siguientes pasos para terminar de iniciar sesión."
   },
   "followTheStepsBelowToFinishLoggingIn": {
-    "message": "Follow the steps below to finish logging in."
+    "message": "Sigue los siguientes pasos para terminar de iniciar sesión."
   },
   "followTheStepsBelowToFinishLoggingInWithSecurityKey": {
-    "message": "Follow the steps below to finish logging in with your security key."
+    "message": "Sigue los siguientes pasos para terminar de iniciar sesión con tu clave de seguridad."
   },
   "launchDuo": {
     "message": "Inicia Duo en el navegador"
@@ -3536,19 +3551,19 @@
     "description": "Label indicating the most common import formats"
   },
   "uriMatchDefaultStrategyHint": {
-    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "message": "La detección de coincidencias URI es la forma en que Bitwarden identifica las sugerencias de autocompletado.",
     "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
   },
   "regExAdvancedOptionWarning": {
-    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "message": "\"Expresión regular\" es una opción avanzada con mayor riesgo de exponer credenciales.",
     "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
   },
   "startsWithAdvancedOptionWarning": {
-    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "message": "\"Empieza por\" es una opción avanzada con mayor riego de exponer credenciales.",
     "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
   },
   "uriMatchWarningDialogLink": {
-    "message": "More about match detection",
+    "message": "Más sobre la detección de coincidencias",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
   "success": {
@@ -3729,7 +3744,7 @@
     "message": "Permitir captura de pantalla"
   },
   "allowScreenshotsDesc": {
-    "message": "Allow the Bitwarden desktop application to be captured in screenshots and viewed in remote desktop sessions. Disabling this will prevent access on some external displays."
+    "message": "Permitir que la aplicación de escritorio de Bitwarden sea capturada en capturas de pantalla y vista en sesiones remotas de escritorio. Desactivar esto evitará el acceso a algunas pantallas externas."
   },
   "confirmWindowStillVisibleTitle": {
     "message": "Confirmar ventana todavía visible"
@@ -3811,7 +3826,7 @@
     "example": "Include a Website so this login appears as an autofill suggestion."
   },
   "newCardNudgeTitle": {
-    "message": "Seamless online checkout"
+    "message": "Pago en línea fluido"
   },
   "newCardNudgeBody": {
     "message": "Con las tarjetas, autocompleta fácilmente formularios de pago de forma segura y precisa."
@@ -3848,10 +3863,10 @@
     "message": "Asignar a estas colecciones"
   },
   "bulkCollectionAssignmentDialogDescriptionSingular": {
-    "message": "Only organization members with access to these collections will be able to see the item."
+    "message": "Solo los miembros de la organización con acceso a estas colecciones podrán ver el elemento."
   },
   "bulkCollectionAssignmentDialogDescriptionPlural": {
-    "message": "Only organization members with access to these collections will be able to see the items."
+    "message": "Solo los miembros de la organización con acceso a estas colecciones podrán ver los elementos."
   },
   "noCollectionsAssigned": {
     "message": "No se han asignado colecciones"
@@ -3860,10 +3875,10 @@
     "message": "Asignar"
   },
   "bulkCollectionAssignmentDialogDescription": {
-    "message": "Only organization members with access to these collections will be able to see the items."
+    "message": "Solo los miembros de la organización con acceso a estas colecciones podrán ver los elementos."
   },
   "bulkCollectionAssignmentWarning": {
-    "message": "You have selected $TOTAL_COUNT$ items. You cannot update $READONLY_COUNT$ of the items because you do not have edit permissions.",
+    "message": "Has seleccionado $TOTAL_COUNT$ elementos. No puedes actualizar $READONLY_COUNT$ de los elementos porque no tienes permisos de edición.",
     "placeholders": {
       "total_count": {
         "content": "$1",
diff --git a/apps/desktop/src/locales/et/messages.json b/apps/desktop/src/locales/et/messages.json
index 0aca4d534e3..db364e08c9f 100644
--- a/apps/desktop/src/locales/et/messages.json
+++ b/apps/desktop/src/locales/et/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Sinu ülemparool ei vasta ühele või rohkemale organisatsiooni poolt seatud poliitikale. Hoidlale ligipääsemiseks pead oma ülemaprooli uuendama. Jätkamisel logitakse sind praegusest sessioonist välja, mistõttu pead uuesti sisse logima. Teistes seadmetes olevad aktiivsed sessioonid aeguvad umbes ühe tunni jooksul."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Sinu organisatsioon on keelanud ära krüpteerimisvõtmete hoiustamise arvutites. Palun määra ülemparool oma hoidlale ligi pääsemiseks."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Küsi administraatori nõusolekut"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "Piirkond"
   },
diff --git a/apps/desktop/src/locales/eu/messages.json b/apps/desktop/src/locales/eu/messages.json
index 3e21e88cddb..8c53d0b0d12 100644
--- a/apps/desktop/src/locales/eu/messages.json
+++ b/apps/desktop/src/locales/eu/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Your master password does not meet one or more of your organization policies. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Your organization has disabled trusted device encryption. Please set a master password to access your vault."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "Region"
   },
diff --git a/apps/desktop/src/locales/fa/messages.json b/apps/desktop/src/locales/fa/messages.json
index 94ec39fee4b..8346cf5098f 100644
--- a/apps/desktop/src/locales/fa/messages.json
+++ b/apps/desktop/src/locales/fa/messages.json
@@ -24,7 +24,7 @@
     "message": "هویت"
   },
   "typeNote": {
-    "message": "Note"
+    "message": "یادداشت"
   },
   "typeSecureNote": {
     "message": "یادداشت امن"
@@ -1717,10 +1717,10 @@
     "message": "حساب کاربری محدود شده است"
   },
   "restrictCardTypeImport": {
-    "message": "Cannot import card item types"
+    "message": "نمی‌توان انواع مورد کارت را درون ریزی کرد"
   },
   "restrictCardTypeImportDesc": {
-    "message": "A policy set by 1 or more organizations prevents you from importing cards to your vaults."
+    "message": "یک سیاست تعیین شده توسط یک یا چند سازمان، مانع از درون ریزی کارت‌ها به گاوصندوق‌های شما شده است."
   },
   "filePasswordAndConfirmFilePasswordDoNotMatch": {
     "message": "عدم تطابق \"کلمه عبور پرونده\" و \"تأیید کلمه عبور پرونده\" با یکدیگر."
@@ -2393,7 +2393,7 @@
     "message": "این عمل محافظت می‌شود. برای ادامه، لطفاً کلمه عبور اصلی خود را دوباره وارد کنید تا هویت‌تان را تأیید کنید."
   },
   "masterPasswordSuccessfullySet": {
-    "message": "Master password successfully set"
+    "message": "کلمه عبور اصلی با موفقیت تنظیم شد"
   },
   "updatedMasterPassword": {
     "message": "کلمه عبور اصلی به‌روزرسانی شد"
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "کلمه عبور اصلی شما با یک یا چند سیاست سازمان‌تان مطابقت ندارد. برای دسترسی به گاوصندوق، باید همین حالا کلمه عبور اصلی خود را به‌روزرسانی کنید. در صورت ادامه، شما از نشست فعلی خود خارج می‌شوید و باید دوباره وارد سیستم شوید. نشست فعال در دستگاه‌های دیگر ممکن است تا یک ساعت همچنان فعال باقی بمانند."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "سازمان شما رمزگذاری دستگاه‌های مورد اعتماد را غیرفعال کرده است. لطفاً برای دسترسی به گاوصندوق خود یک کلمه عبور اصلی تنظیم کنید."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "درخواست تأیید مدیر"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "منطقه"
   },
@@ -3536,19 +3551,19 @@
     "description": "Label indicating the most common import formats"
   },
   "uriMatchDefaultStrategyHint": {
-    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "message": "تشخیص تطابق نشانی اینترنتی روشی است که Bitwarden برای شناسایی پیشنهادهای پر کردن خودکار استفاده می‌کند.",
     "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
   },
   "regExAdvancedOptionWarning": {
-    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "message": "\"عبارت منظم\" یک گزینه پیشرفته است که خطر افشای اطلاعات ورود را افزایش می‌دهد.",
     "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
   },
   "startsWithAdvancedOptionWarning": {
-    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "message": "\"شروع با\" یک گزینه پیشرفته است که خطر افشای اطلاعات ورود را افزایش می‌دهد.",
     "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
   },
   "uriMatchWarningDialogLink": {
-    "message": "More about match detection",
+    "message": "اطلاعات بیشتر درباره‌ی تشخیص تطابق",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
   "success": {
@@ -3842,28 +3857,28 @@
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
   "assignToCollections": {
-    "message": "Assign to collections"
+    "message": "اختصاص به مجموعه‌ها"
   },
   "assignToTheseCollections": {
-    "message": "Assign to these collections"
+    "message": "اختصاص به این مجموعه‌ها"
   },
   "bulkCollectionAssignmentDialogDescriptionSingular": {
-    "message": "Only organization members with access to these collections will be able to see the item."
+    "message": "فقط اعضای سازمانی که به این مجموعه‌ها دسترسی دارند قادر به مشاهده این مورد خواهند بود."
   },
   "bulkCollectionAssignmentDialogDescriptionPlural": {
-    "message": "Only organization members with access to these collections will be able to see the items."
+    "message": "فقط اعضای سازمانی که به این مجموعه‌ها دسترسی دارند قادر به مشاهده این موارد خواهند بود."
   },
   "noCollectionsAssigned": {
-    "message": "No collections have been assigned"
+    "message": "هیچ مجموعه‌ای اختصاص داده نشده است"
   },
   "assign": {
-    "message": "Assign"
+    "message": "اختصاص بدهید"
   },
   "bulkCollectionAssignmentDialogDescription": {
-    "message": "Only organization members with access to these collections will be able to see the items."
+    "message": "فقط اعضای سازمانی که به این مجموعه‌ها دسترسی دارند قادر به مشاهده این موارد خواهند بود."
   },
   "bulkCollectionAssignmentWarning": {
-    "message": "You have selected $TOTAL_COUNT$ items. You cannot update $READONLY_COUNT$ of the items because you do not have edit permissions.",
+    "message": "شما $TOTAL_COUNT$ مورد را انتخاب کرده‌اید. نمی‌توانید $READONLY_COUNT$ مورد را به‌روزرسانی کنید زیرا دسترسی ویرایش ندارید.",
     "placeholders": {
       "total_count": {
         "content": "$1",
@@ -3875,10 +3890,10 @@
     }
   },
   "selectCollectionsToAssign": {
-    "message": "Select collections to assign"
+    "message": "مجموعه‌ها را برای اختصاص انتخاب کنید"
   },
   "personalItemsTransferWarning": {
-    "message": "$PERSONAL_ITEMS_COUNT$ will be permanently transferred to the selected organization. You will no longer own these items.",
+    "message": "$PERSONAL_ITEMS_COUNT$ به طور دائمی به سازمان انتخاب شده منتقل خواهند شد. شما دیگر مالک این موارد نخواهید بود.",
     "placeholders": {
       "personal_items_count": {
         "content": "$1",
@@ -3887,7 +3902,7 @@
     }
   },
   "personalItemsWithOrgTransferWarning": {
-    "message": "$PERSONAL_ITEMS_COUNT$ will be permanently transferred to $ORG$. You will no longer own these items.",
+    "message": "$PERSONAL_ITEMS_COUNT$ به طور دائمی به $ORG$ منتقل خواهند شد. شما دیگر مالک این موارد نخواهید بود.",
     "placeholders": {
       "personal_items_count": {
         "content": "$1",
@@ -3900,10 +3915,10 @@
     }
   },
   "personalItemTransferWarningSingular": {
-    "message": "1 item will be permanently transferred to the selected organization. You will no longer own this item."
+    "message": "۱ مورد به طور دائمی به سازمان انتخاب شده منتقل خواهد شد. شما دیگر مالک این مورد نخواهید بود."
   },
   "personalItemWithOrgTransferWarningSingular": {
-    "message": "1 item will be permanently transferred to $ORG$. You will no longer own this item.",
+    "message": "۱ مورد به طور دائمی به $ORG$ منتقل خواهد شد. شما دیگر مالک این مورد نخواهید بود.",
     "placeholders": {
       "org": {
         "content": "$1",
@@ -3912,13 +3927,13 @@
     }
   },
   "successfullyAssignedCollections": {
-    "message": "Successfully assigned collections"
+    "message": "مجموعه‌ها با موفقیت اختصاص داده شدند"
   },
   "nothingSelected": {
-    "message": "You have not selected anything."
+    "message": "شما چیزی را انتخاب نکرده‌اید."
   },
   "itemsMovedToOrg": {
-    "message": "Items moved to $ORGNAME$",
+    "message": "موارد به $ORGNAME$ منتقل شدند",
     "placeholders": {
       "orgname": {
         "content": "$1",
@@ -3927,7 +3942,7 @@
     }
   },
   "itemMovedToOrg": {
-    "message": "Item moved to $ORGNAME$",
+    "message": "مورد به $ORGNAME$ منتقل شد",
     "placeholders": {
       "orgname": {
         "content": "$1",
@@ -3936,7 +3951,7 @@
     }
   },
   "movedItemsToOrg": {
-    "message": "Selected items moved to $ORGNAME$",
+    "message": "موارد انتخاب شده به $ORGNAME$ منتقل شدند",
     "placeholders": {
       "orgname": {
         "content": "$1",
diff --git a/apps/desktop/src/locales/fi/messages.json b/apps/desktop/src/locales/fi/messages.json
index 7a1d3d68a16..3d4bd2f90c5 100644
--- a/apps/desktop/src/locales/fi/messages.json
+++ b/apps/desktop/src/locales/fi/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Pääsalasanasi ei täytä yhden tai useamman organisaatiokäytännön vaatimuksia ja holvin käyttämiseksi sinun on vaihdettava se nyt. Tämä uloskirjaa kaikki nykyiset istunnot pakottaen uudelleenkirjautumisen. Muiden laitteiden aktiiviset istunnot saattavat toimia vielä tunnin ajan."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Organisaatiosi on estänyt luotettavan laitesalauksen. Käytä holviasi asettamalla pääsalasana."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Pyydä hyväksyntää ylläpidolta"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "Alue"
   },
diff --git a/apps/desktop/src/locales/fil/messages.json b/apps/desktop/src/locales/fil/messages.json
index fc26e247834..fb217ab2318 100644
--- a/apps/desktop/src/locales/fil/messages.json
+++ b/apps/desktop/src/locales/fil/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Your master password does not meet one or more of your organization policies. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Your organization has disabled trusted device encryption. Please set a master password to access your vault."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "Region"
   },
diff --git a/apps/desktop/src/locales/fr/messages.json b/apps/desktop/src/locales/fr/messages.json
index f2381618fdd..24cc75cbdc5 100644
--- a/apps/desktop/src/locales/fr/messages.json
+++ b/apps/desktop/src/locales/fr/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Votre mot de passe principal ne répond pas aux exigences de politique de sécurité de cette organisation. Pour pouvoir accéder au coffre, vous devez mettre à jour votre mot de passe principal dès maintenant. En poursuivant, vous serez déconnecté de votre session actuelle et vous devrez vous reconnecter. Les sessions actives sur d'autres appareils peuver rester actives pendant encore une heure."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Votre organisation a désactivé le chiffrement des appareils de confiance. Veuillez définir un mot de passe principal pour accéder à votre coffre."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Demander l'approbation de l'administrateur"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "Région"
   },
diff --git a/apps/desktop/src/locales/gl/messages.json b/apps/desktop/src/locales/gl/messages.json
index 8780868a6b8..88a353cbe48 100644
--- a/apps/desktop/src/locales/gl/messages.json
+++ b/apps/desktop/src/locales/gl/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Your master password does not meet one or more of your organization policies. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Your organization has disabled trusted device encryption. Please set a master password to access your vault."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "Region"
   },
diff --git a/apps/desktop/src/locales/he/messages.json b/apps/desktop/src/locales/he/messages.json
index aa869a3fd7c..267194ae01e 100644
--- a/apps/desktop/src/locales/he/messages.json
+++ b/apps/desktop/src/locales/he/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "הסיסמה הראשית שלך אינה עומדת באחת או יותר מפוליסות הארגון שלך. כדי לגשת לכספת, אתה מוכרח לעדכן את הסיסמה הראשית שלך עכשיו. בהמשך תנותק מההפעלה הנוכחית שלך, מה שידרוש ממך להיכנס חזרה. הפעלות פעילות במכשירים אחרים עלולות להישאר פעילות למשך עד שעה אחת."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "הארגון שלך השבית הצפנת מכשיר מהימן. נא להגדיר סיסמה ראשית כדי לגשת לכספת שלך."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "בקש אישור מנהל"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "אזור"
   },
diff --git a/apps/desktop/src/locales/hi/messages.json b/apps/desktop/src/locales/hi/messages.json
index d02a7057a80..1dfecdd4c8d 100644
--- a/apps/desktop/src/locales/hi/messages.json
+++ b/apps/desktop/src/locales/hi/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Your master password does not meet one or more of your organization policies. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Your organization has disabled trusted device encryption. Please set a master password to access your vault."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "Region"
   },
diff --git a/apps/desktop/src/locales/hr/messages.json b/apps/desktop/src/locales/hr/messages.json
index 45af433beab..4c5c925916b 100644
--- a/apps/desktop/src/locales/hr/messages.json
+++ b/apps/desktop/src/locales/hr/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Tvoja glavna lozinka ne zadovoljava pravila ove organizacije. Za pristup trezoru moraš odmah ažurirati svoju glavnu lozinku. Ako nastaviš, odjaviti ćeš se iz trenutne sesije te ćeš se morati ponovno prijaviti. Aktivne sesije na drugim uređajima mogu ostati aktivne do jedan sat."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Tvoja je organizacija onemogućila šifriranje pouzdanog uređaja. Postavi glavnu lozinku za pristup svom trezoru."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Zatraži odobrenje administratora"
   },
+  "unableToCompleteLogin": {
+    "message": "Nije moguće dovršiti prijavu"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "Moraš se prijaviti na pouzdanom uređaju ili zamoliti administratora da ti dodijeli lozinku."
+  },
   "region": {
     "message": "Regija"
   },
@@ -3536,19 +3551,19 @@
     "description": "Label indicating the most common import formats"
   },
   "uriMatchDefaultStrategyHint": {
-    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "message": "Otkrivanje podudaranja URI-ja je način na koji Bitwarden identificira prijedloge za auto-ispunu.",
     "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
   },
   "regExAdvancedOptionWarning": {
-    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "message": "„Regularni izraz” je napredna mogućnost s povećanim rizikom od otkrivanja vjerodajnica.",
     "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
   },
   "startsWithAdvancedOptionWarning": {
-    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "message": "„Počinje s” je napredna mogućnost s povećnim rizikom od otkrivanja vjerodajnica.",
     "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
   },
   "uriMatchWarningDialogLink": {
-    "message": "More about match detection",
+    "message": "Više o otkrivanju podudaranja",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
   "success": {
diff --git a/apps/desktop/src/locales/hu/messages.json b/apps/desktop/src/locales/hu/messages.json
index fb95dee49ce..30e0fe37ad4 100644
--- a/apps/desktop/src/locales/hu/messages.json
+++ b/apps/desktop/src/locales/hu/messages.json
@@ -2393,7 +2393,7 @@
     "message": "Ez a művelet védett. A folytatásért ismételten meg kell adni a mesterjelszőt az személyazonosság ellenőrzéséhez."
   },
   "masterPasswordSuccessfullySet": {
-    "message": "Master password successfully set"
+    "message": "A mesterjelszó sikeresen beállításra került."
   },
   "updatedMasterPassword": {
     "message": "A mesterjelszó frisstésre került."
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "A mesterjelszó nem felel meg egy vagy több szervezeti szabályzatnak. A széf eléréséhez frissíteni kell a meszerjelszót. A továbblépés kijelentkeztet az aktuális munkamenetből és újra be kell jelentkezni. A többi eszközön lévő aktív munkamenetek akár egy óráig is aktívak maradhatnak."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "A szervezete letiltotta a megbízható eszközök titkosítását. Állítsunk be egy mesterjelszót a széf eléréséhez."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Adminisztrátori jóváhagyás kérés"
   },
+  "unableToCompleteLogin": {
+    "message": "Nem lehet befejezni a bejelentkezést."
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "Be kell jelentkezni egy megbízható eszközön vagy meg kell kérni az adminisztrátort, hogy rendeljen hozzá egy jelszót."
+  },
   "region": {
     "message": "Régió"
   },
@@ -3536,19 +3551,19 @@
     "description": "Label indicating the most common import formats"
   },
   "uriMatchDefaultStrategyHint": {
-    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "message": "Az URI egyezés észlelése az, ahogyan a Bitwarden azonosítja az automatikus kitöltési javaslatokat.",
     "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
   },
   "regExAdvancedOptionWarning": {
-    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "message": "A \"normál kifejezés“ egy fejlett opció, amely a hitelesítő adatok növekvő kiszivárgásának kockázatával.",
     "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
   },
   "startsWithAdvancedOptionWarning": {
-    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "message": "A \"Kezdés\" egy fejlett opció, amely a hitelesítő adatok kiszivárgásának növekvő kockázatával.",
     "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
   },
   "uriMatchWarningDialogLink": {
-    "message": "More about match detection",
+    "message": "Bővebben az egyezés felismerésről",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
   "success": {
diff --git a/apps/desktop/src/locales/id/messages.json b/apps/desktop/src/locales/id/messages.json
index 83869dbedde..b4b0a9c3cd0 100644
--- a/apps/desktop/src/locales/id/messages.json
+++ b/apps/desktop/src/locales/id/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Your master password does not meet one or more of your organization policies. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Your organization has disabled trusted device encryption. Please set a master password to access your vault."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "Region"
   },
diff --git a/apps/desktop/src/locales/it/messages.json b/apps/desktop/src/locales/it/messages.json
index 1b2f6898b9c..325e754e6a5 100644
--- a/apps/desktop/src/locales/it/messages.json
+++ b/apps/desktop/src/locales/it/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "La tua password principale non soddisfa uno o più politiche della tua organizzazione. Per accedere alla cassaforte, aggiornala ora. Procedere ti farà uscire dalla sessione corrente, richiedendoti di accedere di nuovo. Le sessioni attive su altri dispositivi potrebbero continuare a rimanere attive per un massimo di un'ora."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "La tua organizzazione ha disabilitato la crittografia affidabile del dispositivo. Per favore imposta una password principale per accedere alla tua cassaforte."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Richiedi approvazione dell'amministratore"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "Regione"
   },
diff --git a/apps/desktop/src/locales/ja/messages.json b/apps/desktop/src/locales/ja/messages.json
index 066011e2d77..0028301c36f 100644
--- a/apps/desktop/src/locales/ja/messages.json
+++ b/apps/desktop/src/locales/ja/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "マスターパスワードが組織のポリシーに適合していません。保管庫にアクセスするには、今すぐマスターパスワードを更新しなければなりません。続行すると現在のセッションからログアウトし、再度ログインする必要があります。 他のデバイス上のアクティブなセッションは、最大1時間アクティブであり続けることがあります。"
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "あなたの組織は信頼できるデバイスの暗号化を無効化しました。保管庫にアクセスするにはマスターパスワードを設定してください。"
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "管理者の承認を要求する"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "リージョン"
   },
diff --git a/apps/desktop/src/locales/ka/messages.json b/apps/desktop/src/locales/ka/messages.json
index 610e189b60a..9bbbe29c865 100644
--- a/apps/desktop/src/locales/ka/messages.json
+++ b/apps/desktop/src/locales/ka/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Your master password does not meet one or more of your organization policies. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Your organization has disabled trusted device encryption. Please set a master password to access your vault."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "რეგიონი"
   },
diff --git a/apps/desktop/src/locales/km/messages.json b/apps/desktop/src/locales/km/messages.json
index 8780868a6b8..88a353cbe48 100644
--- a/apps/desktop/src/locales/km/messages.json
+++ b/apps/desktop/src/locales/km/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Your master password does not meet one or more of your organization policies. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Your organization has disabled trusted device encryption. Please set a master password to access your vault."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "Region"
   },
diff --git a/apps/desktop/src/locales/kn/messages.json b/apps/desktop/src/locales/kn/messages.json
index dab0d39b1c4..8b8e94c8285 100644
--- a/apps/desktop/src/locales/kn/messages.json
+++ b/apps/desktop/src/locales/kn/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Your master password does not meet one or more of your organization policies. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Your organization has disabled trusted device encryption. Please set a master password to access your vault."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "Region"
   },
diff --git a/apps/desktop/src/locales/ko/messages.json b/apps/desktop/src/locales/ko/messages.json
index 636105331f5..078f420ffe4 100644
--- a/apps/desktop/src/locales/ko/messages.json
+++ b/apps/desktop/src/locales/ko/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Your master password does not meet one or more of your organization policies. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Your organization has disabled trusted device encryption. Please set a master password to access your vault."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "Region"
   },
diff --git a/apps/desktop/src/locales/lt/messages.json b/apps/desktop/src/locales/lt/messages.json
index 491e7f49ac0..40e0ca70659 100644
--- a/apps/desktop/src/locales/lt/messages.json
+++ b/apps/desktop/src/locales/lt/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Jūsų pagrindinis slaptažodis neatitinka vieno ar kelių organizacijos slaptažodžiui keliamų reikalavimų. Norėdami prisijungti prie saugyklos, jūs turite atnaujinti savo pagrindinį slaptažodį. Jeigu nuspręsite tęsti, jūs būsite atjungti nuo dabartinės sesijos ir jums reikės vėl prisijungti. Visos aktyvios sesijos kituose įrenginiuose gali išlikti aktyvios iki vienos valandos."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Your organization has disabled trusted device encryption. Please set a master password to access your vault."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Prašyti administratoriaus patvirtinimo"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "Regionas"
   },
diff --git a/apps/desktop/src/locales/lv/messages.json b/apps/desktop/src/locales/lv/messages.json
index ab668f7583d..6f7fce491c3 100644
--- a/apps/desktop/src/locales/lv/messages.json
+++ b/apps/desktop/src/locales/lv/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Galvenā parole neatbilst vienam vai vairākiem apvienības nosacījumiem. Ir jāatjaunina galvenā parole, lai varētu piekļūt glabātavai. Turpinot notiks atteikšanās no pašreizējās sesijas, un būs nepieciešams pieteikties no jauna. Citās ierīcēs esošās sesijas var turpināt darboties līdz vienai stundai."
   },
+  "changePasswordWarning": {
+    "message": "Pēc savas paroles nomainīšanas būs nepieciešams pieteikties ar jauno paroli. Spēkā esošajās sesijās citās ierīcēs stundas laikā notiks atteikšanās."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Jānomaina sava galvenā'parole, lai pabeigtu konta atkopi."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Galvenā parole neatbilst šīs apvienības prasībām. Jānomaina sava galvenā parole, lai turpinātu."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Tava apvienība ir atspējojusi uzticamo ierīču šifrēšanu. Lūgums iestatīt galveno paroli, lai piekļūtu savai glabātavai."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Pieprasīt pārvaldītāja apstiprinājumu"
   },
+  "unableToCompleteLogin": {
+    "message": "Nevar pabeigt pieteikšanos"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "Nepieciešams pieteikties uzticamā ierīcē vai vaicāt pārvaldītājam, lai piešķir paroli."
+  },
   "region": {
     "message": "Apgabals"
   },
@@ -3536,19 +3551,19 @@
     "description": "Label indicating the most common import formats"
   },
   "uriMatchDefaultStrategyHint": {
-    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "message": "URI atbilstības noteikšana ir veids, kā Bitwarden atpazīst automātiskās aizpildes ieteikumus.",
     "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
   },
   "regExAdvancedOptionWarning": {
-    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "message": "\"Regulārā izteiksme\" ir lietpratējiem paredzēta iespēja ar paaugstinātu piekļuves datu atklāšanas bīstamību.",
     "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
   },
   "startsWithAdvancedOptionWarning": {
-    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "message": "\"Sākas ar' ir lietpratējiem paredzēta iespēja ar paaugstinātu piekļuves datu atklāšanas bīstamību.",
     "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
   },
   "uriMatchWarningDialogLink": {
-    "message": "More about match detection",
+    "message": "Vairāk par atbilstības noteikšanu",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
   "success": {
diff --git a/apps/desktop/src/locales/me/messages.json b/apps/desktop/src/locales/me/messages.json
index 0dfb976af16..50dd04491a4 100644
--- a/apps/desktop/src/locales/me/messages.json
+++ b/apps/desktop/src/locales/me/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Your master password does not meet one or more of your organization policies. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Your organization has disabled trusted device encryption. Please set a master password to access your vault."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "Region"
   },
diff --git a/apps/desktop/src/locales/ml/messages.json b/apps/desktop/src/locales/ml/messages.json
index f7558da351c..7e717442d88 100644
--- a/apps/desktop/src/locales/ml/messages.json
+++ b/apps/desktop/src/locales/ml/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Your master password does not meet one or more of your organization policies. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Your organization has disabled trusted device encryption. Please set a master password to access your vault."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "Region"
   },
diff --git a/apps/desktop/src/locales/mr/messages.json b/apps/desktop/src/locales/mr/messages.json
index 8780868a6b8..88a353cbe48 100644
--- a/apps/desktop/src/locales/mr/messages.json
+++ b/apps/desktop/src/locales/mr/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Your master password does not meet one or more of your organization policies. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Your organization has disabled trusted device encryption. Please set a master password to access your vault."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "Region"
   },
diff --git a/apps/desktop/src/locales/my/messages.json b/apps/desktop/src/locales/my/messages.json
index d7dd5c90afd..4339e8630a7 100644
--- a/apps/desktop/src/locales/my/messages.json
+++ b/apps/desktop/src/locales/my/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Your master password does not meet one or more of your organization policies. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Your organization has disabled trusted device encryption. Please set a master password to access your vault."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "Region"
   },
diff --git a/apps/desktop/src/locales/nb/messages.json b/apps/desktop/src/locales/nb/messages.json
index 75dd248e2d4..ef6058d4f67 100644
--- a/apps/desktop/src/locales/nb/messages.json
+++ b/apps/desktop/src/locales/nb/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Your master password does not meet one or more of your organization policies. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Your organization has disabled trusted device encryption. Please set a master password to access your vault."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Be om administratorgodkjennelse"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "Region"
   },
diff --git a/apps/desktop/src/locales/ne/messages.json b/apps/desktop/src/locales/ne/messages.json
index 52e7c61d448..cf72dbe68ef 100644
--- a/apps/desktop/src/locales/ne/messages.json
+++ b/apps/desktop/src/locales/ne/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Your master password does not meet one or more of your organization policies. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Your organization has disabled trusted device encryption. Please set a master password to access your vault."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "Region"
   },
diff --git a/apps/desktop/src/locales/nl/messages.json b/apps/desktop/src/locales/nl/messages.json
index 8081e733d4a..efcdf21c3ef 100644
--- a/apps/desktop/src/locales/nl/messages.json
+++ b/apps/desktop/src/locales/nl/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Je hoofdwachtwoord voldoet niet aan en of meerdere oganisatiebeleidsonderdelen. Om toegang te krijgen tot de kluis, moet je je hoofdwachtwoord nu bijwerken. Doorgaan zal je huidige sessie uitloggen, waarna je opnieuw moet inloggen. Actieve sessies op andere apparaten blijven mogelijk nog een uur actief."
   },
+  "changePasswordWarning": {
+    "message": "Na het wijzigen van je wachtwoord moet je inloggen met je nieuwe wachtwoord. Actieve sessies op andere apparaten worden binnen één uur uitgelogd."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Wijzig je hoofdwachtwoord om je account te herstellen."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Je hoofdwachtwoord voldoet niet aan de eisen van deze organisatie. Wijzig je hoofdwachtwoord om door te gaan."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Je organisatie heeft het versleutelen van vertrouwde apparaten uitgeschakeld. Stel een hoofdwachtwoord in om toegang te krijgen tot je kluis."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Goedkeuring van beheerder vragen"
   },
+  "unableToCompleteLogin": {
+    "message": "Kan login niet voltooien"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "Je moet inloggen op een vertrouwd apparaat of je beheerder vragen om je een wachtwoord toe te wijzen."
+  },
   "region": {
     "message": "Regio"
   },
diff --git a/apps/desktop/src/locales/nn/messages.json b/apps/desktop/src/locales/nn/messages.json
index c6c5540e922..894346b38b1 100644
--- a/apps/desktop/src/locales/nn/messages.json
+++ b/apps/desktop/src/locales/nn/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Your master password does not meet one or more of your organization policies. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Your organization has disabled trusted device encryption. Please set a master password to access your vault."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "Region"
   },
diff --git a/apps/desktop/src/locales/or/messages.json b/apps/desktop/src/locales/or/messages.json
index cf660a5571b..58499570617 100644
--- a/apps/desktop/src/locales/or/messages.json
+++ b/apps/desktop/src/locales/or/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Your master password does not meet one or more of your organization policies. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Your organization has disabled trusted device encryption. Please set a master password to access your vault."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "Region"
   },
diff --git a/apps/desktop/src/locales/pl/messages.json b/apps/desktop/src/locales/pl/messages.json
index 5fb627e02c8..493be7a41b7 100644
--- a/apps/desktop/src/locales/pl/messages.json
+++ b/apps/desktop/src/locales/pl/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Twoje hasło główne nie spełnia jednej lub kilku zasad organizacji. Aby uzyskać dostęp do sejfu, musisz teraz zaktualizować swoje hasło główne. Kontynuacja wyloguje Cię z bieżącej sesji, wymagając zalogowania się ponownie. Aktywne sesje na innych urządzeniach mogą pozostać aktywne przez maksymalnie jedną godzinę."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Twoja organizacja wyłączyła szyfrowanie zaufanego urządzenia. Ustaw hasło główne, aby uzyskać dostęp do sejfu."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Poproś administratora o zatwierdzenie"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "Region"
   },
diff --git a/apps/desktop/src/locales/pt_BR/messages.json b/apps/desktop/src/locales/pt_BR/messages.json
index 9959e226394..39123f8c1e7 100644
--- a/apps/desktop/src/locales/pt_BR/messages.json
+++ b/apps/desktop/src/locales/pt_BR/messages.json
@@ -24,7 +24,7 @@
     "message": "Identidade"
   },
   "typeNote": {
-    "message": "Note"
+    "message": "Notas"
   },
   "typeSecureNote": {
     "message": "Nota Segura"
@@ -241,22 +241,22 @@
     "message": "O agente SSH é um serviço direcionado a desenvolvedores que permite que você assine solicitações SSH diretamente do seu cofre do Bitwarden."
   },
   "sshAgentPromptBehavior": {
-    "message": "Ask for authorization when using SSH agent"
+    "message": "Solicitar autorização ao usar o agente SSH"
   },
   "sshAgentPromptBehaviorDesc": {
-    "message": "Choose how to handle SSH-agent authorization requests."
+    "message": "Defina como lidar com as solicitações de autorização do agente-SSH."
   },
   "sshAgentPromptBehaviorHelp": {
-    "message": "Remember SSH authorizations"
+    "message": "Lembrar das autorizações de SSH"
   },
   "sshAgentPromptBehaviorAlways": {
-    "message": "Always"
+    "message": "Sempre"
   },
   "sshAgentPromptBehaviorNever": {
-    "message": "Never"
+    "message": "Nunca"
   },
   "sshAgentPromptBehaviorRememberUntilLock": {
-    "message": "Remember until vault is locked"
+    "message": "Lembrar até o repositório estar trancado"
   },
   "premiumRequired": {
     "message": "Requer Assinatura Premium"
@@ -409,16 +409,16 @@
     "message": "Chave de Autenticação (TOTP)"
   },
   "authenticatorKey": {
-    "message": "Authenticator key"
+    "message": "Chave de autenticação"
   },
   "autofillOptions": {
-    "message": "Autofill options"
+    "message": "Opções de preenchimento automático"
   },
   "websiteUri": {
-    "message": "Website (URI)"
+    "message": "Site (URI)"
   },
   "websiteUriCount": {
-    "message": "Website (URI) $COUNT$",
+    "message": "Site (URI) $COUNT$",
     "description": "Label for an input field that contains a website URI. The input field is part of a list of fields, and the count indicates the position of the field in the list.",
     "placeholders": {
       "count": {
@@ -428,49 +428,49 @@
     }
   },
   "websiteAdded": {
-    "message": "Website added"
+    "message": "Site adicionado"
   },
   "addWebsite": {
-    "message": "Add website"
+    "message": "Adicionar site"
   },
   "deleteWebsite": {
-    "message": "Delete website"
+    "message": "Deletar site"
   },
   "owner": {
-    "message": "Owner"
+    "message": "Proprietário"
   },
   "addField": {
-    "message": "Add field"
+    "message": "Adicionar campo"
   },
   "editField": {
-    "message": "Edit field"
+    "message": "Editar campo"
   },
   "permanentlyDeleteAttachmentConfirmation": {
-    "message": "Are you sure you want to permanently delete this attachment?"
+    "message": "Tem certeza de que deseja deletar permanentemente esse anexo?"
   },
   "fieldType": {
-    "message": "Field type"
+    "message": "Tipo do campo"
   },
   "fieldLabel": {
-    "message": "Field label"
+    "message": "Rótulo de campo"
   },
   "add": {
-    "message": "Add"
+    "message": "Adicionar"
   },
   "textHelpText": {
-    "message": "Use text fields for data like security questions"
+    "message": "Use campos de texto para dados como questões de segurança"
   },
   "hiddenHelpText": {
-    "message": "Use hidden fields for sensitive data like a password"
+    "message": "Use campos ocultos para dados sensíveis como senhas"
   },
   "checkBoxHelpText": {
-    "message": "Use checkboxes if you'd like to autofill a form's checkbox, like a remember email"
+    "message": "Use caixas de seleção caso deseje preencher automaticamente as caixas de seleção de um formulário, como um email de lembrete"
   },
   "linkedHelpText": {
-    "message": "Use a linked field when you are experiencing autofill issues for a specific website."
+    "message": "Use um campo vinculado quando você estiver experienciando problemas de preenchimento automático para um site específico."
   },
   "linkedLabelHelpText": {
-    "message": "Enter the the field's html id, name, aria-label, or placeholder."
+    "message": "Digite o ID html, nome, rótulo acessível (aria-label), ou espaço reservado do campo."
   },
   "folder": {
     "message": "Pasta"
@@ -498,7 +498,7 @@
     "description": "This describes a field that is 'linked' (related) to another field."
   },
   "cfTypeCheckbox": {
-    "message": "Checkbox"
+    "message": "Caixa de seleção"
   },
   "linkedValue": {
     "message": "Valor vinculado",
@@ -695,7 +695,7 @@
     "message": "O tamanho máximo do arquivo é de 500 MB."
   },
   "legacyEncryptionUnsupported": {
-    "message": "Legacy encryption is no longer supported. Please contact support to recover your account."
+    "message": "A criptografia legada não é mais suportada. Por favor, contate o suporte para recuperar a sua conta."
   },
   "editedFolder": {
     "message": "Pasta editada"
@@ -1717,10 +1717,10 @@
     "message": "Conta restrita"
   },
   "restrictCardTypeImport": {
-    "message": "Cannot import card item types"
+    "message": "Não é possível importar os tipos de item cartão"
   },
   "restrictCardTypeImportDesc": {
-    "message": "A policy set by 1 or more organizations prevents you from importing cards to your vaults."
+    "message": "Uma política definida por 1 ou mais organizações impedem que você importe cartões dos seus repositórios."
   },
   "filePasswordAndConfirmFilePasswordDoNotMatch": {
     "message": "\"Senha do arquivo\" e \"Confirmação de senha\" não correspondem."
@@ -1970,10 +1970,10 @@
     }
   },
   "cardDetails": {
-    "message": "Card details"
+    "message": "Detalhes do cartão"
   },
   "cardBrandDetails": {
-    "message": "$BRAND$ details",
+    "message": "$BRAND$ Detalhes",
     "placeholders": {
       "brand": {
         "content": "$1",
@@ -1982,32 +1982,32 @@
     }
   },
   "learnMoreAboutAuthenticators": {
-    "message": "Learn more about authenticators"
+    "message": "Aprenda mais sobre autenticadores"
   },
   "copyTOTP": {
-    "message": "Copy Authenticator key (TOTP)"
+    "message": "Copiar a chave de autenticação (TOTP)"
   },
   "totpHelperTitle": {
-    "message": "Make 2-step verification seamless"
+    "message": "Tornar a verificação em 2 etapas mais simples"
   },
   "totpHelper": {
-    "message": "Bitwarden can store and fill 2-step verification codes. Copy and paste the key into this field."
+    "message": "Bitwarden pode armazenar e preencher códigos de verificação de 2 etapas. Copie e cole a chave nesse campo."
   },
   "totpHelperWithCapture": {
-    "message": "Bitwarden can store and fill 2-step verification codes. Select the camera icon to take a screenshot of this website's authenticator QR code, or copy and paste the key into this field."
+    "message": "Bitwarden pode armazenar e preencher códigos de verificação de 2 etapas. Selecione o ícone da câmera e tire uma captura de tela do código QR de autenticação desse site ou copie e cole a chave nesse campo."
   },
   "premium": {
     "message": "Premium",
     "description": "Premium membership"
   },
   "freeOrgsCannotUseAttachments": {
-    "message": "Free organizations cannot use attachments"
+    "message": "Organizações gratuitas não podem utilizar anexos"
   },
   "singleFieldNeedsAttention": {
-    "message": "1 field needs your attention."
+    "message": "1 campo precisa da sua atenção."
   },
   "multipleFieldsNeedAttention": {
-    "message": "$COUNT$ fields need your attention.",
+    "message": "$COUNT$ campos precisam da sua atenção.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -2016,10 +2016,10 @@
     }
   },
   "cardExpiredTitle": {
-    "message": "Expired card"
+    "message": "Cartão expirado"
   },
   "cardExpiredMessage": {
-    "message": "If you've renewed it, update the card's information"
+    "message": "Se você fez uma renovação recente, atualize as informações do cartão"
   },
   "verificationRequired": {
     "message": "Verificação necessária",
@@ -2191,13 +2191,13 @@
     "message": "A política da organização bloqueou a importação de itens para o seu cofre."
   },
   "personalDetails": {
-    "message": "Personal details"
+    "message": "Detalhes pessoais"
   },
   "identification": {
-    "message": "Identification"
+    "message": "Identificação"
   },
   "contactInfo": {
-    "message": "Contact information"
+    "message": "Informações de contato"
   },
   "allSends": {
     "message": "Todos os Sends",
@@ -2393,7 +2393,7 @@
     "message": "Esta ação está protegida. Para continuar, por favor, reinsira a sua senha mestra para verificar sua identidade."
   },
   "masterPasswordSuccessfullySet": {
-    "message": "Master password successfully set"
+    "message": "Senha mestra definida com sucesso"
   },
   "updatedMasterPassword": {
     "message": "Senha mestra atualizada"
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "A sua senha mestra não atende a uma ou mais das políticas da sua organização. Para acessar o cofre, você deve atualizar a sua senha mestra agora. O processo desconectará você da sessão atual, exigindo que você inicie a sessão novamente. Sessões ativas em outros dispositivos podem continuar ativas por até uma hora."
   },
+  "changePasswordWarning": {
+    "message": "Após mudar a sua senha, será necessário entrar novamente com a sua nova senha. Sessões ativas em outros dispositivos serão encerradas em até uma hora."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Mude a sua senha mestra para completar a recuperação de conta."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Sua senha mestra não corresponde aos requerimentos da organização. Mude a sua senha mestra para continuar."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Sua organização desativou a criptografia confiável do dispositivo. Por favor, defina uma senha mestra para acessar o seu cofre."
   },
@@ -2519,13 +2528,13 @@
     "message": "Senha mestra removida."
   },
   "removeMasterPasswordForOrganizationUserKeyConnector": {
-    "message": "A master password is no longer required for members of the following organization. Please confirm the domain below with your organization administrator."
+    "message": "Uma senha mestra não é mais necessária para membros da seguinte organização. Por favor, confirme o domínio abaixo com o administrador da sua organização."
   },
   "organizationName": {
-    "message": "Organization name"
+    "message": "Nome da organização"
   },
   "keyConnectorDomain": {
-    "message": "Key Connector domain"
+    "message": "Chave de conexão do domínio"
   },
   "leaveOrganization": {
     "message": "Sair da Organização"
@@ -2637,7 +2646,7 @@
     "message": "Gerar e-mail"
   },
   "usernameGenerator": {
-    "message": "Username generator"
+    "message": "Gerador de nome de usuário"
   },
   "generatePassword": {
     "message": "Gerar Senha"
@@ -2646,16 +2655,16 @@
     "message": "Gerar frase secreta"
   },
   "passwordGenerated": {
-    "message": "Password generated"
+    "message": "Gerador de senhas"
   },
   "passphraseGenerated": {
-    "message": "Passphrase generated"
+    "message": "Gerador de palavra-passe"
   },
   "usernameGenerated": {
-    "message": "Username generated"
+    "message": "Nome de usuário gerado"
   },
   "emailGenerated": {
-    "message": "Email generated"
+    "message": "E-mail gerado"
   },
   "spinboxBoundariesHint": {
     "message": "Valor deve ser entre $MIN$ e $MAX$.",
@@ -2714,7 +2723,7 @@
     "message": "Use esta senha"
   },
   "useThisPassphrase": {
-    "message": "Use this passphrase"
+    "message": "Use essa palavra-passe"
   },
   "useThisUsername": {
     "message": "Use este nome de usuário"
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Solicitar aprovação do administrador"
   },
+  "unableToCompleteLogin": {
+    "message": "Incapaz de completar o login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "Você precisar entrar em um dispositivo confiável ou solicitar ao administrador que lhe atribua uma senha."
+  },
   "region": {
     "message": "Região"
   },
@@ -3185,28 +3200,28 @@
     "message": "Dispositivo confiável"
   },
   "trustOrganization": {
-    "message": "Trust organization"
+    "message": "Organização confiável"
   },
   "trust": {
-    "message": "Trust"
+    "message": "Confiar"
   },
   "doNotTrust": {
-    "message": "Do not trust"
+    "message": "Não confiar"
   },
   "organizationNotTrusted": {
-    "message": "Organization is not trusted"
+    "message": "Organização não confiável"
   },
   "emergencyAccessTrustWarning": {
-    "message": "For the security of your account, only confirm if you have granted emergency access to this user and their fingerprint matches what is displayed in their account"
+    "message": "Para a segurança da sua conta, apenas confirme se você permitiu o acesso de emergência a esse usuário e se a impressão digital dele coincide com a que é exibida em sua conta"
   },
   "orgTrustWarning": {
-    "message": "For the security of your account, only proceed if you are a member of this organization, have account recovery enabled, and the fingerprint displayed below matches the organization's fingerprint."
+    "message": "Para a segurança da sua conta, prossiga apenas se você for um membro dessa organização, tem uma recuperação de conta ativa e a impressão digital exibida abaixo corresponde com a impressão digital da organização."
   },
   "orgTrustWarning1": {
-    "message": "This organization has an Enterprise policy that will enroll you in account recovery. Enrollment will allow organization administrators to change your password. Only proceed if you recognize this organization and the fingerprint phrase displayed below matches the organization's fingerprint."
+    "message": "Esta organização tem uma política empresarial que lhe inscreverá na recuperação de conta. A matrícula permitirá que os administradores da organização alterem sua senha. Prossiga somente se você reconhecer esta organização e se a frase biométrica exibida abaixo corresponde com a impressão digital da organização."
   },
   "trustUser": {
-    "message": "Trust user"
+    "message": "Usuário confiável"
   },
   "inputRequired": {
     "message": "Entrada necessária."
@@ -3379,7 +3394,7 @@
     "message": "Siga os passos abaixo para finalizar o login."
   },
   "followTheStepsBelowToFinishLoggingInWithSecurityKey": {
-    "message": "Follow the steps below to finish logging in with your security key."
+    "message": "Siga os passos abaixo para finalizar o login com a sua chave de segurança."
   },
   "launchDuo": {
     "message": "Iniciar o Duo no navegador"
@@ -3536,19 +3551,19 @@
     "description": "Label indicating the most common import formats"
   },
   "uriMatchDefaultStrategyHint": {
-    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "message": "Detecção de correspondência de URI é como o Bitwarden identifica sugestões de autopreenchimento.",
     "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
   },
   "regExAdvancedOptionWarning": {
-    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "message": "\"Expressão regular\" é uma opção avançada com maior risco de exposição de credenciais.",
     "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
   },
   "startsWithAdvancedOptionWarning": {
-    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "message": "\"Começa com\" é uma opção avançada com maior risco de exposição de credenciais.",
     "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
   },
   "uriMatchWarningDialogLink": {
-    "message": "More about match detection",
+    "message": "Mais sobre detecção de correspondências",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
   "success": {
@@ -3622,14 +3637,14 @@
     "message": "Nenhuma porta livre foi encontrada para o cliente final."
   },
   "securePasswordGenerated": {
-    "message": "Secure password generated! Don't forget to also update your password on the website."
+    "message": "Senha segura gerada! Não esqueça de também atualizar a sua senha no site."
   },
   "useGeneratorHelpTextPartOne": {
-    "message": "Use the generator",
+    "message": "Usar o gerador",
     "description": "This will be used as part of a larger sentence, broken up to include the generator icon. The full sentence will read 'Use the generator [GENERATOR_ICON] to create a strong unique password'"
   },
   "useGeneratorHelpTextPartTwo": {
-    "message": "to create a strong unique password",
+    "message": "ppara criar uma senha única e segura",
     "description": "This will be used as part of a larger sentence, broken up to include the generator icon. The full sentence will read 'Use the generator [GENERATOR_ICON] to create a strong unique password'"
   },
   "biometricsStatusHelptextUnlockNeeded": {
@@ -3657,25 +3672,25 @@
     "message": "O desbloqueio por biometria está indisponível por razões desconhecidas."
   },
   "itemDetails": {
-    "message": "Item details"
+    "message": "Detalhes do item"
   },
   "itemName": {
-    "message": "Item name"
+    "message": "Nome do item"
   },
   "loginCredentials": {
-    "message": "Login credentials"
+    "message": "Credenciais de login"
   },
   "additionalOptions": {
-    "message": "Additional options"
+    "message": "Opções adicionais"
   },
   "itemHistory": {
-    "message": "Item history"
+    "message": "Histórico do item"
   },
   "lastEdited": {
-    "message": "Last edited"
+    "message": "Última edição"
   },
   "upload": {
-    "message": "Upload"
+    "message": "Fazer upload"
   },
   "authorize": {
     "message": "Autorizar"
@@ -3747,7 +3762,7 @@
     "message": "Alterar senhas vulneráveis"
   },
   "cannotRemoveViewOnlyCollections": {
-    "message": "You cannot remove collections with View only permissions: $COLLECTIONS$",
+    "message": "Você não pode remover coleções com permissões de Apenas visualização: $COLLECTIONS$",
     "placeholders": {
       "collections": {
         "content": "$1",
@@ -3759,111 +3774,111 @@
     "message": "Mover"
   },
   "newFolder": {
-    "message": "New folder"
+    "message": "Nova pasta"
   },
   "folderName": {
-    "message": "Folder Name"
+    "message": "Nome da pasta"
   },
   "folderHintText": {
-    "message": "Nest a folder by adding the parent folder's name followed by a “/”. Example: Social/Forums"
+    "message": "Aninhe uma pasta adicionando o nome da pasta pai seguido de uma \"/\". Exemplo: Social/Fóruns"
   },
   "sendsTitleNoItems": {
-    "message": "Send sensitive information safely",
+    "message": "Enviar informações sensíveis com segurança",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendsBodyNoItems": {
-    "message": "Share files and data securely with anyone, on any platform. Your information will remain end-to-end encrypted while limiting exposure.",
+    "message": "Compartilhe dados e arquivos com segurança com qualquer pessoa ou plataforma. Suas informações permanecerão com criptografia de ponta a ponta, limitando exposições.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "generatorNudgeTitle": {
-    "message": "Quickly create passwords"
+    "message": "Criação rápida de senhas"
   },
   "generatorNudgeBodyOne": {
-    "message": "Easily create strong and unique passwords by clicking on",
+    "message": "Crie facilmente senhas únicas e fortes clicando em",
     "description": "Two part message",
     "example": "Easily create strong and unique passwords by clicking on {icon} to help you keep your logins secure."
   },
   "generatorNudgeBodyTwo": {
-    "message": "to help you keep your logins secure.",
+    "message": "para ajudá-lo a manter seus logins seguros.",
     "description": "Two part message",
     "example": "Easily create strong and unique passwords by clicking on {icon} to help you keep your logins secure."
   },
   "generatorNudgeBodyAria": {
-    "message": "Easily create strong and unique passwords by clicking on the Generate password button to help you keep your logins secure.",
+    "message": "Crie facilmente senhas únicas e fortes clicando no botão Gerador de senhas para ajudá-lo a manter seus logins seguros.",
     "description": "Aria label for the body content of the generator nudge"
   },
   "newLoginNudgeTitle": {
-    "message": "Save time with autofill"
+    "message": "Economize tempo com o preenchimento automático"
   },
   "newLoginNudgeBodyOne": {
-    "message": "Include a",
+    "message": "Incluir em",
     "description": "This is in multiple parts to allow for bold text in the middle of the sentence.",
     "example": "Include a Website so this login appears as an autofill suggestion."
   },
   "newLoginNudgeBodyBold": {
-    "message": "Website",
+    "message": "Site",
     "description": "This is in multiple parts to allow for bold text in the middle of the sentence.",
     "example": "Include a Website so this login appears as an autofill suggestion."
   },
   "newLoginNudgeBodyTwo": {
-    "message": "so this login appears as an autofill suggestion.",
+    "message": "assim este login aparece como uma sugestão de preenchimento automático.",
     "description": "This is in multiple parts to allow for bold text in the middle of the sentence.",
     "example": "Include a Website so this login appears as an autofill suggestion."
   },
   "newCardNudgeTitle": {
-    "message": "Seamless online checkout"
+    "message": "Pagamento online simplificado"
   },
   "newCardNudgeBody": {
-    "message": "With cards, easily autofill payment forms securely and accurately."
+    "message": "Preencha automaticamente formulários de pagamento com cartões de forma segura e precisa."
   },
   "newIdentityNudgeTitle": {
-    "message": "Simplify creating accounts"
+    "message": "Criação de contas simplificada"
   },
   "newIdentityNudgeBody": {
-    "message": "With identities, quickly autofill long registration or contact forms."
+    "message": "Preencha automaticamente formulários longos de registro ou contato de forma rápida."
   },
   "newNoteNudgeTitle": {
-    "message": "Keep your sensitive data safe"
+    "message": "Mantenha seus dados sensíveis seguros"
   },
   "newNoteNudgeBody": {
-    "message": "With notes, securely store sensitive data like banking or insurance details."
+    "message": "Com notas, armazena com segurança dados sensíveis como detalhes de informações bancárias ou de seguro."
   },
   "newSshNudgeTitle": {
-    "message": "Developer-friendly SSH access"
+    "message": "Acesso SSH amigável para desenvolvedores"
   },
   "newSshNudgeBodyOne": {
-    "message": "Store your keys and connect with the SSH agent for fast, encrypted authentication.",
+    "message": "Armazena suas chaves e conecta com o agente SSH para uma autenticação rápida e criptografada.",
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
   "newSshNudgeBodyTwo": {
-    "message": "Learn more about SSH agent",
+    "message": "Aprenda mais sobre o agente SSH",
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
   "assignToCollections": {
-    "message": "Assign to collections"
+    "message": "Atribuído a coleções"
   },
   "assignToTheseCollections": {
-    "message": "Assign to these collections"
+    "message": "Atribuído a essas coleções"
   },
   "bulkCollectionAssignmentDialogDescriptionSingular": {
-    "message": "Only organization members with access to these collections will be able to see the item."
+    "message": "Apenas membros da organização com acesso a essas coleções poderão ver o item."
   },
   "bulkCollectionAssignmentDialogDescriptionPlural": {
-    "message": "Only organization members with access to these collections will be able to see the items."
+    "message": "Apenas membros da organização com acesso a essas coleções poderão ver os itens."
   },
   "noCollectionsAssigned": {
-    "message": "No collections have been assigned"
+    "message": "Nenhuma coleção foi atribuída"
   },
   "assign": {
-    "message": "Assign"
+    "message": "Atribuir"
   },
   "bulkCollectionAssignmentDialogDescription": {
-    "message": "Only organization members with access to these collections will be able to see the items."
+    "message": "Apenas membros da organização com acesso a essas coleções poderão ver os itens."
   },
   "bulkCollectionAssignmentWarning": {
-    "message": "You have selected $TOTAL_COUNT$ items. You cannot update $READONLY_COUNT$ of the items because you do not have edit permissions.",
+    "message": "Você selecionou $TOTAL_COUNT$ itens. Você não pode atualizar $READONLY_COUNT$ dos itens, pois você não tem as permissões de edição.",
     "placeholders": {
       "total_count": {
         "content": "$1",
@@ -3875,10 +3890,10 @@
     }
   },
   "selectCollectionsToAssign": {
-    "message": "Select collections to assign"
+    "message": "Selecionar coleções para atribuir"
   },
   "personalItemsTransferWarning": {
-    "message": "$PERSONAL_ITEMS_COUNT$ will be permanently transferred to the selected organization. You will no longer own these items.",
+    "message": "$PERSONAL_ITEMS_COUNT$ serão permanentemente transferidas para a organização selecionada. Você deixará de ser o proprietário desses itens.",
     "placeholders": {
       "personal_items_count": {
         "content": "$1",
@@ -3887,7 +3902,7 @@
     }
   },
   "personalItemsWithOrgTransferWarning": {
-    "message": "$PERSONAL_ITEMS_COUNT$ will be permanently transferred to $ORG$. You will no longer own these items.",
+    "message": "$PERSONAL_ITEMS_COUNT$ serão permanentemente transferidas para $ORG$. Você deixará de ser o proprietário desses itens.",
     "placeholders": {
       "personal_items_count": {
         "content": "$1",
@@ -3900,10 +3915,10 @@
     }
   },
   "personalItemTransferWarningSingular": {
-    "message": "1 item will be permanently transferred to the selected organization. You will no longer own this item."
+    "message": "1 item será permanentemente transferido para a organização selecionada. Você deixará de ser o proprietário desse item."
   },
   "personalItemWithOrgTransferWarningSingular": {
-    "message": "1 item will be permanently transferred to $ORG$. You will no longer own this item.",
+    "message": "1 item será permanentemente transferido para $ORG$. Você deixará de ser o proprietário desse item.",
     "placeholders": {
       "org": {
         "content": "$1",
@@ -3912,13 +3927,13 @@
     }
   },
   "successfullyAssignedCollections": {
-    "message": "Successfully assigned collections"
+    "message": "Coleções atribuídas com sucesso"
   },
   "nothingSelected": {
-    "message": "You have not selected anything."
+    "message": "Você não selecionou nada."
   },
   "itemsMovedToOrg": {
-    "message": "Items moved to $ORGNAME$",
+    "message": "Itens movidos para $ORGNAME$",
     "placeholders": {
       "orgname": {
         "content": "$1",
@@ -3927,7 +3942,7 @@
     }
   },
   "itemMovedToOrg": {
-    "message": "Item moved to $ORGNAME$",
+    "message": "Item movido para $ORGNAME$",
     "placeholders": {
       "orgname": {
         "content": "$1",
@@ -3936,7 +3951,7 @@
     }
   },
   "movedItemsToOrg": {
-    "message": "Selected items moved to $ORGNAME$",
+    "message": "Itens selecionados movidos para $ORGNAME$",
     "placeholders": {
       "orgname": {
         "content": "$1",
diff --git a/apps/desktop/src/locales/pt_PT/messages.json b/apps/desktop/src/locales/pt_PT/messages.json
index f435e57615b..92923cded09 100644
--- a/apps/desktop/src/locales/pt_PT/messages.json
+++ b/apps/desktop/src/locales/pt_PT/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "A sua palavra-passe mestra não cumpre uma ou mais políticas da sua organização. Para aceder ao cofre, tem de atualizar a sua palavra-passe mestra agora. Ao prosseguir, terminará a sua sessão atual e terá de iniciar sessão novamente. As sessões ativas noutros dispositivos poderão continuar ativas até uma hora."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "A sua organização desativou a encriptação de dispositivos fiáveis. Por favor, defina uma palavra-passe mestra para aceder ao seu cofre."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Pedir aprovação do administrador"
   },
+  "unableToCompleteLogin": {
+    "message": "Não é possível concluir o início de sessão"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "Tem de iniciar sessão num dispositivo de confiança ou pedir ao seu administrador que lhe atribua uma palavra-passe."
+  },
   "region": {
     "message": "Região"
   },
diff --git a/apps/desktop/src/locales/ro/messages.json b/apps/desktop/src/locales/ro/messages.json
index 334633f8da5..8e8db2d8deb 100644
--- a/apps/desktop/src/locales/ro/messages.json
+++ b/apps/desktop/src/locales/ro/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Your master password does not meet one or more of your organization policies. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Your organization has disabled trusted device encryption. Please set a master password to access your vault."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "Region"
   },
diff --git a/apps/desktop/src/locales/ru/messages.json b/apps/desktop/src/locales/ru/messages.json
index eb954bd9e1a..eb6926d4d6f 100644
--- a/apps/desktop/src/locales/ru/messages.json
+++ b/apps/desktop/src/locales/ru/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Ваш мастер-пароль не соответствует требованиям политики вашей организации. Для доступа к хранилищу вы должны обновить свой мастер-пароль прямо сейчас. При этом текущий сеанс будет завершен и потребуется повторная авторизация. Сеансы на других устройствах могут оставаться активными в течение часа."
   },
+  "changePasswordWarning": {
+    "message": "После смены пароля потребуется авторизоваться с новым паролем. Активные сессии на других устройствах будут завершены в течение одного часа."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Измените мастер-пароль, чтобы завершить восстановление аккаунта."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Ваш мастер-пароль не соответствует требованиям этой организации. Измените его, чтобы продолжить."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "В вашей организации отключено шифрование доверенных устройств. Пожалуйста, установите мастер-пароль для доступа к вашему хранилищу."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Запросить одобрение администратора"
   },
+  "unableToCompleteLogin": {
+    "message": "Не удалось завершить вход"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "Вам необходимо авторизоваться с доверенного устройства или попросить вашего администратора назначить вам пароль."
+  },
   "region": {
     "message": "Регион"
   },
diff --git a/apps/desktop/src/locales/si/messages.json b/apps/desktop/src/locales/si/messages.json
index 65b49497a91..566de7ec0fe 100644
--- a/apps/desktop/src/locales/si/messages.json
+++ b/apps/desktop/src/locales/si/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Your master password does not meet one or more of your organization policies. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Your organization has disabled trusted device encryption. Please set a master password to access your vault."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "Region"
   },
diff --git a/apps/desktop/src/locales/sk/messages.json b/apps/desktop/src/locales/sk/messages.json
index 3834944b3f5..4894acd83cc 100644
--- a/apps/desktop/src/locales/sk/messages.json
+++ b/apps/desktop/src/locales/sk/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Vaše hlavné heslo nespĺňa jednu alebo viacero podmienok vašej organizácie. Ak chcete získať prístup k trezoru, musíte teraz aktualizovať svoje hlavné heslo. Pokračovaním sa odhlásite z aktuálnej relácie a budete sa musieť znova prihlásiť. Aktívne relácie na iných zariadeniach môžu zostať aktívne až jednu hodinu."
   },
+  "changePasswordWarning": {
+    "message": "Po zmene hesla sa musíte prihlásiť pomocou nového hesla. Aktívne relácie na iných zariadeniach budú do jednej hodiny odhlásené."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Zmeňte hlavné heslo, aby ste dokončili obnovenie účtu."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Vaše hlavné heslo nespĺňa požiadavky tejto organizácie. Ak chcete pokračovať, zmeňte hlavné heslo."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Vaša organizácia zakázala šifrovanie dôveryhodného zariadenia. Na prístup k trezoru nastavte hlavné heslo."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Žiadosť o schválenie správcom"
   },
+  "unableToCompleteLogin": {
+    "message": "Nepodarilo sa dokončiť prihlásenie"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "Musíte sa prihlásiť na dôveryhodnom zariadení alebo požiadať správcu o priradenie hesla."
+  },
   "region": {
     "message": "Región"
   },
diff --git a/apps/desktop/src/locales/sl/messages.json b/apps/desktop/src/locales/sl/messages.json
index e0fda878080..9fa18a02bbf 100644
--- a/apps/desktop/src/locales/sl/messages.json
+++ b/apps/desktop/src/locales/sl/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Your master password does not meet one or more of your organization policies. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Your organization has disabled trusted device encryption. Please set a master password to access your vault."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "Region"
   },
diff --git a/apps/desktop/src/locales/sr/messages.json b/apps/desktop/src/locales/sr/messages.json
index e3129ed3f1f..565359d0fd9 100644
--- a/apps/desktop/src/locales/sr/messages.json
+++ b/apps/desktop/src/locales/sr/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Ваша главна лозинка не испуњава једну или више смерница ваше организације. Да бисте приступили сефу, морате одмах да ажурирате главну лозинку. Ако наставите, одјавићете се са ваше тренутне сесије, што захтева да се поново пријавите. Активне сесије на другим уређајима могу да остану активне до један сат."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Ваша организација је онемогућила шифровање поузданог уређаја. Поставите главну лозинку за приступ вашем трезору."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Затражити одобрење администратора"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "Регион"
   },
diff --git a/apps/desktop/src/locales/sv/messages.json b/apps/desktop/src/locales/sv/messages.json
index 2db7a1414ee..2aabe6be5d7 100644
--- a/apps/desktop/src/locales/sv/messages.json
+++ b/apps/desktop/src/locales/sv/messages.json
@@ -24,7 +24,7 @@
     "message": "Identitet"
   },
   "typeNote": {
-    "message": "Note"
+    "message": "Anteckning"
   },
   "typeSecureNote": {
     "message": "Säker anteckning"
@@ -211,52 +211,52 @@
     "message": "En ny SSH-nyckel har genererats"
   },
   "sshKeyWrongPassword": {
-    "message": "The password you entered is incorrect."
+    "message": "Lösenordet du har angett är felaktigt."
   },
   "importSshKey": {
-    "message": "Import"
+    "message": "Importera"
   },
   "confirmSshKeyPassword": {
-    "message": "Confirm password"
+    "message": "Bekräfta lösenord"
   },
   "enterSshKeyPasswordDesc": {
-    "message": "Enter the password for the SSH key."
+    "message": "Ange lösenordet för SSH-nyckeln."
   },
   "enterSshKeyPassword": {
-    "message": "Enter password"
+    "message": "Ange lösenord"
   },
   "sshAgentUnlockRequired": {
-    "message": "Please unlock your vault to approve the SSH key request."
+    "message": "Lås upp ditt valv för att godkänna begäran om SSH-nyckel."
   },
   "sshAgentUnlockTimeout": {
-    "message": "SSH key request timed out."
+    "message": "Begäran om SSH-nyckel timade ut."
   },
   "enableSshAgent": {
     "message": "Aktivera SSH-agent"
   },
   "enableSshAgentDesc": {
-    "message": "Enable the SSH agent to sign SSH requests right from your Bitwarden vault."
+    "message": "Aktivera SSH-agenten för att signera SSH-förfrågningar direkt från ditt Bitwarden-valv."
   },
   "enableSshAgentHelp": {
-    "message": "The SSH agent is a service targeted at developers that allows you to sign SSH requests directly from your Bitwarden vault."
+    "message": "SSH-agenten är en tjänst riktad till utvecklare som gör att du kan signera SSH-förfrågningar direkt från ditt Bitwarden-valv."
   },
   "sshAgentPromptBehavior": {
-    "message": "Ask for authorization when using SSH agent"
+    "message": "Be om auktorisering när du använder SSH-agent"
   },
   "sshAgentPromptBehaviorDesc": {
-    "message": "Choose how to handle SSH-agent authorization requests."
+    "message": "Välj hur du vill hantera SSH-agentens auktoriseringsbegäran."
   },
   "sshAgentPromptBehaviorHelp": {
-    "message": "Remember SSH authorizations"
+    "message": "Kom ihåg SSH-behörigheter"
   },
   "sshAgentPromptBehaviorAlways": {
-    "message": "Always"
+    "message": "Alltid"
   },
   "sshAgentPromptBehaviorNever": {
-    "message": "Never"
+    "message": "Aldrig"
   },
   "sshAgentPromptBehaviorRememberUntilLock": {
-    "message": "Remember until vault is locked"
+    "message": "Kom ihåg tills valvet är låst"
   },
   "premiumRequired": {
     "message": "Premium krävs"
@@ -271,17 +271,17 @@
     "message": "Fel"
   },
   "decryptionError": {
-    "message": "Decryption error"
+    "message": "Dekrypteringsfel"
   },
   "couldNotDecryptVaultItemsBelow": {
-    "message": "Bitwarden could not decrypt the vault item(s) listed below."
+    "message": "Bitwarden kunde inte dekryptera valvföremålet/valvföremålen som listas nedan."
   },
   "contactCSToAvoidDataLossPart1": {
-    "message": "Contact customer success",
+    "message": "Kontakta kundtjänst",
     "description": "This is part of a larger sentence. The full sentence will read 'Contact customer success to avoid additional data loss.'"
   },
   "contactCSToAvoidDataLossPart2": {
-    "message": "to avoid additional data loss.",
+    "message": "för att undvika ytterligare dataförlust.",
     "description": "This is part of a larger sentence. The full sentence will read 'Contact customer success to avoid additional data loss.'"
   },
   "january": {
@@ -409,16 +409,16 @@
     "message": "Autentiseringsnyckel (TOTP)"
   },
   "authenticatorKey": {
-    "message": "Authenticator key"
+    "message": "Autentiseringsnyckel"
   },
   "autofillOptions": {
-    "message": "Autofill options"
+    "message": "Alternativ för automatisk ifyllning"
   },
   "websiteUri": {
-    "message": "Website (URI)"
+    "message": "Webbplats (URI)"
   },
   "websiteUriCount": {
-    "message": "Website (URI) $COUNT$",
+    "message": "Webbplats (URI) $COUNT$",
     "description": "Label for an input field that contains a website URI. The input field is part of a list of fields, and the count indicates the position of the field in the list.",
     "placeholders": {
       "count": {
@@ -428,49 +428,49 @@
     }
   },
   "websiteAdded": {
-    "message": "Website added"
+    "message": "Webbplats tillagd"
   },
   "addWebsite": {
-    "message": "Add website"
+    "message": "Lägg till webbplats"
   },
   "deleteWebsite": {
-    "message": "Delete website"
+    "message": "Ta bort webbplats"
   },
   "owner": {
-    "message": "Owner"
+    "message": "Ägare"
   },
   "addField": {
-    "message": "Add field"
+    "message": "Lägg till fält"
   },
   "editField": {
-    "message": "Edit field"
+    "message": "Redigera fält"
   },
   "permanentlyDeleteAttachmentConfirmation": {
-    "message": "Are you sure you want to permanently delete this attachment?"
+    "message": "Är du säker på att du vill radera den här bilagan permanent?"
   },
   "fieldType": {
-    "message": "Field type"
+    "message": "Fälttyp"
   },
   "fieldLabel": {
-    "message": "Field label"
+    "message": "Fältetikett"
   },
   "add": {
-    "message": "Add"
+    "message": "Lägg till"
   },
   "textHelpText": {
-    "message": "Use text fields for data like security questions"
+    "message": "Använd textfält för data som säkerhetsfrågor"
   },
   "hiddenHelpText": {
-    "message": "Use hidden fields for sensitive data like a password"
+    "message": "Använd dolda fält för känsliga uppgifter som lösenord"
   },
   "checkBoxHelpText": {
-    "message": "Use checkboxes if you'd like to autofill a form's checkbox, like a remember email"
+    "message": "Använd kryssrutor om du vill fylla i en kryssruta i ett formulär automatiskt, t.ex. för att komma ihåg e-post"
   },
   "linkedHelpText": {
-    "message": "Use a linked field when you are experiencing autofill issues for a specific website."
+    "message": "Använd ett länkat fält när du har problem med autofyll för en viss webbplats."
   },
   "linkedLabelHelpText": {
-    "message": "Enter the the field's html id, name, aria-label, or placeholder."
+    "message": "Ange fältets html-id, namn, aria-label eller platshållare."
   },
   "folder": {
     "message": "Mapp"
@@ -498,7 +498,7 @@
     "description": "This describes a field that is 'linked' (related) to another field."
   },
   "cfTypeCheckbox": {
-    "message": "Checkbox"
+    "message": "Kryssruta"
   },
   "linkedValue": {
     "message": "Länkat värde",
@@ -557,7 +557,7 @@
     "message": "Kopiera lösenord"
   },
   "regenerateSshKey": {
-    "message": "Regenerate SSH key"
+    "message": "Återskapa SSH-nyckel"
   },
   "copySshPrivateKey": {
     "message": "Kopiera privat SSH-nyckel"
@@ -657,7 +657,7 @@
     "description": "Label for the avoid ambiguous characters checkbox."
   },
   "generatorPolicyInEffect": {
-    "message": "Enterprise policy requirements have been applied to your generator options.",
+    "message": "Företagets policykrav har tillämpats på dina generatoralternativ.",
     "description": "Indicates that a policy limits the credential generator screen."
   },
   "searchCollection": {
@@ -695,7 +695,7 @@
     "message": "Maximal filstorlek är 500 MB."
   },
   "legacyEncryptionUnsupported": {
-    "message": "Legacy encryption is no longer supported. Please contact support to recover your account."
+    "message": "Legacy-kryptering stöds inte längre. Vänligen kontakta support för att återställa ditt konto."
   },
   "editedFolder": {
     "message": "Mapp sparad"
@@ -722,7 +722,7 @@
     "message": "Ställ in ett starkt lösenord"
   },
   "finishCreatingYourAccountBySettingAPassword": {
-    "message": "Finish creating your account by setting a password"
+    "message": "Avsluta skapandet av ditt konto genom att ange ett lösenord"
   },
   "logIn": {
     "message": "Logga in"
@@ -731,13 +731,13 @@
     "message": "Logga in på Bitwarden"
   },
   "enterTheCodeSentToYourEmail": {
-    "message": "Enter the code sent to your email"
+    "message": "Ange koden som skickats till din e-post"
   },
   "enterTheCodeFromYourAuthenticatorApp": {
-    "message": "Enter the code from your authenticator app"
+    "message": "Ange koden från din autentiseringsapp"
   },
   "pressYourYubiKeyToAuthenticate": {
-    "message": "Press your YubiKey to authenticate"
+    "message": "Tryck på din YubiKey för att autentisera"
   },
   "logInWithPasskey": {
     "message": "Logga in med nyckel"
@@ -792,7 +792,7 @@
     "message": "Huvudlösenordsledtråd"
   },
   "passwordStrengthScore": {
-    "message": "Password strength score $SCORE$",
+    "message": "Lösenordsstyrka $SCORE$",
     "placeholders": {
       "score": {
         "content": "$1",
@@ -801,10 +801,10 @@
     }
   },
   "joinOrganization": {
-    "message": "Join organization"
+    "message": "Gå med i organisation"
   },
   "joinOrganizationName": {
-    "message": "Join $ORGANIZATIONNAME$",
+    "message": "Gå med i $ORGANIZATIONNAME$",
     "placeholders": {
       "organizationName": {
         "content": "$1",
@@ -813,13 +813,13 @@
     }
   },
   "finishJoiningThisOrganizationBySettingAMasterPassword": {
-    "message": "Finish joining this organization by setting a master password."
+    "message": "Avsluta anslutningen till denna organisation genom att ange ett huvudlösenord."
   },
   "settings": {
     "message": "Inställningar"
   },
   "accountEmail": {
-    "message": "Account email"
+    "message": "Konto E-post"
   },
   "requestHint": {
     "message": "Begär ledtråd"
@@ -828,7 +828,7 @@
     "message": "Begär lösenordsledtråd"
   },
   "enterYourAccountEmailAddressAndYourPasswordHintWillBeSentToYou": {
-    "message": "Enter your account email address and your password hint will be sent to you"
+    "message": "Ange din e-postadress för kontot så skickas en lösenordshint till dig"
   },
   "getMasterPasswordHint": {
     "message": "Hämta huvudlösenordsledtråd"
@@ -904,10 +904,10 @@
     "message": "Verifieringskod krävs."
   },
   "webauthnCancelOrTimeout": {
-    "message": "The authentication was cancelled or took too long. Please try again."
+    "message": "Autentiseringen avbröts eller tog för lång tid. Vänligen försök igen."
   },
   "openInNewTab": {
-    "message": "Open in new tab"
+    "message": "Öppna i ny flik"
   },
   "invalidVerificationCode": {
     "message": "Ogiltig verifieringskod"
@@ -925,14 +925,14 @@
     }
   },
   "dontAskAgainOnThisDeviceFor30Days": {
-    "message": "Don't ask again on this device for 30 days"
+    "message": "Fråga inte igen på den här enheten under 30 dagar"
   },
   "selectAnotherMethod": {
-    "message": "Select another method",
+    "message": "Välj en annan metod",
     "description": "Select another two-step login method"
   },
   "useYourRecoveryCode": {
-    "message": "Use your recovery code"
+    "message": "Använd din återställningskod"
   },
   "insertU2f": {
     "message": "Anslut din säkerhetsnyckel till datorns USB-port. Om den har en knapp, tryck på den."
@@ -947,7 +947,7 @@
     "message": "Autentiseringsapp"
   },
   "authenticatorAppDescV2": {
-    "message": "Enter a code generated by an authenticator app like Bitwarden Authenticator.",
+    "message": "Ange en kod som genereras av en autentiseringsapp som Bitwarden Authenticator.",
     "description": "'Bitwarden Authenticator' is a product name and should not be translated."
   },
   "yubiKeyTitleV2": {
@@ -965,13 +965,13 @@
     "description": "'Duo Security' and 'Duo Mobile' are product names and should not be translated."
   },
   "verifyYourIdentity": {
-    "message": "Verify your Identity"
+    "message": "Verifiera din identitet"
   },
   "weDontRecognizeThisDevice": {
-    "message": "We don't recognize this device. Enter the code sent to your email to verify your identity."
+    "message": "Vi känner inte igen den här enheten. Ange koden som skickats till din e-post för att verifiera din identitet."
   },
   "continueLoggingIn": {
-    "message": "Continue logging in"
+    "message": "Fortsätt logga in"
   },
   "webAuthnTitle": {
     "message": "FIDO2 WebAuthn"
@@ -998,19 +998,19 @@
     "message": "Alternativ för tvåstegsverifiering"
   },
   "selectTwoStepLoginMethod": {
-    "message": "Select two-step login method"
+    "message": "Välj tvåstegsinloggningsmetod"
   },
   "selfHostedEnvironment": {
     "message": "Egen-hostad miljö"
   },
   "selfHostedBaseUrlHint": {
-    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+    "message": "Ange bas-URL:en för din lokala Bitwarden-installation. Exempel: https://bitwarden.company.com"
   },
   "selfHostedCustomEnvHeader": {
-    "message": "For advanced configuration, you can specify the base URL of each service independently."
+    "message": "För avancerad konfiguration kan du ange bas-URL:en för varje tjänst separat."
   },
   "selfHostedEnvFormInvalid": {
-    "message": "You must add either the base Server URL or at least one custom environment."
+    "message": "Du måste lägga till antingen basserverns URL eller minst en anpassad miljö."
   },
   "customEnvironment": {
     "message": "Anpassad miljö"
@@ -1019,13 +1019,13 @@
     "message": "Server-URL"
   },
   "authenticationTimeout": {
-    "message": "Authentication timeout"
+    "message": "Timeout för autentisering"
   },
   "authenticationSessionTimedOut": {
-    "message": "The authentication session timed out. Please restart the login process."
+    "message": "Autentiseringssessionen timade ut. Vänligen starta om inloggningsprocessen."
   },
   "selfHostBaseUrl": {
-    "message": "Self-host server URL",
+    "message": "URL för server med egen värd",
     "description": "Label for field requesting a self-hosted integration service URL"
   },
   "apiUrl": {
@@ -1056,7 +1056,7 @@
     "message": "Nej"
   },
   "location": {
-    "message": "Location"
+    "message": "Plats"
   },
   "overwritePassword": {
     "message": "Skriv över lösenord"
@@ -1077,13 +1077,13 @@
     "message": "Din inloggningssession har löpt ut."
   },
   "restartRegistration": {
-    "message": "Restart registration"
+    "message": "Starta om registreringen"
   },
   "expiredLink": {
-    "message": "Expired link"
+    "message": "Utgången länk"
   },
   "pleaseRestartRegistrationOrTryLoggingIn": {
-    "message": "Please restart registration or try logging in."
+    "message": "Starta om registreringen eller försök logga in."
   },
   "youMayAlreadyHaveAnAccount": {
     "message": "Har du redan skapat ett konto?"
@@ -1212,7 +1212,7 @@
     "message": "Valvets tidsgräns"
   },
   "vaultTimeout1": {
-    "message": "Timeout"
+    "message": "Tidsgräns"
   },
   "vaultTimeoutDesc": {
     "message": "Välj när valvets tidsgräns överskrids och den valda åtgärden utförs."
@@ -1465,7 +1465,7 @@
     "message": "Köp Premium"
   },
   "premiumPurchaseAlertV2": {
-    "message": "You can purchase Premium from your account settings on the Bitwarden web app."
+    "message": "Du kan köpa Premium från dina kontoinställningar i Bitwardens webbapp."
   },
   "premiumCurrentMember": {
     "message": "Du är en premium-medlem!"
@@ -1489,13 +1489,13 @@
     "message": "Lösenordshistorik"
   },
   "generatorHistory": {
-    "message": "Generator history"
+    "message": "Generatorns historia"
   },
   "clearGeneratorHistoryTitle": {
-    "message": "Clear generator history"
+    "message": "Rensa generatorhistorik"
   },
   "cleargGeneratorHistoryDescription": {
-    "message": "If you continue, all entries will be permanently deleted from generator's history. Are you sure you want to continue?"
+    "message": "Om du fortsätter kommer alla poster att raderas permanent från generatorns historik. Är du säker på att du vill fortsätta?"
   },
   "clear": {
     "message": "Rensa",
@@ -1505,13 +1505,13 @@
     "message": "Det finns inga lösenord att visa."
   },
   "clearHistory": {
-    "message": "Clear history"
+    "message": "Töm historik"
   },
   "nothingToShow": {
-    "message": "Nothing to show"
+    "message": "Inget att visa"
   },
   "nothingGeneratedRecently": {
-    "message": "You haven't generated anything recently"
+    "message": "Du har inte genererat något nyligen"
   },
   "undo": {
     "message": "Ångra"
@@ -1588,13 +1588,13 @@
     }
   },
   "copySuccessful": {
-    "message": "Copy Successful"
+    "message": "Kopiering lyckades"
   },
   "errorRefreshingAccessToken": {
-    "message": "Access Token Refresh Error"
+    "message": "Fel vid uppdatering av åtkomsttoken"
   },
   "errorRefreshingAccessTokenDesc": {
-    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+    "message": "Ingen uppdateringstoken eller API-nyckel hittades. Försök att logga ut och logga in igen."
   },
   "help": {
     "message": "Hjälp"
@@ -1693,37 +1693,37 @@
     "message": "Filformat"
   },
   "fileEncryptedExportWarningDesc": {
-    "message": "This file export will be password protected and require the file password to decrypt."
+    "message": "Den här filexporten kommer att vara lösenordsskyddad och kräver filens lösenord för att dekryptera."
   },
   "filePassword": {
-    "message": "File password"
+    "message": "Fillösenord"
   },
   "exportPasswordDescription": {
-    "message": "This password will be used to export and import this file"
+    "message": "Detta lösenord kommer att användas för att exportera och importera denna fil"
   },
   "accountRestrictedOptionDescription": {
-    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+    "message": "Använd ditt kontos krypteringsnyckel, som härrör från ditt kontos användarnamn och huvudlösenord, för att kryptera exporten och begränsa importen till endast det aktuella Bitwarden-kontot."
   },
   "passwordProtected": {
-    "message": "Password protected"
+    "message": "Lösenordsskyddad"
   },
   "passwordProtectedOptionDescription": {
-    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+    "message": "Ange ett lösenord för filen för att kryptera exporten och importera den till valfritt Bitwarden-konto med lösenordet för dekryptering."
   },
   "exportTypeHeading": {
     "message": "Exporttyp"
   },
   "accountRestricted": {
-    "message": "Account restricted"
+    "message": "Konto med restriktioner"
   },
   "restrictCardTypeImport": {
-    "message": "Cannot import card item types"
+    "message": "Det går inte att importera typer av kortposter"
   },
   "restrictCardTypeImportDesc": {
-    "message": "A policy set by 1 or more organizations prevents you from importing cards to your vaults."
+    "message": "En policy som har fastställts av en eller flera organisationer hindrar dig från att importera kort till dina valv."
   },
   "filePasswordAndConfirmFilePasswordDoNotMatch": {
-    "message": "“File password”  and “Confirm file password“ do not match."
+    "message": "\"Fillösenord\" och \"Bekräfta fillösenord\" stämmer inte överens."
   },
   "done": {
     "message": "Klar"
@@ -1800,7 +1800,7 @@
     "message": "Ytterligare inställningar för Windows Hello"
   },
   "unlockWithPolkit": {
-    "message": "Unlock with system authentication"
+    "message": "Lås upp med systemautentisering"
   },
   "windowsHelloConsentMessage": {
     "message": "Bekräfta för Bitwarden."
@@ -1818,7 +1818,7 @@
     "message": "Be om Windows Hello vid appstart"
   },
   "autoPromptPolkit": {
-    "message": "Ask for system authentication on launch"
+    "message": "Be om systemautentisering vid lansering"
   },
   "autoPromptTouchId": {
     "message": "Be om Touch ID vid appstart"
@@ -1827,13 +1827,13 @@
     "message": "Kräv lösenord eller PIN-kod vid appstart"
   },
   "requirePasswordWithoutPinOnStart": {
-    "message": "Require password on app start"
+    "message": "Kräv lösenord vid appstart"
   },
   "recommendedForSecurity": {
     "message": "Rekommenderas för säkerhet."
   },
   "lockWithMasterPassOnRestart1": {
-    "message": "Lock with master password on restart"
+    "message": "Lås med huvudlösenord vid omstart"
   },
   "deleteAccount": {
     "message": "Radera konto"
@@ -1848,7 +1848,7 @@
     "message": "Kan inte radera konto"
   },
   "cannotDeleteAccountDesc": {
-    "message": "This action cannot be completed because your account is owned by an organization. Contact your organization administrator for additional details."
+    "message": "Den här åtgärden kan inte slutföras eftersom ditt konto ägs av en organisation. Kontakta din organisationsadministratör om du vill ha mer information."
   },
   "accountDeleted": {
     "message": "Kontot raderades"
@@ -1970,10 +1970,10 @@
     }
   },
   "cardDetails": {
-    "message": "Card details"
+    "message": "Begär kort"
   },
   "cardBrandDetails": {
-    "message": "$BRAND$ details",
+    "message": "$BRAND$ detaljer",
     "placeholders": {
       "brand": {
         "content": "$1",
@@ -1982,32 +1982,32 @@
     }
   },
   "learnMoreAboutAuthenticators": {
-    "message": "Learn more about authenticators"
+    "message": "Läs mer om autentiseringsverktyg"
   },
   "copyTOTP": {
-    "message": "Copy Authenticator key (TOTP)"
+    "message": "Kopiera autentiseringsnyckel (TOTP)"
   },
   "totpHelperTitle": {
-    "message": "Make 2-step verification seamless"
+    "message": "Gör 2-stegsverifiering sömlös"
   },
   "totpHelper": {
-    "message": "Bitwarden can store and fill 2-step verification codes. Copy and paste the key into this field."
+    "message": "Bitwarden kan lagra och fylla i 2-stegs verifieringskoder. Kopiera och klistra in nyckeln i detta fält."
   },
   "totpHelperWithCapture": {
-    "message": "Bitwarden can store and fill 2-step verification codes. Select the camera icon to take a screenshot of this website's authenticator QR code, or copy and paste the key into this field."
+    "message": "Bitwarden kan lagra och fylla i 2-stegsverifieringskoder. Välj kameraikonen för att ta en skärmdump av den här webbplatsens QR-kod för autentisering, eller kopiera och klistra in nyckeln i det här fältet."
   },
   "premium": {
     "message": "Premium",
     "description": "Premium membership"
   },
   "freeOrgsCannotUseAttachments": {
-    "message": "Free organizations cannot use attachments"
+    "message": "Fria organisationer kan inte använda bilagor"
   },
   "singleFieldNeedsAttention": {
-    "message": "1 field needs your attention."
+    "message": "1 fält behöver din uppmärksamhet."
   },
   "multipleFieldsNeedAttention": {
-    "message": "$COUNT$ fields need your attention.",
+    "message": "$COUNT$-fälten behöver din uppmärksamhet.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -2016,10 +2016,10 @@
     }
   },
   "cardExpiredTitle": {
-    "message": "Expired card"
+    "message": "Utgånget kort"
   },
   "cardExpiredMessage": {
-    "message": "If you've renewed it, update the card's information"
+    "message": "Om du har förnyat kortet ska du uppdatera kortinformationen"
   },
   "verificationRequired": {
     "message": "Verifiering krävs",
@@ -2080,13 +2080,13 @@
     "message": "Få råd, tillkännagivanden och forskningsmöjligheter från Bitwarden i din inkorg."
   },
   "unsubscribe": {
-    "message": "Unsubscribe"
+    "message": "Avsluta prenumeration"
   },
   "atAnyTime": {
     "message": "när som helst."
   },
   "byContinuingYouAgreeToThe": {
-    "message": "By continuing, you agree to the"
+    "message": "Genom att fortsätta samtycker du till"
   },
   "and": {
     "message": "och"
@@ -2101,7 +2101,7 @@
     "message": "Tillåt webbläsarintegration"
   },
   "enableBrowserIntegrationDesc1": {
-    "message": "Used to allow biometric unlock in browsers that are not Safari."
+    "message": "Används för att tillåta biometrisk upplåsning i webbläsare som inte är Safari."
   },
   "enableDuckDuckGoBrowserIntegration": {
     "message": "Tillåt integration av webbläsaren DuckDuckGo"
@@ -2170,16 +2170,16 @@
     "message": "Biometri i webbläsaren kräver att biometri på skrivbordet aktiveras i inställningarna först."
   },
   "biometricsManualSetupTitle": {
-    "message": "Automatic setup not available"
+    "message": "Automatisk inställning inte tillgänglig"
   },
   "biometricsManualSetupDesc": {
-    "message": "Due to the installation method, biometrics support could not be automatically enabled. Would you like to open the documentation on how to do this manually?"
+    "message": "På grund av installationsmetoden kunde biometriskt stöd inte aktiveras automatiskt. Vill du öppna dokumentationen om hur du gör detta manuellt?"
   },
   "personalOwnershipSubmitError": {
     "message": "På grund av en av företagets policyer är du begränsad från att spara objekt till ditt personliga valv. Ändra ägarskap till en organisation och välj från tillgängliga samlingar."
   },
   "yourNewPasswordCannotBeTheSameAsYourCurrentPassword": {
-    "message": "Your new password cannot be the same as your current password."
+    "message": "Ditt nya lösenord får inte vara samma som ditt aktuella lösenord."
   },
   "hintEqualsPassword": {
     "message": "Din lösenordsledtråd får inte vara samma som ditt lösenord."
@@ -2191,13 +2191,13 @@
     "message": "En organisationspolicy har blockerat importering av objekt till ditt personliga valv."
   },
   "personalDetails": {
-    "message": "Personal details"
+    "message": "Personuppgifter"
   },
   "identification": {
-    "message": "Identification"
+    "message": "Identifiering"
   },
   "contactInfo": {
-    "message": "Contact information"
+    "message": "Kontaktinformation"
   },
   "allSends": {
     "message": "Alla Sends",
@@ -2363,10 +2363,10 @@
     "message": "Autentisera WebAuthn"
   },
   "readSecurityKey": {
-    "message": "Read security key"
+    "message": "Läs säkerhetsnyckel"
   },
   "awaitingSecurityKeyInteraction": {
-    "message": "Awaiting security key interaction..."
+    "message": "Väntar på interaktion med säkerhetsnyckel..."
   },
   "hideEmail": {
     "message": "Dölj min e-postadress för mottagare."
@@ -2378,7 +2378,7 @@
     "message": "E-postverifiering krävs"
   },
   "emailVerifiedV2": {
-    "message": "Email verified"
+    "message": "E-post verifierad"
   },
   "emailVerificationRequiredDesc": {
     "message": "Du måste verifiera din e-post för att använda den här funktionen."
@@ -2393,7 +2393,7 @@
     "message": "Denna åtgärd är skyddad. För att fortsätta, vänligen verifiera din identitet genom att ange ditt huvudlösenord."
   },
   "masterPasswordSuccessfullySet": {
-    "message": "Master password successfully set"
+    "message": "Masterlösenordet har ställts in"
   },
   "updatedMasterPassword": {
     "message": "Huvudlösenord uppdaterades"
@@ -2407,8 +2407,17 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Ditt huvudlösenord följer inte ett eller flera av din organisations regler. För att komma åt ditt valv så måste du ändra ditt huvudlösenord nu. Om du gör det kommer du att loggas du ut ur din nuvarande session så du måste logga in på nytt. Aktiva sessioner på andra enheter kommer fortsatt vara aktiva i upp till en timme."
   },
+  "changePasswordWarning": {
+    "message": "När du har ändrat ditt lösenord måste du logga in med det nya lösenordet. Aktiva sessioner på andra enheter kommer att loggas ut inom en timme."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Ändra ditt huvudlösenord för att slutföra återställningen av kontot."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Ditt huvudlösenord uppfyller inte organisationens krav. Ändra ditt huvudlösenord för att fortsätta."
+  },
   "tdeDisabledMasterPasswordRequired": {
-    "message": "Your organization has disabled trusted device encryption. Please set a master password to access your vault."
+    "message": "Din organisation har inaktiverat betrodd enhetskryptering. Ange ett huvudlösenord för att komma åt ditt valv."
   },
   "tryAgain": {
     "message": "Försök igen"
@@ -2453,7 +2462,7 @@
     "message": "Minuter"
   },
   "vaultTimeoutPolicyInEffect1": {
-    "message": "$HOURS$ hour(s) and $MINUTES$ minute(s) maximum.",
+    "message": "$HOURS$ timmar och $MINUTES$ minuter maximalt.",
     "placeholders": {
       "hours": {
         "content": "$1",
@@ -2495,7 +2504,7 @@
     "message": "Ditt valvs tid för timeout överskrider de begränsningar som fastställts av din organisation."
   },
   "inviteAccepted": {
-    "message": "Invitation accepted"
+    "message": "Inbjudan accepterad"
   },
   "resetPasswordPolicyAutoEnroll": {
     "message": "Automatiskt deltagande"
@@ -2519,13 +2528,13 @@
     "message": "Huvudlösenord togs bort"
   },
   "removeMasterPasswordForOrganizationUserKeyConnector": {
-    "message": "A master password is no longer required for members of the following organization. Please confirm the domain below with your organization administrator."
+    "message": "Ett huvudlösenord krävs inte längre för medlemmar i följande organisation. Vänligen bekräfta domänen nedan med din organisationsadministratör."
   },
   "organizationName": {
-    "message": "Organization name"
+    "message": "Organisationsnamn"
   },
   "keyConnectorDomain": {
-    "message": "Key Connector domain"
+    "message": "Key Connector-domän"
   },
   "leaveOrganization": {
     "message": "Lämna organisation"
@@ -2588,7 +2597,7 @@
     }
   },
   "exportingIndividualVaultWithAttachmentsDescription": {
-    "message": "Only the individual vault items including attachments associated with $EMAIL$ will be exported. Organization vault items will not be included",
+    "message": "Endast de enskilda valvobjekten inklusive bilagor som är associerade med $EMAIL$ exporteras. Organisationens valvobjekt kommer inte att inkluderas",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -2597,10 +2606,10 @@
     }
   },
   "exportingOrganizationVaultTitle": {
-    "message": "Exporting organization vault"
+    "message": "Exportera organisationsvalv"
   },
   "exportingOrganizationVaultDesc": {
-    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "message": "Endast det organisationsvalv som är associerat med $ORGANIZATION$ exporteras. Objekt i enskilda valv eller andra organisationer kommer inte att inkluderas.",
     "placeholders": {
       "organization": {
         "content": "$1",
@@ -2634,10 +2643,10 @@
     "message": "Generera användarnamn"
   },
   "generateEmail": {
-    "message": "Generate email"
+    "message": "Generera e-post"
   },
   "usernameGenerator": {
-    "message": "Username generator"
+    "message": "Generator för användarnamn"
   },
   "generatePassword": {
     "message": "Generera lösenord"
@@ -2646,19 +2655,19 @@
     "message": "Generera lösenfras"
   },
   "passwordGenerated": {
-    "message": "Password generated"
+    "message": "Lösenord genererat"
   },
   "passphraseGenerated": {
-    "message": "Passphrase generated"
+    "message": "Lösenfras genererad"
   },
   "usernameGenerated": {
-    "message": "Username generated"
+    "message": "Användarnamn genererat"
   },
   "emailGenerated": {
-    "message": "Email generated"
+    "message": "E-post genererad"
   },
   "spinboxBoundariesHint": {
-    "message": "Value must be between $MIN$ and $MAX$.",
+    "message": "Värdet måste ligga mellan $MIN$ och $MAX$.",
     "description": "Explains spin box minimum and maximum values to the user",
     "placeholders": {
       "min": {
@@ -2672,7 +2681,7 @@
     }
   },
   "passwordLengthRecommendationHint": {
-    "message": " Use $RECOMMENDED$ characters or more to generate a strong password.",
+    "message": " Använd $RECOMMENDED$ tecken eller fler för att skapa ett starkt lösenord.",
     "description": "Appended to `spinboxBoundariesHint` to recommend a length to the user. This must include any language-specific 'sentence' separator characters (e.g. a space in english).",
     "placeholders": {
       "recommended": {
@@ -2682,7 +2691,7 @@
     }
   },
   "passphraseNumWordsRecommendationHint": {
-    "message": " Use $RECOMMENDED$ words or more to generate a strong passphrase.",
+    "message": " Använd $RECOMMENDED$ ord eller mer för att generera en stark lösenfras.",
     "description": "Appended to `spinboxBoundariesHint` to recommend a number of words to the user. This must include any language-specific 'sentence' separator characters (e.g. a space in english).",
     "placeholders": {
       "recommended": {
@@ -2708,16 +2717,16 @@
     "message": "Använd din domäns konfigurerade catch-all inkorg."
   },
   "useThisEmail": {
-    "message": "Use this email"
+    "message": "Använd denna e-post"
   },
   "useThisPassword": {
-    "message": "Use this password"
+    "message": "Använd detta lösenord"
   },
   "useThisPassphrase": {
-    "message": "Use this passphrase"
+    "message": "Använd denna lösenfras"
   },
   "useThisUsername": {
-    "message": "Use this username"
+    "message": "Använd detta användarnamn"
   },
   "random": {
     "message": "Slumpmässig"
@@ -2751,7 +2760,7 @@
     "description": "Labels the domain name email forwarder service option"
   },
   "forwarderDomainNameHint": {
-    "message": "Choose a domain that is supported by the selected service",
+    "message": "Välj en domän som stöds av den valda tjänsten",
     "description": "Guidance provided for email forwarding services that support multiple email domains."
   },
   "forwarderError": {
@@ -2807,7 +2816,7 @@
     }
   },
   "forwaderInvalidOperation": {
-    "message": "$SERVICENAME$ refused your request. Please contact your service provider for assistance.",
+    "message": "$SERVICENAME$ avvisade din begäran. Vänligen kontakta din tjänsteleverantör för hjälp.",
     "description": "Displayed when the user is forbidden from using the API by the forwarding service.",
     "placeholders": {
       "servicename": {
@@ -2817,7 +2826,7 @@
     }
   },
   "forwaderInvalidOperationWithMessage": {
-    "message": "$SERVICENAME$ refused your request: $ERRORMESSAGE$",
+    "message": "$SERVICENAME$ avvisade din begäran: $ERRORMESSAGE$",
     "description": "Displayed when the user is forbidden from using the API by the forwarding service with an error message.",
     "placeholders": {
       "servicename": {
@@ -2930,25 +2939,25 @@
     "message": "Inloggning påbörjad"
   },
   "logInRequestSent": {
-    "message": "Request sent"
+    "message": "Begäran skickad"
   },
   "notificationSentDevice": {
     "message": "En avisering har skickats till din enhet."
   },
   "aNotificationWasSentToYourDevice": {
-    "message": "A notification was sent to your device"
+    "message": "Ett meddelande har skickats till din enhet"
   },
   "notificationSentDevicePart1": {
-    "message": "Unlock Bitwarden on your device or on the "
+    "message": "Lås upp Bitwarden på din enhet eller på "
   },
   "notificationSentDeviceAnchor": {
-    "message": "web app"
+    "message": "webbapp"
   },
   "notificationSentDevicePart2": {
-    "message": "Make sure the Fingerprint phrase matches the one below before approving."
+    "message": "Kontrollera att fingeravtrycksfrasen stämmer överens med den nedan innan du godkänner."
   },
   "needAnotherOptionV1": {
-    "message": "Need another option?"
+    "message": "Behöver du ett annat alternativ?"
   },
   "fingerprintMatchInfo": {
     "message": "Se till att ditt valv är upplåst och att fingeravtrycksfrasen matchar på den andra enheten."
@@ -2957,13 +2966,13 @@
     "message": "Fingeravtrycksfras"
   },
   "youWillBeNotifiedOnceTheRequestIsApproved": {
-    "message": "You will be notified once the request is approved"
+    "message": "Du kommer att få ett meddelande när begäran har godkänts"
   },
   "needAnotherOption": {
     "message": "\"Logga in med enhet\" måste ställas in i inställningarna i Bitwardens app. Behöver du ett annat alternativ?"
   },
   "viewAllLogInOptions": {
-    "message": "View all log in options"
+    "message": "Visa alla inloggningsalternativ"
   },
   "viewAllLoginOptions": {
     "message": "Visa alla inloggningsalternativ"
@@ -2976,10 +2985,10 @@
     "description": "'Character count' describes a feature that displays a number next to each character of the password."
   },
   "areYouTryingToAccessYourAccount": {
-    "message": "Are you trying to access your account?"
+    "message": "Försöker du komma åt ditt konto?"
   },
   "accessAttemptBy": {
-    "message": "Access attempt by $EMAIL$",
+    "message": "Åtkomstförsök via $EMAIL$",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -2997,10 +3006,10 @@
     "message": "Tid"
   },
   "confirmAccess": {
-    "message": "Confirm access"
+    "message": "Bekräfta åtkomst"
   },
   "denyAccess": {
-    "message": "Deny access"
+    "message": "Neka åtkomst"
   },
   "logInConfirmedForEmailOnDevice": {
     "message": "Inloggning bekräftad för $EMAIL$ på $DEVICE$",
@@ -3037,7 +3046,7 @@
     "message": "Denna begäran är inte längre giltig."
   },
   "confirmAccessAttempt": {
-    "message": "Confirm access attempt for $EMAIL$",
+    "message": "Bekräfta åtkomstförsök för $EMAIL$",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3049,7 +3058,7 @@
     "message": "Inloggning begärd"
   },
   "accountAccessRequested": {
-    "message": "Account access requested"
+    "message": "Kontoåtkomst begärd"
   },
   "creatingAccountOn": {
     "message": "Skapa konto på"
@@ -3088,19 +3097,19 @@
     "message": "Kontrollera kända dataintrång för detta lösenord"
   },
   "loggedInExclamation": {
-    "message": "Logged in!"
+    "message": "Inloggad!"
   },
   "important": {
     "message": "Viktigt:"
   },
   "accessing": {
-    "message": "Accessing"
+    "message": "Tillgång"
   },
   "accessTokenUnableToBeDecrypted": {
-    "message": "You have been logged out because your access token could not be decrypted. Please log in again to resolve this issue."
+    "message": "Du har blivit utloggad eftersom din access token inte kunde dekrypteras. Vänligen logga in igen för att lösa problemet."
   },
   "refreshTokenSecureStorageRetrievalFailure": {
-    "message": "You have been logged out because your refresh token could not be retrieved. Please log in again to resolve this issue."
+    "message": "Du har blivit utloggad eftersom din uppdateringstoken inte kunde hämtas. Logga in igen för att lösa problemet."
   },
   "masterPasswordHint": {
     "message": "Ditt huvudlösenord kan inte återställas om du glömmer det!"
@@ -3121,16 +3130,16 @@
     "message": "Rekommenderade inställningsuppdateringar"
   },
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
-    "message": "Remember this device to make future logins seamless"
+    "message": "Kom ihåg den här enheten för att göra framtida inloggningar smidiga"
   },
   "deviceApprovalRequired": {
     "message": "Godkännande av enhet krävs. Välj ett godkännandealternativ nedan:"
   },
   "deviceApprovalRequiredV2": {
-    "message": "Device approval required"
+    "message": "Godkännande av utrustning krävs"
   },
   "selectAnApprovalOptionBelow": {
-    "message": "Select an approval option below"
+    "message": "Välj ett godkännandealternativ nedan"
   },
   "rememberThisDevice": {
     "message": "Kom ihåg denna enhet"
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Be om godkännande från administratör"
   },
+  "unableToCompleteLogin": {
+    "message": "Kunde inte slutföra inloggningen"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "Du måste logga in på en betrodd enhet eller fråga din administratör att tilldela dig ett lösenord."
+  },
   "region": {
     "message": "Region"
   },
@@ -3179,34 +3194,34 @@
     "message": "Användarens e-postadress saknas"
   },
   "activeUserEmailNotFoundLoggingYouOut": {
-    "message": "Active user email not found. Logging you out."
+    "message": "E-postadressen för aktiv användare hittades inte. Loggar ut dig."
   },
   "deviceTrusted": {
     "message": "Enhet betrodd"
   },
   "trustOrganization": {
-    "message": "Trust organization"
+    "message": "Lita på organisation"
   },
   "trust": {
-    "message": "Trust"
+    "message": "Förtroende"
   },
   "doNotTrust": {
-    "message": "Do not trust"
+    "message": "Lita inte på"
   },
   "organizationNotTrusted": {
-    "message": "Organization is not trusted"
+    "message": "Organisationen är inte betrodd"
   },
   "emergencyAccessTrustWarning": {
-    "message": "For the security of your account, only confirm if you have granted emergency access to this user and their fingerprint matches what is displayed in their account"
+    "message": "För att skydda ditt konto ska du bara bekräfta om du har beviljat nödåtkomst till den här användaren och om fingeravtrycket matchar det som visas på användarens konto"
   },
   "orgTrustWarning": {
-    "message": "For the security of your account, only proceed if you are a member of this organization, have account recovery enabled, and the fingerprint displayed below matches the organization's fingerprint."
+    "message": "För att skydda ditt konto ska du bara fortsätta om du är medlem i den här organisationen, har aktiverat kontoåterställning och om det fingeravtryck som visas nedan matchar organisationens fingeravtryck."
   },
   "orgTrustWarning1": {
-    "message": "This organization has an Enterprise policy that will enroll you in account recovery. Enrollment will allow organization administrators to change your password. Only proceed if you recognize this organization and the fingerprint phrase displayed below matches the organization's fingerprint."
+    "message": "Den här organisationen har en företagspolicy som gör att du kan registrera dig till kontoåterställning. Registreringen gör det möjligt för organisationens administratörer att ändra ditt lösenord. Fortsätt bara om du känner igen den här organisationen och om fingeravtrycksfrasen som visas nedan matchar organisationens fingeravtryck."
   },
   "trustUser": {
-    "message": "Trust user"
+    "message": "Lita på användare"
   },
   "inputRequired": {
     "message": "Inmatning är obligatoriskt."
@@ -3309,7 +3324,7 @@
     "message": "Undermeny"
   },
   "toggleSideNavigation": {
-    "message": "Toggle side navigation"
+    "message": "Växla sidonavigering"
   },
   "skipToContent": {
     "message": "Hoppa till innehåll"
@@ -3367,19 +3382,19 @@
     }
   },
   "duoHealthCheckResultsInNullAuthUrlError": {
-    "message": "Error connecting with the Duo service. Use a different two-step login method or contact Duo for assistance."
+    "message": "Fel vid anslutning till Duo-tjänsten. Använd en annan tvåstegsinloggningsmetod eller kontakta Duo för hjälp."
   },
   "duoRequiredByOrgForAccount": {
     "message": "Duo tvåstegsverifiering krävs för ditt konto."
   },
   "duoTwoFactorRequiredPageSubtitle": {
-    "message": "Duo two-step login is required for your account. Follow the steps below to finish logging in."
+    "message": "Tvåstegsinloggning med Duo krävs för ditt konto. Följ stegen nedan för att slutföra inloggningen."
   },
   "followTheStepsBelowToFinishLoggingIn": {
-    "message": "Follow the steps below to finish logging in."
+    "message": "Följ stegen nedan för att slutföra inloggningen."
   },
   "followTheStepsBelowToFinishLoggingInWithSecurityKey": {
-    "message": "Follow the steps below to finish logging in with your security key."
+    "message": "Följ stegen nedan för att slutföra inloggningen med din säkerhetsnyckel."
   },
   "launchDuo": {
     "message": "Starta Duo i webbläsaren"
@@ -3456,7 +3471,7 @@
     "message": "Bekräfta fillösenord"
   },
   "exportSuccess": {
-    "message": "Vault data exported"
+    "message": "Valvdata exporteras"
   },
   "multifactorAuthenticationCancelled": {
     "message": "Flerfaktorsautentisering avbruten"
@@ -3536,19 +3551,19 @@
     "description": "Label indicating the most common import formats"
   },
   "uriMatchDefaultStrategyHint": {
-    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "message": "Detektering av URI-matchning är hur Bitwarden identifierar autofyllförslag.",
     "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
   },
   "regExAdvancedOptionWarning": {
-    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "message": "\"Reguljär uttryck\" är ett avancerat alternativ med ökad risk för att röja inloggningsuppgifter.",
     "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
   },
   "startsWithAdvancedOptionWarning": {
-    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "message": "\"Börjar med\" är ett avancerat alternativ med ökad risk för att röja inloggningsuppgifter.",
     "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
   },
   "uriMatchWarningDialogLink": {
-    "message": "More about match detection",
+    "message": "Mer om matchdetektering",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
   "success": {
@@ -3613,39 +3628,39 @@
     "message": "Data"
   },
   "fileSends": {
-    "message": "File Sends"
+    "message": "Skicka filer"
   },
   "textSends": {
-    "message": "Text Sends"
+    "message": "Text skickas"
   },
   "ssoError": {
-    "message": "No free ports could be found for the sso login."
+    "message": "Inga lediga portar kunde hittas för sso-inloggningen."
   },
   "securePasswordGenerated": {
-    "message": "Secure password generated! Don't forget to also update your password on the website."
+    "message": "Säkert lösenord genererat! Glöm inte att även uppdatera ditt lösenord på hemsidan."
   },
   "useGeneratorHelpTextPartOne": {
-    "message": "Use the generator",
+    "message": "Använd generatorn",
     "description": "This will be used as part of a larger sentence, broken up to include the generator icon. The full sentence will read 'Use the generator [GENERATOR_ICON] to create a strong unique password'"
   },
   "useGeneratorHelpTextPartTwo": {
-    "message": "to create a strong unique password",
+    "message": "för att skapa ett starkt unikt lösenord",
     "description": "This will be used as part of a larger sentence, broken up to include the generator icon. The full sentence will read 'Use the generator [GENERATOR_ICON] to create a strong unique password'"
   },
   "biometricsStatusHelptextUnlockNeeded": {
-    "message": "Biometric unlock is unavailable because PIN or password unlock is required first."
+    "message": "Biometrisk upplåsning är inte tillgänglig eftersom upplåsning med PIN-kod eller lösenord krävs först."
   },
   "biometricsStatusHelptextHardwareUnavailable": {
-    "message": "Biometric unlock is currently unavailable."
+    "message": "Biometrisk upplåsning är för närvarande inte tillgänglig."
   },
   "biometricsStatusHelptextAutoSetupNeeded": {
-    "message": "Biometric unlock is unavailable due to misconfigured system files."
+    "message": "Biometrisk upplåsning är inte tillgänglig på grund av felkonfigurerade systemfiler."
   },
   "biometricsStatusHelptextManualSetupNeeded": {
-    "message": "Biometric unlock is unavailable due to misconfigured system files."
+    "message": "Biometrisk upplåsning är inte tillgänglig på grund av felkonfigurerade systemfiler."
   },
   "biometricsStatusHelptextNotEnabledLocally": {
-    "message": "Biometric unlock is unavailable because it is not enabled for $EMAIL$ in the Bitwarden desktop app.",
+    "message": "Biometrisk upplåsning är inte tillgänglig eftersom den inte är aktiverad för $EMAIL$ i Bitwardens skrivbordsapp.",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3654,58 +3669,58 @@
     }
   },
   "biometricsStatusHelptextUnavailableReasonUnknown": {
-    "message": "Biometric unlock is currently unavailable for an unknown reason."
+    "message": "Biometrisk upplåsning är för närvarande inte tillgänglig av okänd anledning."
   },
   "itemDetails": {
-    "message": "Item details"
+    "message": "Objektdetaljer"
   },
   "itemName": {
-    "message": "Item name"
+    "message": "Objektnamn"
   },
   "loginCredentials": {
-    "message": "Login credentials"
+    "message": "Inloggningsuppgifter"
   },
   "additionalOptions": {
-    "message": "Additional options"
+    "message": "Ytterligare alternativ"
   },
   "itemHistory": {
-    "message": "Item history"
+    "message": "Objekthistorik"
   },
   "lastEdited": {
-    "message": "Last edited"
+    "message": "Senast redigerad"
   },
   "upload": {
-    "message": "Upload"
+    "message": "Ladda upp"
   },
   "authorize": {
-    "message": "Authorize"
+    "message": "Auktorisera"
   },
   "deny": {
-    "message": "Deny"
+    "message": "Neka"
   },
   "sshkeyApprovalTitle": {
-    "message": "Confirm SSH key usage"
+    "message": "Bekräfta användning av SSH-nyckel"
   },
   "agentForwardingWarningTitle": {
-    "message": "Warning: Agent Forwarding"
+    "message": "Varning: Agent vidarebefordran"
   },
   "agentForwardingWarningText": {
-    "message": "This request comes from a remote device that you are logged into"
+    "message": "Denna begäran kommer från en fjärrenhet som du är inloggad på"
   },
   "sshkeyApprovalMessageInfix": {
     "message": "begär tillgång till"
   },
   "sshkeyApprovalMessageSuffix": {
-    "message": "in order to"
+    "message": "för att"
   },
   "sshActionLogin": {
-    "message": "authenticate to a server"
+    "message": "autentisera till en server"
   },
   "sshActionSign": {
-    "message": "sign a message"
+    "message": "signera ett meddelande"
   },
   "sshActionGitSign": {
-    "message": "sign a git commit"
+    "message": "signera en git commit"
   },
   "unknownApplication": {
     "message": "En applikation"
@@ -3714,40 +3729,40 @@
     "message": "SSH-nyckeln är ogiltig"
   },
   "sshKeyTypeUnsupported": {
-    "message": "The SSH key type is not supported"
+    "message": "SSH-nyckeltypen stöds inte"
   },
   "importSshKeyFromClipboard": {
     "message": "Importera nyckel från urklipp"
   },
   "sshKeyImported": {
-    "message": "SSH key imported successfully"
+    "message": "SSH-nyckel importerad framgångsrikt"
   },
   "fileSavedToDevice": {
-    "message": "File saved to device. Manage from your device downloads."
+    "message": "Fil sparad till enhet. Hantera nedladdningar från din enhet."
   },
   "allowScreenshots": {
-    "message": "Allow screen capture"
+    "message": "Tillåt skärmdump"
   },
   "allowScreenshotsDesc": {
-    "message": "Allow the Bitwarden desktop application to be captured in screenshots and viewed in remote desktop sessions. Disabling this will prevent access on some external displays."
+    "message": "Tillåt att Bitwardens skrivbordsapplikation fångas i skärmdumpar och visas i fjärrskrivbordssessioner. Om du avaktiverar detta kommer åtkomst att förhindras på vissa externa skärmar."
   },
   "confirmWindowStillVisibleTitle": {
-    "message": "Confirm window still visible"
+    "message": "Bekräftelsefönstret är fortfarande synligt"
   },
   "confirmWindowStillVisibleContent": {
-    "message": "Please confirm that the window is still visible."
+    "message": "Bekräfta att fönstret fortfarande är synligt."
   },
   "updateBrowserOrDisableFingerprintDialogTitle": {
-    "message": "Extension update required"
+    "message": "Uppdatering av förlängning krävs"
   },
   "updateBrowserOrDisableFingerprintDialogMessage": {
-    "message": "The browser extension you are using is out of date. Please update it or disable browser integration fingerprint validation in the desktop app settings."
+    "message": "Det webbläsartillägg du använder är föråldrat. Uppdatera det eller inaktivera validering av fingeravtryck i webbläsaren i inställningarna för skrivbordsappen."
   },
   "changeAtRiskPassword": {
-    "message": "Change at-risk password"
+    "message": "Ändra lösenord för riskgrupper"
   },
   "cannotRemoveViewOnlyCollections": {
-    "message": "You cannot remove collections with View only permissions: $COLLECTIONS$",
+    "message": "Du kan inte ta bort samlingar med behörigheten Visa endast: $COLLECTIONS$",
     "placeholders": {
       "collections": {
         "content": "$1",
@@ -3756,114 +3771,114 @@
     }
   },
   "move": {
-    "message": "Move"
+    "message": "Flytta"
   },
   "newFolder": {
-    "message": "New folder"
+    "message": "Ny mapp"
   },
   "folderName": {
-    "message": "Folder Name"
+    "message": "Mappnamn"
   },
   "folderHintText": {
-    "message": "Nest a folder by adding the parent folder's name followed by a “/”. Example: Social/Forums"
+    "message": "Nästla en mapp genom att lägga till namnet på den överordnade mappen följt av \"/\". Exempel: Sociala/Forums"
   },
   "sendsTitleNoItems": {
-    "message": "Send sensitive information safely",
+    "message": "Skicka känslig information på ett säkert sätt",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendsBodyNoItems": {
-    "message": "Share files and data securely with anyone, on any platform. Your information will remain end-to-end encrypted while limiting exposure.",
+    "message": "Dela filer och data på ett säkert sätt med vem som helst, på vilken plattform som helst. Din information kommer att förbli krypterad från början till slut samtidigt som exponeringen begränsas.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "generatorNudgeTitle": {
-    "message": "Quickly create passwords"
+    "message": "Skapa lösenord snabbt"
   },
   "generatorNudgeBodyOne": {
-    "message": "Easily create strong and unique passwords by clicking on",
+    "message": "Skapa enkelt starka och unika lösenord genom att klicka på",
     "description": "Two part message",
     "example": "Easily create strong and unique passwords by clicking on {icon} to help you keep your logins secure."
   },
   "generatorNudgeBodyTwo": {
-    "message": "to help you keep your logins secure.",
+    "message": "för att hjälpa dig att hålla dina inloggningar säkra.",
     "description": "Two part message",
     "example": "Easily create strong and unique passwords by clicking on {icon} to help you keep your logins secure."
   },
   "generatorNudgeBodyAria": {
-    "message": "Easily create strong and unique passwords by clicking on the Generate password button to help you keep your logins secure.",
+    "message": "Skapa enkelt starka och unika lösenord genom att klicka på knappen Generera lösenord så att du kan hålla dina inloggningar säkra.",
     "description": "Aria label for the body content of the generator nudge"
   },
   "newLoginNudgeTitle": {
-    "message": "Save time with autofill"
+    "message": "Spara tid med autofyll"
   },
   "newLoginNudgeBodyOne": {
-    "message": "Include a",
+    "message": "Inkludera ett",
     "description": "This is in multiple parts to allow for bold text in the middle of the sentence.",
     "example": "Include a Website so this login appears as an autofill suggestion."
   },
   "newLoginNudgeBodyBold": {
-    "message": "Website",
+    "message": "Webbplats",
     "description": "This is in multiple parts to allow for bold text in the middle of the sentence.",
     "example": "Include a Website so this login appears as an autofill suggestion."
   },
   "newLoginNudgeBodyTwo": {
-    "message": "so this login appears as an autofill suggestion.",
+    "message": "så att den här inloggningen visas som ett autofyllningsförslag.",
     "description": "This is in multiple parts to allow for bold text in the middle of the sentence.",
     "example": "Include a Website so this login appears as an autofill suggestion."
   },
   "newCardNudgeTitle": {
-    "message": "Seamless online checkout"
+    "message": "Sömlös utcheckning online"
   },
   "newCardNudgeBody": {
-    "message": "With cards, easily autofill payment forms securely and accurately."
+    "message": "Med kort kan du enkelt autofylla betalningsformulär på ett säkert och exakt sätt."
   },
   "newIdentityNudgeTitle": {
-    "message": "Simplify creating accounts"
+    "message": "Förenkla skapandet av konton"
   },
   "newIdentityNudgeBody": {
-    "message": "With identities, quickly autofill long registration or contact forms."
+    "message": "Med identiteter kan du snabbt autofylla långa registrerings- eller kontaktformulär."
   },
   "newNoteNudgeTitle": {
-    "message": "Keep your sensitive data safe"
+    "message": "Håll ditt känsliga data säkert"
   },
   "newNoteNudgeBody": {
-    "message": "With notes, securely store sensitive data like banking or insurance details."
+    "message": "Med anteckningar kan du säkert lagra känslig information som bank- eller försäkringsuppgifter."
   },
   "newSshNudgeTitle": {
-    "message": "Developer-friendly SSH access"
+    "message": "Utvecklarvänlig SSH-åtkomst"
   },
   "newSshNudgeBodyOne": {
-    "message": "Store your keys and connect with the SSH agent for fast, encrypted authentication.",
+    "message": "Förvara dina nycklar och anslut till SSH-agenten för snabb, krypterad autentisering.",
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
   "newSshNudgeBodyTwo": {
-    "message": "Learn more about SSH agent",
+    "message": "Läs mer om SSH-agent",
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
   "assignToCollections": {
-    "message": "Assign to collections"
+    "message": "Tilldela till samlingar"
   },
   "assignToTheseCollections": {
-    "message": "Assign to these collections"
+    "message": "Tilldela till dessa samlingar"
   },
   "bulkCollectionAssignmentDialogDescriptionSingular": {
-    "message": "Only organization members with access to these collections will be able to see the item."
+    "message": "Endast organisationsmedlemmar med tillgång till dessa samlingar kan se objektet."
   },
   "bulkCollectionAssignmentDialogDescriptionPlural": {
-    "message": "Only organization members with access to these collections will be able to see the items."
+    "message": "Endast organisationsmedlemmar med tillgång till dessa samlingar kan se objekten."
   },
   "noCollectionsAssigned": {
-    "message": "No collections have been assigned"
+    "message": "Inga samlingar har tilldelats"
   },
   "assign": {
-    "message": "Assign"
+    "message": "Tilldela"
   },
   "bulkCollectionAssignmentDialogDescription": {
-    "message": "Only organization members with access to these collections will be able to see the items."
+    "message": "Endast organisationsmedlemmar med tillgång till dessa samlingar kan se objekten."
   },
   "bulkCollectionAssignmentWarning": {
-    "message": "You have selected $TOTAL_COUNT$ items. You cannot update $READONLY_COUNT$ of the items because you do not have edit permissions.",
+    "message": "Du har valt $TOTAL_COUNT$ artiklar. Du kan inte uppdatera $READONLY_COUNT$ av objekten eftersom du inte har redigeringsbehörighet.",
     "placeholders": {
       "total_count": {
         "content": "$1",
@@ -3875,10 +3890,10 @@
     }
   },
   "selectCollectionsToAssign": {
-    "message": "Select collections to assign"
+    "message": "Välj samlingar som ska tilldelas"
   },
   "personalItemsTransferWarning": {
-    "message": "$PERSONAL_ITEMS_COUNT$ will be permanently transferred to the selected organization. You will no longer own these items.",
+    "message": "$PERSONAL_ITEMS_COUNT$ kommer att överföras permanent till den valda organisationen. Du kommer inte längre att äga dessa föremål.",
     "placeholders": {
       "personal_items_count": {
         "content": "$1",
@@ -3887,7 +3902,7 @@
     }
   },
   "personalItemsWithOrgTransferWarning": {
-    "message": "$PERSONAL_ITEMS_COUNT$ will be permanently transferred to $ORG$. You will no longer own these items.",
+    "message": "$PERSONAL_ITEMS_COUNT$ kommer att överföras permanent till $ORG$. Du kommer inte längre att äga dessa objekt.",
     "placeholders": {
       "personal_items_count": {
         "content": "$1",
@@ -3900,10 +3915,10 @@
     }
   },
   "personalItemTransferWarningSingular": {
-    "message": "1 item will be permanently transferred to the selected organization. You will no longer own this item."
+    "message": "1 objekt kommer att permanent överföras till den valda organisationen. Du kommer inte längre att äga detta objekt."
   },
   "personalItemWithOrgTransferWarningSingular": {
-    "message": "1 item will be permanently transferred to $ORG$. You will no longer own this item.",
+    "message": "1 objekt kommer att överföras permanent till $ORG$. Du kommer inte längre att äga det här objektet.",
     "placeholders": {
       "org": {
         "content": "$1",
@@ -3912,13 +3927,13 @@
     }
   },
   "successfullyAssignedCollections": {
-    "message": "Successfully assigned collections"
+    "message": "Framgångsrikt tilldelade samlingar"
   },
   "nothingSelected": {
-    "message": "You have not selected anything."
+    "message": "Du har inte valt något."
   },
   "itemsMovedToOrg": {
-    "message": "Items moved to $ORGNAME$",
+    "message": "Objekten flyttade till $ORGNAME$",
     "placeholders": {
       "orgname": {
         "content": "$1",
@@ -3927,7 +3942,7 @@
     }
   },
   "itemMovedToOrg": {
-    "message": "Item moved to $ORGNAME$",
+    "message": "Objekt flyttat till $ORGNAME$",
     "placeholders": {
       "orgname": {
         "content": "$1",
@@ -3936,7 +3951,7 @@
     }
   },
   "movedItemsToOrg": {
-    "message": "Selected items moved to $ORGNAME$",
+    "message": "Valda objekt flyttade till $ORGNAME$",
     "placeholders": {
       "orgname": {
         "content": "$1",
diff --git a/apps/desktop/src/locales/te/messages.json b/apps/desktop/src/locales/te/messages.json
index 8780868a6b8..88a353cbe48 100644
--- a/apps/desktop/src/locales/te/messages.json
+++ b/apps/desktop/src/locales/te/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Your master password does not meet one or more of your organization policies. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Your organization has disabled trusted device encryption. Please set a master password to access your vault."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "Region"
   },
diff --git a/apps/desktop/src/locales/th/messages.json b/apps/desktop/src/locales/th/messages.json
index 06663cac128..9b4513403b6 100644
--- a/apps/desktop/src/locales/th/messages.json
+++ b/apps/desktop/src/locales/th/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Your master password does not meet one or more of your organization policies. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Your organization has disabled trusted device encryption. Please set a master password to access your vault."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "Region"
   },
diff --git a/apps/desktop/src/locales/tr/messages.json b/apps/desktop/src/locales/tr/messages.json
index be8d2540a05..82656dc78ba 100644
--- a/apps/desktop/src/locales/tr/messages.json
+++ b/apps/desktop/src/locales/tr/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Ana parolanız kuruluş ilkelerinizi karşılamıyor. Kasanıza erişmek için ana parolanızı güncellemelisiniz. Devam ettiğinizde oturumunuz kapanacak ve yeniden oturum açmanız gerekecektir. Diğer cihazlardaki aktif oturumlar bir saate kadar aktif kalabilir."
   },
+  "changePasswordWarning": {
+    "message": "Parolanızı değiştirdikten sonra yeni parolanızyla tekrar giriş yapmanız gerekecektir. Diğer cihazlarınızdaki aktif oturumlar bir saat içinde kapatılacaktır."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Hesap kurtarmayı tamamlamak için ana parolanızı değiştirin."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Ana parolanız bu kuruluşun gereksinimlerini karşılamıyor. Devam için ana parolanızı değiştirin."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Your organization has disabled trusted device encryption. Please set a master password to access your vault."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Yönetici onayı iste"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "Bölge"
   },
diff --git a/apps/desktop/src/locales/uk/messages.json b/apps/desktop/src/locales/uk/messages.json
index ab4cbc5ff53..74d1350b2fe 100644
--- a/apps/desktop/src/locales/uk/messages.json
+++ b/apps/desktop/src/locales/uk/messages.json
@@ -1636,7 +1636,7 @@
     "message": "Починається з"
   },
   "regEx": {
-    "message": "Звичайний вираз",
+    "message": "Регулярний вираз",
     "description": "A programming term, also known as 'RegEx'."
   },
   "matchDetection": {
@@ -1717,10 +1717,10 @@
     "message": "Обмежено обліковим записом"
   },
   "restrictCardTypeImport": {
-    "message": "Cannot import card item types"
+    "message": "Не вдається імпортувати записи карток"
   },
   "restrictCardTypeImportDesc": {
-    "message": "A policy set by 1 or more organizations prevents you from importing cards to your vaults."
+    "message": "Політика принаймні однієї організації не дозволяє вам імпортувати записи карток до сховища."
   },
   "filePasswordAndConfirmFilePasswordDoNotMatch": {
     "message": "Пароль файлу та підтвердження пароля відрізняються."
@@ -2393,7 +2393,7 @@
     "message": "Ця дія захищена. Щоб продовжити, повторно введіть головний пароль."
   },
   "masterPasswordSuccessfullySet": {
-    "message": "Master password successfully set"
+    "message": "Головний пароль успішно встановлено"
   },
   "updatedMasterPassword": {
     "message": "Головний пароль оновлено"
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Ваш головний пароль не відповідає одній або більше політикам вашої організації. Щоб отримати доступ до сховища, вам необхідно оновити свій головний пароль зараз. Продовживши, ви вийдете з поточного сеансу, після чого потрібно буде повторно виконати вхід. Сеанси на інших пристроях можуть залишатися активними протягом однієї години."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Ваша організація вимкнула шифрування довірених пристроїв. Встановіть головний пароль для доступу до сховища."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Запит підтвердження адміністратора"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "Регіон"
   },
@@ -3536,19 +3551,19 @@
     "description": "Label indicating the most common import formats"
   },
   "uriMatchDefaultStrategyHint": {
-    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "message": "Виявлення збігів URI – це спосіб ідентифікації пропозицій автозаповнення Bitwarden.",
     "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
   },
   "regExAdvancedOptionWarning": {
-    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "message": "Регулярний вираз – це функція, що має підвищений ризик розкриття облікових даних, призначена для досвідчених користувачів.",
     "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
   },
   "startsWithAdvancedOptionWarning": {
-    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "message": "\"Починається з\" – це функція, що має підвищений ризик розкриття облікових даних, призначена для досвідчених користувачів.",
     "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
   },
   "uriMatchWarningDialogLink": {
-    "message": "More about match detection",
+    "message": "Докладніше про виявлення збігів",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
   "success": {
diff --git a/apps/desktop/src/locales/vi/messages.json b/apps/desktop/src/locales/vi/messages.json
index 97a3882039c..1b8e3eae3b0 100644
--- a/apps/desktop/src/locales/vi/messages.json
+++ b/apps/desktop/src/locales/vi/messages.json
@@ -24,7 +24,7 @@
     "message": "Danh tính"
   },
   "typeNote": {
-    "message": "Note"
+    "message": "Ghi chú"
   },
   "typeSecureNote": {
     "message": "Ghi chú bảo mật"
@@ -82,7 +82,7 @@
     "message": "Tên"
   },
   "uri": {
-    "message": "Đường dẫn"
+    "message": "Đường dẫn (URI)"
   },
   "uriPosition": {
     "message": "URL $POSITION$",
@@ -95,7 +95,7 @@
     }
   },
   "newUri": {
-    "message": "URI Mới"
+    "message": "Đường dẫn mới"
   },
   "username": {
     "message": "Tên người dùng"
@@ -470,7 +470,7 @@
     "message": "Sử dụng trường liên kết khi bạn gặp sự cố tự động điền trên một trang web cụ thể."
   },
   "linkedLabelHelpText": {
-    "message": "Enter the the field's html id, name, aria-label, or placeholder."
+    "message": "Nhập html id, name, aria-label hoặc placeholder của các trường."
   },
   "folder": {
     "message": "Thư mục"
@@ -498,7 +498,7 @@
     "description": "This describes a field that is 'linked' (related) to another field."
   },
   "cfTypeCheckbox": {
-    "message": "Checkbox"
+    "message": "Hộp chọn"
   },
   "linkedValue": {
     "message": "Giá trị được liên kết",
@@ -557,17 +557,17 @@
     "message": "Sao chép Mật khẩu"
   },
   "regenerateSshKey": {
-    "message": "Regenerate SSH key"
+    "message": "Tạo lại khóa SSH"
   },
   "copySshPrivateKey": {
-    "message": "Copy SSH private key"
+    "message": "Sao chép khóa riêng tư SSH"
   },
   "copyPassphrase": {
-    "message": "Copy passphrase",
+    "message": "Sao chép cụm mật khẩu",
     "description": "Copy passphrase to clipboard"
   },
   "copyUri": {
-    "message": "Sao chép URI"
+    "message": "Sao chép đường dẫn"
   },
   "copyVerificationCodeTotp": {
     "message": "Sao chép Mã xác thực (TOTP)"
@@ -594,11 +594,11 @@
     "message": "Ký tự đặc biệt (!@#$%^&*)"
   },
   "include": {
-    "message": "Include",
+    "message": "Bao gồm",
     "description": "Card header for password generator include block"
   },
   "uppercaseDescription": {
-    "message": "Include uppercase characters",
+    "message": "Bao gồm các ký tự viết hoa",
     "description": "Tooltip for the password generator uppercase character checkbox"
   },
   "uppercaseLabel": {
@@ -606,7 +606,7 @@
     "description": "Label for the password generator uppercase character checkbox"
   },
   "lowercaseDescription": {
-    "message": "Include lowercase characters",
+    "message": "Bao gồm các ký tự viết thường",
     "description": "Full description for the password generator lowercase character checkbox"
   },
   "lowercaseLabel": {
@@ -614,7 +614,7 @@
     "description": "Label for the password generator lowercase character checkbox"
   },
   "numbersDescription": {
-    "message": "Include numbers",
+    "message": "Bao gồm cả số",
     "description": "Full description for the password generator numbers checkbox"
   },
   "numbersLabel": {
@@ -622,7 +622,7 @@
     "description": "Label for the password generator numbers checkbox"
   },
   "specialCharactersDescription": {
-    "message": "Include special characters",
+    "message": "Bao gồm các ký tự đặc biệt",
     "description": "Full description for the password generator special characters checkbox"
   },
   "numWords": {
@@ -653,11 +653,11 @@
     "description": "deprecated. Use avoidAmbiguous instead."
   },
   "avoidAmbiguous": {
-    "message": "Avoid ambiguous characters",
+    "message": "Tránh các ký tự dễ nhầm lẫn",
     "description": "Label for the avoid ambiguous characters checkbox."
   },
   "generatorPolicyInEffect": {
-    "message": "Enterprise policy requirements have been applied to your generator options.",
+    "message": "Các yêu cầu chính sách của doanh nghiệp đã được áp dụng cho các tùy chọn trình tạo của bạn.",
     "description": "Indicates that a policy limits the credential generator screen."
   },
   "searchCollection": {
@@ -695,7 +695,7 @@
     "message": "Kích thước tối đa của tập tin là 500MB."
   },
   "legacyEncryptionUnsupported": {
-    "message": "Legacy encryption is no longer supported. Please contact support to recover your account."
+    "message": "Mã hóa cổ điển không còn được hỗ trợ. Vui lòng liên hệ bộ phận hỗ trợ để khôi phục tài khoản của bạn."
   },
   "editedFolder": {
     "message": "Đã lưu thư mục"
@@ -716,7 +716,7 @@
     "message": "Tạo tài khoản"
   },
   "newToBitwarden": {
-    "message": "New to Bitwarden?"
+    "message": "Bạn mới sử dụng Bitwarden?"
   },
   "setAStrongPassword": {
     "message": "Đặt mật khẩu mạnh"
@@ -728,25 +728,25 @@
     "message": "Đăng Nhập"
   },
   "logInToBitwarden": {
-    "message": "Log in to Bitwarden"
+    "message": "Đăng nhập Bitwarden"
   },
   "enterTheCodeSentToYourEmail": {
-    "message": "Enter the code sent to your email"
+    "message": "Nhập mã được gửi về email của bạn"
   },
   "enterTheCodeFromYourAuthenticatorApp": {
-    "message": "Enter the code from your authenticator app"
+    "message": "Nhập mã từ ứng dụng xác thực của bạn"
   },
   "pressYourYubiKeyToAuthenticate": {
-    "message": "Press your YubiKey to authenticate"
+    "message": "Nhấn YubiKey của bạn để xác thực"
   },
   "logInWithPasskey": {
-    "message": "Log in with passkey"
+    "message": "Đăng nhập bằng khóa truy cập"
   },
   "loginWithDevice": {
-    "message": "Log in with device"
+    "message": "Đăng nhập bằng thiết bị"
   },
   "useSingleSignOn": {
-    "message": "Use single sign-on"
+    "message": "Dùng đăng nhập một lần"
   },
   "submit": {
     "message": "Gửi"
@@ -792,7 +792,7 @@
     "message": "Gợi ý mật khẩu chính"
   },
   "passwordStrengthScore": {
-    "message": "Password strength score $SCORE$",
+    "message": "Độ mạnh của mật khẩu $SCORE$",
     "placeholders": {
       "score": {
         "content": "$1",
@@ -804,7 +804,7 @@
     "message": "Tham gia tổ chức"
   },
   "joinOrganizationName": {
-    "message": "Join $ORGANIZATIONNAME$",
+    "message": "Tham gia $ORGANIZATIONNAME$",
     "placeholders": {
       "organizationName": {
         "content": "$1",
@@ -819,16 +819,16 @@
     "message": "Cài đặt"
   },
   "accountEmail": {
-    "message": "Account email"
+    "message": "Email tài khoản"
   },
   "requestHint": {
-    "message": "Request hint"
+    "message": "Yêu cầu gợi ý"
   },
   "requestPasswordHint": {
-    "message": "Request password hint"
+    "message": "Yêu cầu gợi ý mật khẩu"
   },
   "enterYourAccountEmailAddressAndYourPasswordHintWillBeSentToYou": {
-    "message": "Enter your account email address and your password hint will be sent to you"
+    "message": "Nhập địa chỉ email tài khoản của bạn và gợi ý mật khẩu sẽ được gửi đến bạn"
   },
   "getMasterPasswordHint": {
     "message": "Nhận gợi ý mật khẩu chính"
@@ -907,7 +907,7 @@
     "message": "Quá trình xác thực đã bị hủy hoặc mất quá nhiều thời gian. Vui lòng thử lại."
   },
   "openInNewTab": {
-    "message": "Open in new tab"
+    "message": "Mở trong tab mới"
   },
   "invalidVerificationCode": {
     "message": "Mã xác minh không đúng"
@@ -925,14 +925,14 @@
     }
   },
   "dontAskAgainOnThisDeviceFor30Days": {
-    "message": "Don't ask again on this device for 30 days"
+    "message": "Không yêu cầu lại trên thiết bị này trong vòng 30 ngày"
   },
   "selectAnotherMethod": {
-    "message": "Select another method",
+    "message": "Chọn phương pháp khác",
     "description": "Select another two-step login method"
   },
   "useYourRecoveryCode": {
-    "message": "Use your recovery code"
+    "message": "Sử dụng mã khôi phục của bạn"
   },
   "insertU2f": {
     "message": "Lắp khóa bảo mật vào cổng USB của máy tính. Nếu nó có một nút, nhấn vào nó."
@@ -965,13 +965,13 @@
     "description": "'Duo Security' and 'Duo Mobile' are product names and should not be translated."
   },
   "verifyYourIdentity": {
-    "message": "Verify your Identity"
+    "message": "Xác minh danh tính của bạn"
   },
   "weDontRecognizeThisDevice": {
-    "message": "We don't recognize this device. Enter the code sent to your email to verify your identity."
+    "message": "Chúng tôi không nhận diện được thiết bị này. Nhập mã được gửi đến email để xác minh danh tính của bạn."
   },
   "continueLoggingIn": {
-    "message": "Continue logging in"
+    "message": "Tiếp tục đăng nhập"
   },
   "webAuthnTitle": {
     "message": "FIDO2 WebAuthn"
@@ -998,7 +998,7 @@
     "message": "Tùy chọn xác minh hai bước"
   },
   "selectTwoStepLoginMethod": {
-    "message": "Select two-step login method"
+    "message": "Chọn phương pháp đăng nhập hai bước"
   },
   "selfHostedEnvironment": {
     "message": "Môi trường tự lưu trữ"
@@ -1019,13 +1019,13 @@
     "message": "Địa chỉ máy chủ"
   },
   "authenticationTimeout": {
-    "message": "Authentication timeout"
+    "message": "Thời gian chờ xác thực"
   },
   "authenticationSessionTimedOut": {
-    "message": "The authentication session timed out. Please restart the login process."
+    "message": "Phiên xác thực đã hết thời gian chờ. Vui lòng đăng nhập lại từ đầu."
   },
   "selfHostBaseUrl": {
-    "message": "Self-host server URL",
+    "message": "URL máy chủ tự lưu trữ",
     "description": "Label for field requesting a self-hosted integration service URL"
   },
   "apiUrl": {
@@ -1056,7 +1056,7 @@
     "message": "Không"
   },
   "location": {
-    "message": "Location"
+    "message": "Vị trí"
   },
   "overwritePassword": {
     "message": "Ghi đè lên mật khẩu"
@@ -1172,13 +1172,13 @@
     "message": "Kho của bạn đã bị khóa. Xác minh danh tính của bạn để mở khoá."
   },
   "yourAccountIsLocked": {
-    "message": "Your account is locked"
+    "message": "Tài khoản của bạn đã bị khóa"
   },
   "or": {
-    "message": "or"
+    "message": "hoặc"
   },
   "unlockWithBiometrics": {
-    "message": "Unlock with biometrics"
+    "message": "Mở khóa bằng sinh trắc học"
   },
   "unlockWithMasterPassword": {
     "message": "Mở khóa bằng mật khẩu chính"
@@ -1212,7 +1212,7 @@
     "message": "Thời gian mở kho"
   },
   "vaultTimeout1": {
-    "message": "Timeout"
+    "message": "Quá hạn"
   },
   "vaultTimeoutDesc": {
     "message": "Chọn khi nào thì kho của bạn sẽ hết thời gian chờ và thực hiện hành động đã được chọn."
@@ -1419,7 +1419,7 @@
     "description": "Copy credit card number"
   },
   "copyEmail": {
-    "message": "Copy email"
+    "message": "Sao chép email"
   },
   "copySecurityCode": {
     "message": "Sao chép Mã bảo mật",
@@ -1489,13 +1489,13 @@
     "message": "Lịch sử mật khẩu"
   },
   "generatorHistory": {
-    "message": "Generator history"
+    "message": "Lịch sử trình tạo"
   },
   "clearGeneratorHistoryTitle": {
-    "message": "Clear generator history"
+    "message": "Dọn dẹp lịch sử trình tạo"
   },
   "cleargGeneratorHistoryDescription": {
-    "message": "If you continue, all entries will be permanently deleted from generator's history. Are you sure you want to continue?"
+    "message": "Nếu bạn tiếp tục, tất cả các mục sẽ bị xóa vĩnh viễn khỏi lịch sử của trình tạo. Bạn có chắc chắn muốn tiếp tục không?"
   },
   "clear": {
     "message": "Xoá",
@@ -1717,10 +1717,10 @@
     "message": "Tài khoản bị hạn chế"
   },
   "restrictCardTypeImport": {
-    "message": "Cannot import card item types"
+    "message": "Không thể nhập mục thẻ"
   },
   "restrictCardTypeImportDesc": {
-    "message": "A policy set by 1 or more organizations prevents you from importing cards to your vaults."
+    "message": "Một chính sách được thiết lập bởi 1 hoặc nhiều tổ chức ngăn bạn nhập thẻ vào kho của mình."
   },
   "filePasswordAndConfirmFilePasswordDoNotMatch": {
     "message": "“Mật khẩu tập tin” và “Nhập lại mật khẩu tập tin” không khớp."
@@ -2101,7 +2101,7 @@
     "message": "Cho phép tích hợp với trình duyệt"
   },
   "enableBrowserIntegrationDesc1": {
-    "message": "Used to allow biometric unlock in browsers that are not Safari."
+    "message": "Dùng để cho phép mở khóa bằng sinh trắc học trên các trình duyệt không phải Safari."
   },
   "enableDuckDuckGoBrowserIntegration": {
     "message": "Cho phép tích hợp trình duyệt DuckDuckGo"
@@ -2179,7 +2179,7 @@
     "message": "Do chính sách doanh nghiệp, bạn bị hạn chế lưu các mục vào kho cá nhân của mình. Thay đổi tùy chọn quyền sở hữu thành một tổ chức và chọn từ các bộ sưu tập có sẵn."
   },
   "yourNewPasswordCannotBeTheSameAsYourCurrentPassword": {
-    "message": "Your new password cannot be the same as your current password."
+    "message": "Mật khẩu mới của bạn không được trùng với mật khẩu hiện tại."
   },
   "hintEqualsPassword": {
     "message": "Gợi ý mật khẩu không được trùng với mật khẩu của bạn."
@@ -2191,13 +2191,13 @@
     "message": "Chính sách của tổ chức đã chặn việc nhập các mục vào kho cá nhân của bạn."
   },
   "personalDetails": {
-    "message": "Personal details"
+    "message": "Thông tin cá nhân"
   },
   "identification": {
-    "message": "Identification"
+    "message": "Định danh"
   },
   "contactInfo": {
-    "message": "Contact information"
+    "message": "Thông tin liên hệ"
   },
   "allSends": {
     "message": "Tất cả mục Gửi",
@@ -2363,10 +2363,10 @@
     "message": "Xác thực WebAuthn"
   },
   "readSecurityKey": {
-    "message": "Read security key"
+    "message": "Đọc khóa bảo mật"
   },
   "awaitingSecurityKeyInteraction": {
-    "message": "Awaiting security key interaction..."
+    "message": "Đang chờ tương tác với khóa bảo mật..."
   },
   "hideEmail": {
     "message": "Ẩn địa chỉ email của tôi khỏi người nhận."
@@ -2393,7 +2393,7 @@
     "message": "Hành động này được bảo vệ. Để tiếp tục, vui lòng nhập lại mật khẩu chính của bạn để xác minh danh tính của bạn."
   },
   "masterPasswordSuccessfullySet": {
-    "message": "Master password successfully set"
+    "message": "Mật khẩu chính được đặt thành công"
   },
   "updatedMasterPassword": {
     "message": "Mật khẩu chính đã được cập nhật"
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "Mật khẩu chính của bạn không đáp ứng chính sách tổ chức của bạn. Để truy cập kho, bạn phải cập nhật mật khẩu chính của mình ngay bây giờ. Việc tiếp tục sẽ đăng xuất bạn khỏi phiên hiện tại và bắt buộc đăng nhập lại. Các phiên hoạt động trên các thiết bị khác có thể tiếp tục duy trì hoạt động trong tối đa một giờ."
   },
+  "changePasswordWarning": {
+    "message": "Sau khi thay đổi mật khẩu, bạn cần đăng nhập lại bằng mật khẩu mới. Các phiên đăng nhập đang hoạt động trên các thiết bị khác sẽ bị đăng xuất trong vòng một giờ."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Thay đổi mật khẩu chính của bạn để hoàn tất quá trình khôi phục tài khoản."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Mật khẩu chính của bạn không đáp ứng yêu cầu của tổ chức này. Vui lòng thay đổi mật khẩu chính để tiếp tục."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Tổ chức của bạn đã vô hiệu hóa mã hóa bằng thiết bị đáng tin cậy. Vui lòng đặt mật khẩu chính để truy cập Kho của bạn."
   },
@@ -2453,7 +2462,7 @@
     "message": "Phút"
   },
   "vaultTimeoutPolicyInEffect1": {
-    "message": "$HOURS$ hour(s) and $MINUTES$ minute(s) maximum.",
+    "message": "Tối đa $HOURS$ giờ và $MINUTES$ phút.",
     "placeholders": {
       "hours": {
         "content": "$1",
@@ -2519,13 +2528,13 @@
     "message": "Đã xóa mật khẩu chính"
   },
   "removeMasterPasswordForOrganizationUserKeyConnector": {
-    "message": "A master password is no longer required for members of the following organization. Please confirm the domain below with your organization administrator."
+    "message": "Mật khẩu chính không còn được yêu cầu đối với các thành viên của tổ chức sau đây. Vui lòng xác nhận tên miền bên dưới với quản trị viên của tổ chức."
   },
   "organizationName": {
-    "message": "Organization name"
+    "message": "Tên tổ chức"
   },
   "keyConnectorDomain": {
-    "message": "Key Connector domain"
+    "message": "Tên miền Key Connector"
   },
   "leaveOrganization": {
     "message": "Rời khỏi tổ chức"
@@ -2588,7 +2597,7 @@
     }
   },
   "exportingIndividualVaultWithAttachmentsDescription": {
-    "message": "Only the individual vault items including attachments associated with $EMAIL$ will be exported. Organization vault items will not be included",
+    "message": "Chỉ các mục kho lưu trữ cá nhân bao gồm các tệp đính kèm liên quan đến $EMAIL$ sẽ được xuất. Các mục trong kho lưu trữ của tổ chức sẽ không được bao gồm",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -2634,10 +2643,10 @@
     "message": "Tạo tên tài khoản"
   },
   "generateEmail": {
-    "message": "Generate email"
+    "message": "Tạo email"
   },
   "usernameGenerator": {
-    "message": "Username generator"
+    "message": "Trình tạo tên người dùng"
   },
   "generatePassword": {
     "message": "Tạo mật khẩu"
@@ -2646,19 +2655,19 @@
     "message": "Tạo cụm mật khẩu"
   },
   "passwordGenerated": {
-    "message": "Password generated"
+    "message": "Đã tạo mật khẩu"
   },
   "passphraseGenerated": {
-    "message": "Passphrase generated"
+    "message": "Đã tạo cụm mật khẩu"
   },
   "usernameGenerated": {
-    "message": "Username generated"
+    "message": "Tên người dùng được tạo tự động"
   },
   "emailGenerated": {
-    "message": "Email generated"
+    "message": "Email được tạo ra"
   },
   "spinboxBoundariesHint": {
-    "message": "Value must be between $MIN$ and $MAX$.",
+    "message": "Giá trị phải nằm trong khoảng từ $MIN$ đến $MAX$.",
     "description": "Explains spin box minimum and maximum values to the user",
     "placeholders": {
       "min": {
@@ -2672,7 +2681,7 @@
     }
   },
   "passwordLengthRecommendationHint": {
-    "message": " Use $RECOMMENDED$ characters or more to generate a strong password.",
+    "message": " Sử dụng ít nhất $RECOMMENDED$ ký tự để tạo một mật khẩu mạnh.",
     "description": "Appended to `spinboxBoundariesHint` to recommend a length to the user. This must include any language-specific 'sentence' separator characters (e.g. a space in english).",
     "placeholders": {
       "recommended": {
@@ -2682,7 +2691,7 @@
     }
   },
   "passphraseNumWordsRecommendationHint": {
-    "message": " Use $RECOMMENDED$ words or more to generate a strong passphrase.",
+    "message": " Sử dụng ít nhất $RECOMMENDED$ từ để tạo cụm mật khẩu mạnh.",
     "description": "Appended to `spinboxBoundariesHint` to recommend a number of words to the user. This must include any language-specific 'sentence' separator characters (e.g. a space in english).",
     "placeholders": {
       "recommended": {
@@ -2708,16 +2717,16 @@
     "message": "Sử dụng hộp thư bạn đã thiết lập để nhận tất cả email gửi đến tên miền của bạn."
   },
   "useThisEmail": {
-    "message": "Use this email"
+    "message": "Dùng email này"
   },
   "useThisPassword": {
-    "message": "Use this password"
+    "message": "Dùng mật khẩu này"
   },
   "useThisPassphrase": {
-    "message": "Use this passphrase"
+    "message": "Dùng cụm mật khẩu này"
   },
   "useThisUsername": {
-    "message": "Use this username"
+    "message": "Dùng tên người dùng này"
   },
   "random": {
     "message": "Ngẫu nhiên"
@@ -2741,17 +2750,17 @@
     "message": "Tìm kiếm trong kho"
   },
   "forwardedEmail": {
-    "message": "Đã chuyển tiếp bí danh email"
+    "message": "Địa chỉ email thay thế"
   },
   "forwardedEmailDesc": {
-    "message": "Tạo bí danh email với dịch vụ chuyển tiếp bên ngoài."
+    "message": "Tạo một địa chỉ email ảo bằng dịch vụ chuyển tiếp email bên ngoài."
   },
   "forwarderDomainName": {
-    "message": "Email domain",
+    "message": "Tên miền email",
     "description": "Labels the domain name email forwarder service option"
   },
   "forwarderDomainNameHint": {
-    "message": "Choose a domain that is supported by the selected service",
+    "message": "Chọn một tên miền được hỗ trợ bởi dịch vụ đã chọn",
     "description": "Guidance provided for email forwarding services that support multiple email domains."
   },
   "forwarderError": {
@@ -2807,7 +2816,7 @@
     }
   },
   "forwaderInvalidOperation": {
-    "message": "$SERVICENAME$ refused your request. Please contact your service provider for assistance.",
+    "message": "$SERVICENAME$ đã từ chối yêu cầu của bạn. Vui lòng liên hệ với nhà cung cấp dịch vụ của bạn để được hỗ trợ.",
     "description": "Displayed when the user is forbidden from using the API by the forwarding service.",
     "placeholders": {
       "servicename": {
@@ -2817,7 +2826,7 @@
     }
   },
   "forwaderInvalidOperationWithMessage": {
-    "message": "$SERVICENAME$ refused your request: $ERRORMESSAGE$",
+    "message": "$SERVICENAME$ đã từ chối yêu cầu của bạn: $ERRORMESSAGE$",
     "description": "Displayed when the user is forbidden from using the API by the forwarding service with an error message.",
     "placeholders": {
       "servicename": {
@@ -2930,25 +2939,25 @@
     "message": "Bắt đầu đăng nhập"
   },
   "logInRequestSent": {
-    "message": "Request sent"
+    "message": "Đã gửi yêu cầu"
   },
   "notificationSentDevice": {
     "message": "Một thông báo đã được gửi đến thiết bị của bạn."
   },
   "aNotificationWasSentToYourDevice": {
-    "message": "A notification was sent to your device"
+    "message": "Một thông báo đã được gửi đến thiết bị của bạn"
   },
   "notificationSentDevicePart1": {
-    "message": "Unlock Bitwarden on your device or on the "
+    "message": "Mở khóa Bitwarden trên thiết bị của bạn hoặc trên "
   },
   "notificationSentDeviceAnchor": {
-    "message": "web app"
+    "message": "ứng dụng web"
   },
   "notificationSentDevicePart2": {
-    "message": "Make sure the Fingerprint phrase matches the one below before approving."
+    "message": "Hãy đảm bảo rằng cụm từ xác thực khớp với cụm từ bên dưới trước khi phê duyệt."
   },
   "needAnotherOptionV1": {
-    "message": "Need another option?"
+    "message": "Cần một tùy chọn khác?"
   },
   "fingerprintMatchInfo": {
     "message": "Vui lòng đảm bảo rằng bạn đã mở khoá kho và cụm vân tay khớp trên thiết bị khác."
@@ -2957,13 +2966,13 @@
     "message": "Cụm vân tay"
   },
   "youWillBeNotifiedOnceTheRequestIsApproved": {
-    "message": "You will be notified once the request is approved"
+    "message": "Bạn sẽ nhận được thông báo ngay sau khi yêu cầu được phê duyệt"
   },
   "needAnotherOption": {
     "message": "Đăng nhập bằng thiết bị phải được thiết lập trong cài đặt của ứng dụng Bitwarden. Dùng cách khác?"
   },
   "viewAllLogInOptions": {
-    "message": "View all log in options"
+    "message": "Xem tất cả tùy chọn đăng nhập"
   },
   "viewAllLoginOptions": {
     "message": "Xem tất cả tùy chọn đăng nhập"
@@ -2976,10 +2985,10 @@
     "description": "'Character count' describes a feature that displays a number next to each character of the password."
   },
   "areYouTryingToAccessYourAccount": {
-    "message": "Are you trying to access your account?"
+    "message": "Bạn đang cố gắng truy cập tài khoản của mình?"
   },
   "accessAttemptBy": {
-    "message": "Access attempt by $EMAIL$",
+    "message": "Cố gắng truy cập bởi $EMAIL$",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -2997,10 +3006,10 @@
     "message": "Thời Gian"
   },
   "confirmAccess": {
-    "message": "Confirm access"
+    "message": "Xác nhận truy cập"
   },
   "denyAccess": {
-    "message": "Deny access"
+    "message": "Từ chối truy cập"
   },
   "logInConfirmedForEmailOnDevice": {
     "message": "Đã xác nhận đăng nhập cho $EMAIL$ trên $DEVICE$",
@@ -3037,7 +3046,7 @@
     "message": "Yêu cầu này không còn hiệu lực."
   },
   "confirmAccessAttempt": {
-    "message": "Confirm access attempt for $EMAIL$",
+    "message": "Phê duyệt yêu cầu truy cập cho $EMAIL$",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3049,7 +3058,7 @@
     "message": "Yêu cầu đăng nhập"
   },
   "accountAccessRequested": {
-    "message": "Account access requested"
+    "message": "Yêu cầu truy cập tài khoản"
   },
   "creatingAccountOn": {
     "message": "Đang tạo tài khoản trên"
@@ -3088,7 +3097,7 @@
     "message": "Kiểm tra mật khẩu có lộ trong các vụ rò rỉ dữ liệu hay không"
   },
   "loggedInExclamation": {
-    "message": "Logged in!"
+    "message": "Đã đăng nhập!"
   },
   "important": {
     "message": "Quan trọng:"
@@ -3121,16 +3130,16 @@
     "message": "Cập nhật cài đặt được đề xuất"
   },
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
-    "message": "Remember this device to make future logins seamless"
+    "message": "Nhớ thiết bị này để đăng nhập dễ dàng trong tương lai"
   },
   "deviceApprovalRequired": {
     "message": "Yêu cầu phê duyệt thiết bị. Chọn một tuỳ chọn phê duyệt bên dưới:"
   },
   "deviceApprovalRequiredV2": {
-    "message": "Device approval required"
+    "message": "Yêu cầu phê duyệt trên thiết bị"
   },
   "selectAnApprovalOptionBelow": {
-    "message": "Select an approval option below"
+    "message": "Chọn một tùy chọn phê duyệt dưới đây"
   },
   "rememberThisDevice": {
     "message": "Lưu thiết bị này"
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "Yêu cầu quản trị viên phê duyệt"
   },
+  "unableToCompleteLogin": {
+    "message": "Không thể hoàn tất quá trình đăng nhập"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "Bạn cần đăng nhập trên một thiết bị đáng tin cậy hoặc yêu cầu quản trị viên cấp cho bạn mật khẩu."
+  },
   "region": {
     "message": "Khu vực"
   },
@@ -3179,34 +3194,34 @@
     "message": "Thiếu email người dùng"
   },
   "activeUserEmailNotFoundLoggingYouOut": {
-    "message": "Active user email not found. Logging you out."
+    "message": "Email người dùng đang hoạt động không được tìm thấy. Bạn đang bị đăng xuất."
   },
   "deviceTrusted": {
     "message": "Thiết bị tin cậy"
   },
   "trustOrganization": {
-    "message": "Trust organization"
+    "message": "Tin tưởng tổ chức"
   },
   "trust": {
-    "message": "Trust"
+    "message": "Tin tưởng"
   },
   "doNotTrust": {
-    "message": "Do not trust"
+    "message": "Không tin tưởng"
   },
   "organizationNotTrusted": {
-    "message": "Organization is not trusted"
+    "message": "Tổ chức không được tin cậy"
   },
   "emergencyAccessTrustWarning": {
-    "message": "For the security of your account, only confirm if you have granted emergency access to this user and their fingerprint matches what is displayed in their account"
+    "message": "Để đảm bảo an toàn tài khoản của bạn, chỉ xác nhận nếu bạn đã cấp quyền truy cập khẩn cấp cho người dùng này và cụm từ nhận dạng của họ khớp với những gì hiển thị trong tài khoản của họ"
   },
   "orgTrustWarning": {
-    "message": "For the security of your account, only proceed if you are a member of this organization, have account recovery enabled, and the fingerprint displayed below matches the organization's fingerprint."
+    "message": "Để đảm bảo an toàn cho tài khoản của bạn, vui lòng chỉ tiếp tục nếu bạn là thành viên của tổ chức này, đã kích hoạt tính năng khôi phục tài khoản và cụm từ nhận dạng hiển thị bên dưới trùng khớp với cụm từ nhận dạng của tổ chức."
   },
   "orgTrustWarning1": {
-    "message": "This organization has an Enterprise policy that will enroll you in account recovery. Enrollment will allow organization administrators to change your password. Only proceed if you recognize this organization and the fingerprint phrase displayed below matches the organization's fingerprint."
+    "message": "Tổ chức này có chính sách doanh nghiệp sẽ đăng ký bạn vào quy trình khôi phục tài khoản. Việc đăng ký sẽ cho phép các quản trị viên của tổ chức thay đổi mật khẩu của bạn. Chỉ tiếp tục nếu bạn nhận ra tổ chức này và cụm từ xác thực hiển thị bên dưới khớp với cụm từ xác thực của tổ chức."
   },
   "trustUser": {
-    "message": "Trust user"
+    "message": "Người dùng tin cậy"
   },
   "inputRequired": {
     "message": "Trường này là bắt buộc."
@@ -3373,13 +3388,13 @@
     "message": "Tài khoản của bạn yêu cầu xác minh hai bước với Duo."
   },
   "duoTwoFactorRequiredPageSubtitle": {
-    "message": "Duo two-step login is required for your account. Follow the steps below to finish logging in."
+    "message": "Đăng nhập hai bước là bắt buộc cho tài khoản của bạn. Hãy làm theo các bước dưới đây để hoàn tất quá trình đăng nhập."
   },
   "followTheStepsBelowToFinishLoggingIn": {
-    "message": "Follow the steps below to finish logging in."
+    "message": "Thực hiện các bước sau để hoàn tất đăng nhập."
   },
   "followTheStepsBelowToFinishLoggingInWithSecurityKey": {
-    "message": "Follow the steps below to finish logging in with your security key."
+    "message": "Thực hiện các bước sau để hoàn tất đăng nhập bằng khóa bảo mật của bạn."
   },
   "launchDuo": {
     "message": "Khởi chạy Duo trong trình duyệt"
@@ -3536,19 +3551,19 @@
     "description": "Label indicating the most common import formats"
   },
   "uriMatchDefaultStrategyHint": {
-    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "message": "Bitwarden phát hiện khớp đường dẫn (URI) để xác định các đề xuất tự động điền.",
     "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
   },
   "regExAdvancedOptionWarning": {
-    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "message": "\"Biểu thức chính quy\" là tùy chọn nâng cao với nguy cơ cao hơn trong việc lộ thông tin đăng nhập.",
     "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
   },
   "startsWithAdvancedOptionWarning": {
-    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "message": "\"Bắt đầu với\" là tùy chọn nâng cao với nguy cơ cao hơn trong việc lộ thông tin đăng nhập.",
     "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
   },
   "uriMatchWarningDialogLink": {
-    "message": "More about match detection",
+    "message": "Thông tin thêm về độ phù hợp",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
   "success": {
@@ -3622,30 +3637,30 @@
     "message": "Không thể tìm thấy cổng trống để đăng nhập SSO."
   },
   "securePasswordGenerated": {
-    "message": "Secure password generated! Don't forget to also update your password on the website."
+    "message": "Mật khẩu an toàn đã được tạo! Đừng quên cập nhật mật khẩu của bạn trên trang web."
   },
   "useGeneratorHelpTextPartOne": {
-    "message": "Use the generator",
+    "message": "Sử dụng trình tạo",
     "description": "This will be used as part of a larger sentence, broken up to include the generator icon. The full sentence will read 'Use the generator [GENERATOR_ICON] to create a strong unique password'"
   },
   "useGeneratorHelpTextPartTwo": {
-    "message": "to create a strong unique password",
+    "message": "để tạo một mật khẩu mạnh và duy nhất",
     "description": "This will be used as part of a larger sentence, broken up to include the generator icon. The full sentence will read 'Use the generator [GENERATOR_ICON] to create a strong unique password'"
   },
   "biometricsStatusHelptextUnlockNeeded": {
-    "message": "Biometric unlock is unavailable because PIN or password unlock is required first."
+    "message": "Mở khóa bằng sinh trắc học không khả dụng vì cần phải mở khóa bằng mã PIN hoặc mật khẩu trước."
   },
   "biometricsStatusHelptextHardwareUnavailable": {
-    "message": "Biometric unlock is currently unavailable."
+    "message": "Mở khóa bằng sinh trắc học hiện không khả dụng."
   },
   "biometricsStatusHelptextAutoSetupNeeded": {
-    "message": "Biometric unlock is unavailable due to misconfigured system files."
+    "message": "Mở khóa bằng sinh trắc học không khả dụng do các tệp hệ thống bị cấu hình sai."
   },
   "biometricsStatusHelptextManualSetupNeeded": {
-    "message": "Biometric unlock is unavailable due to misconfigured system files."
+    "message": "Mở khóa bằng sinh trắc học không khả dụng do các tệp hệ thống bị cấu hình sai."
   },
   "biometricsStatusHelptextNotEnabledLocally": {
-    "message": "Biometric unlock is unavailable because it is not enabled for $EMAIL$ in the Bitwarden desktop app.",
+    "message": "Mở khóa bằng sinh trắc học không khả dụng vì nó chưa được kích hoạt cho $EMAIL$ trong ứng dụng Bitwarden trên máy tính.",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3654,100 +3669,100 @@
     }
   },
   "biometricsStatusHelptextUnavailableReasonUnknown": {
-    "message": "Biometric unlock is currently unavailable for an unknown reason."
+    "message": "Mở khóa bằng sinh trắc học hiện không khả dụng vì lý do chưa rõ."
   },
   "itemDetails": {
-    "message": "Item details"
+    "message": "Chi tiết mục"
   },
   "itemName": {
-    "message": "Item name"
+    "message": "Tên mục"
   },
   "loginCredentials": {
-    "message": "Login credentials"
+    "message": "Thông tin đăng nhập"
   },
   "additionalOptions": {
-    "message": "Additional options"
+    "message": "Tùy chọn bổ sung"
   },
   "itemHistory": {
-    "message": "Item history"
+    "message": "Lịch sử mục"
   },
   "lastEdited": {
-    "message": "Last edited"
+    "message": "Chỉnh sửa lần cuối"
   },
   "upload": {
-    "message": "Upload"
+    "message": "Tải lên"
   },
   "authorize": {
-    "message": "Authorize"
+    "message": "Uỷ quyền"
   },
   "deny": {
-    "message": "Deny"
+    "message": "Từ chối"
   },
   "sshkeyApprovalTitle": {
-    "message": "Confirm SSH key usage"
+    "message": "Xác nhận việc sử dụng khóa SSH"
   },
   "agentForwardingWarningTitle": {
-    "message": "Warning: Agent Forwarding"
+    "message": "Cảnh báo: Chuyển tiếp tác nhân"
   },
   "agentForwardingWarningText": {
-    "message": "This request comes from a remote device that you are logged into"
+    "message": "Yêu cầu này đến từ một thiết bị từ xa mà bạn đang đăng nhập vào"
   },
   "sshkeyApprovalMessageInfix": {
-    "message": "is requesting access to"
+    "message": "đang yêu cầu quyền truy cập vào"
   },
   "sshkeyApprovalMessageSuffix": {
-    "message": "in order to"
+    "message": "để"
   },
   "sshActionLogin": {
-    "message": "authenticate to a server"
+    "message": "xác thực với máy chủ"
   },
   "sshActionSign": {
-    "message": "sign a message"
+    "message": "ký tên vào tin nhắn"
   },
   "sshActionGitSign": {
-    "message": "sign a git commit"
+    "message": "ký xác nhận một Git commit"
   },
   "unknownApplication": {
-    "message": "An application"
+    "message": "Một ứng dụng"
   },
   "invalidSshKey": {
-    "message": "The SSH key is invalid"
+    "message": "Khóa SSH không hợp lệ"
   },
   "sshKeyTypeUnsupported": {
-    "message": "The SSH key type is not supported"
+    "message": "Loại khóa SSH không được hỗ trợ"
   },
   "importSshKeyFromClipboard": {
-    "message": "Import key from clipboard"
+    "message": "Nhập khóa từ bộ nhớ tạm"
   },
   "sshKeyImported": {
-    "message": "SSH key imported successfully"
+    "message": "Khóa SSH được nhập thành công"
   },
   "fileSavedToDevice": {
-    "message": "File saved to device. Manage from your device downloads."
+    "message": "Tệp đã được lưu vào thiết bị. Quản lý từ phần Tải về trên thiết bị của bạn."
   },
   "allowScreenshots": {
-    "message": "Allow screen capture"
+    "message": "Cho phép chụp màn hình"
   },
   "allowScreenshotsDesc": {
-    "message": "Allow the Bitwarden desktop application to be captured in screenshots and viewed in remote desktop sessions. Disabling this will prevent access on some external displays."
+    "message": "Cho phép chụp ảnh màn hình và truy cập Bitwarden trong các phiên truy cập máy tính từ xa. Nếu tắt tùy chọn này, bạn sẽ không thể xem ứng dụng trên một số màn hình ngoài."
   },
   "confirmWindowStillVisibleTitle": {
-    "message": "Confirm window still visible"
+    "message": "Xác nhận cửa sổ vẫn hiển thị"
   },
   "confirmWindowStillVisibleContent": {
-    "message": "Please confirm that the window is still visible."
+    "message": "Vui lòng xác nhận rằng cửa sổ vẫn còn hiển thị."
   },
   "updateBrowserOrDisableFingerprintDialogTitle": {
-    "message": "Extension update required"
+    "message": "Cần cập nhật tiện ích mở rộng"
   },
   "updateBrowserOrDisableFingerprintDialogMessage": {
-    "message": "The browser extension you are using is out of date. Please update it or disable browser integration fingerprint validation in the desktop app settings."
+    "message": "Phần mở rộng trình duyệt mà bạn đang sử dụng đã lỗi thời. Vui lòng cập nhật nó hoặc tắt tính năng xác thực dấu vân tay tích hợp trình duyệt trong cài đặt ứng dụng máy tính."
   },
   "changeAtRiskPassword": {
-    "message": "Change at-risk password"
+    "message": "Thay đổi mật khẩu có rủi ro"
   },
   "cannotRemoveViewOnlyCollections": {
-    "message": "You cannot remove collections with View only permissions: $COLLECTIONS$",
+    "message": "Bạn không thể xóa các bộ sưu tập với quyền chỉ xem: $COLLECTIONS$",
     "placeholders": {
       "collections": {
         "content": "$1",
@@ -3756,114 +3771,114 @@
     }
   },
   "move": {
-    "message": "Move"
+    "message": "Di chuyển"
   },
   "newFolder": {
-    "message": "New folder"
+    "message": "Thư mục mới"
   },
   "folderName": {
-    "message": "Folder Name"
+    "message": "Tên thư mục"
   },
   "folderHintText": {
-    "message": "Nest a folder by adding the parent folder's name followed by a “/”. Example: Social/Forums"
+    "message": "Tạo một thư mục con bằng cách thêm tên thư mục cha theo sau là dấu “/”. Ví dụ: Social/Forums"
   },
   "sendsTitleNoItems": {
-    "message": "Send sensitive information safely",
+    "message": "Gửi thông tin nhạy cảm một cách an toàn",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendsBodyNoItems": {
-    "message": "Share files and data securely with anyone, on any platform. Your information will remain end-to-end encrypted while limiting exposure.",
+    "message": "Chia sẻ tệp tin và dữ liệu một cách an toàn với bất kỳ ai, trên bất kỳ nền tảng nào. Thông tin của bạn sẽ được mã hóa đầu cuối để hạn chế rủi ro bị lộ.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "generatorNudgeTitle": {
-    "message": "Quickly create passwords"
+    "message": "Tạo mật khẩu nhanh chóng"
   },
   "generatorNudgeBodyOne": {
-    "message": "Easily create strong and unique passwords by clicking on",
+    "message": "Dễ dàng tạo mật khẩu mạnh và duy nhất chỉ trong một cú nhấp chuột",
     "description": "Two part message",
     "example": "Easily create strong and unique passwords by clicking on {icon} to help you keep your logins secure."
   },
   "generatorNudgeBodyTwo": {
-    "message": "to help you keep your logins secure.",
+    "message": "để giúp bạn bảo vệ thông tin đăng nhập của mình.",
     "description": "Two part message",
     "example": "Easily create strong and unique passwords by clicking on {icon} to help you keep your logins secure."
   },
   "generatorNudgeBodyAria": {
-    "message": "Easily create strong and unique passwords by clicking on the Generate password button to help you keep your logins secure.",
+    "message": "Dễ dàng tạo mật khẩu mạnh và duy nhất bằng cách nhấp vào Trình tạo mật khẩu để giúp bạn bảo vệ tài khoản đăng nhập của mình.",
     "description": "Aria label for the body content of the generator nudge"
   },
   "newLoginNudgeTitle": {
-    "message": "Save time with autofill"
+    "message": "Tiết kiệm thời gian với tính năng tự động điền"
   },
   "newLoginNudgeBodyOne": {
-    "message": "Include a",
+    "message": "Bao gồm một",
     "description": "This is in multiple parts to allow for bold text in the middle of the sentence.",
     "example": "Include a Website so this login appears as an autofill suggestion."
   },
   "newLoginNudgeBodyBold": {
-    "message": "Website",
+    "message": "Trang web",
     "description": "This is in multiple parts to allow for bold text in the middle of the sentence.",
     "example": "Include a Website so this login appears as an autofill suggestion."
   },
   "newLoginNudgeBodyTwo": {
-    "message": "so this login appears as an autofill suggestion.",
+    "message": "vì vậy, thông tin đăng nhập này sẽ xuất hiện như đề xuất tự động điền.",
     "description": "This is in multiple parts to allow for bold text in the middle of the sentence.",
     "example": "Include a Website so this login appears as an autofill suggestion."
   },
   "newCardNudgeTitle": {
-    "message": "Seamless online checkout"
+    "message": "Thanh toán trực tuyến không gián đoạn"
   },
   "newCardNudgeBody": {
-    "message": "With cards, easily autofill payment forms securely and accurately."
+    "message": "Với thẻ, dễ dàng tự động điền các biểu mẫu thanh toán an toàn và chính xác."
   },
   "newIdentityNudgeTitle": {
-    "message": "Simplify creating accounts"
+    "message": "Đơn giản hóa việc tạo tài khoản"
   },
   "newIdentityNudgeBody": {
-    "message": "With identities, quickly autofill long registration or contact forms."
+    "message": "Với danh tính, nhanh chóng tự động điền các biểu mẫu đăng ký hoặc liên hệ dài."
   },
   "newNoteNudgeTitle": {
-    "message": "Keep your sensitive data safe"
+    "message": "Giữ dữ liệu nhạy cảm của bạn an toàn"
   },
   "newNoteNudgeBody": {
-    "message": "With notes, securely store sensitive data like banking or insurance details."
+    "message": "Với ghi chú, lưu trữ an toàn dữ liệu nhạy cảm như thông tin ngân hàng hoặc bảo hiểm."
   },
   "newSshNudgeTitle": {
-    "message": "Developer-friendly SSH access"
+    "message": "Truy cập SSH thân thiện với nhà phát triển"
   },
   "newSshNudgeBodyOne": {
-    "message": "Store your keys and connect with the SSH agent for fast, encrypted authentication.",
+    "message": "Lưu trữ khóa của bạn và kết nối với trình quản lý khóa SSH để xác thực nhanh chóng và được mã hóa.",
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
   "newSshNudgeBodyTwo": {
-    "message": "Learn more about SSH agent",
+    "message": "Tìm hiểu thêm về SSH agent",
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
   "assignToCollections": {
-    "message": "Assign to collections"
+    "message": "Gán vào bộ sưu tập"
   },
   "assignToTheseCollections": {
-    "message": "Assign to these collections"
+    "message": "Gán vào các bộ sưu tập này"
   },
   "bulkCollectionAssignmentDialogDescriptionSingular": {
-    "message": "Only organization members with access to these collections will be able to see the item."
+    "message": "Chỉ những thành viên của tổ chức có quyền truy cập vào các bộ sưu tập này mới có thể xem mục này."
   },
   "bulkCollectionAssignmentDialogDescriptionPlural": {
-    "message": "Only organization members with access to these collections will be able to see the items."
+    "message": "Chỉ những thành viên của tổ chức có quyền truy cập vào các bộ sưu tập này mới có thể xem các mục này."
   },
   "noCollectionsAssigned": {
-    "message": "No collections have been assigned"
+    "message": "Chưa có bộ sưu tập nào được gán"
   },
   "assign": {
-    "message": "Assign"
+    "message": "Gán"
   },
   "bulkCollectionAssignmentDialogDescription": {
-    "message": "Only organization members with access to these collections will be able to see the items."
+    "message": "Chỉ những thành viên của tổ chức có quyền truy cập vào các bộ sưu tập này mới có thể xem các mục này."
   },
   "bulkCollectionAssignmentWarning": {
-    "message": "You have selected $TOTAL_COUNT$ items. You cannot update $READONLY_COUNT$ of the items because you do not have edit permissions.",
+    "message": "Bạn đã chọn $TOTAL_COUNT$ mục. Bạn không thể cập nhật $READONLY_COUNT$ mục vì bạn không có quyền chỉnh sửa.",
     "placeholders": {
       "total_count": {
         "content": "$1",
@@ -3875,10 +3890,10 @@
     }
   },
   "selectCollectionsToAssign": {
-    "message": "Select collections to assign"
+    "message": "Chọn bộ sưu tập để gán"
   },
   "personalItemsTransferWarning": {
-    "message": "$PERSONAL_ITEMS_COUNT$ will be permanently transferred to the selected organization. You will no longer own these items.",
+    "message": "$PERSONAL_ITEMS_COUNT$ mục sẽ được chuyển vĩnh viễn đến tổ chức đã chọn. Bạn sẽ không còn sở hữu các mục này nữa.",
     "placeholders": {
       "personal_items_count": {
         "content": "$1",
@@ -3887,7 +3902,7 @@
     }
   },
   "personalItemsWithOrgTransferWarning": {
-    "message": "$PERSONAL_ITEMS_COUNT$ will be permanently transferred to $ORG$. You will no longer own these items.",
+    "message": "$PERSONAL_ITEMS_COUNT$ mục sẽ được chuyển vĩnh viễn đến $ORG$. Bạn sẽ không còn sở hữu các mục này nữa.",
     "placeholders": {
       "personal_items_count": {
         "content": "$1",
@@ -3900,10 +3915,10 @@
     }
   },
   "personalItemTransferWarningSingular": {
-    "message": "1 item will be permanently transferred to the selected organization. You will no longer own this item."
+    "message": "1 mục sẽ được chuyển vĩnh viễn đến tổ chức đã chọn. Bạn sẽ không còn sở hữu mục này nữa."
   },
   "personalItemWithOrgTransferWarningSingular": {
-    "message": "1 item will be permanently transferred to $ORG$. You will no longer own this item.",
+    "message": "1 mục sẽ được chuyển vĩnh viễn đến $ORG$. Bạn sẽ không còn sở hữu mục này nữa.",
     "placeholders": {
       "org": {
         "content": "$1",
@@ -3912,13 +3927,13 @@
     }
   },
   "successfullyAssignedCollections": {
-    "message": "Successfully assigned collections"
+    "message": "Đã gán vào bộ sưu tập thành công"
   },
   "nothingSelected": {
-    "message": "You have not selected anything."
+    "message": "Bạn chưa chọn gì."
   },
   "itemsMovedToOrg": {
-    "message": "Items moved to $ORGNAME$",
+    "message": "Các mục đã được chuyển tới $ORGNAME$",
     "placeholders": {
       "orgname": {
         "content": "$1",
@@ -3927,7 +3942,7 @@
     }
   },
   "itemMovedToOrg": {
-    "message": "Item moved to $ORGNAME$",
+    "message": "Mục đã được chuyển tới $ORGNAME$",
     "placeholders": {
       "orgname": {
         "content": "$1",
@@ -3936,7 +3951,7 @@
     }
   },
   "movedItemsToOrg": {
-    "message": "Selected items moved to $ORGNAME$",
+    "message": "Đã chuyển các mục được chọn đến $ORGNAME$",
     "placeholders": {
       "orgname": {
         "content": "$1",
diff --git a/apps/desktop/src/locales/zh_CN/messages.json b/apps/desktop/src/locales/zh_CN/messages.json
index d9272844104..034a615019c 100644
--- a/apps/desktop/src/locales/zh_CN/messages.json
+++ b/apps/desktop/src/locales/zh_CN/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "您的主密码不符合某一项或多项组织策略要求。要访问密码库，必须立即更新您的主密码。继续操作将使您退出当前会话，并要求您重新登录。其他设备上的活动会话可能会继续保持活动状态长达一小时。"
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "您的组织禁用了信任设备加密。要访问您的密码库，请设置一个主密码。"
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "请求管理员批准"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "区域"
   },
diff --git a/apps/desktop/src/locales/zh_TW/messages.json b/apps/desktop/src/locales/zh_TW/messages.json
index 2d34071f587..c09172ec498 100644
--- a/apps/desktop/src/locales/zh_TW/messages.json
+++ b/apps/desktop/src/locales/zh_TW/messages.json
@@ -2407,6 +2407,15 @@
   "updateWeakMasterPasswordWarning": {
     "message": "您的主密碼不符合一個或多個組織政策規定。您必須立即更新您的主密碼才能存取密碼庫。進行此動作將登出您目前的工作階段，需要您重新登入。其他裝置上的工作階段可能持續長達一小時。"
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Your organization has disabled trusted device encryption. Please set a master password to access your vault."
   },
@@ -3144,6 +3153,12 @@
   "requestAdminApproval": {
     "message": "要求管理員核准"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "region": {
     "message": "區域"
   },

From 0c541719d7acf9ae67c4f8183b40f833b78eda43 Mon Sep 17 00:00:00 2001
From: "bw-ghapp[bot]" <178206702+bw-ghapp[bot]@users.noreply.github.com>
Date: Fri, 11 Jul 2025 13:06:48 +0000
Subject: [PATCH 108/239] Autosync the updated translations (#15579)

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>
---
 apps/browser/src/_locales/az/messages.json    | 10 +++++-----
 apps/browser/src/_locales/hr/messages.json    |  6 +++---
 apps/browser/src/_locales/pt_PT/messages.json |  6 +++---
 apps/browser/src/_locales/sv/messages.json    |  4 ++--
 apps/browser/src/_locales/zh_CN/messages.json |  6 +++---
 5 files changed, 16 insertions(+), 16 deletions(-)

diff --git a/apps/browser/src/_locales/az/messages.json b/apps/browser/src/_locales/az/messages.json
index 09198824d83..64fa77c8683 100644
--- a/apps/browser/src/_locales/az/messages.json
+++ b/apps/browser/src/_locales/az/messages.json
@@ -1174,10 +1174,10 @@
     "description": "Detailed error message shown when saving login details fails."
   },
   "changePasswordWarning": {
-    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+    "message": "Parolunuzu dəyişdirdikdən sonra yeni parolunuzla giriş etməli olacaqsınız. Digər cihazlardakı aktiv seanslar bir saat ərzində çıxış sonlandırılacaq."
   },
   "accountRecoveryUpdateMasterPasswordSubtitle": {
-    "message": "Change your master password to complete account recovery."
+    "message": "Hesabın geri qaytarılması prosesini tamamlamaq üçün ana parolunuzu dəyişdirin."
   },
   "enableChangedPasswordNotification": {
     "message": "Mövcud girişin güncəllənməsini soruş"
@@ -3461,7 +3461,7 @@
     "message": "Tələb göndərildi"
   },
   "masterPasswordChanged": {
-    "message": "Master password saved"
+    "message": "Ana parol saxlanıldı"
   },
   "exposedMasterPassword": {
     "message": "İfşa olunmuş ana parol"
@@ -3578,10 +3578,10 @@
     "message": "Admin təsdiqini tələb et"
   },
   "unableToCompleteLogin": {
-    "message": "Unable to complete login"
+    "message": "Giriş prosesi tamamlana bilmir"
   },
   "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
-    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+    "message": "Güvəndiyiniz bir cihazda giriş etməli və ya inzibatçınızdan sizə bir parol təyin etməsini xahiş etməlisiniz."
   },
   "ssoIdentifierRequired": {
     "message": "Təşkilat SSO identifikatoru tələb olunur."
diff --git a/apps/browser/src/_locales/hr/messages.json b/apps/browser/src/_locales/hr/messages.json
index bbf82ee2915..6434a09bcfb 100644
--- a/apps/browser/src/_locales/hr/messages.json
+++ b/apps/browser/src/_locales/hr/messages.json
@@ -1174,10 +1174,10 @@
     "description": "Detailed error message shown when saving login details fails."
   },
   "changePasswordWarning": {
-    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+    "message": "Nakon promjene lozinke, moraš se prijaviti s novom lozinkom. Aktivne sesije na drugim uređajima bit će odjavljene u roku od jednog sata."
   },
   "accountRecoveryUpdateMasterPasswordSubtitle": {
-    "message": "Change your master password to complete account recovery."
+    "message": "Promijeni svoju glavnu lozinku za dovršetak oporavka računa."
   },
   "enableChangedPasswordNotification": {
     "message": "Upitaj za ažuriranje trenutne prijave"
@@ -3461,7 +3461,7 @@
     "message": "Zahtjev poslan"
   },
   "masterPasswordChanged": {
-    "message": "Master password saved"
+    "message": "Glavna lozinka promijenjena"
   },
   "exposedMasterPassword": {
     "message": "Ukradena glavna lozinka"
diff --git a/apps/browser/src/_locales/pt_PT/messages.json b/apps/browser/src/_locales/pt_PT/messages.json
index cc435eb4cd7..8f06014b6b2 100644
--- a/apps/browser/src/_locales/pt_PT/messages.json
+++ b/apps/browser/src/_locales/pt_PT/messages.json
@@ -1174,10 +1174,10 @@
     "description": "Detailed error message shown when saving login details fails."
   },
   "changePasswordWarning": {
-    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+    "message": "Depois de ter alterado a sua palavra-passe, é necessário iniciar sessão com a sua nova palavra-passe. As sessões ativas noutros dispositivos serão interrompidas dentro de uma hora."
   },
   "accountRecoveryUpdateMasterPasswordSubtitle": {
-    "message": "Change your master password to complete account recovery."
+    "message": "Altere a sua palavra-passe mestra para concluir a recuperação da conta."
   },
   "enableChangedPasswordNotification": {
     "message": "Pedir para atualizar credencial existente"
@@ -3461,7 +3461,7 @@
     "message": "Pedido enviado"
   },
   "masterPasswordChanged": {
-    "message": "Master password saved"
+    "message": "Palavra-passe mestra guardada"
   },
   "exposedMasterPassword": {
     "message": "Palavra-passe mestra exposta"
diff --git a/apps/browser/src/_locales/sv/messages.json b/apps/browser/src/_locales/sv/messages.json
index 16b927ffd4c..3fdf1752aa1 100644
--- a/apps/browser/src/_locales/sv/messages.json
+++ b/apps/browser/src/_locales/sv/messages.json
@@ -1141,7 +1141,7 @@
     "description": "Message displayed when login details are successfully updated."
   },
   "loginUpdateTaskSuccess": {
-    "message": "Bra jobbat! Du tog stegen för att göra dig och $ORGANISATION$ säkrare.",
+    "message": "Bra jobbat! Du tog stegen för att göra dig och $ORGANIZATION$ säkrare.",
     "placeholders": {
       "organization": {
         "content": "$1"
@@ -3121,7 +3121,7 @@
     "message": "Exportera organisationsvalv"
   },
   "exportingOrganizationVaultDesc": {
-    "message": "Endast det organisationsvalv som är associerat med $ORGANISATION$ exporteras. Objekt i enskilda valv eller andra organisationer kommer inte att inkluderas.",
+    "message": "Endast det organisationsvalv som är associerat med $ORGANIZATION$ exporteras. Objekt i enskilda valv eller andra organisationer kommer inte att inkluderas.",
     "placeholders": {
       "organization": {
         "content": "$1",
diff --git a/apps/browser/src/_locales/zh_CN/messages.json b/apps/browser/src/_locales/zh_CN/messages.json
index aeb3640b683..2bcd7935d47 100644
--- a/apps/browser/src/_locales/zh_CN/messages.json
+++ b/apps/browser/src/_locales/zh_CN/messages.json
@@ -1174,10 +1174,10 @@
     "description": "Detailed error message shown when saving login details fails."
   },
   "changePasswordWarning": {
-    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+    "message": "更改密码后，您需要使用新密码登录。 在其他设备上的活动会话将在一小时内注销。"
   },
   "accountRecoveryUpdateMasterPasswordSubtitle": {
-    "message": "Change your master password to complete account recovery."
+    "message": "更改您的主密码以完成账户恢复。"
   },
   "enableChangedPasswordNotification": {
     "message": "询问更新现有的登录"
@@ -3461,7 +3461,7 @@
     "message": "请求已发送"
   },
   "masterPasswordChanged": {
-    "message": "Master password saved"
+    "message": "主密码已保存"
   },
   "exposedMasterPassword": {
     "message": "已暴露的主密码"

From f376508913a67ba60a865101b75669e99d29fcd6 Mon Sep 17 00:00:00 2001
From: "bw-ghapp[bot]" <178206702+bw-ghapp[bot]@users.noreply.github.com>
Date: Fri, 11 Jul 2025 13:08:49 +0000
Subject: [PATCH 109/239] Autosync the updated translations (#15578)

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>
---
 apps/desktop/src/locales/az/messages.json    | 10 +++++-----
 apps/desktop/src/locales/en_GB/messages.json |  2 +-
 apps/desktop/src/locales/en_IN/messages.json |  2 +-
 apps/desktop/src/locales/hr/messages.json    |  6 +++---
 apps/desktop/src/locales/pt_PT/messages.json |  6 +++---
 apps/desktop/src/locales/zh_CN/messages.json |  6 +++---
 6 files changed, 16 insertions(+), 16 deletions(-)

diff --git a/apps/desktop/src/locales/az/messages.json b/apps/desktop/src/locales/az/messages.json
index 7ec0247a234..b0dcd4802db 100644
--- a/apps/desktop/src/locales/az/messages.json
+++ b/apps/desktop/src/locales/az/messages.json
@@ -2408,13 +2408,13 @@
     "message": "Ana parolunuz təşkilatınızdakı siyasətlərdən birinə və ya bir neçəsinə uyğun gəlmir. Seyfə müraciət üçün ana parolunuzu indi güncəlləməlisiniz. Davam etsəniz, hazırkı seansdan çıxış etmiş və təkrar giriş etməli olacaqsınız. Digər cihazlardakı aktiv seanslar bir saata qədər aktiv qalmağa davam edə bilər."
   },
   "changePasswordWarning": {
-    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+    "message": "Parolunuzu dəyişdirdikdən sonra yeni parolunuzla giriş etməli olacaqsınız. Digər cihazlardakı aktiv seanslar bir saat ərzində çıxış sonlandırılacaq."
   },
   "accountRecoveryUpdateMasterPasswordSubtitle": {
-    "message": "Change your master password to complete account recovery."
+    "message": "Hesabın geri qaytarılması prosesini tamamlamaq üçün ana parolunuzu dəyişdirin."
   },
   "updateMasterPasswordSubtitle": {
-    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+    "message": "Ana parolunuz bu təşkilatın tələblərinə cavab vermir. Davam etmək üçün ana parolunuzu dəyişdirin."
   },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Təşkilatınız, güvənli cihaz şifrələməsini sıradan çıxartdı. Seyfinizə müraciət etmək üçün lütfən ana parol təyin edin."
@@ -3154,10 +3154,10 @@
     "message": "Admin təsdiqini tələb et"
   },
   "unableToCompleteLogin": {
-    "message": "Unable to complete login"
+    "message": "Giriş prosesi tamamlana bilmir"
   },
   "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
-    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+    "message": "Güvəndiyiniz bir cihazda giriş etməli və ya inzibatçınızdan sizə bir parol təyin etməsini xahiş etməlisiniz."
   },
   "region": {
     "message": "Bölgə"
diff --git a/apps/desktop/src/locales/en_GB/messages.json b/apps/desktop/src/locales/en_GB/messages.json
index 4aacce93079..a8161286c80 100644
--- a/apps/desktop/src/locales/en_GB/messages.json
+++ b/apps/desktop/src/locales/en_GB/messages.json
@@ -2414,7 +2414,7 @@
     "message": "Change your master password to complete account recovery."
   },
   "updateMasterPasswordSubtitle": {
-    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+    "message": "Your master password does not meet this organisation’s requirements. Change your master password to continue."
   },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Your organisation has disabled trusted device encryption. Please set a master password to access your vault."
diff --git a/apps/desktop/src/locales/en_IN/messages.json b/apps/desktop/src/locales/en_IN/messages.json
index c1896ae6339..9e6c8240e78 100644
--- a/apps/desktop/src/locales/en_IN/messages.json
+++ b/apps/desktop/src/locales/en_IN/messages.json
@@ -2414,7 +2414,7 @@
     "message": "Change your master password to complete account recovery."
   },
   "updateMasterPasswordSubtitle": {
-    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+    "message": "Your master password does not meet this organisation’s requirements. Change your master password to continue."
   },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Your organisation has disabled trusted device encryption. Please set a master password to access your vault."
diff --git a/apps/desktop/src/locales/hr/messages.json b/apps/desktop/src/locales/hr/messages.json
index 4c5c925916b..df1a5fcc967 100644
--- a/apps/desktop/src/locales/hr/messages.json
+++ b/apps/desktop/src/locales/hr/messages.json
@@ -2408,13 +2408,13 @@
     "message": "Tvoja glavna lozinka ne zadovoljava pravila ove organizacije. Za pristup trezoru moraš odmah ažurirati svoju glavnu lozinku. Ako nastaviš, odjaviti ćeš se iz trenutne sesije te ćeš se morati ponovno prijaviti. Aktivne sesije na drugim uređajima mogu ostati aktivne do jedan sat."
   },
   "changePasswordWarning": {
-    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+    "message": "Nakon promjene lozinke, moraš se prijaviti s novom lozinkom. Aktivne sesije na drugim uređajima bit će odjavljene u roku od jednog sata."
   },
   "accountRecoveryUpdateMasterPasswordSubtitle": {
-    "message": "Change your master password to complete account recovery."
+    "message": "Promijeni svoju glavnu lozinku za dovršetak oporavka računa."
   },
   "updateMasterPasswordSubtitle": {
-    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+    "message": "Tvoja glavna lozinka ne ispunjava zahtjeve ove organizacije. Promijeni glavnu lozinku za nastavak."
   },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Tvoja je organizacija onemogućila šifriranje pouzdanog uređaja. Postavi glavnu lozinku za pristup svom trezoru."
diff --git a/apps/desktop/src/locales/pt_PT/messages.json b/apps/desktop/src/locales/pt_PT/messages.json
index 92923cded09..e49c14e6f80 100644
--- a/apps/desktop/src/locales/pt_PT/messages.json
+++ b/apps/desktop/src/locales/pt_PT/messages.json
@@ -2408,13 +2408,13 @@
     "message": "A sua palavra-passe mestra não cumpre uma ou mais políticas da sua organização. Para aceder ao cofre, tem de atualizar a sua palavra-passe mestra agora. Ao prosseguir, terminará a sua sessão atual e terá de iniciar sessão novamente. As sessões ativas noutros dispositivos poderão continuar ativas até uma hora."
   },
   "changePasswordWarning": {
-    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+    "message": "Depois de ter alterado a sua palavra-passe, é necessário iniciar sessão com a sua nova palavra-passe. As sessões ativas noutros dispositivos serão interrompidas dentro de uma hora."
   },
   "accountRecoveryUpdateMasterPasswordSubtitle": {
-    "message": "Change your master password to complete account recovery."
+    "message": "Altere a sua palavra-passe mestra para concluir a recuperação da conta."
   },
   "updateMasterPasswordSubtitle": {
-    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+    "message": "A sua palavra-passe mestra não cumpre os requisitos desta organização. Altere a sua palavra-passe mestra para continuar."
   },
   "tdeDisabledMasterPasswordRequired": {
     "message": "A sua organização desativou a encriptação de dispositivos fiáveis. Por favor, defina uma palavra-passe mestra para aceder ao seu cofre."
diff --git a/apps/desktop/src/locales/zh_CN/messages.json b/apps/desktop/src/locales/zh_CN/messages.json
index 034a615019c..a2c6e4a052c 100644
--- a/apps/desktop/src/locales/zh_CN/messages.json
+++ b/apps/desktop/src/locales/zh_CN/messages.json
@@ -2408,13 +2408,13 @@
     "message": "您的主密码不符合某一项或多项组织策略要求。要访问密码库，必须立即更新您的主密码。继续操作将使您退出当前会话，并要求您重新登录。其他设备上的活动会话可能会继续保持活动状态长达一小时。"
   },
   "changePasswordWarning": {
-    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+    "message": "更改密码后，您需要使用新密码登录。 在其他设备上的活动会话将在一小时内注销。"
   },
   "accountRecoveryUpdateMasterPasswordSubtitle": {
-    "message": "Change your master password to complete account recovery."
+    "message": "更改您的主密码以完成账户恢复。"
   },
   "updateMasterPasswordSubtitle": {
-    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+    "message": "您的主密码不符合本组织的要求。更改您的主密码以继续。"
   },
   "tdeDisabledMasterPasswordRequired": {
     "message": "您的组织禁用了信任设备加密。要访问您的密码库，请设置一个主密码。"

From 8fa075d12201a83eda586c5de0d300cce710a989 Mon Sep 17 00:00:00 2001
From: "bw-ghapp[bot]" <178206702+bw-ghapp[bot]@users.noreply.github.com>
Date: Fri, 11 Jul 2025 15:15:03 +0200
Subject: [PATCH 110/239] Autosync the updated translations (#15573)

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>
---
 apps/web/src/locales/af/messages.json    |  75 ++-
 apps/web/src/locales/ar/messages.json    |  75 ++-
 apps/web/src/locales/az/messages.json    | 121 +++--
 apps/web/src/locales/be/messages.json    |  75 ++-
 apps/web/src/locales/bg/messages.json    |  75 ++-
 apps/web/src/locales/bn/messages.json    |  75 ++-
 apps/web/src/locales/bs/messages.json    |  75 ++-
 apps/web/src/locales/ca/messages.json    |  75 ++-
 apps/web/src/locales/cs/messages.json    |  75 ++-
 apps/web/src/locales/cy/messages.json    |  75 ++-
 apps/web/src/locales/da/messages.json    |  75 ++-
 apps/web/src/locales/de/messages.json    |  75 ++-
 apps/web/src/locales/el/messages.json    |  75 ++-
 apps/web/src/locales/en_GB/messages.json |  75 ++-
 apps/web/src/locales/en_IN/messages.json |  75 ++-
 apps/web/src/locales/eo/messages.json    |  75 ++-
 apps/web/src/locales/es/messages.json    | 205 +++++---
 apps/web/src/locales/et/messages.json    |  75 ++-
 apps/web/src/locales/eu/messages.json    |  75 ++-
 apps/web/src/locales/fa/messages.json    | 145 ++++--
 apps/web/src/locales/fi/messages.json    |  75 ++-
 apps/web/src/locales/fil/messages.json   |  75 ++-
 apps/web/src/locales/fr/messages.json    |  75 ++-
 apps/web/src/locales/gl/messages.json    |  75 ++-
 apps/web/src/locales/he/messages.json    |  75 ++-
 apps/web/src/locales/hi/messages.json    |  75 ++-
 apps/web/src/locales/hr/messages.json    | 111 ++++-
 apps/web/src/locales/hu/messages.json    |  95 +++-
 apps/web/src/locales/id/messages.json    |  75 ++-
 apps/web/src/locales/it/messages.json    |  75 ++-
 apps/web/src/locales/ja/messages.json    |  75 ++-
 apps/web/src/locales/ka/messages.json    |  75 ++-
 apps/web/src/locales/km/messages.json    |  75 ++-
 apps/web/src/locales/kn/messages.json    |  75 ++-
 apps/web/src/locales/ko/messages.json    |  75 ++-
 apps/web/src/locales/lv/messages.json    | 119 +++--
 apps/web/src/locales/ml/messages.json    |  75 ++-
 apps/web/src/locales/mr/messages.json    |  75 ++-
 apps/web/src/locales/my/messages.json    |  75 ++-
 apps/web/src/locales/nb/messages.json    |  75 ++-
 apps/web/src/locales/ne/messages.json    |  75 ++-
 apps/web/src/locales/nl/messages.json    |  75 ++-
 apps/web/src/locales/nn/messages.json    |  75 ++-
 apps/web/src/locales/or/messages.json    |  75 ++-
 apps/web/src/locales/pl/messages.json    | 119 +++--
 apps/web/src/locales/pt_BR/messages.json |  75 ++-
 apps/web/src/locales/pt_PT/messages.json | 103 +++-
 apps/web/src/locales/ro/messages.json    |  75 ++-
 apps/web/src/locales/ru/messages.json    |  75 ++-
 apps/web/src/locales/si/messages.json    |  75 ++-
 apps/web/src/locales/sk/messages.json    |  75 ++-
 apps/web/src/locales/sl/messages.json    |  75 ++-
 apps/web/src/locales/sr_CS/messages.json |  75 ++-
 apps/web/src/locales/sr_CY/messages.json |  75 ++-
 apps/web/src/locales/sv/messages.json    | 273 +++++++----
 apps/web/src/locales/te/messages.json    |  75 ++-
 apps/web/src/locales/th/messages.json    |  75 ++-
 apps/web/src/locales/tr/messages.json    |  75 ++-
 apps/web/src/locales/uk/messages.json    | 145 ++++--
 apps/web/src/locales/vi/messages.json    | 587 +++++++++++++----------
 apps/web/src/locales/zh_CN/messages.json |  79 ++-
 apps/web/src/locales/zh_TW/messages.json |  75 ++-
 62 files changed, 4879 insertions(+), 973 deletions(-)

diff --git a/apps/web/src/locales/af/messages.json b/apps/web/src/locales/af/messages.json
index 24e31fd32b2..d5bbed4f6e3 100644
--- a/apps/web/src/locales/af/messages.json
+++ b/apps/web/src/locales/af/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "Ek"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "myVault": {
     "message": "My kluis"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "E-pos is verander"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Verstekversameling"
   },
-  "myItems": {
-    "message": "My Items"
-  },
   "getHelp": {
     "message": "Kry Hulp"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Werk hoofwagwoord by"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "U hoofwagwoord is onlangs deur ’n administrateur in u organisasie verander. Om toegang tot u kluis te verkry moet u u hoofwagwoord nóú bywerk. Deur voort te gaan word u uit u huidige sessie geteken, waarna u weer sal moet aanteken. Aktiewe sessies op ander toestelle kan vir tot ’n uur steeds aktief bly."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "trustedDeviceEncryption": {
     "message": "Trusted device encryption"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Billing address required to add credit.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/ar/messages.json b/apps/web/src/locales/ar/messages.json
index cf29cc19d55..81da2ebd67a 100644
--- a/apps/web/src/locales/ar/messages.json
+++ b/apps/web/src/locales/ar/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "أنا"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "myVault": {
     "message": "خزانتي"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "سيتم تسجيل خروجك من الجلسة الحالية، مما يتطلب منك تسجيل الدخول مرة أخرى. وقد تظل الجلسات النشطة على أجهزة أخرى نشطة لمدة تصل إلى ساعة واحدة."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "تم تغيير البريد الإلكتروني"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Default collection"
   },
-  "myItems": {
-    "message": "My Items"
-  },
   "getHelp": {
     "message": "المساعدة"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Update master password"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "Your master password was recently changed by an administrator in your organization. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "trustedDeviceEncryption": {
     "message": "Trusted device encryption"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Billing address required to add credit.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/az/messages.json b/apps/web/src/locales/az/messages.json
index 6f32a2704db..5ea029aa886 100644
--- a/apps/web/src/locales/az/messages.json
+++ b/apps/web/src/locales/az/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "Mən"
   },
+  "myItems": {
+    "message": "Elementlərim"
+  },
   "myVault": {
     "message": "Seyfim"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "Davam etsəniz, hazırkı seansınız bitəcək, təkrar giriş etməyiniz tələb olunacaq. Digər cihazlardakı aktiv seanslar, bir saata qədər aktiv qalmağa davam edə bilər."
   },
+  "changePasswordWarning": {
+    "message": "Parolunuzu dəyişdirdikdən sonra yeni parolunuzla giriş etməli olacaqsınız. Digər cihazlardakı aktiv seanslar bir saat ərzində çıxış sonlandırılacaq."
+  },
   "emailChanged": {
     "message": "E-poçt dəyişdirildi"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "İlkin kolleksiya"
   },
-  "myItems": {
-    "message": "Elementlərim"
-  },
   "getHelp": {
     "message": "Kömək alın"
   },
@@ -6065,7 +6068,7 @@
     "message": "Əlavə et"
   },
   "masterPasswordSuccessfullySet": {
-    "message": "Master password successfully set"
+    "message": "Ana parol uğurla təyin edildi"
   },
   "updatedMasterPassword": {
     "message": "Güncəllənmiş ana parol"
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Ana parolu güncəllə"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Hesabın geri qaytarılması prosesini tamamlamaq üçün ana parolunuzu dəyişdirin."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Ana parolunuz bu təşkilatın tələblərinə cavab vermir. Davam etmək üçün ana parolunuzu dəyişdirin."
+  },
   "updateMasterPasswordWarning": {
     "message": "Ana parolunuz təzəlikcə təşkilatınızdakı bir administrator tərəfindən dəyişdirildi. Seyfə müraciət üçün Ana parolunuzu indi güncəlləməlisiniz. Davam etsəniz, hazırkı seansdan çıxış etmiş və təkrar giriş etməli olacaqsınız. Digər cihazlardakı aktiv seanslar bir saata qədər aktiv qalmağa davam edə bilər."
   },
@@ -8237,7 +8246,7 @@
     "message": "Daxilə köçürmə faylını oxumağa çalışarkən xəta baş verdi"
   },
   "accessedSecretWithId": {
-    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "message": "$SECRET_ID$ identifikatoruna sahib bir sirrə müraciət edildi.",
     "placeholders": {
       "secret_id": {
         "content": "$1",
@@ -8255,7 +8264,7 @@
     }
   },
   "editedSecretWithId": {
-    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "message": "$SECRET_ID$ identifikatoruna sahib bir sirrə düzəliş edildi.",
     "placeholders": {
       "secret_id": {
         "content": "$1",
@@ -8264,7 +8273,7 @@
     }
   },
   "deletedSecretWithId": {
-    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "message": "$SECRET_ID$ identifikatoruna sahib bir sirr silindi.",
     "placeholders": {
       "secret_id": {
         "content": "$1",
@@ -8273,7 +8282,7 @@
     }
   },
   "createdSecretWithId": {
-    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "message": "$SECRET_ID$ identifikatoruna sahib yeni bir sirr yaradıldı.",
     "placeholders": {
       "secret_id": {
         "content": "$1",
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Admin təsdiqini tələb et"
   },
+  "unableToCompleteLogin": {
+    "message": "Giriş prosesi tamamlana bilmir"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "Güvəndiyiniz bir cihazda giriş etməli və ya inzibatçınızdan sizə bir parol təyin etməsini xahiş etməlisiniz."
+  },
   "trustedDeviceEncryption": {
     "message": "Güvənli cihaz şifrələməsi"
   },
@@ -8908,19 +8923,19 @@
     "description": "Label indicating the most common import formats"
   },
   "uriMatchDefaultStrategyHint": {
-    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "message": "URI uyuşma aşkarlaması, Bitwarden-in avto-doldurma təkliflərini necə müəyyən etdiyini göstərir.",
     "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
   },
   "regExAdvancedOptionWarning": {
-    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "message": "\"Müntəzəm ifadə\", kimlik məlumatlarının ifşa olunma riskini artıran qabaqcıl bir seçimdir.",
     "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
   },
   "startsWithAdvancedOptionWarning": {
-    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "message": "\"İlə başlayır\", kimlik məlumatlarının ifşa olunma riskini artıran qabaqcıl bir seçimdir.",
     "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
   },
   "uriMatchWarningDialogLink": {
-    "message": "More about match detection",
+    "message": "Uyuşma aşkarlaması barədə daha çox",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
   "maintainYourSubscription": {
@@ -10714,49 +10729,49 @@
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
   "setupExtensionPageTitle": {
-    "message": "Autofill your passwords securely with one click"
+    "message": "Parollarınızı tək bir kliklə güvənli şəkildə avto-doldurun"
   },
   "setupExtensionPageDescription": {
-    "message": "Get the Bitwarden browser extension and start autofilling today"
+    "message": "Bitwarden brauzer uzantısını əldə edin və bugün avto-doldurmağa başlayın"
   },
   "getTheExtension": {
-    "message": "Get the extension"
+    "message": "Uzantını əldə et"
   },
   "addItLater": {
-    "message": "Add it later"
+    "message": "Daha sonra əlavə et"
   },
   "cannotAutofillPasswordsWithoutExtensionTitle": {
-    "message": "You can't autofill passwords without the browser extension"
+    "message": "Brauzer uzantısı olmadan parolları avto-doldura bilməzsiniz"
   },
   "cannotAutofillPasswordsWithoutExtensionDesc": {
-    "message": "Are you sure you don't want to add the extension now?"
+    "message": "Uzantını indi əlavə etmək istəmədiyinizə əminsiniz?"
   },
   "skipToWebApp": {
-    "message": "Skip to web app"
+    "message": "Veb tətbiqinə keç"
   },
   "bitwardenExtensionInstalled": {
-    "message": "Bitwarden extension installed!"
+    "message": "Bitwarden uzantısı quraşdırıldı!"
   },
   "openExtensionToAutofill": {
-    "message": "Open the extension to log in and start autofilling."
+    "message": "Giriş etmək üçün uzantını aç və avto-doldurmağa başla."
   },
   "openBitwardenExtension": {
-    "message": "Open Bitwarden extension"
+    "message": "Bitwarden uzantısını aç"
   },
   "gettingStartedWithBitwardenPart1": {
-    "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "message": "Bitwarden-i öyrənmək üçün ziyarət edin:",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
-    "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "message": "Öyrənmə Mərkəzi",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
-    "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "message": "Kömək Mərkəzi",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
-    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+    "message": "Bitwarden brauzer uzantısı ilə, asanlıqla yeni giriş məlumatlarını yarada, saxlanılmış giriş məlumatlarınıza birbaşa brauzerin alət çubuğundan müraciət edə və Bitwarden avto-doldurmanı istifadə edərək hesablarınıza cəld şəkildə daxil ola bilərsiniz."
   },
   "restart": {
     "message": "Yenidən başlat"
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Kredit əlavə etmək üçün faktura ünvanı tələb olunur.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Faktura ünvanı"
+  },
+  "addBillingAddress": {
+    "message": "Faktura ünvanı əlavə et"
+  },
+  "editBillingAddress": {
+    "message": "Faktura ünvanına düzəliş et"
+  },
+  "noBillingAddress": {
+    "message": "Faylda faktura ünvanı yoxdur."
+  },
+  "billingAddressUpdated": {
+    "message": "Faktura ünvanınız güncəllənib."
+  },
+  "paymentDetails": {
+    "message": "Ödəniş detalları"
+  },
+  "paymentMethodUpdated": {
+    "message": "Ödəniş üsulunuz güncəllənib."
+  },
+  "bankAccountVerified": {
+    "message": "Bank hesabınız doğrulanıb."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Mövcud olan bütün kredit, avtomatik olaraq bu hesab üçün yaradılmış fakturalara tətbiq olunacaq."
+  },
+  "mustBePositiveNumber": {
+    "message": "Müsbət bir ədəd olmalıdır"
+  },
+  "cardSecurityCode": {
+    "message": "Kart təhlükəsizlik kodu"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Kart təhlükəsizlik kodu, CVV və ya CVC kimi bilinən və adətən kredit kartınızın arxasına yazılmış 3 rəqəmli bir ədəd və ya ön tərəfdə kart nömrəsinin üzərində yazılan 4 rəqəmli ədəddir."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Bank hesabı ilə ödəniş, yalnız Amerika Birləşmiş Ştatlarındakı müştərilər üçün əlçatandır. Bank hesabınızı doğrulamağınız tələb olunacaq. Növbəti 1-2 iş günü ərzində mikro depozit qoyacağıq. Bank hesabını doğrulamaq üçün bu depozitdəki çıxarış deskriptor kodunu Ödəniş Detalları səhifəsində daxil edin. Bank hesabı doğrulanmadıqda ödəniş buraxılacaq və abunəliyiniz dayandırılacaq."
+  },
+  "taxId": {
+    "message": "Vergi kimliyi: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/be/messages.json b/apps/web/src/locales/be/messages.json
index e7a2c4a2f97..38cde94828e 100644
--- a/apps/web/src/locales/be/messages.json
+++ b/apps/web/src/locales/be/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "Я"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "myVault": {
     "message": "Маё сховішча"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "Працягваючы, вы выйдзіце з бягучага сеанса і вам неабходна будзе ўвайсці паўторна. Сеансы на іншых прыладах могуць заставацца актыўнымі на працягу адной гадзіны."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "Электронная пошта зменена"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Прадвызначаная калекцыя"
   },
-  "myItems": {
-    "message": "My Items"
-  },
   "getHelp": {
     "message": "Атрымаць даведку"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Абнавіць асноўны пароль"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "Ваш асноўны пароль быў нядаўна зменены адміністратарам вашай арганізацыі. Для атрымання доступу да сховішча, вы павінны абнавіць яго. Працягваючы, вы выйдзіце з бягучага сеанса і вам неабходна будзе ўвайсці паўторна. Сеансы на іншых прыладах могуць заставацца актыўнымі на працягу адной гадзіны."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Запытаць ухваленне адміністратара"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "trustedDeviceEncryption": {
     "message": "Шыфраванне даверанай прылады"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Billing address required to add credit.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/bg/messages.json b/apps/web/src/locales/bg/messages.json
index 9e8718fb058..2d721eda8f0 100644
--- a/apps/web/src/locales/bg/messages.json
+++ b/apps/web/src/locales/bg/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "Аз"
   },
+  "myItems": {
+    "message": "Моите елементи"
+  },
   "myVault": {
     "message": "Моят трезор"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "Действието ще прекрати и текущата ви сесия, след което ще се наложи отново да се впишете. Активните сесии на другите устройства може да останат такива до един час."
   },
+  "changePasswordWarning": {
+    "message": "След като промените паролата си, ще трябва да се впишете отново с новата си парола. Сесиите на други устройства също ще бъдат прекратени в рамките на един час."
+  },
   "emailChanged": {
     "message": "Електронната поща е сменена"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Стандартна колекция"
   },
-  "myItems": {
-    "message": "Моите елементи"
-  },
   "getHelp": {
     "message": "Помощ"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Промяна на главната парола"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Променете главната си парола, за да завършите възстановяването на акаунта."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Главната парола не отговаря на изискванията на тази организация. Променете главната си парола, за да продължите."
+  },
   "updateMasterPasswordWarning": {
     "message": "Вашата главна парола наскоро е била сменена от администратор в организацията Ви. За да получите достъп до трезора, трябва да промените главната си парола сега. Това означава, че ще бъдете отписан(а) от текущата си сесия и ще трябва да се впишете отново. Активните сесии на други устройства може да продължат да бъдат активни още един час."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Подаване на заявка за одобрение от администратор"
   },
+  "unableToCompleteLogin": {
+    "message": "Вписването не може да бъде завършено"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "Трябва да се впишете на доверено устройство или да помолите администратора си да Ви зададе парола."
+  },
   "trustedDeviceEncryption": {
     "message": "Шифроване чрез доверено устройство"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "За съвети как да се възползвате от Битуорден, посетете",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Центъра за обучения",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Помощния център",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "С добавката за браузър на Битуорден можете лесно да създавате нови елементи за вписване, както и да имате достъп до тях направо от лентата с инструменти на браузъра си. Също така, можете да се вписвате лесно и бързо, чрез функцията за автоматично попълване."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Адресът за таксуване е задължителен за добавянето на средства.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Адрес за фактуриране"
+  },
+  "addBillingAddress": {
+    "message": "Добавяне на адрес за фактуриране"
+  },
+  "editBillingAddress": {
+    "message": "Редактиране на адреса за фактуриране"
+  },
+  "noBillingAddress": {
+    "message": "Няма записан адрес."
+  },
+  "billingAddressUpdated": {
+    "message": "Вашият адрес за фактуриране беше променен."
+  },
+  "paymentDetails": {
+    "message": "Подробности за плащанията"
+  },
+  "paymentMethodUpdated": {
+    "message": "Вашият разплащателен метод е променен."
+  },
+  "bankAccountVerified": {
+    "message": "Вашата банкова сметка е потвърдена."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Наличните средства ще бъдат използвани автоматично за заплащане на фактурите издадени за този акаунт."
+  },
+  "mustBePositiveNumber": {
+    "message": "Трябва да бъде положително число"
+  },
+  "cardSecurityCode": {
+    "message": "Код за сигурност на картата"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Кодът за сигурност на картата, познат още като CVV или CVC, обикновено е 3-цифрено число, което се намира на гърба на картата, или 4-цифрено число, което се намира на предната част на картата, над номера ѝ."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Плащането чрез банкова сметка е налично само за клиенти от САЩ. Ще трябва да потвърдите банковата си сметка. В следващите 1-2 работни дни ще направим малък депозит. Въведете кода от описанието на трансакцията в страницата за подробности за разплащанията, за да потвърдите банковата сметка. Ако не потвърдите банковата сметка, може да пропуснете плащането и абонаментът Ви да бъде спрян."
+  },
+  "taxId": {
+    "message": "Данъчен идентификатор: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/bn/messages.json b/apps/web/src/locales/bn/messages.json
index ec9276e99c3..1e9bd6c225d 100644
--- a/apps/web/src/locales/bn/messages.json
+++ b/apps/web/src/locales/bn/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "Me"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "myVault": {
     "message": "আমার ভল্ট"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "Email saved"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Default collection"
   },
-  "myItems": {
-    "message": "My Items"
-  },
   "getHelp": {
     "message": "Get help"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Update master password"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "Your master password was recently changed by an administrator in your organization. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "trustedDeviceEncryption": {
     "message": "Trusted device encryption"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Billing address required to add credit.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/bs/messages.json b/apps/web/src/locales/bs/messages.json
index 18914ec040c..732fde49c33 100644
--- a/apps/web/src/locales/bs/messages.json
+++ b/apps/web/src/locales/bs/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "Ja"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "myVault": {
     "message": "Moj trezor"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "Email saved"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Default collection"
   },
-  "myItems": {
-    "message": "My Items"
-  },
   "getHelp": {
     "message": "Get help"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Update master password"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "Your master password was recently changed by an administrator in your organization. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "trustedDeviceEncryption": {
     "message": "Trusted device encryption"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Billing address required to add credit.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/ca/messages.json b/apps/web/src/locales/ca/messages.json
index 0b05c4a6a1c..c63a9a3b04e 100644
--- a/apps/web/src/locales/ca/messages.json
+++ b/apps/web/src/locales/ca/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "Jo"
   },
+  "myItems": {
+    "message": "Els meus elements"
+  },
   "myVault": {
     "message": "Caixa forta"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "Si es procedeix, es tancarà la vostra sessió actual i l'haureu de tornar a iniciar. Les sessions d'altres dispositius poden mantenir-se actives fins a una hora."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "El correu electrònic s'ha guardat"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Col·lecció per defecte"
   },
-  "myItems": {
-    "message": "Els meus elements"
-  },
   "getHelp": {
     "message": "Obteniu ajuda"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Actualitza contrasenya mestra"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "Un administrador de l'organització ha canviat recentment la contrasenya principal. Per accedir a la caixa forta, heu d'actualitzar-la ara. Si continueu, es tancarà la sessió actual i heu de tornar a iniciar-la. És possible que les sessions obertes en altres dispositius continuen actives fins a una hora."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Sol·liciteu l'aprovació de l'administrador"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "trustedDeviceEncryption": {
     "message": "Encriptació de dispositius de confiança"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Billing address required to add credit.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/cs/messages.json b/apps/web/src/locales/cs/messages.json
index c4ab2084f5f..35306a33964 100644
--- a/apps/web/src/locales/cs/messages.json
+++ b/apps/web/src/locales/cs/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "Já"
   },
+  "myItems": {
+    "message": "Moje položky"
+  },
   "myVault": {
     "message": "Můj trezor"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "Pokud chcete pokračovat, budete odhlášeni z aktuální relace a bude nutné se znovu přihlásit. Aktivní relace na jiných zařízeních mohou nadále zůstat aktivní po dobu až jedné hodiny."
   },
+  "changePasswordWarning": {
+    "message": "Po změně hesla se budete muset přihlásit pomocí svého nového hesla. Aktivní relace na jiných zařízeních budou odhlášeny do jedné hodiny."
+  },
   "emailChanged": {
     "message": "E-mail byl změněn"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Výchozí sbírka"
   },
-  "myItems": {
-    "message": "Moje položky"
-  },
   "getHelp": {
     "message": "Získat nápovědu"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Aktualizovat hlavní heslo"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Pro dokončení obnovy účtu změňte hlavní heslo."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Hlavní heslo nesplňuje požadavky této organizace. Chcete-li pokračovat, změňte hlavní heslo."
+  },
   "updateMasterPasswordWarning": {
     "message": "Správce v organizaci nedávno změnil Vaše hlavní heslo. Pro přístup k trezoru jej nyní musíte změnit. Pokračování Vás odhlásí z Vaší aktuální relace a bude nutné se znovu přihlásit. Aktivní relace na jiných zařízeních mohou zůstat aktivní až po dobu jedné hodiny."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Žádost o schválení správcem"
   },
+  "unableToCompleteLogin": {
+    "message": "Nelze dokončit přihlášení"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "Musíte se přihlásit na důvěryhodném zařízení nebo požádat správce, aby Vám přiřadil heslo."
+  },
   "trustedDeviceEncryption": {
     "message": "Šifrování důvěryhodného zařízení"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "Pro tipy, jak začít používat Bitwarden, navštivte",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Centrum výuky",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Centrum nápovědy",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "Pomocí rozšíření Bitwarden pro prohlížeč můžete snadno vytvářet nová přihlašovací jména, přistupovat k uloženým přihlašovacím jménům přímo z panelu nástrojů prohlížeče a rychle se přihlašovat k účtům pomocí automatického vyplňování."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Pro přidání kreditu je vyžadována fakturační adresa.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Fakturační adresa"
+  },
+  "addBillingAddress": {
+    "message": "Přidat fakturační adresu"
+  },
+  "editBillingAddress": {
+    "message": "Upravit fakturační adresu"
+  },
+  "noBillingAddress": {
+    "message": "Žádná adresa."
+  },
+  "billingAddressUpdated": {
+    "message": "Vaše fakturační adresa byla aktualizována."
+  },
+  "paymentDetails": {
+    "message": "Platební údaje"
+  },
+  "paymentMethodUpdated": {
+    "message": "Vaše platební metoda byla aktualizována."
+  },
+  "bankAccountVerified": {
+    "message": "Váš bankovní účet byl ověřen."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Jakýkoli dostupný kredit bude automaticky použit na faktury generované pro tento účet."
+  },
+  "mustBePositiveNumber": {
+    "message": "Musí být kladné číslo"
+  },
+  "cardSecurityCode": {
+    "message": "Kód CVC/CVV"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Bezpečnostní kód karty, známý také jako CVV nebo CVC, je obvykle třímístné číslo vytištěné na zadní straně platební karty nebo čtyřmístné číslo vytištěné na přední straně nad číslem karty."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Platba bankovním účtem je dostupná jen pro zákazníky ve Spojených státech. Budete požádáni o ověření svého bankovního účtu. Mikrovklad provedeme během následujících 1-2 pracovních dnů. Pro ověření bankovního účtu zadejte kód popisu výpisu z tohoto vkladu na stránce s podrobnostmi o platbě. Pokud bankovní účet neověříte, bude to mít za následek zmeškání platby a pozastavení Vašeho předplatného."
+  },
+  "taxId": {
+    "message": "DIČ: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/cy/messages.json b/apps/web/src/locales/cy/messages.json
index 5c9ccd6f54b..9c57f1348b3 100644
--- a/apps/web/src/locales/cy/messages.json
+++ b/apps/web/src/locales/cy/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "Me"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "myVault": {
     "message": "My vault"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "Email saved"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Default collection"
   },
-  "myItems": {
-    "message": "My Items"
-  },
   "getHelp": {
     "message": "Get help"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Update master password"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "Your master password was recently changed by an administrator in your organization. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "trustedDeviceEncryption": {
     "message": "Trusted device encryption"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Billing address required to add credit.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/da/messages.json b/apps/web/src/locales/da/messages.json
index c1d88ad0ea9..07ad8cee897 100644
--- a/apps/web/src/locales/da/messages.json
+++ b/apps/web/src/locales/da/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "Mig"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "myVault": {
     "message": "Min boks"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "Fortsættes, logges du ud af denne session og vil skulle logge ind igen. Aktive sessioner på andre enheder kan forblive aktive i op til én time."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "E-mail gemt"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Standardsamling"
   },
-  "myItems": {
-    "message": "My Items"
-  },
   "getHelp": {
     "message": "Få hjælp"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Opdatér hovedadgangskode"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "Din hovedadgangskode blev for nylig ændret af en admin i din organisation. Opdatér hovedadgangskoden nu for at tilgå boksen. Fortsættes, logges der ud af den nuværende session, og du vil skulle logge ind igen. Aktive sessioner på andre enheder kan forblive aktive i op til én time."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Anmod om admin-godkendelse"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "trustedDeviceEncryption": {
     "message": "Betroet enhedskryptering"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Billing address required to add credit.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/de/messages.json b/apps/web/src/locales/de/messages.json
index e034662d484..55875134383 100644
--- a/apps/web/src/locales/de/messages.json
+++ b/apps/web/src/locales/de/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "Ich"
   },
+  "myItems": {
+    "message": "Meine Einträge"
+  },
   "myVault": {
     "message": "Mein Tresor"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "Wenn du fortfährst, wirst du aus deiner aktuellen Sitzung ausgeloggt. Aktive Sitzungen auf anderen Geräten können bis zu einer Stunde weiterhin aktiv bleiben."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "E-Mail-Adresse gespeichert"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Standardsammlung"
   },
-  "myItems": {
-    "message": "Meine Einträge"
-  },
   "getHelp": {
     "message": "Hilfe erhalten"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Master-Passwort aktualisieren"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "Dein Master-Passwort wurde kürzlich von einem Administrator deiner Organisation geändert. Um auf den Tresor zuzugreifen, musst du dein Master-Passwort jetzt aktualisieren. Wenn Du fortfährst, wirst du aus der aktuellen Sitzung abgemeldet und eine erneute Anmeldung ist erforderlich. Aktive Sitzungen auf anderen Geräten können bis zu einer Stunde weiterhin aktiv bleiben."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Admin-Genehmigung anfragen"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "trustedDeviceEncryption": {
     "message": "Vertrauenswürdige Geräteverschlüsselung"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Rechnungsadresse erforderlich, um Guthaben hinzuzufügen.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/el/messages.json b/apps/web/src/locales/el/messages.json
index b333a6c30ed..148ac067490 100644
--- a/apps/web/src/locales/el/messages.json
+++ b/apps/web/src/locales/el/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "Εγώ"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "myVault": {
     "message": "Το Vault μου"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "Η διαδικασία θα σας αποσυνδέσει από την τρέχουσα συνεδρία και θα σας ζητήσει να συνδεθείτε ξανά. Οι ενεργές συνεδρίες σε άλλες συσκευές ενδέχεται να παραμείνουν ενεργοποιημένες για έως και μία ώρα."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "Το email άλλαξε"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Προεπιλεγμένη Συλλογή"
   },
-  "myItems": {
-    "message": "My Items"
-  },
   "getHelp": {
     "message": "Ζητήστε Βοήθεια"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Ενημερώστε τον κύριο κωδικό πρόσβασης"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "Ο Κύριος Κωδικός Πρόσβασης σας άλλαξε πρόσφατα από διαχειριστή στον οργανισμό σας. Για να αποκτήσετε πρόσβαση στο vault, πρέπει να ενημερώσετε το κύριο κωδικό τώρα. Η διαδικασία θα σας αποσυνδέσει από την τρέχουσα συνεδρία σας, απαιτώντας από εσάς να συνδεθείτε ξανά. Οι ενεργές συνεδρίες σε άλλες συσκευές ενδέχεται να συνεχίσουν να είναι ενεργές για μία ώρα."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Αίτημα έγκρισης διαχειριστή"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "trustedDeviceEncryption": {
     "message": "Κρυπτογράφηση έμπιστης συσκευής"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Billing address required to add credit.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/en_GB/messages.json b/apps/web/src/locales/en_GB/messages.json
index da91aca75fd..fe4591a3e3b 100644
--- a/apps/web/src/locales/en_GB/messages.json
+++ b/apps/web/src/locales/en_GB/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "Me"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "myVault": {
     "message": "My vault"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "Email saved"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Default collection"
   },
-  "myItems": {
-    "message": "My Items"
-  },
   "getHelp": {
     "message": "Get help"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Update master password"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organisation’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "Your master password was recently changed by an administrator in your organisation. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "trustedDeviceEncryption": {
     "message": "Trusted device encryption"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Learning Centre",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Help Centre",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Billing address required to add credit.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/en_IN/messages.json b/apps/web/src/locales/en_IN/messages.json
index 3a60b335255..742f4a85080 100644
--- a/apps/web/src/locales/en_IN/messages.json
+++ b/apps/web/src/locales/en_IN/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "Me"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "myVault": {
     "message": "My vault"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "Email changed"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Default collection"
   },
-  "myItems": {
-    "message": "My Items"
-  },
   "getHelp": {
     "message": "Get help"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Update master password"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organisation’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "Your master password was recently changed by an administrator in your organisation. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "trustedDeviceEncryption": {
     "message": "Trusted device encryption"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Learning Centre",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Help Centre",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Billing address required to add credit.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/eo/messages.json b/apps/web/src/locales/eo/messages.json
index a80aafad642..6e918bfa1c6 100644
--- a/apps/web/src/locales/eo/messages.json
+++ b/apps/web/src/locales/eo/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "Mi"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "myVault": {
     "message": "Mia Trezorejo"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "Prilabori vian adiaŭadon de la nuna seanco, necesigos vin saluti denove. La seancoj aktivaj sur aliaj aparatoj povas resti aktivaj ankoraŭ unu horon."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "La retpoŝto konserviĝis"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Implicita kolekto"
   },
-  "myItems": {
-    "message": "My Items"
-  },
   "getHelp": {
     "message": "Akiri helpon"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Ĝisdatigi la ĉefan pasvorton"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "Your master password was recently changed by an administrator in your organization. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "trustedDeviceEncryption": {
     "message": "Trusted device encryption"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Billing address required to add credit.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/es/messages.json b/apps/web/src/locales/es/messages.json
index 4f0a5587fc1..8203fa0a798 100644
--- a/apps/web/src/locales/es/messages.json
+++ b/apps/web/src/locales/es/messages.json
@@ -9,7 +9,7 @@
     "message": "Aplicaciones críticas"
   },
   "noCriticalAppsAtRisk": {
-    "message": "No critical applications at risk"
+    "message": "No hay aplicaciones críticas en riesgo"
   },
   "accessIntelligence": {
     "message": "Inteligencia de Acceso"
@@ -54,7 +54,7 @@
     }
   },
   "createNewLoginItem": {
-    "message": "Create new login item"
+    "message": "Crear nuevo elemento de inicio de sesión"
   },
   "criticalApplicationsWithCount": {
     "message": "Aplicaciones críticas ($COUNT$)",
@@ -75,7 +75,7 @@
     }
   },
   "noAppsInOrgTitle": {
-    "message": "No applications found in $ORG NAME$",
+    "message": "No se encontraron aplicaciones en $ORG NAME$",
     "placeholders": {
       "org name": {
         "content": "$1",
@@ -505,7 +505,7 @@
     "message": "Nest a folder by adding the parent folder's name followed by a “/”. Example: Social/Forums"
   },
   "deleteFolderPermanently": {
-    "message": "Are you sure you want to permanently delete this folder?"
+    "message": "¿Estás seguro de que quieres eliminar permanentemente esta carpeta?"
   },
   "baseDomain": {
     "message": "Dominio base",
@@ -789,7 +789,7 @@
     }
   },
   "copySuccessful": {
-    "message": "Copy Successful"
+    "message": "Copia Exitosa"
   },
   "copyValue": {
     "message": "Copiar valor",
@@ -800,7 +800,7 @@
     "description": "Copy password to clipboard"
   },
   "copyPassphrase": {
-    "message": "Copy passphrase",
+    "message": "Copiar frase de contraseña",
     "description": "Copy passphrase to clipboard"
   },
   "passwordCopied": {
@@ -864,6 +864,9 @@
   "me": {
     "message": "Yo"
   },
+  "myItems": {
+    "message": "Mis Elementos"
+  },
   "myVault": {
     "message": "Mi caja fuerte"
   },
@@ -1067,10 +1070,10 @@
     "message": "Utilizar otro método de inicio de sesión"
   },
   "logInWithPasskey": {
-    "message": "Log in with passkey"
+    "message": "Iniciar sesión con clave de acceso"
   },
   "useSingleSignOn": {
-    "message": "Use single sign-on"
+    "message": "Usar inicio de sesión único"
   },
   "welcomeBack": {
     "message": "Bienvenido de nuevo"
@@ -1196,16 +1199,16 @@
     "message": "Verifica tu Identidad"
   },
   "weDontRecognizeThisDevice": {
-    "message": "We don't recognize this device. Enter the code sent to your email to verify your identity."
+    "message": "No reconocemos este dispositivo. Introduce el código enviado a tu correo electrónico para verificar tu identidad."
   },
   "continueLoggingIn": {
     "message": "Continuar el inicio de sesión"
   },
   "whatIsADevice": {
-    "message": "What is a device?"
+    "message": "¿Qué es un dispositivo?"
   },
   "aDeviceIs": {
-    "message": "A device is a unique installation of the Bitwarden app where you have logged in. Reinstalling, clearing app data, or clearing your cookies could result in a device appearing multiple times."
+    "message": "Un dispositivo es una instalación única de la aplicación Bitwarden donde has iniciado sesión. La reinstalación, la eliminación de datos de la aplicación o la eliminación de tus cookies podrían resultar en la aparición de un dispositivo múltiples veces."
   },
   "logInInitiated": {
     "message": "Inicio de sesión en proceso"
@@ -1272,7 +1275,7 @@
     "message": "Solicitar pista"
   },
   "requestPasswordHint": {
-    "message": "Request password hint"
+    "message": "Solicitar pista de la contraseña"
   },
   "enterYourAccountEmailAddressAndYourPasswordHintWillBeSentToYou": {
     "message": "Enter your account email address and your password hint will be sent to you"
@@ -1309,7 +1312,7 @@
     "message": "¡Tu nueva cuenta ha sido creada! Ahora puedes acceder."
   },
   "newAccountCreated2": {
-    "message": "Your new account has been created!"
+    "message": "¡Tu nueva cuenta ha sido creada!"
   },
   "youHaveBeenLoggedIn": {
     "message": "¡Has iniciado sesión!"
@@ -1397,7 +1400,7 @@
     "message": "Se ha enviado una notificación a tu dispositivo."
   },
   "notificationSentDevicePart1": {
-    "message": "Unlock Bitwarden on your device or on the "
+    "message": "Desbloquea Bitwarden en tu dispositivo o en la "
   },
   "areYouTryingToAccessYourAccount": {
     "message": "¿Estás intentando acceder a tu cuenta?"
@@ -1418,7 +1421,7 @@
     "message": "Denegar acceso"
   },
   "notificationSentDeviceAnchor": {
-    "message": "web app"
+    "message": "aplicación web"
   },
   "notificationSentDevicePart2": {
     "message": "Make sure the Fingerprint phrase matches the one below before approving."
@@ -1473,7 +1476,7 @@
     "message": "Opciones de la autenticación en dos pasos"
   },
   "selectTwoStepLoginMethod": {
-    "message": "Select two-step login method"
+    "message": "Selecciona un método de inicio de sesión en dos pasos"
   },
   "recoveryCodeDesc": {
     "message": "¿Has perdido el acceso a todos tus métodos de autenticación en dos pasos? Utiliza tu código de recuperación para deshabilitar todos los métodos de autenticación en dos pasos de tu cuenta."
@@ -1485,7 +1488,7 @@
     "message": "Aplicación de autenticación"
   },
   "authenticatorAppDescV2": {
-    "message": "Enter a code generated by an authenticator app like Bitwarden Authenticator.",
+    "message": "Introduce un código generado por una aplicación de autenticación como Bitwarden Authenticator.",
     "description": "'Bitwarden Authenticator' is a product name and should not be translated."
   },
   "yubiKeyTitleV2": {
@@ -1723,7 +1726,7 @@
     "message": "Incluir número"
   },
   "generatorPolicyInEffect": {
-    "message": "Enterprise policy requirements have been applied to your generator options.",
+    "message": "Los requisitos de política empresarial se han aplicado a las opciones de tu generador.",
     "description": "Indicates that a policy limits the credential generator screen."
   },
   "passwordHistory": {
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "Proceder cerrará tu sesión actual, requiriendo que vuelvas a acceder. Las sesiones activas en otros dispositivos pueden seguir activas hasta dentro de una hora."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "Correo electrónico cambiado"
   },
@@ -1894,7 +1900,7 @@
     "message": "Desautorizadas todas las sesiones"
   },
   "accountIsOwnedMessage": {
-    "message": "This account is owned by $ORGANIZATIONNAME$",
+    "message": "Esta cuenta es propiedad de $ORGANIZATIONNAME$",
     "placeholders": {
       "organizationName": {
         "content": "$1",
@@ -1939,7 +1945,7 @@
     "message": "Tu cuenta de Bitwarden y los datos de tu caja fuerte fueron eliminados permanentemente."
   },
   "deleteOrganizationWarning": {
-    "message": "Deleting your organization is permanent. It cannot be undone."
+    "message": "Eliminar tu organización es permanente. No se puede deshacer."
   },
   "myAccount": {
     "message": "Mi cuenta"
@@ -2225,7 +2231,7 @@
     "message": "Desactivar"
   },
   "orgUserDetailsNotFound": {
-    "message": "Member details not found."
+    "message": "Detalles del miembro no encontrados."
   },
   "revokeAccess": {
     "message": "Revocar el acceso"
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Colección por defecto"
   },
-  "myItems": {
-    "message": "My Items"
-  },
   "getHelp": {
     "message": "Consigue ayuda"
   },
@@ -3907,22 +3910,22 @@
     "message": "Dispositivo"
   },
   "loginStatus": {
-    "message": "Login status"
+    "message": "Estado del inicio de sesión"
   },
   "firstLogin": {
-    "message": "First login"
+    "message": "Primer inicio de sesión"
   },
   "trusted": {
     "message": "Trusted"
   },
   "needsApproval": {
-    "message": "Needs approval"
+    "message": "Necesita aprobación"
   },
   "areYouTryingtoLogin": {
-    "message": "Are you trying to log in?"
+    "message": "¿Estás intentando iniciar sesión?"
   },
   "logInAttemptBy": {
-    "message": "Login attempt by $EMAIL$",
+    "message": "Intento de inicio de sesión de $EMAIL$",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3931,7 +3934,7 @@
     }
   },
   "deviceType": {
-    "message": "Device Type"
+    "message": "Tipo de Dispositivo"
   },
   "ipAddress": {
     "message": "Dirección IP"
@@ -3968,7 +3971,7 @@
     "message": "Justo ahora"
   },
   "requestedXMinutesAgo": {
-    "message": "Requested $MINUTES$ minutes ago",
+    "message": "Solicitado hace $MINUTES$ minutos",
     "placeholders": {
       "minutes": {
         "content": "$1",
@@ -4752,7 +4755,7 @@
     "description": "A 'fingerprint phrase' is a unique word phrase (similar to a passphrase) that a user can use to authenticate their public key with another user, for the purposes of sharing."
   },
   "youWillBeNotifiedOnceTheRequestIsApproved": {
-    "message": "You will be notified once the request is approved"
+    "message": "Serás notificado una vez que la solicitud sea aprobada"
   },
   "free": {
     "message": "Gratis",
@@ -5009,7 +5012,7 @@
     "message": "Esta ventana se cerrará automáticamente en 5 segundos"
   },
   "youMayCloseThisWindow": {
-    "message": "You may close this window"
+    "message": "Puedes cerrar esta ventana"
   },
   "includeAllTeamsFeatures": {
     "message": "Todas las características de Equipos y además:"
@@ -5094,7 +5097,7 @@
     "message": "Limit views"
   },
   "limitSendViewsHint": {
-    "message": "No one can view this Send after the limit is reached.",
+    "message": "Nadie puede ver este Send tras alcanzar el límite.",
     "description": "Displayed under the limit views field on Send"
   },
   "limitSendViewsCount": {
@@ -5108,7 +5111,7 @@
     }
   },
   "sendDetails": {
-    "message": "Send details",
+    "message": "Detalles del Send",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendTypeTextToShare": {
@@ -5156,7 +5159,7 @@
     "message": "Fecha de eliminación"
   },
   "deletionDateDescV2": {
-    "message": "The Send will be permanently deleted on this date.",
+    "message": "El Send se borrará permanentemente en esta fecha.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "expirationDate": {
@@ -5535,7 +5538,7 @@
     "message": "Desactivar la propiedad personal para los usuarios de la organización"
   },
   "send": {
-    "message": "Enviar",
+    "message": "Send",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendAccessTaglineProductDesc": {
@@ -5581,7 +5584,7 @@
     "message": "Protect secrets with end-to-end encryption. No more hard coding secrets or sharing through .env files."
   },
   "enhanceDeveloperProductivity": {
-    "message": "Enhance developer productivity."
+    "message": "Mejorar la productividad de los desarrolladores."
   },
   "enhanceDeveloperProductivityDescription": {
     "message": "Programmatically retrieve and deploy secrets at runtime so developers can focus on what matters most, like improving code quality."
@@ -5605,7 +5608,7 @@
     "message": "Bitwarden Secrets Manager"
   },
   "moreProductsFromBitwarden": {
-    "message": "More products from Bitwarden"
+    "message": "Más productos de Bitwarden"
   },
   "requestAccessToSecretsManager": {
     "message": "Request access to Secrets Manager"
@@ -5660,7 +5663,7 @@
     }
   },
   "viewSend": {
-    "message": "View Send",
+    "message": "Ver Send",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "viewSendHiddenEmailWarning": {
@@ -5692,7 +5695,7 @@
     "message": "Autenticar WebAuthn"
   },
   "readSecurityKey": {
-    "message": "Read security key"
+    "message": "Leer clave de seguridad"
   },
   "awaitingSecurityKeyInteraction": {
     "message": "Awaiting security key interaction..."
@@ -5923,14 +5926,14 @@
     "message": "Error de descifrado"
   },
   "couldNotDecryptVaultItemsBelow": {
-    "message": "Bitwarden could not decrypt the vault item(s) listed below."
+    "message": "Bitwarden no pudo descifrar el/los elemento(s) de la caja fuerte listados a continuación."
   },
   "contactCSToAvoidDataLossPart1": {
     "message": "Contact customer success",
     "description": "This is part of a larger sentence. The full sentence will read 'Contact customer success to avoid additional data loss.'"
   },
   "contactCSToAvoidDataLossPart2": {
-    "message": "to avoid additional data loss.",
+    "message": "para evitar pérdida de datos adicionales.",
     "description": "This is part of a larger sentence. The full sentence will read 'Contact customer success to avoid additional data loss.'"
   },
   "accountRecoveryManageUsers": {
@@ -6065,7 +6068,7 @@
     "message": "Añadir"
   },
   "masterPasswordSuccessfullySet": {
-    "message": "Master password successfully set"
+    "message": "Contraseña maestra establecida correctamente"
   },
   "updatedMasterPassword": {
     "message": "Contraseña maestra actualizada"
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Actualizar contraseña maestra"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "Su contraseña maestra ha sido cambiada recientemente por un administrador de su organización. Para acceder a la caja fuerte, debe actualizar su contraseña maestra ahora. Proceder le desconectará de su sesión actual, requiriendo que vuelva a iniciar sesión. Las sesiones activas en otros dispositivos pueden seguir estando activas durante hasta una hora."
   },
@@ -6426,7 +6435,7 @@
     "message": "Cuenta canjeada"
   },
   "revokeAccountMessage": {
-    "message": "Revoke account $NAME$",
+    "message": "Revocar cuenta $NAME$",
     "placeholders": {
       "name": {
         "content": "$1",
@@ -6726,7 +6735,7 @@
     "message": "requerido"
   },
   "charactersCurrentAndMaximum": {
-    "message": "$CURRENT$/$MAX$ character maximum",
+    "message": "Máximo $CURRENT$/$MAX$ caracteres",
     "placeholders": {
       "current": {
         "content": "$1",
@@ -6751,7 +6760,7 @@
     "message": "Requerido si el ID de la entidad no es una URL."
   },
   "offerNoLongerValid": {
-    "message": "This offer is no longer valid. Contact your organization administrators for more information."
+    "message": "Esta oferta ya no es válida. Ponte en contacto con los administradores de tu organización para obtener más información."
   },
   "openIdOptionalCustomizations": {
     "message": "Personalizaciones opcionales"
@@ -6849,13 +6858,13 @@
     "message": "Generar contraseña"
   },
   "generatePassphrase": {
-    "message": "Generate passphrase"
+    "message": "Generar frase de contraseña"
   },
   "passwordGenerated": {
     "message": "Contraseña generada"
   },
   "passphraseGenerated": {
-    "message": "Passphrase generated"
+    "message": "Frase de contraseña generada"
   },
   "usernameGenerated": {
     "message": "Nombre de usuario generado"
@@ -6927,13 +6936,13 @@
     "message": "Usar esta contraseña"
   },
   "useThisPassphrase": {
-    "message": "Use this passphrase"
+    "message": "Usar esta frase de contraseña"
   },
   "useThisUsername": {
-    "message": "Use this username"
+    "message": "Usar este nombre de usuario"
   },
   "securePasswordGenerated": {
-    "message": "Secure password generated! Don't forget to also update your password on the website."
+    "message": "¡Contraseña segura generada! No olvides actualizar tu contraseña en el sitio web."
   },
   "useGeneratorHelpTextPartOne": {
     "message": "Usa el generador",
@@ -7010,7 +7019,7 @@
     "description": "Labels the domain name email forwarder service option"
   },
   "forwarderDomainNameHint": {
-    "message": "Choose a domain that is supported by the selected service",
+    "message": "Elige un dominio que esté soportado por el servicio seleccionado",
     "description": "Guidance provided for email forwarding services that support multiple email domains."
   },
   "forwarderError": {
@@ -7032,7 +7041,7 @@
     "description": "Displayed with the address on the forwarding service's configuration screen."
   },
   "forwarderGeneratedByWithWebsite": {
-    "message": "Website: $WEBSITE$. Generated by Bitwarden.",
+    "message": "Sitio web: $WEBSITE$. Generado por Bitwarden.",
     "description": "Displayed with the address on the forwarding service's configuration screen.",
     "placeholders": {
       "WEBSITE": {
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Solicitar aprobación del administrador"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "trustedDeviceEncryption": {
     "message": "Cifrado de dispositivo de confianza"
   },
@@ -8831,7 +8846,7 @@
     "message": "Alternar navegación lateral"
   },
   "skipToContent": {
-    "message": "Skip to content"
+    "message": "Saltar al contenido"
   },
   "managePermissionRequired": {
     "message": "At least one member or group must have can manage permission."
@@ -8883,7 +8898,7 @@
     "message": "Collection access is restricted"
   },
   "readOnlyCollectionAccess": {
-    "message": "You do not have access to manage this collection."
+    "message": "No tienes acceso para administrar esta colección."
   },
   "grantManageCollectionWarningTitle": {
     "message": "Missing Manage Collection Permissions"
@@ -8920,7 +8935,7 @@
     "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
   },
   "uriMatchWarningDialogLink": {
-    "message": "More about match detection",
+    "message": "Más sobre la detección de coincidencias",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
   "maintainYourSubscription": {
@@ -9125,7 +9140,7 @@
     "description": "A warning shown to the user when their subscription is past due and they pay via invoice."
   },
   "unpaidInvoice": {
-    "message": "Unpaid invoice",
+    "message": "Factura no pagada",
     "description": "The header of a warning box shown to a user whose subscription is unpaid."
   },
   "toReactivateYourSubscription": {
@@ -9369,7 +9384,7 @@
     "description": "This represents the end of a sentence, broken up to include links. The full sentence will be 'Configure single sign-on for Bitwarden using the implementation guide for your Identity Provider."
   },
   "userProvisioning": {
-    "message": "User provisioning"
+    "message": "Aprovisionamiento de usuarios"
   },
   "scimIntegration": {
     "message": "SCIM"
@@ -9389,25 +9404,25 @@
     "message": "Configure Bitwarden Directory Connector to automatically provision users and groups using the implementation guide for your Identity Provider."
   },
   "eventManagement": {
-    "message": "Event management"
+    "message": "Gestión de eventos"
   },
   "eventManagementDesc": {
     "message": "Integrate Bitwarden event logs with your SIEM (system information and event management) system by using the implementation guide for your platform."
   },
   "deviceManagement": {
-    "message": "Device management"
+    "message": "Gestión de dispositivos"
   },
   "deviceManagementDesc": {
     "message": "Configure device management for Bitwarden using the implementation guide for your platform."
   },
   "deviceIdMissing": {
-    "message": "Device ID is missing"
+    "message": "Falta el ID del dispositivo"
   },
   "deviceTypeMissing": {
-    "message": "Device type is missing"
+    "message": "Falta el tipo de dispositivo"
   },
   "deviceCreationDateMissing": {
-    "message": "Device creation date is missing"
+    "message": "Falta la fecha de creación del dispositivo"
   },
   "desktopRequired": {
     "message": "Desktop required"
@@ -9473,7 +9488,7 @@
     "message": "Create a new client organization to manage as a Provider. Additional seats will be reflected in the next billing cycle."
   },
   "selectAPlan": {
-    "message": "Select a plan"
+    "message": "Selecciona un plan"
   },
   "thirtyFivePercentDiscount": {
     "message": "Descuento del 35%"
@@ -9654,10 +9669,10 @@
     "message": "An error occurred while previewing the invoice. Please try again later."
   },
   "unverified": {
-    "message": "Unverified"
+    "message": "No Verificado"
   },
   "verified": {
-    "message": "Verified"
+    "message": "Verificado"
   },
   "viewSecret": {
     "message": "Ver secreto"
@@ -9676,7 +9691,7 @@
     "message": "Quickly view member access across the organization by upgrading to an Enterprise plan."
   },
   "date": {
-    "message": "Date"
+    "message": "Fecha"
   },
   "exportClientReport": {
     "message": "Export client report"
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Billing address required to add credit.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/et/messages.json b/apps/web/src/locales/et/messages.json
index 403bd5d7049..2721d19dae3 100644
--- a/apps/web/src/locales/et/messages.json
+++ b/apps/web/src/locales/et/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "Mina"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "myVault": {
     "message": "Minu hoidla"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "Jätkates logitakse sind praegusest sessioonis välja, mistõttu pead kontosse uuesti sisse logima. Teised kontoga ühendatud seadmed võivad jääda sisselogituks kuni üheks tunniks."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "E-post on muudetud"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Vaikekogumik"
   },
-  "myItems": {
-    "message": "My Items"
-  },
   "getHelp": {
     "message": "Klienditugi"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Ülemparooli uuendamine"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "Organisatsiooni administraator muutis hiljuti sinu ülemparooli. Hoidlale ligi pääsemiseks pead ülemparooli uuendama. Jätkates logitakse sind käimasolevast sessioonist välja, misjärel nõutakse uuesti sisselogimist. Teistes seadmetes olevad aktiivsed sessioonid jäävad aktiivseks kuni üheks tunniks."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "trustedDeviceEncryption": {
     "message": "Trusted device encryption"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Billing address required to add credit.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/eu/messages.json b/apps/web/src/locales/eu/messages.json
index 86246581ca9..db57bfdccd2 100644
--- a/apps/web/src/locales/eu/messages.json
+++ b/apps/web/src/locales/eu/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "Ni"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "myVault": {
     "message": "Kutxa Gotorra"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "Jarraitzeak uneko saioa itxiko du eta berriro saioa hasteko eskatuko zaizu. Beste gailu batzuetako saio aktiboek ordubete iraun dezakete aktibo."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "Emaila aldatua"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Bilduma lehenetsia"
   },
-  "myItems": {
-    "message": "My Items"
-  },
   "getHelp": {
     "message": "Jaso laguntza"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Pasahitz nagusia eguneratu"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "Zure erakundeko administratzaile batek pasahitz nagusia aldatu berri du. Kutxa gotorrera sartzeko, pasahitz nagusia orain eguneratu behar duzu. Beraz, oraingo saiotik atera eta saioa hasteko eskatuko zaizu. Beste gailu batzuetako saio aktiboek ordubete iraun dezakete aktibo."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "trustedDeviceEncryption": {
     "message": "Trusted device encryption"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Billing address required to add credit.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/fa/messages.json b/apps/web/src/locales/fa/messages.json
index 3836079adc1..70eb11f7e2f 100644
--- a/apps/web/src/locales/fa/messages.json
+++ b/apps/web/src/locales/fa/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "من"
   },
+  "myItems": {
+    "message": "موارد من"
+  },
   "myVault": {
     "message": "گاوصندوق من"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "ادامه دادن، شما را از نشست فعلی خود خارج می‌کند و باید دوباره وارد سیستم شوید. جلسات فعال در دستگاه‌های دیگر ممکن است تا یک ساعت فعال بمانند."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "ایمیل ذخیره شد"
   },
@@ -2154,16 +2160,16 @@
     "message": "راه‌اندازی ورود دو مرحله‌ای می‌تواند برای همیشه حساب Bitwarden شما را قفل کند. یک کد بازیابی به شما امکان می‌دهد در صورتی که دیگر نمی‌توانید از ارائه‌دهنده‌ی ورود دو مرحله‌ای معمولی خود استفاده کنید (به عنوان مثال: دستگاه خود را گم می‌کنید) به حساب خود دسترسی پیدا کنید. اگر دسترسی به حساب خود را از دست بدهید، پشتیبانی Bitwarden نمی‌تواند به شما کمک کند. توصیه می‌کنیم کد بازیابی را یادداشت یا چاپ کنید و آن را در مکانی امن نگهداری کنید."
   },
   "restrictedItemTypePolicy": {
-    "message": "Remove card item type"
+    "message": "حذف نوع مورد کارت"
   },
   "restrictedItemTypePolicyDesc": {
-    "message": "Do not allow members to create card item types. Existing cards will be automatically removed."
+    "message": "اجازه ندهید اعضا انواع مورد کارت ایجاد کنند. کارت‌های موجود به‌صورت خودکار حذف خواهند شد."
   },
   "restrictCardTypeImport": {
-    "message": "Cannot import card item types"
+    "message": "نمی‌توان انواع مورد کارت را درون ریزی کرد"
   },
   "restrictCardTypeImportDesc": {
-    "message": "A policy set by 1 or more organizations prevents you from importing cards to your vaults."
+    "message": "یک سیاست تعیین شده توسط یک یا چند سازمان، مانع از درون ریزی کارت‌ها به گاوصندوق‌های شما شده است."
   },
   "yourSingleUseRecoveryCode": {
     "message": "کد بازیابی یک‌بار مصرف شما می‌تواند در صورت از دست دادن دسترسی به سرویس ورود دو مرحله‌ای، برای غیرفعال کردن آن استفاده شود. Bitwarden توصیه می‌کند این کد را یادداشت کرده و در جای امنی نگهداری کنید."
@@ -2225,7 +2231,7 @@
     "message": "خاموش کردن"
   },
   "orgUserDetailsNotFound": {
-    "message": "Member details not found."
+    "message": "جزئیات عضو پیدا نشد."
   },
   "revokeAccess": {
     "message": "لغو دسترسی"
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "مجموعه پیش‌فرض"
   },
-  "myItems": {
-    "message": "My Items"
-  },
   "getHelp": {
     "message": "کمک گرفتن"
   },
@@ -5376,7 +5379,7 @@
     "message": "دسترسی اضطراری رد شد"
   },
   "grantorDetailsNotFound": {
-    "message": "Grantor details not found"
+    "message": "جزئیات اعطا‌کننده پیدا نشد"
   },
   "passwordResetFor": {
     "message": "کلمه عبور برای $USER$ بازنشانی شد. اکنون می‌توانید با استفاده از کلمه عبور جدید وارد شوید.",
@@ -5388,7 +5391,7 @@
     }
   },
   "organizationDataOwnership": {
-    "message": "Enforce organization data ownership"
+    "message": "اجرای مالکیت داده‌های سازمانی"
   },
   "personalOwnership": {
     "message": "حذف گاوصندوق شخصی"
@@ -5782,7 +5785,7 @@
     }
   },
   "emergencyAccessLoggedOutWarning": {
-    "message": "Proceeding will log $NAME$ out of their current session, requiring them to log back in. Active sessions on other devices may continue to remain active for up to one hour.",
+    "message": "ادامه دادن، $NAME$ را از نشست فعلی اش خارج می‌کند و باید دوباره وارد سیستم شود. نشست فعال در دستگاه‌های دیگر ممکن است تا یک ساعت فعال بمانند.",
     "placeholders": {
       "name": {
         "content": "$1",
@@ -5797,7 +5800,7 @@
     "message": "یک یا چند سیاست سازمانی برای تأمین شرایط زیر به کلمه عبور اصلی احتیاج دارد:"
   },
   "changePasswordDelegationMasterPasswordPolicyInEffect": {
-    "message": "One or more organization policies require the master password to meet the following requirements:"
+    "message": "یک یا چند سیاست سازمانی برای تأمین شرایط زیر به کلمه عبور اصلی احتیاج دارد:"
   },
   "resetPasswordSuccess": {
     "message": "بازیابی رمزعبور با موفقیت انجام شد!"
@@ -6065,7 +6068,7 @@
     "message": "افزودن"
   },
   "masterPasswordSuccessfullySet": {
-    "message": "Master password successfully set"
+    "message": "کلمه عبور اصلی با موفقیت تنظیم شد"
   },
   "updatedMasterPassword": {
     "message": "کلمه عبور اصلی ذخیره شد"
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "به‌روزرسانی کلمه عبور اصلی"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "کلمه عبور اصلی شما اخیراً توسط سرپرست سازمان‌تان تغییر کرده است. برای دسترسی به گاوصندوق، باید همین حالا کلمه عبور اصلی خود را به‌روز کنید. در صورت ادامه، شما از نشست فعلی خود خارج می‌شوید و باید دوباره وارد سیستم شوید. نشست فعال در دستگاه های دیگر ممکن است تا یک ساعت همچنان فعال باقی بمانند."
   },
@@ -7648,7 +7657,7 @@
     "description": "Notifies that a service account has been updated"
   },
   "typeOrSelectProjects": {
-    "message": "Type or select projects",
+    "message": "پروژه ها را تایپ یا انتخاب کنید",
     "description": "Instructions for selecting projects for a service account"
   },
   "newSaTypeToFilter": {
@@ -7735,7 +7744,7 @@
     "description": "Title for the section displaying access tokens."
   },
   "createAccessToken": {
-    "message": "Create access token",
+    "message": "توکن دسترسی ایجاد کنید",
     "description": "Button label for creating a new access token."
   },
   "expires": {
@@ -8237,7 +8246,7 @@
     "message": "هنگام تلاش برای خواندن فایل درون ریزی شده خطایی رخ داد"
   },
   "accessedSecretWithId": {
-    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "message": "به یک راز با شناسه‌ی $SECRET_ID$ دسترسی پیدا شد",
     "placeholders": {
       "secret_id": {
         "content": "$1",
@@ -8255,7 +8264,7 @@
     }
   },
   "editedSecretWithId": {
-    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "message": "یک راز با شناسه‌ی $SECRET_ID$ دسترسی ویرایش شد",
     "placeholders": {
       "secret_id": {
         "content": "$1",
@@ -8264,7 +8273,7 @@
     }
   },
   "deletedSecretWithId": {
-    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "message": "یک راز با شناسه‌ی $SECRET_ID$ دسترسی حذف شد",
     "placeholders": {
       "secret_id": {
         "content": "$1",
@@ -8273,7 +8282,7 @@
     }
   },
   "createdSecretWithId": {
-    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "message": "یک راز با شناسه‌ی $SECRET_ID$ دسترسی ساخته شد",
     "placeholders": {
       "secret_id": {
         "content": "$1",
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "درخواست تأیید مدیر"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "trustedDeviceEncryption": {
     "message": "رمزگذاری دستگاه مورد اعتماد"
   },
@@ -8908,19 +8923,19 @@
     "description": "Label indicating the most common import formats"
   },
   "uriMatchDefaultStrategyHint": {
-    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "message": "تشخیص تطابق نشانی اینترنتی روشی است که Bitwarden برای شناسایی پیشنهادهای پر کردن خودکار استفاده می‌کند.",
     "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
   },
   "regExAdvancedOptionWarning": {
-    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "message": "\"عبارت منظم\" یک گزینه پیشرفته است که خطر افشای اطلاعات ورود را افزایش می‌دهد.",
     "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
   },
   "startsWithAdvancedOptionWarning": {
-    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "message": "\"شروع با\" یک گزینه پیشرفته است که خطر افشای اطلاعات ورود را افزایش می‌دهد.",
     "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
   },
   "uriMatchWarningDialogLink": {
-    "message": "More about match detection",
+    "message": "اطلاعات بیشتر درباره‌ی تشخیص تطابق",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
   "maintainYourSubscription": {
@@ -10714,49 +10729,49 @@
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
   "setupExtensionPageTitle": {
-    "message": "Autofill your passwords securely with one click"
+    "message": "کلمات عبور خود را با یک کلیک به‌صورت ایمن به‌صورت خودکار وارد کنید"
   },
   "setupExtensionPageDescription": {
-    "message": "Get the Bitwarden browser extension and start autofilling today"
+    "message": "افزونه مرورگر Bitwarden را دریافت کنید و از امروز وارد کردن خودکار اطلاعات را آغاز کنید"
   },
   "getTheExtension": {
-    "message": "Get the extension"
+    "message": "افزونه را دریافت کنید"
   },
   "addItLater": {
-    "message": "Add it later"
+    "message": "بعداً اضافه کن"
   },
   "cannotAutofillPasswordsWithoutExtensionTitle": {
-    "message": "You can't autofill passwords without the browser extension"
+    "message": "بدون افزونه مرورگر نمی‌توانید کلمات عبور را به‌صورت خودکار وارد کنید"
   },
   "cannotAutofillPasswordsWithoutExtensionDesc": {
-    "message": "Are you sure you don't want to add the extension now?"
+    "message": "آیا مطمئن هستید که نمی‌خواهید افزونه را همین حالا اضافه کنید؟"
   },
   "skipToWebApp": {
-    "message": "Skip to web app"
+    "message": "رفتن به نسخه وب برنامه"
   },
   "bitwardenExtensionInstalled": {
-    "message": "Bitwarden extension installed!"
+    "message": "افزونه Bitwarden نصب شد!"
   },
   "openExtensionToAutofill": {
-    "message": "Open the extension to log in and start autofilling."
+    "message": "افزونه را باز کنید تا وارد شوید و پر کردن خودکار را آغاز کنید."
   },
   "openBitwardenExtension": {
-    "message": "Open Bitwarden extension"
+    "message": "افزونه Bitwarden را باز کنید"
   },
   "gettingStartedWithBitwardenPart1": {
-    "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "message": "برای دریافت نکات شروع به کار با Bitwarden به صفحه مراجعه کنید",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
-    "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "message": "مرکز آموزش",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
-    "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "message": "مرکز راهنمایی",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
-    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+    "message": "با افزونه مرورگر Bitwarden می‌توانید به‌راحتی ورودهای جدید ایجاد کنید، به ورودهای ذخیره‌شده خود مستقیماً از نوار ابزار مرورگر دسترسی داشته باشید و با استفاده از قابلیت پر کردن خودکار Bitwarden، سریع‌تر وارد حساب‌ها شوید."
   },
   "restart": {
     "message": "راه اندازی مجدد"
@@ -10781,7 +10796,55 @@
     }
   },
   "billingAddressRequiredToAddCredit": {
-    "message": "Billing address required to add credit.",
+    "message": "نشانی صورتحساب برای افزودن اعتبار الزامی است.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/fi/messages.json b/apps/web/src/locales/fi/messages.json
index 7eb5783ddfc..cdc770fb636 100644
--- a/apps/web/src/locales/fi/messages.json
+++ b/apps/web/src/locales/fi/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "Minä"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "myVault": {
     "message": "Oma holvi"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "Jatkamalla kirjaudut ulos nykyisestä istunnostasi ja joudut kirjautumaan uudelleen. Muiden laitteiden istunnot saattavat pysyä aktiivisina vielä tunnin ajan."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "Sähköpostiosoite tallennettiin"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Oletuskokoelma"
   },
-  "myItems": {
-    "message": "My Items"
-  },
   "getHelp": {
     "message": "Hanki apua"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Päivitä pääsalasana"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "Organisaatiosi ylläpito on hiljattain vaihtanut pääsalasanasi ja käyttääksesi holvia sinun on päivitettävä se nyt. Tämä uloskirjaa kaikki nykyiset istunnot pakottaen uudelleenkirjautumisen. Muiden laitteiden aktiiviset istunnot saattavat toimia vielä tunnin ajan."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Pyydä hyväksyntää ylläpidolta"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "trustedDeviceEncryption": {
     "message": "Luotettu laitesalaus"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Billing address required to add credit.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/fil/messages.json b/apps/web/src/locales/fil/messages.json
index 8ce0e5095d3..3b7d552254a 100644
--- a/apps/web/src/locales/fil/messages.json
+++ b/apps/web/src/locales/fil/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "Ako"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "myVault": {
     "message": "Vault ko"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "Mala-log out ka sa kasalukuyan mong sesyon kung tutuloy ka, at kakailanganin mong mag-log in ulit. Maaaring manatiling aktibo ang mga sesyon sa iba pang device nang hanggang isang oras."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "Na-save ang email"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Default na koleksyon"
   },
-  "myItems": {
-    "message": "My Items"
-  },
   "getHelp": {
     "message": "Humingi ng tulong"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "I-update ang master password"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "Ang iyong master password ay kamakailan lamang na binago ng isang administrator sa iyong organisasyon. Upang makapunta sa vault, kailangan mong i-update ito ngayon. Ang pagpapatuloy ay maglilipat ka sa iyong kasalukuyang sesyon, na nangangailangan sa iyo na mag-log in muli. Ang mga aktibong sesyon sa iba pang mga device ay maaaring magpatuloy na aktibo hanggang sa isang oras."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "trustedDeviceEncryption": {
     "message": "Trusted device encryption"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Billing address required to add credit.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/fr/messages.json b/apps/web/src/locales/fr/messages.json
index 46d5af15fff..528e69afafa 100644
--- a/apps/web/src/locales/fr/messages.json
+++ b/apps/web/src/locales/fr/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "Moi"
   },
+  "myItems": {
+    "message": "Mes éléments"
+  },
   "myVault": {
     "message": "Mon coffre"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "En poursuivant, vous serez déconnecté de votre session en cours, ce qui vous obligera à vous reconnecter. Les sessions actives sur d'autres appareils peuvent rester actives pendant encore une heure."
   },
+  "changePasswordWarning": {
+    "message": "Après avoir changé votre mot de passe, vous devrez vous connecter avec votre nouveau mot de passe. Les sessions actives sur d'autres appareils seront déconnectées dans un délai d'une heure."
+  },
   "emailChanged": {
     "message": "Courriel sauvegardé"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Collection par défaut"
   },
-  "myItems": {
-    "message": "Mes éléments"
-  },
   "getHelp": {
     "message": "Obtenir de l'aide"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Mettre à jour le mot de passe principal"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Changez votre mot de passe principal pour terminer la récupération du compte."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Votre mot de passe principal ne répond pas aux exigences de cette organisation. Changez votre mot de passe principal pour continuer."
+  },
   "updateMasterPasswordWarning": {
     "message": "Votre mot de passe principal a été récemment changé par un administrateur de votre organisation. Pour pouvoir accéder au coffre, vous devez mettre à jour votre mot de passe principal maintenant. En poursuivant, vous serez déconnecté de votre session actuelle et vous devrez vous reconnecter. Les sessions actives sur d'autres appareils peuvent rester actives pendant encore une heure."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Demander l'approbation de l'administrateur"
   },
+  "unableToCompleteLogin": {
+    "message": "Impossible de compléter la connexion"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "Vous devez vous connecter sur un appareil de confiance ou demander à votre administrateur de vous assigner un mot de passe."
+  },
   "trustedDeviceEncryption": {
     "message": "Chiffrement de l'appareil de confiance"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "Pour des conseils sur les débuts avec Bitwarden, visitez le",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Centre d'apprentissage",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Centre d’aide",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "Avec l'extension de navigateur Bitwarden, vous pouvez facilement créer de nouveaux identifiants, accéder à vos identifiants enregistrés directement à partir de la barre d'outils de votre navigateur, et vous connecter rapidement aux comptes en utilisant le remplissage automatique de Bitwarden."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "L'adresse de facturation est requise pour ajouter du crédit.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Adresse de facturation"
+  },
+  "addBillingAddress": {
+    "message": "Ajouter une adresse de facturation"
+  },
+  "editBillingAddress": {
+    "message": "Modifier l'adresse de facturation"
+  },
+  "noBillingAddress": {
+    "message": "Aucune adresse sur le fichier."
+  },
+  "billingAddressUpdated": {
+    "message": "Votre adresse de facturation a été mise à jour."
+  },
+  "paymentDetails": {
+    "message": "Informations de paiement"
+  },
+  "paymentMethodUpdated": {
+    "message": "Votre méthode de paiement a bien été mise à jour."
+  },
+  "bankAccountVerified": {
+    "message": "Votre compte bancaire a été vérifié."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Tout crédit disponible sera automatiquement appliqué aux factures générées pour ce compte."
+  },
+  "mustBePositiveNumber": {
+    "message": "Doit être un nombre positif"
+  },
+  "cardSecurityCode": {
+    "message": "Code de sécurité de la carte"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Code de sécurité de la carte, également connu sous le nom de CVV ou CVC, est généralement un numéro à 3 chiffres imprimé au dos de votre carte de crédit ou un numéro à 4 chiffres imprimé au recto au-dessus du numéro de votre carte."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Le paiement avec un compte bancaire est seulement disponible pour les clients aux États-Unis. Vous devrez procéder à la vérification de votre compte bancaire. Nous effectuerons un micro-dépôt dans les 1-2 prochains jours ouvrables. Entrez le code de la transaction de ce dépôt sur la page d'Informations de Paiement pour compléter la vérification du compte bancaire. Si vous ne complétez pas la vérification de votre compte bancaire résultera en un paiement manqué et votre abonnement sera suspendu."
+  },
+  "taxId": {
+    "message": "ID de la taxe : $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/gl/messages.json b/apps/web/src/locales/gl/messages.json
index b294f322bb2..bcd78d82bb0 100644
--- a/apps/web/src/locales/gl/messages.json
+++ b/apps/web/src/locales/gl/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "Me"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "myVault": {
     "message": "My vault"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "Email saved"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Default collection"
   },
-  "myItems": {
-    "message": "My Items"
-  },
   "getHelp": {
     "message": "Get help"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Update master password"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "Your master password was recently changed by an administrator in your organization. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "trustedDeviceEncryption": {
     "message": "Trusted device encryption"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Billing address required to add credit.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/he/messages.json b/apps/web/src/locales/he/messages.json
index 159f5056b6b..ab752731a82 100644
--- a/apps/web/src/locales/he/messages.json
+++ b/apps/web/src/locales/he/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "אני"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "myVault": {
     "message": "הכספת שלי"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "בכדי להמשיך הסשן הנוכחי ינותק, ותדרש להזין את פרטי הכניסה החדשים. כל הסשנים הפעילים במכשירים אחרים ישארו פעילים עד שעה ממועד הכניסה החדשה."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "דוא\"ל נשמר"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "אוסף ברירת מחדל"
   },
-  "myItems": {
-    "message": "My Items"
-  },
   "getHelp": {
     "message": "קבל עזרה"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "עדכן סיסמה ראשית"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "הסיסמה הראשית שלך שונתה לאחרונה על ידי מנהל בארגון שלך. כדי לגשת אל הכספת, אתה מוכרח לעדכן את הסיסמה הראשית שלך עכשיו. המשך התהליך יוציא אותך מההפעלה הנוכחית שלך ותידרש להיכנס חזרה. הפעלות פעילות במכשירים אחרים עלולות להישאר פעילות למשך עד שעה אחת."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "בקש אישור מנהל"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "trustedDeviceEncryption": {
     "message": "הצפנת מכשיר מהימן"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Billing address required to add credit.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/hi/messages.json b/apps/web/src/locales/hi/messages.json
index 8b97a5610a5..33fe1d897ca 100644
--- a/apps/web/src/locales/hi/messages.json
+++ b/apps/web/src/locales/hi/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "मैं"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "myVault": {
     "message": "मेरी तिजोरी"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "Email saved"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Default collection"
   },
-  "myItems": {
-    "message": "My Items"
-  },
   "getHelp": {
     "message": "Get help"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Update master password"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "Your master password was recently changed by an administrator in your organization. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "trustedDeviceEncryption": {
     "message": "Trusted device encryption"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Billing address required to add credit.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/hr/messages.json b/apps/web/src/locales/hr/messages.json
index 9c55f731058..1e2a2bebcc5 100644
--- a/apps/web/src/locales/hr/messages.json
+++ b/apps/web/src/locales/hr/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "Ja"
   },
+  "myItems": {
+    "message": "Moje stavke"
+  },
   "myVault": {
     "message": "Moj trezor"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "Ako nastaviš, biti će zatvorena trenutna sesija, što će zahtijevati ponovnu prijavu uklljučujući i dvostruku autentifikaciju, ako je aktivna. Aktivne sesije na drugim uređajima ostati će aktivne još jedan sat."
   },
+  "changePasswordWarning": {
+    "message": "Nakon promjene lozinke, moraš se prijaviti s novom lozinkom. Aktivne sesije na drugim uređajima bit će odjavljene u roku od jednog sata."
+  },
   "emailChanged": {
     "message": "Adresa e-pošte spremljena"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Zadana zbirka"
   },
-  "myItems": {
-    "message": "Moje stavke"
-  },
   "getHelp": {
     "message": "Potraži pomoć"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Ažuriraj glavnu lozinku"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Promijeni svoju glavnu lozinku za dovršetak oporavka računa."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Tvoja glavna lozinka ne ispunjava zahtjeve ove organizacije. Promijeni glavnu lozinku za nastavak."
+  },
   "updateMasterPasswordWarning": {
     "message": "Tvoju glavnu lozinku je nedavno promijenio administrator tvoje organizacije. Za pristup trezoru, potrebno je ažurirati glavnu lozinku, što će te odjaviti iz trenutne sesije, te ćeš se morati ponovno prijaviti. Aktivne sesije na drugim uređajima mogu ostati aktivne još sat vremena."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Zatraži odobrenje administratora"
   },
+  "unableToCompleteLogin": {
+    "message": "Nije moguće dovršiti prijavu"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "Moraš se prijaviti na pouzdanom uređaju ili zamoliti administratora da ti dodijeli lozinku."
+  },
   "trustedDeviceEncryption": {
     "message": "Enkripcija pouzdanog uređaja"
   },
@@ -8908,19 +8923,19 @@
     "description": "Label indicating the most common import formats"
   },
   "uriMatchDefaultStrategyHint": {
-    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "message": "Otkrivanje podudaranja URI-ja je način na koji Bitwarden identificira prijedloge za auto-ispunu.",
     "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
   },
   "regExAdvancedOptionWarning": {
-    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "message": "„Regularni izraz” je napredna mogućnost s povećanim rizikom od otkrivanja vjerodajnica.",
     "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
   },
   "startsWithAdvancedOptionWarning": {
-    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "message": "„Počinje s” je napredna mogućnost s povećnim rizikom od otkrivanja vjerodajnica.",
     "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
   },
   "uriMatchWarningDialogLink": {
-    "message": "More about match detection",
+    "message": "Više o otkrivanju podudaranja",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
   "maintainYourSubscription": {
@@ -10714,49 +10729,49 @@
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
   "setupExtensionPageTitle": {
-    "message": "Autofill your passwords securely with one click"
+    "message": "Siguerno auto-ispuni svoje lozinke jednim klikom"
   },
   "setupExtensionPageDescription": {
-    "message": "Get the Bitwarden browser extension and start autofilling today"
+    "message": "Nabavi Bitwarden proširenje za preglednik za jednostavnu auto-ispunu lozinki"
   },
   "getTheExtension": {
-    "message": "Get the extension"
+    "message": "Nabavi prošitenje"
   },
   "addItLater": {
-    "message": "Add it later"
+    "message": "Dodaj kasnije"
   },
   "cannotAutofillPasswordsWithoutExtensionTitle": {
-    "message": "You can't autofill passwords without the browser extension"
+    "message": "Ne možeš auto-ispunjavati lozinke bez proširenja za preglednik"
   },
   "cannotAutofillPasswordsWithoutExtensionDesc": {
-    "message": "Are you sure you don't want to add the extension now?"
+    "message": "Sigurno ne želiš sada dodati proširenje?"
   },
   "skipToWebApp": {
-    "message": "Skip to web app"
+    "message": "Preskoči na web stranicu"
   },
   "bitwardenExtensionInstalled": {
-    "message": "Bitwarden extension installed!"
+    "message": "Bitwarden proširenje je instalirano!"
   },
   "openExtensionToAutofill": {
-    "message": "Open the extension to log in and start autofilling."
+    "message": "Otvori proširenje i prijavi se za početak korištenja auto-ispune."
   },
   "openBitwardenExtension": {
-    "message": "Open Bitwarden extension"
+    "message": "Otvori Bitwarden proširenje"
   },
   "gettingStartedWithBitwardenPart1": {
-    "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "message": "Za savjete o korištenju Bitwardena posjeti",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
-    "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "message": "centar za učenje",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
-    "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "message": "centar za pomoć",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
-    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+    "message": "Pomoću Bitwarden proširenja za preglednik možeš jednostavno stvoriti nove prijave, pristupiti spremljenim prijavama izravno s alatne trake preglednika i brzo se prijaviti na svoje račune pomoću Bitwarden auto-ispune."
   },
   "restart": {
     "message": "Saznaj više o SSH agentu"
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Za dodavanje kredita potrebna je adresa za naplatu.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Adresa za naplatu"
+  },
+  "addBillingAddress": {
+    "message": "Dodaj adresu za naplatu"
+  },
+  "editBillingAddress": {
+    "message": "Uredi adresu za naplatu"
+  },
+  "noBillingAddress": {
+    "message": "Nije unesena adresa."
+  },
+  "billingAddressUpdated": {
+    "message": "Tvoja adresa za naplatu je ažurirana."
+  },
+  "paymentDetails": {
+    "message": "Detalji o plaćanju"
+  },
+  "paymentMethodUpdated": {
+    "message": "Tvoj način plaćanja je ažurirana."
+  },
+  "bankAccountVerified": {
+    "message": "Tvoj bankovni račun je potvrđen."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Sav raspoloživi kredit automatski će se primijeniti na fakture generirane za ovaj račun."
+  },
+  "mustBePositiveNumber": {
+    "message": "Mora biti veće od nule"
+  },
+  "cardSecurityCode": {
+    "message": "Kontrolni broj kartice"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Kontrolni broj kartice, također poznat kao CVV ili CVC, obično je troznamenkasti broj otisnut na poleđini vaše kreditne kartice ili četveroznamenkasti broj otisnut na prednjoj strani iznad broja vaše kartice."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Plaćanje putem bankovnog računa dostupno je samo kupcima u SAD. Treba potvrditi bankovni račun. Unutar 1 - 2 radna dana izvršit ćemo mikro-uplatu. Unesi šifru u opisu ove uplate na stranici za naplatu pružatelja usluge za potvrdu bankovnog računa. Ne-potvrda bankovnog računa rezultirat će propuštenim plaćanjem i obustavom pretplate."
+  },
+  "taxId": {
+    "message": "Porezni broj: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/hu/messages.json b/apps/web/src/locales/hu/messages.json
index 60469141ef7..58fbaaf6d57 100644
--- a/apps/web/src/locales/hu/messages.json
+++ b/apps/web/src/locales/hu/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "Én"
   },
+  "myItems": {
+    "message": "Saját elemek"
+  },
   "myVault": {
     "message": "Saját széf"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "A folytatásban a felhasználó kiléptetésre kerül a jelenlegi munkamenetből, szükséges az ismételt bejelentkezés. Más eszközökön aktív munkamenetek akár egy órán keresztül is aktívak maradhatnak."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "Az email cím megváltozott."
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Alapértelmezett gyűjtemény"
   },
-  "myItems": {
-    "message": "Saját elemek"
-  },
   "getHelp": {
     "message": "Segítségkérés"
   },
@@ -6065,7 +6068,7 @@
     "message": "Hozzáadás"
   },
   "masterPasswordSuccessfullySet": {
-    "message": "Master password successfully set"
+    "message": "A mesterjelszó sikeresen beállításra került."
   },
   "updatedMasterPassword": {
     "message": "A mesterjelszó frissítésre került."
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Mesterjelszó frissítése"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "A mesterjelszót nemrégiben megváltoztatta a szervezet rendszergazdája. A tároló eléréséhez most frissíteni kell a mesterjelszót. A folytatás kijelentkeztet az aktuális munkamenetből és újra be kell jelentkezni. A más eszközökön végzett aktív munkamenetek akár egy órán keresztül is aktívak maradhatnak."
   },
@@ -6927,7 +6936,7 @@
     "message": "Jelszó használata"
   },
   "useThisPassphrase": {
-    "message": "Jelmondat használata"
+    "message": "Jelszó használata"
   },
   "useThisUsername": {
     "message": "Felhasználónév használata"
@@ -8237,7 +8246,7 @@
     "message": "Hiba történt az import fájl beolvasásának kísérletekor."
   },
   "accessedSecretWithId": {
-    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "message": "Titkos adat elérése történt egy titkos adathoz azonosítóval: $SECRET_ID$",
     "placeholders": {
       "secret_id": {
         "content": "$1",
@@ -8255,7 +8264,7 @@
     }
   },
   "editedSecretWithId": {
-    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "message": "Titkos adat szerkesztése történt egy titkos adathoz azonosítóval: $SECRET_ID$",
     "placeholders": {
       "secret_id": {
         "content": "$1",
@@ -8264,7 +8273,7 @@
     }
   },
   "deletedSecretWithId": {
-    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "message": "Titkos adat törlése történt egy titkos adathoz azonosítóval: $SECRET_ID$",
     "placeholders": {
       "secret_id": {
         "content": "$1",
@@ -8273,7 +8282,7 @@
     }
   },
   "createdSecretWithId": {
-    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "message": "Új titkos adat létrehozása történt egy azonosítóval: $SECRET_ID$",
     "placeholders": {
       "secret_id": {
         "content": "$1",
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Adminisztrátori jóváhagyás kérés"
   },
+  "unableToCompleteLogin": {
+    "message": "Nem lehet befejezni a bejelentkezést."
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "Be kell jelentkezni egy megbízható eszközön vagy meg kell kérni az adminisztrátort, hogy rendeljen hozzá egy jelszót."
+  },
   "trustedDeviceEncryption": {
     "message": "Megbízható eszköztitkosítás"
   },
@@ -8908,19 +8923,19 @@
     "description": "Label indicating the most common import formats"
   },
   "uriMatchDefaultStrategyHint": {
-    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "message": "Az URI egyezés észlelése az, ahogyan a Bitwarden azonosítja az automatikus kitöltési javaslatokat.",
     "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
   },
   "regExAdvancedOptionWarning": {
-    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "message": "A \"Normál kifejezés“ egy fejlett opció, amely a hitelesítő adatok növekvő kiszivárgásának kockázatával.",
     "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
   },
   "startsWithAdvancedOptionWarning": {
-    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "message": "A \"Kezdés\" egy fejlett opció, amely a hitelesítő adatok kiszivárgásának növekvő kockázatával.",
     "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
   },
   "uriMatchWarningDialogLink": {
-    "message": "More about match detection",
+    "message": "Bővebben az egyezés felismerésről",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
   "maintainYourSubscription": {
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "A jóváírás hozzáadásához szükséges számlázási cím.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/id/messages.json b/apps/web/src/locales/id/messages.json
index de45c9bd7de..1612dd2458e 100644
--- a/apps/web/src/locales/id/messages.json
+++ b/apps/web/src/locales/id/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "Saya"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "myVault": {
     "message": "Brankas Saya"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "Melanjutkan akan mengeluarkan Anda dari sesi saat ini, mengharuskan Anda untuk masuk kembali. Sesi aktif di perangkat lain dapat terus aktif hingga satu jam."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "Surel Diubah"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Koleksi Default"
   },
-  "myItems": {
-    "message": "My Items"
-  },
   "getHelp": {
     "message": "Dapatkan Bantuan"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Perbarui Kata Sandi Utama"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "Your master password was recently changed by an administrator in your organization. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "trustedDeviceEncryption": {
     "message": "Trusted device encryption"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Billing address required to add credit.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/it/messages.json b/apps/web/src/locales/it/messages.json
index f09e12b6042..98a9be7db8e 100644
--- a/apps/web/src/locales/it/messages.json
+++ b/apps/web/src/locales/it/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "Io"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "myVault": {
     "message": "La mia cassaforte"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "Procedere ti farà uscire dalla sessione corrente, richiedendoti di accedere di nuovo. Le sessioni attive su altri dispositivi potrebbero continuare a rimanere attive per un massimo di un'ora."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "Email salvata"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Raccolta predefinita"
   },
-  "myItems": {
-    "message": "My Items"
-  },
   "getHelp": {
     "message": "Ottieni aiuto"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Aggiorna password principale"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "La tua password principale è stata recentemente modificata da un amministratore nella tua organizzazione. Per accedere alla cassaforte, aggiornala ora. Procedere ti farà uscire dalla sessione corrente, richiedendoti di accedere di nuovo. Le sessioni attive su altri dispositivi potrebbero continuare a rimanere attive per un massimo di un'ora."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Richiedi approvazione dell'amministratore"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "trustedDeviceEncryption": {
     "message": "Crittografia dispositivo fidato"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Indirizzo di fatturazione richiesto per aggiungere credito.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/ja/messages.json b/apps/web/src/locales/ja/messages.json
index 77102fddf47..c1b91d1f0e9 100644
--- a/apps/web/src/locales/ja/messages.json
+++ b/apps/web/src/locales/ja/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "自分"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "myVault": {
     "message": "保管庫"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "次に進むと現在のセッションからログアウトし再度ログインが必要になります。他のデバイスでのセッションは1時間程度維持されます。"
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "メールアドレスの変更"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "既定のコレクション"
   },
-  "myItems": {
-    "message": "My Items"
-  },
   "getHelp": {
     "message": "ヘルプを参照する"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "マスターパスワードを更新"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "マスターパスワードが最近組織の管理者によって変更されました。保管庫にアクセスするには、今すぐマスターパスワードを更新しなければなりません。続行すると現在のセッションからログアウトし、再度ログインする必要があります。 他のデバイス上のアクティブなセッションは、最大1時間アクティブであり続けることがあります。"
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "管理者の承認を要求する"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "trustedDeviceEncryption": {
     "message": "信頼できるデバイスでの暗号化"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Billing address required to add credit.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/ka/messages.json b/apps/web/src/locales/ka/messages.json
index dc4e1933951..fd9c0cf4767 100644
--- a/apps/web/src/locales/ka/messages.json
+++ b/apps/web/src/locales/ka/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "მე"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "myVault": {
     "message": "ჩემი საცავი"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "Email saved"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Default collection"
   },
-  "myItems": {
-    "message": "My Items"
-  },
   "getHelp": {
     "message": "Get help"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Update master password"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "Your master password was recently changed by an administrator in your organization. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "trustedDeviceEncryption": {
     "message": "Trusted device encryption"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Billing address required to add credit.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/km/messages.json b/apps/web/src/locales/km/messages.json
index 64c86ffdfd2..c20a685c1de 100644
--- a/apps/web/src/locales/km/messages.json
+++ b/apps/web/src/locales/km/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "Me"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "myVault": {
     "message": "My vault"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "Email saved"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Default collection"
   },
-  "myItems": {
-    "message": "My Items"
-  },
   "getHelp": {
     "message": "Get help"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Update master password"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "Your master password was recently changed by an administrator in your organization. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "trustedDeviceEncryption": {
     "message": "Trusted device encryption"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Billing address required to add credit.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/kn/messages.json b/apps/web/src/locales/kn/messages.json
index 66bde8ae3ff..a10f9f5fe65 100644
--- a/apps/web/src/locales/kn/messages.json
+++ b/apps/web/src/locales/kn/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "ನನ್ನ"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "myVault": {
     "message": "ನನ್ನ ವಾಲ್ಟ್"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "ಮುಂದುವರಿಯುವುದರಿಂದ ನಿಮ್ಮ ಪ್ರಸ್ತುತ ಸೆಷನ್‌ನಿಂದ ನಿಮ್ಮನ್ನು ಲಾಗ್ out ಟ್ ಮಾಡುತ್ತದೆ, ನಿಮಗೆ ಮತ್ತೆ ಲಾಗ್ ಇನ್ ಆಗುವ ಅಗತ್ಯವಿರುತ್ತದೆ. ಇತರ ಸಾಧನಗಳಲ್ಲಿನ ಸಕ್ರಿಯ ಸೆಷನ್‌ಗಳು ಒಂದು ಗಂಟೆಯವರೆಗೆ ಸಕ್ರಿಯವಾಗಿ ಮುಂದುವರಿಯಬಹುದು."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "ಇಮೇಲ್ ಬದಲಾಯಿಸಲಾಗಿದೆ"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "ಡೀಫಾಲ್ಟ್ ಸಂಗ್ರಹ"
   },
-  "myItems": {
-    "message": "My Items"
-  },
   "getHelp": {
     "message": "ಸಹಾಯ ಪಡೆ"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Update master password"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "Your master password was recently changed by an administrator in your organization. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "trustedDeviceEncryption": {
     "message": "Trusted device encryption"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Billing address required to add credit.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/ko/messages.json b/apps/web/src/locales/ko/messages.json
index 041dcbeafb3..3ee6f860d69 100644
--- a/apps/web/src/locales/ko/messages.json
+++ b/apps/web/src/locales/ko/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "나"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "myVault": {
     "message": "내 보관함"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "계속 진행하면, 현재 세션 또한 로그아웃 되므로 다시 로그인하여야 합니다. 2단계 로그인이 활성화 된 경우 다시 요구하는 메세지가 표시됩니다. 다른 기기의 활성화 된 세션은 최대 1시간 동안 유지 될 수 있습니다."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "이메일 변경됨"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "기본 컬렉션"
   },
-  "myItems": {
-    "message": "My Items"
-  },
   "getHelp": {
     "message": "문의하기"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "마스터 비밀번호 변경"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "Your master password was recently changed by an administrator in your organization. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "trustedDeviceEncryption": {
     "message": "Trusted device encryption"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Billing address required to add credit.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/lv/messages.json b/apps/web/src/locales/lv/messages.json
index fa435a7a34f..a9d67ed5860 100644
--- a/apps/web/src/locales/lv/messages.json
+++ b/apps/web/src/locales/lv/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "Es"
   },
+  "myItems": {
+    "message": "Mani vienumi"
+  },
   "myVault": {
     "message": "Mana glabātava"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "Tiks veikta atteikšanās no pašreizējās sesijas, un pēc tam būs nepieciešams vēlreiz pieteikties. Citās ierīcēs darbojošās sesijas var būt spēkā līdz vienai stundai."
   },
+  "changePasswordWarning": {
+    "message": "Pēc savas paroles nomainīšanas būs nepieciešams pieteikties ar jauno paroli. Spēkā esošajās sesijās citās ierīcēs stundas laikā notiks atteikšanās."
+  },
   "emailChanged": {
     "message": "E-pasta adrese nomainīta"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Noklusējuma krājums"
   },
-  "myItems": {
-    "message": "Mani vienumi"
-  },
   "getHelp": {
     "message": "Saņemt palīdzību"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Atjaunināt galveno paroli"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Jānomaina sava galvenā'parole, lai pabeigtu konta atkopi."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Galvenā parole neatbilst šīs apvienības prasībām. Jānomaina sava galvenā parole, lai turpinātu."
+  },
   "updateMasterPasswordWarning": {
     "message": "Apvienības pārvaldnieks nesen nomainīja galveno paroli. Tā ir jāatjaunina, lai varētu piekļūt glabātavai. Turpinot tiks izbeigta pašreizējā sesija un tiks pieprasīta atkārtota pieteikšanās. Esošās sesijas citās ierīcēs var turpināt darboties līdz vienai stundai."
   },
@@ -8237,7 +8246,7 @@
     "message": "Atgadījās kļūda, kad tika mēģināts nolasīt ievietošanas datni"
   },
   "accessedSecretWithId": {
-    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "message": "Piekļuve noslēpumam ar identifikatoru: $SECRET_ID$",
     "placeholders": {
       "secret_id": {
         "content": "$1",
@@ -8255,7 +8264,7 @@
     }
   },
   "editedSecretWithId": {
-    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "message": "Laboja noslēpumu ar identifikatoru: $SECRET_ID$",
     "placeholders": {
       "secret_id": {
         "content": "$1",
@@ -8264,7 +8273,7 @@
     }
   },
   "deletedSecretWithId": {
-    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "message": "Izdzēsa noslēpumu ar identifikatoru: $SECRET_ID$",
     "placeholders": {
       "secret_id": {
         "content": "$1",
@@ -8273,7 +8282,7 @@
     }
   },
   "createdSecretWithId": {
-    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "message": "Izveidoja noslēpumu ar identifikatoru: $SECRET_ID$",
     "placeholders": {
       "secret_id": {
         "content": "$1",
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Pieprasīt pārvaldītāja apstiprinājumu"
   },
+  "unableToCompleteLogin": {
+    "message": "Nevar pabeigt pieteikšanos"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "Nepieciešams pieteikties uzticamā ierīcē vai vaicāt pārvaldītājam, lai piešķir paroli."
+  },
   "trustedDeviceEncryption": {
     "message": "Uzticamo ierīču šifrēšana"
   },
@@ -8908,19 +8923,19 @@
     "description": "Label indicating the most common import formats"
   },
   "uriMatchDefaultStrategyHint": {
-    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "message": "URI atbilstības noteikšana ir veids, kā Bitwarden atpazīst automātiskās aizpildes ieteikumus.",
     "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
   },
   "regExAdvancedOptionWarning": {
-    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "message": "\"Regulārā izteiksme\" ir lietpratējiem paredzēta iespēja ar paaugstinātu piekļuves datu atklāšanas bīstamību.",
     "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
   },
   "startsWithAdvancedOptionWarning": {
-    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "message": "\"Sākas ar' ir lietpratējiem paredzēta iespēja ar paaugstinātu piekļuves datu atklāšanas bīstamību.",
     "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
   },
   "uriMatchWarningDialogLink": {
-    "message": "More about match detection",
+    "message": "Vairāk par atbilstības noteikšanu",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
   "maintainYourSubscription": {
@@ -10714,49 +10729,49 @@
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
   "setupExtensionPageTitle": {
-    "message": "Autofill your passwords securely with one click"
+    "message": "Droša paroļu automātiska aizpilde ar vienu klikšķi"
   },
   "setupExtensionPageDescription": {
-    "message": "Get the Bitwarden browser extension and start autofilling today"
+    "message": "Iegūsti Bitwarden pārlūka paplašinājumu un uzsāc automātisko aizpildi jau šodien"
   },
   "getTheExtension": {
-    "message": "Get the extension"
+    "message": "Iegūt paplašinājumu"
   },
   "addItLater": {
-    "message": "Add it later"
+    "message": "Pievienot to vēlāk"
   },
   "cannotAutofillPasswordsWithoutExtensionTitle": {
-    "message": "You can't autofill passwords without the browser extension"
+    "message": "Paroles nevar automātiski aizpildīt bez pārlūka paplašinājuma"
   },
   "cannotAutofillPasswordsWithoutExtensionDesc": {
-    "message": "Are you sure you don't want to add the extension now?"
+    "message": "Vai tiešām tagad nepievienot paplašinājumu?"
   },
   "skipToWebApp": {
-    "message": "Skip to web app"
+    "message": "Pārcelties uz tīmekļa lietotni"
   },
   "bitwardenExtensionInstalled": {
-    "message": "Bitwarden extension installed!"
+    "message": "Bitwarden paplašinājums uzstādīts."
   },
   "openExtensionToAutofill": {
-    "message": "Open the extension to log in and start autofilling."
+    "message": "Jāatver paplašinājums, lai pieteiktos un uzsāktu automātisko aizpildi."
   },
   "openBitwardenExtension": {
-    "message": "Open Bitwarden extension"
+    "message": "Atvērt Bitwarden paplašinājumu"
   },
   "gettingStartedWithBitwardenPart1": {
-    "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "message": "Lai iegūtu padomus par Bitwarden izmantošanas uzsākšanu, jāapmeklē",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
-    "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "message": "Mācīšanāš centrs",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
-    "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "message": "Palīdzības centrs",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
-    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+    "message": "Ar Bitwarden pārlūka paplašinājumu var vienkārši izveidot jaunus pieteikšanās vienumus, piekļūt tiem tieši no pārlūka rīkjoslas un ātri pieteikties kontos ar Bitwarden automātisko aizpildi."
   },
   "restart": {
     "message": "Palaist no jauna"
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Norēķinu adrese ir nepieciešama, lai pievienot kredītu.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Norēķinu adrese"
+  },
+  "addBillingAddress": {
+    "message": "Pievienot norēķinu adresi"
+  },
+  "editBillingAddress": {
+    "message": "Labot norēķinu adresi"
+  },
+  "noBillingAddress": {
+    "message": "Nav pievienota adrese."
+  },
+  "billingAddressUpdated": {
+    "message": "Norēķinu adrese tika atjaunināta."
+  },
+  "paymentDetails": {
+    "message": "Maksājumu informācija"
+  },
+  "paymentMethodUpdated": {
+    "message": "Maksājumu veids tika atjaunināts."
+  },
+  "bankAccountVerified": {
+    "message": "Bankas konts tika apliecināts."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Jebkāds pieejamais kredīts tiks automātiski pielietots šim kontam izveidotajiem rēķiniem."
+  },
+  "mustBePositiveNumber": {
+    "message": "Jābūt pozitīvam skaitlim"
+  },
+  "cardSecurityCode": {
+    "message": "Kartes drošības kods"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Kartes drošības kods, zināms arī kā CVV vai CVC, parasti ir uz kartes aizmugures uzdrukāts 3 ciparu skaitlis vai uz priekšpuses uzdrukāts 4 ciparu skaitlis virs kartes numura."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Apmaksa ar bankas kontu ir pieejama tikai klientiem Savienotajās Valstīs. Būs nepieciešams apliecināt savu bankas kontu. Mēs veiksim sīkiemaksu nākamās darba dienas vai divu laikā. Pēc tam šīs iemaksas uzdevuma aprakstā esošais kods būs jāievada maksājumu informācijas lapā, lai apliecinātu bankas kontu. Bankas konta apliecināšanas neveikšana beigsies ar nokavētu maksājumu un apturētu abonementu."
+  },
+  "taxId": {
+    "message": "Nodokļu Id: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/ml/messages.json b/apps/web/src/locales/ml/messages.json
index cbba9a91a66..caaaef3523d 100644
--- a/apps/web/src/locales/ml/messages.json
+++ b/apps/web/src/locales/ml/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "Me"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "myVault": {
     "message": "എൻ്റെ വാൾട്"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "ഇമെയിൽ മാറ്റി"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Default Collection"
   },
-  "myItems": {
-    "message": "My Items"
-  },
   "getHelp": {
     "message": "Get Help"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Update master password"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "Your master password was recently changed by an administrator in your organization. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "trustedDeviceEncryption": {
     "message": "Trusted device encryption"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Billing address required to add credit.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/mr/messages.json b/apps/web/src/locales/mr/messages.json
index 4c3912db8c5..15695896944 100644
--- a/apps/web/src/locales/mr/messages.json
+++ b/apps/web/src/locales/mr/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "Me"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "myVault": {
     "message": "My vault"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "Email saved"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Default collection"
   },
-  "myItems": {
-    "message": "My Items"
-  },
   "getHelp": {
     "message": "Get help"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Update master password"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "Your master password was recently changed by an administrator in your organization. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "trustedDeviceEncryption": {
     "message": "Trusted device encryption"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Billing address required to add credit.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/my/messages.json b/apps/web/src/locales/my/messages.json
index 64c86ffdfd2..c20a685c1de 100644
--- a/apps/web/src/locales/my/messages.json
+++ b/apps/web/src/locales/my/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "Me"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "myVault": {
     "message": "My vault"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "Email saved"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Default collection"
   },
-  "myItems": {
-    "message": "My Items"
-  },
   "getHelp": {
     "message": "Get help"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Update master password"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "Your master password was recently changed by an administrator in your organization. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "trustedDeviceEncryption": {
     "message": "Trusted device encryption"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Billing address required to add credit.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/nb/messages.json b/apps/web/src/locales/nb/messages.json
index 267bfe0d8b3..d64d13adbaf 100644
--- a/apps/web/src/locales/nb/messages.json
+++ b/apps/web/src/locales/nb/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "Meg"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "myVault": {
     "message": "Mitt hvelv"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "Å fortsette vil logge deg ut av din nåværende økt, og krever at du logger deg på igjen. Aktive økter på andre enheter kan forbli aktive i opptil en time."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "E-postadressen endret"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Standardsamling"
   },
-  "myItems": {
-    "message": "My Items"
-  },
   "getHelp": {
     "message": "Få hjelp"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Oppdater hovedpassord"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "Hovedpassordet ditt ble nylig endret av en administrator i organisasjonen din. For å få tilgang til hvelvet, må du oppdatere hovedpassordet ditt nå. Hvis du fortsetter, logges du ut av den nåværende økten, og du må logge på igjen. Aktive økter på andre enheter kan fortsette å være aktive i opptil én time."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Be om administratorgodkjennelse"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "trustedDeviceEncryption": {
     "message": "Trusted device encryption"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Billing address required to add credit.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/ne/messages.json b/apps/web/src/locales/ne/messages.json
index 722106ed1aa..437a48beb7f 100644
--- a/apps/web/src/locales/ne/messages.json
+++ b/apps/web/src/locales/ne/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "Me"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "myVault": {
     "message": "My vault"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "Email saved"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Default collection"
   },
-  "myItems": {
-    "message": "My Items"
-  },
   "getHelp": {
     "message": "Get help"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Update master password"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "Your master password was recently changed by an administrator in your organization. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "trustedDeviceEncryption": {
     "message": "Trusted device encryption"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Billing address required to add credit.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/nl/messages.json b/apps/web/src/locales/nl/messages.json
index 8c33b5452a6..88790d0a949 100644
--- a/apps/web/src/locales/nl/messages.json
+++ b/apps/web/src/locales/nl/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "Ik"
   },
+  "myItems": {
+    "message": "Mijn items"
+  },
   "myVault": {
     "message": "Mijn kluis"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "Doorgaan zal je huidige sessie uitloggen, waarna je opnieuw moet inloggen. Actieve sessies op andere apparaten blijven mogelijk nog een uur actief."
   },
+  "changePasswordWarning": {
+    "message": "Na het wijzigen van je wachtwoord moet je inloggen met je nieuwe wachtwoord. Actieve sessies op andere apparaten worden binnen één uur uitgelogd."
+  },
   "emailChanged": {
     "message": "E-mailadres gewijzigd"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Standaardverzameling"
   },
-  "myItems": {
-    "message": "Mijn items"
-  },
   "getHelp": {
     "message": "Hulp vragen"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Hoofdwachtwoord bijwerken"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Wijzig je hoofdwachtwoord om je account te herstellen."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Je hoofdwachtwoord voldoet niet aan de eisen van deze organisatie. Wijzig je hoofdwachtwoord om door te gaan."
+  },
   "updateMasterPasswordWarning": {
     "message": "Je hoofdwachtwoord is onlangs veranderd door een beheerder in jouw organisatie. Om toegang te krijgen tot de kluis, moet je deze nu bijwerken. Doorgaan zal je huidige sessie uitloggen, waarna je opnieuw moet inloggen. Actieve sessies op andere apparaten blijven mogelijk nog een uur actief."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Goedkeuring van beheerder vragen"
   },
+  "unableToCompleteLogin": {
+    "message": "Kan login niet voltooien"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "Je moet inloggen op een vertrouwd apparaat of je beheerder vragen om je een wachtwoord toe te wijzen."
+  },
   "trustedDeviceEncryption": {
     "message": "Vertrouwde apparaat encryptie"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "Bezoek voor tips over het beginnen met Bitwarden het",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Leercentrum",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Helpcentrum",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "Met de Bitwarden-browserextensie kun je eenvoudig nieuwe inloggegevens aanmaken, je opgeslagen logins rechtstreeks vanuit je browser toolbar benaderen en je snel aanmelden bij accounts met Bitwarden automatisch invullen."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Factuuradres vereist voor het toevoegen van krediet.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Factuuradres"
+  },
+  "addBillingAddress": {
+    "message": "Factuuradres toevoegen"
+  },
+  "editBillingAddress": {
+    "message": "Factuuradres bewerken"
+  },
+  "noBillingAddress": {
+    "message": "Geen adres in bestand."
+  },
+  "billingAddressUpdated": {
+    "message": "Je factuuradres is bijgewerkt."
+  },
+  "paymentDetails": {
+    "message": "Betalingsdetails"
+  },
+  "paymentMethodUpdated": {
+    "message": "Je betaalmethode is bijgewerkt."
+  },
+  "bankAccountVerified": {
+    "message": "Je bankrekening is geverifieerd."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Beschikbaar krediet wordt automatisch toegepast op facturen gegenereerd voor dit account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Moet een positief getal zijn"
+  },
+  "cardSecurityCode": {
+    "message": "Kaart beveiligingscode"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Kaart beveiligingscode, ook bekend als CVV of CVC, is meestal een getal van 3 cijfers op de achterkant van je creditcard of 4 cijfers gedrukt op de voorkant boven je kaartnummer."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Betaling met een bankrekening is alleen beschikbaar voor klanten in de Verenigde Staten. Je moet je bankrekening verifiëren. We zullen binnen 1-2 werkdagen een microbetaling uitvoeren. Voer de code van het bankafschrift uit deze storting in op de factuurpagina om de bankrekening te verifiëren. Als de bankrekening niet wordt geverifieerd, wordt er een betaling gemist en wordt je abonnement opgeschort."
+  },
+  "taxId": {
+    "message": "Btw ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/nn/messages.json b/apps/web/src/locales/nn/messages.json
index 19941112324..841da12e433 100644
--- a/apps/web/src/locales/nn/messages.json
+++ b/apps/web/src/locales/nn/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "Eg"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "myVault": {
     "message": "Kvelvet mitt"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "Email saved"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Default collection"
   },
-  "myItems": {
-    "message": "My Items"
-  },
   "getHelp": {
     "message": "Get help"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Update master password"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "Your master password was recently changed by an administrator in your organization. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "trustedDeviceEncryption": {
     "message": "Trusted device encryption"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Billing address required to add credit.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/or/messages.json b/apps/web/src/locales/or/messages.json
index 64c86ffdfd2..c20a685c1de 100644
--- a/apps/web/src/locales/or/messages.json
+++ b/apps/web/src/locales/or/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "Me"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "myVault": {
     "message": "My vault"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "Email saved"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Default collection"
   },
-  "myItems": {
-    "message": "My Items"
-  },
   "getHelp": {
     "message": "Get help"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Update master password"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "Your master password was recently changed by an administrator in your organization. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "trustedDeviceEncryption": {
     "message": "Trusted device encryption"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Billing address required to add credit.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/pl/messages.json b/apps/web/src/locales/pl/messages.json
index 1a203376724..a60a3bd768d 100644
--- a/apps/web/src/locales/pl/messages.json
+++ b/apps/web/src/locales/pl/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "Ja"
   },
+  "myItems": {
+    "message": "Moje elementy"
+  },
   "myVault": {
     "message": "Mój sejf"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "Ta czynność spowoduje wylogowanie z bieżącej sesji, przez co konieczne będzie ponowne zalogowanie się. Aktywne sesje na innych urządzeniach mogą pozostać aktywne przez maksymalnie godzinę."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "Adres e-mail został zapisany"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Domyślna kolekcja"
   },
-  "myItems": {
-    "message": "Moje elementy"
-  },
   "getHelp": {
     "message": "Uzyskaj pomoc"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Zaktualizuj hasło główne"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "Hasło główne zostało zmienione przez administratora Twojej organizacji. Musisz je zaktualizować, aby uzyskać dostęp do sejfu. Ta czynność spowoduje wylogowanie z bieżącej sesji, przez co konieczne będzie ponowne zalogowanie się. Aktywne sesje na innych urządzeniach mogą pozostać aktywne przez maksymalnie godzinę."
   },
@@ -8237,7 +8246,7 @@
     "message": "Wystąpił błąd podczas próby odczytu pliku importu"
   },
   "accessedSecretWithId": {
-    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "message": "Uzyskano dostęp do sekretu o identyfikatorze: $SECRET_ID$",
     "placeholders": {
       "secret_id": {
         "content": "$1",
@@ -8255,7 +8264,7 @@
     }
   },
   "editedSecretWithId": {
-    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "message": "Edytowano sekret z identyfikatorem: $SECRET_ID$",
     "placeholders": {
       "secret_id": {
         "content": "$1",
@@ -8264,7 +8273,7 @@
     }
   },
   "deletedSecretWithId": {
-    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "message": "Usunięto sekret z identyfikatorem: $SECRET_ID$",
     "placeholders": {
       "secret_id": {
         "content": "$1",
@@ -8273,7 +8282,7 @@
     }
   },
   "createdSecretWithId": {
-    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "message": "Utworzono nowy sekret z identyfikatorem: $SECRET_ID$",
     "placeholders": {
       "secret_id": {
         "content": "$1",
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Poproś administratora o zatwierdzenie"
   },
+  "unableToCompleteLogin": {
+    "message": "Nie można ukończyć logowania"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "Musisz zalogować się na zaufanym urządzeniu lub poprosić administratora o przypisanie hasła."
+  },
   "trustedDeviceEncryption": {
     "message": "Szyfrowanie zaufanego urządzenia"
   },
@@ -8908,19 +8923,19 @@
     "description": "Label indicating the most common import formats"
   },
   "uriMatchDefaultStrategyHint": {
-    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "message": "Wykrywanie URI polega na tym, jak Bitwarden identyfikuje sugestie autouzupełniania.",
     "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
   },
   "regExAdvancedOptionWarning": {
-    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "message": "„Wyrażenie regularne” jest zaawansowaną opcją zwiększającą ryzyko ujawnienia danych uwierzytelniających.",
     "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
   },
   "startsWithAdvancedOptionWarning": {
-    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "message": "„Rozpoczyna się od” jest zaawansowaną opcją powodującą zwiększone ryzyko wystawienia danych uwierzytelniających.",
     "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
   },
   "uriMatchWarningDialogLink": {
-    "message": "More about match detection",
+    "message": "Dowiedz się więcej o wykrywaniu dopasowania",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
   "maintainYourSubscription": {
@@ -10714,49 +10729,49 @@
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
   "setupExtensionPageTitle": {
-    "message": "Autofill your passwords securely with one click"
+    "message": "Bezpieczne autouzupełnianie haseł jednym kliknięciem"
   },
   "setupExtensionPageDescription": {
-    "message": "Get the Bitwarden browser extension and start autofilling today"
+    "message": "Pobierz rozszerzenie przeglądarki Bitwarden i rozpocznij autouzupełnianie już dziś"
   },
   "getTheExtension": {
-    "message": "Get the extension"
+    "message": "Pobierz rozszerzenie"
   },
   "addItLater": {
-    "message": "Add it later"
+    "message": "Dodaj później"
   },
   "cannotAutofillPasswordsWithoutExtensionTitle": {
-    "message": "You can't autofill passwords without the browser extension"
+    "message": "Nie można autouzupełniać haseł bez rozszerzenia przeglądarki"
   },
   "cannotAutofillPasswordsWithoutExtensionDesc": {
-    "message": "Are you sure you don't want to add the extension now?"
+    "message": "Czy na pewno nie chcesz teraz dodać rozszerzenia?"
   },
   "skipToWebApp": {
-    "message": "Skip to web app"
+    "message": "Pomiń do aplikacji internetowej"
   },
   "bitwardenExtensionInstalled": {
-    "message": "Bitwarden extension installed!"
+    "message": "Rozszerzenie Bitwarden zainstalowane!"
   },
   "openExtensionToAutofill": {
-    "message": "Open the extension to log in and start autofilling."
+    "message": "Otwórz rozszerzenie, aby zalogować się i rozpocząć autouzupełnianie."
   },
   "openBitwardenExtension": {
-    "message": "Open Bitwarden extension"
+    "message": "Otwórz rozszerzenie Bitwarden"
   },
   "gettingStartedWithBitwardenPart1": {
-    "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "message": "Aby uzyskać wskazówki na temat rozpoczęcia z Bitwarden, odwiedź",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
-    "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "message": "Centrum Szkoleniowe",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
-    "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "message": "Centrum Pomocy",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
-    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+    "message": "Dzięki rozszerzeniu przeglądarki Bitwarden możesz łatwo tworzyć nowe dane logowania, uzyskać dostęp do zapisanych danych logowania bezpośrednio z paska narzędzi przeglądarki oraz szybkie logowanie za pomocą autouzupełniania Bitwarden."
   },
   "restart": {
     "message": "Zrestartuj"
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Aby dodać środki, wymagany jest adres rozliczeniowy.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/pt_BR/messages.json b/apps/web/src/locales/pt_BR/messages.json
index 541e3445755..17842bacefe 100644
--- a/apps/web/src/locales/pt_BR/messages.json
+++ b/apps/web/src/locales/pt_BR/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "Eu"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "myVault": {
     "message": "Meu Cofre"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "O processo desconectará você da sessão atual, exigindo que você inicie a sessão novamente. As sessões ativas em outros dispositivos podem continuar ativas por até uma hora."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "E-mail salvo"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Coleção Padrão"
   },
-  "myItems": {
-    "message": "My Items"
-  },
   "getHelp": {
     "message": "Obter Ajuda"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Atualizar Senha Mestra"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "Sua Senha Mestra foi alterada recentemente por um administrador em sua organização. Para acessar o cofre, você deve atualizar sua Senha Mestra agora. Prosseguir irá desconectá-lo da sessão atual, exigindo que você faça login novamente. As sessões ativas em outros dispositivos podem continuar ativas por até uma hora."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Solicitar aprovação do administrador"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "trustedDeviceEncryption": {
     "message": "Criptografia de dispositivo confiável"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Billing address required to add credit.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/pt_PT/messages.json b/apps/web/src/locales/pt_PT/messages.json
index ebfc7429429..fdda18e86f4 100644
--- a/apps/web/src/locales/pt_PT/messages.json
+++ b/apps/web/src/locales/pt_PT/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "Eu"
   },
+  "myItems": {
+    "message": "Os meus itens"
+  },
   "myVault": {
     "message": "O meu cofre"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "Ao prosseguir, terminará a sua sessão atual e terá de iniciar sessão novamente. As sessões ativas noutros dispositivos poderão continuar ativas até uma hora."
   },
+  "changePasswordWarning": {
+    "message": "Depois de ter alterado a sua palavra-passe, é necessário iniciar sessão com a sua nova palavra-passe. As sessões ativas noutros dispositivos serão interrompidas dentro de uma hora."
+  },
   "emailChanged": {
     "message": "E-mail alterado"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Coleção predefinida"
   },
-  "myItems": {
-    "message": "Os meus itens"
-  },
   "getHelp": {
     "message": "Obter ajuda"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Atualizar a palavra-passe mestra"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Altere a sua palavra-passe mestra para concluir a recuperação da conta."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "A sua palavra-passe mestra não cumpre os requisitos desta organização. Altere a sua palavra-passe mestra para continuar."
+  },
   "updateMasterPasswordWarning": {
     "message": "A sua palavra-passe mestra foi recentemente alterada por um administrador da sua organização. Para aceder ao cofre, tem de atualizar a sua palavra-passe mestra agora. Ao prosseguir, terminará a sua sessão atual e terá de iniciar sessão novamente. As sessões ativas noutros dispositivos poderão continuar ativas até uma hora."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Pedir aprovação do administrador"
   },
+  "unableToCompleteLogin": {
+    "message": "Não é possível concluir o início de sessão"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "Tem de iniciar sessão num dispositivo de confiança ou pedir ao seu administrador que lhe atribua uma palavra-passe."
+  },
   "trustedDeviceEncryption": {
     "message": "Encriptação de dispositivo de confiança"
   },
@@ -10714,49 +10729,49 @@
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
   "setupExtensionPageTitle": {
-    "message": "Autofill your passwords securely with one click"
+    "message": "Preenchimento automático das suas palavras-passe de forma segura com um só clique"
   },
   "setupExtensionPageDescription": {
-    "message": "Get the Bitwarden browser extension and start autofilling today"
+    "message": "Obtenha a extensão do navegador Bitwarden e comece a preencher automaticamente hoje mesmo"
   },
   "getTheExtension": {
-    "message": "Get the extension"
+    "message": "Obter a extensão"
   },
   "addItLater": {
-    "message": "Add it later"
+    "message": "Adicioná-la mais tarde"
   },
   "cannotAutofillPasswordsWithoutExtensionTitle": {
-    "message": "You can't autofill passwords without the browser extension"
+    "message": "Não é possível preencher automaticamente as palavras-passe sem a extensão do navegador"
   },
   "cannotAutofillPasswordsWithoutExtensionDesc": {
-    "message": "Are you sure you don't want to add the extension now?"
+    "message": "Tem a certeza de que não pretende adicionar a extensão agora?"
   },
   "skipToWebApp": {
-    "message": "Skip to web app"
+    "message": "Saltar para a Web app"
   },
   "bitwardenExtensionInstalled": {
-    "message": "Bitwarden extension installed!"
+    "message": "Extensão Bitwarden instalada!"
   },
   "openExtensionToAutofill": {
-    "message": "Open the extension to log in and start autofilling."
+    "message": "Abra a extensão para iniciar sessão e começar o preenchimento automático."
   },
   "openBitwardenExtension": {
-    "message": "Open Bitwarden extension"
+    "message": "Abrir a extensão Bitwarden"
   },
   "gettingStartedWithBitwardenPart1": {
-    "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "message": "Para obter dicas sobre como começar a utilizar o Bitwarden, visite a página",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
-    "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "message": "Centro de aprendizagem",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
-    "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "message": "Centro de ajuda",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
-    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+    "message": "Com a extensão do navegador Bitwarden, pode criar facilmente novas credenciais, aceder às credenciais guardadas diretamente a partir da barra de ferramentas do navegador e iniciar sessão em contas rapidamente utilizando o preenchimento automático do Bitwarden."
   },
   "restart": {
     "message": "Reiniciar"
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Endereço de faturação necessário para adicionar crédito.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Endereço de faturação"
+  },
+  "addBillingAddress": {
+    "message": "Adicionar endereço de faturação"
+  },
+  "editBillingAddress": {
+    "message": "Editar endereço de faturação"
+  },
+  "noBillingAddress": {
+    "message": "Não existe endereço no ficheiro."
+  },
+  "billingAddressUpdated": {
+    "message": "O seu endereço de faturação foi atualizado."
+  },
+  "paymentDetails": {
+    "message": "Detalhes do pagamento"
+  },
+  "paymentMethodUpdated": {
+    "message": "O seu método de pagamento foi atualizado."
+  },
+  "bankAccountVerified": {
+    "message": "A sua conta bancária foi verificada."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Qualquer crédito disponível será automaticamente aplicado às faturas geradas para esta conta."
+  },
+  "mustBePositiveNumber": {
+    "message": "Tem de ser um número positivo"
+  },
+  "cardSecurityCode": {
+    "message": "Código de segurança do cartão"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "O código de segurança do cartão, também conhecido como CVV ou CVC, é normalmente um número de 3 dígitos impresso no verso do seu cartão de crédito ou um número de 4 dígitos impresso na parte da frente, por cima do número do seu cartão."
+  },
+  "verifyBankAccountWarning": {
+    "message": "O pagamento com uma conta bancária só está disponível para clientes nos Estados Unidos. Ser-lhe-á pedido que verifique a sua conta bancária. Efetuaremos um micro-depósito nos próximos 1-2 dias úteis. Introduza o código descritor do extrato deste depósito na página Detalhes do pagamento para verificar a conta bancária. A não verificação da conta bancária resultará na perda de um pagamento e na suspensão da subscrição."
+  },
+  "taxId": {
+    "message": "NIF: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/ro/messages.json b/apps/web/src/locales/ro/messages.json
index ae847c1418b..3d90ef03899 100644
--- a/apps/web/src/locales/ro/messages.json
+++ b/apps/web/src/locales/ro/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "Eu"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "myVault": {
     "message": "Seiful meu"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "Continuând, veți fi deconectat de la sesiunea curentă, solicitându-vă să vă conectați din nou. Sesiunile active pe alte dispozitive pot continua să rămână active timp de până la o oră."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "E-mail salvat"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Colecție implicită"
   },
-  "myItems": {
-    "message": "My Items"
-  },
   "getHelp": {
     "message": "Obținere ajutor"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Actualizare parolă principală"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "Parola principală a fost schimbată recent de către un administrator din organizație. Pentru a accesa seiful, trebuie să vă actualizați acum parola principală. Continuând, veți fi deconectat din sesiunea curentă, fiind necesar să vă conectați din nou. Sesiunile active de pe alte dispozitive pot continua să rămână active timp de până la o oră."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "trustedDeviceEncryption": {
     "message": "Trusted device encryption"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Billing address required to add credit.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/ru/messages.json b/apps/web/src/locales/ru/messages.json
index aae915a6af7..295a750712c 100644
--- a/apps/web/src/locales/ru/messages.json
+++ b/apps/web/src/locales/ru/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "Мое"
   },
+  "myItems": {
+    "message": "Мои элементы"
+  },
   "myVault": {
     "message": "Хранилище"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "В случае продолжения, ваша сессия будет завершена и вам будет предложено авторизоваться повторно. Сессии на других устройствах могут оставаться активными в течение одного часа."
   },
+  "changePasswordWarning": {
+    "message": "После смены пароля потребуется авторизоваться с новым паролем. Активные сессии на других устройствах будут завершены в течение одного часа."
+  },
   "emailChanged": {
     "message": "Email сохранен"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Коллекция по умолчанию"
   },
-  "myItems": {
-    "message": "Мои элементы"
-  },
   "getHelp": {
     "message": "Получить помощь"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Обновить мастер-пароль"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Измените мастер-пароль, чтобы завершить восстановление аккаунта."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Ваш мастер-пароль не соответствует требованиям этой организации. Измените его, чтобы продолжить."
+  },
   "updateMasterPasswordWarning": {
     "message": "Мастер-пароль недавно был изменен администратором вашей организации. Чтобы получить доступ к хранилищу, вы должны обновить мастер-пароль сейчас. В результате текущая сессия будет завершена и потребуется повторная авторизация. Сессии на других устройствах могут оставаться активными в течение одного часа."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Запросить одобрение администратора"
   },
+  "unableToCompleteLogin": {
+    "message": "Не удалось завершить вход"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "Вам необходимо авторизоваться с доверенного устройства или попросить вашего администратора назначить вам пароль."
+  },
   "trustedDeviceEncryption": {
     "message": "Шифрование доверенного устройства"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "Для получения советов по началу работы с Bitwarden посетите сайт",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "База знаний",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Центр поддержки",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "С помощью расширения Bitwarden вы можете легко создавать новые логины, получать доступ к сохраненным логинам непосредственно с панели инструментов браузера и быстро входить в аккаунты с помощью автозаполнения Bitwarden."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Для пополнения счета необходим платежный адрес.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Платежный адрес"
+  },
+  "addBillingAddress": {
+    "message": "Добавить платежный адрес"
+  },
+  "editBillingAddress": {
+    "message": "Изменить платежный адрес"
+  },
+  "noBillingAddress": {
+    "message": "Нет адреса в файле."
+  },
+  "billingAddressUpdated": {
+    "message": "Ваш платежный адрес был обновлен."
+  },
+  "paymentDetails": {
+    "message": "Детали оплаты"
+  },
+  "paymentMethodUpdated": {
+    "message": "Ваш способ оплаты обновлен."
+  },
+  "bankAccountVerified": {
+    "message": "Ваш банковский счет был подтвержден."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Любой доступный кредит будет автоматически зачислен на счета, сгенерированные для этого счета."
+  },
+  "mustBePositiveNumber": {
+    "message": "Должно быть положительным числом"
+  },
+  "cardSecurityCode": {
+    "message": "Код безопасности карты"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Код безопасности карты, также известный как CVV или CVC. Обычно это трехзначный номер, напечатанный на обратной стороне вашей кредитной карты или четырехзначный номер, напечатанный на лицевой стороне над номером вашей карты."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Оплата с помощью банковского счета доступна только для клиентов в США. Вам потребуется подтвердить свой банковский счет. Мы сделаем микродепозит в течение следующих 1-2 рабочих дней. Введите код дескриптора выписки из этого депозита на странице платежных реквизитов для подтверждения банковского счета. Неподтверждение банковского счета приведет к пропуску платежа и приостановке подписки."
+  },
+  "taxId": {
+    "message": "ID налога: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/si/messages.json b/apps/web/src/locales/si/messages.json
index 18f6356aaaa..8d7d455c335 100644
--- a/apps/web/src/locales/si/messages.json
+++ b/apps/web/src/locales/si/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "Me"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "myVault": {
     "message": "My vault"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "Email saved"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Default collection"
   },
-  "myItems": {
-    "message": "My Items"
-  },
   "getHelp": {
     "message": "Get help"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Update master password"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "Your master password was recently changed by an administrator in your organization. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "trustedDeviceEncryption": {
     "message": "Trusted device encryption"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Billing address required to add credit.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/sk/messages.json b/apps/web/src/locales/sk/messages.json
index ec99de4472b..1ef20298200 100644
--- a/apps/web/src/locales/sk/messages.json
+++ b/apps/web/src/locales/sk/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "Ja"
   },
+  "myItems": {
+    "message": "Moje položky"
+  },
   "myVault": {
     "message": "Môj trezor"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "Ak budete pokračovať, budete odhlásený a budete sa musieť opäť prihlásiť. Aktívne sedenia na iných zariadeniach môžu byť aktívne ešte hodinu."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "E-mail bol zmenený"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Predvolená kolekcia"
   },
-  "myItems": {
-    "message": "Moje položky"
-  },
   "getHelp": {
     "message": "Získať pomoc"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Aktualizovať hlavné heslo"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "Vaše hlavné heslo nedávno zmenil správca vo vašej organizácii. Ak chcete získať prístup k trezoru, musíte aktualizovať vaše hlavné heslo teraz. Pokračovaním sa odhlásite z aktuálnej relácie a budete sa musieť znova prihlásiť. Aktívne relácie na iných zariadeniach môžu zostať aktívne až jednu hodinu."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Žiadosť o schválenie správcom"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "trustedDeviceEncryption": {
     "message": "Šifrovanie dôveryhodného zariadenia"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Na pridanie kreditu je potrebná fakturačná adresa.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/sl/messages.json b/apps/web/src/locales/sl/messages.json
index 77bc33b0b82..be975e12486 100644
--- a/apps/web/src/locales/sl/messages.json
+++ b/apps/web/src/locales/sl/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "Jaz"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "myVault": {
     "message": "Moj trezor"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "Po tem dejanju boste odjavljeni in se boste morali prijaviti ponovno. Prijave na drugih napravah bodo ostale aktivne še največ eno uro."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "E-poštni naslov spremenjen"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Default collection"
   },
-  "myItems": {
-    "message": "My Items"
-  },
   "getHelp": {
     "message": "Pomoč"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Posodobi glavno geslo"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "Your master password was recently changed by an administrator in your organization. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "trustedDeviceEncryption": {
     "message": "Trusted device encryption"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Billing address required to add credit.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/sr_CS/messages.json b/apps/web/src/locales/sr_CS/messages.json
index e66fc5a452e..252f1007196 100644
--- a/apps/web/src/locales/sr_CS/messages.json
+++ b/apps/web/src/locales/sr_CS/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "Me"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "myVault": {
     "message": "Moj trezor"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "Email saved"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Default collection"
   },
-  "myItems": {
-    "message": "My Items"
-  },
   "getHelp": {
     "message": "Get help"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Update master password"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "Your master password was recently changed by an administrator in your organization. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "trustedDeviceEncryption": {
     "message": "Trusted device encryption"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Billing address required to add credit.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/sr_CY/messages.json b/apps/web/src/locales/sr_CY/messages.json
index b14d1986877..fe9c2a6804e 100644
--- a/apps/web/src/locales/sr_CY/messages.json
+++ b/apps/web/src/locales/sr_CY/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "Ја"
   },
+  "myItems": {
+    "message": "Моји предмети"
+  },
   "myVault": {
     "message": "Мој Сеф"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "Ако наставите, одјавићете се са тренутне сесије, што захтева поновно пријављивање. Активне сесије на другим уређајима могу да остану активне до једног сата."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "Имејл промењен"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Стандардна колекција"
   },
-  "myItems": {
-    "message": "Моји предмети"
-  },
   "getHelp": {
     "message": "Потражи помоћ"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Ажурирај главну лозинку"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "Ваша главна лозинка је недавно промењена од стране администратора организације. Како бисте приступили сефу, морате да ажурирате вашу главну лозинку. Ако наставите бићете одјављени из ваше тренутне сесије, што ће захтевати да се поново пријавите. Активне сесије на другим уређајима ће можда наставити да раде до сат времена."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Затражити одобрење администратора"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "trustedDeviceEncryption": {
     "message": "Шифровање поузданог уређаја"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Адреса за наплату је потребна за додавање кредита.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/sv/messages.json b/apps/web/src/locales/sv/messages.json
index 12c781bcc34..f373bc14237 100644
--- a/apps/web/src/locales/sv/messages.json
+++ b/apps/web/src/locales/sv/messages.json
@@ -3,7 +3,7 @@
     "message": "Alla applikationer"
   },
   "appLogoLabel": {
-    "message": "Bitwarden logo"
+    "message": "Bitwardens logotyp"
   },
   "criticalApplications": {
     "message": "Kritiska applikationer"
@@ -36,10 +36,10 @@
     "message": "Notified members"
   },
   "revokeMembers": {
-    "message": "Revoke members"
+    "message": "Återkalla medlemmar"
   },
   "restoreMembers": {
-    "message": "Restore members"
+    "message": "Återställ medlemmar"
   },
   "cannotRestoreAccessError": {
     "message": "Cannot restore organization access"
@@ -235,19 +235,19 @@
     "message": "Inloggningsuppgifter"
   },
   "personalDetails": {
-    "message": "Personal details"
+    "message": "Personliga uppgifter"
   },
   "identification": {
     "message": "Identifikation"
   },
   "contactInfo": {
-    "message": "Contact info"
+    "message": "Kontaktuppgifter"
   },
   "cardDetails": {
-    "message": "Card details"
+    "message": "Kortinformation"
   },
   "cardBrandDetails": {
-    "message": "$BRAND$ details",
+    "message": "$BRAND$ detaljer",
     "placeholders": {
       "brand": {
         "content": "$1",
@@ -278,7 +278,7 @@
     }
   },
   "websiteAdded": {
-    "message": "Website added"
+    "message": "Webbplats tillagd"
   },
   "addWebsite": {
     "message": "Lägg till webbplats"
@@ -330,7 +330,7 @@
     "message": "Säkerhetskod (CVV)"
   },
   "securityCodeSlashCVV": {
-    "message": "Security code / CVV"
+    "message": "Säkerhetskod / CVV"
   },
   "identityName": {
     "message": "Identitetsnamn"
@@ -408,10 +408,10 @@
     "message": "Dr"
   },
   "cardExpiredTitle": {
-    "message": "Expired card"
+    "message": "Utgånget kort"
   },
   "cardExpiredMessage": {
-    "message": "If you've renewed it, update the card's information"
+    "message": "Om du har förnyat kortet ska du uppdatera kortinformationen"
   },
   "expirationMonth": {
     "message": "Utgångsmånad"
@@ -423,10 +423,10 @@
     "message": "Autentiseringsnyckel (TOTP)"
   },
   "totpHelperTitle": {
-    "message": "Make 2-step verification seamless"
+    "message": "Gör tvåstegsverifiering sömlös"
   },
   "totpHelper": {
-    "message": "Bitwarden can store and fill 2-step verification codes. Copy and paste the key into this field."
+    "message": "Bitwarden kan lagra och fylla tvåstegsverifieringskoder. Kopiera och klistra in nyckeln i detta fält."
   },
   "totpHelperWithCapture": {
     "message": "Bitwarden can store and fill 2-step verification codes. Select the camera icon to take a screenshot of this website's authenticator QR code, or copy and paste the key into this field."
@@ -450,7 +450,7 @@
     "message": "Booleskt värde"
   },
   "cfTypeCheckbox": {
-    "message": "Checkbox"
+    "message": "Kryssruta"
   },
   "cfTypeLinked": {
     "message": "Länkad",
@@ -483,7 +483,7 @@
     "message": "Redigera mapp"
   },
   "editWithName": {
-    "message": "Edit $ITEM$: $NAME$",
+    "message": "Redigera $ITEM$: $NAME$",
     "placeholders": {
       "item": {
         "content": "$1",
@@ -496,16 +496,16 @@
     }
   },
   "newFolder": {
-    "message": "New folder"
+    "message": "Ny mapp"
   },
   "folderName": {
-    "message": "Folder name"
+    "message": "Mappnamn"
   },
   "folderHintText": {
     "message": "Nest a folder by adding the parent folder's name followed by a “/”. Example: Social/Forums"
   },
   "deleteFolderPermanently": {
-    "message": "Are you sure you want to permanently delete this folder?"
+    "message": "Är du säker på att du vill radera den här mappen permanent?"
   },
   "baseDomain": {
     "message": "Basdomän",
@@ -789,7 +789,7 @@
     }
   },
   "copySuccessful": {
-    "message": "Copy Successful"
+    "message": "Kopiering lyckades"
   },
   "copyValue": {
     "message": "Kopiera värde",
@@ -856,7 +856,7 @@
     "message": "Kopiera passnummer"
   },
   "copyLicenseNumber": {
-    "message": "Copy license number"
+    "message": "Kopiera licensnummer"
   },
   "copyName": {
     "message": "Kopiera namn"
@@ -864,6 +864,9 @@
   "me": {
     "message": "Jag"
   },
+  "myItems": {
+    "message": "Mina objekt"
+  },
   "myVault": {
     "message": "Mitt valv"
   },
@@ -938,7 +941,7 @@
     }
   },
   "itemsMovedToOrg": {
-    "message": "Items moved to $ORGNAME$",
+    "message": "Objekt flyttade till $ORGNAME$",
     "placeholders": {
       "orgname": {
         "content": "$1",
@@ -947,7 +950,7 @@
     }
   },
   "itemMovedToOrg": {
-    "message": "Item moved to $ORGNAME$",
+    "message": "Objekt flyttade till $ORGNAME$",
     "placeholders": {
       "orgname": {
         "content": "$1",
@@ -1013,13 +1016,13 @@
     "message": "Din inloggningssession har upphört."
   },
   "restartRegistration": {
-    "message": "Restart registration"
+    "message": "Starta om registrering"
   },
   "expiredLink": {
-    "message": "Expired link"
+    "message": "Utgången länk"
   },
   "pleaseRestartRegistrationOrTryLoggingIn": {
-    "message": "Please restart registration or try logging in."
+    "message": "Starta om registreringen eller försök att logga in."
   },
   "youMayAlreadyHaveAnAccount": {
     "message": "Du kanske redan har ett konto"
@@ -1040,7 +1043,7 @@
     "message": "Nej"
   },
   "location": {
-    "message": "Location"
+    "message": "Plats"
   },
   "loginOrCreateNewAccount": {
     "message": "Logga in eller skapa ett nytt konto för att komma åt ditt valv."
@@ -1184,7 +1187,7 @@
     "message": "Enter the code from your authenticator app"
   },
   "pressYourYubiKeyToAuthenticate": {
-    "message": "Press your YubiKey to authenticate"
+    "message": "Tryck på din YubiKey för att autentisera"
   },
   "authenticationTimeout": {
     "message": "Authentication timeout"
@@ -1193,16 +1196,16 @@
     "message": "The authentication session timed out. Please restart the login process."
   },
   "verifyYourIdentity": {
-    "message": "Verify your Identity"
+    "message": "Verifiera din identitet"
   },
   "weDontRecognizeThisDevice": {
     "message": "We don't recognize this device. Enter the code sent to your email to verify your identity."
   },
   "continueLoggingIn": {
-    "message": "Continue logging in"
+    "message": "Fortsätt logga in"
   },
   "whatIsADevice": {
-    "message": "What is a device?"
+    "message": "Vad är en enhet?"
   },
   "aDeviceIs": {
     "message": "A device is a unique installation of the Bitwarden app where you have logged in. Reinstalling, clearing app data, or clearing your cookies could result in a device appearing multiple times."
@@ -1211,7 +1214,7 @@
     "message": "Inloggning påbörjad"
   },
   "logInRequestSent": {
-    "message": "Request sent"
+    "message": "Begäran skickades"
   },
   "submit": {
     "message": "Skicka"
@@ -1397,10 +1400,10 @@
     "message": "En avisering har skickats till din enhet."
   },
   "notificationSentDevicePart1": {
-    "message": "Unlock Bitwarden on your device or on the "
+    "message": "Lås upp Bitwarden på din enhet eller på "
   },
   "areYouTryingToAccessYourAccount": {
-    "message": "Are you trying to access your account?"
+    "message": "Försöker du komma åt ditt konto?"
   },
   "accessAttemptBy": {
     "message": "Access attempt by $EMAIL$",
@@ -1412,13 +1415,13 @@
     }
   },
   "confirmAccess": {
-    "message": "Confirm access"
+    "message": "Bekräfta åtkomst"
   },
   "denyAccess": {
-    "message": "Deny access"
+    "message": "Neka åtkomst"
   },
   "notificationSentDeviceAnchor": {
-    "message": "web app"
+    "message": "webbapp"
   },
   "notificationSentDevicePart2": {
     "message": "Make sure the Fingerprint phrase matches the one below before approving."
@@ -1427,7 +1430,7 @@
     "message": "Unlock Bitwarden on your device. Make sure the Fingerprint phrase matches the one below before approving."
   },
   "aNotificationWasSentToYourDevice": {
-    "message": "A notification was sent to your device"
+    "message": "Ett meddelande har skickats till din enhet"
   },
   "versionNumber": {
     "message": "Version $VERSION_NUMBER$",
@@ -1448,14 +1451,14 @@
     }
   },
   "dontAskAgainOnThisDeviceFor30Days": {
-    "message": "Don't ask again on this device for 30 days"
+    "message": "Fråga inte igen på denna enhet kommande 30 dagar"
   },
   "selectAnotherMethod": {
-    "message": "Select another method",
+    "message": "Välj en annan metod",
     "description": "Select another two-step login method"
   },
   "useYourRecoveryCode": {
-    "message": "Use your recovery code"
+    "message": "Använd din återställningskod"
   },
   "insertU2f": {
     "message": "Sätt in din säkerhetsnyckel i din dators USB-port. Om den har en knapp, tryck på den."
@@ -1473,7 +1476,7 @@
     "message": "Alternativ för tvåstegsverifiering"
   },
   "selectTwoStepLoginMethod": {
-    "message": "Select two-step login method"
+    "message": "Välj metod för tvåstegsinloggning"
   },
   "recoveryCodeDesc": {
     "message": "Förlorat åtkomst till alla dina metoder för tvåstegsverifiering? Använd din återställningskod för att inaktivera tvåstegsverifiering på ditt konto."
@@ -1518,7 +1521,7 @@
     "message": "(Migrerad från FIDO)"
   },
   "openInNewTab": {
-    "message": "Open in new tab"
+    "message": "Öppna i ny flik"
   },
   "emailTitle": {
     "message": "E-post"
@@ -1742,10 +1745,10 @@
     "message": "Det finns inga lösenord att visa."
   },
   "clearHistory": {
-    "message": "Clear history"
+    "message": "Töm historik"
   },
   "nothingToShow": {
-    "message": "Nothing to show"
+    "message": "Ingenting att visa"
   },
   "nothingGeneratedRecently": {
     "message": "You haven't generated anything recently"
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "Om du fortsätter kommer du loggas ut från sin nuvarande session vilket kräver att du loggar in igen. Aktiva sessioner på andra enheter kan fortsätta vara aktiva i upp till en timme."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "E-postadressen redigerades"
   },
@@ -1788,10 +1794,10 @@
     "message": "Vänligen logga in igen."
   },
   "currentSession": {
-    "message": "Current session"
+    "message": "Aktuell session"
   },
   "requestPending": {
-    "message": "Request pending"
+    "message": "Begäran väntar"
   },
   "logBackInOthersToo": {
     "message": "Vänligen logga in igen. Om du använder andra Bitwarden-applikationer, logga ut och in igen i dem också."
@@ -1843,13 +1849,13 @@
     "description": "Memory refers to computer memory (RAM). MB is short for megabytes."
   },
   "argon2Warning": {
-    "message": "Setting your KDF iterations, memory, and parallelism too high could result in poor performance when logging into (and unlocking) Bitwarden on slower or older devices. We recommend changing these individually in small increments and then test all of your devices."
+    "message": "Att ställa in dina KDF-iterationer, minne och parallellism för högt kan resultera i dålig prestanda när du loggar in (och låser upp) Bitwarden på långsammare eller äldre enheter. Vi rekommenderar att du ändrar dessa individuellt i små steg och sedan testar alla dina enheter."
   },
   "kdfParallelism": {
     "message": "KDF-parallellism"
   },
   "argon2Desc": {
-    "message": "Higher KDF iterations, memory, and parallelism can help protect your master password from being brute forced by an attacker."
+    "message": "Högre KDF-iterationer, minne och parallellism kan hjälpa till att skydda ditt huvudlösenord från att bli brutalt tvingad av en angripare."
   },
   "changeKdf": {
     "message": "Ändra KDF"
@@ -1870,13 +1876,13 @@
     "message": "Om du fortsätter kommer du loggas ut från sin nuvarande session vilket kräver att du loggar in igen. Du kommer även behöva verifiera med tvåstegsverifiering om det är aktiverat. Aktiva sessioner på andra enheter kan fortsätta vara aktiva i upp till en timme."
   },
   "newDeviceLoginProtection": {
-    "message": "New device login"
+    "message": "Ny enhetsinloggning"
   },
   "turnOffNewDeviceLoginProtection": {
-    "message": "Turn off new device login protection"
+    "message": "Inaktivera inloggningsskydd för nya enheter"
   },
   "turnOnNewDeviceLoginProtection": {
-    "message": "Turn on new device login protection"
+    "message": "Aktivera inloggningsskydd för nya enheter"
   },
   "turnOffNewDeviceLoginProtectionModalDesc": {
     "message": "Proceed below to turn off the verification emails bitwarden sends when you login from a new device."
@@ -1894,7 +1900,7 @@
     "message": "Alla sessioner avauktoriserades"
   },
   "accountIsOwnedMessage": {
-    "message": "This account is owned by $ORGANIZATIONNAME$",
+    "message": "Detta konto ägs av $ORGANIZATIONNAME$",
     "placeholders": {
       "organizationName": {
         "content": "$1",
@@ -1939,7 +1945,7 @@
     "message": "Ditt konto har stängts och all tillhörande data har raderats."
   },
   "deleteOrganizationWarning": {
-    "message": "Deleting your organization is permanent. It cannot be undone."
+    "message": "Att ta bort din organisation är permanent. Det går inte att ångra."
   },
   "myAccount": {
     "message": "Mitt konto"
@@ -1967,7 +1973,7 @@
     "description": "This will be part of a larger sentence, that will read like this: If you don't have any data to import, you can create a new item instead."
   },
   "onboardingImportDataDetailsPartTwoWithOrgs": {
-    "message": " instead. You may need to wait until your administrator confirms your organization membership.",
+    "message": " istället. Du kan behöva vänta tills administratören bekräftar ditt medlemskap i organisationen.",
     "description": "This will be part of a larger sentence, that will read like this: If you don't have any data to import, you can create a new item instead. You may need to wait until your administrator confirms your organization membership."
   },
   "importError": {
@@ -2207,19 +2213,19 @@
     "message": "Hantera"
   },
   "manageCollection": {
-    "message": "Manage collection"
+    "message": "Hantera samling"
   },
   "viewItems": {
-    "message": "View items"
+    "message": "Visa objekt"
   },
   "viewItemsHidePass": {
-    "message": "View items, hidden passwords"
+    "message": "Visa objekt, dolda lösenord"
   },
   "editItems": {
-    "message": "Edit items"
+    "message": "Redigera objekt"
   },
   "editItemsHidePass": {
-    "message": "Edit items, hidden passwords"
+    "message": "Redigera objekt, dolda lösenord"
   },
   "disable": {
     "message": "Stäng av"
@@ -2231,7 +2237,7 @@
     "message": "Återkalla åtkomst"
   },
   "revoke": {
-    "message": "Revoke"
+    "message": "Återkalla"
   },
   "twoStepLoginProviderEnabled": {
     "message": "Denna metod för tvåstegsverifiering är aktiverad på ditt konto."
@@ -2261,7 +2267,7 @@
     }
   },
   "continueToExternalUrlDesc": {
-    "message": "You are leaving Bitwarden and launching an external website in a new window."
+    "message": "Du lämnar Bitwarden och startar en extern webbplats i ett nytt fönster."
   },
   "twoStepContinueToBitwardenUrlTitle": {
     "message": "Fortsätt till bitwarden.com?"
@@ -2363,7 +2369,7 @@
     "message": "Klient-ID"
   },
   "twoFactorDuoClientSecret": {
-    "message": "Client Secret"
+    "message": "Klienthemlighet"
   },
   "twoFactorDuoApiHostname": {
     "message": "API-värdnamn"
@@ -3222,7 +3228,7 @@
     }
   },
   "trialSecretsManagerThankYou": {
-    "message": "Thanks for signing up for Bitwarden Secrets Manager for $PLAN$!",
+    "message": "Tack för att du registrerar dig för Bitwarden hemlighetshanterare för $PLAN$!",
     "placeholders": {
       "plan": {
         "content": "$1",
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Standardsamling"
   },
-  "myItems": {
-    "message": "My Items"
-  },
   "getHelp": {
     "message": "Få hjälp"
   },
@@ -3907,22 +3910,22 @@
     "message": "Enhet"
   },
   "loginStatus": {
-    "message": "Login status"
+    "message": "Inloggningsstatus"
   },
   "firstLogin": {
-    "message": "First login"
+    "message": "Första inloggningen"
   },
   "trusted": {
     "message": "Trusted"
   },
   "needsApproval": {
-    "message": "Needs approval"
+    "message": "Behöver godkännande"
   },
   "areYouTryingtoLogin": {
-    "message": "Are you trying to log in?"
+    "message": "Försöker du logga in?"
   },
   "logInAttemptBy": {
-    "message": "Login attempt by $EMAIL$",
+    "message": "Inloggningsförsök av $EMAIL$",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3931,22 +3934,22 @@
     }
   },
   "deviceType": {
-    "message": "Device Type"
+    "message": "Enhetstyp"
   },
   "ipAddress": {
-    "message": "IP Address"
+    "message": "IP-adress"
   },
   "confirmLogIn": {
-    "message": "Confirm login"
+    "message": "Bekräfta inloggning"
   },
   "denyLogIn": {
-    "message": "Deny login"
+    "message": "Neka inloggning"
   },
   "thisRequestIsNoLongerValid": {
-    "message": "This request is no longer valid."
+    "message": "Denna begäran är inte längre giltig."
   },
   "logInConfirmedForEmailOnDevice": {
-    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "message": "Inloggning bekräftad för $EMAIL$ på $DEVICE$",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3959,16 +3962,16 @@
     }
   },
   "youDeniedALogInAttemptFromAnotherDevice": {
-    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+    "message": "Du nekade ett inloggningsförsök från en annan enhet. Om detta verkligen var du, försök att logga in med enheten igen."
   },
   "loginRequestHasAlreadyExpired": {
-    "message": "Login request has already expired."
+    "message": "Inloggningsbegäran har redan löpt ut."
   },
   "justNow": {
-    "message": "Just now"
+    "message": "Just nu"
   },
   "requestedXMinutesAgo": {
-    "message": "Requested $MINUTES$ minutes ago",
+    "message": "Begärd för $MINUTES$ minuter sedan",
     "placeholders": {
       "minutes": {
         "content": "$1",
@@ -4079,7 +4082,7 @@
     "message": "E-postadressen har verifierats"
   },
   "emailVerifiedV2": {
-    "message": "Email verified"
+    "message": "E-post verifierad"
   },
   "emailVerifiedFailed": {
     "message": "Det gick inte att verifiera din e-postadress. Prova att skicka ett nytt verifieringsmeddelande."
@@ -4100,7 +4103,7 @@
     "message": "Du använder en webbläsare som inte stöds. Webbvalvet kanske inte fungerar som det ska."
   },
   "youHaveAPendingLoginRequest": {
-    "message": "You have a pending login request from another device."
+    "message": "Du har en väntande inloggningsbegäran från en annan enhet."
   },
   "reviewLoginRequest": {
     "message": "Review login request"
@@ -4149,16 +4152,16 @@
     }
   },
   "freeTrialEndingTodayWithoutOrgName": {
-    "message": "Your free trial ends today."
+    "message": "Din kostnadsfria provperiod slutar idag."
   },
   "clickHereToAddPaymentMethod": {
-    "message": "Click here to add a payment method."
+    "message": "Klicka här för att lägga till en betalningsmetod."
   },
   "joinOrganization": {
     "message": "Gå med i organisation"
   },
   "joinOrganizationName": {
-    "message": "Join $ORGANIZATIONNAME$",
+    "message": "Gå med i $ORGANIZATIONNAME$",
     "placeholders": {
       "organizationName": {
         "content": "$1",
@@ -4434,7 +4437,7 @@
     }
   },
   "subscriptionUpgrade": {
-    "message": "You cannot invite more than $COUNT$ members without upgrading your plan.",
+    "message": "Du kan inte bjuda in fler än $COUNT$ användare utan att uppgradera din plan.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -4491,7 +4494,7 @@
     }
   },
   "editFieldLabel": {
-    "message": "Edit $LABEL$",
+    "message": "Redigera $LABEL$",
     "placeholders": {
       "label": {
         "content": "$1",
@@ -4549,7 +4552,7 @@
     "message": "Any account restricted exports you have saved will become invalid."
   },
   "legacyEncryptionUnsupported": {
-    "message": "Legacy encryption is no longer supported. Please contact support to recover your account."
+    "message": "Äldre kryptering stöds inte längre. Kontakta support för att återställa ditt konto."
   },
   "subscription": {
     "message": "Prenumeration"
@@ -4582,13 +4585,13 @@
     "message": "Få råd, tillkännagivanden och forskningsmöjligheter från Bitwarden i din inkorg."
   },
   "unsubscribe": {
-    "message": "Unsubscribe"
+    "message": "Avsluta prenumeration"
   },
   "atAnyTime": {
     "message": "när som helst."
   },
   "byContinuingYouAgreeToThe": {
-    "message": "By continuing, you agree to the"
+    "message": "Genom att fortsätta samtycker du till"
   },
   "and": {
     "message": "och"
@@ -4597,7 +4600,7 @@
     "message": "Genom att kryssa i denna ruta godkänner du följande:"
   },
   "acceptPoliciesRequired": {
-    "message": "Terms of Service and Privacy Policy have not been acknowledged."
+    "message": "Användarvillkoren och Integritetspolicyn har inte accepterats."
   },
   "termsOfService": {
     "message": "Användarvillkor"
@@ -4612,13 +4615,13 @@
     "message": "Valvets tidsgräns"
   },
   "vaultTimeout1": {
-    "message": "Timeout"
+    "message": "Tidsgräns"
   },
   "vaultTimeoutDesc": {
     "message": "Välj när valvets tidsgräns överskrids och den valda åtgärden utförs."
   },
   "vaultTimeoutLogoutDesc": {
-    "message": "Choose when your vault will be logged out."
+    "message": "Välj när ditt valv loggas ut."
   },
   "oneMinute": {
     "message": "1 minut"
@@ -4681,7 +4684,7 @@
     "message": "Markerade"
   },
   "recommended": {
-    "message": "Recommended"
+    "message": "Rekommenderas"
   },
   "ownership": {
     "message": "Ägarskap"
@@ -5112,7 +5115,7 @@
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendTypeTextToShare": {
-    "message": "Text to share"
+    "message": "Text att dela"
   },
   "sendTypeFile": {
     "message": "Fil"
@@ -5206,7 +5209,7 @@
     "message": "Väntar på radering"
   },
   "hideTextByDefault": {
-    "message": "Hide text by default"
+    "message": "Dölj text som standard"
   },
   "expired": {
     "message": "Utgången"
@@ -5593,13 +5596,13 @@
     "message": "Maintain tight control over machine and human access to secrets with SSO integrations, event logs, and access rotation."
   },
   "tryItNow": {
-    "message": "Try it now"
+    "message": "Prova det nu"
   },
   "sendRequest": {
-    "message": "Send request"
+    "message": "Skicka begäran"
   },
   "addANote": {
-    "message": "Add a note"
+    "message": "Lägg till en anteckning"
   },
   "bitwardenSecretsManager": {
     "message": "Bitwarden Secrets Manager"
@@ -5617,7 +5620,7 @@
     "message": "Access request for secrets manager email sent to admins."
   },
   "requestAccessSMDefaultEmailContent": {
-    "message": "Hi,\n\nI am requesting a subscription to Bitwarden Secrets Manager for our team. Your support would mean a great deal!\n\nBitwarden Secrets Manager is an end-to-end encrypted secrets management solution for securely storing, sharing, and deploying machine credentials like API keys, database passwords, and authentication certificates.\n\nSecrets Manager will help us to:\n\n- Improve security\n- Streamline operations\n- Prevent costly secret leaks\n\nTo request a free trial for our team, please reach out to Bitwarden.\n\nThank you for your help!"
+    "message": "Hej, \n\nJag vill prenumerera på Bitwarden Secrets Manager för vårt team. Er hjälp skulle betyda mycket för oss!\n\nBitwarden Secrets Manager är en helt krypterad lösning för hantering av hemlig information som gör det möjligt att säkert lagra, dela och distribuera maskinuppgifter som API-nycklar, databaslösenord och autentiseringscertifikat. \n\nSecrets Manager hjälper oss att: \n\n- förbättra säkerheten \n- effektivisera verksamheten \n- förhindra kostsamma läckor av hemlig information.\n\nFör att begära en kostnadsfri testversion för vårt team, vänligen kontakta Bitwarden. \n\nTack för er hjälp!"
   },
   "giveMembersAccess": {
     "message": "Give members access:"
@@ -6007,7 +6010,7 @@
     "message": "Lägg till ny organisation"
   },
   "myProvider": {
-    "message": "My Provider"
+    "message": "Min leverantör"
   },
   "addOrganizationConfirmation": {
     "message": "Are you sure you want to add $ORGANIZATION$ as a client to $PROVIDER$?",
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Uppdatera huvudlösenord"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "Ditt huvudlösenord ändrades nyligen av en administratör i din organisation. För att få tillgång till valvet måste du uppdatera ditt huvudlösenord nu. Om du fortsätter kommer du att loggas ut från din nuvarande session, vilket kräver att du loggar in igen. Aktiva sessioner på andra enheter kan komma att vara aktiva i upp till en timme."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "trustedDeviceEncryption": {
     "message": "Trusted device encryption"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Billing address required to add credit.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/te/messages.json b/apps/web/src/locales/te/messages.json
index 64c86ffdfd2..c20a685c1de 100644
--- a/apps/web/src/locales/te/messages.json
+++ b/apps/web/src/locales/te/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "Me"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "myVault": {
     "message": "My vault"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "Email saved"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Default collection"
   },
-  "myItems": {
-    "message": "My Items"
-  },
   "getHelp": {
     "message": "Get help"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Update master password"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "Your master password was recently changed by an administrator in your organization. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "trustedDeviceEncryption": {
     "message": "Trusted device encryption"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Billing address required to add credit.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/th/messages.json b/apps/web/src/locales/th/messages.json
index f81bf922454..71ad641378c 100644
--- a/apps/web/src/locales/th/messages.json
+++ b/apps/web/src/locales/th/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "ฉัน"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "myVault": {
     "message": "ตู้เซฟของฉัน"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "Email saved"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Default collection"
   },
-  "myItems": {
-    "message": "My Items"
-  },
   "getHelp": {
     "message": "Get help"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Update master password"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "Your master password was recently changed by an administrator in your organization. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "trustedDeviceEncryption": {
     "message": "Trusted device encryption"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Billing address required to add credit.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/tr/messages.json b/apps/web/src/locales/tr/messages.json
index 26fac4a7fd4..cbd696c9a88 100644
--- a/apps/web/src/locales/tr/messages.json
+++ b/apps/web/src/locales/tr/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "Ben"
   },
+  "myItems": {
+    "message": "Kayıtlarım"
+  },
   "myVault": {
     "message": "Kasam"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "Devam ederseniz geçerli oturumunuz sonlanacak ve yeniden oturum açmanız gerekecek. Diğer cihazlardaki aktif oturumlar bir saate kadar aktif kalabilir."
   },
+  "changePasswordWarning": {
+    "message": "Parolanızı değiştirdikten sonra yeni parolanızyla tekrar giriş yapmanız gerekecektir. Diğer cihazlarınızdaki aktif oturumlar bir saat içinde kapatılacaktır."
+  },
   "emailChanged": {
     "message": "E-posta kaydedildi"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Varsayılan koleksiyon"
   },
-  "myItems": {
-    "message": "Kayıtlarım"
-  },
   "getHelp": {
     "message": "Yardım al"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Ana parolayı güncelle"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Hesap kurtarmayı tamamlamak için ana parolanızı değiştirin."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Ana parolanız bu kuruluşun gereksinimlerini karşılamıyor. Devam için ana parolanızı değiştirin."
+  },
   "updateMasterPasswordWarning": {
     "message": "Ana parolanız kuruluşunuzdaki bir yönetici tarafından yakın zamanda değiştirildi. Kasanıza erişmek için ana parolanızı güncellemelisiniz. Devam ettiğinizde oturumunuz kapanacak ve yeniden oturum açmanız gerekecektir. Diğer cihazlardaki aktif oturumlar bir saate kadar aktif kalabilir."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Yönetici onayı iste"
   },
+  "unableToCompleteLogin": {
+    "message": "Oturum açma tamamlanamadı"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "Güvenilen bir cihazdan oturum açmalı veya yöneticinizden size parola atamasını istemelisiniz."
+  },
   "trustedDeviceEncryption": {
     "message": "Güvenilir cihaz şifrelemesi"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "Bitwarden tarayıcı uzantısıyla kolayca yeni hesaplar oluşturabilir, kayıtlı hesaplarınıza doğrudan tarayıcı araç çubuğunuzdan erişebilir, otomatik doldurma özelliğini kullanarak hesaplarınıza kolayca giriş yapabilirsiniz."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Billing address required to add credit.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Fatura adresi"
+  },
+  "addBillingAddress": {
+    "message": "Fatura adresi ekle"
+  },
+  "editBillingAddress": {
+    "message": "Fatura adresini düzenle"
+  },
+  "noBillingAddress": {
+    "message": "Kayıtlı adres yok."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Ödeme bilgileri"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/uk/messages.json b/apps/web/src/locales/uk/messages.json
index c145d4e16f1..6367b7a78a0 100644
--- a/apps/web/src/locales/uk/messages.json
+++ b/apps/web/src/locales/uk/messages.json
@@ -526,7 +526,7 @@
     "message": "Починається з"
   },
   "regEx": {
-    "message": "Звичайний вираз",
+    "message": "Регулярний вираз",
     "description": "A programming term, also known as 'RegEx'."
   },
   "matchDetection": {
@@ -864,6 +864,9 @@
   "me": {
     "message": "Я"
   },
+  "myItems": {
+    "message": "Мої записи"
+  },
   "myVault": {
     "message": "Моє сховище"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "Продовжуючи, ви вийдете з поточного сеансу і необхідно буде виконати вхід знову. Активні сеанси на інших пристроях можуть залишатися активними протягом години."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "Е-пошту змінено"
   },
@@ -2154,16 +2160,16 @@
     "message": "Увімкнення двоетапної перевірки може цілком заблокувати доступ до облікового запису Bitwarden. Код відновлення дає вам змогу отримати доступ до свого облікового запису у випадку, якщо ви не можете скористатися провайдером двоетапної перевірки (наприклад, якщо втрачено пристрій). Служба підтримки Bitwarden не зможе допомогти відновити доступ до вашого облікового запису. Ми радимо вам записати чи надрукувати цей код відновлення і зберігати його в надійному місці."
   },
   "restrictedItemTypePolicy": {
-    "message": "Remove card item type"
+    "message": "Вилучити тип запису \"Картка\""
   },
   "restrictedItemTypePolicyDesc": {
-    "message": "Do not allow members to create card item types. Existing cards will be automatically removed."
+    "message": "Не дозволяти учасникам створювати записи карток. Наявні картки будуть автоматично вилучені."
   },
   "restrictCardTypeImport": {
-    "message": "Cannot import card item types"
+    "message": "Не вдається імпортувати записи карток"
   },
   "restrictCardTypeImportDesc": {
-    "message": "A policy set by 1 or more organizations prevents you from importing cards to your vaults."
+    "message": "Політика принаймні однієї організації не дозволяє вам імпортувати записи карток до сховища."
   },
   "yourSingleUseRecoveryCode": {
     "message": "Одноразовий код відновлення можна використати для вимкнення двоетапної перевірки у випадку, якщо ви втратите доступ до вашого провайдера двоетапної перевірки. Bitwarden рекомендує вам записати код відновлення і зберігати його в надійному місці."
@@ -2225,7 +2231,7 @@
     "message": "Вимкнути"
   },
   "orgUserDetailsNotFound": {
-    "message": "Member details not found."
+    "message": "Не знайдено подробиць про учасника."
   },
   "revokeAccess": {
     "message": "Відкликати доступ"
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Типова збірка"
   },
-  "myItems": {
-    "message": "My Items"
-  },
   "getHelp": {
     "message": "Отримати допомогу"
   },
@@ -5376,7 +5379,7 @@
     "message": "Екстрений доступ відхилено"
   },
   "grantorDetailsNotFound": {
-    "message": "Grantor details not found"
+    "message": "Не знайдено подробиць про надавача"
   },
   "passwordResetFor": {
     "message": "Пароль для користувача $USER$ скинуто. Тепер ви можете увійти використовуючи новий пароль.",
@@ -5388,7 +5391,7 @@
     }
   },
   "organizationDataOwnership": {
-    "message": "Enforce organization data ownership"
+    "message": "Примусове володіння даними організації"
   },
   "personalOwnership": {
     "message": "Вилучити особисте сховище"
@@ -5782,7 +5785,7 @@
     }
   },
   "emergencyAccessLoggedOutWarning": {
-    "message": "Proceeding will log $NAME$ out of their current session, requiring them to log back in. Active sessions on other devices may continue to remain active for up to one hour.",
+    "message": "Продовжуючи, користувач $NAME$ вийде зі свого поточного сеансу і йому необхідно буде виконати вхід знову. Активні сеанси на інших пристроях можуть залишатися активними протягом години.",
     "placeholders": {
       "name": {
         "content": "$1",
@@ -5797,7 +5800,7 @@
     "message": "Одна або декілька політик організації вимагають дотримання таких вимог для головного пароля:"
   },
   "changePasswordDelegationMasterPasswordPolicyInEffect": {
-    "message": "One or more organization policies require the master password to meet the following requirements:"
+    "message": "Одна або декілька політик організації вимагають дотримання таких вимог для головного пароля:"
   },
   "resetPasswordSuccess": {
     "message": "Пароль успішно скинуто!"
@@ -6065,7 +6068,7 @@
     "message": "Додати"
   },
   "masterPasswordSuccessfullySet": {
-    "message": "Master password successfully set"
+    "message": "Головний пароль успішно встановлено"
   },
   "updatedMasterPassword": {
     "message": "Головний пароль збережено"
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Оновити головний пароль"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "Ваш головний пароль нещодавно було змінено адміністратором організації. Щоб отримати доступ до сховища, вам необхідно оновити свій головний пароль зараз. Продовживши, ви вийдете з поточного сеансу, після чого потрібно буде повторно виконати вхід. Сеанси на інших пристроях можуть залишатися активними протягом однієї години."
   },
@@ -7735,7 +7744,7 @@
     "description": "Title for the section displaying access tokens."
   },
   "createAccessToken": {
-    "message": "Create access token",
+    "message": "Створити токен доступу",
     "description": "Button label for creating a new access token."
   },
   "expires": {
@@ -8237,7 +8246,7 @@
     "message": "Під час спроби прочитання імпортованого файлу сталася помилка"
   },
   "accessedSecretWithId": {
-    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "message": "Доступ до секрету з ідентифікатором: $SECRET_ID$",
     "placeholders": {
       "secret_id": {
         "content": "$1",
@@ -8255,7 +8264,7 @@
     }
   },
   "editedSecretWithId": {
-    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "message": "Редаговано секрет з ідентифікатором: $SECRET_ID$",
     "placeholders": {
       "secret_id": {
         "content": "$1",
@@ -8264,7 +8273,7 @@
     }
   },
   "deletedSecretWithId": {
-    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "message": "Видалено секрет з ідентифікатором: $SECRET_ID$",
     "placeholders": {
       "secret_id": {
         "content": "$1",
@@ -8273,7 +8282,7 @@
     }
   },
   "createdSecretWithId": {
-    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "message": "Створено новий секрет з ідентифікатором: $SECRET_ID$",
     "placeholders": {
       "secret_id": {
         "content": "$1",
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Запит підтвердження адміністратора"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "trustedDeviceEncryption": {
     "message": "Шифрування довіреного пристрою"
   },
@@ -8908,19 +8923,19 @@
     "description": "Label indicating the most common import formats"
   },
   "uriMatchDefaultStrategyHint": {
-    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "message": "Виявлення збігів URI – це спосіб ідентифікації пропозицій автозаповнення Bitwarden.",
     "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
   },
   "regExAdvancedOptionWarning": {
-    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "message": "Регулярний вираз – це функція, що має підвищений ризик розкриття облікових даних, призначена для досвідчених користувачів.",
     "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
   },
   "startsWithAdvancedOptionWarning": {
-    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "message": "\"Починається з\" – це функція, що має підвищений ризик розкриття облікових даних, призначена для досвідчених користувачів.",
     "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
   },
   "uriMatchWarningDialogLink": {
-    "message": "More about match detection",
+    "message": "Докладніше про виявлення збігів",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
   "maintainYourSubscription": {
@@ -10714,49 +10729,49 @@
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
   "setupExtensionPageTitle": {
-    "message": "Autofill your passwords securely with one click"
+    "message": "Автоматично заповнюйте паролі одним рухом"
   },
   "setupExtensionPageDescription": {
-    "message": "Get the Bitwarden browser extension and start autofilling today"
+    "message": "Отримайте розширення для браузера Bitwarden та користуйтеся автозаповненням"
   },
   "getTheExtension": {
-    "message": "Get the extension"
+    "message": "Отримати розширення"
   },
   "addItLater": {
-    "message": "Add it later"
+    "message": "Додати згодом"
   },
   "cannotAutofillPasswordsWithoutExtensionTitle": {
-    "message": "You can't autofill passwords without the browser extension"
+    "message": "Не можна автоматично заповнювати паролі без розширення для браузера"
   },
   "cannotAutofillPasswordsWithoutExtensionDesc": {
-    "message": "Are you sure you don't want to add the extension now?"
+    "message": "Ви дійсно не хочете додати розширення?"
   },
   "skipToWebApp": {
-    "message": "Skip to web app"
+    "message": "Перейти до вебпрограми"
   },
   "bitwardenExtensionInstalled": {
-    "message": "Bitwarden extension installed!"
+    "message": "Розширення Bitwarden встановлено!"
   },
   "openExtensionToAutofill": {
-    "message": "Open the extension to log in and start autofilling."
+    "message": "Відкрийте розширення, щоб увійти й користуватися автозаповненням."
   },
   "openBitwardenExtension": {
-    "message": "Open Bitwarden extension"
+    "message": "Відкрити розширення Bitwarden"
   },
   "gettingStartedWithBitwardenPart1": {
-    "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "message": "Щоб переглянути поради щодо початку роботи з Bitwarden, відвідайте",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
-    "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "message": "Навчальний центр",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
-    "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "message": "Довідковий центр",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
-    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+    "message": "За допомогою розширення для браузера Bitwarden можна легко створювати нові паролі, користуватися збереженими паролями безпосередньо з панелі інструментів браузера та швидко входити до облікових записів за допомогою автозаповнення Bitwarden."
   },
   "restart": {
     "message": "Перезапустити"
@@ -10781,7 +10796,55 @@
     }
   },
   "billingAddressRequiredToAddCredit": {
-    "message": "Billing address required to add credit.",
+    "message": "Щоб додати кредит, необхідно ввести платіжну адресу.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/vi/messages.json b/apps/web/src/locales/vi/messages.json
index f1c75d66f97..13fc25170e7 100644
--- a/apps/web/src/locales/vi/messages.json
+++ b/apps/web/src/locales/vi/messages.json
@@ -1,30 +1,30 @@
 {
   "allApplications": {
-    "message": "All applications"
+    "message": "Tất cả các ứng dụng"
   },
   "appLogoLabel": {
     "message": "Bitwarden logo"
   },
   "criticalApplications": {
-    "message": "Critical applications"
+    "message": "Ứng dụng quan trọng"
   },
   "noCriticalAppsAtRisk": {
-    "message": "No critical applications at risk"
+    "message": "Không có ứng dụng quan trọng nào bị đe dọa"
   },
   "accessIntelligence": {
-    "message": "Access Intelligence"
+    "message": "Trí tuệ truy cập"
   },
   "riskInsights": {
-    "message": "Risk Insights"
+    "message": "Thấu hiểu về rủi ro"
   },
   "passwordRisk": {
-    "message": "Password Risk"
+    "message": "Mật khẩu rủi ro"
   },
   "reviewAtRiskPasswords": {
-    "message": "Review at-risk passwords (weak, exposed, or reused) across applications. Select your most critical applications to prioritize security actions for your users to address at-risk passwords."
+    "message": "Kiểm tra các mật khẩu có nguy cơ (yếu, bị lộ hoặc được sử dụng lại) trên các ứng dụng. Chọn các ứng dụng quan trọng nhất của bạn để ưu tiên các biện pháp bảo mật cho người dùng nhằm giải quyết các mật khẩu có nguy cơ."
   },
   "dataLastUpdated": {
-    "message": "Data last updated: $DATE$",
+    "message": "Dữ liệu được cập nhật lần cuối: $DATE$",
     "placeholders": {
       "date": {
         "content": "$1",
@@ -33,19 +33,19 @@
     }
   },
   "notifiedMembers": {
-    "message": "Notified members"
+    "message": "Các thành viên được thông báo"
   },
   "revokeMembers": {
-    "message": "Revoke members"
+    "message": "Hủy tư cách thành viên"
   },
   "restoreMembers": {
-    "message": "Restore members"
+    "message": "Khôi phục tư cách thành viên"
   },
   "cannotRestoreAccessError": {
-    "message": "Cannot restore organization access"
+    "message": "Không thể khôi phục quyền truy cập tổ chức"
   },
   "allApplicationsWithCount": {
-    "message": "All applications ($COUNT$)",
+    "message": "Tổng số ứng dụng ($COUNT$)",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -54,10 +54,10 @@
     }
   },
   "createNewLoginItem": {
-    "message": "Create new login item"
+    "message": "Tạo mục đăng nhập mới"
   },
   "criticalApplicationsWithCount": {
-    "message": "Critical applications ($COUNT$)",
+    "message": "Ứng dụng quan trọng ($COUNT$)",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -66,7 +66,7 @@
     }
   },
   "notifiedMembersWithCount": {
-    "message": "Notified members ($COUNT$)",
+    "message": "Các thành viên đã được thông báo ($COUNT$)",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -75,7 +75,7 @@
     }
   },
   "noAppsInOrgTitle": {
-    "message": "No applications found in $ORG NAME$",
+    "message": "Không tìm thấy ứng dụng nào trong $ORG NAME$",
     "placeholders": {
       "org name": {
         "content": "$1",
@@ -84,43 +84,43 @@
     }
   },
   "noAppsInOrgDescription": {
-    "message": "As users save logins, applications appear here, showing any at-risk passwords. Mark critical apps and notify users to update passwords."
+    "message": "Khi người dùng lưu thông tin đăng nhập, các ứng dụng sẽ hiển thị tại đây, bao gồm cả các mật khẩu có nguy cơ bị lộ. Đánh dấu các ứng dụng quan trọng và thông báo cho người dùng cập nhật mật khẩu."
   },
   "noCriticalAppsTitle": {
-    "message": "You haven't marked any applications as a Critical"
+    "message": "Bạn chưa đánh dấu bất kỳ ứng dụng nào là Quan trọng"
   },
   "noCriticalAppsDescription": {
-    "message": "Select your most critical applications to discover at-risk passwords, and notify users to change those passwords."
+    "message": "Chọn các ứng dụng quan trọng nhất của bạn để phát hiện các mật khẩu có nguy cơ bị lộ, và thông báo cho người dùng thay đổi các mật khẩu đó."
   },
   "markCriticalApps": {
-    "message": "Mark critical apps"
+    "message": "Đánh dấu các ứng dụng quan trọng"
   },
   "markAppAsCritical": {
-    "message": "Mark app as critical"
+    "message": "Đánh dấu các ứng dụng quan trọng"
   },
   "applicationsMarkedAsCriticalSuccess": {
-    "message": "Applications marked as critical"
+    "message": "Các ứng dụng được đánh dấu là quan trọng"
   },
   "application": {
-    "message": "Application"
+    "message": "Ứng dụng"
   },
   "atRiskPasswords": {
-    "message": "At-risk passwords"
+    "message": "Mật khẩu có rủi ro cao"
   },
   "requestPasswordChange": {
-    "message": "Request password change"
+    "message": "Yêu cầu thay đổi mật khẩu"
   },
   "totalPasswords": {
-    "message": "Total passwords"
+    "message": "Tổng số mật khẩu"
   },
   "searchApps": {
-    "message": "Search applications"
+    "message": "Tìm kiếm ứng dụng"
   },
   "atRiskMembers": {
-    "message": "At-risk members"
+    "message": "Các thành viên có rủi ro"
   },
   "atRiskMembersWithCount": {
-    "message": "At-risk members ($COUNT$)",
+    "message": "Các thành viên có rủi ro ($COUNT$)",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -129,7 +129,7 @@
     }
   },
   "atRiskApplicationsWithCount": {
-    "message": "At-risk applications ($COUNT$)",
+    "message": "Các ứng dụng có rủi ro ($COUNT$)",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -138,19 +138,19 @@
     }
   },
   "atRiskMembersDescription": {
-    "message": "These members are logging into applications with weak, exposed, or reused passwords."
+    "message": "Các thành viên này đang đăng nhập vào các ứng dụng bằng mật khẩu yếu, dễ bị lộ hoặc được sử dụng lại."
   },
   "atRiskMembersDescriptionNone": {
-    "message": "These are no members logging into applications with weak, exposed, or reused passwords."
+    "message": "Không có thành viên nào đăng nhập vào ứng dụng bằng mật khẩu yếu, dễ bị lộ hoặc được sử dụng lại."
   },
   "atRiskApplicationsDescription": {
-    "message": "These applications have weak, exposed, or reused passwords."
+    "message": "Các ứng dụng này có mật khẩu yếu, dễ bị lộ hoặc được sử dụng lại."
   },
   "atRiskApplicationsDescriptionNone": {
-    "message": "These are no applications with weak, exposed, or reused passwords."
+    "message": "Đây không phải là các ứng dụng sử dụng mật khẩu yếu, dễ bị lộ hoặc được sử dụng lại."
   },
   "atRiskMembersDescriptionWithApp": {
-    "message": "These members are logging into $APPNAME$ with weak, exposed, or reused passwords.",
+    "message": "Các thành viên này đang đăng nhập vào $APPNAME$ bằng mật khẩu yếu, dễ bị lộ hoặc đã được sử dụng lại.",
     "placeholders": {
       "appname": {
         "content": "$1",
@@ -159,7 +159,7 @@
     }
   },
   "atRiskMembersDescriptionWithAppNone": {
-    "message": "There are no at risk members for $APPNAME$.",
+    "message": "Không có thành viên nào thuộc nhóm có rủi ro đối với $APPNAME$.",
     "placeholders": {
       "appname": {
         "content": "$1",
@@ -168,19 +168,19 @@
     }
   },
   "totalMembers": {
-    "message": "Total members"
+    "message": "Tổng số thành viên"
   },
   "atRiskApplications": {
-    "message": "At-risk applications"
+    "message": "Ứng dụng có nguy cơ cao"
   },
   "totalApplications": {
-    "message": "Total applications"
+    "message": "Tổng số ứng dụng"
   },
   "unmarkAsCriticalApp": {
-    "message": "Unmark as critical app"
+    "message": "Bỏ đánh dấu ứng dụng quan trọng"
   },
   "criticalApplicationSuccessfullyUnmarked": {
-    "message": "Critical application successfully unmarked"
+    "message": "Ứng dụng quan trọng đã được gỡ bỏ dấu hiệu thành công"
   },
   "whatTypeOfItem": {
     "message": "Mục này là gì?"
@@ -220,7 +220,7 @@
     "message": "Ghi chú"
   },
   "privateNote": {
-    "message": "Private note"
+    "message": "Ghi chú riêng tư"
   },
   "note": {
     "message": "Ghi chú"
@@ -235,19 +235,19 @@
     "message": "Thông tin đăng nhập"
   },
   "personalDetails": {
-    "message": "Personal details"
+    "message": "Thông tin cá nhân"
   },
   "identification": {
-    "message": "Identification"
+    "message": "Định danh"
   },
   "contactInfo": {
-    "message": "Contact info"
+    "message": "Thông tin liên hệ"
   },
   "cardDetails": {
-    "message": "Card details"
+    "message": "Thông tin thẻ"
   },
   "cardBrandDetails": {
-    "message": "$BRAND$ details",
+    "message": "Chi tiết của $BRAND$",
     "placeholders": {
       "brand": {
         "content": "$1",
@@ -256,7 +256,7 @@
     }
   },
   "itemHistory": {
-    "message": "Item history"
+    "message": "Lịch sử mục"
   },
   "authenticatorKey": {
     "message": "Khóa xác thực"
@@ -864,6 +864,9 @@
   "me": {
     "message": "Tôi"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "myVault": {
     "message": "Kho của tôi"
   },
@@ -1040,7 +1043,7 @@
     "message": "Không"
   },
   "location": {
-    "message": "Location"
+    "message": "Vị trí"
   },
   "loginOrCreateNewAccount": {
     "message": "Đăng nhập hoặc tạo tài khoản mới để truy cập kho mật khẩu của bạn."
@@ -1052,7 +1055,7 @@
     "message": "Đăng nhập bằng thiết bị phải được thiết lập trong cài đặt của ứng dụng Bitwarden. Dùng cách khác?"
   },
   "needAnotherOptionV1": {
-    "message": "Need another option?"
+    "message": "Cần một tùy chọn khác?"
   },
   "loginWithMasterPassword": {
     "message": "Đăng nhập bằng mật khẩu chính"
@@ -1067,13 +1070,13 @@
     "message": "Dùng phương thức đăng nhập khác"
   },
   "logInWithPasskey": {
-    "message": "Log in with passkey"
+    "message": "Đăng nhập bằng khóa truy cập"
   },
   "useSingleSignOn": {
-    "message": "Use single sign-on"
+    "message": "Dùng đăng nhập một lần"
   },
   "welcomeBack": {
-    "message": "Welcome back"
+    "message": "Chào mừng bạn trở lại"
   },
   "invalidPasskeyPleaseTryAgain": {
     "message": "Mã khoá không hợp lệ. Vui lòng thử lại."
@@ -1082,19 +1085,19 @@
     "message": "Chưa hỗ trợ 2FA cho mã khoá. Cập nhật ứng dụng để đăng nhập."
   },
   "loginWithPasskeyInfo": {
-    "message": "Use a generated passkey that will automatically log you in without a password. Biometrics, like facial recognition or fingerprint, or another FIDO2 security method will verify your identity."
+    "message": "Sử dụng khóa truy cập được tạo sẵn để đăng nhập tự động mà không cần mật khẩu. Các phương pháp xác thực sinh trắc học như nhận diện khuôn mặt hoặc vân tay, hoặc phương pháp bảo mật FIDO2 khác sẽ xác minh danh tính của bạn."
   },
   "newPasskey": {
     "message": "Mã khoá mới"
   },
   "learnMoreAboutPasswordless": {
-    "message": "Learn more about passwordless"
+    "message": "Tìm hiểu thêm về công nghệ không cần mật khẩu"
   },
   "creatingPasskeyLoading": {
     "message": "Đang tạo mã khoá..."
   },
   "creatingPasskeyLoadingInfo": {
-    "message": "Keep this window open and follow prompts from your browser."
+    "message": "Giữ cửa sổ này mở và làm theo lời nhắc từ trình duyệt của bạn."
   },
   "errorCreatingPasskey": {
     "message": "Lỗi tạo mã khoá"
@@ -1109,22 +1112,22 @@
     "message": "Đặt tên cho mã khoá của bạn để dễ phân biệt."
   },
   "useForVaultEncryption": {
-    "message": "Use for vault encryption"
+    "message": "Sử dụng để mã hóa kho lưu trữ"
   },
   "useForVaultEncryptionInfo": {
-    "message": "Log in and unlock on supported devices without your master password. Follow the prompts from your browser to finalize setup."
+    "message": "Đăng nhập và mở khóa trên các thiết bị được hỗ trợ mà không cần mật khẩu chính. Làm theo các hướng dẫn từ trình duyệt của bạn để hoàn tất quá trình cài đặt."
   },
   "useForVaultEncryptionErrorReadingPasskey": {
     "message": "Lỗi đọc mã khoá. Hãy thử lại hoặc bỏ tuỳ chọn này."
   },
   "encryptionNotSupported": {
-    "message": "Encryption not supported"
+    "message": "Không hỗ trợ mã hóa"
   },
   "enablePasskeyEncryption": {
     "message": "Thiết lập mã hóa"
   },
   "usedForEncryption": {
-    "message": "Used for encryption"
+    "message": "Dùng để mã hóa"
   },
   "loginWithPasskeyEnabled": {
     "message": "Đăng nhập bằng mã khoá đã bật"
@@ -1157,7 +1160,7 @@
     "message": "Tạo tài khoản"
   },
   "newToBitwarden": {
-    "message": "New to Bitwarden?"
+    "message": "Bạn mới sử dụng Bitwarden?"
   },
   "setAStrongPassword": {
     "message": "Đặt mật khẩu mạnh"
@@ -1175,43 +1178,43 @@
     "message": "Đăng nhập"
   },
   "logInToBitwarden": {
-    "message": "Log in to Bitwarden"
+    "message": "Đăng nhập Bitwarden"
   },
   "enterTheCodeSentToYourEmail": {
-    "message": "Enter the code sent to your email"
+    "message": "Nhập mã được gửi về email của bạn"
   },
   "enterTheCodeFromYourAuthenticatorApp": {
-    "message": "Enter the code from your authenticator app"
+    "message": "Nhập mã từ ứng dụng xác thực của bạn"
   },
   "pressYourYubiKeyToAuthenticate": {
-    "message": "Press your YubiKey to authenticate"
+    "message": "Nhấn YubiKey của bạn để xác thực"
   },
   "authenticationTimeout": {
-    "message": "Authentication timeout"
+    "message": "Thời gian chờ xác thực"
   },
   "authenticationSessionTimedOut": {
-    "message": "The authentication session timed out. Please restart the login process."
+    "message": "Phiên xác thực đã hết thời gian chờ. Vui lòng đăng nhập lại từ đầu."
   },
   "verifyYourIdentity": {
-    "message": "Verify your Identity"
+    "message": "Xác minh danh tính của bạn"
   },
   "weDontRecognizeThisDevice": {
-    "message": "We don't recognize this device. Enter the code sent to your email to verify your identity."
+    "message": "Chúng tôi không nhận diện được thiết bị này. Nhập mã được gửi đến email để xác minh danh tính của bạn."
   },
   "continueLoggingIn": {
-    "message": "Continue logging in"
+    "message": "Tiếp tục đăng nhập"
   },
   "whatIsADevice": {
-    "message": "What is a device?"
+    "message": "Thiết bị là gì?"
   },
   "aDeviceIs": {
-    "message": "A device is a unique installation of the Bitwarden app where you have logged in. Reinstalling, clearing app data, or clearing your cookies could result in a device appearing multiple times."
+    "message": "Một thiết bị là một bản cài đặt duy nhất của ứng dụng Bitwarden mà bạn đã đăng nhập. Việc cài đặt lại ứng dụng, xóa dữ liệu ứng dụng hoặc xóa cookie có thể khiến thiết bị xuất hiện nhiều lần."
   },
   "logInInitiated": {
-    "message": "Log in initiated"
+    "message": "Bắt đầu đăng nhập"
   },
   "logInRequestSent": {
-    "message": "Request sent"
+    "message": "Đã gửi yêu cầu"
   },
   "submit": {
     "message": "Gửi"
@@ -1244,13 +1247,13 @@
     "message": "Gợi ý mật khẩu chính (tùy chọn)"
   },
   "newMasterPassHint": {
-    "message": "New master password hint (optional)"
+    "message": "Gợi ý mật khẩu chính mới (tùy chọn)"
   },
   "masterPassHintLabel": {
     "message": "Gợi ý mật khẩu chính"
   },
   "masterPassHintText": {
-    "message": "If you forget your password, the password hint can be sent to your email. $CURRENT$/$MAXIMUM$ character maximum.",
+    "message": "Nếu bạn quên mật khẩu, gợi ý mật khẩu có thể được gửi tới email của bạn. $CURRENT$/$MAXIMUM$ ký tự tối đa.",
     "placeholders": {
       "current": {
         "content": "$1",
@@ -1266,16 +1269,16 @@
     "message": "Cài đặt"
   },
   "accountEmail": {
-    "message": "Account email"
+    "message": "Email tài khoản"
   },
   "requestHint": {
-    "message": "Request hint"
+    "message": "Yêu cầu gợi ý"
   },
   "requestPasswordHint": {
-    "message": "Request password hint"
+    "message": "Yêu cầu gợi ý mật khẩu"
   },
   "enterYourAccountEmailAddressAndYourPasswordHintWillBeSentToYou": {
-    "message": "Enter your account email address and your password hint will be sent to you"
+    "message": "Nhập địa chỉ email tài khoản của bạn và gợi ý mật khẩu sẽ được gửi đến bạn"
   },
   "getMasterPasswordHint": {
     "message": "Nhận gợi ý mật khẩu chính"
@@ -1309,10 +1312,10 @@
     "message": "Tài khoản của bạn đã được tạo! Bạn có thể đăng nhập ngay bây giờ."
   },
   "newAccountCreated2": {
-    "message": "Your new account has been created!"
+    "message": "Tài khoản của bạn đã được tạo thành công!"
   },
   "youHaveBeenLoggedIn": {
-    "message": "You have been logged in!"
+    "message": "Bạn đã đăng nhập thành công!"
   },
   "trialAccountCreated": {
     "message": "Đã tạo tài khoản thành công."
@@ -1324,7 +1327,7 @@
     "message": "Xảy ra một lỗi bất ngờ."
   },
   "expirationDateError": {
-    "message": "Please select an expiration date that is in the future."
+    "message": "Vui lòng chọn ngày hết hạn trong tương lai."
   },
   "emailAddress": {
     "message": "Địa chỉ email"
@@ -1333,7 +1336,7 @@
     "message": "Kho của bạn đã khóa"
   },
   "yourAccountIsLocked": {
-    "message": "Your account is locked"
+    "message": "Tài khoản của bạn đã bị khóa"
   },
   "uuid": {
     "message": "UUID"
@@ -1370,7 +1373,7 @@
     "message": "Bạn không có quyền xem tất cả mục trong bộ sưu tập này."
   },
   "youDoNotHavePermissions": {
-    "message": "You do not have permissions to this collection"
+    "message": "Bạn không có quyền truy cập vào bộ sưu tập này"
   },
   "noCollectionsInList": {
     "message": "Chưa có bộ sưu tập nào."
@@ -1397,13 +1400,13 @@
     "message": "Một thông báo đã được gửi đến thiết bị của bạn."
   },
   "notificationSentDevicePart1": {
-    "message": "Unlock Bitwarden on your device or on the "
+    "message": "Mở khóa Bitwarden trên thiết bị của bạn hoặc trên "
   },
   "areYouTryingToAccessYourAccount": {
-    "message": "Are you trying to access your account?"
+    "message": "Bạn đang cố gắng truy cập tài khoản của mình?"
   },
   "accessAttemptBy": {
-    "message": "Access attempt by $EMAIL$",
+    "message": "Cố gắng truy cập bởi $EMAIL$",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -1412,22 +1415,22 @@
     }
   },
   "confirmAccess": {
-    "message": "Confirm access"
+    "message": "Xác nhận truy cập"
   },
   "denyAccess": {
-    "message": "Deny access"
+    "message": "Từ chối truy cập"
   },
   "notificationSentDeviceAnchor": {
-    "message": "web app"
+    "message": "ứng dụng web"
   },
   "notificationSentDevicePart2": {
-    "message": "Make sure the Fingerprint phrase matches the one below before approving."
+    "message": "Hãy đảm bảo rằng cụm từ xác thực khớp với cụm từ bên dưới trước khi phê duyệt."
   },
   "notificationSentDeviceComplete": {
-    "message": "Unlock Bitwarden on your device. Make sure the Fingerprint phrase matches the one below before approving."
+    "message": "Mở khóa Bitwarden trên thiết bị của bạn. Hãy đảm bảo rằng cụm từ xác thực khớp với cụm từ bên dưới trước khi xác nhận."
   },
   "aNotificationWasSentToYourDevice": {
-    "message": "A notification was sent to your device"
+    "message": "Một thông báo đã được gửi đến thiết bị của bạn"
   },
   "versionNumber": {
     "message": "Phiên bản $VERSION_NUMBER$",
@@ -1448,14 +1451,14 @@
     }
   },
   "dontAskAgainOnThisDeviceFor30Days": {
-    "message": "Don't ask again on this device for 30 days"
+    "message": "Không yêu cầu lại trên thiết bị này trong vòng 30 ngày"
   },
   "selectAnotherMethod": {
-    "message": "Select another method",
+    "message": "Chọn phương pháp khác",
     "description": "Select another two-step login method"
   },
   "useYourRecoveryCode": {
-    "message": "Use your recovery code"
+    "message": "Sử dụng mã khôi phục của bạn"
   },
   "insertU2f": {
     "message": "Cắm khóa bảo mật vào cổng USB trên máy tính bạn và bấm nút trên khóa, nếu có."
@@ -1473,7 +1476,7 @@
     "message": "Tùy chọn xác minh hai bước"
   },
   "selectTwoStepLoginMethod": {
-    "message": "Select two-step login method"
+    "message": "Chọn phương pháp đăng nhập hai bước"
   },
   "recoveryCodeDesc": {
     "message": "Bạn bị mất quyền truy cập vào tất cả các dịch vụ xác minh hai bước? Sử dụng mã phục hồi của bạn để tắt chúng trên tài khoản bạn."
@@ -1515,16 +1518,16 @@
     "message": "Sử dụng bất kỳ khóa bảo mật tương thích với WebAuthn nào để truy cập vào tài khoản của bạn."
   },
   "webAuthnMigrated": {
-    "message": "(Migrated from FIDO)"
+    "message": "(Được di chuyển từ FIDO)"
   },
   "openInNewTab": {
-    "message": "Open in new tab"
+    "message": "Mở trong tab mới"
   },
   "emailTitle": {
     "message": "Email"
   },
   "emailDescV2": {
-    "message": "Enter a code sent to your email."
+    "message": "Nhập mã được gửi về email của bạn."
   },
   "continue": {
     "message": "Tiếp tục"
@@ -1536,7 +1539,7 @@
     "message": "Tổ chức"
   },
   "moveToOrgDesc": {
-    "message": "Choose an organization that you wish to move this item to. Moving to an organization transfers ownership of the item to that organization. You will no longer be the direct owner of this item once it has been moved."
+    "message": "Chọn một tổ chức mà bạn muốn chuyển mục này tới. Việc di chuyển đến một tổ chức sẽ chuyển quyền sở hữu của mục sang tổ chức mà bạn chọn. Bạn sẽ không còn là chủ sở hữu trực tiếp của mục này một khi nó đã được chuyển."
   },
   "collectionsDesc": {
     "message": "Chỉnh sửa những bộ sưu tập mà bạn có chia sẻ mục này. Chỉ những thành viên của tổ chức có quyền quản lý những bộ sưu tập đó mới có thể xem được mục này."
@@ -1551,7 +1554,7 @@
     }
   },
   "deleteSelectedCollectionsDesc": {
-    "message": "$COUNT$ collection(s) will be permanently deleted.",
+    "message": "$COUNT$ bộ sưu tập sẽ bị xóa vĩnh viễn.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -1563,7 +1566,7 @@
     "message": "Bạn có chắc chắn muốn tiếp tục không?"
   },
   "moveSelectedItemsDesc": {
-    "message": "Choose a folder that you would like to add the $COUNT$ selected item(s) to.",
+    "message": "Chọn thư mục mà bạn muốn thêm $COUNT$ mục đã chọn vào.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -1581,10 +1584,10 @@
     "message": "Sao chép UUID"
   },
   "errorRefreshingAccessToken": {
-    "message": "Access Token Refresh Error"
+    "message": "Lỗi cập nhật token truy cập"
   },
   "errorRefreshingAccessTokenDesc": {
-    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+    "message": "Bạn có thể đã bị đăng xuất. Vui lòng đăng xuất và đăng nhập lại."
   },
   "warning": {
     "message": "Cảnh báo"
@@ -1599,7 +1602,7 @@
     "message": "Bản xuất này chứa dữ liệu kho bạn và không được mã hóa. Bạn không nên lưu trữ hay gửi tập tin đã xuất thông qua phương thức rủi ro (như email). Vui lòng xóa nó ngay lập tức khi bạn đã sử dụng xong."
   },
   "exportSecretsWarningDesc": {
-    "message": "This export contains your secrets data in an unencrypted format. You should not store or send the exported file over unsecure channels (such as email). Delete it immediately after you are done using it."
+    "message": "Tệp xuất này chứa dữ liệu bí mật của bạn ở định dạng không được mã hóa. Bạn không nên lưu trữ hoặc gửi tệp đã xuất qua các kênh không an toàn (như email). Hãy xóa nó ngay lập tức sau khi bạn hoàn tất việc sử dụng."
   },
   "encExportKeyWarningDesc": {
     "message": "This export encrypts your data using your account's encryption key. If you ever rotate your account's encryption key you should export again since you will not be able to decrypt this export file."
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "Sẽ đăng xuất bạn ra khỏi phiên hiện tại, sau đó cần đăng nhập lại. Những phiên trên các thiết bị khác sẽ tiếp tục có hiệu lực lên đến 1 tiếng."
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "Đã thay đổi email"
   },
@@ -2093,10 +2099,10 @@
     "message": "If you have the same login across multiple different website domains, you can mark the website as \"equivalent\". \"Global\" domains are ones already created for you by Bitwarden."
   },
   "globalEqDomains": {
-    "message": "Global equivalent domains"
+    "message": "Các tên miền tương đương toàn cầu"
   },
   "customEqDomains": {
-    "message": "Custom equivalent domains"
+    "message": "Tên miền tương đương tùy chỉnh"
   },
   "exclude": {
     "message": "Ngoại trừ"
@@ -2111,10 +2117,10 @@
     "message": "Tên miền tùy biến mới"
   },
   "newCustomDomainDesc": {
-    "message": "Enter a list of domains separated by commas. Only \"base\" domains are allowed. Do not enter subdomains. For example, enter \"google.com\" instead of \"www.google.com\". You can also enter \"androidapp://package.name\" to associate an android app with other website domains."
+    "message": "Nhập danh sách các tên miền cách nhau bằng dấu phẩy. Chỉ các tên miền \"cơ sở\" mới được phép. Không nhập các tên miền con. Ví dụ: nhập \"google.com\" thay vì \"www.google.com\". Bạn cũng có thể nhập \"androidapp://package.name\" để liên kết ứng dụng Android với các tên miền trang web khác."
   },
   "customDomainX": {
-    "message": "Custom domain $INDEX$",
+    "message": "Tên miền tùy chỉnh $INDEX$",
     "placeholders": {
       "index": {
         "content": "$1",
@@ -2129,44 +2135,44 @@
     "message": "Đăng nhập 2-bước"
   },
   "twoStepLoginEnforcement": {
-    "message": "Two-step Login Enforcement"
+    "message": "Bắt buộc đăng nhập hai bước"
   },
   "twoStepLoginDesc": {
     "message": "Bảo mật tài khoản bằng các phương pháp sau khi đăng nhập."
   },
   "twoStepLoginTeamsDesc": {
-    "message": "Enable two-step login for your organization."
+    "message": "Bật tính năng đăng nhập hai bước cho tổ chức của bạn."
   },
   "twoStepLoginEnterpriseDescStart": {
-    "message": "Enforce Bitwarden Two-step Login options for members by using the ",
+    "message": "Áp dụng các tùy chọn đăng nhập hai bước của Bitwarden cho thành viên bằng cách sử dụng ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'Enforce Bitwarden Two-step Login options for members by using the Two-step Login Policy.'"
   },
   "twoStepLoginPolicy": {
-    "message": "Two-step Login Policy"
+    "message": "Chính sách đăng nhập hai bước"
   },
   "twoStepLoginOrganizationDuoDesc": {
-    "message": "To enforce Two-step Login through Duo, use the options below."
+    "message": "Để áp dụng tính năng Đăng nhập hai bước thông qua Duo, hãy sử dụng các tùy chọn dưới đây."
   },
   "twoStepLoginOrganizationSsoDesc": {
-    "message": "If you have setup SSO or plan to, Two-step Login may already be enforced through your Identity Provider."
+    "message": "Nếu bạn đã thiết lập SSO hoặc có kế hoạch thiết lập, tính năng Đăng nhập hai bước có thể đã được áp dụng thông qua Nhà cung cấp danh tính của bạn."
   },
   "twoStepLoginRecoveryWarning": {
-    "message": "Setting up two-step login can permanently lock you out of your Bitwarden account. A recovery code allows you to access your account in the event that you can no longer use your normal two-step login provider (example: you lose your device). Bitwarden support will not be able to assist you if you lose access to your account. We recommend you write down or print the recovery code and keep it in a safe place."
+    "message": "Cài đặt đăng nhập hai bước có thể khiến bạn mất quyền truy cập vĩnh viễn tài khoản Bitwarden của mình. Mã khôi phục cho phép bạn truy cập tài khoản trong trường hợp bạn không thể sử dụng nhà cung cấp đăng nhập hai bước thông thường (ví dụ: bạn mất thiết bị). Bộ phận hỗ trợ Bitwarden sẽ không thể giúp bạn nếu bạn mất quyền truy cập vào tài khoản. Chúng tôi khuyên bạn nên ghi lại hoặc in mã khôi phục và giữ nó ở nơi an toàn."
   },
   "restrictedItemTypePolicy": {
-    "message": "Remove card item type"
+    "message": "Xóa loại mục thẻ"
   },
   "restrictedItemTypePolicyDesc": {
-    "message": "Do not allow members to create card item types. Existing cards will be automatically removed."
+    "message": "Không cho phép thành viên tạo loại mục thẻ. Các thẻ hiện có sẽ bị xóa tự động."
   },
   "restrictCardTypeImport": {
-    "message": "Cannot import card item types"
+    "message": "Không thể nhập mục thẻ"
   },
   "restrictCardTypeImportDesc": {
-    "message": "A policy set by 1 or more organizations prevents you from importing cards to your vaults."
+    "message": "Một chính sách được thiết lập bởi 1 hoặc nhiều tổ chức ngăn bạn nhập thẻ vào kho của mình."
   },
   "yourSingleUseRecoveryCode": {
-    "message": "Your single-use recovery code can be used to turn off two-step login in the event that you lose access to your two-step login provider. Bitwarden recommends you write down the recovery code and keep it in a safe place."
+    "message": "Mã khôi phục sử dụng một lần của bạn có thể được sử dụng để tắt tính năng đăng nhập hai bước trong trường hợp bạn mất quyền truy cập vào nhà cung cấp dịch vụ đăng nhập hai bước. Bitwarden khuyến nghị bạn ghi lại mã khôi phục và lưu trữ nó ở nơi an toàn."
   },
   "viewRecoveryCode": {
     "message": "Xem mã khôi phục"
@@ -2207,52 +2213,52 @@
     "message": "Quản lý"
   },
   "manageCollection": {
-    "message": "Manage collection"
+    "message": "Quản lý bộ sưu tập"
   },
   "viewItems": {
-    "message": "View items"
+    "message": "Xem mục"
   },
   "viewItemsHidePass": {
-    "message": "View items, hidden passwords"
+    "message": "Xem các mục, ẩn các mật khẩu"
   },
   "editItems": {
-    "message": "Edit items"
+    "message": "Chỉnh sửa mục"
   },
   "editItemsHidePass": {
-    "message": "Edit items, hidden passwords"
+    "message": "Sửa các mục, ẩn các mật khẩu"
   },
   "disable": {
     "message": "Vô hiệu hoá"
   },
   "orgUserDetailsNotFound": {
-    "message": "Member details not found."
+    "message": "Không tìm thấy thông tin thành viên."
   },
   "revokeAccess": {
     "message": "Thu hồi quyền truy cập"
   },
   "revoke": {
-    "message": "Revoke"
+    "message": "Thu hồi"
   },
   "twoStepLoginProviderEnabled": {
-    "message": "This two-step login provider is active on your account."
+    "message": "Nhà cung cấp đăng nhập hai bước này đang hoạt động trên tài khoản của bạn."
   },
   "twoStepLoginAuthDesc": {
     "message": "Vui lòng nhập mật khẩu chính để chỉnh sửa cài đặt đăng nhập hai bước."
   },
   "twoStepAuthenticatorInstructionPrefix": {
-    "message": "Download an authenticator app such as"
+    "message": "Tải xuống ứng dụng xác thực như"
   },
   "twoStepAuthenticatorInstructionInfix1": {
     "message": ","
   },
   "twoStepAuthenticatorInstructionInfix2": {
-    "message": "or"
+    "message": "hoặc"
   },
   "twoStepAuthenticatorInstructionSuffix": {
     "message": "."
   },
   "continueToExternalUrlTitle": {
-    "message": "Continue to $URL$?",
+    "message": "Đi đến $URL$?",
     "placeholders": {
       "url": {
         "content": "$1",
@@ -2261,25 +2267,25 @@
     }
   },
   "continueToExternalUrlDesc": {
-    "message": "You are leaving Bitwarden and launching an external website in a new window."
+    "message": "Bạn đang rời khỏi Bitwarden và mở một trang web bên ngoài trong một cửa sổ mới."
   },
   "twoStepContinueToBitwardenUrlTitle": {
-    "message": "Continue to bitwarden.com?"
+    "message": "Tiếp tục tới bitwarden.com?"
   },
   "twoStepContinueToBitwardenUrlDesc": {
-    "message": "Bitwarden Authenticator allows you to store authenticator keys and generate TOTP codes for 2-step verification flows. Learn more on the bitwarden.com website."
+    "message": "Trình xác thực Bitwarden cho phép bạn lưu trữ các khóa xác thực và tạo mã TOTP cho quy trình xác thực hai bước. Tìm hiểu thêm trên trang web bitwarden.com."
   },
   "twoStepAuthenticatorScanCodeV2": {
-    "message": "Scan the QR code below with your authenticator app or enter the key."
+    "message": "Quét mã QR bên dưới bằng ứng dụng xác thực của bạn hoặc nhập khóa."
   },
   "twoStepAuthenticatorQRCanvasError": {
-    "message": "Could not load QR code. Try again or use the key below."
+    "message": "Không thể tải mã QR. Vui lòng thử lại hoặc sử dụng khóa bên dưới."
   },
   "key": {
     "message": "Khóa"
   },
   "twoStepAuthenticatorEnterCodeV2": {
-    "message": "Verification code"
+    "message": "Mã xác minh"
   },
   "twoStepAuthenticatorReaddDesc": {
     "message": "Trong trường hợp bạn cần thêm thiết bị khác, ở dưới là mã QR (hoặc khóa) được yêu cầu bởi ứng dụng xác thực."
@@ -2297,7 +2303,7 @@
     "message": "Cắm khóa YubiKey vào cổng USB máy tính của bạn."
   },
   "twoFactorYubikeySelectKey": {
-    "message": "Select the first empty YubiKey input field below."
+    "message": "Chọn ô nhập liệu YubiKey trống đầu tiên bên dưới."
   },
   "twoFactorYubikeyTouchButton": {
     "message": "Chạm vào nút bấm trên YubiKey."
@@ -2309,7 +2315,7 @@
     "message": "Do giới hạn của hệ điều hành, YubiKey không thể xài hết được trên các ứng dụng Bitwarden. Bạn nên đăng ký thêm một phương pháp xác thực 2 bước khác khi mà YubiKey không xài được. Hỗ trợ hệ điều hành:"
   },
   "twoFactorYubikeySupportUsb": {
-    "message": "Web vault, desktop application, CLI, and all browser extensions on a device with a USB port that can accept your YubiKey."
+    "message": "Kho lưu trữ web, ứng dụng máy tính, giao diện dòng lệnh (CLI) và tất cả các tiện ích mở rộng trình duyệt trên thiết bị có cổng USB có thể chấp nhận YubiKey của bạn."
   },
   "twoFactorYubikeySupportMobile": {
     "message": "Ứng dụng di động trên thiết bị có khả năng NFC hoặc cổng USB có thể chấp nhận YubiKey của bạn."
@@ -2333,7 +2339,7 @@
     }
   },
   "webAuthnkeyX": {
-    "message": "WebAuthn Key $INDEX$",
+    "message": "Khóa WebAuthn $INDEX$",
     "placeholders": {
       "index": {
         "content": "$1",
@@ -2354,43 +2360,43 @@
     "message": "Đã cập nhật YubiKey"
   },
   "disableAllKeys": {
-    "message": "Deactivate all keys"
+    "message": "Vô hiệu hóa tất cả các khóa"
   },
   "twoFactorDuoDesc": {
-    "message": "Enter the Bitwarden application information from your Duo Admin panel."
+    "message": "Nhập thông tin ứng dụng Bitwarden từ bảng điều khiển Duo Admin của bạn."
   },
   "twoFactorDuoClientId": {
     "message": "Client Id"
   },
   "twoFactorDuoClientSecret": {
-    "message": "Client Secret"
+    "message": "Khóa bí mật của khách hàng"
   },
   "twoFactorDuoApiHostname": {
     "message": "API hostname"
   },
   "twoFactorEmailDesc": {
-    "message": "Follow these steps to set up two-step login with email:"
+    "message": "Làm theo hướng dẫn để thiết lập đăng nhập 2 bước với email:"
   },
   "twoFactorEmailEnterEmail": {
-    "message": "Enter the email that you wish to receive verification codes"
+    "message": "Nhập địa chỉ email mà bạn muốn nhận mã xác minh"
   },
   "twoFactorEmailEnterCode": {
-    "message": "Enter the resulting 6 digit verification code from the email"
+    "message": "Vui lòng nhập mã 6 chữ số được gửi về email"
   },
   "sendEmail": {
     "message": "Gửi email"
   },
   "twoFactorU2fAdd": {
-    "message": "Add a FIDO U2F security key to your account"
+    "message": "Thêm khóa bảo mật FIDO U2F vào tài khoản của bạn"
   },
   "removeU2fConfirmation": {
     "message": "Bạn có chắc muốn xóa khóa bảo mật này?"
   },
   "twoFactorWebAuthnAdd": {
-    "message": "Add a WebAuthn security key to your account"
+    "message": "Thêm khóa bảo mật WebAuthn vào tài khoản của bạn"
   },
   "readKey": {
-    "message": "Read key"
+    "message": "Đọc khóa"
   },
   "keyCompromised": {
     "message": "Khóa bị lộ."
@@ -2411,25 +2417,25 @@
     "message": "Do giới hạn của hệ điều hành, FIDO U2F không thể xài hết được trên các ứng dụng Bitwarden. Bạn nên đăng ký thêm một phương pháp xác thực 2 bước khác khi mà FIDO U2F không xài được. Hỗ trợ hệ điều hành:"
   },
   "twoFactorU2fSupportWeb": {
-    "message": "Web vault and browser extensions on a desktop/laptop with a U2F supported browser (Chrome, Opera, Vivaldi, or Firefox with FIDO U2F turned on)."
+    "message": "Kho lưu trữ web và tiện ích mở rộng trình duyệt trên máy tính để bàn/laptop sử dụng trình duyệt hỗ trợ U2F (Chrome, Opera, Vivaldi hoặc Firefox với tính năng FIDO U2F đã được kích hoạt)."
   },
   "twoFactorU2fWaiting": {
-    "message": "Waiting for you to touch the button on your security key"
+    "message": "Đang chờ bạn nhấn nút trên chìa khóa bảo mật của bạn"
   },
   "twoFactorU2fClickSave": {
-    "message": "Use the \"Save\" button below to activate this security key for two-step login."
+    "message": "Nhấn nút \"Lưu\" bên dưới để kích hoạt khóa bảo mật này cho tính năng đăng nhập hai bước."
   },
   "twoFactorU2fProblemReadingTryAgain": {
-    "message": "There was a problem reading the security key. Try again."
+    "message": "Có vấn đề khi đọc khóa bảo mật. Vui lòng thử lại."
   },
   "twoFactorWebAuthnWarning1": {
-    "message": "Due to platform limitations, WebAuthn cannot be used on all Bitwarden applications. You should set up another two-step login provider so that you can access your account when WebAuthn cannot be used."
+    "message": "Do hạn chế của nền tảng, WebAuthn không thể sử dụng trên tất cả các ứng dụng Bitwarden. Bạn nên thiết lập một nhà cung cấp đăng nhập hai bước khác để có thể truy cập tài khoản của mình khi WebAuthn không thể sử dụng."
   },
   "twoFactorRecoveryYourCode": {
-    "message": "Your Bitwarden two-step login recovery code"
+    "message": "Mã khôi phục đăng nhập hai bước của Bitwarden"
   },
   "twoFactorRecoveryNoCode": {
-    "message": "You have not set up any two-step login providers yet. After you have set up a two-step login provider you can check back here for your recovery code."
+    "message": "Bạn chưa thiết lập bất kỳ nhà cung cấp xác thực hai bước nào. Sau khi thiết lập nhà cung cấp xác thực hai bước, bạn có thể quay lại đây để lấy mã khôi phục."
   },
   "printCode": {
     "message": "Mã in",
@@ -2754,13 +2760,13 @@
     "message": "Bitwarden Families plan."
   },
   "addons": {
-    "message": "Add-ons"
+    "message": "Tiện ích bổ sung"
   },
   "premiumAccess": {
-    "message": "Premium access"
+    "message": "Quyền truy cập cao cấp"
   },
   "premiumAccessDesc": {
-    "message": "You can add Premium access to all members of your organization for $PRICE$ /$INTERVAL$.",
+    "message": "Bạn có thể thêm quyền truy cập Premium cho tất cả thành viên trong tổ chức của mình với giá $PRICE$ /$INTERVAL$.",
     "placeholders": {
       "price": {
         "content": "$1",
@@ -2773,10 +2779,10 @@
     }
   },
   "additionalStorageGb": {
-    "message": "Additional storage (GB)"
+    "message": "Dung lượng lưu trữ bổ sung (GB)"
   },
   "additionalStorageGbDesc": {
-    "message": "# of additional GB"
+    "message": "Số GB bổ sung #"
   },
   "additionalStorageIntervalDesc": {
     "message": "Gói của bạn có $SIZE$ dung lượng lưu trữ tập tin mã hóa. Bạn có thể mua thêm dung lượng với giá $PRICE$ cho mỗi GB/$INTERVAL$.",
@@ -2796,7 +2802,7 @@
     }
   },
   "summary": {
-    "message": "Summary"
+    "message": "Tóm tắt"
   },
   "total": {
     "message": "Tổng"
@@ -2805,13 +2811,13 @@
     "message": "năm"
   },
   "yr": {
-    "message": "yr"
+    "message": "năm"
   },
   "month": {
     "message": "tháng"
   },
   "monthAbbr": {
-    "message": "mo.",
+    "message": "tháng.",
     "description": "Short abbreviation for 'month'"
   },
   "paymentChargedAnnually": {
@@ -2827,7 +2833,7 @@
     }
   },
   "paymentChargedWithUnpaidSubscription": {
-    "message": "Your payment method will be charged for any unpaid subscriptions."
+    "message": "Phương thức thanh toán của bạn sẽ bị tính phí cho bất kỳ gói đăng ký nào chưa thanh toán."
   },
   "paymentChargedWithTrial": {
     "message": "Gói của bạn đi kèm với 7 ngày dùng thử miễn phí. Phương thức thanh toán của bạn sẽ không bị tính phí cho đến khi hết thời gian dùng thử. Bạn có thể hủy bỏ bất cứ lúc nào."
@@ -2878,25 +2884,25 @@
     "message": "Đã hủy gói"
   },
   "neverExpires": {
-    "message": "Never expires"
+    "message": "Không bao giờ hết hạn"
   },
   "status": {
     "message": "Trạng thái"
   },
   "nextCharge": {
-    "message": "Next charge"
+    "message": "Lần thanh toán tiếp theo"
   },
   "details": {
-    "message": "Details"
+    "message": "Chi tiết"
   },
   "downloadLicense": {
-    "message": "Download license"
+    "message": "Tải về tệp giấy phép"
   },
   "viewBillingToken": {
-    "message": "View Billing Token"
+    "message": "Xem mã thanh toán"
   },
   "updateLicense": {
-    "message": "Update license"
+    "message": "Cập nhập giấy phép sử dụng"
   },
   "manageSubscription": {
     "message": "Quản lý gói"
@@ -2908,10 +2914,10 @@
     "message": "Lưu trữ"
   },
   "addStorage": {
-    "message": "Add storage"
+    "message": "Thêm dung lượng lưu trữ"
   },
   "removeStorage": {
-    "message": "Remove storage"
+    "message": "Xóa dung lượng lưu trữ"
   },
   "subscriptionStorage": {
     "message": "Thuê bao của bạn có tổng cộng $MAX_STORAGE$ GB dung lượng lưu trữ tập tin có mã hóa. Bạn đã dùng $USED_STORAGE$ rồi.",
@@ -2927,51 +2933,51 @@
     }
   },
   "paymentMethod": {
-    "message": "Payment method"
+    "message": "Phương thức thanh toán"
   },
   "noPaymentMethod": {
-    "message": "No payment method on file."
+    "message": "Không có phương thức thanh toán trong hồ sơ."
   },
   "addPaymentMethod": {
-    "message": "Add payment method"
+    "message": "Thêm phương thức thanh toán"
   },
   "changePaymentMethod": {
-    "message": "Change payment method"
+    "message": "Thay đổi phương pháp thanh toán"
   },
   "invoices": {
     "message": "Hóa đơn"
   },
   "noUnpaidInvoices": {
-    "message": "No unpaid invoices."
+    "message": "Không có hóa đơn chưa thanh toán."
   },
   "noPaidInvoices": {
-    "message": "No paid invoices."
+    "message": "Không có hóa đơn đã thanh toán."
   },
   "paid": {
-    "message": "Paid",
+    "message": "Đã thanh toán",
     "description": "Past tense status of an invoice. ex. Paid or unpaid."
   },
   "unpaid": {
-    "message": "Unpaid",
+    "message": "Chưa thanh toán",
     "description": "Past tense status of an invoice. ex. Paid or unpaid."
   },
   "transactions": {
-    "message": "Transactions",
+    "message": "Các giao dịch",
     "description": "Payment/credit transactions."
   },
   "noTransactions": {
-    "message": "No transactions."
+    "message": "Không có giao dịch."
   },
   "chargeNoun": {
-    "message": "Charge",
+    "message": "Phí",
     "description": "Noun. A charge from a payment method."
   },
   "refundNoun": {
-    "message": "Refund",
+    "message": "Hoàn tiền",
     "description": "Noun. A refunded payment that was charged."
   },
   "chargesStatement": {
-    "message": "Any charges will appear on your statement as $STATEMENT_NAME$.",
+    "message": "Mọi khoản phí sẽ hiển thị trên sao kê của bạn với tên $STATEMENT_NAME$.",
     "placeholders": {
       "statement_name": {
         "content": "$1",
@@ -2980,19 +2986,19 @@
     }
   },
   "gbStorageAdd": {
-    "message": "GB of storage to add"
+    "message": "Dung lượng lưu trữ (GB) cần thêm"
   },
   "gbStorageRemove": {
-    "message": "GB of storage to remove"
+    "message": "Dung lượng lưu trữ (GB) cần xóa"
   },
   "storageAddNote": {
-    "message": "Adding storage will result in adjustments to your billing totals and immediately charge your payment method on file. The first charge will be prorated for the remainder of the current billing cycle."
+    "message": "Thêm dung lượng lưu trữ sẽ điều chỉnh tổng số tiền thanh toán của bạn và ngay lập tức tính phí vào phương thức thanh toán đã đăng ký. Lần tính phí đầu tiên sẽ được tính theo tỷ lệ cho phần còn lại của chu kỳ thanh toán hiện tại."
   },
   "storageRemoveNote": {
-    "message": "Removing storage will result in adjustments to your billing totals that will be prorated as credits toward your next billing charge."
+    "message": "Việc hủy bỏ dịch vụ lưu trữ sẽ điều chỉnh tổng số tiền thanh toán của bạn, và số tiền này sẽ được tính theo tỷ lệ tương ứng và được ghi nhận dưới dạng tín dụng cho hóa đơn thanh toán tiếp theo của bạn."
   },
   "adjustedStorage": {
-    "message": "Adjusted $AMOUNT$ GB of storage.",
+    "message": "Đã điều chỉnh $AMOUNT$ GB dung lượng lưu trữ.",
     "placeholders": {
       "amount": {
         "content": "$1",
@@ -3001,22 +3007,22 @@
     }
   },
   "contactSupport": {
-    "message": "Contact customer support"
+    "message": "Liên hệ Hỗ trợ khách hàng"
   },
   "contactSupportShort": {
-    "message": "Contact Support"
+    "message": "Liên hệ hỗ trợ"
   },
   "updatedPaymentMethod": {
-    "message": "Updated payment method."
+    "message": "Cập nhật phương thức thanh toán."
   },
   "purchasePremium": {
-    "message": "Purchase Premium"
+    "message": "Mua bản Cao Cấp"
   },
   "licenseFile": {
-    "message": "License file"
+    "message": "Tệp bản quyền"
   },
   "licenseFileDesc": {
-    "message": "Your license file will be named something like $FILE_NAME$",
+    "message": "Tệp giấy phép của bạn sẽ có tên tương tự như $FILE_NAME$",
     "placeholders": {
       "file_name": {
         "content": "$1",
@@ -3025,31 +3031,31 @@
     }
   },
   "uploadLicenseFilePremium": {
-    "message": "To upgrade your account to a Premium membership you need to upload a valid license file."
+    "message": "Để nâng cấp tài khoản của bạn lên gói thành viên Premium, bạn cần tải lên tệp giấy phép hợp lệ."
   },
   "uploadLicenseFileOrg": {
-    "message": "To create an on-premises hosted organization you need to upload a valid license file."
+    "message": "Để tạo một tổ chức được lưu trữ tại chỗ, bạn cần tải lên tệp giấy phép hợp lệ."
   },
   "accountEmailMustBeVerified": {
-    "message": "Your account's email address must be verified."
+    "message": "Địa chỉ email của tài khoản của bạn phải được xác minh."
   },
   "newOrganizationDesc": {
-    "message": "Organizations allow you to share parts of your vault with others as well as manage related users for a specific entity such as a family, small team, or large company."
+    "message": "Các tổ chức cho phép bạn chia sẻ một phần kho lưu trữ của mình với người khác cũng như quản lý người dùng liên quan cho một thực thể cụ thể như gia đình, nhóm nhỏ hoặc công ty lớn."
   },
   "generalInformation": {
-    "message": "General information"
+    "message": "Thông tin chung"
   },
   "organizationName": {
-    "message": "Organization name"
+    "message": "Tên tổ chức"
   },
   "accountOwnedBusiness": {
-    "message": "This account is owned by a business."
+    "message": "Tài khoản này thuộc sở hữu của một doanh nghiệp."
   },
   "billingEmail": {
-    "message": "Billing email"
+    "message": "Email thanh toán"
   },
   "businessName": {
-    "message": "Business name"
+    "message": "Tên doanh nghiệp"
   },
   "chooseYourPlan": {
     "message": "Choose your plan"
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "Default collection"
   },
-  "myItems": {
-    "message": "My Items"
-  },
   "getHelp": {
     "message": "Nhận trợ giúp"
   },
@@ -3303,10 +3306,10 @@
     "message": "Edit policy"
   },
   "groups": {
-    "message": "Groups"
+    "message": "Nhóm"
   },
   "newGroup": {
-    "message": "New group"
+    "message": "Nhóm mới"
   },
   "addGroup": {
     "message": "Thêm nhóm"
@@ -3318,7 +3321,7 @@
     "message": "Bạn có chắc muốn xóa nhóm này?"
   },
   "deleteMultipleGroupsConfirmation": {
-    "message": "Are you sure you want to delete the following $QUANTITY$ group(s)?",
+    "message": "Bạn có chắc chắn muốn xóa $QUANTITY$ nhóm sau đây không?",
     "placeholders": {
       "quantity": {
         "content": "$1",
@@ -3327,58 +3330,58 @@
     }
   },
   "removeUserConfirmation": {
-    "message": "Are you sure you want to remove this user?"
+    "message": "Bạn có chắc bạn muốn xóa người dùng này?"
   },
   "removeOrgUserConfirmation": {
-    "message": "When a member is removed, they no longer have access to organization data and this action is irreversible. To add the member back to the organization, they must be invited and onboarded again."
+    "message": "Khi một thành viên bị loại bỏ, họ sẽ không còn quyền truy cập vào dữ liệu của tổ chức và hành động này là không thể đảo ngược. Để thêm thành viên trở lại tổ chức, họ phải được mời và đăng ký lại."
   },
   "revokeUserConfirmation": {
-    "message": "When a member is revoked, they no longer have access to organization data. To quickly restore member access, go to the Revoked tab."
+    "message": "Khi một thành viên bị thu hồi quyền truy cập, họ sẽ không còn quyền truy cập vào dữ liệu của tổ chức. Để khôi phục quyền truy cập cho thành viên một cách nhanh chóng, hãy truy cập vào tab Thu hồi."
   },
   "removeUserConfirmationKeyConnector": {
-    "message": "Warning! This user requires Key Connector to manage their encryption. Removing this user from your organization will permanently deactivate their account. This action cannot be undone. Do you want to proceed?"
+    "message": "Cảnh báo! Người dùng này cần Key Connector để quản lý mã hóa của họ. Việc xóa người dùng này khỏi tổ chức của bạn sẽ vô hiệu hóa vĩnh viễn tài khoản của họ. Hành động này không thể hoàn tác. Bạn có muốn tiếp tục không?"
   },
   "externalId": {
     "message": "External ID"
   },
   "externalIdDesc": {
-    "message": "External ID is an unencrypted reference used by the Bitwarden Directory Connector and API."
+    "message": "External ID là một tham chiếu không được mã hóa được sử dụng bởi Bitwarden Directory Connector và API."
   },
   "ssoExternalId": {
     "message": "SSO External ID"
   },
   "ssoExternalIdDesc": {
-    "message": "SSO External ID is an unencrypted reference between Bitwarden and your configured SSO provider."
+    "message": "SSO External ID là một tham chiếu không được mã hóa giữa Bitwarden và nhà cung cấp SSO đã được cấu hình của bạn."
   },
   "nestCollectionUnder": {
     "message": "Nest collection under"
   },
   "accessControl": {
-    "message": "Access control"
+    "message": "Kiểm soát truy cập"
   },
   "readOnly": {
-    "message": "Read only"
+    "message": "Chỉ đọc"
   },
   "newCollection": {
-    "message": "New collection"
+    "message": "Bộ sưu tập mới"
   },
   "addCollection": {
-    "message": "Add collection"
+    "message": "Thêm bộ sưu tập"
   },
   "editCollection": {
-    "message": "Edit collection"
+    "message": "Chỉnh sửa bộ sư tập"
   },
   "collectionInfo": {
-    "message": "Collection info"
+    "message": "Thông tin bộ sưu tập"
   },
   "deleteCollectionConfirmation": {
-    "message": "Are you sure you want to delete this collection?"
+    "message": "Bạn có chắc chắn muốn xóa bộ sưu tập này không?"
   },
   "editMember": {
-    "message": "Edit member"
+    "message": "Sửa thành viên"
   },
   "fieldOnTabRequiresAttention": {
-    "message": "A field on the '$TAB$' tab requires your attention.",
+    "message": "Một trường trên tab '$TAB$' cần sự chú ý của bạn.",
     "placeholders": {
       "tab": {
         "content": "$1",
@@ -3387,10 +3390,10 @@
     }
   },
   "inviteUserDesc": {
-    "message": "Invite a new user to your organization by entering their Bitwarden account email address below. If they do not have a Bitwarden account already, they will be prompted to create a new account."
+    "message": "Mời một người dùng mới tham gia tổ chức của bạn bằng cách nhập địa chỉ email tài khoản Bitwarden của họ vào ô bên dưới. Nếu họ chưa có tài khoản Bitwarden, họ sẽ được yêu cầu tạo tài khoản mới."
   },
   "inviteMultipleEmailDesc": {
-    "message": "Enter up to $COUNT$ emails by separating with a comma.",
+    "message": "Nhập tối đa $COUNT$ địa chỉ email bằng cách phân tách bằng dấu phẩy.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -3399,91 +3402,91 @@
     }
   },
   "inviteSingleEmailDesc": {
-    "message": "You have 1 invite remaining."
+    "message": "Bạn còn 1 lượt mời còn lại."
   },
   "inviteZeroEmailDesc": {
-    "message": "You have 0 invites remaining."
+    "message": "Bạn còn 0 lượt mời."
   },
   "userUsingTwoStep": {
-    "message": "This user is using two-step login to protect their account."
+    "message": "Người dùng này đang sử dụng tính năng đăng nhập hai bước để bảo vệ tài khoản của mình."
   },
   "search": {
     "message": "Tìm kiếm"
   },
   "invited": {
-    "message": "Invited"
+    "message": "Đã mời"
   },
   "confirmed": {
-    "message": "Confirmed"
+    "message": "Đã xác nhận"
   },
   "clientOwnerEmail": {
-    "message": "Client owner email"
+    "message": "Email của chủ sở hữu tài khoản"
   },
   "owner": {
-    "message": "Owner"
+    "message": "Chủ sở hữu"
   },
   "ownerDesc": {
-    "message": "Manage all aspects of your organization, including billing and subscriptions"
+    "message": "Quản lý tất cả các khía cạnh của tổ chức của bạn, bao gồm thanh toán và đăng ký"
   },
   "clientOwnerDesc": {
-    "message": "This user should be independent of the Provider. If the Provider is disassociated with the organization, this user will maintain ownership of the organization."
+    "message": "Người dùng này nên độc lập với Nhà cung cấp. Nếu Nhà cung cấp không còn liên kết với tổ chức, người dùng này sẽ tiếp tục sở hữu tổ chức."
   },
   "admin": {
-    "message": "Admin"
+    "message": "Quản trị"
   },
   "adminDesc": {
-    "message": "Manage organization access, all collections, members, reporting, and security settings"
+    "message": "Quản lý quyền truy cập của tổ chức, tất cả bộ sưu tập, thành viên, báo cáo và cài đặt bảo mật"
   },
   "user": {
-    "message": "User"
+    "message": "Người dùng"
   },
   "userDesc": {
-    "message": "Access and add items to assigned collections"
+    "message": "Truy cập và thêm các mục vào các bộ sưu tập được chỉ định"
   },
   "all": {
-    "message": "All"
+    "message": "Tất cả"
   },
   "addAccess": {
-    "message": "Add Access"
+    "message": "Thêm quyền truy cập"
   },
   "addAccessFilter": {
-    "message": "Add Access Filter"
+    "message": "Thêm bộ lọc truy cập"
   },
   "refresh": {
-    "message": "Refresh"
+    "message": "Làm mới"
   },
   "timestamp": {
-    "message": "Timestamp"
+    "message": "Mốc thời gian"
   },
   "event": {
-    "message": "Event"
+    "message": "Sự kiện"
   },
   "unknown": {
-    "message": "Unknown"
+    "message": "Không xác định"
   },
   "loadMore": {
-    "message": "Load more"
+    "message": "Tải thêm"
   },
   "mobile": {
-    "message": "Mobile",
+    "message": "Di Động",
     "description": "Mobile app"
   },
   "extension": {
-    "message": "Extension",
+    "message": "Tiện ích mở rộng",
     "description": "Browser extension/addon"
   },
   "desktop": {
-    "message": "Desktop",
+    "message": "Máy tính",
     "description": "Desktop app"
   },
   "webVault": {
-    "message": "Web vault"
+    "message": "Kho web"
   },
   "cli": {
     "message": "CLI"
   },
   "bitWebVault": {
-    "message": "Bitwarden Web vault"
+    "message": "Trang web kho lưu trữ Bitwarden"
   },
   "bitSecretsManager": {
     "message": "Bitwarden Secrets Manager"
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "Update master password"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "Your master password was recently changed by an administrator in your organization. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "Request admin approval"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "trustedDeviceEncryption": {
     "message": "Trusted device encryption"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Billing address required to add credit.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/zh_CN/messages.json b/apps/web/src/locales/zh_CN/messages.json
index f70a7f460fb..7dae224a1b8 100644
--- a/apps/web/src/locales/zh_CN/messages.json
+++ b/apps/web/src/locales/zh_CN/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "我"
   },
+  "myItems": {
+    "message": "我的项目"
+  },
   "myVault": {
     "message": "我的密码库"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "继续操作将使您退出当前会话，并要求您重新登录。其他设备上的活动会话可能会继续保持活动状态长达一小时。"
   },
+  "changePasswordWarning": {
+    "message": "更改密码后，您需要使用新密码登录。 在其他设备上的活动会话将在一小时内注销。"
+  },
   "emailChanged": {
     "message": "电子邮箱已保存"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "默认集合"
   },
-  "myItems": {
-    "message": "我的项目"
-  },
   "getHelp": {
     "message": "获取帮助"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "更新主密码"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "更改您的主密码以完成账户恢复。"
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "您的主密码不符合本组织的要求。更改您的主密码以继续。"
+  },
   "updateMasterPasswordWarning": {
     "message": "您的主密码最近被您组织的管理员更改过。要访问密码库，必须立即更新您的主密码。继续操作将使您退出当前会话，并要求您重新登录。其他设备上的活动会话可能会继续保持活动状态长达一小时。"
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "请求管理员批准"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "trustedDeviceEncryption": {
     "message": "受信任设备加密"
   },
@@ -8920,7 +8935,7 @@
     "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
   },
   "uriMatchWarningDialogLink": {
-    "message": "More about match detection",
+    "message": "更多关于匹配检测",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
   "maintainYourSubscription": {
@@ -10744,16 +10759,16 @@
     "message": "Open Bitwarden extension"
   },
   "gettingStartedWithBitwardenPart1": {
-    "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "message": "有关开始使用 Bitwarden 的提示，请访问",
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "添加信用额度需要计费地址。",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }
diff --git a/apps/web/src/locales/zh_TW/messages.json b/apps/web/src/locales/zh_TW/messages.json
index d9671873aa0..c029e1e0e68 100644
--- a/apps/web/src/locales/zh_TW/messages.json
+++ b/apps/web/src/locales/zh_TW/messages.json
@@ -864,6 +864,9 @@
   "me": {
     "message": "我"
   },
+  "myItems": {
+    "message": "My Items"
+  },
   "myVault": {
     "message": "我的密碼庫"
   },
@@ -1781,6 +1784,9 @@
   "loggedOutWarning": {
     "message": "接下來會登出目前工作階段，並要求您重新登入帳戶。其他裝置上的工作階段最多會保持一個小時。"
   },
+  "changePasswordWarning": {
+    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+  },
   "emailChanged": {
     "message": "電子郵件已儲存"
   },
@@ -3275,9 +3281,6 @@
   "defaultCollection": {
     "message": "預設集合"
   },
-  "myItems": {
-    "message": "My Items"
-  },
   "getHelp": {
     "message": "尋求幫助"
   },
@@ -6073,6 +6076,12 @@
   "updateMasterPassword": {
     "message": "更新主密碼"
   },
+  "accountRecoveryUpdateMasterPasswordSubtitle": {
+    "message": "Change your master password to complete account recovery."
+  },
+  "updateMasterPasswordSubtitle": {
+    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+  },
   "updateMasterPasswordWarning": {
     "message": "您的主密碼最近被您的組織管理者變更過。您必須現在更新主密碼才能存取密碼庫。繼續操作會登出您目前的工作階段，並要求您重新登入帳戶。其他裝置上的活動工作階段最多會保持一個小時。"
   },
@@ -8453,6 +8462,12 @@
   "requestAdminApproval": {
     "message": "要求管理員核准"
   },
+  "unableToCompleteLogin": {
+    "message": "Unable to complete login"
+  },
+  "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
+    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+  },
   "trustedDeviceEncryption": {
     "message": "可信任的裝置加密"
   },
@@ -10745,15 +10760,15 @@
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "For tips on getting started with Bitwarden visit the",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
     "message": "Learning Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
     "message": "Help Center",
-    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'."
+    "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
     "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
@@ -10783,5 +10798,53 @@
   "billingAddressRequiredToAddCredit": {
     "message": "Billing address required to add credit.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
+  },
+  "billingAddress": {
+    "message": "Billing address"
+  },
+  "addBillingAddress": {
+    "message": "Add billing address"
+  },
+  "editBillingAddress": {
+    "message": "Edit billing address"
+  },
+  "noBillingAddress": {
+    "message": "No address on file."
+  },
+  "billingAddressUpdated": {
+    "message": "Your billing address has been updated."
+  },
+  "paymentDetails": {
+    "message": "Payment details"
+  },
+  "paymentMethodUpdated": {
+    "message": "Your payment method has been updated."
+  },
+  "bankAccountVerified": {
+    "message": "Your bank account has been verified."
+  },
+  "availableCreditAppliedToInvoice": {
+    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+  },
+  "mustBePositiveNumber": {
+    "message": "Must be a positive number"
+  },
+  "cardSecurityCode": {
+    "message": "Card security code"
+  },
+  "cardSecurityCodeDescription": {
+    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+  },
+  "verifyBankAccountWarning": {
+    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+  },
+  "taxId": {
+    "message": "Tax ID: $TAX_ID$",
+    "placeholders": {
+      "tax_id": {
+        "content": "$1",
+        "example": "12-3456789"
+      }
+    }
   }
 }

From 00267939c3ada7fcf240d4faf5cbe90543654170 Mon Sep 17 00:00:00 2001
From: "bw-ghapp[bot]" <178206702+bw-ghapp[bot]@users.noreply.github.com>
Date: Fri, 11 Jul 2025 13:54:03 +0000
Subject: [PATCH 111/239] Autosync the updated translations (#15580)

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>
---
 apps/browser/src/_locales/sv/messages.json | 2 +-
 apps/browser/src/_locales/vi/messages.json | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/apps/browser/src/_locales/sv/messages.json b/apps/browser/src/_locales/sv/messages.json
index 3fdf1752aa1..315cafd7ed7 100644
--- a/apps/browser/src/_locales/sv/messages.json
+++ b/apps/browser/src/_locales/sv/messages.json
@@ -3342,7 +3342,7 @@
     }
   },
   "forwarderUnknownForwarder": {
-    "message": "Okänd vidarebefordrare: '$SERVICENAMN$'.",
+    "message": "Okänd vidarebefordrare: '$SERVICENAME$'.",
     "description": "Displayed when the forwarding service is not supported.",
     "placeholders": {
       "servicename": {
diff --git a/apps/browser/src/_locales/vi/messages.json b/apps/browser/src/_locales/vi/messages.json
index 5dbd200a0a0..8f3df515d40 100644
--- a/apps/browser/src/_locales/vi/messages.json
+++ b/apps/browser/src/_locales/vi/messages.json
@@ -1523,7 +1523,7 @@
     "message": "Bạn đã mất quyền truy cập vào tất cả các dịch vụ xác thực 2 lớp? Sử dụng mã khôi phục để tắt tất cả các phương pháp xác thực hai lớp trong tài khoản của bạn."
   },
   "recoveryCodeTitle": {
-    "message": "Mã phục hồi"
+    "message": "Mã khôi phục"
   },
   "authenticatorAppTitle": {
     "message": "Ứng dụng xác thực"

From a61d7fd4daff99b9e6f5d25a92ad61c7ef94cf08 Mon Sep 17 00:00:00 2001
From: Nick Krantz <125900171+nick-livefront@users.noreply.github.com>
Date: Fri, 11 Jul 2025 09:31:37 -0500
Subject: [PATCH 112/239] [PM-23672] Switching Custom Fields - Desktop (#15563)

---
 .../custom-fields-v2.component.spec.ts        | 64 +++++++++++++++++++
 .../custom-fields-v2.component.ts             | 13 ++--
 2 files changed, 71 insertions(+), 6 deletions(-)
 create mode 100644 libs/vault/src/cipher-view/custom-fields/custom-fields-v2.component.spec.ts

diff --git a/libs/vault/src/cipher-view/custom-fields/custom-fields-v2.component.spec.ts b/libs/vault/src/cipher-view/custom-fields/custom-fields-v2.component.spec.ts
new file mode 100644
index 00000000000..510a5a86179
--- /dev/null
+++ b/libs/vault/src/cipher-view/custom-fields/custom-fields-v2.component.spec.ts
@@ -0,0 +1,64 @@
+import { SimpleChanges } from "@angular/core";
+import { ComponentFixture, TestBed } from "@angular/core/testing";
+import { mock } from "jest-mock-extended";
+
+import { EventCollectionService } from "@bitwarden/common/abstractions/event/event-collection.service";
+import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+import { CipherType } from "@bitwarden/common/vault/enums";
+import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
+import { IdentityView } from "@bitwarden/common/vault/models/view/identity.view";
+import { LoginView } from "@bitwarden/common/vault/models/view/login.view";
+
+import { CustomFieldV2Component } from "./custom-fields-v2.component";
+
+describe("CustomFieldV2Component", () => {
+  let component: CustomFieldV2Component;
+  let fixture: ComponentFixture<CustomFieldV2Component>;
+
+  const currentCipher = new CipherView();
+  currentCipher.type = CipherType.Login;
+
+  beforeEach(async () => {
+    await TestBed.configureTestingModule({
+      imports: [],
+      providers: [
+        { provide: I18nService, useValue: { t: (key: string) => key } },
+        { provide: EventCollectionService, useValue: mock<EventCollectionService>() },
+      ],
+    }).compileComponents();
+
+    fixture = TestBed.createComponent(CustomFieldV2Component);
+    component = fixture.componentInstance;
+    component.cipher = currentCipher;
+    fixture.detectChanges();
+  });
+
+  it("updates fieldOptions on cipher change", () => {
+    component.ngOnChanges({
+      cipher: {
+        currentValue: currentCipher,
+        previousValue: null,
+        firstChange: true,
+        isFirstChange: () => true,
+      },
+    } as SimpleChanges);
+
+    expect(component.fieldOptions).toEqual(LoginView.prototype.linkedFieldOptions);
+
+    const newCipher = new CipherView();
+    newCipher.type = CipherType.Identity;
+
+    component.cipher = newCipher;
+    component.ngOnChanges({
+      cipher: {
+        currentValue: newCipher,
+        previousValue: currentCipher,
+        firstChange: false,
+        isFirstChange: () => false,
+      },
+    } as SimpleChanges);
+    fixture.detectChanges();
+
+    expect(component.fieldOptions).toEqual(IdentityView.prototype.linkedFieldOptions);
+  });
+});
diff --git a/libs/vault/src/cipher-view/custom-fields/custom-fields-v2.component.ts b/libs/vault/src/cipher-view/custom-fields/custom-fields-v2.component.ts
index 9a6f93026e5..2fc35574ba5 100644
--- a/libs/vault/src/cipher-view/custom-fields/custom-fields-v2.component.ts
+++ b/libs/vault/src/cipher-view/custom-fields/custom-fields-v2.component.ts
@@ -1,5 +1,3 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import { CommonModule } from "@angular/common";
 import { Component, Input, OnChanges, OnInit, SimpleChanges } from "@angular/core";
 
@@ -8,6 +6,7 @@ import { EventCollectionService } from "@bitwarden/common/abstractions/event/eve
 import { EventType } from "@bitwarden/common/enums";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { CipherType, FieldType, LinkedIdType } from "@bitwarden/common/vault/enums";
+import { LinkedMetadata } from "@bitwarden/common/vault/linked-field-option.decorator";
 import { CardView } from "@bitwarden/common/vault/models/view/card.view";
 import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
 import { IdentityView } from "@bitwarden/common/vault/models/view/identity.view";
@@ -43,9 +42,9 @@ import { VaultAutosizeReadOnlyTextArea } from "../../directives/readonly-textare
   ],
 })
 export class CustomFieldV2Component implements OnInit, OnChanges {
-  @Input() cipher: CipherView;
+  @Input({ required: true }) cipher!: CipherView;
   fieldType = FieldType;
-  fieldOptions: any;
+  fieldOptions: Map<number, LinkedMetadata> | null = null;
 
   /** Indexes of hidden fields that are revealed */
   revealedHiddenFields: number[] = [];
@@ -67,12 +66,14 @@ export class CustomFieldV2Component implements OnInit, OnChanges {
   ngOnChanges(changes: SimpleChanges): void {
     if (changes["cipher"]) {
       this.revealedHiddenFields = [];
+      this.fieldOptions = this.getLinkedFieldsOptionsForCipher();
     }
   }
 
   getLinkedType(linkedId: LinkedIdType) {
-    const linkedType = this.fieldOptions.get(linkedId);
-    return this.i18nService.t(linkedType.i18nKey);
+    const linkedType = this.fieldOptions?.get(linkedId);
+
+    return linkedType ? this.i18nService.t(linkedType.i18nKey) : null;
   }
 
   get canViewPassword() {

From 659427ca3a2fe64543417d63d5d19ae1c2925021 Mon Sep 17 00:00:00 2001
From: cd-bitwarden <106776772+cd-bitwarden@users.noreply.github.com>
Date: Fri, 11 Jul 2025 11:25:49 -0400
Subject: [PATCH 113/239] [SM-1476] config tab (#15133)

* Updating config component to use the new environmentService.environment$

* Updating config.component.ts to use the environment$ observable

* changes to improve the environment logic update
---
 .../config/config.component.ts                | 31 +++++++++++--------
 1 file changed, 18 insertions(+), 13 deletions(-)

diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/service-accounts/config/config.component.ts b/bitwarden_license/bit-web/src/app/secrets-manager/service-accounts/config/config.component.ts
index e796c4758ea..f85cde90306 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/service-accounts/config/config.component.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/service-accounts/config/config.component.ts
@@ -1,10 +1,13 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
 import { Component, OnDestroy, OnInit } from "@angular/core";
-import { ActivatedRoute, Params } from "@angular/router";
-import { Subject, concatMap, takeUntil } from "rxjs";
+import { ActivatedRoute } from "@angular/router";
+import { Subject, combineLatest, from, switchMap, takeUntil } from "rxjs";
 
-import { EnvironmentService } from "@bitwarden/common/platform/abstractions/environment.service";
+import {
+  Environment,
+  EnvironmentService,
+} from "@bitwarden/common/platform/abstractions/environment.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
 import { ToastService } from "@bitwarden/components";
@@ -48,11 +51,11 @@ export class ServiceAccountConfigComponent implements OnInit, OnDestroy {
   ) {}
 
   async ngOnInit() {
-    this.route.params
+    combineLatest([this.route.params, this.environmentService.environment$])
       .pipe(
-        concatMap(async (params: Params) => {
-          return await this.load(params.organizationId, params.serviceAccountId);
-        }),
+        switchMap(([params, env]) =>
+          from(this.load(env, params.organizationId, params.serviceAccountId)),
+        ),
         takeUntil(this.destroy$),
       )
       .subscribe((smConfig) => {
@@ -67,9 +70,11 @@ export class ServiceAccountConfigComponent implements OnInit, OnDestroy {
       });
   }
 
-  async load(organizationId: string, serviceAccountId: string): Promise<ServiceAccountConfig> {
-    const environment = await this.environmentService.getEnvironment();
-
+  private async load(
+    environment: Environment,
+    organizationId: string,
+    serviceAccountId: string,
+  ): Promise<ServiceAccountConfig> {
     const allProjects = await this.projectService.getProjects(organizationId);
     const policies = await this.accessPolicyService.getServiceAccountGrantedPolicies(
       organizationId,
@@ -88,11 +93,11 @@ export class ServiceAccountConfigComponent implements OnInit, OnDestroy {
     });
 
     return {
-      organizationId: organizationId,
-      serviceAccountId: serviceAccountId,
+      organizationId,
+      serviceAccountId,
       identityUrl: environment.getIdentityUrl(),
       apiUrl: environment.getApiUrl(),
-      projects: projects,
+      projects,
     } as ServiceAccountConfig;
   }
 

From a9c9312bdd21c8fe945ef396457fff0d7176d602 Mon Sep 17 00:00:00 2001
From: "bw-ghapp[bot]" <178206702+bw-ghapp[bot]@users.noreply.github.com>
Date: Fri, 11 Jul 2025 17:54:20 +0200
Subject: [PATCH 114/239] Autosync the updated translations (#15581)

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>
---
 apps/desktop/src/locales/vi/messages.json | 80 +++++++++++------------
 1 file changed, 40 insertions(+), 40 deletions(-)

diff --git a/apps/desktop/src/locales/vi/messages.json b/apps/desktop/src/locales/vi/messages.json
index 1b8e3eae3b0..c1c6f4dace8 100644
--- a/apps/desktop/src/locales/vi/messages.json
+++ b/apps/desktop/src/locales/vi/messages.json
@@ -36,13 +36,13 @@
     "message": "Thư mục"
   },
   "collections": {
-    "message": "Các Bộ Sưu Tập"
+    "message": "Các bộ sưu tập"
   },
   "searchVault": {
     "message": "Tìm kiếm trong Kho"
   },
   "addItem": {
-    "message": "Thêm"
+    "message": "Thêm mục"
   },
   "shared": {
     "message": "Đã chia sẻ"
@@ -73,10 +73,10 @@
     "message": "Chọn một tổ chức mà bạn muốn chuyển mục này đến. Việc chuyển đến một tổ chức sẽ chuyển quyền sở hữu mục này cho tổ chức đó. Bạn sẽ không còn là chủ sở hữu trực tiếp của mục này khi đã chuyển."
   },
   "attachments": {
-    "message": "Đính kèm"
+    "message": "Tệp đính kèm"
   },
   "viewItem": {
-    "message": "Chi tiết"
+    "message": "Xem mục"
   },
   "name": {
     "message": "Tên"
@@ -85,7 +85,7 @@
     "message": "Đường dẫn (URI)"
   },
   "uriPosition": {
-    "message": "URL $POSITION$",
+    "message": "Đường dẫn $POSITION$",
     "description": "A listing of URIs. Ex: URI 1, URI 2, URI 3, etc.",
     "placeholders": {
       "position": {
@@ -104,10 +104,10 @@
     "message": "Mật khẩu"
   },
   "passphrase": {
-    "message": "Cụm từ mật khẩu"
+    "message": "Cụm mật khẩu"
   },
   "editItem": {
-    "message": "Chỉnh sửa"
+    "message": "Chỉnh sửa mục"
   },
   "emailAddress": {
     "message": "Địa chỉ email"
@@ -116,7 +116,7 @@
     "message": "Mã xác thực (TOTP)"
   },
   "website": {
-    "message": "Địa chỉ"
+    "message": "Trang web"
   },
   "notes": {
     "message": "Ghi chú"
@@ -132,10 +132,10 @@
     "description": "Copy value to clipboard"
   },
   "minimizeOnCopyToClipboard": {
-    "message": "Thu nhỏ sau khi sao chép vào khay nhớ tạm"
+    "message": "Thu nhỏ sau khi sao chép vào bộ nhớ tạm"
   },
   "minimizeOnCopyToClipboardDesc": {
-    "message": "Thu nhỏ ứng dụng sau khi sao chép thông tin của một mục vào khay nhớ tạm."
+    "message": "Thu nhỏ ứng dụng sau khi sao chép thông tin của một mục vào bộ nhớ tạm."
   },
   "toggleVisibility": {
     "message": "Bật/tắt khả năng hiển thị"
@@ -160,7 +160,7 @@
     "message": "Mã bảo mật"
   },
   "identityName": {
-    "message": "Tên danh tính"
+    "message": "Tên định danh"
   },
   "company": {
     "message": "Công ty"
@@ -172,7 +172,7 @@
     "message": "Số hộ chiếu"
   },
   "licenseNumber": {
-    "message": "Số giấy phép"
+    "message": "Số giấy phép lái xe"
   },
   "email": {
     "message": "Email"
@@ -184,16 +184,16 @@
     "message": "Địa chỉ"
   },
   "sshPrivateKey": {
-    "message": "Khóa riêng SSH"
+    "message": "Khóa riêng tư"
   },
   "sshPublicKey": {
-    "message": "Khóa công khai SSH"
+    "message": "Khóa công khai"
   },
   "sshFingerprint": {
-    "message": "Mã vân tay SSH"
+    "message": "Vân tay"
   },
   "sshKeyAlgorithm": {
-    "message": "Loại thuật toán"
+    "message": "Kiểu khoá"
   },
   "sshKeyAlgorithmED25519": {
     "message": "ED25519"
@@ -211,10 +211,10 @@
     "message": "Khóa SSH mới đã được tạo"
   },
   "sshKeyWrongPassword": {
-    "message": "Mật khẩu bạn đã nhập không chính xác."
+    "message": "Mật khẩu bạn đã nhập không đúng."
   },
   "importSshKey": {
-    "message": "Nhập khóa"
+    "message": "Nhập"
   },
   "confirmSshKeyPassword": {
     "message": "Xác nhận mật khẩu"
@@ -229,7 +229,7 @@
     "message": "Vui lòng mở khóa kho lưu trữ của bạn để phê duyệt yêu cầu khóa SSH."
   },
   "sshAgentUnlockTimeout": {
-    "message": "Hết thời gian chờ yêu cầu khóa SSH."
+    "message": "Yêu cầu khóa SSH đã hết thời gian."
   },
   "enableSshAgent": {
     "message": "Bật SSH agent"
@@ -446,13 +446,13 @@
     "message": "Chỉnh sửa trường"
   },
   "permanentlyDeleteAttachmentConfirmation": {
-    "message": "Bạn có chắc muốn xóa vĩnh viễn tệp đính kèm này không?"
+    "message": "Bạn có chắc chắn muốn xóa vĩnh viễn tệp đính kèm này không?"
   },
   "fieldType": {
     "message": "Loại trường"
   },
   "fieldLabel": {
-    "message": "Nhãn trường"
+    "message": "Tiêu đề trường"
   },
   "add": {
     "message": "Thêm"
@@ -461,13 +461,13 @@
     "message": "Sử dụng các trường văn bản cho dữ liệu như câu hỏi bảo mật"
   },
   "hiddenHelpText": {
-    "message": "Sử dụng trường ẩn cho dữ liệu nhạy cảm như mật khẩu"
+    "message": "Sử dụng các trường ẩn để lưu dữ liệu nhạy cảm như mật khẩu"
   },
   "checkBoxHelpText": {
     "message": "Dùng các ô tích chọn nếu bạn muốn tự động điền vào ô tích chọn của biểu mẫu, chẳng hạn như ghi nhớ email"
   },
   "linkedHelpText": {
-    "message": "Sử dụng trường liên kết khi bạn gặp sự cố tự động điền trên một trang web cụ thể."
+    "message": "Sử dụng trường liên kết khi bạn gặp vấn đề với tính năng tự động điền trên một trang web cụ thể."
   },
   "linkedLabelHelpText": {
     "message": "Nhập html id, name, aria-label hoặc placeholder của các trường."
@@ -526,19 +526,19 @@
     "message": "Xoá tệp đính kèm"
   },
   "deleteItemConfirmation": {
-    "message": "Bạn có chắc muốn cho vào thùng rác?"
+    "message": "Bạn có chắc muốn cho nó vào thùng rác?"
   },
   "deletedItem": {
     "message": "Mục đã được cho vào thùng rác"
   },
   "overwritePasswordConfirmation": {
-    "message": "Bạn có chắc chắn muốn ghi đè mật khẩu hiện tại không?"
+    "message": "Bạn có chắc chắn muốn ghi đè lên mật khẩu hiện tại không?"
   },
   "overwriteUsername": {
     "message": "Ghi đè tên người dùng"
   },
   "overwriteUsernameConfirmation": {
-    "message": "Bạn có chắc muốn ghi đè lên tên người dùng hiện tại không?"
+    "message": "Bạn có chắc chắn muốn ghi đè lên tên người dùng hiện tại không?"
   },
   "noneFolder": {
     "message": "Chưa phân loại",
@@ -554,7 +554,7 @@
     "message": "Tạo lại mật khẩu"
   },
   "copyPassword": {
-    "message": "Sao chép Mật khẩu"
+    "message": "Sao chép mật khẩu"
   },
   "regenerateSshKey": {
     "message": "Tạo lại khóa SSH"
@@ -570,7 +570,7 @@
     "message": "Sao chép đường dẫn"
   },
   "copyVerificationCodeTotp": {
-    "message": "Sao chép Mã xác thực (TOTP)"
+    "message": "Sao chép mã xác thực (TOTP)"
   },
   "length": {
     "message": "Độ dài"
@@ -874,10 +874,10 @@
     "message": "Bạn đã đăng nhập thành công!"
   },
   "masterPassSent": {
-    "message": "Chúng tôi đã gửi cho bạn email có chứa gợi ý mật khẩu chính của bạn."
+    "message": "Chúng tôi đã gửi cho bạn một email chứa gợi ý mật khẩu chính của bạn."
   },
   "unexpectedError": {
-    "message": "Một lỗi bất ngờ đã xảy ra."
+    "message": "Đã xảy ra lỗi không mong muốn."
   },
   "itemInformation": {
     "message": "Thông tin mục"
@@ -916,7 +916,7 @@
     "message": "Tiếp tục"
   },
   "verificationCodeEmailSent": {
-    "message": "Email xác minh được gửi tới $EMAIL$.",
+    "message": "Email xác minh đã được gửi tới $EMAIL$.",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -935,33 +935,33 @@
     "message": "Sử dụng mã khôi phục của bạn"
   },
   "insertU2f": {
-    "message": "Lắp khóa bảo mật vào cổng USB của máy tính. Nếu nó có một nút, nhấn vào nó."
+    "message": "Cắm khóa bảo mật vào cổng USB của máy tính. Nếu có nút bấm, hãy nhấn vào nó."
   },
   "recoveryCodeDesc": {
-    "message": "Bạn mất quyền truy cập vào tất cả các dịch vụ xác thực hai bước? Sử dụng mã phục hồi của bạn để vô hiệu hóa tất cả các dịch vụ xác thực hai bước trong tài khoản của bạn."
+    "message": "Bạn đã mất quyền truy cập vào tất cả các dịch vụ xác thực 2 lớp? Sử dụng mã khôi phục để tắt tất cả các phương pháp xác thực hai lớp trong tài khoản của bạn."
   },
   "recoveryCodeTitle": {
-    "message": "Mã phục hồi"
+    "message": "Mã khôi phục"
   },
   "authenticatorAppTitle": {
-    "message": "Ứng dụng Authenticator"
+    "message": "Ứng dụng xác thực"
   },
   "authenticatorAppDescV2": {
     "message": "Nhập mã được tạo bởi ứng dụng xác thực như Bitwarden Authenticator.",
     "description": "'Bitwarden Authenticator' is a product name and should not be translated."
   },
   "yubiKeyTitleV2": {
-    "message": "Khóa bảo mật OTP Yubico"
+    "message": "Khóa bảo mật Yubico OTP"
   },
   "yubiKeyDesc": {
-    "message": "Sử dụng YubiKey để truy cập tài khoản của bạn. Hoạt động với thiết bị YubiKey 4, 4 Nano, 4C và NEO."
+    "message": "Sử dụng YubiKey để truy cập tài khoản của bạn. Hỗ trợ các thiết bị YubiKey 4, 4 Nano, 4C và NEO."
   },
   "duoDescV2": {
     "message": "Nhập mã được tạo bởi Duo Security.",
     "description": "'Duo Security' and 'Duo Mobile' are product names and should not be translated."
   },
   "duoOrganizationDesc": {
-    "message": "Xác minh với Duo Security cho tổ chức của bạn sử dụng ứng dụng Duo Mobile, SMS, cuộc gọi điện thoại, hoặc khoá bảo mật U2F.",
+    "message": "Xác minh với Duo Security cho tổ chức của bạn bằng ứng dụng Duo Mobile, tin nhắn SMS, cuộc gọi điện thoại hoặc khóa bảo mật U2F.",
     "description": "'Duo Security' and 'Duo Mobile' are product names and should not be translated."
   },
   "verifyYourIdentity": {
@@ -986,10 +986,10 @@
     "message": "Nhập mã được gửi về email của bạn."
   },
   "loginUnavailable": {
-    "message": "Đăng nhập không được"
+    "message": "Không thể đăng nhập"
   },
   "noTwoStepProviders": {
-    "message": "Tài khoản này đã thiết lập xác minh hai bước. Tuy nhiên, thiết bị này không hỗ trợ dịch vụ xác minh hai bước đang sử dụng."
+    "message": "Tài khoản này đã kích hoạt đăng nhập 2 bước, tuy nhiên, thiết bị này không hỗ trợ dịch vụ xác thực hai lớp đang sử dụng."
   },
   "noTwoStepProviders2": {
     "message": "Vui lòng thêm các nhà cung cấp khác được hỗ trợ tốt hơn trên các thiết bị (chẳng hạn như một ứng dụng xác thực)."

From 3c6f7632338dc3aee265d3dfefae1b0d020faad4 Mon Sep 17 00:00:00 2001
From: SmithThe4th <gsmith@bitwarden.com>
Date: Fri, 11 Jul 2025 12:50:31 -0400
Subject: [PATCH 115/239] [PM-23306] "Show cards in autofill" is defaulting to
 on when the setting is enabled (#15534)

* disable card autofill

* Fixed dependency issues
---
 .../browser/src/background/main.background.ts | 51 ++++++++++---------
 .../src/popup/services/services.module.ts     |  3 +-
 .../service-container/service-container.ts    | 23 +++++----
 .../src/services/jslib-services.module.ts     |  4 +-
 .../services/autofill-settings.service.ts     | 17 ++++++-
 .../vault-settings/vault-settings.service.ts  | 20 ++++++--
 6 files changed, 75 insertions(+), 43 deletions(-)

diff --git a/apps/browser/src/background/main.background.ts b/apps/browser/src/background/main.background.ts
index 3f29151a1b7..0d7fe740069 100644
--- a/apps/browser/src/background/main.background.ts
+++ b/apps/browser/src/background/main.background.ts
@@ -752,11 +752,6 @@ export default class MainBackground {
       this.stateProvider,
     );
 
-    this.autofillSettingsService = new AutofillSettingsService(
-      this.stateProvider,
-      this.policyService,
-      this.accountService,
-    );
     this.badgeSettingsService = new BadgeSettingsService(this.stateProvider);
     this.policyApiService = new PolicyApiService(
       this.policyService,
@@ -844,16 +839,6 @@ export default class MainBackground {
       this.tokenService,
     );
 
-    this.billingAccountProfileStateService = new DefaultBillingAccountProfileStateService(
-      this.stateProvider,
-      this.platformUtilsService,
-      this.apiService,
-    );
-
-    this.ssoLoginService = new SsoLoginService(this.stateProvider, this.logService);
-
-    this.userVerificationApiService = new UserVerificationApiService(this.apiService);
-
     this.configApiService = new ConfigApiService(this.apiService, this.tokenService);
 
     this.configService = new DefaultConfigService(
@@ -864,6 +849,30 @@ export default class MainBackground {
       this.authService,
     );
 
+    this.billingAccountProfileStateService = new DefaultBillingAccountProfileStateService(
+      this.stateProvider,
+      this.platformUtilsService,
+      this.apiService,
+    );
+
+    this.restrictedItemTypesService = new RestrictedItemTypesService(
+      this.configService,
+      this.accountService,
+      this.organizationService,
+      this.policyService,
+    );
+
+    this.autofillSettingsService = new AutofillSettingsService(
+      this.stateProvider,
+      this.policyService,
+      this.accountService,
+      this.restrictedItemTypesService,
+    );
+
+    this.ssoLoginService = new SsoLoginService(this.stateProvider, this.logService);
+
+    this.userVerificationApiService = new UserVerificationApiService(this.apiService);
+
     this.domainSettingsService = new DefaultDomainSettingsService(
       this.stateProvider,
       this.configService,
@@ -928,7 +937,10 @@ export default class MainBackground {
       this.i18nService,
     );
 
-    this.vaultSettingsService = new VaultSettingsService(this.stateProvider);
+    this.vaultSettingsService = new VaultSettingsService(
+      this.stateProvider,
+      this.restrictedItemTypesService,
+    );
 
     this.vaultTimeoutService = new VaultTimeoutService(
       this.accountService,
@@ -1315,13 +1327,6 @@ export default class MainBackground {
       this.stateProvider,
     );
 
-    this.restrictedItemTypesService = new RestrictedItemTypesService(
-      this.configService,
-      this.accountService,
-      this.organizationService,
-      this.policyService,
-    );
-
     this.mainContextMenuHandler = new MainContextMenuHandler(
       this.stateService,
       this.autofillSettingsService,
diff --git a/apps/browser/src/popup/services/services.module.ts b/apps/browser/src/popup/services/services.module.ts
index ca8a76f7bcb..54d09ab9d8c 100644
--- a/apps/browser/src/popup/services/services.module.ts
+++ b/apps/browser/src/popup/services/services.module.ts
@@ -118,6 +118,7 @@ import {
   InternalFolderService,
 } from "@bitwarden/common/vault/abstractions/folder/folder.service.abstraction";
 import { TotpService as TotpServiceAbstraction } from "@bitwarden/common/vault/abstractions/totp.service";
+import { RestrictedItemTypesService } from "@bitwarden/common/vault/services/restricted-item-types.service";
 import { TotpService } from "@bitwarden/common/vault/services/totp.service";
 import {
   AnonLayoutWrapperDataService,
@@ -486,7 +487,7 @@ const safeProviders: SafeProvider[] = [
   safeProvider({
     provide: AutofillSettingsServiceAbstraction,
     useClass: AutofillSettingsService,
-    deps: [StateProvider, PolicyService, AccountService],
+    deps: [StateProvider, PolicyService, AccountService, RestrictedItemTypesService],
   }),
   safeProvider({
     provide: UserNotificationSettingsServiceAbstraction,
diff --git a/apps/cli/src/service-container/service-container.ts b/apps/cli/src/service-container/service-container.ts
index 53950e5da11..aa507aec1d8 100644
--- a/apps/cli/src/service-container/service-container.ts
+++ b/apps/cli/src/service-container/service-container.ts
@@ -685,11 +685,23 @@ export class ServiceContainer {
       this.configService,
     );
 
+    this.restrictedItemTypesService = new RestrictedItemTypesService(
+      this.configService,
+      this.accountService,
+      this.organizationService,
+      this.policyService,
+    );
+
+    this.cliRestrictedItemTypesService = new CliRestrictedItemTypesService(
+      this.restrictedItemTypesService,
+    );
+
     // FIXME: CLI does not support autofill
     this.autofillSettingsService = new AutofillSettingsService(
       this.stateProvider,
       this.policyService,
       this.accountService,
+      this.restrictedItemTypesService,
     );
 
     this.cipherEncryptionService = new DefaultCipherEncryptionService(
@@ -796,17 +808,6 @@ export class ServiceContainer {
 
     this.totpService = new TotpService(this.sdkService);
 
-    this.restrictedItemTypesService = new RestrictedItemTypesService(
-      this.configService,
-      this.accountService,
-      this.organizationService,
-      this.policyService,
-    );
-
-    this.cliRestrictedItemTypesService = new CliRestrictedItemTypesService(
-      this.restrictedItemTypesService,
-    );
-
     this.importApiService = new ImportApiService(this.apiService);
 
     this.importService = new ImportService(
diff --git a/libs/angular/src/services/jslib-services.module.ts b/libs/angular/src/services/jslib-services.module.ts
index c3f33f2a796..3af6c5b1eb1 100644
--- a/libs/angular/src/services/jslib-services.module.ts
+++ b/libs/angular/src/services/jslib-services.module.ts
@@ -1319,7 +1319,7 @@ const safeProviders: SafeProvider[] = [
   safeProvider({
     provide: AutofillSettingsServiceAbstraction,
     useClass: AutofillSettingsService,
-    deps: [StateProvider, PolicyServiceAbstraction, AccountService],
+    deps: [StateProvider, PolicyServiceAbstraction, AccountService, RestrictedItemTypesService],
   }),
   safeProvider({
     provide: BadgeSettingsServiceAbstraction,
@@ -1334,7 +1334,7 @@ const safeProviders: SafeProvider[] = [
   safeProvider({
     provide: VaultSettingsServiceAbstraction,
     useClass: VaultSettingsService,
-    deps: [StateProvider],
+    deps: [StateProvider, RestrictedItemTypesService],
   }),
   safeProvider({
     provide: MigrationRunner,
diff --git a/libs/common/src/autofill/services/autofill-settings.service.ts b/libs/common/src/autofill/services/autofill-settings.service.ts
index 3346ef99a58..c56f852d3de 100644
--- a/libs/common/src/autofill/services/autofill-settings.service.ts
+++ b/libs/common/src/autofill/services/autofill-settings.service.ts
@@ -1,6 +1,9 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
-import { map, Observable, switchMap } from "rxjs";
+import { combineLatest, map, Observable, startWith, switchMap } from "rxjs";
+
+import { CipherType } from "@bitwarden/common/vault/enums";
+import { RestrictedItemTypesService } from "@bitwarden/common/vault/services/restricted-item-types.service";
 
 import { PolicyService } from "../../admin-console/abstractions/policy/policy.service.abstraction";
 import { PolicyType } from "../../admin-console/enums";
@@ -155,6 +158,7 @@ export class AutofillSettingsService implements AutofillSettingsServiceAbstracti
     private stateProvider: StateProvider,
     private policyService: PolicyService,
     private accountService: AccountService,
+    private restrictedItemTypesService: RestrictedItemTypesService,
   ) {
     this.autofillOnPageLoadState = this.stateProvider.getActive(AUTOFILL_ON_PAGE_LOAD);
     this.autofillOnPageLoad$ = this.autofillOnPageLoadState.state$.pipe(map((x) => x ?? false));
@@ -199,7 +203,16 @@ export class AutofillSettingsService implements AutofillSettingsServiceAbstracti
     );
 
     this.showInlineMenuCardsState = this.stateProvider.getActive(SHOW_INLINE_MENU_CARDS);
-    this.showInlineMenuCards$ = this.showInlineMenuCardsState.state$.pipe(map((x) => x ?? true));
+    this.showInlineMenuCards$ = combineLatest([
+      this.showInlineMenuCardsState.state$.pipe(map((x) => x ?? true)),
+      this.restrictedItemTypesService.restricted$.pipe(startWith([])),
+    ]).pipe(
+      map(
+        ([enabled, restrictions]) =>
+          // If enabled, show cards inline menu unless card type is restricted
+          enabled && !restrictions.some((r) => r.cipherType === CipherType.Card),
+      ),
+    );
 
     this.enableContextMenuState = this.stateProvider.getGlobal(ENABLE_CONTEXT_MENU);
     this.enableContextMenu$ = this.enableContextMenuState.state$.pipe(map((x) => x ?? true));
diff --git a/libs/common/src/vault/services/vault-settings/vault-settings.service.ts b/libs/common/src/vault/services/vault-settings/vault-settings.service.ts
index 423acba8fff..28671a94cc9 100644
--- a/libs/common/src/vault/services/vault-settings/vault-settings.service.ts
+++ b/libs/common/src/vault/services/vault-settings/vault-settings.service.ts
@@ -1,13 +1,15 @@
-import { Observable, map, shareReplay } from "rxjs";
+import { Observable, combineLatest, map, shareReplay, startWith } from "rxjs";
 
 import { ActiveUserState, GlobalState, StateProvider } from "../../../platform/state";
 import { VaultSettingsService as VaultSettingsServiceAbstraction } from "../../abstractions/vault-settings/vault-settings.service";
+import { CipherType } from "../../enums";
 import {
   SHOW_CARDS_CURRENT_TAB,
   SHOW_IDENTITIES_CURRENT_TAB,
   USER_ENABLE_PASSKEYS,
   CLICK_ITEMS_AUTOFILL_VAULT_VIEW,
 } from "../key-state/vault-settings.state";
+import { RestrictedItemTypesService } from "../restricted-item-types.service";
 
 /**
  * {@link VaultSettingsServiceAbstraction}
@@ -27,8 +29,15 @@ export class VaultSettingsService implements VaultSettingsServiceAbstraction {
   /**
    * {@link VaultSettingsServiceAbstraction.showCardsCurrentTab$}
    */
-  readonly showCardsCurrentTab$: Observable<boolean> = this.showCardsCurrentTabState.state$.pipe(
-    map((x) => x ?? true),
+  readonly showCardsCurrentTab$: Observable<boolean> = combineLatest([
+    this.showCardsCurrentTabState.state$.pipe(map((x) => x ?? true)),
+    this.restrictedItemTypesService.restricted$.pipe(startWith([])),
+  ]).pipe(
+    map(
+      ([enabled, restrictions]) =>
+        // If enabled, show cards tab unless card type is restricted
+        enabled && !restrictions.some((r) => r.cipherType === CipherType.Card),
+    ),
   );
 
   private showIdentitiesCurrentTabState: ActiveUserState<boolean> = this.stateProvider.getActive(
@@ -51,7 +60,10 @@ export class VaultSettingsService implements VaultSettingsServiceAbstraction {
       shareReplay({ bufferSize: 1, refCount: false }),
     );
 
-  constructor(private stateProvider: StateProvider) {}
+  constructor(
+    private stateProvider: StateProvider,
+    private restrictedItemTypesService: RestrictedItemTypesService,
+  ) {}
 
   /**
    * {@link VaultSettingsServiceAbstraction.setShowCardsCurrentTab}

From c9f642e491a28d9ff344ef7aed91ca07477731ec Mon Sep 17 00:00:00 2001
From: Jared Snider <116684653+JaredSnider-Bitwarden@users.noreply.github.com>
Date: Fri, 11 Jul 2025 13:05:31 -0400
Subject: [PATCH 116/239] feat(new SendPasswordService): [Auth/PM-23700] Create
 KM SendPasswordService (#15570)

* PM-23700 - SendPasswordService - create and test

* PM-23700 - SendPassword Service comment clean up

* PM-23700 - Use barrel file exports and register default service.

* PM-23700 - DefaultSendPasswordService - work with Bernd to deliver better service
---
 .../src/services/jslib-services.module.ts     |  9 +++
 .../sends/abstractions/index.ts               |  1 +
 .../abstractions/send-password.service.ts     | 17 +++++
 libs/common/src/key-management/sends/index.ts |  3 +
 .../default-send-password.service.spec.ts     | 63 +++++++++++++++++++
 .../services/default-send-password.service.ts | 27 ++++++++
 .../key-management/sends/services/index.ts    |  1 +
 .../src/key-management/sends/types/index.ts   |  1 +
 .../sends/types/send-hashed-password.type.ts  |  4 ++
 9 files changed, 126 insertions(+)
 create mode 100644 libs/common/src/key-management/sends/abstractions/index.ts
 create mode 100644 libs/common/src/key-management/sends/abstractions/send-password.service.ts
 create mode 100644 libs/common/src/key-management/sends/index.ts
 create mode 100644 libs/common/src/key-management/sends/services/default-send-password.service.spec.ts
 create mode 100644 libs/common/src/key-management/sends/services/default-send-password.service.ts
 create mode 100644 libs/common/src/key-management/sends/services/index.ts
 create mode 100644 libs/common/src/key-management/sends/types/index.ts
 create mode 100644 libs/common/src/key-management/sends/types/send-hashed-password.type.ts

diff --git a/libs/angular/src/services/jslib-services.module.ts b/libs/angular/src/services/jslib-services.module.ts
index 3af6c5b1eb1..391c20b30d6 100644
--- a/libs/angular/src/services/jslib-services.module.ts
+++ b/libs/angular/src/services/jslib-services.module.ts
@@ -169,6 +169,10 @@ import {
   MasterPasswordServiceAbstraction,
 } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
 import { MasterPasswordService } from "@bitwarden/common/key-management/master-password/services/master-password.service";
+import {
+  SendPasswordService,
+  DefaultSendPasswordService,
+} from "@bitwarden/common/key-management/sends";
 import {
   DefaultVaultTimeoutService,
   DefaultVaultTimeoutSettingsService,
@@ -1502,6 +1506,11 @@ const safeProviders: SafeProvider[] = [
     useClass: DefaultCipherAuthorizationService,
     deps: [CollectionService, OrganizationServiceAbstraction, AccountServiceAbstraction],
   }),
+  safeProvider({
+    provide: SendPasswordService,
+    useClass: DefaultSendPasswordService,
+    deps: [CryptoFunctionServiceAbstraction],
+  }),
   safeProvider({
     provide: LoginApprovalComponentServiceAbstraction,
     useClass: DefaultLoginApprovalComponentService,
diff --git a/libs/common/src/key-management/sends/abstractions/index.ts b/libs/common/src/key-management/sends/abstractions/index.ts
new file mode 100644
index 00000000000..d8812f06ac9
--- /dev/null
+++ b/libs/common/src/key-management/sends/abstractions/index.ts
@@ -0,0 +1 @@
+export * from "./send-password.service";
diff --git a/libs/common/src/key-management/sends/abstractions/send-password.service.ts b/libs/common/src/key-management/sends/abstractions/send-password.service.ts
new file mode 100644
index 00000000000..7ffa3169e2f
--- /dev/null
+++ b/libs/common/src/key-management/sends/abstractions/send-password.service.ts
@@ -0,0 +1,17 @@
+import { SendHashedPassword, SendPasswordKeyMaterial } from "../types/send-hashed-password.type";
+
+/**
+ * Service for managing passwords for sends.
+ */
+export abstract class SendPasswordService {
+  /**
+   * Hashes a raw send password using the provided key material
+   * @param password - the raw password to hash
+   * @param keyMaterial - the key material
+   * @returns a promise that resolves to the hashed password as a SendHashedPassword
+   */
+  abstract hashPassword(
+    password: string,
+    keyMaterial: SendPasswordKeyMaterial,
+  ): Promise<SendHashedPassword>;
+}
diff --git a/libs/common/src/key-management/sends/index.ts b/libs/common/src/key-management/sends/index.ts
new file mode 100644
index 00000000000..17299c79ea7
--- /dev/null
+++ b/libs/common/src/key-management/sends/index.ts
@@ -0,0 +1,3 @@
+export * from "./abstractions";
+export * from "./services";
+export * from "./types";
diff --git a/libs/common/src/key-management/sends/services/default-send-password.service.spec.ts b/libs/common/src/key-management/sends/services/default-send-password.service.spec.ts
new file mode 100644
index 00000000000..54d57cb1b96
--- /dev/null
+++ b/libs/common/src/key-management/sends/services/default-send-password.service.spec.ts
@@ -0,0 +1,63 @@
+import { mock, MockProxy } from "jest-mock-extended";
+
+import { SEND_KDF_ITERATIONS } from "../../../tools/send/send-kdf";
+import { CryptoFunctionService } from "../../crypto/abstractions/crypto-function.service";
+import { SendPasswordKeyMaterial } from "../types";
+
+import { DefaultSendPasswordService } from "./default-send-password.service";
+
+describe("DefaultSendPasswordService", () => {
+  let sendPasswordService: DefaultSendPasswordService;
+  let mockCryptoFunctionService: MockProxy<CryptoFunctionService>;
+
+  beforeEach(() => {
+    mockCryptoFunctionService = mock<CryptoFunctionService>();
+
+    sendPasswordService = new DefaultSendPasswordService(mockCryptoFunctionService);
+  });
+
+  it("instantiates", () => {
+    expect(sendPasswordService).not.toBeFalsy();
+  });
+
+  it("hashes a password with the provided key material", async () => {
+    // Arrange
+    const password = "testPassword";
+
+    const keyMaterial = new Uint8Array([1, 2, 3, 4, 5]) as SendPasswordKeyMaterial;
+
+    const expectedHash = new Uint8Array([1, 2, 3, 4, 5]); // Mocked hash output
+    mockCryptoFunctionService.pbkdf2.mockResolvedValue(expectedHash);
+
+    // Act
+    const result = await sendPasswordService.hashPassword(password, keyMaterial);
+
+    // Assert
+    expect(mockCryptoFunctionService.pbkdf2).toHaveBeenCalledWith(
+      password,
+      keyMaterial,
+      "sha256",
+      SEND_KDF_ITERATIONS,
+    );
+
+    expect(result).toEqual(expectedHash);
+  });
+
+  it("throws an error if a password isn't provided", async () => {
+    // Arrange
+    const keyMaterial = new Uint8Array([1, 2, 3, 4, 5]) as SendPasswordKeyMaterial;
+    const expectedError = new Error("Password and key material are required.");
+    // Act & Assert
+    await expect(sendPasswordService.hashPassword("", keyMaterial)).rejects.toThrow(expectedError);
+  });
+
+  it("throws an error if key material isn't provided", async () => {
+    // Arrange
+    const password = "testPassword";
+    const expectedError = new Error("Password and key material are required.");
+    // Act & Assert
+    await expect(
+      sendPasswordService.hashPassword(password, undefined as unknown as SendPasswordKeyMaterial),
+    ).rejects.toThrow(expectedError);
+  });
+});
diff --git a/libs/common/src/key-management/sends/services/default-send-password.service.ts b/libs/common/src/key-management/sends/services/default-send-password.service.ts
new file mode 100644
index 00000000000..eba7469dd3a
--- /dev/null
+++ b/libs/common/src/key-management/sends/services/default-send-password.service.ts
@@ -0,0 +1,27 @@
+import { SEND_KDF_ITERATIONS } from "../../../tools/send/send-kdf";
+import { CryptoFunctionService } from "../../crypto/abstractions/crypto-function.service";
+import { SendPasswordService } from "../abstractions/send-password.service";
+import { SendHashedPassword, SendPasswordKeyMaterial } from "../types/send-hashed-password.type";
+
+export class DefaultSendPasswordService implements SendPasswordService {
+  constructor(private cryptoFunctionService: CryptoFunctionService) {}
+
+  async hashPassword(
+    password: string,
+    keyMaterial: SendPasswordKeyMaterial,
+  ): Promise<SendHashedPassword> {
+    if (!password || !keyMaterial) {
+      throw new Error("Password and key material are required.");
+    }
+
+    // Derive a password hash using the key material.
+    const passwordHash = await this.cryptoFunctionService.pbkdf2(
+      password,
+      keyMaterial,
+      "sha256",
+      SEND_KDF_ITERATIONS,
+    );
+
+    return passwordHash as SendHashedPassword;
+  }
+}
diff --git a/libs/common/src/key-management/sends/services/index.ts b/libs/common/src/key-management/sends/services/index.ts
new file mode 100644
index 00000000000..4b42a7b46e0
--- /dev/null
+++ b/libs/common/src/key-management/sends/services/index.ts
@@ -0,0 +1 @@
+export * from "./default-send-password.service";
diff --git a/libs/common/src/key-management/sends/types/index.ts b/libs/common/src/key-management/sends/types/index.ts
new file mode 100644
index 00000000000..c6f6567ae34
--- /dev/null
+++ b/libs/common/src/key-management/sends/types/index.ts
@@ -0,0 +1 @@
+export * from "./send-hashed-password.type";
diff --git a/libs/common/src/key-management/sends/types/send-hashed-password.type.ts b/libs/common/src/key-management/sends/types/send-hashed-password.type.ts
new file mode 100644
index 00000000000..2b6fb34fc8f
--- /dev/null
+++ b/libs/common/src/key-management/sends/types/send-hashed-password.type.ts
@@ -0,0 +1,4 @@
+import { Opaque } from "type-fest";
+
+export type SendHashedPassword = Opaque<Uint8Array, "SendHashedPassword">;
+export type SendPasswordKeyMaterial = Opaque<Uint8Array, "SendPasswordKeyMaterial">;

From a32f745c99ca3a088d634fc5a0e2e4f97b539e9c Mon Sep 17 00:00:00 2001
From: Bernd Schoolmann <mail@quexten.com>
Date: Fri, 11 Jul 2025 19:43:10 +0200
Subject: [PATCH 117/239] [PM-22781] Implement autoconnect to desktop app on
 app start (#15266)

* Implement autoconnect to desktop app on app start

* Update apps/browser/src/background/nativeMessaging.background.ts

Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com>

* Silence errors and only connect while popup is not open

* Run autoconnect regardless of popup being open

---------

Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com>
---
 .../background/nativeMessaging.background.ts  | 10 ++++++++
 .../background-browser-biometrics.service.ts  | 25 +++++++++++++++++--
 2 files changed, 33 insertions(+), 2 deletions(-)

diff --git a/apps/browser/src/background/nativeMessaging.background.ts b/apps/browser/src/background/nativeMessaging.background.ts
index 03876dba673..66a929c47a1 100644
--- a/apps/browser/src/background/nativeMessaging.background.ts
+++ b/apps/browser/src/background/nativeMessaging.background.ts
@@ -105,6 +105,16 @@ export class NativeMessagingBackground {
   }
 
   async connect() {
+    if (!(await BrowserApi.permissionsGranted(["nativeMessaging"]))) {
+      this.logService.warning(
+        "[Native Messaging IPC] Native messaging permission is missing for biometrics",
+      );
+      return;
+    }
+    if (this.connected || this.connecting) {
+      return;
+    }
+
     this.logService.info("[Native Messaging IPC] Connecting to Bitwarden Desktop app...");
     const appId = await this.appIdService.getAppId();
     this.appId = appId;
diff --git a/apps/browser/src/key-management/biometrics/background-browser-biometrics.service.ts b/apps/browser/src/key-management/biometrics/background-browser-biometrics.service.ts
index 677f58dee11..8f755cfeda6 100644
--- a/apps/browser/src/key-management/biometrics/background-browser-biometrics.service.ts
+++ b/apps/browser/src/key-management/biometrics/background-browser-biometrics.service.ts
@@ -1,3 +1,6 @@
+import { combineLatest, timer } from "rxjs";
+import { filter, concatMap } from "rxjs/operators";
+
 import { VaultTimeoutSettingsService } from "@bitwarden/common/key-management/vault-timeout";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
@@ -17,6 +20,8 @@ import { NativeMessagingBackground } from "../../background/nativeMessaging.back
 import { BrowserApi } from "../../platform/browser/browser-api";
 
 export class BackgroundBrowserBiometricsService extends BiometricsService {
+  BACKGROUND_POLLING_INTERVAL = 30_000;
+
   constructor(
     private nativeMessagingBackground: () => NativeMessagingBackground,
     private logService: LogService,
@@ -26,6 +31,24 @@ export class BackgroundBrowserBiometricsService extends BiometricsService {
     private vaultTimeoutSettingsService: VaultTimeoutSettingsService,
   ) {
     super();
+    // Always connect to the native messaging background if biometrics are enabled, not just when it is used
+    // so that there is no wait when used.
+    const biometricsEnabled = this.biometricStateService.biometricUnlockEnabled$;
+
+    combineLatest([timer(0, this.BACKGROUND_POLLING_INTERVAL), biometricsEnabled])
+      .pipe(
+        filter(([_, enabled]) => enabled),
+        filter(([_]) => !this.nativeMessagingBackground().connected),
+        concatMap(async () => {
+          try {
+            await this.nativeMessagingBackground().connect();
+            await this.getBiometricsStatus();
+          } catch {
+            // Ignore
+          }
+        }),
+      )
+      .subscribe();
   }
 
   async authenticateWithBiometrics(): Promise<boolean> {
@@ -48,8 +71,6 @@ export class BackgroundBrowserBiometricsService extends BiometricsService {
     }
 
     try {
-      await this.ensureConnected();
-
       const response = await this.nativeMessagingBackground().callCommand({
         command: BiometricsCommands.GetBiometricsStatus,
       });

From 4fade99be5bf0d4a4b0a6a1a33f2364c13c1b321 Mon Sep 17 00:00:00 2001
From: Daniel Riera <driera@livefront.com>
Date: Fri, 11 Jul 2025 15:36:26 -0400
Subject: [PATCH 118/239] Pm 22882 display simple dialog when advanced matching
 strategy selected for global setting (#15531)

* PM-22882

* add bit hints

* export dialog and implement in autofill component

* remove unnecessary non null assertion

* set to previous on cancel

* add advanced options message to web and desktop

* tweak styling

* add warning capitalized to web and desktop
---
 .../popup/settings/autofill.component.html    |  9 ++-
 .../popup/settings/autofill.component.ts      | 72 ++++++++++++++++---
 apps/desktop/src/locales/en/messages.json     |  8 +++
 apps/web/src/locales/en/messages.json         |  8 +++
 .../advanced-uri-option-dialog.component.html |  4 +-
 libs/vault/src/cipher-form/index.ts           |  1 +
 6 files changed, 90 insertions(+), 12 deletions(-)

diff --git a/apps/browser/src/autofill/popup/settings/autofill.component.html b/apps/browser/src/autofill/popup/settings/autofill.component.html
index aa9c8648885..543c7482bf7 100644
--- a/apps/browser/src/autofill/popup/settings/autofill.component.html
+++ b/apps/browser/src/autofill/popup/settings/autofill.component.html
@@ -262,10 +262,15 @@
                 *ngFor="let option of uriMatchOptions"
                 [label]="option.name"
                 [value]="option.value"
+                [disabled]="option.disabled"
               ></bit-option>
             </bit-select>
-            <bit-hint class="tw-text-sm" id="defaultUriMatchHelp">
-              {{ "defaultUriMatchDetectionDesc" | i18n }}
+            <bit-hint *ngIf="getMatchHints() as hints">
+              {{ hints[0] | i18n }}
+              <ng-container *ngIf="hints.length > 1">
+                <b>{{ "warningCapitalized" | i18n }}:</b>
+                {{ hints[1] | i18n }}
+              </ng-container>
             </bit-hint>
           </bit-form-field>
         </bit-card>
diff --git a/apps/browser/src/autofill/popup/settings/autofill.component.ts b/apps/browser/src/autofill/popup/settings/autofill.component.ts
index 852b79cad1d..19afb903cb8 100644
--- a/apps/browser/src/autofill/popup/settings/autofill.component.ts
+++ b/apps/browser/src/autofill/popup/settings/autofill.component.ts
@@ -11,7 +11,17 @@ import {
   ReactiveFormsModule,
 } from "@angular/forms";
 import { RouterModule } from "@angular/router";
-import { filter, firstValueFrom, map, Observable, shareReplay, switchMap } from "rxjs";
+import {
+  concatMap,
+  filter,
+  firstValueFrom,
+  map,
+  Observable,
+  pairwise,
+  shareReplay,
+  startWith,
+  switchMap,
+} from "rxjs";
 
 import { JslibModule } from "@bitwarden/angular/jslib.module";
 import { NudgesService, NudgeType } from "@bitwarden/angular/vault";
@@ -59,6 +69,7 @@ import {
   SelectModule,
   TypographyModule,
 } from "@bitwarden/components";
+import { AdvancedUriOptionDialogComponent } from "@bitwarden/vault";
 
 import { AutofillBrowserSettingsService } from "../../../autofill/services/autofill-browser-settings.service";
 import { BrowserApi } from "../../../platform/browser/browser-api";
@@ -131,6 +142,7 @@ export class AutofillComponent implements OnInit {
     defaultUriMatch: new FormControl(),
   });
 
+  advancedOptionWarningMap: Partial<Record<UriMatchStrategySetting, string>>;
   enableAutofillOnPageLoad: boolean = false;
   enableInlineMenu: boolean = false;
   enableInlineMenuOnIconSelect: boolean = false;
@@ -143,7 +155,7 @@ export class AutofillComponent implements OnInit {
   clearClipboard: ClearClipboardDelaySetting;
   clearClipboardOptions: { name: string; value: ClearClipboardDelaySetting }[];
   defaultUriMatch: UriMatchStrategySetting = UriMatchStrategy.Domain;
-  uriMatchOptions: { name: string; value: UriMatchStrategySetting }[];
+  uriMatchOptions: { name: string; value: UriMatchStrategySetting; disabled?: boolean }[];
   showCardsCurrentTab: boolean = true;
   showIdentitiesCurrentTab: boolean = true;
   autofillKeyboardHelperText: string;
@@ -181,11 +193,16 @@ export class AutofillComponent implements OnInit {
     this.uriMatchOptions = [
       { name: i18nService.t("baseDomainOptionRecommended"), value: UriMatchStrategy.Domain },
       { name: i18nService.t("host"), value: UriMatchStrategy.Host },
-      { name: i18nService.t("startsWith"), value: UriMatchStrategy.StartsWith },
-      { name: i18nService.t("regEx"), value: UriMatchStrategy.RegularExpression },
       { name: i18nService.t("exact"), value: UriMatchStrategy.Exact },
       { name: i18nService.t("never"), value: UriMatchStrategy.Never },
+      { name: this.i18nService.t("uriAdvancedOption"), value: null, disabled: true },
+      { name: i18nService.t("startsWith"), value: UriMatchStrategy.StartsWith },
+      { name: i18nService.t("regEx"), value: UriMatchStrategy.RegularExpression },
     ];
+    this.advancedOptionWarningMap = {
+      [UriMatchStrategy.StartsWith]: "startsWithAdvancedOptionWarning",
+      [UriMatchStrategy.RegularExpression]: "regExAdvancedOptionWarning",
+    };
 
     this.browserClientVendor = BrowserApi.getBrowserClientVendor(window);
     this.disablePasswordManagerURI = DisablePasswordManagerUris[this.browserClientVendor];
@@ -319,10 +336,13 @@ export class AutofillComponent implements OnInit {
       });
 
     this.additionalOptionsForm.controls.defaultUriMatch.valueChanges
-      .pipe(takeUntilDestroyed(this.destroyRef))
-      .subscribe((value) => {
-        void this.domainSettingsService.setDefaultUriMatchStrategy(value);
-      });
+      .pipe(
+        startWith(this.defaultUriMatch),
+        pairwise(),
+        concatMap(([previous, current]) => this.handleAdvancedMatch(previous, current)),
+        takeUntilDestroyed(this.destroyRef),
+      )
+      .subscribe();
 
     const command = await this.platformUtilsService.getAutofillKeyboardShortcut();
     await this.setAutofillKeyboardHelperText(command);
@@ -510,6 +530,29 @@ export class AutofillComponent implements OnInit {
     await this.updateDefaultBrowserAutofillDisabled();
   };
 
+  private async handleAdvancedMatch(
+    previous: UriMatchStrategySetting | null,
+    current: UriMatchStrategySetting | null,
+  ): Promise<void> {
+    const valueChange = previous !== current;
+    const isAdvanced =
+      current === UriMatchStrategy.StartsWith || current === UriMatchStrategy.RegularExpression;
+    if (!valueChange || !isAdvanced) {
+      return await this.domainSettingsService.setDefaultUriMatchStrategy(current);
+    }
+    AdvancedUriOptionDialogComponent.open(this.dialogService, {
+      contentKey: this.advancedOptionWarningMap[current],
+      onContinue: async () => {
+        this.additionalOptionsForm.controls.defaultUriMatch.setValue(current);
+        await this.domainSettingsService.setDefaultUriMatchStrategy(current);
+      },
+      onCancel: async () => {
+        this.additionalOptionsForm.controls.defaultUriMatch.setValue(previous);
+        await this.domainSettingsService.setDefaultUriMatchStrategy(previous);
+      },
+    });
+  }
+
   async privacyPermissionGranted(): Promise<boolean> {
     return await BrowserApi.permissionsGranted(["privacy"]);
   }
@@ -529,4 +572,17 @@ export class AutofillComponent implements OnInit {
   async updateShowInlineMenuIdentities() {
     await this.autofillSettingsService.setShowInlineMenuIdentities(this.showInlineMenuIdentities);
   }
+
+  getMatchHints() {
+    const hints = ["uriMatchDefaultStrategyHint"];
+    const strategy = this.additionalOptionsForm.get("defaultUriMatch")
+      ?.value as UriMatchStrategySetting;
+    if (
+      strategy === UriMatchStrategy.StartsWith ||
+      strategy === UriMatchStrategy.RegularExpression
+    ) {
+      hints.push(this.advancedOptionWarningMap[strategy]);
+    }
+    return hints;
+  }
 }
diff --git a/apps/desktop/src/locales/en/messages.json b/apps/desktop/src/locales/en/messages.json
index a139c0c712c..881d30bd171 100644
--- a/apps/desktop/src/locales/en/messages.json
+++ b/apps/desktop/src/locales/en/messages.json
@@ -3565,6 +3565,14 @@
   "uriMatchWarningDialogLink": {
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+   "uriAdvancedOption":{
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+   "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
   },
   "success": {
     "message": "Success"
diff --git a/apps/web/src/locales/en/messages.json b/apps/web/src/locales/en/messages.json
index 9150028f4d6..b272dc32e3b 100644
--- a/apps/web/src/locales/en/messages.json
+++ b/apps/web/src/locales/en/messages.json
@@ -8941,6 +8941,14 @@
   "uriMatchWarningDialogLink": {
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
+  },
+   "uriAdvancedOption":{
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+   "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
   },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
diff --git a/libs/vault/src/cipher-form/components/autofill-options/advanced-uri-option-dialog.component.html b/libs/vault/src/cipher-form/components/autofill-options/advanced-uri-option-dialog.component.html
index 627989a3397..6c792d240df 100644
--- a/libs/vault/src/cipher-form/components/autofill-options/advanced-uri-option-dialog.component.html
+++ b/libs/vault/src/cipher-form/components/autofill-options/advanced-uri-option-dialog.component.html
@@ -7,8 +7,8 @@
   <span bitDialogTitle>
     {{ "warningCapitalized" | i18n }}
   </span>
-  <div bitDialogContent>
-    <p>
+  <div bitDialogContent class="tw-mb-1">
+    <p class="tw-mb-1 tw-hyphens-none">
       {{ contentKey | i18n }}
       <br />
       <button bitLink type="button" linkType="primary" (click)="openLink($event)">
diff --git a/libs/vault/src/cipher-form/index.ts b/libs/vault/src/cipher-form/index.ts
index 0172733b682..37eda4a48b0 100644
--- a/libs/vault/src/cipher-form/index.ts
+++ b/libs/vault/src/cipher-form/index.ts
@@ -11,3 +11,4 @@ export { DefaultCipherFormConfigService } from "./services/default-cipher-form-c
 export { CipherFormGeneratorComponent } from "./components/cipher-generator/cipher-form-generator.component";
 export { CipherFormContainer } from "../cipher-form/cipher-form-container";
 export { CipherFormComponent } from "./components/cipher-form.component";
+export { AdvancedUriOptionDialogComponent } from "./components/autofill-options/advanced-uri-option-dialog.component";

From 5f539878730e82a794366b2b9ee6c52f64fe14e6 Mon Sep 17 00:00:00 2001
From: Shane Melton <smelton@bitwarden.com>
Date: Fri, 11 Jul 2025 13:01:11 -0700
Subject: [PATCH 119/239] [PM-23697] Copy raw login uri instead of launchUri
 (#15569)

---
 .../autofill-options/autofill-options-view.component.html       | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/libs/vault/src/cipher-view/autofill-options/autofill-options-view.component.html b/libs/vault/src/cipher-view/autofill-options/autofill-options-view.component.html
index 22049b2a72e..1e17886f50b 100644
--- a/libs/vault/src/cipher-view/autofill-options/autofill-options-view.component.html
+++ b/libs/vault/src/cipher-view/autofill-options/autofill-options-view.component.html
@@ -32,7 +32,7 @@
           bitIconButton="bwi-clone"
           bitSuffix
           type="button"
-          [appCopyClick]="login.launchUri"
+          [appCopyClick]="login.uri"
           [valueLabel]="'website' | i18n"
           showToast
           [appA11yTitle]="'copyWebsite' | i18n"

From c1818b32e7b972df49c5318eac01cb3516ef9025 Mon Sep 17 00:00:00 2001
From: Daniel Riera <driera@livefront.com>
Date: Fri, 11 Jul 2025 17:04:50 -0400
Subject: [PATCH 120/239] PM-23674 The v3 notification is using erroneous
 notification sizing in some cases (#15562)

* PM-23674

* remove duplicate mock
---
 ...verlay-notifications-content.service.spec.ts | 17 +++++++++--------
 .../overlay-notifications-content.service.ts    | 10 +++++-----
 2 files changed, 14 insertions(+), 13 deletions(-)

diff --git a/apps/browser/src/autofill/overlay/notifications/content/overlay-notifications-content.service.spec.ts b/apps/browser/src/autofill/overlay/notifications/content/overlay-notifications-content.service.spec.ts
index 9202a5a3839..7339325bd93 100644
--- a/apps/browser/src/autofill/overlay/notifications/content/overlay-notifications-content.service.spec.ts
+++ b/apps/browser/src/autofill/overlay/notifications/content/overlay-notifications-content.service.spec.ts
@@ -4,6 +4,8 @@ import AutofillInit from "../../../content/autofill-init";
 import { DomQueryService } from "../../../services/abstractions/dom-query.service";
 import DomElementVisibilityService from "../../../services/dom-element-visibility.service";
 import { flushPromises, sendMockExtensionMessage } from "../../../spec/testing-utils";
+import * as utils from "../../../utils";
+import { sendExtensionMessage } from "../../../utils";
 import { NotificationTypeData } from "../abstractions/overlay-notifications-content.service";
 
 import { OverlayNotificationsContentService } from "./overlay-notifications-content.service";
@@ -17,6 +19,11 @@ describe("OverlayNotificationsContentService", () => {
 
   beforeEach(() => {
     jest.useFakeTimers();
+    jest
+      .spyOn(utils, "sendExtensionMessage")
+      .mockImplementation((command: string) =>
+        Promise.resolve(command === "notificationRefreshFlagValue" ? false : true),
+      );
     domQueryService = mock<DomQueryService>();
     domElementVisibilityService = new DomElementVisibilityService();
     overlayNotificationsContentService = new OverlayNotificationsContentService();
@@ -45,8 +52,7 @@ describe("OverlayNotificationsContentService", () => {
     });
 
     it("applies correct styles when notificationRefreshFlag is true", async () => {
-      overlayNotificationsContentService["notificationRefreshFlag"] = true;
-
+      (sendExtensionMessage as jest.Mock).mockResolvedValue(true);
       sendMockExtensionMessage({
         command: "openNotificationBar",
         data: {
@@ -62,8 +68,6 @@ describe("OverlayNotificationsContentService", () => {
     });
 
     it("applies correct styles when notificationRefreshFlag is false", async () => {
-      overlayNotificationsContentService["notificationRefreshFlag"] = false;
-
       sendMockExtensionMessage({
         command: "openNotificationBar",
         data: {
@@ -208,10 +212,7 @@ describe("OverlayNotificationsContentService", () => {
 
       jest.advanceTimersByTime(150);
 
-      expect(chrome.runtime.sendMessage).toHaveBeenCalledWith(
-        { command: "bgRemoveTabFromNotificationQueue" },
-        expect.any(Function),
-      );
+      expect(sendExtensionMessage).toHaveBeenCalledWith("bgRemoveTabFromNotificationQueue");
     });
 
     it("closes the notification bar without a fadeout", () => {
diff --git a/apps/browser/src/autofill/overlay/notifications/content/overlay-notifications-content.service.ts b/apps/browser/src/autofill/overlay/notifications/content/overlay-notifications-content.service.ts
index bc32bf23928..53cbde9cdfb 100644
--- a/apps/browser/src/autofill/overlay/notifications/content/overlay-notifications-content.service.ts
+++ b/apps/browser/src/autofill/overlay/notifications/content/overlay-notifications-content.service.ts
@@ -67,9 +67,6 @@ export class OverlayNotificationsContentService
 
   constructor() {
     void sendExtensionMessage("checkNotificationQueue");
-    void sendExtensionMessage("notificationRefreshFlagValue").then((notificationRefreshFlag) => {
-      this.notificationRefreshFlag = !!notificationRefreshFlag;
-    });
   }
 
   /**
@@ -85,11 +82,10 @@ export class OverlayNotificationsContentService
    *
    * @param message - The message containing the initialization data for the notification bar.
    */
-  private handleOpenNotificationBarMessage(message: NotificationsExtensionMessage) {
+  private async handleOpenNotificationBarMessage(message: NotificationsExtensionMessage) {
     if (!message.data) {
       return;
     }
-
     const { type, typeData, params } = message.data;
 
     if (this.currentNotificationBarType && type !== this.currentNotificationBarType) {
@@ -105,6 +101,10 @@ export class OverlayNotificationsContentService
       params,
     };
 
+    await sendExtensionMessage("notificationRefreshFlagValue").then((notificationRefreshFlag) => {
+      this.notificationRefreshFlag = !!notificationRefreshFlag;
+    });
+
     if (globalThis.document.readyState === "loading") {
       document.addEventListener("DOMContentLoaded", () => this.openNotificationBar(initData));
       return;

From 4df5ef155dda91ec60ea094cf4ef7e0254904388 Mon Sep 17 00:00:00 2001
From: Will Martin <contact@willmartian.com>
Date: Mon, 14 Jul 2025 01:21:56 -0400
Subject: [PATCH 121/239] [PM-23550] prevent fonts from being cached in browser
 extension and desktop clients (#15585)

* add content hash to font asset filenames

* add content hash to font asset filename in desktop
---
 apps/browser/webpack.config.js   | 2 +-
 apps/desktop/webpack.renderer.js | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/apps/browser/webpack.config.js b/apps/browser/webpack.config.js
index f930f4b96bc..4aab0beefbb 100644
--- a/apps/browser/webpack.config.js
+++ b/apps/browser/webpack.config.js
@@ -31,7 +31,7 @@ const moduleRules = [
     test: /.(ttf|otf|eot|svg|woff(2)?)(\?[a-z0-9]+)?$/,
     exclude: /loading.svg/,
     generator: {
-      filename: "popup/fonts/[name][ext]",
+      filename: "popup/fonts/[name].[contenthash][ext]",
     },
     type: "asset/resource",
   },
diff --git a/apps/desktop/webpack.renderer.js b/apps/desktop/webpack.renderer.js
index e9a44a9e725..7c80c719aca 100644
--- a/apps/desktop/webpack.renderer.js
+++ b/apps/desktop/webpack.renderer.js
@@ -110,7 +110,7 @@ const renderer = {
         test: /.(ttf|otf|eot|svg|woff(2)?)(\?[a-z0-9]+)?$/,
         exclude: /loading.svg/,
         generator: {
-          filename: "fonts/[name][ext]",
+          filename: "fonts/[name].[contenthash][ext]",
         },
         type: "asset/resource",
       },

From 537b75cb1f4dd2c91058a21ca56d21bc51a5c180 Mon Sep 17 00:00:00 2001
From: Joel <joel.hutchinson2411@gmail.com>
Date: Mon, 14 Jul 2025 12:00:48 +0100
Subject: [PATCH 122/239] [PM-22440] [PM-22114] Parse RfFieldsV2 Roboform
 Fields  (#15099)

* add support for RfFieldsV2

* add unit tests for totp and custom fields

* update empty-folders data for new unit tests

* ignore User ID$, Password$ and Script$

* refactor: extract parsing logic for Rf_fields and RfFieldsV2 into separate methods and don't ignore User ID$, Password$ or Script$

* Fixed linting issue by executing npm run prettier

---------

Co-authored-by: Daniel James Smith <2670567+djsmith85@users.noreply.github.com>
Co-authored-by: Daniel James Smith <djsmith85@users.noreply.github.com>
---
 .../importers/roboform-csv-importer.spec.ts   | 27 ++++++-
 .../src/importers/roboform-csv-importer.ts    | 80 ++++++++++++++++---
 .../spec-data/roboform-csv/empty-folders.ts   |  5 +-
 3 files changed, 92 insertions(+), 20 deletions(-)

diff --git a/libs/importer/src/importers/roboform-csv-importer.spec.ts b/libs/importer/src/importers/roboform-csv-importer.spec.ts
index 23604042a02..65221669154 100644
--- a/libs/importer/src/importers/roboform-csv-importer.spec.ts
+++ b/libs/importer/src/importers/roboform-csv-importer.spec.ts
@@ -16,7 +16,7 @@ describe("Roboform CSV Importer", () => {
     expect(result != null).toBe(true);
 
     expect(result.folders.length).toBe(0);
-    expect(result.ciphers.length).toBe(5);
+    expect(result.ciphers.length).toBe(4);
     expect(result.ciphers[0].name).toBe("Bitwarden");
     expect(result.ciphers[0].login.username).toBe("user@bitwarden.com");
     expect(result.ciphers[0].login.password).toBe("password");
@@ -31,13 +31,32 @@ describe("Roboform CSV Importer", () => {
     expect(result.ciphers.length).toBe(5);
   });
 
+  it("should parse CSV data totp", async () => {
+    const importer = new RoboFormCsvImporter();
+    const result = await importer.parse(dataNoFolder);
+    expect(result != null).toBe(true);
+
+    expect(result.ciphers[2].login.totp).toBe("totpKeyValue");
+  });
+
+  it("should parse CSV data custom fields", async () => {
+    const importer = new RoboFormCsvImporter();
+    const result = await importer.parse(dataNoFolder);
+    expect(result != null).toBe(true);
+
+    expect(result.ciphers[1].fields[0].name).toBe("Custom Field 1");
+    expect(result.ciphers[1].fields[0].value).toBe("Custom Field 1 Value");
+    expect(result.ciphers[1].fields[1].name).toBe("Custom Field 2");
+    expect(result.ciphers[1].fields[1].value).toBe("Custom Field 2 Value");
+  });
+
   it("should parse CSV data secure note", async () => {
     const importer = new RoboFormCsvImporter();
     const result = await importer.parse(dataNoFolder);
     expect(result != null).toBe(true);
-    expect(result.ciphers[4].type).toBe(CipherType.SecureNote);
-    expect(result.ciphers[4].notes).toBe("This is a safe note");
-    expect(result.ciphers[4].name).toBe("note - 2023-03-31");
+    expect(result.ciphers[3].type).toBe(CipherType.SecureNote);
+    expect(result.ciphers[3].notes).toBe("This is a safe note");
+    expect(result.ciphers[3].name).toBe("note - 2023-03-31");
   });
 
   it("should parse CSV data with folder hierarchy", async () => {
diff --git a/libs/importer/src/importers/roboform-csv-importer.ts b/libs/importer/src/importers/roboform-csv-importer.ts
index 50e899bebfd..eb8a1ceac6a 100644
--- a/libs/importer/src/importers/roboform-csv-importer.ts
+++ b/libs/importer/src/importers/roboform-csv-importer.ts
@@ -1,5 +1,7 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
+import { FieldType } from "@bitwarden/common/vault/enums";
+
 import { ImportResult } from "../models/import-result";
 
 import { BaseImporter } from "./base-importer";
@@ -31,19 +33,9 @@ export class RoboFormCsvImporter extends BaseImporter implements Importer {
       cipher.login.uris = this.makeUriArray(value.Url);
 
       if (!this.isNullOrWhitespace(value.Rf_fields)) {
-        let fields: string[] = [value.Rf_fields];
-        if (value.__parsed_extra != null && value.__parsed_extra.length > 0) {
-          fields = fields.concat(value.__parsed_extra);
-        }
-        fields.forEach((field: string) => {
-          const parts = field.split(":");
-          if (parts.length < 3) {
-            return;
-          }
-          const key = parts[0] === "-no-name-" ? null : parts[0];
-          const val = parts.length === 4 && parts[2] === "rck" ? parts[1] : parts[2];
-          this.processKvp(cipher, key, val);
-        });
+        this.parseRfFields(cipher, value);
+      } else if (!this.isNullOrWhitespace(value.RfFieldsV2)) {
+        this.parseRfFieldsV2(cipher, value);
       }
 
       this.convertToNoteIfNeeded(cipher);
@@ -68,4 +60,66 @@ export class RoboFormCsvImporter extends BaseImporter implements Importer {
     result.success = true;
     return Promise.resolve(result);
   }
+
+  private parseRfFields(cipher: any, value: any): void {
+    let fields: string[] = [value.Rf_fields];
+
+    if (value.__parsed_extra != null && value.__parsed_extra.length > 0) {
+      fields = fields.concat(value.__parsed_extra);
+    }
+
+    fields.forEach((field: string) => {
+      const parts = field.split(":");
+      if (parts.length < 3) {
+        return;
+      }
+      const key = parts[0] === "-no-name-" ? null : parts[0];
+      const val = parts.length === 4 && parts[2] === "rck" ? parts[1] : parts[2];
+      this.processKvp(cipher, key, val);
+    });
+  }
+
+  private parseRfFieldsV2(cipher: any, value: any): void {
+    let fields: string[] = [value.RfFieldsV2];
+    if (value.__parsed_extra != null && value.__parsed_extra.length > 0) {
+      fields = fields.concat(value.__parsed_extra);
+    }
+
+    let userIdCount = 1;
+    let passwordCount = 1;
+
+    fields.forEach((field: string) => {
+      const parts = field.split(",");
+      if (parts.length < 5) {
+        return;
+      }
+
+      const key = parts[0] === "-no-name-" ? null : parts[0];
+      const type = parts[3] === "pwd" ? FieldType.Hidden : FieldType.Text;
+      const val = parts[4];
+
+      if (key === "TOTP KEY$") {
+        cipher.login.totp = val;
+        return;
+      }
+
+      // Skip if value matches login fields
+      if (key === "User ID$" && val === cipher.login.username) {
+        return;
+      }
+      if (key === "Password$" && val === cipher.login.password) {
+        return;
+      }
+
+      // Index any extra User IDs or Passwords
+      let displayKey = key;
+      if (key === "User ID$") {
+        displayKey = `Alternate User ID ${userIdCount++}`;
+      } else if (key === "Password$") {
+        displayKey = `Alternate Password ${passwordCount++}`;
+      }
+
+      this.processKvp(cipher, displayKey, val, type);
+    });
+  }
 }
diff --git a/libs/importer/src/importers/spec-data/roboform-csv/empty-folders.ts b/libs/importer/src/importers/spec-data/roboform-csv/empty-folders.ts
index 0c90f68470d..17ddac4ac8b 100644
--- a/libs/importer/src/importers/spec-data/roboform-csv/empty-folders.ts
+++ b/libs/importer/src/importers/spec-data/roboform-csv/empty-folders.ts
@@ -1,6 +1,5 @@
 export const data = `Name,Url,MatchUrl,Login,Pwd,Note,Folder,RfFieldsV2
 Bitwarden,https://bitwarden.com,https://bitwarden.com,user@bitwarden.com,password,,,"User ID$,,,txt,user@bitwarden.com","Password$,,,pwd,password"
-Test,https://www.test.com/,https://www.test.com/,test@gmail.com,:testPassword,test,,"User ID$,,,txt,test@gmail.com","Password$,,,pwd,:testPassword"
-LoginWebsite,https://login.Website.com/,https://login.Website.com/,test@outlook.com,123password,,,"User ID$,,,txt,test@outlook.com","Password$,,,pwd,123password"
-Website,https://signin.website.com/,https://signin.website.com/,user@bitwarden.com,password123,Website ,,"User ID$,,,txt,user@bitwarden.com","Password$,,,pwd,password123"
+Customfields,https://www.customfields.com,https://www.customfields.com,customfields@gmail.com,customfieldsPassword,,,"User ID$,,,txt,customfields@gmail.com","Password$,,,pwd,customfieldsPassword","Custom Field 1,,,txt,Custom Field 1 Value","Custom Field 2,,,txt,Custom Field 2 Value"
+Totpwebsite,https://www.totpwebsite.com,https://www.totpwebsite.com,totp@gmail.com,totpPassword,,,"User ID$,,,txt,totp@gmail.com","Password$,,,pwd,totpPassword","TOTP KEY$,,,txt,totpKeyValue"
 note - 2023-03-31,,,,,This is a safe note,`;

From 7fd73612e096162ef15c38f78ba64bb8e23a60b3 Mon Sep 17 00:00:00 2001
From: "bw-ghapp[bot]" <178206702+bw-ghapp[bot]@users.noreply.github.com>
Date: Mon, 14 Jul 2025 13:53:28 +0200
Subject: [PATCH 123/239] Autosync the updated translations (#15597)

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>
---
 apps/desktop/src/locales/af/messages.json    |   8 +
 apps/desktop/src/locales/ar/messages.json    |   8 +
 apps/desktop/src/locales/az/messages.json    |   8 +
 apps/desktop/src/locales/be/messages.json    |   8 +
 apps/desktop/src/locales/bg/messages.json    |   8 +
 apps/desktop/src/locales/bn/messages.json    |   8 +
 apps/desktop/src/locales/bs/messages.json    |   8 +
 apps/desktop/src/locales/ca/messages.json    |   8 +
 apps/desktop/src/locales/cs/messages.json    |   8 +
 apps/desktop/src/locales/cy/messages.json    |   8 +
 apps/desktop/src/locales/da/messages.json    |   8 +
 apps/desktop/src/locales/de/messages.json    |   8 +
 apps/desktop/src/locales/el/messages.json    |   8 +
 apps/desktop/src/locales/en_GB/messages.json |   8 +
 apps/desktop/src/locales/en_IN/messages.json |   8 +
 apps/desktop/src/locales/eo/messages.json    |   8 +
 apps/desktop/src/locales/es/messages.json    |   8 +
 apps/desktop/src/locales/et/messages.json    |   8 +
 apps/desktop/src/locales/eu/messages.json    |   8 +
 apps/desktop/src/locales/fa/messages.json    |   8 +
 apps/desktop/src/locales/fi/messages.json    |   8 +
 apps/desktop/src/locales/fil/messages.json   |   8 +
 apps/desktop/src/locales/fr/messages.json    | 234 ++++----
 apps/desktop/src/locales/gl/messages.json    |   8 +
 apps/desktop/src/locales/he/messages.json    |   8 +
 apps/desktop/src/locales/hi/messages.json    |   8 +
 apps/desktop/src/locales/hr/messages.json    |   8 +
 apps/desktop/src/locales/hu/messages.json    |  14 +-
 apps/desktop/src/locales/id/messages.json    |   8 +
 apps/desktop/src/locales/it/messages.json    |   8 +
 apps/desktop/src/locales/ja/messages.json    |   8 +
 apps/desktop/src/locales/ka/messages.json    |   8 +
 apps/desktop/src/locales/km/messages.json    |   8 +
 apps/desktop/src/locales/kn/messages.json    |   8 +
 apps/desktop/src/locales/ko/messages.json    |   8 +
 apps/desktop/src/locales/lt/messages.json    |   8 +
 apps/desktop/src/locales/lv/messages.json    |   8 +
 apps/desktop/src/locales/me/messages.json    |   8 +
 apps/desktop/src/locales/ml/messages.json    |   8 +
 apps/desktop/src/locales/mr/messages.json    |   8 +
 apps/desktop/src/locales/my/messages.json    |   8 +
 apps/desktop/src/locales/nb/messages.json    |   8 +
 apps/desktop/src/locales/ne/messages.json    |   8 +
 apps/desktop/src/locales/nl/messages.json    |   8 +
 apps/desktop/src/locales/nn/messages.json    |   8 +
 apps/desktop/src/locales/or/messages.json    |   8 +
 apps/desktop/src/locales/pl/messages.json    |   8 +
 apps/desktop/src/locales/pt_BR/messages.json |   8 +
 apps/desktop/src/locales/pt_PT/messages.json |   8 +
 apps/desktop/src/locales/ro/messages.json    |   8 +
 apps/desktop/src/locales/ru/messages.json    |  14 +-
 apps/desktop/src/locales/si/messages.json    |   8 +
 apps/desktop/src/locales/sk/messages.json    |   8 +
 apps/desktop/src/locales/sl/messages.json    |   8 +
 apps/desktop/src/locales/sr/messages.json    |  28 +-
 apps/desktop/src/locales/sv/messages.json    |  12 +-
 apps/desktop/src/locales/te/messages.json    |   8 +
 apps/desktop/src/locales/th/messages.json    |   8 +
 apps/desktop/src/locales/tr/messages.json    |   8 +
 apps/desktop/src/locales/uk/messages.json    |  18 +-
 apps/desktop/src/locales/vi/messages.json    | 530 ++++++++++---------
 apps/desktop/src/locales/zh_CN/messages.json |   8 +
 apps/desktop/src/locales/zh_TW/messages.json |   8 +
 63 files changed, 901 insertions(+), 397 deletions(-)

diff --git a/apps/desktop/src/locales/af/messages.json b/apps/desktop/src/locales/af/messages.json
index c6d764fc8f1..68f389a40a0 100644
--- a/apps/desktop/src/locales/af/messages.json
+++ b/apps/desktop/src/locales/af/messages.json
@@ -3566,6 +3566,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/ar/messages.json b/apps/desktop/src/locales/ar/messages.json
index 9a85cfbd8d1..7b2e220fa48 100644
--- a/apps/desktop/src/locales/ar/messages.json
+++ b/apps/desktop/src/locales/ar/messages.json
@@ -3566,6 +3566,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "نجاح"
   },
diff --git a/apps/desktop/src/locales/az/messages.json b/apps/desktop/src/locales/az/messages.json
index b0dcd4802db..6d6ce16b126 100644
--- a/apps/desktop/src/locales/az/messages.json
+++ b/apps/desktop/src/locales/az/messages.json
@@ -3566,6 +3566,14 @@
     "message": "Uyuşma aşkarlaması barədə daha çox",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Uğurlu"
   },
diff --git a/apps/desktop/src/locales/be/messages.json b/apps/desktop/src/locales/be/messages.json
index f32addab26d..ae3c8a0cc60 100644
--- a/apps/desktop/src/locales/be/messages.json
+++ b/apps/desktop/src/locales/be/messages.json
@@ -3566,6 +3566,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/bg/messages.json b/apps/desktop/src/locales/bg/messages.json
index 4c8bc325c3d..c67e1dfe829 100644
--- a/apps/desktop/src/locales/bg/messages.json
+++ b/apps/desktop/src/locales/bg/messages.json
@@ -3566,6 +3566,14 @@
     "message": "Повече относно разпознаването на съвпадения",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Разширени настройки",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Внимание",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Успех"
   },
diff --git a/apps/desktop/src/locales/bn/messages.json b/apps/desktop/src/locales/bn/messages.json
index 1079bdddb5c..6f5ac9de909 100644
--- a/apps/desktop/src/locales/bn/messages.json
+++ b/apps/desktop/src/locales/bn/messages.json
@@ -3566,6 +3566,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/bs/messages.json b/apps/desktop/src/locales/bs/messages.json
index 60891d8072d..4600780eda5 100644
--- a/apps/desktop/src/locales/bs/messages.json
+++ b/apps/desktop/src/locales/bs/messages.json
@@ -3566,6 +3566,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/ca/messages.json b/apps/desktop/src/locales/ca/messages.json
index 5b2baa4b58d..a28b3b3c6d4 100644
--- a/apps/desktop/src/locales/ca/messages.json
+++ b/apps/desktop/src/locales/ca/messages.json
@@ -3566,6 +3566,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Èxit"
   },
diff --git a/apps/desktop/src/locales/cs/messages.json b/apps/desktop/src/locales/cs/messages.json
index 07f7ffce4bb..8c725808a98 100644
--- a/apps/desktop/src/locales/cs/messages.json
+++ b/apps/desktop/src/locales/cs/messages.json
@@ -3566,6 +3566,14 @@
     "message": "Další informace o detekci shody",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Rozšířené volby",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Varování",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Úspěch"
   },
diff --git a/apps/desktop/src/locales/cy/messages.json b/apps/desktop/src/locales/cy/messages.json
index 95332eaccc0..3b3afba9415 100644
--- a/apps/desktop/src/locales/cy/messages.json
+++ b/apps/desktop/src/locales/cy/messages.json
@@ -3566,6 +3566,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/da/messages.json b/apps/desktop/src/locales/da/messages.json
index f6ac7c37fd3..cf60c7a04cb 100644
--- a/apps/desktop/src/locales/da/messages.json
+++ b/apps/desktop/src/locales/da/messages.json
@@ -3566,6 +3566,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Gennemført"
   },
diff --git a/apps/desktop/src/locales/de/messages.json b/apps/desktop/src/locales/de/messages.json
index 40bc896d5e1..6e2b172b97c 100644
--- a/apps/desktop/src/locales/de/messages.json
+++ b/apps/desktop/src/locales/de/messages.json
@@ -3566,6 +3566,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Erfolg"
   },
diff --git a/apps/desktop/src/locales/el/messages.json b/apps/desktop/src/locales/el/messages.json
index d40a5911d52..239351d406d 100644
--- a/apps/desktop/src/locales/el/messages.json
+++ b/apps/desktop/src/locales/el/messages.json
@@ -3566,6 +3566,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Επιτυχία"
   },
diff --git a/apps/desktop/src/locales/en_GB/messages.json b/apps/desktop/src/locales/en_GB/messages.json
index a8161286c80..57ada476677 100644
--- a/apps/desktop/src/locales/en_GB/messages.json
+++ b/apps/desktop/src/locales/en_GB/messages.json
@@ -3566,6 +3566,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/en_IN/messages.json b/apps/desktop/src/locales/en_IN/messages.json
index 9e6c8240e78..6c9d211bf13 100644
--- a/apps/desktop/src/locales/en_IN/messages.json
+++ b/apps/desktop/src/locales/en_IN/messages.json
@@ -3566,6 +3566,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/eo/messages.json b/apps/desktop/src/locales/eo/messages.json
index 8ffd5c53ec8..26e6aefb83c 100644
--- a/apps/desktop/src/locales/eo/messages.json
+++ b/apps/desktop/src/locales/eo/messages.json
@@ -3566,6 +3566,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Sukcesis"
   },
diff --git a/apps/desktop/src/locales/es/messages.json b/apps/desktop/src/locales/es/messages.json
index 864066c684b..eb02eca59ba 100644
--- a/apps/desktop/src/locales/es/messages.json
+++ b/apps/desktop/src/locales/es/messages.json
@@ -3566,6 +3566,14 @@
     "message": "Más sobre la detección de coincidencias",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Éxito"
   },
diff --git a/apps/desktop/src/locales/et/messages.json b/apps/desktop/src/locales/et/messages.json
index db364e08c9f..4b848d9ef5c 100644
--- a/apps/desktop/src/locales/et/messages.json
+++ b/apps/desktop/src/locales/et/messages.json
@@ -3566,6 +3566,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Tehtud"
   },
diff --git a/apps/desktop/src/locales/eu/messages.json b/apps/desktop/src/locales/eu/messages.json
index 8c53d0b0d12..aae6880294d 100644
--- a/apps/desktop/src/locales/eu/messages.json
+++ b/apps/desktop/src/locales/eu/messages.json
@@ -3566,6 +3566,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/fa/messages.json b/apps/desktop/src/locales/fa/messages.json
index 8346cf5098f..4b9696887be 100644
--- a/apps/desktop/src/locales/fa/messages.json
+++ b/apps/desktop/src/locales/fa/messages.json
@@ -3566,6 +3566,14 @@
     "message": "اطلاعات بیشتر درباره‌ی تشخیص تطابق",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "موفقیت آمیز بود"
   },
diff --git a/apps/desktop/src/locales/fi/messages.json b/apps/desktop/src/locales/fi/messages.json
index 3d4bd2f90c5..6c13f322aca 100644
--- a/apps/desktop/src/locales/fi/messages.json
+++ b/apps/desktop/src/locales/fi/messages.json
@@ -3566,6 +3566,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Onnistui"
   },
diff --git a/apps/desktop/src/locales/fil/messages.json b/apps/desktop/src/locales/fil/messages.json
index fb217ab2318..cfa39fd71f3 100644
--- a/apps/desktop/src/locales/fil/messages.json
+++ b/apps/desktop/src/locales/fil/messages.json
@@ -3566,6 +3566,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/fr/messages.json b/apps/desktop/src/locales/fr/messages.json
index 24cc75cbdc5..387c25ec44c 100644
--- a/apps/desktop/src/locales/fr/messages.json
+++ b/apps/desktop/src/locales/fr/messages.json
@@ -232,7 +232,7 @@
     "message": "La demande de clé SSH a expiré."
   },
   "enableSshAgent": {
-    "message": "Activez l'agent SSH"
+    "message": "Activer l'agent SSH"
   },
   "enableSshAgentDesc": {
     "message": "Activez l'agent SSH pour signer les demandes SSH directement depuis votre coffre Bitwarden."
@@ -241,22 +241,22 @@
     "message": "L'agent SSH est un service - destiné aux développeurs - qui vous permet de signer des demandes SSH directement depuis votre coffre Bitwarden."
   },
   "sshAgentPromptBehavior": {
-    "message": "Ask for authorization when using SSH agent"
+    "message": "Demander une autorisation lors de l’utilisation de l’agent SSH"
   },
   "sshAgentPromptBehaviorDesc": {
-    "message": "Choose how to handle SSH-agent authorization requests."
+    "message": "Choisir comment gérer les demandes d'autorisation de l'agent SSH."
   },
   "sshAgentPromptBehaviorHelp": {
-    "message": "Remember SSH authorizations"
+    "message": "Se souvenir des autorisations SSH"
   },
   "sshAgentPromptBehaviorAlways": {
-    "message": "Always"
+    "message": "Toujours"
   },
   "sshAgentPromptBehaviorNever": {
-    "message": "Never"
+    "message": "Jamais"
   },
   "sshAgentPromptBehaviorRememberUntilLock": {
-    "message": "Remember until vault is locked"
+    "message": "Se souvenir jusqu’au verrouillage du coffre"
   },
   "premiumRequired": {
     "message": "Premium requis"
@@ -443,10 +443,10 @@
     "message": "Ajouter un champ"
   },
   "editField": {
-    "message": "Edit field"
+    "message": "Modifier le champ"
   },
   "permanentlyDeleteAttachmentConfirmation": {
-    "message": "Are you sure you want to permanently delete this attachment?"
+    "message": "Êtes-vous sûr de vouloir supprimer définitivement cette pièce jointe ?"
   },
   "fieldType": {
     "message": "Type de champ"
@@ -458,19 +458,19 @@
     "message": "Ajouter"
   },
   "textHelpText": {
-    "message": "Utiliser des champs de texte pour les données comme les questions de sécurité"
+    "message": "Utilisez des champs de texte pour les données comme les questions de sécurité"
   },
   "hiddenHelpText": {
-    "message": "Utiliser des champs cachés pour des données sensibles comme un mot de passe"
+    "message": "Utilisez des champs cachés pour des données sensibles comme un mot de passe"
   },
   "checkBoxHelpText": {
-    "message": "Use checkboxes if you'd like to autofill a form's checkbox, like a remember email"
+    "message": "Utilisez les cases à cocher si vous souhaitez remplir automatiquement la case à cocher d'un formulaire, comme la case se souvenir du courriel"
   },
   "linkedHelpText": {
-    "message": "Use a linked field when you are experiencing autofill issues for a specific website."
+    "message": "Utilisez un champ lié lorsque vous rencontrez des problèmes de saisie automatique pour un site Web spécifique."
   },
   "linkedLabelHelpText": {
-    "message": "Enter the the field's html id, name, aria-label, or placeholder."
+    "message": "Entrer l'identifiant html, le nom, l'étiquette aria ou l'espace réservé du champ."
   },
   "folder": {
     "message": "Dossier"
@@ -695,7 +695,7 @@
     "message": "La taille maximale du fichier est de 500 Mo."
   },
   "legacyEncryptionUnsupported": {
-    "message": "Legacy encryption is no longer supported. Please contact support to recover your account."
+    "message": "L'ancien chiffrement n'est plus pris en charge. Veuillez contacter le support pour récupérer votre compte."
   },
   "editedFolder": {
     "message": "Dossier enregistré"
@@ -1717,10 +1717,10 @@
     "message": "Compte restreint"
   },
   "restrictCardTypeImport": {
-    "message": "Cannot import card item types"
+    "message": "Impossible d'importer les types de l'élément de la carte"
   },
   "restrictCardTypeImportDesc": {
-    "message": "A policy set by 1 or more organizations prevents you from importing cards to your vaults."
+    "message": "Une politique de sécurité définie par une organisation ou plus vous empêche d'importer des cartes dans vos coffres."
   },
   "filePasswordAndConfirmFilePasswordDoNotMatch": {
     "message": "Le \"Mot de passe du fichier\" et la \"Confirmation du mot de passe du fichier\" ne correspondent pas."
@@ -1970,10 +1970,10 @@
     }
   },
   "cardDetails": {
-    "message": "Card details"
+    "message": "Détails de la carte de paiement"
   },
   "cardBrandDetails": {
-    "message": "$BRAND$ details",
+    "message": "Détails de la carte $BRAND$",
     "placeholders": {
       "brand": {
         "content": "$1",
@@ -1982,32 +1982,32 @@
     }
   },
   "learnMoreAboutAuthenticators": {
-    "message": "Learn more about authenticators"
+    "message": "En savoir plus sur les authentificateurs"
   },
   "copyTOTP": {
-    "message": "Copy Authenticator key (TOTP)"
+    "message": "Copier la clé Authenticator (TOTP)"
   },
   "totpHelperTitle": {
-    "message": "Make 2-step verification seamless"
+    "message": "Rendre la vérification en deux étapes transparente"
   },
   "totpHelper": {
-    "message": "Bitwarden can store and fill 2-step verification codes. Copy and paste the key into this field."
+    "message": "Bitwarden peut stocker et remplir des codes de vérification en 2 étapes. Copiez et collez la clé dans ce champ."
   },
   "totpHelperWithCapture": {
-    "message": "Bitwarden can store and fill 2-step verification codes. Select the camera icon to take a screenshot of this website's authenticator QR code, or copy and paste the key into this field."
+    "message": "Bitwarden peut stocker et remplir des codes de vérification en 2 étapes. Sélectionnez l'icône caméra pour prendre une capture d'écran du code QR de l'authentificateur de ce site Web, ou copiez et collez la clé dans ce champ."
   },
   "premium": {
     "message": "Premium",
     "description": "Premium membership"
   },
   "freeOrgsCannotUseAttachments": {
-    "message": "Free organizations cannot use attachments"
+    "message": "Les organisations gratuites ne peuvent pas utiliser de pièces jointes"
   },
   "singleFieldNeedsAttention": {
-    "message": "1 field needs your attention."
+    "message": "1 champ nécessite votre attention."
   },
   "multipleFieldsNeedAttention": {
-    "message": "$COUNT$ fields need your attention.",
+    "message": "$COUNT$ champs nécessitent votre attention.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -2016,10 +2016,10 @@
     }
   },
   "cardExpiredTitle": {
-    "message": "Expired card"
+    "message": "Carte de paiement expirée"
   },
   "cardExpiredMessage": {
-    "message": "If you've renewed it, update the card's information"
+    "message": "Si vous l'avez renouvelée, mettez à jour les informations de la carte de paiement"
   },
   "verificationRequired": {
     "message": "Vérification requise",
@@ -2179,7 +2179,7 @@
     "message": "En raison d'une politique d'entreprise, il vous est interdit d'enregistrer des éléments dans votre coffre personnel. Sélectionnez une organisation dans l'option Propriété et choisissez parmi les collections disponibles."
   },
   "yourNewPasswordCannotBeTheSameAsYourCurrentPassword": {
-    "message": "Your new password cannot be the same as your current password."
+    "message": "Votre nouveau mot de passe ne peut être le même que votre mot de passe actuel."
   },
   "hintEqualsPassword": {
     "message": "Votre indice de mot de passe ne peut pas être identique à votre nom d'utilisateur."
@@ -2191,13 +2191,13 @@
     "message": "Une politique d'organisation a bloqué l'import d'éléments dans votre coffre personel."
   },
   "personalDetails": {
-    "message": "Personal details"
+    "message": "Détails personnels"
   },
   "identification": {
     "message": "Identification"
   },
   "contactInfo": {
-    "message": "Contact information"
+    "message": "Informations de contact"
   },
   "allSends": {
     "message": "Tous les Sends",
@@ -2393,7 +2393,7 @@
     "message": "Cette action est protégée. Pour continuer, veuillez saisir à nouveau votre mot de passe principal pour vérifier votre identité."
   },
   "masterPasswordSuccessfullySet": {
-    "message": "Master password successfully set"
+    "message": "Mot de passe principal défini avec succès"
   },
   "updatedMasterPassword": {
     "message": "Mot de passe principal mis à jour"
@@ -2408,13 +2408,13 @@
     "message": "Votre mot de passe principal ne répond pas aux exigences de politique de sécurité de cette organisation. Pour pouvoir accéder au coffre, vous devez mettre à jour votre mot de passe principal dès maintenant. En poursuivant, vous serez déconnecté de votre session actuelle et vous devrez vous reconnecter. Les sessions actives sur d'autres appareils peuver rester actives pendant encore une heure."
   },
   "changePasswordWarning": {
-    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+    "message": "Après avoir changé votre mot de passe, vous devrez vous connecter avec votre nouveau mot de passe. Les sessions actives sur d'autres appareils seront déconnectées dans un délai d'une heure."
   },
   "accountRecoveryUpdateMasterPasswordSubtitle": {
-    "message": "Change your master password to complete account recovery."
+    "message": "Changez votre mot de passe principal pour terminer la récupération du compte."
   },
   "updateMasterPasswordSubtitle": {
-    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+    "message": "Votre mot de passe principal ne répond pas aux exigences de cette organisation. Changez votre mot de passe principal pour continuer."
   },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Votre organisation a désactivé le chiffrement des appareils de confiance. Veuillez définir un mot de passe principal pour accéder à votre coffre."
@@ -2528,13 +2528,13 @@
     "message": "Mot de passe principal supprimé"
   },
   "removeMasterPasswordForOrganizationUserKeyConnector": {
-    "message": "A master password is no longer required for members of the following organization. Please confirm the domain below with your organization administrator."
+    "message": "Un mot de passe maître n'est plus requis pour les membres de l'organisation suivante. Veuillez confirmer le domaine ci-dessous avec l'administrateur de votre organisation."
   },
   "organizationName": {
-    "message": "Organization name"
+    "message": "Nom de l'organisation"
   },
   "keyConnectorDomain": {
-    "message": "Key Connector domain"
+    "message": "Domaine Key Connector"
   },
   "leaveOrganization": {
     "message": "Quitter l'organisation"
@@ -2597,7 +2597,7 @@
     }
   },
   "exportingIndividualVaultWithAttachmentsDescription": {
-    "message": "Only the individual vault items including attachments associated with $EMAIL$ will be exported. Organization vault items will not be included",
+    "message": "Seuls les éléments individuels du coffre et les pièces jointes associées à $EMAIL$ seront exportés. Les éléments du coffre de l'organisation ne seront pas inclus",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -2646,7 +2646,7 @@
     "message": "Générer un courriel"
   },
   "usernameGenerator": {
-    "message": "Username generator"
+    "message": "Générateur de nom d'utilisateur"
   },
   "generatePassword": {
     "message": "Générer un mot de passe"
@@ -2655,16 +2655,16 @@
     "message": "Générer une phrase de passe"
   },
   "passwordGenerated": {
-    "message": "Password generated"
+    "message": "Mot de passe généré"
   },
   "passphraseGenerated": {
-    "message": "Passphrase generated"
+    "message": "Phrase de passe générée"
   },
   "usernameGenerated": {
-    "message": "Username generated"
+    "message": "Nom d'utilisateur généré"
   },
   "emailGenerated": {
-    "message": "Email generated"
+    "message": "Courriel généré"
   },
   "spinboxBoundariesHint": {
     "message": "La valeur doit être comprise entre $MIN$ et $MAX$.",
@@ -2723,7 +2723,7 @@
     "message": "Utiliser ce mot de passe"
   },
   "useThisPassphrase": {
-    "message": "Use this passphrase"
+    "message": "Utiliser cette phrase de passe"
   },
   "useThisUsername": {
     "message": "Utiliser ce nom d'utilisateur"
@@ -3154,10 +3154,10 @@
     "message": "Demander l'approbation de l'administrateur"
   },
   "unableToCompleteLogin": {
-    "message": "Unable to complete login"
+    "message": "Impossible de compléter la connexion"
   },
   "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
-    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+    "message": "Vous devez vous connecter sur un appareil de confiance ou demander à votre administrateur de vous assigner un mot de passe."
   },
   "region": {
     "message": "Région"
@@ -3200,28 +3200,28 @@
     "message": "Appareil de confiance"
   },
   "trustOrganization": {
-    "message": "Trust organization"
+    "message": "Faire confiance à l'organisation"
   },
   "trust": {
-    "message": "Trust"
+    "message": "Faire confiance"
   },
   "doNotTrust": {
-    "message": "Do not trust"
+    "message": "Ne pas faire confiance"
   },
   "organizationNotTrusted": {
-    "message": "Organization is not trusted"
+    "message": "L'organisation n'est pas fiable"
   },
   "emergencyAccessTrustWarning": {
-    "message": "For the security of your account, only confirm if you have granted emergency access to this user and their fingerprint matches what is displayed in their account"
+    "message": "Pour la sécurité de votre compte, confirmez seulement si vous avez accordé l'accès d'urgence à cet utilisateur et que sa phrase d'empreinte correspond à ce qui est affiché dans son compte"
   },
   "orgTrustWarning": {
-    "message": "For the security of your account, only proceed if you are a member of this organization, have account recovery enabled, and the fingerprint displayed below matches the organization's fingerprint."
+    "message": "Pour la sécurité de votre compte, continuez seulement si vous êtes un membre de cette organisation, avez la récupération de compte activée et que la phrase d'empreinte correspond à celle de l'organisation."
   },
   "orgTrustWarning1": {
-    "message": "This organization has an Enterprise policy that will enroll you in account recovery. Enrollment will allow organization administrators to change your password. Only proceed if you recognize this organization and the fingerprint phrase displayed below matches the organization's fingerprint."
+    "message": "Cette organisation a une politique de sécurité Entreprise qui vous inscrira dans la récupération de votre compte. L'inscription permettra aux administrateurs de l'organisation de changer votre mot de passe. Continuez seulement si vous reconnaissez cette organisation et que la phrase d'empreinte affichée ci-dessous correspond à l'empreinte de l'organisation."
   },
   "trustUser": {
-    "message": "Trust user"
+    "message": "Faire confiance à l'utilisateur"
   },
   "inputRequired": {
     "message": "Saisie requise."
@@ -3394,7 +3394,7 @@
     "message": "Suivez les étapes ci-dessous afin de réussir à vous connecter."
   },
   "followTheStepsBelowToFinishLoggingInWithSecurityKey": {
-    "message": "Follow the steps below to finish logging in with your security key."
+    "message": "Suivez les étapes ci-dessous pour terminer la connexion avec votre clé de sécurité."
   },
   "launchDuo": {
     "message": "Lancer Duo dans le navigateur"
@@ -3551,21 +3551,29 @@
     "description": "Label indicating the most common import formats"
   },
   "uriMatchDefaultStrategyHint": {
-    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "message": "La détection de correspondance d'URI est la façon dont Bitwarden identifie les suggestions de remplissage automatique.",
     "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
   },
   "regExAdvancedOptionWarning": {
-    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "message": "« Expression régulière » est une option avancée avec un risque accru d'exposer les identifiants.",
     "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
   },
   "startsWithAdvancedOptionWarning": {
-    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "message": "« Commence par » est une option avancée avec un risque accru d'exposer les identifiants.",
     "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
   },
   "uriMatchWarningDialogLink": {
-    "message": "More about match detection",
+    "message": "En savoir plus sur la détection de correspondance",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Succès"
   },
@@ -3637,14 +3645,14 @@
     "message": "Aucun port libre n’a pu être trouvé pour la connexion SSO."
   },
   "securePasswordGenerated": {
-    "message": "Secure password generated! Don't forget to also update your password on the website."
+    "message": "Mot de passe sécurisé généré ! N'oubliez pas aussi de mettre à jour votre mot de passe sur le site Web."
   },
   "useGeneratorHelpTextPartOne": {
-    "message": "Use the generator",
+    "message": "Utiliser le générateur",
     "description": "This will be used as part of a larger sentence, broken up to include the generator icon. The full sentence will read 'Use the generator [GENERATOR_ICON] to create a strong unique password'"
   },
   "useGeneratorHelpTextPartTwo": {
-    "message": "to create a strong unique password",
+    "message": "pour créer un mot de passe fort unique",
     "description": "This will be used as part of a larger sentence, broken up to include the generator icon. The full sentence will read 'Use the generator [GENERATOR_ICON] to create a strong unique password'"
   },
   "biometricsStatusHelptextUnlockNeeded": {
@@ -3672,25 +3680,25 @@
     "message": "Le déverrouillage par biométrie n'est pas disponible actuellement pour une raison inconnue."
   },
   "itemDetails": {
-    "message": "Item details"
+    "message": "Détails de l’élément"
   },
   "itemName": {
-    "message": "Item name"
+    "message": "Nom de l’élément"
   },
   "loginCredentials": {
-    "message": "Login credentials"
+    "message": "Identifiants de connexion"
   },
   "additionalOptions": {
-    "message": "Additional options"
+    "message": "Options supplémentaires"
   },
   "itemHistory": {
-    "message": "Item history"
+    "message": "Historique de l’élément"
   },
   "lastEdited": {
-    "message": "Last edited"
+    "message": "Dernière modification"
   },
   "upload": {
-    "message": "Upload"
+    "message": "Téléverser"
   },
   "authorize": {
     "message": "Autoriser"
@@ -3762,7 +3770,7 @@
     "message": "Changer le mot de passe à risque"
   },
   "cannotRemoveViewOnlyCollections": {
-    "message": "You cannot remove collections with View only permissions: $COLLECTIONS$",
+    "message": "Vous ne pouvez pas supprimer des collections avec les autorisations d'affichage uniquement : $COLLECTIONS$",
     "placeholders": {
       "collections": {
         "content": "$1",
@@ -3771,114 +3779,114 @@
     }
   },
   "move": {
-    "message": "Move"
+    "message": "Déplacer"
   },
   "newFolder": {
-    "message": "New folder"
+    "message": "Nouveau dossier"
   },
   "folderName": {
-    "message": "Folder Name"
+    "message": "Nom de dossier"
   },
   "folderHintText": {
-    "message": "Nest a folder by adding the parent folder's name followed by a “/”. Example: Social/Forums"
+    "message": "Imbriquer un dossier en ajoutant le nom du dossier parent suivi d'un « / ». Exemple : Sociaux/Forums"
   },
   "sendsTitleNoItems": {
-    "message": "Send sensitive information safely",
+    "message": "Envoyez des informations sensibles, en toute sécurité",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendsBodyNoItems": {
-    "message": "Share files and data securely with anyone, on any platform. Your information will remain end-to-end encrypted while limiting exposure.",
+    "message": "Partagez des fichiers et des données en toute sécurité avec n'importe qui, sur n'importe quelle plateforme. Vos informations resteront chiffrées de bout en bout tout en limitant l'exposition.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "generatorNudgeTitle": {
-    "message": "Quickly create passwords"
+    "message": "Créer rapidement des mots de passe"
   },
   "generatorNudgeBodyOne": {
-    "message": "Easily create strong and unique passwords by clicking on",
+    "message": "Créez facilement des mots de passe forts et uniques en cliquant sur",
     "description": "Two part message",
     "example": "Easily create strong and unique passwords by clicking on {icon} to help you keep your logins secure."
   },
   "generatorNudgeBodyTwo": {
-    "message": "to help you keep your logins secure.",
+    "message": "pour vous aider à garder vos identifiants sécuritaires.",
     "description": "Two part message",
     "example": "Easily create strong and unique passwords by clicking on {icon} to help you keep your logins secure."
   },
   "generatorNudgeBodyAria": {
-    "message": "Easily create strong and unique passwords by clicking on the Generate password button to help you keep your logins secure.",
+    "message": "Créez facilement des mots de passe forts et uniques en cliquant sur le bouton Générer un mot de passe pour vous aider à garder vos identifiants sécuritaires.",
     "description": "Aria label for the body content of the generator nudge"
   },
   "newLoginNudgeTitle": {
-    "message": "Save time with autofill"
+    "message": "Gagnez du temps avec le remplissage automatique"
   },
   "newLoginNudgeBodyOne": {
-    "message": "Include a",
+    "message": "Inclure un",
     "description": "This is in multiple parts to allow for bold text in the middle of the sentence.",
     "example": "Include a Website so this login appears as an autofill suggestion."
   },
   "newLoginNudgeBodyBold": {
-    "message": "Website",
+    "message": "site web",
     "description": "This is in multiple parts to allow for bold text in the middle of the sentence.",
     "example": "Include a Website so this login appears as an autofill suggestion."
   },
   "newLoginNudgeBodyTwo": {
-    "message": "so this login appears as an autofill suggestion.",
+    "message": "pour que cet identifiant apparaisse comme une suggestion de remplissage automatique.",
     "description": "This is in multiple parts to allow for bold text in the middle of the sentence.",
     "example": "Include a Website so this login appears as an autofill suggestion."
   },
   "newCardNudgeTitle": {
-    "message": "Seamless online checkout"
+    "message": "Paiement en ligne transparent"
   },
   "newCardNudgeBody": {
-    "message": "With cards, easily autofill payment forms securely and accurately."
+    "message": "Avec les cartes, remplissez facilement les formulaires de paiement en toute sécurité et avec précision."
   },
   "newIdentityNudgeTitle": {
-    "message": "Simplify creating accounts"
+    "message": "Simplifier la création de comptes"
   },
   "newIdentityNudgeBody": {
-    "message": "With identities, quickly autofill long registration or contact forms."
+    "message": "Avec les identités, remplissez rapidement de longs formulaires d'inscription ou de contact."
   },
   "newNoteNudgeTitle": {
-    "message": "Keep your sensitive data safe"
+    "message": "Gardez vos données sensibles en sécurité"
   },
   "newNoteNudgeBody": {
-    "message": "With notes, securely store sensitive data like banking or insurance details."
+    "message": "Avec les notes, conservez en toute sécurité des données sensibles comme les informations bancaires ou d'assurances."
   },
   "newSshNudgeTitle": {
-    "message": "Developer-friendly SSH access"
+    "message": "Accès SSH convivial pour les développeurs"
   },
   "newSshNudgeBodyOne": {
-    "message": "Store your keys and connect with the SSH agent for fast, encrypted authentication.",
+    "message": "Enregistrez vos clés et connectez-vous avec l’agent SSH pour une authentification rapide et chiffrée.",
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
   "newSshNudgeBodyTwo": {
-    "message": "Learn more about SSH agent",
+    "message": "En savoir plus sur l’agent SSH",
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
   "assignToCollections": {
-    "message": "Assign to collections"
+    "message": "Assigner aux collections"
   },
   "assignToTheseCollections": {
-    "message": "Assign to these collections"
+    "message": "Assigner à ces collections"
   },
   "bulkCollectionAssignmentDialogDescriptionSingular": {
-    "message": "Only organization members with access to these collections will be able to see the item."
+    "message": "Seuls les membres de l'organisation ayant accès à ces collections pourront voir l'élément."
   },
   "bulkCollectionAssignmentDialogDescriptionPlural": {
-    "message": "Only organization members with access to these collections will be able to see the items."
+    "message": "Seuls les membres de l'organisation ayant accès à ces collections pourront voir les éléments."
   },
   "noCollectionsAssigned": {
-    "message": "No collections have been assigned"
+    "message": "Aucune collection n'a été assignée"
   },
   "assign": {
-    "message": "Assign"
+    "message": "Assigner"
   },
   "bulkCollectionAssignmentDialogDescription": {
-    "message": "Only organization members with access to these collections will be able to see the items."
+    "message": "Seuls les membres de l'organisation ayant accès à ces collections pourront voir les éléments."
   },
   "bulkCollectionAssignmentWarning": {
-    "message": "You have selected $TOTAL_COUNT$ items. You cannot update $READONLY_COUNT$ of the items because you do not have edit permissions.",
+    "message": "Vous avez sélectionné $TOTAL_COUNT$ éléments. Vous ne pouvez pas mettre à jour $READONLY_COUNT$ de ces éléments parce que vous n'avez pas les autorisations pour les éditer.",
     "placeholders": {
       "total_count": {
         "content": "$1",
@@ -3890,10 +3898,10 @@
     }
   },
   "selectCollectionsToAssign": {
-    "message": "Select collections to assign"
+    "message": "Sélectionnez les collections à assigner"
   },
   "personalItemsTransferWarning": {
-    "message": "$PERSONAL_ITEMS_COUNT$ will be permanently transferred to the selected organization. You will no longer own these items.",
+    "message": "$PERSONAL_ITEMS_COUNT$ seront transférés à l'organisation sélectionnée de façon permanente. Vous ne serez plus propriétaire de ces éléments.",
     "placeholders": {
       "personal_items_count": {
         "content": "$1",
@@ -3902,7 +3910,7 @@
     }
   },
   "personalItemsWithOrgTransferWarning": {
-    "message": "$PERSONAL_ITEMS_COUNT$ will be permanently transferred to $ORG$. You will no longer own these items.",
+    "message": "$PERSONAL_ITEMS_COUNT$ seront transférés à $ORG$ de façon permanente. Vous ne serez plus propriétaire de ces éléments.",
     "placeholders": {
       "personal_items_count": {
         "content": "$1",
@@ -3915,10 +3923,10 @@
     }
   },
   "personalItemTransferWarningSingular": {
-    "message": "1 item will be permanently transferred to the selected organization. You will no longer own this item."
+    "message": "Un élément sera transféré définitivement à l'organisation sélectionnée. Vous ne serez plus le propriétaire de cet élément."
   },
   "personalItemWithOrgTransferWarningSingular": {
-    "message": "1 item will be permanently transferred to $ORG$. You will no longer own this item.",
+    "message": "Un élément sera transféré définitivement à $ORG$. Vous ne serez plus le propriétaire de cet élément.",
     "placeholders": {
       "org": {
         "content": "$1",
@@ -3927,13 +3935,13 @@
     }
   },
   "successfullyAssignedCollections": {
-    "message": "Successfully assigned collections"
+    "message": "Collections assignées avec succès"
   },
   "nothingSelected": {
-    "message": "You have not selected anything."
+    "message": "Vous n'avez rien sélectionné."
   },
   "itemsMovedToOrg": {
-    "message": "Items moved to $ORGNAME$",
+    "message": "Éléments déplacés vers $ORGNAME$",
     "placeholders": {
       "orgname": {
         "content": "$1",
@@ -3942,7 +3950,7 @@
     }
   },
   "itemMovedToOrg": {
-    "message": "Item moved to $ORGNAME$",
+    "message": "Élément déplacé vers $ORGNAME$",
     "placeholders": {
       "orgname": {
         "content": "$1",
@@ -3951,7 +3959,7 @@
     }
   },
   "movedItemsToOrg": {
-    "message": "Selected items moved to $ORGNAME$",
+    "message": "Les éléments sélectionnés ont été déplacés vers $ORGNAME$",
     "placeholders": {
       "orgname": {
         "content": "$1",
diff --git a/apps/desktop/src/locales/gl/messages.json b/apps/desktop/src/locales/gl/messages.json
index 88a353cbe48..304d07ee3cd 100644
--- a/apps/desktop/src/locales/gl/messages.json
+++ b/apps/desktop/src/locales/gl/messages.json
@@ -3566,6 +3566,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/he/messages.json b/apps/desktop/src/locales/he/messages.json
index 267194ae01e..11a736eeaaa 100644
--- a/apps/desktop/src/locales/he/messages.json
+++ b/apps/desktop/src/locales/he/messages.json
@@ -3566,6 +3566,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "הצלחה"
   },
diff --git a/apps/desktop/src/locales/hi/messages.json b/apps/desktop/src/locales/hi/messages.json
index 1dfecdd4c8d..3d3a2c4d701 100644
--- a/apps/desktop/src/locales/hi/messages.json
+++ b/apps/desktop/src/locales/hi/messages.json
@@ -3566,6 +3566,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/hr/messages.json b/apps/desktop/src/locales/hr/messages.json
index df1a5fcc967..699e4ad347d 100644
--- a/apps/desktop/src/locales/hr/messages.json
+++ b/apps/desktop/src/locales/hr/messages.json
@@ -3566,6 +3566,14 @@
     "message": "Više o otkrivanju podudaranja",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Napredne mogućnosti",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Upozorenje",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Uspješno"
   },
diff --git a/apps/desktop/src/locales/hu/messages.json b/apps/desktop/src/locales/hu/messages.json
index 30e0fe37ad4..cd30ee6edaa 100644
--- a/apps/desktop/src/locales/hu/messages.json
+++ b/apps/desktop/src/locales/hu/messages.json
@@ -2408,13 +2408,13 @@
     "message": "A mesterjelszó nem felel meg egy vagy több szervezeti szabályzatnak. A széf eléréséhez frissíteni kell a meszerjelszót. A továbblépés kijelentkeztet az aktuális munkamenetből és újra be kell jelentkezni. A többi eszközön lévő aktív munkamenetek akár egy óráig is aktívak maradhatnak."
   },
   "changePasswordWarning": {
-    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+    "message": "A jelszó megváltoztatása után be kell jelentkezni az új jelszóval. Az aktív munkamenetek más eszközökön egy órán belül kijelentkeznek."
   },
   "accountRecoveryUpdateMasterPasswordSubtitle": {
-    "message": "Change your master password to complete account recovery."
+    "message": "Módosítsuk a mesterjelszót a fiók helyreállításának befejezéséhez."
   },
   "updateMasterPasswordSubtitle": {
-    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+    "message": "A mesterjelszó nem felel meg a szervezet követelményeinek. Módosítsuk a mesterjelszót a folytatáshoz."
   },
   "tdeDisabledMasterPasswordRequired": {
     "message": "A szervezete letiltotta a megbízható eszközök titkosítását. Állítsunk be egy mesterjelszót a széf eléréséhez."
@@ -3566,6 +3566,14 @@
     "message": "Bővebben az egyezés felismerésről",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Haladó opciók",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Figyelmeztetés",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Sikeres"
   },
diff --git a/apps/desktop/src/locales/id/messages.json b/apps/desktop/src/locales/id/messages.json
index b4b0a9c3cd0..0634ad80722 100644
--- a/apps/desktop/src/locales/id/messages.json
+++ b/apps/desktop/src/locales/id/messages.json
@@ -3566,6 +3566,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/it/messages.json b/apps/desktop/src/locales/it/messages.json
index 325e754e6a5..0476024f926 100644
--- a/apps/desktop/src/locales/it/messages.json
+++ b/apps/desktop/src/locales/it/messages.json
@@ -3566,6 +3566,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Successo"
   },
diff --git a/apps/desktop/src/locales/ja/messages.json b/apps/desktop/src/locales/ja/messages.json
index 0028301c36f..7b8eddc693b 100644
--- a/apps/desktop/src/locales/ja/messages.json
+++ b/apps/desktop/src/locales/ja/messages.json
@@ -3566,6 +3566,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "成功"
   },
diff --git a/apps/desktop/src/locales/ka/messages.json b/apps/desktop/src/locales/ka/messages.json
index 9bbbe29c865..7b98da76026 100644
--- a/apps/desktop/src/locales/ka/messages.json
+++ b/apps/desktop/src/locales/ka/messages.json
@@ -3566,6 +3566,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "წარმატება"
   },
diff --git a/apps/desktop/src/locales/km/messages.json b/apps/desktop/src/locales/km/messages.json
index 88a353cbe48..304d07ee3cd 100644
--- a/apps/desktop/src/locales/km/messages.json
+++ b/apps/desktop/src/locales/km/messages.json
@@ -3566,6 +3566,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/kn/messages.json b/apps/desktop/src/locales/kn/messages.json
index 8b8e94c8285..8a1798ce386 100644
--- a/apps/desktop/src/locales/kn/messages.json
+++ b/apps/desktop/src/locales/kn/messages.json
@@ -3566,6 +3566,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/ko/messages.json b/apps/desktop/src/locales/ko/messages.json
index 078f420ffe4..9127f4f76a9 100644
--- a/apps/desktop/src/locales/ko/messages.json
+++ b/apps/desktop/src/locales/ko/messages.json
@@ -3566,6 +3566,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/lt/messages.json b/apps/desktop/src/locales/lt/messages.json
index 40e0ca70659..84e5a9d36a6 100644
--- a/apps/desktop/src/locales/lt/messages.json
+++ b/apps/desktop/src/locales/lt/messages.json
@@ -3566,6 +3566,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/lv/messages.json b/apps/desktop/src/locales/lv/messages.json
index 6f7fce491c3..d1bf2382e58 100644
--- a/apps/desktop/src/locales/lv/messages.json
+++ b/apps/desktop/src/locales/lv/messages.json
@@ -3566,6 +3566,14 @@
     "message": "Vairāk par atbilstības noteikšanu",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Papildu iespējas",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Brīdinājums",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Izdevās"
   },
diff --git a/apps/desktop/src/locales/me/messages.json b/apps/desktop/src/locales/me/messages.json
index 50dd04491a4..98794eed175 100644
--- a/apps/desktop/src/locales/me/messages.json
+++ b/apps/desktop/src/locales/me/messages.json
@@ -3566,6 +3566,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/ml/messages.json b/apps/desktop/src/locales/ml/messages.json
index 7e717442d88..9cb27605db5 100644
--- a/apps/desktop/src/locales/ml/messages.json
+++ b/apps/desktop/src/locales/ml/messages.json
@@ -3566,6 +3566,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/mr/messages.json b/apps/desktop/src/locales/mr/messages.json
index 88a353cbe48..304d07ee3cd 100644
--- a/apps/desktop/src/locales/mr/messages.json
+++ b/apps/desktop/src/locales/mr/messages.json
@@ -3566,6 +3566,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/my/messages.json b/apps/desktop/src/locales/my/messages.json
index 4339e8630a7..4629ba25d93 100644
--- a/apps/desktop/src/locales/my/messages.json
+++ b/apps/desktop/src/locales/my/messages.json
@@ -3566,6 +3566,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/nb/messages.json b/apps/desktop/src/locales/nb/messages.json
index ef6058d4f67..53125c8e290 100644
--- a/apps/desktop/src/locales/nb/messages.json
+++ b/apps/desktop/src/locales/nb/messages.json
@@ -3566,6 +3566,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Suksess"
   },
diff --git a/apps/desktop/src/locales/ne/messages.json b/apps/desktop/src/locales/ne/messages.json
index cf72dbe68ef..8ea29998406 100644
--- a/apps/desktop/src/locales/ne/messages.json
+++ b/apps/desktop/src/locales/ne/messages.json
@@ -3566,6 +3566,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/nl/messages.json b/apps/desktop/src/locales/nl/messages.json
index efcdf21c3ef..90669dd1c93 100644
--- a/apps/desktop/src/locales/nl/messages.json
+++ b/apps/desktop/src/locales/nl/messages.json
@@ -3566,6 +3566,14 @@
     "message": "Lees meer over overeenkomstdetectie",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Geavanceerde opties",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Waarschuwing",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Succes"
   },
diff --git a/apps/desktop/src/locales/nn/messages.json b/apps/desktop/src/locales/nn/messages.json
index 894346b38b1..af6a64710a7 100644
--- a/apps/desktop/src/locales/nn/messages.json
+++ b/apps/desktop/src/locales/nn/messages.json
@@ -3566,6 +3566,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/or/messages.json b/apps/desktop/src/locales/or/messages.json
index 58499570617..3ce27e673b7 100644
--- a/apps/desktop/src/locales/or/messages.json
+++ b/apps/desktop/src/locales/or/messages.json
@@ -3566,6 +3566,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/pl/messages.json b/apps/desktop/src/locales/pl/messages.json
index 493be7a41b7..b09bc908c47 100644
--- a/apps/desktop/src/locales/pl/messages.json
+++ b/apps/desktop/src/locales/pl/messages.json
@@ -3566,6 +3566,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Sukces"
   },
diff --git a/apps/desktop/src/locales/pt_BR/messages.json b/apps/desktop/src/locales/pt_BR/messages.json
index 39123f8c1e7..ab65e0a4912 100644
--- a/apps/desktop/src/locales/pt_BR/messages.json
+++ b/apps/desktop/src/locales/pt_BR/messages.json
@@ -3566,6 +3566,14 @@
     "message": "Mais sobre detecção de correspondências",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Opções avançadas",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Aviso",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Sucesso"
   },
diff --git a/apps/desktop/src/locales/pt_PT/messages.json b/apps/desktop/src/locales/pt_PT/messages.json
index e49c14e6f80..2b5d7e00f61 100644
--- a/apps/desktop/src/locales/pt_PT/messages.json
+++ b/apps/desktop/src/locales/pt_PT/messages.json
@@ -3566,6 +3566,14 @@
     "message": "Mais informações sobre a deteção de correspondências",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Opções avançadas",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Aviso",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Com sucesso"
   },
diff --git a/apps/desktop/src/locales/ro/messages.json b/apps/desktop/src/locales/ro/messages.json
index 8e8db2d8deb..e3608836d26 100644
--- a/apps/desktop/src/locales/ro/messages.json
+++ b/apps/desktop/src/locales/ro/messages.json
@@ -3566,6 +3566,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/ru/messages.json b/apps/desktop/src/locales/ru/messages.json
index eb6926d4d6f..8991d3dacb0 100644
--- a/apps/desktop/src/locales/ru/messages.json
+++ b/apps/desktop/src/locales/ru/messages.json
@@ -514,7 +514,7 @@
     "message": "Элемент добавлен"
   },
   "editedItem": {
-    "message": "Элемент изменен"
+    "message": "Элемент сохранен"
   },
   "deleteItem": {
     "message": "Удалить элемент"
@@ -938,7 +938,7 @@
     "message": "Вставьте ключ безопасности в USB-порт компьютера. Если у ключа есть кнопка, нажмите ее."
   },
   "recoveryCodeDesc": {
-    "message": "Потеряли доступ ко всем вариантам двухэтапной аутентификации? Используйте код восстановления, чтобы отключить двухэтапную аутентификацию для вашей учетной записи."
+    "message": "Потеряли доступ ко всем вариантам двухэтапной аутентификации? Используйте код восстановления, чтобы отключить двухэтапную аутентификацию для вашего аккаунта."
   },
   "recoveryCodeTitle": {
     "message": "Код восстановления"
@@ -977,7 +977,7 @@
     "message": "FIDO2 WebAuthn"
   },
   "webAuthnDesc": {
-    "message": "Используйте любой ключ безопасности с поддержкой WebAuthn для доступа к вашей учетной записи."
+    "message": "Используйте любой ключ безопасности с поддержкой WebAuthn для доступа к вашему аккаунту."
   },
   "emailTitle": {
     "message": "Email"
@@ -3566,6 +3566,14 @@
     "message": "Подробнее об обнаружении совпадений",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Расширенные настройки",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Предупреждение",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Успешно"
   },
diff --git a/apps/desktop/src/locales/si/messages.json b/apps/desktop/src/locales/si/messages.json
index 566de7ec0fe..b50d0252f61 100644
--- a/apps/desktop/src/locales/si/messages.json
+++ b/apps/desktop/src/locales/si/messages.json
@@ -3566,6 +3566,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/sk/messages.json b/apps/desktop/src/locales/sk/messages.json
index 4894acd83cc..383e35f2826 100644
--- a/apps/desktop/src/locales/sk/messages.json
+++ b/apps/desktop/src/locales/sk/messages.json
@@ -3566,6 +3566,14 @@
     "message": "Viac informácií o zisťovaní zhody",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Rozšírené možnosti",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Upozornenie",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Úspech"
   },
diff --git a/apps/desktop/src/locales/sl/messages.json b/apps/desktop/src/locales/sl/messages.json
index 9fa18a02bbf..db25a4623ee 100644
--- a/apps/desktop/src/locales/sl/messages.json
+++ b/apps/desktop/src/locales/sl/messages.json
@@ -3566,6 +3566,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/sr/messages.json b/apps/desktop/src/locales/sr/messages.json
index 565359d0fd9..514276fb136 100644
--- a/apps/desktop/src/locales/sr/messages.json
+++ b/apps/desktop/src/locales/sr/messages.json
@@ -2393,7 +2393,7 @@
     "message": "Ова акција је заштићена. Да бисте наставили, поново унесите своју главну лозинку да бисте проверили идентитет."
   },
   "masterPasswordSuccessfullySet": {
-    "message": "Master password successfully set"
+    "message": "Главна лозинка успешно постављена"
   },
   "updatedMasterPassword": {
     "message": "Главна лозинка ажурирана"
@@ -2408,13 +2408,13 @@
     "message": "Ваша главна лозинка не испуњава једну или више смерница ваше организације. Да бисте приступили сефу, морате одмах да ажурирате главну лозинку. Ако наставите, одјавићете се са ваше тренутне сесије, што захтева да се поново пријавите. Активне сесије на другим уређајима могу да остану активне до један сат."
   },
   "changePasswordWarning": {
-    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+    "message": "Након промене лозинке, мораћете да се пријавите са новом лозинком. Активне сесије на другим уређајима биће одјављене у року од једног сата."
   },
   "accountRecoveryUpdateMasterPasswordSubtitle": {
-    "message": "Change your master password to complete account recovery."
+    "message": "Промените главну лозинку да бисте завршили опоравак налога."
   },
   "updateMasterPasswordSubtitle": {
-    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+    "message": "Ваша главна лозинка не испуњава захтеве ове организације. Промените главну лозинку да бисте наставили."
   },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Ваша организација је онемогућила шифровање поузданог уређаја. Поставите главну лозинку за приступ вашем трезору."
@@ -3154,10 +3154,10 @@
     "message": "Затражити одобрење администратора"
   },
   "unableToCompleteLogin": {
-    "message": "Unable to complete login"
+    "message": "Није могуће завршити пријаву"
   },
   "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
-    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+    "message": "Потребно је да се пријавите на поузданом уређају или да замолите администратора да вам додели лозинку."
   },
   "region": {
     "message": "Регион"
@@ -3551,21 +3551,29 @@
     "description": "Label indicating the most common import formats"
   },
   "uriMatchDefaultStrategyHint": {
-    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "message": "Детекција подударања URI-ја је начин на који Bitwarden идентификује предлоге за ауто-попуњавање.",
     "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
   },
   "regExAdvancedOptionWarning": {
-    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "message": "„Регуларни израз“ је напредна опција са повећаним ризиком од откривања акредитива.",
     "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
   },
   "startsWithAdvancedOptionWarning": {
-    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "message": "„Почиње са“ је напредна опција са повећаним ризиком од откривања акредитива.",
     "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
   },
   "uriMatchWarningDialogLink": {
-    "message": "More about match detection",
+    "message": "Више о откривању подударања",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Напредне опције",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Упозорење",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Успех"
   },
diff --git a/apps/desktop/src/locales/sv/messages.json b/apps/desktop/src/locales/sv/messages.json
index 2aabe6be5d7..20140cb7ae0 100644
--- a/apps/desktop/src/locales/sv/messages.json
+++ b/apps/desktop/src/locales/sv/messages.json
@@ -1818,7 +1818,7 @@
     "message": "Be om Windows Hello vid appstart"
   },
   "autoPromptPolkit": {
-    "message": "Be om systemautentisering vid lansering"
+    "message": "Be om systemautentisering vid start"
   },
   "autoPromptTouchId": {
     "message": "Be om Touch ID vid appstart"
@@ -3103,7 +3103,7 @@
     "message": "Viktigt:"
   },
   "accessing": {
-    "message": "Tillgång"
+    "message": "Åtkomst via"
   },
   "accessTokenUnableToBeDecrypted": {
     "message": "Du har blivit utloggad eftersom din access token inte kunde dekrypteras. Vänligen logga in igen för att lösa problemet."
@@ -3566,6 +3566,14 @@
     "message": "Mer om matchdetektering",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Avancerade alternativ",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Varning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Lyckades"
   },
diff --git a/apps/desktop/src/locales/te/messages.json b/apps/desktop/src/locales/te/messages.json
index 88a353cbe48..304d07ee3cd 100644
--- a/apps/desktop/src/locales/te/messages.json
+++ b/apps/desktop/src/locales/te/messages.json
@@ -3566,6 +3566,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/th/messages.json b/apps/desktop/src/locales/th/messages.json
index 9b4513403b6..678346257f2 100644
--- a/apps/desktop/src/locales/th/messages.json
+++ b/apps/desktop/src/locales/th/messages.json
@@ -3566,6 +3566,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Success"
   },
diff --git a/apps/desktop/src/locales/tr/messages.json b/apps/desktop/src/locales/tr/messages.json
index 82656dc78ba..255f03025d0 100644
--- a/apps/desktop/src/locales/tr/messages.json
+++ b/apps/desktop/src/locales/tr/messages.json
@@ -3566,6 +3566,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Gelişmiş seçenekler",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Uyarı",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Başarılı"
   },
diff --git a/apps/desktop/src/locales/uk/messages.json b/apps/desktop/src/locales/uk/messages.json
index 74d1350b2fe..649b3af622f 100644
--- a/apps/desktop/src/locales/uk/messages.json
+++ b/apps/desktop/src/locales/uk/messages.json
@@ -2408,13 +2408,13 @@
     "message": "Ваш головний пароль не відповідає одній або більше політикам вашої організації. Щоб отримати доступ до сховища, вам необхідно оновити свій головний пароль зараз. Продовживши, ви вийдете з поточного сеансу, після чого потрібно буде повторно виконати вхід. Сеанси на інших пристроях можуть залишатися активними протягом однієї години."
   },
   "changePasswordWarning": {
-    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+    "message": "Після зміни пароля потрібно буде ввійти в систему з новим паролем. Активні сеанси на інших пристроях буде завершено протягом години."
   },
   "accountRecoveryUpdateMasterPasswordSubtitle": {
-    "message": "Change your master password to complete account recovery."
+    "message": "Змініть свій головний пароль, щоб завершити відновлення облікового запису."
   },
   "updateMasterPasswordSubtitle": {
-    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+    "message": "Ваш головний пароль не відповідає вимогам цієї організації. Змініть свій головний пароль, щоб продовжити."
   },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Ваша організація вимкнула шифрування довірених пристроїв. Встановіть головний пароль для доступу до сховища."
@@ -3154,10 +3154,10 @@
     "message": "Запит підтвердження адміністратора"
   },
   "unableToCompleteLogin": {
-    "message": "Unable to complete login"
+    "message": "Не вдалося завершити вхід"
   },
   "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
-    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+    "message": "Ви повинні ввійти до системи на довіреному пристрої або попросити адміністратора призначити вам пароль."
   },
   "region": {
     "message": "Регіон"
@@ -3566,6 +3566,14 @@
     "message": "Докладніше про виявлення збігів",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Додаткові налаштування",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Попередження",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Успішно"
   },
diff --git a/apps/desktop/src/locales/vi/messages.json b/apps/desktop/src/locales/vi/messages.json
index c1c6f4dace8..42246285f80 100644
--- a/apps/desktop/src/locales/vi/messages.json
+++ b/apps/desktop/src/locales/vi/messages.json
@@ -98,7 +98,7 @@
     "message": "Đường dẫn mới"
   },
   "username": {
-    "message": "Tên người dùng"
+    "message": "Tên đăng nhập"
   },
   "password": {
     "message": "Mật khẩu"
@@ -132,10 +132,10 @@
     "description": "Copy value to clipboard"
   },
   "minimizeOnCopyToClipboard": {
-    "message": "Thu nhỏ sau khi sao chép vào bộ nhớ tạm"
+    "message": "Thu nhỏ sau khi sao chép vào bảng nhớ tạm"
   },
   "minimizeOnCopyToClipboardDesc": {
-    "message": "Thu nhỏ ứng dụng sau khi sao chép thông tin của một mục vào bộ nhớ tạm."
+    "message": "Thu nhỏ ứng dụng sau khi sao chép thông tin của một mục vào bảng nhớ tạm."
   },
   "toggleVisibility": {
     "message": "Bật/tắt khả năng hiển thị"
@@ -244,10 +244,10 @@
     "message": "Yêu cầu cấp quyền khi sử dụng SSH agent"
   },
   "sshAgentPromptBehaviorDesc": {
-    "message": "Chọn cách xử lý các yêu cầu cấp quyền của SSH-agent."
+    "message": "Chọn cách xử lý yêu cầu ủy quyền SSH-agent."
   },
   "sshAgentPromptBehaviorHelp": {
-    "message": "Ghi nhớ các quyền SSH"
+    "message": "Nhớ các ủy quyền SSH"
   },
   "sshAgentPromptBehaviorAlways": {
     "message": "Luôn luôn"
@@ -256,13 +256,13 @@
     "message": "Không bao giờ"
   },
   "sshAgentPromptBehaviorRememberUntilLock": {
-    "message": "Ghi nhớ cho đến khi kho lưu trữ bị khóa"
+    "message": "Ghi nhớ đến khi khóa kho lưu trữ"
   },
   "premiumRequired": {
-    "message": "Cần có tài khoản cao cấp"
+    "message": "Cần có tài khoản Cao cấp"
   },
   "premiumRequiredDesc": {
-    "message": "Cần là thành viên cao cấp để sử dụng tính năng này."
+    "message": "Cần là thành viên Cao cấp để sử dụng tính năng này."
   },
   "errorOccurred": {
     "message": "Đã xảy ra lỗi."
@@ -274,7 +274,7 @@
     "message": "Lỗi giải mã"
   },
   "couldNotDecryptVaultItemsBelow": {
-    "message": "Bitwarden không thể giải mã các kho lưu trữ được liệt kê dưới đây."
+    "message": "Bitwarden không thể giải mã các mục trong kho lưu trữ được liệt kê bên dưới."
   },
   "contactCSToAvoidDataLossPart1": {
     "message": "Liên hệ hỗ trợ khách hàng thành công",
@@ -367,7 +367,7 @@
     "message": "Họ"
   },
   "fullName": {
-    "message": "Tên đầy đủ"
+    "message": "Họ và tên"
   },
   "address1": {
     "message": "Địa chỉ 1"
@@ -379,7 +379,7 @@
     "message": "Địa chỉ 3"
   },
   "cityTown": {
-    "message": "Quận/Huyện/Thị trấn"
+    "message": "Xã / Phường"
   },
   "stateProvince": {
     "message": "Tỉnh/Thành Phố"
@@ -388,7 +388,7 @@
     "message": "Mã bưu chính"
   },
   "country": {
-    "message": "Quốc Gia"
+    "message": "Quốc gia"
   },
   "save": {
     "message": "Lưu"
@@ -535,10 +535,10 @@
     "message": "Bạn có chắc chắn muốn ghi đè lên mật khẩu hiện tại không?"
   },
   "overwriteUsername": {
-    "message": "Ghi đè tên người dùng"
+    "message": "Ghi đè tên đăng nhập"
   },
   "overwriteUsernameConfirmation": {
-    "message": "Bạn có chắc chắn muốn ghi đè lên tên người dùng hiện tại không?"
+    "message": "Bạn có chắc chắn muốn ghi đè tên đăng nhập hiện tại không?"
   },
   "noneFolder": {
     "message": "Chưa phân loại",
@@ -583,7 +583,7 @@
     "description": "deprecated. Use uppercaseLabel instead."
   },
   "lowercase": {
-    "message": "Chữ in thường (a-z)",
+    "message": "Chữ thường (a-z)",
     "description": "deprecated. Use lowercaseLabel instead."
   },
   "numbers": {
@@ -626,10 +626,10 @@
     "description": "Full description for the password generator special characters checkbox"
   },
   "numWords": {
-    "message": "Số lượng chữ"
+    "message": "Số lượng từ"
   },
   "wordSeparator": {
-    "message": "Dấu tách từ"
+    "message": "Dấu phân cách từ"
   },
   "capitalize": {
     "message": "Viết hoa",
@@ -642,14 +642,14 @@
     "message": "Đóng"
   },
   "minNumbers": {
-    "message": "Số chữ số"
+    "message": "Số kí tự tối thiểu"
   },
   "minSpecial": {
-    "message": "Số kí tự đặc biệt",
+    "message": "Số kí tự đặc biệt tối thiểu",
     "description": "Minimum Special Characters"
   },
   "ambiguous": {
-    "message": "Tránh các ký tự dễ gây nhầm lẫn",
+    "message": "Tránh các ký tự dễ nhầm lẫn",
     "description": "deprecated. Use avoidAmbiguous instead."
   },
   "avoidAmbiguous": {
@@ -667,10 +667,10 @@
     "message": "Tìm kiếm thư mục"
   },
   "searchFavorites": {
-    "message": "Tìm trong danh sách Yêu thích"
+    "message": "Tìm kiếm mục yêu thích"
   },
   "searchType": {
-    "message": "Tìm thể loại",
+    "message": "Tìm theo thể loại",
     "description": "Search item type"
   },
   "newAttachment": {
@@ -683,13 +683,13 @@
     "message": "Bạn có muốn xóa tệp đính kèm này không?"
   },
   "attachmentSaved": {
-    "message": "Tệp đính kèm đã được lưu."
+    "message": "Đã lưu tệp đính kèm"
   },
   "file": {
     "message": "Tập tin"
   },
   "selectFile": {
-    "message": "Chọn 1 tập tin."
+    "message": "Chọn tập tin"
   },
   "maxFileSize": {
     "message": "Kích thước tối đa của tập tin là 500MB."
@@ -710,7 +710,7 @@
     "message": "Đã xóa thư mục"
   },
   "loginOrCreateNewAccount": {
-    "message": "Đăng nhập hoặc tạo tài khoản mới để truy cập kho mật khẩu của bạn."
+    "message": "Đăng nhập hoặc tạo tài khoản mới để truy cập kho lưu trữ của bạn."
   },
   "createAccount": {
     "message": "Tạo tài khoản"
@@ -719,13 +719,13 @@
     "message": "Bạn mới sử dụng Bitwarden?"
   },
   "setAStrongPassword": {
-    "message": "Đặt mật khẩu mạnh"
+    "message": "Đặt một mật khẩu mạnh"
   },
   "finishCreatingYourAccountBySettingAPassword": {
-    "message": "Hoàn thành việc tạo tài khoản của bạn bằng cách đặt mật khẩu"
+    "message": "Hoàn tất việc tạo tài khoản bằng cách đặt mật khẩu"
   },
   "logIn": {
-    "message": "Đăng Nhập"
+    "message": "Đăng nhập"
   },
   "logInToBitwarden": {
     "message": "Đăng nhập Bitwarden"
@@ -740,7 +740,7 @@
     "message": "Nhấn YubiKey của bạn để xác thực"
   },
   "logInWithPasskey": {
-    "message": "Đăng nhập bằng khóa truy cập"
+    "message": "Đăng nhập bằng mã khoá"
   },
   "loginWithDevice": {
     "message": "Đăng nhập bằng thiết bị"
@@ -755,10 +755,10 @@
     "message": "Mật khẩu chính"
   },
   "masterPassDesc": {
-    "message": "Mật khẩu chính là mật khẩu bạn sử dụng để truy cập kho mật khẩu của bạn. Nó rất quan trọng vì sẽ không có cách nào để lấy lại mật khẩu nếu bạn quên."
+    "message": "Mật khẩu chính là mật khẩu bạn sử dụng để truy cập vào kho lưu trữ của mình. Điều rất quan trọng là bạn không được quên mật khẩu chính. Không có cách nào để khôi phục mật khẩu nếu bạn quên nó."
   },
   "masterPassHintDesc": {
-    "message": "Một gợi ý mật khẩu có thể giúp bạn nhớ lại mật khẩu chính của bạn nếu bạn quên nó."
+    "message": "Một gợi ý mật khẩu có thể giúp bạn nhớ lại mật khẩu chính của bạn nếu bạn chợt quên."
   },
   "reTypeMasterPass": {
     "message": "Nhập lại mật khẩu chính"
@@ -783,7 +783,7 @@
     "message": "Mật khẩu chính"
   },
   "masterPassImportant": {
-    "message": "Mật khẩu chính của bạn không thể phục hồi nếu bạn quên nó!"
+    "message": "Mật khẩu chính của bạn không thể khôi phục nếu bạn quên nó!"
   },
   "confirmMasterPassword": {
     "message": "Nhập lại mật khẩu chính"
@@ -834,7 +834,7 @@
     "message": "Nhận gợi ý mật khẩu chính"
   },
   "emailRequired": {
-    "message": "Địa chỉ email là bắt buộc."
+    "message": "Cần điền địa chỉ email."
   },
   "invalidEmail": {
     "message": "Địa chỉ email không hợp lệ."
@@ -843,7 +843,7 @@
     "message": "Yêu cầu mật khẩu chính."
   },
   "confirmMasterPasswordRequired": {
-    "message": "Yêu cầu nhập lại mật khẩu chính."
+    "message": "Cần nhập lại mật khẩu chính."
   },
   "masterPasswordMinlength": {
     "message": "Mật khẩu chính phải có ít nhất $VALUE$ kí tự.",
@@ -992,10 +992,10 @@
     "message": "Tài khoản này đã kích hoạt đăng nhập 2 bước, tuy nhiên, thiết bị này không hỗ trợ dịch vụ xác thực hai lớp đang sử dụng."
   },
   "noTwoStepProviders2": {
-    "message": "Vui lòng thêm các nhà cung cấp khác được hỗ trợ tốt hơn trên các thiết bị (chẳng hạn như một ứng dụng xác thực)."
+    "message": "Vui lòng thêm các nhà cung cấp bổ sung tương thích tốt hơn trên các thiết bị (chẳng hạn như ứng dụng xác thực)."
   },
   "twoStepOptions": {
-    "message": "Tùy chọn xác minh hai bước"
+    "message": "Tùy chọn đăng nhập 2 bước"
   },
   "selectTwoStepLoginMethod": {
     "message": "Chọn phương pháp đăng nhập hai bước"
@@ -1004,13 +1004,13 @@
     "message": "Môi trường tự lưu trữ"
   },
   "selfHostedBaseUrlHint": {
-    "message": "Nhập địa chỉ cơ sở của bản cài đặt Bitwarden được lưu trữ tại máy chủ của bạn. Ví dụ: https://bitwarden.company.com"
+    "message": "Nhập URL cơ sở của cài đặt Bitwarden được lưu trữ trên máy chủ nội bộ của bạn. Ví dụ: https://bitwarden.company.com"
   },
   "selfHostedCustomEnvHeader": {
-    "message": "Đối với cấu hình nâng cao. Bạn có thể chỉ định địa chỉ cơ sở của mỗi dịch vụ một cách độc lập."
+    "message": "Đối với cấu hình nâng cao, bạn có thể chỉ định URL cơ sở của từng dịch vụ một cách độc lập."
   },
   "selfHostedEnvFormInvalid": {
-    "message": "Bạn phải thêm địa chỉ máy chủ cơ sở hoặc ít nhất một môi trường tùy chỉnh."
+    "message": "Bạn phải thêm URL máy chủ cơ sở hoặc ít nhất một môi trường tùy chỉnh."
   },
   "customEnvironment": {
     "message": "Môi trường tùy chỉnh"
@@ -1029,22 +1029,22 @@
     "description": "Label for field requesting a self-hosted integration service URL"
   },
   "apiUrl": {
-    "message": "Địa chỉ API máy chủ"
+    "message": "Địa chỉ máy chủ API"
   },
   "webVaultUrl": {
     "message": "Địa chỉ máy chủ lưu trữ web"
   },
   "identityUrl": {
-    "message": "Địa chỉ nhận dạng máy chủ"
+    "message": "URL máy chủ định danh"
   },
   "notificationsUrl": {
-    "message": "Địa chỉ máy chủ thông báo"
+    "message": "URL máy chủ thông báo"
   },
   "iconsUrl": {
-    "message": "Địa chỉ biểu tượng máy chủ"
+    "message": "URL máy chủ biểu tượng"
   },
   "environmentSaved": {
-    "message": "Địa chỉ môi trường đã được lưu."
+    "message": "Các URL môi trường đã được lưu"
   },
   "ok": {
     "message": "Ok"
@@ -1059,7 +1059,7 @@
     "message": "Vị trí"
   },
   "overwritePassword": {
-    "message": "Ghi đè lên mật khẩu"
+    "message": "Ghi đè mật khẩu"
   },
   "learnMore": {
     "message": "Tìm hiểu thêm"
@@ -1068,7 +1068,7 @@
     "message": "Tính năng không có sẵn"
   },
   "loggedOut": {
-    "message": "Đăng xuất"
+    "message": "Đã đăng xuất"
   },
   "loggedOutDesc": {
     "message": "Bạn đã đăng xuất khỏi tài khoản của mình."
@@ -1143,14 +1143,14 @@
     "message": "Tiếp tục tới ứng dụng web?"
   },
   "changeMasterPasswordOnWebConfirmation": {
-    "message": "Bạn có thể thay đổi mật khẩu chính của mình trên Bitwarden bản web."
+    "message": "Bạn có thể thay đổi mật khẩu chính của mình trên trang web Bitwarden."
   },
   "fingerprintPhrase": {
-    "message": "Cụm vân tay",
+    "message": "Cụm từ xác thực",
     "description": "A 'fingerprint phrase' is a unique word phrase (similar to a passphrase) that a user can use to authenticate their public key with another user, for the purposes of sharing."
   },
   "yourAccountsFingerprint": {
-    "message": "Cụm vân tay tài khoản của bạn",
+    "message": "Cụm từ xác thực tài khoản của bạn",
     "description": "A 'fingerprint phrase' is a unique word phrase (similar to a passphrase) that a user can use to authenticate their public key with another user, for the purposes of sharing."
   },
   "goToWebVault": {
@@ -1203,19 +1203,19 @@
     "message": "Mật khẩu chính không hợp lệ"
   },
   "twoStepLoginConfirmation": {
-    "message": "Xác minh 2 bước giúp tài khoản của bạn an toàn hơn bằng cách yêu cầu bạn xác minh bằng một thiết bị khác như khóa bảo mật, ứng dụng xác thực, SMS, cuộc gọi điện thoại hoặc email. Xác minh 2 bước có thể được thiết lập trên bitwarden.com. Bạn có muốn truy cập trang web bây giờ không?"
+    "message": "Đăng nhập hai bước giúp tài khoản của bạn an toàn hơn bằng cách yêu cầu bạn xác minh việc đăng nhập bằng một thiết bị khác như khóa bảo mật, ứng dụng xác thực, SMS, cuộc gọi điện thoại hoặc email. Đăng nhập hai bước có thể được thiết lập trên bitwarden.com. Bạn có muốn truy cập trang web bây giờ không?"
   },
   "twoStepLogin": {
-    "message": "Xác minh hai bước"
+    "message": "Đăng nhập hai bước"
   },
   "vaultTimeout": {
-    "message": "Thời gian mở kho"
+    "message": "Đóng kho sau"
   },
   "vaultTimeout1": {
     "message": "Quá hạn"
   },
   "vaultTimeoutDesc": {
-    "message": "Chọn khi nào thì kho của bạn sẽ hết thời gian chờ và thực hiện hành động đã được chọn."
+    "message": "Chọn thời điểm đóng kho của bạn và thực hiện hành động đã được chọn."
   },
   "immediately": {
     "message": "Tức thì"
@@ -1251,7 +1251,7 @@
     "message": "4 giờ"
   },
   "onIdle": {
-    "message": "Khi hệ thống rảnh"
+    "message": "Khi hệ thống không hoạt động (rảnh rỗi)"
   },
   "onSleep": {
     "message": "Khi hệ thống ngủ"
@@ -1269,11 +1269,11 @@
     "message": "Bảo mật"
   },
   "clearClipboard": {
-    "message": "Xóa khay nhớ tạm",
+    "message": "Xóa bảng nhớ tạm",
     "description": "Clipboard is the operating system thing where you copy/paste data to on your device."
   },
   "clearClipboardDesc": {
-    "message": "Tự động xóa mọi thứ đã sao chép khỏi khay nhớ tạm.",
+    "message": "Tự động xóa mọi thứ đã sao chép khỏi bảng nhớ tạm.",
     "description": "Clipboard is the operating system thing where you copy/paste data to on your device."
   },
   "enableFavicon": {
@@ -1286,28 +1286,28 @@
     "message": "Thu nhỏ vào khay hệ thống"
   },
   "enableMinToTrayDesc": {
-    "message": "Khi thu nhỏ cửa sổ, thay vào đó sẽ hiện một biểu tượng trên khay hệ thống."
+    "message": "Thu nhỏ cửa sổ trực tiếp vào khay hệ thống."
   },
   "enableMinToMenuBar": {
     "message": "Thu nhỏ vào thanh menu"
   },
   "enableMinToMenuBarDesc": {
-    "message": "Khi thu nhỏ sổ, thay vào đó sẽ hiện một biểu tượng trên thanh menu."
+    "message": "Thu nhỏ cửa sổ trực tiếp vào thanh menu."
   },
   "enableCloseToTray": {
     "message": "Đóng vào khay hệ thống"
   },
   "enableCloseToTrayDesc": {
-    "message": "Khi đóng cửa sổ, thay vào đó sẽ hiện một biểu tượng trên khay hệ thống."
+    "message": "Khi đóng cửa sổ, hiển thị biểu tượng trong khay hệ thống thay vì đóng ứng dụng."
   },
   "enableCloseToMenuBar": {
     "message": "Đóng vào thanh menu"
   },
   "enableCloseToMenuBarDesc": {
-    "message": "Khi đóng cửa sổ, thay vào đó sẽ hiện một biểu tượng trên thanh menu."
+    "message": "Khi đóng cửa sổ, hiển thị biểu tượng trong thanh menu thay vì đóng ứng dụng."
   },
   "enableTray": {
-    "message": "Hiện biểu tượng khay hệ thống"
+    "message": "Hiện biểu tượng trên khay hệ thống"
   },
   "enableTrayDesc": {
     "message": "Luôn hiện biểu tượng trên khay hệ thống."
@@ -1316,22 +1316,22 @@
     "message": "Khởi động vào khay hệ thống"
   },
   "startToTrayDesc": {
-    "message": "Khi ứng dụng mới mở, chỉ hiện biểu tượng trên khay hệ thống."
+    "message": "Khi ứng dụng được khởi động lần đầu tiên, chỉ hiện biểu tượng trong khay hệ thống."
   },
   "startToMenuBar": {
     "message": "Khởi động vào thanh menu"
   },
   "startToMenuBarDesc": {
-    "message": "Khi ứng dụng mới mở, chỉ hiện biểu tượng trên thanh menu."
+    "message": "Khi ứng dụng được khởi động lần đầu tiên, chỉ hiện biểu tượng trên thanh menu."
   },
   "openAtLogin": {
-    "message": "Khởi động cùng lúc với máy tính"
+    "message": "Khởi động cùng máy tính"
   },
   "openAtLoginDesc": {
     "message": "Tự động khởi động ứng dụng Bitwarden trên máy tính khi đăng nhập."
   },
   "alwaysShowDock": {
-    "message": "Luôn hiện ở thanh Dock"
+    "message": "Giữ lại trong Dock"
   },
   "alwaysShowDockDesc": {
     "message": "Hiện biểu tượng Bitwarden trong Dock ngay cả khi thu nhỏ về thanh menu."
@@ -1340,19 +1340,19 @@
     "message": "Xác nhận ẩn khay"
   },
   "confirmTrayDesc": {
-    "message": "Việc tắt cài đặt này cũng sẽ tắt tất cả các cài đặt liên quan khác."
+    "message": "Tắt cài đặt này cũng sẽ tắt tất cả các cài đặt liên quan đến khay khác."
   },
   "language": {
     "message": "Ngôn ngữ"
   },
   "languageDesc": {
-    "message": "Thay đổi ngôn ngữ được ứng dụng sử dụng. Yêu cầu khởi động lại."
+    "message": "Thay đổi ngôn ngữ được ứng dụng sử dụng. Cần khởi động lại."
   },
   "theme": {
     "message": "Chủ đề"
   },
   "themeDesc": {
-    "message": "Change the application's color theme."
+    "message": "Thay đổi màu sắc ứng dụng."
   },
   "dark": {
     "message": "Tối",
@@ -1394,7 +1394,7 @@
     "message": "Có bản cập nhật mới"
   },
   "updateAvailableDesc": {
-    "message": "Một bản cập nhật đã được tìm thấy. Bạn có muốn tải xuống bây giờ không?"
+    "message": "Đã tìm thấy một bản cập nhật mới. Bạn có muốn tải xuống bây giờ không?"
   },
   "restart": {
     "message": "Khởi động lại"
@@ -1403,7 +1403,7 @@
     "message": "Để sau"
   },
   "noUpdatesAvailable": {
-    "message": "Hiện không có cập nhật nào. Bạn đang sử dụng phiên bản mới nhất."
+    "message": "Hiện không có bản cập nhật nào. Bạn đang sử dụng phiên bản mới nhất."
   },
   "updateError": {
     "message": "Cập nhật bị lỗi"
@@ -1415,33 +1415,33 @@
     "message": "Sao chép tên đăng nhập"
   },
   "copyNumber": {
-    "message": "Chép số",
+    "message": "Sao chép số",
     "description": "Copy credit card number"
   },
   "copyEmail": {
     "message": "Sao chép email"
   },
   "copySecurityCode": {
-    "message": "Sao chép Mã bảo mật",
+    "message": "Sao chép mã bảo mật",
     "description": "Copy credit card security code (CVV)"
   },
   "premiumMembership": {
     "message": "Thành viên Cao Cấp"
   },
   "premiumManage": {
-    "message": "Quản lý Thành viên"
+    "message": "Quản lý thành viên"
   },
   "premiumManageAlert": {
-    "message": "Bạn có thể quản lý các thành viên trong kho bitwarden nền web. Bạn có muốn truy cập trang web bây giờ?"
+    "message": "Bạn có thể quản lý tài khoản thành viên của mình trên trang web bitwarden.com. Bạn có muốn truy cập trang web bây giờ không?"
   },
   "premiumRefresh": {
     "message": "Làm mới thành viên"
   },
   "premiumNotCurrentMember": {
-    "message": "Bạn hiện không phải là một thành viên cao cấp."
+    "message": "Bạn hiện không phải là thành viên Cao cấp."
   },
   "premiumSignUpAndGet": {
-    "message": "Đăng ký làm thành viên cao cấp và nhận được:"
+    "message": "Đăng ký làm thành viên Cao cấp và nhận được:"
   },
   "premiumSignUpStorage": {
     "message": "1GB bộ nhớ lưu trữ được mã hóa cho các tệp đính kèm."
@@ -1450,7 +1450,7 @@
     "message": "Các tùy chọn xác minh hai bước như YubiKey và Duo."
   },
   "premiumSignUpReports": {
-    "message": "Thanh lọc mật khẩu, kiểm tra an toàn tài khoản và các báo cáo rò rĩ dữ liệu là để giữ cho kho của bạn an toàn."
+    "message": "Thanh lọc mật khẩu, kiểm tra an toàn tài khoản và các báo cáo rò rỉ dữ liệu để bảo vệ kho dữ liệu của bạn."
   },
   "premiumSignUpTotp": {
     "message": "Mã xác nhận TOTP (2FA) để đăng nhập vào kho của bạn."
@@ -1465,16 +1465,16 @@
     "message": "Mua bản Cao Cấp"
   },
   "premiumPurchaseAlertV2": {
-    "message": "Bạn có thể mua gói Premium từ cài đặt tài khoản trên trang Bitwarden."
+    "message": "Bạn có thể mua gói Cao cấp từ cài đặt tài khoản trên kho web Bitwarden."
   },
   "premiumCurrentMember": {
-    "message": "Bạn là một thành viên cao cấp!"
+    "message": "Bạn là một thành viên Cao cấp!"
   },
   "premiumCurrentMemberThanks": {
     "message": "Cảm ơn bạn đã hỗ trợ Bitwarden."
   },
   "premiumPrice": {
-    "message": "Tất cả chỉ với $PRICE$ /năm!",
+    "message": "Tất cả chỉ với $PRICE$/năm!",
     "placeholders": {
       "price": {
         "content": "$1",
@@ -1502,7 +1502,7 @@
     "description": "To clear something out. example: To clear browser history."
   },
   "noPasswordsInList": {
-    "message": "Chưa có mật khẩu."
+    "message": "Không có mật khẩu để liệt kê."
   },
   "clearHistory": {
     "message": "Xóa lịch sử"
@@ -1540,13 +1540,13 @@
     "message": "Đặt lại thu phóng"
   },
   "toggleFullScreen": {
-    "message": "Bật/Tắt Toàn Màn Hình"
+    "message": "Bật/Tắt Toàn màn hình"
   },
   "reload": {
     "message": "Tải lại"
   },
   "toggleDevTools": {
-    "message": "Bật/Tắt Công Cụ Nhà Phát Triển"
+    "message": "Bật/Tắt Công cụ nhà phát triển"
   },
   "minimize": {
     "message": "Thu nhỏ",
@@ -1556,7 +1556,7 @@
     "message": "Phóng to"
   },
   "bringAllToFront": {
-    "message": "Hiển thị trên tất cả",
+    "message": "Đưa tất cả lên phía trước",
     "description": "Bring all windows to front (foreground)"
   },
   "aboutBitwarden": {
@@ -1569,7 +1569,7 @@
     "message": "Ẩn Bitwarden"
   },
   "hideOthers": {
-    "message": "Ẩn Khác"
+    "message": "Ẩn khác"
   },
   "showAll": {
     "message": "Hiện tất cả"
@@ -1591,7 +1591,7 @@
     "message": "Sao chép thành công"
   },
   "errorRefreshingAccessToken": {
-    "message": "Lỗi làm mới khoá truy cập"
+    "message": "Lỗi cập nhật token truy cập"
   },
   "errorRefreshingAccessTokenDesc": {
     "message": "Bạn có thể đã bị đăng xuất. Vui lòng đăng xuất và đăng nhập lại."
@@ -1606,7 +1606,7 @@
     "message": "Kiểm tra xem mật khẩu có bị lộ không."
   },
   "passwordExposed": {
-    "message": "Mật khẩu này đã bị lộ $VALUE$ lần trong các vụ rò rỉ dữ liệu. Bạn nên đổi nó.",
+    "message": "Mật khẩu này đã bị lộ $VALUE$ lần trong các vụ rò rỉ dữ liệu. Bạn nên thay đổi nó.",
     "placeholders": {
       "value": {
         "content": "$1",
@@ -1615,7 +1615,7 @@
     }
   },
   "passwordSafe": {
-    "message": "Mật khẩu này không tìm thấy trong bất kỳ vụ rò rỉ dữ liệu nào. Nó an toàn để sử dụng."
+    "message": "Không tìm thấy mật khẩu này trong các vụ rò rỉ dữ liệu trước đây. Nó an toàn để sử dụng."
   },
   "baseDomain": {
     "message": "Tên miền cơ sở",
@@ -1658,21 +1658,21 @@
     "message": "Mặc định"
   },
   "exit": {
-    "message": "Thoát ra"
+    "message": "Thoát"
   },
   "showHide": {
-    "message": "Hiển thị / Ẩn",
+    "message": "Hiện / Ẩn",
     "description": "Text for a button that toggles the visibility of the window. Shows the window when it is hidden or hides the window if it is currently open."
   },
   "hideToTray": {
     "message": "Ẩn xuống khay hệ thống"
   },
   "alwaysOnTop": {
-    "message": "Luôn trên cùng",
+    "message": "Luôn ở trên cùng",
     "description": "Application window should always stay on top of other windows"
   },
   "dateUpdated": {
-    "message": "Cập nhật vào",
+    "message": "Cập nhật lúc",
     "description": "ex. Date this item was updated"
   },
   "dateCreated": {
@@ -1680,7 +1680,7 @@
     "description": "ex. Date this item was created"
   },
   "datePasswordUpdated": {
-    "message": "Đã cập nhật mật khẩu",
+    "message": "Mật khẩu được cập nhật lần cuối",
     "description": "ex. Date this password was updated"
   },
   "exportFrom": {
@@ -1693,16 +1693,16 @@
     "message": "Định dạng tập tin"
   },
   "fileEncryptedExportWarningDesc": {
-    "message": "Tập tin xuất này sẽ được bảo vệ bằng mật khẩu và yêu cầu mật khẩu để giải mã."
+    "message": "Tệp tin này sẽ được bảo vệ bằng mật khẩu và yêu cầu mật khẩu tệp tin để giải mã."
   },
   "filePassword": {
     "message": "Mật khẩu tập tin"
   },
   "exportPasswordDescription": {
-    "message": "Mật khẩu này sẽ được sử dụng để xuất và nhập tập tin này"
+    "message": "Mật khẩu này sẽ được dùng để xuất và nhập tập tin này"
   },
   "accountRestrictedOptionDescription": {
-    "message": "Sử dụng khóa mã hóa tài khoản của bạn, được tạo từ tên người dùng và mật khẩu chính của bạn để mã hóa tệp xuất và giới hạn việc nhập chỉ cho tài khoản Bitwarden hiện tại."
+    "message": "Sử dụng khóa mã hóa tài khoản của bạn, được tạo từ tên đăng nhập và mật khẩu chính của bạn để mã hóa tệp xuất và giới hạn việc nhập chỉ cho tài khoản Bitwarden hiện tại."
   },
   "passwordProtected": {
     "message": "Mật khẩu đã được bảo vệ"
@@ -1711,7 +1711,7 @@
     "message": "Thiết lập mật khẩu cho tệp để mã hóa dữ liệu xuất và nhập nó vào bất kỳ tài khoản Bitwarden nào bằng cách sử dụng mật khẩu đó để giải mã."
   },
   "exportTypeHeading": {
-    "message": "Loại xuất"
+    "message": "Xuất kiểu"
   },
   "accountRestricted": {
     "message": "Tài khoản bị hạn chế"
@@ -1739,7 +1739,7 @@
     "message": "Bản xuất này chứa dữ liệu kho bạn và không được mã hóa. Bạn không nên lưu trữ hay gửi tập tin đã xuất thông qua phương thức rủi ro (như email). Vui lòng xóa nó ngay lập tức khi bạn đã sử dụng xong."
   },
   "encExportKeyWarningDesc": {
-    "message": "Quá trình xuất này mã hóa dữ liệu của bạn bằng khóa mã hóa của tài khoản. Nếu bạn đã từng thay đổi khóa mã hóa của tài khoản, bạn cần xuất lại vì bạn sẽ không thể giải mã tệp xuất này."
+    "message": "Quá trình xuất này sẽ mã hóa dữ liệu của bạn bằng khóa mã hóa của tài khoản. Nếu bạn từng thay đổi mã hóa tài khoản của mình, bạn nên xuất lại vì bạn sẽ không thể giải mã tập tin xuất này."
   },
   "encExportAccountWarningDesc": {
     "message": "Khóa mã hóa tài khoản là duy nhất cho mỗi tài khoản Bitwarden, vì vậy bạn không thể nhập tệp xuất được mã hóa vào một tài khoản khác."
@@ -1772,32 +1772,32 @@
     "message": "Mật khẩu chính Yếu"
   },
   "weakMasterPasswordDesc": {
-    "message": "Mật khẩu chính bạn vừa chọn có vẻ yếu. Bạn nên chọn mật khẩu chính (hoặc cụm từ mật khẩu) mạnh để bảo vệ đúng cách tài khoản Bitwarden của bạn. Bạn có thực sự muốn dùng mật khẩu chính này?"
+    "message": "Mật khẩu chính bạn vừa chọn hơi yếu. Bạn nên chọn mật khẩu chính mạnh(hoặc một cụm mật khẩu) để bảo vệ tài khoản Bitwarden của mình một cách an toàn. Bạn có thực sự muốn dùng mật khẩu chính này không?"
   },
   "pin": {
     "message": "Mã PIN",
     "description": "PIN code. Ex. The short code (often numeric) that you use to unlock a device."
   },
   "unlockWithPin": {
-    "message": "Mở khóa với mã PIN"
+    "message": "Mở khóa bằng mã PIN"
   },
   "setYourPinCode": {
-    "message": "Đặt mã PIN của bạn để mở khóa Bitwarden. Cài đặt mã PIN của bạn sẽ bị xóa nếu bạn hoàn toàn đăng xuất khỏi ứng dụng."
+    "message": "Đặt mã PIN của bạn để mở khóa Bitwarden. Cài đặt mã PIN của bạn sẽ bị xóa nếu bạn đăng xuất hoàn toàn khỏi ứng dụng."
   },
   "pinRequired": {
     "message": "Mã PIN là bắt buộc."
   },
   "invalidPin": {
-    "message": "Mã PIN không hợp lệ."
+    "message": "Mã PIN không chính xác."
   },
   "tooManyInvalidPinEntryAttemptsLoggingOut": {
-    "message": "Mã PIN bị gõ sai quá nhiều lần. Đang đăng xuất."
+    "message": "Gõ sai mã PIN quá nhiều lần. Đang đăng xuất."
   },
   "unlockWithWindowsHello": {
     "message": "Mở khóa với Windows Hello"
   },
   "additionalWindowsHelloSettings": {
-    "message": "Cài đặt Windows Hello bổ sung"
+    "message": "Cài đặt bổ sung cho Windows Hello"
   },
   "unlockWithPolkit": {
     "message": "Mở khóa bằng bảo mật hệ thống"
@@ -1809,28 +1809,28 @@
     "message": "Mở khóa với Touch ID"
   },
   "additionalTouchIdSettings": {
-    "message": "Cài đặt Touch ID bổ sung"
+    "message": "Cài đặt bổ sung cho Touch ID"
   },
   "touchIdConsentMessage": {
     "message": "mở khoá kho của bạn"
   },
   "autoPromptWindowsHello": {
-    "message": "Yêu cầu xác minh Windows Hello khi mở"
+    "message": "Yêu cầu xác minh Windows Hello khi mở ứng dụng"
   },
   "autoPromptPolkit": {
-    "message": "Hỏi xác thực hệ thống khi khởi chạy"
+    "message": "Yêu cầu xác thực hệ thống khi khởi động"
   },
   "autoPromptTouchId": {
-    "message": "Yêu cầu xác minh Touch ID khi mở"
+    "message": "Yêu cầu xác minh Touch ID khi mở ứng dụng"
   },
   "requirePasswordOnStart": {
-    "message": "Yêu cầu mật khẩu hoặc mã PIN khi mở"
+    "message": "Yêu cầu mật khẩu hoặc mã PIN khi mở ứng dụng"
   },
   "requirePasswordWithoutPinOnStart": {
     "message": "Yêu cầu mật khẩu khi khởi động ứng dụng"
   },
   "recommendedForSecurity": {
-    "message": "Đề xuất để tăng cường bảo mật."
+    "message": "Khuyến nghị để bảo mật."
   },
   "lockWithMasterPassOnRestart1": {
     "message": "Khóa bằng mật khẩu chính khi khởi động lại"
@@ -1839,10 +1839,10 @@
     "message": "Xóa tài khoản"
   },
   "deleteAccountDesc": {
-    "message": "Tiếp tục bên dưới để xóa tài khoản và tất cả dữ liệu của bạn."
+    "message": "Tiếp tục bên dưới để xóa tài khoản và tất cả dữ liệu trong kho của bạn."
   },
   "deleteAccountWarning": {
-    "message": "Việc xóa tài khoản là vĩnh viễn và không thể hoàn tác."
+    "message": "Tài khoản sẽ bị xóa vĩnh viễn và không thể hoàn tác."
   },
   "cannotDeleteAccount": {
     "message": "Không thể xóa tài khoản"
@@ -1854,16 +1854,16 @@
     "message": "Đã xóa tài khoản"
   },
   "accountDeletedDesc": {
-    "message": "Tài khoản của bạn đã được đóng và tất cả những dữ liệu liên quan đã được xóa."
+    "message": "Đã đóng tài khoản của bạn và đã xóa tất cả những dữ liệu liên quan."
   },
   "preferences": {
     "message": "Tuỳ chỉnh"
   },
   "enableMenuBar": {
-    "message": "Hiển thị biểu tượng thanh menu"
+    "message": "Hiện biểu tượng trên thanh menu"
   },
   "enableMenuBarDesc": {
-    "message": "Luôn hiển biểu tượng trên thanh menu."
+    "message": "Luôn hiện biểu tượng trên thanh menu."
   },
   "hideToMenuBar": {
     "message": "Ẩn vào thanh menu"
@@ -1872,26 +1872,26 @@
     "message": "Bạn phải chọn ít nhất một bộ sưu tập."
   },
   "premiumUpdated": {
-    "message": "Bạn đã nâng cấp lên Cao Cấp."
+    "message": "Bạn đã nâng cấp lên gói Cao Cấp."
   },
   "restore": {
     "message": "Khôi phục"
   },
   "premiumManageAlertAppStore": {
-    "message": "Bạn có thể quản lý đăng ký của từ App Store. Bạn có muốn truy cập vào App Store ngay không?"
+    "message": "Bạn có thể quản lý gói đăng ký của mình từ App Store. Bạn có muốn truy cập App Store ngay bây giờ không?"
   },
   "legal": {
     "message": "Pháp lý",
     "description": "Noun. As in 'legal documents', like our terms of service and privacy policy."
   },
   "termsOfService": {
-    "message": "Điều khoản dịch vụ"
+    "message": "Điều khoản Dịch vụ"
   },
   "privacyPolicy": {
-    "message": "Chính sách bảo mật"
+    "message": "Chính sách Bảo mật"
   },
   "unsavedChangesConfirmation": {
-    "message": "Bạn có chắc là muốn thoát? Nếu bạn thoát bây giờ, thông tin hiện tại sẽ không được lưu lại."
+    "message": "Bạn có chắc là muốn thoát không? Nếu bạn thoát bây giờ, thông tin hiện tại sẽ không được lưu lại."
   },
   "unsavedChangesTitle": {
     "message": "Những thay đổi chưa được lưu"
@@ -1903,16 +1903,16 @@
     "message": "Các chính sách của tổ chức đang ảnh hưởng đến cài đặt tạo mật khẩu của bạn."
   },
   "vaultTimeoutAction": {
-    "message": "Khi hết thời gian mở kho"
+    "message": "Hành động sau khi đóng kho"
   },
   "vaultTimeoutActionLockDesc": {
-    "message": "Kho bị khóa sẽ yêu cầu bạn nhập lại mật khẩu chính để có thể truy cập."
+    "message": "Bạn cần nhập mật khẩu chính hoặc phương thức mở khóa khác để truy cập lại vào kho lưu trữ."
   },
   "vaultTimeoutActionLogOutDesc": {
-    "message": "Kho bị đăng xuất sẽ yêu cầu bạn xác thực lại để có thể truy cập."
+    "message": "Bạn cần xác thực lại để mở khóa kho lưu trữ."
   },
   "unlockMethodNeededToChangeTimeoutActionDesc": {
-    "message": "Thiết lập khóa khi hết thời gian chờ kho."
+    "message": "Thiết lập phương thức mở khóa để thay đổi hành động sau khi đóng kho."
   },
   "lock": {
     "message": "Khóa",
@@ -1941,23 +1941,23 @@
     "message": "Xoá vĩnh viễn"
   },
   "vaultTimeoutLogOutConfirmation": {
-    "message": "Đăng xuất sẽ xóa tất cả quyền truy cập vào kho của bạn và yêu cầu xác minh trực tuyến sau khi hết thời gian chờ. Bạn có chắc chắn muốn sử dụng cài đặt này không?"
+    "message": "Đăng xuất sẽ xóa toàn bộ quyền truy cập vào kho của bạn và yêu cầu xác minh lại sau khi đóng kho. Bạn có chắc chắn muốn sử dụng cài đặt này không?"
   },
   "vaultTimeoutLogOutConfirmationTitle": {
-    "message": "Xác nhận hành động khi hết thời gian chờ"
+    "message": "Xác nhận hành động sau khi đóng kho"
   },
   "enterpriseSingleSignOn": {
-    "message": "Đăng nhập theo tài khoản tổ chức"
+    "message": "Đăng nhập một lần cho doanh nghiệp"
   },
   "setMasterPassword": {
-    "message": "Thiết lập mật khẩu chính"
+    "message": "Đặt mật khẩu chính"
   },
   "orgPermissionsUpdatedMustSetPassword": {
-    "message": "Quyền tổ chức của bạn đã được cập nhật, yêu cầu bạn đặt mật khẩu chính.",
+    "message": "Quyền truy cập của tổ chức bạn đã được cập nhật, yêu cầu bạn phải thiết lập mật khẩu chính.",
     "description": "Used as a card title description on the set password page to explain why the user is there"
   },
   "orgRequiresYouToSetPassword": {
-    "message": "Tổ chức của bạn yêu cầu bạn đặt mật khẩu chính.",
+    "message": "Tổ chức của bạn yêu cầu bạn thiết lập mật khẩu chính.",
     "description": "Used as a card title description on the set password page to explain why the user is there"
   },
   "cardMetrics": {
@@ -1988,16 +1988,16 @@
     "message": "Sao chép khóa xác thực (TOTP)"
   },
   "totpHelperTitle": {
-    "message": "Làm cho xác thực 2 bước trở nên liền mạch"
+    "message": "Giúp quá trình xác minh 2 bước diễn ra liền mạch"
   },
   "totpHelper": {
-    "message": "Bitwarden có thể lưu trữ và điền mã xác thực 2 bước. Hãy sao chép và dán khóa vào trường này."
+    "message": "Bitwarden có thể lưu trữ và điền mã xác thực 2 bước. Sao chép và dán khóa vào ô này."
   },
   "totpHelperWithCapture": {
-    "message": "Bitwarden có thể lưu trữ và điền mã xác thực 2 bước. Hãy chọn biểu tượng máy ảnh để chụp mã QR xác thực trên trang web này, hoặc sao chép và dán khóa vào trường này."
+    "message": "Bitwarden có thể lưu trữ và điền mã xác minh 2 bước. Hãy chọn biểu tượng máy ảnh để quét mã QR xác thực của trang web, hoặc sao chép và dán khoá vào ô này."
   },
   "premium": {
-    "message": "Phiên bản cao cấp",
+    "message": "Cao cấp",
     "description": "Premium membership"
   },
   "freeOrgsCannotUseAttachments": {
@@ -2035,7 +2035,7 @@
     "message": "Xác nhận mật khẩu chính mới"
   },
   "masterPasswordPolicyInEffect": {
-    "message": "Các chính sách của tổ chức yêu cầu mật khẩu chính của bạn phải:"
+    "message": "Các chính sách của tổ chức yêu cầu mật khẩu chính của bạn phải đáp ứng các yêu cầu sau:"
   },
   "policyInEffectMinComplexity": {
     "message": "Độ mạnh tối thiểu $SCORE$",
@@ -2059,13 +2059,13 @@
     "message": "Có chứa một hay nhiều ký tự viết hoa"
   },
   "policyInEffectLowercase": {
-    "message": "Có chứa một hay nhiều ký tự thường"
+    "message": "Có chứa một hay nhiều ký tự viết thường"
   },
   "policyInEffectNumbers": {
-    "message": "Có chứa một hay nhiều số"
+    "message": "Có chứa một hay nhiều chữ số"
   },
   "policyInEffectSpecial": {
-    "message": "Có chứa một hay nhiều ký tự đặc biệt sau: $CHARS$",
+    "message": "Có chứa một hay nhiều ký tự đặc biệt sau $CHARS$",
     "placeholders": {
       "chars": {
         "content": "$1",
@@ -2086,16 +2086,16 @@
     "message": "bất cứ lúc nào."
   },
   "byContinuingYouAgreeToThe": {
-    "message": "Nếu tiếp tục, bạn đồng ý"
+    "message": "Bằng cách tiếp tục, bạn đồng ý với"
   },
   "and": {
     "message": "và"
   },
   "acceptPolicies": {
-    "message": "Bạn đồng ý với những điều sau khi nhấn chọn ô này:"
+    "message": "Bạn đồng ý với những điều sau khi tích chọn ô này:"
   },
   "acceptPoliciesRequired": {
-    "message": "Điều khoản sử dụng và chính sách quyền riêng tư chưa được đồng ý."
+    "message": "Bạn chưa đồng ý với Điều khoản Dịch vụ và Chính sách Bảo mật."
   },
   "enableBrowserIntegration": {
     "message": "Cho phép tích hợp với trình duyệt"
@@ -2107,10 +2107,10 @@
     "message": "Cho phép tích hợp trình duyệt DuckDuckGo"
   },
   "enableDuckDuckGoBrowserIntegrationDesc": {
-    "message": "Sử dụng kho Bitwarden của bạn khi tìm kiếm bằng DuckDuckGo."
+    "message": "Sử dụng kho Bitwarden của bạn khi duyệt web với DuckDuckGo."
   },
   "browserIntegrationUnsupportedTitle": {
-    "message": "Tích hợp trình duyệt không được hỗ trợ"
+    "message": "Trình duyệt không hỗ trợ tích hợp"
   },
   "browserIntegrationErrorTitle": {
     "message": "Lỗi khi bật tích hợp trình duyệt"
@@ -2119,7 +2119,7 @@
     "message": "Đã xảy ra lỗi khi bật tích hợp với trình duyệt."
   },
   "browserIntegrationMasOnlyDesc": {
-    "message": "Rất tiếc, tính năng tích hợp trình duyệt hiện chỉ được hỗ trợ trong phiên bản App Store trên Mac."
+    "message": "Rất tiếc, tính năng tích hợp trình duyệt hiện chỉ được hỗ trợ trong phiên bản Mac App Store."
   },
   "browserIntegrationWindowsStoreDesc": {
     "message": "Rất tiếc, tính năng tích hợp trình duyệt hiện không được hỗ trợ trong phiên bản Microsoft Store."
@@ -2128,16 +2128,16 @@
     "message": "Rất tiếc, tính năng tích hợp trình duyệt hiện không được hỗ trợ trong phiên bản linux."
   },
   "enableBrowserIntegrationFingerprint": {
-    "message": "Yêu cầu xác minh để tích hợp trình duyệt"
+    "message": "Yêu cầu xác thực để tích hợp trình duyệt"
   },
   "enableBrowserIntegrationFingerprintDesc": {
-    "message": "Tăng cường bảo mật bằng cách yêu cầu xác nhận cụm vân tay khi kết nối máy tính với trình duyệt. Việc này yêu cầu bạn phải thực hiện thao tác xác minh mỗi khi tạo kết nối."
+    "message": "Thêm một lớp bảo mật bổ sung bằng cách yêu cầu xác nhận cụm từ xác thực khi thiết lập kết nối giữa máy tính với trình duyệt. Việc này yêu cầu bạn phải thực hiện thao tác và xác minh mỗi khi tạo kết nối."
   },
   "enableHardwareAcceleration": {
-    "message": "Dùng tính năng tăng tốc phần cứng"
+    "message": "Sử dụng tăng tốc phần cứng"
   },
   "enableHardwareAccelerationDesc": {
-    "message": "Mặc định cài đặt này được bật. Chỉ tắt khi gặp sự cố đồ họa. Cần khởi động lại."
+    "message": "Theo mặc định, cài đặt này được BẬT. Chỉ TẮT nếu bạn gặp sự cố đồ họa. Cần khởi động lại."
   },
   "approve": {
     "message": "Phê duyệt"
@@ -2146,7 +2146,7 @@
     "message": "Xác minh kết nối trình duyệt"
   },
   "verifyBrowserDesc": {
-    "message": "Vui lòng đảm bảo cụm vân tay hiển thị giống hệt với cụm vân tay được hiển thị trong tiện ích mở rộng trình duyệt."
+    "message": "Vui lòng đảm bảo rằng cụm từ xác thực hiển thị trùng khớp với cụm từ xác thực được hiển thị trong tiện ích mở rộng trình duyệt."
   },
   "verifyNativeMessagingConnectionTitle": {
     "message": "$APPID$ muốn kết nối với Bitwarden",
@@ -2161,22 +2161,22 @@
     "message": "Bạn có muốn chấp thuận yêu cầu này không?"
   },
   "verifyNativeMessagingConnectionWarning": {
-    "message": "Nếu bạn không gửi yêu cầu này, đừng chấp thuận."
+    "message": "Nếu bạn không gửi yêu cầu này, đừng phê duyệt."
   },
   "biometricsNotEnabledTitle": {
-    "message": "Sinh trắc học chưa được thiết lập"
+    "message": "Chưa thiết lập sinh trắc học"
   },
   "biometricsNotEnabledDesc": {
-    "message": "Sinh trắc học trên trình duyệt yêu cầu sinh trắc học trên máy tính phải được cài đặt trước."
+    "message": "Để dùng tính năng xác thực sinh trắc học trên trình duyệt, bạn cần thiết lập xác thực sinh trắc học trên máy tính trước."
   },
   "biometricsManualSetupTitle": {
-    "message": "Thiết lập sinh trắc tự động không khả dụng"
+    "message": "Không hỗ trợ cài đặt tự động"
   },
   "biometricsManualSetupDesc": {
-    "message": "Do phương pháp cài đặt, sinh trắc học không thể được bật tự động. Bạn có muốn mở hướng dẫn cách thực hiện thủ công?"
+    "message": "Do phương pháp cài đặt, tính năng hỗ trợ sinh trắc học không thể được kích hoạt tự động. Bạn có muốn mở hướng dẫn cách thực hiện điều này thủ công không?"
   },
   "personalOwnershipSubmitError": {
-    "message": "Do chính sách doanh nghiệp, bạn bị hạn chế lưu các mục vào kho cá nhân của mình. Thay đổi tùy chọn quyền sở hữu thành một tổ chức và chọn từ các bộ sưu tập có sẵn."
+    "message": "Do chính sách của doanh nghiệp, bạn không thể lưu trữ các mục vào kho cá nhân của mình. Hãy thay đổi tùy chọn Quyền sở hữu thành tổ chức và chọn từ các bộ sưu tập có sẵn."
   },
   "yourNewPasswordCannotBeTheSameAsYourCurrentPassword": {
     "message": "Mật khẩu mới của bạn không được trùng với mật khẩu hiện tại."
@@ -2200,7 +2200,7 @@
     "message": "Thông tin liên hệ"
   },
   "allSends": {
-    "message": "Tất cả mục Gửi",
+    "message": "Tất cả Send",
     "description": "'Sends' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendTypeFile": {
@@ -2210,15 +2210,15 @@
     "message": "Văn bản"
   },
   "searchSends": {
-    "message": "Tìm kiếm mục Gửi",
+    "message": "Tìm kiếm Send",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "editSend": {
-    "message": "Sửa mục Gửi",
+    "message": "Chỉnh sửa Send",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "myVault": {
-    "message": "Kho của tôi"
+    "message": "Kho lưu trữ"
   },
   "text": {
     "message": "Văn bản"
@@ -2227,14 +2227,14 @@
     "message": "Ngày xóa"
   },
   "deletionDateDesc": {
-    "message": "Mục Gửi sẽ được xóa vĩnh viễn vào ngày và giờ chỉ định.",
+    "message": "Send sẽ được xóa vĩnh viễn vào ngày và giờ chỉ định.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "expirationDate": {
     "message": "Ngày hết hạn"
   },
   "expirationDateDesc": {
-    "message": "Nếu được thiết lập, mục Gửi này sẽ hết hạn vào ngày và giờ được chỉ định.",
+    "message": "Nếu được thiết lập, Send này sẽ hết hạn vào ngày và giờ được chỉ định.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "maxAccessCount": {
@@ -2242,57 +2242,57 @@
     "description": "This text will be displayed after a Send has been accessed the maximum amount of times."
   },
   "maxAccessCountDesc": {
-    "message": "Nếu được thiết lập, khi đã đạt tới số lượng truy cập tối đa, người dùng sẽ không thể truy cập mục Gửi này nữa.",
+    "message": "Nếu được thiết lập, người dùng sẽ không thể truy cập Send này khi đã đạt tới số lần truy cập tối đa.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "currentAccessCount": {
-    "message": "Số lượng truy cập hiện tại"
+    "message": "Số lần truy cập hiện tại"
   },
   "disableSend": {
-    "message": "Vô hiệu hoá mục Gửi này để không ai có thể truy cập nó.",
+    "message": "Vô hiệu hoá Send này để không ai có thể truy cập.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendPasswordDesc": {
-    "message": "Yêu cầu nhập mật khẩu khi người dùng truy cập vào phần Gửi này.",
+    "message": "Yêu cầu nhập mật khẩu khi truy cập Send này.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendNotesDesc": {
-    "message": "Ghi chú riêng tư về mục Gửi này.",
+    "message": "Ghi chú riêng tư về Send này.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendLink": {
-    "message": "Liên kết Gửi",
+    "message": "Liên kết Send",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendLinkLabel": {
-    "message": "Liên kết Gửi",
+    "message": "Liên kết Send",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "textHiddenByDefault": {
-    "message": "Khi truy cập vào phần Gửi, văn bản sẽ được ẩn theo mặc định",
+    "message": "Khi truy cập vào Send, văn bản sẽ được ẩn theo mặc định",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "createdSend": {
-    "message": "Đã tạo mục Gửi",
+    "message": "Đã tạo Send",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "editedSend": {
-    "message": "Đã lưu mục Gửi",
+    "message": "Đã lưu Send",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "deletedSend": {
-    "message": "Đã xóa mục Gửi",
+    "message": "Đã xóa Send",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "newPassword": {
     "message": "Mật khẩu mới"
   },
   "whatTypeOfSend": {
-    "message": "Đây là kiểu Gửi gì?",
+    "message": "Đây là loại Send nào?",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "createSend": {
-    "message": "Mục Gửi mới",
+    "message": "Tạo Send mới",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendTextDesc": {
@@ -2317,18 +2317,18 @@
     "message": "Tùy chỉnh"
   },
   "deleteSendConfirmation": {
-    "message": "Bạn có chắc muốn mục Gửi này?",
+    "message": "Bạn có chắc chắn muốn xóa Send này?",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "copySendLinkToClipboard": {
-    "message": "Sao chép liên kết tới khay nhớ tạm",
+    "message": "Sao chép liên kết Send vào bảng nhớ tạm",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "copySendLinkOnSave": {
-    "message": "Sao chép liên kết chia sẻ của mục Gửi này tới khay nhớ tạm khi lưu."
+    "message": "Sao chép liên kết Send này vào bảng nhớ tạm khi lưu."
   },
   "sendDisabled": {
-    "message": "Đã loại bỏ Gửi",
+    "message": "Đã loại bỏ Send",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendDisabledWarning": {
@@ -2339,7 +2339,7 @@
     "message": "Sao chép liên kết"
   },
   "disabled": {
-    "message": "Đã tắt"
+    "message": "Vô hiệu hóa"
   },
   "removePassword": {
     "message": "Xóa mật khẩu"
@@ -2348,7 +2348,7 @@
     "message": "Đã xóa mật khẩu"
   },
   "removePasswordConfirmation": {
-    "message": "Bạn có chắc muốn xóa mật khẩu này?"
+    "message": "Bạn có chắc chắn muốn xóa mật khẩu này không?"
   },
   "maxAccessCountReached": {
     "message": "Đã vượt số lần truy cập tối đa"
@@ -2369,13 +2369,13 @@
     "message": "Đang chờ tương tác với khóa bảo mật..."
   },
   "hideEmail": {
-    "message": "Ẩn địa chỉ email của tôi khỏi người nhận."
+    "message": "Ẩn địa chỉ email của tôi với người nhận."
   },
   "sendOptionsPolicyInEffect": {
-    "message": "Các chính sách của tổ chức đang ảnh hưởng đến tùy chọn Gửi của bạn."
+    "message": "Các chính sách của tổ chức đang ảnh hưởng đến tùy chọn Send của bạn."
   },
   "emailVerificationRequired": {
-    "message": "Yêu cầu xác nhận danh tính qua email"
+    "message": "Yêu cầu xác minh danh tính qua email"
   },
   "emailVerifiedV2": {
     "message": "Email đã xác minh"
@@ -2384,13 +2384,13 @@
     "message": "Bạn phải xác minh email của mình để sử dụng tính năng này."
   },
   "passwordPrompt": {
-    "message": "Nhắc lại mật khẩu chính"
+    "message": "Nhập lại mật khẩu chính"
   },
   "passwordConfirmation": {
     "message": "Xác nhận mật khẩu chính"
   },
   "passwordConfirmationDesc": {
-    "message": "Hành động này được bảo vệ. Để tiếp tục, vui lòng nhập lại mật khẩu chính của bạn để xác minh danh tính của bạn."
+    "message": "Hành động này được bảo vệ. Để tiếp tục, hãy nhập lại mật khẩu chính của bạn để xác minh danh tính."
   },
   "masterPasswordSuccessfullySet": {
     "message": "Mật khẩu chính được đặt thành công"
@@ -2399,13 +2399,13 @@
     "message": "Mật khẩu chính đã được cập nhật"
   },
   "updateMasterPassword": {
-    "message": "Cập nhật Mật khẩu chính"
+    "message": "Cập nhật mật khẩu chính"
   },
   "updateMasterPasswordWarning": {
-    "message": "Mật khẩu chính của bạn gần đây đã được thay đổi bởi một quản trị viên trong tổ chức của bạn. Để truy cập Kho, bạn phải cập nhật nó ngay bây giờ. Tiếp tục sẽ đăng xuất bạn khỏi phiên hiện tại của bạn, yêu cầu bạn đăng nhập lại. Các phiên hoạt động trên các thiết bị khác có thể tiếp tục hoạt động trong tối đa một giờ."
+    "message": "Mật khẩu chính của bạn gần đây đã được thay đổi bởi người quản trị trong tổ chức của bạn. Để truy cập kho, bạn phải cập nhật mật khẩu chính của mình ngay bây giờ. Việc tiếp tục sẽ đăng xuất khỏi kho và bạn sẽ cần đăng nhập lại. Ứng dụng Bitwaden trên các thiết bị khác có thể tiếp tục hoạt động trong tối đa một giờ sau đó sẽ bị đăng xuất."
   },
   "updateWeakMasterPasswordWarning": {
-    "message": "Mật khẩu chính của bạn không đáp ứng chính sách tổ chức của bạn. Để truy cập kho, bạn phải cập nhật mật khẩu chính của mình ngay bây giờ. Việc tiếp tục sẽ đăng xuất bạn khỏi phiên hiện tại và bắt buộc đăng nhập lại. Các phiên hoạt động trên các thiết bị khác có thể tiếp tục duy trì hoạt động trong tối đa một giờ."
+    "message": "Mật khẩu chính của bạn không đáp ứng chính sách của tổ chức của bạn. Để truy cập kho, bạn phải cập nhật mật khẩu chính của mình ngay bây giờ. Việc tiếp tục sẽ đăng xuất bạn khỏi phiên hiện tại và bắt buộc đăng nhập lại. Các phiên hoạt động trên các thiết bị khác có thể tiếp tục duy trì hoạt động trong tối đa một giờ."
   },
   "changePasswordWarning": {
     "message": "Sau khi thay đổi mật khẩu, bạn cần đăng nhập lại bằng mật khẩu mới. Các phiên đăng nhập đang hoạt động trên các thiết bị khác sẽ bị đăng xuất trong vòng một giờ."
@@ -2417,7 +2417,7 @@
     "message": "Mật khẩu chính của bạn không đáp ứng yêu cầu của tổ chức này. Vui lòng thay đổi mật khẩu chính để tiếp tục."
   },
   "tdeDisabledMasterPasswordRequired": {
-    "message": "Tổ chức của bạn đã vô hiệu hóa mã hóa bằng thiết bị đáng tin cậy. Vui lòng đặt mật khẩu chính để truy cập Kho của bạn."
+    "message": "Tổ chức của bạn đã vô hiệu hóa tính năng mã hóa thiết bị tin cậy. Vui lòng đặt mật khẩu chính để truy cập kho của bạn."
   },
   "tryAgain": {
     "message": "Thử lại"
@@ -2435,7 +2435,7 @@
     "message": "Đang chờ xác nhận"
   },
   "couldNotCompleteBiometrics": {
-    "message": "Không thể hoàn tất sinh trắc học."
+    "message": "Không thể hoàn tất quá trình xác thực sinh trắc học."
   },
   "needADifferentMethod": {
     "message": "Cần một phương pháp khác?"
@@ -2450,7 +2450,7 @@
     "message": "Dùng sinh trắc học"
   },
   "enterVerificationCodeSentToEmail": {
-    "message": "Nhập mã xác minh được gửi đến email của bạn."
+    "message": "Nhập mã xác minh đã được gửi đến email của bạn."
   },
   "resendCode": {
     "message": "Gửi lại mã"
@@ -2475,7 +2475,7 @@
     }
   },
   "vaultTimeoutPolicyWithActionInEffect": {
-    "message": "Tổ chức của bạn đang ảnh hưởng đến thời gian mở kho. Thời gian mở kho tối đa là $HOURS$ giờ và $MINUTES$ phút. Kho sẽ $ACTION$ sau khi hết thời gian mở kho.",
+    "message": "Các chính sách của tổ chức bạn đang ảnh hưởng đến thời gian mở kho. Thời gian mở kho tối đa được phép là $HOURS$ giờ và $MINUTES$ phút. Kho sẽ $ACTION$ sau khi đóng kho.",
     "placeholders": {
       "hours": {
         "content": "$1",
@@ -2492,7 +2492,7 @@
     }
   },
   "vaultTimeoutActionPolicyInEffect": {
-    "message": "Tổ chức của bạn sẽ $ACTION$ sau khi hết thời gian mở kho.",
+    "message": "Tổ chức bạn đã thiết lập hành động sau khi hết thời gian mở kho là $ACTION$.",
     "placeholders": {
       "action": {
         "content": "$1",
@@ -2504,7 +2504,7 @@
     "message": "Thời gian mở kho vượt quá giới hạn do tổ chức của bạn đặt ra."
   },
   "inviteAccepted": {
-    "message": "Lời mời được chấp nhận"
+    "message": "Đã chấp nhận lời mời"
   },
   "resetPasswordPolicyAutoEnroll": {
     "message": "Đăng ký tự động"
@@ -2513,7 +2513,7 @@
     "message": "Tổ chức này có chính sách doanh nghiệp sẽ tự động đặt lại mật khẩu chính cho bạn. Đăng ký sẽ cho phép quản trị viên tổ chức thay đổi mật khẩu chính của bạn."
   },
   "vaultExportDisabled": {
-    "message": "Đã xoá xuất kho"
+    "message": "Đã hủy xuất kho"
   },
   "personalVaultExportPolicyInEffect": {
     "message": "Các chính sách của tổ chức ngăn cản bạn xuất kho lưu trữ cá nhân của mình."
@@ -2546,7 +2546,7 @@
     "message": "Bạn đã rời khỏi tổ chức."
   },
   "ssoKeyConnectorError": {
-    "message": "Lỗi kết nối khóa: hãy đảm bảo kết nối khóa khả dụng và hoạt động chính xác."
+    "message": "Lỗi kết nối khóa: hãy đảm bảo kết nối khóa khả dụng và hoạt động bình thường."
   },
   "lockAllVaults": {
     "message": "Khoá tất cả kho"
@@ -2588,7 +2588,7 @@
     "message": "Đang xuất dữ liệu kho cá nhân"
   },
   "exportingIndividualVaultDescription": {
-    "message": "Chỉ dữ liệu trong kho cá nhân liên kết với $EMAIL$ mới được xuất. Không bao gồm \ncác dữ liệu trong kho tổ chức. Chỉ thông tin mục kho mới được xuất, sẽ không có các tệp đính kèm.",
+    "message": "Chỉ dữ liệu trong kho cá nhân liên kết với $EMAIL$ mới được xuất. Không bao gồm các dữ liệu trong kho tổ chức. Chỉ thông tin về các mục trong kho mới được xuất, sẽ không có các tệp đính kèm.",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -2621,7 +2621,7 @@
     "message": "Đã khóa"
   },
   "yourVaultIsLockedV2": {
-    "message": "Kho lưu trữ đã bị khóa"
+    "message": "Kho của bạn đã khóa"
   },
   "unlocked": {
     "message": "Đã mở khóa"
@@ -2637,16 +2637,16 @@
     "message": "Loại mật khẩu"
   },
   "regenerateUsername": {
-    "message": "Tạo lại tên người dùng"
+    "message": "Tạo lại tên đăng nhập"
   },
   "generateUsername": {
-    "message": "Tạo tên tài khoản"
+    "message": "Tạo tên đăng nhập"
   },
   "generateEmail": {
     "message": "Tạo email"
   },
   "usernameGenerator": {
-    "message": "Trình tạo tên người dùng"
+    "message": "Trình tạo tên đăng nhập"
   },
   "generatePassword": {
     "message": "Tạo mật khẩu"
@@ -2661,7 +2661,7 @@
     "message": "Đã tạo cụm mật khẩu"
   },
   "usernameGenerated": {
-    "message": "Tên người dùng được tạo tự động"
+    "message": "Tên đăng nhập được tạo tự động"
   },
   "emailGenerated": {
     "message": "Email được tạo ra"
@@ -2701,14 +2701,14 @@
     }
   },
   "usernameType": {
-    "message": "Loại tên người dùng"
+    "message": "Loại tên đăng nhập"
   },
   "plusAddressedEmail": {
     "message": "Địa chỉ email có hậu tố",
     "description": "Username generator option that appends a random sub-address to the username. For example: address+subaddress@email.com"
   },
   "plusAddressedEmailDesc": {
-    "message": "Sử dụng khả năng địa chỉ phụ của nhà cung cấp dịch vụ mail của bạn."
+    "message": "Sử dụng tính năng địa chỉ phụ của nhà cung cấp dịch vụ email của bạn."
   },
   "catchallEmail": {
     "message": "Catch-all email"
@@ -2726,7 +2726,7 @@
     "message": "Dùng cụm mật khẩu này"
   },
   "useThisUsername": {
-    "message": "Dùng tên người dùng này"
+    "message": "Dùng tên đăng nhập này"
   },
   "random": {
     "message": "Ngẫu nhiên"
@@ -2735,13 +2735,13 @@
     "message": "Từ ngẫu nhiên"
   },
   "websiteName": {
-    "message": "Tên website"
+    "message": "Tên trang web"
   },
   "service": {
     "message": "Dịch vụ"
   },
   "allVaults": {
-    "message": "Tất cả kho"
+    "message": "Tất cả các kho"
   },
   "searchOrganization": {
     "message": "Tìm tổ chức"
@@ -2792,7 +2792,7 @@
     }
   },
   "forwaderInvalidToken": {
-    "message": "Khoá API $SERVICENAME$ không hợp lệ",
+    "message": "API token $SERVICENAME$ không hợp lệ",
     "description": "Displayed when the user's API token is empty or rejected by the forwarding service.",
     "placeholders": {
       "servicename": {
@@ -2802,7 +2802,7 @@
     }
   },
   "forwaderInvalidTokenWithMessage": {
-    "message": "Khoá API $SERVICENAME$ không hợp lệ: $ERRORMESSAGE$",
+    "message": "API token $SERVICENAME$ không hợp lệ: $ERRORMESSAGE$",
     "description": "Displayed when the user's API token is rejected by the forwarding service with an error message.",
     "placeholders": {
       "servicename": {
@@ -2840,7 +2840,7 @@
     }
   },
   "forwarderNoAccountId": {
-    "message": "Không thể lấy ID tài khoản email ẩn từ $SERVICENAME$.",
+    "message": "Không thể lấy ID tài khoản email ẩn danh của $SERVICENAME$.",
     "description": "Displayed when the forwarding service fails to return an account ID.",
     "placeholders": {
       "servicename": {
@@ -2894,13 +2894,13 @@
     "description": "Part of a URL."
   },
   "apiAccessToken": {
-    "message": "Khoá truy cập API"
+    "message": "Token truy cập API"
   },
   "apiKey": {
     "message": "Khóa API"
   },
   "premiumSubcriptionRequired": {
-    "message": "Yêu cầu đăng ký gói Premium"
+    "message": "Yêu cầu đăng ký gói Cao cấp"
   },
   "organizationIsDisabled": {
     "message": "Tổ chức đã ngưng hoạt động"
@@ -2912,7 +2912,7 @@
     "message": "Bạn có chắc chắn muốn chọn \"Không bao giờ\" không? Lựa chọn này sẽ lưu khóa mã hóa kho của bạn trực tiếp trên thiết bị. Hãy nhớ bảo vệ thiết bị của bạn thật cẩn thận nếu bạn chọn tùy chọn này."
   },
   "vault": {
-    "message": "Kho mật khẩu"
+    "message": "Kho lưu trữ"
   },
   "loginWithMasterPassword": {
     "message": "Đăng nhập bằng mật khẩu chính"
@@ -2960,16 +2960,16 @@
     "message": "Cần một tùy chọn khác?"
   },
   "fingerprintMatchInfo": {
-    "message": "Vui lòng đảm bảo rằng bạn đã mở khoá kho và cụm vân tay khớp trên thiết bị khác."
+    "message": "Vui lòng đảm bảo rằng bạn đã mở khoá kho và cụm từ xác thực khớp với thiết bị khác."
   },
   "fingerprintPhraseHeader": {
-    "message": "Cụm vân tay"
+    "message": "Cụm từ xác thực"
   },
   "youWillBeNotifiedOnceTheRequestIsApproved": {
     "message": "Bạn sẽ nhận được thông báo ngay sau khi yêu cầu được phê duyệt"
   },
   "needAnotherOption": {
-    "message": "Đăng nhập bằng thiết bị phải được thiết lập trong cài đặt của ứng dụng Bitwarden. Dùng cách khác?"
+    "message": "Đăng nhập bằng thiết bị phải được thiết lập trong phần cài đặt của ứng dụng Bitwarden. Dùng cách khác?"
   },
   "viewAllLogInOptions": {
     "message": "Xem tất cả tùy chọn đăng nhập"
@@ -2981,7 +2981,7 @@
     "message": "Gửi lại thông báo"
   },
   "toggleCharacterCount": {
-    "message": "Bật tắt đếm kí tự",
+    "message": "Bật/tắt hiển thị số ký tự",
     "description": "'Character count' describes a feature that displays a number next to each character of the password."
   },
   "areYouTryingToAccessYourAccount": {
@@ -3003,7 +3003,7 @@
     "message": "Địa chỉ IP"
   },
   "time": {
-    "message": "Thời Gian"
+    "message": "Thời gian"
   },
   "confirmAccess": {
     "message": "Xác nhận truy cập"
@@ -3025,7 +3025,7 @@
     }
   },
   "youDeniedALogInAttemptFromAnotherDevice": {
-    "message": "Bạn đã từ chối đăng nhập từ thiết bị khác. Nếu đó là bạn, hãy thử đăng nhập lại bằng thiết bị đó."
+    "message": "Bạn đã từ chối một lần đăng nhập từ thiết bị khác. Nếu thực sự là bạn, hãy thử đăng nhập lại bằng thiết bị đó."
   },
   "justNow": {
     "message": "Vừa xong"
@@ -3067,13 +3067,13 @@
     "message": "Kiểm tra email của bạn"
   },
   "followTheLinkInTheEmailSentTo": {
-    "message": "Nhấp vào liên kết trong email được gửi đến"
+    "message": "Nhấp vào liên kết được gửi đến trong email"
   },
   "andContinueCreatingYourAccount": {
     "message": "và tiếp tục tạo tài khoản của bạn."
   },
   "noEmail": {
-    "message": "Không có email?"
+    "message": "Không nhận được email?"
   },
   "goBack": {
     "message": "Quay lại"
@@ -3082,19 +3082,19 @@
     "message": "để chỉnh sửa địa chỉ email của bạn."
   },
   "exposedMasterPassword": {
-    "message": "Mật khẩu chính bị lộ"
+    "message": "Mật khẩu chính đã bị lộ"
   },
   "exposedMasterPasswordDesc": {
-    "message": "Mật khẩu này đã bị rò rỉ trong một vụ tấn công dữ liệu. Dùng mật khẩu mới và an toàn để bảo vệ tài khoản bạn. Bạn có chắc muốn sử dụng mật khẩu đã bị rò rỉ?"
+    "message": "Mật khẩu này đã bị lộ trong một vụ rò rỉ dữ liệu. Hãy sử dụng mật khẩu mạnh và duy nhất để bảo vệ tài khoản của bạn. Bạn có chắc chắn muốn sử dụng mật khẩu đã bị lộ này không?"
   },
   "weakAndExposedMasterPassword": {
-    "message": "Mật khẩu chính yếu và bị lộ"
+    "message": "Mật khẩu chính yếu và đã bị lộ"
   },
   "weakAndBreachedMasterPasswordDesc": {
-    "message": "Mật khẩu yếu này đã bị rò rỉ trong một vụ tấn công dữ liệu. Dùng mật khẩu mới và an toàn để bảo vệ tài khoản bạn. Bạn có chắc muốn sử dụng mật khẩu đã bị rò rỉ?"
+    "message": "Mật khẩu yếu này đã bị rò rỉ trong một vụ tấn công dữ liệu. Hãy dùng mật khẩu mạnh và duy nhất để bảo vệ tài khoản của bạn. Bạn có chắc muốn sử dụng mật khẩu đã bị rò rỉ?"
   },
   "checkForBreaches": {
-    "message": "Kiểm tra mật khẩu có lộ trong các vụ rò rỉ dữ liệu hay không"
+    "message": "Kiểm tra mật khẩu có bị lộ trong các vụ rò rỉ dữ liệu hay không"
   },
   "loggedInExclamation": {
     "message": "Đã đăng nhập!"
@@ -3106,13 +3106,13 @@
     "message": "Đang truy cập"
   },
   "accessTokenUnableToBeDecrypted": {
-    "message": "Bạn đã bị đăng xuất do khoá truy cập của bạn không thể giải mã. Vui lòng đăng nhập lại để khắc phục sự cố này."
+    "message": "Bạn đã bị đăng xuất vì token truy cập của bạn không thể được giải mã. Vui lòng đăng nhập lại để khắc phục sự cố này."
   },
   "refreshTokenSecureStorageRetrievalFailure": {
-    "message": "Bạn đã bị đăng xuất do khoá truy cập của bạn không thể truy xuất. Vui lòng đăng nhập lại để khắc phục sự cố này."
+    "message": "Bạn đã bị đăng xuất vì không thể lấy được mã làm mới (refresh token). Vui lòng đăng nhập lại để khắc phục sự cố này."
   },
   "masterPasswordHint": {
-    "message": "Mật khẩu chính của bạn không thể phục hồi nếu bạn quên nó!"
+    "message": "Mật khẩu chính của bạn không thể khôi phục nếu bạn quên nó!"
   },
   "characterMinimum": {
     "message": "Tối thiểu $LENGTH$ ký tự",
@@ -3124,10 +3124,10 @@
     }
   },
   "windowsBiometricUpdateWarning": {
-    "message": "Bitwarden khuyên bạn nên cập nhật cài đặt sinh trắc học để yêu cầu mật khẩu chính (hoặc mã PIN) trong lần mở khóa đầu tiên. Bạn có muốn cập nhật cài đặt của mình bây giờ không?"
+    "message": "Bitwarden khuyến nghị bạn cập nhật cài đặt sinh trắc học để yêu cầu nhập mật khẩu chính (hoặc mã PIN) khi mở khóa lần đầu. Bạn có muốn cập nhật cài đặt ngay bây giờ không?"
   },
   "windowsBiometricUpdateWarningTitle": {
-    "message": "Cập nhật cài đặt được đề xuất"
+    "message": "Cập nhật Cài đặt được đề xuất"
   },
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Nhớ thiết bị này để đăng nhập dễ dàng trong tương lai"
@@ -3163,7 +3163,7 @@
     "message": "Khu vực"
   },
   "ssoIdentifierRequired": {
-    "message": "Cần có mã định danh SSO của tổ chức."
+    "message": "Cần có mã định danh Đăng nhập một lần của tổ chức."
   },
   "eu": {
     "message": "Châu Âu",
@@ -3185,10 +3185,10 @@
     "message": "Yêu cầu của bạn đã được gửi đến quản trị viên."
   },
   "troubleLoggingIn": {
-    "message": "Không thể đăng nhập?"
+    "message": "Gặp vấn đề khi đăng nhập?"
   },
   "loginApproved": {
-    "message": "Lượt đăng nhập đã duyệt"
+    "message": "Lượt đăng nhập đã phê duyệt"
   },
   "userEmailMissing": {
     "message": "Thiếu email người dùng"
@@ -3233,7 +3233,7 @@
     "message": "Tìm kiếm"
   },
   "inputMinLength": {
-    "message": "Giá trị nhập vào phải ít nhất $COUNT$ ký tự.",
+    "message": "Dữ liệu nhập vào phải có độ dài ít nhất $COUNT$ ký tự.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -3242,7 +3242,7 @@
     }
   },
   "inputMaxLength": {
-    "message": "Giá trị nhập vào không được vượt quá $COUNT$ ký tự.",
+    "message": "Độ dài của dữ liệu nhập vào không được vượt quá $COUNT$ ký tự.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -3260,7 +3260,7 @@
     }
   },
   "inputMinValue": {
-    "message": "Giá trị nhập vào phải ít nhất $MIN$.",
+    "message": "Dữ liệu nhập vào phải ít nhất là $MIN$.",
     "placeholders": {
       "min": {
         "content": "$1",
@@ -3269,7 +3269,7 @@
     }
   },
   "inputMaxValue": {
-    "message": "Giá trị nhập vào không được vượt quá $MAX$.",
+    "message": "Dữ liệu nhập vào không được vượt quá $MAX$.",
     "placeholders": {
       "max": {
         "content": "$1",
@@ -3281,14 +3281,14 @@
     "message": "Có ít nhất 1 địa chỉ email không hợp lệ"
   },
   "inputTrimValidator": {
-    "message": "Giá trị nhập vào không được chỉ có khoảng trắng.",
+    "message": "Dữ liệu nhập vào không được chỉ chứa khoảng trắng.",
     "description": "Notification to inform the user that a form's input can't contain only whitespace."
   },
   "inputEmail": {
-    "message": "Giá trị nhập vào không phải là địa chỉ email."
+    "message": "Dữ liệu nhập vào không phải là địa chỉ email."
   },
   "fieldsNeedAttention": {
-    "message": "Có $COUNT$ trường cần bạn xem xét ở trên.",
+    "message": "$COUNT$ trường ở trên cần bạn chú ý.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -3300,7 +3300,7 @@
     "message": "-- Chọn --"
   },
   "multiSelectPlaceholder": {
-    "message": "-- Nhập để lọc --"
+    "message": "-- Nhập từ khóa để lọc --"
   },
   "multiSelectLoading": {
     "message": "Đang tải các tuỳ chọn..."
@@ -3327,16 +3327,16 @@
     "message": "Ẩn/hiện thanh điều hướng bên"
   },
   "skipToContent": {
-    "message": "Chuyển đến nội dung"
+    "message": "Bỏ qua nội dung"
   },
   "typePasskey": {
     "message": "Mã khoá"
   },
   "passkeyNotCopied": {
-    "message": "Không thể sao chép mã khoá"
+    "message": "Mã khóa sẽ không được sao chép"
   },
   "passkeyNotCopiedAlert": {
-    "message": "Bản sao sẽ không bao gồm mã khoá. Bạn có muốn tiếp tục tạo bản sao mục này?"
+    "message": "Bản sao sẽ không bao gồm mã khoá. Bạn có muốn tiếp tục tạo bản sao cho mục này?"
   },
   "aliasDomain": {
     "message": "Tên miền thay thế"
@@ -3346,10 +3346,10 @@
     "description": "Used for the desktop menu item and the header of the import dialog"
   },
   "importError": {
-    "message": "Lỗi nhập"
+    "message": "Lỗi khi nhập"
   },
   "importErrorDesc": {
-    "message": "Có vấn đề với dữ liệu bạn cố gắng nhập. Vui lòng khắc phục các lỗi được liệt kê bên dưới trong tập tin nguồn của bạn và thử lại."
+    "message": "Có vấn đề với dữ liệu bạn đang cố gắng nhập. Vui lòng khắc phục các lỗi được liệt kê bên dưới trong tệp nguồn của bạn và thử lại."
   },
   "resolveTheErrorsBelowAndTryAgain": {
     "message": "Giải quyết các lỗi bên dưới và thử lại."
@@ -3385,7 +3385,7 @@
     "message": "Lỗi kết nối với dịch vụ Duo. Sử dụng phương thức đăng nhập hai bước khác hoặc liên hệ với Duo để được hỗ trợ."
   },
   "duoRequiredByOrgForAccount": {
-    "message": "Tài khoản của bạn yêu cầu xác minh hai bước với Duo."
+    "message": "Tài khoản của bạn bắt buộc đăng nhập hai bước bằng Duo."
   },
   "duoTwoFactorRequiredPageSubtitle": {
     "message": "Đăng nhập hai bước là bắt buộc cho tài khoản của bạn. Hãy làm theo các bước dưới đây để hoàn tất quá trình đăng nhập."
@@ -3424,7 +3424,7 @@
     "message": "Chọn bộ sưu tập"
   },
   "importTargetHint": {
-    "message": "Chọn tùy chọn này để di chuyển nội dung tập tin đã được nhập đến $DESTINATION$",
+    "message": "Chọn tùy chọn này nếu bạn muốn nội dung của tệp đã nhập được di chuyển đến $DESTINATION$",
     "description": "Located as a hint under the import target. Will be appended by either folder or collection, depending if the user is importing into an individual or an organizational vault.",
     "placeholders": {
       "destination": {
@@ -3452,7 +3452,7 @@
     "message": "hoặc sao chép/dán nội dung của tập tin nhập"
   },
   "instructionsFor": {
-    "message": "Hướng dẫn dùng $NAME$",
+    "message": "Hướng dẫn cho $NAME$",
     "description": "The title for the import tool instructions.",
     "placeholders": {
       "name": {
@@ -3480,7 +3480,7 @@
     "message": "Không tìm thấy dữ liệu LastPass"
   },
   "incorrectUsernameOrPassword": {
-    "message": "Tên người dùng hoặc mật khẩu không đúng"
+    "message": "Tên đăng nhập hoặc mật khẩu không đúng"
   },
   "incorrectPassword": {
     "message": "Mật khẩu không đúng"
@@ -3522,7 +3522,7 @@
     "message": "Yêu cầu xác thực LastPass"
   },
   "awaitingSSO": {
-    "message": "Đang chờ xác thực SSO"
+    "message": "Đang chờ xác thực Đăng nhập một lần"
   },
   "awaitingSSODesc": {
     "message": "Vui lòng tiếp tục đăng nhập bằng thông tin đăng nhập của công ty bạn."
@@ -3538,10 +3538,10 @@
     "message": "Nhập từ CSV"
   },
   "lastPassTryAgainCheckEmail": {
-    "message": "Thử lại hoặc tìm email từ LastPass để xác minh đó là bạn."
+    "message": "Hãy thử lại hoặc kiểm tra email từ LastPass để xác minh rằng đó là bạn."
   },
   "collection": {
-    "message": "Bộ Sưu Tập"
+    "message": "Bộ sưu tập"
   },
   "lastPassYubikeyDesc": {
     "message": "Cắm khóa YubiKey được liên kết với tài khoản LastPass của bạn vào cổng USB của máy tính, sau đó nhấn nút trên YubiKey."
@@ -3566,6 +3566,14 @@
     "message": "Thông tin thêm về độ phù hợp",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Tùy chọn nâng cao",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Cảnh báo",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "Thành công"
   },
@@ -3576,7 +3584,7 @@
     "message": "Vô hiệu hoá tính năng tăng tốc phần cứng và khởi động lại"
   },
   "enableHardwareAccelerationRestart": {
-    "message": "Kích hoạt tính năng tăng tốc phần cứng và khởi động lại"
+    "message": "Bật tính năng tăng tốc phần cứng và khởi động lại"
   },
   "removePasskey": {
     "message": "Xóa mã khoá"
@@ -3585,10 +3593,10 @@
     "message": "Đã xóa mã khoá"
   },
   "errorAssigningTargetCollection": {
-    "message": "Lỗi khi gán vào bộ sưu tập chỉ định."
+    "message": "Lỗi khi gán vào bộ sưu tập đã chọn."
   },
   "errorAssigningTargetFolder": {
-    "message": "Lỗi khi gán vào thư mục chỉ định."
+    "message": "Lỗi khi gán vào thư mục đã chọn."
   },
   "viewItemsIn": {
     "message": "Xem các mục trong $NAME$",
@@ -3628,13 +3636,13 @@
     "message": "Dữ liệu"
   },
   "fileSends": {
-    "message": "Gửi file"
+    "message": "Gửi tệp"
   },
   "textSends": {
-    "message": "Gửi tin nhắn"
+    "message": "Gửi văn bản"
   },
   "ssoError": {
-    "message": "Không thể tìm thấy cổng trống để đăng nhập SSO."
+    "message": "Không tìm thấy cổng trống để thực hiện đăng nhập một lần."
   },
   "securePasswordGenerated": {
     "message": "Mật khẩu an toàn đã được tạo! Đừng quên cập nhật mật khẩu của bạn trên trang web."
@@ -3732,7 +3740,7 @@
     "message": "Loại khóa SSH không được hỗ trợ"
   },
   "importSshKeyFromClipboard": {
-    "message": "Nhập khóa từ bộ nhớ tạm"
+    "message": "Nhập khóa từ bảng nhớ tạm"
   },
   "sshKeyImported": {
     "message": "Khóa SSH được nhập thành công"
diff --git a/apps/desktop/src/locales/zh_CN/messages.json b/apps/desktop/src/locales/zh_CN/messages.json
index a2c6e4a052c..75d8925c4f7 100644
--- a/apps/desktop/src/locales/zh_CN/messages.json
+++ b/apps/desktop/src/locales/zh_CN/messages.json
@@ -3566,6 +3566,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "高级选项",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "警告",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "成功"
   },
diff --git a/apps/desktop/src/locales/zh_TW/messages.json b/apps/desktop/src/locales/zh_TW/messages.json
index c09172ec498..88762ea9260 100644
--- a/apps/desktop/src/locales/zh_TW/messages.json
+++ b/apps/desktop/src/locales/zh_TW/messages.json
@@ -3566,6 +3566,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "success": {
     "message": "成功"
   },

From 0f72bda3c136c1a9beedb8a22d09fa19c8f0f367 Mon Sep 17 00:00:00 2001
From: "bw-ghapp[bot]" <178206702+bw-ghapp[bot]@users.noreply.github.com>
Date: Mon, 14 Jul 2025 13:54:49 +0200
Subject: [PATCH 124/239] Autosync the updated translations (#15598)

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>
---
 apps/browser/src/_locales/fr/messages.json    |   6 +-
 apps/browser/src/_locales/hu/messages.json    |   6 +-
 apps/browser/src/_locales/pl/messages.json    |  32 ++---
 apps/browser/src/_locales/sr/messages.json    |  22 +--
 apps/browser/src/_locales/sv/messages.json    |   2 +-
 apps/browser/src/_locales/uk/messages.json    |  10 +-
 apps/browser/src/_locales/vi/messages.json    | 132 +++++++++---------
 apps/browser/src/_locales/zh_CN/messages.json |   2 +-
 apps/browser/store/locales/vi/copy.resx       |   2 +-
 9 files changed, 107 insertions(+), 107 deletions(-)

diff --git a/apps/browser/src/_locales/fr/messages.json b/apps/browser/src/_locales/fr/messages.json
index 326f1e3c09c..efcc28ddcea 100644
--- a/apps/browser/src/_locales/fr/messages.json
+++ b/apps/browser/src/_locales/fr/messages.json
@@ -3804,7 +3804,7 @@
     "description": "Toast message for informing the user that autofill on page load has been set to the default setting."
   },
   "turnOffMasterPasswordPromptToEditField": {
-    "message": "Désactivez la resaisie du mot de passe maître pour éditer ce champ",
+    "message": "Désactivez la ressaisie du mot de passe principal pour modifier ce champ",
     "description": "Message appearing below the autofill on load message when master password reprompt is set for a vault item."
   },
   "toggleSideNavigation": {
@@ -4844,10 +4844,10 @@
     "message": "Entrez l'identifiant html, le nom, l'étiquette aria ou l'espace réservé du champ."
   },
   "editField": {
-    "message": "Éditer le champ"
+    "message": "Modifier le champ"
   },
   "editFieldLabel": {
-    "message": "Éditer $LABEL$",
+    "message": "Modifier $LABEL$",
     "placeholders": {
       "label": {
         "content": "$1",
diff --git a/apps/browser/src/_locales/hu/messages.json b/apps/browser/src/_locales/hu/messages.json
index ba49c0f1a60..5391b266a93 100644
--- a/apps/browser/src/_locales/hu/messages.json
+++ b/apps/browser/src/_locales/hu/messages.json
@@ -1174,10 +1174,10 @@
     "description": "Detailed error message shown when saving login details fails."
   },
   "changePasswordWarning": {
-    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+    "message": "A jelszó megváltoztatása után be kell jelentkezni az új jelszóval. Az aktív munkamenetek más eszközökön egy órán belül kijelentkeznek."
   },
   "accountRecoveryUpdateMasterPasswordSubtitle": {
-    "message": "Change your master password to complete account recovery."
+    "message": "Módosítsuk a mesterjelszót a fiók helyreállításának befejezéséhez."
   },
   "enableChangedPasswordNotification": {
     "message": "Létező bejelentkezés frissítés kérése"
@@ -3461,7 +3461,7 @@
     "message": "A kérés elküldésre került."
   },
   "masterPasswordChanged": {
-    "message": "Master password saved"
+    "message": "A mesterjelszó mentésre került."
   },
   "exposedMasterPassword": {
     "message": "Kiszivárgott mesterjelszó"
diff --git a/apps/browser/src/_locales/pl/messages.json b/apps/browser/src/_locales/pl/messages.json
index a6d5e34c03e..b4b62d7968c 100644
--- a/apps/browser/src/_locales/pl/messages.json
+++ b/apps/browser/src/_locales/pl/messages.json
@@ -833,7 +833,7 @@
     "message": "Nie można zastosować autouzupełnienia na tej stronie. Skopiuj i wklej informacje ręcznie."
   },
   "totpCaptureError": {
-    "message": "Nie można zeskanować kodu QR z bieżącej strony"
+    "message": "Nie można zeskanować kodu QR z obecnej strony"
   },
   "totpCaptureSuccess": {
     "message": "Klucz uwierzytelniający został dodany"
@@ -851,7 +851,7 @@
     "message": "Bitwarden może przechowywać i uzupełniać kody weryfikacyjne. Wybierz ikonę aparatu, aby zrobić zrzut ekranu z kodem QR lub skopiuj i wklej klucz do tego pola."
   },
   "learnMoreAboutAuthenticators": {
-    "message": "Dowiedz się więcej o uwierzytelniaczach"
+    "message": "Dowiedz się więcej o uwierzytelnianiu"
   },
   "copyTOTP": {
     "message": "Kopiuj klucz uwierzytelniający (TOTP)"
@@ -1019,10 +1019,10 @@
     "message": "Opcje zapisywania w sejfie"
   },
   "addLoginNotificationDesc": {
-    "message": "\"Dodaj powiadomienia logowania\" automatycznie wyświetla monit o zapisanie nowych danych logowania do sejfu przy każdym pierwszym logowaniu."
+    "message": "Proponuj dodanie elementu, jeśli nie ma go w sejfie."
   },
   "addLoginNotificationDescAlt": {
-    "message": "Poproś o dodanie elementu, jeśli nie zostanie znaleziony w Twoim sejfie. Dotyczy wszystkich zalogowanych kont."
+    "message": "Proponuj dodanie elementu, jeśli nie ma go w sejfie. Dotyczy wszystkich zalogowanych kont."
   },
   "showCardsInVaultViewV2": {
     "message": "Pokazuj zawsze karty w sugestiach autouzupełniania"
@@ -1141,7 +1141,7 @@
     "description": "Message displayed when login details are successfully updated."
   },
   "loginUpdateTaskSuccess": {
-    "message": "Świetna robota! Podjęto kroki mające na celu zwiększenie bezpieczeństwa Twojego oraz $ORGANIZATION$.",
+    "message": "Dobra robota! Twoje konto i organizacja $ORGANIZATION$ jest bezpieczniejsza.",
     "placeholders": {
       "organization": {
         "content": "$1"
@@ -1174,7 +1174,7 @@
     "description": "Detailed error message shown when saving login details fails."
   },
   "changePasswordWarning": {
-    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+    "message": "Po zmianie hasła musisz się zalogować przy użyciu nowego hasła. Aktywne sesje na innych urządzeniach zostaną wylogowane w ciągu jednej godziny."
   },
   "accountRecoveryUpdateMasterPasswordSubtitle": {
     "message": "Zmień hasło główne, aby zakończyć odzyskiwanie konta."
@@ -1183,10 +1183,10 @@
     "message": "Proponuj aktualizuję obecnych danych logowania"
   },
   "changedPasswordNotificationDesc": {
-    "message": "Poproś o aktualizację hasła danych logowania po wykryciu zmiany w witrynie."
+    "message": "Proponuj aktualizację hasła po wykryciu zmiany na stronie internetowej."
   },
   "changedPasswordNotificationDescAlt": {
-    "message": "Poproś o aktualizację hasła, gdy zmiana zostanie wykryta na stronie. Dotyczy wszystkich zalogowanych kont."
+    "message": "Proponuj aktualizację hasła po wykryciu zmiany na stronie internetowej. Dotyczy wszystkich zalogowanych kont."
   },
   "enableUsePasskeys": {
     "message": "Proponuj zapisywanie i używanie kluczy dostępu"
@@ -2126,7 +2126,7 @@
     "message": "Właściciel"
   },
   "whoOwnsThisItem": {
-    "message": "Kto jest właścicielem tego elementu?"
+    "message": "Kto jest właścicielem elementu?"
   },
   "strong": {
     "message": "Silne",
@@ -2984,10 +2984,10 @@
     "message": "Minuty"
   },
   "vaultTimeoutPolicyAffectingOptions": {
-    "message": "Wymagania polityki przedsiębiorstwa zostały zastosowane do twoich opcji przekrocznia limitu czasu"
+    "message": "Zasady organizacji zostały zastosowane do opcji blokowania sejfu"
   },
   "vaultTimeoutPolicyInEffect": {
-    "message": "Zasady organizacji mają wpływ czas blokowania sejfu. Maksymalny dozwolony czas wynosi $HOURS$ godz. i $MINUTES$ min.",
+    "message": "Zasady organizacji mają wpływ na czas blokowania sejfu. Maksymalny dozwolony czas wynosi $HOURS$ godz. i $MINUTES$ min.",
     "placeholders": {
       "hours": {
         "content": "$1",
@@ -3013,7 +3013,7 @@
     }
   },
   "vaultTimeoutPolicyMaximumError": {
-    "message": "Limit czasu przekracza ograniczenie ustawione przez Twoją organizację: $HOURS$ godzin(y) i $MINUTES$ minut(y) maksymalnie",
+    "message": "Czas blokowania sejfu przekracza zasady organizacji. Maksymalny dozwolony czas wynosi $HOURS$ godz. i $MINUTES$ min.",
     "placeholders": {
       "hours": {
         "content": "$1",
@@ -3043,7 +3043,7 @@
     }
   },
   "vaultTimeoutActionPolicyInEffect": {
-    "message": "Zasady organizacji ustawiły czas blokowania sejfu na $ACTION$.",
+    "message": "Zasady organizacji wymuszają sposób blokowania sejfu na $ACTION$.",
     "placeholders": {
       "action": {
         "content": "$1",
@@ -3052,7 +3052,7 @@
     }
   },
   "vaultTimeoutTooLarge": {
-    "message": "Czas blokowania sejfu przekracza limit określony przez organizację."
+    "message": "Czas blokowania aplikacji przekracza limit określony przez organizację."
   },
   "vaultExportDisabled": {
     "message": "Eksportowanie sejfu jest niedostępne"
@@ -3302,7 +3302,7 @@
     }
   },
   "forwarderNoAccountId": {
-    "message": "Nie można uzyskać ID maskowanego konta e-mail dla $SERVICENAME$.",
+    "message": "Nie można uzyskać identyfikatora konta e-mail $SERVICENAME$.",
     "description": "Displayed when the forwarding service fails to return an account ID.",
     "placeholders": {
       "servicename": {
@@ -5104,7 +5104,7 @@
     "message": "Odblokuj sejf w kilka sekund"
   },
   "unlockVaultDesc": {
-    "message": "Możesz dostosować ustawienia odblokowania i limitu czasu, aby szybciej uzyskać dostęp do sejfu."
+    "message": "Możesz dostosować sposób i czas blokowania sejfu, aby uzyskać szybszy dostęp do sejfu."
   },
   "unlockPinSet": {
     "message": "Kod PIN został ustawiony"
diff --git a/apps/browser/src/_locales/sr/messages.json b/apps/browser/src/_locales/sr/messages.json
index b802fab75f6..4ac75bde569 100644
--- a/apps/browser/src/_locales/sr/messages.json
+++ b/apps/browser/src/_locales/sr/messages.json
@@ -1174,10 +1174,10 @@
     "description": "Detailed error message shown when saving login details fails."
   },
   "changePasswordWarning": {
-    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+    "message": "Након промене лозинке, мораћете да се пријавите са новом лозинком. Активне сесије на другим уређајима биће одјављене у року од једног сата."
   },
   "accountRecoveryUpdateMasterPasswordSubtitle": {
-    "message": "Change your master password to complete account recovery."
+    "message": "Промените главну лозинку да бисте завршили опоравак налога."
   },
   "enableChangedPasswordNotification": {
     "message": "Питај за ажурирање постојеће пријаве"
@@ -2926,7 +2926,7 @@
     "message": "Морате да потврдите е-пошту да бисте користили ову функцију. Можете да потврдите е-пошту у веб сефу."
   },
   "masterPasswordSuccessfullySet": {
-    "message": "Master password successfully set"
+    "message": "Главна лозинка успешно постављена"
   },
   "updatedMasterPassword": {
     "message": "Главна лозинка ажурирана"
@@ -3461,7 +3461,7 @@
     "message": "Захтев је послат"
   },
   "masterPasswordChanged": {
-    "message": "Master password saved"
+    "message": "Главна лозинка сачувана"
   },
   "exposedMasterPassword": {
     "message": "Изложена главна лозинка"
@@ -3578,10 +3578,10 @@
     "message": "Затражити одобрење администратора"
   },
   "unableToCompleteLogin": {
-    "message": "Unable to complete login"
+    "message": "Није могуће завршити пријаву"
   },
   "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
-    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+    "message": "Потребно је да се пријавите на поузданом уређају или да замолите администратора да вам додели лозинку."
   },
   "ssoIdentifierRequired": {
     "message": "Потребан је SSO идентификатор организације."
@@ -4263,23 +4263,23 @@
     "description": "Label indicating the most common import formats"
   },
   "uriMatchDefaultStrategyHint": {
-    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "message": "Детекција подударања URI-ја је начин на који Bitwarden идентификује предлоге за ауто-попуњавање.",
     "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
   },
   "regExAdvancedOptionWarning": {
-    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "message": "„Регуларни израз“ је напредна опција са повећаним ризиком од откривања акредитива.",
     "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
   },
   "startsWithAdvancedOptionWarning": {
-    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "message": "„Почни са“ је напредна опција са повећаним ризиком од откривања акредитива.",
     "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
   },
   "uriMatchWarningDialogLink": {
-    "message": "More about match detection",
+    "message": "Више о откривању подударања",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
   "uriAdvancedOption": {
-    "message": "Advanced options",
+    "message": "Напредне опције",
     "description": "Advanced option placeholder for uri option component"
   },
   "confirmContinueToBrowserSettingsTitle": {
diff --git a/apps/browser/src/_locales/sv/messages.json b/apps/browser/src/_locales/sv/messages.json
index 315cafd7ed7..ff20cdd2ed9 100644
--- a/apps/browser/src/_locales/sv/messages.json
+++ b/apps/browser/src/_locales/sv/messages.json
@@ -4069,7 +4069,7 @@
     "message": "Nyckel"
   },
   "accessing": {
-    "message": "Åtkomst"
+    "message": "Åtkomst via"
   },
   "loggedInExclamation": {
     "message": "Inloggad!"
diff --git a/apps/browser/src/_locales/uk/messages.json b/apps/browser/src/_locales/uk/messages.json
index 5a7a42d3c84..3d25e982642 100644
--- a/apps/browser/src/_locales/uk/messages.json
+++ b/apps/browser/src/_locales/uk/messages.json
@@ -1174,10 +1174,10 @@
     "description": "Detailed error message shown when saving login details fails."
   },
   "changePasswordWarning": {
-    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+    "message": "Після зміни пароля потрібно буде ввійти в систему з новим паролем. Активні сеанси на інших пристроях буде завершено протягом години."
   },
   "accountRecoveryUpdateMasterPasswordSubtitle": {
-    "message": "Change your master password to complete account recovery."
+    "message": "Змініть свій головний пароль, щоб завершити відновлення облікового запису."
   },
   "enableChangedPasswordNotification": {
     "message": "Запитувати про оновлення запису"
@@ -3461,7 +3461,7 @@
     "message": "Запит надіслано"
   },
   "masterPasswordChanged": {
-    "message": "Master password saved"
+    "message": "Головний пароль збережено"
   },
   "exposedMasterPassword": {
     "message": "Головний пароль викрито"
@@ -3578,10 +3578,10 @@
     "message": "Запит підтвердження адміністратора"
   },
   "unableToCompleteLogin": {
-    "message": "Unable to complete login"
+    "message": "Не вдалося завершити вхід"
   },
   "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
-    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+    "message": "Ви повинні ввійти до системи на довіреному пристрої або попросити адміністратора призначити вам пароль."
   },
   "ssoIdentifierRequired": {
     "message": "Потрібен SSO-ідентифікатор організації."
diff --git a/apps/browser/src/_locales/vi/messages.json b/apps/browser/src/_locales/vi/messages.json
index 8f3df515d40..e2752827221 100644
--- a/apps/browser/src/_locales/vi/messages.json
+++ b/apps/browser/src/_locales/vi/messages.json
@@ -17,7 +17,7 @@
     "message": "Đăng nhập hoặc tạo tài khoản mới để truy cập kho lưu trữ của bạn."
   },
   "inviteAccepted": {
-    "message": "Lời mời được chấp nhận"
+    "message": "Đã chấp nhận lời mời"
   },
   "createAccount": {
     "message": "Tạo tài khoản"
@@ -141,7 +141,7 @@
     "message": "Sao chép đường dẫn"
   },
   "copyUsername": {
-    "message": "Sao chép tên người dùng"
+    "message": "Sao chép tên đăng nhập"
   },
   "copyNumber": {
     "message": "Sao chép số"
@@ -471,7 +471,7 @@
     "message": "Đã tạo cụm mật khẩu"
   },
   "usernameGenerated": {
-    "message": "Tên người dùng được tạo tự động"
+    "message": "Tên đăng nhập được tạo tự động"
   },
   "emailGenerated": {
     "message": "Email được tạo ra"
@@ -560,7 +560,7 @@
     "message": "Thông tin mục"
   },
   "username": {
-    "message": "Tên người dùng"
+    "message": "Tên đăng nhập"
   },
   "password": {
     "message": "Mật khẩu"
@@ -635,16 +635,16 @@
     "message": "Tùy chọn mở khóa"
   },
   "unlockMethodNeededToChangeTimeoutActionDesc": {
-    "message": "Thiết lập phương thức mở khóa để thay đổi hành động khi hết thời gian mở kho."
+    "message": "Thiết lập phương thức mở khóa để thay đổi hành động sau khi đóng kho."
   },
   "unlockMethodNeeded": {
     "message": "Thiết lập phương pháp mở khóa trong Cài đặt"
   },
   "sessionTimeoutHeader": {
-    "message": "Khóa kho sau"
+    "message": "Thời gian hết phiên"
   },
   "vaultTimeoutHeader": {
-    "message": "Thời gian khóa kho"
+    "message": "Thời gian mở kho"
   },
   "otherOptions": {
     "message": "Tùy chọn khác"
@@ -653,7 +653,7 @@
     "message": "Đánh giá tiện ích mở rộng"
   },
   "browserNotSupportClipboard": {
-    "message": "Trình duyệt web của bạn không hỗ trợ dễ dàng sao chép bộ nhớ tạm. Bạn có thể sao chép nó theo cách thủ công để thay thế."
+    "message": "Trình duyệt web của bạn không hỗ trợ sao chép vào bảng nhớ tạm một cách dễ dàng. Vui lòng sao chép thủ công."
   },
   "verifyYourIdentity": {
     "message": "Xác minh danh tính của bạn"
@@ -696,7 +696,7 @@
     "message": "Mật khẩu chính không hợp lệ"
   },
   "vaultTimeout": {
-    "message": "Thời gian chờ của kho"
+    "message": "Đóng kho sau"
   },
   "vaultTimeout1": {
     "message": "Quá hạn"
@@ -768,7 +768,7 @@
     "message": "Đã xảy ra lỗi"
   },
   "emailRequired": {
-    "message": "Yêu cầu địa chỉ email."
+    "message": "Cần điền địa chỉ email."
   },
   "invalidEmail": {
     "message": "Địa chỉ email không hợp lệ."
@@ -777,7 +777,7 @@
     "message": "Yêu cầu mật khẩu chính."
   },
   "confirmMasterPasswordRequired": {
-    "message": "Yêu cầu nhập lại mật khẩu chính."
+    "message": "Cần nhập lại mật khẩu chính."
   },
   "masterPasswordMinlength": {
     "message": "Mật khẩu chính phải có ít nhất $VALUE$ kí tự.",
@@ -842,7 +842,7 @@
     "message": "Quét mã QR xác thực từ trang web hiện tại"
   },
   "totpHelperTitle": {
-    "message": "Thực hiện xác minh hai bước liền mạch"
+    "message": "Giúp quá trình xác minh 2 bước diễn ra liền mạch"
   },
   "totpHelper": {
     "message": "Bitwarden có thể lưu trữ và điền mã xác thực 2 bước. Sao chép và dán khóa vào ô này."
@@ -994,10 +994,10 @@
     "message": "Bạn có chắc chắn muốn ghi đè mật khẩu hiện tại không?"
   },
   "overwriteUsername": {
-    "message": "Ghi đè tên người dùng"
+    "message": "Ghi đè tên đăng nhập"
   },
   "overwriteUsernameConfirmation": {
-    "message": "Bạn có chắc chắn muốn ghi đè tên người dùng hiện tại không?"
+    "message": "Bạn có chắc chắn muốn ghi đè tên đăng nhập hiện tại không?"
   },
   "searchFolder": {
     "message": "Tìm kiếm thư mục"
@@ -1006,7 +1006,7 @@
     "message": "Tìm kiếm bộ sưu tập"
   },
   "searchType": {
-    "message": "Tìm loại"
+    "message": "Tìm theo thể loại"
   },
   "noneFolder": {
     "message": "Không có thư mục",
@@ -1049,11 +1049,11 @@
     "message": "Nhấp vào mục trong đề xuất tự động điền để điền thông tin"
   },
   "clearClipboard": {
-    "message": "Dọn dẹp khay nhớ tạm",
+    "message": "Dọn dẹp bảng nhớ tạm",
     "description": "Clipboard is the operating system thing where you copy/paste data to on your device."
   },
   "clearClipboardDesc": {
-    "message": "Tự động xóa mọi thứ đã sao chép khỏi bộ nhớ tạm.",
+    "message": "Tự động xóa mọi thứ đã sao chép khỏi bảng nhớ tạm.",
     "description": "Clipboard is the operating system thing where you copy/paste data to on your device."
   },
   "notificationAddDesc": {
@@ -1261,7 +1261,7 @@
     "message": "Mật khẩu này sẽ được sử dụng để xuất và nhập tập tin này"
   },
   "accountRestrictedOptionDescription": {
-    "message": "Sử dụng khóa mã hóa tài khoản của bạn, được tạo từ tên người dùng và mật khẩu chính của bạn để mã hóa tệp xuất và giới hạn việc nhập chỉ cho tài khoản Bitwarden hiện tại."
+    "message": "Sử dụng khóa mã hóa tài khoản của bạn, được tạo từ tên đăng nhập và mật khẩu chính của bạn để mã hóa tệp xuất và giới hạn việc nhập chỉ cho tài khoản Bitwarden hiện tại."
   },
   "passwordProtectedOptionDescription": {
     "message": "Thiết lập mật khẩu cho tệp để mã hóa dữ liệu xuất và nhập nó vào bất kỳ tài khoản Bitwarden nào bằng cách sử dụng mật khẩu đó để giải mã."
@@ -1393,7 +1393,7 @@
     "message": "Đăng ký làm thành viên Cao cấp và nhận được:"
   },
   "ppremiumSignUpStorage": {
-    "message": "1 GB dung lượng lưu trữ được mã hóa cho các tệp đính kèm."
+    "message": "1GB bộ nhớ lưu trữ được mã hóa cho các tệp đính kèm."
   },
   "premiumSignUpEmergency": {
     "message": "Truy cập khẩn cấp."
@@ -1708,7 +1708,7 @@
     "message": "Điền tự động danh tính đã sử dụng lần cuối cho trang web hiện tại"
   },
   "commandGeneratePasswordDesc": {
-    "message": "Tạo và sao chép một mật khẩu ngẫu nhiên mới vào khay nhớ tạm"
+    "message": "Tạo và sao chép một mật khẩu ngẫu nhiên mới vào bảng nhớ tạm"
   },
   "commandLockVaultDesc": {
     "message": "Khoá kho"
@@ -2026,7 +2026,7 @@
     }
   },
   "passwordSafe": {
-    "message": "Mật khẩu này không được tìm thấy trong bất kỳ báo cáo lộ lọt dữ liệu nào được biết đến. Bạn có thể tiếp tục sử dụng nó."
+    "message": "Không tìm thấy mật khẩu này trong các vụ rò rỉ dữ liệu trước đây. Nó an toàn để sử dụng."
   },
   "baseDomain": {
     "message": "Tên miền cơ sở",
@@ -2110,7 +2110,7 @@
     "description": "ex. Date this item was created"
   },
   "datePasswordUpdated": {
-    "message": "Đã cập nhật mật khẩu",
+    "message": "Mật khẩu được cập nhật lần cuối",
     "description": "ex. Date this password was updated"
   },
   "neverLockWarning": {
@@ -2169,7 +2169,7 @@
     "message": "Mã PIN là bắt buộc."
   },
   "invalidPin": {
-    "message": "Mã PIN không hợp lệ."
+    "message": "Mã PIN không chính xác."
   },
   "tooManyInvalidPinEntryAttemptsLoggingOut": {
     "message": "Gõ sai mã PIN quá nhiều lần. Đang đăng xuất."
@@ -2205,7 +2205,7 @@
     "message": "Trình tạo mật khẩu"
   },
   "usernameGenerator": {
-    "message": "Trình tạo tên người dùng"
+    "message": "Trình tạo tên đăng nhập"
   },
   "useThisEmail": {
     "message": "Dùng email này"
@@ -2217,7 +2217,7 @@
     "message": "Dùng cụm mật khẩu này"
   },
   "useThisUsername": {
-    "message": "Dùng tên người dùng này"
+    "message": "Dùng tên đăng nhập này"
   },
   "securePasswordGenerated": {
     "message": "Mật khẩu an toàn đã được tạo! Đừng quên cập nhật mật khẩu của bạn trên trang web."
@@ -2234,10 +2234,10 @@
     "message": "Tùy chỉnh kho"
   },
   "vaultTimeoutAction": {
-    "message": "Hành động khi hết thời gian chờ của kho lưu trữ"
+    "message": "Hành động sau khi đóng kho"
   },
   "vaultTimeoutAction1": {
-    "message": "Hành động hết thời gian chờ"
+    "message": "Hành động sau khi đóng kho"
   },
   "lock": {
     "message": "Khóa",
@@ -2269,10 +2269,10 @@
     "message": "Bạn đã có tài khoản?"
   },
   "vaultTimeoutLogOutConfirmation": {
-    "message": "Đăng xuất sẽ xóa tất cả quyền truy cập vào kho của bạn và yêu cầu xác minh trực tuyến sau khi hết thời gian chờ. Bạn có chắc chắn muốn sử dụng cài đặt này không?"
+    "message": "Đăng xuất sẽ xóa toàn bộ quyền truy cập vào kho của bạn và yêu cầu xác minh lại sau khi đóng kho. Bạn có chắc chắn muốn sử dụng cài đặt này không?"
   },
   "vaultTimeoutLogOutConfirmationTitle": {
-    "message": "Xác nhận hành động khi hết thời gian chờ"
+    "message": "Xác nhận hành động sau khi đóng kho"
   },
   "autoFillAndSave": {
     "message": "Tự động điền và lưu"
@@ -2377,7 +2377,7 @@
     "message": "Bạn đồng ý với những điều sau khi nhấn chọn ô này:"
   },
   "acceptPoliciesRequired": {
-    "message": "Điều khoản sử dụng và Chính sách quyền riêng tư chưa được đồng ý."
+    "message": "Bạn chưa đồng ý với Điều khoản Dịch vụ và Chính sách Bảo mật."
   },
   "termsOfService": {
     "message": "Điều khoản dịch vụ"
@@ -2703,7 +2703,7 @@
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendDetails": {
-    "message": "Chi tiết Gửi",
+    "message": "Chi tiết Send",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendTypeText": {
@@ -2771,7 +2771,7 @@
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "deleteSendPermanentConfirmation": {
-    "message": "Bạn có chắc chắn muốn xóa vĩnh viễn mục Gửi này không?",
+    "message": "Bạn có chắc chắn muốn xóa vĩnh viễn Send này không?",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "editSend": {
@@ -2782,7 +2782,7 @@
     "message": "Ngày xóa"
   },
   "deletionDateDescV2": {
-    "message": "Mục Gửi sẽ được xóa vĩnh viễn vào ngày này.",
+    "message": "Send sẽ được xóa vĩnh viễn vào ngày này.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "expirationDate": {
@@ -2804,11 +2804,11 @@
     "message": "Tùy chỉnh"
   },
   "sendPasswordDescV3": {
-    "message": "Thêm mật khẩu tùy chọn cho người nhận để có thể truy cập vào mục Gửi này.",
+    "message": "Thêm mật khẩu tùy chọn cho người nhận để có thể truy cập vào Send này.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "createSend": {
-    "message": "Send mới",
+    "message": "Tạo Send mới",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "newPassword": {
@@ -2827,15 +2827,15 @@
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "createdSendSuccessfully": {
-    "message": "Mục Gửi đã tạo thành công!",
+    "message": "Đã tạo Send thành công!",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendExpiresInHoursSingle": {
-    "message": "Mục Gửi này sẽ được cung cấp cho bất kỳ ai có liên kết trong 1 giờ tới.",
+    "message": "Send này sẽ được cung cấp cho bất kỳ ai có liên kết trong 1 giờ tới.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendExpiresInHours": {
-    "message": "Mục Gửi này sẽ được cung cấp cho bất kỳ ai có liên kết trong $HOURS$ giờ tới.",
+    "message": "Send này sẽ được cung cấp cho bất kỳ ai có liên kết trong $HOURS$ giờ tới.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated.",
     "placeholders": {
       "hours": {
@@ -2845,11 +2845,11 @@
     }
   },
   "sendExpiresInDaysSingle": {
-    "message": "Mục Gửi này sẽ được cung cấp cho bất kỳ ai có liên kết trong 1 ngày tới.",
+    "message": "Send này sẽ được cung cấp cho bất kỳ ai có liên kết trong 1 ngày tới.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendExpiresInDays": {
-    "message": "Mục Gửi này sẽ được cung cấp cho bất kỳ ai có liên kết trong $DAYS$ ngày tới.",
+    "message": "Send này sẽ được cung cấp cho bất kỳ ai có liên kết trong $DAYS$ ngày tới.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated.",
     "placeholders": {
       "days": {
@@ -2859,7 +2859,7 @@
     }
   },
   "sendLinkCopied": {
-    "message": "Đã sao chép liên kết Gửi",
+    "message": "Đã sao chép liên kết Send",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "editedSend": {
@@ -2871,7 +2871,7 @@
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendFilePopoutDialogDesc": {
-    "message": "Để tạo tệp Gửi, bạn cần mở phần mở rộng trong cửa sổ mới.",
+    "message": "Để tạo Send tập tin, bạn cần mở phần mở rộng trong cửa sổ mới.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendLinuxChromiumFileWarning": {
@@ -2984,7 +2984,7 @@
     "message": "Phút"
   },
   "vaultTimeoutPolicyAffectingOptions": {
-    "message": "Các yêu cầu chính sách của doanh nghiệp đã được áp dụng cho các tùy chọn thời gian chờ của bạn"
+    "message": "Các yêu cầu chính sách của doanh nghiệp đã được áp dụng cho các tùy chọn thời gian mở kho của bạn"
   },
   "vaultTimeoutPolicyInEffect": {
     "message": "Tổ chức của bạn đã đặt thời gian mở kho tối đa là $HOURS$ giờ và $MINUTES$ phút.",
@@ -3013,7 +3013,7 @@
     }
   },
   "vaultTimeoutPolicyMaximumError": {
-    "message": "Thời gian chờ đã vượt quá giới hạn do tổ chức của bạn đặt ra: Tối đa $HOURS$ giờ và $MINUTES$ phút",
+    "message": "Thời gian mở kho đã vượt quá giới hạn do tổ chức của bạn đặt ra: Tối đa $HOURS$ giờ và $MINUTES$ phút",
     "placeholders": {
       "hours": {
         "content": "$1",
@@ -3026,7 +3026,7 @@
     }
   },
   "vaultTimeoutPolicyWithActionInEffect": {
-    "message": "Các chính sách của tổ chức bạn đang ảnh hưởng đến thời gian mở kho. Thời gian mở kho tối đa được phép là $HOURS$ giờ và $MINUTES$ phút. Kho sẽ $ACTION$ sau khi hết thời gian mở kho.",
+    "message": "Các chính sách của tổ chức bạn đang ảnh hưởng đến thời gian mở kho. Thời gian mở kho tối đa được phép là $HOURS$ giờ và $MINUTES$ phút. Kho sẽ $ACTION$ sau khi đóng kho.",
     "placeholders": {
       "hours": {
         "content": "$1",
@@ -3043,7 +3043,7 @@
     }
   },
   "vaultTimeoutActionPolicyInEffect": {
-    "message": "Chính sách của tổ chức bạn đã thiết lập hành động sau khi hết thời gian mở kho là $ACTION$.",
+    "message": "Tổ chức bạn đã thiết lập hành động sau khi đóng kho là $ACTION$.",
     "placeholders": {
       "action": {
         "content": "$1",
@@ -3055,7 +3055,7 @@
     "message": "Thời gian mở kho vượt quá giới hạn do tổ chức của bạn đặt ra."
   },
   "vaultExportDisabled": {
-    "message": "Xuất kho không có sẵn"
+    "message": "Chức năng xuất kho không khả dụng"
   },
   "personalVaultExportPolicyInEffect": {
     "message": "Các chính sách của tổ chức ngăn cản bạn xuất kho lưu trữ cá nhân của mình."
@@ -3147,7 +3147,7 @@
     "description": "This is part of a larger sentence. The full sentence will read 'Contact customer success to avoid additional data loss.'"
   },
   "generateUsername": {
-    "message": "Tạo tên người dùng"
+    "message": "Tạo tên đăng nhập"
   },
   "generateEmail": {
     "message": "Tạo email"
@@ -3470,7 +3470,7 @@
     "message": "Mật khẩu này đã bị rò rỉ trong một vụ tấn công dữ liệu. Dùng mật khẩu mới và an toàn để bảo vệ tài khoản bạn. Bạn có chắc muốn sử dụng mật khẩu đã bị rò rỉ?"
   },
   "weakAndExposedMasterPassword": {
-    "message": "Mật khẩu chính yếu và dễ bị lộ"
+    "message": "Mật khẩu chính yếu và đã bị lộ"
   },
   "weakAndBreachedMasterPasswordDesc": {
     "message": "Mật khẩu yếu này đã bị rò rỉ trong một vụ tấn công dữ liệu. Hãy dùng mật khẩu mạnh và duy nhất để bảo vệ tài khoản của bạn. Bạn có chắc muốn sử dụng mật khẩu đã bị rò rỉ?"
@@ -3599,7 +3599,7 @@
     "message": "và tiếp tục tạo tài khoản của bạn."
   },
   "noEmail": {
-    "message": "Không có email?"
+    "message": "Không nhận được email?"
   },
   "goBack": {
     "message": "Quay lại"
@@ -3686,7 +3686,7 @@
     "message": "Tìm kiếm"
   },
   "inputMinLength": {
-    "message": "Đầu vào phải có độ dài ít nhất $COUNT$ ký tự.",
+    "message": "Dữ liệu nhập vào phải có độ dài ít nhất $COUNT$ ký tự.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -3695,7 +3695,7 @@
     }
   },
   "inputMaxLength": {
-    "message": "Độ dài của dữ liệu đầu vào không được vượt quá $COUNT$ ký tự.",
+    "message": "Độ dài của dữ liệu nhập vào không được vượt quá $COUNT$ ký tự.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -3713,7 +3713,7 @@
     }
   },
   "inputMinValue": {
-    "message": "Giá trị đầu vào phải lớn hơn hoặc bằng $MIN$.",
+    "message": "Dữ liệu nhập vào phải ít nhất là $MIN$.",
     "placeholders": {
       "min": {
         "content": "$1",
@@ -3722,7 +3722,7 @@
     }
   },
   "inputMaxValue": {
-    "message": "Giá trị đầu vào không được vượt quá $MAX$.",
+    "message": "Dữ liệu nhập vào không được vượt quá $MAX$.",
     "placeholders": {
       "max": {
         "content": "$1",
@@ -3734,11 +3734,11 @@
     "message": "Có ít nhất 1 địa chỉ email không hợp lệ"
   },
   "inputTrimValidator": {
-    "message": "Dữ liệu đầu vào không được chỉ chứa khoảng trắng.",
+    "message": "Dữ liệu nhập vào không được chỉ chứa khoảng trắng.",
     "description": "Notification to inform the user that a form's input can't contain only whitespace."
   },
   "inputEmail": {
-    "message": "Đầu vào không phải là địa chỉ email."
+    "message": "Dữ liệu nhập vào không phải là địa chỉ email."
   },
   "fieldsNeedAttention": {
     "message": "$COUNT$ trường ở trên cần bạn chú ý.",
@@ -3854,7 +3854,7 @@
     "description": "Screen reader text for when overlay item is in focused"
   },
   "partialUsername": {
-    "message": "Tên người dùng một phần",
+    "message": "Tên đăng nhập một phần",
     "description": "Screen reader text for when a login item is focused where a partial username is displayed. SR will announce this phrase before reading the text of the partial username"
   },
   "noItemsToShow": {
@@ -4044,7 +4044,7 @@
     "message": "hoặc sao chép/dán nội dung của tập tin nhập"
   },
   "instructionsFor": {
-    "message": "Hướng dẫn dùng $NAME$",
+    "message": "Hướng dẫn cho $NAME$",
     "description": "The title for the import tool instructions.",
     "placeholders": {
       "name": {
@@ -4138,7 +4138,7 @@
     "message": "Không tìm thấy dữ liệu LastPass"
   },
   "incorrectUsernameOrPassword": {
-    "message": "Tên người dùng hoặc mật khẩu không đúng"
+    "message": "Tên đăng nhập hoặc mật khẩu không đúng"
   },
   "incorrectPassword": {
     "message": "Mật khẩu không đúng"
@@ -4180,7 +4180,7 @@
     "message": "Yêu cầu xác thực LastPass"
   },
   "awaitingSSO": {
-    "message": "Đang chờ xác thực SSO"
+    "message": "Đang chờ xác thực Đăng nhập một lần"
   },
   "awaitingSSODesc": {
     "message": "Vui lòng tiếp tục đăng nhập bằng thông tin đăng nhập của công ty bạn."
@@ -4196,7 +4196,7 @@
     "message": "Nhập từ CSV"
   },
   "lastPassTryAgainCheckEmail": {
-    "message": "Thử lại hoặc tìm email từ LastPass để xác minh đó là bạn."
+    "message": "Hãy thử lại hoặc kiểm tra email từ LastPass để xác minh rằng đó là bạn."
   },
   "collection": {
     "message": "Bộ sưu tập"
@@ -4247,7 +4247,7 @@
     "message": "Chỉ một lần"
   },
   "alwaysForThisSite": {
-    "message": "Luôn cho trang này"
+    "message": "Luôn luôn cho trang này"
   },
   "domainAddedToExcludedDomains": {
     "message": "$DOMAIN$ đã được thêm vào danh sách các tên miền bị loại trừ.",
@@ -4323,7 +4323,7 @@
     "description": "Title for the dialog that appears when the user has not granted the extension permission to set privacy settings"
   },
   "privacyPermissionAdditionNotGrantedDescription": {
-    "message": "Bạn phải cấp quyền riêng tư của trình duyệt cho Bitwarden để đặt nó làm trình quản lý mật khẩu mặc định.",
+    "message": "Bạn phải cấp quyền riêng tư của trình duyệt cho Bitwarden để đặt làm trình quản lý mật khẩu mặc định.",
     "description": "Description for the dialog that appears when the user has not granted the extension permission to set privacy settings"
   },
   "makeDefault": {
@@ -5038,7 +5038,7 @@
     "message": "Thử lại"
   },
   "vaultCustomTimeoutMinimum": {
-    "message": "Thời gian chờ tùy chỉnh tối thiểu là 1 phút."
+    "message": "Thời gian đóng kho tùy chỉnh tối thiểu là 1 phút."
   },
   "additionalContentAvailable": {
     "message": "Nội dung bổ sung có sẵn"
@@ -5104,7 +5104,7 @@
     "message": "Mở kho của bạn trong vài giây"
   },
   "unlockVaultDesc": {
-    "message": "Bạn có thể tùy chỉnh cài đặt mở khóa và thời gian hết phiên để truy cập kho lưu trữ của mình nhanh hơn."
+    "message": "Bạn có thể tùy chỉnh cài đặt mở khóa và thời gian mở kho để truy cập kho lưu trữ của mình nhanh hơn."
   },
   "unlockPinSet": {
     "message": "Đã thiết lập mở khóa bằng mã PIN"
@@ -5305,7 +5305,7 @@
     "message": "Loại khóa SSH không được hỗ trợ"
   },
   "importSshKeyFromClipboard": {
-    "message": "Nhập khóa từ bộ nhớ tạm"
+    "message": "Nhập khóa từ bảng nhớ tạm"
   },
   "sshKeyImported": {
     "message": "Khóa SSH được nhập thành công"
diff --git a/apps/browser/src/_locales/zh_CN/messages.json b/apps/browser/src/_locales/zh_CN/messages.json
index 2bcd7935d47..9ee8fd5a48f 100644
--- a/apps/browser/src/_locales/zh_CN/messages.json
+++ b/apps/browser/src/_locales/zh_CN/messages.json
@@ -3578,7 +3578,7 @@
     "message": "请求管理员批准"
   },
   "unableToCompleteLogin": {
-    "message": "Unable to complete login"
+    "message": "无法完成登录"
   },
   "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
     "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
diff --git a/apps/browser/store/locales/vi/copy.resx b/apps/browser/store/locales/vi/copy.resx
index 9b6b1afa2a2..dd3e258a7c7 100644
--- a/apps/browser/store/locales/vi/copy.resx
+++ b/apps/browser/store/locales/vi/copy.resx
@@ -136,7 +136,7 @@ MỌI NGƯỜI ĐỀU NÊN CÓ CÔNG CỤ ĐỂ BẢO VỆ BẢN THÂN TRỰC TU
 Sử dụng Bitwarden miễn phí mà không có quảng cáo hoặc bán dữ liệu. Bitwarden tin rằng mọi người đều nên có khả năng bảo vệ an toàn khi trực tuyến. Các gói cao cấp cung cấp quyền truy cập vào các tính năng nâng cao.
 
 TĂNG CƯỜNG KHẢ NĂNG CHO ĐỘI NGŨ CỦA BẠN VỚI BITWARDEN
-Các gói dành cho Đội ngũ và Doanh nghiệp đi kèm với các tính năng chuyên nghiệp cho doanh nghiệp. Một số ví dụ bao gồm tích hợp SSO, tự lưu trữ, tích hợp danh bạ và cấp phép SCIM, chính sách toàn cầu, truy cập API, nhật ký sự kiện và nhiều hơn nữa.
+Các gói dành cho Đội ngũ và Doanh nghiệp đi kèm với các tính năng chuyên nghiệp cho doanh nghiệp. Một số ví dụ bao gồm tích hợp Đăng nhập một lần, tự lưu trữ, tích hợp danh bạ và cấp phép SCIM, chính sách toàn cầu, truy cập API, nhật ký sự kiện và nhiều hơn nữa.
 
 Sử dụng Bitwarden để bảo vệ nhân viên của bạn và chia sẻ thông tin nhạy cảm với đồng nghiệp.
 

From e51c1595051962b623630c7d614c0582250e6e03 Mon Sep 17 00:00:00 2001
From: "bw-ghapp[bot]" <178206702+bw-ghapp[bot]@users.noreply.github.com>
Date: Mon, 14 Jul 2025 12:26:50 +0000
Subject: [PATCH 125/239] Autosync the updated translations (#15599)

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>
---
 apps/web/src/locales/af/messages.json    |    8 +
 apps/web/src/locales/ar/messages.json    |    8 +
 apps/web/src/locales/az/messages.json    |    8 +
 apps/web/src/locales/be/messages.json    |    8 +
 apps/web/src/locales/bg/messages.json    |    8 +
 apps/web/src/locales/bn/messages.json    |    8 +
 apps/web/src/locales/bs/messages.json    |    8 +
 apps/web/src/locales/ca/messages.json    |    8 +
 apps/web/src/locales/cs/messages.json    |    8 +
 apps/web/src/locales/cy/messages.json    |    8 +
 apps/web/src/locales/da/messages.json    |    8 +
 apps/web/src/locales/de/messages.json    |    8 +
 apps/web/src/locales/el/messages.json    |    8 +
 apps/web/src/locales/en_GB/messages.json |    8 +
 apps/web/src/locales/en_IN/messages.json |    8 +
 apps/web/src/locales/eo/messages.json    |    8 +
 apps/web/src/locales/es/messages.json    |    8 +
 apps/web/src/locales/et/messages.json    |    8 +
 apps/web/src/locales/eu/messages.json    |    8 +
 apps/web/src/locales/fa/messages.json    |    8 +
 apps/web/src/locales/fi/messages.json    |    8 +
 apps/web/src/locales/fil/messages.json   |    8 +
 apps/web/src/locales/fr/messages.json    |   14 +-
 apps/web/src/locales/gl/messages.json    |    8 +
 apps/web/src/locales/he/messages.json    |    8 +
 apps/web/src/locales/hi/messages.json    |    8 +
 apps/web/src/locales/hr/messages.json    |    8 +
 apps/web/src/locales/hu/messages.json    |   42 +-
 apps/web/src/locales/id/messages.json    |    8 +
 apps/web/src/locales/it/messages.json    |    8 +
 apps/web/src/locales/ja/messages.json    |    8 +
 apps/web/src/locales/ka/messages.json    |    8 +
 apps/web/src/locales/km/messages.json    |    8 +
 apps/web/src/locales/kn/messages.json    |    8 +
 apps/web/src/locales/ko/messages.json    |    8 +
 apps/web/src/locales/lv/messages.json    |    8 +
 apps/web/src/locales/ml/messages.json    |    8 +
 apps/web/src/locales/mr/messages.json    |    8 +
 apps/web/src/locales/my/messages.json    |    8 +
 apps/web/src/locales/nb/messages.json    |    8 +
 apps/web/src/locales/ne/messages.json    |    8 +
 apps/web/src/locales/nl/messages.json    |    8 +
 apps/web/src/locales/nn/messages.json    |    8 +
 apps/web/src/locales/or/messages.json    |    8 +
 apps/web/src/locales/pl/messages.json    |   42 +-
 apps/web/src/locales/pt_BR/messages.json |    8 +
 apps/web/src/locales/pt_PT/messages.json |    8 +
 apps/web/src/locales/ro/messages.json    |    8 +
 apps/web/src/locales/ru/messages.json    |    8 +
 apps/web/src/locales/si/messages.json    |    8 +
 apps/web/src/locales/sk/messages.json    |    8 +
 apps/web/src/locales/sl/messages.json    |    8 +
 apps/web/src/locales/sr_CS/messages.json |    8 +
 apps/web/src/locales/sr_CY/messages.json |   92 +-
 apps/web/src/locales/sv/messages.json    | 2102 +++++++++++-----------
 apps/web/src/locales/te/messages.json    |    8 +
 apps/web/src/locales/th/messages.json    |    8 +
 apps/web/src/locales/tr/messages.json    |    8 +
 apps/web/src/locales/uk/messages.json    |   46 +-
 apps/web/src/locales/vi/messages.json    | 1132 ++++++------
 apps/web/src/locales/zh_CN/messages.json |   10 +-
 apps/web/src/locales/zh_TW/messages.json |    8 +
 62 files changed, 2204 insertions(+), 1708 deletions(-)

diff --git a/apps/web/src/locales/af/messages.json b/apps/web/src/locales/af/messages.json
index d5bbed4f6e3..75c9275b288 100644
--- a/apps/web/src/locales/af/messages.json
+++ b/apps/web/src/locales/af/messages.json
@@ -8938,6 +8938,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/ar/messages.json b/apps/web/src/locales/ar/messages.json
index 81da2ebd67a..1c103219fa1 100644
--- a/apps/web/src/locales/ar/messages.json
+++ b/apps/web/src/locales/ar/messages.json
@@ -8938,6 +8938,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/az/messages.json b/apps/web/src/locales/az/messages.json
index 5ea029aa886..a455efa3230 100644
--- a/apps/web/src/locales/az/messages.json
+++ b/apps/web/src/locales/az/messages.json
@@ -8938,6 +8938,14 @@
     "message": "Uyuşma aşkarlaması barədə daha çox",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "$ORG$ abunəliyinizi davam etdirmək üçün, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/be/messages.json b/apps/web/src/locales/be/messages.json
index 38cde94828e..40875670107 100644
--- a/apps/web/src/locales/be/messages.json
+++ b/apps/web/src/locales/be/messages.json
@@ -8938,6 +8938,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/bg/messages.json b/apps/web/src/locales/bg/messages.json
index 2d721eda8f0..77ea169bb2b 100644
--- a/apps/web/src/locales/bg/messages.json
+++ b/apps/web/src/locales/bg/messages.json
@@ -8938,6 +8938,14 @@
     "message": "Повече относно разпознаването на съвпадения",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Разширени настройки",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Внимание",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "За да продължите абонамента си за $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/bn/messages.json b/apps/web/src/locales/bn/messages.json
index 1e9bd6c225d..66aa1b9a62e 100644
--- a/apps/web/src/locales/bn/messages.json
+++ b/apps/web/src/locales/bn/messages.json
@@ -8938,6 +8938,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/bs/messages.json b/apps/web/src/locales/bs/messages.json
index 732fde49c33..9d9bece2b6e 100644
--- a/apps/web/src/locales/bs/messages.json
+++ b/apps/web/src/locales/bs/messages.json
@@ -8938,6 +8938,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/ca/messages.json b/apps/web/src/locales/ca/messages.json
index c63a9a3b04e..118af8c66fb 100644
--- a/apps/web/src/locales/ca/messages.json
+++ b/apps/web/src/locales/ca/messages.json
@@ -8938,6 +8938,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "Per mantenir la teua subscripció per $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/cs/messages.json b/apps/web/src/locales/cs/messages.json
index 35306a33964..51c04fd9260 100644
--- a/apps/web/src/locales/cs/messages.json
+++ b/apps/web/src/locales/cs/messages.json
@@ -8938,6 +8938,14 @@
     "message": "Další informace o detekci shody",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Rozšířené volby",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Varování",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "Pro správu předplatného pro $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/cy/messages.json b/apps/web/src/locales/cy/messages.json
index 9c57f1348b3..012dcac1fc9 100644
--- a/apps/web/src/locales/cy/messages.json
+++ b/apps/web/src/locales/cy/messages.json
@@ -8938,6 +8938,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/da/messages.json b/apps/web/src/locales/da/messages.json
index 07ad8cee897..3dfde9ee756 100644
--- a/apps/web/src/locales/da/messages.json
+++ b/apps/web/src/locales/da/messages.json
@@ -8938,6 +8938,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "For at bibeholde abonnementet på $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/de/messages.json b/apps/web/src/locales/de/messages.json
index 55875134383..5ce3b6883bb 100644
--- a/apps/web/src/locales/de/messages.json
+++ b/apps/web/src/locales/de/messages.json
@@ -8938,6 +8938,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "Um dein Abonnement für $ORG$ zu erhalten, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/el/messages.json b/apps/web/src/locales/el/messages.json
index 148ac067490..b3e8d6d91d2 100644
--- a/apps/web/src/locales/el/messages.json
+++ b/apps/web/src/locales/el/messages.json
@@ -8938,6 +8938,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "Για να διατηρήσετε τη συνδρομή σας στο $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/en_GB/messages.json b/apps/web/src/locales/en_GB/messages.json
index fe4591a3e3b..7993308c44a 100644
--- a/apps/web/src/locales/en_GB/messages.json
+++ b/apps/web/src/locales/en_GB/messages.json
@@ -8938,6 +8938,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/en_IN/messages.json b/apps/web/src/locales/en_IN/messages.json
index 742f4a85080..1608845dca0 100644
--- a/apps/web/src/locales/en_IN/messages.json
+++ b/apps/web/src/locales/en_IN/messages.json
@@ -8938,6 +8938,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/eo/messages.json b/apps/web/src/locales/eo/messages.json
index 6e918bfa1c6..86ed31ac4a4 100644
--- a/apps/web/src/locales/eo/messages.json
+++ b/apps/web/src/locales/eo/messages.json
@@ -8938,6 +8938,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/es/messages.json b/apps/web/src/locales/es/messages.json
index 8203fa0a798..1daee236d86 100644
--- a/apps/web/src/locales/es/messages.json
+++ b/apps/web/src/locales/es/messages.json
@@ -8938,6 +8938,14 @@
     "message": "Más sobre la detección de coincidencias",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "Para mantener tu suscripción a $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/et/messages.json b/apps/web/src/locales/et/messages.json
index 2721d19dae3..d95ff17edb8 100644
--- a/apps/web/src/locales/et/messages.json
+++ b/apps/web/src/locales/et/messages.json
@@ -8938,6 +8938,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/eu/messages.json b/apps/web/src/locales/eu/messages.json
index db57bfdccd2..546ffae4aea 100644
--- a/apps/web/src/locales/eu/messages.json
+++ b/apps/web/src/locales/eu/messages.json
@@ -8938,6 +8938,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/fa/messages.json b/apps/web/src/locales/fa/messages.json
index 70eb11f7e2f..a4072ddca87 100644
--- a/apps/web/src/locales/fa/messages.json
+++ b/apps/web/src/locales/fa/messages.json
@@ -8938,6 +8938,14 @@
     "message": "اطلاعات بیشتر درباره‌ی تشخیص تطابق",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "برای حفظ اشتراک خود در $ORG$، ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/fi/messages.json b/apps/web/src/locales/fi/messages.json
index cdc770fb636..deb06c4c2b7 100644
--- a/apps/web/src/locales/fi/messages.json
+++ b/apps/web/src/locales/fi/messages.json
@@ -8938,6 +8938,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "Ylläpitääksesi organisaation $ORG$ tilausta, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/fil/messages.json b/apps/web/src/locales/fil/messages.json
index 3b7d552254a..9925074ad18 100644
--- a/apps/web/src/locales/fil/messages.json
+++ b/apps/web/src/locales/fil/messages.json
@@ -8938,6 +8938,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/fr/messages.json b/apps/web/src/locales/fr/messages.json
index 528e69afafa..5ca186d843c 100644
--- a/apps/web/src/locales/fr/messages.json
+++ b/apps/web/src/locales/fr/messages.json
@@ -2169,7 +2169,7 @@
     "message": "Impossible d'importer les types de l'élément de la carte"
   },
   "restrictCardTypeImportDesc": {
-    "message": "Une politique de sécurité définie par 1 organisation ou plus vous empêche d'importer des cartes dans vos coffres."
+    "message": "Une politique de sécurité définie par une organisation ou plus vous empêche d'importer des cartes dans vos coffres."
   },
   "yourSingleUseRecoveryCode": {
     "message": "Votre code de récupération à usage unique peut être utilisé pour désactiver la connexion en deux étapes si vous perdez l'accès à votre fournisseur de connexion en deux étapes. Bitwarden vous recommande d'écrire le code de récupération et de le conserver dans un endroit sûr."
@@ -5088,7 +5088,7 @@
     "message": "La politique d'organisation unique Entreprise doit être activée avant d'activer cette politique."
   },
   "requireSsoPolicyReqError": {
-    "message": "La politique \"Organisation Unique\" n'est pas activée."
+    "message": "La politique « Organisation Unique » n'est pas activée."
   },
   "requireSsoExemption": {
     "message": "Les propriétaires et les administrateurs de l'organisation sont exonérés de l'application de cette politique."
@@ -8923,7 +8923,7 @@
     "description": "Label indicating the most common import formats"
   },
   "uriMatchDefaultStrategyHint": {
-    "message": "La détection de correspondance d'URL est la façon dont Bitwarden identifie les suggestions de remplissage automatique.",
+    "message": "La détection de correspondance d'URI est la façon dont Bitwarden identifie les suggestions de remplissage automatique.",
     "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
   },
   "regExAdvancedOptionWarning": {
@@ -8938,6 +8938,14 @@
     "message": "En savoir plus sur la détection de correspondance",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Options avancées",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Avertissement",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "Afin de maintenir votre abonnement pour $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/gl/messages.json b/apps/web/src/locales/gl/messages.json
index bcd78d82bb0..d22f7a2278c 100644
--- a/apps/web/src/locales/gl/messages.json
+++ b/apps/web/src/locales/gl/messages.json
@@ -8938,6 +8938,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/he/messages.json b/apps/web/src/locales/he/messages.json
index ab752731a82..476f2603b68 100644
--- a/apps/web/src/locales/he/messages.json
+++ b/apps/web/src/locales/he/messages.json
@@ -8938,6 +8938,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "כדי לשמור על המנוי שלך עבור$ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/hi/messages.json b/apps/web/src/locales/hi/messages.json
index 33fe1d897ca..ebb408a90e1 100644
--- a/apps/web/src/locales/hi/messages.json
+++ b/apps/web/src/locales/hi/messages.json
@@ -8938,6 +8938,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/hr/messages.json b/apps/web/src/locales/hr/messages.json
index 1e2a2bebcc5..2f706a33e7f 100644
--- a/apps/web/src/locales/hr/messages.json
+++ b/apps/web/src/locales/hr/messages.json
@@ -8938,6 +8938,14 @@
     "message": "Više o otkrivanju podudaranja",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Napredne mogućnosti",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Upozorenje",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "Za održavanje svoje pretplate za $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/hu/messages.json b/apps/web/src/locales/hu/messages.json
index 58fbaaf6d57..6864afe594d 100644
--- a/apps/web/src/locales/hu/messages.json
+++ b/apps/web/src/locales/hu/messages.json
@@ -1785,7 +1785,7 @@
     "message": "A folytatásban a felhasználó kiléptetésre kerül a jelenlegi munkamenetből, szükséges az ismételt bejelentkezés. Más eszközökön aktív munkamenetek akár egy órán keresztül is aktívak maradhatnak."
   },
   "changePasswordWarning": {
-    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+    "message": "A jelszó megváltoztatása után be kell jelentkezni az új jelszóval. Az aktív munkamenetek más eszközökön egy órán belül kijelentkeznek."
   },
   "emailChanged": {
     "message": "Az email cím megváltozott."
@@ -6077,10 +6077,10 @@
     "message": "Mesterjelszó frissítése"
   },
   "accountRecoveryUpdateMasterPasswordSubtitle": {
-    "message": "Change your master password to complete account recovery."
+    "message": "Módosítsuk a mesterjelszót a fiók helyreállításának befejezéséhez."
   },
   "updateMasterPasswordSubtitle": {
-    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+    "message": "A mesterjelszó nem felel meg a szervezet követelményeinek. Módosítsuk a mesterjelszót a folytatáshoz."
   },
   "updateMasterPasswordWarning": {
     "message": "A mesterjelszót nemrégiben megváltoztatta a szervezet rendszergazdája. A tároló eléréséhez most frissíteni kell a mesterjelszót. A folytatás kijelentkeztet az aktuális munkamenetből és újra be kell jelentkezni. A más eszközökön végzett aktív munkamenetek akár egy órán keresztül is aktívak maradhatnak."
@@ -8938,6 +8938,14 @@
     "message": "Bővebben az egyezés felismerésről",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Haladó opciók",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Figyelmeztetés",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "$ORG$ előfizetés fenntartásához, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10800,46 +10808,46 @@
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
   },
   "billingAddress": {
-    "message": "Billing address"
+    "message": "Számlázási cím"
   },
   "addBillingAddress": {
-    "message": "Add billing address"
+    "message": "Számlázási cím hozzáadása"
   },
   "editBillingAddress": {
-    "message": "Edit billing address"
+    "message": "Számlázási cím szerkesztése"
   },
   "noBillingAddress": {
-    "message": "No address on file."
+    "message": "Nincs cím rögzítve."
   },
   "billingAddressUpdated": {
-    "message": "Your billing address has been updated."
+    "message": "A számlázási cím frissítésre került."
   },
   "paymentDetails": {
-    "message": "Payment details"
+    "message": "Fizetési részletek"
   },
   "paymentMethodUpdated": {
-    "message": "Your payment method has been updated."
+    "message": "A fizetési mód frissítésre került."
   },
   "bankAccountVerified": {
-    "message": "Your bank account has been verified."
+    "message": "A bankszámla megerősítésre került."
   },
   "availableCreditAppliedToInvoice": {
-    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+    "message": "Bármilyen rendelkezésre álló jóváírás automatikusan érvényesül az ehhez a számlához generált számlákra."
   },
   "mustBePositiveNumber": {
-    "message": "Must be a positive number"
+    "message": "Pozitív számnak kell lennie."
   },
   "cardSecurityCode": {
-    "message": "Card security code"
+    "message": "Kártya biztonsági kód"
   },
   "cardSecurityCodeDescription": {
-    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+    "message": "A kártya biztonsági kódja, más néven CVV vagy CVC, általában egy 3 számjegyű szám, amelyet a hitelkártya hátoldalára nyomtatnak vagy egy 4 számjegyű szám, amelyet a kártyaszám feletti előlapra nyomtatnak."
   },
   "verifyBankAccountWarning": {
-    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+    "message": "A bankszámlával történő fizetés csak az Egyesült Államokban lévő ügyfelek számára elérhető. Ellenőrizni kell bankszámlát. A következő 1-2 munkanapon belül mikrobetét készül.  A bankszámla ellenőrzéséhez írjuk be a kimutatás leíró kódot ebből a befizetésből a Fizetési adatok oldalon. A bankszámla ellenőrzésének elmulasztása a fizetés elmaradását és az előfizetés felfüggesztését vonja maga után."
   },
   "taxId": {
-    "message": "Tax ID: $TAX_ID$",
+    "message": "Adó azonosító: $TAX_ID$",
     "placeholders": {
       "tax_id": {
         "content": "$1",
diff --git a/apps/web/src/locales/id/messages.json b/apps/web/src/locales/id/messages.json
index 1612dd2458e..b1d0554dc4d 100644
--- a/apps/web/src/locales/id/messages.json
+++ b/apps/web/src/locales/id/messages.json
@@ -8938,6 +8938,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/it/messages.json b/apps/web/src/locales/it/messages.json
index 98a9be7db8e..8549da6aadf 100644
--- a/apps/web/src/locales/it/messages.json
+++ b/apps/web/src/locales/it/messages.json
@@ -8938,6 +8938,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "Per mantenere il tuo abbonamento a $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/ja/messages.json b/apps/web/src/locales/ja/messages.json
index c1b91d1f0e9..2e24fd7c27f 100644
--- a/apps/web/src/locales/ja/messages.json
+++ b/apps/web/src/locales/ja/messages.json
@@ -8938,6 +8938,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "$ORG$のサブスクリプションを維持するには、 ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/ka/messages.json b/apps/web/src/locales/ka/messages.json
index fd9c0cf4767..9dba6b40e41 100644
--- a/apps/web/src/locales/ka/messages.json
+++ b/apps/web/src/locales/ka/messages.json
@@ -8938,6 +8938,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/km/messages.json b/apps/web/src/locales/km/messages.json
index c20a685c1de..57b7a83469e 100644
--- a/apps/web/src/locales/km/messages.json
+++ b/apps/web/src/locales/km/messages.json
@@ -8938,6 +8938,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/kn/messages.json b/apps/web/src/locales/kn/messages.json
index a10f9f5fe65..f47c3f6de5a 100644
--- a/apps/web/src/locales/kn/messages.json
+++ b/apps/web/src/locales/kn/messages.json
@@ -8938,6 +8938,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/ko/messages.json b/apps/web/src/locales/ko/messages.json
index 3ee6f860d69..29d34b2d587 100644
--- a/apps/web/src/locales/ko/messages.json
+++ b/apps/web/src/locales/ko/messages.json
@@ -8938,6 +8938,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/lv/messages.json b/apps/web/src/locales/lv/messages.json
index a9d67ed5860..2df1a726859 100644
--- a/apps/web/src/locales/lv/messages.json
+++ b/apps/web/src/locales/lv/messages.json
@@ -8938,6 +8938,14 @@
     "message": "Vairāk par atbilstības noteikšanu",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Papildu iespējas",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Brīdinājums",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "Lai uzturētu savu abonementu $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/ml/messages.json b/apps/web/src/locales/ml/messages.json
index caaaef3523d..0f37ab5065d 100644
--- a/apps/web/src/locales/ml/messages.json
+++ b/apps/web/src/locales/ml/messages.json
@@ -8938,6 +8938,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/mr/messages.json b/apps/web/src/locales/mr/messages.json
index 15695896944..19cfb6bebc3 100644
--- a/apps/web/src/locales/mr/messages.json
+++ b/apps/web/src/locales/mr/messages.json
@@ -8938,6 +8938,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/my/messages.json b/apps/web/src/locales/my/messages.json
index c20a685c1de..57b7a83469e 100644
--- a/apps/web/src/locales/my/messages.json
+++ b/apps/web/src/locales/my/messages.json
@@ -8938,6 +8938,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/nb/messages.json b/apps/web/src/locales/nb/messages.json
index d64d13adbaf..c076b67f21e 100644
--- a/apps/web/src/locales/nb/messages.json
+++ b/apps/web/src/locales/nb/messages.json
@@ -8938,6 +8938,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/ne/messages.json b/apps/web/src/locales/ne/messages.json
index 437a48beb7f..80aed726a98 100644
--- a/apps/web/src/locales/ne/messages.json
+++ b/apps/web/src/locales/ne/messages.json
@@ -8938,6 +8938,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/nl/messages.json b/apps/web/src/locales/nl/messages.json
index 88790d0a949..9ee85ea8021 100644
--- a/apps/web/src/locales/nl/messages.json
+++ b/apps/web/src/locales/nl/messages.json
@@ -8938,6 +8938,14 @@
     "message": "Lees meer over overeenkomstdetectie",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Geavanceerde opties",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Waarschuwing",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "Om je abonnement voor $ORG$ te behouden, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/nn/messages.json b/apps/web/src/locales/nn/messages.json
index 841da12e433..9b74122c868 100644
--- a/apps/web/src/locales/nn/messages.json
+++ b/apps/web/src/locales/nn/messages.json
@@ -8938,6 +8938,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/or/messages.json b/apps/web/src/locales/or/messages.json
index c20a685c1de..57b7a83469e 100644
--- a/apps/web/src/locales/or/messages.json
+++ b/apps/web/src/locales/or/messages.json
@@ -8938,6 +8938,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/pl/messages.json b/apps/web/src/locales/pl/messages.json
index a60a3bd768d..8665c3ddc32 100644
--- a/apps/web/src/locales/pl/messages.json
+++ b/apps/web/src/locales/pl/messages.json
@@ -1785,7 +1785,7 @@
     "message": "Ta czynność spowoduje wylogowanie z bieżącej sesji, przez co konieczne będzie ponowne zalogowanie się. Aktywne sesje na innych urządzeniach mogą pozostać aktywne przez maksymalnie godzinę."
   },
   "changePasswordWarning": {
-    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+    "message": "Po zmianie hasła musisz się zalogować przy użyciu nowego hasła. Aktywne sesje na innych urządzeniach zostaną wylogowane w ciągu jednej godziny."
   },
   "emailChanged": {
     "message": "Adres e-mail został zapisany"
@@ -6077,10 +6077,10 @@
     "message": "Zaktualizuj hasło główne"
   },
   "accountRecoveryUpdateMasterPasswordSubtitle": {
-    "message": "Change your master password to complete account recovery."
+    "message": "Zmień hasło główne, aby zakończyć odzyskiwanie konta."
   },
   "updateMasterPasswordSubtitle": {
-    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+    "message": "Twoje hasło główne nie spełnia wymagań tej organizacji. Zmień hasło główne, aby kontynuować."
   },
   "updateMasterPasswordWarning": {
     "message": "Hasło główne zostało zmienione przez administratora Twojej organizacji. Musisz je zaktualizować, aby uzyskać dostęp do sejfu. Ta czynność spowoduje wylogowanie z bieżącej sesji, przez co konieczne będzie ponowne zalogowanie się. Aktywne sesje na innych urządzeniach mogą pozostać aktywne przez maksymalnie godzinę."
@@ -8938,6 +8938,14 @@
     "message": "Dowiedz się więcej o wykrywaniu dopasowania",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Ustawienia zaawansowane",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Ostrzeżenie",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "Aby utrzymać subskrypcję dla $ORG$ ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10800,46 +10808,46 @@
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
   },
   "billingAddress": {
-    "message": "Billing address"
+    "message": "Adres rozliczeniowy"
   },
   "addBillingAddress": {
-    "message": "Add billing address"
+    "message": "Dodaj adres rozliczeniowy"
   },
   "editBillingAddress": {
-    "message": "Edit billing address"
+    "message": "Edytuj adres rozliczeniowy"
   },
   "noBillingAddress": {
-    "message": "No address on file."
+    "message": "Brak adresu w pliku."
   },
   "billingAddressUpdated": {
-    "message": "Your billing address has been updated."
+    "message": "Twój adres rozliczeniowy został zaktualizowany."
   },
   "paymentDetails": {
-    "message": "Payment details"
+    "message": "Szczegóły płatności"
   },
   "paymentMethodUpdated": {
-    "message": "Your payment method has been updated."
+    "message": "Twoja metoda płatności została zaktualizowana."
   },
   "bankAccountVerified": {
-    "message": "Your bank account has been verified."
+    "message": "Twoje konto bankowe zostało zweryfikowane."
   },
   "availableCreditAppliedToInvoice": {
-    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+    "message": "Wszelkie dostępne środki zostaną automatycznie zastosowane do faktur wygenerowanych dla tego konta."
   },
   "mustBePositiveNumber": {
-    "message": "Must be a positive number"
+    "message": "Musi być liczbą dodatnią"
   },
   "cardSecurityCode": {
-    "message": "Card security code"
+    "message": "Kod bezpieczeństwa karty"
   },
   "cardSecurityCodeDescription": {
-    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+    "message": "Kod bezpieczeństwa karty, znany również jako CVV lub CVC, jest to zazwyczaj trzycyfrowy numer wydrukowany na odwrocie karty kredytowej lub czterocyfrowy numer wydrukowany na przodzie nad numerem karty."
   },
   "verifyBankAccountWarning": {
-    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+    "message": "Płatność za pomocą konta bankowego jest dostępna tylko dla klientów w Stanach Zjednoczonych. Będziesz musiał/musiała zweryfikować swoje konto bankowe. W ciągu najbliższych 1-2 dni roboczych dokonamy mikrowpłaty. Wprowadź kod deskryptora z tej wpłaty na stronie dostawcy subskrypcji, aby zweryfikować konto bankowe. Niezweryfikowanie konta bankowego spowoduje brak płatności i zawieszenie Twojej subskrypcji."
   },
   "taxId": {
-    "message": "Tax ID: $TAX_ID$",
+    "message": "ID Podatku: $TAX_ID$",
     "placeholders": {
       "tax_id": {
         "content": "$1",
diff --git a/apps/web/src/locales/pt_BR/messages.json b/apps/web/src/locales/pt_BR/messages.json
index 17842bacefe..4654fe2c176 100644
--- a/apps/web/src/locales/pt_BR/messages.json
+++ b/apps/web/src/locales/pt_BR/messages.json
@@ -8938,6 +8938,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "Para manter sua assinatura para $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/pt_PT/messages.json b/apps/web/src/locales/pt_PT/messages.json
index fdda18e86f4..e22731fda35 100644
--- a/apps/web/src/locales/pt_PT/messages.json
+++ b/apps/web/src/locales/pt_PT/messages.json
@@ -8938,6 +8938,14 @@
     "message": "Mais informações sobre a deteção de correspondências",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "Para manter a sua subscrição para a $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/ro/messages.json b/apps/web/src/locales/ro/messages.json
index 3d90ef03899..471b6af342b 100644
--- a/apps/web/src/locales/ro/messages.json
+++ b/apps/web/src/locales/ro/messages.json
@@ -8938,6 +8938,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/ru/messages.json b/apps/web/src/locales/ru/messages.json
index 295a750712c..944acc70862 100644
--- a/apps/web/src/locales/ru/messages.json
+++ b/apps/web/src/locales/ru/messages.json
@@ -8938,6 +8938,14 @@
     "message": "Подробнее об обнаружении совпадений",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Расширенные настройки",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Предупреждение",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "Для сохранения подписки на $ORG$ ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/si/messages.json b/apps/web/src/locales/si/messages.json
index 8d7d455c335..98bb0c5bfdc 100644
--- a/apps/web/src/locales/si/messages.json
+++ b/apps/web/src/locales/si/messages.json
@@ -8938,6 +8938,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/sk/messages.json b/apps/web/src/locales/sk/messages.json
index 1ef20298200..3ffbd08d86e 100644
--- a/apps/web/src/locales/sk/messages.json
+++ b/apps/web/src/locales/sk/messages.json
@@ -8938,6 +8938,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "Aby ste udržali predplatné pre $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/sl/messages.json b/apps/web/src/locales/sl/messages.json
index be975e12486..432c94ded26 100644
--- a/apps/web/src/locales/sl/messages.json
+++ b/apps/web/src/locales/sl/messages.json
@@ -8938,6 +8938,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/sr_CS/messages.json b/apps/web/src/locales/sr_CS/messages.json
index 252f1007196..05ec916c8bb 100644
--- a/apps/web/src/locales/sr_CS/messages.json
+++ b/apps/web/src/locales/sr_CS/messages.json
@@ -8938,6 +8938,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/sr_CY/messages.json b/apps/web/src/locales/sr_CY/messages.json
index fe9c2a6804e..fd566100c6d 100644
--- a/apps/web/src/locales/sr_CY/messages.json
+++ b/apps/web/src/locales/sr_CY/messages.json
@@ -1785,7 +1785,7 @@
     "message": "Ако наставите, одјавићете се са тренутне сесије, што захтева поновно пријављивање. Активне сесије на другим уређајима могу да остану активне до једног сата."
   },
   "changePasswordWarning": {
-    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+    "message": "Након промене лозинке, мораћете да се пријавите са новом лозинком. Активне сесије на другим уређајима биће одјављене у року од једног сата."
   },
   "emailChanged": {
     "message": "Имејл промењен"
@@ -6068,7 +6068,7 @@
     "message": "Додај"
   },
   "masterPasswordSuccessfullySet": {
-    "message": "Master password successfully set"
+    "message": "Главна лозинка успешно постављена"
   },
   "updatedMasterPassword": {
     "message": "Главна лозинка ажурирана"
@@ -6077,10 +6077,10 @@
     "message": "Ажурирај главну лозинку"
   },
   "accountRecoveryUpdateMasterPasswordSubtitle": {
-    "message": "Change your master password to complete account recovery."
+    "message": "Промените главну лозинку да бисте завршили опоравак налога."
   },
   "updateMasterPasswordSubtitle": {
-    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+    "message": "Ваша главна лозинка не испуњава захтеве ове организације. Промените главну лозинку да бисте наставили."
   },
   "updateMasterPasswordWarning": {
     "message": "Ваша главна лозинка је недавно промењена од стране администратора организације. Како бисте приступили сефу, морате да ажурирате вашу главну лозинку. Ако наставите бићете одјављени из ваше тренутне сесије, што ће захтевати да се поново пријавите. Активне сесије на другим уређајима ће можда наставити да раде до сат времена."
@@ -8246,7 +8246,7 @@
     "message": "Дошло је до грешке у покушају читања датотеке за увоз"
   },
   "accessedSecretWithId": {
-    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "message": "Тајна приступљена са идентификатором: $SECRET_ID$",
     "placeholders": {
       "secret_id": {
         "content": "$1",
@@ -8264,7 +8264,7 @@
     }
   },
   "editedSecretWithId": {
-    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "message": "Тајна уређена са идентификатором: $SECRET_ID$",
     "placeholders": {
       "secret_id": {
         "content": "$1",
@@ -8273,7 +8273,7 @@
     }
   },
   "deletedSecretWithId": {
-    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "message": "Тајна избрисана са идентификатором: $SECRET_ID$",
     "placeholders": {
       "secret_id": {
         "content": "$1",
@@ -8282,7 +8282,7 @@
     }
   },
   "createdSecretWithId": {
-    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "message": "Креирати нову тајну са идентификатором: $SECRET_ID$",
     "placeholders": {
       "secret_id": {
         "content": "$1",
@@ -8463,10 +8463,10 @@
     "message": "Затражити одобрење администратора"
   },
   "unableToCompleteLogin": {
-    "message": "Unable to complete login"
+    "message": "Није могуће завршити пријаву"
   },
   "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
-    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+    "message": "Потребно је да се пријавите на поузданом уређају или да замолите администратора да вам додели лозинку."
   },
   "trustedDeviceEncryption": {
     "message": "Шифровање поузданог уређаја"
@@ -8923,21 +8923,29 @@
     "description": "Label indicating the most common import formats"
   },
   "uriMatchDefaultStrategyHint": {
-    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "message": "Детекција подударања URI-ја је начин на који Bitwarden идентификује предлоге за ауто-попуњавање.",
     "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
   },
   "regExAdvancedOptionWarning": {
-    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "message": "„Регуларни израз“ је напредна опција са повећаним ризиком од откривања акредитива.",
     "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
   },
   "startsWithAdvancedOptionWarning": {
-    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "message": "„Почиње са“ је напредна опција са повећаним ризиком од откривања акредитива.",
     "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
   },
   "uriMatchWarningDialogLink": {
-    "message": "More about match detection",
+    "message": "Више о откривању подударања",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Напредне опције",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Упозорење",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "Да бисте одржали своју претплату за $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10729,49 +10737,49 @@
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
   "setupExtensionPageTitle": {
-    "message": "Autofill your passwords securely with one click"
+    "message": "Ауто-попунити лозинке са једним кликом"
   },
   "setupExtensionPageDescription": {
-    "message": "Get the Bitwarden browser extension and start autofilling today"
+    "message": "Преузети Bitwarden додатак за претраживач и почнети са ауто-попуњавањем"
   },
   "getTheExtension": {
-    "message": "Get the extension"
+    "message": "Добити додатак"
   },
   "addItLater": {
-    "message": "Add it later"
+    "message": "Додати касније"
   },
   "cannotAutofillPasswordsWithoutExtensionTitle": {
-    "message": "You can't autofill passwords without the browser extension"
+    "message": "Не можете ауто-попуњавати лозинке без екстензије за прегледач"
   },
   "cannotAutofillPasswordsWithoutExtensionDesc": {
-    "message": "Are you sure you don't want to add the extension now?"
+    "message": "Да ли сте сигурни да не желите да сада додате екстензију?"
   },
   "skipToWebApp": {
-    "message": "Skip to web app"
+    "message": "Прескочи на веб апликацију"
   },
   "bitwardenExtensionInstalled": {
-    "message": "Bitwarden extension installed!"
+    "message": "Bitwarden екстензија инсталираана!"
   },
   "openExtensionToAutofill": {
-    "message": "Open the extension to log in and start autofilling."
+    "message": "Отворите екстензију да бисте се пријавили и започели ауто-попуњавање."
   },
   "openBitwardenExtension": {
-    "message": "Open Bitwarden extension"
+    "message": "Отворити Bitwarden екстензију"
   },
   "gettingStartedWithBitwardenPart1": {
-    "message": "For tips on getting started with Bitwarden visit the",
+    "message": "За савете о почетку рада са Bitwarden-ом посетите",
     "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
-    "message": "Learning Center",
+    "message": "Центар за учење",
     "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
-    "message": "Help Center",
+    "message": "Центар за помоћ",
     "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
-    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+    "message": "Помоћу Bitwarden екстензије за прегледач можете лако да креирате нове пријаве, приступите сачуваним пријавама директно из траке са алаткама прегледача и брзо се пријавите на налоге користећи Bitwarden ауто-попуњавање."
   },
   "restart": {
     "message": "Поново покрени"
@@ -10800,46 +10808,46 @@
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
   },
   "billingAddress": {
-    "message": "Billing address"
+    "message": "Адреса рачуна"
   },
   "addBillingAddress": {
-    "message": "Add billing address"
+    "message": "Додајте адресу за обрачун"
   },
   "editBillingAddress": {
-    "message": "Edit billing address"
+    "message": "Уредити адресу за обрачун"
   },
   "noBillingAddress": {
-    "message": "No address on file."
+    "message": "Нема адресе."
   },
   "billingAddressUpdated": {
-    "message": "Your billing address has been updated."
+    "message": "Ваша адреса је промењена."
   },
   "paymentDetails": {
-    "message": "Payment details"
+    "message": "Детаљи плаћања"
   },
   "paymentMethodUpdated": {
-    "message": "Your payment method has been updated."
+    "message": "Ваш начин плаћања је ажуриран."
   },
   "bankAccountVerified": {
-    "message": "Your bank account has been verified."
+    "message": "Банковни рачун је верификован."
   },
   "availableCreditAppliedToInvoice": {
-    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+    "message": "Сваки расположиви кредит ће бити аутоматски примењен на фактуре генерисане за овај налог."
   },
   "mustBePositiveNumber": {
-    "message": "Must be a positive number"
+    "message": "Мора бити позитиван број"
   },
   "cardSecurityCode": {
-    "message": "Card security code"
+    "message": "Сигурносни кôд картица"
   },
   "cardSecurityCodeDescription": {
-    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+    "message": "Безбедносни кôд картице, такође познат као CVV или CVC, је обично троцифрени број одштампан на полеђини ваше кредитне картице или четвороцифрени број одштампан на предњој страни изнад броја ваше картице."
   },
   "verifyBankAccountWarning": {
-    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+    "message": "Плаћање путем банковног рачуна је доступно само купцима у Сједињеним Америчким Државама. Биће потребно да верификујете свој банковни рачун. Извршићемо микро-депозит у наредних 1-2 радна дана. Унесите кôд дескриптора извода са овог депозита на страници са детаљима плаћања да бисте верификовали банковни рачун. Уколико не верификујете банковни рачун, доћи ће до пропуштеног плаћања и суспендовања ваше претплате."
   },
   "taxId": {
-    "message": "Tax ID: $TAX_ID$",
+    "message": "Порески број: $TAX_ID$",
     "placeholders": {
       "tax_id": {
         "content": "$1",
diff --git a/apps/web/src/locales/sv/messages.json b/apps/web/src/locales/sv/messages.json
index f373bc14237..8a8b5d4fdc7 100644
--- a/apps/web/src/locales/sv/messages.json
+++ b/apps/web/src/locales/sv/messages.json
@@ -9,7 +9,7 @@
     "message": "Kritiska applikationer"
   },
   "noCriticalAppsAtRisk": {
-    "message": "No critical applications at risk"
+    "message": "Inga kritiska applikationer i riskzonen"
   },
   "accessIntelligence": {
     "message": "Access Intelligence"
@@ -21,10 +21,10 @@
     "message": "Lösenordsrisk"
   },
   "reviewAtRiskPasswords": {
-    "message": "Review at-risk passwords (weak, exposed, or reused) across applications. Select your most critical applications to prioritize security actions for your users to address at-risk passwords."
+    "message": "Granska risklösenord (svaga, exponerade eller återanvända) i olika applikationer. Välj ut de mest kritiska applikationerna för att prioritera säkerhetsåtgärder för användarna för att hantera risklösenord."
   },
   "dataLastUpdated": {
-    "message": "Data last updated: $DATE$",
+    "message": "Data senast uppdaterade: $DATE$",
     "placeholders": {
       "date": {
         "content": "$1",
@@ -33,7 +33,7 @@
     }
   },
   "notifiedMembers": {
-    "message": "Notified members"
+    "message": "Meddelade medlemmar"
   },
   "revokeMembers": {
     "message": "Återkalla medlemmar"
@@ -42,7 +42,7 @@
     "message": "Återställ medlemmar"
   },
   "cannotRestoreAccessError": {
-    "message": "Cannot restore organization access"
+    "message": "Det går inte att återställa organisationsåtkomst"
   },
   "allApplicationsWithCount": {
     "message": "Alla applikationer ($COUNT$)",
@@ -66,7 +66,7 @@
     }
   },
   "notifiedMembersWithCount": {
-    "message": "Notified members ($COUNT$)",
+    "message": "Meddelade medlemmar ($COUNT$)",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -84,13 +84,13 @@
     }
   },
   "noAppsInOrgDescription": {
-    "message": "As users save logins, applications appear here, showing any at-risk passwords. Mark critical apps and notify users to update passwords."
+    "message": "När användare sparar inloggningar visas applikationer här och visar eventuella riskfyllda lösenord. Markera kritiska appar och meddela användarna att de ska uppdatera lösenorden."
   },
   "noCriticalAppsTitle": {
-    "message": "You haven't marked any applications as a Critical"
+    "message": "Du har inte markerat några applikationer som kritiska"
   },
   "noCriticalAppsDescription": {
-    "message": "Select your most critical applications to discover at-risk passwords, and notify users to change those passwords."
+    "message": "Välj ut dina mest kritiska applikationer för att upptäcka riskfyllda lösenord och meddela användarna att de ska byta lösenord."
   },
   "markCriticalApps": {
     "message": "Markera kritiska applikationer"
@@ -99,28 +99,28 @@
     "message": "Markera app som kritisk"
   },
   "applicationsMarkedAsCriticalSuccess": {
-    "message": "Applications marked as critical"
+    "message": "Applikationer markerade som kritiska"
   },
   "application": {
     "message": "Applikation"
   },
   "atRiskPasswords": {
-    "message": "At-risk passwords"
+    "message": "Lösenord i riskzonen"
   },
   "requestPasswordChange": {
-    "message": "Request password change"
+    "message": "Begär ändring av lösenord"
   },
   "totalPasswords": {
-    "message": "Total passwords"
+    "message": "Totalt antal lösenord"
   },
   "searchApps": {
-    "message": "Search applications"
+    "message": "Sök applikationer"
   },
   "atRiskMembers": {
-    "message": "At-risk members"
+    "message": "Riskutsatta medlemmar"
   },
   "atRiskMembersWithCount": {
-    "message": "At-risk members ($COUNT$)",
+    "message": "Medlemmar i riskzonen ($COUNT$)",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -129,7 +129,7 @@
     }
   },
   "atRiskApplicationsWithCount": {
-    "message": "At-risk applications ($COUNT$)",
+    "message": "Applikationer i riskzonen ($COUNT$)",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -138,19 +138,19 @@
     }
   },
   "atRiskMembersDescription": {
-    "message": "These members are logging into applications with weak, exposed, or reused passwords."
+    "message": "Dessa medlemmar loggar in i applikationer med svaga, exponerade eller återanvända lösenord."
   },
   "atRiskMembersDescriptionNone": {
-    "message": "These are no members logging into applications with weak, exposed, or reused passwords."
+    "message": "Det finns inga medlemmar som loggar in i applikationer med svaga, exponerade eller återanvända lösenord."
   },
   "atRiskApplicationsDescription": {
-    "message": "These applications have weak, exposed, or reused passwords."
+    "message": "Dessa applikationer har svaga, exponerade eller återanvända lösenord."
   },
   "atRiskApplicationsDescriptionNone": {
-    "message": "These are no applications with weak, exposed, or reused passwords."
+    "message": "Det här är inga applikationer med svaga, exponerade eller återanvända lösenord."
   },
   "atRiskMembersDescriptionWithApp": {
-    "message": "These members are logging into $APPNAME$ with weak, exposed, or reused passwords.",
+    "message": "Dessa medlemmar loggar in på $APPNAME$ med svaga, exponerade eller återanvända lösenord.",
     "placeholders": {
       "appname": {
         "content": "$1",
@@ -159,7 +159,7 @@
     }
   },
   "atRiskMembersDescriptionWithAppNone": {
-    "message": "There are no at risk members for $APPNAME$.",
+    "message": "Det finns inga medlemmar i riskzonen för $APPNAME$.",
     "placeholders": {
       "appname": {
         "content": "$1",
@@ -168,19 +168,19 @@
     }
   },
   "totalMembers": {
-    "message": "Total members"
+    "message": "Totalt antal medlemmar"
   },
   "atRiskApplications": {
-    "message": "At-risk applications"
+    "message": "Applikationer i riskzonen"
   },
   "totalApplications": {
-    "message": "Total applications"
+    "message": "Totalt antal applikationer"
   },
   "unmarkAsCriticalApp": {
-    "message": "Unmark as critical app"
+    "message": "Avmarkera som kritisk app"
   },
   "criticalApplicationSuccessfullyUnmarked": {
-    "message": "Critical application successfully unmarked"
+    "message": "Kritisk applikation avmarkerades"
   },
   "whatTypeOfItem": {
     "message": "Vilken typ av objekt är detta?"
@@ -220,7 +220,7 @@
     "message": "Anteckningar"
   },
   "privateNote": {
-    "message": "Private note"
+    "message": "Privat notering"
   },
   "note": {
     "message": "Anteckning"
@@ -297,7 +297,7 @@
     }
   },
   "showMatchDetection": {
-    "message": "Show match detection $WEBSITE$",
+    "message": "Visa matchningsdetektering $WEBSITE$",
     "placeholders": {
       "website": {
         "content": "$1",
@@ -306,7 +306,7 @@
     }
   },
   "hideMatchDetection": {
-    "message": "Hide match detection $WEBSITE$",
+    "message": "Detektering av dold matchning $WEBSITE$",
     "placeholders": {
       "website": {
         "content": "$1",
@@ -315,7 +315,7 @@
     }
   },
   "autoFillOnPageLoad": {
-    "message": "Autofill on page load?"
+    "message": "Autofyll vid sidladdning?"
   },
   "number": {
     "message": "Nummer"
@@ -429,7 +429,7 @@
     "message": "Bitwarden kan lagra och fylla tvåstegsverifieringskoder. Kopiera och klistra in nyckeln i detta fält."
   },
   "totpHelperWithCapture": {
-    "message": "Bitwarden can store and fill 2-step verification codes. Select the camera icon to take a screenshot of this website's authenticator QR code, or copy and paste the key into this field."
+    "message": "Bitwarden kan lagra och fylla i 2-stegsverifieringskoder. Välj kameraikonen för att ta en skärmdump av den här webbplatsens QR-kod för autentisering, eller kopiera och klistra in nyckeln i det här fältet."
   },
   "learnMoreAboutAuthenticators": {
     "message": "Läs mer om autentiserare"
@@ -502,7 +502,7 @@
     "message": "Mappnamn"
   },
   "folderHintText": {
-    "message": "Nest a folder by adding the parent folder's name followed by a “/”. Example: Social/Forums"
+    "message": "Nästla en mapp genom att lägga till namnet på den överordnade mappen följt av \"/\". Exempel: Sociala/Forums"
   },
   "deleteFolderPermanently": {
     "message": "Är du säker på att du vill radera den här mappen permanent?"
@@ -760,7 +760,7 @@
     "message": "Objekt"
   },
   "itemDetails": {
-    "message": "Item details"
+    "message": "Objektdetaljer"
   },
   "itemName": {
     "message": "Objektnamn"
@@ -1004,7 +1004,7 @@
     "message": "Åtkomstnivå"
   },
   "accessing": {
-    "message": "Accessing"
+    "message": "Tillgång"
   },
   "loggedOut": {
     "message": "Utloggad"
@@ -1055,7 +1055,7 @@
     "message": "\"Logga in med enhet\" måste ställas in i inställningarna i Bitwardens app. Behöver du ett annat alternativ?"
   },
   "needAnotherOptionV1": {
-    "message": "Need another option?"
+    "message": "Behöver du ett annat alternativ?"
   },
   "loginWithMasterPassword": {
     "message": "Logga in med huvudlösenord"
@@ -1166,7 +1166,7 @@
     "message": "Ställ in ett starkt lösenord"
   },
   "finishCreatingYourAccountBySettingAPassword": {
-    "message": "Finish creating your account by setting a password"
+    "message": "Avsluta skapandet av ditt konto genom att ange ett lösenord"
   },
   "newAroundHere": {
     "message": "Är du ny här?"
@@ -1181,25 +1181,25 @@
     "message": "Logga in på Bitwarden"
   },
   "enterTheCodeSentToYourEmail": {
-    "message": "Enter the code sent to your email"
+    "message": "Ange koden som skickats till din e-post"
   },
   "enterTheCodeFromYourAuthenticatorApp": {
-    "message": "Enter the code from your authenticator app"
+    "message": "Ange koden från din autentiseringsapp"
   },
   "pressYourYubiKeyToAuthenticate": {
     "message": "Tryck på din YubiKey för att autentisera"
   },
   "authenticationTimeout": {
-    "message": "Authentication timeout"
+    "message": "Timeout för autentisering"
   },
   "authenticationSessionTimedOut": {
-    "message": "The authentication session timed out. Please restart the login process."
+    "message": "Autentiseringssessionen timade ut. Vänligen starta om inloggningsprocessen."
   },
   "verifyYourIdentity": {
     "message": "Verifiera din identitet"
   },
   "weDontRecognizeThisDevice": {
-    "message": "We don't recognize this device. Enter the code sent to your email to verify your identity."
+    "message": "Vi känner inte igen den här enheten. Ange koden som skickats till din e-post för att verifiera din identitet."
   },
   "continueLoggingIn": {
     "message": "Fortsätt logga in"
@@ -1208,7 +1208,7 @@
     "message": "Vad är en enhet?"
   },
   "aDeviceIs": {
-    "message": "A device is a unique installation of the Bitwarden app where you have logged in. Reinstalling, clearing app data, or clearing your cookies could result in a device appearing multiple times."
+    "message": "En enhet är en unik installation av Bitwarden-appen där du har loggat in. Ominstallation, rensning av appdata eller rensning av dina cookies kan leda till att en enhet visas flera gånger."
   },
   "logInInitiated": {
     "message": "Inloggning påbörjad"
@@ -1269,7 +1269,7 @@
     "message": "Inställningar"
   },
   "accountEmail": {
-    "message": "Account email"
+    "message": "Konto E-post"
   },
   "requestHint": {
     "message": "Begär ledtråd"
@@ -1278,7 +1278,7 @@
     "message": "Begär lösenordsledtråd"
   },
   "enterYourAccountEmailAddressAndYourPasswordHintWillBeSentToYou": {
-    "message": "Enter your account email address and your password hint will be sent to you"
+    "message": "Ange din e-postadress för kontot så skickas en lösenordshint till dig"
   },
   "getMasterPasswordHint": {
     "message": "Hämta huvudlösenordsledtråd"
@@ -1373,7 +1373,7 @@
     "message": "Du har inte behörighet att se alla objekt i denna samling."
   },
   "youDoNotHavePermissions": {
-    "message": "You do not have permissions to this collection"
+    "message": "Du har inte behörighet till denna samling"
   },
   "noCollectionsInList": {
     "message": "Det finns inga samlingar att visa."
@@ -1406,7 +1406,7 @@
     "message": "Försöker du komma åt ditt konto?"
   },
   "accessAttemptBy": {
-    "message": "Access attempt by $EMAIL$",
+    "message": "Åtkomstförsök via $EMAIL$",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -1424,10 +1424,10 @@
     "message": "webbapp"
   },
   "notificationSentDevicePart2": {
-    "message": "Make sure the Fingerprint phrase matches the one below before approving."
+    "message": "Kontrollera att fingeravtrycksfrasen stämmer överens med den nedan innan du godkänner."
   },
   "notificationSentDeviceComplete": {
-    "message": "Unlock Bitwarden on your device. Make sure the Fingerprint phrase matches the one below before approving."
+    "message": "Lås upp Bitwarden på din enhet. Kontrollera att fingeravtrycksfrasen matchar den nedan innan du godkänner."
   },
   "aNotificationWasSentToYourDevice": {
     "message": "Ett meddelande har skickats till din enhet"
@@ -1545,7 +1545,7 @@
     "message": "Redigera de samlingar som detta objekt delas med. Endast organisationsanvändare med tillgång till dessa samlingar kommer att kunna se detta objekt."
   },
   "deleteSelectedItemsDesc": {
-    "message": "Du har markerat $COUNT$ objekt att radera. Är du säker på att du vill radera alla dessa objekt?",
+    "message": "$COUNT$ föremål kommer att skickas till papperskorgen.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -1566,7 +1566,7 @@
     "message": "Är du säker på att du vill fortsätta?"
   },
   "moveSelectedItemsDesc": {
-    "message": "Choose a folder that you would like to add the $COUNT$ selected item(s) to.",
+    "message": "Välj en mapp som du vill lägga till de valda artiklarna $COUNT$ till.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -1584,10 +1584,10 @@
     "message": "Kopiera UUID"
   },
   "errorRefreshingAccessToken": {
-    "message": "Access Token Refresh Error"
+    "message": "Fel vid uppdatering av åtkomsttoken"
   },
   "errorRefreshingAccessTokenDesc": {
-    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+    "message": "Ingen uppdateringstoken eller API-nyckel hittades. Försök att logga ut och logga in igen."
   },
   "warning": {
     "message": "Varning"
@@ -1602,7 +1602,7 @@
     "message": "Denna export innehåller ditt valv i ett okrypterat format. Du bör inte lagra eller skicka den exporterade filen över osäkra kanaler (t.ex. e-post). Radera den omedelbart när du är färdig med den."
   },
   "exportSecretsWarningDesc": {
-    "message": "Denna export innehåller ditt valv i ett okrypterat format. Du bör inte lagra eller skicka den exporterade filen över osäkra kanaler (t.ex. e-post). Radera den omedelbart när du är färdig med den. "
+    "message": "Denna export innehåller ditt valv i ett okrypterat format. Du bör inte lagra eller skicka den exporterade filen över osäkra kanaler (t.ex. e-post). Radera den omedelbart när du är färdig med den."
   },
   "encExportKeyWarningDesc": {
     "message": "Denna export krypterar dina data med kontots krypteringsnyckel. Om du någonsin roterar kontots krypteringsnyckel bör du exportera igen eftersom du inte kommer att kunna dekryptera denna exportfil."
@@ -1644,7 +1644,7 @@
     "message": "Bekräfta fillösenord"
   },
   "accountRestrictedOptionDescription": {
-    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+    "message": "Använd ditt kontos krypteringsnyckel, som härrör från ditt kontos användarnamn och huvudlösenord, för att kryptera exporten och begränsa importen till endast det aktuella Bitwarden-kontot."
   },
   "passwordProtectedOptionDescription": {
     "message": "Välj ett fillösenord för att kryptera exportfilen. Filen kan sedan importeras till valfritt Bitwarden-konto med hjälp av fillösenordet."
@@ -1726,20 +1726,20 @@
     "message": "Inkludera siffra"
   },
   "generatorPolicyInEffect": {
-    "message": "Enterprise policy requirements have been applied to your generator options.",
+    "message": "Företagets policykrav har tillämpats på dina generatoralternativ.",
     "description": "Indicates that a policy limits the credential generator screen."
   },
   "passwordHistory": {
     "message": "Lösenordshistorik"
   },
   "generatorHistory": {
-    "message": "Generator history"
+    "message": "Generatorns historia"
   },
   "clearGeneratorHistoryTitle": {
-    "message": "Clear generator history"
+    "message": "Rensa generatorhistorik"
   },
   "cleargGeneratorHistoryDescription": {
-    "message": "If you continue, all entries will be permanently deleted from generator's history. Are you sure you want to continue?"
+    "message": "Om du fortsätter kommer alla poster att raderas permanent från generatorns historik. Är du säker på att du vill fortsätta?"
   },
   "noPasswordsInList": {
     "message": "Det finns inga lösenord att visa."
@@ -1751,7 +1751,7 @@
     "message": "Ingenting att visa"
   },
   "nothingGeneratedRecently": {
-    "message": "You haven't generated anything recently"
+    "message": "Du har inte genererat något nyligen"
   },
   "clear": {
     "message": "Rensa",
@@ -1785,7 +1785,7 @@
     "message": "Om du fortsätter kommer du loggas ut från sin nuvarande session vilket kräver att du loggar in igen. Aktiva sessioner på andra enheter kan fortsätta vara aktiva i upp till en timme."
   },
   "changePasswordWarning": {
-    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+    "message": "När du har ändrat ditt lösenord måste du logga in med ditt nya lösenord. Aktiva sessioner på andra enheter kommer att loggas ut inom en timme."
   },
   "emailChanged": {
     "message": "E-postadressen redigerades"
@@ -1885,16 +1885,16 @@
     "message": "Aktivera inloggningsskydd för nya enheter"
   },
   "turnOffNewDeviceLoginProtectionModalDesc": {
-    "message": "Proceed below to turn off the verification emails bitwarden sends when you login from a new device."
+    "message": "Fortsätt nedan för att stänga av de verifieringsmeddelanden som bitwarden skickar när du loggar in från en ny enhet."
   },
   "turnOnNewDeviceLoginProtectionModalDesc": {
-    "message": "Proceed below to have bitwarden send you verification emails when you login from a new device."
+    "message": "Fortsätt nedan för att bitwarden ska skicka verifieringsmeddelanden till dig när du loggar in från en ny enhet."
   },
   "turnOffNewDeviceLoginProtectionWarning": {
-    "message": "With new device login protection turned off, anyone with your master password can access your account from any device. To protect your account without verification emails, set up two-step login."
+    "message": "När inloggningsskyddet för nya enheter är avstängt kan alla som har ditt huvudlösenord komma åt ditt konto från vilken enhet som helst. Om du vill skydda ditt konto utan verifieringsmeddelanden kan du ställa in tvåstegsinloggning."
   },
   "accountNewDeviceLoginProtectionSaved": {
-    "message": "New device login protection changes saved"
+    "message": "Ändringar av inloggningsskydd för ny enhet sparas"
   },
   "sessionsDeauthorized": {
     "message": "Alla sessioner avauktoriserades"
@@ -2028,7 +2028,7 @@
     "message": "Välj en samling"
   },
   "importTargetHint": {
-    "message": "Select this option if you want the imported file contents moved to a $DESTINATION$",
+    "message": "Välj det här alternativet om du vill att innehållet i den importerade filen ska flyttas till en $DESTINATION$",
     "description": "Located as a hint under the import target. Will be appended by either folder or collection, depending if the user is importing into an individual or an organizational vault.",
     "placeholders": {
       "destination": {
@@ -2148,7 +2148,7 @@
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'Enforce Bitwarden Two-step Login options for members by using the Two-step Login Policy.'"
   },
   "twoStepLoginPolicy": {
-    "message": "policyn för tvåstegsinloggning"
+    "message": "Policyn för tvåstegsinloggning"
   },
   "twoStepLoginOrganizationDuoDesc": {
     "message": "För att kräva tvåstegsverifiering med Duo, använd alternativen nedan."
@@ -2160,19 +2160,19 @@
     "message": "Att aktivera tvåstegsverifiering kan låsa ute dig från ditt Bitwarden-konto permanent. En återställningskod låter dig komma åt ditt konto om du inte längre kan använda din vanliga metod för tvåstegsverifiering (t.ex. om du förlorar din enhet). Bitwardens kundservice kommer inte att kunna hjälpa dig om du förlorar åtkomst till ditt konto. Vi rekommenderar att du skriver ner eller skriver ut återställningskoden och förvarar den på ett säkert ställe."
   },
   "restrictedItemTypePolicy": {
-    "message": "Remove card item type"
+    "message": "Ta bort kortets artikeltyp"
   },
   "restrictedItemTypePolicyDesc": {
-    "message": "Do not allow members to create card item types. Existing cards will be automatically removed."
+    "message": "Tillåt inte medlemmar att skapa kortobjektstyper. Befintliga kort kommer automatiskt att tas bort."
   },
   "restrictCardTypeImport": {
-    "message": "Cannot import card item types"
+    "message": "Det går inte att importera typer av kortposter"
   },
   "restrictCardTypeImportDesc": {
-    "message": "A policy set by 1 or more organizations prevents you from importing cards to your vaults."
+    "message": "En policy som har fastställts av en eller flera organisationer hindrar dig från att importera kort till dina valv."
   },
   "yourSingleUseRecoveryCode": {
-    "message": "Your single-use recovery code can be used to turn off two-step login in the event that you lose access to your two-step login provider. Bitwarden recommends you write down the recovery code and keep it in a safe place."
+    "message": "Din återställningskod för engångsbruk kan användas för att stänga av tvåstegsinloggning i händelse av att du förlorar åtkomst till din leverantör av tvåstegsinloggning. Bitwarden rekommenderar att du skriver ner återställningskoden och förvarar den på en säker plats."
   },
   "viewRecoveryCode": {
     "message": "Visa återställningskod"
@@ -2231,7 +2231,7 @@
     "message": "Stäng av"
   },
   "orgUserDetailsNotFound": {
-    "message": "Member details not found."
+    "message": "Medlemsuppgifter hittades inte."
   },
   "revokeAccess": {
     "message": "Återkalla åtkomst"
@@ -2246,7 +2246,7 @@
     "message": "Ange ditt huvudlösenord för att ändra inställningarna för tvåstegsverifiering."
   },
   "twoStepAuthenticatorInstructionPrefix": {
-    "message": "Download an authenticator app such as"
+    "message": "Ladda ner en autentiseringsapp som t.ex"
   },
   "twoStepAuthenticatorInstructionInfix1": {
     "message": ","
@@ -2273,13 +2273,13 @@
     "message": "Fortsätt till bitwarden.com?"
   },
   "twoStepContinueToBitwardenUrlDesc": {
-    "message": "Bitwarden Authenticator allows you to store authenticator keys and generate TOTP codes for 2-step verification flows. Learn more on the bitwarden.com website."
+    "message": "Med Bitwarden Authenticator kan du lagra autentiseringsnycklar och generera TOTP-koder för flöden med 2-stegsverifiering. Läs mer på webbplatsen bitwarden.com."
   },
   "twoStepAuthenticatorScanCodeV2": {
     "message": "Skanna QR-koden nedan med din autentiseringsapp eller ange nyckeln."
   },
   "twoStepAuthenticatorQRCanvasError": {
-    "message": "Could not load QR code. Try again or use the key below."
+    "message": "QR-koden kunde inte laddas. Försök igen eller använd nyckeln nedan."
   },
   "key": {
     "message": "Nyckel"
@@ -2429,7 +2429,7 @@
     "message": "Det gick inte att läsa säkerhetsnyckeln. Försök igen."
   },
   "twoFactorWebAuthnWarning1": {
-    "message": "Due to platform limitations, WebAuthn cannot be used on all Bitwarden applications. You should set up another two-step login provider so that you can access your account when WebAuthn cannot be used."
+    "message": "På grund av plattformsbegränsningar kan WebAuthn inte användas på alla Bitwarden-applikationer. Du bör konfigurera en annan leverantör av tvåstegsinloggning så att du kan komma åt ditt konto när WebAuthn inte kan användas."
   },
   "twoFactorRecoveryYourCode": {
     "message": "Din återställningskod för tvåstegsverifiering"
@@ -2462,7 +2462,7 @@
     "message": "Osäkra webbplatser hittades"
   },
   "unsecuredWebsitesFoundReportDesc": {
-    "message": "We found $COUNT$ items in your $VAULT$ with unsecured URIs. You should change their URI scheme to https:// if the website allows it.",
+    "message": "Vi hittade $COUNT$ objekt i din $VAULT$ med osäkrade URI:er. Du bör ändra deras URI-schema till https:// om webbplatsen tillåter det.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -2487,7 +2487,7 @@
     "message": "Inloggningar utan 2FA hittades"
   },
   "inactive2faFoundReportDesc": {
-    "message": "We found $COUNT$ website(s) in your $VAULT$ that may not be configured with two-step login (according to 2fa.directory). To further protect these accounts, you should set up two-step login.",
+    "message": "Vi hittade $COUNT$ webbplats(er) i din $VAULT$ som kanske inte är konfigurerade med tvåstegsinloggning (enligt 2fa.directory). För att ytterligare skydda dessa konton bör du konfigurera tvåstegsinloggning.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -2515,7 +2515,7 @@
     "message": "Avslöjade lösenord hittades"
   },
   "exposedPasswordsFoundReportDesc": {
-    "message": "We found $COUNT$ items in your $VAULT$ that have passwords that were exposed in known data breaches. You should change them to use a new password.",
+    "message": "Vi hittade $COUNT$ objekt i din $VAULT$ som har lösenord som har exponerats i kända dataintrång. Du bör ändra dem så att du använder ett nytt lösenord.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -2534,7 +2534,7 @@
     "message": "Kontrollera avslöjade lösenord"
   },
   "timesExposed": {
-    "message": "Times exposed"
+    "message": "Tiderna avslöjade"
   },
   "exposedXTimes": {
     "message": "Avslöjad $COUNT$ gång(er)",
@@ -2555,7 +2555,7 @@
     "message": "Svaga lösenord hittades"
   },
   "weakPasswordsFoundReportDesc": {
-    "message": "We found $COUNT$ items in your $VAULT$ with passwords that are not strong. You should update them to use stronger passwords.",
+    "message": "Vi hittade $COUNT$ objekt i din $VAULT$ med lösenord som inte är starka. Du bör uppdatera dem så att de använder starkare lösenord.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -2571,7 +2571,7 @@
     "message": "Inga objekt i ditt valv har svaga lösenord."
   },
   "weakness": {
-    "message": "Weakness"
+    "message": "Svaghet"
   },
   "reusedPasswordsReport": {
     "message": "Rapport om återanvända lösenord"
@@ -2583,7 +2583,7 @@
     "message": "Återanvända lösenord hittades"
   },
   "reusedPasswordsFoundReportDesc": {
-    "message": "We found $COUNT$ passwords that are being reused in your $VAULT$. You should change them to a unique value.",
+    "message": "Vi hittade $COUNT$-lösenord som återanvänds i din $VAULT$. Du bör ändra dem till ett unikt värde.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -2599,7 +2599,7 @@
     "message": "Inga inloggningar i ditt valv har lösenord som återanvänds."
   },
   "timesReused": {
-    "message": "Times reused"
+    "message": "Återanvända gånger"
   },
   "reusedXTimes": {
     "message": "Återanvänt $COUNT$ gånger",
@@ -2899,7 +2899,7 @@
     "message": "Hämta licens"
   },
   "viewBillingToken": {
-    "message": "View Billing Token"
+    "message": "Visa faktureringstoken"
   },
   "updateLicense": {
     "message": "Uppdatera licens"
@@ -3267,7 +3267,7 @@
     "message": "Din nya organisation är redo!"
   },
   "organizationUpgraded": {
-    "message": "Din organisation har uppgraderats."
+    "message": "Din organisation har uppgraderats"
   },
   "leave": {
     "message": "Lämna"
@@ -3276,7 +3276,7 @@
     "message": "Är du säker på att du vill lämna denna organisation?"
   },
   "leftOrganization": {
-    "message": "Du har lämnat organisationen."
+    "message": "Du har lämnat organisationen"
   },
   "defaultCollection": {
     "message": "Standardsamling"
@@ -3336,10 +3336,10 @@
     "message": "När en medlem tas bort har de inte längre tillgång till organisationsdata och denna åtgärd är oåterkallelig. För att lägga tillbaka medlemmen till organisationen måste de bjudas in och bekräftas igen."
   },
   "revokeUserConfirmation": {
-    "message": "When a member is revoked, they no longer have access to organization data. To quickly restore member access, go to the Revoked tab."
+    "message": "När en medlem återkallas har denne inte längre tillgång till organisationsdata. Om du snabbt vill återställa medlemmens åtkomst går du till fliken Återkallad."
   },
   "removeUserConfirmationKeyConnector": {
-    "message": "Warning! This user requires Key Connector to manage their encryption. Removing this user from your organization will permanently deactivate their account. This action cannot be undone. Do you want to proceed?"
+    "message": "Varning för denna användare! Den här användaren behöver Key Connector för att hantera sin kryptering. Om du tar bort den här användaren från din organisation kommer användarens konto att inaktiveras permanent. Denna åtgärd kan inte ångras. Vill du fortsätta?"
   },
   "externalId": {
     "message": "Externt ID"
@@ -3348,10 +3348,10 @@
     "message": "Det externa id:t kan användas som referens eller för att länka denna resurs till ett externt system såsom en användarkatalog."
   },
   "ssoExternalId": {
-    "message": "SSO External ID"
+    "message": "SSO Externt ID"
   },
   "ssoExternalIdDesc": {
-    "message": "SSO External ID is an unencrypted reference between Bitwarden and your configured SSO provider."
+    "message": "SSO Externt ID är en okrypterad referens mellan Bitwarden och din konfigurerade SSO-leverantör."
   },
   "nestCollectionUnder": {
     "message": "Kapsla samling under"
@@ -3402,10 +3402,10 @@
     }
   },
   "inviteSingleEmailDesc": {
-    "message": "You have 1 invite remaining."
+    "message": "Du har 1 inbjudan kvar."
   },
   "inviteZeroEmailDesc": {
-    "message": "You have 0 invites remaining."
+    "message": "Du har 0 inbjudningar kvar."
   },
   "userUsingTwoStep": {
     "message": "Denna användare använder tvåstegsverifiering för att skydda sitt konto."
@@ -3429,19 +3429,19 @@
     "message": "Hantera alla aspekter av din organisation, inklusive fakturering och prenumerationer"
   },
   "clientOwnerDesc": {
-    "message": "This user should be independent of the Provider. If the Provider is disassociated with the organization, this user will maintain ownership of the organization."
+    "message": "Denna användare bör vara oberoende av Providern. Om Providern skiljs från organisationen kommer den här användaren att behålla ägandet av organisationen."
   },
   "admin": {
     "message": "Administratör"
   },
   "adminDesc": {
-    "message": "Manage organization access, all collections, members, reporting, and security settings"
+    "message": "Hantera organisationens åtkomst, alla samlingar, medlemmar, rapportering och säkerhetsinställningar"
   },
   "user": {
     "message": "Användare"
   },
   "userDesc": {
-    "message": "Access and add items to assigned collections"
+    "message": "Få tillgång till och lägga till objekt i tilldelade samlingar"
   },
   "all": {
     "message": "Alla"
@@ -3450,7 +3450,7 @@
     "message": "Lägg till åtkomst"
   },
   "addAccessFilter": {
-    "message": "Add Access Filter"
+    "message": "Lägg till åtkomstfilter"
   },
   "refresh": {
     "message": "Uppdatera"
@@ -3604,7 +3604,7 @@
     }
   },
   "viewedCardNumberItemId": {
-    "message": "Viewed Card Number for item $ID$.",
+    "message": "Visat kortnummer för artikel $ID$.",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -3769,7 +3769,7 @@
     }
   },
   "revokedUserId": {
-    "message": "Revoked organization access for $ID$.",
+    "message": "Återkallad organisationsåtkomst för $ID$.",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -3778,7 +3778,7 @@
     }
   },
   "restoredUserId": {
-    "message": "Restored organization access for $ID$.",
+    "message": "Återställd organisationsåtkomst för $ID$.",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -3859,7 +3859,7 @@
     }
   },
   "unlinkedSso": {
-    "message": "Unlinked SSO."
+    "message": "Ej länkad SSO."
   },
   "unlinkedSsoUser": {
     "message": "Olänkad SSO för användare $ID$.",
@@ -3898,7 +3898,7 @@
     }
   },
   "accessedClientVault": {
-    "message": "Accessed $ID$ organization vault.",
+    "message": "Åtkomst till $ID$ organisationsvalv.",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -3916,7 +3916,7 @@
     "message": "Första inloggningen"
   },
   "trusted": {
-    "message": "Trusted"
+    "message": "Betrodd"
   },
   "needsApproval": {
     "message": "Behöver godkännande"
@@ -4097,7 +4097,7 @@
     "message": "Uppdatera webbläsare"
   },
   "generatingYourRiskInsights": {
-    "message": "Generating your Risk Insights..."
+    "message": "Skapa din riskinsikt..."
   },
   "updateBrowserDesc": {
     "message": "Du använder en webbläsare som inte stöds. Webbvalvet kanske inte fungerar som det ska."
@@ -4106,10 +4106,10 @@
     "message": "Du har en väntande inloggningsbegäran från en annan enhet."
   },
   "reviewLoginRequest": {
-    "message": "Review login request"
+    "message": "Granska begäran om inloggning"
   },
   "freeTrialEndPromptCount": {
-    "message": "Your free trial ends in $COUNT$ days.",
+    "message": "Din kostnadsfria testperiod avslutas om $COUNT$ dagar.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -4118,7 +4118,7 @@
     }
   },
   "freeTrialEndPromptMultipleDays": {
-    "message": "$ORGANIZATION$, your free trial ends in $COUNT$ days.",
+    "message": "$ORGANIZATION$, din gratis provperiod slutar om $COUNT$ dagar.",
     "placeholders": {
       "count": {
         "content": "$2",
@@ -4131,7 +4131,7 @@
     }
   },
   "freeTrialEndPromptTomorrow": {
-    "message": "$ORGANIZATION$, your free trial ends tomorrow.",
+    "message": "$ORGANIZATION$, din gratis provperiod slutar i morgon.",
     "placeholders": {
       "organization": {
         "content": "$1",
@@ -4140,10 +4140,10 @@
     }
   },
   "freeTrialEndPromptTomorrowNoOrgName": {
-    "message": "Your free trial ends tomorrow."
+    "message": "Din kostnadsfria testperiod avslutas i morgon."
   },
   "freeTrialEndPromptToday": {
-    "message": "$ORGANIZATION$, your free trial ends today.",
+    "message": "$ORGANIZATION$, din gratis provperiod slutar idag.",
     "placeholders": {
       "organization": {
         "content": "$1",
@@ -4173,7 +4173,7 @@
     "message": "Du har bjudits in att gå med i organisationen ovan. För att acceptera inbjudan måste du logga in eller skapa ett nytt Bitwarden-konto."
   },
   "finishJoiningThisOrganizationBySettingAMasterPassword": {
-    "message": "Finish joining this organization by setting a master password."
+    "message": "Avsluta anslutningen till denna organisation genom att ange ett huvudlösenord."
   },
   "inviteAccepted": {
     "message": "Inbjudan accepterades"
@@ -4203,7 +4203,7 @@
     "message": "Om du inte kan komma åt ditt konto genom dina vanliga metoder för tvåstegsverifiering kan du använda din återställningskod för att inaktivera alla metoder för tvåstegsverifiering på ditt konto."
   },
   "logInBelowUsingYourSingleUseRecoveryCode": {
-    "message": "Log in below using your single-use recovery code. This will turn off all two-step providers on your account."
+    "message": "Logga in nedan med din återställningskod för engångsbruk. Detta kommer att stänga av alla tvåstegsleverantörer på ditt konto."
   },
   "recoverAccountTwoStep": {
     "message": "Återställ kontots tvåstegsverifiering"
@@ -4224,7 +4224,7 @@
     "message": "Du har begärt att radera ditt Bitwarden-konto. Klicka på knappen nedan för att bekräfta."
   },
   "deleteRecoverOrgConfirmDesc": {
-    "message": "You have requested to delete your Bitwarden organization."
+    "message": "Du har begärt att få radera din Bitwarden-organisation."
   },
   "myOrganization": {
     "message": "Min organisation"
@@ -4245,10 +4245,10 @@
     }
   },
   "deletingOrganizationActiveUserAccountsWarning": {
-    "message": "User accounts will remain active after deletion but will no longer be associated to this organization."
+    "message": "Användarkonton förblir aktiva efter borttagningen men kommer inte längre att vara kopplade till denna organisation."
   },
   "deletingOrganizationIsPermanentWarning": {
-    "message": "Deleting $ORGANIZATION$ is permanent and irreversible.",
+    "message": "Radering av $ORGANIZATION$ är permanent och oåterkallelig.",
     "placeholders": {
       "organization": {
         "content": "$1",
@@ -4350,17 +4350,17 @@
     "message": "Ange ditt installations-id"
   },
   "limitSubscriptionDesc": {
-    "message": "Set a seat limit for your subscription. Once this limit is reached, you will not be able to invite new members."
+    "message": "Ange en platsgräns för din prenumeration. När den här gränsen har nåtts kan du inte bjuda in nya medlemmar."
   },
   "limitSmSubscriptionDesc": {
-    "message": "Set a seat limit for your Secrets Manager subscription. Once this limit is reached, you will not be able to invite new members."
+    "message": "Ange en platsgräns för din prenumeration på Secrets Manager. När denna gräns är nådd kommer du inte att kunna bjuda in nya medlemmar."
   },
   "maxSeatLimit": {
     "message": "Platsgräns (valfritt)",
     "description": "Upper limit of seats to allow through autoscaling"
   },
   "maxSeatCost": {
-    "message": "Max potential seat cost"
+    "message": "Max potentiell kostnad för säte"
   },
   "addSeats": {
     "message": "Lägg till platser",
@@ -4371,7 +4371,7 @@
     "description": "Seat = User Seat"
   },
   "subscriptionDesc": {
-    "message": "Adjustments to your subscription will result in prorated changes to your billing totals. If newly invited users exceed your subscription seats, you will immediately receive a prorated charge for the additional users."
+    "message": "Justeringar av din prenumeration kommer att resultera i proportionella ändringar av dina faktureringssummor. Om antalet nyinbjudna användare överstiger antalet platser i ditt abonnemang kommer du omedelbart att få en proportionell avgift för de ytterligare användarna."
   },
   "subscriptionUserSeats": {
     "message": "Din prenumeration tillåter totalt $COUNT$ medlemmar.",
@@ -4398,19 +4398,19 @@
     "message": "Ytterligare alternativ"
   },
   "additionalOptionsDesc": {
-    "message": "For additional help in managing your subscription, please contact Customer Support."
+    "message": "För ytterligare hjälp med att hantera din prenumeration, vänligen kontakta kundtjänst."
   },
   "subscriptionUserSeatsUnlimitedAutoscale": {
-    "message": "Adjustments to your subscription will result in prorated changes to your billing totals. If newly invited members exceed your subscription seats, you will immediately receive a prorated charge for the additional members."
+    "message": "Justeringar av din prenumeration kommer att resultera i proportionella ändringar av dina faktureringssummor. Om antalet nyinbjudna medlemmar överstiger antalet platser i ditt abonnemang kommer du omedelbart att få en proportionell avgift för de ytterligare medlemmarna."
   },
   "smStandaloneTrialSeatCountUpdateMessageFragment1": {
     "message": "Om du vill lägga till ytterligare"
   },
   "smStandaloneTrialSeatCountUpdateMessageFragment2": {
-    "message": "seats without the bundled offer, please contact"
+    "message": "platser utan det samlade erbjudandet, vänligen kontakta"
   },
   "subscriptionUserSeatsLimitedAutoscale": {
-    "message": "Adjustments to your subscription will result in prorated changes to your billing totals. If newly invited members exceed your subscription seats, you will immediately receive a prorated charge for the additional members until your $MAX$ seat limit is reached.",
+    "message": "Justeringar av din prenumeration kommer att resultera i proportionella ändringar av dina faktureringssummor. Om nyinbjudna medlemmar överstiger antalet platser i ditt abonnemang kommer du omedelbart att få en proportionell avgift för de ytterligare medlemmarna tills din platsgräns på $MAX$ har uppnåtts.",
     "placeholders": {
       "max": {
         "content": "$1",
@@ -4419,7 +4419,7 @@
     }
   },
   "subscriptionUserSeatsWithoutAdditionalSeatsOption": {
-    "message": "You can invite up to $COUNT$ members for no additional charge. Contact Customer Support to upgrade your plan and invite more members.",
+    "message": "Du kan bjuda in upp till $COUNT$ medlemmar utan extra kostnad. Kontakta kundtjänst för att uppgradera din plan och bjuda in fler medlemmar.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -4446,7 +4446,7 @@
     }
   },
   "subscriptionSponsoredFamiliesPlan": {
-    "message": "Your subscription allows for a total of $COUNT$ members. Your plan is sponsored and billed to an external organization.",
+    "message": "Din prenumeration tillåter totalt $COUNT$ medlemmar. Din plan är sponsrad och faktureras till en extern organisation.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -4455,7 +4455,7 @@
     }
   },
   "subscriptionMaxReached": {
-    "message": "Adjustments to your subscription will result in prorated changes to your billing totals. You cannot invite more than $COUNT$ members without increasing your subscription seats.",
+    "message": "Justeringar av din prenumeration kommer att resultera i proportionella ändringar av dina faktureringssummor. Du kan inte bjuda in mer än $COUNT$ medlemmar utan att öka dina prenumerationsplatser.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -4464,7 +4464,7 @@
     }
   },
   "subscriptionSeatMaxReached": {
-    "message": "You cannot invite more than $COUNT$ members without increasing your subscription seats.",
+    "message": "Du kan inte bjuda in fler än $COUNT$ medlemmar utan att öka dina abonnemangsplatser.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -4503,7 +4503,7 @@
     }
   },
   "reorderToggleButton": {
-    "message": "Reorder $LABEL$. Use arrow key to move item up or down.",
+    "message": "Ordna om $LABEL$. Använd piltangenten för att flytta objektet uppåt eller nedåt.",
     "placeholders": {
       "label": {
         "content": "$1",
@@ -4512,7 +4512,7 @@
     }
   },
   "reorderFieldUp": {
-    "message": "$LABEL$ moved up, position $INDEX$ of $LENGTH$",
+    "message": "$LABEL$ flyttas upp, position $INDEX$ av $LENGTH$",
     "placeholders": {
       "label": {
         "content": "$1",
@@ -4529,7 +4529,7 @@
     }
   },
   "reorderFieldDown": {
-    "message": "$LABEL$ moved down, position $INDEX$ of $LENGTH$",
+    "message": "$LABEL$ flyttas ner, position $INDEX$ av $LENGTH$",
     "placeholders": {
       "label": {
         "content": "$1",
@@ -4549,7 +4549,7 @@
     "message": "Efter att ha uppdaterat din krypteringsnyckel, måste du logga ut och in igen i alla Bitwarden-program som du använder (t.ex. mobilappen och webbläsartillägget). Att inte logga ut och in igen (vilket hämtar din nya krypteringsnyckel) kan resultera i datakorruption. Vi kommer försöka logga ut dig automatiskt, men det kan vara fördröjt."
   },
   "updateEncryptionKeyAccountExportWarning": {
-    "message": "Any account restricted exports you have saved will become invalid."
+    "message": "Alla kontobegränsade exporter som du har sparat kommer att bli ogiltiga."
   },
   "legacyEncryptionUnsupported": {
     "message": "Äldre kryptering stöds inte längre. Kontakta support för att återställa ditt konto."
@@ -4660,19 +4660,19 @@
     "message": "Organisationen är inaktiverad"
   },
   "secretsAccessSuspended": {
-    "message": "Suspended organizations cannot be accessed. Please contact your organization owner for assistance."
+    "message": "Avstängda organisationer kan inte nås. Kontakta din organisationsägare för hjälp."
   },
   "secretsCannotCreate": {
-    "message": "Secrets cannot be created in suspended organizations. Please contact your organization owner for assistance."
+    "message": "Det går inte att skapa hemligheter i avstängda organisationer. Kontakta din organisationsägare för att få hjälp."
   },
   "projectsCannotCreate": {
-    "message": "Projects cannot be created in suspended organizations. Please contact your organization owner for assistance."
+    "message": "Det går inte att skapa projekt i avstängda organisationer. Kontakta din organisationsägare för att få hjälp."
   },
   "serviceAccountsCannotCreate": {
-    "message": "Service accounts cannot be created in suspended organizations. Please contact your organization owner for assistance."
+    "message": "Servicekonton kan inte skapas i avstängda organisationer. Kontakta din organisationsägare för att få hjälp."
   },
   "disabledOrganizationFilterError": {
-    "message": "Items in suspended organizations cannot be accessed. Contact your organization owner for assistance."
+    "message": "Det går inte att komma åt objekt i avstängda organisationer. Kontakta din organisationsägare för hjälp."
   },
   "licenseIsExpired": {
     "message": "Licensen har upphört att gälla."
@@ -4727,7 +4727,7 @@
     "message": "Detta objekt har gamla bilagor som behöver åtgärdas."
   },
   "attachmentFixDescription": {
-    "message": "This attachment uses outdated encryption. Select 'Fix' to download, re-encrypt, and re-upload the attachment."
+    "message": "Den här bilagan använder föråldrad kryptering. Välj \"Fix\" för att ladda ner, kryptera om och ladda upp bilagan på nytt."
   },
   "fix": {
     "message": "Åtgärda",
@@ -4755,7 +4755,7 @@
     "description": "A 'fingerprint phrase' is a unique word phrase (similar to a passphrase) that a user can use to authenticate their public key with another user, for the purposes of sharing."
   },
   "youWillBeNotifiedOnceTheRequestIsApproved": {
-    "message": "You will be notified once the request is approved"
+    "message": "Du kommer att få ett meddelande när begäran har godkänts"
   },
   "free": {
     "message": "Gratis",
@@ -4808,7 +4808,7 @@
     "message": "Ange minimikrav för huvudlösenordsstyrka."
   },
   "passwordStrengthScore": {
-    "message": "Password strength score $SCORE$",
+    "message": "Lösenordsstyrka $SCORE$",
     "placeholders": {
       "score": {
         "content": "$1",
@@ -4994,22 +4994,22 @@
     "message": "Logga in genom organisationens inloggningsportal. Ange organisationens identifierare för att börja."
   },
   "singleSignOnEnterOrgIdentifier": {
-    "message": "Enter your organization's SSO identifier to begin"
+    "message": "Ange din organisations SSO-identifierare för att börja"
   },
   "singleSignOnEnterOrgIdentifierText": {
-    "message": "To log in with your SSO provider, enter your organization's SSO identifier to begin. You may need to enter this SSO identifier when you log in from a new device."
+    "message": "För att logga in med din SSO-leverantör anger du din organisations SSO-identifierare för att börja. Du kan behöva ange den här SSO-identifieraren när du loggar in från en ny enhet."
   },
   "enterpriseSingleSignOn": {
-    "message": "Enterprise single sign-on"
+    "message": "Enkel inloggning för företag"
   },
   "ssoHandOff": {
     "message": "Du kan nu stänga denna flik och fortsätta i tillägget."
   },
   "youSuccessfullyLoggedIn": {
-    "message": "You successfully logged in"
+    "message": "Du har framgångsrikt loggat in"
   },
   "thisWindowWillCloseIn5Seconds": {
-    "message": "This window will automatically close in 5 seconds"
+    "message": "Detta fönster stängs automatiskt om 5 sekunder"
   },
   "youMayCloseThisWindow": {
     "message": "Du kan stänga detta fönster"
@@ -5018,13 +5018,13 @@
     "message": "Alla funktioner för team, plus:"
   },
   "includeAllTeamsStarterFeatures": {
-    "message": "All Teams Starter features, plus:"
+    "message": "Alla Teams Starter-funktioner, plus:"
   },
   "chooseMonthlyOrAnnualBilling": {
     "message": "Välj månadsvis eller årlig fakturering"
   },
   "abilityToAddMoreThanNMembers": {
-    "message": "Ability to add more than $COUNT$ members",
+    "message": "Möjlighet att lägga till fler än $COUNT$ medlemmar",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -5048,14 +5048,14 @@
     "message": "SSO-identifierare"
   },
   "ssoIdentifierHintPartOne": {
-    "message": "Provide this ID to your members to login with SSO. To bypass this step, set up ",
+    "message": "Ge detta ID till dina medlemmar så att de kan logga in med SSO. För att kringgå detta steg, konfigurera",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'Provide this ID to your members to login with SSO. To bypass this step, set up Domain verification'"
   },
   "unlinkSso": {
     "message": "Avlänka SSO"
   },
   "unlinkSsoConfirmation": {
-    "message": "Are you sure you want to unlink SSO for this organization?"
+    "message": "Är du säker på att du vill ta bort SSO-länken för den här organisationen?"
   },
   "linkSso": {
     "message": "Länka SSO"
@@ -5067,13 +5067,13 @@
     "message": "Hindra användare från att gå med i några andra organisationer."
   },
   "singleOrgPolicyDesc": {
-    "message": "Restrict members from joining other organizations. This policy is required for organizations that have enabled domain verification."
+    "message": "Begränsa medlemmar från att gå med i andra organisationer. Den här principen krävs för organisationer som har aktiverat domänverifiering."
   },
   "singleOrgBlockCreateMessage": {
     "message": "Din nuvarande organisation har en policy som hindrar dig från att gå med i fler än en organisation. Vänligen kontakta din organisations administratörer eller registrera ett annat Bitwarden-konto."
   },
   "singleOrgPolicyMemberWarning": {
-    "message": "Non-compliant members will be placed in revoked status until they leave all other organizations. Administrators are exempt and can restore members once compliance is met."
+    "message": "Medlemmar som inte uppfyller kraven kommer att få statusen återkallad tills de lämnar alla andra organisationer. Administratörer är undantagna och kan återställa medlemmar när efterlevnaden är uppfylld."
   },
   "requireSso": {
     "message": "Kräv autentisering med Single Sign-On"
@@ -5094,14 +5094,14 @@
     "message": "Organisationens ägare och administratörer är undantagna från denna policy."
   },
   "limitSendViews": {
-    "message": "Limit views"
+    "message": "Begränsa antalet visningar"
   },
   "limitSendViewsHint": {
-    "message": "No one can view this Send after the limit is reached.",
+    "message": "Ingen kan se denna sändning efter att gränsen har nåtts.",
     "description": "Displayed under the limit views field on Send"
   },
   "limitSendViewsCount": {
-    "message": "$ACCESSCOUNT$ views left",
+    "message": "$ACCESSCOUNT$ visningar kvar",
     "description": "Displayed under the limit views field on Send",
     "placeholders": {
       "accessCount": {
@@ -5111,7 +5111,7 @@
     }
   },
   "sendDetails": {
-    "message": "Send details",
+    "message": "Skicka information",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendTypeTextToShare": {
@@ -5124,7 +5124,7 @@
     "message": "Text"
   },
   "sendPasswordDescV3": {
-    "message": "Add an optional password for recipients to access this Send.",
+    "message": "Lägg till ett valfritt lösenord för att mottagarna ska få åtkomst till detta meddelande.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "createSend": {
@@ -5152,14 +5152,14 @@
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "deleteSendPermanentConfirmation": {
-    "message": "Are you sure you want to permanently delete this Send?",
+    "message": "Är du säker på att du vill ta bort det här meddelandet permanent?",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "deletionDate": {
     "message": "Raderingsdatum"
   },
   "deletionDateDescV2": {
-    "message": "The Send will be permanently deleted on this date.",
+    "message": "Sändningen kommer att raderas permanent på detta datum.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "expirationDate": {
@@ -5379,7 +5379,7 @@
     "message": "Nödåtkomst nekad"
   },
   "grantorDetailsNotFound": {
-    "message": "Grantor details not found"
+    "message": "Uppgifter om bidragsgivare hittades inte"
   },
   "passwordResetFor": {
     "message": "Lösenordet för $USER$ återställdes. Du kan nu logga in med det nya lösenordet.",
@@ -5391,7 +5391,7 @@
     }
   },
   "organizationDataOwnership": {
-    "message": "Enforce organization data ownership"
+    "message": "Genomför äganderätt till organisationsdata"
   },
   "personalOwnership": {
     "message": "Radera individuellt valv"
@@ -5520,7 +5520,7 @@
     "message": "Hantera kontoåterställning"
   },
   "disableRequiredError": {
-    "message": "You must manually turn the $POLICYNAME$ policy before this policy can be turned off.",
+    "message": "Du måste manuellt stänga av policyn $POLICYNAME$ innan den här policyn kan stängas av.",
     "placeholders": {
       "policyName": {
         "content": "$1",
@@ -5532,7 +5532,7 @@
     "message": "En organisationspolicy påverkar dina ägarskapsalternativ."
   },
   "personalOwnershipPolicyInEffectImports": {
-    "message": "An organization policy has blocked importing items into your individual vault."
+    "message": "En organisationspolicy har blockerat import av objekt till ditt individuella valv."
   },
   "personalOwnershipCheckboxDesc": {
     "message": "Inaktivera personligt ägarskap för organisationens användare"
@@ -5542,7 +5542,7 @@
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendAccessTaglineProductDesc": {
-    "message": "Bitwarden Send transmits sensitive, temporary information to others easily and securely.",
+    "message": "Bitwarden Send förmedlar känslig, tillfällig information till andra på ett enkelt och säkert sätt.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendAccessTaglineLearnMore": {
@@ -5569,31 +5569,31 @@
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'Learn more, see how it works, **or** try it now.'"
   },
   "developmentDevOpsAndITTeamsChooseBWSecret": {
-    "message": "Development, DevOps, and IT teams choose Bitwarden Secrets Manager to securely manage and deploy their infrastructure and machine secrets."
+    "message": "Utvecklings-, DevOps- och IT-team väljer Bitwarden Secrets Manager för att på ett säkert sätt hantera och distribuera sin infrastruktur och sina maskinhemligheter."
   },
   "centralizeSecretsManagement": {
-    "message": "Centralize secrets management."
+    "message": "Centralisera hanteringen av hemligheter."
   },
   "centralizeSecretsManagementDescription": {
-    "message": "Securely store and manage secrets in one location to prevent secret sprawl across your organization."
+    "message": "Lagra och hantera hemligheter på ett säkert sätt på en och samma plats för att förhindra att hemligheter sprids i organisationen."
   },
   "preventSecretLeaks": {
-    "message": "Prevent secret leaks."
+    "message": "Förhindra läckage av hemligheter."
   },
   "preventSecretLeaksDescription": {
-    "message": "Protect secrets with end-to-end encryption. No more hard coding secrets or sharing through .env files."
+    "message": "Skydda hemligheter med end-to-end-kryptering. Inget mer hårdkodande av hemligheter eller delning via .env-filer."
   },
   "enhanceDeveloperProductivity": {
-    "message": "Enhance developer productivity."
+    "message": "Förbättra utvecklarnas produktivitet."
   },
   "enhanceDeveloperProductivityDescription": {
-    "message": "Programmatically retrieve and deploy secrets at runtime so developers can focus on what matters most, like improving code quality."
+    "message": "Hämta och distribuera hemligheter programmatiskt vid körning så att utvecklare kan fokusera på det som är viktigast, som att förbättra kodkvaliteten."
   },
   "strengthenBusinessSecurity": {
-    "message": "Strengthen business security."
+    "message": "Stärka säkerheten i verksamheten."
   },
   "strengthenBusinessSecurityDescription": {
-    "message": "Maintain tight control over machine and human access to secrets with SSO integrations, event logs, and access rotation."
+    "message": "Håll noggrann kontroll över maskinell och mänsklig åtkomst till hemligheter med SSO-integreringar, händelseloggar och åtkomstrotation."
   },
   "tryItNow": {
     "message": "Prova det nu"
@@ -5605,37 +5605,37 @@
     "message": "Lägg till en anteckning"
   },
   "bitwardenSecretsManager": {
-    "message": "Bitwarden Secrets Manager"
+    "message": "Bitwarden Hemlighetshanterare"
   },
   "moreProductsFromBitwarden": {
     "message": "Fler produkter från Bitwarden"
   },
   "requestAccessToSecretsManager": {
-    "message": "Request access to Secrets Manager"
+    "message": "Begär tillgång till Secrets Manager"
   },
   "youNeedApprovalFromYourAdminToTrySecretsManager": {
-    "message": "You need approval from your administrator to try Secrets Manager."
+    "message": "Du behöver godkännande från din administratör för att prova Secrets Manager."
   },
   "smAccessRequestEmailSent": {
-    "message": "Access request for secrets manager email sent to admins."
+    "message": "Begäran om åtkomst för hemligheter manager e-post skickad till administratörer."
   },
   "requestAccessSMDefaultEmailContent": {
     "message": "Hej, \n\nJag vill prenumerera på Bitwarden Secrets Manager för vårt team. Er hjälp skulle betyda mycket för oss!\n\nBitwarden Secrets Manager är en helt krypterad lösning för hantering av hemlig information som gör det möjligt att säkert lagra, dela och distribuera maskinuppgifter som API-nycklar, databaslösenord och autentiseringscertifikat. \n\nSecrets Manager hjälper oss att: \n\n- förbättra säkerheten \n- effektivisera verksamheten \n- förhindra kostsamma läckor av hemlig information.\n\nFör att begära en kostnadsfri testversion för vårt team, vänligen kontakta Bitwarden. \n\nTack för er hjälp!"
   },
   "giveMembersAccess": {
-    "message": "Give members access:"
+    "message": "Ge medlemmarna tillgång:"
   },
   "viewAndSelectTheMembers": {
-    "message": "view and select the members you want to give access to Secrets Manager."
+    "message": "och välj de medlemmar som du vill ge tillgång till Secrets Manager."
   },
   "openYourOrganizations": {
-    "message": "Open your organization's"
+    "message": "Öppna din organisations"
   },
   "usingTheMenuSelect": {
-    "message": "Using the menu, select"
+    "message": "Välj med hjälp av menyn"
   },
   "toGrantAccessToSelectedMembers": {
-    "message": "to grant access to selected members."
+    "message": "för att ge åtkomst till utvalda medlemmar."
   },
   "sendVaultCardTryItNow": {
     "message": "prova det nu",
@@ -5654,7 +5654,7 @@
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'Learn more about Bitwarden Send or sign up to **try it today.**'"
   },
   "sendAccessCreatorIdentifier": {
-    "message": "Bitwarden member $USER_IDENTIFIER$ shared the following with you",
+    "message": "Bitwarden-medlemmen $USER_IDENTIFIER$ delade med sig av följande till dig",
     "placeholders": {
       "user_identifier": {
         "content": "$1",
@@ -5686,7 +5686,7 @@
     "message": "Det gick inte att spara raderings- och utgångsdatum."
   },
   "hideYourEmail": {
-    "message": "Hide your email address from viewers."
+    "message": "Dölj din e-postadress från tittarna."
   },
   "webAuthnFallbackMsg": {
     "message": "Klicka på knappen nedan för att verifiera din 2FA."
@@ -5695,31 +5695,31 @@
     "message": "Autentisera WebAuthn"
   },
   "readSecurityKey": {
-    "message": "Read security key"
+    "message": "Läs säkerhetsnyckel"
   },
   "awaitingSecurityKeyInteraction": {
-    "message": "Awaiting security key interaction..."
+    "message": "Väntar på interaktion med säkerhetsnyckel..."
   },
   "webAuthnNotSupported": {
     "message": "WebAuthn stöds inte i denna webbläsare."
   },
   "webAuthnSuccess": {
-    "message": "WebAuthn verified successfully! You may close this tab."
+    "message": "WebAuthn verifierad framgångsrikt! Du kan stänga den här fliken."
   },
   "yourNewPasswordCannotBeTheSameAsYourCurrentPassword": {
-    "message": "Your new password cannot be the same as your current password."
+    "message": "Ditt nya lösenord får inte vara samma som ditt aktuella lösenord."
   },
   "hintEqualsPassword": {
     "message": "Din lösenordsledtråd får inte vara samma som ditt lösenord."
   },
   "enrollAccountRecovery": {
-    "message": "Enroll in account recovery"
+    "message": "Anmäl dig till kontoåterställning"
   },
   "enrolledAccountRecovery": {
-    "message": "Enrolled in account recovery"
+    "message": "Registrerad i kontoåterställning"
   },
   "withdrawAccountRecovery": {
-    "message": "Withdraw from account recovery"
+    "message": "Uttag från kontoåterställning"
   },
   "enrollPasswordResetSuccess": {
     "message": "Deltagandet lyckades!"
@@ -5728,7 +5728,7 @@
     "message": "Utträdet lyckades!"
   },
   "eventEnrollAccountRecovery": {
-    "message": "User $ID$ enrolled in account recovery.",
+    "message": "Användare $ID$ registrerad i kontoåterställning.",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -5737,7 +5737,7 @@
     }
   },
   "eventWithdrawAccountRecovery": {
-    "message": "User $ID$ withdrew from account recovery.",
+    "message": "Användaren $ID$ drog tillbaka från kontoåterställning.",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -5755,7 +5755,7 @@
     }
   },
   "eventResetSsoLink": {
-    "message": "Reset SSO link for user $ID$",
+    "message": "Återställ SSO-länk för användare $ID$",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -5764,7 +5764,7 @@
     }
   },
   "firstSsoLogin": {
-    "message": "$ID$ logged in using Sso for the first time",
+    "message": "$ID$ loggade in med Sso för första gången",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -5785,7 +5785,7 @@
     }
   },
   "emergencyAccessLoggedOutWarning": {
-    "message": "Proceeding will log $NAME$ out of their current session, requiring them to log back in. Active sessions on other devices may continue to remain active for up to one hour.",
+    "message": "Om du fortsätter loggas $NAME$ ut från sin nuvarande session och måste logga in igen. Aktiva sessioner på andra enheter kan fortsätta att vara aktiva i upp till en timme.",
     "placeholders": {
       "name": {
         "content": "$1",
@@ -5800,16 +5800,16 @@
     "message": "En eller flera organisationspolicyer kräver att huvudlösenordet uppfyller följande krav:"
   },
   "changePasswordDelegationMasterPasswordPolicyInEffect": {
-    "message": "One or more organization policies require the master password to meet the following requirements:"
+    "message": "En eller flera organisationspolicyer kräver att huvudlösenordet uppfyller följande krav:"
   },
   "resetPasswordSuccess": {
     "message": "Lösenordsåterställningen lyckades!"
   },
   "resetPasswordEnrollmentWarning": {
-    "message": "Deltagande tillåter organisationsadministratörer att ändra ditt huvudlösenord. Är du säker på att du vill delta?"
+    "message": "Registrering tillåter organisationsadministratörer att ändra ditt huvudlösenord"
   },
   "accountRecoveryPolicy": {
-    "message": "Account recovery administration"
+    "message": "Administration av kontoåterställning"
   },
   "accountRecoveryPolicyDesc": {
     "message": "Baserat på krypteringsmetoden kan du återställa konton om huvudlösenord eller betrodda enheter glöms bort eller förloras."
@@ -5818,7 +5818,7 @@
     "message": "För befintliga konton med huvudlösenord måste medlemmarna själva logga in för att administratörer ska kunna återställa deras konton. Automatisk registrering aktiverar kontoförnyelse för nya medlemmar."
   },
   "accountRecoverySingleOrgRequirementDesc": {
-    "message": "The single organization Enterprise policy must be turned on before activating this policy."
+    "message": "Företagspolicyn för en enda organisation måste vara aktiverad innan den här policyn aktiveras."
   },
   "resetPasswordPolicyAutoEnroll": {
     "message": "Automatiskt deltagande"
@@ -5854,7 +5854,7 @@
     "message": "Skicka inbjudningar igen"
   },
   "resendNotification": {
-    "message": "Resend notification"
+    "message": "Skicka meddelande på nytt"
   },
   "noSelectedUsersApplicable": {
     "message": "Denna åtgärd är inte tillämplig på någon av de valda användarna."
@@ -5863,10 +5863,10 @@
     "message": "Är du säker på att du vill ta bort följande användare? Processen kan ta några sekunder att slutföra och kan inte pausas eller avbrytas."
   },
   "removeOrgUsersConfirmation": {
-    "message": "When member(s) are removed, they no longer have access to organization data and this action is irreversible. To add the member back to the organization, they must be invited and onboarded again. The process may take a few seconds to complete and cannot be interrupted or canceled."
+    "message": "När medlemmar tas bort har de inte längre tillgång till organisationsdata och åtgärden är oåterkallelig. För att lägga till medlemmen i organisationen igen måste denne bjudas in och onboardas på nytt. Processen kan ta några sekunder att slutföra och kan inte avbrytas eller avbrytas."
   },
   "revokeUsersWarning": {
-    "message": "When member(s) are revoked, they no longer have access to organization data. To quickly restore member access, go to the Revoked tab. The process may take a few seconds to complete and cannot be interrupted or canceled."
+    "message": "När medlemmar återkallas har de inte längre tillgång till organisationsdata. För att snabbt återställa medlemmens åtkomst går du till fliken Revoked. Processen kan ta några sekunder att slutföra och kan inte avbrytas eller annulleras."
   },
   "theme": {
     "message": "Tema"
@@ -5899,60 +5899,60 @@
     "message": "Tog bort"
   },
   "bulkRevokedMessage": {
-    "message": "Revoked organization access successfully"
+    "message": "Återkallad organisationsåtkomst framgångsrikt"
   },
   "bulkRestoredMessage": {
-    "message": "Restored organization access successfully"
+    "message": "Återställde organisationens åtkomst framgångsrikt"
   },
   "bulkFilteredMessage": {
     "message": "Exkluderad, inte tillämplig för denna åtgärd"
   },
   "nonCompliantMembersTitle": {
-    "message": "Non-compliant members"
+    "message": "Medlemmar som inte uppfyller kraven"
   },
   "nonCompliantMembersError": {
-    "message": "Members that are non-compliant with the Single organization or Two-step login policy cannot be restored until they adhere to the policy requirements"
+    "message": "Medlemmar som inte följer policyn för inloggning med en organisation eller tvåstegsinloggning kan inte återställas förrän de följer policykraven"
   },
   "fingerprint": {
     "message": "Fingeravtryck"
   },
   "fingerprintPhrase": {
-    "message": "Fingerprint phrase:"
+    "message": "Fingeravtrycksfras:"
   },
   "error": {
     "message": "Fel"
   },
   "decryptionError": {
-    "message": "Decryption error"
+    "message": "Dekrypteringsfel"
   },
   "couldNotDecryptVaultItemsBelow": {
-    "message": "Bitwarden could not decrypt the vault item(s) listed below."
+    "message": "Bitwarden kunde inte dekryptera valvföremålet/valvföremålen som listas nedan."
   },
   "contactCSToAvoidDataLossPart1": {
-    "message": "Contact customer success",
+    "message": "Kontakta kundtjänst",
     "description": "This is part of a larger sentence. The full sentence will read 'Contact customer success to avoid additional data loss.'"
   },
   "contactCSToAvoidDataLossPart2": {
-    "message": "to avoid additional data loss.",
+    "message": "för att undvika ytterligare dataförlust.",
     "description": "This is part of a larger sentence. The full sentence will read 'Contact customer success to avoid additional data loss.'"
   },
   "accountRecoveryManageUsers": {
-    "message": "Manage users must also be granted with the manage account recovery permission"
+    "message": "Hantera användare måste också beviljas behörigheten hantera kontoåterställning"
   },
   "setupProvider": {
-    "message": "Provider setup"
+    "message": "Inställning av leverantör"
   },
   "setupProviderLoginDesc": {
-    "message": "You've been invited to setup a new Provider. To continue, you need to log in or create a new Bitwarden account."
+    "message": "Du har blivit inbjuden att skapa en ny Provider. För att fortsätta måste du logga in eller skapa ett nytt Bitwarden-konto."
   },
   "setupProviderDesc": {
-    "message": "Please enter the details below to complete the Provider setup. Contact Customer Support if you have any questions."
+    "message": "Fyll i uppgifterna nedan för att slutföra Provider-inställningen. Kontakta kundtjänst om du har några frågor."
   },
   "providerName": {
-    "message": "Provider name"
+    "message": "Leverantörsnamn"
   },
   "providerSetup": {
-    "message": "Provider successfully set up"
+    "message": "Leverantör framgångsrikt installerad"
   },
   "clients": {
     "message": "Klienter"
@@ -5962,10 +5962,10 @@
     "description": "This is used as a table header to describe which client application created an event log."
   },
   "providerAdmin": {
-    "message": "Provider admin"
+    "message": "Leverantör admin"
   },
   "providerAdminDesc": {
-    "message": "The highest access user that can manage all aspects of your Provider as well as access and manage client organizations."
+    "message": "Den användare som har högst åtkomst och som kan hantera alla aspekter av din Provider samt få åtkomst till och hantera kundorganisationer."
   },
   "serviceUser": {
     "message": "Tjänstanvändare"
@@ -5974,31 +5974,31 @@
     "message": "Tjänstanvändare kan komma åt och hantera alla klientorganisationer."
   },
   "providerInviteUserDesc": {
-    "message": "Invite a new user to your Provider by entering their Bitwarden account email address below. If they do not have a Bitwarden account already, they will be prompted to create a new account."
+    "message": "Bjud in en ny användare till din Provider genom att ange e-postadressen till deras Bitwarden-konto nedan. Om de inte redan har ett Bitwarden-konto kommer de att uppmanas att skapa ett nytt konto."
   },
   "joinProvider": {
-    "message": "Join Provider"
+    "message": "Anslut leverantör"
   },
   "joinProviderDesc": {
-    "message": "You've been invited to join the Provider listed above. To accept the invitation, you need to log in or create a new Bitwarden account."
+    "message": "Du har blivit inbjuden att gå med i den leverantör som anges ovan. För att acceptera inbjudan måste du logga in eller skapa ett nytt Bitwarden-konto."
   },
   "providerInviteAcceptFailed": {
-    "message": "Unable to accept invitation. Ask a Provider admin to send a new invitation."
+    "message": "Det går inte att acceptera inbjudan. Be en Provider-administratör att skicka en ny inbjudan."
   },
   "providerInviteAcceptedDesc": {
-    "message": "You can access this Provider once an administrator confirms your membership. We'll send you an email when that happens."
+    "message": "Du får tillgång till den här leverantören när en administratör har bekräftat ditt medlemskap. Vi skickar ett e-postmeddelande till dig när det sker."
   },
   "providerUsersNeedConfirmed": {
-    "message": "You have users that have accepted their invitation, but still need to be confirmed. Users will not have access to the Provider until they are confirmed."
+    "message": "Du har användare som har accepterat sin inbjudan, men som fortfarande behöver bekräftas. Användarna kommer inte att ha tillgång till Providern förrän de har bekräftats."
   },
   "provider": {
-    "message": "Provider"
+    "message": "Leverantör"
   },
   "newClientOrganization": {
     "message": "Ny klientorganisation"
   },
   "newClientOrganizationDesc": {
-    "message": "Create a new client organization that will be associated with you as the Provider. You will be able to access and manage this organization."
+    "message": "Skapa en ny kundorganisation som kommer att vara kopplad till dig som Provider. Du kommer att kunna komma åt och hantera den här organisationen."
   },
   "newClient": {
     "message": "Ny klient"
@@ -6013,7 +6013,7 @@
     "message": "Min leverantör"
   },
   "addOrganizationConfirmation": {
-    "message": "Are you sure you want to add $ORGANIZATION$ as a client to $PROVIDER$?",
+    "message": "Är du säker på att du vill lägga till $ORGANIZATION$ som en kund till $PROVIDER$?",
     "placeholders": {
       "organization": {
         "content": "$1",
@@ -6026,10 +6026,10 @@
     }
   },
   "organizationJoinedProvider": {
-    "message": "Organization was successfully added to the Provider"
+    "message": "Organisation har lagts till i Provider"
   },
   "accessingUsingProvider": {
-    "message": "Accessing organization using Provider $PROVIDER$",
+    "message": "Åtkomst till organisation med hjälp av leverantören $PROVIDER$",
     "placeholders": {
       "provider": {
         "content": "$1",
@@ -6038,13 +6038,13 @@
     }
   },
   "providerIsDisabled": {
-    "message": "Provider suspended"
+    "message": "Leverantör avstängd"
   },
   "providerUpdated": {
     "message": "Leverantör sparades"
   },
   "yourProviderIs": {
-    "message": "Your Provider is $PROVIDER$. They have administrative and billing privileges for your organization.",
+    "message": "Din leverantör är $PROVIDER$. De har administrations- och faktureringsrättigheter för din organisation.",
     "placeholders": {
       "provider": {
         "content": "$1",
@@ -6053,7 +6053,7 @@
     }
   },
   "detachedOrganization": {
-    "message": "The organization $ORGANIZATION$ has been detached from your Provider.",
+    "message": "Organisationen $ORGANIZATION$ har kopplats bort från din Provider.",
     "placeholders": {
       "organization": {
         "content": "$1",
@@ -6062,13 +6062,13 @@
     }
   },
   "detachOrganizationConfirmation": {
-    "message": "Are you sure you want to detach this organization? The organization will continue to exist but will no longer be managed by the Provider."
+    "message": "Är du säker på att du vill koppla bort den här organisationen? Organisationen kommer att fortsätta att existera men kommer inte längre att hanteras av leverantören."
   },
   "add": {
     "message": "Lägg till"
   },
   "masterPasswordSuccessfullySet": {
-    "message": "Master password successfully set"
+    "message": "Masterlösenordet har ställts in"
   },
   "updatedMasterPassword": {
     "message": "Huvudlösenordet sparades"
@@ -6077,46 +6077,46 @@
     "message": "Uppdatera huvudlösenord"
   },
   "accountRecoveryUpdateMasterPasswordSubtitle": {
-    "message": "Change your master password to complete account recovery."
+    "message": "Ändra ditt huvudlösenord för att slutföra kontoåterställningen."
   },
   "updateMasterPasswordSubtitle": {
-    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+    "message": "Ditt huvudlösenord uppfyller inte den här organisationens krav. Ändra ditt huvudlösenord för att fortsätta."
   },
   "updateMasterPasswordWarning": {
     "message": "Ditt huvudlösenord ändrades nyligen av en administratör i din organisation. För att få tillgång till valvet måste du uppdatera ditt huvudlösenord nu. Om du fortsätter kommer du att loggas ut från din nuvarande session, vilket kräver att du loggar in igen. Aktiva sessioner på andra enheter kan komma att vara aktiva i upp till en timme."
   },
   "masterPasswordInvalidWarning": {
-    "message": "Your master password does not meet the policy requirements of this organization. In order to join the organization, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
+    "message": "Ditt huvudlösenord uppfyller inte den här organisationens policykrav. För att kunna gå med i organisationen måste du uppdatera ditt huvudlösenord nu. Om du fortsätter loggas du ut från din nuvarande session och måste logga in igen. Aktiva sessioner på andra enheter kan fortsätta att vara aktiva i upp till en timme."
   },
   "updateWeakMasterPasswordWarning": {
-    "message": "Your master password does not meet one or more of your organization policies. In order to access the vault, you must update your master password now. Proceeding will log you out of your current session, requiring you to log back in. Active sessions on other devices may continue to remain active for up to one hour."
+    "message": "Ditt huvudlösenord uppfyller inte en eller flera av organisationens policyer. För att få tillgång till valvet måste du uppdatera ditt huvudlösenord nu. Om du fortsätter loggas du ut från din nuvarande session och måste logga in igen. Aktiva sessioner på andra enheter kan fortsätta att vara aktiva i upp till en timme."
   },
   "automaticAppLogin": {
-    "message": "Automatically log in users for allowed applications"
+    "message": "Automatiskt logga in användare för tillåtna applikationer"
   },
   "automaticAppLoginDesc": {
-    "message": "Login forms will automatically be filled and submitted for apps launched from your configured identity provider."
+    "message": "Inloggningsformulär fylls i och skickas automatiskt för appar som startas från din konfigurerade identitetsleverantör."
   },
   "automaticAppLoginIdpHostLabel": {
-    "message": "Identity provider host"
+    "message": "Identitetsleverantörens värd"
   },
   "automaticAppLoginIdpHostDesc": {
-    "message": "Enter your identity provider host URL. Enter multiple URLs by separating with a comma."
+    "message": "Ange värd-URL för din identitetsleverantör. Ange flera webbadresser genom att separera dem med ett kommatecken."
   },
   "tdeDisabledMasterPasswordRequired": {
-    "message": "Your organization has updated your decryption options. Please set a master password to access your vault."
+    "message": "Din organisation har uppdaterat dina dekrypteringsalternativ. Ange ett huvudlösenord för att komma åt ditt valv."
   },
   "maximumVaultTimeout": {
-    "message": "Vault timeout"
+    "message": "Timeout för valv"
   },
   "maximumVaultTimeoutDesc": {
-    "message": "Set a maximum vault timeout for members."
+    "message": "Ange en maximal tidsgräns för valv för medlemmar."
   },
   "maximumVaultTimeoutLabel": {
-    "message": "Maximum vault timeout"
+    "message": "Maximal tidsgräns för valv"
   },
   "invalidMaximumVaultTimeout": {
-    "message": "Invalid maximum vault timeout."
+    "message": "Ogiltig maximal tidsgräns för valv."
   },
   "hours": {
     "message": "Timmar"
@@ -6125,7 +6125,7 @@
     "message": "Minuter"
   },
   "vaultTimeoutPolicyInEffect": {
-    "message": "Your organization policies have set your maximum allowed vault timeout to $HOURS$ hour(s) and $MINUTES$ minute(s).",
+    "message": "I organisationens policyer har den maximalt tillåtna tidsgränsen för valvet angetts till $HOURS$ timme(n) och $MINUTES$ minut(er).",
     "placeholders": {
       "hours": {
         "content": "$1",
@@ -6151,7 +6151,7 @@
     }
   },
   "vaultTimeoutPolicyWithActionInEffect": {
-    "message": "Your organization policies are affecting your vault timeout. Maximum allowed vault timeout is $HOURS$ hour(s) and $MINUTES$ minute(s). Your vault timeout action is set to $ACTION$.",
+    "message": "Din organisations policyer påverkar valvets timeout. Högsta tillåtna timeout för valvet är $HOURS$ timme(n) och $MINUTES$ minut(er). Åtgärden för valvets timeout är inställd på $ACTION$.",
     "placeholders": {
       "hours": {
         "content": "$1",
@@ -6168,7 +6168,7 @@
     }
   },
   "vaultTimeoutActionPolicyInEffect": {
-    "message": "Your organization policies have set your vault timeout action to $ACTION$.",
+    "message": "I organisationens policyer har timeoutåtgärden för valvet ställts in på $ACTION$.",
     "placeholders": {
       "action": {
         "content": "$1",
@@ -6177,34 +6177,34 @@
     }
   },
   "vaultTimeoutToLarge": {
-    "message": "Your vault timeout exceeds the restriction set by your organization."
+    "message": "Tidsgränsen för ditt valv överskrider den begränsning som har fastställts av din organisation."
   },
   "vaultCustomTimeoutMinimum": {
-    "message": "Minimum custom timeout is 1 minute."
+    "message": "Minsta anpassade timeout är 1 minut."
   },
   "vaultTimeoutRangeError": {
-    "message": "Vault timeout is not within allowed range."
+    "message": "Vault timeout ligger inte inom tillåtet intervall."
   },
   "disablePersonalVaultExport": {
-    "message": "Remove individual vault export"
+    "message": "Ta bort export av enskilda valv"
   },
   "disablePersonalVaultExportDescription": {
     "message": "Tillåt inte medlemmar att exportera data från sina individuella valv."
   },
   "vaultExportDisabled": {
-    "message": "Vault export removed"
+    "message": "Vault-export borttagen"
   },
   "personalVaultExportPolicyInEffect": {
-    "message": "One or more organization policies prevents you from exporting your individual vault."
+    "message": "En eller flera organisationspolicyer hindrar dig från att exportera ditt enskilda valv."
   },
   "activateAutofill": {
     "message": "Aktivera autofyll"
   },
   "activateAutofillPolicyDesc": {
-    "message": "Activate the auto-fill on page load setting on the browser extension for all existing and new members."
+    "message": "Aktivera inställningen för automatisk ifyllnad vid sidladdning i webbläsartillägget för alla befintliga och nya medlemmar."
   },
   "experimentalFeature": {
-    "message": "Compromised or untrusted websites can exploit auto-fill on page load."
+    "message": "Komprometterade eller opålitliga webbplatser kan utnyttja automatisk ifyllning vid sidladdning."
   },
   "learnMoreAboutAutofill": {
     "message": "Läs mer om autofyll"
@@ -6216,22 +6216,22 @@
     "message": "Typ"
   },
   "openIdConnectConfig": {
-    "message": "OpenID connect configuration"
+    "message": "Konfiguration av OpenID-anslutning"
   },
   "samlSpConfig": {
-    "message": "SAML service provider configuration"
+    "message": "Konfiguration av SAML-tjänsteleverantör"
   },
   "samlIdpConfig": {
-    "message": "SAML identity provider configuration"
+    "message": "Konfiguration av SAML-identitetsleverantör"
   },
   "callbackPath": {
-    "message": "Callback path"
+    "message": "Sökväg för återuppringning"
   },
   "signedOutCallbackPath": {
-    "message": "Signed out callback path"
+    "message": "Signerad väg för återuppringning"
   },
   "authority": {
-    "message": "Authority"
+    "message": "Myndighet"
   },
   "clientId": {
     "message": "Klient-ID"
@@ -6240,142 +6240,142 @@
     "message": "Klienthemlighet"
   },
   "metadataAddress": {
-    "message": "Metadata address"
+    "message": "Adress för metadata"
   },
   "oidcRedirectBehavior": {
-    "message": "OIDC redirect behavior"
+    "message": "OIDC omdirigera beteende"
   },
   "getClaimsFromUserInfoEndpoint": {
-    "message": "Get claims from user info endpoint"
+    "message": "Hämta anspråk från slutpunkt för användarinformation"
   },
   "additionalScopes": {
-    "message": "Custom scopes"
+    "message": "Anpassade kikarsikten"
   },
   "additionalUserIdClaimTypes": {
-    "message": "Custom user ID claim types"
+    "message": "Anpassade kravtyper för användar-ID"
   },
   "additionalEmailClaimTypes": {
-    "message": "Email claim types"
+    "message": "E-postanspråkstyper"
   },
   "additionalNameClaimTypes": {
-    "message": "Custom name claim types"
+    "message": "Anspråkstyper med anpassade namn"
   },
   "acrValues": {
-    "message": "Requested authentication context class reference values"
+    "message": "Referensvärden för klass för begärd autentiseringskontext"
   },
   "expectedReturnAcrValue": {
-    "message": "Expected \"acr\" claim value in response"
+    "message": "Förväntat \"acr\"-kravvärde i svar"
   },
   "spEntityId": {
-    "message": "SP entity ID"
+    "message": "SP-enhetens ID"
   },
   "spMetadataUrl": {
-    "message": "SAML 2.0 metadata URL"
+    "message": "URL för SAML 2.0-metadata"
   },
   "spAcsUrl": {
-    "message": "Assertion consumer service (ACS) URL"
+    "message": "URL för Assertion Consumer Service (ACS)"
   },
   "spNameIdFormat": {
-    "message": "Name ID format"
+    "message": "Namn ID-format"
   },
   "spOutboundSigningAlgorithm": {
-    "message": "Outbound signing algorithm"
+    "message": "Algoritm för utgående signering"
   },
   "spSigningBehavior": {
-    "message": "Signing behavior"
+    "message": "Signeringsbeteende"
   },
   "spMinIncomingSigningAlgorithm": {
-    "message": "Minimum incoming signing algorithm"
+    "message": "Algoritm för minsta inkommande signering"
   },
   "spWantAssertionsSigned": {
-    "message": "Expect signed assertions"
+    "message": "Förväntar sig signerade påståenden"
   },
   "spValidateCertificates": {
-    "message": "Validate certificates"
+    "message": "Validera certifikat"
   },
   "spUniqueEntityId": {
-    "message": "Set a unique SP entity ID"
+    "message": "Ange ett unikt ID för SP-enheten"
   },
   "spUniqueEntityIdDesc": {
-    "message": "Generate an identifier that is unique to your organization"
+    "message": "Generera en identifierare som är unik för din organisation"
   },
   "idpEntityId": {
-    "message": "Entity ID"
+    "message": "Enhetens ID"
   },
   "idpBindingType": {
-    "message": "Binding type"
+    "message": "Typ av bindning"
   },
   "idpSingleSignOnServiceUrl": {
-    "message": "Single sign-on service URL"
+    "message": "URL för tjänst för enkel inloggning"
   },
   "idpSingleLogoutServiceUrl": {
-    "message": "Single log-out service URL"
+    "message": "URL för tjänst med en enda inloggning"
   },
   "idpX509PublicCert": {
-    "message": "X509 public certificate"
+    "message": "X509 offentligt certifikat"
   },
   "idpOutboundSigningAlgorithm": {
-    "message": "Outbound signing algorithm"
+    "message": "Algoritm för utgående signering"
   },
   "idpAllowUnsolicitedAuthnResponse": {
-    "message": "Allow unsolicited authentication response"
+    "message": "Tillåt oönskat autentiseringssvar"
   },
   "idpAllowOutboundLogoutRequests": {
-    "message": "Allow outbound logout requests"
+    "message": "Tillåt utgående begäran om utloggning"
   },
   "idpSignAuthenticationRequests": {
-    "message": "Sign authentication requests"
+    "message": "Signera autentiseringsbegäran"
   },
   "ssoSettingsSaved": {
-    "message": "Single sign-on configuration saved"
+    "message": "Konfiguration för enkel inloggning sparad"
   },
   "sponsoredFamilies": {
-    "message": "Free Bitwarden Families"
+    "message": "Gratis Bitwarden Familjer"
   },
   "sponsoredBitwardenFamilies": {
-    "message": "Sponsored families"
+    "message": "Sponsrade familjer"
   },
   "noSponsoredFamiliesMessage": {
-    "message": "No sponsored families"
+    "message": "Inga sponsrade familjer"
   },
   "nosponsoredFamiliesDetails": {
-    "message": "Sponsored non-member families plans will display here"
+    "message": "Sponsrade familjeplaner för icke-medlemmar visas här"
   },
   "sponsorshipFreeBitwardenFamilies": {
-    "message": "Members of your organization are eligible for Free Bitwarden Families. You can sponsor Free Bitwarden Families for employees who are not a member of your Bitwarden organization. Sponsoring a non-member requires an available seat within your organization."
+    "message": "Medlemmar i din organisation är berättigade till Free Bitwarden Families. Du kan sponsra Free Bitwarden Families för anställda som inte är medlemmar i din Bitwarden-organisation. För att sponsra en icke-medlem krävs en ledig plats inom din organisation."
   },
   "sponsoredFamiliesRemoveActiveSponsorship": {
-    "message": "When you remove an active sponsorship, a seat within your organization will be available after the renewal date of the sponsored organization."
+    "message": "När du tar bort ett aktivt sponsorskap kommer en plats inom din organisation att bli tillgänglig efter förnyelsedatumet för den sponsrade organisationen."
   },
   "sponsoredFamiliesEligible": {
-    "message": "You and your family are eligible for Free Bitwarden Families. Redeem with your personal email to keep your data secure even when you are not at work."
+    "message": "Du och din familj är berättigade till gratis Bitwarden Families. Lös in med din personliga e-post för att hålla dina uppgifter säkra även när du inte är på jobbet."
   },
   "sponsoredFamiliesEligibleCard": {
-    "message": "Redeem your Free Bitwarden for Families plan today to keep your data secure even when you are not at work."
+    "message": "Lös in din kostnadsfria Bitwarden for Families-plan idag för att skydda dina data även när du inte är på jobbet."
   },
   "sponsoredFamiliesIncludeMessage": {
-    "message": "The Bitwarden for Families plan includes"
+    "message": "Bitwarden for Families-planen omfattar"
   },
   "sponsoredFamiliesPremiumAccess": {
-    "message": "Premium access for up to 6 users"
+    "message": "Premiumåtkomst för upp till 6 användare"
   },
   "sponsoredFamiliesSharedCollectionsForFamilyMembers": {
-    "message": "Shared collections for family members"
+    "message": "Delade samlingar för familjemedlemmar"
   },
   "memberFamilies": {
-    "message": "Member families"
+    "message": "Familjer som är medlemmar"
   },
   "noMemberFamilies": {
-    "message": "No member families"
+    "message": "Inga medlemsfamiljer"
   },
   "noMemberFamiliesDescription": {
-    "message": "Members who have redeemed family plans will display here"
+    "message": "Medlemmar som har löst in familjeplaner visas här"
   },
   "membersWithSponsoredFamilies": {
-    "message": "Members of your organization are eligible for Free Bitwarden Families. Here you can see members who have sponsored a Families organization."
+    "message": "Medlemmar i din organisation är berättigade till Free Bitwarden Families. Här kan du se medlemmar som har sponsrat en Families-organisation."
   },
   "organizationHasMemberMessage": {
-    "message": "A sponsorship cannot be sent to $EMAIL$ because they are a member of your organization.",
+    "message": "En sponsring kan inte skickas till $EMAIL$ eftersom de är medlemmar i din organisation.",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -6387,7 +6387,7 @@
     "message": "Länken är inte längre giltig. Be sponsorn att skicka erbjudandet igen."
   },
   "reclaimedFreePlan": {
-    "message": "Reclaimed free plan"
+    "message": "Återvunnen fri planlösning"
   },
   "redeem": {
     "message": "Lös in"
@@ -6396,25 +6396,25 @@
     "message": "Välj den organisation som du vill sponsra"
   },
   "familiesSponsoringOrgSelect": {
-    "message": "Which Free Families offer would you like to redeem?"
+    "message": "Vilket Free Families-erbjudande skulle du vilja utnyttja?"
   },
   "sponsoredFamiliesEmail": {
-    "message": "Enter your personal email to redeem Bitwarden Families"
+    "message": "Ange din personliga e-postadress för att lösa in Bitwarden Families"
   },
   "sponsoredFamiliesLeaveCopy": {
-    "message": "If you remove an offer or are removed from the sponsoring organization, your Families sponsorship will expire at the next renewal date."
+    "message": "Om du tar bort ett erbjudande eller tas bort från den sponsrande organisationen upphör din Families-sponsring att gälla vid nästa förnyelsedatum."
   },
   "acceptBitwardenFamiliesHelp": {
-    "message": "Accept offer for an existing organization or create a new Families organization."
+    "message": "Acceptera erbjudandet för en befintlig organisation eller skapa en ny Families-organisation."
   },
   "setupSponsoredFamiliesLoginDesc": {
-    "message": "You've been offered a free Bitwarden Families plan organization. To continue, you need to log in to the account that received the offer."
+    "message": "Du har blivit erbjuden en gratis Bitwarden Families planorganisation. För att fortsätta måste du logga in på det konto som fick erbjudandet."
   },
   "sponsoredFamiliesAcceptFailed": {
-    "message": "Unable to accept offer. Please resend the offer email from your Enterprise account and try again."
+    "message": "Det gick inte att acceptera erbjudandet. Skicka erbjudandet på nytt från ditt Enterprise-konto och försök igen."
   },
   "sponsoredFamiliesAcceptFailedShort": {
-    "message": "Unable to accept offer. $DESCRIPTION$",
+    "message": "Kan inte acceptera erbjudandet. $DESCRIPTION$",
     "placeholders": {
       "description": {
         "content": "$1",
@@ -6423,19 +6423,19 @@
     }
   },
   "sponsoredFamiliesOffer": {
-    "message": "Accept Free Bitwarden Families"
+    "message": "Acceptera gratis Bitwarden Familjer"
   },
   "sponsoredFamiliesOfferRedeemed": {
-    "message": "Free Bitwarden Families offer successfully redeemed"
+    "message": "Gratis Bitwarden Families-erbjudande framgångsrikt inlöst"
   },
   "redeemed": {
-    "message": "Redeemed"
+    "message": "Inlöst"
   },
   "redeemedAccount": {
-    "message": "Account redeemed"
+    "message": "Inlöst konto"
   },
   "revokeAccountMessage": {
-    "message": "Revoke account $NAME$",
+    "message": "Återkalla konto $NAME$",
     "placeholders": {
       "name": {
         "content": "$1",
@@ -6444,7 +6444,7 @@
     }
   },
   "resendEmailLabel": {
-    "message": "Resend sponsorship email to $NAME$ sponsorship",
+    "message": "Skicka sponsringsmejl till $NAME$ sponsring",
     "placeholders": {
       "name": {
         "content": "$1",
@@ -6453,7 +6453,7 @@
     }
   },
   "freeFamiliesPlan": {
-    "message": "Free Families plan"
+    "message": "Plan för fria familjer"
   },
   "redeemNow": {
     "message": "Lös in nu"
@@ -6462,25 +6462,25 @@
     "message": "Mottagare"
   },
   "removeSponsorship": {
-    "message": "Remove sponsorship"
+    "message": "Ta bort sponsring"
   },
   "removeSponsorshipConfirmation": {
-    "message": "After removing a sponsorship, you will be responsible for this subscription and related invoices. Are you sure you want to continue?"
+    "message": "När du har tagit bort en sponsring kommer du att vara ansvarig för denna prenumeration och relaterade fakturor. Är du säker på att du vill fortsätta?"
   },
   "sponsorshipCreated": {
-    "message": "Sponsorship created"
+    "message": "Sponsring skapad"
   },
   "emailSent": {
-    "message": "Email sent"
+    "message": "E-post skickat"
   },
   "removeSponsorshipSuccess": {
-    "message": "Sponsorship removed"
+    "message": "Sponsring borttagen"
   },
   "ssoKeyConnectorError": {
-    "message": "Key Connector error: make sure Key Connector is available and working correctly."
+    "message": "Fel på Key Connector: kontrollera att Key Connector är tillgänglig och fungerar korrekt."
   },
   "keyConnectorUrl": {
-    "message": "Key Connector URL"
+    "message": "URL för nyckelanslutning"
   },
   "sendVerificationCode": {
     "message": "Skicka en verifieringskod till din e-postadress"
@@ -6498,19 +6498,19 @@
     "message": "Bekräfta din identitet för att fortsätta."
   },
   "verificationCodeRequired": {
-    "message": "Verification code is required."
+    "message": "Verifieringskod krävs."
   },
   "webauthnCancelOrTimeout": {
-    "message": "The authentication was cancelled or took too long. Please try again."
+    "message": "Autentiseringen avbröts eller tog för lång tid. Vänligen försök igen."
   },
   "invalidVerificationCode": {
     "message": "Ogiltig verifieringskod"
   },
   "removeMasterPasswordForOrganizationUserKeyConnector": {
-    "message": "A master password is no longer required for members of the following organization. Please confirm the domain below with your organization administrator."
+    "message": "Ett huvudlösenord krävs inte längre för medlemmar i följande organisation. Vänligen bekräfta domänen nedan med din organisationsadministratör."
   },
   "keyConnectorDomain": {
-    "message": "Key Connector domain"
+    "message": "Key Connector-domän"
   },
   "leaveOrganization": {
     "message": "Lämna organisation"
@@ -6522,17 +6522,17 @@
     "message": "Huvudlösenord togs bort"
   },
   "allowSso": {
-    "message": "Allow SSO authentication"
+    "message": "Tillåt SSO-autentisering"
   },
   "allowSsoDesc": {
-    "message": "Once set up, your configuration will be saved and members will be able to authenticate using their Identity Provider credentials."
+    "message": "När konfigurationen är klar sparas den och medlemmarna kan autentisera sig med sina Identity Provider-referenser."
   },
   "ssoPolicyHelpStart": {
     "message": "Använd",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'Use the require single-sign-on authentication policy to require all members to log in with SSO.'"
   },
   "ssoPolicyHelpAnchor": {
-    "message": "require single sign-on authentication policy",
+    "message": "kräver autentiseringspolicy för enkel inloggning",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'Use the require single-sign-on authentication policy to require all members to log in with SSO.'"
   },
   "ssoPolicyHelpEnd": {
@@ -6540,28 +6540,28 @@
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'Use the require single-sign-on authentication policy to require all members to log in with SSO.'"
   },
   "memberDecryptionOption": {
-    "message": "Member decryption options"
+    "message": "Alternativ för dekryptering av medlemmar"
   },
   "memberDecryptionPassDesc": {
-    "message": "Once authenticated, members will decrypt vault data using their master passwords."
+    "message": "När medlemmarna har autentiserat sig kommer de att dekryptera valvdata med hjälp av sina huvudlösenord."
   },
   "keyConnector": {
-    "message": "Key Connector"
+    "message": "Nyckelkontakt"
   },
   "memberDecryptionKeyConnectorDescStart": {
-    "message": "Connect login with SSO to your self-hosted decryption key server. Using this option, members won’t need to use their master passwords to decrypt vault data. The",
+    "message": "Anslut inloggning med SSO till din egen server för dekrypteringsnycklar. Med det här alternativet behöver medlemmarna inte använda sina huvudlösenord för att dekryptera valvdata. Den",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'Connect login with SSO to your self-hosted decryption key server. Using this option, members won’t need to use their master passwords to decrypt vault data. The require SSO authentication and single organization policies are required to set up Key Connector decryption. Contact Bitwarden Support for set up assistance.'"
   },
   "memberDecryptionKeyConnectorDescLink": {
-    "message": "require SSO authentication and single organization policies",
+    "message": "kräver SSO-autentisering och policyer för en enda organisation",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'Connect login with SSO to your self-hosted decryption key server. Using this option, members won’t need to use their master passwords to decrypt vault data. The require SSO authentication and single organization policies are required to set up Key Connector decryption. Contact Bitwarden Support for set up assistance.'"
   },
   "memberDecryptionKeyConnectorDescEnd": {
-    "message": "are required to set up Key Connector decryption. Contact Bitwarden Support for set up assistance.",
+    "message": "krävs för att konfigurera dekryptering med Key Connector. Kontakta Bitwarden Support för hjälp med installationen.",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'Connect login with SSO to your self-hosted decryption key server. Using this option, members won’t need to use their master passwords to decrypt vault data. The require SSO authentication and single organization policies are required to set up Key Connector decryption. Contact Bitwarden Support for set up assistance.'"
   },
   "keyConnectorPolicyRestriction": {
-    "message": "\"Login with SSO and Key Connector Decryption\" is activated. This policy will only apply to owners and admins."
+    "message": "\"Inloggning med SSO och dekryptering av Key Connector\" är aktiverad. Denna policy gäller endast för ägare och administratörer."
   },
   "enabledSso": {
     "message": "SSO aktiverad"
@@ -6570,127 +6570,127 @@
     "message": "SSO inaktiverad"
   },
   "enabledKeyConnector": {
-    "message": "Key Connector activated"
+    "message": "Nyckelkontakt aktiverad"
   },
   "disabledKeyConnector": {
-    "message": "Key Connector deactivated"
+    "message": "Key Connector avaktiverad"
   },
   "keyConnectorWarning": {
-    "message": "Once members begin using Key Connector, your organization cannot revert to master password decryption. Proceed only if you are comfortable deploying and managing a key server."
+    "message": "När medlemmarna börjar använda Key Connector kan din organisation inte återgå till dekryptering av huvudlösenord. Fortsätt endast om du är bekväm med att distribuera och hantera en nyckelserver."
   },
   "migratedKeyConnector": {
-    "message": "Migrated to Key Connector"
+    "message": "Migrerad till Key Connector"
   },
   "paymentSponsored": {
-    "message": "Please provide a payment method to associate with the organization. Don't worry, we won't charge you anything unless you select additional features or your sponsorship expires. "
+    "message": "Ange en betalningsmetod som ska kopplas till organisationen. Oroa dig inte, vi kommer inte att debitera dig något om du inte väljer ytterligare funktioner eller om ditt sponsorskap upphör."
   },
   "orgCreatedSponsorshipInvalid": {
-    "message": "The sponsorship offer has expired. You may delete the organization you created to avoid a charge at the end of your 7 day trial. Otherwise you may close this prompt to keep the organization and assume billing responsibility."
+    "message": "Sponsringserbjudandet har löpt ut. Du kan ta bort den organisation du skapade för att undvika en kostnad i slutet av din 7-dagars provperiod. Annars kan du stänga den här prompten för att behålla organisationen och ta på dig faktureringsansvaret."
   },
   "newFamiliesOrganization": {
-    "message": "New Families organization"
+    "message": "Organisationen New Families"
   },
   "acceptOffer": {
-    "message": "Accept offer"
+    "message": "Acceptera erbjudandet"
   },
   "sponsoringOrg": {
-    "message": "Sponsoring organization"
+    "message": "Sponsrande organisation"
   },
   "keyConnectorTest": {
     "message": "Testa"
   },
   "keyConnectorTestSuccess": {
-    "message": "Success! Key Connector reached."
+    "message": "Framgång! Key Connector har nåtts."
   },
   "keyConnectorTestFail": {
-    "message": "Cannot reach Key Connector. Check URL."
+    "message": "Det går inte att nå Key Connector. Kontrollera webbadressen."
   },
   "sponsorshipTokenHasExpired": {
-    "message": "The sponsorship offer has expired."
+    "message": "Sponsringserbjudandet har löpt ut."
   },
   "freeWithSponsorship": {
-    "message": "FREE with sponsorship"
+    "message": "GRATIS med sponsring"
   },
   "viewBillingSyncToken": {
-    "message": "View billing sync token"
+    "message": "Visa token för fakturasynkronisering"
   },
   "generateBillingToken": {
-    "message": "Generate billing token"
+    "message": "Generera faktureringstoken"
   },
   "copyPasteBillingSync": {
-    "message": "Copy and paste this token into the billing sync settings of your self-hosted organization."
+    "message": "Kopiera och klistra in den här token i inställningarna för fakturasynkronisering i din organisation med egen värd."
   },
   "billingSyncCanAccess": {
-    "message": "Your billing sync token can access and edit this organization's subscription settings."
+    "message": "Din synkroniseringstoken för fakturering kan komma åt och redigera den här organisationens prenumerationsinställningar."
   },
   "manageBillingTokenSync": {
-    "message": "Manage Billing Token"
+    "message": "Hantera faktureringstoken"
   },
   "setUpBillingSync": {
-    "message": "Set up billing sync"
+    "message": "Ställ in faktureringssynkronisering"
   },
   "generateToken": {
     "message": "Generera token"
   },
   "rotateToken": {
-    "message": "Rotate token"
+    "message": "Rotera token"
   },
   "rotateBillingSyncTokenWarning": {
-    "message": "If you proceed, you will need to re-setup billing sync on your self-hosted server."
+    "message": "Om du fortsätter måste du konfigurera om faktureringssynkroniseringen på din egen server."
   },
   "rotateBillingSyncTokenTitle": {
-    "message": "Rotating the billing sync token will invalidate the previous token."
+    "message": "Om du roterar token för faktureringssynkronisering ogiltigförklaras den föregående token."
   },
   "selfHostedServer": {
-    "message": "self-hosted"
+    "message": "själv-hostad"
   },
   "customEnvironment": {
-    "message": "Custom environment"
+    "message": "Anpassad miljö"
   },
   "selfHostedBaseUrlHint": {
-    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+    "message": "Ange bas-URL:en för din lokala Bitwarden-installation. Exempel: https://bitwarden.company.com"
   },
   "selfHostedCustomEnvHeader": {
-    "message": "For advanced configuration, you can specify the base URL of each service independently."
+    "message": "För avancerad konfiguration kan du ange bas-URL:en för varje tjänst separat."
   },
   "selfHostedEnvFormInvalid": {
-    "message": "You must add either the base Server URL or at least one custom environment."
+    "message": "Du måste lägga till antingen basserverns URL eller minst en anpassad miljö."
   },
   "apiUrl": {
-    "message": "API server URL"
+    "message": "URL till API-server"
   },
   "webVaultUrl": {
-    "message": "Web vault server URL"
+    "message": "URL för webbvalvsserver"
   },
   "identityUrl": {
-    "message": "Identity server URL"
+    "message": "URL för identitetsserver"
   },
   "notificationsUrl": {
-    "message": "Notifications server URL"
+    "message": "URL för meddelandeserver"
   },
   "iconsUrl": {
-    "message": "Icons server URL"
+    "message": "Ikoner server URL"
   },
   "environmentSaved": {
-    "message": "Environment URLs saved"
+    "message": "URL:er för miljö sparas"
   },
   "selfHostingTitle": {
-    "message": "Self-hosting"
+    "message": "Självhanterande"
   },
   "selfHostingEnterpriseOrganizationSectionCopy": {
-    "message": "To set-up your organization on your own server, you will need to upload your license file. To support Free Families plans and advanced billing capabilities for your self-hosted organization, you will need to set up billing sync."
+    "message": "Om du vill konfigurera din organisation på din egen server måste du ladda upp din licensfil. För att stödja Free Families-planer och avancerade faktureringsfunktioner för din egenhostade organisation måste du ställa in faktureringssynkronisering."
   },
   "billingSyncApiKeyRotated": {
-    "message": "Token rotated"
+    "message": "Token roterad"
   },
   "billingSyncKeyDesc": {
-    "message": "A billing sync token from your cloud organization's subscription settings is required to complete this form."
+    "message": "En token för faktureringssynkronisering från din molnorganisations prenumerationsinställningar krävs för att fylla i det här formuläret."
   },
   "billingSyncKey": {
-    "message": "Billing sync token"
+    "message": "Token för fakturasynkronisering"
   },
   "automaticBillingSyncDesc": {
-    "message": "Automatic sync unlocks Families sponsorships and allows you to sync your license without uploading a file. After making updates in the Bitwarden cloud server, select Sync License to apply changes."
+    "message": "Automatisk synkronisering låser upp Familiesponsring och låter dig synkronisera din licens utan att ladda upp en fil. När du har gjort uppdateringar i Bitwardens molnserver väljer du Synkronisera licens för att tillämpa ändringarna."
   },
   "active": {
     "message": "Aktiv"
@@ -6699,16 +6699,16 @@
     "message": "Inaktiv"
   },
   "sentAwaitingSync": {
-    "message": "Sent (awaiting sync)"
+    "message": "Skickad (väntar på synkronisering)"
   },
   "sent": {
-    "message": "Sent"
+    "message": "Skickat"
   },
   "requestRemoved": {
-    "message": "Removed (awaiting sync)"
+    "message": "Borttagen (i väntan på synkronisering)"
   },
   "requested": {
-    "message": "Requested"
+    "message": "Begärda"
   },
   "formErrorSummaryPlural": {
     "message": "$COUNT$ fält ovan kräver din uppmärksamhet.",
@@ -6735,7 +6735,7 @@
     "message": "obligatoriskt"
   },
   "charactersCurrentAndMaximum": {
-    "message": "$CURRENT$/$MAX$ character maximum",
+    "message": "$CURRENT$/$MAX$ maximalt antal tecken",
     "placeholders": {
       "current": {
         "content": "$1",
@@ -6757,31 +6757,31 @@
     }
   },
   "idpSingleSignOnServiceUrlRequired": {
-    "message": "Required if Entity ID is not a URL."
+    "message": "Krävs om Entity ID inte är en URL."
   },
   "offerNoLongerValid": {
-    "message": "This offer is no longer valid. Contact your organization administrators for more information."
+    "message": "Detta erbjudande är inte längre giltigt. Kontakta din organisations administratörer för mer information."
   },
   "openIdOptionalCustomizations": {
-    "message": "Optional customizations"
+    "message": "Valfria anpassningar"
   },
   "openIdAuthorityRequired": {
-    "message": "Required if Authority is not valid."
+    "message": "Krävs om myndigheten inte är giltig."
   },
   "separateMultipleWithComma": {
-    "message": "Separate multiple with a comma."
+    "message": "Separera flera med ett kommatecken."
   },
   "sessionTimeout": {
-    "message": "Your session has timed out. Please go back and try logging in again."
+    "message": "Din session har tidsbegränsats. Vänligen gå tillbaka och försök logga in igen."
   },
   "exportingPersonalVaultTitle": {
-    "message": "Exporting individual vault"
+    "message": "Exportera enskilda valv"
   },
   "exportingOrganizationVaultTitle": {
-    "message": "Exporting organization vault"
+    "message": "Exportera organisationsvalv"
   },
   "exportingIndividualVaultDescription": {
-    "message": "Only the individual vault items associated with $EMAIL$ will be exported. Organization vault items will not be included. Only vault item information will be exported and will not include associated attachments.",
+    "message": "Endast de enskilda valvobjekt som är associerade med $EMAIL$ exporteras. Valvobjekt för organisationer kommer inte att inkluderas. Endast information om valvobjektet exporteras och inkluderar inte tillhörande bilagor.",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -6790,7 +6790,7 @@
     }
   },
   "exportingIndividualVaultWithAttachmentsDescription": {
-    "message": "Only the individual vault items including attachments associated with $EMAIL$ will be exported. Organization vault items will not be included",
+    "message": "Endast de enskilda valvobjekten inklusive bilagor som är associerade med $EMAIL$ exporteras. Organisationens valvobjekt kommer inte att inkluderas",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -6799,7 +6799,7 @@
     }
   },
   "exportingOrganizationVaultDesc": {
-    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "message": "Endast det organisationsvalv som är associerat med $ORGANIZATION$ exporteras. Objekt i enskilda valv eller andra organisationer kommer inte att inkluderas.",
     "placeholders": {
       "organization": {
         "content": "$1",
@@ -6808,7 +6808,7 @@
     }
   },
   "accessDenied": {
-    "message": "Access denied. You do not have permission to view this page."
+    "message": "Åtkomst nekad. Du har inte behörighet att visa den här sidan."
   },
   "masterPassword": {
     "message": "Huvudlösenord"
@@ -6826,7 +6826,7 @@
     "message": "Tillbaka till rapporter"
   },
   "organizationPicker": {
-    "message": "Organization picker"
+    "message": "Väljare av organisation"
   },
   "currentOrganization": {
     "message": "Nuvarande organisation",
@@ -6852,7 +6852,7 @@
     "message": "Generera användarnamn"
   },
   "generateEmail": {
-    "message": "Generate email"
+    "message": "Generera e-post"
   },
   "generatePassword": {
     "message": "Generera lösenord"
@@ -6861,16 +6861,16 @@
     "message": "Generera lösenfras"
   },
   "passwordGenerated": {
-    "message": "Password generated"
+    "message": "Lösenord genererat"
   },
   "passphraseGenerated": {
-    "message": "Passphrase generated"
+    "message": "Lösenfras genererad"
   },
   "usernameGenerated": {
-    "message": "Username generated"
+    "message": "Användarnamn genererat"
   },
   "emailGenerated": {
-    "message": "Email generated"
+    "message": "E-post genererad"
   },
   "spinboxBoundariesHint": {
     "message": "Värde måste vara mellan $MIN$ och $MAX$.",
@@ -6907,20 +6907,20 @@
     }
   },
   "plusAddressedEmail": {
-    "message": "Plus addressed email",
+    "message": "Plus adresserad e-post",
     "description": "Username generator option that appends a random sub-address to the username. For example: address+subaddress@email.com"
   },
   "plusAddressedEmailDesc": {
-    "message": "Use your email provider's sub-addressing capabilities."
+    "message": "Använd din e-postleverantörs funktioner för underadressering."
   },
   "catchallEmail": {
-    "message": "Catch-all email"
+    "message": "E-post för alla"
   },
   "catchallEmailDesc": {
-    "message": "Use your domain's configured catch-all inbox."
+    "message": "Använd din domäns konfigurerade inkorg."
   },
   "useThisEmail": {
-    "message": "Use this email"
+    "message": "Använd denna e-post"
   },
   "random": {
     "message": "Slumpmässigt",
@@ -6930,36 +6930,36 @@
     "message": "Slumpmässigt ord"
   },
   "usernameGenerator": {
-    "message": "Username generator"
+    "message": "Generator för användarnamn"
   },
   "useThisPassword": {
     "message": "Använd detta lösenord"
   },
   "useThisPassphrase": {
-    "message": "Use this passphrase"
+    "message": "Använd denna lösenfras"
   },
   "useThisUsername": {
     "message": "Använd detta användarnamn"
   },
   "securePasswordGenerated": {
-    "message": "Secure password generated! Don't forget to also update your password on the website."
+    "message": "Säkert lösenord genererat! Glöm inte att även uppdatera ditt lösenord på hemsidan."
   },
   "useGeneratorHelpTextPartOne": {
-    "message": "Use the generator",
+    "message": "Använd generatorn",
     "description": "This will be used as part of a larger sentence, broken up to include the generator icon. The full sentence will read 'Use the generator [GENERATOR_ICON] to create a strong unique password'"
   },
   "useGeneratorHelpTextPartTwo": {
-    "message": "to create a strong unique password",
+    "message": "för att skapa ett starkt unikt lösenord",
     "description": "This will be used as part of a larger sentence, broken up to include the generator icon. The full sentence will read 'Use the generator [GENERATOR_ICON] to create a strong unique password'"
   },
   "service": {
     "message": "Tjänst"
   },
   "unknownCipher": {
-    "message": "Unknown item, you may need to request permission to access this item."
+    "message": "Okänt objekt, du kan behöva begära tillstånd för att få tillgång till detta objekt."
   },
   "cannotSponsorSelf": {
-    "message": "You cannot redeem for the active account. Enter a different email."
+    "message": "Du kan inte lösa in för det aktiva kontot. Ange en annan e-postadress."
   },
   "revokeWhenExpired": {
     "message": "Upphör $DATE$",
@@ -6971,7 +6971,7 @@
     }
   },
   "awaitingSyncSingular": {
-    "message": "Token rotated $DAYS$ day ago. Update the billing sync token in your self-hosted organization settings.",
+    "message": "Token roterade för $DAYS$$ dag sedan. Uppdatera token för fakturasynkronisering i inställningarna för din organisation med egen värd.",
     "placeholders": {
       "days": {
         "content": "$1",
@@ -6980,7 +6980,7 @@
     }
   },
   "awaitingSyncPlural": {
-    "message": "Token rotated $DAYS$ days ago. Update the billing sync token in your self-hosted organization settings.",
+    "message": "Token roterade för $DAYS$ dagar sedan. Uppdatera token för fakturasynkronisering i inställningarna för din organisation med egen värd.",
     "placeholders": {
       "days": {
         "content": "$1",
@@ -6993,10 +6993,10 @@
     "description": "Used as a prefix to indicate the last time a sync occurred. Example \"Last sync 1968-11-16 00:00:00\""
   },
   "sponsorshipsSynced": {
-    "message": "Self-hosted sponsorships synced."
+    "message": "Självhanterade sponsringar synkroniserade."
   },
   "billingManagedByProvider": {
-    "message": "Managed by $PROVIDER$",
+    "message": "Hanteras av $PROVIDER$",
     "placeholders": {
       "provider": {
         "content": "$1",
@@ -7005,11 +7005,11 @@
     }
   },
   "billingContactProviderForAssistance": {
-    "message": "Please reach out to them for further assistance",
+    "message": "Vänligen kontakta dem för ytterligare hjälp",
     "description": "This text is displayed if an organization's billing is managed by a Provider. It tells the user to contact the Provider for assistance."
   },
   "forwardedEmail": {
-    "message": "Forwarded email alias"
+    "message": "Alias för vidarebefordrad e-post"
   },
   "forwardedEmailDesc": {
     "message": "Generera ett e-postalias med en extern vidarebefordranstjänst."
@@ -7019,7 +7019,7 @@
     "description": "Labels the domain name email forwarder service option"
   },
   "forwarderDomainNameHint": {
-    "message": "Choose a domain that is supported by the selected service",
+    "message": "Välj en domän som stöds av den valda tjänsten",
     "description": "Guidance provided for email forwarding services that support multiple email domains."
   },
   "forwarderError": {
@@ -7037,7 +7037,7 @@
     }
   },
   "forwarderGeneratedBy": {
-    "message": "Generated by Bitwarden.",
+    "message": "Genereras av Bitwarden.",
     "description": "Displayed with the address on the forwarding service's configuration screen."
   },
   "forwarderGeneratedByWithWebsite": {
@@ -7051,7 +7051,7 @@
     }
   },
   "forwaderInvalidToken": {
-    "message": "Invalid $SERVICENAME$ API token",
+    "message": "Ogiltig $SERVICENAME$ API-token",
     "description": "Displayed when the user's API token is empty or rejected by the forwarding service.",
     "placeholders": {
       "servicename": {
@@ -7061,7 +7061,7 @@
     }
   },
   "forwaderInvalidTokenWithMessage": {
-    "message": "Invalid $SERVICENAME$ API token: $ERRORMESSAGE$",
+    "message": "Ogiltig $SERVICENAME$ API-token: $ERRORMESSAGE$",
     "description": "Displayed when the user's API token is rejected by the forwarding service with an error message.",
     "placeholders": {
       "servicename": {
@@ -7075,7 +7075,7 @@
     }
   },
   "forwaderInvalidOperation": {
-    "message": "$SERVICENAME$ refused your request. Please contact your service provider for assistance.",
+    "message": "$SERVICENAME$ avvisade din begäran. Vänligen kontakta din tjänsteleverantör för hjälp.",
     "description": "Displayed when the user is forbidden from using the API by the forwarding service.",
     "placeholders": {
       "servicename": {
@@ -7085,7 +7085,7 @@
     }
   },
   "forwaderInvalidOperationWithMessage": {
-    "message": "$SERVICENAME$ refused your request: $ERRORMESSAGE$",
+    "message": "$SERVICENAME$ avvisade din begäran: $ERRORMESSAGE$",
     "description": "Displayed when the user is forbidden from using the API by the forwarding service with an error message.",
     "placeholders": {
       "servicename": {
@@ -7099,7 +7099,7 @@
     }
   },
   "forwarderNoAccountId": {
-    "message": "Unable to obtain $SERVICENAME$ masked email account ID.",
+    "message": "Det gick inte att få $SERVICENAME$ maskerat ID för e-postkonto.",
     "description": "Displayed when the forwarding service fails to return an account ID.",
     "placeholders": {
       "servicename": {
@@ -7129,7 +7129,7 @@
     }
   },
   "forwarderUnknownError": {
-    "message": "Unknown $SERVICENAME$ error occurred.",
+    "message": "Okänt $SERVICENAME$-fel inträffade.",
     "description": "Displayed when the forwarding service failed due to an unknown error.",
     "placeholders": {
       "servicename": {
@@ -7139,7 +7139,7 @@
     }
   },
   "forwarderUnknownForwarder": {
-    "message": "Unknown forwarder: '$SERVICENAME$'.",
+    "message": "Okänd vidarebefordrare: '$SERVICENAME$'.",
     "description": "Displayed when the forwarding service is not supported.",
     "placeholders": {
       "servicename": {
@@ -7153,19 +7153,19 @@
     "description": "Part of a URL."
   },
   "deviceVerification": {
-    "message": "Device verification"
+    "message": "Verifiering av enhet"
   },
   "enableDeviceVerification": {
-    "message": "Turn on device verification"
+    "message": "Slå på enhetsverifiering"
   },
   "deviceVerificationDesc": {
-    "message": "Verification codes are sent to your email address when logging in from an unrecognized device"
+    "message": "Verifieringskoder skickas till din e-postadress när du loggar in från en enhet som inte känns igen"
   },
   "updatedDeviceVerification": {
-    "message": "Updated device verification"
+    "message": "Uppdaterad enhetsverifiering"
   },
   "areYouSureYouWantToEnableDeviceVerificationTheVerificationCodeEmailsWillArriveAtX": {
-    "message": "Are you sure you want to turn on device verification? The verification code emails will arrive at: $EMAIL$",
+    "message": "Är du säker på att du vill aktivera enhetsverifiering? E-postmeddelandena med verifieringskoden kommer att anlända till: $EMAIL$",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -7174,18 +7174,18 @@
     }
   },
   "premiumSubcriptionRequired": {
-    "message": "Premium subscription required"
+    "message": "Premium-prenumeration krävs"
   },
   "scim": {
-    "message": "SCIM provisioning",
+    "message": "Tillhandahållande av SCIM",
     "description": "The text, 'SCIM', is an acronym and should not be translated."
   },
   "scimDescription": {
-    "message": "Automatically provision users and groups with your preferred identity provider via SCIM provisioning",
+    "message": "Automatisk provisionering av användare och grupper med din föredragna identitetsleverantör via SCIM-provisionering",
     "description": "the text, 'SCIM', is an acronym and should not be translated."
   },
   "scimIntegrationDescription": {
-    "message": "Automatically provision users and groups with your preferred identity provider via SCIM provisioning. Find supported integrations",
+    "message": "Tillhandahåll automatiskt användare och grupper med din föredragna identitetsleverantör via SCIM-tillhandahållande. Hitta integrationer som stöds",
     "description": "the text, 'SCIM', is an acronym and should not be translated."
   },
   "scimEnabledCheckboxDesc": {
@@ -7193,22 +7193,22 @@
     "description": "the text, 'SCIM', is an acronym and should not be translated."
   },
   "scimEnabledCheckboxDescHelpText": {
-    "message": "Set up your preferred identity provider by configuring the URL and SCIM API Key",
+    "message": "Konfigurera din önskade identitetsleverantör genom att ange URL och SCIM API-nyckel",
     "description": "the text, 'SCIM', is an acronym and should not be translated."
   },
   "scimApiKeyHelperText": {
-    "message": "This API key has access to manage users within your organization. It should be kept secret."
+    "message": "Denna API-nyckel har åtkomst för att hantera användare inom din organisation. Den bör hållas hemlig."
   },
   "copyScimKey": {
-    "message": "Copy the SCIM API key to your clipboard",
+    "message": "Kopiera SCIM API-nyckeln till ditt urklipp",
     "description": "the text, 'SCIM' and 'API', are acronyms and should not be translated."
   },
   "rotateScimKey": {
-    "message": "Rotate the SCIM API key",
+    "message": "Rotera SCIM API-nyckeln",
     "description": "the text, 'SCIM' and 'API', are acronyms and should not be translated."
   },
   "rotateScimKeyWarning": {
-    "message": "Are you sure you want to rotate the SCIM API Key? The current key will no longer work for any existing integrations.",
+    "message": "Är du säker på att du vill rotera SCIM API-nyckeln? Den nuvarande nyckeln kommer inte längre att fungera för befintliga integrationer.",
     "description": "the text, 'SCIM' and 'API', are acronyms and should not be translated."
   },
   "rotateKey": {
@@ -7219,7 +7219,7 @@
     "description": "the text, 'SCIM' and 'API', are acronyms and should not be translated."
   },
   "copyScimUrl": {
-    "message": "Copy the SCIM endpoint URL to your clipboard",
+    "message": "Kopiera URL:en för SCIM-slutpunkten till ditt urklipp",
     "description": "the text, 'SCIM' and 'URL', are acronyms and should not be translated."
   },
   "scimUrl": {
@@ -7227,21 +7227,21 @@
     "description": "the text, 'SCIM' and 'URL', are acronyms and should not be translated."
   },
   "scimApiKeyRotated": {
-    "message": "SCIM API key successfully rotated",
+    "message": "SCIM API-nyckel har roterats framgångsrikt",
     "description": "the text, 'SCIM' and 'API', are acronyms and should not be translated."
   },
   "scimSettingsSaved": {
-    "message": "SCIM settings saved",
+    "message": "SCIM-inställningar sparade",
     "description": "the text, 'SCIM', is an acronym and should not be translated."
   },
   "inputRequired": {
     "message": "Inmatning är obligatoriskt."
   },
   "inputEmail": {
-    "message": "Input is not an email address."
+    "message": "Input är inte en e-postadress."
   },
   "inputMinLength": {
-    "message": "Input must be at least $COUNT$ characters long.",
+    "message": "Inmatningen måste vara minst $COUNT$ tecken lång.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -7250,7 +7250,7 @@
     }
   },
   "inputMaxLength": {
-    "message": "Input must not exceed $COUNT$ characters in length.",
+    "message": "Inmatningen får inte vara längre än $COUNT$ tecken.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -7259,7 +7259,7 @@
     }
   },
   "inputForbiddenCharacters": {
-    "message": "The following characters are not allowed: $CHARACTERS$",
+    "message": "Följande tecken är inte tillåtna: $CHARACTERS$",
     "placeholders": {
       "characters": {
         "content": "$1",
@@ -7268,7 +7268,7 @@
     }
   },
   "inputMinValue": {
-    "message": "Input value must be at least $MIN$.",
+    "message": "Inmatningsvärdet måste vara minst $MIN$.",
     "placeholders": {
       "min": {
         "content": "$1",
@@ -7277,7 +7277,7 @@
     }
   },
   "inputMaxValue": {
-    "message": "Input value must not exceed $MAX$.",
+    "message": "Inmatningsvärdet får inte överstiga $MAX$.",
     "placeholders": {
       "max": {
         "content": "$1",
@@ -7286,10 +7286,10 @@
     }
   },
   "multipleInputEmails": {
-    "message": "1 or more emails are invalid"
+    "message": "1 eller flera e-postmeddelanden är ogiltiga"
   },
   "tooManyEmails": {
-    "message": "You can only submit up to $COUNT$ emails at a time",
+    "message": "Du kan bara skicka upp till $COUNT$ e-postmeddelanden åt gången",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -7298,7 +7298,7 @@
     }
   },
   "fieldsNeedAttention": {
-    "message": "$COUNT$ field(s) above need your attention.",
+    "message": "$COUNT$-fältet/-fälten ovan behöver din uppmärksamhet.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -7319,25 +7319,25 @@
     }
   },
   "duoHealthCheckResultsInNullAuthUrlError": {
-    "message": "Error connecting with the Duo service. Use a different two-step login method or contact Duo for assistance."
+    "message": "Fel vid anslutning till Duo-tjänsten. Använd en annan tvåstegsinloggningsmetod eller kontakta Duo för hjälp."
   },
   "duoRequiredByOrgForAccount": {
-    "message": "Duo two-step login is required for your account."
+    "message": "Tvåstegsinloggning med Duo krävs för ditt konto."
   },
   "duoTwoFactorRequiredPageSubtitle": {
-    "message": "Duo two-step login is required for your account. Follow the steps below to finish logging in."
+    "message": "Tvåstegsinloggning med Duo krävs för ditt konto. Följ stegen nedan för att slutföra inloggningen."
   },
   "followTheStepsBelowToFinishLoggingIn": {
-    "message": "Follow the steps below to finish logging in."
+    "message": "Följ stegen nedan för att slutföra inloggningen."
   },
   "followTheStepsBelowToFinishLoggingInWithSecurityKey": {
-    "message": "Follow the steps below to finish logging in with your security key."
+    "message": "Följ stegen nedan för att slutföra inloggningen med din säkerhetsnyckel."
   },
   "launchDuo": {
     "message": "Starta Duo"
   },
   "turnOn": {
-    "message": "Turn on"
+    "message": "Sätt på"
   },
   "on": {
     "message": "På"
@@ -7349,7 +7349,7 @@
     "message": "Medlemmar"
   },
   "reporting": {
-    "message": "Reporting"
+    "message": "Rapportering"
   },
   "numberOfUsers": {
     "message": "Antal användare"
@@ -7385,7 +7385,7 @@
     "message": "Teal"
   },
   "salmon": {
-    "message": "Salmon"
+    "message": "Laxfärg"
   },
   "pink": {
     "message": "Rosa"
@@ -7400,7 +7400,7 @@
     "message": "-- Skriv för att filtrera --"
   },
   "multiSelectLoading": {
-    "message": "Retrieving options..."
+    "message": "Hämtar alternativ..."
   },
   "multiSelectNotFound": {
     "message": "Inga objekt hittades"
@@ -7413,7 +7413,7 @@
     "description": "'Character count' describes a feature that displays a number next to each character of the password."
   },
   "passwordCharacterCount": {
-    "message": "Password character count",
+    "message": "Antal tecken i lösenordet",
     "description": "'Character count' describes a feature that displays a number next to each character of the password."
   },
   "hide": {
@@ -7436,11 +7436,11 @@
     "description": "Action to create a new secret."
   },
   "copySecretName": {
-    "message": "Copy secret name",
+    "message": "Kopiera hemligt namn",
     "description": "Action to copy the name of a secret to the system's clipboard."
   },
   "copySecretValue": {
-    "message": "Copy secret value",
+    "message": "Kopiera hemligt värde",
     "description": "Action to copy the value of a secret to the system's clipboard."
   },
   "deleteSecret": {
@@ -7452,13 +7452,13 @@
     "description": "The action to delete multiple secrets from the system."
   },
   "hardDeleteSecret": {
-    "message": "Permanently delete secret"
+    "message": "Ta bort hemligheten permanent"
   },
   "hardDeleteSecrets": {
     "message": "Ta bort hemligheter permanent"
   },
   "secretProjectAssociationDescription": {
-    "message": "Select projects that the secret will be associated with. Only organization users with access to these projects will be able to see the secret.",
+    "message": "Välj de projekt som hemligheten ska associeras med. Endast organisationsanvändare med åtkomst till dessa projekt kommer att kunna se hemligheten.",
     "description": "A prompt explaining how secrets can be associated with projects."
   },
   "selectProjects": {
@@ -7510,11 +7510,11 @@
     "description": "Title for a name/ value pair. Secrets typically consist of a name and value pair."
   },
   "secretEdited": {
-    "message": "Secret edited",
+    "message": "Hemlig redigerad",
     "description": "Notification for the successful editing of a secret."
   },
   "secretCreated": {
-    "message": "Secret created",
+    "message": "Hemlighet skapad",
     "description": "Notification for the successful creation of a secret."
   },
   "newSecret": {
@@ -7582,7 +7582,7 @@
     }
   },
   "deleteServiceAccountToast": {
-    "message": "Service account deleted"
+    "message": "Servicekonto raderat"
   },
   "deleteServiceAccountsToast": {
     "message": "Tjänstkonton togs bort"
@@ -7608,7 +7608,7 @@
     "description": "Notification for the successful saving of a project."
   },
   "projectCreated": {
-    "message": "Project created",
+    "message": "Tjänst skapad",
     "description": "Notification for the successful creation of a project."
   },
   "projectName": {
@@ -7620,7 +7620,7 @@
     "description": "Title for creating a new project."
   },
   "softDeleteSecretWarning": {
-    "message": "Deleting secrets can affect existing integrations.",
+    "message": "Om du tar bort hemligheter kan det påverka befintliga integrationer.",
     "description": "Warns that deleting secrets can have consequences on integrations"
   },
   "softDeletesSuccessToast": {
@@ -7628,7 +7628,7 @@
     "description": "Notifies that the selected secrets have been moved to the trash"
   },
   "hardDeleteSecretConfirmation": {
-    "message": "Are you sure you want to permanently delete this secret?"
+    "message": "Är du säker på att du vill radera den här hemligheten permanent?"
   },
   "hardDeleteSecretsConfirmation": {
     "message": "Är du säker på att du vill ta bort dessa hemligheter permanent?"
@@ -7641,7 +7641,7 @@
     "description": "Title indicating what permissions a service account has"
   },
   "projectCommaSecret": {
-    "message": "Project, Secret",
+    "message": "Projekt, hemligt",
     "description": ""
   },
   "serviceAccountName": {
@@ -7657,7 +7657,7 @@
     "description": "Notifies that a service account has been updated"
   },
   "typeOrSelectProjects": {
-    "message": "Type or select projects",
+    "message": "Skriv eller välj projekt",
     "description": "Instructions for selecting projects for a service account"
   },
   "newSaTypeToFilter": {
@@ -7665,15 +7665,15 @@
     "description": "Instructions for filtering a list of projects or secrets"
   },
   "deleteProjectsToast": {
-    "message": "Projects deleted",
+    "message": "Projekt som tagits bort",
     "description": "Notifies that the selected projects have been deleted"
   },
   "deleteProjectToast": {
-    "message": "Project deleted",
+    "message": "Projekt raderat",
     "description": "Notifies that a project has been deleted"
   },
   "deleteProjectDialogMessage": {
-    "message": "Deleting project $PROJECT$ is permanent and irreversible.",
+    "message": "Att radera projektet $PROJECT$ är permanent och oåterkalleligt.",
     "description": "Informs users that projects are hard deleted and not sent to trash",
     "placeholders": {
       "project": {
@@ -7713,7 +7713,7 @@
     }
   },
   "deleteProjectsDialogMessage": {
-    "message": "Deleting projects is permanent and irreversible.",
+    "message": "Radering av projekt är permanent och oåterkallelig.",
     "description": "This message is displayed in a dialog box as a warning before proceeding with project deletion."
   },
   "projectsNoItemsTitle": {
@@ -7721,11 +7721,11 @@
     "description": "Empty state to be displayed when there are no projects to display in the list."
   },
   "projectsNoItemsMessage": {
-    "message": "Add a new project to get started organizing secrets.",
+    "message": "Lägg till ett nytt projekt för att komma igång med att organisera hemligheter.",
     "description": "Message to be displayed when there are no projects to display in the list."
   },
   "smConfirmationRequired": {
-    "message": "Confirmation required",
+    "message": "Bekräftelse krävs",
     "description": "Indicates that user confirmation is required for an action to proceed."
   },
   "bulkDeleteProjectsErrorMessage": {
@@ -7737,14 +7737,14 @@
     "description": "Notification to be displayed when a secret is successfully sent to the trash."
   },
   "hardDeleteSuccessToast": {
-    "message": "Secret permanently deleted"
+    "message": "Hemlighet permanent raderad"
   },
   "accessTokens": {
     "message": "Åtkomsttoken",
     "description": "Title for the section displaying access tokens."
   },
   "createAccessToken": {
-    "message": "Create access token",
+    "message": "Skapa åtkomsttoken",
     "description": "Button label for creating a new access token."
   },
   "expires": {
@@ -7764,7 +7764,7 @@
     "description": "Message to be displayed when there are no access tokens to display in the list."
   },
   "downloadAccessToken": {
-    "message": "Download or copy before closing.",
+    "message": "Ladda ner eller kopiera innan du stänger.",
     "description": "Message to be displayed before closing an access token, reminding the user to download or copy it."
   },
   "expiresOnAccessToken": {
@@ -7784,7 +7784,7 @@
     "description": "A unique string that gives a client application (eg. CLI) access to a secret or set of secrets."
   },
   "accessTokenExpirationRequired": {
-    "message": "Expiration date required",
+    "message": "Utgångsdatum krävs",
     "description": "Error message indicating that an expiration date for the access token must be set."
   },
   "accessTokenCreatedAndCopied": {
@@ -7806,7 +7806,7 @@
     "description": "Toast message after deleting one or multiple access tokens."
   },
   "noAccessTokenSelected": {
-    "message": "No access token selected to revoke",
+    "message": "Ingen access-token vald för att återkalla",
     "description": "Toast error message after trying to delete access tokens but not selecting any access tokens."
   },
   "submenu": {
@@ -7825,7 +7825,7 @@
     "message": "Uppdatera"
   },
   "plusNMore": {
-    "message": "+ $QUANTITY$ more",
+    "message": "+ $QUANTITY$ mer",
     "placeholders": {
       "quantity": {
         "content": "$1",
@@ -7834,13 +7834,13 @@
     }
   },
   "groupInfo": {
-    "message": "Group info"
+    "message": "Gruppinformation"
   },
   "editGroupMembersDesc": {
-    "message": "Grant members access to the group's assigned collections."
+    "message": "Ge medlemmarna tillgång till gruppens tilldelade samlingar."
   },
   "editGroupCollectionsDesc": {
-    "message": "Grant access to collections by adding them to this group."
+    "message": "Ge tillgång till samlingar genom att lägga till dem i den här gruppen."
   },
   "restrictedCollectionAssignmentDesc": {
     "message": "Du kan endast tilldela samlingar som du hanterar."
@@ -7855,7 +7855,7 @@
     "message": "Roll"
   },
   "removeMember": {
-    "message": "Remove member"
+    "message": "Ta bort medlem"
   },
   "collection": {
     "message": "Samling"
@@ -7876,7 +7876,7 @@
     "message": "Grupp"
   },
   "domainVerification": {
-    "message": "Domain verification"
+    "message": "Verifiering av domän"
   },
   "newDomain": {
     "message": "Ny domän"
@@ -7885,7 +7885,7 @@
     "message": "Inga domäner"
   },
   "noDomainsSubText": {
-    "message": "Connecting a domain allows members to skip the SSO identifier field during Login with SSO."
+    "message": "Genom att ansluta en domän kan medlemmarna hoppa över fältet för SSO-identifierare under inloggning med SSO."
   },
   "copyDnsTxtRecord": {
     "message": "Kopiera DNS TXT-post"
@@ -7894,25 +7894,25 @@
     "message": "DNS TXT-post"
   },
   "dnsTxtRecordInputHint": {
-    "message": "Copy and paste the TXT record into your DNS Provider."
+    "message": "Kopiera och klistra in TXT-posten i din DNS-leverantör."
   },
   "removeDomain": {
-    "message": "Remove domain"
+    "message": "Ta bort domän"
   },
   "removeDomainWarning": {
-    "message": "Removing a domain cannot be undone. Are you sure you want to continue?"
+    "message": "Att ta bort en domän kan inte ångras. Är du säker på att du vill fortsätta?"
   },
   "domainRemoved": {
-    "message": "Domain removed"
+    "message": "Domän borttagen"
   },
   "domainSaved": {
-    "message": "Domain saved"
+    "message": "Domän sparad"
   },
   "duplicateDomainError": {
-    "message": "You can't claim the same domain twice."
+    "message": "Du kan inte göra anspråk på samma domän två gånger."
   },
   "domainNotAvailable": {
-    "message": "Someone else is using $DOMAIN$. Use a different domain to continue.",
+    "message": "Någon annan använder $DOMAIN$. Använd en annan domän för att fortsätta.",
     "placeholders": {
       "DOMAIN": {
         "content": "$1",
@@ -7927,16 +7927,16 @@
     "message": "Status"
   },
   "lastChecked": {
-    "message": "Last checked"
+    "message": "Senast kontrollerat"
   },
   "editDomain": {
     "message": "Redigera domän"
   },
   "domainFormInvalid": {
-    "message": "There are form errors that need your attention"
+    "message": "Det finns formfel som behöver din uppmärksamhet"
   },
   "addedDomain": {
-    "message": "Added domain $DOMAIN$",
+    "message": "Lagt till domän $DOMAIN$",
     "placeholders": {
       "DOMAIN": {
         "content": "$1",
@@ -7945,7 +7945,7 @@
     }
   },
   "removedDomain": {
-    "message": "Removed domain $DOMAIN$",
+    "message": "Borttagen domän $DOMAIN$",
     "placeholders": {
       "DOMAIN": {
         "content": "$1",
@@ -7963,10 +7963,10 @@
     "message": "Verifiera med biometri"
   },
   "awaitingConfirmation": {
-    "message": "Awaiting confirmation"
+    "message": "Inväntar bekräftelse"
   },
   "couldNotCompleteBiometrics": {
-    "message": "Could not complete biometrics."
+    "message": "Kunde inte fylla i biometri."
   },
   "needADifferentMethod": {
     "message": "Behöver du en annan metod?"
@@ -7981,7 +7981,7 @@
     "message": "Använd biometri"
   },
   "enterVerificationCodeSentToEmail": {
-    "message": "Enter the verification code that was sent to your email."
+    "message": "Ange verifieringskoden som skickades till din e-post."
   },
   "resendCode": {
     "message": "Skicka kod igen"
@@ -7999,22 +7999,22 @@
     "message": "Välj grupper"
   },
   "userPermissionOverrideHelperDesc": {
-    "message": "Permissions set for a member will replace permissions set by that member's group."
+    "message": "De behörigheter som anges för en medlem ersätter de behörigheter som anges av medlemmens grupp."
   },
   "noMembersOrGroupsAdded": {
-    "message": "No members or groups added"
+    "message": "Inga medlemmar eller grupper tillagda"
   },
   "deleted": {
-    "message": "Deleted"
+    "message": "Raderad"
   },
   "memberStatusFilter": {
-    "message": "Member status filter"
+    "message": "Filter för medlemsstatus"
   },
   "inviteMember": {
     "message": "Bjud in medlem"
   },
   "addSponsorship": {
-    "message": "Add sponsorship"
+    "message": "Lägg till sponsring"
   },
   "needsConfirmation": {
     "message": "Kräver bekräftelse"
@@ -8026,7 +8026,7 @@
     "message": "Mer från Bitwarden"
   },
   "switchProducts": {
-    "message": "Switch products"
+    "message": "Produkter för växlar"
   },
   "freeOrgInvLimitReachedManageBilling": {
     "message": "Gratis organisationer kan ha upp till $SEATCOUNT$ medlemmar. Uppgradera till en betald plan för att bjuda in fler medlemmar.",
@@ -8047,7 +8047,7 @@
     }
   },
   "teamsStarterPlanInvLimitReachedManageBilling": {
-    "message": "Teams Starter plans may have up to $SEATCOUNT$ members. Upgrade to your plan to invite more members.",
+    "message": "Teams Starter-planer kan ha upp till $SEATCOUNT$-medlemmar. Uppgradera till din plan för att bjuda in fler medlemmar.",
     "placeholders": {
       "seatcount": {
         "content": "$1",
@@ -8056,7 +8056,7 @@
     }
   },
   "teamsStarterPlanInvLimitReachedNoManageBilling": {
-    "message": "Teams Starter plans may have up to $SEATCOUNT$ members. Contact your organization owner to upgrade your plan and invite more members.",
+    "message": "Teams Starter-planer kan ha upp till $SEATCOUNT$-medlemmar. Kontakta din organisationsägare för att uppgradera din plan och bjuda in fler medlemmar.",
     "placeholders": {
       "seatcount": {
         "content": "$1",
@@ -8065,7 +8065,7 @@
     }
   },
   "freeOrgMaxCollectionReachedManageBilling": {
-    "message": "Free organizations may have up to $COLLECTIONCOUNT$ collections. Upgrade to a paid plan to add more collections.",
+    "message": "Fria organisationer kan ha upp till $COLLECTIONCOUNT$ samlingar. Uppgradera till en betald plan för att lägga till fler samlingar.",
     "placeholders": {
       "COLLECTIONCOUNT": {
         "content": "$1",
@@ -8074,7 +8074,7 @@
     }
   },
   "freeOrgMaxCollectionReachedNoManageBilling": {
-    "message": "Free organizations may have up to $COLLECTIONCOUNT$ collections. Contact your organization owner to upgrade.",
+    "message": "Fria organisationer kan ha upp till $COLLECTIONCOUNT$ samlingar. Kontakta din organisationsägare för att uppgradera.",
     "placeholders": {
       "COLLECTIONCOUNT": {
         "content": "$1",
@@ -8089,10 +8089,10 @@
     "message": "Exportera data"
   },
   "exportingOrganizationSecretDataTitle": {
-    "message": "Exporting Organization Secret Data"
+    "message": "Export av hemliga organisationsdata"
   },
   "exportingOrganizationSecretDataDescription": {
-    "message": "Only the Secrets Manager data associated with $ORGANIZATION$ will be exported. Items in other products or from other organizations will not be included.",
+    "message": "Endast de Secrets Manager-data som är associerade med $ORGANIZATION$ kommer att exporteras. Objekt i andra produkter eller från andra organisationer kommer inte att inkluderas.",
     "placeholders": {
       "ORGANIZATION": {
         "content": "$1",
@@ -8101,16 +8101,16 @@
     }
   },
   "fileUpload": {
-    "message": "File upload"
+    "message": "Ladda upp fil"
   },
   "upload": {
-    "message": "Upload"
+    "message": "Ladda upp"
   },
   "acceptedFormats": {
-    "message": "Accepted Formats:"
+    "message": "Godkända format:"
   },
   "copyPasteImportContents": {
-    "message": "Copy & paste import contents:"
+    "message": "Kopiera och klistra in importinnehållet:"
   },
   "or": {
     "message": "eller"
@@ -8125,7 +8125,7 @@
     "message": "Lås upp med huvudlösenord"
   },
   "licenseAndBillingManagement": {
-    "message": "License and billing management"
+    "message": "Licens- och faktureringshantering"
   },
   "automaticSync": {
     "message": "Automatisk synkronisering"
@@ -8134,28 +8134,28 @@
     "message": "Manuell uppladdning"
   },
   "manualBillingTokenUploadDesc": {
-    "message": "If you do not want to opt into billing sync, manually upload your license here. This will not automatically unlock Families sponsorships."
+    "message": "Om du inte vill välja fakturasynkronisering ska du ladda upp din licens manuellt här. Detta kommer inte automatiskt att låsa upp Families sponsring."
   },
   "syncLicense": {
     "message": "Synkronisera licens"
   },
   "licenseSyncSuccess": {
-    "message": "Successfully synced license"
+    "message": "Framgångsrik synkronisering av licens"
   },
   "licenseUploadSuccess": {
-    "message": "Successfully uploaded license"
+    "message": "Lyckades ladda upp licens"
   },
   "lastLicenseSync": {
-    "message": "Last license sync"
+    "message": "Senaste synkronisering av licens"
   },
   "billingSyncHelp": {
-    "message": "Billing Sync help"
+    "message": "Hjälp med faktureringssynkronisering"
   },
   "licensePaidFeaturesHelp": {
-    "message": "License paid features help"
+    "message": "Licensbetalda funktioner hjälp"
   },
   "selfHostGracePeriodHelp": {
-    "message": "After your subscription expires, you have 60 days to apply an updated license file to your organization. Grace period ends $GRACE_PERIOD_END_DATE$.",
+    "message": "Efter att din prenumeration har löpt ut har du 60 dagar på dig att tillämpa en uppdaterad licensfil på din organisation. Anståndsperioden slutar $GRACE_PERIOD_END_DATE$.",
     "placeholders": {
       "GRACE_PERIOD_END_DATE": {
         "content": "$1",
@@ -8167,7 +8167,7 @@
     "message": "Ladda upp licens"
   },
   "projectPeopleDescription": {
-    "message": "Grant groups or people access to this project."
+    "message": "Ge grupper eller personer tillgång till detta projekt."
   },
   "projectPeopleSelectHint": {
     "message": "Skriv eller välj personer eller grupper"
@@ -8191,31 +8191,31 @@
     "message": "Tilldela projekt till detta tjänstkonto. "
   },
   "serviceAccountEmptyProjectAccesspolicies": {
-    "message": "Add projects to grant access"
+    "message": "Lägg till projekt för att bevilja åtkomst"
   },
   "canReadWrite": {
-    "message": "Can read, write"
+    "message": "Kan läsa och skriva"
   },
   "groupSlashUser": {
     "message": "Grupp/Användare"
   },
   "lowKdfIterations": {
-    "message": "Low KDF Iterations"
+    "message": "Låga KDF-iterationer"
   },
   "updateLowKdfIterationsDesc": {
-    "message": "Update your encryption settings to meet new security recommendations and improve account protection."
+    "message": "Uppdatera dina krypteringsinställningar så att de uppfyller nya säkerhetsrekommendationer och förbättrar kontots skydd."
   },
   "kdfSettingsChangeLogoutWarning": {
-    "message": "Proceeding will log you out of all active sessions. You will need to log back in and complete two-step login, if any. We recommend exporting your vault before changing your encryption settings to prevent data loss."
+    "message": "Om du fortsätter loggas du ut från alla aktiva sessioner. Du måste logga in igen och genomföra tvåstegsinloggning, om sådan finns. Vi rekommenderar att du exporterar ditt valv innan du ändrar dina krypteringsinställningar för att förhindra dataförlust."
   },
   "secretsManager": {
     "message": "Secrets Manager"
   },
   "secretsManagerAccessDescription": {
-    "message": "Activate user access to Secrets Manager."
+    "message": "Aktivera användaråtkomst till Secrets Manager."
   },
   "userAccessSecretsManagerGA": {
-    "message": "This user can access Secrets Manager"
+    "message": "Denna användare har åtkomst till Secrets Manager"
   },
   "important": {
     "message": "Viktigt:"
@@ -8237,16 +8237,16 @@
     }
   },
   "resolveTheErrorsBelowAndTryAgain": {
-    "message": "Resolve the errors below and try again."
+    "message": "Åtgärda felen nedan och försök igen."
   },
   "description": {
     "message": "Beskrivning"
   },
   "errorReadingImportFile": {
-    "message": "An error occurred when trying to read the import file"
+    "message": "Ett fel uppstod när du försökte läsa importfilen"
   },
   "accessedSecretWithId": {
-    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "message": "Åtkomst till en hemlighet med identifierare: $SECRET_ID$",
     "placeholders": {
       "secret_id": {
         "content": "$1",
@@ -8255,7 +8255,7 @@
     }
   },
   "accessedSecret": {
-    "message": "Accessed secret $SECRET_ID$.",
+    "message": "Åtkomst till hemligheten $SECRET_ID$.",
     "placeholders": {
       "secret_id": {
         "content": "$1",
@@ -8264,7 +8264,7 @@
     }
   },
   "editedSecretWithId": {
-    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "message": "Redigerade en hemlighet med identifierare: $SECRET_ID$",
     "placeholders": {
       "secret_id": {
         "content": "$1",
@@ -8273,7 +8273,7 @@
     }
   },
   "deletedSecretWithId": {
-    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "message": "Raderade en hemlighet med identifierare: $SECRET_ID$",
     "placeholders": {
       "secret_id": {
         "content": "$1",
@@ -8282,7 +8282,7 @@
     }
   },
   "createdSecretWithId": {
-    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "message": "Skapade en ny hemlighet med identifierare: $SECRET_ID$",
     "placeholders": {
       "secret_id": {
         "content": "$1",
@@ -8311,7 +8311,7 @@
     "description": "Link to a downloadable resource. This will be used as part of a larger phrase. Example: Download the Secrets Manager CLI"
   },
   "smCLI": {
-    "message": "Secrets Manager CLI"
+    "message": "Hemlighetshanterare CLI"
   },
   "importSecrets": {
     "message": "Importera hemligheter"
@@ -8320,7 +8320,7 @@
     "message": "Kom igång"
   },
   "complete": {
-    "message": "$COMPLETED$/$TOTAL$ Complete",
+    "message": "$COMPLETED$/$TOTAL$ Komplett",
     "placeholders": {
       "COMPLETED": {
         "content": "$1",
@@ -8339,43 +8339,43 @@
     "message": "Återställ hemligheter"
   },
   "restoreSecretPrompt": {
-    "message": "Are you sure you want to restore this secret?"
+    "message": "Är du säker på att du vill återställa denna hemlighet?"
   },
   "restoreSecretsPrompt": {
     "message": "Är du säker på att du vill återställa dessa hemligheter?"
   },
   "secretRestoredSuccessToast": {
-    "message": "Secret restored"
+    "message": "Hemlig återställning"
   },
   "secretsRestoredSuccessToast": {
-    "message": "Secrets restored"
+    "message": "Hemligheter återställda"
   },
   "selectionIsRequired": {
-    "message": "Selection is required."
+    "message": "Urval krävs."
   },
   "saPeopleWarningTitle": {
     "message": "Åtkomsttoken fortfarande tillgängliga"
   },
   "saPeopleWarningMessage": {
-    "message": "Removing people from a service account does not remove the access tokens they created. For security best practice, it is recommended to revoke access tokens created by people removed from a service account."
+    "message": "Om du tar bort personer från ett servicekonto tas inte de åtkomsttokens som de skapade bort. Av säkerhetsskäl rekommenderar vi att du återkallar åtkomsttokens som skapats av personer som tagits bort från ett servicekonto."
   },
   "smAccessRemovalWarningProjectTitle": {
-    "message": "Remove access to this project"
+    "message": "Ta bort åtkomst till detta projekt"
   },
   "smAccessRemovalWarningProjectMessage": {
-    "message": "This action will remove your access to the project."
+    "message": "Denna åtgärd kommer att ta bort din tillgång till projektet."
   },
   "smAccessRemovalWarningSaTitle": {
-    "message": "Remove access to this service account"
+    "message": "Ta bort åtkomst till detta servicekonto"
   },
   "smAccessRemovalWarningSaMessage": {
-    "message": "This action will remove your access to the service account."
+    "message": "Denna åtgärd kommer att ta bort din tillgång till servicekontot."
   },
   "removeAccess": {
-    "message": "Remove access"
+    "message": "Ta bort åtkomst"
   },
   "checkForBreaches": {
-    "message": "Check known data breaches for this password"
+    "message": "Kontrollera kända dataintrång för detta lösenord"
   },
   "exposedMasterPassword": {
     "message": "Huvudlösenordet har exponerats"
@@ -8387,7 +8387,7 @@
     "message": "Svagt och exponerat huvudlösenord"
   },
   "weakAndBreachedMasterPasswordDesc": {
-    "message": "Weak password identified and found in a data breach. Use a strong and unique password to protect your account. Are you sure you want to use this password?"
+    "message": "Svagt lösenord identifierat och hittat i ett dataintrång. Använd ett starkt och unikt lösenord för att skydda ditt konto. Är du säker på att du vill använda det här lösenordet?"
   },
   "characterMinimum": {
     "message": "Minst $LENGTH$ tecken",
@@ -8408,28 +8408,28 @@
     }
   },
   "inputTrimValidator": {
-    "message": "Input must not contain only whitespace.",
+    "message": "Inmatningen får inte innehålla enbart blanksteg.",
     "description": "Notification to inform the user that a form's input can't contain only whitespace."
   },
   "dismiss": {
-    "message": "Dismiss"
+    "message": "Avfärda"
   },
   "notAvailableForFreeOrganization": {
-    "message": "This feature is not available for free organizations. Contact your organization owner to upgrade."
+    "message": "Den här funktionen är inte tillgänglig för kostnadsfria organisationer. Kontakta din organisationsägare för att uppgradera."
   },
   "smProjectSecretsNoItemsNoAccess": {
-    "message": "Contact your organization's admin to manage secrets for this project.",
+    "message": "Kontakta din organisations administratör för att hantera hemligheter för det här projektet.",
     "description": "The message shown to the user under a project's secrets tab when the user only has read access to the project."
   },
   "enforceOnLoginDesc": {
-    "message": "Require existing members to change their passwords"
+    "message": "Kräva att befintliga medlemmar ändrar sina lösenord"
   },
   "smProjectDeleteAccessRestricted": {
-    "message": "You don't have permissions to delete this project",
+    "message": "Du har inte behörighet att ta bort det här projektet",
     "description": "The individual description shown to the user when the user doesn't have access to delete a project."
   },
   "smProjectsDeleteBulkConfirmation": {
-    "message": "The following projects can not be deleted. Would you like to continue?",
+    "message": "Följande projekt kan inte tas bort. Vill du fortsätta?",
     "description": "The message shown to the user when bulk deleting projects and the user doesn't have access to some projects."
   },
   "updateKdfSettings": {
@@ -8439,75 +8439,75 @@
     "message": "Inloggning påbörjad"
   },
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
-    "message": "Remember this device to make future logins seamless"
+    "message": "Kom ihåg den här enheten för att göra framtida inloggningar smidiga"
   },
   "deviceApprovalRequired": {
-    "message": "Device approval required. Select an approval option below:"
+    "message": "Godkännande av enhet krävs. Välj ett alternativ för godkännande nedan:"
   },
   "deviceApprovalRequiredV2": {
-    "message": "Device approval required"
+    "message": "Godkännande av utrustning krävs"
   },
   "selectAnApprovalOptionBelow": {
-    "message": "Select an approval option below"
+    "message": "Välj ett godkännandealternativ nedan"
   },
   "rememberThisDevice": {
     "message": "Kom ihåg denna enhet"
   },
   "uncheckIfPublicDevice": {
-    "message": "Uncheck if using a public device"
+    "message": "Avmarkera om du använder en offentlig enhet"
   },
   "approveFromYourOtherDevice": {
-    "message": "Approve from your other device"
+    "message": "Godkänn från din andra enhet"
   },
   "requestAdminApproval": {
-    "message": "Request admin approval"
+    "message": "Begär godkännande av administratör"
   },
   "unableToCompleteLogin": {
-    "message": "Unable to complete login"
+    "message": "Det går inte att slutföra inloggningen"
   },
   "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
-    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+    "message": "Du måste logga in på en betrodd enhet eller be din administratör att tilldela dig ett lösenord."
   },
   "trustedDeviceEncryption": {
-    "message": "Trusted device encryption"
+    "message": "Kryptering av betrodd enhet"
   },
   "trustedDevices": {
     "message": "Betrodda enheter"
   },
   "memberDecryptionOptionTdeDescPart1": {
-    "message": "Members will not need a master password when logging in with SSO. Master password is replaced with an encryption key stored on the device, making that device trusted. The first device a member creates their account and logs into will be trusted. New devices will need to be approved by an existing trusted device or by an administrator. The",
+    "message": "Medlemmar behöver inte ett huvudlösenord när de loggar in med SSO. Huvudlösenordet ersätts med en krypteringsnyckel som lagras på enheten, vilket gör den enheten betrodd. Den första enheten som en medlem skapar sitt konto på och loggar in på kommer att vara betrodd. Nya enheter måste godkännas av en befintlig betrodd enhet eller av en administratör. Den",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'Members will not need a master password when logging in with SSO. Master password is replaced with an encryption key stored on the device, making that device trusted. The first device a member creates their account and logs into will be trusted. New devices will need to be approved by an existing trusted device or by an administrator. The single organization policy, SSO required policy, and account recovery administration policy will turn on when this option is used.'"
   },
   "memberDecryptionOptionTdeDescLink1": {
-    "message": "single organization",
+    "message": "enskild organisation",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'Members will not need a master password when logging in with SSO. Master password is replaced with an encryption key stored on the device, making that device trusted. The first device a member creates their account and logs into will be trusted. New devices will need to be approved by an existing trusted device or by an administrator. The single organization policy, SSO required policy, and account recovery administration policy will turn on when this option is used.'"
   },
   "memberDecryptionOptionTdeDescPart2": {
-    "message": "policy,",
+    "message": "politik,",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'Members will not need a master password when logging in with SSO. Master password is replaced with an encryption key stored on the device, making that device trusted. The first device a member creates their account and logs into will be trusted. New devices will need to be approved by an existing trusted device or by an administrator. The single organization policy, SSO required policy, and account recovery administration policy will turn on when this option is used.'"
   },
   "memberDecryptionOptionTdeDescLink2": {
-    "message": "SSO required",
+    "message": "SSO krävs",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'Members will not need a master password when logging in with SSO. Master password is replaced with an encryption key stored on the device, making that device trusted. The first device a member creates their account and logs into will be trusted. New devices will need to be approved by an existing trusted device or by an administrator. The single organization policy, SSO required policy, and account recovery administration policy will turn on when this option is used.'"
   },
   "memberDecryptionOptionTdeDescPart3": {
-    "message": "policy, and",
+    "message": "politik, och",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'Members will not need a master password when logging in with SSO. Master password is replaced with an encryption key stored on the device, making that device trusted. The first device a member creates their account and logs into will be trusted. New devices will need to be approved by an existing trusted device or by an administrator. The single organization policy, SSO required policy, and account recovery administration policy will turn on when this option is used.'"
   },
   "memberDecryptionOptionTdeDescLink3": {
-    "message": "account recovery administration",
+    "message": "administration av kontoåterställning",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'Members will not need a master password when logging in with SSO. Master password is replaced with an encryption key stored on the device, making that device trusted. The first device a member creates their account and logs into will be trusted. New devices will need to be approved by an existing trusted device or by an administrator. The single organization policy, SSO required policy, and account recovery administration policy will turn on when this option is used.'"
   },
   "memberDecryptionOptionTdeDescPart4": {
-    "message": "policy will turn on when this option is used.",
+    "message": "kommer att aktiveras när detta alternativ används.",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'Members will not need a master password when logging in with SSO. Master password is replaced with an encryption key stored on the device, making that device trusted. The first device a member creates their account and logs into will be trusted. New devices will need to be approved by an existing trusted device or by an administrator. The single organization policy, SSO required policy, and account recovery administration policy will turn on when this option is used.'"
   },
   "orgPermissionsUpdatedMustSetPassword": {
-    "message": "Your organization permissions were updated, requiring you to set a master password.",
+    "message": "Dina organisationsbehörigheter har uppdaterats och du måste ange ett huvudlösenord.",
     "description": "Used as a card title description on the set password page to explain why the user is there"
   },
   "orgRequiresYouToSetPassword": {
-    "message": "Your organization requires you to set a master password.",
+    "message": "Din organisation kräver att du anger ett huvudlösenord.",
     "description": "Used as a card title description on the set password page to explain why the user is there"
   },
   "cardMetrics": {
@@ -8520,7 +8520,7 @@
     }
   },
   "notFound": {
-    "message": "$RESOURCE$ not found",
+    "message": "$RESOURCE$ hittades inte",
     "placeholders": {
       "resource": {
         "content": "$1",
@@ -8536,79 +8536,79 @@
     "message": "Återställ konto"
   },
   "updatedTempPassword": {
-    "message": "User updated a password issued through account recovery."
+    "message": "Användaren uppdaterade ett lösenord som utfärdats genom kontoåterställning."
   },
   "activatedAccessToSecretsManager": {
-    "message": "Activated access to Secrets Manager",
+    "message": "Aktiverad tillgång till Secrets Manager",
     "description": "Confirmation message that one or more users gained access to Secrets Manager"
   },
   "activateAccess": {
-    "message": "Activate access"
+    "message": "Aktivera åtkomst"
   },
   "bulkEnableSecretsManagerDescription": {
-    "message": "Grant the following members access to Secrets Manager. The role granted in the Password Manager will apply to Secrets Manager.",
+    "message": "Ge följande medlemmar tillgång till Secrets Manager. Den roll som beviljas i Password Manager kommer att gälla för Secrets Manager.",
     "description": "This description is shown to an admin when they are attempting to add more users to Secrets Manager."
   },
   "activateSecretsManager": {
-    "message": "Activate Secrets Manager"
+    "message": "Aktivera Secrets Manager"
   },
   "yourOrganizationsFingerprint": {
     "message": "Din organisations fingeravtrycksfras",
     "description": "A 'fingerprint phrase' is a unique word phrase (similar to a passphrase) that a user can use to authenticate their organization's public key with another user, for the purposes of sharing."
   },
   "deviceApprovals": {
-    "message": "Device approvals"
+    "message": "Godkända enheter"
   },
   "deviceApprovalsDesc": {
-    "message": "Approve login requests below to allow the requesting member to finish logging in. Unapproved requests expire after 1 week. Verify the member’s information before approving."
+    "message": "Godkänn inloggningsbegäran nedan så att den begärande medlemmen kan slutföra inloggningen. Ogodkända förfrågningar upphör att gälla efter 1 vecka. Verifiera medlemmens information innan du godkänner."
   },
   "deviceInfo": {
-    "message": "Device info"
+    "message": "Information om enheten"
   },
   "time": {
     "message": "Tid"
   },
   "denyAllRequests": {
-    "message": "Deny all requests"
+    "message": "Avslå alla förfrågningar"
   },
   "denyRequest": {
-    "message": "Deny request"
+    "message": "Avvisa begäran"
   },
   "approveRequest": {
-    "message": "Approve request"
+    "message": "Godkänna begäran"
   },
   "deviceApproved": {
-    "message": "Device approved"
+    "message": "Godkänd enhet"
   },
   "deviceRemoved": {
-    "message": "Device removed"
+    "message": "Enhet borttagen"
   },
   "removeDevice": {
-    "message": "Remove device"
+    "message": "Ta bort enheten"
   },
   "removeDeviceConfirmation": {
-    "message": "Are you sure you want to remove this device?"
+    "message": "Är du säker på att du vill ta bort den här enheten?"
   },
   "noDeviceRequests": {
     "message": "Inga enhetsförfrågningar"
   },
   "noDeviceRequestsDesc": {
-    "message": "Member device approval requests will appear here"
+    "message": "Begäran om godkännande av medlemmars enheter kommer att visas här"
   },
   "loginRequestDenied": {
-    "message": "Login request denied"
+    "message": "Inloggningsbegäran nekad"
   },
   "allLoginRequestsDenied": {
-    "message": "All login requests denied"
+    "message": "Alla inloggningsbegäranden nekade"
   },
   "loginRequestApproved": {
-    "message": "Login request approved"
+    "message": "Inloggningsbegäran godkänd"
   },
   "removeOrgUserNoMasterPasswordTitle": {
-    "message": "Account does not have master password"
+    "message": "Kontot har inte något huvudlösenord"
   },
   "removeOrgUserNoMasterPasswordDesc": {
-    "message": "Removing $USER$ without setting a master password for them may restrict access to their full account. Are you sure you want to continue?",
+    "message": "Om du tar bort $USER$ utan att ange ett huvudlösenord för dem kan det begränsa åtkomsten till deras fullständiga konto. Är du säker på att du vill fortsätta?",
     "placeholders": {
       "user": {
         "content": "$1",
@@ -8620,10 +8620,10 @@
     "message": "Inget huvudlösenord"
   },
   "removeMembersWithoutMasterPasswordWarning": {
-    "message": "Removing members who do not have master passwords without setting one for them may restrict access to their full account."
+    "message": "Om du tar bort medlemmar som inte har huvudlösenord utan att ange ett för dem kan det begränsa åtkomsten till deras fullständiga konto."
   },
   "approvedAuthRequest": {
-    "message": "Approved device for $ID$.",
+    "message": "Godkänd enhet för $ID$.",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -8632,7 +8632,7 @@
     }
   },
   "rejectedAuthRequest": {
-    "message": "Denied device for $ID$.",
+    "message": "Nekad enhet för $ID$.",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -8641,13 +8641,13 @@
     }
   },
   "requestedDeviceApproval": {
-    "message": "Requested device approval."
+    "message": "Begärde godkännande av enheten."
   },
   "tdeOffboardingPasswordSet": {
-    "message": "User set a master password during TDE offboarding."
+    "message": "Användaren ställde in ett huvudlösenord under TDE-offboarding."
   },
   "startYour7DayFreeTrialOfBitwardenFor": {
-    "message": "Start your 7-Day free trial of Bitwarden for $ORG$",
+    "message": "Starta din 7-dagars gratis provperiod av Bitwarden för $ORG$",
     "placeholders": {
       "org": {
         "content": "$1",
@@ -8668,34 +8668,34 @@
     "message": "Nästa"
   },
   "ssoLoginIsRequired": {
-    "message": "SSO login is required"
+    "message": "SSO-inloggning krävs"
   },
   "selectedRegionFlag": {
-    "message": "Selected region flag"
+    "message": "Flagga för vald region"
   },
   "accountSuccessfullyCreated": {
     "message": "Ditt konto har skapats!"
   },
   "adminApprovalRequested": {
-    "message": "Admin approval requested"
+    "message": "Admin godkännande begärs"
   },
   "adminApprovalRequestSentToAdmins": {
-    "message": "Your request has been sent to your admin."
+    "message": "Din begäran har skickats till din administratör."
   },
   "troubleLoggingIn": {
     "message": "Problem med att logga in?"
   },
   "loginApproved": {
-    "message": "Login approved"
+    "message": "Inloggning godkänd"
   },
   "userEmailMissing": {
-    "message": "User email missing"
+    "message": "Användarens e-postadress saknas"
   },
   "activeUserEmailNotFoundLoggingYouOut": {
-    "message": "Active user email not found. Logging you out."
+    "message": "E-postadressen för aktiv användare hittades inte. Loggar ut dig."
   },
   "deviceTrusted": {
-    "message": "Device trusted"
+    "message": "Enhet betrodd"
   },
   "inviteUsers": {
     "message": "Bjud in användare"
@@ -8710,19 +8710,19 @@
     }
   },
   "secretsManagerForPlanDesc": {
-    "message": "For engineering and DevOps teams to manage secrets throughout the software development lifecycle."
+    "message": "För teknik- och DevOps-team som hanterar hemligheter under hela livscykeln för programvaruutveckling."
   },
   "free2PersonOrganization": {
-    "message": "Free 2-person Organizations"
+    "message": "Gratis organisationer för 2 personer"
   },
   "unlimitedSecrets": {
-    "message": "Unlimited secrets"
+    "message": "Obegränsade hemligheter"
   },
   "unlimitedProjects": {
     "message": "Obegränsade projekt"
   },
   "projectsIncluded": {
-    "message": "$COUNT$ projects included",
+    "message": "$COUNT$ projekt som ingår",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -8731,7 +8731,7 @@
     }
   },
   "serviceAccountsIncluded": {
-    "message": "$COUNT$ service accounts included",
+    "message": "$COUNT$ servicekonton ingår",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -8740,7 +8740,7 @@
     }
   },
   "additionalServiceAccountCost": {
-    "message": "$COST$ per month for additional service accounts",
+    "message": "$COST$ per månad för ytterligare servicekonton",
     "placeholders": {
       "cost": {
         "content": "$1",
@@ -8752,13 +8752,13 @@
     "message": "Prenumerera på Secrets Manager"
   },
   "addSecretsManagerUpgradeDesc": {
-    "message": "Add Secrets Manager to your upgraded plan to maintain access to any secrets created with your previous plan."
+    "message": "Lägg till Secrets Manager till din uppgraderade plan för att behålla åtkomsten till alla hemligheter som skapats med din tidigare plan."
   },
   "additionalServiceAccounts": {
-    "message": "Additional service accounts"
+    "message": "Ytterligare servicekonton"
   },
   "includedServiceAccounts": {
-    "message": "Your plan comes with $COUNT$ service accounts.",
+    "message": "Din plan levereras med $COUNT$ servicekonton.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -8767,7 +8767,7 @@
     }
   },
   "addAdditionalServiceAccounts": {
-    "message": "You can add additional service accounts for $COST$ per month.",
+    "message": "Du kan lägga till ytterligare servicekonton för $COST$ per månad.",
     "placeholders": {
       "cost": {
         "content": "$1",
@@ -8779,28 +8779,28 @@
     "message": "Samlingshantering"
   },
   "collectionManagementDesc": {
-    "message": "Manage the collection behavior for the organization"
+    "message": "Hantera insamlingsbeteendet för organisationen"
   },
   "limitCollectionCreationDesc": {
-    "message": "Limit collection creation to owners and admins"
+    "message": "Begränsa skapandet av samlingar till ägare och administratörer"
   },
   "limitCollectionDeletionDesc": {
-    "message": "Limit collection deletion to owners and admins"
+    "message": "Begränsa borttagning av samlingar till ägare och administratörer"
   },
   "limitItemDeletionDescription": {
-    "message": "Limit item deletion to members with the Manage collection permissions"
+    "message": "Begränsa borttagning av objekt till medlemmar med behörigheten Hantera samling"
   },
   "allowAdminAccessToAllCollectionItemsDesc": {
     "message": "Ägare och administratörer kan hantera alla samlingar och objekt"
   },
   "updatedCollectionManagement": {
-    "message": "Updated collection management setting"
+    "message": "Uppdaterad inställning för samlingshantering"
   },
   "passwordManagerPlanPrice": {
-    "message": "Password Manager plan price"
+    "message": "Pris för Password Manager-plan"
   },
   "secretsManagerPlanPrice": {
-    "message": "Secrets Manager plan price"
+    "message": "Pris för Secrets Manager-planen"
   },
   "passwordManager": {
     "message": "Lösenordshanterare"
@@ -8809,16 +8809,16 @@
     "message": "Gratis organisation"
   },
   "limitServiceAccounts": {
-    "message": "Limit service accounts (optional)"
+    "message": "Begränsa servicekonton (tillval)"
   },
   "limitServiceAccountsDesc": {
-    "message": "Set a limit for your service accounts. Once this limit is reached, you will not be able to create new service accounts."
+    "message": "Ange en gräns för dina servicekonton. När den här gränsen har nåtts kan du inte skapa nya servicekonton."
   },
   "serviceAccountLimit": {
-    "message": "Service account limit (optional)"
+    "message": "Gräns för servicekonto (valfritt)"
   },
   "maxServiceAccountCost": {
-    "message": "Max potential service account cost"
+    "message": "Max potentiell kostnad för servicekonto"
   },
   "loggedInExclamation": {
     "message": "Inloggad!"
@@ -8836,32 +8836,32 @@
     "message": "Server-URL"
   },
   "selfHostBaseUrl": {
-    "message": "Self-host server URL",
+    "message": "URL för server med egen värd",
     "description": "Label for field requesting a self-hosted integration service URL"
   },
   "alreadyHaveAccount": {
     "message": "Har du redan ett konto?"
   },
   "toggleSideNavigation": {
-    "message": "Toggle side navigation"
+    "message": "Växla sidonavigering"
   },
   "skipToContent": {
-    "message": "Skip to content"
+    "message": "Hoppa till innehåll"
   },
   "managePermissionRequired": {
-    "message": "At least one member or group must have can manage permission."
+    "message": "Minst en medlem eller grupp måste ha behörigheten can manage."
   },
   "typePasskey": {
     "message": "Nyckel"
   },
   "passkeyNotCopied": {
-    "message": "Passkey will not be copied"
+    "message": "Nyckeln kommer inte att kopieras"
   },
   "passkeyNotCopiedAlert": {
-    "message": "The passkey will not be copied to the cloned item. Do you want to continue cloning this item?"
+    "message": "Nyckeln kommer inte att kopieras till det klonade föremålet. Vill du fortsätta klona det här objektet?"
   },
   "modifiedCollectionManagement": {
-    "message": "Modified collection management setting $ID$.",
+    "message": "Modifierad inställning för samlingshantering $ID$.",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -8877,34 +8877,34 @@
     "message": "Installera webbläsartillägg"
   },
   "installBrowserExtensionDetails": {
-    "message": "Use the extension to quickly save logins and auto-fill forms without opening the web app."
+    "message": "Använd tillägget för att snabbt spara inloggningar och automatiskt fylla i formulär utan att öppna webbappen."
   },
   "projectAccessUpdated": {
-    "message": "Project access updated"
+    "message": "Uppdatering av projektåtkomst"
   },
   "unexpectedErrorSend": {
     "message": "Ett oväntat fel inträffade när denna Send laddades. Försök igen senare."
   },
   "seatLimitReached": {
-    "message": "Seat limit has been reached"
+    "message": "Platsgränsen har nåtts"
   },
   "contactYourProvider": {
-    "message": "Contact your provider to purchase additional seats."
+    "message": "Kontakta din leverantör för att köpa ytterligare platser."
   },
   "seatLimitReachedContactYourProvider": {
-    "message": "Seat limit has been reached. Contact your provider to purchase additional seats."
+    "message": "Gränsen för antal platser har nåtts. Kontakta din leverantör för att köpa ytterligare platser."
   },
   "collectionAccessRestricted": {
-    "message": "Collection access is restricted"
+    "message": "Tillgången till samlingen är begränsad"
   },
   "readOnlyCollectionAccess": {
-    "message": "You do not have access to manage this collection."
+    "message": "Du har inte tillgång till att hantera den här samlingen."
   },
   "grantManageCollectionWarningTitle": {
-    "message": "Missing Manage Collection Permissions"
+    "message": "Saknar behörigheter för hantering av samlingar"
   },
   "grantManageCollectionWarning": {
-    "message": "Grant Manage collection permissions to allow full collection management including deletion of collection."
+    "message": "Ge behörigheten Manage collection för att möjliggöra fullständig hantering av samlingen, inklusive borttagning av samlingen."
   },
   "grantCollectionAccess": {
     "message": "Ge grupper eller medlemmar tillgång till denna samling."
@@ -8916,28 +8916,36 @@
     "message": "Administratörer kan komma åt och hantera samlingar."
   },
   "serviceAccountAccessUpdated": {
-    "message": "Service account access updated"
+    "message": "Åtkomst till servicekonto uppdaterad"
   },
   "commonImportFormats": {
-    "message": "Common formats",
+    "message": "Vanliga format",
     "description": "Label indicating the most common import formats"
   },
   "uriMatchDefaultStrategyHint": {
-    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "message": "Detektering av URI-matchning är hur Bitwarden identifierar autofyllförslag.",
     "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
   },
   "regExAdvancedOptionWarning": {
-    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "message": "\"Reguljär uttryck\" är ett avancerat alternativ med ökad risk för att röja inloggningsuppgifter.",
     "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
   },
   "startsWithAdvancedOptionWarning": {
-    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "message": "\"Börjar med\" är ett avancerat alternativ med ökad risk för att röja inloggningsuppgifter.",
     "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
   },
   "uriMatchWarningDialogLink": {
-    "message": "More about match detection",
+    "message": "Mer om matchdetektering",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Avancerade inställningar",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Varning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "För att behålla din prenumeration på $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -8953,23 +8961,23 @@
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method'"
   },
   "organizationInformation": {
-    "message": "Organization information"
+    "message": "Företagsuppgifter"
   },
   "confirmationDetails": {
-    "message": "Confirmation details"
+    "message": "Bekräftelseuppgifter"
   },
   "smFreeTrialThankYou": {
-    "message": "Thank you for signing up for Bitwarden Secrets Manager!"
+    "message": "Tack för att du anmälde dig till Bitwarden Secrets Manager!"
   },
   "smFreeTrialConfirmationEmail": {
-    "message": "We've sent a confirmation email to your email at "
+    "message": "Vi har skickat ett bekräftelsemail till din e-postadress på"
   },
   "sorryToSeeYouGo": {
-    "message": "Sorry to see you go! Help improve Bitwarden by sharing why you're canceling.",
+    "message": "Ledsen att se dig gå! Hjälp till att förbättra Bitwarden genom att dela med dig av varför du avbokar.",
     "description": "A message shown to users as part of an offboarding survey asking them to provide more information on their subscription cancelation."
   },
   "selectCancellationReason": {
-    "message": "Select a reason for canceling",
+    "message": "Välj en orsak till avbeställningen",
     "description": "Used as a form field label for a select input on the offboarding survey."
   },
   "anyOtherFeedback": {
@@ -8977,19 +8985,19 @@
     "description": "Used as a form field label for a textarea input on the offboarding survey."
   },
   "missingFeatures": {
-    "message": "Missing features",
+    "message": "Saknade funktioner",
     "description": "An option for the offboarding survey shown when a user cancels their subscription."
   },
   "movingToAnotherTool": {
-    "message": "Moving to another tool",
+    "message": "Flytta till ett annat verktyg",
     "description": "An option for the offboarding survey shown when a user cancels their subscription."
   },
   "tooDifficultToUse": {
-    "message": "Too difficult to use",
+    "message": "För svårt att använda",
     "description": "An option for the offboarding survey shown when a user cancels their subscription."
   },
   "notUsingEnough": {
-    "message": "Not using enough",
+    "message": "Använder inte tillräckligt",
     "description": "An option for the offboarding survey shown when a user cancels their subscription."
   },
   "tooExpensive": {
@@ -9003,16 +9011,16 @@
     "message": "Välkommen till den nya och förbättrade webbappen. Läs mer om vad som har förändrats."
   },
   "releaseBlog": {
-    "message": "Read release blog"
+    "message": "Läs release-blogg"
   },
   "adminConsole": {
-    "message": "Admin Console"
+    "message": "Adminkonsol"
   },
   "providerPortal": {
-    "message": "Provider Portal"
+    "message": "Portal för leverantörer"
   },
   "success": {
-    "message": "Success"
+    "message": "Lyckades"
   },
   "restrictedGroupAccess": {
     "message": "Du kan inte lägga till dig själv i grupper."
@@ -9027,13 +9035,13 @@
     "message": "Tilldela till samlingar"
   },
   "assignToTheseCollections": {
-    "message": "Assign to these collections"
+    "message": "Tilldela till dessa samlingar"
   },
   "bulkCollectionAssignmentDialogDescriptionSingular": {
-    "message": "Only organization members with access to these collections will be able to see the item."
+    "message": "Endast organisationsmedlemmar med tillgång till dessa samlingar kan se objektet."
   },
   "bulkCollectionAssignmentDialogDescriptionPlural": {
-    "message": "Only organization members with access to these collections will be able to see the items."
+    "message": "Endast organisationsmedlemmar med tillgång till dessa samlingar kan se objekten."
   },
   "selectCollectionsToAssign": {
     "message": "Välj samlingar att tilldela"
@@ -9042,10 +9050,10 @@
     "message": "Inga samlingar har tilldelats"
   },
   "successfullyAssignedCollections": {
-    "message": "Successfully assigned collections"
+    "message": "Framgångsrikt tilldelade samlingar"
   },
   "bulkCollectionAssignmentWarning": {
-    "message": "You have selected $TOTAL_COUNT$ items. You cannot update $READONLY_COUNT$ of the items because you do not have edit permissions.",
+    "message": "Du har valt $TOTAL_COUNT$ artiklar. Du kan inte uppdatera $READONLY_COUNT$ av objekten eftersom du inte har redigeringsbehörighet.",
     "placeholders": {
       "total_count": {
         "content": "$1",
@@ -9067,37 +9075,37 @@
     "message": "Objekt"
   },
   "assignedSeats": {
-    "message": "Assigned seats"
+    "message": "Tilldelade platser"
   },
   "assigned": {
-    "message": "Assigned"
+    "message": "Tilldelad"
   },
   "used": {
-    "message": "Used"
+    "message": "Använda"
   },
   "remaining": {
-    "message": "Remaining"
+    "message": "Återstående"
   },
   "unlinkOrganization": {
-    "message": "Unlink organization"
+    "message": "Koppla bort organisation"
   },
   "manageSeats": {
-    "message": "MANAGE SEATS"
+    "message": "HANTERA SÄTEN"
   },
   "manageSeatsDescription": {
-    "message": "Adjustments to seats will be reflected in the next billing cycle."
+    "message": "Justeringar av platser kommer att återspeglas i nästa faktureringscykel."
   },
   "unassignedSeatsDescription": {
-    "message": "Unassigned seats"
+    "message": "Ej tilldelade platser"
   },
   "purchaseSeatDescription": {
-    "message": "Additional seats purchased"
+    "message": "Ytterligare platser köpta"
   },
   "assignedSeatCannotUpdate": {
-    "message": "Assigned Seats can not be updated. Please contact your organization owner for assistance."
+    "message": "Tilldelade platser kan inte uppdateras. Vänligen kontakta din organisationsägare för hjälp."
   },
   "subscriptionUpdateFailed": {
-    "message": "Subscription update failed"
+    "message": "Uppdatering av prenumeration misslyckades"
   },
   "trial": {
     "message": "Provperiod",
@@ -9108,11 +9116,11 @@
     "description": "A subscription status label"
   },
   "subscriptionExpired": {
-    "message": "Subscription expired",
+    "message": "Bokdistribution har gått ut",
     "description": "The date header used when a subscription is past due."
   },
   "pastDueWarningForChargeAutomatically": {
-    "message": "You have a grace period of $DAYS$ days from your subscription expiration date to maintain your subscription. Please resolve the past due invoices by $SUSPENSION_DATE$.",
+    "message": "Du har en anståndsperiod på $DAYS$ dagar från prenumerationens utgångsdatum för att behålla din prenumeration. Vänligen lös de förfallna fakturorna senast $SUSPENSION_DATE$.",
     "placeholders": {
       "days": {
         "content": "$1",
@@ -9126,7 +9134,7 @@
     "description": "A warning shown to the user when their subscription is past due and they are charged automatically."
   },
   "pastDueWarningForSendInvoice": {
-    "message": "You have a grace period of $DAYS$ days from the date your first unpaid invoice is due to maintain your subscription. Please resolve the past due invoices by $SUSPENSION_DATE$.",
+    "message": "Du har en anståndsperiod på $DAYS$ dagar från det datum då din första obetalda faktura förfaller till betalning för att behålla din prenumeration. Vänligen lös de förfallna fakturorna senast $SUSPENSION_DATE$.",
     "placeholders": {
       "days": {
         "content": "$1",
@@ -9144,15 +9152,15 @@
     "description": "The header of a warning box shown to a user whose subscription is unpaid."
   },
   "toReactivateYourSubscription": {
-    "message": "To reactivate your subscription, please resolve the past due invoices.",
+    "message": "För att återaktivera din prenumeration, vänligen betala de förfallna fakturorna.",
     "description": "The body of a warning box shown to a user whose subscription is unpaid."
   },
   "cancellationDate": {
-    "message": "Cancellation date",
+    "message": "Datum för avbokning",
     "description": "The date header used when a subscription is cancelled."
   },
   "machineAccountsCannotCreate": {
-    "message": "Machine accounts cannot be created in suspended organizations. Please contact your organization owner for assistance."
+    "message": "Det går inte att skapa maskinkonton i avstängda organisationer. Kontakta din organisationsägare för att få hjälp."
   },
   "machineAccount": {
     "message": "Maskinkonto",
@@ -9167,11 +9175,11 @@
     "description": "Title for creating a new machine account."
   },
   "machineAccountsNoItemsMessage": {
-    "message": "Create a new machine account to get started automating secret access.",
+    "message": "Skapa ett nytt maskinkonto för att komma igång med att automatisera hemlig åtkomst.",
     "description": "Message to encourage the user to start creating machine accounts."
   },
   "machineAccountsNoItemsTitle": {
-    "message": "Nothing to show yet",
+    "message": "Inget att visa ännu",
     "description": "Title to indicate that there are no machine accounts to display."
   },
   "deleteMachineAccounts": {
@@ -9187,7 +9195,7 @@
     "description": "Action to view the details of a machine account."
   },
   "deleteMachineAccountDialogMessage": {
-    "message": "Deleting machine account $MACHINE_ACCOUNT$ is permanent and irreversible.",
+    "message": "Radering av maskinkontot $MACHINE_ACCOUNT$ är permanent och oåterkallelig.",
     "placeholders": {
       "machine_account": {
         "content": "$1",
@@ -9196,7 +9204,7 @@
     }
   },
   "deleteMachineAccountsDialogMessage": {
-    "message": "Deleting machine accounts is permanent and irreversible."
+    "message": "Radering av maskinkonton är permanent och oåterkallelig."
   },
   "deleteMachineAccountsConfirmMessage": {
     "message": "Radera $COUNT$ maskinkonton",
@@ -9208,13 +9216,13 @@
     }
   },
   "deleteMachineAccountToast": {
-    "message": "Machine account deleted"
+    "message": "Maskinkonto raderat"
   },
   "deleteMachineAccountsToast": {
-    "message": "Machine accounts deleted"
+    "message": "Maskinkonton raderade"
   },
   "searchMachineAccounts": {
-    "message": "Search machine accounts",
+    "message": "Konton för sökmaskiner",
     "description": "Placeholder text for searching machine accounts."
   },
   "editMachineAccount": {
@@ -9222,46 +9230,46 @@
     "description": "Title for editing a machine account."
   },
   "machineAccountName": {
-    "message": "Machine account name",
+    "message": "Maskinens kontonamn",
     "description": "Label for the name of a machine account"
   },
   "machineAccountCreated": {
-    "message": "Machine account created",
+    "message": "Maskinkonto skapat",
     "description": "Notifies that a new machine account has been created"
   },
   "machineAccountUpdated": {
-    "message": "Machine account updated",
+    "message": "Uppdatering av maskinkonto",
     "description": "Notifies that a machine account has been updated"
   },
   "projectMachineAccountsDescription": {
-    "message": "Grant machine accounts access to this project."
+    "message": "Ge maskinkonton tillgång till detta projekt."
   },
   "projectMachineAccountsSelectHint": {
-    "message": "Type or select machine accounts"
+    "message": "Skriv in eller välj maskinkonton"
   },
   "projectEmptyMachineAccountAccessPolicies": {
-    "message": "Add machine accounts to grant access"
+    "message": "Lägg till maskinkonton för att bevilja åtkomst"
   },
   "machineAccountPeopleDescription": {
-    "message": "Grant groups or people access to this machine account."
+    "message": "Ge grupper eller personer tillgång till detta maskinkonto."
   },
   "machineAccountProjectsDescription": {
-    "message": "Assign projects to this machine account. "
+    "message": "Tilldela projekt till detta maskinkonto."
   },
   "createMachineAccount": {
     "message": "Skapa ett maskinkonto"
   },
   "maPeopleWarningMessage": {
-    "message": "Removing people from a machine account does not remove the access tokens they created. For security best practice, it is recommended to revoke access tokens created by people removed from a machine account."
+    "message": "Om du tar bort personer från ett maskinkonto tas inte de åtkomsttokens som de skapade bort. Av säkerhetsskäl rekommenderas att du återkallar åtkomsttokens som skapats av personer som tagits bort från ett maskinkonto."
   },
   "smAccessRemovalWarningMaTitle": {
-    "message": "Remove access to this machine account"
+    "message": "Ta bort åtkomst till detta maskinkonto"
   },
   "smAccessRemovalWarningMaMessage": {
-    "message": "This action will remove your access to the machine account."
+    "message": "Denna åtgärd kommer att ta bort din tillgång till maskinkontot."
   },
   "machineAccountsIncluded": {
-    "message": "$COUNT$ machine accounts included",
+    "message": "$COUNT$ maskinkonton ingår",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -9270,7 +9278,7 @@
     }
   },
   "additionalMachineAccountCost": {
-    "message": "$COST$ per month for additional machine accounts",
+    "message": "$COST$ per månad för ytterligare maskinkonton",
     "placeholders": {
       "cost": {
         "content": "$1",
@@ -9279,10 +9287,10 @@
     }
   },
   "additionalMachineAccounts": {
-    "message": "Additional machine accounts"
+    "message": "Ytterligare maskinkonton"
   },
   "includedMachineAccounts": {
-    "message": "Your plan comes with $COUNT$ machine accounts.",
+    "message": "Din plan levereras med $COUNT$ maskinkonton.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -9291,7 +9299,7 @@
     }
   },
   "addAdditionalMachineAccounts": {
-    "message": "You can add additional machine accounts for $COST$ per month.",
+    "message": "Du kan lägga till ytterligare maskinkonton för $COST$ per månad.",
     "placeholders": {
       "cost": {
         "content": "$1",
@@ -9300,19 +9308,19 @@
     }
   },
   "limitMachineAccounts": {
-    "message": "Limit machine accounts (optional)"
+    "message": "Begränsa maskinkonton (valfritt)"
   },
   "limitMachineAccountsDesc": {
-    "message": "Set a limit for your machine accounts. Once this limit is reached, you will not be able to create new machine accounts."
+    "message": "Ställ in en gräns för dina maskinkonton. När denna gräns har uppnåtts kan du inte skapa nya maskinkonton."
   },
   "machineAccountLimit": {
-    "message": "Machine account limit (optional)"
+    "message": "Gräns för maskinkonto (valfritt)"
   },
   "maxMachineAccountCost": {
-    "message": "Max potential machine account cost"
+    "message": "Max potentiell kostnad för maskinkonto"
   },
   "machineAccountAccessUpdated": {
-    "message": "Machine account access updated"
+    "message": "Uppdatering av åtkomst till maskinkonto"
   },
   "restrictedGroupAccessDesc": {
     "message": "Du kan inte lägga till dig själv i en grupp."
@@ -9321,10 +9329,10 @@
     "message": "Radera leverantör"
   },
   "deleteProviderConfirmation": {
-    "message": "Deleting a provider is permanent and irreversible. Enter your master password to confirm the deletion of the provider and all associated data."
+    "message": "Radering av en leverantör är permanent och oåterkallelig. Ange ditt huvudlösenord för att bekräfta borttagningen av leverantören och alla tillhörande data."
   },
   "deleteProviderName": {
-    "message": "Cannot delete $ID$",
+    "message": "Det går inte att ta bort $ID$",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -9333,7 +9341,7 @@
     }
   },
   "deleteProviderWarningDescription": {
-    "message": "You must unlink all clients before you can delete $ID$.",
+    "message": "Du måste koppla bort alla klienter innan du kan ta bort $ID$.",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -9342,22 +9350,22 @@
     }
   },
   "providerDeleted": {
-    "message": "Provider deleted"
+    "message": "Leverantör borttagen"
   },
   "providerDeletedDesc": {
-    "message": "The Provider and all associated data has been deleted."
+    "message": "Leverantören och alla tillhörande uppgifter har raderats."
   },
   "deleteProviderRecoverConfirmDesc": {
-    "message": "You have requested to delete this Provider. Use the button below to confirm."
+    "message": "Du har begärt att få radera denna leverantör. Använd knappen nedan för att bekräfta."
   },
   "deleteProviderWarning": {
-    "message": "Deleting your provider is permanent. It cannot be undone."
+    "message": "Radering av din leverantör är permanent. Det går inte att ångra."
   },
   "errorAssigningTargetCollection": {
-    "message": "Error assigning target collection."
+    "message": "Fel vid tilldelning av målsamling."
   },
   "errorAssigningTargetFolder": {
-    "message": "Error assigning target folder."
+    "message": "Fel vid tilldelning av målmapp."
   },
   "integrationsAndSdks": {
     "message": "Integrationer och SDK:er",
@@ -9373,65 +9381,65 @@
     "message": "SDK:er"
   },
   "sdksDesc": {
-    "message": "Use Bitwarden Secrets Manager SDK in the following programming languages to build your own applications."
+    "message": "Använd Bitwarden Secrets Manager SDK i följande programmeringsspråk för att bygga dina egna applikationer."
   },
   "ssoDescStart": {
-    "message": "Configure",
+    "message": "Konfigurera",
     "description": "This represents the beginning of a sentence, broken up to include links. The full sentence will be 'Configure single sign-on for Bitwarden using the implementation guide for your Identity Provider."
   },
   "ssoDescEnd": {
-    "message": "for Bitwarden using the implementation guide for your Identity Provider.",
+    "message": "för Bitwarden med hjälp av implementeringsguiden för din Identity Provider.",
     "description": "This represents the end of a sentence, broken up to include links. The full sentence will be 'Configure single sign-on for Bitwarden using the implementation guide for your Identity Provider."
   },
   "userProvisioning": {
-    "message": "User provisioning"
+    "message": "Tillhandahållande av användare"
   },
   "scimIntegration": {
     "message": "SCIM"
   },
   "scimIntegrationDescStart": {
-    "message": "Configure ",
+    "message": "Konfigurera",
     "description": "This represents the beginning of a sentence, broken up to include links. The full sentence will be 'Configure SCIM (System for Cross-domain Identity Management) to automatically provision users and groups to Bitwarden using the implementation guide for your Identity Provider"
   },
   "scimIntegrationDescEnd": {
-    "message": "(System for Cross-domain Identity Management) to automatically provision users and groups to Bitwarden using the implementation guide for your Identity Provider.",
+    "message": "(System for Cross-domain Identity Management) för att automatiskt tillhandahålla användare och grupper till Bitwarden med hjälp av implementeringsguiden för din Identity Provider.",
     "description": "This represents the end of a sentence, broken up to include links. The full sentence will be 'Configure SCIM (System for Cross-domain Identity Management) to automatically provision users and groups to Bitwarden using the implementation guide for your Identity Provider"
   },
   "bwdc": {
     "message": "Bitwarden Directory Connector"
   },
   "bwdcDesc": {
-    "message": "Configure Bitwarden Directory Connector to automatically provision users and groups using the implementation guide for your Identity Provider."
+    "message": "Konfigurera Bitwarden Directory Connector för automatisk provisionering av användare och grupper med hjälp av implementeringsguiden för din Identity Provider."
   },
   "eventManagement": {
-    "message": "Event management"
+    "message": "Eventhantering"
   },
   "eventManagementDesc": {
-    "message": "Integrate Bitwarden event logs with your SIEM (system information and event management) system by using the implementation guide for your platform."
+    "message": "Integrera Bitwardens händelseloggar med ditt SIEM-system (system information and event management) genom att använda implementeringsguiden för din plattform."
   },
   "deviceManagement": {
-    "message": "Device management"
+    "message": "Hantering av enheter"
   },
   "deviceManagementDesc": {
-    "message": "Configure device management for Bitwarden using the implementation guide for your platform."
+    "message": "Konfigurera enhetshanteringen för Bitwarden med hjälp av implementeringsguiden för din plattform."
   },
   "deviceIdMissing": {
-    "message": "Device ID is missing"
+    "message": "Enhetens ID saknas"
   },
   "deviceTypeMissing": {
-    "message": "Device type is missing"
+    "message": "Enhetstyp saknas"
   },
   "deviceCreationDateMissing": {
-    "message": "Device creation date is missing"
+    "message": "Datum för skapande av enhet saknas"
   },
   "desktopRequired": {
-    "message": "Desktop required"
+    "message": "Skrivbord krävs"
   },
   "reopenLinkOnDesktop": {
-    "message": "Reopen this link from your email on a desktop."
+    "message": "Öppna den här länken igen från ditt e-postmeddelande på ett skrivbord."
   },
   "integrationCardTooltip": {
-    "message": "Launch $INTEGRATION$ implementation guide.",
+    "message": "Starta implementeringsguiden för $INTEGRATION$.",
     "placeholders": {
       "integration": {
         "content": "$1",
@@ -9440,7 +9448,7 @@
     }
   },
   "smIntegrationTooltip": {
-    "message": "Set up $INTEGRATION$.",
+    "message": "Ställ in $INTEGRATION$.",
     "placeholders": {
       "integration": {
         "content": "$1",
@@ -9449,7 +9457,7 @@
     }
   },
   "smSdkTooltip": {
-    "message": "View $SDK$ repository",
+    "message": "Visa $SDK$-förvaret",
     "placeholders": {
       "sdk": {
         "content": "$1",
@@ -9458,7 +9466,7 @@
     }
   },
   "integrationCardAriaLabel": {
-    "message": "open $INTEGRATION$ implementation guide in a new tab.",
+    "message": "öppna $INTEGRATION$ implementeringsguide i en ny flik.",
     "placeholders": {
       "integration": {
         "content": "$1",
@@ -9467,7 +9475,7 @@
     }
   },
   "smSdkAriaLabel": {
-    "message": "view $SDK$ repository in a new tab.",
+    "message": "visa $SDK$ repository i en ny flik.",
     "placeholders": {
       "sdk": {
         "content": "$1",
@@ -9476,7 +9484,7 @@
     }
   },
   "smIntegrationCardAriaLabel": {
-    "message": "set up $INTEGRATION$ implementation guide in a new tab.",
+    "message": "konfigurera $INTEGRATION$ implementeringsguide i en ny flik.",
     "placeholders": {
       "integration": {
         "content": "$1",
@@ -9485,10 +9493,10 @@
     }
   },
   "createNewClientToManageAsProvider": {
-    "message": "Create a new client organization to manage as a Provider. Additional seats will be reflected in the next billing cycle."
+    "message": "Skapa en ny kundorganisation som du kan hantera som Provider. Ytterligare platser kommer att återspeglas i nästa faktureringscykel."
   },
   "selectAPlan": {
-    "message": "Select a plan"
+    "message": "Välj en plan"
   },
   "thirtyFivePercentDiscount": {
     "message": "35% rabatt"
@@ -9497,61 +9505,61 @@
     "message": "månad per medlem"
   },
   "monthPerMemberBilledAnnually": {
-    "message": "month per member billed annually"
+    "message": "månad per medlem faktureras årsvis"
   },
   "seats": {
-    "message": "Seats"
+    "message": "Platser"
   },
   "addOrganization": {
     "message": "Lägg till organisation"
   },
   "createdNewClient": {
-    "message": "Successfully created new client"
+    "message": "Framgångsrikt skapat ny klient"
   },
   "noAccess": {
-    "message": "No access"
+    "message": "Ingen åtkomst"
   },
   "collectionAdminConsoleManaged": {
-    "message": "This collection is only accessible from the admin console"
+    "message": "Denna samling är endast tillgänglig från adminkonsolen"
   },
   "organizationOptionsMenu": {
-    "message": "Toggle Organization Menu"
+    "message": "Toggle Organisation Meny"
   },
   "vaultItemSelect": {
-    "message": "Select vault item"
+    "message": "Välj valvobjekt"
   },
   "collectionItemSelect": {
-    "message": "Select collection item"
+    "message": "Välj kollektionsobjekt"
   },
   "manageBillingFromProviderPortalMessage": {
-    "message": "Manage billing from the Provider Portal"
+    "message": "Hantera fakturering från Provider Portal"
   },
   "continueSettingUp": {
-    "message": "Continue setting up Bitwarden"
+    "message": "Fortsätt att ställa i ordning Bitwarden"
   },
   "continueSettingUpFreeTrial": {
-    "message": "Continue setting up your free trial of Bitwarden"
+    "message": "Fortsätt att konfigurera din kostnadsfria testversion av Bitwarden"
   },
   "continueSettingUpPasswordManager": {
-    "message": "Continue setting up Bitwarden Password Manager"
+    "message": "Fortsätt konfigurera Bitwarden Password Manager"
   },
   "continueSettingUpFreeTrialPasswordManager": {
-    "message": "Continue setting up your free trial of Bitwarden Password Manager"
+    "message": "Fortsätt att konfigurera din kostnadsfria testversion av Bitwarden Password Manager"
   },
   "continueSettingUpSecretsManager": {
-    "message": "Continue setting up Bitwarden Secrets Manager"
+    "message": "Fortsätt konfigurera Bitwarden Secrets Manager"
   },
   "continueSettingUpFreeTrialSecretsManager": {
-    "message": "Continue setting up your free trial of Bitwarden Secrets Manager"
+    "message": "Fortsätt att konfigurera din kostnadsfria testversion av Bitwarden Secrets Manager"
   },
   "enterTeamsOrgInfo": {
-    "message": "Enter your Teams organization information"
+    "message": "Ange information om din Teams-organisation"
   },
   "enterFamiliesOrgInfo": {
-    "message": "Enter your Families organization information"
+    "message": "Ange information om din Families-organisation"
   },
   "enterEnterpriseOrgInfo": {
-    "message": "Enter your Enterprise organization information"
+    "message": "Ange information om din Enterprise-organisation"
   },
   "viewItemsIn": {
     "message": "Visa objekt i $NAME$",
@@ -9578,7 +9586,7 @@
     "description": "Button text to navigate back"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "Ta bort $NAME$",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
@@ -9588,31 +9596,31 @@
     }
   },
   "viewInfo": {
-    "message": "View info"
+    "message": "Visa information"
   },
   "viewAccess": {
-    "message": "View access"
+    "message": "Visa åtkomst"
   },
   "noCollectionsSelected": {
-    "message": "You have not selected any collections."
+    "message": "Du har inte valt några samlingar."
   },
   "updateName": {
     "message": "Uppdatera namn"
   },
   "updatedOrganizationName": {
-    "message": "Updated organization name"
+    "message": "Uppdaterat organisationsnamn"
   },
   "providerPlan": {
-    "message": "Managed Service Provider"
+    "message": "Leverantör av managed services"
   },
   "managedServiceProvider": {
-    "message": "Managed service provider"
+    "message": "Leverantör av managed services"
   },
   "multiOrganizationEnterprise": {
-    "message": "Multi-organization enterprise"
+    "message": "Företag med flera organisationer"
   },
   "orgSeats": {
-    "message": "Organization Seats"
+    "message": "Organisation Säten"
   },
   "providerDiscount": {
     "message": "$AMOUNT$% rabatt",
@@ -9624,7 +9632,7 @@
     }
   },
   "lowKDFIterationsBanner": {
-    "message": "Low KDF iterations. Increase your iterations to improve the security of your account."
+    "message": "Låga KDF-iterationer. Öka dina iterationer för att förbättra säkerheten för ditt konto."
   },
   "changeKDFSettings": {
     "message": "Ändra KDF-inställningar"
@@ -9636,16 +9644,16 @@
     "message": "Skydda din familj eller ditt företag"
   },
   "upgradeOrganizationCloseSecurityGaps": {
-    "message": "Close security gaps with monitoring reports"
+    "message": "Täta säkerhetsluckor med hjälp av övervakningsrapporter"
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
-    "message": "Stay ahead of security vulnerabilities by upgrading to a paid plan for enhanced monitoring."
+    "message": "Ligg steget före säkerhetsproblem genom att uppgradera till en betald plan för utökad övervakning."
   },
   "approveAllRequests": {
     "message": "Godkänn alla förfrågningar"
   },
   "allLoginRequestsApproved": {
-    "message": "All login requests approved"
+    "message": "Alla inloggningsförfrågningar godkända"
   },
   "payPal": {
     "message": "PayPal"
@@ -9654,41 +9662,41 @@
     "message": "Bitcoin"
   },
   "updatedTaxInformation": {
-    "message": "Updated tax information"
+    "message": "Uppdaterad skatteinformation"
   },
   "billingInvalidTaxIdError": {
-    "message": "Invalid tax ID, if you believe this is an error please contact support."
+    "message": "Ogiltigt skatte-ID, om du tror att detta är ett fel, vänligen kontakta support."
   },
   "billingTaxIdTypeInferenceError": {
-    "message": "We were unable to validate your tax ID, if you believe this is an error please contact support."
+    "message": "Vi kunde inte validera ditt skatte-ID, om du tror att detta är ett fel, vänligen kontakta support."
   },
   "billingPreviewInvalidTaxIdError": {
-    "message": "Invalid tax ID, if you believe this is an error please contact support."
+    "message": "Ogiltigt skatte-ID, om du tror att detta är ett fel, vänligen kontakta support."
   },
   "billingPreviewInvoiceError": {
-    "message": "An error occurred while previewing the invoice. Please try again later."
+    "message": "Ett fel inträffade vid förhandsgranskning av fakturan. Vänligen försök igen senare."
   },
   "unverified": {
-    "message": "Unverified"
+    "message": "Obekräftad"
   },
   "verified": {
-    "message": "Verified"
+    "message": "Verifierad"
   },
   "viewSecret": {
     "message": "Visa hemlighet"
   },
   "noClients": {
-    "message": "There are no clients to list"
+    "message": "Det finns inga kunder att räkna upp"
   },
   "providerBillingEmailHint": {
-    "message": "This email address will receive all invoices pertaining to this provider",
+    "message": "Den här e-postadressen kommer att få alla fakturor som gäller den här leverantören",
     "description": "A hint that shows up on the Provider setup page to inform the admin the billing email will receive the provider's invoices."
   },
   "upgradeOrganizationEnterprise": {
-    "message": "Identify security risks by auditing member access"
+    "message": "Identifiera säkerhetsrisker genom att granska medlemmarnas åtkomst"
   },
   "onlyAvailableForEnterpriseOrganization": {
-    "message": "Quickly view member access across the organization by upgrading to an Enterprise plan."
+    "message": "Visa snabbt medlemsåtkomst i hela organisationen genom att uppgradera till en Enterprise-plan."
   },
   "date": {
     "message": "Datum"
@@ -9700,46 +9708,46 @@
     "message": "Medlemsåtkomst"
   },
   "memberAccessReportDesc": {
-    "message": "Ensure members have access to the right credentials and their accounts are secure. Use this report to obtain a CSV of member access and account configurations."
+    "message": "Se till att medlemmarna har tillgång till rätt inloggningsuppgifter och att deras konton är säkra. Använd den här rapporten för att få en CSV-fil med medlemsåtkomst och kontokonfigurationer."
   },
   "memberAccessReportPageDesc": {
-    "message": "Audit organization member access across groups, collections, and collection items. The CSV export provides a detailed breakdown per member, including information on collection permissions and account configurations."
+    "message": "Granska organisationsmedlemmars åtkomst i grupper, samlingar och samlingsobjekt. CSV-exporten ger en detaljerad uppdelning per medlem, inklusive information om samlingsbehörigheter och kontokonfigurationer."
   },
   "memberAccessReportNoCollection": {
     "message": "(Ingen samling)"
   },
   "memberAccessReportNoCollectionPermission": {
-    "message": "(No Collection Permission)"
+    "message": "(Inget tillstånd för insamling)"
   },
   "memberAccessReportNoGroup": {
     "message": "(Ingen grupp)"
   },
   "memberAccessReportTwoFactorEnabledTrue": {
-    "message": "On"
+    "message": "På"
   },
   "memberAccessReportTwoFactorEnabledFalse": {
-    "message": "Off"
+    "message": "Av"
   },
   "memberAccessReportAuthenticationEnabledTrue": {
-    "message": "On"
+    "message": "På"
   },
   "memberAccessReportAuthenticationEnabledFalse": {
-    "message": "Off"
+    "message": "Av"
   },
   "higherKDFIterations": {
-    "message": "Higher KDF iterations can help protect your master password from being brute forced by an attacker."
+    "message": "Högre KDF-iterationer kan hjälpa till att skydda ditt huvudlösenord från att bli brute forced av en angripare."
   },
   "incrementsOf100,000": {
-    "message": "increments of 100,000"
+    "message": "steg om 100.000"
   },
   "smallIncrements": {
-    "message": "small increments"
+    "message": "små steg"
   },
   "kdfIterationRecommends": {
     "message": "Vi rekommenderar 600.000 eller mer"
   },
   "kdfToHighWarningIncreaseInIncrements": {
-    "message": "For older devices, setting your KDF too high may lead to performance issues. Increase the value in $VALUE$ and test your devices.",
+    "message": "För äldre enheter kan det leda till prestandaproblem om du ställer in KDF för högt. Öka värdet i $VALUE$ och testa dina enheter.",
     "placeholders": {
       "value": {
         "content": "$1",
@@ -9748,31 +9756,31 @@
     }
   },
   "providerReinstate": {
-    "message": " Contact Customer Support to reinstate your subscription."
+    "message": " Kontakta kundtjänst för att återupprätta din prenumeration."
   },
   "secretPeopleDescription": {
-    "message": "Grant groups or people access to this secret. Permissions set for people will override permissions set by groups."
+    "message": "Ge grupper eller personer tillgång till denna hemlighet. Behörigheter som anges för personer kommer att åsidosätta behörigheter som anges av grupper."
   },
   "secretPeopleEmptyMessage": {
-    "message": "Add people or groups to share access to this secret"
+    "message": "Lägg till personer eller grupper som ska dela åtkomst till denna hemlighet"
   },
   "secretMachineAccountsDescription": {
-    "message": "Grant machine accounts access to this secret."
+    "message": "Ge maskinkonton tillgång till denna hemlighet."
   },
   "secretMachineAccountsEmptyMessage": {
-    "message": "Add machine accounts to grant access to this secret"
+    "message": "Lägg till maskinkonton för att ge åtkomst till denna hemlighet"
   },
   "smAccessRemovalWarningSecretTitle": {
-    "message": "Remove access to this secret"
+    "message": "Ta bort åtkomst till denna hemlighet"
   },
   "smAccessRemovalSecretMessage": {
-    "message": "This action will remove your access to this secret."
+    "message": "Denna åtgärd kommer att ta bort din tillgång till denna hemlighet."
   },
   "invoice": {
     "message": "Faktura"
   },
   "unassignedSeatsAvailable": {
-    "message": "You have $SEATS$ unassigned seats available.",
+    "message": "Du har $SEATS$ icke tilldelade platser tillgängliga.",
     "placeholders": {
       "seats": {
         "content": "$1",
@@ -9782,49 +9790,49 @@
     "description": "A message showing how many unassigned seats are available for a provider."
   },
   "contactYourProviderForAdditionalSeats": {
-    "message": "Contact your provider admin to purchase additional seats."
+    "message": "Kontakta din leverantörsadministratör för att köpa ytterligare platser."
   },
   "open": {
     "message": "Öppen",
     "description": "The status of an invoice."
   },
   "uncollectible": {
-    "message": "Uncollectible",
+    "message": "Ej indrivningsbara",
     "description": "The status of an invoice."
   },
   "clientDetails": {
-    "message": "Client details"
+    "message": "Information om klienten"
   },
   "downloadCSV": {
     "message": "Ladda ner CSV"
   },
   "monthlySubscriptionUserSeatsMessage": {
-    "message": "Adjustments to your subscription will result in prorated charges to your billing totals on your next billing period. "
+    "message": "Justeringar av din prenumeration kommer att resultera i proportionella debiteringar av dina faktureringssummor på din nästa faktureringsperiod."
   },
   "annualSubscriptionUserSeatsMessage": {
-    "message": "Adjustments to your subscription will result in prorated charges on a monthly billing cycle. "
+    "message": "Justeringar av din prenumeration kommer att resultera i proportionella avgifter på en månatlig faktureringscykel."
   },
   "billingHistoryDescription": {
-    "message": "Download a CSV to obtain client details for each billing date. Prorated charges are not included in the CSV and may vary from the linked invoice. For the most accurate billing details, refer to your monthly invoices.",
+    "message": "Ladda ner en CSV-fil för att få fram klientuppgifter för varje faktureringsdatum. Proraterade avgifter ingår inte i CSV-filen och kan skilja sig från den länkade fakturan. De mest exakta faktureringsuppgifterna hittar du på dina månadsfakturor.",
     "description": "A paragraph on the Billing History page of the Provider Portal letting users know they can download a CSV report for their invoices that does not include prorations."
   },
   "noInvoicesToList": {
-    "message": "There are no invoices to list",
+    "message": "Det finns inga fakturor att lista",
     "description": "A paragraph on the Billing History page of the Provider Portal letting users know they can download a CSV report for their invoices that does not include prorations."
   },
   "providerClientVaultPrivacyNotification": {
-    "message": "Notice: Later this month, client vault privacy will be improved and provider members will no longer have direct access to client vault items. For questions,",
+    "message": "Meddelande: Senare denna månad kommer sekretessen i kundvalvet att förbättras och leverantörsmedlemmar kommer inte längre att ha direkt tillgång till kundvalvets objekt. För frågor,",
     "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'Notice: Later this month, client vault privacy will be improved and provider members will no longer have direct access to client vault items. For questions, please contact Bitwarden support'."
   },
   "contactBitwardenSupport": {
-    "message": "contact Bitwarden support.",
+    "message": "kontakt Bitwarden support.",
     "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'Notice: Later this month, client vault privacy will be improved and provider members will no longer have direct access to client vault items. For questions, please contact Bitwarden support'. 'Bitwarden' should not be translated"
   },
   "sponsored": {
-    "message": "Sponsored"
+    "message": "Sponsrad"
   },
   "licenseAndBillingManagementDesc": {
-    "message": "After making updates in the Bitwarden cloud server, upload your license file to apply the most recent changes."
+    "message": "När du har gjort uppdateringar i Bitwardens molnserver laddar du upp din licensfil för att tillämpa de senaste ändringarna."
   },
   "addToFolder": {
     "message": "Lägg till i mapp"
@@ -9833,10 +9841,10 @@
     "message": "Välj mapp"
   },
   "personalItemTransferWarningSingular": {
-    "message": "1 item will be permanently transferred to the selected organization. You will no longer own this item."
+    "message": "1 objekt kommer att permanent överföras till den valda organisationen. Du kommer inte längre att äga detta objekt."
   },
   "personalItemsTransferWarningPlural": {
-    "message": "$PERSONAL_ITEMS_COUNT$ items will be permanently transferred to the selected organization. You will no longer own these items.",
+    "message": "$PERSONAL_ITEMS_COUNT$ objekt kommer att överföras permanent till den valda organisationen. Du kommer inte längre att äga dessa objekt.",
     "placeholders": {
       "personal_items_count": {
         "content": "$1",
@@ -9845,7 +9853,7 @@
     }
   },
   "personalItemWithOrgTransferWarningSingular": {
-    "message": "1 item will be permanently transferred to $ORG$. You will no longer own this item.",
+    "message": "1 objekt kommer att överföras permanent till $ORG$. Du kommer inte längre att äga det här objektet.",
     "placeholders": {
       "org": {
         "content": "$1",
@@ -9854,7 +9862,7 @@
     }
   },
   "personalItemsWithOrgTransferWarningPlural": {
-    "message": "$PERSONAL_ITEMS_COUNT$ items will be permanently transferred to $ORG$. You will no longer own these items.",
+    "message": "$PERSONAL_ITEMS_COUNT$ objekt kommer att överföras permanent till $ORG$. Du kommer inte längre att äga dessa objekt.",
     "placeholders": {
       "personal_items_count": {
         "content": "$1",
@@ -9870,7 +9878,7 @@
     "message": "Data"
   },
   "purchasedSeatsRemoved": {
-    "message": "purchased seats removed"
+    "message": "köpta säten borttagna"
   },
   "environmentVariables": {
     "message": "Miljövariabler"
@@ -9879,52 +9887,52 @@
     "message": "Organisations-ID"
   },
   "projectIds": {
-    "message": "Project IDs"
+    "message": "Projekt-ID"
   },
   "projectId": {
     "message": "Projekt-ID"
   },
   "projectsAccessedByMachineAccount": {
-    "message": "The following projects can be accessed by this machine account."
+    "message": "Följande projekt kan nås med detta maskinkonto."
   },
   "config": {
-    "message": "Config"
+    "message": "Konfig"
   },
   "learnMoreAboutEmergencyAccess": {
     "message": "Läs mer om nödåtkomst"
   },
   "learnMoreAboutMatchDetection": {
-    "message": "Learn more about match detection"
+    "message": "Läs mer om matchningsdetektering"
   },
   "learnMoreAboutMasterPasswordReprompt": {
-    "message": "Learn more about master password re-prompt"
+    "message": "Läs mer om omprövning av huvudlösenord"
   },
   "learnMoreAboutSearchingYourVault": {
-    "message": "Learn more about searching your vault"
+    "message": "Läs mer om hur du söker i ditt valv"
   },
   "learnMoreAboutYourAccountFingerprintPhrase": {
-    "message": "Learn about your account fingerprint phrase"
+    "message": "Läs mer om ditt kontos fingeravtryck"
   },
   "impactOfRotatingYourEncryptionKey": {
-    "message": "Impact of rotating your encryption key"
+    "message": "Effekten av att rotera din krypteringsnyckel"
   },
   "learnMoreAboutEncryptionAlgorithms": {
     "message": "Läs mer om krypteringsalgoritmer"
   },
   "learnMoreAboutKDFIterations": {
-    "message": "Learn more about KDF iterations"
+    "message": "Läs mer om KDF-iterationer"
   },
   "learnMoreAboutLocalization": {
     "message": "Läs mer om lokalisering"
   },
   "learnMoreAboutWebsiteIcons": {
-    "message": "Learn more about using website icons"
+    "message": "Läs mer om hur du använder webbplatsikoner"
   },
   "learnMoreAboutUserAccess": {
     "message": "Läs mer om användaråtkomst"
   },
   "learnMoreAboutMemberRoles": {
-    "message": "Learn more about member roles and permissions"
+    "message": "Läs mer om medlemsroller och behörigheter"
   },
   "whatIsACvvNumber": {
     "message": "Vad är ett CVV-nummer?"
@@ -9933,16 +9941,16 @@
     "message": "Läs mer om Bitwardens API"
   },
   "fileSend": {
-    "message": "File Send"
+    "message": "Skicka fil"
   },
   "fileSends": {
-    "message": "File Sends"
+    "message": "Skicka filer"
   },
   "textSend": {
-    "message": "Text Send"
+    "message": "Skicka text"
   },
   "textSends": {
-    "message": "Text Sends"
+    "message": "Text skickas"
   },
   "includesXMembers": {
     "message": "för $COUNT$ medlem",
@@ -9963,10 +9971,10 @@
     }
   },
   "optionalOnPremHosting": {
-    "message": "Optional on-premises hosting"
+    "message": "Valfri lokal hosting"
   },
   "upgradeFreeOrganization": {
-    "message": "Upgrade your $NAME$ organization ",
+    "message": "Uppgradera din $NAME$-organisation",
     "placeholders": {
       "name": {
         "content": "$1",
@@ -9978,7 +9986,7 @@
     "message": "SSO-autentisering"
   },
   "familiesPlanInvLimitReachedManageBilling": {
-    "message": "Families organizations may have up to $SEATCOUNT$ members. Upgrade to a paid plan to invite more members.",
+    "message": "Familjeorganisationer kan ha upp till $SEATCOUNT$-medlemmar. Uppgradera till en betald plan för att bjuda in fler medlemmar.",
     "placeholders": {
       "seatcount": {
         "content": "$1",
@@ -9987,7 +9995,7 @@
     }
   },
   "familiesPlanInvLimitReachedNoManageBilling": {
-    "message": "Families organizations may have up to $SEATCOUNT$ members. Contact your organization owner to upgrade.",
+    "message": "Familjeorganisationer kan ha upp till $SEATCOUNT$ medlemmar. Kontakta din organisationsägare för att uppgradera.",
     "placeholders": {
       "seatcount": {
         "content": "$1",
@@ -9996,7 +10004,7 @@
     }
   },
   "upgradePlans": {
-    "message": "Upgrade your plan to invite members and experience powerful security features."
+    "message": "Uppgradera din plan för att bjuda in medlemmar och få tillgång till kraftfulla säkerhetsfunktioner."
   },
   "upgradeDiscount": {
     "message": "Spara $AMOUNT$%",
@@ -10008,19 +10016,19 @@
     }
   },
   "enterprisePlanUpgradeMessage": {
-    "message": "Advanced capabilities for larger organizations"
+    "message": "Avancerade funktioner för större organisationer"
   },
   "teamsPlanUpgradeMessage": {
-    "message": "Resilient protection for growing teams"
+    "message": "Motståndskraftigt skydd för växande team"
   },
   "teamsInviteMessage": {
-    "message": "Invite unlimited members"
+    "message": "Bjud in obegränsat antal medlemmar"
   },
   "accessToCreateGroups": {
-    "message": "Access to create groups"
+    "message": "Tillgång till att skapa grupper"
   },
   "syncGroupsAndUsersFromDirectory": {
-    "message": "Sync groups and users from a directory"
+    "message": "Synka grupper och användare från en katalog"
   },
   "familyPlanUpgradeMessage": {
     "message": "Säkra dina familjeinloggningar"
@@ -10029,19 +10037,19 @@
     "message": "Tillgång till Premium-funktioner"
   },
   "additionalStorageGbMessage": {
-    "message": "GB additional storage"
+    "message": "GB extra lagringsutrymme"
   },
   "sshKeyAlgorithm": {
     "message": "Nyckelalgoritm"
   },
   "sshPrivateKey": {
-    "message": "Private key"
+    "message": "Privat nyckel"
   },
   "sshPublicKey": {
-    "message": "Public key"
+    "message": "Publik nyckel"
   },
   "sshFingerprint": {
-    "message": "Fingerprint"
+    "message": "Fingeravtryck"
   },
   "sshKeyFingerprint": {
     "message": "Fingeravtryck"
@@ -10065,7 +10073,7 @@
     "message": "RSA 4096-Bit"
   },
   "premiumAccounts": {
-    "message": "6 premium accounts"
+    "message": "6 premiumkonton"
   },
   "unlimitedSharing": {
     "message": "Obegränsad delning"
@@ -10077,10 +10085,10 @@
     "message": "Säker datadelning"
   },
   "eventLogMonitoring": {
-    "message": "Event log monitoring"
+    "message": "Övervakning av händelselogg"
   },
   "directoryIntegration": {
-    "message": "Directory integration"
+    "message": "Integration av kataloger"
   },
   "passwordLessSso": {
     "message": "PasswordLess SSO"
@@ -10092,7 +10100,7 @@
     "message": "Anpassade roller"
   },
   "unlimitedSecretsStorage": {
-    "message": "Unlimited secrets storage"
+    "message": "Obegränsad lagring av hemligheter"
   },
   "unlimitedUsers": {
     "message": "Obegränsat antal användare"
@@ -10104,22 +10112,22 @@
     "message": "Upp till 20 maskinkonton"
   },
   "current": {
-    "message": "Current"
+    "message": "Nuvarande"
   },
   "secretsManagerSubscriptionInfo": {
-    "message": "Your Secrets Manager subscription will upgrade based on the plan selected"
+    "message": "Din prenumeration på Secrets Manager kommer att uppgraderas baserat på den valda planen"
   },
   "bitwardenPasswordManager": {
     "message": "Bitwarden Lösenordshanterare"
   },
   "secretsManagerComplimentaryPasswordManager": {
-    "message": "Your complimentary one year Password Manager subscription will upgrade to the selected plan. You will not be charged until the complimentary period is over."
+    "message": "Din kostnadsfria ettåriga prenumeration på Password Manager kommer att uppgraderas till den valda planen. Du kommer inte att debiteras förrän den kostnadsfria perioden är över."
   },
   "fileSavedToDevice": {
-    "message": "File saved to device. Manage from your device downloads."
+    "message": "Fil sparad till enhet. Hantera nedladdningar från din enhet."
   },
   "publicApi": {
-    "message": "Public API",
+    "message": "Offentligt API",
     "description": "The text, 'API', is an acronym and should not be translated."
   },
   "showCharacterCount": {
@@ -10138,13 +10146,13 @@
     "message": "Använd dolda fält för känslig data, som t. ex. ett lösenord"
   },
   "checkBoxHelpText": {
-    "message": "Use checkboxes if you'd like to autofill a form's checkbox, like a remember email"
+    "message": "Använd kryssrutor om du vill fylla i en kryssruta i ett formulär automatiskt, t.ex. för att komma ihåg e-post"
   },
   "linkedHelpText": {
-    "message": "Use a linked field when you are experiencing autofill issues for a specific website."
+    "message": "Använd ett länkat fält när du har problem med autofyll för en viss webbplats."
   },
   "linkedLabelHelpText": {
-    "message": "Enter the the field's html id, name, aria-label, or placeholder."
+    "message": "Ange fältets html-id, namn, aria-label eller platshållare."
   },
   "uppercaseDescription": {
     "message": "Inkludera versaler",
@@ -10181,23 +10189,23 @@
     "message": "Maximal filstorlek är 500 MB"
   },
   "permanentlyDeleteAttachmentConfirmation": {
-    "message": "Are you sure you want to permanently delete this attachment?"
+    "message": "Är du säker på att du vill radera den här bilagan permanent?"
   },
   "manageSubscriptionFromThe": {
-    "message": "Manage subscription from the",
+    "message": "Hantera prenumeration från",
     "description": "This represents the beginning of a sentence. The full sentence will be 'Manage subscription from the Provider Portal', but 'Provider Portal' will be a link and thus cannot be included in the translation file."
   },
   "toHostBitwardenOnYourOwnServer": {
-    "message": "To host Bitwarden on your own server, you will need to upload your license file. To support Free Families plans and advanced billing capabilities for your self-hosted organization, you will need to set up automatic sync in your self-hosted organization."
+    "message": "Om du vill vara värd för Bitwarden på din egen server måste du ladda upp din licensfil. För att stödja Free Families-planer och avancerade faktureringsfunktioner för din egenhostade organisation måste du ställa in automatisk synkronisering i din egenhostade organisation."
   },
   "selfHostingTitleProper": {
-    "message": "Self-Hosting"
+    "message": "Självhosting"
   },
   "claim-domain-single-org-warning": {
-    "message": "Claiming a domain will turn on the single organization policy."
+    "message": "När du gör anspråk på en domän aktiveras principen för en enda organisation."
   },
   "single-org-revoked-user-warning": {
-    "message": "Non-compliant members will be revoked. Administrators can restore members once they leave all other organizations."
+    "message": "Medlemmar som inte uppfyller kraven kommer att återkallas. Administratörer kan återställa medlemmar när de lämnar alla andra organisationer."
   },
   "deleteOrganizationUser": {
     "message": "Radera $NAME$",
@@ -10210,7 +10218,7 @@
     }
   },
   "deleteOrganizationUserWarningDesc": {
-    "message": "This will permanently delete all items owned by $NAME$. Collection items are not impacted.",
+    "message": "Detta kommer att permanent radera alla objekt som ägs av $NAME$. Samlingsobjekt påverkas inte.",
     "description": "Warning description for the delete organization user dialog",
     "placeholders": {
       "name": {
@@ -10220,11 +10228,11 @@
     }
   },
   "deleteManyOrganizationUsersWarningDesc": {
-    "message": "This will permanently delete all items owned by the following members. Collection items are not impacted.",
+    "message": "Detta kommer att permanent radera alla objekt som ägs av följande medlemmar. Samlingsobjekt påverkas inte.",
     "description": "Warning description for the bulk delete organization users dialog"
   },
   "organizationUserDeleted": {
-    "message": "Deleted $NAME$",
+    "message": "Raderad $NAME$",
     "placeholders": {
       "name": {
         "content": "$1",
@@ -10233,10 +10241,10 @@
     }
   },
   "organizationUserDeletedDesc": {
-    "message": "The user was removed from the organization and all associated user data has been deleted."
+    "message": "Användaren har tagits bort från organisationen och alla tillhörande användardata har raderats."
   },
   "deletedUserId": {
-    "message": "Deleted user $ID$ - an owner / admin deleted the user account",
+    "message": "Borttagen användare $ID$ - en ägare/administratör har tagit bort användarkontot",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -10245,7 +10253,7 @@
     }
   },
   "userLeftOrganization": {
-    "message": "User $ID$ left organization",
+    "message": "Användaren $ID$ lämnade organisationen",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -10254,7 +10262,7 @@
     }
   },
   "suspendedOrganizationTitle": {
-    "message": "The $ORGANIZATION$ is suspended",
+    "message": "$ORGANIZATION$ är avstängd",
     "placeholders": {
       "organization": {
         "content": "$1",
@@ -10263,10 +10271,10 @@
     }
   },
   "suspendedUserOrgMessage": {
-    "message": "Contact your organization owner for assistance."
+    "message": "Kontakta din organisationsägare för att få hjälp."
   },
   "suspendedOwnerOrgMessage": {
-    "message": "To regain access to your organization, add a payment method."
+    "message": "Lägg till en betalningsmetod för att återfå åtkomst till din organisation."
   },
   "deleteMembers": {
     "message": "Radera medlemmar"
@@ -10275,25 +10283,25 @@
     "message": "Denna åtgärd är inte tillämplig på någon av de valda medlemmarna."
   },
   "deletedSuccessfully": {
-    "message": "Deleted successfully"
+    "message": "Raderad framgångsrikt"
   },
   "freeFamiliesSponsorship": {
-    "message": "Remove Free Bitwarden Families sponsorship"
+    "message": "Ta bort Free Bitwarden Families sponsring"
   },
   "freeFamiliesSponsorshipPolicyDesc": {
-    "message": "Do not allow members to redeem a Families plan through this organization."
+    "message": "Tillåt inte medlemmar att lösa in en Families-plan via denna organisation."
   },
   "verifyBankAccountWithStatementDescriptorWarning": {
-    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the organization's billing page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+    "message": "Betalning med bankkonto är endast tillgänglig för kunder i USA. Du kommer att bli ombedd att verifiera ditt bankkonto. Vi kommer att göra en mikroinsättning inom de närmaste 1-2 bankdagarna. Ange koden för kontoutdraget från den här insättningen på organisationens faktureringssida för att verifiera bankkontot. Om du inte verifierar bankkontot kommer det att resultera i en missad betalning och din prenumeration kommer att stängas av."
   },
   "verifyBankAccountWithStatementDescriptorInstructions": {
-    "message": "We have made a micro-deposit to your bank account (this may take 1-2 business days). Enter the six-digit code starting with 'SM' found on the deposit description. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+    "message": "Vi har gjort en mikroinsättning till ditt bankkonto (detta kan ta 1-2 bankdagar). Ange den sexsiffriga koden som börjar med \"SM\" som finns i beskrivningen av insättningen. Om du inte verifierar bankkontot kommer det att leda till en missad betalning och att din prenumeration stängs av."
   },
   "descriptorCode": {
-    "message": "Descriptor code"
+    "message": "Deskriptor kod"
   },
   "cannotRemoveViewOnlyCollections": {
-    "message": "You cannot remove collections with View only permissions: $COLLECTIONS$",
+    "message": "Du kan inte ta bort samlingar med behörigheten Visa endast: $COLLECTIONS$",
     "placeholders": {
       "collections": {
         "content": "$1",
@@ -10302,37 +10310,37 @@
     }
   },
   "removeMembers": {
-    "message": "Remove members"
+    "message": "Ta bort medlemmar"
   },
   "devices": {
-    "message": "Devices"
+    "message": "Enheter"
   },
   "deviceListDescription": {
-    "message": "Your account was logged in to each of the devices below. If you do not recognize a device, remove it now."
+    "message": "Ditt konto var inloggat på var och en av enheterna nedan. Om du inte känner igen en enhet, ta bort den nu."
   },
   "deviceListDescriptionTemp": {
-    "message": "Your account was logged in to each of the devices below."
+    "message": "Ditt konto var inloggat på var och en av enheterna nedan."
   },
   "claimedDomains": {
-    "message": "Claimed domains"
+    "message": "Domäner med anspråk"
   },
   "claimDomain": {
-    "message": "Claim domain"
+    "message": "Domän för anspråk"
   },
   "reclaimDomain": {
-    "message": "Reclaim domain"
+    "message": "Återkräva domän"
   },
   "claimDomainNameInputHint": {
-    "message": "Example: mydomain.com. Subdomains require separate entries to be claimed."
+    "message": "Exempel: mydomain.com. Underdomäner kräver separata poster för att hävdas."
   },
   "automaticClaimedDomains": {
-    "message": "Automatic Claimed Domains"
+    "message": "Automatiskt hävdade domäner"
   },
   "automaticDomainClaimProcess": {
-    "message": "Bitwarden will attempt to claim the domain 3 times during the first 72 hours. If the domain can’t be claimed, check the DNS record in your host and manually claim. The domain will be removed from your organization in 7 days if it is not claimed."
+    "message": "Bitwarden kommer att försöka göra anspråk på domänen 3 gånger under de första 72 timmarna. Om domänen inte kan göras anspråk på, kontrollera DNS-posten i din host och gör anspråk manuellt. Domänen kommer att tas bort från din organisation inom 7 dagar om den inte görs anspråk på."
   },
   "domainNotClaimed": {
-    "message": "$DOMAIN$ not claimed. Check your DNS records.",
+    "message": "$DOMAIN$ inte hävdad. Kontrollera dina DNS-poster.",
     "placeholders": {
       "DOMAIN": {
         "content": "$1",
@@ -10341,19 +10349,19 @@
     }
   },
   "domainStatusClaimed": {
-    "message": "Claimed"
+    "message": "Ägd"
   },
   "domainStatusUnderVerification": {
-    "message": "Under verification"
+    "message": "Under verifiering"
   },
   "claimedDomainsDesc": {
-    "message": "Claim a domain to own all member accounts whose email address matches the domain. Members will be able to skip the SSO identifier when logging in. Administrators will also be able to delete member accounts."
+    "message": "Gör anspråk på en domän för att äga alla medlemskonton vars e-postadress matchar domänen. Medlemmar kommer att kunna hoppa över SSO-identifieraren när de loggar in. Administratörer kommer också att kunna ta bort medlemskonton."
   },
   "invalidDomainNameClaimMessage": {
-    "message": "Input is not a valid format. Format: mydomain.com. Subdomains require separate entries to be claimed."
+    "message": "Inmatningen är inte ett giltigt format. Format: mydomain.com. Underdomäner kräver separata poster för att hävdas."
   },
   "domainClaimedEvent": {
-    "message": "$DOMAIN$ claimed",
+    "message": "$DOMAIN$ hävdade",
     "placeholders": {
       "DOMAIN": {
         "content": "$1",
@@ -10362,7 +10370,7 @@
     }
   },
   "domainNotClaimedEvent": {
-    "message": "$DOMAIN$ not claimed",
+    "message": "$DOMAIN$ inte anspråktagen",
     "placeholders": {
       "DOMAIN": {
         "content": "$1",
@@ -10371,7 +10379,7 @@
     }
   },
   "updatedRevokeSponsorshipConfirmationForSentSponsorship": {
-    "message": "If you remove $EMAIL$, the sponsorship for this Family plan cannot be redeemed. Are you sure you want to continue?",
+    "message": "Om du tar bort $EMAIL$ kan sponsringen för den här familjeplanen inte lösas in. Är du säker på att du vill fortsätta?",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -10380,7 +10388,7 @@
     }
   },
   "updatedRevokeSponsorshipConfirmationForAcceptedSponsorship": {
-    "message": "If you remove $EMAIL$, the sponsorship for this Family plan will end and the saved payment method will be charged $40 + applicable tax on $DATE$. You will not be able to redeem a new sponsorship until $DATE$. Are you sure you want to continue?",
+    "message": "Om du tar bort $EMAIL$ kommer sponsringen för denna familjeplan att upphöra och den sparade betalningsmetoden debiteras $40 + tillämplig skatt på $DATE$. Du kommer inte att kunna lösa in en ny sponsring förrän $DATE$. Är du säker på att du vill fortsätta?",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -10393,108 +10401,108 @@
     }
   },
   "domainClaimed": {
-    "message": "Domain claimed"
+    "message": "Domänanspråk"
   },
   "organizationNameMaxLength": {
-    "message": "Organization name cannot exceed 50 characters."
+    "message": "Organisationsnamnet får inte överstiga 50 tecken."
   },
   "rotationCompletedTitle": {
-    "message": "Key rotation successful"
+    "message": "Nyckelrotation framgångsrik"
   },
   "rotationCompletedDesc": {
-    "message": "Your master password and encryption keys have been updated. Your other devices have been logged out."
+    "message": "Ditt huvudlösenord och dina krypteringsnycklar har uppdaterats. Dina andra enheter har loggats ut."
   },
   "trustUserEmergencyAccess": {
-    "message": "Trust and confirm user"
+    "message": "Lita på och bekräfta användaren"
   },
   "trustOrganization": {
-    "message": "Trust organization"
+    "message": "Lita på organisation"
   },
   "trust": {
-    "message": "Trust"
+    "message": "Förtroende"
   },
   "doNotTrust": {
-    "message": "Do not trust"
+    "message": "Lita inte på"
   },
   "organizationNotTrusted": {
-    "message": "Organization is not trusted"
+    "message": "Organisationen är inte betrodd"
   },
   "emergencyAccessTrustWarning": {
-    "message": "For the security of your account, only confirm if you have granted emergency access to this user and their fingerprint matches what is displayed in their account"
+    "message": "För att skydda ditt konto ska du bara bekräfta om du har beviljat nödåtkomst till den här användaren och om fingeravtrycket matchar det som visas på användarens konto"
   },
   "orgTrustWarning": {
-    "message": "For the security of your account, only proceed if you are a member of this organization, have account recovery enabled, and the fingerprint displayed below matches the organization's fingerprint."
+    "message": "För att skydda ditt konto ska du bara fortsätta om du är medlem i den här organisationen, har aktiverat kontoåterställning och om det fingeravtryck som visas nedan matchar organisationens fingeravtryck."
   },
   "orgTrustWarning1": {
-    "message": "This organization has an Enterprise policy that will enroll you in account recovery. Enrollment will allow organization administrators to change your password. Only proceed if you recognize this organization and the fingerprint phrase displayed below matches the organization's fingerprint."
+    "message": "Den här organisationen har en företagspolicy som gör att du kan registrera dig till kontoåterställning. Registreringen gör det möjligt för organisationens administratörer att ändra ditt lösenord. Fortsätt bara om du känner igen den här organisationen och om fingeravtrycksfrasen som visas nedan matchar organisationens fingeravtryck."
   },
   "trustUser": {
-    "message": "Trust user"
+    "message": "Lita på användare"
   },
   "sshKeyWrongPassword": {
-    "message": "The password you entered is incorrect."
+    "message": "Lösenordet du har angett är felaktigt."
   },
   "importSshKey": {
-    "message": "Import"
+    "message": "Importera"
   },
   "confirmSshKeyPassword": {
-    "message": "Confirm password"
+    "message": "Bekräfta lösenord"
   },
   "enterSshKeyPasswordDesc": {
-    "message": "Enter the password for the SSH key."
+    "message": "Ange lösenordet för SSH-nyckeln."
   },
   "enterSshKeyPassword": {
-    "message": "Enter password"
+    "message": "Ange lösenord"
   },
   "invalidSshKey": {
-    "message": "The SSH key is invalid"
+    "message": "SSH-nyckeln är ogiltig"
   },
   "sshKeyTypeUnsupported": {
-    "message": "The SSH key type is not supported"
+    "message": "SSH-nyckeltypen stöds inte"
   },
   "importSshKeyFromClipboard": {
-    "message": "Import key from clipboard"
+    "message": "Importera nyckel från urklipp"
   },
   "sshKeyImported": {
-    "message": "SSH key imported successfully"
+    "message": "SSH-nyckel importerad framgångsrikt"
   },
   "copySSHPrivateKey": {
-    "message": "Copy private key"
+    "message": "Kopiera privat nyckel"
   },
   "openingExtension": {
-    "message": "Opening the Bitwarden browser extension"
+    "message": "Öppna webbläsartillägget Bitwarden"
   },
   "somethingWentWrong": {
-    "message": "Something went wrong..."
+    "message": "Något gick fel …"
   },
   "openingExtensionError": {
-    "message": "We had trouble opening the Bitwarden browser extension. Click the button to open it now."
+    "message": "Vi hade problem med att öppna webbläsartillägget Bitwarden. Klicka på knappen för att öppna det nu."
   },
   "openExtension": {
-    "message": "Open extension"
+    "message": "Öppen förlängning"
   },
   "doNotHaveExtension": {
-    "message": "Don't have the Bitwarden browser extension?"
+    "message": "Har du inte webbläsartillägget Bitwarden?"
   },
   "installExtension": {
-    "message": "Install extension"
+    "message": "Installera förlängning"
   },
   "openedExtension": {
-    "message": "Opened the browser extension"
+    "message": "Öppnade webbläsartillägget"
   },
   "openedExtensionViewAtRiskPasswords": {
-    "message": "Successfully opened the Bitwarden browser extension. You can now review your at-risk passwords."
+    "message": "Framgångsrikt öppnat webbläsartillägget Bitwarden. Du kan nu granska dina risklösenord."
   },
   "openExtensionManuallyPart1": {
-    "message": "We had trouble opening the Bitwarden browser extension. Open the Bitwarden icon",
+    "message": "Vi hade problem med att öppna webbläsartillägget Bitwarden. Öppna Bitwarden-ikonen",
     "description": "This will be used as part of a larger sentence, broken up to include the Bitwarden icon. The full sentence will read 'We had trouble opening the Bitwarden browser extension. Open the Bitwarden icon [Bitwarden Icon] from the toolbar.'"
   },
   "openExtensionManuallyPart2": {
-    "message": "from the toolbar.",
+    "message": "från verktygsfältet.",
     "description": "This will be used as part of a larger sentence, broken up to include the Bitwarden icon. The full sentence will read 'We had trouble opening the Bitwarden browser extension. Open the Bitwarden icon [Bitwarden Icon] from the toolbar.'"
   },
   "resellerRenewalWarningMsg": {
-    "message": "Your subscription will renew soon. To ensure uninterrupted service, contact $RESELLER$ to confirm your renewal before $RENEWAL_DATE$.",
+    "message": "Din prenumeration kommer snart att förnyas. För att säkerställa oavbruten service, kontakta $RESELLER$ för att bekräfta din förnyelse före $RENEWAL_DATE$.",
     "placeholders": {
       "reseller": {
         "content": "$1",
@@ -10507,7 +10515,7 @@
     }
   },
   "resellerOpenInvoiceWarningMgs": {
-    "message": "An invoice for your subscription was issued on $ISSUED_DATE$. To ensure uninterrupted service, contact $RESELLER$ to confirm your renewal before $DUE_DATE$.",
+    "message": "En faktura för din prenumeration utfärdades den $ISSUED_DATE$. För att säkerställa oavbruten service, kontakta $RESELLER$ för att bekräfta din förnyelse före $DUE_DATE$.",
     "placeholders": {
       "reseller": {
         "content": "$1",
@@ -10524,7 +10532,7 @@
     }
   },
   "resellerPastDueWarningMsg": {
-    "message": "The invoice for your subscription has not been paid. To ensure uninterrupted service, contact $RESELLER$ to confirm your renewal before $GRACE_PERIOD_END$.",
+    "message": "Fakturan för din prenumeration har inte betalats. För att säkerställa oavbruten service, kontakta $RESELLER$ för att bekräfta din förnyelse före $GRACE_PERIOD_END$.",
     "placeholders": {
       "reseller": {
         "content": "$1",
@@ -10537,13 +10545,13 @@
     }
   },
   "restartOrganizationSubscription": {
-    "message": "Organization subscription restarted"
+    "message": "Organisationsprenumeration omstartad"
   },
   "restartSubscription": {
-    "message": "Restart your subscription"
+    "message": "Starta om din prenumeration"
   },
   "suspendedManagedOrgMessage": {
-    "message": "Contact $PROVIDER$ for assistance.",
+    "message": "Kontakta $PROVIDER$ för hjälp.",
     "placeholders": {
       "provider": {
         "content": "$1",
@@ -10552,16 +10560,16 @@
     }
   },
   "accountDeprovisioningNotification": {
-    "message": "Administrators now have the ability to delete member accounts that belong to a claimed domain."
+    "message": "Administratörer har nu möjlighet att ta bort medlemskonton som tillhör en hävdad domän."
   },
   "deleteManagedUserWarningDesc": {
-    "message": "This action will delete the member account including all items in their vault. This replaces the previous Remove action."
+    "message": "Denna åtgärd tar bort medlemskontot inklusive alla objekt i deras valv. Detta ersätter den tidigare åtgärden Ta bort."
   },
   "deleteManagedUserWarning": {
-    "message": "Delete is a new action!"
+    "message": "Ta bort är en ny åtgärd!"
   },
   "seatsRemaining": {
-    "message": "You have $REMAINING$ seats remaining out of $TOTAL$ seats assigned to this organization. Contact your provider to manage your subscription.",
+    "message": "Du har $REMAINING$ platser kvar av $TOTAL$ platser som tilldelats den här organisationen. Kontakta din leverantör för att hantera din prenumeration.",
     "placeholders": {
       "remaining": {
         "content": "$1",
@@ -10574,19 +10582,19 @@
     }
   },
   "existingOrganization": {
-    "message": "Existing organization"
+    "message": "Befintlig organisation"
   },
   "selectOrganizationProviderPortal": {
-    "message": "Select an organization to add to your Provider Portal."
+    "message": "Välj en organisation som du vill lägga till i Provider Portal."
   },
   "noOrganizations": {
-    "message": "There are no organizations to list"
+    "message": "Det finns inga organisationer att räkna upp"
   },
   "yourProviderSubscriptionCredit": {
-    "message": "Your provider subscription will receive a credit for any remaining time in the organization's subscription."
+    "message": "Din leverantörs prenumeration kommer att få en kredit för eventuell återstående tid i organisationens prenumeration."
   },
   "doYouWantToAddThisOrg": {
-    "message": "Do you want to add this organization to $PROVIDER$?",
+    "message": "Vill du lägga till den här organisationen i $PROVIDER$?",
     "placeholders": {
       "provider": {
         "content": "$1",
@@ -10595,13 +10603,13 @@
     }
   },
   "addedExistingOrganization": {
-    "message": "Added existing organization"
+    "message": "Lagt till befintlig organisation"
   },
   "assignedExceedsAvailable": {
-    "message": "Assigned seats exceed available seats."
+    "message": "Antalet tilldelade platser överstiger antalet tillgängliga platser."
   },
   "userkeyRotationDisclaimerEmergencyAccessText": {
-    "message": "Fingerprint phrase for $NUM_USERS$ contacts for which you have enabled emergency access.",
+    "message": "Fingeravtrycksfras för $NUM_USERS$ kontakter för vilka du har aktiverat nödåtkomst.",
     "placeholders": {
       "num_users": {
         "content": "$1",
@@ -10610,7 +10618,7 @@
     }
   },
   "userkeyRotationDisclaimerAccountRecoveryOrgsText": {
-    "message": "Fingerprint phrase for the organization $ORG_NAME$ for which you have enabled account recovery.",
+    "message": "Fingeravtrycksfras för organisationen $ORG_NAME$ för vilken du har aktiverat kontoåterställning.",
     "placeholders": {
       "org_name": {
         "content": "$1",
@@ -10619,171 +10627,171 @@
     }
   },
   "userkeyRotationDisclaimerDescription": {
-    "message": "Rotating your encryption keys will require you to trust keys of any organizations that can recover your account, and any contacts that you have enabled emergency access for. To continue, make sure you can verify the following:"
+    "message": "Om du roterar dina krypteringsnycklar måste du lita på nycklar från alla organisationer som kan återställa ditt konto och alla kontakter som du har aktiverat nödåtkomst för. För att fortsätta, se till att du kan verifiera följande:"
   },
   "userkeyRotationDisclaimerTitle": {
-    "message": "Untrusted encryption keys"
+    "message": "Otillförlitliga krypteringsnycklar"
   },
   "changeAtRiskPassword": {
-    "message": "Change at-risk password"
+    "message": "Ändra lösenord för riskgrupper"
   },
   "removeUnlockWithPinPolicyTitle": {
-    "message": "Remove Unlock with PIN"
+    "message": "Ta bort upplåsning med PIN-kod"
   },
   "removeUnlockWithPinPolicyDesc": {
-    "message": "Do not allow members to unlock their account with a PIN."
+    "message": "Låt inte medlemmar låsa upp sitt konto med en PIN-kod."
   },
   "upgradeForFullEventsMessage": {
-    "message": "Event logs are not stored for your organization. Upgrade to a Teams or Enterprise plan to get full access to organization event logs."
+    "message": "Händelseloggar lagras inte för din organisation. Uppgradera till en Teams- eller Enterprise-plan för att få full åtkomst till organisationens händelseloggar."
   },
   "upgradeEventLogTitleMessage": {
-    "message": "Upgrade to see event logs from your organization."
+    "message": "Uppgradera för att se händelseloggar från din organisation."
   },
   "upgradeEventLogMessage": {
-    "message": "These events are examples only and do not reflect real events within your Bitwarden organization."
+    "message": "Dessa händelser är endast exempel och återspeglar inte verkliga händelser inom din Bitwarden-organisation."
   },
   "cannotCreateCollection": {
-    "message": "Free organizations may have up to 2 collections. Upgrade to a paid plan to add more collections."
+    "message": "Gratisorganisationer kan ha upp till 2 samlingar. Uppgradera till en betald plan för att lägga till fler samlingar."
   },
   "businessUnit": {
-    "message": "Business Unit"
+    "message": "Affärsenhet"
   },
   "businessUnits": {
-    "message": "Business Units"
+    "message": "Affärsenheter"
   },
   "newBusinessUnit": {
-    "message": "New business unit"
+    "message": "Ny affärsenhet"
   },
   "sendsTitleNoItems": {
-    "message": "Send sensitive information safely",
+    "message": "Skicka känslig information på ett säkert sätt",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendsBodyNoItems": {
-    "message": "Share files and data securely with anyone, on any platform. Your information will remain end-to-end encrypted while limiting exposure.",
+    "message": "Dela filer och data på ett säkert sätt med vem som helst, på vilken plattform som helst. Din information kommer att förbli krypterad från början till slut samtidigt som exponeringen begränsas.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "generatorNudgeTitle": {
-    "message": "Quickly create passwords"
+    "message": "Skapa lösenord snabbt"
   },
   "generatorNudgeBodyOne": {
-    "message": "Easily create strong and unique passwords by clicking on",
+    "message": "Skapa enkelt starka och unika lösenord genom att klicka på",
     "description": "Two part message",
     "example": "Easily create strong and unique passwords by clicking on {icon} to help you keep your logins secure."
   },
   "generatorNudgeBodyTwo": {
-    "message": "to help you keep your logins secure.",
+    "message": "för att hjälpa dig att hålla dina inloggningar säkra.",
     "description": "Two part message",
     "example": "Easily create strong and unique passwords by clicking on {icon} to help you keep your logins secure."
   },
   "generatorNudgeBodyAria": {
-    "message": "Easily create strong and unique passwords by clicking on the Generate password button to help you keep your logins secure.",
+    "message": "Skapa enkelt starka och unika lösenord genom att klicka på knappen Generera lösenord så att du kan hålla dina inloggningar säkra.",
     "description": "Aria label for the body content of the generator nudge"
   },
   "newLoginNudgeTitle": {
-    "message": "Save time with autofill"
+    "message": "Spara tid med autofyll"
   },
   "newLoginNudgeBodyOne": {
-    "message": "Include a",
+    "message": "Inkludera ett",
     "description": "This is in multiple parts to allow for bold text in the middle of the sentence.",
     "example": "Include a Website so this login appears as an autofill suggestion."
   },
   "newLoginNudgeBodyBold": {
-    "message": "Website",
+    "message": "Webbplats",
     "description": "This is in multiple parts to allow for bold text in the middle of the sentence.",
     "example": "Include a Website so this login appears as an autofill suggestion."
   },
   "newLoginNudgeBodyTwo": {
-    "message": "so this login appears as an autofill suggestion.",
+    "message": "så att den här inloggningen visas som ett autofyllningsförslag.",
     "description": "This is in multiple parts to allow for bold text in the middle of the sentence.",
     "example": "Include a Website so this login appears as an autofill suggestion."
   },
   "newCardNudgeTitle": {
-    "message": "Seamless online checkout"
+    "message": "Sömlös utcheckning online"
   },
   "newCardNudgeBody": {
-    "message": "With cards, easily autofill payment forms securely and accurately."
+    "message": "Med kort kan du enkelt autofylla betalningsformulär på ett säkert och exakt sätt."
   },
   "newIdentityNudgeTitle": {
-    "message": "Simplify creating accounts"
+    "message": "Förenkla skapandet av konton"
   },
   "newIdentityNudgeBody": {
-    "message": "With identities, quickly autofill long registration or contact forms."
+    "message": "Med identiteter kan du snabbt autofylla långa registrerings- eller kontaktformulär."
   },
   "newNoteNudgeTitle": {
-    "message": "Keep your sensitive data safe"
+    "message": "Håll ditt känsliga data säkert"
   },
   "newNoteNudgeBody": {
-    "message": "With notes, securely store sensitive data like banking or insurance details."
+    "message": "Med anteckningar kan du säkert lagra känslig information som bank- eller försäkringsuppgifter."
   },
   "newSshNudgeTitle": {
-    "message": "Developer-friendly SSH access"
+    "message": "Utvecklarvänlig SSH-åtkomst"
   },
   "newSshNudgeBodyOne": {
-    "message": "Store your keys and connect with the SSH agent for fast, encrypted authentication.",
+    "message": "Förvara dina nycklar och anslut till SSH-agenten för snabb, krypterad autentisering.",
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
   "newSshNudgeBodyTwo": {
-    "message": "Learn more about SSH agent",
+    "message": "Läs mer om SSH-agent",
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
   "setupExtensionPageTitle": {
-    "message": "Autofill your passwords securely with one click"
+    "message": "Autofyll dina lösenord på ett säkert sätt med ett klick"
   },
   "setupExtensionPageDescription": {
-    "message": "Get the Bitwarden browser extension and start autofilling today"
+    "message": "Skaffa webbläsartillägget Bitwarden och börja autofylla redan idag"
   },
   "getTheExtension": {
-    "message": "Get the extension"
+    "message": "Hämta tillägget"
   },
   "addItLater": {
-    "message": "Add it later"
+    "message": "Lägg till den senare"
   },
   "cannotAutofillPasswordsWithoutExtensionTitle": {
-    "message": "You can't autofill passwords without the browser extension"
+    "message": "Du kan inte autofylla lösenord utan webbläsartillägget"
   },
   "cannotAutofillPasswordsWithoutExtensionDesc": {
-    "message": "Are you sure you don't want to add the extension now?"
+    "message": "Är du säker på att du inte vill lägga till tillägget nu?"
   },
   "skipToWebApp": {
-    "message": "Skip to web app"
+    "message": "Hoppa till webbapp"
   },
   "bitwardenExtensionInstalled": {
-    "message": "Bitwarden extension installed!"
+    "message": "Bitvärdesförlängningen installerad!"
   },
   "openExtensionToAutofill": {
-    "message": "Open the extension to log in and start autofilling."
+    "message": "Öppna tillägget för att logga in och starta autofyllning."
   },
   "openBitwardenExtension": {
-    "message": "Open Bitwarden extension"
+    "message": "Öppna Bitwarden-förlängning"
   },
   "gettingStartedWithBitwardenPart1": {
-    "message": "For tips on getting started with Bitwarden visit the",
+    "message": "För tips om hur du kommer igång med Bitwarden besök",
     "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
-    "message": "Learning Center",
+    "message": "Lärcentrum",
     "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
-    "message": "Help Center",
+    "message": "Hjälpcenter",
     "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
-    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+    "message": "Med webbläsartillägget Bitwarden kan du enkelt skapa nya inloggningar, komma åt dina sparade inloggningar direkt från webbläsarens verktygsfält och logga in på konton snabbt med hjälp av Bitwardens autofyll."
   },
   "restart": {
-    "message": "Restart"
+    "message": "Starta om"
   },
   "verifyProviderBankAccountWithStatementDescriptorWarning": {
-    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the provider's subscription page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+    "message": "Betalning med bankkonto är endast tillgänglig för kunder i USA. Du kommer att bli ombedd att verifiera ditt bankkonto. Vi kommer att göra en mikroinsättning inom de närmaste 1-2 bankdagarna. Ange koden för kontoutdrag från den här insättningen på leverantörens prenumerationssida för att verifiera bankkontot. Om du inte verifierar bankkontot kommer det att leda till en missad betalning och att din prenumeration stängs av."
   },
   "clickPayWithPayPal": {
-    "message": "Please click the Pay with PayPal button to add your payment method."
+    "message": "Klicka på knappen Betala med PayPal för att lägga till din betalningsmetod."
   },
   "revokeActiveSponsorshipConfirmation": {
-    "message": "If you remove $EMAIL$, the sponsorship for this Family plan will end. A seat within your organization will become available for members or sponsorships after the sponsored organization renewal date on $DATE$.",
+    "message": "Om du tar bort $EMAIL$ upphör sponsringen för den här familjeplanen. En plats inom din organisation kommer att bli tillgänglig för medlemmar eller sponsring efter förnyelsedatumet för den sponsrade organisationen på $DATE$.",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -10796,50 +10804,50 @@
     }
   },
   "billingAddressRequiredToAddCredit": {
-    "message": "Billing address required to add credit.",
+    "message": "Faktureringsadress krävs för att lägga till kredit.",
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
   },
   "billingAddress": {
-    "message": "Billing address"
+    "message": "Faktureringsadress"
   },
   "addBillingAddress": {
-    "message": "Add billing address"
+    "message": "Lägg till faktureringsadress"
   },
   "editBillingAddress": {
-    "message": "Edit billing address"
+    "message": "Redigera faktureringsadress"
   },
   "noBillingAddress": {
-    "message": "No address on file."
+    "message": "Ingen adress finns registrerad."
   },
   "billingAddressUpdated": {
-    "message": "Your billing address has been updated."
+    "message": "Din faktureringsadress har uppdaterats."
   },
   "paymentDetails": {
-    "message": "Payment details"
+    "message": "Detaljer för betalning"
   },
   "paymentMethodUpdated": {
-    "message": "Your payment method has been updated."
+    "message": "Din betalningsmetod har uppdaterats."
   },
   "bankAccountVerified": {
-    "message": "Your bank account has been verified."
+    "message": "Ditt bankkonto har verifierats."
   },
   "availableCreditAppliedToInvoice": {
-    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+    "message": "Eventuell tillgänglig kredit kommer automatiskt att tillämpas på fakturor som genereras för detta konto."
   },
   "mustBePositiveNumber": {
-    "message": "Must be a positive number"
+    "message": "Måste vara ett positivt nummer."
   },
   "cardSecurityCode": {
-    "message": "Card security code"
+    "message": "Kortets säkerhetskod"
   },
   "cardSecurityCodeDescription": {
-    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+    "message": "Kortets säkerhetskod, även känd som CVV eller CVC, är vanligtvis ett 3-siffrigt nummer tryckt på baksidan av ditt kreditkort eller ett 4-siffrigt nummer tryckt på framsidan ovanför ditt kortnummer."
   },
   "verifyBankAccountWarning": {
-    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+    "message": "Betalning med bankkonto är endast tillgänglig för kunder i USA. Du kommer att bli ombedd att verifiera ditt bankkonto. Vi kommer att göra en mikroinsättning inom de närmaste 1-2 bankdagarna. Ange koden för kontoutdraget från den här insättningen på sidan Betalningsinformation för att verifiera bankkontot. Om du inte verifierar bankkontot kommer det att resultera i en missad betalning och din prenumeration kommer att stängas av."
   },
   "taxId": {
-    "message": "Tax ID: $TAX_ID$",
+    "message": "Skatte-ID: $TAX_ID$",
     "placeholders": {
       "tax_id": {
         "content": "$1",
diff --git a/apps/web/src/locales/te/messages.json b/apps/web/src/locales/te/messages.json
index c20a685c1de..57b7a83469e 100644
--- a/apps/web/src/locales/te/messages.json
+++ b/apps/web/src/locales/te/messages.json
@@ -8938,6 +8938,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/th/messages.json b/apps/web/src/locales/th/messages.json
index 71ad641378c..9562698d1b3 100644
--- a/apps/web/src/locales/th/messages.json
+++ b/apps/web/src/locales/th/messages.json
@@ -8938,6 +8938,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/tr/messages.json b/apps/web/src/locales/tr/messages.json
index cbd696c9a88..4a336df5a9f 100644
--- a/apps/web/src/locales/tr/messages.json
+++ b/apps/web/src/locales/tr/messages.json
@@ -8938,6 +8938,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Gelişmiş seçenekler",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Uyarı",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "$ORG$ aboneliğinizi sürdürmek için ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/uk/messages.json b/apps/web/src/locales/uk/messages.json
index 6367b7a78a0..cc59b1b39c9 100644
--- a/apps/web/src/locales/uk/messages.json
+++ b/apps/web/src/locales/uk/messages.json
@@ -1785,7 +1785,7 @@
     "message": "Продовжуючи, ви вийдете з поточного сеансу і необхідно буде виконати вхід знову. Активні сеанси на інших пристроях можуть залишатися активними протягом години."
   },
   "changePasswordWarning": {
-    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+    "message": "Після зміни пароля потрібно буде ввійти в систему з новим паролем. Активні сеанси на інших пристроях буде завершено протягом години."
   },
   "emailChanged": {
     "message": "Е-пошту змінено"
@@ -6077,10 +6077,10 @@
     "message": "Оновити головний пароль"
   },
   "accountRecoveryUpdateMasterPasswordSubtitle": {
-    "message": "Change your master password to complete account recovery."
+    "message": "Змініть свій головний пароль, щоб завершити відновлення облікового запису."
   },
   "updateMasterPasswordSubtitle": {
-    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+    "message": "Ваш головний пароль не відповідає вимогам цієї організації. Змініть свій головний пароль, щоб продовжити."
   },
   "updateMasterPasswordWarning": {
     "message": "Ваш головний пароль нещодавно було змінено адміністратором організації. Щоб отримати доступ до сховища, вам необхідно оновити свій головний пароль зараз. Продовживши, ви вийдете з поточного сеансу, після чого потрібно буде повторно виконати вхід. Сеанси на інших пристроях можуть залишатися активними протягом однієї години."
@@ -8463,10 +8463,10 @@
     "message": "Запит підтвердження адміністратора"
   },
   "unableToCompleteLogin": {
-    "message": "Unable to complete login"
+    "message": "Не вдалося завершити вхід"
   },
   "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
-    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+    "message": "Ви повинні ввійти до системи на довіреному пристрої або попросити адміністратора призначити вам пароль."
   },
   "trustedDeviceEncryption": {
     "message": "Шифрування довіреного пристрою"
@@ -8938,6 +8938,14 @@
     "message": "Докладніше про виявлення збігів",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Додаткові налаштування",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Попередження",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "Щоб зберегти свою передплату на $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10800,46 +10808,46 @@
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
   },
   "billingAddress": {
-    "message": "Billing address"
+    "message": "Платіжна адреса"
   },
   "addBillingAddress": {
-    "message": "Add billing address"
+    "message": "Додати платіжну адресу"
   },
   "editBillingAddress": {
-    "message": "Edit billing address"
+    "message": "Редагувати платіжну адресу"
   },
   "noBillingAddress": {
-    "message": "No address on file."
+    "message": "Немає збереженої адреси."
   },
   "billingAddressUpdated": {
-    "message": "Your billing address has been updated."
+    "message": "Вашу платіжну адресу оновлено."
   },
   "paymentDetails": {
-    "message": "Payment details"
+    "message": "Подробиці платежу"
   },
   "paymentMethodUpdated": {
-    "message": "Your payment method has been updated."
+    "message": "Ваш спосіб оплати оновлено."
   },
   "bankAccountVerified": {
-    "message": "Your bank account has been verified."
+    "message": "Ваш банківський рахунок підтверджено."
   },
   "availableCreditAppliedToInvoice": {
-    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+    "message": "Наявні кредити автоматично застосуються для сплати рахунків, згенерованих для цього облікового запису."
   },
   "mustBePositiveNumber": {
-    "message": "Must be a positive number"
+    "message": "Має бути додатним числом"
   },
   "cardSecurityCode": {
-    "message": "Card security code"
+    "message": "Код безпеки картки"
   },
   "cardSecurityCodeDescription": {
-    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+    "message": "Код безпеки картки, також відомий як CVV чи CVC, – це номер із 3 цифр, який зазвичай можна знайти на звороті вашої кредитної картки, або номер із 4 цифр, надрукований під номером картки на лицьовій стороні."
   },
   "verifyBankAccountWarning": {
-    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+    "message": "Оплата з банківським рахунком доступна тільки для клієнтів у США. Вам необхідно буде підтвердити свій банківський рахунок. Ми здійснимо мікродепозит протягом наступних 1–2 робочих днів. Введіть код дескриптора з квитанції для цього депозиту, який можна знайти на сторінці подробиць платежу, щоб підтвердити банківський рахунок. У разі невдалого підтвердження банківського рахунку платіж не буде проведено і ваша передплата призупиниться."
   },
   "taxId": {
-    "message": "Tax ID: $TAX_ID$",
+    "message": "ІПН: $TAX_ID$",
     "placeholders": {
       "tax_id": {
         "content": "$1",
diff --git a/apps/web/src/locales/vi/messages.json b/apps/web/src/locales/vi/messages.json
index 13fc25170e7..b1bc5557228 100644
--- a/apps/web/src/locales/vi/messages.json
+++ b/apps/web/src/locales/vi/messages.json
@@ -205,7 +205,7 @@
     "message": "URI mới"
   },
   "username": {
-    "message": "Tên người dùng"
+    "message": "Tên đăng nhập"
   },
   "password": {
     "message": "Mật khẩu"
@@ -265,10 +265,10 @@
     "message": "Tùy chọn tự động điền"
   },
   "websiteUri": {
-    "message": "Website (URI)"
+    "message": "Trang web (URI)"
   },
   "websiteUriCount": {
-    "message": "Website (URI) $COUNT$",
+    "message": "Trang web (URI) $COUNT$",
     "description": "Label for an input field that contains a website URI. The input field is part of a list of fields, and the count indicates the position of the field in the list.",
     "placeholders": {
       "count": {
@@ -278,16 +278,16 @@
     }
   },
   "websiteAdded": {
-    "message": "Website added"
+    "message": "Đã thêm trang web"
   },
   "addWebsite": {
-    "message": "Add website"
+    "message": "Thêm trang web"
   },
   "deleteWebsite": {
-    "message": "Delete website"
+    "message": "Xóa trang web"
   },
   "defaultLabel": {
-    "message": "Default ($VALUE$)",
+    "message": "Mặc định ($VALUE$)",
     "description": "A label that indicates the default value for a field with the current default value in parentheses.",
     "placeholders": {
       "value": {
@@ -297,7 +297,7 @@
     }
   },
   "showMatchDetection": {
-    "message": "Show match detection $WEBSITE$",
+    "message": "Hiện phát hiện trùng khớp $WEBSITE$",
     "placeholders": {
       "website": {
         "content": "$1",
@@ -306,7 +306,7 @@
     }
   },
   "hideMatchDetection": {
-    "message": "Hide match detection $WEBSITE$",
+    "message": "Ẩn phát hiện trùng khớp $WEBSITE$",
     "placeholders": {
       "website": {
         "content": "$1",
@@ -315,7 +315,7 @@
     }
   },
   "autoFillOnPageLoad": {
-    "message": "Autofill on page load?"
+    "message": "Tự động điền khi tải trang?"
   },
   "number": {
     "message": "Số"
@@ -408,10 +408,10 @@
     "message": "Dr"
   },
   "cardExpiredTitle": {
-    "message": "Expired card"
+    "message": "Thẻ hết hạn"
   },
   "cardExpiredMessage": {
-    "message": "If you've renewed it, update the card's information"
+    "message": "Nếu bạn đã gia hạn, hãy cập nhật thông tin thẻ"
   },
   "expirationMonth": {
     "message": "Tháng hết hạn"
@@ -423,16 +423,16 @@
     "message": "Khóa xác thực (TOTP)"
   },
   "totpHelperTitle": {
-    "message": "Make 2-step verification seamless"
+    "message": "Giúp quá trình xác minh 2 bước diễn ra liền mạch"
   },
   "totpHelper": {
-    "message": "Bitwarden can store and fill 2-step verification codes. Copy and paste the key into this field."
+    "message": "Bitwarden có thể lưu trữ và điền mã xác thực 2 bước. Sao chép và dán khóa vào ô này."
   },
   "totpHelperWithCapture": {
-    "message": "Bitwarden can store and fill 2-step verification codes. Select the camera icon to take a screenshot of this website's authenticator QR code, or copy and paste the key into this field."
+    "message": "Bitwarden có thể lưu trữ và điền mã xác minh 2 bước. Hãy chọn biểu tượng máy ảnh để quét mã QR xác thực của trang web, hoặc sao chép và dán khoá vào ô này."
   },
   "learnMoreAboutAuthenticators": {
-    "message": "Learn more about authenticators"
+    "message": "Tìm hiểu thêm về các công cụ xác thực"
   },
   "folder": {
     "message": "Thư mục"
@@ -450,17 +450,17 @@
     "message": "Boolean"
   },
   "cfTypeCheckbox": {
-    "message": "Checkbox"
+    "message": "Hộp chọn"
   },
   "cfTypeLinked": {
     "message": "Đã liên kết",
     "description": "This describes a field that is 'linked' (related) to another field."
   },
   "fieldType": {
-    "message": "Field type"
+    "message": "Loại trường"
   },
   "fieldLabel": {
-    "message": "Field label"
+    "message": "Tiêu đề trường"
   },
   "remove": {
     "message": "Xóa"
@@ -483,7 +483,7 @@
     "message": "Chỉnh sửa thư mục"
   },
   "editWithName": {
-    "message": "Edit $ITEM$: $NAME$",
+    "message": "Chỉnh sửa $ITEM$: $NAME$",
     "placeholders": {
       "item": {
         "content": "$1",
@@ -496,16 +496,16 @@
     }
   },
   "newFolder": {
-    "message": "New folder"
+    "message": "Thư mục mới"
   },
   "folderName": {
-    "message": "Folder name"
+    "message": "Tên thư mục"
   },
   "folderHintText": {
-    "message": "Nest a folder by adding the parent folder's name followed by a “/”. Example: Social/Forums"
+    "message": "Tạo một thư mục con bằng cách thêm tên thư mục cha theo sau là dấu “/”. Ví dụ: Social/Forums"
   },
   "deleteFolderPermanently": {
-    "message": "Are you sure you want to permanently delete this folder?"
+    "message": "Bạn có chắc muốn xóa vĩnh viễn thư mục này?"
   },
   "baseDomain": {
     "message": "Tên miền cơ sở",
@@ -560,7 +560,7 @@
     }
   },
   "passwordSafe": {
-    "message": "Mật khẩu này không tìm thấy trong bất kỳ vụ rò rỉ dữ liệu nào. Nó an toàn để sử dụng."
+    "message": "Không tìm thấy mật khẩu này trong các vụ rò rỉ dữ liệu trước đây. Nó an toàn để sử dụng."
   },
   "save": {
     "message": "Lưu"
@@ -648,7 +648,7 @@
     "message": "Ghi chú"
   },
   "typeSshKey": {
-    "message": "SSH key"
+    "message": "Khóa SSH"
   },
   "typeLoginPlural": {
     "message": "Thông tin đăng nhập"
@@ -681,7 +681,7 @@
     "message": "Họ và tên"
   },
   "address": {
-    "message": "Address"
+    "message": "Địa chỉ"
   },
   "address1": {
     "message": "Địa chỉ 1"
@@ -726,7 +726,7 @@
     "message": "Xem mục"
   },
   "newItemHeader": {
-    "message": "New $TYPE$",
+    "message": "$TYPE$ mới",
     "placeholders": {
       "type": {
         "content": "$1",
@@ -735,7 +735,7 @@
     }
   },
   "editItemHeader": {
-    "message": "Edit $TYPE$",
+    "message": "Chỉnh sửa $TYPE$",
     "placeholders": {
       "type": {
         "content": "$1",
@@ -744,7 +744,7 @@
     }
   },
   "viewItemType": {
-    "message": "View $ITEMTYPE$",
+    "message": "Xem $ITEMTYPE$",
     "placeholders": {
       "itemtype": {
         "content": "$1",
@@ -800,11 +800,11 @@
     "description": "Copy password to clipboard"
   },
   "copyPassphrase": {
-    "message": "Copy passphrase",
+    "message": "Sao chép cụm mật khẩu",
     "description": "Copy passphrase to clipboard"
   },
   "passwordCopied": {
-    "message": "Password copied"
+    "message": "Đã sao chép mật khẩu"
   },
   "copyUsername": {
     "message": "Sao chép tên đăng nhập",
@@ -819,11 +819,11 @@
     "description": "Copy credit card security code (CVV)"
   },
   "copyUri": {
-    "message": "Sao chép URI",
+    "message": "Sao chép đường dẫn",
     "description": "Copy URI to clipboard"
   },
   "copyCustomField": {
-    "message": "Copy $FIELD$",
+    "message": "Sao chép $FIELD$",
     "placeholders": {
       "field": {
         "content": "$1",
@@ -832,40 +832,40 @@
     }
   },
   "copyWebsite": {
-    "message": "Copy website"
+    "message": "Sao chép trang web"
   },
   "copyNotes": {
-    "message": "Copy notes"
+    "message": "Sao chép ghi chú"
   },
   "copyAddress": {
-    "message": "Copy address"
+    "message": "Sao chép địa chỉ"
   },
   "copyPhone": {
-    "message": "Copy phone"
+    "message": "Sao chép số điện thoại"
   },
   "copyEmail": {
-    "message": "Copy email"
+    "message": "Sao chép email"
   },
   "copyCompany": {
-    "message": "Copy company"
+    "message": "Sao chép công ty"
   },
   "copySSN": {
-    "message": "Copy Social Security number"
+    "message": "Sao chép số bảo hiểm xã hội"
   },
   "copyPassportNumber": {
-    "message": "Copy passport number"
+    "message": "Sao chép số hộ chiếu"
   },
   "copyLicenseNumber": {
-    "message": "Copy license number"
+    "message": "Sao chép số giấy phép"
   },
   "copyName": {
-    "message": "Copy name"
+    "message": "Sao chép tên"
   },
   "me": {
     "message": "Tôi"
   },
   "myItems": {
-    "message": "My Items"
+    "message": "Các mục của tôi"
   },
   "myVault": {
     "message": "Kho của tôi"
@@ -880,7 +880,7 @@
     "message": "Kho"
   },
   "vaultItems": {
-    "message": "Vault items"
+    "message": "Các mục trong kho"
   },
   "filter": {
     "message": "Bộ lọc"
@@ -941,7 +941,7 @@
     }
   },
   "itemsMovedToOrg": {
-    "message": "Items moved to $ORGNAME$",
+    "message": "Các mục đã được chuyển tới $ORGNAME$",
     "placeholders": {
       "orgname": {
         "content": "$1",
@@ -950,7 +950,7 @@
     }
   },
   "itemMovedToOrg": {
-    "message": "Item moved to $ORGNAME$",
+    "message": "Mục đã được chuyển tới $ORGNAME$",
     "placeholders": {
       "orgname": {
         "content": "$1",
@@ -1004,28 +1004,28 @@
     "message": "Cấp độ truy cập"
   },
   "accessing": {
-    "message": "Accessing"
+    "message": "Đang truy cập"
   },
   "loggedOut": {
     "message": "Đã đăng xuất"
   },
   "loggedOutDesc": {
-    "message": "You have been logged out of your account."
+    "message": "Bạn đã đăng xuất khỏi tài khoản của mình."
   },
   "loginExpired": {
     "message": "Phiên đăng nhập của bạn đã hết hạn."
   },
   "restartRegistration": {
-    "message": "Restart registration"
+    "message": "Tiến hành đăng ký lại"
   },
   "expiredLink": {
-    "message": "Expired link"
+    "message": "Liên kết đã hết hạn"
   },
   "pleaseRestartRegistrationOrTryLoggingIn": {
-    "message": "Please restart registration or try logging in."
+    "message": "Vui lòng đăng ký lại hoặc thử đăng nhập."
   },
   "youMayAlreadyHaveAnAccount": {
-    "message": "You may already have an account"
+    "message": "Bạn có thể đã có tài khoản"
   },
   "logOutConfirmation": {
     "message": "Bạn có chắc muốn đăng xuất?"
@@ -1284,7 +1284,7 @@
     "message": "Nhận gợi ý mật khẩu chính"
   },
   "emailRequired": {
-    "message": "Yêu cầu có địa chỉ email."
+    "message": "Cần điền địa chỉ email."
   },
   "invalidEmail": {
     "message": "Địa chỉ email không hợp lệ."
@@ -1293,7 +1293,7 @@
     "message": "Yêu cầu mật khẩu chính."
   },
   "confirmMasterPasswordRequired": {
-    "message": "Yêu cầu nhập lại mật khẩu chính."
+    "message": "Cần nhập lại mật khẩu chính."
   },
   "masterPasswordMinlength": {
     "message": "Mật khẩu chính phải có ít nhất $VALUE$ kí tự.",
@@ -1605,10 +1605,10 @@
     "message": "Tệp xuất này chứa dữ liệu bí mật của bạn ở định dạng không được mã hóa. Bạn không nên lưu trữ hoặc gửi tệp đã xuất qua các kênh không an toàn (như email). Hãy xóa nó ngay lập tức sau khi bạn hoàn tất việc sử dụng."
   },
   "encExportKeyWarningDesc": {
-    "message": "This export encrypts your data using your account's encryption key. If you ever rotate your account's encryption key you should export again since you will not be able to decrypt this export file."
+    "message": "Quá trình xuất này sẽ mã hóa dữ liệu của bạn bằng khóa mã hóa của tài khoản. Nếu bạn từng thay đổi mã hóa tài khoản của mình, bạn nên xuất lại vì bạn sẽ không thể giải mã tập tin xuất này."
   },
   "encExportAccountWarningDesc": {
-    "message": "Account encryption keys are unique to each Bitwarden user account, so you can't import an encrypted export into a different account."
+    "message": "Khóa mã hóa tài khoản là duy nhất cho mỗi tài khoản Bitwarden, vì vậy bạn không thể nhập tệp xuất được mã hóa vào một tài khoản khác."
   },
   "export": {
     "message": "Xuất"
@@ -1620,22 +1620,22 @@
     "message": "Xuất kho"
   },
   "exportSecrets": {
-    "message": "Export secrets"
+    "message": "Xuất bí mật"
   },
   "fileFormat": {
     "message": "Định dạng tập tin"
   },
   "fileEncryptedExportWarningDesc": {
-    "message": "This file export will be password protected and require the file password to decrypt."
+    "message": "Tệp tin này sẽ được bảo vệ bằng mật khẩu và yêu cầu mật khẩu tệp tin để giải mã."
   },
   "exportPasswordDescription": {
-    "message": "This password will be used to export and import this file"
+    "message": "Mật khẩu này sẽ được dùng để xuất và nhập tập tin này"
   },
   "confirmMasterPassword": {
     "message": "Nhập lại mật khẩu chính"
   },
   "confirmFormat": {
-    "message": "Confirm format"
+    "message": "Xác nhận định dạng"
   },
   "filePassword": {
     "message": "Mật khẩu tập tin"
@@ -1644,13 +1644,13 @@
     "message": "Nhập lại mật khẩu tập tin"
   },
   "accountRestrictedOptionDescription": {
-    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+    "message": "Sử dụng khóa mã hóa tài khoản của bạn, được tạo từ tên đăng nhập và mật khẩu chính của bạn để mã hóa tệp xuất và giới hạn việc nhập chỉ cho tài khoản Bitwarden hiện tại."
   },
   "passwordProtectedOptionDescription": {
-    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+    "message": "Thiết lập mật khẩu cho tệp để mã hóa dữ liệu xuất và nhập nó vào bất kỳ tài khoản Bitwarden nào bằng cách sử dụng mật khẩu đó để giải mã."
   },
   "exportTypeHeading": {
-    "message": "Export type"
+    "message": "Xuất kiểu"
   },
   "accountRestricted": {
     "message": "Tài khoản bị hạn chế"
@@ -1688,7 +1688,7 @@
     "description": "deprecated. Use avoidAmbiguous instead."
   },
   "avoidAmbiguous": {
-    "message": "Avoid ambiguous characters",
+    "message": "Tránh các ký tự dễ nhầm lẫn",
     "description": "Label for the avoid ambiguous characters checkbox."
   },
   "length": {
@@ -1726,32 +1726,32 @@
     "message": "Bao gồm cả số"
   },
   "generatorPolicyInEffect": {
-    "message": "Enterprise policy requirements have been applied to your generator options.",
+    "message": "Các yêu cầu chính sách của doanh nghiệp đã được áp dụng cho các tùy chọn trình tạo của bạn.",
     "description": "Indicates that a policy limits the credential generator screen."
   },
   "passwordHistory": {
     "message": "Lịch sử mật khẩu"
   },
   "generatorHistory": {
-    "message": "Generator history"
+    "message": "Lịch sử trình tạo"
   },
   "clearGeneratorHistoryTitle": {
-    "message": "Clear generator history"
+    "message": "Dọn dẹp lịch sử trình tạo"
   },
   "cleargGeneratorHistoryDescription": {
-    "message": "If you continue, all entries will be permanently deleted from generator's history. Are you sure you want to continue?"
+    "message": "Nếu bạn tiếp tục, tất cả các mục sẽ bị xóa vĩnh viễn khỏi lịch sử của trình tạo. Bạn có chắc chắn muốn tiếp tục không?"
   },
   "noPasswordsInList": {
     "message": "Chưa có mật khẩu."
   },
   "clearHistory": {
-    "message": "Clear history"
+    "message": "Xóa lịch sử"
   },
   "nothingToShow": {
-    "message": "Nothing to show"
+    "message": "Không có gì để hiển thị"
   },
   "nothingGeneratedRecently": {
-    "message": "You haven't generated anything recently"
+    "message": "Bạn chưa tạo gì gần đây"
   },
   "clear": {
     "message": "Xóa",
@@ -1764,7 +1764,7 @@
     "message": "Thay đổi địa chỉ email"
   },
   "changeEmailTwoFactorWarning": {
-    "message": "Proceeding will change your account email address. It will not change the email address used for two-step login authentication. You can change this email address in the two-step login settings."
+    "message": "Thao tác này sẽ thay đổi địa chỉ email tài khoản của bạn. Nó sẽ không thay đổi địa chỉ email được sử dụng cho xác thực đăng nhập hai bước. Bạn có thể thay đổi địa chỉ email này trong cài đặt xác thực đăng nhập hai bước."
   },
   "newEmail": {
     "message": "Địa chỉ email mới"
@@ -1785,7 +1785,7 @@
     "message": "Sẽ đăng xuất bạn ra khỏi phiên hiện tại, sau đó cần đăng nhập lại. Những phiên trên các thiết bị khác sẽ tiếp tục có hiệu lực lên đến 1 tiếng."
   },
   "changePasswordWarning": {
-    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+    "message": "Sau khi thay đổi mật khẩu, bạn cần đăng nhập lại bằng mật khẩu mới. Các phiên đăng nhập đang hoạt động trên các thiết bị khác sẽ bị đăng xuất trong vòng một giờ."
   },
   "emailChanged": {
     "message": "Đã thay đổi email"
@@ -1794,10 +1794,10 @@
     "message": "Hãy đăng nhập lại."
   },
   "currentSession": {
-    "message": "Current session"
+    "message": "Phiên hiện tại"
   },
   "requestPending": {
-    "message": "Request pending"
+    "message": "Yêu cầu đang chờ xử lý"
   },
   "logBackInOthersToo": {
     "message": "Vui lòng đăng nhập lại. Nếu bạn đang dùng những ứng dụng Bitwarden khác, vui lòng đăng xuất and đăng nhập lại những ứng dụng đó."
@@ -1845,17 +1845,17 @@
     }
   },
   "kdfMemory": {
-    "message": "KDF memory (MB)",
+    "message": "Bộ nhớ KDF (MB)",
     "description": "Memory refers to computer memory (RAM). MB is short for megabytes."
   },
   "argon2Warning": {
-    "message": "Setting your KDF iterations, memory, and parallelism too high could result in poor performance when logging into (and unlocking) Bitwarden on slower or older devices. We recommend changing these individually in small increments and then test all of your devices."
+    "message": "Việc đặt giá trị số lần lặp (KDF iterations), bộ nhớ (memory) và song song (parallelism) quá cao có thể dẫn đến hiệu suất kém khi đăng nhập (và mở khóa) Bitwarden trên các thiết bị chậm hoặc đời cũ. Chúng tôi khuyên bạn nên thay đổi từng cài đặt một cách từ từ, sau đó kiểm tra trên tất cả các thiết bị của mình."
   },
   "kdfParallelism": {
-    "message": "KDF parallelism"
+    "message": "KDF song song"
   },
   "argon2Desc": {
-    "message": "Higher KDF iterations, memory, and parallelism can help protect your master password from being brute forced by an attacker."
+    "message": "Số lần lặp KDF cao hơn, bộ nhớ và khả năng song song có thể giúp bảo vệ mật khẩu chính của bạn khỏi bị tấn công bằng phương pháp dò tìm (brute force) từ phía kẻ tấn công."
   },
   "changeKdf": {
     "message": "Thay đổi KDF"
@@ -1876,31 +1876,31 @@
     "message": "Sẽ đăng xuất bạn ra khỏi phiên hiện tại, sau đó cần đăng nhập lại. Bạn cũng sẽ phải đăng nhập hai bước lại nếu bạn có đăng nhập hai bước. Những phiên đăng nhập trên các thiết bị khác sẽ tiếp tục có hiệu lực lên đến 1 tiếng."
   },
   "newDeviceLoginProtection": {
-    "message": "New device login"
+    "message": "Đăng nhập thiết bị mới"
   },
   "turnOffNewDeviceLoginProtection": {
-    "message": "Turn off new device login protection"
+    "message": "Tắt tính năng bảo vệ đăng nhập thiết bị mới"
   },
   "turnOnNewDeviceLoginProtection": {
-    "message": "Turn on new device login protection"
+    "message": "Bật tính năng bảo vệ đăng nhập thiết bị mới"
   },
   "turnOffNewDeviceLoginProtectionModalDesc": {
-    "message": "Proceed below to turn off the verification emails bitwarden sends when you login from a new device."
+    "message": "Tiếp tục bên dưới để tắt tính năng gửi email cảnh báo mà Bitwarden gửi khi bạn đăng nhập từ một thiết bị mới."
   },
   "turnOnNewDeviceLoginProtectionModalDesc": {
-    "message": "Proceed below to have bitwarden send you verification emails when you login from a new device."
+    "message": "Tiếp tục bên dưới để Bitwarden gửi cho bạn email cảnh báo khi bạn đăng nhập từ một thiết bị mới."
   },
   "turnOffNewDeviceLoginProtectionWarning": {
-    "message": "With new device login protection turned off, anyone with your master password can access your account from any device. To protect your account without verification emails, set up two-step login."
+    "message": "Khi tính năng bảo vệ đăng nhập thiết bị mới bị tắt, bất kỳ ai có mật khẩu chính của bạn đều có thể truy cập tài khoản của bạn từ bất kỳ thiết bị nào. Để bảo vệ tài khoản mà không cần cảnh báo qua email, hãy thiết lập tính năng đăng nhập hai bước."
   },
   "accountNewDeviceLoginProtectionSaved": {
-    "message": "New device login protection changes saved"
+    "message": "Các thay đổi về bảo vệ đăng nhập thiết bị mới đã được lưu."
   },
   "sessionsDeauthorized": {
     "message": "Tất cả phiên đăng nhập đã bị gỡ"
   },
   "accountIsOwnedMessage": {
-    "message": "This account is owned by $ORGANIZATIONNAME$",
+    "message": "Tài khoản này thuộc sở hữu của $ORGANIZATIONNAME$",
     "placeholders": {
       "organizationName": {
         "content": "$1",
@@ -1915,7 +1915,7 @@
     "message": "Đã xóa kho tổ chức."
   },
   "vaultAccessedByProvider": {
-    "message": "Vault accessed by Provider."
+    "message": "Kho lưu trữ được truy cập bởi Nhà cung cấp."
   },
   "purgeVaultDesc": {
     "message": "Tiếp tục để xóa hết tất cả mục và thư mục trong kho của bạn. Những mục thuộc về tổ chức mà bạn chia sẻ sẽ không bị xóa."
@@ -1942,10 +1942,10 @@
     "message": "Tài khoản đã được xóa"
   },
   "accountDeletedDesc": {
-    "message": "Đã đóng tài khoản của bạn và tất cả những dữ liệu liên quan cũng được xóa."
+    "message": "Đã đóng tài khoản của bạn và đã xóa tất cả những dữ liệu liên quan."
   },
   "deleteOrganizationWarning": {
-    "message": "Deleting your organization is permanent. It cannot be undone."
+    "message": "Tổ \u001d\u001d\u001dchức sẽ bị xóa vĩnh viễn và không thể hoàn tác."
   },
   "myAccount": {
     "message": "Tài khoản của tôi"
@@ -1957,30 +1957,30 @@
     "message": "Nhập dữ liệu"
   },
   "onboardingImportDataDetailsPartOne": {
-    "message": "If you don't have any data to import, you can create a ",
+    "message": "Nếu bạn không có dữ liệu nào để nhập, bạn có thể tạo một ",
     "description": "This will be part of a larger sentence, that will read like this: If you don't have any data to import, you can create a new item instead. (Optional second half: You may need to wait until your administrator confirms your organization membership.)"
   },
   "onboardingImportDataDetailsLink": {
-    "message": "new item",
+    "message": "mục mới",
     "description": "This will be part of a larger sentence, that will read like this: If you don't have any data to import, you can create a new item instead. (Optional second half: You may need to wait until your administrator confirms your organization membership.)"
   },
   "onboardingImportDataDetailsLoginLink": {
-    "message": "new login",
+    "message": "đăng nhập mới",
     "description": "This will be part of a larger sentence, that will read like this: If you don't have any data to import, you can create a new login instead. (Optional second half: You may need to wait until your administrator confirms your organization membership.)"
   },
   "onboardingImportDataDetailsPartTwoNoOrgs": {
-    "message": " instead.",
+    "message": " thay thế.",
     "description": "This will be part of a larger sentence, that will read like this: If you don't have any data to import, you can create a new item instead."
   },
   "onboardingImportDataDetailsPartTwoWithOrgs": {
-    "message": " instead. You may need to wait until your administrator confirms your organization membership.",
+    "message": " thay thế. Bạn có thể cần phải chờ cho đến khi quản trị viên xác nhận tư cách thành viên của tổ chức của bạn.",
     "description": "This will be part of a larger sentence, that will read like this: If you don't have any data to import, you can create a new item instead. You may need to wait until your administrator confirms your organization membership."
   },
   "importError": {
     "message": "Lỗi nhập"
   },
   "importErrorDesc": {
-    "message": "There was a problem with the data you tried to import. Please resolve the errors listed below in your source file and try again."
+    "message": "Có vấn đề với dữ liệu bạn đang cố gắng nhập. Vui lòng khắc phục các lỗi được liệt kê bên dưới trong tệp nguồn của bạn và thử lại."
   },
   "importSuccess": {
     "message": "Dữ liệu đã được nhập vào kho thành công."
@@ -1998,7 +1998,7 @@
     "message": "Đã xuất dữ liệu thành công"
   },
   "importWarning": {
-    "message": "You are importing data to $ORGANIZATION$. Your data may be shared with members of this organization. Do you want to proceed?",
+    "message": "Bạn đang nhập dữ liệu vào $ORGANIZATION$. Dữ liệu của bạn có thể được chia sẻ với các thành viên của tổ chức này. Bạn có muốn tiếp tục không?",
     "placeholders": {
       "organization": {
         "content": "$1",
@@ -2013,22 +2013,22 @@
     "message": "Không có gì được nhập."
   },
   "importEncKeyError": {
-    "message": "Error decrypting the exported file. Your encryption key does not match the encryption key used export the data."
+    "message": "Lỗi giải mã tập tin đã xuất. Khóa mã hóa của bạn không khớp với khóa mã hóa được sử dụng để xuất dữ liệu."
   },
   "destination": {
-    "message": "Destination"
+    "message": "Đến"
   },
   "learnAboutImportOptions": {
-    "message": "Learn about your import options"
+    "message": "Tìm hiểu các tuỳ chọn nhập của bạn"
   },
   "selectImportFolder": {
-    "message": "Select a folder"
+    "message": "Chọn thư mục"
   },
   "selectImportCollection": {
-    "message": "Select a collection"
+    "message": "Chọn bộ sưu tập"
   },
   "importTargetHint": {
-    "message": "Select this option if you want the imported file contents moved to a $DESTINATION$",
+    "message": "Chọn tùy chọn này nếu bạn muốn nội dung của tệp đã nhập được di chuyển đến $DESTINATION$",
     "description": "Located as a hint under the import target. Will be appended by either folder or collection, depending if the user is importing into an individual or an organizational vault.",
     "placeholders": {
       "destination": {
@@ -2038,7 +2038,7 @@
     }
   },
   "importUnassignedItemsError": {
-    "message": "File contains unassigned items."
+    "message": "Tập tin chứa các mục không xác định."
   },
   "selectFormat": {
     "message": "Chọn định dạng xuất"
@@ -2087,7 +2087,7 @@
     "message": "Hiện biểu tượng trang web"
   },
   "faviconDesc": {
-    "message": "Show a recognizable image next to each login."
+    "message": "Hiện logo trang web bên cạnh mỗi đăng nhập."
   },
   "default": {
     "message": "Mặc định"
@@ -2096,7 +2096,7 @@
     "message": "Quy tắc tên miền"
   },
   "domainRulesDesc": {
-    "message": "If you have the same login across multiple different website domains, you can mark the website as \"equivalent\". \"Global\" domains are ones already created for you by Bitwarden."
+    "message": "Nếu bạn sử dụng cùng một tài khoản đăng nhập trên nhiều tên miền website khác nhau, bạn có thể đánh dấu website đó là \"tương đương\". Các tên miền \"Toàn cầu\" là những tên miền đã được Bitwarden tạo sẵn cho bạn."
   },
   "globalEqDomains": {
     "message": "Các tên miền tương đương toàn cầu"
@@ -2445,24 +2445,24 @@
     "message": "Báo cáo"
   },
   "reportsDesc": {
-    "message": "Identify and close security gaps in your online accounts by clicking the reports below.",
+    "message": "Xác định và khắc phục các lỗ hổng bảo mật trong tài khoản trực tuyến của bạn bằng cách nhấp vào các báo cáo bên dưới.",
     "description": "Vault health reports can be used to evaluate the security of your Bitwarden individual or organization vault."
   },
   "orgsReportsDesc": {
-    "message": "Identify and close security gaps in your organization's accounts by clicking the reports below.",
+    "message": "Xác định và khắc phục các lỗ hổng bảo mật trong tài khoản của tổ chức bằng cách nhấp vào các báo cáo bên dưới.",
     "description": "Vault health reports can be used to evaluate the security of your Bitwarden individual or organization vault."
   },
   "unsecuredWebsitesReport": {
     "message": "Trang web không an toàn"
   },
   "unsecuredWebsitesReportDesc": {
-    "message": "URLs that start with http:// don’t use the best available encryption. Change the login URIs for these accounts to https:// for safer browsing."
+    "message": "Các URL bắt đầu bằng http:// không được mã hóa. Hãy thay đổi các URL đăng nhập cho các tài khoản này thành https:// để đảm bảo an toàn khi duyệt web."
   },
   "unsecuredWebsitesFound": {
     "message": "Tìm thấy trang web không an toàn"
   },
   "unsecuredWebsitesFoundReportDesc": {
-    "message": "We found $COUNT$ items in your $VAULT$ with unsecured URIs. You should change their URI scheme to https:// if the website allows it.",
+    "message": "Chúng tôi đã phát hiện $COUNT$ mục trong $VAULT$ của bạn có các đường dẫn không an toàn. Bạn nên thay đổi địa chỉ đường dẫn của chúng thành https:// nếu trang web cho phép.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -2475,19 +2475,19 @@
     }
   },
   "noUnsecuredWebsites": {
-    "message": "No items in your vault have unsecured URIs."
+    "message": "Không có mục nào trong kho lưu trữ của bạn chứa các đường dẫn không bảo mật."
   },
   "inactive2faReport": {
-    "message": "Inactive two-step login"
+    "message": "Đăng nhập hai bước không hoạt động"
   },
   "inactive2faReportDesc": {
     "message": "Đăng nhập hai bước sẽ thêm một lớp bảo vệ cho tài khoản của bạn. Thiết lập đăng nhập hai bước bằng trình xác thực Bitwarden cho các tài khoản này hoặc sử dụng phương pháp thay thế."
   },
   "inactive2faFound": {
-    "message": "Logins without two-step login found"
+    "message": "Đăng nhập không sử dụng xác thực hai yếu tố đã được phát hiện"
   },
   "inactive2faFoundReportDesc": {
-    "message": "We found $COUNT$ website(s) in your $VAULT$ that may not be configured with two-step login (according to 2fa.directory). To further protect these accounts, you should set up two-step login.",
+    "message": "Chúng tôi đã tìm thấy $COUNT$ trang web trong $VAULT$ của bạn có thể chưa được cấu hình với tính năng đăng nhập hai bước (theo 2fa.directory). Để bảo vệ thêm cho các tài khoản này, bạn nên thiết lập tính năng đăng nhập hai bước.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -2509,13 +2509,13 @@
     "message": "Mật khẩu bị rò rỉ"
   },
   "exposedPasswordsReportDesc": {
-    "message": "Passwords exposed in a data breach are easy targets for attackers. Change these passwords to prevent potential break-ins."
+    "message": "Mật khẩu bị lộ trong một vụ vi phạm dữ liệu là mục tiêu dễ dàng cho các tin tặc. Hãy thay đổi các mật khẩu này để ngăn chặn các cuộc tấn công tiềm ẩn."
   },
   "exposedPasswordsFound": {
     "message": "Phát hiện mật khẩu bị rò rĩ"
   },
   "exposedPasswordsFoundReportDesc": {
-    "message": "We found $COUNT$ items in your $VAULT$ that have passwords that were exposed in known data breaches. You should change them to use a new password.",
+    "message": "Chúng tôi đã phát hiện $COUNT$ mục trong $VAULT$ của bạn có mật khẩu bị lộ trong các vụ vi phạm dữ liệu đã biết. Bạn nên thay đổi chúng sang mật khẩu mới.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -2528,16 +2528,16 @@
     }
   },
   "noExposedPasswords": {
-    "message": "No items in your vault have passwords that have been exposed in known data breaches."
+    "message": "Không có mục nào trong kho lưu trữ của bạn có mật khẩu bị lộ trong các vụ vi phạm dữ liệu đã được biết đến."
   },
   "checkExposedPasswords": {
     "message": "Kiểm tra mật khẩu bị rò rỉ"
   },
   "timesExposed": {
-    "message": "Times exposed"
+    "message": "Thời gian bị lộ"
   },
   "exposedXTimes": {
-    "message": "Exposed $COUNT$ time(s)",
+    "message": "Đã hiển thị $COUNT$ lần",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -2555,7 +2555,7 @@
     "message": "Phát hiện mật khẩu yếu"
   },
   "weakPasswordsFoundReportDesc": {
-    "message": "We found $COUNT$ items in your $VAULT$ with passwords that are not strong. You should update them to use stronger passwords.",
+    "message": "Chúng tôi đã phát hiện $COUNT$ mục trong $VAULT$ của bạn có mật khẩu không đủ mạnh. Bạn nên cập nhật mật khẩu mạnh hơn cho chúng.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -2568,22 +2568,22 @@
     }
   },
   "noWeakPasswords": {
-    "message": "No items in your vault have weak passwords."
+    "message": "Không có mục nào trong kho lưu trữ của bạn có mật khẩu yếu."
   },
   "weakness": {
-    "message": "Weakness"
+    "message": "Điểm yếu"
   },
   "reusedPasswordsReport": {
     "message": "Mật khẩu bị trùng"
   },
   "reusedPasswordsReportDesc": {
-    "message": "Reusing passwords makes it easier for attackers to break into multiple accounts. Change these passwords so that each is unique."
+    "message": "Sử dụng lại mật khẩu sẽ khiến tin tặc dễ dàng xâm nhập vào nhiều tài khoản. Hãy thay đổi các mật khẩu này sao cho mỗi mật khẩu là duy nhất."
   },
   "reusedPasswordsFound": {
     "message": "Phát hiện mật khẩu bị trùng"
   },
   "reusedPasswordsFoundReportDesc": {
-    "message": "We found $COUNT$ passwords that are being reused in your $VAULT$. You should change them to a unique value.",
+    "message": "Chúng tôi đã phát hiện $COUNT$ mật khẩu đang được sử dụng lại trong $VAULT$ của bạn. Bạn nên thay đổi chúng thành các giá trị duy nhất.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -2596,13 +2596,13 @@
     }
   },
   "noReusedPasswords": {
-    "message": "No logins in your vault have passwords that are being reused."
+    "message": "Không có tài khoản nào trong kho lưu trữ của bạn sử dụng lại các mật khẩu."
   },
   "timesReused": {
-    "message": "Times reused"
+    "message": "Số lần sử dụng lại"
   },
   "reusedXTimes": {
-    "message": "Reused $COUNT$ times",
+    "message": "Sư dụng lại $COUNT$ lần",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -2614,16 +2614,16 @@
     "message": "Dữ liệu bị rò rĩ"
   },
   "breachDesc": {
-    "message": "Breached accounts can expose your personal information. Secure breached accounts by enabling 2FA or creating a stronger password."
+    "message": "Tài khoản bị xâm phạm có thể lộ thông tin cá nhân của bạn. Hãy bảo vệ tài khoản bị xâm phạm bằng cách kích hoạt xác thực hai yếu tố (2FA) hoặc tạo mật khẩu mạnh hơn."
   },
   "breachCheckUsernameEmail": {
-    "message": "Check any usernames or email addresses that you use."
+    "message": "Kiểm tra các tên đăng nhập hoặc địa chỉ email mà bạn sử dụng."
   },
   "checkBreaches": {
-    "message": "Check breaches"
+    "message": "Kiểm tra các vi phạm"
   },
   "breachUsernameNotFound": {
-    "message": "$USERNAME$ was not found in any known data breaches.",
+    "message": "$USERNAME$ không được tìm thấy trong bất kỳ vụ rò rỉ dữ liệu nào đã biết.",
     "placeholders": {
       "username": {
         "content": "$1",
@@ -2636,7 +2636,7 @@
     "description": "ex. Good News, No Breached Accounts Found!"
   },
   "breachUsernameFound": {
-    "message": "$USERNAME$ was found in $COUNT$ different data breaches online.",
+    "message": "$USERNAME$ đã được phát hiện trong $COUNT$ vụ vi phạm dữ liệu trực tuyến khác nhau.",
     "placeholders": {
       "username": {
         "content": "$1",
@@ -2649,59 +2649,59 @@
     }
   },
   "breachFound": {
-    "message": "Breached accounts found"
+    "message": "Đã tìm thấy các tài khoản bị lộ thông tin"
   },
   "compromisedData": {
-    "message": "Compromised data"
+    "message": "Dữ liệu bị xâm phạm"
   },
   "website": {
     "message": "Trang web"
   },
   "affectedUsers": {
-    "message": "Affected users"
+    "message": "Người dùng bị ảnh hưởng"
   },
   "breachOccurred": {
-    "message": "Breach occurred"
+    "message": "Vụ vi phạm đã xảy ra"
   },
   "breachReported": {
-    "message": "Breach reported"
+    "message": "Sự cố vi phạm đã được báo cáo"
   },
   "reportError": {
-    "message": "An error occurred trying to load the report. Try again"
+    "message": "Đã xảy ra lỗi khi cố gắng tải báo cáo. Vui lòng thử lại"
   },
   "billing": {
     "message": "Hóa đơn"
   },
   "billingPlanLabel": {
-    "message": "Billing plan"
+    "message": "Kế hoạch thanh toán"
   },
   "paymentType": {
-    "message": "Payment type"
+    "message": "Phương thức thanh toán"
   },
   "accountCredit": {
-    "message": "Account credit",
+    "message": "Tín dụng tài khoản",
     "description": "Financial term. In the case of Bitwarden, a positive balance means that you owe money, while a negative balance means that you have a credit (Bitwarden owes you money)."
   },
   "accountBalance": {
-    "message": "Account balance",
+    "message": "Số dư tài khoản",
     "description": "Financial term. In the case of Bitwarden, a positive balance means that you owe money, while a negative balance means that you have a credit (Bitwarden owes you money)."
   },
   "addCredit": {
-    "message": "Add credit",
+    "message": "Thêm tín dụng",
     "description": "Add more credit to your account's balance."
   },
   "amount": {
-    "message": "Amount",
+    "message": "Số lượng",
     "description": "Dollar amount, or quantity."
   },
   "creditDelayed": {
-    "message": "Added credit will appear on your account after the payment has been fully processed. Some payment methods are delayed and can take longer to process than others."
+    "message": "Số tiền được cộng thêm sẽ hiển thị trên tài khoản của bạn sau khi giao dịch thanh toán được xử lý hoàn tất. Một số phương thức thanh toán có thể bị trì hoãn và mất nhiều thời gian hơn để xử lý so với các phương thức khác."
   },
   "makeSureEnoughCredit": {
-    "message": "Please make sure that your account has enough credit available for this purchase. If your account does not have enough credit available, your default payment method on file will be used for the difference. You can add credit to your account from the Billing page."
+    "message": "Vui lòng đảm bảo tài khoản của bạn có đủ số dư để thực hiện giao dịch này. Nếu tài khoản của bạn không đủ số dư, phương thức thanh toán mặc định đã đăng ký sẽ được sử dụng để thanh toán phần chênh lệch. Bạn có thể nạp tiền vào tài khoản từ trang Thanh toán."
   },
   "creditAppliedDesc": {
-    "message": "Your account's credit can be used to make purchases. Any available credit will be automatically applied towards invoices generated for this account."
+    "message": "Số dư trong tài khoản của bạn có thể được sử dụng để thực hiện các giao dịch mua hàng. Số dư khả dụng sẽ được tự động áp dụng cho các hóa đơn được tạo ra cho tài khoản này."
   },
   "goPremium": {
     "message": "Nâng cấp tài khoản",
@@ -2714,28 +2714,28 @@
     "message": "Nâng cấp tài khoản của bạn lên thành viên Cao Cấp và mở khóa một số tính năng bổ sung tuyệt vời."
   },
   "premiumSignUpStorage": {
-    "message": "1 GB encrypted storage for file attachments."
+    "message": "1GB bộ nhớ lưu trữ được mã hóa cho các tệp đính kèm."
   },
   "premiumSignUpTwoStepOptions": {
-    "message": "Proprietary two-step login options such as YubiKey and Duo."
+    "message": "Các tùy chọn xác minh hai bước như YubiKey và Duo."
   },
   "premiumSignUpEmergency": {
-    "message": "Emergency access"
+    "message": "Truy cập khẩn cấp"
   },
   "premiumSignUpReports": {
-    "message": "Password hygiene, account health, and data breach reports to keep your vault safe."
+    "message": "Thanh lọc mật khẩu, kiểm tra an toàn tài khoản và các báo cáo rò rỉ dữ liệu để bảo vệ kho dữ liệu của bạn."
   },
   "premiumSignUpTotp": {
     "message": "Mã xác nhận TOTP (2FA) để đăng nhập vào kho của bạn."
   },
   "premiumSignUpSupport": {
-    "message": "Priority customer support."
+    "message": "Hỗ trợ khách hàng ưu tiên."
   },
   "premiumSignUpFuture": {
-    "message": "All future Premium features. More coming soon!"
+    "message": "Tất cả các tính năng Cao cấp trong tương lai. Nó sẽ sớm xuất hiện!"
   },
   "premiumPrice": {
-    "message": "All for just $PRICE$ /year!",
+    "message": "Tất cả chỉ với $PRICE$/năm!",
     "placeholders": {
       "price": {
         "content": "$1",
@@ -2744,7 +2744,7 @@
     }
   },
   "premiumPriceWithFamilyPlan": {
-    "message": "Go premium for just $PRICE$ /year, or get premium accounts for $FAMILYPLANUSERCOUNT$ users and unlimited family sharing with a ",
+    "message": "Nâng cấp lên gói Cao cấp chỉ với $PRICE$ /năm, hoặc đăng ký gói Cao cấp cho $FAMILYPLANUSERCOUNT$ người dùng và chia sẻ không giới hạn cho gia đình với một ",
     "placeholders": {
       "price": {
         "content": "$1",
@@ -2757,7 +2757,7 @@
     }
   },
   "bitwardenFamiliesPlan": {
-    "message": "Bitwarden Families plan."
+    "message": "Gói Bitwarden Gia Đình."
   },
   "addons": {
     "message": "Tiện ích bổ sung"
@@ -3058,10 +3058,10 @@
     "message": "Tên doanh nghiệp"
   },
   "chooseYourPlan": {
-    "message": "Choose your plan"
+    "message": "Chọn gói của bạn"
   },
   "users": {
-    "message": "Users"
+    "message": "Người dùng"
   },
   "userSeats": {
     "message": "User seats"
@@ -3495,47 +3495,47 @@
     "message": "Logged in"
   },
   "changedPassword": {
-    "message": "Changed account password"
+    "message": "Đã thay đổi mật khẩu tài khoản"
   },
   "enabledUpdated2fa": {
-    "message": "Two-step login saved"
+    "message": "Đăng nhập hai bước đã được kích hoạt"
   },
   "disabled2fa": {
     "message": "Đã tắt đăng nhập 2 bước"
   },
   "recovered2fa": {
-    "message": "Recovered account from two-step login."
+    "message": "Khôi phục tài khoản từ tính năng đăng nhập hai bước."
   },
   "failedLogin": {
-    "message": "Login attempt failed with incorrect password."
+    "message": "Đăng nhập thất bại do mật khẩu không chính xác."
   },
   "failedLogin2fa": {
-    "message": "Login attempt failed with incorrect two-step login."
+    "message": "Đăng nhập thất bại do sử dụng phương thức đăng nhập hai bước không chính xác."
   },
   "incorrectPassword": {
-    "message": "Incorrect password"
+    "message": "Mật khẩu không đúng"
   },
   "incorrectCode": {
-    "message": "Incorrect code"
+    "message": "Mã không đúng"
   },
   "incorrectPin": {
-    "message": "Incorrect PIN"
+    "message": "Mã PIN không đúng"
   },
   "pin": {
-    "message": "PIN",
+    "message": "Mã PIN",
     "description": "PIN code. Ex. The short code (often numeric) that you use to unlock a device."
   },
   "exportedVault": {
-    "message": "Vault exported"
+    "message": "Đã xuất kho lưu trữ"
   },
   "exportedOrganizationVault": {
-    "message": "Exported organization vault."
+    "message": "Đã xuất dữ liệu kho tổ chức."
   },
   "editedOrgSettings": {
-    "message": "Edited organization settings."
+    "message": "Đã chỉnh sửa cài đặt tổ chức."
   },
   "createdItemId": {
-    "message": "Created item $ID$.",
+    "message": "Đã tạo mục $ID$.",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -3544,7 +3544,7 @@
     }
   },
   "editedItemId": {
-    "message": "Edited item $ID$.",
+    "message": "Đã sửa mục $ID$.",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -3553,7 +3553,7 @@
     }
   },
   "deletedItemId": {
-    "message": "Sent item $ID$ to trash.",
+    "message": "Đã chuyển mục $ID$ vào thùng rác.",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -3562,7 +3562,7 @@
     }
   },
   "movedItemIdToOrg": {
-    "message": "Moved item $ID$ to an organization.",
+    "message": "Đã di chuyển mục $ID$ vào một tổ chức.",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -3571,13 +3571,13 @@
     }
   },
   "viewAllLogInOptions": {
-    "message": "View all log in options"
+    "message": "Xem tất cả tùy chọn đăng nhập"
   },
   "viewAllLoginOptions": {
-    "message": "View all log in options"
+    "message": "Xem tất cả tùy chọn đăng nhập"
   },
   "viewedItemId": {
-    "message": "Viewed item $ID$.",
+    "message": "Đã xem mục $ID$.",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -3586,7 +3586,7 @@
     }
   },
   "viewedPasswordItemId": {
-    "message": "Viewed password for item $ID$.",
+    "message": "Đã xem mật khẩu của $ID$.",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -3595,7 +3595,7 @@
     }
   },
   "viewedHiddenFieldItemId": {
-    "message": "Viewed hidden field for item $ID$.",
+    "message": "Xem trường ẩn của $ID$.",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -3604,7 +3604,7 @@
     }
   },
   "viewedCardNumberItemId": {
-    "message": "Viewed Card Number for item $ID$.",
+    "message": "Đã xem số thẻ của $ID$.",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -3613,7 +3613,7 @@
     }
   },
   "viewedSecurityCodeItemId": {
-    "message": "Viewed security code for item $ID$.",
+    "message": "Đã xem mã bảo mật của $ID$.",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -3622,7 +3622,7 @@
     }
   },
   "viewCollectionWithName": {
-    "message": "View collection - $NAME$",
+    "message": "Xem bộ sưu tập - $NAME$",
     "placeholders": {
       "name": {
         "content": "$1",
@@ -3631,7 +3631,7 @@
     }
   },
   "editItemWithName": {
-    "message": "Edit item - $NAME$",
+    "message": "Chỉnh sửa mục - $NAME$",
     "placeholders": {
       "name": {
         "content": "$1",
@@ -3640,7 +3640,7 @@
     }
   },
   "copiedPasswordItemId": {
-    "message": "Copied password for item $ID$.",
+    "message": "Đã sao chép mật khẩu của $ID$.",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -3649,7 +3649,7 @@
     }
   },
   "copiedHiddenFieldItemId": {
-    "message": "Copied hidden field for item $ID$.",
+    "message": "Đã sao chép trường ẩn của $ID$.",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -3658,7 +3658,7 @@
     }
   },
   "copiedSecurityCodeItemId": {
-    "message": "Copied security code for item $ID$.",
+    "message": "Đã sao chép mã bảo mật của $ID$.",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -3667,7 +3667,7 @@
     }
   },
   "autofilledItemId": {
-    "message": "Auto-filled item $ID$.",
+    "message": "Tự động điền cho $ID$.",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -3676,7 +3676,7 @@
     }
   },
   "createdCollectionId": {
-    "message": "Created collection $ID$.",
+    "message": "Đã tạo bộ sưu tập $ID$.",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -3685,7 +3685,7 @@
     }
   },
   "editedCollectionId": {
-    "message": "Edited collection $ID$.",
+    "message": "Đã sửa bộ sưu tập $ID$.",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -3694,10 +3694,10 @@
     }
   },
   "deletedCollections": {
-    "message": "Deleted collections"
+    "message": "Đã xóa các bộ sưu tập"
   },
   "deletedCollectionId": {
-    "message": "Deleted collection $ID$.",
+    "message": "Đã xóa bộ sưu tập $ID$.",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -3706,7 +3706,7 @@
     }
   },
   "editedPolicyId": {
-    "message": "Edited policy $ID$.",
+    "message": "Đã chỉnh sửa chính sách $ID$.",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -3715,7 +3715,7 @@
     }
   },
   "createdGroupId": {
-    "message": "Created group $ID$.",
+    "message": "Đã tạo nhóm $ID$.",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -3724,7 +3724,7 @@
     }
   },
   "editedGroupId": {
-    "message": "Edited group $ID$.",
+    "message": "Đã chỉnh sửa nhóm $ID$.",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -3733,7 +3733,7 @@
     }
   },
   "deletedGroupId": {
-    "message": "Deleted group $ID$.",
+    "message": "Đã xóa nhóm $ID$.",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -3742,7 +3742,7 @@
     }
   },
   "deletedManyGroups": {
-    "message": "Deleted $QUANTITY$ group(s).",
+    "message": "Đã xóa $QUANTITY$ nhóm.",
     "placeholders": {
       "quantity": {
         "content": "$1",
@@ -3751,7 +3751,7 @@
     }
   },
   "removedUserId": {
-    "message": "Removed user $ID$.",
+    "message": "Đã xóa người dùng $ID$.",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -3760,7 +3760,7 @@
     }
   },
   "removeUserIdAccess": {
-    "message": "Remove $ID$ access",
+    "message": "Xóa quyền truy cập $ID$",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -3769,7 +3769,7 @@
     }
   },
   "revokedUserId": {
-    "message": "Revoked organization access for $ID$.",
+    "message": "Quyền truy cập của tổ chức của $ID$ đã bị thu hồi.",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -3778,7 +3778,7 @@
     }
   },
   "restoredUserId": {
-    "message": "Restored organization access for $ID$.",
+    "message": "Đã khôi phục quyền truy cập tổ chức của $ID$.",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -3787,7 +3787,7 @@
     }
   },
   "revokeUserId": {
-    "message": "Revoke $ID$ access",
+    "message": "Hủy quyền truy cập của $ID$",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -3796,7 +3796,7 @@
     }
   },
   "createdAttachmentForItem": {
-    "message": "Created attachment for item $ID$.",
+    "message": "Đã tạo tệp đính kèm cho mục $ID$.",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -3805,7 +3805,7 @@
     }
   },
   "deletedAttachmentForItem": {
-    "message": "Deleted attachment for item $ID$.",
+    "message": "Đã xóa tệp đính kèm cho mục $ID$.",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -3814,7 +3814,7 @@
     }
   },
   "editedCollectionsForItem": {
-    "message": "Edited collections for item $ID$.",
+    "message": "Đã chỉnh sửa bộ sưu tập cho mục $ID$.",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -3823,7 +3823,7 @@
     }
   },
   "invitedUserId": {
-    "message": "Invited user $ID$.",
+    "message": "Đã mời người dùng $ID$.",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -3832,7 +3832,7 @@
     }
   },
   "confirmedUserId": {
-    "message": "Confirmed user $ID$.",
+    "message": "Người dùng đã xác nhận $ID$.",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -3841,7 +3841,7 @@
     }
   },
   "editedUserId": {
-    "message": "Edited user $ID$.",
+    "message": "Người dùng $ID$ đã được chỉnh sửa.",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -3850,7 +3850,7 @@
     }
   },
   "editedGroupsForUser": {
-    "message": "Edited groups for user $ID$.",
+    "message": "Nhóm đã chỉnh sửa cho người dùng $ID$.",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -3859,10 +3859,10 @@
     }
   },
   "unlinkedSso": {
-    "message": "Unlinked SSO."
+    "message": "SSO chưa liên kết."
   },
   "unlinkedSsoUser": {
-    "message": "Unlinked SSO for user $ID$.",
+    "message": "SSO không liên kết cho người dùng $ID$.",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -3871,7 +3871,7 @@
     }
   },
   "createdOrganizationId": {
-    "message": "Created organization $ID$.",
+    "message": "Tạo tổ chức $ID$.",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -3880,7 +3880,7 @@
     }
   },
   "addedOrganizationId": {
-    "message": "Added organization $ID$.",
+    "message": "Đã thêm tổ chức $ID$.",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -3889,7 +3889,7 @@
     }
   },
   "removedOrganizationId": {
-    "message": "Removed organization $ID$.",
+    "message": "Đã xóa tổ chức $ID$.",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -3898,7 +3898,7 @@
     }
   },
   "accessedClientVault": {
-    "message": "Accessed $ID$ organization vault.",
+    "message": "Đã truy cập kho lưu trữ của tổ chức $ID$.",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -3910,22 +3910,22 @@
     "message": "Thiết bị"
   },
   "loginStatus": {
-    "message": "Login status"
+    "message": "Trạng thái đăng nhập"
   },
   "firstLogin": {
-    "message": "First login"
+    "message": "Đăng nhập lần đầu"
   },
   "trusted": {
-    "message": "Trusted"
+    "message": "Tin tưởng"
   },
   "needsApproval": {
-    "message": "Needs approval"
+    "message": "Cần phê duyệt"
   },
   "areYouTryingtoLogin": {
-    "message": "Are you trying to log in?"
+    "message": "Bạn đang cố gắng đăng nhập?"
   },
   "logInAttemptBy": {
-    "message": "Login attempt by $EMAIL$",
+    "message": "Thao tác đăng nhập của $EMAIL$",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3934,22 +3934,22 @@
     }
   },
   "deviceType": {
-    "message": "Device Type"
+    "message": "Loại thiết bị"
   },
   "ipAddress": {
-    "message": "IP Address"
+    "message": "Địa chỉ IP"
   },
   "confirmLogIn": {
-    "message": "Confirm login"
+    "message": "Xác nhận đăng nhập"
   },
   "denyLogIn": {
-    "message": "Deny login"
+    "message": "Từ chối đăng nhập"
   },
   "thisRequestIsNoLongerValid": {
-    "message": "This request is no longer valid."
+    "message": "Yêu cầu này không còn hiệu lực."
   },
   "logInConfirmedForEmailOnDevice": {
-    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "message": "Đã xác nhận đăng nhập cho $EMAIL$ trên $DEVICE$",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3962,16 +3962,16 @@
     }
   },
   "youDeniedALogInAttemptFromAnotherDevice": {
-    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+    "message": "Bạn đã từ chối một lần đăng nhập từ thiết bị khác. Nếu thực sự là bạn, hãy thử đăng nhập lại bằng thiết bị đó."
   },
   "loginRequestHasAlreadyExpired": {
-    "message": "Login request has already expired."
+    "message": "Yêu cầu đăng nhập đã hết hạn."
   },
   "justNow": {
-    "message": "Just now"
+    "message": "Vừa xong"
   },
   "requestedXMinutesAgo": {
-    "message": "Requested $MINUTES$ minutes ago",
+    "message": "Đã yêu cầu $MINUTES$ phút trước",
     "placeholders": {
       "minutes": {
         "content": "$1",
@@ -3980,49 +3980,49 @@
     }
   },
   "creatingAccountOn": {
-    "message": "Creating account on"
+    "message": "Đang tạo tài khoản trên"
   },
   "checkYourEmail": {
-    "message": "Check your email"
+    "message": "Kiểm tra email của bạn"
   },
   "followTheLinkInTheEmailSentTo": {
-    "message": "Follow the link in the email sent to"
+    "message": "Nhấp vào liên kết được gửi đến trong email"
   },
   "andContinueCreatingYourAccount": {
-    "message": "and continue creating your account."
+    "message": "và tiếp tục tạo tài khoản của bạn."
   },
   "noEmail": {
-    "message": "No email?"
+    "message": "Không nhận được email?"
   },
   "goBack": {
-    "message": "Go back"
+    "message": "Quay lại"
   },
   "toEditYourEmailAddress": {
-    "message": "to edit your email address."
+    "message": "để chỉnh sửa địa chỉ email của bạn."
   },
   "view": {
-    "message": "View"
+    "message": "Xem"
   },
   "invalidDateRange": {
-    "message": "Invalid date range."
+    "message": "Phạm vi ngày không hợp lệ."
   },
   "errorOccurred": {
-    "message": "An error has occurred."
+    "message": "Đã xảy ra lỗi."
   },
   "userAccess": {
-    "message": "User access"
+    "message": "Quyền truy cập của người dùng"
   },
   "userType": {
-    "message": "User type"
+    "message": "Kiểu người dùng"
   },
   "groupAccess": {
-    "message": "Group access"
+    "message": "Quyền truy cập của nhóm"
   },
   "groupAccessUserDesc": {
-    "message": "Grant member access to collections by adding them to 1 or more groups."
+    "message": "Cho phép thành viên truy cập vào các bộ sưu tập bằng cách thêm họ vào 1 hoặc nhiều nhóm."
   },
   "invitedUsers": {
-    "message": "User(s) invited"
+    "message": "Người dùng đã mời"
   },
   "resendInvitation": {
     "message": "Gửi lại lời mời"
@@ -4031,7 +4031,7 @@
     "message": "Gửi lại email"
   },
   "hasBeenReinvited": {
-    "message": "$USER$ reinvited",
+    "message": "$USER$ đã được mời lại",
     "placeholders": {
       "user": {
         "content": "$1",
@@ -4040,13 +4040,13 @@
     }
   },
   "confirm": {
-    "message": "Confirm"
+    "message": "Xác nhận"
   },
   "confirmUser": {
-    "message": "Confirm user"
+    "message": "Xác nhận người dùng"
   },
   "hasBeenConfirmed": {
-    "message": "$USER$ confirmed.",
+    "message": "$USER$ đã được xác nhận.",
     "placeholders": {
       "user": {
         "content": "$1",
@@ -4055,61 +4055,61 @@
     }
   },
   "confirmUsers": {
-    "message": "Confirm members"
+    "message": "Xác nhận thành viên"
   },
   "usersNeedConfirmed": {
-    "message": "You have members that have accepted their invitation, but still need to be confirmed. Members will not have access to the organization until they are confirmed."
+    "message": "Bạn có các thành viên đã chấp nhận lời mời, nhưng vẫn cần được xác nhận. Các thành viên sẽ không có quyền truy cập vào tổ chức cho đến khi họ được xác nhận."
   },
   "startDate": {
-    "message": "Start date"
+    "message": "Ngày bắt đầu"
   },
   "endDate": {
-    "message": "End date"
+    "message": "Ngày kết thúc"
   },
   "verifyEmail": {
-    "message": "Verify email"
+    "message": "Xác nhận email"
   },
   "verifyEmailDesc": {
-    "message": "Verify your account's email address to unlock access to all features."
+    "message": "Xác minh địa chỉ email của tài khoản để mở khóa quyền truy cập vào tất cả các tính năng."
   },
   "verifyEmailFirst": {
-    "message": "Your account's email address first must be verified."
+    "message": "Địa chỉ email tài khoản của bạn trước tiên phải được xác minh."
   },
   "checkInboxForVerification": {
-    "message": "Check your email inbox for a verification link."
+    "message": "Kiểm tra hộp thư đến của bạn để tìm liên kết xác minh."
   },
   "emailVerified": {
-    "message": "Account email verified"
+    "message": "Địa chỉ email đã được xác minh"
   },
   "emailVerifiedV2": {
-    "message": "Email verified"
+    "message": "Đã xác minh email"
   },
   "emailVerifiedFailed": {
-    "message": "Unable to verify your email. Try sending a new verification email."
+    "message": "Không thể xác minh địa chỉ email của bạn. Vui lòng gửi lại email xác minh mới."
   },
   "emailVerificationRequired": {
-    "message": "Email verification required"
+    "message": "Yêu cầu xác minh danh tính qua email"
   },
   "emailVerificationRequiredDesc": {
-    "message": "You must verify your email to use this feature."
+    "message": "Bạn phải xác minh email của mình để sử dụng tính năng này."
   },
   "updateBrowser": {
-    "message": "Update browser"
+    "message": "Cập nhật trình duyệt"
   },
   "generatingYourRiskInsights": {
-    "message": "Generating your Risk Insights..."
+    "message": "Đang tạo báo cáo phân tích rủi ro của bạn..."
   },
   "updateBrowserDesc": {
-    "message": "You are using an unsupported web browser. The web vault may not function properly."
+    "message": "Bạn đang sử dụng trình duyệt web không được hỗ trợ. Kho lưu trữ web có thể không hoạt động đúng cách."
   },
   "youHaveAPendingLoginRequest": {
-    "message": "You have a pending login request from another device."
+    "message": "Bạn có một yêu cầu đăng nhập đang chờ xử lý từ một thiết bị khác."
   },
   "reviewLoginRequest": {
-    "message": "Review login request"
+    "message": "Xem xét yêu cầu đăng nhập"
   },
   "freeTrialEndPromptCount": {
-    "message": "Your free trial ends in $COUNT$ days.",
+    "message": "Thời gian dùng thử miễn phí của bạn sẽ kết thúc trong $COUNT$ ngày.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -4118,7 +4118,7 @@
     }
   },
   "freeTrialEndPromptMultipleDays": {
-    "message": "$ORGANIZATION$, your free trial ends in $COUNT$ days.",
+    "message": "$ORGANIZATION$, thời gian dùng thử miễn phí của bạn sẽ kết thúc trong $COUNT$ ngày.",
     "placeholders": {
       "count": {
         "content": "$2",
@@ -4131,7 +4131,7 @@
     }
   },
   "freeTrialEndPromptTomorrow": {
-    "message": "$ORGANIZATION$, your free trial ends tomorrow.",
+    "message": "$ORGANIZATION$, thời gian dùng thử miễn phí của bạn sẽ kết thúc vào ngày mai.",
     "placeholders": {
       "organization": {
         "content": "$1",
@@ -4140,10 +4140,10 @@
     }
   },
   "freeTrialEndPromptTomorrowNoOrgName": {
-    "message": "Your free trial ends tomorrow."
+    "message": "Thời gian dùng thử miễn phí của bạn sẽ kết thúc vào ngày mai."
   },
   "freeTrialEndPromptToday": {
-    "message": "$ORGANIZATION$, your free trial ends today.",
+    "message": "$ORGANIZATION$, thời gian dùng thử miễn phí của bạn sẽ kết thúc vào hôm nay.",
     "placeholders": {
       "organization": {
         "content": "$1",
@@ -4152,16 +4152,16 @@
     }
   },
   "freeTrialEndingTodayWithoutOrgName": {
-    "message": "Your free trial ends today."
+    "message": "Thời gian dùng thử miễn phí của bạn sẽ kết thúc vào hôm nay."
   },
   "clickHereToAddPaymentMethod": {
-    "message": "Click here to add a payment method."
+    "message": "Nhấp vào đây để thêm phương thức thanh toán."
   },
   "joinOrganization": {
-    "message": "Join organization"
+    "message": "Tham gia tổ chức"
   },
   "joinOrganizationName": {
-    "message": "Join $ORGANIZATIONNAME$",
+    "message": "Tham gia $ORGANIZATIONNAME$",
     "placeholders": {
       "organizationName": {
         "content": "$1",
@@ -4170,25 +4170,25 @@
     }
   },
   "joinOrganizationDesc": {
-    "message": "You've been invited to join the organization listed above. To accept the invitation, you need to log in or create a new Bitwarden account."
+    "message": "Bạn đã được mời tham gia tổ chức bên trên. Để chấp nhận lời mời, bạn cần đăng nhập hoặc tạo tài khoản Bitwarden mới."
   },
   "finishJoiningThisOrganizationBySettingAMasterPassword": {
-    "message": "Finish joining this organization by setting a master password."
+    "message": "Hoàn tất gia nhập tổ chức này bằng cách đặt một mật khẩu chính."
   },
   "inviteAccepted": {
-    "message": "Invitation accepted"
+    "message": "Đã chấp nhận lời mời"
   },
   "inviteAcceptedDesc": {
-    "message": "You can access this organization once an administrator confirms your membership. We'll send you an email when that happens."
+    "message": "Bạn có thể truy cập tổ chức này sau khi quản trị viên xác nhận tư cách thành viên của bạn. Chúng tôi sẽ gửi email cho bạn khi được xác nhận."
   },
   "inviteInitAcceptedDesc": {
-    "message": "You can now access this organization."
+    "message": "Bạn hiện có thể truy cập tổ chức này."
   },
   "inviteAcceptFailed": {
-    "message": "Unable to accept invitation. Ask an organization admin to send a new invitation."
+    "message": "Không thể chấp nhận lời mời. Vui lòng yêu cầu quản trị viên tổ chức gửi lời mời mới."
   },
   "inviteAcceptFailedShort": {
-    "message": "Unable to accept invitation. $DESCRIPTION$",
+    "message": "Không thể chấp nhận lời mời. $DESCRIPTION$",
     "placeholders": {
       "description": {
         "content": "$1",
@@ -4200,16 +4200,16 @@
     "message": "Ghi nhớ email"
   },
   "recoverAccountTwoStepDesc": {
-    "message": "If you cannot access your account through your normal two-step login methods, you can use your two-step login recovery code to turn off all two-step providers on your account."
+    "message": "Nếu bạn không thể truy cập tài khoản của mình thông qua các phương thức đăng nhập hai bước thông thường, bạn có thể sử dụng mã khôi phục đăng nhập hai bước để tắt tất cả các nhà cung cấp đăng nhập hai bước trên tài khoản của mình."
   },
   "logInBelowUsingYourSingleUseRecoveryCode": {
-    "message": "Log in below using your single-use recovery code. This will turn off all two-step providers on your account."
+    "message": "Đăng nhập bằng mã khôi phục sử dụng một lần của bạn. Điều này sẽ tắt tất cả các nhà cung cấp xác minh hai bước trên tài khoản của bạn."
   },
   "recoverAccountTwoStep": {
-    "message": "Recover account two-step login"
+    "message": "Khôi phục tài khoản đăng nhập hai bước"
   },
   "twoStepRecoverDisabled": {
-    "message": "Two-step login turned off on your account."
+    "message": "Tính năng đăng nhập hai bước đã bị tắt trên tài khoản của bạn."
   },
   "learnMore": {
     "message": "Tìm hiểu thêm"
@@ -4224,19 +4224,19 @@
     "message": "Bạn đã yêu cầu xóa tài khoản Bitwarden của mình. Nhấn vào nút bên dưới để xác nhận."
   },
   "deleteRecoverOrgConfirmDesc": {
-    "message": "You have requested to delete your Bitwarden organization."
+    "message": "Bạn đã yêu cầu xóa tổ chức Bitwarden của mình."
   },
   "myOrganization": {
-    "message": "My organization"
+    "message": "Tổ chức của tôi"
   },
   "organizationInfo": {
-    "message": "Organization info"
+    "message": "Thông tin tổ chức"
   },
   "deleteOrganization": {
-    "message": "Delete organization"
+    "message": "Xóa tổ chức"
   },
   "deletingOrganizationContentWarning": {
-    "message": "Enter the master password to confirm deletion of $ORGANIZATION$ and all associated data. Vault data in $ORGANIZATION$ includes:",
+    "message": "Nhập mật khẩu chính để xác nhận việc xóa $ORGANIZATION$ và tất cả dữ liệu liên quan. Dữ liệu trong kho lưu trữ của $ORGANIZATION$ bao gồm:",
     "placeholders": {
       "organization": {
         "content": "$1",
@@ -4245,10 +4245,10 @@
     }
   },
   "deletingOrganizationActiveUserAccountsWarning": {
-    "message": "User accounts will remain active after deletion but will no longer be associated to this organization."
+    "message": "Tài khoản người dùng sẽ vẫn hoạt động sau khi bị xóa nhưng sẽ không còn liên kết với tổ chức này."
   },
   "deletingOrganizationIsPermanentWarning": {
-    "message": "Deleting $ORGANIZATION$ is permanent and irreversible.",
+    "message": "Việc xóa $ORGANIZATION$ là vĩnh viễn và không thể hoàn tác.",
     "placeholders": {
       "organization": {
         "content": "$1",
@@ -4257,13 +4257,13 @@
     }
   },
   "organizationDeleted": {
-    "message": "Organization deleted"
+    "message": "Tổ chức đã bị xóa"
   },
   "organizationDeletedDesc": {
-    "message": "The organization and all associated data has been deleted."
+    "message": "Tổ chức và tất cả dữ liệu liên quan đã bị xóa."
   },
   "organizationUpdated": {
-    "message": "Organization saved"
+    "message": "Tổ chức đã được lưu"
   },
   "taxInformation": {
     "message": "Thông tin thuế"
@@ -4303,22 +4303,22 @@
     "message": "Xác minh tài khoản ngân hàng"
   },
   "verifyBankAccountDesc": {
-    "message": "We have made two micro-deposits to your bank account (it may take 1-2 business days to show up). Enter these amounts to verify the bank account."
+    "message": "Chúng tôi đã thực hiện hai giao dịch chuyển khoản nhỏ vào tài khoản ngân hàng của quý khách (có thể mất 1-2 ngày làm việc để hiển thị). Vui lòng nhập các số tiền này để xác minh tài khoản ngân hàng."
   },
   "verifyBankAccountInitialDesc": {
-    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make two micro-deposits within the next 1-2 business days. Enter these amounts on the organization's billing page to verify the bank account."
+    "message": "Thanh toán bằng tài khoản ngân hàng chỉ áp dụng cho khách hàng tại Hoa Kỳ. Quý khách sẽ cần xác minh tài khoản ngân hàng của mình. Chúng tôi sẽ thực hiện hai giao dịch chuyển khoản nhỏ trong vòng 1-2 ngày làm việc tới. Vui lòng nhập các số tiền này vào trang thanh toán của tổ chức để xác minh tài khoản ngân hàng."
   },
   "verifyBankAccountFailureWarning": {
     "message": "Nếu không xác minh tài khoản ngân hàng, bạn có thể lỡ hạn thanh toán khiến cho gói bị tạm ngừng."
   },
   "verifiedBankAccount": {
-    "message": "Bank account verified"
+    "message": "Tài khoản ngân hàng đã được xác minh"
   },
   "bankAccount": {
-    "message": "Bank account"
+    "message": "Tài khoản ngân hàng"
   },
   "amountX": {
-    "message": "Amount $COUNT$",
+    "message": "Số tiền $COUNT$",
     "description": "Used in bank account verification of micro-deposits. Amount, as in a currency amount. Ex. Amount 1 is $2.00, Amount 2 is $1.50",
     "placeholders": {
       "count": {
@@ -4328,53 +4328,53 @@
     }
   },
   "routingNumber": {
-    "message": "Routing number",
+    "message": "Số định tuyến",
     "description": "Bank account routing number"
   },
   "accountNumber": {
-    "message": "Account number"
+    "message": "Số tài khoản"
   },
   "accountHolderName": {
-    "message": "Account holder name"
+    "message": "Tên chủ tài khoản"
   },
   "bankAccountType": {
     "message": "Loại tài khoản"
   },
   "bankAccountTypeCompany": {
-    "message": "Company (business)"
+    "message": "Công ty (doanh nghiệp)"
   },
   "bankAccountTypeIndividual": {
-    "message": "Individual (personal)"
+    "message": "Cá nhân (riêng lẻ)"
   },
   "enterInstallationId": {
-    "message": "Enter your installation id"
+    "message": "Nhập ID cài đặt của bạn"
   },
   "limitSubscriptionDesc": {
-    "message": "Set a seat limit for your subscription. Once this limit is reached, you will not be able to invite new members."
+    "message": "Đặt giới hạn số lượng thành viên cho gói đăng ký của bạn. Khi đạt đến giới hạn này, bạn sẽ không thể mời thêm thành viên mới."
   },
   "limitSmSubscriptionDesc": {
-    "message": "Set a seat limit for your Secrets Manager subscription. Once this limit is reached, you will not be able to invite new members."
+    "message": "Đặt giới hạn số lượng người dùng cho gói đăng ký Quản lý Bí mật của bạn. Khi đạt đến giới hạn này, bạn sẽ không thể mời thêm thành viên mới."
   },
   "maxSeatLimit": {
-    "message": "Seat Limit (optional)",
+    "message": "Giới hạn số ghế (tùy chọn)",
     "description": "Upper limit of seats to allow through autoscaling"
   },
   "maxSeatCost": {
-    "message": "Max potential seat cost"
+    "message": "Chi phí tối đa cho mỗi ghế"
   },
   "addSeats": {
-    "message": "Add seats",
+    "message": "Thêm ghế",
     "description": "Seat = User Seat"
   },
   "removeSeats": {
-    "message": "Remove seats",
+    "message": "Tháo ghế",
     "description": "Seat = User Seat"
   },
   "subscriptionDesc": {
-    "message": "Adjustments to your subscription will result in prorated changes to your billing totals. If newly invited users exceed your subscription seats, you will immediately receive a prorated charge for the additional users."
+    "message": "Các điều chỉnh đối với gói đăng ký của bạn sẽ dẫn đến việc điều chỉnh theo tỷ lệ tương ứng đối với tổng số tiền thanh toán. Nếu số lượng người dùng mới được mời vượt quá số lượng ghế trong gói đăng ký của bạn, bạn sẽ ngay lập tức nhận được khoản phí theo tỷ lệ tương ứng cho các người dùng thêm."
   },
   "subscriptionUserSeats": {
-    "message": "Your subscription allows for a total of $COUNT$ members.",
+    "message": "Gói đăng ký của bạn cho phép tối đa $COUNT$ thành viên.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -4383,34 +4383,34 @@
     }
   },
   "limitSubscription": {
-    "message": "Limit subscription (optional)"
+    "message": "Giới hạn đăng ký (tùy chọn)"
   },
   "subscriptionSeats": {
-    "message": "Subscription seats"
+    "message": "Ghế đăng ký"
   },
   "subscriptionUpdated": {
     "message": "Đã cập nhật gói"
   },
   "subscribedToSecretsManager": {
-    "message": "Subscription updated. You now have access to Secrets Manager."
+    "message": "Gói đăng ký đã được cập nhật. Bạn hiện đã có quyền truy cập vào Quản lý Bí mật."
   },
   "additionalOptions": {
-    "message": "Additional options"
+    "message": "Tùy chọn bổ sung"
   },
   "additionalOptionsDesc": {
-    "message": "For additional help in managing your subscription, please contact Customer Support."
+    "message": "Để được hỗ trợ thêm trong việc quản lý gói đăng ký của bạn, vui lòng liên hệ với Bộ phận Hỗ trợ Khách hàng."
   },
   "subscriptionUserSeatsUnlimitedAutoscale": {
-    "message": "Adjustments to your subscription will result in prorated changes to your billing totals. If newly invited members exceed your subscription seats, you will immediately receive a prorated charge for the additional members."
+    "message": "Các điều chỉnh đối với gói đăng ký của bạn sẽ dẫn đến việc điều chỉnh theo tỷ lệ tương ứng đối với tổng số tiền thanh toán. Nếu số thành viên mới được mời vượt quá số ghế đăng ký của bạn, bạn sẽ ngay lập tức nhận được khoản phí theo tỷ lệ tương ứng cho các thành viên bổ sung."
   },
   "smStandaloneTrialSeatCountUpdateMessageFragment1": {
-    "message": "If you want to add additional"
+    "message": "Nếu bạn muốn thêm các tùy chọn bổ sung"
   },
   "smStandaloneTrialSeatCountUpdateMessageFragment2": {
-    "message": "seats without the bundled offer, please contact"
+    "message": "ghế mà không kèm theo gói ưu đãi, vui lòng liên hệ"
   },
   "subscriptionUserSeatsLimitedAutoscale": {
-    "message": "Adjustments to your subscription will result in prorated changes to your billing totals. If newly invited members exceed your subscription seats, you will immediately receive a prorated charge for the additional members until your $MAX$ seat limit is reached.",
+    "message": "Các điều chỉnh đối với gói đăng ký của bạn sẽ dẫn đến việc điều chỉnh theo tỷ lệ tương ứng đối với tổng số tiền thanh toán. Nếu số thành viên mới được mời vượt quá số ghế trong gói đăng ký của bạn, bạn sẽ ngay lập tức bị tính phí theo tỷ lệ tương ứng cho các thành viên thêm cho đến khi đạt đến giới hạn $MAX$ ghế.",
     "placeholders": {
       "max": {
         "content": "$1",
@@ -4419,7 +4419,7 @@
     }
   },
   "subscriptionUserSeatsWithoutAdditionalSeatsOption": {
-    "message": "You can invite up to $COUNT$ members for no additional charge. Contact Customer Support to upgrade your plan and invite more members.",
+    "message": "Bạn có thể mời tối đa $COUNT$ thành viên mà không phải trả thêm phí. Liên hệ với Bộ phận Hỗ trợ Khách hàng để nâng cấp gói dịch vụ và mời thêm thành viên.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -4428,7 +4428,7 @@
     }
   },
   "subscriptionFreePlan": {
-    "message": "You cannot invite more than $COUNT$ members without upgrading your plan.",
+    "message": "Bạn không thể mời hơn $COUNT$ thành viên mà không nâng cấp gói dịch vụ của mình.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -4437,7 +4437,7 @@
     }
   },
   "subscriptionUpgrade": {
-    "message": "You cannot invite more than $COUNT$ members without upgrading your plan.",
+    "message": "Bạn không thể mời hơn $COUNT$ thành viên mà không nâng cấp gói dịch vụ của mình.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -4446,7 +4446,7 @@
     }
   },
   "subscriptionSponsoredFamiliesPlan": {
-    "message": "Your subscription allows for a total of $COUNT$ members. Your plan is sponsored and billed to an external organization.",
+    "message": "Gói đăng ký của bạn cho phép tối đa $COUNT$ thành viên. Gói đăng ký của bạn được tài trợ và thanh toán bởi một tổ chức bên ngoài.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -4455,7 +4455,7 @@
     }
   },
   "subscriptionMaxReached": {
-    "message": "Adjustments to your subscription will result in prorated changes to your billing totals. You cannot invite more than $COUNT$ members without increasing your subscription seats.",
+    "message": "Các điều chỉnh đối với gói đăng ký của bạn sẽ dẫn đến việc điều chỉnh theo tỷ lệ tương ứng trên tổng số tiền thanh toán. Bạn không thể mời thêm hơn $COUNT$ thành viên mà không tăng số lượng ghế trong gói đăng ký của mình.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -4464,7 +4464,7 @@
     }
   },
   "subscriptionSeatMaxReached": {
-    "message": "You cannot invite more than $COUNT$ members without increasing your subscription seats.",
+    "message": "Bạn không thể mời hơn $COUNT$ thành viên mà không tăng số lượng ghế đăng ký của mình.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -4473,10 +4473,10 @@
     }
   },
   "seatsToAdd": {
-    "message": "Seats to add"
+    "message": "Số ghế cần thêm"
   },
   "seatsToRemove": {
-    "message": "Seats to remove"
+    "message": "Các ghế cần tháo"
   },
   "seatsAddNote": {
     "message": "Adding user seats will result in adjustments to your billing totals and immediately charge your payment method on file. The first charge will be prorated for the remainder of the current billing cycle."
@@ -4727,88 +4727,88 @@
     "message": "This item has old file attachments that need to be fixed."
   },
   "attachmentFixDescription": {
-    "message": "This attachment uses outdated encryption. Select 'Fix' to download, re-encrypt, and re-upload the attachment."
+    "message": "Tệp đính kèm này sử dụng phương thức mã hóa đã lỗi thời. Chọn 'Sửa' để tải xuống, mã hóa lại và tải lên lại tệp đính kèm."
   },
   "fix": {
-    "message": "Fix",
+    "message": "Sửa",
     "description": "This is a verb. ex. 'Fix The Car'"
   },
   "oldAttachmentsNeedFixDesc": {
-    "message": "There are old file attachments in your vault that need to be fixed before you can rotate your account's encryption key."
+    "message": "Có một số tệp đính kèm cũ trong kho lưu trữ của bạn cần được sửa chữa trước khi bạn có thể thay đổi khóa mã hóa của tài khoản."
   },
   "yourAccountsFingerprint": {
-    "message": "Your account's fingerprint phrase",
+    "message": "Cụm từ xác thực tài khoản của bạn",
     "description": "A 'fingerprint phrase' is a unique word phrase (similar to a passphrase) that a user can use to authenticate their public key with another user, for the purposes of sharing."
   },
   "fingerprintEnsureIntegrityVerify": {
-    "message": "To ensure the integrity of your encryption keys, please verify the user's fingerprint phrase before continuing.",
+    "message": "Để đảm bảo tính toàn vẹn các khóa mã hóa của bạn, vui lòng xác minh cụm từ xác thực của người dùng trước khi tiếp tục.",
     "description": "A 'fingerprint phrase' is a unique word phrase (similar to a passphrase) that a user can use to authenticate their public key with another user, for the purposes of sharing."
   },
   "fingerprintMatchInfo": {
-    "message": "Please make sure your vault is unlocked and Fingerprint phrase matches the other device."
+    "message": "Vui lòng đảm bảo rằng bạn đã mở khoá kho và cụm từ xác thực khớp với thiết bị khác."
   },
   "fingerprintPhraseHeader": {
-    "message": "Fingerprint phrase"
+    "message": "Cụm từ xác thực"
   },
   "dontAskFingerprintAgain": {
-    "message": "Never prompt to verify fingerprint phrases for invited users (not recommended)",
+    "message": "Không yêu cầu xác minh cụm từ xác thực cho người dùng được mời (không được khuyến nghị)",
     "description": "A 'fingerprint phrase' is a unique word phrase (similar to a passphrase) that a user can use to authenticate their public key with another user, for the purposes of sharing."
   },
   "youWillBeNotifiedOnceTheRequestIsApproved": {
-    "message": "You will be notified once the request is approved"
+    "message": "Bạn sẽ nhận được thông báo ngay sau khi yêu cầu được phê duyệt"
   },
   "free": {
     "message": "Miễn phí",
     "description": "Free, as in 'Free beer'"
   },
   "apiKey": {
-    "message": "API Key"
+    "message": "Khóa API"
   },
   "apiKeyDesc": {
-    "message": "Your API key can be used to authenticate to the Bitwarden public API."
+    "message": "Khóa API của bạn có thể được sử dụng để xác thực với API công khai của Bitwarden."
   },
   "apiKeyRotateDesc": {
-    "message": "Rotating the API key will invalidate the previous key. You can rotate your API key if you believe that the current key is no longer safe to use."
+    "message": "Việc thay đổi khóa API sẽ làm vô hiệu hóa khóa cũ. Bạn có thể thay đổi khóa API nếu cho rằng khóa hiện tại không còn an toàn để sử dụng."
   },
   "apiKeyWarning": {
-    "message": "Your API key has full access to the organization. It should be kept secret."
+    "message": "Khóa API của bạn có quyền truy cập đầy đủ vào tổ chức. Nó nên được giữ bí mật."
   },
   "userApiKeyDesc": {
-    "message": "Your API key can be used to authenticate in the Bitwarden CLI."
+    "message": "Khóa API của bạn có thể được sử dụng để xác thực trong Bitwarden CLI."
   },
   "userApiKeyWarning": {
-    "message": "Your API key is an alternative authentication mechanism. It should be kept secret."
+    "message": "Khóa API của bạn là một cơ chế xác thực thay thế. Nó cần được giữ bí mật."
   },
   "oauth2ClientCredentials": {
     "message": "OAuth 2.0 Client Credentials",
     "description": "'OAuth 2.0' is a programming protocol. It should probably not be translated."
   },
   "viewApiKey": {
-    "message": "View API key"
+    "message": "Xem khóa API"
   },
   "rotateApiKey": {
-    "message": "Rotate API key"
+    "message": "Xoay khóa API"
   },
   "selectOneCollection": {
-    "message": "You must select at least one collection."
+    "message": "Bạn phải chọn ít nhất một bộ sưu tập."
   },
   "couldNotChargeCardPayInvoice": {
-    "message": "We were not able to charge your card. Please view and pay the unpaid invoice listed below."
+    "message": "Chúng tôi không thể thực hiện giao dịch thanh toán bằng thẻ của quý khách. Vui lòng xem và thanh toán hóa đơn chưa thanh toán được liệt kê bên dưới."
   },
   "minLength": {
-    "message": "Minimum length"
+    "message": "Chiều dài tối thiểu"
   },
   "clone": {
     "message": "Tạo bản sao"
   },
   "masterPassPolicyTitle": {
-    "message": "Master password requirements"
+    "message": "Yêu cầu về mật khẩu chính"
   },
   "masterPassPolicyDesc": {
-    "message": "Set requirements for master password strength."
+    "message": "Đặt yêu cầu về độ mạnh của mật khẩu chính."
   },
   "passwordStrengthScore": {
-    "message": "Password strength score $SCORE$",
+    "message": "Độ mạnh của mật khẩu $SCORE$",
     "placeholders": {
       "score": {
         "content": "$1",
@@ -4817,25 +4817,25 @@
     }
   },
   "twoStepLoginPolicyTitle": {
-    "message": "Require two-step login"
+    "message": "Yêu cầu đăng nhập hai bước"
   },
   "twoStepLoginPolicyDesc": {
-    "message": "Require members to set up two-step login."
+    "message": "Yêu cầu thành viên thiết lập đăng nhập hai bước."
   },
   "twoStepLoginPolicyWarning": {
-    "message": "Organization members who are not owners or admins and do not have two-step login setup for their account will be removed from the organization and will receive an email notifying them about the change."
+    "message": "Các thành viên tổ chức không phải là chủ sở hữu hoặc quản trị viên và không có cài đặt đăng nhập hai bước cho tài khoản của mình sẽ bị loại khỏi tổ chức và sẽ nhận được email thông báo về thay đổi này."
   },
   "twoStepLoginPolicyUserWarning": {
-    "message": "You are a member of an organization that requires two-step login to be setup on your user account. If you turn off all two-step login providers you will be automatically removed from these organizations."
+    "message": "Bạn là thành viên của một tổ chức yêu cầu phải thiết lập xác thực hai bước cho tài khoản người dùng của bạn. Nếu bạn tắt tất cả các nhà cung cấp xác thực hai bước, bạn sẽ tự động bị loại khỏi tổ chức này."
   },
   "passwordGeneratorPolicyDesc": {
-    "message": "Set requirements for password generator."
+    "message": "Đặt yêu cầu cho trình tạo mật khẩu."
   },
   "masterPasswordPolicyInEffect": {
-    "message": "One or more organization policies require your master password to meet the following requirements:"
+    "message": "Các chính sách của tổ chức yêu cầu mật khẩu chính của bạn phải đáp ứng các yêu cầu sau:"
   },
   "policyInEffectMinComplexity": {
-    "message": "Minimum complexity score of $SCORE$",
+    "message": "Độ mạnh tối thiểu $SCORE$",
     "placeholders": {
       "score": {
         "content": "$1",
@@ -4844,7 +4844,7 @@
     }
   },
   "policyInEffectMinLength": {
-    "message": "Minimum length of $LENGTH$",
+    "message": "Độ dài tối thiểu là $LENGTH$",
     "placeholders": {
       "length": {
         "content": "$1",
@@ -4853,16 +4853,16 @@
     }
   },
   "policyInEffectUppercase": {
-    "message": "Contain one or more uppercase characters"
+    "message": "Có chứa một hay nhiều ký tự viết hoa"
   },
   "policyInEffectLowercase": {
-    "message": "Contain one or more lowercase characters"
+    "message": "Có chứa một hay nhiều ký tự viết thường"
   },
   "policyInEffectNumbers": {
-    "message": "Contain one or more numbers"
+    "message": "Có chứa một hay nhiều chữ số"
   },
   "policyInEffectSpecial": {
-    "message": "Contain one or more of the following special characters $CHARS$",
+    "message": "Có chứa một hay nhiều ký tự đặc biệt sau $CHARS$",
     "placeholders": {
       "chars": {
         "content": "$1",
@@ -4871,26 +4871,26 @@
     }
   },
   "masterPasswordPolicyRequirementsNotMet": {
-    "message": "Your new master password does not meet the policy requirements."
+    "message": "Mật khẩu chính bạn chọn không đáp ứng yêu cầu."
   },
   "minimumNumberOfWords": {
-    "message": "Minimum number of words"
+    "message": "Số từ tối thiểu"
   },
   "overridePasswordTypePolicy": {
-    "message": "Password Type",
+    "message": "Loại mật khẩu",
     "description": "Name of the password generator policy that overrides the user's password/passphrase selection."
   },
   "userPreference": {
-    "message": "User preference"
+    "message": "Tùy chọn người dùng"
   },
   "vaultTimeoutAction": {
-    "message": "Vault timeout action"
+    "message": "Hành động sau khi đóng kho"
   },
   "vaultTimeoutActionLockDesc": {
-    "message": "Master password or other unlock method is required to access your vault again."
+    "message": "Bạn cần nhập mật khẩu chính hoặc phương thức mở khóa khác để truy cập lại vào kho lưu trữ."
   },
   "vaultTimeoutActionLogOutDesc": {
-    "message": "Re-authentication is required to access your vault again."
+    "message": "Bạn cần xác thực lại để mở khóa kho lưu trữ."
   },
   "lock": {
     "message": "Khóa",
@@ -4907,22 +4907,22 @@
     "message": "Xoá vĩnh viễn"
   },
   "permanentlyDeleteSelected": {
-    "message": "Permanently delete selected"
+    "message": "Xóa vĩnh viễn các mục đã chọn"
   },
   "permanentlyDeleteItem": {
-    "message": "Permanently delete item"
+    "message": "Xoá vĩnh viễn mục"
   },
   "permanentlyDeleteItemConfirmation": {
     "message": "Bạn có chắc muốn xóa vĩnh viễn mục này?"
   },
   "permanentlyDeletedItem": {
-    "message": "Item permanently deleted"
+    "message": "Đã xóa vĩnh viễn mục"
   },
   "permanentlyDeletedItems": {
-    "message": "Items permanently deleted"
+    "message": "Các mục đã bị xóa vĩnh viễn"
   },
   "permanentlyDeleteSelectedItemsDesc": {
-    "message": "You have selected $COUNT$ item(s) to permanently delete. Are you sure you want to permanently delete all of these items?",
+    "message": "Bạn đã chọn xóa vĩnh viễn $COUNT$ mục. Bạn có chắc chắn muốn xóa vĩnh viễn tất cả các mục này không?",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -4931,7 +4931,7 @@
     }
   },
   "permanentlyDeletedItemId": {
-    "message": "Item $ID$ permanently deleted",
+    "message": "Mục $ID$ đã bị xóa vĩnh viễn",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -4946,7 +4946,7 @@
     "message": "Khôi phục những mục đã chọn"
   },
   "restoredItem": {
-    "message": "Item restored"
+    "message": "Mục đã được khôi phục"
   },
   "restoredItems": {
     "message": "Items restored"
@@ -4964,7 +4964,7 @@
     "message": "Logging out will remove all access to your vault and requires online authentication after the timeout period. Are you sure you want to use this setting?"
   },
   "vaultTimeoutLogOutConfirmationTitle": {
-    "message": "Timeout action confirmation"
+    "message": "Xác nhận hành động khi hết thời gian mở kho"
   },
   "hidePasswords": {
     "message": "Hide passwords"
@@ -5128,7 +5128,7 @@
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "createSend": {
-    "message": "Mục Gửi mới",
+    "message": "Tạo Send mới",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "editSend": {
@@ -5159,60 +5159,60 @@
     "message": "Deletion date"
   },
   "deletionDateDescV2": {
-    "message": "The Send will be permanently deleted on this date.",
+    "message": "Send sẽ được xóa vĩnh viễn vào ngày này.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "expirationDate": {
-    "message": "Expiration date"
+    "message": "Ngày hết hạn"
   },
   "expirationDateDesc": {
     "message": "Nếu được thiết lập, mục Gửi này sẽ hết hạn vào ngày và giờ được chỉ định.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "maxAccessCount": {
-    "message": "Maximum access count"
+    "message": "Số lượng truy cập tối đa"
   },
   "disabled": {
     "message": "Đã tắt"
   },
   "revoked": {
-    "message": "Revoked"
+    "message": "Đã thu hồi"
   },
   "sendLink": {
     "message": "Liên kết Gửi",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "copyLink": {
-    "message": "Copy link"
+    "message": "Sao chép liên kết"
   },
   "copySendLink": {
     "message": "Sao chép liên kết mục Gửi",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "removePassword": {
-    "message": "Remove password"
+    "message": "Xóa mật khẩu"
   },
   "removedPassword": {
-    "message": "Password removed"
+    "message": "Đã xóa mật khẩu"
   },
   "removePasswordConfirmation": {
-    "message": "Are you sure you want to remove the password?"
+    "message": "Bạn có chắc chắn muốn xóa mật khẩu này không?"
   },
   "allSends": {
     "message": "Tất cả mục Gửi"
   },
   "maxAccessCountReached": {
-    "message": "Max access count reached",
+    "message": "Đã vượt số lần truy cập tối đa",
     "description": "This text will be displayed after a Send has been accessed the maximum amount of times."
   },
   "pendingDeletion": {
-    "message": "Pending deletion"
+    "message": "Đang chờ xóa"
   },
   "hideTextByDefault": {
-    "message": "Hide text by default"
+    "message": "Mặc định ẩn văn bản"
   },
   "expired": {
-    "message": "Expired"
+    "message": "Đã hết hạn"
   },
   "searchSends": {
     "message": "Tìm kiếm mục Gửi",
@@ -5223,22 +5223,22 @@
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendProtectedPasswordDontKnow": {
-    "message": "Don't know the password? Ask the sender for the password needed to access this Send.",
+    "message": "Không biết mật khẩu? Hãy yêu cầu người gửi cung cấp mật khẩu cần thiết để truy cập vào Send này.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendHiddenByDefault": {
-    "message": "This Send is hidden by default. You can toggle its visibility using the button below.",
+    "message": "Send này sẽ bị ẩn theo mặc định. Bạn có thể bật/tắt tính năng này bằng cách nhấn vào nút bên dưới.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "downloadAttachments": {
     "message": "Tải xuống tập tin đính kèm"
   },
   "sendAccessUnavailable": {
-    "message": "The Send you are trying to access does not exist or is no longer available.",
+    "message": "Send mà bạn đang cố gắng truy cập không tồn tại hoặc không còn khả dụng.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "missingSendFile": {
-    "message": "The file associated with this Send could not be found.",
+    "message": "Không tìm thấy tập tin liên quan đến Send này.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "noSendsInList": {
@@ -5249,55 +5249,55 @@
     "message": "Truy cập khẩn cấp"
   },
   "emergencyAccessDesc": {
-    "message": "Grant and manage emergency access for trusted contacts. Trusted contacts may request access to either View or Takeover your account in case of an emergency. Visit our help page for more information and details into how zero knowledge sharing works."
+    "message": "Cấp quyền và quản lý quyền truy cập khẩn cấp cho các liên hệ tin cậy. Các liên hệ tin cậy có thể yêu cầu quyền truy cập để Xem hoặc Kiểm soát tài khoản của bạn trong trường hợp khẩn cấp. Truy cập trang hỗ trợ của chúng tôi để biết thêm thông tin chi tiết về cách thức hoạt động của cơ chế chia sẻ thông tin không tiết lộ."
   },
   "emergencyAccessOwnerWarning": {
-    "message": "You are an owner of one or more organizations. If you give takeover access to an emergency contact, they will be able to use all your permissions as owner after a takeover."
+    "message": "Bạn là chủ sở hữu của một hoặc nhiều tổ chức. Nếu bạn cấp quyền tiếp quản cho một liên hệ khẩn cấp, họ sẽ có thể sử dụng tất cả quyền hạn của bạn với tư cách là chủ sở hữu sau khi tiếp quản."
   },
   "trustedEmergencyContacts": {
-    "message": "Trusted emergency contacts"
+    "message": "Các liên hệ khẩn cấp đáng tin cậy"
   },
   "noTrustedContacts": {
-    "message": "You have not added any emergency contacts yet, invite a trusted contact to get started."
+    "message": "Bạn chưa thêm bất kỳ liên hệ khẩn cấp nào. Hãy mời một liên hệ đáng tin cậy để bắt đầu."
   },
   "addEmergencyContact": {
-    "message": "Add emergency contact"
+    "message": "Thêm liên hệ khẩn cấp"
   },
   "designatedEmergencyContacts": {
-    "message": "Designated as emergency contact"
+    "message": "Được chỉ định làm người liên hệ khẩn cấp"
   },
   "noGrantedAccess": {
-    "message": "You have not been designated as an emergency contact for anyone yet."
+    "message": "Bạn chưa được chỉ định làm người liên hệ khẩn cấp cho bất kỳ ai."
   },
   "inviteEmergencyContact": {
-    "message": "Invite emergency contact"
+    "message": "Mời liên hệ khẩn cấp"
   },
   "editEmergencyContact": {
-    "message": "Edit emergency contact"
+    "message": "Chỉnh sửa liên hệ khẩn cấp"
   },
   "inviteEmergencyContactDesc": {
-    "message": "Invite a new emergency contact by entering their Bitwarden account email address below. If they do not have a Bitwarden account already, they will be prompted to create a new account."
+    "message": "Mời một liên hệ khẩn cấp mới bằng cách nhập địa chỉ email tài khoản Bitwarden của họ vào ô bên dưới. Nếu họ chưa có tài khoản Bitwarden, họ sẽ được yêu cầu tạo tài khoản mới."
   },
   "emergencyAccessRecoveryInitiated": {
-    "message": "Emergency access initiated"
+    "message": "Đã kích hoạt quyền truy cập khẩn cấp"
   },
   "emergencyAccessRecoveryApproved": {
-    "message": "Emergency access approved"
+    "message": "Quyền truy cập khẩn cấp đã được phê duyệt"
   },
   "viewDesc": {
-    "message": "Can view all items in your own vault."
+    "message": "Bạn có thể xem tất cả các mục trong kho của mình."
   },
   "takeover": {
-    "message": "Takeover"
+    "message": "Kiểm soát"
   },
   "takeoverDesc": {
-    "message": "Can reset your account with a new master password."
+    "message": "Bạn có thể đặt lại tài khoản của mình bằng mật khẩu chính mới."
   },
   "waitTime": {
-    "message": "Wait time"
+    "message": "Thời gian chờ"
   },
   "waitTimeDesc": {
-    "message": "Time required before automatically granting access."
+    "message": "Thời gian cần thiết trước khi tự động cấp quyền truy cập."
   },
   "oneDay": {
     "message": "1 ngày"
@@ -5312,16 +5312,16 @@
     }
   },
   "invitedUser": {
-    "message": "Invited user."
+    "message": "Đã mời người dùng."
   },
   "acceptEmergencyAccess": {
-    "message": "You've been invited to become an emergency contact for the user listed above. To accept the invitation, you need to log in or create a new Bitwarden account."
+    "message": "Bạn đã được mời trở thành liên hệ khẩn cấp cho người dùng được liệt kê ở trên. Để chấp nhận lời mời, bạn cần đăng nhập hoặc tạo tài khoản Bitwarden mới."
   },
   "emergencyInviteAcceptFailed": {
-    "message": "Unable to accept invitation. Ask the user to send a new invitation."
+    "message": "Không thể chấp nhận lời mời. Yêu cầu người dùng gửi lời mời mới."
   },
   "emergencyInviteAcceptFailedShort": {
-    "message": "Unable to accept invitation. $DESCRIPTION$",
+    "message": "Không thể chấp nhận lời mời. $DESCRIPTION$",
     "placeholders": {
       "description": {
         "content": "$1",
@@ -5330,13 +5330,13 @@
     }
   },
   "emergencyInviteAcceptedDesc": {
-    "message": "You can access the emergency options for this user after your identity has been confirmed. We'll send you an email when that happens."
+    "message": "Bạn có thể truy cập các tùy chọn khẩn cấp cho người dùng này sau khi danh tính của bạn đã được xác minh. Chúng tôi sẽ gửi email cho bạn khi điều đó xảy ra."
   },
   "requestAccess": {
-    "message": "Request Access"
+    "message": "Yêu cầu truy cập"
   },
   "requestAccessConfirmation": {
-    "message": "Are you sure you want to request emergency access? You will be provided access after $WAITTIME$ day(s) or whenever the user manually approves the request.",
+    "message": "Bạn có chắc chắn muốn yêu cầu quyền truy cập khẩn cấp không? Quyền truy cập sẽ được cấp sau $WAITTIME$ ngày hoặc khi người dùng phê duyệt yêu cầu một cách thủ công.",
     "placeholders": {
       "waittime": {
         "content": "$1",
@@ -5345,7 +5345,7 @@
     }
   },
   "requestSent": {
-    "message": "Emergency access requested for $USER$. We'll notify you by email when it's possible to continue.",
+    "message": "Yêu cầu truy cập khẩn cấp cho $USER$. Chúng tôi sẽ thông báo cho bạn qua email khi có thể tiếp tục.",
     "placeholders": {
       "user": {
         "content": "$1",
@@ -5360,7 +5360,7 @@
     "message": "Từ chối"
   },
   "approveAccessConfirmation": {
-    "message": "Are you sure you want to approve emergency access? This will allow $USER$ to $ACTION$ your account.",
+    "message": "Bạn có chắc chắn muốn phê duyệt quyền truy cập khẩn cấp không? Điều này sẽ cho phép $USER$ thực hiện $ACTION$ trên tài khoản của bạn.",
     "placeholders": {
       "user": {
         "content": "$1",
@@ -5373,16 +5373,16 @@
     }
   },
   "emergencyApproved": {
-    "message": "Emergency access approved"
+    "message": "Đã phê duyệt quyền truy cập khẩn cấp"
   },
   "emergencyRejected": {
-    "message": "Emergency access rejected"
+    "message": "Truy cập khẩn cấp bị từ chối"
   },
   "grantorDetailsNotFound": {
-    "message": "Grantor details not found"
+    "message": "Không tìm thấy thông tin về người cấp phép"
   },
   "passwordResetFor": {
-    "message": "Password reset for $USER$. You can now login using the new password.",
+    "message": "Đặt lại mật khẩu cho $USER$. Bạn có thể đăng nhập bằng mật khẩu mới.",
     "placeholders": {
       "user": {
         "content": "$1",
@@ -5391,29 +5391,29 @@
     }
   },
   "organizationDataOwnership": {
-    "message": "Enforce organization data ownership"
+    "message": "Thực thi quyền sở hữu dữ liệu của tổ chức"
   },
   "personalOwnership": {
-    "message": "Remove individual vault"
+    "message": "Xóa kho lưu trữ riêng lẻ"
   },
   "personalOwnershipPolicyDesc": {
-    "message": "Require members to save items to an organization by removing the individual vault option."
+    "message": "Yêu cầu thành viên lưu trữ các mục vào tổ chức bằng cách loại bỏ tùy chọn kho lưu trữ cá nhân."
   },
   "personalOwnershipExemption": {
-    "message": "Organization owners and administrators are exempt from this policy's enforcement."
+    "message": "Chủ sở hữu và quản trị viên của tổ chức được miễn trừ khỏi việc áp dụng chính sách này."
   },
   "personalOwnershipSubmitError": {
-    "message": "Due to an Enterprise policy, you are restricted from saving items to your individual vault. Change the ownership option to an organization and choose from available collections."
+    "message": "Do chính sách của doanh nghiệp, bạn không thể lưu trữ các mục vào kho cá nhân của mình. Hãy thay đổi tùy chọn Quyền sở hữu thành tổ chức và chọn từ các bộ sưu tập có sẵn."
   },
   "disableSend": {
     "message": "Xóa Gửi"
   },
   "disableSendPolicyDesc": {
-    "message": "Do not allow members to create or edit Sends.",
+    "message": "Không cho phép thành viên tạo hoặc chỉnh sửa Sends.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "disableSendExemption": {
-    "message": "Organization members that can manage the organization's policies are exempt from this policy's enforcement."
+    "message": "Các thành viên tổ chức có quyền quản lý chính sách của tổ chức sẽ được miễn áp dụng chính sách này."
   },
   "sendDisabled": {
     "message": "Đã loại bỏ Gửi",
@@ -5424,22 +5424,22 @@
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendOptions": {
-    "message": "Send options",
+    "message": "Tùy chọn Send",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendOptionsPolicyDesc": {
-    "message": "Set options for creating and editing Sends.",
+    "message": "Cài đặt tùy chọn cho việc tạo và chỉnh sửa Send.",
     "description": "'Sends' is a plural noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendOptionsExemption": {
-    "message": "Organization members that can manage the organization's policies are exempt from this policy's enforcement."
+    "message": "Các thành viên tổ chức có quyền quản lý chính sách của tổ chức sẽ được miễn áp dụng chính sách này."
   },
   "disableHideEmail": {
-    "message": "Always show member’s email address with recipients when creating or editing a Send.",
+    "message": "Luôn hiển thị địa chỉ email của thành viên cho người nhận khi tạo hoặc chỉnh sửa Send.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "modifiedPolicyId": {
-    "message": "Modified policy $ID$.",
+    "message": "Chính sách $ID$ đã được điều chỉnh.",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -5448,19 +5448,19 @@
     }
   },
   "planPrice": {
-    "message": "Plan price"
+    "message": "Giá gói dịch vụ"
   },
   "estimatedTax": {
-    "message": "Estimated tax"
+    "message": "Thuế dự kiến"
   },
   "custom": {
-    "message": "Custom"
+    "message": "Tùy chỉnh"
   },
   "customDesc": {
-    "message": "Grant customized permissions to members"
+    "message": "Cấp quyền truy cập tùy chỉnh cho các thành viên"
   },
   "customDescNonEnterpriseStart": {
-    "message": "Custom roles is an ",
+    "message": "Vai trò tùy chỉnh là một ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'Custom roles is an enterprise feature. Contact our support team to upgrade your subscription'"
   },
   "customDescNonEnterpriseLink": {
@@ -5472,55 +5472,55 @@
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'Custom roles is an enterprise feature. Contact our support team to upgrade your subscription'"
   },
   "customNonEnterpriseError": {
-    "message": "To enable custom permissions the organization must be on an Enterprise 2020 plan."
+    "message": "Để kích hoạt quyền truy cập tùy chỉnh, tổ chức phải sử dụng gói Enterprise 2020."
   },
   "permissions": {
-    "message": "Permissions"
+    "message": "Quyền truy cập"
   },
   "permission": {
-    "message": "Permission"
+    "message": "Quyền"
   },
   "accessEventLogs": {
-    "message": "Access event logs"
+    "message": "Truy cập nhật ký sự kiện"
   },
   "accessImportExport": {
-    "message": "Access import/export"
+    "message": "Truy cập nhập/xuất"
   },
   "accessReports": {
-    "message": "Access reports"
+    "message": "Truy cập báo cáo"
   },
   "missingPermissions": {
-    "message": "You lack the necessary permissions to perform this action."
+    "message": "Bạn không có quyền truy cập cần thiết để thực hiện thao tác này."
   },
   "manageAllCollections": {
-    "message": "Manage all collections"
+    "message": "Quản lý tất cả các bộ sưu tập"
   },
   "createNewCollections": {
-    "message": "Create new collections"
+    "message": "Tạo các bộ sưu tập mới"
   },
   "editAnyCollection": {
-    "message": "Edit any collection"
+    "message": "Chỉnh sửa bất kỳ bộ sưu tập nào"
   },
   "deleteAnyCollection": {
-    "message": "Delete any collection"
+    "message": "Xóa bất kỳ bộ sưu tập nào"
   },
   "manageGroups": {
-    "message": "Manage groups"
+    "message": "Quản lí các nhóm"
   },
   "managePolicies": {
-    "message": "Manage policies"
+    "message": "Quản lý các chính sách"
   },
   "manageSso": {
-    "message": "Manage SSO"
+    "message": "Quản lý SSO"
   },
   "manageUsers": {
     "message": "Quản lý người dùng"
   },
   "manageAccountRecovery": {
-    "message": "Manage account recovery"
+    "message": "Quản lý khôi phục tài khoản"
   },
   "disableRequiredError": {
-    "message": "You must manually turn the $POLICYNAME$ policy before this policy can be turned off.",
+    "message": "Bạn phải tắt chính sách $POLICYNAME$ theo cách thủ công trước khi có thể tắt chính sách này.",
     "placeholders": {
       "policyName": {
         "content": "$1",
@@ -5529,20 +5529,20 @@
     }
   },
   "personalOwnershipPolicyInEffect": {
-    "message": "An organization policy is affecting your ownership options."
+    "message": "Chính sách của tổ chức đang ảnh hưởng đến các tùy chọn quyền sở hữu của bạn."
   },
   "personalOwnershipPolicyInEffectImports": {
-    "message": "An organization policy has blocked importing items into your individual vault."
+    "message": "Chính sách của tổ chức đã chặn việc nhập các mục vào kho cá nhân của bạn."
   },
   "personalOwnershipCheckboxDesc": {
-    "message": "Remove individual ownership for organization users"
+    "message": "Loại bỏ quyền sở hữu cá nhân cho người dùng tổ chức"
   },
   "send": {
     "message": "Gửi",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendAccessTaglineProductDesc": {
-    "message": "Bitwarden Send transmits sensitive, temporary information to others easily and securely.",
+    "message": "Bitwarden Send cho phép truyền tải thông tin nhạy cảm và tạm thời đến người khác một cách dễ dàng và an toàn.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendAccessTaglineLearnMore": {
@@ -5550,7 +5550,7 @@
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read '**Learn more about** Bitwarden Send or sign up to try it today.'"
   },
   "sendVaultCardProductDesc": {
-    "message": "Share text or files directly with anyone."
+    "message": "Chia sẻ văn bản hoặc tập tin trực tiếp với bất kỳ ai."
   },
   "sendVaultCardLearnMore": {
     "message": "Tìm hiểu thêm",
@@ -5773,10 +5773,10 @@
     }
   },
   "resetPassword": {
-    "message": "Reset password"
+    "message": "Đặt lại mật khẩu"
   },
   "resetPasswordLoggedOutWarning": {
-    "message": "Proceeding will log $NAME$ out of their current session, requiring them to log back in. Active sessions on other devices may continue to remain active for up to one hour.",
+    "message": "Quá trình này sẽ đăng xuất $NAME$ khỏi phiên làm việc hiện tại, yêu cầu họ phải đăng nhập lại. Các phiên làm việc đang hoạt động trên các thiết bị khác có thể tiếp tục duy trì trạng thái hoạt động trong tối đa một giờ.",
     "placeholders": {
       "name": {
         "content": "$1",
@@ -5785,7 +5785,7 @@
     }
   },
   "emergencyAccessLoggedOutWarning": {
-    "message": "Proceeding will log $NAME$ out of their current session, requiring them to log back in. Active sessions on other devices may continue to remain active for up to one hour.",
+    "message": "Quá trình này sẽ đăng xuất $NAME$ khỏi phiên làm việc hiện tại, yêu cầu họ phải đăng nhập lại. Các phiên làm việc đang hoạt động trên các thiết bị khác có thể tiếp tục duy trì trạng thái hoạt động trong tối đa một giờ.",
     "placeholders": {
       "name": {
         "content": "$1",
@@ -5794,79 +5794,79 @@
     }
   },
   "thisUser": {
-    "message": "this user"
+    "message": "người dùng này"
   },
   "resetPasswordMasterPasswordPolicyInEffect": {
-    "message": "One or more organization policies require the master password to meet the following requirements:"
+    "message": "Các chính sách của tổ chức yêu cầu mật khẩu chính phải đáp ứng các yêu cầu sau:"
   },
   "changePasswordDelegationMasterPasswordPolicyInEffect": {
-    "message": "One or more organization policies require the master password to meet the following requirements:"
+    "message": "Các chính sách của tổ chức yêu cầu mật khẩu chính phải đáp ứng các yêu cầu sau:"
   },
   "resetPasswordSuccess": {
-    "message": "Password reset success!"
+    "message": "Đặt lại mật khẩu thành công!"
   },
   "resetPasswordEnrollmentWarning": {
-    "message": "Enrollment will allow organization administrators to change your master password"
+    "message": "Việc đăng ký sẽ cho phép quản trị viên tổ chức thay đổi mật khẩu chính của bạn"
   },
   "accountRecoveryPolicy": {
-    "message": "Account recovery administration"
+    "message": "Quản lý khôi phục tài khoản"
   },
   "accountRecoveryPolicyDesc": {
-    "message": "Based on the encryption method, recover accounts when master passwords or trusted devices are forgotten or lost."
+    "message": "Dựa trên phương pháp mã hóa, khôi phục tài khoản khi mật khẩu chính hoặc thiết bị tin cậy bị quên hoặc mất."
   },
   "accountRecoveryPolicyWarning": {
-    "message": "Existing accounts with master passwords will require members to self-enroll before administrators can recover their accounts. Automatic enrollment will turn on account recovery for new members."
+    "message": "Các tài khoản hiện có sử dụng mật khẩu chính sẽ yêu cầu thành viên tự đăng ký trước khi quản trị viên có thể khôi phục tài khoản của họ. Chức năng đăng ký tự động sẽ kích hoạt tính năng khôi phục tài khoản cho các thành viên mới."
   },
   "accountRecoverySingleOrgRequirementDesc": {
-    "message": "The single organization Enterprise policy must be turned on before activating this policy."
+    "message": "Chính sách Doanh nghiệp của tổ chức duy nhất phải được bật trước khi kích hoạt chính sách này."
   },
   "resetPasswordPolicyAutoEnroll": {
-    "message": "Automatic enrollment"
+    "message": "Đăng ký tự động"
   },
   "resetPasswordPolicyAutoEnrollCheckbox": {
-    "message": "Require new members to be enrolled automatically"
+    "message": "Yêu cầu các thành viên mới được đăng ký tự động"
   },
   "resetPasswordAutoEnrollInviteWarning": {
-    "message": "This organization has an Enterprise policy that will automatically enroll you in password reset. Enrollment will allow organization administrators to change your master password."
+    "message": "Tổ chức này có chính sách doanh nghiệp sẽ tự động đặt lại mật khẩu chính cho bạn. Đăng ký sẽ cho phép quản trị viên tổ chức thay đổi mật khẩu chính của bạn."
   },
   "resetPasswordOrgKeysError": {
-    "message": "Organization keys response is null"
+    "message": "Phản hồi của khóa tổ chức là null"
   },
   "resetPasswordDetailsError": {
-    "message": "Reset password details response is null"
+    "message": "Phản hồi chi tiết về việc đặt lại mật khẩu là null"
   },
   "trashCleanupWarning": {
-    "message": "Items that have been in trash more than 30 days will be automatically deleted."
+    "message": "Các mục đã nằm trong thùng rác quá 30 ngày sẽ bị xóa tự động."
   },
   "trashCleanupWarningSelfHosted": {
-    "message": "Items that have been in trash for a while will be automatically deleted."
+    "message": "Các mục đã nằm trong thùng rác trong một thời gian dài sẽ được tự động xóa."
   },
   "passwordPrompt": {
-    "message": "Master password re-prompt"
+    "message": "Nhập lại mật khẩu chính"
   },
   "passwordConfirmation": {
-    "message": "Master password confirmation"
+    "message": "Xác nhận mật khẩu chính"
   },
   "passwordConfirmationDesc": {
-    "message": "This action is protected. To continue, please re-enter your master password to verify your identity."
+    "message": "Hành động này được bảo vệ. Để tiếp tục, hãy nhập lại mật khẩu chính của bạn để xác minh danh tính."
   },
   "reinviteSelected": {
-    "message": "Resend invitations"
+    "message": "Gửi lại các lời mời"
   },
   "resendNotification": {
-    "message": "Resend notification"
+    "message": "Gửi lại thông báo"
   },
   "noSelectedUsersApplicable": {
-    "message": "This action is not applicable to any of the selected users."
+    "message": "Hành động này không áp dụng cho bất kỳ người dùng nào đã được chọn."
   },
   "removeUsersWarning": {
-    "message": "Are you sure you want to remove the following users? The process may take a few seconds to complete and cannot be interrupted or canceled."
+    "message": "Bạn có chắc chắn muốn xóa các tài khoản người dùng sau đây không? Quá trình này có thể mất vài giây để hoàn tất và không thể bị gián đoạn hoặc hủy bỏ."
   },
   "removeOrgUsersConfirmation": {
-    "message": "When member(s) are removed, they no longer have access to organization data and this action is irreversible. To add the member back to the organization, they must be invited and onboarded again. The process may take a few seconds to complete and cannot be interrupted or canceled."
+    "message": "Khi (các) thành viên thành viên bị loại bỏ, họ sẽ không còn quyền truy cập vào dữ liệu của tổ chức và hành động này là không thể đảo ngược. Để thêm thành viên trở lại tổ chức, họ phải được mời và đăng ký lại. Quy trình này có thể mất vài giây để hoàn tất và không thể bị gián đoạn hoặc hủy bỏ."
   },
   "revokeUsersWarning": {
-    "message": "When member(s) are revoked, they no longer have access to organization data. To quickly restore member access, go to the Revoked tab. The process may take a few seconds to complete and cannot be interrupted or canceled."
+    "message": "Khi (các) thành viên bị thu hồi quyền truy cập, họ sẽ không còn quyền truy cập vào dữ liệu của tổ chức. Để khôi phục quyền truy cập cho thành viên một cách nhanh chóng, hãy truy cập vào tab \"Thu hồi\". Quá trình này có thể mất vài giây để hoàn tất và không thể bị gián đoạn hoặc hủy bỏ."
   },
   "theme": {
     "message": "Chủ đề"
@@ -5884,72 +5884,72 @@
     "message": "Sáng"
   },
   "confirmSelected": {
-    "message": "Confirm selected"
+    "message": "Xác nhận lựa chọn"
   },
   "bulkConfirmStatus": {
-    "message": "Bulk action status"
+    "message": "Trạng thái thao tác hàng loạt"
   },
   "bulkConfirmMessage": {
-    "message": "Confirmed successfully"
+    "message": "Đã xác nhận thành công"
   },
   "bulkReinviteMessage": {
-    "message": "Reinvited successfully"
+    "message": "Đã mời lại thành côngvv"
   },
   "bulkRemovedMessage": {
-    "message": "Removed successfully"
+    "message": "Đã xóa thành công"
   },
   "bulkRevokedMessage": {
-    "message": "Revoked organization access successfully"
+    "message": "Quyền truy cập của tổ chức đã bị thu hồi thành công"
   },
   "bulkRestoredMessage": {
-    "message": "Restored organization access successfully"
+    "message": "Đã khôi phục quyền truy cập vào tổ chức thành công"
   },
   "bulkFilteredMessage": {
-    "message": "Excluded, not applicable for this action"
+    "message": "Không áp dụng cho hành động này"
   },
   "nonCompliantMembersTitle": {
-    "message": "Non-compliant members"
+    "message": "Các thành viên không tuân thủ chính sách"
   },
   "nonCompliantMembersError": {
-    "message": "Members that are non-compliant with the Single organization or Two-step login policy cannot be restored until they adhere to the policy requirements"
+    "message": "Thành viên không tuân thủ chính sách Tổ chức Đơn lẻ hoặc Đăng nhập hai bước không thể được khôi phục cho đến khi họ đáp ứng các yêu cầu của chính sách"
   },
   "fingerprint": {
-    "message": "Fingerprint"
+    "message": "Vân tay"
   },
   "fingerprintPhrase": {
-    "message": "Fingerprint phrase:"
+    "message": "Cụm từ xác thực:"
   },
   "error": {
-    "message": "Error"
+    "message": "Lỗi"
   },
   "decryptionError": {
-    "message": "Decryption error"
+    "message": "Lỗi giải mã"
   },
   "couldNotDecryptVaultItemsBelow": {
-    "message": "Bitwarden could not decrypt the vault item(s) listed below."
+    "message": "Bitwarden không thể giải mã các mục trong kho lưu trữ được liệt kê bên dưới."
   },
   "contactCSToAvoidDataLossPart1": {
-    "message": "Contact customer success",
+    "message": "Liên hệ hỗ trợ khách hàng thành công",
     "description": "This is part of a larger sentence. The full sentence will read 'Contact customer success to avoid additional data loss.'"
   },
   "contactCSToAvoidDataLossPart2": {
-    "message": "to avoid additional data loss.",
+    "message": "để tránh mất mát thêm dữ liệu.",
     "description": "This is part of a larger sentence. The full sentence will read 'Contact customer success to avoid additional data loss.'"
   },
   "accountRecoveryManageUsers": {
-    "message": "Manage users must also be granted with the manage account recovery permission"
+    "message": "Người quản lý người dùng cũng phải được cấp quyền quản lý khôi phục tài khoản"
   },
   "setupProvider": {
-    "message": "Provider setup"
+    "message": "Cài đặt nhà cung cấp"
   },
   "setupProviderLoginDesc": {
-    "message": "You've been invited to setup a new Provider. To continue, you need to log in or create a new Bitwarden account."
+    "message": "Bạn đã được mời để thiết lập một nhà cung cấp mới. Để tiếp tục, bạn cần đăng nhập hoặc tạo tài khoản Bitwarden mới."
   },
   "setupProviderDesc": {
-    "message": "Please enter the details below to complete the Provider setup. Contact Customer Support if you have any questions."
+    "message": "Vui lòng nhập các thông tin bên dưới để hoàn tất quá trình thiết lập Nhà cung cấp. Liên hệ với Bộ phận Hỗ trợ Khách hàng nếu bạn có bất kỳ câu hỏi nào."
   },
   "providerName": {
-    "message": "Provider name"
+    "message": "Tên nhà cung cấp"
   },
   "providerSetup": {
     "message": "Provider successfully set up"
@@ -6151,7 +6151,7 @@
     }
   },
   "vaultTimeoutPolicyWithActionInEffect": {
-    "message": "Your organization policies are affecting your vault timeout. Maximum allowed vault timeout is $HOURS$ hour(s) and $MINUTES$ minute(s). Your vault timeout action is set to $ACTION$.",
+    "message": "Các chính sách của tổ chức bạn đang ảnh hưởng đến thời gian mở kho. Thời gian mở kho tối đa được phép là $HOURS$ giờ và $MINUTES$ phút. Kho sẽ $ACTION$ sau khi đóng kho.",
     "placeholders": {
       "hours": {
         "content": "$1",
@@ -6168,7 +6168,7 @@
     }
   },
   "vaultTimeoutActionPolicyInEffect": {
-    "message": "Your organization policies have set your vault timeout action to $ACTION$.",
+    "message": "Tổ chức bạn đã thiết lập hành động sau khi đóng kho là $ACTION$.",
     "placeholders": {
       "action": {
         "content": "$1",
@@ -6177,46 +6177,46 @@
     }
   },
   "vaultTimeoutToLarge": {
-    "message": "Your vault timeout exceeds the restriction set by your organization."
+    "message": "Thời gian mở kho vượt quá giới hạn do tổ chức của bạn đặt ra."
   },
   "vaultCustomTimeoutMinimum": {
-    "message": "Minimum custom timeout is 1 minute."
+    "message": "Thời gian đóng kho tùy chỉnh tối thiểu là 1 phút."
   },
   "vaultTimeoutRangeError": {
-    "message": "Vault timeout is not within allowed range."
+    "message": "Thời gian chờ của kho lưu trữ không nằm trong phạm vi cho phép."
   },
   "disablePersonalVaultExport": {
-    "message": "Remove individual vault export"
+    "message": "Xóa xuất dữ liệu kho riêng lẻ"
   },
   "disablePersonalVaultExportDescription": {
-    "message": "Do not allow members to export data from their individual vault."
+    "message": "Không cho phép thành viên xuất dữ liệu từ kho lưu trữ cá nhân của họ."
   },
   "vaultExportDisabled": {
-    "message": "Vault export removed"
+    "message": "Đã hủy xuất kho"
   },
   "personalVaultExportPolicyInEffect": {
-    "message": "One or more organization policies prevents you from exporting your individual vault."
+    "message": "Các chính sách của tổ chức ngăn cản bạn xuất kho lưu trữ cá nhân của mình."
   },
   "activateAutofill": {
-    "message": "Activate auto-fill"
+    "message": "Bật tính năng tự động điền"
   },
   "activateAutofillPolicyDesc": {
-    "message": "Activate the auto-fill on page load setting on the browser extension for all existing and new members."
+    "message": "Bật tính năng tự động điền khi tải trang trên tiện ích mở rộng trình duyệt cho tất cả thành viên hiện tại và mới."
   },
   "experimentalFeature": {
-    "message": "Compromised or untrusted websites can exploit auto-fill on page load."
+    "message": "Các trang web bị xâm phạm hoặc không đáng tin cậy có thể khai thác tính năng tự động điền khi tải trang."
   },
   "learnMoreAboutAutofill": {
-    "message": "Learn more about auto-fill"
+    "message": "Tìm hiểu thêm về tự động điền"
   },
   "selectType": {
-    "message": "Select SSO type"
+    "message": "Chọn loại SSO"
   },
   "type": {
-    "message": "Type"
+    "message": "Loại"
   },
   "openIdConnectConfig": {
-    "message": "OpenID connect configuration"
+    "message": "Cấu hình OpenID Connect"
   },
   "samlSpConfig": {
     "message": "SAML service provider configuration"
@@ -6849,7 +6849,7 @@
     "description": "Short for 'credential generator'."
   },
   "generateUsername": {
-    "message": "Generate username"
+    "message": "Tạo tên đăng nhập"
   },
   "generateEmail": {
     "message": "Generate email"
@@ -6867,7 +6867,7 @@
     "message": "Passphrase generated"
   },
   "usernameGenerated": {
-    "message": "Username generated"
+    "message": "Tên đăng nhập được tạo tự động"
   },
   "emailGenerated": {
     "message": "Email generated"
@@ -6923,14 +6923,14 @@
     "message": "Use this email"
   },
   "random": {
-    "message": "Random",
+    "message": "Ngẫu nhiên",
     "description": "Generates domain-based username using random letters"
   },
   "randomWord": {
     "message": "Random word"
   },
   "usernameGenerator": {
-    "message": "Username generator"
+    "message": "Trình tạo tên đăng nhập"
   },
   "useThisPassword": {
     "message": "Use this password"
@@ -6939,7 +6939,7 @@
     "message": "Use this passphrase"
   },
   "useThisUsername": {
-    "message": "Use this username"
+    "message": "Dùng tên đăng nhập này"
   },
   "securePasswordGenerated": {
     "message": "Secure password generated! Don't forget to also update your password on the website."
@@ -7200,7 +7200,7 @@
     "message": "This API key has access to manage users within your organization. It should be kept secret."
   },
   "copyScimKey": {
-    "message": "Copy the SCIM API key to your clipboard",
+    "message": "Sao chép khóa API SCIM vào bảng nhớ tạm",
     "description": "the text, 'SCIM' and 'API', are acronyms and should not be translated."
   },
   "rotateScimKey": {
@@ -7219,7 +7219,7 @@
     "description": "the text, 'SCIM' and 'API', are acronyms and should not be translated."
   },
   "copyScimUrl": {
-    "message": "Copy the SCIM endpoint URL to your clipboard",
+    "message": "Sao chép SCIM endpoint URL vào bảng nhớ tạm",
     "description": "the text, 'SCIM' and 'URL', are acronyms and should not be translated."
   },
   "scimUrl": {
@@ -7235,13 +7235,13 @@
     "description": "the text, 'SCIM', is an acronym and should not be translated."
   },
   "inputRequired": {
-    "message": "Input is required."
+    "message": "Trường này là bắt buộc."
   },
   "inputEmail": {
-    "message": "Input is not an email address."
+    "message": "Dữ liệu nhập vào không phải là địa chỉ email."
   },
   "inputMinLength": {
-    "message": "Input must be at least $COUNT$ characters long.",
+    "message": "Dữ liệu nhập vào phải có độ dài ít nhất $COUNT$ ký tự.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -7250,7 +7250,7 @@
     }
   },
   "inputMaxLength": {
-    "message": "Input must not exceed $COUNT$ characters in length.",
+    "message": "Độ dài của dữ liệu nhập vào không được vượt quá $COUNT$ ký tự.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -7259,7 +7259,7 @@
     }
   },
   "inputForbiddenCharacters": {
-    "message": "The following characters are not allowed: $CHARACTERS$",
+    "message": "Các ký tự sau không được phép sử dụng: $CHARACTERS$",
     "placeholders": {
       "characters": {
         "content": "$1",
@@ -7268,7 +7268,7 @@
     }
   },
   "inputMinValue": {
-    "message": "Input value must be at least $MIN$.",
+    "message": "Dữ liệu nhập vào phải ít nhất là $MIN$.",
     "placeholders": {
       "min": {
         "content": "$1",
@@ -7277,7 +7277,7 @@
     }
   },
   "inputMaxValue": {
-    "message": "Input value must not exceed $MAX$.",
+    "message": "Dữ liệu nhập vào không được vượt quá $MAX$.",
     "placeholders": {
       "max": {
         "content": "$1",
@@ -7286,7 +7286,7 @@
     }
   },
   "multipleInputEmails": {
-    "message": "1 or more emails are invalid"
+    "message": "Có ít nhất 1 địa chỉ email không hợp lệ"
   },
   "tooManyEmails": {
     "message": "You can only submit up to $COUNT$ emails at a time",
@@ -7436,11 +7436,11 @@
     "description": "Action to create a new secret."
   },
   "copySecretName": {
-    "message": "Copy secret name",
+    "message": "Sao chép tên bí mật",
     "description": "Action to copy the name of a secret to the system's clipboard."
   },
   "copySecretValue": {
-    "message": "Copy secret value",
+    "message": "Sao chép giá trị bí mật",
     "description": "Action to copy the value of a secret to the system's clipboard."
   },
   "deleteSecret": {
@@ -7462,7 +7462,7 @@
     "description": "A prompt explaining how secrets can be associated with projects."
   },
   "selectProjects": {
-    "message": "Select projects",
+    "message": "Chọn dự án",
     "description": "A label for a type-to-filter input field to choose projects."
   },
   "searchProjects": {
@@ -7683,7 +7683,7 @@
     }
   },
   "deleteProjectInputLabel": {
-    "message": "Type \"$CONFIRM$\" to continue",
+    "message": "Nhập $CONFIRM$ để tiếp tục",
     "description": "Users are prompted to type 'confirm' to delete a project",
     "placeholders": {
       "confirm": {
@@ -7776,7 +7776,7 @@
     "description": "Notification to inform the user that access tokens are only displayed once and cannot be retrieved again."
   },
   "copyToken": {
-    "message": "Copy token",
+    "message": "Sao chép token",
     "description": "Copies the generated access token to the user's clipboard."
   },
   "accessToken": {
@@ -7788,7 +7788,7 @@
     "description": "Error message indicating that an expiration date for the access token must be set."
   },
   "accessTokenCreatedAndCopied": {
-    "message": "Access token created and copied to clipboard",
+    "message": "Token truy cập đã được tạo và sao chép vào bảng nhớ tạm",
     "description": "Notification to inform the user that the access token has been created and copied to the clipboard."
   },
   "revokeAccessToken": {
@@ -7894,7 +7894,7 @@
     "message": "DNS TXT record"
   },
   "dnsTxtRecordInputHint": {
-    "message": "Copy and paste the TXT record into your DNS Provider."
+    "message": "Sao chép và dán bản ghi TXT vào nhà cung cấp DNS của bạn."
   },
   "removeDomain": {
     "message": "Remove domain"
@@ -8408,7 +8408,7 @@
     }
   },
   "inputTrimValidator": {
-    "message": "Input must not contain only whitespace.",
+    "message": "Dữ liệu nhập vào không được chỉ chứa khoảng trắng.",
     "description": "Notification to inform the user that a form's input can't contain only whitespace."
   },
   "dismiss": {
@@ -8454,7 +8454,7 @@
     "message": "Remember this device"
   },
   "uncheckIfPublicDevice": {
-    "message": "Uncheck if using a public device"
+    "message": "Bỏ chọn nếu sử dụng thiết bị công cộng"
   },
   "approveFromYourOtherDevice": {
     "message": "Approve from your other device"
@@ -8938,6 +8938,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
@@ -10350,7 +10358,7 @@
     "message": "Claim a domain to own all member accounts whose email address matches the domain. Members will be able to skip the SSO identifier when logging in. Administrators will also be able to delete member accounts."
   },
   "invalidDomainNameClaimMessage": {
-    "message": "Input is not a valid format. Format: mydomain.com. Subdomains require separate entries to be claimed."
+    "message": "Định dạng nhập vào không hợp lệ. Định dạng: mydomain.com. Các tên miền con yêu cầu các mục riêng biệt để được xác nhận."
   },
   "domainClaimedEvent": {
     "message": "$DOMAIN$ claimed",
@@ -10453,7 +10461,7 @@
     "message": "The SSH key type is not supported"
   },
   "importSshKeyFromClipboard": {
-    "message": "Import key from clipboard"
+    "message": "Nhập khóa từ bảng nhớ tạm"
   },
   "sshKeyImported": {
     "message": "SSH key imported successfully"
diff --git a/apps/web/src/locales/zh_CN/messages.json b/apps/web/src/locales/zh_CN/messages.json
index 7dae224a1b8..42157058174 100644
--- a/apps/web/src/locales/zh_CN/messages.json
+++ b/apps/web/src/locales/zh_CN/messages.json
@@ -8463,7 +8463,7 @@
     "message": "请求管理员批准"
   },
   "unableToCompleteLogin": {
-    "message": "Unable to complete login"
+    "message": "无法完成登录"
   },
   "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
     "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
@@ -8938,6 +8938,14 @@
     "message": "更多关于匹配检测",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "高级选项",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "警告",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "要保留 $ORG$ 的订阅，",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",
diff --git a/apps/web/src/locales/zh_TW/messages.json b/apps/web/src/locales/zh_TW/messages.json
index c029e1e0e68..3cdf7bd7944 100644
--- a/apps/web/src/locales/zh_TW/messages.json
+++ b/apps/web/src/locales/zh_TW/messages.json
@@ -8938,6 +8938,14 @@
     "message": "More about match detection",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
+  "uriAdvancedOption": {
+    "message": "Advanced options",
+    "description": "Advanced option placeholder for uri option component"
+  },
+  "warningCapitalized": {
+    "message": "Warning",
+    "description": "Warning (should maintain locale-relevant capitalization)"
+  },
   "maintainYourSubscription": {
     "message": "To maintain your subscription for $ORG$, ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'To maintain your subscription for $ORG$, add a payment method.'",

From ec7a2613cc5d0c7d19c7c8a9c274a0fc63300f3a Mon Sep 17 00:00:00 2001
From: Justin Baur <19896123+justindbaur@users.noreply.github.com>
Date: Mon, 14 Jul 2025 09:11:56 -0400
Subject: [PATCH 126/239] [PM-23062] Fix extra signalr connections (#15432)

* Add `globalEnvironment$` property to `EnvironmentService`

* Update `ConfigService` to emit less and have higher quality fallbacks when no user config is available

* Remove debug code

* Fix strict null problems
---
 .../config/config-api.service.abstraction.ts  |  2 +-
 .../abstractions/environment.service.ts       | 11 ++-
 .../services/config/config-api.service.ts     |  2 +-
 .../services/config/config.service.spec.ts    | 32 +++----
 .../services/config/default-config.service.ts | 87 ++++++++++++-------
 .../services/default-environment.service.ts   |  9 +-
 6 files changed, 89 insertions(+), 54 deletions(-)

diff --git a/libs/common/src/platform/abstractions/config/config-api.service.abstraction.ts b/libs/common/src/platform/abstractions/config/config-api.service.abstraction.ts
index 3c191f59ccc..0460e8c715f 100644
--- a/libs/common/src/platform/abstractions/config/config-api.service.abstraction.ts
+++ b/libs/common/src/platform/abstractions/config/config-api.service.abstraction.ts
@@ -5,5 +5,5 @@ export abstract class ConfigApiServiceAbstraction {
   /**
    * Fetches the server configuration for the given user. If no user is provided, the configuration will not contain user-specific context.
    */
-  abstract get(userId: UserId | undefined): Promise<ServerConfigResponse>;
+  abstract get(userId: UserId | null): Promise<ServerConfigResponse>;
 }
diff --git a/libs/common/src/platform/abstractions/environment.service.ts b/libs/common/src/platform/abstractions/environment.service.ts
index b8931656848..86a0fbea242 100644
--- a/libs/common/src/platform/abstractions/environment.service.ts
+++ b/libs/common/src/platform/abstractions/environment.service.ts
@@ -95,6 +95,13 @@ export interface Environment {
  */
 export abstract class EnvironmentService {
   abstract environment$: Observable<Environment>;
+
+  /**
+   * The environment stored in global state, when a user signs in the state stored here will become
+   * their user environment.
+   */
+  abstract globalEnvironment$: Observable<Environment>;
+
   abstract cloudWebVaultUrl$: Observable<string>;
 
   /**
@@ -125,12 +132,12 @@ export abstract class EnvironmentService {
    * @param userId - The user id to set the cloud web vault app URL for. If null or undefined the global environment is set.
    * @param region - The region of the cloud web vault app.
    */
-  abstract setCloudRegion(userId: UserId, region: Region): Promise<void>;
+  abstract setCloudRegion(userId: UserId | null, region: Region): Promise<void>;
 
   /**
    * Get the environment from state. Useful if you need to get the environment for another user.
    */
-  abstract getEnvironment$(userId: UserId): Observable<Environment | undefined>;
+  abstract getEnvironment$(userId: UserId): Observable<Environment>;
 
   /**
    * @deprecated Use {@link getEnvironment$} instead.
diff --git a/libs/common/src/platform/services/config/config-api.service.ts b/libs/common/src/platform/services/config/config-api.service.ts
index f283410acea..b7ecb9c8712 100644
--- a/libs/common/src/platform/services/config/config-api.service.ts
+++ b/libs/common/src/platform/services/config/config-api.service.ts
@@ -10,7 +10,7 @@ export class ConfigApiService implements ConfigApiServiceAbstraction {
     private tokenService: TokenService,
   ) {}
 
-  async get(userId: UserId | undefined): Promise<ServerConfigResponse> {
+  async get(userId: UserId | null): Promise<ServerConfigResponse> {
     // Authentication adds extra context to config responses, if the user has an access token, we want to use it
     // We don't particularly care about ensuring the token is valid and not expired, just that it exists
     const authed: boolean =
diff --git a/libs/common/src/platform/services/config/config.service.spec.ts b/libs/common/src/platform/services/config/config.service.spec.ts
index ea3b56a32f1..e8a1872c4c1 100644
--- a/libs/common/src/platform/services/config/config.service.spec.ts
+++ b/libs/common/src/platform/services/config/config.service.spec.ts
@@ -10,9 +10,9 @@ import {
   FakeGlobalState,
   FakeSingleUserState,
   FakeStateProvider,
-  awaitAsync,
   mockAccountServiceWith,
 } from "../../../../spec";
+import { Matrix } from "../../../../spec/matrix";
 import { subscribeTo } from "../../../../spec/observable-tracker";
 import { AuthService } from "../../../auth/abstractions/auth.service";
 import { AuthenticationStatus } from "../../../auth/enums/authentication-status";
@@ -74,7 +74,8 @@ describe("ConfigService", () => {
     });
 
     beforeEach(() => {
-      environmentService.environment$ = environmentSubject;
+      Matrix.autoMockMethod(environmentService.getEnvironment$, () => environmentSubject);
+      environmentService.globalEnvironment$ = environmentSubject;
       sut = new DefaultConfigService(
         configApiService,
         environmentService,
@@ -98,9 +99,12 @@ describe("ConfigService", () => {
             : serverConfigFactory(activeApiUrl + userId, tooOld);
         const globalStored =
           configStateDescription === "missing"
-            ? {}
+            ? {
+                [activeApiUrl]: null,
+              }
             : {
                 [activeApiUrl]: serverConfigFactory(activeApiUrl, tooOld),
+                [activeApiUrl + "0"]: serverConfigFactory(activeApiUrl + userId, tooOld),
               };
 
         beforeEach(() => {
@@ -108,11 +112,6 @@ describe("ConfigService", () => {
           userState.nextState(userStored);
         });
 
-        // sanity check
-        test("authed and unauthorized state are different", () => {
-          expect(globalStored[activeApiUrl]).not.toEqual(userStored);
-        });
-
         describe("fail to fetch", () => {
           beforeEach(() => {
             configApiService.get.mockRejectedValue(new Error("Unable to fetch"));
@@ -178,6 +177,7 @@ describe("ConfigService", () => {
         beforeEach(() => {
           globalState.stateSubject.next(globalStored);
           userState.nextState(userStored);
+          Matrix.autoMockMethod(environmentService.getEnvironment$, () => environmentSubject);
         });
         it("does not fetch from server", async () => {
           await firstValueFrom(sut.serverConfig$);
@@ -189,21 +189,13 @@ describe("ConfigService", () => {
           const actual = await firstValueFrom(sut.serverConfig$);
           expect(actual).toEqual(activeUserId ? userStored : globalStored[activeApiUrl]);
         });
-
-        it("does not complete after emit", async () => {
-          const emissions = [];
-          const subscription = sut.serverConfig$.subscribe((v) => emissions.push(v));
-          await awaitAsync();
-          expect(emissions.length).toBe(1);
-          expect(subscription.closed).toBe(false);
-        });
       });
     });
   });
 
   it("gets global config when there is an locked active user", async () => {
     await accountService.switchAccount(userId);
-    environmentService.environment$ = of(environmentFactory(activeApiUrl));
+    environmentService.globalEnvironment$ = of(environmentFactory(activeApiUrl));
 
     globalState.stateSubject.next({
       [activeApiUrl]: serverConfigFactory(activeApiUrl + "global"),
@@ -236,7 +228,8 @@ describe("ConfigService", () => {
 
     beforeEach(() => {
       environmentSubject = new Subject<Environment>();
-      environmentService.environment$ = environmentSubject;
+      environmentService.globalEnvironment$ = environmentSubject;
+      Matrix.autoMockMethod(environmentService.getEnvironment$, () => environmentSubject);
       sut = new DefaultConfigService(
         configApiService,
         environmentService,
@@ -327,7 +320,8 @@ describe("ConfigService", () => {
 
     beforeEach(async () => {
       const config = serverConfigFactory("existing-data", tooOld);
-      environmentService.environment$ = environmentSubject;
+      environmentService.globalEnvironment$ = environmentSubject;
+      Matrix.autoMockMethod(environmentService.getEnvironment$, () => environmentSubject);
 
       globalState.stateSubject.next({ [apiUrl(0)]: config });
       userState.stateSubject.next({
diff --git a/libs/common/src/platform/services/config/default-config.service.ts b/libs/common/src/platform/services/config/default-config.service.ts
index 33f86d30885..4297b65cb60 100644
--- a/libs/common/src/platform/services/config/default-config.service.ts
+++ b/libs/common/src/platform/services/config/default-config.service.ts
@@ -1,17 +1,18 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import {
   combineLatest,
+  distinctUntilChanged,
   firstValueFrom,
   map,
   mergeWith,
   NEVER,
   Observable,
   of,
-  shareReplay,
+  ReplaySubject,
+  share,
   Subject,
   switchMap,
   tap,
+  timer,
 } from "rxjs";
 import { SemVer } from "semver";
 
@@ -50,11 +51,15 @@ export const GLOBAL_SERVER_CONFIGURATIONS = KeyDefinition.record<ServerConfig, A
   },
 );
 
+const environmentComparer = (previous: Environment, current: Environment) => {
+  return previous.getApiUrl() === current.getApiUrl();
+};
+
 // FIXME: currently we are limited to api requests for active users. Update to accept a UserId and APIUrl once ApiService supports it.
 export class DefaultConfigService implements ConfigService {
-  private failedFetchFallbackSubject = new Subject<ServerConfig>();
+  private failedFetchFallbackSubject = new Subject<ServerConfig | null>();
 
-  serverConfig$: Observable<ServerConfig>;
+  serverConfig$: Observable<ServerConfig | null>;
 
   serverSettings$: Observable<ServerSettings>;
 
@@ -67,25 +72,51 @@ export class DefaultConfigService implements ConfigService {
     private stateProvider: StateProvider,
     private authService: AuthService,
   ) {
-    const userId$ = this.stateProvider.activeUserId$;
-    const authStatus$ = userId$.pipe(
-      switchMap((userId) => (userId == null ? of(null) : this.authService.authStatusFor$(userId))),
+    const globalConfig$ = this.environmentService.globalEnvironment$.pipe(
+      distinctUntilChanged(environmentComparer),
+      switchMap((environment) =>
+        this.globalConfigFor$(environment.getApiUrl()).pipe(
+          map((config) => {
+            return [config, null as UserId | null, environment] as const;
+          }),
+        ),
+      ),
     );
 
-    this.serverConfig$ = combineLatest([
-      userId$,
-      this.environmentService.environment$,
-      authStatus$,
-    ]).pipe(
-      switchMap(([userId, environment, authStatus]) => {
-        if (userId == null || authStatus !== AuthenticationStatus.Unlocked) {
-          return this.globalConfigFor$(environment.getApiUrl()).pipe(
-            map((config) => [config, null, environment] as const),
-          );
+    this.serverConfig$ = this.stateProvider.activeUserId$.pipe(
+      distinctUntilChanged(),
+      switchMap((userId) => {
+        if (userId == null) {
+          // Global
+          return globalConfig$;
         }
 
-        return this.userConfigFor$(userId).pipe(
-          map((config) => [config, userId, environment] as const),
+        return this.authService.authStatusFor$(userId).pipe(
+          map((authStatus) => authStatus === AuthenticationStatus.Unlocked),
+          distinctUntilChanged(),
+          switchMap((isUnlocked) => {
+            if (!isUnlocked) {
+              return globalConfig$;
+            }
+
+            return combineLatest([
+              this.environmentService
+                .getEnvironment$(userId)
+                .pipe(distinctUntilChanged(environmentComparer)),
+              this.userConfigFor$(userId),
+            ]).pipe(
+              switchMap(([environment, config]) => {
+                if (config == null) {
+                  // If the user doesn't have any config yet, use the global config for that url as the fallback
+                  return this.globalConfigFor$(environment.getApiUrl()).pipe(
+                    map((globalConfig) => [globalConfig, userId, environment] as const),
+                  );
+                }
+
+                return of([config, userId, environment] as const);
+              }),
+            );
+          }),
         );
       }),
       tap(async (rec) => {
@@ -106,7 +137,7 @@ export class DefaultConfigService implements ConfigService {
       }),
       // If fetch fails, we'll emit on this subject to fallback to the existing config
       mergeWith(this.failedFetchFallbackSubject),
-      shareReplay({ refCount: true, bufferSize: 1 }),
+      share({ connector: () => new ReplaySubject(1), resetOnRefCountZero: () => timer(1000) }),
     );
 
     this.cloudRegion$ = this.serverConfig$.pipe(
@@ -155,8 +186,8 @@ export class DefaultConfigService implements ConfigService {
 
   // Updates the on-disk configuration with a newly retrieved configuration
   private async renewConfig(
-    existingConfig: ServerConfig,
-    userId: UserId,
+    existingConfig: ServerConfig | null,
+    userId: UserId | null,
     environment: Environment,
   ): Promise<void> {
     try {
@@ -164,9 +195,7 @@ export class DefaultConfigService implements ConfigService {
       // somewhat quickly even though it may not be accurate, we won't cancel the HTTP request
       // though so that hopefully it can have finished and hydrated a more accurate value.
       const handle = setTimeout(() => {
-        this.logService.info(
-          "Self-host environment did not respond in time, emitting previous config.",
-        );
+        this.logService.info("Environment did not respond in time, emitting previous config.");
         this.failedFetchFallbackSubject.next(existingConfig);
       }, SLOW_EMISSION_GUARD);
       const response = await this.configApiService.get(userId);
@@ -199,13 +228,13 @@ export class DefaultConfigService implements ConfigService {
     }
   }
 
-  private globalConfigFor$(apiUrl: string): Observable<ServerConfig> {
+  private globalConfigFor$(apiUrl: string): Observable<ServerConfig | null> {
     return this.stateProvider
       .getGlobal(GLOBAL_SERVER_CONFIGURATIONS)
-      .state$.pipe(map((configs) => configs?.[apiUrl]));
+      .state$.pipe(map((configs) => configs?.[apiUrl] ?? null));
   }
 
-  private userConfigFor$(userId: UserId): Observable<ServerConfig> {
+  private userConfigFor$(userId: UserId): Observable<ServerConfig | null> {
     return this.stateProvider.getUser(userId, USER_SERVER_CONFIG).state$;
   }
 }
diff --git a/libs/common/src/platform/services/default-environment.service.ts b/libs/common/src/platform/services/default-environment.service.ts
index df55693ba0b..4a1af68505a 100644
--- a/libs/common/src/platform/services/default-environment.service.ts
+++ b/libs/common/src/platform/services/default-environment.service.ts
@@ -133,6 +133,7 @@ export class DefaultEnvironmentService implements EnvironmentService {
   );
 
   environment$: Observable<Environment>;
+  globalEnvironment$: Observable<Environment>;
   cloudWebVaultUrl$: Observable<string>;
 
   constructor(
@@ -148,6 +149,10 @@ export class DefaultEnvironmentService implements EnvironmentService {
       distinctUntilChanged((oldUserId: UserId, newUserId: UserId) => oldUserId == newUserId),
     );
 
+    this.globalEnvironment$ = this.stateProvider
+      .getGlobal(GLOBAL_ENVIRONMENT_KEY)
+      .state$.pipe(map((state) => this.buildEnvironment(state?.region, state?.urls)));
+
     this.environment$ = account$.pipe(
       switchMap((userId) => {
         const t = userId
@@ -263,7 +268,7 @@ export class DefaultEnvironmentService implements EnvironmentService {
     return new SelfHostedEnvironment(urls);
   }
 
-  async setCloudRegion(userId: UserId, region: CloudRegion) {
+  async setCloudRegion(userId: UserId | null, region: CloudRegion) {
     if (userId == null) {
       await this.globalCloudRegionState.update(() => region);
     } else {
@@ -271,7 +276,7 @@ export class DefaultEnvironmentService implements EnvironmentService {
     }
   }
 
-  getEnvironment$(userId: UserId): Observable<Environment | undefined> {
+  getEnvironment$(userId: UserId): Observable<Environment> {
     return this.stateProvider.getUser(userId, USER_ENVIRONMENT_KEY).state$.pipe(
       map((state) => {
         return this.buildEnvironment(state?.region, state?.urls);

From cfd1a99dac580f48d5cab89c65091d291a7dab68 Mon Sep 17 00:00:00 2001
From: Maciej Zieniuk <167752252+mzieniukbw@users.noreply.github.com>
Date: Mon, 14 Jul 2025 16:13:34 +0200
Subject: [PATCH 127/239] Vault timeout policy won't let you change timeout
 time if vault timeout action set. (#15520)

Angular `FormGroup` does not return disabled fields via `.value` property, need to use `getRawValue()` function instead.
---
 .../app/accounts/settings.component.spec.ts   | 92 +++++++++++++++++++
 .../src/app/accounts/settings.component.ts    |  2 +-
 2 files changed, 93 insertions(+), 1 deletion(-)

diff --git a/apps/desktop/src/app/accounts/settings.component.spec.ts b/apps/desktop/src/app/accounts/settings.component.spec.ts
index 55bc09b7c95..a8019ce3434 100644
--- a/apps/desktop/src/app/accounts/settings.component.spec.ts
+++ b/apps/desktop/src/app/accounts/settings.component.spec.ts
@@ -18,6 +18,7 @@ import {
   VaultTimeoutSettingsService,
   VaultTimeoutStringType,
   VaultTimeoutAction,
+  VaultTimeout,
 } from "@bitwarden/common/key-management/vault-timeout";
 import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
@@ -70,6 +71,8 @@ describe("SettingsComponent", () => {
   const dialogService = mock<DialogService>();
 
   beforeEach(async () => {
+    jest.clearAllMocks();
+
     originalIpc = (global as any).ipc;
     (global as any).ipc = {
       auth: {
@@ -591,4 +594,93 @@ describe("SettingsComponent", () => {
       });
     });
   });
+
+  describe("saveVaultTimeout", () => {
+    const DEFAULT_VAULT_TIMEOUT: VaultTimeout = 123;
+    const DEFAULT_VAULT_TIMEOUT_ACTION = VaultTimeoutAction.Lock;
+
+    beforeEach(() => {
+      component["form"].controls.vaultTimeout.setValue(DEFAULT_VAULT_TIMEOUT, { emitEvent: false });
+      component["form"].controls.vaultTimeoutAction.setValue(DEFAULT_VAULT_TIMEOUT_ACTION, {
+        emitEvent: false,
+      });
+      component["previousVaultTimeout"] = DEFAULT_VAULT_TIMEOUT;
+    });
+
+    it.each([
+      null,
+      [VaultTimeoutStringType.Never],
+      [VaultTimeoutStringType.OnRestart],
+      [VaultTimeoutStringType.OnLocked],
+      [VaultTimeoutStringType.OnSleep],
+      [VaultTimeoutStringType.OnIdle],
+      [42],
+    ])("should save vault timeout", async (vaultTimeout: VaultTimeout) => {
+      dialogService.openSimpleDialog.mockResolvedValue(true);
+
+      await component.saveVaultTimeout(vaultTimeout);
+
+      expect(vaultTimeoutSettingsService.setVaultTimeoutOptions).toHaveBeenCalledWith(
+        mockUserId,
+        vaultTimeout,
+        DEFAULT_VAULT_TIMEOUT_ACTION,
+      );
+      expect(component["previousVaultTimeout"]).toEqual(DEFAULT_VAULT_TIMEOUT);
+    });
+
+    it("should save vault timeout when vault timeout action is disabled", async () => {
+      component["form"].controls.vaultTimeoutAction.setValue(VaultTimeoutAction.LogOut, {
+        emitEvent: false,
+      });
+      component["form"].controls.vaultTimeoutAction.disable({ emitEvent: false });
+
+      await component.saveVaultTimeout(DEFAULT_VAULT_TIMEOUT);
+
+      expect(vaultTimeoutSettingsService.setVaultTimeoutOptions).toHaveBeenCalledWith(
+        mockUserId,
+        DEFAULT_VAULT_TIMEOUT,
+        VaultTimeoutAction.LogOut,
+      );
+      expect(component["previousVaultTimeout"]).toEqual(DEFAULT_VAULT_TIMEOUT);
+    });
+
+    it("should not save vault timeout when vault timeout is 'never' and dialog is cancelled", async () => {
+      dialogService.openSimpleDialog.mockResolvedValue(false);
+
+      await component.saveVaultTimeout(VaultTimeoutStringType.Never);
+
+      expect(vaultTimeoutSettingsService.setVaultTimeoutOptions).not.toHaveBeenCalled();
+      expect(component["form"].getRawValue().vaultTimeout).toEqual(DEFAULT_VAULT_TIMEOUT);
+      expect(component["previousVaultTimeout"]).toEqual(DEFAULT_VAULT_TIMEOUT);
+      expect(dialogService.openSimpleDialog).toHaveBeenCalledWith({
+        title: { key: "warning" },
+        content: { key: "neverLockWarning" },
+        type: "warning",
+      });
+    });
+
+    it("should not save vault timeout when vault timeout is 0", async () => {
+      component["form"].controls.vaultTimeout.setValue(0, { emitEvent: false });
+      await component.saveVaultTimeout(0);
+
+      expect(vaultTimeoutSettingsService.setVaultTimeoutOptions).not.toHaveBeenCalled();
+      expect(component["form"].getRawValue().vaultTimeout).toEqual(0);
+      expect(component["previousVaultTimeout"]).toEqual(DEFAULT_VAULT_TIMEOUT);
+    });
+
+    it("should not save vault timeout when vault timeout is invalid", async () => {
+      i18nService.t.mockReturnValue("Number too large test error");
+      component["form"].controls.vaultTimeout.setErrors({}, { emitEvent: false });
+      await component.saveVaultTimeout(999_999_999);
+
+      expect(vaultTimeoutSettingsService.setVaultTimeoutOptions).not.toHaveBeenCalled();
+      expect(component["form"].getRawValue().vaultTimeout).toEqual(DEFAULT_VAULT_TIMEOUT);
+      expect(component["previousVaultTimeout"]).toEqual(DEFAULT_VAULT_TIMEOUT);
+      expect(platformUtilsService.showToast).toHaveBeenCalledWith(
+        "error",
+        null,
+        "Number too large test error",
+      );
+    });
+  });
 });
diff --git a/apps/desktop/src/app/accounts/settings.component.ts b/apps/desktop/src/app/accounts/settings.component.ts
index 76c257efad7..3a12a2a07b0 100644
--- a/apps/desktop/src/app/accounts/settings.component.ts
+++ b/apps/desktop/src/app/accounts/settings.component.ts
@@ -449,7 +449,7 @@ export class SettingsComponent implements OnInit, OnDestroy {
     await this.vaultTimeoutSettingsService.setVaultTimeoutOptions(
       activeAccount.id,
       newValue,
-      this.form.value.vaultTimeoutAction,
+      this.form.getRawValue().vaultTimeoutAction,
     );
   }
 

From 1b1361ff5a730971852331a63dd88858f07ef3d0 Mon Sep 17 00:00:00 2001
From: Github Actions <actions@github.com>
Date: Mon, 14 Jul 2025 14:28:28 +0000
Subject: [PATCH 128/239] Bumped client version(s)

---
 apps/browser/package.json          | 2 +-
 apps/browser/src/manifest.json     | 2 +-
 apps/browser/src/manifest.v3.json  | 2 +-
 apps/cli/package.json              | 2 +-
 apps/desktop/package.json          | 2 +-
 apps/desktop/src/package-lock.json | 4 ++--
 apps/desktop/src/package.json      | 2 +-
 apps/web/package.json              | 2 +-
 package-lock.json                  | 8 ++++----
 9 files changed, 13 insertions(+), 13 deletions(-)

diff --git a/apps/browser/package.json b/apps/browser/package.json
index 16e460a9025..70dd0d7a241 100644
--- a/apps/browser/package.json
+++ b/apps/browser/package.json
@@ -1,6 +1,6 @@
 {
   "name": "@bitwarden/browser",
-  "version": "2025.6.1",
+  "version": "2025.7.0",
   "scripts": {
     "build": "npm run build:chrome",
     "build:chrome": "cross-env BROWSER=chrome MANIFEST_VERSION=3 NODE_OPTIONS=\"--max-old-space-size=8192\" webpack",
diff --git a/apps/browser/src/manifest.json b/apps/browser/src/manifest.json
index aa80222c672..d6cf535b6d2 100644
--- a/apps/browser/src/manifest.json
+++ b/apps/browser/src/manifest.json
@@ -2,7 +2,7 @@
   "manifest_version": 2,
   "name": "__MSG_extName__",
   "short_name": "Bitwarden",
-  "version": "2025.6.1",
+  "version": "2025.7.0",
   "description": "__MSG_extDesc__",
   "default_locale": "en",
   "author": "Bitwarden Inc.",
diff --git a/apps/browser/src/manifest.v3.json b/apps/browser/src/manifest.v3.json
index 6d38a5880d5..615ae9115b4 100644
--- a/apps/browser/src/manifest.v3.json
+++ b/apps/browser/src/manifest.v3.json
@@ -3,7 +3,7 @@
   "minimum_chrome_version": "102.0",
   "name": "__MSG_extName__",
   "short_name": "Bitwarden",
-  "version": "2025.6.1",
+  "version": "2025.7.0",
   "description": "__MSG_extDesc__",
   "default_locale": "en",
   "author": "Bitwarden Inc.",
diff --git a/apps/cli/package.json b/apps/cli/package.json
index bd77627f709..27f3585bff7 100644
--- a/apps/cli/package.json
+++ b/apps/cli/package.json
@@ -1,7 +1,7 @@
 {
   "name": "@bitwarden/cli",
   "description": "A secure and free password manager for all of your devices.",
-  "version": "2025.6.1",
+  "version": "2025.7.0",
   "keywords": [
     "bitwarden",
     "password",
diff --git a/apps/desktop/package.json b/apps/desktop/package.json
index 2ab88fed621..005b823253f 100644
--- a/apps/desktop/package.json
+++ b/apps/desktop/package.json
@@ -1,7 +1,7 @@
 {
   "name": "@bitwarden/desktop",
   "description": "A secure and free password manager for all of your devices.",
-  "version": "2025.7.0",
+  "version": "2025.7.1",
   "keywords": [
     "bitwarden",
     "password",
diff --git a/apps/desktop/src/package-lock.json b/apps/desktop/src/package-lock.json
index a4e00046476..2cc106d07b0 100644
--- a/apps/desktop/src/package-lock.json
+++ b/apps/desktop/src/package-lock.json
@@ -1,12 +1,12 @@
 {
   "name": "@bitwarden/desktop",
-  "version": "2025.7.0",
+  "version": "2025.7.1",
   "lockfileVersion": 3,
   "requires": true,
   "packages": {
     "": {
       "name": "@bitwarden/desktop",
-      "version": "2025.7.0",
+      "version": "2025.7.1",
       "license": "GPL-3.0",
       "dependencies": {
         "@bitwarden/desktop-napi": "file:../desktop_native/napi"
diff --git a/apps/desktop/src/package.json b/apps/desktop/src/package.json
index 0128692f3b4..8457cb23f74 100644
--- a/apps/desktop/src/package.json
+++ b/apps/desktop/src/package.json
@@ -2,7 +2,7 @@
   "name": "@bitwarden/desktop",
   "productName": "Bitwarden",
   "description": "A secure and free password manager for all of your devices.",
-  "version": "2025.7.0",
+  "version": "2025.7.1",
   "author": "Bitwarden Inc. <hello@bitwarden.com> (https://bitwarden.com)",
   "homepage": "https://bitwarden.com",
   "license": "GPL-3.0",
diff --git a/apps/web/package.json b/apps/web/package.json
index f672e44a80b..98f6e76c26d 100644
--- a/apps/web/package.json
+++ b/apps/web/package.json
@@ -1,6 +1,6 @@
 {
   "name": "@bitwarden/web-vault",
-  "version": "2025.7.0",
+  "version": "2025.7.1",
   "scripts": {
     "build:oss": "cross-env NODE_OPTIONS=\"--max-old-space-size=8192\" webpack",
     "build:bit": "cross-env NODE_OPTIONS=\"--max-old-space-size=8192\" webpack -c ../../bitwarden_license/bit-web/webpack.config.js",
diff --git a/package-lock.json b/package-lock.json
index ceb912531ec..ea003e2b3f8 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -197,11 +197,11 @@
     },
     "apps/browser": {
       "name": "@bitwarden/browser",
-      "version": "2025.6.1"
+      "version": "2025.7.0"
     },
     "apps/cli": {
       "name": "@bitwarden/cli",
-      "version": "2025.6.1",
+      "version": "2025.7.0",
       "license": "SEE LICENSE IN LICENSE.txt",
       "dependencies": {
         "@koa/multer": "4.0.0",
@@ -288,7 +288,7 @@
     },
     "apps/desktop": {
       "name": "@bitwarden/desktop",
-      "version": "2025.7.0",
+      "version": "2025.7.1",
       "hasInstallScript": true,
       "license": "GPL-3.0"
     },
@@ -302,7 +302,7 @@
     },
     "apps/web": {
       "name": "@bitwarden/web-vault",
-      "version": "2025.7.0"
+      "version": "2025.7.1"
     },
     "libs/admin-console": {
       "name": "@bitwarden/admin-console",

From e382bd61568789346529ead3436e2d3815700c66 Mon Sep 17 00:00:00 2001
From: Alex Morask <144709477+amorask-bitwarden@users.noreply.github.com>
Date: Mon, 14 Jul 2025 12:39:57 -0500
Subject: [PATCH 129/239] Fix reload on organization-payment-details page
 (#15601)

---
 .../organization-payment-details.component.ts     | 15 +++++++--------
 1 file changed, 7 insertions(+), 8 deletions(-)

diff --git a/apps/web/src/app/billing/organizations/payment-details/organization-payment-details.component.ts b/apps/web/src/app/billing/organizations/payment-details/organization-payment-details.component.ts
index 3618696f697..e357444b943 100644
--- a/apps/web/src/app/billing/organizations/payment-details/organization-payment-details.component.ts
+++ b/apps/web/src/app/billing/organizations/payment-details/organization-payment-details.component.ts
@@ -156,13 +156,7 @@ export class OrganizationPaymentDetailsComponent implements OnInit {
     });
     const result = await lastValueFrom(dialogRef.closed);
     if (result?.type === "success") {
-      this.setPaymentMethod(result.paymentMethod);
-      if (!view.billingAddress && result.paymentMethod.type !== "payPal") {
-        const billingAddress = await this.billingClient.getBillingAddress(view.organization);
-        if (billingAddress) {
-          this.setBillingAddress(billingAddress);
-        }
-      }
+      await this.setPaymentMethod(result.paymentMethod);
       this.organizationFreeTrialWarningComponent.refresh();
     }
   };
@@ -176,11 +170,16 @@ export class OrganizationPaymentDetailsComponent implements OnInit {
     }
   };
 
-  setPaymentMethod = (paymentMethod: MaskedPaymentMethod) => {
+  setPaymentMethod = async (paymentMethod: MaskedPaymentMethod) => {
     if (this.viewState$.value) {
+      const billingAddress =
+        this.viewState$.value.billingAddress ??
+        (await this.billingClient.getBillingAddress(this.viewState$.value.organization));
+
       this.viewState$.next({
         ...this.viewState$.value,
         paymentMethod,
+        billingAddress,
       });
     }
   };

From 4f84d6b0f6fa411380e9b8a9f6c57257d041ff81 Mon Sep 17 00:00:00 2001
From: Brandon Treston <btreston@bitwarden.com>
Date: Mon, 14 Jul 2025 15:50:13 -0400
Subject: [PATCH 130/239] fix bulk restore for unassigned items (#15533)

---
 .../admin-console/organizations/collections/vault.component.ts | 1 +
 apps/web/src/app/vault/individual-vault/vault.component.ts     | 3 ++-
 libs/common/src/vault/abstractions/cipher.service.ts           | 2 +-
 libs/common/src/vault/services/cipher.service.ts               | 2 +-
 4 files changed, 5 insertions(+), 3 deletions(-)

diff --git a/apps/web/src/app/admin-console/organizations/collections/vault.component.ts b/apps/web/src/app/admin-console/organizations/collections/vault.component.ts
index 1956498322b..197fc0ada0f 100644
--- a/apps/web/src/app/admin-console/organizations/collections/vault.component.ts
+++ b/apps/web/src/app/admin-console/organizations/collections/vault.component.ts
@@ -1068,6 +1068,7 @@ export class VaultComponent implements OnInit, OnDestroy {
     if (unassignedCiphers.length > 0 || editAccessCiphers.length > 0) {
       await this.cipherService.restoreManyWithServer(
         [...unassignedCiphers, ...editAccessCiphers],
+        this.userId,
         this.organization.id,
       );
     }
diff --git a/apps/web/src/app/vault/individual-vault/vault.component.ts b/apps/web/src/app/vault/individual-vault/vault.component.ts
index 52c4bcef01b..db77a2be8ea 100644
--- a/apps/web/src/app/vault/individual-vault/vault.component.ts
+++ b/apps/web/src/app/vault/individual-vault/vault.component.ts
@@ -1029,7 +1029,8 @@ export class VaultComponent implements OnInit, OnDestroy {
       return;
     }
 
-    await this.cipherService.restoreManyWithServer(selectedCipherIds);
+    const activeUserId = await firstValueFrom(this.accountService.activeAccount$.pipe(getUserId));
+    await this.cipherService.restoreManyWithServer(selectedCipherIds, activeUserId);
     this.toastService.showToast({
       variant: "success",
       title: null,
diff --git a/libs/common/src/vault/abstractions/cipher.service.ts b/libs/common/src/vault/abstractions/cipher.service.ts
index 91f8006d15e..9f5c173826e 100644
--- a/libs/common/src/vault/abstractions/cipher.service.ts
+++ b/libs/common/src/vault/abstractions/cipher.service.ts
@@ -209,7 +209,7 @@ export abstract class CipherService implements UserKeyRotationDataProvider<Ciphe
     userId: UserId,
   ): Promise<any>;
   abstract restoreWithServer(id: string, userId: UserId, asAdmin?: boolean): Promise<any>;
-  abstract restoreManyWithServer(ids: string[], orgId?: string): Promise<void>;
+  abstract restoreManyWithServer(ids: string[], userId: UserId, orgId?: string): Promise<void>;
   abstract getKeyForCipherKeyDecryption(cipher: Cipher, userId: UserId): Promise<any>;
   abstract setAddEditCipherInfo(value: AddEditCipherInfo, userId: UserId): Promise<void>;
   /**
diff --git a/libs/common/src/vault/services/cipher.service.ts b/libs/common/src/vault/services/cipher.service.ts
index a1727fd7a1d..18acc5238f5 100644
--- a/libs/common/src/vault/services/cipher.service.ts
+++ b/libs/common/src/vault/services/cipher.service.ts
@@ -1336,7 +1336,7 @@ export class CipherService implements CipherServiceAbstraction {
    * No longer using an asAdmin Param. Org Vault bulkRestore will assess if an item is unassigned or editable
    * The Org Vault will pass those ids an array as well as the orgId when calling bulkRestore
    */
-  async restoreManyWithServer(ids: string[], userId: UserId, orgId: string = null): Promise<void> {
+  async restoreManyWithServer(ids: string[], userId: UserId, orgId?: string): Promise<void> {
     let response;
 
     if (orgId) {

From b2c2bb4c5557485dc51395ee8c8ba024842d7e60 Mon Sep 17 00:00:00 2001
From: Jared Snider <116684653+JaredSnider-Bitwarden@users.noreply.github.com>
Date: Mon, 14 Jul 2025 16:56:10 -0400
Subject: [PATCH 131/239] CL-765 - AnonLayoutWrapperComponents - make hideIcon
 reset properly. (#15610)

---
 .../extension-anon-layout-wrapper.component.ts                   | 1 +
 libs/components/src/anon-layout/anon-layout-wrapper.component.ts | 1 +
 2 files changed, 2 insertions(+)

diff --git a/apps/browser/src/popup/components/extension-anon-layout-wrapper/extension-anon-layout-wrapper.component.ts b/apps/browser/src/popup/components/extension-anon-layout-wrapper/extension-anon-layout-wrapper.component.ts
index f28de2ce3dd..7a98f570fda 100644
--- a/apps/browser/src/popup/components/extension-anon-layout-wrapper/extension-anon-layout-wrapper.component.ts
+++ b/apps/browser/src/popup/components/extension-anon-layout-wrapper/extension-anon-layout-wrapper.component.ts
@@ -223,6 +223,7 @@ export class ExtensionAnonLayoutWrapperComponent implements OnInit, OnDestroy {
     this.showLogo = null;
     this.maxWidth = null;
     this.hideFooter = null;
+    this.hideIcon = null;
     this.hideCardWrapper = null;
   }
 
diff --git a/libs/components/src/anon-layout/anon-layout-wrapper.component.ts b/libs/components/src/anon-layout/anon-layout-wrapper.component.ts
index ac192645ee6..a55e66845f6 100644
--- a/libs/components/src/anon-layout/anon-layout-wrapper.component.ts
+++ b/libs/components/src/anon-layout/anon-layout-wrapper.component.ts
@@ -178,6 +178,7 @@ export class AnonLayoutWrapperComponent implements OnInit, OnDestroy {
     this.showReadonlyHostname = null;
     this.maxWidth = null;
     this.hideCardWrapper = null;
+    this.hideIcon = null;
   }
 
   ngOnDestroy() {

From 1315e7c37c121b9570fc83dcfd9e11a2d89299a0 Mon Sep 17 00:00:00 2001
From: Ike <137194738+ike-kottlowski@users.noreply.github.com>
Date: Mon, 14 Jul 2025 18:04:22 -0400
Subject: [PATCH 132/239] [PM-10329] Add auth request api call to desktop
 component v2 (#15535)

* fix:
  - add auth request api call to desktop component v2
  - move logic to auth request service
* test: added tests for new auth request service method
---
 .../src/vault/app/vault/vault-v2.component.ts | 30 +++++-
 .../auth-request.service.abstraction.ts       |  6 ++
 .../auth-request/auth-request.service.spec.ts | 98 +++++++++++++++++++
 .../auth-request/auth-request.service.ts      | 15 +++
 4 files changed, 144 insertions(+), 5 deletions(-)

diff --git a/apps/desktop/src/vault/app/vault/vault-v2.component.ts b/apps/desktop/src/vault/app/vault/vault-v2.component.ts
index 2142b5e7a4b..6eb6b737899 100644
--- a/apps/desktop/src/vault/app/vault/vault-v2.component.ts
+++ b/apps/desktop/src/vault/app/vault/vault-v2.component.ts
@@ -15,6 +15,7 @@ import { filter, map, take } from "rxjs/operators";
 import { CollectionService, CollectionView } from "@bitwarden/admin-console/common";
 import { VaultViewPasswordHistoryService } from "@bitwarden/angular/services/view-password-history.service";
 import { VaultFilter } from "@bitwarden/angular/vault/vault-filter/models/vault-filter.model";
+import { AuthRequestServiceAbstraction } from "@bitwarden/auth/common";
 import { ApiService } from "@bitwarden/common/abstractions/api.service";
 import { EventCollectionService } from "@bitwarden/common/abstractions/event/event-collection.service";
 import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
@@ -23,7 +24,9 @@ import { Account, AccountService } from "@bitwarden/common/auth/abstractions/acc
 import { getUserId } from "@bitwarden/common/auth/services/account.service";
 import { BillingAccountProfileStateService } from "@bitwarden/common/billing/abstractions/account/billing-account-profile-state.service";
 import { EventType } from "@bitwarden/common/enums";
+import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
 import { BroadcasterService } from "@bitwarden/common/platform/abstractions/broadcaster.service";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
@@ -194,6 +197,8 @@ export class VaultV2Component implements OnInit, OnDestroy, CopyClickListener {
     private collectionService: CollectionService,
     private organizationService: OrganizationService,
     private folderService: FolderService,
+    private configService: ConfigService,
+    private authRequestService: AuthRequestServiceAbstraction,
   ) {}
 
   async ngOnInit() {
@@ -303,11 +308,26 @@ export class VaultV2Component implements OnInit, OnDestroy, CopyClickListener {
     this.searchBarService.setEnabled(true);
     this.searchBarService.setPlaceholderText(this.i18nService.t("searchVault"));
 
-    const authRequest = await this.apiService.getLastAuthRequest().catch(() => null);
-    if (authRequest != null) {
-      this.messagingService.send("openLoginApproval", {
-        notificationId: authRequest.id,
-      });
+    if (
+      (await firstValueFrom(
+        this.configService.getFeatureFlag$(FeatureFlag.PM14938_BrowserExtensionLoginApproval),
+      )) === true
+    ) {
+      const authRequests = await firstValueFrom(
+        this.authRequestService.getLatestPendingAuthRequest$(),
+      );
+      if (authRequests != null) {
+        this.messagingService.send("openLoginApproval", {
+          notificationId: authRequests.id,
+        });
+      }
+    } else {
+      const authRequest = await this.apiService.getLastAuthRequest();
+      if (authRequest != null) {
+        this.messagingService.send("openLoginApproval", {
+          notificationId: authRequest.id,
+        });
+      }
     }
 
     this.activeUserId = await firstValueFrom(
diff --git a/libs/auth/src/common/abstractions/auth-request.service.abstraction.ts b/libs/auth/src/common/abstractions/auth-request.service.abstraction.ts
index 956fd771039..7e480c3a69c 100644
--- a/libs/auth/src/common/abstractions/auth-request.service.abstraction.ts
+++ b/libs/auth/src/common/abstractions/auth-request.service.abstraction.ts
@@ -47,6 +47,12 @@ export abstract class AuthRequestServiceAbstraction {
    * The array will be empty if there are no pending auth requests.
    */
   abstract getPendingAuthRequests$(): Observable<Array<AuthRequestResponse>>;
+  /**
+   * Get the most recent AuthRequest for the logged in user
+   * @returns An observable of an auth request. If there are no auth requests
+   * the result will be null.
+   */
+  abstract getLatestPendingAuthRequest$(): Observable<AuthRequestResponse> | null;
   /**
    * Approve or deny an auth request.
    * @param approve True to approve, false to deny.
diff --git a/libs/auth/src/common/services/auth-request/auth-request.service.spec.ts b/libs/auth/src/common/services/auth-request/auth-request.service.spec.ts
index ab09e17f11f..6f4e3512a6a 100644
--- a/libs/auth/src/common/services/auth-request/auth-request.service.spec.ts
+++ b/libs/auth/src/common/services/auth-request/auth-request.service.spec.ts
@@ -1,9 +1,11 @@
 import { mock } from "jest-mock-extended";
+import { firstValueFrom } from "rxjs";
 
 import { ApiService } from "@bitwarden/common/abstractions/api.service";
 import { AuthRequestResponse } from "@bitwarden/common/auth/models/response/auth-request.response";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
 import { FakeMasterPasswordService } from "@bitwarden/common/key-management/master-password/services/fake-master-password.service";
+import { ListResponse } from "@bitwarden/common/models/response/list.response";
 import { AuthRequestPushNotification } from "@bitwarden/common/models/response/notification.response";
 import { AppIdService } from "@bitwarden/common/platform/abstractions/app-id.service";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
@@ -120,6 +122,7 @@ describe("AuthRequestService", () => {
       );
     });
   });
+
   describe("setUserKeyAfterDecryptingSharedUserKey", () => {
     it("decrypts and sets user key when given valid auth request response and private key", async () => {
       // Arrange
@@ -237,4 +240,99 @@ describe("AuthRequestService", () => {
       expect(phrase).toEqual(phraseUpperCase);
     });
   });
+
+  describe("getLatestAuthRequest", () => {
+    it("returns newest authRequest from list of authRequests", async () => {
+      const now = minutesAgo(0);
+      const fiveMinutesAgo = minutesAgo(5);
+      const tenMinutesAgo = minutesAgo(10);
+
+      const newerAuthRequest = createMockAuthRequest(
+        "now-request",
+        false,
+        false,
+        now.toISOString(), // newer request
+        "1fda13f4-5134-4157-90e3-b4e3fb2d855z",
+      );
+      const olderAuthRequest = createMockAuthRequest(
+        "5-minute-old-request",
+        false,
+        false,
+        fiveMinutesAgo.toISOString(), // older request
+        "1fda13f4-5134-4157-90e3-b4e3fb2d855c",
+      );
+      const oldestAuthRequest = createMockAuthRequest(
+        "10-minute-old-request",
+        false,
+        false,
+        tenMinutesAgo.toISOString(), // oldest request
+        "1fda13f4-5134-4157-90e3-b4e3fb2d855a",
+      );
+
+      const listResponse = new ListResponse(
+        { Data: [oldestAuthRequest, olderAuthRequest, newerAuthRequest] },
+        AuthRequestResponse,
+      );
+
+      // Ensure the mock is properly set up to return the list response
+      authRequestApiService.getPendingAuthRequests.mockResolvedValue(listResponse);
+
+      // Act
+      const sutReturnValue = await firstValueFrom(sut.getLatestPendingAuthRequest$());
+
+      // Assert
+      // Verify the mock was called
+      expect(authRequestApiService.getPendingAuthRequests).toHaveBeenCalledTimes(1);
+      expect(sutReturnValue.creationDate).toEqual(newerAuthRequest.creationDate);
+      expect(sutReturnValue.id).toEqual(newerAuthRequest.id);
+    });
+  });
+
+  it("returns null from empty list of authRequests", async () => {
+    const listResponse = new ListResponse({ Data: [] }, AuthRequestResponse);
+
+    // Ensure the mock is properly set up to return the list response
+    authRequestApiService.getPendingAuthRequests.mockResolvedValue(listResponse);
+
+    // Act
+    const sutReturnValue = await firstValueFrom(sut.getLatestPendingAuthRequest$());
+
+    // Assert
+    // Verify the mock was called
+    expect(authRequestApiService.getPendingAuthRequests).toHaveBeenCalledTimes(1);
+    expect(sutReturnValue).toBeNull();
+  });
 });
+
+function createMockAuthRequest(
+  id: string,
+  isAnswered: boolean,
+  isExpired: boolean,
+  creationDate: string,
+  deviceId?: string,
+): AuthRequestResponse {
+  const authRequestResponse = new AuthRequestResponse({
+    id: id,
+    publicKey:
+      "MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+AIKUBDf4exqE9JDzGJegDzIoaZcNkUeewovgwSJuKuya0mP4CPP00ajmi9GEu6z3VWfB+yzx1O4gxHV/T5s620wnMYm6nAv2gDS+kEaXou4MOt7QMidq4kVhM7aixN2klKivH/E8GFPiMUzNQv0lMQthsVLLWFuMRxYfChe9Cxn9EWp7TYy4rAmi+jSTxzIGj+RC7f2qu2qdPSsKHLXtW7NA0SWhIntWbmc9QxD2nQ4qHgk/qUwvHoUhwKGNCcIDkXqMJ7ChN3v5tX1sFpwhQQrmlwiVC4+sBScfAgyYylfTPnuBd6b3UrC3D34GvHMgDvLjz7LwlBrkSXoF7xWZwIDAQAB",
+    requestDeviceIdentifier: "1fda13f4-5134-4157-90e3-b4e3fb2d855c",
+    requestDeviceTypeValue: 10,
+    requestDeviceType: "Firefox",
+    requestIpAddress: "2a04:4e40:9400:0:bb4:3591:d601:f5cc",
+    requestCountryName: "united states",
+    key: null,
+    masterPasswordHash: null,
+    creationDate: creationDate, // ISO 8601 date string : "2025-07-11T19:11:17.9866667Z"
+    responseDate: null,
+    requestApproved: false,
+    isAnswered: isAnswered,
+    isExpired: isExpired,
+    deviceId: deviceId,
+  });
+
+  return authRequestResponse;
+}
+
+function minutesAgo(minutes: number): Date {
+  return new Date(Date.now() - minutes * 60_000);
+}
diff --git a/libs/auth/src/common/services/auth-request/auth-request.service.ts b/libs/auth/src/common/services/auth-request/auth-request.service.ts
index 93a6ba12ffb..70d505ed6ff 100644
--- a/libs/auth/src/common/services/auth-request/auth-request.service.ts
+++ b/libs/auth/src/common/services/auth-request/auth-request.service.ts
@@ -105,6 +105,21 @@ export class AuthRequestService implements AuthRequestServiceAbstraction {
     );
   }
 
+  getLatestPendingAuthRequest$(): Observable<AuthRequestResponse | null> {
+    return this.getPendingAuthRequests$().pipe(
+      map((authRequests: Array<AuthRequestResponse>) => {
+        if (authRequests.length === 0) {
+          return null;
+        }
+        return authRequests.sort((a, b) => {
+          const dateA = new Date(a.creationDate).getTime();
+          const dateB = new Date(b.creationDate).getTime();
+          return dateB - dateA; // Sort in descending order
+        })[0];
+      }),
+    );
+  }
+
   async approveOrDenyAuthRequest(
     approve: boolean,
     authRequest: AuthRequestResponse,

From 8250e40c6c19d1b1007b8e9ed152eabdda8c1ab8 Mon Sep 17 00:00:00 2001
From: Bernd Schoolmann <mail@quexten.com>
Date: Tue, 15 Jul 2025 11:53:58 +0200
Subject: [PATCH 133/239] [PM-22271] Switch to SDK argon2 implementation, and
 drop other impls (#15401)

* Switch to SDK argon2 implementation

* Cleanup and update to the latest sdk

* Update package lock

* Remove copy patch

* Fix builds

* Fix test build

* Remove error

* Fix tests

* Fix build

* Run prettier

* Remove argon2 references

* Regenerate index.d.ts for desktop_native napi

* Replace mocked crypto function service type
---
 .github/renovate.json5                        |  12 +-
 .github/workflows/build-browser.yml           |   4 -
 apps/browser/webpack.config.js                |  12 -
 apps/cli/package.json                         |   4 +-
 apps/desktop/desktop_native/Cargo.lock        |  34 ---
 apps/desktop/desktop_native/Cargo.toml        |   1 -
 apps/desktop/desktop_native/core/Cargo.toml   |   1 -
 .../desktop_native/core/src/crypto/crypto.rs  |  52 +---
 apps/desktop/desktop_native/core/src/error.rs |   2 -
 apps/desktop/desktop_native/napi/index.d.ts   |   3 -
 apps/desktop/desktop_native/napi/src/lib.rs   |  19 --
 .../renderer-crypto-function.service.ts       |  31 --
 .../src/app/services/services.module.ts       |   4 +-
 .../main-biometrics.service.spec.ts           |   4 +-
 apps/desktop/src/main.ts                      |   9 +-
 .../main/main-crypto-function.service.ts      |  34 ---
 apps/desktop/src/platform/preload.ts          |  11 -
 apps/desktop/webpack.renderer.js              |  11 -
 apps/web/webpack.config.js                    |   6 -
 .../abstractions/crypto-function.service.ts   |   7 -
 .../services/web-crypto-function.service.ts   |  47 ---
 .../services/key-generation.service.spec.ts   |  22 +-
 .../services/key-generation.service.ts        |  45 +--
 .../services/node-crypto-function.service.ts  |  23 --
 package-lock.json                             | 269 +-----------------
 package.json                                  |   7 +-
 patches/argon2-browser+1.18.0.patch           |  67 -----
 27 files changed, 44 insertions(+), 697 deletions(-)
 delete mode 100644 apps/desktop/src/app/services/renderer-crypto-function.service.ts
 delete mode 100644 apps/desktop/src/platform/main/main-crypto-function.service.ts
 delete mode 100644 patches/argon2-browser+1.18.0.patch

diff --git a/.github/renovate.json5 b/.github/renovate.json5
index 09afb97174f..906bbbd7125 100644
--- a/.github/renovate.json5
+++ b/.github/renovate.json5
@@ -398,17 +398,7 @@
       reviewers: ["team:team-vault-dev"],
     },
     {
-      matchPackageNames: [
-        "@types/argon2-browser",
-        "aes",
-        "argon2",
-        "argon2-browser",
-        "big-integer",
-        "cbc",
-        "rsa",
-        "russh-cryptovec",
-        "sha2",
-      ],
+      matchPackageNames: ["aes", "big-integer", "cbc", "rsa", "russh-cryptovec", "sha2"],
       description: "Key Management owned dependencies",
       commitMessagePrefix: "[deps] KM:",
       reviewers: ["team:team-key-management-dev"],
diff --git a/.github/workflows/build-browser.yml b/.github/workflows/build-browser.yml
index c75298a3e92..40b03d9e753 100644
--- a/.github/workflows/build-browser.yml
+++ b/.github/workflows/build-browser.yml
@@ -163,10 +163,6 @@ jobs:
           FILES=$(find . -maxdepth 1 -type f)
           for FILE in $FILES; do cp "$FILE" browser-source/; done
 
-          # Copy patches to the Browser source directory
-          mkdir -p browser-source/patches
-          cp -r patches/* browser-source/patches
-
           # Copy apps/browser to the Browser source directory
           mkdir -p browser-source/apps/browser
           cp -r apps/browser/* browser-source/apps/browser
diff --git a/apps/browser/webpack.config.js b/apps/browser/webpack.config.js
index 4aab0beefbb..90638f4e334 100644
--- a/apps/browser/webpack.config.js
+++ b/apps/browser/webpack.config.js
@@ -92,11 +92,6 @@ const moduleRules = [
     test: /\.[jt]sx?$/,
     loader: "@ngtools/webpack",
   },
-  {
-    test: /argon2(-simd)?\.wasm$/,
-    loader: "base64-loader",
-    type: "javascript/auto",
-  },
 ];
 
 const requiredPlugins = [
@@ -290,7 +285,6 @@ const mainConfig = {
     clean: true,
   },
   module: {
-    noParse: /argon2(-simd)?\.wasm$/,
     rules: moduleRules,
   },
   experiments: {
@@ -365,13 +359,7 @@ if (manifestVersion == 2) {
           test: /\.tsx?$/,
           loader: "ts-loader",
         },
-        {
-          test: /argon2(-simd)?\.wasm$/,
-          loader: "base64-loader",
-          type: "javascript/auto",
-        },
       ],
-      noParse: /argon2(-simd)?\.wasm$/,
     },
     cache:
       ENV !== "development"
diff --git a/apps/cli/package.json b/apps/cli/package.json
index 27f3585bff7..ca7af3ec596 100644
--- a/apps/cli/package.json
+++ b/apps/cli/package.json
@@ -59,14 +59,12 @@
   },
   "pkg": {
     "assets": [
-      "./build/**/*",
-      "../../node_modules/argon2/**/*"
+      "./build/**/*"
     ]
   },
   "dependencies": {
     "@koa/multer": "4.0.0",
     "@koa/router": "13.1.0",
-    "argon2": "0.41.1",
     "big-integer": "1.6.52",
     "browser-hrtime": "1.1.8",
     "chalk": "4.1.2",
diff --git a/apps/desktop/desktop_native/Cargo.lock b/apps/desktop/desktop_native/Cargo.lock
index 9d0fe633013..4c514016675 100644
--- a/apps/desktop/desktop_native/Cargo.lock
+++ b/apps/desktop/desktop_native/Cargo.lock
@@ -135,19 +135,6 @@ dependencies = [
  "x11rb",
 ]
 
-[[package]]
-name = "argon2"
-version = "0.5.3"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "3c3610892ee6e0cbce8ae2700349fcf8f98adb0dbfbee85aec3c9179d29cc072"
-dependencies = [
- "base64ct",
- "blake2",
- "cpufeatures",
- "password-hash",
- "zeroize",
-]
-
 [[package]]
 name = "ashpd"
 version = "0.11.0"
@@ -452,15 +439,6 @@ dependencies = [
  "tokio-util",
 ]
 
-[[package]]
-name = "blake2"
-version = "0.10.6"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "46502ad458c9a52b69d4d4d32775c788b7a1b85e8bc9d482d92250fc0e3f8efe"
-dependencies = [
- "digest",
-]
-
 [[package]]
 name = "block-buffer"
 version = "0.10.4"
@@ -887,7 +865,6 @@ dependencies = [
  "aes",
  "anyhow",
  "arboard",
- "argon2",
  "ashpd",
  "base64",
  "bitwarden-russh",
@@ -2264,17 +2241,6 @@ dependencies = [
  "windows-targets 0.52.6",
 ]
 
-[[package]]
-name = "password-hash"
-version = "0.5.0"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "346f04948ba92c43e8469c1ee6736c7563d71012b17d40745260fe106aac2166"
-dependencies = [
- "base64ct",
- "rand_core 0.6.4",
- "subtle",
-]
-
 [[package]]
 name = "paste"
 version = "1.0.15"
diff --git a/apps/desktop/desktop_native/Cargo.toml b/apps/desktop/desktop_native/Cargo.toml
index a778c9ed359..8e12dded52c 100644
--- a/apps/desktop/desktop_native/Cargo.toml
+++ b/apps/desktop/desktop_native/Cargo.toml
@@ -12,7 +12,6 @@ publish = false
 aes = "=0.8.4"
 anyhow = "=1.0.94"
 arboard = { version = "=3.6.0", default-features = false }
-argon2 = "=0.5.3"
 ashpd = "=0.11.0"
 base64 = "=0.22.1"
 bindgen = "=0.72.0"
diff --git a/apps/desktop/desktop_native/core/Cargo.toml b/apps/desktop/desktop_native/core/Cargo.toml
index 7cd67dbad6a..50c07b56600 100644
--- a/apps/desktop/desktop_native/core/Cargo.toml
+++ b/apps/desktop/desktop_native/core/Cargo.toml
@@ -23,7 +23,6 @@ anyhow = { workspace = true }
 arboard = { workspace = true, features = [
     "wayland-data-control",
 ] }
-argon2 = { workspace = true, features = ["zeroize"] }
 base64 = { workspace = true }
 byteorder = { workspace = true }
 cbc = { workspace = true, features = ["alloc"] }
diff --git a/apps/desktop/desktop_native/core/src/crypto/crypto.rs b/apps/desktop/desktop_native/core/src/crypto/crypto.rs
index a254d34c434..d9e2aec3046 100644
--- a/apps/desktop/desktop_native/core/src/crypto/crypto.rs
+++ b/apps/desktop/desktop_native/core/src/crypto/crypto.rs
@@ -5,7 +5,7 @@ use aes::cipher::{
     BlockEncryptMut, KeyIvInit,
 };
 
-use crate::error::{CryptoError, KdfParamError, Result};
+use crate::error::{CryptoError, Result};
 
 use super::CipherString;
 
@@ -33,53 +33,3 @@ pub fn encrypt_aes256(
 
     Ok(CipherString::AesCbc256_B64 { iv, data })
 }
-
-pub fn argon2(
-    secret: &[u8],
-    salt: &[u8],
-    iterations: u32,
-    memory: u32,
-    parallelism: u32,
-) -> Result<[u8; 32]> {
-    use argon2::*;
-
-    let params = Params::new(memory, iterations, parallelism, Some(32)).map_err(|e| {
-        KdfParamError::InvalidParams(format!("Argon2 parameters are invalid: {e}",))
-    })?;
-    let argon = Argon2::new(Algorithm::Argon2id, Version::V0x13, params);
-
-    let mut hash = [0u8; 32];
-    argon
-        .hash_password_into(secret, salt, &mut hash)
-        .map_err(|e| KdfParamError::InvalidParams(format!("Argon2 hashing failed: {e}",)))?;
-
-    // Argon2 is using some stack memory that is not zeroed. Eventually some function will
-    // overwrite the stack, but we use this trick to force the used stack to be zeroed.
-    #[inline(never)]
-    fn clear_stack() {
-        std::hint::black_box([0u8; 4096]);
-    }
-    clear_stack();
-    Ok(hash)
-}
-
-#[cfg(test)]
-mod tests {
-    use super::*;
-
-    #[test]
-    fn test_argon2() {
-        let test_hash: [u8; 32] = [
-            112, 200, 85, 209, 100, 4, 246, 146, 117, 180, 152, 44, 103, 198, 75, 14, 166, 77, 201,
-            22, 62, 178, 87, 224, 95, 209, 253, 68, 166, 209, 47, 218,
-        ];
-        let secret = b"supersecurepassword";
-        let salt = b"mail@example.com";
-        let iterations = 3;
-        let memory = 1024 * 64;
-        let parallelism = 4;
-
-        let hash = argon2(secret, salt, iterations, memory, parallelism).unwrap();
-        assert_eq!(hash, test_hash,);
-    }
-}
diff --git a/apps/desktop/desktop_native/core/src/error.rs b/apps/desktop/desktop_native/core/src/error.rs
index 34624ed630e..d70d8624018 100644
--- a/apps/desktop/desktop_native/core/src/error.rs
+++ b/apps/desktop/desktop_native/core/src/error.rs
@@ -9,8 +9,6 @@ pub enum Error {
 
     #[error("Cryptography Error, {0}")]
     Crypto(#[from] CryptoError),
-    #[error("KDF Parameter Error, {0}")]
-    KdfParam(#[from] KdfParamError),
 }
 
 #[derive(Debug, Error)]
diff --git a/apps/desktop/desktop_native/napi/index.d.ts b/apps/desktop/desktop_native/napi/index.d.ts
index cb9430290e3..6ee460a8065 100644
--- a/apps/desktop/desktop_native/napi/index.d.ts
+++ b/apps/desktop/desktop_native/napi/index.d.ts
@@ -195,9 +195,6 @@ export declare namespace autofill {
     completeError(clientId: number, sequenceNumber: number, error: string): number
   }
 }
-export declare namespace crypto {
-  export function argon2(secret: Buffer, salt: Buffer, iterations: number, memory: number, parallelism: number): Promise<Buffer>
-}
 export declare namespace passkey_authenticator {
   export function register(): void
 }
diff --git a/apps/desktop/desktop_native/napi/src/lib.rs b/apps/desktop/desktop_native/napi/src/lib.rs
index 49f653d4809..784bfb72086 100644
--- a/apps/desktop/desktop_native/napi/src/lib.rs
+++ b/apps/desktop/desktop_native/napi/src/lib.rs
@@ -798,25 +798,6 @@ pub mod autofill {
     }
 }
 
-#[napi]
-pub mod crypto {
-    use napi::bindgen_prelude::Buffer;
-
-    #[napi]
-    pub async fn argon2(
-        secret: Buffer,
-        salt: Buffer,
-        iterations: u32,
-        memory: u32,
-        parallelism: u32,
-    ) -> napi::Result<Buffer> {
-        desktop_core::crypto::argon2(&secret, &salt, iterations, memory, parallelism)
-            .map_err(|e| napi::Error::from_reason(e.to_string()))
-            .map(|v| v.to_vec())
-            .map(Buffer::from)
-    }
-}
-
 #[napi]
 pub mod passkey_authenticator {
     #[napi]
diff --git a/apps/desktop/src/app/services/renderer-crypto-function.service.ts b/apps/desktop/src/app/services/renderer-crypto-function.service.ts
deleted file mode 100644
index 8f109e0613f..00000000000
--- a/apps/desktop/src/app/services/renderer-crypto-function.service.ts
+++ /dev/null
@@ -1,31 +0,0 @@
-import { CryptoFunctionService } from "@bitwarden/common/key-management/crypto/abstractions/crypto-function.service";
-import { WebCryptoFunctionService } from "@bitwarden/common/key-management/crypto/services/web-crypto-function.service";
-
-export class RendererCryptoFunctionService
-  extends WebCryptoFunctionService
-  implements CryptoFunctionService
-{
-  constructor(win: Window | typeof global) {
-    super(win);
-  }
-
-  // We can't use the `argon2-browser` implementation because it loads WASM and the Content Security Policy doesn't allow it.
-  // Rather than trying to weaken the policy, we'll just use the Node.js implementation though the IPC channel.
-  // Note that the rest of the functions on this service will be inherited from the WebCryptoFunctionService, as those work just fine.
-  async argon2(
-    password: string | Uint8Array,
-    salt: string | Uint8Array,
-    iterations: number,
-    memory: number,
-    parallelism: number,
-  ): Promise<Uint8Array> {
-    if (typeof password === "string") {
-      password = new TextEncoder().encode(password);
-    }
-    if (typeof salt === "string") {
-      salt = new TextEncoder().encode(salt);
-    }
-
-    return await ipc.platform.crypto.argon2(password, salt, iterations, memory, parallelism);
-  }
-}
diff --git a/apps/desktop/src/app/services/services.module.ts b/apps/desktop/src/app/services/services.module.ts
index 4111a62d3b2..a69a9d7f41b 100644
--- a/apps/desktop/src/app/services/services.module.ts
+++ b/apps/desktop/src/app/services/services.module.ts
@@ -55,6 +55,7 @@ import { ClientType } from "@bitwarden/common/enums";
 import { ProcessReloadServiceAbstraction } from "@bitwarden/common/key-management/abstractions/process-reload.service";
 import { CryptoFunctionService as CryptoFunctionServiceAbstraction } from "@bitwarden/common/key-management/crypto/abstractions/crypto-function.service";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import { WebCryptoFunctionService } from "@bitwarden/common/key-management/crypto/services/web-crypto-function.service";
 import { InternalMasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
 import { DefaultProcessReloadService } from "@bitwarden/common/key-management/services/default-process-reload.service";
 import {
@@ -140,7 +141,6 @@ import { DesktopFileDownloadService } from "./desktop-file-download.service";
 import { DesktopSetPasswordJitService } from "./desktop-set-password-jit.service";
 import { InitService } from "./init.service";
 import { NativeMessagingManifestService } from "./native-messaging-manifest.service";
-import { RendererCryptoFunctionService } from "./renderer-crypto-function.service";
 import { DesktopSetInitialPasswordService } from "./set-initial-password/desktop-set-initial-password.service";
 
 const RELOAD_CALLBACK = new SafeInjectionToken<() => any>("RELOAD_CALLBACK");
@@ -296,7 +296,7 @@ const safeProviders: SafeProvider[] = [
   }),
   safeProvider({
     provide: CryptoFunctionServiceAbstraction,
-    useClass: RendererCryptoFunctionService,
+    useClass: WebCryptoFunctionService,
     deps: [WINDOW],
   }),
   safeProvider({
diff --git a/apps/desktop/src/key-management/biometrics/main-biometrics.service.spec.ts b/apps/desktop/src/key-management/biometrics/main-biometrics.service.spec.ts
index 213f3d48a98..bc57a7e55fb 100644
--- a/apps/desktop/src/key-management/biometrics/main-biometrics.service.spec.ts
+++ b/apps/desktop/src/key-management/biometrics/main-biometrics.service.spec.ts
@@ -1,5 +1,6 @@
 import { mock, MockProxy } from "jest-mock-extended";
 
+import { CryptoFunctionService } from "@bitwarden/common/key-management/crypto/abstractions/crypto-function.service";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
@@ -13,7 +14,6 @@ import {
 } from "@bitwarden/key-management";
 
 import { WindowMain } from "../../main/window.main";
-import { MainCryptoFunctionService } from "../../platform/main/main-crypto-function.service";
 
 import { MainBiometricsService } from "./main-biometrics.service";
 import OsBiometricsServiceLinux from "./os-biometrics-linux.service";
@@ -35,7 +35,7 @@ describe("MainBiometricsService", function () {
   const windowMain = mock<WindowMain>();
   const logService = mock<LogService>();
   const biometricStateService = mock<BiometricStateService>();
-  const cryptoFunctionService = mock<MainCryptoFunctionService>();
+  const cryptoFunctionService = mock<CryptoFunctionService>();
   const encryptService = mock<EncryptService>();
 
   it("Should call the platformspecific methods", async () => {
diff --git a/apps/desktop/src/main.ts b/apps/desktop/src/main.ts
index 4821b018148..d91d37c9689 100644
--- a/apps/desktop/src/main.ts
+++ b/apps/desktop/src/main.ts
@@ -28,8 +28,9 @@ import { DefaultSingleUserStateProvider } from "@bitwarden/common/platform/state
 import { DefaultStateProvider } from "@bitwarden/common/platform/state/implementations/default-state.provider";
 import { StateEventRegistrarService } from "@bitwarden/common/platform/state/state-event-registrar.service";
 import { MemoryStorageService as MemoryStorageServiceForStateProviders } from "@bitwarden/common/platform/state/storage/memory-storage.service";
-import { DefaultBiometricStateService } from "@bitwarden/key-management";
 /* eslint-enable import/no-restricted-paths */
+import { DefaultBiometricStateService } from "@bitwarden/key-management";
+import { NodeCryptoFunctionService } from "@bitwarden/node/services/node-crypto-function.service";
 
 import { MainSshAgentService } from "./autofill/main/main-ssh-agent.service";
 import { DesktopAutofillSettingsService } from "./autofill/services/desktop-autofill-settings.service";
@@ -46,7 +47,6 @@ import { WindowMain } from "./main/window.main";
 import { NativeAutofillMain } from "./platform/main/autofill/native-autofill.main";
 import { ClipboardMain } from "./platform/main/clipboard.main";
 import { DesktopCredentialStorageListener } from "./platform/main/desktop-credential-storage-listener";
-import { MainCryptoFunctionService } from "./platform/main/main-crypto-function.service";
 import { VersionMain } from "./platform/main/version.main";
 import { DesktopSettingsService } from "./platform/services/desktop-settings.service";
 import { ElectronLogMainService } from "./platform/services/electron-log.main.service";
@@ -68,7 +68,7 @@ export class Main {
   desktopCredentialStorageListener: DesktopCredentialStorageListener;
   mainBiometricsIpcListener: MainBiometricsIPCListener;
   desktopSettingsService: DesktopSettingsService;
-  mainCryptoFunctionService: MainCryptoFunctionService;
+  mainCryptoFunctionService: NodeCryptoFunctionService;
   migrationRunner: MigrationRunner;
   ssoUrlService: SsoUrlService;
 
@@ -140,8 +140,7 @@ export class Main {
 
     this.i18nService = new I18nMainService("en", "./locales/", globalStateProvider);
 
-    this.mainCryptoFunctionService = new MainCryptoFunctionService();
-    this.mainCryptoFunctionService.init();
+    this.mainCryptoFunctionService = new NodeCryptoFunctionService();
 
     const stateEventRegistrarService = new StateEventRegistrarService(
       globalStateProvider,
diff --git a/apps/desktop/src/platform/main/main-crypto-function.service.ts b/apps/desktop/src/platform/main/main-crypto-function.service.ts
deleted file mode 100644
index 0751f6b3a85..00000000000
--- a/apps/desktop/src/platform/main/main-crypto-function.service.ts
+++ /dev/null
@@ -1,34 +0,0 @@
-import { ipcMain } from "electron";
-
-import { CryptoFunctionService } from "@bitwarden/common/key-management/crypto/abstractions/crypto-function.service";
-import { crypto } from "@bitwarden/desktop-napi";
-import { NodeCryptoFunctionService } from "@bitwarden/node/services/node-crypto-function.service";
-
-export class MainCryptoFunctionService
-  extends NodeCryptoFunctionService
-  implements CryptoFunctionService
-{
-  init() {
-    ipcMain.handle(
-      "crypto.argon2",
-      async (
-        event,
-        opts: {
-          password: Uint8Array;
-          salt: Uint8Array;
-          iterations: number;
-          memory: number;
-          parallelism: number;
-        },
-      ) => {
-        return await crypto.argon2(
-          Buffer.from(opts.password),
-          Buffer.from(opts.salt),
-          opts.iterations,
-          opts.memory,
-          opts.parallelism,
-        );
-      },
-    );
-  }
-}
diff --git a/apps/desktop/src/platform/preload.ts b/apps/desktop/src/platform/preload.ts
index bf81021922f..0487675c792 100644
--- a/apps/desktop/src/platform/preload.ts
+++ b/apps/desktop/src/platform/preload.ts
@@ -98,17 +98,6 @@ const nativeMessaging = {
   },
 };
 
-const crypto = {
-  argon2: (
-    password: Uint8Array,
-    salt: Uint8Array,
-    iterations: number,
-    memory: number,
-    parallelism: number,
-  ): Promise<Uint8Array> =>
-    ipcRenderer.invoke("crypto.argon2", { password, salt, iterations, memory, parallelism }),
-};
-
 const ephemeralStore = {
   setEphemeralValue: (key: string, value: string): Promise<void> =>
     ipcRenderer.invoke("setEphemeralValue", { key, value }),
diff --git a/apps/desktop/webpack.renderer.js b/apps/desktop/webpack.renderer.js
index 7c80c719aca..555e1ed38bd 100644
--- a/apps/desktop/webpack.renderer.js
+++ b/apps/desktop/webpack.renderer.js
@@ -41,11 +41,6 @@ const common = {
         },
         type: "asset/resource",
       },
-      {
-        test: /argon2(-simd)?\.wasm$/,
-        loader: "base64-loader",
-        type: "javascript/auto",
-      },
     ],
   },
   plugins: [],
@@ -154,13 +149,7 @@ const renderer = {
         test: /[\/\\]@angular[\/\\].+\.js$/,
         parser: { system: true },
       },
-      {
-        test: /argon2(-simd)?\.wasm$/,
-        loader: "base64-loader",
-        type: "javascript/auto",
-      },
     ],
-    noParse: /argon2(-simd)?\.wasm$/,
   },
   experiments: {
     asyncWebAssembly: true,
diff --git a/apps/web/webpack.config.js b/apps/web/webpack.config.js
index a28052b98e3..77403914e9a 100644
--- a/apps/web/webpack.config.js
+++ b/apps/web/webpack.config.js
@@ -90,11 +90,6 @@ const moduleRules = [
     test: /\.[jt]sx?$/,
     loader: "@ngtools/webpack",
   },
-  {
-    test: /argon2(-simd)?\.wasm$/,
-    loader: "base64-loader",
-    type: "javascript/auto",
-  },
 ];
 
 const plugins = [
@@ -404,7 +399,6 @@ const webpackConfig = {
     clean: true,
   },
   module: {
-    noParse: /argon2(-simd)?\.wasm$/,
     rules: moduleRules,
   },
   experiments: {
diff --git a/libs/common/src/key-management/crypto/abstractions/crypto-function.service.ts b/libs/common/src/key-management/crypto/abstractions/crypto-function.service.ts
index 4b89dde7021..d9541481083 100644
--- a/libs/common/src/key-management/crypto/abstractions/crypto-function.service.ts
+++ b/libs/common/src/key-management/crypto/abstractions/crypto-function.service.ts
@@ -12,13 +12,6 @@ export abstract class CryptoFunctionService {
     algorithm: "sha256" | "sha512",
     iterations: number,
   ): Promise<Uint8Array>;
-  abstract argon2(
-    password: string | Uint8Array,
-    salt: string | Uint8Array,
-    iterations: number,
-    memory: number,
-    parallelism: number,
-  ): Promise<Uint8Array>;
   abstract hkdf(
     ikm: Uint8Array,
     salt: string | Uint8Array,
diff --git a/libs/common/src/key-management/crypto/services/web-crypto-function.service.ts b/libs/common/src/key-management/crypto/services/web-crypto-function.service.ts
index 430774ca2ed..32cbd58dde2 100644
--- a/libs/common/src/key-management/crypto/services/web-crypto-function.service.ts
+++ b/libs/common/src/key-management/crypto/services/web-crypto-function.service.ts
@@ -1,4 +1,3 @@
-import * as argon2 from "argon2-browser";
 import * as forge from "node-forge";
 
 import { EncryptionType } from "../../../platform/enums";
@@ -14,7 +13,6 @@ import { CryptoFunctionService } from "../abstractions/crypto-function.service";
 export class WebCryptoFunctionService implements CryptoFunctionService {
   private crypto: Crypto;
   private subtle: SubtleCrypto;
-  private wasmSupported: boolean;
 
   constructor(globalContext: { crypto: Crypto }) {
     if (globalContext?.crypto?.subtle == null) {
@@ -24,7 +22,6 @@ export class WebCryptoFunctionService implements CryptoFunctionService {
     }
     this.crypto = globalContext.crypto;
     this.subtle = this.crypto.subtle;
-    this.wasmSupported = this.checkIfWasmSupported();
   }
 
   async pbkdf2(
@@ -55,33 +52,6 @@ export class WebCryptoFunctionService implements CryptoFunctionService {
     return new Uint8Array(buffer);
   }
 
-  async argon2(
-    password: string | Uint8Array,
-    salt: string | Uint8Array,
-    iterations: number,
-    memory: number,
-    parallelism: number,
-  ): Promise<Uint8Array> {
-    if (!this.wasmSupported) {
-      throw "Webassembly support is required for the Argon2 KDF feature.";
-    }
-
-    const passwordArr = new Uint8Array(this.toBuf(password));
-    const saltArr = new Uint8Array(this.toBuf(salt));
-
-    const result = await argon2.hash({
-      pass: passwordArr,
-      salt: saltArr,
-      time: iterations,
-      mem: memory,
-      parallelism: parallelism,
-      hashLen: 32,
-      type: argon2.ArgonType.Argon2id,
-    });
-    argon2.unloadRuntime();
-    return result.hash;
-  }
-
   async hkdf(
     ikm: Uint8Array,
     salt: string | Uint8Array,
@@ -442,21 +412,4 @@ export class WebCryptoFunctionService implements CryptoFunctionService {
   private toWebCryptoAesMode(mode: "cbc" | "ecb"): string {
     return mode === "cbc" ? "AES-CBC" : "AES-ECB";
   }
-
-  // ref: https://stackoverflow.com/a/47880734/1090359
-  private checkIfWasmSupported(): boolean {
-    try {
-      if (typeof WebAssembly === "object" && typeof WebAssembly.instantiate === "function") {
-        const module = new WebAssembly.Module(
-          Uint8Array.of(0x0, 0x61, 0x73, 0x6d, 0x01, 0x00, 0x00, 0x00),
-        );
-        if (module instanceof WebAssembly.Module) {
-          return new WebAssembly.Instance(module) instanceof WebAssembly.Instance;
-        }
-      }
-    } catch {
-      return false;
-    }
-    return false;
-  }
 }
diff --git a/libs/common/src/platform/services/key-generation.service.spec.ts b/libs/common/src/platform/services/key-generation.service.spec.ts
index 4fdad48e0fa..fb6c0a459b3 100644
--- a/libs/common/src/platform/services/key-generation.service.spec.ts
+++ b/libs/common/src/platform/services/key-generation.service.spec.ts
@@ -6,6 +6,7 @@ import { PBKDF2KdfConfig, Argon2KdfConfig } from "@bitwarden/key-management";
 
 import { CryptoFunctionService } from "../../key-management/crypto/abstractions/crypto-function.service";
 import { CsprngArray } from "../../types/csprng";
+import { SdkLoadService } from "../abstractions/sdk/sdk-load.service";
 import { EncryptionType } from "../enums";
 import { SymmetricCryptoKey } from "../models/domain/symmetric-crypto-key";
 
@@ -77,27 +78,30 @@ describe("KeyGenerationService", () => {
 
   describe("deriveKeyFromPassword", () => {
     it("should derive a 32 byte key from a password using pbkdf2", async () => {
-      const password = "password";
-      const salt = "salt";
+      const password = new Uint8Array([1, 2, 3, 4, 5, 6, 7, 8]);
+      const salt = new Uint8Array([9, 10, 11, 12]);
       const kdfConfig = new PBKDF2KdfConfig(600_000);
 
-      cryptoFunctionService.pbkdf2.mockResolvedValue(new Uint8Array(32));
+      Object.defineProperty(SdkLoadService, "Ready", {
+        value: Promise.resolve(),
+        configurable: true,
+      });
 
       const key = await sut.deriveKeyFromPassword(password, salt, kdfConfig);
-
       expect(key.inner().type).toEqual(EncryptionType.AesCbc256_B64);
     });
 
     it("should derive a 32 byte key from a password using argon2id", async () => {
-      const password = "password";
-      const salt = "salt";
+      const password = new Uint8Array([1, 2, 3, 4, 5, 6, 7, 8]);
+      const salt = new Uint8Array([9, 10, 11, 12]);
       const kdfConfig = new Argon2KdfConfig(3, 16, 4);
 
-      cryptoFunctionService.hash.mockResolvedValue(new Uint8Array(32));
-      cryptoFunctionService.argon2.mockResolvedValue(new Uint8Array(32));
+      Object.defineProperty(SdkLoadService, "Ready", {
+        value: Promise.resolve(),
+        configurable: true,
+      });
 
       const key = await sut.deriveKeyFromPassword(password, salt, kdfConfig);
-
       expect(key.inner().type).toEqual(EncryptionType.AesCbc256_B64);
     });
   });
diff --git a/libs/common/src/platform/services/key-generation.service.ts b/libs/common/src/platform/services/key-generation.service.ts
index 49f99eb79a9..d25be087b06 100644
--- a/libs/common/src/platform/services/key-generation.service.ts
+++ b/libs/common/src/platform/services/key-generation.service.ts
@@ -2,11 +2,13 @@
 // @ts-strict-ignore
 // This import has been flagged as unallowed for this class. It may be involved in a circular dependency loop.
 // eslint-disable-next-line no-restricted-imports
-import { KdfConfig, PBKDF2KdfConfig, Argon2KdfConfig, KdfType } from "@bitwarden/key-management";
+import { KdfConfig } from "@bitwarden/key-management";
+import { PureCrypto } from "@bitwarden/sdk-internal";
 
 import { CryptoFunctionService } from "../../key-management/crypto/abstractions/crypto-function.service";
 import { CsprngArray } from "../../types/csprng";
 import { KeyGenerationService as KeyGenerationServiceAbstraction } from "../abstractions/key-generation.service";
+import { SdkLoadService } from "../abstractions/sdk/sdk-load.service";
 import { EncryptionType } from "../enums";
 import { Utils } from "../misc/utils";
 import { SymmetricCryptoKey } from "../models/domain/symmetric-crypto-key";
@@ -47,38 +49,17 @@ export class KeyGenerationService implements KeyGenerationServiceAbstraction {
     salt: string | Uint8Array,
     kdfConfig: KdfConfig,
   ): Promise<SymmetricCryptoKey> {
-    let key: Uint8Array = null;
-    if (kdfConfig.kdfType == null || kdfConfig.kdfType === KdfType.PBKDF2_SHA256) {
-      if (kdfConfig.iterations == null) {
-        kdfConfig.iterations = PBKDF2KdfConfig.ITERATIONS.defaultValue;
-      }
-
-      key = await this.cryptoFunctionService.pbkdf2(password, salt, "sha256", kdfConfig.iterations);
-    } else if (kdfConfig.kdfType == KdfType.Argon2id) {
-      if (kdfConfig.iterations == null) {
-        kdfConfig.iterations = Argon2KdfConfig.ITERATIONS.defaultValue;
-      }
-
-      if (kdfConfig.memory == null) {
-        kdfConfig.memory = Argon2KdfConfig.MEMORY.defaultValue;
-      }
-
-      if (kdfConfig.parallelism == null) {
-        kdfConfig.parallelism = Argon2KdfConfig.PARALLELISM.defaultValue;
-      }
-
-      const saltHash = await this.cryptoFunctionService.hash(salt, "sha256");
-      key = await this.cryptoFunctionService.argon2(
-        password,
-        saltHash,
-        kdfConfig.iterations,
-        kdfConfig.memory * 1024, // convert to KiB from MiB
-        kdfConfig.parallelism,
-      );
-    } else {
-      throw new Error("Unknown Kdf.");
+    if (typeof password === "string") {
+      password = new TextEncoder().encode(password);
     }
-    return new SymmetricCryptoKey(key);
+    if (typeof salt === "string") {
+      salt = new TextEncoder().encode(salt);
+    }
+
+    await SdkLoadService.Ready;
+    return new SymmetricCryptoKey(
+      PureCrypto.derive_kdf_material(password, salt, kdfConfig.toSdkConfig()),
+    );
   }
 
   async stretchKey(key: SymmetricCryptoKey): Promise<SymmetricCryptoKey> {
diff --git a/libs/node/src/services/node-crypto-function.service.ts b/libs/node/src/services/node-crypto-function.service.ts
index 33ea3adf357..f3ac71b13e7 100644
--- a/libs/node/src/services/node-crypto-function.service.ts
+++ b/libs/node/src/services/node-crypto-function.service.ts
@@ -33,29 +33,6 @@ export class NodeCryptoFunctionService implements CryptoFunctionService {
     });
   }
 
-  async argon2(
-    password: string | Uint8Array,
-    salt: string | Uint8Array,
-    iterations: number,
-    memory: number,
-    parallelism: number,
-  ): Promise<Uint8Array> {
-    const nodePassword = this.toNodeValue(password);
-    const nodeSalt = this.toNodeBuffer(this.toUint8Buffer(salt));
-
-    const argon2 = await import("argon2");
-    const hash = await argon2.hash(nodePassword, {
-      salt: nodeSalt,
-      raw: true,
-      hashLength: 32,
-      timeCost: iterations,
-      memoryCost: memory,
-      parallelism: parallelism,
-      type: argon2.argon2id,
-    });
-    return this.toUint8Buffer(hash);
-  }
-
   // ref: https://tools.ietf.org/html/rfc5869
   async hkdf(
     ikm: Uint8Array,
diff --git a/package-lock.json b/package-lock.json
index ea003e2b3f8..541c596c78a 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -7,7 +7,6 @@
     "": {
       "name": "@bitwarden/clients",
       "version": "0.0.0",
-      "hasInstallScript": true,
       "license": "GPL-3.0",
       "workspaces": [
         "apps/*",
@@ -36,8 +35,6 @@
         "@nx/eslint": "21.1.2",
         "@nx/jest": "21.1.2",
         "@nx/js": "21.1.2",
-        "argon2": "0.41.1",
-        "argon2-browser": "1.18.0",
         "big-integer": "1.6.52",
         "bootstrap": "4.6.0",
         "braintree-web-drop-in": "1.44.0",
@@ -64,7 +61,6 @@
         "oidc-client-ts": "2.4.1",
         "open": "10.1.2",
         "papaparse": "5.5.3",
-        "patch-package": "8.0.0",
         "proper-lockfile": "4.1.2",
         "qrcode-parser": "2.1.3",
         "qrious": "4.0.2",
@@ -102,7 +98,6 @@
         "@storybook/test-runner": "0.22.0",
         "@storybook/theming": "8.6.12",
         "@storybook/web-components-webpack5": "8.6.12",
-        "@types/argon2-browser": "1.18.4",
         "@types/chrome": "0.0.306",
         "@types/firefox-webext-browser": "120.0.4",
         "@types/inquirer": "8.2.10",
@@ -206,7 +201,6 @@
       "dependencies": {
         "@koa/multer": "4.0.0",
         "@koa/router": "13.1.0",
-        "argon2": "0.41.1",
         "big-integer": "1.6.52",
         "browser-hrtime": "1.1.8",
         "chalk": "4.1.2",
@@ -9873,15 +9867,6 @@
         "node": ">=4.2.0"
       }
     },
-    "node_modules/@phc/format": {
-      "version": "1.0.0",
-      "resolved": "https://registry.npmjs.org/@phc/format/-/format-1.0.0.tgz",
-      "integrity": "sha512-m7X9U6BG2+J+R1lSOdCiITLLrxm+cWlNI3HUFA92oLO77ObGNzaKdh8pMLqdZcshtkKuV84olNNXDfMc4FezBQ==",
-      "license": "MIT",
-      "engines": {
-        "node": ">=10"
-      }
-    },
     "node_modules/@phenomnomnominal/tsquery": {
       "version": "5.0.1",
       "resolved": "https://registry.npmjs.org/@phenomnomnominal/tsquery/-/tsquery-5.0.1.tgz",
@@ -12071,13 +12056,6 @@
         "@types/node": "*"
       }
     },
-    "node_modules/@types/argon2-browser": {
-      "version": "1.18.4",
-      "resolved": "https://registry.npmjs.org/@types/argon2-browser/-/argon2-browser-1.18.4.tgz",
-      "integrity": "sha512-K/PHAEKzdCY4mCRhgUTBcuTxeaJyLoPcd5pJ1UFSTb/FAPjj3TCK4EM/DvNmVtDzkQBMD5peJjtch3kVQDf4YQ==",
-      "dev": true,
-      "license": "MIT"
-    },
     "node_modules/@types/aria-query": {
       "version": "5.0.4",
       "resolved": "https://registry.npmjs.org/@types/aria-query/-/aria-query-5.0.4.tgz",
@@ -14799,27 +14777,6 @@
       "dev": true,
       "license": "MIT"
     },
-    "node_modules/argon2": {
-      "version": "0.41.1",
-      "resolved": "https://registry.npmjs.org/argon2/-/argon2-0.41.1.tgz",
-      "integrity": "sha512-dqCW8kJXke8Ik+McUcMDltrbuAWETPyU6iq+4AhxqKphWi7pChB/Zgd/Tp/o8xRLbg8ksMj46F/vph9wnxpTzQ==",
-      "hasInstallScript": true,
-      "license": "MIT",
-      "dependencies": {
-        "@phc/format": "^1.0.0",
-        "node-addon-api": "^8.1.0",
-        "node-gyp-build": "^4.8.1"
-      },
-      "engines": {
-        "node": ">=16.17.0"
-      }
-    },
-    "node_modules/argon2-browser": {
-      "version": "1.18.0",
-      "resolved": "https://registry.npmjs.org/argon2-browser/-/argon2-browser-1.18.0.tgz",
-      "integrity": "sha512-ImVAGIItnFnvET1exhsQB7apRztcoC5TnlSqernMJDUjbc/DLq3UEYeXFrLPrlaIl8cVfwnXb6wX2KpFf2zxHw==",
-      "license": "MIT"
-    },
     "node_modules/argparse": {
       "version": "2.0.1",
       "resolved": "https://registry.npmjs.org/argparse/-/argparse-2.0.1.tgz",
@@ -16390,6 +16347,7 @@
       "version": "1.0.8",
       "resolved": "https://registry.npmjs.org/call-bind/-/call-bind-1.0.8.tgz",
       "integrity": "sha512-oKlSFMcMwpUg2ednkhQ454wfWiU/ul3CkJe/PEHcTKuiX6RpbehUiFMXu13HalGZxfUwCQzZG747YXBn1im9ww==",
+      "dev": true,
       "license": "MIT",
       "dependencies": {
         "call-bind-apply-helpers": "^1.0.0",
@@ -18210,6 +18168,7 @@
       "version": "1.1.4",
       "resolved": "https://registry.npmjs.org/define-data-property/-/define-data-property-1.1.4.tgz",
       "integrity": "sha512-rBMvIzlpA8v6E+SJZoo++HAYqsLrkg7MSfIinMPFhmkorw7X+dOXVJQs+QT69zGkzMyfDnIMN2Wid1+NbL3T+A==",
+      "dev": true,
       "license": "MIT",
       "dependencies": {
         "es-define-property": "^1.0.0",
@@ -20914,15 +20873,6 @@
         "url": "https://github.com/sponsors/sindresorhus"
       }
     },
-    "node_modules/find-yarn-workspace-root": {
-      "version": "2.0.0",
-      "resolved": "https://registry.npmjs.org/find-yarn-workspace-root/-/find-yarn-workspace-root-2.0.0.tgz",
-      "integrity": "sha512-1IMnbjt4KzsQfnhnzNd8wUEgXZ44IzZaZmnLYx7D5FZlaHt2gW20Cri8Q+E/t5tIj4+epTBub+2Zxu/vNILzqQ==",
-      "license": "Apache-2.0",
-      "dependencies": {
-        "micromatch": "^4.0.2"
-      }
-    },
     "node_modules/flat": {
       "version": "5.0.2",
       "resolved": "https://registry.npmjs.org/flat/-/flat-5.0.2.tgz",
@@ -21939,6 +21889,7 @@
       "version": "1.0.2",
       "resolved": "https://registry.npmjs.org/has-property-descriptors/-/has-property-descriptors-1.0.2.tgz",
       "integrity": "sha512-55JNKuIW+vq4Ke1BjOTjM2YctQIvCT7GFzHwmfZPGo5wnrgkid0YQtnAleFSqumZm4az3n2BS+erby5ipJdgrg==",
+      "dev": true,
       "license": "MIT",
       "dependencies": {
         "es-define-property": "^1.0.0"
@@ -23621,6 +23572,7 @@
       "version": "2.0.5",
       "resolved": "https://registry.npmjs.org/isarray/-/isarray-2.0.5.tgz",
       "integrity": "sha512-xHjhDr3cNBK0BzdUJSPXZntQUx/mwMS5Rw4A7lPJ90XGAO6ISP/ePDNuo0vhqOZU+UD5JoodwCAAoZQd3FeAKw==",
+      "dev": true,
       "license": "MIT"
     },
     "node_modules/isbinaryfile": {
@@ -25682,25 +25634,6 @@
       "dev": true,
       "license": "BSD-2-Clause"
     },
-    "node_modules/json-stable-stringify": {
-      "version": "1.3.0",
-      "resolved": "https://registry.npmjs.org/json-stable-stringify/-/json-stable-stringify-1.3.0.tgz",
-      "integrity": "sha512-qtYiSSFlwot9XHtF9bD9c7rwKjr+RecWT//ZnPvSmEjpV5mmPOCN4j8UjY5hbjNkOwZ/jQv3J6R1/pL7RwgMsg==",
-      "license": "MIT",
-      "dependencies": {
-        "call-bind": "^1.0.8",
-        "call-bound": "^1.0.4",
-        "isarray": "^2.0.5",
-        "jsonify": "^0.0.1",
-        "object-keys": "^1.1.1"
-      },
-      "engines": {
-        "node": ">= 0.4"
-      },
-      "funding": {
-        "url": "https://github.com/sponsors/ljharb"
-      }
-    },
     "node_modules/json-stable-stringify-without-jsonify": {
       "version": "1.0.1",
       "resolved": "https://registry.npmjs.org/json-stable-stringify-without-jsonify/-/json-stable-stringify-without-jsonify-1.0.1.tgz",
@@ -25744,15 +25677,6 @@
         "graceful-fs": "^4.1.6"
       }
     },
-    "node_modules/jsonify": {
-      "version": "0.0.1",
-      "resolved": "https://registry.npmjs.org/jsonify/-/jsonify-0.0.1.tgz",
-      "integrity": "sha512-2/Ki0GcmuqSrgFyelQq9M05y7PS0mEwuIzrf3f1fPqkVDVRvZrPZtVSMHxdgo8Aq0sxAOb/cr2aqqA3LeWHVPg==",
-      "license": "Public Domain",
-      "funding": {
-        "url": "https://github.com/sponsors/ljharb"
-      }
-    },
     "node_modules/jsonparse": {
       "version": "1.3.1",
       "resolved": "https://registry.npmjs.org/jsonparse/-/jsonparse-1.3.1.tgz",
@@ -25875,15 +25799,6 @@
         "node": ">=0.10.0"
       }
     },
-    "node_modules/klaw-sync": {
-      "version": "6.0.0",
-      "resolved": "https://registry.npmjs.org/klaw-sync/-/klaw-sync-6.0.0.tgz",
-      "integrity": "sha512-nIeuVSzdCCs6TDPTqI8w1Yre34sSq7AkZ4B3sfOBbI2CgVSB4Du4aLQijFU2+lhAFCwt9+42Hel6lQNIv6AntQ==",
-      "license": "MIT",
-      "dependencies": {
-        "graceful-fs": "^4.1.11"
-      }
-    },
     "node_modules/kleur": {
       "version": "3.0.3",
       "resolved": "https://registry.npmjs.org/kleur/-/kleur-3.0.3.tgz",
@@ -29102,15 +29017,6 @@
       "dev": true,
       "license": "MIT"
     },
-    "node_modules/node-addon-api": {
-      "version": "8.4.0",
-      "resolved": "https://registry.npmjs.org/node-addon-api/-/node-addon-api-8.4.0.tgz",
-      "integrity": "sha512-D9DI/gXHvVmjHS08SVch0Em8G5S1P+QWtU31appcKT/8wFSPRcdHadIFSAntdMMVM5zz+/DL+bL/gz3UDppqtg==",
-      "license": "MIT",
-      "engines": {
-        "node": "^18 || ^20 || >= 21"
-      }
-    },
     "node_modules/node-api-version": {
       "version": "0.2.1",
       "resolved": "https://registry.npmjs.org/node-api-version/-/node-api-version-0.2.1.tgz",
@@ -30703,6 +30609,7 @@
       "version": "1.1.1",
       "resolved": "https://registry.npmjs.org/object-keys/-/object-keys-1.1.1.tgz",
       "integrity": "sha512-NuAESUOUMrlIXOfHKzD6bpPu3tYt3xvjNdRIQ+FeT0lNb4K8WR70CaDxhuNguS2XG+GjkyMwOzsN5ZktImfhLA==",
+      "dev": true,
       "license": "MIT",
       "engines": {
         "node": ">= 0.4"
@@ -31585,171 +31492,6 @@
         "tslib": "^2.0.3"
       }
     },
-    "node_modules/patch-package": {
-      "version": "8.0.0",
-      "resolved": "https://registry.npmjs.org/patch-package/-/patch-package-8.0.0.tgz",
-      "integrity": "sha512-da8BVIhzjtgScwDJ2TtKsfT5JFWz1hYoBl9rUQ1f38MC2HwnEIkK8VN3dKMKcP7P7bvvgzNDbfNHtx3MsQb5vA==",
-      "license": "MIT",
-      "dependencies": {
-        "@yarnpkg/lockfile": "^1.1.0",
-        "chalk": "^4.1.2",
-        "ci-info": "^3.7.0",
-        "cross-spawn": "^7.0.3",
-        "find-yarn-workspace-root": "^2.0.0",
-        "fs-extra": "^9.0.0",
-        "json-stable-stringify": "^1.0.2",
-        "klaw-sync": "^6.0.0",
-        "minimist": "^1.2.6",
-        "open": "^7.4.2",
-        "rimraf": "^2.6.3",
-        "semver": "^7.5.3",
-        "slash": "^2.0.0",
-        "tmp": "^0.0.33",
-        "yaml": "^2.2.2"
-      },
-      "bin": {
-        "patch-package": "index.js"
-      },
-      "engines": {
-        "node": ">=14",
-        "npm": ">5"
-      }
-    },
-    "node_modules/patch-package/node_modules/brace-expansion": {
-      "version": "1.1.12",
-      "resolved": "https://registry.npmjs.org/brace-expansion/-/brace-expansion-1.1.12.tgz",
-      "integrity": "sha512-9T9UjW3r0UW5c1Q7GTwllptXwhvYmEzFhzMfZ9H7FQWt+uZePjZPjBP/W1ZEyZ1twGWom5/56TF4lPcqjnDHcg==",
-      "license": "MIT",
-      "dependencies": {
-        "balanced-match": "^1.0.0",
-        "concat-map": "0.0.1"
-      }
-    },
-    "node_modules/patch-package/node_modules/fs-extra": {
-      "version": "9.1.0",
-      "resolved": "https://registry.npmjs.org/fs-extra/-/fs-extra-9.1.0.tgz",
-      "integrity": "sha512-hcg3ZmepS30/7BSFqRvoo3DOMQu7IjqxO5nCDt+zM9XWjb33Wg7ziNT+Qvqbuc3+gWpzO02JubVyk2G4Zvo1OQ==",
-      "license": "MIT",
-      "dependencies": {
-        "at-least-node": "^1.0.0",
-        "graceful-fs": "^4.2.0",
-        "jsonfile": "^6.0.1",
-        "universalify": "^2.0.0"
-      },
-      "engines": {
-        "node": ">=10"
-      }
-    },
-    "node_modules/patch-package/node_modules/glob": {
-      "version": "7.2.3",
-      "resolved": "https://registry.npmjs.org/glob/-/glob-7.2.3.tgz",
-      "integrity": "sha512-nFR0zLpU2YCaRxwoCJvL6UvCH2JFyFVIvwTLsIf21AuHlMskA1hhTdk+LlYJtOlYt9v6dvszD2BGRqBL+iQK9Q==",
-      "deprecated": "Glob versions prior to v9 are no longer supported",
-      "license": "ISC",
-      "dependencies": {
-        "fs.realpath": "^1.0.0",
-        "inflight": "^1.0.4",
-        "inherits": "2",
-        "minimatch": "^3.1.1",
-        "once": "^1.3.0",
-        "path-is-absolute": "^1.0.0"
-      },
-      "engines": {
-        "node": "*"
-      },
-      "funding": {
-        "url": "https://github.com/sponsors/isaacs"
-      }
-    },
-    "node_modules/patch-package/node_modules/is-docker": {
-      "version": "2.2.1",
-      "resolved": "https://registry.npmjs.org/is-docker/-/is-docker-2.2.1.tgz",
-      "integrity": "sha512-F+i2BKsFrH66iaUFc0woD8sLy8getkwTwtOBjvs56Cx4CgJDeKQeqfz8wAYiSb8JOprWhHH5p77PbmYCvvUuXQ==",
-      "license": "MIT",
-      "bin": {
-        "is-docker": "cli.js"
-      },
-      "engines": {
-        "node": ">=8"
-      },
-      "funding": {
-        "url": "https://github.com/sponsors/sindresorhus"
-      }
-    },
-    "node_modules/patch-package/node_modules/is-wsl": {
-      "version": "2.2.0",
-      "resolved": "https://registry.npmjs.org/is-wsl/-/is-wsl-2.2.0.tgz",
-      "integrity": "sha512-fKzAra0rGJUUBwGBgNkHZuToZcn+TtXHpeCgmkMJMMYx1sQDYaCSyjJBSCa2nH1DGm7s3n1oBnohoVTBaN7Lww==",
-      "license": "MIT",
-      "dependencies": {
-        "is-docker": "^2.0.0"
-      },
-      "engines": {
-        "node": ">=8"
-      }
-    },
-    "node_modules/patch-package/node_modules/minimatch": {
-      "version": "3.1.2",
-      "resolved": "https://registry.npmjs.org/minimatch/-/minimatch-3.1.2.tgz",
-      "integrity": "sha512-J7p63hRiAjw1NDEww1W7i37+ByIrOWO5XQQAzZ3VOcL0PNybwpfmV/N05zFAzwQ9USyEcX6t3UO+K5aqBQOIHw==",
-      "license": "ISC",
-      "dependencies": {
-        "brace-expansion": "^1.1.7"
-      },
-      "engines": {
-        "node": "*"
-      }
-    },
-    "node_modules/patch-package/node_modules/open": {
-      "version": "7.4.2",
-      "resolved": "https://registry.npmjs.org/open/-/open-7.4.2.tgz",
-      "integrity": "sha512-MVHddDVweXZF3awtlAS+6pgKLlm/JgxZ90+/NBurBoQctVOOB/zDdVjcyPzQ+0laDGbsWgrRkflI65sQeOgT9Q==",
-      "license": "MIT",
-      "dependencies": {
-        "is-docker": "^2.0.0",
-        "is-wsl": "^2.1.1"
-      },
-      "engines": {
-        "node": ">=8"
-      },
-      "funding": {
-        "url": "https://github.com/sponsors/sindresorhus"
-      }
-    },
-    "node_modules/patch-package/node_modules/rimraf": {
-      "version": "2.7.1",
-      "resolved": "https://registry.npmjs.org/rimraf/-/rimraf-2.7.1.tgz",
-      "integrity": "sha512-uWjbaKIK3T1OSVptzX7Nl6PvQ3qAGtKEtVRjRuazjfL3Bx5eI409VZSqgND+4UNnmzLVdPj9FqFJNPqBZFve4w==",
-      "deprecated": "Rimraf versions prior to v4 are no longer supported",
-      "license": "ISC",
-      "dependencies": {
-        "glob": "^7.1.3"
-      },
-      "bin": {
-        "rimraf": "bin.js"
-      }
-    },
-    "node_modules/patch-package/node_modules/slash": {
-      "version": "2.0.0",
-      "resolved": "https://registry.npmjs.org/slash/-/slash-2.0.0.tgz",
-      "integrity": "sha512-ZYKh3Wh2z1PpEXWr0MpSBZ0V6mZHAQfYevttO11c51CaWjGTaadiKZ+wVt1PbMlDV5qhMFslpZCemhwOK7C89A==",
-      "license": "MIT",
-      "engines": {
-        "node": ">=6"
-      }
-    },
-    "node_modules/patch-package/node_modules/tmp": {
-      "version": "0.0.33",
-      "resolved": "https://registry.npmjs.org/tmp/-/tmp-0.0.33.tgz",
-      "integrity": "sha512-jRCJlojKnZ3addtTOjdIqoRuPEKBvNXcGYqzO6zWZX8KfKEpnGY5jfggJQ3EjKuu8D4bJRr0y+cYJFmYbImXGw==",
-      "license": "MIT",
-      "dependencies": {
-        "os-tmpdir": "~1.0.2"
-      },
-      "engines": {
-        "node": ">=0.6.0"
-      }
-    },
     "node_modules/path-browserify": {
       "version": "1.0.1",
       "resolved": "https://registry.npmjs.org/path-browserify/-/path-browserify-1.0.1.tgz",
@@ -34504,6 +34246,7 @@
       "version": "1.2.2",
       "resolved": "https://registry.npmjs.org/set-function-length/-/set-function-length-1.2.2.tgz",
       "integrity": "sha512-pgRc4hJ4/sNjWCSS9AmnS40x3bNMDTknHgL5UaMBTMyJnU90EgWh1Rz+MC9eFu4BuN/UwZjKQuY/1v3rM7HMfg==",
+      "dev": true,
       "license": "MIT",
       "dependencies": {
         "define-data-property": "^1.1.4",
diff --git a/package.json b/package.json
index d94295c5ea3..b7923a92f6f 100644
--- a/package.json
+++ b/package.json
@@ -29,8 +29,7 @@
     "build-storybook": "cross-env NODE_OPTIONS=\"--max-old-space-size=8192\" ng run components:build-storybook",
     "build-storybook:ci": "cross-env NODE_OPTIONS=\"--max-old-space-size=8192\" ng run components:build-storybook --webpack-stats-json",
     "test-stories": "test-storybook --url http://localhost:6006",
-    "test-stories:watch": "test-stories --watch",
-    "postinstall": "patch-package"
+    "test-stories:watch": "test-stories --watch"
   },
   "workspaces": [
     "apps/*",
@@ -62,7 +61,6 @@
     "@storybook/test-runner": "0.22.0",
     "@storybook/theming": "8.6.12",
     "@storybook/web-components-webpack5": "8.6.12",
-    "@types/argon2-browser": "1.18.4",
     "@types/chrome": "0.0.306",
     "@types/firefox-webext-browser": "120.0.4",
     "@types/inquirer": "8.2.10",
@@ -172,8 +170,6 @@
     "@nx/eslint": "21.1.2",
     "@nx/jest": "21.1.2",
     "@nx/js": "21.1.2",
-    "argon2": "0.41.1",
-    "argon2-browser": "1.18.0",
     "big-integer": "1.6.52",
     "bootstrap": "4.6.0",
     "braintree-web-drop-in": "1.44.0",
@@ -200,7 +196,6 @@
     "oidc-client-ts": "2.4.1",
     "open": "10.1.2",
     "papaparse": "5.5.3",
-    "patch-package": "8.0.0",
     "proper-lockfile": "4.1.2",
     "qrcode-parser": "2.1.3",
     "qrious": "4.0.2",
diff --git a/patches/argon2-browser+1.18.0.patch b/patches/argon2-browser+1.18.0.patch
deleted file mode 100644
index 160661cd915..00000000000
--- a/patches/argon2-browser+1.18.0.patch
+++ /dev/null
@@ -1,67 +0,0 @@
-diff --git a/node_modules/argon2-browser/lib/argon2.js b/node_modules/argon2-browser/lib/argon2.js
-index ffa77a5..98b2f13 100644
---- a/node_modules/argon2-browser/lib/argon2.js
-+++ b/node_modules/argon2-browser/lib/argon2.js
-@@ -78,16 +78,27 @@
-         if (global.loadArgon2WasmBinary) {
-             return global.loadArgon2WasmBinary();
-         }
-+
-+        const simd = checkIfSIMDSupported();
-+
-         if (typeof require === 'function') {
--            return Promise.resolve(require('../dist/argon2.wasm')).then(
--                (wasmModule) => {
--                    return decodeWasmBinary(wasmModule);
--                }
--            );
-+            if (simd) {
-+                return Promise.resolve(require('../dist/argon2-simd.wasm')).then(
-+                    (wasmModule) => {
-+                        return decodeWasmBinary(wasmModule);
-+                    }
-+                );
-+            } else {
-+                return Promise.resolve(require('../dist/argon2.wasm')).then(
-+                    (wasmModule) => {
-+                        return decodeWasmBinary(wasmModule);
-+                    }
-+                );
-+            }
-         }
-         const wasmPath =
-             global.argon2WasmPath ||
--            'node_modules/argon2-browser/dist/argon2.wasm';
-+            'node_modules/argon2-browser/dist/argon2' + (simd? "-simd" : "") + '.wasm';
-         return fetch(wasmPath)
-             .then((response) => response.arrayBuffer())
-             .then((ab) => new Uint8Array(ab));
-@@ -351,7 +362,28 @@
-             loadModule._module.unloadRuntime();
-             delete loadModule._promise;
-             delete loadModule._module;
-+            if (typeof require !== 'undefined') {
-+                delete require.cache[require.resolve('../dist/argon2.js')]
-+            }
-+        }
-+    }
-+
-+    // ref: https://stackoverflow.com/a/47880734/1090359
-+    // ref: https://github.com/GoogleChromeLabs/wasm-feature-detect/blob/main/src/detectors/simd/module.wat (translated with wat2wasm)
-+    function checkIfSIMDSupported() {
-+        try {
-+            if (typeof WebAssembly === "object" && typeof WebAssembly.instantiate === "function") {
-+                const module = new WebAssembly.Module(
-+                    Uint8Array.of(0x00, 0x61, 0x73, 0x6d, 0x01, 0x00, 0x00, 0x00, 0x01, 0x05, 0x01, 0x60, 0x00, 0x01, 0x7b, 0x03, 0x02, 0x01, 0x00, 0x0a, 0x0a, 0x01, 0x08, 0x00, 0x41, 0x00, 0xfd, 0x0f, 0xfd, 0x62, 0x0b)
-+                );
-+                if (module instanceof WebAssembly.Module) {
-+                    return new WebAssembly.Instance(module) instanceof WebAssembly.Instance;
-+                }
-+            }
-+        } catch {
-+            return false;
-         }
-+        return false;
-     }
- 
-     return {

From d1f0c40e2f286cbaf670afbfaf587e0e56d7cc95 Mon Sep 17 00:00:00 2001
From: Bernd Schoolmann <mail@quexten.com>
Date: Tue, 15 Jul 2025 11:56:19 +0200
Subject: [PATCH 134/239] [PM-23386] Fix fix usages of encrypt service (#15476)

* Fix incorrect usages of encrypt service

* Add docs

* Fix types
---
 libs/common/src/auth/services/token.service.ts     | 10 +++++++++-
 .../crypto/abstractions/encrypt.service.ts         | 14 ++++++++++++++
 .../importers/bitwarden/bitwarden-json-importer.ts |  8 +++-----
 3 files changed, 26 insertions(+), 6 deletions(-)

diff --git a/libs/common/src/auth/services/token.service.ts b/libs/common/src/auth/services/token.service.ts
index 2c6883272c3..1d17d0d0367 100644
--- a/libs/common/src/auth/services/token.service.ts
+++ b/libs/common/src/auth/services/token.service.ts
@@ -296,10 +296,18 @@ export class TokenService implements TokenServiceAbstraction {
     return await this.encryptService.encryptString(accessToken, accessTokenKey);
   }
 
+  /**
+   * Decrypts the access token using the provided access token key.
+   *
+   * @param accessTokenKey - the key used to decrypt the access token
+   * @param encryptedAccessToken - the encrypted access token to decrypt
+   * @returns the decrypted access token
+   * @throws Error if the access token key is not provided or the decryption fails
+   */
   private async decryptAccessToken(
     accessTokenKey: AccessTokenKey,
     encryptedAccessToken: EncString,
-  ): Promise<string | null> {
+  ): Promise<string> {
     if (!accessTokenKey) {
       throw new Error(
         "decryptAccessToken: Access token key required. Cannot decrypt access token.",
diff --git a/libs/common/src/key-management/crypto/abstractions/encrypt.service.ts b/libs/common/src/key-management/crypto/abstractions/encrypt.service.ts
index 8bd58a21b6e..6796f9ea9b7 100644
--- a/libs/common/src/key-management/crypto/abstractions/encrypt.service.ts
+++ b/libs/common/src/key-management/crypto/abstractions/encrypt.service.ts
@@ -87,12 +87,16 @@ export abstract class EncryptService {
    * Decrypts an EncString to a string
    * @param encString - The EncString containing the encrypted string.
    * @param key - The key to decrypt the value with
+   * @returns The decrypted string
+   * @throws Error if decryption fails
    */
   abstract decryptString(encString: EncString, key: SymmetricCryptoKey): Promise<string>;
   /**
    * Decrypts an EncString to a Uint8Array
    * @param encString - The EncString containing the encrypted bytes.
    * @param key - The key to decrypt the value with
+   * @returns The decrypted bytes as a Uint8Array
+   * @throws Error if decryption fails
    * @deprecated Bytes are not the right abstraction to encrypt in. Use e.g. key wrapping or file encryption instead
    */
   abstract decryptBytes(encString: EncString, key: SymmetricCryptoKey): Promise<Uint8Array>;
@@ -100,6 +104,8 @@ export abstract class EncryptService {
    * Decrypts an EncArrayBuffer to a Uint8Array
    * @param encBuffer - The EncArrayBuffer containing the encrypted file bytes.
    * @param key - The key to decrypt the value with
+   * @returns The decrypted file bytes as a Uint8Array
+   * @throws Error if decryption fails
    */
   abstract decryptFileData(encBuffer: EncArrayBuffer, key: SymmetricCryptoKey): Promise<Uint8Array>;
 
@@ -139,6 +145,8 @@ export abstract class EncryptService {
    * @see {@link https://en.wikipedia.org/wiki/Key_wrap}
    * @param decapsulationKeyPcks8 - The private key in PKCS8 format
    * @param wrappingKey - The symmetric key to wrap the private key with
+   * @returns The unwrapped private key as a Uint8Array
+   * @throws Error if unwrapping fails
    */
   abstract unwrapDecapsulationKey(
     wrappedDecapsulationKey: EncString,
@@ -149,6 +157,8 @@ export abstract class EncryptService {
    * @see {@link https://en.wikipedia.org/wiki/Key_wrap}
    * @param encapsulationKeySpki - The public key in SPKI format
    * @param wrappingKey - The symmetric key to wrap the public key with
+   * @returns The unwrapped public key as a Uint8Array
+   * @throws Error if unwrapping fails
    */
   abstract unwrapEncapsulationKey(
     wrappedEncapsulationKey: EncString,
@@ -159,6 +169,8 @@ export abstract class EncryptService {
    * @see {@link https://en.wikipedia.org/wiki/Key_wrap}
    * @param keyToBeWrapped - The symmetric key to wrap
    * @param wrappingKey - The symmetric key to wrap the encapsulated key with
+   * @returns The unwrapped symmetric key as a SymmetricCryptoKey
+   * @throws Error if unwrapping fails
    */
   abstract unwrapSymmetricKey(
     keyToBeUnwrapped: EncString,
@@ -182,6 +194,8 @@ export abstract class EncryptService {
    * @see {@link https://en.wikipedia.org/wiki/Key_encapsulation_mechanism}
    * @param encryptedSharedKey - The encrypted shared symmetric key
    * @param decapsulationKey - The key to decapsulate with (private key)
+   * @return The decapsulated symmetric key
+   * @throws Error if decapsulation fails
    */
   abstract decapsulateKeyUnsigned(
     encryptedSharedKey: EncString,
diff --git a/libs/importer/src/importers/bitwarden/bitwarden-json-importer.ts b/libs/importer/src/importers/bitwarden/bitwarden-json-importer.ts
index dfc1c9f58e9..9f29af19715 100644
--- a/libs/importer/src/importers/bitwarden/bitwarden-json-importer.ts
+++ b/libs/importer/src/importers/bitwarden/bitwarden-json-importer.ts
@@ -74,11 +74,9 @@ export class BitwardenJsonImporter extends BaseImporter implements Importer {
         keyForDecryption = await this.keyService.getUserKey();
       }
       const encKeyValidation = new EncString(results.encKeyValidation_DO_NOT_EDIT);
-      const encKeyValidationDecrypt = await this.encryptService.decryptString(
-        encKeyValidation,
-        keyForDecryption,
-      );
-      if (encKeyValidationDecrypt === null) {
+      try {
+        await this.encryptService.decryptString(encKeyValidation, keyForDecryption);
+      } catch {
         this.result.success = false;
         this.result.errorMessage = this.i18nService.t("importEncKeyError");
         return;

From c6fd7b65e6aba6f29c08f987916f7cd9642f5008 Mon Sep 17 00:00:00 2001
From: Maciej Zieniuk <167752252+mzieniukbw@users.noreply.github.com>
Date: Tue, 15 Jul 2025 16:11:44 +0200
Subject: [PATCH 135/239] Feature flag for ForceUpdateKDFSettings (#15618)

---
 libs/common/src/enums/feature-flag.enum.ts | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/libs/common/src/enums/feature-flag.enum.ts b/libs/common/src/enums/feature-flag.enum.ts
index fcc81070331..74c3bf27c99 100644
--- a/libs/common/src/enums/feature-flag.enum.ts
+++ b/libs/common/src/enums/feature-flag.enum.ts
@@ -44,6 +44,7 @@ export enum FeatureFlag {
   UseSDKForDecryption = "use-sdk-for-decryption",
   PM17987_BlockType0 = "pm-17987-block-type-0",
   EnrollAeadOnKeyRotation = "enroll-aead-on-key-rotation",
+  ForceUpdateKDFSettings = "pm-18021-force-update-kdf-settings",
 
   /* Tools */
   DesktopSendUIRefresh = "desktop-send-ui-refresh",
@@ -121,6 +122,7 @@ export const DefaultFeatureFlagValue = {
   [FeatureFlag.UseSDKForDecryption]: FALSE,
   [FeatureFlag.PM17987_BlockType0]: FALSE,
   [FeatureFlag.EnrollAeadOnKeyRotation]: FALSE,
+  [FeatureFlag.ForceUpdateKDFSettings]: FALSE,
 
   /* Platform */
   [FeatureFlag.IpcChannelFramework]: FALSE,

From ea6a9593b9a84804dbc4684a07835e9a65df410c Mon Sep 17 00:00:00 2001
From: Jason Ng <jng@bitwarden.com>
Date: Tue, 15 Jul 2025 10:16:57 -0400
Subject: [PATCH 136/239] [PM-23720] add margin bottom to spotlight component
 (#15605)

---
 .../src/vault/components/spotlight/spotlight.component.html   | 2 +-
 .../components/new-item-nudge/new-item-nudge.component.html   | 4 ++--
 .../components/new-item-nudge/new-item-nudge.component.ts     | 4 ++--
 3 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/libs/angular/src/vault/components/spotlight/spotlight.component.html b/libs/angular/src/vault/components/spotlight/spotlight.component.html
index 3aa9a09a7e1..29d13d2056c 100644
--- a/libs/angular/src/vault/components/spotlight/spotlight.component.html
+++ b/libs/angular/src/vault/components/spotlight/spotlight.component.html
@@ -1,5 +1,5 @@
 <div
-  class="tw-rounded-2xl tw-bg-primary-100 tw-border-primary-600 tw-border-solid tw-border tw-p-4 tw-pt-3 tw-flex tw-flex-col tw-gap-2"
+  class="tw-rounded-2xl tw-bg-primary-100 tw-border-primary-600 tw-border-solid tw-border tw-p-4 tw-pt-3 tw-flex tw-flex-col tw-gap-2 tw-mb-4"
 >
   <div class="tw-flex tw-justify-between tw-items-start tw-flex-grow">
     <div>
diff --git a/libs/vault/src/cipher-form/components/new-item-nudge/new-item-nudge.component.html b/libs/vault/src/cipher-form/components/new-item-nudge/new-item-nudge.component.html
index 58dc181f826..e62294039bd 100644
--- a/libs/vault/src/cipher-form/components/new-item-nudge/new-item-nudge.component.html
+++ b/libs/vault/src/cipher-form/components/new-item-nudge/new-item-nudge.component.html
@@ -1,8 +1,8 @@
-<ng-container *ngIf="showNewItemSpotlight$ | async">
+@if (showNewItemSpotlight$ | async) {
   <bit-spotlight
     [title]="nudgeTitle"
     [subtitle]="nudgeBody"
     (onDismiss)="dismissNewItemSpotlight()"
   >
   </bit-spotlight>
-</ng-container>
+}
diff --git a/libs/vault/src/cipher-form/components/new-item-nudge/new-item-nudge.component.ts b/libs/vault/src/cipher-form/components/new-item-nudge/new-item-nudge.component.ts
index eccf8f65715..70b94505731 100644
--- a/libs/vault/src/cipher-form/components/new-item-nudge/new-item-nudge.component.ts
+++ b/libs/vault/src/cipher-form/components/new-item-nudge/new-item-nudge.component.ts
@@ -1,4 +1,4 @@
-import { AsyncPipe, NgIf } from "@angular/common";
+import { AsyncPipe } from "@angular/common";
 import { Component, input } from "@angular/core";
 import { toObservable } from "@angular/core/rxjs-interop";
 import { combineLatest, firstValueFrom, map, of, switchMap } from "rxjs";
@@ -14,7 +14,7 @@ import { CipherType } from "@bitwarden/sdk-internal";
 @Component({
   selector: "vault-new-item-nudge",
   templateUrl: "./new-item-nudge.component.html",
-  imports: [NgIf, SpotlightComponent, AsyncPipe],
+  imports: [SpotlightComponent, AsyncPipe],
 })
 export class NewItemNudgeComponent {
   configType = input.required<CipherType | null>();

From 4412dbb502b91a579f71057461f0b9c4758b1345 Mon Sep 17 00:00:00 2001
From: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com>
Date: Tue, 15 Jul 2025 09:58:32 -0500
Subject: [PATCH 137/239] [PM-21883] Add back RemoveUnlockWithPin exemption
 (#15223)

---
 .../policy/default-policy.service.spec.ts     | 20 +++++++++++++++++++
 .../services/policy/default-policy.service.ts |  3 +++
 2 files changed, 23 insertions(+)

diff --git a/libs/common/src/admin-console/services/policy/default-policy.service.spec.ts b/libs/common/src/admin-console/services/policy/default-policy.service.spec.ts
index 9db61ec5c95..6b50f9befec 100644
--- a/libs/common/src/admin-console/services/policy/default-policy.service.spec.ts
+++ b/libs/common/src/admin-console/services/policy/default-policy.service.spec.ts
@@ -490,6 +490,26 @@ describe("PolicyService", () => {
       expect(result).toBe(true);
     });
 
+    test.each([
+      PolicyType.PasswordGenerator,
+      PolicyType.FreeFamiliesSponsorshipPolicy,
+      PolicyType.RestrictedItemTypes,
+      PolicyType.RemoveUnlockWithPin,
+    ])("returns true and owners are not exempt from policy %s", async (policyType) => {
+      singleUserState.nextState(
+        arrayToRecord([
+          policyData("policy1", "org2", PolicyType.PasswordGenerator, true),
+          policyData("policy2", "org2", PolicyType.FreeFamiliesSponsorshipPolicy, true),
+          policyData("policy3", "org2", PolicyType.RestrictedItemTypes, true),
+          policyData("policy4", "org2", PolicyType.RemoveUnlockWithPin, true),
+        ]),
+      );
+
+      const result = await firstValueFrom(policyService.policyAppliesToUser$(policyType, userId));
+
+      expect(result).toBe(true);
+    });
+
     it("returns false when policyType is disabled", async () => {
       singleUserState.nextState(
         arrayToRecord([
diff --git a/libs/common/src/admin-console/services/policy/default-policy.service.ts b/libs/common/src/admin-console/services/policy/default-policy.service.ts
index 667dd9082a4..798adf520f2 100644
--- a/libs/common/src/admin-console/services/policy/default-policy.service.ts
+++ b/libs/common/src/admin-console/services/policy/default-policy.service.ts
@@ -281,6 +281,9 @@ export class DefaultPolicyService implements PolicyService {
       case PolicyType.RestrictedItemTypes:
         // restricted item types policy
         return false;
+      case PolicyType.RemoveUnlockWithPin:
+        // Remove Unlock with PIN policy
+        return false;
       case PolicyType.OrganizationDataOwnership:
         // organization data ownership policy applies to everyone except admins and owners
         return organization.isAdmin;

From d545912b67c303cf538808f4d882d93999ee072e Mon Sep 17 00:00:00 2001
From: Colton Hurst <colton@coltonhurst.com>
Date: Tue, 15 Jul 2025 11:49:15 -0400
Subject: [PATCH 138/239] [PM-22783] Add Feature Flag, Settings Toggle, and
 Services for Autotype MVP (#15262)

* [PM-22783] Add initial feature flag and settings toggle for autotype MVP

* [PM-22783] Undo Cargo.lock changes

* [PM-22783] Disable console.log block

* [PM-22783] Lint fix

* [PM-22783] Small updates

* [PM-22783] Build fix

* [PM-22783] Use combineLatest in updating the desktop autotype service

* [PM-22783] Check if the user is on Windows

* [PM-22783] Undo access selector html change, linting keeps removing this

* [PM-22783] Fix failing test

* [PM-22783] Update autotypeEnabled to be stored in service

* [PM-22783] Add todo comments

* [PM-22783] Add SlimConfigService and MainDesktopAutotypeService

* [PM-22783] Small fixes
---
 .../src/app/accounts/settings.component.html  | 16 +++++
 .../app/accounts/settings.component.spec.ts   |  4 ++
 .../src/app/accounts/settings.component.ts    | 19 +++++-
 apps/desktop/src/app/services/init.service.ts |  2 +
 .../src/app/services/services.module.ts       | 17 ++++-
 .../main/main-desktop-autotype.service.ts     | 27 ++++++++
 .../services/desktop-autotype.service.ts      | 47 +++++++++++++
 apps/desktop/src/locales/en/messages.json     |  6 ++
 apps/desktop/src/main.ts                      | 13 ++++
 .../platform/config/slim-config.service.ts    | 66 +++++++++++++++++++
 libs/common/src/enums/feature-flag.enum.ts    |  2 +
 .../src/platform/state/state-definitions.ts   |  2 +
 12 files changed, 217 insertions(+), 4 deletions(-)
 create mode 100644 apps/desktop/src/autofill/main/main-desktop-autotype.service.ts
 create mode 100644 apps/desktop/src/autofill/services/desktop-autotype.service.ts
 create mode 100644 apps/desktop/src/platform/config/slim-config.service.ts

diff --git a/apps/desktop/src/app/accounts/settings.component.html b/apps/desktop/src/app/accounts/settings.component.html
index 29480519646..46cd323b071 100644
--- a/apps/desktop/src/app/accounts/settings.component.html
+++ b/apps/desktop/src/app/accounts/settings.component.html
@@ -489,6 +489,22 @@
                   "enableDuckDuckGoBrowserIntegrationDesc" | i18n
                 }}</small>
               </div>
+              <div class="form-group" *ngIf="showEnableAutotype">
+                <div class="checkbox">
+                  <label for="enableAutotype">
+                    <input
+                      id="enableAutotype"
+                      type="checkbox"
+                      formControlName="enableAutotype"
+                      (change)="saveEnableAutotype()"
+                    />
+                    {{ "enableAutotype" | i18n }}
+                  </label>
+                </div>
+                <small class="help-block"
+                  ><b>{{ "important" | i18n }}</b> {{ "enableAutotypeDescription" | i18n }}</small
+                >
+              </div>
               <div class="form-group">
                 <label for="theme">{{ "theme" | i18n }}</label>
                 <select
diff --git a/apps/desktop/src/app/accounts/settings.component.spec.ts b/apps/desktop/src/app/accounts/settings.component.spec.ts
index a8019ce3434..16ada3fbc07 100644
--- a/apps/desktop/src/app/accounts/settings.component.spec.ts
+++ b/apps/desktop/src/app/accounts/settings.component.spec.ts
@@ -39,6 +39,7 @@ import { BiometricStateService, BiometricsStatus, KeyService } from "@bitwarden/
 import { SetPinComponent } from "../../auth/components/set-pin.component";
 import { SshAgentPromptType } from "../../autofill/models/ssh-agent-setting";
 import { DesktopAutofillSettingsService } from "../../autofill/services/desktop-autofill-settings.service";
+import { DesktopAutotypeService } from "../../autofill/services/desktop-autotype.service";
 import { DesktopBiometricsService } from "../../key-management/biometrics/desktop.biometrics.service";
 import { DesktopSettingsService } from "../../platform/services/desktop-settings.service";
 import { NativeMessagingManifestService } from "../services/native-messaging-manifest.service";
@@ -69,6 +70,7 @@ describe("SettingsComponent", () => {
   const messagingService = mock<MessagingService>();
   const keyService = mock<KeyService>();
   const dialogService = mock<DialogService>();
+  const desktopAutotypeService = mock<DesktopAutotypeService>();
 
   beforeEach(async () => {
     jest.clearAllMocks();
@@ -124,6 +126,7 @@ describe("SettingsComponent", () => {
         { provide: VaultTimeoutSettingsService, useValue: vaultTimeoutSettingsService },
         { provide: ValidationService, useValue: validationService },
         { provide: MessagingService, useValue: messagingService },
+        { provide: DesktopAutotypeService, useValue: desktopAutotypeService },
       ],
       schemas: [NO_ERRORS_SCHEMA],
     }).compileComponents();
@@ -160,6 +163,7 @@ describe("SettingsComponent", () => {
     themeStateService.selectedTheme$ = of(ThemeType.System);
     i18nService.userSetLocale$ = of("en");
     pinServiceAbstraction.isPinSet.mockResolvedValue(false);
+    desktopAutotypeService.autotypeEnabled$ = of(false);
   });
 
   afterEach(() => {
diff --git a/apps/desktop/src/app/accounts/settings.component.ts b/apps/desktop/src/app/accounts/settings.component.ts
index 3a12a2a07b0..74f02f8b619 100644
--- a/apps/desktop/src/app/accounts/settings.component.ts
+++ b/apps/desktop/src/app/accounts/settings.component.ts
@@ -24,6 +24,7 @@ import { getUserId } from "@bitwarden/common/auth/services/account.service";
 import { AutofillSettingsServiceAbstraction } from "@bitwarden/common/autofill/services/autofill-settings.service";
 import { DomainSettingsService } from "@bitwarden/common/autofill/services/domain-settings.service";
 import { DeviceType } from "@bitwarden/common/enums";
+import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
 import {
   VaultTimeout,
   VaultTimeoutAction,
@@ -48,6 +49,7 @@ import { KeyService, BiometricStateService, BiometricsStatus } from "@bitwarden/
 import { SetPinComponent } from "../../auth/components/set-pin.component";
 import { SshAgentPromptType } from "../../autofill/models/ssh-agent-setting";
 import { DesktopAutofillSettingsService } from "../../autofill/services/desktop-autofill-settings.service";
+import { DesktopAutotypeService } from "../../autofill/services/desktop-autotype.service";
 import { DesktopBiometricsService } from "../../key-management/biometrics/desktop.biometrics.service";
 import { DesktopSettingsService } from "../../platform/services/desktop-settings.service";
 import { NativeMessagingManifestService } from "../services/native-messaging-manifest.service";
@@ -72,6 +74,7 @@ export class SettingsComponent implements OnInit, OnDestroy {
   showAlwaysShowDock = false;
   requireEnableTray = false;
   showDuckDuckGoIntegrationOption = false;
+  showEnableAutotype = false;
   showOpenAtLoginOption = false;
   isWindows: boolean;
   isLinux: boolean;
@@ -133,6 +136,7 @@ export class SettingsComponent implements OnInit, OnDestroy {
     sshAgentPromptBehavior: SshAgentPromptType.Always,
     allowScreenshots: false,
     enableDuckDuckGoBrowserIntegration: false,
+    enableAutotype: false,
     theme: [null as Theme | null],
     locale: [null as string | null],
   });
@@ -156,6 +160,7 @@ export class SettingsComponent implements OnInit, OnDestroy {
     private dialogService: DialogService,
     private userVerificationService: UserVerificationServiceAbstraction,
     private desktopSettingsService: DesktopSettingsService,
+    private desktopAutotypeService: DesktopAutotypeService,
     private biometricStateService: BiometricStateService,
     private biometricsService: DesktopBiometricsService,
     private desktopAutofillSettingsService: DesktopAutofillSettingsService,
@@ -236,9 +241,12 @@ export class SettingsComponent implements OnInit, OnDestroy {
     const activeAccount = await firstValueFrom(this.accountService.activeAccount$);
     this.isLinux = (await this.platformUtilsService.getDevice()) === DeviceType.LinuxDesktop;
 
-    if (activeAccount == null || activeAccount.id == null) {
-      return;
-    }
+    // Autotype is for Windows initially
+    const isWindows = this.platformUtilsService.getDevice() === DeviceType.WindowsDesktop;
+    const windowsDesktopAutotypeFeatureFlag = await this.configService.getFeatureFlag(
+      FeatureFlag.WindowsDesktopAutotype,
+    );
+    this.showEnableAutotype = isWindows && windowsDesktopAutotypeFeatureFlag;
 
     this.userHasMasterPassword = await this.userVerificationService.hasMasterPassword();
 
@@ -333,6 +341,7 @@ export class SettingsComponent implements OnInit, OnDestroy {
         this.desktopSettingsService.sshAgentPromptBehavior$,
       ),
       allowScreenshots: !(await firstValueFrom(this.desktopSettingsService.preventScreenshots$)),
+      enableAutotype: await firstValueFrom(this.desktopAutotypeService.autotypeEnabled$),
       theme: await firstValueFrom(this.themeStateService.selectedTheme$),
       locale: await firstValueFrom(this.i18nService.userSetLocale$),
     };
@@ -853,6 +862,10 @@ export class SettingsComponent implements OnInit, OnDestroy {
     }
   }
 
+  async saveEnableAutotype() {
+    await this.desktopAutotypeService.setAutotypeEnabledState(this.form.value.enableAutotype);
+  }
+
   private async generateVaultTimeoutOptions(): Promise<VaultTimeoutOption[]> {
     let vaultTimeoutOptions: VaultTimeoutOption[] = [
       { name: this.i18nService.t("oneMinute"), value: 1 },
diff --git a/apps/desktop/src/app/services/init.service.ts b/apps/desktop/src/app/services/init.service.ts
index e68491faaa3..26ad24e9fb9 100644
--- a/apps/desktop/src/app/services/init.service.ts
+++ b/apps/desktop/src/app/services/init.service.ts
@@ -24,6 +24,7 @@ import { UserId } from "@bitwarden/common/types/guid";
 import { KeyService as KeyServiceAbstraction } from "@bitwarden/key-management";
 
 import { DesktopAutofillService } from "../../autofill/services/desktop-autofill.service";
+import { DesktopAutotypeService } from "../../autofill/services/desktop-autotype.service";
 import { SshAgentService } from "../../autofill/services/ssh-agent.service";
 import { I18nRendererService } from "../../platform/services/i18n.renderer.service";
 import { VersionService } from "../../platform/services/version.service";
@@ -50,6 +51,7 @@ export class InitService {
     private versionService: VersionService,
     private sshAgentService: SshAgentService,
     private autofillService: DesktopAutofillService,
+    private autotypeService: DesktopAutotypeService,
     private sdkLoadService: SdkLoadService,
     private configService: ConfigService,
     private bulkEncryptService: BulkEncryptService,
diff --git a/apps/desktop/src/app/services/services.module.ts b/apps/desktop/src/app/services/services.module.ts
index a69a9d7f41b..04c989c4f36 100644
--- a/apps/desktop/src/app/services/services.module.ts
+++ b/apps/desktop/src/app/services/services.module.ts
@@ -51,7 +51,7 @@ import {
 import { MasterPasswordApiService } from "@bitwarden/common/auth/abstractions/master-password-api.service.abstraction";
 import { SsoLoginServiceAbstraction } from "@bitwarden/common/auth/abstractions/sso-login.service.abstraction";
 import { AutofillSettingsServiceAbstraction } from "@bitwarden/common/autofill/services/autofill-settings.service";
-import { ClientType } from "@bitwarden/common/enums";
+import { ClientType, DeviceType } from "@bitwarden/common/enums";
 import { ProcessReloadServiceAbstraction } from "@bitwarden/common/key-management/abstractions/process-reload.service";
 import { CryptoFunctionService as CryptoFunctionServiceAbstraction } from "@bitwarden/common/key-management/crypto/abstractions/crypto-function.service";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
@@ -113,6 +113,7 @@ import { DesktopLoginComponentService } from "../../auth/login/desktop-login-com
 import { DesktopTwoFactorAuthDuoComponentService } from "../../auth/services/desktop-two-factor-auth-duo-component.service";
 import { DesktopAutofillSettingsService } from "../../autofill/services/desktop-autofill-settings.service";
 import { DesktopAutofillService } from "../../autofill/services/desktop-autofill.service";
+import { DesktopAutotypeService } from "../../autofill/services/desktop-autotype.service";
 import { DesktopFido2UserInterfaceService } from "../../autofill/services/desktop-fido2-user-interface.service";
 import { DesktopBiometricsService } from "../../key-management/biometrics/desktop.biometrics.service";
 import { RendererBiometricsService } from "../../key-management/biometrics/renderer-biometrics.service";
@@ -469,6 +470,20 @@ const safeProviders: SafeProvider[] = [
     useClass: DefaultSshImportPromptService,
     deps: [DialogService, ToastService, PlatformUtilsServiceAbstraction, I18nServiceAbstraction],
   }),
+  safeProvider({
+    provide: DesktopAutotypeService,
+    useFactory: (
+      configService: ConfigService,
+      globalStateProvider: GlobalStateProvider,
+      platformUtilsService: PlatformUtilsServiceAbstraction,
+    ) =>
+      new DesktopAutotypeService(
+        configService,
+        globalStateProvider,
+        platformUtilsService.getDevice() === DeviceType.WindowsDesktop,
+      ),
+    deps: [ConfigService, GlobalStateProvider, PlatformUtilsServiceAbstraction],
+  }),
 ];
 
 @NgModule({
diff --git a/apps/desktop/src/autofill/main/main-desktop-autotype.service.ts b/apps/desktop/src/autofill/main/main-desktop-autotype.service.ts
new file mode 100644
index 00000000000..7de34da5aaf
--- /dev/null
+++ b/apps/desktop/src/autofill/main/main-desktop-autotype.service.ts
@@ -0,0 +1,27 @@
+import { DesktopAutotypeService } from "../services/desktop-autotype.service";
+
+export class MainDesktopAutotypeService {
+  constructor(private desktopAutotypeService: DesktopAutotypeService) {}
+
+  init() {
+    this.desktopAutotypeService.autotypeEnabled$.subscribe((enabled) => {
+      if (enabled) {
+        this.enableAutotype();
+      } else {
+        this.disableAutotype();
+      }
+    });
+  }
+
+  // TODO: this will call into desktop native code
+  private enableAutotype() {
+    // eslint-disable-next-line no-console
+    console.log("Enabling Autotype...");
+  }
+
+  // TODO: this will call into desktop native code
+  private disableAutotype() {
+    // eslint-disable-next-line no-console
+    console.log("Disabling Autotype...");
+  }
+}
diff --git a/apps/desktop/src/autofill/services/desktop-autotype.service.ts b/apps/desktop/src/autofill/services/desktop-autotype.service.ts
new file mode 100644
index 00000000000..4a00cec465a
--- /dev/null
+++ b/apps/desktop/src/autofill/services/desktop-autotype.service.ts
@@ -0,0 +1,47 @@
+import { combineLatest, map, Observable, of } from "rxjs";
+
+import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
+import {
+  GlobalStateProvider,
+  AUTOTYPE_SETTINGS_DISK,
+  KeyDefinition,
+} from "@bitwarden/common/platform/state";
+
+export const AUTOTYPE_ENABLED = new KeyDefinition<boolean>(
+  AUTOTYPE_SETTINGS_DISK,
+  "autotypeEnabled",
+  { deserializer: (b) => b },
+);
+
+export class DesktopAutotypeService {
+  private readonly autotypeEnabledState = this.globalStateProvider.get(AUTOTYPE_ENABLED);
+
+  autotypeEnabled$: Observable<boolean> = of(false);
+
+  constructor(
+    private configService: ConfigService,
+    private globalStateProvider: GlobalStateProvider,
+    private isWindows: boolean,
+  ) {
+    if (this.isWindows) {
+      this.autotypeEnabled$ = combineLatest([
+        this.autotypeEnabledState.state$,
+        this.configService.getFeatureFlag$(FeatureFlag.WindowsDesktopAutotype),
+      ]).pipe(
+        map(
+          ([autotypeEnabled, windowsDesktopAutotypeFeatureFlag]) =>
+            autotypeEnabled && windowsDesktopAutotypeFeatureFlag,
+        ),
+      );
+    }
+  }
+
+  init() {}
+
+  async setAutotypeEnabledState(enabled: boolean): Promise<void> {
+    await this.autotypeEnabledState.update(() => enabled, {
+      shouldUpdate: (currentlyEnabled) => currentlyEnabled !== enabled,
+    });
+  }
+}
diff --git a/apps/desktop/src/locales/en/messages.json b/apps/desktop/src/locales/en/messages.json
index 881d30bd171..1b645c9e7e2 100644
--- a/apps/desktop/src/locales/en/messages.json
+++ b/apps/desktop/src/locales/en/messages.json
@@ -3997,5 +3997,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Enable autotype shortcut"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
   }
 }
diff --git a/apps/desktop/src/main.ts b/apps/desktop/src/main.ts
index d91d37c9689..8c92131617a 100644
--- a/apps/desktop/src/main.ts
+++ b/apps/desktop/src/main.ts
@@ -32,8 +32,10 @@ import { MemoryStorageService as MemoryStorageServiceForStateProviders } from "@
 import { DefaultBiometricStateService } from "@bitwarden/key-management";
 import { NodeCryptoFunctionService } from "@bitwarden/node/services/node-crypto-function.service";
 
+import { MainDesktopAutotypeService } from "./autofill/main/main-desktop-autotype.service";
 import { MainSshAgentService } from "./autofill/main/main-ssh-agent.service";
 import { DesktopAutofillSettingsService } from "./autofill/services/desktop-autofill-settings.service";
+import { DesktopAutotypeService } from "./autofill/services/desktop-autotype.service";
 import { DesktopBiometricsService } from "./key-management/biometrics/desktop.biometrics.service";
 import { MainBiometricsIPCListener } from "./key-management/biometrics/main-biometrics-ipc.listener";
 import { MainBiometricsService } from "./key-management/biometrics/main-biometrics.service";
@@ -44,6 +46,7 @@ import { PowerMonitorMain } from "./main/power-monitor.main";
 import { TrayMain } from "./main/tray.main";
 import { UpdaterMain } from "./main/updater.main";
 import { WindowMain } from "./main/window.main";
+import { SlimConfigService } from "./platform/config/slim-config.service";
 import { NativeAutofillMain } from "./platform/main/autofill/native-autofill.main";
 import { ClipboardMain } from "./platform/main/clipboard.main";
 import { DesktopCredentialStorageListener } from "./platform/main/desktop-credential-storage-listener";
@@ -85,6 +88,7 @@ export class Main {
   desktopAutofillSettingsService: DesktopAutofillSettingsService;
   versionMain: VersionMain;
   sshAgentService: MainSshAgentService;
+  mainDesktopAutotypeService: MainDesktopAutotypeService;
 
   constructor() {
     // Set paths for portable builds
@@ -293,6 +297,15 @@ export class Main {
 
     this.nativeAutofillMain = new NativeAutofillMain(this.logService, this.windowMain);
     void this.nativeAutofillMain.init();
+
+    this.mainDesktopAutotypeService = new MainDesktopAutotypeService(
+      new DesktopAutotypeService(
+        new SlimConfigService(this.environmentService, globalStateProvider),
+        globalStateProvider,
+        process.platform === "win32",
+      ),
+    );
+    this.mainDesktopAutotypeService.init();
   }
 
   bootstrap() {
diff --git a/apps/desktop/src/platform/config/slim-config.service.ts b/apps/desktop/src/platform/config/slim-config.service.ts
new file mode 100644
index 00000000000..ec526cbcf1d
--- /dev/null
+++ b/apps/desktop/src/platform/config/slim-config.service.ts
@@ -0,0 +1,66 @@
+import { combineLatest, map, Observable, throwError } from "rxjs";
+import { SemVer } from "semver";
+
+import {
+  FeatureFlag,
+  FeatureFlagValueType,
+  getFeatureFlagValue,
+} from "@bitwarden/common/enums/feature-flag.enum";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
+import { ServerConfig } from "@bitwarden/common/platform/abstractions/config/server-config";
+import {
+  EnvironmentService,
+  Region,
+} from "@bitwarden/common/platform/abstractions/environment.service";
+import { ServerSettings } from "@bitwarden/common/platform/models/domain/server-settings";
+import { GLOBAL_SERVER_CONFIGURATIONS } from "@bitwarden/common/platform/services/config/default-config.service";
+import { GlobalStateProvider } from "@bitwarden/common/platform/state";
+import { UserId } from "@bitwarden/user-core";
+
+/*
+    NOT FOR GENERAL USE
+
+    If you have more uses for the config service in the main process,
+    please reach out to platform.
+*/
+export class SlimConfigService implements ConfigService {
+  constructor(
+    private environmentService: EnvironmentService,
+    private globalStateProvider: GlobalStateProvider,
+  ) {}
+
+  serverConfig$: Observable<ServerConfig> = throwError(() => {
+    return new Error("Method not implemented.");
+  });
+  serverSettings$: Observable<ServerSettings> = throwError(() => {
+    return new Error("Method not implemented.");
+  });
+  cloudRegion$: Observable<Region> = throwError(() => {
+    return new Error("Method not implemented.");
+  });
+  getFeatureFlag$<Flag extends FeatureFlag>(key: Flag): Observable<FeatureFlagValueType<Flag>> {
+    return combineLatest([
+      this.environmentService.environment$,
+      this.globalStateProvider.get(GLOBAL_SERVER_CONFIGURATIONS).state$,
+    ]).pipe(
+      map(([environment, serverConfig]) =>
+        getFeatureFlagValue(serverConfig[environment.getApiUrl()], key),
+      ),
+    );
+  }
+  userCachedFeatureFlag$<Flag extends FeatureFlag>(
+    key: Flag,
+    userId: UserId,
+  ): Observable<FeatureFlagValueType<Flag>> {
+    throw new Error("Method not implemented.");
+  }
+  getFeatureFlag<Flag extends FeatureFlag>(key: Flag): Promise<FeatureFlagValueType<Flag>> {
+    throw new Error("Method not implemented.");
+  }
+  checkServerMeetsVersionRequirement$(minimumRequiredServerVersion: SemVer): Observable<boolean> {
+    throw new Error("Method not implemented.");
+  }
+  ensureConfigFetched(): Promise<void> {
+    throw new Error("Method not implemented.");
+  }
+}
diff --git a/libs/common/src/enums/feature-flag.enum.ts b/libs/common/src/enums/feature-flag.enum.ts
index 74c3bf27c99..5e227dff7c7 100644
--- a/libs/common/src/enums/feature-flag.enum.ts
+++ b/libs/common/src/enums/feature-flag.enum.ts
@@ -25,6 +25,7 @@ export enum FeatureFlag {
   NotificationRefresh = "notification-refresh",
   UseTreeWalkerApiForPageDetailsCollection = "use-tree-walker-api-for-page-details-collection",
   MacOsNativeCredentialSync = "macos-native-credential-sync",
+  WindowsDesktopAutotype = "windows-desktop-autotype",
 
   /* Billing */
   TrialPaymentOptional = "PM-8163-trial-payment",
@@ -86,6 +87,7 @@ export const DefaultFeatureFlagValue = {
   [FeatureFlag.NotificationRefresh]: FALSE,
   [FeatureFlag.UseTreeWalkerApiForPageDetailsCollection]: FALSE,
   [FeatureFlag.MacOsNativeCredentialSync]: FALSE,
+  [FeatureFlag.WindowsDesktopAutotype]: FALSE,
 
   /* Data Insights and Reporting */
   [FeatureFlag.EnableRiskInsightsNotifications]: FALSE,
diff --git a/libs/common/src/platform/state/state-definitions.ts b/libs/common/src/platform/state/state-definitions.ts
index 7472520189c..93c489a343e 100644
--- a/libs/common/src/platform/state/state-definitions.ts
+++ b/libs/common/src/platform/state/state-definitions.ts
@@ -95,6 +95,8 @@ export const AUTOFILL_SETTINGS_DISK_LOCAL = new StateDefinition("autofillSetting
   web: "disk-local",
 });
 
+export const AUTOTYPE_SETTINGS_DISK = new StateDefinition("autotypeSettings", "disk");
+
 // Components
 
 export const NEW_WEB_LAYOUT_BANNER_DISK = new StateDefinition("newWebLayoutBanner", "disk", {

From 72d6eb3d995f914e46927dd10b90bfa46ae65202 Mon Sep 17 00:00:00 2001
From: Jason Ng <jng@bitwarden.com>
Date: Tue, 15 Jul 2025 12:27:24 -0400
Subject: [PATCH 139/239] [PM-23199] improve search speed for large web vault
 (#15466)

---
 apps/web/src/app/vault/individual-vault/vault.component.ts | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/apps/web/src/app/vault/individual-vault/vault.component.ts b/apps/web/src/app/vault/individual-vault/vault.component.ts
index db77a2be8ea..380e0280b5a 100644
--- a/apps/web/src/app/vault/individual-vault/vault.component.ts
+++ b/apps/web/src/app/vault/individual-vault/vault.component.ts
@@ -16,6 +16,7 @@ import {
   catchError,
   concatMap,
   debounceTime,
+  distinctUntilChanged,
   filter,
   first,
   map,
@@ -334,7 +335,11 @@ export class VaultComponent implements OnInit, OnDestroy {
     );
 
     this.searchText$
-      .pipe(debounceTime(SearchTextDebounceInterval), takeUntil(this.destroy$))
+      .pipe(
+        debounceTime(SearchTextDebounceInterval),
+        distinctUntilChanged(),
+        takeUntil(this.destroy$),
+      )
       .subscribe((searchText) =>
         this.router.navigate([], {
           queryParams: { search: Utils.isNullOrEmpty(searchText) ? null : searchText },

From 6cb6316afdc6e1803a7311e76ff83cfcc6e3193d Mon Sep 17 00:00:00 2001
From: SmithThe4th <gsmith@bitwarden.com>
Date: Tue, 15 Jul 2025 17:21:15 -0400
Subject: [PATCH 140/239] Handle string, enc string (split is not a function)
 errors during browser extension deserialization (#15586)

---
 .../src/vault/models/view/attachment.view.ts     | 16 +++++++++++++---
 1 file changed, 13 insertions(+), 3 deletions(-)

diff --git a/libs/common/src/vault/models/view/attachment.view.ts b/libs/common/src/vault/models/view/attachment.view.ts
index d943d21367d..840625dd2d0 100644
--- a/libs/common/src/vault/models/view/attachment.view.ts
+++ b/libs/common/src/vault/models/view/attachment.view.ts
@@ -45,7 +45,17 @@ export class AttachmentView implements View {
 
   static fromJSON(obj: Partial<Jsonify<AttachmentView>>): AttachmentView {
     const key = obj.key == null ? null : SymmetricCryptoKey.fromJSON(obj.key);
-    const encryptedKey = obj.encryptedKey == null ? undefined : new EncString(obj.encryptedKey);
+
+    let encryptedKey: EncString | undefined;
+    if (obj.encryptedKey != null) {
+      if (typeof obj.encryptedKey === "string") {
+        // If the key is a string, we need to parse it as EncString
+        encryptedKey = EncString.fromJSON(obj.encryptedKey);
+      } else if ((obj.encryptedKey as any) instanceof EncString) {
+        // If the key is already an EncString instance, we can use it directly
+        encryptedKey = obj.encryptedKey;
+      }
+    }
     return Object.assign(new AttachmentView(), obj, { key: key, encryptedKey: encryptedKey });
   }
 
@@ -80,8 +90,8 @@ export class AttachmentView implements View {
     view.sizeName = obj.sizeName ?? null;
     view.fileName = obj.fileName ?? null;
     // TODO: PM-23005 - Temporary field, should be removed when encrypted migration is complete
-    view.key = obj.key ? SymmetricCryptoKey.fromString(obj.decryptedKey) : null;
-    view.encryptedKey = new EncString(obj.key);
+    view.key = obj.decryptedKey ? SymmetricCryptoKey.fromString(obj.decryptedKey) : null;
+    view.encryptedKey = obj.key ? new EncString(obj.key) : undefined;
 
     return view;
   }

From 97ec9a633988cbed7790ced508368e37384f5ca9 Mon Sep 17 00:00:00 2001
From: Todd Martin <106564991+trmartin4@users.noreply.github.com>
Date: Tue, 15 Jul 2025 17:25:45 -0400
Subject: [PATCH 141/239] fix(SignalR): Revert "[PM-23062] Fix extra signalr
 connections"

This reverts commit ec7a2613cc5d0c7d19c7c8a9c274a0fc63300f3a.
---
 .../config/config-api.service.abstraction.ts  |  2 +-
 .../abstractions/environment.service.ts       | 11 +--
 .../services/config/config-api.service.ts     |  2 +-
 .../services/config/config.service.spec.ts    | 32 ++++---
 .../services/config/default-config.service.ts | 87 +++++++------------
 .../services/default-environment.service.ts   |  9 +-
 6 files changed, 54 insertions(+), 89 deletions(-)

diff --git a/libs/common/src/platform/abstractions/config/config-api.service.abstraction.ts b/libs/common/src/platform/abstractions/config/config-api.service.abstraction.ts
index 0460e8c715f..3c191f59ccc 100644
--- a/libs/common/src/platform/abstractions/config/config-api.service.abstraction.ts
+++ b/libs/common/src/platform/abstractions/config/config-api.service.abstraction.ts
@@ -5,5 +5,5 @@ export abstract class ConfigApiServiceAbstraction {
   /**
    * Fetches the server configuration for the given user. If no user is provided, the configuration will not contain user-specific context.
    */
-  abstract get(userId: UserId | null): Promise<ServerConfigResponse>;
+  abstract get(userId: UserId | undefined): Promise<ServerConfigResponse>;
 }
diff --git a/libs/common/src/platform/abstractions/environment.service.ts b/libs/common/src/platform/abstractions/environment.service.ts
index 86a0fbea242..b8931656848 100644
--- a/libs/common/src/platform/abstractions/environment.service.ts
+++ b/libs/common/src/platform/abstractions/environment.service.ts
@@ -95,13 +95,6 @@ export interface Environment {
  */
 export abstract class EnvironmentService {
   abstract environment$: Observable<Environment>;
-
-  /**
-   * The environment stored in global state, when a user signs in the state stored here will become
-   * their user environment.
-   */
-  abstract globalEnvironment$: Observable<Environment>;
-
   abstract cloudWebVaultUrl$: Observable<string>;
 
   /**
@@ -132,12 +125,12 @@ export abstract class EnvironmentService {
    * @param userId - The user id to set the cloud web vault app URL for. If null or undefined the global environment is set.
    * @param region - The region of the cloud web vault app.
    */
-  abstract setCloudRegion(userId: UserId | null, region: Region): Promise<void>;
+  abstract setCloudRegion(userId: UserId, region: Region): Promise<void>;
 
   /**
    * Get the environment from state. Useful if you need to get the environment for another user.
    */
-  abstract getEnvironment$(userId: UserId): Observable<Environment>;
+  abstract getEnvironment$(userId: UserId): Observable<Environment | undefined>;
 
   /**
    * @deprecated Use {@link getEnvironment$} instead.
diff --git a/libs/common/src/platform/services/config/config-api.service.ts b/libs/common/src/platform/services/config/config-api.service.ts
index b7ecb9c8712..f283410acea 100644
--- a/libs/common/src/platform/services/config/config-api.service.ts
+++ b/libs/common/src/platform/services/config/config-api.service.ts
@@ -10,7 +10,7 @@ export class ConfigApiService implements ConfigApiServiceAbstraction {
     private tokenService: TokenService,
   ) {}
 
-  async get(userId: UserId | null): Promise<ServerConfigResponse> {
+  async get(userId: UserId | undefined): Promise<ServerConfigResponse> {
     // Authentication adds extra context to config responses, if the user has an access token, we want to use it
     // We don't particularly care about ensuring the token is valid and not expired, just that it exists
     const authed: boolean =
diff --git a/libs/common/src/platform/services/config/config.service.spec.ts b/libs/common/src/platform/services/config/config.service.spec.ts
index e8a1872c4c1..ea3b56a32f1 100644
--- a/libs/common/src/platform/services/config/config.service.spec.ts
+++ b/libs/common/src/platform/services/config/config.service.spec.ts
@@ -10,9 +10,9 @@ import {
   FakeGlobalState,
   FakeSingleUserState,
   FakeStateProvider,
+  awaitAsync,
   mockAccountServiceWith,
 } from "../../../../spec";
-import { Matrix } from "../../../../spec/matrix";
 import { subscribeTo } from "../../../../spec/observable-tracker";
 import { AuthService } from "../../../auth/abstractions/auth.service";
 import { AuthenticationStatus } from "../../../auth/enums/authentication-status";
@@ -74,8 +74,7 @@ describe("ConfigService", () => {
     });
 
     beforeEach(() => {
-      Matrix.autoMockMethod(environmentService.getEnvironment$, () => environmentSubject);
-      environmentService.globalEnvironment$ = environmentSubject;
+      environmentService.environment$ = environmentSubject;
       sut = new DefaultConfigService(
         configApiService,
         environmentService,
@@ -99,12 +98,9 @@ describe("ConfigService", () => {
             : serverConfigFactory(activeApiUrl + userId, tooOld);
         const globalStored =
           configStateDescription === "missing"
-            ? {
-                [activeApiUrl]: null,
-              }
+            ? {}
             : {
                 [activeApiUrl]: serverConfigFactory(activeApiUrl, tooOld),
-                [activeApiUrl + "0"]: serverConfigFactory(activeApiUrl + userId, tooOld),
               };
 
         beforeEach(() => {
@@ -112,6 +108,11 @@ describe("ConfigService", () => {
           userState.nextState(userStored);
         });
 
+        // sanity check
+        test("authed and unauthorized state are different", () => {
+          expect(globalStored[activeApiUrl]).not.toEqual(userStored);
+        });
+
         describe("fail to fetch", () => {
           beforeEach(() => {
             configApiService.get.mockRejectedValue(new Error("Unable to fetch"));
@@ -177,7 +178,6 @@ describe("ConfigService", () => {
         beforeEach(() => {
           globalState.stateSubject.next(globalStored);
           userState.nextState(userStored);
-          Matrix.autoMockMethod(environmentService.getEnvironment$, () => environmentSubject);
         });
         it("does not fetch from server", async () => {
           await firstValueFrom(sut.serverConfig$);
@@ -189,13 +189,21 @@ describe("ConfigService", () => {
           const actual = await firstValueFrom(sut.serverConfig$);
           expect(actual).toEqual(activeUserId ? userStored : globalStored[activeApiUrl]);
         });
+
+        it("does not complete after emit", async () => {
+          const emissions = [];
+          const subscription = sut.serverConfig$.subscribe((v) => emissions.push(v));
+          await awaitAsync();
+          expect(emissions.length).toBe(1);
+          expect(subscription.closed).toBe(false);
+        });
       });
     });
   });
 
   it("gets global config when there is an locked active user", async () => {
     await accountService.switchAccount(userId);
-    environmentService.globalEnvironment$ = of(environmentFactory(activeApiUrl));
+    environmentService.environment$ = of(environmentFactory(activeApiUrl));
 
     globalState.stateSubject.next({
       [activeApiUrl]: serverConfigFactory(activeApiUrl + "global"),
@@ -228,8 +236,7 @@ describe("ConfigService", () => {
 
     beforeEach(() => {
       environmentSubject = new Subject<Environment>();
-      environmentService.globalEnvironment$ = environmentSubject;
-      Matrix.autoMockMethod(environmentService.getEnvironment$, () => environmentSubject);
+      environmentService.environment$ = environmentSubject;
       sut = new DefaultConfigService(
         configApiService,
         environmentService,
@@ -320,8 +327,7 @@ describe("ConfigService", () => {
 
     beforeEach(async () => {
       const config = serverConfigFactory("existing-data", tooOld);
-      environmentService.globalEnvironment$ = environmentSubject;
-      Matrix.autoMockMethod(environmentService.getEnvironment$, () => environmentSubject);
+      environmentService.environment$ = environmentSubject;
 
       globalState.stateSubject.next({ [apiUrl(0)]: config });
       userState.stateSubject.next({
diff --git a/libs/common/src/platform/services/config/default-config.service.ts b/libs/common/src/platform/services/config/default-config.service.ts
index 4297b65cb60..33f86d30885 100644
--- a/libs/common/src/platform/services/config/default-config.service.ts
+++ b/libs/common/src/platform/services/config/default-config.service.ts
@@ -1,18 +1,17 @@
+// FIXME: Update this file to be type safe and remove this and next line
+// @ts-strict-ignore
 import {
   combineLatest,
-  distinctUntilChanged,
   firstValueFrom,
   map,
   mergeWith,
   NEVER,
   Observable,
   of,
-  ReplaySubject,
-  share,
+  shareReplay,
   Subject,
   switchMap,
   tap,
-  timer,
 } from "rxjs";
 import { SemVer } from "semver";
 
@@ -51,15 +50,11 @@ export const GLOBAL_SERVER_CONFIGURATIONS = KeyDefinition.record<ServerConfig, A
   },
 );
 
-const environmentComparer = (previous: Environment, current: Environment) => {
-  return previous.getApiUrl() === current.getApiUrl();
-};
-
 // FIXME: currently we are limited to api requests for active users. Update to accept a UserId and APIUrl once ApiService supports it.
 export class DefaultConfigService implements ConfigService {
-  private failedFetchFallbackSubject = new Subject<ServerConfig | null>();
+  private failedFetchFallbackSubject = new Subject<ServerConfig>();
 
-  serverConfig$: Observable<ServerConfig | null>;
+  serverConfig$: Observable<ServerConfig>;
 
   serverSettings$: Observable<ServerSettings>;
 
@@ -72,51 +67,25 @@ export class DefaultConfigService implements ConfigService {
     private stateProvider: StateProvider,
     private authService: AuthService,
   ) {
-    const globalConfig$ = this.environmentService.globalEnvironment$.pipe(
-      distinctUntilChanged(environmentComparer),
-      switchMap((environment) =>
-        this.globalConfigFor$(environment.getApiUrl()).pipe(
-          map((config) => {
-            return [config, null as UserId | null, environment] as const;
-          }),
-        ),
-      ),
+    const userId$ = this.stateProvider.activeUserId$;
+    const authStatus$ = userId$.pipe(
+      switchMap((userId) => (userId == null ? of(null) : this.authService.authStatusFor$(userId))),
     );
 
-    this.serverConfig$ = this.stateProvider.activeUserId$.pipe(
-      distinctUntilChanged(),
-      switchMap((userId) => {
-        if (userId == null) {
-          // Global
-          return globalConfig$;
+    this.serverConfig$ = combineLatest([
+      userId$,
+      this.environmentService.environment$,
+      authStatus$,
+    ]).pipe(
+      switchMap(([userId, environment, authStatus]) => {
+        if (userId == null || authStatus !== AuthenticationStatus.Unlocked) {
+          return this.globalConfigFor$(environment.getApiUrl()).pipe(
+            map((config) => [config, null, environment] as const),
+          );
         }
 
-        return this.authService.authStatusFor$(userId).pipe(
-          map((authStatus) => authStatus === AuthenticationStatus.Unlocked),
-          distinctUntilChanged(),
-          switchMap((isUnlocked) => {
-            if (!isUnlocked) {
-              return globalConfig$;
-            }
-
-            return combineLatest([
-              this.environmentService
-                .getEnvironment$(userId)
-                .pipe(distinctUntilChanged(environmentComparer)),
-              this.userConfigFor$(userId),
-            ]).pipe(
-              switchMap(([environment, config]) => {
-                if (config == null) {
-                  // If the user doesn't have any config yet, use the global config for that url as the fallback
-                  return this.globalConfigFor$(environment.getApiUrl()).pipe(
-                    map((globalConfig) => [globalConfig, userId, environment] as const),
-                  );
-                }
-
-                return of([config, userId, environment] as const);
-              }),
-            );
-          }),
+        return this.userConfigFor$(userId).pipe(
+          map((config) => [config, userId, environment] as const),
         );
       }),
       tap(async (rec) => {
@@ -137,7 +106,7 @@ export class DefaultConfigService implements ConfigService {
       }),
       // If fetch fails, we'll emit on this subject to fallback to the existing config
       mergeWith(this.failedFetchFallbackSubject),
-      share({ connector: () => new ReplaySubject(1), resetOnRefCountZero: () => timer(1000) }),
+      shareReplay({ refCount: true, bufferSize: 1 }),
     );
 
     this.cloudRegion$ = this.serverConfig$.pipe(
@@ -186,8 +155,8 @@ export class DefaultConfigService implements ConfigService {
 
   // Updates the on-disk configuration with a newly retrieved configuration
   private async renewConfig(
-    existingConfig: ServerConfig | null,
-    userId: UserId | null,
+    existingConfig: ServerConfig,
+    userId: UserId,
     environment: Environment,
   ): Promise<void> {
     try {
@@ -195,7 +164,9 @@ export class DefaultConfigService implements ConfigService {
       // somewhat quickly even though it may not be accurate, we won't cancel the HTTP request
       // though so that hopefully it can have finished and hydrated a more accurate value.
       const handle = setTimeout(() => {
-        this.logService.info("Environment did not respond in time, emitting previous config.");
+        this.logService.info(
+          "Self-host environment did not respond in time, emitting previous config.",
+        );
         this.failedFetchFallbackSubject.next(existingConfig);
       }, SLOW_EMISSION_GUARD);
       const response = await this.configApiService.get(userId);
@@ -228,13 +199,13 @@ export class DefaultConfigService implements ConfigService {
     }
   }
 
-  private globalConfigFor$(apiUrl: string): Observable<ServerConfig | null> {
+  private globalConfigFor$(apiUrl: string): Observable<ServerConfig> {
     return this.stateProvider
       .getGlobal(GLOBAL_SERVER_CONFIGURATIONS)
-      .state$.pipe(map((configs) => configs?.[apiUrl] ?? null));
+      .state$.pipe(map((configs) => configs?.[apiUrl]));
   }
 
-  private userConfigFor$(userId: UserId): Observable<ServerConfig | null> {
+  private userConfigFor$(userId: UserId): Observable<ServerConfig> {
     return this.stateProvider.getUser(userId, USER_SERVER_CONFIG).state$;
   }
 }
diff --git a/libs/common/src/platform/services/default-environment.service.ts b/libs/common/src/platform/services/default-environment.service.ts
index 4a1af68505a..df55693ba0b 100644
--- a/libs/common/src/platform/services/default-environment.service.ts
+++ b/libs/common/src/platform/services/default-environment.service.ts
@@ -133,7 +133,6 @@ export class DefaultEnvironmentService implements EnvironmentService {
   );
 
   environment$: Observable<Environment>;
-  globalEnvironment$: Observable<Environment>;
   cloudWebVaultUrl$: Observable<string>;
 
   constructor(
@@ -149,10 +148,6 @@ export class DefaultEnvironmentService implements EnvironmentService {
       distinctUntilChanged((oldUserId: UserId, newUserId: UserId) => oldUserId == newUserId),
     );
 
-    this.globalEnvironment$ = this.stateProvider
-      .getGlobal(GLOBAL_ENVIRONMENT_KEY)
-      .state$.pipe(map((state) => this.buildEnvironment(state?.region, state?.urls)));
-
     this.environment$ = account$.pipe(
       switchMap((userId) => {
         const t = userId
@@ -268,7 +263,7 @@ export class DefaultEnvironmentService implements EnvironmentService {
     return new SelfHostedEnvironment(urls);
   }
 
-  async setCloudRegion(userId: UserId | null, region: CloudRegion) {
+  async setCloudRegion(userId: UserId, region: CloudRegion) {
     if (userId == null) {
       await this.globalCloudRegionState.update(() => region);
     } else {
@@ -276,7 +271,7 @@ export class DefaultEnvironmentService implements EnvironmentService {
     }
   }
 
-  getEnvironment$(userId: UserId): Observable<Environment> {
+  getEnvironment$(userId: UserId): Observable<Environment | undefined> {
     return this.stateProvider.getUser(userId, USER_ENVIRONMENT_KEY).state$.pipe(
       map((state) => {
         return this.buildEnvironment(state?.region, state?.urls);

From 6811ea4c0b67329af8c39dcb8ee7a494ca140f78 Mon Sep 17 00:00:00 2001
From: Vicki League <vleague@bitwarden.com>
Date: Wed, 16 Jul 2025 08:39:37 -0400
Subject: [PATCH 142/239] [CL-707] Migrate CL codebase to signals (#15340)

---
 .../popup/layout/popup-back.directive.ts      |  2 +-
 .../navigation-switcher.component.spec.ts     |  2 +-
 .../vault-banners.component.spec.ts           |  2 +-
 .../src/a11y/a11y-title.directive.ts          |  2 +
 .../anon-layout/anon-layout.component.html    | 22 ++---
 .../src/anon-layout/anon-layout.component.ts  | 39 +++++----
 .../src/anon-layout/anon-layout.stories.ts    | 19 +----
 .../src/async-actions/bit-action.directive.ts |  8 +-
 .../src/async-actions/bit-submit.directive.ts | 10 +--
 .../async-actions/form-button.directive.ts    | 15 ++--
 .../src/async-actions/standalone.stories.ts   |  1 -
 .../components/src/avatar/avatar.component.ts | 31 +++----
 .../src/badge-list/badge-list.component.html  |  6 +-
 .../src/badge-list/badge-list.component.ts    | 36 ++++-----
 .../components/src/badge/badge.component.html |  2 +-
 libs/components/src/badge/badge.component.ts  | 23 +++---
 .../src/banner/banner.component.html          |  8 +-
 .../src/banner/banner.component.spec.ts       |  6 +-
 .../components/src/banner/banner.component.ts | 19 ++---
 .../src/breadcrumbs/breadcrumb.component.html |  2 +-
 .../src/breadcrumbs/breadcrumb.component.ts   | 14 ++--
 .../breadcrumbs/breadcrumbs.component.html    | 33 ++++----
 .../src/breadcrumbs/breadcrumbs.component.ts  | 11 ++-
 .../components/src/button/button.component.ts | 26 ++----
 .../src/callout/callout.component.html        |  4 +-
 .../src/callout/callout.component.spec.ts     | 24 +++---
 .../src/callout/callout.component.ts          | 32 ++++----
 .../components/src/callout/callout.stories.ts | 15 ++++
 .../src/checkbox/checkbox.component.ts        |  4 +
 .../src/checkbox/checkbox.stories.ts          |  2 +-
 .../chip-select/chip-select.component.html    |  4 +-
 .../src/chip-select/chip-select.component.ts  | 18 +++--
 .../src/copy-click/copy-click.directive.ts    | 26 ++++--
 .../src/dialog/dialog/dialog.component.html   | 26 +++---
 .../src/dialog/dialog/dialog.component.ts     | 26 ++----
 .../directives/dialog-close.directive.ts      |  6 +-
 .../dialog-title-container.directive.ts       |  4 +-
 .../disclosure-trigger-for.directive.ts       | 10 +--
 .../src/disclosure/disclosure.component.ts    |  2 +
 .../form-control/form-control.component.ts    | 25 ++----
 .../src/form-control/label.component.ts       | 18 +++--
 .../src/form-field/error-summary.component.ts |  7 +-
 .../src/form-field/error.component.ts         | 23 +++---
 .../src/form-field/form-field-control.ts      |  9 ++-
 .../src/form-field/form-field.component.ts    | 10 ++-
 .../src/form-field/form-field.stories.ts      | 15 ++--
 .../password-input-toggle.directive.ts        | 23 +++---
 .../form-field/password-input-toggle.spec.ts  | 18 ++---
 .../src/form-field/prefix.directive.ts        | 11 +--
 .../src/form-field/suffix.directive.ts        | 11 +--
 .../icon-button/icon-button.component.html    |  2 +-
 .../src/icon-button/icon-button.component.ts  | 22 ++---
 libs/components/src/icon/icon.component.ts    | 28 ++++---
 .../src/icon/icon.components.spec.ts          |  6 +-
 .../src/input/autofocus.directive.ts          | 18 +++--
 libs/components/src/input/autofocus.mdx       | 21 +++++
 .../components/src/input/autofocus.stories.ts | 26 ++++++
 libs/components/src/input/input.directive.ts  | 28 ++++---
 .../src/item/item-content.component.html      |  8 +-
 .../src/item/item-content.component.ts        |  4 +-
 libs/components/src/link/link.directive.ts    | 17 +---
 .../src/menu/menu-item.directive.ts           |  3 +
 .../src/menu/menu-trigger-for.directive.ts    | 35 ++++----
 libs/components/src/menu/menu.component.html  |  6 +-
 libs/components/src/menu/menu.component.ts    |  8 +-
 .../multi-select/multi-select.component.html  |  6 +-
 .../multi-select/multi-select.component.ts    | 33 +++++---
 .../src/navigation/nav-base.component.ts      | 18 ++---
 .../src/navigation/nav-group.component.html   | 24 +++---
 .../src/navigation/nav-group.component.ts     | 23 +++---
 .../src/navigation/nav-item.component.html    | 18 ++---
 .../src/navigation/nav-item.component.ts      |  6 +-
 .../src/navigation/nav-logo.component.html    |  8 +-
 .../src/navigation/nav-logo.component.ts      | 11 +--
 .../src/navigation/side-nav.component.html    |  2 +-
 .../src/navigation/side-nav.component.ts      |  4 +-
 .../src/no-items/no-items.component.html      |  2 +-
 .../src/no-items/no-items.component.ts        |  4 +-
 .../popover/popover-trigger-for.directive.ts  | 35 ++++----
 .../src/popover/popover.component.html        |  2 +-
 .../src/popover/popover.component.ts          |  4 +-
 .../src/progress/progress.component.html      |  4 +-
 .../src/progress/progress.component.ts        | 22 ++---
 .../radio-button/radio-button.component.html  |  4 +-
 .../radio-button.component.spec.ts            | 81 +++++++++----------
 .../radio-button/radio-button.component.ts    | 19 +++--
 .../src/radio-button/radio-button.stories.ts  |  6 +-
 .../src/radio-button/radio-group.component.ts | 11 ++-
 .../src/radio-button/radio-input.component.ts | 11 ++-
 .../src/search/search.component.html          |  6 +-
 .../components/src/search/search.component.ts | 10 +--
 .../src/section/section.component.ts          |  6 +-
 .../components/src/select/option.component.ts | 18 ++---
 libs/components/src/select/option.ts          |  4 +
 .../src/select/select.component.html          |  6 +-
 .../src/select/select.component.spec.ts       |  8 +-
 .../components/src/select/select.component.ts | 53 +++++++-----
 .../src/shared/data-to-signal-type.ts         |  5 ++
 .../src/stepper/stepper.component.ts          |  2 +
 libs/components/src/table/row.directive.ts    |  6 +-
 .../src/table/sortable.component.ts           | 43 +++++-----
 .../src/table/table-scroll.component.html     |  4 +-
 .../src/table/table-scroll.component.ts       |  6 +-
 libs/components/src/table/table.component.ts  | 18 +++--
 .../tabs/shared/tab-list-item.directive.ts    | 11 ++-
 .../src/tabs/tab-group/tab-body.component.ts  | 34 ++++----
 .../tabs/tab-group/tab-group.component.html   | 10 +--
 .../src/tabs/tab-group/tab-group.component.ts |  7 +-
 .../src/tabs/tab-group/tab.component.ts       |  8 +-
 .../tabs/tab-nav-bar/tab-link.component.html  |  2 +-
 .../tabs/tab-nav-bar/tab-link.component.ts    | 15 +++-
 .../tab-nav-bar/tab-nav-bar.component.html    |  2 +-
 .../tabs/tab-nav-bar/tab-nav-bar.component.ts |  4 +-
 libs/components/src/tabs/tabs.stories.ts      |  8 +-
 .../components/src/toast/toast.component.html |  8 +-
 libs/components/src/toast/toast.component.ts  | 18 ++---
 libs/components/src/toast/toast.service.ts    |  5 +-
 libs/components/src/toast/toast.stories.ts    |  9 ++-
 .../toggle-group/toggle-group.component.ts    | 11 +--
 .../src/toggle-group/toggle.component.spec.ts | 71 +++++++---------
 .../src/toggle-group/toggle.component.ts      |  8 +-
 .../src/typography/typography.directive.ts    | 15 ++--
 .../item-details-section.component.spec.ts    |  6 +-
 .../login-credentials-view.component.spec.ts  |  4 +-
 124 files changed, 944 insertions(+), 809 deletions(-)
 create mode 100644 libs/components/src/input/autofocus.mdx
 create mode 100644 libs/components/src/input/autofocus.stories.ts
 create mode 100644 libs/components/src/shared/data-to-signal-type.ts

diff --git a/apps/browser/src/platform/popup/layout/popup-back.directive.ts b/apps/browser/src/platform/popup/layout/popup-back.directive.ts
index 919cee71ba2..ce8ebff5ec5 100644
--- a/apps/browser/src/platform/popup/layout/popup-back.directive.ts
+++ b/apps/browser/src/platform/popup/layout/popup-back.directive.ts
@@ -20,6 +20,6 @@ export class PopupBackBrowserDirective extends BitActionDirective {
     super(buttonComponent, validationService, logService);
 
     // override `bitAction` input; the parent handles the rest
-    this.handler = () => this.router.back();
+    this.handler.set(() => this.router.back());
   }
 }
diff --git a/apps/web/src/app/layouts/product-switcher/navigation-switcher/navigation-switcher.component.spec.ts b/apps/web/src/app/layouts/product-switcher/navigation-switcher/navigation-switcher.component.spec.ts
index 6e21c6c142a..d1b82bc114d 100644
--- a/apps/web/src/app/layouts/product-switcher/navigation-switcher/navigation-switcher.component.spec.ts
+++ b/apps/web/src/app/layouts/product-switcher/navigation-switcher/navigation-switcher.component.spec.ts
@@ -195,7 +195,7 @@ describe("NavigationProductSwitcherComponent", () => {
 
       const navItem = fixture.debugElement.query(By.directive(NavItemComponent));
 
-      expect(navItem.componentInstance.forceActiveStyles).toBe(true);
+      expect(navItem.componentInstance.forceActiveStyles()).toBe(true);
     });
   });
 
diff --git a/apps/web/src/app/vault/individual-vault/vault-banners/vault-banners.component.spec.ts b/apps/web/src/app/vault/individual-vault/vault-banners/vault-banners.component.spec.ts
index 197b6426468..9bcc3fcac1c 100644
--- a/apps/web/src/app/vault/individual-vault/vault-banners/vault-banners.component.spec.ts
+++ b/apps/web/src/app/vault/individual-vault/vault-banners/vault-banners.component.spec.ts
@@ -112,7 +112,7 @@ describe("VaultBannersComponent", () => {
       fixture.detectChanges();
 
       const banner = fixture.debugElement.query(By.directive(BannerComponent));
-      expect(banner.componentInstance.bannerType).toBe("premium");
+      expect(banner.componentInstance.bannerType()).toBe("premium");
     });
 
     it("dismisses premium banner", async () => {
diff --git a/libs/components/src/a11y/a11y-title.directive.ts b/libs/components/src/a11y/a11y-title.directive.ts
index f5f016b93c0..80486ab9bcf 100644
--- a/libs/components/src/a11y/a11y-title.directive.ts
+++ b/libs/components/src/a11y/a11y-title.directive.ts
@@ -6,6 +6,8 @@ import { Directive, ElementRef, Input, OnInit, Renderer2 } from "@angular/core";
   selector: "[appA11yTitle]",
 })
 export class A11yTitleDirective implements OnInit {
+  // TODO: Skipped for signal migration because:
+  //  Accessor inputs cannot be migrated as they are too complex.
   @Input() set appA11yTitle(title: string) {
     this.title = title;
     this.setAttributes();
diff --git a/libs/components/src/anon-layout/anon-layout.component.html b/libs/components/src/anon-layout/anon-layout.component.html
index 4dfde5e7ef3..e56c14165e4 100644
--- a/libs/components/src/anon-layout/anon-layout.component.html
+++ b/libs/components/src/anon-layout/anon-layout.component.html
@@ -6,7 +6,7 @@
   }"
 >
   <a
-    *ngIf="!hideLogo"
+    *ngIf="!hideLogo()"
     [routerLink]="['/']"
     class="tw-w-[128px] tw-block tw-mb-12 [&>*]:tw-align-top"
   >
@@ -14,29 +14,29 @@
   </a>
 
   <div class="tw-text-center tw-mb-4 sm:tw-mb-6 tw-mx-auto" [ngClass]="maxWidthClass">
-    <div *ngIf="!hideIcon" class="tw-w-24 sm:tw-w-28 md:tw-w-32 tw-mx-auto">
-      <bit-icon [icon]="icon"></bit-icon>
+    <div *ngIf="!hideIcon()" class="tw-w-24 sm:tw-w-28 md:tw-w-32 tw-mx-auto">
+      <bit-icon [icon]="icon()"></bit-icon>
     </div>
 
-    <ng-container *ngIf="title">
+    <ng-container *ngIf="title()">
       <!-- Small screens -->
       <h1 bitTypography="h3" class="tw-mt-2 sm:tw-hidden">
-        {{ title }}
+        {{ title() }}
       </h1>
       <!-- Medium to Larger screens -->
       <h1 bitTypography="h2" class="tw-mt-2 tw-hidden sm:tw-block">
-        {{ title }}
+        {{ title() }}
       </h1>
     </ng-container>
 
-    <div *ngIf="subtitle" class="tw-text-sm sm:tw-text-base">{{ subtitle }}</div>
+    <div *ngIf="subtitle()" class="tw-text-sm sm:tw-text-base">{{ subtitle() }}</div>
   </div>
 
   <div
     class="tw-grow tw-w-full tw-mx-auto tw-flex tw-flex-col tw-items-center sm:tw-min-w-[28rem]"
     [ngClass]="maxWidthClass"
   >
-    @if (hideCardWrapper) {
+    @if (hideCardWrapper()) {
       <div class="tw-mb-6 sm:tw-mb-10">
         <ng-container *ngTemplateOutlet="defaultContent"></ng-container>
       </div>
@@ -50,11 +50,11 @@
     <ng-content select="[slot=secondary]"></ng-content>
   </div>
 
-  <footer *ngIf="!hideFooter" class="tw-text-center tw-mt-4 sm:tw-mt-6">
-    <div *ngIf="showReadonlyHostname" bitTypography="body2">
+  <footer *ngIf="!hideFooter()" class="tw-text-center tw-mt-4 sm:tw-mt-6">
+    <div *ngIf="showReadonlyHostname()" bitTypography="body2">
       {{ "accessing" | i18n }} {{ hostname }}
     </div>
-    <ng-container *ngIf="!showReadonlyHostname">
+    <ng-container *ngIf="!showReadonlyHostname()">
       <ng-content select="[slot=environment-selector]"></ng-content>
     </ng-container>
     <ng-container *ngIf="!hideYearAndVersion">
diff --git a/libs/components/src/anon-layout/anon-layout.component.ts b/libs/components/src/anon-layout/anon-layout.component.ts
index 1324e37a418..bb749c2d0b1 100644
--- a/libs/components/src/anon-layout/anon-layout.component.ts
+++ b/libs/components/src/anon-layout/anon-layout.component.ts
@@ -1,7 +1,15 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
 import { CommonModule } from "@angular/common";
-import { Component, HostBinding, Input, OnChanges, OnInit, SimpleChanges } from "@angular/core";
+import {
+  Component,
+  HostBinding,
+  OnChanges,
+  OnInit,
+  SimpleChanges,
+  input,
+  model,
+} from "@angular/core";
 import { RouterModule } from "@angular/router";
 import { firstValueFrom } from "rxjs";
 
@@ -29,21 +37,21 @@ export class AnonLayoutComponent implements OnInit, OnChanges {
     return ["tw-h-full"];
   }
 
-  @Input() title: string;
-  @Input() subtitle: string;
-  @Input() icon: Icon;
-  @Input() showReadonlyHostname: boolean;
-  @Input() hideLogo: boolean = false;
-  @Input() hideFooter: boolean = false;
-  @Input() hideIcon: boolean = false;
-  @Input() hideCardWrapper: boolean = false;
+  readonly title = input<string>();
+  readonly subtitle = input<string>();
+  readonly icon = model<Icon>();
+  readonly showReadonlyHostname = input<boolean>(false);
+  readonly hideLogo = input<boolean>(false);
+  readonly hideFooter = input<boolean>(false);
+  readonly hideIcon = input<boolean>(false);
+  readonly hideCardWrapper = input<boolean>(false);
 
   /**
    * Max width of the anon layout title, subtitle, and content areas.
    *
    * @default 'md'
    */
-  @Input() maxWidth: AnonLayoutMaxWidth = "md";
+  readonly maxWidth = model<AnonLayoutMaxWidth>("md");
 
   protected logo = BitwardenLogo;
   protected year: string;
@@ -54,7 +62,8 @@ export class AnonLayoutComponent implements OnInit, OnChanges {
   protected hideYearAndVersion = false;
 
   get maxWidthClass(): string {
-    switch (this.maxWidth) {
+    const maxWidth = this.maxWidth();
+    switch (maxWidth) {
       case "md":
         return "tw-max-w-md";
       case "lg":
@@ -78,19 +87,19 @@ export class AnonLayoutComponent implements OnInit, OnChanges {
   }
 
   async ngOnInit() {
-    this.maxWidth = this.maxWidth ?? "md";
+    this.maxWidth.set(this.maxWidth() ?? "md");
     this.hostname = (await firstValueFrom(this.environmentService.environment$)).getHostname();
     this.version = await this.platformUtilsService.getApplicationVersion();
 
     // If there is no icon input, then use the default icon
-    if (this.icon == null) {
-      this.icon = AnonLayoutBitwardenShield;
+    if (this.icon() == null) {
+      this.icon.set(AnonLayoutBitwardenShield);
     }
   }
 
   async ngOnChanges(changes: SimpleChanges) {
     if (changes.maxWidth) {
-      this.maxWidth = changes.maxWidth.currentValue ?? "md";
+      this.maxWidth.set(changes.maxWidth.currentValue ?? "md");
     }
   }
 }
diff --git a/libs/components/src/anon-layout/anon-layout.stories.ts b/libs/components/src/anon-layout/anon-layout.stories.ts
index 24aaf10f7ba..9abc84d2860 100644
--- a/libs/components/src/anon-layout/anon-layout.stories.ts
+++ b/libs/components/src/anon-layout/anon-layout.stories.ts
@@ -19,17 +19,7 @@ class MockPlatformUtilsService implements Partial<PlatformUtilsService> {
   getClientType = () => ClientType.Web;
 }
 
-type StoryArgs = Pick<
-  AnonLayoutComponent,
-  | "title"
-  | "subtitle"
-  | "showReadonlyHostname"
-  | "hideCardWrapper"
-  | "hideIcon"
-  | "hideLogo"
-  | "hideFooter"
-  | "maxWidth"
-> & {
+type StoryArgs = AnonLayoutComponent & {
   contentLength: "normal" | "long" | "thin";
   showSecondary: boolean;
   useDefaultIcon: boolean;
@@ -72,15 +62,14 @@ export default {
       ],
     }),
   ],
-
-  render: (args: StoryArgs) => {
+  render: (args) => {
     const { useDefaultIcon, icon, ...rest } = args;
     return {
       props: {
         ...rest,
         icon: useDefaultIcon ? null : icon,
       },
-      template: `
+      template: /*html*/ `
         <auth-anon-layout
           [title]="title"
           [subtitle]="subtitle"
@@ -160,7 +149,7 @@ export default {
     contentLength: "normal",
     showSecondary: false,
   },
-} as Meta<StoryArgs>;
+} satisfies Meta<StoryArgs>;
 
 type Story = StoryObj<StoryArgs>;
 
diff --git a/libs/components/src/async-actions/bit-action.directive.ts b/libs/components/src/async-actions/bit-action.directive.ts
index 46132803475..2d00dba1a1e 100644
--- a/libs/components/src/async-actions/bit-action.directive.ts
+++ b/libs/components/src/async-actions/bit-action.directive.ts
@@ -1,6 +1,6 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
-import { Directive, HostListener, Input, OnDestroy, Optional } from "@angular/core";
+import { Directive, HostListener, model, OnDestroy, Optional } from "@angular/core";
 import { BehaviorSubject, finalize, Subject, takeUntil, tap } from "rxjs";
 
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
@@ -38,7 +38,7 @@ export class BitActionDirective implements OnDestroy {
 
   disabled = false;
 
-  @Input("bitAction") handler: FunctionReturningAwaitable;
+  readonly handler = model<FunctionReturningAwaitable>(undefined, { alias: "bitAction" });
 
   constructor(
     private buttonComponent: ButtonLikeAbstraction,
@@ -48,12 +48,12 @@ export class BitActionDirective implements OnDestroy {
 
   @HostListener("click")
   protected async onClick() {
-    if (!this.handler || this.loading || this.disabled || this.buttonComponent.disabled()) {
+    if (!this.handler() || this.loading || this.disabled || this.buttonComponent.disabled()) {
       return;
     }
 
     this.loading = true;
-    functionToObservable(this.handler)
+    functionToObservable(this.handler())
       .pipe(
         tap({
           error: (err: unknown) => {
diff --git a/libs/components/src/async-actions/bit-submit.directive.ts b/libs/components/src/async-actions/bit-submit.directive.ts
index 838d78af8b2..cafc8d634b9 100644
--- a/libs/components/src/async-actions/bit-submit.directive.ts
+++ b/libs/components/src/async-actions/bit-submit.directive.ts
@@ -1,6 +1,6 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
-import { Directive, Input, OnDestroy, OnInit, Optional } from "@angular/core";
+import { Directive, OnDestroy, OnInit, Optional, input } from "@angular/core";
 import { FormGroupDirective } from "@angular/forms";
 import { BehaviorSubject, catchError, filter, of, Subject, switchMap, takeUntil } from "rxjs";
 
@@ -20,9 +20,9 @@ export class BitSubmitDirective implements OnInit, OnDestroy {
   private _loading$ = new BehaviorSubject<boolean>(false);
   private _disabled$ = new BehaviorSubject<boolean>(false);
 
-  @Input("bitSubmit") handler: FunctionReturningAwaitable;
+  readonly handler = input<FunctionReturningAwaitable>(undefined, { alias: "bitSubmit" });
 
-  @Input() allowDisabledFormSubmit?: boolean = false;
+  readonly allowDisabledFormSubmit = input<boolean>(false);
 
   readonly loading$ = this._loading$.asObservable();
   readonly disabled$ = this._disabled$.asObservable();
@@ -38,7 +38,7 @@ export class BitSubmitDirective implements OnInit, OnDestroy {
         switchMap(() => {
           // Calling functionToObservable executes the sync part of the handler
           // allowing the function to check form validity before it gets disabled.
-          const awaitable = functionToObservable(this.handler);
+          const awaitable = functionToObservable(this.handler());
 
           // Disable form
           this.loading = true;
@@ -61,7 +61,7 @@ export class BitSubmitDirective implements OnInit, OnDestroy {
 
   ngOnInit(): void {
     this.formGroupDirective.statusChanges.pipe(takeUntil(this.destroy$)).subscribe((c) => {
-      if (this.allowDisabledFormSubmit) {
+      if (this.allowDisabledFormSubmit()) {
         this._disabled$.next(false);
       } else {
         this._disabled$.next(c === "DISABLED");
diff --git a/libs/components/src/async-actions/form-button.directive.ts b/libs/components/src/async-actions/form-button.directive.ts
index 95a133403bf..2bbd8fa87b6 100644
--- a/libs/components/src/async-actions/form-button.directive.ts
+++ b/libs/components/src/async-actions/form-button.directive.ts
@@ -1,6 +1,6 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
-import { Directive, Input, OnDestroy, Optional } from "@angular/core";
+import { Directive, OnDestroy, Optional, input } from "@angular/core";
 import { Subject, takeUntil } from "rxjs";
 
 import { ButtonLikeAbstraction } from "../shared/button-like.abstraction";
@@ -29,8 +29,8 @@ import { BitSubmitDirective } from "./bit-submit.directive";
 export class BitFormButtonDirective implements OnDestroy {
   private destroy$ = new Subject<void>();
 
-  @Input() type: string;
-  @Input() disabled?: boolean;
+  readonly type = input<string>();
+  readonly disabled = input<boolean>();
 
   constructor(
     buttonComponent: ButtonLikeAbstraction,
@@ -39,16 +39,17 @@ export class BitFormButtonDirective implements OnDestroy {
   ) {
     if (submitDirective && buttonComponent) {
       submitDirective.loading$.pipe(takeUntil(this.destroy$)).subscribe((loading) => {
-        if (this.type === "submit") {
+        if (this.type() === "submit") {
           buttonComponent.loading.set(loading);
         } else {
-          buttonComponent.disabled.set(this.disabled || loading);
+          buttonComponent.disabled.set(this.disabled() || loading);
         }
       });
 
       submitDirective.disabled$.pipe(takeUntil(this.destroy$)).subscribe((disabled) => {
-        if (this.disabled !== false) {
-          buttonComponent.disabled.set(this.disabled || disabled);
+        const disabledValue = this.disabled();
+        if (disabledValue !== false) {
+          buttonComponent.disabled.set(disabledValue || disabled);
         }
       });
     }
diff --git a/libs/components/src/async-actions/standalone.stories.ts b/libs/components/src/async-actions/standalone.stories.ts
index 542825eb17a..07a1e2a98a2 100644
--- a/libs/components/src/async-actions/standalone.stories.ts
+++ b/libs/components/src/async-actions/standalone.stories.ts
@@ -22,7 +22,6 @@ const template = /*html*/ `
   template,
   selector: "app-promise-example",
   imports: [AsyncActionsModule, ButtonModule, IconButtonModule],
-  standalone: true,
 })
 class PromiseExampleComponent {
   statusEmoji = "🟡";
diff --git a/libs/components/src/avatar/avatar.component.ts b/libs/components/src/avatar/avatar.component.ts
index 8ccd639a41d..7c41d4e59a0 100644
--- a/libs/components/src/avatar/avatar.component.ts
+++ b/libs/components/src/avatar/avatar.component.ts
@@ -1,7 +1,7 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
 import { NgClass } from "@angular/common";
-import { Component, Input, OnChanges } from "@angular/core";
+import { Component, OnChanges, input } from "@angular/core";
 import { DomSanitizer, SafeResourceUrl } from "@angular/platform-browser";
 
 import { Utils } from "@bitwarden/common/platform/misc/utils";
@@ -25,17 +25,17 @@ const SizeClasses: Record<SizeTypes, string[]> = {
 @Component({
   selector: "bit-avatar",
   template: `@if (src) {
-    <img [src]="src" title="{{ title || text }}" [ngClass]="classList" />
+    <img [src]="src" title="{{ title() || text() }}" [ngClass]="classList" />
   }`,
   imports: [NgClass],
 })
 export class AvatarComponent implements OnChanges {
-  @Input() border = false;
-  @Input() color?: string;
-  @Input() id?: string;
-  @Input() text?: string;
-  @Input() title: string;
-  @Input() size: SizeTypes = "default";
+  readonly border = input(false);
+  readonly color = input<string>();
+  readonly id = input<string>();
+  readonly text = input<string>();
+  readonly title = input<string>();
+  readonly size = input<SizeTypes>("default");
 
   private svgCharCount = 2;
   private svgFontSize = 20;
@@ -51,13 +51,13 @@ export class AvatarComponent implements OnChanges {
 
   get classList() {
     return ["tw-rounded-full"]
-      .concat(SizeClasses[this.size] ?? [])
-      .concat(this.border ? ["tw-border", "tw-border-solid", "tw-border-secondary-600"] : []);
+      .concat(SizeClasses[this.size()] ?? [])
+      .concat(this.border() ? ["tw-border", "tw-border-solid", "tw-border-secondary-600"] : []);
   }
 
   private generate() {
     let chars: string = null;
-    const upperCaseText = this.text?.toUpperCase() ?? "";
+    const upperCaseText = this.text()?.toUpperCase() ?? "";
 
     chars = this.getFirstLetters(upperCaseText, this.svgCharCount);
 
@@ -71,12 +71,13 @@ export class AvatarComponent implements OnChanges {
     }
 
     let svg: HTMLElement;
-    let hexColor = this.color;
+    let hexColor = this.color();
 
-    if (!Utils.isNullOrWhitespace(this.color)) {
+    const id = this.id();
+    if (!Utils.isNullOrWhitespace(this.color())) {
       svg = this.createSvgElement(this.svgSize, hexColor);
-    } else if (!Utils.isNullOrWhitespace(this.id)) {
-      hexColor = Utils.stringToColor(this.id.toString());
+    } else if (!Utils.isNullOrWhitespace(id)) {
+      hexColor = Utils.stringToColor(id.toString());
       svg = this.createSvgElement(this.svgSize, hexColor);
     } else {
       hexColor = Utils.stringToColor(upperCaseText);
diff --git a/libs/components/src/badge-list/badge-list.component.html b/libs/components/src/badge-list/badge-list.component.html
index c8aa7b84680..18365cba268 100644
--- a/libs/components/src/badge-list/badge-list.component.html
+++ b/libs/components/src/badge-list/badge-list.component.html
@@ -1,6 +1,6 @@
 <div class="tw-inline-flex tw-flex-wrap tw-gap-2">
   @for (item of filteredItems; track item; let last = $last) {
-    <span bitBadge [variant]="variant" [truncate]="truncate">
+    <span bitBadge [variant]="variant()" [truncate]="truncate()">
       {{ item }}
     </span>
     @if (!last || isFiltered) {
@@ -8,8 +8,8 @@
     }
   }
   @if (isFiltered) {
-    <span bitBadge [variant]="variant">
-      {{ "plusNMore" | i18n: (items.length - filteredItems.length).toString() }}
+    <span bitBadge [variant]="variant()">
+      {{ "plusNMore" | i18n: (items().length - filteredItems.length).toString() }}
     </span>
   }
 </div>
diff --git a/libs/components/src/badge-list/badge-list.component.ts b/libs/components/src/badge-list/badge-list.component.ts
index 7b719a4ec86..b9d9a666261 100644
--- a/libs/components/src/badge-list/badge-list.component.ts
+++ b/libs/components/src/badge-list/badge-list.component.ts
@@ -1,42 +1,36 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
-
-import { Component, Input, OnChanges } from "@angular/core";
+import { Component, OnChanges, input } from "@angular/core";
 
 import { I18nPipe } from "@bitwarden/ui-common";
 
 import { BadgeModule, BadgeVariant } from "../badge";
 
+function transformMaxItems(value: number | undefined) {
+  return value == undefined ? undefined : Math.max(1, value);
+}
+
 @Component({
   selector: "bit-badge-list",
   templateUrl: "badge-list.component.html",
   imports: [BadgeModule, I18nPipe],
 })
 export class BadgeListComponent implements OnChanges {
-  private _maxItems: number;
-
   protected filteredItems: string[] = [];
   protected isFiltered = false;
 
-  @Input() variant: BadgeVariant = "primary";
-  @Input() items: string[] = [];
-  @Input() truncate = true;
+  readonly variant = input<BadgeVariant>("primary");
+  readonly items = input<string[]>([]);
+  readonly truncate = input(true);
 
-  @Input()
-  get maxItems(): number | undefined {
-    return this._maxItems;
-  }
-
-  set maxItems(value: number | undefined) {
-    this._maxItems = value == undefined ? undefined : Math.max(1, value);
-  }
+  readonly maxItems = input(undefined, { transform: transformMaxItems });
 
   ngOnChanges() {
-    if (this.maxItems == undefined || this.items.length <= this.maxItems) {
-      this.filteredItems = this.items;
+    const maxItems = this.maxItems();
+
+    if (maxItems == undefined || this.items().length <= maxItems) {
+      this.filteredItems = this.items();
     } else {
-      this.filteredItems = this.items.slice(0, this.maxItems - 1);
+      this.filteredItems = this.items().slice(0, maxItems - 1);
     }
-    this.isFiltered = this.items.length > this.filteredItems.length;
+    this.isFiltered = this.items().length > this.filteredItems.length;
   }
 }
diff --git a/libs/components/src/badge/badge.component.html b/libs/components/src/badge/badge.component.html
index 6f586ec3523..3a2b0e9fdb6 100644
--- a/libs/components/src/badge/badge.component.html
+++ b/libs/components/src/badge/badge.component.html
@@ -1,3 +1,3 @@
-<span [ngClass]="{ 'tw-truncate tw-block': truncate }">
+<span [ngClass]="{ 'tw-truncate tw-block': truncate() }">
   <ng-content></ng-content>
 </span>
diff --git a/libs/components/src/badge/badge.component.ts b/libs/components/src/badge/badge.component.ts
index e2cbb4f1ceb..37be13ef15a 100644
--- a/libs/components/src/badge/badge.component.ts
+++ b/libs/components/src/badge/badge.component.ts
@@ -1,5 +1,5 @@
 import { CommonModule } from "@angular/common";
-import { Component, ElementRef, HostBinding, Input } from "@angular/core";
+import { Component, ElementRef, HostBinding, input } from "@angular/core";
 
 import { FocusableElement } from "../shared/focusable-element";
 
@@ -89,33 +89,34 @@ export class BadgeComponent implements FocusableElement {
       "disabled:hover:!tw-text-muted",
       "disabled:tw-cursor-not-allowed",
     ]
-      .concat(styles[this.variant])
-      .concat(this.hasHoverEffects ? [...hoverStyles[this.variant], "tw-min-w-10"] : [])
-      .concat(this.truncate ? this.maxWidthClass : []);
+      .concat(styles[this.variant()])
+      .concat(this.hasHoverEffects ? [...hoverStyles[this.variant()], "tw-min-w-10"] : [])
+      .concat(this.truncate() ? this.maxWidthClass() : []);
   }
   @HostBinding("attr.title") get titleAttr() {
-    if (this.title !== undefined) {
-      return this.title;
+    const title = this.title();
+    if (title !== undefined) {
+      return title;
     }
-    return this.truncate ? this?.el?.nativeElement?.textContent?.trim() : null;
+    return this.truncate() ? this?.el?.nativeElement?.textContent?.trim() : null;
   }
 
   /**
    * Optional override for the automatic badge title when truncating.
    */
-  @Input() title?: string;
+  readonly title = input<string>();
 
   /**
    * Variant, sets the background color of the badge.
    */
-  @Input() variant: BadgeVariant = "primary";
+  readonly variant = input<BadgeVariant>("primary");
 
   /**
    * Truncate long text
    */
-  @Input() truncate = true;
+  readonly truncate = input(true);
 
-  @Input() maxWidthClass: `tw-max-w-${string}` = "tw-max-w-40";
+  readonly maxWidthClass = input<`tw-max-w-${string}`>("tw-max-w-40");
 
   getFocusTarget() {
     return this.el.nativeElement;
diff --git a/libs/components/src/banner/banner.component.html b/libs/components/src/banner/banner.component.html
index 6f271d587b5..63b1126104c 100644
--- a/libs/components/src/banner/banner.component.html
+++ b/libs/components/src/banner/banner.component.html
@@ -1,10 +1,10 @@
 <div
   class="tw-flex tw-items-center tw-gap-2 tw-p-2 tw-ps-4 tw-text-main tw-border-transparent tw-bg-clip-padding tw-border-solid tw-border-b tw-border-0"
   [ngClass]="bannerClass"
-  [attr.role]="useAlertRole ? 'status' : null"
-  [attr.aria-live]="useAlertRole ? 'polite' : null"
+  [attr.role]="useAlertRole() ? 'status' : null"
+  [attr.aria-live]="useAlertRole() ? 'polite' : null"
 >
-  @if (icon) {
+  @if (icon(); as icon) {
     <i class="bwi tw-align-middle tw-text-base" [ngClass]="icon" aria-hidden="true"></i>
   }
   <!-- Overriding focus-visible color for link buttons for a11y against colored background -->
@@ -12,7 +12,7 @@
     <ng-content></ng-content>
   </span>
   <!-- Overriding hover and focus-visible colors for a11y against colored background -->
-  @if (showClose) {
+  @if (showClose()) {
     <button
       class="hover:tw-border-text-main focus-visible:before:tw-ring-text-main"
       type="button"
diff --git a/libs/components/src/banner/banner.component.spec.ts b/libs/components/src/banner/banner.component.spec.ts
index 2bbc7965642..edfbe8c8be9 100644
--- a/libs/components/src/banner/banner.component.spec.ts
+++ b/libs/components/src/banner/banner.component.spec.ts
@@ -30,17 +30,17 @@ describe("BannerComponent", () => {
   });
 
   it("should create with alert", () => {
-    expect(component.useAlertRole).toBe(true);
+    expect(component.useAlertRole()).toBe(true);
     const el = fixture.nativeElement.children[0];
     expect(el.getAttribute("role")).toEqual("status");
     expect(el.getAttribute("aria-live")).toEqual("polite");
   });
 
   it("useAlertRole=false", () => {
-    component.useAlertRole = false;
+    fixture.componentRef.setInput("useAlertRole", false);
     fixture.autoDetectChanges();
 
-    expect(component.useAlertRole).toBe(false);
+    expect(component.useAlertRole()).toBe(false);
     const el = fixture.nativeElement.children[0];
     expect(el.getAttribute("role")).toBeNull();
     expect(el.getAttribute("aria-live")).toBeNull();
diff --git a/libs/components/src/banner/banner.component.ts b/libs/components/src/banner/banner.component.ts
index 02d55230ce2..a9c837fb044 100644
--- a/libs/components/src/banner/banner.component.ts
+++ b/libs/components/src/banner/banner.component.ts
@@ -1,7 +1,5 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import { CommonModule } from "@angular/common";
-import { Component, Input, OnInit, Output, EventEmitter } from "@angular/core";
+import { Component, OnInit, Output, EventEmitter, input, model } from "@angular/core";
 
 import { I18nPipe } from "@bitwarden/ui-common";
 
@@ -31,19 +29,22 @@ const defaultIcon: Record<BannerType, string> = {
   imports: [CommonModule, IconButtonModule, I18nPipe],
 })
 export class BannerComponent implements OnInit {
-  @Input("bannerType") bannerType: BannerType = "info";
-  @Input() icon: string;
-  @Input() useAlertRole = true;
-  @Input() showClose = true;
+  readonly bannerType = input<BannerType>("info");
+
+  readonly icon = model<string>();
+  readonly useAlertRole = input(true);
+  readonly showClose = input(true);
 
   @Output() onClose = new EventEmitter<void>();
 
   ngOnInit(): void {
-    this.icon ??= defaultIcon[this.bannerType];
+    if (!this.icon()) {
+      this.icon.set(defaultIcon[this.bannerType()]);
+    }
   }
 
   get bannerClass() {
-    switch (this.bannerType) {
+    switch (this.bannerType()) {
       case "danger":
         return "tw-bg-danger-100 tw-border-b-danger-700";
       case "info":
diff --git a/libs/components/src/breadcrumbs/breadcrumb.component.html b/libs/components/src/breadcrumbs/breadcrumb.component.html
index 28a93134496..b0334f1ac09 100644
--- a/libs/components/src/breadcrumbs/breadcrumb.component.html
+++ b/libs/components/src/breadcrumbs/breadcrumb.component.html
@@ -1,5 +1,5 @@
 <ng-template>
-  @if (icon) {
+  @if (icon(); as icon) {
     <i class="bwi {{ icon }} !tw-me-2" aria-hidden="true"></i>
   }
   <ng-content></ng-content>
diff --git a/libs/components/src/breadcrumbs/breadcrumb.component.ts b/libs/components/src/breadcrumbs/breadcrumb.component.ts
index d466ef61c1a..54678f3e4ee 100644
--- a/libs/components/src/breadcrumbs/breadcrumb.component.ts
+++ b/libs/components/src/breadcrumbs/breadcrumb.component.ts
@@ -1,7 +1,7 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
 
-import { Component, EventEmitter, Input, Output, TemplateRef, ViewChild } from "@angular/core";
+import { Component, EventEmitter, Output, TemplateRef, ViewChild, input } from "@angular/core";
 import { QueryParamsHandling } from "@angular/router";
 
 @Component({
@@ -9,17 +9,13 @@ import { QueryParamsHandling } from "@angular/router";
   templateUrl: "./breadcrumb.component.html",
 })
 export class BreadcrumbComponent {
-  @Input()
-  icon?: string;
+  readonly icon = input<string>();
 
-  @Input()
-  route?: string | any[] = undefined;
+  readonly route = input<string | any[]>();
 
-  @Input()
-  queryParams?: Record<string, string> = {};
+  readonly queryParams = input<Record<string, string>>({});
 
-  @Input()
-  queryParamsHandling?: QueryParamsHandling;
+  readonly queryParamsHandling = input<QueryParamsHandling>();
 
   @Output()
   click = new EventEmitter();
diff --git a/libs/components/src/breadcrumbs/breadcrumbs.component.html b/libs/components/src/breadcrumbs/breadcrumbs.component.html
index 887c7982f3b..820b100afd3 100644
--- a/libs/components/src/breadcrumbs/breadcrumbs.component.html
+++ b/libs/components/src/breadcrumbs/breadcrumbs.component.html
@@ -1,17 +1,16 @@
 @for (breadcrumb of beforeOverflow; track breadcrumb; let last = $last) {
-  @if (breadcrumb.route) {
+  @if (breadcrumb.route(); as route) {
     <a
       bitLink
       linkType="primary"
       class="tw-my-2 tw-inline-block"
-      [routerLink]="breadcrumb.route"
-      [queryParams]="breadcrumb.queryParams"
-      [queryParamsHandling]="breadcrumb.queryParamsHandling"
+      [routerLink]="route"
+      [queryParams]="breadcrumb.queryParams()"
+      [queryParamsHandling]="breadcrumb.queryParamsHandling()"
     >
       <ng-container [ngTemplateOutlet]="breadcrumb.content"></ng-container>
     </a>
-  }
-  @if (!breadcrumb.route) {
+  } @else {
     <button
       type="button"
       bitLink
@@ -39,18 +38,17 @@
   ></button>
   <bit-menu #overflowMenu>
     @for (breadcrumb of overflow; track breadcrumb) {
-      @if (breadcrumb.route) {
+      @if (breadcrumb.route(); as route) {
         <a
           bitMenuItem
           linkType="primary"
-          [routerLink]="breadcrumb.route"
-          [queryParams]="breadcrumb.queryParams"
-          [queryParamsHandling]="breadcrumb.queryParamsHandling"
+          [routerLink]="route"
+          [queryParams]="breadcrumb.queryParams()"
+          [queryParamsHandling]="breadcrumb.queryParamsHandling()"
         >
           <ng-container [ngTemplateOutlet]="breadcrumb.content"></ng-container>
         </a>
-      }
-      @if (!breadcrumb.route) {
+      } @else {
         <button type="button" bitMenuItem linkType="primary" (click)="breadcrumb.onClick($event)">
           <ng-container [ngTemplateOutlet]="breadcrumb.content"></ng-container>
         </button>
@@ -59,19 +57,18 @@
   </bit-menu>
   <i class="bwi bwi-angle-right tw-mx-1.5 tw-text-main"></i>
   @for (breadcrumb of afterOverflow; track breadcrumb; let last = $last) {
-    @if (breadcrumb.route) {
+    @if (breadcrumb.route(); as route) {
       <a
         bitLink
         linkType="primary"
         class="tw-my-2 tw-inline-block"
-        [routerLink]="breadcrumb.route"
-        [queryParams]="breadcrumb.queryParams"
-        [queryParamsHandling]="breadcrumb.queryParamsHandling"
+        [routerLink]="route"
+        [queryParams]="breadcrumb.queryParams()"
+        [queryParamsHandling]="breadcrumb.queryParamsHandling()"
       >
         <ng-container [ngTemplateOutlet]="breadcrumb.content"></ng-container>
       </a>
-    }
-    @if (!breadcrumb.route) {
+    } @else {
       <button
         type="button"
         bitLink
diff --git a/libs/components/src/breadcrumbs/breadcrumbs.component.ts b/libs/components/src/breadcrumbs/breadcrumbs.component.ts
index 1ff575d5070..a1a6e732459 100644
--- a/libs/components/src/breadcrumbs/breadcrumbs.component.ts
+++ b/libs/components/src/breadcrumbs/breadcrumbs.component.ts
@@ -1,5 +1,5 @@
 import { CommonModule } from "@angular/common";
-import { Component, ContentChildren, Input, QueryList } from "@angular/core";
+import { Component, ContentChildren, QueryList, input } from "@angular/core";
 import { RouterModule } from "@angular/router";
 
 import { IconButtonModule } from "../icon-button";
@@ -19,8 +19,7 @@ import { BreadcrumbComponent } from "./breadcrumb.component";
   imports: [CommonModule, LinkModule, RouterModule, IconButtonModule, MenuModule],
 })
 export class BreadcrumbsComponent {
-  @Input()
-  show = 3;
+  readonly show = input(3);
 
   private breadcrumbs: BreadcrumbComponent[] = [];
 
@@ -31,14 +30,14 @@ export class BreadcrumbsComponent {
 
   protected get beforeOverflow() {
     if (this.hasOverflow) {
-      return this.breadcrumbs.slice(0, this.show - 1);
+      return this.breadcrumbs.slice(0, this.show() - 1);
     }
 
     return this.breadcrumbs;
   }
 
   protected get overflow() {
-    return this.breadcrumbs.slice(this.show - 1, -1);
+    return this.breadcrumbs.slice(this.show() - 1, -1);
   }
 
   protected get afterOverflow() {
@@ -46,6 +45,6 @@ export class BreadcrumbsComponent {
   }
 
   protected get hasOverflow() {
-    return this.breadcrumbs.length > this.show;
+    return this.breadcrumbs.length > this.show();
   }
 }
diff --git a/libs/components/src/button/button.component.ts b/libs/components/src/button/button.component.ts
index 671b1dfb96d..a1b35608f25 100644
--- a/libs/components/src/button/button.component.ts
+++ b/libs/components/src/button/button.component.ts
@@ -1,7 +1,5 @@
-import { coerceBooleanProperty } from "@angular/cdk/coercion";
 import { NgClass } from "@angular/common";
 import {
-  Input,
   HostBinding,
   Component,
   model,
@@ -10,6 +8,7 @@ import {
   ElementRef,
   inject,
   Signal,
+  booleanAttribute,
 } from "@angular/core";
 import { toObservable, toSignal } from "@angular/core/rxjs-interop";
 import { debounce, interval } from "rxjs";
@@ -79,7 +78,7 @@ export class ButtonComponent implements ButtonLikeAbstraction {
       "hover:tw-no-underline",
       "focus:tw-outline-none",
     ]
-      .concat(this.block ? ["tw-w-full", "tw-block"] : ["tw-inline-block"])
+      .concat(this.block() ? ["tw-w-full", "tw-block"] : ["tw-inline-block"])
       .concat(
         this.showDisabledStyles() || this.disabled()
           ? [
@@ -95,7 +94,7 @@ export class ButtonComponent implements ButtonLikeAbstraction {
             ]
           : [],
       )
-      .concat(buttonStyles[this.buttonType ?? "secondary"])
+      .concat(buttonStyles[this.buttonType() ?? "secondary"])
       .concat(buttonSizeStyles[this.size() || "default"]);
   }
 
@@ -116,22 +115,13 @@ export class ButtonComponent implements ButtonLikeAbstraction {
     return this.showLoadingStyle() || (this.disabledAttr() && this.loading() === false);
   });
 
-  @Input() buttonType: ButtonType = "secondary";
+  readonly buttonType = input<ButtonType>("secondary");
 
-  size = input<ButtonSize>("default");
+  readonly size = input<ButtonSize>("default");
 
-  private _block = false;
+  readonly block = input(false, { transform: booleanAttribute });
 
-  @Input()
-  get block(): boolean {
-    return this._block;
-  }
-
-  set block(value: boolean | "") {
-    this._block = coerceBooleanProperty(value);
-  }
-
-  loading = model<boolean>(false);
+  readonly loading = model<boolean>(false);
 
   /**
    * Determine whether it is appropriate to display a loading spinner. We only want to show
@@ -149,7 +139,7 @@ export class ButtonComponent implements ButtonLikeAbstraction {
     toObservable(this.loading).pipe(debounce((isLoading) => interval(isLoading ? 75 : 0))),
   );
 
-  disabled = model<boolean>(false);
+  readonly disabled = model<boolean>(false);
   private el = inject(ElementRef<HTMLButtonElement>);
 
   constructor() {
diff --git a/libs/components/src/callout/callout.component.html b/libs/components/src/callout/callout.component.html
index 99f1ed43996..b990e57a767 100644
--- a/libs/components/src/callout/callout.component.html
+++ b/libs/components/src/callout/callout.component.html
@@ -3,12 +3,12 @@
   [ngClass]="calloutClass"
   [attr.aria-labelledby]="titleId"
 >
-  @if (title) {
+  @if (titleComputed(); as title) {
     <header
       id="{{ titleId }}"
       class="tw-mb-1 tw-mt-0 tw-text-base tw-font-semibold tw-flex tw-gap-2 tw-items-start"
     >
-      @if (icon) {
+      @if (iconComputed(); as icon) {
         <i
           class="bwi !tw-text-main tw-relative tw-top-[3px]"
           [ngClass]="[icon]"
diff --git a/libs/components/src/callout/callout.component.spec.ts b/libs/components/src/callout/callout.component.spec.ts
index fb241961962..b7dfe29a643 100644
--- a/libs/components/src/callout/callout.component.spec.ts
+++ b/libs/components/src/callout/callout.component.spec.ts
@@ -30,31 +30,31 @@ describe("Callout", () => {
 
   describe("default state", () => {
     it("success", () => {
-      component.type = "success";
+      fixture.componentRef.setInput("type", "success");
       fixture.detectChanges();
-      expect(component.title).toBeUndefined();
-      expect(component.icon).toBe("bwi-check-circle");
+      expect(component.titleComputed()).toBeUndefined();
+      expect(component.iconComputed()).toBe("bwi-check-circle");
     });
 
     it("info", () => {
-      component.type = "info";
+      fixture.componentRef.setInput("type", "info");
       fixture.detectChanges();
-      expect(component.title).toBeUndefined();
-      expect(component.icon).toBe("bwi-info-circle");
+      expect(component.titleComputed()).toBeUndefined();
+      expect(component.iconComputed()).toBe("bwi-info-circle");
     });
 
     it("warning", () => {
-      component.type = "warning";
+      fixture.componentRef.setInput("type", "warning");
       fixture.detectChanges();
-      expect(component.title).toBe("Warning");
-      expect(component.icon).toBe("bwi-exclamation-triangle");
+      expect(component.titleComputed()).toBe("Warning");
+      expect(component.iconComputed()).toBe("bwi-exclamation-triangle");
     });
 
     it("danger", () => {
-      component.type = "danger";
+      fixture.componentRef.setInput("type", "danger");
       fixture.detectChanges();
-      expect(component.title).toBe("Error");
-      expect(component.icon).toBe("bwi-error");
+      expect(component.titleComputed()).toBe("Error");
+      expect(component.iconComputed()).toBe("bwi-error");
     });
   });
 });
diff --git a/libs/components/src/callout/callout.component.ts b/libs/components/src/callout/callout.component.ts
index a289496e71b..137c1f8fdaa 100644
--- a/libs/components/src/callout/callout.component.ts
+++ b/libs/components/src/callout/callout.component.ts
@@ -1,6 +1,6 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
-import { Component, Input, OnInit } from "@angular/core";
+import { Component, computed, input } from "@angular/core";
 
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 
@@ -34,24 +34,28 @@ let nextId = 0;
   templateUrl: "callout.component.html",
   imports: [SharedModule, TypographyModule],
 })
-export class CalloutComponent implements OnInit {
-  @Input() type: CalloutTypes = "info";
-  @Input() icon: string;
-  @Input() title: string;
-  @Input() useAlertRole = false;
+export class CalloutComponent {
+  readonly type = input<CalloutTypes>("info");
+  readonly icon = input<string>();
+  readonly title = input<string>();
+  readonly useAlertRole = input(false);
+  readonly iconComputed = computed(() => this.icon() ?? defaultIcon[this.type()]);
+  readonly titleComputed = computed(() => {
+    const title = this.title();
+    const type = this.type();
+    if (title == null && defaultI18n[type] != null) {
+      return this.i18nService.t(defaultI18n[type]);
+    }
+
+    return title;
+  });
+
   protected titleId = `bit-callout-title-${nextId++}`;
 
   constructor(private i18nService: I18nService) {}
 
-  ngOnInit() {
-    this.icon ??= defaultIcon[this.type];
-    if (this.title == null && defaultI18n[this.type] != null) {
-      this.title = this.i18nService.t(defaultI18n[this.type]);
-    }
-  }
-
   get calloutClass() {
-    switch (this.type) {
+    switch (this.type()) {
       case "danger":
         return "tw-bg-danger-100";
       case "info":
diff --git a/libs/components/src/callout/callout.stories.ts b/libs/components/src/callout/callout.stories.ts
index 5f66cf8453d..4ac4191ce7e 100644
--- a/libs/components/src/callout/callout.stories.ts
+++ b/libs/components/src/callout/callout.stories.ts
@@ -68,3 +68,18 @@ export const Danger: Story = {
     type: "danger",
   },
 };
+
+export const CustomIcon: Story = {
+  ...Info,
+  args: {
+    ...Info.args,
+    icon: "bwi-star",
+  },
+};
+
+export const NoTitle: Story = {
+  ...Info,
+  args: {
+    icon: "bwi-star",
+  },
+};
diff --git a/libs/components/src/checkbox/checkbox.component.ts b/libs/components/src/checkbox/checkbox.component.ts
index 6159b01d2b5..43772d6dfef 100644
--- a/libs/components/src/checkbox/checkbox.component.ts
+++ b/libs/components/src/checkbox/checkbox.component.ts
@@ -104,6 +104,8 @@ export class CheckboxComponent implements BitFormControlAbstraction {
   protected indeterminateImage =
     `url('data:image/svg+xml,%3Csvg xmlns="http://www.w3.org/2000/svg" width="14" height="14" fill="none" viewBox="0 0 13 13"%3E%3Cpath stroke="%23fff" stroke-width="2" d="M2.5 6.5h8"/%3E%3C/svg%3E%0A')`;
 
+  // TODO: Skipped for signal migration because:
+  //  Accessor inputs cannot be migrated as they are too complex.
   @HostBinding()
   @Input()
   get disabled() {
@@ -114,6 +116,8 @@ export class CheckboxComponent implements BitFormControlAbstraction {
   }
   private _disabled: boolean;
 
+  // TODO: Skipped for signal migration because:
+  //  Accessor inputs cannot be migrated as they are too complex.
   @Input()
   get required() {
     return (
diff --git a/libs/components/src/checkbox/checkbox.stories.ts b/libs/components/src/checkbox/checkbox.stories.ts
index 9050d97cafc..2796f6fde51 100644
--- a/libs/components/src/checkbox/checkbox.stories.ts
+++ b/libs/components/src/checkbox/checkbox.stories.ts
@@ -31,7 +31,7 @@ const template = /*html*/ `
 @Component({
   selector: "app-example",
   template,
-  imports: [CheckboxModule, FormFieldModule, ReactiveFormsModule],
+  imports: [FormControlModule, CheckboxModule, FormsModule, FormFieldModule, ReactiveFormsModule],
 })
 class ExampleComponent {
   protected formObj = this.formBuilder.group({
diff --git a/libs/components/src/chip-select/chip-select.component.html b/libs/components/src/chip-select/chip-select.component.html
index 9591194e6a6..61dbc36e48b 100644
--- a/libs/components/src/chip-select/chip-select.component.html
+++ b/libs/components/src/chip-select/chip-select.component.html
@@ -69,10 +69,10 @@
           bitMenuItem
           (click)="viewOption(parent, $event)"
           class="tw-text-[length:inherit]"
-          [title]="'backTo' | i18n: parent.label ?? placeholderText"
+          [title]="'backTo' | i18n: parent.label ?? placeholderText()"
         >
           <i slot="start" class="bwi bwi-angle-left" aria-hidden="true"></i>
-          {{ "backTo" | i18n: parent.label ?? placeholderText }}
+          {{ "backTo" | i18n: parent.label ?? placeholderText() }}
         </button>
         <button
           type="button"
diff --git a/libs/components/src/chip-select/chip-select.component.ts b/libs/components/src/chip-select/chip-select.component.ts
index 2eede684688..f61d9e56481 100644
--- a/libs/components/src/chip-select/chip-select.component.ts
+++ b/libs/components/src/chip-select/chip-select.component.ts
@@ -14,6 +14,7 @@ import {
   booleanAttribute,
   inject,
   signal,
+  input,
 } from "@angular/core";
 import { takeUntilDestroyed } from "@angular/core/rxjs-interop";
 import { ControlValueAccessor, NG_VALUE_ACCESSOR } from "@angular/forms";
@@ -54,12 +55,15 @@ export class ChipSelectComponent<T = unknown> implements ControlValueAccessor, A
   @ViewChild("chipSelectButton") chipSelectButton: ElementRef<HTMLButtonElement>;
 
   /** Text to show when there is no selected option */
-  @Input({ required: true }) placeholderText: string;
+  readonly placeholderText = input.required<string>();
 
   /** Icon to show when there is no selected option or the selected option does not have an icon */
-  @Input() placeholderIcon: string;
+  readonly placeholderIcon = input<string>();
 
   private _options: ChipSelectOption<T>[];
+
+  // TODO: Skipped for signal migration because:
+  //  Accessor inputs cannot be migrated as they are too complex.
   /** The select options to render */
   @Input({ required: true })
   get options(): ChipSelectOption<T>[] {
@@ -71,10 +75,12 @@ export class ChipSelectComponent<T = unknown> implements ControlValueAccessor, A
   }
 
   /** Disables the entire chip */
+  // TODO: Skipped for signal migration because:
+  //  Your application code writes to the input. This prevents migration.
   @Input({ transform: booleanAttribute }) disabled = false;
 
   /** Chip will stretch to full width of its container */
-  @Input({ transform: booleanAttribute }) fullWidth?: boolean;
+  readonly fullWidth = input<boolean, unknown>(undefined, { transform: booleanAttribute });
 
   /**
    * We have `:focus-within` and `:focus-visible` but no `:focus-visible-within`
@@ -91,7 +97,7 @@ export class ChipSelectComponent<T = unknown> implements ControlValueAccessor, A
 
   @HostBinding("class")
   get classList() {
-    return ["tw-inline-block", this.fullWidth ? "tw-w-full" : "tw-max-w-52"];
+    return ["tw-inline-block", this.fullWidth() ? "tw-w-full" : "tw-max-w-52"];
   }
 
   private destroyRef = inject(DestroyRef);
@@ -113,12 +119,12 @@ export class ChipSelectComponent<T = unknown> implements ControlValueAccessor, A
 
   /** The label to show in the chip button */
   protected get label(): string {
-    return this.selectedOption?.label || this.placeholderText;
+    return this.selectedOption?.label || this.placeholderText();
   }
 
   /** The icon to show in the chip button */
   protected get icon(): string {
-    return this.selectedOption?.icon || this.placeholderIcon;
+    return this.selectedOption?.icon || this.placeholderIcon();
   }
 
   /**
diff --git a/libs/components/src/copy-click/copy-click.directive.ts b/libs/components/src/copy-click/copy-click.directive.ts
index 514a55a0242..6b30a66c511 100644
--- a/libs/components/src/copy-click/copy-click.directive.ts
+++ b/libs/components/src/copy-click/copy-click.directive.ts
@@ -1,4 +1,12 @@
-import { Directive, HostListener, Input, InjectionToken, Inject, Optional } from "@angular/core";
+import {
+  Directive,
+  HostListener,
+  Input,
+  InjectionToken,
+  Inject,
+  Optional,
+  input,
+} from "@angular/core";
 
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
@@ -28,13 +36,13 @@ export class CopyClickDirective {
     @Optional() @Inject(COPY_CLICK_LISTENER) private copyListener?: CopyClickListener,
   ) {}
 
-  @Input("appCopyClick") valueToCopy = "";
+  readonly valueToCopy = input("", { alias: "appCopyClick" });
 
   /**
    * When set, the toast displayed will show `<valueLabel> copied`
    * instead of the default messaging.
    */
-  @Input() valueLabel?: string;
+  readonly valueLabel = input<string>();
 
   /**
    * When set without a value, a success toast will be shown when the value is copied
@@ -49,6 +57,8 @@ export class CopyClickDirective {
    *  <app-component [appCopyClick]="value to copy" showToast="info"/></app-component>
    * ```
    */
+  // TODO: Skipped for signal migration because:
+  //  Accessor inputs cannot be migrated as they are too complex.
   @Input() set showToast(value: ToastVariant | "") {
     // When the `showToast` is set without a value, an empty string will be passed
     if (value === "") {
@@ -60,15 +70,17 @@ export class CopyClickDirective {
   }
 
   @HostListener("click") onClick() {
-    this.platformUtilsService.copyToClipboard(this.valueToCopy);
+    const valueToCopy = this.valueToCopy();
+    this.platformUtilsService.copyToClipboard(valueToCopy);
 
     if (this.copyListener) {
-      this.copyListener.onCopy(this.valueToCopy);
+      this.copyListener.onCopy(valueToCopy);
     }
 
     if (this._showToast) {
-      const message = this.valueLabel
-        ? this.i18nService.t("valueCopied", this.valueLabel)
+      const valueLabel = this.valueLabel();
+      const message = valueLabel
+        ? this.i18nService.t("valueCopied", valueLabel)
         : this.i18nService.t("copySuccessful");
 
       this.toastService.showToast({
diff --git a/libs/components/src/dialog/dialog/dialog.component.html b/libs/components/src/dialog/dialog/dialog.component.html
index db08f88799b..0dc3c2eef57 100644
--- a/libs/components/src/dialog/dialog/dialog.component.html
+++ b/libs/components/src/dialog/dialog/dialog.component.html
@@ -6,7 +6,7 @@
   cdkTrapFocus
   cdkTrapFocusAutoCapture
 >
-  @let showHeaderBorder = !isDrawer || background === "alt" || bodyHasScrolledFrom().top;
+  @let showHeaderBorder = !isDrawer || background() === "alt" || bodyHasScrolledFrom().top;
   <header
     class="tw-flex tw-justify-between tw-items-center tw-gap-4 tw-border-0 tw-border-b tw-border-solid"
     [ngClass]="{
@@ -22,10 +22,10 @@
       noMargin
       class="tw-text-main tw-mb-0 tw-truncate"
     >
-      {{ title }}
-      @if (subtitle) {
+      {{ title() }}
+      @if (subtitle(); as subtitleText) {
         <span class="tw-text-muted tw-font-normal tw-text-sm">
-          {{ subtitle }}
+          {{ subtitleText }}
         </span>
       }
       <ng-content select="[bitDialogTitle]"></ng-content>
@@ -46,12 +46,12 @@
   <div
     class="tw-relative tw-flex-1 tw-flex tw-flex-col tw-overflow-hidden"
     [ngClass]="{
-      'tw-min-h-60': loading,
-      'tw-bg-background': background === 'default',
-      'tw-bg-background-alt': background === 'alt',
+      'tw-min-h-60': loading(),
+      'tw-bg-background': background() === 'default',
+      'tw-bg-background-alt': background() === 'alt',
     }"
   >
-    @if (loading) {
+    @if (loading()) {
       <div class="tw-absolute tw-flex tw-size-full tw-items-center tw-justify-center">
         <i class="bwi bwi-spinner bwi-spin bwi-lg" [attr.aria-label]="'loading' | i18n"></i>
       </div>
@@ -59,17 +59,17 @@
     <div
       cdkScrollable
       [ngClass]="{
-        'tw-p-4': !disablePadding && !isDrawer,
-        'tw-px-6 tw-py-4': !disablePadding && isDrawer,
-        'tw-overflow-y-auto': !loading,
-        'tw-invisible tw-overflow-y-hidden': loading,
+        'tw-p-4': !disablePadding() && !isDrawer,
+        'tw-px-6 tw-py-4': !disablePadding() && isDrawer,
+        'tw-overflow-y-auto': !loading(),
+        'tw-invisible tw-overflow-y-hidden': loading(),
       }"
     >
       <ng-content select="[bitDialogContent]"></ng-content>
     </div>
   </div>
 
-  @let showFooterBorder = !isDrawer || background === "alt" || bodyHasScrolledFrom().bottom;
+  @let showFooterBorder = !isDrawer || background() === "alt" || bodyHasScrolledFrom().bottom;
   <footer
     class="tw-flex tw-flex-row tw-items-center tw-gap-2 tw-border-0 tw-border-t tw-border-solid tw-border-secondary-300 tw-bg-background"
     [ngClass]="[isDrawer ? 'tw-px-6 tw-py-4' : 'tw-p-4']"
diff --git a/libs/components/src/dialog/dialog/dialog.component.ts b/libs/components/src/dialog/dialog/dialog.component.ts
index c0ddab27dd5..fc780ea853e 100644
--- a/libs/components/src/dialog/dialog/dialog.component.ts
+++ b/libs/components/src/dialog/dialog/dialog.component.ts
@@ -1,10 +1,7 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import { CdkTrapFocus } from "@angular/cdk/a11y";
-import { coerceBooleanProperty } from "@angular/cdk/coercion";
 import { CdkScrollable } from "@angular/cdk/scrolling";
 import { CommonModule } from "@angular/common";
-import { Component, HostBinding, Input, inject, viewChild } from "@angular/core";
+import { Component, HostBinding, inject, viewChild, input, booleanAttribute } from "@angular/core";
 
 import { I18nPipe } from "@bitwarden/ui-common";
 
@@ -40,39 +37,32 @@ export class DialogComponent {
   protected bodyHasScrolledFrom = hasScrolledFrom(this.scrollableBody);
 
   /** Background color */
-  @Input()
-  background: "default" | "alt" = "default";
+  readonly background = input<"default" | "alt">("default");
 
   /**
    * Dialog size, more complex dialogs should use large, otherwise default is fine.
    */
-  @Input() dialogSize: "small" | "default" | "large" = "default";
+  readonly dialogSize = input<"small" | "default" | "large">("default");
 
   /**
    * Title to show in the dialog's header
    */
-  @Input() title: string;
+  readonly title = input<string>();
 
   /**
    * Subtitle to show in the dialog's header
    */
-  @Input() subtitle: string;
+  readonly subtitle = input<string>();
 
-  private _disablePadding = false;
   /**
    * Disable the built-in padding on the dialog, for use with tabbed dialogs.
    */
-  @Input() set disablePadding(value: boolean | "") {
-    this._disablePadding = coerceBooleanProperty(value);
-  }
-  get disablePadding() {
-    return this._disablePadding;
-  }
+  readonly disablePadding = input(false, { transform: booleanAttribute });
 
   /**
    * Mark the dialog as loading which replaces the content with a spinner.
    */
-  @Input() loading = false;
+  readonly loading = input(false);
 
   @HostBinding("class") get classes() {
     // `tw-max-h-[90vh]` is needed to prevent dialogs from overlapping the desktop header
@@ -94,7 +84,7 @@ export class DialogComponent {
   }
 
   get width() {
-    switch (this.dialogSize) {
+    switch (this.dialogSize()) {
       case "small": {
         return "md:tw-max-w-sm";
       }
diff --git a/libs/components/src/dialog/directives/dialog-close.directive.ts b/libs/components/src/dialog/directives/dialog-close.directive.ts
index 5e44ced7c21..66d1a996295 100644
--- a/libs/components/src/dialog/directives/dialog-close.directive.ts
+++ b/libs/components/src/dialog/directives/dialog-close.directive.ts
@@ -1,11 +1,11 @@
 import { DialogRef } from "@angular/cdk/dialog";
-import { Directive, HostBinding, HostListener, Input, Optional } from "@angular/core";
+import { Directive, HostBinding, HostListener, Optional, input } from "@angular/core";
 
 @Directive({
   selector: "[bitDialogClose]",
 })
 export class DialogCloseDirective {
-  @Input("bitDialogClose") dialogResult: any;
+  readonly dialogResult = input<any>(undefined, { alias: "bitDialogClose" });
 
   constructor(@Optional() public dialogRef: DialogRef) {}
 
@@ -20,6 +20,6 @@ export class DialogCloseDirective {
       return;
     }
 
-    this.dialogRef.close(this.dialogResult);
+    this.dialogRef.close(this.dialogResult());
   }
 }
diff --git a/libs/components/src/dialog/directives/dialog-title-container.directive.ts b/libs/components/src/dialog/directives/dialog-title-container.directive.ts
index e17487f2780..683bda41cad 100644
--- a/libs/components/src/dialog/directives/dialog-title-container.directive.ts
+++ b/libs/components/src/dialog/directives/dialog-title-container.directive.ts
@@ -1,5 +1,5 @@
 import { CdkDialogContainer, DialogRef } from "@angular/cdk/dialog";
-import { Directive, HostBinding, Input, OnInit, Optional } from "@angular/core";
+import { Directive, HostBinding, OnInit, Optional, input } from "@angular/core";
 
 // Increments for each instance of this component
 let nextId = 0;
@@ -10,7 +10,7 @@ let nextId = 0;
 export class DialogTitleContainerDirective implements OnInit {
   @HostBinding("id") id = `bit-dialog-title-${nextId++}`;
 
-  @Input() simple = false;
+  readonly simple = input(false);
 
   constructor(@Optional() private dialogRef: DialogRef<any>) {}
 
diff --git a/libs/components/src/disclosure/disclosure-trigger-for.directive.ts b/libs/components/src/disclosure/disclosure-trigger-for.directive.ts
index bf7bdb409ec..9524d518df7 100644
--- a/libs/components/src/disclosure/disclosure-trigger-for.directive.ts
+++ b/libs/components/src/disclosure/disclosure-trigger-for.directive.ts
@@ -1,6 +1,6 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
-import { Directive, HostBinding, HostListener, Input } from "@angular/core";
+import { Directive, HostBinding, HostListener, input } from "@angular/core";
 
 import { DisclosureComponent } from "./disclosure.component";
 
@@ -12,17 +12,17 @@ export class DisclosureTriggerForDirective {
   /**
    * Accepts template reference for a bit-disclosure component instance
    */
-  @Input("bitDisclosureTriggerFor") disclosure: DisclosureComponent;
+  readonly disclosure = input<DisclosureComponent>(undefined, { alias: "bitDisclosureTriggerFor" });
 
   @HostBinding("attr.aria-expanded") get ariaExpanded() {
-    return this.disclosure.open;
+    return this.disclosure().open;
   }
 
   @HostBinding("attr.aria-controls") get ariaControls() {
-    return this.disclosure.id;
+    return this.disclosure().id;
   }
 
   @HostListener("click") click() {
-    this.disclosure.open = !this.disclosure.open;
+    this.disclosure().open = !this.disclosure().open;
   }
 }
diff --git a/libs/components/src/disclosure/disclosure.component.ts b/libs/components/src/disclosure/disclosure.component.ts
index 58e425e9206..7d26815d817 100644
--- a/libs/components/src/disclosure/disclosure.component.ts
+++ b/libs/components/src/disclosure/disclosure.component.ts
@@ -48,6 +48,8 @@ export class DisclosureComponent {
   /**
    * Optionally init the disclosure in its opened state
    */
+  // TODO: Skipped for signal migration because:
+  //  Accessor inputs cannot be migrated as they are too complex.
   @Input({ transform: booleanAttribute }) set open(isOpen: boolean) {
     this._open = isOpen;
     this.openChange.emit(isOpen);
diff --git a/libs/components/src/form-control/form-control.component.ts b/libs/components/src/form-control/form-control.component.ts
index 0e2fa393f80..6c4a3ebfc90 100644
--- a/libs/components/src/form-control/form-control.component.ts
+++ b/libs/components/src/form-control/form-control.component.ts
@@ -1,8 +1,7 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
-import { coerceBooleanProperty } from "@angular/cdk/coercion";
 import { NgClass } from "@angular/common";
-import { Component, ContentChild, HostBinding, Input } from "@angular/core";
+import { booleanAttribute, Component, ContentChild, HostBinding, input } from "@angular/core";
 
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { I18nPipe } from "@bitwarden/ui-common";
@@ -17,30 +16,18 @@ import { BitFormControlAbstraction } from "./form-control.abstraction";
   imports: [NgClass, TypographyDirective, I18nPipe],
 })
 export class FormControlComponent {
-  @Input() label: string;
+  readonly label = input<string>();
 
-  private _inline = false;
-  @Input() get inline() {
-    return this._inline;
-  }
-  set inline(value: boolean | "") {
-    this._inline = coerceBooleanProperty(value);
-  }
+  readonly inline = input(false, { transform: booleanAttribute });
 
-  private _disableMargin = false;
-  @Input() set disableMargin(value: boolean | "") {
-    this._disableMargin = coerceBooleanProperty(value);
-  }
-  get disableMargin() {
-    return this._disableMargin;
-  }
+  readonly disableMargin = input(false, { transform: booleanAttribute });
 
   @ContentChild(BitFormControlAbstraction) protected formControl: BitFormControlAbstraction;
 
   @HostBinding("class") get classes() {
     return []
-      .concat(this.inline ? ["tw-inline-block", "tw-me-4"] : ["tw-block"])
-      .concat(this.disableMargin ? [] : ["tw-mb-4"]);
+      .concat(this.inline() ? ["tw-inline-block", "tw-me-4"] : ["tw-block"])
+      .concat(this.disableMargin() ? [] : ["tw-mb-4"]);
   }
 
   constructor(private i18nService: I18nService) {}
diff --git a/libs/components/src/form-control/label.component.ts b/libs/components/src/form-control/label.component.ts
index d5028715bd5..601bc7470ae 100644
--- a/libs/components/src/form-control/label.component.ts
+++ b/libs/components/src/form-control/label.component.ts
@@ -1,7 +1,7 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
 import { CommonModule } from "@angular/common";
-import { Component, ElementRef, HostBinding, Input, Optional } from "@angular/core";
+import { Component, ElementRef, HostBinding, input, Optional } from "@angular/core";
 
 import { FormControlComponent } from "./form-control.component";
 
@@ -12,6 +12,10 @@ let nextId = 0;
   selector: "bit-label",
   templateUrl: "label.component.html",
   imports: [CommonModule],
+  host: {
+    "[class]": "classList",
+    "[id]": "id()",
+  },
 })
 export class BitLabel {
   constructor(
@@ -19,15 +23,19 @@ export class BitLabel {
     @Optional() private parentFormControl: FormControlComponent,
   ) {}
 
-  @HostBinding("class") @Input() get classList() {
-    return ["tw-inline-flex", "tw-gap-1", "tw-items-baseline", "tw-flex-row", "tw-min-w-0"];
-  }
+  readonly classList = [
+    "tw-inline-flex",
+    "tw-gap-1",
+    "tw-items-baseline",
+    "tw-flex-row",
+    "tw-min-w-0",
+  ];
 
   @HostBinding("title") get title() {
     return this.elementRef.nativeElement.textContent.trim();
   }
 
-  @HostBinding() @Input() id = `bit-label-${nextId++}`;
+  readonly id = input(`bit-label-${nextId++}`);
 
   get isInsideFormControl() {
     return !!this.parentFormControl;
diff --git a/libs/components/src/form-field/error-summary.component.ts b/libs/components/src/form-field/error-summary.component.ts
index c57819a1fca..b5062a46e4d 100644
--- a/libs/components/src/form-field/error-summary.component.ts
+++ b/libs/components/src/form-field/error-summary.component.ts
@@ -1,7 +1,7 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
 
-import { Component, Input } from "@angular/core";
+import { Component, input } from "@angular/core";
 import { AbstractControl, UntypedFormGroup } from "@angular/forms";
 
 import { I18nPipe } from "@bitwarden/ui-common";
@@ -18,11 +18,10 @@ import { I18nPipe } from "@bitwarden/ui-common";
   imports: [I18nPipe],
 })
 export class BitErrorSummary {
-  @Input()
-  formGroup: UntypedFormGroup;
+  readonly formGroup = input<UntypedFormGroup>();
 
   get errorCount(): number {
-    return this.getErrorCount(this.formGroup);
+    return this.getErrorCount(this.formGroup());
   }
 
   get errorString() {
diff --git a/libs/components/src/form-field/error.component.ts b/libs/components/src/form-field/error.component.ts
index a0f7906b366..f21ff77cace 100644
--- a/libs/components/src/form-field/error.component.ts
+++ b/libs/components/src/form-field/error.component.ts
@@ -1,6 +1,6 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
-import { Component, HostBinding, Input } from "@angular/core";
+import { Component, HostBinding, input } from "@angular/core";
 
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 
@@ -18,37 +18,38 @@ let nextId = 0;
 export class BitErrorComponent {
   @HostBinding() id = `bit-error-${nextId++}`;
 
-  @Input() error: [string, any];
+  readonly error = input<[string, any]>();
 
   constructor(private i18nService: I18nService) {}
 
   get displayError() {
-    switch (this.error[0]) {
+    const error = this.error();
+    switch (error[0]) {
       case "required":
         return this.i18nService.t("inputRequired");
       case "email":
         return this.i18nService.t("inputEmail");
       case "minlength":
-        return this.i18nService.t("inputMinLength", this.error[1]?.requiredLength);
+        return this.i18nService.t("inputMinLength", error[1]?.requiredLength);
       case "maxlength":
-        return this.i18nService.t("inputMaxLength", this.error[1]?.requiredLength);
+        return this.i18nService.t("inputMaxLength", error[1]?.requiredLength);
       case "min":
-        return this.i18nService.t("inputMinValue", this.error[1]?.min);
+        return this.i18nService.t("inputMinValue", error[1]?.min);
       case "max":
-        return this.i18nService.t("inputMaxValue", this.error[1]?.max);
+        return this.i18nService.t("inputMaxValue", error[1]?.max);
       case "forbiddenCharacters":
-        return this.i18nService.t("inputForbiddenCharacters", this.error[1]?.characters.join(", "));
+        return this.i18nService.t("inputForbiddenCharacters", error[1]?.characters.join(", "));
       case "multipleEmails":
         return this.i18nService.t("multipleInputEmails");
       case "trim":
         return this.i18nService.t("inputTrimValidator");
       default:
         // Attempt to show a custom error message.
-        if (this.error[1]?.message) {
-          return this.error[1]?.message;
+        if (error[1]?.message) {
+          return error[1]?.message;
         }
 
-        return this.error;
+        return error;
     }
   }
 }
diff --git a/libs/components/src/form-field/form-field-control.ts b/libs/components/src/form-field/form-field-control.ts
index cd7c36b4cea..553f23f5b5f 100644
--- a/libs/components/src/form-field/form-field-control.ts
+++ b/libs/components/src/form-field/form-field-control.ts
@@ -1,4 +1,7 @@
 // FIXME: Update this file to be type safe and remove this and next line
+
+import { ModelSignal, Signal } from "@angular/core";
+
 // @ts-strict-ignore
 export type InputTypes =
   | "text"
@@ -14,13 +17,13 @@ export type InputTypes =
 
 export abstract class BitFormFieldControl {
   ariaDescribedBy: string;
-  id: string;
+  id: Signal<string>;
   labelForId: string;
   required: boolean;
   hasError: boolean;
   error: [string, any];
-  type?: InputTypes;
-  spellcheck?: boolean;
+  type?: ModelSignal<InputTypes>;
+  spellcheck?: ModelSignal<boolean | undefined>;
   readOnly?: boolean;
   focus?: () => void;
 }
diff --git a/libs/components/src/form-field/form-field.component.ts b/libs/components/src/form-field/form-field.component.ts
index 954297a8aa4..660fcd5c8d6 100644
--- a/libs/components/src/form-field/form-field.component.ts
+++ b/libs/components/src/form-field/form-field.component.ts
@@ -9,9 +9,10 @@ import {
   ElementRef,
   HostBinding,
   HostListener,
-  Input,
   ViewChild,
   signal,
+  input,
+  Input,
 } from "@angular/core";
 
 import { I18nPipe } from "@bitwarden/ui-common";
@@ -38,10 +39,11 @@ export class BitFormFieldComponent implements AfterContentChecked {
 
   @ViewChild(BitErrorComponent) error: BitErrorComponent;
 
-  @Input({ transform: booleanAttribute })
-  disableMargin = false;
+  readonly disableMargin = input(false, { transform: booleanAttribute });
 
   /** If `true`, remove the bottom border for `readonly` inputs */
+  // TODO: Skipped for signal migration because:
+  //  Your application code writes to the input. This prevents migration.
   @Input({ transform: booleanAttribute })
   disableReadOnlyBorder = false;
 
@@ -76,7 +78,7 @@ export class BitFormFieldComponent implements AfterContentChecked {
   @HostBinding("class")
   get classList() {
     return ["tw-block"]
-      .concat(this.disableMargin ? [] : ["tw-mb-4", "bit-compact:tw-mb-3"])
+      .concat(this.disableMargin() ? [] : ["tw-mb-4", "bit-compact:tw-mb-3"])
       .concat(this.readOnly ? [] : "tw-pt-2");
   }
 
diff --git a/libs/components/src/form-field/form-field.stories.ts b/libs/components/src/form-field/form-field.stories.ts
index 06a6d9547a3..d5dc6614ff8 100644
--- a/libs/components/src/form-field/form-field.stories.ts
+++ b/libs/components/src/form-field/form-field.stories.ts
@@ -414,13 +414,18 @@ export const Select: Story = {
 
 export const AdvancedSelect: Story = {
   render: (args) => ({
-    props: args,
+    props: {
+      formObj: fb.group({
+        select: "value1",
+      }),
+      ...args,
+    },
     template: /*html*/ `
-      <bit-form-field>
+      <bit-form-field [formGroup]="formObj">
         <bit-label>Label</bit-label>
-        <bit-select>
-          <bit-option label="Select"></bit-option>
-          <bit-option label="Other"></bit-option>
+        <bit-select formControlName="select">
+          <bit-option label="Select" value="value1"></bit-option>
+          <bit-option label="Other" value="value2"></bit-option>
         </bit-select>
       </bit-form-field>
     `,
diff --git a/libs/components/src/form-field/password-input-toggle.directive.ts b/libs/components/src/form-field/password-input-toggle.directive.ts
index a696a88c468..e0fa4165cf8 100644
--- a/libs/components/src/form-field/password-input-toggle.directive.ts
+++ b/libs/components/src/form-field/password-input-toggle.directive.ts
@@ -5,7 +5,7 @@ import {
   Host,
   HostBinding,
   HostListener,
-  Input,
+  model,
   OnChanges,
   Output,
 } from "@angular/core";
@@ -18,12 +18,15 @@ import { BitFormFieldComponent } from "./form-field.component";
 
 @Directive({
   selector: "[bitPasswordInputToggle]",
+  host: {
+    "[attr.aria-pressed]": "toggled()",
+  },
 })
 export class BitPasswordInputToggleDirective implements AfterContentInit, OnChanges {
   /**
    * Whether the input is toggled to show the password.
    */
-  @HostBinding("attr.aria-pressed") @Input() toggled = false;
+  readonly toggled = model(false);
   @Output() toggledChange = new EventEmitter<boolean>();
 
   @HostBinding("attr.title") title = this.i18nService.t("toggleVisibility");
@@ -33,8 +36,8 @@ export class BitPasswordInputToggleDirective implements AfterContentInit, OnChan
    * Click handler to toggle the state of the input type.
    */
   @HostListener("click") onClick() {
-    this.toggled = !this.toggled;
-    this.toggledChange.emit(this.toggled);
+    this.toggled.update((toggled) => !toggled);
+    this.toggledChange.emit(this.toggled());
 
     this.update();
   }
@@ -46,7 +49,7 @@ export class BitPasswordInputToggleDirective implements AfterContentInit, OnChan
   ) {}
 
   get icon() {
-    return this.toggled ? "bwi-eye-slash" : "bwi-eye";
+    return this.toggled() ? "bwi-eye-slash" : "bwi-eye";
   }
 
   ngOnChanges(): void {
@@ -55,16 +58,16 @@ export class BitPasswordInputToggleDirective implements AfterContentInit, OnChan
 
   ngAfterContentInit(): void {
     if (this.formField.input?.type) {
-      this.toggled = this.formField.input.type !== "password";
+      this.toggled.set(this.formField.input.type() !== "password");
     }
-    this.button.icon = this.icon;
+    this.button.icon.set(this.icon);
   }
 
   private update() {
-    this.button.icon = this.icon;
+    this.button.icon.set(this.icon);
     if (this.formField.input?.type != null) {
-      this.formField.input.type = this.toggled ? "text" : "password";
-      this.formField.input.spellcheck = this.toggled ? false : undefined;
+      this.formField.input.type.set(this.toggled() ? "text" : "password");
+      this.formField?.input?.spellcheck?.set(this.toggled() ? false : undefined);
     }
   }
 }
diff --git a/libs/components/src/form-field/password-input-toggle.spec.ts b/libs/components/src/form-field/password-input-toggle.spec.ts
index 114010c37bc..6b4c621f65c 100644
--- a/libs/components/src/form-field/password-input-toggle.spec.ts
+++ b/libs/components/src/form-field/password-input-toggle.spec.ts
@@ -60,15 +60,15 @@ describe("PasswordInputToggle", () => {
 
   describe("initial state", () => {
     it("has correct icon", () => {
-      expect(button.icon).toBe("bwi-eye");
+      expect(button.icon()).toBe("bwi-eye");
     });
 
     it("input is type password", () => {
-      expect(input.type).toBe("password");
+      expect(input.type!()).toBe("password");
     });
 
     it("spellcheck is disabled", () => {
-      expect(input.spellcheck).toBe(undefined);
+      expect(input.spellcheck!()).toBe(undefined);
     });
   });
 
@@ -78,15 +78,15 @@ describe("PasswordInputToggle", () => {
     });
 
     it("has correct icon", () => {
-      expect(button.icon).toBe("bwi-eye-slash");
+      expect(button.icon()).toBe("bwi-eye-slash");
     });
 
     it("input is type text", () => {
-      expect(input.type).toBe("text");
+      expect(input.type!()).toBe("text");
     });
 
     it("spellcheck is disabled", () => {
-      expect(input.spellcheck).toBe(false);
+      expect(input.spellcheck!()).toBe(false);
     });
   });
 
@@ -97,15 +97,15 @@ describe("PasswordInputToggle", () => {
     });
 
     it("has correct icon", () => {
-      expect(button.icon).toBe("bwi-eye");
+      expect(button.icon()).toBe("bwi-eye");
     });
 
     it("input is type password", () => {
-      expect(input.type).toBe("password");
+      expect(input.type!()).toBe("password");
     });
 
     it("spellcheck is disabled", () => {
-      expect(input.spellcheck).toBe(undefined);
+      expect(input.spellcheck!()).toBe(undefined);
     });
   });
 });
diff --git a/libs/components/src/form-field/prefix.directive.ts b/libs/components/src/form-field/prefix.directive.ts
index 34fcbf85233..8a3d7ab6fe5 100644
--- a/libs/components/src/form-field/prefix.directive.ts
+++ b/libs/components/src/form-field/prefix.directive.ts
@@ -1,20 +1,21 @@
-import { Directive, HostBinding, Input, OnInit, Optional } from "@angular/core";
+import { Directive, OnInit, Optional } from "@angular/core";
 
 import { BitIconButtonComponent } from "../icon-button/icon-button.component";
 
 @Directive({
   selector: "[bitPrefix]",
+  host: {
+    "[class]": "classList",
+  },
 })
 export class BitPrefixDirective implements OnInit {
-  @HostBinding("class") @Input() get classList() {
-    return ["tw-text-muted"];
-  }
+  readonly classList = ["tw-text-muted"];
 
   constructor(@Optional() private iconButtonComponent: BitIconButtonComponent) {}
 
   ngOnInit() {
     if (this.iconButtonComponent) {
-      this.iconButtonComponent.size = "small";
+      this.iconButtonComponent.size.set("small");
     }
   }
 }
diff --git a/libs/components/src/form-field/suffix.directive.ts b/libs/components/src/form-field/suffix.directive.ts
index 28736ce78a9..c892ebc51eb 100644
--- a/libs/components/src/form-field/suffix.directive.ts
+++ b/libs/components/src/form-field/suffix.directive.ts
@@ -1,20 +1,21 @@
-import { Directive, HostBinding, Input, OnInit, Optional } from "@angular/core";
+import { Directive, OnInit, Optional } from "@angular/core";
 
 import { BitIconButtonComponent } from "../icon-button/icon-button.component";
 
 @Directive({
   selector: "[bitSuffix]",
+  host: {
+    "[class]": "classList",
+  },
 })
 export class BitSuffixDirective implements OnInit {
-  @HostBinding("class") @Input() get classList() {
-    return ["tw-text-muted"];
-  }
+  readonly classList = ["tw-text-muted"];
 
   constructor(@Optional() private iconButtonComponent: BitIconButtonComponent) {}
 
   ngOnInit() {
     if (this.iconButtonComponent) {
-      this.iconButtonComponent.size = "small";
+      this.iconButtonComponent.size.set("small");
     }
   }
 }
diff --git a/libs/components/src/icon-button/icon-button.component.html b/libs/components/src/icon-button/icon-button.component.html
index 0145f0b0ba5..ad8e32dec75 100644
--- a/libs/components/src/icon-button/icon-button.component.html
+++ b/libs/components/src/icon-button/icon-button.component.html
@@ -9,7 +9,7 @@
     <i
       class="bwi bwi-spinner bwi-spin"
       aria-hidden="true"
-      [ngClass]="{ 'bwi-lg': size === 'default' }"
+      [ngClass]="{ 'bwi-lg': size() === 'default' }"
     ></i>
   </span>
 </span>
diff --git a/libs/components/src/icon-button/icon-button.component.ts b/libs/components/src/icon-button/icon-button.component.ts
index 6c1426adbe8..2b2682ec47e 100644
--- a/libs/components/src/icon-button/icon-button.component.ts
+++ b/libs/components/src/icon-button/icon-button.component.ts
@@ -7,7 +7,7 @@ import {
   ElementRef,
   HostBinding,
   inject,
-  Input,
+  input,
   model,
   Signal,
 } from "@angular/core";
@@ -177,11 +177,11 @@ const sizes: Record<IconButtonSize, string[]> = {
   },
 })
 export class BitIconButtonComponent implements ButtonLikeAbstraction, FocusableElement {
-  @Input("bitIconButton") icon: string;
+  readonly icon = model<string>(undefined, { alias: "bitIconButton" });
 
-  @Input() buttonType: IconButtonType = "main";
+  readonly buttonType = input<IconButtonType>("main");
 
-  @Input() size: IconButtonSize = "default";
+  readonly size = model<IconButtonSize>("default");
 
   @HostBinding("class") get classList() {
     return [
@@ -193,13 +193,15 @@ export class BitIconButtonComponent implements ButtonLikeAbstraction, FocusableE
       "hover:tw-no-underline",
       "focus:tw-outline-none",
     ]
-      .concat(styles[this.buttonType])
-      .concat(sizes[this.size])
-      .concat(this.showDisabledStyles() || this.disabled() ? disabledStyles[this.buttonType] : []);
+      .concat(styles[this.buttonType()])
+      .concat(sizes[this.size()])
+      .concat(
+        this.showDisabledStyles() || this.disabled() ? disabledStyles[this.buttonType()] : [],
+      );
   }
 
   get iconClass() {
-    return [this.icon, "!tw-m-0"];
+    return [this.icon(), "!tw-m-0"];
   }
 
   protected disabledAttr = computed(() => {
@@ -219,7 +221,7 @@ export class BitIconButtonComponent implements ButtonLikeAbstraction, FocusableE
     return this.showLoadingStyle() || (this.disabledAttr() && this.loading() === false);
   });
 
-  loading = model(false);
+  readonly loading = model(false);
 
   /**
    * Determine whether it is appropriate to display a loading spinner. We only want to show
@@ -237,7 +239,7 @@ export class BitIconButtonComponent implements ButtonLikeAbstraction, FocusableE
     toObservable(this.loading).pipe(debounce((isLoading) => interval(isLoading ? 75 : 0))),
   );
 
-  disabled = model<boolean>(false);
+  readonly disabled = model<boolean>(false);
 
   getFocusTarget() {
     return this.elementRef.nativeElement;
diff --git a/libs/components/src/icon/icon.component.ts b/libs/components/src/icon/icon.component.ts
index 5eae2c1d501..ec25ad30d56 100644
--- a/libs/components/src/icon/icon.component.ts
+++ b/libs/components/src/icon/icon.component.ts
@@ -1,4 +1,4 @@
-import { Component, Input } from "@angular/core";
+import { Component, effect, input } from "@angular/core";
 import { DomSanitizer, SafeHtml } from "@angular/platform-browser";
 
 import { Icon, isIcon } from "./icon";
@@ -6,8 +6,8 @@ import { Icon, isIcon } from "./icon";
 @Component({
   selector: "bit-icon",
   host: {
-    "[attr.aria-hidden]": "!ariaLabel",
-    "[attr.aria-label]": "ariaLabel",
+    "[attr.aria-hidden]": "!ariaLabel()",
+    "[attr.aria-label]": "ariaLabel()",
     "[innerHtml]": "innerHtml",
   },
   template: ``,
@@ -15,16 +15,18 @@ import { Icon, isIcon } from "./icon";
 export class BitIconComponent {
   innerHtml: SafeHtml | null = null;
 
-  @Input() set icon(icon: Icon) {
-    if (!isIcon(icon)) {
-      return;
-    }
+  readonly icon = input<Icon>();
 
-    const svg = icon.svg;
-    this.innerHtml = this.domSanitizer.bypassSecurityTrustHtml(svg);
+  readonly ariaLabel = input<string>();
+
+  constructor(private domSanitizer: DomSanitizer) {
+    effect(() => {
+      const icon = this.icon();
+      if (!isIcon(icon)) {
+        return;
+      }
+      const svg = icon.svg;
+      this.innerHtml = this.domSanitizer.bypassSecurityTrustHtml(svg);
+    });
   }
-
-  @Input() ariaLabel: string | undefined = undefined;
-
-  constructor(private domSanitizer: DomSanitizer) {}
 }
diff --git a/libs/components/src/icon/icon.components.spec.ts b/libs/components/src/icon/icon.components.spec.ts
index 7d499cdd419..76e86971587 100644
--- a/libs/components/src/icon/icon.components.spec.ts
+++ b/libs/components/src/icon/icon.components.spec.ts
@@ -4,7 +4,6 @@ import { Icon, svgIcon } from "./icon";
 import { BitIconComponent } from "./icon.component";
 
 describe("IconComponent", () => {
-  let component: BitIconComponent;
   let fixture: ComponentFixture<BitIconComponent>;
 
   beforeEach(async () => {
@@ -13,14 +12,13 @@ describe("IconComponent", () => {
     }).compileComponents();
 
     fixture = TestBed.createComponent(BitIconComponent);
-    component = fixture.componentInstance;
     fixture.detectChanges();
   });
 
   it("should have empty innerHtml when input is not an Icon", () => {
     const fakeIcon = { svg: "harmful user input" } as Icon;
 
-    component.icon = fakeIcon;
+    fixture.componentRef.setInput("icon", fakeIcon);
     fixture.detectChanges();
 
     const el = fixture.nativeElement as HTMLElement;
@@ -30,7 +28,7 @@ describe("IconComponent", () => {
   it("should contain icon when input is a safe Icon", () => {
     const icon = svgIcon`<svg><text x="0" y="15">safe icon</text></svg>`;
 
-    component.icon = icon;
+    fixture.componentRef.setInput("icon", icon);
     fixture.detectChanges();
 
     const el = fixture.nativeElement as HTMLElement;
diff --git a/libs/components/src/input/autofocus.directive.ts b/libs/components/src/input/autofocus.directive.ts
index 46eb1b15b16..4a5ce2806a3 100644
--- a/libs/components/src/input/autofocus.directive.ts
+++ b/libs/components/src/input/autofocus.directive.ts
@@ -1,6 +1,14 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
-import { AfterContentChecked, Directive, ElementRef, Input, NgZone, Optional } from "@angular/core";
+import {
+  AfterContentChecked,
+  booleanAttribute,
+  Directive,
+  ElementRef,
+  input,
+  NgZone,
+  Optional,
+} from "@angular/core";
 import { take } from "rxjs/operators";
 
 import { Utils } from "@bitwarden/common/platform/misc/utils";
@@ -21,11 +29,7 @@ import { FocusableElement } from "../shared/focusable-element";
   selector: "[appAutofocus], [bitAutofocus]",
 })
 export class AutofocusDirective implements AfterContentChecked {
-  @Input() set appAutofocus(condition: boolean | string) {
-    this.autofocus = condition === "" || condition === true;
-  }
-
-  private autofocus: boolean;
+  readonly appAutofocus = input(undefined, { transform: booleanAttribute });
 
   // Track if we have already focused the element.
   private focused = false;
@@ -46,7 +50,7 @@ export class AutofocusDirective implements AfterContentChecked {
    */
   ngAfterContentChecked() {
     // We only want to focus the element on initial render and it's not a mobile browser
-    if (this.focused || !this.autofocus || Utils.isMobileBrowser) {
+    if (this.focused || !this.appAutofocus() || Utils.isMobileBrowser) {
       return;
     }
 
diff --git a/libs/components/src/input/autofocus.mdx b/libs/components/src/input/autofocus.mdx
new file mode 100644
index 00000000000..b65aaff0c0a
--- /dev/null
+++ b/libs/components/src/input/autofocus.mdx
@@ -0,0 +1,21 @@
+import { Meta, Canvas, Primary, Controls, Title, Description } from "@storybook/addon-docs";
+
+import * as stories from "./autofocus.stories";
+
+<Meta of={stories} />
+
+```ts
+import { AutofocusDirective } from "@bitwarden/components";
+```
+
+<Title />
+<Description />
+
+<Primary />
+<Controls />
+
+## Accessibility
+
+The autofocus directive has accessibility implications, because it will steal focus from wherever it
+would naturally be placed on page load. Please consider whether or not the user truly needs the
+element truly needs to be manually focused on their behalf.
diff --git a/libs/components/src/input/autofocus.stories.ts b/libs/components/src/input/autofocus.stories.ts
new file mode 100644
index 00000000000..94f6b55884e
--- /dev/null
+++ b/libs/components/src/input/autofocus.stories.ts
@@ -0,0 +1,26 @@
+import { Meta, moduleMetadata, StoryObj } from "@storybook/angular";
+
+import { FormFieldModule } from "../form-field";
+
+import { AutofocusDirective } from "./autofocus.directive";
+
+export default {
+  title: "Component Library/Form/Autofocus Directive",
+  component: AutofocusDirective,
+  decorators: [
+    moduleMetadata({
+      imports: [AutofocusDirective, FormFieldModule],
+    }),
+  ],
+} as Meta;
+
+export const AutofocusField: StoryObj = {
+  render: (args) => ({
+    template: /*html*/ `
+      <bit-form-field>
+        <bit-label>Email</bit-label>
+        <input bitInput formControlName="email" appAutofocus />
+      </bit-form-field>
+    `,
+  }),
+};
diff --git a/libs/components/src/input/input.directive.ts b/libs/components/src/input/input.directive.ts
index 4a6a03295d4..58d9fd6769b 100644
--- a/libs/components/src/input/input.directive.ts
+++ b/libs/components/src/input/input.directive.ts
@@ -9,6 +9,8 @@ import {
   NgZone,
   Optional,
   Self,
+  input,
+  model,
 } from "@angular/core";
 import { NgControl, Validators } from "@angular/forms";
 
@@ -30,9 +32,15 @@ export function inputBorderClasses(error: boolean) {
 @Directive({
   selector: "input[bitInput], select[bitInput], textarea[bitInput]",
   providers: [{ provide: BitFormFieldControl, useExisting: BitInputDirective }],
+  host: {
+    "[class]": "classList()",
+    "[id]": "id()",
+    "[attr.type]": "type()",
+    "[attr.spellcheck]": "spellcheck()",
+  },
 })
 export class BitInputDirective implements BitFormFieldControl {
-  @HostBinding("class") @Input() get classList() {
+  classList() {
     const classes = [
       "tw-block",
       "tw-w-full",
@@ -52,7 +60,7 @@ export class BitInputDirective implements BitFormFieldControl {
     return classes.filter((s) => s != "");
   }
 
-  @HostBinding() @Input() id = `bit-input-${nextId++}`;
+  readonly id = input(`bit-input-${nextId++}`);
 
   @HostBinding("attr.aria-describedby") ariaDescribedBy: string;
 
@@ -60,10 +68,12 @@ export class BitInputDirective implements BitFormFieldControl {
     return this.hasError ? true : undefined;
   }
 
-  @HostBinding("attr.type") @Input() type?: InputTypes;
+  readonly type = model<InputTypes>();
 
-  @HostBinding("attr.spellcheck") @Input() spellcheck?: boolean;
+  readonly spellcheck = model<boolean>();
 
+  // TODO: Skipped for signal migration because:
+  //  Accessor inputs cannot be migrated as they are too complex.
   @HostBinding()
   @Input()
   get required() {
@@ -74,13 +84,13 @@ export class BitInputDirective implements BitFormFieldControl {
   }
   private _required: boolean;
 
-  @Input() hasPrefix = false;
-  @Input() hasSuffix = false;
+  readonly hasPrefix = input(false);
+  readonly hasSuffix = input(false);
 
-  @Input() showErrorsWhenDisabled? = false;
+  readonly showErrorsWhenDisabled = input<boolean>(false);
 
   get labelForId(): string {
-    return this.id;
+    return this.id();
   }
 
   @HostListener("input")
@@ -89,7 +99,7 @@ export class BitInputDirective implements BitFormFieldControl {
   }
 
   get hasError() {
-    if (this.showErrorsWhenDisabled) {
+    if (this.showErrorsWhenDisabled()) {
       return (
         (this.ngControl?.status === "INVALID" || this.ngControl?.status === "DISABLED") &&
         this.ngControl?.touched &&
diff --git a/libs/components/src/item/item-content.component.html b/libs/components/src/item/item-content.component.html
index 4010970dc9e..844f7dd6975 100644
--- a/libs/components/src/item/item-content.component.html
+++ b/libs/components/src/item/item-content.component.html
@@ -8,8 +8,8 @@
     >
       <div
         [ngClass]="{
-          'tw-truncate': truncate,
-          'tw-text-wrap tw-overflow-auto tw-break-words': !truncate,
+          'tw-truncate': truncate(),
+          'tw-text-wrap tw-overflow-auto tw-break-words': !truncate(),
         }"
       >
         <ng-content></ng-content>
@@ -22,8 +22,8 @@
       bitTypography="helper"
       class="tw-text-muted tw-w-full"
       [ngClass]="{
-        'tw-truncate': truncate,
-        'tw-text-wrap tw-overflow-auto tw-break-words': !truncate,
+        'tw-truncate': truncate(),
+        'tw-text-wrap tw-overflow-auto tw-break-words': !truncate(),
       }"
     >
       <ng-content select="[slot=secondary]"></ng-content>
diff --git a/libs/components/src/item/item-content.component.ts b/libs/components/src/item/item-content.component.ts
index 0f828de33b4..f75713b139e 100644
--- a/libs/components/src/item/item-content.component.ts
+++ b/libs/components/src/item/item-content.component.ts
@@ -7,9 +7,9 @@ import {
   ChangeDetectionStrategy,
   Component,
   ElementRef,
-  Input,
   signal,
   ViewChild,
+  input,
 } from "@angular/core";
 
 import { TypographyModule } from "../typography";
@@ -39,7 +39,7 @@ export class ItemContentComponent implements AfterContentChecked {
    *
    * Default behavior is truncation.
    */
-  @Input() truncate = true;
+  readonly truncate = input(true);
 
   ngAfterContentChecked(): void {
     this.endSlotHasChildren.set(this.endSlot?.nativeElement.childElementCount > 0);
diff --git a/libs/components/src/link/link.directive.ts b/libs/components/src/link/link.directive.ts
index 1a653fd1c83..aced89fc7b3 100644
--- a/libs/components/src/link/link.directive.ts
+++ b/libs/components/src/link/link.directive.ts
@@ -1,12 +1,4 @@
-import {
-  Input,
-  HostBinding,
-  Directive,
-  inject,
-  ElementRef,
-  input,
-  booleanAttribute,
-} from "@angular/core";
+import { HostBinding, Directive, inject, ElementRef, input, booleanAttribute } from "@angular/core";
 
 import { ariaDisableElement } from "../utils";
 
@@ -77,8 +69,7 @@ const commonStyles = [
 
 @Directive()
 abstract class LinkDirective {
-  @Input()
-  linkType: LinkType = "primary";
+  readonly linkType = input<LinkType>("primary");
 }
 
 /**
@@ -96,7 +87,7 @@ export class AnchorLinkDirective extends LinkDirective {
   @HostBinding("class") get classList() {
     return ["before:-tw-inset-y-[0.125rem]"]
       .concat(commonStyles)
-      .concat(linkStyles[this.linkType] ?? []);
+      .concat(linkStyles[this.linkType()] ?? []);
   }
 }
 
@@ -111,7 +102,7 @@ export class ButtonLinkDirective extends LinkDirective {
   @HostBinding("class") get classList() {
     return ["before:-tw-inset-y-[0.25rem]"]
       .concat(commonStyles)
-      .concat(linkStyles[this.linkType] ?? []);
+      .concat(linkStyles[this.linkType()] ?? []);
   }
 
   constructor() {
diff --git a/libs/components/src/menu/menu-item.directive.ts b/libs/components/src/menu/menu-item.directive.ts
index 37b68eecd74..088e2a4293f 100644
--- a/libs/components/src/menu/menu-item.directive.ts
+++ b/libs/components/src/menu/menu-item.directive.ts
@@ -39,6 +39,9 @@ export class MenuItemDirective implements FocusableOption {
     return this.disabled || null; // native disabled attr must be null when false
   }
 
+  // TODO: Skipped for signal migration because:
+  //  This input overrides a field from a superclass, while the superclass field
+  //  is not migrated.
   @Input({ transform: coerceBooleanProperty }) disabled?: boolean = false;
 
   constructor(public elementRef: ElementRef<HTMLButtonElement>) {}
diff --git a/libs/components/src/menu/menu-trigger-for.directive.ts b/libs/components/src/menu/menu-trigger-for.directive.ts
index 528697600c4..94353299c5d 100644
--- a/libs/components/src/menu/menu-trigger-for.directive.ts
+++ b/libs/components/src/menu/menu-trigger-for.directive.ts
@@ -8,26 +8,30 @@ import {
   ElementRef,
   HostBinding,
   HostListener,
-  Input,
   OnDestroy,
   ViewContainerRef,
+  input,
 } from "@angular/core";
 import { Observable, Subscription } from "rxjs";
 import { filter, mergeWith } from "rxjs/operators";
 
 import { MenuComponent } from "./menu.component";
 
-@Directive({ selector: "[bitMenuTriggerFor]", exportAs: "menuTrigger", standalone: true })
+@Directive({
+  selector: "[bitMenuTriggerFor]",
+  exportAs: "menuTrigger",
+  standalone: true,
+  host: { "[attr.role]": "this.role()" },
+})
 export class MenuTriggerForDirective implements OnDestroy {
   @HostBinding("attr.aria-expanded") isOpen = false;
   @HostBinding("attr.aria-haspopup") get hasPopup(): "menu" | "dialog" {
-    return this.menu?.ariaRole || "menu";
+    return this.menu()?.ariaRole() || "menu";
   }
-  @HostBinding("attr.role")
-  @Input()
-  role = "button";
 
-  @Input("bitMenuTriggerFor") menu: MenuComponent;
+  readonly role = input("button");
+
+  readonly menu = input<MenuComponent>(undefined, { alias: "bitMenuTriggerFor" });
 
   private overlayRef: OverlayRef;
   private defaultMenuConfig: OverlayConfig = {
@@ -66,14 +70,15 @@ export class MenuTriggerForDirective implements OnDestroy {
   }
 
   private openMenu() {
-    if (this.menu == null) {
+    const menu = this.menu();
+    if (menu == null) {
       throw new Error("Cannot find bit-menu element");
     }
 
     this.isOpen = true;
     this.overlayRef = this.overlay.create(this.defaultMenuConfig);
 
-    const templatePortal = new TemplatePortal(this.menu.templateRef, this.viewContainerRef);
+    const templatePortal = new TemplatePortal(menu.templateRef, this.viewContainerRef);
     this.overlayRef.attach(templatePortal);
 
     this.closedEventsSub = this.getClosedEvents().subscribe((event: KeyboardEvent | undefined) => {
@@ -90,11 +95,11 @@ export class MenuTriggerForDirective implements OnDestroy {
       }
       this.destroyMenu();
     });
-    if (this.menu.keyManager) {
-      this.menu.keyManager.setFirstItemActive();
+    if (menu.keyManager) {
+      menu.keyManager.setFirstItemActive();
       this.keyDownEventsSub = this.overlayRef
         .keydownEvents()
-        .subscribe((event: KeyboardEvent) => this.menu.keyManager.onKeydown(event));
+        .subscribe((event: KeyboardEvent) => this.menu().keyManager.onKeydown(event));
     }
   }
 
@@ -105,19 +110,19 @@ export class MenuTriggerForDirective implements OnDestroy {
 
     this.isOpen = false;
     this.disposeAll();
-    this.menu.closed.emit();
+    this.menu().closed.emit();
   }
 
   private getClosedEvents(): Observable<any> {
     const detachments = this.overlayRef.detachments();
     const escKey = this.overlayRef.keydownEvents().pipe(
       filter((event: KeyboardEvent) => {
-        const keys = this.menu.ariaRole === "menu" ? ["Escape", "Tab"] : ["Escape"];
+        const keys = this.menu().ariaRole() === "menu" ? ["Escape", "Tab"] : ["Escape"];
         return keys.includes(event.key);
       }),
     );
     const backdrop = this.overlayRef.backdropClick();
-    const menuClosed = this.menu.closed;
+    const menuClosed = this.menu().closed;
 
     return detachments.pipe(mergeWith(escKey, backdrop, menuClosed));
   }
diff --git a/libs/components/src/menu/menu.component.html b/libs/components/src/menu/menu.component.html
index 31fd6df0a66..f5c60660775 100644
--- a/libs/components/src/menu/menu.component.html
+++ b/libs/components/src/menu/menu.component.html
@@ -2,10 +2,10 @@
   <div
     (click)="closed.emit()"
     class="tw-flex tw-shrink-0 tw-flex-col tw-rounded-lg tw-border tw-border-solid tw-border-secondary-500 tw-bg-background tw-bg-clip-padding tw-py-1 tw-overflow-y-auto"
-    [attr.role]="ariaRole"
-    [attr.aria-label]="ariaLabel"
+    [attr.role]="ariaRole()"
+    [attr.aria-label]="ariaLabel()"
     cdkTrapFocus
-    [cdkTrapFocusAutoCapture]="ariaRole === 'dialog'"
+    [cdkTrapFocusAutoCapture]="ariaRole() === 'dialog'"
   >
     <ng-content></ng-content>
   </div>
diff --git a/libs/components/src/menu/menu.component.ts b/libs/components/src/menu/menu.component.ts
index 8636f158729..0a76d59a09c 100644
--- a/libs/components/src/menu/menu.component.ts
+++ b/libs/components/src/menu/menu.component.ts
@@ -10,7 +10,7 @@ import {
   ContentChildren,
   QueryList,
   AfterContentInit,
-  Input,
+  input,
 } from "@angular/core";
 
 import { MenuItemDirective } from "./menu-item.directive";
@@ -28,12 +28,12 @@ export class MenuComponent implements AfterContentInit {
   menuItems: QueryList<MenuItemDirective>;
   keyManager?: FocusKeyManager<MenuItemDirective>;
 
-  @Input() ariaRole: "menu" | "dialog" = "menu";
+  readonly ariaRole = input<"menu" | "dialog">("menu");
 
-  @Input() ariaLabel: string;
+  readonly ariaLabel = input<string>();
 
   ngAfterContentInit() {
-    if (this.ariaRole === "menu") {
+    if (this.ariaRole() === "menu") {
       this.keyManager = new FocusKeyManager(this.menuItems)
         .withWrap()
         .skipPredicate((item) => item.disabled);
diff --git a/libs/components/src/multi-select/multi-select.component.html b/libs/components/src/multi-select/multi-select.component.html
index 0b46ef2662d..8aa45b7dae8 100644
--- a/libs/components/src/multi-select/multi-select.component.html
+++ b/libs/components/src/multi-select/multi-select.component.html
@@ -1,12 +1,12 @@
 <ng-select
-  [items]="baseItems"
+  [items]="baseItems()"
   [(ngModel)]="selectedItems"
   (ngModelChange)="onChange($event)"
   (blur)="onBlur()"
   bindLabel="listName"
   groupBy="parentGrouping"
-  [placeholder]="placeholder"
-  [loading]="loading"
+  [placeholder]="placeholder()"
+  [loading]="loading()"
   [loadingText]="loadingText"
   notFoundText="{{ 'multiSelectNotFound' | i18n }}"
   clearAllText="{{ 'multiSelectClearAll' | i18n }}"
diff --git a/libs/components/src/multi-select/multi-select.component.ts b/libs/components/src/multi-select/multi-select.component.ts
index 6fd87483780..af1fd8bab42 100644
--- a/libs/components/src/multi-select/multi-select.component.ts
+++ b/libs/components/src/multi-select/multi-select.component.ts
@@ -1,6 +1,5 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
-import { coerceBooleanProperty } from "@angular/cdk/coercion";
 import { hasModifierKey } from "@angular/cdk/keycodes";
 import {
   Component,
@@ -12,6 +11,9 @@ import {
   HostBinding,
   Optional,
   Self,
+  input,
+  model,
+  booleanAttribute,
 } from "@angular/core";
 import {
   ControlValueAccessor,
@@ -38,6 +40,9 @@ let nextId = 0;
   templateUrl: "./multi-select.component.html",
   providers: [{ provide: BitFormFieldControl, useExisting: MultiSelectComponent }],
   imports: [NgSelectModule, ReactiveFormsModule, FormsModule, BadgeModule, I18nPipe],
+  host: {
+    "[id]": "this.id()",
+  },
 })
 /**
  * This component has been implemented to only support Multi-select list events
@@ -46,12 +51,14 @@ export class MultiSelectComponent implements OnInit, BitFormFieldControl, Contro
   @ViewChild(NgSelectComponent) select: NgSelectComponent;
 
   // Parent component should only pass selectable items (complete list - selected items = baseItems)
-  @Input() baseItems: SelectItemView[];
+  readonly baseItems = model<SelectItemView[]>();
   // Defaults to native ng-select behavior - set to "true" to clear selected items on dropdown close
-  @Input() removeSelectedItems = false;
-  @Input() placeholder: string;
-  @Input() loading = false;
-  @Input({ transform: coerceBooleanProperty }) disabled?: boolean;
+  readonly removeSelectedItems = input(false);
+  readonly placeholder = model<string>();
+  readonly loading = input(false);
+  // TODO: Skipped for signal migration because:
+  //  Your application code writes to the input. This prevents migration.
+  @Input({ transform: booleanAttribute }) disabled?: boolean;
 
   // Internal tracking of selected items
   protected selectedItems: SelectItemView[];
@@ -79,7 +86,9 @@ export class MultiSelectComponent implements OnInit, BitFormFieldControl, Contro
 
   ngOnInit(): void {
     // Default Text Values
-    this.placeholder = this.placeholder ?? this.i18nService.t("multiSelectPlaceholder");
+    this.placeholder.update(
+      (placeholder) => placeholder ?? this.i18nService.t("multiSelectPlaceholder"),
+    );
     this.loadingText = this.i18nService.t("multiSelectLoading");
   }
 
@@ -119,15 +128,15 @@ export class MultiSelectComponent implements OnInit, BitFormFieldControl, Contro
     this.onItemsConfirmed.emit(this.selectedItems);
 
     // Remove selected items from base list based on input property
-    if (this.removeSelectedItems) {
-      let updatedBaseItems = this.baseItems;
+    if (this.removeSelectedItems()) {
+      let updatedBaseItems = this.baseItems();
       this.selectedItems.forEach((selectedItem) => {
         updatedBaseItems = updatedBaseItems.filter((item) => selectedItem.id !== item.id);
       });
 
       // Reset Lists
       this.selectedItems = null;
-      this.baseItems = updatedBaseItems;
+      this.baseItems.set(updatedBaseItems);
     }
   }
 
@@ -186,9 +195,11 @@ export class MultiSelectComponent implements OnInit, BitFormFieldControl, Contro
   }
 
   /**Implemented as part of BitFormFieldControl */
-  @HostBinding() @Input() id = `bit-multi-select-${nextId++}`;
+  readonly id = input(`bit-multi-select-${nextId++}`);
 
   /**Implemented as part of BitFormFieldControl */
+  // TODO: Skipped for signal migration because:
+  //  Accessor inputs cannot be migrated as they are too complex.
   @HostBinding("attr.required")
   @Input()
   get required() {
diff --git a/libs/components/src/navigation/nav-base.component.ts b/libs/components/src/navigation/nav-base.component.ts
index dc3084509a5..0fb73740273 100644
--- a/libs/components/src/navigation/nav-base.component.ts
+++ b/libs/components/src/navigation/nav-base.component.ts
@@ -1,6 +1,6 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
-import { Directive, EventEmitter, Input, Output } from "@angular/core";
+import { Directive, EventEmitter, Output, input } from "@angular/core";
 import { RouterLink, RouterLinkActive } from "@angular/router";
 
 /**
@@ -11,17 +11,17 @@ export abstract class NavBaseComponent {
   /**
    * Text to display in main content
    */
-  @Input() text: string;
+  readonly text = input<string>();
 
   /**
    * `aria-label` for main content
    */
-  @Input() ariaLabel: string;
+  readonly ariaLabel = input<string>();
 
   /**
    * Optional icon, e.g. `"bwi-collection-shared"`
    */
-  @Input() icon: string;
+  readonly icon = input<string>();
 
   /**
    * Optional route to be passed to internal `routerLink`. If not provided, the nav component will render as a button.
@@ -34,31 +34,31 @@ export abstract class NavBaseComponent {
    *
    * See: {@link https://github.com/angular/angular/issues/24482}
    */
-  @Input() route?: RouterLink["routerLink"];
+  readonly route = input<RouterLink["routerLink"]>();
 
   /**
    * Passed to internal `routerLink`
    *
    * See {@link RouterLink.relativeTo}
    */
-  @Input() relativeTo?: RouterLink["relativeTo"];
+  readonly relativeTo = input<RouterLink["relativeTo"]>();
 
   /**
    * Passed to internal `routerLink`
    *
    * See {@link RouterLinkActive.routerLinkActiveOptions}
    */
-  @Input() routerLinkActiveOptions?: RouterLinkActive["routerLinkActiveOptions"] = {
+  readonly routerLinkActiveOptions = input<RouterLinkActive["routerLinkActiveOptions"]>({
     paths: "subset",
     queryParams: "ignored",
     fragment: "ignored",
     matrixParams: "ignored",
-  };
+  });
 
   /**
    * If `true`, do not change styles when nav item is active.
    */
-  @Input() hideActiveStyles = false;
+  readonly hideActiveStyles = input(false);
 
   /**
    * Fires when main content is clicked
diff --git a/libs/components/src/navigation/nav-group.component.html b/libs/components/src/navigation/nav-group.component.html
index 6a9ee4c0ab9..d63cf5d8814 100644
--- a/libs/components/src/navigation/nav-group.component.html
+++ b/libs/components/src/navigation/nav-group.component.html
@@ -1,28 +1,28 @@
 <!-- This a higher order component that composes `NavItemComponent`  -->
-@if (!hideIfEmpty || nestedNavComponents.length > 0) {
+@if (!hideIfEmpty() || nestedNavComponents.length > 0) {
   <bit-nav-item
-    [text]="text"
-    [icon]="icon"
-    [route]="route"
-    [relativeTo]="relativeTo"
-    [routerLinkActiveOptions]="routerLinkActiveOptions"
+    [text]="text()"
+    [icon]="icon()"
+    [route]="route()"
+    [relativeTo]="relativeTo()"
+    [routerLinkActiveOptions]="routerLinkActiveOptions()"
     (mainContentClicked)="handleMainContentClicked()"
-    [ariaLabel]="ariaLabel"
+    [ariaLabel]="ariaLabel()"
     [hideActiveStyles]="parentHideActiveStyles"
   >
     <ng-template #button>
       <button
         type="button"
         class="tw-ms-auto"
-        [bitIconButton]="open ? 'bwi-angle-up' : 'bwi-angle-down'"
+        [bitIconButton]="open() ? 'bwi-angle-up' : 'bwi-angle-down'"
         [buttonType]="'light'"
         (click)="toggle($event)"
         size="small"
         [title]="'toggleCollapse' | i18n"
         aria-haspopup="true"
-        [attr.aria-expanded]="open.toString()"
+        [attr.aria-expanded]="open().toString()"
         [attr.aria-controls]="contentId"
-        [attr.aria-label]="['toggleCollapse' | i18n, text].join(' ')"
+        [attr.aria-label]="['toggleCollapse' | i18n, text()].join(' ')"
       ></button>
     </ng-template>
     <ng-container slot="end">
@@ -32,10 +32,10 @@
   </bit-nav-item>
   <!-- [attr.aria-controls] of the above button expects a unique ID on the controlled element -->
   @if (sideNavService.open$ | async) {
-    @if (open) {
+    @if (open()) {
       <div
         [attr.id]="contentId"
-        [attr.aria-label]="[text, 'submenu' | i18n].join(' ')"
+        [attr.aria-label]="[text(), 'submenu' | i18n].join(' ')"
         role="group"
       >
         <ng-content></ng-content>
diff --git a/libs/components/src/navigation/nav-group.component.ts b/libs/components/src/navigation/nav-group.component.ts
index b52f9fcd202..6e73d67f77a 100644
--- a/libs/components/src/navigation/nav-group.component.ts
+++ b/libs/components/src/navigation/nav-group.component.ts
@@ -4,11 +4,12 @@ import {
   Component,
   ContentChildren,
   EventEmitter,
-  Input,
   Optional,
   Output,
   QueryList,
   SkipSelf,
+  input,
+  model,
 } from "@angular/core";
 
 import { I18nPipe } from "@bitwarden/ui-common";
@@ -36,7 +37,7 @@ export class NavGroupComponent extends NavBaseComponent {
 
   /** When the side nav is open, the parent nav item should not show active styles when open. */
   protected get parentHideActiveStyles(): boolean {
-    return this.hideActiveStyles || (this.open && this.sideNavService.open);
+    return this.hideActiveStyles() || (this.open() && this.sideNavService.open);
   }
 
   /**
@@ -47,14 +48,12 @@ export class NavGroupComponent extends NavBaseComponent {
   /**
    * Is `true` if the expanded content is visible
    */
-  @Input()
-  open = false;
+  readonly open = model(false);
 
   /**
    * Automatically hide the nav group if there are no child buttons
    */
-  @Input({ transform: booleanAttribute })
-  hideIfEmpty = false;
+  readonly hideIfEmpty = input(false, { transform: booleanAttribute });
 
   @Output()
   openChange = new EventEmitter<boolean>();
@@ -67,24 +66,24 @@ export class NavGroupComponent extends NavBaseComponent {
   }
 
   setOpen(isOpen: boolean) {
-    this.open = isOpen;
-    this.openChange.emit(this.open);
+    this.open.set(isOpen);
+    this.openChange.emit(this.open());
     // FIXME: Remove when updating file. Eslint update
     // eslint-disable-next-line @typescript-eslint/no-unused-expressions
-    this.open && this.parentNavGroup?.setOpen(this.open);
+    this.open() && this.parentNavGroup?.setOpen(this.open());
   }
 
   protected toggle(event?: MouseEvent) {
     event?.stopPropagation();
-    this.setOpen(!this.open);
+    this.setOpen(!this.open());
   }
 
   protected handleMainContentClicked() {
     if (!this.sideNavService.open) {
-      if (!this.route) {
+      if (!this.route()) {
         this.sideNavService.setOpen();
       }
-      this.open = true;
+      this.open.set(true);
     } else {
       this.toggle();
     }
diff --git a/libs/components/src/navigation/nav-item.component.html b/libs/components/src/navigation/nav-item.component.html
index 3d4dadacffa..f8e27dfc571 100644
--- a/libs/components/src/navigation/nav-item.component.html
+++ b/libs/components/src/navigation/nav-item.component.html
@@ -1,6 +1,6 @@
 <div class="tw-ps-2 tw-pe-2">
   @let open = sideNavService.open$ | async;
-  @if (open || icon) {
+  @if (open || icon()) {
     <div
       class="tw-relative tw-rounded-md tw-h-10"
       [ngClass]="[
@@ -16,17 +16,17 @@
         <!-- Main content of `NavItem` -->
         <ng-template #anchorAndButtonContent>
           <div
-            [title]="text"
+            [title]="text()"
             class="tw-gap-2 tw-items-center tw-font-bold tw-h-full tw-content-center"
             [ngClass]="{ 'tw-text-center': !open, 'tw-flex': open }"
           >
             <i
-              class="!tw-m-0 tw-w-4 tw-shrink-0 bwi bwi-fw tw-text-alt2 {{ icon }}"
+              class="!tw-m-0 tw-w-4 tw-shrink-0 bwi bwi-fw tw-text-alt2 {{ icon() }}"
               [attr.aria-hidden]="open"
-              [attr.aria-label]="text"
+              [attr.aria-label]="text()"
             ></i>
             @if (open) {
-              <span class="tw-truncate">{{ text }}</span>
+              <span class="tw-truncate">{{ text() }}</span>
             }
           </div>
         </ng-template>
@@ -38,11 +38,11 @@
           <a
             class="tw-size-full tw-px-3 tw-block tw-truncate tw-border-none tw-bg-transparent tw-text-start !tw-text-alt2 hover:tw-text-alt2 hover:tw-no-underline focus:tw-outline-none"
             data-fvw
-            [routerLink]="route"
-            [relativeTo]="relativeTo"
-            [attr.aria-label]="ariaLabel || text"
+            [routerLink]="route()"
+            [relativeTo]="relativeTo()"
+            [attr.aria-label]="ariaLabel() || text()"
             routerLinkActive
-            [routerLinkActiveOptions]="routerLinkActiveOptions"
+            [routerLinkActiveOptions]="routerLinkActiveOptions()"
             [ariaCurrentWhenActive]="'page'"
             (isActiveChange)="setIsActive($event)"
             (click)="mainContentClicked.emit()"
diff --git a/libs/components/src/navigation/nav-item.component.ts b/libs/components/src/navigation/nav-item.component.ts
index 23791c5b979..8d57a752702 100644
--- a/libs/components/src/navigation/nav-item.component.ts
+++ b/libs/components/src/navigation/nav-item.component.ts
@@ -1,5 +1,5 @@
 import { CommonModule } from "@angular/common";
-import { Component, HostListener, Input, Optional } from "@angular/core";
+import { Component, HostListener, Optional, input } from "@angular/core";
 import { RouterModule } from "@angular/router";
 import { BehaviorSubject, map } from "rxjs";
 
@@ -21,7 +21,7 @@ export abstract class NavGroupAbstraction {
 })
 export class NavItemComponent extends NavBaseComponent {
   /** Forces active styles to be shown, regardless of the `routerLinkActiveOptions` */
-  @Input() forceActiveStyles? = false;
+  readonly forceActiveStyles = input<boolean>(false);
 
   /**
    * Is `true` if `to` matches the current route
@@ -34,7 +34,7 @@ export class NavItemComponent extends NavBaseComponent {
     }
   }
   protected get showActiveStyles() {
-    return this.forceActiveStyles || (this._isActive && !this.hideActiveStyles);
+    return this.forceActiveStyles() || (this._isActive && !this.hideActiveStyles());
   }
 
   /**
diff --git a/libs/components/src/navigation/nav-logo.component.html b/libs/components/src/navigation/nav-logo.component.html
index 40dbe8189d6..86d983fa632 100644
--- a/libs/components/src/navigation/nav-logo.component.html
+++ b/libs/components/src/navigation/nav-logo.component.html
@@ -6,14 +6,14 @@
   class="tw-px-2 tw-pt-5"
 >
   <a
-    [routerLink]="route"
+    [routerLink]="route()"
     class="tw-p-3 tw-block tw-rounded-md tw-bg-background-alt3 tw-outline-none focus-visible:tw-ring focus-visible:tw-ring-inset focus-visible:tw-ring-text-alt2 hover:tw-bg-hover-contrast [&_path]:tw-fill-text-alt2"
     [ngClass]="{ '[&_svg]:tw-w-[1.687rem]': !sideNavService.open }"
-    [attr.aria-label]="label"
-    [title]="label"
+    [attr.aria-label]="label()"
+    [title]="label()"
     routerLinkActive
     [ariaCurrentWhenActive]="'page'"
   >
-    <bit-icon [icon]="sideNavService.open ? openIcon : closedIcon"></bit-icon>
+    <bit-icon [icon]="sideNavService.open ? openIcon() : closedIcon()"></bit-icon>
   </a>
 </div>
diff --git a/libs/components/src/navigation/nav-logo.component.ts b/libs/components/src/navigation/nav-logo.component.ts
index 8c40ea0dc79..74b44266074 100644
--- a/libs/components/src/navigation/nav-logo.component.ts
+++ b/libs/components/src/navigation/nav-logo.component.ts
@@ -1,7 +1,8 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
+
 import { CommonModule } from "@angular/common";
-import { Component, Input } from "@angular/core";
+import { Component, input } from "@angular/core";
 import { RouterLinkActive, RouterLink } from "@angular/router";
 
 import { Icon } from "../icon";
@@ -17,18 +18,18 @@ import { SideNavService } from "./side-nav.service";
 })
 export class NavLogoComponent {
   /** Icon that is displayed when the side nav is closed */
-  @Input() closedIcon = BitwardenShield;
+  readonly closedIcon = input(BitwardenShield);
 
   /** Icon that is displayed when the side nav is open */
-  @Input({ required: true }) openIcon: Icon;
+  readonly openIcon = input.required<Icon>();
 
   /**
    * Route to be passed to internal `routerLink`
    */
-  @Input({ required: true }) route: string | any[];
+  readonly route = input.required<string | any[]>();
 
   /** Passed to `attr.aria-label` and `attr.title` */
-  @Input({ required: true }) label: string;
+  readonly label = input.required<string>();
 
   constructor(protected sideNavService: SideNavService) {}
 }
diff --git a/libs/components/src/navigation/side-nav.component.html b/libs/components/src/navigation/side-nav.component.html
index 124daa776d0..46ccc13bc8a 100644
--- a/libs/components/src/navigation/side-nav.component.html
+++ b/libs/components/src/navigation/side-nav.component.html
@@ -10,7 +10,7 @@
     class="tw-fixed md:tw-sticky tw-inset-y-0 tw-left-0 tw-z-30 tw-flex tw-h-screen tw-flex-col tw-overscroll-none tw-overflow-auto tw-bg-background-alt3 tw-outline-none"
     [ngClass]="{ 'tw-w-60': data.open }"
     [ngStyle]="
-      variant === 'secondary' && {
+      variant() === 'secondary' && {
         '--color-text-alt2': 'var(--color-text-main)',
         '--color-background-alt3': 'var(--color-secondary-100)',
         '--color-background-alt4': 'var(--color-secondary-300)',
diff --git a/libs/components/src/navigation/side-nav.component.ts b/libs/components/src/navigation/side-nav.component.ts
index 49b08c63f7c..75365b738af 100644
--- a/libs/components/src/navigation/side-nav.component.ts
+++ b/libs/components/src/navigation/side-nav.component.ts
@@ -2,7 +2,7 @@
 // @ts-strict-ignore
 import { CdkTrapFocus } from "@angular/cdk/a11y";
 import { CommonModule } from "@angular/common";
-import { Component, ElementRef, Input, ViewChild } from "@angular/core";
+import { Component, ElementRef, ViewChild, input } from "@angular/core";
 
 import { I18nPipe } from "@bitwarden/ui-common";
 
@@ -19,7 +19,7 @@ export type SideNavVariant = "primary" | "secondary";
   imports: [CommonModule, CdkTrapFocus, NavDividerComponent, BitIconButtonComponent, I18nPipe],
 })
 export class SideNavComponent {
-  @Input() variant: SideNavVariant = "primary";
+  readonly variant = input<SideNavVariant>("primary");
 
   @ViewChild("toggleButton", { read: ElementRef, static: true })
   private toggleButton: ElementRef<HTMLButtonElement>;
diff --git a/libs/components/src/no-items/no-items.component.html b/libs/components/src/no-items/no-items.component.html
index ae2416d7a7b..a2659abb9a2 100644
--- a/libs/components/src/no-items/no-items.component.html
+++ b/libs/components/src/no-items/no-items.component.html
@@ -1,6 +1,6 @@
 <div class="tw-mx-auto tw-flex tw-flex-col tw-items-center tw-justify-center tw-pt-6">
   <div class="tw-max-w-sm tw-flex tw-flex-col tw-items-center">
-    <bit-icon [icon]="icon" aria-hidden="true"></bit-icon>
+    <bit-icon [icon]="icon()" aria-hidden="true"></bit-icon>
     <h3 class="tw-font-semibold tw-text-center tw-mt-4">
       <ng-content select="[slot=title]"></ng-content>
     </h3>
diff --git a/libs/components/src/no-items/no-items.component.ts b/libs/components/src/no-items/no-items.component.ts
index 20ce95a53ba..7c00999f59f 100644
--- a/libs/components/src/no-items/no-items.component.ts
+++ b/libs/components/src/no-items/no-items.component.ts
@@ -1,4 +1,4 @@
-import { Component, Input } from "@angular/core";
+import { Component, input } from "@angular/core";
 
 import { Icons } from "..";
 import { BitIconComponent } from "../icon/icon.component";
@@ -12,5 +12,5 @@ import { BitIconComponent } from "../icon/icon.component";
   imports: [BitIconComponent],
 })
 export class NoItemsComponent {
-  @Input() icon = Icons.Search;
+  readonly icon = input(Icons.Search);
 }
diff --git a/libs/components/src/popover/popover-trigger-for.directive.ts b/libs/components/src/popover/popover-trigger-for.directive.ts
index 47fda1ca267..d21ea9d7ed6 100644
--- a/libs/components/src/popover/popover-trigger-for.directive.ts
+++ b/libs/components/src/popover/popover-trigger-for.directive.ts
@@ -6,11 +6,11 @@ import {
   AfterViewInit,
   Directive,
   ElementRef,
-  HostBinding,
   HostListener,
-  Input,
   OnDestroy,
   ViewContainerRef,
+  input,
+  model,
 } from "@angular/core";
 import { Observable, Subscription, filter, mergeWith } from "rxjs";
 
@@ -20,27 +20,26 @@ import { PopoverComponent } from "./popover.component";
 @Directive({
   selector: "[bitPopoverTriggerFor]",
   exportAs: "popoverTrigger",
+  host: {
+    "[attr.aria-expanded]": "this.popoverOpen()",
+  },
 })
 export class PopoverTriggerForDirective implements OnDestroy, AfterViewInit {
-  @Input()
-  @HostBinding("attr.aria-expanded")
-  popoverOpen = false;
+  readonly popoverOpen = model(false);
 
-  @Input("bitPopoverTriggerFor")
-  popover: PopoverComponent;
+  readonly popover = input<PopoverComponent>(undefined, { alias: "bitPopoverTriggerFor" });
 
-  @Input("position")
-  position: string;
+  readonly position = input<string>();
 
   private overlayRef: OverlayRef;
   private closedEventsSub: Subscription;
 
   get positions() {
-    if (!this.position) {
+    if (!this.position()) {
       return defaultPositions;
     }
 
-    const preferredPosition = defaultPositions.find((position) => position.id === this.position);
+    const preferredPosition = defaultPositions.find((position) => position.id === this.position());
 
     if (preferredPosition) {
       return [preferredPosition, ...defaultPositions];
@@ -72,7 +71,7 @@ export class PopoverTriggerForDirective implements OnDestroy, AfterViewInit {
 
   @HostListener("click")
   togglePopover() {
-    if (this.popoverOpen) {
+    if (this.popoverOpen()) {
       this.closePopover();
     } else {
       this.openPopover();
@@ -80,10 +79,10 @@ export class PopoverTriggerForDirective implements OnDestroy, AfterViewInit {
   }
 
   private openPopover() {
-    this.popoverOpen = true;
+    this.popoverOpen.set(true);
     this.overlayRef = this.overlay.create(this.defaultPopoverConfig);
 
-    const templatePortal = new TemplatePortal(this.popover.templateRef, this.viewContainerRef);
+    const templatePortal = new TemplatePortal(this.popover().templateRef, this.viewContainerRef);
 
     this.overlayRef.attach(templatePortal);
     this.closedEventsSub = this.getClosedEvents().subscribe(() => {
@@ -97,17 +96,17 @@ export class PopoverTriggerForDirective implements OnDestroy, AfterViewInit {
       .keydownEvents()
       .pipe(filter((event: KeyboardEvent) => event.key === "Escape"));
     const backdrop = this.overlayRef.backdropClick();
-    const popoverClosed = this.popover.closed;
+    const popoverClosed = this.popover().closed;
 
     return detachments.pipe(mergeWith(escKey, backdrop, popoverClosed));
   }
 
   private destroyPopover() {
-    if (this.overlayRef == null || !this.popoverOpen) {
+    if (this.overlayRef == null || !this.popoverOpen()) {
       return;
     }
 
-    this.popoverOpen = false;
+    this.popoverOpen.set(false);
     this.disposeAll();
   }
 
@@ -117,7 +116,7 @@ export class PopoverTriggerForDirective implements OnDestroy, AfterViewInit {
   }
 
   ngAfterViewInit() {
-    if (this.popoverOpen) {
+    if (this.popoverOpen()) {
       this.openPopover();
     }
   }
diff --git a/libs/components/src/popover/popover.component.html b/libs/components/src/popover/popover.component.html
index 05db9112b8a..dfcf3ff5d01 100644
--- a/libs/components/src/popover/popover.component.html
+++ b/libs/components/src/popover/popover.component.html
@@ -6,7 +6,7 @@
       >
         <div class="tw-mb-1 tw-me-2 tw-flex tw-items-start tw-justify-between tw-gap-4 tw-ps-4">
           <h2 bitTypography="h5" class="tw-mt-1 tw-font-semibold">
-            {{ title }}
+            {{ title() }}
           </h2>
           <button
             type="button"
diff --git a/libs/components/src/popover/popover.component.ts b/libs/components/src/popover/popover.component.ts
index 2c8f6fc3714..d4177105584 100644
--- a/libs/components/src/popover/popover.component.ts
+++ b/libs/components/src/popover/popover.component.ts
@@ -1,7 +1,7 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
 import { A11yModule } from "@angular/cdk/a11y";
-import { Component, EventEmitter, Input, Output, TemplateRef, ViewChild } from "@angular/core";
+import { Component, EventEmitter, Output, TemplateRef, ViewChild, input } from "@angular/core";
 
 import { IconButtonModule } from "../icon-button/icon-button.module";
 import { SharedModule } from "../shared/shared.module";
@@ -15,6 +15,6 @@ import { TypographyModule } from "../typography";
 })
 export class PopoverComponent {
   @ViewChild(TemplateRef) templateRef: TemplateRef<any>;
-  @Input() title = "";
+  readonly title = input("");
   @Output() closed = new EventEmitter();
 }
diff --git a/libs/components/src/progress/progress.component.html b/libs/components/src/progress/progress.component.html
index 21b047f732a..1d7e6820ab2 100644
--- a/libs/components/src/progress/progress.component.html
+++ b/libs/components/src/progress/progress.component.html
@@ -4,8 +4,8 @@
     role="progressbar"
     aria-valuemin="0"
     aria-valuemax="100"
-    attr.aria-valuenow="{{ barWidth }}"
-    [ngStyle]="{ width: barWidth + '%' }"
+    attr.aria-valuenow="{{ barWidth() }}"
+    [ngStyle]="{ width: barWidth() + '%' }"
   >
     @if (displayText) {
       <div class="tw-flex tw-h-full tw-flex-wrap tw-items-center tw-overflow-hidden">
diff --git a/libs/components/src/progress/progress.component.ts b/libs/components/src/progress/progress.component.ts
index 125d05025a2..cd1d55ac9eb 100644
--- a/libs/components/src/progress/progress.component.ts
+++ b/libs/components/src/progress/progress.component.ts
@@ -1,5 +1,5 @@
 import { CommonModule } from "@angular/common";
-import { Component, Input } from "@angular/core";
+import { Component, input } from "@angular/core";
 
 type ProgressSizeType = "small" | "default" | "large";
 type BackgroundType = "danger" | "primary" | "success" | "warning";
@@ -26,19 +26,19 @@ const BackgroundClasses: Record<BackgroundType, string[]> = {
   imports: [CommonModule],
 })
 export class ProgressComponent {
-  @Input() barWidth = 0;
-  @Input() bgColor: BackgroundType = "primary";
-  @Input() showText = true;
-  @Input() size: ProgressSizeType = "default";
-  @Input() text?: string;
+  readonly barWidth = input(0);
+  readonly bgColor = input<BackgroundType>("primary");
+  readonly showText = input(true);
+  readonly size = input<ProgressSizeType>("default");
+  readonly text = input<string>();
 
   get displayText() {
-    return this.showText && this.size !== "small";
+    return this.showText() && this.size() !== "small";
   }
 
   get outerBarStyles() {
     return ["tw-overflow-hidden", "tw-rounded", "tw-bg-secondary-100"].concat(
-      SizeClasses[this.size],
+      SizeClasses[this.size()],
     );
   }
 
@@ -53,11 +53,11 @@ export class ProgressComponent {
       "tw-text-contrast",
       "tw-transition-all",
     ]
-      .concat(SizeClasses[this.size])
-      .concat(BackgroundClasses[this.bgColor]);
+      .concat(SizeClasses[this.size()])
+      .concat(BackgroundClasses[this.bgColor()]);
   }
 
   get textContent() {
-    return this.text || this.barWidth + "%";
+    return this.text() || this.barWidth() + "%";
   }
 }
diff --git a/libs/components/src/radio-button/radio-button.component.html b/libs/components/src/radio-button/radio-button.component.html
index 04ed6189a58..48413301848 100644
--- a/libs/components/src/radio-button/radio-button.component.html
+++ b/libs/components/src/radio-button/radio-button.component.html
@@ -3,8 +3,8 @@
     type="radio"
     bitRadio
     [id]="inputId"
-    [disabled]="groupDisabled || disabled"
-    [value]="value"
+    [disabled]="groupDisabled || disabled()"
+    [value]="value()"
     [checked]="selected"
     (change)="onInputChange()"
     (blur)="onBlur()"
diff --git a/libs/components/src/radio-button/radio-button.component.spec.ts b/libs/components/src/radio-button/radio-button.component.spec.ts
index 265b8e23129..b47c1823160 100644
--- a/libs/components/src/radio-button/radio-button.component.spec.ts
+++ b/libs/components/src/radio-button/radio-button.component.spec.ts
@@ -1,5 +1,6 @@
-import { Component } from "@angular/core";
+import { Component, DebugElement } from "@angular/core";
 import { ComponentFixture, TestBed } from "@angular/core/testing";
+import { FormControl, FormGroup, FormsModule, ReactiveFormsModule } from "@angular/forms";
 import { By } from "@angular/platform-browser";
 
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
@@ -10,70 +11,62 @@ import { RadioButtonModule } from "./radio-button.module";
 import { RadioGroupComponent } from "./radio-group.component";
 
 describe("RadioButton", () => {
-  let mockGroupComponent: MockedButtonGroupComponent;
-  let fixture: ComponentFixture<TestApp>;
-  let testAppComponent: TestApp;
-  let radioButton: HTMLInputElement;
+  let fixture: ComponentFixture<TestComponent>;
+  let radioButtonGroup: RadioGroupComponent;
+  let radioButtons: DebugElement[];
 
   beforeEach(async () => {
-    mockGroupComponent = new MockedButtonGroupComponent();
-
     TestBed.configureTestingModule({
-      imports: [TestApp],
-      providers: [
-        { provide: RadioGroupComponent, useValue: mockGroupComponent },
-        { provide: I18nService, useValue: new I18nMockService({}) },
-      ],
+      imports: [TestComponent],
+      providers: [{ provide: I18nService, useValue: new I18nMockService({}) }],
     });
 
     await TestBed.compileComponents();
-    fixture = TestBed.createComponent(TestApp);
+    fixture = TestBed.createComponent(TestComponent);
     fixture.detectChanges();
-    testAppComponent = fixture.debugElement.componentInstance;
-    radioButton = fixture.debugElement.query(By.css("input[type=radio]")).nativeElement;
+    radioButtonGroup = fixture.debugElement.query(
+      By.directive(RadioGroupComponent),
+    ).componentInstance;
+    radioButtons = fixture.debugElement.queryAll(By.css("input[type=radio]"));
   });
 
   it("should emit value when clicking on radio button", () => {
-    testAppComponent.value = "value";
+    const spyFn = jest.spyOn(radioButtonGroup, "onInputChange");
+
+    radioButtons[1].triggerEventHandler("change");
     fixture.detectChanges();
 
-    radioButton.click();
-    fixture.detectChanges();
-
-    expect(mockGroupComponent.onInputChange).toHaveBeenCalledWith("value");
+    expect(spyFn).toHaveBeenCalledWith(1);
   });
 
-  it("should check radio button when selected matches value", () => {
-    testAppComponent.value = "value";
+  it("should check radio button only when selected matches value", () => {
     fixture.detectChanges();
 
-    mockGroupComponent.selected = "value";
+    expect(radioButtons[0].nativeElement.checked).toBe(true);
+    expect(radioButtons[1].nativeElement.checked).toBe(false);
+
+    radioButtons[1].triggerEventHandler("change");
     fixture.detectChanges();
 
-    expect(radioButton.checked).toBe(true);
-  });
-
-  it("should not check radio button when selected does not match value", () => {
-    testAppComponent.value = "value";
-    fixture.detectChanges();
-
-    mockGroupComponent.selected = "nonMatchingValue";
-    fixture.detectChanges();
-
-    expect(radioButton.checked).toBe(false);
+    expect(radioButtons[0].nativeElement.checked).toBe(false);
+    expect(radioButtons[1].nativeElement.checked).toBe(true);
   });
 });
 
-class MockedButtonGroupComponent implements Partial<RadioGroupComponent> {
-  onInputChange = jest.fn();
-  selected: unknown = null;
-}
-
 @Component({
-  selector: "test-app",
-  template: `<bit-radio-button [value]="value"><bit-label>Element</bit-label></bit-radio-button>`,
-  imports: [RadioButtonModule],
+  selector: "test-component",
+  template: `
+    <form [formGroup]="formObj">
+      <bit-radio-group formControlName="radio">
+        <bit-radio-button [value]="0"><bit-label>Element</bit-label></bit-radio-button>
+        <bit-radio-button [value]="1"><bit-label>Element</bit-label></bit-radio-button>
+      </bit-radio-group>
+    </form>
+  `,
+  imports: [FormsModule, ReactiveFormsModule, RadioButtonModule],
 })
-class TestApp {
-  value?: string;
+class TestComponent {
+  formObj = new FormGroup({
+    radio: new FormControl(0),
+  });
 }
diff --git a/libs/components/src/radio-button/radio-button.component.ts b/libs/components/src/radio-button/radio-button.component.ts
index a319f86840b..84ed240b3f8 100644
--- a/libs/components/src/radio-button/radio-button.component.ts
+++ b/libs/components/src/radio-button/radio-button.component.ts
@@ -1,4 +1,4 @@
-import { Component, HostBinding, Input } from "@angular/core";
+import { Component, HostBinding, input } from "@angular/core";
 
 import { FormControlModule } from "../form-control/form-control.module";
 
@@ -11,20 +11,23 @@ let nextId = 0;
   selector: "bit-radio-button",
   templateUrl: "radio-button.component.html",
   imports: [FormControlModule, RadioInputComponent],
+  host: {
+    "[id]": "this.id()",
+  },
 })
 export class RadioButtonComponent {
-  @HostBinding("attr.id") @Input() id = `bit-radio-button-${nextId++}`;
+  readonly id = input(`bit-radio-button-${nextId++}`);
   @HostBinding("class") get classList() {
     return [this.block ? "tw-block" : "tw-inline-block", "tw-mb-1", "[&_bit-hint]:tw-mt-0"];
   }
 
-  @Input() value: unknown;
-  @Input() disabled = false;
+  readonly value = input<unknown>();
+  readonly disabled = input(false);
 
   constructor(private groupComponent: RadioGroupComponent) {}
 
   get inputId() {
-    return `${this.id}-input`;
+    return `${this.id()}-input`;
   }
 
   get name() {
@@ -32,7 +35,7 @@ export class RadioButtonComponent {
   }
 
   get selected() {
-    return this.groupComponent.selected === this.value;
+    return this.groupComponent.selected === this.value();
   }
 
   get groupDisabled() {
@@ -40,11 +43,11 @@ export class RadioButtonComponent {
   }
 
   get block() {
-    return this.groupComponent.block;
+    return this.groupComponent.block();
   }
 
   protected onInputChange() {
-    this.groupComponent.onInputChange(this.value);
+    this.groupComponent.onInputChange(this.value());
   }
 
   protected onBlur() {
diff --git a/libs/components/src/radio-button/radio-button.stories.ts b/libs/components/src/radio-button/radio-button.stories.ts
index f5d7f6732f5..b364115ae74 100644
--- a/libs/components/src/radio-button/radio-button.stories.ts
+++ b/libs/components/src/radio-button/radio-button.stories.ts
@@ -177,15 +177,15 @@ export const Disabled: Story = {
         <bit-radio-group formControlName="radio" aria-label="Example radio group">
           <bit-label>Group of radio buttons</bit-label>
 
-          <bit-radio-button id="radio-first" [value]="0" [disabled]="true">
+          <bit-radio-button [value]="0" [disabled]="true">
             <bit-label>First</bit-label>
           </bit-radio-button>
 
-          <bit-radio-button id="radio-second" [value]="1" [disabled]="true">
+          <bit-radio-button [value]="1" [disabled]="true">
             <bit-label>Second</bit-label>
           </bit-radio-button>
 
-          <bit-radio-button id="radio-third" [value]="2" [disabled]="true">
+          <bit-radio-button [value]="2" [disabled]="true">
             <bit-label>Third</bit-label>
           </bit-radio-button>
         </bit-radio-group>
diff --git a/libs/components/src/radio-button/radio-group.component.ts b/libs/components/src/radio-button/radio-group.component.ts
index 51c7c5e9c92..0f6a04486f7 100644
--- a/libs/components/src/radio-button/radio-group.component.ts
+++ b/libs/components/src/radio-button/radio-group.component.ts
@@ -1,7 +1,7 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
 import { NgTemplateOutlet } from "@angular/common";
-import { Component, ContentChild, HostBinding, Input, Optional, Self } from "@angular/core";
+import { Component, ContentChild, HostBinding, Optional, Input, Self, input } from "@angular/core";
 import { ControlValueAccessor, NgControl, Validators } from "@angular/forms";
 
 import { I18nPipe } from "@bitwarden/ui-common";
@@ -14,11 +14,16 @@ let nextId = 0;
   selector: "bit-radio-group",
   templateUrl: "radio-group.component.html",
   imports: [NgTemplateOutlet, I18nPipe],
+  host: {
+    "[id]": "id()",
+  },
 })
 export class RadioGroupComponent implements ControlValueAccessor {
   selected: unknown;
   disabled = false;
 
+  // TODO: Skipped for signal migration because:
+  //  Accessor inputs cannot be migrated as they are too complex.
   private _name?: string;
   @Input() get name() {
     return this._name ?? this.ngControl?.name?.toString();
@@ -27,10 +32,10 @@ export class RadioGroupComponent implements ControlValueAccessor {
     this._name = value;
   }
 
-  @Input() block = false;
+  readonly block = input(false);
 
   @HostBinding("attr.role") role = "radiogroup";
-  @HostBinding("attr.id") @Input() id = `bit-radio-group-${nextId++}`;
+  readonly id = input(`bit-radio-group-${nextId++}`);
   @HostBinding("class") classList = ["tw-block", "tw-mb-4"];
 
   @ContentChild(BitLabel) protected label: BitLabel;
diff --git a/libs/components/src/radio-button/radio-input.component.ts b/libs/components/src/radio-button/radio-input.component.ts
index 1598def5c65..6140969d651 100644
--- a/libs/components/src/radio-button/radio-input.component.ts
+++ b/libs/components/src/radio-button/radio-input.component.ts
@@ -1,6 +1,6 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
-import { Component, HostBinding, Input, Optional, Self } from "@angular/core";
+import { Component, HostBinding, input, Input, Optional, Self } from "@angular/core";
 import { NgControl, Validators } from "@angular/forms";
 
 import { BitFormControlAbstraction } from "../form-control";
@@ -11,9 +11,12 @@ let nextId = 0;
   selector: "input[type=radio][bitRadio]",
   template: "",
   providers: [{ provide: BitFormControlAbstraction, useExisting: RadioInputComponent }],
+  host: {
+    "[id]": "this.id()",
+  },
 })
 export class RadioInputComponent implements BitFormControlAbstraction {
-  @HostBinding("attr.id") @Input() id = `bit-radio-input-${nextId++}`;
+  readonly id = input(`bit-radio-input-${nextId++}`);
 
   @HostBinding("class")
   protected inputClasses = [
@@ -73,6 +76,8 @@ export class RadioInputComponent implements BitFormControlAbstraction {
 
   constructor(@Optional() @Self() private ngControl?: NgControl) {}
 
+  // TODO: Skipped for signal migration because:
+  //  Accessor inputs cannot be migrated as they are too complex.
   @HostBinding()
   @Input()
   get disabled() {
@@ -83,6 +88,8 @@ export class RadioInputComponent implements BitFormControlAbstraction {
   }
   private _disabled: boolean;
 
+  // TODO: Skipped for signal migration because:
+  //  Accessor inputs cannot be migrated as they are too complex.
   @Input()
   get required() {
     return (
diff --git a/libs/components/src/search/search.component.html b/libs/components/src/search/search.component.html
index 759e25c07dd..803b61c6322 100644
--- a/libs/components/src/search/search.component.html
+++ b/libs/components/src/search/search.component.html
@@ -12,12 +12,12 @@
     bitInput
     [type]="inputType"
     [id]="id"
-    [placeholder]="placeholder ?? ('search' | i18n)"
+    [placeholder]="placeholder() ?? ('search' | i18n)"
     class="tw-ps-9"
     [ngModel]="searchText"
     (ngModelChange)="onChange($event)"
     (blur)="onTouch()"
-    [disabled]="disabled"
-    [attr.autocomplete]="autocomplete"
+    [disabled]="disabled()"
+    [attr.autocomplete]="autocomplete()"
   />
 </div>
diff --git a/libs/components/src/search/search.component.ts b/libs/components/src/search/search.component.ts
index 0cdd9c611fa..ef12e7eead6 100644
--- a/libs/components/src/search/search.component.ts
+++ b/libs/components/src/search/search.component.ts
@@ -1,6 +1,6 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
-import { Component, ElementRef, Input, ViewChild } from "@angular/core";
+import { Component, ElementRef, ViewChild, input, model } from "@angular/core";
 import {
   ControlValueAccessor,
   NG_VALUE_ACCESSOR,
@@ -43,9 +43,9 @@ export class SearchComponent implements ControlValueAccessor, FocusableElement {
   // Use `type="text"` for Safari to improve rendering performance
   protected inputType = isBrowserSafariApi() ? ("text" as const) : ("search" as const);
 
-  @Input() disabled: boolean;
-  @Input() placeholder: string;
-  @Input() autocomplete: string;
+  readonly disabled = model<boolean>();
+  readonly placeholder = input<string>();
+  readonly autocomplete = input<string>();
 
   getFocusTarget() {
     return this.input?.nativeElement;
@@ -76,6 +76,6 @@ export class SearchComponent implements ControlValueAccessor, FocusableElement {
   }
 
   setDisabledState(isDisabled: boolean) {
-    this.disabled = isDisabled;
+    this.disabled.set(isDisabled);
   }
 }
diff --git a/libs/components/src/section/section.component.ts b/libs/components/src/section/section.component.ts
index c6a5c1d7cb5..f65c492a0c1 100644
--- a/libs/components/src/section/section.component.ts
+++ b/libs/components/src/section/section.component.ts
@@ -1,6 +1,6 @@
 import { coerceBooleanProperty } from "@angular/cdk/coercion";
 import { CommonModule } from "@angular/common";
-import { Component, Input } from "@angular/core";
+import { Component, input } from "@angular/core";
 
 @Component({
   selector: "bit-section",
@@ -9,7 +9,7 @@ import { Component, Input } from "@angular/core";
     <section
       [ngClass]="{
         'tw-mb-5 bit-compact:tw-mb-4 [&:not(bit-dialog_*):not(popup-page_*)]:md:tw-mb-12':
-          !disableMargin,
+          !disableMargin(),
       }"
     >
       <ng-content></ng-content>
@@ -17,5 +17,5 @@ import { Component, Input } from "@angular/core";
   `,
 })
 export class SectionComponent {
-  @Input({ transform: coerceBooleanProperty }) disableMargin = false;
+  readonly disableMargin = input(false, { transform: coerceBooleanProperty });
 }
diff --git a/libs/components/src/select/option.component.ts b/libs/components/src/select/option.component.ts
index b32b124be25..39671b57221 100644
--- a/libs/components/src/select/option.component.ts
+++ b/libs/components/src/select/option.component.ts
@@ -1,23 +1,19 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
-import { Component, Input, booleanAttribute } from "@angular/core";
+import { Component, booleanAttribute, input } from "@angular/core";
 
-import { Option } from "./option";
+import { MappedOptionComponent } from "./option";
 
 @Component({
   selector: "bit-option",
   template: `<ng-template><ng-content></ng-content></ng-template>`,
 })
-export class OptionComponent<T = unknown> implements Option<T> {
-  @Input()
-  icon?: string;
+export class OptionComponent<T = unknown> implements MappedOptionComponent<T> {
+  readonly icon = input<string>();
 
-  @Input({ required: true })
-  value: T;
+  readonly value = input.required<T>();
 
-  @Input({ required: true })
-  label: string;
+  readonly label = input.required<string>();
 
-  @Input({ transform: booleanAttribute })
-  disabled: boolean;
+  readonly disabled = input(undefined, { transform: booleanAttribute });
 }
diff --git a/libs/components/src/select/option.ts b/libs/components/src/select/option.ts
index 4d7cc70bda4..88e052844d8 100644
--- a/libs/components/src/select/option.ts
+++ b/libs/components/src/select/option.ts
@@ -1,6 +1,10 @@
+import { MappedDataToSignal } from "../shared/data-to-signal-type";
+
 export interface Option<T> {
   icon?: string;
   value: T | null;
   label?: string;
   disabled?: boolean;
 }
+
+export type MappedOptionComponent<T> = MappedDataToSignal<Option<T>>;
diff --git a/libs/components/src/select/select.component.html b/libs/components/src/select/select.component.html
index 6d4c431f234..2a5483b15c1 100644
--- a/libs/components/src/select/select.component.html
+++ b/libs/components/src/select/select.component.html
@@ -1,9 +1,9 @@
 <ng-select
-  [(ngModel)]="selectedOption"
+  [ngModel]="selectedOption()"
   (ngModelChange)="onChange($event)"
   [disabled]="disabled"
-  [placeholder]="placeholder"
-  [items]="items"
+  [placeholder]="placeholder()"
+  [items]="items()"
   (blur)="onBlur()"
   [labelForId]="labelForId"
   [clearable]="false"
diff --git a/libs/components/src/select/select.component.spec.ts b/libs/components/src/select/select.component.spec.ts
index 236a788549a..cfc69636224 100644
--- a/libs/components/src/select/select.component.spec.ts
+++ b/libs/components/src/select/select.component.spec.ts
@@ -37,15 +37,15 @@ describe("Select Component", () => {
 
   describe("initial state", () => {
     it("selected option should update when items input changes", () => {
-      expect(select.selectedOption?.value).toBeUndefined();
+      expect(select.selectedOption()?.value).toBeUndefined();
 
-      select.items = [
+      select.items.set([
         { label: "Apple", value: "apple" },
         { label: "Pear", value: "pear" },
         { label: "Banana", value: "banana" },
-      ];
+      ]);
 
-      expect(select.selectedOption?.value).toBe("apple");
+      expect(select.selectedOption()?.value).toBe("apple");
     });
   });
 });
diff --git a/libs/components/src/select/select.component.ts b/libs/components/src/select/select.component.ts
index 909566bf1f8..d16f09ee8a9 100644
--- a/libs/components/src/select/select.component.ts
+++ b/libs/components/src/select/select.component.ts
@@ -13,6 +13,11 @@ import {
   ViewChild,
   Output,
   EventEmitter,
+  input,
+  Signal,
+  computed,
+  model,
+  signal,
 } from "@angular/core";
 import {
   ControlValueAccessor,
@@ -37,29 +42,23 @@ let nextId = 0;
   templateUrl: "select.component.html",
   providers: [{ provide: BitFormFieldControl, useExisting: SelectComponent }],
   imports: [NgSelectModule, ReactiveFormsModule, FormsModule],
+  host: {
+    "[id]": "id()",
+  },
 })
 export class SelectComponent<T> implements BitFormFieldControl, ControlValueAccessor {
   @ViewChild(NgSelectComponent) select: NgSelectComponent;
 
-  private _items: Option<T>[] = [];
   /** Optional: Options can be provided using an array input or using `bit-option` */
-  @Input()
-  get items(): Option<T>[] {
-    return this._items;
-  }
-  set items(next: Option<T>[]) {
-    this._items = next;
-    this._selectedOption = this.findSelectedOption(next, this.selectedValue);
-  }
+  readonly items = model<Option<T>[] | undefined>();
 
-  @Input() placeholder = this.i18nService.t("selectPlaceholder");
+  readonly placeholder = input(this.i18nService.t("selectPlaceholder"));
   @Output() closed = new EventEmitter();
 
-  protected selectedValue: T;
-  protected _selectedOption: Option<T>;
-  get selectedOption() {
-    return this._selectedOption;
-  }
+  protected selectedValue = signal<T>(undefined);
+  selectedOption: Signal<Option<T>> = computed(() =>
+    this.findSelectedOption(this.items(), this.selectedValue()),
+  );
   protected searchInputId = `bit-select-search-input-${nextId++}`;
 
   private notifyOnChange?: (value: T) => void;
@@ -79,7 +78,14 @@ export class SelectComponent<T> implements BitFormFieldControl, ControlValueAcce
     if (value == null || value.length == 0) {
       return;
     }
-    this.items = value.toArray();
+    this.items.set(
+      value.toArray().map((option) => ({
+        icon: option.icon(),
+        value: option.value(),
+        label: option.label(),
+        disabled: option.disabled(),
+      })),
+    );
   }
 
   @HostBinding("class") protected classes = ["tw-block", "tw-w-full", "tw-h-full"];
@@ -89,6 +95,8 @@ export class SelectComponent<T> implements BitFormFieldControl, ControlValueAcce
   get disabledAttr() {
     return this.disabled || null;
   }
+  // TODO: Skipped for signal migration because:
+  //  Accessor inputs cannot be migrated as they are too complex.
   @Input()
   get disabled() {
     return this._disabled ?? this.ngControl?.disabled ?? false;
@@ -100,8 +108,7 @@ export class SelectComponent<T> implements BitFormFieldControl, ControlValueAcce
 
   /**Implemented as part of NG_VALUE_ACCESSOR */
   writeValue(obj: T): void {
-    this.selectedValue = obj;
-    this._selectedOption = this.findSelectedOption(this.items, this.selectedValue);
+    this.selectedValue.set(obj);
   }
 
   /**Implemented as part of NG_VALUE_ACCESSOR */
@@ -121,6 +128,8 @@ export class SelectComponent<T> implements BitFormFieldControl, ControlValueAcce
 
   /**Implemented as part of NG_VALUE_ACCESSOR */
   protected onChange(option: Option<T> | null) {
+    this.selectedValue.set(option?.value);
+
     if (!this.notifyOnChange) {
       return;
     }
@@ -154,9 +163,11 @@ export class SelectComponent<T> implements BitFormFieldControl, ControlValueAcce
   }
 
   /**Implemented as part of BitFormFieldControl */
-  @HostBinding() @Input() id = `bit-multi-select-${nextId++}`;
+  readonly id = input(`bit-multi-select-${nextId++}`);
 
   /**Implemented as part of BitFormFieldControl */
+  // TODO: Skipped for signal migration because:
+  //  Accessor inputs cannot be migrated as they are too complex.
   @HostBinding("attr.required")
   @Input()
   get required() {
@@ -178,8 +189,8 @@ export class SelectComponent<T> implements BitFormFieldControl, ControlValueAcce
     return [key, this.ngControl?.errors[key]];
   }
 
-  private findSelectedOption(items: Option<T>[], value: T): Option<T> | undefined {
-    return items.find((item) => item.value === value);
+  private findSelectedOption(items: Option<T>[] | undefined, value: T): Option<T> | undefined {
+    return items?.find((item) => item.value === value);
   }
 
   /**Emits the closed event. */
diff --git a/libs/components/src/shared/data-to-signal-type.ts b/libs/components/src/shared/data-to-signal-type.ts
new file mode 100644
index 00000000000..4d693a866d2
--- /dev/null
+++ b/libs/components/src/shared/data-to-signal-type.ts
@@ -0,0 +1,5 @@
+import { Signal } from "@angular/core";
+
+export type MappedDataToSignal<T> = {
+  [Property in keyof T]: Signal<T[Property]>;
+};
diff --git a/libs/components/src/stepper/stepper.component.ts b/libs/components/src/stepper/stepper.component.ts
index 59c12b4371e..befd4b40cf3 100644
--- a/libs/components/src/stepper/stepper.component.ts
+++ b/libs/components/src/stepper/stepper.component.ts
@@ -42,6 +42,8 @@ export class StepperComponent extends CdkStepper {
   private initialOrientation: StepperOrientation | undefined = undefined;
 
   // overriding CdkStepper orientation input so we can default to vertical
+  // TODO: Skipped for signal migration because:
+  //  Accessor inputs cannot be migrated as they are too complex.
   @Input()
   override get orientation() {
     return this.internalOrientation || "vertical";
diff --git a/libs/components/src/table/row.directive.ts b/libs/components/src/table/row.directive.ts
index 2f76ded65aa..318411ecc5d 100644
--- a/libs/components/src/table/row.directive.ts
+++ b/libs/components/src/table/row.directive.ts
@@ -1,13 +1,13 @@
-import { Directive, HostBinding, Input } from "@angular/core";
+import { Directive, HostBinding, input } from "@angular/core";
 
 @Directive({
   selector: "tr[bitRow]",
 })
 export class RowDirective {
-  @Input() alignContent: "top" | "middle" | "bottom" | "baseline" = "middle";
+  readonly alignContent = input<"top" | "middle" | "bottom" | "baseline">("middle");
 
   get alignmentClass(): string {
-    switch (this.alignContent) {
+    switch (this.alignContent()) {
       case "top":
         return "tw-align-top";
       case "middle":
diff --git a/libs/components/src/table/sortable.component.ts b/libs/components/src/table/sortable.component.ts
index d36b60dc014..43a47ba42ab 100644
--- a/libs/components/src/table/sortable.component.ts
+++ b/libs/components/src/table/sortable.component.ts
@@ -2,7 +2,7 @@
 // @ts-strict-ignore
 import { coerceBooleanProperty } from "@angular/cdk/coercion";
 import { NgClass } from "@angular/common";
-import { Component, HostBinding, Input, OnInit } from "@angular/core";
+import { Component, HostBinding, OnInit, input } from "@angular/core";
 
 import type { SortDirection, SortFn } from "./table-data-source";
 import { TableComponent } from "./table.component";
@@ -26,19 +26,17 @@ export class SortableComponent implements OnInit {
   /**
    * Mark the column as sortable and specify the key to sort by
    */
-  @Input() bitSortable: string;
+  readonly bitSortable = input<string>();
 
-  private _default: SortDirection | boolean = false;
-  /**
-   * Mark the column as the default sort column
-   */
-  @Input() set default(value: SortDirection | boolean | "") {
-    if (value === "desc" || value === "asc") {
-      this._default = value;
-    } else {
-      this._default = coerceBooleanProperty(value) ? "asc" : false;
-    }
-  }
+  readonly default = input(false, {
+    transform: (value: SortDirection | boolean | "") => {
+      if (value === "desc" || value === "asc") {
+        return value as SortDirection;
+      } else {
+        return coerceBooleanProperty(value) ? ("asc" as SortDirection) : false;
+      }
+    },
+  });
 
   /**
    * Custom sorting function
@@ -51,12 +49,12 @@ export class SortableComponent implements OnInit {
    *  return direction === 'asc' ? result : -result;
    * }
    */
-  @Input() fn: SortFn;
+  readonly fn = input<SortFn>();
 
   constructor(private table: TableComponent) {}
 
   ngOnInit(): void {
-    if (this._default && !this.isActive) {
+    if (this.default() && !this.isActive) {
       this.setActive();
     }
   }
@@ -69,28 +67,29 @@ export class SortableComponent implements OnInit {
   }
 
   protected setActive() {
-    if (this.table.dataSource) {
-      const defaultDirection = this._default === "desc" ? "desc" : "asc";
+    const dataSource = this.table.dataSource();
+    if (dataSource) {
+      const defaultDirection = this.default() === "desc" ? "desc" : "asc";
       const direction = this.isActive
         ? this.direction === "asc"
           ? "desc"
           : "asc"
         : defaultDirection;
 
-      this.table.dataSource.sort = {
-        column: this.bitSortable,
+      dataSource.sort = {
+        column: this.bitSortable(),
         direction: direction,
-        fn: this.fn,
+        fn: this.fn(),
       };
     }
   }
 
   private get sort() {
-    return this.table.dataSource?.sort;
+    return this.table.dataSource()?.sort;
   }
 
   get isActive() {
-    return this.sort?.column === this.bitSortable;
+    return this.sort?.column === this.bitSortable();
   }
 
   get direction() {
diff --git a/libs/components/src/table/table-scroll.component.html b/libs/components/src/table/table-scroll.component.html
index 523912cd7ac..2c4e06e6d22 100644
--- a/libs/components/src/table/table-scroll.component.html
+++ b/libs/components/src/table/table-scroll.component.html
@@ -1,6 +1,6 @@
 <cdk-virtual-scroll-viewport
   bitScrollLayout
-  [itemSize]="rowSize"
+  [itemSize]="rowSize()"
   [ngStyle]="{ paddingBottom: headerHeight + 'px' }"
 >
   <table [ngClass]="tableClass">
@@ -12,7 +12,7 @@
       </tr>
     </thead>
     <tbody>
-      <tr *cdkVirtualFor="let r of rows$; trackBy: trackBy; templateCacheSize: 0" bitRow>
+      <tr *cdkVirtualFor="let r of rows$; trackBy: trackBy(); templateCacheSize: 0" bitRow>
         <ng-container *ngTemplateOutlet="rowDef.template; context: { $implicit: r }"></ng-container>
       </tr>
     </tbody>
diff --git a/libs/components/src/table/table-scroll.component.ts b/libs/components/src/table/table-scroll.component.ts
index 193d790e416..e30339393e7 100644
--- a/libs/components/src/table/table-scroll.component.ts
+++ b/libs/components/src/table/table-scroll.component.ts
@@ -10,7 +10,6 @@ import {
   AfterContentChecked,
   Component,
   ContentChild,
-  Input,
   OnDestroy,
   TemplateRef,
   Directive,
@@ -18,6 +17,7 @@ import {
   AfterViewInit,
   ElementRef,
   TrackByFunction,
+  input,
 } from "@angular/core";
 
 import { ScrollLayoutDirective } from "../layout";
@@ -64,10 +64,10 @@ export class TableScrollComponent
   implements AfterContentChecked, AfterViewInit, OnDestroy
 {
   /** The size of the rows in the list (in pixels). */
-  @Input({ required: true }) rowSize: number;
+  readonly rowSize = input.required<number>();
 
   /** Optional trackBy function. */
-  @Input() trackBy: TrackByFunction<any> | undefined;
+  readonly trackBy = input<TrackByFunction<any> | undefined>();
 
   @ContentChild(BitRowDef) protected rowDef: BitRowDef;
 
diff --git a/libs/components/src/table/table.component.ts b/libs/components/src/table/table.component.ts
index 8029e8461f9..187c4c8d6f2 100644
--- a/libs/components/src/table/table.component.ts
+++ b/libs/components/src/table/table.component.ts
@@ -7,9 +7,9 @@ import {
   Component,
   ContentChild,
   Directive,
-  Input,
   OnDestroy,
   TemplateRef,
+  input,
 } from "@angular/core";
 import { Observable } from "rxjs";
 
@@ -29,8 +29,8 @@ export class TableBodyDirective {
   imports: [CommonModule],
 })
 export class TableComponent implements OnDestroy, AfterContentChecked {
-  @Input() dataSource: TableDataSource<any>;
-  @Input() layout: "auto" | "fixed" = "auto";
+  readonly dataSource = input<TableDataSource<any>>();
+  readonly layout = input<"auto" | "fixed">("auto");
 
   @ContentChild(TableBodyDirective) templateVariable: TableBodyDirective;
 
@@ -45,22 +45,24 @@ export class TableComponent implements OnDestroy, AfterContentChecked {
       "tw-text-main",
       "tw-border-collapse",
       "tw-text-start",
-      this.layout === "auto" ? "tw-table-auto" : "tw-table-fixed",
+      this.layout() === "auto" ? "tw-table-auto" : "tw-table-fixed",
     ];
   }
 
   ngAfterContentChecked(): void {
-    if (!this._initialized && isDataSource(this.dataSource)) {
+    const dataSource = this.dataSource();
+    if (!this._initialized && isDataSource(dataSource)) {
       this._initialized = true;
 
-      const dataStream = this.dataSource.connect();
+      const dataStream = dataSource.connect();
       this.rows$ = dataStream;
     }
   }
 
   ngOnDestroy(): void {
-    if (isDataSource(this.dataSource)) {
-      this.dataSource.disconnect();
+    const dataSource = this.dataSource();
+    if (isDataSource(dataSource)) {
+      dataSource.disconnect();
     }
   }
 }
diff --git a/libs/components/src/tabs/shared/tab-list-item.directive.ts b/libs/components/src/tabs/shared/tab-list-item.directive.ts
index 931ad51c1c8..b9952f6671e 100644
--- a/libs/components/src/tabs/shared/tab-list-item.directive.ts
+++ b/libs/components/src/tabs/shared/tab-list-item.directive.ts
@@ -1,7 +1,7 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
 import { FocusableOption } from "@angular/cdk/a11y";
-import { Directive, ElementRef, HostBinding, Input } from "@angular/core";
+import { Directive, ElementRef, HostBinding, Input, input } from "@angular/core";
 
 /**
  * Directive used for styling tab header items for both nav links (anchor tags)
@@ -11,7 +11,10 @@ import { Directive, ElementRef, HostBinding, Input } from "@angular/core";
   selector: "[bitTabListItem]",
 })
 export class TabListItemDirective implements FocusableOption {
-  @Input() active: boolean;
+  readonly active = input<boolean>();
+  // TODO: Skipped for signal migration because:
+  //  This input overrides a field from a superclass, while the superclass field
+  //  is not migrated.
   @Input() disabled: boolean;
 
   @HostBinding("attr.disabled")
@@ -32,7 +35,7 @@ export class TabListItemDirective implements FocusableOption {
   @HostBinding("class")
   get classList(): string[] {
     return this.baseClassList
-      .concat(this.active ? this.activeClassList : [])
+      .concat(this.active() ? this.activeClassList : [])
       .concat(this.disabled ? this.disabledClassList : [])
       .concat(this.textColorClassList);
   }
@@ -45,7 +48,7 @@ export class TabListItemDirective implements FocusableOption {
     if (this.disabled) {
       return ["!tw-text-secondary-300", "hover:!tw-text-secondary-300"];
     }
-    if (this.active) {
+    if (this.active()) {
       return ["!tw-text-primary-600", "hover:!tw-text-primary-700"];
     }
     return ["!tw-text-main", "hover:!tw-text-main"];
diff --git a/libs/components/src/tabs/tab-group/tab-body.component.ts b/libs/components/src/tabs/tab-group/tab-body.component.ts
index 3c14d333258..e200e55220d 100644
--- a/libs/components/src/tabs/tab-group/tab-body.component.ts
+++ b/libs/components/src/tabs/tab-group/tab-body.component.ts
@@ -1,7 +1,7 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
 import { TemplatePortal, CdkPortalOutlet } from "@angular/cdk/portal";
-import { Component, HostBinding, Input } from "@angular/core";
+import { Component, effect, HostBinding, input } from "@angular/core";
 
 @Component({
   selector: "bit-tab-body",
@@ -11,24 +11,22 @@ import { Component, HostBinding, Input } from "@angular/core";
 export class TabBodyComponent {
   private _firstRender: boolean;
 
-  @Input() content: TemplatePortal;
-  @Input() preserveContent = false;
+  readonly content = input<TemplatePortal>();
+  readonly preserveContent = input(false);
 
   @HostBinding("attr.hidden") get hidden() {
-    return !this.active || null;
+    return !this.active() || null;
   }
 
-  @Input()
-  get active() {
-    return this._active;
+  readonly active = input<boolean>();
+
+  constructor() {
+    effect(() => {
+      if (this.active()) {
+        this._firstRender = true;
+      }
+    });
   }
-  set active(value: boolean) {
-    this._active = value;
-    if (this._active) {
-      this._firstRender = true;
-    }
-  }
-  private _active: boolean;
 
   /**
    * The tab content to render.
@@ -37,11 +35,11 @@ export class TabBodyComponent {
    * then the content persists after the first time content is rendered.
    */
   get tabContent() {
-    if (this.active) {
-      return this.content;
+    if (this.active()) {
+      return this.content();
     }
-    if (this.preserveContent && this._firstRender) {
-      return this.content;
+    if (this.preserveContent() && this._firstRender) {
+      return this.content();
     }
     return null;
   }
diff --git a/libs/components/src/tabs/tab-group/tab-group.component.html b/libs/components/src/tabs/tab-group/tab-group.component.html
index 52fa193de96..bbe039eb560 100644
--- a/libs/components/src/tabs/tab-group/tab-group.component.html
+++ b/libs/components/src/tabs/tab-group/tab-group.component.html
@@ -2,7 +2,7 @@
   <div
     bitTabListContainer
     role="tablist"
-    [attr.aria-label]="label"
+    [attr.aria-label]="label()"
     (keydown)="keyManager.onKeydown($event)"
   >
     @for (tab of tabs; track tab; let i = $index) {
@@ -12,7 +12,7 @@
         role="tab"
         [id]="getTabLabelId(i)"
         [active]="tab.isActive"
-        [disabled]="tab.disabled"
+        [disabled]="tab.disabled()"
         [attr.aria-selected]="selectedIndex === i"
         [attr.tabindex]="selectedIndex === i ? 0 : -1"
         (click)="selectTab(i)"
@@ -22,7 +22,7 @@
           @if (tab.templateLabel) {
             <ng-container [ngTemplateOutlet]="tab.templateLabel.templateRef"></ng-container>
           } @else {
-            {{ tab.textLabel }}
+            {{ tab.textLabel() }}
           }
         </ng-template>
       </button>
@@ -34,11 +34,11 @@
     <bit-tab-body
       role="tabpanel"
       [id]="getTabContentId(i)"
-      [attr.tabindex]="tab.contentTabIndex"
+      [attr.tabindex]="tab.contentTabIndex()"
       [attr.labeledby]="getTabLabelId(i)"
       [active]="tab.isActive"
       [content]="tab.content"
-      [preserveContent]="preserveContent"
+      [preserveContent]="preserveContent()"
     >
     </bit-tab-body>
   }
diff --git a/libs/components/src/tabs/tab-group/tab-group.component.ts b/libs/components/src/tabs/tab-group/tab-group.component.ts
index ae7fa12143e..2bd81375d39 100644
--- a/libs/components/src/tabs/tab-group/tab-group.component.ts
+++ b/libs/components/src/tabs/tab-group/tab-group.component.ts
@@ -15,6 +15,7 @@ import {
   Output,
   QueryList,
   ViewChildren,
+  input,
 } from "@angular/core";
 import { Subject, takeUntil } from "rxjs";
 
@@ -49,19 +50,21 @@ export class TabGroupComponent
   /**
    * Aria label for the tab list menu
    */
-  @Input() label = "";
+  readonly label = input("");
 
   /**
    * Keep the content of off-screen tabs in the DOM.
    * Useful for keeping <audio> or <video> elements from re-initializing
    * after navigating between tabs.
    */
-  @Input() preserveContent = false;
+  readonly preserveContent = input(false);
 
   @ContentChildren(TabComponent) tabs: QueryList<TabComponent>;
   @ViewChildren(TabListItemDirective) tabLabels: QueryList<TabListItemDirective>;
 
   /** The index of the active tab. */
+  // TODO: Skipped for signal migration because:
+  //  Accessor inputs cannot be migrated as they are too complex.
   @Input()
   get selectedIndex(): number | null {
     return this._selectedIndex;
diff --git a/libs/components/src/tabs/tab-group/tab.component.ts b/libs/components/src/tabs/tab-group/tab.component.ts
index 260cb0c8193..4261f9da5f9 100644
--- a/libs/components/src/tabs/tab-group/tab.component.ts
+++ b/libs/components/src/tabs/tab-group/tab.component.ts
@@ -4,11 +4,11 @@ import { TemplatePortal } from "@angular/cdk/portal";
 import {
   Component,
   ContentChild,
-  Input,
   OnInit,
   TemplateRef,
   ViewChild,
   ViewContainerRef,
+  input,
 } from "@angular/core";
 
 import { TabLabelDirective } from "./tab-label.directive";
@@ -21,8 +21,8 @@ import { TabLabelDirective } from "./tab-label.directive";
   },
 })
 export class TabComponent implements OnInit {
-  @Input() disabled = false;
-  @Input("label") textLabel = "";
+  readonly disabled = input(false);
+  readonly textLabel = input("", { alias: "label" });
 
   /**
    * Optional tabIndex for the tabPanel that contains this tab's content.
@@ -32,7 +32,7 @@ export class TabComponent implements OnInit {
    *
    * @remarks See note 4 of https://www.w3.org/WAI/ARIA/apg/patterns/tabpanel/
    */
-  @Input() contentTabIndex: number | undefined;
+  readonly contentTabIndex = input<number | undefined>();
 
   @ViewChild(TemplateRef, { static: true }) implicitContent: TemplateRef<unknown>;
   @ContentChild(TabLabelDirective) templateLabel: TabLabelDirective;
diff --git a/libs/components/src/tabs/tab-nav-bar/tab-link.component.html b/libs/components/src/tabs/tab-nav-bar/tab-link.component.html
index f1265c3de5d..7a8c0619987 100644
--- a/libs/components/src/tabs/tab-nav-bar/tab-link.component.html
+++ b/libs/components/src/tabs/tab-nav-bar/tab-link.component.html
@@ -1,6 +1,6 @@
 <a
   bitTabListItem
-  [routerLink]="disabled ? null : route"
+  [routerLink]="disabled ? null : route()"
   routerLinkActive
   [routerLinkActiveOptions]="routerLinkMatchOptions"
   #rla="routerLinkActive"
diff --git a/libs/components/src/tabs/tab-nav-bar/tab-link.component.ts b/libs/components/src/tabs/tab-nav-bar/tab-link.component.ts
index 3ba0d651f76..f1b279c4371 100644
--- a/libs/components/src/tabs/tab-nav-bar/tab-link.component.ts
+++ b/libs/components/src/tabs/tab-nav-bar/tab-link.component.ts
@@ -1,7 +1,15 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
 import { FocusableOption } from "@angular/cdk/a11y";
-import { AfterViewInit, Component, HostListener, Input, OnDestroy, ViewChild } from "@angular/core";
+import {
+  AfterViewInit,
+  Component,
+  HostListener,
+  Input,
+  OnDestroy,
+  ViewChild,
+  input,
+} from "@angular/core";
 import { IsActiveMatchOptions, RouterLinkActive, RouterModule } from "@angular/router";
 import { Subject, takeUntil } from "rxjs";
 
@@ -27,7 +35,10 @@ export class TabLinkComponent implements FocusableOption, AfterViewInit, OnDestr
     fragment: "ignored",
   };
 
-  @Input() route: string | any[];
+  readonly route = input<string | any[]>();
+  // TODO: Skipped for signal migration because:
+  //  This input overrides a field from a superclass, while the superclass field
+  //  is not migrated.
   @Input() disabled = false;
 
   @HostListener("keydown", ["$event"]) onKeyDown(event: KeyboardEvent) {
diff --git a/libs/components/src/tabs/tab-nav-bar/tab-nav-bar.component.html b/libs/components/src/tabs/tab-nav-bar/tab-nav-bar.component.html
index 2bc6a8d3b4a..fddf473e3c2 100644
--- a/libs/components/src/tabs/tab-nav-bar/tab-nav-bar.component.html
+++ b/libs/components/src/tabs/tab-nav-bar/tab-nav-bar.component.html
@@ -1,5 +1,5 @@
 <bit-tab-header>
-  <nav bitTabListContainer [attr.aria-label]="label" (keydown)="keyManager.onKeydown($event)">
+  <nav bitTabListContainer [attr.aria-label]="label()" (keydown)="keyManager.onKeydown($event)">
     <ng-content></ng-content>
   </nav>
 </bit-tab-header>
diff --git a/libs/components/src/tabs/tab-nav-bar/tab-nav-bar.component.ts b/libs/components/src/tabs/tab-nav-bar/tab-nav-bar.component.ts
index 1f3292054e7..5c5c9bbf241 100644
--- a/libs/components/src/tabs/tab-nav-bar/tab-nav-bar.component.ts
+++ b/libs/components/src/tabs/tab-nav-bar/tab-nav-bar.component.ts
@@ -6,8 +6,8 @@ import {
   Component,
   ContentChildren,
   forwardRef,
-  Input,
   QueryList,
+  input,
 } from "@angular/core";
 
 import { TabHeaderComponent } from "../shared/tab-header.component";
@@ -25,7 +25,7 @@ import { TabLinkComponent } from "./tab-link.component";
 })
 export class TabNavBarComponent implements AfterContentInit {
   @ContentChildren(forwardRef(() => TabLinkComponent)) tabLabels: QueryList<TabLinkComponent>;
-  @Input() label = "";
+  readonly label = input("");
 
   /**
    * Focus key manager for keeping tab controls accessible.
diff --git a/libs/components/src/tabs/tabs.stories.ts b/libs/components/src/tabs/tabs.stories.ts
index 5879dd2a14e..0fe88c57a16 100644
--- a/libs/components/src/tabs/tabs.stories.ts
+++ b/libs/components/src/tabs/tabs.stories.ts
@@ -44,14 +44,18 @@ export default {
   component: TabGroupComponent,
   decorators: [
     moduleMetadata({
-      declarations: [
+      imports: [
+        CommonModule,
+        TabsModule,
+        ButtonModule,
+        FormFieldModule,
+        RouterModule,
         ActiveDummyComponent,
         ItemTwoDummyComponent,
         ItemThreeDummyComponent,
         ItemWithChildCounterDummyComponent,
         DisabledDummyComponent,
       ],
-      imports: [CommonModule, TabsModule, ButtonModule, FormFieldModule, RouterModule],
     }),
     applicationConfig({
       providers: [
diff --git a/libs/components/src/toast/toast.component.html b/libs/components/src/toast/toast.component.html
index 8ebf6778286..f969a3b4b50 100644
--- a/libs/components/src/toast/toast.component.html
+++ b/libs/components/src/toast/toast.component.html
@@ -2,13 +2,13 @@
   class="tw-mb-1 tw-min-w-[--bit-toast-width] tw-text-main tw-flex tw-flex-col tw-justify-between tw-rounded-md tw-pointer-events-auto tw-cursor-default tw-overflow-hidden tw-shadow-lg {{
     bgColor
   }}"
-  [attr.role]="variant === 'error' ? 'alert' : null"
+  [attr.role]="variant() === 'error' ? 'alert' : null"
 >
   <div class="tw-flex tw-items-center tw-gap-4 tw-px-2 tw-pb-1 tw-pt-2">
     <i aria-hidden="true" class="bwi tw-text-xl tw-py-1.5 tw-px-2.5 {{ iconClass }}"></i>
     <div>
-      <span class="tw-sr-only">{{ variant | i18n }}</span>
-      @if (title) {
+      <span class="tw-sr-only">{{ variant() | i18n }}</span>
+      @if (title(); as title) {
         <p data-testid="toast-title" class="tw-font-semibold tw-mb-0">{{ title }}</p>
       }
       @for (m of messageArray; track m) {
@@ -26,5 +26,5 @@
       (click)="this.onClose.emit()"
     ></button>
   </div>
-  <div class="tw-h-1 tw-w-full tw-bg-text-main/30" [style.width]="progressWidth + '%'"></div>
+  <div class="tw-h-1 tw-w-full tw-bg-text-main/30" [style.width]="progressWidth() + '%'"></div>
 </div>
diff --git a/libs/components/src/toast/toast.component.ts b/libs/components/src/toast/toast.component.ts
index 954f09eb0fb..1aeca24d0e2 100644
--- a/libs/components/src/toast/toast.component.ts
+++ b/libs/components/src/toast/toast.component.ts
@@ -1,4 +1,4 @@
-import { Component, EventEmitter, Input, Output } from "@angular/core";
+import { Component, EventEmitter, Output, input } from "@angular/core";
 
 import { IconButtonModule } from "../icon-button";
 import { SharedModule } from "../shared";
@@ -31,36 +31,36 @@ const variants: Record<ToastVariant, { icon: string; bgColor: string }> = {
   imports: [SharedModule, IconButtonModule, TypographyModule],
 })
 export class ToastComponent {
-  @Input() variant: ToastVariant = "info";
+  readonly variant = input<ToastVariant>("info");
 
   /**
    * The message to display
    *
    * Pass an array to render multiple paragraphs.
    **/
-  @Input({ required: true })
-  message!: string | string[];
+  readonly message = input.required<string | string[]>();
 
   /** An optional title to display over the message. */
-  @Input() title?: string;
+  readonly title = input<string>();
 
   /**
    * The percent width of the progress bar, from 0-100
    **/
-  @Input() progressWidth = 0;
+  readonly progressWidth = input(0);
 
   /** Emits when the user presses the close button */
   @Output() onClose = new EventEmitter<void>();
 
   protected get iconClass(): string {
-    return variants[this.variant].icon;
+    return variants[this.variant()].icon;
   }
 
   protected get bgColor(): string {
-    return variants[this.variant].bgColor;
+    return variants[this.variant()].bgColor;
   }
 
   protected get messageArray(): string[] {
-    return Array.isArray(this.message) ? this.message : [this.message];
+    const message = this.message();
+    return Array.isArray(message) ? message : [message];
   }
 }
diff --git a/libs/components/src/toast/toast.service.ts b/libs/components/src/toast/toast.service.ts
index 00c32f9b1b3..f55fb3ada83 100644
--- a/libs/components/src/toast/toast.service.ts
+++ b/libs/components/src/toast/toast.service.ts
@@ -11,7 +11,10 @@ export type ToastOptions = {
    * The duration the toast will persist in milliseconds
    **/
   timeout?: number;
-} & Pick<ToastComponent, "message" | "variant" | "title">;
+  message: ReturnType<ToastComponent["message"]>;
+  variant?: ReturnType<ToastComponent["variant"]>;
+  title?: ReturnType<ToastComponent["title"]>;
+};
 
 /**
  * Presents toast notifications
diff --git a/libs/components/src/toast/toast.stories.ts b/libs/components/src/toast/toast.stories.ts
index b4a80cd3276..bd2c59a191b 100644
--- a/libs/components/src/toast/toast.stories.ts
+++ b/libs/components/src/toast/toast.stories.ts
@@ -34,8 +34,13 @@ export default {
 
   decorators: [
     moduleMetadata({
-      imports: [CommonModule, BrowserAnimationsModule, ButtonModule, ToastModule],
-      declarations: [ToastServiceExampleComponent],
+      imports: [
+        CommonModule,
+        BrowserAnimationsModule,
+        ButtonModule,
+        ToastModule,
+        ToastServiceExampleComponent,
+      ],
     }),
     applicationConfig({
       providers: [
diff --git a/libs/components/src/toggle-group/toggle-group.component.ts b/libs/components/src/toggle-group/toggle-group.component.ts
index 0b4cb059216..16c4063f9e2 100644
--- a/libs/components/src/toggle-group/toggle-group.component.ts
+++ b/libs/components/src/toggle-group/toggle-group.component.ts
@@ -3,8 +3,9 @@ import {
   Component,
   EventEmitter,
   HostBinding,
-  Input,
   Output,
+  input,
+  model,
 } from "@angular/core";
 
 let nextId = 0;
@@ -17,18 +18,18 @@ export class ToggleGroupComponent<TValue = unknown> {
   private id = nextId++;
   name = `bit-toggle-group-${this.id}`;
 
-  @Input({ transform: booleanAttribute }) fullWidth?: boolean;
-  @Input() selected?: TValue;
+  readonly fullWidth = input<boolean, unknown>(undefined, { transform: booleanAttribute });
+  readonly selected = model<TValue>();
   @Output() selectedChange = new EventEmitter<TValue>();
 
   @HostBinding("attr.role") role = "radiogroup";
   @HostBinding("class")
   get classList() {
-    return ["tw-flex"].concat(this.fullWidth ? ["tw-w-full", "[&>*]:tw-flex-1"] : []);
+    return ["tw-flex"].concat(this.fullWidth() ? ["tw-w-full", "[&>*]:tw-flex-1"] : []);
   }
 
   onInputInteraction(value: TValue) {
-    this.selected = value;
+    this.selected.set(value);
     this.selectedChange.emit(value);
   }
 }
diff --git a/libs/components/src/toggle-group/toggle.component.spec.ts b/libs/components/src/toggle-group/toggle.component.spec.ts
index c26ea3ed6a4..1eec7e54e38 100644
--- a/libs/components/src/toggle-group/toggle.component.spec.ts
+++ b/libs/components/src/toggle-group/toggle.component.spec.ts
@@ -1,71 +1,60 @@
-import { Component } from "@angular/core";
+import { Component, DebugElement } from "@angular/core";
 import { ComponentFixture, TestBed } from "@angular/core/testing";
 import { By } from "@angular/platform-browser";
 
 import { ToggleGroupComponent } from "./toggle-group.component";
 import { ToggleGroupModule } from "./toggle-group.module";
 
-describe("Button", () => {
-  let mockGroupComponent: MockedButtonGroupComponent;
-  let fixture: ComponentFixture<TestApp>;
-  let testAppComponent: TestApp;
-  let radioButton: HTMLInputElement;
+describe("Toggle", () => {
+  let fixture: ComponentFixture<TestComponent>;
+  let toggleGroup: ToggleGroupComponent;
+  let toggleButtons: DebugElement[];
 
   beforeEach(async () => {
-    mockGroupComponent = new MockedButtonGroupComponent();
-
     TestBed.configureTestingModule({
-      imports: [TestApp],
-      providers: [{ provide: ToggleGroupComponent, useValue: mockGroupComponent }],
+      imports: [TestComponent],
     });
 
     await TestBed.compileComponents();
-    fixture = TestBed.createComponent(TestApp);
-    testAppComponent = fixture.debugElement.componentInstance;
-    radioButton = fixture.debugElement.query(By.css("input[type=radio]")).nativeElement;
+    fixture = TestBed.createComponent(TestComponent);
+    fixture.detectChanges();
+    toggleGroup = fixture.debugElement.query(By.directive(ToggleGroupComponent)).componentInstance;
+    toggleButtons = fixture.debugElement.queryAll(By.css("input[type=radio]"));
   });
 
   it("should emit value when clicking on radio button", () => {
-    testAppComponent.value = "value";
+    const spyFn = jest.spyOn(toggleGroup, "onInputInteraction");
+
+    toggleButtons[1].triggerEventHandler("change");
     fixture.detectChanges();
 
-    radioButton.click();
-    fixture.detectChanges();
-
-    expect(mockGroupComponent.onInputInteraction).toHaveBeenCalledWith("value");
+    expect(spyFn).toHaveBeenCalledWith(1);
   });
 
-  it("should check radio button when selected matches value", () => {
-    testAppComponent.value = "value";
+  it("should select toggle button only when selected matches value", () => {
     fixture.detectChanges();
 
-    mockGroupComponent.selected = "value";
+    expect(toggleButtons[0].nativeElement.checked).toBe(true);
+    expect(toggleButtons[1].nativeElement.checked).toBe(false);
+
+    toggleButtons[1].triggerEventHandler("change");
     fixture.detectChanges();
 
-    expect(radioButton.checked).toBe(true);
-  });
-
-  it("should not check radio button when selected does not match value", () => {
-    testAppComponent.value = "value";
-    fixture.detectChanges();
-
-    mockGroupComponent.selected = "nonMatchingValue";
-    fixture.detectChanges();
-
-    expect(radioButton.checked).toBe(false);
+    expect(toggleButtons[0].nativeElement.checked).toBe(false);
+    expect(toggleButtons[1].nativeElement.checked).toBe(true);
   });
 });
 
-class MockedButtonGroupComponent implements Partial<ToggleGroupComponent> {
-  onInputInteraction = jest.fn();
-  selected: unknown = null;
-}
-
 @Component({
-  selector: "test-app",
-  template: ` <bit-toggle [value]="value">Element</bit-toggle>`,
+  selector: "test-component",
+  template: `
+    <bit-toggle-group [(selected)]="selected">
+      <bit-toggle [value]="0">Zero</bit-toggle>
+      <bit-toggle [value]="1">One</bit-toggle>
+    </bit-toggle-group>
+  `,
   imports: [ToggleGroupModule],
 })
-class TestApp {
-  value?: string;
+class TestComponent {
+  selected = 0;
 }
diff --git a/libs/components/src/toggle-group/toggle.component.ts b/libs/components/src/toggle-group/toggle.component.ts
index ec0d060f7fa..828386f84ed 100644
--- a/libs/components/src/toggle-group/toggle.component.ts
+++ b/libs/components/src/toggle-group/toggle.component.ts
@@ -7,9 +7,9 @@ import {
   Component,
   ElementRef,
   HostBinding,
-  Input,
   signal,
   ViewChild,
+  input,
 } from "@angular/core";
 
 import { ToggleGroupComponent } from "./toggle-group.component";
@@ -24,7 +24,7 @@ let nextId = 0;
 export class ToggleComponent<TValue> implements AfterContentChecked, AfterViewInit {
   id = nextId++;
 
-  @Input() value?: TValue;
+  readonly value = input<TValue>();
   @ViewChild("labelContent") labelContent: ElementRef<HTMLSpanElement>;
   @ViewChild("bitBadgeContainer") bitBadgeContainer: ElementRef<HTMLSpanElement>;
 
@@ -41,7 +41,7 @@ export class ToggleComponent<TValue> implements AfterContentChecked, AfterViewIn
   }
 
   get selected() {
-    return this.groupComponent.selected === this.value;
+    return this.groupComponent.selected() === this.value();
   }
 
   get inputClasses() {
@@ -95,7 +95,7 @@ export class ToggleComponent<TValue> implements AfterContentChecked, AfterViewIn
   }
 
   onInputInteraction() {
-    this.groupComponent.onInputInteraction(this.value);
+    this.groupComponent.onInputInteraction(this.value());
   }
 
   ngAfterContentChecked() {
diff --git a/libs/components/src/typography/typography.directive.ts b/libs/components/src/typography/typography.directive.ts
index e48ef67001f..76451d3c82f 100644
--- a/libs/components/src/typography/typography.directive.ts
+++ b/libs/components/src/typography/typography.directive.ts
@@ -1,7 +1,6 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
-import { coerceBooleanProperty } from "@angular/cdk/coercion";
-import { Directive, HostBinding, Input } from "@angular/core";
+import { booleanAttribute, Directive, HostBinding, input } from "@angular/core";
 
 type TypographyType = "h1" | "h2" | "h3" | "h4" | "h5" | "h6" | "body1" | "body2" | "helper";
 
@@ -33,15 +32,13 @@ const margins: Record<TypographyType, string[]> = {
   selector: "[bitTypography]",
 })
 export class TypographyDirective {
-  @Input("bitTypography") bitTypography: TypographyType;
+  readonly bitTypography = input<TypographyType>();
 
-  private _margin = true;
-  @Input()
-  set noMargin(value: boolean | "") {
-    this._margin = !coerceBooleanProperty(value);
-  }
+  readonly noMargin = input(false, { transform: booleanAttribute });
 
   @HostBinding("class") get classList() {
-    return styles[this.bitTypography].concat(this._margin ? margins[this.bitTypography] : []);
+    return styles[this.bitTypography()].concat(
+      !this.noMargin() ? margins[this.bitTypography()] : [],
+    );
   }
 }
diff --git a/libs/vault/src/cipher-form/components/item-details/item-details-section.component.spec.ts b/libs/vault/src/cipher-form/components/item-details/item-details-section.component.spec.ts
index 99c377a0873..dfa0f9a89ca 100644
--- a/libs/vault/src/cipher-form/components/item-details/item-details-section.component.spec.ts
+++ b/libs/vault/src/cipher-form/components/item-details/item-details-section.component.spec.ts
@@ -244,7 +244,7 @@ describe("ItemDetailsSectionComponent", () => {
       fixture.detectChanges();
 
       const select = fixture.debugElement.query(By.directive(SelectComponent));
-      const { value, label } = select.componentInstance.items[0];
+      const { value, label } = select.componentInstance.items()[0];
 
       expect(value).toBeNull();
       expect(label).toBe("test@example.com");
@@ -260,7 +260,7 @@ describe("ItemDetailsSectionComponent", () => {
 
       const select = fixture.debugElement.query(By.directive(SelectComponent));
 
-      const { value, label } = select.componentInstance.items[0];
+      const { value, label } = select.componentInstance.items()[0];
       expect(value).toBeNull();
       expect(label).toBe("test@example.com");
     });
@@ -561,7 +561,7 @@ describe("ItemDetailsSectionComponent", () => {
       fixture.detectChanges();
 
       const select = fixture.debugElement.query(By.directive(SelectComponent));
-      const { label } = select.componentInstance.items[0];
+      const { label } = select.componentInstance.items()[0];
 
       expect(label).toBe("org1");
     });
diff --git a/libs/vault/src/cipher-view/login-credentials/login-credentials-view.component.spec.ts b/libs/vault/src/cipher-view/login-credentials/login-credentials-view.component.spec.ts
index 0b5c4b246ec..42144e646d4 100644
--- a/libs/vault/src/cipher-view/login-credentials/login-credentials-view.component.spec.ts
+++ b/libs/vault/src/cipher-view/login-credentials/login-credentials-view.component.spec.ts
@@ -102,7 +102,7 @@ describe("LoginCredentialsViewComponent", () => {
       const usernameCopyButton = usernameField.query(By.directive(CopyClickDirective));
       const usernameCopyClickDirective = usernameCopyButton.injector.get(CopyClickDirective);
 
-      expect(usernameCopyClickDirective.valueToCopy).toBe(cipher.login.username);
+      expect(usernameCopyClickDirective.valueToCopy()).toBe(cipher.login.username);
     });
   });
 
@@ -136,7 +136,7 @@ describe("LoginCredentialsViewComponent", () => {
         const passwordCopyButton = passwordField.query(By.directive(CopyClickDirective));
         const passwordCopyClickDirective = passwordCopyButton.injector.get(CopyClickDirective);
 
-        expect(passwordCopyClickDirective.valueToCopy).toBe(cipher.login.password);
+        expect(passwordCopyClickDirective.valueToCopy()).toBe(cipher.login.password);
       });
     });
 

From 21834aeae7ade7c755ab6a22e670372a57a840eb Mon Sep 17 00:00:00 2001
From: Bryan Cunningham <bcunningham@bitwarden.com>
Date: Wed, 16 Jul 2025 09:00:23 -0400
Subject: [PATCH 143/239] update contrast hover color (#15625)

---
 libs/components/src/tw-theme.css | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/libs/components/src/tw-theme.css b/libs/components/src/tw-theme.css
index eb5bb469202..fc85dcda3bd 100644
--- a/libs/components/src/tw-theme.css
+++ b/libs/components/src/tw-theme.css
@@ -57,7 +57,7 @@
   --color-text-code: 192 17 118;
 
   --color-hover-default: rgb(26 65 172 / 0.1);
-  --color-hover-contrast: rgb(219 229 246 / 0.15);
+  --color-hover-contrast: rgb(255 255 255 / 0.15);
 
   --color-marketing-logo: 23 93 220;
 
@@ -128,7 +128,7 @@
   --color-text-code: 255 143 208;
 
   --color-hover-default: rgb(170 195 239 / 0.1);
-  --color-hover-contrast: rgb(26 39 78 / 0.15);
+  --color-hover-contrast: rgb(0 0 0 / 0.15);
 
   --color-marketing-logo: 255 255 255;
 

From ee598288d4648426e0aeaa95c42efca05d3e1291 Mon Sep 17 00:00:00 2001
From: Jason Ng <jng@bitwarden.com>
Date: Wed, 16 Jul 2025 09:58:07 -0400
Subject: [PATCH 144/239] [PM-23722] Add missing account security badge
 (#15603)

* add account security nudge logic to settings v2 and badge check in nudges service
---
 .../tools/popup/settings/settings-v2.component.html   | 11 ++++++++++-
 .../src/tools/popup/settings/settings-v2.component.ts |  6 ++++++
 .../account-security-nudge.service.ts                 |  2 --
 .../angular/src/vault/services/nudges.service.spec.ts | 11 ++++++++++-
 libs/angular/src/vault/services/nudges.service.ts     |  1 +
 5 files changed, 27 insertions(+), 4 deletions(-)

diff --git a/apps/browser/src/tools/popup/settings/settings-v2.component.html b/apps/browser/src/tools/popup/settings/settings-v2.component.html
index 0b2e84712a4..3f8bdb1cf2f 100644
--- a/apps/browser/src/tools/popup/settings/settings-v2.component.html
+++ b/apps/browser/src/tools/popup/settings/settings-v2.component.html
@@ -10,7 +10,16 @@
     <bit-item>
       <a bit-item-content routerLink="/account-security">
         <i slot="start" class="bwi bwi-lock" aria-hidden="true"></i>
-        {{ "accountSecurity" | i18n }}
+        <div class="tw-flex tw-items-center tw-justify-center">
+          <p class="tw-pr-2">{{ "accountSecurity" | i18n }}</p>
+          <span
+            *ngIf="showAcctSecurityNudge$ | async"
+            bitBadge
+            variant="notification"
+            [attr.aria-label]="'nudgeBadgeAria' | i18n"
+            >1</span
+          >
+        </div>
         <i slot="end" class="bwi bwi-angle-right" aria-hidden="true"></i>
       </a>
     </bit-item>
diff --git a/apps/browser/src/tools/popup/settings/settings-v2.component.ts b/apps/browser/src/tools/popup/settings/settings-v2.component.ts
index a0383b99390..7d3b9c776fc 100644
--- a/apps/browser/src/tools/popup/settings/settings-v2.component.ts
+++ b/apps/browser/src/tools/popup/settings/settings-v2.component.ts
@@ -50,6 +50,12 @@ export class SettingsV2Component implements OnInit {
     shareReplay({ bufferSize: 1, refCount: true }),
   );
 
+  protected showAcctSecurityNudge$: Observable<boolean> = this.authenticatedAccount$.pipe(
+    switchMap((account) =>
+      this.nudgesService.showNudgeBadge$(NudgeType.AccountSecurity, account.id),
+    ),
+  );
+
   showDownloadBitwardenNudge$: Observable<boolean> = this.authenticatedAccount$.pipe(
     switchMap((account) =>
       this.nudgesService.showNudgeBadge$(NudgeType.DownloadBitwarden, account.id),
diff --git a/libs/angular/src/vault/services/custom-nudges-services/account-security-nudge.service.ts b/libs/angular/src/vault/services/custom-nudges-services/account-security-nudge.service.ts
index 99d7f3934ff..a64a4aa975c 100644
--- a/libs/angular/src/vault/services/custom-nudges-services/account-security-nudge.service.ts
+++ b/libs/angular/src/vault/services/custom-nudges-services/account-security-nudge.service.ts
@@ -9,7 +9,6 @@ import { PinServiceAbstraction } from "@bitwarden/auth/common";
 import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
 import { PolicyService } from "@bitwarden/common/admin-console/abstractions/policy/policy.service.abstraction";
 import { PolicyType } from "@bitwarden/common/admin-console/enums";
-import { VaultTimeoutSettingsService } from "@bitwarden/common/key-management/vault-timeout";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { UserId } from "@bitwarden/common/types/guid";
 import { BiometricStateService } from "@bitwarden/key-management";
@@ -24,7 +23,6 @@ export class AccountSecurityNudgeService extends DefaultSingleNudgeService {
   private vaultProfileService = inject(VaultProfileService);
   private logService = inject(LogService);
   private pinService = inject(PinServiceAbstraction);
-  private vaultTimeoutSettingsService = inject(VaultTimeoutSettingsService);
   private biometricStateService = inject(BiometricStateService);
   private policyService = inject(PolicyService);
   private organizationService = inject(OrganizationService);
diff --git a/libs/angular/src/vault/services/nudges.service.spec.ts b/libs/angular/src/vault/services/nudges.service.spec.ts
index bf84674c669..a72ea2f581c 100644
--- a/libs/angular/src/vault/services/nudges.service.spec.ts
+++ b/libs/angular/src/vault/services/nudges.service.spec.ts
@@ -23,6 +23,7 @@ import {
   HasItemsNudgeService,
   EmptyVaultNudgeService,
   NewAccountNudgeService,
+  AccountSecurityNudgeService,
   VaultSettingsImportNudgeService,
 } from "./custom-nudges-services";
 import { DefaultSingleNudgeService } from "./default-single-nudge.service";
@@ -37,7 +38,11 @@ describe("Vault Nudges Service", () => {
     getFeatureFlag: jest.fn().mockReturnValue(true),
   };
 
-  const nudgeServices = [EmptyVaultNudgeService, NewAccountNudgeService];
+  const nudgeServices = [
+    EmptyVaultNudgeService,
+    NewAccountNudgeService,
+    AccountSecurityNudgeService,
+  ];
 
   beforeEach(async () => {
     fakeStateProvider = new FakeStateProvider(mockAccountServiceWith("user-id" as UserId));
@@ -68,6 +73,10 @@ describe("Vault Nudges Service", () => {
           provide: EmptyVaultNudgeService,
           useValue: mock<EmptyVaultNudgeService>(),
         },
+        {
+          provide: AccountSecurityNudgeService,
+          useValue: mock<AccountSecurityNudgeService>(),
+        },
         {
           provide: VaultSettingsImportNudgeService,
           useValue: mock<VaultSettingsImportNudgeService>(),
diff --git a/libs/angular/src/vault/services/nudges.service.ts b/libs/angular/src/vault/services/nudges.service.ts
index 6cb7ae4abf1..584aacd9837 100644
--- a/libs/angular/src/vault/services/nudges.service.ts
+++ b/libs/angular/src/vault/services/nudges.service.ts
@@ -160,6 +160,7 @@ export class NudgesService {
   hasActiveBadges$(userId: UserId): Observable<boolean> {
     // Add more nudge types here if they have the settings badge feature
     const nudgeTypes = [
+      NudgeType.AccountSecurity,
       NudgeType.EmptyVaultNudge,
       NudgeType.DownloadBitwarden,
       NudgeType.AutofillNudge,

From 60855c734fe34ed98ae321777266ededdb571e6d Mon Sep 17 00:00:00 2001
From: Bernd Schoolmann <mail@quexten.com>
Date: Wed, 16 Jul 2025 17:15:24 +0200
Subject: [PATCH 145/239] [PM-17666] Move Encstring to KM ownership (#15457)

* Move Encstring to KM ownership

* Fix wrong import

* Fix build

* Fix remaining imports

* Fix tests
---
 .../src/background/nativeMessaging.background.ts      |  2 +-
 .../services/local-backed-session-storage.service.ts  |  2 +-
 apps/cli/src/auth/commands/login.command.ts           |  2 +-
 apps/cli/src/commands/get.command.ts                  |  2 +-
 .../src/native-message.service.ts                     |  2 +-
 .../desktop-set-initial-password.service.spec.ts      |  2 +-
 apps/desktop/src/auth/set-password.component.ts       |  2 +-
 .../biometrics/os-biometrics-linux.service.ts         |  2 +-
 .../biometrics/os-biometrics-windows.service.ts       |  2 +-
 .../native-messaging/encrypted-message-response.ts    |  2 +-
 .../src/models/native-messaging/encrypted-message.ts  |  2 +-
 .../models/native-messaging/legacy-message-wrapper.ts |  2 +-
 apps/desktop/src/platform/preload.ts                  |  2 +-
 .../src/services/biometric-message-handler.service.ts |  2 +-
 .../services/duckduckgo-message-handler.service.ts    |  5 ++++-
 .../organization-user-reset-password.service.spec.ts  |  2 +-
 .../organization-user-reset-password.service.ts       |  5 ++++-
 .../web-set-initial-password.service.spec.ts          |  2 +-
 .../web-registration-finish.service.spec.ts           |  2 +-
 .../registration/web-registration-finish.service.ts   |  5 ++++-
 .../response/webauthn-login-credential.response.ts    |  2 +-
 .../webauthn-login-admin.service.spec.ts              |  2 +-
 .../services/emergency-access.service.spec.ts         |  2 +-
 .../services/emergency-access.service.ts              |  5 ++++-
 .../accept-organization.service.spec.ts               |  2 +-
 apps/web/src/app/auth/set-password.component.ts       |  2 +-
 .../members/free-bitwarden-families.component.ts      |  2 +-
 .../organizations/organization-plans.component.ts     |  2 +-
 .../key-rotation/user-key-rotation.service.spec.ts    |  5 ++++-
 .../key-rotation/user-key-rotation.service.ts         |  2 +-
 .../organization-auth-request-api.service.ts          |  2 +-
 .../organization-auth-request.service.spec.ts         |  2 +-
 .../organization-auth-request.service.ts              |  2 +-
 .../services/critical-apps.service.spec.ts            |  2 +-
 .../risk-insights/services/critical-apps.service.ts   |  2 +-
 .../model/member-access-report.model.ts               |  2 +-
 .../response/member-access-report.response.ts         |  2 +-
 .../services/member-access-report.mock.ts             |  2 +-
 .../services/member-access-report.service.ts          |  2 +-
 .../projects/models/requests/project.request.ts       |  2 +-
 .../app/secrets-manager/projects/project.service.ts   |  2 +-
 .../secrets-manager/secrets/secret.service.spec.ts    |  2 +-
 .../src/app/secrets-manager/secrets/secret.service.ts |  2 +-
 .../service-accounts/access/access.service.ts         |  2 +-
 .../models/requests/access-token.request.ts           |  2 +-
 .../models/requests/service-account.request.ts        |  2 +-
 .../service-accounts/service-account.service.ts       |  2 +-
 .../models/requests/sm-imported-project.request.ts    |  2 +-
 .../models/requests/sm-imported-secret.request.ts     |  2 +-
 .../settings/services/sm-porting-api.service.spec.ts  |  2 +-
 .../settings/services/sm-porting-api.service.ts       |  2 +-
 .../shared/access-policies/access-policy.service.ts   |  2 +-
 .../src/common/collections/models/collection.ts       |  2 +-
 .../services/default-collection-admin.service.ts      |  2 +-
 .../services/default-collection.service.spec.ts       |  2 +-
 .../services/default-vnext-collection.service.spec.ts |  2 +-
 .../requests/organization-user-confirm.request.ts     |  2 +-
 .../src/auth/components/change-password.component.ts  |  2 +-
 .../src/auth/components/set-password.component.ts     |  2 +-
 .../src/auth/components/update-password.component.ts  |  2 +-
 .../auth/components/update-temp-password.component.ts |  2 +-
 .../default-change-password.service.spec.ts           |  2 +-
 .../default-change-password.service.ts                |  2 +-
 ...ult-set-initial-password.service.implementation.ts |  2 +-
 .../default-set-initial-password.service.spec.ts      |  5 ++++-
 .../default-registration-finish.service.spec.ts       |  2 +-
 .../default-registration-finish.service.ts            |  5 ++++-
 .../default-set-password-jit.service.spec.ts          |  2 +-
 .../default-set-password-jit.service.ts               |  2 +-
 .../common/abstractions/pin.service.abstraction.ts    |  2 +-
 .../common/login-strategies/login.strategy.spec.ts    |  2 +-
 .../login-strategies/sso-login.strategy.spec.ts       |  2 +-
 .../login-strategies/webauthn-login.strategy.ts       |  2 +-
 .../src/common/models/domain/rotateable-key-set.ts    |  2 +-
 .../auth-request/auth-request.service.spec.ts         |  2 +-
 .../services/auth-request/auth-request.service.ts     |  2 +-
 .../common/services/pin/pin.service.implementation.ts |  5 ++++-
 libs/auth/src/common/services/pin/pin.service.spec.ts |  2 +-
 libs/common/spec/utils.ts                             |  2 +-
 .../models/domain/encrypted-organization-key.ts       |  2 +-
 .../request/registration/register-finish.request.ts   |  2 +-
 .../request/webauthn-rotate-credential.request.ts     |  2 +-
 .../auth/models/response/identity-token.response.ts   |  2 +-
 .../auth/models/response/protected-device.response.ts |  2 +-
 .../trusted-device-user-decryption-option.response.ts |  2 +-
 .../webauthn-prf-decryption-option.response.ts        |  2 +-
 libs/common/src/auth/services/token.service.ts        |  2 +-
 .../billing/services/organization-billing.service.ts  |  2 +-
 .../crypto/abstractions/encrypt.service.ts            |  2 +-
 .../crypto/models}/enc-string.spec.ts                 |  6 +++---
 .../crypto/models}/enc-string.ts                      | 11 +++++------
 .../crypto/services/encrypt.service.implementation.ts |  2 +-
 .../crypto/services/encrypt.service.spec.ts           |  2 +-
 .../abstractions/device-trust.service.abstraction.ts  |  2 +-
 .../services/device-trust.service.implementation.ts   |  2 +-
 .../services/device-trust.service.spec.ts             |  2 +-
 .../services/key-connector.service.spec.ts            |  2 +-
 .../master-password.service.abstraction.ts            |  2 +-
 .../services/fake-master-password.service.ts          |  2 +-
 .../services/master-password.service.spec.ts          |  2 +-
 .../services/master-password.service.ts               |  2 +-
 libs/common/src/models/export/card.export.ts          |  2 +-
 libs/common/src/models/export/cipher.export.ts        |  2 +-
 libs/common/src/models/export/collection.export.ts    |  2 +-
 .../src/models/export/fido2-credential.export.ts      |  2 +-
 libs/common/src/models/export/field.export.ts         |  2 +-
 libs/common/src/models/export/folder.export.ts        |  2 +-
 libs/common/src/models/export/identity.export.ts      |  2 +-
 libs/common/src/models/export/login-uri.export.ts     |  2 +-
 libs/common/src/models/export/login.export.ts         |  2 +-
 .../src/models/export/password-history.export.ts      |  2 +-
 libs/common/src/models/export/ssh-key.export.ts       |  2 +-
 libs/common/src/models/export/utils.ts                |  2 +-
 libs/common/src/models/response/profile.response.ts   |  2 +-
 .../abstractions/file-upload/file-upload.service.ts   |  2 +-
 .../src/platform/models/domain/domain-base.spec.ts    |  2 +-
 libs/common/src/platform/models/domain/domain-base.ts |  2 +-
 .../services/file-upload/file-upload.service.ts       |  2 +-
 .../services/key-state/provider-keys.state.ts         |  2 +-
 .../services/key-state/user-key.state.spec.ts         |  2 +-
 .../src/platform/services/key-state/user-key.state.ts |  2 +-
 .../platform/services/sdk/default-sdk.service.spec.ts |  2 +-
 .../src/platform/services/sdk/default-sdk.service.ts  |  2 +-
 .../organization-encryptor.abstraction.ts             |  2 +-
 .../cryptography/organization-key-encryptor.spec.ts   |  2 +-
 .../tools/cryptography/organization-key-encryptor.ts  |  2 +-
 .../tools/cryptography/user-encryptor.abstraction.ts  |  2 +-
 .../src/tools/cryptography/user-key-encryptor.spec.ts |  2 +-
 .../src/tools/cryptography/user-key-encryptor.ts      |  2 +-
 .../src/tools/send/models/domain/send-access.ts       |  2 +-
 libs/common/src/tools/send/models/domain/send-file.ts |  2 +-
 libs/common/src/tools/send/models/domain/send-text.ts |  2 +-
 libs/common/src/tools/send/models/domain/send.ts      |  2 +-
 .../src/tools/send/services/send.service.spec.ts      |  2 +-
 libs/common/src/tools/send/services/send.service.ts   |  2 +-
 .../tools/send/services/test-data/send-tests.data.ts  |  2 +-
 libs/common/src/tools/state/secret-state.spec.ts      |  2 +-
 libs/common/src/tools/state/secret-state.ts           |  2 +-
 libs/common/src/tools/state/user-state-subject.ts     |  2 +-
 .../file-upload/cipher-file-upload.service.ts         |  2 +-
 .../common/src/vault/models/domain/attachment.spec.ts |  2 +-
 libs/common/src/vault/models/domain/attachment.ts     |  2 +-
 libs/common/src/vault/models/domain/card.spec.ts      |  2 +-
 libs/common/src/vault/models/domain/card.ts           |  2 +-
 libs/common/src/vault/models/domain/cipher.spec.ts    |  2 +-
 libs/common/src/vault/models/domain/cipher.ts         |  2 +-
 .../src/vault/models/domain/fido2-credential.spec.ts  |  2 +-
 .../src/vault/models/domain/fido2-credential.ts       |  2 +-
 libs/common/src/vault/models/domain/field.spec.ts     |  2 +-
 libs/common/src/vault/models/domain/field.ts          |  2 +-
 libs/common/src/vault/models/domain/folder.spec.ts    |  4 ++--
 libs/common/src/vault/models/domain/folder.ts         |  2 +-
 libs/common/src/vault/models/domain/identity.spec.ts  |  2 +-
 libs/common/src/vault/models/domain/identity.ts       |  2 +-
 libs/common/src/vault/models/domain/login-uri.spec.ts |  2 +-
 libs/common/src/vault/models/domain/login-uri.ts      |  2 +-
 libs/common/src/vault/models/domain/login.spec.ts     |  2 +-
 libs/common/src/vault/models/domain/login.ts          |  2 +-
 libs/common/src/vault/models/domain/password.spec.ts  |  2 +-
 libs/common/src/vault/models/domain/password.ts       |  2 +-
 libs/common/src/vault/models/domain/ssh-key.ts        |  2 +-
 .../src/vault/models/view/attachment.view.spec.ts     |  2 +-
 libs/common/src/vault/models/view/attachment.view.ts  |  2 +-
 libs/common/src/vault/services/cipher.service.spec.ts |  2 +-
 libs/common/src/vault/services/cipher.service.ts      |  2 +-
 .../file-upload/cipher-file-upload.service.ts         |  2 +-
 .../src/vault/services/folder/folder.service.spec.ts  |  2 +-
 .../importers/bitwarden/bitwarden-json-importer.ts    |  2 +-
 .../bitwarden-password-protected-importer.ts          |  2 +-
 libs/key-management/src/abstractions/key.service.ts   |  5 ++++-
 .../src/biometrics/biometric-state.service.spec.ts    |  2 +-
 .../src/biometrics/biometric-state.service.ts         |  5 ++++-
 libs/key-management/src/biometrics/biometric.state.ts |  2 +-
 libs/key-management/src/key.service.spec.ts           |  5 ++++-
 libs/key-management/src/key.service.ts                |  5 ++++-
 .../user-asymmetric-key-regeneration-api.service.ts   |  2 +-
 .../models/requests/key-regeneration.request.ts       |  2 +-
 ...lt-user-asymmetric-key-regeneration-api.service.ts |  2 +-
 ...t-user-asymmetric-key-regeneration.service.spec.ts |  2 +-
 ...efault-user-asymmetric-key-regeneration.service.ts |  2 +-
 .../services/individual-vault-export.service.spec.ts  |  5 ++++-
 .../src/services/vault-export.service.spec.ts         |  5 ++++-
 .../history/src/legacy-password-history-decryptor.ts  |  2 +-
 .../src/local-generator-history.service.spec.ts       |  2 +-
 184 files changed, 233 insertions(+), 192 deletions(-)
 rename libs/common/src/{platform/models/domain => key-management/crypto/models}/enc-string.spec.ts (98%)
 rename libs/common/src/{platform/models/domain => key-management/crypto/models}/enc-string.ts (94%)

diff --git a/apps/browser/src/background/nativeMessaging.background.ts b/apps/browser/src/background/nativeMessaging.background.ts
index 66a929c47a1..8b845cf3567 100644
--- a/apps/browser/src/background/nativeMessaging.background.ts
+++ b/apps/browser/src/background/nativeMessaging.background.ts
@@ -4,12 +4,12 @@ import { AccountService } from "@bitwarden/common/auth/abstractions/account.serv
 import { AuthService } from "@bitwarden/common/auth/abstractions/auth.service";
 import { CryptoFunctionService } from "@bitwarden/common/key-management/crypto/abstractions/crypto-function.service";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { AppIdService } from "@bitwarden/common/platform/abstractions/app-id.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import { KeyService, BiometricStateService } from "@bitwarden/key-management";
 
diff --git a/apps/browser/src/platform/services/local-backed-session-storage.service.ts b/apps/browser/src/platform/services/local-backed-session-storage.service.ts
index 1507bf20c48..ee5a53b0ad2 100644
--- a/apps/browser/src/platform/services/local-backed-session-storage.service.ts
+++ b/apps/browser/src/platform/services/local-backed-session-storage.service.ts
@@ -3,6 +3,7 @@
 import { Subject } from "rxjs";
 
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
 import {
@@ -12,7 +13,6 @@ import {
 } from "@bitwarden/common/platform/abstractions/storage.service";
 import { compareValues } from "@bitwarden/common/platform/misc/compare-values";
 import { Lazy } from "@bitwarden/common/platform/misc/lazy";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { StorageOptions } from "@bitwarden/common/platform/models/domain/storage-options";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 
diff --git a/apps/cli/src/auth/commands/login.command.ts b/apps/cli/src/auth/commands/login.command.ts
index 03af0085e67..3ceac859c43 100644
--- a/apps/cli/src/auth/commands/login.command.ts
+++ b/apps/cli/src/auth/commands/login.command.ts
@@ -31,13 +31,13 @@ import { TwoFactorEmailRequest } from "@bitwarden/common/auth/models/request/two
 import { UpdateTempPasswordRequest } from "@bitwarden/common/auth/models/request/update-temp-password.request";
 import { ClientType } from "@bitwarden/common/enums";
 import { CryptoFunctionService } from "@bitwarden/common/key-management/crypto/abstractions/crypto-function.service";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { KeyConnectorService } from "@bitwarden/common/key-management/key-connector/abstractions/key-connector.service";
 import { MasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
 import { EnvironmentService } from "@bitwarden/common/platform/abstractions/environment.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import { PasswordStrengthServiceAbstraction } from "@bitwarden/common/tools/password-strength";
 import { UserId } from "@bitwarden/common/types/guid";
diff --git a/apps/cli/src/commands/get.command.ts b/apps/cli/src/commands/get.command.ts
index 3b1e0de4f15..aa2db7c81ab 100644
--- a/apps/cli/src/commands/get.command.ts
+++ b/apps/cli/src/commands/get.command.ts
@@ -13,6 +13,7 @@ import { getUserId } from "@bitwarden/common/auth/services/account.service";
 import { BillingAccountProfileStateService } from "@bitwarden/common/billing/abstractions/account/billing-account-profile-state.service";
 import { EventType } from "@bitwarden/common/enums";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { CardExport } from "@bitwarden/common/models/export/card.export";
 import { CipherExport } from "@bitwarden/common/models/export/cipher.export";
 import { CollectionExport } from "@bitwarden/common/models/export/collection.export";
@@ -24,7 +25,6 @@ import { LoginExport } from "@bitwarden/common/models/export/login.export";
 import { SecureNoteExport } from "@bitwarden/common/models/export/secure-note.export";
 import { ErrorResponse } from "@bitwarden/common/models/response/error.response";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { SendType } from "@bitwarden/common/tools/send/enums/send-type";
 import { CipherId, OrganizationId, UserId } from "@bitwarden/common/types/guid";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
diff --git a/apps/desktop/native-messaging-test-runner/src/native-message.service.ts b/apps/desktop/native-messaging-test-runner/src/native-message.service.ts
index c2356f93e28..b8f7bb596b9 100644
--- a/apps/desktop/native-messaging-test-runner/src/native-message.service.ts
+++ b/apps/desktop/native-messaging-test-runner/src/native-message.service.ts
@@ -3,9 +3,9 @@ import "module-alias/register";
 
 import { v4 as uuidv4 } from "uuid";
 
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { EncryptServiceImplementation } from "@bitwarden/common/key-management/crypto/services/encrypt.service.implementation";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import { ConsoleLogService } from "@bitwarden/common/platform/services/console-log.service";
 import { NodeCryptoFunctionService } from "@bitwarden/node/services/node-crypto-function.service";
diff --git a/apps/desktop/src/app/services/set-initial-password/desktop-set-initial-password.service.spec.ts b/apps/desktop/src/app/services/set-initial-password/desktop-set-initial-password.service.spec.ts
index 02438300e94..44754995f72 100644
--- a/apps/desktop/src/app/services/set-initial-password/desktop-set-initial-password.service.spec.ts
+++ b/apps/desktop/src/app/services/set-initial-password/desktop-set-initial-password.service.spec.ts
@@ -16,11 +16,11 @@ import { OrganizationApiServiceAbstraction } from "@bitwarden/common/admin-conso
 import { MasterPasswordApiService } from "@bitwarden/common/auth/abstractions/master-password-api.service.abstraction";
 import { SetPasswordRequest } from "@bitwarden/common/auth/models/request/set-password.request";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { InternalMasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
 import { KeysRequest } from "@bitwarden/common/models/request/keys.request";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import { CsprngArray } from "@bitwarden/common/types/csprng";
 import { UserId } from "@bitwarden/common/types/guid";
diff --git a/apps/desktop/src/auth/set-password.component.ts b/apps/desktop/src/auth/set-password.component.ts
index 55ad1f48a77..d45fc111a97 100644
--- a/apps/desktop/src/auth/set-password.component.ts
+++ b/apps/desktop/src/auth/set-password.component.ts
@@ -11,12 +11,12 @@ import { AccountService } from "@bitwarden/common/auth/abstractions/account.serv
 import { MasterPasswordApiService } from "@bitwarden/common/auth/abstractions/master-password-api.service.abstraction";
 import { SsoLoginServiceAbstraction } from "@bitwarden/common/auth/abstractions/sso-login.service.abstraction";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { InternalMasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
 import { BroadcasterService } from "@bitwarden/common/platform/abstractions/broadcaster.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { MasterKey, UserKey } from "@bitwarden/common/types/key";
 import { SyncService } from "@bitwarden/common/vault/abstractions/sync/sync.service.abstraction";
 import { DialogService, ToastService } from "@bitwarden/components";
diff --git a/apps/desktop/src/key-management/biometrics/os-biometrics-linux.service.ts b/apps/desktop/src/key-management/biometrics/os-biometrics-linux.service.ts
index 3f13682f1b7..c310f337182 100644
--- a/apps/desktop/src/key-management/biometrics/os-biometrics-linux.service.ts
+++ b/apps/desktop/src/key-management/biometrics/os-biometrics-linux.service.ts
@@ -2,9 +2,9 @@ import { spawn } from "child_process";
 
 import { CryptoFunctionService } from "@bitwarden/common/key-management/crypto/abstractions/crypto-function.service";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import { UserId } from "@bitwarden/common/types/guid";
 import { biometrics, passwords } from "@bitwarden/desktop-napi";
diff --git a/apps/desktop/src/key-management/biometrics/os-biometrics-windows.service.ts b/apps/desktop/src/key-management/biometrics/os-biometrics-windows.service.ts
index b1726644b0a..65abced1526 100644
--- a/apps/desktop/src/key-management/biometrics/os-biometrics-windows.service.ts
+++ b/apps/desktop/src/key-management/biometrics/os-biometrics-windows.service.ts
@@ -1,10 +1,10 @@
 import { CryptoFunctionService } from "@bitwarden/common/key-management/crypto/abstractions/crypto-function.service";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { EncryptionType } from "@bitwarden/common/platform/enums";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import { UserId } from "@bitwarden/common/types/guid";
 import { biometrics, passwords } from "@bitwarden/desktop-napi";
diff --git a/apps/desktop/src/models/native-messaging/encrypted-message-response.ts b/apps/desktop/src/models/native-messaging/encrypted-message-response.ts
index b47422f565c..a8f9eb7f442 100644
--- a/apps/desktop/src/models/native-messaging/encrypted-message-response.ts
+++ b/apps/desktop/src/models/native-messaging/encrypted-message-response.ts
@@ -1,4 +1,4 @@
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 
 import { MessageCommon } from "./message-common";
 
diff --git a/apps/desktop/src/models/native-messaging/encrypted-message.ts b/apps/desktop/src/models/native-messaging/encrypted-message.ts
index 474459242be..4e95a39130a 100644
--- a/apps/desktop/src/models/native-messaging/encrypted-message.ts
+++ b/apps/desktop/src/models/native-messaging/encrypted-message.ts
@@ -1,4 +1,4 @@
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 
 import { MessageCommon } from "./message-common";
 
diff --git a/apps/desktop/src/models/native-messaging/legacy-message-wrapper.ts b/apps/desktop/src/models/native-messaging/legacy-message-wrapper.ts
index f520dd40e4b..0d6a4ac3a73 100644
--- a/apps/desktop/src/models/native-messaging/legacy-message-wrapper.ts
+++ b/apps/desktop/src/models/native-messaging/legacy-message-wrapper.ts
@@ -1,4 +1,4 @@
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 
 import { LegacyMessage } from "./legacy-message";
 
diff --git a/apps/desktop/src/platform/preload.ts b/apps/desktop/src/platform/preload.ts
index 0487675c792..5af2fa571ec 100644
--- a/apps/desktop/src/platform/preload.ts
+++ b/apps/desktop/src/platform/preload.ts
@@ -1,8 +1,8 @@
 import { ipcRenderer } from "electron";
 
 import { DeviceType } from "@bitwarden/common/enums";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { ThemeType, LogLevelType } from "@bitwarden/common/platform/enums";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 
 import {
   EncryptedMessageResponse,
diff --git a/apps/desktop/src/services/biometric-message-handler.service.ts b/apps/desktop/src/services/biometric-message-handler.service.ts
index dcca00a1686..8b4c3744a8d 100644
--- a/apps/desktop/src/services/biometric-message-handler.service.ts
+++ b/apps/desktop/src/services/biometric-message-handler.service.ts
@@ -6,11 +6,11 @@ import { AuthService } from "@bitwarden/common/auth/abstractions/auth.service";
 import { AuthenticationStatus } from "@bitwarden/common/auth/enums/authentication-status";
 import { CryptoFunctionService } from "@bitwarden/common/key-management/crypto/abstractions/crypto-function.service";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import { UserId } from "@bitwarden/common/types/guid";
 import { DialogService } from "@bitwarden/components";
diff --git a/apps/desktop/src/services/duckduckgo-message-handler.service.ts b/apps/desktop/src/services/duckduckgo-message-handler.service.ts
index 7bddaba499c..fb3309c5b2a 100644
--- a/apps/desktop/src/services/duckduckgo-message-handler.service.ts
+++ b/apps/desktop/src/services/duckduckgo-message-handler.service.ts
@@ -6,10 +6,13 @@ import { firstValueFrom } from "rxjs";
 import { NativeMessagingVersion } from "@bitwarden/common/enums";
 import { CryptoFunctionService } from "@bitwarden/common/key-management/crypto/abstractions/crypto-function.service";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import {
+  EncryptedString,
+  EncString,
+} from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
 import { StateService } from "@bitwarden/common/platform/abstractions/state.service";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
-import { EncryptedString, EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import { DialogService } from "@bitwarden/components";
 
diff --git a/apps/web/src/app/admin-console/organizations/members/services/organization-user-reset-password/organization-user-reset-password.service.spec.ts b/apps/web/src/app/admin-console/organizations/members/services/organization-user-reset-password/organization-user-reset-password.service.spec.ts
index 575c1017f21..db94eb2535f 100644
--- a/apps/web/src/app/admin-console/organizations/members/services/organization-user-reset-password/organization-user-reset-password.service.spec.ts
+++ b/apps/web/src/app/admin-console/organizations/members/services/organization-user-reset-password/organization-user-reset-password.service.spec.ts
@@ -12,10 +12,10 @@ import { Organization } from "@bitwarden/common/admin-console/models/domain/orga
 import { OrganizationKeysResponse } from "@bitwarden/common/admin-console/models/response/organization-keys.response";
 import { OrganizationApiService } from "@bitwarden/common/admin-console/services/organization/organization-api.service";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { EncryptionType } from "@bitwarden/common/platform/enums";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import { CsprngArray } from "@bitwarden/common/types/csprng";
 import { UserId } from "@bitwarden/common/types/guid";
diff --git a/apps/web/src/app/admin-console/organizations/members/services/organization-user-reset-password/organization-user-reset-password.service.ts b/apps/web/src/app/admin-console/organizations/members/services/organization-user-reset-password/organization-user-reset-password.service.ts
index d54e12c0ee7..a1727a8cc59 100644
--- a/apps/web/src/app/admin-console/organizations/members/services/organization-user-reset-password/organization-user-reset-password.service.ts
+++ b/apps/web/src/app/admin-console/organizations/members/services/organization-user-reset-password/organization-user-reset-password.service.ts
@@ -11,9 +11,12 @@ import {
 import { OrganizationApiServiceAbstraction } from "@bitwarden/common/admin-console/abstractions/organization/organization-api.service.abstraction";
 import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import {
+  EncryptedString,
+  EncString,
+} from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
-import { EncryptedString, EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { OrganizationId, UserId } from "@bitwarden/common/types/guid";
 import { UserKey } from "@bitwarden/common/types/key";
 import {
diff --git a/apps/web/src/app/auth/core/services/password-management/set-initial-password/web-set-initial-password.service.spec.ts b/apps/web/src/app/auth/core/services/password-management/set-initial-password/web-set-initial-password.service.spec.ts
index b562c54894b..2993a3774d3 100644
--- a/apps/web/src/app/auth/core/services/password-management/set-initial-password/web-set-initial-password.service.spec.ts
+++ b/apps/web/src/app/auth/core/services/password-management/set-initial-password/web-set-initial-password.service.spec.ts
@@ -17,10 +17,10 @@ import { MasterPasswordApiService } from "@bitwarden/common/auth/abstractions/ma
 import { SetPasswordRequest } from "@bitwarden/common/auth/models/request/set-password.request";
 import { OrganizationInviteService } from "@bitwarden/common/auth/services/organization-invite/organization-invite.service";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { InternalMasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
 import { KeysRequest } from "@bitwarden/common/models/request/keys.request";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import { CsprngArray } from "@bitwarden/common/types/csprng";
 import { UserId } from "@bitwarden/common/types/guid";
diff --git a/apps/web/src/app/auth/core/services/registration/web-registration-finish.service.spec.ts b/apps/web/src/app/auth/core/services/registration/web-registration-finish.service.spec.ts
index e491f95c1b9..69a2f27a322 100644
--- a/apps/web/src/app/auth/core/services/registration/web-registration-finish.service.spec.ts
+++ b/apps/web/src/app/auth/core/services/registration/web-registration-finish.service.spec.ts
@@ -11,9 +11,9 @@ import { Policy } from "@bitwarden/common/admin-console/models/domain/policy";
 import { AccountApiService } from "@bitwarden/common/auth/abstractions/account-api.service";
 import { OrganizationInvite } from "@bitwarden/common/auth/services/organization-invite/organization-invite";
 import { OrganizationInviteService } from "@bitwarden/common/auth/services/organization-invite/organization-invite.service";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import { CsprngArray } from "@bitwarden/common/types/csprng";
 import { MasterKey, UserKey } from "@bitwarden/common/types/key";
diff --git a/apps/web/src/app/auth/core/services/registration/web-registration-finish.service.ts b/apps/web/src/app/auth/core/services/registration/web-registration-finish.service.ts
index d6f0a27a79c..a3774e87db8 100644
--- a/apps/web/src/app/auth/core/services/registration/web-registration-finish.service.ts
+++ b/apps/web/src/app/auth/core/services/registration/web-registration-finish.service.ts
@@ -15,9 +15,12 @@ import { AccountApiService } from "@bitwarden/common/auth/abstractions/account-a
 import { RegisterFinishRequest } from "@bitwarden/common/auth/models/request/registration/register-finish.request";
 import { OrganizationInviteService } from "@bitwarden/common/auth/services/organization-invite/organization-invite.service";
 import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
+import {
+  EncryptedString,
+  EncString,
+} from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
-import { EncryptedString, EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { KeyService } from "@bitwarden/key-management";
 
 export class WebRegistrationFinishService
diff --git a/apps/web/src/app/auth/core/services/webauthn-login/response/webauthn-login-credential.response.ts b/apps/web/src/app/auth/core/services/webauthn-login/response/webauthn-login-credential.response.ts
index 1235446b006..85e7a7368e0 100644
--- a/apps/web/src/app/auth/core/services/webauthn-login/response/webauthn-login-credential.response.ts
+++ b/apps/web/src/app/auth/core/services/webauthn-login/response/webauthn-login-credential.response.ts
@@ -1,8 +1,8 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
 import { RotateableKeySet } from "@bitwarden/auth/common";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { BaseResponse } from "@bitwarden/common/models/response/base.response";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 
 import { WebauthnLoginCredentialPrfStatus } from "../../../enums/webauthn-login-credential-prf-status.enum";
 
diff --git a/apps/web/src/app/auth/core/services/webauthn-login/webauthn-login-admin.service.spec.ts b/apps/web/src/app/auth/core/services/webauthn-login/webauthn-login-admin.service.spec.ts
index dd9cf85aa5f..c2a9946ea38 100644
--- a/apps/web/src/app/auth/core/services/webauthn-login/webauthn-login-admin.service.spec.ts
+++ b/apps/web/src/app/auth/core/services/webauthn-login/webauthn-login-admin.service.spec.ts
@@ -9,8 +9,8 @@ import { UserVerificationService } from "@bitwarden/common/auth/abstractions/use
 import { WebAuthnLoginPrfKeyServiceAbstraction } from "@bitwarden/common/auth/abstractions/webauthn/webauthn-login-prf-key.service.abstraction";
 import { WebAuthnLoginCredentialAssertionView } from "@bitwarden/common/auth/models/view/webauthn-login/webauthn-login-credential-assertion.view";
 import { WebAuthnLoginAssertionResponseRequest } from "@bitwarden/common/auth/services/webauthn-login/request/webauthn-login-assertion-response.request";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { makeSymmetricCryptoKey } from "@bitwarden/common/spec";
 import { PrfKey, UserKey } from "@bitwarden/common/types/key";
 
diff --git a/apps/web/src/app/auth/emergency-access/services/emergency-access.service.spec.ts b/apps/web/src/app/auth/emergency-access/services/emergency-access.service.spec.ts
index 6b4b3f2ff1e..752e9dc1ce0 100644
--- a/apps/web/src/app/auth/emergency-access/services/emergency-access.service.spec.ts
+++ b/apps/web/src/app/auth/emergency-access/services/emergency-access.service.spec.ts
@@ -6,13 +6,13 @@ import mock from "jest-mock-extended/lib/Mock";
 import { ApiService } from "@bitwarden/common/abstractions/api.service";
 import { BulkEncryptService } from "@bitwarden/common/key-management/crypto/abstractions/bulk-encrypt.service";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { ListResponse } from "@bitwarden/common/models/response/list.response";
 import { UserKeyResponse } from "@bitwarden/common/models/response/user-key.response";
 import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { EncryptionType } from "@bitwarden/common/platform/enums";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import { CsprngArray } from "@bitwarden/common/types/csprng";
 import { UserId } from "@bitwarden/common/types/guid";
diff --git a/apps/web/src/app/auth/emergency-access/services/emergency-access.service.ts b/apps/web/src/app/auth/emergency-access/services/emergency-access.service.ts
index 2cc9ff8b302..673ab7443f9 100644
--- a/apps/web/src/app/auth/emergency-access/services/emergency-access.service.ts
+++ b/apps/web/src/app/auth/emergency-access/services/emergency-access.service.ts
@@ -6,10 +6,13 @@ import { Policy } from "@bitwarden/common/admin-console/models/domain/policy";
 import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
 import { BulkEncryptService } from "@bitwarden/common/key-management/crypto/abstractions/bulk-encrypt.service";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import {
+  EncryptedString,
+  EncString,
+} from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
-import { EncryptedString, EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { UserId } from "@bitwarden/common/types/guid";
 import { UserKey } from "@bitwarden/common/types/key";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
diff --git a/apps/web/src/app/auth/organization-invite/accept-organization.service.spec.ts b/apps/web/src/app/auth/organization-invite/accept-organization.service.spec.ts
index 2fd869049bb..9e3bf1797ab 100644
--- a/apps/web/src/app/auth/organization-invite/accept-organization.service.spec.ts
+++ b/apps/web/src/app/auth/organization-invite/accept-organization.service.spec.ts
@@ -17,9 +17,9 @@ import { AuthService } from "@bitwarden/common/auth/abstractions/auth.service";
 import { OrganizationInvite } from "@bitwarden/common/auth/services/organization-invite/organization-invite";
 import { OrganizationInviteService } from "@bitwarden/common/auth/services/organization-invite/organization-invite.service";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { OrgKey } from "@bitwarden/common/types/key";
 import { KeyService } from "@bitwarden/key-management";
 
diff --git a/apps/web/src/app/auth/set-password.component.ts b/apps/web/src/app/auth/set-password.component.ts
index f61981a93d3..a2044e298a5 100644
--- a/apps/web/src/app/auth/set-password.component.ts
+++ b/apps/web/src/app/auth/set-password.component.ts
@@ -2,7 +2,7 @@ import { Component, inject } from "@angular/core";
 
 import { SetPasswordComponent as BaseSetPasswordComponent } from "@bitwarden/angular/auth/components/set-password.component";
 import { OrganizationInviteService } from "@bitwarden/common/auth/services/organization-invite/organization-invite.service";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { MasterKey, UserKey } from "@bitwarden/common/types/key";
 
 import { RouterService } from "../core";
diff --git a/apps/web/src/app/billing/members/free-bitwarden-families.component.ts b/apps/web/src/app/billing/members/free-bitwarden-families.component.ts
index edd918ce059..dc4a2f6df9b 100644
--- a/apps/web/src/app/billing/members/free-bitwarden-families.component.ts
+++ b/apps/web/src/app/billing/members/free-bitwarden-families.component.ts
@@ -8,10 +8,10 @@ import { ApiService } from "@bitwarden/common/abstractions/api.service";
 import { OrganizationSponsorshipApiServiceAbstraction } from "@bitwarden/common/billing/abstractions/organizations/organization-sponsorship-api.service.abstraction";
 import { OrganizationSponsorshipInvitesResponse } from "@bitwarden/common/billing/models/response/organization-sponsorship-invites.response";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { StateProvider } from "@bitwarden/common/platform/state";
 import { OrganizationId, UserId } from "@bitwarden/common/types/guid";
 import { OrgKey } from "@bitwarden/common/types/key";
diff --git a/apps/web/src/app/billing/organizations/organization-plans.component.ts b/apps/web/src/app/billing/organizations/organization-plans.component.ts
index ca8db39a047..570e243933e 100644
--- a/apps/web/src/app/billing/organizations/organization-plans.component.ts
+++ b/apps/web/src/app/billing/organizations/organization-plans.component.ts
@@ -48,11 +48,11 @@ import { BillingResponse } from "@bitwarden/common/billing/models/response/billi
 import { OrganizationSubscriptionResponse } from "@bitwarden/common/billing/models/response/organization-subscription.response";
 import { PlanResponse } from "@bitwarden/common/billing/models/response/plan.response";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import { OrgKey } from "@bitwarden/common/types/key";
 import { SyncService } from "@bitwarden/common/vault/abstractions/sync/sync.service.abstraction";
diff --git a/apps/web/src/app/key-management/key-rotation/user-key-rotation.service.spec.ts b/apps/web/src/app/key-management/key-rotation/user-key-rotation.service.spec.ts
index 4bc3b7b4fea..0ffa48048f6 100644
--- a/apps/web/src/app/key-management/key-rotation/user-key-rotation.service.spec.ts
+++ b/apps/web/src/app/key-management/key-rotation/user-key-rotation.service.spec.ts
@@ -6,13 +6,16 @@ import { Account } from "@bitwarden/common/auth/abstractions/account.service";
 import { WebauthnRotateCredentialRequest } from "@bitwarden/common/auth/models/request/webauthn-rotate-credential.request";
 import { CryptoFunctionService } from "@bitwarden/common/key-management/crypto/abstractions/crypto-function.service";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import {
+  EncryptedString,
+  EncString,
+} from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { DeviceTrustServiceAbstraction } from "@bitwarden/common/key-management/device-trust/abstractions/device-trust.service.abstraction";
 import { VaultTimeoutService } from "@bitwarden/common/key-management/vault-timeout";
 import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
-import { EncryptedString, EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import { SendWithIdRequest } from "@bitwarden/common/tools/send/models/request/send-with-id.request";
 import { SendService } from "@bitwarden/common/tools/send/services/send.service.abstraction";
diff --git a/apps/web/src/app/key-management/key-rotation/user-key-rotation.service.ts b/apps/web/src/app/key-management/key-rotation/user-key-rotation.service.ts
index 051c32d97e4..9a67506c400 100644
--- a/apps/web/src/app/key-management/key-rotation/user-key-rotation.service.ts
+++ b/apps/web/src/app/key-management/key-rotation/user-key-rotation.service.ts
@@ -5,6 +5,7 @@ import { Account } from "@bitwarden/common/auth/abstractions/account.service";
 import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
 import { CryptoFunctionService } from "@bitwarden/common/key-management/crypto/abstractions/crypto-function.service";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { DeviceTrustServiceAbstraction } from "@bitwarden/common/key-management/device-trust/abstractions/device-trust.service.abstraction";
 import { VaultTimeoutService } from "@bitwarden/common/key-management/vault-timeout";
 import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
@@ -12,7 +13,6 @@ import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.servic
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { EncryptionType, HashPurpose } from "@bitwarden/common/platform/enums";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import { SendService } from "@bitwarden/common/tools/send/services/send.service.abstraction";
 import { UserId } from "@bitwarden/common/types/guid";
diff --git a/bitwarden_license/bit-common/src/admin-console/auth-requests/organization-auth-request-api.service.ts b/bitwarden_license/bit-common/src/admin-console/auth-requests/organization-auth-request-api.service.ts
index 4995df79922..2fb76ad7b98 100644
--- a/bitwarden_license/bit-common/src/admin-console/auth-requests/organization-auth-request-api.service.ts
+++ b/bitwarden_license/bit-common/src/admin-console/auth-requests/organization-auth-request-api.service.ts
@@ -1,6 +1,6 @@
 import { ApiService } from "@bitwarden/common/abstractions/api.service";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { ListResponse } from "@bitwarden/common/models/response/list.response";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 
 import { AdminAuthRequestUpdateRequest } from "./admin-auth-request-update.request";
 import { BulkDenyAuthRequestsRequest } from "./bulk-deny-auth-requests.request";
diff --git a/bitwarden_license/bit-common/src/admin-console/auth-requests/organization-auth-request.service.spec.ts b/bitwarden_license/bit-common/src/admin-console/auth-requests/organization-auth-request.service.spec.ts
index 5d5decac67a..9efac2a3b9e 100644
--- a/bitwarden_license/bit-common/src/admin-console/auth-requests/organization-auth-request.service.spec.ts
+++ b/bitwarden_license/bit-common/src/admin-console/auth-requests/organization-auth-request.service.spec.ts
@@ -5,8 +5,8 @@ import {
   OrganizationUserResetPasswordDetailsResponse,
 } from "@bitwarden/admin-console/common";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { ListResponse } from "@bitwarden/common/models/response/list.response";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import { KeyService } from "@bitwarden/key-management";
 
diff --git a/bitwarden_license/bit-common/src/admin-console/auth-requests/organization-auth-request.service.ts b/bitwarden_license/bit-common/src/admin-console/auth-requests/organization-auth-request.service.ts
index b7994c2b214..941e56e7891 100644
--- a/bitwarden_license/bit-common/src/admin-console/auth-requests/organization-auth-request.service.ts
+++ b/bitwarden_license/bit-common/src/admin-console/auth-requests/organization-auth-request.service.ts
@@ -5,8 +5,8 @@ import {
   OrganizationUserResetPasswordDetailsResponse,
 } from "@bitwarden/admin-console/common";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { KeyService } from "@bitwarden/key-management";
 
 import { OrganizationAuthRequestApiService } from "./organization-auth-request-api.service";
diff --git a/bitwarden_license/bit-common/src/dirt/reports/risk-insights/services/critical-apps.service.spec.ts b/bitwarden_license/bit-common/src/dirt/reports/risk-insights/services/critical-apps.service.spec.ts
index b3e8e11f4f7..96a30d66424 100644
--- a/bitwarden_license/bit-common/src/dirt/reports/risk-insights/services/critical-apps.service.spec.ts
+++ b/bitwarden_license/bit-common/src/dirt/reports/risk-insights/services/critical-apps.service.spec.ts
@@ -5,7 +5,7 @@ import { mock } from "jest-mock-extended";
 import { of } from "rxjs";
 
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import { CsprngArray } from "@bitwarden/common/types/csprng";
 import { OrganizationId } from "@bitwarden/common/types/guid";
diff --git a/bitwarden_license/bit-common/src/dirt/reports/risk-insights/services/critical-apps.service.ts b/bitwarden_license/bit-common/src/dirt/reports/risk-insights/services/critical-apps.service.ts
index 6ad1cb71051..f1d4f9d41a3 100644
--- a/bitwarden_license/bit-common/src/dirt/reports/risk-insights/services/critical-apps.service.ts
+++ b/bitwarden_license/bit-common/src/dirt/reports/risk-insights/services/critical-apps.service.ts
@@ -14,7 +14,7 @@ import {
 } from "rxjs";
 
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { OrganizationId } from "@bitwarden/common/types/guid";
 import { OrgKey } from "@bitwarden/common/types/key";
 import { KeyService } from "@bitwarden/key-management";
diff --git a/bitwarden_license/bit-web/src/app/dirt/reports/member-access-report/model/member-access-report.model.ts b/bitwarden_license/bit-web/src/app/dirt/reports/member-access-report/model/member-access-report.model.ts
index dae70f26fbf..ed3ae4a2547 100644
--- a/bitwarden_license/bit-web/src/app/dirt/reports/member-access-report/model/member-access-report.model.ts
+++ b/bitwarden_license/bit-web/src/app/dirt/reports/member-access-report/model/member-access-report.model.ts
@@ -1,4 +1,4 @@
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 
 /**
  * Details for the parents MemberAccessReport
diff --git a/bitwarden_license/bit-web/src/app/dirt/reports/member-access-report/response/member-access-report.response.ts b/bitwarden_license/bit-web/src/app/dirt/reports/member-access-report/response/member-access-report.response.ts
index c500c6c0aec..9440d922040 100644
--- a/bitwarden_license/bit-web/src/app/dirt/reports/member-access-report/response/member-access-report.response.ts
+++ b/bitwarden_license/bit-web/src/app/dirt/reports/member-access-report/response/member-access-report.response.ts
@@ -1,5 +1,5 @@
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { BaseResponse } from "@bitwarden/common/models/response/base.response";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { Guid } from "@bitwarden/common/types/guid";
 
 export class MemberAccessResponse extends BaseResponse {
diff --git a/bitwarden_license/bit-web/src/app/dirt/reports/member-access-report/services/member-access-report.mock.ts b/bitwarden_license/bit-web/src/app/dirt/reports/member-access-report/services/member-access-report.mock.ts
index ebf2b9abfc8..9927a61039a 100644
--- a/bitwarden_license/bit-web/src/app/dirt/reports/member-access-report/services/member-access-report.mock.ts
+++ b/bitwarden_license/bit-web/src/app/dirt/reports/member-access-report/services/member-access-report.mock.ts
@@ -1,4 +1,4 @@
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { Guid } from "@bitwarden/common/types/guid";
 
 import { MemberAccessResponse } from "../response/member-access-report.response";
diff --git a/bitwarden_license/bit-web/src/app/dirt/reports/member-access-report/services/member-access-report.service.ts b/bitwarden_license/bit-web/src/app/dirt/reports/member-access-report/services/member-access-report.service.ts
index 0039788709e..caa27a75b82 100644
--- a/bitwarden_license/bit-web/src/app/dirt/reports/member-access-report/services/member-access-report.service.ts
+++ b/bitwarden_license/bit-web/src/app/dirt/reports/member-access-report/services/member-access-report.service.ts
@@ -3,8 +3,8 @@
 import { Injectable } from "@angular/core";
 
 import { CollectionAccessSelectionView } from "@bitwarden/admin-console/common";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { Guid, OrganizationId } from "@bitwarden/common/types/guid";
 import {
   getPermissionList,
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/projects/models/requests/project.request.ts b/bitwarden_license/bit-web/src/app/secrets-manager/projects/models/requests/project.request.ts
index 18d3dad6ea6..25d2e7fb209 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/projects/models/requests/project.request.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/projects/models/requests/project.request.ts
@@ -1,6 +1,6 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 
 export class ProjectRequest {
   name: EncString;
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/projects/project.service.ts b/bitwarden_license/bit-web/src/app/secrets-manager/projects/project.service.ts
index 334d9ea43a6..53fc9572a21 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/projects/project.service.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/projects/project.service.ts
@@ -5,8 +5,8 @@ import { Subject } from "rxjs";
 
 import { ApiService } from "@bitwarden/common/abstractions/api.service";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { ListResponse } from "@bitwarden/common/models/response/list.response";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import { KeyService } from "@bitwarden/key-management";
 
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/secrets/secret.service.spec.ts b/bitwarden_license/bit-web/src/app/secrets-manager/secrets/secret.service.spec.ts
index 113bf130cb5..6cfc40d3676 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/secrets/secret.service.spec.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/secrets/secret.service.spec.ts
@@ -2,7 +2,7 @@ import { mock } from "jest-mock-extended";
 
 import { ApiService } from "@bitwarden/common/abstractions/api.service";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { KeyService } from "@bitwarden/key-management";
 
 import { SecretAccessPoliciesView } from "../models/view/access-policies/secret-access-policies.view";
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/secrets/secret.service.ts b/bitwarden_license/bit-web/src/app/secrets-manager/secrets/secret.service.ts
index cf71de288bb..f4549dd0aee 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/secrets/secret.service.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/secrets/secret.service.ts
@@ -5,7 +5,7 @@ import { Subject } from "rxjs";
 
 import { ApiService } from "@bitwarden/common/abstractions/api.service";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import { KeyService } from "@bitwarden/key-management";
 
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/service-accounts/access/access.service.ts b/bitwarden_license/bit-web/src/app/secrets-manager/service-accounts/access/access.service.ts
index 2e50ec5af7e..9cdc176bd7b 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/service-accounts/access/access.service.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/service-accounts/access/access.service.ts
@@ -5,10 +5,10 @@ import { Subject } from "rxjs";
 
 import { ApiService } from "@bitwarden/common/abstractions/api.service";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { ListResponse } from "@bitwarden/common/models/response/list.response";
 import { KeyGenerationService } from "@bitwarden/common/platform/abstractions/key-generation.service";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import { KeyService } from "@bitwarden/key-management";
 
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/service-accounts/models/requests/access-token.request.ts b/bitwarden_license/bit-web/src/app/secrets-manager/service-accounts/models/requests/access-token.request.ts
index 37232cc86ff..9ac6d7e1d17 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/service-accounts/models/requests/access-token.request.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/service-accounts/models/requests/access-token.request.ts
@@ -1,6 +1,6 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 
 export class AccessTokenRequest {
   name: EncString;
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/service-accounts/models/requests/service-account.request.ts b/bitwarden_license/bit-web/src/app/secrets-manager/service-accounts/models/requests/service-account.request.ts
index 6d7d688fee0..9cf6ce9a1cd 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/service-accounts/models/requests/service-account.request.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/service-accounts/models/requests/service-account.request.ts
@@ -1,6 +1,6 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 
 export class ServiceAccountRequest {
   name: EncString;
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/service-accounts/service-account.service.ts b/bitwarden_license/bit-web/src/app/secrets-manager/service-accounts/service-account.service.ts
index 19382793673..15d66ce61c3 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/service-accounts/service-account.service.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/service-accounts/service-account.service.ts
@@ -5,8 +5,8 @@ import { Subject } from "rxjs";
 
 import { ApiService } from "@bitwarden/common/abstractions/api.service";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { ListResponse } from "@bitwarden/common/models/response/list.response";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import { KeyService } from "@bitwarden/key-management";
 
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/settings/models/requests/sm-imported-project.request.ts b/bitwarden_license/bit-web/src/app/secrets-manager/settings/models/requests/sm-imported-project.request.ts
index 12e8f8452dc..74756d34340 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/settings/models/requests/sm-imported-project.request.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/settings/models/requests/sm-imported-project.request.ts
@@ -1,6 +1,6 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 
 export class SecretsManagerImportedProjectRequest {
   id: string;
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/settings/models/requests/sm-imported-secret.request.ts b/bitwarden_license/bit-web/src/app/secrets-manager/settings/models/requests/sm-imported-secret.request.ts
index f9629e7c317..32b4b9a5001 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/settings/models/requests/sm-imported-secret.request.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/settings/models/requests/sm-imported-secret.request.ts
@@ -1,6 +1,6 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 
 export class SecretsManagerImportedSecretRequest {
   id: string;
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/settings/services/sm-porting-api.service.spec.ts b/bitwarden_license/bit-web/src/app/secrets-manager/settings/services/sm-porting-api.service.spec.ts
index 6f9f0727ddc..2e266dfbb15 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/settings/services/sm-porting-api.service.spec.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/settings/services/sm-porting-api.service.spec.ts
@@ -2,8 +2,8 @@ import { mock } from "jest-mock-extended";
 
 import { ApiService } from "@bitwarden/common/abstractions/api.service";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import { CsprngArray } from "@bitwarden/common/types/csprng";
 import { OrgKey } from "@bitwarden/common/types/key";
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/settings/services/sm-porting-api.service.ts b/bitwarden_license/bit-web/src/app/secrets-manager/settings/services/sm-porting-api.service.ts
index 41088c1bfa1..5fb2a006144 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/settings/services/sm-porting-api.service.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/settings/services/sm-porting-api.service.ts
@@ -5,8 +5,8 @@ import { Subject } from "rxjs";
 
 import { ApiService } from "@bitwarden/common/abstractions/api.service";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { ErrorResponse } from "@bitwarden/common/models/response/error.response";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { KeyService } from "@bitwarden/key-management";
 
 import { SecretsManagerImportError } from "../models/error/sm-import-error";
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/access-policy.service.ts b/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/access-policy.service.ts
index 6fc8da05036..87542530ecc 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/access-policy.service.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/access-policy.service.ts
@@ -5,8 +5,8 @@ import { Subject } from "rxjs";
 
 import { ApiService } from "@bitwarden/common/abstractions/api.service";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { ListResponse } from "@bitwarden/common/models/response/list.response";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import { KeyService } from "@bitwarden/key-management";
 
diff --git a/libs/admin-console/src/common/collections/models/collection.ts b/libs/admin-console/src/common/collections/models/collection.ts
index 4d87130c162..75d68222b38 100644
--- a/libs/admin-console/src/common/collections/models/collection.ts
+++ b/libs/admin-console/src/common/collections/models/collection.ts
@@ -1,7 +1,7 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import Domain from "@bitwarden/common/platform/models/domain/domain-base";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { OrgKey } from "@bitwarden/common/types/key";
 
 import { CollectionData } from "./collection.data";
diff --git a/libs/admin-console/src/common/collections/services/default-collection-admin.service.ts b/libs/admin-console/src/common/collections/services/default-collection-admin.service.ts
index 293090ce315..325b17cbd56 100644
--- a/libs/admin-console/src/common/collections/services/default-collection-admin.service.ts
+++ b/libs/admin-console/src/common/collections/services/default-collection-admin.service.ts
@@ -3,7 +3,7 @@
 import { ApiService } from "@bitwarden/common/abstractions/api.service";
 import { SelectionReadOnlyRequest } from "@bitwarden/common/admin-console/models/request/selection-read-only.request";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { KeyService } from "@bitwarden/key-management";
 
 import { CollectionAdminService, CollectionService } from "../abstractions";
diff --git a/libs/admin-console/src/common/collections/services/default-collection.service.spec.ts b/libs/admin-console/src/common/collections/services/default-collection.service.spec.ts
index 11a114dc04e..57bed5e4ca5 100644
--- a/libs/admin-console/src/common/collections/services/default-collection.service.spec.ts
+++ b/libs/admin-console/src/common/collections/services/default-collection.service.spec.ts
@@ -2,9 +2,9 @@ import { mock } from "jest-mock-extended";
 import { firstValueFrom, of } from "rxjs";
 
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { ContainerService } from "@bitwarden/common/platform/services/container.service";
 import {
   FakeStateProvider,
diff --git a/libs/admin-console/src/common/collections/services/default-vnext-collection.service.spec.ts b/libs/admin-console/src/common/collections/services/default-vnext-collection.service.spec.ts
index 03921f71eea..256157a03c1 100644
--- a/libs/admin-console/src/common/collections/services/default-vnext-collection.service.spec.ts
+++ b/libs/admin-console/src/common/collections/services/default-vnext-collection.service.spec.ts
@@ -2,9 +2,9 @@ import { mock, MockProxy } from "jest-mock-extended";
 import { first, firstValueFrom, of, ReplaySubject, takeWhile } from "rxjs";
 
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import { ContainerService } from "@bitwarden/common/platform/services/container.service";
 import {
diff --git a/libs/admin-console/src/common/organization-user/models/requests/organization-user-confirm.request.ts b/libs/admin-console/src/common/organization-user/models/requests/organization-user-confirm.request.ts
index 104ea7fd472..50826d068c1 100644
--- a/libs/admin-console/src/common/organization-user/models/requests/organization-user-confirm.request.ts
+++ b/libs/admin-console/src/common/organization-user/models/requests/organization-user-confirm.request.ts
@@ -1,4 +1,4 @@
-import { EncryptedString } from "@bitwarden/common/platform/models/domain/enc-string";
+import { EncryptedString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 
 export class OrganizationUserConfirmRequest {
   key: EncryptedString | undefined;
diff --git a/libs/angular/src/auth/components/change-password.component.ts b/libs/angular/src/auth/components/change-password.component.ts
index 6adb684681c..8a564d68fd4 100644
--- a/libs/angular/src/auth/components/change-password.component.ts
+++ b/libs/angular/src/auth/components/change-password.component.ts
@@ -7,12 +7,12 @@ import { PolicyService } from "@bitwarden/common/admin-console/abstractions/poli
 import { MasterPasswordPolicyOptions } from "@bitwarden/common/admin-console/models/domain/master-password-policy-options";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { getUserId } from "@bitwarden/common/auth/services/account.service";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { InternalMasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { UserKey, MasterKey } from "@bitwarden/common/types/key";
 import { DialogService, ToastService } from "@bitwarden/components";
 import { KdfConfig, KdfConfigService, KeyService } from "@bitwarden/key-management";
diff --git a/libs/angular/src/auth/components/set-password.component.ts b/libs/angular/src/auth/components/set-password.component.ts
index 1550b648734..03cbdbc625a 100644
--- a/libs/angular/src/auth/components/set-password.component.ts
+++ b/libs/angular/src/auth/components/set-password.component.ts
@@ -25,6 +25,7 @@ import { SsoLoginServiceAbstraction } from "@bitwarden/common/auth/abstractions/
 import { ForceSetPasswordReason } from "@bitwarden/common/auth/models/domain/force-set-password-reason";
 import { SetPasswordRequest } from "@bitwarden/common/auth/models/request/set-password.request";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { InternalMasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
 import { KeysRequest } from "@bitwarden/common/models/request/keys.request";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
@@ -32,7 +33,6 @@ import { MessagingService } from "@bitwarden/common/platform/abstractions/messag
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
 import { HashPurpose } from "@bitwarden/common/platform/enums";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { UserId } from "@bitwarden/common/types/guid";
 import { MasterKey, UserKey } from "@bitwarden/common/types/key";
 import { SyncService } from "@bitwarden/common/vault/abstractions/sync/sync.service.abstraction";
diff --git a/libs/angular/src/auth/components/update-password.component.ts b/libs/angular/src/auth/components/update-password.component.ts
index 839c3b24ebf..fa3ab58db69 100644
--- a/libs/angular/src/auth/components/update-password.component.ts
+++ b/libs/angular/src/auth/components/update-password.component.ts
@@ -13,12 +13,12 @@ import { VerificationType } from "@bitwarden/common/auth/enums/verification-type
 import { PasswordRequest } from "@bitwarden/common/auth/models/request/password.request";
 import { getUserId } from "@bitwarden/common/auth/services/account.service";
 import { Verification } from "@bitwarden/common/auth/types/verification";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { InternalMasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { MasterKey, UserKey } from "@bitwarden/common/types/key";
 import { DialogService, ToastService } from "@bitwarden/components";
 import { KdfConfigService, KeyService } from "@bitwarden/key-management";
diff --git a/libs/angular/src/auth/components/update-temp-password.component.ts b/libs/angular/src/auth/components/update-temp-password.component.ts
index 87db26a6b59..681f69b083a 100644
--- a/libs/angular/src/auth/components/update-temp-password.component.ts
+++ b/libs/angular/src/auth/components/update-temp-password.component.ts
@@ -15,12 +15,12 @@ import { PasswordRequest } from "@bitwarden/common/auth/models/request/password.
 import { UpdateTdeOffboardingPasswordRequest } from "@bitwarden/common/auth/models/request/update-tde-offboarding-password.request";
 import { UpdateTempPasswordRequest } from "@bitwarden/common/auth/models/request/update-temp-password.request";
 import { MasterPasswordVerification } from "@bitwarden/common/auth/types/verification";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { InternalMasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { MasterKey, UserKey } from "@bitwarden/common/types/key";
 import { SyncService } from "@bitwarden/common/vault/abstractions/sync/sync.service.abstraction";
 import { DialogService, ToastService } from "@bitwarden/components";
diff --git a/libs/angular/src/auth/password-management/change-password/default-change-password.service.spec.ts b/libs/angular/src/auth/password-management/change-password/default-change-password.service.spec.ts
index 78969c61610..d14e33c1fdc 100644
--- a/libs/angular/src/auth/password-management/change-password/default-change-password.service.spec.ts
+++ b/libs/angular/src/auth/password-management/change-password/default-change-password.service.spec.ts
@@ -5,8 +5,8 @@ import { mock, MockProxy } from "jest-mock-extended";
 import { PasswordInputResult } from "@bitwarden/auth/angular";
 import { Account } from "@bitwarden/common/auth/abstractions/account.service";
 import { MasterPasswordApiService } from "@bitwarden/common/auth/abstractions/master-password-api.service.abstraction";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { InternalMasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import { UserId } from "@bitwarden/common/types/guid";
 import { MasterKey, UserKey } from "@bitwarden/common/types/key";
diff --git a/libs/angular/src/auth/password-management/change-password/default-change-password.service.ts b/libs/angular/src/auth/password-management/change-password/default-change-password.service.ts
index 888799d863a..21b39873a16 100644
--- a/libs/angular/src/auth/password-management/change-password/default-change-password.service.ts
+++ b/libs/angular/src/auth/password-management/change-password/default-change-password.service.ts
@@ -5,8 +5,8 @@ import { Account } from "@bitwarden/common/auth/abstractions/account.service";
 import { MasterPasswordApiService } from "@bitwarden/common/auth/abstractions/master-password-api.service.abstraction";
 import { PasswordRequest } from "@bitwarden/common/auth/models/request/password.request";
 import { UpdateTempPasswordRequest } from "@bitwarden/common/auth/models/request/update-temp-password.request";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { InternalMasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { UserId } from "@bitwarden/common/types/guid";
 import { UserKey } from "@bitwarden/common/types/key";
 import { KeyService } from "@bitwarden/key-management";
diff --git a/libs/angular/src/auth/password-management/set-initial-password/default-set-initial-password.service.implementation.ts b/libs/angular/src/auth/password-management/set-initial-password/default-set-initial-password.service.implementation.ts
index dd81f560939..fbab228d6e0 100644
--- a/libs/angular/src/auth/password-management/set-initial-password/default-set-initial-password.service.implementation.ts
+++ b/libs/angular/src/auth/password-management/set-initial-password/default-set-initial-password.service.implementation.ts
@@ -16,11 +16,11 @@ import { ForceSetPasswordReason } from "@bitwarden/common/auth/models/domain/for
 import { SetPasswordRequest } from "@bitwarden/common/auth/models/request/set-password.request";
 import { UpdateTdeOffboardingPasswordRequest } from "@bitwarden/common/auth/models/request/update-tde-offboarding-password.request";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { InternalMasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
 import { KeysRequest } from "@bitwarden/common/models/request/keys.request";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { UserId } from "@bitwarden/common/types/guid";
 import { MasterKey, UserKey } from "@bitwarden/common/types/key";
 import { KdfConfigService, KeyService, KdfConfig } from "@bitwarden/key-management";
diff --git a/libs/angular/src/auth/password-management/set-initial-password/default-set-initial-password.service.spec.ts b/libs/angular/src/auth/password-management/set-initial-password/default-set-initial-password.service.spec.ts
index 979dc5ee82f..d96b4c86fb5 100644
--- a/libs/angular/src/auth/password-management/set-initial-password/default-set-initial-password.service.spec.ts
+++ b/libs/angular/src/auth/password-management/set-initial-password/default-set-initial-password.service.spec.ts
@@ -21,11 +21,14 @@ import { ForceSetPasswordReason } from "@bitwarden/common/auth/models/domain/for
 import { SetPasswordRequest } from "@bitwarden/common/auth/models/request/set-password.request";
 import { UpdateTdeOffboardingPasswordRequest } from "@bitwarden/common/auth/models/request/update-tde-offboarding-password.request";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import {
+  EncryptedString,
+  EncString,
+} from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { InternalMasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
 import { KeysRequest } from "@bitwarden/common/models/request/keys.request";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
-import { EncryptedString, EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import { CsprngArray } from "@bitwarden/common/types/csprng";
 import { UserId } from "@bitwarden/common/types/guid";
diff --git a/libs/auth/src/angular/registration/registration-finish/default-registration-finish.service.spec.ts b/libs/auth/src/angular/registration/registration-finish/default-registration-finish.service.spec.ts
index 044d3c25e64..608e0ac64b9 100644
--- a/libs/auth/src/angular/registration/registration-finish/default-registration-finish.service.spec.ts
+++ b/libs/auth/src/angular/registration/registration-finish/default-registration-finish.service.spec.ts
@@ -1,7 +1,7 @@
 import { MockProxy, mock } from "jest-mock-extended";
 
 import { AccountApiService } from "@bitwarden/common/auth/abstractions/account-api.service";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import { CsprngArray } from "@bitwarden/common/types/csprng";
 import { MasterKey, UserKey } from "@bitwarden/common/types/key";
diff --git a/libs/auth/src/angular/registration/registration-finish/default-registration-finish.service.ts b/libs/auth/src/angular/registration/registration-finish/default-registration-finish.service.ts
index b116a62dd4d..b51f45f1b27 100644
--- a/libs/auth/src/angular/registration/registration-finish/default-registration-finish.service.ts
+++ b/libs/auth/src/angular/registration/registration-finish/default-registration-finish.service.ts
@@ -3,8 +3,11 @@
 import { MasterPasswordPolicyOptions } from "@bitwarden/common/admin-console/models/domain/master-password-policy-options";
 import { AccountApiService } from "@bitwarden/common/auth/abstractions/account-api.service";
 import { RegisterFinishRequest } from "@bitwarden/common/auth/models/request/registration/register-finish.request";
+import {
+  EncryptedString,
+  EncString,
+} from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { KeysRequest } from "@bitwarden/common/models/request/keys.request";
-import { EncryptedString, EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { KeyService } from "@bitwarden/key-management";
 
 import { PasswordInputResult } from "../../input-password/password-input-result";
diff --git a/libs/auth/src/angular/set-password-jit/default-set-password-jit.service.spec.ts b/libs/auth/src/angular/set-password-jit/default-set-password-jit.service.spec.ts
index 2fd01f79ca9..6a9a37700cc 100644
--- a/libs/auth/src/angular/set-password-jit/default-set-password-jit.service.spec.ts
+++ b/libs/auth/src/angular/set-password-jit/default-set-password-jit.service.spec.ts
@@ -13,11 +13,11 @@ import { OrganizationKeysResponse } from "@bitwarden/common/admin-console/models
 import { MasterPasswordApiService } from "@bitwarden/common/auth/abstractions/master-password-api.service.abstraction";
 import { SetPasswordRequest } from "@bitwarden/common/auth/models/request/set-password.request";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { InternalMasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
 import { KeysRequest } from "@bitwarden/common/models/request/keys.request";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import { CsprngArray } from "@bitwarden/common/types/csprng";
 import { UserId } from "@bitwarden/common/types/guid";
diff --git a/libs/auth/src/angular/set-password-jit/default-set-password-jit.service.ts b/libs/auth/src/angular/set-password-jit/default-set-password-jit.service.ts
index 7d228fccb9b..5fc3272b650 100644
--- a/libs/auth/src/angular/set-password-jit/default-set-password-jit.service.ts
+++ b/libs/auth/src/angular/set-password-jit/default-set-password-jit.service.ts
@@ -14,11 +14,11 @@ import { MasterPasswordApiService } from "@bitwarden/common/auth/abstractions/ma
 import { ForceSetPasswordReason } from "@bitwarden/common/auth/models/domain/force-set-password-reason";
 import { SetPasswordRequest } from "@bitwarden/common/auth/models/request/set-password.request";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { InternalMasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
 import { KeysRequest } from "@bitwarden/common/models/request/keys.request";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { UserId } from "@bitwarden/common/types/guid";
 import { MasterKey, UserKey } from "@bitwarden/common/types/key";
 import { KdfConfigService, KeyService, KdfConfig } from "@bitwarden/key-management";
diff --git a/libs/auth/src/common/abstractions/pin.service.abstraction.ts b/libs/auth/src/common/abstractions/pin.service.abstraction.ts
index 16550888b94..cc679951313 100644
--- a/libs/auth/src/common/abstractions/pin.service.abstraction.ts
+++ b/libs/auth/src/common/abstractions/pin.service.abstraction.ts
@@ -1,4 +1,4 @@
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { UserId } from "@bitwarden/common/types/guid";
 import { PinKey, UserKey } from "@bitwarden/common/types/key";
 import { KdfConfig } from "@bitwarden/key-management";
diff --git a/libs/auth/src/common/login-strategies/login.strategy.spec.ts b/libs/auth/src/common/login-strategies/login.strategy.spec.ts
index cc9cae20b5c..78561b443a3 100644
--- a/libs/auth/src/common/login-strategies/login.strategy.spec.ts
+++ b/libs/auth/src/common/login-strategies/login.strategy.spec.ts
@@ -18,6 +18,7 @@ import { MasterPasswordPolicyResponse } from "@bitwarden/common/auth/models/resp
 import { IUserDecryptionOptionsServerResponse } from "@bitwarden/common/auth/models/response/user-decryption-options/user-decryption-options.response";
 import { BillingAccountProfileStateService } from "@bitwarden/common/billing/abstractions/account/billing-account-profile-state.service";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { FakeMasterPasswordService } from "@bitwarden/common/key-management/master-password/services/fake-master-password.service";
 import {
   VaultTimeoutAction,
@@ -32,7 +33,6 @@ import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/pl
 import { StateService } from "@bitwarden/common/platform/abstractions/state.service";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
 import { Account, AccountProfile } from "@bitwarden/common/platform/models/domain/account";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import { FakeAccountService, mockAccountServiceWith } from "@bitwarden/common/spec";
 import {
diff --git a/libs/auth/src/common/login-strategies/sso-login.strategy.spec.ts b/libs/auth/src/common/login-strategies/sso-login.strategy.spec.ts
index ea041081985..47a9d19f651 100644
--- a/libs/auth/src/common/login-strategies/sso-login.strategy.spec.ts
+++ b/libs/auth/src/common/login-strategies/sso-login.strategy.spec.ts
@@ -12,6 +12,7 @@ import { IUserDecryptionOptionsServerResponse } from "@bitwarden/common/auth/mod
 import { BillingAccountProfileStateService } from "@bitwarden/common/billing/abstractions/account/billing-account-profile-state.service";
 import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import { EncryptedString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { DeviceTrustServiceAbstraction } from "@bitwarden/common/key-management/device-trust/abstractions/device-trust.service.abstraction";
 import { KeyConnectorService } from "@bitwarden/common/key-management/key-connector/abstractions/key-connector.service";
 import { FakeMasterPasswordService } from "@bitwarden/common/key-management/master-password/services/fake-master-password.service";
@@ -29,7 +30,6 @@ import { MessagingService } from "@bitwarden/common/platform/abstractions/messag
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
 import { StateService } from "@bitwarden/common/platform/abstractions/state.service";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
-import { EncryptedString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import { FakeAccountService, mockAccountServiceWith } from "@bitwarden/common/spec";
 import { CsprngArray } from "@bitwarden/common/types/csprng";
diff --git a/libs/auth/src/common/login-strategies/webauthn-login.strategy.ts b/libs/auth/src/common/login-strategies/webauthn-login.strategy.ts
index c5fe6d55779..a6677350ee9 100644
--- a/libs/auth/src/common/login-strategies/webauthn-login.strategy.ts
+++ b/libs/auth/src/common/login-strategies/webauthn-login.strategy.ts
@@ -6,7 +6,7 @@ import { Jsonify } from "type-fest";
 import { AuthResult } from "@bitwarden/common/auth/models/domain/auth-result";
 import { WebAuthnLoginTokenRequest } from "@bitwarden/common/auth/models/request/identity-token/webauthn-login-token.request";
 import { IdentityTokenResponse } from "@bitwarden/common/auth/models/response/identity-token.response";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { UserId } from "@bitwarden/common/types/guid";
 import { UserKey } from "@bitwarden/common/types/key";
 
diff --git a/libs/auth/src/common/models/domain/rotateable-key-set.ts b/libs/auth/src/common/models/domain/rotateable-key-set.ts
index c6e75f2b60e..7578a4e9754 100644
--- a/libs/auth/src/common/models/domain/rotateable-key-set.ts
+++ b/libs/auth/src/common/models/domain/rotateable-key-set.ts
@@ -1,6 +1,6 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import { PrfKey } from "@bitwarden/common/types/key";
 
diff --git a/libs/auth/src/common/services/auth-request/auth-request.service.spec.ts b/libs/auth/src/common/services/auth-request/auth-request.service.spec.ts
index 6f4e3512a6a..3e1761290dd 100644
--- a/libs/auth/src/common/services/auth-request/auth-request.service.spec.ts
+++ b/libs/auth/src/common/services/auth-request/auth-request.service.spec.ts
@@ -4,12 +4,12 @@ import { firstValueFrom } from "rxjs";
 import { ApiService } from "@bitwarden/common/abstractions/api.service";
 import { AuthRequestResponse } from "@bitwarden/common/auth/models/response/auth-request.response";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { FakeMasterPasswordService } from "@bitwarden/common/key-management/master-password/services/fake-master-password.service";
 import { ListResponse } from "@bitwarden/common/models/response/list.response";
 import { AuthRequestPushNotification } from "@bitwarden/common/models/response/notification.response";
 import { AppIdService } from "@bitwarden/common/platform/abstractions/app-id.service";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import { StateProvider } from "@bitwarden/common/platform/state";
 import { UserId } from "@bitwarden/common/types/guid";
diff --git a/libs/auth/src/common/services/auth-request/auth-request.service.ts b/libs/auth/src/common/services/auth-request/auth-request.service.ts
index 70d505ed6ff..5fc28e960a8 100644
--- a/libs/auth/src/common/services/auth-request/auth-request.service.ts
+++ b/libs/auth/src/common/services/auth-request/auth-request.service.ts
@@ -8,12 +8,12 @@ import { AdminAuthRequestStorable } from "@bitwarden/common/auth/models/domain/a
 import { PasswordlessAuthRequest } from "@bitwarden/common/auth/models/request/passwordless-auth.request";
 import { AuthRequestResponse } from "@bitwarden/common/auth/models/response/auth-request.response";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { InternalMasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
 import { ListResponse } from "@bitwarden/common/models/response/list.response";
 import { AuthRequestPushNotification } from "@bitwarden/common/models/response/notification.response";
 import { AppIdService } from "@bitwarden/common/platform/abstractions/app-id.service";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import {
   AUTH_REQUEST_DISK_LOCAL,
diff --git a/libs/auth/src/common/services/pin/pin.service.implementation.ts b/libs/auth/src/common/services/pin/pin.service.implementation.ts
index 5b7777fedd1..8417daa24e0 100644
--- a/libs/auth/src/common/services/pin/pin.service.implementation.ts
+++ b/libs/auth/src/common/services/pin/pin.service.implementation.ts
@@ -5,9 +5,12 @@ import { firstValueFrom, map } from "rxjs";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { CryptoFunctionService } from "@bitwarden/common/key-management/crypto/abstractions/crypto-function.service";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import {
+  EncString,
+  EncryptedString,
+} from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { KeyGenerationService } from "@bitwarden/common/platform/abstractions/key-generation.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
-import { EncString, EncryptedString } from "@bitwarden/common/platform/models/domain/enc-string";
 import {
   PIN_DISK,
   PIN_MEMORY,
diff --git a/libs/auth/src/common/services/pin/pin.service.spec.ts b/libs/auth/src/common/services/pin/pin.service.spec.ts
index 33640e0f9f3..1f0f2f5996c 100644
--- a/libs/auth/src/common/services/pin/pin.service.spec.ts
+++ b/libs/auth/src/common/services/pin/pin.service.spec.ts
@@ -2,10 +2,10 @@ import { mock } from "jest-mock-extended";
 
 import { CryptoFunctionService } from "@bitwarden/common/key-management/crypto/abstractions/crypto-function.service";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { KeyGenerationService } from "@bitwarden/common/platform/abstractions/key-generation.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import {
   FakeAccountService,
diff --git a/libs/common/spec/utils.ts b/libs/common/spec/utils.ts
index 2b9b2567895..65b709a201c 100644
--- a/libs/common/spec/utils.ts
+++ b/libs/common/spec/utils.ts
@@ -3,7 +3,7 @@
 import { mock, MockProxy } from "jest-mock-extended";
 import { Observable } from "rxjs";
 
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 
 import { EncryptionType } from "../src/platform/enums";
 import { Utils } from "../src/platform/misc/utils";
diff --git a/libs/common/src/admin-console/models/domain/encrypted-organization-key.ts b/libs/common/src/admin-console/models/domain/encrypted-organization-key.ts
index 297bcf08d8c..5546ee1770e 100644
--- a/libs/common/src/admin-console/models/domain/encrypted-organization-key.ts
+++ b/libs/common/src/admin-console/models/domain/encrypted-organization-key.ts
@@ -1,5 +1,5 @@
 import { EncryptService } from "../../../key-management/crypto/abstractions/encrypt.service";
-import { EncString } from "../../../platform/models/domain/enc-string";
+import { EncString } from "../../../key-management/crypto/models/enc-string";
 import { SymmetricCryptoKey } from "../../../platform/models/domain/symmetric-crypto-key";
 import { OrgKey, UserPrivateKey } from "../../../types/key";
 import { EncryptedOrganizationKeyData } from "../data/encrypted-organization-key.data";
diff --git a/libs/common/src/auth/models/request/registration/register-finish.request.ts b/libs/common/src/auth/models/request/registration/register-finish.request.ts
index bb577053c5c..b388e8aee49 100644
--- a/libs/common/src/auth/models/request/registration/register-finish.request.ts
+++ b/libs/common/src/auth/models/request/registration/register-finish.request.ts
@@ -2,8 +2,8 @@
 // eslint-disable-next-line no-restricted-imports
 import { KdfType } from "@bitwarden/key-management";
 
+import { EncryptedString } from "../../../../key-management/crypto/models/enc-string";
 import { KeysRequest } from "../../../../models/request/keys.request";
-import { EncryptedString } from "../../../../platform/models/domain/enc-string";
 
 export class RegisterFinishRequest {
   constructor(
diff --git a/libs/common/src/auth/models/request/webauthn-rotate-credential.request.ts b/libs/common/src/auth/models/request/webauthn-rotate-credential.request.ts
index 84103fe5d29..2d32d3c21ee 100644
--- a/libs/common/src/auth/models/request/webauthn-rotate-credential.request.ts
+++ b/libs/common/src/auth/models/request/webauthn-rotate-credential.request.ts
@@ -4,7 +4,7 @@
 // FIXME: remove `src` and fix import
 // eslint-disable-next-line no-restricted-imports
 import { RotateableKeySet } from "../../../../../auth/src/common/models";
-import { EncString } from "../../../platform/models/domain/enc-string";
+import { EncString } from "../../../key-management/crypto/models/enc-string";
 
 export class WebauthnRotateCredentialRequest {
   id: string;
diff --git a/libs/common/src/auth/models/response/identity-token.response.ts b/libs/common/src/auth/models/response/identity-token.response.ts
index 2d991e9f349..53242a25b21 100644
--- a/libs/common/src/auth/models/response/identity-token.response.ts
+++ b/libs/common/src/auth/models/response/identity-token.response.ts
@@ -4,8 +4,8 @@
 // eslint-disable-next-line no-restricted-imports
 import { KdfType } from "@bitwarden/key-management";
 
+import { EncString } from "../../../key-management/crypto/models/enc-string";
 import { BaseResponse } from "../../../models/response/base.response";
-import { EncString } from "../../../platform/models/domain/enc-string";
 
 import { MasterPasswordPolicyResponse } from "./master-password-policy.response";
 import { UserDecryptionOptionsResponse } from "./user-decryption-options/user-decryption-options.response";
diff --git a/libs/common/src/auth/models/response/protected-device.response.ts b/libs/common/src/auth/models/response/protected-device.response.ts
index 5695044c982..1c69db8f358 100644
--- a/libs/common/src/auth/models/response/protected-device.response.ts
+++ b/libs/common/src/auth/models/response/protected-device.response.ts
@@ -7,8 +7,8 @@ import { Jsonify } from "type-fest";
 import { RotateableKeySet } from "@bitwarden/auth/common";
 
 import { DeviceType } from "../../../enums";
+import { EncString } from "../../../key-management/crypto/models/enc-string";
 import { BaseResponse } from "../../../models/response/base.response";
-import { EncString } from "../../../platform/models/domain/enc-string";
 
 export class ProtectedDeviceResponse extends BaseResponse {
   constructor(response: Jsonify<ProtectedDeviceResponse>) {
diff --git a/libs/common/src/auth/models/response/user-decryption-options/trusted-device-user-decryption-option.response.ts b/libs/common/src/auth/models/response/user-decryption-options/trusted-device-user-decryption-option.response.ts
index 1bee00ede1c..1a4e1b3d275 100644
--- a/libs/common/src/auth/models/response/user-decryption-options/trusted-device-user-decryption-option.response.ts
+++ b/libs/common/src/auth/models/response/user-decryption-options/trusted-device-user-decryption-option.response.ts
@@ -1,7 +1,7 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
+import { EncString } from "../../../../key-management/crypto/models/enc-string";
 import { BaseResponse } from "../../../../models/response/base.response";
-import { EncString } from "../../../../platform/models/domain/enc-string";
 
 export interface ITrustedDeviceUserDecryptionOptionServerResponse {
   HasAdminApproval: boolean;
diff --git a/libs/common/src/auth/models/response/user-decryption-options/webauthn-prf-decryption-option.response.ts b/libs/common/src/auth/models/response/user-decryption-options/webauthn-prf-decryption-option.response.ts
index 7988b08d56f..478f6d88b5b 100644
--- a/libs/common/src/auth/models/response/user-decryption-options/webauthn-prf-decryption-option.response.ts
+++ b/libs/common/src/auth/models/response/user-decryption-options/webauthn-prf-decryption-option.response.ts
@@ -1,7 +1,7 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
+import { EncString } from "../../../../key-management/crypto/models/enc-string";
 import { BaseResponse } from "../../../../models/response/base.response";
-import { EncString } from "../../../../platform/models/domain/enc-string";
 
 export interface IWebAuthnPrfDecryptionOptionServerResponse {
   EncryptedPrivateKey: string;
diff --git a/libs/common/src/auth/services/token.service.ts b/libs/common/src/auth/services/token.service.ts
index 1d17d0d0367..4076cd68d3c 100644
--- a/libs/common/src/auth/services/token.service.ts
+++ b/libs/common/src/auth/services/token.service.ts
@@ -8,6 +8,7 @@ import { Opaque } from "type-fest";
 import { LogoutReason, decodeJwtTokenToJson } from "@bitwarden/auth/common";
 
 import { EncryptService } from "../../key-management/crypto/abstractions/encrypt.service";
+import { EncString, EncryptedString } from "../../key-management/crypto/models/enc-string";
 import {
   VaultTimeout,
   VaultTimeoutAction,
@@ -18,7 +19,6 @@ import { LogService } from "../../platform/abstractions/log.service";
 import { AbstractStorageService } from "../../platform/abstractions/storage.service";
 import { StorageLocation } from "../../platform/enums";
 import { Utils } from "../../platform/misc/utils";
-import { EncString, EncryptedString } from "../../platform/models/domain/enc-string";
 import { StorageOptions } from "../../platform/models/domain/storage-options";
 import { SymmetricCryptoKey } from "../../platform/models/domain/symmetric-crypto-key";
 import {
diff --git a/libs/common/src/billing/services/organization-billing.service.ts b/libs/common/src/billing/services/organization-billing.service.ts
index b75134d28a8..aaf22815404 100644
--- a/libs/common/src/billing/services/organization-billing.service.ts
+++ b/libs/common/src/billing/services/organization-billing.service.ts
@@ -15,8 +15,8 @@ import { OrganizationCreateRequest } from "../../admin-console/models/request/or
 import { OrganizationKeysRequest } from "../../admin-console/models/request/organization-keys.request";
 import { OrganizationResponse } from "../../admin-console/models/response/organization.response";
 import { EncryptService } from "../../key-management/crypto/abstractions/encrypt.service";
+import { EncString } from "../../key-management/crypto/models/enc-string";
 import { I18nService } from "../../platform/abstractions/i18n.service";
-import { EncString } from "../../platform/models/domain/enc-string";
 import { SyncService } from "../../platform/sync";
 import { OrgKey } from "../../types/key";
 import {
diff --git a/libs/common/src/key-management/crypto/abstractions/encrypt.service.ts b/libs/common/src/key-management/crypto/abstractions/encrypt.service.ts
index 6796f9ea9b7..93d9cb64ce1 100644
--- a/libs/common/src/key-management/crypto/abstractions/encrypt.service.ts
+++ b/libs/common/src/key-management/crypto/abstractions/encrypt.service.ts
@@ -3,8 +3,8 @@ import { Decryptable } from "../../../platform/interfaces/decryptable.interface"
 import { Encrypted } from "../../../platform/interfaces/encrypted";
 import { InitializerMetadata } from "../../../platform/interfaces/initializer-metadata.interface";
 import { EncArrayBuffer } from "../../../platform/models/domain/enc-array-buffer";
-import { EncString } from "../../../platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "../../../platform/models/domain/symmetric-crypto-key";
+import { EncString } from "../models/enc-string";
 
 export abstract class EncryptService {
   /**
diff --git a/libs/common/src/platform/models/domain/enc-string.spec.ts b/libs/common/src/key-management/crypto/models/enc-string.spec.ts
similarity index 98%
rename from libs/common/src/platform/models/domain/enc-string.spec.ts
rename to libs/common/src/key-management/crypto/models/enc-string.spec.ts
index f565174ba9c..ec1434c55d2 100644
--- a/libs/common/src/platform/models/domain/enc-string.spec.ts
+++ b/libs/common/src/key-management/crypto/models/enc-string.spec.ts
@@ -5,11 +5,11 @@ import { mock, MockProxy } from "jest-mock-extended";
 import { KeyService } from "@bitwarden/key-management";
 
 import { makeEncString, makeStaticByteArray } from "../../../../spec";
-import { EncryptService } from "../../../key-management/crypto/abstractions/encrypt.service";
+import { EncryptionType } from "../../../platform/enums";
 import { SymmetricCryptoKey } from "../../../platform/models/domain/symmetric-crypto-key";
+import { ContainerService } from "../../../platform/services/container.service";
 import { UserKey, OrgKey } from "../../../types/key";
-import { EncryptionType } from "../../enums";
-import { ContainerService } from "../../services/container.service";
+import { EncryptService } from "../abstractions/encrypt.service";
 
 import { EncString } from "./enc-string";
 
diff --git a/libs/common/src/platform/models/domain/enc-string.ts b/libs/common/src/key-management/crypto/models/enc-string.ts
similarity index 94%
rename from libs/common/src/platform/models/domain/enc-string.ts
rename to libs/common/src/key-management/crypto/models/enc-string.ts
index 8ac6fe6b60f..1ff98d1b6b6 100644
--- a/libs/common/src/platform/models/domain/enc-string.ts
+++ b/libs/common/src/key-management/crypto/models/enc-string.ts
@@ -2,12 +2,11 @@
 // @ts-strict-ignore
 import { Jsonify, Opaque } from "type-fest";
 
-import { EncryptService } from "../../../key-management/crypto/abstractions/encrypt.service";
-import { EncryptionType, EXPECTED_NUM_PARTS_BY_ENCRYPTION_TYPE } from "../../enums";
-import { Encrypted } from "../../interfaces/encrypted";
-import { Utils } from "../../misc/utils";
-
-import { SymmetricCryptoKey } from "./symmetric-crypto-key";
+import { EncryptionType, EXPECTED_NUM_PARTS_BY_ENCRYPTION_TYPE } from "../../../platform/enums";
+import { Encrypted } from "../../../platform/interfaces/encrypted";
+import { Utils } from "../../../platform/misc/utils";
+import { SymmetricCryptoKey } from "../../../platform/models/domain/symmetric-crypto-key";
+import { EncryptService } from "../abstractions/encrypt.service";
 
 export const DECRYPT_ERROR = "[error: cannot decrypt]";
 
diff --git a/libs/common/src/key-management/crypto/services/encrypt.service.implementation.ts b/libs/common/src/key-management/crypto/services/encrypt.service.implementation.ts
index 525e8a6b5f7..a68ecd2db54 100644
--- a/libs/common/src/key-management/crypto/services/encrypt.service.implementation.ts
+++ b/libs/common/src/key-management/crypto/services/encrypt.service.implementation.ts
@@ -1,6 +1,7 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
 import { CryptoFunctionService } from "@bitwarden/common/key-management/crypto/abstractions/crypto-function.service";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import {
   EncryptionType,
@@ -11,7 +12,6 @@ import { Encrypted } from "@bitwarden/common/platform/interfaces/encrypted";
 import { InitializerMetadata } from "@bitwarden/common/platform/interfaces/initializer-metadata.interface";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
 import { EncArrayBuffer } from "@bitwarden/common/platform/models/domain/enc-array-buffer";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { EncryptedObject } from "@bitwarden/common/platform/models/domain/encrypted-object";
 import {
   Aes256CbcHmacKey,
diff --git a/libs/common/src/key-management/crypto/services/encrypt.service.spec.ts b/libs/common/src/key-management/crypto/services/encrypt.service.spec.ts
index 813dd693dd9..68021086bb1 100644
--- a/libs/common/src/key-management/crypto/services/encrypt.service.spec.ts
+++ b/libs/common/src/key-management/crypto/services/encrypt.service.spec.ts
@@ -1,11 +1,11 @@
 import { mockReset, mock } from "jest-mock-extended";
 
 import { CryptoFunctionService } from "@bitwarden/common/key-management/crypto/abstractions/crypto-function.service";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { EncryptionType } from "@bitwarden/common/platform/enums";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
 import { EncArrayBuffer } from "@bitwarden/common/platform/models/domain/enc-array-buffer";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import {
   Aes256CbcHmacKey,
   SymmetricCryptoKey,
diff --git a/libs/common/src/key-management/device-trust/abstractions/device-trust.service.abstraction.ts b/libs/common/src/key-management/device-trust/abstractions/device-trust.service.abstraction.ts
index 6498d358c44..d688c7f366b 100644
--- a/libs/common/src/key-management/device-trust/abstractions/device-trust.service.abstraction.ts
+++ b/libs/common/src/key-management/device-trust/abstractions/device-trust.service.abstraction.ts
@@ -5,9 +5,9 @@ import { Observable } from "rxjs";
 import { OtherDeviceKeysUpdateRequest } from "@bitwarden/common/auth/models/request/update-devices-trust.request";
 
 import { DeviceResponse } from "../../../auth/abstractions/devices/responses/device.response";
-import { EncString } from "../../../platform/models/domain/enc-string";
 import { UserId } from "../../../types/guid";
 import { DeviceKey, UserKey } from "../../../types/key";
+import { EncString } from "../../crypto/models/enc-string";
 
 export abstract class DeviceTrustServiceAbstraction {
   /**
diff --git a/libs/common/src/key-management/device-trust/services/device-trust.service.implementation.ts b/libs/common/src/key-management/device-trust/services/device-trust.service.implementation.ts
index b02c8922ccb..372b3282a72 100644
--- a/libs/common/src/key-management/device-trust/services/device-trust.service.implementation.ts
+++ b/libs/common/src/key-management/device-trust/services/device-trust.service.implementation.ts
@@ -25,7 +25,6 @@ import { LogService } from "../../../platform/abstractions/log.service";
 import { PlatformUtilsService } from "../../../platform/abstractions/platform-utils.service";
 import { AbstractStorageService } from "../../../platform/abstractions/storage.service";
 import { StorageLocation } from "../../../platform/enums";
-import { EncString } from "../../../platform/models/domain/enc-string";
 import { StorageOptions } from "../../../platform/models/domain/storage-options";
 import { SymmetricCryptoKey } from "../../../platform/models/domain/symmetric-crypto-key";
 import { DEVICE_TRUST_DISK_LOCAL, StateProvider, UserKeyDefinition } from "../../../platform/state";
@@ -33,6 +32,7 @@ import { UserId } from "../../../types/guid";
 import { UserKey, DeviceKey } from "../../../types/key";
 import { CryptoFunctionService } from "../../crypto/abstractions/crypto-function.service";
 import { EncryptService } from "../../crypto/abstractions/encrypt.service";
+import { EncString } from "../../crypto/models/enc-string";
 import { DeviceTrustServiceAbstraction } from "../abstractions/device-trust.service.abstraction";
 
 /** Uses disk storage so that the device key can persist after log out and tab removal. */
diff --git a/libs/common/src/key-management/device-trust/services/device-trust.service.spec.ts b/libs/common/src/key-management/device-trust/services/device-trust.service.spec.ts
index c1b291c086a..50a6b0efa21 100644
--- a/libs/common/src/key-management/device-trust/services/device-trust.service.spec.ts
+++ b/libs/common/src/key-management/device-trust/services/device-trust.service.spec.ts
@@ -32,7 +32,6 @@ import { AbstractStorageService } from "../../../platform/abstractions/storage.s
 import { StorageLocation } from "../../../platform/enums";
 import { EncryptionType } from "../../../platform/enums/encryption-type.enum";
 import { Utils } from "../../../platform/misc/utils";
-import { EncString } from "../../../platform/models/domain/enc-string";
 import { StorageOptions } from "../../../platform/models/domain/storage-options";
 import { SymmetricCryptoKey } from "../../../platform/models/domain/symmetric-crypto-key";
 import { CsprngArray } from "../../../types/csprng";
@@ -40,6 +39,7 @@ import { UserId } from "../../../types/guid";
 import { DeviceKey, UserKey } from "../../../types/key";
 import { CryptoFunctionService } from "../../crypto/abstractions/crypto-function.service";
 import { EncryptService } from "../../crypto/abstractions/encrypt.service";
+import { EncString } from "../../crypto/models/enc-string";
 
 import {
   SHOULD_TRUST_DEVICE,
diff --git a/libs/common/src/key-management/key-connector/services/key-connector.service.spec.ts b/libs/common/src/key-management/key-connector/services/key-connector.service.spec.ts
index 2f897a7a28a..3db2a7ecd79 100644
--- a/libs/common/src/key-management/key-connector/services/key-connector.service.spec.ts
+++ b/libs/common/src/key-management/key-connector/services/key-connector.service.spec.ts
@@ -17,11 +17,11 @@ import { KeyConnectorUserKeyResponse } from "../../../auth/models/response/key-c
 import { TokenService } from "../../../auth/services/token.service";
 import { LogService } from "../../../platform/abstractions/log.service";
 import { Utils } from "../../../platform/misc/utils";
-import { EncString } from "../../../platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "../../../platform/models/domain/symmetric-crypto-key";
 import { KeyGenerationService } from "../../../platform/services/key-generation.service";
 import { OrganizationId, UserId } from "../../../types/guid";
 import { MasterKey, UserKey } from "../../../types/key";
+import { EncString } from "../../crypto/models/enc-string";
 import { FakeMasterPasswordService } from "../../master-password/services/fake-master-password.service";
 import { KeyConnectorUserKeyRequest } from "../models/key-connector-user-key.request";
 
diff --git a/libs/common/src/key-management/master-password/abstractions/master-password.service.abstraction.ts b/libs/common/src/key-management/master-password/abstractions/master-password.service.abstraction.ts
index fded0cea023..641e969c5a6 100644
--- a/libs/common/src/key-management/master-password/abstractions/master-password.service.abstraction.ts
+++ b/libs/common/src/key-management/master-password/abstractions/master-password.service.abstraction.ts
@@ -1,9 +1,9 @@
 import { Observable } from "rxjs";
 
 import { ForceSetPasswordReason } from "../../../auth/models/domain/force-set-password-reason";
-import { EncString } from "../../../platform/models/domain/enc-string";
 import { UserId } from "../../../types/guid";
 import { MasterKey, UserKey } from "../../../types/key";
+import { EncString } from "../../crypto/models/enc-string";
 
 export abstract class MasterPasswordServiceAbstraction {
   /**
diff --git a/libs/common/src/key-management/master-password/services/fake-master-password.service.ts b/libs/common/src/key-management/master-password/services/fake-master-password.service.ts
index 73611bbdc1b..8ae3a4265cd 100644
--- a/libs/common/src/key-management/master-password/services/fake-master-password.service.ts
+++ b/libs/common/src/key-management/master-password/services/fake-master-password.service.ts
@@ -4,9 +4,9 @@ import { mock } from "jest-mock-extended";
 import { ReplaySubject, Observable } from "rxjs";
 
 import { ForceSetPasswordReason } from "../../../auth/models/domain/force-set-password-reason";
-import { EncString } from "../../../platform/models/domain/enc-string";
 import { UserId } from "../../../types/guid";
 import { MasterKey, UserKey } from "../../../types/key";
+import { EncString } from "../../crypto/models/enc-string";
 import { InternalMasterPasswordServiceAbstraction } from "../abstractions/master-password.service.abstraction";
 
 export class FakeMasterPasswordService implements InternalMasterPasswordServiceAbstraction {
diff --git a/libs/common/src/key-management/master-password/services/master-password.service.spec.ts b/libs/common/src/key-management/master-password/services/master-password.service.spec.ts
index 4a09a6d66b1..5486ed68e9f 100644
--- a/libs/common/src/key-management/master-password/services/master-password.service.spec.ts
+++ b/libs/common/src/key-management/master-password/services/master-password.service.spec.ts
@@ -7,12 +7,12 @@ import { ForceSetPasswordReason } from "../../../auth/models/domain/force-set-pa
 import { KeyGenerationService } from "../../../platform/abstractions/key-generation.service";
 import { LogService } from "../../../platform/abstractions/log.service";
 import { StateService } from "../../../platform/abstractions/state.service";
-import { EncString } from "../../../platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "../../../platform/models/domain/symmetric-crypto-key";
 import { StateProvider } from "../../../platform/state";
 import { UserId } from "../../../types/guid";
 import { MasterKey } from "../../../types/key";
 import { EncryptService } from "../../crypto/abstractions/encrypt.service";
+import { EncString } from "../../crypto/models/enc-string";
 
 import { MasterPasswordService } from "./master-password.service";
 
diff --git a/libs/common/src/key-management/master-password/services/master-password.service.ts b/libs/common/src/key-management/master-password/services/master-password.service.ts
index 95ed346f110..bd8aa6eb229 100644
--- a/libs/common/src/key-management/master-password/services/master-password.service.ts
+++ b/libs/common/src/key-management/master-password/services/master-password.service.ts
@@ -7,7 +7,6 @@ import { KeyGenerationService } from "../../../platform/abstractions/key-generat
 import { LogService } from "../../../platform/abstractions/log.service";
 import { StateService } from "../../../platform/abstractions/state.service";
 import { EncryptionType } from "../../../platform/enums";
-import { EncryptedString, EncString } from "../../../platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "../../../platform/models/domain/symmetric-crypto-key";
 import {
   MASTER_PASSWORD_DISK,
@@ -18,6 +17,7 @@ import {
 import { UserId } from "../../../types/guid";
 import { MasterKey, UserKey } from "../../../types/key";
 import { EncryptService } from "../../crypto/abstractions/encrypt.service";
+import { EncryptedString, EncString } from "../../crypto/models/enc-string";
 import { InternalMasterPasswordServiceAbstraction } from "../abstractions/master-password.service.abstraction";
 
 /** Memory since master key shouldn't be available on lock */
diff --git a/libs/common/src/models/export/card.export.ts b/libs/common/src/models/export/card.export.ts
index 16dcf5e7ac0..096053b938e 100644
--- a/libs/common/src/models/export/card.export.ts
+++ b/libs/common/src/models/export/card.export.ts
@@ -1,6 +1,6 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
-import { EncString } from "../../platform/models/domain/enc-string";
+import { EncString } from "../../key-management/crypto/models/enc-string";
 import { Card as CardDomain } from "../../vault/models/domain/card";
 import { CardView } from "../../vault/models/view/card.view";
 
diff --git a/libs/common/src/models/export/cipher.export.ts b/libs/common/src/models/export/cipher.export.ts
index fa050375391..ad6d8b7a609 100644
--- a/libs/common/src/models/export/cipher.export.ts
+++ b/libs/common/src/models/export/cipher.export.ts
@@ -1,6 +1,6 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
-import { EncString } from "../../platform/models/domain/enc-string";
+import { EncString } from "../../key-management/crypto/models/enc-string";
 import { CipherRepromptType } from "../../vault/enums/cipher-reprompt-type";
 import { CipherType } from "../../vault/enums/cipher-type";
 import { Cipher as CipherDomain } from "../../vault/models/domain/cipher";
diff --git a/libs/common/src/models/export/collection.export.ts b/libs/common/src/models/export/collection.export.ts
index 3f913a8c3e3..88b68c08c58 100644
--- a/libs/common/src/models/export/collection.export.ts
+++ b/libs/common/src/models/export/collection.export.ts
@@ -4,7 +4,7 @@
 // eslint-disable-next-line no-restricted-imports
 import { Collection as CollectionDomain, CollectionView } from "@bitwarden/admin-console/common";
 
-import { EncString } from "../../platform/models/domain/enc-string";
+import { EncString } from "../../key-management/crypto/models/enc-string";
 
 import { safeGetString } from "./utils";
 
diff --git a/libs/common/src/models/export/fido2-credential.export.ts b/libs/common/src/models/export/fido2-credential.export.ts
index d14dbedf18e..ce9c754fea3 100644
--- a/libs/common/src/models/export/fido2-credential.export.ts
+++ b/libs/common/src/models/export/fido2-credential.export.ts
@@ -1,6 +1,6 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
-import { EncString } from "../../platform/models/domain/enc-string";
+import { EncString } from "../../key-management/crypto/models/enc-string";
 import { Fido2Credential } from "../../vault/models/domain/fido2-credential";
 import { Fido2CredentialView } from "../../vault/models/view/fido2-credential.view";
 
diff --git a/libs/common/src/models/export/field.export.ts b/libs/common/src/models/export/field.export.ts
index 837bdc15bee..872b3a6de94 100644
--- a/libs/common/src/models/export/field.export.ts
+++ b/libs/common/src/models/export/field.export.ts
@@ -1,6 +1,6 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
-import { EncString } from "../../platform/models/domain/enc-string";
+import { EncString } from "../../key-management/crypto/models/enc-string";
 import { FieldType, LinkedIdType } from "../../vault/enums";
 import { Field as FieldDomain } from "../../vault/models/domain/field";
 import { FieldView } from "../../vault/models/view/field.view";
diff --git a/libs/common/src/models/export/folder.export.ts b/libs/common/src/models/export/folder.export.ts
index 56a201be262..96f0f1058b8 100644
--- a/libs/common/src/models/export/folder.export.ts
+++ b/libs/common/src/models/export/folder.export.ts
@@ -1,6 +1,6 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
-import { EncString } from "../../platform/models/domain/enc-string";
+import { EncString } from "../../key-management/crypto/models/enc-string";
 import { Folder as FolderDomain } from "../../vault/models/domain/folder";
 import { FolderView } from "../../vault/models/view/folder.view";
 
diff --git a/libs/common/src/models/export/identity.export.ts b/libs/common/src/models/export/identity.export.ts
index 3977ddafa73..275c6223f33 100644
--- a/libs/common/src/models/export/identity.export.ts
+++ b/libs/common/src/models/export/identity.export.ts
@@ -1,6 +1,6 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
-import { EncString } from "../../platform/models/domain/enc-string";
+import { EncString } from "../../key-management/crypto/models/enc-string";
 import { Identity as IdentityDomain } from "../../vault/models/domain/identity";
 import { IdentityView } from "../../vault/models/view/identity.view";
 
diff --git a/libs/common/src/models/export/login-uri.export.ts b/libs/common/src/models/export/login-uri.export.ts
index 1197755f357..73dfeed5a80 100644
--- a/libs/common/src/models/export/login-uri.export.ts
+++ b/libs/common/src/models/export/login-uri.export.ts
@@ -1,7 +1,7 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
+import { EncString } from "../../key-management/crypto/models/enc-string";
 import { UriMatchStrategySetting } from "../../models/domain/domain-service";
-import { EncString } from "../../platform/models/domain/enc-string";
 import { LoginUri as LoginUriDomain } from "../../vault/models/domain/login-uri";
 import { LoginUriView } from "../../vault/models/view/login-uri.view";
 
diff --git a/libs/common/src/models/export/login.export.ts b/libs/common/src/models/export/login.export.ts
index dd0cfa7d32b..b727c614bdf 100644
--- a/libs/common/src/models/export/login.export.ts
+++ b/libs/common/src/models/export/login.export.ts
@@ -1,6 +1,6 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
-import { EncString } from "../../platform/models/domain/enc-string";
+import { EncString } from "../../key-management/crypto/models/enc-string";
 import { Login as LoginDomain } from "../../vault/models/domain/login";
 import { LoginView } from "../../vault/models/view/login.view";
 
diff --git a/libs/common/src/models/export/password-history.export.ts b/libs/common/src/models/export/password-history.export.ts
index 5382b9cb974..e5a44e4e330 100644
--- a/libs/common/src/models/export/password-history.export.ts
+++ b/libs/common/src/models/export/password-history.export.ts
@@ -1,6 +1,6 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
-import { EncString } from "../../platform/models/domain/enc-string";
+import { EncString } from "../../key-management/crypto/models/enc-string";
 import { Password } from "../../vault/models/domain/password";
 import { PasswordHistoryView } from "../../vault/models/view/password-history.view";
 
diff --git a/libs/common/src/models/export/ssh-key.export.ts b/libs/common/src/models/export/ssh-key.export.ts
index e82cb38b6d4..9bae57ee620 100644
--- a/libs/common/src/models/export/ssh-key.export.ts
+++ b/libs/common/src/models/export/ssh-key.export.ts
@@ -1,7 +1,7 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
 
-import { EncString } from "../../platform/models/domain/enc-string";
+import { EncString } from "../../key-management/crypto/models/enc-string";
 import { SshKey as SshKeyDomain } from "../../vault/models/domain/ssh-key";
 import { SshKeyView as SshKeyView } from "../../vault/models/view/ssh-key.view";
 
diff --git a/libs/common/src/models/export/utils.ts b/libs/common/src/models/export/utils.ts
index b7e0b74b611..1b7a9e1f171 100644
--- a/libs/common/src/models/export/utils.ts
+++ b/libs/common/src/models/export/utils.ts
@@ -1,4 +1,4 @@
-import { EncString } from "../../platform/models/domain/enc-string";
+import { EncString } from "../../key-management/crypto/models/enc-string";
 
 export function safeGetString(value: string | EncString) {
   if (value == null) {
diff --git a/libs/common/src/models/response/profile.response.ts b/libs/common/src/models/response/profile.response.ts
index 1607d39e25c..a6982d7ed43 100644
--- a/libs/common/src/models/response/profile.response.ts
+++ b/libs/common/src/models/response/profile.response.ts
@@ -1,7 +1,7 @@
 import { ProfileOrganizationResponse } from "../../admin-console/models/response/profile-organization.response";
 import { ProfileProviderOrganizationResponse } from "../../admin-console/models/response/profile-provider-organization.response";
 import { ProfileProviderResponse } from "../../admin-console/models/response/profile-provider.response";
-import { EncString } from "../../platform/models/domain/enc-string";
+import { EncString } from "../../key-management/crypto/models/enc-string";
 import { UserId } from "../../types/guid";
 
 import { BaseResponse } from "./base.response";
diff --git a/libs/common/src/platform/abstractions/file-upload/file-upload.service.ts b/libs/common/src/platform/abstractions/file-upload/file-upload.service.ts
index 5f26a666206..078912a0fe8 100644
--- a/libs/common/src/platform/abstractions/file-upload/file-upload.service.ts
+++ b/libs/common/src/platform/abstractions/file-upload/file-upload.service.ts
@@ -1,6 +1,6 @@
+import { EncString } from "../../../key-management/crypto/models/enc-string";
 import { FileUploadType } from "../../enums";
 import { EncArrayBuffer } from "../../models/domain/enc-array-buffer";
-import { EncString } from "../../models/domain/enc-string";
 
 export abstract class FileUploadService {
   abstract upload(
diff --git a/libs/common/src/platform/models/domain/domain-base.spec.ts b/libs/common/src/platform/models/domain/domain-base.spec.ts
index 5f68bd8702d..9233795eb95 100644
--- a/libs/common/src/platform/models/domain/domain-base.spec.ts
+++ b/libs/common/src/platform/models/domain/domain-base.spec.ts
@@ -2,9 +2,9 @@ import { mock, MockProxy } from "jest-mock-extended";
 
 import { makeEncString, makeSymmetricCryptoKey } from "../../../../spec";
 import { EncryptService } from "../../../key-management/crypto/abstractions/encrypt.service";
+import { EncString } from "../../../key-management/crypto/models/enc-string";
 
 import Domain from "./domain-base";
-import { EncString } from "./enc-string";
 
 class TestDomain extends Domain {
   plainText: string;
diff --git a/libs/common/src/platform/models/domain/domain-base.ts b/libs/common/src/platform/models/domain/domain-base.ts
index 11d0193accc..08f5aca3a3c 100644
--- a/libs/common/src/platform/models/domain/domain-base.ts
+++ b/libs/common/src/platform/models/domain/domain-base.ts
@@ -1,9 +1,9 @@
 import { ConditionalExcept, ConditionalKeys, Constructor } from "type-fest";
 
 import { EncryptService } from "../../../key-management/crypto/abstractions/encrypt.service";
+import { EncString } from "../../../key-management/crypto/models/enc-string";
 import { View } from "../../../models/view/view";
 
-import { EncString } from "./enc-string";
 import { SymmetricCryptoKey } from "./symmetric-crypto-key";
 
 // eslint-disable-next-line @typescript-eslint/no-unsafe-function-type
diff --git a/libs/common/src/platform/services/file-upload/file-upload.service.ts b/libs/common/src/platform/services/file-upload/file-upload.service.ts
index e09d8afac4e..9fd2f002cd7 100644
--- a/libs/common/src/platform/services/file-upload/file-upload.service.ts
+++ b/libs/common/src/platform/services/file-upload/file-upload.service.ts
@@ -1,6 +1,7 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
 import { ApiService } from "../../../abstractions/api.service";
+import { EncString } from "../../../key-management/crypto/models/enc-string";
 import {
   FileUploadApiMethods,
   FileUploadService as FileUploadServiceAbstraction,
@@ -8,7 +9,6 @@ import {
 import { LogService } from "../../abstractions/log.service";
 import { FileUploadType } from "../../enums";
 import { EncArrayBuffer } from "../../models/domain/enc-array-buffer";
-import { EncString } from "../../models/domain/enc-string";
 
 import { AzureFileUploadService } from "./azure-file-upload.service";
 import { BitwardenFileUploadService } from "./bitwarden-file-upload.service";
diff --git a/libs/common/src/platform/services/key-state/provider-keys.state.ts b/libs/common/src/platform/services/key-state/provider-keys.state.ts
index c0d9e3a1eab..cbc8fb69beb 100644
--- a/libs/common/src/platform/services/key-state/provider-keys.state.ts
+++ b/libs/common/src/platform/services/key-state/provider-keys.state.ts
@@ -1,5 +1,5 @@
+import { EncryptedString } from "../../../key-management/crypto/models/enc-string";
 import { ProviderId } from "../../../types/guid";
-import { EncryptedString } from "../../models/domain/enc-string";
 import { CRYPTO_DISK, UserKeyDefinition } from "../../state";
 
 export const USER_ENCRYPTED_PROVIDER_KEYS = UserKeyDefinition.record<EncryptedString, ProviderId>(
diff --git a/libs/common/src/platform/services/key-state/user-key.state.spec.ts b/libs/common/src/platform/services/key-state/user-key.state.spec.ts
index 6154fba8f44..0af83ccf88a 100644
--- a/libs/common/src/platform/services/key-state/user-key.state.spec.ts
+++ b/libs/common/src/platform/services/key-state/user-key.state.spec.ts
@@ -1,6 +1,6 @@
+import { EncString } from "../../../key-management/crypto/models/enc-string";
 import { EncryptionType } from "../../enums";
 import { Utils } from "../../misc/utils";
-import { EncString } from "../../models/domain/enc-string";
 
 import { USER_ENCRYPTED_PRIVATE_KEY, USER_EVER_HAD_USER_KEY } from "./user-key.state";
 
diff --git a/libs/common/src/platform/services/key-state/user-key.state.ts b/libs/common/src/platform/services/key-state/user-key.state.ts
index cd124321f61..1b88554e53b 100644
--- a/libs/common/src/platform/services/key-state/user-key.state.ts
+++ b/libs/common/src/platform/services/key-state/user-key.state.ts
@@ -1,5 +1,5 @@
+import { EncryptedString } from "../../../key-management/crypto/models/enc-string";
 import { UserKey } from "../../../types/key";
-import { EncryptedString } from "../../models/domain/enc-string";
 import { SymmetricCryptoKey } from "../../models/domain/symmetric-crypto-key";
 import { CRYPTO_DISK, CRYPTO_MEMORY, UserKeyDefinition } from "../../state";
 
diff --git a/libs/common/src/platform/services/sdk/default-sdk.service.spec.ts b/libs/common/src/platform/services/sdk/default-sdk.service.spec.ts
index 70a08257471..17d98159c41 100644
--- a/libs/common/src/platform/services/sdk/default-sdk.service.spec.ts
+++ b/libs/common/src/platform/services/sdk/default-sdk.service.spec.ts
@@ -8,6 +8,7 @@ import { BitwardenClient } from "@bitwarden/sdk-internal";
 
 import { ObservableTracker } from "../../../../spec";
 import { AccountInfo, AccountService } from "../../../auth/abstractions/account.service";
+import { EncryptedString } from "../../../key-management/crypto/models/enc-string";
 import { UserId } from "../../../types/guid";
 import { UserKey } from "../../../types/key";
 import { Environment, EnvironmentService } from "../../abstractions/environment.service";
@@ -16,7 +17,6 @@ import { SdkClientFactory } from "../../abstractions/sdk/sdk-client-factory";
 import { SdkLoadService } from "../../abstractions/sdk/sdk-load.service";
 import { UserNotLoggedInError } from "../../abstractions/sdk/sdk.service";
 import { Rc } from "../../misc/reference-counting/rc";
-import { EncryptedString } from "../../models/domain/enc-string";
 import { SymmetricCryptoKey } from "../../models/domain/symmetric-crypto-key";
 
 import { DefaultSdkService } from "./default-sdk.service";
diff --git a/libs/common/src/platform/services/sdk/default-sdk.service.ts b/libs/common/src/platform/services/sdk/default-sdk.service.ts
index a0d00b5eef6..1dfdfd207c0 100644
--- a/libs/common/src/platform/services/sdk/default-sdk.service.ts
+++ b/libs/common/src/platform/services/sdk/default-sdk.service.ts
@@ -27,6 +27,7 @@ import {
 import { EncryptedOrganizationKeyData } from "../../../admin-console/models/data/encrypted-organization-key.data";
 import { AccountInfo, AccountService } from "../../../auth/abstractions/account.service";
 import { DeviceType } from "../../../enums/device-type.enum";
+import { EncryptedString } from "../../../key-management/crypto/models/enc-string";
 import { OrganizationId, UserId } from "../../../types/guid";
 import { UserKey } from "../../../types/key";
 import { Environment, EnvironmentService } from "../../abstractions/environment.service";
@@ -36,7 +37,6 @@ import { SdkLoadService } from "../../abstractions/sdk/sdk-load.service";
 import { SdkService, UserNotLoggedInError } from "../../abstractions/sdk/sdk.service";
 import { compareValues } from "../../misc/compare-values";
 import { Rc } from "../../misc/reference-counting/rc";
-import { EncryptedString } from "../../models/domain/enc-string";
 
 // A symbol that represents an overriden client that is explicitly set to undefined,
 // blocking the creation of an internal client for that user.
diff --git a/libs/common/src/tools/cryptography/organization-encryptor.abstraction.ts b/libs/common/src/tools/cryptography/organization-encryptor.abstraction.ts
index 9eec207e92d..cf17bc1e4a9 100644
--- a/libs/common/src/tools/cryptography/organization-encryptor.abstraction.ts
+++ b/libs/common/src/tools/cryptography/organization-encryptor.abstraction.ts
@@ -2,7 +2,7 @@
 // @ts-strict-ignore
 import { Jsonify } from "type-fest";
 
-import { EncString } from "../../platform/models/domain/enc-string";
+import { EncString } from "../../key-management/crypto/models/enc-string";
 import { OrganizationId } from "../../types/guid";
 
 /** An encryption strategy that protects a type's secrets with
diff --git a/libs/common/src/tools/cryptography/organization-key-encryptor.spec.ts b/libs/common/src/tools/cryptography/organization-key-encryptor.spec.ts
index 9f03d618cdc..11bbe96ff5f 100644
--- a/libs/common/src/tools/cryptography/organization-key-encryptor.spec.ts
+++ b/libs/common/src/tools/cryptography/organization-key-encryptor.spec.ts
@@ -1,7 +1,7 @@
 import { mock } from "jest-mock-extended";
 
 import { EncryptService } from "../../key-management/crypto/abstractions/encrypt.service";
-import { EncString } from "../../platform/models/domain/enc-string";
+import { EncString } from "../../key-management/crypto/models/enc-string";
 import { SymmetricCryptoKey } from "../../platform/models/domain/symmetric-crypto-key";
 import { CsprngArray } from "../../types/csprng";
 import { OrganizationId } from "../../types/guid";
diff --git a/libs/common/src/tools/cryptography/organization-key-encryptor.ts b/libs/common/src/tools/cryptography/organization-key-encryptor.ts
index 99b47c48670..9a0b4b71961 100644
--- a/libs/common/src/tools/cryptography/organization-key-encryptor.ts
+++ b/libs/common/src/tools/cryptography/organization-key-encryptor.ts
@@ -3,7 +3,7 @@
 import { Jsonify } from "type-fest";
 
 import { EncryptService } from "../../key-management/crypto/abstractions/encrypt.service";
-import { EncString } from "../../platform/models/domain/enc-string";
+import { EncString } from "../../key-management/crypto/models/enc-string";
 import { OrganizationId } from "../../types/guid";
 import { OrgKey } from "../../types/key";
 import { DataPacker } from "../state/data-packer.abstraction";
diff --git a/libs/common/src/tools/cryptography/user-encryptor.abstraction.ts b/libs/common/src/tools/cryptography/user-encryptor.abstraction.ts
index 6bb0e252af3..242fee7c7f8 100644
--- a/libs/common/src/tools/cryptography/user-encryptor.abstraction.ts
+++ b/libs/common/src/tools/cryptography/user-encryptor.abstraction.ts
@@ -2,7 +2,7 @@
 // @ts-strict-ignore
 import { Jsonify } from "type-fest";
 
-import { EncString } from "../../platform/models/domain/enc-string";
+import { EncString } from "../../key-management/crypto/models/enc-string";
 import { UserId } from "../../types/guid";
 
 /** An encryption strategy that protects a type's secrets with
diff --git a/libs/common/src/tools/cryptography/user-key-encryptor.spec.ts b/libs/common/src/tools/cryptography/user-key-encryptor.spec.ts
index 5bcb57ec563..ef2d468133a 100644
--- a/libs/common/src/tools/cryptography/user-key-encryptor.spec.ts
+++ b/libs/common/src/tools/cryptography/user-key-encryptor.spec.ts
@@ -1,7 +1,7 @@
 import { mock } from "jest-mock-extended";
 
 import { EncryptService } from "../../key-management/crypto/abstractions/encrypt.service";
-import { EncString } from "../../platform/models/domain/enc-string";
+import { EncString } from "../../key-management/crypto/models/enc-string";
 import { SymmetricCryptoKey } from "../../platform/models/domain/symmetric-crypto-key";
 import { CsprngArray } from "../../types/csprng";
 import { UserId } from "../../types/guid";
diff --git a/libs/common/src/tools/cryptography/user-key-encryptor.ts b/libs/common/src/tools/cryptography/user-key-encryptor.ts
index 74e41f7af6d..49f77433132 100644
--- a/libs/common/src/tools/cryptography/user-key-encryptor.ts
+++ b/libs/common/src/tools/cryptography/user-key-encryptor.ts
@@ -3,7 +3,7 @@
 import { Jsonify } from "type-fest";
 
 import { EncryptService } from "../../key-management/crypto/abstractions/encrypt.service";
-import { EncString } from "../../platform/models/domain/enc-string";
+import { EncString } from "../../key-management/crypto/models/enc-string";
 import { UserId } from "../../types/guid";
 import { UserKey } from "../../types/key";
 import { DataPacker } from "../state/data-packer.abstraction";
diff --git a/libs/common/src/tools/send/models/domain/send-access.ts b/libs/common/src/tools/send/models/domain/send-access.ts
index 588c4e84aa1..2251e8e5a5a 100644
--- a/libs/common/src/tools/send/models/domain/send-access.ts
+++ b/libs/common/src/tools/send/models/domain/send-access.ts
@@ -1,7 +1,7 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
+import { EncString } from "../../../../key-management/crypto/models/enc-string";
 import Domain from "../../../../platform/models/domain/domain-base";
-import { EncString } from "../../../../platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "../../../../platform/models/domain/symmetric-crypto-key";
 import { SendType } from "../../enums/send-type";
 import { SendAccessResponse } from "../response/send-access.response";
diff --git a/libs/common/src/tools/send/models/domain/send-file.ts b/libs/common/src/tools/send/models/domain/send-file.ts
index b8d0a265081..228f4ee81ca 100644
--- a/libs/common/src/tools/send/models/domain/send-file.ts
+++ b/libs/common/src/tools/send/models/domain/send-file.ts
@@ -2,8 +2,8 @@
 // @ts-strict-ignore
 import { Jsonify } from "type-fest";
 
+import { EncString } from "../../../../key-management/crypto/models/enc-string";
 import Domain from "../../../../platform/models/domain/domain-base";
-import { EncString } from "../../../../platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "../../../../platform/models/domain/symmetric-crypto-key";
 import { SendFileData } from "../data/send-file.data";
 import { SendFileView } from "../view/send-file.view";
diff --git a/libs/common/src/tools/send/models/domain/send-text.ts b/libs/common/src/tools/send/models/domain/send-text.ts
index df33e555896..321810292ad 100644
--- a/libs/common/src/tools/send/models/domain/send-text.ts
+++ b/libs/common/src/tools/send/models/domain/send-text.ts
@@ -2,8 +2,8 @@
 // @ts-strict-ignore
 import { Jsonify } from "type-fest";
 
+import { EncString } from "../../../../key-management/crypto/models/enc-string";
 import Domain from "../../../../platform/models/domain/domain-base";
-import { EncString } from "../../../../platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "../../../../platform/models/domain/symmetric-crypto-key";
 import { SendTextData } from "../data/send-text.data";
 import { SendTextView } from "../view/send-text.view";
diff --git a/libs/common/src/tools/send/models/domain/send.ts b/libs/common/src/tools/send/models/domain/send.ts
index 78d7966bb63..89fe92c2c7b 100644
--- a/libs/common/src/tools/send/models/domain/send.ts
+++ b/libs/common/src/tools/send/models/domain/send.ts
@@ -2,9 +2,9 @@
 // @ts-strict-ignore
 import { Jsonify } from "type-fest";
 
+import { EncString } from "../../../../key-management/crypto/models/enc-string";
 import { Utils } from "../../../../platform/misc/utils";
 import Domain from "../../../../platform/models/domain/domain-base";
-import { EncString } from "../../../../platform/models/domain/enc-string";
 import { SendType } from "../../enums/send-type";
 import { SendData } from "../data/send.data";
 import { SendView } from "../view/send.view";
diff --git a/libs/common/src/tools/send/services/send.service.spec.ts b/libs/common/src/tools/send/services/send.service.spec.ts
index d2a2d5dd9b5..6edc298235d 100644
--- a/libs/common/src/tools/send/services/send.service.spec.ts
+++ b/libs/common/src/tools/send/services/send.service.spec.ts
@@ -13,11 +13,11 @@ import {
   mockAccountServiceWith,
 } from "../../../../spec";
 import { EncryptService } from "../../../key-management/crypto/abstractions/encrypt.service";
+import { EncString } from "../../../key-management/crypto/models/enc-string";
 import { EnvironmentService } from "../../../platform/abstractions/environment.service";
 import { I18nService } from "../../../platform/abstractions/i18n.service";
 import { KeyGenerationService } from "../../../platform/abstractions/key-generation.service";
 import { Utils } from "../../../platform/misc/utils";
-import { EncString } from "../../../platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "../../../platform/models/domain/symmetric-crypto-key";
 import { ContainerService } from "../../../platform/services/container.service";
 import { SelfHostedEnvironment } from "../../../platform/services/default-environment.service";
diff --git a/libs/common/src/tools/send/services/send.service.ts b/libs/common/src/tools/send/services/send.service.ts
index 623ab7c4a7b..97470b23697 100644
--- a/libs/common/src/tools/send/services/send.service.ts
+++ b/libs/common/src/tools/send/services/send.service.ts
@@ -7,11 +7,11 @@ import { Observable, concatMap, distinctUntilChanged, firstValueFrom, map } from
 import { PBKDF2KdfConfig, KeyService } from "@bitwarden/key-management";
 
 import { EncryptService } from "../../../key-management/crypto/abstractions/encrypt.service";
+import { EncString } from "../../../key-management/crypto/models/enc-string";
 import { I18nService } from "../../../platform/abstractions/i18n.service";
 import { KeyGenerationService } from "../../../platform/abstractions/key-generation.service";
 import { Utils } from "../../../platform/misc/utils";
 import { EncArrayBuffer } from "../../../platform/models/domain/enc-array-buffer";
-import { EncString } from "../../../platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "../../../platform/models/domain/symmetric-crypto-key";
 import { UserId } from "../../../types/guid";
 import { UserKey } from "../../../types/key";
diff --git a/libs/common/src/tools/send/services/test-data/send-tests.data.ts b/libs/common/src/tools/send/services/test-data/send-tests.data.ts
index b49c3d64b95..784d54bd71f 100644
--- a/libs/common/src/tools/send/services/test-data/send-tests.data.ts
+++ b/libs/common/src/tools/send/services/test-data/send-tests.data.ts
@@ -1,6 +1,6 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
-import { EncString } from "../../../../platform/models/domain/enc-string";
+import { EncString } from "../../../../key-management/crypto/models/enc-string";
 import { SendType } from "../../enums/send-type";
 import { SendTextApi } from "../../models/api/send-text.api";
 import { SendTextData } from "../../models/data/send-text.data";
diff --git a/libs/common/src/tools/state/secret-state.spec.ts b/libs/common/src/tools/state/secret-state.spec.ts
index 5f679644fc7..9e0b57627f4 100644
--- a/libs/common/src/tools/state/secret-state.spec.ts
+++ b/libs/common/src/tools/state/secret-state.spec.ts
@@ -8,7 +8,7 @@ import {
   mockAccountServiceWith,
   awaitAsync,
 } from "../../../spec";
-import { EncString } from "../../platform/models/domain/enc-string";
+import { EncString } from "../../key-management/crypto/models/enc-string";
 import { GENERATOR_DISK } from "../../platform/state";
 import { UserId } from "../../types/guid";
 import { UserEncryptor } from "../cryptography/user-encryptor.abstraction";
diff --git a/libs/common/src/tools/state/secret-state.ts b/libs/common/src/tools/state/secret-state.ts
index 1ef2cd92b6a..91f45a51211 100644
--- a/libs/common/src/tools/state/secret-state.ts
+++ b/libs/common/src/tools/state/secret-state.ts
@@ -2,7 +2,7 @@
 // @ts-strict-ignore
 import { Observable, map, concatMap, share, ReplaySubject, timer, combineLatest, of } from "rxjs";
 
-import { EncString } from "../../platform/models/domain/enc-string";
+import { EncString } from "../../key-management/crypto/models/enc-string";
 import {
   SingleUserState,
   StateProvider,
diff --git a/libs/common/src/tools/state/user-state-subject.ts b/libs/common/src/tools/state/user-state-subject.ts
index 2c80c9ad135..e6b66d8f699 100644
--- a/libs/common/src/tools/state/user-state-subject.ts
+++ b/libs/common/src/tools/state/user-state-subject.ts
@@ -30,7 +30,7 @@ import {
 } from "rxjs";
 
 import { Account } from "../../auth/abstractions/account.service";
-import { EncString } from "../../platform/models/domain/enc-string";
+import { EncString } from "../../key-management/crypto/models/enc-string";
 import { SingleUserState, UserKeyDefinition } from "../../platform/state";
 import { UserEncryptor } from "../cryptography/user-encryptor.abstraction";
 import { SemanticLogger } from "../log";
diff --git a/libs/common/src/vault/abstractions/file-upload/cipher-file-upload.service.ts b/libs/common/src/vault/abstractions/file-upload/cipher-file-upload.service.ts
index 868d58f5eaa..812439e2ca9 100644
--- a/libs/common/src/vault/abstractions/file-upload/cipher-file-upload.service.ts
+++ b/libs/common/src/vault/abstractions/file-upload/cipher-file-upload.service.ts
@@ -1,7 +1,7 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
+import { EncString } from "../../../key-management/crypto/models/enc-string";
 import { EncArrayBuffer } from "../../../platform/models/domain/enc-array-buffer";
-import { EncString } from "../../../platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "../../../platform/models/domain/symmetric-crypto-key";
 import { Cipher } from "../../models/domain/cipher";
 import { CipherResponse } from "../../models/response/cipher.response";
diff --git a/libs/common/src/vault/models/domain/attachment.spec.ts b/libs/common/src/vault/models/domain/attachment.spec.ts
index f03ce927082..d2b536b0590 100644
--- a/libs/common/src/vault/models/domain/attachment.spec.ts
+++ b/libs/common/src/vault/models/domain/attachment.spec.ts
@@ -6,7 +6,7 @@ import { KeyService } from "@bitwarden/key-management";
 
 import { makeStaticByteArray, mockEnc, mockFromJson } from "../../../../spec";
 import { EncryptService } from "../../../key-management/crypto/abstractions/encrypt.service";
-import { EncryptedString, EncString } from "../../../platform/models/domain/enc-string";
+import { EncryptedString, EncString } from "../../../key-management/crypto/models/enc-string";
 import { SymmetricCryptoKey } from "../../../platform/models/domain/symmetric-crypto-key";
 import { ContainerService } from "../../../platform/services/container.service";
 import { OrgKey, UserKey } from "../../../types/key";
diff --git a/libs/common/src/vault/models/domain/attachment.ts b/libs/common/src/vault/models/domain/attachment.ts
index 4339f31a2e1..abfebffb2e6 100644
--- a/libs/common/src/vault/models/domain/attachment.ts
+++ b/libs/common/src/vault/models/domain/attachment.ts
@@ -4,9 +4,9 @@ import { Jsonify } from "type-fest";
 
 import { Attachment as SdkAttachment } from "@bitwarden/sdk-internal";
 
+import { EncString } from "../../../key-management/crypto/models/enc-string";
 import { Utils } from "../../../platform/misc/utils";
 import Domain from "../../../platform/models/domain/domain-base";
-import { EncString } from "../../../platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "../../../platform/models/domain/symmetric-crypto-key";
 import { AttachmentData } from "../data/attachment.data";
 import { AttachmentView } from "../view/attachment.view";
diff --git a/libs/common/src/vault/models/domain/card.spec.ts b/libs/common/src/vault/models/domain/card.spec.ts
index 19546ddcb05..5a134651e32 100644
--- a/libs/common/src/vault/models/domain/card.spec.ts
+++ b/libs/common/src/vault/models/domain/card.spec.ts
@@ -1,5 +1,5 @@
 import { mockEnc, mockFromJson } from "../../../../spec";
-import { EncryptedString, EncString } from "../../../platform/models/domain/enc-string";
+import { EncryptedString, EncString } from "../../../key-management/crypto/models/enc-string";
 import { CardData } from "../../../vault/models/data/card.data";
 import { Card } from "../../models/domain/card";
 
diff --git a/libs/common/src/vault/models/domain/card.ts b/libs/common/src/vault/models/domain/card.ts
index 43068012ef6..c78f9dfb719 100644
--- a/libs/common/src/vault/models/domain/card.ts
+++ b/libs/common/src/vault/models/domain/card.ts
@@ -4,8 +4,8 @@ import { Jsonify } from "type-fest";
 
 import { Card as SdkCard } from "@bitwarden/sdk-internal";
 
+import { EncString } from "../../../key-management/crypto/models/enc-string";
 import Domain from "../../../platform/models/domain/domain-base";
-import { EncString } from "../../../platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "../../../platform/models/domain/symmetric-crypto-key";
 import { CardData } from "../data/card.data";
 import { CardView } from "../view/card.view";
diff --git a/libs/common/src/vault/models/domain/cipher.spec.ts b/libs/common/src/vault/models/domain/cipher.spec.ts
index ba83cf38ae4..3ea8916a10b 100644
--- a/libs/common/src/vault/models/domain/cipher.spec.ts
+++ b/libs/common/src/vault/models/domain/cipher.spec.ts
@@ -14,8 +14,8 @@ import {
 
 import { makeStaticByteArray, mockEnc, mockFromJson } from "../../../../spec/utils";
 import { EncryptService } from "../../../key-management/crypto/abstractions/encrypt.service";
+import { EncString } from "../../../key-management/crypto/models/enc-string";
 import { UriMatchStrategy } from "../../../models/domain/domain-service";
-import { EncString } from "../../../platform/models/domain/enc-string";
 import { ContainerService } from "../../../platform/services/container.service";
 import { InitializerKey } from "../../../platform/services/cryptography/initializer-key";
 import { UserId } from "../../../types/guid";
diff --git a/libs/common/src/vault/models/domain/cipher.ts b/libs/common/src/vault/models/domain/cipher.ts
index 9cc9226cd46..2f64fb82726 100644
--- a/libs/common/src/vault/models/domain/cipher.ts
+++ b/libs/common/src/vault/models/domain/cipher.ts
@@ -4,10 +4,10 @@ import { Jsonify } from "type-fest";
 
 import { Cipher as SdkCipher } from "@bitwarden/sdk-internal";
 
+import { EncString } from "../../../key-management/crypto/models/enc-string";
 import { Decryptable } from "../../../platform/interfaces/decryptable.interface";
 import { Utils } from "../../../platform/misc/utils";
 import Domain from "../../../platform/models/domain/domain-base";
-import { EncString } from "../../../platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "../../../platform/models/domain/symmetric-crypto-key";
 import { InitializerKey } from "../../../platform/services/cryptography/initializer-key";
 import { CipherRepromptType } from "../../enums/cipher-reprompt-type";
diff --git a/libs/common/src/vault/models/domain/fido2-credential.spec.ts b/libs/common/src/vault/models/domain/fido2-credential.spec.ts
index bde29d0e99c..e245e54de7c 100644
--- a/libs/common/src/vault/models/domain/fido2-credential.spec.ts
+++ b/libs/common/src/vault/models/domain/fido2-credential.spec.ts
@@ -1,6 +1,6 @@
 import { mockEnc } from "../../../../spec";
+import { EncString } from "../../../key-management/crypto/models/enc-string";
 import { EncryptionType } from "../../../platform/enums";
-import { EncString } from "../../../platform/models/domain/enc-string";
 import { Fido2CredentialData } from "../data/fido2-credential.data";
 
 import { Fido2Credential } from "./fido2-credential";
diff --git a/libs/common/src/vault/models/domain/fido2-credential.ts b/libs/common/src/vault/models/domain/fido2-credential.ts
index e4e874e367b..508f8a6d5fb 100644
--- a/libs/common/src/vault/models/domain/fido2-credential.ts
+++ b/libs/common/src/vault/models/domain/fido2-credential.ts
@@ -4,8 +4,8 @@ import { Jsonify } from "type-fest";
 
 import { Fido2Credential as SdkFido2Credential } from "@bitwarden/sdk-internal";
 
+import { EncString } from "../../../key-management/crypto/models/enc-string";
 import Domain from "../../../platform/models/domain/domain-base";
-import { EncString } from "../../../platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "../../../platform/models/domain/symmetric-crypto-key";
 import { Fido2CredentialData } from "../data/fido2-credential.data";
 import { Fido2CredentialView } from "../view/fido2-credential.view";
diff --git a/libs/common/src/vault/models/domain/field.spec.ts b/libs/common/src/vault/models/domain/field.spec.ts
index c0f9713f7ab..08bc0da84fe 100644
--- a/libs/common/src/vault/models/domain/field.spec.ts
+++ b/libs/common/src/vault/models/domain/field.spec.ts
@@ -1,5 +1,5 @@
 import { mockEnc, mockFromJson } from "../../../../spec";
-import { EncryptedString, EncString } from "../../../platform/models/domain/enc-string";
+import { EncryptedString, EncString } from "../../../key-management/crypto/models/enc-string";
 import { CardLinkedId, FieldType, IdentityLinkedId, LoginLinkedId } from "../../enums";
 import { FieldData } from "../../models/data/field.data";
 import { Field } from "../../models/domain/field";
diff --git a/libs/common/src/vault/models/domain/field.ts b/libs/common/src/vault/models/domain/field.ts
index 223c9b39163..d6453932cc7 100644
--- a/libs/common/src/vault/models/domain/field.ts
+++ b/libs/common/src/vault/models/domain/field.ts
@@ -4,8 +4,8 @@ import { Jsonify } from "type-fest";
 
 import { Field as SdkField, LinkedIdType as SdkLinkedIdType } from "@bitwarden/sdk-internal";
 
+import { EncString } from "../../../key-management/crypto/models/enc-string";
 import Domain from "../../../platform/models/domain/domain-base";
-import { EncString } from "../../../platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "../../../platform/models/domain/symmetric-crypto-key";
 import { FieldType, LinkedIdType } from "../../enums";
 import { FieldData } from "../data/field.data";
diff --git a/libs/common/src/vault/models/domain/folder.spec.ts b/libs/common/src/vault/models/domain/folder.spec.ts
index cad17a9ee07..82a3aba22a2 100644
--- a/libs/common/src/vault/models/domain/folder.spec.ts
+++ b/libs/common/src/vault/models/domain/folder.spec.ts
@@ -4,7 +4,7 @@ import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/sym
 
 import { makeEncString, makeSymmetricCryptoKey, mockEnc, mockFromJson } from "../../../../spec";
 import { EncryptService } from "../../../key-management/crypto/abstractions/encrypt.service";
-import { EncryptedString, EncString } from "../../../platform/models/domain/enc-string";
+import { EncryptedString, EncString } from "../../../key-management/crypto/models/enc-string";
 import { FolderData } from "../../models/data/folder.data";
 import { Folder } from "../../models/domain/folder";
 
@@ -45,7 +45,7 @@ describe("Folder", () => {
   });
 
   describe("fromJSON", () => {
-    jest.mock("../../../platform/models/domain/enc-string");
+    jest.mock("../../../key-management/crypto/models/enc-string");
     jest.spyOn(EncString, "fromJSON").mockImplementation(mockFromJson);
 
     it("initializes nested objects", () => {
diff --git a/libs/common/src/vault/models/domain/folder.ts b/libs/common/src/vault/models/domain/folder.ts
index 8749a92fb65..acefb6ce1c5 100644
--- a/libs/common/src/vault/models/domain/folder.ts
+++ b/libs/common/src/vault/models/domain/folder.ts
@@ -3,8 +3,8 @@
 import { Jsonify } from "type-fest";
 
 import { EncryptService } from "../../../key-management/crypto/abstractions/encrypt.service";
+import { EncString } from "../../../key-management/crypto/models/enc-string";
 import Domain from "../../../platform/models/domain/domain-base";
-import { EncString } from "../../../platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "../../../platform/models/domain/symmetric-crypto-key";
 import { FolderData } from "../data/folder.data";
 import { FolderView } from "../view/folder.view";
diff --git a/libs/common/src/vault/models/domain/identity.spec.ts b/libs/common/src/vault/models/domain/identity.spec.ts
index cf296a6ff08..c122c90371f 100644
--- a/libs/common/src/vault/models/domain/identity.spec.ts
+++ b/libs/common/src/vault/models/domain/identity.spec.ts
@@ -1,5 +1,5 @@
 import { mockEnc, mockFromJson } from "../../../../spec";
-import { EncryptedString, EncString } from "../../../platform/models/domain/enc-string";
+import { EncryptedString, EncString } from "../../../key-management/crypto/models/enc-string";
 import { IdentityData } from "../../models/data/identity.data";
 import { Identity } from "../../models/domain/identity";
 
diff --git a/libs/common/src/vault/models/domain/identity.ts b/libs/common/src/vault/models/domain/identity.ts
index c7756733a66..5dc752531be 100644
--- a/libs/common/src/vault/models/domain/identity.ts
+++ b/libs/common/src/vault/models/domain/identity.ts
@@ -4,8 +4,8 @@ import { Jsonify } from "type-fest";
 
 import { Identity as SdkIdentity } from "@bitwarden/sdk-internal";
 
+import { EncString } from "../../../key-management/crypto/models/enc-string";
 import Domain from "../../../platform/models/domain/domain-base";
-import { EncString } from "../../../platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "../../../platform/models/domain/symmetric-crypto-key";
 import { IdentityData } from "../data/identity.data";
 import { IdentityView } from "../view/identity.view";
diff --git a/libs/common/src/vault/models/domain/login-uri.spec.ts b/libs/common/src/vault/models/domain/login-uri.spec.ts
index a0e6b6d7dc9..cbab41f1472 100644
--- a/libs/common/src/vault/models/domain/login-uri.spec.ts
+++ b/libs/common/src/vault/models/domain/login-uri.spec.ts
@@ -5,8 +5,8 @@ import { UriMatchType } from "@bitwarden/sdk-internal";
 
 import { mockEnc, mockFromJson } from "../../../../spec";
 import { EncryptService } from "../../../key-management/crypto/abstractions/encrypt.service";
+import { EncString } from "../../../key-management/crypto/models/enc-string";
 import { UriMatchStrategy } from "../../../models/domain/domain-service";
-import { EncString } from "../../../platform/models/domain/enc-string";
 import { LoginUriData } from "../data/login-uri.data";
 
 import { LoginUri } from "./login-uri";
diff --git a/libs/common/src/vault/models/domain/login-uri.ts b/libs/common/src/vault/models/domain/login-uri.ts
index 5874d99c99d..e7bc2e8892e 100644
--- a/libs/common/src/vault/models/domain/login-uri.ts
+++ b/libs/common/src/vault/models/domain/login-uri.ts
@@ -4,10 +4,10 @@ import { Jsonify } from "type-fest";
 
 import { LoginUri as SdkLoginUri } from "@bitwarden/sdk-internal";
 
+import { EncString } from "../../../key-management/crypto/models/enc-string";
 import { UriMatchStrategySetting } from "../../../models/domain/domain-service";
 import { Utils } from "../../../platform/misc/utils";
 import Domain from "../../../platform/models/domain/domain-base";
-import { EncString } from "../../../platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "../../../platform/models/domain/symmetric-crypto-key";
 import { LoginUriData } from "../data/login-uri.data";
 import { LoginUriView } from "../view/login-uri.view";
diff --git a/libs/common/src/vault/models/domain/login.spec.ts b/libs/common/src/vault/models/domain/login.spec.ts
index 84d12e8131f..dc3cc71fda8 100644
--- a/libs/common/src/vault/models/domain/login.spec.ts
+++ b/libs/common/src/vault/models/domain/login.spec.ts
@@ -1,8 +1,8 @@
 import { MockProxy, mock } from "jest-mock-extended";
 
 import { mockEnc, mockFromJson } from "../../../../spec";
+import { EncryptedString, EncString } from "../../../key-management/crypto/models/enc-string";
 import { UriMatchStrategy, UriMatchStrategySetting } from "../../../models/domain/domain-service";
-import { EncryptedString, EncString } from "../../../platform/models/domain/enc-string";
 import { LoginData } from "../../models/data/login.data";
 import { Login } from "../../models/domain/login";
 import { LoginUri } from "../../models/domain/login-uri";
diff --git a/libs/common/src/vault/models/domain/login.ts b/libs/common/src/vault/models/domain/login.ts
index b54251ca727..4d77983d4af 100644
--- a/libs/common/src/vault/models/domain/login.ts
+++ b/libs/common/src/vault/models/domain/login.ts
@@ -4,8 +4,8 @@ import { Jsonify } from "type-fest";
 
 import { Login as SdkLogin } from "@bitwarden/sdk-internal";
 
+import { EncString } from "../../../key-management/crypto/models/enc-string";
 import Domain from "../../../platform/models/domain/domain-base";
-import { EncString } from "../../../platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "../../../platform/models/domain/symmetric-crypto-key";
 import { LoginData } from "../data/login.data";
 import { LoginView } from "../view/login.view";
diff --git a/libs/common/src/vault/models/domain/password.spec.ts b/libs/common/src/vault/models/domain/password.spec.ts
index 24163cccf36..a75fca048fe 100644
--- a/libs/common/src/vault/models/domain/password.spec.ts
+++ b/libs/common/src/vault/models/domain/password.spec.ts
@@ -1,5 +1,5 @@
 import { mockEnc, mockFromJson } from "../../../../spec";
-import { EncryptedString, EncString } from "../../../platform/models/domain/enc-string";
+import { EncryptedString, EncString } from "../../../key-management/crypto/models/enc-string";
 import { PasswordHistoryData } from "../../models/data/password-history.data";
 import { Password } from "../../models/domain/password";
 
diff --git a/libs/common/src/vault/models/domain/password.ts b/libs/common/src/vault/models/domain/password.ts
index b69a61a95a9..f8aacf765bf 100644
--- a/libs/common/src/vault/models/domain/password.ts
+++ b/libs/common/src/vault/models/domain/password.ts
@@ -4,8 +4,8 @@ import { Jsonify } from "type-fest";
 
 import { PasswordHistory } from "@bitwarden/sdk-internal";
 
+import { EncString } from "../../../key-management/crypto/models/enc-string";
 import Domain from "../../../platform/models/domain/domain-base";
-import { EncString } from "../../../platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "../../../platform/models/domain/symmetric-crypto-key";
 import { PasswordHistoryData } from "../data/password-history.data";
 import { PasswordHistoryView } from "../view/password-history.view";
diff --git a/libs/common/src/vault/models/domain/ssh-key.ts b/libs/common/src/vault/models/domain/ssh-key.ts
index 96a1c9e58de..c0afcd83fc2 100644
--- a/libs/common/src/vault/models/domain/ssh-key.ts
+++ b/libs/common/src/vault/models/domain/ssh-key.ts
@@ -4,8 +4,8 @@ import { Jsonify } from "type-fest";
 
 import { SshKey as SdkSshKey } from "@bitwarden/sdk-internal";
 
+import { EncString } from "../../../key-management/crypto/models/enc-string";
 import Domain from "../../../platform/models/domain/domain-base";
-import { EncString } from "../../../platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "../../../platform/models/domain/symmetric-crypto-key";
 import { SshKeyData } from "../data/ssh-key.data";
 import { SshKeyView } from "../view/ssh-key.view";
diff --git a/libs/common/src/vault/models/view/attachment.view.spec.ts b/libs/common/src/vault/models/view/attachment.view.spec.ts
index b24d251d246..31815ac9cac 100644
--- a/libs/common/src/vault/models/view/attachment.view.spec.ts
+++ b/libs/common/src/vault/models/view/attachment.view.spec.ts
@@ -1,7 +1,7 @@
 import { AttachmentView as SdkAttachmentView } from "@bitwarden/sdk-internal";
 
 import { mockFromJson } from "../../../../spec";
-import { EncString } from "../../../platform/models/domain/enc-string";
+import { EncString } from "../../../key-management/crypto/models/enc-string";
 import { SymmetricCryptoKey } from "../../../platform/models/domain/symmetric-crypto-key";
 
 import { AttachmentView } from "./attachment.view";
diff --git a/libs/common/src/vault/models/view/attachment.view.ts b/libs/common/src/vault/models/view/attachment.view.ts
index 840625dd2d0..4c1033efd08 100644
--- a/libs/common/src/vault/models/view/attachment.view.ts
+++ b/libs/common/src/vault/models/view/attachment.view.ts
@@ -4,8 +4,8 @@ import { Jsonify } from "type-fest";
 
 import { AttachmentView as SdkAttachmentView } from "@bitwarden/sdk-internal";
 
+import { EncString } from "../../../key-management/crypto/models/enc-string";
 import { View } from "../../../models/view/view";
-import { EncString } from "../../../platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "../../../platform/models/domain/symmetric-crypto-key";
 import { Attachment } from "../domain/attachment";
 
diff --git a/libs/common/src/vault/services/cipher.service.spec.ts b/libs/common/src/vault/services/cipher.service.spec.ts
index 2fd9b03a37e..bf30b78ca63 100644
--- a/libs/common/src/vault/services/cipher.service.spec.ts
+++ b/libs/common/src/vault/services/cipher.service.spec.ts
@@ -14,13 +14,13 @@ import { AutofillSettingsService } from "../../autofill/services/autofill-settin
 import { DomainSettingsService } from "../../autofill/services/domain-settings.service";
 import { BulkEncryptService } from "../../key-management/crypto/abstractions/bulk-encrypt.service";
 import { EncryptService } from "../../key-management/crypto/abstractions/encrypt.service";
+import { EncString } from "../../key-management/crypto/models/enc-string";
 import { UriMatchStrategy } from "../../models/domain/domain-service";
 import { ConfigService } from "../../platform/abstractions/config/config.service";
 import { I18nService } from "../../platform/abstractions/i18n.service";
 import { StateService } from "../../platform/abstractions/state.service";
 import { Utils } from "../../platform/misc/utils";
 import { EncArrayBuffer } from "../../platform/models/domain/enc-array-buffer";
-import { EncString } from "../../platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "../../platform/models/domain/symmetric-crypto-key";
 import { ContainerService } from "../../platform/services/container.service";
 import { CipherId, UserId } from "../../types/guid";
diff --git a/libs/common/src/vault/services/cipher.service.ts b/libs/common/src/vault/services/cipher.service.ts
index 18acc5238f5..cf9dfcaf1cd 100644
--- a/libs/common/src/vault/services/cipher.service.ts
+++ b/libs/common/src/vault/services/cipher.service.ts
@@ -15,6 +15,7 @@ import { DomainSettingsService } from "../../autofill/services/domain-settings.s
 import { FeatureFlag } from "../../enums/feature-flag.enum";
 import { BulkEncryptService } from "../../key-management/crypto/abstractions/bulk-encrypt.service";
 import { EncryptService } from "../../key-management/crypto/abstractions/encrypt.service";
+import { EncString } from "../../key-management/crypto/models/enc-string";
 import { UriMatchStrategySetting } from "../../models/domain/domain-service";
 import { ErrorResponse } from "../../models/response/error.response";
 import { ListResponse } from "../../models/response/list.response";
@@ -25,7 +26,6 @@ import { StateService } from "../../platform/abstractions/state.service";
 import { Utils } from "../../platform/misc/utils";
 import Domain from "../../platform/models/domain/domain-base";
 import { EncArrayBuffer } from "../../platform/models/domain/enc-array-buffer";
-import { EncString } from "../../platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "../../platform/models/domain/symmetric-crypto-key";
 import { StateProvider } from "../../platform/state";
 import { CipherId, CollectionId, OrganizationId, UserId } from "../../types/guid";
diff --git a/libs/common/src/vault/services/file-upload/cipher-file-upload.service.ts b/libs/common/src/vault/services/file-upload/cipher-file-upload.service.ts
index 10fa1d9580c..2fb2746366d 100644
--- a/libs/common/src/vault/services/file-upload/cipher-file-upload.service.ts
+++ b/libs/common/src/vault/services/file-upload/cipher-file-upload.service.ts
@@ -1,13 +1,13 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
 import { ApiService } from "../../../abstractions/api.service";
+import { EncString } from "../../../key-management/crypto/models/enc-string";
 import { ErrorResponse } from "../../../models/response/error.response";
 import {
   FileUploadApiMethods,
   FileUploadService,
 } from "../../../platform/abstractions/file-upload/file-upload.service";
 import { EncArrayBuffer } from "../../../platform/models/domain/enc-array-buffer";
-import { EncString } from "../../../platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "../../../platform/models/domain/symmetric-crypto-key";
 import { CipherFileUploadService as CipherFileUploadServiceAbstraction } from "../../abstractions/file-upload/cipher-file-upload.service";
 import { Cipher } from "../../models/domain/cipher";
diff --git a/libs/common/src/vault/services/folder/folder.service.spec.ts b/libs/common/src/vault/services/folder/folder.service.spec.ts
index 38dea851456..e87f974d517 100644
--- a/libs/common/src/vault/services/folder/folder.service.spec.ts
+++ b/libs/common/src/vault/services/folder/folder.service.spec.ts
@@ -10,9 +10,9 @@ import { FakeAccountService, mockAccountServiceWith } from "../../../../spec/fak
 import { FakeSingleUserState } from "../../../../spec/fake-state";
 import { FakeStateProvider } from "../../../../spec/fake-state-provider";
 import { EncryptService } from "../../../key-management/crypto/abstractions/encrypt.service";
+import { EncString } from "../../../key-management/crypto/models/enc-string";
 import { I18nService } from "../../../platform/abstractions/i18n.service";
 import { Utils } from "../../../platform/misc/utils";
-import { EncString } from "../../../platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "../../../platform/models/domain/symmetric-crypto-key";
 import { UserId } from "../../../types/guid";
 import { UserKey } from "../../../types/key";
diff --git a/libs/importer/src/importers/bitwarden/bitwarden-json-importer.ts b/libs/importer/src/importers/bitwarden/bitwarden-json-importer.ts
index 9f29af19715..c835a2b73df 100644
--- a/libs/importer/src/importers/bitwarden/bitwarden-json-importer.ts
+++ b/libs/importer/src/importers/bitwarden/bitwarden-json-importer.ts
@@ -8,13 +8,13 @@ import { CollectionView } from "@bitwarden/admin-console/common";
 import { PinServiceAbstraction } from "@bitwarden/auth/common";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import {
   CipherWithIdExport,
   CollectionWithIdExport,
   FolderWithIdExport,
 } from "@bitwarden/common/models/export";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import { OrganizationId } from "@bitwarden/common/types/guid";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
diff --git a/libs/importer/src/importers/bitwarden/bitwarden-password-protected-importer.ts b/libs/importer/src/importers/bitwarden/bitwarden-password-protected-importer.ts
index 878f9cf5819..671fadbb0bc 100644
--- a/libs/importer/src/importers/bitwarden/bitwarden-password-protected-importer.ts
+++ b/libs/importer/src/importers/bitwarden/bitwarden-password-protected-importer.ts
@@ -3,8 +3,8 @@
 import { PinServiceAbstraction } from "@bitwarden/auth/common";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
 import {
diff --git a/libs/key-management/src/abstractions/key.service.ts b/libs/key-management/src/abstractions/key.service.ts
index bbe0dd50f3d..c843d8dc872 100644
--- a/libs/key-management/src/abstractions/key.service.ts
+++ b/libs/key-management/src/abstractions/key.service.ts
@@ -4,8 +4,11 @@ import { EncryptedOrganizationKeyData } from "@bitwarden/common/admin-console/mo
 import { ProfileOrganizationResponse } from "@bitwarden/common/admin-console/models/response/profile-organization.response";
 import { ProfileProviderOrganizationResponse } from "@bitwarden/common/admin-console/models/response/profile-provider-organization.response";
 import { ProfileProviderResponse } from "@bitwarden/common/admin-console/models/response/profile-provider.response";
+import {
+  EncryptedString,
+  EncString,
+} from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { KeySuffixOptions, HashPurpose } from "@bitwarden/common/platform/enums";
-import { EncryptedString, EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import { OrganizationId, UserId } from "@bitwarden/common/types/guid";
 import {
diff --git a/libs/key-management/src/biometrics/biometric-state.service.spec.ts b/libs/key-management/src/biometrics/biometric-state.service.spec.ts
index 338826dfcba..8569df16319 100644
--- a/libs/key-management/src/biometrics/biometric-state.service.spec.ts
+++ b/libs/key-management/src/biometrics/biometric-state.service.spec.ts
@@ -1,6 +1,6 @@
 import { firstValueFrom } from "rxjs";
 
-import { EncryptedString } from "@bitwarden/common/platform/models/domain/enc-string";
+import { EncryptedString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import {
   makeEncString,
   trackEmissions,
diff --git a/libs/key-management/src/biometrics/biometric-state.service.ts b/libs/key-management/src/biometrics/biometric-state.service.ts
index 837c266bee5..d27617315ee 100644
--- a/libs/key-management/src/biometrics/biometric-state.service.ts
+++ b/libs/key-management/src/biometrics/biometric-state.service.ts
@@ -1,6 +1,9 @@
 import { Observable, firstValueFrom, map, combineLatest } from "rxjs";
 
-import { EncryptedString, EncString } from "@bitwarden/common/platform/models/domain/enc-string";
+import {
+  EncryptedString,
+  EncString,
+} from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { ActiveUserState, GlobalState, StateProvider } from "@bitwarden/common/platform/state";
 import { UserId } from "@bitwarden/common/types/guid";
 
diff --git a/libs/key-management/src/biometrics/biometric.state.ts b/libs/key-management/src/biometrics/biometric.state.ts
index 277d35c176e..31570a71837 100644
--- a/libs/key-management/src/biometrics/biometric.state.ts
+++ b/libs/key-management/src/biometrics/biometric.state.ts
@@ -1,4 +1,4 @@
-import { EncryptedString } from "@bitwarden/common/platform/models/domain/enc-string";
+import { EncryptedString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import {
   KeyDefinition,
   BIOMETRIC_SETTINGS_DISK,
diff --git a/libs/key-management/src/key.service.spec.ts b/libs/key-management/src/key.service.spec.ts
index 7d7ac99898d..395d668de9f 100644
--- a/libs/key-management/src/key.service.spec.ts
+++ b/libs/key-management/src/key.service.spec.ts
@@ -7,6 +7,10 @@ import { PinServiceAbstraction } from "@bitwarden/auth/common";
 import { EncryptedOrganizationKeyData } from "@bitwarden/common/admin-console/models/data/encrypted-organization-key.data";
 import { CryptoFunctionService } from "@bitwarden/common/key-management/crypto/abstractions/crypto-function.service";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import {
+  EncString,
+  EncryptedString,
+} from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { FakeMasterPasswordService } from "@bitwarden/common/key-management/master-password/services/fake-master-password.service";
 import { VaultTimeoutStringType } from "@bitwarden/common/key-management/vault-timeout";
 import { VAULT_TIMEOUT } from "@bitwarden/common/key-management/vault-timeout/services/vault-timeout-settings.state";
@@ -17,7 +21,6 @@ import { StateService } from "@bitwarden/common/platform/abstractions/state.serv
 import { KeySuffixOptions } from "@bitwarden/common/platform/enums";
 import { Encrypted } from "@bitwarden/common/platform/interfaces/encrypted";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
-import { EncString, EncryptedString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import { USER_ENCRYPTED_ORGANIZATION_KEYS } from "@bitwarden/common/platform/services/key-state/org-keys.state";
 import { USER_ENCRYPTED_PROVIDER_KEYS } from "@bitwarden/common/platform/services/key-state/provider-keys.state";
diff --git a/libs/key-management/src/key.service.ts b/libs/key-management/src/key.service.ts
index a8e75123b85..45aba21c0cf 100644
--- a/libs/key-management/src/key.service.ts
+++ b/libs/key-management/src/key.service.ts
@@ -21,6 +21,10 @@ import { ProfileProviderResponse } from "@bitwarden/common/admin-console/models/
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { CryptoFunctionService } from "@bitwarden/common/key-management/crypto/abstractions/crypto-function.service";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import {
+  EncString,
+  EncryptedString,
+} from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { InternalMasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
 import { VaultTimeoutStringType } from "@bitwarden/common/key-management/vault-timeout";
 import { VAULT_TIMEOUT } from "@bitwarden/common/key-management/vault-timeout/services/vault-timeout-settings.state";
@@ -32,7 +36,6 @@ import { KeySuffixOptions, HashPurpose, EncryptionType } from "@bitwarden/common
 import { convertValues } from "@bitwarden/common/platform/misc/convert-values";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
 import { EFFLongWordList } from "@bitwarden/common/platform/misc/wordlist";
-import { EncString, EncryptedString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import { USER_ENCRYPTED_ORGANIZATION_KEYS } from "@bitwarden/common/platform/services/key-state/org-keys.state";
 import { USER_ENCRYPTED_PROVIDER_KEYS } from "@bitwarden/common/platform/services/key-state/provider-keys.state";
diff --git a/libs/key-management/src/user-asymmetric-key-regeneration/abstractions/user-asymmetric-key-regeneration-api.service.ts b/libs/key-management/src/user-asymmetric-key-regeneration/abstractions/user-asymmetric-key-regeneration-api.service.ts
index 2b6e093d796..3ec8a4ae5e3 100644
--- a/libs/key-management/src/user-asymmetric-key-regeneration/abstractions/user-asymmetric-key-regeneration-api.service.ts
+++ b/libs/key-management/src/user-asymmetric-key-regeneration/abstractions/user-asymmetric-key-regeneration-api.service.ts
@@ -1,4 +1,4 @@
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 
 export abstract class UserAsymmetricKeysRegenerationApiService {
   abstract regenerateUserAsymmetricKeys(
diff --git a/libs/key-management/src/user-asymmetric-key-regeneration/models/requests/key-regeneration.request.ts b/libs/key-management/src/user-asymmetric-key-regeneration/models/requests/key-regeneration.request.ts
index 2d3b62aedad..0a03cb8655c 100644
--- a/libs/key-management/src/user-asymmetric-key-regeneration/models/requests/key-regeneration.request.ts
+++ b/libs/key-management/src/user-asymmetric-key-regeneration/models/requests/key-regeneration.request.ts
@@ -1,4 +1,4 @@
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 
 export class KeyRegenerationRequest {
   userPublicKey: string;
diff --git a/libs/key-management/src/user-asymmetric-key-regeneration/services/default-user-asymmetric-key-regeneration-api.service.ts b/libs/key-management/src/user-asymmetric-key-regeneration/services/default-user-asymmetric-key-regeneration-api.service.ts
index d1fe89a74eb..a79bcfd0ef3 100644
--- a/libs/key-management/src/user-asymmetric-key-regeneration/services/default-user-asymmetric-key-regeneration-api.service.ts
+++ b/libs/key-management/src/user-asymmetric-key-regeneration/services/default-user-asymmetric-key-regeneration-api.service.ts
@@ -1,5 +1,5 @@
 import { ApiService } from "@bitwarden/common/abstractions/api.service";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 
 import { UserAsymmetricKeysRegenerationApiService } from "../abstractions/user-asymmetric-key-regeneration-api.service";
 import { KeyRegenerationRequest } from "../models/requests/key-regeneration.request";
diff --git a/libs/key-management/src/user-asymmetric-key-regeneration/services/default-user-asymmetric-key-regeneration.service.spec.ts b/libs/key-management/src/user-asymmetric-key-regeneration/services/default-user-asymmetric-key-regeneration.service.spec.ts
index 84d1dd7ad72..abccfee4c59 100644
--- a/libs/key-management/src/user-asymmetric-key-regeneration/services/default-user-asymmetric-key-regeneration.service.spec.ts
+++ b/libs/key-management/src/user-asymmetric-key-regeneration/services/default-user-asymmetric-key-regeneration.service.spec.ts
@@ -3,9 +3,9 @@ import { of, throwError } from "rxjs";
 
 import { ApiService } from "@bitwarden/common/abstractions/api.service";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import { EncryptedString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
-import { EncryptedString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import { ContainerService } from "@bitwarden/common/platform/services/container.service";
 import { MockSdkService } from "@bitwarden/common/platform/spec/mock-sdk.service";
diff --git a/libs/key-management/src/user-asymmetric-key-regeneration/services/default-user-asymmetric-key-regeneration.service.ts b/libs/key-management/src/user-asymmetric-key-regeneration/services/default-user-asymmetric-key-regeneration.service.ts
index dbdac6bfc99..3e837237895 100644
--- a/libs/key-management/src/user-asymmetric-key-regeneration/services/default-user-asymmetric-key-regeneration.service.ts
+++ b/libs/key-management/src/user-asymmetric-key-regeneration/services/default-user-asymmetric-key-regeneration.service.ts
@@ -2,10 +2,10 @@ import { combineLatest, firstValueFrom, map } from "rxjs";
 
 import { ApiService } from "@bitwarden/common/abstractions/api.service";
 import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { SdkService } from "@bitwarden/common/platform/abstractions/sdk/sdk.service";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { UserId } from "@bitwarden/common/types/guid";
 import { UserKey } from "@bitwarden/common/types/key";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
diff --git a/libs/tools/export/vault-export/vault-export-core/src/services/individual-vault-export.service.spec.ts b/libs/tools/export/vault-export/vault-export-core/src/services/individual-vault-export.service.spec.ts
index d539c85c94c..29dccb74f14 100644
--- a/libs/tools/export/vault-export/vault-export-core/src/services/individual-vault-export.service.spec.ts
+++ b/libs/tools/export/vault-export/vault-export-core/src/services/individual-vault-export.service.spec.ts
@@ -7,9 +7,12 @@ import { ApiService } from "@bitwarden/common/abstractions/api.service";
 import { AccountInfo, AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { CryptoFunctionService } from "@bitwarden/common/key-management/crypto/abstractions/crypto-function.service";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import {
+  EncryptedString,
+  EncString,
+} from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { CipherWithIdExport } from "@bitwarden/common/models/export/cipher-with-ids.export";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
-import { EncryptedString, EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { CipherId, UserId } from "@bitwarden/common/types/guid";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
 import { FolderService } from "@bitwarden/common/vault/abstractions/folder/folder.service.abstraction";
diff --git a/libs/tools/export/vault-export/vault-export-core/src/services/vault-export.service.spec.ts b/libs/tools/export/vault-export/vault-export-core/src/services/vault-export.service.spec.ts
index 931cb6af740..d6300bb9a06 100644
--- a/libs/tools/export/vault-export/vault-export-core/src/services/vault-export.service.spec.ts
+++ b/libs/tools/export/vault-export/vault-export-core/src/services/vault-export.service.spec.ts
@@ -6,9 +6,12 @@ import { ApiService } from "@bitwarden/common/abstractions/api.service";
 import { AccountInfo, AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { CryptoFunctionService } from "@bitwarden/common/key-management/crypto/abstractions/crypto-function.service";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
+import {
+  EncryptedString,
+  EncString,
+} from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { CipherWithIdExport } from "@bitwarden/common/models/export/cipher-with-ids.export";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
-import { EncryptedString, EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { UserId } from "@bitwarden/common/types/guid";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
 import { FolderService } from "@bitwarden/common/vault/abstractions/folder/folder.service.abstraction";
diff --git a/libs/tools/generator/extensions/history/src/legacy-password-history-decryptor.ts b/libs/tools/generator/extensions/history/src/legacy-password-history-decryptor.ts
index 4278f7e0e08..91998589bdd 100644
--- a/libs/tools/generator/extensions/history/src/legacy-password-history-decryptor.ts
+++ b/libs/tools/generator/extensions/history/src/legacy-password-history-decryptor.ts
@@ -1,5 +1,5 @@
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { UserId } from "@bitwarden/common/types/guid";
 import { KeyService } from "@bitwarden/key-management";
 
diff --git a/libs/tools/generator/extensions/history/src/local-generator-history.service.spec.ts b/libs/tools/generator/extensions/history/src/local-generator-history.service.spec.ts
index caff4234386..81335887f0d 100644
--- a/libs/tools/generator/extensions/history/src/local-generator-history.service.spec.ts
+++ b/libs/tools/generator/extensions/history/src/local-generator-history.service.spec.ts
@@ -2,7 +2,7 @@ import { mock } from "jest-mock-extended";
 import { firstValueFrom, of } from "rxjs";
 
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
-import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import { CsprngArray } from "@bitwarden/common/types/csprng";
 import { UserId } from "@bitwarden/common/types/guid";

From 5b27988454369843b3fe34f63906200fd828ad12 Mon Sep 17 00:00:00 2001
From: Bernd Schoolmann <mail@quexten.com>
Date: Wed, 16 Jul 2025 17:21:12 +0200
Subject: [PATCH 146/239] [PM-10448] Enable wayland where possible in Linux
 Desktop (#10359)

* Enable wayland where possible

* Update electron to 34.4.0

* Re-add snap libdbus fix

* Flatpak permissions for wayland

* Bump electron version to 35.5.1

* Switch to x11 socket from x11-fallback

* Fix package.json
---
 apps/desktop/electron-builder.json                         | 3 ++-
 apps/desktop/resources/com.bitwarden.desktop.devel.yaml    | 3 +++
 .../resources/{memory-dump-wrapper.sh => linux-wrapper.sh} | 7 +++++--
 apps/desktop/scripts/after-pack.js                         | 2 +-
 4 files changed, 11 insertions(+), 4 deletions(-)
 rename apps/desktop/resources/{memory-dump-wrapper.sh => linux-wrapper.sh} (62%)

diff --git a/apps/desktop/electron-builder.json b/apps/desktop/electron-builder.json
index 0c2ec58bc3e..832ab9d0bd3 100644
--- a/apps/desktop/electron-builder.json
+++ b/apps/desktop/electron-builder.json
@@ -262,7 +262,8 @@
       },
       "u2f-devices"
     ],
-    "stagePackages": ["default"]
+    "stagePackages": ["default"],
+    "allowNativeWayland": true
   },
   "protocols": [
     {
diff --git a/apps/desktop/resources/com.bitwarden.desktop.devel.yaml b/apps/desktop/resources/com.bitwarden.desktop.devel.yaml
index 3aeebfd809d..858fb6e1af2 100644
--- a/apps/desktop/resources/com.bitwarden.desktop.devel.yaml
+++ b/apps/desktop/resources/com.bitwarden.desktop.devel.yaml
@@ -8,6 +8,9 @@ command: bitwarden.sh
 finish-args:
   - --share=ipc
   - --share=network
+  - --socket=wayland
+  # This should be fallback-x11, but on gnome/mutter, zwlr_data_control_manager_v1 is not implemented
+  # so we need to use x11 as a fallback to make copy paste work
   - --socket=x11
   - --device=dri
   - --env=XDG_CURRENT_DESKTOP=Unity
diff --git a/apps/desktop/resources/memory-dump-wrapper.sh b/apps/desktop/resources/linux-wrapper.sh
similarity index 62%
rename from apps/desktop/resources/memory-dump-wrapper.sh
rename to apps/desktop/resources/linux-wrapper.sh
index 6737cc312f4..dd53eb9811c 100644
--- a/apps/desktop/resources/memory-dump-wrapper.sh
+++ b/apps/desktop/resources/linux-wrapper.sh
@@ -13,6 +13,9 @@ then
   export LD_PRELOAD="/usr/lib/x86_64-linux-gnu/libdbus-1.so.3"
 fi
 
-# pass through all args
-$APP_PATH/bitwarden-app "$@"
+PARAMS="--enable-features=UseOzonePlatform,WaylandWindowDecorations --ozone-platform-hint=auto"
+if [ "$USE_X11" = "true" ]; then
+  PARAMS=""
+fi
 
+$APP_PATH/bitwarden-app $PARAMS "$@"
diff --git a/apps/desktop/scripts/after-pack.js b/apps/desktop/scripts/after-pack.js
index 997edf2ed6a..5fc42f31ac3 100644
--- a/apps/desktop/scripts/after-pack.js
+++ b/apps/desktop/scripts/after-pack.js
@@ -25,7 +25,7 @@ async function run(context) {
     fse.moveSync(oldBin, newBin);
     console.log("Moved binary to bitwarden-app");
 
-    const wrapperScript = path.join(__dirname, "../resources/memory-dump-wrapper.sh");
+    const wrapperScript = path.join(__dirname, "../resources/linux-wrapper.sh");
     const wrapperBin = path.join(appOutDir, context.packager.executableName);
     fse.copyFileSync(wrapperScript, wrapperBin);
     fse.chmodSync(wrapperBin, "755");

From aa8505128f3956cf7a5a110cef62afd627c7058b Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Rui=20Tom=C3=A9?=
 <108268980+r-tome@users.noreply.github.com>
Date: Wed, 16 Jul 2025 16:36:34 +0100
Subject: [PATCH 147/239] [PM-20167] Refactor: Remove
 SeparateCustomRolePermissions feature flag and flagged logic (#15628)

---
 .../member-dialog.component.html              |  8 +------
 .../member-dialog/member-dialog.component.ts  | 23 -------------------
 .../members/members.component.ts              | 14 ++---------
 libs/common/src/enums/feature-flag.enum.ts    |  2 --
 4 files changed, 3 insertions(+), 44 deletions(-)

diff --git a/apps/web/src/app/admin-console/organizations/members/components/member-dialog/member-dialog.component.html b/apps/web/src/app/admin-console/organizations/members/components/member-dialog/member-dialog.component.html
index fa0a7bd85a3..9dd3a791b63 100644
--- a/apps/web/src/app/admin-console/organizations/members/components/member-dialog/member-dialog.component.html
+++ b/apps/web/src/app/admin-console/organizations/members/components/member-dialog/member-dialog.component.html
@@ -134,17 +134,11 @@
                       type="checkbox"
                       bitCheckbox
                       formControlName="manageUsers"
-                      (change)="handleDependentPermissions()"
                     />
                     <bit-label>{{ "manageUsers" | i18n }}</bit-label>
                   </bit-form-control>
                   <bit-form-control>
-                    <input
-                      type="checkbox"
-                      bitCheckbox
-                      formControlName="manageResetPassword"
-                      (change)="handleDependentPermissions()"
-                    />
+                    <input type="checkbox" bitCheckbox formControlName="manageResetPassword" />
                     <bit-label>{{ "manageAccountRecovery" | i18n }}</bit-label>
                   </bit-form-control>
                 </div>
diff --git a/apps/web/src/app/admin-console/organizations/members/components/member-dialog/member-dialog.component.ts b/apps/web/src/app/admin-console/organizations/members/components/member-dialog/member-dialog.component.ts
index 9adfb1db3f2..c6a60165fe1 100644
--- a/apps/web/src/app/admin-console/organizations/members/components/member-dialog/member-dialog.component.ts
+++ b/apps/web/src/app/admin-console/organizations/members/components/member-dialog/member-dialog.component.ts
@@ -33,7 +33,6 @@ import { PermissionsApi } from "@bitwarden/common/admin-console/models/api/permi
 import { Organization } from "@bitwarden/common/admin-console/models/domain/organization";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { ProductTierType } from "@bitwarden/common/billing/enums";
-import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
 import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import {
@@ -453,28 +452,6 @@ export class MemberDialogComponent implements OnDestroy {
     return Object.assign(p, partialPermissions);
   }
 
-  async handleDependentPermissions() {
-    const separateCustomRolePermissions = await this.configService.getFeatureFlag(
-      FeatureFlag.SeparateCustomRolePermissions,
-    );
-    if (separateCustomRolePermissions) {
-      return;
-    }
-    // Manage Password Reset (Account Recovery) must have Manage Users enabled
-    if (
-      this.permissionsGroup.value.manageResetPassword &&
-      !this.permissionsGroup.value.manageUsers
-    ) {
-      this.permissionsGroup.value.manageUsers = true;
-      (document.getElementById("manageUsers") as HTMLInputElement).checked = true;
-      this.toastService.showToast({
-        variant: "info",
-        title: null,
-        message: this.i18nService.t("accountRecoveryManageUsers"),
-      });
-    }
-  }
-
   submit = async () => {
     this.formGroup.markAllAsTouched();
 
diff --git a/apps/web/src/app/admin-console/organizations/members/members.component.ts b/apps/web/src/app/admin-console/organizations/members/members.component.ts
index 0247a8c881b..3f567c9673b 100644
--- a/apps/web/src/app/admin-console/organizations/members/members.component.ts
+++ b/apps/web/src/app/admin-console/organizations/members/members.component.ts
@@ -244,18 +244,8 @@ export class MembersComponent extends BaseMembersComponent<OrganizationUserView>
       )
       .subscribe();
 
-    // Setup feature flag-dependent observables
-    const separateCustomRolePermissionsEnabled$ = this.configService.getFeatureFlag$(
-      FeatureFlag.SeparateCustomRolePermissions,
-    );
-    this.showUserManagementControls$ = combineLatest([
-      separateCustomRolePermissionsEnabled$,
-      organization$,
-    ]).pipe(
-      map(
-        ([separateCustomRolePermissionsEnabled, organization]) =>
-          !separateCustomRolePermissionsEnabled || organization.canManageUsers,
-      ),
+    this.showUserManagementControls$ = organization$.pipe(
+      map((organization) => organization.canManageUsers),
     );
   }
 
diff --git a/libs/common/src/enums/feature-flag.enum.ts b/libs/common/src/enums/feature-flag.enum.ts
index 5e227dff7c7..da14f7dada3 100644
--- a/libs/common/src/enums/feature-flag.enum.ts
+++ b/libs/common/src/enums/feature-flag.enum.ts
@@ -11,7 +11,6 @@ import { ServerConfig } from "../platform/abstractions/config/server-config";
 // eslint-disable-next-line @bitwarden/platform/no-enums
 export enum FeatureFlag {
   /* Admin Console Team */
-  SeparateCustomRolePermissions = "pm-19917-separate-custom-role-permissions",
   CreateDefaultLocation = "pm-19467-create-default-location",
 
   /* Auth */
@@ -78,7 +77,6 @@ const FALSE = false as boolean;
  */
 export const DefaultFeatureFlagValue = {
   /* Admin Console Team */
-  [FeatureFlag.SeparateCustomRolePermissions]: FALSE,
   [FeatureFlag.CreateDefaultLocation]: FALSE,
 
   /* Autofill */

From 35819aa2e347134a1a4d1bb9a7ce331923b3ab1f Mon Sep 17 00:00:00 2001
From: Patrick-Pimentel-Bitwarden <ppimentel@bitwarden.com>
Date: Wed, 16 Jul 2025 14:14:03 -0400
Subject: [PATCH 148/239] fix(change-password): [PM-23811] Callout Missing Bug
 (#15638)

* fix(change-password): [PM-23811] Tooltip Missing Bug - Fixed import to show tooltip.

* fix(change-password-component): Change Password Update [18720] - Changed to use common module.
---
 .../change-password/change-password.component.ts               | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/libs/angular/src/auth/password-management/change-password/change-password.component.ts b/libs/angular/src/auth/password-management/change-password/change-password.component.ts
index 78128962384..02738d33321 100644
--- a/libs/angular/src/auth/password-management/change-password/change-password.component.ts
+++ b/libs/angular/src/auth/password-management/change-password/change-password.component.ts
@@ -1,3 +1,4 @@
+import { CommonModule } from "@angular/common";
 import { Component, Input, OnInit } from "@angular/core";
 import { firstValueFrom } from "rxjs";
 
@@ -41,7 +42,7 @@ import { ChangePasswordService } from "./change-password.service.abstraction";
 @Component({
   selector: "auth-change-password",
   templateUrl: "change-password.component.html",
-  imports: [InputPasswordComponent, I18nPipe, CalloutComponent],
+  imports: [InputPasswordComponent, I18nPipe, CalloutComponent, CommonModule],
 })
 export class ChangePasswordComponent implements OnInit {
   @Input() inputPasswordFlow: InputPasswordFlow = InputPasswordFlow.ChangePassword;

From 24e8f0d75db1262c45bda24af6be281e1dcd37b7 Mon Sep 17 00:00:00 2001
From: Nick Krantz <125900171+nick-livefront@users.noreply.github.com>
Date: Wed, 16 Jul 2025 13:22:51 -0500
Subject: [PATCH 149/239] [PM-23157] Autofill - Master Reprompt (#15431)

* delay setting `this.cipher` until reprompt is verified

* handle failures of reprompt

* do not show cipher after copy password or copy totp fails
---
 .../view-v2/view-v2.component.spec.ts         | 89 ++++++++++++++++++-
 .../vault-v2/view-v2/view-v2.component.ts     | 67 ++++++++------
 2 files changed, 130 insertions(+), 26 deletions(-)

diff --git a/apps/browser/src/vault/popup/components/vault-v2/view-v2/view-v2.component.spec.ts b/apps/browser/src/vault/popup/components/vault-v2/view-v2/view-v2.component.spec.ts
index a9031ea2630..28be3439f24 100644
--- a/apps/browser/src/vault/popup/components/vault-v2/view-v2/view-v2.component.spec.ts
+++ b/apps/browser/src/vault/popup/components/vault-v2/view-v2/view-v2.component.spec.ts
@@ -20,7 +20,7 @@ import { Utils } from "@bitwarden/common/platform/misc/utils";
 import { FakeAccountService, mockAccountServiceWith } from "@bitwarden/common/spec";
 import { UserId } from "@bitwarden/common/types/guid";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
-import { CipherType } from "@bitwarden/common/vault/enums";
+import { CipherRepromptType, CipherType } from "@bitwarden/common/vault/enums";
 import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
 import { CipherAuthorizationService } from "@bitwarden/common/vault/services/cipher-authorization.service";
 import { DialogService, ToastService } from "@bitwarden/components";
@@ -241,6 +241,93 @@ describe("ViewV2Component", () => {
       expect(copy).toHaveBeenCalledTimes(1);
     }));
 
+    it("does not set the cipher until reprompt is complete", fakeAsync(() => {
+      let promptPromise: (val?: unknown) => void;
+      mockCipherService.decrypt.mockImplementationOnce(() =>
+        Promise.resolve({
+          ...mockCipher,
+          reprompt: CipherRepromptType.Password,
+        }),
+      );
+      doAutofill.mockImplementationOnce(() => {
+        return new Promise((resolve) => {
+          // store the promise resolver to manually trigger the promise resolve
+          promptPromise = resolve;
+        });
+      });
+
+      params$.next({ action: AUTOFILL_ID });
+
+      flush(); // Flush all pending actions
+
+      expect(component.cipher).toBeUndefined();
+      expect(doAutofill).toHaveBeenCalled();
+
+      promptPromise!(true); // resolve the password prompt
+
+      flush();
+      expect(component.cipher).toEqual({ ...mockCipher, reprompt: CipherRepromptType.Password });
+    }));
+
+    it("does not set the cipher at all if doAutofill fails and reprompt is active", fakeAsync(() => {
+      let promptPromise: (val?: unknown) => void;
+      mockCipherService.decrypt.mockImplementationOnce(() =>
+        Promise.resolve({
+          ...mockCipher,
+          reprompt: CipherRepromptType.Password,
+        }),
+      );
+      doAutofill.mockImplementationOnce(() => {
+        return new Promise((resolve) => {
+          // store the promise resolver to manually trigger the promise resolve
+          promptPromise = resolve;
+        });
+      });
+
+      params$.next({ action: AUTOFILL_ID });
+
+      flush(); // Flush all pending actions
+
+      expect(component.cipher).toBeUndefined();
+      expect(doAutofill).toHaveBeenCalled();
+
+      promptPromise!(false); // resolve the password prompt
+
+      flush();
+      expect(component.cipher).toBeUndefined();
+    }));
+
+    it.each([COPY_PASSWORD_ID, COPY_VERIFICATION_CODE_ID])(
+      "does not set cipher when copy fails for %s",
+      fakeAsync((action: string) => {
+        let promptPromise: (val?: unknown) => void;
+        mockCipherService.decrypt.mockImplementationOnce(() =>
+          Promise.resolve({
+            ...mockCipher,
+            reprompt: CipherRepromptType.Password,
+          }),
+        );
+        copy.mockImplementationOnce(() => {
+          return new Promise((resolve) => {
+            // store the promise resolver to manually trigger the promise resolve
+            promptPromise = resolve;
+          });
+        });
+
+        params$.next({ action });
+
+        flush(); // Flush all pending actions
+
+        expect(component.cipher).toBeUndefined();
+        expect(copy).toHaveBeenCalled();
+
+        promptPromise!(false); // resolve the password prompt
+
+        flush();
+        expect(component.cipher).toBeUndefined();
+      }),
+    );
+
     it("closes the popout after a load action", fakeAsync(() => {
       jest.spyOn(BrowserPopupUtils, "inPopout").mockReturnValueOnce(true);
       jest.spyOn(BrowserPopupUtils, "inSingleActionPopout").mockReturnValueOnce(true);
diff --git a/apps/browser/src/vault/popup/components/vault-v2/view-v2/view-v2.component.ts b/apps/browser/src/vault/popup/components/vault-v2/view-v2/view-v2.component.ts
index 349ea136ecf..69bce9c47d2 100644
--- a/apps/browser/src/vault/popup/components/vault-v2/view-v2/view-v2.component.ts
+++ b/apps/browser/src/vault/popup/components/vault-v2/view-v2/view-v2.component.ts
@@ -31,6 +31,7 @@ import { ViewPasswordHistoryService } from "@bitwarden/common/vault/abstractions
 import { CipherRepromptType, CipherType } from "@bitwarden/common/vault/enums";
 import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
 import { CipherAuthorizationService } from "@bitwarden/common/vault/services/cipher-authorization.service";
+import { filterOutNullish } from "@bitwarden/common/vault/utils/observable-utilities";
 import {
   AsyncActionsModule,
   ButtonModule,
@@ -139,21 +140,39 @@ export class ViewV2Component {
           this.loadAction = params.action;
           this.senderTabId = params.senderTabId ? parseInt(params.senderTabId, 10) : undefined;
 
-          const activeUserId = await firstValueFrom(
+          this.activeUserId = await firstValueFrom(
             this.accountService.activeAccount$.pipe(getUserId),
           );
-          const cipher = await this.getCipherData(params.cipherId, activeUserId);
-          return { activeUserId, cipher };
-        }),
-        switchMap(async ({ activeUserId, cipher }) => {
-          this.cipher = cipher;
-          this.headerText = this.setHeader(cipher.type);
-          this.activeUserId = activeUserId;
 
+          const cipher = await this.getCipherData(params.cipherId, this.activeUserId);
+          this.headerText = this.setHeader(cipher.type);
+
+          // Handling the load action needs to take place before setting `this.cipher`,
+          // This is important for scenarios where the action requires a password re-prompt.
+          // For those instances, no cipher details should be shown behind the re-prompt dialog until the password has been verified.
           if (this.loadAction) {
-            await this._handleLoadAction(this.loadAction, this.senderTabId);
+            const success = await this._handleLoadAction(this.loadAction, cipher, this.senderTabId);
+
+            // When the action is not successful and the cipher has a reprompt enabled,
+            // The cipher details can flash on the screen before the popout closes,
+            // pass `null` to prevent this.
+            if (
+              [AUTOFILL_ID, COPY_PASSWORD_ID, COPY_VERIFICATION_CODE_ID].includes(
+                this.loadAction,
+              ) &&
+              success === false &&
+              cipher.reprompt !== CipherRepromptType.None
+            ) {
+              return null;
+            }
           }
 
+          return cipher;
+        }),
+        filterOutNullish(),
+        switchMap(async (cipher) => {
+          this.cipher = cipher;
+
           this.canDeleteCipher$ = this.cipherAuthorizationService.canDeleteCipher$(cipher);
 
           this.showFooter$ = of(
@@ -262,50 +281,46 @@ export class ViewV2Component {
    * via the extension context menu. It is necessary to render the view for items that have password
    * reprompt enabled.
    * @param loadAction
+   * @param cipher - The cipher being viewed, passed as a param because `this.cipher` may not be set yet.
    * @param senderTabId
    * @private
    */
   private async _handleLoadAction(
     loadAction: LoadAction,
+    cipher: CipherView,
     senderTabId?: number,
   ): Promise<void | boolean> {
     let actionSuccess = false;
 
-    // Both vaultPopupAutofillService and copyCipherFieldService will perform password re-prompting internally.
-
     switch (loadAction) {
       case SHOW_AUTOFILL_BUTTON:
         // This action simply shows the cipher view, no need to do anything.
         if (
-          this.cipher.reprompt !== CipherRepromptType.None &&
+          cipher.reprompt !== CipherRepromptType.None &&
           !(await this.passwordRepromptService.showPasswordPrompt())
         ) {
-          await closeViewVaultItemPopout(`${VaultPopoutType.viewVaultItem}_${this.cipher.id}`);
+          await closeViewVaultItemPopout(`${VaultPopoutType.viewVaultItem}_${cipher.id}`);
         }
         return;
       case AUTOFILL_ID:
-        actionSuccess = await this.vaultPopupAutofillService.doAutofill(this.cipher, false);
+        actionSuccess = await this.vaultPopupAutofillService.doAutofill(cipher, false);
         break;
       case COPY_USERNAME_ID:
         actionSuccess = await this.copyCipherFieldService.copy(
-          this.cipher.login.username,
+          cipher.login.username,
           "username",
-          this.cipher,
+          cipher,
         );
         break;
       case COPY_PASSWORD_ID:
         actionSuccess = await this.copyCipherFieldService.copy(
-          this.cipher.login.password,
+          cipher.login.password,
           "password",
-          this.cipher,
+          cipher,
         );
         break;
       case COPY_VERIFICATION_CODE_ID:
-        actionSuccess = await this.copyCipherFieldService.copy(
-          this.cipher.login.totp,
-          "totp",
-          this.cipher,
-        );
+        actionSuccess = await this.copyCipherFieldService.copy(cipher.login.totp, "totp", cipher);
         break;
       case UPDATE_PASSWORD: {
         const repromptSuccess = await this.passwordRepromptService.showPasswordPrompt();
@@ -315,7 +330,7 @@ export class ViewV2Component {
           success: repromptSuccess,
         });
 
-        await closeViewVaultItemPopout(`${VaultPopoutType.viewVaultItem}_${this.cipher.id}`);
+        await closeViewVaultItemPopout(`${VaultPopoutType.viewVaultItem}_${cipher.id}`);
 
         break;
       }
@@ -329,7 +344,7 @@ export class ViewV2Component {
             senderTabId
           ) {
             await BrowserApi.focusTab(senderTabId);
-            await closeViewVaultItemPopout(`${VaultPopoutType.viewVaultItem}_${this.cipher.id}`);
+            await closeViewVaultItemPopout(`${VaultPopoutType.viewVaultItem}_${cipher.id}`);
           } else {
             await this.popupRouterCacheService.back();
           }
@@ -337,5 +352,7 @@ export class ViewV2Component {
         actionSuccess ? 1000 : 0,
       );
     }
+
+    return actionSuccess;
   }
 }

From 2086e7ae87829f4619da76e41e839752f4ba9b3b Mon Sep 17 00:00:00 2001
From: Ned Thompson <nthompson@bitwarden.com>
Date: Wed, 16 Jul 2025 15:01:40 -0400
Subject: [PATCH 150/239] add data-testids to address and tax inputs (#15637)

---
 .../enter-billing-address.component.ts        | 14 +++++-
 .../billing/shared/tax-info.component.html    | 44 ++++++++++++++++---
 .../manage-tax-information.component.html     | 44 ++++++++++++++++---
 3 files changed, 86 insertions(+), 16 deletions(-)

diff --git a/apps/web/src/app/billing/payment/components/enter-billing-address.component.ts b/apps/web/src/app/billing/payment/components/enter-billing-address.component.ts
index 0419828d8ba..ab59e965b4e 100644
--- a/apps/web/src/app/billing/payment/components/enter-billing-address.component.ts
+++ b/apps/web/src/app/billing/payment/components/enter-billing-address.component.ts
@@ -38,7 +38,7 @@ type Scenario =
         <div class="tw-col-span-6">
           <bit-form-field [disableMargin]="true">
             <bit-label>{{ "country" | i18n }}</bit-label>
-            <bit-select [formControl]="group.controls.country">
+            <bit-select [formControl]="group.controls.country" data-testid="country">
               @for (selectableCountry of selectableCountries; track selectableCountry.value) {
                 <bit-option
                   [value]="selectableCountry.value"
@@ -57,6 +57,7 @@ type Scenario =
               type="text"
               [formControl]="group.controls.postalCode"
               autocomplete="postal-code"
+              data-testid="postal-code"
             />
           </bit-form-field>
         </div>
@@ -68,6 +69,7 @@ type Scenario =
               type="text"
               [formControl]="group.controls.line1"
               autocomplete="address-line1"
+              data-testid="address-line1"
             />
           </bit-form-field>
         </div>
@@ -79,6 +81,7 @@ type Scenario =
               type="text"
               [formControl]="group.controls.line2"
               autocomplete="address-line2"
+              data-testid="address-line2"
             />
           </bit-form-field>
         </div>
@@ -90,6 +93,7 @@ type Scenario =
               type="text"
               [formControl]="group.controls.city"
               autocomplete="address-level2"
+              data-testid="city"
             />
           </bit-form-field>
         </div>
@@ -101,6 +105,7 @@ type Scenario =
               type="text"
               [formControl]="group.controls.state"
               autocomplete="address-level1"
+              data-testid="state"
             />
           </bit-form-field>
         </div>
@@ -108,7 +113,12 @@ type Scenario =
           <div class="tw-col-span-6">
             <bit-form-field [disableMargin]="true">
               <bit-label>{{ "taxIdNumber" | i18n }}</bit-label>
-              <input bitInput type="text" [formControl]="group.controls.taxId" />
+              <input
+                bitInput
+                type="text"
+                [formControl]="group.controls.taxId"
+                data-testid="tax-id"
+              />
             </bit-form-field>
           </div>
         }
diff --git a/apps/web/src/app/billing/shared/tax-info.component.html b/apps/web/src/app/billing/shared/tax-info.component.html
index 4a42c0c1109..ca2ae046f6e 100644
--- a/apps/web/src/app/billing/shared/tax-info.component.html
+++ b/apps/web/src/app/billing/shared/tax-info.component.html
@@ -3,7 +3,7 @@
     <div class="tw-col-span-6">
       <bit-form-field>
         <bit-label>{{ "country" | i18n }}</bit-label>
-        <bit-select formControlName="country" autocomplete="country">
+        <bit-select formControlName="country" autocomplete="country" data-testid="country">
           <bit-option
             *ngFor="let country of countryList"
             [value]="country.value"
@@ -16,37 +16,67 @@
     <div class="tw-col-span-6">
       <bit-form-field>
         <bit-label>{{ "zipPostalCode" | i18n }}</bit-label>
-        <input bitInput type="text" formControlName="postalCode" autocomplete="postal-code" />
+        <input
+          bitInput
+          type="text"
+          formControlName="postalCode"
+          autocomplete="postal-code"
+          data-testid="postal-code"
+        />
       </bit-form-field>
     </div>
     <div class="tw-col-span-6" *ngIf="isTaxSupported">
       <bit-form-field>
         <bit-label>{{ "address1" | i18n }}</bit-label>
-        <input bitInput type="text" formControlName="line1" autocomplete="address-line1" />
+        <input
+          bitInput
+          type="text"
+          formControlName="line1"
+          autocomplete="address-line1"
+          data-testid="address-line1"
+        />
       </bit-form-field>
     </div>
     <div class="tw-col-span-6" *ngIf="isTaxSupported">
       <bit-form-field>
         <bit-label>{{ "address2" | i18n }}</bit-label>
-        <input bitInput type="text" formControlName="line2" autocomplete="address-line2" />
+        <input
+          bitInput
+          type="text"
+          formControlName="line2"
+          autocomplete="address-line2"
+          data-testid="address-line2"
+        />
       </bit-form-field>
     </div>
     <div class="tw-col-span-6" *ngIf="isTaxSupported">
       <bit-form-field>
         <bit-label for="addressCity">{{ "cityTown" | i18n }}</bit-label>
-        <input bitInput type="text" formControlName="city" autocomplete="address-level2" />
+        <input
+          bitInput
+          type="text"
+          formControlName="city"
+          autocomplete="address-level2"
+          data-testid="city"
+        />
       </bit-form-field>
     </div>
     <div class="tw-col-span-6" *ngIf="isTaxSupported">
       <bit-form-field>
         <bit-label>{{ "stateProvince" | i18n }}</bit-label>
-        <input bitInput type="text" formControlName="state" autocomplete="address-level1" />
+        <input
+          bitInput
+          type="text"
+          formControlName="state"
+          autocomplete="address-level1"
+          data-testid="state"
+        />
       </bit-form-field>
     </div>
     <div class="tw-col-span-6" *ngIf="isTaxSupported && showTaxIdField">
       <bit-form-field>
         <bit-label>{{ "taxIdNumber" | i18n }}</bit-label>
-        <input bitInput type="text" formControlName="taxId" />
+        <input bitInput type="text" formControlName="taxId" data-testid="tax-id" />
       </bit-form-field>
     </div>
   </div>
diff --git a/libs/angular/src/billing/components/manage-tax-information/manage-tax-information.component.html b/libs/angular/src/billing/components/manage-tax-information/manage-tax-information.component.html
index 3f635656fb7..391765251b0 100644
--- a/libs/angular/src/billing/components/manage-tax-information/manage-tax-information.component.html
+++ b/libs/angular/src/billing/components/manage-tax-information/manage-tax-information.component.html
@@ -3,7 +3,7 @@
     <div class="tw-col-span-6">
       <bit-form-field disableMargin>
         <bit-label>{{ "country" | i18n }}</bit-label>
-        <bit-select formControlName="country">
+        <bit-select formControlName="country" data-testid="country">
           <bit-option
             *ngFor="let country of countries"
             [value]="country.value"
@@ -16,38 +16,68 @@
     <div class="tw-col-span-6">
       <bit-form-field disableMargin>
         <bit-label>{{ "zipPostalCode" | i18n }}</bit-label>
-        <input bitInput type="text" formControlName="postalCode" autocomplete="postal-code" />
+        <input
+          bitInput
+          type="text"
+          formControlName="postalCode"
+          autocomplete="postal-code"
+          data-testid="postal-code"
+        />
       </bit-form-field>
     </div>
     <ng-container *ngIf="isTaxSupported">
       <div class="tw-col-span-6">
         <bit-form-field disableMargin>
           <bit-label>{{ "address1" | i18n }}</bit-label>
-          <input bitInput type="text" formControlName="line1" autocomplete="address-line1" />
+          <input
+            bitInput
+            type="text"
+            formControlName="line1"
+            autocomplete="address-line1"
+            data-testid="address-line1"
+          />
         </bit-form-field>
       </div>
       <div class="tw-col-span-6">
         <bit-form-field disableMargin>
           <bit-label>{{ "address2" | i18n }}</bit-label>
-          <input bitInput type="text" formControlName="line2" autocomplete="address-line2" />
+          <input
+            bitInput
+            type="text"
+            formControlName="line2"
+            autocomplete="address-line2"
+            data-testid="address-line2"
+          />
         </bit-form-field>
       </div>
       <div class="tw-col-span-6">
         <bit-form-field disableMargin>
           <bit-label>{{ "cityTown" | i18n }}</bit-label>
-          <input bitInput type="text" formControlName="city" autocomplete="address-level2" />
+          <input
+            bitInput
+            type="text"
+            formControlName="city"
+            autocomplete="address-level2"
+            data-testid="city"
+          />
         </bit-form-field>
       </div>
       <div class="tw-col-span-6">
         <bit-form-field disableMargin>
           <bit-label>{{ "stateProvince" | i18n }}</bit-label>
-          <input bitInput type="text" formControlName="state" autocomplete="address-level1" />
+          <input
+            bitInput
+            type="text"
+            formControlName="state"
+            autocomplete="address-level1"
+            data-testid="state"
+          />
         </bit-form-field>
       </div>
       <div class="tw-col-span-6" *ngIf="showTaxIdField">
         <bit-form-field disableMargin>
           <bit-label>{{ "taxIdNumber" | i18n }}</bit-label>
-          <input bitInput type="text" formControlName="taxId" />
+          <input bitInput type="text" formControlName="taxId" data-testid="tax-id" />
         </bit-form-field>
       </div>
     </ng-container>

From 0cebdd458152e897c0953dbdd179fef9168a1ce8 Mon Sep 17 00:00:00 2001
From: Jason Ng <jng@bitwarden.com>
Date: Wed, 16 Jul 2025 15:32:06 -0400
Subject: [PATCH 151/239] [PM-23813] apply dismiss check when setting status
 inside nudge services addressing footer lag in FF. (#15639)

---
 .../account-security-nudge.service.ts                       | 5 ++++-
 .../custom-nudges-services/has-items-nudge.service.ts       | 6 +++++-
 .../custom-nudges-services/new-item-nudge.service.ts        | 2 +-
 3 files changed, 10 insertions(+), 3 deletions(-)

diff --git a/libs/angular/src/vault/services/custom-nudges-services/account-security-nudge.service.ts b/libs/angular/src/vault/services/custom-nudges-services/account-security-nudge.service.ts
index a64a4aa975c..dc3f39793d3 100644
--- a/libs/angular/src/vault/services/custom-nudges-services/account-security-nudge.service.ts
+++ b/libs/angular/src/vault/services/custom-nudges-services/account-security-nudge.service.ts
@@ -74,7 +74,10 @@ export class AccountSecurityNudgeService extends DefaultSingleNudgeService {
             hasSpotlightDismissed: status.hasSpotlightDismissed || hideNudge,
           };
 
-          if (isPinSet || biometricUnlockEnabled || hasOrgWithRemovePinPolicyOn) {
+          if (
+            (isPinSet || biometricUnlockEnabled || hasOrgWithRemovePinPolicyOn) &&
+            !status.hasSpotlightDismissed
+          ) {
             await this.setNudgeStatus(nudgeType, acctSecurityNudgeStatus, userId);
           }
           return acctSecurityNudgeStatus;
diff --git a/libs/angular/src/vault/services/custom-nudges-services/has-items-nudge.service.ts b/libs/angular/src/vault/services/custom-nudges-services/has-items-nudge.service.ts
index 61fb08ae8c1..d030b37dbd1 100644
--- a/libs/angular/src/vault/services/custom-nudges-services/has-items-nudge.service.ts
+++ b/libs/angular/src/vault/services/custom-nudges-services/has-items-nudge.service.ts
@@ -44,7 +44,11 @@ export class HasItemsNudgeService extends DefaultSingleNudgeService {
           return cipher.deletedDate == null;
         });
 
-        if (profileOlderThanCutoff && filteredCiphers.length > 0) {
+        if (
+          profileOlderThanCutoff &&
+          filteredCiphers.length > 0 &&
+          !nudgeStatus.hasSpotlightDismissed
+        ) {
           const dismissedStatus = {
             hasSpotlightDismissed: true,
             hasBadgeDismissed: true,
diff --git a/libs/angular/src/vault/services/custom-nudges-services/new-item-nudge.service.ts b/libs/angular/src/vault/services/custom-nudges-services/new-item-nudge.service.ts
index 2202e88111e..e89b877562a 100644
--- a/libs/angular/src/vault/services/custom-nudges-services/new-item-nudge.service.ts
+++ b/libs/angular/src/vault/services/custom-nudges-services/new-item-nudge.service.ts
@@ -49,7 +49,7 @@ export class NewItemNudgeService extends DefaultSingleNudgeService {
 
         const ciphersBoolean = ciphers.some((cipher) => cipher.type === currentType);
 
-        if (ciphersBoolean) {
+        if (ciphersBoolean && !nudgeStatus.hasSpotlightDismissed) {
           const dismissedStatus = {
             hasSpotlightDismissed: true,
             hasBadgeDismissed: true,

From 60419bd96ff7ec02eed6a85cdbc3b64cafba78cc Mon Sep 17 00:00:00 2001
From: Jordan Aasen <166539328+jaasen-livefront@users.noreply.github.com>
Date: Wed, 16 Jul 2025 13:39:38 -0600
Subject: [PATCH 152/239] add new-cipher-menu component (#15467)

* add new-cipher-menu component

* move new cipher menu to vault. clean up template
---
 .../vault-header/vault-header.component.html  | 49 +++----------------
 .../vault-header/vault-header.component.ts    |  2 +
 .../vault-items/vault-items.component.ts      |  2 +-
 .../vault-header/vault-header.component.html  | 38 +++-----------
 .../vault-header/vault-header.component.ts    | 21 ++------
 apps/web/src/locales/en/messages.json         |  5 +-
 .../new-cipher-menu.component.html            | 37 ++++++++++++++
 .../new-cipher-menu.component.ts              | 38 ++++++++++++++
 libs/vault/src/index.ts                       |  1 +
 9 files changed, 100 insertions(+), 93 deletions(-)
 create mode 100644 libs/vault/src/components/new-cipher-menu/new-cipher-menu.component.html
 create mode 100644 libs/vault/src/components/new-cipher-menu/new-cipher-menu.component.ts

diff --git a/apps/web/src/app/admin-console/organizations/collections/vault-header/vault-header.component.html b/apps/web/src/app/admin-console/organizations/collections/vault-header/vault-header.component.html
index 60214a9fd61..dc5d4c7929e 100644
--- a/apps/web/src/app/admin-console/organizations/collections/vault-header/vault-header.component.html
+++ b/apps/web/src/app/admin-console/organizations/collections/vault-header/vault-header.component.html
@@ -103,48 +103,11 @@
     *ngIf="filter.type !== 'trash' && filter.collectionId !== Unassigned && organization"
     class="tw-shrink-0"
   >
-    <!-- "New" menu is always shown unless the user cannot create a cipher and cannot create a collection-->
-    <ng-container *ngIf="canCreateCipher || canCreateCollection">
-      <div appListDropdown>
-        <button
-          bitButton
-          buttonType="primary"
-          type="button"
-          [bitMenuTriggerFor]="addOptions"
-          id="newItemDropdown"
-          appA11yTitle="{{ 'new' | i18n }}"
-        >
-          <i class="bwi bwi-plus" aria-hidden="true"></i>
-          {{ "new" | i18n }}<i class="bwi tw-ml-2" aria-hidden="true"></i>
-        </button>
-        <bit-menu #addOptions aria-labelledby="newItemDropdown">
-          <ng-container *ngIf="canCreateCipher">
-            <button type="button" bitMenuItem (click)="addCipher(CipherType.Login)">
-              <i class="bwi bwi-globe" slot="start" aria-hidden="true"></i>
-              {{ "typeLogin" | i18n }}
-            </button>
-            <button type="button" bitMenuItem (click)="addCipher(CipherType.Card)">
-              <i class="bwi bwi-credit-card" slot="start" aria-hidden="true"></i>
-              {{ "typeCard" | i18n }}
-            </button>
-            <button type="button" bitMenuItem (click)="addCipher(CipherType.Identity)">
-              <i class="bwi bwi-id-card" slot="start" aria-hidden="true"></i>
-              {{ "typeIdentity" | i18n }}
-            </button>
-            <button type="button" bitMenuItem (click)="addCipher(CipherType.SecureNote)">
-              <i class="bwi bwi-sticky-note" slot="start" aria-hidden="true"></i>
-              {{ "note" | i18n }}
-            </button>
-          </ng-container>
-          <ng-container *ngIf="canCreateCollection">
-            <bit-menu-divider *ngIf="canCreateCipher"></bit-menu-divider>
-            <button type="button" bitMenuItem (click)="addCollection()">
-              <i class="bwi bwi-fw bwi-collection-shared" aria-hidden="true"></i>
-              {{ "collection" | i18n }}
-            </button>
-          </ng-container>
-        </bit-menu>
-      </div>
-    </ng-container>
+    <vault-new-cipher-menu
+      [canCreateCipher]="canCreateCipher"
+      [canCreateCollection]="canCreateCollection"
+      (cipherAdded)="addCipher($event)"
+      (collectionAdded)="addCollection()"
+    />
   </div>
 </app-header>
diff --git a/apps/web/src/app/admin-console/organizations/collections/vault-header/vault-header.component.ts b/apps/web/src/app/admin-console/organizations/collections/vault-header/vault-header.component.ts
index b343d5874bc..121a5c03ffe 100644
--- a/apps/web/src/app/admin-console/organizations/collections/vault-header/vault-header.component.ts
+++ b/apps/web/src/app/admin-console/organizations/collections/vault-header/vault-header.component.ts
@@ -25,6 +25,7 @@ import {
   SearchModule,
   SimpleDialogOptions,
 } from "@bitwarden/components";
+import { NewCipherMenuComponent } from "@bitwarden/vault";
 
 import { HeaderModule } from "../../../../layouts/header/header.module";
 import { SharedModule } from "../../../../shared";
@@ -45,6 +46,7 @@ import { CollectionDialogTabType } from "../../shared/components/collection-dial
     HeaderModule,
     SearchModule,
     JslibModule,
+    NewCipherMenuComponent,
   ],
 })
 export class VaultHeaderComponent {
diff --git a/apps/web/src/app/vault/components/vault-items/vault-items.component.ts b/apps/web/src/app/vault/components/vault-items/vault-items.component.ts
index 3793db6f76a..18dfa73ac5a 100644
--- a/apps/web/src/app/vault/components/vault-items/vault-items.component.ts
+++ b/apps/web/src/app/vault/components/vault-items/vault-items.component.ts
@@ -510,7 +510,7 @@ export class VaultItemsComponent {
 
   private compareNames(a: VaultItem, b: VaultItem): number {
     const getName = (item: VaultItem) => item.collection?.name || item.cipher?.name;
-    return getName(a).localeCompare(getName(b));
+    return getName(a)?.localeCompare(getName(b)) ?? -1;
   }
 
   /**
diff --git a/apps/web/src/app/vault/individual-vault/vault-header/vault-header.component.html b/apps/web/src/app/vault/individual-vault/vault-header/vault-header.component.html
index 4ef8204cdfc..711d1166d7b 100644
--- a/apps/web/src/app/vault/individual-vault/vault-header/vault-header.component.html
+++ b/apps/web/src/app/vault/individual-vault/vault-header/vault-header.component.html
@@ -68,35 +68,13 @@
   </ng-container>
 
   <div *ngIf="filter.type !== 'trash'" class="tw-shrink-0">
-    <div appListDropdown>
-      <button
-        bitButton
-        buttonType="primary"
-        type="button"
-        [bitMenuTriggerFor]="addOptions"
-        id="newItemDropdown"
-        appA11yTitle="{{ 'new' | i18n }}"
-      >
-        <i class="bwi bwi-plus" aria-hidden="true"></i>
-        {{ "new" | i18n }}<i class="bwi tw-ml-2" aria-hidden="true"></i>
-      </button>
-      <bit-menu #addOptions aria-labelledby="newItemDropdown">
-        @for (item of cipherMenuItems$ | async; track item.type) {
-          <button type="button" bitMenuItem (click)="addCipher(item.type)">
-            <i class="bwi {{ item.icon }}" slot="start" aria-hidden="true"></i>
-            {{ item.labelKey | i18n }}
-          </button>
-        }
-        <bit-menu-divider />
-        <button type="button" bitMenuItem (click)="addFolder()">
-          <i class="bwi bwi-fw bwi-folder" aria-hidden="true"></i>
-          {{ "folder" | i18n }}
-        </button>
-        <button *ngIf="canCreateCollections" type="button" bitMenuItem (click)="addCollection()">
-          <i class="bwi bwi-fw bwi-collection-shared" aria-hidden="true"></i>
-          {{ "collection" | i18n }}
-        </button>
-      </bit-menu>
-    </div>
+    <vault-new-cipher-menu
+      [canCreateCipher]="true"
+      [canCreateFolder]="true"
+      [canCreateCollection]="canCreateCollections"
+      (cipherAdded)="addCipher($event)"
+      (folderAdded)="addFolder()"
+      (collectionAdded)="addCollection()"
+    />
   </div>
 </app-header>
diff --git a/apps/web/src/app/vault/individual-vault/vault-header/vault-header.component.ts b/apps/web/src/app/vault/individual-vault/vault-header/vault-header.component.ts
index 49e159143dd..f4f3ba32428 100644
--- a/apps/web/src/app/vault/individual-vault/vault-header/vault-header.component.ts
+++ b/apps/web/src/app/vault/individual-vault/vault-header/vault-header.component.ts
@@ -3,7 +3,7 @@
 import { CommonModule } from "@angular/common";
 import { ChangeDetectionStrategy, Component, EventEmitter, Input, Output } from "@angular/core";
 import { Router } from "@angular/router";
-import { firstValueFrom, map, shareReplay } from "rxjs";
+import { firstValueFrom } from "rxjs";
 
 import {
   Unassigned,
@@ -18,13 +18,13 @@ import { ConfigService } from "@bitwarden/common/platform/abstractions/config/co
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { CipherType } from "@bitwarden/common/vault/enums";
 import { TreeNode } from "@bitwarden/common/vault/models/domain/tree-node";
-import { RestrictedItemTypesService } from "@bitwarden/common/vault/services/restricted-item-types.service";
 import {
   BreadcrumbsModule,
   DialogService,
   MenuModule,
   SimpleDialogOptions,
 } from "@bitwarden/components";
+import { NewCipherMenuComponent } from "@bitwarden/vault";
 
 import { CollectionDialogTabType } from "../../../admin-console/organizations/shared/components/collection-dialog";
 import { HeaderModule } from "../../../layouts/header/header.module";
@@ -46,6 +46,7 @@ import {
     HeaderModule,
     PipesModule,
     JslibModule,
+    NewCipherMenuComponent,
   ],
   changeDetection: ChangeDetectionStrategy.OnPush,
 })
@@ -54,21 +55,6 @@ export class VaultHeaderComponent {
   protected All = All;
   protected CollectionDialogTabType = CollectionDialogTabType;
   protected CipherType = CipherType;
-  protected allCipherMenuItems = [
-    { type: CipherType.Login, icon: "bwi-globe", labelKey: "typeLogin" },
-    { type: CipherType.Card, icon: "bwi-credit-card", labelKey: "typeCard" },
-    { type: CipherType.Identity, icon: "bwi-id-card", labelKey: "typeIdentity" },
-    { type: CipherType.SecureNote, icon: "bwi-sticky-note", labelKey: "note" },
-    { type: CipherType.SshKey, icon: "bwi-key", labelKey: "typeSshKey" },
-  ];
-  protected cipherMenuItems$ = this.restrictedItemTypesService.restricted$.pipe(
-    map((restrictedTypes) => {
-      return this.allCipherMenuItems.filter((item) => {
-        return !restrictedTypes.some((restrictedType) => restrictedType.cipherType === item.type);
-      });
-    }),
-    shareReplay({ bufferSize: 1, refCount: true }),
-  );
 
   /**
    * Boolean to determine the loading state of the header.
@@ -109,7 +95,6 @@ export class VaultHeaderComponent {
     private dialogService: DialogService,
     private router: Router,
     private configService: ConfigService,
-    private restrictedItemTypesService: RestrictedItemTypesService,
   ) {}
 
   /**
diff --git a/apps/web/src/locales/en/messages.json b/apps/web/src/locales/en/messages.json
index b272dc32e3b..a58126adac5 100644
--- a/apps/web/src/locales/en/messages.json
+++ b/apps/web/src/locales/en/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "Secure note"
   },
+  "typeNote": {
+    "message": "Note"
+  },
   "typeSshKey": {
     "message": "SSH key"
   },
@@ -8928,7 +8931,7 @@
   },
      "uriMatchDefaultStrategyHint": {
     "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
-    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."  
+    "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
   },
    "regExAdvancedOptionWarning": {
     "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
diff --git a/libs/vault/src/components/new-cipher-menu/new-cipher-menu.component.html b/libs/vault/src/components/new-cipher-menu/new-cipher-menu.component.html
new file mode 100644
index 00000000000..38b5875a605
--- /dev/null
+++ b/libs/vault/src/components/new-cipher-menu/new-cipher-menu.component.html
@@ -0,0 +1,37 @@
+<ng-container *ngIf="canCreateCipher || canCreateCollection || canCreateFolder">
+  <div>
+    <button
+      bitButton
+      buttonType="primary"
+      type="button"
+      [bitMenuTriggerFor]="addOptions"
+      id="newItemDropdown"
+      [appA11yTitle]="'new' | i18n"
+    >
+      <i class="bwi bwi-plus" aria-hidden="true"></i>
+      {{ "new" | i18n }}
+    </button>
+    <bit-menu #addOptions aria-labelledby="newItemDropdown">
+      @for (item of cipherMenuItems$ | async; track item.type) {
+        <button type="button" bitMenuItem (click)="cipherAdded.emit(item.type)">
+          <i class="bwi {{ item.icon }}" slot="start" aria-hidden="true"></i>
+          {{ item.labelKey | i18n }}
+        </button>
+      }
+      <bit-menu-divider *ngIf="canCreateCipher"></bit-menu-divider>
+      <button *ngIf="canCreateFolder" type="button" bitMenuItem (click)="folderAdded.emit()">
+        <i class="bwi bwi-fw bwi-folder" aria-hidden="true"></i>
+        {{ "folder" | i18n }}
+      </button>
+      <button
+        *ngIf="canCreateCollection"
+        type="button"
+        bitMenuItem
+        (click)="collectionAdded.emit()"
+      >
+        <i class="bwi bwi-fw bwi-collection-shared" aria-hidden="true"></i>
+        {{ "collection" | i18n }}
+      </button>
+    </bit-menu>
+  </div>
+</ng-container>
diff --git a/libs/vault/src/components/new-cipher-menu/new-cipher-menu.component.ts b/libs/vault/src/components/new-cipher-menu/new-cipher-menu.component.ts
new file mode 100644
index 00000000000..eb3194bc5f0
--- /dev/null
+++ b/libs/vault/src/components/new-cipher-menu/new-cipher-menu.component.ts
@@ -0,0 +1,38 @@
+import { CommonModule } from "@angular/common";
+import { Component, input, output } from "@angular/core";
+import { map, shareReplay } from "rxjs";
+
+import { JslibModule } from "@bitwarden/angular/jslib.module";
+import { CipherType } from "@bitwarden/common/vault/enums";
+import { RestrictedItemTypesService } from "@bitwarden/common/vault/services/restricted-item-types.service";
+import { CIPHER_MENU_ITEMS } from "@bitwarden/common/vault/types/cipher-menu-items";
+import { ButtonModule, MenuModule } from "@bitwarden/components";
+import { I18nPipe } from "@bitwarden/ui-common";
+
+@Component({
+  selector: "vault-new-cipher-menu",
+  templateUrl: "new-cipher-menu.component.html",
+  imports: [ButtonModule, CommonModule, MenuModule, I18nPipe, JslibModule],
+})
+export class NewCipherMenuComponent {
+  canCreateCipher = input(false);
+  canCreateFolder = input(false);
+  canCreateCollection = input(false);
+  folderAdded = output();
+  collectionAdded = output();
+  cipherAdded = output<CipherType>();
+
+  constructor(private restrictedItemTypesService: RestrictedItemTypesService) {}
+
+  /**
+   * Returns an observable that emits the cipher menu items, filtered by the restricted types.
+   */
+  cipherMenuItems$ = this.restrictedItemTypesService.restricted$.pipe(
+    map((restrictedTypes) => {
+      return CIPHER_MENU_ITEMS.filter((item) => {
+        return !restrictedTypes.some((restrictedType) => restrictedType.cipherType === item.type);
+      });
+    }),
+    shareReplay({ bufferSize: 1, refCount: true }),
+  );
+}
diff --git a/libs/vault/src/index.ts b/libs/vault/src/index.ts
index b39bb85ab30..9d037d8fe5e 100644
--- a/libs/vault/src/index.ts
+++ b/libs/vault/src/index.ts
@@ -19,6 +19,7 @@ export { DecryptionFailureDialogComponent } from "./components/decryption-failur
 export { openPasswordHistoryDialog } from "./components/password-history/password-history.component";
 export * from "./components/add-edit-folder-dialog/add-edit-folder-dialog.component";
 export * from "./components/carousel";
+export * from "./components/new-cipher-menu/new-cipher-menu.component";
 
 export * as VaultIcons from "./icons";
 

From 4b7dd3dcb820197687f3579a2242c0698b329525 Mon Sep 17 00:00:00 2001
From: SmithThe4th <gsmith@bitwarden.com>
Date: Wed, 16 Jul 2025 18:12:05 -0400
Subject: [PATCH 153/239] Add filter to wait for user key availabilty before
 decrypting folders (#15645)

---
 .../vault/services/folder/folder.service.ts   | 20 ++++++++++++++++---
 1 file changed, 17 insertions(+), 3 deletions(-)

diff --git a/libs/common/src/vault/services/folder/folder.service.ts b/libs/common/src/vault/services/folder/folder.service.ts
index 12d02958049..2d440adeb29 100644
--- a/libs/common/src/vault/services/folder/folder.service.ts
+++ b/libs/common/src/vault/services/folder/folder.service.ts
@@ -1,6 +1,16 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
-import { Observable, Subject, firstValueFrom, map, shareReplay, switchMap, merge } from "rxjs";
+import {
+  Observable,
+  Subject,
+  firstValueFrom,
+  map,
+  shareReplay,
+  switchMap,
+  merge,
+  filter,
+  combineLatest,
+} from "rxjs";
 
 // This import has been flagged as unallowed for this class. It may be involved in a circular dependency loop.
 // eslint-disable-next-line no-restricted-imports
@@ -69,8 +79,12 @@ export class FolderService implements InternalFolderServiceAbstraction {
 
       const observable = merge(
         this.forceFolderViews[userId],
-        this.encryptedFoldersState(userId).state$.pipe(
-          switchMap((folderData) => {
+        combineLatest([
+          this.encryptedFoldersState(userId).state$,
+          this.keyService.userKey$(userId),
+        ]).pipe(
+          filter(([folderData, userKey]) => folderData != null && userKey != null),
+          switchMap(([folderData, _]) => {
             return this.decryptFolders(userId, folderData);
           }),
         ),

From 4350cadc484b6fba724f1fcced56b11187b44990 Mon Sep 17 00:00:00 2001
From: Jordan Aasen <166539328+jaasen-livefront@users.noreply.github.com>
Date: Wed, 16 Jul 2025 16:57:51 -0600
Subject: [PATCH 154/239] [PM-23752] - [Desktop] My Vault showing in filter
 when user belongs to one org with policy enabled (#15646)

* fix ngSwitchCase name

* remove unused var
---
 .../vault-filter/filters/organization-filter.component.html     | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/apps/desktop/src/vault/app/vault/vault-filter/filters/organization-filter.component.html b/apps/desktop/src/vault/app/vault/vault-filter/filters/organization-filter.component.html
index f77f279a96f..7298133146c 100644
--- a/apps/desktop/src/vault/app/vault/vault-filter/filters/organization-filter.component.html
+++ b/apps/desktop/src/vault/app/vault/vault-filter/filters/organization-filter.component.html
@@ -1,6 +1,6 @@
 <ng-container *ngIf="show">
   <ng-container [ngSwitch]="displayMode">
-    <ng-container *ngSwitchCase="'personalOwnershipPolicy'">
+    <ng-container *ngSwitchCase="'organizationDataOwnershipPolicy'">
       <div class="filter-heading" [ngClass]="{ active: !hasActiveFilter }">
         <button
           type="button"

From 682503e2bdb1ab7a6c512b0e58dcb6fb87b33800 Mon Sep 17 00:00:00 2001
From: rr-bw <102181210+rr-bw@users.noreply.github.com>
Date: Wed, 16 Jul 2025 16:58:19 -0700
Subject: [PATCH 155/239] docs(authStatus): [Auth/PM-22699] [BEEEP] Document
 AuthenticationStatus (#15197)

Add documentation to `AuthenticationStatus`
---
 .../src/auth/enums/authentication-status.ts   | 21 +++++++++++++++++++
 1 file changed, 21 insertions(+)

diff --git a/libs/common/src/auth/enums/authentication-status.ts b/libs/common/src/auth/enums/authentication-status.ts
index 6a6f9467ae7..fe50bd5f39b 100644
--- a/libs/common/src/auth/enums/authentication-status.ts
+++ b/libs/common/src/auth/enums/authentication-status.ts
@@ -1,7 +1,28 @@
+/**
+ * The authentication status of the user
+ *
+ * See `AuthService.authStatusFor$` for details on how we determine the user's `AuthenticationStatus`
+ */
 // FIXME: update to use a const object instead of a typescript enum
 // eslint-disable-next-line @bitwarden/platform/no-enums
 export enum AuthenticationStatus {
+  /**
+   * User is not authenticated
+   *  - The user does not have an active account userId and/or an access token in state
+   */
   LoggedOut = 0,
+
+  /**
+   * User is authenticated but not decrypted
+   *  - The user has an access token, but no user key in state
+   *  - Vault data cannot be decrypted (because there is no user key)
+   */
   Locked = 1,
+
+  /**
+   * User is authenticated and decrypted
+   *  - The user has an access token and a user key in state
+   *  - Vault data can be decrypted (via user key)
+   */
   Unlocked = 2,
 }

From c4888efca77222e35b36e6041481f1d08ef89128 Mon Sep 17 00:00:00 2001
From: Oscar Hinton <Hinton@users.noreply.github.com>
Date: Thu, 17 Jul 2025 12:35:51 +0200
Subject: [PATCH 156/239] [PM-21804] Migrate vault loose components (#14850)

* Migrate PremiumBadgeComponen to standalone.
* Remove unused FolderAddEdit (usage has previously been replaced with the v2 dialog)
---
 .../shared/report-card/report-card.stories.ts |   3 +-
 .../shared/report-list/report-list.stories.ts |   4 +-
 .../src/app/shared/loose-components.module.ts |   8 +-
 .../components/premium-badge.component.ts     |   4 +-
 .../folder-add-edit.component.html            |  32 ----
 .../folder-add-edit.component.ts              | 139 ------------------
 .../vault/settings/purge-vault.component.ts   |   6 +-
 7 files changed, 11 insertions(+), 185 deletions(-)
 delete mode 100644 apps/web/src/app/vault/individual-vault/folder-add-edit.component.html
 delete mode 100644 apps/web/src/app/vault/individual-vault/folder-add-edit.component.ts

diff --git a/apps/web/src/app/dirt/reports/shared/report-card/report-card.stories.ts b/apps/web/src/app/dirt/reports/shared/report-card/report-card.stories.ts
index 8048d0dcefa..d6a330b55d7 100644
--- a/apps/web/src/app/dirt/reports/shared/report-card/report-card.stories.ts
+++ b/apps/web/src/app/dirt/reports/shared/report-card/report-card.stories.ts
@@ -16,8 +16,7 @@ export default {
   component: ReportCardComponent,
   decorators: [
     moduleMetadata({
-      imports: [JslibModule, BadgeModule, IconModule, RouterTestingModule],
-      declarations: [PremiumBadgeComponent],
+      imports: [JslibModule, BadgeModule, IconModule, RouterTestingModule, PremiumBadgeComponent],
     }),
     applicationConfig({
       providers: [importProvidersFrom(PreloadedEnglishI18nModule)],
diff --git a/apps/web/src/app/dirt/reports/shared/report-list/report-list.stories.ts b/apps/web/src/app/dirt/reports/shared/report-list/report-list.stories.ts
index 196c0994cd9..13523174913 100644
--- a/apps/web/src/app/dirt/reports/shared/report-list/report-list.stories.ts
+++ b/apps/web/src/app/dirt/reports/shared/report-list/report-list.stories.ts
@@ -18,8 +18,8 @@ export default {
   component: ReportListComponent,
   decorators: [
     moduleMetadata({
-      imports: [JslibModule, BadgeModule, RouterTestingModule, IconModule],
-      declarations: [PremiumBadgeComponent, ReportCardComponent],
+      imports: [JslibModule, BadgeModule, RouterTestingModule, IconModule, PremiumBadgeComponent],
+      declarations: [ReportCardComponent],
     }),
     applicationConfig({
       providers: [importProvidersFrom(PreloadedEnglishI18nModule)],
diff --git a/apps/web/src/app/shared/loose-components.module.ts b/apps/web/src/app/shared/loose-components.module.ts
index 63e54c46a8f..97c3fa0375c 100644
--- a/apps/web/src/app/shared/loose-components.module.ts
+++ b/apps/web/src/app/shared/loose-components.module.ts
@@ -42,10 +42,8 @@ import { WeakPasswordsReportComponent as OrgWeakPasswordsReportComponent } from
 import { RemovePasswordComponent } from "../key-management/key-connector/remove-password.component";
 import { HeaderModule } from "../layouts/header/header.module";
 import { PremiumBadgeComponent } from "../vault/components/premium-badge.component";
-import { FolderAddEditComponent } from "../vault/individual-vault/folder-add-edit.component";
 import { OrganizationBadgeModule } from "../vault/individual-vault/organization-badge/organization-badge.module";
 import { PipesModule } from "../vault/individual-vault/pipes/pipes.module";
-import { PurgeVaultComponent } from "../vault/settings/purge-vault.component";
 
 import { AccountFingerprintComponent } from "./components/account-fingerprint/account-fingerprint.component";
 import { SharedModule } from "./shared.module";
@@ -68,6 +66,7 @@ import { SharedModule } from "./shared.module";
     OrganizationLayoutComponent,
     VerifyRecoverDeleteOrgComponent,
     VaultTimeoutInputComponent,
+    PremiumBadgeComponent,
   ],
   declarations: [
     AcceptFamilySponsorshipComponent,
@@ -76,7 +75,6 @@ import { SharedModule } from "./shared.module";
     EmergencyAccessConfirmComponent,
     EmergencyAccessTakeoverComponent,
     EmergencyAccessViewComponent,
-    FolderAddEditComponent,
     OrgEventsComponent,
     OrgExposedPasswordsReportComponent,
     OrgInactiveTwoFactorReportComponent,
@@ -84,8 +82,6 @@ import { SharedModule } from "./shared.module";
     OrgUnsecuredWebsitesReportComponent,
     OrgUserConfirmComponent,
     OrgWeakPasswordsReportComponent,
-    PremiumBadgeComponent,
-    PurgeVaultComponent,
     RecoverDeleteComponent,
     RecoverTwoFactorComponent,
     RemovePasswordComponent,
@@ -106,7 +102,6 @@ import { SharedModule } from "./shared.module";
     EmergencyAccessConfirmComponent,
     EmergencyAccessTakeoverComponent,
     EmergencyAccessViewComponent,
-    FolderAddEditComponent,
     OrganizationLayoutComponent,
     OrgEventsComponent,
     OrgExposedPasswordsReportComponent,
@@ -116,7 +111,6 @@ import { SharedModule } from "./shared.module";
     OrgUserConfirmComponent,
     OrgWeakPasswordsReportComponent,
     PremiumBadgeComponent,
-    PurgeVaultComponent,
     RecoverDeleteComponent,
     RecoverTwoFactorComponent,
     RemovePasswordComponent,
diff --git a/apps/web/src/app/vault/components/premium-badge.component.ts b/apps/web/src/app/vault/components/premium-badge.component.ts
index ec444404aea..4f1d1142f91 100644
--- a/apps/web/src/app/vault/components/premium-badge.component.ts
+++ b/apps/web/src/app/vault/components/premium-badge.component.ts
@@ -1,6 +1,8 @@
 import { Component } from "@angular/core";
 
+import { JslibModule } from "@bitwarden/angular/jslib.module";
 import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
+import { BadgeModule } from "@bitwarden/components";
 
 @Component({
   selector: "app-premium-badge",
@@ -9,7 +11,7 @@ import { MessagingService } from "@bitwarden/common/platform/abstractions/messag
       {{ "premium" | i18n }}
     </button>
   `,
-  standalone: false,
+  imports: [JslibModule, BadgeModule],
 })
 export class PremiumBadgeComponent {
   constructor(private messagingService: MessagingService) {}
diff --git a/apps/web/src/app/vault/individual-vault/folder-add-edit.component.html b/apps/web/src/app/vault/individual-vault/folder-add-edit.component.html
deleted file mode 100644
index 556672534ea..00000000000
--- a/apps/web/src/app/vault/individual-vault/folder-add-edit.component.html
+++ /dev/null
@@ -1,32 +0,0 @@
-<form [bitSubmit]="submitAndClose" [formGroup]="formGroup">
-  <bit-dialog>
-    <span bitDialogTitle>
-      {{ title }}
-    </span>
-    <span bitDialogContent>
-      <bit-form-field>
-        <bit-label>{{ "name" | i18n }}</bit-label>
-        <input bitInput id="name" formControlName="name" />
-      </bit-form-field>
-    </span>
-    <ng-container bitDialogFooter>
-      <button bitButton buttonType="primary" bitFormButton type="submit">
-        <span>{{ "save" | i18n }}</span>
-      </button>
-      <button bitButton buttonType="secondary" bitDialogClose type="button">
-        {{ "cancel" | i18n }}
-      </button>
-      <div class="tw-m-0 tw-ml-auto">
-        <button
-          buttonType="danger"
-          bitIconButton="bwi-trash"
-          bitFormButton
-          type="button"
-          appA11yTitle="{{ 'delete' | i18n }}"
-          *ngIf="editMode"
-          [bitAction]="deleteAndClose"
-        ></button>
-      </div>
-    </ng-container>
-  </bit-dialog>
-</form>
diff --git a/apps/web/src/app/vault/individual-vault/folder-add-edit.component.ts b/apps/web/src/app/vault/individual-vault/folder-add-edit.component.ts
deleted file mode 100644
index 15c3e18544c..00000000000
--- a/apps/web/src/app/vault/individual-vault/folder-add-edit.component.ts
+++ /dev/null
@@ -1,139 +0,0 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
-import { Component, Inject } from "@angular/core";
-import { FormBuilder } from "@angular/forms";
-import { firstValueFrom } from "rxjs";
-
-import { FolderAddEditComponent as BaseFolderAddEditComponent } from "@bitwarden/angular/vault/components/folder-add-edit.component";
-import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
-import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
-import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
-import { FolderApiServiceAbstraction } from "@bitwarden/common/vault/abstractions/folder/folder-api.service.abstraction";
-import { FolderService } from "@bitwarden/common/vault/abstractions/folder/folder.service.abstraction";
-import { UnionOfValues } from "@bitwarden/common/vault/types/union-of-values";
-import {
-  DIALOG_DATA,
-  DialogConfig,
-  DialogRef,
-  DialogService,
-  ToastService,
-} from "@bitwarden/components";
-import { KeyService } from "@bitwarden/key-management";
-
-@Component({
-  selector: "app-folder-add-edit",
-  templateUrl: "folder-add-edit.component.html",
-  standalone: false,
-})
-export class FolderAddEditComponent extends BaseFolderAddEditComponent {
-  protected override componentName = "app-folder-add-edit";
-  constructor(
-    folderService: FolderService,
-    folderApiService: FolderApiServiceAbstraction,
-    protected accountSerivce: AccountService,
-    protected keyService: KeyService,
-    i18nService: I18nService,
-    platformUtilsService: PlatformUtilsService,
-    logService: LogService,
-    dialogService: DialogService,
-    formBuilder: FormBuilder,
-    protected toastService: ToastService,
-    protected dialogRef: DialogRef<FolderAddEditDialogResult>,
-    @Inject(DIALOG_DATA) params: FolderAddEditDialogParams,
-  ) {
-    super(
-      folderService,
-      folderApiService,
-      accountSerivce,
-      keyService,
-      i18nService,
-      platformUtilsService,
-      logService,
-      dialogService,
-      formBuilder,
-      toastService,
-    );
-    // FIXME: Remove when updating file. Eslint update
-    // eslint-disable-next-line @typescript-eslint/no-unused-expressions
-    params?.folderId ? (this.folderId = params.folderId) : null;
-  }
-
-  deleteAndClose = async () => {
-    const confirmed = await this.dialogService.openSimpleDialog({
-      title: { key: "deleteFolder" },
-      content: { key: "deleteFolderConfirmation" },
-      type: "warning",
-    });
-
-    if (!confirmed) {
-      return;
-    }
-
-    try {
-      await this.folderApiService.delete(this.folder.id, await firstValueFrom(this.activeUserId$));
-      this.toastService.showToast({
-        variant: "success",
-        title: null,
-        message: this.i18nService.t("deletedFolder"),
-      });
-    } catch (e) {
-      this.logService.error(e);
-    }
-
-    this.dialogRef.close(FolderAddEditDialogResult.Deleted);
-  };
-
-  submitAndClose = async () => {
-    this.folder.name = this.formGroup.controls.name.value;
-    if (this.folder.name == null || this.folder.name === "") {
-      this.formGroup.controls.name.markAsTouched();
-      return;
-    }
-
-    try {
-      const activeAccountId = await firstValueFrom(this.activeUserId$);
-      const userKey = await this.keyService.getUserKeyWithLegacySupport(activeAccountId);
-      const folder = await this.folderService.encrypt(this.folder, userKey);
-      this.formPromise = this.folderApiService.save(folder, activeAccountId);
-      await this.formPromise;
-      this.toastService.showToast({
-        variant: "success",
-        title: null,
-        message: this.i18nService.t(this.editMode ? "editedFolder" : "addedFolder"),
-      });
-      this.onSavedFolder.emit(this.folder);
-      this.dialogRef.close(FolderAddEditDialogResult.Saved);
-    } catch (e) {
-      this.logService.error(e);
-    }
-    return;
-  };
-}
-
-export interface FolderAddEditDialogParams {
-  folderId: string;
-}
-
-export const FolderAddEditDialogResult = {
-  Deleted: "deleted",
-  Canceled: "canceled",
-  Saved: "saved",
-} as const;
-
-export type FolderAddEditDialogResult = UnionOfValues<typeof FolderAddEditDialogResult>;
-
-/**
- * Strongly typed helper to open a FolderAddEdit dialog
- * @param dialogService Instance of the dialog service that will be used to open the dialog
- * @param config Optional configuration for the dialog
- */
-export function openFolderAddEditDialog(
-  dialogService: DialogService,
-  config?: DialogConfig<FolderAddEditDialogParams>,
-) {
-  return dialogService.open<FolderAddEditDialogResult, FolderAddEditDialogParams>(
-    FolderAddEditComponent,
-    config,
-  );
-}
diff --git a/apps/web/src/app/vault/settings/purge-vault.component.ts b/apps/web/src/app/vault/settings/purge-vault.component.ts
index 0a25122788c..4c58a27adb7 100644
--- a/apps/web/src/app/vault/settings/purge-vault.component.ts
+++ b/apps/web/src/app/vault/settings/purge-vault.component.ts
@@ -18,14 +18,16 @@ import {
   ToastService,
 } from "@bitwarden/components";
 
+import { UserVerificationModule } from "../../auth/shared/components/user-verification";
+import { SharedModule } from "../../shared";
+
 export interface PurgeVaultDialogData {
   organizationId: string;
 }
 
 @Component({
-  selector: "app-purge-vault",
   templateUrl: "purge-vault.component.html",
-  standalone: false,
+  imports: [SharedModule, UserVerificationModule],
 })
 export class PurgeVaultComponent {
   organizationId: string = null;

From 67d3035aa5c3ce7251f28e43d30760f6d0ecd8fa Mon Sep 17 00:00:00 2001
From: Oscar Hinton <Hinton@users.noreply.github.com>
Date: Thu, 17 Jul 2025 15:03:57 +0200
Subject: [PATCH 157/239] [PM-22544] Add Performance measurement tools (#15475)

Adds logService.mark and logService.measure which are wrappers around performance.mark and performance.measure with extra debug logging for more visibility outside the performance tool.
---
 .../src/vault/services/cipher.service.ts      | 20 ++++++----
 .../src/vault/services/search.service.ts      | 14 ++++---
 .../src/lock/components/lock.component.ts     |  3 ++
 libs/logging/src/console-log.service.ts       | 39 +++++++++++++++++++
 libs/logging/src/log.service.ts               | 24 ++++++++++++
 5 files changed, 86 insertions(+), 14 deletions(-)

diff --git a/libs/common/src/vault/services/cipher.service.ts b/libs/common/src/vault/services/cipher.service.ts
index cf9dfcaf1cd..c967f2614c8 100644
--- a/libs/common/src/vault/services/cipher.service.ts
+++ b/libs/common/src/vault/services/cipher.service.ts
@@ -419,11 +419,13 @@ export class CipherService implements CipherServiceAbstraction {
     userId: UserId,
   ): Promise<[CipherView[], CipherView[]] | null> {
     if (await this.configService.getFeatureFlag(FeatureFlag.PM19941MigrateCipherDomainToSdk)) {
-      const decryptStartTime = new Date().getTime();
+      const decryptStartTime = performance.now();
       const decrypted = await this.decryptCiphersWithSdk(ciphers, userId);
-      this.logService.info(
-        `[CipherService] Decrypting ${decrypted.length} ciphers took ${new Date().getTime() - decryptStartTime}ms`,
-      );
+
+      this.logService.measure(decryptStartTime, "Vault", "CipherService", "decrypt complete", [
+        ["Items", ciphers.length],
+      ]);
+
       // With SDK, failed ciphers are not returned
       return [decrypted, []];
     }
@@ -442,7 +444,7 @@ export class CipherService implements CipherServiceAbstraction {
       },
       {} as Record<string, Cipher[]>,
     );
-    const decryptStartTime = new Date().getTime();
+    const decryptStartTime = performance.now();
     const allCipherViews = (
       await Promise.all(
         Object.entries(grouped).map(async ([orgId, groupedCiphers]) => {
@@ -462,9 +464,11 @@ export class CipherService implements CipherServiceAbstraction {
     )
       .flat()
       .sort(this.getLocaleSortingFunction());
-    this.logService.info(
-      `[CipherService] Decrypting ${allCipherViews.length} ciphers took ${new Date().getTime() - decryptStartTime}ms`,
-    );
+
+    this.logService.measure(decryptStartTime, "Vault", "CipherService", "decrypt complete", [
+      ["Items", ciphers.length],
+    ]);
+
     // Split ciphers into two arrays, one for successfully decrypted ciphers and one for ciphers that failed to decrypt
     return allCipherViews.reduce(
       (acc, c) => {
diff --git a/libs/common/src/vault/services/search.service.ts b/libs/common/src/vault/services/search.service.ts
index 4b7a26b6a31..8e54fa695bd 100644
--- a/libs/common/src/vault/services/search.service.ts
+++ b/libs/common/src/vault/services/search.service.ts
@@ -129,12 +129,15 @@ export class SearchService implements SearchServiceAbstraction {
   }
 
   async isSearchable(userId: UserId, query: string): Promise<boolean> {
+    const time = performance.now();
     query = SearchService.normalizeSearchQuery(query);
     const index = await this.getIndexForSearch(userId);
     const notSearchable =
       query == null ||
       (index == null && query.length < this.searchableMinLength) ||
       (index != null && query.length < this.searchableMinLength && query.indexOf(">") !== 0);
+
+    this.logService.measure(time, "Vault", "SearchService", "isSearchable");
     return !notSearchable;
   }
 
@@ -147,7 +150,7 @@ export class SearchService implements SearchServiceAbstraction {
       return;
     }
 
-    const indexingStartTime = new Date().getTime();
+    const indexingStartTime = performance.now();
     await this.setIsIndexing(userId, true);
     await this.setIndexedEntityIdForSearch(userId, indexedEntityId as IndexedEntityId);
     const builder = new lunr.Builder();
@@ -188,11 +191,10 @@ export class SearchService implements SearchServiceAbstraction {
     await this.setIndexForSearch(userId, index.toJSON() as SerializedLunrIndex);
 
     await this.setIsIndexing(userId, false);
-    this.logService.info(
-      `[SearchService] Building search index of ${ciphers.length} ciphers took ${
-        new Date().getTime() - indexingStartTime
-      }ms`,
-    );
+
+    this.logService.measure(indexingStartTime, "Vault", "SearchService", "index complete", [
+      ["Items", ciphers.length],
+    ]);
   }
 
   async searchCiphers(
diff --git a/libs/key-management-ui/src/lock/components/lock.component.ts b/libs/key-management-ui/src/lock/components/lock.component.ts
index 3d5951a5ac4..9f370c88fa9 100644
--- a/libs/key-management-ui/src/lock/components/lock.component.ts
+++ b/libs/key-management-ui/src/lock/components/lock.component.ts
@@ -577,6 +577,9 @@ export class LockComponent implements OnInit, OnDestroy {
       throw new Error("No active user.");
     }
 
+    // Add a mark to indicate that the user has unlocked their vault. A good starting point for measuring unlock performance.
+    this.logService.mark("Vault unlocked");
+
     await this.keyService.setUserKey(key, this.activeAccount.id);
 
     // Now that we have a decrypted user key in memory, we can check if we
diff --git a/libs/logging/src/console-log.service.ts b/libs/logging/src/console-log.service.ts
index 3a4ffe9ead1..29246368cf7 100644
--- a/libs/logging/src/console-log.service.ts
+++ b/libs/logging/src/console-log.service.ts
@@ -54,4 +54,43 @@ export class ConsoleLogService implements LogService {
         break;
     }
   }
+
+  measure(
+    start: DOMHighResTimeStamp,
+    trackGroup: string,
+    track: string,
+    name?: string,
+    properties?: [string, any][],
+  ): PerformanceMeasure {
+    const measureName = `[${track}]: ${name}`;
+
+    const measure = performance.measure(measureName, {
+      start: start,
+      detail: {
+        devtools: {
+          dataType: "track-entry",
+          track,
+          trackGroup,
+          properties,
+        },
+      },
+    });
+
+    this.info(`${measureName} took ${measure.duration}`, properties);
+    return measure;
+  }
+
+  mark(name: string): PerformanceMark {
+    const mark = performance.mark(name, {
+      detail: {
+        devtools: {
+          dataType: "marker",
+        },
+      },
+    });
+
+    this.info(mark.name, new Date().toISOString());
+
+    return mark;
+  }
 }
diff --git a/libs/logging/src/log.service.ts b/libs/logging/src/log.service.ts
index a63ad47c07e..ce391723bf9 100644
--- a/libs/logging/src/log.service.ts
+++ b/libs/logging/src/log.service.ts
@@ -6,4 +6,28 @@ export abstract class LogService {
   abstract warning(message?: any, ...optionalParams: any[]): void;
   abstract error(message?: any, ...optionalParams: any[]): void;
   abstract write(level: LogLevel, message?: any, ...optionalParams: any[]): void;
+
+  /**
+   * Helper wrapper around `performance.measure` to log a measurement. Should also debug-log the data.
+   *
+   * @param start Start time of the measurement.
+   * @param trackGroup A track-group for the measurement, should generally be the team owning the domain.
+   * @param track A track for the measurement, should generally be the class name.
+   * @param measureName A descriptive name for the measurement.
+   * @param properties Additional properties to include.
+   */
+  abstract measure(
+    start: DOMHighResTimeStamp,
+    trackGroup: string,
+    track: string,
+    measureName: string,
+    properties?: [string, any][],
+  ): PerformanceMeasure;
+
+  /**
+   * Helper wrapper around `performance.mark` to log a mark. Should also debug-log the data.
+   *
+   * @param name Name of the mark to create.
+   */
+  abstract mark(name: string): PerformanceMark;
 }

From 6843e273b8d7a4848ab4a64807647138ebef8f40 Mon Sep 17 00:00:00 2001
From: Nick Krantz <125900171+nick-livefront@users.noreply.github.com>
Date: Thu, 17 Jul 2025 08:50:07 -0500
Subject: [PATCH 158/239] [PM-23689] Setup Extension Video tweaks (#15620)

* add transitions for overlay and top border of video

* refactor video container class for readability

* update max width for setup-extension page

* tweak sizes of videos for larger viewports

* fix opacity never changing

* remove complex interval transitions
---
 apps/web/src/app/oss-routing.module.ts        |  2 +-
 .../add-extension-videos.component.html       | 13 ++---
 .../add-extension-videos.component.spec.ts    | 34 ++++++-------
 .../add-extension-videos.component.ts         | 50 ++++++++++++++++++-
 .../src/anon-layout/anon-layout.component.ts  |  4 +-
 5 files changed, 73 insertions(+), 30 deletions(-)

diff --git a/apps/web/src/app/oss-routing.module.ts b/apps/web/src/app/oss-routing.module.ts
index d3e7fc495ca..8a2270113a9 100644
--- a/apps/web/src/app/oss-routing.module.ts
+++ b/apps/web/src/app/oss-routing.module.ts
@@ -610,7 +610,7 @@ const routes: Routes = [
         data: {
           hideCardWrapper: true,
           hideIcon: true,
-          maxWidth: "3xl",
+          maxWidth: "4xl",
         } satisfies AnonLayoutWrapperData,
         children: [
           {
diff --git a/apps/web/src/app/vault/components/setup-extension/add-extension-videos.component.html b/apps/web/src/app/vault/components/setup-extension/add-extension-videos.component.html
index 3764f7d828f..cd091e11940 100644
--- a/apps/web/src/app/vault/components/setup-extension/add-extension-videos.component.html
+++ b/apps/web/src/app/vault/components/setup-extension/add-extension-videos.component.html
@@ -46,10 +46,10 @@
   The first video is relatively positioned to force the layout and spacing of the videos.
 -->
 <div
-  class="tw-mx-auto tw-w-[15rem] tw-mb-8 tw-relative md:tw-grid md:tw-gap-10 md:tw-w-auto md:tw-grid-rows-1 md:tw-grid-cols-3 md:tw-justify-center md:tw-justify-items-center"
+  class="tw-mx-auto tw-w-[15rem] tw-mb-8 tw-relative md:tw-grid md:tw-gap-10 md:tw-w-auto md:tw-grid-rows-1 md:tw-grid-cols-3 md:tw-justify-center md:tw-justify-items-center xl:tw-gap-12"
   [attr.aria-label]="'setupExtensionContentAlt' | i18n"
 >
-  <div class="tw-relative tw-w-[15rem] tw-max-w-full tw-aspect-[0.807]">
+  <div [ngClass]="videoContainerClass">
     <div
       *ngIf="!allVideosLoaded"
       class="tw-animate-pulse tw-bg-secondary-300 tw-size-full tw-absolute tw-left-0 tw-top-0 tw-rounded-lg"
@@ -58,9 +58,8 @@
     <ng-container *ngTemplateOutlet="newLoginItem"></ng-container>
   </div>
 
-  <div
-    class="tw-absolute tw-left-0 tw-top-0 tw-opacity-0 md:tw-opacity-100 md:tw-relative tw-w-[15rem] tw-max-w-full tw-aspect-[0.807]"
-  >
+  <!-- Use `tw-relative` on the first video container to maintain the proper spacing -->
+  <div [ngClass]="videoContainerClass" class="tw-relative">
     <div
       *ngIf="!allVideosLoaded"
       class="tw-animate-pulse tw-bg-secondary-300 tw-size-full tw-absolute tw-left-0 tw-top-0 tw-rounded-lg"
@@ -69,9 +68,7 @@
     <ng-container *ngTemplateOutlet="browserExtensionEasyAccess"></ng-container>
   </div>
 
-  <div
-    class="tw-absolute tw-left-0 tw-top-0 tw-opacity-0 md:tw-opacity-100 md:tw-relative tw-w-[15rem] tw-max-w-full tw-aspect-[0.807]"
-  >
+  <div [ngClass]="videoContainerClass">
     <div
       *ngIf="!allVideosLoaded"
       class="tw-animate-pulse tw-bg-secondary-300 tw-size-full tw-absolute tw-left-0 tw-top-0 tw-rounded-lg"
diff --git a/apps/web/src/app/vault/components/setup-extension/add-extension-videos.component.spec.ts b/apps/web/src/app/vault/components/setup-extension/add-extension-videos.component.spec.ts
index 9f39a3edcac..b48f5e0ed2c 100644
--- a/apps/web/src/app/vault/components/setup-extension/add-extension-videos.component.spec.ts
+++ b/apps/web/src/app/vault/components/setup-extension/add-extension-videos.component.spec.ts
@@ -21,7 +21,14 @@ describe("AddExtensionVideosComponent", () => {
   HTMLMediaElement.prototype.play = play;
 
   beforeEach(async () => {
-    window.matchMedia = jest.fn().mockReturnValue(false);
+    Object.defineProperty(window, "matchMedia", {
+      writable: true,
+      value: jest.fn().mockImplementation(() => ({
+        matches: false,
+        addListener() {},
+        removeListener() {},
+      })),
+    });
     play.mockClear();
 
     await TestBed.configureTestingModule({
@@ -126,45 +133,34 @@ describe("AddExtensionVideosComponent", () => {
       thirdVideo = component["videoElements"].get(2)!.nativeElement;
     });
 
-    it("starts the video sequence when all videos are loaded", fakeAsync(() => {
-      tick();
-
+    it("starts the video sequence when all videos are loaded", () => {
       expect(firstVideo.play).toHaveBeenCalled();
-    }));
-
-    it("plays videos in sequence", fakeAsync(() => {
-      tick(); // let first video play
+    });
 
+    it("plays videos in sequence", () => {
       play.mockClear();
       firstVideo.onended!(new Event("ended")); // trigger next video
 
-      tick();
-
       expect(secondVideo.play).toHaveBeenCalledTimes(1);
 
       play.mockClear();
       secondVideo.onended!(new Event("ended")); // trigger next video
 
-      tick();
-
       expect(thirdVideo.play).toHaveBeenCalledTimes(1);
-    }));
+    });
 
-    it("doesn't play videos again when the user prefers no motion", fakeAsync(() => {
+    it("doesn't play videos again when the user prefers no motion", () => {
       component["prefersReducedMotion"] = true;
 
-      tick();
       firstVideo.onended!(new Event("ended"));
-      tick();
+
       secondVideo.onended!(new Event("ended"));
-      tick();
 
       play.mockClear();
 
       thirdVideo.onended!(new Event("ended")); // trigger first video again
 
-      tick();
       expect(play).toHaveBeenCalledTimes(0);
-    }));
+    });
   });
 });
diff --git a/apps/web/src/app/vault/components/setup-extension/add-extension-videos.component.ts b/apps/web/src/app/vault/components/setup-extension/add-extension-videos.component.ts
index 2420414fc88..d053e05c36b 100644
--- a/apps/web/src/app/vault/components/setup-extension/add-extension-videos.component.ts
+++ b/apps/web/src/app/vault/components/setup-extension/add-extension-videos.component.ts
@@ -17,6 +17,11 @@ export class AddExtensionVideosComponent {
 
   private document = inject(DOCUMENT);
 
+  /** CSS variable name tied to the video overlay */
+  private cssOverlayVariable = "--overlay-opacity";
+  /** CSS variable name tied to the video border */
+  private cssBorderVariable = "--border-opacity";
+
   /** Current viewport size */
   protected variant: "mobile" | "desktop" = "desktop";
 
@@ -26,6 +31,15 @@ export class AddExtensionVideosComponent {
   /** True when the user prefers reduced motion */
   protected prefersReducedMotion = window.matchMedia("(prefers-reduced-motion: reduce)").matches;
 
+  /** CSS classes for the video container, pulled into the class only for readability. */
+  protected videoContainerClass = [
+    "tw-absolute tw-left-0 tw-top-0 tw-w-[15rem] tw-opacity-0 md:tw-opacity-100 md:tw-relative lg:tw-w-[17rem] tw-max-w-full tw-aspect-[0.807]",
+    `[${this.cssOverlayVariable}:0.7] after:tw-absolute after:tw-top-0 after:tw-left-0 after:tw-size-full after:tw-bg-primary-100 after:tw-content-[''] after:tw-rounded-lg after:tw-opacity-[--overlay-opacity]`,
+    `[${this.cssBorderVariable}:0] before:tw-absolute before:tw-top-0 before:tw-left-0 before:tw-w-full before:tw-h-2 before:tw-bg-primary-600 before:tw-content-[''] before:tw-rounded-t-lg before:tw-opacity-[--border-opacity]`,
+    "after:tw-transition-opacity after:tw-duration-400 after:tw-ease-linear",
+    "before:tw-transition-opacity before:tw-duration-400 before:tw-ease-linear",
+  ].join(" ");
+
   /** Returns true when all videos are loaded */
   get allVideosLoaded(): boolean {
     return this.numberOfLoadedVideos >= 3;
@@ -97,12 +111,14 @@ export class AddExtensionVideosComponent {
     const video = this.videoElements.toArray()[index].nativeElement;
     video.onended = () => {
       void this.startVideoSequence(index + 1);
+      void this.addPausedStyles(video);
     };
 
     this.mobileTransitionIn(index);
 
-    // Set muted via JavaScript, browsers are respecting autoplay consistently over just the  HTML attribute
+    // Browsers are not respecting autoplay consistently with just the HTML attribute, set via JavaScript as well.
     video.muted = true;
+    this.addPlayingStyles(video);
     await video.play();
   }
 
@@ -143,4 +159,36 @@ export class AddExtensionVideosComponent {
     element.style.transition = transition ? "opacity 0.5s linear" : "";
     element.style.opacity = "1";
   }
+
+  /**
+   * Add styles to the video that is moving to the paused/completed state.
+   * Fade in the overlay and fade out the border.
+   */
+  private addPausedStyles(video: HTMLVideoElement): void {
+    const parentElement = video.parentElement;
+    if (!parentElement) {
+      return;
+    }
+
+    // The border opacity transitions from 1 to 0 based on the percent complete.
+    parentElement.style.setProperty(this.cssBorderVariable, "0");
+    // The opacity transitions from 0 to 0.7 based on the percent complete.
+    parentElement.style.setProperty(this.cssOverlayVariable, "0.7");
+  }
+
+  /**
+   * Add styles to the video that is moving to the playing state.
+   * Fade out the overlay and fade in the border.
+   */
+  private addPlayingStyles(video: HTMLVideoElement): void {
+    const parentElement = video.parentElement;
+    if (!parentElement) {
+      return;
+    }
+
+    // The border opacity transitions from 0 to 1 based on the percent complete.
+    parentElement.style.setProperty(this.cssBorderVariable, "1");
+    // The opacity transitions from 0.7 to 0 based on the percent complete.
+    parentElement.style.setProperty(this.cssOverlayVariable, "0");
+  }
 }
diff --git a/libs/components/src/anon-layout/anon-layout.component.ts b/libs/components/src/anon-layout/anon-layout.component.ts
index bb749c2d0b1..355f3aef6eb 100644
--- a/libs/components/src/anon-layout/anon-layout.component.ts
+++ b/libs/components/src/anon-layout/anon-layout.component.ts
@@ -23,7 +23,7 @@ import { AnonLayoutBitwardenShield } from "../icon/logos";
 import { SharedModule } from "../shared";
 import { TypographyModule } from "../typography";
 
-export type AnonLayoutMaxWidth = "md" | "lg" | "xl" | "2xl" | "3xl";
+export type AnonLayoutMaxWidth = "md" | "lg" | "xl" | "2xl" | "3xl" | "4xl";
 
 @Component({
   selector: "auth-anon-layout",
@@ -74,6 +74,8 @@ export class AnonLayoutComponent implements OnInit, OnChanges {
         return "tw-max-w-2xl";
       case "3xl":
         return "tw-max-w-3xl";
+      case "4xl":
+        return "tw-max-w-4xl";
     }
   }
 

From 127fed70ac2ba955f8c7ab82ad62d233abae7d92 Mon Sep 17 00:00:00 2001
From: Matt Andreko <mandreko@bitwarden.com>
Date: Thu, 17 Jul 2025 10:01:37 -0400
Subject: [PATCH 159/239] Update scan workflow to use centralized reusable
 component (#15635)

---
 .github/workflows/scan.yml | 73 ++++++++++----------------------------
 1 file changed, 19 insertions(+), 54 deletions(-)

diff --git a/.github/workflows/scan.yml b/.github/workflows/scan.yml
index 59ef1e0734e..c96dae51c0e 100644
--- a/.github/workflows/scan.yml
+++ b/.github/workflows/scan.yml
@@ -10,79 +10,44 @@ on:
   pull_request:
     types: [opened, synchronize, reopened]
     branches-ignore:
-      - main
+      - "main"
   pull_request_target:
     types: [opened, synchronize, reopened]
     branches:
       - "main"
 
+permissions: {}
+
 jobs:
   check-run:
     name: Check PR run
     uses: bitwarden/gh-actions/.github/workflows/check-run.yml@main
+    permissions:
+      contents: read
 
   sast:
-    name: SAST scan
-    runs-on: ubuntu-22.04
+    name: Checkmarx
+    uses: bitwarden/gh-actions/.github/workflows/_checkmarx.yml@main
     needs: check-run
+    secrets:
+      AZURE_SUBSCRIPTION_ID: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+      AZURE_TENANT_ID: ${{ secrets.AZURE_TENANT_ID }}
+      AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }}
     permissions:
       contents: read
       pull-requests: write
       security-events: write
-
-    steps:
-      - name: Check out repo
-        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
-        with:
-          ref: ${{  github.event.pull_request.head.sha }}
-
-      - name: Scan with Checkmarx
-        uses: checkmarx/ast-github-action@184bf2f64f55d1c93fd6636d539edf274703e434 # 2.0.41
-        env:
-          INCREMENTAL: "${{ contains(github.event_name, 'pull_request') && '--sast-incremental' || '' }}"
-        with:
-          project_name: ${{ github.repository }}
-          cx_tenant: ${{ secrets.CHECKMARX_TENANT }}
-          base_uri: https://ast.checkmarx.net/
-          cx_client_id: ${{ secrets.CHECKMARX_CLIENT_ID }}
-          cx_client_secret: ${{ secrets.CHECKMARX_SECRET }}
-          additional_params: |
-            --report-format sarif \
-            --filter "state=TO_VERIFY;PROPOSED_NOT_EXPLOITABLE;CONFIRMED;URGENT" \
-            --output-path . ${{ env.INCREMENTAL }}
-
-      - name: Upload Checkmarx results to GitHub
-        uses: github/codeql-action/upload-sarif@d68b2d4edb4189fd2a5366ac14e72027bd4b37dd # v3.28.2
-        with:
-          sarif_file: cx_result.sarif
-          sha: ${{ contains(github.event_name, 'pull_request') && github.event.pull_request.head.sha || github.sha }}
-          ref: ${{ contains(github.event_name, 'pull_request') && format('refs/pull/{0}/head', github.event.pull_request.number) || github.ref }}
+      id-token: write
 
   quality:
-    name: Quality scan
-    runs-on: ubuntu-22.04
+    name: Sonar
+    uses: bitwarden/gh-actions/.github/workflows/_sonar.yml@main
     needs: check-run
+    secrets:
+      AZURE_SUBSCRIPTION_ID: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+      AZURE_TENANT_ID: ${{ secrets.AZURE_TENANT_ID }}
+      AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }}
     permissions:
       contents: read
       pull-requests: write
-
-    steps:
-      - name: Check out repo
-        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
-        with:
-          fetch-depth: 0
-          ref: ${{  github.event.pull_request.head.sha }}
-
-      - name: Scan with SonarCloud
-        uses: sonarsource/sonarqube-scan-action@2500896589ef8f7247069a56136f8dc177c27ccf # v5.2.0
-        env:
-          SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
-        with:
-          args: >
-            -Dsonar.organization=${{ github.repository_owner }}
-            -Dsonar.projectKey=${{ github.repository_owner }}_${{ github.event.repository.name }}
-            -Dsonar.tests=.
-            -Dsonar.sources=.
-            -Dsonar.test.inclusions=**/*.spec.ts
-            -Dsonar.exclusions=**/*.spec.ts
-            -Dsonar.pullrequest.key=${{ github.event.pull_request.number }}
+      id-token: write
\ No newline at end of file

From 250e46ee70c8a23eec5aa2967a9f303a6b300983 Mon Sep 17 00:00:00 2001
From: Bryan Cunningham <bcunningham@bitwarden.com>
Date: Thu, 17 Jul 2025 11:40:22 -0400
Subject: [PATCH 160/239] [PM-23816] Revert aria disabled buttons (#15656)

* Revert "[CL-295] Use aria-disabled on buttons (#15009)"

This reverts commit 682f1f83d9c211e886d6f05fc557eddb25c4c5c2.

* fix import

* bring back story fixes
---
 .../vault-generator-dialog.component.spec.ts  | 18 +++--
 .../web-generator-dialog.component.spec.ts    | 18 +++--
 .../src/button/button.component.spec.ts       | 14 ++--
 .../components/src/button/button.component.ts | 43 ++++--------
 .../src/form-field/form-field.component.html  |  2 +-
 .../src/icon-button/icon-button.component.ts  | 67 +++++++------------
 libs/components/src/link/link.directive.ts    | 19 +-----
 .../src/utils/aria-disable-element.ts         | 29 --------
 libs/components/src/utils/index.ts            |  1 -
 9 files changed, 71 insertions(+), 140 deletions(-)
 delete mode 100644 libs/components/src/utils/aria-disable-element.ts

diff --git a/apps/browser/src/vault/popup/components/vault-v2/vault-generator-dialog/vault-generator-dialog.component.spec.ts b/apps/browser/src/vault/popup/components/vault-v2/vault-generator-dialog/vault-generator-dialog.component.spec.ts
index b65138dac3a..b5d35e2005e 100644
--- a/apps/browser/src/vault/popup/components/vault-v2/vault-generator-dialog/vault-generator-dialog.component.spec.ts
+++ b/apps/browser/src/vault/popup/components/vault-v2/vault-generator-dialog/vault-generator-dialog.component.spec.ts
@@ -76,8 +76,10 @@ describe("VaultGeneratorDialogComponent", () => {
     component.onValueGenerated("test-password");
     fixture.detectChanges();
 
-    const button = fixture.debugElement.query(By.css("[data-testid='select-button']"));
-    expect(button.attributes["aria-disabled"]).toBe(undefined);
+    const button = fixture.debugElement.query(
+      By.css("[data-testid='select-button']"),
+    ).nativeElement;
+    expect(button.disabled).toBe(false);
   });
 
   it("should disable the button if no value has been generated", () => {
@@ -88,8 +90,10 @@ describe("VaultGeneratorDialogComponent", () => {
     generator.algorithmSelected.emit({ useGeneratedValue: "Use Password" } as any);
     fixture.detectChanges();
 
-    const button = fixture.debugElement.query(By.css("[data-testid='select-button']"));
-    expect(button.attributes["aria-disabled"]).toBe("true");
+    const button = fixture.debugElement.query(
+      By.css("[data-testid='select-button']"),
+    ).nativeElement;
+    expect(button.disabled).toBe(true);
   });
 
   it("should disable the button if no algorithm is selected", () => {
@@ -100,8 +104,10 @@ describe("VaultGeneratorDialogComponent", () => {
     generator.valueGenerated.emit("test-password");
     fixture.detectChanges();
 
-    const button = fixture.debugElement.query(By.css("[data-testid='select-button']"));
-    expect(button.attributes["aria-disabled"]).toBe("true");
+    const button = fixture.debugElement.query(
+      By.css("[data-testid='select-button']"),
+    ).nativeElement;
+    expect(button.disabled).toBe(true);
   });
 
   it("should update button text when algorithm is selected", () => {
diff --git a/apps/web/src/app/vault/components/web-generator-dialog/web-generator-dialog.component.spec.ts b/apps/web/src/app/vault/components/web-generator-dialog/web-generator-dialog.component.spec.ts
index afb32738901..085a3d0d4b0 100644
--- a/apps/web/src/app/vault/components/web-generator-dialog/web-generator-dialog.component.spec.ts
+++ b/apps/web/src/app/vault/components/web-generator-dialog/web-generator-dialog.component.spec.ts
@@ -70,8 +70,10 @@ describe("WebVaultGeneratorDialogComponent", () => {
     generator.valueGenerated.emit("test-password");
     fixture.detectChanges();
 
-    const button = fixture.debugElement.query(By.css("[data-testid='select-button']"));
-    expect(button.attributes["aria-disabled"]).toBe(undefined);
+    const button = fixture.debugElement.query(
+      By.css("[data-testid='select-button']"),
+    ).nativeElement;
+    expect(button.disabled).toBe(false);
   });
 
   it("should disable the button if no value has been generated", () => {
@@ -82,8 +84,10 @@ describe("WebVaultGeneratorDialogComponent", () => {
     generator.algorithmSelected.emit({ useGeneratedValue: "Use Password" } as any);
     fixture.detectChanges();
 
-    const button = fixture.debugElement.query(By.css("[data-testid='select-button']"));
-    expect(button.attributes["aria-disabled"]).toBe("true");
+    const button = fixture.debugElement.query(
+      By.css("[data-testid='select-button']"),
+    ).nativeElement;
+    expect(button.disabled).toBe(true);
   });
 
   it("should disable the button if no algorithm is selected", () => {
@@ -94,8 +98,10 @@ describe("WebVaultGeneratorDialogComponent", () => {
     generator.valueGenerated.emit("test-password");
     fixture.detectChanges();
 
-    const button = fixture.debugElement.query(By.css("[data-testid='select-button']"));
-    expect(button.attributes["aria-disabled"]).toBe("true");
+    const button = fixture.debugElement.query(
+      By.css("[data-testid='select-button']"),
+    ).nativeElement;
+    expect(button.disabled).toBe(true);
   });
 
   it("should close with selected value when confirmed", () => {
diff --git a/libs/components/src/button/button.component.spec.ts b/libs/components/src/button/button.component.spec.ts
index 1651b6cf12a..6ddbc172803 100644
--- a/libs/components/src/button/button.component.spec.ts
+++ b/libs/components/src/button/button.component.spec.ts
@@ -34,25 +34,23 @@ describe("Button", () => {
     expect(buttonDebugElement.nativeElement.disabled).toBeFalsy();
   });
 
-  it("should be aria-disabled and not html attribute disabled when disabled is true", () => {
+  it("should be disabled when disabled is true", () => {
     testAppComponent.disabled = true;
     fixture.detectChanges();
-    expect(buttonDebugElement.attributes["aria-disabled"]).toBe("true");
-    expect(buttonDebugElement.nativeElement.disabled).toBeFalsy();
+
+    expect(buttonDebugElement.nativeElement.disabled).toBeTruthy();
     // Anchor tags cannot be disabled.
   });
 
-  it("should be aria-disabled not html attribute disabled when attribute disabled is true", () => {
-    fixture.detectChanges();
-    expect(disabledButtonDebugElement.attributes["aria-disabled"]).toBe("true");
-    expect(disabledButtonDebugElement.nativeElement.disabled).toBeFalsy();
+  it("should be disabled when attribute disabled is true", () => {
+    expect(disabledButtonDebugElement.nativeElement.disabled).toBeTruthy();
   });
 
   it("should be disabled when loading is true", () => {
     testAppComponent.loading = true;
     fixture.detectChanges();
 
-    expect(buttonDebugElement.attributes["aria-disabled"]).toBe("true");
+    expect(buttonDebugElement.nativeElement.disabled).toBeTruthy();
   });
 });
 
diff --git a/libs/components/src/button/button.component.ts b/libs/components/src/button/button.component.ts
index a1b35608f25..635c269bd0f 100644
--- a/libs/components/src/button/button.component.ts
+++ b/libs/components/src/button/button.component.ts
@@ -1,20 +1,9 @@
 import { NgClass } from "@angular/common";
-import {
-  HostBinding,
-  Component,
-  model,
-  computed,
-  input,
-  ElementRef,
-  inject,
-  Signal,
-  booleanAttribute,
-} from "@angular/core";
+import { input, HostBinding, Component, model, computed, booleanAttribute } from "@angular/core";
 import { toObservable, toSignal } from "@angular/core/rxjs-interop";
 import { debounce, interval } from "rxjs";
 
 import { ButtonLikeAbstraction, ButtonType, ButtonSize } from "../shared/button-like.abstraction";
-import { ariaDisableElement } from "../utils";
 
 const focusRing = [
   "focus-visible:tw-ring-2",
@@ -62,7 +51,7 @@ const buttonStyles: Record<ButtonType, string[]> = {
   providers: [{ provide: ButtonLikeAbstraction, useExisting: ButtonComponent }],
   imports: [NgClass],
   host: {
-    "[attr.aria-disabled]": "disabledAttr()",
+    "[attr.disabled]": "disabledAttr()",
   },
 })
 export class ButtonComponent implements ButtonLikeAbstraction {
@@ -79,28 +68,27 @@ export class ButtonComponent implements ButtonLikeAbstraction {
       "focus:tw-outline-none",
     ]
       .concat(this.block() ? ["tw-w-full", "tw-block"] : ["tw-inline-block"])
+      .concat(buttonStyles[this.buttonType() ?? "secondary"])
       .concat(
         this.showDisabledStyles() || this.disabled()
           ? [
-              "aria-disabled:!tw-bg-secondary-300",
-              "hover:tw-bg-secondary-300",
-              "aria-disabled:tw-border-secondary-300",
-              "hover:tw-border-secondary-300",
-              "aria-disabled:!tw-text-muted",
-              "hover:!tw-text-muted",
-              "aria-disabled:tw-cursor-not-allowed",
-              "hover:tw-no-underline",
-              "aria-disabled:tw-pointer-events-none",
+              "disabled:tw-bg-secondary-300",
+              "disabled:hover:tw-bg-secondary-300",
+              "disabled:tw-border-secondary-300",
+              "disabled:hover:tw-border-secondary-300",
+              "disabled:!tw-text-muted",
+              "disabled:hover:!tw-text-muted",
+              "disabled:tw-cursor-not-allowed",
+              "disabled:hover:tw-no-underline",
             ]
           : [],
       )
-      .concat(buttonStyles[this.buttonType() ?? "secondary"])
       .concat(buttonSizeStyles[this.size() || "default"]);
   }
 
   protected disabledAttr = computed(() => {
     const disabled = this.disabled() != null && this.disabled() !== false;
-    return disabled || this.loading() ? true : undefined;
+    return disabled || this.loading() ? true : null;
   });
 
   /**
@@ -139,10 +127,5 @@ export class ButtonComponent implements ButtonLikeAbstraction {
     toObservable(this.loading).pipe(debounce((isLoading) => interval(isLoading ? 75 : 0))),
   );
 
-  readonly disabled = model<boolean>(false);
-  private el = inject(ElementRef<HTMLButtonElement>);
-
-  constructor() {
-    ariaDisableElement(this.el.nativeElement, this.disabledAttr as Signal<boolean | undefined>);
-  }
+  disabled = model<boolean>(false);
 }
diff --git a/libs/components/src/form-field/form-field.component.html b/libs/components/src/form-field/form-field.component.html
index ccea0546f3a..c4fd018b3ba 100644
--- a/libs/components/src/form-field/form-field.component.html
+++ b/libs/components/src/form-field/form-field.component.html
@@ -46,7 +46,7 @@
       </div>
     </div>
     <div
-      class="tw-gap-1 tw-bg-background tw-rounded-lg tw-flex tw-min-h-11 [&:has(input:disabled,input:read-only,textarea:read-only):not(:has(button:not([aria-disabled='true'])))]:tw-bg-secondary-100"
+      class="tw-gap-1 tw-bg-background tw-rounded-lg tw-flex tw-min-h-11 [&:not(:has(button:enabled)):has(input:read-only)]:tw-bg-secondary-100 [&:not(:has(button:enabled)):has(textarea:read-only)]:tw-bg-secondary-100"
     >
       <div
         #prefixContainer
diff --git a/libs/components/src/icon-button/icon-button.component.ts b/libs/components/src/icon-button/icon-button.component.ts
index 2b2682ec47e..f71faccb1e7 100644
--- a/libs/components/src/icon-button/icon-button.component.ts
+++ b/libs/components/src/icon-button/icon-button.component.ts
@@ -1,22 +1,12 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
 import { NgClass } from "@angular/common";
-import {
-  Component,
-  computed,
-  ElementRef,
-  HostBinding,
-  inject,
-  input,
-  model,
-  Signal,
-} from "@angular/core";
+import { Component, computed, ElementRef, HostBinding, input, model } from "@angular/core";
 import { toObservable, toSignal } from "@angular/core/rxjs-interop";
 import { debounce, interval } from "rxjs";
 
 import { ButtonLikeAbstraction, ButtonType } from "../shared/button-like.abstraction";
 import { FocusableElement } from "../shared/focusable-element";
-import { ariaDisableElement } from "../utils";
 
 export type IconButtonType = ButtonType | "contrast" | "main" | "muted" | "light";
 
@@ -112,41 +102,41 @@ const styles: Record<IconButtonType, string[]> = {
 
 const disabledStyles: Record<IconButtonType, string[]> = {
   contrast: [
-    "aria-disabled:tw-opacity-60",
-    "aria-disabled:hover:tw-border-transparent",
-    "aria-disabled:hover:tw-bg-transparent",
+    "disabled:tw-opacity-60",
+    "disabled:hover:tw-border-transparent",
+    "disabled:hover:tw-bg-transparent",
   ],
   main: [
-    "aria-disabled:!tw-text-secondary-300",
-    "aria-disabled:hover:tw-border-transparent",
-    "aria-disabled:hover:tw-bg-transparent",
+    "disabled:!tw-text-secondary-300",
+    "disabled:hover:tw-border-transparent",
+    "disabled:hover:tw-bg-transparent",
   ],
   muted: [
-    "aria-disabled:!tw-text-secondary-300",
-    "aria-disabled:hover:tw-border-transparent",
-    "aria-disabled:hover:tw-bg-transparent",
+    "disabled:!tw-text-secondary-300",
+    "disabled:hover:tw-border-transparent",
+    "disabled:hover:tw-bg-transparent",
   ],
   primary: [
-    "aria-disabled:tw-opacity-60",
-    "aria-disabled:hover:tw-border-primary-600",
-    "aria-disabled:hover:tw-bg-primary-600",
+    "disabled:tw-opacity-60",
+    "disabled:hover:tw-border-primary-600",
+    "disabled:hover:tw-bg-primary-600",
   ],
   secondary: [
-    "aria-disabled:tw-opacity-60",
-    "aria-disabled:hover:tw-border-text-muted",
-    "aria-disabled:hover:tw-bg-transparent",
-    "aria-disabled:hover:!tw-text-muted",
+    "disabled:tw-opacity-60",
+    "disabled:hover:tw-border-text-muted",
+    "disabled:hover:tw-bg-transparent",
+    "disabled:hover:!tw-text-muted",
   ],
   danger: [
-    "aria-disabled:!tw-text-secondary-300",
-    "aria-disabled:hover:tw-border-transparent",
-    "aria-disabled:hover:tw-bg-transparent",
-    "aria-disabled:hover:!tw-text-secondary-300",
+    "disabled:!tw-text-secondary-300",
+    "disabled:hover:tw-border-transparent",
+    "disabled:hover:tw-bg-transparent",
+    "disabled:hover:!tw-text-secondary-300",
   ],
   light: [
-    "aria-disabled:tw-opacity-60",
-    "aria-disabled:hover:tw-border-transparent",
-    "aria-disabled:hover:tw-bg-transparent",
+    "disabled:tw-opacity-60",
+    "disabled:hover:tw-border-transparent",
+    "disabled:hover:tw-bg-transparent",
   ],
   unstyled: [],
 };
@@ -173,7 +163,7 @@ const sizes: Record<IconButtonSize, string[]> = {
   ],
   imports: [NgClass],
   host: {
-    "[attr.aria-disabled]": "disabledAttr()",
+    "[attr.disabled]": "disabledAttr()",
   },
 })
 export class BitIconButtonComponent implements ButtonLikeAbstraction, FocusableElement {
@@ -245,10 +235,5 @@ export class BitIconButtonComponent implements ButtonLikeAbstraction, FocusableE
     return this.elementRef.nativeElement;
   }
 
-  private elementRef = inject(ElementRef);
-
-  constructor() {
-    const element = this.elementRef.nativeElement;
-    ariaDisableElement(element, this.disabledAttr as Signal<boolean | undefined>);
-  }
+  constructor(private elementRef: ElementRef) {}
 }
diff --git a/libs/components/src/link/link.directive.ts b/libs/components/src/link/link.directive.ts
index aced89fc7b3..f2eb44bc3a4 100644
--- a/libs/components/src/link/link.directive.ts
+++ b/libs/components/src/link/link.directive.ts
@@ -1,6 +1,4 @@
-import { HostBinding, Directive, inject, ElementRef, input, booleanAttribute } from "@angular/core";
-
-import { ariaDisableElement } from "../utils";
+import { input, HostBinding, Directive } from "@angular/core";
 
 export type LinkType = "primary" | "secondary" | "contrast" | "light";
 
@@ -60,11 +58,6 @@ const commonStyles = [
   "before:tw-transition",
   "focus-visible:before:tw-ring-2",
   "focus-visible:tw-z-10",
-  "aria-disabled:tw-no-underline",
-  "aria-disabled:tw-pointer-events-none",
-  "aria-disabled:!tw-text-secondary-300",
-  "aria-disabled:hover:!tw-text-secondary-300",
-  "aria-disabled:hover:tw-no-underline",
 ];
 
 @Directive()
@@ -95,19 +88,9 @@ export class AnchorLinkDirective extends LinkDirective {
   selector: "button[bitLink]",
 })
 export class ButtonLinkDirective extends LinkDirective {
-  private el = inject(ElementRef<HTMLButtonElement>);
-
-  disabled = input(false, { transform: booleanAttribute });
-
   @HostBinding("class") get classList() {
     return ["before:-tw-inset-y-[0.25rem]"]
       .concat(commonStyles)
       .concat(linkStyles[this.linkType()] ?? []);
   }
-
-  constructor() {
-    super();
-
-    ariaDisableElement(this.el.nativeElement, this.disabled);
-  }
 }
diff --git a/libs/components/src/utils/aria-disable-element.ts b/libs/components/src/utils/aria-disable-element.ts
deleted file mode 100644
index f7e02f2cdd1..00000000000
--- a/libs/components/src/utils/aria-disable-element.ts
+++ /dev/null
@@ -1,29 +0,0 @@
-import { Signal, effect } from "@angular/core";
-import { takeUntilDestroyed } from "@angular/core/rxjs-interop";
-import { fromEvent } from "rxjs";
-
-/**
- * a11y helper util used to `aria-disable` elements as opposed to using the HTML `disabled` attr.
- * - Removes HTML `disabled` attr and replaces it with `aria-disabled="true"`
- * - Captures click events and prevents them from propagating
- */
-export function ariaDisableElement(element: HTMLElement, isDisabled: Signal<boolean | undefined>) {
-  effect(() => {
-    if (element.hasAttribute("disabled") || isDisabled()) {
-      // Remove native disabled and set aria-disabled. Capture click event
-      element.removeAttribute("disabled");
-
-      element.setAttribute("aria-disabled", "true");
-    }
-  });
-
-  fromEvent(element, "click")
-    .pipe(takeUntilDestroyed())
-    .subscribe((event: Event) => {
-      if (isDisabled()) {
-        event.stopPropagation();
-        event.preventDefault();
-        return false;
-      }
-    });
-}
diff --git a/libs/components/src/utils/index.ts b/libs/components/src/utils/index.ts
index 91fa71cf0e0..afadd6b3b41 100644
--- a/libs/components/src/utils/index.ts
+++ b/libs/components/src/utils/index.ts
@@ -1,3 +1,2 @@
-export * from "./aria-disable-element";
 export * from "./function-to-observable";
 export * from "./i18n-mock.service";

From 00b6b0224e1d04dde33bd0d7069e57f5329b408c Mon Sep 17 00:00:00 2001
From: Alec Rippberger <127791530+alec-livefront@users.noreply.github.com>
Date: Thu, 17 Jul 2025 12:43:49 -0500
Subject: [PATCH 161/239] feat(extension-login-approvals): [Auth/PM-14939]
 devices list view for browser (#14620)

Creates a new `DeviceManagementComponent` that fetches devices and formats them before handing them off to a view component for display.

View components:

- `DeviceManagementTableComponent` - displays on medium to large screens
- `DeviceManagementItemGroupComponent` - displays on small screens

Feature flag: `PM14938_BrowserExtensionLoginApproval`
---
 apps/browser/src/_locales/en/messages.json    |  98 ++++++++
 .../settings/account-security.component.html  |  12 +
 .../settings/account-security.component.ts    |   8 +
 ...extension-device-management.component.html |  11 +
 .../extension-device-management.component.ts  |  22 ++
 ...ion-device-management-component.service.ts |  15 ++
 .../browser/src/background/main.background.ts |   3 +-
 apps/browser/src/popup/app-routing.module.ts  |   7 +
 .../src/popup/services/services.module.ts     |   7 +
 ...l => device-management-old.component.html} |   0
 ...> device-management-old.component.spec.ts} |  10 +-
 ....ts => device-management-old.component.ts} |   4 +-
 .../security/security-routing.module.ts       |  18 +-
 apps/web/src/app/core/core.module.ts          |   7 +
 apps/web/src/locales/en/messages.json         |  22 ++
 ...ult-device-management-component.service.ts |  15 ++
 ...anagement-component.service.abstraction.ts |  11 +
 ...evice-management-item-group.component.html |  63 +++++
 .../device-management-item-group.component.ts |  44 ++++
 .../device-management-table.component.html    |  62 +++++
 .../device-management-table.component.ts      |  86 +++++++
 .../device-management.component.html          |  40 +++
 .../device-management.component.ts            | 230 ++++++++++++++++++
 .../resort-devices.helper.ts                  |  53 ++++
 .../src/services/jslib-services.module.ts     |   2 +-
 .../devices/devices.service.abstraction.ts    |   3 +
 .../devices/devices.service.implementation.ts |  25 +-
 libs/common/src/enums/device-type.enum.ts     |  20 +-
 28 files changed, 872 insertions(+), 26 deletions(-)
 create mode 100644 apps/browser/src/auth/popup/settings/extension-device-management.component.html
 create mode 100644 apps/browser/src/auth/popup/settings/extension-device-management.component.ts
 create mode 100644 apps/browser/src/auth/services/extension-device-management-component.service.ts
 rename apps/web/src/app/auth/settings/security/{device-management.component.html => device-management-old.component.html} (100%)
 rename apps/web/src/app/auth/settings/security/{device-management.component.spec.ts => device-management-old.component.spec.ts} (95%)
 rename apps/web/src/app/auth/settings/security/{device-management.component.ts => device-management-old.component.ts} (99%)
 create mode 100644 libs/angular/src/auth/device-management/default-device-management-component.service.ts
 create mode 100644 libs/angular/src/auth/device-management/device-management-component.service.abstraction.ts
 create mode 100644 libs/angular/src/auth/device-management/device-management-item-group.component.html
 create mode 100644 libs/angular/src/auth/device-management/device-management-item-group.component.ts
 create mode 100644 libs/angular/src/auth/device-management/device-management-table.component.html
 create mode 100644 libs/angular/src/auth/device-management/device-management-table.component.ts
 create mode 100644 libs/angular/src/auth/device-management/device-management.component.html
 create mode 100644 libs/angular/src/auth/device-management/device-management.component.ts
 create mode 100644 libs/angular/src/auth/device-management/resort-devices.helper.ts

diff --git a/apps/browser/src/_locales/en/messages.json b/apps/browser/src/_locales/en/messages.json
index ee8cd412625..11d13392ce2 100644
--- a/apps/browser/src/_locales/en/messages.json
+++ b/apps/browser/src/_locales/en/messages.json
@@ -3460,6 +3460,22 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "masterPasswordChanged": {
     "message": "Master password saved"
   },
@@ -3556,6 +3572,88 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Remember this device to make future logins seamless"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Device approval required. Select an approval option below:"
   },
diff --git a/apps/browser/src/auth/popup/settings/account-security.component.html b/apps/browser/src/auth/popup/settings/account-security.component.html
index d835497d9be..3de1cc81a69 100644
--- a/apps/browser/src/auth/popup/settings/account-security.component.html
+++ b/apps/browser/src/auth/popup/settings/account-security.component.html
@@ -102,6 +102,18 @@
       </bit-card>
     </bit-section>
 
+    <bit-section *ngIf="extensionLoginApprovalFlagEnabled">
+      <bit-section-header>
+        <h2 bitTypography="h6">{{ "manageDevices" | i18n }}</h2>
+      </bit-section-header>
+      <bit-item>
+        <button bit-item-content type="button" appStopClick routerLink="/device-management">
+          {{ "devices" | i18n }}
+          <i slot="end" class="bwi bwi-chevron-right" aria-hidden="true"></i>
+        </button>
+      </bit-item>
+    </bit-section>
+
     <bit-section disableMargin>
       <bit-section-header>
         <h2 bitTypography="h6">{{ "otherOptions" | i18n }}</h2>
diff --git a/apps/browser/src/auth/popup/settings/account-security.component.ts b/apps/browser/src/auth/popup/settings/account-security.component.ts
index 4f9e1f7414a..6c072532a5d 100644
--- a/apps/browser/src/auth/popup/settings/account-security.component.ts
+++ b/apps/browser/src/auth/popup/settings/account-security.component.ts
@@ -32,6 +32,7 @@ import { getFirstPolicy } from "@bitwarden/common/admin-console/services/policy/
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { UserVerificationService } from "@bitwarden/common/auth/abstractions/user-verification/user-verification.service.abstraction";
 import { getUserId } from "@bitwarden/common/auth/services/account.service";
+import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
 import {
   VaultTimeout,
   VaultTimeoutAction,
@@ -40,6 +41,7 @@ import {
   VaultTimeoutSettingsService,
   VaultTimeoutStringType,
 } from "@bitwarden/common/key-management/vault-timeout";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { EnvironmentService } from "@bitwarden/common/platform/abstractions/environment.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
@@ -113,6 +115,7 @@ export class AccountSecurityComponent implements OnInit, OnDestroy {
   biometricUnavailabilityReason: string;
   showChangeMasterPass = true;
   pinEnabled$: Observable<boolean> = of(true);
+  extensionLoginApprovalFlagEnabled = false;
 
   form = this.formBuilder.group({
     vaultTimeout: [null as VaultTimeout | null],
@@ -155,6 +158,7 @@ export class AccountSecurityComponent implements OnInit, OnDestroy {
     private biometricsService: BiometricsService,
     private vaultNudgesService: NudgesService,
     private validationService: ValidationService,
+    private configService: ConfigService,
   ) {}
 
   async ngOnInit() {
@@ -235,6 +239,10 @@ export class AccountSecurityComponent implements OnInit, OnDestroy {
     };
     this.form.patchValue(initialValues, { emitEvent: false });
 
+    this.extensionLoginApprovalFlagEnabled = await this.configService.getFeatureFlag(
+      FeatureFlag.PM14938_BrowserExtensionLoginApproval,
+    );
+
     timer(0, 1000)
       .pipe(
         switchMap(async () => {
diff --git a/apps/browser/src/auth/popup/settings/extension-device-management.component.html b/apps/browser/src/auth/popup/settings/extension-device-management.component.html
new file mode 100644
index 00000000000..aadbe6b81d0
--- /dev/null
+++ b/apps/browser/src/auth/popup/settings/extension-device-management.component.html
@@ -0,0 +1,11 @@
+<popup-page>
+  <popup-header slot="header" pageTitle="{{ 'devices' | i18n }}" showBackButton>
+    <ng-container slot="end">
+      <app-pop-out></app-pop-out>
+    </ng-container>
+  </popup-header>
+
+  <div class="tw-bg-background-alt">
+    <auth-device-management></auth-device-management>
+  </div>
+</popup-page>
diff --git a/apps/browser/src/auth/popup/settings/extension-device-management.component.ts b/apps/browser/src/auth/popup/settings/extension-device-management.component.ts
new file mode 100644
index 00000000000..793965db141
--- /dev/null
+++ b/apps/browser/src/auth/popup/settings/extension-device-management.component.ts
@@ -0,0 +1,22 @@
+import { Component } from "@angular/core";
+
+import { DeviceManagementComponent } from "@bitwarden/angular/auth/device-management/device-management.component";
+import { I18nPipe } from "@bitwarden/ui-common";
+
+import { PopOutComponent } from "../../../platform/popup/components/pop-out.component";
+import { PopupHeaderComponent } from "../../../platform/popup/layout/popup-header.component";
+import { PopupPageComponent } from "../../../platform/popup/layout/popup-page.component";
+
+@Component({
+  standalone: true,
+  selector: "extension-device-management",
+  templateUrl: "extension-device-management.component.html",
+  imports: [
+    DeviceManagementComponent,
+    I18nPipe,
+    PopOutComponent,
+    PopupHeaderComponent,
+    PopupPageComponent,
+  ],
+})
+export class ExtensionDeviceManagementComponent {}
diff --git a/apps/browser/src/auth/services/extension-device-management-component.service.ts b/apps/browser/src/auth/services/extension-device-management-component.service.ts
new file mode 100644
index 00000000000..2585ba3198c
--- /dev/null
+++ b/apps/browser/src/auth/services/extension-device-management-component.service.ts
@@ -0,0 +1,15 @@
+import { DeviceManagementComponentServiceAbstraction } from "@bitwarden/angular/auth/device-management/device-management-component.service.abstraction";
+
+/**
+ * Browser extension implementation of the device management component service
+ */
+export class ExtensionDeviceManagementComponentService
+  implements DeviceManagementComponentServiceAbstraction
+{
+  /**
+   * Don't show header information in browser extension client
+   */
+  showHeaderInformation(): boolean {
+    return false;
+  }
+}
diff --git a/apps/browser/src/background/main.background.ts b/apps/browser/src/background/main.background.ts
index 0d7fe740069..1dfc947b284 100644
--- a/apps/browser/src/background/main.background.ts
+++ b/apps/browser/src/background/main.background.ts
@@ -814,8 +814,9 @@ export default class MainBackground {
     );
 
     this.devicesService = new DevicesServiceImplementation(
-      this.devicesApiService,
       this.appIdService,
+      this.devicesApiService,
+      this.i18nService,
     );
 
     this.authRequestApiService = new DefaultAuthRequestApiService(this.apiService, this.logService);
diff --git a/apps/browser/src/popup/app-routing.module.ts b/apps/browser/src/popup/app-routing.module.ts
index da5a6c43d36..47ba2326557 100644
--- a/apps/browser/src/popup/app-routing.module.ts
+++ b/apps/browser/src/popup/app-routing.module.ts
@@ -49,6 +49,7 @@ import { AccountSwitcherComponent } from "../auth/popup/account-switching/accoun
 import { fido2AuthGuard } from "../auth/popup/guards/fido2-auth.guard";
 import { SetPasswordComponent } from "../auth/popup/set-password.component";
 import { AccountSecurityComponent } from "../auth/popup/settings/account-security.component";
+import { ExtensionDeviceManagementComponent } from "../auth/popup/settings/extension-device-management.component";
 import { UpdateTempPasswordComponent } from "../auth/popup/update-temp-password.component";
 import { Fido2Component } from "../autofill/popup/fido2/fido2.component";
 import { AutofillComponent } from "../autofill/popup/settings/autofill.component";
@@ -263,6 +264,12 @@ const routes: Routes = [
     canActivate: [authGuard],
     data: { elevation: 1 } satisfies RouteDataProperties,
   },
+  {
+    path: "device-management",
+    component: ExtensionDeviceManagementComponent,
+    canActivate: [authGuard],
+    data: { elevation: 1 } satisfies RouteDataProperties,
+  },
   {
     path: "notifications",
     component: NotificationsSettingsComponent,
diff --git a/apps/browser/src/popup/services/services.module.ts b/apps/browser/src/popup/services/services.module.ts
index 54d09ab9d8c..3887c8c8b12 100644
--- a/apps/browser/src/popup/services/services.module.ts
+++ b/apps/browser/src/popup/services/services.module.ts
@@ -4,6 +4,7 @@ import { APP_INITIALIZER, NgModule, NgZone } from "@angular/core";
 import { merge, of, Subject } from "rxjs";
 
 import { CollectionService } from "@bitwarden/admin-console/common";
+import { DeviceManagementComponentServiceAbstraction } from "@bitwarden/angular/auth/device-management/device-management-component.service.abstraction";
 import { AngularThemingService } from "@bitwarden/angular/platform/services/theming/angular-theming.service";
 import { SafeProvider, safeProvider } from "@bitwarden/angular/platform/utils/safe-provider";
 import { ViewCacheService } from "@bitwarden/angular/platform/view-cache";
@@ -145,6 +146,7 @@ import { ForegroundLockService } from "../../auth/popup/accounts/foreground-lock
 import { ExtensionLoginComponentService } from "../../auth/popup/login/extension-login-component.service";
 import { ExtensionSsoComponentService } from "../../auth/popup/login/extension-sso-component.service";
 import { ExtensionLogoutService } from "../../auth/popup/logout/extension-logout.service";
+import { ExtensionDeviceManagementComponentService } from "../../auth/services/extension-device-management-component.service";
 import { ExtensionTwoFactorAuthComponentService } from "../../auth/services/extension-two-factor-auth-component.service";
 import { ExtensionTwoFactorAuthDuoComponentService } from "../../auth/services/extension-two-factor-auth-duo-component.service";
 import { ExtensionTwoFactorAuthWebAuthnComponentService } from "../../auth/services/extension-two-factor-auth-webauthn-component.service";
@@ -667,6 +669,11 @@ const safeProviders: SafeProvider[] = [
     useClass: ForegroundNotificationsService,
     deps: [LogService],
   }),
+  safeProvider({
+    provide: DeviceManagementComponentServiceAbstraction,
+    useClass: ExtensionDeviceManagementComponentService,
+    deps: [],
+  }),
 ];
 
 @NgModule({
diff --git a/apps/web/src/app/auth/settings/security/device-management.component.html b/apps/web/src/app/auth/settings/security/device-management-old.component.html
similarity index 100%
rename from apps/web/src/app/auth/settings/security/device-management.component.html
rename to apps/web/src/app/auth/settings/security/device-management-old.component.html
diff --git a/apps/web/src/app/auth/settings/security/device-management.component.spec.ts b/apps/web/src/app/auth/settings/security/device-management-old.component.spec.ts
similarity index 95%
rename from apps/web/src/app/auth/settings/security/device-management.component.spec.ts
rename to apps/web/src/app/auth/settings/security/device-management-old.component.spec.ts
index 2821d4a6d76..64fb9003ccf 100644
--- a/apps/web/src/app/auth/settings/security/device-management.component.spec.ts
+++ b/apps/web/src/app/auth/settings/security/device-management-old.component.spec.ts
@@ -20,7 +20,7 @@ import {
 import { SharedModule } from "../../../shared";
 import { VaultBannersService } from "../../../vault/individual-vault/vault-banners/services/vault-banners.service";
 
-import { DeviceManagementComponent } from "./device-management.component";
+import { DeviceManagementOldComponent } from "./device-management-old.component";
 
 class MockResizeObserver {
   observe = jest.fn();
@@ -35,8 +35,8 @@ interface Message {
   notificationId?: string;
 }
 
-describe("DeviceManagementComponent", () => {
-  let fixture: ComponentFixture<DeviceManagementComponent>;
+describe("DeviceManagementOldComponent", () => {
+  let fixture: ComponentFixture<DeviceManagementOldComponent>;
   let messageSubject: Subject<Message>;
   let mockDevices: DeviceView[];
   let vaultBannersService: VaultBannersService;
@@ -66,7 +66,7 @@ describe("DeviceManagementComponent", () => {
         SharedModule,
         TableModule,
         PopoverModule,
-        DeviceManagementComponent,
+        DeviceManagementOldComponent,
       ],
       providers: [
         {
@@ -130,7 +130,7 @@ describe("DeviceManagementComponent", () => {
       ],
     }).compileComponents();
 
-    fixture = TestBed.createComponent(DeviceManagementComponent);
+    fixture = TestBed.createComponent(DeviceManagementOldComponent);
 
     vaultBannersService = TestBed.inject(VaultBannersService);
   });
diff --git a/apps/web/src/app/auth/settings/security/device-management.component.ts b/apps/web/src/app/auth/settings/security/device-management-old.component.ts
similarity index 99%
rename from apps/web/src/app/auth/settings/security/device-management.component.ts
rename to apps/web/src/app/auth/settings/security/device-management-old.component.ts
index 854a13faa99..556ba381acc 100644
--- a/apps/web/src/app/auth/settings/security/device-management.component.ts
+++ b/apps/web/src/app/auth/settings/security/device-management-old.component.ts
@@ -45,10 +45,10 @@ interface DeviceTableData {
  */
 @Component({
   selector: "app-device-management",
-  templateUrl: "./device-management.component.html",
+  templateUrl: "./device-management-old.component.html",
   imports: [CommonModule, SharedModule, TableModule, PopoverModule],
 })
-export class DeviceManagementComponent {
+export class DeviceManagementOldComponent {
   protected dataSource = new TableDataSource<DeviceTableData>();
   protected currentDevice: DeviceView | undefined;
   protected loading = true;
diff --git a/apps/web/src/app/auth/settings/security/security-routing.module.ts b/apps/web/src/app/auth/settings/security/security-routing.module.ts
index 14d4aab8a36..2ec1be5cb7f 100644
--- a/apps/web/src/app/auth/settings/security/security-routing.module.ts
+++ b/apps/web/src/app/auth/settings/security/security-routing.module.ts
@@ -1,13 +1,15 @@
 import { NgModule } from "@angular/core";
 import { RouterModule, Routes } from "@angular/router";
 
+import { DeviceManagementComponent } from "@bitwarden/angular/auth/device-management/device-management.component";
 import { canAccessFeature } from "@bitwarden/angular/platform/guard/feature-flag.guard";
+import { featureFlaggedRoute } from "@bitwarden/angular/platform/utils/feature-flagged-route";
 import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
 
 import { ChangePasswordComponent } from "../change-password.component";
 import { TwoFactorSetupComponent } from "../two-factor/two-factor-setup.component";
 
-import { DeviceManagementComponent } from "./device-management.component";
+import { DeviceManagementOldComponent } from "./device-management-old.component";
 import { PasswordSettingsComponent } from "./password-settings/password-settings.component";
 import { SecurityKeysComponent } from "./security-keys.component";
 import { SecurityComponent } from "./security.component";
@@ -55,11 +57,15 @@ const routes: Routes = [
         component: SecurityKeysComponent,
         data: { titleId: "keys" },
       },
-      {
-        path: "device-management",
-        component: DeviceManagementComponent,
-        data: { titleId: "devices" },
-      },
+      ...featureFlaggedRoute({
+        defaultComponent: DeviceManagementOldComponent,
+        flaggedComponent: DeviceManagementComponent,
+        featureFlag: FeatureFlag.PM14938_BrowserExtensionLoginApproval,
+        routeOptions: {
+          path: "device-management",
+          data: { titleId: "devices" },
+        },
+      }),
     ],
   },
 ];
diff --git a/apps/web/src/app/core/core.module.ts b/apps/web/src/app/core/core.module.ts
index 9cfe3117d40..d98a2ee8cf2 100644
--- a/apps/web/src/app/core/core.module.ts
+++ b/apps/web/src/app/core/core.module.ts
@@ -10,6 +10,8 @@ import {
   OrganizationUserApiService,
   CollectionService,
 } from "@bitwarden/admin-console/common";
+import { DefaultDeviceManagementComponentService } from "@bitwarden/angular/auth/device-management/default-device-management-component.service";
+import { DeviceManagementComponentServiceAbstraction } from "@bitwarden/angular/auth/device-management/device-management-component.service.abstraction";
 import { ChangePasswordService } from "@bitwarden/angular/auth/password-management/change-password";
 import { SetInitialPasswordService } from "@bitwarden/angular/auth/password-management/set-initial-password/set-initial-password.service.abstraction";
 import { SafeProvider, safeProvider } from "@bitwarden/angular/platform/utils/safe-provider";
@@ -406,6 +408,11 @@ const safeProviders: SafeProvider[] = [
       RouterService,
     ],
   }),
+  safeProvider({
+    provide: DeviceManagementComponentServiceAbstraction,
+    useClass: DefaultDeviceManagementComponentService,
+    deps: [],
+  }),
 ];
 
 @NgModule({
diff --git a/apps/web/src/locales/en/messages.json b/apps/web/src/locales/en/messages.json
index a58126adac5..475fb004033 100644
--- a/apps/web/src/locales/en/messages.json
+++ b/apps/web/src/locales/en/messages.json
@@ -3489,6 +3489,9 @@
   "webVault": {
     "message": "Web vault"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3971,6 +3974,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Login request has already expired."
   },
@@ -4115,6 +4134,9 @@
   "reviewLoginRequest": {
     "message": "Review login request"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "Your free trial ends in $COUNT$ days.",
     "placeholders": {
diff --git a/libs/angular/src/auth/device-management/default-device-management-component.service.ts b/libs/angular/src/auth/device-management/default-device-management-component.service.ts
new file mode 100644
index 00000000000..5089ba259a5
--- /dev/null
+++ b/libs/angular/src/auth/device-management/default-device-management-component.service.ts
@@ -0,0 +1,15 @@
+import { DeviceManagementComponentServiceAbstraction } from "./device-management-component.service.abstraction";
+
+/**
+ * Default implementation of the device management component service
+ */
+export class DefaultDeviceManagementComponentService
+  implements DeviceManagementComponentServiceAbstraction
+{
+  /**
+   * Show header information in web client
+   */
+  showHeaderInformation(): boolean {
+    return true;
+  }
+}
diff --git a/libs/angular/src/auth/device-management/device-management-component.service.abstraction.ts b/libs/angular/src/auth/device-management/device-management-component.service.abstraction.ts
new file mode 100644
index 00000000000..02834908658
--- /dev/null
+++ b/libs/angular/src/auth/device-management/device-management-component.service.abstraction.ts
@@ -0,0 +1,11 @@
+/**
+ * Service abstraction for device management component
+ * Used to determine client-specific behavior
+ */
+export abstract class DeviceManagementComponentServiceAbstraction {
+  /**
+   * Whether to show header information (title, description, etc.) in the device management component
+   * @returns true if header information should be shown, false otherwise
+   */
+  abstract showHeaderInformation(): boolean;
+}
diff --git a/libs/angular/src/auth/device-management/device-management-item-group.component.html b/libs/angular/src/auth/device-management/device-management-item-group.component.html
new file mode 100644
index 00000000000..b47408059a2
--- /dev/null
+++ b/libs/angular/src/auth/device-management/device-management-item-group.component.html
@@ -0,0 +1,63 @@
+<bit-item-group>
+  <bit-item *ngFor="let device of devices">
+    @if (device.pendingAuthRequest) {
+      <button
+        class="tw-relative"
+        bit-item-content
+        type="button"
+        [attr.tabindex]="device.pendingAuthRequest != null ? 0 : null"
+        (click)="approveOrDenyAuthRequest(device.pendingAuthRequest)"
+        (keydown.enter)="approveOrDenyAuthRequest(device.pendingAuthRequest)"
+      >
+        <!-- Default Content -->
+        <span class="tw-text-base">{{ device.displayName }}</span>
+
+        <!-- Default Trailing Content -->
+        <span class="tw-absolute tw-top-[6px] tw-right-3" slot="default-trailing">
+          <span bitBadge variant="warning">
+            {{ "requestPending" | i18n }}
+          </span>
+        </span>
+
+        <!-- Secondary Content -->
+        <span slot="secondary" class="tw-text-sm">
+          <span>{{ "needsApproval" | i18n }}</span>
+          <div>
+            <span class="tw-font-semibold"> {{ "firstLogin" | i18n }}: </span>
+            <span>{{ device.firstLogin | date: "medium" }}</span>
+          </div>
+        </span>
+      </button>
+    } @else {
+      <bit-item-content ngClass="tw-relative">
+        <!-- Default Content -->
+        <span class="tw-text-base">{{ device.displayName }}</span>
+
+        <!-- Default Trailing Content -->
+        <div
+          *ngIf="device.isCurrentDevice"
+          class="tw-absolute tw-top-[6px] tw-right-3"
+          slot="default-trailing"
+        >
+          <span bitBadge variant="primary">
+            {{ "currentSession" | i18n }}
+          </span>
+        </div>
+
+        <!-- Secondary Content -->
+        <div slot="secondary" class="tw-text-sm">
+          @if (device.isTrusted) {
+            <span>{{ "trusted" | i18n }}</span>
+          } @else {
+            <br />
+          }
+
+          <div>
+            <span class="tw-font-semibold">{{ "firstLogin" | i18n }}: </span>
+            <span>{{ device.firstLogin | date: "medium" }}</span>
+          </div>
+        </div>
+      </bit-item-content>
+    }
+  </bit-item>
+</bit-item-group>
diff --git a/libs/angular/src/auth/device-management/device-management-item-group.component.ts b/libs/angular/src/auth/device-management/device-management-item-group.component.ts
new file mode 100644
index 00000000000..62468a18225
--- /dev/null
+++ b/libs/angular/src/auth/device-management/device-management-item-group.component.ts
@@ -0,0 +1,44 @@
+import { CommonModule } from "@angular/common";
+import { Component, Input } from "@angular/core";
+import { firstValueFrom } from "rxjs";
+
+// This import has been flagged as unallowed for this class. It may be involved in a circular dependency loop.
+// eslint-disable-next-line no-restricted-imports
+import { LoginApprovalComponent } from "@bitwarden/auth/angular";
+import { DevicePendingAuthRequest } from "@bitwarden/common/auth/abstractions/devices/responses/device.response";
+import { BadgeModule, DialogService, ItemModule } from "@bitwarden/components";
+import { I18nPipe } from "@bitwarden/ui-common";
+
+import { DeviceDisplayData } from "./device-management.component";
+import { clearAuthRequestAndResortDevices } from "./resort-devices.helper";
+
+/** Displays user devices in an item list view */
+@Component({
+  standalone: true,
+  selector: "auth-device-management-item-group",
+  templateUrl: "./device-management-item-group.component.html",
+  imports: [BadgeModule, CommonModule, ItemModule, I18nPipe],
+})
+export class DeviceManagementItemGroupComponent {
+  @Input() devices: DeviceDisplayData[] = [];
+
+  constructor(private dialogService: DialogService) {}
+
+  protected async approveOrDenyAuthRequest(pendingAuthRequest: DevicePendingAuthRequest | null) {
+    if (pendingAuthRequest == null) {
+      return;
+    }
+
+    const loginApprovalDialog = LoginApprovalComponent.open(this.dialogService, {
+      notificationId: pendingAuthRequest.id,
+    });
+
+    const result = await firstValueFrom(loginApprovalDialog.closed);
+
+    if (result !== undefined && typeof result === "boolean") {
+      // Auth request was approved or denied, so clear the
+      // pending auth request and re-sort the device array
+      this.devices = clearAuthRequestAndResortDevices(this.devices, pendingAuthRequest);
+    }
+  }
+}
diff --git a/libs/angular/src/auth/device-management/device-management-table.component.html b/libs/angular/src/auth/device-management/device-management-table.component.html
new file mode 100644
index 00000000000..febb0a96a4e
--- /dev/null
+++ b/libs/angular/src/auth/device-management/device-management-table.component.html
@@ -0,0 +1,62 @@
+<bit-table-scroll [dataSource]="tableDataSource" [rowSize]="50">
+  <!-- Table Header -->
+  <ng-container header>
+    <th
+      *ngFor="let column of columnConfig"
+      [class]="column.headerClass"
+      bitCell
+      [bitSortable]="column.sortable ? column.name : ''"
+      [default]="column.name === 'loginStatus' ? 'desc' : false"
+      scope="col"
+      role="columnheader"
+    >
+      {{ column.title }}
+    </th>
+  </ng-container>
+
+  <!-- Table Rows -->
+  <ng-template bitRowDef let-device>
+    <!-- Column: Device Name -->
+    <td bitCell class="tw-flex tw-gap-2">
+      <div class="tw-flex tw-items-center tw-justify-center tw-w-10">
+        <i [class]="device.icon" class="bwi-lg" aria-hidden="true"></i>
+      </div>
+
+      <div>
+        @if (device.pendingAuthRequest) {
+          <a
+            bitLink
+            href="#"
+            appStopClick
+            (click)="approveOrDenyAuthRequest(device.pendingAuthRequest)"
+          >
+            {{ device.displayName }}
+          </a>
+          <div class="tw-text-sm tw-text-muted">
+            {{ "needsApproval" | i18n }}
+          </div>
+        } @else {
+          <span>{{ device.displayName }}</span>
+          <div *ngIf="device.isTrusted" class="tw-text-sm tw-text-muted">
+            {{ "trusted" | i18n }}
+          </div>
+        }
+      </div>
+    </td>
+
+    <!-- Column: Login Status -->
+    <td bitCell>
+      <div class="tw-flex tw-gap-1">
+        <span *ngIf="device.isCurrentDevice" bitBadge variant="primary">
+          {{ "currentSession" | i18n }}
+        </span>
+        <span *ngIf="device.pendingAuthRequest" bitBadge variant="warning">
+          {{ "requestPending" | i18n }}
+        </span>
+      </div>
+    </td>
+
+    <!-- Column: First Login -->
+    <td bitCell>{{ device.firstLogin | date: "medium" }}</td>
+  </ng-template>
+</bit-table-scroll>
diff --git a/libs/angular/src/auth/device-management/device-management-table.component.ts b/libs/angular/src/auth/device-management/device-management-table.component.ts
new file mode 100644
index 00000000000..1d20e54deec
--- /dev/null
+++ b/libs/angular/src/auth/device-management/device-management-table.component.ts
@@ -0,0 +1,86 @@
+import { CommonModule } from "@angular/common";
+import { Component, Input, OnChanges, SimpleChanges } from "@angular/core";
+import { firstValueFrom } from "rxjs";
+
+import { JslibModule } from "@bitwarden/angular/jslib.module";
+// This import has been flagged as unallowed for this class. It may be involved in a circular dependency loop.
+// eslint-disable-next-line no-restricted-imports
+import { LoginApprovalComponent } from "@bitwarden/auth/angular";
+import { DevicePendingAuthRequest } from "@bitwarden/common/auth/abstractions/devices/responses/device.response";
+import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+import {
+  BadgeModule,
+  ButtonModule,
+  DialogService,
+  LinkModule,
+  TableDataSource,
+  TableModule,
+} from "@bitwarden/components";
+
+import { DeviceDisplayData } from "./device-management.component";
+import { clearAuthRequestAndResortDevices } from "./resort-devices.helper";
+
+/** Displays user devices in a sortable table view */
+@Component({
+  standalone: true,
+  selector: "auth-device-management-table",
+  templateUrl: "./device-management-table.component.html",
+  imports: [BadgeModule, ButtonModule, CommonModule, JslibModule, LinkModule, TableModule],
+})
+export class DeviceManagementTableComponent implements OnChanges {
+  @Input() devices: DeviceDisplayData[] = [];
+  protected tableDataSource = new TableDataSource<DeviceDisplayData>();
+
+  protected readonly columnConfig = [
+    {
+      name: "displayName",
+      title: this.i18nService.t("device"),
+      headerClass: "tw-w-1/3",
+      sortable: true,
+    },
+    {
+      name: "loginStatus",
+      title: this.i18nService.t("loginStatus"),
+      headerClass: "tw-w-1/3",
+      sortable: true,
+    },
+    {
+      name: "firstLogin",
+      title: this.i18nService.t("firstLogin"),
+      headerClass: "tw-w-1/3",
+      sortable: true,
+    },
+  ];
+
+  constructor(
+    private i18nService: I18nService,
+    private dialogService: DialogService,
+  ) {}
+
+  ngOnChanges(changes: SimpleChanges): void {
+    if (changes.devices) {
+      this.tableDataSource.data = this.devices;
+    }
+  }
+
+  protected async approveOrDenyAuthRequest(pendingAuthRequest: DevicePendingAuthRequest | null) {
+    if (pendingAuthRequest == null) {
+      return;
+    }
+
+    const loginApprovalDialog = LoginApprovalComponent.open(this.dialogService, {
+      notificationId: pendingAuthRequest.id,
+    });
+
+    const result = await firstValueFrom(loginApprovalDialog.closed);
+
+    if (result !== undefined && typeof result === "boolean") {
+      // Auth request was approved or denied, so clear the
+      // pending auth request and re-sort the device array
+      this.tableDataSource.data = clearAuthRequestAndResortDevices(
+        this.devices,
+        pendingAuthRequest,
+      );
+    }
+  }
+}
diff --git a/libs/angular/src/auth/device-management/device-management.component.html b/libs/angular/src/auth/device-management/device-management.component.html
new file mode 100644
index 00000000000..8b82140a508
--- /dev/null
+++ b/libs/angular/src/auth/device-management/device-management.component.html
@@ -0,0 +1,40 @@
+<div *ngIf="showHeaderInfo" class="tw-mt-6 tw-mb-2 tw-pb-2.5">
+  <div class="tw-flex tw-items-center tw-gap-2 tw-mb-5">
+    <h1 class="tw-m-0">{{ "devices" | i18n }}</h1>
+
+    <button
+      type="button"
+      class="tw-border-none tw-bg-transparent tw-text-primary-600 tw-flex tw-items-center tw-size-4"
+      [bitPopoverTriggerFor]="infoPopover"
+      position="right-start"
+    >
+      <i class="bwi bwi-question-circle" aria-hidden="true"></i>
+    </button>
+
+    <bit-popover [title]="'whatIsADevice' | i18n" #infoPopover>
+      <p>{{ "aDeviceIs" | i18n }}</p>
+    </bit-popover>
+  </div>
+
+  <p>
+    {{ "deviceListDescriptionTemp" | i18n }}
+  </p>
+</div>
+
+@if (initializing) {
+  <div class="tw-flex tw-justify-center tw-items-center tw-p-4">
+    <i class="bwi bwi-spinner bwi-spin tw-text-2xl" aria-hidden="true"></i>
+  </div>
+} @else {
+  <!-- Table View: displays on medium to large screens -->
+  <auth-device-management-table
+    ngClass="tw-hidden md:tw-block"
+    [devices]="devices"
+  ></auth-device-management-table>
+
+  <!-- List View: displays on small screens -->
+  <auth-device-management-item-group
+    ngClass="md:tw-hidden"
+    [devices]="devices"
+  ></auth-device-management-item-group>
+}
diff --git a/libs/angular/src/auth/device-management/device-management.component.ts b/libs/angular/src/auth/device-management/device-management.component.ts
new file mode 100644
index 00000000000..dc7700a9410
--- /dev/null
+++ b/libs/angular/src/auth/device-management/device-management.component.ts
@@ -0,0 +1,230 @@
+import { CommonModule } from "@angular/common";
+import { Component, DestroyRef, OnInit } from "@angular/core";
+import { takeUntilDestroyed } from "@angular/core/rxjs-interop";
+import { firstValueFrom } from "rxjs";
+
+// This import has been flagged as unallowed for this class. It may be involved in a circular dependency loop.
+// eslint-disable-next-line no-restricted-imports
+import { AuthRequestApiServiceAbstraction } from "@bitwarden/auth/common";
+import { DevicesServiceAbstraction } from "@bitwarden/common/auth/abstractions/devices/devices.service.abstraction";
+import {
+  DevicePendingAuthRequest,
+  DeviceResponse,
+} from "@bitwarden/common/auth/abstractions/devices/responses/device.response";
+import { DeviceView } from "@bitwarden/common/auth/abstractions/devices/views/device.view";
+import { DeviceType, DeviceTypeMetadata } from "@bitwarden/common/enums";
+import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+import { ValidationService } from "@bitwarden/common/platform/abstractions/validation.service";
+import { MessageListener } from "@bitwarden/common/platform/messaging";
+import { ButtonModule, PopoverModule } from "@bitwarden/components";
+import { I18nPipe } from "@bitwarden/ui-common";
+
+import { DeviceManagementComponentServiceAbstraction } from "./device-management-component.service.abstraction";
+import { DeviceManagementItemGroupComponent } from "./device-management-item-group.component";
+import { DeviceManagementTableComponent } from "./device-management-table.component";
+
+export interface DeviceDisplayData {
+  displayName: string;
+  firstLogin: Date;
+  icon: string;
+  id: string;
+  identifier: string;
+  isCurrentDevice: boolean;
+  isTrusted: boolean;
+  loginStatus: string;
+  pendingAuthRequest: DevicePendingAuthRequest | null;
+}
+
+/**
+ * The `DeviceManagementComponent` fetches user devices and passes them down
+ * to a child component for display.
+ *
+ * The specific child component that gets displayed depends on the viewport width:
+ * - Medium to Large screens = `bit-table` view
+ * - Small screens = `bit-item-group` view
+ */
+@Component({
+  standalone: true,
+  selector: "auth-device-management",
+  templateUrl: "./device-management.component.html",
+  imports: [
+    ButtonModule,
+    CommonModule,
+    DeviceManagementItemGroupComponent,
+    DeviceManagementTableComponent,
+    I18nPipe,
+    PopoverModule,
+  ],
+})
+export class DeviceManagementComponent implements OnInit {
+  protected devices: DeviceDisplayData[] = [];
+  protected initializing = true;
+  protected showHeaderInfo = false;
+
+  constructor(
+    private authRequestApiService: AuthRequestApiServiceAbstraction,
+    private destroyRef: DestroyRef,
+    private deviceManagementComponentService: DeviceManagementComponentServiceAbstraction,
+    private devicesService: DevicesServiceAbstraction,
+    private i18nService: I18nService,
+    private messageListener: MessageListener,
+    private validationService: ValidationService,
+  ) {
+    this.showHeaderInfo = this.deviceManagementComponentService.showHeaderInformation();
+  }
+
+  async ngOnInit() {
+    await this.loadDevices();
+
+    this.messageListener.allMessages$
+      .pipe(takeUntilDestroyed(this.destroyRef))
+      .subscribe((message) => {
+        if (
+          message.command === "openLoginApproval" &&
+          message.notificationId &&
+          typeof message.notificationId === "string"
+        ) {
+          void this.upsertDeviceWithPendingAuthRequest(message.notificationId);
+        }
+      });
+  }
+
+  async loadDevices() {
+    try {
+      const devices = await firstValueFrom(this.devicesService.getDevices$());
+      const currentDevice = await firstValueFrom(this.devicesService.getCurrentDevice$());
+
+      if (!devices || !currentDevice) {
+        return;
+      }
+
+      this.devices = this.mapDevicesToDisplayData(devices, currentDevice);
+    } catch (e) {
+      this.validationService.showError(e);
+    } finally {
+      this.initializing = false;
+    }
+  }
+
+  private mapDevicesToDisplayData(
+    devices: DeviceView[],
+    currentDevice: DeviceResponse,
+  ): DeviceDisplayData[] {
+    return devices
+      .map((device): DeviceDisplayData | null => {
+        if (!device.id) {
+          this.validationService.showError(new Error(this.i18nService.t("deviceIdMissing")));
+          return null;
+        }
+
+        if (device.type == undefined) {
+          this.validationService.showError(new Error(this.i18nService.t("deviceTypeMissing")));
+          return null;
+        }
+
+        if (!device.creationDate) {
+          this.validationService.showError(
+            new Error(this.i18nService.t("deviceCreationDateMissing")),
+          );
+          return null;
+        }
+
+        return {
+          displayName: this.devicesService.getReadableDeviceTypeName(device.type),
+          firstLogin: device.creationDate ? new Date(device.creationDate) : new Date(),
+          icon: this.getDeviceIcon(device.type),
+          id: device.id || "",
+          identifier: device.identifier ?? "",
+          isCurrentDevice: this.isCurrentDevice(device, currentDevice),
+          isTrusted: device.response?.isTrusted ?? false,
+          loginStatus: this.getLoginStatus(device, currentDevice),
+          pendingAuthRequest: device.response?.devicePendingAuthRequest ?? null,
+        };
+      })
+      .filter((device) => device !== null);
+  }
+
+  private async upsertDeviceWithPendingAuthRequest(authRequestId: string) {
+    const authRequestResponse = await this.authRequestApiService.getAuthRequest(authRequestId);
+    if (!authRequestResponse) {
+      return;
+    }
+
+    const upsertDevice: DeviceDisplayData = {
+      displayName: this.devicesService.getReadableDeviceTypeName(
+        authRequestResponse.requestDeviceTypeValue,
+      ),
+      firstLogin: new Date(authRequestResponse.creationDate),
+      icon: this.getDeviceIcon(authRequestResponse.requestDeviceTypeValue),
+      id: "",
+      identifier: authRequestResponse.requestDeviceIdentifier,
+      isCurrentDevice: false,
+      isTrusted: false,
+      loginStatus: this.i18nService.t("requestPending"),
+      pendingAuthRequest: {
+        id: authRequestResponse.id,
+        creationDate: authRequestResponse.creationDate,
+      },
+    };
+
+    // If the device already exists in the DB, update the device id and first login date
+    if (authRequestResponse.requestDeviceIdentifier) {
+      const existingDevice = await firstValueFrom(
+        this.devicesService.getDeviceByIdentifier$(authRequestResponse.requestDeviceIdentifier),
+      );
+
+      if (existingDevice?.id && existingDevice.creationDate) {
+        upsertDevice.id = existingDevice.id;
+        upsertDevice.firstLogin = new Date(existingDevice.creationDate);
+      }
+    }
+
+    const existingDeviceIndex = this.devices.findIndex(
+      (device) => device.identifier === upsertDevice.identifier,
+    );
+
+    if (existingDeviceIndex >= 0) {
+      // Update existing device in device list
+      this.devices[existingDeviceIndex] = upsertDevice;
+      this.devices = [...this.devices];
+    } else {
+      // Add new device to device list
+      this.devices = [upsertDevice, ...this.devices];
+    }
+  }
+
+  private getLoginStatus(device: DeviceView, currentDevice: DeviceResponse): string {
+    if (this.isCurrentDevice(device, currentDevice)) {
+      return this.i18nService.t("currentSession");
+    }
+
+    if (this.hasPendingAuthRequest(device)) {
+      return this.i18nService.t("requestPending");
+    }
+
+    return "";
+  }
+
+  private isCurrentDevice(device: DeviceView, currentDevice: DeviceResponse): boolean {
+    return device.id === currentDevice.id;
+  }
+
+  private hasPendingAuthRequest(device: DeviceView): boolean {
+    return device.response?.devicePendingAuthRequest != null;
+  }
+
+  private getDeviceIcon(type: DeviceType): string {
+    const defaultIcon = "bwi bwi-desktop";
+    const categoryIconMap: Record<string, string> = {
+      webApp: "bwi bwi-browser",
+      desktop: "bwi bwi-desktop",
+      mobile: "bwi bwi-mobile",
+      cli: "bwi bwi-cli",
+      extension: "bwi bwi-puzzle",
+      sdk: "bwi bwi-desktop",
+    };
+
+    const metadata = DeviceTypeMetadata[type];
+    return metadata ? (categoryIconMap[metadata.category] ?? defaultIcon) : defaultIcon;
+  }
+}
diff --git a/libs/angular/src/auth/device-management/resort-devices.helper.ts b/libs/angular/src/auth/device-management/resort-devices.helper.ts
new file mode 100644
index 00000000000..e739e943ee8
--- /dev/null
+++ b/libs/angular/src/auth/device-management/resort-devices.helper.ts
@@ -0,0 +1,53 @@
+import { DevicePendingAuthRequest } from "@bitwarden/common/auth/abstractions/devices/responses/device.response";
+
+import { DeviceDisplayData } from "./device-management.component";
+
+export function clearAuthRequestAndResortDevices(
+  devices: DeviceDisplayData[],
+  pendingAuthRequest: DevicePendingAuthRequest,
+): DeviceDisplayData[] {
+  return devices
+    .map((device) => {
+      if (device.pendingAuthRequest?.id === pendingAuthRequest.id) {
+        device.pendingAuthRequest = null;
+        device.loginStatus = "";
+      }
+      return device;
+    })
+    .sort(resortDevices);
+}
+
+/**
+ * After a device is approved/denied, it will still be at the beginning of the array,
+ * so we must resort the array to ensure it is in the correct order.
+ *
+ * This is a helper function that gets passed to the `Array.sort()` method
+ */
+function resortDevices(deviceA: DeviceDisplayData, deviceB: DeviceDisplayData) {
+  // Devices with a pending auth request should be first
+  if (deviceA.pendingAuthRequest) {
+    return -1;
+  }
+  if (deviceB.pendingAuthRequest) {
+    return 1;
+  }
+
+  // Next is the current device
+  if (deviceA.isCurrentDevice) {
+    return -1;
+  }
+  if (deviceB.isCurrentDevice) {
+    return 1;
+  }
+
+  // Then sort the rest by display name (alphabetically)
+  if (deviceA.displayName < deviceB.displayName) {
+    return -1;
+  }
+  if (deviceA.displayName > deviceB.displayName) {
+    return 1;
+  }
+
+  // Default
+  return 0;
+}
diff --git a/libs/angular/src/services/jslib-services.module.ts b/libs/angular/src/services/jslib-services.module.ts
index 391c20b30d6..0ad7b57d9b3 100644
--- a/libs/angular/src/services/jslib-services.module.ts
+++ b/libs/angular/src/services/jslib-services.module.ts
@@ -1188,7 +1188,7 @@ const safeProviders: SafeProvider[] = [
   safeProvider({
     provide: DevicesServiceAbstraction,
     useClass: DevicesServiceImplementation,
-    deps: [DevicesApiServiceAbstraction, AppIdServiceAbstraction],
+    deps: [AppIdServiceAbstraction, DevicesApiServiceAbstraction, I18nServiceAbstraction],
   }),
   safeProvider({
     provide: AuthRequestApiServiceAbstraction,
diff --git a/libs/common/src/auth/abstractions/devices/devices.service.abstraction.ts b/libs/common/src/auth/abstractions/devices/devices.service.abstraction.ts
index ba6890947c1..8c1fa61322b 100644
--- a/libs/common/src/auth/abstractions/devices/devices.service.abstraction.ts
+++ b/libs/common/src/auth/abstractions/devices/devices.service.abstraction.ts
@@ -1,5 +1,7 @@
 import { Observable } from "rxjs";
 
+import { DeviceType } from "@bitwarden/common/enums";
+
 import { DeviceResponse } from "./responses/device.response";
 import { DeviceView } from "./views/device.view";
 
@@ -15,4 +17,5 @@ export abstract class DevicesServiceAbstraction {
   ): Observable<DeviceView>;
   abstract deactivateDevice$(deviceId: string): Observable<void>;
   abstract getCurrentDevice$(): Observable<DeviceResponse>;
+  abstract getReadableDeviceTypeName(deviceType: DeviceType): string;
 }
diff --git a/libs/common/src/auth/services/devices/devices.service.implementation.ts b/libs/common/src/auth/services/devices/devices.service.implementation.ts
index cdaa7a9fc4e..ba9b376576e 100644
--- a/libs/common/src/auth/services/devices/devices.service.implementation.ts
+++ b/libs/common/src/auth/services/devices/devices.service.implementation.ts
@@ -1,5 +1,8 @@
 import { Observable, defer, map } from "rxjs";
 
+import { DeviceType, DeviceTypeMetadata } from "@bitwarden/common/enums";
+import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+
 import { ListResponse } from "../../../models/response/list.response";
 import { AppIdService } from "../../../platform/abstractions/app-id.service";
 import { DevicesServiceAbstraction } from "../../abstractions/devices/devices.service.abstraction";
@@ -17,8 +20,9 @@ import { DevicesApiServiceAbstraction } from "../../abstractions/devices-api.ser
  */
 export class DevicesServiceImplementation implements DevicesServiceAbstraction {
   constructor(
-    private devicesApiService: DevicesApiServiceAbstraction,
     private appIdService: AppIdService,
+    private devicesApiService: DevicesApiServiceAbstraction,
+    private i18nService: I18nService,
   ) {}
 
   /**
@@ -86,4 +90,23 @@ export class DevicesServiceImplementation implements DevicesServiceAbstraction {
       return this.devicesApiService.getDeviceByIdentifier(deviceIdentifier);
     });
   }
+
+  /**
+   * @description Gets a human readable string of the device type name
+   */
+  getReadableDeviceTypeName(type: DeviceType): string {
+    if (type === undefined) {
+      return this.i18nService.t("unknownDevice");
+    }
+
+    const metadata = DeviceTypeMetadata[type];
+    if (!metadata) {
+      return this.i18nService.t("unknownDevice");
+    }
+
+    const platform =
+      metadata.platform === "Unknown" ? this.i18nService.t("unknown") : metadata.platform;
+    const category = this.i18nService.t(metadata.category);
+    return platform ? `${category} - ${platform}` : category;
+  }
 }
diff --git a/libs/common/src/enums/device-type.enum.ts b/libs/common/src/enums/device-type.enum.ts
index c462081140e..f7215ac7446 100644
--- a/libs/common/src/enums/device-type.enum.ts
+++ b/libs/common/src/enums/device-type.enum.ts
@@ -35,7 +35,7 @@ export enum DeviceType {
  * Each device type has a category corresponding to the client type and platform (Android, iOS, Chrome, Firefox, etc.)
  */
 interface DeviceTypeMetadata {
-  category: "mobile" | "extension" | "webVault" | "desktop" | "cli" | "sdk" | "server";
+  category: "mobile" | "extension" | "webApp" | "desktop" | "cli" | "sdk" | "server";
   platform: string;
 }
 
@@ -49,15 +49,15 @@ export const DeviceTypeMetadata: Record<DeviceType, DeviceTypeMetadata> = {
   [DeviceType.EdgeExtension]: { category: "extension", platform: "Edge" },
   [DeviceType.VivaldiExtension]: { category: "extension", platform: "Vivaldi" },
   [DeviceType.SafariExtension]: { category: "extension", platform: "Safari" },
-  [DeviceType.ChromeBrowser]: { category: "webVault", platform: "Chrome" },
-  [DeviceType.FirefoxBrowser]: { category: "webVault", platform: "Firefox" },
-  [DeviceType.OperaBrowser]: { category: "webVault", platform: "Opera" },
-  [DeviceType.EdgeBrowser]: { category: "webVault", platform: "Edge" },
-  [DeviceType.IEBrowser]: { category: "webVault", platform: "IE" },
-  [DeviceType.SafariBrowser]: { category: "webVault", platform: "Safari" },
-  [DeviceType.VivaldiBrowser]: { category: "webVault", platform: "Vivaldi" },
-  [DeviceType.DuckDuckGoBrowser]: { category: "webVault", platform: "DuckDuckGo" },
-  [DeviceType.UnknownBrowser]: { category: "webVault", platform: "Unknown" },
+  [DeviceType.ChromeBrowser]: { category: "webApp", platform: "Chrome" },
+  [DeviceType.FirefoxBrowser]: { category: "webApp", platform: "Firefox" },
+  [DeviceType.OperaBrowser]: { category: "webApp", platform: "Opera" },
+  [DeviceType.EdgeBrowser]: { category: "webApp", platform: "Edge" },
+  [DeviceType.IEBrowser]: { category: "webApp", platform: "IE" },
+  [DeviceType.SafariBrowser]: { category: "webApp", platform: "Safari" },
+  [DeviceType.VivaldiBrowser]: { category: "webApp", platform: "Vivaldi" },
+  [DeviceType.DuckDuckGoBrowser]: { category: "webApp", platform: "DuckDuckGo" },
+  [DeviceType.UnknownBrowser]: { category: "webApp", platform: "Unknown" },
   [DeviceType.WindowsDesktop]: { category: "desktop", platform: "Windows" },
   [DeviceType.MacOsDesktop]: { category: "desktop", platform: "macOS" },
   [DeviceType.LinuxDesktop]: { category: "desktop", platform: "Linux" },

From b4120e0e3f83e5cbbe9ecb258c9a67d364475158 Mon Sep 17 00:00:00 2001
From: Nick Krantz <125900171+nick-livefront@users.noreply.github.com>
Date: Thu, 17 Jul 2025 14:55:32 -0500
Subject: [PATCH 162/239] [PM-22134] Migrate list views to `CipherListView`
 from the SDK (#15174)

* add `CipherViewLike` and utilities to handle `CipherView` and `CipherViewLike`

* migrate libs needed for web vault to support `CipherViewLike`

* migrate web vault components to support

* add  for CipherView.  will have to be later

* fetch full CipherView for copying a password

* have only the cipher service utilize SDK migration flag

- This keeps feature flag logic away from the component
- Also cuts down on what is needed for other platforms

* strongly type CipherView for AC vault

- Probably temporary before migration of the AC vault to `CipherListView` SDK

* fix build icon tests by being more gracious with the uri structure

* migrate desktop components to CipherListViews$

* consume card from sdk

* add browser implementation for `CipherListView`

* update copy message for single copiable items

* refactor `getCipherViewLikeLogin` to `getLogin`

* refactor `getCipherViewLikeCard` to `getCard`

* add `hasFido2Credentials` helper

* add decryption failure to cipher like utils

* add todo with ticket

* fix decryption failure typing

* fix copy card messages

* fix addition of organizations and collections for `PopupCipherViewLike`

- accessors were being lost

* refactor to getters to fix re-rendering bug

* fix decryption failure helper

* fix sorting functions for `CipherViewLike`

* formatting

* add `CipherViewLikeUtils` tests

* refactor "copiable" to "copyable" to match SDK

* use `hasOldAttachments` from cipherlistview

* fix typing

* update SDK version

* add feature flag for cipher list view work

* use `CipherViewLikeUtils` for copyable values rather than referring to the cipher directly

* update restricted item type to support CipherViewLike

* add cipher support to `CipherViewLikeUtils`

* update `isCipherListView` check

* refactor CipherLike to a separate type

* refactor `getFullCipherView` into the cipher service

* add optional chaining for `uriChecksum`

* set empty array for decrypted CipherListView

* migrate nudge service to use `cipherListViews`

* update web vault to not depend on `cipherViews$`

* update popup list filters to use `CipherListView`

* fix storybook

* fix tests

* accept undefined as a MY VAULT filter value for cipher list views

* use `LoginUriView` for uri logic (#15530)

* filter out null ciphers from the `_allDecryptedCiphers$` (#15539)

* use `launchUri` to avoid any unexpected behavior in URIs - this appends `http://` when missing
---
 apps/browser/src/_locales/en/messages.json    |  11 +-
 .../autofill-vault-list-items.component.ts    |   9 +-
 .../item-copy-actions.component.html          |  40 +-
 .../item-copy-actions.component.ts            | 161 +++--
 .../item-more-options.component.html          |   2 +-
 .../item-more-options.component.ts            |  37 +-
 .../vault-list-items-container.component.html |   9 +-
 .../vault-list-items-container.component.ts   |  60 +-
 .../vault-popup-items.service.spec.ts         |  41 +-
 .../services/vault-popup-items.service.ts     | 126 ++--
 .../vault-popup-list-filters.service.spec.ts  |  37 +-
 .../vault-popup-list-filters.service.ts       |  79 ++-
 .../trash-list-items-container.component.ts   |  12 +-
 .../vault/popup/views/popup-cipher.view.ts    |  28 +-
 apps/desktop/src/locales/en/messages.json     |  17 +
 .../app/vault/vault-items-v2.component.html   |   6 +-
 .../app/vault/vault-items-v2.component.ts     |  12 +-
 .../src/vault/app/vault/vault-v2.component.ts |  21 +-
 .../collections/vault.component.ts            |   4 +-
 .../vault-item-dialog.component.ts            |   3 +-
 .../vault-cipher-row.component.html           |  29 +-
 .../vault-items/vault-cipher-row.component.ts |  74 ++-
 .../vault-collection-row.component.ts         |   5 +-
 .../vault-items/vault-item-event.ts           |  20 +-
 .../components/vault-items/vault-item.ts      |   6 +-
 .../vault-items/vault-items.component.ts      |  61 +-
 .../vault-items/vault-items.stories.ts        |   3 +-
 .../services/vault-filter.service.spec.ts     |   2 +-
 .../services/vault-filter.service.ts          |   5 +-
 .../shared/models/filter-function.spec.ts     |   2 +-
 .../shared/models/filter-function.ts          |  26 +-
 .../vault-onboarding.component.ts             |   4 +-
 .../vault/individual-vault/vault.component.ts | 111 +++-
 apps/web/src/locales/en/messages.json         |  17 +
 .../src/vault/components/icon.component.ts    |   4 +-
 .../vault/components/vault-items.component.ts |  38 +-
 .../empty-vault-nudge.service.ts              |   2 +-
 .../vault-filter/models/vault-filter.model.ts |  13 +-
 libs/common/src/enums/feature-flag.enum.ts    |   2 +
 .../src/vault/abstractions/cipher.service.ts  |  21 +-
 .../src/vault/abstractions/search.service.ts  |  15 +-
 .../src/vault/icon/build-cipher-icon.ts       |  18 +-
 .../services/cipher-authorization.service.ts  |  12 +-
 .../src/vault/services/cipher.service.ts      | 100 ++-
 .../services/restricted-item-types.service.ts |  10 +-
 .../src/vault/services/search.service.ts      |  31 +-
 libs/common/src/vault/types/cipher-like.ts    |   9 +
 .../utils/cipher-view-like-utils.spec.ts      | 624 ++++++++++++++++++
 .../src/vault/utils/cipher-view-like-utils.ts | 301 +++++++++
 .../copy-cipher-field.directive.spec.ts       |  59 +-
 .../components/copy-cipher-field.directive.ts |  61 +-
 .../copy-cipher-field.service.spec.ts         |   3 +-
 .../src/services/copy-cipher-field.service.ts |  14 +-
 .../src/services/password-reprompt.service.ts |   4 +-
 54 files changed, 1907 insertions(+), 514 deletions(-)
 create mode 100644 libs/common/src/vault/types/cipher-like.ts
 create mode 100644 libs/common/src/vault/utils/cipher-view-like-utils.spec.ts
 create mode 100644 libs/common/src/vault/utils/cipher-view-like-utils.ts

diff --git a/apps/browser/src/_locales/en/messages.json b/apps/browser/src/_locales/en/messages.json
index 11d13392ce2..7b1262627b6 100644
--- a/apps/browser/src/_locales/en/messages.json
+++ b/apps/browser/src/_locales/en/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "Security code"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "ex."
   },
@@ -4563,17 +4566,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Copy $FIELD$, $VALUE$",
+ "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/vault/popup/components/vault-v2/autofill-vault-list-items/autofill-vault-list-items.component.ts b/apps/browser/src/vault/popup/components/vault-v2/autofill-vault-list-items/autofill-vault-list-items.component.ts
index aa790d24ede..1eef907821d 100644
--- a/apps/browser/src/vault/popup/components/vault-v2/autofill-vault-list-items/autofill-vault-list-items.component.ts
+++ b/apps/browser/src/vault/popup/components/vault-v2/autofill-vault-list-items/autofill-vault-list-items.component.ts
@@ -6,12 +6,13 @@ import { combineLatest, map, Observable, startWith } from "rxjs";
 import { JslibModule } from "@bitwarden/angular/jslib.module";
 import { VaultSettingsService } from "@bitwarden/common/vault/abstractions/vault-settings/vault-settings.service";
 import { CipherType } from "@bitwarden/common/vault/enums";
+import { CipherViewLikeUtils } from "@bitwarden/common/vault/utils/cipher-view-like-utils";
 import { IconButtonModule, TypographyModule } from "@bitwarden/components";
 
 import BrowserPopupUtils from "../../../../../platform/browser/browser-popup-utils";
 import { VaultPopupAutofillService } from "../../../services/vault-popup-autofill.service";
 import { VaultPopupItemsService } from "../../../services/vault-popup-items.service";
-import { PopupCipherView } from "../../../views/popup-cipher.view";
+import { PopupCipherViewLike } from "../../../views/popup-cipher.view";
 import { VaultListItemsContainerComponent } from "../vault-list-items-container/vault-list-items-container.component";
 
 @Component({
@@ -30,7 +31,7 @@ export class AutofillVaultListItemsComponent {
    * The list of ciphers that can be used to autofill the current page.
    * @protected
    */
-  protected autofillCiphers$: Observable<PopupCipherView[]> =
+  protected autofillCiphers$: Observable<PopupCipherViewLike[]> =
     this.vaultPopupItemsService.autoFillCiphers$;
 
   /**
@@ -62,7 +63,9 @@ export class AutofillVaultListItemsComponent {
   ]).pipe(
     map(
       ([hasFilter, ciphers, canAutoFill]) =>
-        !hasFilter && canAutoFill && ciphers.filter((c) => c.type == CipherType.Login).length === 0,
+        !hasFilter &&
+        canAutoFill &&
+        ciphers.filter((c) => CipherViewLikeUtils.getType(c) == CipherType.Login).length === 0,
     ),
   );
 
diff --git a/apps/browser/src/vault/popup/components/vault-v2/item-copy-action/item-copy-actions.component.html b/apps/browser/src/vault/popup/components/vault-v2/item-copy-action/item-copy-actions.component.html
index 576f6b7def6..567d5277454 100644
--- a/apps/browser/src/vault/popup/components/vault-v2/item-copy-action/item-copy-actions.component.html
+++ b/apps/browser/src/vault/popup/components/vault-v2/item-copy-action/item-copy-actions.component.html
@@ -1,4 +1,4 @@
-<ng-container *ngIf="cipher.type === CipherType.Login">
+<ng-container *ngIf="CipherViewLikeUtils.getType(cipher) === CipherType.Login">
   <ng-container *ngIf="showQuickCopyActions$ | async; else loginCopyMenu">
     <bit-item-action>
       <button
@@ -36,15 +36,15 @@
   <ng-template #loginCopyMenu>
     <bit-item-action>
       <button
-        *ngIf="singleCopiableLogin"
+        *ngIf="singleCopyableLogin"
         type="button"
         bitIconButton="bwi-clone"
         size="small"
-        [appA11yTitle]="singleCopiableLogin.key"
-        [appCopyField]="$any(singleCopiableLogin.field)"
+        [appA11yTitle]="'copyFieldCipherName' | i18n: singleCopyableLogin.key : cipher.name"
+        [appCopyField]="singleCopyableLogin.field"
         [cipher]="cipher"
       ></button>
-      <ng-container *ngIf="!singleCopiableLogin">
+      <ng-container *ngIf="!singleCopyableLogin">
         <button
           type="button"
           bitIconButton="bwi-clone"
@@ -77,7 +77,7 @@
   </ng-template>
 </ng-container>
 
-<ng-container *ngIf="cipher.type === CipherType.Card">
+<ng-container *ngIf="CipherViewLikeUtils.getType(cipher) === CipherType.Card">
   <ng-container *ngIf="showQuickCopyActions$ | async; else cardCopyMenu">
     <bit-item-action>
       <button
@@ -103,16 +103,16 @@
   <ng-template #cardCopyMenu>
     <bit-item-action>
       <button
-        *ngIf="singleCopiableCard"
+        *ngIf="singleCopyableCard"
         type="button"
         bitIconButton="bwi-clone"
         size="small"
-        [appA11yTitle]="'copyFieldValue' | i18n: singleCopiableCard.key : singleCopiableCard.value"
-        [appCopyClick]="singleCopiableCard.value"
-        [valueLabel]="singleCopiableCard.key"
+        [appA11yTitle]="'copyFieldCipherName' | i18n: singleCopyableCard.key : cipher.name"
+        [appCopyField]="singleCopyableCard.field"
+        [cipher]="cipher"
         showToast
       ></button>
-      <ng-container *ngIf="!singleCopiableCard">
+      <ng-container *ngIf="!singleCopyableCard">
         <button
           type="button"
           bitIconButton="bwi-clone"
@@ -136,20 +136,18 @@
   </ng-template>
 </ng-container>
 
-<bit-item-action *ngIf="cipher.type === CipherType.Identity">
+<bit-item-action *ngIf="CipherViewLikeUtils.getType(cipher) === CipherType.Identity">
   <button
-    *ngIf="singleCopiableIdentity"
+    *ngIf="singleCopyableIdentity"
     type="button"
     bitIconButton="bwi-clone"
     size="small"
-    [appA11yTitle]="
-      'copyFieldValue' | i18n: singleCopiableIdentity.key : singleCopiableIdentity.value
-    "
-    [appCopyClick]="singleCopiableIdentity.value"
-    [valueLabel]="singleCopiableIdentity.key"
+    [appA11yTitle]="'copyFieldCipherName' | i18n: singleCopyableIdentity.key : cipher.name"
+    [appCopyField]="singleCopyableIdentity.field"
+    [cipher]="cipher"
     showToast
   ></button>
-  <ng-container *ngIf="!singleCopiableIdentity">
+  <ng-container *ngIf="!singleCopyableIdentity">
     <button
       type="button"
       bitIconButton="bwi-clone"
@@ -177,7 +175,7 @@
   </ng-container>
 </bit-item-action>
 
-<bit-item-action *ngIf="cipher.type === CipherType.SecureNote">
+<bit-item-action *ngIf="CipherViewLikeUtils.getType(cipher) === CipherType.SecureNote">
   <button
     type="button"
     bitIconButton="bwi-clone"
@@ -190,7 +188,7 @@
   ></button>
 </bit-item-action>
 
-<bit-item-action *ngIf="cipher.type === CipherType.SshKey">
+<bit-item-action *ngIf="CipherViewLikeUtils.getType(cipher) === CipherType.SshKey">
   <button
     type="button"
     bitIconButton="bwi-clone"
diff --git a/apps/browser/src/vault/popup/components/vault-v2/item-copy-action/item-copy-actions.component.ts b/apps/browser/src/vault/popup/components/vault-v2/item-copy-action/item-copy-actions.component.ts
index de548e7be7a..6c7e8bcfbc3 100644
--- a/apps/browser/src/vault/popup/components/vault-v2/item-copy-action/item-copy-actions.component.ts
+++ b/apps/browser/src/vault/popup/components/vault-v2/item-copy-action/item-copy-actions.component.ts
@@ -1,21 +1,24 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import { CommonModule } from "@angular/common";
 import { Component, Input, inject } from "@angular/core";
 
 import { JslibModule } from "@bitwarden/angular/jslib.module";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { CipherType } from "@bitwarden/common/vault/enums";
-import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
+import {
+  CipherViewLike,
+  CipherViewLikeUtils,
+} from "@bitwarden/common/vault/utils/cipher-view-like-utils";
 import { IconButtonModule, ItemModule, MenuModule } from "@bitwarden/components";
-import { CopyCipherFieldDirective } from "@bitwarden/vault";
+import { CopyableCipherFields } from "@bitwarden/sdk-internal";
+import { CopyAction, CopyCipherFieldDirective } from "@bitwarden/vault";
 
 import { VaultPopupCopyButtonsService } from "../../../services/vault-popup-copy-buttons.service";
 
 type CipherItem = {
-  value: string;
+  /** Translation key for the respective value */
   key: string;
-  field?: string;
+  /** Property key on `CipherView` to retrieve the copy value */
+  field: CopyAction;
 };
 
 @Component({
@@ -32,91 +35,155 @@ type CipherItem = {
 })
 export class ItemCopyActionsComponent {
   protected showQuickCopyActions$ = inject(VaultPopupCopyButtonsService).showQuickCopyActions$;
+  @Input({ required: true }) cipher!: CipherViewLike;
 
-  @Input() cipher: CipherView;
-
+  protected CipherViewLikeUtils = CipherViewLikeUtils;
   protected CipherType = CipherType;
 
-  get hasLoginValues() {
-    return (
-      !!this.cipher.login.hasTotp || !!this.cipher.login.password || !!this.cipher.login.username
-    );
-  }
-
   /*
-   * singleCopiableLogin uses appCopyField instead of appCopyClick. This allows for the TOTP
+   * singleCopyableLogin uses appCopyField instead of appCopyClick. This allows for the TOTP
    * code to be copied correctly. See #14167
    */
-  get singleCopiableLogin() {
+  get singleCopyableLogin() {
     const loginItems: CipherItem[] = [
-      { value: this.cipher.login.username, key: "copyUsername", field: "username" },
-      { value: this.cipher.login.password, key: "copyPassword", field: "password" },
-      { value: this.cipher.login.totp, key: "copyVerificationCode", field: "totp" },
+      { key: "copyUsername", field: "username" },
+      { key: "copyPassword", field: "password" },
+      { key: "copyVerificationCode", field: "totp" },
     ];
     // If both the password and username are visible but the password is hidden, return the username
-    if (!this.cipher.viewPassword && this.cipher.login.username && this.cipher.login.password) {
+    if (
+      !this.cipher.viewPassword &&
+      CipherViewLikeUtils.hasCopyableValue(this.cipher, "username") &&
+      CipherViewLikeUtils.hasCopyableValue(this.cipher, "password")
+    ) {
       return {
-        value: this.cipher.login.username,
         key: this.i18nService.t("copyUsername"),
         field: "username",
       };
     }
-    return this.findSingleCopiableItem(loginItems);
+    return this.findSingleCopyableItem(loginItems);
   }
 
-  get singleCopiableCard() {
+  get singleCopyableCard() {
     const cardItems: CipherItem[] = [
-      { value: this.cipher.card.code, key: "code" },
-      { value: this.cipher.card.number, key: "number" },
+      { key: "securityCode", field: "securityCode" },
+      { key: "cardNumber", field: "cardNumber" },
     ];
-    return this.findSingleCopiableItem(cardItems);
+    return this.findSingleCopyableItem(cardItems);
   }
 
-  get singleCopiableIdentity() {
+  get singleCopyableIdentity() {
     const identityItems: CipherItem[] = [
-      { value: this.cipher.identity.fullAddressForCopy, key: "address" },
-      { value: this.cipher.identity.email, key: "email" },
-      { value: this.cipher.identity.username, key: "username" },
-      { value: this.cipher.identity.phone, key: "phone" },
+      { key: "address", field: "address" },
+      { key: "email", field: "email" },
+      { key: "username", field: "username" },
+      { key: "phone", field: "phone" },
     ];
-    return this.findSingleCopiableItem(identityItems);
+    return this.findSingleCopyableItem(identityItems);
   }
 
   /*
    * Given a list of CipherItems, if there is only one item with a value,
    * return it with the translated key. Otherwise return null
    */
-  findSingleCopiableItem(items: CipherItem[]): CipherItem | null {
-    const itemsWithValue = items.filter(({ value }) => !!value);
+  findSingleCopyableItem(items: CipherItem[]): CipherItem | null {
+    const itemsWithValue = items.filter(({ field }) =>
+      CipherViewLikeUtils.hasCopyableValue(this.cipher, field),
+    );
     return itemsWithValue.length === 1
       ? { ...itemsWithValue[0], key: this.i18nService.t(itemsWithValue[0].key) }
       : null;
   }
 
+  get hasLoginValues() {
+    return this.getNumberOfLoginValues() > 0;
+  }
+
   get hasCardValues() {
-    return !!this.cipher.card.code || !!this.cipher.card.number;
+    return this.getNumberOfCardValues() > 0;
   }
 
   get hasIdentityValues() {
-    return (
-      !!this.cipher.identity.fullAddressForCopy ||
-      !!this.cipher.identity.email ||
-      !!this.cipher.identity.username ||
-      !!this.cipher.identity.phone
-    );
+    return this.getNumberOfIdentityValues() > 0;
   }
 
   get hasSecureNoteValue() {
-    return !!this.cipher.notes;
+    return this.getNumberOfSecureNoteValues() > 0;
   }
 
   get hasSshKeyValues() {
-    return (
-      !!this.cipher.sshKey.privateKey ||
-      !!this.cipher.sshKey.publicKey ||
-      !!this.cipher.sshKey.keyFingerprint
-    );
+    return this.getNumberOfSshKeyValues() > 0;
   }
 
   constructor(private i18nService: I18nService) {}
+
+  /** Sets the number of populated login values for the cipher */
+  private getNumberOfLoginValues() {
+    if (CipherViewLikeUtils.isCipherListView(this.cipher)) {
+      const copyableLoginFields: CopyableCipherFields[] = [
+        "LoginUsername",
+        "LoginPassword",
+        "LoginTotp",
+      ];
+      return this.cipher.copyableFields.filter((field) => copyableLoginFields.includes(field))
+        .length;
+    }
+
+    return [this.cipher.login.username, this.cipher.login.password, this.cipher.login.totp].filter(
+      Boolean,
+    ).length;
+  }
+
+  /** Sets the number of populated card values for the cipher */
+  private getNumberOfCardValues() {
+    if (CipherViewLikeUtils.isCipherListView(this.cipher)) {
+      const copyableCardFields: CopyableCipherFields[] = ["CardSecurityCode", "CardNumber"];
+      return this.cipher.copyableFields.filter((field) => copyableCardFields.includes(field))
+        .length;
+    }
+
+    return [this.cipher.card.code, this.cipher.card.number].filter(Boolean).length;
+  }
+
+  /** Sets the number of populated identity values for the cipher */
+  private getNumberOfIdentityValues() {
+    if (CipherViewLikeUtils.isCipherListView(this.cipher)) {
+      const copyableIdentityFields: CopyableCipherFields[] = [
+        "IdentityAddress",
+        "IdentityEmail",
+        "IdentityUsername",
+        "IdentityPhone",
+      ];
+      return this.cipher.copyableFields.filter((field) => copyableIdentityFields.includes(field))
+        .length;
+    }
+
+    return [
+      this.cipher.identity.fullAddressForCopy,
+      this.cipher.identity.email,
+      this.cipher.identity.username,
+      this.cipher.identity.phone,
+    ].filter(Boolean).length;
+  }
+  /** Sets the number of populated secure note values for the cipher */
+  private getNumberOfSecureNoteValues(): number {
+    if (CipherViewLikeUtils.isCipherListView(this.cipher)) {
+      return this.cipher.copyableFields.includes("SecureNotes") ? 1 : 0;
+    }
+
+    return this.cipher.notes ? 1 : 0;
+  }
+
+  /** Sets the number of populated SSH key values for the cipher */
+  private getNumberOfSshKeyValues() {
+    if (CipherViewLikeUtils.isCipherListView(this.cipher)) {
+      return this.cipher.copyableFields.includes("SshKey") ? 1 : 0;
+    }
+
+    return [
+      this.cipher.sshKey.privateKey,
+      this.cipher.sshKey.publicKey,
+      this.cipher.sshKey.keyFingerprint,
+    ].filter(Boolean).length;
+  }
 }
diff --git a/apps/browser/src/vault/popup/components/vault-v2/item-more-options/item-more-options.component.html b/apps/browser/src/vault/popup/components/vault-v2/item-more-options/item-more-options.component.html
index f9be1617d21..962f0c914f5 100644
--- a/apps/browser/src/vault/popup/components/vault-v2/item-more-options/item-more-options.component.html
+++ b/apps/browser/src/vault/popup/components/vault-v2/item-more-options/item-more-options.component.html
@@ -5,7 +5,7 @@
     size="small"
     [attr.aria-label]="'moreOptionsLabel' | i18n: cipher.name"
     [title]="'moreOptionsTitle' | i18n: cipher.name"
-    [disabled]="cipher.decryptionFailure"
+    [disabled]="decryptionFailure"
     [bitMenuTriggerFor]="moreOptions"
   ></button>
   <bit-menu #moreOptions>
diff --git a/apps/browser/src/vault/popup/components/vault-v2/item-more-options/item-more-options.component.ts b/apps/browser/src/vault/popup/components/vault-v2/item-more-options/item-more-options.component.ts
index 75bc984e977..ce61e29e9ef 100644
--- a/apps/browser/src/vault/popup/components/vault-v2/item-more-options/item-more-options.component.ts
+++ b/apps/browser/src/vault/popup/components/vault-v2/item-more-options/item-more-options.component.ts
@@ -14,8 +14,11 @@ import { getUserId } from "@bitwarden/common/auth/services/account.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
 import { CipherRepromptType, CipherType } from "@bitwarden/common/vault/enums";
-import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
 import { CipherAuthorizationService } from "@bitwarden/common/vault/services/cipher-authorization.service";
+import {
+  CipherViewLike,
+  CipherViewLikeUtils,
+} from "@bitwarden/common/vault/utils/cipher-view-like-utils";
 import {
   DialogService,
   IconButtonModule,
@@ -34,12 +37,12 @@ import { AddEditQueryParams } from "../add-edit/add-edit-v2.component";
   imports: [ItemModule, IconButtonModule, MenuModule, CommonModule, JslibModule, RouterModule],
 })
 export class ItemMoreOptionsComponent {
-  private _cipher$ = new BehaviorSubject<CipherView>(undefined);
+  private _cipher$ = new BehaviorSubject<CipherViewLike>(undefined);
 
   @Input({
     required: true,
   })
-  set cipher(c: CipherView) {
+  set cipher(c: CipherViewLike) {
     this._cipher$.next(c);
   }
 
@@ -109,17 +112,22 @@ export class ItemMoreOptionsComponent {
   get canViewPassword() {
     return this.cipher.viewPassword;
   }
+
+  get decryptionFailure() {
+    return CipherViewLikeUtils.decryptionFailure(this.cipher);
+  }
+
   /**
    * Determines if the cipher can be autofilled.
    */
   get canAutofill() {
     return ([CipherType.Login, CipherType.Card, CipherType.Identity] as CipherType[]).includes(
-      this.cipher.type,
+      CipherViewLikeUtils.getType(this.cipher),
     );
   }
 
   get isLogin() {
-    return this.cipher.type === CipherType.Login;
+    return CipherViewLikeUtils.getType(this.cipher) === CipherType.Login;
   }
 
   get favoriteText() {
@@ -127,11 +135,13 @@ export class ItemMoreOptionsComponent {
   }
 
   async doAutofill() {
-    await this.vaultPopupAutofillService.doAutofill(this.cipher);
+    const cipher = await this.cipherService.getFullCipherView(this.cipher);
+    await this.vaultPopupAutofillService.doAutofill(cipher);
   }
 
   async doAutofillAndSave() {
-    await this.vaultPopupAutofillService.doAutofillAndSave(this.cipher, false);
+    const cipher = await this.cipherService.getFullCipherView(this.cipher);
+    await this.vaultPopupAutofillService.doAutofillAndSave(cipher, false);
   }
 
   async onView() {
@@ -140,7 +150,7 @@ export class ItemMoreOptionsComponent {
       return;
     }
     await this.router.navigate(["/view-cipher"], {
-      queryParams: { cipherId: this.cipher.id, type: this.cipher.type },
+      queryParams: { cipherId: this.cipher.id, type: CipherViewLikeUtils.getType(this.cipher) },
     });
   }
 
@@ -148,11 +158,14 @@ export class ItemMoreOptionsComponent {
    * Toggles the favorite status of the cipher and updates it on the server.
    */
   async toggleFavorite() {
-    this.cipher.favorite = !this.cipher.favorite;
+    const cipher = await this.cipherService.getFullCipherView(this.cipher);
+
+    cipher.favorite = !cipher.favorite;
     const activeUserId = await firstValueFrom(
       this.accountService.activeAccount$.pipe(map((a) => a?.id)),
     );
-    const encryptedCipher = await this.cipherService.encrypt(this.cipher, activeUserId);
+
+    const encryptedCipher = await this.cipherService.encrypt(cipher, activeUserId);
     await this.cipherService.updateWithServer(encryptedCipher);
     this.toastService.showToast({
       variant: "success",
@@ -176,7 +189,7 @@ export class ItemMoreOptionsComponent {
       return;
     }
 
-    if (this.cipher.login?.hasFido2Credentials) {
+    if (CipherViewLikeUtils.hasFido2Credentials(this.cipher)) {
       const confirmed = await this.dialogService.openSimpleDialog({
         title: { key: "passkeyNotCopied" },
         content: { key: "passkeyNotCopiedAlert" },
@@ -192,7 +205,7 @@ export class ItemMoreOptionsComponent {
       queryParams: {
         clone: true.toString(),
         cipherId: this.cipher.id,
-        type: this.cipher.type.toString(),
+        type: CipherViewLikeUtils.getType(this.cipher).toString(),
       } as AddEditQueryParams,
     });
   }
diff --git a/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.html b/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.html
index 8dca1f9e576..b012b7bf157 100644
--- a/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.html
+++ b/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.html
@@ -97,7 +97,8 @@
             (click)="primaryActionOnSelect(cipher)"
             (dblclick)="launchCipher(cipher)"
             [appA11yTitle]="
-              cipherItemTitleKey()(cipher) | i18n: cipher.name : cipher.login.username
+              cipherItemTitleKey()(cipher)
+                | i18n: cipher.name : CipherViewLikeUtils.getLogin(cipher)?.username
             "
             class="{{ itemHeightClass }}"
           >
@@ -114,11 +115,11 @@
               [appA11yTitle]="orgIconTooltip(cipher)"
             ></i>
             <i
-              *ngIf="cipher.hasAttachments"
+              *ngIf="CipherViewLikeUtils.hasAttachments(cipher)"
               class="bwi bwi-paperclip bwi-sm"
               [appA11yTitle]="'attachments' | i18n"
             ></i>
-            <span slot="secondary">{{ cipher.subTitle }}</span>
+            <span slot="secondary">{{ CipherViewLikeUtils.subtitle(cipher) }}</span>
           </button>
 
           <ng-container slot="end">
@@ -134,7 +135,7 @@
                 {{ "fill" | i18n }}
               </button>
             </bit-item-action>
-            <bit-item-action *ngIf="!showAutofillButton() && cipher.canLaunch">
+            <bit-item-action *ngIf="!showAutofillButton() && CipherViewLikeUtils.canLaunch(cipher)">
               <button
                 type="button"
                 bitIconButton="bwi-external-link"
diff --git a/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.ts b/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.ts
index 1105f929e04..5fc1c43210c 100644
--- a/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.ts
+++ b/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.ts
@@ -26,7 +26,10 @@ import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/pl
 import { CipherId } from "@bitwarden/common/types/guid";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
 import { CipherType } from "@bitwarden/common/vault/enums";
-import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
+import {
+  CipherViewLike,
+  CipherViewLikeUtils,
+} from "@bitwarden/common/vault/utils/cipher-view-like-utils";
 import {
   BadgeModule,
   ButtonModule,
@@ -54,7 +57,7 @@ import {
   VaultPopupSectionService,
   PopupSectionOpen,
 } from "../../../services/vault-popup-section.service";
-import { PopupCipherView } from "../../../views/popup-cipher.view";
+import { PopupCipherViewLike } from "../../../views/popup-cipher.view";
 import { ItemCopyActionsComponent } from "../item-copy-action/item-copy-actions.component";
 import { ItemMoreOptionsComponent } from "../item-more-options/item-more-options.component";
 
@@ -84,6 +87,7 @@ import { ItemMoreOptionsComponent } from "../item-more-options/item-more-options
 export class VaultListItemsContainerComponent implements AfterViewInit {
   private compactModeService = inject(CompactModeService);
   private vaultPopupSectionService = inject(VaultPopupSectionService);
+  protected CipherViewLikeUtils = CipherViewLikeUtils;
 
   @ViewChild(CdkVirtualScrollViewport, { static: false }) viewPort!: CdkVirtualScrollViewport;
   @ViewChild(DisclosureComponent) disclosure!: DisclosureComponent;
@@ -125,7 +129,7 @@ export class VaultListItemsContainerComponent implements AfterViewInit {
    */
   private viewCipherTimeout?: number;
 
-  ciphers = input<PopupCipherView[]>([]);
+  ciphers = input<PopupCipherViewLike[]>([]);
 
   /**
    * If true, we will group ciphers by type (Login, Card, Identity)
@@ -139,7 +143,7 @@ export class VaultListItemsContainerComponent implements AfterViewInit {
   cipherGroups = computed<
     {
       subHeaderKey?: string;
-      ciphers: PopupCipherView[];
+      ciphers: PopupCipherViewLike[];
     }[]
   >(() => {
     // Not grouping by type, return a single group with all ciphers
@@ -147,11 +151,11 @@ export class VaultListItemsContainerComponent implements AfterViewInit {
       return [{ ciphers: this.ciphers() }];
     }
 
-    const groups: Record<string, PopupCipherView[]> = {};
+    const groups: Record<string, PopupCipherViewLike[]> = {};
 
     this.ciphers().forEach((cipher) => {
       let groupKey = "all";
-      switch (cipher.type) {
+      switch (CipherViewLikeUtils.getType(cipher)) {
         case CipherType.Card:
           groupKey = "cards";
           break;
@@ -212,8 +216,9 @@ export class VaultListItemsContainerComponent implements AfterViewInit {
    * Resolved i18n key to use for suggested cipher items
    */
   cipherItemTitleKey = computed(() => {
-    return (cipher: CipherView) => {
-      const hasUsername = cipher.login?.username != null;
+    return (cipher: CipherViewLike) => {
+      const login = CipherViewLikeUtils.getLogin(cipher);
+      const hasUsername = login?.username != null;
       const key =
         this.primaryActionAutofill() && !this.currentURIIsBlocked()
           ? "autofillTitle"
@@ -259,12 +264,12 @@ export class VaultListItemsContainerComponent implements AfterViewInit {
    * The tooltip text for the organization icon for ciphers that belong to an organization.
    * @param cipher
    */
-  orgIconTooltip(cipher: PopupCipherView) {
-    if (cipher.collectionIds.length > 1 || !cipher.collections) {
-      return this.i18nService.t("nCollections", cipher.collectionIds.length);
+  orgIconTooltip({ collectionIds, collections }: PopupCipherViewLike) {
+    if (collectionIds.length > 1 || !collections) {
+      return this.i18nService.t("nCollections", collectionIds.length);
     }
 
-    return cipher.collections[0]?.name;
+    return collections[0]?.name;
   }
 
   protected autofillShortcutTooltip = signal<string | undefined>(undefined);
@@ -292,7 +297,7 @@ export class VaultListItemsContainerComponent implements AfterViewInit {
     }
   }
 
-  primaryActionOnSelect(cipher: CipherView) {
+  primaryActionOnSelect(cipher: PopupCipherViewLike) {
     return this.primaryActionAutofill() && !this.currentURIIsBlocked()
       ? this.doAutofill(cipher)
       : this.onViewCipher(cipher);
@@ -301,8 +306,9 @@ export class VaultListItemsContainerComponent implements AfterViewInit {
   /**
    * Launches the login cipher in a new browser tab.
    */
-  async launchCipher(cipher: CipherView) {
-    if (!cipher.canLaunch) {
+  async launchCipher(cipher: CipherViewLike) {
+    const launchURI = CipherViewLikeUtils.getLaunchUri(cipher);
+    if (!CipherViewLikeUtils.canLaunch(cipher) || !launchURI) {
       return;
     }
 
@@ -313,20 +319,30 @@ export class VaultListItemsContainerComponent implements AfterViewInit {
     }
 
     const activeUserId = await firstValueFrom(this.accountService.activeAccount$.pipe(getUserId));
-    await this.cipherService.updateLastLaunchedDate(cipher.id, activeUserId);
+    await this.cipherService.updateLastLaunchedDate(cipher.id!, activeUserId);
 
-    await BrowserApi.createNewTab(cipher.login.launchUri);
+    await BrowserApi.createNewTab(launchURI);
 
     if (BrowserPopupUtils.inPopup(window)) {
       BrowserApi.closePopup(window);
     }
   }
 
-  async doAutofill(cipher: PopupCipherView) {
-    await this.vaultPopupAutofillService.doAutofill(cipher);
+  async doAutofill(cipher: PopupCipherViewLike) {
+    if (!CipherViewLikeUtils.isCipherListView(cipher)) {
+      await this.vaultPopupAutofillService.doAutofill(cipher);
+      return;
+    }
+
+    // When only the `CipherListView` is available, fetch the full cipher details
+    const activeUserId = await firstValueFrom(this.accountService.activeAccount$.pipe(getUserId));
+    const _cipher = await this.cipherService.get(cipher.id!, activeUserId);
+    const cipherView = await this.cipherService.decrypt(_cipher, activeUserId);
+
+    await this.vaultPopupAutofillService.doAutofill(cipherView);
   }
 
-  async onViewCipher(cipher: PopupCipherView) {
+  async onViewCipher(cipher: PopupCipherViewLike) {
     // We already have a view action in progress, don't start another
     if (this.viewCipherTimeout != null) {
       return;
@@ -336,7 +352,7 @@ export class VaultListItemsContainerComponent implements AfterViewInit {
     this.viewCipherTimeout = window.setTimeout(
       async () => {
         try {
-          if (cipher.decryptionFailure) {
+          if (CipherViewLikeUtils.decryptionFailure(cipher)) {
             DecryptionFailureDialogComponent.open(this.dialogService, {
               cipherIds: [cipher.id as CipherId],
             });
@@ -355,7 +371,7 @@ export class VaultListItemsContainerComponent implements AfterViewInit {
           this.viewCipherTimeout = undefined;
         }
       },
-      cipher.canLaunch ? 200 : 0,
+      CipherViewLikeUtils.canLaunch(cipher) ? 200 : 0,
     );
   }
 
diff --git a/apps/browser/src/vault/popup/services/vault-popup-items.service.spec.ts b/apps/browser/src/vault/popup/services/vault-popup-items.service.spec.ts
index 28bf710ec60..48788ea5ae9 100644
--- a/apps/browser/src/vault/popup/services/vault-popup-items.service.spec.ts
+++ b/apps/browser/src/vault/popup/services/vault-popup-items.service.spec.ts
@@ -1,7 +1,7 @@
 import { WritableSignal, signal } from "@angular/core";
 import { TestBed } from "@angular/core/testing";
 import { mock } from "jest-mock-extended";
-import { BehaviorSubject, firstValueFrom, timeout } from "rxjs";
+import { BehaviorSubject, firstValueFrom, of, take, timeout } from "rxjs";
 
 import { CollectionService, CollectionView } from "@bitwarden/admin-console/common";
 import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
@@ -23,10 +23,12 @@ import {
   RestrictedCipherType,
   RestrictedItemTypesService,
 } from "@bitwarden/common/vault/services/restricted-item-types.service";
+import { CipherViewLikeUtils } from "@bitwarden/common/vault/utils/cipher-view-like-utils";
 
 import { InlineMenuFieldQualificationService } from "../../../autofill/services/inline-menu-field-qualification.service";
 import { BrowserApi } from "../../../platform/browser/browser-api";
 import { PopupViewCacheService } from "../../../platform/popup/view-cache/popup-view-cache.service";
+import { PopupCipherViewLike } from "../views/popup-cipher.view";
 
 import { VaultPopupAutofillService } from "./vault-popup-autofill.service";
 import { VaultPopupItemsService } from "./vault-popup-items.service";
@@ -80,7 +82,9 @@ describe("VaultPopupItemsService", () => {
     cipherList[2].favorite = true;
     cipherList[3].favorite = true;
 
-    cipherServiceMock.getAllDecrypted.mockResolvedValue(cipherList);
+    const cipherList$ = new BehaviorSubject<CipherView[]>(cipherList);
+
+    cipherServiceMock.cipherListViews$.mockReturnValue(cipherList$.asObservable());
 
     ciphersSubject = new BehaviorSubject<Record<CipherId, CipherData>>({});
     localDataSubject = new BehaviorSubject<Record<CipherId, LocalData>>({});
@@ -111,7 +115,7 @@ describe("VaultPopupItemsService", () => {
     });
     // Return all ciphers, `filterFunction$` will be tested in `VaultPopupListFiltersService`
     vaultPopupListFiltersServiceMock.filterFunction$ = new BehaviorSubject(
-      (ciphers: CipherView[]) => ciphers,
+      (ciphers: PopupCipherViewLike[]) => ciphers,
     );
 
     vaultAutofillServiceMock.currentAutofillTab$ = new BehaviorSubject({
@@ -279,7 +283,9 @@ describe("VaultPopupItemsService", () => {
           const current = ciphers[i];
           const next = ciphers[i + 1];
 
-          expect(expectedTypeOrder[current.type]).toBeLessThanOrEqual(expectedTypeOrder[next.type]);
+          expect(expectedTypeOrder[CipherViewLikeUtils.getType(current)]).toBeLessThanOrEqual(
+            expectedTypeOrder[CipherViewLikeUtils.getType(next)],
+          );
         }
         expect(cipherServiceMock.sortCiphersByLastUsedThenName).toHaveBeenCalled();
         done();
@@ -365,28 +371,34 @@ describe("VaultPopupItemsService", () => {
 
   describe("emptyVault$", () => {
     it("should return true if there are no ciphers", (done) => {
-      cipherServiceMock.getAllDecrypted.mockResolvedValue([]);
-      service.emptyVault$.subscribe((empty) => {
+      cipherServiceMock.cipherListViews$.mockReturnValue(of([]));
+      service.emptyVault$.pipe(take(1)).subscribe((empty) => {
         expect(empty).toBe(true);
         done();
       });
     });
 
     it("should return false if there are ciphers", (done) => {
-      service.emptyVault$.subscribe((empty) => {
+      cipherServiceMock.cipherListViews$.mockReturnValue(
+        of([{ id: "1", type: CipherType.Login, name: "Login 1" }] as CipherView[]),
+      );
+
+      service.emptyVault$.pipe(take(1)).subscribe((empty) => {
         expect(empty).toBe(false);
         done();
       });
     });
 
     it("should return true when all ciphers are deleted", (done) => {
-      cipherServiceMock.getAllDecrypted.mockResolvedValue([
-        { id: "1", type: CipherType.Login, name: "Login 1", isDeleted: true },
-        { id: "2", type: CipherType.Login, name: "Login 2", isDeleted: true },
-        { id: "3", type: CipherType.Login, name: "Login 3", isDeleted: true },
-      ] as CipherView[]);
+      cipherServiceMock.cipherListViews$.mockReturnValue(
+        of([
+          { id: "1", type: CipherType.Login, name: "Login 1", isDeleted: true },
+          { id: "2", type: CipherType.Login, name: "Login 2", isDeleted: true },
+          { id: "3", type: CipherType.Login, name: "Login 3", isDeleted: true },
+        ] as CipherView[]),
+      );
 
-      service.emptyVault$.subscribe((empty) => {
+      service.emptyVault$.pipe(take(1)).subscribe((empty) => {
         expect(empty).toBe(true);
         done();
       });
@@ -416,8 +428,7 @@ describe("VaultPopupItemsService", () => {
       deletedCipher.deletedDate = new Date();
       const ciphers = [new CipherView(), new CipherView(), new CipherView(), deletedCipher];
 
-      cipherServiceMock.getAllDecrypted.mockResolvedValue(ciphers);
-
+      cipherServiceMock.cipherListViews$.mockReturnValue(of(ciphers));
       ciphersSubject.next({});
 
       const deletedCiphers = await firstValueFrom(service.deletedCiphers$);
diff --git a/apps/browser/src/vault/popup/services/vault-popup-items.service.ts b/apps/browser/src/vault/popup/services/vault-popup-items.service.ts
index d47abb9e6b3..b2d4fd1b262 100644
--- a/apps/browser/src/vault/popup/services/vault-popup-items.service.ts
+++ b/apps/browser/src/vault/popup/services/vault-popup-items.service.ts
@@ -23,20 +23,22 @@ import { CollectionService } from "@bitwarden/admin-console/common";
 import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { getUserId } from "@bitwarden/common/auth/services/account.service";
-import { Utils } from "@bitwarden/common/platform/misc/utils";
 import { SyncService } from "@bitwarden/common/platform/sync";
 import { CollectionId, OrganizationId, UserId } from "@bitwarden/common/types/guid";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
 import { SearchService } from "@bitwarden/common/vault/abstractions/search.service";
 import { VaultSettingsService } from "@bitwarden/common/vault/abstractions/vault-settings/vault-settings.service";
 import { CipherType } from "@bitwarden/common/vault/enums";
-import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
 import { RestrictedItemTypesService } from "@bitwarden/common/vault/services/restricted-item-types.service";
+import {
+  CipherViewLike,
+  CipherViewLikeUtils,
+} from "@bitwarden/common/vault/utils/cipher-view-like-utils";
 
 import { runInsideAngular } from "../../../platform/browser/run-inside-angular.operator";
 import { PopupViewCacheService } from "../../../platform/popup/view-cache/popup-view-cache.service";
 import { waitUntil } from "../../util";
-import { PopupCipherView } from "../views/popup-cipher.view";
+import { PopupCipherViewLike } from "../views/popup-cipher.view";
 
 import { VaultPopupAutofillService } from "./vault-popup-autofill.service";
 import { MY_VAULT_ID, VaultPopupListFiltersService } from "./vault-popup-list-filters.service";
@@ -96,49 +98,52 @@ export class VaultPopupItemsService {
    * Observable that contains the list of all decrypted ciphers.
    * @private
    */
-  private _allDecryptedCiphers$: Observable<CipherView[]> = this.accountService.activeAccount$.pipe(
-    map((a) => a?.id),
-    filter((userId): userId is UserId => userId != null),
-    switchMap((userId) =>
-      merge(this.cipherService.ciphers$(userId), this.cipherService.localData$(userId)).pipe(
-        runInsideAngular(this.ngZone),
-        tap(() => this._ciphersLoading$.next()),
-        waitUntilSync(this.syncService),
-        switchMap(() =>
-          combineLatest([
-            Utils.asyncToObservable(() => this.cipherService.getAllDecrypted(userId)),
-            this.cipherService.failedToDecryptCiphers$(userId),
-            this.restrictedItemTypesService.restricted$.pipe(startWith([])),
-          ]),
+  private _allDecryptedCiphers$: Observable<CipherViewLike[]> =
+    this.accountService.activeAccount$.pipe(
+      map((a) => a?.id),
+      filter((userId): userId is UserId => userId != null),
+      switchMap((userId) =>
+        merge(this.cipherService.ciphers$(userId), this.cipherService.localData$(userId)).pipe(
+          runInsideAngular(this.ngZone),
+          tap(() => this._ciphersLoading$.next()),
+          waitUntilSync(this.syncService),
+          switchMap(() =>
+            combineLatest([
+              this.cipherService
+                .cipherListViews$(userId)
+                .pipe(filter((ciphers) => ciphers != null)),
+              this.cipherService.failedToDecryptCiphers$(userId),
+              this.restrictedItemTypesService.restricted$.pipe(startWith([])),
+            ]),
+          ),
+          map(([ciphers, failedToDecryptCiphers, restrictions]) => {
+            const allCiphers = [...(failedToDecryptCiphers || []), ...ciphers];
+
+            return allCiphers.filter(
+              (cipher) => !this.restrictedItemTypesService.isCipherRestricted(cipher, restrictions),
+            );
+          }),
         ),
-        map(([ciphers, failedToDecryptCiphers, restrictions]) => {
-          const allCiphers = [...(failedToDecryptCiphers || []), ...ciphers];
-
-          return allCiphers.filter(
-            (cipher) => !this.restrictedItemTypesService.isCipherRestricted(cipher, restrictions),
-          );
-        }),
       ),
-    ),
-    shareReplay({ refCount: true, bufferSize: 1 }),
-  );
+      shareReplay({ refCount: true, bufferSize: 1 }),
+    );
 
-  private _activeCipherList$: Observable<PopupCipherView[]> = this._allDecryptedCiphers$.pipe(
+  private _activeCipherList$: Observable<PopupCipherViewLike[]> = this._allDecryptedCiphers$.pipe(
     switchMap((ciphers) =>
       combineLatest([this.organizations$, this.collectionService.decryptedCollections$]).pipe(
         map(([organizations, collections]) => {
           const orgMap = Object.fromEntries(organizations.map((org) => [org.id, org]));
           const collectionMap = Object.fromEntries(collections.map((col) => [col.id, col]));
           return ciphers
-            .filter((c) => !c.isDeleted)
-            .map(
-              (cipher) =>
-                new PopupCipherView(
-                  cipher,
-                  cipher.collectionIds?.map((colId) => collectionMap[colId as CollectionId]),
-                  orgMap[cipher.organizationId as OrganizationId],
-                ),
-            );
+            .filter((c) => !CipherViewLikeUtils.isDeleted(c))
+            .map((cipher) => {
+              (cipher as PopupCipherViewLike).collections = cipher.collectionIds?.map(
+                (colId) => collectionMap[colId as CollectionId],
+              );
+              (cipher as PopupCipherViewLike).organization =
+                orgMap[cipher.organizationId as OrganizationId];
+              return cipher;
+            });
         }),
       ),
     ),
@@ -157,21 +162,23 @@ export class VaultPopupItemsService {
     }),
   );
 
-  private _filteredCipherList$: Observable<PopupCipherView[]> = combineLatest([
+  private _filteredCipherList$: Observable<PopupCipherViewLike[]> = combineLatest([
     this._activeCipherList$,
     this.searchText$,
     this.vaultPopupListFiltersService.filterFunction$,
     getUserId(this.accountService.activeAccount$),
   ]).pipe(
-    map(([ciphers, searchText, filterFunction, userId]): [CipherView[], string, UserId] => [
-      filterFunction(ciphers),
-      searchText,
-      userId,
-    ]),
+    map(
+      ([ciphers, searchText, filterFunction, userId]): [PopupCipherViewLike[], string, UserId] => [
+        filterFunction(ciphers),
+        searchText,
+        userId,
+      ],
+    ),
     switchMap(
       ([ciphers, searchText, userId]) =>
         this.searchService.searchCiphers(userId, searchText, undefined, ciphers) as Promise<
-          PopupCipherView[]
+          PopupCipherViewLike[]
         >,
     ),
     shareReplay({ refCount: true, bufferSize: 1 }),
@@ -183,7 +190,7 @@ export class VaultPopupItemsService {
    *
    * See {@link refreshCurrentTab} to trigger re-evaluation of the current tab.
    */
-  autoFillCiphers$: Observable<PopupCipherView[]> = combineLatest([
+  autoFillCiphers$: Observable<PopupCipherViewLike[]> = combineLatest([
     this._filteredCipherList$,
     this._otherAutoFillTypes$,
     this.vaultPopupAutofillService.currentAutofillTab$,
@@ -202,7 +209,7 @@ export class VaultPopupItemsService {
    * List of favorite ciphers that are not currently suggested for autofill.
    * Ciphers are sorted by name.
    */
-  favoriteCiphers$: Observable<PopupCipherView[]> = this.autoFillCiphers$.pipe(
+  favoriteCiphers$: Observable<PopupCipherViewLike[]> = this.autoFillCiphers$.pipe(
     withLatestFrom(this._filteredCipherList$),
     map(([autoFillCiphers, ciphers]) =>
       ciphers.filter((cipher) => cipher.favorite && !autoFillCiphers.includes(cipher)),
@@ -214,7 +221,7 @@ export class VaultPopupItemsService {
    * List of all remaining ciphers that are not currently suggested for autofill or marked as favorite.
    * Ciphers are sorted by name.
    */
-  remainingCiphers$: Observable<PopupCipherView[]> = this.favoriteCiphers$.pipe(
+  remainingCiphers$: Observable<PopupCipherViewLike[]> = this.favoriteCiphers$.pipe(
     concatMap(
       (
         favoriteCiphers, // concatMap->of is used to make withLatestFrom lazy to avoid race conditions with autoFillCiphers$
@@ -282,21 +289,23 @@ export class VaultPopupItemsService {
   /**
    * Observable that contains the list of ciphers that have been deleted.
    */
-  deletedCiphers$: Observable<PopupCipherView[]> = this._allDecryptedCiphers$.pipe(
+  deletedCiphers$: Observable<PopupCipherViewLike[]> = this._allDecryptedCiphers$.pipe(
     switchMap((ciphers) =>
       combineLatest([this.organizations$, this.collectionService.decryptedCollections$]).pipe(
         map(([organizations, collections]) => {
           const orgMap = Object.fromEntries(organizations.map((org) => [org.id, org]));
           const collectionMap = Object.fromEntries(collections.map((col) => [col.id, col]));
           return ciphers
-            .filter((c) => c.isDeleted)
+            .filter((c) => CipherViewLikeUtils.isDeleted(c))
             .map(
               (cipher) =>
-                new PopupCipherView(
-                  cipher,
-                  cipher.collectionIds?.map((colId) => collectionMap[colId as CollectionId]),
-                  orgMap[cipher.organizationId as OrganizationId],
-                ),
+                ({
+                  ...cipher,
+                  collections: cipher.collectionIds?.map(
+                    (colId) => collectionMap[colId as CollectionId],
+                  ),
+                  organization: orgMap[cipher.organizationId as OrganizationId],
+                }) as PopupCipherViewLike,
             );
         }),
       ),
@@ -327,7 +336,7 @@ export class VaultPopupItemsService {
    * Sorts by type, then by last used date, and finally by name.
    * @private
    */
-  private sortCiphersForAutofill(a: CipherView, b: CipherView): number {
+  private sortCiphersForAutofill(a: CipherViewLike, b: CipherViewLike): number {
     const typeOrder = {
       [CipherType.Login]: 1,
       [CipherType.Card]: 2,
@@ -336,10 +345,13 @@ export class VaultPopupItemsService {
       [CipherType.SshKey]: 5,
     } as Record<CipherType, number>;
 
+    const aType = CipherViewLikeUtils.getType(a);
+    const bType = CipherViewLikeUtils.getType(b);
+
     // Compare types first
-    if (typeOrder[a.type] < typeOrder[b.type]) {
+    if (typeOrder[aType] < typeOrder[bType]) {
       return -1;
-    } else if (typeOrder[a.type] > typeOrder[b.type]) {
+    } else if (typeOrder[aType] > typeOrder[bType]) {
       return 1;
     }
 
diff --git a/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.spec.ts b/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.spec.ts
index e530046a971..9f1bd6e6e55 100644
--- a/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.spec.ts
+++ b/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.spec.ts
@@ -27,6 +27,8 @@ import {
   RestrictedItemTypesService,
 } from "@bitwarden/common/vault/services/restricted-item-types.service";
 
+import { PopupCipherViewLike } from "../views/popup-cipher.view";
+
 import {
   CachedFilterState,
   MY_VAULT_ID,
@@ -47,7 +49,7 @@ describe("VaultPopupListFiltersService", () => {
   const memberOrganizations$ = (userId: UserId) => _memberOrganizations$;
   const organizations$ = new BehaviorSubject<Organization[]>([]);
   let folderViews$ = new BehaviorSubject([]);
-  const cipherViews$ = new BehaviorSubject({});
+  const cipherListViews$ = new BehaviorSubject({});
   let decryptedCollections$ = new BehaviorSubject<CollectionView[]>([]);
   const policyAppliesToUser$ = new BehaviorSubject<boolean>(false);
   let viewCacheService: {
@@ -65,7 +67,7 @@ describe("VaultPopupListFiltersService", () => {
   } as unknown as FolderService;
 
   const cipherService = {
-    cipherViews$: () => cipherViews$,
+    cipherListViews$: () => cipherListViews$,
   } as unknown as CipherService;
 
   const organizationService = {
@@ -508,7 +510,7 @@ describe("VaultPopupListFiltersService", () => {
         { id: "2345", name: "Folder 2" },
       ]);
 
-      cipherViews$.next({
+      cipherListViews$.next({
         "1": { folderId: "1234", organizationId: "1234" },
         "2": { folderId: "2345", organizationId: "56789" },
       });
@@ -566,6 +568,28 @@ describe("VaultPopupListFiltersService", () => {
         service.filterForm.patchValue({ organization });
       });
 
+      it("keeps ciphers with null and undefined for organizationId when MyVault is selected", (done) => {
+        const organization = { id: MY_VAULT_ID } as Organization;
+
+        const undefinedOrgIdCipher = {
+          type: CipherType.SecureNote,
+          collectionIds: [],
+          organizationId: undefined,
+        } as unknown as PopupCipherViewLike;
+
+        service.filterFunction$.subscribe((filterFunction) => {
+          expect(filterFunction([...ciphers, undefinedOrgIdCipher])).toEqual([
+            ciphers[0],
+            ciphers[2],
+            ciphers[3],
+            undefinedOrgIdCipher,
+          ]);
+          done();
+        });
+
+        service.filterForm.patchValue({ organization });
+      });
+
       it("filters out ciphers that do not belong to the selected organization", (done) => {
         const organization = { id: "8978" } as Organization;
 
@@ -717,7 +741,10 @@ function createSeededVaultPopupListFiltersService(
   collections: CollectionView[],
   folderViews: FolderView[],
   cachedState: CachedFilterState = {},
-): { service: VaultPopupListFiltersService; cachedSignal: WritableSignal<CachedFilterState> } {
+): {
+  service: VaultPopupListFiltersService;
+  cachedSignal: WritableSignal<CachedFilterState>;
+} {
   const seededMemberOrganizations$ = new BehaviorSubject<Organization[]>(organizations);
   const seededCollections$ = new BehaviorSubject<CollectionView[]>(collections);
   const seededFolderViews$ = new BehaviorSubject<FolderView[]>(folderViews);
@@ -744,7 +771,7 @@ function createSeededVaultPopupListFiltersService(
   } as any;
 
   const cipherServiceMock = {
-    cipherViews$: () => new BehaviorSubject({}),
+    cipherListViews$: () => new BehaviorSubject({}),
   } as any;
 
   const i18nServiceMock = {
diff --git a/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.ts b/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.ts
index a936aaf86d9..9db5811d75c 100644
--- a/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.ts
+++ b/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.ts
@@ -40,13 +40,15 @@ import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.servi
 import { FolderService } from "@bitwarden/common/vault/abstractions/folder/folder.service.abstraction";
 import { CipherType } from "@bitwarden/common/vault/enums";
 import { ITreeNodeObject, TreeNode } from "@bitwarden/common/vault/models/domain/tree-node";
-import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
 import { FolderView } from "@bitwarden/common/vault/models/view/folder.view";
 import { ServiceUtils } from "@bitwarden/common/vault/service-utils";
 import { RestrictedItemTypesService } from "@bitwarden/common/vault/services/restricted-item-types.service";
 import { CIPHER_MENU_ITEMS } from "@bitwarden/common/vault/types/cipher-menu-items";
+import { CipherViewLikeUtils } from "@bitwarden/common/vault/utils/cipher-view-like-utils";
 import { ChipSelectOption } from "@bitwarden/components";
 
+import { PopupCipherViewLike } from "../views/popup-cipher.view";
+
 const FILTER_VISIBILITY_KEY = new KeyDefinition<boolean>(VAULT_SETTINGS_DISK, "filterVisibility", {
   deserializer: (obj) => obj,
 });
@@ -111,7 +113,7 @@ export class VaultPopupListFiltersService {
   /**
    * Static list of ciphers views used in synchronous context
    */
-  private cipherViews: CipherView[] = [];
+  private cipherViews: PopupCipherViewLike[] = [];
 
   private activeUserId$ = this.accountService.activeAccount$.pipe(
     map((a) => a?.id),
@@ -216,21 +218,22 @@ export class VaultPopupListFiltersService {
   filterVisibilityState$ = this.filterVisibilityState.state$;
 
   /**
-   * Observable whose value is a function that filters an array of `CipherView` objects based on the current filters
+   * Observable whose value is a function that filters an array of `PopupCipherViewLike` objects based on the current filters
    */
-  filterFunction$: Observable<(ciphers: CipherView[]) => CipherView[]> = combineLatest([
-    this.filters$,
-  ]).pipe(
-    map(
-      ([filters]) =>
-        (ciphers: CipherView[]) =>
+  filterFunction$: Observable<(ciphers: PopupCipherViewLike[]) => PopupCipherViewLike[]> =
+    this.filters$.pipe(
+      map(
+        (filters) => (ciphers: PopupCipherViewLike[]) =>
           ciphers.filter((cipher) => {
             // Vault popup lists never shows deleted ciphers
-            if (cipher.isDeleted) {
+            if (CipherViewLikeUtils.isDeleted(cipher)) {
               return false;
             }
 
-            if (filters.cipherType !== null && cipher.type !== filters.cipherType) {
+            if (
+              filters.cipherType !== null &&
+              CipherViewLikeUtils.getType(cipher) !== filters.cipherType
+            ) {
               return false;
             }
 
@@ -245,7 +248,7 @@ export class VaultPopupListFiltersService {
             const isMyVault = filters.organization?.id === MY_VAULT_ID;
 
             if (isMyVault) {
-              if (cipher.organizationId !== null) {
+              if (cipher.organizationId != null) {
                 return false;
               }
             } else if (filters.organization) {
@@ -256,8 +259,8 @@ export class VaultPopupListFiltersService {
 
             return true;
           }),
-    ),
-  );
+      ),
+    );
 
   /**
    * All available cipher types (filtered by policy restrictions)
@@ -356,7 +359,7 @@ export class VaultPopupListFiltersService {
   folders$: Observable<ChipSelectOption<FolderView>[]> = this.activeUserId$.pipe(
     switchMap((userId) => {
       // Observable of cipher views
-      const cipherViews$ = this.cipherService.cipherViews$(userId).pipe(
+      const cipherViews$ = this.cipherService.cipherListViews$(userId).pipe(
         map((ciphers) => {
           this.cipherViews = ciphers ? Object.values(ciphers) : [];
           return this.cipherViews;
@@ -374,30 +377,36 @@ export class VaultPopupListFiltersService {
         this.folderService.folderViews$(userId),
         cipherViews$,
       ]).pipe(
-        map(([filters, folders, cipherViews]): [PopupListFilter, FolderView[], CipherView[]] => {
-          if (folders.length === 1 && folders[0].id === null) {
-            // Do not display folder selections when only the "no folder" option is available.
-            return [filters as PopupListFilter, [], cipherViews];
-          }
+        map(
+          ([filters, folders, cipherViews]): [
+            PopupListFilter,
+            FolderView[],
+            PopupCipherViewLike[],
+          ] => {
+            if (folders.length === 1 && folders[0].id === null) {
+              // Do not display folder selections when only the "no folder" option is available.
+              return [filters as PopupListFilter, [], cipherViews];
+            }
 
-          // Sort folders by alphabetic name
-          folders.sort(Utils.getSortFunction(this.i18nService, "name"));
-          let arrangedFolders = folders;
+            // Sort folders by alphabetic name
+            folders.sort(Utils.getSortFunction(this.i18nService, "name"));
+            let arrangedFolders = folders;
 
-          const noFolder = folders.find((f) => f.id === null);
+            const noFolder = folders.find((f) => f.id === null);
 
-          if (noFolder) {
-            // Update `name` of the "no folder" option to "Items with no folder"
-            const updatedNoFolder = {
-              ...noFolder,
-              name: this.i18nService.t("itemsWithNoFolder"),
-            };
+            if (noFolder) {
+              // Update `name` of the "no folder" option to "Items with no folder"
+              const updatedNoFolder = {
+                ...noFolder,
+                name: this.i18nService.t("itemsWithNoFolder"),
+              };
 
-            // Move the "no folder" option to the end of the list
-            arrangedFolders = [...folders.filter((f) => f.id !== null), updatedNoFolder];
-          }
-          return [filters as PopupListFilter, arrangedFolders, cipherViews];
-        }),
+              // Move the "no folder" option to the end of the list
+              arrangedFolders = [...folders.filter((f) => f.id !== null), updatedNoFolder];
+            }
+            return [filters as PopupListFilter, arrangedFolders, cipherViews];
+          },
+        ),
         map(([filters, folders, cipherViews]) => {
           const organizationId = filters.organization?.id ?? null;
 
diff --git a/apps/browser/src/vault/popup/settings/trash-list-items-container/trash-list-items-container.component.ts b/apps/browser/src/vault/popup/settings/trash-list-items-container/trash-list-items-container.component.ts
index b4f7a87aa08..1676fea3c01 100644
--- a/apps/browser/src/vault/popup/settings/trash-list-items-container/trash-list-items-container.component.ts
+++ b/apps/browser/src/vault/popup/settings/trash-list-items-container/trash-list-items-container.component.ts
@@ -30,7 +30,7 @@ import {
   PasswordRepromptService,
 } from "@bitwarden/vault";
 
-import { PopupCipherView } from "../../views/popup-cipher.view";
+import { PopupCipherViewLike } from "../../views/popup-cipher.view";
 
 @Component({
   selector: "app-trash-list-items-container",
@@ -54,7 +54,7 @@ export class TrashListItemsContainerComponent {
    * The list of trashed items to display.
    */
   @Input()
-  ciphers: PopupCipherView[] = [];
+  ciphers: PopupCipherViewLike[] = [];
 
   @Input()
   headerText: string;
@@ -73,12 +73,12 @@ export class TrashListItemsContainerComponent {
   /**
    * The tooltip text for the organization icon for ciphers that belong to an organization.
    */
-  orgIconTooltip(cipher: PopupCipherView) {
-    if (cipher.collectionIds.length > 1) {
-      return this.i18nService.t("nCollections", cipher.collectionIds.length);
+  orgIconTooltip({ collections, collectionIds }: PopupCipherViewLike) {
+    if (collectionIds.length > 1) {
+      return this.i18nService.t("nCollections", collectionIds.length);
     }
 
-    return cipher.collections[0]?.name;
+    return collections[0]?.name;
   }
 
   async restore(cipher: CipherView) {
diff --git a/apps/browser/src/vault/popup/views/popup-cipher.view.ts b/apps/browser/src/vault/popup/views/popup-cipher.view.ts
index e364aeabc3d..6f85e7b6eb4 100644
--- a/apps/browser/src/vault/popup/views/popup-cipher.view.ts
+++ b/apps/browser/src/vault/popup/views/popup-cipher.view.ts
@@ -1,25 +1,17 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import { CollectionView } from "@bitwarden/admin-console/common";
 import { Organization } from "@bitwarden/common/admin-console/models/domain/organization";
 import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
+import { CipherListView } from "@bitwarden/sdk-internal";
 
-/**
- * Extended cipher view for the popup. Includes the associated collections and organization
- * if applicable.
- */
-export class PopupCipherView extends CipherView {
+interface CommonPopupCipherView {
   collections?: CollectionView[];
   organization?: Organization;
-
-  constructor(
-    cipher: CipherView,
-    collections: CollectionView[] = null,
-    organization: Organization = null,
-  ) {
-    super();
-    Object.assign(this, cipher);
-    this.collections = collections;
-    this.organization = organization;
-  }
 }
+
+/** Extended view for the popup based off of `CipherView`  */
+interface PopupCipherView extends CipherView, CommonPopupCipherView {}
+
+/** Extended view for the popup based off of `CipherListView` from the SDK. */
+interface PopupCipherListView extends CipherListView, CommonPopupCipherView {}
+
+export type PopupCipherViewLike = PopupCipherListView | PopupCipherView;
diff --git a/apps/desktop/src/locales/en/messages.json b/apps/desktop/src/locales/en/messages.json
index 1b645c9e7e2..1ad0dcf308f 100644
--- a/apps/desktop/src/locales/en/messages.json
+++ b/apps/desktop/src/locales/en/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Copy verification code (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "Length"
   },
@@ -1425,6 +1439,9 @@
     "message": "Copy security code",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "Premium membership"
   },
diff --git a/apps/desktop/src/vault/app/vault/vault-items-v2.component.html b/apps/desktop/src/vault/app/vault/vault-items-v2.component.html
index fcf38ee39bc..fc14700a7af 100644
--- a/apps/desktop/src/vault/app/vault/vault-items-v2.component.html
+++ b/apps/desktop/src/vault/app/vault/vault-items-v2.component.html
@@ -34,7 +34,7 @@
                   ></i>
                   <span class="sr-only">{{ "shared" | i18n }}</span>
                 </ng-container>
-                <ng-container *ngIf="c.hasAttachments">
+                <ng-container *ngIf="CipherViewLikeUtils.hasAttachments(c)">
                   <i
                     class="bwi bwi-paperclip text-muted"
                     title="{{ 'attachments' | i18n }}"
@@ -44,7 +44,9 @@
                 </ng-container>
               </span>
             </span>
-            <span *ngIf="c.subTitle" class="detail">{{ c.subTitle }}</span>
+            <span *ngIf="CipherViewLikeUtils.subtitle(c)" class="detail">{{
+              CipherViewLikeUtils.subtitle(c)
+            }}</span>
           </div>
         </button>
       </div>
diff --git a/apps/desktop/src/vault/app/vault/vault-items-v2.component.ts b/apps/desktop/src/vault/app/vault/vault-items-v2.component.ts
index 21b857b551a..000281c5807 100644
--- a/apps/desktop/src/vault/app/vault/vault-items-v2.component.ts
+++ b/apps/desktop/src/vault/app/vault/vault-items-v2.component.ts
@@ -9,8 +9,11 @@ import { VaultItemsComponent as BaseVaultItemsComponent } from "@bitwarden/angul
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
 import { SearchService } from "@bitwarden/common/vault/abstractions/search.service";
-import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
 import { RestrictedItemTypesService } from "@bitwarden/common/vault/services/restricted-item-types.service";
+import {
+  CipherViewLike,
+  CipherViewLikeUtils,
+} from "@bitwarden/common/vault/utils/cipher-view-like-utils";
 import { MenuModule } from "@bitwarden/components";
 
 import { SearchBarService } from "../../../app/layout/search/search-bar.service";
@@ -20,7 +23,8 @@ import { SearchBarService } from "../../../app/layout/search/search-bar.service"
   templateUrl: "vault-items-v2.component.html",
   imports: [MenuModule, CommonModule, JslibModule, ScrollingModule],
 })
-export class VaultItemsV2Component extends BaseVaultItemsComponent {
+export class VaultItemsV2Component<C extends CipherViewLike> extends BaseVaultItemsComponent<C> {
+  protected CipherViewLikeUtils = CipherViewLikeUtils;
   constructor(
     searchService: SearchService,
     private readonly searchBarService: SearchBarService,
@@ -37,7 +41,7 @@ export class VaultItemsV2Component extends BaseVaultItemsComponent {
       });
   }
 
-  trackByFn(index: number, c: CipherView): string {
-    return c.id;
+  trackByFn(index: number, c: C): string {
+    return c.id!;
   }
 }
diff --git a/apps/desktop/src/vault/app/vault/vault-v2.component.ts b/apps/desktop/src/vault/app/vault/vault-v2.component.ts
index 6eb6b737899..62ca41a3379 100644
--- a/apps/desktop/src/vault/app/vault/vault-v2.component.ts
+++ b/apps/desktop/src/vault/app/vault/vault-v2.component.ts
@@ -40,6 +40,10 @@ import { ViewPasswordHistoryService } from "@bitwarden/common/vault/abstractions
 import { CipherType, toCipherType } from "@bitwarden/common/vault/enums";
 import { CipherRepromptType } from "@bitwarden/common/vault/enums/cipher-reprompt-type";
 import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
+import {
+  CipherViewLike,
+  CipherViewLikeUtils,
+} from "@bitwarden/common/vault/utils/cipher-view-like-utils";
 import {
   BadgeModule,
   ButtonModule,
@@ -124,9 +128,11 @@ const BroadcasterSubscriptionId = "VaultComponent";
     },
   ],
 })
-export class VaultV2Component implements OnInit, OnDestroy, CopyClickListener {
+export class VaultV2Component<C extends CipherViewLike>
+  implements OnInit, OnDestroy, CopyClickListener
+{
   @ViewChild(VaultItemsV2Component, { static: true })
-  vaultItemsComponent: VaultItemsV2Component | null = null;
+  vaultItemsComponent: VaultItemsV2Component<C> | null = null;
   @ViewChild(VaultFilterComponent, { static: true })
   vaultFilterComponent: VaultFilterComponent | null = null;
   @ViewChild("folderAddEdit", { read: ViewContainerRef, static: true })
@@ -407,14 +413,14 @@ export class VaultV2Component implements OnInit, OnDestroy, CopyClickListener {
     this.messagingService.send("minimizeOnCopy");
   }
 
-  async viewCipher(cipher: CipherView) {
-    if (cipher.decryptionFailure) {
+  async viewCipher(c: CipherViewLike) {
+    if (CipherViewLikeUtils.decryptionFailure(c)) {
       DecryptionFailureDialogComponent.open(this.dialogService, {
-        cipherIds: [cipher.id as CipherId],
+        cipherIds: [c.id as CipherId],
       });
       return;
     }
-
+    const cipher = await this.cipherService.getFullCipherView(c);
     if (await this.shouldReprompt(cipher, "view")) {
       return;
     }
@@ -472,7 +478,8 @@ export class VaultV2Component implements OnInit, OnDestroy, CopyClickListener {
     }
   }
 
-  viewCipherMenu(cipher: CipherView) {
+  async viewCipherMenu(c: CipherViewLike) {
+    const cipher = await this.cipherService.getFullCipherView(c);
     const menu: RendererMenuItem[] = [
       {
         label: this.i18nService.t("view"),
diff --git a/apps/web/src/app/admin-console/organizations/collections/vault.component.ts b/apps/web/src/app/admin-console/organizations/collections/vault.component.ts
index 197fc0ada0f..47ad93d81e2 100644
--- a/apps/web/src/app/admin-console/organizations/collections/vault.component.ts
+++ b/apps/web/src/app/admin-console/organizations/collections/vault.component.ts
@@ -536,7 +536,7 @@ export class VaultComponent implements OnInit, OnDestroy {
         const filterFunction = createFilterFunction(filter);
 
         if (await this.searchService.isSearchable(this.userId, searchText)) {
-          return await this.searchService.searchCiphers(
+          return await this.searchService.searchCiphers<CipherView>(
             this.userId,
             searchText,
             [filterFunction],
@@ -772,7 +772,7 @@ export class VaultComponent implements OnInit, OnDestroy {
     this.destroy$.complete();
   }
 
-  async onVaultItemsEvent(event: VaultItemEvent) {
+  async onVaultItemsEvent(event: VaultItemEvent<CipherView>) {
     this.processingEvent = true;
 
     try {
diff --git a/apps/web/src/app/vault/components/vault-item-dialog/vault-item-dialog.component.ts b/apps/web/src/app/vault/components/vault-item-dialog/vault-item-dialog.component.ts
index d79c1c4a8b4..804b533c2de 100644
--- a/apps/web/src/app/vault/components/vault-item-dialog/vault-item-dialog.component.ts
+++ b/apps/web/src/app/vault/components/vault-item-dialog/vault-item-dialog.component.ts
@@ -28,6 +28,7 @@ import { Cipher } from "@bitwarden/common/vault/models/domain/cipher";
 import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
 import { CipherAuthorizationService } from "@bitwarden/common/vault/services/cipher-authorization.service";
 import { UnionOfValues } from "@bitwarden/common/vault/types/union-of-values";
+import { CipherViewLike } from "@bitwarden/common/vault/utils/cipher-view-like-utils";
 import {
   DIALOG_DATA,
   DialogRef,
@@ -91,7 +92,7 @@ export interface VaultItemDialogParams {
   /**
    * Function to restore a cipher from the trash.
    */
-  restore?: (c: CipherView) => Promise<boolean>;
+  restore?: (c: CipherViewLike) => Promise<boolean>;
 }
 
 export const VaultItemDialogResult = {
diff --git a/apps/web/src/app/vault/components/vault-items/vault-cipher-row.component.html b/apps/web/src/app/vault/components/vault-items/vault-cipher-row.component.html
index 227108ec25d..20b87bfc036 100644
--- a/apps/web/src/app/vault/components/vault-items/vault-cipher-row.component.html
+++ b/apps/web/src/app/vault/components/vault-items/vault-cipher-row.component.html
@@ -4,7 +4,7 @@
     type="checkbox"
     bitCheckbox
     appStopProp
-    [disabled]="disabled || cipher.decryptionFailure"
+    [disabled]="disabled || decryptionFailure"
     [checked]="checked"
     (change)="$event ? this.checkedToggled.next() : null"
     [attr.aria-label]="'vaultItemSelect' | i18n"
@@ -30,7 +30,7 @@
     >
       {{ cipher.name }}
     </button>
-    <ng-container *ngIf="cipher.hasAttachments">
+    <ng-container *ngIf="hasAttachments">
       <i
         class="bwi bwi-paperclip tw-ml-2 tw-leading-normal"
         appStopProp
@@ -50,7 +50,7 @@
     </ng-container>
   </div>
   <br />
-  <span class="tw-text-sm tw-text-muted" appStopProp>{{ cipher.subTitle }}</span>
+  <span class="tw-text-sm tw-text-muted" appStopProp>{{ subtitle }}</span>
 </td>
 <td bitCell [ngClass]="RowHeightClass" *ngIf="showOwner" class="tw-hidden lg:tw-table-cell">
   <app-org-badge
@@ -76,7 +76,7 @@
 </td>
 <td bitCell [ngClass]="RowHeightClass" class="tw-text-right">
   <button
-    *ngIf="cipher.decryptionFailure"
+    *ngIf="decryptionFailure"
     [disabled]="disabled || !canManageCollection"
     [bitMenuTriggerFor]="corruptedCipherOptions"
     size="small"
@@ -89,12 +89,12 @@
     <button bitMenuItem *ngIf="canDeleteCipher" (click)="deleteCipher()" type="button">
       <span class="tw-text-danger">
         <i class="bwi bwi-fw bwi-trash" aria-hidden="true"></i>
-        {{ (cipher.isDeleted ? "permanentlyDelete" : "delete") | i18n }}
+        {{ (isDeleted ? "permanentlyDelete" : "delete") | i18n }}
       </span>
     </button>
   </bit-menu>
   <button
-    *ngIf="!cipher.decryptionFailure"
+    *ngIf="!decryptionFailure"
     [disabled]="disabled || disableMenu"
     [bitMenuTriggerFor]="cipherOptions"
     size="small"
@@ -105,11 +105,11 @@
   ></button>
   <bit-menu #cipherOptions>
     <ng-container *ngIf="isNotDeletedLoginCipher">
-      <button bitMenuItem type="button" (click)="copy('username')" *ngIf="cipher.login.username">
+      <button bitMenuItem type="button" (click)="copy('username')" *ngIf="hasUsernameToCopy">
         <i class="bwi bwi-fw bwi-clone" aria-hidden="true"></i>
         {{ "copyUsername" | i18n }}
       </button>
-      <button bitMenuItem type="button" (click)="copy('password')" *ngIf="cipher.login.password">
+      <button bitMenuItem type="button" (click)="copy('password')" *ngIf="hasPasswordToCopy">
         <i class="bwi bwi-fw bwi-clone" aria-hidden="true"></i>
         {{ "copyPassword" | i18n }}
       </button>
@@ -119,9 +119,9 @@
       </button>
       <a
         bitMenuItem
-        *ngIf="cipher.login.canLaunch"
+        *ngIf="canLaunch"
         type="button"
-        [href]="cipher.login.launchUri"
+        [href]="launchUri"
         target="_blank"
         rel="noreferrer"
       >
@@ -151,19 +151,14 @@
       <i class="bwi bwi-fw bwi-file-text" aria-hidden="true"></i>
       {{ "eventLogs" | i18n }}
     </button>
-    <button
-      bitMenuItem
-      (click)="restore()"
-      type="button"
-      *ngIf="cipher.isDeleted && canRestoreCipher"
-    >
+    <button bitMenuItem (click)="restore()" type="button" *ngIf="isDeleted && canRestoreCipher">
       <i class="bwi bwi-fw bwi-undo" aria-hidden="true"></i>
       {{ "restore" | i18n }}
     </button>
     <button bitMenuItem *ngIf="canDeleteCipher" (click)="deleteCipher()" type="button">
       <span class="tw-text-danger">
         <i class="bwi bwi-fw bwi-trash" aria-hidden="true"></i>
-        {{ (cipher.isDeleted ? "permanentlyDelete" : "delete") | i18n }}
+        {{ (isDeleted ? "permanentlyDelete" : "delete") | i18n }}
       </span>
     </button>
   </bit-menu>
diff --git a/apps/web/src/app/vault/components/vault-items/vault-cipher-row.component.ts b/apps/web/src/app/vault/components/vault-items/vault-cipher-row.component.ts
index 6078324a059..cb4d8ad70b1 100644
--- a/apps/web/src/app/vault/components/vault-items/vault-cipher-row.component.ts
+++ b/apps/web/src/app/vault/components/vault-items/vault-cipher-row.component.ts
@@ -6,7 +6,10 @@ import { CollectionView } from "@bitwarden/admin-console/common";
 import { Organization } from "@bitwarden/common/admin-console/models/domain/organization";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { CipherType } from "@bitwarden/common/vault/enums";
-import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
+import {
+  CipherViewLike,
+  CipherViewLikeUtils,
+} from "@bitwarden/common/vault/utils/cipher-view-like-utils";
 
 import {
   convertToPermission,
@@ -20,11 +23,11 @@ import { RowHeightClass } from "./vault-items.component";
   templateUrl: "vault-cipher-row.component.html",
   standalone: false,
 })
-export class VaultCipherRowComponent implements OnInit {
+export class VaultCipherRowComponent<C extends CipherViewLike> implements OnInit {
   protected RowHeightClass = RowHeightClass;
 
   @Input() disabled: boolean;
-  @Input() cipher: CipherView;
+  @Input() cipher: C;
   @Input() showOwner: boolean;
   @Input() showCollections: boolean;
   @Input() showGroups: boolean;
@@ -46,7 +49,7 @@ export class VaultCipherRowComponent implements OnInit {
    */
   @Input() canRestoreCipher: boolean;
 
-  @Output() onEvent = new EventEmitter<VaultItemEvent>();
+  @Output() onEvent = new EventEmitter<VaultItemEvent<C>>();
 
   @Input() checked: boolean;
   @Output() checkedToggled = new EventEmitter<void>();
@@ -74,33 +77,63 @@ export class VaultCipherRowComponent implements OnInit {
   }
 
   protected get clickAction() {
-    if (this.cipher.decryptionFailure) {
+    if (this.decryptionFailure) {
       return "showFailedToDecrypt";
     }
+
     return "view";
   }
 
   protected get showTotpCopyButton() {
-    return (
-      (this.cipher.login?.hasTotp ?? false) &&
-      (this.cipher.organizationUseTotp || this.showPremiumFeatures)
-    );
+    const login = CipherViewLikeUtils.getLogin(this.cipher);
+
+    const hasTotp = login?.totp ?? false;
+
+    return hasTotp && (this.cipher.organizationUseTotp || this.showPremiumFeatures);
   }
 
   protected get showFixOldAttachments() {
     return this.cipher.hasOldAttachments && this.cipher.organizationId == null;
   }
 
+  protected get hasAttachments() {
+    return CipherViewLikeUtils.hasAttachments(this.cipher);
+  }
+
   protected get showAttachments() {
-    return this.canEditCipher || this.cipher.attachments?.length > 0;
+    return this.canEditCipher || this.hasAttachments;
+  }
+
+  protected get canLaunch() {
+    return CipherViewLikeUtils.canLaunch(this.cipher);
+  }
+
+  protected get launchUri() {
+    return CipherViewLikeUtils.getLaunchUri(this.cipher);
+  }
+
+  protected get subtitle() {
+    return CipherViewLikeUtils.subtitle(this.cipher);
+  }
+
+  protected get isDeleted() {
+    return CipherViewLikeUtils.isDeleted(this.cipher);
+  }
+
+  protected get decryptionFailure() {
+    return CipherViewLikeUtils.decryptionFailure(this.cipher);
   }
 
   protected get showAssignToCollections() {
-    return this.organizations?.length && this.canAssignCollections && !this.cipher.isDeleted;
+    return (
+      this.organizations?.length &&
+      this.canAssignCollections &&
+      !CipherViewLikeUtils.isDeleted(this.cipher)
+    );
   }
 
   protected get showClone() {
-    return this.cloneable && !this.cipher.isDeleted;
+    return this.cloneable && !CipherViewLikeUtils.isDeleted(this.cipher);
   }
 
   protected get showEventLogs() {
@@ -108,7 +141,18 @@ export class VaultCipherRowComponent implements OnInit {
   }
 
   protected get isNotDeletedLoginCipher() {
-    return this.cipher.type === this.CipherType.Login && !this.cipher.isDeleted;
+    return (
+      CipherViewLikeUtils.getType(this.cipher) === this.CipherType.Login &&
+      !CipherViewLikeUtils.isDeleted(this.cipher)
+    );
+  }
+
+  protected get hasPasswordToCopy() {
+    return CipherViewLikeUtils.hasCopyableValue(this.cipher, "password");
+  }
+
+  protected get hasUsernameToCopy() {
+    return CipherViewLikeUtils.hasCopyableValue(this.cipher, "username");
   }
 
   protected get permissionText() {
@@ -154,7 +198,7 @@ export class VaultCipherRowComponent implements OnInit {
   }
 
   protected get showLaunchUri(): boolean {
-    return this.isNotDeletedLoginCipher && this.cipher.login.canLaunch;
+    return this.isNotDeletedLoginCipher && this.canLaunch;
   }
 
   protected get disableMenu() {
@@ -166,7 +210,7 @@ export class VaultCipherRowComponent implements OnInit {
       this.showAttachments ||
       this.showClone ||
       this.canEditCipher ||
-      (this.cipher.isDeleted && this.canRestoreCipher)
+      (CipherViewLikeUtils.isDeleted(this.cipher) && this.canRestoreCipher)
     );
   }
 
diff --git a/apps/web/src/app/vault/components/vault-items/vault-collection-row.component.ts b/apps/web/src/app/vault/components/vault-items/vault-collection-row.component.ts
index 06c78ea0351..5d2b84aa10b 100644
--- a/apps/web/src/app/vault/components/vault-items/vault-collection-row.component.ts
+++ b/apps/web/src/app/vault/components/vault-items/vault-collection-row.component.ts
@@ -5,6 +5,7 @@ import { Component, EventEmitter, Input, Output } from "@angular/core";
 import { CollectionAdminView, Unassigned, CollectionView } from "@bitwarden/admin-console/common";
 import { Organization } from "@bitwarden/common/admin-console/models/domain/organization";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+import { CipherViewLike } from "@bitwarden/common/vault/utils/cipher-view-like-utils";
 
 import { GroupView } from "../../../admin-console/organizations/core";
 
@@ -20,7 +21,7 @@ import { RowHeightClass } from "./vault-items.component";
   templateUrl: "vault-collection-row.component.html",
   standalone: false,
 })
-export class VaultCollectionRowComponent {
+export class VaultCollectionRowComponent<C extends CipherViewLike> {
   protected RowHeightClass = RowHeightClass;
   protected Unassigned = "unassigned";
 
@@ -36,7 +37,7 @@ export class VaultCollectionRowComponent {
   @Input() groups: GroupView[];
   @Input() showPermissionsColumn: boolean;
 
-  @Output() onEvent = new EventEmitter<VaultItemEvent>();
+  @Output() onEvent = new EventEmitter<VaultItemEvent<C>>();
 
   @Input() checked: boolean;
   @Output() checkedToggled = new EventEmitter<void>();
diff --git a/apps/web/src/app/vault/components/vault-items/vault-item-event.ts b/apps/web/src/app/vault/components/vault-items/vault-item-event.ts
index 272d1585d95..130f86697c7 100644
--- a/apps/web/src/app/vault/components/vault-items/vault-item-event.ts
+++ b/apps/web/src/app/vault/components/vault-items/vault-item-event.ts
@@ -1,17 +1,17 @@
 import { CollectionView } from "@bitwarden/admin-console/common";
-import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
+import { CipherViewLike } from "@bitwarden/common/vault/utils/cipher-view-like-utils";
 
 import { VaultItem } from "./vault-item";
 
-export type VaultItemEvent =
-  | { type: "viewAttachments"; item: CipherView }
+export type VaultItemEvent<C extends CipherViewLike> =
+  | { type: "viewAttachments"; item: C }
   | { type: "bulkEditCollectionAccess"; items: CollectionView[] }
   | { type: "viewCollectionAccess"; item: CollectionView; readonly: boolean }
-  | { type: "viewEvents"; item: CipherView }
+  | { type: "viewEvents"; item: C }
   | { type: "editCollection"; item: CollectionView; readonly: boolean }
-  | { type: "clone"; item: CipherView }
-  | { type: "restore"; items: CipherView[] }
-  | { type: "delete"; items: VaultItem[] }
-  | { type: "copyField"; item: CipherView; field: "username" | "password" | "totp" }
-  | { type: "moveToFolder"; items: CipherView[] }
-  | { type: "assignToCollections"; items: CipherView[] };
+  | { type: "clone"; item: C }
+  | { type: "restore"; items: C[] }
+  | { type: "delete"; items: VaultItem<C>[] }
+  | { type: "copyField"; item: C; field: "username" | "password" | "totp" }
+  | { type: "moveToFolder"; items: C[] }
+  | { type: "assignToCollections"; items: C[] };
diff --git a/apps/web/src/app/vault/components/vault-items/vault-item.ts b/apps/web/src/app/vault/components/vault-items/vault-item.ts
index 6ac198392ad..bccb84fb0bf 100644
--- a/apps/web/src/app/vault/components/vault-items/vault-item.ts
+++ b/apps/web/src/app/vault/components/vault-items/vault-item.ts
@@ -1,7 +1,7 @@
 import { CollectionView } from "@bitwarden/admin-console/common";
-import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
+import { CipherViewLike } from "@bitwarden/common/vault/utils/cipher-view-like-utils";
 
-export interface VaultItem {
+export interface VaultItem<C extends CipherViewLike> {
   collection?: CollectionView;
-  cipher?: CipherView;
+  cipher?: C;
 }
diff --git a/apps/web/src/app/vault/components/vault-items/vault-items.component.ts b/apps/web/src/app/vault/components/vault-items/vault-items.component.ts
index 18dfa73ac5a..e82b03a8815 100644
--- a/apps/web/src/app/vault/components/vault-items/vault-items.component.ts
+++ b/apps/web/src/app/vault/components/vault-items/vault-items.component.ts
@@ -6,8 +6,11 @@ import { Observable, combineLatest, map, of, startWith, switchMap } from "rxjs";
 
 import { CollectionView, Unassigned, CollectionAdminView } from "@bitwarden/admin-console/common";
 import { Organization } from "@bitwarden/common/admin-console/models/domain/organization";
-import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
 import { CipherAuthorizationService } from "@bitwarden/common/vault/services/cipher-authorization.service";
+import {
+  CipherViewLike,
+  CipherViewLikeUtils,
+} from "@bitwarden/common/vault/utils/cipher-view-like-utils";
 import { SortDirection, TableDataSource } from "@bitwarden/components";
 
 import { GroupView } from "../../../admin-console/organizations/core";
@@ -32,7 +35,7 @@ type ItemPermission = CollectionPermission | "NoAccess";
   templateUrl: "vault-items.component.html",
   standalone: false,
 })
-export class VaultItemsComponent {
+export class VaultItemsComponent<C extends CipherViewLike> {
   protected RowHeight = RowHeight;
 
   @Input() disabled: boolean;
@@ -56,11 +59,11 @@ export class VaultItemsComponent {
   @Input() addAccessToggle: boolean;
   @Input() activeCollection: CollectionView | undefined;
 
-  private _ciphers?: CipherView[] = [];
-  @Input() get ciphers(): CipherView[] {
+  private _ciphers?: C[] = [];
+  @Input() get ciphers(): C[] {
     return this._ciphers;
   }
-  set ciphers(value: CipherView[] | undefined) {
+  set ciphers(value: C[] | undefined) {
     this._ciphers = value ?? [];
     this.refreshItems();
   }
@@ -74,11 +77,11 @@ export class VaultItemsComponent {
     this.refreshItems();
   }
 
-  @Output() onEvent = new EventEmitter<VaultItemEvent>();
+  @Output() onEvent = new EventEmitter<VaultItemEvent<C>>();
 
-  protected editableItems: VaultItem[] = [];
-  protected dataSource = new TableDataSource<VaultItem>();
-  protected selection = new SelectionModel<VaultItem>(true, [], true);
+  protected editableItems: VaultItem<C>[] = [];
+  protected dataSource = new TableDataSource<VaultItem<C>>();
+  protected selection = new SelectionModel<VaultItem<C>>(true, [], true);
   protected canDeleteSelected$: Observable<boolean>;
   protected canRestoreSelected$: Observable<boolean>;
   protected disableMenu$: Observable<boolean>;
@@ -233,7 +236,7 @@ export class VaultItemsComponent {
       : this.selection.select(...this.editableItems.slice(0, MaxSelectionCount));
   }
 
-  protected event(event: VaultItemEvent) {
+  protected event(event: VaultItemEvent<C>) {
     this.onEvent.emit(event);
   }
 
@@ -263,7 +266,7 @@ export class VaultItemsComponent {
   }
 
   // TODO: PM-13944 Refactor to use cipherAuthorizationService.canClone$ instead
-  protected canClone(vaultItem: VaultItem) {
+  protected canClone(vaultItem: VaultItem<C>) {
     if (vaultItem.cipher.organizationId == null) {
       return true;
     }
@@ -287,7 +290,7 @@ export class VaultItemsComponent {
     return false;
   }
 
-  protected canEditCipher(cipher: CipherView) {
+  protected canEditCipher(cipher: C) {
     if (cipher.organizationId == null) {
       return true;
     }
@@ -296,17 +299,17 @@ export class VaultItemsComponent {
     return (organization.canEditAllCiphers && this.viewingOrgVault) || cipher.edit;
   }
 
-  protected canAssignCollections(cipher: CipherView) {
+  protected canAssignCollections(cipher: C) {
     const organization = this.allOrganizations.find((o) => o.id === cipher.organizationId);
     const editableCollections = this.allCollections.filter((c) => !c.readOnly);
 
     return (
       (organization?.canEditAllCiphers && this.viewingOrgVault) ||
-      (cipher.canAssignToCollections && editableCollections.length > 0)
+      (CipherViewLikeUtils.canAssignToCollections(cipher) && editableCollections.length > 0)
     );
   }
 
-  protected canManageCollection(cipher: CipherView) {
+  protected canManageCollection(cipher: C) {
     // If the cipher is not part of an organization (personal item), user can manage it
     if (cipher.organizationId == null) {
       return true;
@@ -338,9 +341,11 @@ export class VaultItemsComponent {
   }
 
   private refreshItems() {
-    const collections: VaultItem[] = this.collections.map((collection) => ({ collection }));
-    const ciphers: VaultItem[] = this.ciphers.map((cipher) => ({ cipher }));
-    const items: VaultItem[] = [].concat(collections).concat(ciphers);
+    const collections: VaultItem<C>[] = this.collections.map((collection) => ({ collection }));
+    const ciphers: VaultItem<C>[] = this.ciphers.map((cipher) => ({
+      cipher,
+    }));
+    const items: VaultItem<C>[] = [].concat(collections).concat(ciphers);
 
     // All ciphers are selectable, collections only if they can be edited or deleted
     this.editableItems = items.filter(
@@ -419,7 +424,7 @@ export class VaultItemsComponent {
   /**
    * Sorts VaultItems, grouping collections before ciphers, and sorting each group alphabetically by name.
    */
-  protected sortByName = (a: VaultItem, b: VaultItem, direction: SortDirection) => {
+  protected sortByName = (a: VaultItem<C>, b: VaultItem<C>, direction: SortDirection) => {
     // Collections before ciphers
     const collectionCompare = this.prioritizeCollections(a, b, direction);
     if (collectionCompare !== 0) {
@@ -432,7 +437,7 @@ export class VaultItemsComponent {
   /**
    * Sorts VaultItems based on group names
    */
-  protected sortByGroups = (a: VaultItem, b: VaultItem, direction: SortDirection) => {
+  protected sortByGroups = (a: VaultItem<C>, b: VaultItem<C>, direction: SortDirection) => {
     if (
       !(a.collection instanceof CollectionAdminView) &&
       !(b.collection instanceof CollectionAdminView)
@@ -473,8 +478,8 @@ export class VaultItemsComponent {
    * Sorts VaultItems based on their permissions, with higher permissions taking precedence.
    * If permissions are equal, it falls back to sorting by name.
    */
-  protected sortByPermissions = (a: VaultItem, b: VaultItem, direction: SortDirection) => {
-    const getPermissionPriority = (item: VaultItem): number => {
+  protected sortByPermissions = (a: VaultItem<C>, b: VaultItem<C>, direction: SortDirection) => {
+    const getPermissionPriority = (item: VaultItem<C>): number => {
       const permission = item.collection
         ? this.getCollectionPermission(item.collection)
         : this.getCipherPermission(item.cipher);
@@ -508,8 +513,8 @@ export class VaultItemsComponent {
     return this.compareNames(a, b);
   };
 
-  private compareNames(a: VaultItem, b: VaultItem): number {
-    const getName = (item: VaultItem) => item.collection?.name || item.cipher?.name;
+  private compareNames(a: VaultItem<C>, b: VaultItem<C>): number {
+    const getName = (item: VaultItem<C>) => item.collection?.name || item.cipher?.name;
     return getName(a)?.localeCompare(getName(b)) ?? -1;
   }
 
@@ -517,7 +522,11 @@ export class VaultItemsComponent {
    * Sorts VaultItems by prioritizing collections over ciphers.
    * Collections are always placed before ciphers, regardless of the sorting direction.
    */
-  private prioritizeCollections(a: VaultItem, b: VaultItem, direction: SortDirection): number {
+  private prioritizeCollections(
+    a: VaultItem<C>,
+    b: VaultItem<C>,
+    direction: SortDirection,
+  ): number {
     if (a.collection && !b.collection) {
       return direction === "asc" ? -1 : 1;
     }
@@ -561,7 +570,7 @@ export class VaultItemsComponent {
     return "NoAccess";
   }
 
-  private getCipherPermission(cipher: CipherView): ItemPermission {
+  private getCipherPermission(cipher: C): ItemPermission {
     if (!cipher.organizationId || cipher.collectionIds.length === 0) {
       return CollectionPermission.Manage;
     }
diff --git a/apps/web/src/app/vault/components/vault-items/vault-items.stories.ts b/apps/web/src/app/vault/components/vault-items/vault-items.stories.ts
index e65d423a57b..785c07fb634 100644
--- a/apps/web/src/app/vault/components/vault-items/vault-items.stories.ts
+++ b/apps/web/src/app/vault/components/vault-items/vault-items.stories.ts
@@ -36,6 +36,7 @@ import { LoginUriView } from "@bitwarden/common/vault/models/view/login-uri.view
 import { LoginView } from "@bitwarden/common/vault/models/view/login.view";
 import { CipherAuthorizationService } from "@bitwarden/common/vault/services/cipher-authorization.service";
 import { RestrictedItemTypesService } from "@bitwarden/common/vault/services/restricted-item-types.service";
+import { CipherViewLike } from "@bitwarden/common/vault/utils/cipher-view-like-utils";
 import { LayoutComponent } from "@bitwarden/components";
 
 import { GroupView } from "../../../admin-console/organizations/core";
@@ -158,7 +159,7 @@ export default {
   argTypes: { onEvent: { action: "onEvent" } },
 } as Meta;
 
-type Story = StoryObj<VaultItemsComponent>;
+type Story = StoryObj<VaultItemsComponent<CipherViewLike>>;
 
 export const Individual: Story = {
   args: {
diff --git a/apps/web/src/app/vault/individual-vault/vault-filter/services/vault-filter.service.spec.ts b/apps/web/src/app/vault/individual-vault/vault-filter/services/vault-filter.service.spec.ts
index 2154ecff1b7..93189f2bf1c 100644
--- a/apps/web/src/app/vault/individual-vault/vault-filter/services/vault-filter.service.spec.ts
+++ b/apps/web/src/app/vault/individual-vault/vault-filter/services/vault-filter.service.spec.ts
@@ -85,7 +85,7 @@ describe("vault filter service", () => {
     policyService.policyAppliesToUser$
       .calledWith(PolicyType.SingleOrg, mockUserId)
       .mockReturnValue(singleOrgPolicy);
-    cipherService.cipherViews$.mockReturnValue(cipherViews);
+    cipherService.cipherListViews$.mockReturnValue(cipherViews);
 
     vaultFilterService = new VaultFilterService(
       organizationService,
diff --git a/apps/web/src/app/vault/individual-vault/vault-filter/services/vault-filter.service.ts b/apps/web/src/app/vault/individual-vault/vault-filter/services/vault-filter.service.ts
index f326034e806..1fe618c6c4e 100644
--- a/apps/web/src/app/vault/individual-vault/vault-filter/services/vault-filter.service.ts
+++ b/apps/web/src/app/vault/individual-vault/vault-filter/services/vault-filter.service.ts
@@ -38,6 +38,7 @@ import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
 import { FolderView } from "@bitwarden/common/vault/models/view/folder.view";
 import { ServiceUtils } from "@bitwarden/common/vault/service-utils";
 import { COLLAPSED_GROUPINGS } from "@bitwarden/common/vault/services/key-state/collapsed-groupings.state";
+import { CipherListView } from "@bitwarden/sdk-internal";
 
 import {
   CipherTypeFilter,
@@ -85,7 +86,7 @@ export class VaultFilterService implements VaultFilterServiceAbstraction {
     switchMap((userId) =>
       combineLatest([
         this.folderService.folderViews$(userId),
-        this.cipherService.cipherViews$(userId),
+        this.cipherService.cipherListViews$(userId),
         this._organizationFilter,
       ]),
     ),
@@ -280,7 +281,7 @@ export class VaultFilterService implements VaultFilterServiceAbstraction {
 
   protected async filterFolders(
     storedFolders: FolderView[],
-    ciphers: CipherView[],
+    ciphers: CipherView[] | CipherListView[],
     org?: Organization,
   ): Promise<FolderView[]> {
     // If no org or "My Vault" is selected, show all folders
diff --git a/apps/web/src/app/vault/individual-vault/vault-filter/shared/models/filter-function.spec.ts b/apps/web/src/app/vault/individual-vault/vault-filter/shared/models/filter-function.spec.ts
index 3082d7cb809..00c540f6029 100644
--- a/apps/web/src/app/vault/individual-vault/vault-filter/shared/models/filter-function.spec.ts
+++ b/apps/web/src/app/vault/individual-vault/vault-filter/shared/models/filter-function.spec.ts
@@ -221,7 +221,7 @@ function createCipher(options: Partial<CipherView> = {}) {
 
   cipher.favorite = options.favorite ?? false;
   cipher.deletedDate = options.deletedDate;
-  cipher.type = options.type;
+  cipher.type = options.type ?? CipherType.Login;
   cipher.folderId = options.folderId;
   cipher.collectionIds = options.collectionIds;
   cipher.organizationId = options.organizationId;
diff --git a/apps/web/src/app/vault/individual-vault/vault-filter/shared/models/filter-function.ts b/apps/web/src/app/vault/individual-vault/vault-filter/shared/models/filter-function.ts
index a39918df4a7..1ed2e481fb8 100644
--- a/apps/web/src/app/vault/individual-vault/vault-filter/shared/models/filter-function.ts
+++ b/apps/web/src/app/vault/individual-vault/vault-filter/shared/models/filter-function.ts
@@ -1,40 +1,46 @@
 import { Unassigned } from "@bitwarden/admin-console/common";
 import { CipherType } from "@bitwarden/common/vault/enums";
-import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
+import {
+  CipherViewLike,
+  CipherViewLikeUtils,
+} from "@bitwarden/common/vault/utils/cipher-view-like-utils";
 
 import { All, RoutedVaultFilterModel } from "./routed-vault-filter.model";
 
-export type FilterFunction = (cipher: CipherView) => boolean;
+export type FilterFunction = (cipher: CipherViewLike) => boolean;
 
 export function createFilterFunction(filter: RoutedVaultFilterModel): FilterFunction {
   return (cipher) => {
+    const type = CipherViewLikeUtils.getType(cipher);
+    const isDeleted = CipherViewLikeUtils.isDeleted(cipher);
+
     if (filter.type === "favorites" && !cipher.favorite) {
       return false;
     }
-    if (filter.type === "card" && cipher.type !== CipherType.Card) {
+    if (filter.type === "card" && type !== CipherType.Card) {
       return false;
     }
-    if (filter.type === "identity" && cipher.type !== CipherType.Identity) {
+    if (filter.type === "identity" && type !== CipherType.Identity) {
       return false;
     }
-    if (filter.type === "login" && cipher.type !== CipherType.Login) {
+    if (filter.type === "login" && type !== CipherType.Login) {
       return false;
     }
-    if (filter.type === "note" && cipher.type !== CipherType.SecureNote) {
+    if (filter.type === "note" && type !== CipherType.SecureNote) {
       return false;
     }
-    if (filter.type === "sshKey" && cipher.type !== CipherType.SshKey) {
+    if (filter.type === "sshKey" && type !== CipherType.SshKey) {
       return false;
     }
-    if (filter.type === "trash" && !cipher.isDeleted) {
+    if (filter.type === "trash" && !isDeleted) {
       return false;
     }
     // Hide trash unless explicitly selected
-    if (filter.type !== "trash" && cipher.isDeleted) {
+    if (filter.type !== "trash" && isDeleted) {
       return false;
     }
     // No folder
-    if (filter.folderId === Unassigned && cipher.folderId !== null) {
+    if (filter.folderId === Unassigned && cipher.folderId != null) {
       return false;
     }
     // Folder
diff --git a/apps/web/src/app/vault/individual-vault/vault-onboarding/vault-onboarding.component.ts b/apps/web/src/app/vault/individual-vault/vault-onboarding/vault-onboarding.component.ts
index b4eda51435f..8dc442abe2e 100644
--- a/apps/web/src/app/vault/individual-vault/vault-onboarding/vault-onboarding.component.ts
+++ b/apps/web/src/app/vault/individual-vault/vault-onboarding/vault-onboarding.component.ts
@@ -24,7 +24,7 @@ import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/pl
 import { UserId } from "@bitwarden/common/types/guid";
 import { CipherType } from "@bitwarden/common/vault/enums/cipher-type";
 import { VaultMessages } from "@bitwarden/common/vault/enums/vault-messages.enum";
-import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
+import { CipherViewLike } from "@bitwarden/common/vault/utils/cipher-view-like-utils";
 import { LinkModule } from "@bitwarden/components";
 
 import { OnboardingModule } from "../../../shared/components/onboarding/onboarding.module";
@@ -44,7 +44,7 @@ import { VaultOnboardingService, VaultOnboardingTasks } from "./services/vault-o
   templateUrl: "vault-onboarding.component.html",
 })
 export class VaultOnboardingComponent implements OnInit, OnChanges, OnDestroy {
-  @Input() ciphers: CipherView[];
+  @Input() ciphers: CipherViewLike[];
   @Input() orgs: Organization[];
   @Output() onAddCipher = new EventEmitter<CipherType>();
 
diff --git a/apps/web/src/app/vault/individual-vault/vault.component.ts b/apps/web/src/app/vault/individual-vault/vault.component.ts
index 380e0280b5a..c8c2f681bb4 100644
--- a/apps/web/src/app/vault/individual-vault/vault.component.ts
+++ b/apps/web/src/app/vault/individual-vault/vault.component.ts
@@ -67,8 +67,13 @@ import { TreeNode } from "@bitwarden/common/vault/models/domain/tree-node";
 import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
 import { ServiceUtils } from "@bitwarden/common/vault/service-utils";
 import { RestrictedItemTypesService } from "@bitwarden/common/vault/services/restricted-item-types.service";
+import {
+  CipherViewLike,
+  CipherViewLikeUtils,
+} from "@bitwarden/common/vault/utils/cipher-view-like-utils";
 import { filterOutNullish } from "@bitwarden/common/vault/utils/observable-utilities";
 import { DialogRef, DialogService, Icons, ToastService } from "@bitwarden/components";
+import { CipherListView } from "@bitwarden/sdk-internal";
 import {
   AddEditFolderDialogComponent,
   AddEditFolderDialogResult,
@@ -149,7 +154,7 @@ const SearchTextDebounceInterval = 200;
     DefaultCipherFormConfigService,
   ],
 })
-export class VaultComponent implements OnInit, OnDestroy {
+export class VaultComponent<C extends CipherViewLike> implements OnInit, OnDestroy {
   @ViewChild("vaultFilter", { static: true }) filterComponent: VaultFilterComponent;
 
   trashCleanupWarning: string = null;
@@ -165,7 +170,7 @@ export class VaultComponent implements OnInit, OnDestroy {
   protected canAccessPremium: boolean;
   protected allCollections: CollectionView[];
   protected allOrganizations: Organization[] = [];
-  protected ciphers: CipherView[];
+  protected ciphers: C[];
   protected collections: CollectionView[];
   protected isEmpty: boolean;
   protected selectedCollection: TreeNode<CollectionView> | undefined;
@@ -350,11 +355,15 @@ export class VaultComponent implements OnInit, OnDestroy {
 
     this.currentSearchText$ = this.route.queryParams.pipe(map((queryParams) => queryParams.search));
 
+    const _ciphers = this.cipherService
+      .cipherListViews$(activeUserId)
+      .pipe(filter((c) => c !== null));
+
     /**
      * This observable filters the ciphers based on the active user ID and the restricted item types.
      */
     const allowedCiphers$ = combineLatest([
-      this.cipherService.cipherViews$(activeUserId).pipe(filter((c) => c !== null)),
+      _ciphers,
       this.restrictedItemTypesService.restricted$,
     ]).pipe(
       map(([ciphers, restrictedTypes]) =>
@@ -374,15 +383,15 @@ export class VaultComponent implements OnInit, OnDestroy {
         const allCiphers = [...failedCiphers, ...ciphers];
 
         if (await this.searchService.isSearchable(activeUserId, searchText)) {
-          return await this.searchService.searchCiphers(
+          return await this.searchService.searchCiphers<C>(
             activeUserId,
             searchText,
             [filterFunction],
-            allCiphers,
+            allCiphers as C[],
           );
         }
 
-        return allCiphers.filter(filterFunction);
+        return ciphers.filter(filterFunction) as C[];
       }),
       shareReplay({ refCount: true, bufferSize: 1 }),
     );
@@ -566,7 +575,7 @@ export class VaultComponent implements OnInit, OnDestroy {
     this.vaultFilterService.clearOrganizationFilter();
   }
 
-  async onVaultItemsEvent(event: VaultItemEvent) {
+  async onVaultItemsEvent(event: VaultItemEvent<C>) {
     this.processingEvent = true;
     try {
       switch (event.type) {
@@ -654,7 +663,7 @@ export class VaultComponent implements OnInit, OnDestroy {
    * @param cipher
    * @returns
    */
-  async editCipherAttachments(cipher: CipherView) {
+  async editCipherAttachments(cipher: C) {
     if (cipher?.reprompt !== 0 && !(await this.passwordRepromptService.showPasswordPrompt())) {
       await this.go({ cipherId: null, itemId: null });
       return;
@@ -761,7 +770,7 @@ export class VaultComponent implements OnInit, OnDestroy {
     await this.openVaultItemDialog("form", cipherFormConfig);
   }
 
-  async editCipher(cipher: CipherView, cloneMode?: boolean) {
+  async editCipher(cipher: CipherView | CipherListView, cloneMode?: boolean) {
     return this.editCipherId(cipher?.id, cloneMode);
   }
 
@@ -929,7 +938,7 @@ export class VaultComponent implements OnInit, OnDestroy {
     }
   }
 
-  async bulkAssignToCollections(ciphers: CipherView[]) {
+  async bulkAssignToCollections(ciphers: C[]) {
     if (!(await this.repromptCipher(ciphers))) {
       return;
     }
@@ -955,9 +964,28 @@ export class VaultComponent implements OnInit, OnDestroy {
       );
     }
 
+    let ciphersToAssign: CipherView[];
+
+    // Convert `CipherListView` to `CipherView` if necessary
+    if (ciphers.some(CipherViewLikeUtils.isCipherListView)) {
+      const userId = await firstValueFrom(this.accountService.activeAccount$.pipe(getUserId));
+      ciphersToAssign = await firstValueFrom(
+        this.cipherService
+          .cipherViews$(userId)
+          .pipe(
+            map(
+              (cipherViews) =>
+                cipherViews.filter((c) => ciphers.some((cc) => cc.id === c.id)) as CipherView[],
+            ),
+          ),
+      );
+    } else {
+      ciphersToAssign = ciphers as CipherView[];
+    }
+
     const dialog = AssignCollectionsWebComponent.open(this.dialogService, {
       data: {
-        ciphers,
+        ciphers: ciphersToAssign,
         organizationId: orgId as OrganizationId,
         availableCollections,
         activeCollection: this.activeFilter?.selectedCollectionNode?.node,
@@ -970,8 +998,8 @@ export class VaultComponent implements OnInit, OnDestroy {
     }
   }
 
-  async cloneCipher(cipher: CipherView) {
-    if (cipher.login?.hasFido2Credentials) {
+  async cloneCipher(cipher: CipherView | CipherListView) {
+    if (CipherViewLikeUtils.hasFido2Credentials(cipher)) {
       const confirmed = await this.dialogService.openSimpleDialog({
         title: { key: "passkeyNotCopied" },
         content: { key: "passkeyNotCopiedAlert" },
@@ -986,8 +1014,8 @@ export class VaultComponent implements OnInit, OnDestroy {
     await this.editCipher(cipher, true);
   }
 
-  restore = async (c: CipherView): Promise<boolean> => {
-    if (!c.isDeleted) {
+  restore = async (c: C): Promise<boolean> => {
+    if (!CipherViewLikeUtils.isDeleted(c)) {
       return;
     }
 
@@ -1014,7 +1042,7 @@ export class VaultComponent implements OnInit, OnDestroy {
     }
   };
 
-  async bulkRestore(ciphers: CipherView[]) {
+  async bulkRestore(ciphers: C[]) {
     if (ciphers.some((c) => !c.edit)) {
       this.showMissingPermissionsError();
       return;
@@ -1044,8 +1072,8 @@ export class VaultComponent implements OnInit, OnDestroy {
     this.refresh();
   }
 
-  private async handleDeleteEvent(items: VaultItem[]) {
-    const ciphers = items.filter((i) => i.collection === undefined).map((i) => i.cipher);
+  private async handleDeleteEvent(items: VaultItem<C>[]) {
+    const ciphers: C[] = items.filter((i) => i.collection === undefined).map((i) => i.cipher);
     const collections = items.filter((i) => i.cipher === undefined).map((i) => i.collection);
     if (ciphers.length === 1 && collections.length === 0) {
       await this.deleteCipher(ciphers[0]);
@@ -1062,7 +1090,7 @@ export class VaultComponent implements OnInit, OnDestroy {
     }
   }
 
-  async deleteCipher(c: CipherView): Promise<boolean> {
+  async deleteCipher(c: C): Promise<boolean> {
     if (!(await this.repromptCipher([c]))) {
       return;
     }
@@ -1072,7 +1100,7 @@ export class VaultComponent implements OnInit, OnDestroy {
       return;
     }
 
-    const permanent = c.isDeleted;
+    const permanent = CipherViewLikeUtils.isDeleted(c);
 
     const confirmed = await this.dialogService.openSimpleDialog({
       title: { key: permanent ? "permanentlyDeleteItem" : "deleteItem" },
@@ -1099,11 +1127,7 @@ export class VaultComponent implements OnInit, OnDestroy {
     }
   }
 
-  async bulkDelete(
-    ciphers: CipherView[],
-    collections: CollectionView[],
-    organizations: Organization[],
-  ) {
+  async bulkDelete(ciphers: C[], collections: CollectionView[], organizations: Organization[]) {
     if (!(await this.repromptCipher(ciphers))) {
       return;
     }
@@ -1142,7 +1166,7 @@ export class VaultComponent implements OnInit, OnDestroy {
     }
   }
 
-  async bulkMove(ciphers: CipherView[]) {
+  async bulkMove(ciphers: C[]) {
     if (!(await this.repromptCipher(ciphers))) {
       return;
     }
@@ -1167,22 +1191,32 @@ export class VaultComponent implements OnInit, OnDestroy {
     }
   }
 
-  async copy(cipher: CipherView, field: "username" | "password" | "totp") {
+  async copy(cipher: C, field: "username" | "password" | "totp") {
     let aType;
     let value;
     let typeI18nKey;
 
+    const login = CipherViewLikeUtils.getLogin(cipher);
+
+    if (!login) {
+      this.toastService.showToast({
+        variant: "error",
+        title: null,
+        message: this.i18nService.t("unexpectedError"),
+      });
+    }
+
     if (field === "username") {
       aType = "Username";
-      value = cipher.login.username;
+      value = login.username;
       typeI18nKey = "username";
     } else if (field === "password") {
       aType = "Password";
-      value = cipher.login.password;
+      value = await this.getPasswordFromCipherViewLike(cipher);
       typeI18nKey = "password";
     } else if (field === "totp") {
       aType = "TOTP";
-      const totpResponse = await firstValueFrom(this.totpService.getCode$(cipher.login.totp));
+      const totpResponse = await firstValueFrom(this.totpService.getCode$(login.totp));
       value = totpResponse.code;
       typeI18nKey = "verificationCodeTotp";
     } else {
@@ -1228,7 +1262,7 @@ export class VaultComponent implements OnInit, OnDestroy {
       : this.cipherService.softDeleteWithServer(id, userId);
   }
 
-  protected async repromptCipher(ciphers: CipherView[]) {
+  protected async repromptCipher(ciphers: C[]) {
     const notProtected = !ciphers.find((cipher) => cipher.reprompt !== CipherRepromptType.None);
 
     return notProtected || (await this.passwordRepromptService.showPasswordPrompt());
@@ -1264,6 +1298,21 @@ export class VaultComponent implements OnInit, OnDestroy {
       message: this.i18nService.t("missingPermissions"),
     });
   }
+
+  /**
+   * Returns the password for a `CipherViewLike` object.
+   * `CipherListView` does not contain the password, the full `CipherView` needs to be fetched.
+   */
+  private async getPasswordFromCipherViewLike(cipher: C): Promise<string | undefined> {
+    if (!CipherViewLikeUtils.isCipherListView(cipher)) {
+      return Promise.resolve(cipher.login?.password);
+    }
+
+    const activeUserId = await firstValueFrom(this.accountService.activeAccount$.pipe(getUserId));
+    const _cipher = await this.cipherService.get(cipher.id, activeUserId);
+    const cipherView = await this.cipherService.decrypt(_cipher, activeUserId);
+    return cipherView.login?.password;
+  }
 }
 
 /**
diff --git a/apps/web/src/locales/en/messages.json b/apps/web/src/locales/en/messages.json
index 475fb004033..4c4a97e6404 100644
--- a/apps/web/src/locales/en/messages.json
+++ b/apps/web/src/locales/en/messages.json
@@ -864,6 +864,23 @@
   "copyName": {
     "message": "Copy name"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Me"
   },
diff --git a/libs/angular/src/vault/components/icon.component.ts b/libs/angular/src/vault/components/icon.component.ts
index fd178db23b6..0718b6fc76c 100644
--- a/libs/angular/src/vault/components/icon.component.ts
+++ b/libs/angular/src/vault/components/icon.component.ts
@@ -13,7 +13,7 @@ import {
 import { DomainSettingsService } from "@bitwarden/common/autofill/services/domain-settings.service";
 import { EnvironmentService } from "@bitwarden/common/platform/abstractions/environment.service";
 import { buildCipherIcon, CipherIconDetails } from "@bitwarden/common/vault/icon/build-cipher-icon";
-import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
+import { CipherViewLike } from "@bitwarden/common/vault/utils/cipher-view-like-utils";
 
 @Component({
   selector: "app-vault-icon",
@@ -25,7 +25,7 @@ export class IconComponent {
   /**
    * The cipher to display the icon for.
    */
-  cipher = input.required<CipherView>();
+  cipher = input.required<CipherViewLike>();
 
   imageLoaded = signal(false);
 
diff --git a/libs/angular/src/vault/components/vault-items.component.ts b/libs/angular/src/vault/components/vault-items.component.ts
index cf017899774..75ca5608208 100644
--- a/libs/angular/src/vault/components/vault-items.component.ts
+++ b/libs/angular/src/vault/components/vault-items.component.ts
@@ -21,20 +21,23 @@ import { getUserId } from "@bitwarden/common/auth/services/account.service";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
 import { SearchService } from "@bitwarden/common/vault/abstractions/search.service";
 import { CipherType } from "@bitwarden/common/vault/enums";
-import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
 import { RestrictedItemTypesService } from "@bitwarden/common/vault/services/restricted-item-types.service";
 import { CIPHER_MENU_ITEMS } from "@bitwarden/common/vault/types/cipher-menu-items";
+import {
+  CipherViewLike,
+  CipherViewLikeUtils,
+} from "@bitwarden/common/vault/utils/cipher-view-like-utils";
 
 @Directive()
-export class VaultItemsComponent implements OnInit, OnDestroy {
+export class VaultItemsComponent<C extends CipherViewLike> implements OnInit, OnDestroy {
   @Input() activeCipherId: string = null;
-  @Output() onCipherClicked = new EventEmitter<CipherView>();
-  @Output() onCipherRightClicked = new EventEmitter<CipherView>();
+  @Output() onCipherClicked = new EventEmitter<C>();
+  @Output() onCipherRightClicked = new EventEmitter<C>();
   @Output() onAddCipher = new EventEmitter<CipherType | undefined>();
   @Output() onAddCipherOptions = new EventEmitter();
 
   loaded = false;
-  ciphers: CipherView[] = [];
+  ciphers: C[] = [];
   deleted = false;
   organization: Organization;
   CipherType = CipherType;
@@ -55,7 +58,7 @@ export class VaultItemsComponent implements OnInit, OnDestroy {
   protected searchPending = false;
 
   /** Construct filters as an observable so it can be appended to the cipher stream. */
-  private _filter$ = new BehaviorSubject<(cipher: CipherView) => boolean | null>(null);
+  private _filter$ = new BehaviorSubject<(cipher: C) => boolean | null>(null);
   private destroy$ = new Subject<void>();
   private isSearchable: boolean = false;
   private _searchText$ = new BehaviorSubject<string>("");
@@ -71,7 +74,7 @@ export class VaultItemsComponent implements OnInit, OnDestroy {
     return this._filter$.value;
   }
 
-  set filter(value: (cipher: CipherView) => boolean | null) {
+  set filter(value: (cipher: C) => boolean | null) {
     this._filter$.next(value);
   }
 
@@ -102,13 +105,13 @@ export class VaultItemsComponent implements OnInit, OnDestroy {
     this.destroy$.complete();
   }
 
-  async load(filter: (cipher: CipherView) => boolean = null, deleted = false) {
+  async load(filter: (cipher: C) => boolean = null, deleted = false) {
     this.deleted = deleted ?? false;
     await this.applyFilter(filter);
     this.loaded = true;
   }
 
-  async reload(filter: (cipher: CipherView) => boolean = null, deleted = false) {
+  async reload(filter: (cipher: C) => boolean = null, deleted = false) {
     this.loaded = false;
     await this.load(filter, deleted);
   }
@@ -117,15 +120,15 @@ export class VaultItemsComponent implements OnInit, OnDestroy {
     await this.reload(this.filter, this.deleted);
   }
 
-  async applyFilter(filter: (cipher: CipherView) => boolean = null) {
+  async applyFilter(filter: (cipher: C) => boolean = null) {
     this.filter = filter;
   }
 
-  selectCipher(cipher: CipherView) {
+  selectCipher(cipher: C) {
     this.onCipherClicked.emit(cipher);
   }
 
-  rightClickCipher(cipher: CipherView) {
+  rightClickCipher(cipher: C) {
     this.onCipherRightClicked.emit(cipher);
   }
 
@@ -141,7 +144,8 @@ export class VaultItemsComponent implements OnInit, OnDestroy {
     return !this.searchPending && this.isSearchable;
   }
 
-  protected deletedFilter: (cipher: CipherView) => boolean = (c) => c.isDeleted === this.deleted;
+  protected deletedFilter: (cipher: C) => boolean = (c) =>
+    CipherViewLikeUtils.isDeleted(c) === this.deleted;
 
   /**
    * Creates stream of dependencies that results in the list of ciphers to display
@@ -156,7 +160,7 @@ export class VaultItemsComponent implements OnInit, OnDestroy {
       .pipe(
         switchMap((userId) =>
           combineLatest([
-            this.cipherService.cipherViews$(userId).pipe(filter((ciphers) => ciphers != null)),
+            this.cipherService.cipherListViews$(userId).pipe(filter((ciphers) => ciphers != null)),
             this.cipherService.failedToDecryptCiphers$(userId),
             this._searchText$,
             this._filter$,
@@ -165,12 +169,12 @@ export class VaultItemsComponent implements OnInit, OnDestroy {
           ]),
         ),
         switchMap(([indexedCiphers, failedCiphers, searchText, filter, userId, restricted]) => {
-          let allCiphers = indexedCiphers ?? [];
+          let allCiphers = (indexedCiphers ?? []) as C[];
           const _failedCiphers = failedCiphers ?? [];
 
-          allCiphers = [..._failedCiphers, ...allCiphers];
+          allCiphers = [..._failedCiphers, ...allCiphers] as C[];
 
-          const restrictedTypeFilter = (cipher: CipherView) =>
+          const restrictedTypeFilter = (cipher: CipherViewLike) =>
             !this.restrictedItemTypesService.isCipherRestricted(cipher, restricted);
 
           return this.searchService.searchCiphers(
diff --git a/libs/angular/src/vault/services/custom-nudges-services/empty-vault-nudge.service.ts b/libs/angular/src/vault/services/custom-nudges-services/empty-vault-nudge.service.ts
index 3122bdac2e0..8302ff541aa 100644
--- a/libs/angular/src/vault/services/custom-nudges-services/empty-vault-nudge.service.ts
+++ b/libs/angular/src/vault/services/custom-nudges-services/empty-vault-nudge.service.ts
@@ -25,7 +25,7 @@ export class EmptyVaultNudgeService extends DefaultSingleNudgeService {
   nudgeStatus$(nudgeType: NudgeType, userId: UserId): Observable<NudgeStatus> {
     return combineLatest([
       this.getNudgeStatus$(nudgeType, userId),
-      this.cipherService.cipherViews$(userId),
+      this.cipherService.cipherListViews$(userId),
       this.organizationService.organizations$(userId),
       this.collectionService.decryptedCollections$,
     ]).pipe(
diff --git a/libs/angular/src/vault/vault-filter/models/vault-filter.model.ts b/libs/angular/src/vault/vault-filter/models/vault-filter.model.ts
index 8f63c31d87a..fa383dd28da 100644
--- a/libs/angular/src/vault/vault-filter/models/vault-filter.model.ts
+++ b/libs/angular/src/vault/vault-filter/models/vault-filter.model.ts
@@ -1,11 +1,14 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
 import { CipherType } from "@bitwarden/common/vault/enums";
-import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
+import {
+  CipherViewLike,
+  CipherViewLikeUtils,
+} from "@bitwarden/common/vault/utils/cipher-view-like-utils";
 
 import { CipherStatus } from "./cipher-status.model";
 
-export type VaultFilterFunction = (cipher: CipherView) => boolean;
+export type VaultFilterFunction = (cipher: CipherViewLike) => boolean;
 
 export class VaultFilter {
   cipherType?: CipherType;
@@ -44,10 +47,10 @@ export class VaultFilter {
         cipherPassesFilter = cipher.favorite;
       }
       if (this.status === "trash" && cipherPassesFilter) {
-        cipherPassesFilter = cipher.isDeleted;
+        cipherPassesFilter = CipherViewLikeUtils.isDeleted(cipher);
       }
       if (this.cipherType != null && cipherPassesFilter) {
-        cipherPassesFilter = cipher.type === this.cipherType;
+        cipherPassesFilter = CipherViewLikeUtils.getType(cipher) === this.cipherType;
       }
       if (this.selectedFolder && this.selectedFolderId == null && cipherPassesFilter) {
         cipherPassesFilter = cipher.folderId == null;
@@ -68,7 +71,7 @@ export class VaultFilter {
         cipherPassesFilter = cipher.organizationId === this.selectedOrganizationId;
       }
       if (this.myVaultOnly && cipherPassesFilter) {
-        cipherPassesFilter = cipher.organizationId === null;
+        cipherPassesFilter = cipher.organizationId == null;
       }
       return cipherPassesFilter;
     };
diff --git a/libs/common/src/enums/feature-flag.enum.ts b/libs/common/src/enums/feature-flag.enum.ts
index da14f7dada3..1af2ab1f0a9 100644
--- a/libs/common/src/enums/feature-flag.enum.ts
+++ b/libs/common/src/enums/feature-flag.enum.ts
@@ -53,6 +53,7 @@ export enum FeatureFlag {
   PM8851_BrowserOnboardingNudge = "pm-8851-browser-onboarding-nudge",
   PM9111ExtensionPersistAddEditForm = "pm-9111-extension-persist-add-edit-form",
   PM19941MigrateCipherDomainToSdk = "pm-19941-migrate-cipher-domain-to-sdk",
+  PM22134SdkCipherListView = "pm-22134-sdk-cipher-list-view",
   CipherKeyEncryption = "cipher-key-encryption",
   EndUserNotifications = "pm-10609-end-user-notifications",
   RemoveCardItemTypePolicy = "pm-16442-remove-card-item-type-policy",
@@ -100,6 +101,7 @@ export const DefaultFeatureFlagValue = {
   [FeatureFlag.EndUserNotifications]: FALSE,
   [FeatureFlag.PM19941MigrateCipherDomainToSdk]: FALSE,
   [FeatureFlag.RemoveCardItemTypePolicy]: FALSE,
+  [FeatureFlag.PM22134SdkCipherListView]: FALSE,
   [FeatureFlag.PM19315EndUserActivationMvp]: FALSE,
 
   /* Auth */
diff --git a/libs/common/src/vault/abstractions/cipher.service.ts b/libs/common/src/vault/abstractions/cipher.service.ts
index 9f5c173826e..d1d686a66af 100644
--- a/libs/common/src/vault/abstractions/cipher.service.ts
+++ b/libs/common/src/vault/abstractions/cipher.service.ts
@@ -5,6 +5,7 @@ import { Observable } from "rxjs";
 // This import has been flagged as unallowed for this class. It may be involved in a circular dependency loop.
 // eslint-disable-next-line no-restricted-imports
 import { UserKeyRotationDataProvider } from "@bitwarden/key-management";
+import { CipherListView } from "@bitwarden/sdk-internal";
 
 import { UriMatchStrategySetting } from "../../models/domain/domain-service";
 import { SymmetricCryptoKey } from "../../platform/models/domain/symmetric-crypto-key";
@@ -20,6 +21,7 @@ import { AttachmentView } from "../models/view/attachment.view";
 import { CipherView } from "../models/view/cipher.view";
 import { FieldView } from "../models/view/field.view";
 import { AddEditCipherInfo } from "../types/add-edit-cipher-info";
+import { CipherViewLike } from "../utils/cipher-view-like-utils";
 
 export type EncryptionContext = {
   cipher: Cipher;
@@ -29,6 +31,7 @@ export type EncryptionContext = {
 
 export abstract class CipherService implements UserKeyRotationDataProvider<CipherWithIdRequest> {
   abstract cipherViews$(userId: UserId): Observable<CipherView[]>;
+  abstract cipherListViews$(userId: UserId): Observable<CipherListView[] | CipherView[]>;
   abstract ciphers$(userId: UserId): Observable<Record<CipherId, CipherData>>;
   abstract localData$(userId: UserId): Observable<Record<CipherId, LocalData>>;
   /**
@@ -65,12 +68,12 @@ export abstract class CipherService implements UserKeyRotationDataProvider<Ciphe
     includeOtherTypes?: CipherType[],
     defaultMatch?: UriMatchStrategySetting,
   ): Promise<CipherView[]>;
-  abstract filterCiphersForUrl(
-    ciphers: CipherView[],
+  abstract filterCiphersForUrl<C extends CipherViewLike = CipherView>(
+    ciphers: C[],
     url: string,
     includeOtherTypes?: CipherType[],
     defaultMatch?: UriMatchStrategySetting,
-  ): Promise<CipherView[]>;
+  ): Promise<C[]>;
   abstract getAllFromApiForOrganization(organizationId: string): Promise<CipherView[]>;
   /**
    * Gets ciphers belonging to the specified organization that the user has explicit collection level access to.
@@ -198,9 +201,9 @@ export abstract class CipherService implements UserKeyRotationDataProvider<Ciphe
     userId: UserId,
     admin: boolean,
   ): Promise<CipherData>;
-  abstract sortCiphersByLastUsed(a: CipherView, b: CipherView): number;
-  abstract sortCiphersByLastUsedThenName(a: CipherView, b: CipherView): number;
-  abstract getLocaleSortingFunction(): (a: CipherView, b: CipherView) => number;
+  abstract sortCiphersByLastUsed(a: CipherViewLike, b: CipherViewLike): number;
+  abstract sortCiphersByLastUsedThenName(a: CipherViewLike, b: CipherViewLike): number;
+  abstract getLocaleSortingFunction(): (a: CipherViewLike, b: CipherViewLike) => number;
   abstract softDelete(id: string | string[], userId: UserId): Promise<any>;
   abstract softDeleteWithServer(id: string, userId: UserId, asAdmin?: boolean): Promise<any>;
   abstract softDeleteManyWithServer(ids: string[], userId: UserId, asAdmin?: boolean): Promise<any>;
@@ -251,4 +254,10 @@ export abstract class CipherService implements UserKeyRotationDataProvider<Ciphe
     response: Response,
     userId: UserId,
   ): Promise<Uint8Array | null>;
+
+  /**
+   * Decrypts the full `CipherView` for a given `CipherViewLike`.
+   * When a `CipherView` instance is passed, it returns it as is.
+   */
+  abstract getFullCipherView(c: CipherViewLike): Promise<CipherView>;
 }
diff --git a/libs/common/src/vault/abstractions/search.service.ts b/libs/common/src/vault/abstractions/search.service.ts
index c981aa748a4..ed8bb2c3baf 100644
--- a/libs/common/src/vault/abstractions/search.service.ts
+++ b/libs/common/src/vault/abstractions/search.service.ts
@@ -5,6 +5,7 @@ import { Observable } from "rxjs";
 import { SendView } from "../../tools/send/models/view/send.view";
 import { IndexedEntityId, UserId } from "../../types/guid";
 import { CipherView } from "../models/view/cipher.view";
+import { CipherViewLike } from "../utils/cipher-view-like-utils";
 
 export abstract class SearchService {
   indexedEntityId$: (userId: UserId) => Observable<IndexedEntityId | null>;
@@ -16,12 +17,16 @@ export abstract class SearchService {
     ciphersToIndex: CipherView[],
     indexedEntityGuid?: string,
   ) => Promise<void>;
-  searchCiphers: (
+  searchCiphers: <C extends CipherViewLike>(
     userId: UserId,
     query: string,
-    filter?: ((cipher: CipherView) => boolean) | ((cipher: CipherView) => boolean)[],
-    ciphers?: CipherView[],
-  ) => Promise<CipherView[]>;
-  searchCiphersBasic: (ciphers: CipherView[], query: string, deleted?: boolean) => CipherView[];
+    filter?: ((cipher: C) => boolean) | ((cipher: C) => boolean)[],
+    ciphers?: C[],
+  ) => Promise<C[]>;
+  searchCiphersBasic: <C extends CipherViewLike>(
+    ciphers: C[],
+    query: string,
+    deleted?: boolean,
+  ) => C[];
   searchSends: (sends: SendView[], query: string) => SendView[];
 }
diff --git a/libs/common/src/vault/icon/build-cipher-icon.ts b/libs/common/src/vault/icon/build-cipher-icon.ts
index b7456e1ae96..a081511d792 100644
--- a/libs/common/src/vault/icon/build-cipher-icon.ts
+++ b/libs/common/src/vault/icon/build-cipher-icon.ts
@@ -1,6 +1,6 @@
 import { Utils } from "../../platform/misc/utils";
 import { CipherType } from "../enums/cipher-type";
-import { CipherView } from "../models/view/cipher.view";
+import { CipherViewLike, CipherViewLikeUtils } from "../utils/cipher-view-like-utils";
 
 export interface CipherIconDetails {
   imageEnabled: boolean;
@@ -14,7 +14,7 @@ export interface CipherIconDetails {
 
 export function buildCipherIcon(
   iconsServerUrl: string | null,
-  cipher: CipherView,
+  cipher: CipherViewLike,
   showFavicon: boolean,
 ): CipherIconDetails {
   let icon: string = "bwi-globe";
@@ -36,12 +36,16 @@ export function buildCipherIcon(
     showFavicon = false;
   }
 
-  switch (cipher.type) {
+  const cipherType = CipherViewLikeUtils.getType(cipher);
+  const uri = CipherViewLikeUtils.uri(cipher);
+  const card = CipherViewLikeUtils.getCard(cipher);
+
+  switch (cipherType) {
     case CipherType.Login:
       icon = "bwi-globe";
 
-      if (cipher.login.uri) {
-        let hostnameUri = cipher.login.uri;
+      if (uri) {
+        let hostnameUri = uri;
         let isWebsite = false;
 
         if (hostnameUri.indexOf("androidapp://") === 0) {
@@ -84,8 +88,8 @@ export function buildCipherIcon(
       break;
     case CipherType.Card:
       icon = "bwi-credit-card";
-      if (showFavicon && cipher.card.brand in cardIcons) {
-        icon = `credit-card-icon ${cardIcons[cipher.card.brand]}`;
+      if (showFavicon && card?.brand && card.brand in cardIcons) {
+        icon = `credit-card-icon ${cardIcons[card.brand]}`;
       }
       break;
     case CipherType.Identity:
diff --git a/libs/common/src/vault/services/cipher-authorization.service.ts b/libs/common/src/vault/services/cipher-authorization.service.ts
index ab3676930b5..2933e94c302 100644
--- a/libs/common/src/vault/services/cipher-authorization.service.ts
+++ b/libs/common/src/vault/services/cipher-authorization.service.ts
@@ -8,13 +8,7 @@ import { AccountService } from "@bitwarden/common/auth/abstractions/account.serv
 import { CollectionId } from "@bitwarden/common/types/guid";
 
 import { getUserId } from "../../auth/services/account.service";
-import { Cipher } from "../models/domain/cipher";
-import { CipherView } from "../models/view/cipher.view";
-
-/**
- * Represents either a cipher or a cipher view.
- */
-type CipherLike = Cipher | CipherView;
+import { CipherLike } from "../types/cipher-like";
 
 /**
  * Service for managing user cipher authorization.
@@ -95,7 +89,7 @@ export class DefaultCipherAuthorizationService implements CipherAuthorizationSer
           }
         }
 
-        return cipher.permissions.delete;
+        return !!cipher.permissions?.delete;
       }),
     );
   }
@@ -118,7 +112,7 @@ export class DefaultCipherAuthorizationService implements CipherAuthorizationSer
           }
         }
 
-        return cipher.permissions.restore;
+        return !!cipher.permissions?.restore;
       }),
     );
   }
diff --git a/libs/common/src/vault/services/cipher.service.ts b/libs/common/src/vault/services/cipher.service.ts
index c967f2614c8..8bef5289a95 100644
--- a/libs/common/src/vault/services/cipher.service.ts
+++ b/libs/common/src/vault/services/cipher.service.ts
@@ -71,6 +71,7 @@ import { CipherView } from "../models/view/cipher.view";
 import { FieldView } from "../models/view/field.view";
 import { PasswordHistoryView } from "../models/view/password-history.view";
 import { AddEditCipherInfo } from "../types/add-edit-cipher-info";
+import { CipherViewLike, CipherViewLikeUtils } from "../utils/cipher-view-like-utils";
 
 import {
   ADD_EDIT_CIPHER_INFO_KEY,
@@ -123,6 +124,43 @@ export class CipherService implements CipherServiceAbstraction {
     return this.encryptedCiphersState(userId).state$.pipe(map((ciphers) => ciphers ?? {}));
   }
 
+  /**
+   * Observable that emits an array of decrypted ciphers for given userId.
+   * This observable will not emit until the encrypted ciphers have either been loaded from state or after sync.
+   *
+   * This uses the SDK for decryption, when the `PM22134SdkCipherListView` feature flag is disabled the full `cipherViews$` observable will be emitted.
+   * Usage of the {@link CipherViewLike} type is recommended to ensure both `CipherView` and `CipherListView` are supported.
+   */
+  cipherListViews$ = perUserCache$((userId: UserId) => {
+    return this.configService.getFeatureFlag$(FeatureFlag.PM22134SdkCipherListView).pipe(
+      switchMap((useSdk) => {
+        if (!useSdk) {
+          return this.cipherViews$(userId);
+        }
+
+        return combineLatest([
+          this.encryptedCiphersState(userId).state$,
+          this.localData$(userId),
+          this.keyService.cipherDecryptionKeys$(userId, true),
+        ]).pipe(
+          filter(([cipherDataState, _, keys]) => cipherDataState != null && keys != null),
+          map(([cipherDataState, localData]) =>
+            Object.values(cipherDataState).map(
+              (cipherData) => new Cipher(cipherData, localData?.[cipherData.id as CipherId]),
+            ),
+          ),
+          switchMap(async (ciphers) => {
+            // TODO: remove this once failed decrypted ciphers are handled in the SDK
+            await this.setFailedDecryptedCiphers([], userId);
+            return this.cipherEncryptionService
+              .decryptMany(ciphers, userId)
+              .then((ciphers) => ciphers.sort(this.getLocaleSortingFunction()));
+          }),
+        );
+      }),
+    );
+  });
+
   /**
    * Observable that emits an array of decrypted ciphers for the active user.
    * This observable will not emit until the encrypted ciphers have either been loaded from state or after sync.
@@ -543,18 +581,23 @@ export class CipherService implements CipherServiceAbstraction {
         filter((c) => c != null),
         switchMap(
           async (ciphers) =>
-            await this.filterCiphersForUrl(ciphers, url, includeOtherTypes, defaultMatch),
+            await this.filterCiphersForUrl<CipherView>(
+              ciphers,
+              url,
+              includeOtherTypes,
+              defaultMatch,
+            ),
         ),
       ),
     );
   }
 
-  async filterCiphersForUrl(
-    ciphers: CipherView[],
+  async filterCiphersForUrl<C extends CipherViewLike>(
+    ciphers: C[],
     url: string,
     includeOtherTypes?: CipherType[],
     defaultMatch: UriMatchStrategySetting = null,
-  ): Promise<CipherView[]> {
+  ): Promise<C[]> {
     if (url == null && includeOtherTypes == null) {
       return [];
     }
@@ -565,22 +608,20 @@ export class CipherService implements CipherServiceAbstraction {
     defaultMatch ??= await firstValueFrom(this.domainSettingsService.defaultUriMatchStrategy$);
 
     return ciphers.filter((cipher) => {
-      const cipherIsLogin = cipher.type === CipherType.Login && cipher.login !== null;
+      const type = CipherViewLikeUtils.getType(cipher);
+      const login = CipherViewLikeUtils.getLogin(cipher);
+      const cipherIsLogin = login !== null;
 
-      if (cipher.deletedDate !== null) {
+      if (CipherViewLikeUtils.isDeleted(cipher)) {
         return false;
       }
 
-      if (
-        Array.isArray(includeOtherTypes) &&
-        includeOtherTypes.includes(cipher.type) &&
-        !cipherIsLogin
-      ) {
+      if (Array.isArray(includeOtherTypes) && includeOtherTypes.includes(type) && !cipherIsLogin) {
         return true;
       }
 
       if (cipherIsLogin) {
-        return cipher.login.matchesUri(url, equivalentDomains, defaultMatch);
+        return CipherViewLikeUtils.matchesUri(cipher, url, equivalentDomains, defaultMatch);
       }
 
       return false;
@@ -1173,7 +1214,7 @@ export class CipherService implements CipherServiceAbstraction {
     return await this.deleteAttachment(id, cipherData.revisionDate, attachmentId, userId);
   }
 
-  sortCiphersByLastUsed(a: CipherView, b: CipherView): number {
+  sortCiphersByLastUsed(a: CipherViewLike, b: CipherViewLike): number {
     const aLastUsed =
       a.localData && a.localData.lastUsedDate ? (a.localData.lastUsedDate as number) : null;
     const bLastUsed =
@@ -1197,7 +1238,7 @@ export class CipherService implements CipherServiceAbstraction {
     return 0;
   }
 
-  sortCiphersByLastUsedThenName(a: CipherView, b: CipherView): number {
+  sortCiphersByLastUsedThenName(a: CipherViewLike, b: CipherViewLike): number {
     const result = this.sortCiphersByLastUsed(a, b);
     if (result !== 0) {
       return result;
@@ -1206,7 +1247,7 @@ export class CipherService implements CipherServiceAbstraction {
     return this.getLocaleSortingFunction()(a, b);
   }
 
-  getLocaleSortingFunction(): (a: CipherView, b: CipherView) => number {
+  getLocaleSortingFunction(): (a: CipherViewLike, b: CipherViewLike) => number {
     return (a, b) => {
       let aName = a.name;
       let bName = b.name;
@@ -1225,16 +1266,22 @@ export class CipherService implements CipherServiceAbstraction {
         ? this.i18nService.collator.compare(aName, bName)
         : aName.localeCompare(bName);
 
-      if (result !== 0 || a.type !== CipherType.Login || b.type !== CipherType.Login) {
+      const aType = CipherViewLikeUtils.getType(a);
+      const bType = CipherViewLikeUtils.getType(b);
+
+      if (result !== 0 || aType !== CipherType.Login || bType !== CipherType.Login) {
         return result;
       }
 
-      if (a.login.username != null) {
-        aName += a.login.username;
+      const aLogin = CipherViewLikeUtils.getLogin(a);
+      const bLogin = CipherViewLikeUtils.getLogin(b);
+
+      if (aLogin.username != null) {
+        aName += aLogin.username;
       }
 
-      if (b.login.username != null) {
-        bName += b.login.username;
+      if (bLogin.username != null) {
+        bName += bLogin.username;
       }
 
       return this.i18nService.collator
@@ -1902,4 +1949,17 @@ export class CipherService implements CipherServiceAbstraction {
 
     return decryptedViews.sort(this.getLocaleSortingFunction());
   }
+
+  /** Fetches the full `CipherView` when a `CipherListView` is passed. */
+  async getFullCipherView(c: CipherViewLike): Promise<CipherView> {
+    if (CipherViewLikeUtils.isCipherListView(c)) {
+      const activeUserId = await firstValueFrom(
+        this.accountService.activeAccount$.pipe(map((a) => a?.id)),
+      );
+      const cipher = await this.get(c.id!, activeUserId);
+      return this.decrypt(cipher, activeUserId);
+    }
+
+    return Promise.resolve(c);
+  }
 }
diff --git a/libs/common/src/vault/services/restricted-item-types.service.ts b/libs/common/src/vault/services/restricted-item-types.service.ts
index 6b848e6626b..8ccc94d365c 100644
--- a/libs/common/src/vault/services/restricted-item-types.service.ts
+++ b/libs/common/src/vault/services/restricted-item-types.service.ts
@@ -9,17 +9,15 @@ import { getUserId } from "@bitwarden/common/auth/services/account.service";
 import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
 import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { CipherType } from "@bitwarden/common/vault/enums";
-import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
 
-import { Cipher } from "../models/domain/cipher";
+import { CipherLike } from "../types/cipher-like";
+import { CipherViewLikeUtils } from "../utils/cipher-view-like-utils";
 
 export type RestrictedCipherType = {
   cipherType: CipherType;
   allowViewOrgIds: string[];
 };
 
-type CipherLike = Cipher | CipherView;
-
 export class RestrictedItemTypesService {
   /**
    * Emits an array of RestrictedCipherType objects:
@@ -94,7 +92,9 @@ export class RestrictedItemTypesService {
    * - Otherwise → restricted
    */
   isCipherRestricted(cipher: CipherLike, restrictedTypes: RestrictedCipherType[]): boolean {
-    const restriction = restrictedTypes.find((r) => r.cipherType === cipher.type);
+    const restriction = restrictedTypes.find(
+      (r) => r.cipherType === CipherViewLikeUtils.getType(cipher),
+    );
 
     // If cipher type is not restricted by any organization, allow it
     if (!restriction) {
diff --git a/libs/common/src/vault/services/search.service.ts b/libs/common/src/vault/services/search.service.ts
index 8e54fa695bd..614fba4a7ca 100644
--- a/libs/common/src/vault/services/search.service.ts
+++ b/libs/common/src/vault/services/search.service.ts
@@ -19,6 +19,7 @@ import { SearchService as SearchServiceAbstraction } from "../abstractions/searc
 import { FieldType } from "../enums";
 import { CipherType } from "../enums/cipher-type";
 import { CipherView } from "../models/view/cipher.view";
+import { CipherViewLike, CipherViewLikeUtils } from "../utils/cipher-view-like-utils";
 
 export type SerializedLunrIndex = {
   version: string;
@@ -197,13 +198,13 @@ export class SearchService implements SearchServiceAbstraction {
     ]);
   }
 
-  async searchCiphers(
+  async searchCiphers<C extends CipherViewLike>(
     userId: UserId,
     query: string,
-    filter: ((cipher: CipherView) => boolean) | ((cipher: CipherView) => boolean)[] = null,
-    ciphers: CipherView[],
-  ): Promise<CipherView[]> {
-    const results: CipherView[] = [];
+    filter: ((cipher: C) => boolean) | ((cipher: C) => boolean)[] = null,
+    ciphers: C[],
+  ): Promise<C[]> {
+    const results: C[] = [];
     if (query != null) {
       query = SearchService.normalizeSearchQuery(query.trim().toLowerCase());
     }
@@ -218,7 +219,7 @@ export class SearchService implements SearchServiceAbstraction {
     if (filter != null && Array.isArray(filter) && filter.length > 0) {
       ciphers = ciphers.filter((c) => filter.every((f) => f == null || f(c)));
     } else if (filter != null) {
-      ciphers = ciphers.filter(filter as (cipher: CipherView) => boolean);
+      ciphers = ciphers.filter(filter as (cipher: C) => boolean);
     }
 
     if (!(await this.isSearchable(userId, query))) {
@@ -238,7 +239,7 @@ export class SearchService implements SearchServiceAbstraction {
       return this.searchCiphersBasic(ciphers, query);
     }
 
-    const ciphersMap = new Map<string, CipherView>();
+    const ciphersMap = new Map<string, C>();
     ciphers.forEach((c) => ciphersMap.set(c.id, c));
 
     let searchResults: lunr.Index.Result[] = null;
@@ -272,10 +273,10 @@ export class SearchService implements SearchServiceAbstraction {
     return results;
   }
 
-  searchCiphersBasic(ciphers: CipherView[], query: string, deleted = false) {
+  searchCiphersBasic<C extends CipherViewLike>(ciphers: C[], query: string, deleted = false) {
     query = SearchService.normalizeSearchQuery(query.trim().toLowerCase());
     return ciphers.filter((c) => {
-      if (deleted !== c.isDeleted) {
+      if (deleted !== CipherViewLikeUtils.isDeleted(c)) {
         return false;
       }
       if (c.name != null && c.name.toLowerCase().indexOf(query) > -1) {
@@ -284,13 +285,17 @@ export class SearchService implements SearchServiceAbstraction {
       if (query.length >= 8 && c.id.startsWith(query)) {
         return true;
       }
-      if (c.subTitle != null && c.subTitle.toLowerCase().indexOf(query) > -1) {
+      const subtitle = CipherViewLikeUtils.subtitle(c);
+      if (subtitle != null && subtitle.toLowerCase().indexOf(query) > -1) {
         return true;
       }
+
+      const login = CipherViewLikeUtils.getLogin(c);
+
       if (
-        c.login &&
-        c.login.hasUris &&
-        c.login.uris.some((loginUri) => loginUri?.uri?.toLowerCase().indexOf(query) > -1)
+        login &&
+        login.uris.length &&
+        login.uris.some((loginUri) => loginUri?.uri?.toLowerCase().indexOf(query) > -1)
       ) {
         return true;
       }
diff --git a/libs/common/src/vault/types/cipher-like.ts b/libs/common/src/vault/types/cipher-like.ts
new file mode 100644
index 00000000000..61fb4ef86a5
--- /dev/null
+++ b/libs/common/src/vault/types/cipher-like.ts
@@ -0,0 +1,9 @@
+import { Cipher } from "../models/domain/cipher";
+import { CipherViewLike } from "../utils/cipher-view-like-utils";
+
+/**
+ * Represents either a Cipher, CipherView or CipherListView.
+ *
+ * {@link CipherViewLikeUtils} provides logic to perform operations on each type.
+ */
+export type CipherLike = Cipher | CipherViewLike;
diff --git a/libs/common/src/vault/utils/cipher-view-like-utils.spec.ts b/libs/common/src/vault/utils/cipher-view-like-utils.spec.ts
new file mode 100644
index 00000000000..f302340ef9e
--- /dev/null
+++ b/libs/common/src/vault/utils/cipher-view-like-utils.spec.ts
@@ -0,0 +1,624 @@
+import { CipherListView } from "@bitwarden/sdk-internal";
+
+import { CipherType } from "../enums";
+import { Attachment } from "../models/domain/attachment";
+import { AttachmentView } from "../models/view/attachment.view";
+import { CipherView } from "../models/view/cipher.view";
+import { Fido2CredentialView } from "../models/view/fido2-credential.view";
+import { IdentityView } from "../models/view/identity.view";
+import { LoginUriView } from "../models/view/login-uri.view";
+import { LoginView } from "../models/view/login.view";
+
+import { CipherViewLikeUtils } from "./cipher-view-like-utils";
+
+describe("CipherViewLikeUtils", () => {
+  const createCipherView = (type: CipherType = CipherType.Login): CipherView => {
+    const cipherView = new CipherView();
+    // Always set a type to avoid issues within `CipherViewLikeUtils`
+    cipherView.type = type;
+
+    return cipherView;
+  };
+
+  describe("isCipherListView", () => {
+    it("returns true when the cipher is a CipherListView", () => {
+      const cipherListViewLogin = {
+        type: {
+          login: {},
+        },
+      } as CipherListView;
+      const cipherListViewSshKey = {
+        type: "sshKey",
+      } as CipherListView;
+
+      expect(CipherViewLikeUtils.isCipherListView(cipherListViewLogin)).toBe(true);
+      expect(CipherViewLikeUtils.isCipherListView(cipherListViewSshKey)).toBe(true);
+    });
+
+    it("returns false when the cipher is not a CipherListView", () => {
+      const cipherView = createCipherView();
+      cipherView.type = CipherType.SecureNote;
+
+      expect(CipherViewLikeUtils.isCipherListView(cipherView)).toBe(false);
+    });
+  });
+
+  describe("getLogin", () => {
+    it("returns null when the cipher is not a login", () => {
+      const cipherView = createCipherView(CipherType.SecureNote);
+
+      expect(CipherViewLikeUtils.getLogin(cipherView)).toBeNull();
+      expect(CipherViewLikeUtils.getLogin({ type: "identity" } as CipherListView)).toBeNull();
+    });
+
+    describe("CipherView", () => {
+      it("returns the login object", () => {
+        const cipherView = createCipherView(CipherType.Login);
+
+        expect(CipherViewLikeUtils.getLogin(cipherView)).toEqual(cipherView.login);
+      });
+    });
+
+    describe("CipherListView", () => {
+      it("returns the login object", () => {
+        const cipherListView = {
+          type: {
+            login: {
+              username: "testuser",
+              hasFido2: false,
+            },
+          },
+        } as CipherListView;
+
+        expect(CipherViewLikeUtils.getLogin(cipherListView)).toEqual(
+          (cipherListView.type as any).login,
+        );
+      });
+    });
+  });
+
+  describe("getCard", () => {
+    it("returns null when the cipher is not a card", () => {
+      const cipherView = createCipherView(CipherType.SecureNote);
+
+      expect(CipherViewLikeUtils.getCard(cipherView)).toBeNull();
+      expect(CipherViewLikeUtils.getCard({ type: "identity" } as CipherListView)).toBeNull();
+    });
+
+    describe("CipherView", () => {
+      it("returns the card object", () => {
+        const cipherView = createCipherView(CipherType.Card);
+
+        expect(CipherViewLikeUtils.getCard(cipherView)).toEqual(cipherView.card);
+      });
+    });
+
+    describe("CipherListView", () => {
+      it("returns the card object", () => {
+        const cipherListView = {
+          type: {
+            card: {
+              brand: "Visa",
+            },
+          },
+        } as CipherListView;
+
+        expect(CipherViewLikeUtils.getCard(cipherListView)).toEqual(
+          (cipherListView.type as any).card,
+        );
+      });
+    });
+  });
+
+  describe("isDeleted", () => {
+    it("returns true when the cipher is deleted", () => {
+      const cipherListView = { deletedDate: "2024-02-02", type: "identity" } as CipherListView;
+      const cipherView = createCipherView();
+      cipherView.deletedDate = new Date();
+
+      expect(CipherViewLikeUtils.isDeleted(cipherListView)).toBe(true);
+      expect(CipherViewLikeUtils.isDeleted(cipherView)).toBe(true);
+    });
+
+    it("returns false when the cipher is not deleted", () => {
+      const cipherListView = { deletedDate: undefined, type: "identity" } as CipherListView;
+      const cipherView = createCipherView();
+
+      expect(CipherViewLikeUtils.isDeleted(cipherListView)).toBe(false);
+      expect(CipherViewLikeUtils.isDeleted(cipherView)).toBe(false);
+    });
+  });
+
+  describe("canAssignToCollections", () => {
+    describe("CipherView", () => {
+      let cipherView: CipherView;
+
+      beforeEach(() => {
+        cipherView = createCipherView();
+      });
+
+      it("returns true when the cipher is not assigned to an organization", () => {
+        expect(CipherViewLikeUtils.canAssignToCollections(cipherView)).toBe(true);
+      });
+
+      it("returns false when the cipher is assigned to an organization and cannot be edited", () => {
+        cipherView.organizationId = "org-id";
+        cipherView.edit = false;
+        cipherView.viewPassword = false;
+
+        expect(CipherViewLikeUtils.canAssignToCollections(cipherView)).toBe(false);
+      });
+
+      it("returns true when the cipher is assigned to an organization and can be edited", () => {
+        cipherView.organizationId = "org-id";
+        cipherView.edit = true;
+        cipherView.viewPassword = true;
+
+        expect(CipherViewLikeUtils.canAssignToCollections(cipherView)).toBe(true);
+      });
+    });
+
+    describe("CipherListView", () => {
+      let cipherListView: CipherListView;
+
+      beforeEach(() => {
+        cipherListView = {
+          organizationId: undefined,
+          edit: false,
+          viewPassword: false,
+          type: { login: {} },
+        } as CipherListView;
+      });
+
+      it("returns true when the cipher is not assigned to an organization", () => {
+        expect(CipherViewLikeUtils.canAssignToCollections(cipherListView)).toBe(true);
+      });
+
+      it("returns false when the cipher is assigned to an organization and cannot be edited", () => {
+        cipherListView.organizationId = "org-id";
+
+        expect(CipherViewLikeUtils.canAssignToCollections(cipherListView)).toBe(false);
+      });
+
+      it("returns true when the cipher is assigned to an organization and can be edited", () => {
+        cipherListView.organizationId = "org-id";
+        cipherListView.edit = true;
+        cipherListView.viewPassword = true;
+
+        expect(CipherViewLikeUtils.canAssignToCollections(cipherListView)).toBe(true);
+      });
+    });
+  });
+
+  describe("getType", () => {
+    describe("CipherView", () => {
+      it("returns the type of the cipher", () => {
+        const cipherView = createCipherView();
+        cipherView.type = CipherType.Login;
+
+        expect(CipherViewLikeUtils.getType(cipherView)).toBe(CipherType.Login);
+
+        cipherView.type = CipherType.SecureNote;
+        expect(CipherViewLikeUtils.getType(cipherView)).toBe(CipherType.SecureNote);
+
+        cipherView.type = CipherType.SshKey;
+        expect(CipherViewLikeUtils.getType(cipherView)).toBe(CipherType.SshKey);
+
+        cipherView.type = CipherType.Identity;
+        expect(CipherViewLikeUtils.getType(cipherView)).toBe(CipherType.Identity);
+
+        cipherView.type = CipherType.Card;
+        expect(CipherViewLikeUtils.getType(cipherView)).toBe(CipherType.Card);
+      });
+    });
+
+    describe("CipherListView", () => {
+      it("converts the `CipherViewListType` to `CipherType`", () => {
+        const cipherListView = {
+          type: { login: {} },
+        } as CipherListView;
+
+        expect(CipherViewLikeUtils.getType(cipherListView)).toBe(CipherType.Login);
+
+        cipherListView.type = { card: { brand: "Visa" } };
+        expect(CipherViewLikeUtils.getType(cipherListView)).toBe(CipherType.Card);
+
+        cipherListView.type = "sshKey";
+        expect(CipherViewLikeUtils.getType(cipherListView)).toBe(CipherType.SshKey);
+
+        cipherListView.type = "identity";
+        expect(CipherViewLikeUtils.getType(cipherListView)).toBe(CipherType.Identity);
+
+        cipherListView.type = "secureNote";
+        expect(CipherViewLikeUtils.getType(cipherListView)).toBe(CipherType.SecureNote);
+      });
+    });
+  });
+
+  describe("subtitle", () => {
+    describe("CipherView", () => {
+      it("returns the subtitle of the cipher", () => {
+        const cipherView = createCipherView();
+        cipherView.login = new LoginView();
+        cipherView.login.username = "Test Username";
+
+        expect(CipherViewLikeUtils.subtitle(cipherView)).toBe("Test Username");
+      });
+    });
+
+    describe("CipherListView", () => {
+      it("returns the subtitle of the cipher", () => {
+        const cipherListView = {
+          subtitle: "Test Subtitle",
+          type: "identity",
+        } as CipherListView;
+
+        expect(CipherViewLikeUtils.subtitle(cipherListView)).toBe("Test Subtitle");
+      });
+    });
+  });
+
+  describe("hasAttachments", () => {
+    describe("CipherView", () => {
+      it("returns true when the cipher has attachments", () => {
+        const cipherView = createCipherView();
+        cipherView.attachments = [new AttachmentView({ id: "1" } as Attachment)];
+
+        expect(CipherViewLikeUtils.hasAttachments(cipherView)).toBe(true);
+      });
+
+      it("returns false when the cipher has no attachments", () => {
+        const cipherView = new CipherView();
+        (cipherView.attachments as any) = null;
+
+        expect(CipherViewLikeUtils.hasAttachments(cipherView)).toBe(false);
+      });
+    });
+
+    describe("CipherListView", () => {
+      it("returns true when there are attachments", () => {
+        const cipherListView = { attachments: 1, type: "secureNote" } as CipherListView;
+
+        expect(CipherViewLikeUtils.hasAttachments(cipherListView)).toBe(true);
+      });
+
+      it("returns false when there are no attachments", () => {
+        const cipherListView = { attachments: 0, type: "secureNote" } as CipherListView;
+
+        expect(CipherViewLikeUtils.hasAttachments(cipherListView)).toBe(false);
+      });
+    });
+  });
+
+  describe("canLaunch", () => {
+    it("returns false when the cipher is not a login", () => {
+      const cipherView = createCipherView(CipherType.SecureNote);
+
+      expect(CipherViewLikeUtils.canLaunch(cipherView)).toBe(false);
+      expect(CipherViewLikeUtils.canLaunch({ type: "identity" } as CipherListView)).toBe(false);
+    });
+
+    describe("CipherView", () => {
+      it("returns true when the login has URIs that can be launched", () => {
+        const cipherView = createCipherView(CipherType.Login);
+        cipherView.login = new LoginView();
+        cipherView.login.uris = [{ uri: "https://example.com" } as LoginUriView];
+
+        expect(CipherViewLikeUtils.canLaunch(cipherView)).toBe(true);
+      });
+
+      it("returns true when the uri does not have a protocol", () => {
+        const cipherView = createCipherView(CipherType.Login);
+        cipherView.login = new LoginView();
+        const uriView = new LoginUriView();
+        uriView.uri = "bitwarden.com";
+        cipherView.login.uris = [uriView];
+
+        expect(CipherViewLikeUtils.canLaunch(cipherView)).toBe(true);
+      });
+
+      it("returns false when the login has no URIs", () => {
+        const cipherView = createCipherView(CipherType.Login);
+        cipherView.login = new LoginView();
+
+        expect(CipherViewLikeUtils.canLaunch(cipherView)).toBe(false);
+      });
+    });
+
+    describe("CipherListView", () => {
+      it("returns true when the login has URIs that can be launched", () => {
+        const cipherListView = {
+          type: { login: { uris: [{ uri: "https://example.com" }] } },
+        } as CipherListView;
+
+        expect(CipherViewLikeUtils.canLaunch(cipherListView)).toBe(true);
+      });
+
+      it("returns true when the uri does not have a protocol", () => {
+        const cipherListView = {
+          type: { login: { uris: [{ uri: "bitwarden.com" }] } },
+        } as CipherListView;
+
+        expect(CipherViewLikeUtils.canLaunch(cipherListView)).toBe(true);
+      });
+
+      it("returns false when the login has no URIs", () => {
+        const cipherListView = { type: { login: {} } } as CipherListView;
+
+        expect(CipherViewLikeUtils.canLaunch(cipherListView)).toBe(false);
+      });
+    });
+  });
+
+  describe("getLaunchUri", () => {
+    it("returns undefined when the cipher is not a login", () => {
+      const cipherView = createCipherView(CipherType.SecureNote);
+
+      expect(CipherViewLikeUtils.getLaunchUri(cipherView)).toBeUndefined();
+      expect(
+        CipherViewLikeUtils.getLaunchUri({ type: "identity" } as CipherListView),
+      ).toBeUndefined();
+    });
+
+    describe("CipherView", () => {
+      it("returns the first launch-able URI", () => {
+        const cipherView = createCipherView(CipherType.Login);
+        cipherView.login = new LoginView();
+        cipherView.login.uris = [
+          { uri: "" } as LoginUriView,
+          { uri: "https://example.com" } as LoginUriView,
+          { uri: "https://another.com" } as LoginUriView,
+        ];
+
+        expect(CipherViewLikeUtils.getLaunchUri(cipherView)).toBe("https://example.com");
+      });
+
+      it("returns undefined when there are no URIs", () => {
+        const cipherView = createCipherView(CipherType.Login);
+        cipherView.login = new LoginView();
+
+        expect(CipherViewLikeUtils.getLaunchUri(cipherView)).toBeUndefined();
+      });
+
+      it("appends protocol when there are none", () => {
+        const cipherView = createCipherView(CipherType.Login);
+        cipherView.login = new LoginView();
+        const uriView = new LoginUriView();
+        uriView.uri = "bitwarden.com";
+        cipherView.login.uris = [uriView];
+
+        expect(CipherViewLikeUtils.getLaunchUri(cipherView)).toBe("http://bitwarden.com");
+      });
+    });
+
+    describe("CipherListView", () => {
+      it("returns the first launch-able URI", () => {
+        const cipherListView = {
+          type: { login: { uris: [{ uri: "" }, { uri: "https://example.com" }] } },
+        } as CipherListView;
+
+        expect(CipherViewLikeUtils.getLaunchUri(cipherListView)).toBe("https://example.com");
+      });
+
+      it("returns undefined when there are no URIs", () => {
+        const cipherListView = { type: { login: {} } } as CipherListView;
+
+        expect(CipherViewLikeUtils.getLaunchUri(cipherListView)).toBeUndefined();
+      });
+    });
+  });
+
+  describe("matchesUri", () => {
+    const emptySet = new Set<string>();
+
+    it("returns false when the cipher is not a login", () => {
+      const cipherView = createCipherView(CipherType.SecureNote);
+
+      expect(CipherViewLikeUtils.matchesUri(cipherView, "https://example.com", emptySet)).toBe(
+        false,
+      );
+    });
+
+    describe("CipherView", () => {
+      it("returns true when the URI matches", () => {
+        const cipherView = createCipherView(CipherType.Login);
+        cipherView.login = new LoginView();
+        const uri = new LoginUriView();
+        uri.uri = "https://example.com";
+        cipherView.login.uris = [uri];
+
+        expect(CipherViewLikeUtils.matchesUri(cipherView, "https://example.com", emptySet)).toBe(
+          true,
+        );
+      });
+
+      it("returns false when the URI does not match", () => {
+        const cipherView = createCipherView(CipherType.Login);
+        cipherView.login = new LoginView();
+        const uri = new LoginUriView();
+        uri.uri = "https://www.bitwarden.com";
+        cipherView.login.uris = [uri];
+
+        expect(
+          CipherViewLikeUtils.matchesUri(cipherView, "https://www.another.com", emptySet),
+        ).toBe(false);
+      });
+    });
+
+    describe("CipherListView", () => {
+      it("returns true when the URI matches", () => {
+        const cipherListView = {
+          type: { login: { uris: [{ uri: "https://example.com" }] } },
+        } as CipherListView;
+
+        expect(
+          CipherViewLikeUtils.matchesUri(cipherListView, "https://example.com", emptySet),
+        ).toBe(true);
+      });
+
+      it("returns false when the URI does not match", () => {
+        const cipherListView = {
+          type: { login: { uris: [{ uri: "https://bitwarden.com" }] } },
+        } as CipherListView;
+
+        expect(
+          CipherViewLikeUtils.matchesUri(cipherListView, "https://another.com", emptySet),
+        ).toBe(false);
+      });
+    });
+  });
+
+  describe("hasCopyableValue", () => {
+    describe("CipherView", () => {
+      it("returns true for login fields", () => {
+        const cipherView = createCipherView(CipherType.Login);
+        cipherView.login = new LoginView();
+        cipherView.login.username = "testuser";
+        cipherView.login.password = "testpass";
+
+        expect(CipherViewLikeUtils.hasCopyableValue(cipherView, "username")).toBe(true);
+        expect(CipherViewLikeUtils.hasCopyableValue(cipherView, "password")).toBe(true);
+      });
+
+      it("returns true for card fields", () => {
+        const cipherView = createCipherView(CipherType.Card);
+        cipherView.card = { number: "1234-5678-9012-3456", code: "123" } as any;
+
+        expect(CipherViewLikeUtils.hasCopyableValue(cipherView, "cardNumber")).toBe(true);
+        expect(CipherViewLikeUtils.hasCopyableValue(cipherView, "securityCode")).toBe(true);
+      });
+
+      it("returns true for identity fields", () => {
+        const cipherView = createCipherView(CipherType.Identity);
+        cipherView.identity = new IdentityView();
+        cipherView.identity.email = "example@bitwarden.com";
+        cipherView.identity.phone = "123-456-7890";
+
+        expect(CipherViewLikeUtils.hasCopyableValue(cipherView, "email")).toBe(true);
+        expect(CipherViewLikeUtils.hasCopyableValue(cipherView, "phone")).toBe(true);
+      });
+
+      it("returns false when values are not populated", () => {
+        const cipherView = createCipherView(CipherType.Login);
+
+        expect(CipherViewLikeUtils.hasCopyableValue(cipherView, "email")).toBe(false);
+        expect(CipherViewLikeUtils.hasCopyableValue(cipherView, "password")).toBe(false);
+        expect(CipherViewLikeUtils.hasCopyableValue(cipherView, "securityCode")).toBe(false);
+        expect(CipherViewLikeUtils.hasCopyableValue(cipherView, "username")).toBe(false);
+      });
+    });
+
+    describe("CipherListView", () => {
+      it("returns true for copyable fields in a login cipher", () => {
+        const cipherListView = {
+          type: { login: { username: "testuser" } },
+          copyableFields: ["LoginUsername", "LoginPassword"],
+        } as CipherListView;
+
+        expect(CipherViewLikeUtils.hasCopyableValue(cipherListView, "username")).toBe(true);
+        expect(CipherViewLikeUtils.hasCopyableValue(cipherListView, "password")).toBe(true);
+      });
+
+      it("returns true for copyable fields in a card cipher", () => {
+        const cipherListView = {
+          type: { card: { brand: "MasterCard" } },
+          copyableFields: ["CardNumber", "CardSecurityCode"],
+        } as CipherListView;
+
+        expect(CipherViewLikeUtils.hasCopyableValue(cipherListView, "cardNumber")).toBe(true);
+        expect(CipherViewLikeUtils.hasCopyableValue(cipherListView, "securityCode")).toBe(true);
+      });
+
+      it("returns true for copyable fields in an sshKey ciphers", () => {
+        const cipherListView = {
+          type: "sshKey",
+          copyableFields: ["SshKey"],
+        } as CipherListView;
+
+        expect(CipherViewLikeUtils.hasCopyableValue(cipherListView, "privateKey")).toBe(true);
+        expect(CipherViewLikeUtils.hasCopyableValue(cipherListView, "publicKey")).toBe(true);
+        expect(CipherViewLikeUtils.hasCopyableValue(cipherListView, "keyFingerprint")).toBe(true);
+      });
+
+      it("returns true for copyable fields in an identity cipher", () => {
+        const cipherListView = {
+          type: "identity",
+          copyableFields: ["IdentityUsername", "IdentityEmail", "IdentityPhone"],
+        } as CipherListView;
+
+        expect(CipherViewLikeUtils.hasCopyableValue(cipherListView, "username")).toBe(true);
+        expect(CipherViewLikeUtils.hasCopyableValue(cipherListView, "email")).toBe(true);
+        expect(CipherViewLikeUtils.hasCopyableValue(cipherListView, "phone")).toBe(true);
+      });
+
+      it("returns false for when missing a field", () => {
+        const cipherListView = {
+          type: { login: {} },
+          copyableFields: ["LoginUsername"],
+        } as CipherListView;
+
+        expect(CipherViewLikeUtils.hasCopyableValue(cipherListView, "password")).toBe(false);
+        expect(CipherViewLikeUtils.hasCopyableValue(cipherListView, "phone")).toBe(false);
+        expect(CipherViewLikeUtils.hasCopyableValue(cipherListView, "address")).toBe(false);
+        expect(CipherViewLikeUtils.hasCopyableValue(cipherListView, "publicKey")).toBe(false);
+      });
+    });
+  });
+
+  describe("hasFido2Credentials", () => {
+    describe("CipherView", () => {
+      it("returns true when the login has FIDO2 credentials", () => {
+        const cipherView = createCipherView(CipherType.Login);
+        cipherView.login = new LoginView();
+        cipherView.login.fido2Credentials = [new Fido2CredentialView()];
+
+        expect(CipherViewLikeUtils.hasFido2Credentials(cipherView)).toBe(true);
+      });
+
+      it("returns false when the login has no FIDO2 credentials", () => {
+        const cipherView = createCipherView(CipherType.Login);
+        cipherView.login = new LoginView();
+
+        expect(CipherViewLikeUtils.hasFido2Credentials(cipherView)).toBe(false);
+      });
+    });
+
+    describe("CipherListView", () => {
+      it("returns true when the login has FIDO2 credentials", () => {
+        const cipherListView = {
+          type: { login: { fido2Credentials: [{ credentialId: "fido2-1" }] } },
+        } as CipherListView;
+
+        expect(CipherViewLikeUtils.hasFido2Credentials(cipherListView)).toBe(true);
+      });
+
+      it("returns false when the login has no FIDO2 credentials", () => {
+        const cipherListView = { type: { login: {} } } as CipherListView;
+
+        expect(CipherViewLikeUtils.hasFido2Credentials(cipherListView)).toBe(false);
+      });
+    });
+  });
+
+  describe("decryptionFailure", () => {
+    it("returns true when the cipher has a decryption failure", () => {
+      const cipherView = createCipherView();
+      cipherView.decryptionFailure = true;
+
+      expect(CipherViewLikeUtils.decryptionFailure(cipherView)).toBe(true);
+    });
+
+    it("returns false when the cipher does not have a decryption failure", () => {
+      const cipherView = createCipherView();
+      cipherView.decryptionFailure = false;
+
+      expect(CipherViewLikeUtils.decryptionFailure(cipherView)).toBe(false);
+    });
+
+    it("returns false when the cipher is a CipherListView without decryptionFailure", () => {
+      const cipherListView = { type: "secureNote" } as CipherListView;
+
+      expect(CipherViewLikeUtils.decryptionFailure(cipherListView)).toBe(false);
+    });
+  });
+});
diff --git a/libs/common/src/vault/utils/cipher-view-like-utils.ts b/libs/common/src/vault/utils/cipher-view-like-utils.ts
new file mode 100644
index 00000000000..1c7a4382a04
--- /dev/null
+++ b/libs/common/src/vault/utils/cipher-view-like-utils.ts
@@ -0,0 +1,301 @@
+import {
+  UriMatchStrategy,
+  UriMatchStrategySetting,
+} from "@bitwarden/common/models/domain/domain-service";
+import {
+  CardListView,
+  CipherListView,
+  CopyableCipherFields,
+  LoginListView,
+  LoginUriView as LoginListUriView,
+} from "@bitwarden/sdk-internal";
+
+import { CipherType } from "../enums";
+import { Cipher } from "../models/domain/cipher";
+import { CardView } from "../models/view/card.view";
+import { CipherView } from "../models/view/cipher.view";
+import { LoginUriView } from "../models/view/login-uri.view";
+import { LoginView } from "../models/view/login.view";
+
+/**
+ * Type union of {@link CipherView} and {@link CipherListView}.
+ */
+export type CipherViewLike = CipherView | CipherListView;
+
+/**
+ * Utility class for working with ciphers that can be either a {@link CipherView} or a {@link CipherListView}.
+ */
+export class CipherViewLikeUtils {
+  /** @returns true when the given cipher is an instance of {@link CipherListView}. */
+  static isCipherListView = (cipher: CipherViewLike | Cipher): cipher is CipherListView => {
+    return typeof cipher.type === "object" || typeof cipher.type === "string";
+  };
+
+  /** @returns The login object from the input cipher. If the cipher is not of type Login, returns null. */
+  static getLogin = (cipher: CipherViewLike): LoginListView | LoginView | null => {
+    if (this.isCipherListView(cipher)) {
+      if (typeof cipher.type !== "object") {
+        return null;
+      }
+
+      return "login" in cipher.type ? cipher.type.login : null;
+    }
+
+    return cipher.type === CipherType.Login ? cipher.login : null;
+  };
+
+  /** @returns The first URI for a login cipher. If the cipher is not of type Login or has no associated URIs, returns null. */
+  static uri = (cipher: CipherViewLike) => {
+    const login = this.getLogin(cipher);
+    if (!login) {
+      return null;
+    }
+
+    if ("uri" in login) {
+      return login.uri;
+    }
+
+    return login.uris?.length ? login.uris[0].uri : null;
+  };
+
+  /** @returns The login object from the input cipher. If the cipher is not of type Login, returns null. */
+  static getCard = (cipher: CipherViewLike): CardListView | CardView | null => {
+    if (this.isCipherListView(cipher)) {
+      if (typeof cipher.type !== "object") {
+        return null;
+      }
+
+      return "card" in cipher.type ? cipher.type.card : null;
+    }
+
+    return cipher.type === CipherType.Card ? cipher.card : null;
+  };
+
+  /**  @returns `true` when the cipher has been deleted, `false` otherwise. */
+  static isDeleted = (cipher: CipherViewLike): boolean => {
+    if (this.isCipherListView(cipher)) {
+      return !!cipher.deletedDate;
+    }
+
+    return cipher.isDeleted;
+  };
+
+  /** @returns `true` when the user can assign the cipher to a collection, `false` otherwise. */
+  static canAssignToCollections = (cipher: CipherViewLike): boolean => {
+    if (this.isCipherListView(cipher)) {
+      if (!cipher.organizationId) {
+        return true;
+      }
+
+      return cipher.edit && cipher.viewPassword;
+    }
+
+    return cipher.canAssignToCollections;
+  };
+
+  /**
+   * Returns the type of the cipher.
+   * For consistency, when the given cipher is a {@link CipherListView} the {@link CipherType} equivalent will be returned.
+   */
+  static getType = (cipher: CipherViewLike | Cipher): CipherType => {
+    if (!this.isCipherListView(cipher)) {
+      return cipher.type;
+    }
+
+    // CipherListViewType is a string, so we need to map it to CipherType.
+    switch (true) {
+      case cipher.type === "secureNote":
+        return CipherType.SecureNote;
+      case cipher.type === "sshKey":
+        return CipherType.SshKey;
+      case cipher.type === "identity":
+        return CipherType.Identity;
+      case typeof cipher.type === "object" && "card" in cipher.type:
+        return CipherType.Card;
+      case typeof cipher.type === "object" && "login" in cipher.type:
+        return CipherType.Login;
+      default:
+        throw new Error(`Unknown cipher type: ${cipher.type}`);
+    }
+  };
+
+  /** @returns The subtitle of the cipher. */
+  static subtitle = (cipher: CipherViewLike): string | undefined => {
+    if (!this.isCipherListView(cipher)) {
+      return cipher.subTitle;
+    }
+
+    return cipher.subtitle;
+  };
+
+  /** @returns `true` when the cipher has attachments, false otherwise. */
+  static hasAttachments = (cipher: CipherViewLike): boolean => {
+    if (this.isCipherListView(cipher)) {
+      return typeof cipher.attachments === "number" && cipher.attachments > 0;
+    }
+
+    return cipher.hasAttachments;
+  };
+
+  /**
+   * @returns `true` when one of the URIs for the cipher can be launched.
+   * When a non-login cipher is passed, it will return false.
+   */
+  static canLaunch = (cipher: CipherViewLike): boolean => {
+    const login = this.getLogin(cipher);
+
+    if (!login) {
+      return false;
+    }
+
+    return !!login.uris?.map((u) => toLoginUriView(u)).some((uri) => uri.canLaunch);
+  };
+
+  /**
+   * @returns The first launch-able URI for the cipher.
+   * When a non-login cipher is passed or none of the URLs, it will return undefined.
+   */
+  static getLaunchUri = (cipher: CipherViewLike): string | undefined => {
+    const login = this.getLogin(cipher);
+
+    if (!login) {
+      return undefined;
+    }
+
+    return login.uris?.map((u) => toLoginUriView(u)).find((uri) => uri.canLaunch)?.launchUri;
+  };
+
+  /**
+   * @returns `true` when the `targetUri` matches for any URI on the cipher.
+   * Uses the existing logic from `LoginView.matchesUri` for both `CipherView` and `CipherListView`
+   */
+  static matchesUri = (
+    cipher: CipherViewLike,
+    targetUri: string,
+    equivalentDomains: Set<string>,
+    defaultUriMatch: UriMatchStrategySetting = UriMatchStrategy.Domain,
+  ): boolean => {
+    if (CipherViewLikeUtils.getType(cipher) !== CipherType.Login) {
+      return false;
+    }
+
+    if (!this.isCipherListView(cipher)) {
+      return cipher.login.matchesUri(targetUri, equivalentDomains, defaultUriMatch);
+    }
+
+    const login = this.getLogin(cipher);
+    if (!login?.uris?.length) {
+      return false;
+    }
+
+    const loginUriViews = login.uris
+      .filter((u) => !!u.uri)
+      .map((u) => {
+        const view = new LoginUriView();
+        view.match = u.match ?? defaultUriMatch;
+        view.uri = u.uri!; // above `filter` ensures `u.uri` is not null or undefined
+        return view;
+      });
+
+    return loginUriViews.some((uriView) =>
+      uriView.matchesUri(targetUri, equivalentDomains, defaultUriMatch),
+    );
+  };
+
+  /** @returns true when the `copyField` is populated on the given cipher. */
+  static hasCopyableValue = (cipher: CipherViewLike, copyField: string): boolean => {
+    // `CipherListView` instances do not contain the values to be copied, but rather a list of copyable fields.
+    // When the copy action is performed on a `CipherListView`, the full cipher will need to be decrypted.
+    if (this.isCipherListView(cipher)) {
+      let _copyField = copyField;
+
+      if (_copyField === "username" && this.getType(cipher) === CipherType.Login) {
+        _copyField = "usernameLogin";
+      } else if (_copyField === "username" && this.getType(cipher) === CipherType.Identity) {
+        _copyField = "usernameIdentity";
+      }
+
+      return cipher.copyableFields.includes(copyActionToCopyableFieldMap[_copyField]);
+    }
+
+    // When the full cipher is available, check the specific field
+    switch (copyField) {
+      case "username":
+        return !!cipher.login?.username || !!cipher.identity?.username;
+      case "password":
+        return !!cipher.login?.password;
+      case "totp":
+        return !!cipher.login?.totp;
+      case "cardNumber":
+        return !!cipher.card?.number;
+      case "securityCode":
+        return !!cipher.card?.code;
+      case "email":
+        return !!cipher.identity?.email;
+      case "phone":
+        return !!cipher.identity?.phone;
+      case "address":
+        return !!cipher.identity?.fullAddressForCopy;
+      case "secureNote":
+        return !!cipher.notes;
+      case "privateKey":
+        return !!cipher.sshKey?.privateKey;
+      case "publicKey":
+        return !!cipher.sshKey?.publicKey;
+      case "keyFingerprint":
+        return !!cipher.sshKey?.keyFingerprint;
+      default:
+        return false;
+    }
+  };
+
+  /** @returns true when the cipher has fido2 credentials */
+  static hasFido2Credentials = (cipher: CipherViewLike): boolean => {
+    const login = this.getLogin(cipher);
+
+    return !!login?.fido2Credentials?.length;
+  };
+
+  /**
+   * Returns the `decryptionFailure` property from the cipher when available.
+   * TODO: https://bitwarden.atlassian.net/browse/PM-22515 - alter for `CipherListView` if needed
+   */
+  static decryptionFailure = (cipher: CipherViewLike): boolean => {
+    return "decryptionFailure" in cipher ? cipher.decryptionFailure : false;
+  };
+}
+
+/**
+ * Mapping between the generic copy actions and the specific fields in a `CipherViewLike`.
+ */
+const copyActionToCopyableFieldMap: Record<string, CopyableCipherFields> = {
+  usernameLogin: "LoginUsername",
+  password: "LoginPassword",
+  totp: "LoginTotp",
+  cardNumber: "CardNumber",
+  securityCode: "CardSecurityCode",
+  usernameIdentity: "IdentityUsername",
+  email: "IdentityEmail",
+  phone: "IdentityPhone",
+  address: "IdentityAddress",
+  secureNote: "SecureNotes",
+  privateKey: "SshKey",
+  publicKey: "SshKey",
+  keyFingerprint: "SshKey",
+};
+
+/** Converts a `LoginListUriView` to a `LoginUriView`. */
+const toLoginUriView = (uri: LoginListUriView | LoginUriView): LoginUriView => {
+  if (uri instanceof LoginUriView) {
+    return uri;
+  }
+
+  const loginUriView = new LoginUriView();
+  if (uri.match) {
+    loginUriView.match = uri.match;
+  }
+  if (uri.uri) {
+    loginUriView.uri = uri.uri;
+  }
+  return loginUriView;
+};
diff --git a/libs/vault/src/components/copy-cipher-field.directive.spec.ts b/libs/vault/src/components/copy-cipher-field.directive.spec.ts
index 0847e7147a9..a3650c68c9b 100644
--- a/libs/vault/src/components/copy-cipher-field.directive.spec.ts
+++ b/libs/vault/src/components/copy-cipher-field.directive.spec.ts
@@ -1,3 +1,9 @@
+import { mock } from "jest-mock-extended";
+import { of } from "rxjs";
+
+import { Account, AccountService } from "@bitwarden/common/auth/abstractions/account.service";
+import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
+import { CipherType } from "@bitwarden/common/vault/enums";
 import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
 import { BitIconButtonComponent, MenuItemDirective } from "@bitwarden/components";
 import { CopyCipherFieldService } from "@bitwarden/vault";
@@ -9,23 +15,31 @@ describe("CopyCipherFieldDirective", () => {
     copy: jest.fn().mockResolvedValue(null),
     totpAllowed: jest.fn().mockResolvedValue(true),
   };
+  let mockAccountService: AccountService;
+  let mockCipherService: CipherService;
 
   let copyCipherFieldDirective: CopyCipherFieldDirective;
 
   beforeEach(() => {
     copyFieldService.copy.mockClear();
     copyFieldService.totpAllowed.mockClear();
+    mockAccountService = mock<AccountService>();
+    mockAccountService.activeAccount$ = of({ id: "test-account-id" } as Account);
+    mockCipherService = mock<CipherService>();
 
     copyCipherFieldDirective = new CopyCipherFieldDirective(
       copyFieldService as unknown as CopyCipherFieldService,
+      mockAccountService,
+      mockCipherService,
     );
     copyCipherFieldDirective.cipher = new CipherView();
+    copyCipherFieldDirective.cipher.type = CipherType.Login;
   });
 
   describe("disabled state", () => {
     it("should be enabled when the field is available", async () => {
       copyCipherFieldDirective.action = "username";
-      copyCipherFieldDirective.cipher.login.username = "test-username";
+      (copyCipherFieldDirective.cipher as CipherView).login.username = "test-username";
 
       await copyCipherFieldDirective.ngOnChanges();
 
@@ -35,6 +49,7 @@ describe("CopyCipherFieldDirective", () => {
     it("should be disabled when the field is not available", async () => {
       // create empty cipher
       copyCipherFieldDirective.cipher = new CipherView();
+      copyCipherFieldDirective.cipher.type = CipherType.Login;
 
       copyCipherFieldDirective.action = "username";
 
@@ -52,11 +67,15 @@ describe("CopyCipherFieldDirective", () => {
 
       copyCipherFieldDirective = new CopyCipherFieldDirective(
         copyFieldService as unknown as CopyCipherFieldService,
+        mockAccountService,
+        mockCipherService,
         undefined,
         iconButton as unknown as BitIconButtonComponent,
       );
 
       copyCipherFieldDirective.action = "password";
+      copyCipherFieldDirective.cipher = new CipherView();
+      copyCipherFieldDirective.cipher.type = CipherType.Login;
 
       await copyCipherFieldDirective.ngOnChanges();
 
@@ -70,6 +89,8 @@ describe("CopyCipherFieldDirective", () => {
 
       copyCipherFieldDirective = new CopyCipherFieldDirective(
         copyFieldService as unknown as CopyCipherFieldService,
+        mockAccountService,
+        mockCipherService,
         menuItemDirective as unknown as MenuItemDirective,
       );
 
@@ -83,9 +104,11 @@ describe("CopyCipherFieldDirective", () => {
 
   describe("login", () => {
     beforeEach(() => {
-      copyCipherFieldDirective.cipher.login.username = "test-username";
-      copyCipherFieldDirective.cipher.login.password = "test-password";
-      copyCipherFieldDirective.cipher.login.totp = "test-totp";
+      const cipher = copyCipherFieldDirective.cipher as CipherView;
+      cipher.type = CipherType.Login;
+      cipher.login.username = "test-username";
+      cipher.login.password = "test-password";
+      cipher.login.totp = "test-totp";
     });
 
     it.each([
@@ -107,10 +130,12 @@ describe("CopyCipherFieldDirective", () => {
 
   describe("identity", () => {
     beforeEach(() => {
-      copyCipherFieldDirective.cipher.identity.username = "test-username";
-      copyCipherFieldDirective.cipher.identity.email = "test-email";
-      copyCipherFieldDirective.cipher.identity.phone = "test-phone";
-      copyCipherFieldDirective.cipher.identity.address1 = "test-address-1";
+      const cipher = copyCipherFieldDirective.cipher as CipherView;
+      cipher.type = CipherType.Identity;
+      cipher.identity.username = "test-username";
+      cipher.identity.email = "test-email";
+      cipher.identity.phone = "test-phone";
+      cipher.identity.address1 = "test-address-1";
     });
 
     it.each([
@@ -133,8 +158,10 @@ describe("CopyCipherFieldDirective", () => {
 
   describe("card", () => {
     beforeEach(() => {
-      copyCipherFieldDirective.cipher.card.number = "test-card-number";
-      copyCipherFieldDirective.cipher.card.code = "test-card-code";
+      const cipher = copyCipherFieldDirective.cipher as CipherView;
+      cipher.type = CipherType.Card;
+      cipher.card.number = "test-card-number";
+      cipher.card.code = "test-card-code";
     });
 
     it.each([
@@ -155,7 +182,9 @@ describe("CopyCipherFieldDirective", () => {
 
   describe("secure note", () => {
     beforeEach(() => {
-      copyCipherFieldDirective.cipher.notes = "test-secure-note";
+      const cipher = copyCipherFieldDirective.cipher as CipherView;
+      cipher.type = CipherType.SecureNote;
+      cipher.notes = "test-secure-note";
     });
 
     it("copies secure note field to clipboard", async () => {
@@ -173,9 +202,11 @@ describe("CopyCipherFieldDirective", () => {
 
   describe("ssh key", () => {
     beforeEach(() => {
-      copyCipherFieldDirective.cipher.sshKey.privateKey = "test-private-key";
-      copyCipherFieldDirective.cipher.sshKey.publicKey = "test-public-key";
-      copyCipherFieldDirective.cipher.sshKey.keyFingerprint = "test-key-fingerprint";
+      const cipher = copyCipherFieldDirective.cipher as CipherView;
+      cipher.type = CipherType.SshKey;
+      cipher.sshKey.privateKey = "test-private-key";
+      cipher.sshKey.publicKey = "test-public-key";
+      cipher.sshKey.keyFingerprint = "test-key-fingerprint";
     });
 
     it.each([
diff --git a/libs/vault/src/components/copy-cipher-field.directive.ts b/libs/vault/src/components/copy-cipher-field.directive.ts
index 0ab7400a6dd..59ad8bf38e8 100644
--- a/libs/vault/src/components/copy-cipher-field.directive.ts
+++ b/libs/vault/src/components/copy-cipher-field.directive.ts
@@ -1,6 +1,14 @@
 import { Directive, HostBinding, HostListener, Input, OnChanges, Optional } from "@angular/core";
+import { firstValueFrom } from "rxjs";
 
+import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
+import { getUserId } from "@bitwarden/common/auth/services/account.service";
+import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
 import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
+import {
+  CipherViewLike,
+  CipherViewLikeUtils,
+} from "@bitwarden/common/vault/utils/cipher-view-like-utils";
 import { MenuItemDirective, BitIconButtonComponent } from "@bitwarden/components";
 import { CopyAction, CopyCipherFieldService } from "@bitwarden/vault";
 
@@ -27,10 +35,12 @@ export class CopyCipherFieldDirective implements OnChanges {
   })
   action!: Exclude<CopyAction, "hiddenField">;
 
-  @Input({ required: true }) cipher!: CipherView;
+  @Input({ required: true }) cipher!: CipherViewLike;
 
   constructor(
     private copyCipherFieldService: CopyCipherFieldService,
+    private accountService: AccountService,
+    private cipherService: CipherService,
     @Optional() private menuItemDirective?: MenuItemDirective,
     @Optional() private iconButtonComponent?: BitIconButtonComponent,
   ) {}
@@ -49,7 +59,7 @@ export class CopyCipherFieldDirective implements OnChanges {
 
   @HostListener("click")
   async copy() {
-    const value = this.getValueToCopy();
+    const value = await this.getValueToCopy();
     await this.copyCipherFieldService.copy(value ?? "", this.action, this.cipher);
   }
 
@@ -60,7 +70,7 @@ export class CopyCipherFieldDirective implements OnChanges {
   private async updateDisabledState() {
     this.disabled =
       !this.cipher ||
-      !this.getValueToCopy() ||
+      !this.hasValueToCopy() ||
       (this.action === "totp" && !(await this.copyCipherFieldService.totpAllowed(this.cipher)))
         ? true
         : null;
@@ -76,32 +86,51 @@ export class CopyCipherFieldDirective implements OnChanges {
     }
   }
 
-  private getValueToCopy() {
+  /** Returns `true` when the cipher has the associated value as populated. */
+  private hasValueToCopy() {
+    return CipherViewLikeUtils.hasCopyableValue(this.cipher, this.action);
+  }
+
+  /** Returns the value of the cipher to be copied. */
+  private async getValueToCopy() {
+    let _cipher: CipherView;
+
+    if (CipherViewLikeUtils.isCipherListView(this.cipher)) {
+      // When the cipher is of type `CipherListView`, the full cipher needs to be decrypted
+      const activeAccountId = await firstValueFrom(
+        this.accountService.activeAccount$.pipe(getUserId),
+      );
+      const encryptedCipher = await this.cipherService.get(this.cipher.id!, activeAccountId);
+      _cipher = await this.cipherService.decrypt(encryptedCipher, activeAccountId);
+    } else {
+      _cipher = this.cipher;
+    }
+
     switch (this.action) {
       case "username":
-        return this.cipher.login?.username || this.cipher.identity?.username;
+        return _cipher.login?.username || _cipher.identity?.username;
       case "password":
-        return this.cipher.login?.password;
+        return _cipher.login?.password;
       case "totp":
-        return this.cipher.login?.totp;
+        return _cipher.login?.totp;
       case "cardNumber":
-        return this.cipher.card?.number;
+        return _cipher.card?.number;
       case "securityCode":
-        return this.cipher.card?.code;
+        return _cipher.card?.code;
       case "email":
-        return this.cipher.identity?.email;
+        return _cipher.identity?.email;
       case "phone":
-        return this.cipher.identity?.phone;
+        return _cipher.identity?.phone;
       case "address":
-        return this.cipher.identity?.fullAddressForCopy;
+        return _cipher.identity?.fullAddressForCopy;
       case "secureNote":
-        return this.cipher.notes;
+        return _cipher.notes;
       case "privateKey":
-        return this.cipher.sshKey?.privateKey;
+        return _cipher.sshKey?.privateKey;
       case "publicKey":
-        return this.cipher.sshKey?.publicKey;
+        return _cipher.sshKey?.publicKey;
       case "keyFingerprint":
-        return this.cipher.sshKey?.keyFingerprint;
+        return _cipher.sshKey?.keyFingerprint;
       default:
         return null;
     }
diff --git a/libs/vault/src/services/copy-cipher-field.service.spec.ts b/libs/vault/src/services/copy-cipher-field.service.spec.ts
index 5b038376aee..3bd8f911f3e 100644
--- a/libs/vault/src/services/copy-cipher-field.service.spec.ts
+++ b/libs/vault/src/services/copy-cipher-field.service.spec.ts
@@ -8,7 +8,7 @@ import { EventType } from "@bitwarden/common/enums";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
 import { TotpService } from "@bitwarden/common/vault/abstractions/totp.service";
-import { CipherRepromptType } from "@bitwarden/common/vault/enums";
+import { CipherRepromptType, CipherType } from "@bitwarden/common/vault/enums";
 import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
 import { LoginView } from "@bitwarden/common/vault/models/view/login.view";
 import { ToastService } from "@bitwarden/components";
@@ -128,6 +128,7 @@ describe("CopyCipherFieldService", () => {
     describe("totp", () => {
       beforeEach(() => {
         actionType = "totp";
+        cipher.type = CipherType.Login;
         cipher.login = new LoginView();
         cipher.login.totp = "secret-totp";
         cipher.reprompt = CipherRepromptType.None;
diff --git a/libs/vault/src/services/copy-cipher-field.service.ts b/libs/vault/src/services/copy-cipher-field.service.ts
index 3f94b27cef8..606614f2143 100644
--- a/libs/vault/src/services/copy-cipher-field.service.ts
+++ b/libs/vault/src/services/copy-cipher-field.service.ts
@@ -9,7 +9,10 @@ import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.servic
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
 import { TotpService } from "@bitwarden/common/vault/abstractions/totp.service";
 import { CipherRepromptType } from "@bitwarden/common/vault/enums";
-import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
+import {
+  CipherViewLike,
+  CipherViewLikeUtils,
+} from "@bitwarden/common/vault/utils/cipher-view-like-utils";
 import { ToastService } from "@bitwarden/components";
 import { PasswordRepromptService } from "@bitwarden/vault";
 
@@ -103,7 +106,7 @@ export class CopyCipherFieldService {
   async copy(
     valueToCopy: string,
     actionType: CopyAction,
-    cipher: CipherView,
+    cipher: CipherViewLike,
     skipReprompt: boolean = false,
   ): Promise<boolean> {
     const action = CopyActions[actionType];
@@ -153,13 +156,16 @@ export class CopyCipherFieldService {
   /**
    * Determines if TOTP generation is allowed for a cipher and user.
    */
-  async totpAllowed(cipher: CipherView): Promise<boolean> {
+  async totpAllowed(cipher: CipherViewLike): Promise<boolean> {
     const activeAccount = await firstValueFrom(this.accountService.activeAccount$);
     if (!activeAccount?.id) {
       return false;
     }
+
+    const login = CipherViewLikeUtils.getLogin(cipher);
+
     return (
-      (cipher?.login?.hasTotp ?? false) &&
+      !!login?.totp &&
       (cipher.organizationUseTotp ||
         (await firstValueFrom(
           this.billingAccountProfileStateService.hasPremiumFromAnySource$(activeAccount.id),
diff --git a/libs/vault/src/services/password-reprompt.service.ts b/libs/vault/src/services/password-reprompt.service.ts
index 6583d0787fc..e6a6b20b320 100644
--- a/libs/vault/src/services/password-reprompt.service.ts
+++ b/libs/vault/src/services/password-reprompt.service.ts
@@ -4,7 +4,7 @@ import { firstValueFrom, lastValueFrom } from "rxjs";
 import { UserVerificationService } from "@bitwarden/common/auth/abstractions/user-verification/user-verification.service.abstraction";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
 import { CipherRepromptType } from "@bitwarden/common/vault/enums";
-import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
+import { CipherViewLike } from "@bitwarden/common/vault/utils/cipher-view-like-utils";
 import { DialogService } from "@bitwarden/components";
 
 import { PasswordRepromptComponent } from "../components/password-reprompt.component";
@@ -28,7 +28,7 @@ export class PasswordRepromptService {
     return ["TOTP", "Password", "H_Field", "Card Number", "Security Code"];
   }
 
-  async passwordRepromptCheck(cipher: CipherView) {
+  async passwordRepromptCheck(cipher: CipherViewLike) {
     if (cipher.reprompt === CipherRepromptType.None) {
       return true;
     }

From 9ca265c543394a62a590ed2e1263aea9a597268b Mon Sep 17 00:00:00 2001
From: rr-bw <102181210+rr-bw@users.noreply.github.com>
Date: Thu, 17 Jul 2025 14:24:53 -0700
Subject: [PATCH 163/239] feat(redirectToVaultIfUnlockedGuard): [Auth/PM-20623]
 RedirectToVaultIfUnlocked Guard (#15236)

Adds a `redirect-to-vault-if-unlocked.guard.ts` that does the following:
- If there is no active user, allow access to the route
- If the user is specifically Unlocked, redirect the user to /vault
- Otherwise, allow access to the route (fallback/default)
---
 apps/browser/src/popup/app-routing.module.ts  |  3 +
 libs/angular/src/auth/guards/index.ts         |  1 +
 .../redirect-to-vault-if-unlocked/README.md   | 19 ++++
 ...edirect-to-vault-if-unlocked.guard.spec.ts | 98 +++++++++++++++++++
 .../redirect-to-vault-if-unlocked.guard.ts    | 36 +++++++
 ...auth_request_login_readme.md => README.md} | 55 ++++++++---
 6 files changed, 196 insertions(+), 16 deletions(-)
 create mode 100644 libs/angular/src/auth/guards/redirect-to-vault-if-unlocked/README.md
 create mode 100644 libs/angular/src/auth/guards/redirect-to-vault-if-unlocked/redirect-to-vault-if-unlocked.guard.spec.ts
 create mode 100644 libs/angular/src/auth/guards/redirect-to-vault-if-unlocked/redirect-to-vault-if-unlocked.guard.ts
 rename libs/auth/src/angular/login-via-auth-request/{auth_request_login_readme.md => README.md} (77%)

diff --git a/apps/browser/src/popup/app-routing.module.ts b/apps/browser/src/popup/app-routing.module.ts
index 47ba2326557..9e55cfce2ce 100644
--- a/apps/browser/src/popup/app-routing.module.ts
+++ b/apps/browser/src/popup/app-routing.module.ts
@@ -12,6 +12,7 @@ import {
   authGuard,
   lockGuard,
   redirectGuard,
+  redirectToVaultIfUnlockedGuard,
   tdeDecryptionRequiredGuard,
   unauthGuardFn,
 } from "@bitwarden/angular/auth/guards";
@@ -454,6 +455,7 @@ const routes: Routes = [
       },
       {
         path: "login-with-device",
+        canActivate: [redirectToVaultIfUnlockedGuard()],
         data: {
           pageIcon: DevicesIcon,
           pageTitle: {
@@ -502,6 +504,7 @@ const routes: Routes = [
       },
       {
         path: "admin-approval-requested",
+        canActivate: [redirectToVaultIfUnlockedGuard()],
         data: {
           pageIcon: DevicesIcon,
           pageTitle: {
diff --git a/libs/angular/src/auth/guards/index.ts b/libs/angular/src/auth/guards/index.ts
index 8a4d0be8167..a0aadd3a4d1 100644
--- a/libs/angular/src/auth/guards/index.ts
+++ b/libs/angular/src/auth/guards/index.ts
@@ -4,3 +4,4 @@ export * from "./lock.guard";
 export * from "./redirect/redirect.guard";
 export * from "./tde-decryption-required.guard";
 export * from "./unauth.guard";
+export * from "./redirect-to-vault-if-unlocked/redirect-to-vault-if-unlocked.guard";
diff --git a/libs/angular/src/auth/guards/redirect-to-vault-if-unlocked/README.md b/libs/angular/src/auth/guards/redirect-to-vault-if-unlocked/README.md
new file mode 100644
index 00000000000..c72ddc86e15
--- /dev/null
+++ b/libs/angular/src/auth/guards/redirect-to-vault-if-unlocked/README.md
@@ -0,0 +1,19 @@
+# RedirectToVaultIfUnlocked Guard
+
+The `redirectToVaultIfUnlocked` redirects the user to `/vault` if they are `Unlocked`. Otherwise, it allows access to the route.
+
+This is particularly useful for routes that can handle BOTH unauthenticated AND authenticated-but-locked users (which makes the `authGuard` unusable on those routes).
+
+<br>
+
+### Special Use Case - Authenticating in the Extension Popout
+
+Imagine a user is going through the Login with Device flow in the Extension pop*out*:
+
+- They open the pop*out* while on `/login-with-device`
+- The approve the login from another device
+- They are authenticated and routed to `/vault` while in the pop*out*
+
+If the `redirectToVaultIfUnlocked` were NOT applied, if this user now opens the pop*up* they would be shown the `/login-with-device`, not their `/vault`.
+
+But by adding the `redirectToVaultIfUnlocked` to `/login-with-device` we make sure to check if the user has already `Unlocked`, and if so, route them to `/vault` upon opening the pop*up*.
diff --git a/libs/angular/src/auth/guards/redirect-to-vault-if-unlocked/redirect-to-vault-if-unlocked.guard.spec.ts b/libs/angular/src/auth/guards/redirect-to-vault-if-unlocked/redirect-to-vault-if-unlocked.guard.spec.ts
new file mode 100644
index 00000000000..004499beede
--- /dev/null
+++ b/libs/angular/src/auth/guards/redirect-to-vault-if-unlocked/redirect-to-vault-if-unlocked.guard.spec.ts
@@ -0,0 +1,98 @@
+import { TestBed } from "@angular/core/testing";
+import { Router, provideRouter } from "@angular/router";
+import { mock } from "jest-mock-extended";
+import { BehaviorSubject, of } from "rxjs";
+
+import { EmptyComponent } from "@bitwarden/angular/platform/guard/feature-flag.guard.spec";
+import { Account, AccountService } from "@bitwarden/common/auth/abstractions/account.service";
+import { AuthService } from "@bitwarden/common/auth/abstractions/auth.service";
+import { AuthenticationStatus } from "@bitwarden/common/auth/enums/authentication-status";
+import { UserId } from "@bitwarden/common/types/guid";
+
+import { redirectToVaultIfUnlockedGuard } from "./redirect-to-vault-if-unlocked.guard";
+
+describe("redirectToVaultIfUnlockedGuard", () => {
+  const activeUser: Account = {
+    id: "userId" as UserId,
+    email: "test@email.com",
+    emailVerified: true,
+    name: "Test User",
+  };
+
+  const setup = (activeUser: Account | null, authStatus: AuthenticationStatus | null) => {
+    const accountService = mock<AccountService>();
+    const authService = mock<AuthService>();
+
+    accountService.activeAccount$ = new BehaviorSubject<Account | null>(activeUser);
+    authService.authStatusFor$.mockReturnValue(of(authStatus));
+
+    const testBed = TestBed.configureTestingModule({
+      providers: [
+        { provide: AccountService, useValue: accountService },
+        { provide: AuthService, useValue: authService },
+        provideRouter([
+          { path: "", component: EmptyComponent },
+          { path: "vault", component: EmptyComponent },
+          {
+            path: "guarded-route",
+            component: EmptyComponent,
+            canActivate: [redirectToVaultIfUnlockedGuard()],
+          },
+        ]),
+      ],
+    });
+
+    return {
+      router: testBed.inject(Router),
+    };
+  };
+
+  it("should be created", () => {
+    const { router } = setup(null, null);
+    expect(router).toBeTruthy();
+  });
+
+  it("should redirect to /vault if the user is AuthenticationStatus.Unlocked", async () => {
+    // Arrange
+    const { router } = setup(activeUser, AuthenticationStatus.Unlocked);
+
+    // Act
+    await router.navigate(["guarded-route"]);
+
+    // Assert
+    expect(router.url).toBe("/vault");
+  });
+
+  it("should allow navigation to continue to the route if there is no active user", async () => {
+    // Arrange
+    const { router } = setup(null, null);
+
+    // Act
+    await router.navigate(["guarded-route"]);
+
+    // Assert
+    expect(router.url).toBe("/guarded-route");
+  });
+
+  it("should allow navigation to continue to the route if the user is AuthenticationStatus.LoggedOut", async () => {
+    // Arrange
+    const { router } = setup(null, AuthenticationStatus.LoggedOut);
+
+    // Act
+    await router.navigate(["guarded-route"]);
+
+    // Assert
+    expect(router.url).toBe("/guarded-route");
+  });
+
+  it("should allow navigation to continue to the route if the user is AuthenticationStatus.Locked", async () => {
+    // Arrange
+    const { router } = setup(null, AuthenticationStatus.Locked);
+
+    // Act
+    await router.navigate(["guarded-route"]);
+
+    // Assert
+    expect(router.url).toBe("/guarded-route");
+  });
+});
diff --git a/libs/angular/src/auth/guards/redirect-to-vault-if-unlocked/redirect-to-vault-if-unlocked.guard.ts b/libs/angular/src/auth/guards/redirect-to-vault-if-unlocked/redirect-to-vault-if-unlocked.guard.ts
new file mode 100644
index 00000000000..c39bce06a45
--- /dev/null
+++ b/libs/angular/src/auth/guards/redirect-to-vault-if-unlocked/redirect-to-vault-if-unlocked.guard.ts
@@ -0,0 +1,36 @@
+import { inject } from "@angular/core";
+import { CanActivateFn, Router } from "@angular/router";
+import { firstValueFrom } from "rxjs";
+
+import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
+import { AuthService } from "@bitwarden/common/auth/abstractions/auth.service";
+import { AuthenticationStatus } from "@bitwarden/common/auth/enums/authentication-status";
+
+/**
+ * Redirects the user to `/vault` if they are `Unlocked`. Otherwise, it allows access to the route.
+ * See ./redirect-to-vault-if-unlocked/README.md for more details.
+ */
+export function redirectToVaultIfUnlockedGuard(): CanActivateFn {
+  return async () => {
+    const accountService = inject(AccountService);
+    const authService = inject(AuthService);
+    const router = inject(Router);
+
+    const activeUser = await firstValueFrom(accountService.activeAccount$);
+
+    // If there is no active user, allow access to the route
+    if (!activeUser) {
+      return true;
+    }
+
+    const authStatus = await firstValueFrom(authService.authStatusFor$(activeUser.id));
+
+    // If user is Unlocked, redirect to vault
+    if (authStatus === AuthenticationStatus.Unlocked) {
+      return router.createUrlTree(["/vault"]);
+    }
+
+    // If user is LoggedOut or Locked, allow access to the route
+    return true;
+  };
+}
diff --git a/libs/auth/src/angular/login-via-auth-request/auth_request_login_readme.md b/libs/auth/src/angular/login-via-auth-request/README.md
similarity index 77%
rename from libs/auth/src/angular/login-via-auth-request/auth_request_login_readme.md
rename to libs/auth/src/angular/login-via-auth-request/README.md
index 240316f788c..3396ba8698b 100644
--- a/libs/auth/src/angular/login-via-auth-request/auth_request_login_readme.md
+++ b/libs/auth/src/angular/login-via-auth-request/README.md
@@ -1,11 +1,22 @@
-# Authentication Flows Documentation
+# Login via Auth Request Documentation
+
+<br>
+
+**Table of Contents**
+
+> - [Standard Auth Request Flows](#standard-auth-request-flows)
+> - [Admin Auth Request Flow](#admin-auth-request-flow)
+> - [Summary Table](#summary-table)
+> - [State Management](#state-management)
+
+<br>
 
 ## Standard Auth Request Flows
 
 ### Flow 1: Unauthed user requests approval from device; Approving device has a masterKey in memory
 
 1. Unauthed user clicks "Login with device"
-2. Navigates to /login-with-device which creates a StandardAuthRequest
+2. Navigates to `/login-with-device` which creates a `StandardAuthRequest`
 3. Receives approval from a device with authRequestPublicKey(masterKey)
 4. Decrypts masterKey
 5. Decrypts userKey
@@ -14,7 +25,7 @@
 ### Flow 2: Unauthed user requests approval from device; Approving device does NOT have a masterKey in memory
 
 1. Unauthed user clicks "Login with device"
-2. Navigates to /login-with-device which creates a StandardAuthRequest
+2. Navigates to `/login-with-device` which creates a `StandardAuthRequest`
 3. Receives approval from a device with authRequestPublicKey(userKey)
 4. Decrypts userKey
 5. Proceeds to vault
@@ -34,9 +45,9 @@ get into this flow:
 ### Flow 3: Authed SSO TD user requests approval from device; Approving device has a masterKey in memory
 
 1. SSO TD user authenticates via SSO
-2. Navigates to /login-initiated
+2. Navigates to `/login-initiated`
 3. Clicks "Approve from your other device"
-4. Navigates to /login-with-device which creates a StandardAuthRequest
+4. Navigates to `/login-with-device` which creates a `StandardAuthRequest`
 5. Receives approval from device with authRequestPublicKey(masterKey)
 6. Decrypts masterKey
 7. Decrypts userKey
@@ -46,22 +57,24 @@ get into this flow:
 ### Flow 4: Authed SSO TD user requests approval from device; Approving device does NOT have a masterKey in memory
 
 1. SSO TD user authenticates via SSO
-2. Navigates to /login-initiated
+2. Navigates to `/login-initiated`
 3. Clicks "Approve from your other device"
-4. Navigates to /login-with-device which creates a StandardAuthRequest
+4. Navigates to `/login-with-device` which creates a `StandardAuthRequest`
 5. Receives approval from device with authRequestPublicKey(userKey)
 6. Decrypts userKey
 7. Establishes trust (if required)
 8. Proceeds to vault
 
+<br>
+
 ## Admin Auth Request Flow
 
 ### Flow: Authed SSO TD user requests admin approval
 
 1. SSO TD user authenticates via SSO
-2. Navigates to /login-initiated
+2. Navigates to `/login-initiated`
 3. Clicks "Request admin approval"
-4. Navigates to /admin-approval-requested which creates an AdminAuthRequest
+4. Navigates to `/admin-approval-requested` which creates an `AdminAuthRequest`
 5. Receives approval from device with authRequestPublicKey(userKey)
 6. Decrypts userKey
 7. Establishes trust (if required)
@@ -70,21 +83,25 @@ get into this flow:
 **Note:** TDE users are required to be enrolled in admin account recovery, which gives the admin access to the user's
 userKey. This is how admins are able to send over the authRequestPublicKey(userKey) to the user to allow them to unlock.
 
+<br>
+
 ## Summary Table
 
-| Flow            | Auth Status | Clicks Button [active route]                        | Navigates to              | Approving device has masterKey in memory\*        |
-| --------------- | ----------- | --------------------------------------------------- | ------------------------- | ------------------------------------------------- |
-| Standard Flow 1 | unauthed    | "Login with device" [/login]                        | /login-with-device        | yes                                               |
-| Standard Flow 2 | unauthed    | "Login with device" [/login]                        | /login-with-device        | no                                                |
-| Standard Flow 3 | authed      | "Approve from your other device" [/login-initiated] | /login-with-device        | yes                                               |
-| Standard Flow 4 | authed      | "Approve from your other device" [/login-initiated] | /login-with-device        | no                                                |
-| Admin Flow      | authed      | "Request admin approval" [/login-initiated]         | /admin-approval-requested | NA - admin requests always send encrypted userKey |
+| Flow            | Auth Status | Clicks Button [active route]                          | Navigates to                | Approving device has masterKey in memory\*        |
+| --------------- | ----------- | ----------------------------------------------------- | --------------------------- | ------------------------------------------------- |
+| Standard Flow 1 | unauthed    | "Login with device" [`/login`]                        | `/login-with-device`        | yes                                               |
+| Standard Flow 2 | unauthed    | "Login with device" [`/login`]                        | `/login-with-device`        | no                                                |
+| Standard Flow 3 | authed      | "Approve from your other device" [`/login-initiated`] | `/login-with-device`        | yes                                               |
+| Standard Flow 4 | authed      | "Approve from your other device" [`/login-initiated`] | `/login-with-device`        | no                                                |
+| Admin Flow      | authed      | "Request admin approval"<br>[`/login-initiated`]      | `/admin-approval-requested` | NA - admin requests always send encrypted userKey |
 
 **Note:** The phrase "in memory" here is important. It is possible for a user to have a master password for their
 account, but not have a masterKey IN MEMORY for a specific device. For example, if a user registers an account with a
 master password, then joins an SSO TD org, then logs in to a device via SSO and admin auth request, they are now logged
 into that device but that device does not have masterKey IN MEMORY.
 
+<br>
+
 ## State Management
 
 ### View Cache
@@ -102,6 +119,8 @@ The cache is used to:
 2. Allow resumption of pending auth requests
 3. Enable processing of approved requests after extension close and reopen.
 
+<br>
+
 ### Component State Variables
 
 Key state variables maintained during the authentication process:
@@ -149,6 +168,8 @@ protected flow = Flow.StandardAuthRequest
 - Affects UI rendering and request handling
 - Set based on route and authentication state
 
+<br>
+
 ### State Flow Examples
 
 #### Standard Auth Request Cache Flow
@@ -186,6 +207,8 @@ protected flow = Flow.StandardAuthRequest
    - Either resumes monitoring or starts new request
    - Clears state after successful approval
 
+<br>
+
 ### State Cleanup
 
 State cleanup occurs in several scenarios:

From 99b1e7adf11a4b5e03566fce60c086ac7ace1cc4 Mon Sep 17 00:00:00 2001
From: rr-bw <102181210+rr-bw@users.noreply.github.com>
Date: Thu, 17 Jul 2025 14:40:57 -0700
Subject: [PATCH 164/239] feat(extension-login-approvals) [Auth/PM-14939
 follow-up] add missing translations to browser when using extension tab
 (table view) (#15667)

---
 apps/browser/src/_locales/en/messages.json | 31 ++++++++++++++++++++++
 1 file changed, 31 insertions(+)

diff --git a/apps/browser/src/_locales/en/messages.json b/apps/browser/src/_locales/en/messages.json
index 7b1262627b6..37d64c3416b 100644
--- a/apps/browser/src/_locales/en/messages.json
+++ b/apps/browser/src/_locales/en/messages.json
@@ -3479,6 +3479,12 @@
   "youDeniedLoginAttemptFromAnotherDevice": {
     "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
   },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Master password saved"
   },
@@ -3645,6 +3651,31 @@
   "loginRequest": {
     "message": "Login request"
   },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
   "justNow": {
     "message": "Just now"
   },

From f56e05404bed06b402350f54ff72dcdfa9fa3451 Mon Sep 17 00:00:00 2001
From: Addison Beck <github@addisonbeck.com>
Date: Fri, 18 Jul 2025 08:34:47 -0400
Subject: [PATCH 165/239] build: reset desktop version to 7.0 (#15674)

---
 apps/desktop/package.json          | 2 +-
 apps/desktop/src/package-lock.json | 2 +-
 apps/desktop/src/package.json      | 2 +-
 package-lock.json                  | 2 +-
 4 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/apps/desktop/package.json b/apps/desktop/package.json
index 005b823253f..2ab88fed621 100644
--- a/apps/desktop/package.json
+++ b/apps/desktop/package.json
@@ -1,7 +1,7 @@
 {
   "name": "@bitwarden/desktop",
   "description": "A secure and free password manager for all of your devices.",
-  "version": "2025.7.1",
+  "version": "2025.7.0",
   "keywords": [
     "bitwarden",
     "password",
diff --git a/apps/desktop/src/package-lock.json b/apps/desktop/src/package-lock.json
index 2cc106d07b0..01872408a10 100644
--- a/apps/desktop/src/package-lock.json
+++ b/apps/desktop/src/package-lock.json
@@ -1,6 +1,6 @@
 {
   "name": "@bitwarden/desktop",
-  "version": "2025.7.1",
+  "version": "2025.7.0",
   "lockfileVersion": 3,
   "requires": true,
   "packages": {
diff --git a/apps/desktop/src/package.json b/apps/desktop/src/package.json
index 8457cb23f74..0128692f3b4 100644
--- a/apps/desktop/src/package.json
+++ b/apps/desktop/src/package.json
@@ -2,7 +2,7 @@
   "name": "@bitwarden/desktop",
   "productName": "Bitwarden",
   "description": "A secure and free password manager for all of your devices.",
-  "version": "2025.7.1",
+  "version": "2025.7.0",
   "author": "Bitwarden Inc. <hello@bitwarden.com> (https://bitwarden.com)",
   "homepage": "https://bitwarden.com",
   "license": "GPL-3.0",
diff --git a/package-lock.json b/package-lock.json
index 541c596c78a..e6d4a0b9b89 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -282,7 +282,7 @@
     },
     "apps/desktop": {
       "name": "@bitwarden/desktop",
-      "version": "2025.7.1",
+      "version": "2025.7.0",
       "hasInstallScript": true,
       "license": "GPL-3.0"
     },

From 93f71482895791b70069f53f04fdc488d167c91a Mon Sep 17 00:00:00 2001
From: Jared Snider <116684653+JaredSnider-Bitwarden@users.noreply.github.com>
Date: Fri, 18 Jul 2025 09:47:17 -0400
Subject: [PATCH 166/239] fix(EmergencyAccess): [Auth/PM-23860] - Restore
 contact removal functionality (#15666)

* PM-23860 - EmergencyAccessService - convert types from response model to actual constructed type to avoid structural typing issue at runtime

* PM-23860 - EmergencyAccessService tests - add tests to both methods to prevent this from being possible again.
---
 .../models/emergency-access.ts                |  40 +++++
 .../services/emergency-access.service.spec.ts | 139 +++++++++++++++++-
 .../services/emergency-access.service.ts      |  12 +-
 3 files changed, 183 insertions(+), 8 deletions(-)

diff --git a/apps/web/src/app/auth/emergency-access/models/emergency-access.ts b/apps/web/src/app/auth/emergency-access/models/emergency-access.ts
index b8ae5907bb9..51edca6e671 100644
--- a/apps/web/src/app/auth/emergency-access/models/emergency-access.ts
+++ b/apps/web/src/app/auth/emergency-access/models/emergency-access.ts
@@ -5,6 +5,10 @@ import { KdfType } from "@bitwarden/key-management";
 
 import { EmergencyAccessStatusType } from "../enums/emergency-access-status-type";
 import { EmergencyAccessType } from "../enums/emergency-access-type";
+import {
+  EmergencyAccessGranteeDetailsResponse,
+  EmergencyAccessGrantorDetailsResponse,
+} from "../response/emergency-access.response";
 
 export class GranteeEmergencyAccess {
   id: string;
@@ -16,6 +20,24 @@ export class GranteeEmergencyAccess {
   waitTimeDays: number;
   creationDate: string;
   avatarColor: string;
+
+  constructor(partial: Partial<GranteeEmergencyAccess> = {}) {
+    Object.assign(this, partial);
+  }
+
+  static fromResponse(response: EmergencyAccessGranteeDetailsResponse) {
+    return new GranteeEmergencyAccess({
+      id: response.id,
+      granteeId: response.granteeId,
+      name: response.name,
+      email: response.email,
+      type: response.type,
+      status: response.status,
+      waitTimeDays: response.waitTimeDays,
+      creationDate: response.creationDate,
+      avatarColor: response.avatarColor,
+    });
+  }
 }
 
 export class GrantorEmergencyAccess {
@@ -28,6 +50,24 @@ export class GrantorEmergencyAccess {
   waitTimeDays: number;
   creationDate: string;
   avatarColor: string;
+
+  constructor(partial: Partial<GrantorEmergencyAccess> = {}) {
+    Object.assign(this, partial);
+  }
+
+  static fromResponse(response: EmergencyAccessGrantorDetailsResponse) {
+    return new GrantorEmergencyAccess({
+      id: response.id,
+      grantorId: response.grantorId,
+      name: response.name,
+      email: response.email,
+      type: response.type,
+      status: response.status,
+      waitTimeDays: response.waitTimeDays,
+      creationDate: response.creationDate,
+      avatarColor: response.avatarColor,
+    });
+  }
 }
 
 export class TakeoverTypeEmergencyAccess {
diff --git a/apps/web/src/app/auth/emergency-access/services/emergency-access.service.spec.ts b/apps/web/src/app/auth/emergency-access/services/emergency-access.service.spec.ts
index 752e9dc1ce0..05373534ce7 100644
--- a/apps/web/src/app/auth/emergency-access/services/emergency-access.service.spec.ts
+++ b/apps/web/src/app/auth/emergency-access/services/emergency-access.service.spec.ts
@@ -22,9 +22,11 @@ import { KdfType, KeyService } from "@bitwarden/key-management";
 
 import { EmergencyAccessStatusType } from "../enums/emergency-access-status-type";
 import { EmergencyAccessType } from "../enums/emergency-access-type";
+import { GranteeEmergencyAccess, GrantorEmergencyAccess } from "../models/emergency-access";
 import { EmergencyAccessPasswordRequest } from "../request/emergency-access-password.request";
 import {
   EmergencyAccessGranteeDetailsResponse,
+  EmergencyAccessGrantorDetailsResponse,
   EmergencyAccessTakeoverResponse,
 } from "../response/emergency-access.response";
 
@@ -242,11 +244,19 @@ describe("EmergencyAccessService", () => {
 
     const mockEmergencyAccess = {
       data: [
-        createMockEmergencyAccess("0", "EA 0", EmergencyAccessStatusType.Invited),
-        createMockEmergencyAccess("1", "EA 1", EmergencyAccessStatusType.Accepted),
-        createMockEmergencyAccess("2", "EA 2", EmergencyAccessStatusType.Confirmed),
-        createMockEmergencyAccess("3", "EA 3", EmergencyAccessStatusType.RecoveryInitiated),
-        createMockEmergencyAccess("4", "EA 4", EmergencyAccessStatusType.RecoveryApproved),
+        createMockEmergencyAccessGranteeDetails("0", "EA 0", EmergencyAccessStatusType.Invited),
+        createMockEmergencyAccessGranteeDetails("1", "EA 1", EmergencyAccessStatusType.Accepted),
+        createMockEmergencyAccessGranteeDetails("2", "EA 2", EmergencyAccessStatusType.Confirmed),
+        createMockEmergencyAccessGranteeDetails(
+          "3",
+          "EA 3",
+          EmergencyAccessStatusType.RecoveryInitiated,
+        ),
+        createMockEmergencyAccessGranteeDetails(
+          "4",
+          "EA 4",
+          EmergencyAccessStatusType.RecoveryApproved,
+        ),
       ],
     } as ListResponse<EmergencyAccessGranteeDetailsResponse>;
 
@@ -295,9 +305,113 @@ describe("EmergencyAccessService", () => {
       ).rejects.toThrow("New user key is required for rotation.");
     });
   });
+
+  describe("getEmergencyAccessTrusted", () => {
+    it("should return an empty array if no emergency access is granted", async () => {
+      emergencyAccessApiService.getEmergencyAccessTrusted.mockResolvedValue({
+        data: [],
+      } as ListResponse<EmergencyAccessGranteeDetailsResponse>);
+
+      const result = await emergencyAccessService.getEmergencyAccessTrusted();
+
+      expect(result).toEqual([]);
+    });
+
+    it("should return an empty array if the API returns an empty response", async () => {
+      emergencyAccessApiService.getEmergencyAccessTrusted.mockResolvedValue(
+        null as unknown as ListResponse<EmergencyAccessGranteeDetailsResponse>,
+      );
+
+      const result = await emergencyAccessService.getEmergencyAccessTrusted();
+
+      expect(result).toEqual([]);
+    });
+
+    it("should return a list of trusted emergency access contacts", async () => {
+      const mockEmergencyAccess = [
+        createMockEmergencyAccessGranteeDetails("1", "EA 1", EmergencyAccessStatusType.Invited),
+        createMockEmergencyAccessGranteeDetails("2", "EA 2", EmergencyAccessStatusType.Invited),
+        createMockEmergencyAccessGranteeDetails("3", "EA 3", EmergencyAccessStatusType.Accepted),
+        createMockEmergencyAccessGranteeDetails("4", "EA 4", EmergencyAccessStatusType.Confirmed),
+        createMockEmergencyAccessGranteeDetails(
+          "5",
+          "EA 5",
+          EmergencyAccessStatusType.RecoveryInitiated,
+        ),
+      ];
+      emergencyAccessApiService.getEmergencyAccessTrusted.mockResolvedValue({
+        data: mockEmergencyAccess,
+      } as ListResponse<EmergencyAccessGranteeDetailsResponse>);
+
+      const result = await emergencyAccessService.getEmergencyAccessTrusted();
+
+      expect(result).toHaveLength(mockEmergencyAccess.length);
+
+      result.forEach((access, index) => {
+        expect(access).toBeInstanceOf(GranteeEmergencyAccess);
+
+        expect(access.id).toBe(mockEmergencyAccess[index].id);
+        expect(access.name).toBe(mockEmergencyAccess[index].name);
+        expect(access.status).toBe(mockEmergencyAccess[index].status);
+        expect(access.type).toBe(mockEmergencyAccess[index].type);
+      });
+    });
+  });
+
+  describe("getEmergencyAccessGranted", () => {
+    it("should return an empty array if no emergency access is granted", async () => {
+      emergencyAccessApiService.getEmergencyAccessGranted.mockResolvedValue({
+        data: [],
+      } as ListResponse<EmergencyAccessGrantorDetailsResponse>);
+
+      const result = await emergencyAccessService.getEmergencyAccessGranted();
+
+      expect(result).toEqual([]);
+    });
+
+    it("should return an empty array if the API returns an empty response", async () => {
+      emergencyAccessApiService.getEmergencyAccessGranted.mockResolvedValue(
+        null as unknown as ListResponse<EmergencyAccessGrantorDetailsResponse>,
+      );
+
+      const result = await emergencyAccessService.getEmergencyAccessGranted();
+
+      expect(result).toEqual([]);
+    });
+
+    it("should return a list of granted emergency access contacts", async () => {
+      const mockEmergencyAccess = [
+        createMockEmergencyAccessGrantorDetails("1", "EA 1", EmergencyAccessStatusType.Invited),
+        createMockEmergencyAccessGrantorDetails("2", "EA 2", EmergencyAccessStatusType.Invited),
+        createMockEmergencyAccessGrantorDetails("3", "EA 3", EmergencyAccessStatusType.Accepted),
+        createMockEmergencyAccessGrantorDetails("4", "EA 4", EmergencyAccessStatusType.Confirmed),
+        createMockEmergencyAccessGrantorDetails(
+          "5",
+          "EA 5",
+          EmergencyAccessStatusType.RecoveryInitiated,
+        ),
+      ];
+      emergencyAccessApiService.getEmergencyAccessGranted.mockResolvedValue({
+        data: mockEmergencyAccess,
+      } as ListResponse<EmergencyAccessGrantorDetailsResponse>);
+
+      const result = await emergencyAccessService.getEmergencyAccessGranted();
+
+      expect(result).toHaveLength(mockEmergencyAccess.length);
+
+      result.forEach((access, index) => {
+        expect(access).toBeInstanceOf(GrantorEmergencyAccess);
+
+        expect(access.id).toBe(mockEmergencyAccess[index].id);
+        expect(access.name).toBe(mockEmergencyAccess[index].name);
+        expect(access.status).toBe(mockEmergencyAccess[index].status);
+        expect(access.type).toBe(mockEmergencyAccess[index].type);
+      });
+    });
+  });
 });
 
-function createMockEmergencyAccess(
+function createMockEmergencyAccessGranteeDetails(
   id: string,
   name: string,
   status: EmergencyAccessStatusType,
@@ -309,3 +423,16 @@ function createMockEmergencyAccess(
   emergencyAccess.status = status;
   return emergencyAccess;
 }
+
+function createMockEmergencyAccessGrantorDetails(
+  id: string,
+  name: string,
+  status: EmergencyAccessStatusType,
+): EmergencyAccessGrantorDetailsResponse {
+  const emergencyAccess = new EmergencyAccessGrantorDetailsResponse({});
+  emergencyAccess.id = id;
+  emergencyAccess.name = name;
+  emergencyAccess.type = 0;
+  emergencyAccess.status = status;
+  return emergencyAccess;
+}
diff --git a/apps/web/src/app/auth/emergency-access/services/emergency-access.service.ts b/apps/web/src/app/auth/emergency-access/services/emergency-access.service.ts
index 673ab7443f9..a814af32505 100644
--- a/apps/web/src/app/auth/emergency-access/services/emergency-access.service.ts
+++ b/apps/web/src/app/auth/emergency-access/services/emergency-access.service.ts
@@ -77,14 +77,22 @@ export class EmergencyAccessService
    * Gets all emergency access that the user has been granted.
    */
   async getEmergencyAccessTrusted(): Promise<GranteeEmergencyAccess[]> {
-    return (await this.emergencyAccessApiService.getEmergencyAccessTrusted()).data;
+    const listResponse = await this.emergencyAccessApiService.getEmergencyAccessTrusted();
+    if (!listResponse || listResponse.data.length === 0) {
+      return [];
+    }
+    return listResponse.data.map((response) => GranteeEmergencyAccess.fromResponse(response));
   }
 
   /**
    * Gets all emergency access that the user has granted.
    */
   async getEmergencyAccessGranted(): Promise<GrantorEmergencyAccess[]> {
-    return (await this.emergencyAccessApiService.getEmergencyAccessGranted()).data;
+    const listResponse = await this.emergencyAccessApiService.getEmergencyAccessGranted();
+    if (!listResponse || listResponse.data.length === 0) {
+      return [];
+    }
+    return listResponse.data.map((response) => GrantorEmergencyAccess.fromResponse(response));
   }
 
   /**

From 4d1171dd5a7824dcec02504a394143d2f64217e8 Mon Sep 17 00:00:00 2001
From: Bryan Cunningham <bcunningham@bitwarden.com>
Date: Fri, 18 Jul 2025 10:04:12 -0400
Subject: [PATCH 167/239] [CL-456] Add container story (#15621)

* add container story

* Update libs/components/src/container/container.component.ts

Co-authored-by: Vicki League <vleague@bitwarden.com>

* use lorem ipsum for example

---------

Co-authored-by: Vicki League <vleague@bitwarden.com>
---
 .../src/container/container.component.ts      |  2 +-
 libs/components/src/container/container.mdx   | 13 +++++++
 .../src/container/container.stories.ts        | 34 +++++++++++++++++++
 3 files changed, 48 insertions(+), 1 deletion(-)
 create mode 100644 libs/components/src/container/container.mdx
 create mode 100644 libs/components/src/container/container.stories.ts

diff --git a/libs/components/src/container/container.component.ts b/libs/components/src/container/container.component.ts
index 2f9e15c06b8..9f6a4cbef94 100644
--- a/libs/components/src/container/container.component.ts
+++ b/libs/components/src/container/container.component.ts
@@ -1,7 +1,7 @@
 import { Component } from "@angular/core";
 
 /**
- * Generic container that constrains page content width.
+ * bit-container is a minimally styled component that limits the max width of its content to the tailwind theme variable '4xl'. '4xl' is equal to the value of 56rem
  */
 @Component({
   selector: "bit-container",
diff --git a/libs/components/src/container/container.mdx b/libs/components/src/container/container.mdx
new file mode 100644
index 00000000000..35e0c69587f
--- /dev/null
+++ b/libs/components/src/container/container.mdx
@@ -0,0 +1,13 @@
+import { Meta, Primary, Title, Description } from "@storybook/addon-docs";
+
+import * as stories from "./container.stories";
+
+<Meta of={stories} />
+
+```ts
+import { ContainerComponent } from "@bitwarden/components";
+```
+
+<Title />
+<Description />
+<Primary />
diff --git a/libs/components/src/container/container.stories.ts b/libs/components/src/container/container.stories.ts
new file mode 100644
index 00000000000..7d9078db638
--- /dev/null
+++ b/libs/components/src/container/container.stories.ts
@@ -0,0 +1,34 @@
+import { Meta, moduleMetadata, StoryObj } from "@storybook/angular";
+
+import { ContainerComponent } from "./container.component";
+
+export default {
+  title: "Component Library/Container",
+  component: ContainerComponent,
+  decorators: [
+    moduleMetadata({
+      imports: [ContainerComponent],
+    }),
+  ],
+  parameters: {
+    design: {
+      type: "figma",
+      url: "https://www.figma.com/design/Zt3YSeb6E6lebAffrNLa0h/Tailwind-Component-Library?node-id=21662-47329&t=k6OTDDPZOTtypRqo-11",
+    },
+  },
+} as Meta<ContainerComponent>;
+
+type Story = StoryObj<ContainerComponent>;
+
+export const Container: Story = {
+  render: (args) => ({
+    props: args,
+    template: /*html*/ `
+      <bit-container>
+        <p>Lorem ipsum dolor sit amet, consectetur adipiscing elit. Sed malesuada felis nulla, dignissim suscipit metus posuere vel. Duis eget porttitor arcu. Praesent tempor sodales nisi ut rhoncus. Curabitur vel enim eget est elementum finibus nec vitae erat. Duis dapibus, purus varius porttitor facilisis, justo nibh scelerisque tortor, consequat eleifend augue mi et nisi. Pellentesque convallis eget sem vitae malesuada. In hac habitasse platea dictumst. Suspendisse vulputate, neque in feugiat ultricies, mi diam malesuada tellus, at ultrices nisi enim nec nunc. Integer sapien mi, facilisis sed ultrices eget, dapibus sed velit. Aenean convallis nulla id lacus mattis gravida.<p>
+
+        <p>Etiam quis ipsum in risus euismod sagittis ac vel lorem. Donec eget mollis augue. Maecenas vitae libero ornare felis sagittis consequat et nec urna. Integer velit sapien, mollis non magna consectetur, laoreet placerat risus. Pellentesque bibendum ante in diam commodo imperdiet. Donec ante ligula, interdum eu facilisis non, commodo eu dolor. Cras rutrum imperdiet tortor eget finibus. Donec fringilla vitae libero sed tincidunt. Quisque nulla quam, consectetur et dictum sit amet, ultrices quis tortor. Cras lacinia, lacus sed venenatis luctus, risus odio ultricies lacus, eu lacinia sapien nisl vel augue. Nunc fermentum ac nisl at dictum. Nulla gravida, odio ut pellentesque commodo, sapien urna ultrices enim, ut euismod odio nisi ac justo. Pellentesque auctor erat sit amet semper convallis. In finibus enim in lorem commodo, id pretium ligula finibus. Cras vehicula nisl eget gravida dapibus.</p>
+      </bit-container>
+    `,
+  }),
+};

From 8e185e023afbe83e4037b9a0f40dbab92d226a3e Mon Sep 17 00:00:00 2001
From: rr-bw <102181210+rr-bw@users.noreply.github.com>
Date: Fri, 18 Jul 2025 07:07:22 -0700
Subject: [PATCH 168/239] fix(extension-login-approval): [Auth/PM-14939
 follow-up-2] feature flag route in Extension (#15668)

---
 apps/browser/src/popup/app-routing.module.ts | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/apps/browser/src/popup/app-routing.module.ts b/apps/browser/src/popup/app-routing.module.ts
index 9e55cfce2ce..52a60d9c23d 100644
--- a/apps/browser/src/popup/app-routing.module.ts
+++ b/apps/browser/src/popup/app-routing.module.ts
@@ -268,7 +268,7 @@ const routes: Routes = [
   {
     path: "device-management",
     component: ExtensionDeviceManagementComponent,
-    canActivate: [authGuard],
+    canActivate: [canAccessFeature(FeatureFlag.PM14938_BrowserExtensionLoginApproval), authGuard],
     data: { elevation: 1 } satisfies RouteDataProperties,
   },
   {

From 8811ec41abf31a500d82ae4364c6af1641e17361 Mon Sep 17 00:00:00 2001
From: Colton Hurst <colton@coltonhurst.com>
Date: Fri, 18 Jul 2025 10:30:19 -0400
Subject: [PATCH 169/239] [PM-22788] Add Autotype Crate and Windowing Functions
 (#15317)

* [PM-22783] Add initial feature flag and settings toggle for autotype MVP

* [PM-22783] Undo Cargo.lock changes

* [PM-22783] Disable console.log block

* [PM-22783] Lint fix

* [PM-22783] Small updates

* [PM-22783] Build fix

* [PM-22783] Use combineLatest in updating the desktop autotype service

* [PM-22783] Check if the user is on Windows

* [PM-22783] Undo access selector html change, linting keeps removing this

* [PM-22783] Fix failing test

* [PM-22788] Add initial desktop native autotype crate based on spike ticket investigation

* [PM-22788] cargo fmt

* [PM-22783] Update autotypeEnabled to be stored in service

* [PM-22783] Add todo comments

* [PM-22783] Add SlimConfigService and MainDesktopAutotypeService

* [PM-22783] Small fixes

* [PM-22788] Add get_foreground_window_title() and cleanup

* [PM-22788] Add comment

* [PM-22788] Lint and cross platform build fixes

* [PM-22788] Update windows.rs in autotype_internal

* [PM-22788] Update windows.rs and dummy.rs in autotype_internal

* [PM-22788] cargo fmt

* [PM-22788] Edit napi result types

* [PM-22788] Edit napi result types again

* [PM-22788] Add autofill as a codeowner of the desktop_native/autotype directory

* [PM-22788] Refactor autotype code

* [PM-22788] Move autotype dependency out of windows only due to abstraction change

* [PM-22788] Fix lint errors

* [PM-22788] Updates based on PR comments

* [PM-22788] cargo fmt
---
 .github/CODEOWNERS                            |  1 +
 apps/desktop/desktop_native/Cargo.lock        | 29 ++++---
 apps/desktop/desktop_native/Cargo.toml        |  4 +-
 .../desktop_native/autotype/Cargo.toml        | 10 +++
 .../desktop_native/autotype/src/lib.rs        | 12 +++
 .../desktop_native/autotype/src/linux.rs      |  3 +
 .../desktop_native/autotype/src/macos.rs      |  3 +
 .../desktop_native/autotype/src/windows.rs    | 75 +++++++++++++++++++
 apps/desktop/desktop_native/napi/Cargo.toml   |  1 +
 apps/desktop/desktop_native/napi/index.d.ts   |  3 +
 apps/desktop/desktop_native/napi/src/lib.rs   | 12 +++
 .../main/main-desktop-autotype.service.ts     |  6 ++
 12 files changed, 147 insertions(+), 12 deletions(-)
 create mode 100644 apps/desktop/desktop_native/autotype/Cargo.toml
 create mode 100644 apps/desktop/desktop_native/autotype/src/lib.rs
 create mode 100644 apps/desktop/desktop_native/autotype/src/linux.rs
 create mode 100644 apps/desktop/desktop_native/autotype/src/macos.rs
 create mode 100644 apps/desktop/desktop_native/autotype/src/windows.rs

diff --git a/.github/CODEOWNERS b/.github/CODEOWNERS
index 9502a9c404d..ef2e26916e5 100644
--- a/.github/CODEOWNERS
+++ b/.github/CODEOWNERS
@@ -134,6 +134,7 @@ libs/common/src/autofill @bitwarden/team-autofill-dev
 apps/desktop/macos/autofill-extension @bitwarden/team-autofill-dev
 apps/desktop/src/app/components/fido2placeholder.component.ts @bitwarden/team-autofill-dev
 apps/desktop/desktop_native/windows_plugin_authenticator @bitwarden/team-autofill-dev
+apps/desktop/desktop_native/autotype @bitwarden/team-autofill-dev
 # DuckDuckGo integration
 apps/desktop/native-messaging-test-runner @bitwarden/team-autofill-dev
 apps/desktop/src/services/duckduckgo-message-handler.service.ts @bitwarden/team-autofill-dev
diff --git a/apps/desktop/desktop_native/Cargo.lock b/apps/desktop/desktop_native/Cargo.lock
index 4c514016675..70814c74106 100644
--- a/apps/desktop/desktop_native/Cargo.lock
+++ b/apps/desktop/desktop_native/Cargo.lock
@@ -349,6 +349,14 @@ version = "1.4.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "ace50bade8e6234aa140d9a2f552bbee1db4d353f69b8217bc503490fc1a9f26"
 
+[[package]]
+name = "autotype"
+version = "0.0.0"
+dependencies = [
+ "windows 0.61.1",
+ "windows-core 0.61.0",
+]
+
 [[package]]
 name = "backtrace"
 version = "0.3.75"
@@ -912,6 +920,7 @@ name = "desktop_napi"
 version = "0.0.0"
 dependencies = [
  "anyhow",
+ "autotype",
  "base64",
  "desktop_core",
  "hex",
@@ -3677,7 +3686,7 @@ dependencies = [
  "windows-implement 0.60.0",
  "windows-interface 0.59.1",
  "windows-link",
- "windows-result 0.3.2",
+ "windows-result 0.3.4",
  "windows-strings",
 ]
 
@@ -3737,9 +3746,9 @@ dependencies = [
 
 [[package]]
 name = "windows-link"
-version = "0.1.1"
+version = "0.1.3"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "76840935b766e1b0a05c0066835fb9ec80071d4c09a16f6bd5f7e655e3c14c38"
+checksum = "5e6ad25900d524eaabdbbb96d20b4311e1e7ae1699af4fb28c17ae66c80d798a"
 
 [[package]]
 name = "windows-numerics"
@@ -3753,12 +3762,12 @@ dependencies = [
 
 [[package]]
 name = "windows-registry"
-version = "0.5.1"
+version = "0.5.3"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "ad1da3e436dc7653dfdf3da67332e22bff09bb0e28b0239e1624499c7830842e"
+checksum = "5b8a9ed28765efc97bbc954883f4e6796c33a06546ebafacbabee9696967499e"
 dependencies = [
  "windows-link",
- "windows-result 0.3.2",
+ "windows-result 0.3.4",
  "windows-strings",
 ]
 
@@ -3773,18 +3782,18 @@ dependencies = [
 
 [[package]]
 name = "windows-result"
-version = "0.3.2"
+version = "0.3.4"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "c64fd11a4fd95df68efcfee5f44a294fe71b8bc6a91993e2791938abcc712252"
+checksum = "56f42bd332cc6c8eac5af113fc0c1fd6a8fd2aa08a0119358686e5160d0586c6"
 dependencies = [
  "windows-link",
 ]
 
 [[package]]
 name = "windows-strings"
-version = "0.4.0"
+version = "0.4.2"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "7a2ba9642430ee452d5a7aa78d72907ebe8cfda358e8cb7918a2050581322f97"
+checksum = "56e6c93f3a0c3b36176cb1327a4958a0353d5d166c2a35cb268ace15e91d3b57"
 dependencies = [
  "windows-link",
 ]
diff --git a/apps/desktop/desktop_native/Cargo.toml b/apps/desktop/desktop_native/Cargo.toml
index 8e12dded52c..21835c61585 100644
--- a/apps/desktop/desktop_native/Cargo.toml
+++ b/apps/desktop/desktop_native/Cargo.toml
@@ -1,6 +1,6 @@
 [workspace]
 resolver = "2"
-members = ["napi", "core", "proxy", "macos_provider", "windows_plugin_authenticator"]
+members = ["napi", "core", "proxy", "macos_provider", "windows_plugin_authenticator", "autotype"]
 
 [workspace.package]
 version = "0.0.0"
@@ -60,7 +60,7 @@ widestring = "=1.2.0"
 windows = "=0.61.1"
 windows-core = "=0.61.0"
 windows-future = "=0.2.0"
-windows-registry = "=0.5.1"
+windows-registry = "=0.5.3"
 zbus = "=5.5.0"
 zbus_polkit = "=5.0.0"
 zeroizing-alloc = "=0.1.0"
diff --git a/apps/desktop/desktop_native/autotype/Cargo.toml b/apps/desktop/desktop_native/autotype/Cargo.toml
new file mode 100644
index 00000000000..c8267c3e2ea
--- /dev/null
+++ b/apps/desktop/desktop_native/autotype/Cargo.toml
@@ -0,0 +1,10 @@
+[package]
+name = "autotype"
+version.workspace = true
+license.workspace = true
+edition.workspace = true
+publish.workspace = true
+
+[target.'cfg(windows)'.dependencies]
+windows = { workspace = true, features = ["Win32_UI_Input_KeyboardAndMouse", "Win32_UI_WindowsAndMessaging"] }
+windows-core = { workspace = true }
diff --git a/apps/desktop/desktop_native/autotype/src/lib.rs b/apps/desktop/desktop_native/autotype/src/lib.rs
new file mode 100644
index 00000000000..e3083422eb2
--- /dev/null
+++ b/apps/desktop/desktop_native/autotype/src/lib.rs
@@ -0,0 +1,12 @@
+#[cfg_attr(target_os = "linux", path = "linux.rs")]
+#[cfg_attr(target_os = "macos", path = "macos.rs")]
+#[cfg_attr(target_os = "windows", path = "windows.rs")]
+mod windowing;
+
+/// Gets the title bar string for the foreground window.
+///
+/// TODO: The error handling will be improved in a future PR: PM-23615
+#[allow(clippy::result_unit_err)]
+pub fn get_foreground_window_title() -> std::result::Result<String, ()> {
+    windowing::get_foreground_window_title()
+}
diff --git a/apps/desktop/desktop_native/autotype/src/linux.rs b/apps/desktop/desktop_native/autotype/src/linux.rs
new file mode 100644
index 00000000000..aa06da21a49
--- /dev/null
+++ b/apps/desktop/desktop_native/autotype/src/linux.rs
@@ -0,0 +1,3 @@
+pub fn get_foreground_window_title() -> std::result::Result<String, ()> {
+    todo!("Bitwarden does not yet support Linux autotype");
+}
diff --git a/apps/desktop/desktop_native/autotype/src/macos.rs b/apps/desktop/desktop_native/autotype/src/macos.rs
new file mode 100644
index 00000000000..12a4ca08d3e
--- /dev/null
+++ b/apps/desktop/desktop_native/autotype/src/macos.rs
@@ -0,0 +1,3 @@
+pub fn get_foreground_window_title() -> std::result::Result<String, ()> {
+    todo!("Bitwarden does not yet support Mac OS autotype");
+}
diff --git a/apps/desktop/desktop_native/autotype/src/windows.rs b/apps/desktop/desktop_native/autotype/src/windows.rs
new file mode 100644
index 00000000000..d86d5dd35ae
--- /dev/null
+++ b/apps/desktop/desktop_native/autotype/src/windows.rs
@@ -0,0 +1,75 @@
+use std::ffi::OsString;
+use std::os::windows::ffi::OsStringExt;
+
+use windows::Win32::Foundation::HWND;
+use windows::Win32::UI::WindowsAndMessaging::{
+    GetForegroundWindow, GetWindowTextLengthW, GetWindowTextW,
+};
+
+/// Gets the title bar string for the foreground window.
+pub fn get_foreground_window_title() -> std::result::Result<String, ()> {
+    let Ok(window_handle) = get_foreground_window() else {
+        return Err(());
+    };
+    let Ok(Some(window_title)) = get_window_title(window_handle) else {
+        return Err(());
+    };
+
+    Ok(window_title)
+}
+
+/// Gets the foreground window handle.
+///
+/// https://learn.microsoft.com/en-us/windows/win32/api/winuser/nf-winuser-getforegroundwindow
+fn get_foreground_window() -> Result<HWND, ()> {
+    let foreground_window_handle = unsafe { GetForegroundWindow() };
+
+    if foreground_window_handle.is_invalid() {
+        return Err(());
+    }
+
+    Ok(foreground_window_handle)
+}
+
+/// Gets the length of the window title bar text.
+///
+/// TODO: Future improvement is to use GetLastError for better error handling
+///
+/// https://learn.microsoft.com/en-us/windows/win32/api/winuser/nf-winuser-getwindowtextlengthw
+fn get_window_title_length(window_handle: HWND) -> Result<usize, ()> {
+    if window_handle.is_invalid() {
+        return Err(());
+    }
+
+    match usize::try_from(unsafe { GetWindowTextLengthW(window_handle) }) {
+        Ok(length) => Ok(length),
+        Err(_) => Err(()),
+    }
+}
+
+/// Gets the window title bar title.
+///
+/// TODO: Future improvement is to use GetLastError for better error handling
+///
+/// https://learn.microsoft.com/en-us/windows/win32/api/winuser/nf-winuser-getwindowtextw
+fn get_window_title(window_handle: HWND) -> Result<Option<String>, ()> {
+    if window_handle.is_invalid() {
+        return Err(());
+    }
+
+    let window_title_length = get_window_title_length(window_handle)?;
+    if window_title_length == 0 {
+        return Ok(None);
+    }
+
+    let mut buffer: Vec<u16> = vec![0; window_title_length + 1]; // add extra space for the null character
+
+    let window_title_length = unsafe { GetWindowTextW(window_handle, &mut buffer) };
+    if window_title_length == 0 {
+        return Ok(None);
+    }
+
+    let window_title = OsString::from_wide(&buffer);
+
+    Ok(Some(window_title.to_string_lossy().into_owned()))
+}
diff --git a/apps/desktop/desktop_native/napi/Cargo.toml b/apps/desktop/desktop_native/napi/Cargo.toml
index 669f166e748..20b56395801 100644
--- a/apps/desktop/desktop_native/napi/Cargo.toml
+++ b/apps/desktop/desktop_native/napi/Cargo.toml
@@ -14,6 +14,7 @@ default = []
 manual_test = []
 
 [dependencies]
+autotype = { path = "../autotype" }
 base64 = { workspace = true }
 hex = { workspace = true }
 anyhow = { workspace = true }
diff --git a/apps/desktop/desktop_native/napi/index.d.ts b/apps/desktop/desktop_native/napi/index.d.ts
index 6ee460a8065..f554fdb12e8 100644
--- a/apps/desktop/desktop_native/napi/index.d.ts
+++ b/apps/desktop/desktop_native/napi/index.d.ts
@@ -208,3 +208,6 @@ export declare namespace logging {
   }
   export function initNapiLog(jsLogFn: (err: Error | null, arg0: LogLevel, arg1: string) => any): void
 }
+export declare namespace autotype {
+  export function getForegroundWindowTitle(): string
+}
diff --git a/apps/desktop/desktop_native/napi/src/lib.rs b/apps/desktop/desktop_native/napi/src/lib.rs
index 784bfb72086..aa271b335ad 100644
--- a/apps/desktop/desktop_native/napi/src/lib.rs
+++ b/apps/desktop/desktop_native/napi/src/lib.rs
@@ -865,3 +865,15 @@ pub mod logging {
         fn flush(&self) {}
     }
 }
+
+#[napi]
+pub mod autotype {
+    #[napi]
+    pub fn get_foreground_window_title() -> napi::Result<String, napi::Status> {
+        autotype::get_foreground_window_title().map_err(|_| {
+            napi::Error::from_reason(
+                "Autotype Error: faild to get foreground window title".to_string(),
+            )
+        })
+    }
+}
diff --git a/apps/desktop/src/autofill/main/main-desktop-autotype.service.ts b/apps/desktop/src/autofill/main/main-desktop-autotype.service.ts
index 7de34da5aaf..e0871f86f8c 100644
--- a/apps/desktop/src/autofill/main/main-desktop-autotype.service.ts
+++ b/apps/desktop/src/autofill/main/main-desktop-autotype.service.ts
@@ -1,3 +1,5 @@
+import { autotype } from "@bitwarden/desktop-napi";
+
 import { DesktopAutotypeService } from "../services/desktop-autotype.service";
 
 export class MainDesktopAutotypeService {
@@ -17,6 +19,10 @@ export class MainDesktopAutotypeService {
   private enableAutotype() {
     // eslint-disable-next-line no-console
     console.log("Enabling Autotype...");
+
+    const result = autotype.getForegroundWindowTitle();
+    // eslint-disable-next-line no-console
+    console.log("Window Title: " + result);
   }
 
   // TODO: this will call into desktop native code

From 92bbe0a3c21d0067d029dfc3016b55a86584a2b5 Mon Sep 17 00:00:00 2001
From: Brandon Treston <btreston@bitwarden.com>
Date: Fri, 18 Jul 2025 10:53:12 -0400
Subject: [PATCH 170/239] [PM-22100] Enforce restrictions based on collection
 type (#15336)

* enforce restrictions based on collection type, set default collection type

* fix ts strict errors

* fix default collection enforcement in vault header

* enforce default collection restrictions in vault collection row

* enforce default collection restrictions in AC vault header

* enforce default collection restriction for select all

* fix ts strict error

* switch to signal, fix feature flag

* fix story

* clean up

* remove feature flag, move check for defaultCollecion to CollecitonView

* fix test

* remove unused configService

* fix test: coerce null to undefined for collection Id

* clean up leaky abstraction for default collection

* fix ts-strict error

* fix parens

* rename defaultCollection getter

* clean up
---
 .../vault-popup-list-filters.service.ts       |   2 +-
 .../vault-header/vault-header.component.html  | 107 +++++++++---------
 .../vault-collection-row.component.html       |  42 +++----
 .../vault-collection-row.component.ts         |   8 --
 .../vault-header/vault-header.component.html  |  73 ++++++------
 .../vault-header/vault-header.component.ts    |  18 +--
 .../models/collection-admin.view.ts           |  28 ++++-
 .../collections/models/collection.view.ts     |  36 +++---
 .../empty-vault-nudge.service.ts              |   2 +-
 .../vault-settings-import-nudge.service.ts    |   2 +-
 .../services/vault-filter.service.ts          |   3 +
 .../src/vault/models/domain/tree-node.ts      |   4 +-
 libs/importer/src/importers/base-importer.ts  |   2 +-
 .../item-details-section.component.spec.ts    |   3 +-
 14 files changed, 182 insertions(+), 148 deletions(-)

diff --git a/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.ts b/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.ts
index 9db5811d75c..7af6fb5f212 100644
--- a/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.ts
+++ b/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.ts
@@ -237,7 +237,7 @@ export class VaultPopupListFiltersService {
               return false;
             }
 
-            if (filters.collection && !cipher.collectionIds?.includes(filters.collection.id)) {
+            if (filters.collection && !cipher.collectionIds?.includes(filters.collection.id!)) {
               return false;
             }
 
diff --git a/apps/web/src/app/admin-console/organizations/collections/vault-header/vault-header.component.html b/apps/web/src/app/admin-console/organizations/collections/vault-header/vault-header.component.html
index dc5d4c7929e..50d34227b56 100644
--- a/apps/web/src/app/admin-console/organizations/collections/vault-header/vault-header.component.html
+++ b/apps/web/src/app/admin-console/organizations/collections/vault-header/vault-header.component.html
@@ -25,62 +25,67 @@
   </bit-breadcrumbs>
 
   <ng-container slot="title-suffix">
-    <ng-container
-      *ngIf="
-        collection != null && (canEditCollection || canDeleteCollection || canViewCollectionInfo)
-      "
-    >
-      <button
-        bitIconButton="bwi-angle-down"
-        [bitMenuTriggerFor]="editCollectionMenu"
-        size="small"
-        type="button"
-      ></button>
-      <bit-menu #editCollectionMenu>
-        <ng-container *ngIf="canEditCollection">
+    @if (
+      collection != null && (canEditCollection || canDeleteCollection || canViewCollectionInfo)
+    ) {
+      <ng-container>
+        <button
+          bitIconButton="bwi-angle-down"
+          [bitMenuTriggerFor]="editCollectionMenu"
+          size="small"
+          type="button"
+        ></button>
+        <bit-menu #editCollectionMenu>
+          <ng-container *ngIf="canEditCollection">
+            <button
+              type="button"
+              bitMenuItem
+              (click)="editCollection(CollectionDialogTabType.Info, false)"
+            >
+              <i class="bwi bwi-fw bwi-pencil-square" aria-hidden="true"></i>
+              {{ "editInfo" | i18n }}
+            </button>
+            <button
+              type="button"
+              bitMenuItem
+              (click)="editCollection(CollectionDialogTabType.Access, false)"
+            >
+              <i class="bwi bwi-fw bwi-users" aria-hidden="true"></i>
+              {{ "access" | i18n }}
+            </button>
+          </ng-container>
+          <ng-container *ngIf="!canEditCollection && canViewCollectionInfo">
+            <button
+              type="button"
+              bitMenuItem
+              (click)="editCollection(CollectionDialogTabType.Info, true)"
+            >
+              <i class="bwi bwi-fw bwi-pencil-square" aria-hidden="true"></i>
+              {{ "viewInfo" | i18n }}
+            </button>
+            <button
+              type="button"
+              bitMenuItem
+              (click)="editCollection(CollectionDialogTabType.Access, true)"
+            >
+              <i class="bwi bwi-fw bwi-users" aria-hidden="true"></i>
+              {{ "viewAccess" | i18n }}
+            </button>
+          </ng-container>
           <button
             type="button"
+            *ngIf="canDeleteCollection"
             bitMenuItem
-            (click)="editCollection(CollectionDialogTabType.Info, false)"
+            (click)="deleteCollection()"
           >
-            <i class="bwi bwi-fw bwi-pencil-square" aria-hidden="true"></i>
-            {{ "editInfo" | i18n }}
+            <span class="tw-text-danger">
+              <i class="bwi bwi-fw bwi-trash" aria-hidden="true"></i>
+              {{ "delete" | i18n }}
+            </span>
           </button>
-          <button
-            type="button"
-            bitMenuItem
-            (click)="editCollection(CollectionDialogTabType.Access, false)"
-          >
-            <i class="bwi bwi-fw bwi-users" aria-hidden="true"></i>
-            {{ "access" | i18n }}
-          </button>
-        </ng-container>
-        <ng-container *ngIf="!canEditCollection && canViewCollectionInfo">
-          <button
-            type="button"
-            bitMenuItem
-            (click)="editCollection(CollectionDialogTabType.Info, true)"
-          >
-            <i class="bwi bwi-fw bwi-pencil-square" aria-hidden="true"></i>
-            {{ "viewInfo" | i18n }}
-          </button>
-          <button
-            type="button"
-            bitMenuItem
-            (click)="editCollection(CollectionDialogTabType.Access, true)"
-          >
-            <i class="bwi bwi-fw bwi-users" aria-hidden="true"></i>
-            {{ "viewAccess" | i18n }}
-          </button>
-        </ng-container>
-        <button type="button" *ngIf="canDeleteCollection" bitMenuItem (click)="deleteCollection()">
-          <span class="tw-text-danger">
-            <i class="bwi bwi-fw bwi-trash" aria-hidden="true"></i>
-            {{ "delete" | i18n }}
-          </span>
-        </button>
-      </bit-menu>
-    </ng-container>
+        </bit-menu>
+      </ng-container>
+    }
     <small *ngIf="loading">
       <i
         class="bwi bwi-spinner bwi-spin tw-text-muted"
diff --git a/apps/web/src/app/vault/components/vault-items/vault-collection-row.component.html b/apps/web/src/app/vault/components/vault-items/vault-collection-row.component.html
index 0355c938bce..ad2886b1e59 100644
--- a/apps/web/src/app/vault/components/vault-items/vault-collection-row.component.html
+++ b/apps/web/src/app/vault/components/vault-items/vault-collection-row.component.html
@@ -1,14 +1,15 @@
 <td bitCell [ngClass]="RowHeightClass" class="tw-min-w-fit">
-  <input
-    type="checkbox"
-    bitCheckbox
-    appStopProp
-    *ngIf="showCheckbox"
-    [disabled]="disabled"
-    [checked]="checked"
-    (change)="$event ? this.checkedToggled.next() : null"
-    [attr.aria-label]="'collectionItemSelect' | i18n"
-  />
+  @if (this.canEditCollection || this.canDeleteCollection) {
+    <input
+      type="checkbox"
+      bitCheckbox
+      appStopProp
+      [disabled]="disabled"
+      [checked]="checked"
+      (change)="$event ? this.checkedToggled.next() : null"
+      [attr.aria-label]="'collectionItemSelect' | i18n"
+    />
+  }
 </td>
 <td bitCell [ngClass]="RowHeightClass" class="tw-min-w-fit">
   <div aria-hidden="true">
@@ -57,16 +58,17 @@
   </p>
 </td>
 <td bitCell [ngClass]="RowHeightClass" class="tw-text-right">
-  <button
-    *ngIf="canEditCollection || canDeleteCollection || canViewCollectionInfo"
-    [disabled]="disabled"
-    [bitMenuTriggerFor]="collectionOptions"
-    size="small"
-    bitIconButton="bwi-ellipsis-v"
-    type="button"
-    appA11yTitle="{{ 'options' | i18n }}"
-    appStopProp
-  ></button>
+  @if (canEditCollection || canDeleteCollection || canViewCollectionInfo) {
+    <button
+      [disabled]="disabled"
+      [bitMenuTriggerFor]="collectionOptions"
+      size="small"
+      bitIconButton="bwi-ellipsis-v"
+      type="button"
+      appA11yTitle="{{ 'options' | i18n }}"
+      appStopProp
+    ></button>
+  }
   <bit-menu #collectionOptions>
     <ng-container *ngIf="canEditCollection">
       <button type="button" bitMenuItem (click)="edit(false)">
diff --git a/apps/web/src/app/vault/components/vault-items/vault-collection-row.component.ts b/apps/web/src/app/vault/components/vault-items/vault-collection-row.component.ts
index 5d2b84aa10b..8271cc5a266 100644
--- a/apps/web/src/app/vault/components/vault-items/vault-collection-row.component.ts
+++ b/apps/web/src/app/vault/components/vault-items/vault-collection-row.component.ts
@@ -105,12 +105,4 @@ export class VaultCollectionRowComponent<C extends CipherViewLike> {
   protected deleteCollection() {
     this.onEvent.next({ type: "delete", items: [{ collection: this.collection }] });
   }
-
-  protected get showCheckbox() {
-    if (this.collection?.id === Unassigned) {
-      return false; // Never show checkbox for Unassigned
-    }
-
-    return this.canEditCollection || this.canDeleteCollection;
-  }
 }
diff --git a/apps/web/src/app/vault/individual-vault/vault-header/vault-header.component.html b/apps/web/src/app/vault/individual-vault/vault-header/vault-header.component.html
index 711d1166d7b..413b4792f4e 100644
--- a/apps/web/src/app/vault/individual-vault/vault-header/vault-header.component.html
+++ b/apps/web/src/app/vault/individual-vault/vault-header/vault-header.component.html
@@ -22,41 +22,48 @@
   </bit-breadcrumbs>
 
   <ng-container slot="title-suffix">
-    <ng-container *ngIf="collection != null && (canEditCollection || canDeleteCollection)">
-      <button
-        bitIconButton="bwi-angle-down"
-        [bitMenuTriggerFor]="editCollectionMenu"
-        size="small"
-        type="button"
-        aria-haspopup="true"
-      ></button>
-      <bit-menu #editCollectionMenu>
+    @if (collection != null && (canEditCollection || canDeleteCollection)) {
+      <ng-container>
         <button
+          bitIconButton="bwi-angle-down"
+          [bitMenuTriggerFor]="editCollectionMenu"
+          size="small"
           type="button"
-          *ngIf="canEditCollection"
-          bitMenuItem
-          (click)="editCollection(CollectionDialogTabType.Info)"
-        >
-          <i class="bwi bwi-fw bwi-pencil-square" aria-hidden="true"></i>
-          {{ "editInfo" | i18n }}
-        </button>
-        <button
-          type="button"
-          *ngIf="canEditCollection"
-          bitMenuItem
-          (click)="editCollection(CollectionDialogTabType.Access)"
-        >
-          <i class="bwi bwi-fw bwi-users" aria-hidden="true"></i>
-          {{ "access" | i18n }}
-        </button>
-        <button type="button" *ngIf="canDeleteCollection" bitMenuItem (click)="deleteCollection()">
-          <span class="tw-text-danger">
-            <i class="bwi bwi-fw bwi-trash" aria-hidden="true"></i>
-            {{ "delete" | i18n }}
-          </span>
-        </button>
-      </bit-menu>
-    </ng-container>
+          aria-haspopup="true"
+        ></button>
+        <bit-menu #editCollectionMenu>
+          <button
+            type="button"
+            *ngIf="canEditCollection"
+            bitMenuItem
+            (click)="editCollection(CollectionDialogTabType.Info)"
+          >
+            <i class="bwi bwi-fw bwi-pencil-square" aria-hidden="true"></i>
+            {{ "editInfo" | i18n }}
+          </button>
+          <button
+            type="button"
+            *ngIf="canEditCollection"
+            bitMenuItem
+            (click)="editCollection(CollectionDialogTabType.Access)"
+          >
+            <i class="bwi bwi-fw bwi-users" aria-hidden="true"></i>
+            {{ "access" | i18n }}
+          </button>
+          <button
+            type="button"
+            *ngIf="canDeleteCollection"
+            bitMenuItem
+            (click)="deleteCollection()"
+          >
+            <span class="tw-text-danger">
+              <i class="bwi bwi-fw bwi-trash" aria-hidden="true"></i>
+              {{ "delete" | i18n }}
+            </span>
+          </button>
+        </bit-menu>
+      </ng-container>
+    }
     <small *ngIf="loading">
       <i
         class="bwi bwi-spinner bwi-spin tw-text-muted"
diff --git a/apps/web/src/app/vault/individual-vault/vault-header/vault-header.component.ts b/apps/web/src/app/vault/individual-vault/vault-header/vault-header.component.ts
index f4f3ba32428..13b2ce2939f 100644
--- a/apps/web/src/app/vault/individual-vault/vault-header/vault-header.component.ts
+++ b/apps/web/src/app/vault/individual-vault/vault-header/vault-header.component.ts
@@ -1,5 +1,3 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import { CommonModule } from "@angular/common";
 import { ChangeDetectionStrategy, Component, EventEmitter, Input, Output } from "@angular/core";
 import { Router } from "@angular/router";
@@ -60,10 +58,10 @@ export class VaultHeaderComponent {
    * Boolean to determine the loading state of the header.
    * Shows a loading spinner if set to true
    */
-  @Input() loading: boolean;
+  @Input() loading: boolean = true;
 
   /** Current active filter */
-  @Input() filter: RoutedVaultFilterModel;
+  @Input() filter: RoutedVaultFilterModel | undefined;
 
   /** All organizations that can be shown */
   @Input() organizations: Organization[] = [];
@@ -72,7 +70,7 @@ export class VaultHeaderComponent {
   @Input() collection?: TreeNode<CollectionView>;
 
   /** Whether 'Collection' option is shown in the 'New' dropdown */
-  @Input() canCreateCollections: boolean;
+  @Input() canCreateCollections: boolean = false;
 
   /** Emits an event when the new item button is clicked in the header */
   @Output() onAddCipher = new EventEmitter<CipherType | undefined>();
@@ -106,7 +104,7 @@ export class VaultHeaderComponent {
       return this.collection.node.organizationId;
     }
 
-    if (this.filter.organizationId !== undefined) {
+    if (this.filter?.organizationId !== undefined) {
       return this.filter.organizationId;
     }
 
@@ -119,10 +117,14 @@ export class VaultHeaderComponent {
   }
 
   protected get showBreadcrumbs() {
-    return this.filter.collectionId !== undefined && this.filter.collectionId !== All;
+    return this.filter?.collectionId !== undefined && this.filter.collectionId !== All;
   }
 
   protected get title() {
+    if (this.filter === undefined) {
+      return "";
+    }
+
     if (this.filter.collectionId === Unassigned) {
       return this.i18nService.t("unassigned");
     }
@@ -144,7 +146,7 @@ export class VaultHeaderComponent {
   }
 
   protected get icon() {
-    return this.filter.collectionId && this.filter.collectionId !== All
+    return this.filter?.collectionId && this.filter.collectionId !== All
       ? "bwi-collection-shared"
       : "";
   }
diff --git a/libs/admin-console/src/common/collections/models/collection-admin.view.ts b/libs/admin-console/src/common/collections/models/collection-admin.view.ts
index cfc9996cd7a..dd7a57013ca 100644
--- a/libs/admin-console/src/common/collections/models/collection-admin.view.ts
+++ b/libs/admin-console/src/common/collections/models/collection-admin.view.ts
@@ -1,5 +1,3 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import { Organization } from "@bitwarden/common/admin-console/models/domain/organization";
 
 import { CollectionAccessSelectionView } from "./collection-access-selection.view";
@@ -16,12 +14,12 @@ export class CollectionAdminView extends CollectionView {
    * Flag indicating the collection has no active user or group assigned to it with CanManage permissions
    * In this case, the collection can be managed by admins/owners or custom users with appropriate permissions
    */
-  unmanaged: boolean;
+  unmanaged: boolean = false;
 
   /**
    * Flag indicating the user has been explicitly assigned to this Collection
    */
-  assigned: boolean;
+  assigned: boolean = false;
 
   constructor(response?: CollectionAccessDetailsResponse) {
     super(response);
@@ -45,6 +43,10 @@ export class CollectionAdminView extends CollectionView {
    * Returns true if the user can edit a collection (including user and group access) from the Admin Console.
    */
   override canEdit(org: Organization): boolean {
+    if (this.isDefaultCollection) {
+      return false;
+    }
+
     return (
       org?.canEditAnyCollection ||
       (this.unmanaged && org?.canEditUnmanagedCollections) ||
@@ -56,6 +58,10 @@ export class CollectionAdminView extends CollectionView {
    * Returns true if the user can delete a collection from the Admin Console.
    */
   override canDelete(org: Organization): boolean {
+    if (this.isDefaultCollection) {
+      return false;
+    }
+
     return org?.canDeleteAnyCollection || super.canDelete(org);
   }
 
@@ -63,6 +69,10 @@ export class CollectionAdminView extends CollectionView {
    * Whether the user can modify user access to this collection
    */
   canEditUserAccess(org: Organization): boolean {
+    if (this.isDefaultCollection) {
+      return false;
+    }
+
     return (
       (org.permissions.manageUsers && org.allowAdminAccessToAllCollectionItems) || this.canEdit(org)
     );
@@ -72,6 +82,10 @@ export class CollectionAdminView extends CollectionView {
    * Whether the user can modify group access to this collection
    */
   canEditGroupAccess(org: Organization): boolean {
+    if (this.isDefaultCollection) {
+      return false;
+    }
+
     return (
       (org.permissions.manageGroups && org.allowAdminAccessToAllCollectionItems) ||
       this.canEdit(org)
@@ -82,11 +96,13 @@ export class CollectionAdminView extends CollectionView {
    * Returns true if the user can view collection info and access in a read-only state from the Admin Console
    */
   override canViewCollectionInfo(org: Organization | undefined): boolean {
-    if (this.isUnassignedCollection) {
+    if (this.isUnassignedCollection || this.isDefaultCollection) {
       return false;
     }
+    const isAdmin = org?.isAdmin ?? false;
+    const permissions = org?.permissions.editAnyCollection ?? false;
 
-    return this.manage || org?.isAdmin || org?.permissions.editAnyCollection;
+    return this.manage || isAdmin || permissions;
   }
 
   /**
diff --git a/libs/admin-console/src/common/collections/models/collection.view.ts b/libs/admin-console/src/common/collections/models/collection.view.ts
index 7baf2e2b718..bce1d558f96 100644
--- a/libs/admin-console/src/common/collections/models/collection.view.ts
+++ b/libs/admin-console/src/common/collections/models/collection.view.ts
@@ -1,27 +1,25 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import { Jsonify } from "type-fest";
 
 import { Organization } from "@bitwarden/common/admin-console/models/domain/organization";
 import { View } from "@bitwarden/common/models/view/view";
 import { ITreeNodeObject } from "@bitwarden/common/vault/models/domain/tree-node";
 
-import { Collection, CollectionType } from "./collection";
+import { Collection, CollectionType, CollectionTypes } from "./collection";
 import { CollectionAccessDetailsResponse } from "./collection.response";
 
 export const NestingDelimiter = "/";
 
 export class CollectionView implements View, ITreeNodeObject {
-  id: string = null;
-  organizationId: string = null;
-  name: string = null;
-  externalId: string = null;
+  id: string | undefined;
+  organizationId: string | undefined;
+  name: string | undefined;
+  externalId: string | undefined;
   // readOnly applies to the items within a collection
-  readOnly: boolean = null;
-  hidePasswords: boolean = null;
-  manage: boolean = null;
-  assigned: boolean = null;
-  type: CollectionType = null;
+  readOnly: boolean = false;
+  hidePasswords: boolean = false;
+  manage: boolean = false;
+  assigned: boolean = false;
+  type: CollectionType = CollectionTypes.SharedCollection;
 
   constructor(c?: Collection | CollectionAccessDetailsResponse) {
     if (!c) {
@@ -57,7 +55,11 @@ export class CollectionView implements View, ITreeNodeObject {
    * Returns true if the user can edit a collection (including user and group access) from the individual vault.
    * Does not include admin permissions - see {@link CollectionAdminView.canEdit}.
    */
-  canEdit(org: Organization): boolean {
+  canEdit(org: Organization | undefined): boolean {
+    if (this.isDefaultCollection) {
+      return false;
+    }
+
     if (org != null && org.id !== this.organizationId) {
       throw new Error(
         "Id of the organization provided does not match the org id of the collection.",
@@ -71,7 +73,7 @@ export class CollectionView implements View, ITreeNodeObject {
    * Returns true if the user can delete a collection from the individual vault.
    * Does not include admin permissions - see {@link CollectionAdminView.canDelete}.
    */
-  canDelete(org: Organization): boolean {
+  canDelete(org: Organization | undefined): boolean {
     if (org != null && org.id !== this.organizationId) {
       throw new Error(
         "Id of the organization provided does not match the org id of the collection.",
@@ -81,7 +83,7 @@ export class CollectionView implements View, ITreeNodeObject {
     const canDeleteManagedCollections = !org?.limitCollectionDeletion || org.isAdmin;
 
     // Only use individual permissions, not admin permissions
-    return canDeleteManagedCollections && this.manage;
+    return canDeleteManagedCollections && this.manage && !this.isDefaultCollection;
   }
 
   /**
@@ -94,4 +96,8 @@ export class CollectionView implements View, ITreeNodeObject {
   static fromJSON(obj: Jsonify<CollectionView>) {
     return Object.assign(new CollectionView(new Collection()), obj);
   }
+
+  get isDefaultCollection() {
+    return this.type == CollectionTypes.DefaultUserCollection;
+  }
 }
diff --git a/libs/angular/src/vault/services/custom-nudges-services/empty-vault-nudge.service.ts b/libs/angular/src/vault/services/custom-nudges-services/empty-vault-nudge.service.ts
index 8302ff541aa..d90ae06a75f 100644
--- a/libs/angular/src/vault/services/custom-nudges-services/empty-vault-nudge.service.ts
+++ b/libs/angular/src/vault/services/custom-nudges-services/empty-vault-nudge.service.ts
@@ -42,7 +42,7 @@ export class EmptyVaultNudgeService extends DefaultSingleNudgeService {
         const orgIds = new Set(orgs.map((org) => org.id));
         const canCreateCollections = orgs.some((org) => org.canCreateNewCollections);
         const hasManageCollections = collections.some(
-          (c) => c.manage && orgIds.has(c.organizationId),
+          (c) => c.manage && orgIds.has(c.organizationId!),
         );
 
         // When the user has dismissed the nudge or spotlight, return the nudge status directly
diff --git a/libs/angular/src/vault/services/custom-nudges-services/vault-settings-import-nudge.service.ts b/libs/angular/src/vault/services/custom-nudges-services/vault-settings-import-nudge.service.ts
index 2d86c76dff7..df0403ba4ab 100644
--- a/libs/angular/src/vault/services/custom-nudges-services/vault-settings-import-nudge.service.ts
+++ b/libs/angular/src/vault/services/custom-nudges-services/vault-settings-import-nudge.service.ts
@@ -46,7 +46,7 @@ export class VaultSettingsImportNudgeService extends DefaultSingleNudgeService {
         const orgIds = new Set(orgs.map((org) => org.id));
         const canCreateCollections = orgs.some((org) => org.canCreateNewCollections);
         const hasManageCollections = collections.some(
-          (c) => c.manage && orgIds.has(c.organizationId),
+          (c) => c.manage && orgIds.has(c.organizationId!),
         );
 
         // When the user has dismissed the nudge or spotlight, return the nudge status directly
diff --git a/libs/angular/src/vault/vault-filter/services/vault-filter.service.ts b/libs/angular/src/vault/vault-filter/services/vault-filter.service.ts
index fea57743055..0d633be868e 100644
--- a/libs/angular/src/vault/vault-filter/services/vault-filter.service.ts
+++ b/libs/angular/src/vault/vault-filter/services/vault-filter.service.ts
@@ -191,6 +191,9 @@ export function sortDefaultCollections(
     .sort((a, b) => {
       const aName = orgs.find((o) => o.id === a.organizationId)?.name ?? a.organizationId;
       const bName = orgs.find((o) => o.id === b.organizationId)?.name ?? b.organizationId;
+      if (!aName || !bName) {
+        throw new Error("Collection does not have an organizationId.");
+      }
       return collator.compare(aName, bName);
     });
   return [
diff --git a/libs/common/src/vault/models/domain/tree-node.ts b/libs/common/src/vault/models/domain/tree-node.ts
index 7af1d9e6ab4..7ba8e593908 100644
--- a/libs/common/src/vault/models/domain/tree-node.ts
+++ b/libs/common/src/vault/models/domain/tree-node.ts
@@ -16,6 +16,6 @@ export class TreeNode<T extends ITreeNodeObject> {
 }
 
 export interface ITreeNodeObject {
-  id: string;
-  name: string;
+  id: string | undefined;
+  name: string | undefined;
 }
diff --git a/libs/importer/src/importers/base-importer.ts b/libs/importer/src/importers/base-importer.ts
index 9033997a475..463d61dbbdf 100644
--- a/libs/importer/src/importers/base-importer.ts
+++ b/libs/importer/src/importers/base-importer.ts
@@ -279,7 +279,7 @@ export abstract class BaseImporter {
     result.collections = result.folders.map((f) => {
       const collection = new CollectionView();
       collection.name = f.name;
-      collection.id = f.id;
+      collection.id = f.id ?? undefined; // folder id may be null, which is not suitable for collections.
       return collection;
     });
     result.folderRelationships = [];
diff --git a/libs/vault/src/cipher-form/components/item-details/item-details-section.component.spec.ts b/libs/vault/src/cipher-form/components/item-details/item-details-section.component.spec.ts
index dfa0f9a89ca..db8e2007c61 100644
--- a/libs/vault/src/cipher-form/components/item-details/item-details-section.component.spec.ts
+++ b/libs/vault/src/cipher-form/components/item-details/item-details-section.component.spec.ts
@@ -31,7 +31,7 @@ const createMockCollection = (
   organizationId: string,
   readOnly = false,
   canEdit = true,
-) => {
+): CollectionView => {
   return {
     id,
     name,
@@ -42,6 +42,7 @@ const createMockCollection = (
     manage: true,
     assigned: true,
     type: CollectionTypes.DefaultUserCollection,
+    isDefaultCollection: true,
     canEditItems: jest.fn().mockReturnValue(canEdit),
     canEdit: jest.fn(),
     canDelete: jest.fn(),

From 5b1ddc91227f086a59662d55ec65bee8ab121b06 Mon Sep 17 00:00:00 2001
From: Vicki League <vleague@bitwarden.com>
Date: Fri, 18 Jul 2025 11:47:51 -0400
Subject: [PATCH 171/239] [CL-793] Exclude checkbox component from desktop
 global css (#15675)

---
 apps/desktop/src/scss/base.scss | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/apps/desktop/src/scss/base.scss b/apps/desktop/src/scss/base.scss
index 494e91529ee..a95d82dacd4 100644
--- a/apps/desktop/src/scss/base.scss
+++ b/apps/desktop/src/scss/base.scss
@@ -66,7 +66,7 @@ a {
   }
 }
 
-input:not(bit-form-field input),
+input:not(bit-form-field input, input[bitcheckbox]),
 select,
 textarea:not(bit-form-field textarea) {
   @include themify($themes) {

From 367f7a108cfa876ff5861699a0f0bc1e6ce2659c Mon Sep 17 00:00:00 2001
From: SmithThe4th <gsmith@bitwarden.com>
Date: Fri, 18 Jul 2025 14:09:19 -0400
Subject: [PATCH 172/239] Exclude Linked field type for ssh keys (#15662)

---
 .../add-edit-custom-field-dialog.component.ts              | 7 +++++--
 1 file changed, 5 insertions(+), 2 deletions(-)

diff --git a/libs/vault/src/cipher-form/components/custom-fields/add-edit-custom-field-dialog/add-edit-custom-field-dialog.component.ts b/libs/vault/src/cipher-form/components/custom-fields/add-edit-custom-field-dialog/add-edit-custom-field-dialog.component.ts
index 7ddcf902d70..7d56db4366b 100644
--- a/libs/vault/src/cipher-form/components/custom-fields/add-edit-custom-field-dialog/add-edit-custom-field-dialog.component.ts
+++ b/libs/vault/src/cipher-form/components/custom-fields/add-edit-custom-field-dialog/add-edit-custom-field-dialog.component.ts
@@ -71,8 +71,11 @@ export class AddEditCustomFieldDialogComponent {
       if (this.data.disallowHiddenField && option.value === FieldType.Hidden) {
         return false;
       }
-      // Filter out the Linked field type for Secure Notes
-      if (this.data.cipherType === CipherType.SecureNote) {
+      // Filter out the Linked field type for Secure Notes and SSH Keys
+      if (
+        this.data.cipherType === CipherType.SecureNote ||
+        this.data.cipherType === CipherType.SshKey
+      ) {
         return option.value !== FieldType.Linked;
       }
 

From 436b3567dc9894f14645fc7a30cdb327ea7dbe64 Mon Sep 17 00:00:00 2001
From: Jordan Aasen <166539328+jaasen-livefront@users.noreply.github.com>
Date: Fri, 18 Jul 2025 15:08:21 -0700
Subject: [PATCH 173/239] [PM-23478] - Can view org's cards in AC (#15669)

* properly filter restricted item types in AC

* fix storybook
---
 .../vault-items/vault-items.component.ts      | 25 ++++++++++++++++---
 .../vault-items/vault-items.stories.ts        |  1 +
 2 files changed, 22 insertions(+), 4 deletions(-)

diff --git a/apps/web/src/app/vault/components/vault-items/vault-items.component.ts b/apps/web/src/app/vault/components/vault-items/vault-items.component.ts
index e82b03a8815..79ba9a6d2e1 100644
--- a/apps/web/src/app/vault/components/vault-items/vault-items.component.ts
+++ b/apps/web/src/app/vault/components/vault-items/vault-items.component.ts
@@ -2,11 +2,16 @@
 // @ts-strict-ignore
 import { SelectionModel } from "@angular/cdk/collections";
 import { Component, EventEmitter, Input, Output } from "@angular/core";
+import { takeUntilDestroyed } from "@angular/core/rxjs-interop";
 import { Observable, combineLatest, map, of, startWith, switchMap } from "rxjs";
 
 import { CollectionView, Unassigned, CollectionAdminView } from "@bitwarden/admin-console/common";
 import { Organization } from "@bitwarden/common/admin-console/models/domain/organization";
 import { CipherAuthorizationService } from "@bitwarden/common/vault/services/cipher-authorization.service";
+import {
+  RestrictedCipherType,
+  RestrictedItemTypesService,
+} from "@bitwarden/common/vault/services/restricted-item-types.service";
 import {
   CipherViewLike,
   CipherViewLikeUtils,
@@ -85,8 +90,12 @@ export class VaultItemsComponent<C extends CipherViewLike> {
   protected canDeleteSelected$: Observable<boolean>;
   protected canRestoreSelected$: Observable<boolean>;
   protected disableMenu$: Observable<boolean>;
+  private restrictedTypes: RestrictedCipherType[] = [];
 
-  constructor(protected cipherAuthorizationService: CipherAuthorizationService) {
+  constructor(
+    protected cipherAuthorizationService: CipherAuthorizationService,
+    private restrictedItemTypesService: RestrictedItemTypesService,
+  ) {
     this.canDeleteSelected$ = this.selection.changed.pipe(
       startWith(null),
       switchMap(() => {
@@ -114,6 +123,11 @@ export class VaultItemsComponent<C extends CipherViewLike> {
       }),
     );
 
+    this.restrictedItemTypesService.restricted$.pipe(takeUntilDestroyed()).subscribe((types) => {
+      this.restrictedTypes = types;
+      this.refreshItems();
+    });
+
     this.canRestoreSelected$ = this.selection.changed.pipe(
       startWith(null),
       switchMap(() => {
@@ -342,9 +356,12 @@ export class VaultItemsComponent<C extends CipherViewLike> {
 
   private refreshItems() {
     const collections: VaultItem<C>[] = this.collections.map((collection) => ({ collection }));
-    const ciphers: VaultItem<C>[] = this.ciphers.map((cipher) => ({
-      cipher,
-    }));
+    const ciphers: VaultItem<C>[] = this.ciphers
+      .filter(
+        (cipher) =>
+          !this.restrictedItemTypesService.isCipherRestricted(cipher, this.restrictedTypes),
+      )
+      .map((cipher) => ({ cipher }));
     const items: VaultItem<C>[] = [].concat(collections).concat(ciphers);
 
     // All ciphers are selectable, collections only if they can be edited or deleted
diff --git a/apps/web/src/app/vault/components/vault-items/vault-items.stories.ts b/apps/web/src/app/vault/components/vault-items/vault-items.stories.ts
index 785c07fb634..78c4d21dede 100644
--- a/apps/web/src/app/vault/components/vault-items/vault-items.stories.ts
+++ b/apps/web/src/app/vault/components/vault-items/vault-items.stories.ts
@@ -139,6 +139,7 @@ export default {
           provide: RestrictedItemTypesService,
           useValue: {
             restricted$: of([]), // No restricted item types for this story
+            isCipherRestricted: () => false, // No restrictions for this story
           },
         },
       ],

From cdc811daf8fe9ee93e9d533cc5f082de45c6dded Mon Sep 17 00:00:00 2001
From: "bw-ghapp[bot]" <178206702+bw-ghapp[bot]@users.noreply.github.com>
Date: Sat, 19 Jul 2025 16:42:12 +0200
Subject: [PATCH 174/239] Autosync the updated translations (#15672)

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>
---
 apps/desktop/src/locales/af/messages.json    | 23 ++++++++
 apps/desktop/src/locales/ar/messages.json    | 23 ++++++++
 apps/desktop/src/locales/az/messages.json    | 27 ++++++++-
 apps/desktop/src/locales/be/messages.json    | 23 ++++++++
 apps/desktop/src/locales/bg/messages.json    | 23 ++++++++
 apps/desktop/src/locales/bn/messages.json    | 23 ++++++++
 apps/desktop/src/locales/bs/messages.json    | 23 ++++++++
 apps/desktop/src/locales/ca/messages.json    | 23 ++++++++
 apps/desktop/src/locales/cs/messages.json    | 23 ++++++++
 apps/desktop/src/locales/cy/messages.json    | 23 ++++++++
 apps/desktop/src/locales/da/messages.json    | 23 ++++++++
 apps/desktop/src/locales/de/messages.json    | 31 ++++++++--
 apps/desktop/src/locales/el/messages.json    | 23 ++++++++
 apps/desktop/src/locales/en_GB/messages.json | 23 ++++++++
 apps/desktop/src/locales/en_IN/messages.json | 23 ++++++++
 apps/desktop/src/locales/eo/messages.json    | 23 ++++++++
 apps/desktop/src/locales/es/messages.json    | 61 ++++++++++++++------
 apps/desktop/src/locales/et/messages.json    | 23 ++++++++
 apps/desktop/src/locales/eu/messages.json    | 23 ++++++++
 apps/desktop/src/locales/fa/messages.json    | 23 ++++++++
 apps/desktop/src/locales/fi/messages.json    | 23 ++++++++
 apps/desktop/src/locales/fil/messages.json   | 23 ++++++++
 apps/desktop/src/locales/fr/messages.json    | 23 ++++++++
 apps/desktop/src/locales/gl/messages.json    | 23 ++++++++
 apps/desktop/src/locales/he/messages.json    | 23 ++++++++
 apps/desktop/src/locales/hi/messages.json    | 23 ++++++++
 apps/desktop/src/locales/hr/messages.json    | 23 ++++++++
 apps/desktop/src/locales/hu/messages.json    | 23 ++++++++
 apps/desktop/src/locales/id/messages.json    | 23 ++++++++
 apps/desktop/src/locales/it/messages.json    | 23 ++++++++
 apps/desktop/src/locales/ja/messages.json    | 23 ++++++++
 apps/desktop/src/locales/ka/messages.json    | 23 ++++++++
 apps/desktop/src/locales/km/messages.json    | 23 ++++++++
 apps/desktop/src/locales/kn/messages.json    | 23 ++++++++
 apps/desktop/src/locales/ko/messages.json    | 23 ++++++++
 apps/desktop/src/locales/lt/messages.json    | 23 ++++++++
 apps/desktop/src/locales/lv/messages.json    | 23 ++++++++
 apps/desktop/src/locales/me/messages.json    | 23 ++++++++
 apps/desktop/src/locales/ml/messages.json    | 23 ++++++++
 apps/desktop/src/locales/mr/messages.json    | 23 ++++++++
 apps/desktop/src/locales/my/messages.json    | 23 ++++++++
 apps/desktop/src/locales/nb/messages.json    | 23 ++++++++
 apps/desktop/src/locales/ne/messages.json    | 23 ++++++++
 apps/desktop/src/locales/nl/messages.json    | 23 ++++++++
 apps/desktop/src/locales/nn/messages.json    | 23 ++++++++
 apps/desktop/src/locales/or/messages.json    | 23 ++++++++
 apps/desktop/src/locales/pl/messages.json    | 23 ++++++++
 apps/desktop/src/locales/pt_BR/messages.json | 23 ++++++++
 apps/desktop/src/locales/pt_PT/messages.json | 23 ++++++++
 apps/desktop/src/locales/ro/messages.json    | 23 ++++++++
 apps/desktop/src/locales/ru/messages.json    | 23 ++++++++
 apps/desktop/src/locales/si/messages.json    | 23 ++++++++
 apps/desktop/src/locales/sk/messages.json    | 23 ++++++++
 apps/desktop/src/locales/sl/messages.json    | 23 ++++++++
 apps/desktop/src/locales/sr/messages.json    | 23 ++++++++
 apps/desktop/src/locales/sv/messages.json    | 31 ++++++++--
 apps/desktop/src/locales/te/messages.json    | 23 ++++++++
 apps/desktop/src/locales/th/messages.json    | 23 ++++++++
 apps/desktop/src/locales/tr/messages.json    | 23 ++++++++
 apps/desktop/src/locales/uk/messages.json    | 23 ++++++++
 apps/desktop/src/locales/vi/messages.json    | 23 ++++++++
 apps/desktop/src/locales/zh_CN/messages.json | 27 ++++++++-
 apps/desktop/src/locales/zh_TW/messages.json | 23 ++++++++
 63 files changed, 1480 insertions(+), 31 deletions(-)

diff --git a/apps/desktop/src/locales/af/messages.json b/apps/desktop/src/locales/af/messages.json
index 68f389a40a0..3e539e48eb9 100644
--- a/apps/desktop/src/locales/af/messages.json
+++ b/apps/desktop/src/locales/af/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Kopieer bevestigingskode (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "Lengte"
   },
@@ -1425,6 +1439,9 @@
     "message": "Kopieer Sekureiteitskode",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "Premie-lidmaatskap"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Enable autotype shortcut"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
   }
 }
diff --git a/apps/desktop/src/locales/ar/messages.json b/apps/desktop/src/locales/ar/messages.json
index 7b2e220fa48..26aaf141dd2 100644
--- a/apps/desktop/src/locales/ar/messages.json
+++ b/apps/desktop/src/locales/ar/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "نسخ رمز التحقق (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "الطول"
   },
@@ -1425,6 +1439,9 @@
     "message": "نسخ رمز الأمان",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "العضوية المميزة"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Enable autotype shortcut"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
   }
 }
diff --git a/apps/desktop/src/locales/az/messages.json b/apps/desktop/src/locales/az/messages.json
index 6d6ce16b126..e5fee904d92 100644
--- a/apps/desktop/src/locales/az/messages.json
+++ b/apps/desktop/src/locales/az/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Doğrulama kodunu kopyala (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "Uzunluq"
   },
@@ -1425,6 +1439,9 @@
     "message": "Güvənlik kodunu kopyala",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "Premium üzvlük"
   },
@@ -3567,11 +3584,11 @@
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
   "uriAdvancedOption": {
-    "message": "Advanced options",
+    "message": "Qabaqcıl seçimlər",
     "description": "Advanced option placeholder for uri option component"
   },
   "warningCapitalized": {
-    "message": "Warning",
+    "message": "Xəbərdarlıq",
     "description": "Warning (should maintain locale-relevant capitalization)"
   },
   "success": {
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Enable autotype shortcut"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
   }
 }
diff --git a/apps/desktop/src/locales/be/messages.json b/apps/desktop/src/locales/be/messages.json
index ae3c8a0cc60..f4b58c89cac 100644
--- a/apps/desktop/src/locales/be/messages.json
+++ b/apps/desktop/src/locales/be/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Скапіяваць праверачны код (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "Даўжыня"
   },
@@ -1425,6 +1439,9 @@
     "message": "Скапіяваць код бяспекі",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "Прэміяльны статус"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Enable autotype shortcut"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
   }
 }
diff --git a/apps/desktop/src/locales/bg/messages.json b/apps/desktop/src/locales/bg/messages.json
index c67e1dfe829..cf74c69be46 100644
--- a/apps/desktop/src/locales/bg/messages.json
+++ b/apps/desktop/src/locales/bg/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Код за потвърждаване (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "Дължина"
   },
@@ -1425,6 +1439,9 @@
     "message": "Копиране на кода за сигурност",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "Платен абонамент"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Включване на клавишната комбинация за автоматично попълване"
+  },
+  "enableAutotypeDescription": {
+    "message": "Битуорден не проверява местата за въвеждане, така че се уверете, че сте в правилния прозорец, преди да ползвате клавишната комбинация."
   }
 }
diff --git a/apps/desktop/src/locales/bn/messages.json b/apps/desktop/src/locales/bn/messages.json
index 6f5ac9de909..4a39428590e 100644
--- a/apps/desktop/src/locales/bn/messages.json
+++ b/apps/desktop/src/locales/bn/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Copy verification code (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "দৈর্ঘ্য"
   },
@@ -1425,6 +1439,9 @@
     "message": "সুরক্ষা কোড অনুলিপিত করুন",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "প্রিমিয়াম সদস্যতা"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Enable autotype shortcut"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
   }
 }
diff --git a/apps/desktop/src/locales/bs/messages.json b/apps/desktop/src/locales/bs/messages.json
index 4600780eda5..5be68fe816f 100644
--- a/apps/desktop/src/locales/bs/messages.json
+++ b/apps/desktop/src/locales/bs/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Kopira Verifikacioni kod (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "Dužina"
   },
@@ -1425,6 +1439,9 @@
     "message": "Kopirajte sigurnosni kod",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "Premium članstvo"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Enable autotype shortcut"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
   }
 }
diff --git a/apps/desktop/src/locales/ca/messages.json b/apps/desktop/src/locales/ca/messages.json
index a28b3b3c6d4..ed49a360aa5 100644
--- a/apps/desktop/src/locales/ca/messages.json
+++ b/apps/desktop/src/locales/ca/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Copia codi de verificació (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "Longitud"
   },
@@ -1425,6 +1439,9 @@
     "message": "Copia el codi de seguretat",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "Subscripció Premium"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Enable autotype shortcut"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
   }
 }
diff --git a/apps/desktop/src/locales/cs/messages.json b/apps/desktop/src/locales/cs/messages.json
index 8c725808a98..11eb2113bd2 100644
--- a/apps/desktop/src/locales/cs/messages.json
+++ b/apps/desktop/src/locales/cs/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Kopírovat ověřovací kód (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "Délka"
   },
@@ -1425,6 +1439,9 @@
     "message": "Kopírovat bezpečnostní kód",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "Prémiové členství"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Povolit zkratku automatického psaní"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden neověřuje umístění vstupu. Před použitím zkratky se ujistěte, že jste ve správném okně a poli."
   }
 }
diff --git a/apps/desktop/src/locales/cy/messages.json b/apps/desktop/src/locales/cy/messages.json
index 3b3afba9415..e3db70bf152 100644
--- a/apps/desktop/src/locales/cy/messages.json
+++ b/apps/desktop/src/locales/cy/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Copy verification code (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "Length"
   },
@@ -1425,6 +1439,9 @@
     "message": "Copy security code",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "Premium membership"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Enable autotype shortcut"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
   }
 }
diff --git a/apps/desktop/src/locales/da/messages.json b/apps/desktop/src/locales/da/messages.json
index cf60c7a04cb..47df4e98b3f 100644
--- a/apps/desktop/src/locales/da/messages.json
+++ b/apps/desktop/src/locales/da/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Kopiér bekræftelseskode (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "Længde"
   },
@@ -1425,6 +1439,9 @@
     "message": "Kopiér bekræftelseskode",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "Premium-medlemskab"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Enable autotype shortcut"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
   }
 }
diff --git a/apps/desktop/src/locales/de/messages.json b/apps/desktop/src/locales/de/messages.json
index 6e2b172b97c..87ddaae531a 100644
--- a/apps/desktop/src/locales/de/messages.json
+++ b/apps/desktop/src/locales/de/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Verifizierungscode (TOTP) kopieren"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "Länge"
   },
@@ -1425,6 +1439,9 @@
     "message": "Sicherheitscode kopieren",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "Kartennummer"
+  },
   "premiumMembership": {
     "message": "Premium-Mitgliedschaft"
   },
@@ -2411,7 +2428,7 @@
     "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
   },
   "accountRecoveryUpdateMasterPasswordSubtitle": {
-    "message": "Change your master password to complete account recovery."
+    "message": "Ändere dein Master-Passwort, um die Kontowiederherstellung abzuschließen."
   },
   "updateMasterPasswordSubtitle": {
     "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
@@ -3154,7 +3171,7 @@
     "message": "Admin-Genehmigung anfragen"
   },
   "unableToCompleteLogin": {
-    "message": "Unable to complete login"
+    "message": "Anmeldung kann nicht abgeschlossen werden"
   },
   "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
     "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
@@ -3563,7 +3580,7 @@
     "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
   },
   "uriMatchWarningDialogLink": {
-    "message": "More about match detection",
+    "message": "Mehr über die Übereinstimmungs-Erkennung",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
   "uriAdvancedOption": {
@@ -3571,7 +3588,7 @@
     "description": "Advanced option placeholder for uri option component"
   },
   "warningCapitalized": {
-    "message": "Warning",
+    "message": "Warnung",
     "description": "Warning (should maintain locale-relevant capitalization)"
   },
   "success": {
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Enable autotype shortcut"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
   }
 }
diff --git a/apps/desktop/src/locales/el/messages.json b/apps/desktop/src/locales/el/messages.json
index 239351d406d..2f2a3cf914c 100644
--- a/apps/desktop/src/locales/el/messages.json
+++ b/apps/desktop/src/locales/el/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Αντιγραφή κωδικού επαλήθευσης (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "Μήκος"
   },
@@ -1425,6 +1439,9 @@
     "message": "Αντιγραφή κωδικού ασφαλείας",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "Συνδρομή Premium"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Enable autotype shortcut"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
   }
 }
diff --git a/apps/desktop/src/locales/en_GB/messages.json b/apps/desktop/src/locales/en_GB/messages.json
index 57ada476677..f73e373d825 100644
--- a/apps/desktop/src/locales/en_GB/messages.json
+++ b/apps/desktop/src/locales/en_GB/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Copy verification code (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "Length"
   },
@@ -1425,6 +1439,9 @@
     "message": "Copy security code",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "Premium membership"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Enable autotype shortcut"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
   }
 }
diff --git a/apps/desktop/src/locales/en_IN/messages.json b/apps/desktop/src/locales/en_IN/messages.json
index 6c9d211bf13..ee0e0dc276f 100644
--- a/apps/desktop/src/locales/en_IN/messages.json
+++ b/apps/desktop/src/locales/en_IN/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Copy Verification Code (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "Length"
   },
@@ -1425,6 +1439,9 @@
     "message": "Copy security code",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "Premium membership"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Enable autotype shortcut"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
   }
 }
diff --git a/apps/desktop/src/locales/eo/messages.json b/apps/desktop/src/locales/eo/messages.json
index 26e6aefb83c..5bfde4d51c0 100644
--- a/apps/desktop/src/locales/eo/messages.json
+++ b/apps/desktop/src/locales/eo/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Kopii la kontrolan kodon (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "Longo"
   },
@@ -1425,6 +1439,9 @@
     "message": "Kopii sekurigan kodon",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "Premium membership"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Enable autotype shortcut"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
   }
 }
diff --git a/apps/desktop/src/locales/es/messages.json b/apps/desktop/src/locales/es/messages.json
index eb02eca59ba..f839e9c8634 100644
--- a/apps/desktop/src/locales/es/messages.json
+++ b/apps/desktop/src/locales/es/messages.json
@@ -190,7 +190,7 @@
     "message": "Clave pública"
   },
   "sshFingerprint": {
-    "message": "Fingerprint"
+    "message": "Huella digital"
   },
   "sshKeyAlgorithm": {
     "message": "Tipo de clave"
@@ -229,7 +229,7 @@
     "message": "Por favor, desbloquea tu caja fuerte para aprobar la solicitud de clave SSH."
   },
   "sshAgentUnlockTimeout": {
-    "message": "SSH key request timed out."
+    "message": "La solicitud de clave SSH ha expirado."
   },
   "enableSshAgent": {
     "message": "Habilitar agente SSH"
@@ -244,7 +244,7 @@
     "message": "Solicitar autorización al usar el agente SSH"
   },
   "sshAgentPromptBehaviorDesc": {
-    "message": "Choose how to handle SSH-agent authorization requests."
+    "message": "Elige como gestionar las solicitudes de autorización del agente SSH."
   },
   "sshAgentPromptBehaviorHelp": {
     "message": "Recordar autorizaciones SSH"
@@ -467,7 +467,7 @@
     "message": "Use checkboxes if you'd like to autofill a form's checkbox, like a remember email"
   },
   "linkedHelpText": {
-    "message": "Use a linked field when you are experiencing autofill issues for a specific website."
+    "message": "Usa un campo enlazado cuando estés experimentando problemas de autocompletado para un sitio web específico."
   },
   "linkedLabelHelpText": {
     "message": "Enter the the field's html id, name, aria-label, or placeholder."
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Copiar código de verificación (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "Longitud"
   },
@@ -1022,7 +1036,7 @@
     "message": "Tiempo de autenticación agotado"
   },
   "authenticationSessionTimedOut": {
-    "message": "The authentication session timed out. Please restart the login process."
+    "message": "La sesión de autenticación ha expirado. Por favor, inicia de nuevo el proceso de inicio de sesión."
   },
   "selfHostBaseUrl": {
     "message": "URL del servidor autoalojado",
@@ -1425,6 +1439,9 @@
     "message": "Copiar código de seguridad",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "Membresía Premium"
   },
@@ -2393,7 +2410,7 @@
     "message": "Esta acción está protegida. Para continuar, vuelva a introducir su contraseña maestra para verificar su identidad."
   },
   "masterPasswordSuccessfullySet": {
-    "message": "Master password successfully set"
+    "message": "Contraseña maestra establecida correctamente"
   },
   "updatedMasterPassword": {
     "message": "Contraseña maestra actualizada"
@@ -2408,13 +2425,13 @@
     "message": "Tu contraseña maestra no cumple con una o más de las políticas de tu organización. Para acceder a la caja fuerte, debes actualizar tu contraseña maestra ahora. Proceder te desconectará de tu sesión actual, requiriendo que vuelva a iniciar sesión. Las sesiones activas en otros dispositivos pueden seguir estando activas durante hasta una hora."
   },
   "changePasswordWarning": {
-    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+    "message": "Tras cambiar tu contraseña tendrás que iniciar sesión con tu nueva contraseña. Las sesiones activas en otros dispositivos se cerrarán en una hora."
   },
   "accountRecoveryUpdateMasterPasswordSubtitle": {
-    "message": "Change your master password to complete account recovery."
+    "message": "Cambia tu contraseña maestra para completar la recuperación de la cuenta."
   },
   "updateMasterPasswordSubtitle": {
-    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+    "message": "Tu contraseña maestra no cumple con los requisitos de esta organización. Cambia tu contraseña maestra para continuar."
   },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Your organization has disabled trusted device encryption. Please set a master password to access your vault."
@@ -2528,7 +2545,7 @@
     "message": "Contraseña maestra eliminada."
   },
   "removeMasterPasswordForOrganizationUserKeyConnector": {
-    "message": "A master password is no longer required for members of the following organization. Please confirm the domain below with your organization administrator."
+    "message": "Ya no es necesaria una contraseña maestra para los miembros de la siguiente organización. Por favor, confirma el dominio que aparece a continuación con el administrador de tu organización."
   },
   "organizationName": {
     "message": "Nombre de la organización"
@@ -2597,7 +2614,7 @@
     }
   },
   "exportingIndividualVaultWithAttachmentsDescription": {
-    "message": "Only the individual vault items including attachments associated with $EMAIL$ will be exported. Organization vault items will not be included",
+    "message": "Solo los elementos individuales de la caja fuerte, incluyendo adjuntos asociados a $EMAIL$, serán exportados. Los elementos de la caja fuerte de la organización no se incluirán",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -2954,7 +2971,7 @@
     "message": "aplicación web"
   },
   "notificationSentDevicePart2": {
-    "message": "Make sure the Fingerprint phrase matches the one below before approving."
+    "message": "Asegúrate de que la frase de la Huella digital coincide con la siguiente antes de aprobar."
   },
   "needAnotherOptionV1": {
     "message": "¿Necesitas otra opción?"
@@ -3154,10 +3171,10 @@
     "message": "Solicitar aprobación del administrador"
   },
   "unableToCompleteLogin": {
-    "message": "Unable to complete login"
+    "message": "No se puede completar el inicio de sesión"
   },
   "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
-    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+    "message": "Necesitas iniciar sesión en un dispositivo de confianza o pedir a tu administrador que te asigne una contraseña."
   },
   "region": {
     "message": "Región"
@@ -3212,10 +3229,10 @@
     "message": "La organización no es de confianza"
   },
   "emergencyAccessTrustWarning": {
-    "message": "For the security of your account, only confirm if you have granted emergency access to this user and their fingerprint matches what is displayed in their account"
+    "message": "Por la seguridad de tu cuenta, confirma únicamente si has otorgado acceso de emergencia a este usuario y que su huella digital coincida con la mostrada en su cuenta"
   },
   "orgTrustWarning": {
-    "message": "For the security of your account, only proceed if you are a member of this organization, have account recovery enabled, and the fingerprint displayed below matches the organization's fingerprint."
+    "message": "Por la seguridad de tu cuenta, procede únicamente si eres un miembro de esta organización, tienes la recuperación de la cuenta activada y la huella digital mostrada a continuación coincide con la huella digital de la organización."
   },
   "orgTrustWarning1": {
     "message": "This organization has an Enterprise policy that will enroll you in account recovery. Enrollment will allow organization administrators to change your password. Only proceed if you recognize this organization and the fingerprint phrase displayed below matches the organization's fingerprint."
@@ -3567,11 +3584,11 @@
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
   "uriAdvancedOption": {
-    "message": "Advanced options",
+    "message": "Opciones avanzadas",
     "description": "Advanced option placeholder for uri option component"
   },
   "warningCapitalized": {
-    "message": "Warning",
+    "message": "Advertencia",
     "description": "Warning (should maintain locale-relevant capitalization)"
   },
   "success": {
@@ -3764,7 +3781,7 @@
     "message": "Actualización de la extensión requerida"
   },
   "updateBrowserOrDisableFingerprintDialogMessage": {
-    "message": "The browser extension you are using is out of date. Please update it or disable browser integration fingerprint validation in the desktop app settings."
+    "message": "La extensión del navegador que estás utilizando está desactualizada. Por favor, actualízala o desactiva la integración del navegador de la validación de la huella digital en los ajustes de la aplicación de escritorio."
   },
   "changeAtRiskPassword": {
     "message": "Cambiar contraseña en riesgo"
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Activar atajo de autoescritura"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden no valida las ubicaciones de entrada, asegúrate de que estás en la ventana y en el capo correctos antes de usar el atajo."
   }
 }
diff --git a/apps/desktop/src/locales/et/messages.json b/apps/desktop/src/locales/et/messages.json
index 4b848d9ef5c..be7628d2d34 100644
--- a/apps/desktop/src/locales/et/messages.json
+++ b/apps/desktop/src/locales/et/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Kopeeri Kinnituskood (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "Pikkus"
   },
@@ -1425,6 +1439,9 @@
     "message": "Kopeeri turvakood",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "Preemium versioon"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Enable autotype shortcut"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
   }
 }
diff --git a/apps/desktop/src/locales/eu/messages.json b/apps/desktop/src/locales/eu/messages.json
index aae6880294d..0c4b2f4d836 100644
--- a/apps/desktop/src/locales/eu/messages.json
+++ b/apps/desktop/src/locales/eu/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Kopiatu egiaztatze-kodea (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "Luzera"
   },
@@ -1425,6 +1439,9 @@
     "message": "Kopiatu segurtasun-kodea",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "Premium bazkidea"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Enable autotype shortcut"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
   }
 }
diff --git a/apps/desktop/src/locales/fa/messages.json b/apps/desktop/src/locales/fa/messages.json
index 4b9696887be..8aefda20bf4 100644
--- a/apps/desktop/src/locales/fa/messages.json
+++ b/apps/desktop/src/locales/fa/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "کپی کد تأیید (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "طول"
   },
@@ -1425,6 +1439,9 @@
     "message": "کپی کد امنیتی",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "عضویت پرمیوم"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Enable autotype shortcut"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
   }
 }
diff --git a/apps/desktop/src/locales/fi/messages.json b/apps/desktop/src/locales/fi/messages.json
index 6c13f322aca..b334bc61ece 100644
--- a/apps/desktop/src/locales/fi/messages.json
+++ b/apps/desktop/src/locales/fi/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Kopioi todennuskoodi (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "Pituus"
   },
@@ -1425,6 +1439,9 @@
     "message": "Kopioi turvakoodi",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "Premium-jäsenyys"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Enable autotype shortcut"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
   }
 }
diff --git a/apps/desktop/src/locales/fil/messages.json b/apps/desktop/src/locales/fil/messages.json
index cfa39fd71f3..723d324bf70 100644
--- a/apps/desktop/src/locales/fil/messages.json
+++ b/apps/desktop/src/locales/fil/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Kopyahin ang verification code (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "Kahabaan"
   },
@@ -1425,6 +1439,9 @@
     "message": "Kopyahin ang code ng seguridad",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "Pagiging miyembro ng premium"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Enable autotype shortcut"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
   }
 }
diff --git a/apps/desktop/src/locales/fr/messages.json b/apps/desktop/src/locales/fr/messages.json
index 387c25ec44c..b06308b2906 100644
--- a/apps/desktop/src/locales/fr/messages.json
+++ b/apps/desktop/src/locales/fr/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Copier le code de vérification (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "Longueur"
   },
@@ -1425,6 +1439,9 @@
     "message": "Copier le code de sécurité",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "Adhésion Premium"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Enable autotype shortcut"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
   }
 }
diff --git a/apps/desktop/src/locales/gl/messages.json b/apps/desktop/src/locales/gl/messages.json
index 304d07ee3cd..3d240ff77e8 100644
--- a/apps/desktop/src/locales/gl/messages.json
+++ b/apps/desktop/src/locales/gl/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Copy verification code (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "Length"
   },
@@ -1425,6 +1439,9 @@
     "message": "Copy security code",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "Premium membership"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Enable autotype shortcut"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
   }
 }
diff --git a/apps/desktop/src/locales/he/messages.json b/apps/desktop/src/locales/he/messages.json
index 11a736eeaaa..5b76be7fff3 100644
--- a/apps/desktop/src/locales/he/messages.json
+++ b/apps/desktop/src/locales/he/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "העתקת קוד אימות (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "אורך"
   },
@@ -1425,6 +1439,9 @@
     "message": "העתק קוד אבטחה",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "חברות פרימיום"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "הפעלת קיצור הקלדה אוטומטית"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden לא מאמת את מקומות הקלט, נא לוודא שזה החלון והשדה הנכונים בטרם שימוש בקיצור הדרך."
   }
 }
diff --git a/apps/desktop/src/locales/hi/messages.json b/apps/desktop/src/locales/hi/messages.json
index 3d3a2c4d701..77b416118c9 100644
--- a/apps/desktop/src/locales/hi/messages.json
+++ b/apps/desktop/src/locales/hi/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Copy verification code (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "Length"
   },
@@ -1425,6 +1439,9 @@
     "message": "Copy security code",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "Premium membership"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Enable autotype shortcut"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
   }
 }
diff --git a/apps/desktop/src/locales/hr/messages.json b/apps/desktop/src/locales/hr/messages.json
index 699e4ad347d..b86e57a4811 100644
--- a/apps/desktop/src/locales/hr/messages.json
+++ b/apps/desktop/src/locales/hr/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Kopiraj kôd za provjeru (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "Duljina"
   },
@@ -1425,6 +1439,9 @@
     "message": "Kopiraj kontrolni broj",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "Premium članstvo"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Enable autotype shortcut"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
   }
 }
diff --git a/apps/desktop/src/locales/hu/messages.json b/apps/desktop/src/locales/hu/messages.json
index cd30ee6edaa..f5043724cbb 100644
--- a/apps/desktop/src/locales/hu/messages.json
+++ b/apps/desktop/src/locales/hu/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Ellenőrző kód másolása (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "Hossz"
   },
@@ -1425,6 +1439,9 @@
     "message": "Biztonsági kód másolása",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "Prémium tagság"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Automatikus típusú parancsikon engedélyezése"
+  },
+  "enableAutotypeDescription": {
+    "message": "A Bitwarden nem érvényesíti a beviteli helyeket, győződjünk meg róla, hogy a megfelelő ablakban és mezőben vagyunk, mielőtt a parancsikont használnánk."
   }
 }
diff --git a/apps/desktop/src/locales/id/messages.json b/apps/desktop/src/locales/id/messages.json
index 0634ad80722..f4627f805e0 100644
--- a/apps/desktop/src/locales/id/messages.json
+++ b/apps/desktop/src/locales/id/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Salin Kode Verifikasi (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "Panjang"
   },
@@ -1425,6 +1439,9 @@
     "message": "Salin Kode Keamanan",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "Keanggotaan Premium"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Enable autotype shortcut"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
   }
 }
diff --git a/apps/desktop/src/locales/it/messages.json b/apps/desktop/src/locales/it/messages.json
index 0476024f926..b89b25a745c 100644
--- a/apps/desktop/src/locales/it/messages.json
+++ b/apps/desktop/src/locales/it/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Copia codice di verifica (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "Lunghezza"
   },
@@ -1425,6 +1439,9 @@
     "message": "Copia codice di sicurezza",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "Abbonamento Premium"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Enable autotype shortcut"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
   }
 }
diff --git a/apps/desktop/src/locales/ja/messages.json b/apps/desktop/src/locales/ja/messages.json
index 7b8eddc693b..9bc5f987b18 100644
--- a/apps/desktop/src/locales/ja/messages.json
+++ b/apps/desktop/src/locales/ja/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "認証コード (TOTP) をコピー"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "長さ"
   },
@@ -1425,6 +1439,9 @@
     "message": "セキュリティコードのコピー",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "プレミアム会員"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Enable autotype shortcut"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
   }
 }
diff --git a/apps/desktop/src/locales/ka/messages.json b/apps/desktop/src/locales/ka/messages.json
index 7b98da76026..5f9d2fe17b3 100644
--- a/apps/desktop/src/locales/ka/messages.json
+++ b/apps/desktop/src/locales/ka/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Copy verification code (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "სიგრძე"
   },
@@ -1425,6 +1439,9 @@
     "message": "Copy security code",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "Premium membership"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Enable autotype shortcut"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
   }
 }
diff --git a/apps/desktop/src/locales/km/messages.json b/apps/desktop/src/locales/km/messages.json
index 304d07ee3cd..3d240ff77e8 100644
--- a/apps/desktop/src/locales/km/messages.json
+++ b/apps/desktop/src/locales/km/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Copy verification code (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "Length"
   },
@@ -1425,6 +1439,9 @@
     "message": "Copy security code",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "Premium membership"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Enable autotype shortcut"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
   }
 }
diff --git a/apps/desktop/src/locales/kn/messages.json b/apps/desktop/src/locales/kn/messages.json
index 8a1798ce386..b7664ad90bf 100644
--- a/apps/desktop/src/locales/kn/messages.json
+++ b/apps/desktop/src/locales/kn/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "ನಕಲಿಸಿ ಪರಿಶೀಲನೆ ಕೋಡ್ (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "ಉದ್ದ"
   },
@@ -1425,6 +1439,9 @@
     "message": "ಭದ್ರತಾ ಕೋಡ್ ಅನ್ನು ನಕಲಿಸಿ",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "ಪ್ರೀಮಿಯಂ ಸದಸ್ಯತ್ವ"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Enable autotype shortcut"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
   }
 }
diff --git a/apps/desktop/src/locales/ko/messages.json b/apps/desktop/src/locales/ko/messages.json
index 9127f4f76a9..ca23d5107c7 100644
--- a/apps/desktop/src/locales/ko/messages.json
+++ b/apps/desktop/src/locales/ko/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "인증 코드 (TOTP) 복사"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "길이"
   },
@@ -1425,6 +1439,9 @@
     "message": "보안 코드 복사",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "프리미엄 멤버십"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Enable autotype shortcut"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
   }
 }
diff --git a/apps/desktop/src/locales/lt/messages.json b/apps/desktop/src/locales/lt/messages.json
index 84e5a9d36a6..99c63ab4dab 100644
--- a/apps/desktop/src/locales/lt/messages.json
+++ b/apps/desktop/src/locales/lt/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Kopijuoti patvirtinimo kodą (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "Ilgis"
   },
@@ -1425,6 +1439,9 @@
     "message": "Kopijuoti saugos kodą",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "Premium narystė"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Enable autotype shortcut"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
   }
 }
diff --git a/apps/desktop/src/locales/lv/messages.json b/apps/desktop/src/locales/lv/messages.json
index d1bf2382e58..7c00a3a40a9 100644
--- a/apps/desktop/src/locales/lv/messages.json
+++ b/apps/desktop/src/locales/lv/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Ievietot Apliecinājuma kodu (TOTP) starpliktuvē"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "Garums"
   },
@@ -1425,6 +1439,9 @@
     "message": "Ievietot drošības kodu starpliktuvē",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "Premium dalība"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Iespējot automātiskās ievades saīsni"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden nepārbauda ievades atrašanās vietas, jāpārliecinās, ka atrodies pareizajā logā un laukā, pirms saīsnes izmantošanas."
   }
 }
diff --git a/apps/desktop/src/locales/me/messages.json b/apps/desktop/src/locales/me/messages.json
index 98794eed175..0929250c06f 100644
--- a/apps/desktop/src/locales/me/messages.json
+++ b/apps/desktop/src/locales/me/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Iskopiraj Verifikacioni Kod (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "Dužina"
   },
@@ -1425,6 +1439,9 @@
     "message": "Kopiraj siguronosni kod",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "Premijum članstvo"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Enable autotype shortcut"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
   }
 }
diff --git a/apps/desktop/src/locales/ml/messages.json b/apps/desktop/src/locales/ml/messages.json
index 9cb27605db5..a77ab04c0aa 100644
--- a/apps/desktop/src/locales/ml/messages.json
+++ b/apps/desktop/src/locales/ml/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Copy verification code (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "ദൈര്‍ഘ്യം"
   },
@@ -1425,6 +1439,9 @@
     "message": "സുരക്ഷാ കോഡ് പകർത്തുക",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "പ്രീമിയം അംഗത്വം"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Enable autotype shortcut"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
   }
 }
diff --git a/apps/desktop/src/locales/mr/messages.json b/apps/desktop/src/locales/mr/messages.json
index 304d07ee3cd..3d240ff77e8 100644
--- a/apps/desktop/src/locales/mr/messages.json
+++ b/apps/desktop/src/locales/mr/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Copy verification code (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "Length"
   },
@@ -1425,6 +1439,9 @@
     "message": "Copy security code",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "Premium membership"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Enable autotype shortcut"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
   }
 }
diff --git a/apps/desktop/src/locales/my/messages.json b/apps/desktop/src/locales/my/messages.json
index 4629ba25d93..b09ea6cdbf2 100644
--- a/apps/desktop/src/locales/my/messages.json
+++ b/apps/desktop/src/locales/my/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Copy verification code (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "Length"
   },
@@ -1425,6 +1439,9 @@
     "message": "Copy security code",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "Premium membership"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Enable autotype shortcut"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
   }
 }
diff --git a/apps/desktop/src/locales/nb/messages.json b/apps/desktop/src/locales/nb/messages.json
index 53125c8e290..dfa381fc3d0 100644
--- a/apps/desktop/src/locales/nb/messages.json
+++ b/apps/desktop/src/locales/nb/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Kopier verifiseringskode (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "Lengde"
   },
@@ -1425,6 +1439,9 @@
     "message": "Kopier sikkerhetskoden",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "Premium-medlemskap"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Enable autotype shortcut"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
   }
 }
diff --git a/apps/desktop/src/locales/ne/messages.json b/apps/desktop/src/locales/ne/messages.json
index 8ea29998406..56ccc79775c 100644
--- a/apps/desktop/src/locales/ne/messages.json
+++ b/apps/desktop/src/locales/ne/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "प्रमाणीकरण कोड (TOTP) प्रतिलिपि गर्नुहोस्"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "लम्बाइ"
   },
@@ -1425,6 +1439,9 @@
     "message": "Copy security code",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "Premium membership"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Enable autotype shortcut"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
   }
 }
diff --git a/apps/desktop/src/locales/nl/messages.json b/apps/desktop/src/locales/nl/messages.json
index 90669dd1c93..5301982ecdc 100644
--- a/apps/desktop/src/locales/nl/messages.json
+++ b/apps/desktop/src/locales/nl/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Verificatiecode kopiëren (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "$FIELD$, $CIPHERNAME$ kopiëren",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "Lengte"
   },
@@ -1425,6 +1439,9 @@
     "message": "Beveiligingscode kopiëren",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "kaartnummer"
+  },
   "premiumMembership": {
     "message": "Premium-abonnement"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Snelkoppeling autotype inschakelen"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden valideert de invoerlocaties niet, zorg ervoor dat je je in het juiste venster en veld bevindt voordat je de snelkoppeling gebruikt."
   }
 }
diff --git a/apps/desktop/src/locales/nn/messages.json b/apps/desktop/src/locales/nn/messages.json
index af6a64710a7..4c86afccbeb 100644
--- a/apps/desktop/src/locales/nn/messages.json
+++ b/apps/desktop/src/locales/nn/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Kopier verifiseringskoden (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "Lengd"
   },
@@ -1425,6 +1439,9 @@
     "message": "Kopier tryggleikskode",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "Premium-tinging"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Enable autotype shortcut"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
   }
 }
diff --git a/apps/desktop/src/locales/or/messages.json b/apps/desktop/src/locales/or/messages.json
index 3ce27e673b7..6db35fd307e 100644
--- a/apps/desktop/src/locales/or/messages.json
+++ b/apps/desktop/src/locales/or/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Copy verification code (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "Length"
   },
@@ -1425,6 +1439,9 @@
     "message": "Copy security code",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "Premium membership"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Enable autotype shortcut"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
   }
 }
diff --git a/apps/desktop/src/locales/pl/messages.json b/apps/desktop/src/locales/pl/messages.json
index b09bc908c47..9852c85554a 100644
--- a/apps/desktop/src/locales/pl/messages.json
+++ b/apps/desktop/src/locales/pl/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Kopiuj kod weryfikacyjny (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "Długość"
   },
@@ -1425,6 +1439,9 @@
     "message": "Kopiuj kod zabezpieczający",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "Konto Premium"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Enable autotype shortcut"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
   }
 }
diff --git a/apps/desktop/src/locales/pt_BR/messages.json b/apps/desktop/src/locales/pt_BR/messages.json
index ab65e0a4912..5e570920f55 100644
--- a/apps/desktop/src/locales/pt_BR/messages.json
+++ b/apps/desktop/src/locales/pt_BR/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Copiar Código de Verificação (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "Comprimento"
   },
@@ -1425,6 +1439,9 @@
     "message": "Copiar Código de Segurança",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "Assinatura Premium"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Enable autotype shortcut"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
   }
 }
diff --git a/apps/desktop/src/locales/pt_PT/messages.json b/apps/desktop/src/locales/pt_PT/messages.json
index 2b5d7e00f61..a9cb4fcd88e 100644
--- a/apps/desktop/src/locales/pt_PT/messages.json
+++ b/apps/desktop/src/locales/pt_PT/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Copiar código de verificação (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "Comprimento"
   },
@@ -1425,6 +1439,9 @@
     "message": "Copiar código de segurança",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "Subscrição Premium"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Ativar o atalho de introdução automática"
+  },
+  "enableAutotypeDescription": {
+    "message": "O Bitwarden não valida a introdução de localizações. Certifique-se de que está na janela e no campo corretos antes de utilizar o atalho."
   }
 }
diff --git a/apps/desktop/src/locales/ro/messages.json b/apps/desktop/src/locales/ro/messages.json
index e3608836d26..41a92900d63 100644
--- a/apps/desktop/src/locales/ro/messages.json
+++ b/apps/desktop/src/locales/ro/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Copiere cod de verificare (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "Lungime"
   },
@@ -1425,6 +1439,9 @@
     "message": "Copiere cod de securitate",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "Abonament Premium"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Enable autotype shortcut"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
   }
 }
diff --git a/apps/desktop/src/locales/ru/messages.json b/apps/desktop/src/locales/ru/messages.json
index 8991d3dacb0..b87ffc3cbcd 100644
--- a/apps/desktop/src/locales/ru/messages.json
+++ b/apps/desktop/src/locales/ru/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Скопировать код подтверждения (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Копировать $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "Длина"
   },
@@ -1425,6 +1439,9 @@
     "message": "Скопировать код безопасности",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "номер карты"
+  },
   "premiumMembership": {
     "message": "Премиум"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Включить автоввод ярлыка"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden не проверяет местоположение ввода, поэтому, прежде чем использовать ярлык, убедитесь, что вы находитесь в нужном окне и поле."
   }
 }
diff --git a/apps/desktop/src/locales/si/messages.json b/apps/desktop/src/locales/si/messages.json
index b50d0252f61..5567654af99 100644
--- a/apps/desktop/src/locales/si/messages.json
+++ b/apps/desktop/src/locales/si/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Copy verification code (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "Length"
   },
@@ -1425,6 +1439,9 @@
     "message": "Copy security code",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "Premium membership"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Enable autotype shortcut"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
   }
 }
diff --git a/apps/desktop/src/locales/sk/messages.json b/apps/desktop/src/locales/sk/messages.json
index 383e35f2826..49651fbcb7e 100644
--- a/apps/desktop/src/locales/sk/messages.json
+++ b/apps/desktop/src/locales/sk/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Kopírovať overovací kód (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Kopírovať $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "Dĺžka"
   },
@@ -1425,6 +1439,9 @@
     "message": "Kopírovať bezpečnostný kód",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "číslo karty"
+  },
   "premiumMembership": {
     "message": "Prémiové členstvo"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Povoliť skratku automatického písania"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden neoveruje miesto stupu, pred použitím skratky sa uistite, že ste v správnom okne a poli."
   }
 }
diff --git a/apps/desktop/src/locales/sl/messages.json b/apps/desktop/src/locales/sl/messages.json
index db25a4623ee..23bbae2d523 100644
--- a/apps/desktop/src/locales/sl/messages.json
+++ b/apps/desktop/src/locales/sl/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Kopiraj verifikacijsko kodo (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "Dolžina"
   },
@@ -1425,6 +1439,9 @@
     "message": "Kopiraj varnostno kodo",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "Premium članstvo"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Enable autotype shortcut"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
   }
 }
diff --git a/apps/desktop/src/locales/sr/messages.json b/apps/desktop/src/locales/sr/messages.json
index 514276fb136..c69b4ca8340 100644
--- a/apps/desktop/src/locales/sr/messages.json
+++ b/apps/desktop/src/locales/sr/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Копирај потврдни код (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "Дужина"
   },
@@ -1425,6 +1439,9 @@
     "message": "Копирај сигурносни код",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "Премијум чланство"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Enable autotype shortcut"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
   }
 }
diff --git a/apps/desktop/src/locales/sv/messages.json b/apps/desktop/src/locales/sv/messages.json
index 20140cb7ae0..067570eb002 100644
--- a/apps/desktop/src/locales/sv/messages.json
+++ b/apps/desktop/src/locales/sv/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Kopiera verifieringskod (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "Längd"
   },
@@ -1425,6 +1439,9 @@
     "message": "Kopiera säkerhetskod",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "Premium-medlemskap"
   },
@@ -3333,10 +3350,10 @@
     "message": "Nyckel"
   },
   "passkeyNotCopied": {
-    "message": "Nyckeln kommer inte att kopieras"
+    "message": "Inloggningsnyckeln kommer inte att kopieras"
   },
   "passkeyNotCopiedAlert": {
-    "message": "Nyckeln kommer inte att kopieras till det klonade objektet. Vill du klona det här objektet?"
+    "message": "Inloggningsnyckeln kommer inte att kopieras till det klonade objektet. Vill du klona det här objektet?"
   },
   "aliasDomain": {
     "message": "Aliasdomän"
@@ -3587,10 +3604,10 @@
     "message": "Inaktivera hårdvaruacceleration och starta om"
   },
   "removePasskey": {
-    "message": "Ta bort nyckel"
+    "message": "Ta bort inloggningsnyckel"
   },
   "passkeyRemoved": {
-    "message": "Nyckel borttagen"
+    "message": "Inloggningsnyckel borttagen"
   },
   "errorAssigningTargetCollection": {
     "message": "Fel vid tilldelning av målsamling."
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Aktivera genväg för automatisk inmatning"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden validerar inte inmatningsplatser, så se till att du är i rätt fönster och fält innan du använder genvägen."
   }
 }
diff --git a/apps/desktop/src/locales/te/messages.json b/apps/desktop/src/locales/te/messages.json
index 304d07ee3cd..3d240ff77e8 100644
--- a/apps/desktop/src/locales/te/messages.json
+++ b/apps/desktop/src/locales/te/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Copy verification code (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "Length"
   },
@@ -1425,6 +1439,9 @@
     "message": "Copy security code",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "Premium membership"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Enable autotype shortcut"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
   }
 }
diff --git a/apps/desktop/src/locales/th/messages.json b/apps/desktop/src/locales/th/messages.json
index 678346257f2..031c9bb6364 100644
--- a/apps/desktop/src/locales/th/messages.json
+++ b/apps/desktop/src/locales/th/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "คัดลอกรหัสยืนยัน (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "ความยาว"
   },
@@ -1425,6 +1439,9 @@
     "message": "คัดลอกรหัสรักษาความปลอดภัย",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "Premium Membership"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Enable autotype shortcut"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
   }
 }
diff --git a/apps/desktop/src/locales/tr/messages.json b/apps/desktop/src/locales/tr/messages.json
index 255f03025d0..b95c585c28f 100644
--- a/apps/desktop/src/locales/tr/messages.json
+++ b/apps/desktop/src/locales/tr/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Doğrulama kodunu kopyala (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Kopyala: $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "Uzunluk"
   },
@@ -1425,6 +1439,9 @@
     "message": "Güvenlik kodunu kopyala",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "kart numarası"
+  },
   "premiumMembership": {
     "message": "Premium üyelik"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Enable autotype shortcut"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
   }
 }
diff --git a/apps/desktop/src/locales/uk/messages.json b/apps/desktop/src/locales/uk/messages.json
index 649b3af622f..724959446d6 100644
--- a/apps/desktop/src/locales/uk/messages.json
+++ b/apps/desktop/src/locales/uk/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Копіювати код підтвердження (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "Довжина"
   },
@@ -1425,6 +1439,9 @@
     "message": "Копіювати код безпеки",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "Преміум статус"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Enable autotype shortcut"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
   }
 }
diff --git a/apps/desktop/src/locales/vi/messages.json b/apps/desktop/src/locales/vi/messages.json
index 42246285f80..d804c03b6cd 100644
--- a/apps/desktop/src/locales/vi/messages.json
+++ b/apps/desktop/src/locales/vi/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "Sao chép mã xác thực (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "Độ dài"
   },
@@ -1425,6 +1439,9 @@
     "message": "Sao chép mã bảo mật",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "Thành viên Cao Cấp"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Bật phím tắt tự động điền"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden không kiểm tra vị trí nhập liệu, hãy đảm bảo bạn đang ở trong đúng cửa sổ và trường nhập liệu trước khi dùng phím tắt."
   }
 }
diff --git a/apps/desktop/src/locales/zh_CN/messages.json b/apps/desktop/src/locales/zh_CN/messages.json
index 75d8925c4f7..fe8a61af825 100644
--- a/apps/desktop/src/locales/zh_CN/messages.json
+++ b/apps/desktop/src/locales/zh_CN/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "复制验证码 (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "长度"
   },
@@ -1425,6 +1439,9 @@
     "message": "复制安全码",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "高级会员"
   },
@@ -3154,7 +3171,7 @@
     "message": "请求管理员批准"
   },
   "unableToCompleteLogin": {
-    "message": "Unable to complete login"
+    "message": "无法完成登录"
   },
   "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
     "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
@@ -3563,7 +3580,7 @@
     "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
   },
   "uriMatchWarningDialogLink": {
-    "message": "More about match detection",
+    "message": "更多关于匹配检测",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
   "uriAdvancedOption": {
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "启用自动类型快捷方式"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden 不验证输入位置，请确保您在使用快捷键之前在正确的窗口和字段中。"
   }
 }
diff --git a/apps/desktop/src/locales/zh_TW/messages.json b/apps/desktop/src/locales/zh_TW/messages.json
index 88762ea9260..541e6e82658 100644
--- a/apps/desktop/src/locales/zh_TW/messages.json
+++ b/apps/desktop/src/locales/zh_TW/messages.json
@@ -572,6 +572,20 @@
   "copyVerificationCodeTotp": {
     "message": "複製驗證碼 (TOTP)"
   },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "length": {
     "message": "長度"
   },
@@ -1425,6 +1439,9 @@
     "message": "複製安全代碼",
     "description": "Copy credit card security code (CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "premiumMembership": {
     "message": "進階會員"
   },
@@ -3997,5 +4014,11 @@
         }
       }
     }
+  },
+  "enableAutotype": {
+    "message": "Enable autotype shortcut"
+  },
+  "enableAutotypeDescription": {
+    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
   }
 }

From ab9bbc8df84fe442310a31f65ac50405a8b06805 Mon Sep 17 00:00:00 2001
From: "bw-ghapp[bot]" <178206702+bw-ghapp[bot]@users.noreply.github.com>
Date: Sat, 19 Jul 2025 19:26:00 +0200
Subject: [PATCH 175/239] Autosync the updated translations (#15671)

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>
---
 apps/browser/src/_locales/ar/messages.json    | 140 ++++++++++++-
 apps/browser/src/_locales/az/messages.json    | 140 ++++++++++++-
 apps/browser/src/_locales/be/messages.json    | 140 ++++++++++++-
 apps/browser/src/_locales/bg/messages.json    | 140 ++++++++++++-
 apps/browser/src/_locales/bn/messages.json    | 140 ++++++++++++-
 apps/browser/src/_locales/bs/messages.json    | 140 ++++++++++++-
 apps/browser/src/_locales/ca/messages.json    | 140 ++++++++++++-
 apps/browser/src/_locales/cs/messages.json    | 140 ++++++++++++-
 apps/browser/src/_locales/cy/messages.json    | 140 ++++++++++++-
 apps/browser/src/_locales/da/messages.json    | 140 ++++++++++++-
 apps/browser/src/_locales/de/messages.json    | 144 ++++++++++++-
 apps/browser/src/_locales/el/messages.json    | 140 ++++++++++++-
 apps/browser/src/_locales/en_GB/messages.json | 140 ++++++++++++-
 apps/browser/src/_locales/en_IN/messages.json | 140 ++++++++++++-
 apps/browser/src/_locales/es/messages.json    | 140 ++++++++++++-
 apps/browser/src/_locales/et/messages.json    | 140 ++++++++++++-
 apps/browser/src/_locales/eu/messages.json    | 140 ++++++++++++-
 apps/browser/src/_locales/fa/messages.json    | 140 ++++++++++++-
 apps/browser/src/_locales/fi/messages.json    | 146 ++++++++++++-
 apps/browser/src/_locales/fil/messages.json   | 140 ++++++++++++-
 apps/browser/src/_locales/fr/messages.json    | 140 ++++++++++++-
 apps/browser/src/_locales/gl/messages.json    | 140 ++++++++++++-
 apps/browser/src/_locales/he/messages.json    | 140 ++++++++++++-
 apps/browser/src/_locales/hi/messages.json    | 140 ++++++++++++-
 apps/browser/src/_locales/hr/messages.json    | 140 ++++++++++++-
 apps/browser/src/_locales/hu/messages.json    | 140 ++++++++++++-
 apps/browser/src/_locales/id/messages.json    | 140 ++++++++++++-
 apps/browser/src/_locales/it/messages.json    | 140 ++++++++++++-
 apps/browser/src/_locales/ja/messages.json    | 140 ++++++++++++-
 apps/browser/src/_locales/ka/messages.json    | 140 ++++++++++++-
 apps/browser/src/_locales/km/messages.json    | 140 ++++++++++++-
 apps/browser/src/_locales/kn/messages.json    | 140 ++++++++++++-
 apps/browser/src/_locales/ko/messages.json    | 140 ++++++++++++-
 apps/browser/src/_locales/lt/messages.json    | 140 ++++++++++++-
 apps/browser/src/_locales/lv/messages.json    | 140 ++++++++++++-
 apps/browser/src/_locales/ml/messages.json    | 140 ++++++++++++-
 apps/browser/src/_locales/mr/messages.json    | 140 ++++++++++++-
 apps/browser/src/_locales/my/messages.json    | 140 ++++++++++++-
 apps/browser/src/_locales/nb/messages.json    | 140 ++++++++++++-
 apps/browser/src/_locales/ne/messages.json    | 140 ++++++++++++-
 apps/browser/src/_locales/nl/messages.json    | 140 ++++++++++++-
 apps/browser/src/_locales/nn/messages.json    | 140 ++++++++++++-
 apps/browser/src/_locales/or/messages.json    | 140 ++++++++++++-
 apps/browser/src/_locales/pl/messages.json    | 194 +++++++++++++++---
 apps/browser/src/_locales/pt_BR/messages.json | 140 ++++++++++++-
 apps/browser/src/_locales/pt_PT/messages.json | 140 ++++++++++++-
 apps/browser/src/_locales/ro/messages.json    | 140 ++++++++++++-
 apps/browser/src/_locales/ru/messages.json    | 140 ++++++++++++-
 apps/browser/src/_locales/si/messages.json    | 140 ++++++++++++-
 apps/browser/src/_locales/sk/messages.json    | 140 ++++++++++++-
 apps/browser/src/_locales/sl/messages.json    | 140 ++++++++++++-
 apps/browser/src/_locales/sr/messages.json    | 140 ++++++++++++-
 apps/browser/src/_locales/sv/messages.json    | 162 +++++++++++++--
 apps/browser/src/_locales/te/messages.json    | 140 ++++++++++++-
 apps/browser/src/_locales/th/messages.json    | 140 ++++++++++++-
 apps/browser/src/_locales/tr/messages.json    | 140 ++++++++++++-
 apps/browser/src/_locales/uk/messages.json    | 140 ++++++++++++-
 apps/browser/src/_locales/vi/messages.json    | 140 ++++++++++++-
 apps/browser/src/_locales/zh_CN/messages.json | 140 ++++++++++++-
 apps/browser/src/_locales/zh_TW/messages.json | 140 ++++++++++++-
 apps/browser/store/locales/sv/copy.resx       |   2 +-
 61 files changed, 8204 insertions(+), 284 deletions(-)

diff --git a/apps/browser/src/_locales/ar/messages.json b/apps/browser/src/_locales/ar/messages.json
index 02734de942b..d7aef05ab92 100644
--- a/apps/browser/src/_locales/ar/messages.json
+++ b/apps/browser/src/_locales/ar/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "رمز الأمان"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "مثال."
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Master password saved"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Remember this device to make future logins seamless"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "موافقة الجهاز مطلوبة. حدّد خيار الموافقة أدناه:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Copy $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/az/messages.json b/apps/browser/src/_locales/az/messages.json
index 64fa77c8683..67019f5cac7 100644
--- a/apps/browser/src/_locales/az/messages.json
+++ b/apps/browser/src/_locales/az/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "Güvənlik kodu"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "məs."
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "Tələb göndərildi"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Ana parol saxlanıldı"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Gələcək girişləri problemsiz etmək üçün bu cihazı xatırla"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Cihaz təsdiqi tələb olunur. Aşağıdan bir təsdiq variantı seçin:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Kopyala: $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/be/messages.json b/apps/browser/src/_locales/be/messages.json
index eb721e76850..a49899eaee0 100644
--- a/apps/browser/src/_locales/be/messages.json
+++ b/apps/browser/src/_locales/be/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "Код бяспекі"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "напр."
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Master password saved"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Remember this device to make future logins seamless"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Патрабуецца ўхваленне прылады. Выберыце параметры ўхвалення ніжэй:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Copy $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/bg/messages.json b/apps/browser/src/_locales/bg/messages.json
index dad53b42e36..b86493d7d5a 100644
--- a/apps/browser/src/_locales/bg/messages.json
+++ b/apps/browser/src/_locales/bg/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "Код за сигурност"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "напр."
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "Заявката е изпратена"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Главната парола е запазена"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Запомняне на това устройство, така че в бъдеще вписването да бъде по-лесно"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Изисква се одобрение на устройството. Изберете начин за одобрение по-долу:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Копиране на $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/bn/messages.json b/apps/browser/src/_locales/bn/messages.json
index d70378f146c..4e30612b9a6 100644
--- a/apps/browser/src/_locales/bn/messages.json
+++ b/apps/browser/src/_locales/bn/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "নিরাপত্তা কোড"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "উদাহরণ"
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Master password saved"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Remember this device to make future logins seamless"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Device approval required. Select an approval option below:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Copy $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/bs/messages.json b/apps/browser/src/_locales/bs/messages.json
index afe20ff55ca..be64d0bade5 100644
--- a/apps/browser/src/_locales/bs/messages.json
+++ b/apps/browser/src/_locales/bs/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "Security code"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "ex."
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Master password saved"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Remember this device to make future logins seamless"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Device approval required. Select an approval option below:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Copy $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/ca/messages.json b/apps/browser/src/_locales/ca/messages.json
index 29859f03dd0..f6c40da1096 100644
--- a/apps/browser/src/_locales/ca/messages.json
+++ b/apps/browser/src/_locales/ca/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "Codi de seguretat"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "ex."
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "Sol·licitud enviada"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Master password saved"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Remember this device to make future logins seamless"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Cal l'aprovació del dispositiu. Seleccioneu una opció d'aprovació a continuació:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Copy $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/cs/messages.json b/apps/browser/src/_locales/cs/messages.json
index 05135190fb4..86c1b650996 100644
--- a/apps/browser/src/_locales/cs/messages.json
+++ b/apps/browser/src/_locales/cs/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "Bezpečnostní kód"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "např."
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "Požadavek odeslán"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Požadavek na přihlášení byl schválen pro $EMAIL$ na $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "Pokus o přihlášení byl zamítnut z jiného zařízení. Pokud jste to Vy, zkuste se znovu přihlásit do zařízení."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Hlavní heslo bylo uloženo"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Zapamatovat si toto zařízení pro bezproblémové budoucí přihlášení"
   },
+  "manageDevices": {
+    "message": "Spravovat zařízení"
+  },
+  "currentSession": {
+    "message": "Aktuální relace"
+  },
+  "mobile": {
+    "message": "Mobil",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Rozšíření",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Počítač",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Webový trezor"
+  },
+  "webApp": {
+    "message": "Webová aplikace"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Čekající požadavek"
+  },
+  "firstLogin": {
+    "message": "První přihlášení"
+  },
+  "trusted": {
+    "message": "Důvěryhodný"
+  },
+  "needsApproval": {
+    "message": "Vyžaduje schválení"
+  },
+  "devices": {
+    "message": "Zařízení"
+  },
+  "accessAttemptBy": {
+    "message": "Pokus o přístup z $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Potvrdit přístup"
+  },
+  "denyAccess": {
+    "message": "Zamítnout přístup"
+  },
+  "time": {
+    "message": "Čas"
+  },
+  "deviceType": {
+    "message": "Typ zařízení"
+  },
+  "loginRequest": {
+    "message": "Požadavek na přihlášení"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Právě teď"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Požadováno před $MINUTES$ minutami",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Vyžaduje se schválení zařízení. Vyberte možnost schválení níže:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Kopírovat $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/cy/messages.json b/apps/browser/src/_locales/cy/messages.json
index c5cbbdd189c..1235b49dd2c 100644
--- a/apps/browser/src/_locales/cy/messages.json
+++ b/apps/browser/src/_locales/cy/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "Cod diogelwch"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "engh."
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Master password saved"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Remember this device to make future logins seamless"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Device approval required. Select an approval option below:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Copy $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/da/messages.json b/apps/browser/src/_locales/da/messages.json
index 5737ba66b8d..bc34810f97f 100644
--- a/apps/browser/src/_locales/da/messages.json
+++ b/apps/browser/src/_locales/da/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "Sikkerhedskode"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "eks."
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Master password saved"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Husk denne enhed for at gøre fremtidige indlogninger gnidningsløse"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Enhedsgodkendelse kræves. Vælg en godkendelsesmulighed nedenfor:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Copy $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/de/messages.json b/apps/browser/src/_locales/de/messages.json
index 352705ec281..91dfac2e7c0 100644
--- a/apps/browser/src/_locales/de/messages.json
+++ b/apps/browser/src/_locales/de/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "Sicherheitscode"
   },
+  "cardNumber": {
+    "message": "Kartennummer"
+  },
   "ex": {
     "message": "Bsp."
   },
@@ -3460,8 +3463,30 @@
   "logInRequestSent": {
     "message": "Anfrage gesendet"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Anmeldestatus"
+  },
   "masterPasswordChanged": {
-    "message": "Master password saved"
+    "message": "Master-Passwort gespeichert"
   },
   "exposedMasterPassword": {
     "message": "Kompromittiertes Master-Passwort"
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Dieses Gerät merken, um zukünftige Anmeldungen reibungslos zu gestalten"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Aktuelle Sitzung"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web-Tresor"
+  },
+  "webApp": {
+    "message": "Web-App"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "Erste Anmeldung"
+  },
+  "trusted": {
+    "message": "Vertrauenswürdig"
+  },
+  "needsApproval": {
+    "message": "Benötigt Genehmigung"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Zugriffsversuch von $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Zugriff bestätigen"
+  },
+  "denyAccess": {
+    "message": "Zugriff ablehnen"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Gerätetyp"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "Diese Anfrage ist nicht mehr gültig."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Versuchst du auf dein Konto zuzugreifen?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Anmeldung von $EMAIL$ auf $DEVICE$ bestätigt",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "Du hast einen Anmeldeversuch von einem anderen Gerät abgelehnt. Wenn du das wirklich warst, versuche dich erneut mit dem Gerät anzumelden."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Anmeldeanfrage ist bereits abgelaufen."
+  },
+  "justNow": {
+    "message": "Gerade eben"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Vor $MINUTES$ Minuten angefordert",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Geräte-Genehmigung erforderlich. Wähle unten eine Genehmigungsoption aus:"
   },
@@ -4275,7 +4407,7 @@
     "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
   },
   "uriMatchWarningDialogLink": {
-    "message": "More about match detection",
+    "message": "Mehr über die Übereinstimmungs-Erkennung",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
   "uriAdvancedOption": {
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "$FIELD$, $VALUE$ kopieren",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/el/messages.json b/apps/browser/src/_locales/el/messages.json
index 960de6670d5..014d17b74c8 100644
--- a/apps/browser/src/_locales/el/messages.json
+++ b/apps/browser/src/_locales/el/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "Κωδικός ασφαλείας"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "πχ."
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Master password saved"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Απομνημόνευση αυτής της συσκευής για την αυτόματες συνδέσεις στο μέλλον"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Απαιτείται έγκριση συσκευής. Επιλέξτε μια επιλογή έγκρισης παρακάτω:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Copy $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/en_GB/messages.json b/apps/browser/src/_locales/en_GB/messages.json
index aab61eca30e..a17a48e95b8 100644
--- a/apps/browser/src/_locales/en_GB/messages.json
+++ b/apps/browser/src/_locales/en_GB/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "Security code"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "e.g."
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Master password saved"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Remember this device to make future logins seamless"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Device approval required. Select an approval option below:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Copy $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/en_IN/messages.json b/apps/browser/src/_locales/en_IN/messages.json
index eaf11a04e57..9f383c2f0e3 100644
--- a/apps/browser/src/_locales/en_IN/messages.json
+++ b/apps/browser/src/_locales/en_IN/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "Security code"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "e.g."
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Master password saved"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Remember this device to make future logins seamless"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Device approval required. Select an approval option below:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Copy $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/es/messages.json b/apps/browser/src/_locales/es/messages.json
index 724d07f4404..35a28528f49 100644
--- a/apps/browser/src/_locales/es/messages.json
+++ b/apps/browser/src/_locales/es/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "Código de seguridad"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "ej."
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "Solicitud enviada"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Master password saved"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Remember this device to make future logins seamless"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Se requiere aprobación del dispositivo. Seleccione una opción de aprobación a continuación:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Copiar $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/et/messages.json b/apps/browser/src/_locales/et/messages.json
index 99e7b72a524..daadcbf00e9 100644
--- a/apps/browser/src/_locales/et/messages.json
+++ b/apps/browser/src/_locales/et/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "Turvakood"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "nt."
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Master password saved"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Remember this device to make future logins seamless"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Nõutav on seadme kinnitamine. Vali kinnitamise meetod alt:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Copy $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/eu/messages.json b/apps/browser/src/_locales/eu/messages.json
index 393f922463e..e5f836fcaae 100644
--- a/apps/browser/src/_locales/eu/messages.json
+++ b/apps/browser/src/_locales/eu/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "Segurtasun-kodea"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "adib."
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Master password saved"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Remember this device to make future logins seamless"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Device approval required. Select an approval option below:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Copy $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/fa/messages.json b/apps/browser/src/_locales/fa/messages.json
index fb9380d5317..e551e96f74a 100644
--- a/apps/browser/src/_locales/fa/messages.json
+++ b/apps/browser/src/_locales/fa/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "کد امنیتی"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "مثال."
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "درخواست ارسال شد"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Master password saved"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "این دستگاه را به خاطر بسپار تا ورودهای بعدی بدون مشکل انجام شود"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "تأیید دستگاه لازم است. یک روش تأیید انتخاب کنید:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "کپی $FIELD$، $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/fi/messages.json b/apps/browser/src/_locales/fi/messages.json
index 85c47f2733b..22f2046bae3 100644
--- a/apps/browser/src/_locales/fi/messages.json
+++ b/apps/browser/src/_locales/fi/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "Turvakoodi (CVC/CVV)"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "esim."
   },
@@ -2214,7 +2217,7 @@
     "message": "Käytä tätä salasanaa"
   },
   "useThisPassphrase": {
-    "message": "Use this passphrase"
+    "message": "Käytä tätä salalausetta"
   },
   "useThisUsername": {
     "message": "Käytä tätä käyttäjätunnusta"
@@ -2531,7 +2534,7 @@
     "message": "Vaihda"
   },
   "changePassword": {
-    "message": "Change password",
+    "message": "Vaihda salasana",
     "description": "Change password button for browser at risk notification on login."
   },
   "changeButtonTitle": {
@@ -3460,8 +3463,30 @@
   "logInRequestSent": {
     "message": "Pyyntö lähetetty"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
-    "message": "Master password saved"
+    "message": "Pääsalasana tallennettiin"
   },
   "exposedMasterPassword": {
     "message": "Paljastunut pääsalasana"
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Muista tämä laite tehdäksesi tulevista kirjautumisista saumattomia"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Laitehyväksyntä vaaditaan. Valitse hyväksyntätapa alta:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Kopioi $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/fil/messages.json b/apps/browser/src/_locales/fil/messages.json
index 4e3f94cb474..88610d6874c 100644
--- a/apps/browser/src/_locales/fil/messages.json
+++ b/apps/browser/src/_locales/fil/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "Kodigo ng Seguridad"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "ex."
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Master password saved"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Remember this device to make future logins seamless"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Device approval required. Select an approval option below:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Copy $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/fr/messages.json b/apps/browser/src/_locales/fr/messages.json
index efcc28ddcea..680a19f33cc 100644
--- a/apps/browser/src/_locales/fr/messages.json
+++ b/apps/browser/src/_locales/fr/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "Code de sécurité"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "ex."
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "Demande envoyée"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Master password saved"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Mémorisez cet appareil pour faciliter les futures connexions"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "L'approbation de l'appareil est requise. Sélectionnez une option d'approbation ci-dessous :"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Copier $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/gl/messages.json b/apps/browser/src/_locales/gl/messages.json
index 71841239698..559d0ca82b3 100644
--- a/apps/browser/src/_locales/gl/messages.json
+++ b/apps/browser/src/_locales/gl/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "Código de seguridade"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "ex."
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Master password saved"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Lembrar este dispositivo para futuros inicios de sesión imperceptibles"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Aprobación de dispositivo requirida. Selecciona unha das seguintes opcións:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Copy $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/he/messages.json b/apps/browser/src/_locales/he/messages.json
index b9a0a3dada4..e4d959785bf 100644
--- a/apps/browser/src/_locales/he/messages.json
+++ b/apps/browser/src/_locales/he/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "קוד אבטחה"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "לדוגמא"
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "בקשה נשלחה"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Master password saved"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "זכור מכשיר זה כדי להפוך כניסות עתידיות לחלקות"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "נדרש אישור מכשיר. בחר אפשרות אישור למטה:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "העתק $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/hi/messages.json b/apps/browser/src/_locales/hi/messages.json
index 74fc419d7f1..4fd2652d786 100644
--- a/apps/browser/src/_locales/hi/messages.json
+++ b/apps/browser/src/_locales/hi/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "Security Code"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "ex."
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Master password saved"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Remember this device to make future logins seamless"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Device approval required. Select an approval option below:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Copy $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/hr/messages.json b/apps/browser/src/_locales/hr/messages.json
index 6434a09bcfb..07c3e20cd18 100644
--- a/apps/browser/src/_locales/hr/messages.json
+++ b/apps/browser/src/_locales/hr/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "Sigurnosni kôd"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "npr."
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "Zahtjev poslan"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Glavna lozinka promijenjena"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Zapamti ovaj uređaj kako bi buduće prijave bile brže"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Potrebno je odobriti uređaj. Odaberi metodu odobravanja:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Kopiraj $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/hu/messages.json b/apps/browser/src/_locales/hu/messages.json
index 5391b266a93..228f7ef8c09 100644
--- a/apps/browser/src/_locales/hu/messages.json
+++ b/apps/browser/src/_locales/hu/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "Biztonsági Kód"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "példa:"
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "A kérés elküldésre került."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "A mesterjelszó mentésre került."
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Emlékezés az eszközre, hogy zökkenőmentes legyen a jövőbeni bejelentkezés"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Az eszköz jóváhagyása szükséges. Válasszunk egy jóváhagyási lehetőséget lentebb:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "$FIELD$, $VALUE$ másolása",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/id/messages.json b/apps/browser/src/_locales/id/messages.json
index dc1ec15cede..07e094e10bd 100644
--- a/apps/browser/src/_locales/id/messages.json
+++ b/apps/browser/src/_locales/id/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "Kode Keamanan"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "mis."
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "Permintaan terkirim"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Master password saved"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Ingat perangkat ini untuk membuat login berikutnya lebih lancar"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Persetujuan perangkat diperlukan. Pilih sebuah pilihan persetujuan berikut:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Salin $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/it/messages.json b/apps/browser/src/_locales/it/messages.json
index f4829ecabec..167cc51c0b1 100644
--- a/apps/browser/src/_locales/it/messages.json
+++ b/apps/browser/src/_locales/it/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "Codice di sicurezza"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "es."
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "Richiesta inviata"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Master password saved"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Ricorda questo dispositivo per rendere immediati i futuri accessi"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Approvazione del dispositivo obbligatoria. Seleziona un'opzione di approvazione:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Copia $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/ja/messages.json b/apps/browser/src/_locales/ja/messages.json
index 783a9ff0eb1..49d22bd065f 100644
--- a/apps/browser/src/_locales/ja/messages.json
+++ b/apps/browser/src/_locales/ja/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "セキュリティコード"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "例:"
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "リクエストが送信されました"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Master password saved"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "このデバイスを記憶して今後のログインをシームレスにする"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "デバイスの承認が必要です。以下から承認オプションを選択してください:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "$FIELD$ 「$VALUE$」 をコピー",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/ka/messages.json b/apps/browser/src/_locales/ka/messages.json
index efbf97e9a92..1e75805638c 100644
--- a/apps/browser/src/_locales/ka/messages.json
+++ b/apps/browser/src/_locales/ka/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "Security code"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "ex."
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Master password saved"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Remember this device to make future logins seamless"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Device approval required. Select an approval option below:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Copy $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/km/messages.json b/apps/browser/src/_locales/km/messages.json
index ecc7da63e79..9a6d9a4d316 100644
--- a/apps/browser/src/_locales/km/messages.json
+++ b/apps/browser/src/_locales/km/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "Security code"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "ex."
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Master password saved"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Remember this device to make future logins seamless"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Device approval required. Select an approval option below:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Copy $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/kn/messages.json b/apps/browser/src/_locales/kn/messages.json
index d4e4498a322..c7a821de19b 100644
--- a/apps/browser/src/_locales/kn/messages.json
+++ b/apps/browser/src/_locales/kn/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "ಭದ್ರತಾ ಕೋಡ್ "
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "ಉದಾಹರಣೆ"
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Master password saved"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Remember this device to make future logins seamless"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Device approval required. Select an approval option below:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Copy $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/ko/messages.json b/apps/browser/src/_locales/ko/messages.json
index d5eba5ccbd8..730d3eeda61 100644
--- a/apps/browser/src/_locales/ko/messages.json
+++ b/apps/browser/src/_locales/ko/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "보안 코드"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "예)"
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Master password saved"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "향후 로그인을 원활하게 하기 위해 이 기기 기억하기"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "기기 승인이 필요합니다. 아래에서 승인 옵션을 선택하세요:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Copy $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/lt/messages.json b/apps/browser/src/_locales/lt/messages.json
index 33f3b0f0ed6..29815c9de82 100644
--- a/apps/browser/src/_locales/lt/messages.json
+++ b/apps/browser/src/_locales/lt/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "Apsaugos kodas"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "pvz."
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Master password saved"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Remember this device to make future logins seamless"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Įrenginio patvirtinimas reikalingas. Pasirink patvirtinimo būdą toliau:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Copy $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/lv/messages.json b/apps/browser/src/_locales/lv/messages.json
index 2235baef2ab..9763801b773 100644
--- a/apps/browser/src/_locales/lv/messages.json
+++ b/apps/browser/src/_locales/lv/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "Drošības kods"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "piem."
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "Pieprasījums nosūtīts"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Galvenā parole saglabāta"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Atcerēties šo ierīci, lai nākotnes pieteikšanos padarītu plūdenāku"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Nepieciešams ierīces apstiprinājums. Zemāk jāatlasa apstiprinājuma iespēja:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Ievietot starpliktuvē $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/ml/messages.json b/apps/browser/src/_locales/ml/messages.json
index 7c0050906b0..a39fe07b2c6 100644
--- a/apps/browser/src/_locales/ml/messages.json
+++ b/apps/browser/src/_locales/ml/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "സുരക്ഷാ കോഡ്"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "ഉദാഹരണം."
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Master password saved"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Remember this device to make future logins seamless"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Device approval required. Select an approval option below:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Copy $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/mr/messages.json b/apps/browser/src/_locales/mr/messages.json
index feb3377a2f1..c79b8b322a7 100644
--- a/apps/browser/src/_locales/mr/messages.json
+++ b/apps/browser/src/_locales/mr/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "Security code"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "ex."
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Master password saved"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Remember this device to make future logins seamless"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Device approval required. Select an approval option below:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Copy $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/my/messages.json b/apps/browser/src/_locales/my/messages.json
index ecc7da63e79..9a6d9a4d316 100644
--- a/apps/browser/src/_locales/my/messages.json
+++ b/apps/browser/src/_locales/my/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "Security code"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "ex."
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Master password saved"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Remember this device to make future logins seamless"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Device approval required. Select an approval option below:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Copy $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/nb/messages.json b/apps/browser/src/_locales/nb/messages.json
index 59a8ca94c9d..01353cac5e0 100644
--- a/apps/browser/src/_locales/nb/messages.json
+++ b/apps/browser/src/_locales/nb/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "Sikkerhetskode"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "f.eks."
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "Forespørsel sendt"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Master password saved"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Remember this device to make future logins seamless"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Device approval required. Select an approval option below:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Kopier $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/ne/messages.json b/apps/browser/src/_locales/ne/messages.json
index ecc7da63e79..9a6d9a4d316 100644
--- a/apps/browser/src/_locales/ne/messages.json
+++ b/apps/browser/src/_locales/ne/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "Security code"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "ex."
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Master password saved"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Remember this device to make future logins seamless"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Device approval required. Select an approval option below:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Copy $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/nl/messages.json b/apps/browser/src/_locales/nl/messages.json
index 71134c7a33b..b67df127da0 100644
--- a/apps/browser/src/_locales/nl/messages.json
+++ b/apps/browser/src/_locales/nl/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "Beveiligingscode"
   },
+  "cardNumber": {
+    "message": "kaartnummer"
+  },
   "ex": {
     "message": "bijv."
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "Verzoek verzonden"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Apparaat"
+  },
+  "loginStatus": {
+    "message": "Loginstatus"
+  },
   "masterPasswordChanged": {
     "message": "Hoofdwachtwoord gewijzigd"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Onthoud dit apparaat om in het vervolg naadloos in te loggen"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "Dit verzoek is niet langer geldig."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Probeer je toegang te krijgen tot je account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Inloggen voor $EMAIL$ bevestigd op $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "Je hebt een inlogpoging vanaf een ander apparaat geweigerd. Als je dit toch echt zelf was, probeer dan opnieuw in te loggen met het apparaat."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Inlogverzoek is al verlopen."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Apparaattoestemming vereist. Kies een goedkeuringsoptie hieronder:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "$FIELD$, $VALUE$ kopiëren",
+  "copyFieldCipherName": {
+    "message": "$FIELD$, $CIPHERNAME$ kopiëren",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/nn/messages.json b/apps/browser/src/_locales/nn/messages.json
index ecc7da63e79..9a6d9a4d316 100644
--- a/apps/browser/src/_locales/nn/messages.json
+++ b/apps/browser/src/_locales/nn/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "Security code"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "ex."
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Master password saved"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Remember this device to make future logins seamless"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Device approval required. Select an approval option below:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Copy $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/or/messages.json b/apps/browser/src/_locales/or/messages.json
index ecc7da63e79..9a6d9a4d316 100644
--- a/apps/browser/src/_locales/or/messages.json
+++ b/apps/browser/src/_locales/or/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "Security code"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "ex."
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Master password saved"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Remember this device to make future logins seamless"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Device approval required. Select an approval option below:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Copy $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/pl/messages.json b/apps/browser/src/_locales/pl/messages.json
index b4b62d7968c..23221633916 100644
--- a/apps/browser/src/_locales/pl/messages.json
+++ b/apps/browser/src/_locales/pl/messages.json
@@ -659,7 +659,7 @@
     "message": "Zweryfikuj tożsamość"
   },
   "weDontRecognizeThisDevice": {
-    "message": "Nie rozpoznajemy tego urządzenia. Wpisz kod wysłany na Twój e-mail, aby zweryfikować tożsamość."
+    "message": "Nie rozpoznajemy tego urządzenia. Wpisz kod wysłany na adres e-mail, aby zweryfikować swoją tożsamość."
   },
   "continueLoggingIn": {
     "message": "Kontynuuj logowanie"
@@ -1213,17 +1213,17 @@
     "message": "Pokaż opcje w menu kontekstowym"
   },
   "contextMenuItemDesc": {
-    "message": "Użyj drugiego kliknięcia, aby uzyskać dostęp do generowania haseł i pasujących danych logowania do witryny."
+    "message": "Użyj drugiego kliknięcia, aby uzyskać dostęp do generatora hasła i pasujących danych logowania."
   },
   "contextMenuItemDescAlt": {
-    "message": "Użyj drugiego kliknięcia, aby uzyskać dostęp do generowania haseł i pasujących danych logowania do witryny. Dotyczy wszystkich zalogowanych kont."
+    "message": "Użyj drugiego kliknięcia, aby uzyskać dostęp do generatora hasła i pasujących danych logowania. Dotyczy wszystkich zalogowanych kont."
   },
   "defaultUriMatchDetection": {
     "message": "Domyślne wykrywanie dopasowania",
     "description": "Default URI match detection for autofill."
   },
   "defaultUriMatchDetectionDesc": {
-    "message": "Wybierz domyślny sposób wykrywania dopasowania adresów dla czynności takich jak autouzupełnianie."
+    "message": "Wybierz domyślne wykrywanie dopasowania dla autouzupełniania."
   },
   "theme": {
     "message": "Motyw"
@@ -1252,7 +1252,7 @@
     "message": "Format pliku"
   },
   "fileEncryptedExportWarningDesc": {
-    "message": "Plik będzie chroniony hasłem, które będzie wymagane do odszyfrowania pliku."
+    "message": "Plik zostanie zaszyfrowany hasłem."
   },
   "filePassword": {
     "message": "Hasło pliku"
@@ -1296,7 +1296,7 @@
     "message": "Klucze szyfrowania konta są unikalne dla każdego użytkownika Bitwarden, więc nie możesz zaimportować zaszyfrowanego pliku eksportu na inne konto."
   },
   "exportMasterPassword": {
-    "message": "Wpisz hasło główne, aby wyeksportować dane z sejfu."
+    "message": "Wpisz hasło główne, aby wyeksportować dane sejfu."
   },
   "shared": {
     "message": "Udostępnione"
@@ -1372,7 +1372,7 @@
     "message": "Funkcja jest niedostępna"
   },
   "legacyEncryptionUnsupported": {
-    "message": "Starsze szyfrowanie nie jest już obsługiwane. Skontaktuj się z pomocą techniczną, aby odzyskać swoje konto."
+    "message": "Starsze szyfrowanie nie jest już obsługiwane. Skontaktuj się z pomocą techniczną, aby odzyskać konto."
   },
   "premiumMembership": {
     "message": "Konto premium"
@@ -1490,7 +1490,7 @@
     "message": "Użyj kodu odzyskiwania"
   },
   "insertU2f": {
-    "message": "Włóż klucz bezpieczeństwa do portu USB komputera. Jeśli klucz posiada przycisk, dotknij go."
+    "message": "Włóż klucz bezpieczeństwa do portu USB urządzenia. Jeśli klucz ma przycisk, dotknij go."
   },
   "openInNewTab": {
     "message": "Otwórz w nowej karcie"
@@ -1502,7 +1502,7 @@
     "message": "Odczytaj klucz bezpieczeństwa"
   },
   "awaitingSecurityKeyInteraction": {
-    "message": "Oczekiwanie na interakcję z kluczem bezpieczeństwa..."
+    "message": "Oczekiwanie na klucz bezpieczeństwa..."
   },
   "loginUnavailable": {
     "message": "Logowanie jest niedostępne"
@@ -1550,7 +1550,7 @@
     "message": "FIDO2 WebAuthn"
   },
   "webAuthnDesc": {
-    "message": "Użyj dowolnego klucza bezpieczeństwa WebAuthn, aby uzyskać dostęp do swojego konta."
+    "message": "Użyj dowolnego klucza bezpieczeństwa WebAuthn, aby uzyskać dostęp do konta."
   },
   "emailTitle": {
     "message": "Adres e-mail"
@@ -1606,7 +1606,7 @@
     "message": "Sugestie autouzupełniania"
   },
   "autofillSpotlightTitle": {
-    "message": "Łatwe znajdowanie sugestii autouzupełniania"
+    "message": "Łatwe wyszukiwanie sugestii autouzupełniania"
   },
   "autofillSpotlightDesc": {
     "message": "Wyłącz ustawienia autouzupełniania swojej przeglądarki, aby nie kolidowały z Bitwarden."
@@ -1639,7 +1639,7 @@
     "message": "Dotyczy wszystkich zalogowanych kont."
   },
   "turnOffBrowserBuiltInPasswordManagerSettings": {
-    "message": "Wyłącz wbudowany w przeglądarkę menedżer haseł, aby uniknąć konfliktów."
+    "message": "Wyłącz menedżer haseł przeglądarki, aby uniknąć konfliktów."
   },
   "turnOffBrowserBuiltInPasswordManagerSettingsLink": {
     "message": "Edytuj ustawienia przeglądarki."
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "Kod zabezpieczający"
   },
+  "cardNumber": {
+    "message": "numer karty"
+  },
   "ex": {
     "message": "np."
   },
@@ -1977,7 +1980,7 @@
     "message": "Kolekcje"
   },
   "nCollections": {
-    "message": "Kolekcje: $COUNT$",
+    "message": "Kolekcje ($COUNT$)",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -2646,13 +2649,13 @@
     "description": "Description of the update in Bitwarden slide on the at-risk password page carousel"
   },
   "updateInBitwardenSlideImgAltPeriod": {
-    "message": "Ilustracja powiadomienia Bitwardena, skłaniająca użytkownika do zaktualizowania danych logowania."
+    "message": "Ilustracja powiadomienia Bitwarden, zachęcająca użytkownika do zaktualizowania danych logowania."
   },
   "turnOnAutofill": {
     "message": "Włącz autouzupełnianie"
   },
   "turnedOnAutofill": {
-    "message": "Włączono autouzupełnianie"
+    "message": "Autouzupełnianie zostało włączone"
   },
   "dismiss": {
     "message": "Odrzuć"
@@ -2902,7 +2905,7 @@
     "message": "Data i czas usunięcia są wymagane."
   },
   "dateParsingError": {
-    "message": "Wystąpił błąd podczas zapisywania daty usunięcia i wygaśnięcia."
+    "message": "Wystąpił błąd podczas zapisywania dat usunięcia i wygaśnięcia."
   },
   "hideYourEmail": {
     "message": "Ukryj mój adres e-mail przed odbiorcami."
@@ -3136,7 +3139,7 @@
     "message": "Błąd odszyfrowywania"
   },
   "couldNotDecryptVaultItemsBelow": {
-    "message": "Bitwarden nie mógł odszyfrować elementów sejfu wymienionych poniżej."
+    "message": "Bitwarden nie mógł odszyfrować poniższych elementów sejfu."
   },
   "contactCSToAvoidDataLossPart1": {
     "message": "Skontaktuj się z działem obsługi klienta,",
@@ -3449,7 +3452,7 @@
     "message": "Powiadomienie zostało wysłane na urządzenie"
   },
   "youWillBeNotifiedOnceTheRequestIsApproved": {
-    "message": "Zostaniesz powiadomiony po zatwierdzeniu prośby"
+    "message": "Zostaniesz powiadomiony po potwierdzeniu"
   },
   "needAnotherOptionV1": {
     "message": "Potrzebujesz innej opcji?"
@@ -3458,7 +3461,29 @@
     "message": "Logowanie rozpoczęte"
   },
   "logInRequestSent": {
-    "message": "Żądanie wysłane"
+    "message": "Prośba została wysłana"
+  },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Urządzenie"
+  },
+  "loginStatus": {
+    "message": "Login status"
   },
   "masterPasswordChanged": {
     "message": "Hasło główne zostało zapisane"
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Zapamiętaj to urządzenie, aby przyszłe logowania były bezproblemowe"
   },
+  "manageDevices": {
+    "message": "Zarządzaj urządzeniami"
+  },
+  "currentSession": {
+    "message": "Obecna sesja"
+  },
+  "mobile": {
+    "message": "Telefon",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Rozszerzenie",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Komputer",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Sejf internetowy"
+  },
+  "webApp": {
+    "message": "Aplikacja internetowa"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "Pierwsze logowanie"
+  },
+  "trusted": {
+    "message": "Zaufane"
+  },
+  "needsApproval": {
+    "message": "Wymagane potwierdzenie"
+  },
+  "devices": {
+    "message": "Urządzenia"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Potwierdź dostęp"
+  },
+  "denyAccess": {
+    "message": "Odmów dostępu"
+  },
+  "time": {
+    "message": "Czas"
+  },
+  "deviceType": {
+    "message": "Rodzaj urządzenia"
+  },
+  "loginRequest": {
+    "message": "Żądanie logowania"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Teraz"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Poproszono $MINUTES$ min temu",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Wymagane zatwierdzenie urządzenia. Wybierz opcję zatwierdzenia poniżej:"
   },
@@ -3563,19 +3695,19 @@
     "message": "Wymagane zatwierdzenie urządzenia"
   },
   "selectAnApprovalOptionBelow": {
-    "message": "Wybierz opcję zatwierdzenia poniżej"
+    "message": "Wybierz opcję potwierdzenia"
   },
   "rememberThisDevice": {
     "message": "Zapamiętaj urządzenie"
   },
   "uncheckIfPublicDevice": {
-    "message": "Odznacz, jeśli używasz publicznego urządzenia"
+    "message": "Wyłącz na obcych urządzeniach"
   },
   "approveFromYourOtherDevice": {
-    "message": "Zatwierdź z innego twojego urządzenia"
+    "message": "Potwierdź za pomocą innego urządzenia"
   },
   "requestAdminApproval": {
-    "message": "Poproś administratora o zatwierdzenie"
+    "message": "Poproś administratora o potwierdzenie"
   },
   "unableToCompleteLogin": {
     "message": "Nie można ukończyć logowania"
@@ -3624,10 +3756,10 @@
     "message": "Konto zostało utworzone!"
   },
   "adminApprovalRequested": {
-    "message": "Poproszono administratora o zatwierdzenie"
+    "message": "Poproszono administratora o potwierdzenie"
   },
   "adminApprovalRequestSentToAdmins": {
-    "message": "Twoja prośba została wysłana do Twojego administratora."
+    "message": "Prośba została wysłana do administratora."
   },
   "troubleLoggingIn": {
     "message": "Problem z logowaniem?"
@@ -4307,7 +4439,7 @@
     "description": "Body content for dialog which asks if the user wants to proceed to the browser's keyboard shortcut settings page"
   },
   "overrideDefaultBrowserAutofillTitle": {
-    "message": "Czy ustawić Bitwarden jako domyślny menadżer haseł?",
+    "message": "Ustawić Bitwarden jako domyślny menadżer haseł?",
     "description": "Dialog title facilitating the ability to override a chrome browser's default autofill behavior"
   },
   "overrideDefaultBrowserAutofillDescription": {
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Kopiuj $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Kopiuj $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
@@ -5455,7 +5587,7 @@
     "message": "Nie masz uprawnień do przeglądania tej strony. Spróbuj zalogować się na inne konto."
   },
   "wasmNotSupported": {
-    "message": "Zestaw WebAssembly nie jest obsługiwany w przeglądarce lub nie jest włączony. Do korzystania z aplikacji Bitwarden wymagany jest zestaw WebAssembre.",
+    "message": "WebAssembly nie jest obsługiwany w przeglądarce lub jest wyłączony. WebAssembly jest wymagany do korzystania z aplikacji Bitwarden.",
     "description": "'WebAssembly' is a technical term and should not be translated."
   }
 }
diff --git a/apps/browser/src/_locales/pt_BR/messages.json b/apps/browser/src/_locales/pt_BR/messages.json
index 4d0e4148782..7d5509a628b 100644
--- a/apps/browser/src/_locales/pt_BR/messages.json
+++ b/apps/browser/src/_locales/pt_BR/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "Código de Segurança"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "ex."
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "Pedido enviado"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Master password saved"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Lembrar deste dispositivo para permanecer conectado"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Aprovação do dispositivo necessária. Selecione uma opção de aprovação abaixo:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Copiar $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/pt_PT/messages.json b/apps/browser/src/_locales/pt_PT/messages.json
index 8f06014b6b2..b31a7797df3 100644
--- a/apps/browser/src/_locales/pt_PT/messages.json
+++ b/apps/browser/src/_locales/pt_PT/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "Código de segurança"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "ex."
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "Pedido enviado"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Palavra-passe mestra guardada"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Memorizar este dispositivo para facilitar futuros inícios de sessão"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "É necessária a aprovação do dispositivo. Selecione uma opção de aprovação abaixo:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Copiar $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/ro/messages.json b/apps/browser/src/_locales/ro/messages.json
index 02fc0054e73..7f54640af25 100644
--- a/apps/browser/src/_locales/ro/messages.json
+++ b/apps/browser/src/_locales/ro/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "Cod de securitate"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "ex."
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Master password saved"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Remember this device to make future logins seamless"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Este necesară aprobarea dispozitivului. Selectați o opțiune de autorizare de mai jos:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Copy $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/ru/messages.json b/apps/browser/src/_locales/ru/messages.json
index 2c9aa0f4d45..31e331fadad 100644
--- a/apps/browser/src/_locales/ru/messages.json
+++ b/apps/browser/src/_locales/ru/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "Код безопасности"
   },
+  "cardNumber": {
+    "message": "номер карты"
+  },
   "ex": {
     "message": "напр."
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "Запрос отправлен"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Запрос входа для $EMAIL$ на $DEVICE$ одобрен",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "Вы отклонили попытку авторизации с другого устройства. Если это были вы, попробуйте авторизоваться с этого устройства еще раз."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Мастер-пароль сохранен"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Запомнить это устройство, чтобы в будущем авторизовываться быстрее"
   },
+  "manageDevices": {
+    "message": "Управление устройствами"
+  },
+  "currentSession": {
+    "message": "Текущая сессия"
+  },
+  "mobile": {
+    "message": "Мобильный",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Расширение",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Компьютер",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Веб-хранилище"
+  },
+  "webApp": {
+    "message": "Веб-приложение"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Запрос в ожидании"
+  },
+  "firstLogin": {
+    "message": "Первый вход"
+  },
+  "trusted": {
+    "message": "Доверенный"
+  },
+  "needsApproval": {
+    "message": "Требуется одобрение"
+  },
+  "devices": {
+    "message": "Устройства"
+  },
+  "accessAttemptBy": {
+    "message": "Попытка доступа $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Подтвердить доступ"
+  },
+  "denyAccess": {
+    "message": "Отказать в доступе"
+  },
+  "time": {
+    "message": "Время"
+  },
+  "deviceType": {
+    "message": "Тип устройства"
+  },
+  "loginRequest": {
+    "message": "Запрос на вход"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Только что"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Запрошено $MINUTES$ минут назад",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Требуется одобрение устройства. Выберите вариант ниже:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Скопировать $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Копировать $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/si/messages.json b/apps/browser/src/_locales/si/messages.json
index aa88e12ba39..13e6c2522bf 100644
--- a/apps/browser/src/_locales/si/messages.json
+++ b/apps/browser/src/_locales/si/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "ආරක්ෂක කේතය"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "හිටපු."
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Master password saved"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Remember this device to make future logins seamless"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Device approval required. Select an approval option below:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Copy $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/sk/messages.json b/apps/browser/src/_locales/sk/messages.json
index 356617ea25c..7285399af73 100644
--- a/apps/browser/src/_locales/sk/messages.json
+++ b/apps/browser/src/_locales/sk/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "Bezpečnostný kód"
   },
+  "cardNumber": {
+    "message": "číslo karty"
+  },
   "ex": {
     "message": "napr."
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "Požiadavka bola odoslaná"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Potvrdené prihlásenie pre $EMAIL$ na $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "Odmietli ste pokus o prihlásenie z iného zariadenia. Ak ste to boli vy, skúste sa prihlásiť pomocou zariadenia znova."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Hlavné heslo uložené"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Zapamätať si toto zariadenie, pre budúce bezproblémové prihlásenie"
   },
+  "manageDevices": {
+    "message": "Spravovať zariadenia"
+  },
+  "currentSession": {
+    "message": "Aktuálna relácia"
+  },
+  "mobile": {
+    "message": "Mobil",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Rozšírenie",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Počítač",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Webový trezor"
+  },
+  "webApp": {
+    "message": "Webová aplikácia"
+  },
+  "cli": {
+    "message": "Príkazový riadok (CLI)"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Žiadosť čaká na spracovanie"
+  },
+  "firstLogin": {
+    "message": "Prvé prihlásenie"
+  },
+  "trusted": {
+    "message": "Dôveryhodné"
+  },
+  "needsApproval": {
+    "message": "Potrebuje súhlas"
+  },
+  "devices": {
+    "message": "Zariadenia"
+  },
+  "accessAttemptBy": {
+    "message": "Pokus o prístup z $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Potvrdiť prístup"
+  },
+  "denyAccess": {
+    "message": "Zamietnuť prístup"
+  },
+  "time": {
+    "message": "Čas"
+  },
+  "deviceType": {
+    "message": "Typ zariadenia"
+  },
+  "loginRequest": {
+    "message": "Žiadosť o prihlásenie"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Práve teraz"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Vyžiadané pred $MINUTES$ min.",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Vyžaduje sa schválenie zariadenia. Vyberte možnosť schválenia nižšie:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Kopírovať $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Kopírovať $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/sl/messages.json b/apps/browser/src/_locales/sl/messages.json
index 72f058254e4..397b7be54e8 100644
--- a/apps/browser/src/_locales/sl/messages.json
+++ b/apps/browser/src/_locales/sl/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "Varnostna koda"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "npr."
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Master password saved"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Remember this device to make future logins seamless"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Device approval required. Select an approval option below:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Copy $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/sr/messages.json b/apps/browser/src/_locales/sr/messages.json
index 4ac75bde569..f68d0b97447 100644
--- a/apps/browser/src/_locales/sr/messages.json
+++ b/apps/browser/src/_locales/sr/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "Сигурносни код"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "нпр."
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "Захтев је послат"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Главна лозинка сачувана"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Запамтити овај уређај да би будуће пријаве биле беспрекорне"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Потребно је одобрење уређаја. Изаберите опцију одобрења испод:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Копирај $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/sv/messages.json b/apps/browser/src/_locales/sv/messages.json
index ff20cdd2ed9..725497cc26b 100644
--- a/apps/browser/src/_locales/sv/messages.json
+++ b/apps/browser/src/_locales/sv/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "Säkerhetskod"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "t. ex."
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "Begäran skickad"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Inloggningsbegäran godkänd för $EMAIL$ på $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "Du nekade ett inloggningsförsök från en annan enhet. Om det var du, försök att logga in med enheten igen."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Huvudlösenordet sparades"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Kom ihåg den här enheten för att göra framtida inloggningar smidiga"
   },
+  "manageDevices": {
+    "message": "Hantera enheter"
+  },
+  "currentSession": {
+    "message": "Aktuell session"
+  },
+  "mobile": {
+    "message": "Mobil",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Tillägg",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Skrivbord",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Webbvalv"
+  },
+  "webApp": {
+    "message": "Webbapp"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Förfrågning väntar"
+  },
+  "firstLogin": {
+    "message": "Första inloggningen"
+  },
+  "trusted": {
+    "message": "Betrodd"
+  },
+  "needsApproval": {
+    "message": "Kräver godkännande"
+  },
+  "devices": {
+    "message": "Enheter"
+  },
+  "accessAttemptBy": {
+    "message": "Åtkomstförsök av $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Bekräfta åtkomst"
+  },
+  "denyAccess": {
+    "message": "Neka åtkomst"
+  },
+  "time": {
+    "message": "Tid"
+  },
+  "deviceType": {
+    "message": "Enhetstyp"
+  },
+  "loginRequest": {
+    "message": "Begäran om inloggning"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just nu"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Begärdes för $MINUTES$ minuter sedan",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Godkännande av enhet krävs. Välj ett alternativ för godkännande nedan:"
   },
@@ -4075,10 +4207,10 @@
     "message": "Inloggad!"
   },
   "passkeyNotCopied": {
-    "message": "Lösennyckeln kommer inte kopieras"
+    "message": "Inloggningsnyckeln kommer inte kopieras"
   },
   "passkeyNotCopiedAlert": {
-    "message": "Lösennyckeln kommer inte att kopieras till det klonade objektet. Vill du fortsätta klona det här objektet?"
+    "message": "Inloggningsnyckeln kommer inte att kopieras till det klonade objektet. Vill du fortsätta klona det här objektet?"
   },
   "passkeyFeatureIsNotImplementedForAccountsWithoutMasterPassword": {
     "message": "Verifiering krävs av den initierande webbplatsen. Denna funktion är ännu inte implementerad för konton utan huvudlösenord."
@@ -4087,7 +4219,7 @@
     "message": "Logga in med nyckel?"
   },
   "passkeyAlreadyExists": {
-    "message": "En lösennyckel finns redan för detta program."
+    "message": "En inloggningsnyckel finns redan för detta program."
   },
   "noPasskeysFoundForThisApplication": {
     "message": "Inga lösennycklar hittades för detta program."
@@ -4111,25 +4243,25 @@
     "message": "Spara nyckel som ny inloggning"
   },
   "chooseCipherForPasskeySave": {
-    "message": "Välj en inloggning som du vill spara nyckeln till"
+    "message": "Välj en inloggning som du vill spara inloggningsnyckeln till"
   },
   "chooseCipherForPasskeyAuth": {
-    "message": "Välj en lösenordskod att logga in med"
+    "message": "Välj en inloggningsnyckel att logga in med"
   },
   "passkeyItem": {
-    "message": "Lösennyckelobjekt"
+    "message": "Inloggningsnyckelsobjekt"
   },
   "overwritePasskey": {
-    "message": "Skriv över lösennyckel?"
+    "message": "Skriv över inloggningsnyckel?"
   },
   "overwritePasskeyAlert": {
-    "message": "Detta objekt innehåller redan en lösennyckel. Är du säker på att du vill skriva över nuvarande lösennyckeln?"
+    "message": "Detta objekt innehåller redan en inloggningsnyckel. Är du säker på att du vill skriva över nuvarande inloggningsnyckel?"
   },
   "featureNotSupported": {
     "message": "Funktionen stöds ännu inte"
   },
   "yourPasskeyIsLocked": {
-    "message": "Autentisering krävs för att använda lösennyckel. Verifiera din identitet för att fortsätta."
+    "message": "Autentisering krävs för att använda inloggningsnyckel. Verifiera din identitet för att fortsätta."
   },
   "multifactorAuthenticationCancelled": {
     "message": "Flerfaktorsautentisering avbruten"
@@ -4354,10 +4486,10 @@
     "message": "Lyckades"
   },
   "removePasskey": {
-    "message": "Ta bort passkey"
+    "message": "Ta bort inloggningsnyckel"
   },
   "passkeyRemoved": {
-    "message": "Passkey borttagen"
+    "message": "Inloggningsnyckel borttagen"
   },
   "autofillSuggestions": {
     "message": "Förslag för autofyll"
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Kopiera $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/te/messages.json b/apps/browser/src/_locales/te/messages.json
index ecc7da63e79..9a6d9a4d316 100644
--- a/apps/browser/src/_locales/te/messages.json
+++ b/apps/browser/src/_locales/te/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "Security code"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "ex."
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Master password saved"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Remember this device to make future logins seamless"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Device approval required. Select an approval option below:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Copy $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/th/messages.json b/apps/browser/src/_locales/th/messages.json
index c085b7557e0..49515eb1c64 100644
--- a/apps/browser/src/_locales/th/messages.json
+++ b/apps/browser/src/_locales/th/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "Security Code"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "ex."
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "Request sent"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Master password saved"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Remember this device to make future logins seamless"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Device approval required. Select an approval option below:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Copy $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/tr/messages.json b/apps/browser/src/_locales/tr/messages.json
index 5dae8dfcdc4..cd7c8d3f0b6 100644
--- a/apps/browser/src/_locales/tr/messages.json
+++ b/apps/browser/src/_locales/tr/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "Güvenlik kodu"
   },
+  "cardNumber": {
+    "message": "kart numarası"
+  },
   "ex": {
     "message": "örn."
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "İstek gönderildi"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "$DEVICE$ cihazında $EMAIL$ girişi onaylandı",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "Başka bir cihazdan giriş isteğini reddettiniz. Yanlışlıkla yaptıysanız aynı cihazdan yeniden giriş yapmayı deneyin."
+  },
+  "device": {
+    "message": "Cihaz"
+  },
+  "loginStatus": {
+    "message": "Oturum açma durumu"
+  },
   "masterPasswordChanged": {
     "message": "Ana parola kaydedildi"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Sonraki girişleri kolaylaştırmak için bu cihazı hatırla"
   },
+  "manageDevices": {
+    "message": "Cihazları yönet"
+  },
+  "currentSession": {
+    "message": "Geçerli oturum"
+  },
+  "mobile": {
+    "message": "Mobil",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Uzantı",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Masaüstü",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web kasası"
+  },
+  "webApp": {
+    "message": "Web uygulaması"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "İstek bekliyor"
+  },
+  "firstLogin": {
+    "message": "İlk giriş"
+  },
+  "trusted": {
+    "message": "Güvenilen"
+  },
+  "needsApproval": {
+    "message": "Onay gerekiyor"
+  },
+  "devices": {
+    "message": "Cihazlar"
+  },
+  "accessAttemptBy": {
+    "message": "$EMAIL$ erişim denemesi",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Erişimi onayla"
+  },
+  "denyAccess": {
+    "message": "Erişimi reddet"
+  },
+  "time": {
+    "message": "Tarih"
+  },
+  "deviceType": {
+    "message": "Cihaz türü"
+  },
+  "loginRequest": {
+    "message": "Giriş isteği"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "Bu istek artık geçerli değil."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Hesabınıza erişmeye mi çalışıyorsunuz?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "$DEVICE$ cihazında $EMAIL$ girişi onaylandı",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "Başka bir cihazdan giriş isteğini reddettiniz. Yanlışlıkla yaptıysanız aynı cihazdan yeniden giriş yapmayı deneyin."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Giriş isteğinin süresi doldu."
+  },
+  "justNow": {
+    "message": "Az önce"
+  },
+  "requestedXMinutesAgo": {
+    "message": "$MINUTES$ dakika önce istendi",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Cihaz onayı gerekiyor. Lütfen onay yönteminizi seçin:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Kopyala: $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Kopyala: $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/uk/messages.json b/apps/browser/src/_locales/uk/messages.json
index 3d25e982642..083d89fbd12 100644
--- a/apps/browser/src/_locales/uk/messages.json
+++ b/apps/browser/src/_locales/uk/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "Код безпеки"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "зразок"
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "Запит надіслано"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Головний пароль збережено"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Запам'ятайте цей пристрій, щоб спростити майбутні входи в систему"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Необхідне підтвердження пристрою. Виберіть варіант підтвердження нижче:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Копіювати $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/vi/messages.json b/apps/browser/src/_locales/vi/messages.json
index e2752827221..7aa8348c6b8 100644
--- a/apps/browser/src/_locales/vi/messages.json
+++ b/apps/browser/src/_locales/vi/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "Mã bảo mật"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "Ví dụ:"
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "Đã gửi yêu cầu"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Đã lưu mật khẩu chính"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "Nhớ thiết bị này để đăng nhập dễ dàng trong tương lai"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "Yêu cầu phê duyệt thiết bị. Chọn một tuỳ chọn phê duyệt bên dưới:"
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Sao chép $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/zh_CN/messages.json b/apps/browser/src/_locales/zh_CN/messages.json
index 9ee8fd5a48f..9b7d460261a 100644
--- a/apps/browser/src/_locales/zh_CN/messages.json
+++ b/apps/browser/src/_locales/zh_CN/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "安全码"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "例如"
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "请求已发送"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "主密码已保存"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "记住此设备以便将来无缝登录"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "需要设备批准。请在下面选择一个批准选项："
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "复制 $FIELD$，$VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/src/_locales/zh_TW/messages.json b/apps/browser/src/_locales/zh_TW/messages.json
index 7403ad53705..b41b9271c75 100644
--- a/apps/browser/src/_locales/zh_TW/messages.json
+++ b/apps/browser/src/_locales/zh_TW/messages.json
@@ -1829,6 +1829,9 @@
   "securityCode": {
     "message": "安全代碼"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
   "ex": {
     "message": "例如"
   },
@@ -3460,6 +3463,28 @@
   "logInRequestSent": {
     "message": "已傳送請求"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
+  "device": {
+    "message": "Device"
+  },
+  "loginStatus": {
+    "message": "Login status"
+  },
   "masterPasswordChanged": {
     "message": "Master password saved"
   },
@@ -3556,6 +3581,113 @@
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
     "message": "記住此裝置來讓未來的登入體驗更簡易"
   },
+  "manageDevices": {
+    "message": "Manage devices"
+  },
+  "currentSession": {
+    "message": "Current session"
+  },
+  "mobile": {
+    "message": "Mobile",
+    "description": "Mobile app"
+  },
+  "extension": {
+    "message": "Extension",
+    "description": "Browser extension/addon"
+  },
+  "desktop": {
+    "message": "Desktop",
+    "description": "Desktop app"
+  },
+  "webVault": {
+    "message": "Web vault"
+  },
+  "webApp": {
+    "message": "Web app"
+  },
+  "cli": {
+    "message": "CLI"
+  },
+  "sdk": {
+    "message": "SDK",
+    "description": "Software Development Kit"
+  },
+  "requestPending": {
+    "message": "Request pending"
+  },
+  "firstLogin": {
+    "message": "First login"
+  },
+  "trusted": {
+    "message": "Trusted"
+  },
+  "needsApproval": {
+    "message": "Needs approval"
+  },
+  "devices": {
+    "message": "Devices"
+  },
+  "accessAttemptBy": {
+    "message": "Access attempt by $EMAIL$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      }
+    }
+  },
+  "confirmAccess": {
+    "message": "Confirm access"
+  },
+  "denyAccess": {
+    "message": "Deny access"
+  },
+  "time": {
+    "message": "Time"
+  },
+  "deviceType": {
+    "message": "Device Type"
+  },
+  "loginRequest": {
+    "message": "Login request"
+  },
+  "thisRequestIsNoLongerValid": {
+    "message": "This request is no longer valid."
+  },
+  "areYouTryingToAccessYourAccount": {
+    "message": "Are you trying to access your account?"
+  },
+  "logInConfirmedForEmailOnDevice": {
+    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "iOS"
+      }
+    }
+  },
+  "youDeniedALogInAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+  },
+  "loginRequestHasAlreadyExpired": {
+    "message": "Login request has already expired."
+  },
+  "justNow": {
+    "message": "Just now"
+  },
+  "requestedXMinutesAgo": {
+    "message": "Requested $MINUTES$ minutes ago",
+    "placeholders": {
+      "minutes": {
+        "content": "$1",
+        "example": "5"
+      }
+    }
+  },
   "deviceApprovalRequired": {
     "message": "裝置需要取得核准。請在下面選擇一個核准選項："
   },
@@ -4465,17 +4597,17 @@
       }
     }
   },
-  "copyFieldValue": {
-    "message": "Copy $FIELD$, $VALUE$",
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
         "content": "$1",
         "example": "Username"
       },
-      "value": {
+      "ciphername": {
         "content": "$2",
-        "example": "Foo"
+        "example": "Login Item"
       }
     }
   },
diff --git a/apps/browser/store/locales/sv/copy.resx b/apps/browser/store/locales/sv/copy.resx
index d03c7fc808d..c37095ec167 100644
--- a/apps/browser/store/locales/sv/copy.resx
+++ b/apps/browser/store/locales/sv/copy.resx
@@ -165,7 +165,7 @@ Applikationer för flera plattformar
 Säkra och dela känslig data i ditt Bitwarden Vault från vilken webbläsare, mobil enhet eller stationärt operativsystem som helst, och mycket mer.
 
 Bitwarden säkrar mer än bara lösenord
-End-to-end krypterade lösningar för hantering av referenser från Bitwarden gör det möjligt för organisationer att säkra allt, inklusive utvecklarhemligheter och passkey-upplevelser. Besök Bitwarden.com för att lära dig mer om Bitwarden Secrets Manager och Bitwarden Passwordless.dev!
+End-to-end krypterade lösningar för hantering av referenser från Bitwarden gör det möjligt för organisationer att säkra allt, inklusive utvecklarhemligheter och upplevelser med inloggningsnycklar. Besök Bitwarden.com för att lära dig mer om Bitwarden Secrets Manager och Bitwarden Passwordless.dev!
 </value>
   </data>
   <data name="AssetTitle" xml:space="preserve">

From 80a6268e81b7f4a6a9be61d0b0250644eb7f2a04 Mon Sep 17 00:00:00 2001
From: "bw-ghapp[bot]" <178206702+bw-ghapp[bot]@users.noreply.github.com>
Date: Sat, 19 Jul 2025 19:45:28 +0200
Subject: [PATCH 176/239] Autosync the updated translations (#15673)

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>
---
 apps/web/src/locales/af/messages.json    |  42 ++++++++
 apps/web/src/locales/ar/messages.json    |  42 ++++++++
 apps/web/src/locales/az/messages.json    |  46 ++++++++-
 apps/web/src/locales/be/messages.json    |  42 ++++++++
 apps/web/src/locales/bg/messages.json    |  42 ++++++++
 apps/web/src/locales/bn/messages.json    |  42 ++++++++
 apps/web/src/locales/bs/messages.json    |  42 ++++++++
 apps/web/src/locales/ca/messages.json    |  42 ++++++++
 apps/web/src/locales/cs/messages.json    |  42 ++++++++
 apps/web/src/locales/cy/messages.json    |  42 ++++++++
 apps/web/src/locales/da/messages.json    |  42 ++++++++
 apps/web/src/locales/de/messages.json    |  66 ++++++++++---
 apps/web/src/locales/el/messages.json    |  42 ++++++++
 apps/web/src/locales/en_GB/messages.json |  42 ++++++++
 apps/web/src/locales/en_IN/messages.json |  42 ++++++++
 apps/web/src/locales/eo/messages.json    |  42 ++++++++
 apps/web/src/locales/es/messages.json    |  42 ++++++++
 apps/web/src/locales/et/messages.json    |  42 ++++++++
 apps/web/src/locales/eu/messages.json    |  42 ++++++++
 apps/web/src/locales/fa/messages.json    |  42 ++++++++
 apps/web/src/locales/fi/messages.json    |  42 ++++++++
 apps/web/src/locales/fil/messages.json   |  42 ++++++++
 apps/web/src/locales/fr/messages.json    |  42 ++++++++
 apps/web/src/locales/gl/messages.json    |  42 ++++++++
 apps/web/src/locales/he/messages.json    |  42 ++++++++
 apps/web/src/locales/hi/messages.json    |  42 ++++++++
 apps/web/src/locales/hr/messages.json    |  42 ++++++++
 apps/web/src/locales/hu/messages.json    |  42 ++++++++
 apps/web/src/locales/id/messages.json    |  42 ++++++++
 apps/web/src/locales/it/messages.json    |  42 ++++++++
 apps/web/src/locales/ja/messages.json    |  42 ++++++++
 apps/web/src/locales/ka/messages.json    |  42 ++++++++
 apps/web/src/locales/km/messages.json    |  42 ++++++++
 apps/web/src/locales/kn/messages.json    |  42 ++++++++
 apps/web/src/locales/ko/messages.json    |  42 ++++++++
 apps/web/src/locales/lv/messages.json    |  42 ++++++++
 apps/web/src/locales/ml/messages.json    |  42 ++++++++
 apps/web/src/locales/mr/messages.json    |  42 ++++++++
 apps/web/src/locales/my/messages.json    |  42 ++++++++
 apps/web/src/locales/nb/messages.json    |  42 ++++++++
 apps/web/src/locales/ne/messages.json    |  42 ++++++++
 apps/web/src/locales/nl/messages.json    |  42 ++++++++
 apps/web/src/locales/nn/messages.json    |  42 ++++++++
 apps/web/src/locales/or/messages.json    |  42 ++++++++
 apps/web/src/locales/pl/messages.json    |  42 ++++++++
 apps/web/src/locales/pt_BR/messages.json |  42 ++++++++
 apps/web/src/locales/pt_PT/messages.json |  46 ++++++++-
 apps/web/src/locales/ro/messages.json    |  42 ++++++++
 apps/web/src/locales/ru/messages.json    |  44 ++++++++-
 apps/web/src/locales/si/messages.json    |  42 ++++++++
 apps/web/src/locales/sk/messages.json    | 120 +++++++++++++++--------
 apps/web/src/locales/sl/messages.json    |  42 ++++++++
 apps/web/src/locales/sr_CS/messages.json |  42 ++++++++
 apps/web/src/locales/sr_CY/messages.json |  42 ++++++++
 apps/web/src/locales/sv/messages.json    |  86 +++++++++++-----
 apps/web/src/locales/te/messages.json    |  42 ++++++++
 apps/web/src/locales/th/messages.json    |  42 ++++++++
 apps/web/src/locales/tr/messages.json    |  42 ++++++++
 apps/web/src/locales/uk/messages.json    |  42 ++++++++
 apps/web/src/locales/vi/messages.json    |  42 ++++++++
 apps/web/src/locales/zh_CN/messages.json |  42 ++++++++
 apps/web/src/locales/zh_TW/messages.json |  42 ++++++++
 62 files changed, 2682 insertions(+), 78 deletions(-)

diff --git a/apps/web/src/locales/af/messages.json b/apps/web/src/locales/af/messages.json
index 75c9275b288..5cd8d087d15 100644
--- a/apps/web/src/locales/af/messages.json
+++ b/apps/web/src/locales/af/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "Beveiligde nota"
   },
+  "typeNote": {
+    "message": "Note"
+  },
   "typeSshKey": {
     "message": "SSH key"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Copy name"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Ek"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Webkluis"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Login request has already expired."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Review login request"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "Your free trial ends in $COUNT$ days.",
     "placeholders": {
diff --git a/apps/web/src/locales/ar/messages.json b/apps/web/src/locales/ar/messages.json
index 1c103219fa1..7642fa69d34 100644
--- a/apps/web/src/locales/ar/messages.json
+++ b/apps/web/src/locales/ar/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "ملاحظة سرية"
   },
+  "typeNote": {
+    "message": "Note"
+  },
   "typeSshKey": {
     "message": "مفتاح بروتوكول النقل الآمن"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "نسخ الاسم"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "أنا"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "قبو الويب"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Login request has already expired."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Review login request"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "Your free trial ends in $COUNT$ days.",
     "placeholders": {
diff --git a/apps/web/src/locales/az/messages.json b/apps/web/src/locales/az/messages.json
index a455efa3230..4bcb8431331 100644
--- a/apps/web/src/locales/az/messages.json
+++ b/apps/web/src/locales/az/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "Güvənli qeyd"
   },
+  "typeNote": {
+    "message": "Note"
+  },
   "typeSshKey": {
     "message": "SSH açarı"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Adı kopyala"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Mən"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Veb seyf"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "Başqa bir cihazdan giriş cəhdinə rədd cavabı verdiniz. Bu həqiqətən siz idinizsə, cihazla yenidən giriş etməyə çalışın."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Giriş tələbinin müddəti artıq bitib."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Giriş tələbini incələ"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "Ödənişsiz sınaq müddətiniz $COUNT$ günə bitir.",
     "placeholders": {
@@ -8939,11 +8981,11 @@
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
   "uriAdvancedOption": {
-    "message": "Advanced options",
+    "message": "Qabaqcıl seçimlər",
     "description": "Advanced option placeholder for uri option component"
   },
   "warningCapitalized": {
-    "message": "Warning",
+    "message": "Xəbərdarlıq",
     "description": "Warning (should maintain locale-relevant capitalization)"
   },
   "maintainYourSubscription": {
diff --git a/apps/web/src/locales/be/messages.json b/apps/web/src/locales/be/messages.json
index 40875670107..d07df39790c 100644
--- a/apps/web/src/locales/be/messages.json
+++ b/apps/web/src/locales/be/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "Абароненая нататка"
   },
+  "typeNote": {
+    "message": "Note"
+  },
   "typeSshKey": {
     "message": "SSH key"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Copy name"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Я"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Вэб-сховішча"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Login request has already expired."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Review login request"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "Your free trial ends in $COUNT$ days.",
     "placeholders": {
diff --git a/apps/web/src/locales/bg/messages.json b/apps/web/src/locales/bg/messages.json
index 77ea169bb2b..4bcfd56e95c 100644
--- a/apps/web/src/locales/bg/messages.json
+++ b/apps/web/src/locales/bg/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "Защитена бележка"
   },
+  "typeNote": {
+    "message": "Бележка"
+  },
   "typeSshKey": {
     "message": "SSH ключ"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Копиране на името"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Аз"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Трезор по уеб"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "ИКР"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "Вие отказахте опит за вписване от друго устройство. Ако това наистина сте били Вие, опитайте да се впишете от устройството отново."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Заявката за вписване вече е изтекла."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Преглед на заявката за вписване"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "Вашият безплатен пробен период приключва след $COUNT$ дни.",
     "placeholders": {
diff --git a/apps/web/src/locales/bn/messages.json b/apps/web/src/locales/bn/messages.json
index 66aa1b9a62e..0b0573c244d 100644
--- a/apps/web/src/locales/bn/messages.json
+++ b/apps/web/src/locales/bn/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "সুরক্ষিত নোট"
   },
+  "typeNote": {
+    "message": "Note"
+  },
   "typeSshKey": {
     "message": "SSH key"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Copy name"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Me"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "ওয়েব ভল্ট"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Login request has already expired."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Review login request"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "Your free trial ends in $COUNT$ days.",
     "placeholders": {
diff --git a/apps/web/src/locales/bs/messages.json b/apps/web/src/locales/bs/messages.json
index 9d9bece2b6e..02ed711cb5f 100644
--- a/apps/web/src/locales/bs/messages.json
+++ b/apps/web/src/locales/bs/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "Sigurna bilješka"
   },
+  "typeNote": {
+    "message": "Note"
+  },
   "typeSshKey": {
     "message": "SSH key"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Copy name"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Ja"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Web vault"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Login request has already expired."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Review login request"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "Your free trial ends in $COUNT$ days.",
     "placeholders": {
diff --git a/apps/web/src/locales/ca/messages.json b/apps/web/src/locales/ca/messages.json
index 118af8c66fb..782ecc69b67 100644
--- a/apps/web/src/locales/ca/messages.json
+++ b/apps/web/src/locales/ca/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "Nota segura"
   },
+  "typeNote": {
+    "message": "Note"
+  },
   "typeSshKey": {
     "message": "Clau SSH"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Copia el nom"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Jo"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Caixa forta web"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Login request has already expired."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Review login request"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "Your free trial ends in $COUNT$ days.",
     "placeholders": {
diff --git a/apps/web/src/locales/cs/messages.json b/apps/web/src/locales/cs/messages.json
index 51c04fd9260..6ae11489480 100644
--- a/apps/web/src/locales/cs/messages.json
+++ b/apps/web/src/locales/cs/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "Zabezpečená poznámka"
   },
+  "typeNote": {
+    "message": "Poznámka"
+  },
   "typeSshKey": {
     "message": "SSH klíč"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Kopírovat název"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Já"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Webový trezor"
   },
+  "webApp": {
+    "message": "Webová aplikace"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "Pokus o přihlášení byl zamítnut z jiného zařízení. Pokud jste to opravdu Vy, zkuste se znovu přihlásit do zařízení."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Požadavek na přihlášení byl schválen pro $EMAIL$ na $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "Pokus o přihlášení byl zamítnut z jiného zařízení. Pokud jste to Vy, zkuste se znovu přihlásit do zařízení."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Požadavek na přihlášení již vypršel."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Podívat se na žádost o přihlášení"
   },
+  "loginRequest": {
+    "message": "Požadavek na přihlášení"
+  },
   "freeTrialEndPromptCount": {
     "message": "Vaše zkušební doba končí za $COUNT$ dnů.",
     "placeholders": {
diff --git a/apps/web/src/locales/cy/messages.json b/apps/web/src/locales/cy/messages.json
index 012dcac1fc9..4089f11392c 100644
--- a/apps/web/src/locales/cy/messages.json
+++ b/apps/web/src/locales/cy/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "Secure note"
   },
+  "typeNote": {
+    "message": "Note"
+  },
   "typeSshKey": {
     "message": "SSH key"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Copy name"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Me"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Web vault"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Login request has already expired."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Review login request"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "Your free trial ends in $COUNT$ days.",
     "placeholders": {
diff --git a/apps/web/src/locales/da/messages.json b/apps/web/src/locales/da/messages.json
index 3dfde9ee756..1d2ebcaca0f 100644
--- a/apps/web/src/locales/da/messages.json
+++ b/apps/web/src/locales/da/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "Sikret notat"
   },
+  "typeNote": {
+    "message": "Note"
+  },
   "typeSshKey": {
     "message": "SSH-nøgle"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Kopiér navn"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Mig"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Web-boks"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "Du nægtede et loginforsøg fra en anden enhed. Hvis dette virkelig var dig, prøv at logge ind med enheden igen."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Login-anmodning er allerede udløbet."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Review login request"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "Den gratis prøveperiode slutter om $COUNT$ dage.",
     "placeholders": {
diff --git a/apps/web/src/locales/de/messages.json b/apps/web/src/locales/de/messages.json
index 5ce3b6883bb..3b0d8cccf97 100644
--- a/apps/web/src/locales/de/messages.json
+++ b/apps/web/src/locales/de/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "Sichere Notiz"
   },
+  "typeNote": {
+    "message": "Notiz"
+  },
   "typeSshKey": {
     "message": "SSH-Schlüssel"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Name kopieren"
   },
+  "cardNumber": {
+    "message": "Kartennummer"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Ich"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Web-Tresor"
   },
+  "webApp": {
+    "message": "Web-App"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "Du hast einen Anmeldeversuch von einem anderen Gerät abgelehnt. Wenn du das wirklich warst, versuche dich erneut mit dem Gerät anzumelden."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "Du hast einen Anmeldeversuch von einem anderen Gerät abgelehnt. Wenn du das wirklich warst, versuche dich erneut mit dem Gerät anzumelden."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Anmeldeanfrage ist bereits abgelaufen."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Anmeldeanfrage überprüfen"
   },
+  "loginRequest": {
+    "message": "Anmeldungsanfrage"
+  },
   "freeTrialEndPromptCount": {
     "message": "Deine kostenlose Testversion endet in $COUNT$ Tagen.",
     "placeholders": {
@@ -6077,7 +6119,7 @@
     "message": "Master-Passwort aktualisieren"
   },
   "accountRecoveryUpdateMasterPasswordSubtitle": {
-    "message": "Change your master password to complete account recovery."
+    "message": "Ändere dein Master-Passwort, um die Kontowiederherstellung abzuschließen."
   },
   "updateMasterPasswordSubtitle": {
     "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
@@ -8463,7 +8505,7 @@
     "message": "Admin-Genehmigung anfragen"
   },
   "unableToCompleteLogin": {
-    "message": "Unable to complete login"
+    "message": "Anmeldung kann nicht abgeschlossen werden"
   },
   "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
     "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
@@ -8935,7 +8977,7 @@
     "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
   },
   "uriMatchWarningDialogLink": {
-    "message": "More about match detection",
+    "message": "Mehr über die Übereinstimmungs-Erkennung",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
   "uriAdvancedOption": {
@@ -8943,7 +8985,7 @@
     "description": "Advanced option placeholder for uri option component"
   },
   "warningCapitalized": {
-    "message": "Warning",
+    "message": "Warnung",
     "description": "Warning (should maintain locale-relevant capitalization)"
   },
   "maintainYourSubscription": {
@@ -10758,20 +10800,20 @@
     "message": "Skip to web app"
   },
   "bitwardenExtensionInstalled": {
-    "message": "Bitwarden extension installed!"
+    "message": "Bitwarden-Erweiterung installiert!"
   },
   "openExtensionToAutofill": {
     "message": "Open the extension to log in and start autofilling."
   },
   "openBitwardenExtension": {
-    "message": "Open Bitwarden extension"
+    "message": "Bitwarden-Erweiterung öffnen"
   },
   "gettingStartedWithBitwardenPart1": {
     "message": "For tips on getting started with Bitwarden visit the",
     "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
-    "message": "Learning Center",
+    "message": "Lernzentrum",
     "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
@@ -10808,19 +10850,19 @@
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
   },
   "billingAddress": {
-    "message": "Billing address"
+    "message": "Rechnungsadresse"
   },
   "addBillingAddress": {
-    "message": "Add billing address"
+    "message": "Rechnungsadresse hinzufügen"
   },
   "editBillingAddress": {
-    "message": "Edit billing address"
+    "message": "Rechnungsadresse bearbeiten"
   },
   "noBillingAddress": {
     "message": "No address on file."
   },
   "billingAddressUpdated": {
-    "message": "Your billing address has been updated."
+    "message": "Deine Rechnungsadresse wurde aktualisiert."
   },
   "paymentDetails": {
     "message": "Payment details"
@@ -10829,7 +10871,7 @@
     "message": "Your payment method has been updated."
   },
   "bankAccountVerified": {
-    "message": "Your bank account has been verified."
+    "message": "Dein Bankkonto wurde verifiziert."
   },
   "availableCreditAppliedToInvoice": {
     "message": "Any available credit will be automatically applied towards invoices generated for this account."
diff --git a/apps/web/src/locales/el/messages.json b/apps/web/src/locales/el/messages.json
index b3e8d6d91d2..21f13a3440f 100644
--- a/apps/web/src/locales/el/messages.json
+++ b/apps/web/src/locales/el/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "Ασφαλής σημείωση"
   },
+  "typeNote": {
+    "message": "Note"
+  },
   "typeSshKey": {
     "message": "Κλειδί SSH"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Αντιγραφή ονόματος"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Εγώ"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Web Vault"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Login request has already expired."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Review login request"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "Your free trial ends in $COUNT$ days.",
     "placeholders": {
diff --git a/apps/web/src/locales/en_GB/messages.json b/apps/web/src/locales/en_GB/messages.json
index 7993308c44a..2b3edba1ee9 100644
--- a/apps/web/src/locales/en_GB/messages.json
+++ b/apps/web/src/locales/en_GB/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "Secure note"
   },
+  "typeNote": {
+    "message": "Note"
+  },
   "typeSshKey": {
     "message": "SSH key"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Copy name"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Me"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Web vault"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Login request has already expired."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Review login request"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "Your free trial ends in $COUNT$ days.",
     "placeholders": {
diff --git a/apps/web/src/locales/en_IN/messages.json b/apps/web/src/locales/en_IN/messages.json
index 1608845dca0..f2fb53f9b7d 100644
--- a/apps/web/src/locales/en_IN/messages.json
+++ b/apps/web/src/locales/en_IN/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "Secure note"
   },
+  "typeNote": {
+    "message": "Note"
+  },
   "typeSshKey": {
     "message": "SSH key"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Copy name"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Me"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Web vault"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Login request has already expired."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Review login request"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "Your free trial ends in $COUNT$ days.",
     "placeholders": {
diff --git a/apps/web/src/locales/eo/messages.json b/apps/web/src/locales/eo/messages.json
index 86ed31ac4a4..ebc17d7e9b2 100644
--- a/apps/web/src/locales/eo/messages.json
+++ b/apps/web/src/locales/eo/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "Sekura noto"
   },
+  "typeNote": {
+    "message": "Note"
+  },
   "typeSshKey": {
     "message": "SSH-ŝlosilo"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Kopii la nomon"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Mi"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Rettrezorejo"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Login request has already expired."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Review login request"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "Your free trial ends in $COUNT$ days.",
     "placeholders": {
diff --git a/apps/web/src/locales/es/messages.json b/apps/web/src/locales/es/messages.json
index 1daee236d86..5c70de44650 100644
--- a/apps/web/src/locales/es/messages.json
+++ b/apps/web/src/locales/es/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "Nota segura"
   },
+  "typeNote": {
+    "message": "Note"
+  },
   "typeSshKey": {
     "message": "Clave SSH"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Copiar nombre"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Yo"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Caja fuerte Web"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Login request has already expired."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Review login request"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "Tu prueba gratuita termina en $COUNT$ días.",
     "placeholders": {
diff --git a/apps/web/src/locales/et/messages.json b/apps/web/src/locales/et/messages.json
index d95ff17edb8..6e865f9b5cb 100644
--- a/apps/web/src/locales/et/messages.json
+++ b/apps/web/src/locales/et/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "Turvaline märkus"
   },
+  "typeNote": {
+    "message": "Note"
+  },
   "typeSshKey": {
     "message": "SSH key"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Kopeeri nimi"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Mina"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Veebihoidla"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Login request has already expired."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Review login request"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "Sinu tasuta prooviaeg lõppeb $COUNT$ päeva pärast.",
     "placeholders": {
diff --git a/apps/web/src/locales/eu/messages.json b/apps/web/src/locales/eu/messages.json
index 546ffae4aea..fe066e152c0 100644
--- a/apps/web/src/locales/eu/messages.json
+++ b/apps/web/src/locales/eu/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "Ohar segurua"
   },
+  "typeNote": {
+    "message": "Note"
+  },
   "typeSshKey": {
     "message": "SSH key"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Copy name"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Ni"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Webguneko kutxa gotorra"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Login request has already expired."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Review login request"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "Your free trial ends in $COUNT$ days.",
     "placeholders": {
diff --git a/apps/web/src/locales/fa/messages.json b/apps/web/src/locales/fa/messages.json
index a4072ddca87..8e8fd9663bf 100644
--- a/apps/web/src/locales/fa/messages.json
+++ b/apps/web/src/locales/fa/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "یادداشت امن"
   },
+  "typeNote": {
+    "message": "Note"
+  },
   "typeSshKey": {
     "message": "کلید SSH"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "کپی نام"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "من"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "گاوصندوق وب"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "شما تلاش برای ورود به سیستم از دستگاه دیگری را رد کردید. اگر واقعاً این شما بودید، سعی کنید دوباره با دستگاه وارد شوید."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "درخواست ورود قبلاً منقضی شده است."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "بررسی درخواست ورود"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "دوره آزمایشی رایگان شما در $COUNT$ روز به پایان می‌رسد.",
     "placeholders": {
diff --git a/apps/web/src/locales/fi/messages.json b/apps/web/src/locales/fi/messages.json
index deb06c4c2b7..b2387149755 100644
--- a/apps/web/src/locales/fi/messages.json
+++ b/apps/web/src/locales/fi/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "Salattu muistio"
   },
+  "typeNote": {
+    "message": "Note"
+  },
   "typeSshKey": {
     "message": "SSH-avain"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Kopioi nimi"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Minä"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Verkkoholvi"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "Komentorivi"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Kirjautumispyyntö on jo erääntynyt."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Tarkastele kirjautumispyyntöä"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "Ilmainen kokeilujakso päättyy $COUNT$ päivän kuluttua.",
     "placeholders": {
diff --git a/apps/web/src/locales/fil/messages.json b/apps/web/src/locales/fil/messages.json
index 9925074ad18..b56828be0e4 100644
--- a/apps/web/src/locales/fil/messages.json
+++ b/apps/web/src/locales/fil/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "Secure na tala"
   },
+  "typeNote": {
+    "message": "Note"
+  },
   "typeSshKey": {
     "message": "SSH key"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Copy name"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Ako"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Web vault"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Login request has already expired."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Review login request"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "Your free trial ends in $COUNT$ days.",
     "placeholders": {
diff --git a/apps/web/src/locales/fr/messages.json b/apps/web/src/locales/fr/messages.json
index 5ca186d843c..9a86b4aceb5 100644
--- a/apps/web/src/locales/fr/messages.json
+++ b/apps/web/src/locales/fr/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "Note sécurisée"
   },
+  "typeNote": {
+    "message": "Note"
+  },
   "typeSshKey": {
     "message": "Clé SSH"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Copier le nom"
   },
+  "cardNumber": {
+    "message": "numéro de carte"
+  },
+  "copyFieldCipherName": {
+    "message": "Copier $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Moi"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Coffre web"
   },
+  "webApp": {
+    "message": "Application web"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "Vous avez refusé une tentative de connexion depuis un autre appareil. Si c'était vraiment vous, essayez de vous connecter à nouveau avec l'appareil."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Demande de connexion approuvée pour $EMAIL$ sur $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "Vous avez refusé une tentative de connexion depuis un autre appareil. Si c'était vous, essayez de vous connecter à nouveau avec l'appareil."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "La demande de connexion a déjà expiré."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Examiner la demande de connexion"
   },
+  "loginRequest": {
+    "message": "Demande de connexion"
+  },
   "freeTrialEndPromptCount": {
     "message": "Votre essai gratuit se termine dans $COUNT$ jours.",
     "placeholders": {
diff --git a/apps/web/src/locales/gl/messages.json b/apps/web/src/locales/gl/messages.json
index d22f7a2278c..a456d62e8c6 100644
--- a/apps/web/src/locales/gl/messages.json
+++ b/apps/web/src/locales/gl/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "Nota segura"
   },
+  "typeNote": {
+    "message": "Note"
+  },
   "typeSshKey": {
     "message": "SSH key"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Copy name"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Me"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Web vault"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Login request has already expired."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Review login request"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "Your free trial ends in $COUNT$ days.",
     "placeholders": {
diff --git a/apps/web/src/locales/he/messages.json b/apps/web/src/locales/he/messages.json
index 476f2603b68..6d0d2e38166 100644
--- a/apps/web/src/locales/he/messages.json
+++ b/apps/web/src/locales/he/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "הערה מאובטחת"
   },
+  "typeNote": {
+    "message": "Note"
+  },
   "typeSshKey": {
     "message": "מפתח SSH"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "העתק שם"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "אני"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "כספת רשת"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "דחית ניסיון כניסה ממכשיר אחר. אם זה באמת היית אתה, נסה להיכנס עם המכשיר שוב."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "כבר פג תוקפה של בקשת הכניסה."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "סקור בקשת כניסה"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "הניסיון החינמי שלך מסתיים בעוד $COUNT$ ימים.",
     "placeholders": {
diff --git a/apps/web/src/locales/hi/messages.json b/apps/web/src/locales/hi/messages.json
index ebb408a90e1..301e8a7abb3 100644
--- a/apps/web/src/locales/hi/messages.json
+++ b/apps/web/src/locales/hi/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "सुरक्षित नोट"
   },
+  "typeNote": {
+    "message": "Note"
+  },
   "typeSshKey": {
     "message": "SSH key"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Copy name"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "मैं"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Web vault"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Login request has already expired."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Review login request"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "Your free trial ends in $COUNT$ days.",
     "placeholders": {
diff --git a/apps/web/src/locales/hr/messages.json b/apps/web/src/locales/hr/messages.json
index 2f706a33e7f..b3b2aec4eb6 100644
--- a/apps/web/src/locales/hr/messages.json
+++ b/apps/web/src/locales/hr/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "Sigurna bilješka"
   },
+  "typeNote": {
+    "message": "Note"
+  },
   "typeSshKey": {
     "message": "SSH ključ"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Kopiraj ime"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Ja"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Web trezor"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "Odbijena je prijava na drugom uređaju. Ako si ovo stvarno ti, pokušaj se ponovno prijaviti uređajem."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Zahtjev za prijavu je već istekao."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Pregledaj zahtjev za prijavu"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "Besplatno probno razdoblje završava za $COUNT$ dan/a.",
     "placeholders": {
diff --git a/apps/web/src/locales/hu/messages.json b/apps/web/src/locales/hu/messages.json
index 6864afe594d..218cd5e0a2d 100644
--- a/apps/web/src/locales/hu/messages.json
+++ b/apps/web/src/locales/hu/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "Biztonságos jegyzet"
   },
+  "typeNote": {
+    "message": "Jegyzet"
+  },
   "typeSshKey": {
     "message": "SSH kulcs"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Név másolása"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Én"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Webes széf"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "Megtagadásra került egy bejelentkezési kísérletet egy másik eszközről. Ha valóban mi voltunk, próbáljunk meg újra bejelentkezni az eszközzel."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "A bejelentkezési kérés már lejárt."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Bejelentkezési kérés áttekintése"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "Az ingyenes próbaidőszak $COUNT$ nap múlva ér véget.",
     "placeholders": {
diff --git a/apps/web/src/locales/id/messages.json b/apps/web/src/locales/id/messages.json
index b1d0554dc4d..d7d7e6699a3 100644
--- a/apps/web/src/locales/id/messages.json
+++ b/apps/web/src/locales/id/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "Catatan Aman"
   },
+  "typeNote": {
+    "message": "Note"
+  },
   "typeSshKey": {
     "message": "SSH key"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Salin nama"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Saya"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Brankas web"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Login request has already expired."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Review login request"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "Your free trial ends in $COUNT$ days.",
     "placeholders": {
diff --git a/apps/web/src/locales/it/messages.json b/apps/web/src/locales/it/messages.json
index 8549da6aadf..0fdcc4952c1 100644
--- a/apps/web/src/locales/it/messages.json
+++ b/apps/web/src/locales/it/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "Nota sicura"
   },
+  "typeNote": {
+    "message": "Note"
+  },
   "typeSshKey": {
     "message": "Chiave SSH"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Copia nome"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Io"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Cassaforte web"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "Hai negato un tentativo di accesso da un altro dispositivo. Se eri davvero tu, prova di nuovo ad accedere con il dispositivo."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "La richiesta di accesso è già scaduta."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Rivedi richiesta di accesso"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "Il tuo periodo di prova scade tra $COUNT$ giorni.",
     "placeholders": {
diff --git a/apps/web/src/locales/ja/messages.json b/apps/web/src/locales/ja/messages.json
index 2e24fd7c27f..b23e971a8ae 100644
--- a/apps/web/src/locales/ja/messages.json
+++ b/apps/web/src/locales/ja/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "セキュアメモ"
   },
+  "typeNote": {
+    "message": "Note"
+  },
   "typeSshKey": {
     "message": "SSH 鍵"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "名前をコピー"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "自分"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "ウェブ保管庫"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "別のデバイスからのログイン試行を拒否しました。本当にあなたであった場合は、もう一度デバイスでログインしてみてください。"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "ログインリクエストの有効期限が切れています。"
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "ログインリクエストの内容を確認"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "無料体験はあと $COUNT$ 日で終了します。",
     "placeholders": {
diff --git a/apps/web/src/locales/ka/messages.json b/apps/web/src/locales/ka/messages.json
index 9dba6b40e41..30cd7a8b70f 100644
--- a/apps/web/src/locales/ka/messages.json
+++ b/apps/web/src/locales/ka/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "უსაფრთხო ჩანაწერი"
   },
+  "typeNote": {
+    "message": "Note"
+  },
   "typeSshKey": {
     "message": "SSH key"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Copy name"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "მე"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Web vault"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Login request has already expired."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Review login request"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "Your free trial ends in $COUNT$ days.",
     "placeholders": {
diff --git a/apps/web/src/locales/km/messages.json b/apps/web/src/locales/km/messages.json
index 57b7a83469e..79d58617943 100644
--- a/apps/web/src/locales/km/messages.json
+++ b/apps/web/src/locales/km/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "Secure note"
   },
+  "typeNote": {
+    "message": "Note"
+  },
   "typeSshKey": {
     "message": "SSH key"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Copy name"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Me"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Web vault"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Login request has already expired."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Review login request"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "Your free trial ends in $COUNT$ days.",
     "placeholders": {
diff --git a/apps/web/src/locales/kn/messages.json b/apps/web/src/locales/kn/messages.json
index f47c3f6de5a..787da7b4dc9 100644
--- a/apps/web/src/locales/kn/messages.json
+++ b/apps/web/src/locales/kn/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "ಸುರಕ್ಷಿತ ಟಿಪ್ಪಣಿ"
   },
+  "typeNote": {
+    "message": "Note"
+  },
   "typeSshKey": {
     "message": "SSH key"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Copy name"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "ನನ್ನ"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "ವೆಬ್ ವಾಲ್ಟ್"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Login request has already expired."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Review login request"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "Your free trial ends in $COUNT$ days.",
     "placeholders": {
diff --git a/apps/web/src/locales/ko/messages.json b/apps/web/src/locales/ko/messages.json
index 29d34b2d587..af7442ce153 100644
--- a/apps/web/src/locales/ko/messages.json
+++ b/apps/web/src/locales/ko/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "보안 메모"
   },
+  "typeNote": {
+    "message": "Note"
+  },
   "typeSshKey": {
     "message": "SSH key"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Copy name"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "나"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "웹 보관함"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Login request has already expired."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Review login request"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "Your free trial ends in $COUNT$ days.",
     "placeholders": {
diff --git a/apps/web/src/locales/lv/messages.json b/apps/web/src/locales/lv/messages.json
index 2df1a726859..770979c8a59 100644
--- a/apps/web/src/locales/lv/messages.json
+++ b/apps/web/src/locales/lv/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "Droša piezīme"
   },
+  "typeNote": {
+    "message": "Piezīme"
+  },
   "typeSshKey": {
     "message": "SSH atslēga"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Ievietot nosaukumu starpliktuvē"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Es"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Tīmekļa glabātava"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "Tu noraidīji pieteikšanās mēģinājumu no citas ierīces. Ja tas tiešām biji Tu, mēģini pieteikties no ierīces vēlreiz!"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Pieteikšanās pieprasījuma derīgums jau ir beidzies."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Izskatīt pieteikšanās pieprasījumu"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "Bezmaksas izmēģinājums beigsies pēc $COUNT$ dienām.",
     "placeholders": {
diff --git a/apps/web/src/locales/ml/messages.json b/apps/web/src/locales/ml/messages.json
index 0f37ab5065d..51dc8b6cdf9 100644
--- a/apps/web/src/locales/ml/messages.json
+++ b/apps/web/src/locales/ml/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "സുരക്ഷിത കുറിപ്പ്"
   },
+  "typeNote": {
+    "message": "Note"
+  },
   "typeSshKey": {
     "message": "SSH key"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Copy name"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Me"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Web Vault"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Login request has already expired."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Review login request"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "Your free trial ends in $COUNT$ days.",
     "placeholders": {
diff --git a/apps/web/src/locales/mr/messages.json b/apps/web/src/locales/mr/messages.json
index 19cfb6bebc3..86c8a31943d 100644
--- a/apps/web/src/locales/mr/messages.json
+++ b/apps/web/src/locales/mr/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "Secure note"
   },
+  "typeNote": {
+    "message": "Note"
+  },
   "typeSshKey": {
     "message": "SSH key"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Copy name"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Me"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Web vault"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Login request has already expired."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Review login request"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "Your free trial ends in $COUNT$ days.",
     "placeholders": {
diff --git a/apps/web/src/locales/my/messages.json b/apps/web/src/locales/my/messages.json
index 57b7a83469e..79d58617943 100644
--- a/apps/web/src/locales/my/messages.json
+++ b/apps/web/src/locales/my/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "Secure note"
   },
+  "typeNote": {
+    "message": "Note"
+  },
   "typeSshKey": {
     "message": "SSH key"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Copy name"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Me"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Web vault"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Login request has already expired."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Review login request"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "Your free trial ends in $COUNT$ days.",
     "placeholders": {
diff --git a/apps/web/src/locales/nb/messages.json b/apps/web/src/locales/nb/messages.json
index c076b67f21e..6018d3664f1 100644
--- a/apps/web/src/locales/nb/messages.json
+++ b/apps/web/src/locales/nb/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "Sikkert notat"
   },
+  "typeNote": {
+    "message": "Note"
+  },
   "typeSshKey": {
     "message": "SSH-nøkkel"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Kopiér navn"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Meg"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Netthvelv"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "Ledetekst"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Login request has already expired."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Review login request"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "Your free trial ends in $COUNT$ days.",
     "placeholders": {
diff --git a/apps/web/src/locales/ne/messages.json b/apps/web/src/locales/ne/messages.json
index 80aed726a98..ba910035310 100644
--- a/apps/web/src/locales/ne/messages.json
+++ b/apps/web/src/locales/ne/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "Secure note"
   },
+  "typeNote": {
+    "message": "Note"
+  },
   "typeSshKey": {
     "message": "SSH key"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Copy name"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Me"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Web vault"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Login request has already expired."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Review login request"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "Your free trial ends in $COUNT$ days.",
     "placeholders": {
diff --git a/apps/web/src/locales/nl/messages.json b/apps/web/src/locales/nl/messages.json
index 9ee85ea8021..45954a24a3f 100644
--- a/apps/web/src/locales/nl/messages.json
+++ b/apps/web/src/locales/nl/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "Veilige notitie"
   },
+  "typeNote": {
+    "message": "Notitie"
+  },
   "typeSshKey": {
     "message": "SSH-sleutel"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Naam kopiëren"
   },
+  "cardNumber": {
+    "message": "kaartnummer"
+  },
+  "copyFieldCipherName": {
+    "message": "$FIELD$, $CIPHERNAME$ kopiëren",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Ik"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Webkluis"
   },
+  "webApp": {
+    "message": "Web-app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "Je hebt een inlogpoging vanaf een ander apparaat geweigerd. Als je dit toch echt zelf was, probeer dan opnieuw in te loggen met het apparaat."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Inloggen voor $EMAIL$ goedgekeurd op $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "Je hebt een inlogpoging vanaf een ander apparaat geweigerd. Als je dit toch echt zelf was, probeer dan opnieuw in te loggen met het apparaat."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Inlogverzoek is al verlopen."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Inlogverzoek afhandelen"
   },
+  "loginRequest": {
+    "message": "Log-inverzoek"
+  },
   "freeTrialEndPromptCount": {
     "message": "Je gratis proefperiode eindigt over $COUNT$ dagen.",
     "placeholders": {
diff --git a/apps/web/src/locales/nn/messages.json b/apps/web/src/locales/nn/messages.json
index 9b74122c868..e04f1cb835f 100644
--- a/apps/web/src/locales/nn/messages.json
+++ b/apps/web/src/locales/nn/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "Trygg notat"
   },
+  "typeNote": {
+    "message": "Note"
+  },
   "typeSshKey": {
     "message": "SSH key"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Copy name"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Eg"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Web vault"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Login request has already expired."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Review login request"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "Your free trial ends in $COUNT$ days.",
     "placeholders": {
diff --git a/apps/web/src/locales/or/messages.json b/apps/web/src/locales/or/messages.json
index 57b7a83469e..79d58617943 100644
--- a/apps/web/src/locales/or/messages.json
+++ b/apps/web/src/locales/or/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "Secure note"
   },
+  "typeNote": {
+    "message": "Note"
+  },
   "typeSshKey": {
     "message": "SSH key"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Copy name"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Me"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Web vault"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Login request has already expired."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Review login request"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "Your free trial ends in $COUNT$ days.",
     "placeholders": {
diff --git a/apps/web/src/locales/pl/messages.json b/apps/web/src/locales/pl/messages.json
index 8665c3ddc32..749a073cdb1 100644
--- a/apps/web/src/locales/pl/messages.json
+++ b/apps/web/src/locales/pl/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "Bezpieczna notatka"
   },
+  "typeNote": {
+    "message": "Note"
+  },
   "typeSshKey": {
     "message": "Klucz SSH"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Skopiuj nazwę"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Ja"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Sejf internetowy"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "Odrzucono próby logowania z innego urządzenia. Jeśli to naprawdę Ty, spróbuj ponownie zalogować się za pomocą urządzenia."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Prośba logowania wygasła."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Przejrzyj żądanie logowania"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "Twój okres próbny kończy się za $COUNT$ dni.",
     "placeholders": {
diff --git a/apps/web/src/locales/pt_BR/messages.json b/apps/web/src/locales/pt_BR/messages.json
index 4654fe2c176..09d4b078ee0 100644
--- a/apps/web/src/locales/pt_BR/messages.json
+++ b/apps/web/src/locales/pt_BR/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "Nota Segura"
   },
+  "typeNote": {
+    "message": "Note"
+  },
   "typeSshKey": {
     "message": "Chave SSH"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Copiar nome"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Eu"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Cofre Web"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "Você negou uma tentativa de acesso de outro dispositivo. Se isso realmente foi você, tente fazer login com o dispositivo novamente."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "O pedido de login já expirou."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Revisar solicitação de login"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "Seu teste gratuito termina em $COUNT$ dias.",
     "placeholders": {
diff --git a/apps/web/src/locales/pt_PT/messages.json b/apps/web/src/locales/pt_PT/messages.json
index e22731fda35..c7d772d8003 100644
--- a/apps/web/src/locales/pt_PT/messages.json
+++ b/apps/web/src/locales/pt_PT/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "Nota segura"
   },
+  "typeNote": {
+    "message": "Nota"
+  },
   "typeSshKey": {
     "message": "Chave SSH"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Copiar nome"
   },
+  "cardNumber": {
+    "message": "número do cartão"
+  },
+  "copyFieldCipherName": {
+    "message": "Copiar $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Eu"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Cofre web"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "Recusou uma tentativa de início de sessão de outro dispositivo. Se foi realmente o caso, tente iniciar sessão com o dispositivo novamente."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Pedido de início de sessão aprovado para $EMAIL$ no $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "Recusou uma tentativa de início de sessão de outro dispositivo. Se foi realmente o caso, tente iniciar sessão com o dispositivo novamente."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "O pedido de início de sessão já expirou."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Rever pedido de início de sessão"
   },
+  "loginRequest": {
+    "message": "Pedido de início de sessão"
+  },
   "freeTrialEndPromptCount": {
     "message": "O seu período experimental gratuito termina dentro de $COUNT$ dias.",
     "placeholders": {
@@ -8939,11 +8981,11 @@
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
   "uriAdvancedOption": {
-    "message": "Advanced options",
+    "message": "Opções avançadas",
     "description": "Advanced option placeholder for uri option component"
   },
   "warningCapitalized": {
-    "message": "Warning",
+    "message": "Aviso",
     "description": "Warning (should maintain locale-relevant capitalization)"
   },
   "maintainYourSubscription": {
diff --git a/apps/web/src/locales/ro/messages.json b/apps/web/src/locales/ro/messages.json
index 471b6af342b..3d3e48f0893 100644
--- a/apps/web/src/locales/ro/messages.json
+++ b/apps/web/src/locales/ro/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "Notă securizată"
   },
+  "typeNote": {
+    "message": "Note"
+  },
   "typeSshKey": {
     "message": "Cheie SSH"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Copiați numele"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Eu"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Seif web"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Login request has already expired."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Review login request"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "Your free trial ends in $COUNT$ days.",
     "placeholders": {
diff --git a/apps/web/src/locales/ru/messages.json b/apps/web/src/locales/ru/messages.json
index 944acc70862..4cf70f03865 100644
--- a/apps/web/src/locales/ru/messages.json
+++ b/apps/web/src/locales/ru/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "Защищенная заметка"
   },
+  "typeNote": {
+    "message": "Заметка"
+  },
   "typeSshKey": {
     "message": "Ключ SSH"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Скопировать имя"
   },
+  "cardNumber": {
+    "message": "номер карты"
+  },
+  "copyFieldCipherName": {
+    "message": "Копировать $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Мое"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Веб-хранилище"
   },
+  "webApp": {
+    "message": "Веб-приложение"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "Вы отклонили попытку авторизации с другого устройства. Если это действительно были вы, попробуйте авторизоваться с этого устройства еще раз."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Запрос входа для $EMAIL$ на $DEVICE$ одобрен",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "Вы отклонили попытку авторизации с другого устройства. Если это были вы, попробуйте авторизоваться с этого устройства еще раз."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Запрос на вход истек."
   },
@@ -3971,7 +4010,7 @@
     "message": "Только что"
   },
   "requestedXMinutesAgo": {
-    "message": "Запрошено $MINUTES$ мин назад",
+    "message": "Запрошено $MINUTES$ минут назад",
     "placeholders": {
       "minutes": {
         "content": "$1",
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Просмотр запроса на вход"
   },
+  "loginRequest": {
+    "message": "Запрос на вход"
+  },
   "freeTrialEndPromptCount": {
     "message": "Ваша бесплатная пробная версия заканчивается через $COUNT$ дней.",
     "placeholders": {
diff --git a/apps/web/src/locales/si/messages.json b/apps/web/src/locales/si/messages.json
index 98bb0c5bfdc..03a569bc56f 100644
--- a/apps/web/src/locales/si/messages.json
+++ b/apps/web/src/locales/si/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "Secure note"
   },
+  "typeNote": {
+    "message": "Note"
+  },
   "typeSshKey": {
     "message": "SSH key"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Copy name"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Me"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Web vault"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Login request has already expired."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Review login request"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "Your free trial ends in $COUNT$ days.",
     "placeholders": {
diff --git a/apps/web/src/locales/sk/messages.json b/apps/web/src/locales/sk/messages.json
index 3ffbd08d86e..ca1edfd11f7 100644
--- a/apps/web/src/locales/sk/messages.json
+++ b/apps/web/src/locales/sk/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "Zabezpečená poznámka"
   },
+  "typeNote": {
+    "message": "Poznámka"
+  },
   "typeSshKey": {
     "message": "Kľúč SSH"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Kopírovať meno"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Ja"
   },
@@ -1785,7 +1805,7 @@
     "message": "Ak budete pokračovať, budete odhlásený a budete sa musieť opäť prihlásiť. Aktívne sedenia na iných zariadeniach môžu byť aktívne ešte hodinu."
   },
   "changePasswordWarning": {
-    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+    "message": "Po zmene hesla sa musíte prihlásiť pomocou nového hesla. Aktívne relácie na iných zariadeniach budú do jednej hodiny odhlásené."
   },
   "emailChanged": {
     "message": "E-mail bol zmenený"
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Webový trezor"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "Odmietli ste pokus o prihlásenie z iného zariadenia. Ak ste to boli naozaj vy, skúste sa prihlásiť pomocou zariadenia znova."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Platnosť žiadosti o prihlásenie už vypršala."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Skontrolovať požiadavku o prihlásenie"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "Vaše bezplatné skúšobné obdobie vyprší o $COUNT$ dní.",
     "placeholders": {
@@ -6077,10 +6119,10 @@
     "message": "Aktualizovať hlavné heslo"
   },
   "accountRecoveryUpdateMasterPasswordSubtitle": {
-    "message": "Change your master password to complete account recovery."
+    "message": "Zmeňte hlavné heslo, aby ste dokončili obnovenie účtu."
   },
   "updateMasterPasswordSubtitle": {
-    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+    "message": "Vaše hlavné heslo nespĺňa požiadavky tejto organizácie. Ak chcete pokračovať, zmeňte hlavné heslo."
   },
   "updateMasterPasswordWarning": {
     "message": "Vaše hlavné heslo nedávno zmenil správca vo vašej organizácii. Ak chcete získať prístup k trezoru, musíte aktualizovať vaše hlavné heslo teraz. Pokračovaním sa odhlásite z aktuálnej relácie a budete sa musieť znova prihlásiť. Aktívne relácie na iných zariadeniach môžu zostať aktívne až jednu hodinu."
@@ -8463,10 +8505,10 @@
     "message": "Žiadosť o schválenie správcom"
   },
   "unableToCompleteLogin": {
-    "message": "Unable to complete login"
+    "message": "Nepodarilo sa dokončiť prihlásenie"
   },
   "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
-    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+    "message": "Musíte sa prihlásiť na dôveryhodnom zariadení alebo požiadať správcu o priradenie hesla."
   },
   "trustedDeviceEncryption": {
     "message": "Šifrovanie dôveryhodného zariadenia"
@@ -8923,27 +8965,27 @@
     "description": "Label indicating the most common import formats"
   },
   "uriMatchDefaultStrategyHint": {
-    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "message": "Zisťovanie zhody URI je spôsob, akým Bitwarden identifikuje návrhy na automatické vypĺňanie.",
     "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
   },
   "regExAdvancedOptionWarning": {
-    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "message": "\"Regulárny výraz\" je pokročilá možnosť so zvýšeným rizikom odhalenia prihlasovacích údajov.",
     "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
   },
   "startsWithAdvancedOptionWarning": {
-    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "message": "\"Začína na\" je rozšírená možnosť so zvýšeným rizikom odhalenia prihlasovacích údajov.",
     "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
   },
   "uriMatchWarningDialogLink": {
-    "message": "More about match detection",
+    "message": "Viac informácií o zisťovaní zhody",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
   "uriAdvancedOption": {
-    "message": "Advanced options",
+    "message": "Rozšírené možnosti",
     "description": "Advanced option placeholder for uri option component"
   },
   "warningCapitalized": {
-    "message": "Warning",
+    "message": "Upozornenie",
     "description": "Warning (should maintain locale-relevant capitalization)"
   },
   "maintainYourSubscription": {
@@ -10737,49 +10779,49 @@
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
   "setupExtensionPageTitle": {
-    "message": "Autofill your passwords securely with one click"
+    "message": "Jedným klikom automaticky a bezpečne vyplňte vaše heslá"
   },
   "setupExtensionPageDescription": {
-    "message": "Get the Bitwarden browser extension and start autofilling today"
+    "message": "Získajte rozšírenie Bitwarden pre prehliadače a začnite automaticky vypĺňať heslá už dnes"
   },
   "getTheExtension": {
-    "message": "Get the extension"
+    "message": "Získať rozšírenie"
   },
   "addItLater": {
-    "message": "Add it later"
+    "message": "Pridať neskor"
   },
   "cannotAutofillPasswordsWithoutExtensionTitle": {
-    "message": "You can't autofill passwords without the browser extension"
+    "message": "Bez rozšírenia Bitwarden pre prehliadače nie je možné automaticky vypĺňať heslá"
   },
   "cannotAutofillPasswordsWithoutExtensionDesc": {
-    "message": "Are you sure you don't want to add the extension now?"
+    "message": "Naozaj teraz nechcete pridať rozšírenie?"
   },
   "skipToWebApp": {
-    "message": "Skip to web app"
+    "message": "Preskočiť na webovú aplikáciu"
   },
   "bitwardenExtensionInstalled": {
-    "message": "Bitwarden extension installed!"
+    "message": "Rozšírenie Bitwarden nainštalované!"
   },
   "openExtensionToAutofill": {
-    "message": "Open the extension to log in and start autofilling."
+    "message": "Otvorte rozšírenie, prihláste sa a začnite automatické vypĺňanie."
   },
   "openBitwardenExtension": {
-    "message": "Open Bitwarden extension"
+    "message": "Otvoriť rozšírenie Bitwarden"
   },
   "gettingStartedWithBitwardenPart1": {
-    "message": "For tips on getting started with Bitwarden visit the",
+    "message": "Pre tipy ako začať s Bitwarden, navštívte",
     "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
-    "message": "Learning Center",
+    "message": "Vzdelávacie centrum",
     "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
-    "message": "Help Center",
+    "message": "Centrum pomoci",
     "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
-    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+    "message": "S rozšírením Bitwarden pre prehliadače ľahko vytvorite nove prihlasovacie údaje, pristúpite k vaším uloženým údajom priamo z prehliadača a rýchlo sa prihlásite pomocou Bitwarden automatického vypĺňania."
   },
   "restart": {
     "message": "Reštartovať"
@@ -10808,46 +10850,46 @@
     "description": "Error message shown when trying to add credit to a trialing organization without a billing address."
   },
   "billingAddress": {
-    "message": "Billing address"
+    "message": "Fakturačná adresa"
   },
   "addBillingAddress": {
-    "message": "Add billing address"
+    "message": "Pridať fakturačnú adresu"
   },
   "editBillingAddress": {
-    "message": "Edit billing address"
+    "message": "Upraviť fakturačnú adresu"
   },
   "noBillingAddress": {
-    "message": "No address on file."
+    "message": "Žiadna adresa v záznamoch."
   },
   "billingAddressUpdated": {
-    "message": "Your billing address has been updated."
+    "message": "Vaša fakturačná adresa bola aktualizovaná."
   },
   "paymentDetails": {
-    "message": "Payment details"
+    "message": "Platobné údaje"
   },
   "paymentMethodUpdated": {
-    "message": "Your payment method has been updated."
+    "message": "Vaša platobná metóda bola aktualizovaná."
   },
   "bankAccountVerified": {
-    "message": "Your bank account has been verified."
+    "message": "Váš bankový účet bol overený."
   },
   "availableCreditAppliedToInvoice": {
-    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+    "message": "Dostupný kredit sa automaticky použije na faktúry vytvorené pre tento účet."
   },
   "mustBePositiveNumber": {
-    "message": "Must be a positive number"
+    "message": "Musí byť kladné číslo"
   },
   "cardSecurityCode": {
-    "message": "Card security code"
+    "message": "Bezpečnostný kód karty"
   },
   "cardSecurityCodeDescription": {
-    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+    "message": "Bezpečnostný kód karty, známy aj ako CVV alebo CVC, je zvyčajne trojmiestne číslo vytlačené na zadnej strane kreditnej karty alebo štvormiestne číslo vytlačené na prednej strane nad číslom karty."
   },
   "verifyBankAccountWarning": {
-    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+    "message": "Platba prostredníctvom bankového účtu je dostupná len pre zákazníkov v Spojených Štátoch. Budete musieť overiť svoj bankový účet. V priebehu nasledujúcich 1-2 pracovných dní vykonáme mikro vklad. Na overenie bankového účtu zadajte kód popisu výpisu z tohto vkladu na fakturačnej stránke. Neoverenie bankového účtu bude mať za následok neuskutočnenie platby a pozastavenie vášho predplatného."
   },
   "taxId": {
-    "message": "Tax ID: $TAX_ID$",
+    "message": "Daňové ID: $TAX_ID$",
     "placeholders": {
       "tax_id": {
         "content": "$1",
diff --git a/apps/web/src/locales/sl/messages.json b/apps/web/src/locales/sl/messages.json
index 432c94ded26..d210b85efb4 100644
--- a/apps/web/src/locales/sl/messages.json
+++ b/apps/web/src/locales/sl/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "Zavarovan zapisek"
   },
+  "typeNote": {
+    "message": "Note"
+  },
   "typeSshKey": {
     "message": "SSH key"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Copy name"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Jaz"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Web vault"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Login request has already expired."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Review login request"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "Your free trial ends in $COUNT$ days.",
     "placeholders": {
diff --git a/apps/web/src/locales/sr_CS/messages.json b/apps/web/src/locales/sr_CS/messages.json
index 05ec916c8bb..eab8e098d81 100644
--- a/apps/web/src/locales/sr_CS/messages.json
+++ b/apps/web/src/locales/sr_CS/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "Zaštićena beleška"
   },
+  "typeNote": {
+    "message": "Note"
+  },
   "typeSshKey": {
     "message": "SSH key"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Copy name"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Me"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Web vault"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Login request has already expired."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Review login request"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "Your free trial ends in $COUNT$ days.",
     "placeholders": {
diff --git a/apps/web/src/locales/sr_CY/messages.json b/apps/web/src/locales/sr_CY/messages.json
index fd566100c6d..2bdd42ff340 100644
--- a/apps/web/src/locales/sr_CY/messages.json
+++ b/apps/web/src/locales/sr_CY/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "Сигурносна белешка"
   },
+  "typeNote": {
+    "message": "Note"
+  },
   "typeSshKey": {
     "message": "SSH кључ"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Копирати име"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Ја"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Интернет Сеф"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "Одбили сте покушај пријаве са другог уређаја. Ако сте то заиста били ви, покушајте поново да се пријавите помоћу уређаја."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Захтев за пријаву је већ истекао."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Прегледајте захтев за пријаву"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "Ваша проба се завршава за $COUNT$ дана.",
     "placeholders": {
diff --git a/apps/web/src/locales/sv/messages.json b/apps/web/src/locales/sv/messages.json
index 8a8b5d4fdc7..822dde707b1 100644
--- a/apps/web/src/locales/sv/messages.json
+++ b/apps/web/src/locales/sv/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "Säker anteckning"
   },
+  "typeNote": {
+    "message": "Anteckning"
+  },
   "typeSshKey": {
     "message": "SSH-nyckel"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Kopiera namn"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Jag"
   },
@@ -1061,7 +1081,7 @@
     "message": "Logga in med huvudlösenord"
   },
   "readingPasskeyLoading": {
-    "message": "Läser nyckel..."
+    "message": "Läser inloggningsnyckel..."
   },
   "readingPasskeyLoadingInfo": {
     "message": "Håll det här fönstret öppet och följ anvisningarna från din webbläsare."
@@ -1085,7 +1105,7 @@
     "message": "Tvåstegsverifiering stöds inte för nycklar. Uppdatera appen för att logga in."
   },
   "loginWithPasskeyInfo": {
-    "message": "Använd en genererad nyckel som automatiskt loggar in dig utan lösenord. Din identitet verifieras med biometri, såsom ansiktsigenkänning eller fingeravtryck, eller en annan FIDO2-säkerhetsmetod."
+    "message": "Använd en genererad inloggningsnyckel som automatiskt loggar in dig utan lösenord. Din identitet verifieras med biometri, såsom ansiktsigenkänning eller fingeravtryck, eller en annan FIDO2-säkerhetsmetod."
   },
   "newPasskey": {
     "message": "Ny nyckel"
@@ -1100,16 +1120,16 @@
     "message": "Håll det här fönstret öppet och följ anvisningarna från din webbläsare."
   },
   "errorCreatingPasskey": {
-    "message": "Fel vid skapande av nyckel"
+    "message": "Fel vid skapande av inloggningsnyckel"
   },
   "errorCreatingPasskeyInfo": {
-    "message": "Det uppstod ett problem med att skapa nyckeln."
+    "message": "Det uppstod ett problem med att skapa din inloggningsnyckel."
   },
   "passkeySuccessfullyCreated": {
-    "message": "Nyckeln har skapats!"
+    "message": "Inloggningsnyckeln har skapats!"
   },
   "customPasskeyNameInfo": {
-    "message": "Namnge din nyckel för att hjälpa dig att identifiera den."
+    "message": "Namnge din inloggningsnyckel för att hjälpa dig att identifiera den."
   },
   "useForVaultEncryption": {
     "message": "Använd för valvkryptering"
@@ -1118,7 +1138,7 @@
     "message": "Logga in och lås upp utan ditt huvudlösenord på enheter som stöds. Följ anvisningarna från din webbläsare för att slutföra konfigurationen."
   },
   "useForVaultEncryptionErrorReadingPasskey": {
-    "message": "Fel när nyckeln skulle läsas. Försök igen eller avmarkera det här alternativet."
+    "message": "Fel när inloggningsnyckeln skulle läsas. Försök igen eller avmarkera det här alternativet."
   },
   "encryptionNotSupported": {
     "message": "Kryptering stöds inte"
@@ -1130,7 +1150,7 @@
     "message": "Används för kryptering"
   },
   "loginWithPasskeyEnabled": {
-    "message": "Inloggning med nyckel är aktiverad"
+    "message": "Inloggning med inloggningsnyckel är aktiverad"
   },
   "passkeySaved": {
     "message": "$NAME$ sparad",
@@ -1142,16 +1162,16 @@
     }
   },
   "passkeyRemoved": {
-    "message": "Nyckel borttagen"
+    "message": "Inloggningsnyckel borttagen"
   },
   "removePasskey": {
-    "message": "Ta bort nyckel"
+    "message": "Ta bort inloggningsnyckel"
   },
   "removePasskeyInfo": {
     "message": "Om alla nycklar tas bort kommer du inte kunna logga in på nya enheter utan ditt huvudlösenord."
   },
   "passkeyLimitReachedInfo": {
-    "message": "Gränsen för antal nycklar har uppnåtts. Ta bort en nyckel innan du lägger till en ny."
+    "message": "Gränsen för antal inloggningsnycklar har uppnåtts. Ta bort en inloggningsnyckel innan du lägger till en ny."
   },
   "tryAgain": {
     "message": "Försök igen"
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Webbvalv"
   },
+  "webApp": {
+    "message": "Webbapp"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "Du nekade ett inloggningsförsök från en annan enhet. Om detta verkligen var du, försök att logga in med enheten igen."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Inloggningsbegäran godkänd för $EMAIL$ på $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "Du nekade ett inloggningsförsök från en annan enhet. Om det var du, försök att logga in med enheten igen."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Inloggningsbegäran har redan löpt ut."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Granska begäran om inloggning"
   },
+  "loginRequest": {
+    "message": "Inloggningsbegäran"
+  },
   "freeTrialEndPromptCount": {
     "message": "Din kostnadsfria testperiod avslutas om $COUNT$ dagar.",
     "placeholders": {
@@ -5048,7 +5090,7 @@
     "message": "SSO-identifierare"
   },
   "ssoIdentifierHintPartOne": {
-    "message": "Ge detta ID till dina medlemmar så att de kan logga in med SSO. För att kringgå detta steg, konfigurera",
+    "message": "Ge detta ID till dina medlemmar så att de kan logga in med SSO. För att kringgå detta steg, konfigurera ",
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'Provide this ID to your members to login with SSO. To bypass this step, set up Domain verification'"
   },
   "unlinkSso": {
@@ -6582,7 +6624,7 @@
     "message": "Migrerad till Key Connector"
   },
   "paymentSponsored": {
-    "message": "Ange en betalningsmetod som ska kopplas till organisationen. Oroa dig inte, vi kommer inte att debitera dig något om du inte väljer ytterligare funktioner eller om ditt sponsorskap upphör."
+    "message": "Ange en betalningsmetod som ska kopplas till organisationen. Oroa dig inte, vi kommer inte att debitera dig något om du inte väljer ytterligare funktioner eller om ditt sponsorskap upphör. "
   },
   "orgCreatedSponsorshipInvalid": {
     "message": "Sponsringserbjudandet har löpt ut. Du kan ta bort den organisation du skapade för att undvika en kostnad i slutet av din 7-dagars provperiod. Annars kan du stänga den här prompten för att behålla organisationen och ta på dig faktureringsansvaret."
@@ -8855,10 +8897,10 @@
     "message": "Nyckel"
   },
   "passkeyNotCopied": {
-    "message": "Nyckeln kommer inte att kopieras"
+    "message": "Inloggningsnyckeln kommer inte att kopieras"
   },
   "passkeyNotCopiedAlert": {
-    "message": "Nyckeln kommer inte att kopieras till det klonade föremålet. Vill du fortsätta klona det här objektet?"
+    "message": "Inloggningsnyckeln kommer inte att kopieras till det klonade föremålet. Vill du fortsätta klona det här objektet?"
   },
   "modifiedCollectionManagement": {
     "message": "Modifierad inställning för samlingshantering $ID$.",
@@ -8970,7 +9012,7 @@
     "message": "Tack för att du anmälde dig till Bitwarden Secrets Manager!"
   },
   "smFreeTrialConfirmationEmail": {
-    "message": "Vi har skickat ett bekräftelsemail till din e-postadress på"
+    "message": "Vi har skickat ett bekräftelsemail till din e-postadress på "
   },
   "sorryToSeeYouGo": {
     "message": "Ledsen att se dig gå! Hjälp till att förbättra Bitwarden genom att dela med dig av varför du avbokar.",
@@ -9254,7 +9296,7 @@
     "message": "Ge grupper eller personer tillgång till detta maskinkonto."
   },
   "machineAccountProjectsDescription": {
-    "message": "Tilldela projekt till detta maskinkonto."
+    "message": "Tilldela projekt till detta maskinkonto. "
   },
   "createMachineAccount": {
     "message": "Skapa ett maskinkonto"
@@ -9398,7 +9440,7 @@
     "message": "SCIM"
   },
   "scimIntegrationDescStart": {
-    "message": "Konfigurera",
+    "message": "Konfigurera ",
     "description": "This represents the beginning of a sentence, broken up to include links. The full sentence will be 'Configure SCIM (System for Cross-domain Identity Management) to automatically provision users and groups to Bitwarden using the implementation guide for your Identity Provider"
   },
   "scimIntegrationDescEnd": {
@@ -9807,10 +9849,10 @@
     "message": "Ladda ner CSV"
   },
   "monthlySubscriptionUserSeatsMessage": {
-    "message": "Justeringar av din prenumeration kommer att resultera i proportionella debiteringar av dina faktureringssummor på din nästa faktureringsperiod."
+    "message": "Justeringar av din prenumeration kommer att resultera i proportionella debiteringar av dina faktureringssummor på din nästa faktureringsperiod. "
   },
   "annualSubscriptionUserSeatsMessage": {
-    "message": "Justeringar av din prenumeration kommer att resultera i proportionella avgifter på en månatlig faktureringscykel."
+    "message": "Justeringar av din prenumeration kommer att resultera i proportionella avgifter på en månatlig faktureringscykel. "
   },
   "billingHistoryDescription": {
     "message": "Ladda ner en CSV-fil för att få fram klientuppgifter för varje faktureringsdatum. Proraterade avgifter ingår inte i CSV-filen och kan skilja sig från den länkade fakturan. De mest exakta faktureringsuppgifterna hittar du på dina månadsfakturor.",
@@ -9974,7 +10016,7 @@
     "message": "Valfri lokal hosting"
   },
   "upgradeFreeOrganization": {
-    "message": "Uppgradera din $NAME$-organisation",
+    "message": "Uppgradera din $NAME$-organisation ",
     "placeholders": {
       "name": {
         "content": "$1",
@@ -10835,7 +10877,7 @@
     "message": "Eventuell tillgänglig kredit kommer automatiskt att tillämpas på fakturor som genereras för detta konto."
   },
   "mustBePositiveNumber": {
-    "message": "Måste vara ett positivt nummer."
+    "message": "Måste vara ett positivt tal"
   },
   "cardSecurityCode": {
     "message": "Kortets säkerhetskod"
diff --git a/apps/web/src/locales/te/messages.json b/apps/web/src/locales/te/messages.json
index 57b7a83469e..79d58617943 100644
--- a/apps/web/src/locales/te/messages.json
+++ b/apps/web/src/locales/te/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "Secure note"
   },
+  "typeNote": {
+    "message": "Note"
+  },
   "typeSshKey": {
     "message": "SSH key"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Copy name"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Me"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Web vault"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Login request has already expired."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Review login request"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "Your free trial ends in $COUNT$ days.",
     "placeholders": {
diff --git a/apps/web/src/locales/th/messages.json b/apps/web/src/locales/th/messages.json
index 9562698d1b3..7adae0d45f7 100644
--- a/apps/web/src/locales/th/messages.json
+++ b/apps/web/src/locales/th/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "Secure note"
   },
+  "typeNote": {
+    "message": "Note"
+  },
   "typeSshKey": {
     "message": "SSH key"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Copy name"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "ฉัน"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Web vault"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Login request has already expired."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Review login request"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "Your free trial ends in $COUNT$ days.",
     "placeholders": {
diff --git a/apps/web/src/locales/tr/messages.json b/apps/web/src/locales/tr/messages.json
index 4a336df5a9f..34b549ba813 100644
--- a/apps/web/src/locales/tr/messages.json
+++ b/apps/web/src/locales/tr/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "Güvenli not"
   },
+  "typeNote": {
+    "message": "Not"
+  },
   "typeSshKey": {
     "message": "SSH key"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Adı kopyala"
   },
+  "cardNumber": {
+    "message": "kart numarası"
+  },
+  "copyFieldCipherName": {
+    "message": "Kopyala: $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Ben"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Web kasası"
   },
+  "webApp": {
+    "message": "Web uygulaması"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "Başka bir cihazdan giriş isteğini reddettiniz. Yanlışlıkla yaptıysanız aynı cihazdan yeniden giriş yapmayı deneyin."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "$DEVICE$ cihazında $EMAIL$ girişi onaylandı",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "Başka bir cihazdan giriş isteğini reddettiniz. Yanlışlıkla yaptıysanız aynı cihazdan yeniden giriş yapmayı deneyin."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Giriş isteğinin süresi doldu."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Review login request"
   },
+  "loginRequest": {
+    "message": "Giriş isteği"
+  },
   "freeTrialEndPromptCount": {
     "message": "Your free trial ends in $COUNT$ days.",
     "placeholders": {
diff --git a/apps/web/src/locales/uk/messages.json b/apps/web/src/locales/uk/messages.json
index cc59b1b39c9..3fa6e0cceb1 100644
--- a/apps/web/src/locales/uk/messages.json
+++ b/apps/web/src/locales/uk/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "Захищена нотатка"
   },
+  "typeNote": {
+    "message": "Note"
+  },
   "typeSshKey": {
     "message": "Ключ SSH"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Копіювати ім'я"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Я"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Вебсховище"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "Ви відхилили спробу входу з іншого пристрою. Якщо це були дійсно ви, спробуйте увійти з пристроєм знову."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Термін дії запиту на вхід завершився."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Переглянути запит входу"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "Ваш безплатний пробний період завершується через $COUNT$ днів.",
     "placeholders": {
diff --git a/apps/web/src/locales/vi/messages.json b/apps/web/src/locales/vi/messages.json
index b1bc5557228..a9832ed445c 100644
--- a/apps/web/src/locales/vi/messages.json
+++ b/apps/web/src/locales/vi/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "Ghi chú"
   },
+  "typeNote": {
+    "message": "Note"
+  },
   "typeSshKey": {
     "message": "Khóa SSH"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Sao chép tên"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "Tôi"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "Kho web"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "Bạn đã từ chối một lần đăng nhập từ thiết bị khác. Nếu thực sự là bạn, hãy thử đăng nhập lại bằng thiết bị đó."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "Yêu cầu đăng nhập đã hết hạn."
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Xem xét yêu cầu đăng nhập"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "Thời gian dùng thử miễn phí của bạn sẽ kết thúc trong $COUNT$ ngày.",
     "placeholders": {
diff --git a/apps/web/src/locales/zh_CN/messages.json b/apps/web/src/locales/zh_CN/messages.json
index 42157058174..5936ce9d218 100644
--- a/apps/web/src/locales/zh_CN/messages.json
+++ b/apps/web/src/locales/zh_CN/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "安全笔记"
   },
+  "typeNote": {
+    "message": "笔记"
+  },
   "typeSshKey": {
     "message": "SSH 密钥"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "复制名称"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "我"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "网页密码库"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "您拒绝了一个来自其他设备的登录尝试。若确实是您本人，请尝试再次发起设备登录。"
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "登录请求已过期。"
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "审查登录请求"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "您的免费试用将于 $COUNT$ 天后结束。",
     "placeholders": {
diff --git a/apps/web/src/locales/zh_TW/messages.json b/apps/web/src/locales/zh_TW/messages.json
index 3cdf7bd7944..4bba75e84ef 100644
--- a/apps/web/src/locales/zh_TW/messages.json
+++ b/apps/web/src/locales/zh_TW/messages.json
@@ -647,6 +647,9 @@
   "typeSecureNote": {
     "message": "安全筆記"
   },
+  "typeNote": {
+    "message": "Note"
+  },
   "typeSshKey": {
     "message": "SSH 金鑰"
   },
@@ -861,6 +864,23 @@
   "copyName": {
     "message": "Copy name"
   },
+  "cardNumber": {
+    "message": "card number"
+  },
+  "copyFieldCipherName": {
+    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "description": "Title for a button that copies a field value to the clipboard.",
+    "placeholders": {
+      "field": {
+        "content": "$1",
+        "example": "Username"
+      },
+      "ciphername": {
+        "content": "$2",
+        "example": "Login Item"
+      }
+    }
+  },
   "me": {
     "message": "我"
   },
@@ -3482,6 +3502,9 @@
   "webVault": {
     "message": "網頁版密碼庫"
   },
+  "webApp": {
+    "message": "Web app"
+  },
   "cli": {
     "message": "CLI 命令列介面"
   },
@@ -3964,6 +3987,22 @@
   "youDeniedALogInAttemptFromAnotherDevice": {
     "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
   },
+  "loginRequestApprovedForEmailOnDevice": {
+    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "placeholders": {
+      "email": {
+        "content": "$1",
+        "example": "name@example.com"
+      },
+      "device": {
+        "content": "$2",
+        "example": "Web app - Chrome"
+      }
+    }
+  },
+  "youDeniedLoginAttemptFromAnotherDevice": {
+    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+  },
   "loginRequestHasAlreadyExpired": {
     "message": "登入要求已逾期。"
   },
@@ -4108,6 +4147,9 @@
   "reviewLoginRequest": {
     "message": "Review login request"
   },
+  "loginRequest": {
+    "message": "Login request"
+  },
   "freeTrialEndPromptCount": {
     "message": "您的免費試用將於 $COUNT$ 天後結束。",
     "placeholders": {

From 2cb2dc177efbb7be458f9a67b2d71a20b7483824 Mon Sep 17 00:00:00 2001
From: "bw-ghapp[bot]" <178206702+bw-ghapp[bot]@users.noreply.github.com>
Date: Sat, 19 Jul 2025 21:40:00 +0200
Subject: [PATCH 177/239] Autosync the updated translations (#15690)

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>
---
 apps/web/src/locales/az/messages.json    | 14 ++---
 apps/web/src/locales/bg/messages.json    | 12 ++---
 apps/web/src/locales/cs/messages.json    |  4 +-
 apps/web/src/locales/de/messages.json    | 68 ++++++++++++------------
 apps/web/src/locales/hu/messages.json    | 12 ++---
 apps/web/src/locales/lv/messages.json    | 12 ++---
 apps/web/src/locales/pl/messages.json    | 14 ++---
 apps/web/src/locales/pt_PT/messages.json |  8 +--
 apps/web/src/locales/sk/messages.json    | 12 ++---
 apps/web/src/locales/sv/messages.json    |  4 +-
 apps/web/src/locales/zh_CN/messages.json |  4 +-
 11 files changed, 82 insertions(+), 82 deletions(-)

diff --git a/apps/web/src/locales/az/messages.json b/apps/web/src/locales/az/messages.json
index 4bcb8431331..2c51163b62c 100644
--- a/apps/web/src/locales/az/messages.json
+++ b/apps/web/src/locales/az/messages.json
@@ -648,7 +648,7 @@
     "message": "Güvənli qeyd"
   },
   "typeNote": {
-    "message": "Note"
+    "message": "Not"
   },
   "typeSshKey": {
     "message": "SSH açarı"
@@ -865,10 +865,10 @@
     "message": "Adı kopyala"
   },
   "cardNumber": {
-    "message": "card number"
+    "message": "kart nömrəsi"
   },
   "copyFieldCipherName": {
-    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "message": "Kopyala: $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
@@ -3503,7 +3503,7 @@
     "message": "Veb seyf"
   },
   "webApp": {
-    "message": "Web app"
+    "message": "Veb tətbiq"
   },
   "cli": {
     "message": "CLI"
@@ -3988,7 +3988,7 @@
     "message": "Başqa bir cihazdan giriş cəhdinə rədd cavabı verdiniz. Bu həqiqətən siz idinizsə, cihazla yenidən giriş etməyə çalışın."
   },
   "loginRequestApprovedForEmailOnDevice": {
-    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "message": "$DEVICE$ cihazında $EMAIL$ üçün giriş tələbi təsdiqləndi",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -4001,7 +4001,7 @@
     }
   },
   "youDeniedLoginAttemptFromAnotherDevice": {
-    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+    "message": "Başqa bir cihazdan giriş cəhdinə rədd cavabı verdiniz. Bu siz idinizsə, cihazla yenidən giriş etməyə çalışın."
   },
   "loginRequestHasAlreadyExpired": {
     "message": "Giriş tələbinin müddəti artıq bitib."
@@ -4148,7 +4148,7 @@
     "message": "Giriş tələbini incələ"
   },
   "loginRequest": {
-    "message": "Login request"
+    "message": "Giriş tələbi"
   },
   "freeTrialEndPromptCount": {
     "message": "Ödənişsiz sınaq müddətiniz $COUNT$ günə bitir.",
diff --git a/apps/web/src/locales/bg/messages.json b/apps/web/src/locales/bg/messages.json
index 4bcfd56e95c..315ce4ee30b 100644
--- a/apps/web/src/locales/bg/messages.json
+++ b/apps/web/src/locales/bg/messages.json
@@ -865,10 +865,10 @@
     "message": "Копиране на името"
   },
   "cardNumber": {
-    "message": "card number"
+    "message": "номер на карта"
   },
   "copyFieldCipherName": {
-    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "message": "Копиране на $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
@@ -3503,7 +3503,7 @@
     "message": "Трезор по уеб"
   },
   "webApp": {
-    "message": "Web app"
+    "message": "Приложение по уеб"
   },
   "cli": {
     "message": "ИКР"
@@ -3988,7 +3988,7 @@
     "message": "Вие отказахте опит за вписване от друго устройство. Ако това наистина сте били Вие, опитайте да се впишете от устройството отново."
   },
   "loginRequestApprovedForEmailOnDevice": {
-    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "message": "Заявката за вписване за $EMAIL$ на $DEVICE$ е одобрена",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -4001,7 +4001,7 @@
     }
   },
   "youDeniedLoginAttemptFromAnotherDevice": {
-    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+    "message": "Вие отказахте опит за вписване от друго устройство. Ако това сте били Вие, опитайте да се впишете от устройството отново."
   },
   "loginRequestHasAlreadyExpired": {
     "message": "Заявката за вписване вече е изтекла."
@@ -4148,7 +4148,7 @@
     "message": "Преглед на заявката за вписване"
   },
   "loginRequest": {
-    "message": "Login request"
+    "message": "Заявка за вписване"
   },
   "freeTrialEndPromptCount": {
     "message": "Вашият безплатен пробен период приключва след $COUNT$ дни.",
diff --git a/apps/web/src/locales/cs/messages.json b/apps/web/src/locales/cs/messages.json
index 6ae11489480..8569b953fb7 100644
--- a/apps/web/src/locales/cs/messages.json
+++ b/apps/web/src/locales/cs/messages.json
@@ -865,10 +865,10 @@
     "message": "Kopírovat název"
   },
   "cardNumber": {
-    "message": "card number"
+    "message": "číslo karty"
   },
   "copyFieldCipherName": {
-    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "message": "Kopírovat $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
diff --git a/apps/web/src/locales/de/messages.json b/apps/web/src/locales/de/messages.json
index 3b0d8cccf97..6c94a17f36c 100644
--- a/apps/web/src/locales/de/messages.json
+++ b/apps/web/src/locales/de/messages.json
@@ -868,7 +868,7 @@
     "message": "Kartennummer"
   },
   "copyFieldCipherName": {
-    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "message": "$FIELD$, $CIPHERNAME$ kopieren",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
@@ -1805,7 +1805,7 @@
     "message": "Wenn du fortfährst, wirst du aus deiner aktuellen Sitzung ausgeloggt. Aktive Sitzungen auf anderen Geräten können bis zu einer Stunde weiterhin aktiv bleiben."
   },
   "changePasswordWarning": {
-    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+    "message": "Nachdem du dein Passwort geändert hast, musst du dich mit deinem neuen Passwort anmelden. Aktive Sitzungen auf anderen Geräten werden innerhalb einer Stunde abgemeldet."
   },
   "emailChanged": {
     "message": "E-Mail-Adresse gespeichert"
@@ -3988,7 +3988,7 @@
     "message": "Du hast einen Anmeldeversuch von einem anderen Gerät abgelehnt. Wenn du das wirklich warst, versuche dich erneut mit dem Gerät anzumelden."
   },
   "loginRequestApprovedForEmailOnDevice": {
-    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "message": "Anmeldeanfrage für $EMAIL$ auf $DEVICE$ genehmigt",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -6110,7 +6110,7 @@
     "message": "Hinzufügen"
   },
   "masterPasswordSuccessfullySet": {
-    "message": "Master-Passwort erfolgreich eingerichtet"
+    "message": "Master-Passwort erfolgreich festgelegt"
   },
   "updatedMasterPassword": {
     "message": "Master-Passwort gespeichert"
@@ -6122,7 +6122,7 @@
     "message": "Ändere dein Master-Passwort, um die Kontowiederherstellung abzuschließen."
   },
   "updateMasterPasswordSubtitle": {
-    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+    "message": "Dein Master-Passwort entspricht nicht den Anforderungen dieser Organisation. Ändere dein Master-Passwort, um fortzufahren."
   },
   "updateMasterPasswordWarning": {
     "message": "Dein Master-Passwort wurde kürzlich von einem Administrator deiner Organisation geändert. Um auf den Tresor zuzugreifen, musst du dein Master-Passwort jetzt aktualisieren. Wenn Du fortfährst, wirst du aus der aktuellen Sitzung abgemeldet und eine erneute Anmeldung ist erforderlich. Aktive Sitzungen auf anderen Geräten können bis zu einer Stunde weiterhin aktiv bleiben."
@@ -8288,7 +8288,7 @@
     "message": "Beim Lesen der Importdatei ist ein Fehler aufgetreten"
   },
   "accessedSecretWithId": {
-    "message": "Accessed a secret with identifier: $SECRET_ID$",
+    "message": "Zugriff auf Geheimnis mit der Kennung: $SECRET_ID$",
     "placeholders": {
       "secret_id": {
         "content": "$1",
@@ -8306,7 +8306,7 @@
     }
   },
   "editedSecretWithId": {
-    "message": "Edited a secret with identifier: $SECRET_ID$",
+    "message": "Ein Geheimnis bearbeitet mit der Kennung: $SECRET_ID$",
     "placeholders": {
       "secret_id": {
         "content": "$1",
@@ -8315,7 +8315,7 @@
     }
   },
   "deletedSecretWithId": {
-    "message": "Deleted a secret with identifier: $SECRET_ID$",
+    "message": "Ein Geheimnis gelöscht mit der Kennung: $SECRET_ID$",
     "placeholders": {
       "secret_id": {
         "content": "$1",
@@ -8324,7 +8324,7 @@
     }
   },
   "createdSecretWithId": {
-    "message": "Created a new secret with identifier: $SECRET_ID$",
+    "message": "Ein neues Geheimnis erstellt mit Kennung: $SECRET_ID$",
     "placeholders": {
       "secret_id": {
         "content": "$1",
@@ -8508,7 +8508,7 @@
     "message": "Anmeldung kann nicht abgeschlossen werden"
   },
   "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
-    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+    "message": "Du musst dich auf einem vertrauenswürdigen Gerät anmelden oder deinem Administrator bitten, dir ein Passwort zuzuweisen."
   },
   "trustedDeviceEncryption": {
     "message": "Vertrauenswürdige Geräteverschlüsselung"
@@ -8965,15 +8965,15 @@
     "description": "Label indicating the most common import formats"
   },
   "uriMatchDefaultStrategyHint": {
-    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "message": "Die URI-Übereinstimmungserkennung ist die Methode, mit der Bitwarden Auto-Ausfüllen-Vorschläge erkennt.",
     "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
   },
   "regExAdvancedOptionWarning": {
-    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "message": "\"Regulärer Ausdruck\" ist eine erweiterte Option mit erhöhtem Risiko der Kompromittierung von Zugangsdaten.",
     "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
   },
   "startsWithAdvancedOptionWarning": {
-    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "message": "\"Beginnt mit\" ist eine erweiterte Option mit erhöhtem Risiko der Kompromittierung von Zugangsdaten.",
     "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
   },
   "uriMatchWarningDialogLink": {
@@ -8981,7 +8981,7 @@
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
   "uriAdvancedOption": {
-    "message": "Advanced options",
+    "message": "Erweiterte Optionen",
     "description": "Advanced option placeholder for uri option component"
   },
   "warningCapitalized": {
@@ -10779,37 +10779,37 @@
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
   "setupExtensionPageTitle": {
-    "message": "Autofill your passwords securely with one click"
+    "message": "Fülle deine Passwörter sicher mit einem Klick automatisch aus"
   },
   "setupExtensionPageDescription": {
-    "message": "Get the Bitwarden browser extension and start autofilling today"
+    "message": "Lade dir die Bitwarden Browser-Erweiterung herunter und nutze Auto-Ausfüllen noch heute"
   },
   "getTheExtension": {
-    "message": "Get the extension"
+    "message": "Erweiterung herunterladen"
   },
   "addItLater": {
-    "message": "Add it later"
+    "message": "Später hinzufügen"
   },
   "cannotAutofillPasswordsWithoutExtensionTitle": {
-    "message": "You can't autofill passwords without the browser extension"
+    "message": "Du kannst Passwörter nicht ohne die Browser-Erweiterung automatisch ausfüllen"
   },
   "cannotAutofillPasswordsWithoutExtensionDesc": {
-    "message": "Are you sure you don't want to add the extension now?"
+    "message": "Bist du sicher, dass du die Erweiterung jetzt nicht hinzufügen möchtest?"
   },
   "skipToWebApp": {
-    "message": "Skip to web app"
+    "message": "Zur Web-App springen"
   },
   "bitwardenExtensionInstalled": {
     "message": "Bitwarden-Erweiterung installiert!"
   },
   "openExtensionToAutofill": {
-    "message": "Open the extension to log in and start autofilling."
+    "message": "Öffne die Erweiterung, um dich anzumelden und Auto-Ausfüllen zu nutzen."
   },
   "openBitwardenExtension": {
     "message": "Bitwarden-Erweiterung öffnen"
   },
   "gettingStartedWithBitwardenPart1": {
-    "message": "For tips on getting started with Bitwarden visit the",
+    "message": "Tipps für die ersten Schritte mit Bitwarden findest du unter",
     "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart2": {
@@ -10817,11 +10817,11 @@
     "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "gettingStartedWithBitwardenPart3": {
-    "message": "Help Center",
+    "message": "Hilfezentrum",
     "description": "This will be displayed as part of a larger sentence. The whole sentence reads: 'For tips on getting started with Bitwarden visit the Learning Center and Help Center'"
   },
   "setupExtensionContentAlt": {
-    "message": "With the Bitwarden browser extension you can easily create new logins, access your saved logins directly from your browser toolbar, and sign in to accounts quickly using Bitwarden autofill."
+    "message": "Mit der Bitwarden Browser-Erweiterung kannst du ganz einfach neue Zugangsdaten erstellen, auf deine gespeicherten Zugangsdaten direkt von deiner Browser-Symbolleiste aus zugreifen und dich schnell mit Bitwarden Auto-Ausfüllen bei Konten anmelden."
   },
   "restart": {
     "message": "Neustarten"
@@ -10859,37 +10859,37 @@
     "message": "Rechnungsadresse bearbeiten"
   },
   "noBillingAddress": {
-    "message": "No address on file."
+    "message": "Keine Adresse angegeben."
   },
   "billingAddressUpdated": {
     "message": "Deine Rechnungsadresse wurde aktualisiert."
   },
   "paymentDetails": {
-    "message": "Payment details"
+    "message": "Zahlungsdaten"
   },
   "paymentMethodUpdated": {
-    "message": "Your payment method has been updated."
+    "message": "Deine Zahlungsart wurde aktualisiert."
   },
   "bankAccountVerified": {
     "message": "Dein Bankkonto wurde verifiziert."
   },
   "availableCreditAppliedToInvoice": {
-    "message": "Any available credit will be automatically applied towards invoices generated for this account."
+    "message": "Jedes verfügbare Guthaben wird automatisch auf die für dieses Konto erstellten Rechnungen angerechnet."
   },
   "mustBePositiveNumber": {
-    "message": "Must be a positive number"
+    "message": "Muss eine positive Zahl sein"
   },
   "cardSecurityCode": {
-    "message": "Card security code"
+    "message": "Karten-Sicherheitscode"
   },
   "cardSecurityCodeDescription": {
-    "message": "Card security code, also known as CVV or CVC, is typically a 3 digit number printed on the back of your credit card or 4 digit number printed on the front above your card number."
+    "message": "Der Karten-Sicherheitscode, auch CVV oder CVC genannt, ist typischerweise eine dreistellige Zahl, die auf der Rückseite oder als vierstellige Zahl auf der Vorderseite über deiner Kartennummer gedruckt ist."
   },
   "verifyBankAccountWarning": {
-    "message": "Payment with a bank account is only available to customers in the United States. You will be required to verify your bank account. We will make a micro-deposit within the next 1-2 business days. Enter the statement descriptor code from this deposit on the Payment Details page to verify the bank account. Failure to verify the bank account will result in a missed payment and your subscription being suspended."
+    "message": "Die Zahlung mit einem Bankkonto ist nur für Kunden in den Vereinigten Staaten möglich. Du musst dein Bankkonto verifizieren. Wir werden innerhalb der nächsten 1-2 Werktage eine Mikro-Einzahlung vornehmen. Gib den Code aus der Auszugsbeschreibung dieser Einzahlung ein, um das Bankkonto zu verifizieren. Schlägt die Verifizierung des Bankkontos fehl, wird dies als versäumte Zahlung gewertet und dein Abonnement gesperrt."
   },
   "taxId": {
-    "message": "Tax ID: $TAX_ID$",
+    "message": "Steuernummer: $TAX_ID$",
     "placeholders": {
       "tax_id": {
         "content": "$1",
diff --git a/apps/web/src/locales/hu/messages.json b/apps/web/src/locales/hu/messages.json
index 218cd5e0a2d..a38ed7f0c03 100644
--- a/apps/web/src/locales/hu/messages.json
+++ b/apps/web/src/locales/hu/messages.json
@@ -865,10 +865,10 @@
     "message": "Név másolása"
   },
   "cardNumber": {
-    "message": "card number"
+    "message": "kártya szám"
   },
   "copyFieldCipherName": {
-    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "message": "$FIELD$, $CIPHERNAME$ másolása",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
@@ -3503,7 +3503,7 @@
     "message": "Webes széf"
   },
   "webApp": {
-    "message": "Web app"
+    "message": "Webalkalmazás"
   },
   "cli": {
     "message": "CLI"
@@ -3988,7 +3988,7 @@
     "message": "Megtagadásra került egy bejelentkezési kísérletet egy másik eszközről. Ha valóban mi voltunk, próbáljunk meg újra bejelentkezni az eszközzel."
   },
   "loginRequestApprovedForEmailOnDevice": {
-    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "message": "A bejelentkezési kérelem jóváhagyásra került: $EMAIL$ - $DEVICE$",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -4001,7 +4001,7 @@
     }
   },
   "youDeniedLoginAttemptFromAnotherDevice": {
-    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+    "message": "Megtagadásra került egy bejelentkezési kísérletet egy másik eszközről. Ha valóban mi voltunk, próbáljunk meg újra bejelentkezni az eszközzel."
   },
   "loginRequestHasAlreadyExpired": {
     "message": "A bejelentkezési kérés már lejárt."
@@ -4148,7 +4148,7 @@
     "message": "Bejelentkezési kérés áttekintése"
   },
   "loginRequest": {
-    "message": "Login request"
+    "message": "Bejelentkezés kérés"
   },
   "freeTrialEndPromptCount": {
     "message": "Az ingyenes próbaidőszak $COUNT$ nap múlva ér véget.",
diff --git a/apps/web/src/locales/lv/messages.json b/apps/web/src/locales/lv/messages.json
index 770979c8a59..ff80c724835 100644
--- a/apps/web/src/locales/lv/messages.json
+++ b/apps/web/src/locales/lv/messages.json
@@ -865,10 +865,10 @@
     "message": "Ievietot nosaukumu starpliktuvē"
   },
   "cardNumber": {
-    "message": "card number"
+    "message": "kartes numurs"
   },
   "copyFieldCipherName": {
-    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "message": "Ievietot starpliktuvē $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
@@ -3503,7 +3503,7 @@
     "message": "Tīmekļa glabātava"
   },
   "webApp": {
-    "message": "Web app"
+    "message": "Tīmekļa lietotne"
   },
   "cli": {
     "message": "CLI"
@@ -3988,7 +3988,7 @@
     "message": "Tu noraidīji pieteikšanās mēģinājumu no citas ierīces. Ja tas tiešām biji Tu, mēģini pieteikties no ierīces vēlreiz!"
   },
   "loginRequestApprovedForEmailOnDevice": {
-    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "message": "$EMAIL$ pieteikšanās pieprasījums apstiprināts $DEVICE$",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -4001,7 +4001,7 @@
     }
   },
   "youDeniedLoginAttemptFromAnotherDevice": {
-    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+    "message": "Tu noraidīji pieteikšanās mēģinājumu no citas ierīces. Ja tas biji Tu, mēģini pieteikties no ierīces vēlreiz!"
   },
   "loginRequestHasAlreadyExpired": {
     "message": "Pieteikšanās pieprasījuma derīgums jau ir beidzies."
@@ -4148,7 +4148,7 @@
     "message": "Izskatīt pieteikšanās pieprasījumu"
   },
   "loginRequest": {
-    "message": "Login request"
+    "message": "Pieteikšanās pieprasījums"
   },
   "freeTrialEndPromptCount": {
     "message": "Bezmaksas izmēģinājums beigsies pēc $COUNT$ dienām.",
diff --git a/apps/web/src/locales/pl/messages.json b/apps/web/src/locales/pl/messages.json
index 749a073cdb1..e2d73ad47b3 100644
--- a/apps/web/src/locales/pl/messages.json
+++ b/apps/web/src/locales/pl/messages.json
@@ -648,7 +648,7 @@
     "message": "Bezpieczna notatka"
   },
   "typeNote": {
-    "message": "Note"
+    "message": "Notatka"
   },
   "typeSshKey": {
     "message": "Klucz SSH"
@@ -865,10 +865,10 @@
     "message": "Skopiuj nazwę"
   },
   "cardNumber": {
-    "message": "card number"
+    "message": "numer karty"
   },
   "copyFieldCipherName": {
-    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "message": "Kopiuj $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
@@ -3503,7 +3503,7 @@
     "message": "Sejf internetowy"
   },
   "webApp": {
-    "message": "Web app"
+    "message": "Aplikacja internetowa"
   },
   "cli": {
     "message": "CLI"
@@ -3988,7 +3988,7 @@
     "message": "Odrzucono próby logowania z innego urządzenia. Jeśli to naprawdę Ty, spróbuj ponownie zalogować się za pomocą urządzenia."
   },
   "loginRequestApprovedForEmailOnDevice": {
-    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "message": "Logowanie potwierdzone dla $EMAIL$ na $DEVICE$",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -4001,7 +4001,7 @@
     }
   },
   "youDeniedLoginAttemptFromAnotherDevice": {
-    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+    "message": "Odrzucono próby logowania z innego urządzenia. Jeśli to naprawdę Ty, spróbuj ponownie zalogować się za pomocą urządzenia."
   },
   "loginRequestHasAlreadyExpired": {
     "message": "Prośba logowania wygasła."
@@ -4148,7 +4148,7 @@
     "message": "Przejrzyj żądanie logowania"
   },
   "loginRequest": {
-    "message": "Login request"
+    "message": "Żądanie logowania"
   },
   "freeTrialEndPromptCount": {
     "message": "Twój okres próbny kończy się za $COUNT$ dni.",
diff --git a/apps/web/src/locales/pt_PT/messages.json b/apps/web/src/locales/pt_PT/messages.json
index c7d772d8003..cda5cec824d 100644
--- a/apps/web/src/locales/pt_PT/messages.json
+++ b/apps/web/src/locales/pt_PT/messages.json
@@ -6702,7 +6702,7 @@
     "message": "URL do servidor da API"
   },
   "webVaultUrl": {
-    "message": "URL do servidor do cofre Web"
+    "message": "URL do servidor do cofre web"
   },
   "identityUrl": {
     "message": "URL do servidor de identidade"
@@ -8919,7 +8919,7 @@
     "message": "Instalar a extensão do navegador"
   },
   "installBrowserExtensionDetails": {
-    "message": "Utilize a extensão para guardar rapidamente as credenciais e preencher automaticamente formulários sem abrir a aplicação Web."
+    "message": "Utilize a extensão para guardar rapidamente as credenciais e preencher automaticamente formulários sem abrir a aplicação web."
   },
   "projectAccessUpdated": {
     "message": "Acesso ao projeto atualizado"
@@ -9050,7 +9050,7 @@
     "message": "Gratuito durante 1 ano"
   },
   "newWebApp": {
-    "message": "Bem-vindo à nova e melhorada aplicação Web. Saiba mais sobre o que mudou."
+    "message": "Bem-vindo à nova e melhorada aplicação web. Saiba mais sobre o que mudou."
   },
   "releaseBlog": {
     "message": "Ler o blogue de lançamento"
@@ -10797,7 +10797,7 @@
     "message": "Tem a certeza de que não pretende adicionar a extensão agora?"
   },
   "skipToWebApp": {
-    "message": "Saltar para a Web app"
+    "message": "Saltar para a aplicação web"
   },
   "bitwardenExtensionInstalled": {
     "message": "Extensão Bitwarden instalada!"
diff --git a/apps/web/src/locales/sk/messages.json b/apps/web/src/locales/sk/messages.json
index ca1edfd11f7..5543fc20820 100644
--- a/apps/web/src/locales/sk/messages.json
+++ b/apps/web/src/locales/sk/messages.json
@@ -865,10 +865,10 @@
     "message": "Kopírovať meno"
   },
   "cardNumber": {
-    "message": "card number"
+    "message": "číslo karty"
   },
   "copyFieldCipherName": {
-    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "message": "Kopírovať $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
@@ -3503,7 +3503,7 @@
     "message": "Webový trezor"
   },
   "webApp": {
-    "message": "Web app"
+    "message": "Webová aplikácia"
   },
   "cli": {
     "message": "CLI"
@@ -3988,7 +3988,7 @@
     "message": "Odmietli ste pokus o prihlásenie z iného zariadenia. Ak ste to boli naozaj vy, skúste sa prihlásiť pomocou zariadenia znova."
   },
   "loginRequestApprovedForEmailOnDevice": {
-    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "message": "Potvrdené prihlásenie pre $EMAIL$ na $DEVICE$",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -4001,7 +4001,7 @@
     }
   },
   "youDeniedLoginAttemptFromAnotherDevice": {
-    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+    "message": "Odmietli ste pokus o prihlásenie z iného zariadenia. Ak ste to boli vy, skúste sa prihlásiť pomocou zariadenia znova."
   },
   "loginRequestHasAlreadyExpired": {
     "message": "Platnosť žiadosti o prihlásenie už vypršala."
@@ -4148,7 +4148,7 @@
     "message": "Skontrolovať požiadavku o prihlásenie"
   },
   "loginRequest": {
-    "message": "Login request"
+    "message": "Žiadosť o prihlásenie"
   },
   "freeTrialEndPromptCount": {
     "message": "Vaše bezplatné skúšobné obdobie vyprší o $COUNT$ dní.",
diff --git a/apps/web/src/locales/sv/messages.json b/apps/web/src/locales/sv/messages.json
index 822dde707b1..6fea9ba15d3 100644
--- a/apps/web/src/locales/sv/messages.json
+++ b/apps/web/src/locales/sv/messages.json
@@ -865,10 +865,10 @@
     "message": "Kopiera namn"
   },
   "cardNumber": {
-    "message": "card number"
+    "message": "kortnummer"
   },
   "copyFieldCipherName": {
-    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "message": "Kopiera $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
diff --git a/apps/web/src/locales/zh_CN/messages.json b/apps/web/src/locales/zh_CN/messages.json
index 5936ce9d218..5bc6c472cd1 100644
--- a/apps/web/src/locales/zh_CN/messages.json
+++ b/apps/web/src/locales/zh_CN/messages.json
@@ -865,10 +865,10 @@
     "message": "复制名称"
   },
   "cardNumber": {
-    "message": "card number"
+    "message": "卡号"
   },
   "copyFieldCipherName": {
-    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "message": "复制 $FIELD$、$CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {

From 36e59c2e3b45725374b4e5071eed3f28dcfcaa46 Mon Sep 17 00:00:00 2001
From: "bw-ghapp[bot]" <178206702+bw-ghapp[bot]@users.noreply.github.com>
Date: Sat, 19 Jul 2025 21:43:48 +0200
Subject: [PATCH 178/239] Autosync the updated translations (#15692)

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>
---
 apps/desktop/src/locales/az/messages.json    |   8 +-
 apps/desktop/src/locales/bg/messages.json    |   4 +-
 apps/desktop/src/locales/ca/messages.json    | 132 +++++++++----------
 apps/desktop/src/locales/cs/messages.json    |   4 +-
 apps/desktop/src/locales/de/messages.json    |  20 +--
 apps/desktop/src/locales/hu/messages.json    |   4 +-
 apps/desktop/src/locales/ja/messages.json    |  18 +--
 apps/desktop/src/locales/lv/messages.json    |   4 +-
 apps/desktop/src/locales/pt_PT/messages.json |   4 +-
 apps/desktop/src/locales/sv/messages.json    |   6 +-
 apps/desktop/src/locales/vi/messages.json    |   4 +-
 apps/desktop/src/locales/zh_CN/messages.json |   4 +-
 apps/desktop/src/locales/zh_TW/messages.json |  78 +++++------
 13 files changed, 145 insertions(+), 145 deletions(-)

diff --git a/apps/desktop/src/locales/az/messages.json b/apps/desktop/src/locales/az/messages.json
index e5fee904d92..b04f3204a15 100644
--- a/apps/desktop/src/locales/az/messages.json
+++ b/apps/desktop/src/locales/az/messages.json
@@ -573,7 +573,7 @@
     "message": "Doğrulama kodunu kopyala (TOTP)"
   },
   "copyFieldCipherName": {
-    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "message": "Kopyala: $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
@@ -1440,7 +1440,7 @@
     "description": "Copy credit card security code (CVV)"
   },
   "cardNumber": {
-    "message": "card number"
+    "message": "kart nömrəsi"
   },
   "premiumMembership": {
     "message": "Premium üzvlük"
@@ -4016,9 +4016,9 @@
     }
   },
   "enableAutotype": {
-    "message": "Enable autotype shortcut"
+    "message": "Avto-yazma qısayolunu fəallaşdır"
   },
   "enableAutotypeDescription": {
-    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
+    "message": "Bitwarden, giriş yerlərini doğrulamır, qısayolu istifadə etməzdən əvvəl doğru pəncərədə və xanada olduğunuza əmin olun."
   }
 }
diff --git a/apps/desktop/src/locales/bg/messages.json b/apps/desktop/src/locales/bg/messages.json
index cf74c69be46..92ee97ba16a 100644
--- a/apps/desktop/src/locales/bg/messages.json
+++ b/apps/desktop/src/locales/bg/messages.json
@@ -573,7 +573,7 @@
     "message": "Код за потвърждаване (TOTP)"
   },
   "copyFieldCipherName": {
-    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "message": "Копиране на $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
@@ -1440,7 +1440,7 @@
     "description": "Copy credit card security code (CVV)"
   },
   "cardNumber": {
-    "message": "card number"
+    "message": "номер на карта"
   },
   "premiumMembership": {
     "message": "Платен абонамент"
diff --git a/apps/desktop/src/locales/ca/messages.json b/apps/desktop/src/locales/ca/messages.json
index ed49a360aa5..6534c0eef02 100644
--- a/apps/desktop/src/locales/ca/messages.json
+++ b/apps/desktop/src/locales/ca/messages.json
@@ -2214,7 +2214,7 @@
     "message": "Identification"
   },
   "contactInfo": {
-    "message": "Contact information"
+    "message": "Informació de contacte"
   },
   "allSends": {
     "message": "Tots els Send",
@@ -2380,10 +2380,10 @@
     "message": "Autenticar WebAuthn"
   },
   "readSecurityKey": {
-    "message": "Read security key"
+    "message": "Llegeix clau de seguretat"
   },
   "awaitingSecurityKeyInteraction": {
-    "message": "Awaiting security key interaction..."
+    "message": "S'està esperant la interacció amb la clau de seguretat..."
   },
   "hideEmail": {
     "message": "Amagueu la meua adreça de correu electrònic als destinataris."
@@ -2425,16 +2425,16 @@
     "message": "La vostra contrasenya mestra no compleix una o més de les polítiques de l'organització. Per accedir a la caixa forta, heu d'actualitzar-la ara. Si continueu, es tancarà la sessió actual i us demanarà que torneu a iniciar-la. Les sessions en altres dispositius poden continuar romanent actives fins a una hora."
   },
   "changePasswordWarning": {
-    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+    "message": "En canviar la teva contrasenya, cal iniciar la sessió amb la nova contrasenya. Les sessions actives en altres dispositius es tancaran en una hora."
   },
   "accountRecoveryUpdateMasterPasswordSubtitle": {
-    "message": "Change your master password to complete account recovery."
+    "message": "Canvia la contrasenya mestra per completar el recobrament del compte."
   },
   "updateMasterPasswordSubtitle": {
-    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+    "message": "La contrasenya mestra no s'ajusta als requisits de l'organització. Canvia't la contrasenya mestra per continuar."
   },
   "tdeDisabledMasterPasswordRequired": {
-    "message": "Your organization has disabled trusted device encryption. Please set a master password to access your vault."
+    "message": "La teva organització ha desactivat l'encriptació de dispositius fiables. Fixa una contrasenya mestra per accedir a la teva caixa forta."
   },
   "tryAgain": {
     "message": "Torneu-ho a provar"
@@ -2479,7 +2479,7 @@
     "message": "Minuts"
   },
   "vaultTimeoutPolicyInEffect1": {
-    "message": "$HOURS$ hour(s) and $MINUTES$ minute(s) maximum.",
+    "message": "$HOURS$ hora(es) i $MINUTES$ minut(s) màxim.",
     "placeholders": {
       "hours": {
         "content": "$1",
@@ -2545,13 +2545,13 @@
     "message": "S'ha suprimit la contrasenya mestra."
   },
   "removeMasterPasswordForOrganizationUserKeyConnector": {
-    "message": "A master password is no longer required for members of the following organization. Please confirm the domain below with your organization administrator."
+    "message": "Ja no cal contrasenya mestra per als membres de la següent organització. Confirma'n el domini a sota amb l'administrador de la teva organització."
   },
   "organizationName": {
     "message": "Nom de l'organització"
   },
   "keyConnectorDomain": {
-    "message": "Key Connector domain"
+    "message": "Domini del Connector de claus"
   },
   "leaveOrganization": {
     "message": "Abandona l'organització"
@@ -2614,7 +2614,7 @@
     }
   },
   "exportingIndividualVaultWithAttachmentsDescription": {
-    "message": "Only the individual vault items including attachments associated with $EMAIL$ will be exported. Organization vault items will not be included",
+    "message": "Només els objectes individuals de la caixa forta, inclosos adjunts associats amb $EMAIL$, seran exportats. Els objectes de la caixa forta de l'organització no hi seran inclosos",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -2740,7 +2740,7 @@
     "message": "Utilitzeu aquesta contrasenya"
   },
   "useThisPassphrase": {
-    "message": "Use this passphrase"
+    "message": "Empra aquesta frase de pas"
   },
   "useThisUsername": {
     "message": "Utilitzeu aquest nom d'usuari"
@@ -2777,7 +2777,7 @@
     "description": "Labels the domain name email forwarder service option"
   },
   "forwarderDomainNameHint": {
-    "message": "Choose a domain that is supported by the selected service",
+    "message": "Tria un domini admès pel servei seleccionat",
     "description": "Guidance provided for email forwarding services that support multiple email domains."
   },
   "forwarderError": {
@@ -2809,7 +2809,7 @@
     }
   },
   "forwaderInvalidToken": {
-    "message": "Invalid $SERVICENAME$ API token",
+    "message": "API token de $SERVICENAME$ invàlid",
     "description": "Displayed when the user's API token is empty or rejected by the forwarding service.",
     "placeholders": {
       "servicename": {
@@ -2819,7 +2819,7 @@
     }
   },
   "forwaderInvalidTokenWithMessage": {
-    "message": "Invalid $SERVICENAME$ API token: $ERRORMESSAGE$",
+    "message": "API token de $SERVICENAME$ invàlid: $ERRORMESSAGE$",
     "description": "Displayed when the user's API token is rejected by the forwarding service with an error message.",
     "placeholders": {
       "servicename": {
@@ -2833,7 +2833,7 @@
     }
   },
   "forwaderInvalidOperation": {
-    "message": "$SERVICENAME$ refused your request. Please contact your service provider for assistance.",
+    "message": "$SERVICENAME$ t'ha rebutjat la petició. Contacta amb el teu proveïdor de serveis per assistència.",
     "description": "Displayed when the user is forbidden from using the API by the forwarding service.",
     "placeholders": {
       "servicename": {
@@ -2843,7 +2843,7 @@
     }
   },
   "forwaderInvalidOperationWithMessage": {
-    "message": "$SERVICENAME$ refused your request: $ERRORMESSAGE$",
+    "message": "$SERVICENAME$ us ha rebutjat la petició: $ERRORMESSAGE$",
     "description": "Displayed when the user is forbidden from using the API by the forwarding service with an error message.",
     "placeholders": {
       "servicename": {
@@ -2857,7 +2857,7 @@
     }
   },
   "forwarderNoAccountId": {
-    "message": "Unable to obtain $SERVICENAME$ masked email account ID.",
+    "message": "No es pot obtenir l'ID de compte de correu electrònic emmascarat de $SERVICENAME$.",
     "description": "Displayed when the forwarding service fails to return an account ID.",
     "placeholders": {
       "servicename": {
@@ -2867,7 +2867,7 @@
     }
   },
   "forwarderNoDomain": {
-    "message": "Invalid $SERVICENAME$ domain.",
+    "message": "Domini de $SERVICENAME$ invàlid.",
     "description": "Displayed when the domain is empty or domain authorization failed at the forwarding service.",
     "placeholders": {
       "servicename": {
@@ -2877,7 +2877,7 @@
     }
   },
   "forwarderNoUrl": {
-    "message": "Invalid $SERVICENAME$ url.",
+    "message": "Url de $SERVICENAME$ invàlid.",
     "description": "Displayed when the url of the forwarding service wasn't supplied.",
     "placeholders": {
       "servicename": {
@@ -2887,7 +2887,7 @@
     }
   },
   "forwarderUnknownError": {
-    "message": "Unknown $SERVICENAME$ error occurred.",
+    "message": "Hi ha hagut un error desconegut amb $SERVICENAME$.",
     "description": "Displayed when the forwarding service failed due to an unknown error.",
     "placeholders": {
       "servicename": {
@@ -2897,7 +2897,7 @@
     }
   },
   "forwarderUnknownForwarder": {
-    "message": "Unknown forwarder: '$SERVICENAME$'.",
+    "message": "Remitent desconegut: «$SERVICENAME$».",
     "description": "Displayed when the forwarding service is not supported.",
     "placeholders": {
       "servicename": {
@@ -2965,13 +2965,13 @@
     "message": "S'ha enviat una notificació al vostre dispositiu"
   },
   "notificationSentDevicePart1": {
-    "message": "Unlock Bitwarden on your device or on the "
+    "message": "Desbloqueja Bitwarden en el teu dispositiu o en el "
   },
   "notificationSentDeviceAnchor": {
     "message": "aplicació web"
   },
   "notificationSentDevicePart2": {
-    "message": "Make sure the Fingerprint phrase matches the one below before approving."
+    "message": "Assegura't que la frase d'empremta digital encaixa amb la d'aquí sota abans d'aprovar-la."
   },
   "needAnotherOptionV1": {
     "message": "Necessiteu una altra opció?"
@@ -3002,7 +3002,7 @@
     "description": "'Character count' describes a feature that displays a number next to each character of the password."
   },
   "areYouTryingToAccessYourAccount": {
-    "message": "Are you trying to access your account?"
+    "message": "Intentes accedir al teu compte?"
   },
   "accessAttemptBy": {
     "message": "Intent d'inici de sessió per $EMAIL$",
@@ -3063,7 +3063,7 @@
     "message": "Aquesta sol·licitud ja no és vàlida."
   },
   "confirmAccessAttempt": {
-    "message": "Confirm access attempt for $EMAIL$",
+    "message": "Confirma l'intent d'accés de $EMAIL$",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3075,7 +3075,7 @@
     "message": "S'ha sol·licitat inici de sessió"
   },
   "accountAccessRequested": {
-    "message": "Account access requested"
+    "message": "Accés al compte demanat"
   },
   "creatingAccountOn": {
     "message": "Creant compte en"
@@ -3123,10 +3123,10 @@
     "message": "Accedint a"
   },
   "accessTokenUnableToBeDecrypted": {
-    "message": "You have been logged out because your access token could not be decrypted. Please log in again to resolve this issue."
+    "message": "Se t'ha tancat la sessió perquè el teu token d'accés no es podia desxifrar. Torna a iniciar la sessió per resoldre aquest problema."
   },
   "refreshTokenSecureStorageRetrievalFailure": {
-    "message": "You have been logged out because your refresh token could not be retrieved. Please log in again to resolve this issue."
+    "message": "Se t'ha tancat la sessió perquè el teu token d'actualització no es podia recuperar. Torna a iniciar la sessió per resoldre aquest problema."
   },
   "masterPasswordHint": {
     "message": "La contrasenya mestra no es pot recuperar si la oblideu!"
@@ -3147,16 +3147,16 @@
     "message": "Actualització de configuració recomanada"
   },
   "rememberThisDeviceToMakeFutureLoginsSeamless": {
-    "message": "Remember this device to make future logins seamless"
+    "message": "Recorda aquest dispositiu per futurs inicis de sessió sense interrupcions"
   },
   "deviceApprovalRequired": {
     "message": "Cal l'aprovació del dispositiu. Seleccioneu una opció d'aprovació a continuació:"
   },
   "deviceApprovalRequiredV2": {
-    "message": "Device approval required"
+    "message": "Cal aprovació del dispositiu"
   },
   "selectAnApprovalOptionBelow": {
-    "message": "Select an approval option below"
+    "message": "Tria una opció d'aprovació a sota"
   },
   "rememberThisDevice": {
     "message": "Recorda aquest dispositiu"
@@ -3171,10 +3171,10 @@
     "message": "Sol·liciteu l'aprovació de l'administrador"
   },
   "unableToCompleteLogin": {
-    "message": "Unable to complete login"
+    "message": "No s'ha pogut finalitzar l'inici de sessió"
   },
   "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
-    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+    "message": "Cal iniciar sessió en un dispositiu de confiança o demanar al teu administrador que t'assigni una contrasenya."
   },
   "region": {
     "message": "Regió"
@@ -3211,34 +3211,34 @@
     "message": "Falta el correu electrònic de l'usuari"
   },
   "activeUserEmailNotFoundLoggingYouOut": {
-    "message": "Active user email not found. Logging you out."
+    "message": "No s'ha trobat el correu electrònic de l'usuari actiu. Se't tancarà la sessió."
   },
   "deviceTrusted": {
     "message": "Dispositiu de confiança"
   },
   "trustOrganization": {
-    "message": "Trust organization"
+    "message": "Confia en l'organització"
   },
   "trust": {
     "message": "Confiar"
   },
   "doNotTrust": {
-    "message": "Do not trust"
+    "message": "No hi confiïs"
   },
   "organizationNotTrusted": {
-    "message": "Organization is not trusted"
+    "message": "L'organització no és de confiança"
   },
   "emergencyAccessTrustWarning": {
-    "message": "For the security of your account, only confirm if you have granted emergency access to this user and their fingerprint matches what is displayed in their account"
+    "message": "Per la seguretat del teu compte, confirma només si tens garantit l'accés a aquest usuari i la seva empremta coincideix amb el que es mostra al seu compte"
   },
   "orgTrustWarning": {
-    "message": "For the security of your account, only proceed if you are a member of this organization, have account recovery enabled, and the fingerprint displayed below matches the organization's fingerprint."
+    "message": "Per la seguretat del teu compte, confirma només si ets un membre d'aquesta organització, tens un compte de recuperació activat i l'empremta de sota coincideix amb la de l'organització."
   },
   "orgTrustWarning1": {
-    "message": "This organization has an Enterprise policy that will enroll you in account recovery. Enrollment will allow organization administrators to change your password. Only proceed if you recognize this organization and the fingerprint phrase displayed below matches the organization's fingerprint."
+    "message": "Aquesta organització té una política d'Empresa que t'inscriurà com a compte de recuperació. La inscripció permetrà als administradors de l'organització canviar la teva contrasenya. Continua només si coneixes l'organització i la frase d'empremta digital mostrada a sota coincideix amb l'empremta de l'organització."
   },
   "trustUser": {
-    "message": "Trust user"
+    "message": "Confia en l'usuari"
   },
   "inputRequired": {
     "message": "L'entrada és obligatòria."
@@ -3405,13 +3405,13 @@
     "message": "Es requereix l'inici de sessió en dos passos de DUO al vostre compte."
   },
   "duoTwoFactorRequiredPageSubtitle": {
-    "message": "Duo two-step login is required for your account. Follow the steps below to finish logging in."
+    "message": "Cal l'inici de sessió en dos passos de Duo al vostre compte. Seguiu els passos de sota per finalitzar l'inici de sessió."
   },
   "followTheStepsBelowToFinishLoggingIn": {
-    "message": "Follow the steps below to finish logging in."
+    "message": "Seguiu els passos de sota per finalitzar l'inici de sessió."
   },
   "followTheStepsBelowToFinishLoggingInWithSecurityKey": {
-    "message": "Follow the steps below to finish logging in with your security key."
+    "message": "Seguiu els passos de sota per finalitzar l'inici de sessió amb la clau de seguretat."
   },
   "launchDuo": {
     "message": "Inicia Duo al navegador"
@@ -3568,27 +3568,27 @@
     "description": "Label indicating the most common import formats"
   },
   "uriMatchDefaultStrategyHint": {
-    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "message": "Bitwarden empra la detecció de coincidències URI pels suggeriments d'autoemplenament.",
     "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
   },
   "regExAdvancedOptionWarning": {
-    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "message": "«Expressió regular» és una opció avançada amb més risc d'exposar credencials.",
     "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
   },
   "startsWithAdvancedOptionWarning": {
-    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "message": "«Comença amb» és una opció avançada amb més risc d'exposar credencials.",
     "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
   },
   "uriMatchWarningDialogLink": {
-    "message": "More about match detection",
+    "message": "Més sobre la detecció de coincidències",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
   "uriAdvancedOption": {
-    "message": "Advanced options",
+    "message": "Opcions avançades",
     "description": "Advanced option placeholder for uri option component"
   },
   "warningCapitalized": {
-    "message": "Warning",
+    "message": "Advertència",
     "description": "Warning (should maintain locale-relevant capitalization)"
   },
   "success": {
@@ -3659,33 +3659,33 @@
     "message": "Sends de text"
   },
   "ssoError": {
-    "message": "No free ports could be found for the sso login."
+    "message": "No s'ha trobat cap port lliure per a l'inici de sessió sso."
   },
   "securePasswordGenerated": {
-    "message": "Secure password generated! Don't forget to also update your password on the website."
+    "message": "Contrasenya segura generada! No us oblideu d'actualitzar-vos la contrasenya al web."
   },
   "useGeneratorHelpTextPartOne": {
-    "message": "Use the generator",
+    "message": "Feu servir el generador",
     "description": "This will be used as part of a larger sentence, broken up to include the generator icon. The full sentence will read 'Use the generator [GENERATOR_ICON] to create a strong unique password'"
   },
   "useGeneratorHelpTextPartTwo": {
-    "message": "to create a strong unique password",
+    "message": "per crear una contrasenya única forta",
     "description": "This will be used as part of a larger sentence, broken up to include the generator icon. The full sentence will read 'Use the generator [GENERATOR_ICON] to create a strong unique password'"
   },
   "biometricsStatusHelptextUnlockNeeded": {
-    "message": "Biometric unlock is unavailable because PIN or password unlock is required first."
+    "message": "El desbloqueig per dades biomètriques no està disponible perquè cal primer desbloquejar el PIN o la contrasenya."
   },
   "biometricsStatusHelptextHardwareUnavailable": {
-    "message": "Biometric unlock is currently unavailable."
+    "message": "El desbloqueig per dades biomètriques no està disponible ara."
   },
   "biometricsStatusHelptextAutoSetupNeeded": {
-    "message": "Biometric unlock is unavailable due to misconfigured system files."
+    "message": "El desbloqueig per dades biomètriques no està disponible per uns fitxers del sistema mal configurats."
   },
   "biometricsStatusHelptextManualSetupNeeded": {
-    "message": "Biometric unlock is unavailable due to misconfigured system files."
+    "message": "El desbloqueig per dades biomètriques no està disponible per uns fitxers del sistema mal configurats."
   },
   "biometricsStatusHelptextNotEnabledLocally": {
-    "message": "Biometric unlock is unavailable because it is not enabled for $EMAIL$ in the Bitwarden desktop app.",
+    "message": "El desbloqueig per dades biomètriques no està disponible perquè no s'ha activat per a $EMAIL$ a l'app d'escriptori de Bitwarden.",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3694,7 +3694,7 @@
     }
   },
   "biometricsStatusHelptextUnavailableReasonUnknown": {
-    "message": "Biometric unlock is currently unavailable for an unknown reason."
+    "message": "El desbloqueig per dades biomètriques no està disponible ara per motius desconeguts."
   },
   "itemDetails": {
     "message": "Detalls de l'element"
@@ -3724,19 +3724,19 @@
     "message": "Denega"
   },
   "sshkeyApprovalTitle": {
-    "message": "Confirm SSH key usage"
+    "message": "Confirma l'ús de la clau SSH"
   },
   "agentForwardingWarningTitle": {
-    "message": "Warning: Agent Forwarding"
+    "message": "Advertència: Reenviament de l'Agent"
   },
   "agentForwardingWarningText": {
-    "message": "This request comes from a remote device that you are logged into"
+    "message": "Aquesta petició ve d'un dispositiu remot on teniu iniciada la sessió"
   },
   "sshkeyApprovalMessageInfix": {
-    "message": "is requesting access to"
+    "message": "sol·licita accés a"
   },
   "sshkeyApprovalMessageSuffix": {
-    "message": "in order to"
+    "message": "per"
   },
   "sshActionLogin": {
     "message": "authenticate to a server"
diff --git a/apps/desktop/src/locales/cs/messages.json b/apps/desktop/src/locales/cs/messages.json
index 11eb2113bd2..a21f9b9258e 100644
--- a/apps/desktop/src/locales/cs/messages.json
+++ b/apps/desktop/src/locales/cs/messages.json
@@ -573,7 +573,7 @@
     "message": "Kopírovat ověřovací kód (TOTP)"
   },
   "copyFieldCipherName": {
-    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "message": "Kopírovat $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
@@ -1440,7 +1440,7 @@
     "description": "Copy credit card security code (CVV)"
   },
   "cardNumber": {
-    "message": "card number"
+    "message": "číslo karty"
   },
   "premiumMembership": {
     "message": "Prémiové členství"
diff --git a/apps/desktop/src/locales/de/messages.json b/apps/desktop/src/locales/de/messages.json
index 87ddaae531a..1f60be15374 100644
--- a/apps/desktop/src/locales/de/messages.json
+++ b/apps/desktop/src/locales/de/messages.json
@@ -573,7 +573,7 @@
     "message": "Verifizierungscode (TOTP) kopieren"
   },
   "copyFieldCipherName": {
-    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "message": "$FIELD$, $CIPHERNAME$ kopieren",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
@@ -2425,13 +2425,13 @@
     "message": "Dein Master-Passwort entspricht nicht einer oder mehreren Richtlinien deiner Organisation. Um auf den Tresor zugreifen zu können, musst du dein Master-Passwort jetzt aktualisieren. Wenn du fortfährst, wirst du von deiner aktuellen Sitzung abgemeldet und musst dich erneut anmelden. Aktive Sitzungen auf anderen Geräten können noch bis zu einer Stunde lang aktiv bleiben."
   },
   "changePasswordWarning": {
-    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+    "message": "Nachdem du dein Passwort geändert hast, musst du dich mit deinem neuen Passwort anmelden. Aktive Sitzungen auf anderen Geräten werden innerhalb einer Stunde abgemeldet."
   },
   "accountRecoveryUpdateMasterPasswordSubtitle": {
     "message": "Ändere dein Master-Passwort, um die Kontowiederherstellung abzuschließen."
   },
   "updateMasterPasswordSubtitle": {
-    "message": "Your master password does not meet this organization’s requirements. Change your master password to continue."
+    "message": "Dein Master-Passwort entspricht nicht den Anforderungen dieser Organisation. Ändere dein Master-Passwort, um fortzufahren."
   },
   "tdeDisabledMasterPasswordRequired": {
     "message": "Deine Organisation hat die vertrauenswürdige Geräteverschlüsselung deaktiviert. Bitte lege ein Master-Passwort fest, um auf deinen Tresor zuzugreifen."
@@ -3174,7 +3174,7 @@
     "message": "Anmeldung kann nicht abgeschlossen werden"
   },
   "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
-    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+    "message": "Du musst dich auf einem vertrauenswürdigen Gerät anmelden oder deinem Administrator bitten, dir ein Passwort zuzuweisen."
   },
   "region": {
     "message": "Region"
@@ -3568,15 +3568,15 @@
     "description": "Label indicating the most common import formats"
   },
   "uriMatchDefaultStrategyHint": {
-    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "message": "Die URI-Übereinstimmungserkennung ist die Methode, mit der Bitwarden Auto-Ausfüllen-Vorschläge erkennt.",
     "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
   },
   "regExAdvancedOptionWarning": {
-    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "message": "\"Regulärer Ausdruck\" ist eine erweiterte Option mit erhöhtem Risiko der Kompromittierung von Zugangsdaten.",
     "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
   },
   "startsWithAdvancedOptionWarning": {
-    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "message": "\"Beginnt mit\" ist eine erweiterte Option mit erhöhtem Risiko der Kompromittierung von Zugangsdaten.",
     "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
   },
   "uriMatchWarningDialogLink": {
@@ -3584,7 +3584,7 @@
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
   "uriAdvancedOption": {
-    "message": "Advanced options",
+    "message": "Erweiterte Optionen",
     "description": "Advanced option placeholder for uri option component"
   },
   "warningCapitalized": {
@@ -4016,9 +4016,9 @@
     }
   },
   "enableAutotype": {
-    "message": "Enable autotype shortcut"
+    "message": "Auto-Schreiben Tastenkombination aktivieren"
   },
   "enableAutotypeDescription": {
-    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
+    "message": "Bitwarden überprüft die Eingabestellen nicht. Vergewissere dich, dass du dich im richtigen Fenster und Feld befindest, bevor du die Tastenkombination verwendest."
   }
 }
diff --git a/apps/desktop/src/locales/hu/messages.json b/apps/desktop/src/locales/hu/messages.json
index f5043724cbb..0f5e14596d7 100644
--- a/apps/desktop/src/locales/hu/messages.json
+++ b/apps/desktop/src/locales/hu/messages.json
@@ -573,7 +573,7 @@
     "message": "Ellenőrző kód másolása (TOTP)"
   },
   "copyFieldCipherName": {
-    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "message": "$FIELD$, $CIPHERNAME$ másolása",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
@@ -1440,7 +1440,7 @@
     "description": "Copy credit card security code (CVV)"
   },
   "cardNumber": {
-    "message": "card number"
+    "message": "kártya szám"
   },
   "premiumMembership": {
     "message": "Prémium tagság"
diff --git a/apps/desktop/src/locales/ja/messages.json b/apps/desktop/src/locales/ja/messages.json
index 9bc5f987b18..19a91367567 100644
--- a/apps/desktop/src/locales/ja/messages.json
+++ b/apps/desktop/src/locales/ja/messages.json
@@ -3697,25 +3697,25 @@
     "message": "生体認証によるロック解除は、不明な理由により現在利用できません。"
   },
   "itemDetails": {
-    "message": "Item details"
+    "message": "アイテムの詳細"
   },
   "itemName": {
-    "message": "Item name"
+    "message": "アイテム名"
   },
   "loginCredentials": {
-    "message": "Login credentials"
+    "message": "ログイン資格情報"
   },
   "additionalOptions": {
-    "message": "Additional options"
+    "message": "追加のオプション"
   },
   "itemHistory": {
-    "message": "Item history"
+    "message": "アイテムの履歴"
   },
   "lastEdited": {
-    "message": "Last edited"
+    "message": "直近の編集"
   },
   "upload": {
-    "message": "Upload"
+    "message": "アップロード"
   },
   "authorize": {
     "message": "認可"
@@ -3799,10 +3799,10 @@
     "message": "移動"
   },
   "newFolder": {
-    "message": "New folder"
+    "message": "新しいフォルダー"
   },
   "folderName": {
-    "message": "Folder Name"
+    "message": "フォルダー名"
   },
   "folderHintText": {
     "message": "Nest a folder by adding the parent folder's name followed by a “/”. Example: Social/Forums"
diff --git a/apps/desktop/src/locales/lv/messages.json b/apps/desktop/src/locales/lv/messages.json
index 7c00a3a40a9..0849bf29b45 100644
--- a/apps/desktop/src/locales/lv/messages.json
+++ b/apps/desktop/src/locales/lv/messages.json
@@ -573,7 +573,7 @@
     "message": "Ievietot Apliecinājuma kodu (TOTP) starpliktuvē"
   },
   "copyFieldCipherName": {
-    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "message": "Ievietot starpliktuvē $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
@@ -1440,7 +1440,7 @@
     "description": "Copy credit card security code (CVV)"
   },
   "cardNumber": {
-    "message": "card number"
+    "message": "kartes numurs"
   },
   "premiumMembership": {
     "message": "Premium dalība"
diff --git a/apps/desktop/src/locales/pt_PT/messages.json b/apps/desktop/src/locales/pt_PT/messages.json
index a9cb4fcd88e..d3764bad580 100644
--- a/apps/desktop/src/locales/pt_PT/messages.json
+++ b/apps/desktop/src/locales/pt_PT/messages.json
@@ -573,7 +573,7 @@
     "message": "Copiar código de verificação (TOTP)"
   },
   "copyFieldCipherName": {
-    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "message": "Copiar $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
@@ -1440,7 +1440,7 @@
     "description": "Copy credit card security code (CVV)"
   },
   "cardNumber": {
-    "message": "card number"
+    "message": "número do cartão"
   },
   "premiumMembership": {
     "message": "Subscrição Premium"
diff --git a/apps/desktop/src/locales/sv/messages.json b/apps/desktop/src/locales/sv/messages.json
index 067570eb002..54fb7f1f643 100644
--- a/apps/desktop/src/locales/sv/messages.json
+++ b/apps/desktop/src/locales/sv/messages.json
@@ -573,7 +573,7 @@
     "message": "Kopiera verifieringskod (TOTP)"
   },
   "copyFieldCipherName": {
-    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "message": "Kopiera $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
@@ -1440,7 +1440,7 @@
     "description": "Copy credit card security code (CVV)"
   },
   "cardNumber": {
-    "message": "card number"
+    "message": "kortnummer"
   },
   "premiumMembership": {
     "message": "Premium-medlemskap"
@@ -1506,7 +1506,7 @@
     "message": "Lösenordshistorik"
   },
   "generatorHistory": {
-    "message": "Generatorns historia"
+    "message": "Generatorns historik"
   },
   "clearGeneratorHistoryTitle": {
     "message": "Rensa generatorhistorik"
diff --git a/apps/desktop/src/locales/vi/messages.json b/apps/desktop/src/locales/vi/messages.json
index d804c03b6cd..d0ff3cca7bc 100644
--- a/apps/desktop/src/locales/vi/messages.json
+++ b/apps/desktop/src/locales/vi/messages.json
@@ -573,7 +573,7 @@
     "message": "Sao chép mã xác thực (TOTP)"
   },
   "copyFieldCipherName": {
-    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "message": "Sao chép $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
@@ -1440,7 +1440,7 @@
     "description": "Copy credit card security code (CVV)"
   },
   "cardNumber": {
-    "message": "card number"
+    "message": "số thẻ"
   },
   "premiumMembership": {
     "message": "Thành viên Cao Cấp"
diff --git a/apps/desktop/src/locales/zh_CN/messages.json b/apps/desktop/src/locales/zh_CN/messages.json
index fe8a61af825..c0bb7e0f0d3 100644
--- a/apps/desktop/src/locales/zh_CN/messages.json
+++ b/apps/desktop/src/locales/zh_CN/messages.json
@@ -573,7 +573,7 @@
     "message": "复制验证码 (TOTP)"
   },
   "copyFieldCipherName": {
-    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "message": "复制 $FIELD$、$CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
@@ -1440,7 +1440,7 @@
     "description": "Copy credit card security code (CVV)"
   },
   "cardNumber": {
-    "message": "card number"
+    "message": "卡号"
   },
   "premiumMembership": {
     "message": "高级会员"
diff --git a/apps/desktop/src/locales/zh_TW/messages.json b/apps/desktop/src/locales/zh_TW/messages.json
index 541e6e82658..c2253c56760 100644
--- a/apps/desktop/src/locales/zh_TW/messages.json
+++ b/apps/desktop/src/locales/zh_TW/messages.json
@@ -24,7 +24,7 @@
     "message": "身分"
   },
   "typeNote": {
-    "message": "Note"
+    "message": "備註"
   },
   "typeSecureNote": {
     "message": "安全筆記"
@@ -241,22 +241,22 @@
     "message": "SSH代理是一個針對開發者的服務，它能夠直接從 Bitwarden 密碼庫簽發SSH請求。"
   },
   "sshAgentPromptBehavior": {
-    "message": "Ask for authorization when using SSH agent"
+    "message": "使用 SSH 代理程式時要求授權"
   },
   "sshAgentPromptBehaviorDesc": {
-    "message": "Choose how to handle SSH-agent authorization requests."
+    "message": "選擇如何處理 SSH 代理程式的授權要求。"
   },
   "sshAgentPromptBehaviorHelp": {
-    "message": "Remember SSH authorizations"
+    "message": "記住 SSH 授權"
   },
   "sshAgentPromptBehaviorAlways": {
-    "message": "Always"
+    "message": "總是"
   },
   "sshAgentPromptBehaviorNever": {
-    "message": "Never"
+    "message": "永不"
   },
   "sshAgentPromptBehaviorRememberUntilLock": {
-    "message": "Remember until vault is locked"
+    "message": "記住直到密碼庫鎖定為止"
   },
   "premiumRequired": {
     "message": "需要進階會員資格"
@@ -409,16 +409,16 @@
     "message": "驗證器金鑰 (TOTP)"
   },
   "authenticatorKey": {
-    "message": "Authenticator key"
+    "message": "驗證器金鑰"
   },
   "autofillOptions": {
-    "message": "Autofill options"
+    "message": "自動填入選項"
   },
   "websiteUri": {
-    "message": "Website (URI)"
+    "message": "網站 (URI)"
   },
   "websiteUriCount": {
-    "message": "Website (URI) $COUNT$",
+    "message": "網站 (URI) $COUNT$ 個",
     "description": "Label for an input field that contains a website URI. The input field is part of a list of fields, and the count indicates the position of the field in the list.",
     "placeholders": {
       "count": {
@@ -428,43 +428,43 @@
     }
   },
   "websiteAdded": {
-    "message": "Website added"
+    "message": "已新增網站"
   },
   "addWebsite": {
-    "message": "Add website"
+    "message": "新增網站"
   },
   "deleteWebsite": {
-    "message": "Delete website"
+    "message": "刪除網站"
   },
   "owner": {
-    "message": "Owner"
+    "message": "擁有者"
   },
   "addField": {
-    "message": "Add field"
+    "message": "新增欄位"
   },
   "editField": {
-    "message": "Edit field"
+    "message": "編輯欄位"
   },
   "permanentlyDeleteAttachmentConfirmation": {
-    "message": "Are you sure you want to permanently delete this attachment?"
+    "message": "你確定要永久刪除此附件嗎？"
   },
   "fieldType": {
-    "message": "Field type"
+    "message": "欄位類別"
   },
   "fieldLabel": {
-    "message": "Field label"
+    "message": "欄位標籤"
   },
   "add": {
-    "message": "Add"
+    "message": "新增"
   },
   "textHelpText": {
-    "message": "Use text fields for data like security questions"
+    "message": "像安全問題之類的資料 請使用文本框"
   },
   "hiddenHelpText": {
-    "message": "Use hidden fields for sensitive data like a password"
+    "message": "敏感資料 如同密碼 使用隱藏字段"
   },
   "checkBoxHelpText": {
-    "message": "Use checkboxes if you'd like to autofill a form's checkbox, like a remember email"
+    "message": "如果您想自動填充表單的復選框，例如「記住電子郵件」，請使用復選框"
   },
   "linkedHelpText": {
     "message": "Use a linked field when you are experiencing autofill issues for a specific website."
@@ -748,10 +748,10 @@
     "message": "Enter the code sent to your email"
   },
   "enterTheCodeFromYourAuthenticatorApp": {
-    "message": "Enter the code from your authenticator app"
+    "message": "請輸入您驗證器應用程式中的代碼"
   },
   "pressYourYubiKeyToAuthenticate": {
-    "message": "Press your YubiKey to authenticate"
+    "message": "請輕觸您的 YubiKey 以進行驗證"
   },
   "logInWithPasskey": {
     "message": "以通行密鑰 (passkey) 登入"
@@ -806,7 +806,7 @@
     "message": "主密碼提示"
   },
   "passwordStrengthScore": {
-    "message": "Password strength score $SCORE$",
+    "message": "密碼強度分數 $SCORE$",
     "placeholders": {
       "score": {
         "content": "$1",
@@ -921,7 +921,7 @@
     "message": "驗證已被取消或時間過長。請再試一次。"
   },
   "openInNewTab": {
-    "message": "Open in new tab"
+    "message": "在新分頁開啟"
   },
   "invalidVerificationCode": {
     "message": "無效的驗證碼"
@@ -939,14 +939,14 @@
     }
   },
   "dontAskAgainOnThisDeviceFor30Days": {
-    "message": "Don't ask again on this device for 30 days"
+    "message": "30 天內不要再於這部裝置上詢問"
   },
   "selectAnotherMethod": {
-    "message": "Select another method",
+    "message": "選擇其他方法",
     "description": "Select another two-step login method"
   },
   "useYourRecoveryCode": {
-    "message": "Use your recovery code"
+    "message": "使用您的復原碼"
   },
   "insertU2f": {
     "message": "將您的安全鑰匙插入電腦的 USB 連接埠，然後觸摸其按鈕（如有的話）。"
@@ -979,13 +979,13 @@
     "description": "'Duo Security' and 'Duo Mobile' are product names and should not be translated."
   },
   "verifyYourIdentity": {
-    "message": "Verify your Identity"
+    "message": "驗證您的身分"
   },
   "weDontRecognizeThisDevice": {
-    "message": "We don't recognize this device. Enter the code sent to your email to verify your identity."
+    "message": "我們無法辨識這部裝置。請輸入傳送到您電子郵件的驗證碼，以驗證您的身分。"
   },
   "continueLoggingIn": {
-    "message": "Continue logging in"
+    "message": "繼續登入"
   },
   "webAuthnTitle": {
     "message": "FIDO2 WebAuthn"
@@ -1012,7 +1012,7 @@
     "message": "兩步驟登入選項"
   },
   "selectTwoStepLoginMethod": {
-    "message": "Select two-step login method"
+    "message": "選取兩步驟登入方式"
   },
   "selfHostedEnvironment": {
     "message": "自我裝載環境"
@@ -1070,7 +1070,7 @@
     "message": "否"
   },
   "location": {
-    "message": "Location"
+    "message": "位置"
   },
   "overwritePassword": {
     "message": "覆寫密碼"
@@ -1440,7 +1440,7 @@
     "description": "Copy credit card security code (CVV)"
   },
   "cardNumber": {
-    "message": "card number"
+    "message": "信用卡號碼"
   },
   "premiumMembership": {
     "message": "進階會員"
@@ -1734,10 +1734,10 @@
     "message": "帳戶已限制"
   },
   "restrictCardTypeImport": {
-    "message": "Cannot import card item types"
+    "message": "無法匯入卡片項目類別"
   },
   "restrictCardTypeImportDesc": {
-    "message": "A policy set by 1 or more organizations prevents you from importing cards to your vaults."
+    "message": "由於一或多個組織設有政策，您無法匯入卡片至您的保險庫。"
   },
   "filePasswordAndConfirmFilePasswordDoNotMatch": {
     "message": "「檔案密碼」與「確認檔案密碼」不一致。"

From 462287223ab447913720aec982171f86d8987a2b Mon Sep 17 00:00:00 2001
From: "bw-ghapp[bot]" <178206702+bw-ghapp[bot]@users.noreply.github.com>
Date: Sat, 19 Jul 2025 21:50:09 +0200
Subject: [PATCH 179/239] Autosync the updated translations (#15691)

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>
---
 apps/browser/src/_locales/az/messages.json    | 62 ++++++++--------
 apps/browser/src/_locales/bg/messages.json    | 62 ++++++++--------
 apps/browser/src/_locales/cs/messages.json    | 18 ++---
 apps/browser/src/_locales/de/messages.json    | 40 +++++------
 apps/browser/src/_locales/hu/messages.json    | 62 ++++++++--------
 apps/browser/src/_locales/lv/messages.json    | 62 ++++++++--------
 apps/browser/src/_locales/nl/messages.json    | 42 +++++------
 apps/browser/src/_locales/pl/messages.json    | 24 +++----
 apps/browser/src/_locales/pt_PT/messages.json | 70 +++++++++----------
 apps/browser/src/_locales/ru/messages.json    | 14 ++--
 apps/browser/src/_locales/sk/messages.json    | 14 ++--
 apps/browser/src/_locales/sv/messages.json    | 18 ++---
 apps/browser/src/_locales/vi/messages.json    | 64 ++++++++---------
 apps/browser/src/_locales/zh_CN/messages.json | 14 ++--
 14 files changed, 283 insertions(+), 283 deletions(-)

diff --git a/apps/browser/src/_locales/az/messages.json b/apps/browser/src/_locales/az/messages.json
index 67019f5cac7..5e7bf056980 100644
--- a/apps/browser/src/_locales/az/messages.json
+++ b/apps/browser/src/_locales/az/messages.json
@@ -1830,7 +1830,7 @@
     "message": "Güvənlik kodu"
   },
   "cardNumber": {
-    "message": "card number"
+    "message": "kart nömrəsi"
   },
   "ex": {
     "message": "məs."
@@ -3464,7 +3464,7 @@
     "message": "Tələb göndərildi"
   },
   "loginRequestApprovedForEmailOnDevice": {
-    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "message": "$DEVICE$ cihazında $EMAIL$ üçün giriş tələbi təsdiqləndi",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3477,13 +3477,13 @@
     }
   },
   "youDeniedLoginAttemptFromAnotherDevice": {
-    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+    "message": "Başqa bir cihazdan giriş cəhdinə rədd cavabı verdiniz. Bu siz idinizsə, cihazla yenidən giriş etməyə çalışın."
   },
   "device": {
-    "message": "Device"
+    "message": "Cihaz"
   },
   "loginStatus": {
-    "message": "Login status"
+    "message": "Giriş statusu"
   },
   "masterPasswordChanged": {
     "message": "Ana parol saxlanıldı"
@@ -3582,28 +3582,28 @@
     "message": "Gələcək girişləri problemsiz etmək üçün bu cihazı xatırla"
   },
   "manageDevices": {
-    "message": "Manage devices"
+    "message": "Cihazları idarə et"
   },
   "currentSession": {
-    "message": "Current session"
+    "message": "Hazırkı seans"
   },
   "mobile": {
-    "message": "Mobile",
+    "message": "Mobil",
     "description": "Mobile app"
   },
   "extension": {
-    "message": "Extension",
+    "message": "Uzantı",
     "description": "Browser extension/addon"
   },
   "desktop": {
-    "message": "Desktop",
+    "message": "Masaüstü",
     "description": "Desktop app"
   },
   "webVault": {
-    "message": "Web vault"
+    "message": "Veb seyf"
   },
   "webApp": {
-    "message": "Web app"
+    "message": "Veb tətbiq"
   },
   "cli": {
     "message": "CLI"
@@ -3613,22 +3613,22 @@
     "description": "Software Development Kit"
   },
   "requestPending": {
-    "message": "Request pending"
+    "message": "Tələb gözlənir"
   },
   "firstLogin": {
-    "message": "First login"
+    "message": "İlk giriş"
   },
   "trusted": {
-    "message": "Trusted"
+    "message": "Güvənli"
   },
   "needsApproval": {
-    "message": "Needs approval"
+    "message": "Təsdiq lazımdır"
   },
   "devices": {
-    "message": "Devices"
+    "message": "Cihazlar"
   },
   "accessAttemptBy": {
-    "message": "Access attempt by $EMAIL$",
+    "message": "$EMAIL$ ilə müraciət cəhdi",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3637,28 +3637,28 @@
     }
   },
   "confirmAccess": {
-    "message": "Confirm access"
+    "message": "Müraciəti təsdiqlə"
   },
   "denyAccess": {
-    "message": "Deny access"
+    "message": "Müraciətə rədd cavabı ver"
   },
   "time": {
-    "message": "Time"
+    "message": "Vaxt"
   },
   "deviceType": {
-    "message": "Device Type"
+    "message": "Cihaz növü"
   },
   "loginRequest": {
-    "message": "Login request"
+    "message": "Giriş tələbi"
   },
   "thisRequestIsNoLongerValid": {
-    "message": "This request is no longer valid."
+    "message": "Bu tələb artıq yararsızdır."
   },
   "areYouTryingToAccessYourAccount": {
-    "message": "Are you trying to access your account?"
+    "message": "Hesabınıza müraciət etməyə çalışırsınız?"
   },
   "logInConfirmedForEmailOnDevice": {
-    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "message": "$DEVICE$ cihazında $EMAIL$ üçün giriş təsdiqləndi",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3671,16 +3671,16 @@
     }
   },
   "youDeniedALogInAttemptFromAnotherDevice": {
-    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+    "message": "Başqa bir cihazdan giriş cəhdinə rədd cavabı verdiniz. Bu həqiqətən siz idinizsə, cihazla yenidən giriş etməyə çalışın."
   },
   "loginRequestHasAlreadyExpired": {
-    "message": "Login request has already expired."
+    "message": "Giriş tələbinin müddəti artıq bitib."
   },
   "justNow": {
-    "message": "Just now"
+    "message": "İndicə"
   },
   "requestedXMinutesAgo": {
-    "message": "Requested $MINUTES$ minutes ago",
+    "message": "$MINUTES$ dəqiqə əvvəl tələb göndərildi",
     "placeholders": {
       "minutes": {
         "content": "$1",
@@ -4598,7 +4598,7 @@
     }
   },
   "copyFieldCipherName": {
-    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "message": "Kopyala: $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
diff --git a/apps/browser/src/_locales/bg/messages.json b/apps/browser/src/_locales/bg/messages.json
index b86493d7d5a..672e029a662 100644
--- a/apps/browser/src/_locales/bg/messages.json
+++ b/apps/browser/src/_locales/bg/messages.json
@@ -1830,7 +1830,7 @@
     "message": "Код за сигурност"
   },
   "cardNumber": {
-    "message": "card number"
+    "message": "номер на карта"
   },
   "ex": {
     "message": "напр."
@@ -3464,7 +3464,7 @@
     "message": "Заявката е изпратена"
   },
   "loginRequestApprovedForEmailOnDevice": {
-    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "message": "Заявката за вписване за $EMAIL$ на $DEVICE$ е одобрена",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3477,13 +3477,13 @@
     }
   },
   "youDeniedLoginAttemptFromAnotherDevice": {
-    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+    "message": "Вие отказахте опит за вписване от друго устройство. Ако това сте били Вие, опитайте да се впишете от устройството отново."
   },
   "device": {
-    "message": "Device"
+    "message": "Устройство"
   },
   "loginStatus": {
-    "message": "Login status"
+    "message": "Състояние на вписването"
   },
   "masterPasswordChanged": {
     "message": "Главната парола е запазена"
@@ -3582,28 +3582,28 @@
     "message": "Запомняне на това устройство, така че в бъдеще вписването да бъде по-лесно"
   },
   "manageDevices": {
-    "message": "Manage devices"
+    "message": "Управление на устройствата"
   },
   "currentSession": {
-    "message": "Current session"
+    "message": "Текуща сесия"
   },
   "mobile": {
-    "message": "Mobile",
+    "message": "Мобилно приложение",
     "description": "Mobile app"
   },
   "extension": {
-    "message": "Extension",
+    "message": "Добавка за браузър",
     "description": "Browser extension/addon"
   },
   "desktop": {
-    "message": "Desktop",
+    "message": "Работен плот",
     "description": "Desktop app"
   },
   "webVault": {
-    "message": "Web vault"
+    "message": "Трезор по уеб"
   },
   "webApp": {
-    "message": "Web app"
+    "message": "Приложение по уеб"
   },
   "cli": {
     "message": "CLI"
@@ -3613,22 +3613,22 @@
     "description": "Software Development Kit"
   },
   "requestPending": {
-    "message": "Request pending"
+    "message": "Чакаща заявка"
   },
   "firstLogin": {
-    "message": "First login"
+    "message": "Първо вписване"
   },
   "trusted": {
-    "message": "Trusted"
+    "message": "Доверено"
   },
   "needsApproval": {
-    "message": "Needs approval"
+    "message": "Изисква одобрение"
   },
   "devices": {
-    "message": "Devices"
+    "message": "Устройства"
   },
   "accessAttemptBy": {
-    "message": "Access attempt by $EMAIL$",
+    "message": "Опит за достъп от $EMAIL$",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3637,28 +3637,28 @@
     }
   },
   "confirmAccess": {
-    "message": "Confirm access"
+    "message": "Разрешаване на достъпа"
   },
   "denyAccess": {
-    "message": "Deny access"
+    "message": "Отказване на достъпа"
   },
   "time": {
-    "message": "Time"
+    "message": "Време"
   },
   "deviceType": {
-    "message": "Device Type"
+    "message": "Вид устройство"
   },
   "loginRequest": {
-    "message": "Login request"
+    "message": "Заявка за вписване"
   },
   "thisRequestIsNoLongerValid": {
-    "message": "This request is no longer valid."
+    "message": "Тази заявка вече не е активна."
   },
   "areYouTryingToAccessYourAccount": {
-    "message": "Are you trying to access your account?"
+    "message": "Опитвате ли се да получите достъп до акаунта си?"
   },
   "logInConfirmedForEmailOnDevice": {
-    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "message": "Вписването за $EMAIL$ на $DEVICE$ е одобрено",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3671,16 +3671,16 @@
     }
   },
   "youDeniedALogInAttemptFromAnotherDevice": {
-    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+    "message": "Вие отказахте опит за вписване от друго устройство. Ако това наистина сте били Вие, опитайте да се впишете от устройството отново."
   },
   "loginRequestHasAlreadyExpired": {
-    "message": "Login request has already expired."
+    "message": "Заявката за вписване вече е изтекла."
   },
   "justNow": {
-    "message": "Just now"
+    "message": "Току-що"
   },
   "requestedXMinutesAgo": {
-    "message": "Requested $MINUTES$ minutes ago",
+    "message": "Заявено преди $MINUTES$ минути",
     "placeholders": {
       "minutes": {
         "content": "$1",
@@ -4598,7 +4598,7 @@
     }
   },
   "copyFieldCipherName": {
-    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "message": "Копиране на $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
diff --git a/apps/browser/src/_locales/cs/messages.json b/apps/browser/src/_locales/cs/messages.json
index 86c1b650996..4e0096a1520 100644
--- a/apps/browser/src/_locales/cs/messages.json
+++ b/apps/browser/src/_locales/cs/messages.json
@@ -1830,7 +1830,7 @@
     "message": "Bezpečnostní kód"
   },
   "cardNumber": {
-    "message": "card number"
+    "message": "číslo karty"
   },
   "ex": {
     "message": "např."
@@ -3480,10 +3480,10 @@
     "message": "Pokus o přihlášení byl zamítnut z jiného zařízení. Pokud jste to Vy, zkuste se znovu přihlásit do zařízení."
   },
   "device": {
-    "message": "Device"
+    "message": "Zařízení"
   },
   "loginStatus": {
-    "message": "Login status"
+    "message": "Stav přihlášení"
   },
   "masterPasswordChanged": {
     "message": "Hlavní heslo bylo uloženo"
@@ -3652,13 +3652,13 @@
     "message": "Požadavek na přihlášení"
   },
   "thisRequestIsNoLongerValid": {
-    "message": "This request is no longer valid."
+    "message": "Tento požadavek již není platný."
   },
   "areYouTryingToAccessYourAccount": {
-    "message": "Are you trying to access your account?"
+    "message": "Pokoušíte se získat přístup k Vašemu účtu?"
   },
   "logInConfirmedForEmailOnDevice": {
-    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "message": "Přihlášení bylo potvrzeno z $EMAIL$ pro $DEVICE$",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3671,10 +3671,10 @@
     }
   },
   "youDeniedALogInAttemptFromAnotherDevice": {
-    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+    "message": "Pokus o přihlášení byl zamítnut z jiného zařízení. Pokud jste to opravdu Vy, zkuste se znovu přihlásit do zařízení."
   },
   "loginRequestHasAlreadyExpired": {
-    "message": "Login request has already expired."
+    "message": "Požadavek na přihlášení již vypršel."
   },
   "justNow": {
     "message": "Právě teď"
@@ -4598,7 +4598,7 @@
     }
   },
   "copyFieldCipherName": {
-    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "message": "Kopírovat $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
diff --git a/apps/browser/src/_locales/de/messages.json b/apps/browser/src/_locales/de/messages.json
index 91dfac2e7c0..2e3d9369c41 100644
--- a/apps/browser/src/_locales/de/messages.json
+++ b/apps/browser/src/_locales/de/messages.json
@@ -1174,10 +1174,10 @@
     "description": "Detailed error message shown when saving login details fails."
   },
   "changePasswordWarning": {
-    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+    "message": "Nachdem du dein Passwort geändert hast, musst du dich mit deinem neuen Passwort anmelden. Aktive Sitzungen auf anderen Geräten werden innerhalb einer Stunde abgemeldet."
   },
   "accountRecoveryUpdateMasterPasswordSubtitle": {
-    "message": "Change your master password to complete account recovery."
+    "message": "Ändere dein Master-Passwort, um die Kontowiederherstellung abzuschließen."
   },
   "enableChangedPasswordNotification": {
     "message": "Nach dem Aktualisieren bestehender Zugangsdaten fragen"
@@ -2929,7 +2929,7 @@
     "message": "Du musst deine E-Mail Adresse verifizieren, um diese Funktion nutzen zu können. Du kannst deine E-Mail im Web-Tresor verifizieren."
   },
   "masterPasswordSuccessfullySet": {
-    "message": "Master-Passwort erfolgreich eingerichtet"
+    "message": "Master-Passwort erfolgreich festgelegt"
   },
   "updatedMasterPassword": {
     "message": "Master-Passwort aktualisiert"
@@ -3464,7 +3464,7 @@
     "message": "Anfrage gesendet"
   },
   "loginRequestApprovedForEmailOnDevice": {
-    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "message": "Anmeldeanfrage für $EMAIL$ auf $DEVICE$ genehmigt",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3477,10 +3477,10 @@
     }
   },
   "youDeniedLoginAttemptFromAnotherDevice": {
-    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+    "message": "Du hast einen Anmeldeversuch von einem anderen Gerät abgelehnt. Wenn du das wirklich warst, versuche dich erneut mit dem Gerät anzumelden."
   },
   "device": {
-    "message": "Device"
+    "message": "Gerät"
   },
   "loginStatus": {
     "message": "Anmeldestatus"
@@ -3582,17 +3582,17 @@
     "message": "Dieses Gerät merken, um zukünftige Anmeldungen reibungslos zu gestalten"
   },
   "manageDevices": {
-    "message": "Manage devices"
+    "message": "Geräte verwalten"
   },
   "currentSession": {
     "message": "Aktuelle Sitzung"
   },
   "mobile": {
-    "message": "Mobile",
+    "message": "Mobile App",
     "description": "Mobile app"
   },
   "extension": {
-    "message": "Extension",
+    "message": "Erweiterung",
     "description": "Browser extension/addon"
   },
   "desktop": {
@@ -3613,7 +3613,7 @@
     "description": "Software Development Kit"
   },
   "requestPending": {
-    "message": "Request pending"
+    "message": "Anfrage ausstehend"
   },
   "firstLogin": {
     "message": "Erste Anmeldung"
@@ -3625,7 +3625,7 @@
     "message": "Benötigt Genehmigung"
   },
   "devices": {
-    "message": "Devices"
+    "message": "Geräte"
   },
   "accessAttemptBy": {
     "message": "Zugriffsversuch von $EMAIL$",
@@ -3643,13 +3643,13 @@
     "message": "Zugriff ablehnen"
   },
   "time": {
-    "message": "Time"
+    "message": "Zeit"
   },
   "deviceType": {
     "message": "Gerätetyp"
   },
   "loginRequest": {
-    "message": "Login request"
+    "message": "Anmeldungsanfrage"
   },
   "thisRequestIsNoLongerValid": {
     "message": "Diese Anfrage ist nicht mehr gültig."
@@ -3710,10 +3710,10 @@
     "message": "Admin-Genehmigung anfragen"
   },
   "unableToCompleteLogin": {
-    "message": "Unable to complete login"
+    "message": "Anmeldung kann nicht abgeschlossen werden"
   },
   "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
-    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+    "message": "Du musst dich auf einem vertrauenswürdigen Gerät anmelden oder deinem Administrator bitten, dir ein Passwort zuzuweisen."
   },
   "ssoIdentifierRequired": {
     "message": "SSO-Kennung der Organisation erforderlich."
@@ -4395,15 +4395,15 @@
     "description": "Label indicating the most common import formats"
   },
   "uriMatchDefaultStrategyHint": {
-    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "message": "Die URI-Übereinstimmungserkennung ist die Methode, mit der Bitwarden Auto-Ausfüllen-Vorschläge erkennt.",
     "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
   },
   "regExAdvancedOptionWarning": {
-    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "message": "\"Regulärer Ausdruck\" ist eine erweiterte Option mit erhöhtem Risiko der Kompromittierung von Zugangsdaten.",
     "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
   },
   "startsWithAdvancedOptionWarning": {
-    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "message": "\"Beginnt mit\" ist eine erweiterte Option mit erhöhtem Risiko der Kompromittierung von Zugangsdaten.",
     "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
   },
   "uriMatchWarningDialogLink": {
@@ -4411,7 +4411,7 @@
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
   "uriAdvancedOption": {
-    "message": "Advanced options",
+    "message": "Erweiterte Optionen",
     "description": "Advanced option placeholder for uri option component"
   },
   "confirmContinueToBrowserSettingsTitle": {
@@ -4598,7 +4598,7 @@
     }
   },
   "copyFieldCipherName": {
-    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "message": "$FIELD$, $CIPHERNAME$ kopieren",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
diff --git a/apps/browser/src/_locales/hu/messages.json b/apps/browser/src/_locales/hu/messages.json
index 228f7ef8c09..b77d613da51 100644
--- a/apps/browser/src/_locales/hu/messages.json
+++ b/apps/browser/src/_locales/hu/messages.json
@@ -1830,7 +1830,7 @@
     "message": "Biztonsági Kód"
   },
   "cardNumber": {
-    "message": "card number"
+    "message": "kártya szám"
   },
   "ex": {
     "message": "példa:"
@@ -3464,7 +3464,7 @@
     "message": "A kérés elküldésre került."
   },
   "loginRequestApprovedForEmailOnDevice": {
-    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "message": "A bejelentkezési kérelem jóváhagyásra került: $EMAIL$ - $DEVICE$",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3477,13 +3477,13 @@
     }
   },
   "youDeniedLoginAttemptFromAnotherDevice": {
-    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+    "message": "Megtagadásra került egy bejelentkezési kísérletet egy másik eszközről. Ha valóban mi voltunk, próbáljunk meg újra bejelentkezni az eszközzel."
   },
   "device": {
-    "message": "Device"
+    "message": "Eszköz"
   },
   "loginStatus": {
-    "message": "Login status"
+    "message": "Bejelentkezési állapot"
   },
   "masterPasswordChanged": {
     "message": "A mesterjelszó mentésre került."
@@ -3582,28 +3582,28 @@
     "message": "Emlékezés az eszközre, hogy zökkenőmentes legyen a jövőbeni bejelentkezés"
   },
   "manageDevices": {
-    "message": "Manage devices"
+    "message": "Eszközök kezelése"
   },
   "currentSession": {
-    "message": "Current session"
+    "message": "Jelenlegi munkamenet"
   },
   "mobile": {
-    "message": "Mobile",
+    "message": "Mobil",
     "description": "Mobile app"
   },
   "extension": {
-    "message": "Extension",
+    "message": "Kiterjesztés",
     "description": "Browser extension/addon"
   },
   "desktop": {
-    "message": "Desktop",
+    "message": "Asztali",
     "description": "Desktop app"
   },
   "webVault": {
-    "message": "Web vault"
+    "message": "Webes széf"
   },
   "webApp": {
-    "message": "Web app"
+    "message": "Webalkalmazás"
   },
   "cli": {
     "message": "CLI"
@@ -3613,22 +3613,22 @@
     "description": "Software Development Kit"
   },
   "requestPending": {
-    "message": "Request pending"
+    "message": "Függőben lévő kérelem"
   },
   "firstLogin": {
-    "message": "First login"
+    "message": "Első bejelentkezés"
   },
   "trusted": {
-    "message": "Trusted"
+    "message": "Megbízható"
   },
   "needsApproval": {
-    "message": "Needs approval"
+    "message": "Jóváhagyást igényel"
   },
   "devices": {
-    "message": "Devices"
+    "message": "Eszközök"
   },
   "accessAttemptBy": {
-    "message": "Access attempt by $EMAIL$",
+    "message": "Bejelentkezési kísérlet $EMAIL$ segítségével",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3637,28 +3637,28 @@
     }
   },
   "confirmAccess": {
-    "message": "Confirm access"
+    "message": "Hozzáférés megerősítése"
   },
   "denyAccess": {
-    "message": "Deny access"
+    "message": "Hozzáférés megtagadása"
   },
   "time": {
-    "message": "Time"
+    "message": "Időpont"
   },
   "deviceType": {
-    "message": "Device Type"
+    "message": "Eszköz típus"
   },
   "loginRequest": {
-    "message": "Login request"
+    "message": "Bejelentkezés kérés"
   },
   "thisRequestIsNoLongerValid": {
-    "message": "This request is no longer valid."
+    "message": "A kérés a továbbiakban már nem érvényes."
   },
   "areYouTryingToAccessYourAccount": {
-    "message": "Are you trying to access your account?"
+    "message": "A fiókhoz próbálunk hozzáférni?"
   },
   "logInConfirmedForEmailOnDevice": {
-    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "message": "A bejelelentketés $EMAIL$ email címmel megerősítésre került $DEVICE$ eszközön.",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3671,16 +3671,16 @@
     }
   },
   "youDeniedALogInAttemptFromAnotherDevice": {
-    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+    "message": "Megtagadásra került egy bejelentkezési kísérletet egy másik eszközről. Ha valóban mi voltunk, próbáljunk meg újra bejelentkezni az eszközzel."
   },
   "loginRequestHasAlreadyExpired": {
-    "message": "Login request has already expired."
+    "message": "A bejelentkezési kérés már lejárt."
   },
   "justNow": {
-    "message": "Just now"
+    "message": "Éppen most"
   },
   "requestedXMinutesAgo": {
-    "message": "Requested $MINUTES$ minutes ago",
+    "message": "Kérve $MINUTES$ perccel ezelőtt",
     "placeholders": {
       "minutes": {
         "content": "$1",
@@ -4598,7 +4598,7 @@
     }
   },
   "copyFieldCipherName": {
-    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "message": "$FIELD$, $CIPHERNAME$ másolása",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
diff --git a/apps/browser/src/_locales/lv/messages.json b/apps/browser/src/_locales/lv/messages.json
index 9763801b773..ba43b1e5f44 100644
--- a/apps/browser/src/_locales/lv/messages.json
+++ b/apps/browser/src/_locales/lv/messages.json
@@ -1830,7 +1830,7 @@
     "message": "Drošības kods"
   },
   "cardNumber": {
-    "message": "card number"
+    "message": "kartes numurs"
   },
   "ex": {
     "message": "piem."
@@ -3464,7 +3464,7 @@
     "message": "Pieprasījums nosūtīts"
   },
   "loginRequestApprovedForEmailOnDevice": {
-    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "message": "$EMAIL$ pieteikšanās pieprasījums apstiprināts $DEVICE$",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3477,13 +3477,13 @@
     }
   },
   "youDeniedLoginAttemptFromAnotherDevice": {
-    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+    "message": "Tu noraidīji pieteikšanās mēģinājumu no citas ierīces. Ja tas biji Tu, mēģini pieteikties no ierīces vēlreiz!"
   },
   "device": {
-    "message": "Device"
+    "message": "Ierīce"
   },
   "loginStatus": {
-    "message": "Login status"
+    "message": "Pieteikšanās stāvoklis"
   },
   "masterPasswordChanged": {
     "message": "Galvenā parole saglabāta"
@@ -3582,28 +3582,28 @@
     "message": "Atcerēties šo ierīci, lai nākotnes pieteikšanos padarītu plūdenāku"
   },
   "manageDevices": {
-    "message": "Manage devices"
+    "message": "Pārvaldīt ierīces"
   },
   "currentSession": {
-    "message": "Current session"
+    "message": "Pašreizējā sesija"
   },
   "mobile": {
-    "message": "Mobile",
+    "message": "Tālrunis",
     "description": "Mobile app"
   },
   "extension": {
-    "message": "Extension",
+    "message": "Paplašinājums",
     "description": "Browser extension/addon"
   },
   "desktop": {
-    "message": "Desktop",
+    "message": "Darbvirsma",
     "description": "Desktop app"
   },
   "webVault": {
-    "message": "Web vault"
+    "message": "Tīmekļa glabātava"
   },
   "webApp": {
-    "message": "Web app"
+    "message": "Tīmekļa lietotne"
   },
   "cli": {
     "message": "CLI"
@@ -3613,22 +3613,22 @@
     "description": "Software Development Kit"
   },
   "requestPending": {
-    "message": "Request pending"
+    "message": "Pieprasījums gaida uz apstrādi"
   },
   "firstLogin": {
-    "message": "First login"
+    "message": "Pirmā pieteikšanās"
   },
   "trusted": {
-    "message": "Trusted"
+    "message": "Uzticama"
   },
   "needsApproval": {
-    "message": "Needs approval"
+    "message": "Nepieciešams apstiprinājums"
   },
   "devices": {
-    "message": "Devices"
+    "message": "Ierīces"
   },
   "accessAttemptBy": {
-    "message": "Access attempt by $EMAIL$",
+    "message": "$EMAIL$ piekļuves mēģinājums",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3637,28 +3637,28 @@
     }
   },
   "confirmAccess": {
-    "message": "Confirm access"
+    "message": "Apstiprināt piekļuvi"
   },
   "denyAccess": {
-    "message": "Deny access"
+    "message": "Noraidīt piekļuvi"
   },
   "time": {
-    "message": "Time"
+    "message": "Laiks"
   },
   "deviceType": {
-    "message": "Device Type"
+    "message": "Ierīces veids"
   },
   "loginRequest": {
-    "message": "Login request"
+    "message": "Pieteikšanās pieprasījums"
   },
   "thisRequestIsNoLongerValid": {
-    "message": "This request is no longer valid."
+    "message": "Šis pieprasījums vairs nav derīgs."
   },
   "areYouTryingToAccessYourAccount": {
-    "message": "Are you trying to access your account?"
+    "message": "Vai mēģini piekļūt savam kontam?"
   },
   "logInConfirmedForEmailOnDevice": {
-    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "message": "$EMAIL$ pieteikšanās apstiprināta ierīcē $DEVICE$",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3671,16 +3671,16 @@
     }
   },
   "youDeniedALogInAttemptFromAnotherDevice": {
-    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+    "message": "Tu noraidīji pieteikšanās mēģinājumu no citas ierīces. Ja tas tiešām biji Tu, mēģini pieteikties no ierīces vēlreiz!"
   },
   "loginRequestHasAlreadyExpired": {
-    "message": "Login request has already expired."
+    "message": "Pieteikšanās pieprasījuma derīgums jau ir beidzies."
   },
   "justNow": {
-    "message": "Just now"
+    "message": "Tikko"
   },
   "requestedXMinutesAgo": {
-    "message": "Requested $MINUTES$ minutes ago",
+    "message": "Pieprasīts pirms $MINUTES$ minūtēm",
     "placeholders": {
       "minutes": {
         "content": "$1",
@@ -4598,7 +4598,7 @@
     }
   },
   "copyFieldCipherName": {
-    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "message": "Ievietot starpliktuvē $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
diff --git a/apps/browser/src/_locales/nl/messages.json b/apps/browser/src/_locales/nl/messages.json
index b67df127da0..b5220861652 100644
--- a/apps/browser/src/_locales/nl/messages.json
+++ b/apps/browser/src/_locales/nl/messages.json
@@ -3464,7 +3464,7 @@
     "message": "Verzoek verzonden"
   },
   "loginRequestApprovedForEmailOnDevice": {
-    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "message": "Inloggen voor $EMAIL$ goedgekeurd op $DEVICE$",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3477,7 +3477,7 @@
     }
   },
   "youDeniedLoginAttemptFromAnotherDevice": {
-    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+    "message": "Je hebt een inlogpoging vanaf een ander apparaat geweigerd. Als je dit toch echt zelf was, probeer dan opnieuw in te loggen met het apparaat."
   },
   "device": {
     "message": "Apparaat"
@@ -3582,17 +3582,17 @@
     "message": "Onthoud dit apparaat om in het vervolg naadloos in te loggen"
   },
   "manageDevices": {
-    "message": "Manage devices"
+    "message": "Apparaten beheren"
   },
   "currentSession": {
-    "message": "Current session"
+    "message": "Huidige sessie"
   },
   "mobile": {
-    "message": "Mobile",
+    "message": "Mobiel",
     "description": "Mobile app"
   },
   "extension": {
-    "message": "Extension",
+    "message": "Extensie",
     "description": "Browser extension/addon"
   },
   "desktop": {
@@ -3600,10 +3600,10 @@
     "description": "Desktop app"
   },
   "webVault": {
-    "message": "Web vault"
+    "message": "Webkluis"
   },
   "webApp": {
-    "message": "Web app"
+    "message": "Web-app"
   },
   "cli": {
     "message": "CLI"
@@ -3613,22 +3613,22 @@
     "description": "Software Development Kit"
   },
   "requestPending": {
-    "message": "Request pending"
+    "message": "Verzoek in behandeling"
   },
   "firstLogin": {
-    "message": "First login"
+    "message": "Eerst inloggen"
   },
   "trusted": {
-    "message": "Trusted"
+    "message": "Vertrouwd"
   },
   "needsApproval": {
-    "message": "Needs approval"
+    "message": "Heeft goedkeuring nodig"
   },
   "devices": {
-    "message": "Devices"
+    "message": "Apparaten"
   },
   "accessAttemptBy": {
-    "message": "Access attempt by $EMAIL$",
+    "message": "Inlogpoging door $EMAIL$",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3637,19 +3637,19 @@
     }
   },
   "confirmAccess": {
-    "message": "Confirm access"
+    "message": "Toegang bevestigen"
   },
   "denyAccess": {
-    "message": "Deny access"
+    "message": "Toegang weigeren"
   },
   "time": {
-    "message": "Time"
+    "message": "Tijd"
   },
   "deviceType": {
-    "message": "Device Type"
+    "message": "Apparaattype"
   },
   "loginRequest": {
-    "message": "Login request"
+    "message": "Log-inverzoek"
   },
   "thisRequestIsNoLongerValid": {
     "message": "Dit verzoek is niet langer geldig."
@@ -3677,10 +3677,10 @@
     "message": "Inlogverzoek is al verlopen."
   },
   "justNow": {
-    "message": "Just now"
+    "message": "Zojuist"
   },
   "requestedXMinutesAgo": {
-    "message": "Requested $MINUTES$ minutes ago",
+    "message": "$MINUTES$ minuten geleden aangevraagd",
     "placeholders": {
       "minutes": {
         "content": "$1",
diff --git a/apps/browser/src/_locales/pl/messages.json b/apps/browser/src/_locales/pl/messages.json
index 23221633916..aa8ab76d543 100644
--- a/apps/browser/src/_locales/pl/messages.json
+++ b/apps/browser/src/_locales/pl/messages.json
@@ -1761,10 +1761,10 @@
     "message": "Pokaż ikony stron internetowych"
   },
   "faviconDesc": {
-    "message": "Pokaż rozpoznawalny obraz obok danych logowania."
+    "message": "Pokaż rozpoznawalną ikonę obok danych logowania."
   },
   "faviconDescAlt": {
-    "message": "Pokaż rozpoznawalny obraz obok danych logowania. Dotyczy wszystkich zalogowanych kont."
+    "message": "Pokaż rozpoznawalną ikonę obok danych logowania. Dotyczy wszystkich zalogowanych kont."
   },
   "enableBadgeCounter": {
     "message": "Pokaż licznik na ikonie"
@@ -3464,7 +3464,7 @@
     "message": "Prośba została wysłana"
   },
   "loginRequestApprovedForEmailOnDevice": {
-    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "message": "Logowanie potwierdzone dla $EMAIL$ na $DEVICE$",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3477,13 +3477,13 @@
     }
   },
   "youDeniedLoginAttemptFromAnotherDevice": {
-    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+    "message": "Odrzucono próby logowania z innego urządzenia. Jeśli to naprawdę Ty, spróbuj ponownie zalogować się za pomocą urządzenia."
   },
   "device": {
     "message": "Urządzenie"
   },
   "loginStatus": {
-    "message": "Login status"
+    "message": "Status zalogowania"
   },
   "masterPasswordChanged": {
     "message": "Hasło główne zostało zapisane"
@@ -3613,7 +3613,7 @@
     "description": "Software Development Kit"
   },
   "requestPending": {
-    "message": "Request pending"
+    "message": "Zapytanie oczekuje"
   },
   "firstLogin": {
     "message": "Pierwsze logowanie"
@@ -3628,7 +3628,7 @@
     "message": "Urządzenia"
   },
   "accessAttemptBy": {
-    "message": "Access attempt by $EMAIL$",
+    "message": "Próba dostępu przez $EMAIL$",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3652,13 +3652,13 @@
     "message": "Żądanie logowania"
   },
   "thisRequestIsNoLongerValid": {
-    "message": "This request is no longer valid."
+    "message": "Prośba nie jest już ważna."
   },
   "areYouTryingToAccessYourAccount": {
-    "message": "Are you trying to access your account?"
+    "message": "Czy próbujesz uzyskać dostęp do swojego konta?"
   },
   "logInConfirmedForEmailOnDevice": {
-    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "message": "Logowanie potwierdzone dla $EMAIL$ na $DEVICE$",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3671,10 +3671,10 @@
     }
   },
   "youDeniedALogInAttemptFromAnotherDevice": {
-    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+    "message": "Odrzucono próby logowania z innego urządzenia. Jeśli to naprawdę Ty, spróbuj ponownie zalogować się za pomocą urządzenia."
   },
   "loginRequestHasAlreadyExpired": {
-    "message": "Login request has already expired."
+    "message": "Prośba logowania wygasła."
   },
   "justNow": {
     "message": "Teraz"
diff --git a/apps/browser/src/_locales/pt_PT/messages.json b/apps/browser/src/_locales/pt_PT/messages.json
index b31a7797df3..1e77e1c3035 100644
--- a/apps/browser/src/_locales/pt_PT/messages.json
+++ b/apps/browser/src/_locales/pt_PT/messages.json
@@ -450,7 +450,7 @@
     "message": "Gera automaticamente palavras-passe fortes e únicas para as suas credenciais."
   },
   "bitWebVaultApp": {
-    "message": "Aplicação Web Bitwarden"
+    "message": "Aplicação web Bitwarden"
   },
   "importItems": {
     "message": "Importar itens"
@@ -653,7 +653,7 @@
     "message": "Classificar a extensão"
   },
   "browserNotSupportClipboard": {
-    "message": "O seu navegador Web não suporta a cópia fácil da área de transferência. Em vez disso, copie manualmente."
+    "message": "O seu navegador web não suporta a cópia fácil da área de transferência. Em vez disso, copie manualmente."
   },
   "verifyYourIdentity": {
     "message": "Verifique a sua identidade"
@@ -929,7 +929,7 @@
     "message": "Torne a sua conta mais segura configurando a verificação de dois passos na aplicação Web Bitwarden."
   },
   "twoStepLoginConfirmationTitle": {
-    "message": "Continuar para a aplicação Web?"
+    "message": "Continuar para a aplicação web?"
   },
   "editedFolder": {
     "message": "Pasta guardada"
@@ -1584,7 +1584,7 @@
     "message": "URL do servidor da API"
   },
   "webVaultUrl": {
-    "message": "URL do servidor do cofre Web"
+    "message": "URL do servidor do cofre web"
   },
   "identityUrl": {
     "message": "URL do servidor de identidade"
@@ -1830,7 +1830,7 @@
     "message": "Código de segurança"
   },
   "cardNumber": {
-    "message": "card number"
+    "message": "número do cartão"
   },
   "ex": {
     "message": "ex."
@@ -3464,7 +3464,7 @@
     "message": "Pedido enviado"
   },
   "loginRequestApprovedForEmailOnDevice": {
-    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "message": "Pedido de início de sessão aprovado para $EMAIL$ no $DEVICE$",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3477,13 +3477,13 @@
     }
   },
   "youDeniedLoginAttemptFromAnotherDevice": {
-    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+    "message": "Recusou uma tentativa de início de sessão de outro dispositivo. Se foi realmente o caso, tente iniciar sessão com o dispositivo novamente."
   },
   "device": {
-    "message": "Device"
+    "message": "Dispositivo"
   },
   "loginStatus": {
-    "message": "Login status"
+    "message": "Estado do início de sessão"
   },
   "masterPasswordChanged": {
     "message": "Palavra-passe mestra guardada"
@@ -3582,28 +3582,28 @@
     "message": "Memorizar este dispositivo para facilitar futuros inícios de sessão"
   },
   "manageDevices": {
-    "message": "Manage devices"
+    "message": "Gerir dispositivos"
   },
   "currentSession": {
-    "message": "Current session"
+    "message": "Sessão atual"
   },
   "mobile": {
-    "message": "Mobile",
+    "message": "Móvel",
     "description": "Mobile app"
   },
   "extension": {
-    "message": "Extension",
+    "message": "Extensão",
     "description": "Browser extension/addon"
   },
   "desktop": {
-    "message": "Desktop",
+    "message": "Computador",
     "description": "Desktop app"
   },
   "webVault": {
-    "message": "Web vault"
+    "message": "Cofre web"
   },
   "webApp": {
-    "message": "Web app"
+    "message": "Aplicação web"
   },
   "cli": {
     "message": "CLI"
@@ -3613,22 +3613,22 @@
     "description": "Software Development Kit"
   },
   "requestPending": {
-    "message": "Request pending"
+    "message": "Pedido pendente"
   },
   "firstLogin": {
-    "message": "First login"
+    "message": "Primeiro início de sessão"
   },
   "trusted": {
-    "message": "Trusted"
+    "message": "Confiável"
   },
   "needsApproval": {
-    "message": "Needs approval"
+    "message": "Precisa de aprovação"
   },
   "devices": {
-    "message": "Devices"
+    "message": "Dispositivos"
   },
   "accessAttemptBy": {
-    "message": "Access attempt by $EMAIL$",
+    "message": "Tentativa de acesso por $EMAIL$",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3637,28 +3637,28 @@
     }
   },
   "confirmAccess": {
-    "message": "Confirm access"
+    "message": "Confirmar acesso"
   },
   "denyAccess": {
-    "message": "Deny access"
+    "message": "Recusar acesso"
   },
   "time": {
-    "message": "Time"
+    "message": "Hora"
   },
   "deviceType": {
-    "message": "Device Type"
+    "message": "Tipo de dispositivo"
   },
   "loginRequest": {
-    "message": "Login request"
+    "message": "Pedido de início de sessão"
   },
   "thisRequestIsNoLongerValid": {
-    "message": "This request is no longer valid."
+    "message": "Este pedido já não é válido."
   },
   "areYouTryingToAccessYourAccount": {
-    "message": "Are you trying to access your account?"
+    "message": "Está a tentar aceder à sua conta?"
   },
   "logInConfirmedForEmailOnDevice": {
-    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "message": "Início de sessão confirmado para $EMAIL$ no $DEVICE$",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3671,16 +3671,16 @@
     }
   },
   "youDeniedALogInAttemptFromAnotherDevice": {
-    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+    "message": "Recusou uma tentativa de início de sessão de outro dispositivo. Se foi realmente o caso, tente iniciar sessão com o dispositivo novamente."
   },
   "loginRequestHasAlreadyExpired": {
-    "message": "Login request has already expired."
+    "message": "O pedido de início de sessão já expirou."
   },
   "justNow": {
-    "message": "Just now"
+    "message": "Agora mesmo"
   },
   "requestedXMinutesAgo": {
-    "message": "Requested $MINUTES$ minutes ago",
+    "message": "Pedido há $MINUTES$ minutos",
     "placeholders": {
       "minutes": {
         "content": "$1",
@@ -4598,7 +4598,7 @@
     }
   },
   "copyFieldCipherName": {
-    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "message": "Copiar $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
diff --git a/apps/browser/src/_locales/ru/messages.json b/apps/browser/src/_locales/ru/messages.json
index 31e331fadad..db236cbfcc8 100644
--- a/apps/browser/src/_locales/ru/messages.json
+++ b/apps/browser/src/_locales/ru/messages.json
@@ -3480,10 +3480,10 @@
     "message": "Вы отклонили попытку авторизации с другого устройства. Если это были вы, попробуйте авторизоваться с этого устройства еще раз."
   },
   "device": {
-    "message": "Device"
+    "message": "Устройство"
   },
   "loginStatus": {
-    "message": "Login status"
+    "message": "Статус авторизации"
   },
   "masterPasswordChanged": {
     "message": "Мастер-пароль сохранен"
@@ -3652,13 +3652,13 @@
     "message": "Запрос на вход"
   },
   "thisRequestIsNoLongerValid": {
-    "message": "This request is no longer valid."
+    "message": "Этот запрос больше не действителен."
   },
   "areYouTryingToAccessYourAccount": {
-    "message": "Are you trying to access your account?"
+    "message": "Вы пытаетесь получить доступ к своему аккаунту?"
   },
   "logInConfirmedForEmailOnDevice": {
-    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "message": "Вход подтвержден для $EMAIL$ на $DEVICE$",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3671,10 +3671,10 @@
     }
   },
   "youDeniedALogInAttemptFromAnotherDevice": {
-    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+    "message": "Вы отклонили попытку авторизации с другого устройства. Если это действительно были вы, попробуйте авторизоваться с этого устройства еще раз."
   },
   "loginRequestHasAlreadyExpired": {
-    "message": "Login request has already expired."
+    "message": "Запрос на вход истек."
   },
   "justNow": {
     "message": "Только что"
diff --git a/apps/browser/src/_locales/sk/messages.json b/apps/browser/src/_locales/sk/messages.json
index 7285399af73..e98c643edb9 100644
--- a/apps/browser/src/_locales/sk/messages.json
+++ b/apps/browser/src/_locales/sk/messages.json
@@ -3480,10 +3480,10 @@
     "message": "Odmietli ste pokus o prihlásenie z iného zariadenia. Ak ste to boli vy, skúste sa prihlásiť pomocou zariadenia znova."
   },
   "device": {
-    "message": "Device"
+    "message": "Zariadenie"
   },
   "loginStatus": {
-    "message": "Login status"
+    "message": "Stav prihlásenia"
   },
   "masterPasswordChanged": {
     "message": "Hlavné heslo uložené"
@@ -3652,13 +3652,13 @@
     "message": "Žiadosť o prihlásenie"
   },
   "thisRequestIsNoLongerValid": {
-    "message": "This request is no longer valid."
+    "message": "Táto žiadosť už nie je platná."
   },
   "areYouTryingToAccessYourAccount": {
-    "message": "Are you trying to access your account?"
+    "message": "Snažíte sa získať prístup k svojmu účtu?"
   },
   "logInConfirmedForEmailOnDevice": {
-    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "message": "Potvrdené prihlásenie pre $EMAIL$ na $DEVICE$",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3671,10 +3671,10 @@
     }
   },
   "youDeniedALogInAttemptFromAnotherDevice": {
-    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+    "message": "Odmietli ste pokus o prihlásenie z iného zariadenia. Ak ste to boli naozaj vy, skúste sa prihlásiť pomocou zariadenia znova."
   },
   "loginRequestHasAlreadyExpired": {
-    "message": "Login request has already expired."
+    "message": "Platnosť žiadosti o prihlásenie už vypršala."
   },
   "justNow": {
     "message": "Práve teraz"
diff --git a/apps/browser/src/_locales/sv/messages.json b/apps/browser/src/_locales/sv/messages.json
index 725497cc26b..cbfc3e478f5 100644
--- a/apps/browser/src/_locales/sv/messages.json
+++ b/apps/browser/src/_locales/sv/messages.json
@@ -1830,7 +1830,7 @@
     "message": "Säkerhetskod"
   },
   "cardNumber": {
-    "message": "card number"
+    "message": "kortnummer"
   },
   "ex": {
     "message": "t. ex."
@@ -3480,10 +3480,10 @@
     "message": "Du nekade ett inloggningsförsök från en annan enhet. Om det var du, försök att logga in med enheten igen."
   },
   "device": {
-    "message": "Device"
+    "message": "Enhet"
   },
   "loginStatus": {
-    "message": "Login status"
+    "message": "Inloggningsstatus"
   },
   "masterPasswordChanged": {
     "message": "Huvudlösenordet sparades"
@@ -3652,13 +3652,13 @@
     "message": "Begäran om inloggning"
   },
   "thisRequestIsNoLongerValid": {
-    "message": "This request is no longer valid."
+    "message": "Denna begäran är inte längre giltig."
   },
   "areYouTryingToAccessYourAccount": {
-    "message": "Are you trying to access your account?"
+    "message": "Försöker du komma åt ditt konto?"
   },
   "logInConfirmedForEmailOnDevice": {
-    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "message": "Inloggning bekräftad för $EMAIL$ på $DEVICE$",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3671,10 +3671,10 @@
     }
   },
   "youDeniedALogInAttemptFromAnotherDevice": {
-    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+    "message": "Du har avvisat ett inloggningsförsök från en annan enhet. Om det verkligen var du, försök logga in med enheten igen."
   },
   "loginRequestHasAlreadyExpired": {
-    "message": "Login request has already expired."
+    "message": "Inloggningsbegäran har redan gått ut."
   },
   "justNow": {
     "message": "Just nu"
@@ -4598,7 +4598,7 @@
     }
   },
   "copyFieldCipherName": {
-    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "message": "Kopiera $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
diff --git a/apps/browser/src/_locales/vi/messages.json b/apps/browser/src/_locales/vi/messages.json
index 7aa8348c6b8..b5de1c2981c 100644
--- a/apps/browser/src/_locales/vi/messages.json
+++ b/apps/browser/src/_locales/vi/messages.json
@@ -1830,7 +1830,7 @@
     "message": "Mã bảo mật"
   },
   "cardNumber": {
-    "message": "card number"
+    "message": "số thẻ"
   },
   "ex": {
     "message": "Ví dụ:"
@@ -3464,7 +3464,7 @@
     "message": "Đã gửi yêu cầu"
   },
   "loginRequestApprovedForEmailOnDevice": {
-    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "message": "Đã phê duyệt yêu cầu đăng nhập cho $EMAIL$ trên $DEVICE$",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3477,13 +3477,13 @@
     }
   },
   "youDeniedLoginAttemptFromAnotherDevice": {
-    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+    "message": "Bạn đã từ chối một lần đăng nhập từ thiết bị khác. Nếu đó là bạn, hãy thử đăng nhập lại bằng thiết bị đó."
   },
   "device": {
-    "message": "Device"
+    "message": "Thiết bị"
   },
   "loginStatus": {
-    "message": "Login status"
+    "message": "Trạng thái đăng nhập"
   },
   "masterPasswordChanged": {
     "message": "Đã lưu mật khẩu chính"
@@ -3582,53 +3582,53 @@
     "message": "Nhớ thiết bị này để đăng nhập dễ dàng trong tương lai"
   },
   "manageDevices": {
-    "message": "Manage devices"
+    "message": "Quản lý thiết bị"
   },
   "currentSession": {
-    "message": "Current session"
+    "message": "Phiên hiện tại"
   },
   "mobile": {
-    "message": "Mobile",
+    "message": "Di động",
     "description": "Mobile app"
   },
   "extension": {
-    "message": "Extension",
+    "message": "Tiện ích mở rộng",
     "description": "Browser extension/addon"
   },
   "desktop": {
-    "message": "Desktop",
+    "message": "Máy tính",
     "description": "Desktop app"
   },
   "webVault": {
-    "message": "Web vault"
+    "message": "Kho web"
   },
   "webApp": {
-    "message": "Web app"
+    "message": "Ứng dụng web"
   },
   "cli": {
-    "message": "CLI"
+    "message": "Giao diện dòng lệnh (CLI)"
   },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
   },
   "requestPending": {
-    "message": "Request pending"
+    "message": "Yêu cầu đang chờ xử lý"
   },
   "firstLogin": {
-    "message": "First login"
+    "message": "Đăng nhập lần đầu"
   },
   "trusted": {
-    "message": "Trusted"
+    "message": "Tin tưởng"
   },
   "needsApproval": {
-    "message": "Needs approval"
+    "message": "Cần phê duyệt"
   },
   "devices": {
-    "message": "Devices"
+    "message": "Thiết bị"
   },
   "accessAttemptBy": {
-    "message": "Access attempt by $EMAIL$",
+    "message": "Cố gắng truy cập bởi $EMAIL$",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3637,28 +3637,28 @@
     }
   },
   "confirmAccess": {
-    "message": "Confirm access"
+    "message": "Xác nhận truy cập"
   },
   "denyAccess": {
-    "message": "Deny access"
+    "message": "Từ chối truy cập"
   },
   "time": {
-    "message": "Time"
+    "message": "Thời gian"
   },
   "deviceType": {
-    "message": "Device Type"
+    "message": "Loại thiết bị"
   },
   "loginRequest": {
-    "message": "Login request"
+    "message": "Yêu cầu đăng nhập"
   },
   "thisRequestIsNoLongerValid": {
-    "message": "This request is no longer valid."
+    "message": "Yêu cầu này không còn hiệu lực."
   },
   "areYouTryingToAccessYourAccount": {
-    "message": "Are you trying to access your account?"
+    "message": "Bạn đang cố gắng truy cập tài khoản của mình?"
   },
   "logInConfirmedForEmailOnDevice": {
-    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "message": "Đã xác nhận đăng nhập cho $EMAIL$ trên $DEVICE$",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3671,16 +3671,16 @@
     }
   },
   "youDeniedALogInAttemptFromAnotherDevice": {
-    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+    "message": "Bạn đã từ chối một lần đăng nhập từ thiết bị khác. Nếu thực sự là bạn, hãy thử đăng nhập lại bằng thiết bị đó."
   },
   "loginRequestHasAlreadyExpired": {
-    "message": "Login request has already expired."
+    "message": "Yêu cầu đăng nhập đã hết hạn."
   },
   "justNow": {
-    "message": "Just now"
+    "message": "Vừa xong"
   },
   "requestedXMinutesAgo": {
-    "message": "Requested $MINUTES$ minutes ago",
+    "message": "Đã yêu cầu $MINUTES$ phút trước",
     "placeholders": {
       "minutes": {
         "content": "$1",
@@ -4598,7 +4598,7 @@
     }
   },
   "copyFieldCipherName": {
-    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "message": "Sao chép $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
diff --git a/apps/browser/src/_locales/zh_CN/messages.json b/apps/browser/src/_locales/zh_CN/messages.json
index 9b7d460261a..f44265425e9 100644
--- a/apps/browser/src/_locales/zh_CN/messages.json
+++ b/apps/browser/src/_locales/zh_CN/messages.json
@@ -3480,10 +3480,10 @@
     "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
   },
   "device": {
-    "message": "Device"
+    "message": "设备"
   },
   "loginStatus": {
-    "message": "Login status"
+    "message": "登录状态"
   },
   "masterPasswordChanged": {
     "message": "主密码已保存"
@@ -3652,13 +3652,13 @@
     "message": "Login request"
   },
   "thisRequestIsNoLongerValid": {
-    "message": "This request is no longer valid."
+    "message": "此请求已失效。"
   },
   "areYouTryingToAccessYourAccount": {
-    "message": "Are you trying to access your account?"
+    "message": "您正在尝试访问您的账户吗？"
   },
   "logInConfirmedForEmailOnDevice": {
-    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "message": "已确认 $EMAIL$ 在 $DEVICE$ 上的登录",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3671,10 +3671,10 @@
     }
   },
   "youDeniedALogInAttemptFromAnotherDevice": {
-    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+    "message": "您拒绝了另一台设备的登录尝试。如果真的是您，请尝试再次使用该设备登录。"
   },
   "loginRequestHasAlreadyExpired": {
-    "message": "Login request has already expired."
+    "message": "登录请求已过期。"
   },
   "justNow": {
     "message": "Just now"

From 8dc97ca1a7038a14981aa3176ae41eb835fa4022 Mon Sep 17 00:00:00 2001
From: Vincent Salucci <26154748+vincentsalucci@users.noreply.github.com>
Date: Sun, 20 Jul 2025 18:53:10 -0500
Subject: [PATCH 180/239] [PM-20128] Update Claimed Domains description
 (#15630)

* chore: update claimed domain description width, refs PM-20128

* chore: add new message key, delete old message, update reference to new key, refs PM-20128

* chore: change width to max width for claimed domains description, refs PM-20128
---
 apps/web/src/locales/en/messages.json                         | 4 ++--
 .../domain-verification/domain-verification.component.html    | 4 ++--
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/apps/web/src/locales/en/messages.json b/apps/web/src/locales/en/messages.json
index 4c4a97e6404..d5ded3c75ea 100644
--- a/apps/web/src/locales/en/messages.json
+++ b/apps/web/src/locales/en/messages.json
@@ -10400,8 +10400,8 @@
   "domainStatusUnderVerification": {
     "message": "Under verification"
   },
-  "claimedDomainsDesc": {
-    "message": "Claim a domain to own all member accounts whose email address matches the domain. Members will be able to skip the SSO identifier when logging in. Administrators will also be able to delete member accounts."
+  "claimedDomainsDescription": {
+    "message": "Claim a domain to own member accounts. The SSO identifier page will be skipped during login for members with claimed domains and administrators will be able to delete claimed accounts."
   },
   "invalidDomainNameClaimMessage": {
     "message": "Input is not a valid format. Format: mydomain.com. Subdomains require separate entries to be claimed."
diff --git a/bitwarden_license/bit-web/src/app/admin-console/organizations/manage/domain-verification/domain-verification.component.html b/bitwarden_license/bit-web/src/app/admin-console/organizations/manage/domain-verification/domain-verification.component.html
index 4b8d916f776..20afe902b73 100644
--- a/bitwarden_license/bit-web/src/app/admin-console/organizations/manage/domain-verification/domain-verification.component.html
+++ b/bitwarden_license/bit-web/src/app/admin-console/organizations/manage/domain-verification/domain-verification.component.html
@@ -4,8 +4,8 @@
   </button>
 </app-header>
 
-<p bitTypography="body1" class="tw-text-main tw-w-2/5">
-  {{ "claimedDomainsDesc" | i18n }}
+<p bitTypography="body1" class="tw-text-main tw-max-w-4xl">
+  {{ "claimedDomainsDescription" | i18n }}
   <a
     bitLink
     target="_blank"

From 8b5e6adc376d21552137e31ca63b8939f343f447 Mon Sep 17 00:00:00 2001
From: Bernd Schoolmann <mail@quexten.com>
Date: Mon, 21 Jul 2025 15:52:38 +0200
Subject: [PATCH 181/239] [PM-21378] Switch encrypt service to use SDK
 functions (#14538)

* Add new encrypt service functions

* Undo changes

* Cleanup

* Fix build

* Fix comments

* Switch encrypt service to use SDK functions

* Move remaining functions to PureCrypto

* Tests

* Increase test coverage

* Enforce sdk.ready and drop unused codepaths

* Delete unused code

* Add forgotten sdk init logic

* Fix build error

* Fix browser extension failing to unlock after process reload due to outdated usage of decryptString

* Fix send encryption

* Fix client key half decryption being stuck

* Attempt to fix sharereplay

* Fix build

* Fix type / add filter / add distinctuntilchange

* Fix capitalization
---
 .../local-backed-session-storage.service.ts   |   8 +-
 apps/desktop/src/main.ts                      |   7 +
 .../src/services/main-sdk-load-service.ts     |   9 +
 apps/desktop/webpack.main.js                  |   3 +
 .../abstractions/crypto-function.service.ts   |   1 -
 .../crypto/abstractions/encrypt.service.ts    |  14 -
 ...bulk-encrypt.service.impementation.spec.ts | 170 ----
 .../bulk-encrypt.service.implementation.ts    | 162 +---
 .../encrypt.service.implementation.ts         | 424 +++-------
 .../crypto/services/encrypt.service.spec.ts   | 729 ++++--------------
 .../fallback-bulk-encrypt.service.spec.ts     |  97 ---
 .../services/fallback-bulk-encrypt.service.ts |  20 +-
 ...ead-encrypt.service.implementation.spec.ts | 123 ---
 ...tithread-encrypt.service.implementation.ts |  99 +--
 .../web-crypto-function.service.spec.ts       |  42 -
 .../services/web-crypto-function.service.ts   |   8 -
 .../src/tools/send/services/send.service.ts   |   3 +
 libs/key-management/src/key.service.ts        |  15 +-
 18 files changed, 306 insertions(+), 1628 deletions(-)
 create mode 100644 apps/desktop/src/services/main-sdk-load-service.ts
 delete mode 100644 libs/common/src/key-management/crypto/services/bulk-encrypt.service.impementation.spec.ts
 delete mode 100644 libs/common/src/key-management/crypto/services/fallback-bulk-encrypt.service.spec.ts
 delete mode 100644 libs/common/src/key-management/crypto/services/multithread-encrypt.service.implementation.spec.ts

diff --git a/apps/browser/src/platform/services/local-backed-session-storage.service.ts b/apps/browser/src/platform/services/local-backed-session-storage.service.ts
index ee5a53b0ad2..978b993fa4d 100644
--- a/apps/browser/src/platform/services/local-backed-session-storage.service.ts
+++ b/apps/browser/src/platform/services/local-backed-session-storage.service.ts
@@ -118,14 +118,14 @@ export class LocalBackedSessionStorageService
       return null;
     }
 
-    const valueJson = await this.encryptService.decryptString(new EncString(local), encKey);
-    if (valueJson == null) {
+    try {
+      const valueJson = await this.encryptService.decryptString(new EncString(local), encKey);
+      return JSON.parse(valueJson);
+    } catch {
       // error with decryption, value is lost, delete state and start over
       await this.localStorage.remove(this.sessionStorageKey(key));
       return null;
     }
-
-    return JSON.parse(valueJson);
   }
 
   private async updateLocalSessionValue(key: string, value: unknown): Promise<void> {
diff --git a/apps/desktop/src/main.ts b/apps/desktop/src/main.ts
index 8c92131617a..eee5e3c84f2 100644
--- a/apps/desktop/src/main.ts
+++ b/apps/desktop/src/main.ts
@@ -12,6 +12,7 @@ import { AccountServiceImplementation } from "@bitwarden/common/auth/services/ac
 import { ClientType } from "@bitwarden/common/enums";
 import { EncryptServiceImplementation } from "@bitwarden/common/key-management/crypto/services/encrypt.service.implementation";
 import { RegionConfig } from "@bitwarden/common/platform/abstractions/environment.service";
+import { SdkLoadService } from "@bitwarden/common/platform/abstractions/sdk/sdk-load.service";
 import { Message, MessageSender } from "@bitwarden/common/platform/messaging";
 // eslint-disable-next-line no-restricted-imports -- For dependency creation
 import { SubjectMessageSender } from "@bitwarden/common/platform/messaging/internal";
@@ -58,6 +59,7 @@ import { EphemeralValueStorageService } from "./platform/services/ephemeral-valu
 import { I18nMainService } from "./platform/services/i18n.main.service";
 import { SSOLocalhostCallbackService } from "./platform/services/sso-localhost-callback.service";
 import { ElectronMainMessagingService } from "./services/electron-main-messaging.service";
+import { MainSdkLoadService } from "./services/main-sdk-load-service";
 import { isMacAppStore } from "./utils";
 
 export class Main {
@@ -88,6 +90,7 @@ export class Main {
   desktopAutofillSettingsService: DesktopAutofillSettingsService;
   versionMain: VersionMain;
   sshAgentService: MainSshAgentService;
+  sdkLoadService: SdkLoadService;
   mainDesktopAutotypeService: MainDesktopAutotypeService;
 
   constructor() {
@@ -144,6 +147,8 @@ export class Main {
 
     this.i18nService = new I18nMainService("en", "./locales/", globalStateProvider);
 
+    this.sdkLoadService = new MainSdkLoadService();
+
     this.mainCryptoFunctionService = new NodeCryptoFunctionService();
 
     const stateEventRegistrarService = new StateEventRegistrarService(
@@ -386,6 +391,8 @@ export class Main {
         this.windowMain.win.on("minimize", () => {
           this.messagingService.send("windowHidden");
         });
+
+        await this.sdkLoadService.loadAndInit();
       },
       (e: any) => {
         this.logService.error("Error while running migrations:", e);
diff --git a/apps/desktop/src/services/main-sdk-load-service.ts b/apps/desktop/src/services/main-sdk-load-service.ts
new file mode 100644
index 00000000000..847505f68fe
--- /dev/null
+++ b/apps/desktop/src/services/main-sdk-load-service.ts
@@ -0,0 +1,9 @@
+import { SdkLoadService } from "@bitwarden/common/platform/abstractions/sdk/sdk-load.service";
+import * as sdk from "@bitwarden/sdk-internal";
+
+export class MainSdkLoadService extends SdkLoadService {
+  async load(): Promise<void> {
+    const module = await import("@bitwarden/sdk-internal/bitwarden_wasm_internal_bg.wasm");
+    (sdk as any).init(module);
+  }
+}
diff --git a/apps/desktop/webpack.main.js b/apps/desktop/webpack.main.js
index 25a68d8c867..166fba95d52 100644
--- a/apps/desktop/webpack.main.js
+++ b/apps/desktop/webpack.main.js
@@ -65,6 +65,9 @@ const main = {
       },
     ],
   },
+  experiments: {
+    asyncWebAssembly: true,
+  },
   plugins: [
     new CopyWebpackPlugin({
       patterns: [
diff --git a/libs/common/src/key-management/crypto/abstractions/crypto-function.service.ts b/libs/common/src/key-management/crypto/abstractions/crypto-function.service.ts
index d9541481083..5e4fa86a684 100644
--- a/libs/common/src/key-management/crypto/abstractions/crypto-function.service.ts
+++ b/libs/common/src/key-management/crypto/abstractions/crypto-function.service.ts
@@ -41,7 +41,6 @@ export abstract class CryptoFunctionService {
     algorithm: "sha1" | "sha256" | "sha512",
   ): Promise<Uint8Array | string>;
   abstract compareFast(a: Uint8Array | string, b: Uint8Array | string): Promise<boolean>;
-  abstract aesEncrypt(data: Uint8Array, iv: Uint8Array, key: Uint8Array): Promise<Uint8Array>;
   abstract aesDecryptFastParameters(
     data: string,
     iv: string,
diff --git a/libs/common/src/key-management/crypto/abstractions/encrypt.service.ts b/libs/common/src/key-management/crypto/abstractions/encrypt.service.ts
index 93d9cb64ce1..67db3591e74 100644
--- a/libs/common/src/key-management/crypto/abstractions/encrypt.service.ts
+++ b/libs/common/src/key-management/crypto/abstractions/encrypt.service.ts
@@ -7,20 +7,6 @@ import { SymmetricCryptoKey } from "../../../platform/models/domain/symmetric-cr
 import { EncString } from "../models/enc-string";
 
 export abstract class EncryptService {
-  /**
-   * @deprecated
-   * Encrypts a string or Uint8Array to an EncString
-   * @param plainValue - The value to encrypt
-   * @param key - The key to encrypt the value with
-   */
-  abstract encrypt(plainValue: string | Uint8Array, key: SymmetricCryptoKey): Promise<EncString>;
-  /**
-   * @deprecated
-   * Encrypts a value to a Uint8Array
-   * @param plainValue - The value to encrypt
-   * @param key - The key to encrypt the value with
-   */
-  abstract encryptToBytes(plainValue: Uint8Array, key: SymmetricCryptoKey): Promise<EncArrayBuffer>;
   /**
    * @deprecated
    * Decrypts an EncString to a string
diff --git a/libs/common/src/key-management/crypto/services/bulk-encrypt.service.impementation.spec.ts b/libs/common/src/key-management/crypto/services/bulk-encrypt.service.impementation.spec.ts
deleted file mode 100644
index bc77cfb410f..00000000000
--- a/libs/common/src/key-management/crypto/services/bulk-encrypt.service.impementation.spec.ts
+++ /dev/null
@@ -1,170 +0,0 @@
-import { mock, MockProxy } from "jest-mock-extended";
-import * as rxjs from "rxjs";
-
-import { ServerConfig } from "../../../platform/abstractions/config/server-config";
-import { LogService } from "../../../platform/abstractions/log.service";
-import { Decryptable } from "../../../platform/interfaces/decryptable.interface";
-import { InitializerMetadata } from "../../../platform/interfaces/initializer-metadata.interface";
-import { SymmetricCryptoKey } from "../../../platform/models/domain/symmetric-crypto-key";
-import { CryptoFunctionService } from "../abstractions/crypto-function.service";
-import { buildSetConfigMessage } from "../types/worker-command.type";
-
-import { BulkEncryptServiceImplementation } from "./bulk-encrypt.service.implementation";
-
-describe("BulkEncryptServiceImplementation", () => {
-  const cryptoFunctionService = mock<CryptoFunctionService>();
-  const logService = mock<LogService>();
-
-  let sut: BulkEncryptServiceImplementation;
-
-  beforeEach(() => {
-    sut = new BulkEncryptServiceImplementation(cryptoFunctionService, logService);
-  });
-
-  afterEach(() => {
-    jest.resetAllMocks();
-  });
-
-  describe("decryptItems", () => {
-    const key = mock<SymmetricCryptoKey>();
-    const serverConfig = mock<ServerConfig>();
-    const mockWorker = mock<Worker>();
-    let globalWindow: any;
-
-    beforeEach(() => {
-      globalWindow = global.window;
-
-      // Mock creating a worker.
-      global.Worker = jest.fn().mockImplementation(() => mockWorker);
-      global.URL = jest.fn().mockImplementation(() => "url") as unknown as typeof URL;
-      global.URL.createObjectURL = jest.fn().mockReturnValue("blob:url");
-      global.URL.revokeObjectURL = jest.fn();
-      global.URL.canParse = jest.fn().mockReturnValue(true);
-
-      // Mock the workers returned response.
-      const mockMessageEvent = {
-        id: "mock-guid",
-        data: ["decrypted1", "decrypted2"],
-      };
-      const mockMessageEvent$ = rxjs.from([mockMessageEvent]);
-      jest.spyOn(rxjs, "fromEvent").mockReturnValue(mockMessageEvent$);
-    });
-
-    afterEach(() => {
-      global.window = globalWindow;
-    });
-
-    it("throws error if key is null", async () => {
-      const nullKey = null as unknown as SymmetricCryptoKey;
-      await expect(sut.decryptItems([], nullKey)).rejects.toThrow("No encryption key provided.");
-    });
-
-    it("returns an empty array when items is null", async () => {
-      const result = await sut.decryptItems(null as any, key);
-      expect(result).toEqual([]);
-    });
-
-    it("returns an empty array when items is empty", async () => {
-      const result = await sut.decryptItems([], key);
-      expect(result).toEqual([]);
-    });
-
-    it("decrypts items sequentially when window is undefined", async () => {
-      // Make global window undefined.
-      delete (global as any).window;
-
-      const mockItems = [createMockDecryptable("item1"), createMockDecryptable("item2")];
-
-      const result = await sut.decryptItems(mockItems, key);
-
-      expect(logService.info).toHaveBeenCalledWith(
-        "Window not available in BulkEncryptService, decrypting sequentially",
-      );
-      expect(result).toEqual(["item1", "item2"]);
-      expect(mockItems[0].decrypt).toHaveBeenCalledWith(key);
-      expect(mockItems[1].decrypt).toHaveBeenCalledWith(key);
-    });
-
-    it("uses workers for decryption when window is available", async () => {
-      const mockDecryptedItems = ["decrypted1", "decrypted2"];
-      jest
-        .spyOn<any, any>(sut, "getDecryptedItemsFromWorkers")
-        .mockResolvedValue(mockDecryptedItems);
-
-      const mockItems = [createMockDecryptable("item1"), createMockDecryptable("item2")];
-
-      const result = await sut.decryptItems(mockItems, key);
-
-      expect(sut["getDecryptedItemsFromWorkers"]).toHaveBeenCalledWith(mockItems, key);
-      expect(result).toEqual(mockDecryptedItems);
-    });
-
-    it("creates new worker when none exist", async () => {
-      (sut as any).currentServerConfig = undefined;
-      const mockItems = [createMockDecryptable("item1"), createMockDecryptable("item2")];
-
-      await sut.decryptItems(mockItems, key);
-
-      expect(global.Worker).toHaveBeenCalled();
-      expect(mockWorker.postMessage).toHaveBeenCalledTimes(1);
-      expect(mockWorker.postMessage).not.toHaveBeenCalledWith(
-        buildSetConfigMessage({ newConfig: serverConfig }),
-      );
-    });
-
-    it("sends a SetConfigMessage to the new worker when there is a current server config", async () => {
-      (sut as any).currentServerConfig = serverConfig;
-      const mockItems = [createMockDecryptable("item1"), createMockDecryptable("item2")];
-
-      await sut.decryptItems(mockItems, key);
-
-      expect(global.Worker).toHaveBeenCalled();
-      expect(mockWorker.postMessage).toHaveBeenCalledTimes(2);
-      expect(mockWorker.postMessage).toHaveBeenCalledWith(
-        buildSetConfigMessage({ newConfig: serverConfig }),
-      );
-    });
-
-    it("does not create worker if one exists", async () => {
-      (sut as any).currentServerConfig = serverConfig;
-      (sut as any).workers = [mockWorker];
-      const mockItems = [createMockDecryptable("item1"), createMockDecryptable("item2")];
-
-      await sut.decryptItems(mockItems, key);
-
-      expect(global.Worker).not.toHaveBeenCalled();
-      expect(mockWorker.postMessage).toHaveBeenCalledTimes(1);
-      expect(mockWorker.postMessage).not.toHaveBeenCalledWith(
-        buildSetConfigMessage({ newConfig: serverConfig }),
-      );
-    });
-  });
-
-  describe("onServerConfigChange", () => {
-    it("updates internal currentServerConfig to new config", () => {
-      const newConfig = mock<ServerConfig>();
-
-      sut.onServerConfigChange(newConfig);
-
-      expect((sut as any).currentServerConfig).toBe(newConfig);
-    });
-
-    it("does send a SetConfigMessage to workers when there is a worker", () => {
-      const newConfig = mock<ServerConfig>();
-      const mockWorker = mock<Worker>();
-      (sut as any).workers = [mockWorker];
-
-      sut.onServerConfigChange(newConfig);
-
-      expect(mockWorker.postMessage).toHaveBeenCalledWith(buildSetConfigMessage({ newConfig }));
-    });
-  });
-});
-
-function createMockDecryptable<T extends InitializerMetadata>(
-  returnValue: any,
-): MockProxy<Decryptable<T>> {
-  const mockDecryptable = mock<Decryptable<T>>();
-  mockDecryptable.decrypt.mockResolvedValue(returnValue);
-  return mockDecryptable;
-}
diff --git a/libs/common/src/key-management/crypto/services/bulk-encrypt.service.implementation.ts b/libs/common/src/key-management/crypto/services/bulk-encrypt.service.implementation.ts
index 7421ae1eb20..1bc1827a07a 100644
--- a/libs/common/src/key-management/crypto/services/bulk-encrypt.service.implementation.ts
+++ b/libs/common/src/key-management/crypto/services/bulk-encrypt.service.implementation.ts
@@ -1,38 +1,19 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
-import { firstValueFrom, fromEvent, filter, map, takeUntil, defaultIfEmpty, Subject } from "rxjs";
-import { Jsonify } from "type-fest";
-
 import { BulkEncryptService } from "@bitwarden/common/key-management/crypto/abstractions/bulk-encrypt.service";
 import { CryptoFunctionService } from "@bitwarden/common/key-management/crypto/abstractions/crypto-function.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { Decryptable } from "@bitwarden/common/platform/interfaces/decryptable.interface";
 import { InitializerMetadata } from "@bitwarden/common/platform/interfaces/initializer-metadata.interface";
-import { Utils } from "@bitwarden/common/platform/misc/utils";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
-import { getClassInitializer } from "@bitwarden/common/platform/services/cryptography/get-class-initializer";
 
-import {
-  DefaultFeatureFlagValue,
-  FeatureFlag,
-  getFeatureFlagValue,
-} from "../../../enums/feature-flag.enum";
+import { DefaultFeatureFlagValue, FeatureFlag } from "../../../enums/feature-flag.enum";
 import { ServerConfig } from "../../../platform/abstractions/config/server-config";
-import { buildDecryptMessage, buildSetConfigMessage } from "../types/worker-command.type";
-
-// TTL (time to live) is not strictly required but avoids tying up memory resources if inactive
-const workerTTL = 60000; // 1 minute
-const maxWorkers = 8;
-const minNumberOfItemsForMultithreading = 400;
 
+/**
+ * @deprecated Will be deleted in an immediate subsequent PR
+ */
 export class BulkEncryptServiceImplementation implements BulkEncryptService {
-  private workers: Worker[] = [];
-  private timeout: any;
-  private currentServerConfig: ServerConfig | undefined = undefined;
   protected useSDKForDecryption: boolean = DefaultFeatureFlagValue[FeatureFlag.UseSDKForDecryption];
 
-  private clear$ = new Subject<void>();
-
   constructor(
     protected cryptoFunctionService: CryptoFunctionService,
     protected logService: LogService,
@@ -54,139 +35,12 @@ export class BulkEncryptServiceImplementation implements BulkEncryptService {
       return [];
     }
 
-    if (typeof window === "undefined" || this.useSDKForDecryption) {
-      this.logService.info("Window not available in BulkEncryptService, decrypting sequentially");
-      const results = [];
-      for (let i = 0; i < items.length; i++) {
-        results.push(await items[i].decrypt(key));
-      }
-      return results;
-    }
-
-    const decryptedItems = await this.getDecryptedItemsFromWorkers(items, key);
-    return decryptedItems;
-  }
-
-  onServerConfigChange(newConfig: ServerConfig): void {
-    this.currentServerConfig = newConfig;
-    this.useSDKForDecryption = getFeatureFlagValue(newConfig, FeatureFlag.UseSDKForDecryption);
-    this.updateWorkerServerConfigs(newConfig);
-  }
-
-  /**
-   * Sends items to a set of web workers to decrypt them. This utilizes multiple workers to decrypt items
-   * faster without interrupting other operations (e.g. updating UI).
-   */
-  private async getDecryptedItemsFromWorkers<T extends InitializerMetadata>(
-    items: Decryptable<T>[],
-    key: SymmetricCryptoKey,
-  ): Promise<T[]> {
-    if (items == null || items.length < 1) {
-      return [];
-    }
-
-    this.clearTimeout();
-
-    const hardwareConcurrency = navigator.hardwareConcurrency || 1;
-    let numberOfWorkers = Math.min(hardwareConcurrency, maxWorkers);
-    if (items.length < minNumberOfItemsForMultithreading) {
-      numberOfWorkers = 1;
-    }
-
-    this.logService.info(
-      `Starting decryption using multithreading with ${numberOfWorkers} workers for ${items.length} items`,
-    );
-
-    if (this.workers.length == 0) {
-      for (let i = 0; i < numberOfWorkers; i++) {
-        this.workers.push(
-          new Worker(
-            new URL(
-              /* webpackChunkName: 'encrypt-worker' */
-              "@bitwarden/common/key-management/crypto/services/encrypt.worker.ts",
-              import.meta.url,
-            ),
-          ),
-        );
-      }
-      if (this.currentServerConfig != undefined) {
-        this.updateWorkerServerConfigs(this.currentServerConfig);
-      }
-    }
-
-    const itemsPerWorker = Math.floor(items.length / this.workers.length);
     const results = [];
-
-    for (const [i, worker] of this.workers.entries()) {
-      const start = i * itemsPerWorker;
-      const end = start + itemsPerWorker;
-      const itemsForWorker = items.slice(start, end);
-
-      // push the remaining items to the last worker
-      if (i == this.workers.length - 1) {
-        itemsForWorker.push(...items.slice(end));
-      }
-
-      const id = Utils.newGuid();
-      const request = buildDecryptMessage({
-        id,
-        items: itemsForWorker,
-        key: key,
-      });
-
-      worker.postMessage(request);
-      results.push(
-        firstValueFrom(
-          fromEvent(worker, "message").pipe(
-            filter((response: MessageEvent) => response.data?.id === id),
-            map((response) => JSON.parse(response.data.items)),
-            map((items) =>
-              items.map((jsonItem: Jsonify<T>) => {
-                const initializer = getClassInitializer<T>(jsonItem.initializerKey);
-                return initializer(jsonItem);
-              }),
-            ),
-            takeUntil(this.clear$),
-            defaultIfEmpty([]),
-          ),
-        ),
-      );
+    for (let i = 0; i < items.length; i++) {
+      results.push(await items[i].decrypt(key));
     }
-
-    const decryptedItems = (await Promise.all(results)).flat();
-    this.logService.info(
-      `Finished decrypting ${decryptedItems.length} items using ${numberOfWorkers} workers`,
-    );
-
-    this.restartTimeout();
-
-    return decryptedItems;
+    return results;
   }
 
-  private updateWorkerServerConfigs(newConfig: ServerConfig) {
-    this.workers.forEach((worker) => {
-      const request = buildSetConfigMessage({ newConfig });
-      worker.postMessage(request);
-    });
-  }
-
-  private clear() {
-    this.clear$.next();
-    for (const worker of this.workers) {
-      worker.terminate();
-    }
-    this.workers = [];
-    this.clearTimeout();
-  }
-
-  private restartTimeout() {
-    this.clearTimeout();
-    this.timeout = setTimeout(() => this.clear(), workerTTL);
-  }
-
-  private clearTimeout() {
-    if (this.timeout != null) {
-      clearTimeout(this.timeout);
-    }
-  }
+  onServerConfigChange(newConfig: ServerConfig): void {}
 }
diff --git a/libs/common/src/key-management/crypto/services/encrypt.service.implementation.ts b/libs/common/src/key-management/crypto/services/encrypt.service.implementation.ts
index a68ecd2db54..3e36fd334ec 100644
--- a/libs/common/src/key-management/crypto/services/encrypt.service.implementation.ts
+++ b/libs/common/src/key-management/crypto/services/encrypt.service.implementation.ts
@@ -3,36 +3,20 @@
 import { CryptoFunctionService } from "@bitwarden/common/key-management/crypto/abstractions/crypto-function.service";
 import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
-import {
-  EncryptionType,
-  encryptionTypeToString as encryptionTypeName,
-} from "@bitwarden/common/platform/enums";
+import { SdkLoadService } from "@bitwarden/common/platform/abstractions/sdk/sdk-load.service";
+import { EncryptionType } from "@bitwarden/common/platform/enums";
 import { Decryptable } from "@bitwarden/common/platform/interfaces/decryptable.interface";
 import { Encrypted } from "@bitwarden/common/platform/interfaces/encrypted";
 import { InitializerMetadata } from "@bitwarden/common/platform/interfaces/initializer-metadata.interface";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
 import { EncArrayBuffer } from "@bitwarden/common/platform/models/domain/enc-array-buffer";
-import { EncryptedObject } from "@bitwarden/common/platform/models/domain/encrypted-object";
-import {
-  Aes256CbcHmacKey,
-  Aes256CbcKey,
-  SymmetricCryptoKey,
-} from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
+import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import { PureCrypto } from "@bitwarden/sdk-internal";
 
-import {
-  DefaultFeatureFlagValue,
-  FeatureFlag,
-  getFeatureFlagValue,
-} from "../../../enums/feature-flag.enum";
 import { ServerConfig } from "../../../platform/abstractions/config/server-config";
-import { SdkLoadService } from "../../../platform/abstractions/sdk/sdk-load.service";
 import { EncryptService } from "../abstractions/encrypt.service";
 
 export class EncryptServiceImplementation implements EncryptService {
-  protected useSDKForDecryption: boolean = DefaultFeatureFlagValue[FeatureFlag.UseSDKForDecryption];
-  private blockType0: boolean = DefaultFeatureFlagValue[FeatureFlag.PM17987_BlockType0];
-
   constructor(
     protected cryptoFunctionService: CryptoFunctionService,
     protected logService: LogService,
@@ -41,27 +25,40 @@ export class EncryptServiceImplementation implements EncryptService {
 
   // Proxy functions; Their implementation are temporary before moving at this level to the SDK
   async encryptString(plainValue: string, key: SymmetricCryptoKey): Promise<EncString> {
-    return this.encrypt(plainValue, key);
+    if (plainValue == null) {
+      this.logService.warning(
+        "[EncryptService] WARNING: encryptString called with null value. Returning null, but this behavior is deprecated and will be removed.",
+      );
+      return null;
+    }
+
+    await SdkLoadService.Ready;
+    return new EncString(PureCrypto.symmetric_encrypt_string(plainValue, key.toEncoded()));
   }
 
   async encryptBytes(plainValue: Uint8Array, key: SymmetricCryptoKey): Promise<EncString> {
-    return this.encrypt(plainValue, key);
+    await SdkLoadService.Ready;
+    return new EncString(PureCrypto.symmetric_encrypt_bytes(plainValue, key.toEncoded()));
   }
 
   async encryptFileData(plainValue: Uint8Array, key: SymmetricCryptoKey): Promise<EncArrayBuffer> {
-    return this.encryptToBytes(plainValue, key);
+    await SdkLoadService.Ready;
+    return new EncArrayBuffer(PureCrypto.symmetric_encrypt_filedata(plainValue, key.toEncoded()));
   }
 
   async decryptString(encString: EncString, key: SymmetricCryptoKey): Promise<string> {
-    return this.decryptToUtf8(encString, key);
+    await SdkLoadService.Ready;
+    return PureCrypto.symmetric_decrypt_string(encString.encryptedString, key.toEncoded());
   }
 
   async decryptBytes(encString: EncString, key: SymmetricCryptoKey): Promise<Uint8Array> {
-    return this.decryptToBytes(encString, key);
+    await SdkLoadService.Ready;
+    return PureCrypto.symmetric_decrypt_bytes(encString.encryptedString, key.toEncoded());
   }
 
   async decryptFileData(encBuffer: EncArrayBuffer, key: SymmetricCryptoKey): Promise<Uint8Array> {
-    return this.decryptToBytes(encBuffer, key);
+    await SdkLoadService.Ready;
+    return PureCrypto.symmetric_decrypt_filedata(encBuffer.buffer, key.toEncoded());
   }
 
   async wrapDecapsulationKey(
@@ -76,7 +73,10 @@ export class EncryptServiceImplementation implements EncryptService {
       throw new Error("No wrappingKey provided for wrapping.");
     }
 
-    return await this.encryptUint8Array(decapsulationKeyPkcs8, wrappingKey);
+    await SdkLoadService.Ready;
+    return new EncString(
+      PureCrypto.wrap_decapsulation_key(decapsulationKeyPkcs8, wrappingKey.toEncoded()),
+    );
   }
 
   async wrapEncapsulationKey(
@@ -91,7 +91,10 @@ export class EncryptServiceImplementation implements EncryptService {
       throw new Error("No wrappingKey provided for wrapping.");
     }
 
-    return await this.encryptUint8Array(encapsulationKeySpki, wrappingKey);
+    await SdkLoadService.Ready;
+    return new EncString(
+      PureCrypto.wrap_encapsulation_key(encapsulationKeySpki, wrappingKey.toEncoded()),
+    );
   }
 
   async wrapSymmetricKey(
@@ -106,26 +109,61 @@ export class EncryptServiceImplementation implements EncryptService {
       throw new Error("No wrappingKey provided for wrapping.");
     }
 
-    return await this.encryptUint8Array(keyToBeWrapped.toEncoded(), wrappingKey);
+    await SdkLoadService.Ready;
+    return new EncString(
+      PureCrypto.wrap_symmetric_key(keyToBeWrapped.toEncoded(), wrappingKey.toEncoded()),
+    );
   }
 
   async unwrapDecapsulationKey(
     wrappedDecapsulationKey: EncString,
     wrappingKey: SymmetricCryptoKey,
   ): Promise<Uint8Array> {
-    return this.decryptBytes(wrappedDecapsulationKey, wrappingKey);
+    if (wrappedDecapsulationKey == null) {
+      throw new Error("No wrappedDecapsulationKey provided for unwrapping.");
+    }
+    if (wrappingKey == null) {
+      throw new Error("No wrappingKey provided for unwrapping.");
+    }
+
+    await SdkLoadService.Ready;
+    return PureCrypto.unwrap_decapsulation_key(
+      wrappedDecapsulationKey.encryptedString,
+      wrappingKey.toEncoded(),
+    );
   }
   async unwrapEncapsulationKey(
     wrappedEncapsulationKey: EncString,
     wrappingKey: SymmetricCryptoKey,
   ): Promise<Uint8Array> {
-    return this.decryptBytes(wrappedEncapsulationKey, wrappingKey);
+    if (wrappedEncapsulationKey == null) {
+      throw new Error("No wrappedEncapsulationKey provided for unwrapping.");
+    }
+    if (wrappingKey == null) {
+      throw new Error("No wrappingKey provided for unwrapping.");
+    }
+
+    await SdkLoadService.Ready;
+    return PureCrypto.unwrap_encapsulation_key(
+      wrappedEncapsulationKey.encryptedString,
+      wrappingKey.toEncoded(),
+    );
   }
   async unwrapSymmetricKey(
     keyToBeUnwrapped: EncString,
     wrappingKey: SymmetricCryptoKey,
   ): Promise<SymmetricCryptoKey> {
-    return new SymmetricCryptoKey(await this.decryptBytes(keyToBeUnwrapped, wrappingKey));
+    if (keyToBeUnwrapped == null) {
+      throw new Error("No keyToBeUnwrapped provided for unwrapping.");
+    }
+    if (wrappingKey == null) {
+      throw new Error("No wrappingKey provided for unwrapping.");
+    }
+
+    await SdkLoadService.Ready;
+    return new SymmetricCryptoKey(
+      PureCrypto.unwrap_symmetric_key(keyToBeUnwrapped.encryptedString, wrappingKey.toEncoded()),
+    );
   }
 
   async hash(value: string | Uint8Array, algorithm: "sha1" | "sha256" | "sha512"): Promise<string> {
@@ -134,261 +172,33 @@ export class EncryptServiceImplementation implements EncryptService {
   }
 
   // Handle updating private properties to turn on/off feature flags.
-  onServerConfigChange(newConfig: ServerConfig): void {
-    const oldFlagValue = this.useSDKForDecryption;
-    this.useSDKForDecryption = getFeatureFlagValue(newConfig, FeatureFlag.UseSDKForDecryption);
-    this.logService.debug(
-      "[EncryptService] Updated sdk decryption flag",
-      oldFlagValue,
-      this.useSDKForDecryption,
-    );
-    this.blockType0 = getFeatureFlagValue(newConfig, FeatureFlag.PM17987_BlockType0);
-  }
-
-  async encrypt(plainValue: string | Uint8Array, key: SymmetricCryptoKey): Promise<EncString> {
-    if (key == null) {
-      throw new Error("No encryption key provided.");
-    }
-
-    if (this.blockType0) {
-      if (key.inner().type === EncryptionType.AesCbc256_B64) {
-        throw new Error("Type 0 encryption is not supported.");
-      }
-    }
-
-    if (plainValue == null) {
-      return Promise.resolve(null);
-    }
-
-    if (typeof plainValue === "string") {
-      return this.encryptUint8Array(Utils.fromUtf8ToArray(plainValue), key);
-    } else {
-      return this.encryptUint8Array(plainValue, key);
-    }
-  }
-
-  private async encryptUint8Array(
-    plainValue: Uint8Array,
-    key: SymmetricCryptoKey,
-  ): Promise<EncString> {
-    if (key == null) {
-      throw new Error("No encryption key provided.");
-    }
-
-    if (this.blockType0) {
-      if (key.inner().type === EncryptionType.AesCbc256_B64) {
-        throw new Error("Type 0 encryption is not supported.");
-      }
-    }
-
-    if (plainValue == null) {
-      return Promise.resolve(null);
-    }
-
-    const innerKey = key.inner();
-    if (innerKey.type === EncryptionType.AesCbc256_HmacSha256_B64) {
-      const encObj = await this.aesEncrypt(plainValue, innerKey);
-      const iv = Utils.fromBufferToB64(encObj.iv);
-      const data = Utils.fromBufferToB64(encObj.data);
-      const mac = Utils.fromBufferToB64(encObj.mac);
-      return new EncString(innerKey.type, data, iv, mac);
-    } else if (innerKey.type === EncryptionType.AesCbc256_B64) {
-      const encObj = await this.aesEncryptLegacy(plainValue, innerKey);
-      const iv = Utils.fromBufferToB64(encObj.iv);
-      const data = Utils.fromBufferToB64(encObj.data);
-      return new EncString(innerKey.type, data, iv);
-    }
-  }
-
-  async encryptToBytes(plainValue: Uint8Array, key: SymmetricCryptoKey): Promise<EncArrayBuffer> {
-    if (key == null) {
-      throw new Error("No encryption key provided.");
-    }
-
-    if (this.blockType0) {
-      if (key.inner().type === EncryptionType.AesCbc256_B64) {
-        throw new Error("Type 0 encryption is not supported.");
-      }
-    }
-
-    const innerKey = key.inner();
-    if (innerKey.type === EncryptionType.AesCbc256_HmacSha256_B64) {
-      const encValue = await this.aesEncrypt(plainValue, innerKey);
-      const macLen = encValue.mac.length;
-      const encBytes = new Uint8Array(
-        1 + encValue.iv.byteLength + macLen + encValue.data.byteLength,
-      );
-      encBytes.set([innerKey.type]);
-      encBytes.set(new Uint8Array(encValue.iv), 1);
-      encBytes.set(new Uint8Array(encValue.mac), 1 + encValue.iv.byteLength);
-      encBytes.set(new Uint8Array(encValue.data), 1 + encValue.iv.byteLength + macLen);
-      return new EncArrayBuffer(encBytes);
-    } else if (innerKey.type === EncryptionType.AesCbc256_B64) {
-      const encValue = await this.aesEncryptLegacy(plainValue, innerKey);
-      const encBytes = new Uint8Array(1 + encValue.iv.byteLength + encValue.data.byteLength);
-      encBytes.set([innerKey.type]);
-      encBytes.set(new Uint8Array(encValue.iv), 1);
-      encBytes.set(new Uint8Array(encValue.data), 1 + encValue.iv.byteLength);
-      return new EncArrayBuffer(encBytes);
-    }
-  }
+  onServerConfigChange(newConfig: ServerConfig): void {}
 
   async decryptToUtf8(
     encString: EncString,
     key: SymmetricCryptoKey,
-    decryptContext: string = "no context",
+    _decryptContext: string = "no context",
   ): Promise<string> {
-    if (this.useSDKForDecryption) {
-      this.logService.debug("decrypting with SDK");
-      if (encString == null || encString.encryptedString == null) {
-        throw new Error("encString is null or undefined");
-      }
-      await SdkLoadService.Ready;
-      return PureCrypto.symmetric_decrypt(encString.encryptedString, key.toEncoded());
-    }
-    this.logService.debug("decrypting with javascript");
-
-    if (key == null) {
-      throw new Error("No key provided for decryption.");
-    }
-
-    const innerKey = key.inner();
-    if (encString.encryptionType !== innerKey.type) {
-      this.logDecryptError(
-        "Key encryption type does not match payload encryption type",
-        innerKey.type,
-        encString.encryptionType,
-        decryptContext,
-      );
-      return null;
-    }
-
-    if (innerKey.type === EncryptionType.AesCbc256_HmacSha256_B64) {
-      const fastParams = this.cryptoFunctionService.aesDecryptFastParameters(
-        encString.data,
-        encString.iv,
-        encString.mac,
-        key,
-      );
-
-      const computedMac = await this.cryptoFunctionService.hmacFast(
-        fastParams.macData,
-        fastParams.macKey,
-        "sha256",
-      );
-      const macsEqual = await this.cryptoFunctionService.compareFast(fastParams.mac, computedMac);
-      if (!macsEqual) {
-        this.logMacFailed(
-          "decryptToUtf8 MAC comparison failed. Key or payload has changed.",
-          innerKey.type,
-          encString.encryptionType,
-          decryptContext,
-        );
-        return null;
-      }
-      return await this.cryptoFunctionService.aesDecryptFast({
-        mode: "cbc",
-        parameters: fastParams,
-      });
-    } else if (innerKey.type === EncryptionType.AesCbc256_B64) {
-      const fastParams = this.cryptoFunctionService.aesDecryptFastParameters(
-        encString.data,
-        encString.iv,
-        undefined,
-        key,
-      );
-      return await this.cryptoFunctionService.aesDecryptFast({
-        mode: "cbc",
-        parameters: fastParams,
-      });
-    } else {
-      throw new Error(`Unsupported encryption type`);
-    }
+    await SdkLoadService.Ready;
+    return PureCrypto.symmetric_decrypt(encString.encryptedString, key.toEncoded());
   }
 
   async decryptToBytes(
     encThing: Encrypted,
     key: SymmetricCryptoKey,
-    decryptContext: string = "no context",
+    _decryptContext: string = "no context",
   ): Promise<Uint8Array | null> {
-    if (this.useSDKForDecryption) {
-      this.logService.debug("[EncryptService] Decrypting bytes with SDK");
-      if (
-        encThing.encryptionType == null ||
-        encThing.ivBytes == null ||
-        encThing.dataBytes == null
-      ) {
-        throw new Error("Cannot decrypt, missing type, IV, or data bytes.");
-      }
-      const buffer = EncArrayBuffer.fromParts(
-        encThing.encryptionType,
-        encThing.ivBytes,
-        encThing.dataBytes,
-        encThing.macBytes,
-      ).buffer;
-      await SdkLoadService.Ready;
-      return PureCrypto.symmetric_decrypt_array_buffer(buffer, key.toEncoded());
-    }
-    this.logService.debug("[EncryptService] Decrypting bytes with javascript");
-
-    if (key == null) {
-      throw new Error("No encryption key provided.");
-    }
-
-    if (encThing == null) {
-      throw new Error("Nothing provided for decryption.");
-    }
-
-    const inner = key.inner();
-    if (encThing.encryptionType !== inner.type) {
-      this.logDecryptError(
-        "Encryption key type mismatch",
-        inner.type,
-        encThing.encryptionType,
-        decryptContext,
-      );
-      return null;
-    }
-
-    if (inner.type === EncryptionType.AesCbc256_HmacSha256_B64) {
-      if (encThing.macBytes == null) {
-        this.logDecryptError("Mac missing", inner.type, encThing.encryptionType, decryptContext);
-        return null;
-      }
-
-      const macData = new Uint8Array(encThing.ivBytes.byteLength + encThing.dataBytes.byteLength);
-      macData.set(new Uint8Array(encThing.ivBytes), 0);
-      macData.set(new Uint8Array(encThing.dataBytes), encThing.ivBytes.byteLength);
-      const computedMac = await this.cryptoFunctionService.hmac(
-        macData,
-        inner.authenticationKey,
-        "sha256",
-      );
-      const macsMatch = await this.cryptoFunctionService.compare(encThing.macBytes, computedMac);
-      if (!macsMatch) {
-        this.logMacFailed(
-          "MAC comparison failed. Key or payload has changed.",
-          inner.type,
-          encThing.encryptionType,
-          decryptContext,
-        );
-        return null;
-      }
-
-      return await this.cryptoFunctionService.aesDecrypt(
-        encThing.dataBytes,
-        encThing.ivBytes,
-        inner.encryptionKey,
-        "cbc",
-      );
-    } else if (inner.type === EncryptionType.AesCbc256_B64) {
-      return await this.cryptoFunctionService.aesDecrypt(
-        encThing.dataBytes,
-        encThing.ivBytes,
-        inner.encryptionKey,
-        "cbc",
-      );
+    if (encThing.encryptionType == null || encThing.ivBytes == null || encThing.dataBytes == null) {
+      throw new Error("Cannot decrypt, missing type, IV, or data bytes.");
     }
+    const buffer = EncArrayBuffer.fromParts(
+      encThing.encryptionType,
+      encThing.ivBytes,
+      encThing.dataBytes,
+      encThing.macBytes,
+    ).buffer;
+    await SdkLoadService.Ready;
+    return PureCrypto.symmetric_decrypt_array_buffer(buffer, key.toEncoded());
   }
 
   async encapsulateKeyUnsigned(
@@ -398,14 +208,31 @@ export class EncryptServiceImplementation implements EncryptService {
     if (sharedKey == null) {
       throw new Error("No sharedKey provided for encapsulation");
     }
-    return await this.rsaEncrypt(sharedKey.toEncoded(), encapsulationKey);
+    if (encapsulationKey == null) {
+      throw new Error("No encapsulationKey provided for encapsulation");
+    }
+    await SdkLoadService.Ready;
+    return new EncString(
+      PureCrypto.encapsulate_key_unsigned(sharedKey.toEncoded(), encapsulationKey),
+    );
   }
 
   async decapsulateKeyUnsigned(
     encryptedSharedKey: EncString,
     decapsulationKey: Uint8Array,
   ): Promise<SymmetricCryptoKey> {
-    const keyBytes = await this.rsaDecrypt(encryptedSharedKey, decapsulationKey);
+    if (encryptedSharedKey == null) {
+      throw new Error("No encryptedSharedKey provided for decapsulation");
+    }
+    if (decapsulationKey == null) {
+      throw new Error("No decapsulationKey provided for decapsulation");
+    }
+
+    const keyBytes = PureCrypto.decapsulate_key_unsigned(
+      encryptedSharedKey.encryptedString,
+      decapsulationKey,
+    );
+    await SdkLoadService.Ready;
     return new SymmetricCryptoKey(keyBytes);
   }
 
@@ -428,51 +255,6 @@ export class EncryptServiceImplementation implements EncryptService {
     return results;
   }
 
-  private async aesEncrypt(data: Uint8Array, key: Aes256CbcHmacKey): Promise<EncryptedObject> {
-    const obj = new EncryptedObject();
-    obj.iv = await this.cryptoFunctionService.randomBytes(16);
-    obj.data = await this.cryptoFunctionService.aesEncrypt(data, obj.iv, key.encryptionKey);
-
-    const macData = new Uint8Array(obj.iv.byteLength + obj.data.byteLength);
-    macData.set(new Uint8Array(obj.iv), 0);
-    macData.set(new Uint8Array(obj.data), obj.iv.byteLength);
-    obj.mac = await this.cryptoFunctionService.hmac(macData, key.authenticationKey, "sha256");
-
-    return obj;
-  }
-
-  /**
-   * @deprecated Removed once AesCbc256_B64 support is removed
-   */
-  private async aesEncryptLegacy(data: Uint8Array, key: Aes256CbcKey): Promise<EncryptedObject> {
-    const obj = new EncryptedObject();
-    obj.iv = await this.cryptoFunctionService.randomBytes(16);
-    obj.data = await this.cryptoFunctionService.aesEncrypt(data, obj.iv, key.encryptionKey);
-    return obj;
-  }
-
-  private logDecryptError(
-    msg: string,
-    keyEncType: EncryptionType,
-    dataEncType: EncryptionType,
-    decryptContext: string,
-  ) {
-    this.logService.error(
-      `[Encrypt service] ${msg} Key type ${encryptionTypeName(keyEncType)} Payload type ${encryptionTypeName(dataEncType)} Decrypt context: ${decryptContext}`,
-    );
-  }
-
-  private logMacFailed(
-    msg: string,
-    keyEncType: EncryptionType,
-    dataEncType: EncryptionType,
-    decryptContext: string,
-  ) {
-    if (this.logMacFailures) {
-      this.logDecryptError(msg, keyEncType, dataEncType, decryptContext);
-    }
-  }
-
   async rsaEncrypt(data: Uint8Array, publicKey: Uint8Array): Promise<EncString> {
     if (data == null) {
       throw new Error("No data provided for encryption.");
diff --git a/libs/common/src/key-management/crypto/services/encrypt.service.spec.ts b/libs/common/src/key-management/crypto/services/encrypt.service.spec.ts
index 68021086bb1..4cc76d45f50 100644
--- a/libs/common/src/key-management/crypto/services/encrypt.service.spec.ts
+++ b/libs/common/src/key-management/crypto/services/encrypt.service.spec.ts
@@ -3,20 +3,14 @@ import { mockReset, mock } from "jest-mock-extended";
 import { CryptoFunctionService } from "@bitwarden/common/key-management/crypto/abstractions/crypto-function.service";
 import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
+import { SdkLoadService } from "@bitwarden/common/platform/abstractions/sdk/sdk-load.service";
 import { EncryptionType } from "@bitwarden/common/platform/enums";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
 import { EncArrayBuffer } from "@bitwarden/common/platform/models/domain/enc-array-buffer";
-import {
-  Aes256CbcHmacKey,
-  SymmetricCryptoKey,
-} from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
-import { CsprngArray } from "@bitwarden/common/types/csprng";
+import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import { PureCrypto } from "@bitwarden/sdk-internal";
 
 import { makeStaticByteArray } from "../../../../spec";
-import { DefaultFeatureFlagValue, FeatureFlag } from "../../../enums/feature-flag.enum";
-import { ServerConfig } from "../../../platform/abstractions/config/server-config";
-import { SdkLoadService } from "../../../platform/abstractions/sdk/sdk-load.service";
 
 import { EncryptServiceImplementation } from "./encrypt.service.implementation";
 
@@ -26,24 +20,50 @@ describe("EncryptService", () => {
 
   let encryptService: EncryptServiceImplementation;
 
+  const testEncBuffer = EncArrayBuffer.fromParts(
+    EncryptionType.AesCbc256_HmacSha256_B64,
+    new Uint8Array(16),
+    new Uint8Array(32),
+    new Uint8Array(32),
+  );
+
   beforeEach(() => {
     mockReset(cryptoFunctionService);
     mockReset(logService);
 
+    jest.spyOn(PureCrypto, "symmetric_decrypt_array_buffer").mockReturnValue(new Uint8Array(1));
+    jest.spyOn(PureCrypto, "symmetric_decrypt").mockReturnValue("decrypted_string");
+
+    jest.spyOn(PureCrypto, "symmetric_decrypt_filedata").mockReturnValue(new Uint8Array(1));
+    jest.spyOn(PureCrypto, "symmetric_encrypt_filedata").mockReturnValue(testEncBuffer.buffer);
+    jest.spyOn(PureCrypto, "symmetric_decrypt_string").mockReturnValue("decrypted_string");
+    jest.spyOn(PureCrypto, "symmetric_encrypt_string").mockReturnValue("encrypted_string");
+    jest.spyOn(PureCrypto, "symmetric_decrypt_bytes").mockReturnValue(new Uint8Array(3));
+    jest.spyOn(PureCrypto, "symmetric_encrypt_bytes").mockReturnValue("encrypted_bytes");
+
+    jest.spyOn(PureCrypto, "wrap_decapsulation_key").mockReturnValue("wrapped_decapsulation_key");
+    jest.spyOn(PureCrypto, "wrap_encapsulation_key").mockReturnValue("wrapped_encapsulation_key");
+    jest.spyOn(PureCrypto, "wrap_symmetric_key").mockReturnValue("wrapped_symmetric_key");
+    jest.spyOn(PureCrypto, "unwrap_decapsulation_key").mockReturnValue(new Uint8Array(4));
+    jest.spyOn(PureCrypto, "unwrap_encapsulation_key").mockReturnValue(new Uint8Array(5));
+    jest.spyOn(PureCrypto, "unwrap_symmetric_key").mockReturnValue(new Uint8Array(64));
+
+    jest.spyOn(PureCrypto, "decapsulate_key_unsigned").mockReturnValue(new Uint8Array(64));
+    jest.spyOn(PureCrypto, "encapsulate_key_unsigned").mockReturnValue("encapsulated_key_unsigned");
+    (SdkLoadService as any).Ready = jest.fn().mockResolvedValue(true);
+
     encryptService = new EncryptServiceImplementation(cryptoFunctionService, logService, true);
   });
 
   describe("wrapSymmetricKey", () => {
-    it("roundtrip encrypts and decrypts a symmetric key", async () => {
-      cryptoFunctionService.aesEncrypt.mockResolvedValue(makeStaticByteArray(64, 0));
-      cryptoFunctionService.randomBytes.mockResolvedValue(makeStaticByteArray(16) as CsprngArray);
-      cryptoFunctionService.hmac.mockResolvedValue(makeStaticByteArray(32));
-
+    it("is a proxy to PureCrypto", async () => {
       const key = new SymmetricCryptoKey(makeStaticByteArray(64));
       const wrappingKey = new SymmetricCryptoKey(makeStaticByteArray(64));
-      const encString = await encryptService.wrapSymmetricKey(key, wrappingKey);
-      expect(encString.encryptionType).toEqual(EncryptionType.AesCbc256_HmacSha256_B64);
-      expect(encString.data).toEqual(Utils.fromBufferToB64(makeStaticByteArray(64, 0)));
+      await encryptService.wrapSymmetricKey(key, wrappingKey);
+      expect(PureCrypto.wrap_symmetric_key).toHaveBeenCalledWith(
+        key.toEncoded(),
+        wrappingKey.toEncoded(),
+      );
     });
     it("fails if key toBeWrapped is null", async () => {
       const wrappingKey = new SymmetricCryptoKey(makeStaticByteArray(64));
@@ -57,33 +77,17 @@ describe("EncryptService", () => {
         "No wrappingKey provided for wrapping.",
       );
     });
-    it("fails if type 0 key is provided with flag turned on", async () => {
-      (encryptService as any).blockType0 = true;
-      const mock32Key = mock<SymmetricCryptoKey>();
-      mock32Key.inner.mockReturnValue({
-        type: 0,
-        encryptionKey: makeStaticByteArray(32),
-      });
-
-      await expect(encryptService.wrapSymmetricKey(mock32Key, mock32Key)).rejects.toThrow(
-        "Type 0 encryption is not supported.",
-      );
-    });
   });
 
   describe("wrapDecapsulationKey", () => {
-    it("roundtrip encrypts and decrypts a decapsulation key", async () => {
-      cryptoFunctionService.aesEncrypt.mockResolvedValue(makeStaticByteArray(64, 0));
-      cryptoFunctionService.randomBytes.mockResolvedValue(makeStaticByteArray(16) as CsprngArray);
-      cryptoFunctionService.hmac.mockResolvedValue(makeStaticByteArray(32));
-
+    it("is a proxy to PureCrypto", async () => {
+      const decapsulationKey = makeStaticByteArray(10);
       const wrappingKey = new SymmetricCryptoKey(makeStaticByteArray(64));
-      const encString = await encryptService.wrapDecapsulationKey(
-        makeStaticByteArray(64),
-        wrappingKey,
+      await encryptService.wrapDecapsulationKey(decapsulationKey, wrappingKey);
+      expect(PureCrypto.wrap_decapsulation_key).toHaveBeenCalledWith(
+        decapsulationKey,
+        wrappingKey.toEncoded(),
       );
-      expect(encString.encryptionType).toEqual(EncryptionType.AesCbc256_HmacSha256_B64);
-      expect(encString.data).toEqual(Utils.fromBufferToB64(makeStaticByteArray(64, 0)));
     });
     it("fails if decapsulation key is null", async () => {
       const wrappingKey = new SymmetricCryptoKey(makeStaticByteArray(64));
@@ -97,33 +101,17 @@ describe("EncryptService", () => {
         "No wrappingKey provided for wrapping.",
       );
     });
-    it("throws if type 0 key is provided with flag turned on", async () => {
-      (encryptService as any).blockType0 = true;
-      const mock32Key = mock<SymmetricCryptoKey>();
-      mock32Key.inner.mockReturnValue({
-        type: 0,
-        encryptionKey: makeStaticByteArray(32),
-      });
-
-      await expect(
-        encryptService.wrapDecapsulationKey(new Uint8Array(200), mock32Key),
-      ).rejects.toThrow("Type 0 encryption is not supported.");
-    });
   });
 
   describe("wrapEncapsulationKey", () => {
-    it("roundtrip encrypts and decrypts an encapsulationKey key", async () => {
-      cryptoFunctionService.aesEncrypt.mockResolvedValue(makeStaticByteArray(64, 0));
-      cryptoFunctionService.randomBytes.mockResolvedValue(makeStaticByteArray(16) as CsprngArray);
-      cryptoFunctionService.hmac.mockResolvedValue(makeStaticByteArray(32));
-
+    it("is a proxy to PureCrypto", async () => {
+      const encapsulationKey = makeStaticByteArray(10);
       const wrappingKey = new SymmetricCryptoKey(makeStaticByteArray(64));
-      const encString = await encryptService.wrapEncapsulationKey(
-        makeStaticByteArray(64),
-        wrappingKey,
+      await encryptService.wrapEncapsulationKey(encapsulationKey, wrappingKey);
+      expect(PureCrypto.wrap_encapsulation_key).toHaveBeenCalledWith(
+        encapsulationKey,
+        wrappingKey.toEncoded(),
       );
-      expect(encString.encryptionType).toEqual(EncryptionType.AesCbc256_HmacSha256_B64);
-      expect(encString.data).toEqual(Utils.fromBufferToB64(makeStaticByteArray(64, 0)));
     });
     it("fails if encapsulation key is null", async () => {
       const wrappingKey = new SymmetricCryptoKey(makeStaticByteArray(64));
@@ -137,535 +125,152 @@ describe("EncryptService", () => {
         "No wrappingKey provided for wrapping.",
       );
     });
-    it("throws if type 0 key is provided with flag turned on", async () => {
-      (encryptService as any).blockType0 = true;
-      const mock32Key = mock<SymmetricCryptoKey>();
-      mock32Key.inner.mockReturnValue({
-        type: 0,
-        encryptionKey: makeStaticByteArray(32),
-      });
-
-      await expect(
-        encryptService.wrapEncapsulationKey(new Uint8Array(200), mock32Key),
-      ).rejects.toThrow("Type 0 encryption is not supported.");
-    });
-  });
-
-  describe("onServerConfigChange", () => {
-    const newConfig = mock<ServerConfig>();
-
-    afterEach(() => {
-      jest.resetAllMocks();
-    });
-
-    it("updates internal flag with default value when not present in config", () => {
-      encryptService.onServerConfigChange(newConfig);
-
-      expect((encryptService as any).blockType0).toBe(
-        DefaultFeatureFlagValue[FeatureFlag.PM17987_BlockType0],
-      );
-    });
-
-    test.each([true, false])("updates internal flag with value in config", (expectedValue) => {
-      newConfig.featureStates = { [FeatureFlag.PM17987_BlockType0]: expectedValue };
-
-      encryptService.onServerConfigChange(newConfig);
-
-      expect((encryptService as any).blockType0).toBe(expectedValue);
-    });
-  });
-
-  describe("encrypt", () => {
-    it("throws if no key is provided", () => {
-      return expect(encryptService.encrypt(null, null)).rejects.toThrow(
-        "No encryption key provided.",
-      );
-    });
-
-    it("throws if type 0 key is provided with flag turned on", async () => {
-      (encryptService as any).blockType0 = true;
-      const key = new SymmetricCryptoKey(makeStaticByteArray(32));
-      const mock32Key = mock<SymmetricCryptoKey>();
-      mock32Key.inner.mockReturnValue({
-        type: 0,
-        encryptionKey: makeStaticByteArray(32),
-      });
-
-      await expect(encryptService.encrypt(null!, key)).rejects.toThrow(
-        "Type 0 encryption is not supported.",
-      );
-      await expect(encryptService.encrypt(null!, mock32Key)).rejects.toThrow(
-        "Type 0 encryption is not supported.",
-      );
-
-      const plainValue = "data";
-      await expect(encryptService.encrypt(plainValue, key)).rejects.toThrow(
-        "Type 0 encryption is not supported.",
-      );
-      await expect(encryptService.encrypt(plainValue, mock32Key)).rejects.toThrow(
-        "Type 0 encryption is not supported.",
-      );
-    });
-
-    it("returns null if no data is provided with valid key", async () => {
-      const key = new SymmetricCryptoKey(makeStaticByteArray(64));
-      const actual = await encryptService.encrypt(null, key);
-      expect(actual).toBeNull();
-    });
-
-    it("creates an EncString for Aes256Cbc", async () => {
-      const key = new SymmetricCryptoKey(makeStaticByteArray(32));
-      const plainValue = "data";
-      cryptoFunctionService.aesEncrypt.mockResolvedValue(makeStaticByteArray(4, 100));
-      cryptoFunctionService.randomBytes.mockResolvedValue(makeStaticByteArray(16) as CsprngArray);
-      const result = await encryptService.encrypt(plainValue, key);
-      expect(cryptoFunctionService.aesEncrypt).toHaveBeenCalledWith(
-        Utils.fromByteStringToArray(plainValue),
-        makeStaticByteArray(16),
-        makeStaticByteArray(32),
-      );
-      expect(cryptoFunctionService.hmac).not.toHaveBeenCalled();
-
-      expect(Utils.fromB64ToArray(result.data).length).toEqual(4);
-      expect(Utils.fromB64ToArray(result.iv).length).toEqual(16);
-    });
-
-    it("creates an EncString for Aes256Cbc_HmacSha256_B64", async () => {
-      const key = new SymmetricCryptoKey(makeStaticByteArray(64));
-      const plainValue = "data";
-      cryptoFunctionService.hmac.mockResolvedValue(makeStaticByteArray(32));
-      cryptoFunctionService.aesEncrypt.mockResolvedValue(makeStaticByteArray(4, 100));
-      cryptoFunctionService.randomBytes.mockResolvedValue(makeStaticByteArray(16) as CsprngArray);
-      const result = await encryptService.encrypt(plainValue, key);
-      expect(cryptoFunctionService.aesEncrypt).toHaveBeenCalledWith(
-        Utils.fromByteStringToArray(plainValue),
-        makeStaticByteArray(16),
-        makeStaticByteArray(32),
-      );
-
-      const macData = new Uint8Array(16 + 4);
-      macData.set(makeStaticByteArray(16));
-      macData.set(makeStaticByteArray(4, 100), 16);
-      expect(cryptoFunctionService.hmac).toHaveBeenCalledWith(
-        macData,
-        makeStaticByteArray(32, 32),
-        "sha256",
-      );
-
-      expect(Utils.fromB64ToArray(result.data).length).toEqual(4);
-      expect(Utils.fromB64ToArray(result.iv).length).toEqual(16);
-      expect(Utils.fromB64ToArray(result.mac).length).toEqual(32);
-    });
-  });
-
-  describe("encryptToBytes", () => {
-    const plainValue = makeStaticByteArray(16, 1);
-
-    it("throws if no key is provided", () => {
-      return expect(encryptService.encryptToBytes(plainValue, null)).rejects.toThrow(
-        "No encryption key",
-      );
-    });
-
-    it("throws if type 0 key provided with flag turned on", async () => {
-      (encryptService as any).blockType0 = true;
-      const key = new SymmetricCryptoKey(makeStaticByteArray(32));
-      const mock32Key = mock<SymmetricCryptoKey>();
-      mock32Key.inner.mockReturnValue({
-        type: 0,
-        encryptionKey: makeStaticByteArray(32),
-      });
-
-      await expect(encryptService.encryptToBytes(plainValue, key)).rejects.toThrow(
-        "Type 0 encryption is not supported.",
-      );
-
-      await expect(encryptService.encryptToBytes(plainValue, mock32Key)).rejects.toThrow(
-        "Type 0 encryption is not supported.",
-      );
-    });
-
-    it("encrypts data with provided Aes256Cbc key and returns correct encbuffer", async () => {
-      const key = new SymmetricCryptoKey(makeStaticByteArray(32, 0));
-      const iv = makeStaticByteArray(16, 80);
-      const cipherText = makeStaticByteArray(20, 150);
-      cryptoFunctionService.randomBytes.mockResolvedValue(iv as CsprngArray);
-      cryptoFunctionService.aesEncrypt.mockResolvedValue(cipherText);
-
-      const actual = await encryptService.encryptToBytes(plainValue, key);
-      const expectedBytes = new Uint8Array(1 + iv.byteLength + cipherText.byteLength);
-      expectedBytes.set([EncryptionType.AesCbc256_B64]);
-      expectedBytes.set(iv, 1);
-      expectedBytes.set(cipherText, 1 + iv.byteLength);
-
-      expect(actual.buffer).toEqualBuffer(expectedBytes);
-    });
-
-    it("encrypts data with provided Aes256Cbc_HmacSha256 key and returns correct encbuffer", async () => {
-      const key = new SymmetricCryptoKey(makeStaticByteArray(64, 0));
-      const iv = makeStaticByteArray(16, 80);
-      const mac = makeStaticByteArray(32, 100);
-      const cipherText = makeStaticByteArray(20, 150);
-      cryptoFunctionService.randomBytes.mockResolvedValue(iv as CsprngArray);
-      cryptoFunctionService.aesEncrypt.mockResolvedValue(cipherText);
-      cryptoFunctionService.hmac.mockResolvedValue(mac);
-
-      const actual = await encryptService.encryptToBytes(plainValue, key);
-      const expectedBytes = new Uint8Array(
-        1 + iv.byteLength + mac.byteLength + cipherText.byteLength,
-      );
-      expectedBytes.set([EncryptionType.AesCbc256_HmacSha256_B64]);
-      expectedBytes.set(iv, 1);
-      expectedBytes.set(mac, 1 + iv.byteLength);
-      expectedBytes.set(cipherText, 1 + iv.byteLength + mac.byteLength);
-
-      expect(actual.buffer).toEqualBuffer(expectedBytes);
-    });
-  });
-
-  describe("decryptToBytes", () => {
-    const encType = EncryptionType.AesCbc256_HmacSha256_B64;
-    const key = new SymmetricCryptoKey(makeStaticByteArray(64, 100));
-    const computedMac = new Uint8Array(1);
-    const encBuffer = new EncArrayBuffer(makeStaticByteArray(60, encType));
-
-    beforeEach(() => {
-      cryptoFunctionService.hmac.mockResolvedValue(computedMac);
-    });
-
-    it("throws if no key is provided", () => {
-      return expect(encryptService.decryptToBytes(encBuffer, null)).rejects.toThrow(
-        "No encryption key",
-      );
-    });
-
-    it("throws if no encrypted value is provided", () => {
-      return expect(encryptService.decryptToBytes(null, key)).rejects.toThrow(
-        "Nothing provided for decryption",
-      );
-    });
-
-    it("calls PureCrypto when useSDKForDecryption is true", async () => {
-      (encryptService as any).useSDKForDecryption = true;
-      const decryptedBytes = makeStaticByteArray(10, 200);
-      Object.defineProperty(SdkLoadService, "Ready", {
-        value: Promise.resolve(),
-        configurable: true,
-      });
-      jest.spyOn(PureCrypto, "symmetric_decrypt_array_buffer").mockReturnValue(decryptedBytes);
-
-      const actual = await encryptService.decryptToBytes(encBuffer, key);
-
-      expect(PureCrypto.symmetric_decrypt_array_buffer).toHaveBeenCalledWith(
-        encBuffer.buffer,
-        key.toEncoded(),
-      );
-      expect(actual).toEqualBuffer(decryptedBytes);
-    });
-
-    it("decrypts data with provided key for Aes256CbcHmac", async () => {
-      const decryptedBytes = makeStaticByteArray(10, 200);
-
-      cryptoFunctionService.hmac.mockResolvedValue(makeStaticByteArray(1));
-      cryptoFunctionService.compare.mockResolvedValue(true);
-      cryptoFunctionService.aesDecrypt.mockResolvedValueOnce(decryptedBytes);
-
-      const actual = await encryptService.decryptToBytes(encBuffer, key);
-
-      expect(cryptoFunctionService.aesDecrypt).toBeCalledWith(
-        expect.toEqualBuffer(encBuffer.dataBytes),
-        expect.toEqualBuffer(encBuffer.ivBytes),
-        expect.toEqualBuffer(key.inner().encryptionKey),
-        "cbc",
-      );
-
-      expect(actual).toEqualBuffer(decryptedBytes);
-    });
-
-    it("decrypts data with provided key for Aes256Cbc", async () => {
-      const key = new SymmetricCryptoKey(makeStaticByteArray(32, 0));
-      const encBuffer = new EncArrayBuffer(makeStaticByteArray(60, EncryptionType.AesCbc256_B64));
-      const decryptedBytes = makeStaticByteArray(10, 200);
-
-      cryptoFunctionService.hmac.mockResolvedValue(makeStaticByteArray(1));
-      cryptoFunctionService.compare.mockResolvedValue(true);
-      cryptoFunctionService.aesDecrypt.mockResolvedValueOnce(decryptedBytes);
-
-      const actual = await encryptService.decryptToBytes(encBuffer, key);
-
-      expect(cryptoFunctionService.aesDecrypt).toBeCalledWith(
-        expect.toEqualBuffer(encBuffer.dataBytes),
-        expect.toEqualBuffer(encBuffer.ivBytes),
-        expect.toEqualBuffer(key.inner().encryptionKey),
-        "cbc",
-      );
-
-      expect(actual).toEqualBuffer(decryptedBytes);
-    });
-
-    it("compares macs using CryptoFunctionService", async () => {
-      const expectedMacData = new Uint8Array(
-        encBuffer.ivBytes.byteLength + encBuffer.dataBytes.byteLength,
-      );
-      expectedMacData.set(new Uint8Array(encBuffer.ivBytes));
-      expectedMacData.set(new Uint8Array(encBuffer.dataBytes), encBuffer.ivBytes.byteLength);
-
-      await encryptService.decryptToBytes(encBuffer, key);
-
-      expect(cryptoFunctionService.hmac).toBeCalledWith(
-        expect.toEqualBuffer(expectedMacData),
-        (key.inner() as Aes256CbcHmacKey).authenticationKey,
-        "sha256",
-      );
-
-      expect(cryptoFunctionService.compare).toBeCalledWith(
-        expect.toEqualBuffer(encBuffer.macBytes),
-        expect.toEqualBuffer(computedMac),
-      );
-    });
-
-    it("returns null if macs don't match", async () => {
-      cryptoFunctionService.compare.mockResolvedValue(false);
-
-      const actual = await encryptService.decryptToBytes(encBuffer, key);
-      expect(cryptoFunctionService.compare).toHaveBeenCalled();
-      expect(cryptoFunctionService.aesDecrypt).not.toHaveBeenCalled();
-      expect(actual).toBeNull();
-    });
-
-    it("returns null if mac could not be calculated", async () => {
-      cryptoFunctionService.hmac.mockResolvedValue(null);
-
-      const actual = await encryptService.decryptToBytes(encBuffer, key);
-      expect(cryptoFunctionService.hmac).toHaveBeenCalled();
-      expect(cryptoFunctionService.aesDecrypt).not.toHaveBeenCalled();
-      expect(actual).toBeNull();
-    });
-
-    it("returns null if key is Aes256Cbc but encbuffer is Aes256Cbc_HmacSha256", async () => {
-      const key = new SymmetricCryptoKey(makeStaticByteArray(32, 0));
-      cryptoFunctionService.compare.mockResolvedValue(true);
-
-      const actual = await encryptService.decryptToBytes(encBuffer, key);
-
-      expect(actual).toBeNull();
-      expect(cryptoFunctionService.aesDecrypt).not.toHaveBeenCalled();
-    });
-
-    it("returns null if key is Aes256Cbc_HmacSha256 but encbuffer is Aes256Cbc", async () => {
-      const key = new SymmetricCryptoKey(makeStaticByteArray(64, 0));
-      cryptoFunctionService.compare.mockResolvedValue(true);
-      const buffer = new EncArrayBuffer(makeStaticByteArray(200, EncryptionType.AesCbc256_B64));
-      const actual = await encryptService.decryptToBytes(buffer, key);
-
-      expect(actual).toBeNull();
-      expect(cryptoFunctionService.aesDecrypt).not.toHaveBeenCalled();
-    });
-  });
-
-  describe("decryptToUtf8", () => {
-    it("throws if no key is provided", () => {
-      return expect(encryptService.decryptToUtf8(null, null)).rejects.toThrow(
-        "No key provided for decryption.",
-      );
-    });
-
-    it("calls PureCrypto when useSDKForDecryption is true", async () => {
-      (encryptService as any).useSDKForDecryption = true;
-      const key = new SymmetricCryptoKey(makeStaticByteArray(64, 0));
-      const encString = new EncString(EncryptionType.AesCbc256_HmacSha256_B64, "data", "iv", "mac");
-      Object.defineProperty(SdkLoadService, "Ready", {
-        value: Promise.resolve(),
-        configurable: true,
-      });
-      jest.spyOn(PureCrypto, "symmetric_decrypt").mockReturnValue("data");
-
-      const actual = await encryptService.decryptToUtf8(encString, key);
-
-      expect(actual).toEqual("data");
-      expect(PureCrypto.symmetric_decrypt).toHaveBeenCalledWith(
-        encString.encryptedString,
-        key.toEncoded(),
-      );
-    });
-
-    it("decrypts data with provided key for AesCbc256_HmacSha256", async () => {
-      const key = new SymmetricCryptoKey(makeStaticByteArray(64, 0));
-      const encString = new EncString(EncryptionType.AesCbc256_HmacSha256_B64, "data", "iv", "mac");
-      cryptoFunctionService.aesDecryptFastParameters.mockReturnValue({
-        macData: makeStaticByteArray(32, 0),
-        macKey: makeStaticByteArray(32, 0),
-        mac: makeStaticByteArray(32, 0),
-      } as any);
-      cryptoFunctionService.hmacFast.mockResolvedValue(makeStaticByteArray(32, 0));
-      cryptoFunctionService.compareFast.mockResolvedValue(true);
-      cryptoFunctionService.aesDecryptFast.mockResolvedValue("data");
-
-      const actual = await encryptService.decryptToUtf8(encString, key);
-      expect(actual).toEqual("data");
-      expect(cryptoFunctionService.compareFast).toHaveBeenCalledWith(
-        makeStaticByteArray(32, 0),
-        makeStaticByteArray(32, 0),
-      );
-    });
-
-    it("decrypts data with provided key for AesCbc256", async () => {
-      const key = new SymmetricCryptoKey(makeStaticByteArray(32, 0));
-      const encString = new EncString(EncryptionType.AesCbc256_B64, "data");
-      cryptoFunctionService.aesDecryptFastParameters.mockReturnValue({
-        macData: makeStaticByteArray(32, 0),
-        macKey: makeStaticByteArray(32, 0),
-        mac: makeStaticByteArray(32, 0),
-      } as any);
-      cryptoFunctionService.hmacFast.mockResolvedValue(makeStaticByteArray(32, 0));
-      cryptoFunctionService.compareFast.mockResolvedValue(true);
-      cryptoFunctionService.aesDecryptFast.mockResolvedValue("data");
-
-      const actual = await encryptService.decryptToUtf8(encString, key);
-      expect(actual).toEqual("data");
-      expect(cryptoFunctionService.compareFast).not.toHaveBeenCalled();
-    });
-
-    it("returns null if key is AesCbc256_HMAC but encstring is AesCbc256", async () => {
-      const key = new SymmetricCryptoKey(makeStaticByteArray(64, 0));
-      const encString = new EncString(EncryptionType.AesCbc256_B64, "data");
-
-      const actual = await encryptService.decryptToUtf8(encString, key);
-      expect(actual).toBeNull();
-      expect(logService.error).toHaveBeenCalled();
-    });
-
-    it("returns null if key is AesCbc256 but encstring is AesCbc256_HMAC", async () => {
-      const key = new SymmetricCryptoKey(makeStaticByteArray(32, 0));
-      const encString = new EncString(EncryptionType.AesCbc256_HmacSha256_B64, "data", "iv", "mac");
-
-      const actual = await encryptService.decryptToUtf8(encString, key);
-      expect(actual).toBeNull();
-      expect(logService.error).toHaveBeenCalled();
-    });
-
-    it("returns null if macs don't match", async () => {
-      const key = new SymmetricCryptoKey(makeStaticByteArray(64, 0));
-      const encString = new EncString(EncryptionType.AesCbc256_HmacSha256_B64, "data", "iv", "mac");
-      cryptoFunctionService.aesDecryptFastParameters.mockReturnValue({
-        macData: makeStaticByteArray(32, 0),
-        macKey: makeStaticByteArray(32, 0),
-        mac: makeStaticByteArray(32, 0),
-      } as any);
-      cryptoFunctionService.hmacFast.mockResolvedValue(makeStaticByteArray(32, 0));
-      cryptoFunctionService.compareFast.mockResolvedValue(false);
-      cryptoFunctionService.aesDecryptFast.mockResolvedValue("data");
-
-      const actual = await encryptService.decryptToUtf8(encString, key);
-      expect(actual).toBeNull();
-    });
-  });
-
-  describe("decryptToUtf8", () => {
-    it("throws if no key is provided", () => {
-      return expect(encryptService.decryptToUtf8(null, null)).rejects.toThrow(
-        "No key provided for decryption.",
-      );
-    });
-    it("returns null if key is mac key but encstring has no mac", async () => {
-      const key = new SymmetricCryptoKey(makeStaticByteArray(64, 0));
-      const encString = new EncString(EncryptionType.AesCbc256_B64, "data");
-
-      const actual = await encryptService.decryptToUtf8(encString, key);
-      expect(actual).toBeNull();
-      expect(logService.error).toHaveBeenCalled();
-    });
   });
 
   describe("encryptString", () => {
-    it("is a proxy to encrypt", async () => {
+    it("is a proxy to PureCrypto", async () => {
       const key = new SymmetricCryptoKey(makeStaticByteArray(64));
       const plainValue = "data";
-      encryptService.encrypt = jest.fn();
-      await encryptService.encryptString(plainValue, key);
-      expect(encryptService.encrypt).toHaveBeenCalledWith(plainValue, key);
+      const result = await encryptService.encryptString(plainValue, key);
+      expect(result).toEqual(new EncString("encrypted_string"));
+      expect(PureCrypto.symmetric_encrypt_string).toHaveBeenCalledWith(plainValue, key.toEncoded());
     });
   });
 
   describe("encryptBytes", () => {
-    it("is a proxy to encrypt", async () => {
+    it("is a proxy to PureCrypto", async () => {
       const key = new SymmetricCryptoKey(makeStaticByteArray(64));
       const plainValue = makeStaticByteArray(16, 1);
-      encryptService.encrypt = jest.fn();
-      await encryptService.encryptBytes(plainValue, key);
-      expect(encryptService.encrypt).toHaveBeenCalledWith(plainValue, key);
+      const result = await encryptService.encryptBytes(plainValue, key);
+      expect(result).toEqual(new EncString("encrypted_bytes"));
+      expect(PureCrypto.symmetric_encrypt_bytes).toHaveBeenCalledWith(plainValue, key.toEncoded());
     });
   });
 
   describe("encryptFileData", () => {
-    it("is a proxy to encryptToBytes", async () => {
+    it("is a proxy to PureCrypto", async () => {
       const key = new SymmetricCryptoKey(makeStaticByteArray(64));
       const plainValue = makeStaticByteArray(16, 1);
-      encryptService.encryptToBytes = jest.fn();
-      await encryptService.encryptFileData(plainValue, key);
-      expect(encryptService.encryptToBytes).toHaveBeenCalledWith(plainValue, key);
+      const result = await encryptService.encryptFileData(plainValue, key);
+      expect(result).toEqual(testEncBuffer);
+      expect(PureCrypto.symmetric_encrypt_filedata).toHaveBeenCalledWith(
+        plainValue,
+        key.toEncoded(),
+      );
     });
   });
 
   describe("decryptString", () => {
-    it("is a proxy to decryptToUtf8", async () => {
+    it("is a proxy to PureCrypto", async () => {
       const key = new SymmetricCryptoKey(makeStaticByteArray(64));
-      const encString = new EncString(EncryptionType.AesCbc256_B64, "data");
-      encryptService.decryptToUtf8 = jest.fn();
-      await encryptService.decryptString(encString, key);
-      expect(encryptService.decryptToUtf8).toHaveBeenCalledWith(encString, key);
+      const encString = new EncString("encrypted_string");
+      const result = await encryptService.decryptString(encString, key);
+      expect(result).toEqual("decrypted_string");
+      expect(PureCrypto.symmetric_decrypt_string).toHaveBeenCalledWith(
+        encString.encryptedString,
+        key.toEncoded(),
+      );
     });
   });
 
   describe("decryptBytes", () => {
-    it("is a proxy to decryptToBytes", async () => {
+    it("is a proxy to PureCrypto", async () => {
       const key = new SymmetricCryptoKey(makeStaticByteArray(64));
-      const encString = new EncString(EncryptionType.AesCbc256_B64, "data");
-      encryptService.decryptToBytes = jest.fn();
-      await encryptService.decryptBytes(encString, key);
-      expect(encryptService.decryptToBytes).toHaveBeenCalledWith(encString, key);
+      const encString = new EncString("encrypted_bytes");
+      const result = await encryptService.decryptBytes(encString, key);
+      expect(result).toEqual(new Uint8Array(3));
+      expect(PureCrypto.symmetric_decrypt_bytes).toHaveBeenCalledWith(
+        encString.encryptedString,
+        key.toEncoded(),
+      );
     });
   });
 
   describe("decryptFileData", () => {
-    it("is a proxy to decrypt", async () => {
+    it("is a proxy to PureCrypto", async () => {
       const key = new SymmetricCryptoKey(makeStaticByteArray(64));
-      const encString = new EncArrayBuffer(makeStaticByteArray(60, EncryptionType.AesCbc256_B64));
-      encryptService.decryptToBytes = jest.fn();
-      await encryptService.decryptFileData(encString, key);
-      expect(encryptService.decryptToBytes).toHaveBeenCalledWith(encString, key);
+      const encString = new EncArrayBuffer(testEncBuffer.buffer);
+      const result = await encryptService.decryptFileData(encString, key);
+      expect(result).toEqual(new Uint8Array(1));
+      expect(PureCrypto.symmetric_decrypt_filedata).toHaveBeenCalledWith(
+        encString.buffer,
+        key.toEncoded(),
+      );
     });
   });
 
   describe("unwrapDecapsulationKey", () => {
-    it("is a proxy to decryptBytes", async () => {
+    it("is a proxy to PureCrypto", async () => {
       const key = new SymmetricCryptoKey(makeStaticByteArray(64));
-      const encString = new EncString(EncryptionType.AesCbc256_B64, "data");
-      encryptService.decryptBytes = jest.fn();
-      await encryptService.unwrapDecapsulationKey(encString, key);
-      expect(encryptService.decryptBytes).toHaveBeenCalledWith(encString, key);
+      const encString = new EncString("wrapped_decapsulation_key");
+      const result = await encryptService.unwrapDecapsulationKey(encString, key);
+      expect(result).toEqual(new Uint8Array(4));
+      expect(PureCrypto.unwrap_decapsulation_key).toHaveBeenCalledWith(
+        encString.encryptedString,
+        key.toEncoded(),
+      );
+    });
+    it("throws if wrappedDecapsulationKey is null", () => {
+      const key = new SymmetricCryptoKey(makeStaticByteArray(64));
+      return expect(encryptService.unwrapDecapsulationKey(null, key)).rejects.toThrow(
+        "No wrappedDecapsulationKey provided for unwrapping.",
+      );
+    });
+    it("throws if wrappingKey is null", () => {
+      const encString = new EncString("wrapped_decapsulation_key");
+      return expect(encryptService.unwrapDecapsulationKey(encString, null)).rejects.toThrow(
+        "No wrappingKey provided for unwrapping.",
+      );
     });
   });
 
   describe("unwrapEncapsulationKey", () => {
-    it("is a proxy to decryptBytes", async () => {
+    it("is a proxy to PureCrypto", async () => {
       const key = new SymmetricCryptoKey(makeStaticByteArray(64));
-      const encString = new EncString(EncryptionType.AesCbc256_B64, "data");
-      encryptService.decryptBytes = jest.fn();
-      await encryptService.unwrapEncapsulationKey(encString, key);
-      expect(encryptService.decryptBytes).toHaveBeenCalledWith(encString, key);
+      const encString = new EncString("wrapped_encapsulation_key");
+      const result = await encryptService.unwrapEncapsulationKey(encString, key);
+      expect(result).toEqual(new Uint8Array(5));
+      expect(PureCrypto.unwrap_encapsulation_key).toHaveBeenCalledWith(
+        encString.encryptedString,
+        key.toEncoded(),
+      );
+    });
+    it("throws if wrappedEncapsulationKey is null", () => {
+      const key = new SymmetricCryptoKey(makeStaticByteArray(64));
+      return expect(encryptService.unwrapEncapsulationKey(null, key)).rejects.toThrow(
+        "No wrappedEncapsulationKey provided for unwrapping.",
+      );
+    });
+    it("throws if wrappingKey is null", () => {
+      const encString = new EncString("wrapped_encapsulation_key");
+      return expect(encryptService.unwrapEncapsulationKey(encString, null)).rejects.toThrow(
+        "No wrappingKey provided for unwrapping.",
+      );
     });
   });
 
   describe("unwrapSymmetricKey", () => {
-    it("is a proxy to decryptBytes", async () => {
+    it("is a proxy to PureCrypto", async () => {
       const key = new SymmetricCryptoKey(makeStaticByteArray(64));
-      const encString = new EncString(EncryptionType.AesCbc256_B64, "data");
-      const jestFn = jest.fn();
-      jestFn.mockResolvedValue(new Uint8Array(64));
-      encryptService.decryptBytes = jestFn;
-      await encryptService.unwrapSymmetricKey(encString, key);
-      expect(encryptService.decryptBytes).toHaveBeenCalledWith(encString, key);
+      const encString = new EncString("wrapped_symmetric_key");
+      const result = await encryptService.unwrapSymmetricKey(encString, key);
+      expect(result).toEqual(new SymmetricCryptoKey(new Uint8Array(64)));
+      expect(PureCrypto.unwrap_symmetric_key).toHaveBeenCalledWith(
+        encString.encryptedString,
+        key.toEncoded(),
+      );
+    });
+    it("throws if keyToBeUnwrapped is null", () => {
+      const key = new SymmetricCryptoKey(makeStaticByteArray(64));
+      return expect(encryptService.unwrapSymmetricKey(null, key)).rejects.toThrow(
+        "No keyToBeUnwrapped provided for unwrapping.",
+      );
+    });
+    it("throws if wrappingKey is null", () => {
+      const encString = new EncString("wrapped_symmetric_key");
+      return expect(encryptService.unwrapSymmetricKey(encString, null)).rejects.toThrow(
+        "No wrappingKey provided for unwrapping.",
+      );
     });
   });
 
@@ -690,23 +295,13 @@ describe("EncryptService", () => {
 
       it("throws if no public key is provided", () => {
         return expect(encryptService.encapsulateKeyUnsigned(testKey, null)).rejects.toThrow(
-          "No public key",
+          "No encapsulationKey provided for encapsulation",
         );
       });
 
       it("encrypts data with provided key", async () => {
-        cryptoFunctionService.rsaEncrypt.mockResolvedValue(encryptedData);
-
         const actual = await encryptService.encapsulateKeyUnsigned(testKey, publicKey);
-
-        expect(cryptoFunctionService.rsaEncrypt).toBeCalledWith(
-          expect.toEqualBuffer(testKey.toEncoded()),
-          expect.toEqualBuffer(publicKey),
-          "sha1",
-        );
-
-        expect(actual).toEqual(encString);
-        expect(actual.dataBytes).toEqualBuffer(encryptedData);
+        expect(actual).toEqual(new EncString("encapsulated_key_unsigned"));
       });
 
       it("throws if no data was provided", () => {
@@ -719,39 +314,19 @@ describe("EncryptService", () => {
     describe("decapsulateKeyUnsigned", () => {
       it("throws if no data is provided", () => {
         return expect(encryptService.decapsulateKeyUnsigned(null, privateKey)).rejects.toThrow(
-          "No data",
+          "No encryptedSharedKey provided for decapsulation",
         );
       });
 
       it("throws if no private key is provided", () => {
         return expect(encryptService.decapsulateKeyUnsigned(encString, null)).rejects.toThrow(
-          "No private key",
+          "No decapsulationKey provided for decapsulation",
         );
       });
 
-      it.each([EncryptionType.AesCbc256_B64, EncryptionType.AesCbc256_HmacSha256_B64])(
-        "throws if encryption type is %s",
-        async (encType) => {
-          encString.encryptionType = encType;
-
-          await expect(
-            encryptService.decapsulateKeyUnsigned(encString, privateKey),
-          ).rejects.toThrow("Invalid encryption type");
-        },
-      );
-
       it("decrypts data with provided key", async () => {
-        cryptoFunctionService.rsaDecrypt.mockResolvedValue(data);
-
         const actual = await encryptService.decapsulateKeyUnsigned(makeEncString(data), privateKey);
-
-        expect(cryptoFunctionService.rsaDecrypt).toBeCalledWith(
-          expect.toEqualBuffer(data),
-          expect.toEqualBuffer(privateKey),
-          "sha1",
-        );
-
-        expect(actual.toEncoded()).toEqualBuffer(data);
+        expect(actual.toEncoded()).toEqualBuffer(new Uint8Array(64));
       });
     });
   });
diff --git a/libs/common/src/key-management/crypto/services/fallback-bulk-encrypt.service.spec.ts b/libs/common/src/key-management/crypto/services/fallback-bulk-encrypt.service.spec.ts
deleted file mode 100644
index c016724e652..00000000000
--- a/libs/common/src/key-management/crypto/services/fallback-bulk-encrypt.service.spec.ts
+++ /dev/null
@@ -1,97 +0,0 @@
-import { mock } from "jest-mock-extended";
-
-import { ServerConfig } from "../../../platform/abstractions/config/server-config";
-import { SymmetricCryptoKey } from "../../../platform/models/domain/symmetric-crypto-key";
-import { BulkEncryptService } from "../abstractions/bulk-encrypt.service";
-import { EncryptService } from "../abstractions/encrypt.service";
-
-import { FallbackBulkEncryptService } from "./fallback-bulk-encrypt.service";
-
-describe("FallbackBulkEncryptService", () => {
-  const encryptService = mock<EncryptService>();
-  const featureFlagEncryptService = mock<BulkEncryptService>();
-  const serverConfig = mock<ServerConfig>();
-
-  let sut: FallbackBulkEncryptService;
-
-  beforeEach(() => {
-    sut = new FallbackBulkEncryptService(encryptService);
-  });
-
-  afterEach(() => {
-    jest.resetAllMocks();
-  });
-
-  describe("decryptItems", () => {
-    const key = mock<SymmetricCryptoKey>();
-    const mockItems = [{ id: "guid", name: "encryptedValue" }] as any[];
-    const mockDecryptedItems = [{ id: "guid", name: "decryptedValue" }] as any[];
-
-    it("calls decryptItems on featureFlagEncryptService when it is set", async () => {
-      featureFlagEncryptService.decryptItems.mockResolvedValue(mockDecryptedItems);
-      await sut.setFeatureFlagEncryptService(featureFlagEncryptService);
-
-      const result = await sut.decryptItems(mockItems, key);
-
-      expect(featureFlagEncryptService.decryptItems).toHaveBeenCalledWith(mockItems, key);
-      expect(encryptService.decryptItems).not.toHaveBeenCalled();
-      expect(result).toEqual(mockDecryptedItems);
-    });
-
-    it("calls decryptItems on encryptService when featureFlagEncryptService is not set", async () => {
-      encryptService.decryptItems.mockResolvedValue(mockDecryptedItems);
-
-      const result = await sut.decryptItems(mockItems, key);
-
-      expect(encryptService.decryptItems).toHaveBeenCalledWith(mockItems, key);
-      expect(result).toEqual(mockDecryptedItems);
-    });
-  });
-
-  describe("setFeatureFlagEncryptService", () => {
-    it("sets the featureFlagEncryptService property", async () => {
-      await sut.setFeatureFlagEncryptService(featureFlagEncryptService);
-
-      expect((sut as any).featureFlagEncryptService).toBe(featureFlagEncryptService);
-    });
-
-    it("does not call onServerConfigChange when currentServerConfig is undefined", async () => {
-      await sut.setFeatureFlagEncryptService(featureFlagEncryptService);
-
-      expect(featureFlagEncryptService.onServerConfigChange).not.toHaveBeenCalled();
-      expect((sut as any).featureFlagEncryptService).toBe(featureFlagEncryptService);
-    });
-
-    it("calls onServerConfigChange with currentServerConfig when it is defined", async () => {
-      sut.onServerConfigChange(serverConfig);
-
-      await sut.setFeatureFlagEncryptService(featureFlagEncryptService);
-
-      expect(featureFlagEncryptService.onServerConfigChange).toHaveBeenCalledWith(serverConfig);
-      expect((sut as any).featureFlagEncryptService).toBe(featureFlagEncryptService);
-    });
-  });
-
-  describe("onServerConfigChange", () => {
-    it("updates internal currentServerConfig to new config", async () => {
-      sut.onServerConfigChange(serverConfig);
-
-      expect((sut as any).currentServerConfig).toBe(serverConfig);
-    });
-
-    it("calls onServerConfigChange on featureFlagEncryptService when it is set", async () => {
-      await sut.setFeatureFlagEncryptService(featureFlagEncryptService);
-
-      sut.onServerConfigChange(serverConfig);
-
-      expect(featureFlagEncryptService.onServerConfigChange).toHaveBeenCalledWith(serverConfig);
-      expect(encryptService.onServerConfigChange).not.toHaveBeenCalled();
-    });
-
-    it("calls onServerConfigChange on encryptService when featureFlagEncryptService is not set", () => {
-      sut.onServerConfigChange(serverConfig);
-
-      expect(encryptService.onServerConfigChange).toHaveBeenCalledWith(serverConfig);
-    });
-  });
-});
diff --git a/libs/common/src/key-management/crypto/services/fallback-bulk-encrypt.service.ts b/libs/common/src/key-management/crypto/services/fallback-bulk-encrypt.service.ts
index 7eefa896e6a..0a05bff4422 100644
--- a/libs/common/src/key-management/crypto/services/fallback-bulk-encrypt.service.ts
+++ b/libs/common/src/key-management/crypto/services/fallback-bulk-encrypt.service.ts
@@ -9,7 +9,7 @@ import { ServerConfig } from "../../../platform/abstractions/config/server-confi
 import { EncryptService } from "../abstractions/encrypt.service";
 
 /**
- * @deprecated For the feature flag from PM-4154, remove once feature is rolled out
+ * @deprecated Will be deleted in an immediate subsequent PR
  */
 export class FallbackBulkEncryptService implements BulkEncryptService {
   private featureFlagEncryptService: BulkEncryptService;
@@ -25,22 +25,10 @@ export class FallbackBulkEncryptService implements BulkEncryptService {
     items: Decryptable<T>[],
     key: SymmetricCryptoKey,
   ): Promise<T[]> {
-    if (this.featureFlagEncryptService != null) {
-      return await this.featureFlagEncryptService.decryptItems(items, key);
-    } else {
-      return await this.encryptService.decryptItems(items, key);
-    }
+    return await this.encryptService.decryptItems(items, key);
   }
 
-  async setFeatureFlagEncryptService(featureFlagEncryptService: BulkEncryptService) {
-    if (this.currentServerConfig !== undefined) {
-      featureFlagEncryptService.onServerConfigChange(this.currentServerConfig);
-    }
-    this.featureFlagEncryptService = featureFlagEncryptService;
-  }
+  async setFeatureFlagEncryptService(featureFlagEncryptService: BulkEncryptService) {}
 
-  onServerConfigChange(newConfig: ServerConfig): void {
-    this.currentServerConfig = newConfig;
-    (this.featureFlagEncryptService ?? this.encryptService).onServerConfigChange(newConfig);
-  }
+  onServerConfigChange(newConfig: ServerConfig): void {}
 }
diff --git a/libs/common/src/key-management/crypto/services/multithread-encrypt.service.implementation.spec.ts b/libs/common/src/key-management/crypto/services/multithread-encrypt.service.implementation.spec.ts
deleted file mode 100644
index bb966c32507..00000000000
--- a/libs/common/src/key-management/crypto/services/multithread-encrypt.service.implementation.spec.ts
+++ /dev/null
@@ -1,123 +0,0 @@
-import { mock } from "jest-mock-extended";
-import * as rxjs from "rxjs";
-
-import { ServerConfig } from "../../../platform/abstractions/config/server-config";
-import { LogService } from "../../../platform/abstractions/log.service";
-import { Decryptable } from "../../../platform/interfaces/decryptable.interface";
-import { SymmetricCryptoKey } from "../../../platform/models/domain/symmetric-crypto-key";
-import { CryptoFunctionService } from "../abstractions/crypto-function.service";
-import { buildSetConfigMessage } from "../types/worker-command.type";
-
-import { EncryptServiceImplementation } from "./encrypt.service.implementation";
-import { MultithreadEncryptServiceImplementation } from "./multithread-encrypt.service.implementation";
-
-describe("MultithreadEncryptServiceImplementation", () => {
-  const cryptoFunctionService = mock<CryptoFunctionService>();
-  const logService = mock<LogService>();
-  const serverConfig = mock<ServerConfig>();
-
-  let sut: MultithreadEncryptServiceImplementation;
-
-  beforeEach(() => {
-    sut = new MultithreadEncryptServiceImplementation(cryptoFunctionService, logService, true);
-  });
-
-  afterEach(() => {
-    jest.resetAllMocks();
-  });
-
-  describe("decryptItems", () => {
-    const key = mock<SymmetricCryptoKey>();
-    const mockWorker = mock<Worker>();
-
-    beforeEach(() => {
-      // Mock creating a worker.
-      global.Worker = jest.fn().mockImplementation(() => mockWorker);
-      global.URL = jest.fn().mockImplementation(() => "url") as unknown as typeof URL;
-      global.URL.createObjectURL = jest.fn().mockReturnValue("blob:url");
-      global.URL.revokeObjectURL = jest.fn();
-      global.URL.canParse = jest.fn().mockReturnValue(true);
-
-      // Mock the workers returned response.
-      const mockMessageEvent = {
-        id: "mock-guid",
-        data: ["decrypted1", "decrypted2"],
-      };
-      const mockMessageEvent$ = rxjs.from([mockMessageEvent]);
-      jest.spyOn(rxjs, "fromEvent").mockReturnValue(mockMessageEvent$);
-    });
-
-    it("returns empty array if items is null", async () => {
-      const items = null as unknown as Decryptable<any>[];
-      const result = await sut.decryptItems(items, key);
-      expect(result).toEqual([]);
-    });
-
-    it("returns empty array if items is empty", async () => {
-      const result = await sut.decryptItems([], key);
-      expect(result).toEqual([]);
-    });
-
-    it("creates worker if none exists", async () => {
-      // Make sure currentServerConfig is undefined so a SetConfigMessage is not sent.
-      (sut as any).currentServerConfig = undefined;
-
-      await sut.decryptItems([mock<Decryptable<any>>(), mock<Decryptable<any>>()], key);
-
-      expect(global.Worker).toHaveBeenCalled();
-      expect(mockWorker.postMessage).toHaveBeenCalledTimes(1);
-      expect(mockWorker.postMessage).not.toHaveBeenCalledWith(
-        buildSetConfigMessage({ newConfig: serverConfig }),
-      );
-    });
-
-    it("sends a SetConfigMessage to the new worker when there is a current server config", async () => {
-      // Populate currentServerConfig so a SetConfigMessage is sent.
-      (sut as any).currentServerConfig = serverConfig;
-
-      await sut.decryptItems([mock<Decryptable<any>>(), mock<Decryptable<any>>()], key);
-
-      expect(global.Worker).toHaveBeenCalled();
-      expect(mockWorker.postMessage).toHaveBeenCalledTimes(2);
-      expect(mockWorker.postMessage).toHaveBeenCalledWith(
-        buildSetConfigMessage({ newConfig: serverConfig }),
-      );
-    });
-
-    it("does not create worker if one exists", async () => {
-      (sut as any).currentServerConfig = serverConfig;
-      (sut as any).worker = mockWorker;
-
-      await sut.decryptItems([mock<Decryptable<any>>(), mock<Decryptable<any>>()], key);
-
-      expect(global.Worker).not.toHaveBeenCalled();
-      expect(mockWorker.postMessage).toHaveBeenCalledTimes(1);
-      expect(mockWorker.postMessage).not.toHaveBeenCalledWith(
-        buildSetConfigMessage({ newConfig: serverConfig }),
-      );
-    });
-  });
-
-  describe("onServerConfigChange", () => {
-    it("updates internal currentServerConfig to new config and calls super", () => {
-      const superSpy = jest.spyOn(EncryptServiceImplementation.prototype, "onServerConfigChange");
-
-      sut.onServerConfigChange(serverConfig);
-
-      expect(superSpy).toHaveBeenCalledWith(serverConfig);
-      expect((sut as any).currentServerConfig).toBe(serverConfig);
-    });
-
-    it("sends config update to worker if worker exists", () => {
-      const mockWorker = mock<Worker>();
-      (sut as any).worker = mockWorker;
-
-      sut.onServerConfigChange(serverConfig);
-
-      expect(mockWorker.postMessage).toHaveBeenCalledTimes(1);
-      expect(mockWorker.postMessage).toHaveBeenCalledWith(
-        buildSetConfigMessage({ newConfig: serverConfig }),
-      );
-    });
-  });
-});
diff --git a/libs/common/src/key-management/crypto/services/multithread-encrypt.service.implementation.ts b/libs/common/src/key-management/crypto/services/multithread-encrypt.service.implementation.ts
index a3a663f72a9..ab65074af3b 100644
--- a/libs/common/src/key-management/crypto/services/multithread-encrypt.service.implementation.ts
+++ b/libs/common/src/key-management/crypto/services/multithread-encrypt.service.implementation.ts
@@ -1,31 +1,16 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
-import { defaultIfEmpty, filter, firstValueFrom, fromEvent, map, Subject, takeUntil } from "rxjs";
-import { Jsonify } from "type-fest";
-
 import { Decryptable } from "@bitwarden/common/platform/interfaces/decryptable.interface";
 import { InitializerMetadata } from "@bitwarden/common/platform/interfaces/initializer-metadata.interface";
-import { Utils } from "@bitwarden/common/platform/misc/utils";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
-import { getClassInitializer } from "@bitwarden/common/platform/services/cryptography/get-class-initializer";
 
 import { ServerConfig } from "../../../platform/abstractions/config/server-config";
-import { buildDecryptMessage, buildSetConfigMessage } from "../types/worker-command.type";
 
 import { EncryptServiceImplementation } from "./encrypt.service.implementation";
 
-// TTL (time to live) is not strictly required but avoids tying up memory resources if inactive
-const workerTTL = 3 * 60000; // 3 minutes
-
 /**
- * @deprecated Replaced by BulkEncryptionService (PM-4154)
+ * @deprecated Will be deleted in an immediate subsequent PR
  */
 export class MultithreadEncryptServiceImplementation extends EncryptServiceImplementation {
-  private worker: Worker;
-  private timeout: any;
-  private currentServerConfig: ServerConfig | undefined = undefined;
-
-  private clear$ = new Subject<void>();
+  protected useSDKForDecryption: boolean = true;
 
   /**
    * Sends items to a web worker to decrypt them.
@@ -35,84 +20,8 @@ export class MultithreadEncryptServiceImplementation extends EncryptServiceImple
     items: Decryptable<T>[],
     key: SymmetricCryptoKey,
   ): Promise<T[]> {
-    if (items == null || items.length < 1) {
-      return [];
-    }
-
-    if (this.useSDKForDecryption) {
-      return await super.decryptItems(items, key);
-    }
-
-    this.logService.info("Starting decryption using multithreading");
-
-    if (this.worker == null) {
-      this.worker = new Worker(
-        new URL(
-          /* webpackChunkName: 'encrypt-worker' */
-          "@bitwarden/common/key-management/crypto/services/encrypt.worker.ts",
-          import.meta.url,
-        ),
-      );
-      if (this.currentServerConfig !== undefined) {
-        this.updateWorkerServerConfig(this.currentServerConfig);
-      }
-    }
-
-    this.restartTimeout();
-
-    const id = Utils.newGuid();
-    const request = buildDecryptMessage({
-      id,
-      items: items,
-      key: key,
-    });
-
-    this.worker.postMessage(request);
-
-    return await firstValueFrom(
-      fromEvent(this.worker, "message").pipe(
-        filter((response: MessageEvent) => response.data?.id === id),
-        map((response) => JSON.parse(response.data.items)),
-        map((items) =>
-          items.map((jsonItem: Jsonify<T>) => {
-            const initializer = getClassInitializer<T>(jsonItem.initializerKey);
-            return initializer(jsonItem);
-          }),
-        ),
-        takeUntil(this.clear$),
-        defaultIfEmpty([]),
-      ),
-    );
+    return await super.decryptItems(items, key);
   }
 
-  override onServerConfigChange(newConfig: ServerConfig): void {
-    this.currentServerConfig = newConfig;
-    super.onServerConfigChange(newConfig);
-    this.updateWorkerServerConfig(newConfig);
-  }
-
-  private updateWorkerServerConfig(newConfig: ServerConfig) {
-    if (this.worker != null) {
-      const request = buildSetConfigMessage({ newConfig });
-      this.worker.postMessage(request);
-    }
-  }
-
-  private clear() {
-    this.clear$.next();
-    this.worker?.terminate();
-    this.worker = null;
-    this.clearTimeout();
-  }
-
-  private restartTimeout() {
-    this.clearTimeout();
-    this.timeout = setTimeout(() => this.clear(), workerTTL);
-  }
-
-  private clearTimeout() {
-    if (this.timeout != null) {
-      clearTimeout(this.timeout);
-    }
-  }
+  override onServerConfigChange(newConfig: ServerConfig): void {}
 }
diff --git a/libs/common/src/key-management/crypto/services/web-crypto-function.service.spec.ts b/libs/common/src/key-management/crypto/services/web-crypto-function.service.spec.ts
index 0037ba3391d..ae968fc6844 100644
--- a/libs/common/src/key-management/crypto/services/web-crypto-function.service.spec.ts
+++ b/libs/common/src/key-management/crypto/services/web-crypto-function.service.spec.ts
@@ -233,48 +233,6 @@ describe("WebCrypto Function Service", () => {
     });
   });
 
-  describe("aesEncrypt CBC mode", () => {
-    it("should successfully encrypt data", async () => {
-      const cryptoFunctionService = getWebCryptoFunctionService();
-      const iv = makeStaticByteArray(16);
-      const key = makeStaticByteArray(32);
-      const data = Utils.fromUtf8ToArray("EncryptMe!");
-      const encValue = await cryptoFunctionService.aesEncrypt(data, iv, key);
-      expect(Utils.fromBufferToB64(encValue)).toBe("ByUF8vhyX4ddU9gcooznwA==");
-    });
-
-    it("should successfully encrypt and then decrypt data fast", async () => {
-      const cryptoFunctionService = getWebCryptoFunctionService();
-      const iv = makeStaticByteArray(16);
-      const key = makeStaticByteArray(32);
-      const value = "EncryptMe!";
-      const data = Utils.fromUtf8ToArray(value);
-      const encValue = await cryptoFunctionService.aesEncrypt(data, iv, key);
-      const encData = Utils.fromBufferToB64(encValue);
-      const b64Iv = Utils.fromBufferToB64(iv);
-      const symKey = new SymmetricCryptoKey(key);
-      const parameters = cryptoFunctionService.aesDecryptFastParameters(
-        encData,
-        b64Iv,
-        null,
-        symKey,
-      );
-      const decValue = await cryptoFunctionService.aesDecryptFast({ mode: "cbc", parameters });
-      expect(decValue).toBe(value);
-    });
-
-    it("should successfully encrypt and then decrypt data", async () => {
-      const cryptoFunctionService = getWebCryptoFunctionService();
-      const iv = makeStaticByteArray(16);
-      const key = makeStaticByteArray(32);
-      const value = "EncryptMe!";
-      const data = Utils.fromUtf8ToArray(value);
-      const encValue = new Uint8Array(await cryptoFunctionService.aesEncrypt(data, iv, key));
-      const decValue = await cryptoFunctionService.aesDecrypt(encValue, iv, key, "cbc");
-      expect(Utils.fromBufferToUtf8(decValue)).toBe(value);
-    });
-  });
-
   describe("aesDecryptFast CBC mode", () => {
     it("should successfully decrypt data", async () => {
       const cryptoFunctionService = getWebCryptoFunctionService();
diff --git a/libs/common/src/key-management/crypto/services/web-crypto-function.service.ts b/libs/common/src/key-management/crypto/services/web-crypto-function.service.ts
index 32cbd58dde2..80a2a31dea6 100644
--- a/libs/common/src/key-management/crypto/services/web-crypto-function.service.ts
+++ b/libs/common/src/key-management/crypto/services/web-crypto-function.service.ts
@@ -204,14 +204,6 @@ export class WebCryptoFunctionService implements CryptoFunctionService {
     return equals;
   }
 
-  async aesEncrypt(data: Uint8Array, iv: Uint8Array, key: Uint8Array): Promise<Uint8Array> {
-    const impKey = await this.subtle.importKey("raw", key, { name: "AES-CBC" } as any, false, [
-      "encrypt",
-    ]);
-    const buffer = await this.subtle.encrypt({ name: "AES-CBC", iv: iv }, impKey, data);
-    return new Uint8Array(buffer);
-  }
-
   aesDecryptFastParameters(
     data: string,
     iv: string,
diff --git a/libs/common/src/tools/send/services/send.service.ts b/libs/common/src/tools/send/services/send.service.ts
index 97470b23697..57463b3b42b 100644
--- a/libs/common/src/tools/send/services/send.service.ts
+++ b/libs/common/src/tools/send/services/send.service.ts
@@ -89,10 +89,13 @@ export class SendService implements InternalSendServiceAbstraction {
     }
     // Key is not a SymmetricCryptoKey, but key material used to derive the cryptoKey
     send.key = await this.encryptService.encryptBytes(model.key, userKey);
+    // FIXME: model.name can be null. encryptString should not be called with null values.
     send.name = await this.encryptService.encryptString(model.name, model.cryptoKey);
+    // FIXME: model.notes can be null. encryptString should not be called with null values.
     send.notes = await this.encryptService.encryptString(model.notes, model.cryptoKey);
     if (send.type === SendType.Text) {
       send.text = new SendText();
+      // FIXME: model.text.text can be null. encryptString should not be called with null values.
       send.text.text = await this.encryptService.encryptString(model.text.text, model.cryptoKey);
       send.text.hidden = model.text.hidden;
     } else if (send.type === SendType.File) {
diff --git a/libs/key-management/src/key.service.ts b/libs/key-management/src/key.service.ts
index 45aba21c0cf..fca080252f6 100644
--- a/libs/key-management/src/key.service.ts
+++ b/libs/key-management/src/key.service.ts
@@ -3,10 +3,13 @@ import {
   NEVER,
   Observable,
   combineLatest,
+  distinctUntilChanged,
+  filter,
   firstValueFrom,
   forkJoin,
   map,
   of,
+  shareReplay,
   switchMap,
 } from "rxjs";
 
@@ -83,6 +86,9 @@ export class DefaultKeyService implements KeyServiceAbstraction {
   ) {
     this.activeUserOrgKeys$ = this.stateProvider.activeUserId$.pipe(
       switchMap((userId) => (userId != null ? this.orgKeys$(userId) : NEVER)),
+      filter((orgKeys) => orgKeys != null),
+      distinctUntilChanged(),
+      shareReplay({ bufferSize: 1, refCount: false }),
     ) as Observable<Record<OrganizationId, OrgKey>>;
   }
 
@@ -402,12 +408,9 @@ export class DefaultKeyService implements KeyServiceAbstraction {
   }
 
   async getOrgKey(orgId: OrganizationId): Promise<OrgKey | null> {
-    const activeUserId = await firstValueFrom(this.stateProvider.activeUserId$);
-    if (activeUserId == null) {
-      throw new Error("A user must be active to retrieve an org key");
-    }
-    const orgKeys = await firstValueFrom(this.orgKeys$(activeUserId));
-    return orgKeys?.[orgId] ?? null;
+    return await firstValueFrom(
+      this.activeUserOrgKeys$.pipe(map((orgKeys) => orgKeys[orgId] ?? null)),
+    );
   }
 
   async makeDataEncKey<T extends OrgKey | UserKey>(

From 167fa9a7ab1456f8ea4e2933057dd370c42b83cc Mon Sep 17 00:00:00 2001
From: Maciej Zieniuk <167752252+mzieniukbw@users.noreply.github.com>
Date: Mon, 21 Jul 2025 19:35:31 +0200
Subject: [PATCH 182/239] [PM-18054] Chrome extension biometric unlock not
 functioning correctly with Windows Hello. (#14953)

* Chrome extension biometric unlock not functioning correctly with Windows Hello.

When unlocking via Windows Hello prompt, the popup have to be in the foreground. If it is not, even for short amount of time (few seconds), if later prompt confirmed, it won't return success when returning signed os key half.

* unit test coverage

* unit test coverage

* exclude test files from build

* use electron `setAlwaysOnTop` instead of toggle

* remove Windows os key half created with derive_key_material biometric function, that prompted Windows Hello.

Moves Windows hello prompt into getBiometricKey.
Witness key no longer needed.

* windows crate formatting

* remove biometric on app start for windows

* failing os biometrics windows unit tests

* cleanup of os biometrics windows unit tests

* increased coverage of os biometrics windows unit tests

* open Windows Hello prompt in the currently focused window, instead of always desktop app

* conflict resolution after merge, typescript lint issues, increased test coverage.

* backwards compatibility when require password on start was disabled

* biometric unlock cancellation and error handling

* biometric settings simplifications
---
 .../desktop_native/core/src/biometric/mod.rs  |  90 ++++
 .../core/src/biometric/windows.rs             | 185 ++------
 .../src/app/accounts/settings.component.html  |  13 +-
 .../app/accounts/settings.component.spec.ts   |  96 ++---
 .../src/app/accounts/settings.component.ts    |  42 +-
 .../biometrics/os-biometrics-linux.service.ts |  27 +-
 .../os-biometrics-windows.service.spec.ts     | 402 ++++++++++++------
 .../os-biometrics-windows.service.ts          | 196 ++-------
 apps/desktop/src/locales/en/messages.json     |  12 -
 apps/desktop/src/main.ts                      |  18 +-
 apps/desktop/tsconfig.json                    |   3 +-
 11 files changed, 481 insertions(+), 603 deletions(-)

diff --git a/apps/desktop/desktop_native/core/src/biometric/mod.rs b/apps/desktop/desktop_native/core/src/biometric/mod.rs
index 79be43b1bfc..e4d51f5da9a 100644
--- a/apps/desktop/desktop_native/core/src/biometric/mod.rs
+++ b/apps/desktop/desktop_native/core/src/biometric/mod.rs
@@ -83,3 +83,93 @@ impl KeyMaterial {
         Ok(Sha256::digest(self.digest_material()))
     }
 }
+
+#[cfg(test)]
+mod tests {
+    use crate::biometric::{decrypt, encrypt, KeyMaterial};
+    use crate::crypto::CipherString;
+    use base64::{engine::general_purpose::STANDARD as base64_engine, Engine};
+    use std::str::FromStr;
+
+    fn key_material() -> KeyMaterial {
+        KeyMaterial {
+            os_key_part_b64: "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA=".to_owned(),
+            client_key_part_b64: Some("AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA=".to_owned()),
+        }
+    }
+
+    #[test]
+    fn test_encrypt() {
+        let key_material = key_material();
+        let iv_b64 = "l9fhDUP/wDJcKwmEzcb/3w==".to_owned();
+        let secret = encrypt("secret", &key_material, &iv_b64)
+            .unwrap()
+            .parse::<CipherString>()
+            .unwrap();
+
+        match secret {
+            CipherString::AesCbc256_B64 { iv, data: _ } => {
+                assert_eq!(iv_b64, base64_engine.encode(iv));
+            }
+            _ => panic!("Invalid cipher string"),
+        }
+    }
+
+    #[test]
+    fn test_decrypt() {
+        let secret =
+            CipherString::from_str("0.l9fhDUP/wDJcKwmEzcb/3w==|uP4LcqoCCj5FxBDP77NV6Q==").unwrap(); // output from test_encrypt
+        let key_material = key_material();
+        assert_eq!(decrypt(&secret, &key_material).unwrap(), "secret")
+    }
+
+    #[test]
+    fn key_material_produces_valid_key() {
+        let result = key_material().derive_key().unwrap();
+        assert_eq!(result.len(), 32);
+    }
+
+    #[test]
+    fn key_material_uses_os_part() {
+        let mut key_material = key_material();
+        let result = key_material.derive_key().unwrap();
+        key_material.os_key_part_b64 = "BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA=".to_owned();
+        let result2 = key_material.derive_key().unwrap();
+        assert_ne!(result, result2);
+    }
+
+    #[test]
+    fn key_material_uses_client_part() {
+        let mut key_material = key_material();
+        let result = key_material.derive_key().unwrap();
+        key_material.client_key_part_b64 =
+            Some("BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA=".to_owned());
+        let result2 = key_material.derive_key().unwrap();
+        assert_ne!(result, result2);
+    }
+
+    #[test]
+    fn key_material_produces_consistent_os_only_key() {
+        let mut key_material = key_material();
+        key_material.client_key_part_b64 = None;
+        let result = key_material.derive_key().unwrap();
+        assert_eq!(
+            result,
+            [
+                81, 100, 62, 172, 151, 119, 182, 58, 123, 38, 129, 116, 209, 253, 66, 118, 218,
+                237, 236, 155, 201, 234, 11, 198, 229, 171, 246, 144, 71, 188, 84, 246
+            ]
+            .into()
+        );
+    }
+
+    #[test]
+    fn key_material_produces_unique_os_only_key() {
+        let mut key_material = key_material();
+        key_material.client_key_part_b64 = None;
+        let result = key_material.derive_key().unwrap();
+        key_material.os_key_part_b64 = "BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA=".to_owned();
+        let result2 = key_material.derive_key().unwrap();
+        assert_ne!(result, result2);
+    }
+}
diff --git a/apps/desktop/desktop_native/core/src/biometric/windows.rs b/apps/desktop/desktop_native/core/src/biometric/windows.rs
index 4c2e2c8ae25..99bec132edb 100644
--- a/apps/desktop/desktop_native/core/src/biometric/windows.rs
+++ b/apps/desktop/desktop_native/core/src/biometric/windows.rs
@@ -1,22 +1,18 @@
-use std::{
-    ffi::c_void,
-    str::FromStr,
-    sync::{atomic::AtomicBool, Arc},
-};
+use std::{ffi::c_void, str::FromStr};
 
 use anyhow::{anyhow, Result};
 use base64::{engine::general_purpose::STANDARD as base64_engine, Engine};
 use rand::RngCore;
 use sha2::{Digest, Sha256};
 use windows::{
-    core::{factory, h, HSTRING},
-    Security::{
-        Credentials::{
-            KeyCredentialCreationOption, KeyCredentialManager, KeyCredentialStatus, UI::*,
-        },
-        Cryptography::CryptographicBuffer,
+    core::{factory, HSTRING},
+    Security::Credentials::UI::{
+        UserConsentVerificationResult, UserConsentVerifier, UserConsentVerifierAvailability,
+    },
+    Win32::{
+        Foundation::HWND, System::WinRT::IUserConsentVerifierInterop,
+        UI::WindowsAndMessaging::GetForegroundWindow,
     },
-    Win32::{Foundation::HWND, System::WinRT::IUserConsentVerifierInterop},
 };
 use windows_future::IAsyncOperation;
 
@@ -25,10 +21,7 @@ use crate::{
     crypto::CipherString,
 };
 
-use super::{
-    decrypt, encrypt,
-    windows_focus::{focus_security_prompt, set_focus},
-};
+use super::{decrypt, encrypt, windows_focus::set_focus};
 
 /// The Windows OS implementation of the biometric trait.
 pub struct Biometric {}
@@ -44,9 +37,15 @@ impl super::BiometricTrait for Biometric {
         //  should set the window to the foreground and focus it.
         set_focus(window);
 
+        // Windows Hello prompt must be in foreground, focused, otherwise the face or fingerprint
+        //  unlock will not work. We get the current foreground window, which will either be the
+        //  Bitwarden desktop app or the browser extension.
+        let foreground_window = unsafe { GetForegroundWindow() };
+
         let interop = factory::<UserConsentVerifier, IUserConsentVerifierInterop>()?;
-        let operation: IAsyncOperation<UserConsentVerificationResult> =
-            unsafe { interop.RequestVerificationForWindowAsync(window, &HSTRING::from(message))? };
+        let operation: IAsyncOperation<UserConsentVerificationResult> = unsafe {
+            interop.RequestVerificationForWindowAsync(foreground_window, &HSTRING::from(message))?
+        };
         let result = operation.get()?;
 
         match result {
@@ -65,14 +64,6 @@ impl super::BiometricTrait for Biometric {
         }
     }
 
-    /// Derive the symmetric encryption key from the Windows Hello signature.
-    ///
-    /// This works by signing a static challenge string with Windows Hello protected key store. The
-    /// signed challenge is then hashed using SHA-256 and used as the symmetric encryption key for the
-    /// Windows Hello protected keys.
-    ///
-    /// Windows will only sign the challenge if the user has successfully authenticated with Windows,
-    /// ensuring user presence.
     fn derive_key_material(challenge_str: Option<&str>) -> Result<OsDerivedKey> {
         let challenge: [u8; 16] = match challenge_str {
             Some(challenge_str) => base64_engine
@@ -81,51 +72,10 @@ impl super::BiometricTrait for Biometric {
                 .map_err(|e: Vec<_>| anyhow!("Expect length {}, got {}", 16, e.len()))?,
             None => random_challenge(),
         };
-        let bitwarden = h!("Bitwarden");
 
-        let result = KeyCredentialManager::RequestCreateAsync(
-            bitwarden,
-            KeyCredentialCreationOption::FailIfExists,
-        )?
-        .get()?;
-
-        let result = match result.Status()? {
-            KeyCredentialStatus::CredentialAlreadyExists => {
-                KeyCredentialManager::OpenAsync(bitwarden)?.get()?
-            }
-            KeyCredentialStatus::Success => result,
-            _ => return Err(anyhow!("Failed to create key credential")),
-        };
-
-        let challenge_buffer = CryptographicBuffer::CreateFromByteArray(&challenge)?;
-        let async_operation = result.Credential()?.RequestSignAsync(&challenge_buffer)?;
-        focus_security_prompt();
-
-        let done = Arc::new(AtomicBool::new(false));
-        let done_clone = done.clone();
-        let _ = std::thread::spawn(move || loop {
-            if !done_clone.load(std::sync::atomic::Ordering::Relaxed) {
-                focus_security_prompt();
-                std::thread::sleep(std::time::Duration::from_millis(500));
-            } else {
-                break;
-            }
-        });
-
-        let signature = async_operation.get();
-        done.store(true, std::sync::atomic::Ordering::Relaxed);
-        let signature = signature?;
-
-        if signature.Status()? != KeyCredentialStatus::Success {
-            return Err(anyhow!("Failed to sign data"));
-        }
-
-        let signature_buffer = signature.Result()?;
-        let mut signature_value =
-            windows::core::Array::<u8>::with_len(signature_buffer.Length().unwrap() as usize);
-        CryptographicBuffer::CopyToByteArray(&signature_buffer, &mut signature_value)?;
-
-        let key = Sha256::digest(&*signature_value);
+        // Uses a key derived from the iv. This key is not intended to add any security
+        // but only a place-holder
+        let key = Sha256::digest(challenge);
         let key_b64 = base64_engine.encode(key);
         let iv_b64 = base64_engine.encode(challenge);
         Ok(OsDerivedKey { key_b64, iv_b64 })
@@ -182,10 +132,9 @@ fn random_challenge() -> [u8; 16] {
 mod tests {
     use super::*;
 
-    use crate::biometric::{encrypt, BiometricTrait};
+    use crate::biometric::BiometricTrait;
 
     #[test]
-    #[cfg(feature = "manual_test")]
     fn test_derive_key_material() {
         let iv_input = "l9fhDUP/wDJcKwmEzcb/3w==";
         let result = <Biometric as BiometricTrait>::derive_key_material(Some(iv_input)).unwrap();
@@ -195,7 +144,6 @@ mod tests {
     }
 
     #[test]
-    #[cfg(feature = "manual_test")]
     fn test_derive_key_material_no_iv() {
         let result = <Biometric as BiometricTrait>::derive_key_material(None).unwrap();
         let key = base64_engine.decode(result.key_b64).unwrap();
@@ -221,38 +169,8 @@ mod tests {
         assert!(<Biometric as BiometricTrait>::available().await.unwrap())
     }
 
-    #[test]
-    fn test_encrypt() {
-        let key_material = KeyMaterial {
-            os_key_part_b64: "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA=".to_owned(),
-            client_key_part_b64: Some("AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA=".to_owned()),
-        };
-        let iv_b64 = "l9fhDUP/wDJcKwmEzcb/3w==".to_owned();
-        let secret = encrypt("secret", &key_material, &iv_b64)
-            .unwrap()
-            .parse::<CipherString>()
-            .unwrap();
-
-        match secret {
-            CipherString::AesCbc256_B64 { iv, data: _ } => {
-                assert_eq!(iv_b64, base64_engine.encode(iv));
-            }
-            _ => panic!("Invalid cipher string"),
-        }
-    }
-
-    #[test]
-    fn test_decrypt() {
-        let secret =
-            CipherString::from_str("0.l9fhDUP/wDJcKwmEzcb/3w==|uP4LcqoCCj5FxBDP77NV6Q==").unwrap(); // output from test_encrypt
-        let key_material = KeyMaterial {
-            os_key_part_b64: "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA=".to_owned(),
-            client_key_part_b64: Some("AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA=".to_owned()),
-        };
-        assert_eq!(decrypt(&secret, &key_material).unwrap(), "secret")
-    }
-
     #[tokio::test]
+    #[cfg(feature = "manual_test")]
     async fn get_biometric_secret_requires_key() {
         let result = <Biometric as BiometricTrait>::get_biometric_secret("", "", None).await;
         assert!(result.is_err());
@@ -263,6 +181,7 @@ mod tests {
     }
 
     #[tokio::test]
+    #[cfg(feature = "manual_test")]
     async fn get_biometric_secret_handles_unencrypted_secret() {
         let test = "test";
         let secret = "password";
@@ -284,6 +203,7 @@ mod tests {
     }
 
     #[tokio::test]
+    #[cfg(feature = "manual_test")]
     async fn get_biometric_secret_handles_encrypted_secret() {
         let test = "test";
         let secret =
@@ -316,61 +236,4 @@ mod tests {
             "Key material is required for Windows Hello protected keys"
         );
     }
-
-    fn key_material() -> KeyMaterial {
-        KeyMaterial {
-            os_key_part_b64: "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA=".to_owned(),
-            client_key_part_b64: Some("AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA=".to_owned()),
-        }
-    }
-
-    #[test]
-    fn key_material_produces_valid_key() {
-        let result = key_material().derive_key().unwrap();
-        assert_eq!(result.len(), 32);
-    }
-
-    #[test]
-    fn key_material_uses_os_part() {
-        let mut key_material = key_material();
-        let result = key_material.derive_key().unwrap();
-        key_material.os_key_part_b64 = "BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA=".to_owned();
-        let result2 = key_material.derive_key().unwrap();
-        assert_ne!(result, result2);
-    }
-
-    #[test]
-    fn key_material_uses_client_part() {
-        let mut key_material = key_material();
-        let result = key_material.derive_key().unwrap();
-        key_material.client_key_part_b64 =
-            Some("BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA=".to_owned());
-        let result2 = key_material.derive_key().unwrap();
-        assert_ne!(result, result2);
-    }
-
-    #[test]
-    fn key_material_produces_consistent_os_only_key() {
-        let mut key_material = key_material();
-        key_material.client_key_part_b64 = None;
-        let result = key_material.derive_key().unwrap();
-        assert_eq!(
-            result,
-            [
-                81, 100, 62, 172, 151, 119, 182, 58, 123, 38, 129, 116, 209, 253, 66, 118, 218,
-                237, 236, 155, 201, 234, 11, 198, 229, 171, 246, 144, 71, 188, 84, 246
-            ]
-            .into()
-        );
-    }
-
-    #[test]
-    fn key_material_produces_unique_os_only_key() {
-        let mut key_material = key_material();
-        key_material.client_key_part_b64 = None;
-        let result = key_material.derive_key().unwrap();
-        key_material.os_key_part_b64 = "BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA=".to_owned();
-        let result2 = key_material.derive_key().unwrap();
-        assert_ne!(result, result2);
-    }
 }
diff --git a/apps/desktop/src/app/accounts/settings.component.html b/apps/desktop/src/app/accounts/settings.component.html
index 46cd323b071..473cfa73f1d 100644
--- a/apps/desktop/src/app/accounts/settings.component.html
+++ b/apps/desktop/src/app/accounts/settings.component.html
@@ -126,13 +126,13 @@
                     {{ biometricText | i18n }}
                   </label>
                 </div>
-                <small class="help-block" *ngIf="this.form.value.biometric && !this.isLinux">{{
-                  additionalBiometricSettingsText | i18n
+                <small class="help-block" *ngIf="this.form.value.biometric && this.isMac">{{
+                  "additionalTouchIdSettings" | i18n
                 }}</small>
               </div>
               <div
                 class="form-group"
-                *ngIf="supportsBiometric && this.form.value.biometric && !this.isLinux"
+                *ngIf="supportsBiometric && this.form.value.biometric && this.isMac"
               >
                 <div class="checkbox form-group-child">
                   <label for="autoPromptBiometrics">
@@ -142,7 +142,7 @@
                       formControlName="autoPromptBiometrics"
                       (change)="updateAutoPromptBiometrics()"
                     />
-                    {{ autoPromptBiometricsText | i18n }}
+                    {{ "autoPromptTouchId" | i18n }}
                   </label>
                 </div>
               </div>
@@ -152,7 +152,7 @@
                   supportsBiometric &&
                   this.form.value.biometric &&
                   (userHasMasterPassword || (this.form.value.pin && userHasPinSet)) &&
-                  this.isWindows
+                  false
                 "
               >
                 <div class="checkbox form-group-child">
@@ -170,9 +170,6 @@
                     }
                   </label>
                 </div>
-                <small class="help-block form-group-child" *ngIf="isWindows">{{
-                  "recommendedForSecurity" | i18n
-                }}</small>
               </div>
             </ng-container>
           </div>
diff --git a/apps/desktop/src/app/accounts/settings.component.spec.ts b/apps/desktop/src/app/accounts/settings.component.spec.ts
index 16ada3fbc07..819438eaa3b 100644
--- a/apps/desktop/src/app/accounts/settings.component.spec.ts
+++ b/apps/desktop/src/app/accounts/settings.component.spec.ts
@@ -271,74 +271,46 @@ describe("SettingsComponent", () => {
       vaultTimeoutSettingsService.isBiometricLockSet.mockResolvedValue(true);
     });
 
-    it("require password or pin on app start message when RemoveUnlockWithPin policy is disabled and pin set and windows desktop", async () => {
-      const policy = new Policy();
-      policy.type = PolicyType.RemoveUnlockWithPin;
-      policy.enabled = false;
-      policyService.policiesByType$.mockReturnValue(of([policy]));
-      platformUtilsService.getDevice.mockReturnValue(DeviceType.WindowsDesktop);
-      i18nService.t.mockImplementation((id: string) => {
-        if (id === "requirePasswordOnStart") {
-          return "Require password or pin on app start";
-        } else if (id === "requirePasswordWithoutPinOnStart") {
-          return "Require password on app start";
-        }
-        return "";
+    describe("windows desktop", () => {
+      beforeEach(() => {
+        platformUtilsService.getDevice.mockReturnValue(DeviceType.WindowsDesktop);
+
+        // Recreate component to apply the correct device
+        fixture = TestBed.createComponent(SettingsComponent);
+        component = fixture.componentInstance;
       });
-      pinServiceAbstraction.isPinSet.mockResolvedValue(true);
 
-      await component.ngOnInit();
-      fixture.detectChanges();
+      it("require password or pin on app start not visible when RemoveUnlockWithPin policy is disabled and pin set and windows desktop", async () => {
+        const policy = new Policy();
+        policy.type = PolicyType.RemoveUnlockWithPin;
+        policy.enabled = false;
+        policyService.policiesByType$.mockReturnValue(of([policy]));
+        pinServiceAbstraction.isPinSet.mockResolvedValue(true);
 
-      const requirePasswordOnStartLabelElement = fixture.debugElement.query(
-        By.css("label[for='requirePasswordOnStart']"),
-      );
-      expect(requirePasswordOnStartLabelElement).not.toBeNull();
-      expect(requirePasswordOnStartLabelElement.children).toHaveLength(1);
-      expect(requirePasswordOnStartLabelElement.children[0].name).toBe("input");
-      expect(requirePasswordOnStartLabelElement.children[0].attributes).toMatchObject({
-        id: "requirePasswordOnStart",
-        type: "checkbox",
+        await component.ngOnInit();
+        fixture.detectChanges();
+
+        const requirePasswordOnStartLabelElement = fixture.debugElement.query(
+          By.css("label[for='requirePasswordOnStart']"),
+        );
+        expect(requirePasswordOnStartLabelElement).toBeNull();
       });
-      const textNodes = requirePasswordOnStartLabelElement.childNodes
-        .filter((node) => node.nativeNode.nodeType === Node.TEXT_NODE)
-        .map((node) => node.nativeNode.wholeText?.trim());
-      expect(textNodes).toContain("Require password or pin on app start");
-    });
 
-    it("require password on app start message when RemoveUnlockWithPin policy is enabled and pin set and windows desktop", async () => {
-      const policy = new Policy();
-      policy.type = PolicyType.RemoveUnlockWithPin;
-      policy.enabled = true;
-      policyService.policiesByType$.mockReturnValue(of([policy]));
-      platformUtilsService.getDevice.mockReturnValue(DeviceType.WindowsDesktop);
-      i18nService.t.mockImplementation((id: string) => {
-        if (id === "requirePasswordOnStart") {
-          return "Require password or pin on app start";
-        } else if (id === "requirePasswordWithoutPinOnStart") {
-          return "Require password on app start";
-        }
-        return "";
+      it("require password on app start not visible when RemoveUnlockWithPin policy is enabled and pin set and windows desktop", async () => {
+        const policy = new Policy();
+        policy.type = PolicyType.RemoveUnlockWithPin;
+        policy.enabled = true;
+        policyService.policiesByType$.mockReturnValue(of([policy]));
+        pinServiceAbstraction.isPinSet.mockResolvedValue(true);
+
+        await component.ngOnInit();
+        fixture.detectChanges();
+
+        const requirePasswordOnStartLabelElement = fixture.debugElement.query(
+          By.css("label[for='requirePasswordOnStart']"),
+        );
+        expect(requirePasswordOnStartLabelElement).toBeNull();
       });
-      pinServiceAbstraction.isPinSet.mockResolvedValue(true);
-
-      await component.ngOnInit();
-      fixture.detectChanges();
-
-      const requirePasswordOnStartLabelElement = fixture.debugElement.query(
-        By.css("label[for='requirePasswordOnStart']"),
-      );
-      expect(requirePasswordOnStartLabelElement).not.toBeNull();
-      expect(requirePasswordOnStartLabelElement.children).toHaveLength(1);
-      expect(requirePasswordOnStartLabelElement.children[0].name).toBe("input");
-      expect(requirePasswordOnStartLabelElement.children[0].attributes).toMatchObject({
-        id: "requirePasswordOnStart",
-        type: "checkbox",
-      });
-      const textNodes = requirePasswordOnStartLabelElement.childNodes
-        .filter((node) => node.nativeNode.nodeType === Node.TEXT_NODE)
-        .map((node) => node.nativeNode.wholeText?.trim());
-      expect(textNodes).toContain("Require password on app start");
     });
   });
 
diff --git a/apps/desktop/src/app/accounts/settings.component.ts b/apps/desktop/src/app/accounts/settings.component.ts
index 74f02f8b619..bbe5fb60719 100644
--- a/apps/desktop/src/app/accounts/settings.component.ts
+++ b/apps/desktop/src/app/accounts/settings.component.ts
@@ -78,6 +78,7 @@ export class SettingsComponent implements OnInit, OnDestroy {
   showOpenAtLoginOption = false;
   isWindows: boolean;
   isLinux: boolean;
+  isMac: boolean;
 
   enableTrayText: string;
   enableTrayDescText: string;
@@ -170,31 +171,33 @@ export class SettingsComponent implements OnInit, OnDestroy {
     private configService: ConfigService,
     private validationService: ValidationService,
   ) {
-    const isMac = this.platformUtilsService.getDevice() === DeviceType.MacOsDesktop;
+    this.isMac = this.platformUtilsService.getDevice() === DeviceType.MacOsDesktop;
+    this.isLinux = this.platformUtilsService.getDevice() === DeviceType.LinuxDesktop;
+    this.isWindows = this.platformUtilsService.getDevice() === DeviceType.WindowsDesktop;
 
     // Workaround to avoid ghosting trays https://github.com/electron/electron/issues/17622
     this.requireEnableTray = this.platformUtilsService.getDevice() === DeviceType.LinuxDesktop;
 
-    const trayKey = isMac ? "enableMenuBar" : "enableTray";
+    const trayKey = this.isMac ? "enableMenuBar" : "enableTray";
     this.enableTrayText = this.i18nService.t(trayKey);
     this.enableTrayDescText = this.i18nService.t(trayKey + "Desc");
 
-    const minToTrayKey = isMac ? "enableMinToMenuBar" : "enableMinToTray";
+    const minToTrayKey = this.isMac ? "enableMinToMenuBar" : "enableMinToTray";
     this.enableMinToTrayText = this.i18nService.t(minToTrayKey);
     this.enableMinToTrayDescText = this.i18nService.t(minToTrayKey + "Desc");
 
-    const closeToTrayKey = isMac ? "enableCloseToMenuBar" : "enableCloseToTray";
+    const closeToTrayKey = this.isMac ? "enableCloseToMenuBar" : "enableCloseToTray";
     this.enableCloseToTrayText = this.i18nService.t(closeToTrayKey);
     this.enableCloseToTrayDescText = this.i18nService.t(closeToTrayKey + "Desc");
 
-    const startToTrayKey = isMac ? "startToMenuBar" : "startToTray";
+    const startToTrayKey = this.isMac ? "startToMenuBar" : "startToTray";
     this.startToTrayText = this.i18nService.t(startToTrayKey);
     this.startToTrayDescText = this.i18nService.t(startToTrayKey + "Desc");
 
     this.showOpenAtLoginOption = !ipc.platform.isWindowsStore;
 
     // DuckDuckGo browser is only for macos initially
-    this.showDuckDuckGoIntegrationOption = isMac;
+    this.showDuckDuckGoIntegrationOption = this.isMac;
 
     const localeOptions: any[] = [];
     this.i18nService.supportedTranslationLocales.forEach((locale) => {
@@ -239,7 +242,6 @@ export class SettingsComponent implements OnInit, OnDestroy {
   async ngOnInit() {
     this.vaultTimeoutOptions = await this.generateVaultTimeoutOptions();
     const activeAccount = await firstValueFrom(this.accountService.activeAccount$);
-    this.isLinux = (await this.platformUtilsService.getDevice()) === DeviceType.LinuxDesktop;
 
     // Autotype is for Windows initially
     const isWindows = this.platformUtilsService.getDevice() === DeviceType.WindowsDesktop;
@@ -250,8 +252,6 @@ export class SettingsComponent implements OnInit, OnDestroy {
 
     this.userHasMasterPassword = await this.userVerificationService.hasMasterPassword();
 
-    this.isWindows = this.platformUtilsService.getDevice() === DeviceType.WindowsDesktop;
-
     this.currentUserEmail = activeAccount.email;
     this.currentUserId = activeAccount.id;
 
@@ -911,28 +911,4 @@ export class SettingsComponent implements OnInit, OnDestroy {
         throw new Error("Unsupported platform");
     }
   }
-
-  get autoPromptBiometricsText() {
-    switch (this.platformUtilsService.getDevice()) {
-      case DeviceType.MacOsDesktop:
-        return "autoPromptTouchId";
-      case DeviceType.WindowsDesktop:
-        return "autoPromptWindowsHello";
-      case DeviceType.LinuxDesktop:
-        return "autoPromptPolkit";
-      default:
-        throw new Error("Unsupported platform");
-    }
-  }
-
-  get additionalBiometricSettingsText() {
-    switch (this.platformUtilsService.getDevice()) {
-      case DeviceType.MacOsDesktop:
-        return "additionalTouchIdSettings";
-      case DeviceType.WindowsDesktop:
-        return "additionalWindowsHelloSettings";
-      default:
-        throw new Error("Unsupported platform");
-    }
-  }
 }
diff --git a/apps/desktop/src/key-management/biometrics/os-biometrics-linux.service.ts b/apps/desktop/src/key-management/biometrics/os-biometrics-linux.service.ts
index c310f337182..26a8e949f38 100644
--- a/apps/desktop/src/key-management/biometrics/os-biometrics-linux.service.ts
+++ b/apps/desktop/src/key-management/biometrics/os-biometrics-linux.service.ts
@@ -34,6 +34,7 @@ const policyFileName = "com.bitwarden.Bitwarden.policy";
 const policyPath = "/usr/share/polkit-1/actions/";
 
 const SERVICE = "Bitwarden_biometric";
+
 function getLookupKeyForUser(userId: UserId): string {
   return `${userId}_user_biometric`;
 }
@@ -45,16 +46,18 @@ export default class OsBiometricsServiceLinux implements OsBiometricService {
     private cryptoFunctionService: CryptoFunctionService,
     private logService: LogService,
   ) {}
+
   private _iv: string | null = null;
   // Use getKeyMaterial helper instead of direct access
   private _osKeyHalf: string | null = null;
   private clientKeyHalves = new Map<UserId, Uint8Array | null>();
 
   async setBiometricKey(userId: UserId, key: SymmetricCryptoKey): Promise<void> {
-    const clientKeyPartB64 = Utils.fromBufferToB64(
-      await this.getOrCreateBiometricEncryptionClientKeyHalf(userId, key),
-    );
-    const storageDetails = await this.getStorageDetails({ clientKeyHalfB64: clientKeyPartB64 });
+    const clientKeyHalf = await this.getOrCreateBiometricEncryptionClientKeyHalf(userId, key);
+
+    const storageDetails = await this.getStorageDetails({
+      clientKeyHalfB64: clientKeyHalf ? Utils.fromBufferToB64(clientKeyHalf) : undefined,
+    });
     await biometrics.setBiometricSecret(
       SERVICE,
       getLookupKeyForUser(userId),
@@ -63,6 +66,7 @@ export default class OsBiometricsServiceLinux implements OsBiometricService {
       storageDetails.ivB64,
     );
   }
+
   async deleteBiometricKey(userId: UserId): Promise<void> {
     try {
       await passwords.deletePassword(SERVICE, getLookupKeyForUser(userId));
@@ -91,11 +95,15 @@ export default class OsBiometricsServiceLinux implements OsBiometricService {
     if (value == null || value == "") {
       return null;
     } else {
-      const clientKeyHalf = this.clientKeyHalves.get(userId);
-      const clientKeyPartB64 = Utils.fromBufferToB64(clientKeyHalf);
+      let clientKeyPartB64: string | null = null;
+      if (this.clientKeyHalves.has(userId)) {
+        clientKeyPartB64 = Utils.fromBufferToB64(this.clientKeyHalves.get(userId)!);
+      }
       const encValue = new EncString(value);
       this.setIv(encValue.iv);
-      const storageDetails = await this.getStorageDetails({ clientKeyHalfB64: clientKeyPartB64 });
+      const storageDetails = await this.getStorageDetails({
+        clientKeyHalfB64: clientKeyPartB64 ?? undefined,
+      });
       const storedValue = await biometrics.getBiometricSecret(
         SERVICE,
         getLookupKeyForUser(userId),
@@ -169,7 +177,6 @@ export default class OsBiometricsServiceLinux implements OsBiometricService {
   }): Promise<{ key_material: biometrics.KeyMaterial; ivB64: string }> {
     if (this._osKeyHalf == null) {
       const keyMaterial = await biometrics.deriveKeyMaterial(this._iv);
-      // osKeyHalf is based on the iv and in contrast to windows is not locked behind user verification!
       this._osKeyHalf = keyMaterial.keyB64;
       this._iv = keyMaterial.ivB64;
     }
@@ -209,8 +216,8 @@ export default class OsBiometricsServiceLinux implements OsBiometricService {
     }
     if (clientKeyHalf == null) {
       // Set a key half if it doesn't exist
-      const keyBytes = await this.cryptoFunctionService.randomBytes(32);
-      const encKey = await this.encryptService.encryptBytes(keyBytes, key);
+      clientKeyHalf = await this.cryptoFunctionService.randomBytes(32);
+      const encKey = await this.encryptService.encryptBytes(clientKeyHalf, key);
       await this.biometricStateService.setEncryptedClientKeyHalf(encKey, userId);
     }
 
diff --git a/apps/desktop/src/key-management/biometrics/os-biometrics-windows.service.spec.ts b/apps/desktop/src/key-management/biometrics/os-biometrics-windows.service.spec.ts
index 674d97bf696..f301efc70e7 100644
--- a/apps/desktop/src/key-management/biometrics/os-biometrics-windows.service.spec.ts
+++ b/apps/desktop/src/key-management/biometrics/os-biometrics-windows.service.spec.ts
@@ -1,51 +1,65 @@
+import { randomBytes } from "node:crypto";
+
+import { BrowserWindow } from "electron";
 import { mock } from "jest-mock-extended";
 
 import { CryptoFunctionService } from "@bitwarden/common/key-management/crypto/abstractions/crypto-function.service";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
+import { Utils } from "@bitwarden/common/platform/misc/utils";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import { UserId } from "@bitwarden/common/types/guid";
-import { passwords } from "@bitwarden/desktop-napi";
+import { biometrics, passwords } from "@bitwarden/desktop-napi";
 import { BiometricsStatus, BiometricStateService } from "@bitwarden/key-management";
 
 import { WindowMain } from "../../main/window.main";
 
 import OsBiometricsServiceWindows from "./os-biometrics-windows.service";
 
-jest.mock("@bitwarden/desktop-napi", () => ({
-  biometrics: {
-    available: jest.fn(),
-    setBiometricSecret: jest.fn(),
-    getBiometricSecret: jest.fn(),
-    deleteBiometricSecret: jest.fn(),
-    prompt: jest.fn(),
-    deriveKeyMaterial: jest.fn(),
-  },
-  passwords: {
-    getPassword: jest.fn(),
-    deletePassword: jest.fn(),
-    isAvailable: jest.fn(),
-    PASSWORD_NOT_FOUND: "Password not found",
-  },
-}));
+import OsDerivedKey = biometrics.OsDerivedKey;
+
+jest.mock("@bitwarden/desktop-napi", () => {
+  return {
+    biometrics: {
+      available: jest.fn().mockResolvedValue(true),
+      getBiometricSecret: jest.fn().mockResolvedValue(""),
+      setBiometricSecret: jest.fn().mockResolvedValue(""),
+      deleteBiometricSecret: jest.fn(),
+      deriveKeyMaterial: jest.fn().mockResolvedValue({
+        keyB64: "",
+        ivB64: "",
+      }),
+      prompt: jest.fn().mockResolvedValue(true),
+    },
+    passwords: {
+      getPassword: jest.fn().mockResolvedValue(null),
+      deletePassword: jest.fn().mockImplementation(() => {}),
+      isAvailable: jest.fn(),
+      PASSWORD_NOT_FOUND: "Password not found",
+    },
+  };
+});
+
+describe("OsBiometricsServiceWindows", function () {
+  const i18nService = mock<I18nService>();
+  const windowMain = mock<WindowMain>();
+  const browserWindow = mock<BrowserWindow>();
+  const encryptionService: EncryptService = mock<EncryptService>();
+  const cryptoFunctionService: CryptoFunctionService = mock<CryptoFunctionService>();
+  const biometricStateService: BiometricStateService = mock<BiometricStateService>();
+  const logService = mock<LogService>();
 
-describe("OsBiometricsServiceWindows", () => {
   let service: OsBiometricsServiceWindows;
-  let i18nService: I18nService;
-  let windowMain: WindowMain;
-  let logService: LogService;
-  let biometricStateService: BiometricStateService;
 
-  const mockUserId = "test-user-id" as UserId;
+  const key = new SymmetricCryptoKey(new Uint8Array(64));
+  const userId = "test-user-id" as UserId;
+  const serviceKey = "Bitwarden_biometric";
+  const storageKey = `${userId}_user_biometric`;
 
   beforeEach(() => {
-    i18nService = mock<I18nService>();
-    windowMain = mock<WindowMain>();
-    logService = mock<LogService>();
-    biometricStateService = mock<BiometricStateService>();
-    const encryptionService = mock<EncryptService>();
-    const cryptoFunctionService = mock<CryptoFunctionService>();
+    windowMain.win = browserWindow;
+
     service = new OsBiometricsServiceWindows(
       i18nService,
       windowMain,
@@ -62,20 +76,13 @@ describe("OsBiometricsServiceWindows", () => {
 
   describe("getBiometricsFirstUnlockStatusForUser", () => {
     const userId = "test-user-id" as UserId;
-    it("should return Available when requirePasswordOnRestart is false", async () => {
-      biometricStateService.getRequirePasswordOnStart = jest.fn().mockResolvedValue(false);
-      const result = await service.getBiometricsFirstUnlockStatusForUser(userId);
-      expect(result).toBe(BiometricsStatus.Available);
-    });
-    it("should return Available when requirePasswordOnRestart is true and client key half is set", async () => {
-      biometricStateService.getRequirePasswordOnStart = jest.fn().mockResolvedValue(true);
+    it("should return Available when client key half is set", async () => {
       (service as any).clientKeyHalves = new Map<string, Uint8Array>();
       (service as any).clientKeyHalves.set(userId, new Uint8Array([1, 2, 3, 4]));
       const result = await service.getBiometricsFirstUnlockStatusForUser(userId);
       expect(result).toBe(BiometricsStatus.Available);
     });
-    it("should return UnlockNeeded when requirePasswordOnRestart is true and client key half is not set", async () => {
-      biometricStateService.getRequirePasswordOnStart = jest.fn().mockResolvedValue(true);
+    it("should return UnlockNeeded when client key half is not set", async () => {
       (service as any).clientKeyHalves = new Map<string, Uint8Array>();
       const result = await service.getBiometricsFirstUnlockStatusForUser(userId);
       expect(result).toBe(BiometricsStatus.UnlockNeeded);
@@ -83,32 +90,7 @@ describe("OsBiometricsServiceWindows", () => {
   });
 
   describe("getOrCreateBiometricEncryptionClientKeyHalf", () => {
-    const userId = "test-user-id" as UserId;
-    const key = new SymmetricCryptoKey(new Uint8Array(64));
-    let encryptionService: EncryptService;
-    let cryptoFunctionService: CryptoFunctionService;
-
-    beforeEach(() => {
-      encryptionService = mock<EncryptService>();
-      cryptoFunctionService = mock<CryptoFunctionService>();
-      service = new OsBiometricsServiceWindows(
-        mock<I18nService>(),
-        windowMain,
-        mock<LogService>(),
-        biometricStateService,
-        encryptionService,
-        cryptoFunctionService,
-      );
-    });
-
-    it("should return null if getRequirePasswordOnRestart is false", async () => {
-      biometricStateService.getRequirePasswordOnStart = jest.fn().mockResolvedValue(false);
-      const result = await service.getOrCreateBiometricEncryptionClientKeyHalf(userId, key);
-      expect(result).toBeNull();
-    });
-
     it("should return cached key half if already present", async () => {
-      biometricStateService.getRequirePasswordOnStart = jest.fn().mockResolvedValue(true);
       const cachedKeyHalf = new Uint8Array([10, 20, 30]);
       (service as any).clientKeyHalves.set(userId.toString(), cachedKeyHalf);
       const result = await service.getOrCreateBiometricEncryptionClientKeyHalf(userId, key);
@@ -116,7 +98,6 @@ describe("OsBiometricsServiceWindows", () => {
     });
 
     it("should decrypt and return existing encrypted client key half", async () => {
-      biometricStateService.getRequirePasswordOnStart = jest.fn().mockResolvedValue(true);
       biometricStateService.getEncryptedClientKeyHalf = jest
         .fn()
         .mockResolvedValue(new Uint8Array([1, 2, 3]));
@@ -132,7 +113,6 @@ describe("OsBiometricsServiceWindows", () => {
     });
 
     it("should generate, encrypt, store, and cache a new key half if none exists", async () => {
-      biometricStateService.getRequirePasswordOnStart = jest.fn().mockResolvedValue(true);
       biometricStateService.getEncryptedClientKeyHalf = jest.fn().mockResolvedValue(null);
       const randomBytes = new Uint8Array([7, 8, 9]);
       cryptoFunctionService.randomBytes = jest.fn().mockResolvedValue(randomBytes);
@@ -148,101 +128,251 @@ describe("OsBiometricsServiceWindows", () => {
         encrypted,
         userId,
       );
-      expect(result).toBeNull();
-      expect((service as any).clientKeyHalves.get(userId.toString())).toBeNull();
+      expect(result).toEqual(randomBytes);
+      expect((service as any).clientKeyHalves.get(userId.toString())).toEqual(randomBytes);
     });
   });
 
+  describe("supportsBiometrics", () => {
+    it("should return true if biometrics are available", async () => {
+      biometrics.available = jest.fn().mockResolvedValue(true);
+
+      const result = await service.supportsBiometrics();
+
+      expect(result).toBe(true);
+    });
+
+    it("should return false if biometrics are not available", async () => {
+      biometrics.available = jest.fn().mockResolvedValue(false);
+
+      const result = await service.supportsBiometrics();
+
+      expect(result).toBe(false);
+    });
+  });
+
+  describe("getBiometricKey", () => {
+    beforeEach(() => {
+      biometrics.prompt = jest.fn().mockResolvedValue(true);
+    });
+
+    it("should return null when unsuccessfully authenticated biometrics", async () => {
+      biometrics.prompt = jest.fn().mockResolvedValue(false);
+
+      const result = await service.getBiometricKey(userId);
+
+      expect(result).toBeNull();
+    });
+
+    it.each([null, undefined, ""])(
+      "should throw error when no biometric key is found '%s'",
+      async (password) => {
+        passwords.getPassword = jest.fn().mockResolvedValue(password);
+
+        await expect(service.getBiometricKey(userId)).rejects.toThrow(
+          "Biometric key not found for user",
+        );
+
+        expect(passwords.getPassword).toHaveBeenCalledWith(serviceKey, storageKey);
+      },
+    );
+
+    it.each([[false], [true]])(
+      "should return the biometricKey and setBiometricSecret called if password is not encrypted and cached clientKeyHalves is %s",
+      async (haveClientKeyHalves) => {
+        const clientKeyHalveBytes = new Uint8Array([1, 2, 3]);
+        if (haveClientKeyHalves) {
+          service["clientKeyHalves"].set(userId, clientKeyHalveBytes);
+        }
+        const biometricKey = key.toBase64();
+        passwords.getPassword = jest.fn().mockResolvedValue(biometricKey);
+        biometrics.deriveKeyMaterial = jest.fn().mockResolvedValue({
+          keyB64: "testKeyB64",
+          ivB64: "testIvB64",
+        } satisfies OsDerivedKey);
+
+        const result = await service.getBiometricKey(userId);
+
+        expect(result.toBase64()).toBe(biometricKey);
+        expect(passwords.getPassword).toHaveBeenCalledWith(serviceKey, storageKey);
+        expect(biometrics.setBiometricSecret).toHaveBeenCalledWith(
+          serviceKey,
+          storageKey,
+          biometricKey,
+          {
+            osKeyPartB64: "testKeyB64",
+            clientKeyPartB64: haveClientKeyHalves
+              ? Utils.fromBufferToB64(clientKeyHalveBytes)
+              : undefined,
+          },
+          "testIvB64",
+        );
+      },
+    );
+
+    it.each([[false], [true]])(
+      "should return the biometricKey if password is encrypted and cached clientKeyHalves is %s",
+      async (haveClientKeyHalves) => {
+        const clientKeyHalveBytes = new Uint8Array([1, 2, 3]);
+        if (haveClientKeyHalves) {
+          service["clientKeyHalves"].set(userId, clientKeyHalveBytes);
+        }
+        const biometricKey = key.toBase64();
+        const biometricKeyEncrypted = "2.testId|data|mac";
+        passwords.getPassword = jest.fn().mockResolvedValue(biometricKeyEncrypted);
+        biometrics.getBiometricSecret = jest.fn().mockResolvedValue(biometricKey);
+        biometrics.deriveKeyMaterial = jest.fn().mockResolvedValue({
+          keyB64: "testKeyB64",
+          ivB64: "testIvB64",
+        } satisfies OsDerivedKey);
+
+        const result = await service.getBiometricKey(userId);
+
+        expect(result.toBase64()).toBe(biometricKey);
+        expect(passwords.getPassword).toHaveBeenCalledWith(serviceKey, storageKey);
+        expect(biometrics.setBiometricSecret).not.toHaveBeenCalled();
+        expect(biometrics.getBiometricSecret).toHaveBeenCalledWith(serviceKey, storageKey, {
+          osKeyPartB64: "testKeyB64",
+          clientKeyPartB64: haveClientKeyHalves
+            ? Utils.fromBufferToB64(clientKeyHalveBytes)
+            : undefined,
+        });
+      },
+    );
+  });
+
   describe("deleteBiometricKey", () => {
     const serviceName = "Bitwarden_biometric";
     const keyName = "test-user-id_user_biometric";
-    const witnessKeyName = "test-user-id_user_biometric_witness";
 
     it("should delete biometric key successfully", async () => {
-      await service.deleteBiometricKey(mockUserId);
+      await service.deleteBiometricKey(userId);
 
       expect(passwords.deletePassword).toHaveBeenCalledWith(serviceName, keyName);
-      expect(passwords.deletePassword).toHaveBeenCalledWith(serviceName, witnessKeyName);
     });
 
-    it.each([
-      [false, false],
-      [false, true],
-      [true, false],
-    ])(
-      "should not throw error if key found: %s and witness key found: %s",
-      async (keyFound, witnessKeyFound) => {
-        passwords.deletePassword = jest.fn().mockImplementation((_, account) => {
-          if (account === keyName) {
-            if (!keyFound) {
-              throw new Error(passwords.PASSWORD_NOT_FOUND);
-            }
-            return Promise.resolve();
-          }
-          if (account === witnessKeyName) {
-            if (!witnessKeyFound) {
-              throw new Error(passwords.PASSWORD_NOT_FOUND);
-            }
-            return Promise.resolve();
-          }
-          throw new Error("Unexpected key");
-        });
+    it.each([[false], [true]])("should not throw error if key found: %s", async (keyFound) => {
+      if (!keyFound) {
+        passwords.deletePassword = jest
+          .fn()
+          .mockRejectedValue(new Error(passwords.PASSWORD_NOT_FOUND));
+      }
 
-        await service.deleteBiometricKey(mockUserId);
+      await service.deleteBiometricKey(userId);
 
-        expect(passwords.deletePassword).toHaveBeenCalledWith(serviceName, keyName);
-        expect(passwords.deletePassword).toHaveBeenCalledWith(serviceName, witnessKeyName);
-        if (!keyFound) {
-          expect(logService.debug).toHaveBeenCalledWith(
-            "[OsBiometricService] Biometric key %s not found for service %s.",
-            keyName,
-            serviceName,
-          );
-        }
-        if (!witnessKeyFound) {
-          expect(logService.debug).toHaveBeenCalledWith(
-            "[OsBiometricService] Biometric witness key %s not found for service %s.",
-            witnessKeyName,
-            serviceName,
-          );
-        }
-      },
-    );
+      expect(passwords.deletePassword).toHaveBeenCalledWith(serviceName, keyName);
+      if (!keyFound) {
+        expect(logService.debug).toHaveBeenCalledWith(
+          "[OsBiometricService] Biometric key %s not found for service %s.",
+          keyName,
+          serviceName,
+        );
+      }
+    });
 
     it("should throw error when deletePassword for key throws unexpected errors", async () => {
       const error = new Error("Unexpected error");
-      passwords.deletePassword = jest.fn().mockImplementation((_, account) => {
-        if (account === keyName) {
-          throw error;
-        }
-        if (account === witnessKeyName) {
-          return Promise.resolve();
-        }
-        throw new Error("Unexpected key");
-      });
+      passwords.deletePassword = jest.fn().mockRejectedValue(error);
 
-      await expect(service.deleteBiometricKey(mockUserId)).rejects.toThrow(error);
+      await expect(service.deleteBiometricKey(userId)).rejects.toThrow(error);
 
       expect(passwords.deletePassword).toHaveBeenCalledWith(serviceName, keyName);
-      expect(passwords.deletePassword).not.toHaveBeenCalledWith(serviceName, witnessKeyName);
+    });
+  });
+
+  describe("authenticateBiometric", () => {
+    const hwnd = randomBytes(32).buffer;
+    const consentMessage = "Test Windows Hello Consent Message";
+
+    beforeEach(() => {
+      windowMain.win.getNativeWindowHandle = jest.fn().mockReturnValue(hwnd);
+      i18nService.t.mockReturnValue(consentMessage);
     });
 
-    it("should throw error when deletePassword for witness key throws unexpected errors", async () => {
-      const error = new Error("Unexpected error");
-      passwords.deletePassword = jest.fn().mockImplementation((_, account) => {
-        if (account === keyName) {
-          return Promise.resolve();
-        }
-        if (account === witnessKeyName) {
-          throw error;
-        }
-        throw new Error("Unexpected key");
-      });
+    it("should return true when biometric authentication is successful", async () => {
+      const result = await service.authenticateBiometric();
 
-      await expect(service.deleteBiometricKey(mockUserId)).rejects.toThrow(error);
+      expect(result).toBe(true);
+      expect(biometrics.prompt).toHaveBeenCalledWith(hwnd, consentMessage);
+    });
 
-      expect(passwords.deletePassword).toHaveBeenCalledWith(serviceName, keyName);
-      expect(passwords.deletePassword).toHaveBeenCalledWith(serviceName, witnessKeyName);
+    it("should return false when biometric authentication fails", async () => {
+      biometrics.prompt = jest.fn().mockResolvedValue(false);
+
+      const result = await service.authenticateBiometric();
+
+      expect(result).toBe(false);
+      expect(biometrics.prompt).toHaveBeenCalledWith(hwnd, consentMessage);
+    });
+  });
+
+  describe("getStorageDetails", () => {
+    it.each([
+      ["testClientKeyHalfB64", "testIvB64"],
+      [undefined, "testIvB64"],
+      ["testClientKeyHalfB64", null],
+      [undefined, null],
+    ])(
+      "should derive key material and ivB64 and return it when os key half not saved yet",
+      async (clientKeyHalfB64, ivB64) => {
+        service["setIv"](ivB64);
+
+        const derivedKeyMaterial = {
+          keyB64: "derivedKeyB64",
+          ivB64: "derivedIvB64",
+        };
+        biometrics.deriveKeyMaterial = jest.fn().mockResolvedValue(derivedKeyMaterial);
+
+        const result = await service["getStorageDetails"]({ clientKeyHalfB64 });
+
+        expect(result).toEqual({
+          key_material: {
+            osKeyPartB64: derivedKeyMaterial.keyB64,
+            clientKeyPartB64: clientKeyHalfB64,
+          },
+          ivB64: derivedKeyMaterial.ivB64,
+        });
+        expect(biometrics.deriveKeyMaterial).toHaveBeenCalledWith(ivB64);
+        expect(service["_osKeyHalf"]).toEqual(derivedKeyMaterial.keyB64);
+        expect(service["_iv"]).toEqual(derivedKeyMaterial.ivB64);
+      },
+    );
+
+    it("should throw an error when deriving key material and returned iv is null", async () => {
+      service["setIv"]("testIvB64");
+
+      const derivedKeyMaterial = {
+        keyB64: "derivedKeyB64",
+        ivB64: null as string | undefined | null,
+      };
+      biometrics.deriveKeyMaterial = jest.fn().mockResolvedValue(derivedKeyMaterial);
+
+      await expect(
+        service["getStorageDetails"]({ clientKeyHalfB64: "testClientKeyHalfB64" }),
+      ).rejects.toThrow("Initialization Vector is null");
+
+      expect(biometrics.deriveKeyMaterial).toHaveBeenCalledWith("testIvB64");
+    });
+  });
+
+  describe("setIv", () => {
+    it("should set the iv and reset the osKeyHalf", () => {
+      const iv = "testIv";
+      service["_osKeyHalf"] = "testOsKeyHalf";
+
+      service["setIv"](iv);
+
+      expect(service["_iv"]).toBe(iv);
+      expect(service["_osKeyHalf"]).toBeNull();
+    });
+
+    it("should set the iv to null when iv is undefined and reset the osKeyHalf", () => {
+      service["_osKeyHalf"] = "testOsKeyHalf";
+
+      service["setIv"](undefined);
+
+      expect(service["_iv"]).toBeNull();
+      expect(service["_osKeyHalf"]).toBeNull();
     });
   });
 });
diff --git a/apps/desktop/src/key-management/biometrics/os-biometrics-windows.service.ts b/apps/desktop/src/key-management/biometrics/os-biometrics-windows.service.ts
index 65abced1526..897304c9f61 100644
--- a/apps/desktop/src/key-management/biometrics/os-biometrics-windows.service.ts
+++ b/apps/desktop/src/key-management/biometrics/os-biometrics-windows.service.ts
@@ -3,7 +3,6 @@ import { EncryptService } from "@bitwarden/common/key-management/crypto/abstract
 import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
-import { EncryptionType } from "@bitwarden/common/platform/enums";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import { UserId } from "@bitwarden/common/types/guid";
@@ -14,10 +13,8 @@ import { WindowMain } from "../../main/window.main";
 
 import { OsBiometricService } from "./os-biometrics.service";
 
-const KEY_WITNESS_SUFFIX = "_witness";
-const WITNESS_VALUE = "known key";
-
 const SERVICE = "Bitwarden_biometric";
+
 function getLookupKeyForUser(userId: UserId): string {
   return `${userId}_user_biometric`;
 }
@@ -43,18 +40,25 @@ export default class OsBiometricsServiceWindows implements OsBiometricService {
   }
 
   async getBiometricKey(userId: UserId): Promise<SymmetricCryptoKey | null> {
-    const value = await passwords.getPassword(SERVICE, getLookupKeyForUser(userId));
-    let clientKeyHalfB64: string | null = null;
-    if (this.clientKeyHalves.has(userId)) {
-      clientKeyHalfB64 = Utils.fromBufferToB64(this.clientKeyHalves.get(userId));
+    const success = await this.authenticateBiometric();
+    if (!success) {
+      return null;
     }
 
+    const value = await passwords.getPassword(SERVICE, getLookupKeyForUser(userId));
     if (value == null || value == "") {
-      return null;
-    } else if (!EncString.isSerializedEncString(value)) {
+      throw new Error("Biometric key not found for user");
+    }
+
+    let clientKeyHalfB64: string | null = null;
+    if (this.clientKeyHalves.has(userId)) {
+      clientKeyHalfB64 = Utils.fromBufferToB64(this.clientKeyHalves.get(userId)!);
+    }
+
+    if (!EncString.isSerializedEncString(value)) {
       // Update to format encrypted with client key half
       const storageDetails = await this.getStorageDetails({
-        clientKeyHalfB64: clientKeyHalfB64,
+        clientKeyHalfB64: clientKeyHalfB64 ?? undefined,
       });
 
       await biometrics.setBiometricSecret(
@@ -69,7 +73,7 @@ export default class OsBiometricsServiceWindows implements OsBiometricService {
       const encValue = new EncString(value);
       this.setIv(encValue.iv);
       const storageDetails = await this.getStorageDetails({
-        clientKeyHalfB64: clientKeyHalfB64,
+        clientKeyHalfB64: clientKeyHalfB64 ?? undefined,
       });
       return SymmetricCryptoKey.fromString(
         await biometrics.getBiometricSecret(
@@ -84,35 +88,16 @@ export default class OsBiometricsServiceWindows implements OsBiometricService {
   async setBiometricKey(userId: UserId, key: SymmetricCryptoKey): Promise<void> {
     const clientKeyHalf = await this.getOrCreateBiometricEncryptionClientKeyHalf(userId, key);
 
-    if (
-      await this.valueUpToDate({
-        value: key,
-        clientKeyPartB64: Utils.fromBufferToB64(clientKeyHalf),
-        service: SERVICE,
-        storageKey: getLookupKeyForUser(userId),
-      })
-    ) {
-      return;
-    }
-
     const storageDetails = await this.getStorageDetails({
       clientKeyHalfB64: Utils.fromBufferToB64(clientKeyHalf),
     });
-    const storedValue = await biometrics.setBiometricSecret(
+    await biometrics.setBiometricSecret(
       SERVICE,
       getLookupKeyForUser(userId),
       key.toBase64(),
       storageDetails.key_material,
       storageDetails.ivB64,
     );
-    const parsedStoredValue = new EncString(storedValue);
-    await this.storeValueWitness(
-      key,
-      parsedStoredValue,
-      SERVICE,
-      getLookupKeyForUser(userId),
-      Utils.fromBufferToB64(clientKeyHalf),
-    );
   }
 
   async deleteBiometricKey(userId: UserId): Promise<void> {
@@ -129,21 +114,11 @@ export default class OsBiometricsServiceWindows implements OsBiometricService {
         throw e;
       }
     }
-    try {
-      await passwords.deletePassword(SERVICE, getLookupKeyForUser(userId) + KEY_WITNESS_SUFFIX);
-    } catch (e) {
-      if (e instanceof Error && e.message === passwords.PASSWORD_NOT_FOUND) {
-        this.logService.debug(
-          "[OsBiometricService] Biometric witness key %s not found for service %s.",
-          getLookupKeyForUser(userId) + KEY_WITNESS_SUFFIX,
-          SERVICE,
-        );
-      } else {
-        throw e;
-      }
-    }
   }
 
+  /**
+   * Prompts Windows Hello
+   */
   async authenticateBiometric(): Promise<boolean> {
     const hwnd = this.windowMain.win.getNativeWindowHandle();
     return await biometrics.prompt(hwnd, this.i18nService.t("windowsHelloConsentMessage"));
@@ -155,7 +130,6 @@ export default class OsBiometricsServiceWindows implements OsBiometricService {
     clientKeyHalfB64: string | undefined;
   }): Promise<{ key_material: biometrics.KeyMaterial; ivB64: string }> {
     if (this._osKeyHalf == null) {
-      // Prompts Windows Hello
       const keyMaterial = await biometrics.deriveKeyMaterial(this._iv);
       this._osKeyHalf = keyMaterial.keyB64;
       this._iv = keyMaterial.ivB64;
@@ -187,118 +161,6 @@ export default class OsBiometricsServiceWindows implements OsBiometricService {
     this._osKeyHalf = null;
   }
 
-  /**
-   * Stores a witness key alongside the encrypted value. This is used to determine if the value is up to date.
-   *
-   * @param unencryptedValue The key to store
-   * @param encryptedValue The encrypted value of the key to store. Used to sync IV of the witness key with the stored key.
-   * @param service The service to store the witness key under
-   * @param storageKey The key to store the witness key under. The witness key will be stored under storageKey + {@link KEY_WITNESS_SUFFIX}
-   * @returns
-   */
-  private async storeValueWitness(
-    unencryptedValue: SymmetricCryptoKey,
-    encryptedValue: EncString,
-    service: string,
-    storageKey: string,
-    clientKeyPartB64: string | undefined,
-  ) {
-    if (encryptedValue.iv == null) {
-      return;
-    }
-
-    const storageDetails = {
-      keyMaterial: this.witnessKeyMaterial(unencryptedValue, clientKeyPartB64),
-      ivB64: encryptedValue.iv,
-    };
-    await biometrics.setBiometricSecret(
-      service,
-      storageKey + KEY_WITNESS_SUFFIX,
-      WITNESS_VALUE,
-      storageDetails.keyMaterial,
-      storageDetails.ivB64,
-    );
-  }
-
-  /**
-   * Uses a witness key stored alongside the encrypted value to determine if the value is up to date.
-   * @param value The value being validated
-   * @param service The service the value is stored under
-   * @param storageKey The key the value is stored under. The witness key will be stored under storageKey + {@link KEY_WITNESS_SUFFIX}
-   * @returns Boolean indicating if the value is up to date.
-   */
-  // Uses a witness key stored alongside the encrypted value to determine if the value is up to date.
-  private async valueUpToDate({
-    value,
-    clientKeyPartB64,
-    service,
-    storageKey,
-  }: {
-    value: SymmetricCryptoKey;
-    clientKeyPartB64: string | undefined;
-    service: string;
-    storageKey: string;
-  }): Promise<boolean> {
-    const witnessKeyMaterial = this.witnessKeyMaterial(value, clientKeyPartB64);
-    if (witnessKeyMaterial == null) {
-      return false;
-    }
-
-    let witness = null;
-    try {
-      witness = await biometrics.getBiometricSecret(
-        service,
-        storageKey + KEY_WITNESS_SUFFIX,
-        witnessKeyMaterial,
-      );
-    } catch (e) {
-      if (e instanceof Error && e.message === passwords.PASSWORD_NOT_FOUND) {
-        this.logService.debug(
-          "[OsBiometricService] Biometric witness key %s not found for service %s, value is not up to date.",
-          storageKey + KEY_WITNESS_SUFFIX,
-          service,
-        );
-      } else {
-        this.logService.error(
-          "[OsBiometricService] Error retrieving witness key, assuming value is not up to date.",
-          e,
-        );
-      }
-      return false;
-    }
-
-    if (witness === WITNESS_VALUE) {
-      return true;
-    }
-
-    return false;
-  }
-
-  /** Derives a witness key from a symmetric key being stored for biometric protection */
-  private witnessKeyMaterial(
-    symmetricKey: SymmetricCryptoKey,
-    clientKeyPartB64: string | undefined,
-  ): biometrics.KeyMaterial {
-    let key = null;
-    const innerKey = symmetricKey.inner();
-    if (innerKey.type === EncryptionType.AesCbc256_HmacSha256_B64) {
-      key = Utils.fromBufferToB64(innerKey.authenticationKey);
-    } else {
-      key = Utils.fromBufferToB64(innerKey.encryptionKey);
-    }
-
-    const result = {
-      osKeyPartB64: key,
-      clientKeyPartB64,
-    };
-
-    // napi-rs fails to convert null values
-    if (result.clientKeyPartB64 == null) {
-      delete result.clientKeyPartB64;
-    }
-    return result;
-  }
-
   async needsSetup() {
     return false;
   }
@@ -312,14 +174,9 @@ export default class OsBiometricsServiceWindows implements OsBiometricService {
   async getOrCreateBiometricEncryptionClientKeyHalf(
     userId: UserId,
     key: SymmetricCryptoKey,
-  ): Promise<Uint8Array | null> {
-    const requireClientKeyHalf = await this.biometricStateService.getRequirePasswordOnStart(userId);
-    if (!requireClientKeyHalf) {
-      return null;
-    }
-
+  ): Promise<Uint8Array> {
     if (this.clientKeyHalves.has(userId)) {
-      return this.clientKeyHalves.get(userId);
+      return this.clientKeyHalves.get(userId)!;
     }
 
     // Retrieve existing key half if it exists
@@ -331,8 +188,8 @@ export default class OsBiometricsServiceWindows implements OsBiometricService {
     }
     if (clientKeyHalf == null) {
       // Set a key half if it doesn't exist
-      const keyBytes = await this.cryptoFunctionService.randomBytes(32);
-      const encKey = await this.encryptService.encryptBytes(keyBytes, key);
+      clientKeyHalf = await this.cryptoFunctionService.randomBytes(32);
+      const encKey = await this.encryptService.encryptBytes(clientKeyHalf, key);
       await this.biometricStateService.setEncryptedClientKeyHalf(encKey, userId);
     }
 
@@ -342,11 +199,6 @@ export default class OsBiometricsServiceWindows implements OsBiometricService {
   }
 
   async getBiometricsFirstUnlockStatusForUser(userId: UserId): Promise<BiometricsStatus> {
-    const requireClientKeyHalf = await this.biometricStateService.getRequirePasswordOnStart(userId);
-    if (!requireClientKeyHalf) {
-      return BiometricsStatus.Available;
-    }
-
     if (this.clientKeyHalves.has(userId)) {
       return BiometricsStatus.Available;
     } else {
diff --git a/apps/desktop/src/locales/en/messages.json b/apps/desktop/src/locales/en/messages.json
index 1ad0dcf308f..e5e6dcb2882 100644
--- a/apps/desktop/src/locales/en/messages.json
+++ b/apps/desktop/src/locales/en/messages.json
@@ -1813,9 +1813,6 @@
   "unlockWithWindowsHello": {
     "message": "Unlock with Windows Hello"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Additional Windows Hello settings"
-  },
   "unlockWithPolkit": {
     "message": "Unlock with system authentication"
   },
@@ -1831,12 +1828,6 @@
   "touchIdConsentMessage": {
     "message": "unlock your vault"
   },
-  "autoPromptWindowsHello": {
-    "message": "Ask for Windows Hello on app start"
-  },
-  "autoPromptPolkit": {
-    "message": "Ask for system authentication on launch"
-  },
   "autoPromptTouchId": {
     "message": "Ask for Touch ID on app start"
   },
@@ -1846,9 +1837,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Require password on app start"
   },
-  "recommendedForSecurity": {
-    "message": "Recommended for security."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Lock with master password on restart"
   },
diff --git a/apps/desktop/src/main.ts b/apps/desktop/src/main.ts
index eee5e3c84f2..9b5aa0b31e9 100644
--- a/apps/desktop/src/main.ts
+++ b/apps/desktop/src/main.ts
@@ -201,6 +201,16 @@ export class Main {
       this.logService,
       true,
     );
+
+    this.windowMain = new WindowMain(
+      biometricStateService,
+      this.logService,
+      this.storageService,
+      this.desktopSettingsService,
+      (arg) => this.processDeepLink(arg),
+      (win) => this.trayMain.setupWindowListeners(win),
+    );
+
     this.biometricsService = new MainBiometricsService(
       this.i18nService,
       this.windowMain,
@@ -211,14 +221,6 @@ export class Main {
       this.mainCryptoFunctionService,
     );
 
-    this.windowMain = new WindowMain(
-      biometricStateService,
-      this.logService,
-      this.storageService,
-      this.desktopSettingsService,
-      (arg) => this.processDeepLink(arg),
-      (win) => this.trayMain.setupWindowListeners(win),
-    );
     this.messagingMain = new MessagingMain(this, this.desktopSettingsService);
     this.updaterMain = new UpdaterMain(this.i18nService, this.windowMain);
 
diff --git a/apps/desktop/tsconfig.json b/apps/desktop/tsconfig.json
index 7db3e84e451..70a59ad164c 100644
--- a/apps/desktop/tsconfig.json
+++ b/apps/desktop/tsconfig.json
@@ -3,5 +3,6 @@
   "angularCompilerOptions": {
     "strictTemplates": true
   },
-  "include": ["src", "../../libs/common/src/key-management/crypto/services/encrypt.worker.ts"]
+  "include": ["src", "../../libs/common/src/key-management/crypto/services/encrypt.worker.ts"],
+  "exclude": ["src/**/*.spec.ts"]
 }

From 8365efb47324524562af02ee4994f4e5c59cbc3a Mon Sep 17 00:00:00 2001
From: Bryan Cunningham <bcunningham@bitwarden.com>
Date: Mon, 21 Jul 2025 14:04:21 -0400
Subject: [PATCH 183/239] remove absolute positioning of radio indicator
 (#15623)

---
 libs/components/src/radio-button/radio-input.component.ts | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/libs/components/src/radio-button/radio-input.component.ts b/libs/components/src/radio-button/radio-input.component.ts
index 6140969d651..33100db1679 100644
--- a/libs/components/src/radio-button/radio-input.component.ts
+++ b/libs/components/src/radio-button/radio-input.component.ts
@@ -32,6 +32,7 @@ export class RadioInputComponent implements BitFormControlAbstraction {
     "tw-border-secondary-600",
     "tw-w-[1.12rem]",
     "tw-h-[1.12rem]",
+    "!tw-p-[.125rem]",
     "tw-flex-none", // Flexbox fix for bit-form-control
 
     "hover:tw-border-2",
@@ -45,9 +46,8 @@ export class RadioInputComponent implements BitFormControlAbstraction {
     "before:tw-content-['']",
     "before:tw-transition",
     "before:tw-block",
-    "before:tw-absolute",
     "before:tw-rounded-full",
-    "before:tw-inset-[2px]",
+    "before:tw-size-full",
 
     "disabled:tw-cursor-auto",
     "disabled:tw-bg-secondary-100",

From b33bdd60aec8674bdd2c059c39252941df82ecfa Mon Sep 17 00:00:00 2001
From: Vijay Oommen <voommen@livefront.com>
Date: Mon, 21 Jul 2025 13:45:48 -0500
Subject: [PATCH 184/239] [PM-23758] Api method to save and retrieve report
 summary (#15705)

---
 .../risk-insights/models/password-health.ts   |  7 ++
 .../risk-insights-api.service.spec.ts         | 83 +++++++++++++++++++
 .../services/risk-insights-api.service.ts     | 45 ++++++++++
 3 files changed, 135 insertions(+)
 create mode 100644 bitwarden_license/bit-common/src/dirt/reports/risk-insights/services/risk-insights-api.service.spec.ts
 create mode 100644 bitwarden_license/bit-common/src/dirt/reports/risk-insights/services/risk-insights-api.service.ts

diff --git a/bitwarden_license/bit-common/src/dirt/reports/risk-insights/models/password-health.ts b/bitwarden_license/bit-common/src/dirt/reports/risk-insights/models/password-health.ts
index 62eb0122dca..6be24d60b89 100644
--- a/bitwarden_license/bit-common/src/dirt/reports/risk-insights/models/password-health.ts
+++ b/bitwarden_license/bit-common/src/dirt/reports/risk-insights/models/password-health.ts
@@ -158,6 +158,13 @@ export interface PasswordHealthReportApplicationsRequest {
   url: string;
 }
 
+export interface EncryptedDataModel {
+  organizationId: OrganizationId;
+  encryptedData: string;
+  encryptionKey: string;
+  date: Date;
+}
+
 // FIXME: update to use a const object instead of a typescript enum
 // eslint-disable-next-line @bitwarden/platform/no-enums
 export enum DrawerType {
diff --git a/bitwarden_license/bit-common/src/dirt/reports/risk-insights/services/risk-insights-api.service.spec.ts b/bitwarden_license/bit-common/src/dirt/reports/risk-insights/services/risk-insights-api.service.spec.ts
new file mode 100644
index 00000000000..ef9fc768944
--- /dev/null
+++ b/bitwarden_license/bit-common/src/dirt/reports/risk-insights/services/risk-insights-api.service.spec.ts
@@ -0,0 +1,83 @@
+import { mock } from "jest-mock-extended";
+
+import { ApiService } from "@bitwarden/common/abstractions/api.service";
+
+import { EncryptedDataModel } from "../models/password-health";
+
+import { RiskInsightsApiService } from "./risk-insights-api.service";
+
+describe("RiskInsightsApiService", () => {
+  let service: RiskInsightsApiService;
+  const mockApiService = mock<ApiService>();
+
+  beforeEach(() => {
+    service = new RiskInsightsApiService(mockApiService);
+  });
+
+  it("should be created", () => {
+    expect(service).toBeTruthy();
+  });
+
+  describe("getRiskInsightsSummary", () => {
+    it("should call apiService.send with correct parameters and return an Observable", (done) => {
+      const orgId = "org123";
+      const minDate = new Date("2024-01-01");
+      const maxDate = new Date("2024-01-31");
+      const mockResponse: EncryptedDataModel[] = [{ encryptedData: "abc" } as EncryptedDataModel];
+
+      mockApiService.send.mockResolvedValueOnce(mockResponse);
+
+      service.getRiskInsightsSummary(orgId, minDate, maxDate).subscribe((result) => {
+        expect(mockApiService.send).toHaveBeenCalledWith(
+          "GET",
+          `organization-report-summary/org123?from=2024-01-01&to=2024-01-31`,
+          null,
+          true,
+          true,
+        );
+        expect(result).toEqual(mockResponse);
+        done();
+      });
+    });
+  });
+
+  describe("saveRiskInsightsSummary", () => {
+    it("should call apiService.send with correct parameters and return an Observable", (done) => {
+      const data: EncryptedDataModel = { encryptedData: "xyz" } as EncryptedDataModel;
+
+      mockApiService.send.mockResolvedValueOnce(undefined);
+
+      service.saveRiskInsightsSummary(data).subscribe((result) => {
+        expect(mockApiService.send).toHaveBeenCalledWith(
+          "POST",
+          "organization-report-summary",
+          data,
+          true,
+          true,
+        );
+        expect(result).toBeUndefined();
+        done();
+      });
+    });
+  });
+
+  describe("updateRiskInsightsSummary", () => {
+    it("should call apiService.send with correct parameters and return an Observable", (done) => {
+      const data: EncryptedDataModel = { encryptedData: "xyz" } as EncryptedDataModel;
+
+      mockApiService.send.mockResolvedValueOnce(undefined);
+
+      service.updateRiskInsightsSummary(data).subscribe((result) => {
+        expect(mockApiService.send).toHaveBeenCalledWith(
+          "PUT",
+          "organization-report-summary",
+          data,
+          true,
+          true,
+        );
+        expect(result).toBeUndefined();
+        done();
+      });
+    });
+  });
+});
diff --git a/bitwarden_license/bit-common/src/dirt/reports/risk-insights/services/risk-insights-api.service.ts b/bitwarden_license/bit-common/src/dirt/reports/risk-insights/services/risk-insights-api.service.ts
new file mode 100644
index 00000000000..0d69947b826
--- /dev/null
+++ b/bitwarden_license/bit-common/src/dirt/reports/risk-insights/services/risk-insights-api.service.ts
@@ -0,0 +1,45 @@
+import { from, Observable } from "rxjs";
+
+import { ApiService } from "@bitwarden/common/abstractions/api.service";
+
+import { EncryptedDataModel } from "../models/password-health";
+
+export class RiskInsightsApiService {
+  constructor(private apiService: ApiService) {}
+
+  getRiskInsightsSummary(
+    orgId: string,
+    minDate: Date,
+    maxDate: Date,
+  ): Observable<EncryptedDataModel[]> {
+    const minDateStr = minDate.toISOString().split("T")[0];
+    const maxDateStr = maxDate.toISOString().split("T")[0];
+    const dbResponse = this.apiService.send(
+      "GET",
+      `organization-report-summary/${orgId.toString()}?from=${minDateStr}&to=${maxDateStr}`,
+      null,
+      true,
+      true,
+    );
+
+    return from(dbResponse as Promise<EncryptedDataModel[]>);
+  }
+
+  saveRiskInsightsSummary(data: EncryptedDataModel): Observable<void> {
+    const dbResponse = this.apiService.send(
+      "POST",
+      "organization-report-summary",
+      data,
+      true,
+      true,
+    );
+
+    return from(dbResponse as Promise<void>);
+  }
+
+  updateRiskInsightsSummary(data: EncryptedDataModel): Observable<void> {
+    const dbResponse = this.apiService.send("PUT", "organization-report-summary", data, true, true);
+
+    return from(dbResponse as Promise<void>);
+  }
+}

From 83f9061474f54cbb4923f907d3bd83396ad6a0c1 Mon Sep 17 00:00:00 2001
From: Andy Pixley <3723676+pixman20@users.noreply.github.com>
Date: Mon, 21 Jul 2025 15:54:28 -0400
Subject: [PATCH 185/239] [BRE-831] migrate secrets akv (#15158)

---
 .github/workflows/build-browser-target.yml    |   5 +
 .github/workflows/build-browser.yml           |  60 ++++++--
 .github/workflows/build-cli-target.yml        |   5 +
 .github/workflows/build-cli.yml               |  61 ++++++--
 .github/workflows/build-desktop-target.yml    |   5 +
 .github/workflows/build-desktop.yml           | 136 ++++++++++++++----
 .github/workflows/build-web-target.yml        |   6 +
 .github/workflows/build-web.yml               |  60 +++++---
 .github/workflows/chromatic.yml               |  26 +++-
 .github/workflows/crowdin-pull.yml            |  41 ++++--
 .github/workflows/deploy-web.yml              |  77 ++++++----
 .github/workflows/lint-crowdin-config.yml     |  22 ++-
 .github/workflows/publish-cli.yml             |  53 +++++--
 .github/workflows/publish-desktop.yml         |  50 +++++--
 .github/workflows/publish-web.yml             |  30 +++-
 .github/workflows/release-desktop-beta.yml    | 112 ++++++++++++---
 .github/workflows/repository-management.yml   |  54 ++++++-
 .../retrieve-current-desktop-rollout.yml      |  13 +-
 .github/workflows/staged-rollout-desktop.yml  |  13 +-
 .github/workflows/version-auto-bump.yml       |  24 +++-
 20 files changed, 680 insertions(+), 173 deletions(-)

diff --git a/.github/workflows/build-browser-target.yml b/.github/workflows/build-browser-target.yml
index a2ae48d419b..ef3beef4b8b 100644
--- a/.github/workflows/build-browser-target.yml
+++ b/.github/workflows/build-browser-target.yml
@@ -28,6 +28,8 @@ jobs:
   check-run:
     name: Check PR run
     uses: bitwarden/gh-actions/.github/workflows/check-run.yml@main
+    permissions:
+      contents: read
 
   run-workflow:
     name: Build Browser
@@ -35,4 +37,7 @@ jobs:
     if: ${{ github.event.pull_request.head.repo.full_name != github.repository }}
     uses: ./.github/workflows/build-browser.yml
     secrets: inherit
+    permissions:
+      contents: read
+      id-token: write
 
diff --git a/.github/workflows/build-browser.yml b/.github/workflows/build-browser.yml
index 40b03d9e753..bd7d70e8543 100644
--- a/.github/workflows/build-browser.yml
+++ b/.github/workflows/build-browser.yml
@@ -41,7 +41,8 @@ defaults:
   run:
     shell: bash
 
-permissions: {}
+permissions:
+  contents: read
 
 jobs:
   setup:
@@ -77,10 +78,8 @@ jobs:
 
       - name: Check secrets
         id: check-secrets
-        env:
-          AZURE_KV_CI_SERVICE_PRINCIPAL: ${{ secrets.AZURE_KV_CI_SERVICE_PRINCIPAL }}
         run: |
-          has_secrets=${{ secrets.AZURE_KV_CI_SERVICE_PRINCIPAL != '' }}
+          has_secrets=${{ secrets.AZURE_CLIENT_ID != '' }}
           echo "has_secrets=$has_secrets" >> $GITHUB_OUTPUT
 
 
@@ -302,6 +301,9 @@ jobs:
   build-safari:
     name: Build Safari
     runs-on: macos-13
+    permissions:
+      contents: read
+      id-token: write
     needs:
       - setup
       - locales-test
@@ -327,10 +329,19 @@ jobs:
           node --version
           npm --version
 
-      - name: Login to Azure
-        uses: Azure/login@e15b166166a8746d1a47596803bd8c1b595455cf # v1.6.0
+      - name: Log in to Azure
+        uses: bitwarden/gh-actions/azure-login@main
         with:
-          creds: ${{ secrets.AZURE_KV_CI_SERVICE_PRINCIPAL }}
+          subscription_id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+          tenant_id: ${{ secrets.AZURE_TENANT_ID }}
+          client_id: ${{ secrets.AZURE_CLIENT_ID }}
+
+      - name: Get Azure Key Vault secrets
+        id: get-kv-secrets
+        uses: bitwarden/gh-actions/get-keyvault-secrets@main
+        with:
+          keyvault: gh-clients
+          secrets: "KEYCHAIN-PASSWORD"
 
       - name: Download Provisioning Profiles secrets
         env:
@@ -366,9 +377,12 @@ jobs:
           az keyvault secret show --id https://bitwarden-ci.vault.azure.net/certificates/macdev-cert |
             jq -r .value | base64 -d > $HOME/certificates/macdev-cert.p12
 
+      - name: Log out from Azure
+        uses: bitwarden/gh-actions/azure-logout@main
+
       - name: Set up keychain
         env:
-          KEYCHAIN_PASSWORD: ${{ secrets.KEYCHAIN_PASSWORD }}
+          KEYCHAIN_PASSWORD: ${{ steps.get-kv-secrets.outputs.KEYCHAIN-PASSWORD }}
         run: |
           security create-keychain -p $KEYCHAIN_PASSWORD build.keychain
           security default-keychain -s build.keychain
@@ -440,6 +454,10 @@ jobs:
     name: Crowdin Push
     if: github.event_name != 'pull_request_target' && github.ref == 'refs/heads/main'
     runs-on: ubuntu-22.04
+    permissions:
+      contents: write
+      pull-requests: write
+      id-token: write
     needs:
       - build
       - build-safari
@@ -449,10 +467,12 @@ jobs:
         with:
           ref: ${{  github.event.pull_request.head.sha }}
 
-      - name: Login to Azure
-        uses: Azure/login@e15b166166a8746d1a47596803bd8c1b595455cf # v1.6.0
+      - name: Log in to Azure
+        uses: bitwarden/gh-actions/azure-login@main
         with:
-          creds: ${{ secrets.AZURE_KV_CI_SERVICE_PRINCIPAL }}
+          subscription_id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+          tenant_id: ${{ secrets.AZURE_TENANT_ID }}
+          client_id: ${{ secrets.AZURE_CLIENT_ID }}
 
       - name: Retrieve secrets
         id: retrieve-secrets
@@ -461,6 +481,9 @@ jobs:
           keyvault: "bitwarden-ci"
           secrets: "crowdin-api-token"
 
+      - name: Log out from Azure
+        uses: bitwarden/gh-actions/azure-logout@main
+
       - name: Upload Sources
         uses: crowdin/github-action@f214c8723025f41fc55b2ad26e67b60b80b1885d # v2.7.1
         env:
@@ -478,6 +501,9 @@ jobs:
     name: Check for failures
     if: always()
     runs-on: ubuntu-22.04
+    permissions:
+      contents: read
+      id-token: write
     needs:
       - setup
       - locales-test
@@ -493,11 +519,13 @@ jobs:
           && contains(needs.*.result, 'failure')
         run: exit 1
 
-      - name: Login to Azure - Prod Subscription
-        uses: Azure/login@e15b166166a8746d1a47596803bd8c1b595455cf # v1.6.0
+      - name: Log in to Azure
         if: failure()
+        uses: bitwarden/gh-actions/azure-login@main
         with:
-          creds: ${{ secrets.AZURE_KV_CI_SERVICE_PRINCIPAL }}
+          subscription_id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+          tenant_id: ${{ secrets.AZURE_TENANT_ID }}
+          client_id: ${{ secrets.AZURE_CLIENT_ID }}
 
       - name: Retrieve secrets
         id: retrieve-secrets
@@ -507,6 +535,10 @@ jobs:
           keyvault: "bitwarden-ci"
           secrets: "devops-alerts-slack-webhook-url"
 
+      - name: Log out from Azure
+        if: failure()
+        uses: bitwarden/gh-actions/azure-logout@main
+
       - name: Notify Slack on failure
         uses: act10ns/slack@44541246747a30eb3102d87f7a4cc5471b0ffb7d # v2.1.0
         if: failure()
diff --git a/.github/workflows/build-cli-target.yml b/.github/workflows/build-cli-target.yml
index 6b493d4e6d9..54865ddaddd 100644
--- a/.github/workflows/build-cli-target.yml
+++ b/.github/workflows/build-cli-target.yml
@@ -28,6 +28,8 @@ jobs:
   check-run:
     name: Check PR run
     uses: bitwarden/gh-actions/.github/workflows/check-run.yml@main
+    permissions:
+      contents: read
 
   run-workflow:
     name: Build CLI
@@ -35,4 +37,7 @@ jobs:
     if: ${{ github.event.pull_request.head.repo.full_name != github.repository }}
     uses: ./.github/workflows/build-cli.yml
     secrets: inherit
+    permissions:
+      contents: read
+      id-token: write
 
diff --git a/.github/workflows/build-cli.yml b/.github/workflows/build-cli.yml
index ac314a4c33a..b31b22b926e 100644
--- a/.github/workflows/build-cli.yml
+++ b/.github/workflows/build-cli.yml
@@ -78,10 +78,8 @@ jobs:
 
       - name: Check secrets
         id: check-secrets
-        env:
-          AZURE_KV_CI_SERVICE_PRINCIPAL: ${{ secrets.AZURE_KV_CI_SERVICE_PRINCIPAL }}
         run: |
-          has_secrets=${{ secrets.AZURE_KV_CI_SERVICE_PRINCIPAL != '' }}
+          has_secrets=${{ secrets.AZURE_CLIENT_ID != '' }}
           echo "has_secrets=$has_secrets" >> $GITHUB_OUTPUT
 
 
@@ -108,6 +106,10 @@ jobs:
       _NODE_VERSION: ${{ needs.setup.outputs.node_version }}
       _WIN_PKG_FETCH_VERSION: 20.11.1
       _WIN_PKG_VERSION: 3.5
+    permissions:
+      contents: read
+      id-token: write
+
     steps:
       - name: Check out repo
         uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
@@ -156,9 +158,11 @@ jobs:
 
       - name: Login to Azure
         if: ${{ matrix.os.base == 'mac' && needs.setup.outputs.has_secrets == 'true' }}
-        uses: Azure/login@e15b166166a8746d1a47596803bd8c1b595455cf # v1.6.0
+        uses: bitwarden/gh-actions/azure-login@main
         with:
-          creds: ${{ secrets.AZURE_KV_CI_SERVICE_PRINCIPAL }}
+          subscription_id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+          tenant_id: ${{ secrets.AZURE_TENANT_ID }}
+          client_id: ${{ secrets.AZURE_CLIENT_ID }}
 
       - name: Get certificates
         if: ${{ matrix.os.base == 'mac' && needs.setup.outputs.has_secrets == 'true' }}
@@ -168,10 +172,21 @@ jobs:
           az keyvault secret show --id https://bitwarden-ci.vault.azure.net/certificates/devid-app-cert |
             jq -r .value | base64 -d > $HOME/certificates/devid-app-cert.p12
 
+      - name: Get Azure Key Vault secrets
+        id: get-kv-secrets
+        if: ${{ matrix.os.base == 'mac' && needs.setup.outputs.has_secrets == 'true' }}
+        uses: bitwarden/gh-actions/get-keyvault-secrets@main
+        with:
+          keyvault: gh-clients
+          secrets: "KEYCHAIN-PASSWORD,APP-STORE-CONNECT-AUTH-KEY,APP-STORE-CONNECT-TEAM-ISSUER"
+
+      - name: Log out from Azure
+        uses: bitwarden/gh-actions/azure-logout@main
+
       - name: Set up keychain
         if: ${{ matrix.os.base == 'mac' && needs.setup.outputs.has_secrets == 'true' }}
         env:
-          KEYCHAIN_PASSWORD: ${{ secrets.KEYCHAIN_PASSWORD }}
+          KEYCHAIN_PASSWORD: ${{ steps.get-kv-secrets.outputs.KEYCHAIN-PASSWORD }}
         run: |
           security create-keychain -p $KEYCHAIN_PASSWORD build.keychain
           security default-keychain -s build.keychain
@@ -199,13 +214,13 @@ jobs:
         run: |
           mkdir ~/private_keys
           cat << EOF > ~/private_keys/AuthKey_6TV9MKN3GP.p8
-          ${{ secrets.APP_STORE_CONNECT_AUTH_KEY }}
+          ${{ steps.get-kv-secrets.outputs.APP-STORE-CONNECT-AUTH-KEY }}
           EOF
 
       - name: Notarize app
         if: ${{ matrix.os.base == 'mac' && needs.setup.outputs.has_secrets == 'true' }}
         env:
-          APP_STORE_CONNECT_TEAM_ISSUER: ${{ secrets.APP_STORE_CONNECT_TEAM_ISSUER }}
+          APP_STORE_CONNECT_TEAM_ISSUER: ${{ steps.get-kv-secrets.outputs.APP-STORE-CONNECT-TEAM-ISSUER }}
           APP_STORE_CONNECT_AUTH_KEY: 6TV9MKN3GP
           APP_STORE_CONNECT_AUTH_KEY_PATH: ~/private_keys/AuthKey_6TV9MKN3GP.p8
         run: |
@@ -261,6 +276,9 @@ jobs:
             { build_prefix: "bit", artifact_prefix: "", readable: "commercial license" }
           ]
     runs-on: windows-2022
+    permissions:
+      contents: read
+      id-token: write
     needs: setup
     env:
       _PACKAGE_VERSION: ${{ needs.setup.outputs.package_version }}
@@ -344,11 +362,13 @@ jobs:
           ResourceHacker -open version-info.rc -save version-info.res -action compile
           ResourceHacker -open %WIN_PKG_BUILT% -save %WIN_PKG_BUILT% -action addoverwrite -resource version-info.res
 
-      - name: Login to Azure
+      - name: Log in to Azure
         if: ${{ needs.setup.outputs.has_secrets == 'true' }}
-        uses: Azure/login@e15b166166a8746d1a47596803bd8c1b595455cf # v1.6.0
+        uses: bitwarden/gh-actions/azure-login@main
         with:
-          creds: ${{ secrets.AZURE_KV_CI_SERVICE_PRINCIPAL }}
+          subscription_id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+          tenant_id: ${{ secrets.AZURE_TENANT_ID }}
+          client_id: ${{ secrets.AZURE_CLIENT_ID }}
 
       - name: Retrieve secrets
         id: retrieve-secrets
@@ -362,6 +382,10 @@ jobs:
             code-signing-client-secret,
             code-signing-cert-name"
 
+      - name: Log out from Azure
+        if: ${{ needs.setup.outputs.has_secrets == 'true' }}
+        uses: bitwarden/gh-actions/azure-logout@main
+
       - name: Install
         run: npm ci
         working-directory: ./
@@ -520,6 +544,9 @@ jobs:
     name: Check for failures
     if: always()
     runs-on: ubuntu-24.04
+    permissions:
+      contents: read
+      id-token: write
     needs:
       - setup
       - cli
@@ -534,11 +561,13 @@ jobs:
           && contains(needs.*.result, 'failure')
         run: exit 1
 
-      - name: Login to Azure - Prod Subscription
-        uses: Azure/login@e15b166166a8746d1a47596803bd8c1b595455cf # v1.6.0
+      - name: Log in to Azure
         if: failure()
+        uses: bitwarden/gh-actions/azure-login@main
         with:
-          creds: ${{ secrets.AZURE_KV_CI_SERVICE_PRINCIPAL }}
+          subscription_id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+          tenant_id: ${{ secrets.AZURE_TENANT_ID }}
+          client_id: ${{ secrets.AZURE_CLIENT_ID }}
 
       - name: Retrieve secrets
         id: retrieve-secrets
@@ -548,6 +577,10 @@ jobs:
           keyvault: "bitwarden-ci"
           secrets: "devops-alerts-slack-webhook-url"
 
+      - name: Log out from Azure
+        if: failure()
+        uses: bitwarden/gh-actions/azure-logout@main
+
       - name: Notify Slack on failure
         uses: act10ns/slack@44541246747a30eb3102d87f7a4cc5471b0ffb7d # v2.1.0
         if: failure()
diff --git a/.github/workflows/build-desktop-target.yml b/.github/workflows/build-desktop-target.yml
index fa21b3fe5d9..31ac819a3e6 100644
--- a/.github/workflows/build-desktop-target.yml
+++ b/.github/workflows/build-desktop-target.yml
@@ -28,6 +28,8 @@ jobs:
   check-run:
     name: Check PR run
     uses: bitwarden/gh-actions/.github/workflows/check-run.yml@main
+    permissions:
+      contents: read
 
   run-workflow:
     name: Build Desktop
@@ -35,4 +37,7 @@ jobs:
     if: ${{ github.event.pull_request.head.repo.full_name != github.repository }}
     uses: ./.github/workflows/build-desktop.yml
     secrets: inherit
+    permissions:
+      contents: read
+      id-token: write
 
diff --git a/.github/workflows/build-desktop.yml b/.github/workflows/build-desktop.yml
index a022fe7fd0f..366d439fb45 100644
--- a/.github/workflows/build-desktop.yml
+++ b/.github/workflows/build-desktop.yml
@@ -147,10 +147,8 @@ jobs:
 
       - name: Check secrets
         id: check-secrets
-        env:
-          AZURE_KV_CI_SERVICE_PRINCIPAL: ${{ secrets.AZURE_KV_CI_SERVICE_PRINCIPAL }}
         run: |
-          has_secrets=${{ secrets.AZURE_KV_CI_SERVICE_PRINCIPAL != '' }}
+          has_secrets=${{ secrets.AZURE_CLIENT_ID != '' }}
           echo "has_secrets=$has_secrets" >> $GITHUB_OUTPUT
 
   linux:
@@ -404,6 +402,9 @@ jobs:
     runs-on: windows-2022
     needs:
       - setup
+    permissions:
+        contents: read
+        id-token: write
     defaults:
       run:
         shell: pwsh
@@ -438,11 +439,13 @@ jobs:
           choco --version
           rustup show
 
-      - name: Login to Azure
+      - name: Log in to Azure
         if: ${{ needs.setup.outputs.has_secrets == 'true' }}
-        uses: Azure/login@e15b166166a8746d1a47596803bd8c1b595455cf # v1.6.0
+        uses: bitwarden/gh-actions/azure-login@main
         with:
-          creds: ${{ secrets.AZURE_KV_CI_SERVICE_PRINCIPAL }}
+          subscription_id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+          tenant_id: ${{ secrets.AZURE_TENANT_ID }}
+          client_id: ${{ secrets.AZURE_CLIENT_ID }}
 
       - name: Retrieve secrets
         id: retrieve-secrets
@@ -456,6 +459,10 @@ jobs:
             code-signing-client-secret,
             code-signing-cert-name"
 
+      - name: Log out from Azure
+        if: ${{ needs.setup.outputs.has_secrets == 'true' }}
+        uses: bitwarden/gh-actions/azure-logout@main
+
       - name: Install Node dependencies
         run: npm ci
         working-directory: ./
@@ -655,6 +662,9 @@ jobs:
     runs-on: macos-13
     needs:
       - setup
+    permissions:
+        contents: read
+        id-token: write
     env:
       _PACKAGE_VERSION: ${{ needs.setup.outputs.package_version }}
       _NODE_VERSION: ${{ needs.setup.outputs.node_version }}
@@ -700,11 +710,21 @@ jobs:
           path: apps/browser/dist/Safari
           key: ${{ runner.os }}-${{ github.run_id }}-safari-extension
 
-      - name: Login to Azure
+      - name: Log in to Azure
         if: ${{ needs.setup.outputs.has_secrets == 'true' }}
-        uses: Azure/login@e15b166166a8746d1a47596803bd8c1b595455cf # v1.6.0
+        uses: bitwarden/gh-actions/azure-login@main
         with:
-          creds: ${{ secrets.AZURE_KV_CI_SERVICE_PRINCIPAL }}
+          subscription_id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+          tenant_id: ${{ secrets.AZURE_TENANT_ID }}
+          client_id: ${{ secrets.AZURE_CLIENT_ID }}
+
+      - name: Get Azure Key Vault secrets
+        id: get-kv-secrets
+        if: ${{ needs.setup.outputs.has_secrets == 'true' }}
+        uses: bitwarden/gh-actions/get-keyvault-secrets@main
+        with:
+          keyvault: gh-clients
+          secrets: "KEYCHAIN-PASSWORD"
 
       - name: Download Provisioning Profiles secrets
         if: ${{ needs.setup.outputs.has_secrets == 'true' }}
@@ -747,10 +767,14 @@ jobs:
           az keyvault secret show --id https://bitwarden-ci.vault.azure.net/certificates/macdev-cert |
             jq -r .value | base64 -d > $HOME/certificates/macdev-cert.p12
 
+      - name: Log out from Azure
+        if: ${{ needs.setup.outputs.has_secrets == 'true' }}
+        uses: bitwarden/gh-actions/azure-logout@main
+
       - name: Set up keychain
         if: ${{ needs.setup.outputs.has_secrets == 'true' }}
         env:
-          KEYCHAIN_PASSWORD: ${{ secrets.KEYCHAIN_PASSWORD }}
+          KEYCHAIN_PASSWORD: ${{ steps.get-kv-secrets.outputs.KEYCHAIN-PASSWORD }}
         run: |
           security create-keychain -p $KEYCHAIN_PASSWORD build.keychain
           security default-keychain -s build.keychain
@@ -850,6 +874,10 @@ jobs:
     if: ${{ needs.setup.outputs.has_secrets == 'true' }}
     uses: ./.github/workflows/build-browser.yml
     secrets: inherit
+    permissions:
+      contents: write
+      pull-requests: write
+      id-token: write
 
 
   macos-package-github:
@@ -860,6 +888,9 @@ jobs:
       - browser-build
       - macos-build
       - setup
+    permissions:
+        contents: read
+        id-token: write
     env:
       _PACKAGE_VERSION: ${{ needs.setup.outputs.package_version }}
       _NODE_VERSION: ${{ needs.setup.outputs.node_version }}
@@ -905,10 +936,19 @@ jobs:
           path: apps/browser/dist/Safari
           key: ${{ runner.os }}-${{ github.run_id }}-safari-extension
 
-      - name: Login to Azure
-        uses: Azure/login@e15b166166a8746d1a47596803bd8c1b595455cf # v1.6.0
+      - name: Log in to Azure
+        uses: bitwarden/gh-actions/azure-login@main
         with:
-          creds: ${{ secrets.AZURE_KV_CI_SERVICE_PRINCIPAL }}
+          subscription_id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+          tenant_id: ${{ secrets.AZURE_TENANT_ID }}
+          client_id: ${{ secrets.AZURE_CLIENT_ID }}
+
+      - name: Get Azure Key Vault secrets
+        id: get-kv-secrets
+        uses: bitwarden/gh-actions/get-keyvault-secrets@main
+        with:
+          keyvault: gh-clients
+          secrets: "KEYCHAIN-PASSWORD,APP-STORE-CONNECT-AUTH-KEY,APP-STORE-CONNECT-TEAM-ISSUER"
 
       - name: Download Provisioning Profiles secrets
         env:
@@ -949,9 +989,12 @@ jobs:
           az keyvault secret show --id https://bitwarden-ci.vault.azure.net/certificates/macdev-cert |
             jq -r .value | base64 -d > $HOME/certificates/macdev-cert.p12
 
+      - name: Log out from Azure
+        uses: bitwarden/gh-actions/azure-logout@main
+
       - name: Set up keychain
         env:
-          KEYCHAIN_PASSWORD: ${{ secrets.KEYCHAIN_PASSWORD }}
+          KEYCHAIN_PASSWORD: ${{ steps.get-kv-secrets.outputs.KEYCHAIN-PASSWORD }}
         run: |
           security create-keychain -p $KEYCHAIN_PASSWORD build.keychain
           security default-keychain -s build.keychain
@@ -1055,12 +1098,12 @@ jobs:
         run: |
           mkdir ~/private_keys
           cat << EOF > ~/private_keys/AuthKey_6TV9MKN3GP.p8
-          ${{ secrets.APP_STORE_CONNECT_AUTH_KEY }}
+          ${{ steps.get-kv-secrets.outputs.APP-STORE-CONNECT-AUTH-KEY }}
           EOF
 
       - name: Build application (dist)
         env:
-          APP_STORE_CONNECT_TEAM_ISSUER: ${{ secrets.APP_STORE_CONNECT_TEAM_ISSUER }}
+          APP_STORE_CONNECT_TEAM_ISSUER: ${{ steps.get-kv-secrets.outputs.APP-STORE-CONNECT-TEAM-ISSUER }}
           APP_STORE_CONNECT_AUTH_KEY: 6TV9MKN3GP
           APP_STORE_CONNECT_AUTH_KEY_PATH: ~/private_keys/AuthKey_6TV9MKN3GP.p8
           CSC_FOR_PULL_REQUEST: true
@@ -1103,6 +1146,9 @@ jobs:
       - browser-build
       - macos-build
       - setup
+    permissions:
+        contents: read
+        id-token: write
     env:
       _PACKAGE_VERSION: ${{ needs.setup.outputs.package_version }}
       _NODE_VERSION: ${{ needs.setup.outputs.node_version }}
@@ -1148,10 +1194,19 @@ jobs:
           path: apps/browser/dist/Safari
           key: ${{ runner.os }}-${{ github.run_id }}-safari-extension
 
-      - name: Login to Azure
-        uses: Azure/login@e15b166166a8746d1a47596803bd8c1b595455cf # v1.6.0
+      - name: Log in to Azure
+        uses: bitwarden/gh-actions/azure-login@main
         with:
-          creds: ${{ secrets.AZURE_KV_CI_SERVICE_PRINCIPAL }}
+          subscription_id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+          tenant_id: ${{ secrets.AZURE_TENANT_ID }}
+          client_id: ${{ secrets.AZURE_CLIENT_ID }}
+
+      - name: Get Azure Key Vault secrets
+        id: get-kv-secrets
+        uses: bitwarden/gh-actions/get-keyvault-secrets@main
+        with:
+          keyvault: gh-clients
+          secrets: "KEYCHAIN-PASSWORD,APP-STORE-CONNECT-AUTH-KEY,APP-STORE-CONNECT-TEAM-ISSUER"
 
       - name: Retrieve Slack secret
         id: retrieve-slack-secret
@@ -1199,9 +1254,12 @@ jobs:
           az keyvault secret show --id https://bitwarden-ci.vault.azure.net/certificates/macdev-cert |
             jq -r .value | base64 -d > $HOME/certificates/macdev-cert.p12
 
+      - name: Log out from Azure
+        uses: bitwarden/gh-actions/azure-logout@main
+
       - name: Set up keychain
         env:
-          KEYCHAIN_PASSWORD: ${{ secrets.KEYCHAIN_PASSWORD }}
+          KEYCHAIN_PASSWORD: ${{ steps.get-kv-secrets.outputs.KEYCHAIN-PASSWORD }}
         run: |
           security create-keychain -p $KEYCHAIN_PASSWORD build.keychain
           security default-keychain -s build.keychain
@@ -1305,12 +1363,12 @@ jobs:
         run: |
           mkdir ~/private_keys
           cat << EOF > ~/private_keys/AuthKey_6TV9MKN3GP.p8
-          ${{ secrets.APP_STORE_CONNECT_AUTH_KEY }}
+          ${{ steps.get-kv-secrets.outputs.APP-STORE-CONNECT-AUTH-KEY }}
           EOF
 
       - name: Build application for App Store
         env:
-          APP_STORE_CONNECT_TEAM_ISSUER: ${{ secrets.APP_STORE_CONNECT_TEAM_ISSUER }}
+          APP_STORE_CONNECT_TEAM_ISSUER: ${{ steps.get-kv-secrets.outputs.APP-STORE-CONNECT-TEAM-ISSUER }}
           APP_STORE_CONNECT_AUTH_KEY: 6TV9MKN3GP
           APP_STORE_CONNECT_AUTH_KEY_PATH: ~/private_keys/AuthKey_6TV9MKN3GP.p8
           CSC_FOR_PULL_REQUEST: true
@@ -1334,7 +1392,7 @@ jobs:
 
           cat << EOF > ~/secrets/appstoreconnect-fastlane.json
           {
-            "issuer_id": "${{ secrets.APP_STORE_CONNECT_TEAM_ISSUER }}",
+            "issuer_id": "${{ steps.get-kv-secrets.outputs.APP-STORE-CONNECT-TEAM-ISSUER }}",
             "key_id": "6TV9MKN3GP",
             "key": "$KEY_WITHOUT_NEWLINES"
           }
@@ -1346,7 +1404,7 @@ jobs:
           github.event_name != 'pull_request_target'
           && (inputs.testflight_distribute || github.ref == 'refs/heads/main' || github.ref == 'refs/heads/rc' || github.ref == 'refs/heads/hotfix-rc-desktop')
         env:
-          APP_STORE_CONNECT_TEAM_ISSUER: ${{ secrets.APP_STORE_CONNECT_TEAM_ISSUER }}
+          APP_STORE_CONNECT_TEAM_ISSUER: ${{ steps.get-kv-secrets.outputs.APP-STORE-CONNECT-TEAM-ISSUER }}
           APP_STORE_CONNECT_AUTH_KEY: 6TV9MKN3GP
           BRANCH: ${{ github.ref }}
         run: |
@@ -1396,6 +1454,10 @@ jobs:
       - windows
       - macos-package-github
       - macos-package-mas
+    permissions:
+        contents: write
+        pull-requests: write
+        id-token: write
     runs-on: ubuntu-22.04
     steps:
       - name: Check out repo
@@ -1403,10 +1465,12 @@ jobs:
         with:
           ref: ${{  github.event.pull_request.head.sha }}
 
-      - name: Login to Azure
-        uses: Azure/login@e15b166166a8746d1a47596803bd8c1b595455cf # v1.6.0
+      - name: Log in to Azure
+        uses: bitwarden/gh-actions/azure-login@main
         with:
-          creds: ${{ secrets.AZURE_KV_CI_SERVICE_PRINCIPAL }}
+          subscription_id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+          tenant_id: ${{ secrets.AZURE_TENANT_ID }}
+          client_id: ${{ secrets.AZURE_CLIENT_ID }}
 
       - name: Retrieve secrets
         id: retrieve-secrets
@@ -1415,6 +1479,9 @@ jobs:
           keyvault: "bitwarden-ci"
           secrets: "crowdin-api-token"
 
+      - name: Log out from Azure
+        uses: bitwarden/gh-actions/azure-logout@main
+
       - name: Upload Sources
         uses: crowdin/github-action@f214c8723025f41fc55b2ad26e67b60b80b1885d # v2.7.1
         env:
@@ -1442,6 +1509,9 @@ jobs:
       - macos-package-github
       - macos-package-mas
       - crowdin-push
+    permissions:
+        contents: read
+        id-token: write
     steps:
       - name: Check if any job failed
         if: |
@@ -1450,11 +1520,13 @@ jobs:
           && contains(needs.*.result, 'failure')
         run: exit 1
 
-      - name: Login to Azure - Prod Subscription
-        uses: Azure/login@e15b166166a8746d1a47596803bd8c1b595455cf # v1.6.0
+      - name: Log in to Azure
         if: failure()
+        uses: bitwarden/gh-actions/azure-login@main
         with:
-          creds: ${{ secrets.AZURE_KV_CI_SERVICE_PRINCIPAL }}
+          subscription_id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+          tenant_id: ${{ secrets.AZURE_TENANT_ID }}
+          client_id: ${{ secrets.AZURE_CLIENT_ID }}
 
       - name: Retrieve secrets
         id: retrieve-secrets
@@ -1464,6 +1536,9 @@ jobs:
           keyvault: "bitwarden-ci"
           secrets: "devops-alerts-slack-webhook-url"
 
+      - name: Log out from Azure
+        uses: bitwarden/gh-actions/azure-logout@main
+
       - name: Notify Slack on failure
         uses: act10ns/slack@44541246747a30eb3102d87f7a4cc5471b0ffb7d # v2.1.0
         if: failure()
@@ -1471,3 +1546,4 @@ jobs:
           SLACK_WEBHOOK_URL: ${{ steps.retrieve-secrets.outputs.devops-alerts-slack-webhook-url }}
         with:
           status: ${{ job.status }}
+
diff --git a/.github/workflows/build-web-target.yml b/.github/workflows/build-web-target.yml
index ca10e6d46f2..b1055885400 100644
--- a/.github/workflows/build-web-target.yml
+++ b/.github/workflows/build-web-target.yml
@@ -27,6 +27,8 @@ jobs:
   check-run:
     name: Check PR run
     uses: bitwarden/gh-actions/.github/workflows/check-run.yml@main
+    permissions:
+      contents: read
 
   run-workflow:
     name: Build Web
@@ -34,4 +36,8 @@ jobs:
     if: ${{ github.event.pull_request.head.repo.full_name != github.repository }}
     uses: ./.github/workflows/build-web.yml
     secrets: inherit
+    permissions:
+      contents: read
+      id-token: write
+      security-events: write
 
diff --git a/.github/workflows/build-web.yml b/.github/workflows/build-web.yml
index 745376b46d8..b4163d161cf 100644
--- a/.github/workflows/build-web.yml
+++ b/.github/workflows/build-web.yml
@@ -51,7 +51,8 @@ env:
   _AZ_REGISTRY: bitwardenprod.azurecr.io
   _GITHUB_PR_REPO_NAME: ${{ github.event.pull_request.head.repo.full_name }}
 
-permissions: {}
+permissions:
+  contents: read
 
 jobs:
   setup:
@@ -80,10 +81,8 @@ jobs:
 
       - name: Check secrets
         id: check-secrets
-        env:
-          AZURE_KV_CI_SERVICE_PRINCIPAL: ${{ secrets.AZURE_KV_CI_SERVICE_PRINCIPAL }}
         run: |
-          has_secrets=${{ secrets.AZURE_KV_CI_SERVICE_PRINCIPAL != '' }}
+          has_secrets=${{ secrets.AZURE_CLIENT_ID != '' }}
           echo "has_secrets=$has_secrets" >> $GITHUB_OUTPUT
 
 
@@ -204,11 +203,13 @@ jobs:
         uses: docker/setup-buildx-action@f95db51fddba0c2d1ec667646a06c2ce06100226 # v3.0.0
 
       ########## ACRs ##########
-      - name: Login to Prod Azure
+      - name: Log in to Azure
         if: ${{ needs.setup.outputs.has_secrets == 'true' }}
-        uses: Azure/login@e15b166166a8746d1a47596803bd8c1b595455cf # v1.6.0
+        uses: bitwarden/gh-actions/azure-login@main
         with:
-          creds: ${{ secrets.AZURE_PROD_KV_CREDENTIALS }}
+          subscription_id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+          tenant_id: ${{ secrets.AZURE_TENANT_ID }}
+          client_id: ${{ secrets.AZURE_CLIENT_ID }}
 
       - name: Log into Prod container registry
         if: ${{ needs.setup.outputs.has_secrets == 'true' }}
@@ -328,11 +329,19 @@ jobs:
       - name: Log out of Docker
         run: docker logout $_AZ_REGISTRY
 
+      - name: Log out from Azure
+        if: ${{ needs.setup.outputs.has_secrets == 'true' }}
+        uses: bitwarden/gh-actions/azure-logout@main
+
 
   crowdin-push:
     name: Crowdin Push
     if: github.event_name != 'pull_request_target' && github.ref == 'refs/heads/main'
     needs: build-containers
+    permissions:
+      contents: write
+      pull-requests: write
+      id-token: write
     runs-on: ubuntu-24.04
     steps:
       - name: Check out repo
@@ -340,10 +349,12 @@ jobs:
         with:
           ref: ${{ github.event.pull_request.head.sha }}
 
-      - name: Login to Azure
-        uses: Azure/login@e15b166166a8746d1a47596803bd8c1b595455cf # v1.6.0
+      - name: Log in to Azure
+        uses: bitwarden/gh-actions/azure-login@main
         with:
-          creds: ${{ secrets.AZURE_KV_CI_SERVICE_PRINCIPAL }}
+          subscription_id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+          tenant_id: ${{ secrets.AZURE_TENANT_ID }}
+          client_id: ${{ secrets.AZURE_CLIENT_ID }}
 
       - name: Retrieve secrets
         id: retrieve-secrets
@@ -352,6 +363,9 @@ jobs:
           keyvault: "bitwarden-ci"
           secrets: "crowdin-api-token"
 
+      - name: Log out from Azure
+        uses: bitwarden/gh-actions/azure-logout@main
+
       - name: Upload Sources
         uses: crowdin/github-action@f214c8723025f41fc55b2ad26e67b60b80b1885d # v2.7.1
         env:
@@ -370,11 +384,15 @@ jobs:
     if: github.event_name != 'pull_request_target' && github.ref == 'refs/heads/main'
     runs-on: ubuntu-24.04
     needs: build-containers
+    permissions:
+      id-token: write
     steps:
-      - name: Login to Azure - CI Subscription
-        uses: Azure/login@e15b166166a8746d1a47596803bd8c1b595455cf # v1.6.0
+      - name: Log in to Azure
+        uses: bitwarden/gh-actions/azure-login@main
         with:
-          creds: ${{ secrets.AZURE_KV_CI_SERVICE_PRINCIPAL }}
+          subscription_id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+          tenant_id: ${{ secrets.AZURE_TENANT_ID }}
+          client_id: ${{ secrets.AZURE_CLIENT_ID }}
 
       - name: Retrieve github PAT secrets
         id: retrieve-secret-pat
@@ -383,6 +401,9 @@ jobs:
           keyvault: "bitwarden-ci"
           secrets: "github-pat-bitwarden-devops-bot-repo-scope"
 
+      - name: Log out from Azure
+        uses: bitwarden/gh-actions/azure-logout@main
+
       - name: Trigger web vault deploy using GitHub Run ID
         uses: actions/github-script@60a0d83039c74a4aee543508d2ffcb1c3799cdea # v7.0.1
         with:
@@ -409,6 +430,8 @@ jobs:
       - build-containers
       - crowdin-push
       - trigger-web-vault-deploy
+    permissions:
+      id-token: write
     steps:
       - name: Check if any job failed
         if: |
@@ -417,11 +440,13 @@ jobs:
           && contains(needs.*.result, 'failure')
         run: exit 1
 
-      - name: Login to Azure - Prod Subscription
-        uses: Azure/login@e15b166166a8746d1a47596803bd8c1b595455cf # v1.6.0
+      - name: Log in to Azure
+        uses: bitwarden/gh-actions/azure-login@main
         if: failure()
         with:
-          creds: ${{ secrets.AZURE_KV_CI_SERVICE_PRINCIPAL }}
+          subscription_id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+          tenant_id: ${{ secrets.AZURE_TENANT_ID }}
+          client_id: ${{ secrets.AZURE_CLIENT_ID }}
 
       - name: Retrieve secrets
         id: retrieve-secrets
@@ -431,6 +456,9 @@ jobs:
           keyvault: "bitwarden-ci"
           secrets: "devops-alerts-slack-webhook-url"
 
+      - name: Log out from Azure
+        uses: bitwarden/gh-actions/azure-logout@main
+
       - name: Notify Slack on failure
         uses: act10ns/slack@44541246747a30eb3102d87f7a4cc5471b0ffb7d # v2.1.0
         if: failure()
diff --git a/.github/workflows/chromatic.yml b/.github/workflows/chromatic.yml
index 78733bc5a8b..4ee39305f84 100644
--- a/.github/workflows/chromatic.yml
+++ b/.github/workflows/chromatic.yml
@@ -15,6 +15,8 @@ jobs:
   check-run:
     name: Check PR run
     uses: bitwarden/gh-actions/.github/workflows/check-run.yml@main
+    permissions:
+      contents: read
 
   chromatic:
     name: Chromatic
@@ -23,6 +25,7 @@ jobs:
     permissions:
       contents: read
       pull-requests: write
+      id-token: write
 
     steps:
       - name: Check out repo
@@ -30,13 +33,13 @@ jobs:
         with:
           ref: ${{  github.event.pull_request.head.sha }}
           fetch-depth: 0
-        
+
       - name: Get changed files
         id: get-changed-files-for-chromatic
         uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2
         with:
           filters: |
-            storyFiles: 
+            storyFiles:
               - "apps/!(cli)/**"
               - "bitwarden_license/bit-web/src/app/**"
               - "libs/!(eslint)/**"
@@ -74,11 +77,28 @@ jobs:
         if: steps.get-changed-files-for-chromatic.outputs.storyFiles == 'true'
         run: npm run build-storybook:ci
 
+      - name: Log in to Azure
+        uses: bitwarden/gh-actions/azure-login@main
+        with:
+          subscription_id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+          tenant_id: ${{ secrets.AZURE_TENANT_ID }}
+          client_id: ${{ secrets.AZURE_CLIENT_ID }}
+
+      - name: Get Azure Key Vault secrets
+        id: get-kv-secrets
+        uses: bitwarden/gh-actions/get-keyvault-secrets@main
+        with:
+          keyvault: gh-clients
+          secrets: "CHROMATIC-PROJECT-TOKEN"
+
+      - name: Log out from Azure
+        uses: bitwarden/gh-actions/azure-logout@main
+
       - name: Publish to Chromatic
         uses: chromaui/action@e8cc4c31775280b175a3c440076c00d19a9014d7 # v11.28.2
         with:
           token: ${{ secrets.GITHUB_TOKEN }}
-          projectToken: ${{ secrets.CHROMATIC_PROJECT_TOKEN }}
+          projectToken: ${{ steps.get-kv-secrets.outputs.CHROMATIC-PROJECT-TOKEN }}
           storybookBuildDir: ./storybook-static
           exitOnceUploaded: true
           onlyChanged: true
diff --git a/.github/workflows/crowdin-pull.yml b/.github/workflows/crowdin-pull.yml
index 2fc035ec038..0b891203855 100644
--- a/.github/workflows/crowdin-pull.yml
+++ b/.github/workflows/crowdin-pull.yml
@@ -10,6 +10,9 @@ jobs:
   crowdin-sync:
     name: Autosync
     runs-on: ubuntu-24.04
+    permissions:
+      contents: read
+      id-token: write
     strategy:
       fail-fast: false
       matrix:
@@ -21,22 +24,19 @@ jobs:
           - app_name: web
             crowdin_project_id: "308189"
     steps:
-      - name: Generate GH App token
-        uses: actions/create-github-app-token@30bf6253fa41bdc8d1501d202ad15287582246b4 # v2.0.3
-        id: app-token
+      - name: Log in to Azure
+        uses: bitwarden/gh-actions/azure-login@main
         with:
-          app-id: ${{ secrets.BW_GHAPP_ID }}
-          private-key: ${{ secrets.BW_GHAPP_KEY }}
+          subscription_id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+          tenant_id: ${{ secrets.AZURE_TENANT_ID }}
+          client_id: ${{ secrets.AZURE_CLIENT_ID }}
 
-      - name: Checkout repo
-        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+      - name: Get Azure Key Vault secrets
+        id: get-kv-secrets
+        uses: bitwarden/gh-actions/get-keyvault-secrets@main
         with:
-          token: ${{ steps.app-token.outputs.token }}
-
-      - name: Login to Azure
-        uses: Azure/login@e15b166166a8746d1a47596803bd8c1b595455cf # v1.6.0
-        with:
-          creds: ${{ secrets.AZURE_KV_CI_SERVICE_PRINCIPAL }}
+          keyvault: gh-org-bitwarden
+          secrets: "BW-GHAPP-ID,BW-GHAPP-KEY"
 
       - name: Retrieve secrets
         id: retrieve-secrets
@@ -45,6 +45,21 @@ jobs:
           keyvault: "bitwarden-ci"
           secrets: "crowdin-api-token, github-gpg-private-key, github-gpg-private-key-passphrase"
 
+      - name: Log out from Azure
+        uses: bitwarden/gh-actions/azure-logout@main
+
+      - name: Generate GH App token
+        uses: actions/create-github-app-token@30bf6253fa41bdc8d1501d202ad15287582246b4 # v2.0.3
+        id: app-token
+        with:
+          app-id: ${{ steps.get-kv-secrets.outputs.BW-GHAPP-ID }}
+          private-key: ${{ steps.get-kv-secrets.outputs.BW-GHAPP-KEY }}
+
+      - name: Checkout repo
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+        with:
+          token: ${{ steps.app-token.outputs.token }}
+
       - name: Download translations
         uses: bitwarden/gh-actions/crowdin@main
         env:
diff --git a/.github/workflows/deploy-web.yml b/.github/workflows/deploy-web.yml
index 1cde8dd636a..3ffe18d1729 100644
--- a/.github/workflows/deploy-web.yml
+++ b/.github/workflows/deploy-web.yml
@@ -66,8 +66,9 @@ jobs:
       environment_url: ${{ steps.config.outputs.environment_url }}
       environment_name: ${{ steps.config.outputs.environment_name }}
       environment_artifact: ${{ steps.config.outputs.environment_artifact }}
-      azure_login_creds: ${{ steps.config.outputs.azure_login_creds }}
-      retrive_secrets_keyvault: ${{ steps.config.outputs.retrive_secrets_keyvault }}
+      azure_login_client_key_name: ${{ steps.config.outputs.azure_login_client_key_name }}
+      azure_login_subscription_id_key_name: ${{ steps.config.outputs.azure_login_subscription_id_key_name }}
+      retrieve_secrets_keyvault: ${{ steps.config.outputs.retrieve_secrets_keyvault }}
       sync_utility: ${{ steps.config.outputs.sync_utility }}
       sync_delete_destination_files: ${{ steps.config.outputs.sync_delete_destination_files }}
       slack_channel_name: ${{ steps.config.outputs.slack_channel_name }}
@@ -81,40 +82,45 @@ jobs:
 
           case ${{ inputs.environment }} in
             "USQA")
-              echo "azure_login_creds=AZURE_KV_US_QA_SERVICE_PRINCIPAL" >> $GITHUB_OUTPUT
-              echo "retrive_secrets_keyvault=bw-webvault-rlktusqa-kv" >> $GITHUB_OUTPUT
+              echo "azure_login_client_key_name=AZURE_CLIENT_ID_USQA" >> $GITHUB_OUTPUT
+              echo "azure_login_subscription_id_key_name=AZURE_SUBSCRIPTION_ID_USQA" >> $GITHUB_OUTPUT
+              echo "retrieve_secrets_keyvault=bw-webvault-rlktusqa-kv" >> $GITHUB_OUTPUT
               echo "environment_artifact=web-*-cloud-QA.zip" >> $GITHUB_OUTPUT
               echo "environment_name=Web Vault - US QA Cloud" >> $GITHUB_OUTPUT
               echo "environment_url=http://vault.$ENV_NAME_LOWER.bitwarden.pw" >> $GITHUB_OUTPUT
               echo "slack_channel_name=alerts-deploy-qa"  >> $GITHUB_OUTPUT
               ;;
             "EUQA")
-              echo "azure_login_creds=AZURE_KV_EU_QA_SERVICE_PRINCIPAL" >> $GITHUB_OUTPUT
-              echo "retrive_secrets_keyvault=webvaulteu-westeurope-qa" >> $GITHUB_OUTPUT
+              echo "azure_login_client_key_name=AZURE_CLIENT_ID_EUQA" >> $GITHUB_OUTPUT
+              echo "azure_login_subscription_id_key_name=AZURE_SUBSCRIPTION_ID_EUQA" >> $GITHUB_OUTPUT
+              echo "retrieve_secrets_keyvault=webvaulteu-westeurope-qa" >> $GITHUB_OUTPUT
               echo "environment_artifact=web-*-cloud-euqa.zip" >> $GITHUB_OUTPUT
               echo "environment_name=Web Vault - EU QA Cloud" >> $GITHUB_OUTPUT
               echo "environment_url=http://vault.$ENV_NAME_LOWER.bitwarden.pw" >> $GITHUB_OUTPUT
               echo "slack_channel_name=alerts-deploy-qa"  >> $GITHUB_OUTPUT
               ;;
             "USPROD")
-              echo "azure_login_creds=AZURE_KV_US_PROD_SERVICE_PRINCIPAL" >> $GITHUB_OUTPUT
-              echo "retrive_secrets_keyvault=bw-webvault-klrt-kv" >> $GITHUB_OUTPUT
+              echo "azure_login_client_key_name=AZURE_CLIENT_ID_USPROD" >> $GITHUB_OUTPUT
+              echo "azure_login_subscription_id_key_name=AZURE_SUBSCRIPTION_ID_USPROD" >> $GITHUB_OUTPUT
+              echo "retrieve_secrets_keyvault=bw-webvault-klrt-kv" >> $GITHUB_OUTPUT
               echo "environment_artifact=web-*-cloud-COMMERCIAL.zip" >> $GITHUB_OUTPUT
               echo "environment_name=Web Vault - US Production Cloud" >> $GITHUB_OUTPUT
               echo "environment_url=http://vault.bitwarden.com" >> $GITHUB_OUTPUT
               echo "slack_channel_name=alerts-deploy-prd"  >> $GITHUB_OUTPUT
               ;;
             "EUPROD")
-              echo "azure_login_creds=AZURE_KV_EU_PRD_SERVICE_PRINCIPAL" >> $GITHUB_OUTPUT
-              echo "retrive_secrets_keyvault=webvault-westeurope-prod" >> $GITHUB_OUTPUT
+              echo "azure_login_client_key_name=AZURE_CLIENT_ID_EUPROD" >> $GITHUB_OUTPUT
+              echo "azure_login_subscription_id_key_name=AZURE_SUBSCRIPTION_ID_EUPROD" >> $GITHUB_OUTPUT
+              echo "retrieve_secrets_keyvault=webvault-westeurope-prod" >> $GITHUB_OUTPUT
               echo "environment_artifact=web-*-cloud-euprd.zip" >> $GITHUB_OUTPUT
               echo "environment_name=Web Vault - EU Production Cloud" >> $GITHUB_OUTPUT
               echo "environment_url=http://vault.bitwarden.eu" >> $GITHUB_OUTPUT
               echo "slack_channel_name=alerts-deploy-prd"  >> $GITHUB_OUTPUT
               ;;
             "USDEV")
-              echo "azure_login_creds=AZURE_KV_US_DEV_SERVICE_PRINCIPAL" >> $GITHUB_OUTPUT
-              echo "retrive_secrets_keyvault=webvault-eastus-dev" >> $GITHUB_OUTPUT
+              echo "azure_login_client_key_name=AZURE_CLIENT_ID_USDEV" >> $GITHUB_OUTPUT
+              echo "azure_login_subscription_id_key_name=AZURE_SUBSCRIPTION_ID_USDEV" >> $GITHUB_OUTPUT
+              echo "retrieve_secrets_keyvault=webvault-eastus-dev" >> $GITHUB_OUTPUT
               echo "environment_artifact=web-*-cloud-usdev.zip" >> $GITHUB_OUTPUT
               echo "environment_name=Web Vault - US Development Cloud" >> $GITHUB_OUTPUT
               echo "environment_url=http://vault.$ENV_NAME_LOWER.bitwarden.pw" >> $GITHUB_OUTPUT
@@ -180,6 +186,9 @@ jobs:
     name: Check if Web artifact is present
     runs-on: ubuntu-22.04
     needs: setup
+    permissions:
+      contents: read
+      id-token: write
     env:
       _ENVIRONMENT_ARTIFACT: ${{ needs.setup.outputs.environment_artifact }}
     outputs:
@@ -209,11 +218,13 @@ jobs:
           branch: ${{ inputs.branch-or-tag }}
           artifacts: ${{ env._ENVIRONMENT_ARTIFACT }}
 
-      - name: Login to Azure
+      - name: Log in to Azure
         if: ${{ steps.download-latest-artifacts.outcome == 'failure' }}
-        uses: Azure/login@e15b166166a8746d1a47596803bd8c1b595455cf # v1.6.0
+        uses: bitwarden/gh-actions/azure-login@main
         with:
-          creds: ${{ secrets.AZURE_KV_CI_SERVICE_PRINCIPAL }}
+          subscription_id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+          tenant_id: ${{ secrets.AZURE_TENANT_ID }}
+          client_id: ${{ secrets.AZURE_CLIENT_ID }}
 
       - name: Retrieve secrets for Build trigger
         if: ${{ steps.download-latest-artifacts.outcome == 'failure' }}
@@ -223,6 +234,10 @@ jobs:
           keyvault: "bitwarden-ci"
           secrets: "github-pat-bitwarden-devops-bot-repo-scope"
 
+      - name: Log out from Azure
+        if: ${{ steps.download-latest-artifacts.outcome == 'failure' }}
+        uses: bitwarden/gh-actions/azure-logout@main
+
       - name: 'Trigger build web for missing branch/tag ${{ inputs.branch-or-tag }}'
         if: ${{ steps.download-latest-artifacts.outcome == 'failure' }}
         uses: convictional/trigger-workflow-and-wait@f69fa9eedd3c62a599220f4d5745230e237904be # v1.6.5
@@ -277,7 +292,9 @@ jobs:
           event: 'start'
           commit-sha: ${{ needs.artifact-check.outputs.artifact_build_commit }}
           url: https://github.com/bitwarden/clients/actions/runs/${{ github.run_id }}
-          AZURE_KV_CI_SERVICE_PRINCIPAL: ${{ secrets.AZURE_KV_CI_SERVICE_PRINCIPAL }}
+          AZURE_SUBSCRIPTION_ID: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+          AZURE_TENANT_ID: ${{ secrets.AZURE_TENANT_ID }}
+          AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }}
 
   update-summary:
     name: Display commit
@@ -302,6 +319,9 @@ jobs:
       _ENVIRONMENT_URL: ${{ needs.setup.outputs.environment_url }}
       _ENVIRONMENT_NAME: ${{ needs.setup.outputs.environment_name }}
       _ENVIRONMENT_ARTIFACT: ${{ needs.setup.outputs.environment_artifact }}
+    permissions:
+      id-token: write
+      deployments: write
     steps:
       - name: Create GitHub deployment
         uses: chrnorm/deployment-action@55729fcebec3d284f60f5bcabbd8376437d696b1 # v2.0.7
@@ -309,23 +329,25 @@ jobs:
         with:
           token: '${{ secrets.GITHUB_TOKEN }}'
           initial-status: 'in_progress'
-          environment_url: ${{ env._ENVIRONMENT_URL }}
+          environment-url: ${{ env._ENVIRONMENT_URL }}
           environment: ${{ env._ENVIRONMENT_NAME }}
           task: 'deploy'
           description: 'Deployment from branch/tag: ${{ inputs.branch-or-tag }}'
           ref: ${{ needs.artifact-check.outputs.artifact_build_commit }}
 
       - name: Login to Azure
-        uses: Azure/login@e15b166166a8746d1a47596803bd8c1b595455cf # v1.6.0
+        uses: bitwarden/gh-actions/azure-login@main
         with:
-          creds: ${{ secrets[needs.setup.outputs.azure_login_creds] }}
+          subscription_id: ${{ secrets[needs.setup.outputs.azure_login_subscription_id_key_name] }}
+          tenant_id: ${{ secrets.AZURE_TENANT_ID }}
+          client_id: ${{ secrets[needs.setup.outputs.azure_login_client_key_name] }}
 
       - name: Retrieve Storage Account connection string for az sync
         if: ${{ needs.setup.outputs.sync_utility == 'az-sync' }}
         id: retrieve-secrets-az-sync
         uses: bitwarden/gh-actions/get-keyvault-secrets@main
         with:
-          keyvault: ${{ needs.setup.outputs.retrive_secrets_keyvault }}
+          keyvault: ${{ needs.setup.outputs.retrieve_secrets_keyvault }}
           secrets: "sa-bitwarden-web-vault-dev-key-temp"
 
       - name: Retrieve Storage Account name and SPN credentials for azcopy
@@ -333,9 +355,12 @@ jobs:
         id: retrieve-secrets-azcopy
         uses: bitwarden/gh-actions/get-keyvault-secrets@main
         with:
-          keyvault: ${{ needs.setup.outputs.retrive_secrets_keyvault }}
+          keyvault: ${{ needs.setup.outputs.retrieve_secrets_keyvault }}
           secrets: "sa-bitwarden-web-vault-name,sp-bitwarden-web-vault-password,sp-bitwarden-web-vault-appid,sp-bitwarden-web-vault-tenant"
 
+      - name: Log out from Azure
+        uses: bitwarden/gh-actions/azure-logout@main
+
       - name: 'Download latest cloud asset using GitHub Run ID: ${{ inputs.build-web-run-id }}'
         if: ${{ inputs.build-web-run-id }}
         uses: bitwarden/gh-actions/download-artifacts@main
@@ -397,7 +422,7 @@ jobs:
         uses: chrnorm/deployment-status@9a72af4586197112e0491ea843682b5dc280d806 # v2.0.3
         with:
           token: '${{ secrets.GITHUB_TOKEN }}'
-          environment_url: ${{ env._ENVIRONMENT_URL }}
+          environment-url: ${{ env._ENVIRONMENT_URL }}
           state: 'success'
           deployment-id: ${{ steps.deployment.outputs.deployment_id }}
 
@@ -406,7 +431,7 @@ jobs:
         uses: chrnorm/deployment-status@9a72af4586197112e0491ea843682b5dc280d806 # v2.0.3
         with:
           token: '${{ secrets.GITHUB_TOKEN }}'
-          environment_url: ${{ env._ENVIRONMENT_URL }}
+          environment-url: ${{ env._ENVIRONMENT_URL }}
           state: 'failure'
           deployment-id: ${{ steps.deployment.outputs.deployment_id }}
 
@@ -419,6 +444,8 @@ jobs:
       - notify-start
       - azure-deploy
       - artifact-check
+    permissions:
+      id-token: write
     steps:
       - name: Notify Slack with result
         uses: bitwarden/gh-actions/report-deployment-status-to-slack@main
@@ -431,4 +458,6 @@ jobs:
           url: https://github.com/bitwarden/clients/actions/runs/${{ github.run_id }}
           commit-sha: ${{ needs.artifact-check.outputs.artifact_build_commit }}
           update-ts: ${{ needs.notify-start.outputs.ts }}
-          AZURE_KV_CI_SERVICE_PRINCIPAL: ${{ secrets.AZURE_KV_CI_SERVICE_PRINCIPAL }}
+          AZURE_SUBSCRIPTION_ID: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+          AZURE_TENANT_ID: ${{ secrets.AZURE_TENANT_ID }}
+          AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }}
diff --git a/.github/workflows/lint-crowdin-config.yml b/.github/workflows/lint-crowdin-config.yml
index adb5950e3a0..38a3ef59ea7 100644
--- a/.github/workflows/lint-crowdin-config.yml
+++ b/.github/workflows/lint-crowdin-config.yml
@@ -5,12 +5,14 @@ on:
     types: [opened, synchronize]
     paths:
       - '**/crowdin.yml'
-permissions: {}
 
 jobs:
   lint-crowdin-config:
     name: Lint Crowdin Config ${{ matrix.app.name }}
     runs-on: ubuntu-24.04
+    permissions:
+      contents: read
+      id-token: write
     strategy:
       matrix:
         app: [
@@ -22,17 +24,25 @@ jobs:
       - name: Check out repo
         uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
         with:
-          fetch-depth: 1  
-      - name: Login to Azure
-        uses: Azure/login@e15b166166a8746d1a47596803bd8c1b595455cf # v1.6.0
+          fetch-depth: 1
+
+      - name: Log in to Azure
+        uses: bitwarden/gh-actions/azure-login@main
         with:
-          creds: ${{ secrets.AZURE_KV_CI_SERVICE_PRINCIPAL }}
+          subscription_id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+          tenant_id: ${{ secrets.AZURE_TENANT_ID }}
+          client_id: ${{ secrets.AZURE_CLIENT_ID }}
+
       - name: Retrieve secrets
         id: retrieve-secrets
         uses: bitwarden/gh-actions/get-keyvault-secrets@main
         with:
           keyvault: "bitwarden-ci"
           secrets: "crowdin-api-token"
+
+      - name: Log out from Azure
+        uses: bitwarden/gh-actions/azure-logout@main
+
       - name: Lint ${{ matrix.app.name }} config
         uses: crowdin/github-action@f214c8723025f41fc55b2ad26e67b60b80b1885d # v2.7.1
         env:
@@ -42,4 +52,4 @@ jobs:
         with:
           dryrun_action: true
           command: 'config lint'
-          command_args: '--verbose -c ${{ matrix.app.config_path }}'
\ No newline at end of file
+          command_args: '--verbose -c ${{ matrix.app.config_path }}'
diff --git a/.github/workflows/publish-cli.yml b/.github/workflows/publish-cli.yml
index d758e6f11c9..efb0f541d70 100644
--- a/.github/workflows/publish-cli.yml
+++ b/.github/workflows/publish-cli.yml
@@ -48,6 +48,10 @@ jobs:
     defaults:
       run:
         working-directory: .
+    permissions:
+      contents: read
+      deployments: write
+
     steps:
       - name: Branch check
         if: ${{ inputs.publish_type != 'Dry Run' }}
@@ -86,6 +90,10 @@ jobs:
     name: Deploy Snap
     runs-on: ubuntu-22.04
     needs: setup
+    permissions:
+      contents: read
+      packages: read
+      id-token: write
     if: inputs.snap_publish
     env:
       _PKG_VERSION: ${{ needs.setup.outputs.release_version }}
@@ -93,10 +101,12 @@ jobs:
       - name: Checkout repo
         uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
 
-      - name: Login to Azure
-        uses: Azure/login@e15b166166a8746d1a47596803bd8c1b595455cf # v1.6.0
+      - name: Log in to Azure
+        uses: bitwarden/gh-actions/azure-login@main
         with:
-          creds: ${{ secrets.AZURE_KV_CI_SERVICE_PRINCIPAL }}
+          subscription_id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+          tenant_id: ${{ secrets.AZURE_TENANT_ID }}
+          client_id: ${{ secrets.AZURE_CLIENT_ID }}
 
       - name: Retrieve secrets
         id: retrieve-secrets
@@ -105,6 +115,9 @@ jobs:
           keyvault: "bitwarden-ci"
           secrets: "snapcraft-store-token"
 
+      - name: Log out from Azure
+        uses: bitwarden/gh-actions/azure-logout@main
+
       - name: Install Snap
         uses: samuelmeuli/action-snapcraft@d33c176a9b784876d966f80fb1b461808edc0641  # v2.1.1
 
@@ -123,6 +136,10 @@ jobs:
     name: Deploy Choco
     runs-on: windows-2022
     needs: setup
+    permissions:
+      contents: read
+      packages: read
+      id-token: write
     if: inputs.choco_publish
     env:
       _PKG_VERSION: ${{ needs.setup.outputs.release_version }}
@@ -130,10 +147,12 @@ jobs:
       - name: Checkout repo
         uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
 
-      - name: Login to Azure
-        uses: Azure/login@e15b166166a8746d1a47596803bd8c1b595455cf # v1.6.0
+      - name: Log in to Azure
+        uses: bitwarden/gh-actions/azure-login@main
         with:
-          creds: ${{ secrets.AZURE_KV_CI_SERVICE_PRINCIPAL }}
+          subscription_id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+          tenant_id: ${{ secrets.AZURE_TENANT_ID }}
+          client_id: ${{ secrets.AZURE_CLIENT_ID }}
 
       - name: Retrieve secrets
         id: retrieve-secrets
@@ -142,6 +161,9 @@ jobs:
           keyvault: "bitwarden-ci"
           secrets: "cli-choco-api-key"
 
+      - name: Log out from Azure
+        uses: bitwarden/gh-actions/azure-logout@main
+
       - name: Setup Chocolatey
         run: choco apikey --key $env:CHOCO_API_KEY --source https://push.chocolatey.org/
         env:
@@ -163,6 +185,10 @@ jobs:
     name: Publish NPM
     runs-on: ubuntu-22.04
     needs: setup
+    permissions:
+      contents: read
+      packages: read
+      id-token: write
     if: inputs.npm_publish
     env:
       _PKG_VERSION: ${{ needs.setup.outputs.release_version }}
@@ -170,10 +196,12 @@ jobs:
       - name: Checkout repo
         uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
 
-      - name: Login to Azure
-        uses: Azure/login@e15b166166a8746d1a47596803bd8c1b595455cf # v1.6.0
+      - name: Log in to Azure
+        uses: bitwarden/gh-actions/azure-login@main
         with:
-          creds: ${{ secrets.AZURE_KV_CI_SERVICE_PRINCIPAL }}
+          subscription_id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+          tenant_id: ${{ secrets.AZURE_TENANT_ID }}
+          client_id: ${{ secrets.AZURE_CLIENT_ID }}
 
       - name: Retrieve secrets
         id: retrieve-secrets
@@ -182,6 +210,9 @@ jobs:
           keyvault: "bitwarden-ci"
           secrets: "npm-api-key"
 
+      - name: Log out from Azure
+        uses: bitwarden/gh-actions/azure-logout@main
+
       - name: Download and set up artifact
         run: |
           mkdir -p build
@@ -210,6 +241,10 @@ jobs:
       - npm
       - snap
       - choco
+    permissions:
+      contents: read
+      deployments: write
+
     if: ${{ always() && inputs.publish_type != 'Dry Run' }}
     steps:
       - name: Check if any job failed
diff --git a/.github/workflows/publish-desktop.yml b/.github/workflows/publish-desktop.yml
index ae631165db9..aafc4d25ed4 100644
--- a/.github/workflows/publish-desktop.yml
+++ b/.github/workflows/publish-desktop.yml
@@ -42,6 +42,9 @@ jobs:
       release_channel: ${{ steps.release_channel.outputs.channel }}
       tag_name: ${{ steps.version.outputs.tag_name }}
       deployment_id: ${{ steps.deployment.outputs.deployment_id }}
+    permissions:
+      contents: read
+      deployments: write
     steps:
       - name: Branch check
         if: ${{ inputs.publish_type != 'Dry Run' }}
@@ -106,14 +109,21 @@ jobs:
     name: Electron blob publish
     runs-on: ubuntu-22.04
     needs: setup
+    permissions:
+      contents: read
+      packages: read
+      id-token: write
+      deployments: write
     env:
       _PKG_VERSION: ${{ needs.setup.outputs.release_version }}
       _RELEASE_TAG: ${{ needs.setup.outputs.tag_name }}
     steps:
-      - name: Login to Azure
-        uses: Azure/login@e15b166166a8746d1a47596803bd8c1b595455cf # v1.6.0
+      - name: Log in to Azure
+        uses: bitwarden/gh-actions/azure-login@main
         with:
-          creds: ${{ secrets.AZURE_KV_CI_SERVICE_PRINCIPAL }}
+          subscription_id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+          tenant_id: ${{ secrets.AZURE_TENANT_ID }}
+          client_id: ${{ secrets.AZURE_CLIENT_ID }}
 
       - name: Retrieve secrets
         id: retrieve-secrets
@@ -124,6 +134,9 @@ jobs:
             aws-electron-access-key,
             aws-electron-bucket-name"
 
+      - name: Log out from Azure
+        uses: bitwarden/gh-actions/azure-logout@main
+
       - name: Create artifacts directory
         run: mkdir -p apps/desktop/artifacts
 
@@ -176,6 +189,9 @@ jobs:
     name: Deploy Snap
     runs-on: ubuntu-22.04
     needs: setup
+    permissions:
+      contents: read
+      id-token: write
     if: inputs.snap_publish
     env:
       _PKG_VERSION: ${{ needs.setup.outputs.release_version }}
@@ -184,10 +200,12 @@ jobs:
       - name: Checkout Repo
         uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
 
-      - name: Login to Azure
-        uses: Azure/login@e15b166166a8746d1a47596803bd8c1b595455cf # v1.6.0
+      - name: Log in to Azure
+        uses: bitwarden/gh-actions/azure-login@main
         with:
-          creds: ${{ secrets.AZURE_KV_CI_SERVICE_PRINCIPAL }}
+          subscription_id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+          tenant_id: ${{ secrets.AZURE_TENANT_ID }}
+          client_id: ${{ secrets.AZURE_CLIENT_ID }}
 
       - name: Retrieve secrets
         id: retrieve-secrets
@@ -196,6 +214,9 @@ jobs:
           keyvault: "bitwarden-ci"
           secrets: "snapcraft-store-token"
 
+      - name: Log out from Azure
+        uses: bitwarden/gh-actions/azure-logout@main
+
       - name: Install Snap
         uses: samuelmeuli/action-snapcraft@d33c176a9b784876d966f80fb1b461808edc0641 # v2.1.1
 
@@ -220,6 +241,9 @@ jobs:
     name: Deploy Choco
     runs-on: windows-2022
     needs: setup
+    permissions:
+      contents: read
+      id-token: write
     if: inputs.choco_publish
     env:
       _PKG_VERSION: ${{ needs.setup.outputs.release_version }}
@@ -233,10 +257,12 @@ jobs:
           dotnet --version
           dotnet nuget --version
 
-      - name: Login to Azure
-        uses: Azure/login@e15b166166a8746d1a47596803bd8c1b595455cf # v1.6.0
+      - name: Log in to Azure
+        uses: bitwarden/gh-actions/azure-login@main
         with:
-          creds: ${{ secrets.AZURE_KV_CI_SERVICE_PRINCIPAL }}
+          subscription_id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+          tenant_id: ${{ secrets.AZURE_TENANT_ID }}
+          client_id: ${{ secrets.AZURE_CLIENT_ID }}
 
       - name: Retrieve secrets
         id: retrieve-secrets
@@ -245,6 +271,9 @@ jobs:
           keyvault: "bitwarden-ci"
           secrets: "cli-choco-api-key"
 
+      - name: Log out from Azure
+        uses: bitwarden/gh-actions/azure-logout@main
+
       - name: Setup Chocolatey
         run: choco apikey --key $env:CHOCO_API_KEY --source https://push.chocolatey.org/
         env:
@@ -271,6 +300,9 @@ jobs:
       - electron-blob
       - snap
       - choco
+    permissions:
+      contents: read
+      deployments: write
     if: ${{ always() && inputs.publish_type != 'Dry Run' }}
     steps:
       - name: Check if any job failed
diff --git a/.github/workflows/publish-web.yml b/.github/workflows/publish-web.yml
index 69b29086d36..a6f0f1be066 100644
--- a/.github/workflows/publish-web.yml
+++ b/.github/workflows/publish-web.yml
@@ -24,6 +24,8 @@ jobs:
     outputs:
       release_version: ${{ steps.version.outputs.version }}
       tag_version: ${{ steps.version.outputs.tag }}
+    permissions:
+      contents: read
     steps:
       - name: Checkout repo
         uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
@@ -52,6 +54,10 @@ jobs:
     name: Release self-host docker
     runs-on: ubuntu-22.04
     needs: setup
+    permissions:
+      id-token: write
+      contents: read
+      deployments: write
     env:
       _BRANCH_NAME: ${{ github.ref_name }}
       _RELEASE_VERSION: ${{ needs.setup.outputs.release_version }}
@@ -69,10 +75,12 @@ jobs:
         uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
 
       ########## ACR ##########
-      - name: Login to Azure - PROD Subscription
-        uses: Azure/login@e15b166166a8746d1a47596803bd8c1b595455cf # v1.6.0
+      - name: Log in to Azure
+        uses: bitwarden/gh-actions/azure-login@main
         with:
-          creds: ${{ secrets.AZURE_PROD_KV_CREDENTIALS }}
+          subscription_id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+          tenant_id: ${{ secrets.AZURE_TENANT_ID }}
+          client_id: ${{ secrets.AZURE_CLIENT_ID }}
 
       - name: Login to Azure ACR
         run: az acr login -n bitwardenprod
@@ -121,6 +129,9 @@ jobs:
             docker push $_AZ_REGISTRY/web-sh:latest
           fi
 
+      - name: Log out from Azure
+        uses: bitwarden/gh-actions/azure-logout@main
+
       - name: Update deployment status to Success
         if: ${{ inputs.publish_type != 'Dry Run' && success() }}
         uses: chrnorm/deployment-status@9a72af4586197112e0491ea843682b5dc280d806 # v2.0.3
@@ -147,11 +158,15 @@ jobs:
     runs-on: ubuntu-22.04
     needs:
       - setup
+    permissions:
+      id-token: write
     steps:
-      - name: Log in to Azure - CI subscription
-        uses: Azure/login@e15b166166a8746d1a47596803bd8c1b595455cf # v1.6.0
+      - name: Log in to Azure
+        uses: bitwarden/gh-actions/azure-login@main
         with:
-          creds: ${{ secrets.AZURE_KV_CI_SERVICE_PRINCIPAL }}
+          subscription_id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+          tenant_id: ${{ secrets.AZURE_TENANT_ID }}
+          client_id: ${{ secrets.AZURE_CLIENT_ID }}
 
       - name: Retrieve GitHub PAT secrets
         id: retrieve-secret-pat
@@ -160,6 +175,9 @@ jobs:
           keyvault: "bitwarden-ci"
           secrets: "github-pat-bitwarden-devops-bot-repo-scope"
 
+      - name: Log out from Azure
+        uses: bitwarden/gh-actions/azure-logout@main
+
       - name: Trigger self-host build
         uses: actions/github-script@60a0d83039c74a4aee543508d2ffcb1c3799cdea # v7.0.1
         with:
diff --git a/.github/workflows/release-desktop-beta.yml b/.github/workflows/release-desktop-beta.yml
index a5e374395d8..e3eb9090cb7 100644
--- a/.github/workflows/release-desktop-beta.yml
+++ b/.github/workflows/release-desktop-beta.yml
@@ -15,6 +15,8 @@ jobs:
   setup:
     name: Setup
     runs-on: ubuntu-22.04
+    permissions:
+      contents: write
     outputs:
       release_version: ${{ steps.version.outputs.version }}
       release_channel: ${{ steps.release_channel.outputs.channel }}
@@ -115,6 +117,8 @@ jobs:
     name: Linux Build
     runs-on: ubuntu-22.04
     needs: setup
+    permissions:
+      contents: read
     env:
       _PACKAGE_VERSION: ${{ needs.setup.outputs.release_version }}
       _NODE_VERSION: ${{ needs.setup.outputs.node_version }}
@@ -204,6 +208,9 @@ jobs:
     name: Windows Build
     runs-on: windows-2022
     needs: setup
+    permissions:
+      contents: read
+      id-token: write
     defaults:
       run:
         shell: pwsh
@@ -237,10 +244,12 @@ jobs:
           npm --version
           choco --version
 
-      - name: Login to Azure
-        uses: Azure/login@e15b166166a8746d1a47596803bd8c1b595455cf # v1.6.0
+      - name: Log in to Azure
+        uses: bitwarden/gh-actions/azure-login@main
         with:
-          creds: ${{ secrets.AZURE_KV_CI_SERVICE_PRINCIPAL }}
+          subscription_id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+          tenant_id: ${{ secrets.AZURE_TENANT_ID }}
+          client_id: ${{ secrets.AZURE_CLIENT_ID }}
 
       - name: Retrieve secrets
         id: retrieve-secrets
@@ -253,6 +262,9 @@ jobs:
             code-signing-client-secret,
             code-signing-cert-name"
 
+      - name: Log out from Azure
+        uses: bitwarden/gh-actions/azure-logout@main
+
       - name: Install Node dependencies
         run: npm ci
         working-directory: ./
@@ -394,6 +406,9 @@ jobs:
     name: MacOS Build
     runs-on: macos-13
     needs: setup
+    permissions:
+      contents: read
+      id-token: write
     env:
       _PACKAGE_VERSION: ${{ needs.setup.outputs.release_version }}
       _NODE_VERSION: ${{ needs.setup.outputs.node_version }}
@@ -438,6 +453,20 @@ jobs:
           path: apps/browser/dist/Safari
           key: ${{ runner.os }}-${{ github.run_id }}-safari-extension
 
+      - name: Log in to Azure
+        uses: bitwarden/gh-actions/azure-login@main
+        with:
+          subscription_id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+          tenant_id: ${{ secrets.AZURE_TENANT_ID }}
+          client_id: ${{ secrets.AZURE_CLIENT_ID }}
+
+      - name: Get Azure Key Vault secrets
+        id: get-kv-secrets
+        uses: bitwarden/gh-actions/get-keyvault-secrets@main
+        with:
+          keyvault: gh-clients
+          secrets: "KEYCHAIN-PASSWORD"
+
       - name: Download Provisioning Profiles secrets
         env:
           ACCOUNT_NAME: bitwardenci
@@ -472,9 +501,12 @@ jobs:
           az keyvault secret show --id https://bitwarden-ci.vault.azure.net/certificates/macdev-cert |
             jq -r .value | base64 -d > $HOME/certificates/macdev-cert.p12
 
+      - name: Log out from Azure
+        uses: bitwarden/gh-actions/azure-logout@main
+
       - name: Set up keychain
         env:
-          KEYCHAIN_PASSWORD: ${{ secrets.KEYCHAIN_PASSWORD }}
+          KEYCHAIN_PASSWORD: ${{ steps.get-kv-secrets.outputs.KEYCHAIN-PASSWORD }}
         run: |
           security create-keychain -p $KEYCHAIN_PASSWORD build.keychain
           security default-keychain -s build.keychain
@@ -528,6 +560,10 @@ jobs:
     needs:
       - setup
       - macos-build
+    permissions:
+      contents: read
+      packages: read
+      id-token: write
     env:
       _PACKAGE_VERSION: ${{ needs.setup.outputs.release_version }}
       _NODE_VERSION: ${{ needs.setup.outputs.node_version }}
@@ -572,10 +608,19 @@ jobs:
           path: apps/browser/dist/Safari
           key: ${{ runner.os }}-${{ github.run_id }}-safari-extension
 
-      - name: Login to Azure
-        uses: Azure/login@e15b166166a8746d1a47596803bd8c1b595455cf # v1.6.0
+      - name: Log in to Azure
+        uses: bitwarden/gh-actions/azure-login@main
         with:
-          creds: ${{ secrets.AZURE_KV_CI_SERVICE_PRINCIPAL }}
+          subscription_id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+          tenant_id: ${{ secrets.AZURE_TENANT_ID }}
+          client_id: ${{ secrets.AZURE_CLIENT_ID }}
+
+      - name: Get Azure Key Vault secrets
+        id: get-kv-secrets
+        uses: bitwarden/gh-actions/get-keyvault-secrets@main
+        with:
+          keyvault: gh-clients
+          secrets: "KEYCHAIN-PASSWORD,APPLE-ID-USERNAME,APPLE-ID-PASSWORD"
 
       - name: Download Provisioning Profiles secrets
         env:
@@ -611,9 +656,12 @@ jobs:
           az keyvault secret show --id https://bitwarden-ci.vault.azure.net/certificates/macdev-cert |
             jq -r .value | base64 -d > $HOME/certificates/macdev-cert.p12
 
+      - name: Log out from Azure
+        uses: bitwarden/gh-actions/azure-logout@main
+
       - name: Set up keychain
         env:
-          KEYCHAIN_PASSWORD: ${{ secrets.KEYCHAIN_PASSWORD }}
+          KEYCHAIN_PASSWORD: ${{ steps.get-kv-secrets.outputs.KEYCHAIN-PASSWORD }}
         run: |
           security create-keychain -p $KEYCHAIN_PASSWORD build.keychain
           security default-keychain -s build.keychain
@@ -702,8 +750,8 @@ jobs:
 
       - name: Build application (dist)
         env:
-          APPLE_ID_USERNAME: ${{ secrets.APPLE_ID_USERNAME }}
-          APPLE_ID_PASSWORD: ${{ secrets.APPLE_ID_PASSWORD }}
+          APPLE_ID_USERNAME: ${{ steps.get-kv-secrets.outputs.APPLE-ID-USERNAME }}
+          APPLE_ID_PASSWORD: ${{ steps.get-kv-secrets.outputs.APPLE-ID-PASSWORD }}
         run: npm run pack:mac
 
       - name: Upload .zip artifact
@@ -741,6 +789,10 @@ jobs:
     needs:
       - setup
       - macos-build
+    permissions:
+      contents: read
+      packages: read
+      id-token: write
     env:
       _PACKAGE_VERSION: ${{ needs.setup.outputs.release_version }}
       _NODE_VERSION: ${{ needs.setup.outputs.node_version }}
@@ -785,6 +837,20 @@ jobs:
           path: apps/browser/dist/Safari
           key: ${{ runner.os }}-${{ github.run_id }}-safari-extension
 
+      - name: Log in to Azure
+        uses: bitwarden/gh-actions/azure-login@main
+        with:
+          subscription_id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+          tenant_id: ${{ secrets.AZURE_TENANT_ID }}
+          client_id: ${{ secrets.AZURE_CLIENT_ID }}
+
+      - name: Get Azure Key Vault secrets
+        id: get-kv-secrets
+        uses: bitwarden/gh-actions/get-keyvault-secrets@main
+        with:
+          keyvault: gh-clients
+          secrets: "KEYCHAIN-PASSWORD,APPLE-ID-USERNAME,APPLE-ID-PASSWORD"
+
       - name: Download Provisioning Profiles secrets
         env:
           ACCOUNT_NAME: bitwardenci
@@ -819,9 +885,12 @@ jobs:
           az keyvault secret show --id https://bitwarden-ci.vault.azure.net/certificates/macdev-cert |
             jq -r .value | base64 -d > $HOME/certificates/macdev-cert.p12
 
+      - name: Log out from Azure
+        uses: bitwarden/gh-actions/azure-logout@main
+
       - name: Set up keychain
         env:
-          KEYCHAIN_PASSWORD: ${{ secrets.KEYCHAIN_PASSWORD }}
+          KEYCHAIN_PASSWORD: ${{ steps.get-kv-secrets.outputs.KEYCHAIN-PASSWORD }}
         run: |
           security create-keychain -p $KEYCHAIN_PASSWORD build.keychain
           security default-keychain -s build.keychain
@@ -911,8 +980,8 @@ jobs:
       - name: Build application for App Store
         run: npm run pack:mac:mas
         env:
-          APPLE_ID_USERNAME: ${{ secrets.APPLE_ID_USERNAME }}
-          APPLE_ID_PASSWORD: ${{ secrets.APPLE_ID_PASSWORD }}
+          APPLE_ID_USERNAME: ${{ steps.get-kv-secrets.outputs.APPLE-ID-USERNAME }}
+          APPLE_ID_PASSWORD: ${{ steps.get-kv-secrets.outputs.APPLE-ID-PASSWORD }}
 
       - name: Upload .pkg artifact
         uses: actions/upload-artifact@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08 # v4.6.0
@@ -931,6 +1000,10 @@ jobs:
       - macos-build
       - macos-package-github
       - macos-package-mas
+    permissions:
+      contents: read
+      id-token: write
+      deployments: write
     steps:
       - name: Create GitHub deployment
         uses: chrnorm/deployment-action@55729fcebec3d284f60f5bcabbd8376437d696b1 # v2.0.7
@@ -942,10 +1015,12 @@ jobs:
           description: 'Deployment ${{ needs.setup.outputs.release_version }} to channel ${{ needs.setup.outputs.release_channel }} from branch ${{ needs.setup.outputs.branch_name }}'
           task: release
 
-      - name: Login to Azure
-        uses: Azure/login@e15b166166a8746d1a47596803bd8c1b595455cf # v1.6.0
+      - name: Log in to Azure
+        uses: bitwarden/gh-actions/azure-login@main
         with:
-          creds: ${{ secrets.AZURE_KV_CI_SERVICE_PRINCIPAL }}
+          subscription_id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+          tenant_id: ${{ secrets.AZURE_TENANT_ID }}
+          client_id: ${{ secrets.AZURE_CLIENT_ID }}
 
       - name: Retrieve secrets
         id: retrieve-secrets
@@ -956,6 +1031,9 @@ jobs:
             aws-electron-access-key,
             aws-electron-bucket-name"
 
+      - name: Log out from Azure
+        uses: bitwarden/gh-actions/azure-logout@main
+
       - name: Download all artifacts
         uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8
         with:
@@ -1008,6 +1086,8 @@ jobs:
       - macos-package-github
       - macos-package-mas
       - release
+    permissions:
+      contents: write
     steps:
       - name: Checkout repo
         uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
diff --git a/.github/workflows/repository-management.yml b/.github/workflows/repository-management.yml
index d91e0a12afd..ecb8e448a8a 100644
--- a/.github/workflows/repository-management.yml
+++ b/.github/workflows/repository-management.yml
@@ -36,7 +36,9 @@ on:
         description: "New version override (leave blank for automatic calculation, example: '2024.1.0')"
         required: false
         type: string
+
 permissions: {}
+
 jobs:
   setup:
     name: Setup
@@ -56,6 +58,7 @@ jobs:
           fi
 
           echo "branch=$BRANCH" >> $GITHUB_OUTPUT
+
   bump_version:
     name: Bump Version
     if: ${{ always() }}
@@ -66,6 +69,9 @@ jobs:
       version_cli: ${{ steps.set-final-version-output.outputs.version_cli }}
       version_desktop: ${{ steps.set-final-version-output.outputs.version_desktop }}
       version_web: ${{ steps.set-final-version-output.outputs.version_web }}
+    permissions:
+      id-token: write
+
     steps:
       - name: Validate version input format
         if: ${{ inputs.version_number_override != '' }}
@@ -73,12 +79,29 @@ jobs:
         with:
           version: ${{ inputs.version_number_override }}
 
+      - name: Log in to Azure
+        uses: bitwarden/gh-actions/azure-login@main
+        with:
+          subscription_id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+          tenant_id: ${{ secrets.AZURE_TENANT_ID }}
+          client_id: ${{ secrets.AZURE_CLIENT_ID }}
+
+      - name: Get Azure Key Vault secrets
+        id: get-kv-secrets
+        uses: bitwarden/gh-actions/get-keyvault-secrets@main
+        with:
+          keyvault: gh-org-bitwarden
+          secrets: "BW-GHAPP-ID,BW-GHAPP-KEY"
+
+      - name: Log out from Azure
+        uses: bitwarden/gh-actions/azure-logout@main
+
       - name: Generate GH App token
         uses: actions/create-github-app-token@30bf6253fa41bdc8d1501d202ad15287582246b4 # v2.0.3
         id: app-token
         with:
-          app-id: ${{ secrets.BW_GHAPP_ID }}
-          private-key: ${{ secrets.BW_GHAPP_KEY }}
+          app-id: ${{ steps.get-kv-secrets.outputs.BW-GHAPP-ID }}
+          private-key: ${{ steps.get-kv-secrets.outputs.BW-GHAPP-KEY }}
 
       - name: Check out branch
         uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
@@ -400,6 +423,7 @@ jobs:
       - name: Push changes
         if: ${{ steps.version-changed.outputs.changes_to_commit == 'TRUE' }}
         run: git push
+
   cut_branch:
     name: Cut branch
     if: ${{ needs.setup.outputs.branch == 'rc' }}
@@ -407,13 +431,33 @@ jobs:
       - setup
       - bump_version
     runs-on: ubuntu-24.04
+    permissions:
+      id-token: write
+
     steps:
+      - name: Log in to Azure
+        uses: bitwarden/gh-actions/azure-login@main
+        with:
+          subscription_id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+          tenant_id: ${{ secrets.AZURE_TENANT_ID }}
+          client_id: ${{ secrets.AZURE_CLIENT_ID }}
+
+      - name: Get Azure Key Vault secrets
+        id: get-kv-secrets
+        uses: bitwarden/gh-actions/get-keyvault-secrets@main
+        with:
+          keyvault: gh-org-bitwarden
+          secrets: "BW-GHAPP-ID,BW-GHAPP-KEY"
+
+      - name: Log out from Azure
+        uses: bitwarden/gh-actions/azure-logout@main
+
       - name: Generate GH App token
         uses: actions/create-github-app-token@30bf6253fa41bdc8d1501d202ad15287582246b4 # v2.0.3
         id: app-token
         with:
-          app-id: ${{ secrets.BW_GHAPP_ID }}
-          private-key: ${{ secrets.BW_GHAPP_KEY }}
+          app-id: ${{ steps.get-kv-secrets.outputs.BW-GHAPP-ID }}
+          private-key: ${{ steps.get-kv-secrets.outputs.BW-GHAPP-KEY }}
 
       - name: Check out target ref
         uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
@@ -435,4 +479,4 @@ jobs:
           BRANCH_NAME: ${{ needs.setup.outputs.branch }}
         run: |
           git switch --quiet --create $BRANCH_NAME
-          git push --quiet --set-upstream origin $BRANCH_NAME
\ No newline at end of file
+          git push --quiet --set-upstream origin $BRANCH_NAME
diff --git a/.github/workflows/retrieve-current-desktop-rollout.yml b/.github/workflows/retrieve-current-desktop-rollout.yml
index 2ab3072f566..c45453ed9d0 100644
--- a/.github/workflows/retrieve-current-desktop-rollout.yml
+++ b/.github/workflows/retrieve-current-desktop-rollout.yml
@@ -11,11 +11,15 @@ jobs:
   rollout:
     name: Retrieve Rollout Percentage
     runs-on: ubuntu-22.04
+    permissions:
+      id-token: write
     steps:
-      - name: Login to Azure
-        uses: Azure/login@e15b166166a8746d1a47596803bd8c1b595455cf # v1.6.0
+      - name: Log in to Azure
+        uses: bitwarden/gh-actions/azure-login@main
         with:
-          creds: ${{ secrets.AZURE_KV_CI_SERVICE_PRINCIPAL }}
+          subscription_id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+          tenant_id: ${{ secrets.AZURE_TENANT_ID }}
+          client_id: ${{ secrets.AZURE_CLIENT_ID }}
 
       - name: Retrieve secrets
         id: retrieve-secrets
@@ -26,6 +30,9 @@ jobs:
             aws-electron-access-key,
             aws-electron-bucket-name"
 
+      - name: Log out from Azure
+        uses: bitwarden/gh-actions/azure-logout@main
+
       - name: Download channel update info files from S3
         env:
           AWS_ACCESS_KEY_ID: ${{ steps.retrieve-secrets.outputs.aws-electron-access-id }}
diff --git a/.github/workflows/staged-rollout-desktop.yml b/.github/workflows/staged-rollout-desktop.yml
index 4ec3af3be97..4adf81100bd 100644
--- a/.github/workflows/staged-rollout-desktop.yml
+++ b/.github/workflows/staged-rollout-desktop.yml
@@ -18,11 +18,15 @@ jobs:
   rollout:
     name: Update Rollout Percentage
     runs-on: ubuntu-22.04
+    permissions:
+      id-token: write
     steps:
-      - name: Login to Azure
-        uses: Azure/login@e15b166166a8746d1a47596803bd8c1b595455cf # v1.6.0
+      - name: Log in to Azure
+        uses: bitwarden/gh-actions/azure-login@main
         with:
-          creds: ${{ secrets.AZURE_KV_CI_SERVICE_PRINCIPAL }}
+          subscription_id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+          tenant_id: ${{ secrets.AZURE_TENANT_ID }}
+          client_id: ${{ secrets.AZURE_CLIENT_ID }}
 
       - name: Retrieve secrets
         id: retrieve-secrets
@@ -33,6 +37,9 @@ jobs:
             aws-electron-access-key,
             aws-electron-bucket-name"
 
+      - name: Log out from Azure
+        uses: bitwarden/gh-actions/azure-logout@main
+
       - name: Download channel update info files from S3
         env:
           AWS_ACCESS_KEY_ID: ${{ steps.retrieve-secrets.outputs.aws-electron-access-id }}
diff --git a/.github/workflows/version-auto-bump.yml b/.github/workflows/version-auto-bump.yml
index e8bd1dde246..3cb5646886a 100644
--- a/.github/workflows/version-auto-bump.yml
+++ b/.github/workflows/version-auto-bump.yml
@@ -9,13 +9,33 @@ jobs:
   bump-version:
     name: Bump Desktop Version
     runs-on: ubuntu-24.04
+    permissions:
+      id-token: write
+      contents: write
     steps:
+      - name: Log in to Azure
+        uses: bitwarden/gh-actions/azure-login@main
+        with:
+          subscription_id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+          tenant_id: ${{ secrets.AZURE_TENANT_ID }}
+          client_id: ${{ secrets.AZURE_CLIENT_ID }}
+
+      - name: Get Azure Key Vault secrets
+        id: get-kv-secrets
+        uses: bitwarden/gh-actions/get-keyvault-secrets@main
+        with:
+          keyvault: gh-org-bitwarden
+          secrets: "BW-GHAPP-ID,BW-GHAPP-KEY"
+
+      - name: Log out from Azure
+        uses: bitwarden/gh-actions/azure-logout@main
+
       - name: Generate GH App token
         uses: actions/create-github-app-token@30bf6253fa41bdc8d1501d202ad15287582246b4 # v2.0.3
         id: app-token
         with:
-          app-id: ${{ secrets.BW_GHAPP_ID }}
-          private-key: ${{ secrets.BW_GHAPP_KEY }}
+          app-id: ${{ steps.get-kv-secrets.outputs.BW-GHAPP-ID }}
+          private-key: ${{ steps.get-kv-secrets.outputs.BW-GHAPP-KEY }}
 
       - name: Check out target ref
         uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2

From 1f20bcecf0b0154ed45c889625e734069113a643 Mon Sep 17 00:00:00 2001
From: Alex Morask <144709477+amorask-bitwarden@users.noreply.github.com>
Date: Mon, 21 Jul 2025 15:06:02 -0500
Subject: [PATCH 186/239] Hide bank account for premium and when non-premium
 selects non-US country (#15707)

---
 .../change-payment-method-dialog.component.ts |  6 +++-
 .../enter-payment-method.component.ts         | 31 ++++++++++---------
 2 files changed, 21 insertions(+), 16 deletions(-)

diff --git a/apps/web/src/app/billing/payment/components/change-payment-method-dialog.component.ts b/apps/web/src/app/billing/payment/components/change-payment-method-dialog.component.ts
index efd0055fb95..ff5156ba636 100644
--- a/apps/web/src/app/billing/payment/components/change-payment-method-dialog.component.ts
+++ b/apps/web/src/app/billing/payment/components/change-payment-method-dialog.component.ts
@@ -28,7 +28,11 @@ type DialogResult =
           {{ "changePaymentMethod" | i18n }}
         </span>
         <div bitDialogContent>
-          <app-enter-payment-method [group]="formGroup" [includeBillingAddress]="true">
+          <app-enter-payment-method
+            [group]="formGroup"
+            [showBankAccount]="dialogParams.owner.type !== 'account'"
+            [includeBillingAddress]="true"
+          >
           </app-enter-payment-method>
         </div>
         <ng-container bitDialogFooter>
diff --git a/apps/web/src/app/billing/payment/components/enter-payment-method.component.ts b/apps/web/src/app/billing/payment/components/enter-payment-method.component.ts
index 4f5b2e3b15c..b73c3297e9e 100644
--- a/apps/web/src/app/billing/payment/components/enter-payment-method.component.ts
+++ b/apps/web/src/app/billing/payment/components/enter-payment-method.component.ts
@@ -1,6 +1,6 @@
 import { Component, Input, OnInit } from "@angular/core";
 import { FormControl, FormGroup, Validators } from "@angular/forms";
-import { BehaviorSubject, startWith, Subject, takeUntil } from "rxjs";
+import { map, Observable, of, startWith, Subject, takeUntil } from "rxjs";
 
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
@@ -48,7 +48,7 @@ type PaymentMethodFormGroup = FormGroup<{
               {{ "creditCard" | i18n }}
             </bit-label>
           </bit-radio-button>
-          @if (showBankAccount) {
+          @if (showBankAccount$ | async) {
             <bit-radio-button id="bank-payment-method" [value]="'bankAccount'">
               <bit-label>
                 <i class="bwi bwi-fw bwi-billing" aria-hidden="true"></i>
@@ -226,20 +226,12 @@ type PaymentMethodFormGroup = FormGroup<{
 export class EnterPaymentMethodComponent implements OnInit {
   @Input({ required: true }) group!: PaymentMethodFormGroup;
 
-  private showBankAccountSubject = new BehaviorSubject<boolean>(true);
-  showBankAccount$ = this.showBankAccountSubject.asObservable();
-  @Input()
-  set showBankAccount(value: boolean) {
-    this.showBankAccountSubject.next(value);
-  }
-  get showBankAccount(): boolean {
-    return this.showBankAccountSubject.value;
-  }
-
-  @Input() showPayPal: boolean = true;
-  @Input() showAccountCredit: boolean = false;
-  @Input() includeBillingAddress: boolean = false;
+  @Input() private showBankAccount = true;
+  @Input() showPayPal = true;
+  @Input() showAccountCredit = false;
+  @Input() includeBillingAddress = false;
 
+  protected showBankAccount$!: Observable<boolean>;
   protected selectableCountries = selectableCountries;
 
   private destroy$ = new Subject<void>();
@@ -267,7 +259,16 @@ export class EnterPaymentMethodComponent implements OnInit {
     }
 
     if (!this.includeBillingAddress) {
+      this.showBankAccount$ = of(this.showBankAccount);
       this.group.controls.billingAddress.disable();
+    } else {
+      this.group.controls.billingAddress.patchValue({
+        country: "US",
+      });
+      this.showBankAccount$ = this.group.controls.billingAddress.controls.country.valueChanges.pipe(
+        startWith(this.group.controls.billingAddress.controls.country.value),
+        map((country) => this.showBankAccount && country === "US"),
+      );
     }
 
     this.group.controls.type.valueChanges

From 77940116e6818ef5eb4eb8247aab6e75574bf0a3 Mon Sep 17 00:00:00 2001
From: Robyn MacCallum <robyntmaccallum@gmail.com>
Date: Mon, 21 Jul 2025 16:15:39 -0400
Subject: [PATCH 187/239] DDG integration files modified workflow (#15665)

* Create alert-ddg-files-modified.yml

* Update alert-ddg-files-modified.yml

* Add encrypted-message-handler.service to alert-ddg-files-modified.yml

* Pin action versions

* Add permissions

* Update alert-ddg-files-modified.yml

* Update alert-ddg-files-modified.yml

* Add parameter to get list of files changed

* Wording update

* Update CODEOWNERS

* Make branch target main
---
 .github/CODEOWNERS                            |  2 +
 .../workflows/alert-ddg-files-modified.yml    | 50 +++++++++++++++++++
 2 files changed, 52 insertions(+)
 create mode 100644 .github/workflows/alert-ddg-files-modified.yml

diff --git a/.github/CODEOWNERS b/.github/CODEOWNERS
index ef2e26916e5..7d7fec2a5ea 100644
--- a/.github/CODEOWNERS
+++ b/.github/CODEOWNERS
@@ -138,6 +138,8 @@ apps/desktop/desktop_native/autotype @bitwarden/team-autofill-dev
 # DuckDuckGo integration
 apps/desktop/native-messaging-test-runner @bitwarden/team-autofill-dev
 apps/desktop/src/services/duckduckgo-message-handler.service.ts @bitwarden/team-autofill-dev
+apps/desktop/src/services/encrypted-message-handler.service.ts @bitwarden/team-autofill-dev
+.github/workflows/alert-ddg-files-modified.yml @bitwarden/team-autofill-dev
 # SSH Agent
 apps/desktop/desktop_native/core/src/ssh_agent @bitwarden/team-autofill-dev @bitwarden/wg-ssh-keys
 
diff --git a/.github/workflows/alert-ddg-files-modified.yml b/.github/workflows/alert-ddg-files-modified.yml
new file mode 100644
index 00000000000..61bb7f1e8af
--- /dev/null
+++ b/.github/workflows/alert-ddg-files-modified.yml
@@ -0,0 +1,50 @@
+name: DDG File Change Monitor
+
+on:
+  pull_request:
+    branches: [ main ]
+    types: [ opened, synchronize ]
+
+jobs:
+  check-files:
+    name: Check files
+    runs-on: ubuntu-22.04
+    permissions:
+      contents: read
+      pull-requests: write
+    steps:
+    - name: Checkout code
+      uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+      with:
+        fetch-depth: 0
+
+    - name: Get changed files
+      id: changed-files
+      uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2
+      with:
+        list-files: shell
+        filters: |
+          monitored:
+            - 'apps/desktop/native-messaging-test-runner/**'
+            - 'apps/desktop/src/services/duckduckgo-message-handler.service.ts'
+            - 'apps/desktop/src/services/encrypted-message-handler.service.ts'
+
+    - name: Comment on PR if monitored files changed
+      if: steps.changed-files.outputs.monitored == 'true'
+      uses: actions/github-script@60a0d83039c74a4aee543508d2ffcb1c3799cdea # v7.0.1
+      with:
+        script: |
+          const changedFiles = `${{ steps.changed-files.outputs.monitored_files }}`.split(' ').filter(file => file.trim() !== '');
+
+          const message = `⚠️🦆 **DuckDuckGo Integration files have been modified in this PR:**
+          
+          ${changedFiles.map(file => `- \`${file}\``).join('\n')}
+          
+          Please run the DuckDuckGo native messaging test runner from this branch using [these instructions](https://contributing.bitwarden.com/getting-started/clients/desktop/native-messaging-test-runner) and ensure it functions properly.`;
+          
+          github.rest.issues.createComment({
+            issue_number: context.issue.number,
+            owner: context.repo.owner,
+            repo: context.repo.repo,
+            body: message
+          });

From 81ee26733e6040a8d32afda67b5c3db3d8d094e0 Mon Sep 17 00:00:00 2001
From: Andy Pixley <3723676+pixman20@users.noreply.github.com>
Date: Mon, 21 Jul 2025 16:17:39 -0400
Subject: [PATCH 188/239] [BRE-831] Fixing permissions (#15713)

---
 .github/workflows/deploy-web.yml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/.github/workflows/deploy-web.yml b/.github/workflows/deploy-web.yml
index 3ffe18d1729..e21f7ae1e79 100644
--- a/.github/workflows/deploy-web.yml
+++ b/.github/workflows/deploy-web.yml
@@ -277,6 +277,8 @@ jobs:
       - artifact-check
     runs-on: ubuntu-22.04
     if: ${{ always() && ( contains( inputs.environment , 'QA' ) || contains( inputs.environment , 'DEV' ) ) }}
+    permissions:
+      id-token: write
     outputs:
       channel_id: ${{ steps.slack-message.outputs.channel_id }}
       ts: ${{ steps.slack-message.outputs.ts }}

From 391f540d1f488354002090823c3054e960b28a15 Mon Sep 17 00:00:00 2001
From: Shane Melton <smelton@bitwarden.com>
Date: Mon, 21 Jul 2025 23:27:01 -0700
Subject: [PATCH 189/239] [PM-22136] Implement SDK cipher encryption  (#15337)

* [PM-22136] Update sdk cipher view map to support uknown uuid type

* [PM-22136] Add key to CipherView for copying to SdkCipherView for encryption

* [PM-22136] Add fromSdk* helpers to Cipher domain objects

* [PM-22136] Add toSdk* helpers to Cipher View objects

* [PM-22136] Add encrypt() to cipher encryption service

* [PM-22136] Add feature flag

* [PM-22136] Use new SDK encrypt method when feature flag is enabled

* [PM-22136] Filter out null/empty URIs

* [PM-22136] Change default value for cipher view arrays to []. See ADR-0014.

* [PM-22136] Keep encrypted key value on attachment so that it is passed to the SDK

* [PM-22136] Keep encrypted key value on CipherView so that it is passed to the SDK during encryption

* [PM-22136] Update failing attachment test

* [PM-22136] Update failing importer tests due to new default value for arrays

* [PM-22136] Update CipherView.fromJson to handle the prototype of EncString for the cipher key

* [PM-22136] Add tickets for followup work

* [PM-22136] Use new set_fido2_credentials SDK method instead

* [PM-22136] Fix missing prototype when decrypting Fido2Credentials

* [PM-22136] Fix test after sdk change

* [PM-22136] Update @bitwarden/sdk-internal version

* [PM-22136] Fix some strict typing errors

* [PM-23348] Migrate move cipher to org to SDK (#15567)

* [PM-23348] Add moveToOrganization method to cipher-encryption.service.ts

* [PM-23348] Use cipherEncryptionService.moveToOrganization in cipherService shareWithServer and shareManyWithServer methods

* [PM-23348] Update cipherFormService to use the shareWithServer() method instead of encrypt()

* [PM-23348] Fix typo

* [PM-23348] Add missing docs

* [PM-22136] Fix EncString import after merge with main
---
 libs/common/src/enums/feature-flag.enum.ts    |   2 +
 .../abstractions/cipher-encryption.service.ts |  25 +-
 .../src/vault/abstractions/cipher.service.ts  |  10 +
 .../models/api/cipher-permissions.api.ts      |   9 +-
 .../src/vault/models/data/local.data.ts       |  41 +++
 .../vault/models/domain/attachment.spec.ts    |   1 +
 .../src/vault/models/domain/attachment.ts     |  21 ++
 libs/common/src/vault/models/domain/card.ts   |  20 ++
 .../src/vault/models/domain/cipher.spec.ts    | 188 +++++++++++++-
 libs/common/src/vault/models/domain/cipher.ts |  60 ++++-
 .../vault/models/domain/fido2-credential.ts   |  28 ++
 .../src/vault/models/domain/field.spec.ts     |  39 ++-
 libs/common/src/vault/models/domain/field.ts  |  18 ++
 .../src/vault/models/domain/identity.ts       |  32 +++
 .../src/vault/models/domain/login-uri.ts      |  13 +
 libs/common/src/vault/models/domain/login.ts  |  27 ++
 .../src/vault/models/domain/password.ts       |  16 ++
 .../src/vault/models/domain/secure-note.ts    |  15 ++
 .../common/src/vault/models/domain/ssh-key.ts |  17 ++
 .../common/src/vault/models/view/card.view.ts |  10 +-
 .../src/vault/models/view/cipher.view.spec.ts |  94 ++++++-
 .../src/vault/models/view/cipher.view.ts      | 116 +++++++--
 .../models/view/fido2-credential.view.ts      |  23 +-
 .../src/vault/models/view/field.view.ts       |  14 +-
 .../src/vault/models/view/identity.view.ts    |  10 +-
 .../src/vault/models/view/login-uri.view.ts   |   9 +
 .../src/vault/models/view/login.view.ts       |  22 +-
 .../models/view/password-history.view.spec.ts |  13 +
 .../models/view/password-history.view.ts      |  10 +
 .../src/vault/models/view/secure-note.view.ts |  10 +-
 .../src/vault/models/view/ssh-key.view.ts     |  11 +
 .../src/vault/services/cipher.service.spec.ts | 167 +++++++++++-
 .../src/vault/services/cipher.service.ts      | 122 +++++++--
 .../default-cipher-encryption.service.spec.ts | 245 ++++++++++++++++--
 .../default-cipher-encryption.service.ts      | 106 +++++++-
 libs/importer/src/importers/base-importer.ts  |   6 -
 .../keeper/keeper-csv-importer.spec.ts        |   2 +-
 .../keeper/keeper-json-importer.spec.ts       |   2 +-
 .../services/default-cipher-form.service.ts   |  35 ++-
 .../cipher-view/cipher-view.component.html    |   4 +-
 .../password-history-view.component.spec.ts   |  11 +-
 package-lock.json                             |   8 +-
 package.json                                  |   2 +-
 43 files changed, 1485 insertions(+), 149 deletions(-)

diff --git a/libs/common/src/enums/feature-flag.enum.ts b/libs/common/src/enums/feature-flag.enum.ts
index 1af2ab1f0a9..8e9dc6fd35e 100644
--- a/libs/common/src/enums/feature-flag.enum.ts
+++ b/libs/common/src/enums/feature-flag.enum.ts
@@ -54,6 +54,7 @@ export enum FeatureFlag {
   PM9111ExtensionPersistAddEditForm = "pm-9111-extension-persist-add-edit-form",
   PM19941MigrateCipherDomainToSdk = "pm-19941-migrate-cipher-domain-to-sdk",
   PM22134SdkCipherListView = "pm-22134-sdk-cipher-list-view",
+  PM22136_SdkCipherEncryption = "pm-22136-sdk-cipher-encryption",
   CipherKeyEncryption = "cipher-key-encryption",
   EndUserNotifications = "pm-10609-end-user-notifications",
   RemoveCardItemTypePolicy = "pm-16442-remove-card-item-type-policy",
@@ -103,6 +104,7 @@ export const DefaultFeatureFlagValue = {
   [FeatureFlag.RemoveCardItemTypePolicy]: FALSE,
   [FeatureFlag.PM22134SdkCipherListView]: FALSE,
   [FeatureFlag.PM19315EndUserActivationMvp]: FALSE,
+  [FeatureFlag.PM22136_SdkCipherEncryption]: FALSE,
 
   /* Auth */
   [FeatureFlag.PM16117_SetInitialPasswordRefactor]: FALSE,
diff --git a/libs/common/src/vault/abstractions/cipher-encryption.service.ts b/libs/common/src/vault/abstractions/cipher-encryption.service.ts
index 6b2a8e8943e..067c63b2110 100644
--- a/libs/common/src/vault/abstractions/cipher-encryption.service.ts
+++ b/libs/common/src/vault/abstractions/cipher-encryption.service.ts
@@ -1,6 +1,7 @@
+import { EncryptionContext } from "@bitwarden/common/vault/abstractions/cipher.service";
 import { CipherListView } from "@bitwarden/sdk-internal";
 
-import { UserId } from "../../types/guid";
+import { UserId, OrganizationId } from "../../types/guid";
 import { Cipher } from "../models/domain/cipher";
 import { AttachmentView } from "../models/view/attachment.view";
 import { CipherView } from "../models/view/cipher.view";
@@ -9,6 +10,28 @@ import { CipherView } from "../models/view/cipher.view";
  * Service responsible for encrypting and decrypting ciphers.
  */
 export abstract class CipherEncryptionService {
+  /**
+   * Encrypts a cipher using the SDK for the given userId.
+   * @param model The cipher view to encrypt
+   * @param userId The user ID to initialize the SDK client with
+   *
+   * @returns A promise that resolves to the encryption context, or undefined if encryption fails
+   */
+  abstract encrypt(model: CipherView, userId: UserId): Promise<EncryptionContext | undefined>;
+
+  /**
+   * Move the cipher to the specified organization by re-encrypting its keys with the organization's key.
+   * The cipher.organizationId will be updated to the new organizationId.
+   * @param model The cipher view to move to the organization
+   * @param organizationId The ID of the organization to move the cipher to
+   * @param userId The user ID to initialize the SDK client with
+   */
+  abstract moveToOrganization(
+    model: CipherView,
+    organizationId: OrganizationId,
+    userId: UserId,
+  ): Promise<EncryptionContext | undefined>;
+
   /**
    * Decrypts a cipher using the SDK for the given userId.
    *
diff --git a/libs/common/src/vault/abstractions/cipher.service.ts b/libs/common/src/vault/abstractions/cipher.service.ts
index d1d686a66af..2f186369463 100644
--- a/libs/common/src/vault/abstractions/cipher.service.ts
+++ b/libs/common/src/vault/abstractions/cipher.service.ts
@@ -120,11 +120,21 @@ export abstract class CipherService implements UserKeyRotationDataProvider<Ciphe
     orgAdmin?: boolean,
     isNotClone?: boolean,
   ): Promise<Cipher>;
+
+  /**
+   * Move a cipher to an organization by re-encrypting its keys with the organization's key.
+   * @param cipher The cipher to move
+   * @param organizationId The Id of the organization to move the cipher to
+   * @param collectionIds The collection Ids to assign the cipher to in the organization
+   * @param userId The Id of the user performing the operation
+   * @param originalCipher Optional original cipher that will be used to compare/update password history
+   */
   abstract shareWithServer(
     cipher: CipherView,
     organizationId: string,
     collectionIds: string[],
     userId: UserId,
+    originalCipher?: Cipher,
   ): Promise<Cipher>;
   abstract shareManyWithServer(
     ciphers: CipherView[],
diff --git a/libs/common/src/vault/models/api/cipher-permissions.api.ts b/libs/common/src/vault/models/api/cipher-permissions.api.ts
index b7341d39b1d..f9b62c4fc8d 100644
--- a/libs/common/src/vault/models/api/cipher-permissions.api.ts
+++ b/libs/common/src/vault/models/api/cipher-permissions.api.ts
@@ -4,7 +4,7 @@ import { CipherPermissions as SdkCipherPermissions } from "@bitwarden/sdk-intern
 
 import { BaseResponse } from "../../../models/response/base.response";
 
-export class CipherPermissionsApi extends BaseResponse {
+export class CipherPermissionsApi extends BaseResponse implements SdkCipherPermissions {
   delete: boolean = false;
   restore: boolean = false;
 
@@ -35,4 +35,11 @@ export class CipherPermissionsApi extends BaseResponse {
 
     return permissions;
   }
+
+  /**
+   * Converts the CipherPermissionsApi to an SdkCipherPermissions
+   */
+  toSdkCipherPermissions(): SdkCipherPermissions {
+    return this;
+  }
 }
diff --git a/libs/common/src/vault/models/data/local.data.ts b/libs/common/src/vault/models/data/local.data.ts
index 9ba820a58a2..50a24feba6f 100644
--- a/libs/common/src/vault/models/data/local.data.ts
+++ b/libs/common/src/vault/models/data/local.data.ts
@@ -1,4 +1,45 @@
+import {
+  LocalDataView as SdkLocalDataView,
+  LocalData as SdkLocalData,
+} from "@bitwarden/sdk-internal";
+
 export type LocalData = {
   lastUsedDate?: number;
   lastLaunched?: number;
 };
+
+/**
+ * Convert the SdkLocalDataView to LocalData
+ * @param localData
+ */
+export function fromSdkLocalData(
+  localData: SdkLocalDataView | SdkLocalData | undefined,
+): LocalData | undefined {
+  if (localData == null) {
+    return undefined;
+  }
+  return {
+    lastUsedDate: localData.lastUsedDate ? new Date(localData.lastUsedDate).getTime() : undefined,
+    lastLaunched: localData.lastLaunched ? new Date(localData.lastLaunched).getTime() : undefined,
+  };
+}
+
+/**
+ * Convert the LocalData to SdkLocalData
+ * @param localData
+ */
+export function toSdkLocalData(
+  localData: LocalData | undefined,
+): (SdkLocalDataView & SdkLocalData) | undefined {
+  if (localData == null) {
+    return undefined;
+  }
+  return {
+    lastUsedDate: localData.lastUsedDate
+      ? new Date(localData.lastUsedDate).toISOString()
+      : undefined,
+    lastLaunched: localData.lastLaunched
+      ? new Date(localData.lastLaunched).toISOString()
+      : undefined,
+  };
+}
diff --git a/libs/common/src/vault/models/domain/attachment.spec.ts b/libs/common/src/vault/models/domain/attachment.spec.ts
index d2b536b0590..2ea2c3d9a1d 100644
--- a/libs/common/src/vault/models/domain/attachment.spec.ts
+++ b/libs/common/src/vault/models/domain/attachment.spec.ts
@@ -93,6 +93,7 @@ describe("Attachment", () => {
         sizeName: "1.1 KB",
         fileName: "fileName",
         key: expect.any(SymmetricCryptoKey),
+        encryptedKey: attachment.key,
       });
     });
 
diff --git a/libs/common/src/vault/models/domain/attachment.ts b/libs/common/src/vault/models/domain/attachment.ts
index abfebffb2e6..638f354c4b8 100644
--- a/libs/common/src/vault/models/domain/attachment.ts
+++ b/libs/common/src/vault/models/domain/attachment.ts
@@ -56,6 +56,7 @@ export class Attachment extends Domain {
 
     if (this.key != null) {
       view.key = await this.decryptAttachmentKey(orgId, encKey);
+      view.encryptedKey = this.key; // Keep the encrypted key for the view
     }
 
     return view;
@@ -131,4 +132,24 @@ export class Attachment extends Domain {
       key: this.key?.toJSON(),
     };
   }
+
+  /**
+   * Maps an SDK Attachment object to an Attachment
+   * @param obj - The SDK attachment object
+   */
+  static fromSdkAttachment(obj: SdkAttachment): Attachment | undefined {
+    if (!obj) {
+      return undefined;
+    }
+
+    const attachment = new Attachment();
+    attachment.id = obj.id;
+    attachment.url = obj.url;
+    attachment.size = obj.size;
+    attachment.sizeName = obj.sizeName;
+    attachment.fileName = EncString.fromJSON(obj.fileName);
+    attachment.key = EncString.fromJSON(obj.key);
+
+    return attachment;
+  }
 }
diff --git a/libs/common/src/vault/models/domain/card.ts b/libs/common/src/vault/models/domain/card.ts
index c78f9dfb719..688053ae93c 100644
--- a/libs/common/src/vault/models/domain/card.ts
+++ b/libs/common/src/vault/models/domain/card.ts
@@ -103,4 +103,24 @@ export class Card extends Domain {
       code: this.code?.toJSON(),
     };
   }
+
+  /**
+   * Maps an SDK Card object to a Card
+   * @param obj - The SDK Card object
+   */
+  static fromSdkCard(obj: SdkCard): Card | undefined {
+    if (obj == null) {
+      return undefined;
+    }
+
+    const card = new Card();
+    card.cardholderName = EncString.fromJSON(obj.cardholderName);
+    card.brand = EncString.fromJSON(obj.brand);
+    card.number = EncString.fromJSON(obj.number);
+    card.expMonth = EncString.fromJSON(obj.expMonth);
+    card.expYear = EncString.fromJSON(obj.expYear);
+    card.code = EncString.fromJSON(obj.code);
+
+    return card;
+  }
 }
diff --git a/libs/common/src/vault/models/domain/cipher.spec.ts b/libs/common/src/vault/models/domain/cipher.spec.ts
index 3ea8916a10b..60fff8b510e 100644
--- a/libs/common/src/vault/models/domain/cipher.spec.ts
+++ b/libs/common/src/vault/models/domain/cipher.spec.ts
@@ -10,6 +10,7 @@ import {
   UriMatchType,
   CipherRepromptType as SdkCipherRepromptType,
   LoginLinkedIdType,
+  Cipher as SdkCipher,
 } from "@bitwarden/sdk-internal";
 
 import { makeStaticByteArray, mockEnc, mockFromJson } from "../../../../spec/utils";
@@ -206,7 +207,7 @@ describe("Cipher DTO", () => {
     it("Convert", () => {
       const cipher = new Cipher(cipherData);
 
-      expect(cipher).toEqual({
+      expect(cipher).toMatchObject({
         initializerKey: InitializerKey.Cipher,
         id: "id",
         organizationId: "orgId",
@@ -339,9 +340,9 @@ describe("Cipher DTO", () => {
         edit: true,
         viewPassword: true,
         login: loginView,
-        attachments: null,
-        fields: null,
-        passwordHistory: null,
+        attachments: [],
+        fields: [],
+        passwordHistory: [],
         collectionIds: undefined,
         revisionDate: new Date("2022-01-31T12:00:00.000Z"),
         creationDate: new Date("2022-01-01T12:00:00.000Z"),
@@ -462,9 +463,9 @@ describe("Cipher DTO", () => {
         edit: true,
         viewPassword: true,
         secureNote: { type: 0 },
-        attachments: null,
-        fields: null,
-        passwordHistory: null,
+        attachments: [],
+        fields: [],
+        passwordHistory: [],
         collectionIds: undefined,
         revisionDate: new Date("2022-01-31T12:00:00.000Z"),
         creationDate: new Date("2022-01-01T12:00:00.000Z"),
@@ -603,9 +604,9 @@ describe("Cipher DTO", () => {
         edit: true,
         viewPassword: true,
         card: cardView,
-        attachments: null,
-        fields: null,
-        passwordHistory: null,
+        attachments: [],
+        fields: [],
+        passwordHistory: [],
         collectionIds: undefined,
         revisionDate: new Date("2022-01-31T12:00:00.000Z"),
         creationDate: new Date("2022-01-01T12:00:00.000Z"),
@@ -768,9 +769,9 @@ describe("Cipher DTO", () => {
         edit: true,
         viewPassword: true,
         identity: identityView,
-        attachments: null,
-        fields: null,
-        passwordHistory: null,
+        attachments: [],
+        fields: [],
+        passwordHistory: [],
         collectionIds: undefined,
         revisionDate: new Date("2022-01-31T12:00:00.000Z"),
         creationDate: new Date("2022-01-01T12:00:00.000Z"),
@@ -1001,6 +1002,167 @@ describe("Cipher DTO", () => {
         revisionDate: "2022-01-31T12:00:00.000Z",
       });
     });
+
+    it("should map from SDK Cipher", () => {
+      jest.restoreAllMocks();
+      const sdkCipher: SdkCipher = {
+        id: "id",
+        organizationId: "orgId",
+        folderId: "folderId",
+        collectionIds: [],
+        key: "EncryptedString",
+        name: "EncryptedString",
+        notes: "EncryptedString",
+        type: SdkCipherType.Login,
+        login: {
+          username: "EncryptedString",
+          password: "EncryptedString",
+          passwordRevisionDate: "2022-01-31T12:00:00.000Z",
+          uris: [
+            {
+              uri: "EncryptedString",
+              uriChecksum: "EncryptedString",
+              match: UriMatchType.Domain,
+            },
+          ],
+          totp: "EncryptedString",
+          autofillOnPageLoad: false,
+          fido2Credentials: undefined,
+        },
+        identity: undefined,
+        card: undefined,
+        secureNote: undefined,
+        sshKey: undefined,
+        favorite: false,
+        reprompt: SdkCipherRepromptType.None,
+        organizationUseTotp: true,
+        edit: true,
+        permissions: new CipherPermissionsApi(),
+        viewPassword: true,
+        localData: {
+          lastUsedDate: "2025-04-15T12:00:00.000Z",
+          lastLaunched: "2025-04-15T12:00:00.000Z",
+        },
+        attachments: [
+          {
+            id: "a1",
+            url: "url",
+            size: "1100",
+            sizeName: "1.1 KB",
+            fileName: "file",
+            key: "EncKey",
+          },
+          {
+            id: "a2",
+            url: "url",
+            size: "1100",
+            sizeName: "1.1 KB",
+            fileName: "file",
+            key: "EncKey",
+          },
+        ],
+        fields: [
+          {
+            name: "EncryptedString",
+            value: "EncryptedString",
+            type: FieldType.Linked,
+            linkedId: LoginLinkedIdType.Username,
+          },
+          {
+            name: "EncryptedString",
+            value: "EncryptedString",
+            type: FieldType.Linked,
+            linkedId: LoginLinkedIdType.Password,
+          },
+        ],
+        passwordHistory: [
+          {
+            password: "EncryptedString",
+            lastUsedDate: "2022-01-31T12:00:00.000Z",
+          },
+        ],
+        creationDate: "2022-01-01T12:00:00.000Z",
+        deletedDate: undefined,
+        revisionDate: "2022-01-31T12:00:00.000Z",
+      };
+
+      const lastUsedDate = new Date("2025-04-15T12:00:00.000Z").getTime();
+      const lastLaunched = new Date("2025-04-15T12:00:00.000Z").getTime();
+
+      const cipherData: CipherData = {
+        id: "id",
+        organizationId: "orgId",
+        folderId: "folderId",
+        edit: true,
+        permissions: new CipherPermissionsApi(),
+        collectionIds: [],
+        viewPassword: true,
+        organizationUseTotp: true,
+        favorite: false,
+        revisionDate: "2022-01-31T12:00:00.000Z",
+        type: CipherType.Login,
+        name: "EncryptedString",
+        notes: "EncryptedString",
+        creationDate: "2022-01-01T12:00:00.000Z",
+        deletedDate: null,
+        reprompt: CipherRepromptType.None,
+        key: "EncryptedString",
+        login: {
+          uris: [
+            {
+              uri: "EncryptedString",
+              uriChecksum: "EncryptedString",
+              match: UriMatchStrategy.Domain,
+            },
+          ],
+          username: "EncryptedString",
+          password: "EncryptedString",
+          passwordRevisionDate: "2022-01-31T12:00:00.000Z",
+          totp: "EncryptedString",
+          autofillOnPageLoad: false,
+        },
+        passwordHistory: [
+          { password: "EncryptedString", lastUsedDate: "2022-01-31T12:00:00.000Z" },
+        ],
+        attachments: [
+          {
+            id: "a1",
+            url: "url",
+            size: "1100",
+            sizeName: "1.1 KB",
+            fileName: "file",
+            key: "EncKey",
+          },
+          {
+            id: "a2",
+            url: "url",
+            size: "1100",
+            sizeName: "1.1 KB",
+            fileName: "file",
+            key: "EncKey",
+          },
+        ],
+        fields: [
+          {
+            name: "EncryptedString",
+            value: "EncryptedString",
+            type: FieldType.Linked,
+            linkedId: LoginLinkedId.Username,
+          },
+          {
+            name: "EncryptedString",
+            value: "EncryptedString",
+            type: FieldType.Linked,
+            linkedId: LoginLinkedId.Password,
+          },
+        ],
+      };
+      const expectedCipher = new Cipher(cipherData, { lastUsedDate, lastLaunched });
+
+      const cipher = Cipher.fromSdkCipher(sdkCipher);
+
+      expect(cipher).toEqual(expectedCipher);
+    });
   });
 });
 
diff --git a/libs/common/src/vault/models/domain/cipher.ts b/libs/common/src/vault/models/domain/cipher.ts
index 2f64fb82726..2a13cb06d71 100644
--- a/libs/common/src/vault/models/domain/cipher.ts
+++ b/libs/common/src/vault/models/domain/cipher.ts
@@ -2,6 +2,7 @@
 // @ts-strict-ignore
 import { Jsonify } from "type-fest";
 
+import { uuidToString } from "@bitwarden/common/platform/abstractions/sdk/sdk.service";
 import { Cipher as SdkCipher } from "@bitwarden/sdk-internal";
 
 import { EncString } from "../../../key-management/crypto/models/enc-string";
@@ -14,7 +15,7 @@ import { CipherRepromptType } from "../../enums/cipher-reprompt-type";
 import { CipherType } from "../../enums/cipher-type";
 import { CipherPermissionsApi } from "../api/cipher-permissions.api";
 import { CipherData } from "../data/cipher.data";
-import { LocalData } from "../data/local.data";
+import { LocalData, fromSdkLocalData, toSdkLocalData } from "../data/local.data";
 import { AttachmentView } from "../view/attachment.view";
 import { CipherView } from "../view/cipher.view";
 import { FieldView } from "../view/field.view";
@@ -361,16 +362,7 @@ export class Cipher extends Domain implements Decryptable<CipherView> {
           }
         : undefined,
       viewPassword: this.viewPassword ?? true,
-      localData: this.localData
-        ? {
-            lastUsedDate: this.localData.lastUsedDate
-              ? new Date(this.localData.lastUsedDate).toISOString()
-              : undefined,
-            lastLaunched: this.localData.lastLaunched
-              ? new Date(this.localData.lastLaunched).toISOString()
-              : undefined,
-          }
-        : undefined,
+      localData: toSdkLocalData(this.localData),
       attachments: this.attachments?.map((a) => a.toSdkAttachment()),
       fields: this.fields?.map((f) => f.toSdkField()),
       passwordHistory: this.passwordHistory?.map((ph) => ph.toSdkPasswordHistory()),
@@ -408,4 +400,50 @@ export class Cipher extends Domain implements Decryptable<CipherView> {
 
     return sdkCipher;
   }
+
+  /**
+   * Maps an SDK Cipher object to a Cipher
+   * @param sdkCipher - The SDK Cipher object
+   */
+  static fromSdkCipher(sdkCipher: SdkCipher | null): Cipher | undefined {
+    if (sdkCipher == null) {
+      return undefined;
+    }
+
+    const cipher = new Cipher();
+
+    cipher.id = sdkCipher.id ? uuidToString(sdkCipher.id) : undefined;
+    cipher.organizationId = sdkCipher.organizationId
+      ? uuidToString(sdkCipher.organizationId)
+      : undefined;
+    cipher.folderId = sdkCipher.folderId ? uuidToString(sdkCipher.folderId) : undefined;
+    cipher.collectionIds = sdkCipher.collectionIds ? sdkCipher.collectionIds.map(uuidToString) : [];
+    cipher.key = EncString.fromJSON(sdkCipher.key);
+    cipher.name = EncString.fromJSON(sdkCipher.name);
+    cipher.notes = EncString.fromJSON(sdkCipher.notes);
+    cipher.type = sdkCipher.type;
+    cipher.favorite = sdkCipher.favorite;
+    cipher.organizationUseTotp = sdkCipher.organizationUseTotp;
+    cipher.edit = sdkCipher.edit;
+    cipher.permissions = CipherPermissionsApi.fromSdkCipherPermissions(sdkCipher.permissions);
+    cipher.viewPassword = sdkCipher.viewPassword;
+    cipher.localData = fromSdkLocalData(sdkCipher.localData);
+    cipher.attachments = sdkCipher.attachments?.map((a) => Attachment.fromSdkAttachment(a)) ?? [];
+    cipher.fields = sdkCipher.fields?.map((f) => Field.fromSdkField(f)) ?? [];
+    cipher.passwordHistory =
+      sdkCipher.passwordHistory?.map((ph) => Password.fromSdkPasswordHistory(ph)) ?? [];
+    cipher.creationDate = new Date(sdkCipher.creationDate);
+    cipher.revisionDate = new Date(sdkCipher.revisionDate);
+    cipher.deletedDate = sdkCipher.deletedDate ? new Date(sdkCipher.deletedDate) : null;
+    cipher.reprompt = sdkCipher.reprompt;
+
+    // Cipher type specific properties
+    cipher.login = Login.fromSdkLogin(sdkCipher.login);
+    cipher.secureNote = SecureNote.fromSdkSecureNote(sdkCipher.secureNote);
+    cipher.card = Card.fromSdkCard(sdkCipher.card);
+    cipher.identity = Identity.fromSdkIdentity(sdkCipher.identity);
+    cipher.sshKey = SshKey.fromSdkSshKey(sdkCipher.sshKey);
+
+    return cipher;
+  }
 }
diff --git a/libs/common/src/vault/models/domain/fido2-credential.ts b/libs/common/src/vault/models/domain/fido2-credential.ts
index 508f8a6d5fb..5dbf55b44fc 100644
--- a/libs/common/src/vault/models/domain/fido2-credential.ts
+++ b/libs/common/src/vault/models/domain/fido2-credential.ts
@@ -173,4 +173,32 @@ export class Fido2Credential extends Domain {
       creationDate: this.creationDate.toISOString(),
     };
   }
+
+  /**
+   * Maps an SDK Fido2Credential object to a Fido2Credential
+   * @param obj - The SDK Fido2Credential object
+   */
+  static fromSdkFido2Credential(obj: SdkFido2Credential): Fido2Credential | undefined {
+    if (!obj) {
+      return undefined;
+    }
+
+    const credential = new Fido2Credential();
+
+    credential.credentialId = EncString.fromJSON(obj.credentialId);
+    credential.keyType = EncString.fromJSON(obj.keyType);
+    credential.keyAlgorithm = EncString.fromJSON(obj.keyAlgorithm);
+    credential.keyCurve = EncString.fromJSON(obj.keyCurve);
+    credential.keyValue = EncString.fromJSON(obj.keyValue);
+    credential.rpId = EncString.fromJSON(obj.rpId);
+    credential.userHandle = EncString.fromJSON(obj.userHandle);
+    credential.userName = EncString.fromJSON(obj.userName);
+    credential.counter = EncString.fromJSON(obj.counter);
+    credential.rpName = EncString.fromJSON(obj.rpName);
+    credential.userDisplayName = EncString.fromJSON(obj.userDisplayName);
+    credential.discoverable = EncString.fromJSON(obj.discoverable);
+    credential.creationDate = new Date(obj.creationDate);
+
+    return credential;
+  }
 }
diff --git a/libs/common/src/vault/models/domain/field.spec.ts b/libs/common/src/vault/models/domain/field.spec.ts
index 08bc0da84fe..b5e26199e7d 100644
--- a/libs/common/src/vault/models/domain/field.spec.ts
+++ b/libs/common/src/vault/models/domain/field.spec.ts
@@ -1,6 +1,14 @@
+import {
+  Field as SdkField,
+  FieldType,
+  LoginLinkedIdType,
+  CardLinkedIdType,
+  IdentityLinkedIdType,
+} from "@bitwarden/sdk-internal";
+
 import { mockEnc, mockFromJson } from "../../../../spec";
 import { EncryptedString, EncString } from "../../../key-management/crypto/models/enc-string";
-import { CardLinkedId, FieldType, IdentityLinkedId, LoginLinkedId } from "../../enums";
+import { CardLinkedId, IdentityLinkedId, LoginLinkedId } from "../../enums";
 import { FieldData } from "../../models/data/field.data";
 import { Field } from "../../models/domain/field";
 
@@ -103,5 +111,34 @@ describe("Field", () => {
       identityField.linkedId = IdentityLinkedId.LicenseNumber;
       expect(identityField.toSdkField().linkedId).toBe(415);
     });
+
+    it("should map from SDK Field", () => {
+      // Test Login LinkedId
+      const loginField: SdkField = {
+        name: undefined,
+        value: undefined,
+        type: FieldType.Linked,
+        linkedId: LoginLinkedIdType.Username,
+      };
+      expect(Field.fromSdkField(loginField)!.linkedId).toBe(100);
+
+      // Test Card LinkedId
+      const cardField: SdkField = {
+        name: undefined,
+        value: undefined,
+        type: FieldType.Linked,
+        linkedId: CardLinkedIdType.Number,
+      };
+      expect(Field.fromSdkField(cardField)!.linkedId).toBe(305);
+
+      // Test Identity LinkedId
+      const identityFieldSdkField: SdkField = {
+        name: undefined,
+        value: undefined,
+        type: FieldType.Linked,
+        linkedId: IdentityLinkedIdType.LicenseNumber,
+      };
+      expect(Field.fromSdkField(identityFieldSdkField)!.linkedId).toBe(415);
+    });
   });
 });
diff --git a/libs/common/src/vault/models/domain/field.ts b/libs/common/src/vault/models/domain/field.ts
index d6453932cc7..53756e21046 100644
--- a/libs/common/src/vault/models/domain/field.ts
+++ b/libs/common/src/vault/models/domain/field.ts
@@ -90,4 +90,22 @@ export class Field extends Domain {
       linkedId: this.linkedId as unknown as SdkLinkedIdType,
     };
   }
+
+  /**
+   * Maps SDK Field to Field
+   * @param obj The SDK Field object to map
+   */
+  static fromSdkField(obj: SdkField): Field | undefined {
+    if (!obj) {
+      return undefined;
+    }
+
+    const field = new Field();
+    field.name = EncString.fromJSON(obj.name);
+    field.value = EncString.fromJSON(obj.value);
+    field.type = obj.type;
+    field.linkedId = obj.linkedId;
+
+    return field;
+  }
 }
diff --git a/libs/common/src/vault/models/domain/identity.ts b/libs/common/src/vault/models/domain/identity.ts
index 5dc752531be..16e68c72551 100644
--- a/libs/common/src/vault/models/domain/identity.ts
+++ b/libs/common/src/vault/models/domain/identity.ts
@@ -195,4 +195,36 @@ export class Identity extends Domain {
       licenseNumber: this.licenseNumber?.toJSON(),
     };
   }
+
+  /**
+   * Maps an SDK Identity object to an Identity
+   * @param obj - The SDK Identity object
+   */
+  static fromSdkIdentity(obj: SdkIdentity): Identity | undefined {
+    if (obj == null) {
+      return undefined;
+    }
+
+    const identity = new Identity();
+    identity.title = EncString.fromJSON(obj.title);
+    identity.firstName = EncString.fromJSON(obj.firstName);
+    identity.middleName = EncString.fromJSON(obj.middleName);
+    identity.lastName = EncString.fromJSON(obj.lastName);
+    identity.address1 = EncString.fromJSON(obj.address1);
+    identity.address2 = EncString.fromJSON(obj.address2);
+    identity.address3 = EncString.fromJSON(obj.address3);
+    identity.city = EncString.fromJSON(obj.city);
+    identity.state = EncString.fromJSON(obj.state);
+    identity.postalCode = EncString.fromJSON(obj.postalCode);
+    identity.country = EncString.fromJSON(obj.country);
+    identity.company = EncString.fromJSON(obj.company);
+    identity.email = EncString.fromJSON(obj.email);
+    identity.phone = EncString.fromJSON(obj.phone);
+    identity.ssn = EncString.fromJSON(obj.ssn);
+    identity.username = EncString.fromJSON(obj.username);
+    identity.passportNumber = EncString.fromJSON(obj.passportNumber);
+    identity.licenseNumber = EncString.fromJSON(obj.licenseNumber);
+
+    return identity;
+  }
 }
diff --git a/libs/common/src/vault/models/domain/login-uri.ts b/libs/common/src/vault/models/domain/login-uri.ts
index e7bc2e8892e..9cfa4951dd8 100644
--- a/libs/common/src/vault/models/domain/login-uri.ts
+++ b/libs/common/src/vault/models/domain/login-uri.ts
@@ -102,4 +102,17 @@ export class LoginUri extends Domain {
       match: this.match,
     };
   }
+
+  static fromSdkLoginUri(obj: SdkLoginUri): LoginUri | undefined {
+    if (obj == null) {
+      return undefined;
+    }
+
+    const view = new LoginUri();
+    view.uri = EncString.fromJSON(obj.uri);
+    view.uriChecksum = obj.uriChecksum ? EncString.fromJSON(obj.uriChecksum) : undefined;
+    view.match = obj.match;
+
+    return view;
+  }
 }
diff --git a/libs/common/src/vault/models/domain/login.ts b/libs/common/src/vault/models/domain/login.ts
index 4d77983d4af..93af2269185 100644
--- a/libs/common/src/vault/models/domain/login.ts
+++ b/libs/common/src/vault/models/domain/login.ts
@@ -163,4 +163,31 @@ export class Login extends Domain {
       fido2Credentials: this.fido2Credentials?.map((f) => f.toSdkFido2Credential()),
     };
   }
+
+  /**
+   * Maps an SDK Login object to a Login
+   * @param obj - The SDK Login object
+   */
+  static fromSdkLogin(obj: SdkLogin): Login | undefined {
+    if (!obj) {
+      return undefined;
+    }
+
+    const login = new Login();
+
+    login.uris =
+      obj.uris?.filter((u) => u.uri != null).map((uri) => LoginUri.fromSdkLoginUri(uri)) ?? [];
+    login.username = EncString.fromJSON(obj.username);
+    login.password = EncString.fromJSON(obj.password);
+    login.passwordRevisionDate = obj.passwordRevisionDate
+      ? new Date(obj.passwordRevisionDate)
+      : undefined;
+    login.totp = EncString.fromJSON(obj.totp);
+    login.autofillOnPageLoad = obj.autofillOnPageLoad ?? false;
+    login.fido2Credentials = obj.fido2Credentials?.map((f) =>
+      Fido2Credential.fromSdkFido2Credential(f),
+    );
+
+    return login;
+  }
 }
diff --git a/libs/common/src/vault/models/domain/password.ts b/libs/common/src/vault/models/domain/password.ts
index f8aacf765bf..b8a30099454 100644
--- a/libs/common/src/vault/models/domain/password.ts
+++ b/libs/common/src/vault/models/domain/password.ts
@@ -71,4 +71,20 @@ export class Password extends Domain {
       lastUsedDate: this.lastUsedDate.toISOString(),
     };
   }
+
+  /**
+   * Maps an SDK PasswordHistory object to a Password
+   * @param obj - The SDK PasswordHistory object
+   */
+  static fromSdkPasswordHistory(obj: PasswordHistory): Password | undefined {
+    if (!obj) {
+      return undefined;
+    }
+
+    const passwordHistory = new Password();
+    passwordHistory.password = EncString.fromJSON(obj.password);
+    passwordHistory.lastUsedDate = new Date(obj.lastUsedDate);
+
+    return passwordHistory;
+  }
 }
diff --git a/libs/common/src/vault/models/domain/secure-note.ts b/libs/common/src/vault/models/domain/secure-note.ts
index ac7977b0e46..1426ff85eab 100644
--- a/libs/common/src/vault/models/domain/secure-note.ts
+++ b/libs/common/src/vault/models/domain/secure-note.ts
@@ -54,4 +54,19 @@ export class SecureNote extends Domain {
       type: this.type,
     };
   }
+
+  /**
+   * Maps an SDK SecureNote object to a SecureNote
+   * @param obj - The SDK SecureNote object
+   */
+  static fromSdkSecureNote(obj: SdkSecureNote): SecureNote | undefined {
+    if (obj == null) {
+      return undefined;
+    }
+
+    const secureNote = new SecureNote();
+    secureNote.type = obj.type;
+
+    return secureNote;
+  }
 }
diff --git a/libs/common/src/vault/models/domain/ssh-key.ts b/libs/common/src/vault/models/domain/ssh-key.ts
index c0afcd83fc2..0c8abf76e44 100644
--- a/libs/common/src/vault/models/domain/ssh-key.ts
+++ b/libs/common/src/vault/models/domain/ssh-key.ts
@@ -85,4 +85,21 @@ export class SshKey extends Domain {
       fingerprint: this.keyFingerprint.toJSON(),
     };
   }
+
+  /**
+   * Maps an SDK SshKey object to a SshKey
+   * @param obj - The SDK SshKey object
+   */
+  static fromSdkSshKey(obj: SdkSshKey): SshKey | undefined {
+    if (obj == null) {
+      return undefined;
+    }
+
+    const sshKey = new SshKey();
+    sshKey.privateKey = EncString.fromJSON(obj.privateKey);
+    sshKey.publicKey = EncString.fromJSON(obj.publicKey);
+    sshKey.keyFingerprint = EncString.fromJSON(obj.fingerprint);
+
+    return sshKey;
+  }
 }
diff --git a/libs/common/src/vault/models/view/card.view.ts b/libs/common/src/vault/models/view/card.view.ts
index dd7f5d6be57..ed02fa68365 100644
--- a/libs/common/src/vault/models/view/card.view.ts
+++ b/libs/common/src/vault/models/view/card.view.ts
@@ -10,7 +10,7 @@ import { linkedFieldOption } from "../../linked-field-option.decorator";
 
 import { ItemView } from "./item.view";
 
-export class CardView extends ItemView {
+export class CardView extends ItemView implements SdkCardView {
   @linkedFieldOption(LinkedId.CardholderName, { sortPosition: 0 })
   cardholderName: string = null;
   @linkedFieldOption(LinkedId.ExpMonth, { sortPosition: 3, i18nKey: "expirationMonth" })
@@ -168,4 +168,12 @@ export class CardView extends ItemView {
 
     return cardView;
   }
+
+  /**
+   * Converts the CardView to an SDK CardView.
+   * The view implements the SdkView so we can safely return `this`
+   */
+  toSdkCardView(): SdkCardView {
+    return this;
+  }
 }
diff --git a/libs/common/src/vault/models/view/cipher.view.spec.ts b/libs/common/src/vault/models/view/cipher.view.spec.ts
index b9d3e42aa62..46cea06979f 100644
--- a/libs/common/src/vault/models/view/cipher.view.spec.ts
+++ b/libs/common/src/vault/models/view/cipher.view.spec.ts
@@ -1,3 +1,7 @@
+import { Jsonify } from "type-fest";
+
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
+import { CipherPermissionsApi } from "@bitwarden/common/vault/models/api/cipher-permissions.api";
 import {
   CipherView as SdkCipherView,
   CipherType as SdkCipherType,
@@ -85,6 +89,25 @@ describe("CipherView", () => {
 
       expect(actual).toMatchObject(expected);
     });
+
+    it("handle both string and object inputs for the cipher key", () => {
+      const cipherKeyString = "cipherKeyString";
+      const cipherKeyObject = new EncString("cipherKeyObject");
+
+      // Test with string input
+      let actual = CipherView.fromJSON({
+        key: cipherKeyString,
+      });
+      expect(actual.key).toBeInstanceOf(EncString);
+      expect(actual.key?.toJSON()).toBe(cipherKeyString);
+
+      // Test with object input (which can happen when cipher view is stored in an InMemory state provider)
+      actual = CipherView.fromJSON({
+        key: cipherKeyObject,
+      } as Jsonify<CipherView>);
+      expect(actual.key).toBeInstanceOf(EncString);
+      expect(actual.key?.toJSON()).toBe(cipherKeyObject.toJSON());
+    });
   });
 
   describe("fromSdkCipherView", () => {
@@ -196,11 +219,80 @@ describe("CipherView", () => {
             __fromSdk: true,
           },
         ],
-        passwordHistory: null,
+        passwordHistory: [],
         creationDate: new Date("2022-01-01T12:00:00.000Z"),
         revisionDate: new Date("2022-01-02T12:00:00.000Z"),
         deletedDate: null,
       });
     });
   });
+
+  describe("toSdkCipherView", () => {
+    it("maps properties correctly", () => {
+      const cipherView = new CipherView();
+      cipherView.id = "0a54d80c-14aa-4ef8-8c3a-7ea99ce5b602";
+      cipherView.organizationId = "000f2a6e-da5e-4726-87ed-1c5c77322c3c";
+      cipherView.folderId = "41b22db4-8e2a-4ed2-b568-f1186c72922f";
+      cipherView.collectionIds = ["b0473506-3c3c-4260-a734-dfaaf833ab6f"];
+      cipherView.key = new EncString("some-key");
+      cipherView.name = "name";
+      cipherView.notes = "notes";
+      cipherView.type = CipherType.Login;
+      cipherView.favorite = true;
+      cipherView.edit = true;
+      cipherView.viewPassword = false;
+      cipherView.reprompt = CipherRepromptType.None;
+      cipherView.organizationUseTotp = false;
+      cipherView.localData = {
+        lastLaunched: new Date("2022-01-01T12:00:00.000Z").getTime(),
+        lastUsedDate: new Date("2022-01-02T12:00:00.000Z").getTime(),
+      };
+      cipherView.permissions = new CipherPermissionsApi();
+      cipherView.permissions.restore = true;
+      cipherView.permissions.delete = true;
+      cipherView.attachments = [];
+      cipherView.fields = [];
+      cipherView.passwordHistory = [];
+      cipherView.login = new LoginView();
+      cipherView.revisionDate = new Date("2022-01-02T12:00:00.000Z");
+      cipherView.creationDate = new Date("2022-01-02T12:00:00.000Z");
+
+      const sdkCipherView = cipherView.toSdkCipherView();
+
+      expect(sdkCipherView).toMatchObject({
+        id: "0a54d80c-14aa-4ef8-8c3a-7ea99ce5b602",
+        organizationId: "000f2a6e-da5e-4726-87ed-1c5c77322c3c",
+        folderId: "41b22db4-8e2a-4ed2-b568-f1186c72922f",
+        collectionIds: ["b0473506-3c3c-4260-a734-dfaaf833ab6f"],
+        key: "some-key",
+        name: "name",
+        notes: "notes",
+        type: SdkCipherType.Login,
+        favorite: true,
+        edit: true,
+        viewPassword: false,
+        reprompt: SdkCipherRepromptType.None,
+        organizationUseTotp: false,
+        localData: {
+          lastLaunched: "2022-01-01T12:00:00.000Z",
+          lastUsedDate: "2022-01-02T12:00:00.000Z",
+        },
+        permissions: {
+          restore: true,
+          delete: true,
+        },
+        deletedDate: undefined,
+        creationDate: "2022-01-02T12:00:00.000Z",
+        revisionDate: "2022-01-02T12:00:00.000Z",
+        attachments: [],
+        passwordHistory: [],
+        login: undefined,
+        identity: undefined,
+        card: undefined,
+        secureNote: undefined,
+        sshKey: undefined,
+        fields: [],
+      } as SdkCipherView);
+    });
+  });
 });
diff --git a/libs/common/src/vault/models/view/cipher.view.ts b/libs/common/src/vault/models/view/cipher.view.ts
index 353fffa8eef..0c41e49c3ab 100644
--- a/libs/common/src/vault/models/view/cipher.view.ts
+++ b/libs/common/src/vault/models/view/cipher.view.ts
@@ -1,5 +1,7 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
+import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
+import { uuidToString, asUuid } from "@bitwarden/common/platform/abstractions/sdk/sdk.service";
 import { CipherView as SdkCipherView } from "@bitwarden/sdk-internal";
 
 import { View } from "../../../models/view/view";
@@ -9,7 +11,7 @@ import { DeepJsonify } from "../../../types/deep-jsonify";
 import { CipherType, LinkedIdType } from "../../enums";
 import { CipherRepromptType } from "../../enums/cipher-reprompt-type";
 import { CipherPermissionsApi } from "../api/cipher-permissions.api";
-import { LocalData } from "../data/local.data";
+import { LocalData, toSdkLocalData, fromSdkLocalData } from "../data/local.data";
 import { Cipher } from "../domain/cipher";
 
 import { AttachmentView } from "./attachment.view";
@@ -41,14 +43,17 @@ export class CipherView implements View, InitializerMetadata {
   card = new CardView();
   secureNote = new SecureNoteView();
   sshKey = new SshKeyView();
-  attachments: AttachmentView[] = null;
-  fields: FieldView[] = null;
-  passwordHistory: PasswordHistoryView[] = null;
+  attachments: AttachmentView[] = [];
+  fields: FieldView[] = [];
+  passwordHistory: PasswordHistoryView[] = [];
   collectionIds: string[] = null;
   revisionDate: Date = null;
   creationDate: Date = null;
   deletedDate: Date = null;
   reprompt: CipherRepromptType = CipherRepromptType.None;
+  // We need a copy of the encrypted key so we can pass it to
+  // the SdkCipherView during encryption
+  key?: EncString;
 
   /**
    * Flag to indicate if the cipher decryption failed.
@@ -76,6 +81,7 @@ export class CipherView implements View, InitializerMetadata {
     this.deletedDate = c.deletedDate;
     // Old locally stored ciphers might have reprompt == null. If so set it to None.
     this.reprompt = c.reprompt ?? CipherRepromptType.None;
+    this.key = c.key;
   }
 
   private get item() {
@@ -194,6 +200,18 @@ export class CipherView implements View, InitializerMetadata {
     const attachments = obj.attachments?.map((a: any) => AttachmentView.fromJSON(a));
     const fields = obj.fields?.map((f: any) => FieldView.fromJSON(f));
     const passwordHistory = obj.passwordHistory?.map((ph: any) => PasswordHistoryView.fromJSON(ph));
+    const permissions = CipherPermissionsApi.fromJSON(obj.permissions);
+    let key: EncString | undefined;
+
+    if (obj.key != null) {
+      if (typeof obj.key === "string") {
+        // If the key is a string, we need to parse it as EncString
+        key = EncString.fromJSON(obj.key);
+      } else if ((obj.key as any) instanceof EncString) {
+        // If the key is already an EncString instance, we can use it directly
+        key = obj.key;
+      }
+    }
 
     Object.assign(view, obj, {
       creationDate: creationDate,
@@ -202,6 +220,8 @@ export class CipherView implements View, InitializerMetadata {
       attachments: attachments,
       fields: fields,
       passwordHistory: passwordHistory,
+      permissions: permissions,
+      key: key,
     });
 
     switch (obj.type) {
@@ -236,9 +256,9 @@ export class CipherView implements View, InitializerMetadata {
     }
 
     const cipherView = new CipherView();
-    cipherView.id = obj.id ?? null;
-    cipherView.organizationId = obj.organizationId ?? null;
-    cipherView.folderId = obj.folderId ?? null;
+    cipherView.id = uuidToString(obj.id) ?? null;
+    cipherView.organizationId = uuidToString(obj.organizationId) ?? null;
+    cipherView.folderId = uuidToString(obj.folderId) ?? null;
     cipherView.name = obj.name;
     cipherView.notes = obj.notes ?? null;
     cipherView.type = obj.type;
@@ -247,26 +267,18 @@ export class CipherView implements View, InitializerMetadata {
     cipherView.permissions = CipherPermissionsApi.fromSdkCipherPermissions(obj.permissions);
     cipherView.edit = obj.edit;
     cipherView.viewPassword = obj.viewPassword;
-    cipherView.localData = obj.localData
-      ? {
-          lastUsedDate: obj.localData.lastUsedDate
-            ? new Date(obj.localData.lastUsedDate).getTime()
-            : undefined,
-          lastLaunched: obj.localData.lastLaunched
-            ? new Date(obj.localData.lastLaunched).getTime()
-            : undefined,
-        }
-      : undefined;
+    cipherView.localData = fromSdkLocalData(obj.localData);
     cipherView.attachments =
-      obj.attachments?.map((a) => AttachmentView.fromSdkAttachmentView(a)) ?? null;
-    cipherView.fields = obj.fields?.map((f) => FieldView.fromSdkFieldView(f)) ?? null;
+      obj.attachments?.map((a) => AttachmentView.fromSdkAttachmentView(a)) ?? [];
+    cipherView.fields = obj.fields?.map((f) => FieldView.fromSdkFieldView(f)) ?? [];
     cipherView.passwordHistory =
-      obj.passwordHistory?.map((ph) => PasswordHistoryView.fromSdkPasswordHistoryView(ph)) ?? null;
-    cipherView.collectionIds = obj.collectionIds ?? null;
+      obj.passwordHistory?.map((ph) => PasswordHistoryView.fromSdkPasswordHistoryView(ph)) ?? [];
+    cipherView.collectionIds = obj.collectionIds?.map((i) => uuidToString(i)) ?? [];
     cipherView.revisionDate = obj.revisionDate == null ? null : new Date(obj.revisionDate);
     cipherView.creationDate = obj.creationDate == null ? null : new Date(obj.creationDate);
     cipherView.deletedDate = obj.deletedDate == null ? null : new Date(obj.deletedDate);
     cipherView.reprompt = obj.reprompt ?? CipherRepromptType.None;
+    cipherView.key = EncString.fromJSON(obj.key);
 
     switch (obj.type) {
       case CipherType.Card:
@@ -290,4 +302,66 @@ export class CipherView implements View, InitializerMetadata {
 
     return cipherView;
   }
+
+  /**
+   * Maps CipherView to SdkCipherView
+   *
+   * @returns {SdkCipherView} The SDK cipher view object
+   */
+  toSdkCipherView(): SdkCipherView {
+    const sdkCipherView: SdkCipherView = {
+      id: this.id ? asUuid(this.id) : undefined,
+      organizationId: this.organizationId ? asUuid(this.organizationId) : undefined,
+      folderId: this.folderId ? asUuid(this.folderId) : undefined,
+      name: this.name ?? "",
+      notes: this.notes,
+      type: this.type ?? CipherType.Login,
+      favorite: this.favorite,
+      organizationUseTotp: this.organizationUseTotp,
+      permissions: this.permissions?.toSdkCipherPermissions(),
+      edit: this.edit,
+      viewPassword: this.viewPassword,
+      localData: toSdkLocalData(this.localData),
+      attachments: this.attachments?.map((a) => a.toSdkAttachmentView()),
+      fields: this.fields?.map((f) => f.toSdkFieldView()),
+      passwordHistory: this.passwordHistory?.map((ph) => ph.toSdkPasswordHistoryView()),
+      collectionIds: this.collectionIds?.map((i) => i) ?? [],
+      // Revision and creation dates are non-nullable in SDKCipherView
+      revisionDate: (this.revisionDate ?? new Date()).toISOString(),
+      creationDate: (this.creationDate ?? new Date()).toISOString(),
+      deletedDate: this.deletedDate?.toISOString(),
+      reprompt: this.reprompt ?? CipherRepromptType.None,
+      key: this.key?.toJSON(),
+      // Cipher type specific properties are set in the switch statement below
+      // CipherView initializes each with default constructors (undefined values)
+      // The SDK does not expect those undefined values and will throw exceptions
+      login: undefined,
+      card: undefined,
+      identity: undefined,
+      secureNote: undefined,
+      sshKey: undefined,
+    };
+
+    switch (this.type) {
+      case CipherType.Card:
+        sdkCipherView.card = this.card.toSdkCardView();
+        break;
+      case CipherType.Identity:
+        sdkCipherView.identity = this.identity.toSdkIdentityView();
+        break;
+      case CipherType.Login:
+        sdkCipherView.login = this.login.toSdkLoginView();
+        break;
+      case CipherType.SecureNote:
+        sdkCipherView.secureNote = this.secureNote.toSdkSecureNoteView();
+        break;
+      case CipherType.SshKey:
+        sdkCipherView.sshKey = this.sshKey.toSdkSshKeyView();
+        break;
+      default:
+        break;
+    }
+
+    return sdkCipherView;
+  }
 }
diff --git a/libs/common/src/vault/models/view/fido2-credential.view.ts b/libs/common/src/vault/models/view/fido2-credential.view.ts
index bf1d324d22d..410757ebe30 100644
--- a/libs/common/src/vault/models/view/fido2-credential.view.ts
+++ b/libs/common/src/vault/models/view/fido2-credential.view.ts
@@ -2,7 +2,10 @@
 // @ts-strict-ignore
 import { Jsonify } from "type-fest";
 
-import { Fido2CredentialView as SdkFido2CredentialView } from "@bitwarden/sdk-internal";
+import {
+  Fido2CredentialView as SdkFido2CredentialView,
+  Fido2CredentialFullView,
+} from "@bitwarden/sdk-internal";
 
 import { ItemView } from "./item.view";
 
@@ -56,4 +59,22 @@ export class Fido2CredentialView extends ItemView {
 
     return view;
   }
+
+  toSdkFido2CredentialFullView(): Fido2CredentialFullView {
+    return {
+      credentialId: this.credentialId,
+      keyType: this.keyType,
+      keyAlgorithm: this.keyAlgorithm,
+      keyCurve: this.keyCurve,
+      keyValue: this.keyValue,
+      rpId: this.rpId,
+      userHandle: this.userHandle,
+      userName: this.userName,
+      counter: this.counter.toString(),
+      rpName: this.rpName,
+      userDisplayName: this.userDisplayName,
+      discoverable: this.discoverable ? "true" : "false",
+      creationDate: this.creationDate?.toISOString(),
+    };
+  }
 }
diff --git a/libs/common/src/vault/models/view/field.view.ts b/libs/common/src/vault/models/view/field.view.ts
index 770150f8a63..8c9a923aed2 100644
--- a/libs/common/src/vault/models/view/field.view.ts
+++ b/libs/common/src/vault/models/view/field.view.ts
@@ -2,7 +2,7 @@
 // @ts-strict-ignore
 import { Jsonify } from "type-fest";
 
-import { FieldView as SdkFieldView } from "@bitwarden/sdk-internal";
+import { FieldView as SdkFieldView, FieldType as SdkFieldType } from "@bitwarden/sdk-internal";
 
 import { View } from "../../../models/view/view";
 import { FieldType, LinkedIdType } from "../../enums";
@@ -50,4 +50,16 @@ export class FieldView implements View {
 
     return view;
   }
+
+  /**
+   * Converts the FieldView to an SDK FieldView.
+   */
+  toSdkFieldView(): SdkFieldView {
+    return {
+      name: this.name ?? undefined,
+      value: this.value ?? undefined,
+      type: this.type ?? SdkFieldType.Text,
+      linkedId: this.linkedId ?? undefined,
+    };
+  }
 }
diff --git a/libs/common/src/vault/models/view/identity.view.ts b/libs/common/src/vault/models/view/identity.view.ts
index 877940e4aea..2b863dc5e5f 100644
--- a/libs/common/src/vault/models/view/identity.view.ts
+++ b/libs/common/src/vault/models/view/identity.view.ts
@@ -10,7 +10,7 @@ import { linkedFieldOption } from "../../linked-field-option.decorator";
 
 import { ItemView } from "./item.view";
 
-export class IdentityView extends ItemView {
+export class IdentityView extends ItemView implements SdkIdentityView {
   @linkedFieldOption(LinkedId.Title, { sortPosition: 0 })
   title: string = null;
   @linkedFieldOption(LinkedId.MiddleName, { sortPosition: 2 })
@@ -192,4 +192,12 @@ export class IdentityView extends ItemView {
 
     return identityView;
   }
+
+  /**
+   * Converts the IdentityView to an SDK IdentityView.
+   * The view implements the SdkView so we can safely return `this`
+   */
+  toSdkIdentityView(): SdkIdentityView {
+    return this;
+  }
 }
diff --git a/libs/common/src/vault/models/view/login-uri.view.ts b/libs/common/src/vault/models/view/login-uri.view.ts
index 43d47aa4a3c..38cd517e542 100644
--- a/libs/common/src/vault/models/view/login-uri.view.ts
+++ b/libs/common/src/vault/models/view/login-uri.view.ts
@@ -129,6 +129,15 @@ export class LoginUriView implements View {
     return view;
   }
 
+  /** Converts a LoginUriView object to an SDK LoginUriView object. */
+  toSdkLoginUriView(): SdkLoginUriView {
+    return {
+      uri: this.uri ?? undefined,
+      match: this.match ?? undefined,
+      uriChecksum: undefined, // SDK handles uri checksum generation internally
+    };
+  }
+
   matchesUri(
     targetUri: string,
     equivalentDomains: Set<string>,
diff --git a/libs/common/src/vault/models/view/login.view.ts b/libs/common/src/vault/models/view/login.view.ts
index c6e6ca001e4..d268cf4afaa 100644
--- a/libs/common/src/vault/models/view/login.view.ts
+++ b/libs/common/src/vault/models/view/login.view.ts
@@ -124,10 +124,30 @@ export class LoginView extends ItemView {
       obj.passwordRevisionDate == null ? null : new Date(obj.passwordRevisionDate);
     loginView.totp = obj.totp ?? null;
     loginView.autofillOnPageLoad = obj.autofillOnPageLoad ?? null;
-    loginView.uris = obj.uris?.map((uri) => LoginUriView.fromSdkLoginUriView(uri)) || [];
+    loginView.uris =
+      obj.uris
+        ?.filter((uri) => uri.uri != null && uri.uri !== "")
+        .map((uri) => LoginUriView.fromSdkLoginUriView(uri)) || [];
     // FIDO2 credentials are not decrypted here, they remain encrypted
     loginView.fido2Credentials = null;
 
     return loginView;
   }
+
+  /**
+   * Converts the LoginView to an SDK LoginView.
+   *
+   * Note: FIDO2 credentials remain encrypted in the SDK view so they are not included here.
+   */
+  toSdkLoginView(): SdkLoginView {
+    return {
+      username: this.username,
+      password: this.password,
+      passwordRevisionDate: this.passwordRevisionDate?.toISOString(),
+      totp: this.totp,
+      autofillOnPageLoad: this.autofillOnPageLoad ?? undefined,
+      uris: this.uris?.map((uri) => uri.toSdkLoginUriView()),
+      fido2Credentials: undefined, // FIDO2 credentials are handled separately and remain encrypted
+    };
+  }
 }
diff --git a/libs/common/src/vault/models/view/password-history.view.spec.ts b/libs/common/src/vault/models/view/password-history.view.spec.ts
index 81894ec7493..512ec8d86d8 100644
--- a/libs/common/src/vault/models/view/password-history.view.spec.ts
+++ b/libs/common/src/vault/models/view/password-history.view.spec.ts
@@ -33,4 +33,17 @@ describe("PasswordHistoryView", () => {
       });
     });
   });
+
+  describe("toSdkPasswordHistoryView", () => {
+    it("should return a SdkPasswordHistoryView", () => {
+      const passwordHistoryView = new PasswordHistoryView();
+      passwordHistoryView.password = "password";
+      passwordHistoryView.lastUsedDate = new Date("2023-10-01T00:00:00.000Z");
+
+      expect(passwordHistoryView.toSdkPasswordHistoryView()).toMatchObject({
+        password: "password",
+        lastUsedDate: "2023-10-01T00:00:00.000Z",
+      });
+    });
+  });
 });
diff --git a/libs/common/src/vault/models/view/password-history.view.ts b/libs/common/src/vault/models/view/password-history.view.ts
index 31f05f4cc71..9bd708b19fd 100644
--- a/libs/common/src/vault/models/view/password-history.view.ts
+++ b/libs/common/src/vault/models/view/password-history.view.ts
@@ -41,4 +41,14 @@ export class PasswordHistoryView implements View {
 
     return view;
   }
+
+  /**
+   * Converts the PasswordHistoryView to an SDK PasswordHistoryView.
+   */
+  toSdkPasswordHistoryView(): SdkPasswordHistoryView {
+    return {
+      password: this.password ?? "",
+      lastUsedDate: this.lastUsedDate.toISOString(),
+    };
+  }
 }
diff --git a/libs/common/src/vault/models/view/secure-note.view.ts b/libs/common/src/vault/models/view/secure-note.view.ts
index 8e7a6b4652d..5e401961869 100644
--- a/libs/common/src/vault/models/view/secure-note.view.ts
+++ b/libs/common/src/vault/models/view/secure-note.view.ts
@@ -9,7 +9,7 @@ import { SecureNote } from "../domain/secure-note";
 
 import { ItemView } from "./item.view";
 
-export class SecureNoteView extends ItemView {
+export class SecureNoteView extends ItemView implements SdkSecureNoteView {
   type: SecureNoteType = null;
 
   constructor(n?: SecureNote) {
@@ -42,4 +42,12 @@ export class SecureNoteView extends ItemView {
 
     return secureNoteView;
   }
+
+  /**
+   * Converts the SecureNoteView to an SDK SecureNoteView.
+   * The view implements the SdkView so we can safely return `this`
+   */
+  toSdkSecureNoteView(): SdkSecureNoteView {
+    return this;
+  }
 }
diff --git a/libs/common/src/vault/models/view/ssh-key.view.ts b/libs/common/src/vault/models/view/ssh-key.view.ts
index a83793678dc..0547eeb7f8e 100644
--- a/libs/common/src/vault/models/view/ssh-key.view.ts
+++ b/libs/common/src/vault/models/view/ssh-key.view.ts
@@ -63,4 +63,15 @@ export class SshKeyView extends ItemView {
 
     return sshKeyView;
   }
+
+  /**
+   * Converts the SshKeyView to an SDK SshKeyView.
+   */
+  toSdkSshKeyView(): SdkSshKeyView {
+    return {
+      privateKey: this.privateKey,
+      publicKey: this.publicKey,
+      fingerprint: this.keyFingerprint,
+    };
+  }
 }
diff --git a/libs/common/src/vault/services/cipher.service.spec.ts b/libs/common/src/vault/services/cipher.service.spec.ts
index bf30b78ca63..f027122993d 100644
--- a/libs/common/src/vault/services/cipher.service.spec.ts
+++ b/libs/common/src/vault/services/cipher.service.spec.ts
@@ -1,7 +1,9 @@
 import { mock } from "jest-mock-extended";
 import { BehaviorSubject, map, of } from "rxjs";
 
+import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
+import { CipherResponse } from "@bitwarden/common/vault/models/response/cipher.response";
 // This import has been flagged as unallowed for this class. It may be involved in a circular dependency loop.
 // eslint-disable-next-line no-restricted-imports
 import { CipherDecryptionKeys, KeyService } from "@bitwarden/key-management";
@@ -23,7 +25,7 @@ import { Utils } from "../../platform/misc/utils";
 import { EncArrayBuffer } from "../../platform/models/domain/enc-array-buffer";
 import { SymmetricCryptoKey } from "../../platform/models/domain/symmetric-crypto-key";
 import { ContainerService } from "../../platform/services/container.service";
-import { CipherId, UserId } from "../../types/guid";
+import { CipherId, UserId, OrganizationId, CollectionId } from "../../types/guid";
 import { CipherKey, OrgKey, UserKey } from "../../types/key";
 import { CipherEncryptionService } from "../abstractions/cipher-encryption.service";
 import { EncryptionContext } from "../abstractions/cipher.service";
@@ -108,6 +110,7 @@ describe("Cipher Service", () => {
   const cipherEncryptionService = mock<CipherEncryptionService>();
 
   const userId = "TestUserId" as UserId;
+  const orgId = "4ff8c0b2-1d3e-4f8c-9b2d-1d3e4f8c0b2" as OrganizationId;
 
   let cipherService: CipherService;
   let encryptionContext: EncryptionContext;
@@ -155,7 +158,9 @@ describe("Cipher Service", () => {
       );
 
       configService.checkServerMeetsVersionRequirement$.mockReturnValue(of(false));
-      configService.getFeatureFlag.mockResolvedValue(false);
+      configService.getFeatureFlag
+        .calledWith(FeatureFlag.CipherKeyEncryption)
+        .mockResolvedValue(false);
 
       const spy = jest.spyOn(cipherFileUploadService, "upload");
 
@@ -270,6 +275,55 @@ describe("Cipher Service", () => {
       jest.spyOn(cipherService as any, "getAutofillOnPageLoadDefault").mockResolvedValue(true);
     });
 
+    it("should call encrypt method of CipherEncryptionService when feature flag is true", async () => {
+      configService.getFeatureFlag
+        .calledWith(FeatureFlag.PM22136_SdkCipherEncryption)
+        .mockResolvedValue(true);
+      cipherEncryptionService.encrypt.mockResolvedValue(encryptionContext);
+
+      const result = await cipherService.encrypt(cipherView, userId);
+
+      expect(result).toEqual(encryptionContext);
+      expect(cipherEncryptionService.encrypt).toHaveBeenCalledWith(cipherView, userId);
+    });
+
+    it("should call legacy encrypt when feature flag is false", async () => {
+      configService.getFeatureFlag
+        .calledWith(FeatureFlag.PM22136_SdkCipherEncryption)
+        .mockResolvedValue(false);
+
+      jest.spyOn(cipherService as any, "encryptCipher").mockResolvedValue(encryptionContext.cipher);
+
+      const result = await cipherService.encrypt(cipherView, userId);
+
+      expect(result).toEqual(encryptionContext);
+      expect(cipherEncryptionService.encrypt).not.toHaveBeenCalled();
+    });
+
+    it("should call legacy encrypt when keys are provided", async () => {
+      configService.getFeatureFlag
+        .calledWith(FeatureFlag.PM22136_SdkCipherEncryption)
+        .mockResolvedValue(true);
+
+      jest.spyOn(cipherService as any, "encryptCipher").mockResolvedValue(encryptionContext.cipher);
+
+      const encryptKey = new SymmetricCryptoKey(new Uint8Array(32));
+      const decryptKey = new SymmetricCryptoKey(new Uint8Array(32));
+
+      let result = await cipherService.encrypt(cipherView, userId, encryptKey);
+
+      expect(result).toEqual(encryptionContext);
+      expect(cipherEncryptionService.encrypt).not.toHaveBeenCalled();
+
+      result = await cipherService.encrypt(cipherView, userId, undefined, decryptKey);
+      expect(result).toEqual(encryptionContext);
+      expect(cipherEncryptionService.encrypt).not.toHaveBeenCalled();
+
+      result = await cipherService.encrypt(cipherView, userId, encryptKey, decryptKey);
+      expect(result).toEqual(encryptionContext);
+      expect(cipherEncryptionService.encrypt).not.toHaveBeenCalled();
+    });
+
     it("should return the encrypting user id", async () => {
       keyService.getOrgKey.mockReturnValue(
         Promise.resolve<any>(new SymmetricCryptoKey(new Uint8Array(32)) as OrgKey),
@@ -310,7 +364,9 @@ describe("Cipher Service", () => {
       });
 
       it("is null when feature flag is false", async () => {
-        configService.getFeatureFlag.mockResolvedValue(false);
+        configService.getFeatureFlag
+          .calledWith(FeatureFlag.CipherKeyEncryption)
+          .mockResolvedValue(false);
         const { cipher } = await cipherService.encrypt(cipherView, userId);
 
         expect(cipher.key).toBeNull();
@@ -318,7 +374,9 @@ describe("Cipher Service", () => {
 
       describe("when feature flag is true", () => {
         beforeEach(() => {
-          configService.getFeatureFlag.mockResolvedValue(true);
+          configService.getFeatureFlag
+            .calledWith(FeatureFlag.CipherKeyEncryption)
+            .mockResolvedValue(true);
         });
 
         it("is null when the cipher is not viewPassword", async () => {
@@ -348,7 +406,9 @@ describe("Cipher Service", () => {
       });
 
       it("is not called when feature flag is false", async () => {
-        configService.getFeatureFlag.mockResolvedValue(false);
+        configService.getFeatureFlag
+          .calledWith(FeatureFlag.CipherKeyEncryption)
+          .mockResolvedValue(false);
 
         await cipherService.encrypt(cipherView, userId);
 
@@ -357,7 +417,9 @@ describe("Cipher Service", () => {
 
       describe("when feature flag is true", () => {
         beforeEach(() => {
-          configService.getFeatureFlag.mockResolvedValue(true);
+          configService.getFeatureFlag
+            .calledWith(FeatureFlag.CipherKeyEncryption)
+            .mockResolvedValue(true);
         });
 
         it("is called when cipher viewPassword is true", async () => {
@@ -401,7 +463,9 @@ describe("Cipher Service", () => {
     let encryptedKey: EncString;
 
     beforeEach(() => {
-      configService.getFeatureFlag.mockResolvedValue(true);
+      configService.getFeatureFlag
+        .calledWith(FeatureFlag.CipherKeyEncryption)
+        .mockResolvedValue(true);
       configService.checkServerMeetsVersionRequirement$.mockReturnValue(of(true));
 
       searchService.indexedEntityId$.mockReturnValue(of(null));
@@ -474,7 +538,9 @@ describe("Cipher Service", () => {
 
   describe("decrypt", () => {
     it("should call decrypt method of CipherEncryptionService when feature flag is true", async () => {
-      configService.getFeatureFlag.mockResolvedValue(true);
+      configService.getFeatureFlag
+        .calledWith(FeatureFlag.PM19941MigrateCipherDomainToSdk)
+        .mockResolvedValue(true);
       cipherEncryptionService.decrypt.mockResolvedValue(new CipherView(encryptionContext.cipher));
 
       const result = await cipherService.decrypt(encryptionContext.cipher, userId);
@@ -488,7 +554,9 @@ describe("Cipher Service", () => {
 
     it("should call legacy decrypt when feature flag is false", async () => {
       const mockUserKey = new SymmetricCryptoKey(new Uint8Array(32)) as UserKey;
-      configService.getFeatureFlag.mockResolvedValue(false);
+      configService.getFeatureFlag
+        .calledWith(FeatureFlag.PM19941MigrateCipherDomainToSdk)
+        .mockResolvedValue(false);
       cipherService.getKeyForCipherKeyDecryption = jest.fn().mockResolvedValue(mockUserKey);
       encryptService.decryptToBytes.mockResolvedValue(new Uint8Array(32));
       jest
@@ -509,7 +577,9 @@ describe("Cipher Service", () => {
     it("should use SDK when feature flag is enabled", async () => {
       const cipher = new Cipher(cipherData);
       const attachment = new AttachmentView(cipher.attachments![0]);
-      configService.getFeatureFlag.mockResolvedValue(true);
+      configService.getFeatureFlag
+        .calledWith(FeatureFlag.PM19941MigrateCipherDomainToSdk)
+        .mockResolvedValue(true);
 
       jest.spyOn(cipherService, "ciphers$").mockReturnValue(of({ [cipher.id]: cipherData }));
       cipherEncryptionService.decryptAttachmentContent.mockResolvedValue(mockDecryptedContent);
@@ -534,7 +604,9 @@ describe("Cipher Service", () => {
     });
 
     it("should use legacy decryption when feature flag is enabled", async () => {
-      configService.getFeatureFlag.mockResolvedValue(false);
+      configService.getFeatureFlag
+        .calledWith(FeatureFlag.PM19941MigrateCipherDomainToSdk)
+        .mockResolvedValue(false);
       const cipher = new Cipher(cipherData);
       const attachment = new AttachmentView(cipher.attachments![0]);
       attachment.key = makeSymmetricCryptoKey(64);
@@ -557,4 +629,77 @@ describe("Cipher Service", () => {
       expect(encryptService.decryptFileData).toHaveBeenCalledWith(mockEncBuf, attachment.key);
     });
   });
+
+  describe("shareWithServer()", () => {
+    it("should use cipherEncryptionService to move the cipher when feature flag enabled", async () => {
+      configService.getFeatureFlag
+        .calledWith(FeatureFlag.PM22136_SdkCipherEncryption)
+        .mockResolvedValue(true);
+
+      apiService.putShareCipher.mockResolvedValue(new CipherResponse(cipherData));
+
+      const expectedCipher = new Cipher(cipherData);
+      expectedCipher.organizationId = orgId;
+      const cipherView = new CipherView(expectedCipher);
+      const collectionIds = ["collection1", "collection2"] as CollectionId[];
+
+      cipherView.organizationId = undefined; // Ensure organizationId is undefined for this test
+
+      cipherEncryptionService.moveToOrganization.mockResolvedValue({
+        cipher: expectedCipher,
+        encryptedFor: userId,
+      });
+
+      await cipherService.shareWithServer(cipherView, orgId, collectionIds, userId);
+
+      // Expect SDK usage
+      expect(cipherEncryptionService.moveToOrganization).toHaveBeenCalledWith(
+        cipherView,
+        orgId,
+        userId,
+      );
+      // Expect collectionIds to be assigned
+      expect(apiService.putShareCipher).toHaveBeenCalledWith(
+        cipherView.id,
+        expect.objectContaining({
+          cipher: expect.objectContaining({ organizationId: orgId }),
+          collectionIds: collectionIds,
+        }),
+      );
+    });
+
+    it("should use legacy encryption when feature flag disabled", async () => {
+      configService.getFeatureFlag
+        .calledWith(FeatureFlag.PM22136_SdkCipherEncryption)
+        .mockResolvedValue(false);
+
+      apiService.putShareCipher.mockResolvedValue(new CipherResponse(cipherData));
+
+      const expectedCipher = new Cipher(cipherData);
+      expectedCipher.organizationId = orgId;
+      const cipherView = new CipherView(expectedCipher);
+      const collectionIds = ["collection1", "collection2"] as CollectionId[];
+
+      cipherView.organizationId = undefined; // Ensure organizationId is undefined for this test
+
+      const oldEncryptSharedSpy = jest
+        .spyOn(cipherService as any, "encryptSharedCipher")
+        .mockResolvedValue({
+          cipher: expectedCipher,
+          encryptedFor: userId,
+        });
+
+      await cipherService.shareWithServer(cipherView, orgId, collectionIds, userId);
+
+      // Expect no SDK usage
+      expect(cipherEncryptionService.moveToOrganization).not.toHaveBeenCalled();
+      expect(oldEncryptSharedSpy).toHaveBeenCalledWith(
+        expect.objectContaining({
+          organizationId: orgId,
+          collectionIds: collectionIds,
+        } as unknown as CipherView),
+        userId,
+      );
+    });
+  });
 });
diff --git a/libs/common/src/vault/services/cipher.service.ts b/libs/common/src/vault/services/cipher.service.ts
index 8bef5289a95..1524e4e1b29 100644
--- a/libs/common/src/vault/services/cipher.service.ts
+++ b/libs/common/src/vault/services/cipher.service.ts
@@ -231,13 +231,14 @@ export class CipherService implements CipherServiceAbstraction {
     this.clearCipherViewsForUser$.next(userId);
   }
 
-  async encrypt(
-    model: CipherView,
-    userId: UserId,
-    keyForCipherEncryption?: SymmetricCryptoKey,
-    keyForCipherKeyDecryption?: SymmetricCryptoKey,
-    originalCipher: Cipher = null,
-  ): Promise<EncryptionContext> {
+  /**
+   * Adjusts the cipher history for the given model by updating its history properties based on the original cipher.
+   * @param model The cipher model to adjust.
+   * @param userId The acting userId
+   * @param originalCipher The original cipher to compare against. If not provided, it will be fetched from the store.
+   * @private
+   */
+  private async adjustCipherHistory(model: CipherView, userId: UserId, originalCipher?: Cipher) {
     if (model.id != null) {
       if (originalCipher == null) {
         originalCipher = await this.get(model.id, userId);
@@ -247,6 +248,25 @@ export class CipherService implements CipherServiceAbstraction {
       }
       this.adjustPasswordHistoryLength(model);
     }
+  }
+
+  async encrypt(
+    model: CipherView,
+    userId: UserId,
+    keyForCipherEncryption?: SymmetricCryptoKey,
+    keyForCipherKeyDecryption?: SymmetricCryptoKey,
+    originalCipher: Cipher = null,
+  ): Promise<EncryptionContext> {
+    await this.adjustCipherHistory(model, userId, originalCipher);
+
+    const sdkEncryptionEnabled =
+      (await this.configService.getFeatureFlag(FeatureFlag.PM22136_SdkCipherEncryption)) &&
+      keyForCipherEncryption == null && // PM-23085 - SDK encryption does not currently support custom keys (e.g. key rotation)
+      keyForCipherKeyDecryption == null; // PM-23348 - Or has explicit methods for re-encrypting ciphers with different keys (e.g. move to org)
+
+    if (sdkEncryptionEnabled) {
+      return await this.cipherEncryptionService.encrypt(model, userId);
+    }
 
     const cipher = new Cipher();
     cipher.id = model.id;
@@ -854,22 +874,48 @@ export class CipherService implements CipherServiceAbstraction {
     organizationId: string,
     collectionIds: string[],
     userId: UserId,
+    originalCipher?: Cipher,
   ): Promise<Cipher> {
-    const attachmentPromises: Promise<any>[] = [];
-    if (cipher.attachments != null) {
-      cipher.attachments.forEach((attachment) => {
-        if (attachment.key == null) {
-          attachmentPromises.push(
-            this.shareAttachmentWithServer(attachment, cipher.id, organizationId),
-          );
-        }
-      });
-    }
-    await Promise.all(attachmentPromises);
+    const sdkCipherEncryptionEnabled = await this.configService.getFeatureFlag(
+      FeatureFlag.PM22136_SdkCipherEncryption,
+    );
+
+    await this.adjustCipherHistory(cipher, userId, originalCipher);
+
+    let encCipher: EncryptionContext;
+    if (sdkCipherEncryptionEnabled) {
+      // The SDK does not expect the cipher to already have an organizationId. It will result in the wrong
+      // cipher encryption key being used during the move to organization operation.
+      if (cipher.organizationId != null) {
+        throw new Error("Cipher is already associated with an organization.");
+      }
+
+      encCipher = await this.cipherEncryptionService.moveToOrganization(
+        cipher,
+        organizationId as OrganizationId,
+        userId,
+      );
+      encCipher.cipher.collectionIds = collectionIds;
+    } else {
+      // This old attachment logic is safe to remove after it is replaced in PM-22750; which will require fixing
+      // the attachment before sharing.
+      const attachmentPromises: Promise<any>[] = [];
+      if (cipher.attachments != null) {
+        cipher.attachments.forEach((attachment) => {
+          if (attachment.key == null) {
+            attachmentPromises.push(
+              this.shareAttachmentWithServer(attachment, cipher.id, organizationId),
+            );
+          }
+        });
+      }
+      await Promise.all(attachmentPromises);
+
+      cipher.organizationId = organizationId;
+      cipher.collectionIds = collectionIds;
+      encCipher = await this.encryptSharedCipher(cipher, userId);
+    }
 
-    cipher.organizationId = organizationId;
-    cipher.collectionIds = collectionIds;
-    const encCipher = await this.encryptSharedCipher(cipher, userId);
     const request = new CipherShareRequest(encCipher);
     const response = await this.apiService.putShareCipher(cipher.id, request);
     const data = new CipherData(response, collectionIds);
@@ -883,16 +929,36 @@ export class CipherService implements CipherServiceAbstraction {
     collectionIds: string[],
     userId: UserId,
   ) {
+    const sdkCipherEncryptionEnabled = await this.configService.getFeatureFlag(
+      FeatureFlag.PM22136_SdkCipherEncryption,
+    );
     const promises: Promise<any>[] = [];
     const encCiphers: Cipher[] = [];
     for (const cipher of ciphers) {
-      cipher.organizationId = organizationId;
-      cipher.collectionIds = collectionIds;
-      promises.push(
-        this.encryptSharedCipher(cipher, userId).then((c) => {
-          encCiphers.push(c.cipher);
-        }),
-      );
+      if (sdkCipherEncryptionEnabled) {
+        // The SDK does not expect the cipher to already have an organizationId. It will result in the wrong
+        // cipher encryption key being used during the move to organization operation.
+        if (cipher.organizationId != null) {
+          throw new Error("Cipher is already associated with an organization.");
+        }
+
+        promises.push(
+          this.cipherEncryptionService
+            .moveToOrganization(cipher, organizationId as OrganizationId, userId)
+            .then((encCipher) => {
+              encCipher.cipher.collectionIds = collectionIds;
+              encCiphers.push(encCipher.cipher);
+            }),
+        );
+      } else {
+        cipher.organizationId = organizationId;
+        cipher.collectionIds = collectionIds;
+        promises.push(
+          this.encryptSharedCipher(cipher, userId).then((c) => {
+            encCiphers.push(c.cipher);
+          }),
+        );
+      }
     }
     await Promise.all(promises);
     const request = new CipherBulkShareRequest(encCiphers, collectionIds, userId);
diff --git a/libs/common/src/vault/services/default-cipher-encryption.service.spec.ts b/libs/common/src/vault/services/default-cipher-encryption.service.spec.ts
index 4d05a5197fb..9e0cf62ed08 100644
--- a/libs/common/src/vault/services/default-cipher-encryption.service.spec.ts
+++ b/libs/common/src/vault/services/default-cipher-encryption.service.spec.ts
@@ -1,20 +1,22 @@
 import { mock } from "jest-mock-extended";
 import { of } from "rxjs";
 
+import { Fido2Credential } from "@bitwarden/common/vault/models/domain/fido2-credential";
 import {
-  Fido2Credential,
+  Fido2Credential as SdkFido2Credential,
   Cipher as SdkCipher,
   CipherType as SdkCipherType,
   CipherView as SdkCipherView,
   CipherListView,
   AttachmentView as SdkAttachmentView,
+  Fido2CredentialFullView,
 } from "@bitwarden/sdk-internal";
 
 import { mockEnc } from "../../../spec";
 import { UriMatchStrategy } from "../../models/domain/domain-service";
 import { LogService } from "../../platform/abstractions/log.service";
 import { SdkService } from "../../platform/abstractions/sdk/sdk.service";
-import { UserId } from "../../types/guid";
+import { UserId, CipherId, OrganizationId } from "../../types/guid";
 import { CipherRepromptType, CipherType } from "../enums";
 import { CipherPermissionsApi } from "../models/api/cipher-permissions.api";
 import { CipherData } from "../models/data/cipher.data";
@@ -25,10 +27,15 @@ import { Fido2CredentialView } from "../models/view/fido2-credential.view";
 
 import { DefaultCipherEncryptionService } from "./default-cipher-encryption.service";
 
+const cipherId = "bdc4ef23-1116-477e-ae73-247854af58cb" as CipherId;
+const orgId = "c5e9654f-6cc5-44c4-8e09-3d323522668c" as OrganizationId;
+const folderId = "a3e9654f-6cc5-44c4-8e09-3d323522668c";
+const userId = "59fbbb44-8cc8-4279-ab40-afc5f68704f4" as UserId;
+
 const cipherData: CipherData = {
-  id: "id",
-  organizationId: "orgId",
-  folderId: "folderId",
+  id: cipherId,
+  organizationId: orgId,
+  folderId: folderId,
   edit: true,
   viewPassword: true,
   organizationUseTotp: true,
@@ -78,13 +85,17 @@ describe("DefaultCipherEncryptionService", () => {
   const sdkService = mock<SdkService>();
   const logService = mock<LogService>();
   let sdkCipherView: SdkCipherView;
+  let sdkCipher: SdkCipher;
 
   const mockSdkClient = {
     vault: jest.fn().mockReturnValue({
       ciphers: jest.fn().mockReturnValue({
+        encrypt: jest.fn(),
+        set_fido2_credentials: jest.fn(),
         decrypt: jest.fn(),
         decrypt_list: jest.fn(),
         decrypt_fido2_credentials: jest.fn(),
+        move_to_organization: jest.fn(),
       }),
       attachments: jest.fn().mockReturnValue({
         decrypt_buffer: jest.fn(),
@@ -99,21 +110,25 @@ describe("DefaultCipherEncryptionService", () => {
     take: jest.fn().mockReturnValue(mockRef),
   };
 
-  const userId = "user-id" as UserId;
-
   let cipherObj: Cipher;
+  let cipherViewObj: CipherView;
 
   beforeEach(() => {
     sdkService.userClient$ = jest.fn((userId: UserId) => of(mockSdk)) as any;
     cipherEncryptionService = new DefaultCipherEncryptionService(sdkService, logService);
     cipherObj = new Cipher(cipherData);
+    cipherViewObj = new CipherView(cipherObj);
 
     jest.spyOn(cipherObj, "toSdkCipher").mockImplementation(() => {
       return { id: cipherData.id } as SdkCipher;
     });
 
+    jest.spyOn(cipherViewObj, "toSdkCipherView").mockImplementation(() => {
+      return { id: cipherData.id } as SdkCipherView;
+    });
+
     sdkCipherView = {
-      id: "test-id",
+      id: cipherId as string,
       type: SdkCipherType.Login,
       name: "test-name",
       login: {
@@ -121,16 +136,211 @@ describe("DefaultCipherEncryptionService", () => {
         password: "test-password",
       },
     } as SdkCipherView;
+
+    sdkCipher = {
+      id: cipherId,
+      type: SdkCipherType.Login,
+      name: "encrypted-name",
+      login: {
+        username: "encrypted-username",
+        password: "encrypted-password",
+      },
+    } as unknown as SdkCipher;
   });
 
   afterEach(() => {
     jest.clearAllMocks();
   });
 
+  describe("encrypt", () => {
+    it("should encrypt a cipher successfully", async () => {
+      const expectedCipher: Cipher = {
+        id: cipherId as string,
+        type: CipherType.Login,
+        name: "encrypted-name",
+        login: {
+          username: "encrypted-username",
+          password: "encrypted-password",
+        },
+      } as unknown as Cipher;
+
+      mockSdkClient.vault().ciphers().encrypt.mockReturnValue({
+        cipher: sdkCipher,
+        encryptedFor: userId,
+      });
+      jest.spyOn(Cipher, "fromSdkCipher").mockReturnValue(expectedCipher);
+
+      const result = await cipherEncryptionService.encrypt(cipherViewObj, userId);
+
+      expect(result).toBeDefined();
+      expect(result!.cipher).toEqual(expectedCipher);
+      expect(result!.encryptedFor).toBe(userId);
+      expect(cipherViewObj.toSdkCipherView).toHaveBeenCalled();
+      expect(mockSdkClient.vault().ciphers().encrypt).toHaveBeenCalledWith({ id: cipherData.id });
+    });
+
+    it("should encrypt FIDO2 credentials if present", async () => {
+      const fidoCredentialView = new Fido2CredentialView();
+      fidoCredentialView.credentialId = "credentialId";
+
+      cipherViewObj.login.fido2Credentials = [fidoCredentialView];
+
+      jest.spyOn(fidoCredentialView, "toSdkFido2CredentialFullView").mockImplementation(
+        () =>
+          ({
+            credentialId: "credentialId",
+          }) as Fido2CredentialFullView,
+      );
+      jest.spyOn(cipherViewObj, "toSdkCipherView").mockImplementation(
+        () =>
+          ({
+            id: cipherId as string,
+            login: {
+              fido2Credentials: undefined,
+            },
+          }) as unknown as SdkCipherView,
+      );
+
+      mockSdkClient
+        .vault()
+        .ciphers()
+        .set_fido2_credentials.mockReturnValue({
+          id: cipherId as string,
+          login: {
+            fido2Credentials: [
+              {
+                credentialId: "encrypted-credentialId",
+              },
+            ],
+          },
+        });
+
+      mockSdkClient.vault().ciphers().encrypt.mockReturnValue({
+        cipher: sdkCipher,
+        encryptedFor: userId,
+      });
+
+      cipherObj.login!.fido2Credentials = [
+        { credentialId: "encrypted-credentialId" } as unknown as Fido2Credential,
+      ];
+
+      jest.spyOn(Cipher, "fromSdkCipher").mockReturnValue(cipherObj);
+
+      const result = await cipherEncryptionService.encrypt(cipherViewObj, userId);
+
+      expect(result).toBeDefined();
+      expect(result!.cipher.login!.fido2Credentials).toHaveLength(1);
+
+      // Ensure set_fido2_credentials was called with correct parameters
+      expect(mockSdkClient.vault().ciphers().set_fido2_credentials).toHaveBeenCalledWith(
+        expect.objectContaining({ id: cipherId }),
+        [{ credentialId: "credentialId" }],
+      );
+
+      // Encrypted fido2 credential should be in the cipher passed to encrypt
+      expect(mockSdkClient.vault().ciphers().encrypt).toHaveBeenCalledWith(
+        expect.objectContaining({
+          id: cipherId,
+          login: { fido2Credentials: [{ credentialId: "encrypted-credentialId" }] },
+        }),
+      );
+    });
+  });
+
+  describe("moveToOrganization", () => {
+    it("should call the sdk method to move a cipher to an organization", async () => {
+      const expectedCipher: Cipher = {
+        id: cipherId as string,
+        type: CipherType.Login,
+        name: "encrypted-name",
+        organizationId: orgId,
+        login: {
+          username: "encrypted-username",
+          password: "encrypted-password",
+        },
+      } as unknown as Cipher;
+
+      mockSdkClient.vault().ciphers().move_to_organization.mockReturnValue({
+        id: cipherId,
+        organizationId: orgId,
+      });
+      mockSdkClient.vault().ciphers().encrypt.mockReturnValue({
+        cipher: sdkCipher,
+        encryptedFor: userId,
+      });
+      jest.spyOn(Cipher, "fromSdkCipher").mockReturnValue(expectedCipher);
+
+      const result = await cipherEncryptionService.moveToOrganization(cipherViewObj, orgId, userId);
+
+      expect(result).toBeDefined();
+      expect(result!.cipher).toEqual(expectedCipher);
+      expect(result!.encryptedFor).toBe(userId);
+      expect(cipherViewObj.toSdkCipherView).toHaveBeenCalled();
+      expect(mockSdkClient.vault().ciphers().move_to_organization).toHaveBeenCalledWith(
+        { id: cipherData.id },
+        orgId,
+      );
+    });
+
+    it("should re-encrypt any fido2 credentials when moving to an organization", async () => {
+      const mockSdkCredentialView = {
+        username: "username",
+      } as unknown as Fido2CredentialFullView;
+      const mockCredentialView = mock<Fido2CredentialView>();
+      mockCredentialView.toSdkFido2CredentialFullView.mockReturnValue(mockSdkCredentialView);
+      cipherViewObj.login.fido2Credentials = [mockCredentialView];
+      const expectedCipher: Cipher = {
+        id: cipherId as string,
+        type: CipherType.Login,
+        name: "encrypted-name",
+        organizationId: orgId,
+        login: {
+          username: "encrypted-username",
+          password: "encrypted-password",
+          fido2Credentials: [{ username: "encrypted-username" }],
+        },
+      } as unknown as Cipher;
+
+      mockSdkClient
+        .vault()
+        .ciphers()
+        .set_fido2_credentials.mockReturnValue({
+          id: cipherId as string,
+          login: {
+            fido2Credentials: [mockSdkCredentialView],
+          },
+        } as SdkCipherView);
+      mockSdkClient.vault().ciphers().move_to_organization.mockReturnValue({
+        id: cipherId,
+        organizationId: orgId,
+      });
+      mockSdkClient.vault().ciphers().encrypt.mockReturnValue({
+        cipher: sdkCipher,
+        encryptedFor: userId,
+      });
+      jest.spyOn(Cipher, "fromSdkCipher").mockReturnValue(expectedCipher);
+
+      const result = await cipherEncryptionService.moveToOrganization(cipherViewObj, orgId, userId);
+
+      expect(result).toBeDefined();
+      expect(result!.cipher).toEqual(expectedCipher);
+      expect(result!.encryptedFor).toBe(userId);
+      expect(cipherViewObj.toSdkCipherView).toHaveBeenCalled();
+      expect(mockSdkClient.vault().ciphers().set_fido2_credentials).toHaveBeenCalledWith(
+        expect.objectContaining({ id: cipherId }),
+        expect.arrayContaining([mockSdkCredentialView]),
+      );
+      expect(mockSdkClient.vault().ciphers().move_to_organization).toHaveBeenCalledWith(
+        { id: cipherData.id, login: { fido2Credentials: [mockSdkCredentialView] } },
+        orgId,
+      );
+    });
+  });
+
   describe("decrypt", () => {
     it("should decrypt a cipher successfully", async () => {
       const expectedCipherView: CipherView = {
-        id: "test-id",
+        id: cipherId as string,
         type: CipherType.Login,
         name: "test-name",
         login: {
@@ -168,12 +378,12 @@ describe("DefaultCipherEncryptionService", () => {
           discoverable: mockEnc("true"),
           creationDate: new Date("2023-01-01T12:00:00.000Z"),
         },
-      ] as unknown as Fido2Credential[];
+      ] as unknown as SdkFido2Credential[];
 
       sdkCipherView.login!.fido2Credentials = fido2Credentials;
 
       const expectedCipherView: CipherView = {
-        id: "test-id",
+        id: cipherId,
         type: CipherType.Login,
         name: "test-name",
         login: {
@@ -228,13 +438,15 @@ describe("DefaultCipherEncryptionService", () => {
     it("should decrypt multiple ciphers successfully", async () => {
       const ciphers = [new Cipher(cipherData), new Cipher(cipherData)];
 
+      const cipherId2 = "bdc4ef23-2222-477e-ae73-247854af58cb" as CipherId;
+
       const expectedViews = [
         {
-          id: "test-id-1",
+          id: cipherId as string,
           name: "test-name-1",
         } as CipherView,
         {
-          id: "test-id-2",
+          id: cipherId2 as string,
           name: "test-name-2",
         } as CipherView,
       ];
@@ -242,8 +454,11 @@ describe("DefaultCipherEncryptionService", () => {
       mockSdkClient
         .vault()
         .ciphers()
-        .decrypt.mockReturnValueOnce({ id: "test-id-1", name: "test-name-1" } as SdkCipherView)
-        .mockReturnValueOnce({ id: "test-id-2", name: "test-name-2" } as SdkCipherView);
+        .decrypt.mockReturnValueOnce({
+          id: cipherId,
+          name: "test-name-1",
+        } as unknown as SdkCipherView)
+        .mockReturnValueOnce({ id: cipherId2, name: "test-name-2" } as unknown as SdkCipherView);
 
       jest
         .spyOn(CipherView, "fromSdkCipherView")
diff --git a/libs/common/src/vault/services/default-cipher-encryption.service.ts b/libs/common/src/vault/services/default-cipher-encryption.service.ts
index 2c57df6f5bb..3547bafb4c9 100644
--- a/libs/common/src/vault/services/default-cipher-encryption.service.ts
+++ b/libs/common/src/vault/services/default-cipher-encryption.service.ts
@@ -1,10 +1,15 @@
 import { EMPTY, catchError, firstValueFrom, map } from "rxjs";
 
-import { CipherListView } from "@bitwarden/sdk-internal";
+import { EncryptionContext } from "@bitwarden/common/vault/abstractions/cipher.service";
+import {
+  CipherListView,
+  BitwardenClient,
+  CipherView as SdkCipherView,
+} from "@bitwarden/sdk-internal";
 
 import { LogService } from "../../platform/abstractions/log.service";
-import { SdkService } from "../../platform/abstractions/sdk/sdk.service";
-import { UserId } from "../../types/guid";
+import { SdkService, asUuid } from "../../platform/abstractions/sdk/sdk.service";
+import { UserId, OrganizationId } from "../../types/guid";
 import { CipherEncryptionService } from "../abstractions/cipher-encryption.service";
 import { CipherType } from "../enums";
 import { Cipher } from "../models/domain/cipher";
@@ -18,6 +23,67 @@ export class DefaultCipherEncryptionService implements CipherEncryptionService {
     private logService: LogService,
   ) {}
 
+  async encrypt(model: CipherView, userId: UserId): Promise<EncryptionContext | undefined> {
+    return firstValueFrom(
+      this.sdkService.userClient$(userId).pipe(
+        map((sdk) => {
+          if (!sdk) {
+            throw new Error("SDK not available");
+          }
+
+          using ref = sdk.take();
+          const sdkCipherView = this.toSdkCipherView(model, ref.value);
+
+          const encryptionContext = ref.value.vault().ciphers().encrypt(sdkCipherView);
+
+          return {
+            cipher: Cipher.fromSdkCipher(encryptionContext.cipher)!,
+            encryptedFor: asUuid<UserId>(encryptionContext.encryptedFor),
+          };
+        }),
+        catchError((error: unknown) => {
+          this.logService.error(`Failed to encrypt cipher: ${error}`);
+          return EMPTY;
+        }),
+      ),
+    );
+  }
+
+  async moveToOrganization(
+    model: CipherView,
+    organizationId: OrganizationId,
+    userId: UserId,
+  ): Promise<EncryptionContext | undefined> {
+    return firstValueFrom(
+      this.sdkService.userClient$(userId).pipe(
+        map((sdk) => {
+          if (!sdk) {
+            throw new Error("SDK not available");
+          }
+
+          using ref = sdk.take();
+          const sdkCipherView = this.toSdkCipherView(model, ref.value);
+
+          const movedCipherView = ref.value
+            .vault()
+            .ciphers()
+            .move_to_organization(sdkCipherView, asUuid(organizationId));
+
+          const encryptionContext = ref.value.vault().ciphers().encrypt(movedCipherView);
+
+          return {
+            cipher: Cipher.fromSdkCipher(encryptionContext.cipher)!,
+            encryptedFor: asUuid<UserId>(encryptionContext.encryptedFor),
+          };
+        }),
+        catchError((error: unknown) => {
+          this.logService.error(`Failed to move cipher to organization: ${error}`);
+          return EMPTY;
+        }),
+      ),
+    );
+  }
+
   async decrypt(cipher: Cipher, userId: UserId): Promise<CipherView> {
     return firstValueFrom(
       this.sdkService.userClient$(userId).pipe(
@@ -51,11 +117,8 @@ export class DefaultCipherEncryptionService implements CipherEncryptionService {
             clientCipherView.login.fido2Credentials = fido2CredentialViews
               .map((f) => {
                 const view = Fido2CredentialView.fromSdkFido2CredentialView(f)!;
-
-                return {
-                  ...view,
-                  keyValue: decryptedKeyValue,
-                };
+                view.keyValue = decryptedKeyValue;
+                return view;
               })
               .filter((view): view is Fido2CredentialView => view !== undefined);
           }
@@ -104,10 +167,8 @@ export class DefaultCipherEncryptionService implements CipherEncryptionService {
               clientCipherView.login.fido2Credentials = fido2CredentialViews
                 .map((f) => {
                   const view = Fido2CredentialView.fromSdkFido2CredentialView(f)!;
-                  return {
-                    ...view,
-                    keyValue: decryptedKeyValue,
-                  };
+                  view.keyValue = decryptedKeyValue;
+                  return view;
                 })
                 .filter((view): view is Fido2CredentialView => view !== undefined);
             }
@@ -187,4 +248,25 @@ export class DefaultCipherEncryptionService implements CipherEncryptionService {
       ),
     );
   }
+
+  /**
+   * Helper method to convert a CipherView model to an SDK CipherView. Has special handling for Fido2 credentials
+   * that need to be encrypted before being sent to the SDK.
+   * @param model The CipherView model to convert
+   * @param sdk An instance of SDK client
+   * @private
+   */
+  private toSdkCipherView(model: CipherView, sdk: BitwardenClient): SdkCipherView {
+    let sdkCipherView = model.toSdkCipherView();
+
+    if (model.type === CipherType.Login && model.login?.hasFido2Credentials) {
+      // Encrypt Fido2 credentials separately
+      const fido2Credentials = model.login.fido2Credentials?.map((f) =>
+        f.toSdkFido2CredentialFullView(),
+      );
+      sdkCipherView = sdk.vault().ciphers().set_fido2_credentials(sdkCipherView, fido2Credentials);
+    }
+
+    return sdkCipherView;
+  }
 }
diff --git a/libs/importer/src/importers/base-importer.ts b/libs/importer/src/importers/base-importer.ts
index 463d61dbbdf..1a97bc5a325 100644
--- a/libs/importer/src/importers/base-importer.ts
+++ b/libs/importer/src/importers/base-importer.ts
@@ -320,12 +320,6 @@ export abstract class BaseImporter {
     } else {
       cipher.notes = cipher.notes.trim();
     }
-    if (cipher.fields != null && cipher.fields.length === 0) {
-      cipher.fields = null;
-    }
-    if (cipher.passwordHistory != null && cipher.passwordHistory.length === 0) {
-      cipher.passwordHistory = null;
-    }
   }
 
   protected processKvp(
diff --git a/libs/importer/src/importers/keeper/keeper-csv-importer.spec.ts b/libs/importer/src/importers/keeper/keeper-csv-importer.spec.ts
index d7a4d487bcb..026c501cf5a 100644
--- a/libs/importer/src/importers/keeper/keeper-csv-importer.spec.ts
+++ b/libs/importer/src/importers/keeper/keeper-csv-importer.spec.ts
@@ -66,7 +66,7 @@ describe("Keeper CSV Importer", () => {
     expect(result != null).toBe(true);
 
     const cipher = result.ciphers.shift();
-    expect(cipher.fields).toBeNull();
+    expect(cipher.fields.length).toBe(0);
 
     const cipher2 = result.ciphers.shift();
     expect(cipher2.fields.length).toBe(2);
diff --git a/libs/importer/src/importers/keeper/keeper-json-importer.spec.ts b/libs/importer/src/importers/keeper/keeper-json-importer.spec.ts
index 31169021e0c..22008f3b4c1 100644
--- a/libs/importer/src/importers/keeper/keeper-json-importer.spec.ts
+++ b/libs/importer/src/importers/keeper/keeper-json-importer.spec.ts
@@ -39,7 +39,7 @@ describe("Keeper Json Importer", () => {
     expect(cipher3.login.username).toEqual("someUserName");
     expect(cipher3.login.password).toEqual("w4k4k1wergf$^&@#*%2");
     expect(cipher3.notes).toBeNull();
-    expect(cipher3.fields).toBeNull();
+    expect(cipher3.fields.length).toBe(0);
     expect(cipher3.login.uris.length).toEqual(1);
     const uriView3 = cipher3.login.uris.shift();
     expect(uriView3.uri).toEqual("https://example.com");
diff --git a/libs/vault/src/cipher-form/services/default-cipher-form.service.ts b/libs/vault/src/cipher-form/services/default-cipher-form.service.ts
index 5228c85c3f7..d195ff8b00b 100644
--- a/libs/vault/src/cipher-form/services/default-cipher-form.service.ts
+++ b/libs/vault/src/cipher-form/services/default-cipher-form.service.ts
@@ -5,7 +5,7 @@ import { firstValueFrom, map } from "rxjs";
 
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { getUserId } from "@bitwarden/common/auth/services/account.service";
-import { UserId } from "@bitwarden/common/types/guid";
+import { UserId, OrganizationId } from "@bitwarden/common/types/guid";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
 import { CipherType } from "@bitwarden/common/vault/enums";
 import { Cipher } from "@bitwarden/common/vault/models/domain/cipher";
@@ -31,21 +31,13 @@ export class DefaultCipherFormService implements CipherFormService {
   }
 
   async saveCipher(cipher: CipherView, config: CipherFormConfig): Promise<CipherView> {
-    // Passing the original cipher is important here as it is responsible for appending to password history
     const activeUserId = await firstValueFrom(this.accountService.activeAccount$.pipe(getUserId));
-    const encrypted = await this.cipherService.encrypt(
-      cipher,
-      activeUserId,
-      null,
-      null,
-      config.originalCipher ?? null,
-    );
-    const encryptedCipher = encrypted.cipher;
 
     let savedCipher: Cipher;
 
     // Creating a new cipher
     if (cipher.id == null) {
+      const encrypted = await this.cipherService.encrypt(cipher, activeUserId);
       savedCipher = await this.cipherService.createWithServer(encrypted, config.admin);
       return await this.cipherService.decrypt(savedCipher, activeUserId);
     }
@@ -61,16 +53,37 @@ export class DefaultCipherFormService implements CipherFormService {
 
     // Call shareWithServer if the owner is changing from a user to an organization
     if (config.originalCipher.organizationId === null && cipher.organizationId != null) {
+      // shareWithServer expects the cipher to have no organizationId set
+      const organizationId = cipher.organizationId as OrganizationId;
+      cipher.organizationId = null;
+
       savedCipher = await this.cipherService.shareWithServer(
         cipher,
-        cipher.organizationId,
+        organizationId,
         cipher.collectionIds,
         activeUserId,
+        config.originalCipher,
       );
       // If the collectionIds are the same, update the cipher normally
     } else if (isSetEqual(originalCollectionIds, newCollectionIds)) {
+      const encrypted = await this.cipherService.encrypt(
+        cipher,
+        activeUserId,
+        null,
+        null,
+        config.originalCipher,
+      );
       savedCipher = await this.cipherService.updateWithServer(encrypted, config.admin);
     } else {
+      const encrypted = await this.cipherService.encrypt(
+        cipher,
+        activeUserId,
+        null,
+        null,
+        config.originalCipher,
+      );
+      const encryptedCipher = encrypted.cipher;
+
       // Updating a cipher with collection changes is not supported with a single request currently
       // First update the cipher with the original collectionIds
       encryptedCipher.collectionIds = config.originalCipher.collectionIds;
diff --git a/libs/vault/src/cipher-view/cipher-view.component.html b/libs/vault/src/cipher-view/cipher-view.component.html
index a2ade0e885c..e65dd62500e 100644
--- a/libs/vault/src/cipher-view/cipher-view.component.html
+++ b/libs/vault/src/cipher-view/cipher-view.component.html
@@ -67,12 +67,12 @@
   </ng-container>
 
   <!-- CUSTOM FIELDS -->
-  <ng-container *ngIf="cipher.fields">
+  <ng-container *ngIf="cipher.hasFields">
     <app-custom-fields-v2 [cipher]="cipher"> </app-custom-fields-v2>
   </ng-container>
 
   <!-- ATTACHMENTS SECTION -->
-  <ng-container *ngIf="cipher.attachments">
+  <ng-container *ngIf="cipher.hasAttachments">
     <app-attachments-v2-view
       [emergencyAccessId]="emergencyAccessId"
       [cipher]="cipher"
diff --git a/libs/vault/src/components/password-history-view/password-history-view.component.spec.ts b/libs/vault/src/components/password-history-view/password-history-view.component.spec.ts
index c535847f7ba..2a9ca3b8433 100644
--- a/libs/vault/src/components/password-history-view/password-history-view.component.spec.ts
+++ b/libs/vault/src/components/password-history-view/password-history-view.component.spec.ts
@@ -9,6 +9,7 @@ import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/pl
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
 import { CipherType } from "@bitwarden/common/vault/enums";
 import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
+import { PasswordHistoryView } from "@bitwarden/common/vault/models/view/password-history.view";
 import { ColorPasswordComponent, ColorPasswordModule, ItemModule } from "@bitwarden/components";
 
 import { PasswordHistoryViewComponent } from "./password-history-view.component";
@@ -54,8 +55,14 @@ describe("PasswordHistoryViewComponent", () => {
   });
 
   describe("history", () => {
-    const password1 = { password: "bad-password-1", lastUsedDate: new Date("09/13/2004") };
-    const password2 = { password: "bad-password-2", lastUsedDate: new Date("02/01/2004") };
+    const password1 = {
+      password: "bad-password-1",
+      lastUsedDate: new Date("09/13/2004"),
+    } as PasswordHistoryView;
+    const password2 = {
+      password: "bad-password-2",
+      lastUsedDate: new Date("02/01/2004"),
+    } as PasswordHistoryView;
 
     beforeEach(async () => {
       mockCipher.passwordHistory = [password1, password2];
diff --git a/package-lock.json b/package-lock.json
index e6d4a0b9b89..b9f661f6915 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -23,7 +23,7 @@
         "@angular/platform-browser": "19.2.14",
         "@angular/platform-browser-dynamic": "19.2.14",
         "@angular/router": "19.2.14",
-        "@bitwarden/sdk-internal": "0.2.0-main.225",
+        "@bitwarden/sdk-internal": "0.2.0-main.227",
         "@electron/fuses": "1.8.0",
         "@emotion/css": "11.13.5",
         "@koa/multer": "4.0.0",
@@ -4604,9 +4604,9 @@
       "link": true
     },
     "node_modules/@bitwarden/sdk-internal": {
-      "version": "0.2.0-main.225",
-      "resolved": "https://registry.npmjs.org/@bitwarden/sdk-internal/-/sdk-internal-0.2.0-main.225.tgz",
-      "integrity": "sha512-bhSFNX584GPJ9wMBYff1d18/Hfj+o+D4E1l3uDLZNXRI9s7w919AQWqJ0xUy1vh8gpkLJovkf64HQGqs0OiQQA==",
+      "version": "0.2.0-main.227",
+      "resolved": "https://registry.npmjs.org/@bitwarden/sdk-internal/-/sdk-internal-0.2.0-main.227.tgz",
+      "integrity": "sha512-afOsl9jwi1qyX/tF4bYP3EWXgc8oMgnCA0hPPh+AJpn7GgoAPCi+WXaJkbBPwRpxZFKEpwt3oLRNTvtkECvFJw==",
       "license": "GPL-3.0",
       "dependencies": {
         "type-fest": "^4.41.0"
diff --git a/package.json b/package.json
index b7923a92f6f..ac00e674310 100644
--- a/package.json
+++ b/package.json
@@ -158,7 +158,7 @@
     "@angular/platform-browser": "19.2.14",
     "@angular/platform-browser-dynamic": "19.2.14",
     "@angular/router": "19.2.14",
-    "@bitwarden/sdk-internal": "0.2.0-main.225",
+    "@bitwarden/sdk-internal": "0.2.0-main.227",
     "@electron/fuses": "1.8.0",
     "@emotion/css": "11.13.5",
     "@koa/multer": "4.0.0",

From b54944da416925c90fabc0479d2cc20b4c3f32da Mon Sep 17 00:00:00 2001
From: Bernd Schoolmann <mail@quexten.com>
Date: Tue, 22 Jul 2025 12:35:55 +0200
Subject: [PATCH 190/239] Deprecate encstring's decrypt function (#15703)

---
 libs/common/src/key-management/crypto/models/enc-string.ts | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/libs/common/src/key-management/crypto/models/enc-string.ts b/libs/common/src/key-management/crypto/models/enc-string.ts
index 1ff98d1b6b6..3478ced0cf3 100644
--- a/libs/common/src/key-management/crypto/models/enc-string.ts
+++ b/libs/common/src/key-management/crypto/models/enc-string.ts
@@ -153,6 +153,10 @@ export class EncString implements Encrypted {
     return EXPECTED_NUM_PARTS_BY_ENCRYPTION_TYPE[encType] === encPieces.length;
   }
 
+  /**
+   * @deprecated - This function is deprecated. Use EncryptService.decryptString instead.
+   * @returns - The decrypted string, or `[error: cannot decrypt]` if decryption fails.
+   */
   async decrypt(
     orgId: string | null,
     key: SymmetricCryptoKey | null = null,

From 481910b82374631454a173816f4b24ba2336437d Mon Sep 17 00:00:00 2001
From: Bernd Schoolmann <mail@quexten.com>
Date: Tue, 22 Jul 2025 13:03:04 +0200
Subject: [PATCH 191/239] Fix breaking sdk change and update to 231 (#15617)

---
 .../src/platform/services/sdk/default-sdk.service.ts      | 1 +
 package-lock.json                                         | 8 ++++----
 package.json                                              | 2 +-
 3 files changed, 6 insertions(+), 5 deletions(-)

diff --git a/libs/common/src/platform/services/sdk/default-sdk.service.ts b/libs/common/src/platform/services/sdk/default-sdk.service.ts
index 1dfdfd207c0..c12fbe2dbb2 100644
--- a/libs/common/src/platform/services/sdk/default-sdk.service.ts
+++ b/libs/common/src/platform/services/sdk/default-sdk.service.ts
@@ -228,6 +228,7 @@ export class DefaultSdkService implements SdkService {
             },
       privateKey,
       signingKey: undefined,
+      securityState: undefined,
     });
 
     // We initialize the org crypto even if the org_keys are
diff --git a/package-lock.json b/package-lock.json
index b9f661f6915..e44797997f1 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -23,7 +23,7 @@
         "@angular/platform-browser": "19.2.14",
         "@angular/platform-browser-dynamic": "19.2.14",
         "@angular/router": "19.2.14",
-        "@bitwarden/sdk-internal": "0.2.0-main.227",
+        "@bitwarden/sdk-internal": "0.2.0-main.231",
         "@electron/fuses": "1.8.0",
         "@emotion/css": "11.13.5",
         "@koa/multer": "4.0.0",
@@ -4604,9 +4604,9 @@
       "link": true
     },
     "node_modules/@bitwarden/sdk-internal": {
-      "version": "0.2.0-main.227",
-      "resolved": "https://registry.npmjs.org/@bitwarden/sdk-internal/-/sdk-internal-0.2.0-main.227.tgz",
-      "integrity": "sha512-afOsl9jwi1qyX/tF4bYP3EWXgc8oMgnCA0hPPh+AJpn7GgoAPCi+WXaJkbBPwRpxZFKEpwt3oLRNTvtkECvFJw==",
+      "version": "0.2.0-main.231",
+      "resolved": "https://registry.npmjs.org/@bitwarden/sdk-internal/-/sdk-internal-0.2.0-main.231.tgz",
+      "integrity": "sha512-fDKB/RFVvkRPWlhL/qhPAdJDjD1EpFjpEjjpY0v5QNGalh6NCztOr1OcMc4kvipPp4g+epZjs3SPN38K6R+7zw==",
       "license": "GPL-3.0",
       "dependencies": {
         "type-fest": "^4.41.0"
diff --git a/package.json b/package.json
index ac00e674310..089ef3342e9 100644
--- a/package.json
+++ b/package.json
@@ -158,7 +158,7 @@
     "@angular/platform-browser": "19.2.14",
     "@angular/platform-browser-dynamic": "19.2.14",
     "@angular/router": "19.2.14",
-    "@bitwarden/sdk-internal": "0.2.0-main.227",
+    "@bitwarden/sdk-internal": "0.2.0-main.231",
     "@electron/fuses": "1.8.0",
     "@emotion/css": "11.13.5",
     "@koa/multer": "4.0.0",

From 2a07b952ef5c633ea4b470f64039cb13c02c0aa4 Mon Sep 17 00:00:00 2001
From: Shane Melton <smelton@bitwarden.com>
Date: Tue, 22 Jul 2025 06:32:00 -0700
Subject: [PATCH 192/239] [PM-24000] Convert string date values to Date objects
 for CipherExport types (#15715)

---
 libs/common/src/models/export/cipher.export.ts           | 7 ++++---
 libs/common/src/models/export/password-history.export.ts | 2 +-
 2 files changed, 5 insertions(+), 4 deletions(-)

diff --git a/libs/common/src/models/export/cipher.export.ts b/libs/common/src/models/export/cipher.export.ts
index ad6d8b7a609..d343621328c 100644
--- a/libs/common/src/models/export/cipher.export.ts
+++ b/libs/common/src/models/export/cipher.export.ts
@@ -53,6 +53,7 @@ export class CipherExport {
     view.notes = req.notes;
     view.favorite = req.favorite;
     view.reprompt = req.reprompt ?? CipherRepromptType.None;
+    view.key = req.key != null ? new EncString(req.key) : null;
 
     if (req.fields != null) {
       view.fields = req.fields.map((f) => FieldExport.toView(f));
@@ -80,9 +81,9 @@ export class CipherExport {
       view.passwordHistory = req.passwordHistory.map((ph) => PasswordHistoryExport.toView(ph));
     }
 
-    view.creationDate = req.creationDate;
-    view.revisionDate = req.revisionDate;
-    view.deletedDate = req.deletedDate;
+    view.creationDate = req.creationDate ? new Date(req.creationDate) : null;
+    view.revisionDate = req.revisionDate ? new Date(req.revisionDate) : null;
+    view.deletedDate = req.deletedDate ? new Date(req.deletedDate) : null;
     return view;
   }
 
diff --git a/libs/common/src/models/export/password-history.export.ts b/libs/common/src/models/export/password-history.export.ts
index e5a44e4e330..f443a2f4ace 100644
--- a/libs/common/src/models/export/password-history.export.ts
+++ b/libs/common/src/models/export/password-history.export.ts
@@ -16,7 +16,7 @@ export class PasswordHistoryExport {
 
   static toView(req: PasswordHistoryExport, view = new PasswordHistoryView()) {
     view.password = req.password;
-    view.lastUsedDate = req.lastUsedDate;
+    view.lastUsedDate = req.lastUsedDate ? new Date(req.lastUsedDate) : null;
     return view;
   }
 

From 5290e0a63beb5ec5f134c996c7e25e3814cbce4f Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=E2=9C=A8=20Audrey=20=E2=9C=A8?= <ajensen@bitwarden.com>
Date: Tue, 22 Jul 2025 09:33:34 -0400
Subject: [PATCH 193/239] [PM-19054] configure send with email otp
 authentication via cli (#15360)

---
 apps/cli/src/commands/get.command.ts          |  10 +-
 .../src/tools/send/commands/create.command.ts |  10 +-
 .../src/tools/send/commands/edit.command.ts   |  24 ++-
 apps/cli/src/tools/send/commands/index.ts     |   1 +
 .../tools/send/commands/template.command.ts   |  35 ++++
 .../src/tools/send/models/send.response.ts    |   3 +
 apps/cli/src/tools/send/send.program.ts       |  64 +++---
 apps/cli/src/tools/send/util.spec.ts          | 194 ++++++++++++++++++
 apps/cli/src/tools/send/util.ts               |  55 +++++
 .../src/tools/send/models/data/send.data.ts   |   2 +
 .../src/tools/send/models/domain/send.spec.ts |   6 +-
 .../src/tools/send/models/domain/send.ts      |   2 +
 .../tools/send/models/request/send.request.ts |   2 +
 .../send/models/response/send.response.ts     |   2 +
 .../src/tools/send/models/view/send.view.ts   |   1 +
 .../src/tools/send/services/send.service.ts   |   7 +-
 16 files changed, 369 insertions(+), 49 deletions(-)
 create mode 100644 apps/cli/src/tools/send/commands/template.command.ts
 create mode 100644 apps/cli/src/tools/send/util.spec.ts
 create mode 100644 apps/cli/src/tools/send/util.ts

diff --git a/apps/cli/src/commands/get.command.ts b/apps/cli/src/commands/get.command.ts
index aa2db7c81ab..b20052fbb53 100644
--- a/apps/cli/src/commands/get.command.ts
+++ b/apps/cli/src/commands/get.command.ts
@@ -25,7 +25,6 @@ import { LoginExport } from "@bitwarden/common/models/export/login.export";
 import { SecureNoteExport } from "@bitwarden/common/models/export/secure-note.export";
 import { ErrorResponse } from "@bitwarden/common/models/response/error.response";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
-import { SendType } from "@bitwarden/common/tools/send/enums/send-type";
 import { CipherId, OrganizationId, UserId } from "@bitwarden/common/types/guid";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
 import { FolderService } from "@bitwarden/common/vault/abstractions/folder/folder.service.abstraction";
@@ -44,7 +43,6 @@ import { SelectionReadOnly } from "../admin-console/models/selection-read-only";
 import { Response } from "../models/response";
 import { StringResponse } from "../models/response/string.response";
 import { TemplateResponse } from "../models/response/template.response";
-import { SendResponse } from "../tools/send/models/send.response";
 import { CliUtils } from "../utils";
 import { CipherResponse } from "../vault/models/cipher.response";
 import { FolderResponse } from "../vault/models/folder.response";
@@ -577,11 +575,11 @@ export class GetCommand extends DownloadCommand {
       case "org-collection":
         template = OrganizationCollectionRequest.template();
         break;
-      case "send.text":
-        template = SendResponse.template(SendType.Text);
-        break;
       case "send.file":
-        template = SendResponse.template(SendType.File);
+      case "send.text":
+        template = Response.badRequest(
+          `Invalid template object. Use \`bw send template ${id}\` instead.`,
+        );
         break;
       default:
         return Response.badRequest("Unknown template object.");
diff --git a/apps/cli/src/tools/send/commands/create.command.ts b/apps/cli/src/tools/send/commands/create.command.ts
index a9264c50126..d4f544d39b7 100644
--- a/apps/cli/src/tools/send/commands/create.command.ts
+++ b/apps/cli/src/tools/send/commands/create.command.ts
@@ -76,9 +76,14 @@ export class SendCreateCommand {
     const filePath = req.file?.fileName ?? options.file;
     const text = req.text?.text ?? options.text;
     const hidden = req.text?.hidden ?? options.hidden;
-    const password = req.password ?? options.password;
+    const password = req.password ?? options.password ?? undefined;
+    const emails = req.emails ?? options.emails ?? undefined;
     const maxAccessCount = req.maxAccessCount ?? options.maxAccessCount;
 
+    if (emails !== undefined && password !== undefined) {
+      return Response.badRequest("--password and --emails are mutually exclusive.");
+    }
+
     req.key = null;
     req.maxAccessCount = maxAccessCount;
 
@@ -133,6 +138,7 @@ export class SendCreateCommand {
       // Add dates from template
       encSend.deletionDate = sendView.deletionDate;
       encSend.expirationDate = sendView.expirationDate;
+      encSend.emails = emails && emails.join(",");
 
       await this.sendApiService.save([encSend, fileData]);
       const newSend = await this.sendService.getFromState(encSend.id);
@@ -151,12 +157,14 @@ class Options {
   text: string;
   maxAccessCount: number;
   password: string;
+  emails: Array<string>;
   hidden: boolean;
 
   constructor(passedOptions: Record<string, any>) {
     this.file = passedOptions?.file;
     this.text = passedOptions?.text;
     this.password = passedOptions?.password;
+    this.emails = passedOptions?.email;
     this.hidden = CliUtils.convertBooleanOption(passedOptions?.hidden);
     this.maxAccessCount =
       passedOptions?.maxAccessCount != null ? parseInt(passedOptions.maxAccessCount, null) : null;
diff --git a/apps/cli/src/tools/send/commands/edit.command.ts b/apps/cli/src/tools/send/commands/edit.command.ts
index ed719b58311..09f89041cc5 100644
--- a/apps/cli/src/tools/send/commands/edit.command.ts
+++ b/apps/cli/src/tools/send/commands/edit.command.ts
@@ -50,11 +50,21 @@ export class SendEditCommand {
 
     const normalizedOptions = new Options(cmdOptions);
     req.id = normalizedOptions.itemId || req.id;
-
-    if (req.id != null) {
-      req.id = req.id.toLowerCase();
+    if (normalizedOptions.emails) {
+      req.emails = normalizedOptions.emails;
+      req.password = undefined;
+    } else if (normalizedOptions.password) {
+      req.emails = undefined;
+      req.password = normalizedOptions.password;
+    } else if (req.password && (typeof req.password !== "string" || req.password === "")) {
+      req.password = undefined;
     }
 
+    if (!req.id) {
+      return Response.error("`itemid` was not provided.");
+    }
+
+    req.id = req.id.toLowerCase();
     const send = await this.sendService.getFromState(req.id);
 
     if (send == null) {
@@ -76,10 +86,6 @@ export class SendEditCommand {
     let sendView = await send.decrypt();
     sendView = SendResponse.toView(req, sendView);
 
-    if (typeof req.password !== "string" || req.password === "") {
-      req.password = null;
-    }
-
     try {
       const [encSend, encFileData] = await this.sendService.encrypt(sendView, null, req.password);
       // Add dates from template
@@ -97,8 +103,12 @@ export class SendEditCommand {
 
 class Options {
   itemId: string;
+  password: string;
+  emails: string[];
 
   constructor(passedOptions: Record<string, any>) {
     this.itemId = passedOptions?.itemId || passedOptions?.itemid;
+    this.password = passedOptions.password;
+    this.emails = passedOptions.email;
   }
 }
diff --git a/apps/cli/src/tools/send/commands/index.ts b/apps/cli/src/tools/send/commands/index.ts
index 645f5c0d1db..452c228dd9b 100644
--- a/apps/cli/src/tools/send/commands/index.ts
+++ b/apps/cli/src/tools/send/commands/index.ts
@@ -5,3 +5,4 @@ export * from "./get.command";
 export * from "./list.command";
 export * from "./receive.command";
 export * from "./remove-password.command";
+export * from "./template.command";
diff --git a/apps/cli/src/tools/send/commands/template.command.ts b/apps/cli/src/tools/send/commands/template.command.ts
new file mode 100644
index 00000000000..c1c2c97b03d
--- /dev/null
+++ b/apps/cli/src/tools/send/commands/template.command.ts
@@ -0,0 +1,35 @@
+import { SendType } from "@bitwarden/common/tools/send/enums/send-type";
+
+import { Response } from "../../../models/response";
+import { TemplateResponse } from "../../../models/response/template.response";
+import { SendResponse } from "../models/send.response";
+
+export class SendTemplateCommand {
+  constructor() {}
+
+  run(type: string): Response {
+    let template: SendResponse | undefined;
+    let response: Response;
+
+    switch (type) {
+      case "send.text":
+      case "text":
+        template = SendResponse.template(SendType.Text);
+        break;
+      case "send.file":
+      case "file":
+        template = SendResponse.template(SendType.File);
+        break;
+      default:
+        response = Response.badRequest("Unknown template object.");
+    }
+
+    if (template) {
+      response = Response.success(new TemplateResponse(template));
+    }
+
+    response ??= Response.badRequest("An error occurred while retrieving the template.");
+
+    return response;
+  }
+}
diff --git a/apps/cli/src/tools/send/models/send.response.ts b/apps/cli/src/tools/send/models/send.response.ts
index 4d680b5c0a1..a0c1d3f83c6 100644
--- a/apps/cli/src/tools/send/models/send.response.ts
+++ b/apps/cli/src/tools/send/models/send.response.ts
@@ -26,6 +26,7 @@ export class SendResponse implements BaseResponse {
     req.deletionDate = this.getStandardDeletionDate(deleteInDays);
     req.expirationDate = null;
     req.password = null;
+    req.emails = null;
     req.disabled = false;
     req.hideEmail = false;
     return req;
@@ -50,6 +51,7 @@ export class SendResponse implements BaseResponse {
     view.deletionDate = send.deletionDate;
     view.expirationDate = send.expirationDate;
     view.password = send.password;
+    view.emails = send.emails ?? [];
     view.disabled = send.disabled;
     view.hideEmail = send.hideEmail;
     return view;
@@ -87,6 +89,7 @@ export class SendResponse implements BaseResponse {
   expirationDate: Date;
   password: string;
   passwordSet: boolean;
+  emails?: Array<string>;
   disabled: boolean;
   hideEmail: boolean;
 
diff --git a/apps/cli/src/tools/send/send.program.ts b/apps/cli/src/tools/send/send.program.ts
index cbeda188a99..650f448e558 100644
--- a/apps/cli/src/tools/send/send.program.ts
+++ b/apps/cli/src/tools/send/send.program.ts
@@ -4,13 +4,12 @@ import * as fs from "fs";
 import * as path from "path";
 
 import * as chalk from "chalk";
-import { program, Command, OptionValues } from "commander";
+import { program, Command, Option, OptionValues } from "commander";
 
 import { Utils } from "@bitwarden/common/platform/misc/utils";
 import { SendType } from "@bitwarden/common/tools/send/enums/send-type";
 
 import { BaseProgram } from "../../base-program";
-import { GetCommand } from "../../commands/get.command";
 import { Response } from "../../models/response";
 import { CliUtils } from "../../utils";
 
@@ -22,10 +21,12 @@ import {
   SendListCommand,
   SendReceiveCommand,
   SendRemovePasswordCommand,
+  SendTemplateCommand,
 } from "./commands";
 import { SendFileResponse } from "./models/send-file.response";
 import { SendTextResponse } from "./models/send-text.response";
 import { SendResponse } from "./models/send.response";
+import { parseEmail } from "./util";
 
 const writeLn = CliUtils.writeLn;
 
@@ -48,6 +49,17 @@ export class SendProgram extends BaseProgram {
         "The number of days in the future to set deletion date, defaults to 7",
         "7",
       )
+      .addOption(
+        new Option(
+          "--password <password>",
+          "optional password to access this Send. Can also be specified in JSON.",
+        ).conflicts("email"),
+      )
+      .option(
+        "--email <email>",
+        "optional emails to access this Send. Can also be specified in JSON.",
+        parseEmail,
+      )
       .option("-a, --maxAccessCount <amount>", "The amount of max possible accesses.")
       .option("--hidden", "Hide <data> in web by default. Valid only if --file is not set.")
       .option(
@@ -139,26 +151,9 @@ export class SendProgram extends BaseProgram {
     return new Command("template")
       .argument("<object>", "Valid objects are: send.text, send.file")
       .description("Get json templates for send objects")
-      .action(async (object) => {
-        const cmd = new GetCommand(
-          this.serviceContainer.cipherService,
-          this.serviceContainer.folderService,
-          this.serviceContainer.collectionService,
-          this.serviceContainer.totpService,
-          this.serviceContainer.auditService,
-          this.serviceContainer.keyService,
-          this.serviceContainer.encryptService,
-          this.serviceContainer.searchService,
-          this.serviceContainer.apiService,
-          this.serviceContainer.organizationService,
-          this.serviceContainer.eventCollectionService,
-          this.serviceContainer.billingAccountProfileStateService,
-          this.serviceContainer.accountService,
-          this.serviceContainer.cliRestrictedItemTypesService,
-        );
-        const response = await cmd.run("template", object, null);
-        this.processResponse(response);
-      });
+      .action((options: OptionValues) =>
+        this.processResponse(new SendTemplateCommand().run(options.object)),
+      );
   }
 
   private getCommand(): Command {
@@ -208,10 +203,6 @@ export class SendProgram extends BaseProgram {
       .option("--file <path>", "file to Send. Can also be specified in parent's JSON.")
       .option("--text <text>", "text to Send. Can also be specified in parent's JSON.")
       .option("--hidden", "text hidden flag. Valid only with the --text option.")
-      .option(
-        "--password <password>",
-        "optional password to access this Send. Can also be specified in JSON",
-      )
       .on("--help", () => {
         writeLn("");
         writeLn("Note:");
@@ -219,13 +210,13 @@ export class SendProgram extends BaseProgram {
         writeLn("", true);
       })
       .action(async (encodedJson: string, options: OptionValues, args: { parent: Command }) => {
-        // Work-around to support `--fullObject` option for `send create --fullObject`
-        // Calling `option('--fullObject', ...)` above won't work due to Commander doesn't like same option
-        // to be defind on both parent-command and sub-command
-        const { fullObject = false } = args.parent.opts();
+        // subcommands inherit flags from their parent; they cannot override them
+        const { fullObject = false, email = undefined, password = undefined } = args.parent.opts();
         const mergedOptions = {
           ...options,
           fullObject: fullObject,
+          email,
+          password,
         };
 
         const response = await this.runCreate(encodedJson, mergedOptions);
@@ -247,7 +238,7 @@ export class SendProgram extends BaseProgram {
         writeLn("  You cannot update a File-type Send's file. Just delete and remake it");
         writeLn("", true);
       })
-      .action(async (encodedJson: string, options: OptionValues) => {
+      .action(async (encodedJson: string, options: OptionValues, args: { parent: Command }) => {
         await this.exitIfLocked();
         const getCmd = new SendGetCommand(
           this.serviceContainer.sendService,
@@ -264,7 +255,16 @@ export class SendProgram extends BaseProgram {
           this.serviceContainer.billingAccountProfileStateService,
           this.serviceContainer.accountService,
         );
-        const response = await cmd.run(encodedJson, options);
+
+        // subcommands inherit flags from their parent; they cannot override them
+        const { email = undefined, password = undefined } = args.parent.opts();
+        const mergedOptions = {
+          ...options,
+          email,
+          password,
+        };
+
+        const response = await cmd.run(encodedJson, mergedOptions);
         this.processResponse(response);
       });
   }
diff --git a/apps/cli/src/tools/send/util.spec.ts b/apps/cli/src/tools/send/util.spec.ts
new file mode 100644
index 00000000000..2cfc2a1b4c8
--- /dev/null
+++ b/apps/cli/src/tools/send/util.spec.ts
@@ -0,0 +1,194 @@
+import { parseEmail } from "./util";
+
+describe("parseEmail", () => {
+  describe("single email address parsing", () => {
+    it("should parse a valid single email address", () => {
+      const result = parseEmail("test@example.com", []);
+      expect(result).toEqual(["test@example.com"]);
+    });
+
+    it("should parse email with dots in local part", () => {
+      const result = parseEmail("test.user@example.com", []);
+      expect(result).toEqual(["test.user@example.com"]);
+    });
+
+    it("should parse email with underscores and hyphens", () => {
+      const result = parseEmail("test_user-name@example.com", []);
+      expect(result).toEqual(["test_user-name@example.com"]);
+    });
+
+    it("should parse email with plus sign", () => {
+      const result = parseEmail("test+user@example.com", []);
+      expect(result).toEqual(["test+user@example.com"]);
+    });
+
+    it("should parse email with dots and hyphens in domain", () => {
+      const result = parseEmail("user@test-domain.co.uk", []);
+      expect(result).toEqual(["user@test-domain.co.uk"]);
+    });
+
+    it("should add single email to existing previousInput array", () => {
+      const result = parseEmail("new@example.com", ["existing@test.com"]);
+      expect(result).toEqual(["existing@test.com", "new@example.com"]);
+    });
+  });
+
+  describe("comma-separated email lists", () => {
+    it("should parse comma-separated email list", () => {
+      const result = parseEmail("test@example.com,user@domain.com", []);
+      expect(result).toEqual(["test@example.com", "user@domain.com"]);
+    });
+
+    it("should parse comma-separated emails with spaces", () => {
+      const result = parseEmail("test@example.com, user@domain.com, admin@site.org", []);
+      expect(result).toEqual(["test@example.com", "user@domain.com", "admin@site.org"]);
+    });
+
+    it("should combine comma-separated emails with previousInput", () => {
+      const result = parseEmail("new1@example.com,new2@domain.com", ["existing@test.com"]);
+      expect(result).toEqual(["existing@test.com", "new1@example.com", "new2@domain.com"]);
+    });
+
+    it("should throw error for invalid email in comma-separated list", () => {
+      expect(() => {
+        parseEmail("valid@example.com,invalid-email,another@domain.com", []);
+      }).toThrow("Invalid email address: invalid-email");
+    });
+  });
+
+  describe("space-separated email lists", () => {
+    it("should parse space-separated email list", () => {
+      const result = parseEmail("test@example.com user@domain.com", []);
+      expect(result).toEqual(["test@example.com", "user@domain.com"]);
+    });
+
+    it("should parse space-separated emails with multiple spaces", () => {
+      const result = parseEmail("test@example.com   user@domain.com  admin@site.org", []);
+      expect(result).toEqual(["test@example.com", "user@domain.com", "admin@site.org"]);
+    });
+
+    it("should combine space-separated emails with previousInput", () => {
+      const result = parseEmail("new1@example.com new2@domain.com", ["existing@test.com"]);
+      expect(result).toEqual(["existing@test.com", "new1@example.com", "new2@domain.com"]);
+    });
+
+    it("should throw error for invalid email in space-separated list", () => {
+      expect(() => {
+        parseEmail("valid@example.com invalid-email another@domain.com", []);
+      }).toThrow("Invalid email address: invalid-email");
+    });
+  });
+
+  describe("JSON array input format", () => {
+    it("should parse valid JSON array of emails", () => {
+      const result = parseEmail('["test@example.com", "user@domain.com"]', []);
+      expect(result).toEqual(["test@example.com", "user@domain.com"]);
+    });
+
+    it("should parse single email in JSON array", () => {
+      const result = parseEmail('["test@example.com"]', []);
+      expect(result).toEqual(["test@example.com"]);
+    });
+
+    it("should parse empty JSON array", () => {
+      const result = parseEmail("[]", []);
+      expect(result).toEqual([]);
+    });
+
+    it("should combine JSON array with previousInput", () => {
+      const result = parseEmail('["new1@example.com", "new2@domain.com"]', ["existing@test.com"]);
+      expect(result).toEqual(["existing@test.com", "new1@example.com", "new2@domain.com"]);
+    });
+
+    it("should throw error for malformed JSON", () => {
+      expect(() => {
+        parseEmail('["test@example.com", "user@domain.com"', []);
+      }).toThrow();
+    });
+
+    it("should throw error for JSON that is not an array", () => {
+      expect(() => {
+        parseEmail('{"email": "test@example.com"}', []);
+      }).toThrow("Invalid email address:");
+    });
+
+    it("should throw error for JSON string instead of array", () => {
+      expect(() => {
+        parseEmail('"test@example.com"', []);
+      }).toThrow("`input` must be a single address, a comma-separated list, or a JSON array");
+    });
+
+    it("should throw error for JSON number instead of array", () => {
+      expect(() => {
+        parseEmail("123", []);
+      }).toThrow("`input` must be a single address, a comma-separated list, or a JSON array");
+    });
+  });
+
+  describe("`previousInput` parameter handling", () => {
+    it("should handle undefined previousInput", () => {
+      const result = parseEmail("test@example.com", undefined as any);
+      expect(result).toEqual(["test@example.com"]);
+    });
+
+    it("should handle null previousInput", () => {
+      const result = parseEmail("test@example.com", null as any);
+      expect(result).toEqual(["test@example.com"]);
+    });
+
+    it("should preserve existing emails in previousInput", () => {
+      const existing = ["existing1@test.com", "existing2@test.com"];
+      const result = parseEmail("new@example.com", existing);
+      expect(result).toEqual(["existing1@test.com", "existing2@test.com", "new@example.com"]);
+    });
+  });
+
+  describe("error cases and edge conditions", () => {
+    it("should throw error for empty string input", () => {
+      expect(() => {
+        parseEmail("", []);
+      }).toThrow("`input` must be a single address, a comma-separated list, or a JSON array");
+    });
+
+    it("should return empty array for whitespace-only input", () => {
+      const result = parseEmail("   ", []);
+      expect(result).toEqual([]);
+    });
+
+    it("should throw error for invalid single email", () => {
+      expect(() => {
+        parseEmail("invalid-email", []);
+      }).toThrow("`input` must be a single address, a comma-separated list, or a JSON array");
+    });
+
+    it("should throw error for email without @ symbol", () => {
+      expect(() => {
+        parseEmail("testexample.com", []);
+      }).toThrow("`input` must be a single address, a comma-separated list, or a JSON array");
+    });
+
+    it("should throw error for email without domain", () => {
+      expect(() => {
+        parseEmail("test@", []);
+      }).toThrow("`input` must be a single address, a comma-separated list, or a JSON array");
+    });
+
+    it("should throw error for email without local part", () => {
+      expect(() => {
+        parseEmail("@example.com", []);
+      }).toThrow("`input` must be a single address, a comma-separated list, or a JSON array");
+    });
+
+    it("should throw error for input that looks like file path", () => {
+      expect(() => {
+        parseEmail("/path/to/file.txt", []);
+      }).toThrow("`input` must be a single address, a comma-separated list, or a JSON array");
+    });
+
+    it("should throw error for input that looks like URL", () => {
+      expect(() => {
+        parseEmail("https://example.com", []);
+      }).toThrow("`input` must be a single address, a comma-separated list, or a JSON array");
+    });
+  });
+});
diff --git a/apps/cli/src/tools/send/util.ts b/apps/cli/src/tools/send/util.ts
new file mode 100644
index 00000000000..bf66f916bbb
--- /dev/null
+++ b/apps/cli/src/tools/send/util.ts
@@ -0,0 +1,55 @@
+/**
+ * Parses email addresses from various input formats and combines them with previously parsed emails.
+ *
+ * Supports: single email, JSON array, comma-separated, or space-separated lists.
+ * Note: Function signature follows Commander.js option parsing pattern.
+ *
+ * @param input - Email input string in any supported format
+ * @param previousInput - Previously parsed email addresses to append to
+ * @returns Combined array of email addresses
+ * @throws {Error} For invalid JSON, non-array JSON, invalid email addresses, or unrecognized format
+ *
+ * @example
+ * parseEmail("user@example.com", []) // ["user@example.com"]
+ * parseEmail('["user1@example.com", "user2@example.com"]', []) // ["user1@example.com", "user2@example.com"]
+ * parseEmail("user1@example.com, user2@example.com", []) // ["user1@example.com", "user2@example.com"]
+ */
+export function parseEmail(input: string, previousInput: string[]) {
+  let result = previousInput ?? [];
+
+  if (isEmail(input)) {
+    result.push(input);
+  } else if (input.startsWith("[")) {
+    const json = JSON.parse(input);
+    if (!Array.isArray(json)) {
+      throw new Error("invalid JSON");
+    }
+
+    result = result.concat(json);
+  } else if (input.includes(",")) {
+    result = result.concat(parseList(input, ","));
+  } else if (input.includes(" ")) {
+    result = result.concat(parseList(input, " "));
+  } else {
+    throw new Error("`input` must be a single address, a comma-separated list, or a JSON array");
+  }
+
+  return result;
+}
+
+function isEmail(input: string) {
+  return !!input && !!input.match(/^([\w._+-]+?)@([\w._+-]+?)$/);
+}
+
+function parseList(value: string, separator: string) {
+  const parts = value
+    .split(separator)
+    .map((v) => v.trim())
+    .filter((v) => !!v.length);
+  const invalid = parts.find((v) => !isEmail(v));
+  if (invalid) {
+    throw new Error(`Invalid email address: ${invalid}`);
+  }
+
+  return parts;
+}
diff --git a/libs/common/src/tools/send/models/data/send.data.ts b/libs/common/src/tools/send/models/data/send.data.ts
index e4df5e48dce..2c6377de0c9 100644
--- a/libs/common/src/tools/send/models/data/send.data.ts
+++ b/libs/common/src/tools/send/models/data/send.data.ts
@@ -21,6 +21,7 @@ export class SendData {
   expirationDate: string;
   deletionDate: string;
   password: string;
+  emails: string;
   disabled: boolean;
   hideEmail: boolean;
 
@@ -41,6 +42,7 @@ export class SendData {
     this.expirationDate = response.expirationDate;
     this.deletionDate = response.deletionDate;
     this.password = response.password;
+    this.emails = response.emails;
     this.disabled = response.disable;
     this.hideEmail = response.hideEmail;
 
diff --git a/libs/common/src/tools/send/models/domain/send.spec.ts b/libs/common/src/tools/send/models/domain/send.spec.ts
index 8df9a144108..e9b0ae7b3b8 100644
--- a/libs/common/src/tools/send/models/domain/send.spec.ts
+++ b/libs/common/src/tools/send/models/domain/send.spec.ts
@@ -29,14 +29,15 @@ describe("Send", () => {
         text: "encText",
         hidden: true,
       },
-      file: null,
+      file: null!,
       key: "encKey",
-      maxAccessCount: null,
+      maxAccessCount: null!,
       accessCount: 10,
       revisionDate: "2022-01-31T12:00:00.000Z",
       expirationDate: "2022-01-31T12:00:00.000Z",
       deletionDate: "2022-01-31T12:00:00.000Z",
       password: "password",
+      emails: null!,
       disabled: false,
       hideEmail: true,
     };
@@ -86,6 +87,7 @@ describe("Send", () => {
       expirationDate: new Date("2022-01-31T12:00:00.000Z"),
       deletionDate: new Date("2022-01-31T12:00:00.000Z"),
       password: "password",
+      emails: null!,
       disabled: false,
       hideEmail: true,
     });
diff --git a/libs/common/src/tools/send/models/domain/send.ts b/libs/common/src/tools/send/models/domain/send.ts
index 89fe92c2c7b..48057aedd2d 100644
--- a/libs/common/src/tools/send/models/domain/send.ts
+++ b/libs/common/src/tools/send/models/domain/send.ts
@@ -27,6 +27,7 @@ export class Send extends Domain {
   expirationDate: Date;
   deletionDate: Date;
   password: string;
+  emails: string;
   disabled: boolean;
   hideEmail: boolean;
 
@@ -53,6 +54,7 @@ export class Send extends Domain {
     this.maxAccessCount = obj.maxAccessCount;
     this.accessCount = obj.accessCount;
     this.password = obj.password;
+    this.emails = obj.emails;
     this.disabled = obj.disabled;
     this.revisionDate = obj.revisionDate != null ? new Date(obj.revisionDate) : null;
     this.deletionDate = obj.deletionDate != null ? new Date(obj.deletionDate) : null;
diff --git a/libs/common/src/tools/send/models/request/send.request.ts b/libs/common/src/tools/send/models/request/send.request.ts
index 9e4f1e14837..f7e3ff26d7f 100644
--- a/libs/common/src/tools/send/models/request/send.request.ts
+++ b/libs/common/src/tools/send/models/request/send.request.ts
@@ -17,6 +17,7 @@ export class SendRequest {
   text: SendTextApi;
   file: SendFileApi;
   password: string;
+  emails: string;
   disabled: boolean;
   hideEmail: boolean;
 
@@ -30,6 +31,7 @@ export class SendRequest {
     this.deletionDate = send.deletionDate != null ? send.deletionDate.toISOString() : null;
     this.key = send.key != null ? send.key.encryptedString : null;
     this.password = send.password;
+    this.emails = send.emails;
     this.disabled = send.disabled;
     this.hideEmail = send.hideEmail;
 
diff --git a/libs/common/src/tools/send/models/response/send.response.ts b/libs/common/src/tools/send/models/response/send.response.ts
index 76550f5cdfd..5c6bd4dc1a6 100644
--- a/libs/common/src/tools/send/models/response/send.response.ts
+++ b/libs/common/src/tools/send/models/response/send.response.ts
@@ -20,6 +20,7 @@ export class SendResponse extends BaseResponse {
   expirationDate: string;
   deletionDate: string;
   password: string;
+  emails: string;
   disable: boolean;
   hideEmail: boolean;
 
@@ -37,6 +38,7 @@ export class SendResponse extends BaseResponse {
     this.expirationDate = this.getResponseProperty("ExpirationDate");
     this.deletionDate = this.getResponseProperty("DeletionDate");
     this.password = this.getResponseProperty("Password");
+    this.emails = this.getResponseProperty("Emails");
     this.disable = this.getResponseProperty("Disabled") || false;
     this.hideEmail = this.getResponseProperty("HideEmail") || false;
 
diff --git a/libs/common/src/tools/send/models/view/send.view.ts b/libs/common/src/tools/send/models/view/send.view.ts
index 2c269892a6f..54657b12438 100644
--- a/libs/common/src/tools/send/models/view/send.view.ts
+++ b/libs/common/src/tools/send/models/view/send.view.ts
@@ -26,6 +26,7 @@ export class SendView implements View {
   deletionDate: Date = null;
   expirationDate: Date = null;
   password: string = null;
+  emails: string[] = [];
   disabled = false;
   hideEmail = false;
 
diff --git a/libs/common/src/tools/send/services/send.service.ts b/libs/common/src/tools/send/services/send.service.ts
index 57463b3b42b..6e2b4391c96 100644
--- a/libs/common/src/tools/send/services/send.service.ts
+++ b/libs/common/src/tools/send/services/send.service.ts
@@ -74,7 +74,12 @@ export class SendService implements InternalSendServiceAbstraction {
       model.key = key.material;
       model.cryptoKey = key.derivedKey;
     }
-    if (password != null) {
+
+    const hasEmails = (model.emails?.length ?? 0) > 0;
+    if (hasEmails) {
+      send.emails = model.emails.join(",");
+      send.password = null;
+    } else if (password != null) {
       // Note: Despite being called key, the passwordKey is not used for encryption.
       // It is used as a static proof that the client knows the password, and has the encryption key.
       const passwordKey = await this.keyGenerationService.deriveKeyFromPassword(

From 96f31aac3adcd3abcc917c523bcb7f671ab76ffa Mon Sep 17 00:00:00 2001
From: cyprain-okeke <108260115+cyprain-okeke@users.noreply.github.com>
Date: Tue, 22 Jul 2025 15:58:17 +0100
Subject: [PATCH 194/239] [PM 18701]Optional payment modal after signup
 (#15384)

* Implement the planservice

* Add the pricing component and service

* Add the change plan type service

* resolve the unit test issues

* Move the changeSubscriptionFrequency endpoint

* Rename planservice to plancardservice

* Remove unused and correct typos

* Resolve the double asignment

* resolve the unit test failing

* Remove default payment setting to card

* remove unnecessary check

* Property initialPaymentMethod has no initializer

* move the logic to service

* Move estimate tax to pricing service

* Refactor thr pricing summary component

* Resolve the lint unit test error

* Add changes for auto modal

* Remove custom role for sm

* Resolve the blank member page issue

* Changes on the pricing display
---
 .../members/members.component.html            |   5 +
 .../members/members.component.ts              |  20 +
 .../organizations/members/members.module.ts   |   2 +
 .../organization-payment-method.component.ts  |  12 +-
 .../app/billing/services/plan-card.service.ts |  59 +++
 .../services/pricing-summary.service.ts       | 155 ++++++++
 .../billing/shared/billing-shared.module.ts   |   6 +
 .../shared/plan-card/plan-card.component.html |  45 +++
 .../shared/plan-card/plan-card.component.ts   |  68 ++++
 .../pricing-summary.component.html            | 259 +++++++++++++
 .../pricing-summary.component.ts              |  48 +++
 .../trial-payment-dialog.component.html       | 117 ++++++
 .../trial-payment-dialog.component.ts         | 365 ++++++++++++++++++
 ...ganization-free-trial-warning.component.ts |  20 +-
 .../services/organization-warnings.service.ts |  34 +-
 apps/web/src/locales/en/messages.json         |  29 +-
 ...ization-billing-api.service.abstraction.ts |   6 +
 .../request/change-plan-frequency.request.ts  |   9 +
 .../organization-billing-api.service.ts       |  14 +
 19 files changed, 1264 insertions(+), 9 deletions(-)
 create mode 100644 apps/web/src/app/billing/services/plan-card.service.ts
 create mode 100644 apps/web/src/app/billing/services/pricing-summary.service.ts
 create mode 100644 apps/web/src/app/billing/shared/plan-card/plan-card.component.html
 create mode 100644 apps/web/src/app/billing/shared/plan-card/plan-card.component.ts
 create mode 100644 apps/web/src/app/billing/shared/pricing-summary/pricing-summary.component.html
 create mode 100644 apps/web/src/app/billing/shared/pricing-summary/pricing-summary.component.ts
 create mode 100644 apps/web/src/app/billing/shared/trial-payment-dialog/trial-payment-dialog.component.html
 create mode 100644 apps/web/src/app/billing/shared/trial-payment-dialog/trial-payment-dialog.component.ts
 create mode 100644 libs/common/src/billing/models/request/change-plan-frequency.request.ts

diff --git a/apps/web/src/app/admin-console/organizations/members/members.component.html b/apps/web/src/app/admin-console/organizations/members/members.component.html
index 962191021e8..49946806efc 100644
--- a/apps/web/src/app/admin-console/organizations/members/members.component.html
+++ b/apps/web/src/app/admin-console/organizations/members/members.component.html
@@ -1,3 +1,8 @@
+<app-organization-free-trial-warning
+  [organization]="organization"
+  (clicked)="navigateToPaymentMethod()"
+>
+</app-organization-free-trial-warning>
 <app-header>
   <bit-search
     class="tw-grow"
diff --git a/apps/web/src/app/admin-console/organizations/members/members.component.ts b/apps/web/src/app/admin-console/organizations/members/members.component.ts
index 3f567c9673b..0eec835e15f 100644
--- a/apps/web/src/app/admin-console/organizations/members/members.component.ts
+++ b/apps/web/src/app/admin-console/organizations/members/members.component.ts
@@ -13,6 +13,7 @@ import {
   Observable,
   shareReplay,
   switchMap,
+  tap,
 } from "rxjs";
 
 import {
@@ -61,6 +62,7 @@ import {
   ChangePlanDialogResultType,
   openChangePlanDialog,
 } from "../../../billing/organizations/change-plan-dialog.component";
+import { OrganizationWarningsService } from "../../../billing/warnings/services";
 import { BaseMembersComponent } from "../../common/base-members.component";
 import { PeopleTableDataSource } from "../../common/people-table-data-source";
 import { GroupApiService } from "../core";
@@ -148,6 +150,7 @@ export class MembersComponent extends BaseMembersComponent<OrganizationUserView>
     protected deleteManagedMemberWarningService: DeleteManagedMemberWarningService,
     private configService: ConfigService,
     private organizationUserService: OrganizationUserService,
+    private organizationWarningsService: OrganizationWarningsService,
   ) {
     super(
       apiService,
@@ -247,6 +250,13 @@ export class MembersComponent extends BaseMembersComponent<OrganizationUserView>
     this.showUserManagementControls$ = organization$.pipe(
       map((organization) => organization.canManageUsers),
     );
+    organization$
+      .pipe(
+        takeUntilDestroyed(),
+        tap((org) => (this.organization = org)),
+        switchMap((org) => this.organizationWarningsService.showInactiveSubscriptionDialog$(org)),
+      )
+      .subscribe();
   }
 
   async getUsers(): Promise<OrganizationUserView[]> {
@@ -932,4 +942,14 @@ export class MembersComponent extends BaseMembersComponent<OrganizationUserView>
       .getCheckedUsers()
       .every((member) => member.managedByOrganization && validStatuses.includes(member.status));
   }
+
+  async navigateToPaymentMethod() {
+    const managePaymentDetailsOutsideCheckout = await this.configService.getFeatureFlag(
+      FeatureFlag.PM21881_ManagePaymentDetailsOutsideCheckout,
+    );
+    const route = managePaymentDetailsOutsideCheckout ? "payment-details" : "payment-method";
+    await this.router.navigate(["organizations", `${this.organization?.id}`, "billing", route], {
+      state: { launchPaymentModalAutomatically: true },
+    });
+  }
 }
diff --git a/apps/web/src/app/admin-console/organizations/members/members.module.ts b/apps/web/src/app/admin-console/organizations/members/members.module.ts
index 98431758d2f..5f626d44161 100644
--- a/apps/web/src/app/admin-console/organizations/members/members.module.ts
+++ b/apps/web/src/app/admin-console/organizations/members/members.module.ts
@@ -5,6 +5,7 @@ import { PasswordStrengthV2Component } from "@bitwarden/angular/tools/password-s
 import { PasswordCalloutComponent } from "@bitwarden/auth/angular";
 import { ScrollLayoutDirective } from "@bitwarden/components";
 
+import { OrganizationFreeTrialWarningComponent } from "../../../billing/warnings/components";
 import { LooseComponentsModule } from "../../../shared";
 import { SharedOrganizationModule } from "../shared";
 
@@ -29,6 +30,7 @@ import { MembersComponent } from "./members.component";
     ScrollingModule,
     PasswordStrengthV2Component,
     ScrollLayoutDirective,
+    OrganizationFreeTrialWarningComponent,
   ],
   declarations: [
     BulkConfirmDialogComponent,
diff --git a/apps/web/src/app/billing/organizations/payment-method/organization-payment-method.component.ts b/apps/web/src/app/billing/organizations/payment-method/organization-payment-method.component.ts
index 9b144fe59a7..aa7bf5e5d11 100644
--- a/apps/web/src/app/billing/organizations/payment-method/organization-payment-method.component.ts
+++ b/apps/web/src/app/billing/organizations/payment-method/organization-payment-method.component.ts
@@ -36,6 +36,10 @@ import {
   AdjustPaymentDialogComponent,
   AdjustPaymentDialogResultType,
 } from "../../shared/adjust-payment-dialog/adjust-payment-dialog.component";
+import {
+  TRIAL_PAYMENT_METHOD_DIALOG_RESULT_TYPE,
+  TrialPaymentDialogComponent,
+} from "../../shared/trial-payment-dialog/trial-payment-dialog.component";
 import { FreeTrial } from "../../types/free-trial";
 
 @Component({
@@ -212,15 +216,15 @@ export class OrganizationPaymentMethodComponent implements OnDestroy {
   };
 
   changePayment = async () => {
-    const dialogRef = AdjustPaymentDialogComponent.open(this.dialogService, {
+    const dialogRef = TrialPaymentDialogComponent.open(this.dialogService, {
       data: {
-        initialPaymentMethod: this.paymentSource?.type,
         organizationId: this.organizationId,
-        productTier: this.organization?.productTierType,
+        subscription: this.organizationSubscriptionResponse,
+        productTierType: this.organization?.productTierType,
       },
     });
     const result = await lastValueFrom(dialogRef.closed);
-    if (result === AdjustPaymentDialogResultType.Submitted) {
+    if (result === TRIAL_PAYMENT_METHOD_DIALOG_RESULT_TYPE.SUBMITTED) {
       this.location.replaceState(this.location.path(), "", {});
       if (this.launchPaymentModalAutomatically && !this.organization.enabled) {
         await this.syncService.fullSync(true);
diff --git a/apps/web/src/app/billing/services/plan-card.service.ts b/apps/web/src/app/billing/services/plan-card.service.ts
new file mode 100644
index 00000000000..25974a428fd
--- /dev/null
+++ b/apps/web/src/app/billing/services/plan-card.service.ts
@@ -0,0 +1,59 @@
+import { Injectable } from "@angular/core";
+
+import { ApiService } from "@bitwarden/common/abstractions/api.service";
+import { OrganizationSubscriptionResponse } from "@bitwarden/common/billing/models/response/organization-subscription.response";
+import { PlanResponse } from "@bitwarden/common/billing/models/response/plan.response";
+
+@Injectable({ providedIn: "root" })
+export class PlanCardService {
+  constructor(private apiService: ApiService) {}
+
+  async getCadenceCards(
+    currentPlan: PlanResponse,
+    subscription: OrganizationSubscriptionResponse,
+    isSecretsManagerTrial: boolean,
+  ) {
+    const plans = await this.apiService.getPlans();
+
+    const filteredPlans = plans.data.filter((plan) => !!plan.PasswordManager);
+
+    const result =
+      filteredPlans?.filter(
+        (plan) =>
+          plan.productTier === currentPlan.productTier && !plan.disabled && !plan.legacyYear,
+      ) || [];
+
+    const planCards = result.map((plan) => {
+      let costPerMember = 0;
+
+      if (plan.PasswordManager.basePrice) {
+        costPerMember = plan.isAnnual
+          ? plan.PasswordManager.basePrice / 12
+          : plan.PasswordManager.basePrice;
+      } else if (!plan.PasswordManager.basePrice && plan.PasswordManager.hasAdditionalSeatsOption) {
+        const secretsManagerCost = subscription.useSecretsManager
+          ? plan.SecretsManager.seatPrice
+          : 0;
+        const passwordManagerCost = isSecretsManagerTrial ? 0 : plan.PasswordManager.seatPrice;
+        costPerMember = (secretsManagerCost + passwordManagerCost) / (plan.isAnnual ? 12 : 1);
+      }
+
+      const percentOff = subscription.customerDiscount?.percentOff ?? 0;
+
+      const discount =
+        (percentOff === 0 && plan.isAnnual) || isSecretsManagerTrial ? 20 : percentOff;
+
+      return {
+        title: plan.isAnnual ? "Annually" : "Monthly",
+        costPerMember,
+        discount,
+        isDisabled: false,
+        isSelected: plan.isAnnual,
+        isAnnual: plan.isAnnual,
+        productTier: plan.productTier,
+      };
+    });
+
+    return planCards.reverse();
+  }
+}
diff --git a/apps/web/src/app/billing/services/pricing-summary.service.ts b/apps/web/src/app/billing/services/pricing-summary.service.ts
new file mode 100644
index 00000000000..0b048b379d8
--- /dev/null
+++ b/apps/web/src/app/billing/services/pricing-summary.service.ts
@@ -0,0 +1,155 @@
+import { Injectable } from "@angular/core";
+
+import { Organization } from "@bitwarden/common/admin-console/models/domain/organization";
+import { TaxServiceAbstraction } from "@bitwarden/common/billing/abstractions/tax.service.abstraction";
+import { PlanInterval, ProductTierType } from "@bitwarden/common/billing/enums";
+import { TaxInformation } from "@bitwarden/common/billing/models/domain/tax-information";
+import { PreviewOrganizationInvoiceRequest } from "@bitwarden/common/billing/models/request/preview-organization-invoice.request";
+import { OrganizationSubscriptionResponse } from "@bitwarden/common/billing/models/response/organization-subscription.response";
+import { PlanResponse } from "@bitwarden/common/billing/models/response/plan.response";
+
+import { PricingSummaryData } from "../shared/pricing-summary/pricing-summary.component";
+
+@Injectable({
+  providedIn: "root",
+})
+export class PricingSummaryService {
+  private estimatedTax: number = 0;
+
+  constructor(private taxService: TaxServiceAbstraction) {}
+
+  async getPricingSummaryData(
+    plan: PlanResponse,
+    sub: OrganizationSubscriptionResponse,
+    organization: Organization,
+    selectedInterval: PlanInterval,
+    taxInformation: TaxInformation,
+    isSecretsManagerTrial: boolean,
+  ): Promise<PricingSummaryData> {
+    // Calculation helpers
+    const passwordManagerSeatTotal =
+      plan.PasswordManager?.hasAdditionalSeatsOption && !isSecretsManagerTrial
+        ? plan.PasswordManager.seatPrice * Math.abs(sub?.seats || 0)
+        : 0;
+
+    const secretsManagerSeatTotal = plan.SecretsManager?.hasAdditionalSeatsOption
+      ? plan.SecretsManager.seatPrice * Math.abs(sub?.smSeats || 0)
+      : 0;
+
+    const additionalServiceAccount = this.getAdditionalServiceAccount(plan, sub);
+
+    const additionalStorageTotal = plan.PasswordManager?.hasAdditionalStorageOption
+      ? plan.PasswordManager.additionalStoragePricePerGb *
+        (sub?.maxStorageGb ? sub.maxStorageGb - 1 : 0)
+      : 0;
+
+    const additionalStoragePriceMonthly = plan.PasswordManager?.additionalStoragePricePerGb || 0;
+
+    const additionalServiceAccountTotal =
+      plan.SecretsManager?.hasAdditionalServiceAccountOption && additionalServiceAccount > 0
+        ? plan.SecretsManager.additionalPricePerServiceAccount * additionalServiceAccount
+        : 0;
+
+    let passwordManagerSubtotal = plan.PasswordManager?.basePrice || 0;
+    if (plan.PasswordManager?.hasAdditionalSeatsOption) {
+      passwordManagerSubtotal += passwordManagerSeatTotal;
+    }
+    if (plan.PasswordManager?.hasPremiumAccessOption) {
+      passwordManagerSubtotal += plan.PasswordManager.premiumAccessOptionPrice;
+    }
+
+    const secretsManagerSubtotal = plan.SecretsManager
+      ? (plan.SecretsManager.basePrice || 0) +
+        secretsManagerSeatTotal +
+        additionalServiceAccountTotal
+      : 0;
+
+    const totalAppliedDiscount = 0;
+    const discountPercentageFromSub = isSecretsManagerTrial
+      ? 0
+      : (sub?.customerDiscount?.percentOff ?? 0);
+    const discountPercentage = 20;
+    const acceptingSponsorship = false;
+    const storageGb = sub?.maxStorageGb ? sub?.maxStorageGb - 1 : 0;
+
+    this.estimatedTax = await this.getEstimatedTax(organization, plan, sub, taxInformation);
+
+    const total = organization?.useSecretsManager
+      ? passwordManagerSubtotal +
+        additionalStorageTotal +
+        secretsManagerSubtotal +
+        this.estimatedTax
+      : passwordManagerSubtotal + additionalStorageTotal + this.estimatedTax;
+
+    return {
+      selectedPlanInterval: selectedInterval === PlanInterval.Annually ? "year" : "month",
+      passwordManagerSeats:
+        plan.productTier === ProductTierType.Families ? plan.PasswordManager.baseSeats : sub?.seats,
+      passwordManagerSeatTotal,
+      secretsManagerSeatTotal,
+      additionalStorageTotal,
+      additionalStoragePriceMonthly,
+      additionalServiceAccountTotal,
+      totalAppliedDiscount,
+      secretsManagerSubtotal,
+      passwordManagerSubtotal,
+      total,
+      organization,
+      sub,
+      selectedPlan: plan,
+      selectedInterval,
+      discountPercentageFromSub,
+      discountPercentage,
+      acceptingSponsorship,
+      additionalServiceAccount,
+      storageGb,
+      isSecretsManagerTrial,
+      estimatedTax: this.estimatedTax,
+    };
+  }
+
+  async getEstimatedTax(
+    organization: Organization,
+    currentPlan: PlanResponse,
+    sub: OrganizationSubscriptionResponse,
+    taxInformation: TaxInformation,
+  ) {
+    if (!taxInformation || !taxInformation.country || !taxInformation.postalCode) {
+      return 0;
+    }
+
+    const request: PreviewOrganizationInvoiceRequest = {
+      organizationId: organization.id,
+      passwordManager: {
+        additionalStorage: 0,
+        plan: currentPlan?.type,
+        seats: sub.seats,
+      },
+      taxInformation: {
+        postalCode: taxInformation.postalCode,
+        country: taxInformation.country,
+        taxId: taxInformation.taxId,
+      },
+    };
+
+    if (organization.useSecretsManager) {
+      request.secretsManager = {
+        seats: sub.smSeats ?? 0,
+        additionalMachineAccounts:
+          (sub.smServiceAccounts ?? 0) - (sub.plan.SecretsManager?.baseServiceAccount ?? 0),
+      };
+    }
+    const invoiceResponse = await this.taxService.previewOrganizationInvoice(request);
+    return invoiceResponse.taxAmount;
+  }
+
+  getAdditionalServiceAccount(plan: PlanResponse, sub: OrganizationSubscriptionResponse): number {
+    if (!plan || !plan.SecretsManager) {
+      return 0;
+    }
+    const baseServiceAccount = plan.SecretsManager?.baseServiceAccount || 0;
+    const usedServiceAccounts = sub?.smServiceAccounts || 0;
+    const additionalServiceAccounts = baseServiceAccount - usedServiceAccounts;
+    return additionalServiceAccounts <= 0 ? Math.abs(additionalServiceAccounts) : 0;
+  }
+}
diff --git a/apps/web/src/app/billing/shared/billing-shared.module.ts b/apps/web/src/app/billing/shared/billing-shared.module.ts
index 9a69755b209..7322f047551 100644
--- a/apps/web/src/app/billing/shared/billing-shared.module.ts
+++ b/apps/web/src/app/billing/shared/billing-shared.module.ts
@@ -12,10 +12,13 @@ import { BillingHistoryComponent } from "./billing-history.component";
 import { OffboardingSurveyComponent } from "./offboarding-survey.component";
 import { PaymentComponent } from "./payment/payment.component";
 import { PaymentMethodComponent } from "./payment-method.component";
+import { PlanCardComponent } from "./plan-card/plan-card.component";
+import { PricingSummaryComponent } from "./pricing-summary/pricing-summary.component";
 import { IndividualSelfHostingLicenseUploaderComponent } from "./self-hosting-license-uploader/individual-self-hosting-license-uploader.component";
 import { OrganizationSelfHostingLicenseUploaderComponent } from "./self-hosting-license-uploader/organization-self-hosting-license-uploader.component";
 import { SecretsManagerSubscribeComponent } from "./sm-subscribe.component";
 import { TaxInfoComponent } from "./tax-info.component";
+import { TrialPaymentDialogComponent } from "./trial-payment-dialog/trial-payment-dialog.component";
 import { UpdateLicenseDialogComponent } from "./update-license-dialog.component";
 import { UpdateLicenseComponent } from "./update-license.component";
 import { VerifyBankAccountComponent } from "./verify-bank-account/verify-bank-account.component";
@@ -41,6 +44,9 @@ import { VerifyBankAccountComponent } from "./verify-bank-account/verify-bank-ac
     AdjustStorageDialogComponent,
     IndividualSelfHostingLicenseUploaderComponent,
     OrganizationSelfHostingLicenseUploaderComponent,
+    TrialPaymentDialogComponent,
+    PlanCardComponent,
+    PricingSummaryComponent,
   ],
   exports: [
     SharedModule,
diff --git a/apps/web/src/app/billing/shared/plan-card/plan-card.component.html b/apps/web/src/app/billing/shared/plan-card/plan-card.component.html
new file mode 100644
index 00000000000..08fd3b435f6
--- /dev/null
+++ b/apps/web/src/app/billing/shared/plan-card/plan-card.component.html
@@ -0,0 +1,45 @@
+@let isFocused = plan().isSelected;
+@let isRecommended = plan().isAnnual;
+
+<bit-card
+  class="tw-h-full"
+  [ngClass]="getPlanCardContainerClasses()"
+  (click)="cardClicked.emit()"
+  [attr.tabindex]="!isFocused || plan().isDisabled ? '-1' : '0'"
+  [attr.data-selected]="plan()?.isSelected"
+>
+  <div class="tw-relative">
+    @if (isRecommended) {
+      <div
+        class="tw-bg-secondary-100 tw-text-center !tw-border-0 tw-text-sm tw-font-bold tw-py-1"
+        [ngClass]="{
+          'tw-bg-primary-700 !tw-text-contrast': plan().isSelected,
+          'tw-bg-secondary-100': !plan().isSelected,
+        }"
+      >
+        {{ "recommended" | i18n }}
+      </div>
+    }
+    <div
+      class="tw-px-2 tw-pb-[4px]"
+      [ngClass]="{
+        'tw-py-1': !plan().isSelected,
+        'tw-py-0': plan().isSelected,
+      }"
+    >
+      <h3
+        class="tw-text-[1.25rem] tw-mt-[6px] tw-font-bold tw-mb-0 tw-leading-[2rem] tw-flex tw-items-center"
+      >
+        <span class="tw-capitalize tw-whitespace-nowrap">{{ plan().title }}</span>
+        <!-- Discount Badge -->
+        <span class="tw-mr-1 tw-ml-2" *ngIf="isRecommended" bitBadge variant="success">
+          {{ "upgradeDiscount" | i18n: plan().discount }}</span
+        >
+      </h3>
+      <span>
+        <b class="tw-text-lg tw-font-semibold">{{ plan().costPerMember | currency: "$" }} </b>
+        <span class="tw-text-xs tw-px-0"> /{{ "monthPerMember" | i18n }}</span>
+      </span>
+    </div>
+  </div>
+</bit-card>
diff --git a/apps/web/src/app/billing/shared/plan-card/plan-card.component.ts b/apps/web/src/app/billing/shared/plan-card/plan-card.component.ts
new file mode 100644
index 00000000000..9e3f03a5e7d
--- /dev/null
+++ b/apps/web/src/app/billing/shared/plan-card/plan-card.component.ts
@@ -0,0 +1,68 @@
+import { Component, input, output } from "@angular/core";
+
+import { ProductTierType } from "@bitwarden/common/billing/enums";
+
+export interface PlanCard {
+  title: string;
+  costPerMember: number;
+  discount?: number;
+  isDisabled: boolean;
+  isAnnual: boolean;
+  isSelected: boolean;
+  productTier: ProductTierType;
+}
+
+@Component({
+  selector: "app-plan-card",
+  templateUrl: "./plan-card.component.html",
+  standalone: false,
+})
+export class PlanCardComponent {
+  plan = input.required<PlanCard>();
+  productTiers = ProductTierType;
+
+  cardClicked = output();
+
+  getPlanCardContainerClasses(): string[] {
+    const isSelected = this.plan().isSelected;
+    const isDisabled = this.plan().isDisabled;
+    if (isDisabled) {
+      return [
+        "tw-cursor-not-allowed",
+        "tw-bg-secondary-100",
+        "tw-font-normal",
+        "tw-bg-blur",
+        "tw-text-muted",
+        "tw-block",
+        "tw-rounded",
+      ];
+    }
+
+    return isSelected
+      ? [
+          "tw-cursor-pointer",
+          "tw-block",
+          "tw-rounded",
+          "tw-border",
+          "tw-border-solid",
+          "tw-border-primary-600",
+          "tw-border-2",
+          "tw-rounded-lg",
+          "hover:tw-border-primary-700",
+          "focus:tw-border-3",
+          "focus:tw-border-primary-700",
+          "focus:tw-rounded-lg",
+        ]
+      : [
+          "tw-cursor-pointer",
+          "tw-block",
+          "tw-rounded",
+          "tw-border",
+          "tw-border-solid",
+          "tw-border-secondary-300",
+          "hover:tw-border-text-main",
+          "focus:tw-border-2",
+          "focus:tw-border-primary-700",
+        ];
+  }
+}
diff --git a/apps/web/src/app/billing/shared/pricing-summary/pricing-summary.component.html b/apps/web/src/app/billing/shared/pricing-summary/pricing-summary.component.html
new file mode 100644
index 00000000000..855b83bdb2d
--- /dev/null
+++ b/apps/web/src/app/billing/shared/pricing-summary/pricing-summary.component.html
@@ -0,0 +1,259 @@
+<ng-container>
+  <div class="tw-mt-4">
+    <p class="tw-text-lg tw-mb-1">
+      <span class="tw-font-semibold"
+        >{{ "total" | i18n }}:
+        {{ summaryData.total - summaryData.totalAppliedDiscount | currency: "USD" : "$" }} USD</span
+      >
+      <span class="tw-text-xs tw-font-light"> / {{ summaryData.selectedPlanInterval | i18n }}</span>
+      <button
+        (click)="toggleTotalOpened()"
+        type="button"
+        [bitIconButton]="summaryData.totalOpened ? 'bwi-angle-down' : 'bwi-angle-up'"
+        size="small"
+        aria-hidden="true"
+      ></button>
+    </p>
+  </div>
+
+  <ng-container *ngIf="summaryData.totalOpened">
+    <!-- Main content container -->
+    <div class="tw-flex tw-flex-wrap tw-gap-4">
+      <bit-hint class="tw-w-full">
+        <ng-container *ngIf="summaryData.isSecretsManagerTrial; else showPasswordManagerFirst">
+          <ng-container *ngTemplateOutlet="secretsManagerSection"></ng-container>
+          <ng-container *ngTemplateOutlet="passwordManagerSection"></ng-container>
+        </ng-container>
+
+        <ng-template #showPasswordManagerFirst>
+          <ng-container *ngTemplateOutlet="passwordManagerSection"></ng-container>
+          <ng-container *ngTemplateOutlet="secretsManagerSection"></ng-container>
+        </ng-template>
+
+        <!-- Password Manager section -->
+        <ng-template #passwordManagerSection>
+          <ng-container
+            *ngIf="!summaryData.isSecretsManagerTrial || summaryData.organization.useSecretsManager"
+          >
+            <p class="tw-font-semibold tw-mt-3 tw-mb-1">{{ "passwordManager" | i18n }}</p>
+
+            <!-- Base Price -->
+            <ng-container *ngIf="summaryData.selectedPlan.PasswordManager.basePrice">
+              <p class="tw-mb-1 tw-flex tw-justify-between" bitTypography="body2">
+                <span>
+                  <ng-container [ngSwitch]="summaryData.selectedInterval">
+                    <ng-container *ngSwitchCase="planIntervals.Annually">
+                      {{ summaryData.passwordManagerSeats }} {{ "members" | i18n }} &times;
+                      {{
+                        (summaryData.selectedPlan.isAnnual
+                          ? summaryData.selectedPlan.PasswordManager.basePrice / 12
+                          : summaryData.selectedPlan.PasswordManager.basePrice
+                        ) | currency: "$"
+                      }}
+                      /{{ summaryData.selectedPlanInterval | i18n }}
+                    </ng-container>
+                    <ng-container *ngSwitchDefault>
+                      {{ "basePrice" | i18n }}:
+                      {{ summaryData.selectedPlan.PasswordManager.basePrice | currency: "$" }}
+                      {{ "monthAbbr" | i18n }}
+                    </ng-container>
+                  </ng-container>
+                </span>
+                <span>
+                  <ng-container
+                    *ngIf="summaryData.acceptingSponsorship; else notAcceptingSponsorship"
+                  >
+                    <span class="tw-line-through">{{
+                      summaryData.selectedPlan.PasswordManager.basePrice | currency: "$"
+                    }}</span>
+                    {{ "freeWithSponsorship" | i18n }}
+                  </ng-container>
+                  <ng-template #notAcceptingSponsorship>
+                    {{ summaryData.selectedPlan.PasswordManager.basePrice | currency: "$" }}
+                  </ng-template>
+                </span>
+              </p>
+            </ng-container>
+
+            <!-- Additional Seats -->
+            <ng-container *ngIf="summaryData.selectedPlan.PasswordManager.hasAdditionalSeatsOption">
+              <p class="tw-mb-0 tw-flex tw-justify-between" bitTypography="body2">
+                <span>
+                  <span *ngIf="summaryData.selectedPlan.PasswordManager.baseSeats"
+                    >{{ "additionalUsers" | i18n }}:</span
+                  >
+                  {{ summaryData.passwordManagerSeats || 0 }}&nbsp;
+                  <span *ngIf="!summaryData.selectedPlan.PasswordManager.baseSeats">{{
+                    "members" | i18n
+                  }}</span>
+                  &times;
+                  {{ summaryData.selectedPlan.PasswordManager.seatPrice | currency: "$" }}
+                  /{{ summaryData.selectedPlanInterval | i18n }}
+                </span>
+                <span *ngIf="!summaryData.isSecretsManagerTrial">
+                  {{ summaryData.passwordManagerSeatTotal | currency: "$" }}
+                </span>
+                <span *ngIf="summaryData.isSecretsManagerTrial">
+                  {{ "freeForOneYear" | i18n }}
+                </span>
+              </p>
+            </ng-container>
+
+            <!-- Additional Storage -->
+            <ng-container
+              *ngIf="
+                summaryData.selectedPlan.PasswordManager.hasAdditionalStorageOption &&
+                summaryData.storageGb > 0
+              "
+            >
+              <p class="tw-mb-0 tw-flex tw-justify-between" bitTypography="body2">
+                <span>
+                  {{ summaryData.storageGb }} {{ "additionalStorageGbMessage" | i18n }}
+                  &times;
+                  {{ summaryData.additionalStoragePriceMonthly | currency: "$" }}
+                  /{{ summaryData.selectedPlanInterval | i18n }}
+                </span>
+                <span>
+                  <ng-container [ngSwitch]="summaryData.selectedInterval">
+                    <ng-container *ngSwitchCase="planIntervals.Annually">
+                      {{ summaryData.additionalStorageTotal | currency: "$" }}
+                    </ng-container>
+                    <ng-container *ngSwitchDefault>
+                      {{
+                        summaryData.storageGb *
+                          summaryData.selectedPlan.PasswordManager.additionalStoragePricePerGb
+                          | currency: "$"
+                      }}
+                    </ng-container>
+                  </ng-container>
+                </span>
+              </p>
+            </ng-container>
+          </ng-container>
+        </ng-template>
+
+        <!-- Secrets Manager section -->
+        <ng-template #secretsManagerSection>
+          <ng-container *ngIf="summaryData.organization.useSecretsManager">
+            <p class="tw-font-semibold tw-mt-3 tw-mb-1">{{ "secretsManager" | i18n }}</p>
+
+            <!-- Base Price -->
+            <ng-container *ngIf="summaryData.selectedPlan?.SecretsManager?.basePrice">
+              <p class="tw-mb-1 tw-flex tw-justify-between" bitTypography="body2">
+                <span>
+                  <ng-container [ngSwitch]="summaryData.selectedInterval">
+                    <ng-container *ngSwitchCase="planIntervals.Annually">
+                      {{ summaryData.sub?.smSeats }} {{ "members" | i18n }} &times;
+                      {{
+                        (summaryData.selectedPlan.isAnnual
+                          ? summaryData.selectedPlan.SecretsManager.basePrice / 12
+                          : summaryData.selectedPlan.SecretsManager.basePrice
+                        ) | currency: "$"
+                      }}
+                      /{{ summaryData.selectedPlanInterval | i18n }}
+                    </ng-container>
+                    <ng-container *ngSwitchDefault>
+                      {{ "basePrice" | i18n }}:
+                      {{ summaryData.selectedPlan.SecretsManager.basePrice | currency: "$" }}
+                      {{ "monthAbbr" | i18n }}
+                    </ng-container>
+                  </ng-container>
+                </span>
+                <span *ngIf="summaryData.selectedInterval === planIntervals.Monthly">
+                  {{ summaryData.selectedPlan.SecretsManager.basePrice | currency: "$" }}
+                </span>
+              </p>
+            </ng-container>
+
+            <!-- Additional Seats -->
+            <ng-container
+              *ngIf="summaryData.selectedPlan?.SecretsManager?.hasAdditionalSeatsOption"
+            >
+              <p class="tw-mb-0 tw-flex tw-justify-between" bitTypography="body2">
+                <span>
+                  <span *ngIf="summaryData.selectedPlan.SecretsManager.baseSeats"
+                    >{{ "additionalUsers" | i18n }}:</span
+                  >
+                  {{ summaryData.sub?.smSeats || 0 }}&nbsp;
+                  <span *ngIf="!summaryData.selectedPlan.SecretsManager.baseSeats">{{
+                    "members" | i18n
+                  }}</span>
+                  &times;
+                  {{ summaryData.selectedPlan.SecretsManager.seatPrice | currency: "$" }}
+                  /{{ summaryData.selectedPlanInterval | i18n }}
+                </span>
+                <span>
+                  {{ summaryData.secretsManagerSeatTotal | currency: "$" }}
+                </span>
+              </p>
+            </ng-container>
+
+            <!-- Additional Service Accounts -->
+            <ng-container
+              *ngIf="
+                summaryData.selectedPlan?.SecretsManager?.hasAdditionalServiceAccountOption &&
+                summaryData.additionalServiceAccount > 0
+              "
+            >
+              <p class="tw-mb-0 tw-flex tw-justify-between" bitTypography="body2">
+                <span>
+                  {{ summaryData.additionalServiceAccount }}
+                  {{ "serviceAccounts" | i18n | lowercase }}
+                  &times;
+                  {{
+                    summaryData.selectedPlan?.SecretsManager?.additionalPricePerServiceAccount
+                      | currency: "$"
+                  }}
+                  /{{ summaryData.selectedPlanInterval | i18n }}
+                </span>
+                <span>{{ summaryData.additionalServiceAccountTotal | currency: "$" }}</span>
+              </p>
+            </ng-container>
+          </ng-container>
+        </ng-template>
+
+        <!-- Discount Section -->
+        <ng-container *ngIf="summaryData.discountPercentageFromSub > 0">
+          <p class="tw-mb-0 tw-flex tw-justify-between" bitTypography="body2">
+            <span class="tw-text-xs">
+              {{
+                "providerDiscount" | i18n: this.summaryData.discountPercentageFromSub | lowercase
+              }}
+            </span>
+            <span class="tw-line-through tw-text-xs">
+              {{ summaryData.totalAppliedDiscount | currency: "$" }}
+            </span>
+          </p>
+        </ng-container>
+      </bit-hint>
+    </div>
+
+    <!-- Tax and Total Section -->
+    <div class="tw-flex tw-flex-wrap tw-gap-4 tw-mt-4">
+      <bit-hint class="tw-w-full">
+        <p
+          class="tw-flex tw-justify-between tw-border-0 tw-border-solid tw-border-t tw-border-secondary-300 tw-pt-2 tw-mb-0"
+        >
+          <span class="tw-font-semibold">{{ "estimatedTax" | i18n }}</span>
+          <span>{{ summaryData.estimatedTax | currency: "USD" : "$" }}</span>
+        </p>
+      </bit-hint>
+    </div>
+
+    <div class="tw-flex tw-flex-wrap tw-gap-4 tw-mt-4">
+      <bit-hint class="tw-w-full">
+        <p
+          class="tw-flex tw-justify-between tw-border-0 tw-border-solid tw-border-t tw-border-secondary-300 tw-pt-2 tw-mb-0"
+        >
+          <span class="tw-font-semibold">{{ "total" | i18n }}</span>
+          <span>
+            {{ summaryData.total - summaryData.totalAppliedDiscount | currency: "USD" : "$" }}
+            <span class="tw-text-xs tw-font-semibold"
+              >/ {{ summaryData.selectedPlanInterval | i18n }}</span
+            >
+          </span>
+        </p>
+      </bit-hint>
+    </div>
+  </ng-container>
+</ng-container>
diff --git a/apps/web/src/app/billing/shared/pricing-summary/pricing-summary.component.ts b/apps/web/src/app/billing/shared/pricing-summary/pricing-summary.component.ts
new file mode 100644
index 00000000000..d4fdf35b743
--- /dev/null
+++ b/apps/web/src/app/billing/shared/pricing-summary/pricing-summary.component.ts
@@ -0,0 +1,48 @@
+import { Component, Input } from "@angular/core";
+
+import { Organization } from "@bitwarden/common/admin-console/models/domain/organization";
+import { PlanInterval } from "@bitwarden/common/billing/enums";
+import { OrganizationSubscriptionResponse } from "@bitwarden/common/billing/models/response/organization-subscription.response";
+import { PlanResponse } from "@bitwarden/common/billing/models/response/plan.response";
+
+export interface PricingSummaryData {
+  selectedPlanInterval: string;
+  passwordManagerSeats: number;
+  passwordManagerSeatTotal: number;
+  secretsManagerSeatTotal: number;
+  additionalStorageTotal: number;
+  additionalStoragePriceMonthly: number;
+  additionalServiceAccountTotal: number;
+  totalAppliedDiscount: number;
+  secretsManagerSubtotal: number;
+  passwordManagerSubtotal: number;
+  total: number;
+  organization?: Organization;
+  sub?: OrganizationSubscriptionResponse;
+  selectedPlan?: PlanResponse;
+  selectedInterval?: PlanInterval;
+  discountPercentageFromSub?: number;
+  discountPercentage?: number;
+  acceptingSponsorship?: boolean;
+  additionalServiceAccount?: number;
+  totalOpened?: boolean;
+  storageGb?: number;
+  isSecretsManagerTrial?: boolean;
+  estimatedTax?: number;
+}
+
+@Component({
+  selector: "app-pricing-summary",
+  templateUrl: "./pricing-summary.component.html",
+  standalone: false,
+})
+export class PricingSummaryComponent {
+  @Input() summaryData!: PricingSummaryData;
+  planIntervals = PlanInterval;
+
+  toggleTotalOpened(): void {
+    if (this.summaryData) {
+      this.summaryData.totalOpened = !this.summaryData.totalOpened;
+    }
+  }
+}
diff --git a/apps/web/src/app/billing/shared/trial-payment-dialog/trial-payment-dialog.component.html b/apps/web/src/app/billing/shared/trial-payment-dialog/trial-payment-dialog.component.html
new file mode 100644
index 00000000000..dbd2899c9e0
--- /dev/null
+++ b/apps/web/src/app/billing/shared/trial-payment-dialog/trial-payment-dialog.component.html
@@ -0,0 +1,117 @@
+<bit-dialog dialogSize="default">
+  <span bitDialogTitle class="tw-font-semibold">
+    {{ "subscribetoEnterprise" | i18n: currentPlanName }}
+  </span>
+
+  <div bitDialogContent>
+    <p>{{ "subscribeEnterpriseSubtitle" | i18n: currentPlanName }}</p>
+
+    <!-- Plan Features List -->
+    <ng-container [ngSwitch]="currentPlan?.productTier">
+      <ul class="bwi-ul tw-text-xs" *ngSwitchCase="productTypes.Enterprise">
+        <li>
+          <i class="bwi bwi-check tw-text-muted bwi-li" aria-hidden="true"></i>
+          {{ "includeEnterprisePolicies" | i18n }}
+        </li>
+        <li>
+          <i class="bwi bwi-check tw-text-muted bwi-li" aria-hidden="true"></i>
+          {{ "passwordLessSso" | i18n }}
+        </li>
+        <li>
+          <i class="bwi bwi-check tw-text-muted bwi-li" aria-hidden="true"></i>
+          {{ "accountRecovery" | i18n }}
+        </li>
+        <li *ngIf="!organization?.canAccessSecretsManager">
+          <i class="bwi bwi-check tw-text-muted bwi-li" aria-hidden="true"></i>
+          {{ "customRoles" | i18n }}
+        </li>
+        <li *ngIf="organization?.canAccessSecretsManager">
+          <i class="bwi bwi-check tw-text-muted bwi-li" aria-hidden="true"></i>
+          {{ "unlimitedSecretsAndProjects" | i18n }}
+        </li>
+      </ul>
+
+      <ul class="bwi-ul tw-text-xs" *ngSwitchCase="productTypes.Teams">
+        <li>
+          <i class="bwi bwi-check tw-text-muted bwi-li" aria-hidden="true"></i>
+          {{ "secureDataSharing" | i18n }}
+        </li>
+        <li>
+          <i class="bwi bwi-check tw-text-muted bwi-li" aria-hidden="true"></i>
+          {{ "eventLogMonitoring" | i18n }}
+        </li>
+        <li>
+          <i class="bwi bwi-check tw-text-muted bwi-li" aria-hidden="true"></i>
+          {{ "directoryIntegration" | i18n }}
+        </li>
+        <li *ngIf="organization?.canAccessSecretsManager">
+          <i class="bwi bwi-check tw-text-muted bwi-li" aria-hidden="true"></i>
+          {{ "unlimitedSecretsAndProjects" | i18n }}
+        </li>
+      </ul>
+
+      <ul class="bwi-ul tw-text-xs" *ngSwitchCase="productTypes.Families">
+        <li>
+          <i class="bwi bwi-check tw-text-muted bwi-li" aria-hidden="true"></i>
+          {{ "premiumAccounts" | i18n }}
+        </li>
+        <li>
+          <i class="bwi bwi-check tw-text-muted bwi-li" aria-hidden="true"></i>
+          {{ "unlimitedSharing" | i18n }}
+        </li>
+        <li>
+          <i class="bwi bwi-check tw-text-muted bwi-li" aria-hidden="true"></i>
+          {{ "createUnlimitedCollections" | i18n }}
+        </li>
+      </ul>
+    </ng-container>
+
+    <div *ngIf="!(currentPlan?.productTier === productTypes.Families)">
+      <div class="tw-mb-3 tw-flex tw-justify-between">
+        <h4 class="tw-text-lg tw-text-main">{{ "selectAPlan" | i18n }}</h4>
+      </div>
+
+      <ng-container *ngIf="planCards().length > 0">
+        <div
+          class="tw-grid tw-grid-flow-col tw-gap-4 tw-mb-2"
+          [class]="'tw-grid-cols-' + planCards().length"
+        >
+          @for (planCard of planCards(); track $index) {
+            <app-plan-card [plan]="planCard" (cardClicked)="setSelected(planCard)"></app-plan-card>
+          }
+        </div>
+      </ng-container>
+    </div>
+    <!-- Payment Information -->
+    <ng-container>
+      <h2 bitTypography="h4">{{ "paymentMethod" | i18n }}</h2>
+      <ng-container bitDialogContent>
+        <app-payment
+          [showAccountCredit]="false"
+          [showBankAccount]="!!organizationId"
+          [initialPaymentMethod]="initialPaymentMethod"
+        ></app-payment>
+        <app-manage-tax-information
+          *ngIf="taxInformation"
+          [showTaxIdField]="showTaxIdField"
+          [startWith]="taxInformation"
+          (taxInformationChanged)="taxInformationChanged($event)"
+        />
+      </ng-container>
+      <!-- Pricing Breakdown -->
+      <app-pricing-summary
+        *ngIf="pricingSummaryData"
+        [summaryData]="pricingSummaryData"
+      ></app-pricing-summary>
+    </ng-container>
+  </div>
+  <!-- Dialog Footer -->
+  <ng-container bitDialogFooter>
+    <button bitButton buttonType="primary" type="button" [bitAction]="onSubscribe.bind(this)">
+      {{ "subscribe" | i18n }}
+    </button>
+    <button bitButton buttonType="secondary" type="button" [bitDialogClose]="ResultType.CLOSED">
+      {{ "later" | i18n }}
+    </button>
+  </ng-container>
+</bit-dialog>
diff --git a/apps/web/src/app/billing/shared/trial-payment-dialog/trial-payment-dialog.component.ts b/apps/web/src/app/billing/shared/trial-payment-dialog/trial-payment-dialog.component.ts
new file mode 100644
index 00000000000..ca51ae80e1f
--- /dev/null
+++ b/apps/web/src/app/billing/shared/trial-payment-dialog/trial-payment-dialog.component.ts
@@ -0,0 +1,365 @@
+import { Component, EventEmitter, Inject, OnInit, Output, signal, ViewChild } from "@angular/core";
+import { firstValueFrom, map } from "rxjs";
+
+import { ManageTaxInformationComponent } from "@bitwarden/angular/billing/components";
+import { ApiService } from "@bitwarden/common/abstractions/api.service";
+import { OrganizationApiServiceAbstraction } from "@bitwarden/common/admin-console/abstractions/organization/organization-api.service.abstraction";
+import {
+  getOrganizationById,
+  OrganizationService,
+} from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
+import { Organization } from "@bitwarden/common/admin-console/models/domain/organization";
+import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
+import { BillingApiServiceAbstraction } from "@bitwarden/common/billing/abstractions";
+import { OrganizationBillingApiServiceAbstraction } from "@bitwarden/common/billing/abstractions/organizations/organization-billing-api.service.abstraction";
+import { PaymentMethodType, PlanInterval, ProductTierType } from "@bitwarden/common/billing/enums";
+import { TaxInformation } from "@bitwarden/common/billing/models/domain";
+import { ChangePlanFrequencyRequest } from "@bitwarden/common/billing/models/request/change-plan-frequency.request";
+import { ExpandedTaxInfoUpdateRequest } from "@bitwarden/common/billing/models/request/expanded-tax-info-update.request";
+import { PreviewOrganizationInvoiceRequest } from "@bitwarden/common/billing/models/request/preview-organization-invoice.request";
+import { UpdatePaymentMethodRequest } from "@bitwarden/common/billing/models/request/update-payment-method.request";
+import { OrganizationSubscriptionResponse } from "@bitwarden/common/billing/models/response/organization-subscription.response";
+import { PlanResponse } from "@bitwarden/common/billing/models/response/plan.response";
+import { ListResponse } from "@bitwarden/common/models/response/list.response";
+import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+import {
+  DIALOG_DATA,
+  DialogConfig,
+  DialogRef,
+  DialogService,
+  ToastService,
+} from "@bitwarden/components";
+
+import { PlanCardService } from "../../services/plan-card.service";
+import { PaymentComponent } from "../payment/payment.component";
+import { PlanCard } from "../plan-card/plan-card.component";
+import { PricingSummaryData } from "../pricing-summary/pricing-summary.component";
+
+import { PricingSummaryService } from "./../../services/pricing-summary.service";
+
+type TrialPaymentDialogParams = {
+  organizationId: string;
+  subscription: OrganizationSubscriptionResponse;
+  productTierType: ProductTierType;
+  initialPaymentMethod?: PaymentMethodType;
+};
+
+export const TRIAL_PAYMENT_METHOD_DIALOG_RESULT_TYPE = {
+  CLOSED: "closed",
+  SUBMITTED: "submitted",
+} as const;
+
+export type TrialPaymentDialogResultType =
+  (typeof TRIAL_PAYMENT_METHOD_DIALOG_RESULT_TYPE)[keyof typeof TRIAL_PAYMENT_METHOD_DIALOG_RESULT_TYPE];
+
+interface OnSuccessArgs {
+  organizationId: string;
+}
+
+@Component({
+  selector: "app-trial-payment-dialog",
+  templateUrl: "./trial-payment-dialog.component.html",
+  standalone: false,
+})
+export class TrialPaymentDialogComponent implements OnInit {
+  @ViewChild(PaymentComponent) paymentComponent!: PaymentComponent;
+  @ViewChild(ManageTaxInformationComponent) taxComponent!: ManageTaxInformationComponent;
+
+  currentPlan!: PlanResponse;
+  currentPlanName!: string;
+  productTypes = ProductTierType;
+  organization!: Organization;
+  organizationId!: string;
+  sub!: OrganizationSubscriptionResponse;
+  selectedInterval: PlanInterval = PlanInterval.Annually;
+
+  planCards = signal<PlanCard[]>([]);
+  plans!: ListResponse<PlanResponse>;
+
+  @Output() onSuccess = new EventEmitter<OnSuccessArgs>();
+  protected initialPaymentMethod: PaymentMethodType;
+  protected taxInformation!: TaxInformation;
+  protected readonly ResultType = TRIAL_PAYMENT_METHOD_DIALOG_RESULT_TYPE;
+  pricingSummaryData!: PricingSummaryData;
+
+  constructor(
+    @Inject(DIALOG_DATA) private dialogParams: TrialPaymentDialogParams,
+    private dialogRef: DialogRef<TrialPaymentDialogResultType>,
+    private organizationService: OrganizationService,
+    private i18nService: I18nService,
+    private organizationApiService: OrganizationApiServiceAbstraction,
+    private accountService: AccountService,
+    private planCardService: PlanCardService,
+    private pricingSummaryService: PricingSummaryService,
+    private apiService: ApiService,
+    private toastService: ToastService,
+    private billingApiService: BillingApiServiceAbstraction,
+    private organizationBillingApiServiceAbstraction: OrganizationBillingApiServiceAbstraction,
+  ) {
+    this.initialPaymentMethod = this.dialogParams.initialPaymentMethod ?? PaymentMethodType.Card;
+  }
+
+  async ngOnInit(): Promise<void> {
+    this.currentPlanName = this.resolvePlanName(this.dialogParams.productTierType);
+    this.sub =
+      this.dialogParams.subscription ??
+      (await this.organizationApiService.getSubscription(this.dialogParams.organizationId));
+    this.organizationId = this.dialogParams.organizationId;
+    this.currentPlan = this.sub?.plan;
+    const userId = await firstValueFrom(this.accountService.activeAccount$.pipe(map((a) => a?.id)));
+    if (!userId) {
+      throw new Error("User ID is required");
+    }
+    const organization = await firstValueFrom(
+      this.organizationService
+        .organizations$(userId)
+        .pipe(getOrganizationById(this.organizationId)),
+    );
+    if (!organization) {
+      throw new Error("Organization not found");
+    }
+    this.organization = organization;
+
+    const planCards = await this.planCardService.getCadenceCards(
+      this.currentPlan,
+      this.sub,
+      this.isSecretsManagerTrial(),
+    );
+
+    this.planCards.set(planCards);
+
+    if (!this.selectedInterval) {
+      this.selectedInterval = planCards.find((card) => card.isSelected)?.isAnnual
+        ? PlanInterval.Annually
+        : PlanInterval.Monthly;
+    }
+
+    const taxInfo = await this.organizationApiService.getTaxInfo(this.organizationId);
+    this.taxInformation = TaxInformation.from(taxInfo);
+
+    this.pricingSummaryData = await this.pricingSummaryService.getPricingSummaryData(
+      this.currentPlan,
+      this.sub,
+      this.organization,
+      this.selectedInterval,
+      this.taxInformation,
+      this.isSecretsManagerTrial(),
+    );
+
+    this.plans = await this.apiService.getPlans();
+  }
+
+  static open = (
+    dialogService: DialogService,
+    dialogConfig: DialogConfig<TrialPaymentDialogParams>,
+  ) => dialogService.open<TrialPaymentDialogResultType>(TrialPaymentDialogComponent, dialogConfig);
+
+  async setSelected(planCard: PlanCard) {
+    this.selectedInterval = planCard.isAnnual ? PlanInterval.Annually : PlanInterval.Monthly;
+
+    this.planCards.update((planCards) => {
+      return planCards.map((planCard) => {
+        if (planCard.isSelected) {
+          return {
+            ...planCard,
+            isSelected: false,
+          };
+        } else {
+          return {
+            ...planCard,
+            isSelected: true,
+          };
+        }
+      });
+    });
+
+    await this.selectPlan();
+
+    this.pricingSummaryData = await this.pricingSummaryService.getPricingSummaryData(
+      this.currentPlan,
+      this.sub,
+      this.organization,
+      this.selectedInterval,
+      this.taxInformation,
+      this.isSecretsManagerTrial(),
+    );
+  }
+
+  protected async selectPlan() {
+    if (
+      this.selectedInterval === PlanInterval.Monthly &&
+      this.currentPlan.productTier == ProductTierType.Families
+    ) {
+      return;
+    }
+
+    const filteredPlans = this.plans.data.filter(
+      (plan) =>
+        plan.productTier === this.currentPlan.productTier &&
+        plan.isAnnual === (this.selectedInterval === PlanInterval.Annually),
+    );
+    if (filteredPlans.length > 0) {
+      this.currentPlan = filteredPlans[0];
+    }
+    try {
+      await this.refreshSalesTax();
+    } catch (error) {
+      const errorMessage = error instanceof Error ? error.message : String(error);
+      const translatedMessage = this.i18nService.t(errorMessage);
+      this.toastService.showToast({
+        title: "",
+        variant: "error",
+        message: !translatedMessage || translatedMessage === "" ? errorMessage : translatedMessage,
+      });
+    }
+  }
+
+  protected get showTaxIdField(): boolean {
+    switch (this.currentPlan.productTier) {
+      case ProductTierType.Free:
+      case ProductTierType.Families:
+        return false;
+      default:
+        return true;
+    }
+  }
+
+  private async refreshSalesTax(): Promise<void> {
+    if (
+      this.taxInformation === undefined ||
+      !this.taxInformation.country ||
+      !this.taxInformation.postalCode
+    ) {
+      return;
+    }
+
+    const request: PreviewOrganizationInvoiceRequest = {
+      organizationId: this.organizationId,
+      passwordManager: {
+        additionalStorage: 0,
+        plan: this.currentPlan?.type,
+        seats: this.sub.seats,
+      },
+      taxInformation: {
+        postalCode: this.taxInformation.postalCode,
+        country: this.taxInformation.country,
+        taxId: this.taxInformation.taxId,
+      },
+    };
+
+    if (this.organization.useSecretsManager) {
+      request.secretsManager = {
+        seats: this.sub.smSeats ?? 0,
+        additionalMachineAccounts:
+          (this.sub.smServiceAccounts ?? 0) -
+          (this.sub.plan.SecretsManager?.baseServiceAccount ?? 0),
+      };
+    }
+
+    this.pricingSummaryData = await this.pricingSummaryService.getPricingSummaryData(
+      this.currentPlan,
+      this.sub,
+      this.organization,
+      this.selectedInterval,
+      this.taxInformation,
+      this.isSecretsManagerTrial(),
+    );
+  }
+
+  async taxInformationChanged(event: TaxInformation) {
+    this.taxInformation = event;
+    this.toggleBankAccount();
+    await this.refreshSalesTax();
+  }
+
+  toggleBankAccount = () => {
+    this.paymentComponent.showBankAccount = this.taxInformation.country === "US";
+
+    if (
+      !this.paymentComponent.showBankAccount &&
+      this.paymentComponent.selected === PaymentMethodType.BankAccount
+    ) {
+      this.paymentComponent.select(PaymentMethodType.Card);
+    }
+  };
+
+  isSecretsManagerTrial(): boolean {
+    return (
+      this.sub?.subscription?.items?.some((item) =>
+        this.sub?.customerDiscount?.appliesTo?.includes(item.productId),
+      ) ?? false
+    );
+  }
+
+  async onSubscribe(): Promise<void> {
+    if (!this.taxComponent.validate()) {
+      this.taxComponent.markAllAsTouched();
+    }
+    try {
+      await this.updateOrganizationPaymentMethod(
+        this.organizationId,
+        this.paymentComponent,
+        this.taxInformation,
+      );
+
+      if (this.currentPlan.type !== this.sub.planType) {
+        const changePlanRequest = new ChangePlanFrequencyRequest();
+        changePlanRequest.newPlanType = this.currentPlan.type;
+        await this.organizationBillingApiServiceAbstraction.changeSubscriptionFrequency(
+          this.organizationId,
+          changePlanRequest,
+        );
+      }
+
+      this.toastService.showToast({
+        variant: "success",
+        title: undefined,
+        message: this.i18nService.t("updatedPaymentMethod"),
+      });
+
+      this.onSuccess.emit({ organizationId: this.organizationId });
+      this.dialogRef.close(TRIAL_PAYMENT_METHOD_DIALOG_RESULT_TYPE.SUBMITTED);
+    } catch (error) {
+      const msg =
+        typeof error === "object" && error !== null && "message" in error
+          ? (error as { message: string }).message
+          : String(error);
+      this.toastService.showToast({
+        variant: "error",
+        title: undefined,
+        message: this.i18nService.t(msg) || msg,
+      });
+    }
+  }
+
+  private async updateOrganizationPaymentMethod(
+    organizationId: string,
+    paymentComponent: PaymentComponent,
+    taxInformation: TaxInformation,
+  ): Promise<void> {
+    const paymentSource = await paymentComponent.tokenize();
+
+    const request = new UpdatePaymentMethodRequest();
+    request.paymentSource = paymentSource;
+    request.taxInformation = ExpandedTaxInfoUpdateRequest.From(taxInformation);
+
+    await this.billingApiService.updateOrganizationPaymentMethod(organizationId, request);
+  }
+
+  resolvePlanName(productTier: ProductTierType): string {
+    switch (productTier) {
+      case ProductTierType.Enterprise:
+        return this.i18nService.t("planNameEnterprise");
+      case ProductTierType.Free:
+        return this.i18nService.t("planNameFree");
+      case ProductTierType.Families:
+        return this.i18nService.t("planNameFamilies");
+      case ProductTierType.Teams:
+        return this.i18nService.t("planNameTeams");
+      case ProductTierType.TeamsStarter:
+        return this.i18nService.t("planNameTeamsStarter");
+      default:
+        return this.i18nService.t("planNameFree");
+    }
+  }
+}
diff --git a/apps/web/src/app/billing/warnings/components/organization-free-trial-warning.component.ts b/apps/web/src/app/billing/warnings/components/organization-free-trial-warning.component.ts
index 074358537b6..a7ce53c9998 100644
--- a/apps/web/src/app/billing/warnings/components/organization-free-trial-warning.component.ts
+++ b/apps/web/src/app/billing/warnings/components/organization-free-trial-warning.component.ts
@@ -1,8 +1,10 @@
 import { AsyncPipe } from "@angular/common";
-import { Component, EventEmitter, Input, OnInit, Output } from "@angular/core";
-import { Observable } from "rxjs";
+import { Component, EventEmitter, Input, OnDestroy, OnInit, Output } from "@angular/core";
+import { Observable, Subject } from "rxjs";
+import { takeUntil } from "rxjs/operators";
 
 import { Organization } from "@bitwarden/common/admin-console/models/domain/organization";
+import { OrganizationId } from "@bitwarden/common/types/guid";
 import { AnchorLinkDirective, BannerComponent } from "@bitwarden/components";
 import { I18nPipe } from "@bitwarden/ui-common";
 
@@ -37,16 +39,28 @@ import { OrganizationFreeTrialWarning } from "../types";
   `,
   imports: [AnchorLinkDirective, AsyncPipe, BannerComponent, I18nPipe],
 })
-export class OrganizationFreeTrialWarningComponent implements OnInit {
+export class OrganizationFreeTrialWarningComponent implements OnInit, OnDestroy {
   @Input({ required: true }) organization!: Organization;
   @Output() clicked = new EventEmitter<void>();
 
   warning$!: Observable<OrganizationFreeTrialWarning>;
+  private destroy$ = new Subject<void>();
 
   constructor(private organizationWarningsService: OrganizationWarningsService) {}
 
   ngOnInit() {
     this.warning$ = this.organizationWarningsService.getFreeTrialWarning$(this.organization);
+    this.organizationWarningsService
+      .refreshWarningsForOrganization$(this.organization.id as OrganizationId)
+      .pipe(takeUntil(this.destroy$))
+      .subscribe(() => {
+        this.refresh();
+      });
+  }
+
+  ngOnDestroy() {
+    this.destroy$.next();
+    this.destroy$.complete();
   }
 
   refresh = () => {
diff --git a/apps/web/src/app/billing/warnings/services/organization-warnings.service.ts b/apps/web/src/app/billing/warnings/services/organization-warnings.service.ts
index fa53992afe0..78c17a5d384 100644
--- a/apps/web/src/app/billing/warnings/services/organization-warnings.service.ts
+++ b/apps/web/src/app/billing/warnings/services/organization-warnings.service.ts
@@ -1,6 +1,7 @@
+import { Location } from "@angular/common";
 import { Injectable } from "@angular/core";
 import { Router } from "@angular/router";
-import { filter, from, lastValueFrom, map, Observable, switchMap, takeWhile } from "rxjs";
+import { filter, from, lastValueFrom, map, Observable, Subject, switchMap, takeWhile } from "rxjs";
 import { take } from "rxjs/operators";
 
 import { OrganizationApiServiceAbstraction } from "@bitwarden/common/admin-console/abstractions/organization/organization-api.service.abstraction";
@@ -10,10 +11,15 @@ import { OrganizationWarningsResponse } from "@bitwarden/common/billing/models/r
 import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
 import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+import { SyncService } from "@bitwarden/common/platform/sync";
 import { OrganizationId } from "@bitwarden/common/types/guid";
 import { DialogService } from "@bitwarden/components";
 
 import { openChangePlanDialog } from "../../organizations/change-plan-dialog.component";
+import {
+  TRIAL_PAYMENT_METHOD_DIALOG_RESULT_TYPE,
+  TrialPaymentDialogComponent,
+} from "../../shared/trial-payment-dialog/trial-payment-dialog.component";
 import { OrganizationFreeTrialWarning, OrganizationResellerRenewalWarning } from "../types";
 
 const format = (date: Date) =>
@@ -26,6 +32,7 @@ const format = (date: Date) =>
 @Injectable({ providedIn: "root" })
 export class OrganizationWarningsService {
   private cache$ = new Map<OrganizationId, Observable<OrganizationWarningsResponse>>();
+  private refreshWarnings$ = new Subject<OrganizationId>();
 
   constructor(
     private configService: ConfigService,
@@ -34,6 +41,8 @@ export class OrganizationWarningsService {
     private organizationApiService: OrganizationApiServiceAbstraction,
     private organizationBillingApiService: OrganizationBillingApiServiceAbstraction,
     private router: Router,
+    private location: Location,
+    protected syncService: SyncService,
   ) {}
 
   getFreeTrialWarning$ = (
@@ -174,10 +183,33 @@ export class OrganizationWarningsService {
             });
             break;
           }
+          case "add_payment_method_optional_trial": {
+            const organizationSubscriptionResponse =
+              await this.organizationApiService.getSubscription(organization.id);
+
+            const dialogRef = TrialPaymentDialogComponent.open(this.dialogService, {
+              data: {
+                organizationId: organization.id,
+                subscription: organizationSubscriptionResponse,
+                productTierType: organization?.productTierType,
+              },
+            });
+            const result = await lastValueFrom(dialogRef.closed);
+            if (result === TRIAL_PAYMENT_METHOD_DIALOG_RESULT_TYPE.SUBMITTED) {
+              this.refreshWarnings$.next(organization.id as OrganizationId);
+            }
+          }
         }
       }),
     );
 
+  refreshWarningsForOrganization$(organizationId: OrganizationId): Observable<void> {
+    return this.refreshWarnings$.pipe(
+      filter((id) => id === organizationId),
+      map((): void => void 0),
+    );
+  }
+
   private getResponse$ = (
     organization: Organization,
     bypassCache: boolean = false,
diff --git a/apps/web/src/locales/en/messages.json b/apps/web/src/locales/en/messages.json
index d5ded3c75ea..9c9ecc79721 100644
--- a/apps/web/src/locales/en/messages.json
+++ b/apps/web/src/locales/en/messages.json
@@ -568,6 +568,9 @@
   "cancel": {
     "message": "Cancel"
   },
+  "later": {
+    "message": "Later"
+  },
   "canceled": {
     "message": "Canceled"
   },
@@ -4630,6 +4633,9 @@
   "receiveMarketingEmailsV2": {
     "message": "Get advice, announcements, and research opportunities from Bitwarden in your inbox."
   },
+  "subscribe": {
+    "message": "Subscribe"
+  },
   "unsubscribe": {
     "message": "Unsubscribe"
   },
@@ -10900,5 +10906,26 @@
         "example": "12-3456789"
       }
     }
+  },
+  "subscribetoEnterprise": {
+    "message": "Subscribe to $PLAN$",
+    "placeholders": {
+      "plan": {
+        "content": "$1",
+        "example": "Teams"
+      }
+    }
+  },
+  "subscribeEnterpriseSubtitle": {
+    "message": "Your 7-day $PLAN$ trial starts today. Add a payment method now to continue using these features after your trial ends: ",
+    "placeholders": {
+      "plan": {
+        "content": "$1",
+        "example": "Teams"
+      }
+    }
+  },
+   "unlimitedSecretsAndProjects": {
+    "message": "Unlimited secrets and projects"
   }
-}
+}
\ No newline at end of file
diff --git a/libs/common/src/billing/abstractions/organizations/organization-billing-api.service.abstraction.ts b/libs/common/src/billing/abstractions/organizations/organization-billing-api.service.abstraction.ts
index 4975da0d7d2..29301e626b9 100644
--- a/libs/common/src/billing/abstractions/organizations/organization-billing-api.service.abstraction.ts
+++ b/libs/common/src/billing/abstractions/organizations/organization-billing-api.service.abstraction.ts
@@ -1,3 +1,4 @@
+import { ChangePlanFrequencyRequest } from "@bitwarden/common/billing/models/request/change-plan-frequency.request";
 import { OrganizationWarningsResponse } from "@bitwarden/common/billing/models/response/organization-warnings.response";
 
 import {
@@ -28,4 +29,9 @@ export abstract class OrganizationBillingApiServiceAbstraction {
       organizationKey: string;
     },
   ) => Promise<string>;
+
+  abstract changeSubscriptionFrequency: (
+    organizationId: string,
+    request: ChangePlanFrequencyRequest,
+  ) => Promise<void>;
 }
diff --git a/libs/common/src/billing/models/request/change-plan-frequency.request.ts b/libs/common/src/billing/models/request/change-plan-frequency.request.ts
new file mode 100644
index 00000000000..70b77181663
--- /dev/null
+++ b/libs/common/src/billing/models/request/change-plan-frequency.request.ts
@@ -0,0 +1,9 @@
+import { PlanType } from "../../enums";
+
+export class ChangePlanFrequencyRequest {
+  newPlanType: PlanType;
+
+  constructor(newPlanType?: PlanType) {
+    this.newPlanType = newPlanType!;
+  }
+}
diff --git a/libs/common/src/billing/services/organization/organization-billing-api.service.ts b/libs/common/src/billing/services/organization/organization-billing-api.service.ts
index 1189316a487..e9456f61026 100644
--- a/libs/common/src/billing/services/organization/organization-billing-api.service.ts
+++ b/libs/common/src/billing/services/organization/organization-billing-api.service.ts
@@ -1,3 +1,4 @@
+import { ChangePlanFrequencyRequest } from "@bitwarden/common/billing/models/request/change-plan-frequency.request";
 import { OrganizationWarningsResponse } from "@bitwarden/common/billing/models/response/organization-warnings.response";
 
 import { ApiService } from "../../../abstractions/api.service";
@@ -83,4 +84,17 @@ export class OrganizationBillingApiService implements OrganizationBillingApiServ
 
     return response as string;
   }
+
+  async changeSubscriptionFrequency(
+    organizationId: string,
+    request: ChangePlanFrequencyRequest,
+  ): Promise<void> {
+    return await this.apiService.send(
+      "POST",
+      "/organizations/" + organizationId + "/billing/change-frequency",
+      request,
+      true,
+      false,
+    );
+  }
 }

From da6fb82fd8ed68a910f2558373d0e5cfcdbc0162 Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Tue, 22 Jul 2025 10:21:19 -0500
Subject: [PATCH 195/239] [deps] AC: Update core-js to v3.44.0 (#15284)

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
---
 apps/cli/package.json |  2 +-
 package-lock.json     | 10 +++++-----
 package.json          |  2 +-
 3 files changed, 7 insertions(+), 7 deletions(-)

diff --git a/apps/cli/package.json b/apps/cli/package.json
index ca7af3ec596..54855d72104 100644
--- a/apps/cli/package.json
+++ b/apps/cli/package.json
@@ -69,7 +69,7 @@
     "browser-hrtime": "1.1.8",
     "chalk": "4.1.2",
     "commander": "11.1.0",
-    "core-js": "3.42.0",
+    "core-js": "3.44.0",
     "form-data": "4.0.2",
     "https-proxy-agent": "7.0.6",
     "inquirer": "8.2.6",
diff --git a/package-lock.json b/package-lock.json
index e44797997f1..01a9ea8c09c 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -42,7 +42,7 @@
         "bufferutil": "4.0.9",
         "chalk": "4.1.2",
         "commander": "11.1.0",
-        "core-js": "3.42.0",
+        "core-js": "3.44.0",
         "form-data": "4.0.2",
         "https-proxy-agent": "7.0.6",
         "inquirer": "8.2.6",
@@ -205,7 +205,7 @@
         "browser-hrtime": "1.1.8",
         "chalk": "4.1.2",
         "commander": "11.1.0",
-        "core-js": "3.42.0",
+        "core-js": "3.44.0",
         "form-data": "4.0.2",
         "https-proxy-agent": "7.0.6",
         "inquirer": "8.2.6",
@@ -17512,9 +17512,9 @@
       }
     },
     "node_modules/core-js": {
-      "version": "3.42.0",
-      "resolved": "https://registry.npmjs.org/core-js/-/core-js-3.42.0.tgz",
-      "integrity": "sha512-Sz4PP4ZA+Rq4II21qkNqOEDTDrCvcANId3xpIgB34NDkWc3UduWj2dqEtN9yZIq8Dk3HyPI33x9sqqU5C8sr0g==",
+      "version": "3.44.0",
+      "resolved": "https://registry.npmjs.org/core-js/-/core-js-3.44.0.tgz",
+      "integrity": "sha512-aFCtd4l6GvAXwVEh3XbbVqJGHDJt0OZRa+5ePGx3LLwi12WfexqQxcsohb2wgsa/92xtl19Hd66G/L+TaAxDMw==",
       "hasInstallScript": true,
       "license": "MIT",
       "funding": {
diff --git a/package.json b/package.json
index 089ef3342e9..2cb60a6afd1 100644
--- a/package.json
+++ b/package.json
@@ -177,7 +177,7 @@
     "bufferutil": "4.0.9",
     "chalk": "4.1.2",
     "commander": "11.1.0",
-    "core-js": "3.42.0",
+    "core-js": "3.44.0",
     "form-data": "4.0.2",
     "https-proxy-agent": "7.0.6",
     "inquirer": "8.2.6",

From e99abb49ec26e983fa76b2bb114d6c330d0a9ce6 Mon Sep 17 00:00:00 2001
From: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com>
Date: Tue, 22 Jul 2025 10:30:50 -0500
Subject: [PATCH 196/239] [PM-23621] Require userId for initAccount on the
 key-service (#15684)

* require userID for initAccount on key service

* add unit test coverage

* update consumer
---
 .../login-decryption-options.component.ts     |   2 +-
 .../src/abstractions/key.service.ts           |   7 +-
 libs/key-management/src/key.service.spec.ts   | 101 ++++++++++++++++++
 libs/key-management/src/key.service.ts        |  14 ++-
 4 files changed, 112 insertions(+), 12 deletions(-)

diff --git a/libs/auth/src/angular/login-decryption-options/login-decryption-options.component.ts b/libs/auth/src/angular/login-decryption-options/login-decryption-options.component.ts
index bbdc0106786..a2018817fed 100644
--- a/libs/auth/src/angular/login-decryption-options/login-decryption-options.component.ts
+++ b/libs/auth/src/angular/login-decryption-options/login-decryption-options.component.ts
@@ -249,7 +249,7 @@ export class LoginDecryptionOptionsComponent implements OnInit {
     }
 
     try {
-      const { publicKey, privateKey } = await this.keyService.initAccount();
+      const { publicKey, privateKey } = await this.keyService.initAccount(this.activeAccountId);
       const keysRequest = new KeysRequest(publicKey, privateKey.encryptedString);
       await this.apiService.postAccountKeys(keysRequest);
 
diff --git a/libs/key-management/src/abstractions/key.service.ts b/libs/key-management/src/abstractions/key.service.ts
index c843d8dc872..3c0d6c8a138 100644
--- a/libs/key-management/src/abstractions/key.service.ts
+++ b/libs/key-management/src/abstractions/key.service.ts
@@ -386,11 +386,12 @@ export abstract class KeyService {
   /**
    * Initialize all necessary crypto keys needed for a new account.
    * Warning! This completely replaces any existing keys!
+   * @param userId The user id of the target user.
    * @returns The user's newly created  public key, private key, and encrypted private key
-   *
-   * @throws An error if there is no user currently active.
+   * @throws An error if the userId is null or undefined.
+   * @throws An error if the user already has a user key.
    */
-  abstract initAccount(): Promise<{
+  abstract initAccount(userId: UserId): Promise<{
     userKey: UserKey;
     publicKey: string;
     privateKey: EncString;
diff --git a/libs/key-management/src/key.service.spec.ts b/libs/key-management/src/key.service.spec.ts
index 395d668de9f..7a033792c79 100644
--- a/libs/key-management/src/key.service.spec.ts
+++ b/libs/key-management/src/key.service.spec.ts
@@ -1047,4 +1047,105 @@ describe("keyService", () => {
       });
     });
   });
+
+  describe("initAccount", () => {
+    let userKey: UserKey;
+    let mockPublicKey: string;
+    let mockPrivateKey: EncString;
+
+    beforeEach(() => {
+      userKey = makeSymmetricCryptoKey<UserKey>(64);
+      mockPublicKey = "mockPublicKey";
+      mockPrivateKey = makeEncString("mockPrivateKey");
+
+      keyGenerationService.createKey.mockResolvedValue(userKey);
+      jest.spyOn(keyService, "makeKeyPair").mockResolvedValue([mockPublicKey, mockPrivateKey]);
+      jest.spyOn(keyService, "setUserKey").mockResolvedValue();
+    });
+
+    test.each([null as unknown as UserId, undefined as unknown as UserId])(
+      "throws when the provided userId is %s",
+      async (userId) => {
+        await expect(keyService.initAccount(userId)).rejects.toThrow("UserId is required.");
+        expect(keyService.setUserKey).not.toHaveBeenCalled();
+      },
+    );
+
+    it("throws when user already has a user key", async () => {
+      const existingUserKey = makeSymmetricCryptoKey<UserKey>(64);
+      stateProvider.singleUser.getFake(mockUserId, USER_KEY).nextState(existingUserKey);
+
+      await expect(keyService.initAccount(mockUserId)).rejects.toThrow(
+        "Cannot initialize account, keys already exist.",
+      );
+      expect(logService.error).toHaveBeenCalledWith(
+        "Tried to initialize account with existing user key.",
+      );
+      expect(keyService.setUserKey).not.toHaveBeenCalled();
+    });
+
+    it("throws when private key creation fails", async () => {
+      // Simulate failure
+      const invalidPrivateKey = new EncString(
+        "2.AAAw2vTUePO+CCyokcIfVw==|DTBNlJ5yVsV2Bsk3UU3H6Q==|YvFBff5gxWqM+UsFB6BKimKxhC32AtjF3IStpU1Ijwg=",
+      );
+      invalidPrivateKey.encryptedString = null as unknown as EncryptedString;
+      jest.spyOn(keyService, "makeKeyPair").mockResolvedValue([mockPublicKey, invalidPrivateKey]);
+
+      await expect(keyService.initAccount(mockUserId)).rejects.toThrow(
+        "Failed to create valid private key.",
+      );
+      expect(keyService.setUserKey).not.toHaveBeenCalled();
+    });
+
+    it("successfully initializes account with new keys", async () => {
+      const keyCreationSize = 512;
+      const privateKeyState = stateProvider.singleUser.getFake(
+        mockUserId,
+        USER_ENCRYPTED_PRIVATE_KEY,
+      );
+
+      const result = await keyService.initAccount(mockUserId);
+
+      expect(keyGenerationService.createKey).toHaveBeenCalledWith(keyCreationSize);
+      expect(keyService.makeKeyPair).toHaveBeenCalledWith(userKey);
+      expect(keyService.setUserKey).toHaveBeenCalledWith(userKey, mockUserId);
+      expect(privateKeyState.nextMock).toHaveBeenCalledWith(mockPrivateKey.encryptedString);
+      expect(result).toEqual({
+        userKey: userKey,
+        publicKey: mockPublicKey,
+        privateKey: mockPrivateKey,
+      });
+    });
+  });
+
+  describe("makeKeyPair", () => {
+    test.each([null as unknown as SymmetricCryptoKey, undefined as unknown as SymmetricCryptoKey])(
+      "throws when the provided key is %s",
+      async (key) => {
+        await expect(keyService.makeKeyPair(key)).rejects.toThrow(
+          "'key' is a required parameter and must be non-null.",
+        );
+      },
+    );
+
+    it("generates a key pair and returns public key and encrypted private key", async () => {
+      const mockKey = new SymmetricCryptoKey(new Uint8Array(64));
+      const mockKeyPair: [Uint8Array, Uint8Array] = [new Uint8Array(256), new Uint8Array(256)];
+      const mockPublicKeyB64 = "mockPublicKeyB64";
+      const mockPrivateKeyEncString = makeEncString("encryptedPrivateKey");
+
+      cryptoFunctionService.rsaGenerateKeyPair.mockResolvedValue(mockKeyPair);
+      jest.spyOn(Utils, "fromBufferToB64").mockReturnValue(mockPublicKeyB64);
+      encryptService.wrapDecapsulationKey.mockResolvedValue(mockPrivateKeyEncString);
+
+      const [publicKey, privateKey] = await keyService.makeKeyPair(mockKey);
+
+      expect(cryptoFunctionService.rsaGenerateKeyPair).toHaveBeenCalledWith(2048);
+      expect(Utils.fromBufferToB64).toHaveBeenCalledWith(mockKeyPair[0]);
+      expect(encryptService.wrapDecapsulationKey).toHaveBeenCalledWith(mockKeyPair[1], mockKey);
+      expect(publicKey).toBe(mockPublicKeyB64);
+      expect(privateKey).toBe(mockPrivateKeyEncString);
+    });
+  });
 });
diff --git a/libs/key-management/src/key.service.ts b/libs/key-management/src/key.service.ts
index fca080252f6..0f4b101d9b2 100644
--- a/libs/key-management/src/key.service.ts
+++ b/libs/key-management/src/key.service.ts
@@ -661,19 +661,17 @@ export class DefaultKeyService implements KeyServiceAbstraction {
    * Initialize all necessary crypto keys needed for a new account.
    * Warning! This completely replaces any existing keys!
    */
-  async initAccount(): Promise<{
+  async initAccount(userId: UserId): Promise<{
     userKey: UserKey;
     publicKey: string;
     privateKey: EncString;
   }> {
-    const activeUserId = await firstValueFrom(this.stateProvider.activeUserId$);
-
-    if (activeUserId == null) {
-      throw new Error("Cannot initilize an account if one is not active.");
+    if (userId == null) {
+      throw new Error("UserId is required.");
     }
 
     // Verify user key doesn't exist
-    const existingUserKey = await this.getUserKey(activeUserId);
+    const existingUserKey = await this.getUserKey(userId);
 
     if (existingUserKey != null) {
       this.logService.error("Tried to initialize account with existing user key.");
@@ -686,9 +684,9 @@ export class DefaultKeyService implements KeyServiceAbstraction {
       throw new Error("Failed to create valid private key.");
     }
 
-    await this.setUserKey(userKey, activeUserId);
+    await this.setUserKey(userKey, userId);
     await this.stateProvider
-      .getUser(activeUserId, USER_ENCRYPTED_PRIVATE_KEY)
+      .getUser(userId, USER_ENCRYPTED_PRIVATE_KEY)
       .update(() => privateKey.encryptedString!);
 
     return {

From a563e6d91000f453f5cbd8f904f397dccc96d058 Mon Sep 17 00:00:00 2001
From: Justin Baur <19896123+justindbaur@users.noreply.github.com>
Date: Tue, 22 Jul 2025 11:47:25 -0400
Subject: [PATCH 197/239] Add `messaging` & `messaging-internal` libraries
 (#15711)

---
 .github/CODEOWNERS                            |  2 +
 .../sync/sync-service.listener.spec.ts        |  4 +-
 .../abstractions/messaging.service.ts         |  2 +-
 libs/common/src/platform/messaging/index.ts   |  5 +-
 .../common/src/platform/messaging/internal.ts |  6 +-
 .../messaging/subject-message.sender.spec.ts  | 65 -------------------
 libs/messaging-internal/README.md             |  5 ++
 libs/messaging-internal/eslint.config.mjs     |  3 +
 libs/messaging-internal/jest.config.js        | 10 +++
 libs/messaging-internal/package.json          | 11 ++++
 libs/messaging-internal/project.json          | 33 ++++++++++
 .../src}/helpers.spec.ts                      |  5 +-
 .../src}/helpers.ts                           |  8 +--
 libs/messaging-internal/src/index.ts          |  5 ++
 .../src/messaging-internal.spec.ts            |  8 +++
 .../src/subject-message.sender.spec.ts        | 59 +++++++++++++++++
 .../src}/subject-message.sender.ts            |  6 +-
 libs/messaging-internal/tsconfig.eslint.json  |  6 ++
 libs/messaging-internal/tsconfig.json         | 13 ++++
 libs/messaging-internal/tsconfig.lib.json     | 10 +++
 libs/messaging-internal/tsconfig.spec.json    | 10 +++
 libs/messaging/README.md                      |  5 ++
 libs/messaging/eslint.config.mjs              |  3 +
 libs/messaging/jest.config.js                 | 10 +++
 libs/messaging/package.json                   | 11 ++++
 libs/messaging/project.json                   | 33 ++++++++++
 libs/messaging/src/index.ts                   |  4 ++
 libs/messaging/src/is-external-message.ts     |  5 ++
 .../src}/message.listener.spec.ts             | 26 ++++----
 .../src}/message.listener.ts                  |  0
 .../src}/message.sender.ts                    |  0
 libs/messaging/src/messaging.spec.ts          |  8 +++
 .../messaging => messaging/src}/types.ts      |  0
 libs/messaging/tsconfig.eslint.json           |  6 ++
 libs/messaging/tsconfig.json                  | 13 ++++
 libs/messaging/tsconfig.lib.json              | 16 +++++
 libs/messaging/tsconfig.spec.json             | 17 +++++
 package-lock.json                             | 17 +++++
 tsconfig.base.json                            |  2 +
 39 files changed, 347 insertions(+), 105 deletions(-)
 delete mode 100644 libs/common/src/platform/messaging/subject-message.sender.spec.ts
 create mode 100644 libs/messaging-internal/README.md
 create mode 100644 libs/messaging-internal/eslint.config.mjs
 create mode 100644 libs/messaging-internal/jest.config.js
 create mode 100644 libs/messaging-internal/package.json
 create mode 100644 libs/messaging-internal/project.json
 rename libs/{common/src/platform/messaging => messaging-internal/src}/helpers.spec.ts (90%)
 rename libs/{common/src/platform/messaging => messaging-internal/src}/helpers.ts (65%)
 create mode 100644 libs/messaging-internal/src/index.ts
 create mode 100644 libs/messaging-internal/src/messaging-internal.spec.ts
 create mode 100644 libs/messaging-internal/src/subject-message.sender.spec.ts
 rename libs/{common/src/platform/messaging => messaging-internal/src}/subject-message.sender.ts (77%)
 create mode 100644 libs/messaging-internal/tsconfig.eslint.json
 create mode 100644 libs/messaging-internal/tsconfig.json
 create mode 100644 libs/messaging-internal/tsconfig.lib.json
 create mode 100644 libs/messaging-internal/tsconfig.spec.json
 create mode 100644 libs/messaging/README.md
 create mode 100644 libs/messaging/eslint.config.mjs
 create mode 100644 libs/messaging/jest.config.js
 create mode 100644 libs/messaging/package.json
 create mode 100644 libs/messaging/project.json
 create mode 100644 libs/messaging/src/index.ts
 create mode 100644 libs/messaging/src/is-external-message.ts
 rename libs/{common/src/platform/messaging => messaging/src}/message.listener.spec.ts (55%)
 rename libs/{common/src/platform/messaging => messaging/src}/message.listener.ts (100%)
 rename libs/{common/src/platform/messaging => messaging/src}/message.sender.ts (100%)
 create mode 100644 libs/messaging/src/messaging.spec.ts
 rename libs/{common/src/platform/messaging => messaging/src}/types.ts (100%)
 create mode 100644 libs/messaging/tsconfig.eslint.json
 create mode 100644 libs/messaging/tsconfig.json
 create mode 100644 libs/messaging/tsconfig.lib.json
 create mode 100644 libs/messaging/tsconfig.spec.json

diff --git a/.github/CODEOWNERS b/.github/CODEOWNERS
index 7d7fec2a5ea..203c7ae7607 100644
--- a/.github/CODEOWNERS
+++ b/.github/CODEOWNERS
@@ -94,6 +94,8 @@ libs/platform @bitwarden/team-platform-dev
 libs/storage-core @bitwarden/team-platform-dev
 libs/logging @bitwarden/team-platform-dev
 libs/storage-test-utils @bitwarden/team-platform-dev
+libs/messaging @bitwarden/team-platform-dev
+libs/messaging-internal @bitwarden/team-platform-dev
 # Web utils used across app and connectors
 apps/web/src/utils/ @bitwarden/team-platform-dev
 # Web core and shared files
diff --git a/apps/browser/src/platform/sync/sync-service.listener.spec.ts b/apps/browser/src/platform/sync/sync-service.listener.spec.ts
index dc0674a7ae5..383586c0cd0 100644
--- a/apps/browser/src/platform/sync/sync-service.listener.spec.ts
+++ b/apps/browser/src/platform/sync/sync-service.listener.spec.ts
@@ -3,10 +3,8 @@ import { Subject, firstValueFrom } from "rxjs";
 
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { MessageListener, MessageSender } from "@bitwarden/common/platform/messaging";
-// This import has been flagged as unallowed for this class. It may be involved in a circular dependency loop.
-// eslint-disable-next-line no-restricted-imports
-import { tagAsExternal } from "@bitwarden/common/platform/messaging/helpers";
 import { SyncService } from "@bitwarden/common/vault/abstractions/sync/sync.service.abstraction";
+import { tagAsExternal } from "@bitwarden/messaging-internal";
 
 import { FullSyncMessage } from "./foreground-sync.service";
 import { FULL_SYNC_FINISHED, SyncServiceListener } from "./sync-service.listener";
diff --git a/libs/common/src/platform/abstractions/messaging.service.ts b/libs/common/src/platform/abstractions/messaging.service.ts
index f24279f932a..3520d9352ef 100644
--- a/libs/common/src/platform/abstractions/messaging.service.ts
+++ b/libs/common/src/platform/abstractions/messaging.service.ts
@@ -1,3 +1,3 @@
 // Export the new message sender as the legacy MessagingService to minimize changes in the initial PR,
 // team specific PR's will come after.
-export { MessageSender as MessagingService } from "../messaging/message.sender";
+export { MessageSender as MessagingService } from "@bitwarden/messaging";
diff --git a/libs/common/src/platform/messaging/index.ts b/libs/common/src/platform/messaging/index.ts
index a9b4eca5ae8..5d452f32b31 100644
--- a/libs/common/src/platform/messaging/index.ts
+++ b/libs/common/src/platform/messaging/index.ts
@@ -1,4 +1 @@
-export { MessageListener } from "./message.listener";
-export { MessageSender } from "./message.sender";
-export { Message, CommandDefinition } from "./types";
-export { isExternalMessage } from "./helpers";
+export * from "@bitwarden/messaging";
diff --git a/libs/common/src/platform/messaging/internal.ts b/libs/common/src/platform/messaging/internal.ts
index 08763d48bc5..9fe261f2264 100644
--- a/libs/common/src/platform/messaging/internal.ts
+++ b/libs/common/src/platform/messaging/internal.ts
@@ -1,5 +1 @@
-// Built in implementations
-export { SubjectMessageSender } from "./subject-message.sender";
-
-// Helpers meant to be used only by other implementations
-export { tagAsExternal, getCommand } from "./helpers";
+export * from "@bitwarden/messaging-internal";
diff --git a/libs/common/src/platform/messaging/subject-message.sender.spec.ts b/libs/common/src/platform/messaging/subject-message.sender.spec.ts
deleted file mode 100644
index 4278fca7bc1..00000000000
--- a/libs/common/src/platform/messaging/subject-message.sender.spec.ts
+++ /dev/null
@@ -1,65 +0,0 @@
-import { Subject } from "rxjs";
-
-import { subscribeTo } from "../../../spec/observable-tracker";
-
-import { SubjectMessageSender } from "./internal";
-import { MessageSender } from "./message.sender";
-import { Message, CommandDefinition } from "./types";
-
-describe("SubjectMessageSender", () => {
-  const subject = new Subject<Message<{ test: number }>>();
-  const subjectObservable = subject.asObservable();
-
-  const sut: MessageSender = new SubjectMessageSender(subject);
-
-  describe("send", () => {
-    it("will send message with command from message definition", async () => {
-      const commandDefinition = new CommandDefinition<{ test: number }>("myCommand");
-
-      const tracker = subscribeTo(subjectObservable);
-      const pausePromise = tracker.pauseUntilReceived(1);
-
-      sut.send(commandDefinition, { test: 1 });
-
-      await pausePromise;
-
-      expect(tracker.emissions[0]).toEqual({ command: "myCommand", test: 1 });
-    });
-
-    it("will send message with command from normal string", async () => {
-      const tracker = subscribeTo(subjectObservable);
-      const pausePromise = tracker.pauseUntilReceived(1);
-
-      sut.send("myCommand", { test: 1 });
-
-      await pausePromise;
-
-      expect(tracker.emissions[0]).toEqual({ command: "myCommand", test: 1 });
-    });
-
-    it("will send message with object even if payload not given", async () => {
-      const tracker = subscribeTo(subjectObservable);
-      const pausePromise = tracker.pauseUntilReceived(1);
-
-      sut.send("myCommand");
-
-      await pausePromise;
-
-      expect(tracker.emissions[0]).toEqual({ command: "myCommand" });
-    });
-
-    it.each([null, undefined])(
-      "will send message with object even if payload is null-ish (%s)",
-      async (payloadValue) => {
-        const tracker = subscribeTo(subjectObservable);
-        const pausePromise = tracker.pauseUntilReceived(1);
-
-        sut.send("myCommand", payloadValue);
-
-        await pausePromise;
-
-        expect(tracker.emissions[0]).toEqual({ command: "myCommand" });
-      },
-    );
-  });
-});
diff --git a/libs/messaging-internal/README.md b/libs/messaging-internal/README.md
new file mode 100644
index 00000000000..a2f36138ad7
--- /dev/null
+++ b/libs/messaging-internal/README.md
@@ -0,0 +1,5 @@
+# messaging-internal
+
+Owned by: platform
+
+Internal details to accompany @bitwarden/messaging this library should not be consumed in non-platform code.
diff --git a/libs/messaging-internal/eslint.config.mjs b/libs/messaging-internal/eslint.config.mjs
new file mode 100644
index 00000000000..9c37d10e3ff
--- /dev/null
+++ b/libs/messaging-internal/eslint.config.mjs
@@ -0,0 +1,3 @@
+import baseConfig from "../../eslint.config.mjs";
+
+export default [...baseConfig];
diff --git a/libs/messaging-internal/jest.config.js b/libs/messaging-internal/jest.config.js
new file mode 100644
index 00000000000..152244f6603
--- /dev/null
+++ b/libs/messaging-internal/jest.config.js
@@ -0,0 +1,10 @@
+module.exports = {
+  displayName: "messaging-internal",
+  preset: "../../jest.preset.js",
+  testEnvironment: "node",
+  transform: {
+    "^.+\\.[tj]s$": ["ts-jest", { tsconfig: "<rootDir>/tsconfig.spec.json" }],
+  },
+  moduleFileExtensions: ["ts", "js", "html"],
+  coverageDirectory: "../../coverage/libs/messaging-internal",
+};
diff --git a/libs/messaging-internal/package.json b/libs/messaging-internal/package.json
new file mode 100644
index 00000000000..7a0a13d2d67
--- /dev/null
+++ b/libs/messaging-internal/package.json
@@ -0,0 +1,11 @@
+{
+  "name": "@bitwarden/messaging-internal",
+  "version": "0.0.1",
+  "description": "Internal details to accompany @bitwarden/messaging this library should not be consumed in non-platform code.",
+  "private": true,
+  "type": "commonjs",
+  "main": "dist/index.js",
+  "types": "dist/index.d.ts",
+  "license": "GPL-3.0",
+  "author": "platform"
+}
diff --git a/libs/messaging-internal/project.json b/libs/messaging-internal/project.json
new file mode 100644
index 00000000000..ad55cde5c20
--- /dev/null
+++ b/libs/messaging-internal/project.json
@@ -0,0 +1,33 @@
+{
+  "name": "messaging-internal",
+  "$schema": "../../node_modules/nx/schemas/project-schema.json",
+  "sourceRoot": "libs/messaging-internal/src",
+  "projectType": "library",
+  "tags": [],
+  "targets": {
+    "build": {
+      "executor": "@nx/js:tsc",
+      "outputs": ["{options.outputPath}"],
+      "options": {
+        "outputPath": "dist/libs/messaging-internal",
+        "main": "libs/messaging-internal/src/index.ts",
+        "tsConfig": "libs/messaging-internal/tsconfig.lib.json",
+        "assets": ["libs/messaging-internal/*.md"]
+      }
+    },
+    "lint": {
+      "executor": "@nx/eslint:lint",
+      "outputs": ["{options.outputFile}"],
+      "options": {
+        "lintFilePatterns": ["libs/messaging-internal/**/*.ts"]
+      }
+    },
+    "test": {
+      "executor": "@nx/jest:jest",
+      "outputs": ["{workspaceRoot}/coverage/{projectRoot}"],
+      "options": {
+        "jestConfig": "libs/messaging-internal/jest.config.js"
+      }
+    }
+  }
+}
diff --git a/libs/common/src/platform/messaging/helpers.spec.ts b/libs/messaging-internal/src/helpers.spec.ts
similarity index 90%
rename from libs/common/src/platform/messaging/helpers.spec.ts
rename to libs/messaging-internal/src/helpers.spec.ts
index 8839a542ffc..5a97ff959cc 100644
--- a/libs/common/src/platform/messaging/helpers.spec.ts
+++ b/libs/messaging-internal/src/helpers.spec.ts
@@ -1,7 +1,8 @@
 import { Subject, firstValueFrom } from "rxjs";
 
-import { getCommand, isExternalMessage, tagAsExternal } from "./helpers";
-import { Message, CommandDefinition } from "./types";
+import { CommandDefinition, isExternalMessage, Message } from "@bitwarden/messaging";
+
+import { getCommand, tagAsExternal } from "./helpers";
 
 describe("helpers", () => {
   describe("getCommand", () => {
diff --git a/libs/common/src/platform/messaging/helpers.ts b/libs/messaging-internal/src/helpers.ts
similarity index 65%
rename from libs/common/src/platform/messaging/helpers.ts
rename to libs/messaging-internal/src/helpers.ts
index e7521ea42a2..00231b455b7 100644
--- a/libs/common/src/platform/messaging/helpers.ts
+++ b/libs/messaging-internal/src/helpers.ts
@@ -1,6 +1,6 @@
 import { map } from "rxjs";
 
-import { CommandDefinition } from "./types";
+import { CommandDefinition, EXTERNAL_SOURCE_TAG } from "@bitwarden/messaging";
 
 export const getCommand = (
   commandDefinition: CommandDefinition<Record<string, unknown>> | string,
@@ -12,12 +12,6 @@ export const getCommand = (
   }
 };
 
-export const EXTERNAL_SOURCE_TAG = Symbol("externalSource");
-
-export const isExternalMessage = (message: Record<PropertyKey, unknown>) => {
-  return message?.[EXTERNAL_SOURCE_TAG] === true;
-};
-
 export const tagAsExternal = <T extends Record<PropertyKey, unknown>>() => {
   return map((message: T) => {
     return Object.assign(message, { [EXTERNAL_SOURCE_TAG]: true });
diff --git a/libs/messaging-internal/src/index.ts b/libs/messaging-internal/src/index.ts
new file mode 100644
index 00000000000..08763d48bc5
--- /dev/null
+++ b/libs/messaging-internal/src/index.ts
@@ -0,0 +1,5 @@
+// Built in implementations
+export { SubjectMessageSender } from "./subject-message.sender";
+
+// Helpers meant to be used only by other implementations
+export { tagAsExternal, getCommand } from "./helpers";
diff --git a/libs/messaging-internal/src/messaging-internal.spec.ts b/libs/messaging-internal/src/messaging-internal.spec.ts
new file mode 100644
index 00000000000..b2b50a218bd
--- /dev/null
+++ b/libs/messaging-internal/src/messaging-internal.spec.ts
@@ -0,0 +1,8 @@
+import * as lib from "./index";
+
+describe("messaging-internal", () => {
+  // This test will fail until something is exported from index.ts
+  it("should work", () => {
+    expect(lib).toBeDefined();
+  });
+});
diff --git a/libs/messaging-internal/src/subject-message.sender.spec.ts b/libs/messaging-internal/src/subject-message.sender.spec.ts
new file mode 100644
index 00000000000..e3e5305d1b2
--- /dev/null
+++ b/libs/messaging-internal/src/subject-message.sender.spec.ts
@@ -0,0 +1,59 @@
+import { bufferCount, firstValueFrom, Subject } from "rxjs";
+
+import { CommandDefinition, Message } from "@bitwarden/messaging";
+
+import { SubjectMessageSender } from "./subject-message.sender";
+
+describe("SubjectMessageSender", () => {
+  const subject = new Subject<Message<{ test: number }>>();
+  const subjectObservable = subject.asObservable();
+
+  const sut = new SubjectMessageSender(subject);
+
+  describe("send", () => {
+    it("will send message with command from message definition", async () => {
+      const commandDefinition = new CommandDefinition<{ test: number }>("myCommand");
+
+      const emissionsPromise = firstValueFrom(subjectObservable.pipe(bufferCount(1)));
+
+      sut.send(commandDefinition, { test: 1 });
+
+      const emissions = await emissionsPromise;
+
+      expect(emissions[0]).toEqual({ command: "myCommand", test: 1 });
+    });
+
+    it("will send message with command from normal string", async () => {
+      const emissionsPromise = firstValueFrom(subjectObservable.pipe(bufferCount(1)));
+
+      sut.send("myCommand", { test: 1 });
+
+      const emissions = await emissionsPromise;
+
+      expect(emissions[0]).toEqual({ command: "myCommand", test: 1 });
+    });
+
+    it("will send message with object even if payload not given", async () => {
+      const emissionsPromise = firstValueFrom(subjectObservable.pipe(bufferCount(1)));
+
+      sut.send("myCommand");
+
+      const emissions = await emissionsPromise;
+
+      expect(emissions[0]).toEqual({ command: "myCommand" });
+    });
+
+    it.each([null, undefined])(
+      "will send message with object even if payload is null-ish (%s)",
+      async (payloadValue) => {
+        const emissionsPromise = firstValueFrom(subjectObservable.pipe(bufferCount(1)));
+
+        sut.send("myCommand", payloadValue);
+
+        const emissions = await emissionsPromise;
+
+        expect(emissions[0]).toEqual({ command: "myCommand" });
+      },
+    );
+  });
+});
diff --git a/libs/common/src/platform/messaging/subject-message.sender.ts b/libs/messaging-internal/src/subject-message.sender.ts
similarity index 77%
rename from libs/common/src/platform/messaging/subject-message.sender.ts
rename to libs/messaging-internal/src/subject-message.sender.ts
index 170f8a24c6f..e8df5913b01 100644
--- a/libs/common/src/platform/messaging/subject-message.sender.ts
+++ b/libs/messaging-internal/src/subject-message.sender.ts
@@ -1,8 +1,8 @@
 import { Subject } from "rxjs";
 
-import { getCommand } from "./internal";
-import { MessageSender } from "./message.sender";
-import { Message, CommandDefinition } from "./types";
+import { CommandDefinition, Message, MessageSender } from "@bitwarden/messaging";
+
+import { getCommand } from "./helpers";
 
 export class SubjectMessageSender implements MessageSender {
   constructor(private readonly messagesSubject: Subject<Message<Record<string, unknown>>>) {}
diff --git a/libs/messaging-internal/tsconfig.eslint.json b/libs/messaging-internal/tsconfig.eslint.json
new file mode 100644
index 00000000000..3daf120441a
--- /dev/null
+++ b/libs/messaging-internal/tsconfig.eslint.json
@@ -0,0 +1,6 @@
+{
+  "extends": "../../tsconfig.base.json",
+  "files": [],
+  "include": ["src/**/*.ts", "src/**/*.js"],
+  "exclude": ["**/build", "**/dist"]
+}
diff --git a/libs/messaging-internal/tsconfig.json b/libs/messaging-internal/tsconfig.json
new file mode 100644
index 00000000000..62ebbd94647
--- /dev/null
+++ b/libs/messaging-internal/tsconfig.json
@@ -0,0 +1,13 @@
+{
+  "extends": "../../tsconfig.base.json",
+  "files": [],
+  "include": [],
+  "references": [
+    {
+      "path": "./tsconfig.lib.json"
+    },
+    {
+      "path": "./tsconfig.spec.json"
+    }
+  ]
+}
diff --git a/libs/messaging-internal/tsconfig.lib.json b/libs/messaging-internal/tsconfig.lib.json
new file mode 100644
index 00000000000..9cbf6736007
--- /dev/null
+++ b/libs/messaging-internal/tsconfig.lib.json
@@ -0,0 +1,10 @@
+{
+  "extends": "./tsconfig.json",
+  "compilerOptions": {
+    "outDir": "../../dist/out-tsc",
+    "declaration": true,
+    "types": ["node"]
+  },
+  "include": ["src/**/*.ts"],
+  "exclude": ["jest.config.js", "src/**/*.spec.ts"]
+}
diff --git a/libs/messaging-internal/tsconfig.spec.json b/libs/messaging-internal/tsconfig.spec.json
new file mode 100644
index 00000000000..1275f148a18
--- /dev/null
+++ b/libs/messaging-internal/tsconfig.spec.json
@@ -0,0 +1,10 @@
+{
+  "extends": "./tsconfig.json",
+  "compilerOptions": {
+    "outDir": "../../dist/out-tsc",
+    "module": "commonjs",
+    "moduleResolution": "node10",
+    "types": ["jest", "node"]
+  },
+  "include": ["jest.config.ts", "src/**/*.test.ts", "src/**/*.spec.ts", "src/**/*.d.ts"]
+}
diff --git a/libs/messaging/README.md b/libs/messaging/README.md
new file mode 100644
index 00000000000..98eb96a5a40
--- /dev/null
+++ b/libs/messaging/README.md
@@ -0,0 +1,5 @@
+# messaging
+
+Owned by: platform
+
+Services for sending and recieving messages from different contexts of the same application.
diff --git a/libs/messaging/eslint.config.mjs b/libs/messaging/eslint.config.mjs
new file mode 100644
index 00000000000..9c37d10e3ff
--- /dev/null
+++ b/libs/messaging/eslint.config.mjs
@@ -0,0 +1,3 @@
+import baseConfig from "../../eslint.config.mjs";
+
+export default [...baseConfig];
diff --git a/libs/messaging/jest.config.js b/libs/messaging/jest.config.js
new file mode 100644
index 00000000000..f0450499e31
--- /dev/null
+++ b/libs/messaging/jest.config.js
@@ -0,0 +1,10 @@
+module.exports = {
+  displayName: "messaging",
+  preset: "../../jest.preset.js",
+  testEnvironment: "node",
+  transform: {
+    "^.+\\.[tj]s$": ["ts-jest", { tsconfig: "<rootDir>/tsconfig.spec.json" }],
+  },
+  moduleFileExtensions: ["ts", "js", "html"],
+  coverageDirectory: "../../coverage/libs/messaging",
+};
diff --git a/libs/messaging/package.json b/libs/messaging/package.json
new file mode 100644
index 00000000000..01c8d7cb0e7
--- /dev/null
+++ b/libs/messaging/package.json
@@ -0,0 +1,11 @@
+{
+  "name": "@bitwarden/messaging",
+  "version": "0.0.1",
+  "description": "Services for sending and recieving messages from different contexts of the same application.",
+  "private": true,
+  "type": "commonjs",
+  "main": "dist/index.js",
+  "types": "dist/index.d.ts",
+  "license": "GPL-3.0",
+  "author": "platform"
+}
diff --git a/libs/messaging/project.json b/libs/messaging/project.json
new file mode 100644
index 00000000000..f00e0bd2dc9
--- /dev/null
+++ b/libs/messaging/project.json
@@ -0,0 +1,33 @@
+{
+  "name": "messaging",
+  "$schema": "../../node_modules/nx/schemas/project-schema.json",
+  "sourceRoot": "libs/messaging/src",
+  "projectType": "library",
+  "tags": [],
+  "targets": {
+    "build": {
+      "executor": "@nx/js:tsc",
+      "outputs": ["{options.outputPath}"],
+      "options": {
+        "outputPath": "dist/libs/messaging",
+        "main": "libs/messaging/src/index.ts",
+        "tsConfig": "libs/messaging/tsconfig.lib.json",
+        "assets": ["libs/messaging/*.md"]
+      }
+    },
+    "lint": {
+      "executor": "@nx/eslint:lint",
+      "outputs": ["{options.outputFile}"],
+      "options": {
+        "lintFilePatterns": ["libs/messaging/**/*.ts"]
+      }
+    },
+    "test": {
+      "executor": "@nx/jest:jest",
+      "outputs": ["{workspaceRoot}/coverage/{projectRoot}"],
+      "options": {
+        "jestConfig": "libs/messaging/jest.config.js"
+      }
+    }
+  }
+}
diff --git a/libs/messaging/src/index.ts b/libs/messaging/src/index.ts
new file mode 100644
index 00000000000..9090ff581c1
--- /dev/null
+++ b/libs/messaging/src/index.ts
@@ -0,0 +1,4 @@
+export { MessageListener } from "./message.listener";
+export { MessageSender } from "./message.sender";
+export { Message, CommandDefinition } from "./types";
+export { isExternalMessage, EXTERNAL_SOURCE_TAG } from "./is-external-message";
diff --git a/libs/messaging/src/is-external-message.ts b/libs/messaging/src/is-external-message.ts
new file mode 100644
index 00000000000..46775cb14d6
--- /dev/null
+++ b/libs/messaging/src/is-external-message.ts
@@ -0,0 +1,5 @@
+export const EXTERNAL_SOURCE_TAG = Symbol("externalSource");
+
+export const isExternalMessage = (message: Record<PropertyKey, unknown>) => {
+  return message?.[EXTERNAL_SOURCE_TAG] === true;
+};
diff --git a/libs/common/src/platform/messaging/message.listener.spec.ts b/libs/messaging/src/message.listener.spec.ts
similarity index 55%
rename from libs/common/src/platform/messaging/message.listener.spec.ts
rename to libs/messaging/src/message.listener.spec.ts
index 98bbf1fdc82..19787c6feae 100644
--- a/libs/common/src/platform/messaging/message.listener.spec.ts
+++ b/libs/messaging/src/message.listener.spec.ts
@@ -1,6 +1,4 @@
-import { Subject } from "rxjs";
-
-import { subscribeTo } from "../../../spec/observable-tracker";
+import { bufferCount, firstValueFrom, Subject } from "rxjs";
 
 import { MessageListener } from "./message.listener";
 import { Message, CommandDefinition } from "./types";
@@ -13,35 +11,33 @@ describe("MessageListener", () => {
 
   describe("allMessages$", () => {
     it("runs on all nexts", async () => {
-      const tracker = subscribeTo(sut.allMessages$);
-
-      const pausePromise = tracker.pauseUntilReceived(2);
+      const emissionsPromise = firstValueFrom(sut.allMessages$.pipe(bufferCount(2)));
 
       subject.next({ command: "command1", test: 1 });
       subject.next({ command: "command2", test: 2 });
 
-      await pausePromise;
+      const emissions = await emissionsPromise;
 
-      expect(tracker.emissions[0]).toEqual({ command: "command1", test: 1 });
-      expect(tracker.emissions[1]).toEqual({ command: "command2", test: 2 });
+      expect(emissions[0]).toEqual({ command: "command1", test: 1 });
+      expect(emissions[1]).toEqual({ command: "command2", test: 2 });
     });
   });
 
   describe("messages$", () => {
     it("runs on only my commands", async () => {
-      const tracker = subscribeTo(sut.messages$(testCommandDefinition));
-
-      const pausePromise = tracker.pauseUntilReceived(2);
+      const emissionsPromise = firstValueFrom(
+        sut.messages$(testCommandDefinition).pipe(bufferCount(2)),
+      );
 
       subject.next({ command: "notMyCommand", test: 1 });
       subject.next({ command: "myCommand", test: 2 });
       subject.next({ command: "myCommand", test: 3 });
       subject.next({ command: "notMyCommand", test: 4 });
 
-      await pausePromise;
+      const emissions = await emissionsPromise;
 
-      expect(tracker.emissions[0]).toEqual({ command: "myCommand", test: 2 });
-      expect(tracker.emissions[1]).toEqual({ command: "myCommand", test: 3 });
+      expect(emissions[0]).toEqual({ command: "myCommand", test: 2 });
+      expect(emissions[1]).toEqual({ command: "myCommand", test: 3 });
     });
   });
 });
diff --git a/libs/common/src/platform/messaging/message.listener.ts b/libs/messaging/src/message.listener.ts
similarity index 100%
rename from libs/common/src/platform/messaging/message.listener.ts
rename to libs/messaging/src/message.listener.ts
diff --git a/libs/common/src/platform/messaging/message.sender.ts b/libs/messaging/src/message.sender.ts
similarity index 100%
rename from libs/common/src/platform/messaging/message.sender.ts
rename to libs/messaging/src/message.sender.ts
diff --git a/libs/messaging/src/messaging.spec.ts b/libs/messaging/src/messaging.spec.ts
new file mode 100644
index 00000000000..170b24750c5
--- /dev/null
+++ b/libs/messaging/src/messaging.spec.ts
@@ -0,0 +1,8 @@
+import * as lib from "./index";
+
+describe("messaging", () => {
+  // This test will fail until something is exported from index.ts
+  it("should work", () => {
+    expect(lib).toBeDefined();
+  });
+});
diff --git a/libs/common/src/platform/messaging/types.ts b/libs/messaging/src/types.ts
similarity index 100%
rename from libs/common/src/platform/messaging/types.ts
rename to libs/messaging/src/types.ts
diff --git a/libs/messaging/tsconfig.eslint.json b/libs/messaging/tsconfig.eslint.json
new file mode 100644
index 00000000000..3daf120441a
--- /dev/null
+++ b/libs/messaging/tsconfig.eslint.json
@@ -0,0 +1,6 @@
+{
+  "extends": "../../tsconfig.base.json",
+  "files": [],
+  "include": ["src/**/*.ts", "src/**/*.js"],
+  "exclude": ["**/build", "**/dist"]
+}
diff --git a/libs/messaging/tsconfig.json b/libs/messaging/tsconfig.json
new file mode 100644
index 00000000000..62ebbd94647
--- /dev/null
+++ b/libs/messaging/tsconfig.json
@@ -0,0 +1,13 @@
+{
+  "extends": "../../tsconfig.base.json",
+  "files": [],
+  "include": [],
+  "references": [
+    {
+      "path": "./tsconfig.lib.json"
+    },
+    {
+      "path": "./tsconfig.spec.json"
+    }
+  ]
+}
diff --git a/libs/messaging/tsconfig.lib.json b/libs/messaging/tsconfig.lib.json
new file mode 100644
index 00000000000..1f3b89d988e
--- /dev/null
+++ b/libs/messaging/tsconfig.lib.json
@@ -0,0 +1,16 @@
+{
+  "extends": "./tsconfig.json",
+  "compilerOptions": {
+    "outDir": "../../dist/out-tsc",
+    "declaration": true,
+    "types": ["node"]
+  },
+  "include": [
+    "src/**/*.ts",
+    "../messaging-internal/src/subject-message.sender.spec.ts",
+    "../messaging-internal/src/subject-message.sender.ts",
+    "../messaging-internal/src/helpers.spec.ts",
+    "../messaging-internal/src/helpers.ts"
+  ],
+  "exclude": ["jest.config.js", "src/**/*.spec.ts"]
+}
diff --git a/libs/messaging/tsconfig.spec.json b/libs/messaging/tsconfig.spec.json
new file mode 100644
index 00000000000..2e5b192faff
--- /dev/null
+++ b/libs/messaging/tsconfig.spec.json
@@ -0,0 +1,17 @@
+{
+  "extends": "./tsconfig.json",
+  "compilerOptions": {
+    "outDir": "../../dist/out-tsc",
+    "module": "commonjs",
+    "moduleResolution": "node10",
+    "types": ["jest", "node"]
+  },
+  "include": [
+    "jest.config.ts",
+    "src/**/*.test.ts",
+    "src/**/*.spec.ts",
+    "src/**/*.d.ts",
+    "../messaging-internal/src/subject-message.sender.spec.ts",
+    "../messaging-internal/src/helpers.spec.ts"
+  ]
+}
diff --git a/package-lock.json b/package-lock.json
index 01a9ea8c09c..fbbc4c25b44 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -352,6 +352,15 @@
       "version": "0.0.1",
       "license": "GPL-3.0"
     },
+    "libs/messaging": {
+      "name": "@bitwarden/messaging",
+      "version": "0.0.1",
+      "license": "GPL-3.0"
+    },
+    "libs/messaging-internal": {
+      "version": "0.0.1",
+      "license": "GPL-3.0"
+    },
     "libs/node": {
       "name": "@bitwarden/node",
       "version": "0.0.0",
@@ -4591,6 +4600,14 @@
       "resolved": "libs/logging",
       "link": true
     },
+    "node_modules/@bitwarden/messaging": {
+      "resolved": "libs/messaging",
+      "link": true
+    },
+    "node_modules/@bitwarden/messaging-internal": {
+      "resolved": "libs/messaging-internal",
+      "link": true
+    },
     "node_modules/@bitwarden/node": {
       "resolved": "libs/node",
       "link": true
diff --git a/tsconfig.base.json b/tsconfig.base.json
index c462ab97d37..478fce4bfd8 100644
--- a/tsconfig.base.json
+++ b/tsconfig.base.json
@@ -38,6 +38,8 @@
       "@bitwarden/key-management": ["./libs/key-management/src"],
       "@bitwarden/key-management-ui": ["./libs/key-management-ui/src"],
       "@bitwarden/logging": ["libs/logging/src"],
+      "@bitwarden/messaging": ["libs/messaging/src/index.ts"],
+      "@bitwarden/messaging-internal": ["libs/messaging-internal/src/index.ts"],
       "@bitwarden/node/*": ["./libs/node/src/*"],
       "@bitwarden/nx-plugin": ["libs/nx-plugin/src/index.ts"],
       "@bitwarden/platform": ["./libs/platform/src"],

From 9839087b00a3de91e8b4a87cce4d9e74a201d95b Mon Sep 17 00:00:00 2001
From: Nick Krantz <125900171+nick-livefront@users.noreply.github.com>
Date: Tue, 22 Jul 2025 11:30:22 -0500
Subject: [PATCH 198/239] Only return ciphers when they exist. (#15716)

conditionals within the template are checking for an empty array rather than an empty ciphers property.
---
 .../vault-list-items-container.component.ts               | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

diff --git a/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.ts b/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.ts
index 5fc1c43210c..5a08ed3002b 100644
--- a/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.ts
+++ b/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.ts
@@ -146,14 +146,16 @@ export class VaultListItemsContainerComponent implements AfterViewInit {
       ciphers: PopupCipherViewLike[];
     }[]
   >(() => {
+    const ciphers = this.ciphers();
+
     // Not grouping by type, return a single group with all ciphers
-    if (!this.groupByType()) {
-      return [{ ciphers: this.ciphers() }];
+    if (!this.groupByType() && ciphers.length > 0) {
+      return [{ ciphers }];
     }
 
     const groups: Record<string, PopupCipherViewLike[]> = {};
 
-    this.ciphers().forEach((cipher) => {
+    ciphers.forEach((cipher) => {
       let groupKey = "all";
       switch (CipherViewLikeUtils.getType(cipher)) {
         case CipherType.Card:

From 6aa59d5ba795a5ddd513a913ce4ea93129c65946 Mon Sep 17 00:00:00 2001
From: Andy Pixley <3723676+pixman20@users.noreply.github.com>
Date: Tue, 22 Jul 2025 12:46:02 -0400
Subject: [PATCH 199/239] [BRE-831] Fixing PR target permissions (#15729)

---
 .github/workflows/build-browser-target.yml | 3 ++-
 .github/workflows/build-desktop-target.yml | 3 ++-
 .github/workflows/build-web-target.yml     | 3 ++-
 3 files changed, 6 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/build-browser-target.yml b/.github/workflows/build-browser-target.yml
index ef3beef4b8b..e89a41c1009 100644
--- a/.github/workflows/build-browser-target.yml
+++ b/.github/workflows/build-browser-target.yml
@@ -38,6 +38,7 @@ jobs:
     uses: ./.github/workflows/build-browser.yml
     secrets: inherit
     permissions:
-      contents: read
+      contents: write
+      pull-requests: write
       id-token: write
 
diff --git a/.github/workflows/build-desktop-target.yml b/.github/workflows/build-desktop-target.yml
index 31ac819a3e6..96a0e6880f8 100644
--- a/.github/workflows/build-desktop-target.yml
+++ b/.github/workflows/build-desktop-target.yml
@@ -38,6 +38,7 @@ jobs:
     uses: ./.github/workflows/build-desktop.yml
     secrets: inherit
     permissions:
-      contents: read
+      contents: write
+      pull-requests: write
       id-token: write
 
diff --git a/.github/workflows/build-web-target.yml b/.github/workflows/build-web-target.yml
index b1055885400..2f9e201ac60 100644
--- a/.github/workflows/build-web-target.yml
+++ b/.github/workflows/build-web-target.yml
@@ -37,7 +37,8 @@ jobs:
     uses: ./.github/workflows/build-web.yml
     secrets: inherit
     permissions:
-      contents: read
+      contents: write
+      pull-requests: write
       id-token: write
       security-events: write
 

From 8aeeb92958bb6bd9396444ba08ccfdd52b730390 Mon Sep 17 00:00:00 2001
From: Oscar Hinton <Hinton@users.noreply.github.com>
Date: Tue, 22 Jul 2025 18:48:00 +0200
Subject: [PATCH 200/239] [PM-24030] Migrate abstract services in libs/common
 strict TS (#15727)

Migrates the abstract classes in libs/common to be strict ts compatible. Primarily by adding abstract to every field and converting it to a function syntax instead of lambda.
---
 libs/common/src/abstractions/api.service.ts   | 446 ++++++++++--------
 .../event/event-collection.service.ts         |  10 +-
 .../event/event-upload.service.ts             |   4 +-
 .../org-domain-api.service.abstraction.ts     |  22 +-
 .../org-domain.service.abstraction.ts         |  16 +-
 .../organization-api.service.abstraction.ts   |  94 ++--
 .../organization.service.abstraction.ts       |  19 +-
 .../abstractions/provider.service.ts          |  10 +-
 .../provider-api.service.abstraction.ts       |  24 +-
 .../src/auth/abstractions/account.service.ts  |  14 +-
 .../abstractions/anonymous-hub.service.ts     |   6 +-
 .../src/auth/abstractions/avatar.service.ts   |   4 +-
 .../devices-api.service.abstraction.ts        |  24 +-
 .../src/auth/abstractions/token.service.ts    |  60 ++-
 ...er-verification-api.service.abstraction.ts |  10 +-
 .../user-verification.service.abstraction.ts  |  22 +-
 .../webauthn-login-api.service.abstraction.ts |   6 +-
 ...authn-login-prf-key.service.abstraction.ts |   6 +-
 .../webauthn-login.service.abstraction.ts     |  10 +-
 ...account-billing-api.service.abstraction.ts |  11 +-
 .../billing-account-profile-state.service.ts  |   2 -
 .../billing-api.service.abstraction.ts        |  67 ++-
 .../organization-billing.service.ts           |  20 +-
 .../device-trust.service.abstraction.ts       |  32 +-
 .../vault-timeout-settings.service.ts         |  18 +-
 .../abstractions/vault-timeout.service.ts     |   8 +-
 ...fido2-authenticator.service.abstraction.ts |  12 +-
 .../fido2/fido2-client.service.abstraction.ts |  12 +-
 ...ido2-user-interface.service.abstraction.ts |  22 +-
 .../platform/abstractions/state.service.ts    |  30 +-
 .../password-strength.service.abstraction.ts  |   8 +-
 .../services/send-api.service.abstraction.ts  |  37 +-
 .../send/services/send.service.abstraction.ts |  28 +-
 .../src/vault/abstractions/cipher.service.ts  |   2 -
 .../file-upload/cipher-file-upload.service.ts |   6 +-
 .../folder/folder-api.service.abstraction.ts  |  13 +-
 .../folder/folder.service.abstraction.ts      |  32 +-
 .../src/vault/abstractions/search.service.ts  |  22 +-
 .../vault-settings/vault-settings.service.ts  |  20 +-
 39 files changed, 595 insertions(+), 614 deletions(-)

diff --git a/libs/common/src/abstractions/api.service.ts b/libs/common/src/abstractions/api.service.ts
index 4969e87f1c6..015a742c1ac 100644
--- a/libs/common/src/abstractions/api.service.ts
+++ b/libs/common/src/abstractions/api.service.ts
@@ -1,5 +1,3 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 // This import has been flagged as unallowed for this class. It may be involved in a circular dependency loop.
 // eslint-disable-next-line no-restricted-imports
 import {
@@ -128,7 +126,7 @@ import { OptionalCipherResponse } from "../vault/models/response/optional-cipher
  * of this decision please read https://contributing.bitwarden.com/architecture/adr/refactor-api-service.
  */
 export abstract class ApiService {
-  send: (
+  abstract send(
     method: "GET" | "POST" | "PUT" | "DELETE" | "PATCH",
     path: string,
     body: any,
@@ -136,196 +134,225 @@ export abstract class ApiService {
     hasResponse: boolean,
     apiUrl?: string | null,
     alterHeaders?: (headers: Headers) => void,
-  ) => Promise<any>;
+  ): Promise<any>;
 
-  postIdentityToken: (
+  abstract postIdentityToken(
     request:
       | PasswordTokenRequest
       | SsoTokenRequest
       | UserApiTokenRequest
       | WebAuthnLoginTokenRequest,
-  ) => Promise<
+  ): Promise<
     IdentityTokenResponse | IdentityTwoFactorResponse | IdentityDeviceVerificationResponse
   >;
-  refreshIdentityToken: () => Promise<any>;
+  abstract refreshIdentityToken(): Promise<any>;
 
-  getProfile: () => Promise<ProfileResponse>;
-  getUserSubscription: () => Promise<SubscriptionResponse>;
-  getTaxInfo: () => Promise<TaxInfoResponse>;
-  putProfile: (request: UpdateProfileRequest) => Promise<ProfileResponse>;
-  putAvatar: (request: UpdateAvatarRequest) => Promise<ProfileResponse>;
-  putTaxInfo: (request: TaxInfoUpdateRequest) => Promise<any>;
-  postPrelogin: (request: PreloginRequest) => Promise<PreloginResponse>;
-  postEmailToken: (request: EmailTokenRequest) => Promise<any>;
-  postEmail: (request: EmailRequest) => Promise<any>;
-  postSetKeyConnectorKey: (request: SetKeyConnectorKeyRequest) => Promise<any>;
-  postSecurityStamp: (request: SecretVerificationRequest) => Promise<any>;
-  getAccountRevisionDate: () => Promise<number>;
-  postPasswordHint: (request: PasswordHintRequest) => Promise<any>;
-  postPremium: (data: FormData) => Promise<PaymentResponse>;
-  postReinstatePremium: () => Promise<any>;
-  postAccountStorage: (request: StorageRequest) => Promise<PaymentResponse>;
-  postAccountPayment: (request: PaymentRequest) => Promise<void>;
-  postAccountLicense: (data: FormData) => Promise<any>;
-  postAccountKeys: (request: KeysRequest) => Promise<any>;
-  postAccountVerifyEmail: () => Promise<any>;
-  postAccountVerifyEmailToken: (request: VerifyEmailRequest) => Promise<any>;
-  postAccountRecoverDelete: (request: DeleteRecoverRequest) => Promise<any>;
-  postAccountRecoverDeleteToken: (request: VerifyDeleteRecoverRequest) => Promise<any>;
-  postAccountKdf: (request: KdfRequest) => Promise<any>;
-  postUserApiKey: (id: string, request: SecretVerificationRequest) => Promise<ApiKeyResponse>;
-  postUserRotateApiKey: (id: string, request: SecretVerificationRequest) => Promise<ApiKeyResponse>;
-  postConvertToKeyConnector: () => Promise<void>;
+  abstract getProfile(): Promise<ProfileResponse>;
+  abstract getUserSubscription(): Promise<SubscriptionResponse>;
+  abstract getTaxInfo(): Promise<TaxInfoResponse>;
+  abstract putProfile(request: UpdateProfileRequest): Promise<ProfileResponse>;
+  abstract putAvatar(request: UpdateAvatarRequest): Promise<ProfileResponse>;
+  abstract putTaxInfo(request: TaxInfoUpdateRequest): Promise<any>;
+  abstract postPrelogin(request: PreloginRequest): Promise<PreloginResponse>;
+  abstract postEmailToken(request: EmailTokenRequest): Promise<any>;
+  abstract postEmail(request: EmailRequest): Promise<any>;
+  abstract postSetKeyConnectorKey(request: SetKeyConnectorKeyRequest): Promise<any>;
+  abstract postSecurityStamp(request: SecretVerificationRequest): Promise<any>;
+  abstract getAccountRevisionDate(): Promise<number>;
+  abstract postPasswordHint(request: PasswordHintRequest): Promise<any>;
+  abstract postPremium(data: FormData): Promise<PaymentResponse>;
+  abstract postReinstatePremium(): Promise<any>;
+  abstract postAccountStorage(request: StorageRequest): Promise<PaymentResponse>;
+  abstract postAccountPayment(request: PaymentRequest): Promise<void>;
+  abstract postAccountLicense(data: FormData): Promise<any>;
+  abstract postAccountKeys(request: KeysRequest): Promise<any>;
+  abstract postAccountVerifyEmail(): Promise<any>;
+  abstract postAccountVerifyEmailToken(request: VerifyEmailRequest): Promise<any>;
+  abstract postAccountRecoverDelete(request: DeleteRecoverRequest): Promise<any>;
+  abstract postAccountRecoverDeleteToken(request: VerifyDeleteRecoverRequest): Promise<any>;
+  abstract postAccountKdf(request: KdfRequest): Promise<any>;
+  abstract postUserApiKey(id: string, request: SecretVerificationRequest): Promise<ApiKeyResponse>;
+  abstract postUserRotateApiKey(
+    id: string,
+    request: SecretVerificationRequest,
+  ): Promise<ApiKeyResponse>;
+  abstract postConvertToKeyConnector(): Promise<void>;
   //passwordless
-  getAuthRequest: (id: string) => Promise<AuthRequestResponse>;
-  putAuthRequest: (id: string, request: PasswordlessAuthRequest) => Promise<AuthRequestResponse>;
-  getAuthRequests: () => Promise<ListResponse<AuthRequestResponse>>;
-  getLastAuthRequest: () => Promise<AuthRequestResponse>;
+  abstract getAuthRequest(id: string): Promise<AuthRequestResponse>;
+  abstract putAuthRequest(
+    id: string,
+    request: PasswordlessAuthRequest,
+  ): Promise<AuthRequestResponse>;
+  abstract getAuthRequests(): Promise<ListResponse<AuthRequestResponse>>;
+  abstract getLastAuthRequest(): Promise<AuthRequestResponse>;
 
-  getUserBillingHistory: () => Promise<BillingHistoryResponse>;
-  getUserBillingPayment: () => Promise<BillingPaymentResponse>;
+  abstract getUserBillingHistory(): Promise<BillingHistoryResponse>;
+  abstract getUserBillingPayment(): Promise<BillingPaymentResponse>;
 
-  getCipher: (id: string) => Promise<CipherResponse>;
-  getFullCipherDetails: (id: string) => Promise<CipherResponse>;
-  getCipherAdmin: (id: string) => Promise<CipherResponse>;
-  getAttachmentData: (
+  abstract getCipher(id: string): Promise<CipherResponse>;
+  abstract getFullCipherDetails(id: string): Promise<CipherResponse>;
+  abstract getCipherAdmin(id: string): Promise<CipherResponse>;
+  abstract getAttachmentData(
     cipherId: string,
     attachmentId: string,
     emergencyAccessId?: string,
-  ) => Promise<AttachmentResponse>;
-  getAttachmentDataAdmin: (cipherId: string, attachmentId: string) => Promise<AttachmentResponse>;
-  getCiphersOrganization: (organizationId: string) => Promise<ListResponse<CipherResponse>>;
-  postCipher: (request: CipherRequest) => Promise<CipherResponse>;
-  postCipherCreate: (request: CipherCreateRequest) => Promise<CipherResponse>;
-  postCipherAdmin: (request: CipherCreateRequest) => Promise<CipherResponse>;
-  putCipher: (id: string, request: CipherRequest) => Promise<CipherResponse>;
-  putPartialCipher: (id: string, request: CipherPartialRequest) => Promise<CipherResponse>;
-  putCipherAdmin: (id: string, request: CipherRequest) => Promise<CipherResponse>;
-  deleteCipher: (id: string) => Promise<any>;
-  deleteCipherAdmin: (id: string) => Promise<any>;
-  deleteManyCiphers: (request: CipherBulkDeleteRequest) => Promise<any>;
-  deleteManyCiphersAdmin: (request: CipherBulkDeleteRequest) => Promise<any>;
-  putMoveCiphers: (request: CipherBulkMoveRequest) => Promise<any>;
-  putShareCipher: (id: string, request: CipherShareRequest) => Promise<CipherResponse>;
-  putShareCiphers: (request: CipherBulkShareRequest) => Promise<ListResponse<CipherResponse>>;
-  putCipherCollections: (
+  ): Promise<AttachmentResponse>;
+  abstract getAttachmentDataAdmin(
+    cipherId: string,
+    attachmentId: string,
+  ): Promise<AttachmentResponse>;
+  abstract getCiphersOrganization(organizationId: string): Promise<ListResponse<CipherResponse>>;
+  abstract postCipher(request: CipherRequest): Promise<CipherResponse>;
+  abstract postCipherCreate(request: CipherCreateRequest): Promise<CipherResponse>;
+  abstract postCipherAdmin(request: CipherCreateRequest): Promise<CipherResponse>;
+  abstract putCipher(id: string, request: CipherRequest): Promise<CipherResponse>;
+  abstract putPartialCipher(id: string, request: CipherPartialRequest): Promise<CipherResponse>;
+  abstract putCipherAdmin(id: string, request: CipherRequest): Promise<CipherResponse>;
+  abstract deleteCipher(id: string): Promise<any>;
+  abstract deleteCipherAdmin(id: string): Promise<any>;
+  abstract deleteManyCiphers(request: CipherBulkDeleteRequest): Promise<any>;
+  abstract deleteManyCiphersAdmin(request: CipherBulkDeleteRequest): Promise<any>;
+  abstract putMoveCiphers(request: CipherBulkMoveRequest): Promise<any>;
+  abstract putShareCipher(id: string, request: CipherShareRequest): Promise<CipherResponse>;
+  abstract putShareCiphers(request: CipherBulkShareRequest): Promise<ListResponse<CipherResponse>>;
+  abstract putCipherCollections(
     id: string,
     request: CipherCollectionsRequest,
-  ) => Promise<OptionalCipherResponse>;
-  putCipherCollectionsAdmin: (id: string, request: CipherCollectionsRequest) => Promise<any>;
-  postPurgeCiphers: (request: SecretVerificationRequest, organizationId?: string) => Promise<any>;
-  putDeleteCipher: (id: string) => Promise<any>;
-  putDeleteCipherAdmin: (id: string) => Promise<any>;
-  putDeleteManyCiphers: (request: CipherBulkDeleteRequest) => Promise<any>;
-  putDeleteManyCiphersAdmin: (request: CipherBulkDeleteRequest) => Promise<any>;
-  putRestoreCipher: (id: string) => Promise<CipherResponse>;
-  putRestoreCipherAdmin: (id: string) => Promise<CipherResponse>;
-  putRestoreManyCiphers: (
+  ): Promise<OptionalCipherResponse>;
+  abstract putCipherCollectionsAdmin(id: string, request: CipherCollectionsRequest): Promise<any>;
+  abstract postPurgeCiphers(
+    request: SecretVerificationRequest,
+    organizationId?: string,
+  ): Promise<any>;
+  abstract putDeleteCipher(id: string): Promise<any>;
+  abstract putDeleteCipherAdmin(id: string): Promise<any>;
+  abstract putDeleteManyCiphers(request: CipherBulkDeleteRequest): Promise<any>;
+  abstract putDeleteManyCiphersAdmin(request: CipherBulkDeleteRequest): Promise<any>;
+  abstract putRestoreCipher(id: string): Promise<CipherResponse>;
+  abstract putRestoreCipherAdmin(id: string): Promise<CipherResponse>;
+  abstract putRestoreManyCiphers(
     request: CipherBulkRestoreRequest,
-  ) => Promise<ListResponse<CipherResponse>>;
-  putRestoreManyCiphersAdmin: (
+  ): Promise<ListResponse<CipherResponse>>;
+  abstract putRestoreManyCiphersAdmin(
     request: CipherBulkRestoreRequest,
-  ) => Promise<ListResponse<CipherResponse>>;
+  ): Promise<ListResponse<CipherResponse>>;
 
-  postCipherAttachment: (
+  abstract postCipherAttachment(
     id: string,
     request: AttachmentRequest,
-  ) => Promise<AttachmentUploadDataResponse>;
-  deleteCipherAttachment: (id: string, attachmentId: string) => Promise<any>;
-  deleteCipherAttachmentAdmin: (id: string, attachmentId: string) => Promise<any>;
-  postShareCipherAttachment: (
+  ): Promise<AttachmentUploadDataResponse>;
+  abstract deleteCipherAttachment(id: string, attachmentId: string): Promise<any>;
+  abstract deleteCipherAttachmentAdmin(id: string, attachmentId: string): Promise<any>;
+  abstract postShareCipherAttachment(
     id: string,
     attachmentId: string,
     data: FormData,
     organizationId: string,
-  ) => Promise<any>;
-  renewAttachmentUploadUrl: (
+  ): Promise<any>;
+  abstract renewAttachmentUploadUrl(
     id: string,
     attachmentId: string,
-  ) => Promise<AttachmentUploadDataResponse>;
-  postAttachmentFile: (id: string, attachmentId: string, data: FormData) => Promise<any>;
+  ): Promise<AttachmentUploadDataResponse>;
+  abstract postAttachmentFile(id: string, attachmentId: string, data: FormData): Promise<any>;
 
-  getUserCollections: () => Promise<ListResponse<CollectionResponse>>;
-  getCollections: (organizationId: string) => Promise<ListResponse<CollectionResponse>>;
-  getCollectionUsers: (organizationId: string, id: string) => Promise<SelectionReadOnlyResponse[]>;
-  getCollectionAccessDetails: (
+  abstract getUserCollections(): Promise<ListResponse<CollectionResponse>>;
+  abstract getCollections(organizationId: string): Promise<ListResponse<CollectionResponse>>;
+  abstract getCollectionUsers(
     organizationId: string,
     id: string,
-  ) => Promise<CollectionAccessDetailsResponse>;
-  getManyCollectionsWithAccessDetails: (
+  ): Promise<SelectionReadOnlyResponse[]>;
+  abstract getCollectionAccessDetails(
+    organizationId: string,
+    id: string,
+  ): Promise<CollectionAccessDetailsResponse>;
+  abstract getManyCollectionsWithAccessDetails(
     orgId: string,
-  ) => Promise<ListResponse<CollectionAccessDetailsResponse>>;
-  postCollection: (
+  ): Promise<ListResponse<CollectionAccessDetailsResponse>>;
+  abstract postCollection(
     organizationId: string,
     request: CollectionRequest,
-  ) => Promise<CollectionDetailsResponse>;
-  putCollection: (
+  ): Promise<CollectionDetailsResponse>;
+  abstract putCollection(
     organizationId: string,
     id: string,
     request: CollectionRequest,
-  ) => Promise<CollectionDetailsResponse>;
-  deleteCollection: (organizationId: string, id: string) => Promise<any>;
-  deleteManyCollections: (organizationId: string, collectionIds: string[]) => Promise<any>;
+  ): Promise<CollectionDetailsResponse>;
+  abstract deleteCollection(organizationId: string, id: string): Promise<any>;
+  abstract deleteManyCollections(organizationId: string, collectionIds: string[]): Promise<any>;
 
-  getGroupUsers: (organizationId: string, id: string) => Promise<string[]>;
-  deleteGroupUser: (organizationId: string, id: string, organizationUserId: string) => Promise<any>;
-
-  getSync: () => Promise<SyncResponse>;
-
-  getSettingsDomains: () => Promise<DomainsResponse>;
-  putSettingsDomains: (request: UpdateDomainsRequest) => Promise<DomainsResponse>;
-
-  getTwoFactorProviders: () => Promise<ListResponse<TwoFactorProviderResponse>>;
-  getTwoFactorOrganizationProviders: (
+  abstract getGroupUsers(organizationId: string, id: string): Promise<string[]>;
+  abstract deleteGroupUser(
     organizationId: string,
-  ) => Promise<ListResponse<TwoFactorProviderResponse>>;
-  getTwoFactorAuthenticator: (
+    id: string,
+    organizationUserId: string,
+  ): Promise<any>;
+
+  abstract getSync(): Promise<SyncResponse>;
+
+  abstract getSettingsDomains(): Promise<DomainsResponse>;
+  abstract putSettingsDomains(request: UpdateDomainsRequest): Promise<DomainsResponse>;
+
+  abstract getTwoFactorProviders(): Promise<ListResponse<TwoFactorProviderResponse>>;
+  abstract getTwoFactorOrganizationProviders(
+    organizationId: string,
+  ): Promise<ListResponse<TwoFactorProviderResponse>>;
+  abstract getTwoFactorAuthenticator(
     request: SecretVerificationRequest,
-  ) => Promise<TwoFactorAuthenticatorResponse>;
-  getTwoFactorEmail: (request: SecretVerificationRequest) => Promise<TwoFactorEmailResponse>;
-  getTwoFactorDuo: (request: SecretVerificationRequest) => Promise<TwoFactorDuoResponse>;
-  getTwoFactorOrganizationDuo: (
+  ): Promise<TwoFactorAuthenticatorResponse>;
+  abstract getTwoFactorEmail(request: SecretVerificationRequest): Promise<TwoFactorEmailResponse>;
+  abstract getTwoFactorDuo(request: SecretVerificationRequest): Promise<TwoFactorDuoResponse>;
+  abstract getTwoFactorOrganizationDuo(
     organizationId: string,
     request: SecretVerificationRequest,
-  ) => Promise<TwoFactorDuoResponse>;
-  getTwoFactorYubiKey: (request: SecretVerificationRequest) => Promise<TwoFactorYubiKeyResponse>;
-  getTwoFactorWebAuthn: (request: SecretVerificationRequest) => Promise<TwoFactorWebAuthnResponse>;
-  getTwoFactorWebAuthnChallenge: (request: SecretVerificationRequest) => Promise<ChallengeResponse>;
-  getTwoFactorRecover: (request: SecretVerificationRequest) => Promise<TwoFactorRecoverResponse>;
-  putTwoFactorAuthenticator: (
+  ): Promise<TwoFactorDuoResponse>;
+  abstract getTwoFactorYubiKey(
+    request: SecretVerificationRequest,
+  ): Promise<TwoFactorYubiKeyResponse>;
+  abstract getTwoFactorWebAuthn(
+    request: SecretVerificationRequest,
+  ): Promise<TwoFactorWebAuthnResponse>;
+  abstract getTwoFactorWebAuthnChallenge(
+    request: SecretVerificationRequest,
+  ): Promise<ChallengeResponse>;
+  abstract getTwoFactorRecover(
+    request: SecretVerificationRequest,
+  ): Promise<TwoFactorRecoverResponse>;
+  abstract putTwoFactorAuthenticator(
     request: UpdateTwoFactorAuthenticatorRequest,
-  ) => Promise<TwoFactorAuthenticatorResponse>;
-  deleteTwoFactorAuthenticator: (
+  ): Promise<TwoFactorAuthenticatorResponse>;
+  abstract deleteTwoFactorAuthenticator(
     request: DisableTwoFactorAuthenticatorRequest,
-  ) => Promise<TwoFactorProviderResponse>;
-  putTwoFactorEmail: (request: UpdateTwoFactorEmailRequest) => Promise<TwoFactorEmailResponse>;
-  putTwoFactorDuo: (request: UpdateTwoFactorDuoRequest) => Promise<TwoFactorDuoResponse>;
-  putTwoFactorOrganizationDuo: (
+  ): Promise<TwoFactorProviderResponse>;
+  abstract putTwoFactorEmail(request: UpdateTwoFactorEmailRequest): Promise<TwoFactorEmailResponse>;
+  abstract putTwoFactorDuo(request: UpdateTwoFactorDuoRequest): Promise<TwoFactorDuoResponse>;
+  abstract putTwoFactorOrganizationDuo(
     organizationId: string,
     request: UpdateTwoFactorDuoRequest,
-  ) => Promise<TwoFactorDuoResponse>;
-  putTwoFactorYubiKey: (
+  ): Promise<TwoFactorDuoResponse>;
+  abstract putTwoFactorYubiKey(
     request: UpdateTwoFactorYubikeyOtpRequest,
-  ) => Promise<TwoFactorYubiKeyResponse>;
-  putTwoFactorWebAuthn: (
+  ): Promise<TwoFactorYubiKeyResponse>;
+  abstract putTwoFactorWebAuthn(
     request: UpdateTwoFactorWebAuthnRequest,
-  ) => Promise<TwoFactorWebAuthnResponse>;
-  deleteTwoFactorWebAuthn: (
+  ): Promise<TwoFactorWebAuthnResponse>;
+  abstract deleteTwoFactorWebAuthn(
     request: UpdateTwoFactorWebAuthnDeleteRequest,
-  ) => Promise<TwoFactorWebAuthnResponse>;
-  putTwoFactorDisable: (request: TwoFactorProviderRequest) => Promise<TwoFactorProviderResponse>;
-  putTwoFactorOrganizationDisable: (
+  ): Promise<TwoFactorWebAuthnResponse>;
+  abstract putTwoFactorDisable(
+    request: TwoFactorProviderRequest,
+  ): Promise<TwoFactorProviderResponse>;
+  abstract putTwoFactorOrganizationDisable(
     organizationId: string,
     request: TwoFactorProviderRequest,
-  ) => Promise<TwoFactorProviderResponse>;
-  postTwoFactorEmailSetup: (request: TwoFactorEmailRequest) => Promise<any>;
-  postTwoFactorEmail: (request: TwoFactorEmailRequest) => Promise<any>;
-  getDeviceVerificationSettings: () => Promise<DeviceVerificationResponse>;
-  putDeviceVerificationSettings: (
+  ): Promise<TwoFactorProviderResponse>;
+  abstract postTwoFactorEmailSetup(request: TwoFactorEmailRequest): Promise<any>;
+  abstract postTwoFactorEmail(request: TwoFactorEmailRequest): Promise<any>;
+  abstract getDeviceVerificationSettings(): Promise<DeviceVerificationResponse>;
+  abstract putDeviceVerificationSettings(
     request: DeviceVerificationRequest,
-  ) => Promise<DeviceVerificationResponse>;
+  ): Promise<DeviceVerificationResponse>;
 
-  getCloudCommunicationsEnabled: () => Promise<boolean>;
+  abstract getCloudCommunicationsEnabled(): Promise<boolean>;
   abstract getOrganizationConnection<TConfig extends OrganizationConnectionConfigApis>(
     id: string,
     type: OrganizationConnectionType,
@@ -340,136 +367,147 @@ export abstract class ApiService {
     configType: { new (response: any): TConfig },
     organizationConnectionId: string,
   ): Promise<OrganizationConnectionResponse<TConfig>>;
-  deleteOrganizationConnection: (id: string) => Promise<void>;
-  getPlans: () => Promise<ListResponse<PlanResponse>>;
+  abstract deleteOrganizationConnection(id: string): Promise<void>;
+  abstract getPlans(): Promise<ListResponse<PlanResponse>>;
 
-  getProviderUsers: (providerId: string) => Promise<ListResponse<ProviderUserUserDetailsResponse>>;
-  getProviderUser: (providerId: string, id: string) => Promise<ProviderUserResponse>;
-  postProviderUserInvite: (providerId: string, request: ProviderUserInviteRequest) => Promise<any>;
-  postProviderUserReinvite: (providerId: string, id: string) => Promise<any>;
-  postManyProviderUserReinvite: (
+  abstract getProviderUsers(
+    providerId: string,
+  ): Promise<ListResponse<ProviderUserUserDetailsResponse>>;
+  abstract getProviderUser(providerId: string, id: string): Promise<ProviderUserResponse>;
+  abstract postProviderUserInvite(
+    providerId: string,
+    request: ProviderUserInviteRequest,
+  ): Promise<any>;
+  abstract postProviderUserReinvite(providerId: string, id: string): Promise<any>;
+  abstract postManyProviderUserReinvite(
     providerId: string,
     request: ProviderUserBulkRequest,
-  ) => Promise<ListResponse<ProviderUserBulkResponse>>;
-  postProviderUserAccept: (
+  ): Promise<ListResponse<ProviderUserBulkResponse>>;
+  abstract postProviderUserAccept(
     providerId: string,
     id: string,
     request: ProviderUserAcceptRequest,
-  ) => Promise<any>;
-  postProviderUserConfirm: (
+  ): Promise<any>;
+  abstract postProviderUserConfirm(
     providerId: string,
     id: string,
     request: ProviderUserConfirmRequest,
-  ) => Promise<any>;
-  postProviderUsersPublicKey: (
+  ): Promise<any>;
+  abstract postProviderUsersPublicKey(
     providerId: string,
     request: ProviderUserBulkRequest,
-  ) => Promise<ListResponse<ProviderUserBulkPublicKeyResponse>>;
-  postProviderUserBulkConfirm: (
+  ): Promise<ListResponse<ProviderUserBulkPublicKeyResponse>>;
+  abstract postProviderUserBulkConfirm(
     providerId: string,
     request: ProviderUserBulkConfirmRequest,
-  ) => Promise<ListResponse<ProviderUserBulkResponse>>;
-  putProviderUser: (
+  ): Promise<ListResponse<ProviderUserBulkResponse>>;
+  abstract putProviderUser(
     providerId: string,
     id: string,
     request: ProviderUserUpdateRequest,
-  ) => Promise<any>;
-  deleteProviderUser: (organizationId: string, id: string) => Promise<any>;
-  deleteManyProviderUsers: (
+  ): Promise<any>;
+  abstract deleteProviderUser(organizationId: string, id: string): Promise<any>;
+  abstract deleteManyProviderUsers(
     providerId: string,
     request: ProviderUserBulkRequest,
-  ) => Promise<ListResponse<ProviderUserBulkResponse>>;
-  getProviderClients: (
+  ): Promise<ListResponse<ProviderUserBulkResponse>>;
+  abstract getProviderClients(
     providerId: string,
-  ) => Promise<ListResponse<ProviderOrganizationOrganizationDetailsResponse>>;
-  postProviderAddOrganization: (
+  ): Promise<ListResponse<ProviderOrganizationOrganizationDetailsResponse>>;
+  abstract postProviderAddOrganization(
     providerId: string,
     request: ProviderAddOrganizationRequest,
-  ) => Promise<any>;
-  postProviderCreateOrganization: (
+  ): Promise<any>;
+  abstract postProviderCreateOrganization(
     providerId: string,
     request: ProviderOrganizationCreateRequest,
-  ) => Promise<ProviderOrganizationResponse>;
-  deleteProviderOrganization: (providerId: string, organizationId: string) => Promise<any>;
+  ): Promise<ProviderOrganizationResponse>;
+  abstract deleteProviderOrganization(providerId: string, organizationId: string): Promise<any>;
 
-  getEvents: (start: string, end: string, token: string) => Promise<ListResponse<EventResponse>>;
-  getEventsCipher: (
+  abstract getEvents(
+    start: string,
+    end: string,
+    token: string,
+  ): Promise<ListResponse<EventResponse>>;
+  abstract getEventsCipher(
     id: string,
     start: string,
     end: string,
     token: string,
-  ) => Promise<ListResponse<EventResponse>>;
-  getEventsOrganization: (
+  ): Promise<ListResponse<EventResponse>>;
+  abstract getEventsOrganization(
     id: string,
     start: string,
     end: string,
     token: string,
-  ) => Promise<ListResponse<EventResponse>>;
-  getEventsOrganizationUser: (
+  ): Promise<ListResponse<EventResponse>>;
+  abstract getEventsOrganizationUser(
     organizationId: string,
     id: string,
     start: string,
     end: string,
     token: string,
-  ) => Promise<ListResponse<EventResponse>>;
-  getEventsProvider: (
+  ): Promise<ListResponse<EventResponse>>;
+  abstract getEventsProvider(
     id: string,
     start: string,
     end: string,
     token: string,
-  ) => Promise<ListResponse<EventResponse>>;
-  getEventsProviderUser: (
+  ): Promise<ListResponse<EventResponse>>;
+  abstract getEventsProviderUser(
     providerId: string,
     id: string,
     start: string,
     end: string,
     token: string,
-  ) => Promise<ListResponse<EventResponse>>;
+  ): Promise<ListResponse<EventResponse>>;
 
   /**
    * Posts events for a user
    * @param request The array of events to upload
    * @param userId The optional user id the events belong to. If no user id is provided the active user id is used.
    */
-  postEventsCollect: (request: EventRequest[], userId?: UserId) => Promise<any>;
+  abstract postEventsCollect(request: EventRequest[], userId?: UserId): Promise<any>;
 
-  deleteSsoUser: (organizationId: string) => Promise<void>;
-  getSsoUserIdentifier: () => Promise<string>;
+  abstract deleteSsoUser(organizationId: string): Promise<void>;
+  abstract getSsoUserIdentifier(): Promise<string>;
 
-  getUserPublicKey: (id: string) => Promise<UserKeyResponse>;
+  abstract getUserPublicKey(id: string): Promise<UserKeyResponse>;
 
-  getHibpBreach: (username: string) => Promise<BreachAccountResponse[]>;
+  abstract getHibpBreach(username: string): Promise<BreachAccountResponse[]>;
 
-  postBitPayInvoice: (request: BitPayInvoiceRequest) => Promise<string>;
-  postSetupPayment: () => Promise<string>;
+  abstract postBitPayInvoice(request: BitPayInvoiceRequest): Promise<string>;
+  abstract postSetupPayment(): Promise<string>;
 
-  getActiveBearerToken: () => Promise<string>;
-  fetch: (request: Request) => Promise<Response>;
-  nativeFetch: (request: Request) => Promise<Response>;
+  abstract getActiveBearerToken(): Promise<string>;
+  abstract fetch(request: Request): Promise<Response>;
+  abstract nativeFetch(request: Request): Promise<Response>;
 
-  preValidateSso: (identifier: string) => Promise<SsoPreValidateResponse>;
+  abstract preValidateSso(identifier: string): Promise<SsoPreValidateResponse>;
 
-  postCreateSponsorship: (
+  abstract postCreateSponsorship(
     sponsorshipOrgId: string,
     request: OrganizationSponsorshipCreateRequest,
-  ) => Promise<void>;
-  getSponsorshipSyncStatus: (
+  ): Promise<void>;
+  abstract getSponsorshipSyncStatus(
     sponsoredOrgId: string,
-  ) => Promise<OrganizationSponsorshipSyncStatusResponse>;
-  deleteRemoveSponsorship: (sponsoringOrgId: string) => Promise<void>;
-  postPreValidateSponsorshipToken: (
+  ): Promise<OrganizationSponsorshipSyncStatusResponse>;
+  abstract deleteRemoveSponsorship(sponsoringOrgId: string): Promise<void>;
+  abstract postPreValidateSponsorshipToken(
     sponsorshipToken: string,
-  ) => Promise<PreValidateSponsorshipResponse>;
-  postRedeemSponsorship: (
+  ): Promise<PreValidateSponsorshipResponse>;
+  abstract postRedeemSponsorship(
     sponsorshipToken: string,
     request: OrganizationSponsorshipRedeemRequest,
-  ) => Promise<void>;
+  ): Promise<void>;
 
-  getMasterKeyFromKeyConnector: (keyConnectorUrl: string) => Promise<KeyConnectorUserKeyResponse>;
-  postUserKeyToKeyConnector: (
+  abstract getMasterKeyFromKeyConnector(
+    keyConnectorUrl: string,
+  ): Promise<KeyConnectorUserKeyResponse>;
+  abstract postUserKeyToKeyConnector(
     keyConnectorUrl: string,
     request: KeyConnectorUserKeyRequest,
-  ) => Promise<void>;
-  getKeyConnectorAlive: (keyConnectorUrl: string) => Promise<void>;
-  getOrganizationExport: (organizationId: string) => Promise<OrganizationExportResponse>;
+  ): Promise<void>;
+  abstract getKeyConnectorAlive(keyConnectorUrl: string): Promise<void>;
+  abstract getOrganizationExport(organizationId: string): Promise<OrganizationExportResponse>;
 }
diff --git a/libs/common/src/abstractions/event/event-collection.service.ts b/libs/common/src/abstractions/event/event-collection.service.ts
index 6ca94d93a62..4f06b76c5eb 100644
--- a/libs/common/src/abstractions/event/event-collection.service.ts
+++ b/libs/common/src/abstractions/event/event-collection.service.ts
@@ -1,18 +1,16 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import { EventType } from "../../enums";
 import { CipherView } from "../../vault/models/view/cipher.view";
 
 export abstract class EventCollectionService {
-  collectMany: (
+  abstract collectMany(
     eventType: EventType,
     ciphers: CipherView[],
     uploadImmediately?: boolean,
-  ) => Promise<any>;
-  collect: (
+  ): Promise<any>;
+  abstract collect(
     eventType: EventType,
     cipherId?: string,
     uploadImmediately?: boolean,
     organizationId?: string,
-  ) => Promise<any>;
+  ): Promise<any>;
 }
diff --git a/libs/common/src/abstractions/event/event-upload.service.ts b/libs/common/src/abstractions/event/event-upload.service.ts
index af2e7a77e7f..352c7cb0255 100644
--- a/libs/common/src/abstractions/event/event-upload.service.ts
+++ b/libs/common/src/abstractions/event/event-upload.service.ts
@@ -1,7 +1,5 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import { UserId } from "../../types/guid";
 
 export abstract class EventUploadService {
-  uploadEvents: (userId?: UserId) => Promise<void>;
+  abstract uploadEvents(userId?: UserId): Promise<void>;
 }
diff --git a/libs/common/src/admin-console/abstractions/organization-domain/org-domain-api.service.abstraction.ts b/libs/common/src/admin-console/abstractions/organization-domain/org-domain-api.service.abstraction.ts
index 5a393ed1996..b1452c1359b 100644
--- a/libs/common/src/admin-console/abstractions/organization-domain/org-domain-api.service.abstraction.ts
+++ b/libs/common/src/admin-console/abstractions/organization-domain/org-domain-api.service.abstraction.ts
@@ -1,5 +1,3 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import { ListResponse } from "../../../models/response/list.response";
 import { OrganizationDomainRequest } from "../../services/organization-domain/requests/organization-domain.request";
 
@@ -8,19 +6,19 @@ import { OrganizationDomainResponse } from "./responses/organization-domain.resp
 import { VerifiedOrganizationDomainSsoDetailsResponse } from "./responses/verified-organization-domain-sso-details.response";
 
 export abstract class OrgDomainApiServiceAbstraction {
-  getAllByOrgId: (orgId: string) => Promise<Array<OrganizationDomainResponse>>;
-  getByOrgIdAndOrgDomainId: (
+  abstract getAllByOrgId(orgId: string): Promise<Array<OrganizationDomainResponse>>;
+  abstract getByOrgIdAndOrgDomainId(
     orgId: string,
     orgDomainId: string,
-  ) => Promise<OrganizationDomainResponse>;
-  post: (
+  ): Promise<OrganizationDomainResponse>;
+  abstract post(
     orgId: string,
     orgDomain: OrganizationDomainRequest,
-  ) => Promise<OrganizationDomainResponse>;
-  verify: (orgId: string, orgDomainId: string) => Promise<OrganizationDomainResponse>;
-  delete: (orgId: string, orgDomainId: string) => Promise<any>;
-  getClaimedOrgDomainByEmail: (email: string) => Promise<OrganizationDomainSsoDetailsResponse>;
-  getVerifiedOrgDomainsByEmail: (
+  ): Promise<OrganizationDomainResponse>;
+  abstract verify(orgId: string, orgDomainId: string): Promise<OrganizationDomainResponse>;
+  abstract delete(orgId: string, orgDomainId: string): Promise<any>;
+  abstract getClaimedOrgDomainByEmail(email: string): Promise<OrganizationDomainSsoDetailsResponse>;
+  abstract getVerifiedOrgDomainsByEmail(
     email: string,
-  ) => Promise<ListResponse<VerifiedOrganizationDomainSsoDetailsResponse>>;
+  ): Promise<ListResponse<VerifiedOrganizationDomainSsoDetailsResponse>>;
 }
diff --git a/libs/common/src/admin-console/abstractions/organization-domain/org-domain.service.abstraction.ts b/libs/common/src/admin-console/abstractions/organization-domain/org-domain.service.abstraction.ts
index 05a0b6d722f..7f08d226d15 100644
--- a/libs/common/src/admin-console/abstractions/organization-domain/org-domain.service.abstraction.ts
+++ b/libs/common/src/admin-console/abstractions/organization-domain/org-domain.service.abstraction.ts
@@ -1,22 +1,20 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import { Observable } from "rxjs";
 
 import { OrganizationDomainResponse } from "./responses/organization-domain.response";
 
 export abstract class OrgDomainServiceAbstraction {
-  orgDomains$: Observable<OrganizationDomainResponse[]>;
+  abstract orgDomains$: Observable<OrganizationDomainResponse[]>;
 
-  get: (orgDomainId: string) => OrganizationDomainResponse;
+  abstract get(orgDomainId: string): OrganizationDomainResponse;
 
-  copyDnsTxt: (dnsTxt: string) => void;
+  abstract copyDnsTxt(dnsTxt: string): void;
 }
 
 // Note: this separate class is designed to hold methods that are not
 // meant to be used in components (e.g., data write methods)
 export abstract class OrgDomainInternalServiceAbstraction extends OrgDomainServiceAbstraction {
-  upsert: (orgDomains: OrganizationDomainResponse[]) => void;
-  replace: (orgDomains: OrganizationDomainResponse[]) => void;
-  clearCache: () => void;
-  delete: (orgDomainIds: string[]) => void;
+  abstract upsert(orgDomains: OrganizationDomainResponse[]): void;
+  abstract replace(orgDomains: OrganizationDomainResponse[]): void;
+  abstract clearCache(): void;
+  abstract delete(orgDomainIds: string[]): void;
 }
diff --git a/libs/common/src/admin-console/abstractions/organization/organization-api.service.abstraction.ts b/libs/common/src/admin-console/abstractions/organization/organization-api.service.abstraction.ts
index 000d1655416..10626d6758f 100644
--- a/libs/common/src/admin-console/abstractions/organization/organization-api.service.abstraction.ts
+++ b/libs/common/src/admin-console/abstractions/organization/organization-api.service.abstraction.ts
@@ -1,5 +1,3 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import { OrganizationApiKeyRequest } from "../../../admin-console/models/request/organization-api-key.request";
 import { OrganizationSsoRequest } from "../../../auth/models/request/organization-sso.request";
 import { SecretVerificationRequest } from "../../../auth/models/request/secret-verification.request";
@@ -34,60 +32,66 @@ import { OrganizationKeysResponse } from "../../models/response/organization-key
 import { OrganizationResponse } from "../../models/response/organization.response";
 import { ProfileOrganizationResponse } from "../../models/response/profile-organization.response";
 
-export class OrganizationApiServiceAbstraction {
-  get: (id: string) => Promise<OrganizationResponse>;
-  getBilling: (id: string) => Promise<BillingResponse>;
-  getBillingHistory: (id: string) => Promise<BillingHistoryResponse>;
-  getSubscription: (id: string) => Promise<OrganizationSubscriptionResponse>;
-  getLicense: (id: string, installationId: string) => Promise<unknown>;
-  getAutoEnrollStatus: (identifier: string) => Promise<OrganizationAutoEnrollStatusResponse>;
-  create: (request: OrganizationCreateRequest) => Promise<OrganizationResponse>;
-  createWithoutPayment: (
+export abstract class OrganizationApiServiceAbstraction {
+  abstract get(id: string): Promise<OrganizationResponse>;
+  abstract getBilling(id: string): Promise<BillingResponse>;
+  abstract getBillingHistory(id: string): Promise<BillingHistoryResponse>;
+  abstract getSubscription(id: string): Promise<OrganizationSubscriptionResponse>;
+  abstract getLicense(id: string, installationId: string): Promise<unknown>;
+  abstract getAutoEnrollStatus(identifier: string): Promise<OrganizationAutoEnrollStatusResponse>;
+  abstract create(request: OrganizationCreateRequest): Promise<OrganizationResponse>;
+  abstract createWithoutPayment(
     request: OrganizationNoPaymentMethodCreateRequest,
-  ) => Promise<OrganizationResponse>;
-  createLicense: (data: FormData) => Promise<OrganizationResponse>;
-  save: (id: string, request: OrganizationUpdateRequest) => Promise<OrganizationResponse>;
-  updatePayment: (id: string, request: PaymentRequest) => Promise<void>;
-  upgrade: (id: string, request: OrganizationUpgradeRequest) => Promise<PaymentResponse>;
-  updatePasswordManagerSeats: (
+  ): Promise<OrganizationResponse>;
+  abstract createLicense(data: FormData): Promise<OrganizationResponse>;
+  abstract save(id: string, request: OrganizationUpdateRequest): Promise<OrganizationResponse>;
+  abstract updatePayment(id: string, request: PaymentRequest): Promise<void>;
+  abstract upgrade(id: string, request: OrganizationUpgradeRequest): Promise<PaymentResponse>;
+  abstract updatePasswordManagerSeats(
     id: string,
     request: OrganizationSubscriptionUpdateRequest,
-  ) => Promise<ProfileOrganizationResponse>;
-  updateSecretsManagerSubscription: (
+  ): Promise<ProfileOrganizationResponse>;
+  abstract updateSecretsManagerSubscription(
     id: string,
     request: OrganizationSmSubscriptionUpdateRequest,
-  ) => Promise<ProfileOrganizationResponse>;
-  updateSeats: (id: string, request: SeatRequest) => Promise<PaymentResponse>;
-  updateStorage: (id: string, request: StorageRequest) => Promise<PaymentResponse>;
-  verifyBank: (id: string, request: VerifyBankRequest) => Promise<void>;
-  reinstate: (id: string) => Promise<void>;
-  leave: (id: string) => Promise<void>;
-  delete: (id: string, request: SecretVerificationRequest) => Promise<void>;
-  deleteUsingToken: (
+  ): Promise<ProfileOrganizationResponse>;
+  abstract updateSeats(id: string, request: SeatRequest): Promise<PaymentResponse>;
+  abstract updateStorage(id: string, request: StorageRequest): Promise<PaymentResponse>;
+  abstract verifyBank(id: string, request: VerifyBankRequest): Promise<void>;
+  abstract reinstate(id: string): Promise<void>;
+  abstract leave(id: string): Promise<void>;
+  abstract delete(id: string, request: SecretVerificationRequest): Promise<void>;
+  abstract deleteUsingToken(
     organizationId: string,
     request: OrganizationVerifyDeleteRecoverRequest,
-  ) => Promise<any>;
-  updateLicense: (id: string, data: FormData) => Promise<void>;
-  importDirectory: (organizationId: string, request: ImportDirectoryRequest) => Promise<void>;
-  getOrCreateApiKey: (id: string, request: OrganizationApiKeyRequest) => Promise<ApiKeyResponse>;
-  getApiKeyInformation: (
+  ): Promise<any>;
+  abstract updateLicense(id: string, data: FormData): Promise<void>;
+  abstract importDirectory(organizationId: string, request: ImportDirectoryRequest): Promise<void>;
+  abstract getOrCreateApiKey(
+    id: string,
+    request: OrganizationApiKeyRequest,
+  ): Promise<ApiKeyResponse>;
+  abstract getApiKeyInformation(
     id: string,
     organizationApiKeyType?: OrganizationApiKeyType,
-  ) => Promise<ListResponse<OrganizationApiKeyInformationResponse>>;
-  rotateApiKey: (id: string, request: OrganizationApiKeyRequest) => Promise<ApiKeyResponse>;
-  getTaxInfo: (id: string) => Promise<TaxInfoResponse>;
-  updateTaxInfo: (id: string, request: ExpandedTaxInfoUpdateRequest) => Promise<void>;
-  getKeys: (id: string) => Promise<OrganizationKeysResponse>;
-  updateKeys: (id: string, request: OrganizationKeysRequest) => Promise<OrganizationKeysResponse>;
-  getSso: (id: string) => Promise<OrganizationSsoResponse>;
-  updateSso: (id: string, request: OrganizationSsoRequest) => Promise<OrganizationSsoResponse>;
-  selfHostedSyncLicense: (id: string) => Promise<void>;
-  subscribeToSecretsManager: (
+  ): Promise<ListResponse<OrganizationApiKeyInformationResponse>>;
+  abstract rotateApiKey(id: string, request: OrganizationApiKeyRequest): Promise<ApiKeyResponse>;
+  abstract getTaxInfo(id: string): Promise<TaxInfoResponse>;
+  abstract updateTaxInfo(id: string, request: ExpandedTaxInfoUpdateRequest): Promise<void>;
+  abstract getKeys(id: string): Promise<OrganizationKeysResponse>;
+  abstract updateKeys(
+    id: string,
+    request: OrganizationKeysRequest,
+  ): Promise<OrganizationKeysResponse>;
+  abstract getSso(id: string): Promise<OrganizationSsoResponse>;
+  abstract updateSso(id: string, request: OrganizationSsoRequest): Promise<OrganizationSsoResponse>;
+  abstract selfHostedSyncLicense(id: string): Promise<void>;
+  abstract subscribeToSecretsManager(
     id: string,
     request: SecretsManagerSubscribeRequest,
-  ) => Promise<ProfileOrganizationResponse>;
-  updateCollectionManagement: (
+  ): Promise<ProfileOrganizationResponse>;
+  abstract updateCollectionManagement(
     id: string,
     request: OrganizationCollectionManagementUpdateRequest,
-  ) => Promise<OrganizationResponse>;
+  ): Promise<OrganizationResponse>;
 }
diff --git a/libs/common/src/admin-console/abstractions/organization/organization.service.abstraction.ts b/libs/common/src/admin-console/abstractions/organization/organization.service.abstraction.ts
index 05c214ece13..770cfd0011d 100644
--- a/libs/common/src/admin-console/abstractions/organization/organization.service.abstraction.ts
+++ b/libs/common/src/admin-console/abstractions/organization/organization.service.abstraction.ts
@@ -1,5 +1,3 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import { map, Observable } from "rxjs";
 
 import { UserId } from "../../../types/guid";
@@ -68,20 +66,20 @@ export abstract class OrganizationService {
    * Publishes state for all organizations under the specified user.
    * @returns An observable list of organizations
    */
-  organizations$: (userId: UserId) => Observable<Organization[]>;
+  abstract organizations$(userId: UserId): Observable<Organization[]>;
 
   // @todo Clean these up. Continuing to expand them is not recommended.
   // @see https://bitwarden.atlassian.net/browse/AC-2252
-  memberOrganizations$: (userId: UserId) => Observable<Organization[]>;
+  abstract memberOrganizations$(userId: UserId): Observable<Organization[]>;
   /**
    * Emits true if the user can create or manage a Free Bitwarden Families sponsorship.
    */
-  canManageSponsorships$: (userId: UserId) => Observable<boolean>;
+  abstract canManageSponsorships$(userId: UserId): Observable<boolean>;
   /**
    * Emits true if any of the user's organizations have a Free Bitwarden Families sponsorship available.
    */
-  familySponsorshipAvailable$: (userId: UserId) => Observable<boolean>;
-  hasOrganizations: (userId: UserId) => Observable<boolean>;
+  abstract familySponsorshipAvailable$(userId: UserId): Observable<boolean>;
+  abstract hasOrganizations(userId: UserId): Observable<boolean>;
 }
 
 /**
@@ -96,7 +94,7 @@ export abstract class InternalOrganizationServiceAbstraction extends Organizatio
    * @param organization The organization state being saved.
    * @param userId The userId to replace state for.
    */
-  upsert: (OrganizationData: OrganizationData, userId: UserId) => Promise<void>;
+  abstract upsert(OrganizationData: OrganizationData, userId: UserId): Promise<void>;
 
   /**
    * Replaces state for the entire registered organization list for the specified user.
@@ -107,5 +105,8 @@ export abstract class InternalOrganizationServiceAbstraction extends Organizatio
    * user.
    * @param userId The userId to replace state for.
    */
-  replace: (organizations: { [id: string]: OrganizationData }, userId: UserId) => Promise<void>;
+  abstract replace(
+    organizations: { [id: string]: OrganizationData },
+    userId: UserId,
+  ): Promise<void>;
 }
diff --git a/libs/common/src/admin-console/abstractions/provider.service.ts b/libs/common/src/admin-console/abstractions/provider.service.ts
index 0cd21174ea1..340156020ff 100644
--- a/libs/common/src/admin-console/abstractions/provider.service.ts
+++ b/libs/common/src/admin-console/abstractions/provider.service.ts
@@ -1,5 +1,3 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import { Observable } from "rxjs";
 
 import { UserId } from "../../types/guid";
@@ -7,8 +5,8 @@ import { ProviderData } from "../models/data/provider.data";
 import { Provider } from "../models/domain/provider";
 
 export abstract class ProviderService {
-  get$: (id: string) => Observable<Provider>;
-  get: (id: string) => Promise<Provider>;
-  getAll: () => Promise<Provider[]>;
-  save: (providers: { [id: string]: ProviderData }, userId?: UserId) => Promise<any>;
+  abstract get$(id: string): Observable<Provider>;
+  abstract get(id: string): Promise<Provider>;
+  abstract getAll(): Promise<Provider[]>;
+  abstract save(providers: { [id: string]: ProviderData }, userId?: UserId): Promise<any>;
 }
diff --git a/libs/common/src/admin-console/abstractions/provider/provider-api.service.abstraction.ts b/libs/common/src/admin-console/abstractions/provider/provider-api.service.abstraction.ts
index ffe79f0ad3b..f998fdc8ab7 100644
--- a/libs/common/src/admin-console/abstractions/provider/provider-api.service.abstraction.ts
+++ b/libs/common/src/admin-console/abstractions/provider/provider-api.service.abstraction.ts
@@ -1,5 +1,3 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import { AddableOrganizationResponse } from "@bitwarden/common/admin-console/models/response/addable-organization.response";
 
 import { ProviderSetupRequest } from "../../models/request/provider/provider-setup.request";
@@ -7,21 +5,23 @@ import { ProviderUpdateRequest } from "../../models/request/provider/provider-up
 import { ProviderVerifyRecoverDeleteRequest } from "../../models/request/provider/provider-verify-recover-delete.request";
 import { ProviderResponse } from "../../models/response/provider/provider.response";
 
-export class ProviderApiServiceAbstraction {
-  postProviderSetup: (id: string, request: ProviderSetupRequest) => Promise<ProviderResponse>;
-  getProvider: (id: string) => Promise<ProviderResponse>;
-  putProvider: (id: string, request: ProviderUpdateRequest) => Promise<ProviderResponse>;
-  providerRecoverDeleteToken: (
+export abstract class ProviderApiServiceAbstraction {
+  abstract postProviderSetup(id: string, request: ProviderSetupRequest): Promise<ProviderResponse>;
+  abstract getProvider(id: string): Promise<ProviderResponse>;
+  abstract putProvider(id: string, request: ProviderUpdateRequest): Promise<ProviderResponse>;
+  abstract providerRecoverDeleteToken(
     organizationId: string,
     request: ProviderVerifyRecoverDeleteRequest,
-  ) => Promise<any>;
-  deleteProvider: (id: string) => Promise<void>;
-  getProviderAddableOrganizations: (providerId: string) => Promise<AddableOrganizationResponse[]>;
-  addOrganizationToProvider: (
+  ): Promise<any>;
+  abstract deleteProvider(id: string): Promise<void>;
+  abstract getProviderAddableOrganizations(
+    providerId: string,
+  ): Promise<AddableOrganizationResponse[]>;
+  abstract addOrganizationToProvider(
     providerId: string,
     request: {
       key: string;
       organizationId: string;
     },
-  ) => Promise<void>;
+  ): Promise<void>;
 }
diff --git a/libs/common/src/auth/abstractions/account.service.ts b/libs/common/src/auth/abstractions/account.service.ts
index 1686eefda06..a3dabeecf8a 100644
--- a/libs/common/src/auth/abstractions/account.service.ts
+++ b/libs/common/src/auth/abstractions/account.service.ts
@@ -1,5 +1,3 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import { Observable } from "rxjs";
 
 import { UserId } from "../../types/guid";
@@ -35,20 +33,20 @@ export function accountInfoEqual(a: AccountInfo, b: AccountInfo) {
 }
 
 export abstract class AccountService {
-  accounts$: Observable<Record<UserId, AccountInfo>>;
+  abstract accounts$: Observable<Record<UserId, AccountInfo>>;
 
-  activeAccount$: Observable<Account | null>;
+  abstract activeAccount$: Observable<Account | null>;
 
   /**
    * Observable of the last activity time for each account.
    */
-  accountActivity$: Observable<Record<UserId, Date>>;
+  abstract accountActivity$: Observable<Record<UserId, Date>>;
   /** Observable of the new device login verification property for the account. */
-  accountVerifyNewDeviceLogin$: Observable<boolean>;
+  abstract accountVerifyNewDeviceLogin$: Observable<boolean>;
   /** Account list in order of descending recency */
-  sortedUserIds$: Observable<UserId[]>;
+  abstract sortedUserIds$: Observable<UserId[]>;
   /** Next account that is not the current active account */
-  nextUpAccount$: Observable<Account>;
+  abstract nextUpAccount$: Observable<Account>;
   /**
    * Updates the `accounts$` observable with the new account data.
    *
diff --git a/libs/common/src/auth/abstractions/anonymous-hub.service.ts b/libs/common/src/auth/abstractions/anonymous-hub.service.ts
index 8e705d67bfe..624a3a04d53 100644
--- a/libs/common/src/auth/abstractions/anonymous-hub.service.ts
+++ b/libs/common/src/auth/abstractions/anonymous-hub.service.ts
@@ -1,6 +1,4 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 export abstract class AnonymousHubService {
-  createHubConnection: (token: string) => Promise<void>;
-  stopHubConnection: () => Promise<void>;
+  abstract createHubConnection(token: string): Promise<void>;
+  abstract stopHubConnection(): Promise<void>;
 }
diff --git a/libs/common/src/auth/abstractions/avatar.service.ts b/libs/common/src/auth/abstractions/avatar.service.ts
index 89729aa3712..bd2c382e610 100644
--- a/libs/common/src/auth/abstractions/avatar.service.ts
+++ b/libs/common/src/auth/abstractions/avatar.service.ts
@@ -1,5 +1,3 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import { Observable } from "rxjs";
 
 import { UserId } from "../../types/guid";
@@ -9,7 +7,7 @@ export abstract class AvatarService {
    * An observable monitoring the active user's avatar color.
    * The observable updates when the avatar color changes.
    */
-  avatarColor$: Observable<string | null>;
+  abstract avatarColor$: Observable<string | null>;
   /**
    * Sets the avatar color of the active user
    *
diff --git a/libs/common/src/auth/abstractions/devices-api.service.abstraction.ts b/libs/common/src/auth/abstractions/devices-api.service.abstraction.ts
index cf6cdaefd85..54971a443b7 100644
--- a/libs/common/src/auth/abstractions/devices-api.service.abstraction.ts
+++ b/libs/common/src/auth/abstractions/devices-api.service.abstraction.ts
@@ -1,47 +1,45 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import { ListResponse } from "../../models/response/list.response";
 import { DeviceResponse } from "../abstractions/devices/responses/device.response";
 import { UpdateDevicesTrustRequest } from "../models/request/update-devices-trust.request";
 import { ProtectedDeviceResponse } from "../models/response/protected-device.response";
 
 export abstract class DevicesApiServiceAbstraction {
-  getKnownDevice: (email: string, deviceIdentifier: string) => Promise<boolean>;
+  abstract getKnownDevice(email: string, deviceIdentifier: string): Promise<boolean>;
 
-  getDeviceByIdentifier: (deviceIdentifier: string) => Promise<DeviceResponse>;
+  abstract getDeviceByIdentifier(deviceIdentifier: string): Promise<DeviceResponse>;
 
-  getDevices: () => Promise<ListResponse<DeviceResponse>>;
+  abstract getDevices(): Promise<ListResponse<DeviceResponse>>;
 
-  updateTrustedDeviceKeys: (
+  abstract updateTrustedDeviceKeys(
     deviceIdentifier: string,
     devicePublicKeyEncryptedUserKey: string,
     userKeyEncryptedDevicePublicKey: string,
     deviceKeyEncryptedDevicePrivateKey: string,
-  ) => Promise<DeviceResponse>;
+  ): Promise<DeviceResponse>;
 
-  updateTrust: (
+  abstract updateTrust(
     updateDevicesTrustRequestModel: UpdateDevicesTrustRequest,
     deviceIdentifier: string,
-  ) => Promise<void>;
+  ): Promise<void>;
 
-  getDeviceKeys: (deviceIdentifier: string) => Promise<ProtectedDeviceResponse>;
+  abstract getDeviceKeys(deviceIdentifier: string): Promise<ProtectedDeviceResponse>;
 
   /**
    * Notifies the server that the device has a device key, but didn't receive any associated decryption keys.
    * Note: For debugging purposes only.
    * @param deviceIdentifier - current device identifier
    */
-  postDeviceTrustLoss: (deviceIdentifier: string) => Promise<void>;
+  abstract postDeviceTrustLoss(deviceIdentifier: string): Promise<void>;
 
   /**
    * Deactivates a device
    * @param deviceId - The device ID
    */
-  deactivateDevice: (deviceId: string) => Promise<void>;
+  abstract deactivateDevice(deviceId: string): Promise<void>;
 
   /**
    * Removes trust from a list of devices
    * @param deviceIds - The device IDs to be untrusted
    */
-  untrustDevices: (deviceIds: string[]) => Promise<void>;
+  abstract untrustDevices(deviceIds: string[]): Promise<void>;
 }
diff --git a/libs/common/src/auth/abstractions/token.service.ts b/libs/common/src/auth/abstractions/token.service.ts
index 0c8db6fdcd1..2139f32fca2 100644
--- a/libs/common/src/auth/abstractions/token.service.ts
+++ b/libs/common/src/auth/abstractions/token.service.ts
@@ -1,5 +1,3 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import { Observable } from "rxjs";
 
 import { VaultTimeout, VaultTimeoutAction } from "../../key-management/vault-timeout";
@@ -27,20 +25,20 @@ export abstract class TokenService {
    *
    * @returns A promise that resolves with the SetTokensResult containing the tokens that were set.
    */
-  setTokens: (
+  abstract setTokens(
     accessToken: string,
     vaultTimeoutAction: VaultTimeoutAction,
     vaultTimeout: VaultTimeout,
     refreshToken?: string,
     clientIdClientSecret?: [string, string],
-  ) => Promise<SetTokensResult>;
+  ): Promise<SetTokensResult>;
 
   /**
    * Clears the access token, refresh token, API Key Client ID, and API Key Client Secret out of memory, disk, and secure storage if supported.
    * @param userId The optional user id to clear the tokens for; if not provided, the active user id is used.
    * @returns A promise that resolves when the tokens have been cleared.
    */
-  clearTokens: (userId?: UserId) => Promise<void>;
+  abstract clearTokens(userId?: UserId): Promise<void>;
 
   /**
    * Sets the access token in memory or disk based on the given vaultTimeoutAction and vaultTimeout
@@ -51,11 +49,11 @@ export abstract class TokenService {
    * @param vaultTimeout The timeout for the vault.
    * @returns A promise that resolves with the access token that has been set.
    */
-  setAccessToken: (
+  abstract setAccessToken(
     accessToken: string,
     vaultTimeoutAction: VaultTimeoutAction,
     vaultTimeout: VaultTimeout,
-  ) => Promise<string>;
+  ): Promise<string>;
 
   // TODO: revisit having this public clear method approach once the state service is fully deprecated.
   /**
@@ -67,21 +65,21 @@ export abstract class TokenService {
    * pass in the vaultTimeoutAction and vaultTimeout.
    * This avoids a circular dependency between the StateService, TokenService, and VaultTimeoutSettingsService.
    */
-  clearAccessToken: (userId?: UserId) => Promise<void>;
+  abstract clearAccessToken(userId?: UserId): Promise<void>;
 
   /**
    * Gets the access token
    * @param userId - The optional user id to get the access token for; if not provided, the active user is used.
    * @returns A promise that resolves with the access token or null.
    */
-  getAccessToken: (userId?: UserId) => Promise<string | null>;
+  abstract getAccessToken(userId?: UserId): Promise<string | null>;
 
   /**
    * Gets the refresh token.
    * @param userId - The optional user id to get the refresh token for; if not provided, the active user is used.
    * @returns A promise that resolves with the refresh token or null.
    */
-  getRefreshToken: (userId?: UserId) => Promise<string | null>;
+  abstract getRefreshToken(userId?: UserId): Promise<string | null>;
 
   /**
    * Sets the API Key Client ID for the active user id in memory or disk based on the given vaultTimeoutAction and vaultTimeout.
@@ -90,18 +88,18 @@ export abstract class TokenService {
    * @param vaultTimeout The timeout for the vault.
    * @returns A promise that resolves with the API Key Client ID that has been set.
    */
-  setClientId: (
+  abstract setClientId(
     clientId: string,
     vaultTimeoutAction: VaultTimeoutAction,
     vaultTimeout: VaultTimeout,
     userId?: UserId,
-  ) => Promise<string>;
+  ): Promise<string>;
 
   /**
    * Gets the API Key Client ID for the active user.
    * @returns A promise that resolves with the API Key Client ID or undefined
    */
-  getClientId: (userId?: UserId) => Promise<string | undefined>;
+  abstract getClientId(userId?: UserId): Promise<string | undefined>;
 
   /**
    * Sets the API Key Client Secret for the active user id in memory or disk based on the given vaultTimeoutAction and vaultTimeout.
@@ -110,18 +108,18 @@ export abstract class TokenService {
    * @param vaultTimeout The timeout for the vault.
    * @returns A promise that resolves with the client secret that has been set.
    */
-  setClientSecret: (
+  abstract setClientSecret(
     clientSecret: string,
     vaultTimeoutAction: VaultTimeoutAction,
     vaultTimeout: VaultTimeout,
     userId?: UserId,
-  ) => Promise<string>;
+  ): Promise<string>;
 
   /**
    * Gets the API Key Client Secret for the active user.
    * @returns A promise that resolves with the API Key Client Secret or undefined
    */
-  getClientSecret: (userId?: UserId) => Promise<string | undefined>;
+  abstract getClientSecret(userId?: UserId): Promise<string | undefined>;
 
   /**
    * Sets the two factor token for the given email in global state.
@@ -131,21 +129,21 @@ export abstract class TokenService {
    * @param twoFactorToken The two factor token to set.
    * @returns A promise that resolves when the two factor token has been set.
    */
-  setTwoFactorToken: (email: string, twoFactorToken: string) => Promise<void>;
+  abstract setTwoFactorToken(email: string, twoFactorToken: string): Promise<void>;
 
   /**
    * Gets the two factor token for the given email.
    * @param email The email to get the two factor token for.
    * @returns A promise that resolves with the two factor token for the given email or null if it isn't found.
    */
-  getTwoFactorToken: (email: string) => Promise<string | null>;
+  abstract getTwoFactorToken(email: string): Promise<string | null>;
 
   /**
    * Clears the two factor token for the given email out of global state.
    * @param email The email to clear the two factor token for.
    * @returns A promise that resolves when the two factor token has been cleared.
    */
-  clearTwoFactorToken: (email: string) => Promise<void>;
+  abstract clearTwoFactorToken(email: string): Promise<void>;
 
   /**
    * Decodes the access token.
@@ -153,13 +151,13 @@ export abstract class TokenService {
    * If null, the currently active user's token is used.
    * @returns A promise that resolves with the decoded access token.
    */
-  decodeAccessToken: (tokenOrUserId?: string | UserId) => Promise<DecodedAccessToken>;
+  abstract decodeAccessToken(tokenOrUserId?: string | UserId): Promise<DecodedAccessToken>;
 
   /**
    * Gets the expiration date for the access token. Returns if token can't be decoded or has no expiration
    * @returns A promise that resolves with the expiration date for the access token.
    */
-  getTokenExpirationDate: () => Promise<Date | null>;
+  abstract getTokenExpirationDate(): Promise<Date | null>;
 
   /**
    * Calculates the adjusted time in seconds until the access token expires, considering an optional offset.
@@ -170,58 +168,58 @@ export abstract class TokenService {
    * based on the actual expiration.
    * @returns {Promise<number>} Promise resolving to the adjusted seconds remaining.
    */
-  tokenSecondsRemaining: (offsetSeconds?: number) => Promise<number>;
+  abstract tokenSecondsRemaining(offsetSeconds?: number): Promise<number>;
 
   /**
    * Checks if the access token needs to be refreshed.
    * @param {number} [minutes=5] - Optional number of minutes before the access token expires to consider refreshing it.
    * @returns A promise that resolves with a boolean indicating if the access token needs to be refreshed.
    */
-  tokenNeedsRefresh: (minutes?: number) => Promise<boolean>;
+  abstract tokenNeedsRefresh(minutes?: number): Promise<boolean>;
 
   /**
    * Gets the user id for the active user from the access token.
    * @returns A promise that resolves with the user id for the active user.
    * @deprecated Use AccountService.activeAccount$ instead.
    */
-  getUserId: () => Promise<UserId>;
+  abstract getUserId(): Promise<UserId>;
 
   /**
    * Gets the email for the active user from the access token.
    * @returns A promise that resolves with the email for the active user.
    * @deprecated Use AccountService.activeAccount$ instead.
    */
-  getEmail: () => Promise<string>;
+  abstract getEmail(): Promise<string>;
 
   /**
    * Gets the email verified status for the active user from the access token.
    * @returns A promise that resolves with the email verified status for the active user.
    */
-  getEmailVerified: () => Promise<boolean>;
+  abstract getEmailVerified(): Promise<boolean>;
 
   /**
    * Gets the name for the active user from the access token.
    * @returns A promise that resolves with the name for the active user.
    * @deprecated Use AccountService.activeAccount$ instead.
    */
-  getName: () => Promise<string>;
+  abstract getName(): Promise<string>;
 
   /**
    * Gets the issuer for the active user from the access token.
    * @returns A promise that resolves with the issuer for the active user.
    */
-  getIssuer: () => Promise<string>;
+  abstract getIssuer(): Promise<string>;
 
   /**
    * Gets whether or not the user authenticated via an external mechanism.
    * @param userId The optional user id to check for external authN status; if not provided, the active user is used.
    * @returns A promise that resolves with a boolean representing the user's external authN status.
    */
-  getIsExternal: (userId: UserId) => Promise<boolean>;
+  abstract getIsExternal(userId: UserId): Promise<boolean>;
 
   /** Gets the active or passed in user's security stamp */
-  getSecurityStamp: (userId?: UserId) => Promise<string | null>;
+  abstract getSecurityStamp(userId?: UserId): Promise<string | null>;
 
   /** Sets the security stamp for the active or passed in user */
-  setSecurityStamp: (securityStamp: string, userId?: UserId) => Promise<void>;
+  abstract setSecurityStamp(securityStamp: string, userId?: UserId): Promise<void>;
 }
diff --git a/libs/common/src/auth/abstractions/user-verification/user-verification-api.service.abstraction.ts b/libs/common/src/auth/abstractions/user-verification/user-verification-api.service.abstraction.ts
index 42abc794061..275df417df2 100644
--- a/libs/common/src/auth/abstractions/user-verification/user-verification-api.service.abstraction.ts
+++ b/libs/common/src/auth/abstractions/user-verification/user-verification-api.service.abstraction.ts
@@ -1,13 +1,11 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import { SecretVerificationRequest } from "../../models/request/secret-verification.request";
 import { VerifyOTPRequest } from "../../models/request/verify-otp.request";
 import { MasterPasswordPolicyResponse } from "../../models/response/master-password-policy.response";
 
 export abstract class UserVerificationApiServiceAbstraction {
-  postAccountVerifyOTP: (request: VerifyOTPRequest) => Promise<void>;
-  postAccountRequestOTP: () => Promise<void>;
-  postAccountVerifyPassword: (
+  abstract postAccountVerifyOTP(request: VerifyOTPRequest): Promise<void>;
+  abstract postAccountRequestOTP(): Promise<void>;
+  abstract postAccountVerifyPassword(
     request: SecretVerificationRequest,
-  ) => Promise<MasterPasswordPolicyResponse>;
+  ): Promise<MasterPasswordPolicyResponse>;
 }
diff --git a/libs/common/src/auth/abstractions/user-verification/user-verification.service.abstraction.ts b/libs/common/src/auth/abstractions/user-verification/user-verification.service.abstraction.ts
index 2d39854f8d9..d9749d9467c 100644
--- a/libs/common/src/auth/abstractions/user-verification/user-verification.service.abstraction.ts
+++ b/libs/common/src/auth/abstractions/user-verification/user-verification.service.abstraction.ts
@@ -1,5 +1,3 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import { UserId } from "../../../types/guid";
 import { SecretVerificationRequest } from "../../models/request/secret-verification.request";
 import { UserVerificationOptions } from "../../types/user-verification-options";
@@ -16,9 +14,9 @@ export abstract class UserVerificationService {
    * @param verificationType Type of verification to restrict the options to
    * @returns Available verification options for the user
    */
-  getAvailableVerificationOptions: (
+  abstract getAvailableVerificationOptions(
     verificationType: keyof UserVerificationOptions,
-  ) => Promise<UserVerificationOptions>;
+  ): Promise<UserVerificationOptions>;
   /**
    * Create a new request model to be used for server-side verification
    * @param verification User-supplied verification data (Master Password or OTP)
@@ -26,11 +24,11 @@ export abstract class UserVerificationService {
    * @param alreadyHashed Whether the master password is already hashed
    * @throws Error if the verification data is invalid
    */
-  buildRequest: <T extends SecretVerificationRequest>(
+  abstract buildRequest<T extends SecretVerificationRequest>(
     verification: Verification,
     requestClass?: new () => T,
     alreadyHashed?: boolean,
-  ) => Promise<T>;
+  ): Promise<T>;
   /**
    * Verifies the user using the provided verification data.
    * PIN or biometrics are verified client-side.
@@ -39,11 +37,11 @@ export abstract class UserVerificationService {
    * @param verification User-supplied verification data (OTP, MP, PIN, or biometrics)
    * @throws Error if the verification data is invalid or the verification fails
    */
-  verifyUser: (verification: Verification) => Promise<boolean>;
+  abstract verifyUser(verification: Verification): Promise<boolean>;
   /**
    * Request a one-time password (OTP) to be sent to the user's email
    */
-  requestOTP: () => Promise<void>;
+  abstract requestOTP(): Promise<void>;
   /**
    * Check if user has master password or can only use passwordless technologies to log in
    * Note: This only checks the server, not the local state
@@ -51,13 +49,13 @@ export abstract class UserVerificationService {
    * @returns True if the user has a master password
    * @deprecated Use UserDecryptionOptionsService.hasMasterPassword$ instead
    */
-  hasMasterPassword: (userId?: string) => Promise<boolean>;
+  abstract hasMasterPassword(userId?: string): Promise<boolean>;
   /**
    * Check if the user has a master password and has used it during their current session
    * @param userId The user id to check. If not provided, the current user id used
    * @returns True if the user has a master password and has used it in the current session
    */
-  hasMasterPasswordAndMasterKeyHash: (userId?: string) => Promise<boolean>;
+  abstract hasMasterPasswordAndMasterKeyHash(userId?: string): Promise<boolean>;
   /**
    * Verifies the user using the provided master password.
    * Attempts to verify client-side first, then server-side if necessary.
@@ -68,9 +66,9 @@ export abstract class UserVerificationService {
    * @throws Error if the master password is invalid
    * @returns An object containing the master key, and master password policy options if verified on server.
    */
-  verifyUserByMasterPassword: (
+  abstract verifyUserByMasterPassword(
     verification: MasterPasswordVerification,
     userId: UserId,
     email: string,
-  ) => Promise<MasterPasswordVerificationResponse>;
+  ): Promise<MasterPasswordVerificationResponse>;
 }
diff --git a/libs/common/src/auth/abstractions/webauthn/webauthn-login-api.service.abstraction.ts b/libs/common/src/auth/abstractions/webauthn/webauthn-login-api.service.abstraction.ts
index ca87710d22f..1e0fc124755 100644
--- a/libs/common/src/auth/abstractions/webauthn/webauthn-login-api.service.abstraction.ts
+++ b/libs/common/src/auth/abstractions/webauthn/webauthn-login-api.service.abstraction.ts
@@ -1,7 +1,5 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import { CredentialAssertionOptionsResponse } from "../../services/webauthn-login/response/credential-assertion-options.response";
 
-export class WebAuthnLoginApiServiceAbstraction {
-  getCredentialAssertionOptions: () => Promise<CredentialAssertionOptionsResponse>;
+export abstract class WebAuthnLoginApiServiceAbstraction {
+  abstract getCredentialAssertionOptions(): Promise<CredentialAssertionOptionsResponse>;
 }
diff --git a/libs/common/src/auth/abstractions/webauthn/webauthn-login-prf-key.service.abstraction.ts b/libs/common/src/auth/abstractions/webauthn/webauthn-login-prf-key.service.abstraction.ts
index 5de89313ecc..d47b7ccbcef 100644
--- a/libs/common/src/auth/abstractions/webauthn/webauthn-login-prf-key.service.abstraction.ts
+++ b/libs/common/src/auth/abstractions/webauthn/webauthn-login-prf-key.service.abstraction.ts
@@ -1,5 +1,3 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import { PrfKey } from "../../../types/key";
 
 /**
@@ -9,11 +7,11 @@ export abstract class WebAuthnLoginPrfKeyServiceAbstraction {
   /**
    * Get the salt used to generate the PRF-output used when logging in with WebAuthn.
    */
-  getLoginWithPrfSalt: () => Promise<ArrayBuffer>;
+  abstract getLoginWithPrfSalt(): Promise<ArrayBuffer>;
 
   /**
    * Create a symmetric key from the PRF-output by stretching it.
    * This should be used as `ExternalKey` with `RotateableKeySet`.
    */
-  createSymmetricKeyFromPrf: (prf: ArrayBuffer) => Promise<PrfKey>;
+  abstract createSymmetricKeyFromPrf(prf: ArrayBuffer): Promise<PrfKey>;
 }
diff --git a/libs/common/src/auth/abstractions/webauthn/webauthn-login.service.abstraction.ts b/libs/common/src/auth/abstractions/webauthn/webauthn-login.service.abstraction.ts
index 8e6ffae27a8..c482b1a214e 100644
--- a/libs/common/src/auth/abstractions/webauthn/webauthn-login.service.abstraction.ts
+++ b/libs/common/src/auth/abstractions/webauthn/webauthn-login.service.abstraction.ts
@@ -1,5 +1,3 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import { AuthResult } from "../../models/domain/auth-result";
 import { WebAuthnLoginCredentialAssertionOptionsView } from "../../models/view/webauthn-login/webauthn-login-credential-assertion-options.view";
 import { WebAuthnLoginCredentialAssertionView } from "../../models/view/webauthn-login/webauthn-login-credential-assertion.view";
@@ -14,7 +12,7 @@ export abstract class WebAuthnLoginServiceAbstraction {
    * (whether FIDO2 user verification is required, the relying party id, timeout duration for the process to complete, etc.)
    * for the authenticator.
    */
-  getCredentialAssertionOptions: () => Promise<WebAuthnLoginCredentialAssertionOptionsView>;
+  abstract getCredentialAssertionOptions(): Promise<WebAuthnLoginCredentialAssertionOptionsView>;
 
   /**
    * Asserts the credential. This involves user interaction with the authenticator
@@ -27,9 +25,9 @@ export abstract class WebAuthnLoginServiceAbstraction {
    * @returns {WebAuthnLoginCredentialAssertionView} The assertion obtained from the authenticator.
    * If the assertion is not successfully obtained, it returns undefined.
    */
-  assertCredential: (
+  abstract assertCredential(
     credentialAssertionOptions: WebAuthnLoginCredentialAssertionOptionsView,
-  ) => Promise<WebAuthnLoginCredentialAssertionView | undefined>;
+  ): Promise<WebAuthnLoginCredentialAssertionView | undefined>;
 
   /**
    * Logs the user in using the assertion obtained from the authenticator.
@@ -39,5 +37,5 @@ export abstract class WebAuthnLoginServiceAbstraction {
    * @param {WebAuthnLoginCredentialAssertionView} assertion - The assertion obtained from the authenticator
    * that needs to be validated for login.
    */
-  logIn: (assertion: WebAuthnLoginCredentialAssertionView) => Promise<AuthResult>;
+  abstract logIn(assertion: WebAuthnLoginCredentialAssertionView): Promise<AuthResult>;
 }
diff --git a/libs/common/src/billing/abstractions/account/account-billing-api.service.abstraction.ts b/libs/common/src/billing/abstractions/account/account-billing-api.service.abstraction.ts
index e0e8b7377c5..0f28e728ea2 100644
--- a/libs/common/src/billing/abstractions/account/account-billing-api.service.abstraction.ts
+++ b/libs/common/src/billing/abstractions/account/account-billing-api.service.abstraction.ts
@@ -1,11 +1,12 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import {
   BillingInvoiceResponse,
   BillingTransactionResponse,
 } from "../../models/response/billing.response";
 
-export class AccountBillingApiServiceAbstraction {
-  getBillingInvoices: (status?: string, startAfter?: string) => Promise<BillingInvoiceResponse[]>;
-  getBillingTransactions: (startAfter?: string) => Promise<BillingTransactionResponse[]>;
+export abstract class AccountBillingApiServiceAbstraction {
+  abstract getBillingInvoices(
+    status?: string,
+    startAfter?: string,
+  ): Promise<BillingInvoiceResponse[]>;
+  abstract getBillingTransactions(startAfter?: string): Promise<BillingTransactionResponse[]>;
 }
diff --git a/libs/common/src/billing/abstractions/account/billing-account-profile-state.service.ts b/libs/common/src/billing/abstractions/account/billing-account-profile-state.service.ts
index a4253226880..de9642f9194 100644
--- a/libs/common/src/billing/abstractions/account/billing-account-profile-state.service.ts
+++ b/libs/common/src/billing/abstractions/account/billing-account-profile-state.service.ts
@@ -1,5 +1,3 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import { Observable } from "rxjs";
 
 import { UserId } from "../../../types/guid";
diff --git a/libs/common/src/billing/abstractions/billing-api.service.abstraction.ts b/libs/common/src/billing/abstractions/billing-api.service.abstraction.ts
index 21089933a59..2f3fe9125db 100644
--- a/libs/common/src/billing/abstractions/billing-api.service.abstraction.ts
+++ b/libs/common/src/billing/abstractions/billing-api.service.abstraction.ts
@@ -1,6 +1,3 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
-
 import { TaxInfoResponse } from "@bitwarden/common/billing/models/response/tax-info.response";
 
 import { OrganizationCreateRequest } from "../../admin-console/models/request/organization-create.request";
@@ -20,78 +17,78 @@ import { PaymentMethodResponse } from "../models/response/payment-method.respons
 import { ProviderSubscriptionResponse } from "../models/response/provider-subscription-response";
 
 export abstract class BillingApiServiceAbstraction {
-  cancelOrganizationSubscription: (
+  abstract cancelOrganizationSubscription(
     organizationId: string,
     request: SubscriptionCancellationRequest,
-  ) => Promise<void>;
+  ): Promise<void>;
 
-  cancelPremiumUserSubscription: (request: SubscriptionCancellationRequest) => Promise<void>;
+  abstract cancelPremiumUserSubscription(request: SubscriptionCancellationRequest): Promise<void>;
 
-  createProviderClientOrganization: (
+  abstract createProviderClientOrganization(
     providerId: string,
     request: CreateClientOrganizationRequest,
-  ) => Promise<void>;
+  ): Promise<void>;
 
-  createSetupIntent: (paymentMethodType: PaymentMethodType) => Promise<string>;
+  abstract createSetupIntent(paymentMethodType: PaymentMethodType): Promise<string>;
 
-  getOrganizationBillingMetadata: (
+  abstract getOrganizationBillingMetadata(
     organizationId: string,
-  ) => Promise<OrganizationBillingMetadataResponse>;
+  ): Promise<OrganizationBillingMetadataResponse>;
 
-  getOrganizationPaymentMethod: (organizationId: string) => Promise<PaymentMethodResponse>;
+  abstract getOrganizationPaymentMethod(organizationId: string): Promise<PaymentMethodResponse>;
 
-  getPlans: () => Promise<ListResponse<PlanResponse>>;
+  abstract getPlans(): Promise<ListResponse<PlanResponse>>;
 
-  getProviderClientInvoiceReport: (providerId: string, invoiceId: string) => Promise<string>;
+  abstract getProviderClientInvoiceReport(providerId: string, invoiceId: string): Promise<string>;
 
-  getProviderClientOrganizations: (
+  abstract getProviderClientOrganizations(
     providerId: string,
-  ) => Promise<ListResponse<ProviderOrganizationOrganizationDetailsResponse>>;
+  ): Promise<ListResponse<ProviderOrganizationOrganizationDetailsResponse>>;
 
-  getProviderInvoices: (providerId: string) => Promise<InvoicesResponse>;
+  abstract getProviderInvoices(providerId: string): Promise<InvoicesResponse>;
 
-  getProviderSubscription: (providerId: string) => Promise<ProviderSubscriptionResponse>;
+  abstract getProviderSubscription(providerId: string): Promise<ProviderSubscriptionResponse>;
 
-  getProviderTaxInformation: (providerId: string) => Promise<TaxInfoResponse>;
+  abstract getProviderTaxInformation(providerId: string): Promise<TaxInfoResponse>;
 
-  updateOrganizationPaymentMethod: (
+  abstract updateOrganizationPaymentMethod(
     organizationId: string,
     request: UpdatePaymentMethodRequest,
-  ) => Promise<void>;
+  ): Promise<void>;
 
-  updateOrganizationTaxInformation: (
+  abstract updateOrganizationTaxInformation(
     organizationId: string,
     request: ExpandedTaxInfoUpdateRequest,
-  ) => Promise<void>;
+  ): Promise<void>;
 
-  updateProviderClientOrganization: (
+  abstract updateProviderClientOrganization(
     providerId: string,
     organizationId: string,
     request: UpdateClientOrganizationRequest,
-  ) => Promise<any>;
+  ): Promise<any>;
 
-  updateProviderPaymentMethod: (
+  abstract updateProviderPaymentMethod(
     providerId: string,
     request: UpdatePaymentMethodRequest,
-  ) => Promise<void>;
+  ): Promise<void>;
 
-  updateProviderTaxInformation: (
+  abstract updateProviderTaxInformation(
     providerId: string,
     request: ExpandedTaxInfoUpdateRequest,
-  ) => Promise<void>;
+  ): Promise<void>;
 
-  verifyOrganizationBankAccount: (
+  abstract verifyOrganizationBankAccount(
     organizationId: string,
     request: VerifyBankAccountRequest,
-  ) => Promise<void>;
+  ): Promise<void>;
 
-  verifyProviderBankAccount: (
+  abstract verifyProviderBankAccount(
     providerId: string,
     request: VerifyBankAccountRequest,
-  ) => Promise<void>;
+  ): Promise<void>;
 
-  restartSubscription: (
+  abstract restartSubscription(
     organizationId: string,
     request: OrganizationCreateRequest,
-  ) => Promise<void>;
+  ): Promise<void>;
 }
diff --git a/libs/common/src/billing/abstractions/organization-billing.service.ts b/libs/common/src/billing/abstractions/organization-billing.service.ts
index 58c537c99cc..113b55465a7 100644
--- a/libs/common/src/billing/abstractions/organization-billing.service.ts
+++ b/libs/common/src/billing/abstractions/organization-billing.service.ts
@@ -1,5 +1,3 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import { Observable } from "rxjs";
 
 import { Organization } from "@bitwarden/common/admin-console/models/domain/organization";
@@ -49,20 +47,22 @@ export type SubscriptionInformation = {
 };
 
 export abstract class OrganizationBillingServiceAbstraction {
-  getPaymentSource: (organizationId: string) => Promise<PaymentSourceResponse>;
+  abstract getPaymentSource(organizationId: string): Promise<PaymentSourceResponse>;
 
-  purchaseSubscription: (subscription: SubscriptionInformation) => Promise<OrganizationResponse>;
-
-  purchaseSubscriptionNoPaymentMethod: (
+  abstract purchaseSubscription(
     subscription: SubscriptionInformation,
-  ) => Promise<OrganizationResponse>;
+  ): Promise<OrganizationResponse>;
 
-  startFree: (subscription: SubscriptionInformation) => Promise<OrganizationResponse>;
+  abstract purchaseSubscriptionNoPaymentMethod(
+    subscription: SubscriptionInformation,
+  ): Promise<OrganizationResponse>;
 
-  restartSubscription: (
+  abstract startFree(subscription: SubscriptionInformation): Promise<OrganizationResponse>;
+
+  abstract restartSubscription(
     organizationId: string,
     subscription: SubscriptionInformation,
-  ) => Promise<void>;
+  ): Promise<void>;
 
   /**
    * Determines if breadcrumbing policies is enabled for the organizations meeting certain criteria.
diff --git a/libs/common/src/key-management/device-trust/abstractions/device-trust.service.abstraction.ts b/libs/common/src/key-management/device-trust/abstractions/device-trust.service.abstraction.ts
index d688c7f366b..2bc99e5e5c2 100644
--- a/libs/common/src/key-management/device-trust/abstractions/device-trust.service.abstraction.ts
+++ b/libs/common/src/key-management/device-trust/abstractions/device-trust.service.abstraction.ts
@@ -1,5 +1,3 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import { Observable } from "rxjs";
 
 import { OtherDeviceKeysUpdateRequest } from "@bitwarden/common/auth/models/request/update-devices-trust.request";
@@ -15,51 +13,51 @@ export abstract class DeviceTrustServiceAbstraction {
    * by Platform
    * @description Checks if the device trust feature is supported for the active user.
    */
-  supportsDeviceTrust$: Observable<boolean>;
+  abstract supportsDeviceTrust$: Observable<boolean>;
 
   /**
    * Emits when a device has been trusted. This emission is specifically for the purpose of notifying
    * the consuming component to display a toast informing the user the device has been trusted.
    */
-  deviceTrusted$: Observable<void>;
+  abstract deviceTrusted$: Observable<void>;
 
   /**
    * @description Checks if the device trust feature is supported for the given user.
    */
-  supportsDeviceTrustByUserId$: (userId: UserId) => Observable<boolean>;
+  abstract supportsDeviceTrustByUserId$(userId: UserId): Observable<boolean>;
 
   /**
    * @description Retrieves the users choice to trust the device which can only happen after decryption
    * Note: this value should only be used once and then reset
    */
-  getShouldTrustDevice: (userId: UserId) => Promise<boolean | null>;
-  setShouldTrustDevice: (userId: UserId, value: boolean) => Promise<void>;
+  abstract getShouldTrustDevice(userId: UserId): Promise<boolean | null>;
+  abstract setShouldTrustDevice(userId: UserId, value: boolean): Promise<void>;
 
-  trustDeviceIfRequired: (userId: UserId) => Promise<void>;
+  abstract trustDeviceIfRequired(userId: UserId): Promise<void>;
 
-  trustDevice: (userId: UserId) => Promise<DeviceResponse>;
+  abstract trustDevice(userId: UserId): Promise<DeviceResponse>;
 
   /** Retrieves the device key if it exists from state or secure storage if supported for the active user. */
-  getDeviceKey: (userId: UserId) => Promise<DeviceKey | null>;
-  decryptUserKeyWithDeviceKey: (
+  abstract getDeviceKey(userId: UserId): Promise<DeviceKey | null>;
+  abstract decryptUserKeyWithDeviceKey(
     userId: UserId,
     encryptedDevicePrivateKey: EncString,
     encryptedUserKey: EncString,
     deviceKey: DeviceKey,
-  ) => Promise<UserKey | null>;
-  rotateDevicesTrust: (
+  ): Promise<UserKey | null>;
+  abstract rotateDevicesTrust(
     userId: UserId,
     newUserKey: UserKey,
     masterPasswordHash: string,
-  ) => Promise<void>;
+  ): Promise<void>;
   /**
    * Notifies the server that the device has a device key, but didn't receive any associated decryption keys.
    * Note: For debugging purposes only.
    */
-  recordDeviceTrustLoss: () => Promise<void>;
-  getRotatedData: (
+  abstract recordDeviceTrustLoss(): Promise<void>;
+  abstract getRotatedData(
     oldUserKey: UserKey,
     newUserKey: UserKey,
     userId: UserId,
-  ) => Promise<OtherDeviceKeysUpdateRequest[]>;
+  ): Promise<OtherDeviceKeysUpdateRequest[]>;
 }
diff --git a/libs/common/src/key-management/vault-timeout/abstractions/vault-timeout-settings.service.ts b/libs/common/src/key-management/vault-timeout/abstractions/vault-timeout-settings.service.ts
index 9ff362e4009..bcbf0029199 100644
--- a/libs/common/src/key-management/vault-timeout/abstractions/vault-timeout-settings.service.ts
+++ b/libs/common/src/key-management/vault-timeout/abstractions/vault-timeout-settings.service.ts
@@ -1,5 +1,3 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import { Observable } from "rxjs";
 
 import { UserId } from "../../../types/guid";
@@ -13,11 +11,11 @@ export abstract class VaultTimeoutSettingsService {
    * @param vaultTimeoutAction The vault timeout action
    * @param userId The user id to set the data for.
    */
-  setVaultTimeoutOptions: (
+  abstract setVaultTimeoutOptions(
     userId: UserId,
     vaultTimeout: VaultTimeout,
     vaultTimeoutAction: VaultTimeoutAction,
-  ) => Promise<void>;
+  ): Promise<void>;
 
   /**
    * Get the available vault timeout actions for the current user
@@ -25,13 +23,13 @@ export abstract class VaultTimeoutSettingsService {
    * **NOTE:** This observable is not yet connected to the state service, so it will not update when the state changes
    * @param userId The user id to check. If not provided, the current user is used
    */
-  availableVaultTimeoutActions$: (userId?: string) => Observable<VaultTimeoutAction[]>;
+  abstract availableVaultTimeoutActions$(userId?: string): Observable<VaultTimeoutAction[]>;
 
   /**
    * Evaluates the user's available vault timeout actions and returns a boolean representing
    * if the user can lock or not
    */
-  canLock: (userId: string) => Promise<boolean>;
+  abstract canLock(userId: string): Promise<boolean>;
 
   /**
    * Gets the vault timeout action for the given user id. The returned value is
@@ -41,7 +39,7 @@ export abstract class VaultTimeoutSettingsService {
    * A new action will be emitted if the current state changes or if the user's policy changes and the new policy affects the action.
    * @param userId - the user id to get the vault timeout action for
    */
-  getVaultTimeoutActionByUserId$: (userId: string) => Observable<VaultTimeoutAction>;
+  abstract getVaultTimeoutActionByUserId$(userId: string): Observable<VaultTimeoutAction>;
 
   /**
    * Get the vault timeout for the given user id. The returned value is calculated based on the current state
@@ -50,14 +48,14 @@ export abstract class VaultTimeoutSettingsService {
    * A new timeout will be emitted if the current state changes or if the user's policy changes and the new policy affects the timeout.
    * @param userId The user id to get the vault timeout for
    */
-  getVaultTimeoutByUserId$: (userId: string) => Observable<VaultTimeout>;
+  abstract getVaultTimeoutByUserId$(userId: string): Observable<VaultTimeout>;
 
   /**
    * Has the user enabled unlock with Biometric.
    * @param userId The user id to check. If not provided, the current user is used
    * @returns boolean true if biometric lock is set
    */
-  isBiometricLockSet: (userId?: string) => Promise<boolean>;
+  abstract isBiometricLockSet(userId?: string): Promise<boolean>;
 
-  clear: (userId: UserId) => Promise<void>;
+  abstract clear(userId: UserId): Promise<void>;
 }
diff --git a/libs/common/src/key-management/vault-timeout/abstractions/vault-timeout.service.ts b/libs/common/src/key-management/vault-timeout/abstractions/vault-timeout.service.ts
index cb07c7d193a..1c88a5c51ea 100644
--- a/libs/common/src/key-management/vault-timeout/abstractions/vault-timeout.service.ts
+++ b/libs/common/src/key-management/vault-timeout/abstractions/vault-timeout.service.ts
@@ -1,7 +1,5 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 export abstract class VaultTimeoutService {
-  checkVaultTimeout: () => Promise<void>;
-  lock: (userId?: string) => Promise<void>;
-  logOut: (userId?: string) => Promise<void>;
+  abstract checkVaultTimeout(): Promise<void>;
+  abstract lock(userId?: string): Promise<void>;
+  abstract logOut(userId?: string): Promise<void>;
 }
diff --git a/libs/common/src/platform/abstractions/fido2/fido2-authenticator.service.abstraction.ts b/libs/common/src/platform/abstractions/fido2/fido2-authenticator.service.abstraction.ts
index fd3453198e6..c34c4b835cf 100644
--- a/libs/common/src/platform/abstractions/fido2/fido2-authenticator.service.abstraction.ts
+++ b/libs/common/src/platform/abstractions/fido2/fido2-authenticator.service.abstraction.ts
@@ -1,5 +1,3 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import { Fido2CredentialView } from "../../../vault/models/view/fido2-credential.view";
 
 /**
@@ -17,11 +15,11 @@ export abstract class Fido2AuthenticatorService<ParentWindowReference> {
    * @param abortController An AbortController that can be used to abort the operation.
    * @returns A promise that resolves with the new credential and an attestation signature.
    **/
-  makeCredential: (
+  abstract makeCredential(
     params: Fido2AuthenticatorMakeCredentialsParams,
     window: ParentWindowReference,
     abortController?: AbortController,
-  ) => Promise<Fido2AuthenticatorMakeCredentialResult>;
+  ): Promise<Fido2AuthenticatorMakeCredentialResult>;
 
   /**
    * Generate an assertion using an existing credential as describe in:
@@ -31,11 +29,11 @@ export abstract class Fido2AuthenticatorService<ParentWindowReference> {
    * @param abortController An AbortController that can be used to abort the operation.
    * @returns A promise that resolves with the asserted credential and an assertion signature.
    */
-  getAssertion: (
+  abstract getAssertion(
     params: Fido2AuthenticatorGetAssertionParams,
     window: ParentWindowReference,
     abortController?: AbortController,
-  ) => Promise<Fido2AuthenticatorGetAssertionResult>;
+  ): Promise<Fido2AuthenticatorGetAssertionResult>;
 
   /**
    * Discover credentials for a given Relying Party
@@ -43,7 +41,7 @@ export abstract class Fido2AuthenticatorService<ParentWindowReference> {
    * @param rpId The Relying Party's ID
    * @returns A promise that resolves with an array of discoverable credentials
    */
-  silentCredentialDiscovery: (rpId: string) => Promise<Fido2CredentialView[]>;
+  abstract silentCredentialDiscovery(rpId: string): Promise<Fido2CredentialView[]>;
 }
 
 // FIXME: update to use a const object instead of a typescript enum
diff --git a/libs/common/src/platform/abstractions/fido2/fido2-client.service.abstraction.ts b/libs/common/src/platform/abstractions/fido2/fido2-client.service.abstraction.ts
index 55d9cce8049..f1ad26673fd 100644
--- a/libs/common/src/platform/abstractions/fido2/fido2-client.service.abstraction.ts
+++ b/libs/common/src/platform/abstractions/fido2/fido2-client.service.abstraction.ts
@@ -1,5 +1,3 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 export const UserRequestedFallbackAbortReason = "UserRequestedFallback";
 
 export type UserVerification = "discouraged" | "preferred" | "required";
@@ -16,7 +14,7 @@ export type UserVerification = "discouraged" | "preferred" | "required";
  * and for returning the results of the latter operations to the Web Authentication API's callers.
  */
 export abstract class Fido2ClientService<ParentWindowReference> {
-  isFido2FeatureEnabled: (hostname: string, origin: string) => Promise<boolean>;
+  abstract isFido2FeatureEnabled(hostname: string, origin: string): Promise<boolean>;
 
   /**
    * Allows WebAuthn Relying Party scripts to request the creation of a new public key credential source.
@@ -26,11 +24,11 @@ export abstract class Fido2ClientService<ParentWindowReference> {
    * @param abortController An AbortController that can be used to abort the operation.
    * @returns A promise that resolves with the new credential.
    */
-  createCredential: (
+  abstract createCredential(
     params: CreateCredentialParams,
     window: ParentWindowReference,
     abortController?: AbortController,
-  ) => Promise<CreateCredentialResult>;
+  ): Promise<CreateCredentialResult>;
 
   /**
    * Allows WebAuthn Relying Party scripts to discover and use an existing public key credential, with the user’s consent.
@@ -41,11 +39,11 @@ export abstract class Fido2ClientService<ParentWindowReference> {
    * @param abortController An AbortController that can be used to abort the operation.
    * @returns A promise that resolves with the asserted credential.
    */
-  assertCredential: (
+  abstract assertCredential(
     params: AssertCredentialParams,
     window: ParentWindowReference,
     abortController?: AbortController,
-  ) => Promise<AssertCredentialResult>;
+  ): Promise<AssertCredentialResult>;
 }
 
 /**
diff --git a/libs/common/src/platform/abstractions/fido2/fido2-user-interface.service.abstraction.ts b/libs/common/src/platform/abstractions/fido2/fido2-user-interface.service.abstraction.ts
index 1f871f6c70f..28b199da78f 100644
--- a/libs/common/src/platform/abstractions/fido2/fido2-user-interface.service.abstraction.ts
+++ b/libs/common/src/platform/abstractions/fido2/fido2-user-interface.service.abstraction.ts
@@ -1,5 +1,3 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 /**
  * Parameters used to ask the user to confirm the creation of a new credential.
  */
@@ -69,11 +67,11 @@ export abstract class Fido2UserInterfaceService<ParentWindowReference> {
    * @param fallbackSupported Whether or not the browser natively supports WebAuthn.
    * @param abortController An abort controller that can be used to cancel/close the session.
    */
-  newSession: (
+  abstract newSession(
     fallbackSupported: boolean,
     window: ParentWindowReference,
     abortController?: AbortController,
-  ) => Promise<Fido2UserInterfaceSession>;
+  ): Promise<Fido2UserInterfaceSession>;
 }
 
 export abstract class Fido2UserInterfaceSession {
@@ -84,9 +82,9 @@ export abstract class Fido2UserInterfaceSession {
    * @param abortController An abort controller that can be used to cancel/close the session.
    * @returns The ID of the cipher that contains the credentials the user picked. If not cipher was picked, return cipherId = undefined to to let the authenticator throw the error.
    */
-  pickCredential: (
+  abstract pickCredential(
     params: PickCredentialParams,
-  ) => Promise<{ cipherId: string; userVerified: boolean }>;
+  ): Promise<{ cipherId: string; userVerified: boolean }>;
 
   /**
    * Ask the user to confirm the creation of a new credential.
@@ -95,30 +93,30 @@ export abstract class Fido2UserInterfaceSession {
    * @param abortController An abort controller that can be used to cancel/close the session.
    * @returns The ID of the cipher where the new credential should be saved.
    */
-  confirmNewCredential: (
+  abstract confirmNewCredential(
     params: NewCredentialParams,
-  ) => Promise<{ cipherId: string; userVerified: boolean }>;
+  ): Promise<{ cipherId: string; userVerified: boolean }>;
 
   /**
    * Make sure that the vault is unlocked.
    * This will open a window and ask the user to login or unlock the vault if necessary.
    */
-  ensureUnlockedVault: () => Promise<void>;
+  abstract ensureUnlockedVault(): Promise<void>;
 
   /**
    * Inform the user that the operation was cancelled because their vault contains excluded credentials.
    *
    * @param existingCipherIds The IDs of the excluded credentials.
    */
-  informExcludedCredential: (existingCipherIds: string[]) => Promise<void>;
+  abstract informExcludedCredential(existingCipherIds: string[]): Promise<void>;
 
   /**
    * Inform the user that the operation was cancelled because their vault does not contain any useable credentials.
    */
-  informCredentialNotFound: (abortController?: AbortController) => Promise<void>;
+  abstract informCredentialNotFound(abortController?: AbortController): Promise<void>;
 
   /**
    * Close the session, including any windows that may be open.
    */
-  close: () => void;
+  abstract close(): void;
 }
diff --git a/libs/common/src/platform/abstractions/state.service.ts b/libs/common/src/platform/abstractions/state.service.ts
index e4dbe76d7e4..4c1c000284e 100644
--- a/libs/common/src/platform/abstractions/state.service.ts
+++ b/libs/common/src/platform/abstractions/state.service.ts
@@ -1,5 +1,3 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import { BiometricKey } from "../../auth/types/biometric-key";
 import { Account } from "../models/domain/account";
 import { StorageOptions } from "../models/domain/storage-options";
@@ -19,47 +17,47 @@ export type InitOptions = {
 };
 
 export abstract class StateService<T extends Account = Account> {
-  addAccount: (account: T) => Promise<void>;
-  clean: (options?: StorageOptions) => Promise<void>;
-  init: (initOptions?: InitOptions) => Promise<void>;
+  abstract addAccount(account: T): Promise<void>;
+  abstract clean(options?: StorageOptions): Promise<void>;
+  abstract init(initOptions?: InitOptions): Promise<void>;
 
   /**
    * Gets the user's auto key
    */
-  getUserKeyAutoUnlock: (options?: StorageOptions) => Promise<string>;
+  abstract getUserKeyAutoUnlock(options?: StorageOptions): Promise<string>;
   /**
    * Sets the user's auto key
    */
-  setUserKeyAutoUnlock: (value: string | null, options?: StorageOptions) => Promise<void>;
+  abstract setUserKeyAutoUnlock(value: string | null, options?: StorageOptions): Promise<void>;
   /**
    * Gets the user's biometric key
    */
-  getUserKeyBiometric: (options?: StorageOptions) => Promise<string>;
+  abstract getUserKeyBiometric(options?: StorageOptions): Promise<string>;
   /**
    * Checks if the user has a biometric key available
    */
-  hasUserKeyBiometric: (options?: StorageOptions) => Promise<boolean>;
+  abstract hasUserKeyBiometric(options?: StorageOptions): Promise<boolean>;
   /**
    * Sets the user's biometric key
    */
-  setUserKeyBiometric: (value: BiometricKey, options?: StorageOptions) => Promise<void>;
+  abstract setUserKeyBiometric(value: BiometricKey, options?: StorageOptions): Promise<void>;
   /**
    * @deprecated For backwards compatible purposes only, use DesktopAutofillSettingsService
    */
-  setEnableDuckDuckGoBrowserIntegration: (
+  abstract setEnableDuckDuckGoBrowserIntegration(
     value: boolean,
     options?: StorageOptions,
-  ) => Promise<void>;
-  getDuckDuckGoSharedKey: (options?: StorageOptions) => Promise<string>;
-  setDuckDuckGoSharedKey: (value: string, options?: StorageOptions) => Promise<void>;
+  ): Promise<void>;
+  abstract getDuckDuckGoSharedKey(options?: StorageOptions): Promise<string>;
+  abstract setDuckDuckGoSharedKey(value: string, options?: StorageOptions): Promise<void>;
 
   /**
    * @deprecated Use `TokenService.hasAccessToken$()` or `AuthService.authStatusFor$` instead.
    */
-  getIsAuthenticated: (options?: StorageOptions) => Promise<boolean>;
+  abstract getIsAuthenticated(options?: StorageOptions): Promise<boolean>;
 
   /**
    * @deprecated Use `AccountService.activeAccount$` instead.
    */
-  getUserId: (options?: StorageOptions) => Promise<string>;
+  abstract getUserId(options?: StorageOptions): Promise<string>;
 }
diff --git a/libs/common/src/tools/password-strength/password-strength.service.abstraction.ts b/libs/common/src/tools/password-strength/password-strength.service.abstraction.ts
index a49a6d481b5..ccc47d487a4 100644
--- a/libs/common/src/tools/password-strength/password-strength.service.abstraction.ts
+++ b/libs/common/src/tools/password-strength/password-strength.service.abstraction.ts
@@ -1,7 +1,9 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import { ZXCVBNResult } from "zxcvbn";
 
 export abstract class PasswordStrengthServiceAbstraction {
-  getPasswordStrength: (password: string, email?: string, userInputs?: string[]) => ZXCVBNResult;
+  abstract getPasswordStrength(
+    password: string,
+    email?: string,
+    userInputs?: string[],
+  ): ZXCVBNResult;
 }
diff --git a/libs/common/src/tools/send/services/send-api.service.abstraction.ts b/libs/common/src/tools/send/services/send-api.service.abstraction.ts
index 570f3e746a0..80c4410af11 100644
--- a/libs/common/src/tools/send/services/send-api.service.abstraction.ts
+++ b/libs/common/src/tools/send/services/send-api.service.abstraction.ts
@@ -1,5 +1,3 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import { ListResponse } from "../../../models/response/list.response";
 import { EncArrayBuffer } from "../../../platform/models/domain/enc-array-buffer";
 import { Send } from "../models/domain/send";
@@ -12,26 +10,29 @@ import { SendResponse } from "../models/response/send.response";
 import { SendAccessView } from "../models/view/send-access.view";
 
 export abstract class SendApiService {
-  getSend: (id: string) => Promise<SendResponse>;
-  postSendAccess: (
+  abstract getSend(id: string): Promise<SendResponse>;
+  abstract postSendAccess(
     id: string,
     request: SendAccessRequest,
     apiUrl?: string,
-  ) => Promise<SendAccessResponse>;
-  getSends: () => Promise<ListResponse<SendResponse>>;
-  postSend: (request: SendRequest) => Promise<SendResponse>;
-  postFileTypeSend: (request: SendRequest) => Promise<SendFileUploadDataResponse>;
-  postSendFile: (sendId: string, fileId: string, data: FormData) => Promise<any>;
-  putSend: (id: string, request: SendRequest) => Promise<SendResponse>;
-  putSendRemovePassword: (id: string) => Promise<SendResponse>;
-  deleteSend: (id: string) => Promise<any>;
-  getSendFileDownloadData: (
+  ): Promise<SendAccessResponse>;
+  abstract getSends(): Promise<ListResponse<SendResponse>>;
+  abstract postSend(request: SendRequest): Promise<SendResponse>;
+  abstract postFileTypeSend(request: SendRequest): Promise<SendFileUploadDataResponse>;
+  abstract postSendFile(sendId: string, fileId: string, data: FormData): Promise<any>;
+  abstract putSend(id: string, request: SendRequest): Promise<SendResponse>;
+  abstract putSendRemovePassword(id: string): Promise<SendResponse>;
+  abstract deleteSend(id: string): Promise<any>;
+  abstract getSendFileDownloadData(
     send: SendAccessView,
     request: SendAccessRequest,
     apiUrl?: string,
-  ) => Promise<SendFileDownloadDataResponse>;
-  renewSendFileUploadUrl: (sendId: string, fileId: string) => Promise<SendFileUploadDataResponse>;
-  removePassword: (id: string) => Promise<any>;
-  delete: (id: string) => Promise<any>;
-  save: (sendData: [Send, EncArrayBuffer]) => Promise<Send>;
+  ): Promise<SendFileDownloadDataResponse>;
+  abstract renewSendFileUploadUrl(
+    sendId: string,
+    fileId: string,
+  ): Promise<SendFileUploadDataResponse>;
+  abstract removePassword(id: string): Promise<any>;
+  abstract delete(id: string): Promise<any>;
+  abstract save(sendData: [Send, EncArrayBuffer]): Promise<Send>;
 }
diff --git a/libs/common/src/tools/send/services/send.service.abstraction.ts b/libs/common/src/tools/send/services/send.service.abstraction.ts
index f586e39a755..8301172477c 100644
--- a/libs/common/src/tools/send/services/send.service.abstraction.ts
+++ b/libs/common/src/tools/send/services/send.service.abstraction.ts
@@ -1,5 +1,3 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import { Observable } from "rxjs";
 
 // This import has been flagged as unallowed for this class. It may be involved in a circular dependency loop.
@@ -16,49 +14,49 @@ import { SendWithIdRequest } from "../models/request/send-with-id.request";
 import { SendView } from "../models/view/send.view";
 
 export abstract class SendService implements UserKeyRotationDataProvider<SendWithIdRequest> {
-  sends$: Observable<Send[]>;
-  sendViews$: Observable<SendView[]>;
+  abstract sends$: Observable<Send[]>;
+  abstract sendViews$: Observable<SendView[]>;
 
-  encrypt: (
+  abstract encrypt(
     model: SendView,
     file: File | ArrayBuffer,
     password: string,
     key?: SymmetricCryptoKey,
-  ) => Promise<[Send, EncArrayBuffer]>;
+  ): Promise<[Send, EncArrayBuffer]>;
   /**
    * Provides a send for a determined id
    * updates after a change occurs to the send that matches the id
    * @param id The id of the desired send
    * @returns An observable that listens to the value of the desired send
    */
-  get$: (id: string) => Observable<Send | undefined>;
+  abstract get$(id: string): Observable<Send | undefined>;
   /**
    * Provides re-encrypted user sends for the key rotation process
    * @param newUserKey The new user key to use for re-encryption
    * @throws Error if the new user key is null or undefined
    * @returns A list of user sends that have been re-encrypted with the new user key
    */
-  getRotatedData: (
+  abstract getRotatedData(
     originalUserKey: UserKey,
     newUserKey: UserKey,
     userId: UserId,
-  ) => Promise<SendWithIdRequest[]>;
+  ): Promise<SendWithIdRequest[]>;
   /**
    * @deprecated Do not call this, use the sends$ observable collection
    */
-  getAll: () => Promise<Send[]>;
+  abstract getAll(): Promise<Send[]>;
   /**
    * @deprecated Only use in CLI
    */
-  getFromState: (id: string) => Promise<Send>;
+  abstract getFromState(id: string): Promise<Send>;
   /**
    * @deprecated Only use in CLI
    */
-  getAllDecryptedFromState: (userId: UserId) => Promise<SendView[]>;
+  abstract getAllDecryptedFromState(userId: UserId): Promise<SendView[]>;
 }
 
 export abstract class InternalSendService extends SendService {
-  upsert: (send: SendData | SendData[]) => Promise<any>;
-  replace: (sends: { [id: string]: SendData }, userId: UserId) => Promise<void>;
-  delete: (id: string | string[]) => Promise<any>;
+  abstract upsert(send: SendData | SendData[]): Promise<any>;
+  abstract replace(sends: { [id: string]: SendData }, userId: UserId): Promise<void>;
+  abstract delete(id: string | string[]): Promise<any>;
 }
diff --git a/libs/common/src/vault/abstractions/cipher.service.ts b/libs/common/src/vault/abstractions/cipher.service.ts
index 2f186369463..2f4fcf0ef51 100644
--- a/libs/common/src/vault/abstractions/cipher.service.ts
+++ b/libs/common/src/vault/abstractions/cipher.service.ts
@@ -1,5 +1,3 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import { Observable } from "rxjs";
 
 // This import has been flagged as unallowed for this class. It may be involved in a circular dependency loop.
diff --git a/libs/common/src/vault/abstractions/file-upload/cipher-file-upload.service.ts b/libs/common/src/vault/abstractions/file-upload/cipher-file-upload.service.ts
index 812439e2ca9..13c79241e36 100644
--- a/libs/common/src/vault/abstractions/file-upload/cipher-file-upload.service.ts
+++ b/libs/common/src/vault/abstractions/file-upload/cipher-file-upload.service.ts
@@ -1,5 +1,3 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import { EncString } from "../../../key-management/crypto/models/enc-string";
 import { EncArrayBuffer } from "../../../platform/models/domain/enc-array-buffer";
 import { SymmetricCryptoKey } from "../../../platform/models/domain/symmetric-crypto-key";
@@ -7,11 +5,11 @@ import { Cipher } from "../../models/domain/cipher";
 import { CipherResponse } from "../../models/response/cipher.response";
 
 export abstract class CipherFileUploadService {
-  upload: (
+  abstract upload(
     cipher: Cipher,
     encFileName: EncString,
     encData: EncArrayBuffer,
     admin: boolean,
     dataEncKey: [SymmetricCryptoKey, EncString],
-  ) => Promise<CipherResponse>;
+  ): Promise<CipherResponse>;
 }
diff --git a/libs/common/src/vault/abstractions/folder/folder-api.service.abstraction.ts b/libs/common/src/vault/abstractions/folder/folder-api.service.abstraction.ts
index 1bb4a52e929..1b89f1664ca 100644
--- a/libs/common/src/vault/abstractions/folder/folder-api.service.abstraction.ts
+++ b/libs/common/src/vault/abstractions/folder/folder-api.service.abstraction.ts
@@ -1,14 +1,11 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
-
 import { UserId } from "../../../types/guid";
 import { FolderData } from "../../models/data/folder.data";
 import { Folder } from "../../models/domain/folder";
 import { FolderResponse } from "../../models/response/folder.response";
 
-export class FolderApiServiceAbstraction {
-  save: (folder: Folder, userId: UserId) => Promise<FolderData>;
-  delete: (id: string, userId: UserId) => Promise<any>;
-  get: (id: string) => Promise<FolderResponse>;
-  deleteAll: (userId: UserId) => Promise<void>;
+export abstract class FolderApiServiceAbstraction {
+  abstract save(folder: Folder, userId: UserId): Promise<FolderData>;
+  abstract delete(id: string, userId: UserId): Promise<any>;
+  abstract get(id: string): Promise<FolderResponse>;
+  abstract deleteAll(userId: UserId): Promise<void>;
 }
diff --git a/libs/common/src/vault/abstractions/folder/folder.service.abstraction.ts b/libs/common/src/vault/abstractions/folder/folder.service.abstraction.ts
index 7324fe22c8d..e56bfda32a4 100644
--- a/libs/common/src/vault/abstractions/folder/folder.service.abstraction.ts
+++ b/libs/common/src/vault/abstractions/folder/folder.service.abstraction.ts
@@ -1,5 +1,3 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import { Observable } from "rxjs";
 
 // This import has been flagged as unallowed for this class. It may be involved in a circular dependency loop.
@@ -15,27 +13,27 @@ import { FolderWithIdRequest } from "../../models/request/folder-with-id.request
 import { FolderView } from "../../models/view/folder.view";
 
 export abstract class FolderService implements UserKeyRotationDataProvider<FolderWithIdRequest> {
-  folders$: (userId: UserId) => Observable<Folder[]>;
-  folderViews$: (userId: UserId) => Observable<FolderView[]>;
+  abstract folders$(userId: UserId): Observable<Folder[]>;
+  abstract folderViews$(userId: UserId): Observable<FolderView[]>;
 
-  clearDecryptedFolderState: (userId: UserId) => Promise<void>;
-  encrypt: (model: FolderView, key: SymmetricCryptoKey) => Promise<Folder>;
-  get: (id: string, userId: UserId) => Promise<Folder>;
-  getDecrypted$: (id: string, userId: UserId) => Observable<FolderView | undefined>;
+  abstract clearDecryptedFolderState(userId: UserId): Promise<void>;
+  abstract encrypt(model: FolderView, key: SymmetricCryptoKey): Promise<Folder>;
+  abstract get(id: string, userId: UserId): Promise<Folder>;
+  abstract getDecrypted$(id: string, userId: UserId): Observable<FolderView | undefined>;
   /**
    * @deprecated Use firstValueFrom(folders$) directly instead
    * @param userId The user id
    * @returns Promise of folders array
    */
-  getAllFromState: (userId: UserId) => Promise<Folder[]>;
+  abstract getAllFromState(userId: UserId): Promise<Folder[]>;
   /**
    * @deprecated Only use in CLI!
    */
-  getFromState: (id: string, userId: UserId) => Promise<Folder>;
+  abstract getFromState(id: string, userId: UserId): Promise<Folder>;
   /**
    * @deprecated Only use in CLI!
    */
-  getAllDecryptedFromState: (userId: UserId) => Promise<FolderView[]>;
+  abstract getAllDecryptedFromState(userId: UserId): Promise<FolderView[]>;
   /**
    * Returns user folders re-encrypted with the new user key.
    * @param originalUserKey the original user key
@@ -44,16 +42,16 @@ export abstract class FolderService implements UserKeyRotationDataProvider<Folde
    * @throws Error if new user key is null
    * @returns a list of user folders that have been re-encrypted with the new user key
    */
-  getRotatedData: (
+  abstract getRotatedData(
     originalUserKey: UserKey,
     newUserKey: UserKey,
     userId: UserId,
-  ) => Promise<FolderWithIdRequest[]>;
+  ): Promise<FolderWithIdRequest[]>;
 }
 
 export abstract class InternalFolderService extends FolderService {
-  upsert: (folder: FolderData | FolderData[], userId: UserId) => Promise<void>;
-  replace: (folders: { [id: string]: FolderData }, userId: UserId) => Promise<void>;
-  clear: (userId: UserId) => Promise<void>;
-  delete: (id: string | string[], userId: UserId) => Promise<any>;
+  abstract upsert(folder: FolderData | FolderData[], userId: UserId): Promise<void>;
+  abstract replace(folders: { [id: string]: FolderData }, userId: UserId): Promise<void>;
+  abstract clear(userId: UserId): Promise<void>;
+  abstract delete(id: string | string[], userId: UserId): Promise<any>;
 }
diff --git a/libs/common/src/vault/abstractions/search.service.ts b/libs/common/src/vault/abstractions/search.service.ts
index ed8bb2c3baf..57f301261c2 100644
--- a/libs/common/src/vault/abstractions/search.service.ts
+++ b/libs/common/src/vault/abstractions/search.service.ts
@@ -1,5 +1,3 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import { Observable } from "rxjs";
 
 import { SendView } from "../../tools/send/models/view/send.view";
@@ -8,25 +6,25 @@ import { CipherView } from "../models/view/cipher.view";
 import { CipherViewLike } from "../utils/cipher-view-like-utils";
 
 export abstract class SearchService {
-  indexedEntityId$: (userId: UserId) => Observable<IndexedEntityId | null>;
+  abstract indexedEntityId$(userId: UserId): Observable<IndexedEntityId | null>;
 
-  clearIndex: (userId: UserId) => Promise<void>;
-  isSearchable: (userId: UserId, query: string) => Promise<boolean>;
-  indexCiphers: (
+  abstract clearIndex(userId: UserId): Promise<void>;
+  abstract isSearchable(userId: UserId, query: string): Promise<boolean>;
+  abstract indexCiphers(
     userId: UserId,
     ciphersToIndex: CipherView[],
     indexedEntityGuid?: string,
-  ) => Promise<void>;
-  searchCiphers: <C extends CipherViewLike>(
+  ): Promise<void>;
+  abstract searchCiphers<C extends CipherViewLike>(
     userId: UserId,
     query: string,
     filter?: ((cipher: C) => boolean) | ((cipher: C) => boolean)[],
     ciphers?: C[],
-  ) => Promise<C[]>;
-  searchCiphersBasic: <C extends CipherViewLike>(
+  ): Promise<C[]>;
+  abstract searchCiphersBasic<C extends CipherViewLike>(
     ciphers: C[],
     query: string,
     deleted?: boolean,
-  ) => C[];
-  searchSends: (sends: SendView[], query: string) => SendView[];
+  ): C[];
+  abstract searchSends(sends: SendView[], query: string): SendView[];
 }
diff --git a/libs/common/src/vault/abstractions/vault-settings/vault-settings.service.ts b/libs/common/src/vault/abstractions/vault-settings/vault-settings.service.ts
index ea1e73c2685..01b0011b7f7 100644
--- a/libs/common/src/vault/abstractions/vault-settings/vault-settings.service.ts
+++ b/libs/common/src/vault/abstractions/vault-settings/vault-settings.service.ts
@@ -1,5 +1,3 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import { Observable } from "rxjs";
 /**
  * Service for managing vault settings.
@@ -9,42 +7,40 @@ export abstract class VaultSettingsService {
    * An observable monitoring the state of the enable passkeys setting.
    * The observable updates when the setting changes.
    */
-  enablePasskeys$: Observable<boolean>;
+  abstract enablePasskeys$: Observable<boolean>;
   /**
    * An observable monitoring the state of the show cards on the current tab.
    */
-  showCardsCurrentTab$: Observable<boolean>;
+  abstract showCardsCurrentTab$: Observable<boolean>;
   /**
    * An observable monitoring the state of the show identities on the current tab.
    */
-  showIdentitiesCurrentTab$: Observable<boolean>;
-  /**
+  abstract showIdentitiesCurrentTab$: Observable<boolean>;
   /**
    * An observable monitoring the state of the click items on the Vault view
    * for Autofill suggestions.
    */
-  clickItemsToAutofillVaultView$: Observable<boolean>;
-  /**
+  abstract clickItemsToAutofillVaultView$: Observable<boolean>;
 
   /**
    * Saves the enable passkeys setting to disk.
    * @param value The new value for the passkeys setting.
    */
-  setEnablePasskeys: (value: boolean) => Promise<void>;
+  abstract setEnablePasskeys(value: boolean): Promise<void>;
   /**
    * Saves the show cards on tab page setting to disk.
    * @param value The new value for the show cards on tab page setting.
    */
-  setShowCardsCurrentTab: (value: boolean) => Promise<void>;
+  abstract setShowCardsCurrentTab(value: boolean): Promise<void>;
   /**
    * Saves the show identities on tab page setting to disk.
    * @param value The new value for the show identities on tab page setting.
    */
-  setShowIdentitiesCurrentTab: (value: boolean) => Promise<void>;
+  abstract setShowIdentitiesCurrentTab(value: boolean): Promise<void>;
   /**
    * Saves the click items on vault View for Autofill suggestions to disk.
    * @param value The new value for the click items on vault View for
    * Autofill suggestions setting.
    */
-  setClickItemsToAutofillVaultView: (value: boolean) => Promise<void>;
+  abstract setClickItemsToAutofillVaultView(value: boolean): Promise<void>;
 }

From 78353a988249bf109b4017b71ce8ebcc2393d496 Mon Sep 17 00:00:00 2001
From: Todd Martin <106564991+trmartin4@users.noreply.github.com>
Date: Tue, 22 Jul 2025 14:04:23 -0400
Subject: [PATCH 201/239] fix(rpm): [PM-527] Remove build id links on rpm build

---
 apps/desktop/electron-builder.json | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/apps/desktop/electron-builder.json b/apps/desktop/electron-builder.json
index 832ab9d0bd3..800cdd848a7 100644
--- a/apps/desktop/electron-builder.json
+++ b/apps/desktop/electron-builder.json
@@ -240,7 +240,8 @@
     "artifactName": "${productName}-${version}-${arch}.${ext}"
   },
   "rpm": {
-    "artifactName": "${productName}-${version}-${arch}.${ext}"
+    "artifactName": "${productName}-${version}-${arch}.${ext}",
+    "fpm": ["--rpm-rpmbuild-define", "_build_id_links none"]
   },
   "freebsd": {
     "artifactName": "${productName}-${version}-${arch}.${ext}"

From d0fc9e9a2b1fbf5457736e5d80c5eb271187f638 Mon Sep 17 00:00:00 2001
From: Vincent Salucci <26154748+vincentsalucci@users.noreply.github.com>
Date: Tue, 22 Jul 2025 13:19:26 -0500
Subject: [PATCH 202/239] [PM-19589] Update delete organization user event log
 message (#15714)

* chore: update key and message with new content, refs PM-19589

* chore: update reference to new message key, refs PM-19589

* chore: update message based on product/design review, refs PM-19589
---
 apps/web/src/app/core/event.service.ts | 4 ++--
 apps/web/src/locales/en/messages.json  | 4 ++--
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/apps/web/src/app/core/event.service.ts b/apps/web/src/app/core/event.service.ts
index 14c87181f62..36d591cc390 100644
--- a/apps/web/src/app/core/event.service.ts
+++ b/apps/web/src/app/core/event.service.ts
@@ -342,9 +342,9 @@ export class EventService {
         );
         break;
       case EventType.OrganizationUser_Deleted:
-        msg = this.i18nService.t("deletedUserId", this.formatOrgUserId(ev));
+        msg = this.i18nService.t("deletedUserIdEventMessage", this.formatOrgUserId(ev));
         humanReadableMsg = this.i18nService.t(
-          "deletedUserId",
+          "deletedUserIdEventMessage",
           this.getShortId(ev.organizationUserId),
         );
         break;
diff --git a/apps/web/src/locales/en/messages.json b/apps/web/src/locales/en/messages.json
index 9c9ecc79721..5d7cbd7d479 100644
--- a/apps/web/src/locales/en/messages.json
+++ b/apps/web/src/locales/en/messages.json
@@ -10295,8 +10295,8 @@
   "organizationUserDeletedDesc": {
     "message": "The user was removed from the organization and all associated user data has been deleted."
   },
-  "deletedUserId": {
-    "message": "Deleted user $ID$ - an owner / admin deleted the user account",
+  "deletedUserIdEventMessage": {
+    "message": "Deleted user $ID$",
     "placeholders": {
       "id": {
         "content": "$1",

From 319528c647ad7e57cbc6f505ab390500696223c0 Mon Sep 17 00:00:00 2001
From: Miles Blackwood <mrobinson@bitwarden.com>
Date: Tue, 22 Jul 2025 14:45:59 -0400
Subject: [PATCH 203/239] Only call activeAccount$ when activeAccountStatus$ is
 Unlocked. (#15626)

---
 .../background/auto-submit-login.background.ts        | 11 ++++++++---
 1 file changed, 8 insertions(+), 3 deletions(-)

diff --git a/apps/browser/src/autofill/background/auto-submit-login.background.ts b/apps/browser/src/autofill/background/auto-submit-login.background.ts
index dcafe21b63c..dfdfa0f4d67 100644
--- a/apps/browser/src/autofill/background/auto-submit-login.background.ts
+++ b/apps/browser/src/autofill/background/auto-submit-login.background.ts
@@ -1,12 +1,12 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
-import { firstValueFrom, switchMap } from "rxjs";
+import { filter, firstValueFrom, of, switchMap } from "rxjs";
 
 import { PolicyService } from "@bitwarden/common/admin-console/abstractions/policy/policy.service.abstraction";
 import { PolicyType } from "@bitwarden/common/admin-console/enums";
 import { Policy } from "@bitwarden/common/admin-console/models/domain/policy";
 import { getFirstPolicy } from "@bitwarden/common/admin-console/services/policy/default-policy.service";
-import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
+import { Account, AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { AuthService } from "@bitwarden/common/auth/abstractions/auth.service";
 import { AuthenticationStatus } from "@bitwarden/common/auth/enums/authentication-status";
 import { getUserId } from "@bitwarden/common/auth/services/account.service";
@@ -51,9 +51,14 @@ export class AutoSubmitLoginBackground implements AutoSubmitLoginBackgroundAbstr
    * Initializes the auto-submit login policy. If the policy is not enabled, it
    * will trigger a removal of any established listeners.
    */
+
   async init() {
-    this.accountService.activeAccount$
+    this.authService.activeAccountStatus$
       .pipe(
+        switchMap((value) =>
+          value === AuthenticationStatus.Unlocked ? this.accountService.activeAccount$ : of(null),
+        ),
+        filter((account): account is Account => account !== null),
         getUserId,
         switchMap((userId) =>
           this.policyService.policiesByType$(PolicyType.AutomaticAppLogIn, userId),

From 53aaa2c285261e706bb11914b9ce5b85b589d6b0 Mon Sep 17 00:00:00 2001
From: Robyn MacCallum <robyntmaccallum@gmail.com>
Date: Tue, 22 Jul 2025 15:41:33 -0400
Subject: [PATCH 204/239] Update tsconfig and package json (#15636)

---
 .../package-lock.json                            | 16 ++++++++++++++++
 .../native-messaging-test-runner/package.json    |  6 +++++-
 .../native-messaging-test-runner/tsconfig.json   | 12 ++++++++++--
 3 files changed, 31 insertions(+), 3 deletions(-)

diff --git a/apps/desktop/native-messaging-test-runner/package-lock.json b/apps/desktop/native-messaging-test-runner/package-lock.json
index 37b8cf96ff3..043393df58b 100644
--- a/apps/desktop/native-messaging-test-runner/package-lock.json
+++ b/apps/desktop/native-messaging-test-runner/package-lock.json
@@ -10,7 +10,9 @@
       "license": "GPL-3.0",
       "dependencies": {
         "@bitwarden/common": "file:../../../libs/common",
+        "@bitwarden/logging": "dist/libs/logging/src",
         "@bitwarden/node": "file:../../../libs/node",
+        "@bitwarden/storage-core": "file:../../../libs/storage-core",
         "module-alias": "2.2.3",
         "ts-node": "10.9.2",
         "uuid": "11.1.0",
@@ -31,14 +33,28 @@
       "version": "0.0.0",
       "license": "GPL-3.0"
     },
+    "../../../libs/storage-core": {
+      "name": "@bitwarden/storage-core",
+      "version": "0.0.1",
+      "license": "GPL-3.0"
+    },
+    "dist/libs/logging/src": {},
     "node_modules/@bitwarden/common": {
       "resolved": "../../../libs/common",
       "link": true
     },
+    "node_modules/@bitwarden/logging": {
+      "resolved": "dist/libs/logging/src",
+      "link": true
+    },
     "node_modules/@bitwarden/node": {
       "resolved": "../../../libs/node",
       "link": true
     },
+    "node_modules/@bitwarden/storage-core": {
+      "resolved": "../../../libs/storage-core",
+      "link": true
+    },
     "node_modules/@cspotcode/source-map-support": {
       "version": "0.8.1",
       "resolved": "https://registry.npmjs.org/@cspotcode/source-map-support/-/source-map-support-0.8.1.tgz",
diff --git a/apps/desktop/native-messaging-test-runner/package.json b/apps/desktop/native-messaging-test-runner/package.json
index ea6b1b3e7a8..56e3e4edcf8 100644
--- a/apps/desktop/native-messaging-test-runner/package.json
+++ b/apps/desktop/native-messaging-test-runner/package.json
@@ -16,6 +16,8 @@
   "dependencies": {
     "@bitwarden/common": "file:../../../libs/common",
     "@bitwarden/node": "file:../../../libs/node",
+    "@bitwarden/storage-core": "file:../../../libs/storage-core",
+    "@bitwarden/logging": "dist/libs/logging/src",
     "module-alias": "2.2.3",
     "ts-node": "10.9.2",
     "uuid": "11.1.0",
@@ -27,6 +29,8 @@
   },
   "_moduleAliases": {
     "@bitwarden/common": "dist/libs/common/src",
-    "@bitwarden/node/services/node-crypto-function.service": "dist/libs/node/src/services/node-crypto-function.service"
+    "@bitwarden/node/services/node-crypto-function.service": "dist/libs/node/src/services/node-crypto-function.service",
+    "@bitwarden/storage-core": "dist/libs/storage-core/src",
+    "@bitwarden/logging": "dist/libs/logging/src"
   }
 }
diff --git a/apps/desktop/native-messaging-test-runner/tsconfig.json b/apps/desktop/native-messaging-test-runner/tsconfig.json
index 608e5a3bf4c..dcdf992f986 100644
--- a/apps/desktop/native-messaging-test-runner/tsconfig.json
+++ b/apps/desktop/native-messaging-test-runner/tsconfig.json
@@ -1,6 +1,6 @@
 {
-  "extends": "../tsconfig",
   "compilerOptions": {
+    "baseUrl": "./",
     "outDir": "dist",
     "target": "es6",
     "module": "CommonJS",
@@ -10,7 +10,15 @@
     "sourceMap": false,
     "declaration": false,
     "paths": {
-      "@src/*": ["src/*"]
+      "@src/*": ["src/*"],
+      "@bitwarden/user-core": ["../../../libs/user-core/src/index.ts"],
+      "@bitwarden/storage-core": ["../../../libs/storage-core/src/index.ts"],
+      "@bitwarden/logging": ["../../../libs/logging/src/index.ts"],
+      "@bitwarden/admin-console/*": ["../../../libs/admin-console/src/*"],
+      "@bitwarden/auth/*": ["../../../libs/auth/src/*"],
+      "@bitwarden/common/*": ["../../../libs/common/src/*"],
+      "@bitwarden/key-management": ["../../../libs/key-management/src/"],
+      "@bitwarden/node/*": ["../../../libs/node/src/*"]
     },
     "plugins": [
       {

From c2bbb7c0312f27bb6a5455d43f693e0ae1918495 Mon Sep 17 00:00:00 2001
From: Oscar Hinton <Hinton@users.noreply.github.com>
Date: Tue, 22 Jul 2025 21:59:42 +0200
Subject: [PATCH 205/239] Migrate vault abstract services to strict ts (#15731)

---
 .../src/vault/abstractions/deprecated-vault-filter.service.ts   | 2 --
 1 file changed, 2 deletions(-)

diff --git a/libs/angular/src/vault/abstractions/deprecated-vault-filter.service.ts b/libs/angular/src/vault/abstractions/deprecated-vault-filter.service.ts
index 9a1a31b6068..30a4c6d4739 100644
--- a/libs/angular/src/vault/abstractions/deprecated-vault-filter.service.ts
+++ b/libs/angular/src/vault/abstractions/deprecated-vault-filter.service.ts
@@ -1,5 +1,3 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import { Observable } from "rxjs";
 
 // This import has been flagged as unallowed for this class. It may be involved in a circular dependency loop.

From 54f0852f1a4c306fb5d087318ac429d7c3f10811 Mon Sep 17 00:00:00 2001
From: Oscar Hinton <Hinton@users.noreply.github.com>
Date: Tue, 22 Jul 2025 22:00:07 +0200
Subject: [PATCH 206/239] Migrate auth abstract services to strict ts (#15732)

---
 .../set-password-jit.service.abstraction.ts   |  4 +--
 .../auth-request.service.abstraction.ts       | 36 +++++++++----------
 .../abstractions/login-strategy.service.ts    | 26 +++++++-------
 3 files changed, 30 insertions(+), 36 deletions(-)

diff --git a/libs/auth/src/angular/set-password-jit/set-password-jit.service.abstraction.ts b/libs/auth/src/angular/set-password-jit/set-password-jit.service.abstraction.ts
index da6e9368007..92db88868a2 100644
--- a/libs/auth/src/angular/set-password-jit/set-password-jit.service.abstraction.ts
+++ b/libs/auth/src/angular/set-password-jit/set-password-jit.service.abstraction.ts
@@ -1,5 +1,3 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import { UserId } from "@bitwarden/common/types/guid";
 import { MasterKey } from "@bitwarden/common/types/key";
 import { KdfConfig } from "@bitwarden/key-management";
@@ -31,5 +29,5 @@ export abstract class SetPasswordJitService {
    * @throws If any property on the `credentials` object is null or undefined, or if a protectedUserKey
    *         or newKeyPair could not be created.
    */
-  setPassword: (credentials: SetPasswordCredentials) => Promise<void>;
+  abstract setPassword(credentials: SetPasswordCredentials): Promise<void>;
 }
diff --git a/libs/auth/src/common/abstractions/auth-request.service.abstraction.ts b/libs/auth/src/common/abstractions/auth-request.service.abstraction.ts
index 7e480c3a69c..9eea3fe7bb0 100644
--- a/libs/auth/src/common/abstractions/auth-request.service.abstraction.ts
+++ b/libs/auth/src/common/abstractions/auth-request.service.abstraction.ts
@@ -1,5 +1,3 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import { Observable } from "rxjs";
 
 import { AdminAuthRequestStorable } from "@bitwarden/common/auth/models/domain/admin-auth-req-storable";
@@ -10,20 +8,20 @@ import { UserKey, MasterKey } from "@bitwarden/common/types/key";
 
 export abstract class AuthRequestServiceAbstraction {
   /** Emits an auth request id when an auth request has been approved. */
-  authRequestPushNotification$: Observable<string>;
+  abstract authRequestPushNotification$: Observable<string>;
 
   /**
    * Emits when a login has been approved by an admin. This emission is specifically for the
    * purpose of notifying the consuming component to display a toast informing the user.
    */
-  adminLoginApproved$: Observable<void>;
+  abstract adminLoginApproved$: Observable<void>;
 
   /**
    * Returns an admin auth request for the given user if it exists.
    * @param userId The user id.
    * @throws If `userId` is not provided.
    */
-  abstract getAdminAuthRequest: (userId: UserId) => Promise<AdminAuthRequestStorable | null>;
+  abstract getAdminAuthRequest(userId: UserId): Promise<AdminAuthRequestStorable | null>;
   /**
    * Sets an admin auth request for the given user.
    * Note: use {@link clearAdminAuthRequest} to clear the request.
@@ -31,16 +29,16 @@ export abstract class AuthRequestServiceAbstraction {
    * @param userId The user id.
    * @throws If `authRequest` or `userId` is not provided.
    */
-  abstract setAdminAuthRequest: (
+  abstract setAdminAuthRequest(
     authRequest: AdminAuthRequestStorable,
     userId: UserId,
-  ) => Promise<void>;
+  ): Promise<void>;
   /**
    * Clears an admin auth request for the given user.
    * @param userId The user id.
    * @throws If `userId` is not provided.
    */
-  abstract clearAdminAuthRequest: (userId: UserId) => Promise<void>;
+  abstract clearAdminAuthRequest(userId: UserId): Promise<void>;
   /**
    * Gets a list of standard pending auth requests for the user.
    * @returns An observable of an array of auth request.
@@ -61,42 +59,42 @@ export abstract class AuthRequestServiceAbstraction {
    * approval was successful.
    * @throws If the auth request is missing an id or key.
    */
-  abstract approveOrDenyAuthRequest: (
+  abstract approveOrDenyAuthRequest(
     approve: boolean,
     authRequest: AuthRequestResponse,
-  ) => Promise<AuthRequestResponse>;
+  ): Promise<AuthRequestResponse>;
   /**
    * Sets the `UserKey` from an auth request. Auth request must have a `UserKey`.
    * @param authReqResponse The auth request.
    * @param authReqPrivateKey The private key corresponding to the public key sent in the auth request.
    * @param userId The ID of the user for whose account we will set the key.
    */
-  abstract setUserKeyAfterDecryptingSharedUserKey: (
+  abstract setUserKeyAfterDecryptingSharedUserKey(
     authReqResponse: AuthRequestResponse,
     authReqPrivateKey: ArrayBuffer,
     userId: UserId,
-  ) => Promise<void>;
+  ): Promise<void>;
   /**
    * Sets the `MasterKey` and `MasterKeyHash` from an auth request. Auth request must have a `MasterKey` and `MasterKeyHash`.
    * @param authReqResponse The auth request.
    * @param authReqPrivateKey The private key corresponding to the public key sent in the auth request.
    * @param userId The ID of the user for whose account we will set the keys.
    */
-  abstract setKeysAfterDecryptingSharedMasterKeyAndHash: (
+  abstract setKeysAfterDecryptingSharedMasterKeyAndHash(
     authReqResponse: AuthRequestResponse,
     authReqPrivateKey: ArrayBuffer,
     userId: UserId,
-  ) => Promise<void>;
+  ): Promise<void>;
   /**
    * Decrypts a `UserKey` from a public key encrypted `UserKey`.
    * @param pubKeyEncryptedUserKey The public key encrypted `UserKey`.
    * @param privateKey The private key corresponding to the public key used to encrypt the `UserKey`.
    * @returns The decrypted `UserKey`.
    */
-  abstract decryptPubKeyEncryptedUserKey: (
+  abstract decryptPubKeyEncryptedUserKey(
     pubKeyEncryptedUserKey: string,
     privateKey: ArrayBuffer,
-  ) => Promise<UserKey>;
+  ): Promise<UserKey>;
   /**
    * Decrypts a `MasterKey` and `MasterKeyHash` from a public key encrypted `MasterKey` and `MasterKeyHash`.
    * @param pubKeyEncryptedMasterKey The public key encrypted `MasterKey`.
@@ -104,18 +102,18 @@ export abstract class AuthRequestServiceAbstraction {
    * @param privateKey The private key corresponding to the public key used to encrypt the `MasterKey` and `MasterKeyHash`.
    * @returns The decrypted `MasterKey` and `MasterKeyHash`.
    */
-  abstract decryptPubKeyEncryptedMasterKeyAndHash: (
+  abstract decryptPubKeyEncryptedMasterKeyAndHash(
     pubKeyEncryptedMasterKey: string,
     pubKeyEncryptedMasterKeyHash: string,
     privateKey: ArrayBuffer,
-  ) => Promise<{ masterKey: MasterKey; masterKeyHash: string }>;
+  ): Promise<{ masterKey: MasterKey; masterKeyHash: string }>;
 
   /**
    * Handles incoming auth request push notifications.
    * @param notification push notification.
    * @remark We should only be receiving approved push notifications to prevent enumeration.
    */
-  abstract sendAuthRequestPushNotification: (notification: AuthRequestPushNotification) => void;
+  abstract sendAuthRequestPushNotification(notification: AuthRequestPushNotification): void;
 
   /**
    * Creates a dash-delimited fingerprint for use in confirming the `AuthRequest` between the requesting and approving device.
diff --git a/libs/auth/src/common/abstractions/login-strategy.service.ts b/libs/auth/src/common/abstractions/login-strategy.service.ts
index b0fffae2ab4..64854393240 100644
--- a/libs/auth/src/common/abstractions/login-strategy.service.ts
+++ b/libs/auth/src/common/abstractions/login-strategy.service.ts
@@ -1,5 +1,3 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import { Observable } from "rxjs";
 
 import { AuthenticationType } from "@bitwarden/common/auth/enums/authentication-type";
@@ -20,60 +18,60 @@ export abstract class LoginStrategyServiceAbstraction {
    * The current strategy being used to authenticate.
    * Emits null if the session has timed out.
    */
-  currentAuthType$: Observable<AuthenticationType | null>;
+  abstract currentAuthType$: Observable<AuthenticationType | null>;
   /**
    * If the login strategy uses the email address of the user, this
    * will return it. Otherwise, it will return null.
    */
-  getEmail: () => Promise<string | null>;
+  abstract getEmail(): Promise<string | null>;
   /**
    * If the user is logging in with a master password, this will return
    * the master password hash. Otherwise, it will return null.
    */
-  getMasterPasswordHash: () => Promise<string | null>;
+  abstract getMasterPasswordHash(): Promise<string | null>;
   /**
    * If the user is logging in with SSO, this will return
    * the email auth token. Otherwise, it will return null.
    * @see {@link SsoLoginStrategyData.ssoEmail2FaSessionToken}
    */
-  getSsoEmail2FaSessionToken: () => Promise<string | null>;
+  abstract getSsoEmail2FaSessionToken(): Promise<string | null>;
   /**
    * Returns the access code if the user is logging in with an
    * Auth Request. Otherwise, it will return null.
    */
-  getAccessCode: () => Promise<string | null>;
+  abstract getAccessCode(): Promise<string | null>;
   /**
    * Returns the auth request ID if the user is logging in with an
    * Auth Request. Otherwise, it will return null.
    */
-  getAuthRequestId: () => Promise<string | null>;
+  abstract getAuthRequestId(): Promise<string | null>;
   /**
    * Sends a token request to the server using the provided credentials.
    */
-  logIn: (
+  abstract logIn(
     credentials:
       | UserApiLoginCredentials
       | PasswordLoginCredentials
       | SsoLoginCredentials
       | AuthRequestLoginCredentials
       | WebAuthnLoginCredentials,
-  ) => Promise<AuthResult>;
+  ): Promise<AuthResult>;
   /**
    * Sends a token request to the server with the provided two factor token.
    * This uses data stored from {@link LoginStrategyServiceAbstraction.logIn}, so that must be called first.
    * Returns an error if no session data is found.
    */
-  logInTwoFactor: (twoFactor: TokenTwoFactorRequest) => Promise<AuthResult>;
+  abstract logInTwoFactor(twoFactor: TokenTwoFactorRequest): Promise<AuthResult>;
   /**
    * Creates a master key from the provided master password and email.
    */
-  makePreloginKey: (masterPassword: string, email: string) => Promise<MasterKey>;
+  abstract makePreloginKey(masterPassword: string, email: string): Promise<MasterKey>;
   /**
    * Emits true if the authentication session has expired.
    */
-  authenticationSessionTimeout$: Observable<boolean>;
+  abstract get authenticationSessionTimeout$(): Observable<boolean>;
   /**
    * Sends a token request to the server with the provided device verification OTP.
    */
-  logInNewDeviceVerification: (deviceVerificationOtp: string) => Promise<AuthResult>;
+  abstract logInNewDeviceVerification(deviceVerificationOtp: string): Promise<AuthResult>;
 }

From c37965174b4288789f06ff9be425da70c6d92e86 Mon Sep 17 00:00:00 2001
From: Oscar Hinton <Hinton@users.noreply.github.com>
Date: Tue, 22 Jul 2025 22:00:24 +0200
Subject: [PATCH 207/239] Migrate platform owned abstract service to strict ts
 (#15734)

---
 .../fido2-active-request-manager.abstraction.ts    | 14 ++++++--------
 1 file changed, 6 insertions(+), 8 deletions(-)

diff --git a/libs/common/src/platform/abstractions/fido2/fido2-active-request-manager.abstraction.ts b/libs/common/src/platform/abstractions/fido2/fido2-active-request-manager.abstraction.ts
index ffb78d51bd3..390a6f4e5bd 100644
--- a/libs/common/src/platform/abstractions/fido2/fido2-active-request-manager.abstraction.ts
+++ b/libs/common/src/platform/abstractions/fido2/fido2-active-request-manager.abstraction.ts
@@ -1,5 +1,3 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import { Observable, Subject } from "rxjs";
 
 import { Fido2CredentialView } from "../../../vault/models/view/fido2-credential.view";
@@ -25,13 +23,13 @@ export interface ActiveRequest {
 export type RequestCollection = Readonly<{ [tabId: number]: ActiveRequest }>;
 
 export abstract class Fido2ActiveRequestManager {
-  getActiveRequest$: (tabId: number) => Observable<ActiveRequest | undefined>;
-  getActiveRequest: (tabId: number) => ActiveRequest | undefined;
-  newActiveRequest: (
+  abstract getActiveRequest$(tabId: number): Observable<ActiveRequest | undefined>;
+  abstract getActiveRequest(tabId: number): ActiveRequest | undefined;
+  abstract newActiveRequest(
     tabId: number,
     credentials: Fido2CredentialView[],
     abortController: AbortController,
-  ) => Promise<RequestResult>;
-  removeActiveRequest: (tabId: number) => void;
-  removeAllActiveRequests: () => void;
+  ): Promise<RequestResult>;
+  abstract removeActiveRequest(tabId: number): void;
+  abstract removeAllActiveRequests(): void;
 }

From 643d0c9a4c8eeafb36bd103e9ff84cfae2cb6c23 Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Tue, 22 Jul 2025 15:56:08 -0700
Subject: [PATCH 208/239] [deps] Vault: Update form-data to v4.0.4 [SECURITY]
 (#15712)

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
---
 apps/cli/package.json |  2 +-
 package-lock.json     | 12 +++++++-----
 package.json          |  2 +-
 3 files changed, 9 insertions(+), 7 deletions(-)

diff --git a/apps/cli/package.json b/apps/cli/package.json
index 54855d72104..0d3c151f012 100644
--- a/apps/cli/package.json
+++ b/apps/cli/package.json
@@ -70,7 +70,7 @@
     "chalk": "4.1.2",
     "commander": "11.1.0",
     "core-js": "3.44.0",
-    "form-data": "4.0.2",
+    "form-data": "4.0.4",
     "https-proxy-agent": "7.0.6",
     "inquirer": "8.2.6",
     "jsdom": "26.1.0",
diff --git a/package-lock.json b/package-lock.json
index fbbc4c25b44..85bd2a0efb0 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -43,7 +43,7 @@
         "chalk": "4.1.2",
         "commander": "11.1.0",
         "core-js": "3.44.0",
-        "form-data": "4.0.2",
+        "form-data": "4.0.4",
         "https-proxy-agent": "7.0.6",
         "inquirer": "8.2.6",
         "jsdom": "26.1.0",
@@ -206,7 +206,7 @@
         "chalk": "4.1.2",
         "commander": "11.1.0",
         "core-js": "3.44.0",
-        "form-data": "4.0.2",
+        "form-data": "4.0.4",
         "https-proxy-agent": "7.0.6",
         "inquirer": "8.2.6",
         "jsdom": "26.1.0",
@@ -358,6 +358,7 @@
       "license": "GPL-3.0"
     },
     "libs/messaging-internal": {
+      "name": "@bitwarden/messaging-internal",
       "version": "0.0.1",
       "license": "GPL-3.0"
     },
@@ -21194,14 +21195,15 @@
       }
     },
     "node_modules/form-data": {
-      "version": "4.0.2",
-      "resolved": "https://registry.npmjs.org/form-data/-/form-data-4.0.2.tgz",
-      "integrity": "sha512-hGfm/slu0ZabnNt4oaRZ6uREyfCj6P4fT/n6A1rGV+Z0VdGXjfOhVUpkn6qVQONHGIFwmveGXyDs75+nr6FM8w==",
+      "version": "4.0.4",
+      "resolved": "https://registry.npmjs.org/form-data/-/form-data-4.0.4.tgz",
+      "integrity": "sha512-KrGhL9Q4zjj0kiUt5OO4Mr/A/jlI2jDYs5eHBpYHPcBEVSiipAvn2Ko2HnPe20rmcuuvMHNdZFp+4IlGTMF0Ow==",
       "license": "MIT",
       "dependencies": {
         "asynckit": "^0.4.0",
         "combined-stream": "^1.0.8",
         "es-set-tostringtag": "^2.1.0",
+        "hasown": "^2.0.2",
         "mime-types": "^2.1.12"
       },
       "engines": {
diff --git a/package.json b/package.json
index 2cb60a6afd1..bcf4f326531 100644
--- a/package.json
+++ b/package.json
@@ -178,7 +178,7 @@
     "chalk": "4.1.2",
     "commander": "11.1.0",
     "core-js": "3.44.0",
-    "form-data": "4.0.2",
+    "form-data": "4.0.4",
     "https-proxy-agent": "7.0.6",
     "inquirer": "8.2.6",
     "jsdom": "26.1.0",

From 2f47add6f157db355603c072fbde9cd4881b4ad0 Mon Sep 17 00:00:00 2001
From: Nick Krantz <125900171+nick-livefront@users.noreply.github.com>
Date: Tue, 22 Jul 2025 19:08:09 -0500
Subject: [PATCH 209/239] [PM-23596] Redirect to `/setup-extension` (#15641)

* remove current redirection from auth code

* update timeouts of the web browser interaction

* add guard for setup-extension page

* decrease timeout to 25ms

* avoid redirection for mobile users + add tests

* add tests

* condense variables

* catch error from profile fetch

---------

Co-authored-by: Shane Melton <smelton@bitwarden.com>
---
 .../web-registration-finish.service.spec.ts   |  22 ---
 .../web-registration-finish.service.ts        |  15 --
 apps/web/src/app/core/core.module.ts          |   1 -
 apps/web/src/app/oss-routing.module.ts        |   2 +
 .../add-extension-later-dialog.component.html |   8 +-
 ...d-extension-later-dialog.component.spec.ts |  14 ++
 .../add-extension-later-dialog.component.ts   |  17 ++-
 .../setup-extension.component.spec.ts         |  16 +++
 .../setup-extension.component.ts              |  30 +++-
 .../setup-extension-redirect.guard.spec.ts    | 132 ++++++++++++++++++
 .../guards/setup-extension-redirect.guard.ts  | 109 +++++++++++++++
 .../web-browser-interaction.service.spec.ts   |   6 +-
 .../web-browser-interaction.service.ts        |  17 ++-
 .../default-registration-finish.service.ts    |   4 -
 .../registration-finish.component.ts          |   3 +-
 .../registration-finish.service.ts            |   5 -
 .../src/platform/state/state-definitions.ts   |   7 +
 17 files changed, 347 insertions(+), 61 deletions(-)
 create mode 100644 apps/web/src/app/vault/guards/setup-extension-redirect.guard.spec.ts
 create mode 100644 apps/web/src/app/vault/guards/setup-extension-redirect.guard.ts

diff --git a/apps/web/src/app/auth/core/services/registration/web-registration-finish.service.spec.ts b/apps/web/src/app/auth/core/services/registration/web-registration-finish.service.spec.ts
index 69a2f27a322..845df89622b 100644
--- a/apps/web/src/app/auth/core/services/registration/web-registration-finish.service.spec.ts
+++ b/apps/web/src/app/auth/core/services/registration/web-registration-finish.service.spec.ts
@@ -12,7 +12,6 @@ import { AccountApiService } from "@bitwarden/common/auth/abstractions/account-a
 import { OrganizationInvite } from "@bitwarden/common/auth/services/organization-invite/organization-invite";
 import { OrganizationInviteService } from "@bitwarden/common/auth/services/organization-invite/organization-invite.service";
 import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
-import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import { CsprngArray } from "@bitwarden/common/types/csprng";
@@ -30,7 +29,6 @@ describe("WebRegistrationFinishService", () => {
   let policyApiService: MockProxy<PolicyApiServiceAbstraction>;
   let logService: MockProxy<LogService>;
   let policyService: MockProxy<PolicyService>;
-  let configService: MockProxy<ConfigService>;
 
   beforeEach(() => {
     keyService = mock<KeyService>();
@@ -39,7 +37,6 @@ describe("WebRegistrationFinishService", () => {
     policyApiService = mock<PolicyApiServiceAbstraction>();
     logService = mock<LogService>();
     policyService = mock<PolicyService>();
-    configService = mock<ConfigService>();
 
     service = new WebRegistrationFinishService(
       keyService,
@@ -48,7 +45,6 @@ describe("WebRegistrationFinishService", () => {
       policyApiService,
       logService,
       policyService,
-      configService,
     );
   });
 
@@ -414,22 +410,4 @@ describe("WebRegistrationFinishService", () => {
       );
     });
   });
-
-  describe("determineLoginSuccessRoute", () => {
-    it("returns /setup-extension when the end user activation feature flag is enabled", async () => {
-      configService.getFeatureFlag.mockResolvedValue(true);
-
-      const result = await service.determineLoginSuccessRoute();
-
-      expect(result).toBe("/setup-extension");
-    });
-
-    it("returns /vault when the end user activation feature flag is disabled", async () => {
-      configService.getFeatureFlag.mockResolvedValue(false);
-
-      const result = await service.determineLoginSuccessRoute();
-
-      expect(result).toBe("/vault");
-    });
-  });
 });
diff --git a/apps/web/src/app/auth/core/services/registration/web-registration-finish.service.ts b/apps/web/src/app/auth/core/services/registration/web-registration-finish.service.ts
index a3774e87db8..a9eba08be8c 100644
--- a/apps/web/src/app/auth/core/services/registration/web-registration-finish.service.ts
+++ b/apps/web/src/app/auth/core/services/registration/web-registration-finish.service.ts
@@ -14,12 +14,10 @@ import { Policy } from "@bitwarden/common/admin-console/models/domain/policy";
 import { AccountApiService } from "@bitwarden/common/auth/abstractions/account-api.service";
 import { RegisterFinishRequest } from "@bitwarden/common/auth/models/request/registration/register-finish.request";
 import { OrganizationInviteService } from "@bitwarden/common/auth/services/organization-invite/organization-invite.service";
-import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
 import {
   EncryptedString,
   EncString,
 } from "@bitwarden/common/key-management/crypto/models/enc-string";
-import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { KeyService } from "@bitwarden/key-management";
 
@@ -34,7 +32,6 @@ export class WebRegistrationFinishService
     private policyApiService: PolicyApiServiceAbstraction,
     private logService: LogService,
     private policyService: PolicyService,
-    private configService: ConfigService,
   ) {
     super(keyService, accountApiService);
   }
@@ -79,18 +76,6 @@ export class WebRegistrationFinishService
     return masterPasswordPolicyOpts;
   }
 
-  override async determineLoginSuccessRoute(): Promise<string> {
-    const endUserActivationFlagEnabled = await this.configService.getFeatureFlag(
-      FeatureFlag.PM19315EndUserActivationMvp,
-    );
-
-    if (endUserActivationFlagEnabled) {
-      return "/setup-extension";
-    } else {
-      return super.determineLoginSuccessRoute();
-    }
-  }
-
   // Note: the org invite token and email verification are mutually exclusive. Only one will be present.
   override async buildRegisterRequest(
     email: string,
diff --git a/apps/web/src/app/core/core.module.ts b/apps/web/src/app/core/core.module.ts
index d98a2ee8cf2..7fe8ef4c79f 100644
--- a/apps/web/src/app/core/core.module.ts
+++ b/apps/web/src/app/core/core.module.ts
@@ -264,7 +264,6 @@ const safeProviders: SafeProvider[] = [
       PolicyApiServiceAbstraction,
       LogService,
       PolicyService,
-      ConfigService,
     ],
   }),
   safeProvider({
diff --git a/apps/web/src/app/oss-routing.module.ts b/apps/web/src/app/oss-routing.module.ts
index 8a2270113a9..1fb19757d60 100644
--- a/apps/web/src/app/oss-routing.module.ts
+++ b/apps/web/src/app/oss-routing.module.ts
@@ -83,6 +83,7 @@ import { SendComponent } from "./tools/send/send.component";
 import { BrowserExtensionPromptInstallComponent } from "./vault/components/browser-extension-prompt/browser-extension-prompt-install.component";
 import { BrowserExtensionPromptComponent } from "./vault/components/browser-extension-prompt/browser-extension-prompt.component";
 import { SetupExtensionComponent } from "./vault/components/setup-extension/setup-extension.component";
+import { setupExtensionRedirectGuard } from "./vault/guards/setup-extension-redirect.guard";
 import { VaultModule } from "./vault/individual-vault/vault.module";
 
 const routes: Routes = [
@@ -628,6 +629,7 @@ const routes: Routes = [
     children: [
       {
         path: "vault",
+        canActivate: [setupExtensionRedirectGuard],
         loadChildren: () => VaultModule,
       },
       {
diff --git a/apps/web/src/app/vault/components/setup-extension/add-extension-later-dialog.component.html b/apps/web/src/app/vault/components/setup-extension/add-extension-later-dialog.component.html
index df1786e227e..560bd5fd464 100644
--- a/apps/web/src/app/vault/components/setup-extension/add-extension-later-dialog.component.html
+++ b/apps/web/src/app/vault/components/setup-extension/add-extension-later-dialog.component.html
@@ -18,7 +18,13 @@
     >
       {{ "getTheExtension" | i18n }}
     </a>
-    <a bitButton buttonType="secondary" routerLink="/vault" bitDialogClose>
+    <a
+      bitButton
+      buttonType="secondary"
+      routerLink="/vault"
+      bitDialogClose
+      (click)="dismissExtensionPage()"
+    >
       {{ "skipToWebApp" | i18n }}
     </a>
   </ng-container>
diff --git a/apps/web/src/app/vault/components/setup-extension/add-extension-later-dialog.component.spec.ts b/apps/web/src/app/vault/components/setup-extension/add-extension-later-dialog.component.spec.ts
index d34dba737dd..a5d5ec4b939 100644
--- a/apps/web/src/app/vault/components/setup-extension/add-extension-later-dialog.component.spec.ts
+++ b/apps/web/src/app/vault/components/setup-extension/add-extension-later-dialog.component.spec.ts
@@ -1,3 +1,4 @@
+import { DialogRef } from "@angular/cdk/dialog";
 import { ComponentFixture, TestBed } from "@angular/core/testing";
 import { By } from "@angular/platform-browser";
 import { provideNoopAnimations } from "@angular/platform-browser/animations";
@@ -5,20 +6,26 @@ import { RouterModule } from "@angular/router";
 
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
+import { DIALOG_DATA } from "@bitwarden/components";
 
 import { AddExtensionLaterDialogComponent } from "./add-extension-later-dialog.component";
 
 describe("AddExtensionLaterDialogComponent", () => {
   let fixture: ComponentFixture<AddExtensionLaterDialogComponent>;
   const getDevice = jest.fn().mockReturnValue(null);
+  const onDismiss = jest.fn();
 
   beforeEach(async () => {
+    onDismiss.mockClear();
+
     await TestBed.configureTestingModule({
       imports: [AddExtensionLaterDialogComponent, RouterModule.forRoot([])],
       providers: [
         provideNoopAnimations(),
         { provide: PlatformUtilsService, useValue: { getDevice } },
         { provide: I18nService, useValue: { t: (key: string) => key } },
+        { provide: DialogRef, useValue: { close: jest.fn() } },
+        { provide: DIALOG_DATA, useValue: { onDismiss } },
       ],
     }).compileComponents();
 
@@ -39,4 +46,11 @@ describe("AddExtensionLaterDialogComponent", () => {
 
     expect(skipLink.attributes.href).toBe("/vault");
   });
+
+  it('invokes `onDismiss` when "Skip to Web App" is clicked', () => {
+    const skipLink = fixture.debugElement.queryAll(By.css("a[bitButton]"))[1];
+    skipLink.triggerEventHandler("click", {});
+
+    expect(onDismiss).toHaveBeenCalled();
+  });
 });
diff --git a/apps/web/src/app/vault/components/setup-extension/add-extension-later-dialog.component.ts b/apps/web/src/app/vault/components/setup-extension/add-extension-later-dialog.component.ts
index 3324cb8b1b0..5f4e3f586f5 100644
--- a/apps/web/src/app/vault/components/setup-extension/add-extension-later-dialog.component.ts
+++ b/apps/web/src/app/vault/components/setup-extension/add-extension-later-dialog.component.ts
@@ -4,7 +4,17 @@ import { RouterModule } from "@angular/router";
 import { JslibModule } from "@bitwarden/angular/jslib.module";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
 import { getWebStoreUrl } from "@bitwarden/common/vault/utils/get-web-store-url";
-import { ButtonComponent, DialogModule, TypographyModule } from "@bitwarden/components";
+import {
+  ButtonComponent,
+  DIALOG_DATA,
+  DialogModule,
+  TypographyModule,
+} from "@bitwarden/components";
+
+export type AddExtensionLaterDialogData = {
+  /** Method invoked when the dialog is dismissed */
+  onDismiss: () => void;
+};
 
 @Component({
   selector: "vault-add-extension-later-dialog",
@@ -13,6 +23,7 @@ import { ButtonComponent, DialogModule, TypographyModule } from "@bitwarden/comp
 })
 export class AddExtensionLaterDialogComponent implements OnInit {
   private platformUtilsService = inject(PlatformUtilsService);
+  private data: AddExtensionLaterDialogData = inject(DIALOG_DATA);
 
   /** Download Url for the extension based on the browser */
   protected webStoreUrl: string = "";
@@ -20,4 +31,8 @@ export class AddExtensionLaterDialogComponent implements OnInit {
   ngOnInit(): void {
     this.webStoreUrl = getWebStoreUrl(this.platformUtilsService.getDevice());
   }
+
+  async dismissExtensionPage() {
+    this.data.onDismiss();
+  }
 }
diff --git a/apps/web/src/app/vault/components/setup-extension/setup-extension.component.spec.ts b/apps/web/src/app/vault/components/setup-extension/setup-extension.component.spec.ts
index 752e2c8d4a6..e824cd92f37 100644
--- a/apps/web/src/app/vault/components/setup-extension/setup-extension.component.spec.ts
+++ b/apps/web/src/app/vault/components/setup-extension/setup-extension.component.spec.ts
@@ -3,12 +3,14 @@ import { By } from "@angular/platform-browser";
 import { Router, RouterModule } from "@angular/router";
 import { BehaviorSubject } from "rxjs";
 
+import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { DeviceType } from "@bitwarden/common/enums";
 import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
 import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
+import { StateProvider } from "@bitwarden/common/platform/state";
 
 import { WebBrowserInteractionService } from "../../services/web-browser-interaction.service";
 
@@ -21,11 +23,13 @@ describe("SetupExtensionComponent", () => {
   const getFeatureFlag = jest.fn().mockResolvedValue(false);
   const navigate = jest.fn().mockResolvedValue(true);
   const openExtension = jest.fn().mockResolvedValue(true);
+  const update = jest.fn().mockResolvedValue(true);
   const extensionInstalled$ = new BehaviorSubject<boolean | null>(null);
 
   beforeEach(async () => {
     navigate.mockClear();
     openExtension.mockClear();
+    update.mockClear();
     getFeatureFlag.mockClear().mockResolvedValue(true);
     window.matchMedia = jest.fn().mockReturnValue(false);
 
@@ -36,6 +40,14 @@ describe("SetupExtensionComponent", () => {
         { provide: ConfigService, useValue: { getFeatureFlag } },
         { provide: WebBrowserInteractionService, useValue: { extensionInstalled$, openExtension } },
         { provide: PlatformUtilsService, useValue: { getDevice: () => DeviceType.UnknownBrowser } },
+        {
+          provide: AccountService,
+          useValue: { activeAccount$: new BehaviorSubject({ account: { id: "account-id" } }) },
+        },
+        {
+          provide: StateProvider,
+          useValue: { getUser: () => ({ update }) },
+        },
       ],
     }).compileComponents();
 
@@ -120,6 +132,10 @@ describe("SetupExtensionComponent", () => {
 
         expect(openExtension).toHaveBeenCalled();
       });
+
+      it("dismisses the extension page", () => {
+        expect(update).toHaveBeenCalledTimes(1);
+      });
     });
   });
 });
diff --git a/apps/web/src/app/vault/components/setup-extension/setup-extension.component.ts b/apps/web/src/app/vault/components/setup-extension/setup-extension.component.ts
index 9ee8e189627..14770ca5d6c 100644
--- a/apps/web/src/app/vault/components/setup-extension/setup-extension.component.ts
+++ b/apps/web/src/app/vault/components/setup-extension/setup-extension.component.ts
@@ -2,13 +2,16 @@ import { DOCUMENT, NgIf } from "@angular/common";
 import { Component, DestroyRef, inject, OnDestroy, OnInit } from "@angular/core";
 import { takeUntilDestroyed } from "@angular/core/rxjs-interop";
 import { Router, RouterModule } from "@angular/router";
-import { pairwise, startWith } from "rxjs";
+import { firstValueFrom, pairwise, startWith } from "rxjs";
 
 import { JslibModule } from "@bitwarden/angular/jslib.module";
+import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
+import { getUserId } from "@bitwarden/common/auth/services/account.service";
 import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
 import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
+import { StateProvider } from "@bitwarden/common/platform/state";
 import { UnionOfValues } from "@bitwarden/common/vault/types/union-of-values";
 import { getWebStoreUrl } from "@bitwarden/common/vault/utils/get-web-store-url";
 import {
@@ -20,9 +23,13 @@ import {
 } from "@bitwarden/components";
 import { VaultIcons } from "@bitwarden/vault";
 
+import { SETUP_EXTENSION_DISMISSED } from "../../guards/setup-extension-redirect.guard";
 import { WebBrowserInteractionService } from "../../services/web-browser-interaction.service";
 
-import { AddExtensionLaterDialogComponent } from "./add-extension-later-dialog.component";
+import {
+  AddExtensionLaterDialogComponent,
+  AddExtensionLaterDialogData,
+} from "./add-extension-later-dialog.component";
 import { AddExtensionVideosComponent } from "./add-extension-videos.component";
 
 const SetupExtensionState = {
@@ -53,6 +60,8 @@ export class SetupExtensionComponent implements OnInit, OnDestroy {
   private destroyRef = inject(DestroyRef);
   private platformUtilsService = inject(PlatformUtilsService);
   private dialogService = inject(DialogService);
+  private stateProvider = inject(StateProvider);
+  private accountService = inject(AccountService);
   private document = inject(DOCUMENT);
 
   protected SetupExtensionState = SetupExtensionState;
@@ -96,6 +105,7 @@ export class SetupExtensionComponent implements OnInit, OnDestroy {
         // Extension was not installed and now it is, show success state
         if (previousState === false && currentState) {
           this.dialogRef?.close();
+          void this.dismissExtensionPage();
           this.state = SetupExtensionState.Success;
         }
 
@@ -125,17 +135,31 @@ export class SetupExtensionComponent implements OnInit, OnDestroy {
     const isMobile = Utils.isMobileBrowser;
 
     if (!isFeatureEnabled || isMobile) {
+      await this.dismissExtensionPage();
       await this.router.navigate(["/vault"]);
     }
   }
 
   /** Opens the add extension later dialog */
   addItLater() {
-    this.dialogRef = this.dialogService.open(AddExtensionLaterDialogComponent);
+    this.dialogRef = this.dialogService.open<unknown, AddExtensionLaterDialogData>(
+      AddExtensionLaterDialogComponent,
+      {
+        data: {
+          onDismiss: this.dismissExtensionPage.bind(this),
+        },
+      },
+    );
   }
 
   /** Opens the browser extension */
   openExtension() {
     void this.webBrowserExtensionInteractionService.openExtension();
   }
+
+  /** Update local state to never show this page again. */
+  private async dismissExtensionPage() {
+    const accountId = await firstValueFrom(this.accountService.activeAccount$.pipe(getUserId));
+    void this.stateProvider.getUser(accountId, SETUP_EXTENSION_DISMISSED).update(() => true);
+  }
 }
diff --git a/apps/web/src/app/vault/guards/setup-extension-redirect.guard.spec.ts b/apps/web/src/app/vault/guards/setup-extension-redirect.guard.spec.ts
new file mode 100644
index 00000000000..e6fc03fd844
--- /dev/null
+++ b/apps/web/src/app/vault/guards/setup-extension-redirect.guard.spec.ts
@@ -0,0 +1,132 @@
+import { TestBed } from "@angular/core/testing";
+import { ActivatedRouteSnapshot, Router, RouterStateSnapshot } from "@angular/router";
+import { BehaviorSubject } from "rxjs";
+
+import { VaultProfileService } from "@bitwarden/angular/vault/services/vault-profile.service";
+import { Account, AccountService } from "@bitwarden/common/auth/abstractions/account.service";
+import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
+import { Utils } from "@bitwarden/common/platform/misc/utils";
+import { StateProvider } from "@bitwarden/common/platform/state";
+
+import { WebBrowserInteractionService } from "../services/web-browser-interaction.service";
+
+import { setupExtensionRedirectGuard } from "./setup-extension-redirect.guard";
+
+describe("setupExtensionRedirectGuard", () => {
+  const _state = Object.freeze({}) as RouterStateSnapshot;
+  const emptyRoute = Object.freeze({ queryParams: {} }) as ActivatedRouteSnapshot;
+  const seventeenDaysAgo = new Date();
+  seventeenDaysAgo.setDate(seventeenDaysAgo.getDate() - 17);
+
+  const account = {
+    id: "account-id",
+  } as unknown as Account;
+
+  const activeAccount$ = new BehaviorSubject<Account | null>(account);
+  const extensionInstalled$ = new BehaviorSubject<boolean>(false);
+  const state$ = new BehaviorSubject<boolean>(false);
+  const createUrlTree = jest.fn();
+  const getFeatureFlag = jest.fn().mockImplementation((key) => {
+    if (key === FeatureFlag.PM19315EndUserActivationMvp) {
+      return Promise.resolve(true);
+    }
+
+    return Promise.resolve(false);
+  });
+  const getProfileCreationDate = jest.fn().mockResolvedValue(seventeenDaysAgo);
+
+  beforeEach(() => {
+    Utils.isMobileBrowser = false;
+
+    getFeatureFlag.mockClear();
+    getProfileCreationDate.mockClear();
+    createUrlTree.mockClear();
+
+    TestBed.configureTestingModule({
+      providers: [
+        { provide: Router, useValue: { createUrlTree } },
+        { provide: ConfigService, useValue: { getFeatureFlag } },
+        { provide: AccountService, useValue: { activeAccount$ } },
+        { provide: StateProvider, useValue: { getUser: () => ({ state$ }) } },
+        { provide: WebBrowserInteractionService, useValue: { extensionInstalled$ } },
+        {
+          provide: VaultProfileService,
+          useValue: { getProfileCreationDate },
+        },
+      ],
+    });
+  });
+
+  function setupExtensionGuard(route?: ActivatedRouteSnapshot) {
+    // Run the guard within injection context so `inject` works as you'd expect
+    // Pass state object to make TypeScript happy
+    return TestBed.runInInjectionContext(async () =>
+      setupExtensionRedirectGuard(route ?? emptyRoute, _state),
+    );
+  }
+
+  it("returns `true` when the profile was created more than 30 days ago", async () => {
+    const thirtyOneDaysAgo = new Date();
+    thirtyOneDaysAgo.setDate(thirtyOneDaysAgo.getDate() - 31);
+
+    getProfileCreationDate.mockResolvedValueOnce(thirtyOneDaysAgo);
+
+    expect(await setupExtensionGuard()).toBe(true);
+  });
+
+  it("returns `true` when the profile check fails", async () => {
+    getProfileCreationDate.mockRejectedValueOnce(new Error("Profile check failed"));
+
+    expect(await setupExtensionGuard()).toBe(true);
+  });
+
+  it("returns `true` when the feature flag is disabled", async () => {
+    getFeatureFlag.mockResolvedValueOnce(false);
+
+    expect(await setupExtensionGuard()).toBe(true);
+  });
+
+  it("returns `true` when the user is on a mobile device", async () => {
+    Utils.isMobileBrowser = true;
+
+    expect(await setupExtensionGuard()).toBe(true);
+  });
+
+  it("returns `true` when the user has dismissed the extension page", async () => {
+    state$.next(true);
+
+    expect(await setupExtensionGuard()).toBe(true);
+  });
+
+  it("returns `true` when the user has the extension installed", async () => {
+    state$.next(false);
+    extensionInstalled$.next(true);
+
+    expect(await setupExtensionGuard()).toBe(true);
+  });
+
+  it('redirects the user to "/setup-extension" when all criteria do not pass', async () => {
+    state$.next(false);
+    extensionInstalled$.next(false);
+
+    await setupExtensionGuard();
+
+    expect(createUrlTree).toHaveBeenCalledWith(["/setup-extension"]);
+  });
+
+  describe("missing current account", () => {
+    afterAll(() => {
+      // reset `activeAccount$` observable
+      activeAccount$.next(account);
+    });
+
+    it("redirects to login when account is missing", async () => {
+      activeAccount$.next(null);
+
+      await setupExtensionGuard();
+
+      expect(createUrlTree).toHaveBeenCalledWith(["/login"]);
+    });
+  });
+});
diff --git a/apps/web/src/app/vault/guards/setup-extension-redirect.guard.ts b/apps/web/src/app/vault/guards/setup-extension-redirect.guard.ts
new file mode 100644
index 00000000000..983fd8ed0aa
--- /dev/null
+++ b/apps/web/src/app/vault/guards/setup-extension-redirect.guard.ts
@@ -0,0 +1,109 @@
+import { inject } from "@angular/core";
+import { CanActivateFn, Router } from "@angular/router";
+import { firstValueFrom, map } from "rxjs";
+
+import { VaultProfileService } from "@bitwarden/angular/vault/services/vault-profile.service";
+import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
+import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
+import { Utils } from "@bitwarden/common/platform/misc/utils";
+import {
+  SETUP_EXTENSION_DISMISSED_DISK,
+  StateProvider,
+  UserKeyDefinition,
+} from "@bitwarden/common/platform/state";
+
+import { WebBrowserInteractionService } from "../services/web-browser-interaction.service";
+
+export const SETUP_EXTENSION_DISMISSED = new UserKeyDefinition<boolean>(
+  SETUP_EXTENSION_DISMISSED_DISK,
+  "setupExtensionDismissed",
+  {
+    deserializer: (dismissed) => dismissed,
+    clearOn: [],
+  },
+);
+
+export const setupExtensionRedirectGuard: CanActivateFn = async () => {
+  const router = inject(Router);
+  const configService = inject(ConfigService);
+  const accountService = inject(AccountService);
+  const vaultProfileService = inject(VaultProfileService);
+  const stateProvider = inject(StateProvider);
+  const webBrowserInteractionService = inject(WebBrowserInteractionService);
+
+  const isMobile = Utils.isMobileBrowser;
+
+  const endUserFeatureEnabled = await configService.getFeatureFlag(
+    FeatureFlag.PM19315EndUserActivationMvp,
+  );
+
+  // The extension page isn't applicable for mobile users, do not redirect them.
+  // Include before any other checks to avoid unnecessary processing.
+  if (!endUserFeatureEnabled || isMobile) {
+    return true;
+  }
+
+  const currentAcct = await firstValueFrom(accountService.activeAccount$);
+
+  if (!currentAcct) {
+    return router.createUrlTree(["/login"]);
+  }
+
+  const hasExtensionInstalledPromise = firstValueFrom(
+    webBrowserInteractionService.extensionInstalled$,
+  );
+
+  const dismissedExtensionPage = await firstValueFrom(
+    stateProvider
+      .getUser(currentAcct.id, SETUP_EXTENSION_DISMISSED)
+      .state$.pipe(map((dismissed) => dismissed ?? false)),
+  );
+
+  const isProfileOlderThan30Days = await profileIsOlderThan30Days(
+    vaultProfileService,
+    currentAcct.id,
+  ).catch(
+    () =>
+      // If the call for the profile fails for any reason, do not block the user
+      true,
+  );
+
+  if (dismissedExtensionPage || isProfileOlderThan30Days) {
+    return true;
+  }
+
+  // Checking for the extension is a more expensive operation, do it last to avoid unnecessary delays.
+  const hasExtensionInstalled = await hasExtensionInstalledPromise;
+
+  if (hasExtensionInstalled) {
+    return true;
+  }
+
+  return router.createUrlTree(["/setup-extension"]);
+};
+
+/** Returns true when the user's profile is older than 30 days */
+async function profileIsOlderThan30Days(
+  vaultProfileService: VaultProfileService,
+  userId: string,
+): Promise<boolean> {
+  const creationDate = await vaultProfileService.getProfileCreationDate(userId);
+  return isMoreThan30DaysAgo(creationDate);
+}
+
+/** Returns the true when the date given is older than 30 days */
+function isMoreThan30DaysAgo(date?: string | Date): boolean {
+  if (!date) {
+    return false;
+  }
+
+  const inputDate = new Date(date).getTime();
+  const today = new Date().getTime();
+
+  const differenceInMS = today - inputDate;
+  const msInADay = 1000 * 60 * 60 * 24;
+  const differenceInDays = Math.round(differenceInMS / msInADay);
+
+  return differenceInDays > 30;
+}
diff --git a/apps/web/src/app/vault/services/web-browser-interaction.service.spec.ts b/apps/web/src/app/vault/services/web-browser-interaction.service.spec.ts
index fef5d45e8c3..bfbfb0fb676 100644
--- a/apps/web/src/app/vault/services/web-browser-interaction.service.spec.ts
+++ b/apps/web/src/app/vault/services/web-browser-interaction.service.spec.ts
@@ -38,7 +38,7 @@ describe("WebBrowserInteractionService", () => {
         expect(installed).toBe(false);
       });
 
-      tick(1500);
+      tick(150);
     }));
 
     it("returns true when the extension is installed", (done) => {
@@ -58,13 +58,13 @@ describe("WebBrowserInteractionService", () => {
       });
 
       // initial timeout, should emit false
-      tick(1500);
+      tick(26);
       expect(results[0]).toBe(false);
 
       tick(2500);
       // then emit `HasBwInstalled`
       dispatchEvent(VaultMessages.HasBwInstalled);
-      tick();
+      tick(26);
       expect(results[1]).toBe(true);
     }));
   });
diff --git a/apps/web/src/app/vault/services/web-browser-interaction.service.ts b/apps/web/src/app/vault/services/web-browser-interaction.service.ts
index f1005ef6dc9..1f91942591b 100644
--- a/apps/web/src/app/vault/services/web-browser-interaction.service.ts
+++ b/apps/web/src/app/vault/services/web-browser-interaction.service.ts
@@ -21,10 +21,19 @@ import { ExtensionPageUrls } from "@bitwarden/common/vault/enums";
 import { VaultMessages } from "@bitwarden/common/vault/enums/vault-messages.enum";
 
 /**
- * The amount of time in milliseconds to wait for a response from the browser extension.
+ * The amount of time in milliseconds to wait for a response from the browser extension. A longer duration is
+ * used to allow for the extension to open and then emit to the message.
  * NOTE: This value isn't computed by any means, it is just a reasonable timeout for the extension to respond.
  */
-const MESSAGE_RESPONSE_TIMEOUT_MS = 1500;
+const OPEN_RESPONSE_TIMEOUT_MS = 1500;
+
+/**
+ * Timeout for checking if the extension is installed.
+ *
+ * A shorter timeout is used to avoid waiting for too long for the extension. The listener for
+ * checking the installation runs in the background scripts so the response should be relatively quick.
+ */
+const CHECK_FOR_EXTENSION_TIMEOUT_MS = 25;
 
 @Injectable({
   providedIn: "root",
@@ -63,7 +72,7 @@ export class WebBrowserInteractionService {
           filter((event) => event.data.command === VaultMessages.PopupOpened),
           map(() => true),
         ),
-        timer(MESSAGE_RESPONSE_TIMEOUT_MS).pipe(map(() => false)),
+        timer(OPEN_RESPONSE_TIMEOUT_MS).pipe(map(() => false)),
       )
         .pipe(take(1))
         .subscribe((didOpen) => {
@@ -85,7 +94,7 @@ export class WebBrowserInteractionService {
         filter((event) => event.data.command === VaultMessages.HasBwInstalled),
         map(() => true),
       ),
-      timer(MESSAGE_RESPONSE_TIMEOUT_MS).pipe(map(() => false)),
+      timer(CHECK_FOR_EXTENSION_TIMEOUT_MS).pipe(map(() => false)),
     ).pipe(
       tap({
         subscribe: () => {
diff --git a/libs/auth/src/angular/registration/registration-finish/default-registration-finish.service.ts b/libs/auth/src/angular/registration/registration-finish/default-registration-finish.service.ts
index b51f45f1b27..2bef5670ac3 100644
--- a/libs/auth/src/angular/registration/registration-finish/default-registration-finish.service.ts
+++ b/libs/auth/src/angular/registration/registration-finish/default-registration-finish.service.ts
@@ -28,10 +28,6 @@ export class DefaultRegistrationFinishService implements RegistrationFinishServi
     return null;
   }
 
-  determineLoginSuccessRoute(): Promise<string> {
-    return Promise.resolve("/vault");
-  }
-
   async finishRegistration(
     email: string,
     passwordInputResult: PasswordInputResult,
diff --git a/libs/auth/src/angular/registration/registration-finish/registration-finish.component.ts b/libs/auth/src/angular/registration/registration-finish/registration-finish.component.ts
index 1d1a2d8f892..dac62f039ee 100644
--- a/libs/auth/src/angular/registration/registration-finish/registration-finish.component.ts
+++ b/libs/auth/src/angular/registration/registration-finish/registration-finish.component.ts
@@ -204,8 +204,7 @@ export class RegistrationFinishComponent implements OnInit, OnDestroy {
 
       await this.loginSuccessHandlerService.run(authenticationResult.userId);
 
-      const successRoute = await this.registrationFinishService.determineLoginSuccessRoute();
-      await this.router.navigate([successRoute]);
+      await this.router.navigate(["/vault"]);
     } catch (e) {
       // If login errors, redirect to login page per product. Don't show error
       this.logService.error("Error logging in after registration: ", e.message);
diff --git a/libs/auth/src/angular/registration/registration-finish/registration-finish.service.ts b/libs/auth/src/angular/registration/registration-finish/registration-finish.service.ts
index 523a4c79c54..5f3c04e5155 100644
--- a/libs/auth/src/angular/registration/registration-finish/registration-finish.service.ts
+++ b/libs/auth/src/angular/registration/registration-finish/registration-finish.service.ts
@@ -16,11 +16,6 @@ export abstract class RegistrationFinishService {
    */
   abstract getMasterPasswordPolicyOptsFromOrgInvite(): Promise<MasterPasswordPolicyOptions | null>;
 
-  /**
-   * Returns the route the user is redirected to after a successful login.
-   */
-  abstract determineLoginSuccessRoute(): Promise<string>;
-
   /**
    * Finishes the registration process by creating a new user account.
    *
diff --git a/libs/common/src/platform/state/state-definitions.ts b/libs/common/src/platform/state/state-definitions.ts
index 93c489a343e..a1c3ee35c5c 100644
--- a/libs/common/src/platform/state/state-definitions.ts
+++ b/libs/common/src/platform/state/state-definitions.ts
@@ -202,6 +202,13 @@ export const SECURITY_TASKS_DISK = new StateDefinition("securityTasks", "disk");
 export const AT_RISK_PASSWORDS_PAGE_DISK = new StateDefinition("atRiskPasswordsPage", "disk");
 export const NOTIFICATION_DISK = new StateDefinition("notifications", "disk");
 export const NUDGES_DISK = new StateDefinition("nudges", "disk", { web: "disk-local" });
+export const SETUP_EXTENSION_DISMISSED_DISK = new StateDefinition(
+  "setupExtensionDismissed",
+  "disk",
+  {
+    web: "disk-local",
+  },
+);
 export const VAULT_BROWSER_INTRO_CAROUSEL = new StateDefinition(
   "vaultBrowserIntroCarousel",
   "disk",

From e8629e5e1b276973ab9820e4ddc4a7a215bc69be Mon Sep 17 00:00:00 2001
From: cyprain-okeke <108260115+cyprain-okeke@users.noreply.github.com>
Date: Wed, 23 Jul 2025 14:00:07 +0100
Subject: [PATCH 210/239] Resolve the dropdown display error (#15704)

---
 .../src/app/billing/settings/sponsored-families.component.html  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/apps/web/src/app/billing/settings/sponsored-families.component.html b/apps/web/src/app/billing/settings/sponsored-families.component.html
index 7708f63365e..7d240cb0665 100644
--- a/apps/web/src/app/billing/settings/sponsored-families.component.html
+++ b/apps/web/src/app/billing/settings/sponsored-families.component.html
@@ -28,7 +28,7 @@
             >
               <bit-option
                 [disabled]="true"
-                [value]=""
+                [value]="null"
                 [label]="'--' + ('select' | i18n) + '--'"
               ></bit-option>
               <bit-option

From 6b7658191852112273d297e60c2587353a8b366b Mon Sep 17 00:00:00 2001
From: Tom <144813356+ttalty@users.noreply.github.com>
Date: Wed, 23 Jul 2025 09:51:02 -0400
Subject: [PATCH 211/239] Removing the notifications feature flag and logic
 (#15551)

---
 .../critical-applications.component.html                    | 1 -
 .../access-intelligence/critical-applications.component.ts  | 6 ------
 libs/common/src/enums/feature-flag.enum.ts                  | 6 ------
 3 files changed, 13 deletions(-)

diff --git a/bitwarden_license/bit-web/src/app/dirt/access-intelligence/critical-applications.component.html b/bitwarden_license/bit-web/src/app/dirt/access-intelligence/critical-applications.component.html
index 4e2b4e5c404..ffef3f3b0b9 100644
--- a/bitwarden_license/bit-web/src/app/dirt/access-intelligence/critical-applications.component.html
+++ b/bitwarden_license/bit-web/src/app/dirt/access-intelligence/critical-applications.component.html
@@ -29,7 +29,6 @@
   <div class="tw-flex tw-justify-between tw-mb-4">
     <h2 bitTypography="h2">{{ "criticalApplications" | i18n }}</h2>
     <button
-      *ngIf="isNotificationsFeatureEnabled"
       bitButton
       buttonType="primary"
       type="button"
diff --git a/bitwarden_license/bit-web/src/app/dirt/access-intelligence/critical-applications.component.ts b/bitwarden_license/bit-web/src/app/dirt/access-intelligence/critical-applications.component.ts
index fcca568da6e..4f9a9930f1c 100644
--- a/bitwarden_license/bit-web/src/app/dirt/access-intelligence/critical-applications.component.ts
+++ b/bitwarden_license/bit-web/src/app/dirt/access-intelligence/critical-applications.component.ts
@@ -16,7 +16,6 @@ import {
   ApplicationHealthReportDetailWithCriticalFlagAndCipher,
   ApplicationHealthReportSummary,
 } from "@bitwarden/bit-common/dirt/reports/risk-insights/models/password-health";
-import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
 import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { CipherId, OrganizationId } from "@bitwarden/common/types/guid";
@@ -63,14 +62,9 @@ export class CriticalApplicationsComponent implements OnInit {
   protected organizationId: string;
   protected applicationSummary = {} as ApplicationHealthReportSummary;
   noItemsIcon = Icons.Security;
-  isNotificationsFeatureEnabled: boolean = false;
   enableRequestPasswordChange = false;
 
   async ngOnInit() {
-    this.isNotificationsFeatureEnabled = await this.configService.getFeatureFlag(
-      FeatureFlag.EnableRiskInsightsNotifications,
-    );
-
     this.organizationId = this.activatedRoute.snapshot.paramMap.get("organizationId") ?? "";
 
     combineLatest([
diff --git a/libs/common/src/enums/feature-flag.enum.ts b/libs/common/src/enums/feature-flag.enum.ts
index 8e9dc6fd35e..114ace8bd8e 100644
--- a/libs/common/src/enums/feature-flag.enum.ts
+++ b/libs/common/src/enums/feature-flag.enum.ts
@@ -35,9 +35,6 @@ export enum FeatureFlag {
   AllowTrialLengthZero = "pm-20322-allow-trial-length-0",
   PM21881_ManagePaymentDetailsOutsideCheckout = "pm-21881-manage-payment-details-outside-checkout",
 
-  /* Data Insights and Reporting */
-  EnableRiskInsightsNotifications = "enable-risk-insights-notifications",
-
   /* Key Management */
   PrivateKeyRegeneration = "pm-12241-private-key-regeneration",
   PM4154_BulkEncryptionService = "PM-4154-bulk-encryption-service",
@@ -89,9 +86,6 @@ export const DefaultFeatureFlagValue = {
   [FeatureFlag.MacOsNativeCredentialSync]: FALSE,
   [FeatureFlag.WindowsDesktopAutotype]: FALSE,
 
-  /* Data Insights and Reporting */
-  [FeatureFlag.EnableRiskInsightsNotifications]: FALSE,
-
   /* Tools */
   [FeatureFlag.DesktopSendUIRefresh]: FALSE,
 

From aa2c5a0087fc728d5a45451d7def7798e35c2702 Mon Sep 17 00:00:00 2001
From: Jordan Aasen <166539328+jaasen-livefront@users.noreply.github.com>
Date: Wed, 23 Jul 2025 08:40:59 -0700
Subject: [PATCH 212/239] [PM-22374] - [Vault] [Web] Hide vault header menu
 dropdown for My Items collection (#15742)

* fix cloneCollection to include type

* add newline
---
 .../organizations/collections/utils/collection-utils.ts         | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/apps/web/src/app/admin-console/organizations/collections/utils/collection-utils.ts b/apps/web/src/app/admin-console/organizations/collections/utils/collection-utils.ts
index 95ae911bbf6..0697659c976 100644
--- a/apps/web/src/app/admin-console/organizations/collections/utils/collection-utils.ts
+++ b/apps/web/src/app/admin-console/organizations/collections/utils/collection-utils.ts
@@ -82,5 +82,7 @@ function cloneCollection(
   cloned.organizationId = collection.organizationId;
   cloned.readOnly = collection.readOnly;
   cloned.manage = collection.manage;
+  cloned.type = collection.type;
+
   return cloned;
 }

From d0082981a3d9541608293fe05ef0414f2ae34496 Mon Sep 17 00:00:00 2001
From: Jason Ng <jng@bitwarden.com>
Date: Wed, 23 Jul 2025 12:04:31 -0400
Subject: [PATCH 213/239] [PM-23788] [PM-23793] Prevent Card Clone when
 Restricted (#15685)

* add restricted policy check to vault items in web and browser
---
 .../item-more-options.component.ts            | 23 +++++++++++++++----
 .../vault-items/vault-items.component.ts      | 14 +++++++++--
 2 files changed, 30 insertions(+), 7 deletions(-)

diff --git a/apps/browser/src/vault/popup/components/vault-v2/item-more-options/item-more-options.component.ts b/apps/browser/src/vault/popup/components/vault-v2/item-more-options/item-more-options.component.ts
index ce61e29e9ef..ce16ec2f3e0 100644
--- a/apps/browser/src/vault/popup/components/vault-v2/item-more-options/item-more-options.component.ts
+++ b/apps/browser/src/vault/popup/components/vault-v2/item-more-options/item-more-options.component.ts
@@ -3,8 +3,7 @@
 import { CommonModule } from "@angular/common";
 import { booleanAttribute, Component, Input } from "@angular/core";
 import { Router, RouterModule } from "@angular/router";
-import { BehaviorSubject, combineLatest, firstValueFrom, map, switchMap } from "rxjs";
-import { filter } from "rxjs/operators";
+import { BehaviorSubject, combineLatest, filter, firstValueFrom, map, switchMap } from "rxjs";
 
 import { CollectionService } from "@bitwarden/admin-console/common";
 import { JslibModule } from "@bitwarden/angular/jslib.module";
@@ -15,6 +14,7 @@ import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.servic
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
 import { CipherRepromptType, CipherType } from "@bitwarden/common/vault/enums";
 import { CipherAuthorizationService } from "@bitwarden/common/vault/services/cipher-authorization.service";
+import { RestrictedItemTypesService } from "@bitwarden/common/vault/services/restricted-item-types.service";
 import {
   CipherViewLike,
   CipherViewLikeUtils,
@@ -70,9 +70,21 @@ export class ItemMoreOptionsComponent {
    * Observable that emits a boolean value indicating if the user is authorized to clone the cipher.
    * @protected
    */
-  protected canClone$ = this._cipher$.pipe(
-    filter((c) => c != null),
-    switchMap((c) => this.cipherAuthorizationService.canCloneCipher$(c)),
+  protected canClone$ = combineLatest([
+    this._cipher$,
+    this.restrictedItemTypesService.restricted$,
+  ]).pipe(
+    filter(([c]) => c != null),
+    switchMap(([c, restrictedTypes]) => {
+      // This will check for restrictions from org policies before allowing cloning.
+      const isItemRestricted = restrictedTypes.some(
+        (restrictType) => restrictType.cipherType === c.type,
+      );
+      if (!isItemRestricted) {
+        return this.cipherAuthorizationService.canCloneCipher$(c);
+      }
+      return new BehaviorSubject(false);
+    }),
   );
 
   /** Observable Boolean dependent on the current user having access to an organization and editable collections */
@@ -103,6 +115,7 @@ export class ItemMoreOptionsComponent {
     private organizationService: OrganizationService,
     private cipherAuthorizationService: CipherAuthorizationService,
     private collectionService: CollectionService,
+    private restrictedItemTypesService: RestrictedItemTypesService,
   ) {}
 
   get canEdit() {
diff --git a/apps/web/src/app/vault/components/vault-items/vault-items.component.ts b/apps/web/src/app/vault/components/vault-items/vault-items.component.ts
index 79ba9a6d2e1..ebee57878db 100644
--- a/apps/web/src/app/vault/components/vault-items/vault-items.component.ts
+++ b/apps/web/src/app/vault/components/vault-items/vault-items.component.ts
@@ -2,7 +2,7 @@
 // @ts-strict-ignore
 import { SelectionModel } from "@angular/cdk/collections";
 import { Component, EventEmitter, Input, Output } from "@angular/core";
-import { takeUntilDestroyed } from "@angular/core/rxjs-interop";
+import { toSignal, takeUntilDestroyed } from "@angular/core/rxjs-interop";
 import { Observable, combineLatest, map, of, startWith, switchMap } from "rxjs";
 
 import { CollectionView, Unassigned, CollectionAdminView } from "@bitwarden/admin-console/common";
@@ -64,6 +64,8 @@ export class VaultItemsComponent<C extends CipherViewLike> {
   @Input() addAccessToggle: boolean;
   @Input() activeCollection: CollectionView | undefined;
 
+  private restrictedPolicies = toSignal(this.restrictedItemTypesService.restricted$);
+
   private _ciphers?: C[] = [];
   @Input() get ciphers(): C[] {
     return this._ciphers;
@@ -94,7 +96,7 @@ export class VaultItemsComponent<C extends CipherViewLike> {
 
   constructor(
     protected cipherAuthorizationService: CipherAuthorizationService,
-    private restrictedItemTypesService: RestrictedItemTypesService,
+    protected restrictedItemTypesService: RestrictedItemTypesService,
   ) {
     this.canDeleteSelected$ = this.selection.changed.pipe(
       startWith(null),
@@ -281,6 +283,14 @@ export class VaultItemsComponent<C extends CipherViewLike> {
 
   // TODO: PM-13944 Refactor to use cipherAuthorizationService.canClone$ instead
   protected canClone(vaultItem: VaultItem<C>) {
+    // This will check for restrictions from org policies before allowing cloning.
+    const isItemRestricted = this.restrictedPolicies().some(
+      (rt) => rt.cipherType === vaultItem.cipher.type,
+    );
+    if (isItemRestricted) {
+      return false;
+    }
+
     if (vaultItem.cipher.organizationId == null) {
       return true;
     }

From a74e95fbfe47ae37ee700f950116b823c9f4617d Mon Sep 17 00:00:00 2001
From: Ben Brooks <56796209+bensbits91@users.noreply.github.com>
Date: Wed, 23 Jul 2025 09:17:47 -0700
Subject: [PATCH 214/239] [CL-601] Replace default reset button to enable it in
 more browsers (#14974)

* bb/pm-19497/replace default reset button to enable it in more browsers

* address feedback: add ngClass; improve accessibility

* add signals for form hover and input focus; compute showResetButton

* fix(style): [CL-601] Improve CSS per reviewer comments

Signed-off-by: Ben Brooks <bbrooks@bitwarden.com>

* fix: [CL-601] add ngForm; remove standalone attributes

Signed-off-by: Ben Brooks <bbrooks@bitwarden.com>

* fix: [CL-601] add translation strings

Signed-off-by: Ben Brooks <bbrooks@bitwarden.com>

* fix: [CL-601] Use message key in aria label

Signed-off-by: Ben Brooks <bbrooks@bitwarden.com>

* fix: [CL-601] Remove unnecessary aria-hidden attribute

Signed-off-by: Ben Brooks <bbrooks@bitwarden.com>

* fix: [CL-601] Remove unecessary ngForm attributes

Signed-off-by: Ben Brooks <bbrooks@bitwarden.com>

* fix: [CL-601] Add storybook description

Signed-off-by: Ben Brooks <bbrooks@bitwarden.com>

* fix: [CL-601] Match main for recent signal input changs

Signed-off-by: Ben Brooks <bbrooks@bitwarden.com>

---------

Signed-off-by: Ben Brooks <bbrooks@bitwarden.com>
---
 apps/browser/src/_locales/en/messages.json    |  3 ++
 apps/desktop/src/locales/en/messages.json     |  3 ++
 apps/web/src/locales/en/messages.json         |  3 ++
 .../src/search/search.component.css           | 18 ++++++------
 .../src/search/search.component.html          | 28 +++++++++++++++----
 .../components/src/search/search.component.ts | 22 +++++++++++++--
 libs/components/src/search/search.mdx         |  3 +-
 7 files changed, 62 insertions(+), 18 deletions(-)

diff --git a/apps/browser/src/_locales/en/messages.json b/apps/browser/src/_locales/en/messages.json
index 37d64c3416b..a1b41b44bfd 100644
--- a/apps/browser/src/_locales/en/messages.json
+++ b/apps/browser/src/_locales/en/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "Search vault"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "edit": {
     "message": "Edit"
   },
diff --git a/apps/desktop/src/locales/en/messages.json b/apps/desktop/src/locales/en/messages.json
index e5e6dcb2882..c269f7d32f8 100644
--- a/apps/desktop/src/locales/en/messages.json
+++ b/apps/desktop/src/locales/en/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Search vault"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "addItem": {
     "message": "Add item"
   },
diff --git a/apps/web/src/locales/en/messages.json b/apps/web/src/locales/en/messages.json
index 5d7cbd7d479..b143d4da56a 100644
--- a/apps/web/src/locales/en/messages.json
+++ b/apps/web/src/locales/en/messages.json
@@ -629,6 +629,9 @@
   "searchGroups": {
     "message": "Search groups"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "allItems": {
     "message": "All items"
   },
diff --git a/libs/components/src/search/search.component.css b/libs/components/src/search/search.component.css
index 35304438a88..6233de2a3ac 100644
--- a/libs/components/src/search/search.component.css
+++ b/libs/components/src/search/search.component.css
@@ -1,19 +1,17 @@
 /**
  * Tailwind doesn't have a good way to style search-cancel-button.
+ * Hide the default reset button that only appears in some browsers.
  */
 bit-search input[type="search"]::-webkit-search-cancel-button {
   -webkit-appearance: none;
   appearance: none;
-  height: 21px;
-  width: 21px;
-  margin: 0;
-  cursor: pointer;
-  background-repeat: no-repeat;
-  mask-image: url("./close-button.svg");
-  -webkit-mask-image: url("./close-button.svg");
-  background-color: rgba(var(--color-text-muted));
 }
 
-bit-search input[type="search"]::-webkit-search-cancel-button:hover {
-  background-color: rgba(var(--color-text-main));
+/**
+ * Style our custom reset button that works in all common browsers.
+ * Tailwind CSS does not natively support mask-image or -webkit-mask-image utilities (but can be extended if needed).
+ */
+.bw-reset-btn {
+  mask-image: url("./close-button.svg");
+  -webkit-mask-image: url("./close-button.svg");
 }
diff --git a/libs/components/src/search/search.component.html b/libs/components/src/search/search.component.html
index 803b61c6322..b1b92fb151a 100644
--- a/libs/components/src/search/search.component.html
+++ b/libs/components/src/search/search.component.html
@@ -1,9 +1,14 @@
-<label class="tw-sr-only" [for]="id">{{ "search" | i18n }}</label>
-<div class="tw-relative tw-flex tw-items-center">
+<form
+  role="search"
+  (mouseenter)="isFormHovered.set(true)"
+  (mouseleave)="isFormHovered.set(false)"
+  class="tw-relative tw-flex tw-items-center tw-w-full"
+>
+  <label class="tw-sr-only" [for]="id">{{ "search" | i18n }}</label>
   <label
     [for]="id"
     aria-hidden="true"
-    class="tw-absolute tw-left-2 tw-z-20 !tw-mb-0 tw-cursor-text"
+    class="tw-absolute tw-start-2 tw-z-20 !tw-mb-0 tw-cursor-text"
   >
     <i class="bwi bwi-search bwi-fw tw-text-muted"></i>
   </label>
@@ -14,10 +19,23 @@
     [id]="id"
     [placeholder]="placeholder() ?? ('search' | i18n)"
     class="tw-ps-9"
+    name="searchText"
     [ngModel]="searchText"
     (ngModelChange)="onChange($event)"
-    (blur)="onTouch()"
+    (focus)="isInputFocused.set(true)"
+    (blur)="isInputFocused.set(false); onTouch()"
     [disabled]="disabled()"
     [attr.autocomplete]="autocomplete()"
   />
-</div>
+  <button
+    *ngIf="searchText && showResetButton()"
+    [ngClass]="{
+      'tw-opacity-0': !showResetButton(),
+      'tw-bg-text-muted': showResetButton(),
+    }"
+    class="bw-reset-btn tw-size-6 tw-absolute hover:tw-bg-text-main tw-end-2 tw-z-20 !tw-mb-0 tw-cursor-pointer"
+    type="reset"
+    [attr.aria-label]="'resetSearch' | i18n"
+    (click)="clearSearch()"
+  ></button>
+</form>
diff --git a/libs/components/src/search/search.component.ts b/libs/components/src/search/search.component.ts
index ef12e7eead6..c6c5f2757dd 100644
--- a/libs/components/src/search/search.component.ts
+++ b/libs/components/src/search/search.component.ts
@@ -1,6 +1,7 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
-import { Component, ElementRef, ViewChild, input, model } from "@angular/core";
+import { NgIf, NgClass } from "@angular/common";
+import { Component, ElementRef, ViewChild, input, model, signal, computed } from "@angular/core";
 import {
   ControlValueAccessor,
   NG_VALUE_ACCESSOR,
@@ -16,6 +17,9 @@ import { FocusableElement } from "../shared/focusable-element";
 
 let nextId = 0;
 
+/**
+ * Do not nest Search components inside another `<form>`, as they already contain their own standalone `<form>` element for searching.
+ */
 @Component({
   selector: "bit-search",
   templateUrl: "./search.component.html",
@@ -30,7 +34,7 @@ let nextId = 0;
       useExisting: SearchComponent,
     },
   ],
-  imports: [InputModule, ReactiveFormsModule, FormsModule, I18nPipe],
+  imports: [InputModule, ReactiveFormsModule, FormsModule, I18nPipe, NgIf, NgClass],
 })
 export class SearchComponent implements ControlValueAccessor, FocusableElement {
   private notifyOnChange: (v: string) => void;
@@ -43,6 +47,11 @@ export class SearchComponent implements ControlValueAccessor, FocusableElement {
   // Use `type="text"` for Safari to improve rendering performance
   protected inputType = isBrowserSafariApi() ? ("text" as const) : ("search" as const);
 
+  protected isInputFocused = signal(false);
+  protected isFormHovered = signal(false);
+
+  protected showResetButton = computed(() => this.isInputFocused() || this.isFormHovered());
+
   readonly disabled = model<boolean>();
   readonly placeholder = input<string>();
   readonly autocomplete = input<string>();
@@ -52,11 +61,20 @@ export class SearchComponent implements ControlValueAccessor, FocusableElement {
   }
 
   onChange(searchText: string) {
+    this.searchText = searchText; // update the model when the input changes (so we can use it with *ngIf in the template)
     if (this.notifyOnChange != undefined) {
       this.notifyOnChange(searchText);
     }
   }
 
+  // Handle the reset button click
+  clearSearch() {
+    this.searchText = "";
+    if (this.notifyOnChange) {
+      this.notifyOnChange("");
+    }
+  }
+
   onTouch() {
     if (this.notifyOnTouch != undefined) {
       this.notifyOnTouch();
diff --git a/libs/components/src/search/search.mdx b/libs/components/src/search/search.mdx
index 7775225b8c2..98e91162c94 100644
--- a/libs/components/src/search/search.mdx
+++ b/libs/components/src/search/search.mdx
@@ -1,4 +1,4 @@
-import { Meta, Canvas, Source, Primary, Controls, Title } from "@storybook/addon-docs";
+import { Meta, Canvas, Source, Primary, Controls, Title, Description } from "@storybook/addon-docs";
 
 import * as stories from "./search.stories";
 
@@ -9,6 +9,7 @@ import { SearchModule } from "@bitwarden/components";
 ```
 
 <Title>Search field</Title>
+<Description />
 
 <Primary />
 <Controls />

From aee23f72062cb7eee6065e7ce891294500e25766 Mon Sep 17 00:00:00 2001
From: Jason Ng <jng@bitwarden.com>
Date: Wed, 23 Jul 2025 12:29:40 -0400
Subject: [PATCH 215/239] [PM-23722] remove previous change for the account
 security badge (#15739)

---
 .../tools/popup/settings/settings-v2.component.html   | 11 +----------
 .../src/tools/popup/settings/settings-v2.component.ts |  6 ------
 libs/angular/src/vault/services/nudges.service.ts     |  1 -
 3 files changed, 1 insertion(+), 17 deletions(-)

diff --git a/apps/browser/src/tools/popup/settings/settings-v2.component.html b/apps/browser/src/tools/popup/settings/settings-v2.component.html
index 3f8bdb1cf2f..0b2e84712a4 100644
--- a/apps/browser/src/tools/popup/settings/settings-v2.component.html
+++ b/apps/browser/src/tools/popup/settings/settings-v2.component.html
@@ -10,16 +10,7 @@
     <bit-item>
       <a bit-item-content routerLink="/account-security">
         <i slot="start" class="bwi bwi-lock" aria-hidden="true"></i>
-        <div class="tw-flex tw-items-center tw-justify-center">
-          <p class="tw-pr-2">{{ "accountSecurity" | i18n }}</p>
-          <span
-            *ngIf="showAcctSecurityNudge$ | async"
-            bitBadge
-            variant="notification"
-            [attr.aria-label]="'nudgeBadgeAria' | i18n"
-            >1</span
-          >
-        </div>
+        {{ "accountSecurity" | i18n }}
         <i slot="end" class="bwi bwi-angle-right" aria-hidden="true"></i>
       </a>
     </bit-item>
diff --git a/apps/browser/src/tools/popup/settings/settings-v2.component.ts b/apps/browser/src/tools/popup/settings/settings-v2.component.ts
index 7d3b9c776fc..a0383b99390 100644
--- a/apps/browser/src/tools/popup/settings/settings-v2.component.ts
+++ b/apps/browser/src/tools/popup/settings/settings-v2.component.ts
@@ -50,12 +50,6 @@ export class SettingsV2Component implements OnInit {
     shareReplay({ bufferSize: 1, refCount: true }),
   );
 
-  protected showAcctSecurityNudge$: Observable<boolean> = this.authenticatedAccount$.pipe(
-    switchMap((account) =>
-      this.nudgesService.showNudgeBadge$(NudgeType.AccountSecurity, account.id),
-    ),
-  );
-
   showDownloadBitwardenNudge$: Observable<boolean> = this.authenticatedAccount$.pipe(
     switchMap((account) =>
       this.nudgesService.showNudgeBadge$(NudgeType.DownloadBitwarden, account.id),
diff --git a/libs/angular/src/vault/services/nudges.service.ts b/libs/angular/src/vault/services/nudges.service.ts
index 584aacd9837..6cb7ae4abf1 100644
--- a/libs/angular/src/vault/services/nudges.service.ts
+++ b/libs/angular/src/vault/services/nudges.service.ts
@@ -160,7 +160,6 @@ export class NudgesService {
   hasActiveBadges$(userId: UserId): Observable<boolean> {
     // Add more nudge types here if they have the settings badge feature
     const nudgeTypes = [
-      NudgeType.AccountSecurity,
       NudgeType.EmptyVaultNudge,
       NudgeType.DownloadBitwarden,
       NudgeType.AutofillNudge,

From 417c4cd13b33a667c5bc9c9bba2eac5b070fcb11 Mon Sep 17 00:00:00 2001
From: Jordan Aasen <166539328+jaasen-livefront@users.noreply.github.com>
Date: Wed, 23 Jul 2025 09:33:29 -0700
Subject: [PATCH 216/239] [PM-23479] - Can see card filter in AC if you belong
 to multiple orgs (#15661)

* hide card filter if user does not have a cipher with the allowing org

* fix restricted item type filter visibility

* do not include deleted ciphers
---
 .../vault-filter/vault-filter.component.ts    |  5 +-
 .../components/vault-filter.component.ts      | 48 ++++++++++++++++---
 2 files changed, 45 insertions(+), 8 deletions(-)

diff --git a/apps/web/src/app/admin-console/organizations/collections/vault-filter/vault-filter.component.ts b/apps/web/src/app/admin-console/organizations/collections/vault-filter/vault-filter.component.ts
index 49bf43d60bf..bf0df14c8c6 100644
--- a/apps/web/src/app/admin-console/organizations/collections/vault-filter/vault-filter.component.ts
+++ b/apps/web/src/app/admin-console/organizations/collections/vault-filter/vault-filter.component.ts
@@ -10,6 +10,7 @@ import { BillingApiServiceAbstraction } from "@bitwarden/common/billing/abstract
 import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
+import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
 import { TreeNode } from "@bitwarden/common/vault/models/domain/tree-node";
 import { RestrictedItemTypesService } from "@bitwarden/common/vault/services/restricted-item-types.service";
 import { DialogService, ToastService } from "@bitwarden/components";
@@ -53,6 +54,7 @@ export class VaultFilterComponent
     protected configService: ConfigService,
     protected accountService: AccountService,
     protected restrictedItemTypesService: RestrictedItemTypesService,
+    protected cipherService: CipherService,
   ) {
     super(
       vaultFilterService,
@@ -65,6 +67,7 @@ export class VaultFilterComponent
       configService,
       accountService,
       restrictedItemTypesService,
+      cipherService,
     );
   }
 
@@ -131,7 +134,7 @@ export class VaultFilterComponent
 
   async buildAllFilters(): Promise<VaultFilterList> {
     const builderFilter = {} as VaultFilterList;
-    builderFilter.typeFilter = await this.addTypeFilter(["favorites"]);
+    builderFilter.typeFilter = await this.addTypeFilter(["favorites"], this._organization?.id);
     builderFilter.collectionFilter = await this.addCollectionFilter();
     builderFilter.trashFilter = await this.addTrashFilter();
     return builderFilter;
diff --git a/apps/web/src/app/vault/individual-vault/vault-filter/components/vault-filter.component.ts b/apps/web/src/app/vault/individual-vault/vault-filter/components/vault-filter.component.ts
index 61dd3e9ca80..4525d702153 100644
--- a/apps/web/src/app/vault/individual-vault/vault-filter/components/vault-filter.component.ts
+++ b/apps/web/src/app/vault/individual-vault/vault-filter/components/vault-filter.component.ts
@@ -1,6 +1,7 @@
 import { Component, EventEmitter, inject, Input, OnDestroy, OnInit, Output } from "@angular/core";
 import { Router } from "@angular/router";
 import {
+  combineLatest,
   distinctUntilChanged,
   firstValueFrom,
   map,
@@ -20,6 +21,7 @@ import { BillingApiServiceAbstraction } from "@bitwarden/common/billing/abstract
 import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
+import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
 import { CipherType } from "@bitwarden/common/vault/enums";
 import { TreeNode } from "@bitwarden/common/vault/models/domain/tree-node";
 import { RestrictedItemTypesService } from "@bitwarden/common/vault/services/restricted-item-types.service";
@@ -155,6 +157,7 @@ export class VaultFilterComponent implements OnInit, OnDestroy {
     protected configService: ConfigService,
     protected accountService: AccountService,
     protected restrictedItemTypesService: RestrictedItemTypesService,
+    protected cipherService: CipherService,
   ) {}
 
   async ngOnInit(): Promise<void> {
@@ -292,16 +295,47 @@ export class VaultFilterComponent implements OnInit, OnDestroy {
     return orgFilterSection;
   }
 
-  protected async addTypeFilter(excludeTypes: CipherStatus[] = []): Promise<VaultFilterSection> {
+  protected async addTypeFilter(
+    excludeTypes: CipherStatus[] = [],
+    organizationId?: string,
+  ): Promise<VaultFilterSection> {
     const allFilter: CipherTypeFilter = { id: "AllItems", name: "allItems", type: "all", icon: "" };
 
-    const data$ = this.restrictedItemTypesService.restricted$.pipe(
-      map((restricted) => {
-        // List of types restricted by all orgs
-        const restrictedByAll = restricted
-          .filter((r) => r.allowViewOrgIds.length === 0)
+    const userId = await firstValueFrom(this.activeUserId$);
+
+    const data$ = combineLatest([
+      this.restrictedItemTypesService.restricted$,
+      this.cipherService.cipherViews$(userId),
+    ]).pipe(
+      map(([restrictedTypes, ciphers]) => {
+        const restrictedForUser = restrictedTypes
+          .filter((r) => {
+            // - All orgs restrict the type
+            if (r.allowViewOrgIds.length === 0) {
+              return true;
+            }
+            // - Admin console: user has no ciphers of that type in the selected org
+            // - Individual vault view: user has no ciphers of that type in any allowed org
+            return !ciphers?.some((c) => {
+              if (c.deletedDate || c.type !== r.cipherType) {
+                return false;
+              }
+              // If the cipher doesn't belong to an org it is automatically restricted
+              if (!c.organizationId) {
+                return false;
+              }
+              if (organizationId) {
+                return (
+                  c.organizationId === organizationId &&
+                  r.allowViewOrgIds.includes(c.organizationId)
+                );
+              }
+              return r.allowViewOrgIds.includes(c.organizationId);
+            });
+          })
           .map((r) => r.cipherType);
-        const toExclude = [...excludeTypes, ...restrictedByAll];
+
+        const toExclude = [...excludeTypes, ...restrictedForUser];
         return this.allTypeFilters.filter(
           (f) => typeof f.type === "string" || !toExclude.includes(f.type),
         );

From 2040be68e3dbc8a3113ebbd5b1700954bb89f039 Mon Sep 17 00:00:00 2001
From: Jordan Aasen <166539328+jaasen-livefront@users.noreply.github.com>
Date: Wed, 23 Jul 2025 09:33:45 -0700
Subject: [PATCH 217/239] [PM-23360] - Hide restricted cipher types in "File ->
 New Item" on desktop (#15743)

* hide restricted cipher types in file menu on desktop

* fix bitwarden menu

* small fixes
---
 apps/desktop/src/app/app.component.ts      |  7 ++++++
 apps/desktop/src/main/menu/menu.file.ts    | 25 +++++++++++++++++++++-
 apps/desktop/src/main/menu/menu.updater.ts |  6 ++++--
 apps/desktop/src/main/menu/menubar.ts      |  1 +
 4 files changed, 36 insertions(+), 3 deletions(-)

diff --git a/apps/desktop/src/app/app.component.ts b/apps/desktop/src/app/app.component.ts
index b5c34cc95a3..10aa7ff9eeb 100644
--- a/apps/desktop/src/app/app.component.ts
+++ b/apps/desktop/src/app/app.component.ts
@@ -68,6 +68,7 @@ import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.servi
 import { InternalFolderService } from "@bitwarden/common/vault/abstractions/folder/folder.service.abstraction";
 import { SearchService } from "@bitwarden/common/vault/abstractions/search.service";
 import { CipherType } from "@bitwarden/common/vault/enums";
+import { RestrictedItemTypesService } from "@bitwarden/common/vault/services/restricted-item-types.service";
 import { DialogRef, DialogService, ToastOptions, ToastService } from "@bitwarden/components";
 import { CredentialGeneratorHistoryDialogComponent } from "@bitwarden/generator-components";
 import { KeyService, BiometricStateService } from "@bitwarden/key-management";
@@ -172,6 +173,7 @@ export class AppComponent implements OnInit, OnDestroy {
     private userDecryptionOptionsService: UserDecryptionOptionsServiceAbstraction,
     private readonly destroyRef: DestroyRef,
     private readonly documentLangSetter: DocumentLangSetter,
+    private restrictedItemTypesService: RestrictedItemTypesService,
   ) {
     this.deviceTrustToastService.setupListeners$.pipe(takeUntilDestroyed()).subscribe();
 
@@ -523,10 +525,12 @@ export class AppComponent implements OnInit, OnDestroy {
   private async updateAppMenu() {
     let updateRequest: MenuUpdateRequest;
     const stateAccounts = await firstValueFrom(this.accountService.accounts$);
+
     if (stateAccounts == null || Object.keys(stateAccounts).length < 1) {
       updateRequest = {
         accounts: null,
         activeUserId: null,
+        restrictedCipherTypes: null,
       };
     } else {
       const accounts: { [userId: string]: MenuAccount } = {};
@@ -557,6 +561,9 @@ export class AppComponent implements OnInit, OnDestroy {
         activeUserId: await firstValueFrom(
           this.accountService.activeAccount$.pipe(map((a) => a?.id)),
         ),
+        restrictedCipherTypes: (
+          await firstValueFrom(this.restrictedItemTypesService.restricted$)
+        ).map((restrictedItems) => restrictedItems.cipherType),
       };
     }
 
diff --git a/apps/desktop/src/main/menu/menu.file.ts b/apps/desktop/src/main/menu/menu.file.ts
index 19ba5e99792..a8cdb347a77 100644
--- a/apps/desktop/src/main/menu/menu.file.ts
+++ b/apps/desktop/src/main/menu/menu.file.ts
@@ -2,6 +2,7 @@ import { BrowserWindow, MenuItemConstructorOptions } from "electron";
 
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
+import { CipherType } from "@bitwarden/sdk-internal";
 
 import { isMac, isMacAppStore } from "../../utils";
 import { UpdaterMain } from "../updater.main";
@@ -54,6 +55,7 @@ export class FileMenu extends FirstMenu implements IMenubarMenu {
     accounts: { [userId: string]: MenuAccount },
     isLocked: boolean,
     isLockable: boolean,
+    private restrictedCipherTypes: CipherType[],
   ) {
     super(i18nService, messagingService, updater, window, accounts, isLocked, isLockable);
   }
@@ -77,6 +79,23 @@ export class FileMenu extends FirstMenu implements IMenubarMenu {
     };
   }
 
+  private mapMenuItemToCipherType(itemId: string): CipherType {
+    switch (itemId) {
+      case "typeLogin":
+        return CipherType.Login;
+      case "typeCard":
+        return CipherType.Card;
+      case "typeIdentity":
+        return CipherType.Identity;
+      case "typeSecureNote":
+        return CipherType.SecureNote;
+      case "typeSshKey":
+        return CipherType.SshKey;
+      default:
+        throw new Error(`Unknown menu item id: ${itemId}`);
+    }
+  }
+
   private get addNewItemSubmenu(): MenuItemConstructorOptions[] {
     return [
       {
@@ -109,7 +128,11 @@ export class FileMenu extends FirstMenu implements IMenubarMenu {
         click: () => this.sendMessage("newSshKey"),
         accelerator: "CmdOrCtrl+Shift+K",
       },
-    ];
+    ].filter((item) => {
+      return !this.restrictedCipherTypes?.some(
+        (restrictedType) => restrictedType === this.mapMenuItemToCipherType(item.id),
+      );
+    });
   }
 
   private get addNewFolder(): MenuItemConstructorOptions {
diff --git a/apps/desktop/src/main/menu/menu.updater.ts b/apps/desktop/src/main/menu/menu.updater.ts
index 6f82a78384f..8b658049de7 100644
--- a/apps/desktop/src/main/menu/menu.updater.ts
+++ b/apps/desktop/src/main/menu/menu.updater.ts
@@ -1,8 +1,10 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
+import { CipherType } from "@bitwarden/common/vault/enums";
 export class MenuUpdateRequest {
-  activeUserId: string;
-  accounts: { [userId: string]: MenuAccount };
+  activeUserId: string | null;
+  accounts: { [userId: string]: MenuAccount } | null;
+  restrictedCipherTypes: CipherType[] | null;
 }
 
 export class MenuAccount {
diff --git a/apps/desktop/src/main/menu/menubar.ts b/apps/desktop/src/main/menu/menubar.ts
index 825afdaa1e8..8ac3a084d95 100644
--- a/apps/desktop/src/main/menu/menubar.ts
+++ b/apps/desktop/src/main/menu/menubar.ts
@@ -83,6 +83,7 @@ export class Menubar {
         updateRequest?.accounts,
         isLocked,
         isLockable,
+        updateRequest?.restrictedCipherTypes,
       ),
       new EditMenu(i18nService, messagingService, isLocked),
       new ViewMenu(i18nService, messagingService, isLocked),

From e47e1f79d9b8d48358e6b57f665a5455c4dab156 Mon Sep 17 00:00:00 2001
From: Jared Snider <116684653+JaredSnider-Bitwarden@users.noreply.github.com>
Date: Wed, 23 Jul 2025 12:58:44 -0400
Subject: [PATCH 218/239] fix(ChangePasswordComp): [Auth/PM-23913] Extension
 popout now closes after a password change (#15681)

---
 .../extension-change-password.service.spec.ts | 50 +++++++++++++++++++
 .../extension-change-password.service.ts      | 29 +++++++++++
 .../src/popup/services/services.module.ts     |  8 +++
 .../change-password.component.ts              |  3 ++
 .../change-password.service.abstraction.ts    |  6 +++
 5 files changed, 96 insertions(+)
 create mode 100644 apps/browser/src/auth/popup/change-password/extension-change-password.service.spec.ts
 create mode 100644 apps/browser/src/auth/popup/change-password/extension-change-password.service.ts

diff --git a/apps/browser/src/auth/popup/change-password/extension-change-password.service.spec.ts b/apps/browser/src/auth/popup/change-password/extension-change-password.service.spec.ts
new file mode 100644
index 00000000000..a6a6b905218
--- /dev/null
+++ b/apps/browser/src/auth/popup/change-password/extension-change-password.service.spec.ts
@@ -0,0 +1,50 @@
+import { MockProxy, mock } from "jest-mock-extended";
+
+import { ChangePasswordService } from "@bitwarden/angular/auth/password-management/change-password";
+import { MasterPasswordApiService } from "@bitwarden/common/auth/abstractions/master-password-api.service.abstraction";
+import { InternalMasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
+import { KeyService } from "@bitwarden/key-management";
+
+import { BrowserApi } from "../../../platform/browser/browser-api";
+import BrowserPopupUtils from "../../../platform/browser/browser-popup-utils";
+
+import { ExtensionChangePasswordService } from "./extension-change-password.service";
+
+describe("ExtensionChangePasswordService", () => {
+  let keyService: MockProxy<KeyService>;
+  let masterPasswordApiService: MockProxy<MasterPasswordApiService>;
+  let masterPasswordService: MockProxy<InternalMasterPasswordServiceAbstraction>;
+  let window: MockProxy<Window>;
+
+  let changePasswordService: ChangePasswordService;
+
+  beforeEach(() => {
+    keyService = mock<KeyService>();
+    masterPasswordApiService = mock<MasterPasswordApiService>();
+    masterPasswordService = mock<InternalMasterPasswordServiceAbstraction>();
+    window = mock<Window>();
+
+    changePasswordService = new ExtensionChangePasswordService(
+      keyService,
+      masterPasswordApiService,
+      masterPasswordService,
+      window,
+    );
+  });
+
+  it("should instantiate the service", () => {
+    expect(changePasswordService).toBeDefined();
+  });
+
+  it("should close the browser extension popout", () => {
+    const closePopupSpy = jest.spyOn(BrowserApi, "closePopup");
+    const browserPopupUtilsInPopupSpy = jest
+      .spyOn(BrowserPopupUtils, "inPopout")
+      .mockReturnValue(true);
+
+    changePasswordService.closeBrowserExtensionPopout?.();
+
+    expect(closePopupSpy).toHaveBeenCalledWith(window);
+    expect(browserPopupUtilsInPopupSpy).toHaveBeenCalledWith(window);
+  });
+});
diff --git a/apps/browser/src/auth/popup/change-password/extension-change-password.service.ts b/apps/browser/src/auth/popup/change-password/extension-change-password.service.ts
new file mode 100644
index 00000000000..dd2ce48d27a
--- /dev/null
+++ b/apps/browser/src/auth/popup/change-password/extension-change-password.service.ts
@@ -0,0 +1,29 @@
+import {
+  DefaultChangePasswordService,
+  ChangePasswordService,
+} from "@bitwarden/angular/auth/password-management/change-password";
+import { MasterPasswordApiService } from "@bitwarden/common/auth/abstractions/master-password-api.service.abstraction";
+import { InternalMasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
+import { KeyService } from "@bitwarden/key-management";
+
+import { BrowserApi } from "../../../platform/browser/browser-api";
+import BrowserPopupUtils from "../../../platform/browser/browser-popup-utils";
+
+export class ExtensionChangePasswordService
+  extends DefaultChangePasswordService
+  implements ChangePasswordService
+{
+  constructor(
+    protected keyService: KeyService,
+    protected masterPasswordApiService: MasterPasswordApiService,
+    protected masterPasswordService: InternalMasterPasswordServiceAbstraction,
+    private win: Window,
+  ) {
+    super(keyService, masterPasswordApiService, masterPasswordService);
+  }
+  closeBrowserExtensionPopout(): void {
+    if (BrowserPopupUtils.inPopout(this.win)) {
+      BrowserApi.closePopup(this.win);
+    }
+  }
+}
diff --git a/apps/browser/src/popup/services/services.module.ts b/apps/browser/src/popup/services/services.module.ts
index 3887c8c8b12..509f7554aef 100644
--- a/apps/browser/src/popup/services/services.module.ts
+++ b/apps/browser/src/popup/services/services.module.ts
@@ -5,6 +5,7 @@ import { merge, of, Subject } from "rxjs";
 
 import { CollectionService } from "@bitwarden/admin-console/common";
 import { DeviceManagementComponentServiceAbstraction } from "@bitwarden/angular/auth/device-management/device-management-component.service.abstraction";
+import { ChangePasswordService } from "@bitwarden/angular/auth/password-management/change-password";
 import { AngularThemingService } from "@bitwarden/angular/platform/services/theming/angular-theming.service";
 import { SafeProvider, safeProvider } from "@bitwarden/angular/platform/utils/safe-provider";
 import { ViewCacheService } from "@bitwarden/angular/platform/view-cache";
@@ -45,6 +46,7 @@ import {
   AccountService as AccountServiceAbstraction,
 } from "@bitwarden/common/auth/abstractions/account.service";
 import { AuthService } from "@bitwarden/common/auth/abstractions/auth.service";
+import { MasterPasswordApiService } from "@bitwarden/common/auth/abstractions/master-password-api.service.abstraction";
 import { SsoLoginServiceAbstraction } from "@bitwarden/common/auth/abstractions/sso-login.service.abstraction";
 import { UserVerificationService } from "@bitwarden/common/auth/abstractions/user-verification/user-verification.service.abstraction";
 import {
@@ -143,6 +145,7 @@ import {
 
 import { AccountSwitcherService } from "../../auth/popup/account-switching/services/account-switcher.service";
 import { ForegroundLockService } from "../../auth/popup/accounts/foreground-lock.service";
+import { ExtensionChangePasswordService } from "../../auth/popup/change-password/extension-change-password.service";
 import { ExtensionLoginComponentService } from "../../auth/popup/login/extension-login-component.service";
 import { ExtensionSsoComponentService } from "../../auth/popup/login/extension-sso-component.service";
 import { ExtensionLogoutService } from "../../auth/popup/logout/extension-logout.service";
@@ -664,6 +667,11 @@ const safeProviders: SafeProvider[] = [
     useClass: DefaultSshImportPromptService,
     deps: [DialogService, ToastService, PlatformUtilsService, I18nServiceAbstraction],
   }),
+  safeProvider({
+    provide: ChangePasswordService,
+    useClass: ExtensionChangePasswordService,
+    deps: [KeyService, MasterPasswordApiService, InternalMasterPasswordServiceAbstraction, WINDOW],
+  }),
   safeProvider({
     provide: NotificationsService,
     useClass: ForegroundNotificationsService,
diff --git a/libs/angular/src/auth/password-management/change-password/change-password.component.ts b/libs/angular/src/auth/password-management/change-password/change-password.component.ts
index 02738d33321..7bb9584e934 100644
--- a/libs/angular/src/auth/password-management/change-password/change-password.component.ts
+++ b/libs/angular/src/auth/password-management/change-password/change-password.component.ts
@@ -178,6 +178,9 @@ export class ChangePasswordComponent implements OnInit {
 
         // TODO: PM-23515 eventually use the logout service instead of messaging service once it is available without circular dependencies
         this.messagingService.send("logout");
+
+        // Close the popout if we are in a browser extension popout.
+        this.changePasswordService.closeBrowserExtensionPopout?.();
       }
     } catch (error) {
       this.logService.error(error);
diff --git a/libs/angular/src/auth/password-management/change-password/change-password.service.abstraction.ts b/libs/angular/src/auth/password-management/change-password/change-password.service.abstraction.ts
index 2fd3bbae67a..1d6d789cdc5 100644
--- a/libs/angular/src/auth/password-management/change-password/change-password.service.abstraction.ts
+++ b/libs/angular/src/auth/password-management/change-password/change-password.service.abstraction.ts
@@ -59,4 +59,10 @@ export abstract class ChangePasswordService {
    * - Currently only used on the web change password service.
    */
   clearDeeplinkState?: () => Promise<void>;
+
+  /**
+   * Optional method that closes the browser extension popout if in a popout
+   * If not in a popout, does nothing.
+   */
+  abstract closeBrowserExtensionPopout?(): void;
 }

From d45cacc1aff9ce4ef66f9d163ba9091257e0bcd0 Mon Sep 17 00:00:00 2001
From: Vicki League <vleague@bitwarden.com>
Date: Wed, 23 Jul 2025 13:26:35 -0400
Subject: [PATCH 219/239] [CL-801] Fix chromatic.yml externals formatting
 (#15736)

---
 .github/workflows/chromatic.yml | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/chromatic.yml b/.github/workflows/chromatic.yml
index 4ee39305f84..d0b9cab4c45 100644
--- a/.github/workflows/chromatic.yml
+++ b/.github/workflows/chromatic.yml
@@ -102,6 +102,9 @@ jobs:
           storybookBuildDir: ./storybook-static
           exitOnceUploaded: true
           onlyChanged: true
-          externals: "[\"libs/components/**/*.scss\", \"libs/components/**/*.css\", \"libs/components/tailwind.config*.js\"]"
+          externals: |
+            libs/components/**/*.scss
+            libs/components/**/*.css
+            libs/components/tailwind.config*.js
           # Rather than use an `if` check on the whole publish step, we need to tell Chromatic to skip so that any Chromatic-spawned actions are properly skipped
           skip: ${{ steps.get-changed-files-for-chromatic.outputs.storyFiles == 'false' }}

From fe1c04099355162b20a891ae73bee8f91cf4ab6a Mon Sep 17 00:00:00 2001
From: Jordan Aasen <166539328+jaasen-livefront@users.noreply.github.com>
Date: Wed, 23 Jul 2025 10:37:40 -0700
Subject: [PATCH 220/239] [PM-23789][PM-237090][PM-23791][PM-23792] -
 [Web][Desktop][Browser] - Do not import cards if policy is enabled (#15740)

* restrict item types in import

* add comment

* fix spec

* fix dep

* clean up logic
---
 apps/browser/src/background/main.background.ts      |  1 +
 apps/cli/src/service-container/service-container.ts |  1 +
 libs/importer/src/components/import.component.ts    |  1 +
 libs/importer/src/services/import.service.spec.ts   |  4 ++++
 libs/importer/src/services/import.service.ts        | 13 +++++++++++++
 5 files changed, 20 insertions(+)

diff --git a/apps/browser/src/background/main.background.ts b/apps/browser/src/background/main.background.ts
index 1dfc947b284..2565f366870 100644
--- a/apps/browser/src/background/main.background.ts
+++ b/apps/browser/src/background/main.background.ts
@@ -1070,6 +1070,7 @@ export default class MainBackground {
       this.pinService,
       this.accountService,
       this.sdkService,
+      this.restrictedItemTypesService,
     );
 
     this.individualVaultExportService = new IndividualVaultExportService(
diff --git a/apps/cli/src/service-container/service-container.ts b/apps/cli/src/service-container/service-container.ts
index aa507aec1d8..78f961973d9 100644
--- a/apps/cli/src/service-container/service-container.ts
+++ b/apps/cli/src/service-container/service-container.ts
@@ -821,6 +821,7 @@ export class ServiceContainer {
       this.pinService,
       this.accountService,
       this.sdkService,
+      this.restrictedItemTypesService,
     );
 
     this.individualExportService = new IndividualVaultExportService(
diff --git a/libs/importer/src/components/import.component.ts b/libs/importer/src/components/import.component.ts
index 4f2715fe9cf..7bac6b0e0a5 100644
--- a/libs/importer/src/components/import.component.ts
+++ b/libs/importer/src/components/import.component.ts
@@ -100,6 +100,7 @@ const safeProviders: SafeProvider[] = [
       PinServiceAbstraction,
       AccountService,
       SdkService,
+      RestrictedItemTypesService,
     ],
   }),
 ];
diff --git a/libs/importer/src/services/import.service.spec.ts b/libs/importer/src/services/import.service.spec.ts
index f71c34bf209..a27b74c7ad5 100644
--- a/libs/importer/src/services/import.service.spec.ts
+++ b/libs/importer/src/services/import.service.spec.ts
@@ -13,6 +13,7 @@ import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.servi
 import { FolderService } from "@bitwarden/common/vault/abstractions/folder/folder.service.abstraction";
 import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
 import { FolderView } from "@bitwarden/common/vault/models/view/folder.view";
+import { RestrictedItemTypesService } from "@bitwarden/common/vault/services/restricted-item-types.service";
 import { KeyService } from "@bitwarden/key-management";
 
 import { BitwardenPasswordProtectedImporter } from "../importers/bitwarden/bitwarden-password-protected-importer";
@@ -34,6 +35,7 @@ describe("ImportService", () => {
   let pinService: MockProxy<PinServiceAbstraction>;
   let accountService: MockProxy<AccountService>;
   let sdkService: MockSdkService;
+  let restrictedItemTypesService: MockProxy<RestrictedItemTypesService>;
 
   beforeEach(() => {
     cipherService = mock<CipherService>();
@@ -45,6 +47,7 @@ describe("ImportService", () => {
     encryptService = mock<EncryptService>();
     pinService = mock<PinServiceAbstraction>();
     sdkService = new MockSdkService();
+    restrictedItemTypesService = mock<RestrictedItemTypesService>();
 
     importService = new ImportService(
       cipherService,
@@ -57,6 +60,7 @@ describe("ImportService", () => {
       pinService,
       accountService,
       sdkService,
+      restrictedItemTypesService,
     );
   });
 
diff --git a/libs/importer/src/services/import.service.ts b/libs/importer/src/services/import.service.ts
index c9cb325d10b..c6bff607633 100644
--- a/libs/importer/src/services/import.service.ts
+++ b/libs/importer/src/services/import.service.ts
@@ -26,6 +26,7 @@ import { CipherRequest } from "@bitwarden/common/vault/models/request/cipher.req
 import { FolderWithIdRequest } from "@bitwarden/common/vault/models/request/folder-with-id.request";
 import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
 import { FolderView } from "@bitwarden/common/vault/models/view/folder.view";
+import { RestrictedItemTypesService } from "@bitwarden/common/vault/services/restricted-item-types.service";
 import { KeyService } from "@bitwarden/key-management";
 
 import {
@@ -119,6 +120,7 @@ export class ImportService implements ImportServiceAbstraction {
     private pinService: PinServiceAbstraction,
     private accountService: AccountService,
     private sdkService: SdkService,
+    private restrictedItemTypesService: RestrictedItemTypesService,
   ) {}
 
   getImportOptions(): ImportOption[] {
@@ -166,6 +168,17 @@ export class ImportService implements ImportServiceAbstraction {
       }
     }
 
+    const restrictedItemTypes = await firstValueFrom(
+      this.restrictedItemTypesService.restricted$.pipe(
+        map((restrictedItemTypes) => restrictedItemTypes.map((r) => r.cipherType)),
+      ),
+    );
+
+    // Filter out restricted item types from the import result
+    importResult.ciphers = importResult.ciphers.filter(
+      (cipher) => !restrictedItemTypes.includes(cipher.type),
+    );
+
     if (organizationId && !selectedImportTarget && !canAccessImportExport) {
       const hasUnassignedCollections =
         importResult.collectionRelationships.length < importResult.ciphers.length;

From 4458a7306be559d2d0cd5e673a4b84135cca4f36 Mon Sep 17 00:00:00 2001
From: Bryan Cunningham <bcunningham@bitwarden.com>
Date: Wed, 23 Jul 2025 16:00:37 -0400
Subject: [PATCH 221/239] update xs text size (#15680)

---
 libs/components/tailwind.config.base.js | 1 +
 1 file changed, 1 insertion(+)

diff --git a/libs/components/tailwind.config.base.js b/libs/components/tailwind.config.base.js
index 829c812a954..8b73ffc470c 100644
--- a/libs/components/tailwind.config.base.js
+++ b/libs/components/tailwind.config.base.js
@@ -155,6 +155,7 @@ module.exports = {
         "90vw": "90vw",
       }),
       fontSize: {
+        xs: [".8125rem", "1rem"],
         "3xl": ["1.75rem", "2rem"],
       },
     },

From 7a24a538a4419fc822135d917edb73da09d97287 Mon Sep 17 00:00:00 2001
From: Bernd Schoolmann <mail@quexten.com>
Date: Wed, 23 Jul 2025 22:29:44 +0200
Subject: [PATCH 222/239] [PM-23072] Remove legacy key support in auth code
 (#15350)

* Remove legacy key support in auth code

* Fix tests
---
 .../src/auth/guards/lock.guard.spec.ts        | 30 -------------------
 libs/angular/src/auth/guards/lock.guard.ts    |  7 -----
 .../common/login-strategies/login.strategy.ts |  2 +-
 3 files changed, 1 insertion(+), 38 deletions(-)

diff --git a/libs/angular/src/auth/guards/lock.guard.spec.ts b/libs/angular/src/auth/guards/lock.guard.spec.ts
index 2085e0f3486..53491bace00 100644
--- a/libs/angular/src/auth/guards/lock.guard.spec.ts
+++ b/libs/angular/src/auth/guards/lock.guard.spec.ts
@@ -26,7 +26,6 @@ import { lockGuard } from "./lock.guard";
 interface SetupParams {
   authStatus: AuthenticationStatus;
   canLock?: boolean;
-  isLegacyUser?: boolean;
   clientType?: ClientType;
   everHadUserKey?: boolean;
   supportsDeviceTrust?: boolean;
@@ -43,7 +42,6 @@ describe("lockGuard", () => {
     vaultTimeoutSettingsService.canLock.mockResolvedValue(setupParams.canLock);
 
     const keyService: MockProxy<KeyService> = mock<KeyService>();
-    keyService.isLegacyUser.mockResolvedValue(setupParams.isLegacyUser);
     keyService.everHadUserKey$.mockReturnValue(of(setupParams.everHadUserKey));
 
     const platformUtilService: MockProxy<PlatformUtilsService> = mock<PlatformUtilsService>();
@@ -155,37 +153,10 @@ describe("lockGuard", () => {
     expect(router.url).toBe("/");
   });
 
-  it("should log user out if they are a legacy user on a desktop client", async () => {
-    const { router, messagingService } = setup({
-      authStatus: AuthenticationStatus.Locked,
-      canLock: true,
-      isLegacyUser: true,
-      clientType: ClientType.Desktop,
-    });
-
-    await router.navigate(["lock"]);
-    expect(router.url).toBe("/");
-    expect(messagingService.send).toHaveBeenCalledWith("logout");
-  });
-
-  it("should log user out if they are a legacy user on a browser extension client", async () => {
-    const { router, messagingService } = setup({
-      authStatus: AuthenticationStatus.Locked,
-      canLock: true,
-      isLegacyUser: true,
-      clientType: ClientType.Browser,
-    });
-
-    await router.navigate(["lock"]);
-    expect(router.url).toBe("/");
-    expect(messagingService.send).toHaveBeenCalledWith("logout");
-  });
-
   it("should allow navigation to the lock route when device trust is supported, the user has a MP, and the user is coming from the login-initiated page", async () => {
     const { router } = setup({
       authStatus: AuthenticationStatus.Locked,
       canLock: true,
-      isLegacyUser: false,
       clientType: ClientType.Web,
       everHadUserKey: false,
       supportsDeviceTrust: true,
@@ -213,7 +184,6 @@ describe("lockGuard", () => {
     const { router } = setup({
       authStatus: AuthenticationStatus.Locked,
       canLock: true,
-      isLegacyUser: false,
       clientType: ClientType.Web,
       everHadUserKey: false,
       supportsDeviceTrust: true,
diff --git a/libs/angular/src/auth/guards/lock.guard.ts b/libs/angular/src/auth/guards/lock.guard.ts
index 4b09ddeee18..8acdadeb87c 100644
--- a/libs/angular/src/auth/guards/lock.guard.ts
+++ b/libs/angular/src/auth/guards/lock.guard.ts
@@ -13,7 +13,6 @@ import { UserVerificationService } from "@bitwarden/common/auth/abstractions/use
 import { AuthenticationStatus } from "@bitwarden/common/auth/enums/authentication-status";
 import { DeviceTrustServiceAbstraction } from "@bitwarden/common/key-management/device-trust/abstractions/device-trust.service.abstraction";
 import { VaultTimeoutSettingsService } from "@bitwarden/common/key-management/vault-timeout";
-import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
 import { KeyService } from "@bitwarden/key-management";
 
 /**
@@ -31,7 +30,6 @@ export function lockGuard(): CanActivateFn {
     const authService = inject(AuthService);
     const keyService = inject(KeyService);
     const deviceTrustService = inject(DeviceTrustServiceAbstraction);
-    const messagingService = inject(MessagingService);
     const router = inject(Router);
     const userVerificationService = inject(UserVerificationService);
     const vaultTimeoutSettingsService = inject(VaultTimeoutSettingsService);
@@ -56,11 +54,6 @@ export function lockGuard(): CanActivateFn {
       return false;
     }
 
-    if (await keyService.isLegacyUser()) {
-      messagingService.send("logout");
-      return false;
-    }
-
     // User is authN and in locked state.
 
     const tdeEnabled = await firstValueFrom(deviceTrustService.supportsDeviceTrust$);
diff --git a/libs/auth/src/common/login-strategies/login.strategy.ts b/libs/auth/src/common/login-strategies/login.strategy.ts
index 463ea676163..b8d5f64bfcc 100644
--- a/libs/auth/src/common/login-strategies/login.strategy.ts
+++ b/libs/auth/src/common/login-strategies/login.strategy.ts
@@ -325,7 +325,7 @@ export abstract class LoginStrategy {
 
   protected async createKeyPairForOldAccount(userId: UserId) {
     try {
-      const userKey = await this.keyService.getUserKeyWithLegacySupport(userId);
+      const userKey = await this.keyService.getUserKey(userId);
       const [publicKey, privateKey] = await this.keyService.makeKeyPair(userKey);
       if (!privateKey.encryptedString) {
         throw new Error("Failed to create encrypted private key");

From d0d1359ff4fd4d40edaa5f1096373d642bafc40d Mon Sep 17 00:00:00 2001
From: Brandon Treston <btreston@bitwarden.com>
Date: Wed, 23 Jul 2025 19:05:15 -0400
Subject: [PATCH 223/239] [PM-12048] Wire up vNextCollectionService (#14871)

* remove derived state, add cache in service. Fix ts strict errors

* cleanup

* promote vNextCollectionService

* wip

* replace callers in web WIP

* refactor tests for web

* update callers to use vNextCollectionServcie methods in CLI

* WIP make decryptMany public again, fix callers, imports

* wip cli

* wip desktop

* update callers in browser, fix tests

* remove in service cache

* cleanup

* fix test

* clean up

* address cr feedback

* remove duplicate userId

* clean up

* remove unused import

* fix vault-settings-import-nudge.service

* fix caching issue

* clean up

* refactor decryption, cleanup, update callers

* clean up

* Use in-memory statedefinition

* Ac/pm 12048 v next collection service pairing (#15239)

* Draft from pairing with Gibson

* Add todos

* Add comment

* wip

* refactor upsert

---------

Co-authored-by: Brandon <btreston@bitwarden.com>

* clean up

* fix state definitions

* fix linter error

* cleanup

* add test, fix shareReplay

* fix item-more-options component

* fix desktop build

* refactor state to account for null as an initial value, remove caching

* add proper cache, add unit test, update callers

* clean up

* fix routing when deleting collections

* cleanup

* use combineLatest

* fix ts-strict errors, fix error handling

* refactor Collection and CollectionView properties for ts-strict

* Revert "refactor Collection and CollectionView properties for ts-strict"

This reverts commit a5c63aab76ba5663f4136000fe31fbb9171b8d4b.

---------

Co-authored-by: Thomas Rittson <trittson@bitwarden.com>
Co-authored-by: Thomas Rittson <31796059+eliykat@users.noreply.github.com>
---
 .../background/notification.background.ts     |  29 +-
 .../browser/src/background/main.background.ts |   1 -
 .../assign-collections.component.ts           |   8 +-
 .../item-more-options.component.ts            |   2 +-
 .../vault-popup-items.service.spec.ts         |   2 +-
 .../services/vault-popup-items.service.ts     |   9 +-
 .../vault-popup-list-filters.service.spec.ts  |  28 +-
 .../vault-popup-list-filters.service.ts       |  18 +-
 apps/cli/src/commands/get.command.ts          |  10 +-
 apps/cli/src/commands/list.command.ts         |  17 +-
 apps/cli/src/oss-serve-configurator.ts        |   1 +
 .../service-container/service-container.ts    |   1 -
 apps/cli/src/vault.program.ts                 |   1 +
 apps/desktop/src/app/app.component.ts         |   1 -
 .../src/vault/app/vault/vault-v2.component.ts |  20 +-
 .../collections/vault.component.ts            |   3 +
 .../organizations/manage/groups.component.ts  |  26 +-
 .../members/members.component.ts              |  27 +-
 .../collection-dialog.component.ts            |  26 +-
 ...ree-org-collection-limit.validator.spec.ts |  10 +-
 .../free-org-collection-limit.validator.ts    |  20 +-
 apps/web/src/app/app.component.ts             |   1 -
 .../bulk-delete-dialog.component.ts           |   9 +-
 .../services/vault-filter.service.spec.ts     |   2 +-
 .../services/vault-filter.service.ts          |  15 +-
 .../vault/individual-vault/vault.component.ts |  33 +-
 .../abstractions/collection-admin.service.ts  |  19 +-
 .../abstractions/collection.service.ts        |  40 +-
 .../abstractions/vnext-collection.service.ts  |  43 --
 .../collections/models/collection.data.ts     |   5 +-
 .../common/collections/models/collection.ts   |  26 +-
 .../collections/models/collection.view.ts     |   2 +-
 .../collections/services/collection.state.ts  |  28 ++
 .../default-collection-admin.service.ts       |   8 +-
 .../default-collection.service.spec.ts        | 433 ++++++++++++++----
 .../services/default-collection.service.ts    | 338 +++++++-------
 .../default-vnext-collection.service.spec.ts  | 345 --------------
 .../default-vnext-collection.service.ts       | 194 --------
 .../services/vnext-collection.state.ts        |  36 --
 .../empty-vault-nudge.service.ts              |   2 +-
 .../vault-settings-import-nudge.service.ts    |   2 +-
 .../services/vault-filter.service.ts          |   7 +-
 .../services/vault-timeout.service.ts         |   4 -
 .../src/platform/misc/rxjs-operators.ts       |   6 +-
 .../src/platform/models/domain/domain-base.ts |   2 +-
 .../src/platform/state/state-definitions.ts   |   6 +-
 .../src/platform/sync/core-sync.service.ts    |   6 +-
 .../cipher-authorization.service.spec.ts      |   9 +-
 .../services/cipher-authorization.service.ts  |  18 +-
 .../src/components/import.component.ts        |  12 +-
 libs/importer/src/services/import.service.ts  |   2 +-
 .../src/services/org-vault-export.service.ts  |  35 +-
 .../src/components/export.component.ts        |  40 +-
 .../default-cipher-form-config.service.ts     |   5 +-
 .../src/cipher-view/cipher-view.component.ts  |  13 +-
 .../assign-collections.component.ts           |  12 +-
 56 files changed, 906 insertions(+), 1112 deletions(-)
 delete mode 100644 libs/admin-console/src/common/collections/abstractions/vnext-collection.service.ts
 create mode 100644 libs/admin-console/src/common/collections/services/collection.state.ts
 delete mode 100644 libs/admin-console/src/common/collections/services/default-vnext-collection.service.spec.ts
 delete mode 100644 libs/admin-console/src/common/collections/services/default-vnext-collection.service.ts
 delete mode 100644 libs/admin-console/src/common/collections/services/vnext-collection.state.ts

diff --git a/apps/browser/src/autofill/background/notification.background.ts b/apps/browser/src/autofill/background/notification.background.ts
index 65c1ca0277f..15baccf3560 100644
--- a/apps/browser/src/autofill/background/notification.background.ts
+++ b/apps/browser/src/autofill/background/notification.background.ts
@@ -1030,18 +1030,23 @@ export default class NotificationBackground {
   private async getCollectionData(
     message: NotificationBackgroundExtensionMessage,
   ): Promise<CollectionView[]> {
-    const collections = (await this.collectionService.getAllDecrypted()).reduce<CollectionView[]>(
-      (acc, collection) => {
-        if (collection.organizationId === message?.orgId) {
-          acc.push({
-            id: collection.id,
-            name: collection.name,
-            organizationId: collection.organizationId,
-          });
-        }
-        return acc;
-      },
-      [],
+    const collections = await firstValueFrom(
+      this.accountService.activeAccount$.pipe(
+        getUserId,
+        switchMap((userId) => this.collectionService.decryptedCollections$(userId)),
+        map((collections) =>
+          collections.reduce<CollectionView[]>((acc, collection) => {
+            if (collection.organizationId === message?.orgId) {
+              acc.push({
+                id: collection.id,
+                name: collection.name,
+                organizationId: collection.organizationId,
+              });
+            }
+            return acc;
+          }, []),
+        ),
+      ),
     );
     return collections;
   }
diff --git a/apps/browser/src/background/main.background.ts b/apps/browser/src/background/main.background.ts
index 2565f366870..3aaf24c07a4 100644
--- a/apps/browser/src/background/main.background.ts
+++ b/apps/browser/src/background/main.background.ts
@@ -1620,7 +1620,6 @@ export default class MainBackground {
       this.keyService.clearKeys(userBeingLoggedOut),
       this.cipherService.clear(userBeingLoggedOut),
       this.folderService.clear(userBeingLoggedOut),
-      this.collectionService.clear(userBeingLoggedOut),
       this.vaultTimeoutSettingsService.clear(userBeingLoggedOut),
       this.vaultFilterService.clear(),
       this.biometricStateService.logout(userBeingLoggedOut),
diff --git a/apps/browser/src/vault/popup/components/vault-v2/assign-collections/assign-collections.component.ts b/apps/browser/src/vault/popup/components/vault-v2/assign-collections/assign-collections.component.ts
index 8374cc254a9..0b7346c8613 100644
--- a/apps/browser/src/vault/popup/components/vault-v2/assign-collections/assign-collections.component.ts
+++ b/apps/browser/src/vault/popup/components/vault-v2/assign-collections/assign-collections.component.ts
@@ -10,6 +10,7 @@ import { Observable, combineLatest, filter, first, map, switchMap } from "rxjs";
 import { CollectionService } from "@bitwarden/admin-console/common";
 import { JslibModule } from "@bitwarden/angular/jslib.module";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
+import { getUserId } from "@bitwarden/common/auth/services/account.service";
 import { OrganizationId } from "@bitwarden/common/types/guid";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
 import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
@@ -70,7 +71,12 @@ export class AssignCollections {
       ),
     );
 
-    combineLatest([cipher$, this.collectionService.decryptedCollections$])
+    const decryptedCollection$ = this.accountService.activeAccount$.pipe(
+      getUserId,
+      switchMap((userId) => this.collectionService.decryptedCollections$(userId)),
+    );
+
+    combineLatest([cipher$, decryptedCollection$])
       .pipe(takeUntilDestroyed(), first())
       .subscribe(([cipherView, collections]) => {
         let availableCollections = collections;
diff --git a/apps/browser/src/vault/popup/components/vault-v2/item-more-options/item-more-options.component.ts b/apps/browser/src/vault/popup/components/vault-v2/item-more-options/item-more-options.component.ts
index ce16ec2f3e0..6c3a7243309 100644
--- a/apps/browser/src/vault/popup/components/vault-v2/item-more-options/item-more-options.component.ts
+++ b/apps/browser/src/vault/popup/components/vault-v2/item-more-options/item-more-options.component.ts
@@ -93,7 +93,7 @@ export class ItemMoreOptionsComponent {
     switchMap((userId) => {
       return combineLatest([
         this.organizationService.hasOrganizations(userId),
-        this.collectionService.decryptedCollections$,
+        this.collectionService.decryptedCollections$(userId),
       ]).pipe(
         map(([hasOrgs, collections]) => {
           const canEditCollections = collections.some((c) => !c.readOnly);
diff --git a/apps/browser/src/vault/popup/services/vault-popup-items.service.spec.ts b/apps/browser/src/vault/popup/services/vault-popup-items.service.spec.ts
index 48788ea5ae9..32974da162d 100644
--- a/apps/browser/src/vault/popup/services/vault-popup-items.service.spec.ts
+++ b/apps/browser/src/vault/popup/services/vault-popup-items.service.spec.ts
@@ -139,7 +139,7 @@ describe("VaultPopupItemsService", () => {
     ];
 
     organizationServiceMock.organizations$.mockReturnValue(new BehaviorSubject([mockOrg]));
-    collectionService.decryptedCollections$ = new BehaviorSubject(mockCollections);
+    collectionService.decryptedCollections$.mockReturnValue(new BehaviorSubject(mockCollections));
 
     activeUserLastSync$ = new BehaviorSubject(new Date());
     syncServiceMock.activeUserLastSync$.mockReturnValue(activeUserLastSync$);
diff --git a/apps/browser/src/vault/popup/services/vault-popup-items.service.ts b/apps/browser/src/vault/popup/services/vault-popup-items.service.ts
index b2d4fd1b262..9d44eef2e47 100644
--- a/apps/browser/src/vault/popup/services/vault-popup-items.service.ts
+++ b/apps/browser/src/vault/popup/services/vault-popup-items.service.ts
@@ -72,6 +72,11 @@ export class VaultPopupItemsService {
   private organizations$ = this.activeUserId$.pipe(
     switchMap((userId) => this.organizationService.organizations$(userId)),
   );
+
+  private decryptedCollections$ = this.activeUserId$.pipe(
+    switchMap((userId) => this.collectionService.decryptedCollections$(userId)),
+  );
+
   /**
    * Observable that contains the list of other cipher types that should be shown
    * in the autofill section of the Vault tab. Depends on vault settings.
@@ -130,7 +135,7 @@ export class VaultPopupItemsService {
 
   private _activeCipherList$: Observable<PopupCipherViewLike[]> = this._allDecryptedCiphers$.pipe(
     switchMap((ciphers) =>
-      combineLatest([this.organizations$, this.collectionService.decryptedCollections$]).pipe(
+      combineLatest([this.organizations$, this.decryptedCollections$]).pipe(
         map(([organizations, collections]) => {
           const orgMap = Object.fromEntries(organizations.map((org) => [org.id, org]));
           const collectionMap = Object.fromEntries(collections.map((col) => [col.id, col]));
@@ -291,7 +296,7 @@ export class VaultPopupItemsService {
    */
   deletedCiphers$: Observable<PopupCipherViewLike[]> = this._allDecryptedCiphers$.pipe(
     switchMap((ciphers) =>
-      combineLatest([this.organizations$, this.collectionService.decryptedCollections$]).pipe(
+      combineLatest([this.organizations$, this.decryptedCollections$]).pipe(
         map(([organizations, collections]) => {
           const orgMap = Object.fromEntries(organizations.map((org) => [org.id, org]));
           const collectionMap = Object.fromEntries(collections.map((col) => [col.id, col]));
diff --git a/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.spec.ts b/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.spec.ts
index 9f1bd6e6e55..ebaeaeb6076 100644
--- a/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.spec.ts
+++ b/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.spec.ts
@@ -20,6 +20,7 @@ import { UserId } from "@bitwarden/common/types/guid";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
 import { FolderService } from "@bitwarden/common/vault/abstractions/folder/folder.service.abstraction";
 import { CipherType } from "@bitwarden/common/vault/enums";
+import { TreeNode } from "@bitwarden/common/vault/models/domain/tree-node";
 import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
 import { FolderView } from "@bitwarden/common/vault/models/view/folder.view";
 import {
@@ -58,7 +59,7 @@ describe("VaultPopupListFiltersService", () => {
   };
 
   const collectionService = {
-    decryptedCollections$,
+    decryptedCollections$: () => decryptedCollections$,
     getAllNested: () => Promise.resolve([]),
   } as unknown as CollectionService;
 
@@ -106,7 +107,7 @@ describe("VaultPopupListFiltersService", () => {
       signal: jest.fn(() => mockCachedSignal),
     };
 
-    collectionService.getAllNested = () => Promise.resolve([]);
+    collectionService.getAllNested = () => [];
     TestBed.configureTestingModule({
       providers: [
         {
@@ -382,14 +383,7 @@ describe("VaultPopupListFiltersService", () => {
     beforeEach(() => {
       decryptedCollections$.next(testCollections);
 
-      collectionService.getAllNested = () =>
-        Promise.resolve(
-          testCollections.map((c) => ({
-            children: [],
-            node: c,
-            parent: null,
-          })),
-        );
+      collectionService.getAllNested = () => testCollections.map((c) => new TreeNode(c, null));
     });
 
     it("returns all collections", (done) => {
@@ -755,15 +749,13 @@ function createSeededVaultPopupListFiltersService(
   } as any;
 
   const collectionServiceMock = {
-    decryptedCollections$: seededCollections$,
+    decryptedCollections$: () => seededCollections$,
     getAllNested: () =>
-      Promise.resolve(
-        seededCollections$.value.map((c) => ({
-          children: [],
-          node: c,
-          parent: null,
-        })),
-      ),
+      seededCollections$.value.map((c) => ({
+        children: [],
+        node: c,
+        parent: null,
+      })),
   } as any;
 
   const folderServiceMock = {
diff --git a/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.ts b/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.ts
index 7af6fb5f212..adc0589e7e8 100644
--- a/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.ts
+++ b/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.ts
@@ -6,7 +6,6 @@ import {
   debounceTime,
   distinctUntilChanged,
   filter,
-  from,
   map,
   Observable,
   shareReplay,
@@ -446,7 +445,7 @@ export class VaultPopupListFiltersService {
           this.filters$.pipe(
             distinctUntilChanged((prev, curr) => prev.organization?.id === curr.organization?.id),
           ),
-          this.collectionService.decryptedCollections$,
+          this.collectionService.decryptedCollections$(userId),
           this.organizationService.memberOrganizations$(userId),
           this.configService.getFeatureFlag$(FeatureFlag.CreateDefaultLocation),
         ]),
@@ -463,16 +462,11 @@ export class VaultPopupListFiltersService {
         }
         return sortDefaultCollections(filtered, orgs, this.i18nService.collator);
       }),
-      switchMap((collections) => {
-        return from(this.collectionService.getAllNested(collections)).pipe(
-          map(
-            (nested) =>
-              new DynamicTreeNode<CollectionView>({
-                fullList: collections,
-                nestedList: nested,
-              }),
-          ),
-        );
+      map((fullList) => {
+        return new DynamicTreeNode<CollectionView>({
+          fullList,
+          nestedList: this.collectionService.getAllNested(fullList),
+        });
       }),
       map((tree) =>
         tree.nestedList.map((c) => this.convertToChipSelectOption(c, "bwi-collection-shared")),
diff --git a/apps/cli/src/commands/get.command.ts b/apps/cli/src/commands/get.command.ts
index b20052fbb53..756316cba43 100644
--- a/apps/cli/src/commands/get.command.ts
+++ b/apps/cli/src/commands/get.command.ts
@@ -24,6 +24,7 @@ import { LoginUriExport } from "@bitwarden/common/models/export/login-uri.export
 import { LoginExport } from "@bitwarden/common/models/export/login.export";
 import { SecureNoteExport } from "@bitwarden/common/models/export/secure-note.export";
 import { ErrorResponse } from "@bitwarden/common/models/response/error.response";
+import { getById } from "@bitwarden/common/platform/misc";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
 import { CipherId, OrganizationId, UserId } from "@bitwarden/common/types/guid";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
@@ -442,8 +443,11 @@ export class GetCommand extends DownloadCommand {
 
   private async getCollection(id: string) {
     let decCollection: CollectionView = null;
+    const activeUserId = await firstValueFrom(this.accountService.activeAccount$.pipe(getUserId));
     if (Utils.isGuid(id)) {
-      const collection = await this.collectionService.get(id);
+      const collection = await firstValueFrom(
+        this.collectionService.encryptedCollections$(activeUserId).pipe(getById(id)),
+      );
       if (collection != null) {
         const orgKeys = await firstValueFrom(this.keyService.activeUserOrgKeys$);
         decCollection = await collection.decrypt(
@@ -451,7 +455,9 @@ export class GetCommand extends DownloadCommand {
         );
       }
     } else if (id.trim() !== "") {
-      let collections = await this.collectionService.getAllDecrypted();
+      let collections = await firstValueFrom(
+        this.collectionService.decryptedCollections$(activeUserId),
+      );
       collections = CliUtils.searchCollections(collections, id);
       if (collections.length > 1) {
         return Response.multipleResults(collections.map((c) => c.id));
diff --git a/apps/cli/src/commands/list.command.ts b/apps/cli/src/commands/list.command.ts
index 517050728c0..94abd97d6eb 100644
--- a/apps/cli/src/commands/list.command.ts
+++ b/apps/cli/src/commands/list.command.ts
@@ -20,6 +20,7 @@ import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.servi
 import { FolderService } from "@bitwarden/common/vault/abstractions/folder/folder.service.abstraction";
 import { SearchService } from "@bitwarden/common/vault/abstractions/search.service";
 import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
+import { KeyService } from "@bitwarden/key-management";
 
 import { CollectionResponse } from "../admin-console/models/response/collection.response";
 import { OrganizationUserResponse } from "../admin-console/models/response/organization-user.response";
@@ -42,6 +43,7 @@ export class ListCommand {
     private apiService: ApiService,
     private eventCollectionService: EventCollectionService,
     private accountService: AccountService,
+    private keyService: KeyService,
     private cliRestrictedItemTypesService: CliRestrictedItemTypesService,
   ) {}
 
@@ -158,7 +160,10 @@ export class ListCommand {
   }
 
   private async listCollections(options: Options) {
-    let collections = await this.collectionService.getAllDecrypted();
+    const activeUserId = await firstValueFrom(this.accountService.activeAccount$.pipe(getUserId));
+    let collections = await firstValueFrom(
+      this.collectionService.decryptedCollections$(activeUserId),
+    );
 
     if (options.organizationId != null) {
       collections = collections.filter((c) => {
@@ -178,13 +183,13 @@ export class ListCommand {
   }
 
   private async listOrganizationCollections(options: Options) {
+    const userId = await firstValueFrom(getUserId(this.accountService.activeAccount$));
     if (options.organizationId == null || options.organizationId === "") {
       return Response.badRequest("`organizationid` option is required.");
     }
     if (!Utils.isGuid(options.organizationId)) {
       return Response.badRequest("`" + options.organizationId + "` is not a GUID.");
     }
-    const userId = await firstValueFrom(getUserId(this.accountService.activeAccount$));
     if (!userId) {
       return Response.badRequest("No user found.");
     }
@@ -207,7 +212,13 @@ export class ListCommand {
       const collections = response.data
         .filter((c) => c.organizationId === options.organizationId)
         .map((r) => new Collection(new CollectionData(r as ApiCollectionDetailsResponse)));
-      let decCollections = await this.collectionService.decryptMany(collections);
+      const orgKeys = await firstValueFrom(this.keyService.orgKeys$(userId));
+      if (orgKeys == null) {
+        throw new Error("Organization keys not found.");
+      }
+      let decCollections = await firstValueFrom(
+        this.collectionService.decryptMany$(collections, orgKeys),
+      );
       if (options.search != null && options.search.trim() !== "") {
         decCollections = CliUtils.searchCollections(decCollections, options.search);
       }
diff --git a/apps/cli/src/oss-serve-configurator.ts b/apps/cli/src/oss-serve-configurator.ts
index 14e6ace3b34..848627b703f 100644
--- a/apps/cli/src/oss-serve-configurator.ts
+++ b/apps/cli/src/oss-serve-configurator.ts
@@ -79,6 +79,7 @@ export class OssServeConfigurator {
       this.serviceContainer.apiService,
       this.serviceContainer.eventCollectionService,
       this.serviceContainer.accountService,
+      this.serviceContainer.keyService,
       this.serviceContainer.cliRestrictedItemTypesService,
     );
     this.createCommand = new CreateCommand(
diff --git a/apps/cli/src/service-container/service-container.ts b/apps/cli/src/service-container/service-container.ts
index 78f961973d9..ddab6fb7cf1 100644
--- a/apps/cli/src/service-container/service-container.ts
+++ b/apps/cli/src/service-container/service-container.ts
@@ -901,7 +901,6 @@ export class ServiceContainer {
       this.keyService.clearKeys(userId),
       this.cipherService.clear(userId),
       this.folderService.clear(userId),
-      this.collectionService.clear(userId),
     ]);
 
     await this.stateEventRunnerService.handleEvent("logout", userId as UserId);
diff --git a/apps/cli/src/vault.program.ts b/apps/cli/src/vault.program.ts
index d5615d0bb1c..2b08bc67ec1 100644
--- a/apps/cli/src/vault.program.ts
+++ b/apps/cli/src/vault.program.ts
@@ -114,6 +114,7 @@ export class VaultProgram extends BaseProgram {
           this.serviceContainer.apiService,
           this.serviceContainer.eventCollectionService,
           this.serviceContainer.accountService,
+          this.serviceContainer.keyService,
           this.serviceContainer.cliRestrictedItemTypesService,
         );
         const response = await command.run(object, cmd);
diff --git a/apps/desktop/src/app/app.component.ts b/apps/desktop/src/app/app.component.ts
index 10aa7ff9eeb..72bad5befe9 100644
--- a/apps/desktop/src/app/app.component.ts
+++ b/apps/desktop/src/app/app.component.ts
@@ -677,7 +677,6 @@ export class AppComponent implements OnInit, OnDestroy {
       await this.keyService.clearKeys(userBeingLoggedOut);
       await this.cipherService.clear(userBeingLoggedOut);
       await this.folderService.clear(userBeingLoggedOut);
-      await this.collectionService.clear(userBeingLoggedOut);
       await this.vaultTimeoutSettingsService.clear(userBeingLoggedOut);
       await this.biometricStateService.logout(userBeingLoggedOut);
 
diff --git a/apps/desktop/src/vault/app/vault/vault-v2.component.ts b/apps/desktop/src/vault/app/vault/vault-v2.component.ts
index 62ca41a3379..3c4a85f96b7 100644
--- a/apps/desktop/src/vault/app/vault/vault-v2.component.ts
+++ b/apps/desktop/src/vault/app/vault/vault-v2.component.ts
@@ -30,8 +30,9 @@ import { ConfigService } from "@bitwarden/common/platform/abstractions/config/co
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
+import { getByIds } from "@bitwarden/common/platform/misc";
 import { SyncService } from "@bitwarden/common/platform/sync";
-import { CipherId, CollectionId, OrganizationId, UserId } from "@bitwarden/common/types/guid";
+import { CipherId, OrganizationId, UserId } from "@bitwarden/common/types/guid";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
 import { FolderService } from "@bitwarden/common/vault/abstractions/folder/folder.service.abstraction";
 import { PremiumUpgradePromptService } from "@bitwarden/common/vault/abstractions/premium-upgrade-prompt.service";
@@ -360,7 +361,12 @@ export class VaultV2Component<C extends CipherViewLike>
       this.allOrganizations = orgs;
     });
 
-    this.collectionService.decryptedCollections$
+    if (!this.activeUserId) {
+      throw new Error("No user found.");
+    }
+
+    this.collectionService
+      .decryptedCollections$(this.activeUserId)
       .pipe(takeUntil(this.componentIsDestroyed$))
       .subscribe((collections) => {
         this.allCollections = collections;
@@ -701,9 +707,17 @@ export class VaultV2Component<C extends CipherViewLike>
     this.cipherId = null;
     this.action = "view";
     await this.vaultItemsComponent?.refresh().catch(() => {});
+
+    if (!this.activeUserId) {
+      throw new Error("No userId provided.");
+    }
+
     this.collections = await firstValueFrom(
-      this.collectionService.decryptedCollectionViews$(cipher.collectionIds as CollectionId[]),
+      this.collectionService
+        .decryptedCollections$(this.activeUserId)
+        .pipe(getByIds(cipher.collectionIds)),
     );
+
     this.cipherId = cipher.id;
     this.cipher = cipher;
     if (this.activeUserId) {
diff --git a/apps/web/src/app/admin-console/organizations/collections/vault.component.ts b/apps/web/src/app/admin-console/organizations/collections/vault.component.ts
index 47ad93d81e2..5dc217b7a50 100644
--- a/apps/web/src/app/admin-console/organizations/collections/vault.component.ts
+++ b/apps/web/src/app/admin-console/organizations/collections/vault.component.ts
@@ -29,6 +29,7 @@ import {
 import {
   CollectionAdminService,
   CollectionAdminView,
+  CollectionService,
   CollectionView,
   Unassigned,
 } from "@bitwarden/admin-console/common";
@@ -264,6 +265,7 @@ export class VaultComponent implements OnInit, OnDestroy {
     private accountService: AccountService,
     private billingNotificationService: BillingNotificationService,
     private organizationWarningsService: OrganizationWarningsService,
+    private collectionService: CollectionService,
   ) {}
 
   async ngOnInit() {
@@ -1133,6 +1135,7 @@ export class VaultComponent implements OnInit, OnDestroy {
     }
     try {
       await this.apiService.deleteCollection(this.organization?.id, collection.id);
+      await this.collectionService.delete([collection.id as CollectionId], this.userId);
       this.toastService.showToast({
         variant: "success",
         title: null,
diff --git a/apps/web/src/app/admin-console/organizations/manage/groups.component.ts b/apps/web/src/app/admin-console/organizations/manage/groups.component.ts
index 6459cd1f857..1c40ec462d3 100644
--- a/apps/web/src/app/admin-console/organizations/manage/groups.component.ts
+++ b/apps/web/src/app/admin-console/organizations/manage/groups.component.ts
@@ -11,6 +11,7 @@ import {
   from,
   lastValueFrom,
   map,
+  Observable,
   switchMap,
   tap,
 } from "rxjs";
@@ -25,10 +26,13 @@ import {
   CollectionView,
 } from "@bitwarden/admin-console/common";
 import { ApiService } from "@bitwarden/common/abstractions/api.service";
+import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
+import { getUserId } from "@bitwarden/common/auth/services/account.service";
 import { ListResponse } from "@bitwarden/common/models/response/list.response";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { DialogService, TableDataSource, ToastService } from "@bitwarden/components";
+import { KeyService } from "@bitwarden/key-management";
 
 import { GroupDetailsView, InternalGroupApiService as GroupService } from "../core";
 
@@ -100,6 +104,8 @@ export class GroupsComponent {
     private logService: LogService,
     private collectionService: CollectionService,
     private toastService: ToastService,
+    private keyService: KeyService,
+    private accountService: AccountService,
   ) {
     this.route.params
       .pipe(
@@ -244,16 +250,22 @@ export class GroupsComponent {
     this.dataSource.data = this.dataSource.data.filter((g) => g !== groupRow);
   }
 
-  private async toCollectionMap(response: ListResponse<CollectionResponse>) {
+  private toCollectionMap(
+    response: ListResponse<CollectionResponse>,
+  ): Observable<Record<string, CollectionView>> {
     const collections = response.data.map(
       (r) => new Collection(new CollectionData(r as CollectionDetailsResponse)),
     );
-    const decryptedCollections = await this.collectionService.decryptMany(collections);
 
-    // Convert to an object using collection Ids as keys for faster name lookups
-    const collectionMap: Record<string, CollectionView> = {};
-    decryptedCollections.forEach((c) => (collectionMap[c.id] = c));
-
-    return collectionMap;
+    return this.accountService.activeAccount$.pipe(
+      getUserId,
+      switchMap((userId) => this.keyService.orgKeys$(userId)),
+      switchMap((orgKeys) => this.collectionService.decryptMany$(collections, orgKeys)),
+      map((collections) => {
+        const collectionMap: Record<string, CollectionView> = {};
+        collections.forEach((c) => (collectionMap[c.id] = c));
+        return collectionMap;
+      }),
+    );
   }
 }
diff --git a/apps/web/src/app/admin-console/organizations/members/members.component.ts b/apps/web/src/app/admin-console/organizations/members/members.component.ts
index 0eec835e15f..77a0cecce8e 100644
--- a/apps/web/src/app/admin-console/organizations/members/members.component.ts
+++ b/apps/web/src/app/admin-console/organizations/members/members.component.ts
@@ -13,6 +13,7 @@ import {
   Observable,
   shareReplay,
   switchMap,
+  withLatestFrom,
   tap,
 } from "rxjs";
 
@@ -307,17 +308,27 @@ export class MembersComponent extends BaseMembersComponent<OrganizationUserView>
    * Retrieve a map of all collection IDs <-> names for the organization.
    */
   async getCollectionNameMap() {
-    const collectionMap = new Map<string, string>();
-    const response = await this.apiService.getCollections(this.organization.id);
-
-    const collections = response.data.map(
-      (r) => new Collection(new CollectionData(r as CollectionDetailsResponse)),
+    const response = from(this.apiService.getCollections(this.organization.id)).pipe(
+      map((res) =>
+        res.data.map((r) => new Collection(new CollectionData(r as CollectionDetailsResponse))),
+      ),
     );
-    const decryptedCollections = await this.collectionService.decryptMany(collections);
 
-    decryptedCollections.forEach((c) => collectionMap.set(c.id, c.name));
+    const decryptedCollections$ = this.accountService.activeAccount$.pipe(
+      getUserId,
+      switchMap((userId) => this.keyService.orgKeys$(userId)),
+      withLatestFrom(response),
+      switchMap(([orgKeys, collections]) =>
+        this.collectionService.decryptMany$(collections, orgKeys),
+      ),
+      map((collections) => {
+        const collectionMap = new Map<string, string>();
+        collections.forEach((c) => collectionMap.set(c.id, c.name));
+        return collectionMap;
+      }),
+    );
 
-    return collectionMap;
+    return await firstValueFrom(decryptedCollections$);
   }
 
   removeUser(id: string): Promise<void> {
diff --git a/apps/web/src/app/admin-console/organizations/shared/components/collection-dialog/collection-dialog.component.ts b/apps/web/src/app/admin-console/organizations/shared/components/collection-dialog/collection-dialog.component.ts
index 8763b75ffca..fabfb65fc6b 100644
--- a/apps/web/src/app/admin-console/organizations/shared/components/collection-dialog/collection-dialog.component.ts
+++ b/apps/web/src/app/admin-console/organizations/shared/components/collection-dialog/collection-dialog.component.ts
@@ -26,7 +26,6 @@ import {
   CollectionResponse,
   CollectionView,
   CollectionService,
-  Collection,
 } from "@bitwarden/admin-console/common";
 import {
   getOrganizationById,
@@ -38,6 +37,7 @@ import { getUserId } from "@bitwarden/common/auth/services/account.service";
 import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
 import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+import { getById } from "@bitwarden/common/platform/misc";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
 import {
   DIALOG_DATA,
@@ -141,7 +141,6 @@ export class CollectionDialogComponent implements OnInit, OnDestroy {
   protected PermissionMode = PermissionMode;
   protected showDeleteButton = false;
   protected showAddAccessWarning = false;
-  protected collections: Collection[];
   protected buttonDisplayName: ButtonType = ButtonType.Save;
   private orgExceedingCollectionLimit!: Organization;
 
@@ -166,14 +165,12 @@ export class CollectionDialogComponent implements OnInit, OnDestroy {
 
   async ngOnInit() {
     // Opened from the individual vault
+    const userId = await firstValueFrom(this.accountService.activeAccount$.pipe(map((a) => a?.id)));
     if (this.params.showOrgSelector) {
       this.showOrgSelector = true;
       this.formGroup.controls.selectedOrg.valueChanges
         .pipe(takeUntil(this.destroy$))
         .subscribe((id) => this.loadOrg(id));
-      const userId = await firstValueFrom(
-        this.accountService.activeAccount$.pipe(map((a) => a?.id)),
-      );
       this.organizations$ = this.organizationService.organizations$(userId).pipe(
         first(),
         map((orgs) =>
@@ -195,9 +192,14 @@ export class CollectionDialogComponent implements OnInit, OnDestroy {
     );
 
     if (isBreadcrumbEventLogsEnabled) {
-      this.collections = await this.collectionService.getAll();
       this.organizationSelected.setAsyncValidators(
-        freeOrgCollectionLimitValidator(this.organizations$, this.collections, this.i18nService),
+        freeOrgCollectionLimitValidator(
+          this.organizations$,
+          this.collectionService
+            .encryptedCollections$(userId)
+            .pipe(map((collections) => collections ?? [])),
+          this.i18nService,
+        ),
       );
       this.formGroup.updateValueAndValidity();
     }
@@ -212,7 +214,7 @@ export class CollectionDialogComponent implements OnInit, OnDestroy {
           }
         }),
         filter(() => this.organizationSelected.errors?.cannotCreateCollections),
-        switchMap((value) => this.findOrganizationById(value)),
+        switchMap((organizationId) => this.organizations$.pipe(getById(organizationId))),
         takeUntil(this.destroy$),
       )
       .subscribe((org) => {
@@ -222,11 +224,6 @@ export class CollectionDialogComponent implements OnInit, OnDestroy {
       });
   }
 
-  async findOrganizationById(orgId: string): Promise<Organization | undefined> {
-    const organizations = await firstValueFrom(this.organizations$);
-    return organizations.find((org) => org.id === orgId);
-  }
-
   async loadOrg(orgId: string) {
     const userId = await firstValueFrom(getUserId(this.accountService.activeAccount$));
     const organization$ = this.organizationService
@@ -413,7 +410,8 @@ export class CollectionDialogComponent implements OnInit, OnDestroy {
       collectionView.name = this.formGroup.controls.name.value;
     }
 
-    const savedCollection = await this.collectionAdminService.save(collectionView);
+    const userId = await firstValueFrom(this.accountService.activeAccount$.pipe(getUserId));
+    const savedCollection = await this.collectionAdminService.save(collectionView, userId);
 
     this.toastService.showToast({
       variant: "success",
diff --git a/apps/web/src/app/admin-console/organizations/shared/validators/free-org-collection-limit.validator.spec.ts b/apps/web/src/app/admin-console/organizations/shared/validators/free-org-collection-limit.validator.spec.ts
index 120a58d6b1a..f9d389c979f 100644
--- a/apps/web/src/app/admin-console/organizations/shared/validators/free-org-collection-limit.validator.spec.ts
+++ b/apps/web/src/app/admin-console/organizations/shared/validators/free-org-collection-limit.validator.spec.ts
@@ -18,7 +18,7 @@ describe("freeOrgCollectionLimitValidator", () => {
 
   it("returns null if organization is not found", async () => {
     const orgs: Organization[] = [];
-    const validator = freeOrgCollectionLimitValidator(of(orgs), [], i18nService);
+    const validator = freeOrgCollectionLimitValidator(of(orgs), of([]), i18nService);
     const control = new FormControl("org-id");
 
     const result: Observable<ValidationErrors> = validator(control) as Observable<ValidationErrors>;
@@ -28,7 +28,7 @@ describe("freeOrgCollectionLimitValidator", () => {
   });
 
   it("returns null if control is not an instance of FormControl", async () => {
-    const validator = freeOrgCollectionLimitValidator(of([]), [], i18nService);
+    const validator = freeOrgCollectionLimitValidator(of([]), of([]), i18nService);
     const control = {} as AbstractControl;
 
     const result: Observable<ValidationErrors | null> = validator(
@@ -40,7 +40,7 @@ describe("freeOrgCollectionLimitValidator", () => {
   });
 
   it("returns null if control is not provided", async () => {
-    const validator = freeOrgCollectionLimitValidator(of([]), [], i18nService);
+    const validator = freeOrgCollectionLimitValidator(of([]), of([]), i18nService);
 
     const result: Observable<ValidationErrors | null> = validator(
       undefined as any,
@@ -53,7 +53,7 @@ describe("freeOrgCollectionLimitValidator", () => {
   it("returns null if organization has not reached collection limit (Observable)", async () => {
     const org = { id: "org-id", maxCollections: 2 } as Organization;
     const collections = [{ organizationId: "org-id" } as Collection];
-    const validator = freeOrgCollectionLimitValidator(of([org]), collections, i18nService);
+    const validator = freeOrgCollectionLimitValidator(of([org]), of(collections), i18nService);
     const control = new FormControl("org-id");
 
     const result$ = validator(control) as Observable<ValidationErrors | null>;
@@ -65,7 +65,7 @@ describe("freeOrgCollectionLimitValidator", () => {
   it("returns error if organization has reached collection limit (Observable)", async () => {
     const org = { id: "org-id", maxCollections: 1 } as Organization;
     const collections = [{ organizationId: "org-id" } as Collection];
-    const validator = freeOrgCollectionLimitValidator(of([org]), collections, i18nService);
+    const validator = freeOrgCollectionLimitValidator(of([org]), of(collections), i18nService);
     const control = new FormControl("org-id");
 
     const result$ = validator(control) as Observable<ValidationErrors | null>;
diff --git a/apps/web/src/app/admin-console/organizations/shared/validators/free-org-collection-limit.validator.ts b/apps/web/src/app/admin-console/organizations/shared/validators/free-org-collection-limit.validator.ts
index 75919d31c1a..7132428c375 100644
--- a/apps/web/src/app/admin-console/organizations/shared/validators/free-org-collection-limit.validator.ts
+++ b/apps/web/src/app/admin-console/organizations/shared/validators/free-org-collection-limit.validator.ts
@@ -1,13 +1,14 @@
 import { AbstractControl, AsyncValidatorFn, FormControl, ValidationErrors } from "@angular/forms";
-import { map, Observable, of } from "rxjs";
+import { combineLatest, map, Observable, of } from "rxjs";
 
 import { Collection } from "@bitwarden/admin-console/common";
 import { Organization } from "@bitwarden/common/admin-console/models/domain/organization";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+import { getById } from "@bitwarden/common/platform/misc";
 
 export function freeOrgCollectionLimitValidator(
-  orgs: Observable<Organization[]>,
-  collections: Collection[],
+  organizations$: Observable<Organization[]>,
+  collections$: Observable<Collection[]>,
   i18nService: I18nService,
 ): AsyncValidatorFn {
   return (control: AbstractControl): Observable<ValidationErrors | null> => {
@@ -21,15 +22,16 @@ export function freeOrgCollectionLimitValidator(
       return of(null);
     }
 
-    return orgs.pipe(
-      map((organizations) => organizations.find((org) => org.id === orgId)),
-      map((org) => {
-        if (!org) {
+    return combineLatest([organizations$.pipe(getById(orgId)), collections$]).pipe(
+      map(([organization, collections]) => {
+        if (!organization) {
           return null;
         }
 
-        const orgCollections = collections.filter((c) => c.organizationId === org.id);
-        const hasReachedLimit = org.maxCollections === orgCollections.length;
+        const orgCollections = collections.filter(
+          (collection: Collection) => collection.organizationId === organization.id,
+        );
+        const hasReachedLimit = organization.maxCollections === orgCollections.length;
 
         if (hasReachedLimit) {
           return {
diff --git a/apps/web/src/app/app.component.ts b/apps/web/src/app/app.component.ts
index ada73dd0059..ceb2c788e75 100644
--- a/apps/web/src/app/app.component.ts
+++ b/apps/web/src/app/app.component.ts
@@ -285,7 +285,6 @@ export class AppComponent implements OnDestroy, OnInit {
       this.keyService.clearKeys(userId),
       this.cipherService.clear(userId),
       this.folderService.clear(userId),
-      this.collectionService.clear(userId),
       this.biometricStateService.logout(userId),
     ]);
 
diff --git a/apps/web/src/app/vault/individual-vault/bulk-action-dialogs/bulk-delete-dialog/bulk-delete-dialog.component.ts b/apps/web/src/app/vault/individual-vault/bulk-action-dialogs/bulk-delete-dialog/bulk-delete-dialog.component.ts
index 128afdcccfc..78abad1ebf8 100644
--- a/apps/web/src/app/vault/individual-vault/bulk-action-dialogs/bulk-delete-dialog/bulk-delete-dialog.component.ts
+++ b/apps/web/src/app/vault/individual-vault/bulk-action-dialogs/bulk-delete-dialog/bulk-delete-dialog.component.ts
@@ -9,7 +9,7 @@ import { Organization } from "@bitwarden/common/admin-console/models/domain/orga
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { getUserId } from "@bitwarden/common/auth/services/account.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
+import { CollectionId } from "@bitwarden/common/types/guid";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
 import { CipherBulkDeleteRequest } from "@bitwarden/common/vault/models/request/cipher-bulk-delete.request";
 import { UnionOfValues } from "@bitwarden/common/vault/types/union-of-values";
@@ -68,7 +68,6 @@ export class BulkDeleteDialogComponent {
     @Inject(DIALOG_DATA) params: BulkDeleteDialogParams,
     private dialogRef: DialogRef<BulkDeleteDialogResult>,
     private cipherService: CipherService,
-    private platformUtilsService: PlatformUtilsService,
     private i18nService: I18nService,
     private apiService: ApiService,
     private collectionService: CollectionService,
@@ -116,7 +115,11 @@ export class BulkDeleteDialogComponent {
       });
     }
     if (this.collections.length) {
-      await this.collectionService.delete(this.collections.map((c) => c.id));
+      const userId = await firstValueFrom(this.accountService.activeAccount$.pipe(getUserId));
+      await this.collectionService.delete(
+        this.collections.map((c) => c.id as CollectionId),
+        userId,
+      );
       this.toastService.showToast({
         variant: "success",
         title: null,
diff --git a/apps/web/src/app/vault/individual-vault/vault-filter/services/vault-filter.service.spec.ts b/apps/web/src/app/vault/individual-vault/vault-filter/services/vault-filter.service.spec.ts
index 93189f2bf1c..b7a19bf2e76 100644
--- a/apps/web/src/app/vault/individual-vault/vault-filter/services/vault-filter.service.spec.ts
+++ b/apps/web/src/app/vault/individual-vault/vault-filter/services/vault-filter.service.spec.ts
@@ -78,7 +78,7 @@ describe("vault filter service", () => {
     configService.getFeatureFlag$.mockReturnValue(of(true));
     organizationService.memberOrganizations$.mockReturnValue(organizations);
     folderService.folderViews$.mockReturnValue(folderViews);
-    collectionService.decryptedCollections$ = collectionViews;
+    collectionService.decryptedCollections$.mockReturnValue(collectionViews);
     policyService.policyAppliesToUser$
       .calledWith(PolicyType.OrganizationDataOwnership, mockUserId)
       .mockReturnValue(organizationDataOwnershipPolicy);
diff --git a/apps/web/src/app/vault/individual-vault/vault-filter/services/vault-filter.service.ts b/apps/web/src/app/vault/individual-vault/vault-filter/services/vault-filter.service.ts
index 1fe618c6c4e..266676e418b 100644
--- a/apps/web/src/app/vault/individual-vault/vault-filter/services/vault-filter.service.ts
+++ b/apps/web/src/app/vault/individual-vault/vault-filter/services/vault-filter.service.ts
@@ -4,7 +4,6 @@ import { Injectable } from "@angular/core";
 import {
   BehaviorSubject,
   combineLatest,
-  combineLatestWith,
   filter,
   firstValueFrom,
   map,
@@ -100,13 +99,13 @@ export class VaultFilterService implements VaultFilterServiceAbstraction {
     map((folders) => this.buildFolderTree(folders)),
   );
 
-  filteredCollections$: Observable<CollectionView[]> =
-    this.collectionService.decryptedCollections$.pipe(
-      combineLatestWith(this._organizationFilter),
-      switchMap(([collections, org]) => {
-        return this.filterCollections(collections, org);
-      }),
-    );
+  filteredCollections$: Observable<CollectionView[]> = combineLatest([
+    this.accountService.activeAccount$.pipe(
+      getUserId,
+      switchMap((userId) => this.collectionService.decryptedCollections$(userId)),
+    ),
+    this._organizationFilter,
+  ]).pipe(switchMap(([collections, org]) => this.filterCollections(collections, org)));
 
   collectionTree$: Observable<TreeNode<CollectionFilter>> = combineLatest([
     this.filteredCollections$,
diff --git a/apps/web/src/app/vault/individual-vault/vault.component.ts b/apps/web/src/app/vault/individual-vault/vault.component.ts
index c8c2f681bb4..09284cec9c9 100644
--- a/apps/web/src/app/vault/individual-vault/vault.component.ts
+++ b/apps/web/src/app/vault/individual-vault/vault.component.ts
@@ -334,7 +334,8 @@ export class VaultComponent<C extends CipherViewLike> implements OnInit, OnDestr
       });
 
     const filter$ = this.routedVaultFilterService.filter$;
-    const allCollections$ = this.collectionService.decryptedCollections$;
+
+    const allCollections$ = this.collectionService.decryptedCollections$(activeUserId);
     const nestedCollections$ = allCollections$.pipe(
       map((collections) => getNestedCollectionTree(collections)),
     );
@@ -861,7 +862,10 @@ export class VaultComponent<C extends CipherViewLike> implements OnInit, OnDestr
       if (result.collection) {
         // Update CollectionService with the new collection
         const c = new CollectionData(result.collection as CollectionDetailsResponse);
-        await this.collectionService.upsert(c);
+        const activeUserId = await firstValueFrom(
+          this.accountService.activeAccount$.pipe(getUserId),
+        );
+        await this.collectionService.upsert(c, activeUserId);
       }
       this.refresh();
     }
@@ -878,20 +882,23 @@ export class VaultComponent<C extends CipherViewLike> implements OnInit, OnDestr
     });
 
     const result = await lastValueFrom(dialog.closed);
+    const activeUserId = await firstValueFrom(this.accountService.activeAccount$.pipe(getUserId));
     if (result.action === CollectionDialogAction.Saved) {
       if (result.collection) {
         // Update CollectionService with the new collection
         const c = new CollectionData(result.collection as CollectionDetailsResponse);
-        await this.collectionService.upsert(c);
+        await this.collectionService.upsert(c, activeUserId);
       }
       this.refresh();
     } else if (result.action === CollectionDialogAction.Deleted) {
-      await this.collectionService.delete(result.collection?.id);
-      this.refresh();
+      const parent = this.selectedCollection?.parent;
       // Navigate away if we deleted the collection we were viewing
-      if (this.selectedCollection?.node.id === c?.id) {
+      const navigateAway = this.selectedCollection && this.selectedCollection.node.id === c.id;
+      await this.collectionService.delete([result.collection?.id as CollectionId], activeUserId);
+      this.refresh();
+      if (navigateAway) {
         await this.router.navigate([], {
-          queryParams: { collectionId: this.selectedCollection.parent?.node.id ?? null },
+          queryParams: { collectionId: parent?.node.id ?? null },
           queryParamsHandling: "merge",
           replaceUrl: true,
         });
@@ -916,18 +923,22 @@ export class VaultComponent<C extends CipherViewLike> implements OnInit, OnDestr
       return;
     }
     try {
+      const parent = this.selectedCollection?.parent;
+      // Navigate away if we deleted the collection we were viewing
+      const navigateAway =
+        this.selectedCollection && this.selectedCollection.node.id === collection.id;
       await this.apiService.deleteCollection(collection.organizationId, collection.id);
-      await this.collectionService.delete(collection.id);
+      const activeUserId = await firstValueFrom(this.accountService.activeAccount$.pipe(getUserId));
+      await this.collectionService.delete([collection.id as CollectionId], activeUserId);
 
       this.toastService.showToast({
         variant: "success",
         title: null,
         message: this.i18nService.t("deletedCollectionId", collection.name),
       });
-      // Navigate away if we deleted the collection we were viewing
-      if (this.selectedCollection?.node.id === collection.id) {
+      if (navigateAway) {
         await this.router.navigate([], {
-          queryParams: { collectionId: this.selectedCollection.parent?.node.id ?? null },
+          queryParams: { collectionId: parent?.node.id ?? null },
           queryParamsHandling: "merge",
           replaceUrl: true,
         });
diff --git a/libs/admin-console/src/common/collections/abstractions/collection-admin.service.ts b/libs/admin-console/src/common/collections/abstractions/collection-admin.service.ts
index 36222b16794..083539e9f6e 100644
--- a/libs/admin-console/src/common/collections/abstractions/collection-admin.service.ts
+++ b/libs/admin-console/src/common/collections/abstractions/collection-admin.service.ts
@@ -1,15 +1,20 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import { CollectionDetailsResponse } from "@bitwarden/admin-console/common";
+import { UserId } from "@bitwarden/common/types/guid";
 
 import { CollectionAccessSelectionView, CollectionAdminView } from "../models";
 
 export abstract class CollectionAdminService {
-  getAll: (organizationId: string) => Promise<CollectionAdminView[]>;
-  get: (organizationId: string, collectionId: string) => Promise<CollectionAdminView | undefined>;
-  save: (collection: CollectionAdminView) => Promise<CollectionDetailsResponse>;
-  delete: (organizationId: string, collectionId: string) => Promise<void>;
-  bulkAssignAccess: (
+  abstract getAll: (organizationId: string) => Promise<CollectionAdminView[]>;
+  abstract get: (
+    organizationId: string,
+    collectionId: string,
+  ) => Promise<CollectionAdminView | undefined>;
+  abstract save: (
+    collection: CollectionAdminView,
+    userId: UserId,
+  ) => Promise<CollectionDetailsResponse>;
+  abstract delete: (organizationId: string, collectionId: string) => Promise<void>;
+  abstract bulkAssignAccess: (
     organizationId: string,
     collectionIds: string[],
     users: CollectionAccessSelectionView[],
diff --git a/libs/admin-console/src/common/collections/abstractions/collection.service.ts b/libs/admin-console/src/common/collections/abstractions/collection.service.ts
index 61fc94b271c..e69f96232da 100644
--- a/libs/admin-console/src/common/collections/abstractions/collection.service.ts
+++ b/libs/admin-console/src/common/collections/abstractions/collection.service.ts
@@ -1,5 +1,3 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import { Observable } from "rxjs";
 
 import { CollectionId, OrganizationId, UserId } from "@bitwarden/common/types/guid";
@@ -9,27 +7,25 @@ import { TreeNode } from "@bitwarden/common/vault/models/domain/tree-node";
 import { CollectionData, Collection, CollectionView } from "../models";
 
 export abstract class CollectionService {
-  encryptedCollections$: Observable<Collection[]>;
-  decryptedCollections$: Observable<CollectionView[]>;
-
-  clearActiveUserCache: () => Promise<void>;
-  encrypt: (model: CollectionView) => Promise<Collection>;
-  decryptedCollectionViews$: (ids: CollectionId[]) => Observable<CollectionView[]>;
+  abstract encryptedCollections$: (userId: UserId) => Observable<Collection[] | null>;
+  abstract decryptedCollections$: (userId: UserId) => Observable<CollectionView[]>;
+  abstract upsert: (collection: CollectionData, userId: UserId) => Promise<any>;
+  abstract replace: (collections: { [id: string]: CollectionData }, userId: UserId) => Promise<any>;
   /**
-   * @deprecated This method will soon be made private
-   * See PM-12375
+   * @deprecated This method will soon be made private, use `decryptedCollections$` instead.
    */
-  decryptMany: (
+  abstract decryptMany$: (
     collections: Collection[],
-    orgKeys?: Record<OrganizationId, OrgKey>,
-  ) => Promise<CollectionView[]>;
-  get: (id: string) => Promise<Collection>;
-  getAll: () => Promise<Collection[]>;
-  getAllDecrypted: () => Promise<CollectionView[]>;
-  getAllNested: (collections?: CollectionView[]) => Promise<TreeNode<CollectionView>[]>;
-  getNested: (id: string) => Promise<TreeNode<CollectionView>>;
-  upsert: (collection: CollectionData | CollectionData[]) => Promise<any>;
-  replace: (collections: { [id: string]: CollectionData }, userId: UserId) => Promise<any>;
-  clear: (userId?: string) => Promise<void>;
-  delete: (id: string | string[]) => Promise<any>;
+    orgKeys: Record<OrganizationId, OrgKey>,
+  ) => Observable<CollectionView[]>;
+  abstract delete: (ids: CollectionId[], userId: UserId) => Promise<any>;
+  abstract encrypt: (model: CollectionView, userId: UserId) => Promise<Collection>;
+  /**
+   * Transforms the input CollectionViews into TreeNodes
+   */
+  abstract getAllNested: (collections: CollectionView[]) => TreeNode<CollectionView>[];
+  /*
+   * Transforms the input CollectionViews into TreeNodes and then returns the Treenode with the specified id
+   */
+  abstract getNested: (collections: CollectionView[], id: string) => TreeNode<CollectionView>;
 }
diff --git a/libs/admin-console/src/common/collections/abstractions/vnext-collection.service.ts b/libs/admin-console/src/common/collections/abstractions/vnext-collection.service.ts
deleted file mode 100644
index e1b2a5759a1..00000000000
--- a/libs/admin-console/src/common/collections/abstractions/vnext-collection.service.ts
+++ /dev/null
@@ -1,43 +0,0 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
-import { Observable } from "rxjs";
-
-import { OrganizationId, UserId } from "@bitwarden/common/types/guid";
-import { OrgKey } from "@bitwarden/common/types/key";
-import { TreeNode } from "@bitwarden/common/vault/models/domain/tree-node";
-
-import { CollectionData, Collection, CollectionView } from "../models";
-
-export abstract class vNextCollectionService {
-  encryptedCollections$: (userId: UserId) => Observable<Collection[]>;
-  decryptedCollections$: (userId: UserId) => Observable<CollectionView[]>;
-  upsert: (collection: CollectionData | CollectionData[], userId: UserId) => Promise<any>;
-  replace: (collections: { [id: string]: CollectionData }, userId: UserId) => Promise<any>;
-  /**
-   * Clear decrypted state without affecting encrypted state.
-   * Used for locking the vault.
-   */
-  clearDecryptedState: (userId: UserId) => Promise<void>;
-  /**
-   * Clear decrypted and encrypted state.
-   * Used for logging out.
-   */
-  clear: (userId: UserId) => Promise<void>;
-  delete: (id: string | string[], userId: UserId) => Promise<any>;
-  encrypt: (model: CollectionView) => Promise<Collection>;
-  /**
-   * @deprecated This method will soon be made private, use `decryptedCollections$` instead.
-   */
-  decryptMany: (
-    collections: Collection[],
-    orgKeys?: Record<OrganizationId, OrgKey> | null,
-  ) => Promise<CollectionView[]>;
-  /**
-   * Transforms the input CollectionViews into TreeNodes
-   */
-  getAllNested: (collections: CollectionView[]) => TreeNode<CollectionView>[];
-  /**
-   * Transforms the input CollectionViews into TreeNodes and then returns the Treenode with the specified id
-   */
-  getNested: (collections: CollectionView[], id: string) => TreeNode<CollectionView>;
-}
diff --git a/libs/admin-console/src/common/collections/models/collection.data.ts b/libs/admin-console/src/common/collections/models/collection.data.ts
index b28a066509c..27c5c0c0efa 100644
--- a/libs/admin-console/src/common/collections/models/collection.data.ts
+++ b/libs/admin-console/src/common/collections/models/collection.data.ts
@@ -26,7 +26,10 @@ export class CollectionData {
     this.type = response.type;
   }
 
-  static fromJSON(obj: Jsonify<CollectionData>) {
+  static fromJSON(obj: Jsonify<CollectionData | null>): CollectionData | null {
+    if (obj == null) {
+      return null;
+    }
     return Object.assign(new CollectionData(new CollectionDetailsResponse({})), obj);
   }
 }
diff --git a/libs/admin-console/src/common/collections/models/collection.ts b/libs/admin-console/src/common/collections/models/collection.ts
index 75d68222b38..7bbd018fa96 100644
--- a/libs/admin-console/src/common/collections/models/collection.ts
+++ b/libs/admin-console/src/common/collections/models/collection.ts
@@ -1,7 +1,5 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
-import Domain from "@bitwarden/common/platform/models/domain/domain-base";
+import Domain, { EncryptableKeys } from "@bitwarden/common/platform/models/domain/domain-base";
 import { OrgKey } from "@bitwarden/common/types/key";
 
 import { CollectionData } from "./collection.data";
@@ -15,16 +13,16 @@ export const CollectionTypes = {
 export type CollectionType = (typeof CollectionTypes)[keyof typeof CollectionTypes];
 
 export class Collection extends Domain {
-  id: string;
-  organizationId: string;
-  name: EncString;
-  externalId: string;
-  readOnly: boolean;
-  hidePasswords: boolean;
-  manage: boolean;
-  type: CollectionType;
+  id: string | undefined;
+  organizationId: string | undefined;
+  name: EncString | undefined;
+  externalId: string | undefined;
+  readOnly: boolean = false;
+  hidePasswords: boolean = false;
+  manage: boolean = false;
+  type: CollectionType = CollectionTypes.SharedCollection;
 
-  constructor(obj?: CollectionData) {
+  constructor(obj?: CollectionData | null) {
     super();
     if (obj == null) {
       return;
@@ -51,8 +49,8 @@ export class Collection extends Domain {
     return this.decryptObj<Collection, CollectionView>(
       this,
       new CollectionView(this),
-      ["name"],
-      this.organizationId,
+      ["name"] as EncryptableKeys<Collection, CollectionView>[],
+      this.organizationId ?? null,
       orgKey,
     );
   }
diff --git a/libs/admin-console/src/common/collections/models/collection.view.ts b/libs/admin-console/src/common/collections/models/collection.view.ts
index bce1d558f96..f75ff565100 100644
--- a/libs/admin-console/src/common/collections/models/collection.view.ts
+++ b/libs/admin-console/src/common/collections/models/collection.view.ts
@@ -12,7 +12,7 @@ export const NestingDelimiter = "/";
 export class CollectionView implements View, ITreeNodeObject {
   id: string | undefined;
   organizationId: string | undefined;
-  name: string | undefined;
+  name: string = "";
   externalId: string | undefined;
   // readOnly applies to the items within a collection
   readOnly: boolean = false;
diff --git a/libs/admin-console/src/common/collections/services/collection.state.ts b/libs/admin-console/src/common/collections/services/collection.state.ts
new file mode 100644
index 00000000000..ebb620c2354
--- /dev/null
+++ b/libs/admin-console/src/common/collections/services/collection.state.ts
@@ -0,0 +1,28 @@
+import { Jsonify } from "type-fest";
+
+import {
+  COLLECTION_DISK,
+  COLLECTION_MEMORY,
+  UserKeyDefinition,
+} from "@bitwarden/common/platform/state";
+import { CollectionId } from "@bitwarden/common/types/guid";
+
+import { CollectionData, CollectionView } from "../models";
+
+export const ENCRYPTED_COLLECTION_DATA_KEY = UserKeyDefinition.record<
+  CollectionData | null,
+  CollectionId
+>(COLLECTION_DISK, "collections", {
+  deserializer: (jsonData: Jsonify<CollectionData | null>) => CollectionData.fromJSON(jsonData),
+  clearOn: ["logout"],
+});
+
+export const DECRYPTED_COLLECTION_DATA_KEY = new UserKeyDefinition<CollectionView[] | null>(
+  COLLECTION_MEMORY,
+  "decryptedCollections",
+  {
+    deserializer: (obj: Jsonify<CollectionView[] | null>) =>
+      obj?.map((f) => CollectionView.fromJSON(f)) ?? null,
+    clearOn: ["logout", "lock"],
+  },
+);
diff --git a/libs/admin-console/src/common/collections/services/default-collection-admin.service.ts b/libs/admin-console/src/common/collections/services/default-collection-admin.service.ts
index 325b17cbd56..a00be4e5174 100644
--- a/libs/admin-console/src/common/collections/services/default-collection-admin.service.ts
+++ b/libs/admin-console/src/common/collections/services/default-collection-admin.service.ts
@@ -1,9 +1,11 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
+
 import { ApiService } from "@bitwarden/common/abstractions/api.service";
 import { SelectionReadOnlyRequest } from "@bitwarden/common/admin-console/models/request/selection-read-only.request";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
 import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
+import { CollectionId, UserId } from "@bitwarden/common/types/guid";
 import { KeyService } from "@bitwarden/key-management";
 
 import { CollectionAdminService, CollectionService } from "../abstractions";
@@ -55,7 +57,7 @@ export class DefaultCollectionAdminService implements CollectionAdminService {
     return view;
   }
 
-  async save(collection: CollectionAdminView): Promise<CollectionDetailsResponse> {
+  async save(collection: CollectionAdminView, userId: UserId): Promise<CollectionDetailsResponse> {
     const request = await this.encrypt(collection);
 
     let response: CollectionDetailsResponse;
@@ -71,9 +73,9 @@ export class DefaultCollectionAdminService implements CollectionAdminService {
     }
 
     if (response.assigned) {
-      await this.collectionService.upsert(new CollectionData(response));
+      await this.collectionService.upsert(new CollectionData(response), userId);
     } else {
-      await this.collectionService.delete(collection.id);
+      await this.collectionService.delete([collection.id as CollectionId], userId);
     }
 
     return response;
diff --git a/libs/admin-console/src/common/collections/services/default-collection.service.spec.ts b/libs/admin-console/src/common/collections/services/default-collection.service.spec.ts
index 57bed5e4ca5..c2c0332a486 100644
--- a/libs/admin-console/src/common/collections/services/default-collection.service.spec.ts
+++ b/libs/admin-console/src/common/collections/services/default-collection.service.spec.ts
@@ -1,10 +1,11 @@
-import { mock } from "jest-mock-extended";
-import { firstValueFrom, of } from "rxjs";
+import { mock, MockProxy } from "jest-mock-extended";
+import { combineLatest, first, firstValueFrom, of, ReplaySubject, takeWhile } from "rxjs";
 
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
 import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
+import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import { ContainerService } from "@bitwarden/common/platform/services/container.service";
 import {
   FakeStateProvider,
@@ -16,124 +17,382 @@ import { CollectionId, OrganizationId, UserId } from "@bitwarden/common/types/gu
 import { OrgKey } from "@bitwarden/common/types/key";
 import { KeyService } from "@bitwarden/key-management";
 
-import { CollectionData } from "../models";
+import { CollectionData, CollectionView } from "../models";
 
-import {
-  DefaultCollectionService,
-  ENCRYPTED_COLLECTION_DATA_KEY,
-} from "./default-collection.service";
+import { DECRYPTED_COLLECTION_DATA_KEY, ENCRYPTED_COLLECTION_DATA_KEY } from "./collection.state";
+import { DefaultCollectionService } from "./default-collection.service";
 
 describe("DefaultCollectionService", () => {
+  let keyService: MockProxy<KeyService>;
+  let encryptService: MockProxy<EncryptService>;
+  let i18nService: MockProxy<I18nService>;
+  let stateProvider: FakeStateProvider;
+
+  let userId: UserId;
+
+  let cryptoKeys: ReplaySubject<Record<OrganizationId, OrgKey> | null>;
+
+  let collectionService: DefaultCollectionService;
+
+  beforeEach(() => {
+    userId = Utils.newGuid() as UserId;
+
+    keyService = mock();
+    encryptService = mock();
+    i18nService = mock();
+    stateProvider = new FakeStateProvider(mockAccountServiceWith(userId));
+
+    cryptoKeys = new ReplaySubject(1);
+    keyService.orgKeys$.mockReturnValue(cryptoKeys);
+
+    // Set up mock decryption
+    encryptService.decryptString
+      .calledWith(expect.any(EncString), expect.any(SymmetricCryptoKey))
+      .mockImplementation((encString, key) =>
+        Promise.resolve(encString.data.replace("ENC_", "DEC_")),
+      );
+
+    (window as any).bitwardenContainerService = new ContainerService(keyService, encryptService);
+
+    // Arrange i18nService so that sorting algorithm doesn't throw
+    i18nService.collator = null;
+
+    collectionService = new DefaultCollectionService(
+      keyService,
+      encryptService,
+      i18nService,
+      stateProvider,
+    );
+  });
+
   afterEach(() => {
     delete (window as any).bitwardenContainerService;
   });
 
   describe("decryptedCollections$", () => {
     it("emits decrypted collections from state", async () => {
-      // Arrange test collections
+      // Arrange test data
       const org1 = Utils.newGuid() as OrganizationId;
-      const org2 = Utils.newGuid() as OrganizationId;
-
+      const orgKey1 = makeSymmetricCryptoKey<OrgKey>(64, 1);
       const collection1 = collectionDataFactory(org1);
+
+      const org2 = Utils.newGuid() as OrganizationId;
+      const orgKey2 = makeSymmetricCryptoKey<OrgKey>(64, 2);
       const collection2 = collectionDataFactory(org2);
 
-      // Arrange state provider
-      const fakeStateProvider = mockStateProvider();
-      await fakeStateProvider.setUserState(ENCRYPTED_COLLECTION_DATA_KEY, {
-        [collection1.id]: collection1,
-        [collection2.id]: collection2,
+      // Arrange dependencies
+      await setEncryptedState([collection1, collection2]);
+      cryptoKeys.next({
+        [org1]: orgKey1,
+        [org2]: orgKey2,
       });
 
-      // Arrange cryptoService - orgKeys and mock decryption
-      const cryptoService = mockCryptoService();
-      cryptoService.orgKeys$.mockReturnValue(
-        of({
-          [org1]: makeSymmetricCryptoKey<OrgKey>(),
-          [org2]: makeSymmetricCryptoKey<OrgKey>(),
-        }),
-      );
+      const result = await firstValueFrom(collectionService.decryptedCollections$(userId));
 
-      const collectionService = new DefaultCollectionService(
-        cryptoService,
-        mock<EncryptService>(),
-        mockI18nService(),
-        fakeStateProvider,
-      );
-
-      const result = await firstValueFrom(collectionService.decryptedCollections$);
+      // Assert emitted values
       expect(result.length).toBe(2);
-      expect(result[0]).toMatchObject({
-        id: collection1.id,
-        name: "DECRYPTED_STRING",
-      });
-      expect(result[1]).toMatchObject({
-        id: collection2.id,
-        name: "DECRYPTED_STRING",
-      });
+      expect(result).toContainPartialObjects([
+        {
+          id: collection1.id,
+          name: "DEC_NAME_" + collection1.id,
+        },
+        {
+          id: collection2.id,
+          name: "DEC_NAME_" + collection2.id,
+        },
+      ]);
+
+      // Assert that the correct org keys were used for each encrypted string
+      // This should be replaced with decryptString when the platform PR (https://github.com/bitwarden/clients/pull/14544) is merged
+      expect(encryptService.decryptString).toHaveBeenCalledWith(
+        expect.objectContaining(new EncString(collection1.name)),
+        orgKey1,
+      );
+      expect(encryptService.decryptString).toHaveBeenCalledWith(
+        expect.objectContaining(new EncString(collection2.name)),
+        orgKey2,
+      );
+    });
+
+    it("emits decrypted collections from in-memory state when available", async () => {
+      // Arrange test data
+      const org1 = Utils.newGuid() as OrganizationId;
+      const collection1 = collectionViewDataFactory(org1);
+
+      const org2 = Utils.newGuid() as OrganizationId;
+      const collection2 = collectionViewDataFactory(org2);
+
+      await setDecryptedState([collection1, collection2]);
+
+      const result = await firstValueFrom(collectionService.decryptedCollections$(userId));
+
+      // Assert emitted values
+      expect(result.length).toBe(2);
+      expect(result).toContainPartialObjects([
+        {
+          id: collection1.id,
+          name: "DEC_NAME_" + collection1.id,
+        },
+        {
+          id: collection2.id,
+          name: "DEC_NAME_" + collection2.id,
+        },
+      ]);
+
+      // Ensure that the returned data came from the in-memory state, rather than from decryption.
+      expect(encryptService.decryptString).not.toHaveBeenCalled();
     });
 
     it("handles null collection state", async () => {
-      // Arrange test collections
+      // Arrange dependencies
+      await setEncryptedState(null);
+      cryptoKeys.next({});
+
+      const encryptedCollections = await firstValueFrom(
+        collectionService.encryptedCollections$(userId),
+      );
+
+      expect(encryptedCollections).toBe(null);
+    });
+
+    it("handles undefined orgKeys", (done) => {
+      // Arrange test data
       const org1 = Utils.newGuid() as OrganizationId;
+      const collection1 = collectionDataFactory(org1);
+
       const org2 = Utils.newGuid() as OrganizationId;
+      const collection2 = collectionDataFactory(org2);
 
-      // Arrange state provider
-      const fakeStateProvider = mockStateProvider();
-      await fakeStateProvider.setUserState(ENCRYPTED_COLLECTION_DATA_KEY, null);
+      // Emit a non-null value after the first undefined value has propagated
+      // This will cause the collections to emit, calling done()
+      cryptoKeys.pipe(first()).subscribe((val) => {
+        cryptoKeys.next({});
+      });
 
-      // Arrange cryptoService - orgKeys and mock decryption
-      const cryptoService = mockCryptoService();
-      cryptoService.orgKeys$.mockReturnValue(
-        of({
-          [org1]: makeSymmetricCryptoKey<OrgKey>(),
-          [org2]: makeSymmetricCryptoKey<OrgKey>(),
-        }),
-      );
+      collectionService
+        .decryptedCollections$(userId)
+        .pipe(takeWhile((val) => val.length != 2))
+        .subscribe({ complete: () => done() });
 
-      const collectionService = new DefaultCollectionService(
-        cryptoService,
-        mock<EncryptService>(),
-        mockI18nService(),
-        fakeStateProvider,
-      );
+      // Arrange dependencies
+      void setEncryptedState([collection1, collection2]).then(() => {
+        // Act: emit undefined
+        cryptoKeys.next(undefined);
+        keyService.activeUserOrgKeys$ = of(undefined);
+      });
+    });
 
-      const decryptedCollections = await firstValueFrom(collectionService.decryptedCollections$);
-      expect(decryptedCollections.length).toBe(0);
+    it("Decrypts one time for multiple simultaneous callers", async () => {
+      const decryptedMock: CollectionView[] = [{ id: "col1" }] as CollectionView[];
+      const decryptManySpy = jest
+        .spyOn(collectionService, "decryptMany$")
+        .mockReturnValue(of(decryptedMock));
 
-      const encryptedCollections = await firstValueFrom(collectionService.encryptedCollections$);
-      expect(encryptedCollections.length).toBe(0);
+      jest
+        .spyOn(collectionService as any, "encryptedCollections$")
+        .mockReturnValue(of([{ id: "enc1" }]));
+      jest.spyOn(keyService, "orgKeys$").mockReturnValue(of({ key: "fake-key" }));
+
+      // Simulate multiple subscribers
+      const obs1 = collectionService.decryptedCollections$(userId);
+      const obs2 = collectionService.decryptedCollections$(userId);
+      const obs3 = collectionService.decryptedCollections$(userId);
+
+      await firstValueFrom(combineLatest([obs1, obs2, obs3]));
+
+      // Expect decryptMany$ to be called only once
+      expect(decryptManySpy).toHaveBeenCalledTimes(1);
     });
   });
+
+  describe("encryptedCollections$", () => {
+    it("emits encrypted collections from state", async () => {
+      // Arrange test data
+      const collection1 = collectionDataFactory();
+      const collection2 = collectionDataFactory();
+
+      // Arrange dependencies
+      await setEncryptedState([collection1, collection2]);
+
+      const result = await firstValueFrom(collectionService.encryptedCollections$(userId));
+
+      expect(result!.length).toBe(2);
+      expect(result).toContainPartialObjects([
+        {
+          id: collection1.id,
+          name: makeEncString("ENC_NAME_" + collection1.id),
+        },
+        {
+          id: collection2.id,
+          name: makeEncString("ENC_NAME_" + collection2.id),
+        },
+      ]);
+    });
+
+    it("handles null collection state", async () => {
+      await setEncryptedState(null);
+
+      const decryptedCollections = await firstValueFrom(
+        collectionService.encryptedCollections$(userId),
+      );
+      expect(decryptedCollections).toBe(null);
+    });
+  });
+
+  describe("upsert", () => {
+    it("upserts to existing collections", async () => {
+      const org1 = Utils.newGuid() as OrganizationId;
+      const orgKey1 = makeSymmetricCryptoKey<OrgKey>(64, 1);
+      const collection1 = collectionDataFactory(org1);
+
+      await setEncryptedState([collection1]);
+      cryptoKeys.next({
+        [collection1.organizationId]: orgKey1,
+      });
+
+      const updatedCollection1 = Object.assign(new CollectionData({} as any), collection1, {
+        name: makeEncString("UPDATED_ENC_NAME_" + collection1.id).encryptedString,
+      });
+
+      await collectionService.upsert(updatedCollection1, userId);
+
+      const encryptedResult = await firstValueFrom(collectionService.encryptedCollections$(userId));
+
+      expect(encryptedResult!.length).toBe(1);
+      expect(encryptedResult).toContainPartialObjects([
+        {
+          id: collection1.id,
+          name: makeEncString("UPDATED_ENC_NAME_" + collection1.id),
+        },
+      ]);
+
+      const decryptedResult = await firstValueFrom(collectionService.decryptedCollections$(userId));
+      expect(decryptedResult.length).toBe(1);
+      expect(decryptedResult).toContainPartialObjects([
+        {
+          id: collection1.id,
+          name: "UPDATED_DEC_NAME_" + collection1.id,
+        },
+      ]);
+    });
+
+    it("upserts to a null state", async () => {
+      const org1 = Utils.newGuid() as OrganizationId;
+      const orgKey1 = makeSymmetricCryptoKey<OrgKey>(64, 1);
+      const collection1 = collectionDataFactory(org1);
+
+      cryptoKeys.next({
+        [collection1.organizationId]: orgKey1,
+      });
+
+      await setEncryptedState(null);
+
+      await collectionService.upsert(collection1, userId);
+
+      const encryptedResult = await firstValueFrom(collectionService.encryptedCollections$(userId));
+      expect(encryptedResult!.length).toBe(1);
+      expect(encryptedResult).toContainPartialObjects([
+        {
+          id: collection1.id,
+          name: makeEncString("ENC_NAME_" + collection1.id),
+        },
+      ]);
+
+      const decryptedResult = await firstValueFrom(collectionService.decryptedCollections$(userId));
+      expect(decryptedResult.length).toBe(1);
+      expect(decryptedResult).toContainPartialObjects([
+        {
+          id: collection1.id,
+          name: "DEC_NAME_" + collection1.id,
+        },
+      ]);
+    });
+  });
+
+  describe("replace", () => {
+    it("replaces all collections", async () => {
+      await setEncryptedState([collectionDataFactory(), collectionDataFactory()]);
+
+      const newCollection3 = collectionDataFactory();
+      await collectionService.replace(
+        {
+          [newCollection3.id]: newCollection3,
+        },
+        userId,
+      );
+
+      const result = await firstValueFrom(collectionService.encryptedCollections$(userId));
+      expect(result!.length).toBe(1);
+      expect(result).toContainPartialObjects([
+        {
+          id: newCollection3.id,
+          name: makeEncString("ENC_NAME_" + newCollection3.id),
+        },
+      ]);
+    });
+  });
+
+  describe("delete", () => {
+    it("deletes a collection", async () => {
+      const collection1 = collectionDataFactory();
+      const collection2 = collectionDataFactory();
+      await setEncryptedState([collection1, collection2]);
+
+      await collectionService.delete([collection1.id], userId);
+
+      const result = await firstValueFrom(collectionService.encryptedCollections$(userId));
+      expect(result!.length).toEqual(1);
+      expect(result![0]).toMatchObject({ id: collection2.id });
+    });
+
+    it("deletes several collections", async () => {
+      const collection1 = collectionDataFactory();
+      const collection2 = collectionDataFactory();
+      const collection3 = collectionDataFactory();
+      await setEncryptedState([collection1, collection2, collection3]);
+
+      await collectionService.delete([collection1.id, collection3.id], userId);
+
+      const result = await firstValueFrom(collectionService.encryptedCollections$(userId));
+      expect(result!.length).toEqual(1);
+      expect(result![0]).toMatchObject({ id: collection2.id });
+    });
+
+    it("handles null collections", async () => {
+      const collection1 = collectionDataFactory();
+      await setEncryptedState(null);
+
+      await collectionService.delete([collection1.id], userId);
+
+      const result = await firstValueFrom(collectionService.encryptedCollections$(userId));
+      expect(result!.length).toEqual(0);
+    });
+  });
+
+  const setEncryptedState = (collectionData: CollectionData[] | null) =>
+    stateProvider.setUserState(
+      ENCRYPTED_COLLECTION_DATA_KEY,
+      collectionData == null ? null : Object.fromEntries(collectionData.map((c) => [c.id, c])),
+      userId,
+    );
+
+  const setDecryptedState = (collectionViews: CollectionView[] | null) =>
+    stateProvider.setUserState(DECRYPTED_COLLECTION_DATA_KEY, collectionViews, userId);
 });
 
-const mockI18nService = () => {
-  const i18nService = mock<I18nService>();
-  i18nService.collator = null; // this is a mock only, avoid use of this object
-  return i18nService;
-};
-
-const mockStateProvider = () => {
-  const userId = Utils.newGuid() as UserId;
-  return new FakeStateProvider(mockAccountServiceWith(userId));
-};
-
-const mockCryptoService = () => {
-  const keyService = mock<KeyService>();
-  const encryptService = mock<EncryptService>();
-  encryptService.decryptString
-    .calledWith(expect.any(EncString), expect.anything())
-    .mockResolvedValue("DECRYPTED_STRING");
-
-  (window as any).bitwardenContainerService = new ContainerService(keyService, encryptService);
-
-  return keyService;
-};
-
-const collectionDataFactory = (orgId: OrganizationId) => {
+const collectionDataFactory = (orgId?: OrganizationId) => {
   const collection = new CollectionData({} as any);
   collection.id = Utils.newGuid() as CollectionId;
-  collection.organizationId = orgId;
-  collection.name = makeEncString("ENC_STRING").encryptedString;
+  collection.organizationId = orgId ?? (Utils.newGuid() as OrganizationId);
+  collection.name = makeEncString("ENC_NAME_" + collection.id).encryptedString ?? "";
 
   return collection;
 };
+
+function collectionViewDataFactory(orgId?: OrganizationId): CollectionView {
+  const collectionView = new CollectionView();
+  collectionView.id = Utils.newGuid() as CollectionId;
+  collectionView.organizationId = orgId ?? (Utils.newGuid() as OrganizationId);
+  collectionView.name = "DEC_NAME_" + collectionView.id;
+  return collectionView;
+}
diff --git a/libs/admin-console/src/common/collections/services/default-collection.service.ts b/libs/admin-console/src/common/collections/services/default-collection.service.ts
index a1dd0419e2c..4978b06df35 100644
--- a/libs/admin-console/src/common/collections/services/default-collection.service.ts
+++ b/libs/admin-console/src/common/collections/services/default-collection.service.ts
@@ -1,113 +1,193 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
-import { combineLatest, firstValueFrom, map, Observable, of, shareReplay, switchMap } from "rxjs";
-import { Jsonify } from "type-fest";
+import {
+  combineLatest,
+  delayWhen,
+  filter,
+  firstValueFrom,
+  from,
+  map,
+  NEVER,
+  Observable,
+  of,
+  shareReplay,
+  switchMap,
+} from "rxjs";
 
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
-import {
-  ActiveUserState,
-  COLLECTION_DATA,
-  DeriveDefinition,
-  DerivedState,
-  StateProvider,
-  UserKeyDefinition,
-} from "@bitwarden/common/platform/state";
+import { SingleUserState, StateProvider } from "@bitwarden/common/platform/state";
 import { CollectionId, OrganizationId, UserId } from "@bitwarden/common/types/guid";
 import { OrgKey } from "@bitwarden/common/types/key";
 import { TreeNode } from "@bitwarden/common/vault/models/domain/tree-node";
 import { ServiceUtils } from "@bitwarden/common/vault/service-utils";
 import { KeyService } from "@bitwarden/key-management";
 
-import { CollectionService } from "../abstractions";
+import { CollectionService } from "../abstractions/collection.service";
 import { Collection, CollectionData, CollectionView } from "../models";
 
-export const ENCRYPTED_COLLECTION_DATA_KEY = UserKeyDefinition.record<CollectionData, CollectionId>(
-  COLLECTION_DATA,
-  "collections",
-  {
-    deserializer: (jsonData: Jsonify<CollectionData>) => CollectionData.fromJSON(jsonData),
-    clearOn: ["logout"],
-  },
-);
-
-const DECRYPTED_COLLECTION_DATA_KEY = new DeriveDefinition<
-  [Record<CollectionId, CollectionData>, Record<OrganizationId, OrgKey>],
-  CollectionView[],
-  { collectionService: DefaultCollectionService }
->(COLLECTION_DATA, "decryptedCollections", {
-  deserializer: (obj) => obj.map((collection) => CollectionView.fromJSON(collection)),
-  derive: async ([collections, orgKeys], { collectionService }) => {
-    if (collections == null) {
-      return [];
-    }
-
-    const data = Object.values(collections).map((c) => new Collection(c));
-    return await collectionService.decryptMany(data, orgKeys);
-  },
-});
+import { DECRYPTED_COLLECTION_DATA_KEY, ENCRYPTED_COLLECTION_DATA_KEY } from "./collection.state";
 
 const NestingDelimiter = "/";
 
 export class DefaultCollectionService implements CollectionService {
-  private encryptedCollectionDataState: ActiveUserState<Record<CollectionId, CollectionData>>;
-  encryptedCollections$: Observable<Collection[]>;
-  private decryptedCollectionDataState: DerivedState<CollectionView[]>;
-  decryptedCollections$: Observable<CollectionView[]>;
-
-  decryptedCollectionViews$(ids: CollectionId[]): Observable<CollectionView[]> {
-    return this.decryptedCollections$.pipe(
-      map((collections) => collections.filter((c) => ids.includes(c.id as CollectionId))),
-    );
-  }
-
   constructor(
     private keyService: KeyService,
     private encryptService: EncryptService,
     private i18nService: I18nService,
     protected stateProvider: StateProvider,
-  ) {
-    this.encryptedCollectionDataState = this.stateProvider.getActive(ENCRYPTED_COLLECTION_DATA_KEY);
+  ) {}
 
-    this.encryptedCollections$ = this.encryptedCollectionDataState.state$.pipe(
+  private collectionViewCache = new Map<UserId, Observable<CollectionView[]>>();
+
+  /**
+   * @returns a SingleUserState for encrypted collection data.
+   */
+  private encryptedState(
+    userId: UserId,
+  ): SingleUserState<Record<CollectionId, CollectionData | null>> {
+    return this.stateProvider.getUser(userId, ENCRYPTED_COLLECTION_DATA_KEY);
+  }
+
+  /**
+   * @returns a SingleUserState for decrypted collection data.
+   */
+  private decryptedState(userId: UserId): SingleUserState<CollectionView[] | null> {
+    return this.stateProvider.getUser(userId, DECRYPTED_COLLECTION_DATA_KEY);
+  }
+
+  encryptedCollections$(userId: UserId): Observable<Collection[] | null> {
+    return this.encryptedState(userId).state$.pipe(
       map((collections) => {
         if (collections == null) {
-          return [];
+          return null;
         }
 
         return Object.values(collections).map((c) => new Collection(c));
       }),
     );
+  }
 
-    const encryptedCollectionsWithKeys = this.encryptedCollectionDataState.combinedState$.pipe(
-      switchMap(([userId, collectionData]) =>
-        combineLatest([of(collectionData), this.keyService.orgKeys$(userId)]),
+  decryptedCollections$(userId: UserId): Observable<CollectionView[]> {
+    const cachedResult = this.collectionViewCache.get(userId);
+    if (cachedResult) {
+      return cachedResult;
+    }
+
+    const result$ = this.decryptedState(userId).state$.pipe(
+      switchMap((decryptedState) => {
+        // If decrypted state is already populated, return that
+        if (decryptedState !== null) {
+          return of(decryptedState ?? []);
+        }
+
+        return this.initializeDecryptedState(userId).pipe(switchMap(() => NEVER));
+      }),
+      shareReplay({ bufferSize: 1, refCount: true }),
+    );
+
+    this.collectionViewCache.set(userId, result$);
+    return result$;
+  }
+
+  private initializeDecryptedState(userId: UserId): Observable<CollectionView[]> {
+    return combineLatest([
+      this.encryptedCollections$(userId),
+      this.keyService.orgKeys$(userId).pipe(filter((orgKeys) => !!orgKeys)),
+    ]).pipe(
+      switchMap(([collections, orgKeys]) =>
+        this.decryptMany$(collections, orgKeys).pipe(
+          delayWhen((collections) => this.setDecryptedCollections(collections, userId)),
+        ),
       ),
-      shareReplay({ refCount: false, bufferSize: 1 }),
     );
-
-    this.decryptedCollectionDataState = this.stateProvider.getDerived(
-      encryptedCollectionsWithKeys,
-      DECRYPTED_COLLECTION_DATA_KEY,
-      { collectionService: this },
-    );
-
-    this.decryptedCollections$ = this.decryptedCollectionDataState.state$;
   }
 
-  async clearActiveUserCache(): Promise<void> {
-    await this.decryptedCollectionDataState.forceValue(null);
+  async upsert(toUpdate: CollectionData, userId: UserId): Promise<void> {
+    if (toUpdate == null) {
+      return;
+    }
+    await this.encryptedState(userId).update((collections) => {
+      if (collections == null) {
+        collections = {};
+      }
+      collections[toUpdate.id] = toUpdate;
+
+      return collections;
+    });
+
+    const decryptedCollections = await firstValueFrom(
+      this.keyService.orgKeys$(userId).pipe(
+        switchMap((orgKeys) => {
+          if (!orgKeys) {
+            throw new Error("No key for this collection's organization.");
+          }
+          return this.decryptMany$([new Collection(toUpdate)], orgKeys);
+        }),
+      ),
+    );
+
+    await this.decryptedState(userId).update((collections) => {
+      if (collections == null) {
+        collections = [];
+      }
+
+      if (!decryptedCollections?.length) {
+        return collections;
+      }
+
+      const decryptedCollection = decryptedCollections[0];
+      const existingIndex = collections.findIndex((collection) => collection.id == toUpdate.id);
+      if (existingIndex >= 0) {
+        collections[existingIndex] = decryptedCollection;
+      } else {
+        collections.push(decryptedCollection);
+      }
+
+      return collections;
+    });
   }
 
-  async encrypt(model: CollectionView): Promise<Collection> {
+  async replace(collections: Record<CollectionId, CollectionData>, userId: UserId): Promise<void> {
+    await this.encryptedState(userId).update(() => collections);
+    await this.decryptedState(userId).update(() => null);
+  }
+
+  async delete(ids: CollectionId[], userId: UserId): Promise<any> {
+    await this.encryptedState(userId).update((collections) => {
+      if (collections == null) {
+        collections = {};
+      }
+      ids.forEach((i) => {
+        delete collections[i];
+      });
+      return collections;
+    });
+
+    await this.decryptedState(userId).update((collections) => {
+      if (collections == null) {
+        collections = [];
+      }
+      ids.forEach((i) => {
+        if (collections?.length) {
+          collections = collections.filter((c) => c.id != i) ?? [];
+        }
+      });
+      return collections;
+    });
+  }
+
+  async encrypt(model: CollectionView, userId: UserId): Promise<Collection> {
     if (model.organizationId == null) {
       throw new Error("Collection has no organization id.");
     }
-    const key = await this.keyService.getOrgKey(model.organizationId);
-    if (key == null) {
-      throw new Error("No key for this collection's organization.");
-    }
+
+    const key = await firstValueFrom(
+      this.keyService.orgKeys$(userId).pipe(
+        filter((orgKeys) => !!orgKeys),
+        map((k) => k[model.organizationId as OrganizationId]),
+      ),
+    );
+
     const collection = new Collection();
     collection.id = model.id;
     collection.organizationId = model.organizationId;
@@ -117,58 +197,37 @@ export class DefaultCollectionService implements CollectionService {
     return collection;
   }
 
-  // TODO: this should be private and orgKeys should be required.
+  // TODO: this should be private.
   // See https://bitwarden.atlassian.net/browse/PM-12375
-  async decryptMany(
-    collections: Collection[],
-    orgKeys?: Record<OrganizationId, OrgKey>,
-  ): Promise<CollectionView[]> {
-    if (collections == null || collections.length === 0) {
-      return [];
+  decryptMany$(
+    collections: Collection[] | null,
+    orgKeys: Record<OrganizationId, OrgKey>,
+  ): Observable<CollectionView[]> {
+    if (collections === null || collections.length == 0 || orgKeys === null) {
+      return of([]);
     }
-    const decCollections: CollectionView[] = [];
 
-    orgKeys ??= await firstValueFrom(this.keyService.activeUserOrgKeys$);
+    const decCollections: Observable<CollectionView>[] = [];
 
-    const promises: Promise<any>[] = [];
     collections.forEach((collection) => {
-      promises.push(
-        collection
-          .decrypt(orgKeys[collection.organizationId as OrganizationId])
-          .then((c) => decCollections.push(c)),
+      decCollections.push(
+        from(collection.decrypt(orgKeys[collection.organizationId as OrganizationId])),
       );
     });
-    await Promise.all(promises);
-    return decCollections.sort(Utils.getSortFunction(this.i18nService, "name"));
-  }
 
-  async get(id: string): Promise<Collection> {
-    return (
-      (await firstValueFrom(
-        this.encryptedCollections$.pipe(map((cs) => cs.find((c) => c.id === id))),
-      )) ?? null
+    return combineLatest(decCollections).pipe(
+      map((collections) => collections.sort(Utils.getSortFunction(this.i18nService, "name"))),
     );
   }
 
-  async getAll(): Promise<Collection[]> {
-    return await firstValueFrom(this.encryptedCollections$);
-  }
-
-  async getAllDecrypted(): Promise<CollectionView[]> {
-    return await firstValueFrom(this.decryptedCollections$);
-  }
-
-  async getAllNested(collections: CollectionView[] = null): Promise<TreeNode<CollectionView>[]> {
-    if (collections == null) {
-      collections = await this.getAllDecrypted();
-    }
+  getAllNested(collections: CollectionView[]): TreeNode<CollectionView>[] {
     const nodes: TreeNode<CollectionView>[] = [];
     collections.forEach((c) => {
       const collectionCopy = new CollectionView();
       collectionCopy.id = c.id;
       collectionCopy.organizationId = c.organizationId;
       const parts = c.name != null ? c.name.replace(/^\/+|\/+$/g, "").split(NestingDelimiter) : [];
-      ServiceUtils.nestedTraverse(nodes, 0, parts, collectionCopy, null, NestingDelimiter);
+      ServiceUtils.nestedTraverse(nodes, 0, parts, collectionCopy, undefined, NestingDelimiter);
     });
     return nodes;
   }
@@ -177,58 +236,23 @@ export class DefaultCollectionService implements CollectionService {
    * @deprecated August 30 2022: Moved to new Vault Filter Service
    * Remove when Desktop and Browser are updated
    */
-  async getNested(id: string): Promise<TreeNode<CollectionView>> {
-    const collections = await this.getAllNested();
-    return ServiceUtils.getTreeNodeObjectFromList(collections, id) as TreeNode<CollectionView>;
+  getNested(collections: CollectionView[], id: string): TreeNode<CollectionView> {
+    const nestedCollections = this.getAllNested(collections);
+    return ServiceUtils.getTreeNodeObjectFromList(
+      nestedCollections,
+      id,
+    ) as TreeNode<CollectionView>;
   }
 
-  async upsert(toUpdate: CollectionData | CollectionData[]): Promise<void> {
-    if (toUpdate == null) {
-      return;
-    }
-    await this.encryptedCollectionDataState.update((collections) => {
-      if (collections == null) {
-        collections = {};
-      }
-      if (Array.isArray(toUpdate)) {
-        toUpdate.forEach((c) => {
-          collections[c.id] = c;
-        });
-      } else {
-        collections[toUpdate.id] = toUpdate;
-      }
-      return collections;
-    });
-  }
-
-  async replace(collections: Record<CollectionId, CollectionData>, userId: UserId): Promise<void> {
-    await this.stateProvider
-      .getUser(userId, ENCRYPTED_COLLECTION_DATA_KEY)
-      .update(() => collections);
-  }
-
-  async clear(userId?: UserId): Promise<void> {
-    if (userId == null) {
-      await this.encryptedCollectionDataState.update(() => null);
-      await this.decryptedCollectionDataState.forceValue(null);
-    } else {
-      await this.stateProvider.getUser(userId, ENCRYPTED_COLLECTION_DATA_KEY).update(() => null);
-    }
-  }
-
-  async delete(id: CollectionId | CollectionId[]): Promise<any> {
-    await this.encryptedCollectionDataState.update((collections) => {
-      if (collections == null) {
-        collections = {};
-      }
-      if (typeof id === "string") {
-        delete collections[id];
-      } else {
-        (id as CollectionId[]).forEach((i) => {
-          delete collections[i];
-        });
-      }
-      return collections;
-    });
+  /**
+   * Sets the decrypted collections state for a user.
+   * @param collections the decrypted collections
+   * @param userId the user id
+   */
+  private async setDecryptedCollections(
+    collections: CollectionView[],
+    userId: UserId,
+  ): Promise<void> {
+    await this.stateProvider.setUserState(DECRYPTED_COLLECTION_DATA_KEY, collections, userId);
   }
 }
diff --git a/libs/admin-console/src/common/collections/services/default-vnext-collection.service.spec.ts b/libs/admin-console/src/common/collections/services/default-vnext-collection.service.spec.ts
deleted file mode 100644
index 256157a03c1..00000000000
--- a/libs/admin-console/src/common/collections/services/default-vnext-collection.service.spec.ts
+++ /dev/null
@@ -1,345 +0,0 @@
-import { mock, MockProxy } from "jest-mock-extended";
-import { first, firstValueFrom, of, ReplaySubject, takeWhile } from "rxjs";
-
-import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
-import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
-import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { Utils } from "@bitwarden/common/platform/misc/utils";
-import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
-import { ContainerService } from "@bitwarden/common/platform/services/container.service";
-import {
-  FakeStateProvider,
-  makeEncString,
-  makeSymmetricCryptoKey,
-  mockAccountServiceWith,
-} from "@bitwarden/common/spec";
-import { CollectionId, OrganizationId, UserId } from "@bitwarden/common/types/guid";
-import { OrgKey } from "@bitwarden/common/types/key";
-import { KeyService } from "@bitwarden/key-management";
-
-import { CollectionData } from "../models";
-
-import { DefaultvNextCollectionService } from "./default-vnext-collection.service";
-import { ENCRYPTED_COLLECTION_DATA_KEY } from "./vnext-collection.state";
-
-describe("DefaultvNextCollectionService", () => {
-  let keyService: MockProxy<KeyService>;
-  let encryptService: MockProxy<EncryptService>;
-  let i18nService: MockProxy<I18nService>;
-  let stateProvider: FakeStateProvider;
-
-  let userId: UserId;
-
-  let cryptoKeys: ReplaySubject<Record<OrganizationId, OrgKey> | null>;
-
-  let collectionService: DefaultvNextCollectionService;
-
-  beforeEach(() => {
-    userId = Utils.newGuid() as UserId;
-
-    keyService = mock();
-    encryptService = mock();
-    i18nService = mock();
-    stateProvider = new FakeStateProvider(mockAccountServiceWith(userId));
-
-    cryptoKeys = new ReplaySubject(1);
-    keyService.orgKeys$.mockReturnValue(cryptoKeys);
-
-    // Set up mock decryption
-    encryptService.decryptString
-      .calledWith(expect.any(EncString), expect.any(SymmetricCryptoKey))
-      .mockImplementation((encString, key) =>
-        Promise.resolve(encString.data.replace("ENC_", "DEC_")),
-      );
-
-    (window as any).bitwardenContainerService = new ContainerService(keyService, encryptService);
-
-    // Arrange i18nService so that sorting algorithm doesn't throw
-    i18nService.collator = null;
-
-    collectionService = new DefaultvNextCollectionService(
-      keyService,
-      encryptService,
-      i18nService,
-      stateProvider,
-    );
-  });
-
-  afterEach(() => {
-    delete (window as any).bitwardenContainerService;
-  });
-
-  describe("decryptedCollections$", () => {
-    it("emits decrypted collections from state", async () => {
-      // Arrange test data
-      const org1 = Utils.newGuid() as OrganizationId;
-      const orgKey1 = makeSymmetricCryptoKey<OrgKey>(64, 1);
-      const collection1 = collectionDataFactory(org1);
-
-      const org2 = Utils.newGuid() as OrganizationId;
-      const orgKey2 = makeSymmetricCryptoKey<OrgKey>(64, 2);
-      const collection2 = collectionDataFactory(org2);
-
-      // Arrange dependencies
-      await setEncryptedState([collection1, collection2]);
-      cryptoKeys.next({
-        [org1]: orgKey1,
-        [org2]: orgKey2,
-      });
-
-      const result = await firstValueFrom(collectionService.decryptedCollections$(userId));
-
-      // Assert emitted values
-      expect(result.length).toBe(2);
-      expect(result).toContainPartialObjects([
-        {
-          id: collection1.id,
-          name: "DEC_NAME_" + collection1.id,
-        },
-        {
-          id: collection2.id,
-          name: "DEC_NAME_" + collection2.id,
-        },
-      ]);
-
-      // Assert that the correct org keys were used for each encrypted string
-      // This should be replaced with decryptString when the platform PR (https://github.com/bitwarden/clients/pull/14544) is merged
-      expect(encryptService.decryptString).toHaveBeenCalledWith(
-        expect.objectContaining(new EncString(collection1.name)),
-        orgKey1,
-      );
-      expect(encryptService.decryptString).toHaveBeenCalledWith(
-        expect.objectContaining(new EncString(collection2.name)),
-        orgKey2,
-      );
-    });
-
-    it("handles null collection state", async () => {
-      // Arrange dependencies
-      await setEncryptedState(null);
-      cryptoKeys.next({});
-
-      const encryptedCollections = await firstValueFrom(
-        collectionService.encryptedCollections$(userId),
-      );
-
-      expect(encryptedCollections.length).toBe(0);
-    });
-
-    it("handles undefined orgKeys", (done) => {
-      // Arrange test data
-      const org1 = Utils.newGuid() as OrganizationId;
-      const collection1 = collectionDataFactory(org1);
-
-      const org2 = Utils.newGuid() as OrganizationId;
-      const collection2 = collectionDataFactory(org2);
-
-      // Emit a non-null value after the first undefined value has propagated
-      // This will cause the collections to emit, calling done()
-      cryptoKeys.pipe(first()).subscribe((val) => {
-        cryptoKeys.next({});
-      });
-
-      collectionService
-        .decryptedCollections$(userId)
-        .pipe(takeWhile((val) => val.length != 2))
-        .subscribe({ complete: () => done() });
-
-      // Arrange dependencies
-      void setEncryptedState([collection1, collection2]).then(() => {
-        // Act: emit undefined
-        cryptoKeys.next(undefined);
-        keyService.activeUserOrgKeys$ = of(undefined);
-      });
-    });
-  });
-
-  describe("encryptedCollections$", () => {
-    it("emits encrypted collections from state", async () => {
-      // Arrange test data
-      const collection1 = collectionDataFactory();
-      const collection2 = collectionDataFactory();
-
-      // Arrange dependencies
-      await setEncryptedState([collection1, collection2]);
-
-      const result = await firstValueFrom(collectionService.encryptedCollections$(userId));
-
-      expect(result.length).toBe(2);
-      expect(result).toContainPartialObjects([
-        {
-          id: collection1.id,
-          name: makeEncString("ENC_NAME_" + collection1.id),
-        },
-        {
-          id: collection2.id,
-          name: makeEncString("ENC_NAME_" + collection2.id),
-        },
-      ]);
-    });
-
-    it("handles null collection state", async () => {
-      await setEncryptedState(null);
-
-      const decryptedCollections = await firstValueFrom(
-        collectionService.encryptedCollections$(userId),
-      );
-      expect(decryptedCollections.length).toBe(0);
-    });
-  });
-
-  describe("upsert", () => {
-    it("upserts to existing collections", async () => {
-      const collection1 = collectionDataFactory();
-      const collection2 = collectionDataFactory();
-
-      await setEncryptedState([collection1, collection2]);
-
-      const updatedCollection1 = Object.assign(new CollectionData({} as any), collection1, {
-        name: makeEncString("UPDATED_ENC_NAME_" + collection1.id).encryptedString,
-      });
-      const newCollection3 = collectionDataFactory();
-
-      await collectionService.upsert([updatedCollection1, newCollection3], userId);
-
-      const result = await firstValueFrom(collectionService.encryptedCollections$(userId));
-      expect(result.length).toBe(3);
-      expect(result).toContainPartialObjects([
-        {
-          id: collection1.id,
-          name: makeEncString("UPDATED_ENC_NAME_" + collection1.id),
-        },
-        {
-          id: collection2.id,
-          name: makeEncString("ENC_NAME_" + collection2.id),
-        },
-        {
-          id: newCollection3.id,
-          name: makeEncString("ENC_NAME_" + newCollection3.id),
-        },
-      ]);
-    });
-
-    it("upserts to a null state", async () => {
-      const collection1 = collectionDataFactory();
-
-      await setEncryptedState(null);
-
-      await collectionService.upsert(collection1, userId);
-
-      const result = await firstValueFrom(collectionService.encryptedCollections$(userId));
-      expect(result.length).toBe(1);
-      expect(result).toContainPartialObjects([
-        {
-          id: collection1.id,
-          name: makeEncString("ENC_NAME_" + collection1.id),
-        },
-      ]);
-    });
-  });
-
-  describe("replace", () => {
-    it("replaces all collections", async () => {
-      await setEncryptedState([collectionDataFactory(), collectionDataFactory()]);
-
-      const newCollection3 = collectionDataFactory();
-      await collectionService.replace(
-        {
-          [newCollection3.id]: newCollection3,
-        },
-        userId,
-      );
-
-      const result = await firstValueFrom(collectionService.encryptedCollections$(userId));
-      expect(result.length).toBe(1);
-      expect(result).toContainPartialObjects([
-        {
-          id: newCollection3.id,
-          name: makeEncString("ENC_NAME_" + newCollection3.id),
-        },
-      ]);
-    });
-  });
-
-  it("clearDecryptedState", async () => {
-    await setEncryptedState([collectionDataFactory(), collectionDataFactory()]);
-
-    await collectionService.clearDecryptedState(userId);
-
-    // Encrypted state remains
-    const encryptedState = await firstValueFrom(collectionService.encryptedCollections$(userId));
-    expect(encryptedState.length).toEqual(2);
-
-    // Decrypted state is cleared
-    const decryptedState = await firstValueFrom(collectionService.decryptedCollections$(userId));
-    expect(decryptedState.length).toEqual(0);
-  });
-
-  it("clear", async () => {
-    await setEncryptedState([collectionDataFactory(), collectionDataFactory()]);
-    cryptoKeys.next({});
-
-    await collectionService.clear(userId);
-
-    // Encrypted state is cleared
-    const encryptedState = await firstValueFrom(collectionService.encryptedCollections$(userId));
-    expect(encryptedState.length).toEqual(0);
-
-    // Decrypted state is cleared
-    const decryptedState = await firstValueFrom(collectionService.decryptedCollections$(userId));
-    expect(decryptedState.length).toEqual(0);
-  });
-
-  describe("delete", () => {
-    it("deletes a collection", async () => {
-      const collection1 = collectionDataFactory();
-      const collection2 = collectionDataFactory();
-      await setEncryptedState([collection1, collection2]);
-
-      await collectionService.delete(collection1.id, userId);
-
-      const result = await firstValueFrom(collectionService.encryptedCollections$(userId));
-      expect(result.length).toEqual(1);
-      expect(result[0]).toMatchObject({ id: collection2.id });
-    });
-
-    it("deletes several collections", async () => {
-      const collection1 = collectionDataFactory();
-      const collection2 = collectionDataFactory();
-      const collection3 = collectionDataFactory();
-      await setEncryptedState([collection1, collection2, collection3]);
-
-      await collectionService.delete([collection1.id, collection3.id], userId);
-
-      const result = await firstValueFrom(collectionService.encryptedCollections$(userId));
-      expect(result.length).toEqual(1);
-      expect(result[0]).toMatchObject({ id: collection2.id });
-    });
-
-    it("handles null collections", async () => {
-      const collection1 = collectionDataFactory();
-      await setEncryptedState(null);
-
-      await collectionService.delete(collection1.id, userId);
-
-      const result = await firstValueFrom(collectionService.encryptedCollections$(userId));
-      expect(result.length).toEqual(0);
-    });
-  });
-
-  const setEncryptedState = (collectionData: CollectionData[] | null) =>
-    stateProvider.setUserState(
-      ENCRYPTED_COLLECTION_DATA_KEY,
-      collectionData == null ? null : Object.fromEntries(collectionData.map((c) => [c.id, c])),
-      userId,
-    );
-});
-
-const collectionDataFactory = (orgId?: OrganizationId) => {
-  const collection = new CollectionData({} as any);
-  collection.id = Utils.newGuid() as CollectionId;
-  collection.organizationId = orgId ?? (Utils.newGuid() as OrganizationId);
-  collection.name = makeEncString("ENC_NAME_" + collection.id).encryptedString;
-
-  return collection;
-};
diff --git a/libs/admin-console/src/common/collections/services/default-vnext-collection.service.ts b/libs/admin-console/src/common/collections/services/default-vnext-collection.service.ts
deleted file mode 100644
index 4dcda795afe..00000000000
--- a/libs/admin-console/src/common/collections/services/default-vnext-collection.service.ts
+++ /dev/null
@@ -1,194 +0,0 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
-import { combineLatest, filter, firstValueFrom, map } from "rxjs";
-
-import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
-import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { Utils } from "@bitwarden/common/platform/misc/utils";
-import { StateProvider, DerivedState } from "@bitwarden/common/platform/state";
-import { CollectionId, OrganizationId, UserId } from "@bitwarden/common/types/guid";
-import { OrgKey } from "@bitwarden/common/types/key";
-import { TreeNode } from "@bitwarden/common/vault/models/domain/tree-node";
-import { ServiceUtils } from "@bitwarden/common/vault/service-utils";
-import { KeyService } from "@bitwarden/key-management";
-
-import { vNextCollectionService } from "../abstractions/vnext-collection.service";
-import { Collection, CollectionData, CollectionView } from "../models";
-
-import {
-  DECRYPTED_COLLECTION_DATA_KEY,
-  ENCRYPTED_COLLECTION_DATA_KEY,
-} from "./vnext-collection.state";
-
-const NestingDelimiter = "/";
-
-export class DefaultvNextCollectionService implements vNextCollectionService {
-  constructor(
-    private keyService: KeyService,
-    private encryptService: EncryptService,
-    private i18nService: I18nService,
-    protected stateProvider: StateProvider,
-  ) {}
-
-  encryptedCollections$(userId: UserId) {
-    return this.encryptedState(userId).state$.pipe(
-      map((collections) => {
-        if (collections == null) {
-          return [];
-        }
-
-        return Object.values(collections).map((c) => new Collection(c));
-      }),
-    );
-  }
-
-  decryptedCollections$(userId: UserId) {
-    return this.decryptedState(userId).state$.pipe(map((collections) => collections ?? []));
-  }
-
-  async upsert(toUpdate: CollectionData | CollectionData[], userId: UserId): Promise<void> {
-    if (toUpdate == null) {
-      return;
-    }
-    await this.encryptedState(userId).update((collections) => {
-      if (collections == null) {
-        collections = {};
-      }
-      if (Array.isArray(toUpdate)) {
-        toUpdate.forEach((c) => {
-          collections[c.id] = c;
-        });
-      } else {
-        collections[toUpdate.id] = toUpdate;
-      }
-      return collections;
-    });
-  }
-
-  async replace(collections: Record<CollectionId, CollectionData>, userId: UserId): Promise<void> {
-    await this.encryptedState(userId).update(() => collections);
-  }
-
-  async clearDecryptedState(userId: UserId): Promise<void> {
-    if (userId == null) {
-      throw new Error("User ID is required.");
-    }
-
-    await this.decryptedState(userId).forceValue([]);
-  }
-
-  async clear(userId: UserId): Promise<void> {
-    await this.encryptedState(userId).update(() => null);
-    // This will propagate from the encrypted state update, but by doing it explicitly
-    // the promise doesn't resolve until the update is complete.
-    await this.decryptedState(userId).forceValue([]);
-  }
-
-  async delete(id: CollectionId | CollectionId[], userId: UserId): Promise<any> {
-    await this.encryptedState(userId).update((collections) => {
-      if (collections == null) {
-        collections = {};
-      }
-      if (typeof id === "string") {
-        delete collections[id];
-      } else {
-        (id as CollectionId[]).forEach((i) => {
-          delete collections[i];
-        });
-      }
-      return collections;
-    });
-  }
-
-  async encrypt(model: CollectionView): Promise<Collection> {
-    if (model.organizationId == null) {
-      throw new Error("Collection has no organization id.");
-    }
-    const key = await this.keyService.getOrgKey(model.organizationId);
-    if (key == null) {
-      throw new Error("No key for this collection's organization.");
-    }
-    const collection = new Collection();
-    collection.id = model.id;
-    collection.organizationId = model.organizationId;
-    collection.readOnly = model.readOnly;
-    collection.externalId = model.externalId;
-    collection.name = await this.encryptService.encryptString(model.name, key);
-    return collection;
-  }
-
-  // TODO: this should be private and orgKeys should be required.
-  // See https://bitwarden.atlassian.net/browse/PM-12375
-  async decryptMany(
-    collections: Collection[],
-    orgKeys?: Record<OrganizationId, OrgKey> | null,
-  ): Promise<CollectionView[]> {
-    if (collections == null || collections.length === 0) {
-      return [];
-    }
-    const decCollections: CollectionView[] = [];
-
-    orgKeys ??= await firstValueFrom(this.keyService.activeUserOrgKeys$);
-
-    const promises: Promise<any>[] = [];
-    collections.forEach((collection) => {
-      promises.push(
-        collection
-          .decrypt(orgKeys[collection.organizationId as OrganizationId])
-          .then((c) => decCollections.push(c)),
-      );
-    });
-    await Promise.all(promises);
-    return decCollections.sort(Utils.getSortFunction(this.i18nService, "name"));
-  }
-
-  getAllNested(collections: CollectionView[]): TreeNode<CollectionView>[] {
-    const nodes: TreeNode<CollectionView>[] = [];
-    collections.forEach((c) => {
-      const collectionCopy = new CollectionView();
-      collectionCopy.id = c.id;
-      collectionCopy.organizationId = c.organizationId;
-      const parts = c.name != null ? c.name.replace(/^\/+|\/+$/g, "").split(NestingDelimiter) : [];
-      ServiceUtils.nestedTraverse(nodes, 0, parts, collectionCopy, undefined, NestingDelimiter);
-    });
-    return nodes;
-  }
-
-  /**
-   * @deprecated August 30 2022: Moved to new Vault Filter Service
-   * Remove when Desktop and Browser are updated
-   */
-  getNested(collections: CollectionView[], id: string): TreeNode<CollectionView> {
-    const nestedCollections = this.getAllNested(collections);
-    return ServiceUtils.getTreeNodeObjectFromList(
-      nestedCollections,
-      id,
-    ) as TreeNode<CollectionView>;
-  }
-
-  /**
-   * @returns a SingleUserState for encrypted collection data.
-   */
-  private encryptedState(userId: UserId) {
-    return this.stateProvider.getUser(userId, ENCRYPTED_COLLECTION_DATA_KEY);
-  }
-
-  /**
-   * @returns a SingleUserState for decrypted collection data.
-   */
-  private decryptedState(userId: UserId): DerivedState<CollectionView[]> {
-    const encryptedCollectionsWithKeys$ = combineLatest([
-      this.encryptedCollections$(userId),
-      // orgKeys$ can emit null during brief moments on unlock and lock/logout, we want to ignore those intermediate states
-      this.keyService.orgKeys$(userId).pipe(filter((orgKeys) => orgKeys != null)),
-    ]);
-
-    return this.stateProvider.getDerived(
-      encryptedCollectionsWithKeys$,
-      DECRYPTED_COLLECTION_DATA_KEY,
-      {
-        collectionService: this,
-      },
-    );
-  }
-}
diff --git a/libs/admin-console/src/common/collections/services/vnext-collection.state.ts b/libs/admin-console/src/common/collections/services/vnext-collection.state.ts
deleted file mode 100644
index 331c80436f7..00000000000
--- a/libs/admin-console/src/common/collections/services/vnext-collection.state.ts
+++ /dev/null
@@ -1,36 +0,0 @@
-import { Jsonify } from "type-fest";
-
-import {
-  COLLECTION_DATA,
-  DeriveDefinition,
-  UserKeyDefinition,
-} from "@bitwarden/common/platform/state";
-import { CollectionId, OrganizationId } from "@bitwarden/common/types/guid";
-import { OrgKey } from "@bitwarden/common/types/key";
-
-import { vNextCollectionService } from "../abstractions/vnext-collection.service";
-import { Collection, CollectionData, CollectionView } from "../models";
-
-export const ENCRYPTED_COLLECTION_DATA_KEY = UserKeyDefinition.record<CollectionData, CollectionId>(
-  COLLECTION_DATA,
-  "collections",
-  {
-    deserializer: (jsonData: Jsonify<CollectionData>) => CollectionData.fromJSON(jsonData),
-    clearOn: ["logout"],
-  },
-);
-
-export const DECRYPTED_COLLECTION_DATA_KEY = new DeriveDefinition<
-  [Collection[], Record<OrganizationId, OrgKey> | null],
-  CollectionView[],
-  { collectionService: vNextCollectionService }
->(COLLECTION_DATA, "decryptedCollections", {
-  deserializer: (obj) => obj.map((collection) => CollectionView.fromJSON(collection)),
-  derive: async ([collections, orgKeys], { collectionService }) => {
-    if (collections == null) {
-      return [];
-    }
-
-    return await collectionService.decryptMany(collections, orgKeys);
-  },
-});
diff --git a/libs/angular/src/vault/services/custom-nudges-services/empty-vault-nudge.service.ts b/libs/angular/src/vault/services/custom-nudges-services/empty-vault-nudge.service.ts
index d90ae06a75f..57df2d03398 100644
--- a/libs/angular/src/vault/services/custom-nudges-services/empty-vault-nudge.service.ts
+++ b/libs/angular/src/vault/services/custom-nudges-services/empty-vault-nudge.service.ts
@@ -27,7 +27,7 @@ export class EmptyVaultNudgeService extends DefaultSingleNudgeService {
       this.getNudgeStatus$(nudgeType, userId),
       this.cipherService.cipherListViews$(userId),
       this.organizationService.organizations$(userId),
-      this.collectionService.decryptedCollections$,
+      this.collectionService.decryptedCollections$(userId),
     ]).pipe(
       switchMap(([nudgeStatus, ciphers, orgs, collections]) => {
         const vaultHasContents = !(ciphers == null || ciphers.length === 0);
diff --git a/libs/angular/src/vault/services/custom-nudges-services/vault-settings-import-nudge.service.ts b/libs/angular/src/vault/services/custom-nudges-services/vault-settings-import-nudge.service.ts
index df0403ba4ab..2529fc40b73 100644
--- a/libs/angular/src/vault/services/custom-nudges-services/vault-settings-import-nudge.service.ts
+++ b/libs/angular/src/vault/services/custom-nudges-services/vault-settings-import-nudge.service.ts
@@ -27,7 +27,7 @@ export class VaultSettingsImportNudgeService extends DefaultSingleNudgeService {
       this.getNudgeStatus$(nudgeType, userId),
       this.cipherService.cipherViews$(userId),
       this.organizationService.organizations$(userId),
-      this.collectionService.decryptedCollections$,
+      this.collectionService.decryptedCollections$(userId),
     ]).pipe(
       switchMap(([nudgeStatus, ciphers, orgs, collections]) => {
         const vaultHasMoreThanOneItem = (ciphers?.length ?? 0) > 1;
diff --git a/libs/angular/src/vault/vault-filter/services/vault-filter.service.ts b/libs/angular/src/vault/vault-filter/services/vault-filter.service.ts
index 0d633be868e..9bc10e5ffc5 100644
--- a/libs/angular/src/vault/vault-filter/services/vault-filter.service.ts
+++ b/libs/angular/src/vault/vault-filter/services/vault-filter.service.ts
@@ -109,7 +109,12 @@ export class VaultFilterService implements DeprecatedVaultFilterServiceAbstracti
   }
 
   async buildCollections(organizationId?: string): Promise<DynamicTreeNode<CollectionView>> {
-    const storedCollections = await this.collectionService.getAllDecrypted();
+    const storedCollections = await firstValueFrom(
+      this.accountService.activeAccount$.pipe(
+        getUserId,
+        switchMap((userId) => this.collectionService.decryptedCollections$(userId)),
+      ),
+    );
     const orgs = await this.buildOrganizations();
     const defaulCollectionsFlagEnabled = await this.configService.getFeatureFlag(
       FeatureFlag.CreateDefaultLocation,
diff --git a/libs/common/src/key-management/vault-timeout/services/vault-timeout.service.ts b/libs/common/src/key-management/vault-timeout/services/vault-timeout.service.ts
index b5ee6a1fc0f..6d71bad0b0a 100644
--- a/libs/common/src/key-management/vault-timeout/services/vault-timeout.service.ts
+++ b/libs/common/src/key-management/vault-timeout/services/vault-timeout.service.ts
@@ -143,10 +143,6 @@ export class VaultTimeoutService implements VaultTimeoutServiceAbstraction {
       ),
     );
 
-    if (userId == null || userId === currentUserId) {
-      await this.collectionService.clearActiveUserCache();
-    }
-
     await this.searchService.clearIndex(lockingUserId);
 
     await this.folderService.clearDecryptedFolderState(lockingUserId);
diff --git a/libs/common/src/platform/misc/rxjs-operators.ts b/libs/common/src/platform/misc/rxjs-operators.ts
index 689b928cd29..423bcbb790f 100644
--- a/libs/common/src/platform/misc/rxjs-operators.ts
+++ b/libs/common/src/platform/misc/rxjs-operators.ts
@@ -13,9 +13,9 @@ export const getById = <TId, T extends { id: TId }>(id: TId) =>
  * @param id The IDs of the objects to return.
  * @returns An array containing objects with matching IDs, or an empty array if there are no matching objects.
  */
-export const getByIds = <TId, T extends { id: TId }>(ids: TId[]) => {
-  const idSet = new Set(ids);
+export const getByIds = <TId, T extends { id: TId | undefined }>(ids: TId[]) => {
+  const idSet = new Set(ids.filter((id) => id != null));
   return map<T[], T[]>((objects) => {
-    return objects.filter((o) => idSet.has(o.id));
+    return objects.filter((o) => o.id && idSet.has(o.id));
   });
 };
diff --git a/libs/common/src/platform/models/domain/domain-base.ts b/libs/common/src/platform/models/domain/domain-base.ts
index 08f5aca3a3c..58282a665af 100644
--- a/libs/common/src/platform/models/domain/domain-base.ts
+++ b/libs/common/src/platform/models/domain/domain-base.ts
@@ -14,7 +14,7 @@ export type DecryptedObject<
 > = Record<TDecryptedKeys, string> & Omit<TEncryptedObject, TDecryptedKeys>;
 
 // extracts shared keys from the domain and view types
-type EncryptableKeys<D extends Domain, V extends View> = (keyof D &
+export type EncryptableKeys<D extends Domain, V extends View> = (keyof D &
   ConditionalKeys<D, EncString | null>) &
   (keyof V & ConditionalKeys<V, string | null>);
 
diff --git a/libs/common/src/platform/state/state-definitions.ts b/libs/common/src/platform/state/state-definitions.ts
index a1c3ee35c5c..5fcb39e0356 100644
--- a/libs/common/src/platform/state/state-definitions.ts
+++ b/libs/common/src/platform/state/state-definitions.ts
@@ -164,9 +164,13 @@ export const SEND_ACCESS_AUTH_MEMORY = new StateDefinition("sendAccessAuth", "me
 
 // Vault
 
-export const COLLECTION_DATA = new StateDefinition("collection", "disk", {
+export const COLLECTION_DISK = new StateDefinition("collection", "disk", {
   web: "memory",
 });
+export const COLLECTION_MEMORY = new StateDefinition("decryptedCollections", "memory", {
+  browser: "memory-large-object",
+});
+
 export const FOLDER_DISK = new StateDefinition("folder", "disk", { web: "memory" });
 export const FOLDER_MEMORY = new StateDefinition("decryptedFolders", "memory", {
   browser: "memory-large-object",
diff --git a/libs/common/src/platform/sync/core-sync.service.ts b/libs/common/src/platform/sync/core-sync.service.ts
index 63f9ab17fb3..40419a343da 100644
--- a/libs/common/src/platform/sync/core-sync.service.ts
+++ b/libs/common/src/platform/sync/core-sync.service.ts
@@ -172,7 +172,11 @@ export abstract class CoreSyncService implements SyncService {
           notification.collectionIds != null &&
           notification.collectionIds.length > 0
         ) {
-          const collections = await this.collectionService.getAll();
+          const collections = await firstValueFrom(
+            this.collectionService
+              .encryptedCollections$(userId)
+              .pipe(map((collections) => collections ?? [])),
+          );
           if (collections != null) {
             for (let i = 0; i < collections.length; i++) {
               if (notification.collectionIds.indexOf(collections[i].id) > -1) {
diff --git a/libs/common/src/vault/services/cipher-authorization.service.spec.ts b/libs/common/src/vault/services/cipher-authorization.service.spec.ts
index 43e68bfc71f..78fe6f18913 100644
--- a/libs/common/src/vault/services/cipher-authorization.service.spec.ts
+++ b/libs/common/src/vault/services/cipher-authorization.service.spec.ts
@@ -119,7 +119,7 @@ describe("CipherAuthorizationService", () => {
 
       cipherAuthorizationService.canRestoreCipher$(cipher, false).subscribe((result) => {
         expect(result).toBe(false);
-        expect(mockCollectionService.decryptedCollectionViews$).not.toHaveBeenCalled();
+        expect(mockCollectionService.decryptedCollections$).not.toHaveBeenCalled();
         done();
       });
     });
@@ -133,7 +133,7 @@ describe("CipherAuthorizationService", () => {
 
       cipherAuthorizationService.canRestoreCipher$(cipher, false).subscribe((result) => {
         expect(result).toBe(true);
-        expect(mockCollectionService.decryptedCollectionViews$).not.toHaveBeenCalled();
+        expect(mockCollectionService.decryptedCollections$).not.toHaveBeenCalled();
         done();
       });
     });
@@ -198,6 +198,7 @@ describe("CipherAuthorizationService", () => {
 
       cipherAuthorizationService.canDeleteCipher$(cipher, false).subscribe((result) => {
         expect(result).toBe(false);
+        expect(mockCollectionService.decryptedCollections$).not.toHaveBeenCalled();
         done();
       });
     });
@@ -251,7 +252,7 @@ describe("CipherAuthorizationService", () => {
           createMockCollection("col1", true),
           createMockCollection("col2", false),
         ];
-        mockCollectionService.decryptedCollectionViews$.mockReturnValue(
+        mockCollectionService.decryptedCollections$.mockReturnValue(
           of(allCollections as CollectionView[]),
         );
 
@@ -270,7 +271,7 @@ describe("CipherAuthorizationService", () => {
           createMockCollection("col1", false),
           createMockCollection("col2", false),
         ];
-        mockCollectionService.decryptedCollectionViews$.mockReturnValue(
+        mockCollectionService.decryptedCollections$.mockReturnValue(
           of(allCollections as CollectionView[]),
         );
 
diff --git a/libs/common/src/vault/services/cipher-authorization.service.ts b/libs/common/src/vault/services/cipher-authorization.service.ts
index 2933e94c302..06177629de5 100644
--- a/libs/common/src/vault/services/cipher-authorization.service.ts
+++ b/libs/common/src/vault/services/cipher-authorization.service.ts
@@ -1,11 +1,11 @@
-import { map, Observable, of, shareReplay, switchMap } from "rxjs";
+import { combineLatest, map, Observable, of, shareReplay, switchMap } from "rxjs";
 
 // This import has been flagged as unallowed for this class. It may be involved in a circular dependency loop.
 // eslint-disable-next-line no-restricted-imports
 import { CollectionService } from "@bitwarden/admin-console/common";
 import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
-import { CollectionId } from "@bitwarden/common/types/guid";
+import { getByIds } from "@bitwarden/common/platform/misc";
 
 import { getUserId } from "../../auth/services/account.service";
 import { CipherLike } from "../types/cipher-like";
@@ -125,8 +125,11 @@ export class DefaultCipherAuthorizationService implements CipherAuthorizationSer
       return of(true);
     }
 
-    return this.organization$(cipher).pipe(
-      switchMap((organization) => {
+    return combineLatest([
+      this.organization$(cipher),
+      this.accountService.activeAccount$.pipe(getUserId),
+    ]).pipe(
+      switchMap(([organization, userId]) => {
         // Admins and custom users can always clone when in the Admin Console
         if (
           isAdminConsoleAction &&
@@ -136,9 +139,10 @@ export class DefaultCipherAuthorizationService implements CipherAuthorizationSer
           return of(true);
         }
 
-        return this.collectionService
-          .decryptedCollectionViews$(cipher.collectionIds as CollectionId[])
-          .pipe(map((allCollections) => allCollections.some((collection) => collection.manage)));
+        return this.collectionService.decryptedCollections$(userId).pipe(
+          getByIds(cipher.collectionIds),
+          map((allCollections) => allCollections.some((collection) => collection.manage)),
+        );
       }),
       shareReplay({ bufferSize: 1, refCount: false }),
     );
diff --git a/libs/importer/src/components/import.component.ts b/libs/importer/src/components/import.component.ts
index 7bac6b0e0a5..63b35e979bd 100644
--- a/libs/importer/src/components/import.component.ts
+++ b/libs/importer/src/components/import.component.ts
@@ -300,7 +300,7 @@ export class ImportComponent implements OnInit, OnDestroy, AfterViewInit {
     // Retrieve all organizations a user is a member of and has collections they can manage
     const userId = await firstValueFrom(getUserId(this.accountService.activeAccount$));
     this.organizations$ = this.organizationService.memberOrganizations$(userId).pipe(
-      combineLatestWith(this.collectionService.decryptedCollections$),
+      combineLatestWith(this.collectionService.decryptedCollections$(userId)),
       map(([organizations, collections]) =>
         organizations
           .filter((org) => collections.some((c) => c.organizationId === org.id && c.manage))
@@ -318,15 +318,15 @@ export class ImportComponent implements OnInit, OnDestroy, AfterViewInit {
         }
 
         if (value) {
-          this.collections$ = Utils.asyncToObservable(() =>
-            this.collectionService
-              .getAllDecrypted()
-              .then((decryptedCollections) =>
+          this.collections$ = this.collectionService
+            .decryptedCollections$(userId)
+            .pipe(
+              map((decryptedCollections) =>
                 decryptedCollections
                   .filter((c2) => c2.organizationId === value && c2.manage)
                   .sort(Utils.getSortFunction(this.i18nService, "name")),
               ),
-          );
+            );
         }
       });
     this.formGroup.controls.vaultSelector.setValue("myVault");
diff --git a/libs/importer/src/services/import.service.ts b/libs/importer/src/services/import.service.ts
index c6bff607633..5be597c0591 100644
--- a/libs/importer/src/services/import.service.ts
+++ b/libs/importer/src/services/import.service.ts
@@ -406,7 +406,7 @@ export class ImportService implements ImportServiceAbstraction {
     if (importResult.collections != null) {
       for (let i = 0; i < importResult.collections.length; i++) {
         importResult.collections[i].organizationId = organizationId;
-        const c = await this.collectionService.encrypt(importResult.collections[i]);
+        const c = await this.collectionService.encrypt(importResult.collections[i], activeUserId);
         request.collections.push(new CollectionWithIdRequest(c));
       }
     }
diff --git a/libs/tools/export/vault-export/vault-export-core/src/services/org-vault-export.service.ts b/libs/tools/export/vault-export/vault-export-core/src/services/org-vault-export.service.ts
index 61fbcd261f4..8a518cb1304 100644
--- a/libs/tools/export/vault-export/vault-export-core/src/services/org-vault-export.service.ts
+++ b/libs/tools/export/vault-export/vault-export-core/src/services/org-vault-export.service.ts
@@ -1,7 +1,7 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
 import * as papa from "papaparse";
-import { firstValueFrom } from "rxjs";
+import { firstValueFrom, map } from "rxjs";
 
 import {
   CollectionService,
@@ -225,15 +225,8 @@ export class OrganizationVaultExportService
   ): Promise<string> {
     let decCiphers: CipherView[] = [];
     let allDecCiphers: CipherView[] = [];
-    let decCollections: CollectionView[] = [];
     const promises = [];
 
-    promises.push(
-      this.collectionService.getAllDecrypted().then(async (collections) => {
-        decCollections = collections.filter((c) => c.organizationId == organizationId && c.manage);
-      }),
-    );
-
     promises.push(
       this.cipherService.getAllDecrypted(activeUserId).then((ciphers) => {
         allDecCiphers = ciphers;
@@ -241,6 +234,16 @@ export class OrganizationVaultExportService
     );
     await Promise.all(promises);
 
+    const decCollections: CollectionView[] = await firstValueFrom(
+      this.collectionService
+        .decryptedCollections$(activeUserId)
+        .pipe(
+          map((collections) =>
+            collections.filter((c) => c.organizationId == organizationId && c.manage),
+          ),
+        ),
+    );
+
     const restrictions = await firstValueFrom(this.restrictedItemTypesService.restricted$);
 
     decCiphers = allDecCiphers.filter(
@@ -263,15 +266,8 @@ export class OrganizationVaultExportService
   ): Promise<string> {
     let encCiphers: Cipher[] = [];
     let allCiphers: Cipher[] = [];
-    let encCollections: Collection[] = [];
     const promises = [];
 
-    promises.push(
-      this.collectionService.getAll().then((collections) => {
-        encCollections = collections.filter((c) => c.organizationId == organizationId && c.manage);
-      }),
-    );
-
     promises.push(
       this.cipherService.getAll(activeUserId).then((ciphers) => {
         allCiphers = ciphers;
@@ -280,6 +276,15 @@ export class OrganizationVaultExportService
 
     await Promise.all(promises);
 
+    const encCollections: Collection[] = await firstValueFrom(
+      this.collectionService.encryptedCollections$(activeUserId).pipe(
+        map((collections) => collections ?? []),
+        map((collections) =>
+          collections.filter((c) => c.organizationId == organizationId && c.manage),
+        ),
+      ),
+    );
+
     const restrictions = await firstValueFrom(this.restrictedItemTypesService.restricted$);
 
     encCiphers = allCiphers.filter(
diff --git a/libs/tools/export/vault-export/vault-export-ui/src/components/export.component.ts b/libs/tools/export/vault-export/vault-export-ui/src/components/export.component.ts
index 6af6d5121fb..0b5d3d70834 100644
--- a/libs/tools/export/vault-export/vault-export-ui/src/components/export.component.ts
+++ b/libs/tools/export/vault-export/vault-export-ui/src/components/export.component.ts
@@ -272,25 +272,29 @@ export class ExportComponent implements OnInit, OnDestroy, AfterViewInit {
       return;
     }
 
-    this.organizations$ = combineLatest({
-      collections: this.collectionService.decryptedCollections$,
-      memberOrganizations: this.accountService.activeAccount$.pipe(
+    this.organizations$ = this.accountService.activeAccount$
+      .pipe(
         getUserId,
-        switchMap((userId) => this.organizationService.memberOrganizations$(userId)),
-      ),
-    }).pipe(
-      map(({ collections, memberOrganizations }) => {
-        const managedCollectionsOrgIds = new Set(
-          collections.filter((c) => c.manage).map((c) => c.organizationId),
-        );
-        // Filter organizations that exist in managedCollectionsOrgIds
-        const filteredOrgs = memberOrganizations.filter((org) =>
-          managedCollectionsOrgIds.has(org.id),
-        );
-        // Sort the filtered organizations based on the name
-        return filteredOrgs.sort(Utils.getSortFunction(this.i18nService, "name"));
-      }),
-    );
+        switchMap((userId) =>
+          combineLatest({
+            collections: this.collectionService.decryptedCollections$(userId),
+            memberOrganizations: this.organizationService.memberOrganizations$(userId),
+          }),
+        ),
+      )
+      .pipe(
+        map(({ collections, memberOrganizations }) => {
+          const managedCollectionsOrgIds = new Set(
+            collections.filter((c) => c.manage).map((c) => c.organizationId),
+          );
+          // Filter organizations that exist in managedCollectionsOrgIds
+          const filteredOrgs = memberOrganizations.filter((org) =>
+            managedCollectionsOrgIds.has(org.id),
+          );
+          // Sort the filtered organizations based on the name
+          return filteredOrgs.sort(Utils.getSortFunction(this.i18nService, "name"));
+        }),
+      );
 
     combineLatest([
       this.disablePersonalVaultExportPolicy$,
diff --git a/libs/vault/src/cipher-form/services/default-cipher-form-config.service.ts b/libs/vault/src/cipher-form/services/default-cipher-form-config.service.ts
index c47e5842987..04a2bb957ec 100644
--- a/libs/vault/src/cipher-form/services/default-cipher-form-config.service.ts
+++ b/libs/vault/src/cipher-form/services/default-cipher-form-config.service.ts
@@ -48,9 +48,10 @@ export class DefaultCipherFormConfigService implements CipherFormConfigService {
       await firstValueFrom(
         combineLatest([
           this.organizations$(activeUserId),
-          this.collectionService.encryptedCollections$.pipe(
+          this.collectionService.encryptedCollections$(activeUserId).pipe(
+            map((collections) => collections ?? []),
             switchMap((c) =>
-              this.collectionService.decryptedCollections$.pipe(
+              this.collectionService.decryptedCollections$(activeUserId).pipe(
                 filter((d) => d.length === c.length), // Ensure all collections have been decrypted
               ),
             ),
diff --git a/libs/vault/src/cipher-view/cipher-view.component.ts b/libs/vault/src/cipher-view/cipher-view.component.ts
index 66910ad8ac7..4f54e5d393a 100644
--- a/libs/vault/src/cipher-view/cipher-view.component.ts
+++ b/libs/vault/src/cipher-view/cipher-view.component.ts
@@ -16,7 +16,8 @@ import { getUserId } from "@bitwarden/common/auth/services/account.service";
 import { isCardExpired } from "@bitwarden/common/autofill/utils";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
-import { CipherId, CollectionId, EmergencyAccessId, UserId } from "@bitwarden/common/types/guid";
+import { getByIds } from "@bitwarden/common/platform/misc";
+import { CipherId, EmergencyAccessId, UserId } from "@bitwarden/common/types/guid";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
 import { FolderService } from "@bitwarden/common/vault/abstractions/folder/folder.service.abstraction";
 import { CipherType } from "@bitwarden/common/vault/enums";
@@ -143,6 +144,8 @@ export class CipherViewComponent implements OnChanges, OnDestroy {
       return;
     }
 
+    const userId = await firstValueFrom(this.activeUserId$);
+
     // Load collections if not provided and the cipher has collectionIds
     if (
       this.cipher.collectionIds &&
@@ -150,14 +153,12 @@ export class CipherViewComponent implements OnChanges, OnDestroy {
       (!this.collections || this.collections.length === 0)
     ) {
       this.collections = await firstValueFrom(
-        this.collectionService.decryptedCollectionViews$(
-          this.cipher.collectionIds as CollectionId[],
-        ),
+        this.collectionService
+          .decryptedCollections$(userId)
+          .pipe(getByIds(this.cipher.collectionIds)),
       );
     }
 
-    const userId = await firstValueFrom(this.activeUserId$);
-
     if (this.cipher.organizationId) {
       this.organization$ = this.organizationService
         .organizations$(userId)
diff --git a/libs/vault/src/components/assign-collections.component.ts b/libs/vault/src/components/assign-collections.component.ts
index 124dc783034..b2bd6e31ee5 100644
--- a/libs/vault/src/components/assign-collections.component.ts
+++ b/libs/vault/src/components/assign-collections.component.ts
@@ -435,12 +435,14 @@ export class AssignCollectionsComponent implements OnInit, OnDestroy, AfterViewI
    * @returns An observable of the collections for the organization.
    */
   private getCollectionsForOrganization(orgId: OrganizationId): Observable<CollectionView[]> {
-    return combineLatest([
-      this.collectionService.decryptedCollections$,
-      this.accountService.activeAccount$.pipe(
-        switchMap((account) => this.organizationService.organizations$(account?.id)),
+    return this.accountService.activeAccount$.pipe(
+      getUserId,
+      switchMap((userId) =>
+        combineLatest([
+          this.collectionService.decryptedCollections$(userId),
+          this.organizationService.organizations$(userId),
+        ]),
       ),
-    ]).pipe(
       map(([collections, organizations]) => {
         const org = organizations.find((o) => o.id === orgId);
         this.orgName = org.name;

From df8e0ed094ca46c4644777b57b5d8762929410c9 Mon Sep 17 00:00:00 2001
From: Vijay Oommen <voommen@livefront.com>
Date: Thu, 24 Jul 2025 08:53:03 -0500
Subject: [PATCH 224/239] [PM-23825] setup crowdstrike card (#15728)

---
 .../integrations/integrations.component.ts    | 34 ++++++++++++--
 .../integration-card.component.html           | 46 ++++++++++++++-----
 .../integration-card.component.spec.ts        | 30 +++++++++++-
 .../integration-card.component.ts             | 13 ++++++
 .../integration-grid.component.html           |  3 ++
 .../shared/components/integrations/models.ts  |  3 ++
 .../integrations/logo-crowdstrike-black.svg   | 22 +++++++++
 apps/web/src/locales/en/messages.json         | 12 +++++
 libs/common/src/enums/feature-flag.enum.ts    |  6 +++
 9 files changed, 153 insertions(+), 16 deletions(-)
 create mode 100644 apps/web/src/images/integrations/logo-crowdstrike-black.svg

diff --git a/apps/web/src/app/admin-console/organizations/integrations/integrations.component.ts b/apps/web/src/app/admin-console/organizations/integrations/integrations.component.ts
index e6a62b1db73..c0a57c82954 100644
--- a/apps/web/src/app/admin-console/organizations/integrations/integrations.component.ts
+++ b/apps/web/src/app/admin-console/organizations/integrations/integrations.component.ts
@@ -1,8 +1,8 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
-import { Component, OnInit } from "@angular/core";
+import { Component, OnDestroy, OnInit } from "@angular/core";
 import { ActivatedRoute } from "@angular/router";
-import { Observable, switchMap } from "rxjs";
+import { Observable, Subject, switchMap, takeUntil } from "rxjs";
 
 import {
   getOrganizationById,
@@ -11,6 +11,8 @@ import {
 import { Organization } from "@bitwarden/common/admin-console/models/domain/organization";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { IntegrationType } from "@bitwarden/common/enums";
+import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 
 import { HeaderModule } from "../../../layouts/header/header.module";
 import { SharedModule } from "../../../shared/shared.module";
@@ -30,10 +32,12 @@ import { Integration } from "../shared/components/integrations/models";
     FilterIntegrationsPipe,
   ],
 })
-export class AdminConsoleIntegrationsComponent implements OnInit {
+export class AdminConsoleIntegrationsComponent implements OnInit, OnDestroy {
   integrationsList: Integration[] = [];
   tabIndex: number;
   organization$: Observable<Organization>;
+  isEventBasedIntegrationsEnabled: boolean = false;
+  private destroy$ = new Subject<void>();
 
   ngOnInit(): void {
     this.organization$ = this.route.params.pipe(
@@ -53,7 +57,15 @@ export class AdminConsoleIntegrationsComponent implements OnInit {
     private route: ActivatedRoute,
     private organizationService: OrganizationService,
     private accountService: AccountService,
+    private configService: ConfigService,
   ) {
+    this.configService
+      .getFeatureFlag$(FeatureFlag.EventBasedOrganizationIntegrations)
+      .pipe(takeUntil(this.destroy$))
+      .subscribe((isEnabled) => {
+        this.isEventBasedIntegrationsEnabled = isEnabled;
+      });
+
     this.integrationsList = [
       {
         name: "AD FS",
@@ -229,6 +241,22 @@ export class AdminConsoleIntegrationsComponent implements OnInit {
         type: IntegrationType.DEVICE,
       },
     ];
+
+    if (this.isEventBasedIntegrationsEnabled) {
+      this.integrationsList.push({
+        name: "Crowdstrike",
+        linkURL: "",
+        image: "../../../../../../../images/integrations/logo-crowdstrike-black.svg",
+        type: IntegrationType.EVENT,
+        description: "crowdstrikeEventIntegrationDesc",
+        isConnected: false,
+        canSetupConnection: true,
+      });
+    }
+  }
+  ngOnDestroy(): void {
+    this.destroy$.next();
+    this.destroy$.complete();
   }
 
   get IntegrationType(): typeof IntegrationType {
diff --git a/apps/web/src/app/admin-console/organizations/shared/components/integrations/integration-card/integration-card.component.html b/apps/web/src/app/admin-console/organizations/shared/components/integrations/integration-card/integration-card.component.html
index e96fbef270c..2c0db1cf933 100644
--- a/apps/web/src/app/admin-console/organizations/shared/components/integrations/integration-card/integration-card.component.html
+++ b/apps/web/src/app/admin-console/organizations/shared/components/integrations/integration-card/integration-card.component.html
@@ -17,16 +17,40 @@
     </div>
   </div>
   <div class="tw-p-5">
-    <h3 class="tw-text-main tw-text-lg tw-font-semibold">{{ name }}</h3>
-    <a
-      class="tw-block tw-mb-0 tw-font-bold hover:tw-no-underline focus:tw-outline-none after:tw-content-[''] after:tw-block after:tw-absolute after:tw-size-full after:tw-left-0 after:tw-top-0"
-      [href]="linkURL"
-      rel="noopener noreferrer"
-      target="_blank"
-    >
-    </a>
-    <span *ngIf="showNewBadge()" bitBadge class="tw-mt-3" variant="secondary">
-      {{ "new" | i18n }}
-    </span>
+    <h3 class="tw-text-main tw-text-lg tw-font-semibold">
+      {{ name }}
+      @if (showConnectedBadge()) {
+        <span class="tw-ml-3">
+          @if (isConnected) {
+            <span bitBadge variant="success">{{ "on" | i18n }}</span>
+          }
+          @if (!isConnected) {
+            <span bitBadge>{{ "off" | i18n }}</span>
+          }
+        </span>
+      }
+    </h3>
+    <p class="tw-mb-0">{{ description }}</p>
+
+    @if (canSetupConnection) {
+      <button type="button" class="tw-mt-3" bitButton (click)="setupConnection(name)">
+        <span>{{ "connectIntegrationButtonDesc" | i18n: name }}</span>
+      </button>
+    }
+
+    @if (linkURL) {
+      <a
+        class="tw-block tw-mb-0 tw-font-bold hover:tw-no-underline focus:tw-outline-none after:tw-content-[''] after:tw-block after:tw-absolute after:tw-size-full after:tw-left-0 after:tw-top-0"
+        [href]="linkURL"
+        rel="noopener noreferrer"
+        target="_blank"
+      >
+      </a>
+    }
+    @if (showNewBadge()) {
+      <span bitBadge class="tw-mt-3" variant="secondary">
+        {{ "new" | i18n }}
+      </span>
+    }
   </div>
 </div>
diff --git a/apps/web/src/app/admin-console/organizations/shared/components/integrations/integration-card/integration-card.component.spec.ts b/apps/web/src/app/admin-console/organizations/shared/components/integrations/integration-card/integration-card.component.spec.ts
index ec057f25176..16b7eb142e8 100644
--- a/apps/web/src/app/admin-console/organizations/shared/components/integrations/integration-card/integration-card.component.spec.ts
+++ b/apps/web/src/app/admin-console/organizations/shared/components/integrations/integration-card/integration-card.component.spec.ts
@@ -16,6 +16,7 @@ import { IntegrationCardComponent } from "./integration-card.component";
 describe("IntegrationCardComponent", () => {
   let component: IntegrationCardComponent;
   let fixture: ComponentFixture<IntegrationCardComponent>;
+  const mockI18nService = mock<I18nService>();
 
   const systemTheme$ = new BehaviorSubject<ThemeType>(ThemeType.Light);
   const usersPreferenceTheme$ = new BehaviorSubject<ThemeType>(ThemeType.Light);
@@ -41,7 +42,7 @@ describe("IntegrationCardComponent", () => {
         },
         {
           provide: I18nService,
-          useValue: mock<I18nService>(),
+          useValue: mockI18nService,
         },
       ],
     }).compileComponents();
@@ -55,6 +56,7 @@ describe("IntegrationCardComponent", () => {
     component.image = "test-image.png";
     component.linkURL = "https://example.com/";
 
+    mockI18nService.t.mockImplementation((key) => key);
     fixture.detectChanges();
   });
 
@@ -67,7 +69,7 @@ describe("IntegrationCardComponent", () => {
   it("renders card body", () => {
     const name = fixture.nativeElement.querySelector("h3");
 
-    expect(name.textContent).toBe("Integration Name");
+    expect(name.textContent).toContain("Integration Name");
   });
 
   it("assigns external rel attribute", () => {
@@ -182,4 +184,28 @@ describe("IntegrationCardComponent", () => {
       });
     });
   });
+
+  describe("connected badge", () => {
+    it("shows connected badge when isConnected is true", () => {
+      component.isConnected = true;
+
+      expect(component.showConnectedBadge()).toBe(true);
+    });
+
+    it("does not show connected badge when isConnected is false", () => {
+      component.isConnected = false;
+      fixture.detectChanges();
+      const name = fixture.nativeElement.querySelector("h3 > span > span > span");
+
+      expect(name.textContent).toContain("off");
+      // when isConnected is true/false, the badge should be shown as on/off
+      // when isConnected is undefined, the badge should not be shown
+      expect(component.showConnectedBadge()).toBe(true);
+    });
+
+    it("does not show connected badge when isConnected is undefined", () => {
+      component.isConnected = undefined;
+      expect(component.showConnectedBadge()).toBe(false);
+    });
+  });
 });
diff --git a/apps/web/src/app/admin-console/organizations/shared/components/integrations/integration-card/integration-card.component.ts b/apps/web/src/app/admin-console/organizations/shared/components/integrations/integration-card/integration-card.component.ts
index 20e4028e9df..4188579bef9 100644
--- a/apps/web/src/app/admin-console/organizations/shared/components/integrations/integration-card/integration-card.component.ts
+++ b/apps/web/src/app/admin-console/organizations/shared/components/integrations/integration-card/integration-card.component.ts
@@ -41,6 +41,9 @@ export class IntegrationCardComponent implements AfterViewInit, OnDestroy {
    * @example "2024-12-31"
    */
   @Input() newBadgeExpiration?: string;
+  @Input() description?: string;
+  @Input() isConnected?: boolean;
+  @Input() canSetupConnection?: boolean;
 
   constructor(
     private themeStateService: ThemeStateService,
@@ -93,4 +96,14 @@ export class IntegrationCardComponent implements AfterViewInit, OnDestroy {
 
     return expirationDate > new Date();
   }
+
+  showConnectedBadge(): boolean {
+    return this.isConnected !== undefined;
+  }
+
+  setupConnection(app: string) {
+    // This method can be used to handle the connection logic for the integration
+    // For example, it could open a modal or redirect to a setup page
+    this.isConnected = !this.isConnected; // Toggle connection state for demonstration
+  }
 }
diff --git a/apps/web/src/app/admin-console/organizations/shared/components/integrations/integration-grid/integration-grid.component.html b/apps/web/src/app/admin-console/organizations/shared/components/integrations/integration-grid/integration-grid.component.html
index 4b4b3ac972b..b4eaff993f0 100644
--- a/apps/web/src/app/admin-console/organizations/shared/components/integrations/integration-grid/integration-grid.component.html
+++ b/apps/web/src/app/admin-console/organizations/shared/components/integrations/integration-grid/integration-grid.component.html
@@ -13,6 +13,9 @@
       [imageDarkMode]="integration.imageDarkMode"
       [externalURL]="integration.type === IntegrationType.SDK"
       [newBadgeExpiration]="integration.newBadgeExpiration"
+      [description]="integration.description | i18n"
+      [isConnected]="integration.isConnected"
+      [canSetupConnection]="integration.canSetupConnection"
     ></app-integration-card>
   </li>
 </ul>
diff --git a/apps/web/src/app/admin-console/organizations/shared/components/integrations/models.ts b/apps/web/src/app/admin-console/organizations/shared/components/integrations/models.ts
index 765b1d44a2e..a231523b578 100644
--- a/apps/web/src/app/admin-console/organizations/shared/components/integrations/models.ts
+++ b/apps/web/src/app/admin-console/organizations/shared/components/integrations/models.ts
@@ -17,4 +17,7 @@ export type Integration = {
    * @example "2024-12-31"
    */
   newBadgeExpiration?: string;
+  description?: string;
+  isConnected?: boolean;
+  canSetupConnection?: boolean;
 };
diff --git a/apps/web/src/images/integrations/logo-crowdstrike-black.svg b/apps/web/src/images/integrations/logo-crowdstrike-black.svg
new file mode 100644
index 00000000000..25875d705cb
--- /dev/null
+++ b/apps/web/src/images/integrations/logo-crowdstrike-black.svg
@@ -0,0 +1,22 @@
+<svg width="185" height="41" viewBox="0 0 185 41" fill="none" xmlns="http://www.w3.org/2000/svg">
+<g clip-path="url(#clip0_265_4075)">
+<path fill-rule="evenodd" clip-rule="evenodd" d="M29.944 23.2703V23.6027C28.8221 24.9324 27.3635 25.8189 25.7928 26.2621C24.1099 24.9324 22.4269 23.7135 20.5196 22.4946C19.9586 22.1621 19.5099 21.8297 18.8367 21.3865C17.8269 20.7216 16.5928 19.9459 15.3586 19.0594C15.3586 19.0594 15.3586 18.9486 15.3586 18.8378C15.3586 18.8378 15.3586 18.6162 15.3586 18.5054C15.3586 13.9621 18.9489 10.6378 23.6611 10.6378C26.1294 10.6378 28.3733 11.7459 29.944 13.5189V13.8513L27.1391 16.1784H26.8025C26.0172 15.2919 24.783 14.7378 23.5489 14.7378C22.5391 14.7378 21.6416 15.0703 20.9684 15.8459C20.2952 16.5108 19.9586 17.5081 19.9586 18.5054C19.9586 19.5027 20.2952 20.3892 20.9684 21.1648C21.6416 21.8297 22.5391 22.273 23.5489 22.273C24.783 22.273 25.905 21.7189 26.8025 20.8324H27.1391L29.944 23.2703ZM21.5294 26.2621C19.7343 25.9297 18.1635 24.9324 17.0416 23.4919C17.1538 23.4919 17.266 23.6027 17.3782 23.7135C17.6025 23.8243 17.7147 23.9351 17.9391 24.0459C19.0611 24.8216 20.2952 25.4865 21.5294 26.1513V26.2621Z" fill="black"/>
+<path fill-rule="evenodd" clip-rule="evenodd" d="M46.1002 22.273L46.7734 25.2649V25.5973C46.1002 26.0406 45.427 26.2622 44.6416 26.2622C42.7343 26.2622 41.7246 25.819 40.3782 23.8244C39.7051 22.8271 38.4709 20.7217 37.349 20.7217H36.9002V26.0406H32.188V10.8595H39.3685C43.5197 10.8595 45.7636 12.8541 45.7636 15.9568C45.7636 17.8406 44.6416 19.5027 42.8465 20.1676C43.2953 20.5 43.7441 20.9433 44.0807 21.3865C44.4173 21.8298 44.6416 22.3838 45.2026 22.3838C45.427 22.3838 45.6514 22.3838 45.8758 22.273H46.1002ZM40.827 16.0676C40.827 16.5108 40.7148 16.8433 40.3782 17.1757C40.0416 17.5081 39.5929 17.619 39.1441 17.619H36.9002V14.5163H39.1441C39.5929 14.5163 40.0416 14.6271 40.3782 14.9595C40.7148 15.2919 40.827 15.7352 40.827 16.0676Z" fill="black"/>
+<path fill-rule="evenodd" clip-rule="evenodd" d="M55.1878 10.7487C60.0122 10.7487 63.6025 14.073 63.6025 18.5054C63.6025 22.9378 60.0122 26.2622 55.1878 26.2622C50.3634 26.2622 46.7732 22.9378 46.7732 18.5054C46.7732 14.073 50.3634 10.7487 55.1878 10.7487ZM57.0951 21.8297C58.2171 21.1649 59.0025 19.946 58.8903 18.5054C58.8903 17.1757 58.2171 15.9568 57.0951 15.1811C55.9732 14.5162 54.5147 14.5162 53.2805 15.1811C52.1586 15.846 51.3732 17.0649 51.4854 18.5054C51.4854 19.8351 52.1586 21.0541 53.2805 21.8297C54.4025 22.4946 55.861 22.4946 57.0951 21.8297Z" fill="black"/>
+<path d="M85.8172 10.7487H81.5538L78.9733 19.3919L76.1684 10.7487H73.4757L70.6708 19.2811L68.0903 10.7487H63.8269L63.6025 11.0811L69.1001 26.2622H71.7928L74.8221 17.8405L77.9635 26.2622H80.6562L86.1538 11.0811L85.9294 10.7487H85.8172Z" fill="black"/>
+<path fill-rule="evenodd" clip-rule="evenodd" d="M95.1293 10.7487C99.9537 10.7487 102.871 13.8514 102.871 18.5054C102.871 23.1595 99.9537 26.2622 95.1293 26.2622H88.2854V10.7487H95.1293ZM94.9049 22.4946C96.8122 22.4946 98.2708 21.0541 98.2708 18.5054C98.2708 15.9568 96.8122 14.5162 94.9049 14.5162H92.661V22.3838H94.9049V22.4946Z" fill="black"/>
+<path d="M128.339 14.6271H133.163V10.8595H118.578V14.6271H123.403V26.373H128.227V14.6271H128.339Z" fill="black"/>
+<path fill-rule="evenodd" clip-rule="evenodd" d="M141.241 10.7487C145.281 10.7487 147.412 12.7433 147.412 15.9568C147.412 17.9514 146.29 19.3919 144.607 20.1676L147.749 25.9297L147.524 26.2622H142.924L140.007 20.8324H138.885V26.2622H134.285V10.7487H141.241ZM142.7 16.1784C142.7 16.6216 142.588 17.0649 142.251 17.2865C141.915 17.6189 141.466 17.7297 141.129 17.7297H138.998V14.627H141.129C141.578 14.627 142.027 14.7378 142.251 15.0703C142.588 15.4027 142.7 15.846 142.7 16.2892V16.1784Z" fill="black"/>
+<path d="M149.993 10.7487H154.48V26.2622H149.993V10.7487Z" fill="black"/>
+<path d="M165.588 17.7298L170.861 11.1919L170.637 10.8595H165.7L161.325 16.4V10.8595H156.612V26.373H161.325V21.6081L162.222 20.6108L166.149 26.373H171.085L171.31 26.0406L165.588 17.8406V17.7298Z" fill="black"/>
+<path d="M184.661 14.6271V10.8595H173.554V26.373H184.773V22.6054H178.042V20.5H183.09V16.9541H178.042V14.8487H184.773L184.661 14.6271Z" fill="black"/>
+<path d="M110.949 26.2622C114.427 26.2622 117.456 24.6 117.456 21.4973C117.456 18.3946 114.427 17.2865 111.734 16.5108C110.724 16.1784 109.602 15.846 109.602 15.1811C109.602 14.5162 110.163 14.2946 111.173 14.2946C112.744 14.2946 114.09 15.1811 114.763 15.846H115.1L117.344 13.2973V12.9649C116.11 11.746 113.754 10.7487 111.061 10.7487C108.368 10.7487 104.778 12.6324 104.778 15.4027C104.778 18.173 107.583 19.6135 110.051 20.2784C111.622 20.7216 112.632 20.7216 112.632 21.6081C112.632 22.4946 111.846 22.4946 110.724 22.4946C109.602 22.4946 107.471 21.6081 106.573 20.8324H106.237L103.993 23.4919V23.8243C105.451 25.3757 107.92 26.373 110.949 26.373" fill="black"/>
+<path d="M32.1878 40.6675C31.0659 38.2297 28.822 35.0162 20.0707 30.4729C16.0317 28.2567 9.18782 24.9324 3.01709 18.5054C3.57807 20.8324 6.49514 25.9297 18.8366 32.2459C22.2025 34.0189 28.0366 35.7919 32.1878 40.6675Z" fill="black"/>
+<path d="M31.0659 36.2352C30.0561 33.2433 28.261 29.4757 19.5098 23.9352C15.2464 21.1649 8.96344 17.619 0.773193 8.53247C1.33417 10.9703 3.91466 17.2865 17.0415 25.4865C21.3049 28.4784 26.9147 30.2514 31.0659 36.2352Z" fill="black"/>
+</g>
+<defs>
+<clipPath id="clip0_265_4075">
+<rect width="184" height="41" fill="white" transform="translate(0.773193)"/>
+</clipPath>
+</defs>
+</svg>
diff --git a/apps/web/src/locales/en/messages.json b/apps/web/src/locales/en/messages.json
index b143d4da56a..f34d6e41b37 100644
--- a/apps/web/src/locales/en/messages.json
+++ b/apps/web/src/locales/en/messages.json
@@ -9478,6 +9478,9 @@
   "deviceManagementDesc": {
     "message": "Configure device management for Bitwarden using the implementation guide for your platform."
   },
+  "crowdstrikeEventIntegrationDesc": {
+    "message": "Send event data to your Logscale instance"
+  },
   "deviceIdMissing": {
     "message": "Device ID is missing"
   },
@@ -9493,6 +9496,15 @@
   "reopenLinkOnDesktop": {
     "message": "Reopen this link from your email on a desktop."
   },
+  "connectIntegrationButtonDesc": {
+    "message": "Connect $INTEGRATION$",
+    "placeholders": {
+      "integration": {
+        "content": "$1",
+        "example": "Crowdstrike"
+      }
+    }
+  },
   "integrationCardTooltip": {
     "message": "Launch $INTEGRATION$ implementation guide.",
     "placeholders": {
diff --git a/libs/common/src/enums/feature-flag.enum.ts b/libs/common/src/enums/feature-flag.enum.ts
index 114ace8bd8e..33ded4a22c8 100644
--- a/libs/common/src/enums/feature-flag.enum.ts
+++ b/libs/common/src/enums/feature-flag.enum.ts
@@ -46,6 +46,9 @@ export enum FeatureFlag {
   /* Tools */
   DesktopSendUIRefresh = "desktop-send-ui-refresh",
 
+  /* DIRT */
+  EventBasedOrganizationIntegrations = "event-based-organization-integrations",
+
   /* Vault */
   PM8851_BrowserOnboardingNudge = "pm-8851-browser-onboarding-nudge",
   PM9111ExtensionPersistAddEditForm = "pm-9111-extension-persist-add-edit-form",
@@ -89,6 +92,9 @@ export const DefaultFeatureFlagValue = {
   /* Tools */
   [FeatureFlag.DesktopSendUIRefresh]: FALSE,
 
+  /* DIRT */
+  [FeatureFlag.EventBasedOrganizationIntegrations]: FALSE,
+
   /* Vault */
   [FeatureFlag.PM8851_BrowserOnboardingNudge]: FALSE,
   [FeatureFlag.PM9111ExtensionPersistAddEditForm]: FALSE,

From b3db1b79cea7c99ba610866b86fc7188a1cf1150 Mon Sep 17 00:00:00 2001
From: Todd Martin <106564991+trmartin4@users.noreply.github.com>
Date: Thu, 24 Jul 2025 12:46:18 -0400
Subject: [PATCH 225/239] chore(feature flags): [PM-19034] Remove feature flags
 and old components for Set/Change Password

* Removed flag and components.

* More cleanup

* Removed ChangePasswordComponent.

* Removed old EmergencyAccessTakeover

* Removed service initialization.

* Fixed test failures.

* Fixed tests.

* Test changes.

* Updated comments

* Fixed tests.

* Fixed tests.

* Fixed merge conflict.

* Removed style and routing references.

* Better comments.

* Removed ResetPasswordComponent
---
 .../auth/popup/set-password.component.html    | 160 ----------
 .../src/auth/popup/set-password.component.ts  |  10 -
 .../popup/update-temp-password.component.html | 142 ---------
 .../popup/update-temp-password.component.ts   |  30 --
 apps/browser/src/popup/app-routing.module.ts  |  50 +--
 apps/browser/src/popup/app.module.ts          |   4 -
 apps/desktop/src/app/app-routing.module.ts    |  45 +--
 apps/desktop/src/app/app.module.ts            |   4 -
 .../desktop-set-password-jit.service.ts       |  21 --
 .../src/app/services/services.module.ts       |  17 -
 .../src/auth/set-password.component.html      | 169 ----------
 .../src/auth/set-password.component.ts        | 111 -------
 .../auth/update-temp-password.component.html  | 136 --------
 .../auth/update-temp-password.component.ts    |  10 -
 apps/desktop/src/scss/pages.scss              |  94 ------
 .../components/reset-password.component.html  |  67 ----
 .../components/reset-password.component.ts    | 223 -------------
 .../members/members.component.ts              |  48 +--
 .../organizations/members/members.module.ts   |   2 -
 apps/web/src/app/auth/core/services/index.ts  |   1 -
 .../login/web-login-component.service.spec.ts |   5 +-
 .../login/web-login-component.service.ts      |  23 +-
 .../core/services/set-password-jit/index.ts   |   1 -
 .../web-set-password-jit.service.ts           |  27 --
 .../src/app/auth/set-password.component.html  | 130 --------
 .../src/app/auth/set-password.component.ts    |  30 --
 .../settings/change-password.component.html   | 129 --------
 .../settings/change-password.component.ts     | 258 ---------------
 .../emergency-access.component.ts             |  65 +---
 .../emergency-access-takeover.component.html  |  54 ----
 .../emergency-access-takeover.component.ts    | 145 ---------
 .../security/security-routing.module.ts       |  23 --
 .../settings/security/security.component.ts   |  16 +-
 .../src/app/auth/settings/settings.module.ts  |   5 +-
 .../app/auth/update-password.component.html   |  90 ------
 .../src/app/auth/update-password.component.ts |  24 --
 .../auth/update-temp-password.component.html  |  96 ------
 .../auth/update-temp-password.component.ts    |  10 -
 apps/web/src/app/core/core.module.ts          |  17 -
 apps/web/src/app/oss-routing.module.ts        |  58 +---
 .../src/app/shared/loose-components.module.ts |  12 -
 .../components/change-password.component.ts   | 232 --------------
 .../auth/components/set-password.component.ts | 300 ------------------
 .../components/update-password.component.ts   | 141 --------
 .../update-temp-password.component.ts         | 232 --------------
 .../src/auth/guards/auth.guard.spec.ts        | 161 +++-------
 libs/angular/src/auth/guards/auth.guard.ts    |  46 +--
 .../src/services/jslib-services.module.ts     |  17 -
 libs/auth/src/angular/index.ts                |   5 -
 .../auth/src/angular/login/login.component.ts |  47 +--
 .../new-device-verification.component.ts      |  27 +-
 .../default-set-password-jit.service.spec.ts  | 241 --------------
 .../default-set-password-jit.service.ts       | 176 ----------
 .../set-password-jit.component.html           |  24 --
 .../set-password-jit.component.ts             | 135 --------
 .../set-password-jit.service.abstraction.ts   |  33 --
 libs/auth/src/angular/sso/sso.component.ts    |   9 +-
 .../two-factor-auth.component.spec.ts         |  92 ++----
 .../two-factor-auth.component.ts              |  31 +-
 .../password-login.strategy.spec.ts           |  35 +-
 .../password-login.strategy.ts                |  40 +--
 .../sso-login.strategy.spec.ts                |  59 ++--
 .../login-strategies/sso-login.strategy.ts    |  82 ++---
 .../services/policy/default-policy.service.ts |   3 +-
 libs/common/src/enums/feature-flag.enum.ts    |   4 -
 65 files changed, 247 insertions(+), 4487 deletions(-)
 delete mode 100644 apps/browser/src/auth/popup/set-password.component.html
 delete mode 100644 apps/browser/src/auth/popup/set-password.component.ts
 delete mode 100644 apps/browser/src/auth/popup/update-temp-password.component.html
 delete mode 100644 apps/browser/src/auth/popup/update-temp-password.component.ts
 delete mode 100644 apps/desktop/src/app/services/desktop-set-password-jit.service.ts
 delete mode 100644 apps/desktop/src/auth/set-password.component.html
 delete mode 100644 apps/desktop/src/auth/set-password.component.ts
 delete mode 100644 apps/desktop/src/auth/update-temp-password.component.html
 delete mode 100644 apps/desktop/src/auth/update-temp-password.component.ts
 delete mode 100644 apps/web/src/app/admin-console/organizations/members/components/reset-password.component.html
 delete mode 100644 apps/web/src/app/admin-console/organizations/members/components/reset-password.component.ts
 delete mode 100644 apps/web/src/app/auth/core/services/set-password-jit/index.ts
 delete mode 100644 apps/web/src/app/auth/core/services/set-password-jit/web-set-password-jit.service.ts
 delete mode 100644 apps/web/src/app/auth/set-password.component.html
 delete mode 100644 apps/web/src/app/auth/set-password.component.ts
 delete mode 100644 apps/web/src/app/auth/settings/change-password.component.html
 delete mode 100644 apps/web/src/app/auth/settings/change-password.component.ts
 delete mode 100644 apps/web/src/app/auth/settings/emergency-access/takeover/emergency-access-takeover.component.html
 delete mode 100644 apps/web/src/app/auth/settings/emergency-access/takeover/emergency-access-takeover.component.ts
 delete mode 100644 apps/web/src/app/auth/update-password.component.html
 delete mode 100644 apps/web/src/app/auth/update-password.component.ts
 delete mode 100644 apps/web/src/app/auth/update-temp-password.component.html
 delete mode 100644 apps/web/src/app/auth/update-temp-password.component.ts
 delete mode 100644 libs/angular/src/auth/components/change-password.component.ts
 delete mode 100644 libs/angular/src/auth/components/set-password.component.ts
 delete mode 100644 libs/angular/src/auth/components/update-password.component.ts
 delete mode 100644 libs/angular/src/auth/components/update-temp-password.component.ts
 delete mode 100644 libs/auth/src/angular/set-password-jit/default-set-password-jit.service.spec.ts
 delete mode 100644 libs/auth/src/angular/set-password-jit/default-set-password-jit.service.ts
 delete mode 100644 libs/auth/src/angular/set-password-jit/set-password-jit.component.html
 delete mode 100644 libs/auth/src/angular/set-password-jit/set-password-jit.component.ts
 delete mode 100644 libs/auth/src/angular/set-password-jit/set-password-jit.service.abstraction.ts

diff --git a/apps/browser/src/auth/popup/set-password.component.html b/apps/browser/src/auth/popup/set-password.component.html
deleted file mode 100644
index 71a2e3ac588..00000000000
--- a/apps/browser/src/auth/popup/set-password.component.html
+++ /dev/null
@@ -1,160 +0,0 @@
-<form #form (ngSubmit)="submit()" [appApiAction]="formPromise">
-  <header>
-    <div class="left">
-      <button type="button" routerLink="/login">{{ "cancel" | i18n }}</button>
-    </div>
-    <h1 class="center">
-      <span class="title">{{ "setMasterPassword" | i18n }}</span>
-    </h1>
-    <div class="right">
-      <button type="submit" [disabled]="form.loading">
-        <span [hidden]="form.loading">{{ "submit" | i18n }}</span>
-        <i class="bwi bwi-spinner bwi-lg bwi-spin" [hidden]="!form.loading" aria-hidden="true"></i>
-      </button>
-    </div>
-  </header>
-  <main tabindex="-1">
-    <div class="full-loading-spinner" *ngIf="syncLoading">
-      <i class="bwi bwi-spinner bwi-spin bwi-3x" aria-hidden="true"></i>
-    </div>
-    <div *ngIf="!syncLoading">
-      <div class="box">
-        <p
-          class="tw-px-4"
-          *ngIf="
-            forceSetPasswordReason ==
-              ForceSetPasswordReason.TdeUserWithoutPasswordHasPasswordResetPermission;
-            else defaultCardDesc
-          "
-        >
-          {{ "orgPermissionsUpdatedMustSetPassword" | i18n }}
-        </p>
-
-        <ng-template #defaultCardDesc>
-          <p class="tw-px-4">{{ "orgRequiresYouToSetPassword" | i18n }}</p>
-        </ng-template>
-
-        <app-callout
-          type="warning"
-          title="{{ 'resetPasswordPolicyAutoEnroll' | i18n }}"
-          *ngIf="resetPasswordAutoEnroll"
-        >
-          {{ "resetPasswordAutoEnrollInviteWarning" | i18n }}
-        </app-callout>
-        <app-callout
-          type="info"
-          [enforcedPolicyOptions]="enforcedPolicyOptions"
-          *ngIf="enforcedPolicyOptions"
-        >
-        </app-callout>
-      </div>
-      <div class="box">
-        <div class="box-content">
-          <div class="box-content-row" appBoxRow>
-            <div class="box-content-row-flex">
-              <div class="row-main">
-                <label for="masterPassword">
-                  {{ "masterPass" | i18n }}
-                  <strong class="sub-label text-{{ color }}" *ngIf="text">
-                    {{ text }}
-                  </strong>
-                </label>
-                <input
-                  id="masterPassword"
-                  type="{{ showPassword ? 'text' : 'password' }}"
-                  name="MasterPassword"
-                  aria-describedby="masterPasswordHelp"
-                  class="monospaced"
-                  [(ngModel)]="masterPassword"
-                  required
-                  appInputVerbatim
-                />
-              </div>
-              <div class="action-buttons">
-                <button
-                  type="button"
-                  class="row-btn"
-                  appStopClick
-                  appA11yTitle="{{ 'toggleVisibility' | i18n }}"
-                  (click)="togglePassword(false)"
-                  [attr.aria-pressed]="showPassword"
-                >
-                  <i
-                    class="bwi bwi-lg"
-                    aria-hidden="true"
-                    [ngClass]="{ 'bwi-eye': !showPassword, 'bwi-eye-slash': showPassword }"
-                  ></i>
-                </button>
-              </div>
-            </div>
-
-            <app-password-strength
-              [password]="masterPassword"
-              [email]="email"
-              (passwordStrengthResult)="getStrengthResult($event)"
-              (passwordScoreColor)="getPasswordScoreText($event)"
-            >
-            </app-password-strength>
-          </div>
-        </div>
-        <div id="masterPasswordHelp" class="box-footer">
-          {{ "masterPassDesc" | i18n }}
-        </div>
-      </div>
-      <div class="box">
-        <div class="box-content">
-          <div class="box-content-row" appBoxRow>
-            <div class="box-content-row-flex">
-              <div class="row-main">
-                <label for="masterPasswordRetype">{{ "reTypeMasterPass" | i18n }}</label>
-                <input
-                  id="masterPasswordRetype"
-                  type="password"
-                  name="MasterPasswordRetype"
-                  class="monospaced"
-                  [(ngModel)]="masterPasswordRetype"
-                  required
-                  appInputVerbatim
-                  autocomplete="new-password"
-                />
-              </div>
-              <div class="action-buttons">
-                <button
-                  type="button"
-                  class="row-btn"
-                  appStopClick
-                  appA11yTitle="{{ 'toggleVisibility' | i18n }}"
-                  (click)="togglePassword(true)"
-                  [attr.aria-pressed]="showPassword"
-                >
-                  <i
-                    class="bwi bwi-lg"
-                    aria-hidden="true"
-                    [ngClass]="{ 'bwi-eye': !showPassword, 'bwi-eye-slash': showPassword }"
-                  ></i>
-                </button>
-              </div>
-            </div>
-          </div>
-        </div>
-      </div>
-      <div class="box last">
-        <div class="box-content">
-          <div class="box-content-row" appBoxRow>
-            <label for="hint">{{ "masterPassHint" | i18n }}</label>
-            <input
-              id="hint"
-              type="text"
-              name="Hint"
-              aria-describedby="hintHelp"
-              [(ngModel)]="hint"
-            />
-          </div>
-        </div>
-        <div id="hintHelp" class="box-footer">
-          {{ "masterPassHintDesc" | i18n }}
-        </div>
-      </div>
-    </div>
-  </main>
-</form>
diff --git a/apps/browser/src/auth/popup/set-password.component.ts b/apps/browser/src/auth/popup/set-password.component.ts
deleted file mode 100644
index 2a796854531..00000000000
--- a/apps/browser/src/auth/popup/set-password.component.ts
+++ /dev/null
@@ -1,10 +0,0 @@
-import { Component } from "@angular/core";
-
-import { SetPasswordComponent as BaseSetPasswordComponent } from "@bitwarden/angular/auth/components/set-password.component";
-
-@Component({
-  selector: "app-set-password",
-  templateUrl: "set-password.component.html",
-  standalone: false,
-})
-export class SetPasswordComponent extends BaseSetPasswordComponent {}
diff --git a/apps/browser/src/auth/popup/update-temp-password.component.html b/apps/browser/src/auth/popup/update-temp-password.component.html
deleted file mode 100644
index 0ce82aa20cf..00000000000
--- a/apps/browser/src/auth/popup/update-temp-password.component.html
+++ /dev/null
@@ -1,142 +0,0 @@
-<form #form (ngSubmit)="submit()" [appApiAction]="formPromise">
-  <header>
-    <div class="left">
-      <button type="button" (click)="logOut()">{{ "logOut" | i18n }}</button>
-    </div>
-    <h1 class="center">
-      <span class="title">{{ "updateMasterPassword" | i18n }}</span>
-    </h1>
-    <div class="right">
-      <button type="submit" [disabled]="form.loading">
-        <span [hidden]="form.loading">{{ "submit" | i18n }}</span>
-        <i class="bwi bwi-spinner bwi-lg bwi-spin" [hidden]="!form.loading" aria-hidden="true"></i>
-      </button>
-    </div>
-  </header>
-  <main tabindex="-1">
-    <app-callout type="warning" title="{{ 'updateMasterPassword' | i18n }}">
-      {{ masterPasswordWarningText }}
-    </app-callout>
-    <app-callout
-      type="info"
-      [enforcedPolicyOptions]="enforcedPolicyOptions"
-      *ngIf="enforcedPolicyOptions"
-    >
-    </app-callout>
-    <div class="box" *ngIf="requireCurrentPassword">
-      <div class="box-content">
-        <div class="box-content-row" appBoxRow>
-          <div class="box-content-row-flex">
-            <div class="row-main">
-              <label for="currentMasterPassword">
-                {{ "currentMasterPass" | i18n }}
-              </label>
-              <input
-                id="currentMasterPassword"
-                type="password"
-                name="CurrentMasterPassword"
-                class="monospaced"
-                [(ngModel)]="verification.secret"
-                required
-                appInputVerbatim
-              />
-            </div>
-          </div>
-        </div>
-      </div>
-    </div>
-    <div class="box">
-      <div class="box-content">
-        <div class="box-content-row" appBoxRow>
-          <div class="box-content-row-flex">
-            <div class="row-main">
-              <label for="masterPassword">
-                {{ "newMasterPass" | i18n }}
-                <strong class="sub-label text-{{ color }}" *ngIf="text">
-                  {{ text }}
-                </strong>
-              </label>
-              <input
-                id="masterPassword"
-                type="{{ showPassword ? 'text' : 'password' }}"
-                name="MasterPassword"
-                class="monospaced"
-                [(ngModel)]="masterPassword"
-                required
-                appInputVerbatim
-              />
-            </div>
-            <div class="action-buttons">
-              <button
-                type="button"
-                class="row-btn"
-                appStopClick
-                appA11yTitle="{{ 'toggleVisibility' | i18n }}"
-                (click)="togglePassword(false)"
-                [attr.aria-pressed]="showPassword"
-              >
-                <i
-                  class="bwi bwi-lg"
-                  aria-hidden="true"
-                  [ngClass]="{ 'bwi-eye': !showPassword, 'bwi-eye-slash': showPassword }"
-                ></i>
-              </button>
-            </div>
-          </div>
-          <app-password-strength
-            [password]="masterPassword"
-            [email]="email"
-            (passwordStrengthResult)="getStrengthResult($event)"
-            (passwordScoreColor)="getPasswordScoreText($event)"
-          >
-          </app-password-strength>
-        </div>
-      </div>
-    </div>
-    <div class="box">
-      <div class="box-content">
-        <div class="box-content-row box-content-row-flex" appBoxRow>
-          <div class="row-main">
-            <label for="masterPasswordRetype">{{ "confirmNewMasterPass" | i18n }}</label>
-            <input
-              id="masterPasswordRetype"
-              type="{{ showPassword ? 'text' : 'password' }}"
-              name="MasterPasswordRetype"
-              class="monospaced"
-              [(ngModel)]="masterPasswordRetype"
-              required
-              appInputVerbatim
-            />
-          </div>
-          <div class="action-buttons">
-            <button
-              type="button"
-              class="row-btn"
-              appStopClick
-              appA11yTitle="{{ 'toggleVisibility' | i18n }}"
-              (click)="togglePassword(true)"
-              [attr.aria-pressed]="showPassword"
-            >
-              <i
-                class="bwi bwi-lg"
-                aria-hidden="true"
-                [ngClass]="{ 'bwi-eye': !showPassword, 'bwi-eye-slash': showPassword }"
-              ></i>
-            </button>
-          </div>
-        </div>
-      </div>
-    </div>
-    <div class="box">
-      <div class="box-content">
-        <div class="box-content-row" appBoxRow>
-          <label for="hint">{{ "masterPassHint" | i18n }}</label>
-          <input id="hint" type="text" name="Hint" aria-describedby="hintHelp" [(ngModel)]="hint" />
-        </div>
-      </div>
-      <div id="hintHelp" class="box-footer">
-        {{ "masterPassHintDesc" | i18n }}
-      </div>
-    </div>
-  </main>
-</form>
diff --git a/apps/browser/src/auth/popup/update-temp-password.component.ts b/apps/browser/src/auth/popup/update-temp-password.component.ts
deleted file mode 100644
index e8cf64b7548..00000000000
--- a/apps/browser/src/auth/popup/update-temp-password.component.ts
+++ /dev/null
@@ -1,30 +0,0 @@
-import { Component } from "@angular/core";
-import { firstValueFrom } from "rxjs";
-
-import { UpdateTempPasswordComponent as BaseUpdateTempPasswordComponent } from "@bitwarden/angular/auth/components/update-temp-password.component";
-
-import { postLogoutMessageListener$ } from "./utils/post-logout-message-listener";
-
-@Component({
-  selector: "app-update-temp-password",
-  templateUrl: "update-temp-password.component.html",
-  standalone: false,
-})
-export class UpdateTempPasswordComponent extends BaseUpdateTempPasswordComponent {
-  onSuccessfulChangePassword: () => Promise<void> = this.doOnSuccessfulChangePassword.bind(this);
-
-  private async doOnSuccessfulChangePassword() {
-    // start listening for "switchAccountFinish" or "doneLoggingOut"
-    const messagePromise = firstValueFrom(postLogoutMessageListener$);
-    this.messagingService.send("logout");
-    // wait for messages
-    const command = await messagePromise;
-
-    // doneLoggingOut already has a message handler that will navigate us
-    if (command === "switchAccountFinish") {
-      // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-      // eslint-disable-next-line @typescript-eslint/no-floating-promises
-      this.router.navigate(["/"]);
-    }
-  }
-}
diff --git a/apps/browser/src/popup/app-routing.module.ts b/apps/browser/src/popup/app-routing.module.ts
index 52a60d9c23d..f01809433e3 100644
--- a/apps/browser/src/popup/app-routing.module.ts
+++ b/apps/browser/src/popup/app-routing.module.ts
@@ -32,7 +32,6 @@ import {
   RegistrationStartSecondaryComponent,
   RegistrationStartSecondaryComponentData,
   RegistrationUserAddIcon,
-  SetPasswordJitComponent,
   SsoComponent,
   TwoFactorTimeoutIcon,
   TwoFactorAuthComponent,
@@ -43,15 +42,13 @@ import {
   VaultIcon,
 } from "@bitwarden/auth/angular";
 import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
-import { AnonLayoutWrapperComponent, AnonLayoutWrapperData, Icons } from "@bitwarden/components";
+import { AnonLayoutWrapperData, Icons } from "@bitwarden/components";
 import { LockComponent } from "@bitwarden/key-management-ui";
 
 import { AccountSwitcherComponent } from "../auth/popup/account-switching/account-switcher.component";
 import { fido2AuthGuard } from "../auth/popup/guards/fido2-auth.guard";
-import { SetPasswordComponent } from "../auth/popup/set-password.component";
 import { AccountSecurityComponent } from "../auth/popup/settings/account-security.component";
 import { ExtensionDeviceManagementComponent } from "../auth/popup/settings/extension-device-management.component";
-import { UpdateTempPasswordComponent } from "../auth/popup/update-temp-password.component";
 import { Fido2Component } from "../autofill/popup/fido2/fido2.component";
 import { AutofillComponent } from "../autofill/popup/settings/autofill.component";
 import { BlockedDomainsComponent } from "../autofill/popup/settings/blocked-domains.component";
@@ -180,11 +177,6 @@ const routes: Routes = [
       elevation: 1,
     } satisfies RouteDataProperties & ExtensionAnonLayoutWrapperData,
   },
-  {
-    path: "set-password",
-    component: SetPasswordComponent,
-    data: { elevation: 1 } satisfies RouteDataProperties,
-  },
   {
     path: "remove-password",
     component: RemovePasswordComponent,
@@ -337,20 +329,6 @@ const routes: Routes = [
     canActivate: [authGuard],
     data: { elevation: 1 } satisfies RouteDataProperties,
   },
-  {
-    path: "update-temp-password",
-    component: UpdateTempPasswordComponent,
-    canActivate: [
-      canAccessFeature(
-        FeatureFlag.PM16117_ChangeExistingPasswordRefactor,
-        false,
-        `/change-password`,
-        false,
-      ),
-      authGuard,
-    ],
-    data: { elevation: 1 } satisfies RouteDataProperties,
-  },
   {
     path: "",
     component: ExtensionAnonLayoutWrapperComponent,
@@ -398,7 +376,7 @@ const routes: Routes = [
       },
       {
         path: "set-initial-password",
-        canActivate: [canAccessFeature(FeatureFlag.PM16117_SetInitialPasswordRefactor), authGuard],
+        canActivate: [authGuard],
         component: SetInitialPasswordComponent,
         data: {
           elevation: 1,
@@ -586,29 +564,7 @@ const routes: Routes = [
             component: ChangePasswordComponent,
           },
         ],
-        canActivate: [
-          canAccessFeature(FeatureFlag.PM16117_ChangeExistingPasswordRefactor),
-          authGuard,
-        ],
-      },
-    ],
-  },
-  {
-    path: "",
-    component: AnonLayoutWrapperComponent,
-    children: [
-      {
-        path: "set-password-jit",
-        component: SetPasswordJitComponent,
-        data: {
-          pageTitle: {
-            key: "joinOrganization",
-          },
-          pageSubtitle: {
-            key: "finishJoiningThisOrganizationBySettingAMasterPassword",
-          },
-          elevation: 1,
-        } satisfies RouteDataProperties & AnonLayoutWrapperData,
+        canActivate: [authGuard],
       },
     ],
   },
diff --git a/apps/browser/src/popup/app.module.ts b/apps/browser/src/popup/app.module.ts
index 77c87838ff7..687ae67d43c 100644
--- a/apps/browser/src/popup/app.module.ts
+++ b/apps/browser/src/popup/app.module.ts
@@ -26,10 +26,8 @@ import {
 
 import { AccountComponent } from "../auth/popup/account-switching/account.component";
 import { CurrentAccountComponent } from "../auth/popup/account-switching/current-account.component";
-import { SetPasswordComponent } from "../auth/popup/set-password.component";
 import { AccountSecurityComponent } from "../auth/popup/settings/account-security.component";
 import { VaultTimeoutInputComponent } from "../auth/popup/settings/vault-timeout-input.component";
-import { UpdateTempPasswordComponent } from "../auth/popup/update-temp-password.component";
 import { AutofillComponent } from "../autofill/popup/settings/autofill.component";
 import { NotificationsSettingsComponent } from "../autofill/popup/settings/notifications.component";
 import { RemovePasswordComponent } from "../key-management/key-connector/remove-password.component";
@@ -96,9 +94,7 @@ import "../platform/popup/locales";
     AppComponent,
     ColorPasswordPipe,
     ColorPasswordCountPipe,
-    SetPasswordComponent,
     TabsV2Component,
-    UpdateTempPasswordComponent,
     UserVerificationComponent,
     VaultTimeoutInputComponent,
     RemovePasswordComponent,
diff --git a/apps/desktop/src/app/app-routing.module.ts b/apps/desktop/src/app/app-routing.module.ts
index db3e69f7d6f..30ae906c98d 100644
--- a/apps/desktop/src/app/app-routing.module.ts
+++ b/apps/desktop/src/app/app-routing.module.ts
@@ -15,8 +15,6 @@ import {
   unauthGuardFn,
 } from "@bitwarden/angular/auth/guards";
 import { ChangePasswordComponent } from "@bitwarden/angular/auth/password-management/change-password";
-import { SetInitialPasswordComponent } from "@bitwarden/angular/auth/password-management/set-initial-password/set-initial-password.component";
-import { canAccessFeature } from "@bitwarden/angular/platform/guard/feature-flag.guard";
 import {
   LoginComponent,
   LoginSecondaryContentComponent,
@@ -28,7 +26,6 @@ import {
   RegistrationStartSecondaryComponent,
   RegistrationStartSecondaryComponentData,
   RegistrationUserAddIcon,
-  SetPasswordJitComponent,
   UserLockIcon,
   VaultIcon,
   LoginDecryptionOptionsComponent,
@@ -40,13 +37,10 @@ import {
   NewDeviceVerificationComponent,
   DeviceVerificationIcon,
 } from "@bitwarden/auth/angular";
-import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
 import { AnonLayoutWrapperComponent, AnonLayoutWrapperData, Icons } from "@bitwarden/components";
 import { LockComponent } from "@bitwarden/key-management-ui";
 
 import { maxAccountsGuardFn } from "../auth/guards/max-accounts.guard";
-import { SetPasswordComponent } from "../auth/set-password.component";
-import { UpdateTempPasswordComponent } from "../auth/update-temp-password.component";
 import { RemovePasswordComponent } from "../key-management/key-connector/remove-password.component";
 import { VaultV2Component } from "../vault/app/vault/vault-v2.component";
 
@@ -105,25 +99,11 @@ const routes: Routes = [
     component: VaultV2Component,
     canActivate: [authGuard],
   },
-  { path: "set-password", component: SetPasswordComponent },
   {
     path: "send",
     component: SendComponent,
     canActivate: [authGuard],
   },
-  {
-    path: "update-temp-password",
-    component: UpdateTempPasswordComponent,
-    canActivate: [
-      canAccessFeature(
-        FeatureFlag.PM16117_ChangeExistingPasswordRefactor,
-        false,
-        `/change-password`,
-        false,
-      ),
-      authGuard,
-    ],
-  },
   {
     path: "remove-password",
     component: RemovePasswordComponent,
@@ -308,26 +288,6 @@ const routes: Routes = [
           },
         ],
       },
-      {
-        path: "set-password-jit",
-        component: SetPasswordJitComponent,
-        data: {
-          pageTitle: {
-            key: "joinOrganization",
-          },
-          pageSubtitle: {
-            key: "finishJoiningThisOrganizationBySettingAMasterPassword",
-          },
-        } satisfies AnonLayoutWrapperData,
-      },
-      {
-        path: "set-initial-password",
-        canActivate: [canAccessFeature(FeatureFlag.PM16117_SetInitialPasswordRefactor), authGuard],
-        component: SetInitialPasswordComponent,
-        data: {
-          maxWidth: "lg",
-        } satisfies AnonLayoutWrapperData,
-      },
       {
         path: "2fa",
         canActivate: [unauthGuardFn(), TwoFactorAuthGuard],
@@ -346,10 +306,7 @@ const routes: Routes = [
       {
         path: "change-password",
         component: ChangePasswordComponent,
-        canActivate: [
-          canAccessFeature(FeatureFlag.PM16117_ChangeExistingPasswordRefactor),
-          authGuard,
-        ],
+        canActivate: [authGuard],
       },
     ],
   },
diff --git a/apps/desktop/src/app/app.module.ts b/apps/desktop/src/app/app.module.ts
index 112732d8f2c..79c1aae0c3b 100644
--- a/apps/desktop/src/app/app.module.ts
+++ b/apps/desktop/src/app/app.module.ts
@@ -13,8 +13,6 @@ import { AssignCollectionsComponent } from "@bitwarden/vault";
 
 import { DeleteAccountComponent } from "../auth/delete-account.component";
 import { LoginModule } from "../auth/login/login.module";
-import { SetPasswordComponent } from "../auth/set-password.component";
-import { UpdateTempPasswordComponent } from "../auth/update-temp-password.component";
 import { SshAgentService } from "../autofill/services/ssh-agent.service";
 import { PremiumComponent } from "../billing/app/accounts/premium.component";
 import { RemovePasswordComponent } from "../key-management/key-connector/remove-password.component";
@@ -57,9 +55,7 @@ import { SharedModule } from "./shared/shared.module";
     PremiumComponent,
     RemovePasswordComponent,
     SearchComponent,
-    SetPasswordComponent,
     SettingsComponent,
-    UpdateTempPasswordComponent,
     VaultTimeoutInputComponent,
   ],
   providers: [SshAgentService],
diff --git a/apps/desktop/src/app/services/desktop-set-password-jit.service.ts b/apps/desktop/src/app/services/desktop-set-password-jit.service.ts
deleted file mode 100644
index f6ea3d0ce84..00000000000
--- a/apps/desktop/src/app/services/desktop-set-password-jit.service.ts
+++ /dev/null
@@ -1,21 +0,0 @@
-import { inject } from "@angular/core";
-
-import {
-  DefaultSetPasswordJitService,
-  SetPasswordCredentials,
-  SetPasswordJitService,
-} from "@bitwarden/auth/angular";
-import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
-
-export class DesktopSetPasswordJitService
-  extends DefaultSetPasswordJitService
-  implements SetPasswordJitService
-{
-  messagingService = inject(MessagingService);
-
-  override async setPassword(credentials: SetPasswordCredentials) {
-    await super.setPassword(credentials);
-
-    this.messagingService.send("redrawMenu");
-  }
-}
diff --git a/apps/desktop/src/app/services/services.module.ts b/apps/desktop/src/app/services/services.module.ts
index 04c989c4f36..c3b88077dbb 100644
--- a/apps/desktop/src/app/services/services.module.ts
+++ b/apps/desktop/src/app/services/services.module.ts
@@ -25,7 +25,6 @@ import {
 import { JslibServicesModule } from "@bitwarden/angular/services/jslib-services.module";
 import {
   LoginComponentService,
-  SetPasswordJitService,
   SsoComponentService,
   DefaultSsoComponentService,
   TwoFactorAuthDuoComponentService,
@@ -139,7 +138,6 @@ import { NativeMessagingService } from "../../services/native-messaging.service"
 import { SearchBarService } from "../layout/search/search-bar.service";
 
 import { DesktopFileDownloadService } from "./desktop-file-download.service";
-import { DesktopSetPasswordJitService } from "./desktop-set-password-jit.service";
 import { InitService } from "./init.service";
 import { NativeMessagingManifestService } from "./native-messaging-manifest.service";
 import { DesktopSetInitialPasswordService } from "./set-initial-password/desktop-set-initial-password.service";
@@ -379,21 +377,6 @@ const safeProviders: SafeProvider[] = [
     provide: CLIENT_TYPE,
     useValue: ClientType.Desktop,
   }),
-  safeProvider({
-    provide: SetPasswordJitService,
-    useClass: DesktopSetPasswordJitService,
-    deps: [
-      EncryptService,
-      I18nServiceAbstraction,
-      KdfConfigService,
-      KeyService,
-      MasterPasswordApiService,
-      InternalMasterPasswordServiceAbstraction,
-      OrganizationApiServiceAbstraction,
-      OrganizationUserApiService,
-      InternalUserDecryptionOptionsServiceAbstraction,
-    ],
-  }),
   safeProvider({
     provide: SetInitialPasswordService,
     useClass: DesktopSetInitialPasswordService,
diff --git a/apps/desktop/src/auth/set-password.component.html b/apps/desktop/src/auth/set-password.component.html
deleted file mode 100644
index 46d954327f8..00000000000
--- a/apps/desktop/src/auth/set-password.component.html
+++ /dev/null
@@ -1,169 +0,0 @@
-<form id="set-password-page" #form>
-  <div class="content">
-    <img class="logo-image" alt="Bitwarden" />
-    <p class="lead">{{ "setMasterPassword" | i18n }}</p>
-    <div class="box text-center" *ngIf="syncLoading">
-      <i class="bwi bwi-spinner bwi-spin" title="{{ 'loading' | i18n }}" aria-hidden="true"></i>
-      {{ "loading" | i18n }}
-    </div>
-    <div *ngIf="!syncLoading">
-      <div class="box">
-        <p
-          *ngIf="
-            forceSetPasswordReason ==
-              ForceSetPasswordReason.TdeUserWithoutPasswordHasPasswordResetPermission;
-            else defaultCardDesc
-          "
-        >
-          {{ "orgPermissionsUpdatedMustSetPassword" | i18n }}
-        </p>
-
-        <ng-template #defaultCardDesc>
-          <p>{{ "orgRequiresYouToSetPassword" | i18n }}</p>
-        </ng-template>
-
-        <app-callout
-          type="warning"
-          title="{{ 'resetPasswordPolicyAutoEnroll' | i18n }}"
-          *ngIf="resetPasswordAutoEnroll"
-        >
-          {{ "resetPasswordAutoEnrollInviteWarning" | i18n }}
-        </app-callout>
-        <app-callout
-          type="info"
-          [enforcedPolicyOptions]="enforcedPolicyOptions"
-          *ngIf="enforcedPolicyOptions"
-        >
-        </app-callout>
-      </div>
-      <form
-        #form
-        (ngSubmit)="submit()"
-        [appApiAction]="formPromise"
-        ngNativeValidate
-        autocomplete="off"
-      >
-        <div class="box">
-          <div class="box-content">
-            <div class="box-content-row" appBoxRow>
-              <div class="box-content-row-flex">
-                <div class="row-main">
-                  <label for="masterPassword"
-                    >{{ "masterPass" | i18n }}
-                    <strong class="sub-label text-{{ color }}" *ngIf="text">
-                      {{ text }}
-                    </strong>
-                  </label>
-                  <input
-                    id="masterPassword"
-                    type="{{ showPassword ? 'text' : 'password' }}"
-                    name="MasterPassword"
-                    class="monospaced"
-                    aria-describedby="masterPasswordHelp"
-                    [(ngModel)]="masterPassword"
-                    required
-                    appInputVerbatim
-                  />
-                </div>
-                <div class="action-buttons">
-                  <button
-                    type="button"
-                    class="row-btn"
-                    appStopClick
-                    appA11yTitle="{{ 'toggleVisibility' | i18n }}"
-                    [attr.aria-pressed]="showPassword"
-                    (click)="togglePassword(false)"
-                  >
-                    <i
-                      class="bwi bwi-lg"
-                      aria-hidden="true"
-                      [ngClass]="{ 'bwi-eye': !showPassword, 'bwi-eye-slash': showPassword }"
-                    ></i>
-                  </button>
-                </div>
-              </div>
-              <app-password-strength
-                [password]="masterPassword"
-                [email]="email"
-                (passwordStrengthResult)="getStrengthResult($event)"
-                (passwordScoreColor)="getPasswordScoreText($event)"
-              >
-              </app-password-strength>
-            </div>
-          </div>
-          <div id="masterPasswordHelp" class="box-footer">
-            {{ "masterPassDesc" | i18n }}
-          </div>
-        </div>
-        <div class="box">
-          <div class="box-content">
-            <div class="box-content-row" appBoxRow>
-              <div class="box-content-row-flex">
-                <div class="row-main">
-                  <label for="masterPasswordRetype">{{ "reTypeMasterPass" | i18n }}</label>
-                  <input
-                    id="masterPasswordRetype"
-                    type="password"
-                    name="MasterPasswordRetype"
-                    class="monospaced"
-                    [(ngModel)]="masterPasswordRetype"
-                    required
-                    appInputVerbatim
-                    autocomplete="new-password"
-                  />
-                </div>
-                <div class="action-buttons">
-                  <button
-                    type="button"
-                    class="row-btn"
-                    appStopClick
-                    appA11yTitle="{{ 'toggleVisibility' | i18n }}"
-                    [attr.aria-pressed]="showPassword"
-                    (click)="togglePassword(true)"
-                  >
-                    <i
-                      class="bwi bwi-lg"
-                      aria-hidden="true"
-                      [ngClass]="{ 'bwi-eye': !showPassword, 'bwi-eye-slash': showPassword }"
-                    ></i>
-                  </button>
-                </div>
-              </div>
-            </div>
-          </div>
-        </div>
-        <div class="box last">
-          <div class="box-content">
-            <div class="box-content-row" appBoxRow>
-              <label for="hint">{{ "masterPassHint" | i18n }}</label>
-              <input
-                id="hint"
-                type="text"
-                name="Hint"
-                aria-describedby="hintHelp"
-                [(ngModel)]="hint"
-              />
-            </div>
-          </div>
-          <div id="hintHelp" class="box-footer">
-            {{ "masterPassHintDesc" | i18n }}
-          </div>
-        </div>
-        <div class="buttons">
-          <button type="submit" class="btn primary block" [disabled]="form.loading">
-            <i
-              *ngIf="form.loading"
-              class="bwi bwi-spinner bwi-spin"
-              title="{{ 'loading' | i18n }}"
-              aria-hidden="true"
-            ></i>
-            <span>{{ "submit" | i18n }}</span>
-          </button>
-          <button type="button" class="btn block" (click)="logOut()">
-            <span>{{ "logOut" | i18n }}</span>
-          </button>
-        </div>
-      </form>
-    </div>
-  </div>
-</form>
diff --git a/apps/desktop/src/auth/set-password.component.ts b/apps/desktop/src/auth/set-password.component.ts
deleted file mode 100644
index d45fc111a97..00000000000
--- a/apps/desktop/src/auth/set-password.component.ts
+++ /dev/null
@@ -1,111 +0,0 @@
-import { Component, NgZone, OnDestroy, OnInit } from "@angular/core";
-import { ActivatedRoute, Router } from "@angular/router";
-
-import { OrganizationUserApiService } from "@bitwarden/admin-console/common";
-import { SetPasswordComponent as BaseSetPasswordComponent } from "@bitwarden/angular/auth/components/set-password.component";
-import { InternalUserDecryptionOptionsServiceAbstraction } from "@bitwarden/auth/common";
-import { OrganizationApiServiceAbstraction } from "@bitwarden/common/admin-console/abstractions/organization/organization-api.service.abstraction";
-import { PolicyApiServiceAbstraction } from "@bitwarden/common/admin-console/abstractions/policy/policy-api.service.abstraction";
-import { PolicyService } from "@bitwarden/common/admin-console/abstractions/policy/policy.service.abstraction";
-import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
-import { MasterPasswordApiService } from "@bitwarden/common/auth/abstractions/master-password-api.service.abstraction";
-import { SsoLoginServiceAbstraction } from "@bitwarden/common/auth/abstractions/sso-login.service.abstraction";
-import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
-import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
-import { InternalMasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
-import { BroadcasterService } from "@bitwarden/common/platform/abstractions/broadcaster.service";
-import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
-import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
-import { MasterKey, UserKey } from "@bitwarden/common/types/key";
-import { SyncService } from "@bitwarden/common/vault/abstractions/sync/sync.service.abstraction";
-import { DialogService, ToastService } from "@bitwarden/components";
-import { KdfConfigService, KeyService } from "@bitwarden/key-management";
-
-const BroadcasterSubscriptionId = "SetPasswordComponent";
-
-@Component({
-  selector: "app-set-password",
-  templateUrl: "set-password.component.html",
-  standalone: false,
-})
-export class SetPasswordComponent extends BaseSetPasswordComponent implements OnInit, OnDestroy {
-  constructor(
-    protected accountService: AccountService,
-    protected dialogService: DialogService,
-    protected encryptService: EncryptService,
-    protected i18nService: I18nService,
-    protected kdfConfigService: KdfConfigService,
-    protected keyService: KeyService,
-    protected masterPasswordApiService: MasterPasswordApiService,
-    protected masterPasswordService: InternalMasterPasswordServiceAbstraction,
-    protected messagingService: MessagingService,
-    protected organizationApiService: OrganizationApiServiceAbstraction,
-    protected organizationUserApiService: OrganizationUserApiService,
-    protected platformUtilsService: PlatformUtilsService,
-    protected policyApiService: PolicyApiServiceAbstraction,
-    protected policyService: PolicyService,
-    protected route: ActivatedRoute,
-    protected router: Router,
-    protected ssoLoginService: SsoLoginServiceAbstraction,
-    protected syncService: SyncService,
-    protected toastService: ToastService,
-    protected userDecryptionOptionsService: InternalUserDecryptionOptionsServiceAbstraction,
-    private broadcasterService: BroadcasterService,
-    private ngZone: NgZone,
-  ) {
-    super(
-      accountService,
-      dialogService,
-      encryptService,
-      i18nService,
-      kdfConfigService,
-      keyService,
-      masterPasswordApiService,
-      masterPasswordService,
-      messagingService,
-      organizationApiService,
-      organizationUserApiService,
-      platformUtilsService,
-      policyApiService,
-      policyService,
-      route,
-      router,
-      ssoLoginService,
-      syncService,
-      toastService,
-      userDecryptionOptionsService,
-    );
-  }
-
-  async ngOnInit() {
-    await super.ngOnInit();
-    this.broadcasterService.subscribe(BroadcasterSubscriptionId, async (message) => {
-      this.ngZone.run(() => {
-        switch (message.command) {
-          case "windowHidden":
-            this.onWindowHidden();
-            break;
-          default:
-        }
-      });
-    });
-  }
-
-  ngOnDestroy() {
-    this.broadcasterService.unsubscribe(BroadcasterSubscriptionId);
-  }
-
-  onWindowHidden() {
-    this.showPassword = false;
-  }
-
-  protected async onSetPasswordSuccess(
-    masterKey: MasterKey,
-    userKey: [UserKey, EncString],
-    keyPair: [string, EncString],
-  ): Promise<void> {
-    await super.onSetPasswordSuccess(masterKey, userKey, keyPair);
-    this.messagingService.send("redrawMenu");
-  }
-}
diff --git a/apps/desktop/src/auth/update-temp-password.component.html b/apps/desktop/src/auth/update-temp-password.component.html
deleted file mode 100644
index 11b8ad4361b..00000000000
--- a/apps/desktop/src/auth/update-temp-password.component.html
+++ /dev/null
@@ -1,136 +0,0 @@
-<form id="update-temp-password-page" #form (ngSubmit)="submit()" [appApiAction]="formPromise">
-  <div class="content">
-    <app-callout type="warning" title="{{ 'updateMasterPassword' | i18n }}">
-      {{ masterPasswordWarningText }}
-    </app-callout>
-    <app-callout
-      type="info"
-      [enforcedPolicyOptions]="enforcedPolicyOptions"
-      *ngIf="enforcedPolicyOptions"
-    >
-    </app-callout>
-    <div class="box" *ngIf="requireCurrentPassword">
-      <div class="box-content">
-        <div class="box-content-row" appBoxRow>
-          <div class="box-content-row-flex">
-            <div class="row-main">
-              <label for="currentMasterPassword">
-                {{ "currentMasterPass" | i18n }}
-              </label>
-              <input
-                id="currentMasterPassword"
-                type="password"
-                name="currentMasterPassword"
-                class="monospaced"
-                [(ngModel)]="verification.secret"
-                required
-                appInputVerbatim
-              />
-            </div>
-          </div>
-        </div>
-      </div>
-    </div>
-    <div class="box">
-      <div class="box-content">
-        <div class="box-content-row" appBoxRow>
-          <div class="box-content-row-flex">
-            <div class="row-main">
-              <label for="masterPassword">
-                {{ "newMasterPass" | i18n }}
-                <strong class="sub-label text-{{ color }}" *ngIf="text">
-                  {{ text }}
-                </strong>
-              </label>
-              <input
-                id="masterPassword"
-                type="{{ showPassword ? 'text' : 'password' }}"
-                name="MasterPassword"
-                class="monospaced"
-                [(ngModel)]="masterPassword"
-                required
-                [appAutofocus]="masterPassword === ''"
-                appInputVerbatim
-              />
-            </div>
-            <div class="action-buttons">
-              <button
-                type="button"
-                class="row-btn"
-                appStopClick
-                appA11yTitle="{{ 'toggleVisibility' | i18n }}"
-                [attr.aria-pressed]="showPassword"
-                (click)="togglePassword(false)"
-              >
-                <i
-                  class="bwi bwi-lg"
-                  aria-hidden="true"
-                  [ngClass]="{ 'bwi-eye': !showPassword, 'bwi-eye-slash': showPassword }"
-                ></i>
-              </button>
-            </div>
-          </div>
-          <app-password-strength
-            [password]="masterPassword"
-            [email]="email"
-            (passwordStrengthResult)="getStrengthResult($event)"
-            (passwordScoreColor)="getPasswordScoreText($event)"
-          >
-          </app-password-strength>
-        </div>
-      </div>
-    </div>
-    <div class="box">
-      <div class="box-content">
-        <div class="box-content-row box-content-row-flex" appBoxRow>
-          <div class="row-main">
-            <label for="masterPasswordRetype">{{ "confirmNewMasterPass" | i18n }}</label>
-            <input
-              id="masterPasswordRetype"
-              type="{{ showPassword ? 'text' : 'password' }}"
-              name="MasterPasswordRetype"
-              class="monospaced"
-              [(ngModel)]="masterPasswordRetype"
-              required
-              appInputVerbatim
-            />
-          </div>
-          <div class="action-buttons">
-            <button
-              type="button"
-              class="row-btn"
-              appStopClick
-              appA11yTitle="{{ 'toggleVisibility' | i18n }}"
-              [attr.aria-pressed]="showPassword"
-              (click)="togglePassword(true)"
-            >
-              <i
-                class="bwi bwi-lg"
-                aria-hidden="true"
-                [ngClass]="{ 'bwi-eye': !showPassword, 'bwi-eye-slash': showPassword }"
-              ></i>
-            </button>
-          </div>
-        </div>
-      </div>
-    </div>
-    <div class="box">
-      <div class="box-content">
-        <div class="box-content-row" appBoxRow>
-          <label for="hint">{{ "masterPassHint" | i18n }}</label>
-          <input id="hint" type="text" name="Hint" aria-describedby="hintHelp" [(ngModel)]="hint" />
-        </div>
-      </div>
-      <div id="hintHelp" class="box-footer">
-        {{ "masterPassHintDesc" | i18n }}
-      </div>
-    </div>
-    <div class="buttons">
-      <button type="submit" class="btn primary block" [disabled]="form.loading">
-        <b [hidden]="form.loading">{{ "submit" | i18n }}</b>
-        <i class="bwi bwi-spinner bwi-spin" [hidden]="!form.loading" aria-hidden="true"></i>
-      </button>
-      <button type="button" (click)="logOut()" class="btn block">{{ "logOut" | i18n }}</button>
-    </div>
-  </div>
-</form>
diff --git a/apps/desktop/src/auth/update-temp-password.component.ts b/apps/desktop/src/auth/update-temp-password.component.ts
deleted file mode 100644
index ead10660b92..00000000000
--- a/apps/desktop/src/auth/update-temp-password.component.ts
+++ /dev/null
@@ -1,10 +0,0 @@
-import { Component } from "@angular/core";
-
-import { UpdateTempPasswordComponent as BaseUpdateTempPasswordComponent } from "@bitwarden/angular/auth/components/update-temp-password.component";
-
-@Component({
-  selector: "app-update-temp-password",
-  templateUrl: "update-temp-password.component.html",
-  standalone: false,
-})
-export class UpdateTempPasswordComponent extends BaseUpdateTempPasswordComponent {}
diff --git a/apps/desktop/src/scss/pages.scss b/apps/desktop/src/scss/pages.scss
index 4098ad860dd..73ef7554f6a 100644
--- a/apps/desktop/src/scss/pages.scss
+++ b/apps/desktop/src/scss/pages.scss
@@ -1,7 +1,5 @@
 @import "variables.scss";
 
-#lock-page,
-#set-password-page,
 #remove-password-page {
   display: flex;
   justify-content: center;
@@ -23,9 +21,6 @@
   }
 }
 
-#register-page,
-#hint-page,
-#update-temp-password-page,
 #remove-password-page {
   padding-top: 20px;
 
@@ -42,68 +37,6 @@
   }
 }
 
-#register-page,
-#hint-page,
-#lock-page,
-#update-temp-password-page {
-  .content {
-    width: 325px;
-    transition: width 0.25s linear;
-
-    p {
-      text-align: center;
-    }
-
-    p.lead,
-    h1 {
-      font-size: $font-size-large;
-      text-align: center;
-      margin-bottom: 20px;
-      font-weight: normal;
-    }
-
-    .box {
-      margin-bottom: 20px;
-    }
-
-    .buttons {
-      &:not(.with-rows),
-      .buttons-row {
-        display: flex;
-        margin-bottom: 10px;
-      }
-
-      &:not(.with-rows),
-      .buttons-row:last-child {
-        margin-bottom: 20px;
-      }
-
-      button {
-        margin-right: 10px;
-
-        &:last-child {
-          margin-right: 0;
-        }
-      }
-    }
-
-    .sub-options {
-      text-align: center;
-      margin-bottom: 20px;
-
-      a {
-        display: block;
-        margin-bottom: 10px;
-
-        &:last-child {
-          margin-bottom: 0;
-        }
-      }
-    }
-  }
-}
-
-#set-password-page,
 #remove-password-page {
   .content {
     width: 500px;
@@ -155,35 +88,8 @@
   }
 }
 
-#register-page,
-#update-temp-password-page {
-  .content {
-    width: 400px;
-  }
-}
-
 #remove-password-page {
   .content > p {
     margin-bottom: 20px;
   }
 }
-
-#login-approval-page {
-  .section-title {
-    padding: 20px;
-  }
-  .content {
-    padding: 16px;
-    .section {
-      margin-bottom: 30px;
-      code {
-        @include themify($themes) {
-          color: themed("codeColor");
-        }
-      }
-      h4.label {
-        font-weight: bold;
-      }
-    }
-  }
-}
diff --git a/apps/web/src/app/admin-console/organizations/members/components/reset-password.component.html b/apps/web/src/app/admin-console/organizations/members/components/reset-password.component.html
deleted file mode 100644
index b5f50841e13..00000000000
--- a/apps/web/src/app/admin-console/organizations/members/components/reset-password.component.html
+++ /dev/null
@@ -1,67 +0,0 @@
-<form [formGroup]="formGroup" [bitSubmit]="submit">
-  <bit-dialog [title]="'recoverAccount' | i18n" [subtitle]="data.name">
-    <ng-container bitDialogContent>
-      <bit-callout type="warning"
-        >{{ "resetPasswordLoggedOutWarning" | i18n: loggedOutWarningName }}
-      </bit-callout>
-      <auth-password-callout
-        [policy]="enforcedPolicyOptions"
-        message="resetPasswordMasterPasswordPolicyInEffect"
-        *ngIf="enforcedPolicyOptions"
-      >
-      </auth-password-callout>
-      <bit-form-field>
-        <bit-label>
-          {{ "newPassword" | i18n }}
-        </bit-label>
-        <input
-          id="newPassword"
-          bitInput
-          [type]="showPassword ? 'text' : 'password'"
-          name="NewPassword"
-          formControlName="newPassword"
-          required
-          appInputVerbatim
-          autocomplete="new-password"
-        />
-        <button
-          type="button"
-          bitIconButton="bwi-generate"
-          bitSuffix
-          [appA11yTitle]="'generatePassword' | i18n"
-          (click)="generatePassword()"
-        ></button>
-        <button
-          type="button"
-          bitSuffix
-          [bitIconButton]="showPassword ? 'bwi-eye-slash' : 'bwi-eye'"
-          buttonType="secondary"
-          appA11yTitle="{{ 'toggleVisibility' | i18n }}"
-          (click)="togglePassword()"
-        ></button>
-        <button
-          type="button"
-          bitSuffix
-          bitIconButton="bwi-clone"
-          appA11yTitle="{{ 'copyPassword' | i18n }}"
-          (click)="copy()"
-        ></button>
-      </bit-form-field>
-      <tools-password-strength
-        [password]="formGroup.value.newPassword"
-        [email]="data.email"
-        [showText]="true"
-        (passwordStrengthScore)="getStrengthScore($event)"
-      >
-      </tools-password-strength>
-    </ng-container>
-    <ng-container bitDialogFooter>
-      <button bitButton buttonType="primary" bitFormButton type="submit">
-        {{ "save" | i18n }}
-      </button>
-      <button bitButton buttonType="secondary" bitDialogClose type="button">
-        {{ "cancel" | i18n }}
-      </button>
-    </ng-container>
-  </bit-dialog>
-</form>
diff --git a/apps/web/src/app/admin-console/organizations/members/components/reset-password.component.ts b/apps/web/src/app/admin-console/organizations/members/components/reset-password.component.ts
deleted file mode 100644
index 961d5482d8a..00000000000
--- a/apps/web/src/app/admin-console/organizations/members/components/reset-password.component.ts
+++ /dev/null
@@ -1,223 +0,0 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
-import { Component, Inject, OnDestroy, OnInit, ViewChild } from "@angular/core";
-import { FormBuilder, Validators } from "@angular/forms";
-import { Subject, switchMap, takeUntil } from "rxjs";
-
-import { PasswordStrengthV2Component } from "@bitwarden/angular/tools/password-strength/password-strength-v2.component";
-import { PolicyService } from "@bitwarden/common/admin-console/abstractions/policy/policy.service.abstraction";
-import { MasterPasswordPolicyOptions } from "@bitwarden/common/admin-console/models/domain/master-password-policy-options";
-import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
-import { getUserId } from "@bitwarden/common/auth/services/account.service";
-import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
-import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
-import { Utils } from "@bitwarden/common/platform/misc/utils";
-import { OrganizationId } from "@bitwarden/common/types/guid";
-import {
-  DIALOG_DATA,
-  DialogConfig,
-  DialogRef,
-  DialogService,
-  ToastService,
-} from "@bitwarden/components";
-import { PasswordGenerationServiceAbstraction } from "@bitwarden/generator-legacy";
-
-import { OrganizationUserResetPasswordService } from "../services/organization-user-reset-password/organization-user-reset-password.service";
-
-/**
- * Encapsulates a few key data inputs needed to initiate an account recovery
- * process for the organization user in question.
- */
-export type ResetPasswordDialogData = {
-  /**
-   * The organization user's full name
-   */
-  name: string;
-
-  /**
-   * The organization user's email address
-   */
-  email: string;
-
-  /**
-   * The `organizationUserId` for the user
-   */
-  id: string;
-
-  /**
-   * The organization's `organizationId`
-   */
-  organizationId: OrganizationId;
-};
-
-// FIXME: update to use a const object instead of a typescript enum
-// eslint-disable-next-line @bitwarden/platform/no-enums
-export enum ResetPasswordDialogResult {
-  Ok = "ok",
-}
-
-/**
- * Used in a dialog for initiating the account recovery process against a
- * given organization user. An admin will access this form when they want to
- * reset a user's password and log them out of sessions.
- *
- * @deprecated Use the `AccountRecoveryDialogComponent` instead.
- */
-@Component({
-  selector: "app-reset-password",
-  templateUrl: "reset-password.component.html",
-  standalone: false,
-})
-export class ResetPasswordComponent implements OnInit, OnDestroy {
-  formGroup = this.formBuilder.group({
-    newPassword: ["", Validators.required],
-  });
-
-  @ViewChild(PasswordStrengthV2Component) passwordStrengthComponent: PasswordStrengthV2Component;
-
-  enforcedPolicyOptions: MasterPasswordPolicyOptions;
-  showPassword = false;
-  passwordStrengthScore: number;
-
-  private destroy$ = new Subject<void>();
-
-  constructor(
-    @Inject(DIALOG_DATA) protected data: ResetPasswordDialogData,
-    private resetPasswordService: OrganizationUserResetPasswordService,
-    private i18nService: I18nService,
-    private platformUtilsService: PlatformUtilsService,
-    private passwordGenerationService: PasswordGenerationServiceAbstraction,
-    private policyService: PolicyService,
-    private logService: LogService,
-    private dialogService: DialogService,
-    private toastService: ToastService,
-    private formBuilder: FormBuilder,
-    private dialogRef: DialogRef<ResetPasswordDialogResult>,
-    private accountService: AccountService,
-  ) {}
-
-  async ngOnInit() {
-    this.accountService.activeAccount$
-      .pipe(
-        getUserId,
-        switchMap((userId) => this.policyService.masterPasswordPolicyOptions$(userId)),
-        takeUntil(this.destroy$),
-      )
-      .subscribe(
-        (enforcedPasswordPolicyOptions) =>
-          (this.enforcedPolicyOptions = enforcedPasswordPolicyOptions),
-      );
-  }
-
-  ngOnDestroy() {
-    this.destroy$.next();
-    this.destroy$.complete();
-  }
-
-  get loggedOutWarningName() {
-    return this.data.name != null ? this.data.name : this.i18nService.t("thisUser");
-  }
-
-  async generatePassword() {
-    const options = (await this.passwordGenerationService.getOptions())?.[0] ?? {};
-    this.formGroup.patchValue({
-      newPassword: await this.passwordGenerationService.generatePassword(options),
-    });
-    this.passwordStrengthComponent.updatePasswordStrength(this.formGroup.value.newPassword);
-  }
-
-  togglePassword() {
-    this.showPassword = !this.showPassword;
-    document.getElementById("newPassword").focus();
-  }
-
-  copy() {
-    const value = this.formGroup.value.newPassword;
-    if (value == null) {
-      return;
-    }
-
-    this.platformUtilsService.copyToClipboard(value, { window: window });
-    this.toastService.showToast({
-      variant: "info",
-      title: null,
-      message: this.i18nService.t("valueCopied", this.i18nService.t("password")),
-    });
-  }
-
-  submit = async () => {
-    // Validation
-    if (this.formGroup.value.newPassword == null || this.formGroup.value.newPassword === "") {
-      this.toastService.showToast({
-        variant: "error",
-        title: this.i18nService.t("errorOccurred"),
-        message: this.i18nService.t("masterPasswordRequired"),
-      });
-      return false;
-    }
-
-    if (this.formGroup.value.newPassword.length < Utils.minimumPasswordLength) {
-      this.toastService.showToast({
-        variant: "error",
-        title: this.i18nService.t("errorOccurred"),
-        message: this.i18nService.t("masterPasswordMinlength", Utils.minimumPasswordLength),
-      });
-      return false;
-    }
-
-    if (
-      this.enforcedPolicyOptions != null &&
-      !this.policyService.evaluateMasterPassword(
-        this.passwordStrengthScore,
-        this.formGroup.value.newPassword,
-        this.enforcedPolicyOptions,
-      )
-    ) {
-      this.toastService.showToast({
-        variant: "error",
-        title: this.i18nService.t("errorOccurred"),
-        message: this.i18nService.t("masterPasswordPolicyRequirementsNotMet"),
-      });
-      return;
-    }
-
-    if (this.passwordStrengthScore < 3) {
-      const result = await this.dialogService.openSimpleDialog({
-        title: { key: "weakMasterPassword" },
-        content: { key: "weakMasterPasswordDesc" },
-        type: "warning",
-      });
-
-      if (!result) {
-        return false;
-      }
-    }
-
-    try {
-      await this.resetPasswordService.resetMasterPassword(
-        this.formGroup.value.newPassword,
-        this.data.email,
-        this.data.id,
-        this.data.organizationId,
-      );
-      this.toastService.showToast({
-        variant: "success",
-        title: null,
-        message: this.i18nService.t("resetPasswordSuccess"),
-      });
-    } catch (e) {
-      this.logService.error(e);
-    }
-
-    this.dialogRef.close(ResetPasswordDialogResult.Ok);
-  };
-
-  getStrengthScore(result: number) {
-    this.passwordStrengthScore = result;
-  }
-
-  static open = (dialogService: DialogService, input: DialogConfig<ResetPasswordDialogData>) => {
-    return dialogService.open<ResetPasswordDialogResult>(ResetPasswordComponent, input);
-  };
-}
diff --git a/apps/web/src/app/admin-console/organizations/members/members.component.ts b/apps/web/src/app/admin-console/organizations/members/members.component.ts
index 77a0cecce8e..2a84efd3320 100644
--- a/apps/web/src/app/admin-console/organizations/members/members.component.ts
+++ b/apps/web/src/app/admin-console/organizations/members/members.component.ts
@@ -86,10 +86,6 @@ import {
   openUserAddEditDialog,
 } from "./components/member-dialog";
 import { isFixedSeatPlan } from "./components/member-dialog/validators/org-seat-limit-reached.validator";
-import {
-  ResetPasswordComponent,
-  ResetPasswordDialogResult,
-} from "./components/reset-password.component";
 import { DeleteManagedMemberWarningService } from "./services/delete-managed-member/delete-managed-member-warning.service";
 import { OrganizationUserService } from "./services/organization-user/organization-user.service";
 
@@ -767,52 +763,32 @@ export class MembersComponent extends BaseMembersComponent<OrganizationUserView>
   }
 
   async resetPassword(user: OrganizationUserView) {
-    const changePasswordRefactorFlag = await this.configService.getFeatureFlag(
-      FeatureFlag.PM16117_ChangeExistingPasswordRefactor,
-    );
-
-    if (changePasswordRefactorFlag) {
-      if (!user || !user.email || !user.id) {
-        this.toastService.showToast({
-          variant: "error",
-          title: this.i18nService.t("errorOccurred"),
-          message: this.i18nService.t("orgUserDetailsNotFound"),
-        });
-        this.logService.error("Org user details not found when attempting account recovery");
-
-        return;
-      }
-
-      const dialogRef = AccountRecoveryDialogComponent.open(this.dialogService, {
-        data: {
-          name: this.userNamePipe.transform(user),
-          email: user.email,
-          organizationId: this.organization.id as OrganizationId,
-          organizationUserId: user.id,
-        },
+    if (!user || !user.email || !user.id) {
+      this.toastService.showToast({
+        variant: "error",
+        title: this.i18nService.t("errorOccurred"),
+        message: this.i18nService.t("orgUserDetailsNotFound"),
       });
-
-      const result = await lastValueFrom(dialogRef.closed);
-      if (result === AccountRecoveryDialogResultType.Ok) {
-        await this.load();
-      }
+      this.logService.error("Org user details not found when attempting account recovery");
 
       return;
     }
 
-    const dialogRef = ResetPasswordComponent.open(this.dialogService, {
+    const dialogRef = AccountRecoveryDialogComponent.open(this.dialogService, {
       data: {
         name: this.userNamePipe.transform(user),
-        email: user != null ? user.email : null,
+        email: user.email,
         organizationId: this.organization.id as OrganizationId,
-        id: user != null ? user.id : null,
+        organizationUserId: user.id,
       },
     });
 
     const result = await lastValueFrom(dialogRef.closed);
-    if (result === ResetPasswordDialogResult.Ok) {
+    if (result === AccountRecoveryDialogResultType.Ok) {
       await this.load();
     }
+
+    return;
   }
 
   protected async removeUserConfirmationDialog(user: OrganizationUserView) {
diff --git a/apps/web/src/app/admin-console/organizations/members/members.module.ts b/apps/web/src/app/admin-console/organizations/members/members.module.ts
index 5f626d44161..d9c5ae356a2 100644
--- a/apps/web/src/app/admin-console/organizations/members/members.module.ts
+++ b/apps/web/src/app/admin-console/organizations/members/members.module.ts
@@ -16,7 +16,6 @@ import { BulkRemoveDialogComponent } from "./components/bulk/bulk-remove-dialog.
 import { BulkRestoreRevokeComponent } from "./components/bulk/bulk-restore-revoke.component";
 import { BulkStatusComponent } from "./components/bulk/bulk-status.component";
 import { UserDialogModule } from "./components/member-dialog";
-import { ResetPasswordComponent } from "./components/reset-password.component";
 import { MembersRoutingModule } from "./members-routing.module";
 import { MembersComponent } from "./members.component";
 
@@ -39,7 +38,6 @@ import { MembersComponent } from "./members.component";
     BulkRestoreRevokeComponent,
     BulkStatusComponent,
     MembersComponent,
-    ResetPasswordComponent,
     BulkDeleteDialogComponent,
   ],
 })
diff --git a/apps/web/src/app/auth/core/services/index.ts b/apps/web/src/app/auth/core/services/index.ts
index 8c556986225..02f13cd436b 100644
--- a/apps/web/src/app/auth/core/services/index.ts
+++ b/apps/web/src/app/auth/core/services/index.ts
@@ -3,7 +3,6 @@ export * from "./login";
 export * from "./login-decryption-options";
 export * from "./webauthn-login";
 export * from "./password-management";
-export * from "./set-password-jit";
 export * from "./registration";
 export * from "./two-factor-auth";
 export * from "./link-sso.service";
diff --git a/apps/web/src/app/auth/core/services/login/web-login-component.service.spec.ts b/apps/web/src/app/auth/core/services/login/web-login-component.service.spec.ts
index 4cc06baf32b..799e10bc15c 100644
--- a/apps/web/src/app/auth/core/services/login/web-login-component.service.spec.ts
+++ b/apps/web/src/app/auth/core/services/login/web-login-component.service.spec.ts
@@ -1,6 +1,5 @@
 import { TestBed } from "@angular/core/testing";
 import { MockProxy, mock } from "jest-mock-extended";
-import { of } from "rxjs";
 
 import { DefaultLoginComponentService } from "@bitwarden/auth/angular";
 import { PolicyApiServiceAbstraction } from "@bitwarden/common/admin-console/abstractions/policy/policy-api.service.abstraction";
@@ -138,8 +137,8 @@ describe("WebLoginComponentService", () => {
           resetPasswordPolicyEnabled,
         ]);
 
-        internalPolicyService.masterPasswordPolicyOptions$.mockReturnValue(
-          of(masterPasswordPolicyOptions),
+        internalPolicyService.combinePoliciesIntoMasterPasswordPolicyOptions.mockReturnValue(
+          masterPasswordPolicyOptions,
         );
 
         const result = await service.getOrgPoliciesFromOrgInvite();
diff --git a/apps/web/src/app/auth/core/services/login/web-login-component.service.ts b/apps/web/src/app/auth/core/services/login/web-login-component.service.ts
index cf0adb91144..4ee84ecfde2 100644
--- a/apps/web/src/app/auth/core/services/login/web-login-component.service.ts
+++ b/apps/web/src/app/auth/core/services/login/web-login-component.service.ts
@@ -2,7 +2,6 @@
 // @ts-strict-ignore
 import { Injectable } from "@angular/core";
 import { Router } from "@angular/router";
-import { firstValueFrom, switchMap } from "rxjs";
 
 import {
   DefaultLoginComponentService,
@@ -11,13 +10,10 @@ import {
 } from "@bitwarden/auth/angular";
 import { PolicyApiServiceAbstraction } from "@bitwarden/common/admin-console/abstractions/policy/policy-api.service.abstraction";
 import { InternalPolicyService } from "@bitwarden/common/admin-console/abstractions/policy/policy.service.abstraction";
-import { MasterPasswordPolicyOptions } from "@bitwarden/common/admin-console/models/domain/master-password-policy-options";
 import { Policy } from "@bitwarden/common/admin-console/models/domain/policy";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { SsoLoginServiceAbstraction } from "@bitwarden/common/auth/abstractions/sso-login.service.abstraction";
-import { getUserId } from "@bitwarden/common/auth/services/account.service";
 import { OrganizationInviteService } from "@bitwarden/common/auth/services/organization-invite/organization-invite.service";
-import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
 import { CryptoFunctionService } from "@bitwarden/common/key-management/crypto/abstractions/crypto-function.service";
 import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { EnvironmentService } from "@bitwarden/common/platform/abstractions/environment.service";
@@ -99,23 +95,8 @@ export class WebLoginComponentService
       const isPolicyAndAutoEnrollEnabled =
         resetPasswordPolicy[1] && resetPasswordPolicy[0].autoEnrollEnabled;
 
-      let enforcedPasswordPolicyOptions: MasterPasswordPolicyOptions;
-
-      if (
-        await this.configService.getFeatureFlag(FeatureFlag.PM16117_ChangeExistingPasswordRefactor)
-      ) {
-        enforcedPasswordPolicyOptions =
-          this.policyService.combinePoliciesIntoMasterPasswordPolicyOptions(policies);
-      } else {
-        enforcedPasswordPolicyOptions = await firstValueFrom(
-          this.accountService.activeAccount$.pipe(
-            getUserId,
-            switchMap((userId) =>
-              this.policyService.masterPasswordPolicyOptions$(userId, policies),
-            ),
-          ),
-        );
-      }
+      const enforcedPasswordPolicyOptions =
+        this.policyService.combinePoliciesIntoMasterPasswordPolicyOptions(policies);
 
       return {
         policies,
diff --git a/apps/web/src/app/auth/core/services/set-password-jit/index.ts b/apps/web/src/app/auth/core/services/set-password-jit/index.ts
deleted file mode 100644
index fc119fd964f..00000000000
--- a/apps/web/src/app/auth/core/services/set-password-jit/index.ts
+++ /dev/null
@@ -1 +0,0 @@
-export * from "./web-set-password-jit.service";
diff --git a/apps/web/src/app/auth/core/services/set-password-jit/web-set-password-jit.service.ts b/apps/web/src/app/auth/core/services/set-password-jit/web-set-password-jit.service.ts
deleted file mode 100644
index 3078b8e3b83..00000000000
--- a/apps/web/src/app/auth/core/services/set-password-jit/web-set-password-jit.service.ts
+++ /dev/null
@@ -1,27 +0,0 @@
-import { inject } from "@angular/core";
-
-import {
-  DefaultSetPasswordJitService,
-  SetPasswordCredentials,
-  SetPasswordJitService,
-} from "@bitwarden/auth/angular";
-import { OrganizationInviteService } from "@bitwarden/common/auth/services/organization-invite/organization-invite.service";
-
-import { RouterService } from "../../../../core/router.service";
-
-export class WebSetPasswordJitService
-  extends DefaultSetPasswordJitService
-  implements SetPasswordJitService
-{
-  routerService = inject(RouterService);
-  organizationInviteService = inject(OrganizationInviteService);
-
-  override async setPassword(credentials: SetPasswordCredentials) {
-    await super.setPassword(credentials);
-
-    // SSO JIT accepts org invites when setting their MP, meaning
-    // we can clear the deep linked url for accepting it.
-    await this.routerService.getAndClearLoginRedirectUrl();
-    await this.organizationInviteService.clearOrganizationInvitation();
-  }
-}
diff --git a/apps/web/src/app/auth/set-password.component.html b/apps/web/src/app/auth/set-password.component.html
deleted file mode 100644
index 252893d22cb..00000000000
--- a/apps/web/src/app/auth/set-password.component.html
+++ /dev/null
@@ -1,130 +0,0 @@
-<form #form (ngSubmit)="submit()" [appApiAction]="formPromise" ngNativeValidate autocomplete="off">
-  <div class="row justify-content-md-center mt-5">
-    <div class="col-5">
-      <p class="lead text-center mb-4">{{ "setMasterPassword" | i18n }}</p>
-      <div class="card d-block">
-        <div class="card-body text-center" *ngIf="syncLoading">
-          <i class="bwi bwi-spinner bwi-spin" title="{{ 'loading' | i18n }}" aria-hidden="true"></i>
-          {{ "loading" | i18n }}
-        </div>
-        <div class="card-body" *ngIf="!syncLoading">
-          <p
-            *ngIf="
-              forceSetPasswordReason ==
-                ForceSetPasswordReason.TdeUserWithoutPasswordHasPasswordResetPermission;
-              else defaultCardDesc
-            "
-          >
-            {{ "orgPermissionsUpdatedMustSetPassword" | i18n }}
-          </p>
-
-          <ng-template #defaultCardDesc>
-            <p>{{ "orgRequiresYouToSetPassword" | i18n }}</p>
-          </ng-template>
-
-          <app-callout
-            type="warning"
-            title="{{ 'resetPasswordPolicyAutoEnroll' | i18n }}"
-            *ngIf="resetPasswordAutoEnroll"
-          >
-            {{ "resetPasswordAutoEnrollInviteWarning" | i18n }}
-          </app-callout>
-          <div class="form-group">
-            <auth-password-callout [policy]="enforcedPolicyOptions" *ngIf="enforcedPolicyOptions">
-            </auth-password-callout>
-            <label for="masterPassword">{{ "masterPass" | i18n }}</label>
-            <div class="d-flex">
-              <div class="w-100">
-                <input
-                  id="masterPassword"
-                  type="{{ showPassword ? 'text' : 'password' }}"
-                  name="MasterPasswordHash"
-                  class="text-monospace form-control mb-1"
-                  [(ngModel)]="masterPassword"
-                  required
-                  appInputVerbatim
-                />
-                <app-password-strength
-                  [password]="masterPassword"
-                  [email]="email"
-                  [showText]="true"
-                  (passwordStrengthResult)="getStrengthResult($event)"
-                >
-                </app-password-strength>
-              </div>
-              <div>
-                <button
-                  type="button"
-                  class="ml-1 btn btn-link"
-                  appA11yTitle="{{ 'toggleVisibility' | i18n }}"
-                  (click)="togglePassword(false)"
-                >
-                  <i
-                    class="bwi bwi-lg"
-                    aria-hidden="true"
-                    [ngClass]="{ 'bwi-eye': !showPassword, 'bwi-eye-slash': showPassword }"
-                  ></i>
-                </button>
-                <div class="progress-bar invisible"></div>
-              </div>
-            </div>
-            <small class="form-text text-muted">{{ "masterPassDesc" | i18n }}</small>
-          </div>
-          <div class="form-group">
-            <label for="masterPasswordRetype">{{ "reTypeMasterPass" | i18n }}</label>
-            <div class="d-flex">
-              <input
-                id="masterPasswordRetype"
-                type="{{ showPassword ? 'text' : 'password' }}"
-                name="MasterPasswordRetype"
-                class="text-monospace form-control"
-                [(ngModel)]="masterPasswordRetype"
-                required
-                appInputVerbatim
-              />
-              <button
-                type="button"
-                class="ml-1 btn btn-link"
-                appA11yTitle="{{ 'toggleVisibility' | i18n }}"
-                (click)="togglePassword(true)"
-              >
-                <i
-                  class="bwi bwi-lg"
-                  aria-hidden="true"
-                  [ngClass]="{ 'bwi-eye': !showPassword, 'bwi-eye-slash': showPassword }"
-                ></i>
-              </button>
-            </div>
-          </div>
-          <div class="form-group">
-            <label for="hint">{{ "masterPassHint" | i18n }}</label>
-            <input id="hint" class="form-control" type="text" name="Hint" [(ngModel)]="hint" />
-            <small class="form-text text-muted">{{ "masterPassHintDesc" | i18n }}</small>
-          </div>
-          <hr />
-          <div class="d-flex">
-            <button
-              type="submit"
-              class="btn btn-primary btn-block btn-submit"
-              [disabled]="form.loading"
-            >
-              <i
-                class="bwi bwi-spinner bwi-spin"
-                title="{{ 'loading' | i18n }}"
-                aria-hidden="true"
-              ></i>
-              <span>{{ "submit" | i18n }}</span>
-            </button>
-            <button
-              type="button"
-              class="btn btn-outline-secondary btn-block ml-2 mt-0"
-              (click)="logOut()"
-            >
-              {{ "logOut" | i18n }}
-            </button>
-          </div>
-        </div>
-      </div>
-    </div>
-  </div>
-</form>
diff --git a/apps/web/src/app/auth/set-password.component.ts b/apps/web/src/app/auth/set-password.component.ts
deleted file mode 100644
index a2044e298a5..00000000000
--- a/apps/web/src/app/auth/set-password.component.ts
+++ /dev/null
@@ -1,30 +0,0 @@
-import { Component, inject } from "@angular/core";
-
-import { SetPasswordComponent as BaseSetPasswordComponent } from "@bitwarden/angular/auth/components/set-password.component";
-import { OrganizationInviteService } from "@bitwarden/common/auth/services/organization-invite/organization-invite.service";
-import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
-import { MasterKey, UserKey } from "@bitwarden/common/types/key";
-
-import { RouterService } from "../core";
-
-@Component({
-  selector: "app-set-password",
-  templateUrl: "set-password.component.html",
-  standalone: false,
-})
-export class SetPasswordComponent extends BaseSetPasswordComponent {
-  routerService = inject(RouterService);
-  organizationInviteService = inject(OrganizationInviteService);
-
-  protected override async onSetPasswordSuccess(
-    masterKey: MasterKey,
-    userKey: [UserKey, EncString],
-    keyPair: [string, EncString],
-  ): Promise<void> {
-    await super.onSetPasswordSuccess(masterKey, userKey, keyPair);
-    // SSO JIT accepts org invites when setting their MP, meaning
-    // we can clear the deep linked url for accepting it.
-    await this.routerService.getAndClearLoginRedirectUrl();
-    await this.organizationInviteService.clearOrganizationInvitation();
-  }
-}
diff --git a/apps/web/src/app/auth/settings/change-password.component.html b/apps/web/src/app/auth/settings/change-password.component.html
deleted file mode 100644
index 34bb74ee473..00000000000
--- a/apps/web/src/app/auth/settings/change-password.component.html
+++ /dev/null
@@ -1,129 +0,0 @@
-<div class="tabbed-header">
-  <h1>{{ "changeMasterPassword" | i18n }}</h1>
-</div>
-
-<bit-callout type="warning">{{ "loggedOutWarning" | i18n }}</bit-callout>
-<auth-password-callout [policy]="enforcedPolicyOptions" *ngIf="enforcedPolicyOptions">
-</auth-password-callout>
-
-<form
-  #form
-  (ngSubmit)="submit()"
-  [appApiAction]="formPromise"
-  ngNativeValidate
-  autocomplete="off"
-  class="tw-mb-14"
->
-  <div class="row">
-    <div class="col-6">
-      <div class="form-group">
-        <label for="currentMasterPassword">{{ "currentMasterPass" | i18n }}</label>
-        <input
-          id="currentMasterPassword"
-          type="password"
-          name="MasterPasswordHash"
-          class="form-control"
-          [(ngModel)]="currentMasterPassword"
-          required
-          appInputVerbatim
-        />
-      </div>
-    </div>
-  </div>
-  <div class="row">
-    <div class="col-6">
-      <div class="form-group">
-        <label for="newMasterPassword">{{ "newMasterPass" | i18n }}</label>
-        <input
-          id="newMasterPassword"
-          type="password"
-          name="NewMasterPasswordHash"
-          class="form-control mb-1"
-          [(ngModel)]="masterPassword"
-          required
-          appInputVerbatim
-          autocomplete="new-password"
-        />
-        <bit-hint>
-          <span class="tw-font-semibold">{{ "important" | i18n }}</span>
-          {{ "masterPassImportant" | i18n }} {{ characterMinimumMessage }}
-        </bit-hint>
-        <app-password-strength
-          [password]="masterPassword"
-          [email]="email"
-          [showText]="true"
-          (passwordStrengthResult)="getStrengthResult($event)"
-        >
-        </app-password-strength>
-      </div>
-    </div>
-    <div class="col-6">
-      <div class="form-group">
-        <label for="masterPasswordRetype">{{ "confirmNewMasterPass" | i18n }}</label>
-        <input
-          id="masterPasswordRetype"
-          type="password"
-          name="MasterPasswordRetype"
-          class="form-control"
-          [(ngModel)]="masterPasswordRetype"
-          required
-          appInputVerbatim
-          autocomplete="new-password"
-        />
-      </div>
-    </div>
-  </div>
-  <div class="form-group">
-    <div class="form-check">
-      <input
-        class="form-check-input"
-        type="checkbox"
-        id="checkForBreaches"
-        name="checkForBreaches"
-        [(ngModel)]="checkForBreaches"
-      />
-      <label class="form-check-label" for="checkForBreaches">
-        {{ "checkForBreaches" | i18n }}
-      </label>
-    </div>
-  </div>
-  <div class="form-group">
-    <div class="form-check">
-      <input
-        class="form-check-input"
-        type="checkbox"
-        id="rotateUserKey"
-        name="RotateUserKey"
-        [(ngModel)]="rotateUserKey"
-        (change)="rotateUserKeyClicked()"
-      />
-      <label class="form-check-label" for="rotateUserKey">
-        {{ "rotateAccountEncKey" | i18n }}
-      </label>
-      <a
-        href="https://bitwarden.com/help/account-encryption-key/#rotate-your-encryption-key"
-        target="_blank"
-        rel="noreferrer"
-        appA11yTitle="{{ 'impactOfRotatingYourEncryptionKey' | i18n }}"
-      >
-        <i class="bwi bwi-question-circle" aria-hidden="true"></i>
-      </a>
-    </div>
-  </div>
-  <div class="form-group">
-    <label for="masterPasswordHint">{{ "newMasterPassHint" | i18n }}</label>
-    <input
-      id="masterPasswordHint"
-      class="form-control"
-      maxlength="50"
-      type="text"
-      name="MasterPasswordHint"
-      [(ngModel)]="masterPasswordHint"
-    />
-  </div>
-  <button type="submit" buttonType="primary" bitButton [loading]="loading">
-    {{ "changeMasterPassword" | i18n }}
-  </button>
-</form>
-
-<app-webauthn-login-settings></app-webauthn-login-settings>
diff --git a/apps/web/src/app/auth/settings/change-password.component.ts b/apps/web/src/app/auth/settings/change-password.component.ts
deleted file mode 100644
index ce10a0e5a34..00000000000
--- a/apps/web/src/app/auth/settings/change-password.component.ts
+++ /dev/null
@@ -1,258 +0,0 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
-import { Component, OnDestroy, OnInit } from "@angular/core";
-import { Router } from "@angular/router";
-import { firstValueFrom, map } from "rxjs";
-
-import { ChangePasswordComponent as BaseChangePasswordComponent } from "@bitwarden/angular/auth/components/change-password.component";
-import { AuditService } from "@bitwarden/common/abstractions/audit.service";
-import { PolicyService } from "@bitwarden/common/admin-console/abstractions/policy/policy.service.abstraction";
-import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
-import { MasterPasswordApiService } from "@bitwarden/common/auth/abstractions/master-password-api.service.abstraction";
-import { UserVerificationService } from "@bitwarden/common/auth/abstractions/user-verification/user-verification.service.abstraction";
-import { PasswordRequest } from "@bitwarden/common/auth/models/request/password.request";
-import { getUserId } from "@bitwarden/common/auth/services/account.service";
-import { InternalMasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
-import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
-import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
-import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
-import { SyncService } from "@bitwarden/common/vault/abstractions/sync/sync.service.abstraction";
-import { DialogService, ToastService } from "@bitwarden/components";
-import { KdfConfigService, KeyService } from "@bitwarden/key-management";
-
-import { UserKeyRotationService } from "../../key-management/key-rotation/user-key-rotation.service";
-
-/**
- * @deprecated use the auth `PasswordSettingsComponent` instead
- */
-@Component({
-  selector: "app-change-password",
-  templateUrl: "change-password.component.html",
-  standalone: false,
-})
-export class ChangePasswordComponent
-  extends BaseChangePasswordComponent
-  implements OnInit, OnDestroy
-{
-  loading = false;
-  rotateUserKey = false;
-  currentMasterPassword: string;
-  masterPasswordHint: string;
-  checkForBreaches = true;
-  characterMinimumMessage = "";
-
-  constructor(
-    private auditService: AuditService,
-    private cipherService: CipherService,
-    private keyRotationService: UserKeyRotationService,
-    private masterPasswordApiService: MasterPasswordApiService,
-    private router: Router,
-    private syncService: SyncService,
-    private userVerificationService: UserVerificationService,
-    protected accountService: AccountService,
-    protected dialogService: DialogService,
-    protected i18nService: I18nService,
-    protected kdfConfigService: KdfConfigService,
-    protected keyService: KeyService,
-    protected masterPasswordService: InternalMasterPasswordServiceAbstraction,
-    protected messagingService: MessagingService,
-    protected platformUtilsService: PlatformUtilsService,
-    protected policyService: PolicyService,
-    protected toastService: ToastService,
-  ) {
-    super(
-      accountService,
-      dialogService,
-      i18nService,
-      kdfConfigService,
-      keyService,
-      masterPasswordService,
-      messagingService,
-      platformUtilsService,
-      policyService,
-      toastService,
-    );
-  }
-
-  async ngOnInit() {
-    if (!(await this.userVerificationService.hasMasterPassword())) {
-      // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-      // eslint-disable-next-line @typescript-eslint/no-floating-promises
-      this.router.navigate(["/settings/security/two-factor"]);
-    }
-
-    await super.ngOnInit();
-
-    this.characterMinimumMessage = this.i18nService.t("characterMinimum", this.minimumLength);
-  }
-
-  async rotateUserKeyClicked() {
-    if (this.rotateUserKey) {
-      const activeUserId = await firstValueFrom(this.accountService.activeAccount$.pipe(getUserId));
-
-      const ciphers = await this.cipherService.getAllDecrypted(activeUserId);
-      let hasOldAttachments = false;
-      if (ciphers != null) {
-        for (let i = 0; i < ciphers.length; i++) {
-          if (ciphers[i].organizationId == null && ciphers[i].hasOldAttachments) {
-            hasOldAttachments = true;
-            break;
-          }
-        }
-      }
-
-      if (hasOldAttachments) {
-        const learnMore = await this.dialogService.openSimpleDialog({
-          title: { key: "warning" },
-          content: { key: "oldAttachmentsNeedFixDesc" },
-          acceptButtonText: { key: "learnMore" },
-          cancelButtonText: { key: "close" },
-          type: "warning",
-        });
-
-        if (learnMore) {
-          this.platformUtilsService.launchUri(
-            "https://bitwarden.com/help/attachments/#add-storage-space",
-          );
-        }
-        this.rotateUserKey = false;
-        return;
-      }
-
-      const result = await this.dialogService.openSimpleDialog({
-        title: { key: "rotateEncKeyTitle" },
-        content:
-          this.i18nService.t("updateEncryptionKeyWarning") +
-          " " +
-          this.i18nService.t("updateEncryptionKeyAccountExportWarning") +
-          " " +
-          this.i18nService.t("rotateEncKeyConfirmation"),
-        type: "warning",
-      });
-
-      if (!result) {
-        this.rotateUserKey = false;
-      }
-    }
-  }
-
-  async submit() {
-    this.loading = true;
-    if (this.currentMasterPassword == null || this.currentMasterPassword === "") {
-      this.toastService.showToast({
-        variant: "error",
-        title: this.i18nService.t("errorOccurred"),
-        message: this.i18nService.t("masterPasswordRequired"),
-      });
-      this.loading = false;
-      return;
-    }
-
-    if (
-      this.masterPasswordHint != null &&
-      this.masterPasswordHint.toLowerCase() === this.masterPassword.toLowerCase()
-    ) {
-      this.toastService.showToast({
-        variant: "error",
-        title: this.i18nService.t("errorOccurred"),
-        message: this.i18nService.t("hintEqualsPassword"),
-      });
-      this.loading = false;
-      return;
-    }
-
-    this.leakedPassword = false;
-    if (this.checkForBreaches) {
-      this.leakedPassword = (await this.auditService.passwordLeaked(this.masterPassword)) > 0;
-    }
-
-    if (!(await this.strongPassword())) {
-      this.loading = false;
-      return;
-    }
-
-    try {
-      if (this.rotateUserKey) {
-        await this.syncService.fullSync(true);
-        const user = await firstValueFrom(this.accountService.activeAccount$);
-        await this.keyRotationService.rotateUserKeyMasterPasswordAndEncryptedData(
-          this.currentMasterPassword,
-          this.masterPassword,
-          user,
-          this.masterPasswordHint,
-        );
-      } else {
-        await this.updatePassword(this.masterPassword);
-      }
-    } catch (e) {
-      this.toastService.showToast({
-        variant: "error",
-        title: this.i18nService.t("errorOccurred"),
-        message: e.message,
-      });
-    } finally {
-      this.loading = false;
-    }
-  }
-
-  // todo: move this to a service
-  // https://bitwarden.atlassian.net/browse/PM-17108
-  private async updatePassword(newMasterPassword: string) {
-    const currentMasterPassword = this.currentMasterPassword;
-    const { userId, email } = await firstValueFrom(
-      this.accountService.activeAccount$.pipe(map((a) => ({ userId: a?.id, email: a?.email }))),
-    );
-    const kdfConfig = await firstValueFrom(this.kdfConfigService.getKdfConfig$(userId));
-
-    const currentMasterKey = await this.keyService.makeMasterKey(
-      currentMasterPassword,
-      email,
-      kdfConfig,
-    );
-    const decryptedUserKey = await this.masterPasswordService.decryptUserKeyWithMasterKey(
-      currentMasterKey,
-      userId,
-    );
-    if (decryptedUserKey == null) {
-      this.toastService.showToast({
-        variant: "error",
-        title: null,
-        message: this.i18nService.t("invalidMasterPassword"),
-      });
-      return;
-    }
-
-    const newMasterKey = await this.keyService.makeMasterKey(newMasterPassword, email, kdfConfig);
-    const newMasterKeyEncryptedUserKey = await this.keyService.encryptUserKeyWithMasterKey(
-      newMasterKey,
-      decryptedUserKey,
-    );
-
-    const request = new PasswordRequest();
-    request.masterPasswordHash = await this.keyService.hashMasterKey(
-      this.currentMasterPassword,
-      currentMasterKey,
-    );
-    request.masterPasswordHint = this.masterPasswordHint;
-    request.newMasterPasswordHash = await this.keyService.hashMasterKey(
-      newMasterPassword,
-      newMasterKey,
-    );
-    request.key = newMasterKeyEncryptedUserKey[1].encryptedString;
-    try {
-      await this.masterPasswordApiService.postPassword(request);
-      this.toastService.showToast({
-        variant: "success",
-        message: this.i18nService.t("masterPasswordChanged"),
-      });
-      this.messagingService.send("logout");
-    } catch {
-      this.toastService.showToast({
-        variant: "error",
-        title: null,
-        message: this.i18nService.t("errorOccurred"),
-      });
-    }
-  }
-}
diff --git a/apps/web/src/app/auth/settings/emergency-access/emergency-access.component.ts b/apps/web/src/app/auth/settings/emergency-access/emergency-access.component.ts
index 1d78bb7dd17..bc4bfc5ef1d 100644
--- a/apps/web/src/app/auth/settings/emergency-access/emergency-access.component.ts
+++ b/apps/web/src/app/auth/settings/emergency-access/emergency-access.component.ts
@@ -10,8 +10,6 @@ import { OrganizationManagementPreferencesService } from "@bitwarden/common/admi
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { getUserId } from "@bitwarden/common/auth/services/account.service";
 import { BillingAccountProfileStateService } from "@bitwarden/common/billing/abstractions/account/billing-account-profile-state.service";
-import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
-import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
@@ -40,10 +38,6 @@ import {
   EmergencyAccessTakeoverDialogComponent,
   EmergencyAccessTakeoverDialogResultType,
 } from "./takeover/emergency-access-takeover-dialog.component";
-import {
-  EmergencyAccessTakeoverComponent,
-  EmergencyAccessTakeoverResultType,
-} from "./takeover/emergency-access-takeover.component";
 
 @Component({
   selector: "emergency-access",
@@ -75,7 +69,6 @@ export class EmergencyAccessComponent implements OnInit {
     private toastService: ToastService,
     private apiService: ApiService,
     private accountService: AccountService,
-    private configService: ConfigService,
   ) {
     this.canAccessPremium$ = this.accountService.activeAccount$.pipe(
       switchMap((account) =>
@@ -292,60 +285,36 @@ export class EmergencyAccessComponent implements OnInit {
   }
 
   takeover = async (details: GrantorEmergencyAccess) => {
-    const changePasswordRefactorFlag = await this.configService.getFeatureFlag(
-      FeatureFlag.PM16117_ChangeExistingPasswordRefactor,
-    );
-
-    if (changePasswordRefactorFlag) {
-      if (!details || !details.email || !details.id) {
-        this.toastService.showToast({
-          variant: "error",
-          title: this.i18nService.t("errorOccurred"),
-          message: this.i18nService.t("grantorDetailsNotFound"),
-        });
-        this.logService.error(
-          "Grantor details not found when attempting emergency access takeover",
-        );
-
-        return;
-      }
-
-      const grantorName = this.userNamePipe.transform(details);
-
-      const dialogRef = EmergencyAccessTakeoverDialogComponent.open(this.dialogService, {
-        data: {
-          grantorName,
-          grantorEmail: details.email,
-          emergencyAccessId: details.id,
-        },
+    if (!details || !details.email || !details.id) {
+      this.toastService.showToast({
+        variant: "error",
+        title: this.i18nService.t("errorOccurred"),
+        message: this.i18nService.t("grantorDetailsNotFound"),
       });
-      const result = await lastValueFrom(dialogRef.closed);
-      if (result === EmergencyAccessTakeoverDialogResultType.Done) {
-        this.toastService.showToast({
-          variant: "success",
-          title: "",
-          message: this.i18nService.t("passwordResetFor", grantorName),
-        });
-      }
+      this.logService.error("Grantor details not found when attempting emergency access takeover");
 
       return;
     }
 
-    const dialogRef = EmergencyAccessTakeoverComponent.open(this.dialogService, {
+    const grantorName = this.userNamePipe.transform(details);
+
+    const dialogRef = EmergencyAccessTakeoverDialogComponent.open(this.dialogService, {
       data: {
-        name: this.userNamePipe.transform(details),
-        email: details.email,
-        emergencyAccessId: details.id ?? null,
+        grantorName,
+        grantorEmail: details.email,
+        emergencyAccessId: details.id,
       },
     });
     const result = await lastValueFrom(dialogRef.closed);
-    if (result === EmergencyAccessTakeoverResultType.Done) {
+    if (result === EmergencyAccessTakeoverDialogResultType.Done) {
       this.toastService.showToast({
         variant: "success",
-        title: null,
-        message: this.i18nService.t("passwordResetFor", this.userNamePipe.transform(details)),
+        title: "",
+        message: this.i18nService.t("passwordResetFor", grantorName),
       });
     }
+
+    return;
   };
 
   private removeGrantee(details: GranteeEmergencyAccess) {
diff --git a/apps/web/src/app/auth/settings/emergency-access/takeover/emergency-access-takeover.component.html b/apps/web/src/app/auth/settings/emergency-access/takeover/emergency-access-takeover.component.html
deleted file mode 100644
index 64b35344455..00000000000
--- a/apps/web/src/app/auth/settings/emergency-access/takeover/emergency-access-takeover.component.html
+++ /dev/null
@@ -1,54 +0,0 @@
-<form [formGroup]="takeoverForm" [bitSubmit]="submit">
-  <bit-dialog dialogSize="large">
-    <span bitDialogTitle>
-      {{ "takeover" | i18n }}
-      <small class="tw-text-muted" *ngIf="params.name">{{ params.name }}</small>
-    </span>
-    <div bitDialogContent>
-      <bit-callout type="warning">{{ "loggedOutWarning" | i18n }}</bit-callout>
-      <auth-password-callout [policy]="enforcedPolicyOptions" *ngIf="enforcedPolicyOptions">
-      </auth-password-callout>
-      <div class="tw-w-full tw-flex tw-gap-4">
-        <div class="tw-relative tw-flex-1">
-          <bit-form-field disableMargin class="tw-mb-2">
-            <bit-label>{{ "newMasterPass" | i18n }}</bit-label>
-            <input
-              bitInput
-              type="password"
-              autocomplete="new-password"
-              formControlName="masterPassword"
-            />
-            <button type="button" bitSuffix bitIconButton bitPasswordInputToggle></button>
-          </bit-form-field>
-          <app-password-strength
-            [password]="takeoverForm.value.masterPassword"
-            [email]="email"
-            [showText]="true"
-            (passwordStrengthResult)="getStrengthResult($event)"
-          >
-          </app-password-strength>
-        </div>
-        <div class="tw-relative tw-flex-1">
-          <bit-form-field disableMargin class="tw-mb-2">
-            <bit-label>{{ "confirmNewMasterPass" | i18n }}</bit-label>
-            <input
-              bitInput
-              type="password"
-              autocomplete="new-password"
-              formControlName="masterPasswordRetype"
-            />
-            <button type="button" bitSuffix bitIconButton bitPasswordInputToggle></button>
-          </bit-form-field>
-        </div>
-      </div>
-    </div>
-    <ng-container bitDialogFooter>
-      <button type="submit" bitButton bitFormButton buttonType="primary">
-        {{ "save" | i18n }}
-      </button>
-      <button bitButton bitFormButton type="button" buttonType="secondary" bitDialogClose>
-        {{ "cancel" | i18n }}
-      </button>
-    </ng-container>
-  </bit-dialog>
-</form>
diff --git a/apps/web/src/app/auth/settings/emergency-access/takeover/emergency-access-takeover.component.ts b/apps/web/src/app/auth/settings/emergency-access/takeover/emergency-access-takeover.component.ts
deleted file mode 100644
index ede60887725..00000000000
--- a/apps/web/src/app/auth/settings/emergency-access/takeover/emergency-access-takeover.component.ts
+++ /dev/null
@@ -1,145 +0,0 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
-import { Component, OnDestroy, OnInit, Inject, Input } from "@angular/core";
-import { FormBuilder, Validators } from "@angular/forms";
-import { switchMap, takeUntil } from "rxjs";
-
-import { ChangePasswordComponent } from "@bitwarden/angular/auth/components/change-password.component";
-import { PolicyService } from "@bitwarden/common/admin-console/abstractions/policy/policy.service.abstraction";
-import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
-import { getUserId } from "@bitwarden/common/auth/services/account.service";
-import { InternalMasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
-import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
-import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
-import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
-import {
-  DialogConfig,
-  DialogRef,
-  DIALOG_DATA,
-  DialogService,
-  ToastService,
-} from "@bitwarden/components";
-import { KdfType, KdfConfigService, KeyService } from "@bitwarden/key-management";
-
-import { EmergencyAccessService } from "../../../emergency-access";
-
-// FIXME: update to use a const object instead of a typescript enum
-// eslint-disable-next-line @bitwarden/platform/no-enums
-export enum EmergencyAccessTakeoverResultType {
-  Done = "done",
-}
-type EmergencyAccessTakeoverDialogData = {
-  /** display name of the account requesting emergency access takeover */
-  name: string;
-  /** email of the account requesting emergency access takeover */
-  email: string;
-  /** traces a unique emergency request  */
-  emergencyAccessId: string;
-};
-@Component({
-  selector: "emergency-access-takeover",
-  templateUrl: "emergency-access-takeover.component.html",
-  standalone: false,
-})
-export class EmergencyAccessTakeoverComponent
-  extends ChangePasswordComponent
-  implements OnInit, OnDestroy
-{
-  @Input() kdf: KdfType;
-  @Input() kdfIterations: number;
-  takeoverForm = this.formBuilder.group({
-    masterPassword: ["", [Validators.required]],
-    masterPasswordRetype: ["", [Validators.required]],
-  });
-
-  constructor(
-    @Inject(DIALOG_DATA) protected params: EmergencyAccessTakeoverDialogData,
-    private formBuilder: FormBuilder,
-    i18nService: I18nService,
-    keyService: KeyService,
-    messagingService: MessagingService,
-    platformUtilsService: PlatformUtilsService,
-    policyService: PolicyService,
-    private emergencyAccessService: EmergencyAccessService,
-    private logService: LogService,
-    dialogService: DialogService,
-    private dialogRef: DialogRef<EmergencyAccessTakeoverResultType>,
-    kdfConfigService: KdfConfigService,
-    masterPasswordService: InternalMasterPasswordServiceAbstraction,
-    accountService: AccountService,
-    protected toastService: ToastService,
-  ) {
-    super(
-      accountService,
-      dialogService,
-      i18nService,
-      kdfConfigService,
-      keyService,
-      masterPasswordService,
-      messagingService,
-      platformUtilsService,
-      policyService,
-      toastService,
-    );
-  }
-
-  async ngOnInit() {
-    const policies = await this.emergencyAccessService.getGrantorPolicies(
-      this.params.emergencyAccessId,
-    );
-    this.accountService.activeAccount$
-      .pipe(
-        getUserId,
-        switchMap((userId) => this.policyService.masterPasswordPolicyOptions$(userId, policies)),
-        takeUntil(this.destroy$),
-      )
-      .subscribe((enforcedPolicyOptions) => (this.enforcedPolicyOptions = enforcedPolicyOptions));
-  }
-
-  ngOnDestroy(): void {
-    super.ngOnDestroy();
-  }
-
-  submit = async () => {
-    if (this.takeoverForm.invalid) {
-      this.takeoverForm.markAllAsTouched();
-      return;
-    }
-    this.masterPassword = this.takeoverForm.get("masterPassword").value;
-    this.masterPasswordRetype = this.takeoverForm.get("masterPasswordRetype").value;
-    if (!(await this.strongPassword())) {
-      return;
-    }
-
-    try {
-      await this.emergencyAccessService.takeover(
-        this.params.emergencyAccessId,
-        this.masterPassword,
-        this.params.email,
-      );
-    } catch (e) {
-      this.logService.error(e);
-      this.toastService.showToast({
-        variant: "error",
-        title: this.i18nService.t("errorOccurred"),
-        message: this.i18nService.t("unexpectedError"),
-      });
-    }
-    this.dialogRef.close(EmergencyAccessTakeoverResultType.Done);
-  };
-  /**
-   * Strongly typed helper to open a EmergencyAccessTakeoverComponent
-   * @param dialogService Instance of the dialog service that will be used to open the dialog
-   * @param config Configuration for the dialog
-   */
-  static open = (
-    dialogService: DialogService,
-    config: DialogConfig<EmergencyAccessTakeoverDialogData>,
-  ) => {
-    return dialogService.open<EmergencyAccessTakeoverResultType>(
-      EmergencyAccessTakeoverComponent,
-      config,
-    );
-  };
-}
diff --git a/apps/web/src/app/auth/settings/security/security-routing.module.ts b/apps/web/src/app/auth/settings/security/security-routing.module.ts
index 2ec1be5cb7f..f7586329380 100644
--- a/apps/web/src/app/auth/settings/security/security-routing.module.ts
+++ b/apps/web/src/app/auth/settings/security/security-routing.module.ts
@@ -2,11 +2,9 @@ import { NgModule } from "@angular/core";
 import { RouterModule, Routes } from "@angular/router";
 
 import { DeviceManagementComponent } from "@bitwarden/angular/auth/device-management/device-management.component";
-import { canAccessFeature } from "@bitwarden/angular/platform/guard/feature-flag.guard";
 import { featureFlaggedRoute } from "@bitwarden/angular/platform/utils/feature-flagged-route";
 import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
 
-import { ChangePasswordComponent } from "../change-password.component";
 import { TwoFactorSetupComponent } from "../two-factor/two-factor-setup.component";
 
 import { DeviceManagementOldComponent } from "./device-management-old.component";
@@ -21,30 +19,9 @@ const routes: Routes = [
     data: { titleId: "security" },
     children: [
       { path: "", pathMatch: "full", redirectTo: "password" },
-      {
-        path: "change-password",
-        component: ChangePasswordComponent,
-        canActivate: [
-          canAccessFeature(
-            FeatureFlag.PM16117_ChangeExistingPasswordRefactor,
-            false,
-            "/settings/security/password",
-            false,
-          ),
-        ],
-        data: { titleId: "masterPassword" },
-      },
       {
         path: "password",
         component: PasswordSettingsComponent,
-        canActivate: [
-          canAccessFeature(
-            FeatureFlag.PM16117_ChangeExistingPasswordRefactor,
-            true,
-            "/settings/security/change-password",
-            false,
-          ),
-        ],
         data: { titleId: "masterPassword" },
       },
       {
diff --git a/apps/web/src/app/auth/settings/security/security.component.ts b/apps/web/src/app/auth/settings/security/security.component.ts
index 2240371637d..2a237bf6d01 100644
--- a/apps/web/src/app/auth/settings/security/security.component.ts
+++ b/apps/web/src/app/auth/settings/security/security.component.ts
@@ -1,8 +1,6 @@
 import { Component, OnInit } from "@angular/core";
 
 import { UserVerificationService } from "@bitwarden/common/auth/abstractions/user-verification/user-verification.service.abstraction";
-import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
-import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 
 import { HeaderModule } from "../../../layouts/header/header.module";
 import { SharedModule } from "../../../shared";
@@ -13,21 +11,11 @@ import { SharedModule } from "../../../shared";
 })
 export class SecurityComponent implements OnInit {
   showChangePassword = true;
-  changePasswordRoute = "change-password";
+  changePasswordRoute = "password";
 
-  constructor(
-    private userVerificationService: UserVerificationService,
-    private configService: ConfigService,
-  ) {}
+  constructor(private userVerificationService: UserVerificationService) {}
 
   async ngOnInit() {
     this.showChangePassword = await this.userVerificationService.hasMasterPassword();
-
-    const changePasswordRefreshFlag = await this.configService.getFeatureFlag(
-      FeatureFlag.PM16117_ChangeExistingPasswordRefactor,
-    );
-    if (changePasswordRefreshFlag) {
-      this.changePasswordRoute = "password";
-    }
   }
 }
diff --git a/apps/web/src/app/auth/settings/settings.module.ts b/apps/web/src/app/auth/settings/settings.module.ts
index 437711f4aa6..fcab9450e1c 100644
--- a/apps/web/src/app/auth/settings/settings.module.ts
+++ b/apps/web/src/app/auth/settings/settings.module.ts
@@ -6,7 +6,6 @@ import { UserKeyRotationModule } from "../../key-management/key-rotation/user-ke
 import { SharedModule } from "../../shared";
 import { EmergencyAccessModule } from "../emergency-access";
 
-import { ChangePasswordComponent } from "./change-password.component";
 import { WebauthnLoginSettingsModule } from "./webauthn-login-settings";
 
 @NgModule({
@@ -17,8 +16,8 @@ import { WebauthnLoginSettingsModule } from "./webauthn-login-settings";
     PasswordCalloutComponent,
     UserKeyRotationModule,
   ],
-  declarations: [ChangePasswordComponent],
+  declarations: [],
   providers: [],
-  exports: [ChangePasswordComponent],
+  exports: [],
 })
 export class AuthSettingsModule {}
diff --git a/apps/web/src/app/auth/update-password.component.html b/apps/web/src/app/auth/update-password.component.html
deleted file mode 100644
index 7fb3e1fa491..00000000000
--- a/apps/web/src/app/auth/update-password.component.html
+++ /dev/null
@@ -1,90 +0,0 @@
-<form #form (ngSubmit)="submit()" [appApiAction]="formPromise" ngNativeValidate autocomplete="off">
-  <div class="row justify-content-md-center mt-5">
-    <div class="col-4">
-      <p class="lead text-center mb-4">{{ "updateMasterPassword" | i18n }}</p>
-      <div class="card d-block">
-        <div class="card-body">
-          <app-callout type="warning">{{ "masterPasswordInvalidWarning" | i18n }} </app-callout>
-          <auth-password-callout
-            [policy]="enforcedPolicyOptions"
-            *ngIf="enforcedPolicyOptions"
-          ></auth-password-callout>
-
-          <form
-            #form
-            (ngSubmit)="submit()"
-            [appApiAction]="formPromise"
-            ngNativeValidate
-            autocomplete="off"
-          >
-            <div class="row">
-              <div class="col-6">
-                <div class="form-group">
-                  <label for="currentMasterPassword">{{ "currentMasterPass" | i18n }}</label>
-                  <input
-                    id="currentMasterPassword"
-                    type="password"
-                    name="MasterPasswordHash"
-                    class="form-control"
-                    [(ngModel)]="currentMasterPassword"
-                    required
-                    appInputVerbatim
-                  />
-                </div>
-              </div>
-            </div>
-            <div class="row">
-              <div class="col-6">
-                <div class="form-group">
-                  <label for="newMasterPassword">{{ "newMasterPass" | i18n }}</label>
-                  <input
-                    id="newMasterPassword"
-                    type="password"
-                    name="NewMasterPasswordHash"
-                    class="form-control mb-1"
-                    [(ngModel)]="masterPassword"
-                    required
-                    appInputVerbatim
-                    autocomplete="new-password"
-                  />
-                  <app-password-strength
-                    [password]="masterPassword"
-                    [email]="email"
-                    [showText]="true"
-                    (passwordStrengthResult)="getStrengthResult($event)"
-                  ></app-password-strength>
-                </div>
-              </div>
-              <div class="col-6">
-                <div class="form-group">
-                  <label for="masterPasswordRetype">{{ "confirmNewMasterPass" | i18n }}</label>
-                  <input
-                    id="masterPasswordRetype"
-                    type="password"
-                    name="MasterPasswordRetype"
-                    class="form-control"
-                    [(ngModel)]="masterPasswordRetype"
-                    required
-                    appInputVerbatim
-                    autocomplete="new-password"
-                  />
-                </div>
-              </div>
-            </div>
-            <button type="submit" class="btn btn-primary btn-submit" [disabled]="form.loading">
-              <i
-                class="fa fa-spinner fa-spin"
-                title="{{ 'loading' | i18n }}"
-                aria-hidden="true"
-              ></i>
-              <span>{{ "changeMasterPassword" | i18n }}</span>
-            </button>
-            <button (click)="cancel()" type="button" class="btn btn-outline-secondary">
-              <span>{{ "cancel" | i18n }}</span>
-            </button>
-          </form>
-        </div>
-      </div>
-    </div>
-  </div>
-</form>
diff --git a/apps/web/src/app/auth/update-password.component.ts b/apps/web/src/app/auth/update-password.component.ts
deleted file mode 100644
index bc53f824228..00000000000
--- a/apps/web/src/app/auth/update-password.component.ts
+++ /dev/null
@@ -1,24 +0,0 @@
-import { Component, inject } from "@angular/core";
-
-import { UpdatePasswordComponent as BaseUpdatePasswordComponent } from "@bitwarden/angular/auth/components/update-password.component";
-import { OrganizationInviteService } from "@bitwarden/common/auth/services/organization-invite/organization-invite.service";
-
-import { RouterService } from "../core";
-
-@Component({
-  selector: "app-update-password",
-  templateUrl: "update-password.component.html",
-  standalone: false,
-})
-export class UpdatePasswordComponent extends BaseUpdatePasswordComponent {
-  private routerService = inject(RouterService);
-  private organizationInviteService = inject(OrganizationInviteService);
-
-  override async cancel() {
-    // clearing the login redirect url so that the user
-    // does not join the organization if they cancel
-    await this.routerService.getAndClearLoginRedirectUrl();
-    await this.organizationInviteService.clearOrganizationInvitation();
-    await super.cancel();
-  }
-}
diff --git a/apps/web/src/app/auth/update-temp-password.component.html b/apps/web/src/app/auth/update-temp-password.component.html
deleted file mode 100644
index 4fd0ea72b5f..00000000000
--- a/apps/web/src/app/auth/update-temp-password.component.html
+++ /dev/null
@@ -1,96 +0,0 @@
-<form #form (ngSubmit)="submit()" [appApiAction]="formPromise" ngNativeValidate autocomplete="off">
-  <div class="tw-mt-12 tw-flex tw-justify-center">
-    <div class="tw-w-1/3">
-      <h1 bitTypography="h1" class="tw-mb-4 tw-text-center">{{ "updateMasterPassword" | i18n }}</h1>
-      <div
-        class="tw-block tw-rounded tw-border tw-border-solid tw-border-secondary-300 tw-bg-background tw-p-8"
-      >
-        <app-callout type="warning">{{ masterPasswordWarningText }} </app-callout>
-        <auth-password-callout [policy]="enforcedPolicyOptions" *ngIf="enforcedPolicyOptions">
-        </auth-password-callout>
-        <bit-form-field *ngIf="requireCurrentPassword">
-          <bit-label>{{ "currentMasterPass" | i18n }}</bit-label>
-          <input
-            bitInput
-            type="password"
-            appInputVerbatim
-            required
-            [(ngModel)]="verification.secret"
-            name="currentMasterPassword"
-            id="currentMasterPassword"
-            [appAutofocus]="requireCurrentPassword"
-          />
-          <button type="button" bitIconButton bitSuffix bitPasswordInputToggle></button>
-        </bit-form-field>
-        <div class="tw-mb-4">
-          <bit-form-field class="!tw-mb-1">
-            <bit-label>{{ "newMasterPass" | i18n }}</bit-label>
-            <input
-              bitInput
-              type="password"
-              appInputVerbatim
-              required
-              [(ngModel)]="masterPassword"
-              name="masterPassword"
-              id="masterPassword"
-            />
-            <button
-              type="button"
-              bitIconButton
-              bitSuffix
-              bitPasswordInputToggle
-              [(toggled)]="showPassword"
-            ></button>
-          </bit-form-field>
-          <app-password-strength
-            [password]="masterPassword"
-            [email]="email"
-            [showText]="true"
-            (passwordStrengthResult)="getStrengthResult($event)"
-          >
-          </app-password-strength>
-        </div>
-        <bit-form-field>
-          <bit-label>{{ "confirmNewMasterPass" | i18n }}</bit-label>
-          <input
-            bitInput
-            type="password"
-            appInputVerbatim
-            required
-            [(ngModel)]="masterPasswordRetype"
-            name="masterPasswordRetype"
-            id="masterPasswordRetype"
-          />
-          <button
-            type="button"
-            bitIconButton
-            bitSuffix
-            bitPasswordInputToggle
-            [(toggled)]="showPassword"
-          ></button>
-        </bit-form-field>
-        <bit-form-field>
-          <bit-label>{{ "masterPassHint" | i18n }}</bit-label>
-          <input bitInput type="text" [(ngModel)]="hint" name="hint" id="hint" />
-          <bit-hint>{{ "masterPassHintDesc" | i18n }}</bit-hint>
-        </bit-form-field>
-        <hr />
-        <div class="tw-flex tw-space-x-2">
-          <button
-            type="submit"
-            bitButton
-            [block]="true"
-            buttonType="primary"
-            [loading]="form.loading"
-            [disabled]="form.loading"
-          >
-            {{ "submit" | i18n }}
-          </button>
-          <button type="button" bitButton [block]="true" buttonType="secondary" (click)="logOut()">
-            {{ "logOut" | i18n }}
-          </button>
-        </div>
-      </div>
-    </div>
-  </div>
-</form>
diff --git a/apps/web/src/app/auth/update-temp-password.component.ts b/apps/web/src/app/auth/update-temp-password.component.ts
deleted file mode 100644
index ead10660b92..00000000000
--- a/apps/web/src/app/auth/update-temp-password.component.ts
+++ /dev/null
@@ -1,10 +0,0 @@
-import { Component } from "@angular/core";
-
-import { UpdateTempPasswordComponent as BaseUpdateTempPasswordComponent } from "@bitwarden/angular/auth/components/update-temp-password.component";
-
-@Component({
-  selector: "app-update-temp-password",
-  templateUrl: "update-temp-password.component.html",
-  standalone: false,
-})
-export class UpdateTempPasswordComponent extends BaseUpdateTempPasswordComponent {}
diff --git a/apps/web/src/app/core/core.module.ts b/apps/web/src/app/core/core.module.ts
index 7fe8ef4c79f..2721f1f7add 100644
--- a/apps/web/src/app/core/core.module.ts
+++ b/apps/web/src/app/core/core.module.ts
@@ -33,7 +33,6 @@ import { JslibServicesModule } from "@bitwarden/angular/services/jslib-services.
 import {
   RegistrationFinishService as RegistrationFinishServiceAbstraction,
   LoginComponentService,
-  SetPasswordJitService,
   SsoComponentService,
   LoginDecryptionOptionsService,
   TwoFactorAuthDuoComponentService,
@@ -117,7 +116,6 @@ import { flagEnabled } from "../../utils/flags";
 import { PolicyListService } from "../admin-console/core/policy-list.service";
 import {
   WebChangePasswordService,
-  WebSetPasswordJitService,
   WebRegistrationFinishService,
   WebLoginComponentService,
   WebLoginDecryptionOptionsService,
@@ -277,21 +275,6 @@ const safeProviders: SafeProvider[] = [
     useClass: WebLockComponentService,
     deps: [],
   }),
-  safeProvider({
-    provide: SetPasswordJitService,
-    useClass: WebSetPasswordJitService,
-    deps: [
-      EncryptService,
-      I18nServiceAbstraction,
-      KdfConfigService,
-      KeyServiceAbstraction,
-      MasterPasswordApiService,
-      InternalMasterPasswordServiceAbstraction,
-      OrganizationApiServiceAbstraction,
-      OrganizationUserApiService,
-      InternalUserDecryptionOptionsServiceAbstraction,
-    ],
-  }),
   safeProvider({
     provide: SetInitialPasswordService,
     useClass: WebSetInitialPasswordService,
diff --git a/apps/web/src/app/oss-routing.module.ts b/apps/web/src/app/oss-routing.module.ts
index 1fb19757d60..4c1ed1a7472 100644
--- a/apps/web/src/app/oss-routing.module.ts
+++ b/apps/web/src/app/oss-routing.module.ts
@@ -12,14 +12,12 @@ import {
 } from "@bitwarden/angular/auth/guards";
 import { ChangePasswordComponent } from "@bitwarden/angular/auth/password-management/change-password";
 import { SetInitialPasswordComponent } from "@bitwarden/angular/auth/password-management/set-initial-password/set-initial-password.component";
-import { canAccessFeature } from "@bitwarden/angular/platform/guard/feature-flag.guard";
 import {
   PasswordHintComponent,
   RegistrationFinishComponent,
   RegistrationStartComponent,
   RegistrationStartSecondaryComponent,
   RegistrationStartSecondaryComponentData,
-  SetPasswordJitComponent,
   RegistrationLinkExpiredComponent,
   LoginComponent,
   LoginSecondaryContentComponent,
@@ -39,7 +37,6 @@ import {
   NewDeviceVerificationComponent,
   DeviceVerificationIcon,
 } from "@bitwarden/auth/angular";
-import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
 import { AnonLayoutWrapperComponent, AnonLayoutWrapperData, Icons } from "@bitwarden/components";
 import { LockComponent } from "@bitwarden/key-management-ui";
 import { VaultIcons } from "@bitwarden/vault";
@@ -55,13 +52,10 @@ import { LoginViaWebAuthnComponent } from "./auth/login/login-via-webauthn/login
 import { AcceptOrganizationComponent } from "./auth/organization-invite/accept-organization.component";
 import { RecoverDeleteComponent } from "./auth/recover-delete.component";
 import { RecoverTwoFactorComponent } from "./auth/recover-two-factor.component";
-import { SetPasswordComponent } from "./auth/set-password.component";
 import { AccountComponent } from "./auth/settings/account/account.component";
 import { EmergencyAccessComponent } from "./auth/settings/emergency-access/emergency-access.component";
 import { EmergencyAccessViewComponent } from "./auth/settings/emergency-access/view/emergency-access-view.component";
 import { SecurityRoutingModule } from "./auth/settings/security/security-routing.module";
-import { UpdatePasswordComponent } from "./auth/update-password.component";
-import { UpdateTempPasswordComponent } from "./auth/update-temp-password.component";
 import { VerifyEmailTokenComponent } from "./auth/verify-email-token.component";
 import { VerifyRecoverDeleteComponent } from "./auth/verify-recover-delete.component";
 import { SponsoredFamiliesComponent } from "./billing/settings/sponsored-families.component";
@@ -115,11 +109,6 @@ const routes: Routes = [
         component: LoginViaWebAuthnComponent,
         data: { titleId: "logInWithPasskey" } satisfies RouteDataProperties,
       },
-      {
-        path: "set-password",
-        component: SetPasswordComponent,
-        data: { titleId: "setMasterPassword" } satisfies RouteDataProperties,
-      },
       { path: "verify-email", component: VerifyEmailTokenComponent },
       {
         path: "accept-organization",
@@ -143,34 +132,6 @@ const routes: Routes = [
         canActivate: [unauthGuardFn()],
         data: { titleId: "deleteOrganization" },
       },
-      {
-        path: "update-temp-password",
-        component: UpdateTempPasswordComponent,
-        canActivate: [
-          canAccessFeature(
-            FeatureFlag.PM16117_ChangeExistingPasswordRefactor,
-            false,
-            "change-password",
-            false,
-          ),
-          authGuard,
-        ],
-        data: { titleId: "updateTempPassword" } satisfies RouteDataProperties,
-      },
-      {
-        path: "update-password",
-        component: UpdatePasswordComponent,
-        canActivate: [
-          canAccessFeature(
-            FeatureFlag.PM16117_ChangeExistingPasswordRefactor,
-            false,
-            "change-password",
-            false,
-          ),
-          authGuard,
-        ],
-        data: { titleId: "updatePassword" } satisfies RouteDataProperties,
-      },
     ],
   },
   {
@@ -329,24 +290,12 @@ const routes: Routes = [
       },
       {
         path: "set-initial-password",
-        canActivate: [canAccessFeature(FeatureFlag.PM16117_SetInitialPasswordRefactor), authGuard],
+        canActivate: [authGuard],
         component: SetInitialPasswordComponent,
         data: {
           maxWidth: "lg",
         } satisfies AnonLayoutWrapperData,
       },
-      {
-        path: "set-password-jit",
-        component: SetPasswordJitComponent,
-        data: {
-          pageTitle: {
-            key: "joinOrganization",
-          },
-          pageSubtitle: {
-            key: "finishJoiningThisOrganizationBySettingAMasterPassword",
-          },
-        } satisfies AnonLayoutWrapperData,
-      },
       {
         path: "signup-link-expired",
         canActivate: [unauthGuardFn()],
@@ -601,10 +550,7 @@ const routes: Routes = [
       {
         path: "change-password",
         component: ChangePasswordComponent,
-        canActivate: [
-          canAccessFeature(FeatureFlag.PM16117_ChangeExistingPasswordRefactor),
-          authGuard,
-        ],
+        canActivate: [authGuard],
       },
       {
         path: "setup-extension",
diff --git a/apps/web/src/app/shared/loose-components.module.ts b/apps/web/src/app/shared/loose-components.module.ts
index 97c3fa0375c..4de217f331b 100644
--- a/apps/web/src/app/shared/loose-components.module.ts
+++ b/apps/web/src/app/shared/loose-components.module.ts
@@ -14,16 +14,12 @@ import { VerifyRecoverDeleteOrgComponent } from "../admin-console/organizations/
 import { AcceptFamilySponsorshipComponent } from "../admin-console/organizations/sponsorships/accept-family-sponsorship.component";
 import { RecoverDeleteComponent } from "../auth/recover-delete.component";
 import { RecoverTwoFactorComponent } from "../auth/recover-two-factor.component";
-import { SetPasswordComponent } from "../auth/set-password.component";
 import { DangerZoneComponent } from "../auth/settings/account/danger-zone.component";
 import { EmergencyAccessConfirmComponent } from "../auth/settings/emergency-access/confirm/emergency-access-confirm.component";
 import { EmergencyAccessAddEditComponent } from "../auth/settings/emergency-access/emergency-access-add-edit.component";
 import { EmergencyAccessComponent } from "../auth/settings/emergency-access/emergency-access.component";
-import { EmergencyAccessTakeoverComponent } from "../auth/settings/emergency-access/takeover/emergency-access-takeover.component";
 import { EmergencyAccessViewComponent } from "../auth/settings/emergency-access/view/emergency-access-view.component";
 import { UserVerificationModule } from "../auth/shared/components/user-verification";
-import { UpdatePasswordComponent } from "../auth/update-password.component";
-import { UpdateTempPasswordComponent } from "../auth/update-temp-password.component";
 import { VerifyEmailTokenComponent } from "../auth/verify-email-token.component";
 import { VerifyRecoverDeleteComponent } from "../auth/verify-recover-delete.component";
 import { FreeBitwardenFamiliesComponent } from "../billing/members/free-bitwarden-families.component";
@@ -73,7 +69,6 @@ import { SharedModule } from "./shared.module";
     EmergencyAccessAddEditComponent,
     EmergencyAccessComponent,
     EmergencyAccessConfirmComponent,
-    EmergencyAccessTakeoverComponent,
     EmergencyAccessViewComponent,
     OrgEventsComponent,
     OrgExposedPasswordsReportComponent,
@@ -85,12 +80,9 @@ import { SharedModule } from "./shared.module";
     RecoverDeleteComponent,
     RecoverTwoFactorComponent,
     RemovePasswordComponent,
-    SetPasswordComponent,
     SponsoredFamiliesComponent,
     FreeBitwardenFamiliesComponent,
     SponsoringOrgRowComponent,
-    UpdatePasswordComponent,
-    UpdateTempPasswordComponent,
     VerifyEmailTokenComponent,
     VerifyRecoverDeleteComponent,
   ],
@@ -100,7 +92,6 @@ import { SharedModule } from "./shared.module";
     EmergencyAccessAddEditComponent,
     EmergencyAccessComponent,
     EmergencyAccessConfirmComponent,
-    EmergencyAccessTakeoverComponent,
     EmergencyAccessViewComponent,
     OrganizationLayoutComponent,
     OrgEventsComponent,
@@ -114,12 +105,9 @@ import { SharedModule } from "./shared.module";
     RecoverDeleteComponent,
     RecoverTwoFactorComponent,
     RemovePasswordComponent,
-    SetPasswordComponent,
     SponsoredFamiliesComponent,
     FreeBitwardenFamiliesComponent,
     SponsoringOrgRowComponent,
-    UpdateTempPasswordComponent,
-    UpdatePasswordComponent,
     VerifyEmailTokenComponent,
     VerifyRecoverDeleteComponent,
     HeaderModule,
diff --git a/libs/angular/src/auth/components/change-password.component.ts b/libs/angular/src/auth/components/change-password.component.ts
deleted file mode 100644
index 8a564d68fd4..00000000000
--- a/libs/angular/src/auth/components/change-password.component.ts
+++ /dev/null
@@ -1,232 +0,0 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
-import { Directive, OnDestroy, OnInit } from "@angular/core";
-import { Subject, firstValueFrom, map, switchMap, takeUntil } from "rxjs";
-
-import { PolicyService } from "@bitwarden/common/admin-console/abstractions/policy/policy.service.abstraction";
-import { MasterPasswordPolicyOptions } from "@bitwarden/common/admin-console/models/domain/master-password-policy-options";
-import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
-import { getUserId } from "@bitwarden/common/auth/services/account.service";
-import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
-import { InternalMasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
-import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
-import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
-import { Utils } from "@bitwarden/common/platform/misc/utils";
-import { UserKey, MasterKey } from "@bitwarden/common/types/key";
-import { DialogService, ToastService } from "@bitwarden/components";
-import { KdfConfig, KdfConfigService, KeyService } from "@bitwarden/key-management";
-
-import { PasswordColorText } from "../../tools/password-strength/password-strength.component";
-
-@Directive()
-export class ChangePasswordComponent implements OnInit, OnDestroy {
-  masterPassword: string;
-  masterPasswordRetype: string;
-  formPromise: Promise<any>;
-  enforcedPolicyOptions: MasterPasswordPolicyOptions;
-  passwordStrengthResult: any;
-  color: string;
-  text: string;
-  leakedPassword: boolean;
-  minimumLength = Utils.minimumPasswordLength;
-
-  protected email: string;
-  protected kdfConfig: KdfConfig;
-
-  protected destroy$ = new Subject<void>();
-
-  constructor(
-    protected accountService: AccountService,
-    protected dialogService: DialogService,
-    protected i18nService: I18nService,
-    protected kdfConfigService: KdfConfigService,
-    protected keyService: KeyService,
-    protected masterPasswordService: InternalMasterPasswordServiceAbstraction,
-    protected messagingService: MessagingService,
-    protected platformUtilsService: PlatformUtilsService,
-    protected policyService: PolicyService,
-    protected toastService: ToastService,
-  ) {}
-
-  async ngOnInit() {
-    this.email = await firstValueFrom(
-      this.accountService.activeAccount$.pipe(map((a) => a?.email)),
-    );
-    this.accountService.activeAccount$
-      .pipe(
-        getUserId,
-        switchMap((userId) => this.policyService.masterPasswordPolicyOptions$(userId)),
-        takeUntil(this.destroy$),
-      )
-      .subscribe(
-        (enforcedPasswordPolicyOptions) =>
-          (this.enforcedPolicyOptions ??= enforcedPasswordPolicyOptions),
-      );
-
-    if (this.enforcedPolicyOptions?.minLength) {
-      this.minimumLength = this.enforcedPolicyOptions.minLength;
-    }
-  }
-
-  ngOnDestroy(): void {
-    this.destroy$.next();
-    this.destroy$.complete();
-  }
-
-  async submit() {
-    if (!(await this.strongPassword())) {
-      return;
-    }
-
-    if (!(await this.setupSubmitActions())) {
-      return;
-    }
-
-    const [userId, email] = await firstValueFrom(
-      this.accountService.activeAccount$.pipe(map((a) => [a?.id, a?.email])),
-    );
-
-    if (this.kdfConfig == null) {
-      this.kdfConfig = await this.kdfConfigService.getKdfConfig(userId);
-    }
-
-    // Create new master key
-    const newMasterKey = await this.keyService.makeMasterKey(
-      this.masterPassword,
-      email.trim().toLowerCase(),
-      this.kdfConfig,
-    );
-    const newMasterKeyHash = await this.keyService.hashMasterKey(this.masterPassword, newMasterKey);
-
-    let newProtectedUserKey: [UserKey, EncString] = null;
-    const userKey = await this.keyService.getUserKey();
-    if (userKey == null) {
-      newProtectedUserKey = await this.keyService.makeUserKey(newMasterKey);
-    } else {
-      newProtectedUserKey = await this.keyService.encryptUserKeyWithMasterKey(newMasterKey);
-    }
-
-    await this.performSubmitActions(newMasterKeyHash, newMasterKey, newProtectedUserKey);
-  }
-
-  async setupSubmitActions(): Promise<boolean> {
-    // Override in sub-class
-    // Can be used for additional validation and/or other processes the should occur before changing passwords
-    return true;
-  }
-
-  async performSubmitActions(
-    newMasterKeyHash: string,
-    newMasterKey: MasterKey,
-    newUserKey: [UserKey, EncString],
-  ) {
-    // Override in sub-class
-  }
-
-  async strongPassword(): Promise<boolean> {
-    if (this.masterPassword == null || this.masterPassword === "") {
-      this.toastService.showToast({
-        variant: "error",
-        title: this.i18nService.t("errorOccurred"),
-        message: this.i18nService.t("masterPasswordRequired"),
-      });
-      return false;
-    }
-    if (this.masterPassword.length < this.minimumLength) {
-      this.toastService.showToast({
-        variant: "error",
-        title: this.i18nService.t("errorOccurred"),
-        message: this.i18nService.t("masterPasswordMinimumlength", this.minimumLength),
-      });
-      return false;
-    }
-    if (this.masterPassword !== this.masterPasswordRetype) {
-      this.toastService.showToast({
-        variant: "error",
-        title: this.i18nService.t("errorOccurred"),
-        message: this.i18nService.t("masterPassDoesntMatch"),
-      });
-      return false;
-    }
-
-    const strengthResult = this.passwordStrengthResult;
-
-    if (
-      this.enforcedPolicyOptions != null &&
-      !this.policyService.evaluateMasterPassword(
-        strengthResult.score,
-        this.masterPassword,
-        this.enforcedPolicyOptions,
-      )
-    ) {
-      this.toastService.showToast({
-        variant: "error",
-        title: this.i18nService.t("errorOccurred"),
-        message: this.i18nService.t("masterPasswordPolicyRequirementsNotMet"),
-      });
-      return false;
-    }
-
-    const weakPassword = strengthResult != null && strengthResult.score < 3;
-
-    if (weakPassword && this.leakedPassword) {
-      const result = await this.dialogService.openSimpleDialog({
-        title: { key: "weakAndExposedMasterPassword" },
-        content: { key: "weakAndBreachedMasterPasswordDesc" },
-        type: "warning",
-      });
-
-      if (!result) {
-        return false;
-      }
-    } else {
-      if (weakPassword) {
-        const result = await this.dialogService.openSimpleDialog({
-          title: { key: "weakMasterPassword" },
-          content: { key: "weakMasterPasswordDesc" },
-          type: "warning",
-        });
-
-        if (!result) {
-          return false;
-        }
-      }
-      if (this.leakedPassword) {
-        const result = await this.dialogService.openSimpleDialog({
-          title: { key: "exposedMasterPassword" },
-          content: { key: "exposedMasterPasswordDesc" },
-          type: "warning",
-        });
-
-        if (!result) {
-          return false;
-        }
-      }
-    }
-
-    return true;
-  }
-
-  async logOut() {
-    const confirmed = await this.dialogService.openSimpleDialog({
-      title: { key: "logOut" },
-      content: { key: "logOutConfirmation" },
-      acceptButtonText: { key: "logOut" },
-      type: "warning",
-    });
-
-    if (confirmed) {
-      this.messagingService.send("logout");
-    }
-  }
-
-  getStrengthResult(result: any) {
-    this.passwordStrengthResult = result;
-  }
-
-  getPasswordScoreText(event: PasswordColorText) {
-    this.color = event.color;
-    this.text = event.text;
-  }
-}
diff --git a/libs/angular/src/auth/components/set-password.component.ts b/libs/angular/src/auth/components/set-password.component.ts
deleted file mode 100644
index 03cbdbc625a..00000000000
--- a/libs/angular/src/auth/components/set-password.component.ts
+++ /dev/null
@@ -1,300 +0,0 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
-import { Directive, OnInit } from "@angular/core";
-import { ActivatedRoute, Router } from "@angular/router";
-import { firstValueFrom, of } from "rxjs";
-import { filter, first, switchMap, tap } from "rxjs/operators";
-
-// This import has been flagged as unallowed for this class. It may be involved in a circular dependency loop.
-// eslint-disable-next-line no-restricted-imports
-import {
-  OrganizationUserApiService,
-  OrganizationUserResetPasswordEnrollmentRequest,
-} from "@bitwarden/admin-console/common";
-// This import has been flagged as unallowed for this class. It may be involved in a circular dependency loop.
-// eslint-disable-next-line no-restricted-imports
-import { InternalUserDecryptionOptionsServiceAbstraction } from "@bitwarden/auth/common";
-import { OrganizationApiServiceAbstraction } from "@bitwarden/common/admin-console/abstractions/organization/organization-api.service.abstraction";
-import { PolicyApiServiceAbstraction } from "@bitwarden/common/admin-console/abstractions/policy/policy-api.service.abstraction";
-import { PolicyService } from "@bitwarden/common/admin-console/abstractions/policy/policy.service.abstraction";
-import { MasterPasswordPolicyOptions } from "@bitwarden/common/admin-console/models/domain/master-password-policy-options";
-import { OrganizationAutoEnrollStatusResponse } from "@bitwarden/common/admin-console/models/response/organization-auto-enroll-status.response";
-import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
-import { MasterPasswordApiService } from "@bitwarden/common/auth/abstractions/master-password-api.service.abstraction";
-import { SsoLoginServiceAbstraction } from "@bitwarden/common/auth/abstractions/sso-login.service.abstraction";
-import { ForceSetPasswordReason } from "@bitwarden/common/auth/models/domain/force-set-password-reason";
-import { SetPasswordRequest } from "@bitwarden/common/auth/models/request/set-password.request";
-import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
-import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
-import { InternalMasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
-import { KeysRequest } from "@bitwarden/common/models/request/keys.request";
-import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
-import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
-import { HashPurpose } from "@bitwarden/common/platform/enums";
-import { Utils } from "@bitwarden/common/platform/misc/utils";
-import { UserId } from "@bitwarden/common/types/guid";
-import { MasterKey, UserKey } from "@bitwarden/common/types/key";
-import { SyncService } from "@bitwarden/common/vault/abstractions/sync/sync.service.abstraction";
-import { DialogService, ToastService } from "@bitwarden/components";
-import { DEFAULT_KDF_CONFIG, KdfConfigService, KeyService } from "@bitwarden/key-management";
-
-import { ChangePasswordComponent as BaseChangePasswordComponent } from "./change-password.component";
-
-@Directive()
-export class SetPasswordComponent extends BaseChangePasswordComponent implements OnInit {
-  syncLoading = true;
-  showPassword = false;
-  hint = "";
-  orgSsoIdentifier: string = null;
-  orgId: string;
-  resetPasswordAutoEnroll = false;
-  onSuccessfulChangePassword: () => Promise<void>;
-  successRoute = "vault";
-  activeUserId: UserId;
-
-  forceSetPasswordReason: ForceSetPasswordReason = ForceSetPasswordReason.None;
-  ForceSetPasswordReason = ForceSetPasswordReason;
-
-  constructor(
-    protected accountService: AccountService,
-    protected dialogService: DialogService,
-    protected encryptService: EncryptService,
-    protected i18nService: I18nService,
-    protected kdfConfigService: KdfConfigService,
-    protected keyService: KeyService,
-    protected masterPasswordApiService: MasterPasswordApiService,
-    protected masterPasswordService: InternalMasterPasswordServiceAbstraction,
-    protected messagingService: MessagingService,
-    protected organizationApiService: OrganizationApiServiceAbstraction,
-    protected organizationUserApiService: OrganizationUserApiService,
-    protected platformUtilsService: PlatformUtilsService,
-    protected policyApiService: PolicyApiServiceAbstraction,
-    protected policyService: PolicyService,
-    protected route: ActivatedRoute,
-    protected router: Router,
-    protected ssoLoginService: SsoLoginServiceAbstraction,
-    protected syncService: SyncService,
-    protected toastService: ToastService,
-    protected userDecryptionOptionsService: InternalUserDecryptionOptionsServiceAbstraction,
-  ) {
-    super(
-      accountService,
-      dialogService,
-      i18nService,
-      kdfConfigService,
-      keyService,
-      masterPasswordService,
-      messagingService,
-      platformUtilsService,
-      policyService,
-      toastService,
-    );
-  }
-
-  async ngOnInit() {
-    // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-    // eslint-disable-next-line @typescript-eslint/no-floating-promises
-    super.ngOnInit();
-
-    await this.syncService.fullSync(true);
-    this.syncLoading = false;
-
-    this.activeUserId = (await firstValueFrom(this.accountService.activeAccount$))?.id;
-
-    this.forceSetPasswordReason = await firstValueFrom(
-      this.masterPasswordService.forceSetPasswordReason$(this.activeUserId),
-    );
-
-    this.route.queryParams
-      .pipe(
-        first(),
-        switchMap((qParams) => {
-          if (qParams.identifier != null) {
-            return of(qParams.identifier);
-          } else {
-            // Try to get orgSsoId from state as fallback
-            // Note: this is primarily for the TDE user w/out MP obtains admin MP reset permission scenario.
-            return this.ssoLoginService.getActiveUserOrganizationSsoIdentifier(this.activeUserId);
-          }
-        }),
-        filter((orgSsoId) => orgSsoId != null),
-        tap((orgSsoId: string) => {
-          this.orgSsoIdentifier = orgSsoId;
-        }),
-        switchMap((orgSsoId: string) => this.organizationApiService.getAutoEnrollStatus(orgSsoId)),
-        tap((orgAutoEnrollStatusResponse: OrganizationAutoEnrollStatusResponse) => {
-          this.orgId = orgAutoEnrollStatusResponse.id;
-          this.resetPasswordAutoEnroll = orgAutoEnrollStatusResponse.resetPasswordEnabled;
-        }),
-        switchMap((orgAutoEnrollStatusResponse: OrganizationAutoEnrollStatusResponse) =>
-          // Must get org id from response to get master password policy options
-          this.policyApiService.getMasterPasswordPolicyOptsForOrgUser(
-            orgAutoEnrollStatusResponse.id,
-          ),
-        ),
-        tap((masterPasswordPolicyOptions: MasterPasswordPolicyOptions) => {
-          this.enforcedPolicyOptions = masterPasswordPolicyOptions;
-        }),
-      )
-      .subscribe({
-        error: () => {
-          this.toastService.showToast({
-            variant: "error",
-            title: null,
-            message: this.i18nService.t("errorOccurred"),
-          });
-        },
-      });
-  }
-
-  async setupSubmitActions() {
-    this.kdfConfig = DEFAULT_KDF_CONFIG;
-    return true;
-  }
-
-  async performSubmitActions(
-    masterPasswordHash: string,
-    masterKey: MasterKey,
-    userKey: [UserKey, EncString],
-  ) {
-    let keysRequest: KeysRequest | null = null;
-    let newKeyPair: [string, EncString] | null = null;
-
-    if (
-      this.forceSetPasswordReason !=
-      ForceSetPasswordReason.TdeUserWithoutPasswordHasPasswordResetPermission
-    ) {
-      // Existing JIT provisioned user in a MP encryption org setting first password
-      // Users in this state will not already have a user asymmetric key pair so must create it for them
-      // We don't want to re-create the user key pair if the user already has one (TDE user case)
-
-      // in case we have a local private key, and are not sure whether it has been posted to the server, we post the local private key instead of generating a new one
-      const existingUserPrivateKey = (await firstValueFrom(
-        this.keyService.userPrivateKey$(this.activeUserId),
-      )) as Uint8Array;
-      const existingUserPublicKey = await firstValueFrom(
-        this.keyService.userPublicKey$(this.activeUserId),
-      );
-      if (existingUserPrivateKey != null && existingUserPublicKey != null) {
-        const existingUserPublicKeyB64 = Utils.fromBufferToB64(existingUserPublicKey);
-        newKeyPair = [
-          existingUserPublicKeyB64,
-          await this.encryptService.wrapDecapsulationKey(existingUserPrivateKey, userKey[0]),
-        ];
-      } else {
-        newKeyPair = await this.keyService.makeKeyPair(userKey[0]);
-      }
-      keysRequest = new KeysRequest(newKeyPair[0], newKeyPair[1].encryptedString);
-    }
-
-    const request = new SetPasswordRequest(
-      masterPasswordHash,
-      userKey[1].encryptedString,
-      this.hint,
-      this.orgSsoIdentifier,
-      keysRequest,
-      this.kdfConfig.kdfType, //always PBKDF2 --> see this.setupSubmitActions
-      this.kdfConfig.iterations,
-    );
-    try {
-      if (this.resetPasswordAutoEnroll) {
-        this.formPromise = this.masterPasswordApiService
-          .setPassword(request)
-          .then(async () => {
-            await this.onSetPasswordSuccess(masterKey, userKey, newKeyPair);
-            return this.organizationApiService.getKeys(this.orgId);
-          })
-          .then(async (response) => {
-            if (response == null) {
-              throw new Error(this.i18nService.t("resetPasswordOrgKeysError"));
-            }
-            const publicKey = Utils.fromB64ToArray(response.publicKey);
-
-            // RSA Encrypt user key with organization public key
-            const userKey = await this.keyService.getUserKey();
-            const encryptedUserKey = await this.encryptService.encapsulateKeyUnsigned(
-              userKey,
-              publicKey,
-            );
-
-            const resetRequest = new OrganizationUserResetPasswordEnrollmentRequest();
-            resetRequest.masterPasswordHash = masterPasswordHash;
-            resetRequest.resetPasswordKey = encryptedUserKey.encryptedString;
-
-            return this.organizationUserApiService.putOrganizationUserResetPasswordEnrollment(
-              this.orgId,
-              this.activeUserId,
-              resetRequest,
-            );
-          });
-      } else {
-        this.formPromise = this.masterPasswordApiService.setPassword(request).then(async () => {
-          await this.onSetPasswordSuccess(masterKey, userKey, newKeyPair);
-        });
-      }
-
-      await this.formPromise;
-
-      if (this.onSuccessfulChangePassword != null) {
-        // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-        // eslint-disable-next-line @typescript-eslint/no-floating-promises
-        this.onSuccessfulChangePassword();
-      } else {
-        // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-        // eslint-disable-next-line @typescript-eslint/no-floating-promises
-        this.router.navigate([this.successRoute]);
-      }
-    } catch {
-      this.toastService.showToast({
-        variant: "error",
-        title: null,
-        message: this.i18nService.t("errorOccurred"),
-      });
-    }
-  }
-
-  togglePassword(confirmField: boolean) {
-    this.showPassword = !this.showPassword;
-    document.getElementById(confirmField ? "masterPasswordRetype" : "masterPassword").focus();
-  }
-
-  protected async onSetPasswordSuccess(
-    masterKey: MasterKey,
-    userKey: [UserKey, EncString],
-    keyPair: [string, EncString] | null,
-  ) {
-    // Clear force set password reason to allow navigation back to vault.
-    await this.masterPasswordService.setForceSetPasswordReason(
-      ForceSetPasswordReason.None,
-      this.activeUserId,
-    );
-
-    // User now has a password so update account decryption options in state
-    const userDecryptionOpts = await firstValueFrom(
-      this.userDecryptionOptionsService.userDecryptionOptions$,
-    );
-    userDecryptionOpts.hasMasterPassword = true;
-    await this.userDecryptionOptionsService.setUserDecryptionOptions(userDecryptionOpts);
-    await this.kdfConfigService.setKdfConfig(this.activeUserId, this.kdfConfig);
-    await this.masterPasswordService.setMasterKey(masterKey, this.activeUserId);
-    await this.keyService.setUserKey(userKey[0], this.activeUserId);
-
-    // Set private key only for new JIT provisioned users in MP encryption orgs
-    // Existing TDE users will have private key set on sync or on login
-    if (
-      keyPair !== null &&
-      this.forceSetPasswordReason !=
-        ForceSetPasswordReason.TdeUserWithoutPasswordHasPasswordResetPermission
-    ) {
-      await this.keyService.setPrivateKey(keyPair[1].encryptedString, this.activeUserId);
-    }
-
-    const localMasterKeyHash = await this.keyService.hashMasterKey(
-      this.masterPassword,
-      masterKey,
-      HashPurpose.LocalAuthorization,
-    );
-    await this.masterPasswordService.setMasterKeyHash(localMasterKeyHash, this.activeUserId);
-  }
-}
diff --git a/libs/angular/src/auth/components/update-password.component.ts b/libs/angular/src/auth/components/update-password.component.ts
deleted file mode 100644
index fa3ab58db69..00000000000
--- a/libs/angular/src/auth/components/update-password.component.ts
+++ /dev/null
@@ -1,141 +0,0 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
-import { Directive } from "@angular/core";
-import { Router } from "@angular/router";
-import { firstValueFrom } from "rxjs";
-
-import { PolicyService } from "@bitwarden/common/admin-console/abstractions/policy/policy.service.abstraction";
-import { MasterPasswordPolicyOptions } from "@bitwarden/common/admin-console/models/domain/master-password-policy-options";
-import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
-import { MasterPasswordApiService } from "@bitwarden/common/auth/abstractions/master-password-api.service.abstraction";
-import { UserVerificationService } from "@bitwarden/common/auth/abstractions/user-verification/user-verification.service.abstraction";
-import { VerificationType } from "@bitwarden/common/auth/enums/verification-type";
-import { PasswordRequest } from "@bitwarden/common/auth/models/request/password.request";
-import { getUserId } from "@bitwarden/common/auth/services/account.service";
-import { Verification } from "@bitwarden/common/auth/types/verification";
-import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
-import { InternalMasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
-import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
-import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
-import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
-import { MasterKey, UserKey } from "@bitwarden/common/types/key";
-import { DialogService, ToastService } from "@bitwarden/components";
-import { KdfConfigService, KeyService } from "@bitwarden/key-management";
-
-import { ChangePasswordComponent as BaseChangePasswordComponent } from "./change-password.component";
-
-@Directive()
-export class UpdatePasswordComponent extends BaseChangePasswordComponent {
-  hint: string;
-  key: string;
-  enforcedPolicyOptions: MasterPasswordPolicyOptions;
-  showPassword = false;
-  currentMasterPassword: string;
-
-  onSuccessfulChangePassword: () => Promise<void>;
-
-  constructor(
-    protected router: Router,
-    i18nService: I18nService,
-    platformUtilsService: PlatformUtilsService,
-    policyService: PolicyService,
-    keyService: KeyService,
-    messagingService: MessagingService,
-    private masterPasswordApiService: MasterPasswordApiService,
-    private userVerificationService: UserVerificationService,
-    private logService: LogService,
-    dialogService: DialogService,
-    kdfConfigService: KdfConfigService,
-    masterPasswordService: InternalMasterPasswordServiceAbstraction,
-    accountService: AccountService,
-    toastService: ToastService,
-  ) {
-    super(
-      accountService,
-      dialogService,
-      i18nService,
-      kdfConfigService,
-      keyService,
-      masterPasswordService,
-      messagingService,
-      platformUtilsService,
-      policyService,
-      toastService,
-    );
-  }
-
-  togglePassword(confirmField: boolean) {
-    this.showPassword = !this.showPassword;
-    document.getElementById(confirmField ? "masterPasswordRetype" : "masterPassword").focus();
-  }
-
-  async cancel() {
-    await this.router.navigate(["/vault"]);
-  }
-
-  async setupSubmitActions(): Promise<boolean> {
-    if (this.currentMasterPassword == null || this.currentMasterPassword === "") {
-      this.toastService.showToast({
-        variant: "error",
-        title: this.i18nService.t("errorOccurred"),
-        message: this.i18nService.t("masterPasswordRequired"),
-      });
-      return false;
-    }
-
-    const secret: Verification = {
-      type: VerificationType.MasterPassword,
-      secret: this.currentMasterPassword,
-    };
-    try {
-      await this.userVerificationService.verifyUser(secret);
-    } catch (e) {
-      this.toastService.showToast({
-        variant: "error",
-        title: this.i18nService.t("errorOccurred"),
-        message: e.message,
-      });
-      return false;
-    }
-    const userId = await firstValueFrom(getUserId(this.accountService.activeAccount$));
-    this.kdfConfig = await this.kdfConfigService.getKdfConfig(userId);
-    return true;
-  }
-
-  async performSubmitActions(
-    newMasterKeyHash: string,
-    newMasterKey: MasterKey,
-    newUserKey: [UserKey, EncString],
-  ) {
-    try {
-      // Create Request
-      const request = new PasswordRequest();
-      request.masterPasswordHash = await this.keyService.hashMasterKey(
-        this.currentMasterPassword,
-        await this.keyService.getOrDeriveMasterKey(this.currentMasterPassword),
-      );
-      request.newMasterPasswordHash = newMasterKeyHash;
-      request.key = newUserKey[1].encryptedString;
-
-      // Update user's password
-      await this.masterPasswordApiService.postPassword(request);
-
-      this.toastService.showToast({
-        variant: "success",
-        title: this.i18nService.t("masterPasswordChanged"),
-        message: this.i18nService.t("logBackIn"),
-      });
-
-      if (this.onSuccessfulChangePassword != null) {
-        // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-        // eslint-disable-next-line @typescript-eslint/no-floating-promises
-        this.onSuccessfulChangePassword();
-      } else {
-        this.messagingService.send("logout");
-      }
-    } catch (e) {
-      this.logService.error(e);
-    }
-  }
-}
diff --git a/libs/angular/src/auth/components/update-temp-password.component.ts b/libs/angular/src/auth/components/update-temp-password.component.ts
deleted file mode 100644
index 681f69b083a..00000000000
--- a/libs/angular/src/auth/components/update-temp-password.component.ts
+++ /dev/null
@@ -1,232 +0,0 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
-import { Directive, OnInit } from "@angular/core";
-import { Router } from "@angular/router";
-import { firstValueFrom, map } from "rxjs";
-
-import { PolicyService } from "@bitwarden/common/admin-console/abstractions/policy/policy.service.abstraction";
-import { MasterPasswordPolicyOptions } from "@bitwarden/common/admin-console/models/domain/master-password-policy-options";
-import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
-import { MasterPasswordApiService } from "@bitwarden/common/auth/abstractions/master-password-api.service.abstraction";
-import { UserVerificationService } from "@bitwarden/common/auth/abstractions/user-verification/user-verification.service.abstraction";
-import { VerificationType } from "@bitwarden/common/auth/enums/verification-type";
-import { ForceSetPasswordReason } from "@bitwarden/common/auth/models/domain/force-set-password-reason";
-import { PasswordRequest } from "@bitwarden/common/auth/models/request/password.request";
-import { UpdateTdeOffboardingPasswordRequest } from "@bitwarden/common/auth/models/request/update-tde-offboarding-password.request";
-import { UpdateTempPasswordRequest } from "@bitwarden/common/auth/models/request/update-temp-password.request";
-import { MasterPasswordVerification } from "@bitwarden/common/auth/types/verification";
-import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
-import { InternalMasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
-import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
-import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
-import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
-import { MasterKey, UserKey } from "@bitwarden/common/types/key";
-import { SyncService } from "@bitwarden/common/vault/abstractions/sync/sync.service.abstraction";
-import { DialogService, ToastService } from "@bitwarden/components";
-import { KdfConfigService, KeyService } from "@bitwarden/key-management";
-
-import { ChangePasswordComponent as BaseChangePasswordComponent } from "./change-password.component";
-
-@Directive()
-export class UpdateTempPasswordComponent extends BaseChangePasswordComponent implements OnInit {
-  hint: string;
-  key: string;
-  enforcedPolicyOptions: MasterPasswordPolicyOptions;
-  showPassword = false;
-  reason: ForceSetPasswordReason = ForceSetPasswordReason.None;
-  verification: MasterPasswordVerification = {
-    type: VerificationType.MasterPassword,
-    secret: "",
-  };
-
-  onSuccessfulChangePassword: () => Promise<any>;
-
-  get requireCurrentPassword(): boolean {
-    return this.reason === ForceSetPasswordReason.WeakMasterPassword;
-  }
-
-  constructor(
-    i18nService: I18nService,
-    platformUtilsService: PlatformUtilsService,
-    policyService: PolicyService,
-    keyService: KeyService,
-    messagingService: MessagingService,
-    private masterPasswordApiService: MasterPasswordApiService,
-    private syncService: SyncService,
-    private logService: LogService,
-    private userVerificationService: UserVerificationService,
-    protected router: Router,
-    dialogService: DialogService,
-    kdfConfigService: KdfConfigService,
-    accountService: AccountService,
-    masterPasswordService: InternalMasterPasswordServiceAbstraction,
-    toastService: ToastService,
-  ) {
-    super(
-      accountService,
-      dialogService,
-      i18nService,
-      kdfConfigService,
-      keyService,
-      masterPasswordService,
-      messagingService,
-      platformUtilsService,
-      policyService,
-      toastService,
-    );
-  }
-
-  async ngOnInit() {
-    await this.syncService.fullSync(true);
-
-    const userId = (await firstValueFrom(this.accountService.activeAccount$))?.id;
-    this.reason = await firstValueFrom(this.masterPasswordService.forceSetPasswordReason$(userId));
-
-    // If we somehow end up here without a reason, go back to the home page
-    if (this.reason == ForceSetPasswordReason.None) {
-      // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-      // eslint-disable-next-line @typescript-eslint/no-floating-promises
-      this.router.navigate(["/"]);
-      return;
-    }
-
-    await super.ngOnInit();
-  }
-
-  get masterPasswordWarningText(): string {
-    if (this.reason == ForceSetPasswordReason.WeakMasterPassword) {
-      return this.i18nService.t("updateWeakMasterPasswordWarning");
-    } else if (this.reason == ForceSetPasswordReason.TdeOffboarding) {
-      return this.i18nService.t("tdeDisabledMasterPasswordRequired");
-    } else {
-      return this.i18nService.t("updateMasterPasswordWarning");
-    }
-  }
-
-  togglePassword(confirmField: boolean) {
-    this.showPassword = !this.showPassword;
-    document.getElementById(confirmField ? "masterPasswordRetype" : "masterPassword").focus();
-  }
-
-  async setupSubmitActions(): Promise<boolean> {
-    const [userId, email] = await firstValueFrom(
-      this.accountService.activeAccount$.pipe(map((a) => [a?.id, a?.email])),
-    );
-    this.email = email;
-    this.kdfConfig = await this.kdfConfigService.getKdfConfig(userId);
-    return true;
-  }
-
-  async submit() {
-    // Validation
-    if (!(await this.strongPassword())) {
-      return;
-    }
-
-    if (!(await this.setupSubmitActions())) {
-      return;
-    }
-
-    try {
-      // Create new key and hash new password
-      const newMasterKey = await this.keyService.makeMasterKey(
-        this.masterPassword,
-        this.email.trim().toLowerCase(),
-        this.kdfConfig,
-      );
-      const newPasswordHash = await this.keyService.hashMasterKey(
-        this.masterPassword,
-        newMasterKey,
-      );
-
-      // Grab user key
-      const userKey = await this.keyService.getUserKey();
-
-      // Encrypt user key with new master key
-      const newProtectedUserKey = await this.keyService.encryptUserKeyWithMasterKey(
-        newMasterKey,
-        userKey,
-      );
-
-      await this.performSubmitActions(newPasswordHash, newMasterKey, newProtectedUserKey);
-    } catch (e) {
-      this.logService.error(e);
-    }
-  }
-
-  async performSubmitActions(
-    masterPasswordHash: string,
-    masterKey: MasterKey,
-    userKey: [UserKey, EncString],
-  ) {
-    try {
-      switch (this.reason) {
-        case ForceSetPasswordReason.AdminForcePasswordReset:
-          this.formPromise = this.updateTempPassword(masterPasswordHash, userKey);
-          break;
-        case ForceSetPasswordReason.WeakMasterPassword:
-          this.formPromise = this.updatePassword(masterPasswordHash, userKey);
-          break;
-        case ForceSetPasswordReason.TdeOffboarding:
-          this.formPromise = this.updateTdeOffboardingPassword(masterPasswordHash, userKey);
-          break;
-      }
-
-      await this.formPromise;
-      this.toastService.showToast({
-        variant: "success",
-        title: null,
-        message: this.i18nService.t("updatedMasterPassword"),
-      });
-
-      const userId = (await firstValueFrom(this.accountService.activeAccount$))?.id;
-      await this.masterPasswordService.setForceSetPasswordReason(
-        ForceSetPasswordReason.None,
-        userId,
-      );
-
-      if (this.onSuccessfulChangePassword != null) {
-        // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-        // eslint-disable-next-line @typescript-eslint/no-floating-promises
-        this.onSuccessfulChangePassword();
-      } else {
-        this.messagingService.send("logout");
-      }
-    } catch (e) {
-      this.logService.error(e);
-    }
-  }
-  private async updateTempPassword(masterPasswordHash: string, userKey: [UserKey, EncString]) {
-    const request = new UpdateTempPasswordRequest();
-    request.key = userKey[1].encryptedString;
-    request.newMasterPasswordHash = masterPasswordHash;
-    request.masterPasswordHint = this.hint;
-
-    return this.masterPasswordApiService.putUpdateTempPassword(request);
-  }
-
-  private async updatePassword(newMasterPasswordHash: string, userKey: [UserKey, EncString]) {
-    const request = await this.userVerificationService.buildRequest(
-      this.verification,
-      PasswordRequest,
-    );
-    request.masterPasswordHint = this.hint;
-    request.newMasterPasswordHash = newMasterPasswordHash;
-    request.key = userKey[1].encryptedString;
-
-    return this.masterPasswordApiService.postPassword(request);
-  }
-
-  private async updateTdeOffboardingPassword(
-    masterPasswordHash: string,
-    userKey: [UserKey, EncString],
-  ) {
-    const request = new UpdateTdeOffboardingPasswordRequest();
-    request.key = userKey[1].encryptedString;
-    request.newMasterPasswordHash = masterPasswordHash;
-    request.masterPasswordHint = this.hint;
-
-    return this.masterPasswordApiService.putUpdateTdeOffboardingPassword(request);
-  }
-}
diff --git a/libs/angular/src/auth/guards/auth.guard.spec.ts b/libs/angular/src/auth/guards/auth.guard.spec.ts
index 1681fa2b4ea..fccfcd58874 100644
--- a/libs/angular/src/auth/guards/auth.guard.spec.ts
+++ b/libs/angular/src/auth/guards/auth.guard.spec.ts
@@ -68,10 +68,7 @@ describe("AuthGuard", () => {
           { path: "", component: EmptyComponent },
           { path: "guarded-route", component: EmptyComponent, canActivate: [authGuard] },
           { path: "lock", component: EmptyComponent },
-          { path: "set-password", component: EmptyComponent },
-          { path: "set-password-jit", component: EmptyComponent },
           { path: "set-initial-password", component: EmptyComponent, canActivate: [authGuard] },
-          { path: "update-temp-password", component: EmptyComponent, canActivate: [authGuard] },
           { path: "change-password", component: EmptyComponent },
           { path: "remove-password", component: EmptyComponent, canActivate: [authGuard] },
         ]),
@@ -125,109 +122,58 @@ describe("AuthGuard", () => {
   });
 
   describe("given user is Locked", () => {
-    describe("given the PM16117_SetInitialPasswordRefactor feature flag is ON", () => {
-      it("should redirect to /set-initial-password when the user has ForceSetPasswordReaason.TdeOffboardingUntrustedDevice", async () => {
-        const { router } = setup(
-          AuthenticationStatus.Locked,
-          ForceSetPasswordReason.TdeOffboardingUntrustedDevice,
-          false,
-          FeatureFlag.PM16117_SetInitialPasswordRefactor,
-        );
+    it("should redirect to /set-initial-password when the user has ForceSetPasswordReaason.TdeOffboardingUntrustedDevice", async () => {
+      const { router } = setup(
+        AuthenticationStatus.Locked,
+        ForceSetPasswordReason.TdeOffboardingUntrustedDevice,
+        false,
+      );
 
-        await router.navigate(["guarded-route"]);
-        expect(router.url).toBe("/set-initial-password");
-      });
+      await router.navigate(["guarded-route"]);
+      expect(router.url).toBe("/set-initial-password");
+    });
 
-      it("should allow navigation to continue to /set-initial-password when the user has ForceSetPasswordReason.TdeOffboardingUntrustedDevice", async () => {
-        const { router } = setup(
-          AuthenticationStatus.Unlocked,
-          ForceSetPasswordReason.TdeOffboardingUntrustedDevice,
-          false,
-          FeatureFlag.PM16117_SetInitialPasswordRefactor,
-        );
+    it("should allow navigation to continue to /set-initial-password when the user has ForceSetPasswordReason.TdeOffboardingUntrustedDevice", async () => {
+      const { router } = setup(
+        AuthenticationStatus.Unlocked,
+        ForceSetPasswordReason.TdeOffboardingUntrustedDevice,
+        false,
+      );
 
-        await router.navigate(["/set-initial-password"]);
-        expect(router.url).toContain("/set-initial-password");
-      });
+      await router.navigate(["/set-initial-password"]);
+      expect(router.url).toContain("/set-initial-password");
     });
   });
 
-  describe("given user is Unlocked", () => {
-    describe("given the PM16117_SetInitialPasswordRefactor feature flag is ON", () => {
-      const tests = [
-        ForceSetPasswordReason.TdeUserWithoutPasswordHasPasswordResetPermission,
-        ForceSetPasswordReason.TdeOffboarding,
-      ];
+  describe("given user is Unlocked and ForceSetPasswordReason requires setting an initial password", () => {
+    const tests = [
+      ForceSetPasswordReason.TdeUserWithoutPasswordHasPasswordResetPermission,
+      ForceSetPasswordReason.TdeOffboarding,
+    ];
 
-      describe("given user attempts to navigate to an auth guarded route", () => {
-        tests.forEach((reason) => {
-          it(`should redirect to /set-initial-password when the user has ForceSetPasswordReason.${ForceSetPasswordReason[reason]}`, async () => {
-            const { router } = setup(
-              AuthenticationStatus.Unlocked,
-              reason,
-              false,
-              FeatureFlag.PM16117_SetInitialPasswordRefactor,
-            );
+    describe("given user attempts to navigate to an auth guarded route", () => {
+      tests.forEach((reason) => {
+        it(`should redirect to /set-initial-password when the user has ForceSetPasswordReason.${ForceSetPasswordReason[reason]}`, async () => {
+          const { router } = setup(AuthenticationStatus.Unlocked, reason, false);
 
-            await router.navigate(["guarded-route"]);
-            expect(router.url).toContain("/set-initial-password");
-          });
-        });
-      });
-
-      describe("given user attempts to navigate to /set-initial-password", () => {
-        tests.forEach((reason) => {
-          it(`should allow navigation to continue to /set-initial-password when the user has ForceSetPasswordReason.${ForceSetPasswordReason[reason]}`, async () => {
-            const { router } = setup(
-              AuthenticationStatus.Unlocked,
-              reason,
-              false,
-              FeatureFlag.PM16117_SetInitialPasswordRefactor,
-            );
-
-            await router.navigate(["/set-initial-password"]);
-            expect(router.url).toContain("/set-initial-password");
-          });
+          await router.navigate(["guarded-route"]);
+          expect(router.url).toContain("/set-initial-password");
         });
       });
     });
 
-    describe("given the PM16117_SetInitialPasswordRefactor feature flag is OFF", () => {
-      const tests = [
-        {
-          reason: ForceSetPasswordReason.TdeUserWithoutPasswordHasPasswordResetPermission,
-          url: "/set-password",
-        },
-        {
-          reason: ForceSetPasswordReason.TdeOffboarding,
-          url: "/update-temp-password",
-        },
-      ];
+    describe("given user attempts to navigate to /set-initial-password", () => {
+      tests.forEach((reason) => {
+        it(`should allow navigation to continue to /set-initial-password when the user has ForceSetPasswordReason.${ForceSetPasswordReason[reason]}`, async () => {
+          const { router } = setup(AuthenticationStatus.Unlocked, reason, false);
 
-      describe("given user attempts to navigate to an auth guarded route", () => {
-        tests.forEach(({ reason, url }) => {
-          it(`should redirect to ${url} when user has ForceSetPasswordReason.${ForceSetPasswordReason[reason]}`, async () => {
-            const { router } = setup(AuthenticationStatus.Unlocked, reason);
-
-            await router.navigate(["/guarded-route"]);
-            expect(router.url).toContain(url);
-          });
-        });
-      });
-
-      describe("given user attempts to navigate to the set- or update- password route itself", () => {
-        tests.forEach(({ reason, url }) => {
-          it(`should allow navigation to continue to ${url} when user has ForceSetPasswordReason.${ForceSetPasswordReason[reason]}`, async () => {
-            const { router } = setup(AuthenticationStatus.Unlocked, reason);
-
-            await router.navigate([url]);
-            expect(router.url).toContain(url);
-          });
+          await router.navigate(["/set-initial-password"]);
+          expect(router.url).toContain("/set-initial-password");
         });
       });
     });
 
-    describe("given the PM16117_ChangeExistingPasswordRefactor feature flag is ON", () => {
+    describe("given user is Unlocked and ForceSetPasswordReason requires changing an existing password", () => {
       const tests = [
         ForceSetPasswordReason.AdminForcePasswordReset,
         ForceSetPasswordReason.WeakMasterPassword,
@@ -236,12 +182,7 @@ describe("AuthGuard", () => {
       describe("given user attempts to navigate to an auth guarded route", () => {
         tests.forEach((reason) => {
           it(`should redirect to /change-password when user has ForceSetPasswordReason.${ForceSetPasswordReason[reason]}`, async () => {
-            const { router } = setup(
-              AuthenticationStatus.Unlocked,
-              reason,
-              false,
-              FeatureFlag.PM16117_ChangeExistingPasswordRefactor,
-            );
+            const { router } = setup(AuthenticationStatus.Unlocked, reason, false);
 
             await router.navigate(["guarded-route"]);
             expect(router.url).toContain("/change-password");
@@ -256,7 +197,6 @@ describe("AuthGuard", () => {
               AuthenticationStatus.Unlocked,
               ForceSetPasswordReason.AdminForcePasswordReset,
               false,
-              FeatureFlag.PM16117_ChangeExistingPasswordRefactor,
             );
 
             await router.navigate(["/change-password"]);
@@ -265,34 +205,5 @@ describe("AuthGuard", () => {
         });
       });
     });
-
-    describe("given the PM16117_ChangeExistingPasswordRefactor feature flag is OFF", () => {
-      const tests = [
-        ForceSetPasswordReason.AdminForcePasswordReset,
-        ForceSetPasswordReason.WeakMasterPassword,
-      ];
-
-      describe("given user attempts to navigate to an auth guarded route", () => {
-        tests.forEach((reason) => {
-          it(`should redirect to /update-temp-password when user has ForceSetPasswordReason.${ForceSetPasswordReason[reason]}`, async () => {
-            const { router } = setup(AuthenticationStatus.Unlocked, reason);
-
-            await router.navigate(["guarded-route"]);
-            expect(router.url).toContain("/update-temp-password");
-          });
-        });
-      });
-
-      describe("given user attempts to navigate to /update-temp-password", () => {
-        tests.forEach((reason) => {
-          it(`should allow navigation to continue to /update-temp-password when user has ForceSetPasswordReason.${ForceSetPasswordReason[reason]}`, async () => {
-            const { router } = setup(AuthenticationStatus.Unlocked, reason);
-
-            await router.navigate(["/update-temp-password"]);
-            expect(router.url).toContain("/update-temp-password");
-          });
-        });
-      });
-    });
   });
 });
diff --git a/libs/angular/src/auth/guards/auth.guard.ts b/libs/angular/src/auth/guards/auth.guard.ts
index 3722a7c802a..8e8e70a6d29 100644
--- a/libs/angular/src/auth/guards/auth.guard.ts
+++ b/libs/angular/src/auth/guards/auth.guard.ts
@@ -14,10 +14,8 @@ import { AccountService } from "@bitwarden/common/auth/abstractions/account.serv
 import { AuthService } from "@bitwarden/common/auth/abstractions/auth.service";
 import { AuthenticationStatus } from "@bitwarden/common/auth/enums/authentication-status";
 import { ForceSetPasswordReason } from "@bitwarden/common/auth/models/domain/force-set-password-reason";
-import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
 import { KeyConnectorService } from "@bitwarden/common/key-management/key-connector/abstractions/key-connector.service";
 import { MasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
-import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
 
 export const authGuard: CanActivateFn = async (
@@ -30,7 +28,6 @@ export const authGuard: CanActivateFn = async (
   const keyConnectorService = inject(KeyConnectorService);
   const accountService = inject(AccountService);
   const masterPasswordService = inject(MasterPasswordServiceAbstraction);
-  const configService = inject(ConfigService);
 
   const authStatus = await authService.getAuthStatus();
 
@@ -44,16 +41,11 @@ export const authGuard: CanActivateFn = async (
     masterPasswordService.forceSetPasswordReason$(userId),
   );
 
-  const isSetInitialPasswordFlagOn = await configService.getFeatureFlag(
-    FeatureFlag.PM16117_SetInitialPasswordRefactor,
-  );
-
   // User JIT provisioned into a master-password-encryption org
   if (
     authStatus === AuthenticationStatus.Locked &&
     forceSetPasswordReason === ForceSetPasswordReason.SsoNewJitProvisionedUser &&
-    !routerState.url.includes("set-initial-password") &&
-    isSetInitialPasswordFlagOn
+    !routerState.url.includes("set-initial-password")
   ) {
     return router.createUrlTree(["/set-initial-password"]);
   }
@@ -62,8 +54,7 @@ export const authGuard: CanActivateFn = async (
   if (
     authStatus === AuthenticationStatus.Locked &&
     forceSetPasswordReason === ForceSetPasswordReason.TdeOffboardingUntrustedDevice &&
-    !routerState.url.includes("set-initial-password") &&
-    isSetInitialPasswordFlagOn
+    !routerState.url.includes("set-initial-password")
   ) {
     return router.createUrlTree(["/set-initial-password"]);
   }
@@ -90,39 +81,28 @@ export const authGuard: CanActivateFn = async (
     return router.createUrlTree(["/remove-password"]);
   }
 
-  // TDE org user has "manage account recovery" permission
+  // Handle cases where a user needs to set a password when they don't already have one:
+  // - TDE org user has been given "manage account recovery" permission
+  // - TDE offboarding on a trusted device, where we have access to their encryption key wrap with their new password
   if (
-    forceSetPasswordReason ===
-      ForceSetPasswordReason.TdeUserWithoutPasswordHasPasswordResetPermission &&
-    !routerState.url.includes("set-password") &&
+    (forceSetPasswordReason ===
+      ForceSetPasswordReason.TdeUserWithoutPasswordHasPasswordResetPermission ||
+      forceSetPasswordReason === ForceSetPasswordReason.TdeOffboarding) &&
     !routerState.url.includes("set-initial-password")
   ) {
-    const route = isSetInitialPasswordFlagOn ? "/set-initial-password" : "/set-password";
+    const route = "/set-initial-password";
     return router.createUrlTree([route]);
   }
 
-  // TDE Offboarding on trusted device
-  if (
-    forceSetPasswordReason === ForceSetPasswordReason.TdeOffboarding &&
-    !routerState.url.includes("update-temp-password") &&
-    !routerState.url.includes("set-initial-password")
-  ) {
-    const route = isSetInitialPasswordFlagOn ? "/set-initial-password" : "/update-temp-password";
-    return router.createUrlTree([route]);
-  }
-
-  const isChangePasswordFlagOn = await configService.getFeatureFlag(
-    FeatureFlag.PM16117_ChangeExistingPasswordRefactor,
-  );
-
-  // Post- Account Recovery or Weak Password on login
+  // Handle cases where a user has a password but needs to set a new one:
+  // - Account recovery
+  // - Weak Password on login
   if (
     (forceSetPasswordReason === ForceSetPasswordReason.AdminForcePasswordReset ||
       forceSetPasswordReason === ForceSetPasswordReason.WeakMasterPassword) &&
-    !routerState.url.includes("update-temp-password") &&
     !routerState.url.includes("change-password")
   ) {
-    const route = isChangePasswordFlagOn ? "/change-password" : "/update-temp-password";
+    const route = "/change-password";
     return router.createUrlTree([route]);
   }
 
diff --git a/libs/angular/src/services/jslib-services.module.ts b/libs/angular/src/services/jslib-services.module.ts
index 0ad7b57d9b3..aaabc405da0 100644
--- a/libs/angular/src/services/jslib-services.module.ts
+++ b/libs/angular/src/services/jslib-services.module.ts
@@ -22,13 +22,11 @@ import {
   DefaultLoginComponentService,
   DefaultLoginDecryptionOptionsService,
   DefaultRegistrationFinishService,
-  DefaultSetPasswordJitService,
   DefaultTwoFactorAuthComponentService,
   DefaultTwoFactorAuthWebAuthnComponentService,
   LoginComponentService,
   LoginDecryptionOptionsService,
   RegistrationFinishService as RegistrationFinishServiceAbstraction,
-  SetPasswordJitService,
   TwoFactorAuthComponentService,
   TwoFactorAuthWebAuthnComponentService,
 } from "@bitwarden/auth/angular";
@@ -1417,21 +1415,6 @@ const safeProviders: SafeProvider[] = [
     useClass: DefaultOrganizationInviteService,
     deps: [],
   }),
-  safeProvider({
-    provide: SetPasswordJitService,
-    useClass: DefaultSetPasswordJitService,
-    deps: [
-      EncryptService,
-      I18nServiceAbstraction,
-      KdfConfigService,
-      KeyService,
-      MasterPasswordApiServiceAbstraction,
-      InternalMasterPasswordServiceAbstraction,
-      OrganizationApiServiceAbstraction,
-      OrganizationUserApiService,
-      InternalUserDecryptionOptionsServiceAbstraction,
-    ],
-  }),
   safeProvider({
     provide: SetInitialPasswordService,
     useClass: DefaultSetInitialPasswordService,
diff --git a/libs/auth/src/angular/index.ts b/libs/auth/src/angular/index.ts
index aa0041c7ec3..3e8dc575c7b 100644
--- a/libs/auth/src/angular/index.ts
+++ b/libs/auth/src/angular/index.ts
@@ -41,11 +41,6 @@ export * from "./registration/registration-env-selector/registration-env-selecto
 export * from "./registration/registration-finish/registration-finish.service";
 export * from "./registration/registration-finish/default-registration-finish.service";
 
-// set password (JIT user)
-export * from "./set-password-jit/set-password-jit.component";
-export * from "./set-password-jit/set-password-jit.service.abstraction";
-export * from "./set-password-jit/default-set-password-jit.service";
-
 // user verification
 export * from "./user-verification/user-verification-dialog.component";
 export * from "./user-verification/user-verification-dialog.types";
diff --git a/libs/auth/src/angular/login/login.component.ts b/libs/auth/src/angular/login/login.component.ts
index b3509850ac0..2a2be148a86 100644
--- a/libs/auth/src/angular/login/login.component.ts
+++ b/libs/auth/src/angular/login/login.component.ts
@@ -18,7 +18,6 @@ import { Policy } from "@bitwarden/common/admin-console/models/domain/policy";
 import { DevicesApiServiceAbstraction } from "@bitwarden/common/auth/abstractions/devices-api.service.abstraction";
 import { AuthResult } from "@bitwarden/common/auth/models/domain/auth-result";
 import { ClientType, HttpStatusCode } from "@bitwarden/common/enums";
-import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
 import { MasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
 import { ErrorResponse } from "@bitwarden/common/models/response/error.response";
 import { AppIdService } from "@bitwarden/common/platform/abstractions/app-id.service";
@@ -230,29 +229,21 @@ export class LoginComponent implements OnInit, OnDestroy {
       return;
     }
 
-    let credentials: PasswordLoginCredentials;
+    // Try to retrieve any org policies from an org invite now so we can send it to the
+    // login strategies. Since it is optional and we only want to be doing this on the
+    // web we will only send in content in the right context.
+    const orgPoliciesFromInvite = this.loginComponentService.getOrgPoliciesFromOrgInvite
+      ? await this.loginComponentService.getOrgPoliciesFromOrgInvite()
+      : null;
 
-    if (
-      await this.configService.getFeatureFlag(FeatureFlag.PM16117_ChangeExistingPasswordRefactor)
-    ) {
-      // Try to retrieve any org policies from an org invite now so we can send it to the
-      // login strategies. Since it is optional and we only want to be doing this on the
-      // web we will only send in content in the right context.
-      const orgPoliciesFromInvite = this.loginComponentService.getOrgPoliciesFromOrgInvite
-        ? await this.loginComponentService.getOrgPoliciesFromOrgInvite()
-        : null;
+    const orgMasterPasswordPolicyOptions = orgPoliciesFromInvite?.enforcedPasswordPolicyOptions;
 
-      const orgMasterPasswordPolicyOptions = orgPoliciesFromInvite?.enforcedPasswordPolicyOptions;
-
-      credentials = new PasswordLoginCredentials(
-        email,
-        masterPassword,
-        undefined,
-        orgMasterPasswordPolicyOptions,
-      );
-    } else {
-      credentials = new PasswordLoginCredentials(email, masterPassword);
-    }
+    const credentials = new PasswordLoginCredentials(
+      email,
+      masterPassword,
+      undefined,
+      orgMasterPasswordPolicyOptions,
+    );
 
     try {
       const authResult = await this.loginStrategyService.logIn(credentials);
@@ -332,7 +323,7 @@ export class LoginComponent implements OnInit, OnDestroy {
     await this.loginSuccessHandlerService.run(authResult.userId);
 
     // Determine where to send the user next
-    // The AuthGuard will handle routing to update-temp-password based on state
+    // The AuthGuard will handle routing to change-password based on state
 
     // TODO: PM-18269 - evaluate if we can combine this with the
     // password evaluation done in the password login strategy.
@@ -344,7 +335,7 @@ export class LoginComponent implements OnInit, OnDestroy {
 
       if (orgPolicies) {
         // Since we have retrieved the policies, we can go ahead and set them into state for future use
-        // e.g., the update-password page currently only references state for policy data and
+        // e.g., the change-password page currently only references state for policy data and
         // doesn't fallback to pulling them from the server like it should if they are null.
         await this.setPoliciesIntoState(authResult.userId, orgPolicies.policies);
 
@@ -352,13 +343,7 @@ export class LoginComponent implements OnInit, OnDestroy {
           orgPolicies.enforcedPasswordPolicyOptions,
         );
         if (isPasswordChangeRequired) {
-          const changePasswordFeatureFlagOn = await this.configService.getFeatureFlag(
-            FeatureFlag.PM16117_ChangeExistingPasswordRefactor,
-          );
-
-          await this.router.navigate(
-            changePasswordFeatureFlagOn ? ["change-password"] : ["update-password"],
-          );
+          await this.router.navigate(["change-password"]);
           return;
         }
       }
diff --git a/libs/auth/src/angular/new-device-verification/new-device-verification.component.ts b/libs/auth/src/angular/new-device-verification/new-device-verification.component.ts
index 4325b4bcbc1..6362b901fc8 100644
--- a/libs/auth/src/angular/new-device-verification/new-device-verification.component.ts
+++ b/libs/auth/src/angular/new-device-verification/new-device-verification.component.ts
@@ -10,7 +10,6 @@ import { ApiService } from "@bitwarden/common/abstractions/api.service";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { ForceSetPasswordReason } from "@bitwarden/common/auth/models/domain/force-set-password-reason";
 import { getUserId } from "@bitwarden/common/auth/services/account.service";
-import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
 import { MasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
 import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
@@ -151,25 +150,17 @@ export class NewDeviceVerificationComponent implements OnInit, OnDestroy {
       this.loginSuccessHandlerService.run(authResult.userId);
 
       // TODO: PM-22663 use the new service to handle routing.
+      const activeUserId = await firstValueFrom(this.accountService.activeAccount$.pipe(getUserId));
+
+      const forceSetPasswordReason = await firstValueFrom(
+        this.masterPasswordService.forceSetPasswordReason$(activeUserId),
+      );
+
       if (
-        await this.configService.getFeatureFlag(FeatureFlag.PM16117_ChangeExistingPasswordRefactor)
+        forceSetPasswordReason === ForceSetPasswordReason.WeakMasterPassword ||
+        forceSetPasswordReason === ForceSetPasswordReason.AdminForcePasswordReset
       ) {
-        const activeUserId = await firstValueFrom(
-          this.accountService.activeAccount$.pipe(getUserId),
-        );
-
-        const forceSetPasswordReason = await firstValueFrom(
-          this.masterPasswordService.forceSetPasswordReason$(activeUserId),
-        );
-
-        if (
-          forceSetPasswordReason === ForceSetPasswordReason.WeakMasterPassword ||
-          forceSetPasswordReason === ForceSetPasswordReason.AdminForcePasswordReset
-        ) {
-          await this.router.navigate(["/change-password"]);
-        } else {
-          await this.router.navigate(["/vault"]);
-        }
+        await this.router.navigate(["/change-password"]);
       } else {
         await this.router.navigate(["/vault"]);
       }
diff --git a/libs/auth/src/angular/set-password-jit/default-set-password-jit.service.spec.ts b/libs/auth/src/angular/set-password-jit/default-set-password-jit.service.spec.ts
deleted file mode 100644
index 6a9a37700cc..00000000000
--- a/libs/auth/src/angular/set-password-jit/default-set-password-jit.service.spec.ts
+++ /dev/null
@@ -1,241 +0,0 @@
-import { MockProxy, mock } from "jest-mock-extended";
-import { BehaviorSubject, of } from "rxjs";
-
-// This import has been flagged as unallowed for this class. It may be involved in a circular dependency loop.
-// eslint-disable-next-line no-restricted-imports
-import { OrganizationUserApiService } from "@bitwarden/admin-console/common";
-import {
-  FakeUserDecryptionOptions as UserDecryptionOptions,
-  InternalUserDecryptionOptionsServiceAbstraction,
-} from "@bitwarden/auth/common";
-import { OrganizationApiServiceAbstraction } from "@bitwarden/common/admin-console/abstractions/organization/organization-api.service.abstraction";
-import { OrganizationKeysResponse } from "@bitwarden/common/admin-console/models/response/organization-keys.response";
-import { MasterPasswordApiService } from "@bitwarden/common/auth/abstractions/master-password-api.service.abstraction";
-import { SetPasswordRequest } from "@bitwarden/common/auth/models/request/set-password.request";
-import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
-import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
-import { InternalMasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
-import { KeysRequest } from "@bitwarden/common/models/request/keys.request";
-import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { Utils } from "@bitwarden/common/platform/misc/utils";
-import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
-import { CsprngArray } from "@bitwarden/common/types/csprng";
-import { UserId } from "@bitwarden/common/types/guid";
-import { MasterKey, UserKey } from "@bitwarden/common/types/key";
-import { DEFAULT_KDF_CONFIG, KdfConfigService, KeyService } from "@bitwarden/key-management";
-
-import { PasswordInputResult } from "../input-password/password-input-result";
-
-import { DefaultSetPasswordJitService } from "./default-set-password-jit.service";
-import { SetPasswordCredentials } from "./set-password-jit.service.abstraction";
-
-describe("DefaultSetPasswordJitService", () => {
-  let sut: DefaultSetPasswordJitService;
-
-  let masterPasswordApiService: MockProxy<MasterPasswordApiService>;
-  let keyService: MockProxy<KeyService>;
-  let encryptService: MockProxy<EncryptService>;
-  let i18nService: MockProxy<I18nService>;
-  let kdfConfigService: MockProxy<KdfConfigService>;
-  let masterPasswordService: MockProxy<InternalMasterPasswordServiceAbstraction>;
-  let organizationApiService: MockProxy<OrganizationApiServiceAbstraction>;
-  let organizationUserApiService: MockProxy<OrganizationUserApiService>;
-  let userDecryptionOptionsService: MockProxy<InternalUserDecryptionOptionsServiceAbstraction>;
-
-  beforeEach(() => {
-    masterPasswordApiService = mock<MasterPasswordApiService>();
-    keyService = mock<KeyService>();
-    encryptService = mock<EncryptService>();
-    i18nService = mock<I18nService>();
-    kdfConfigService = mock<KdfConfigService>();
-    masterPasswordService = mock<InternalMasterPasswordServiceAbstraction>();
-    organizationApiService = mock<OrganizationApiServiceAbstraction>();
-    organizationUserApiService = mock<OrganizationUserApiService>();
-    userDecryptionOptionsService = mock<InternalUserDecryptionOptionsServiceAbstraction>();
-
-    sut = new DefaultSetPasswordJitService(
-      encryptService,
-      i18nService,
-      kdfConfigService,
-      keyService,
-      masterPasswordApiService,
-      masterPasswordService,
-      organizationApiService,
-      organizationUserApiService,
-      userDecryptionOptionsService,
-    );
-  });
-
-  it("should instantiate the DefaultSetPasswordJitService", () => {
-    expect(sut).not.toBeFalsy();
-  });
-
-  describe("setPassword", () => {
-    let masterKey: MasterKey;
-    let userKey: UserKey;
-    let userKeyEncString: EncString;
-    let protectedUserKey: [UserKey, EncString];
-    let keyPair: [string, EncString];
-    let keysRequest: KeysRequest;
-    let organizationKeys: OrganizationKeysResponse;
-    let orgPublicKey: Uint8Array;
-
-    let orgSsoIdentifier: string;
-    let orgId: string;
-    let resetPasswordAutoEnroll: boolean;
-    let userId: UserId;
-    let passwordInputResult: PasswordInputResult;
-    let credentials: SetPasswordCredentials;
-
-    let userDecryptionOptionsSubject: BehaviorSubject<UserDecryptionOptions>;
-    let setPasswordRequest: SetPasswordRequest;
-
-    beforeEach(() => {
-      masterKey = new SymmetricCryptoKey(new Uint8Array(64).buffer as CsprngArray) as MasterKey;
-      userKey = new SymmetricCryptoKey(new Uint8Array(64).buffer as CsprngArray) as UserKey;
-      userKeyEncString = new EncString("userKeyEncrypted");
-      protectedUserKey = [userKey, userKeyEncString];
-      keyPair = ["publicKey", new EncString("privateKey")];
-      keysRequest = new KeysRequest(keyPair[0], keyPair[1].encryptedString);
-      organizationKeys = {
-        privateKey: "orgPrivateKey",
-        publicKey: "orgPublicKey",
-      } as OrganizationKeysResponse;
-      orgPublicKey = Utils.fromB64ToArray(organizationKeys.publicKey);
-
-      orgSsoIdentifier = "orgSsoIdentifier";
-      orgId = "orgId";
-      resetPasswordAutoEnroll = false;
-      userId = "userId" as UserId;
-
-      passwordInputResult = {
-        newMasterKey: masterKey,
-        newServerMasterKeyHash: "newServerMasterKeyHash",
-        newLocalMasterKeyHash: "newLocalMasterKeyHash",
-        newPasswordHint: "newPasswordHint",
-        kdfConfig: DEFAULT_KDF_CONFIG,
-        newPassword: "newPassword",
-      };
-
-      credentials = {
-        newMasterKey: passwordInputResult.newMasterKey,
-        newServerMasterKeyHash: passwordInputResult.newServerMasterKeyHash,
-        newLocalMasterKeyHash: passwordInputResult.newLocalMasterKeyHash,
-        newPasswordHint: passwordInputResult.newPasswordHint,
-        kdfConfig: passwordInputResult.kdfConfig,
-        orgSsoIdentifier,
-        orgId,
-        resetPasswordAutoEnroll,
-        userId,
-      };
-
-      userDecryptionOptionsSubject = new BehaviorSubject(null);
-      userDecryptionOptionsService.userDecryptionOptions$ = userDecryptionOptionsSubject;
-
-      setPasswordRequest = new SetPasswordRequest(
-        passwordInputResult.newServerMasterKeyHash,
-        protectedUserKey[1].encryptedString,
-        passwordInputResult.newPasswordHint,
-        orgSsoIdentifier,
-        keysRequest,
-        passwordInputResult.kdfConfig.kdfType,
-        passwordInputResult.kdfConfig.iterations,
-      );
-    });
-
-    function setupSetPasswordMocks(hasUserKey = true) {
-      if (!hasUserKey) {
-        keyService.userKey$.mockReturnValue(of(null));
-        keyService.makeUserKey.mockResolvedValue(protectedUserKey);
-      } else {
-        keyService.userKey$.mockReturnValue(of(userKey));
-        keyService.encryptUserKeyWithMasterKey.mockResolvedValue(protectedUserKey);
-      }
-
-      keyService.makeKeyPair.mockResolvedValue(keyPair);
-
-      masterPasswordApiService.setPassword.mockResolvedValue(undefined);
-      masterPasswordService.setForceSetPasswordReason.mockResolvedValue(undefined);
-
-      userDecryptionOptionsSubject.next(new UserDecryptionOptions({ hasMasterPassword: true }));
-      userDecryptionOptionsService.setUserDecryptionOptions.mockResolvedValue(undefined);
-      kdfConfigService.setKdfConfig.mockResolvedValue(undefined);
-      keyService.setUserKey.mockResolvedValue(undefined);
-
-      keyService.setPrivateKey.mockResolvedValue(undefined);
-
-      masterPasswordService.setMasterKeyHash.mockResolvedValue(undefined);
-    }
-
-    function setupResetPasswordAutoEnrollMocks(organizationKeysExist = true) {
-      if (organizationKeysExist) {
-        organizationApiService.getKeys.mockResolvedValue(organizationKeys);
-      } else {
-        organizationApiService.getKeys.mockResolvedValue(null);
-        return;
-      }
-
-      keyService.userKey$.mockReturnValue(of(userKey));
-      encryptService.encapsulateKeyUnsigned.mockResolvedValue(userKeyEncString);
-
-      organizationUserApiService.putOrganizationUserResetPasswordEnrollment.mockResolvedValue(
-        undefined,
-      );
-    }
-
-    it("should set password successfully (given a user key)", async () => {
-      // Arrange
-      setupSetPasswordMocks();
-
-      // Act
-      await sut.setPassword(credentials);
-
-      // Assert
-      expect(masterPasswordApiService.setPassword).toHaveBeenCalledWith(setPasswordRequest);
-    });
-
-    it("should set password successfully (given no user key)", async () => {
-      // Arrange
-      setupSetPasswordMocks(false);
-
-      // Act
-      await sut.setPassword(credentials);
-
-      // Assert
-      expect(masterPasswordApiService.setPassword).toHaveBeenCalledWith(setPasswordRequest);
-    });
-
-    it("should handle reset password auto enroll", async () => {
-      // Arrange
-      credentials.resetPasswordAutoEnroll = true;
-
-      setupSetPasswordMocks();
-      setupResetPasswordAutoEnrollMocks();
-
-      // Act
-      await sut.setPassword(credentials);
-
-      // Assert
-      expect(masterPasswordApiService.setPassword).toHaveBeenCalledWith(setPasswordRequest);
-      expect(organizationApiService.getKeys).toHaveBeenCalledWith(orgId);
-      expect(encryptService.encapsulateKeyUnsigned).toHaveBeenCalledWith(userKey, orgPublicKey);
-      expect(
-        organizationUserApiService.putOrganizationUserResetPasswordEnrollment,
-      ).toHaveBeenCalled();
-    });
-
-    it("when handling reset password auto enroll, it should throw an error if organization keys are not found", async () => {
-      // Arrange
-      credentials.resetPasswordAutoEnroll = true;
-
-      setupSetPasswordMocks();
-      setupResetPasswordAutoEnrollMocks(false);
-
-      // Act and Assert
-      await expect(sut.setPassword(credentials)).rejects.toThrow();
-      expect(
-        organizationUserApiService.putOrganizationUserResetPasswordEnrollment,
-      ).not.toHaveBeenCalled();
-    });
-  });
-});
diff --git a/libs/auth/src/angular/set-password-jit/default-set-password-jit.service.ts b/libs/auth/src/angular/set-password-jit/default-set-password-jit.service.ts
deleted file mode 100644
index 5fc3272b650..00000000000
--- a/libs/auth/src/angular/set-password-jit/default-set-password-jit.service.ts
+++ /dev/null
@@ -1,176 +0,0 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
-import { firstValueFrom } from "rxjs";
-
-// This import has been flagged as unallowed for this class. It may be involved in a circular dependency loop.
-// eslint-disable-next-line no-restricted-imports
-import {
-  OrganizationUserApiService,
-  OrganizationUserResetPasswordEnrollmentRequest,
-} from "@bitwarden/admin-console/common";
-import { InternalUserDecryptionOptionsServiceAbstraction } from "@bitwarden/auth/common";
-import { OrganizationApiServiceAbstraction } from "@bitwarden/common/admin-console/abstractions/organization/organization-api.service.abstraction";
-import { MasterPasswordApiService } from "@bitwarden/common/auth/abstractions/master-password-api.service.abstraction";
-import { ForceSetPasswordReason } from "@bitwarden/common/auth/models/domain/force-set-password-reason";
-import { SetPasswordRequest } from "@bitwarden/common/auth/models/request/set-password.request";
-import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
-import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-string";
-import { InternalMasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
-import { KeysRequest } from "@bitwarden/common/models/request/keys.request";
-import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { Utils } from "@bitwarden/common/platform/misc/utils";
-import { UserId } from "@bitwarden/common/types/guid";
-import { MasterKey, UserKey } from "@bitwarden/common/types/key";
-import { KdfConfigService, KeyService, KdfConfig } from "@bitwarden/key-management";
-
-import {
-  SetPasswordCredentials,
-  SetPasswordJitService,
-} from "./set-password-jit.service.abstraction";
-
-export class DefaultSetPasswordJitService implements SetPasswordJitService {
-  constructor(
-    protected encryptService: EncryptService,
-    protected i18nService: I18nService,
-    protected kdfConfigService: KdfConfigService,
-    protected keyService: KeyService,
-    protected masterPasswordApiService: MasterPasswordApiService,
-    protected masterPasswordService: InternalMasterPasswordServiceAbstraction,
-    protected organizationApiService: OrganizationApiServiceAbstraction,
-    protected organizationUserApiService: OrganizationUserApiService,
-    protected userDecryptionOptionsService: InternalUserDecryptionOptionsServiceAbstraction,
-  ) {}
-
-  async setPassword(credentials: SetPasswordCredentials): Promise<void> {
-    const {
-      newMasterKey,
-      newServerMasterKeyHash,
-      newLocalMasterKeyHash,
-      newPasswordHint,
-      kdfConfig,
-      orgSsoIdentifier,
-      orgId,
-      resetPasswordAutoEnroll,
-      userId,
-    } = credentials;
-
-    for (const [key, value] of Object.entries(credentials)) {
-      if (value == null) {
-        throw new Error(`${key} not found. Could not set password.`);
-      }
-    }
-
-    const protectedUserKey = await this.makeProtectedUserKey(newMasterKey, userId);
-    if (protectedUserKey == null) {
-      throw new Error("protectedUserKey not found. Could not set password.");
-    }
-
-    // Since this is an existing JIT provisioned user in a MP encryption org setting first password,
-    // they will not already have a user asymmetric key pair so we must create it for them.
-    const [keyPair, keysRequest] = await this.makeKeyPairAndRequest(protectedUserKey);
-
-    const request = new SetPasswordRequest(
-      newServerMasterKeyHash,
-      protectedUserKey[1].encryptedString,
-      newPasswordHint,
-      orgSsoIdentifier,
-      keysRequest,
-      kdfConfig.kdfType,
-      kdfConfig.iterations,
-    );
-
-    await this.masterPasswordApiService.setPassword(request);
-
-    // Clear force set password reason to allow navigation back to vault.
-    await this.masterPasswordService.setForceSetPasswordReason(ForceSetPasswordReason.None, userId);
-
-    // User now has a password so update account decryption options in state
-    await this.updateAccountDecryptionProperties(newMasterKey, kdfConfig, protectedUserKey, userId);
-
-    await this.keyService.setPrivateKey(keyPair[1].encryptedString, userId);
-
-    await this.masterPasswordService.setMasterKeyHash(newLocalMasterKeyHash, userId);
-
-    if (resetPasswordAutoEnroll) {
-      await this.handleResetPasswordAutoEnroll(newServerMasterKeyHash, orgId, userId);
-    }
-  }
-
-  private async makeProtectedUserKey(
-    masterKey: MasterKey,
-    userId: UserId,
-  ): Promise<[UserKey, EncString]> {
-    let protectedUserKey: [UserKey, EncString] = null;
-
-    const userKey = await firstValueFrom(this.keyService.userKey$(userId));
-
-    if (userKey == null) {
-      protectedUserKey = await this.keyService.makeUserKey(masterKey);
-    } else {
-      protectedUserKey = await this.keyService.encryptUserKeyWithMasterKey(masterKey);
-    }
-
-    return protectedUserKey;
-  }
-
-  private async makeKeyPairAndRequest(
-    protectedUserKey: [UserKey, EncString],
-  ): Promise<[[string, EncString], KeysRequest]> {
-    const keyPair = await this.keyService.makeKeyPair(protectedUserKey[0]);
-    if (keyPair == null) {
-      throw new Error("keyPair not found. Could not set password.");
-    }
-    const keysRequest = new KeysRequest(keyPair[0], keyPair[1].encryptedString);
-
-    return [keyPair, keysRequest];
-  }
-
-  private async updateAccountDecryptionProperties(
-    masterKey: MasterKey,
-    kdfConfig: KdfConfig,
-    protectedUserKey: [UserKey, EncString],
-    userId: UserId,
-  ) {
-    const userDecryptionOpts = await firstValueFrom(
-      this.userDecryptionOptionsService.userDecryptionOptions$,
-    );
-    userDecryptionOpts.hasMasterPassword = true;
-    await this.userDecryptionOptionsService.setUserDecryptionOptions(userDecryptionOpts);
-    await this.kdfConfigService.setKdfConfig(userId, kdfConfig);
-    await this.masterPasswordService.setMasterKey(masterKey, userId);
-    await this.keyService.setUserKey(protectedUserKey[0], userId);
-  }
-
-  private async handleResetPasswordAutoEnroll(
-    masterKeyHash: string,
-    orgId: string,
-    userId: UserId,
-  ) {
-    const organizationKeys = await this.organizationApiService.getKeys(orgId);
-
-    if (organizationKeys == null) {
-      throw new Error(this.i18nService.t("resetPasswordOrgKeysError"));
-    }
-
-    const publicKey = Utils.fromB64ToArray(organizationKeys.publicKey);
-
-    // RSA Encrypt user key with organization public key
-    const userKey = await firstValueFrom(this.keyService.userKey$(userId));
-
-    if (userKey == null) {
-      throw new Error("userKey not found. Could not handle reset password auto enroll.");
-    }
-
-    const encryptedUserKey = await this.encryptService.encapsulateKeyUnsigned(userKey, publicKey);
-
-    const resetRequest = new OrganizationUserResetPasswordEnrollmentRequest();
-    resetRequest.masterPasswordHash = masterKeyHash;
-    resetRequest.resetPasswordKey = encryptedUserKey.encryptedString;
-
-    await this.organizationUserApiService.putOrganizationUserResetPasswordEnrollment(
-      orgId,
-      userId,
-      resetRequest,
-    );
-  }
-}
diff --git a/libs/auth/src/angular/set-password-jit/set-password-jit.component.html b/libs/auth/src/angular/set-password-jit/set-password-jit.component.html
deleted file mode 100644
index 797f18732cb..00000000000
--- a/libs/auth/src/angular/set-password-jit/set-password-jit.component.html
+++ /dev/null
@@ -1,24 +0,0 @@
-<ng-container *ngIf="syncLoading">
-  <i class="bwi bwi-spinner bwi-spin tw-mr-2" title="{{ 'loading' | i18n }}" aria-hidden="true"></i>
-  {{ "loading" | i18n }}
-</ng-container>
-
-<ng-container *ngIf="!syncLoading">
-  <app-callout
-    type="warning"
-    title="{{ 'resetPasswordPolicyAutoEnroll' | i18n }}"
-    *ngIf="resetPasswordAutoEnroll"
-  >
-    {{ "resetPasswordAutoEnrollInviteWarning" | i18n }}
-  </app-callout>
-
-  <auth-input-password
-    [flow]="inputPasswordFlow"
-    [email]="email"
-    [userId]="userId"
-    [loading]="submitting"
-    [masterPasswordPolicyOptions]="masterPasswordPolicyOptions"
-    [primaryButtonText]="{ key: 'createAccount' }"
-    (onPasswordFormSubmit)="handlePasswordFormSubmit($event)"
-  ></auth-input-password>
-</ng-container>
diff --git a/libs/auth/src/angular/set-password-jit/set-password-jit.component.ts b/libs/auth/src/angular/set-password-jit/set-password-jit.component.ts
deleted file mode 100644
index 1a2674cd3d4..00000000000
--- a/libs/auth/src/angular/set-password-jit/set-password-jit.component.ts
+++ /dev/null
@@ -1,135 +0,0 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
-import { CommonModule } from "@angular/common";
-import { Component, OnInit } from "@angular/core";
-import { ActivatedRoute, Router } from "@angular/router";
-import { firstValueFrom } from "rxjs";
-
-import { JslibModule } from "@bitwarden/angular/jslib.module";
-import { OrganizationApiServiceAbstraction } from "@bitwarden/common/admin-console/abstractions/organization/organization-api.service.abstraction";
-import { PolicyApiServiceAbstraction } from "@bitwarden/common/admin-console/abstractions/policy/policy-api.service.abstraction";
-import { MasterPasswordPolicyOptions } from "@bitwarden/common/admin-console/models/domain/master-password-policy-options";
-import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
-import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { ValidationService } from "@bitwarden/common/platform/abstractions/validation.service";
-import { UserId } from "@bitwarden/common/types/guid";
-import { SyncService } from "@bitwarden/common/vault/abstractions/sync/sync.service.abstraction";
-
-// FIXME: remove `src` and fix import
-// eslint-disable-next-line no-restricted-imports
-import { ToastService } from "../../../../components/src/toast";
-import {
-  InputPasswordComponent,
-  InputPasswordFlow,
-} from "../input-password/input-password.component";
-import { PasswordInputResult } from "../input-password/password-input-result";
-
-import {
-  SetPasswordCredentials,
-  SetPasswordJitService,
-} from "./set-password-jit.service.abstraction";
-
-@Component({
-  selector: "auth-set-password-jit",
-  templateUrl: "set-password-jit.component.html",
-  imports: [CommonModule, InputPasswordComponent, JslibModule],
-})
-export class SetPasswordJitComponent implements OnInit {
-  protected inputPasswordFlow = InputPasswordFlow.SetInitialPasswordAuthedUser;
-  protected email: string;
-  protected masterPasswordPolicyOptions: MasterPasswordPolicyOptions;
-  protected orgId: string;
-  protected orgSsoIdentifier: string;
-  protected resetPasswordAutoEnroll: boolean;
-  protected submitting = false;
-  protected syncLoading = true;
-  protected userId: UserId;
-
-  constructor(
-    private accountService: AccountService,
-    private activatedRoute: ActivatedRoute,
-    private i18nService: I18nService,
-    private organizationApiService: OrganizationApiServiceAbstraction,
-    private policyApiService: PolicyApiServiceAbstraction,
-    private router: Router,
-    private setPasswordJitService: SetPasswordJitService,
-    private syncService: SyncService,
-    private toastService: ToastService,
-    private validationService: ValidationService,
-  ) {}
-
-  async ngOnInit() {
-    const activeAccount = await firstValueFrom(this.accountService.activeAccount$);
-    this.userId = activeAccount?.id;
-    this.email = activeAccount?.email;
-
-    await this.syncService.fullSync(true);
-    this.syncLoading = false;
-
-    await this.handleQueryParams();
-  }
-
-  private async handleQueryParams() {
-    const qParams = await firstValueFrom(this.activatedRoute.queryParams);
-
-    if (qParams.identifier != null) {
-      try {
-        this.orgSsoIdentifier = qParams.identifier;
-
-        const autoEnrollStatus = await this.organizationApiService.getAutoEnrollStatus(
-          this.orgSsoIdentifier,
-        );
-        this.orgId = autoEnrollStatus.id;
-        this.resetPasswordAutoEnroll = autoEnrollStatus.resetPasswordEnabled;
-        this.masterPasswordPolicyOptions =
-          await this.policyApiService.getMasterPasswordPolicyOptsForOrgUser(autoEnrollStatus.id);
-      } catch {
-        this.toastService.showToast({
-          variant: "error",
-          title: null,
-          message: this.i18nService.t("errorOccurred"),
-        });
-      }
-    }
-  }
-
-  protected async handlePasswordFormSubmit(passwordInputResult: PasswordInputResult) {
-    this.submitting = true;
-
-    const credentials: SetPasswordCredentials = {
-      newMasterKey: passwordInputResult.newMasterKey,
-      newServerMasterKeyHash: passwordInputResult.newServerMasterKeyHash,
-      newLocalMasterKeyHash: passwordInputResult.newLocalMasterKeyHash,
-      newPasswordHint: passwordInputResult.newPasswordHint,
-      kdfConfig: passwordInputResult.kdfConfig,
-      orgSsoIdentifier: this.orgSsoIdentifier,
-      orgId: this.orgId,
-      resetPasswordAutoEnroll: this.resetPasswordAutoEnroll,
-      userId: this.userId,
-    };
-
-    try {
-      await this.setPasswordJitService.setPassword(credentials);
-    } catch (e) {
-      this.validationService.showError(e);
-      this.submitting = false;
-      return;
-    }
-
-    this.toastService.showToast({
-      variant: "success",
-      title: null,
-      message: this.i18nService.t("accountSuccessfullyCreated"),
-    });
-
-    this.toastService.showToast({
-      variant: "success",
-      title: null,
-      message: this.i18nService.t("inviteAccepted"),
-    });
-
-    this.submitting = false;
-
-    await this.router.navigate(["vault"]);
-  }
-}
diff --git a/libs/auth/src/angular/set-password-jit/set-password-jit.service.abstraction.ts b/libs/auth/src/angular/set-password-jit/set-password-jit.service.abstraction.ts
deleted file mode 100644
index 92db88868a2..00000000000
--- a/libs/auth/src/angular/set-password-jit/set-password-jit.service.abstraction.ts
+++ /dev/null
@@ -1,33 +0,0 @@
-import { UserId } from "@bitwarden/common/types/guid";
-import { MasterKey } from "@bitwarden/common/types/key";
-import { KdfConfig } from "@bitwarden/key-management";
-
-export interface SetPasswordCredentials {
-  newMasterKey: MasterKey;
-  newServerMasterKeyHash: string;
-  newLocalMasterKeyHash: string;
-  newPasswordHint: string;
-  kdfConfig: KdfConfig;
-  orgSsoIdentifier: string;
-  orgId: string;
-  resetPasswordAutoEnroll: boolean;
-  userId: UserId;
-}
-
-/**
- * This service handles setting a password for a "just-in-time" provisioned user.
- *
- * A "just-in-time" (JIT) provisioned user is a user who does not have a registered account at the
- * time they first click "Login with SSO". Once they click "Login with SSO" we register the account on
- * the fly ("just-in-time").
- */
-export abstract class SetPasswordJitService {
-  /**
-   * Sets the password for a JIT provisioned user.
-   *
-   * @param credentials An object of the credentials needed to set the password for a JIT provisioned user
-   * @throws If any property on the `credentials` object is null or undefined, or if a protectedUserKey
-   *         or newKeyPair could not be created.
-   */
-  abstract setPassword(credentials: SetPasswordCredentials): Promise<void>;
-}
diff --git a/libs/auth/src/angular/sso/sso.component.ts b/libs/auth/src/angular/sso/sso.component.ts
index 07b59ac661f..8acd6865b70 100644
--- a/libs/auth/src/angular/sso/sso.component.ts
+++ b/libs/auth/src/angular/sso/sso.component.ts
@@ -23,12 +23,10 @@ import { AuthResult } from "@bitwarden/common/auth/models/domain/auth-result";
 import { ForceSetPasswordReason } from "@bitwarden/common/auth/models/domain/force-set-password-reason";
 import { SsoPreValidateResponse } from "@bitwarden/common/auth/models/response/sso-pre-validate.response";
 import { ClientType, HttpStatusCode } from "@bitwarden/common/enums";
-import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
 import { CryptoFunctionService } from "@bitwarden/common/key-management/crypto/abstractions/crypto-function.service";
 import { InternalMasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
 import { ErrorResponse } from "@bitwarden/common/models/response/error.response";
 import { ListResponse } from "@bitwarden/common/models/response/list.response";
-import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { EnvironmentService } from "@bitwarden/common/platform/abstractions/environment.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
@@ -118,7 +116,6 @@ export class SsoComponent implements OnInit {
     private toastService: ToastService,
     private ssoComponentService: SsoComponentService,
     private loginSuccessHandlerService: LoginSuccessHandlerService,
-    private configService: ConfigService,
   ) {
     environmentService.environment$.pipe(takeUntilDestroyed()).subscribe((env) => {
       this.redirectUri = env.getWebVaultUrl() + "/sso-connector.html";
@@ -534,11 +531,7 @@ export class SsoComponent implements OnInit {
   }
 
   private async handleChangePasswordRequired(orgIdentifier: string) {
-    const isSetInitialPasswordRefactorFlagOn = await this.configService.getFeatureFlag(
-      FeatureFlag.PM16117_SetInitialPasswordRefactor,
-    );
-    const route = isSetInitialPasswordRefactorFlagOn ? "set-initial-password" : "set-password-jit";
-
+    const route = "set-initial-password";
     await this.router.navigate([route], {
       queryParams: {
         identifier: orgIdentifier,
diff --git a/libs/auth/src/angular/two-factor-auth/two-factor-auth.component.spec.ts b/libs/auth/src/angular/two-factor-auth/two-factor-auth.component.spec.ts
index e7678102360..62271feee59 100644
--- a/libs/auth/src/angular/two-factor-auth/two-factor-auth.component.spec.ts
+++ b/libs/auth/src/angular/two-factor-auth/two-factor-auth.component.spec.ts
@@ -2,7 +2,7 @@ import { Component } from "@angular/core";
 import { ComponentFixture, TestBed } from "@angular/core/testing";
 import { ActivatedRoute, Router, convertToParamMap } from "@angular/router";
 import { mock, MockProxy } from "jest-mock-extended";
-import { BehaviorSubject } from "rxjs";
+import { BehaviorSubject, of } from "rxjs";
 
 import { WINDOW } from "@bitwarden/angular/services/injection-tokens";
 import {
@@ -24,8 +24,10 @@ import { AuthenticationType } from "@bitwarden/common/auth/enums/authentication-
 import { AuthResult } from "@bitwarden/common/auth/models/domain/auth-result";
 import { ForceSetPasswordReason } from "@bitwarden/common/auth/models/domain/force-set-password-reason";
 import { TokenTwoFactorRequest } from "@bitwarden/common/auth/models/request/identity-token/token-two-factor.request";
-import { InternalMasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
-import { FakeMasterPasswordService } from "@bitwarden/common/key-management/master-password/services/fake-master-password.service";
+import {
+  InternalMasterPasswordServiceAbstraction,
+  MasterPasswordServiceAbstraction,
+} from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
 import { AppIdService } from "@bitwarden/common/platform/abstractions/app-id.service";
 import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { EnvironmentService } from "@bitwarden/common/platform/abstractions/environment.service";
@@ -66,7 +68,7 @@ describe("TwoFactorAuthComponent", () => {
   let mockLoginEmailService: MockProxy<LoginEmailServiceAbstraction>;
   let mockUserDecryptionOptionsService: MockProxy<UserDecryptionOptionsServiceAbstraction>;
   let mockSsoLoginService: MockProxy<SsoLoginServiceAbstraction>;
-  let mockMasterPasswordService: FakeMasterPasswordService;
+  let mockMasterPasswordService: MockProxy<InternalMasterPasswordServiceAbstraction>;
   let mockAccountService: FakeAccountService;
   let mockDialogService: MockProxy<DialogService>;
   let mockToastService: MockProxy<ToastService>;
@@ -107,7 +109,7 @@ describe("TwoFactorAuthComponent", () => {
     mockUserDecryptionOptionsService = mock<UserDecryptionOptionsServiceAbstraction>();
     mockSsoLoginService = mock<SsoLoginServiceAbstraction>();
     mockAccountService = mockAccountServiceWith(userId);
-    mockMasterPasswordService = new FakeMasterPasswordService();
+    mockMasterPasswordService = mock<InternalMasterPasswordServiceAbstraction>();
     mockDialogService = mock<DialogService>();
     mockToastService = mock<ToastService>();
     mockTwoFactorAuthCompService = mock<TwoFactorAuthComponentService>();
@@ -212,6 +214,7 @@ describe("TwoFactorAuthComponent", () => {
         },
         { provide: AuthService, useValue: mockAuthService },
         { provide: ConfigService, useValue: mockConfigService },
+        { provide: MasterPasswordServiceAbstraction, useValue: mockMasterPasswordService },
       ],
     });
 
@@ -267,54 +270,16 @@ describe("TwoFactorAuthComponent", () => {
             selectedUserDecryptionOptions.next(mockUserDecryptionOpts.noMasterPassword);
           });
 
-          describe("Given the PM16117_SetInitialPasswordRefactor feature flag is ON", () => {
-            it("navigates to the /set-initial-password route when user doesn't have a MP and key connector isn't enabled", async () => {
-              // Arrange
-              mockConfigService.getFeatureFlag.mockResolvedValue(true);
-
-              // Act
-              await component.submit("testToken");
-
-              // Assert
-              expect(mockRouter.navigate).toHaveBeenCalledTimes(1);
-              expect(mockRouter.navigate).toHaveBeenCalledWith(["set-initial-password"], {
-                queryParams: {
-                  identifier: component.orgSsoIdentifier,
-                },
-              });
-            });
-          });
-
-          describe("Given the PM16117_SetInitialPasswordRefactor feature flag is OFF", () => {
-            it("navigates to the /set-password route when user doesn't have a MP and key connector isn't enabled", async () => {
-              // Arrange
-              mockConfigService.getFeatureFlag.mockResolvedValue(false);
-
-              // Act
-              await component.submit("testToken");
-
-              // Assert
-              expect(mockRouter.navigate).toHaveBeenCalledTimes(1);
-              expect(mockRouter.navigate).toHaveBeenCalledWith(["set-password"], {
-                queryParams: {
-                  identifier: component.orgSsoIdentifier,
-                },
-              });
-            });
-          });
-        });
-
-        describe("Given the PM16117_SetInitialPasswordRefactor feature flag is ON", () => {
-          it("does not navigate to the /set-initial-password route when the user has key connector even if user has no master password", async () => {
+          it("navigates to the /set-initial-password route when user doesn't have a MP and key connector isn't enabled", async () => {
+            // Arrange
             mockConfigService.getFeatureFlag.mockResolvedValue(true);
 
-            selectedUserDecryptionOptions.next(
-              mockUserDecryptionOpts.noMasterPasswordWithKeyConnector,
-            );
+            // Act
+            await component.submit("testToken");
 
-            await component.submit(token, remember);
-
-            expect(mockRouter.navigate).not.toHaveBeenCalledWith(["set-initial-password"], {
+            // Assert
+            expect(mockRouter.navigate).toHaveBeenCalledTimes(1);
+            expect(mockRouter.navigate).toHaveBeenCalledWith(["set-initial-password"], {
               queryParams: {
                 identifier: component.orgSsoIdentifier,
               },
@@ -322,21 +287,19 @@ describe("TwoFactorAuthComponent", () => {
           });
         });
 
-        describe("Given the PM16117_SetInitialPasswordRefactor feature flag is OFF", () => {
-          it("does not navigate to the /set-password route when the user has key connector even if user has no master password", async () => {
-            mockConfigService.getFeatureFlag.mockResolvedValue(false);
+        it("does not navigate to the /set-initial-password route when the user has key connector even if user has no master password", async () => {
+          mockConfigService.getFeatureFlag.mockResolvedValue(true);
 
-            selectedUserDecryptionOptions.next(
-              mockUserDecryptionOpts.noMasterPasswordWithKeyConnector,
-            );
+          selectedUserDecryptionOptions.next(
+            mockUserDecryptionOpts.noMasterPasswordWithKeyConnector,
+          );
 
-            await component.submit(token, remember);
+          await component.submit(token, remember);
 
-            expect(mockRouter.navigate).not.toHaveBeenCalledWith(["set-password"], {
-              queryParams: {
-                identifier: component.orgSsoIdentifier,
-              },
-            });
+          expect(mockRouter.navigate).not.toHaveBeenCalledWith(["set-initial-password"], {
+            queryParams: {
+              identifier: component.orgSsoIdentifier,
+            },
           });
         });
       });
@@ -344,6 +307,9 @@ describe("TwoFactorAuthComponent", () => {
       it("navigates to the component's defined success route (vault is default) when the login is successful", async () => {
         mockLoginStrategyService.logInTwoFactor.mockResolvedValue(new AuthResult());
         mockAuthService.activeAccountStatus$ = new BehaviorSubject(AuthenticationStatus.Unlocked);
+        mockMasterPasswordService.forceSetPasswordReason$.mockReturnValue(
+          of(ForceSetPasswordReason.None),
+        );
 
         // Act
         await component.submit("testToken");
@@ -409,7 +375,7 @@ describe("TwoFactorAuthComponent", () => {
             await component.submit(token, remember);
 
             // Assert
-            expect(mockMasterPasswordService.mock.setForceSetPasswordReason).toHaveBeenCalledWith(
+            expect(mockMasterPasswordService.setForceSetPasswordReason).toHaveBeenCalledWith(
               ForceSetPasswordReason.TdeUserWithoutPasswordHasPasswordResetPermission,
               userId,
             );
diff --git a/libs/auth/src/angular/two-factor-auth/two-factor-auth.component.ts b/libs/auth/src/angular/two-factor-auth/two-factor-auth.component.ts
index 50cc2d88d6a..07746cf6479 100644
--- a/libs/auth/src/angular/two-factor-auth/two-factor-auth.component.ts
+++ b/libs/auth/src/angular/two-factor-auth/two-factor-auth.component.ts
@@ -17,7 +17,6 @@ import { JslibModule } from "@bitwarden/angular/jslib.module";
 import { WINDOW } from "@bitwarden/angular/services/injection-tokens";
 import {
   LoginStrategyServiceAbstraction,
-  LoginEmailServiceAbstraction,
   UserDecryptionOptionsServiceAbstraction,
   TrustedDeviceUserDecryptionOption,
   UserDecryptionOptions,
@@ -32,9 +31,7 @@ import { TwoFactorProviderType } from "@bitwarden/common/auth/enums/two-factor-p
 import { AuthResult } from "@bitwarden/common/auth/models/domain/auth-result";
 import { ForceSetPasswordReason } from "@bitwarden/common/auth/models/domain/force-set-password-reason";
 import { TokenTwoFactorRequest } from "@bitwarden/common/auth/models/request/identity-token/token-two-factor.request";
-import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
 import { InternalMasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
-import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { EnvironmentService } from "@bitwarden/common/platform/abstractions/environment.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
@@ -156,7 +153,6 @@ export class TwoFactorAuthComponent implements OnInit, OnDestroy {
     private activatedRoute: ActivatedRoute,
     private logService: LogService,
     private twoFactorService: TwoFactorService,
-    private loginEmailService: LoginEmailServiceAbstraction,
     private userDecryptionOptionsService: UserDecryptionOptionsServiceAbstraction,
     private ssoLoginService: SsoLoginServiceAbstraction,
     private masterPasswordService: InternalMasterPasswordServiceAbstraction,
@@ -171,7 +167,6 @@ export class TwoFactorAuthComponent implements OnInit, OnDestroy {
     private loginSuccessHandlerService: LoginSuccessHandlerService,
     private twoFactorAuthComponentCacheService: TwoFactorAuthComponentCacheService,
     private authService: AuthService,
-    private configService: ConfigService,
   ) {}
 
   async ngOnInit() {
@@ -507,19 +502,15 @@ export class TwoFactorAuthComponent implements OnInit, OnDestroy {
     }
 
     // TODO: PM-22663 use the new service to handle routing.
-    if (
-      await this.configService.getFeatureFlag(FeatureFlag.PM16117_ChangeExistingPasswordRefactor)
-    ) {
-      const forceSetPasswordReason = await firstValueFrom(
-        this.masterPasswordService.forceSetPasswordReason$(userId),
-      );
+    const forceSetPasswordReason = await firstValueFrom(
+      this.masterPasswordService.forceSetPasswordReason$(userId),
+    );
 
-      if (
-        forceSetPasswordReason === ForceSetPasswordReason.WeakMasterPassword ||
-        forceSetPasswordReason === ForceSetPasswordReason.AdminForcePasswordReset
-      ) {
-        return "change-password";
-      }
+    if (
+      forceSetPasswordReason === ForceSetPasswordReason.WeakMasterPassword ||
+      forceSetPasswordReason === ForceSetPasswordReason.AdminForcePasswordReset
+    ) {
+      return "change-password";
     }
 
     return "vault";
@@ -575,11 +566,7 @@ export class TwoFactorAuthComponent implements OnInit, OnDestroy {
   }
 
   private async handleChangePasswordRequired(orgIdentifier: string | undefined) {
-    const isSetInitialPasswordRefactorFlagOn = await this.configService.getFeatureFlag(
-      FeatureFlag.PM16117_SetInitialPasswordRefactor,
-    );
-    const route = isSetInitialPasswordRefactorFlagOn ? "set-initial-password" : "set-password";
-
+    const route = "set-initial-password";
     await this.router.navigate([route], {
       queryParams: {
         identifier: orgIdentifier,
diff --git a/libs/auth/src/common/login-strategies/password-login.strategy.spec.ts b/libs/auth/src/common/login-strategies/password-login.strategy.spec.ts
index 61a06f94b02..8e3867d1b36 100644
--- a/libs/auth/src/common/login-strategies/password-login.strategy.spec.ts
+++ b/libs/auth/src/common/login-strategies/password-login.strategy.spec.ts
@@ -12,7 +12,6 @@ import { IdentityTokenResponse } from "@bitwarden/common/auth/models/response/id
 import { IdentityTwoFactorResponse } from "@bitwarden/common/auth/models/response/identity-two-factor.response";
 import { MasterPasswordPolicyResponse } from "@bitwarden/common/auth/models/response/master-password-policy.response";
 import { BillingAccountProfileStateService } from "@bitwarden/common/billing/abstractions/account/billing-account-profile-state.service";
-import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
 import { FakeMasterPasswordService } from "@bitwarden/common/key-management/master-password/services/fake-master-password.service";
 import {
@@ -221,7 +220,10 @@ describe("PasswordLoginStrategy", () => {
 
     await passwordLoginStrategy.logIn(credentials);
 
-    expect(policyService.evaluateMasterPassword).not.toHaveBeenCalled();
+    expect(masterPasswordService.mock.setForceSetPasswordReason).not.toHaveBeenCalledWith(
+      ForceSetPasswordReason.WeakMasterPassword,
+      userId,
+    );
   });
 
   it("does not force the user to update their master password when it meets requirements", async () => {
@@ -230,7 +232,10 @@ describe("PasswordLoginStrategy", () => {
 
     await passwordLoginStrategy.logIn(credentials);
 
-    expect(policyService.evaluateMasterPassword).toHaveBeenCalled();
+    expect(masterPasswordService.mock.setForceSetPasswordReason).not.toHaveBeenCalledWith(
+      ForceSetPasswordReason.WeakMasterPassword,
+      userId,
+    );
   });
 
   it("when given master password policies as part of the login credentials from an org invite, it combines them with the token response policies to evaluate the user's password as weak", async () => {
@@ -242,12 +247,6 @@ describe("PasswordLoginStrategy", () => {
     policyService.evaluateMasterPassword.mockReturnValue(false);
     tokenService.decodeAccessToken.mockResolvedValue({ sub: userId });
 
-    jest
-      .spyOn(configService, "getFeatureFlag")
-      .mockImplementation((flag: FeatureFlag) =>
-        Promise.resolve(flag === FeatureFlag.PM16117_ChangeExistingPasswordRefactor),
-      );
-
     credentials.masterPasswordPoliciesFromOrgInvite = Object.assign(
       new MasterPasswordPolicyOptions(),
       {
@@ -296,9 +295,16 @@ describe("PasswordLoginStrategy", () => {
 
   it("forces the user to update their master password on successful login when it does not meet master password policy requirements", async () => {
     passwordStrengthService.getPasswordStrength.mockReturnValue({ score: 0 } as any);
-    policyService.evaluateMasterPassword.mockReturnValue(false);
     tokenService.decodeAccessToken.mockResolvedValue({ sub: userId });
 
+    const combinedMasterPasswordPolicyOptions = Object.assign(new MasterPasswordPolicyOptions(), {
+      enforceOnLogin: true,
+    });
+    policyService.combineMasterPasswordPolicyOptions.mockReturnValue(
+      combinedMasterPasswordPolicyOptions,
+    );
+    policyService.evaluateMasterPassword.mockReturnValue(false);
+
     await passwordLoginStrategy.logIn(credentials);
 
     expect(policyService.evaluateMasterPassword).toHaveBeenCalled();
@@ -330,9 +336,16 @@ describe("PasswordLoginStrategy", () => {
 
   it("forces the user to update their master password on successful 2FA login when it does not meet master password policy requirements", async () => {
     passwordStrengthService.getPasswordStrength.mockReturnValue({ score: 0 } as any);
-    policyService.evaluateMasterPassword.mockReturnValue(false);
     tokenService.decodeAccessToken.mockResolvedValue({ sub: userId });
 
+    const combinedMasterPasswordPolicyOptions = Object.assign(new MasterPasswordPolicyOptions(), {
+      enforceOnLogin: true,
+    });
+    policyService.combineMasterPasswordPolicyOptions.mockReturnValue(
+      combinedMasterPasswordPolicyOptions,
+    );
+    policyService.evaluateMasterPassword.mockReturnValue(false);
+
     const token2FAResponse = new IdentityTwoFactorResponse({
       TwoFactorProviders: ["0"],
       TwoFactorProviders2: { 0: null },
diff --git a/libs/auth/src/common/login-strategies/password-login.strategy.ts b/libs/auth/src/common/login-strategies/password-login.strategy.ts
index cd3d5df1d5e..3482e73d5d7 100644
--- a/libs/auth/src/common/login-strategies/password-login.strategy.ts
+++ b/libs/auth/src/common/login-strategies/password-login.strategy.ts
@@ -12,7 +12,6 @@ import { TokenTwoFactorRequest } from "@bitwarden/common/auth/models/request/ide
 import { IdentityDeviceVerificationResponse } from "@bitwarden/common/auth/models/response/identity-device-verification.response";
 import { IdentityTokenResponse } from "@bitwarden/common/auth/models/response/identity-token.response";
 import { IdentityTwoFactorResponse } from "@bitwarden/common/auth/models/response/identity-two-factor.response";
-import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
 import { HashPurpose } from "@bitwarden/common/platform/enums";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 import { PasswordStrengthServiceAbstraction } from "@bitwarden/common/tools/password-strength";
@@ -171,35 +170,22 @@ export class PasswordLoginStrategy extends LoginStrategy {
       return;
     }
 
-    // The identity result can contain master password policies for the user's organizations
-    let masterPasswordPolicyOptions: MasterPasswordPolicyOptions | undefined;
+    // The identity result can contain master password policies for the user's organizations.
+    // Get the master password policy options from both the org invite and the identity response.
+    const masterPasswordPolicyOptions = this.policyService.combineMasterPasswordPolicyOptions(
+      credentials.masterPasswordPoliciesFromOrgInvite,
+      this.getMasterPasswordPolicyOptionsFromResponse(identityResponse),
+    );
 
+    // We deliberately do not check enforceOnLogin as existing users who are logging
+    // in after getting an org invite should always be forced to set a password that
+    // meets the org's policy. Org Invite -> Registration also works this way for
+    // new BW users as well.
     if (
-      await this.configService.getFeatureFlag(FeatureFlag.PM16117_ChangeExistingPasswordRefactor)
+      !credentials.masterPasswordPoliciesFromOrgInvite &&
+      !masterPasswordPolicyOptions?.enforceOnLogin
     ) {
-      // Get the master password policy options from both the org invite and the identity response.
-      masterPasswordPolicyOptions = this.policyService.combineMasterPasswordPolicyOptions(
-        credentials.masterPasswordPoliciesFromOrgInvite,
-        this.getMasterPasswordPolicyOptionsFromResponse(identityResponse),
-      );
-
-      // We deliberately do not check enforceOnLogin as existing users who are logging
-      // in after getting an org invite should always be forced to set a password that
-      // meets the org's policy. Org Invite -> Registration also works this way for
-      // new BW users as well.
-      if (
-        !credentials.masterPasswordPoliciesFromOrgInvite &&
-        !masterPasswordPolicyOptions?.enforceOnLogin
-      ) {
-        return;
-      }
-    } else {
-      masterPasswordPolicyOptions =
-        this.getMasterPasswordPolicyOptionsFromResponse(identityResponse);
-
-      if (!masterPasswordPolicyOptions?.enforceOnLogin) {
-        return;
-      }
+      return;
     }
 
     // If there is a policy active, evaluate the supplied password before its no longer in memory
diff --git a/libs/auth/src/common/login-strategies/sso-login.strategy.spec.ts b/libs/auth/src/common/login-strategies/sso-login.strategy.spec.ts
index 47a9d19f651..f057dc47c63 100644
--- a/libs/auth/src/common/login-strategies/sso-login.strategy.spec.ts
+++ b/libs/auth/src/common/login-strategies/sso-login.strategy.spec.ts
@@ -10,7 +10,6 @@ import { AuthRequestResponse } from "@bitwarden/common/auth/models/response/auth
 import { IdentityTokenResponse } from "@bitwarden/common/auth/models/response/identity-token.response";
 import { IUserDecryptionOptionsServerResponse } from "@bitwarden/common/auth/models/response/user-decryption-options/user-decryption-options.response";
 import { BillingAccountProfileStateService } from "@bitwarden/common/billing/abstractions/account/billing-account-profile-state.service";
-import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
 import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
 import { EncryptedString } from "@bitwarden/common/key-management/crypto/models/enc-string";
 import { DeviceTrustServiceAbstraction } from "@bitwarden/common/key-management/device-trust/abstractions/device-trust.service.abstraction";
@@ -83,6 +82,7 @@ describe("SsoLoginStrategy", () => {
   const ssoCodeVerifier = "SSO_CODE_VERIFIER";
   const ssoRedirectUrl = "SSO_REDIRECT_URL";
   const ssoOrgId = "SSO_ORG_ID";
+  const privateKey = "userKeyEncryptedPrivateKey";
 
   beforeEach(async () => {
     accountService = mockAccountServiceWith(userId);
@@ -114,6 +114,9 @@ describe("SsoLoginStrategy", () => {
     tokenService.decodeAccessToken.mockResolvedValue({
       sub: userId,
     });
+    keyService.userEncryptedPrivateKey$
+      .calledWith(userId)
+      .mockReturnValue(of(privateKey as EncryptedString));
 
     const mockVaultTimeoutAction = VaultTimeoutAction.Lock;
     const mockVaultTimeoutActionBSub = new BehaviorSubject<VaultTimeoutAction>(
@@ -163,6 +166,7 @@ describe("SsoLoginStrategy", () => {
 
   it("sends SSO information to server", async () => {
     apiService.postIdentityToken.mockResolvedValue(identityTokenResponseFactory());
+    keyService.hasUserKey.mockResolvedValue(true);
 
     await ssoLoginStrategy.logIn(credentials);
 
@@ -185,6 +189,7 @@ describe("SsoLoginStrategy", () => {
   it("does not set keys for new SSO user flow", async () => {
     const tokenResponse = identityTokenResponseFactory();
     tokenResponse.key = null;
+    tokenResponse.privateKey = null;
     apiService.postIdentityToken.mockResolvedValue(tokenResponse);
 
     await ssoLoginStrategy.logIn(credentials);
@@ -210,42 +215,28 @@ describe("SsoLoginStrategy", () => {
     );
   });
 
-  describe("given the PM16117_SetInitialPasswordRefactor feature flag is ON", () => {
-    beforeEach(() => {
-      configService.getFeatureFlag.mockImplementation(async (flag) => {
-        if (flag === FeatureFlag.PM16117_SetInitialPasswordRefactor) {
-          return true;
-        }
-        return false;
-      });
-    });
+  describe("given the user does not have the `trustedDeviceOption`, does not have a master password, is not using key connector, does not have a user key, but they DO have a `userKeyEncryptedPrivateKey`", () => {
+    it("should set the forceSetPasswordReason to TdeOffboardingUntrustedDevice", async () => {
+      // Arrange
+      const mockUserDecryptionOptions: IUserDecryptionOptionsServerResponse = {
+        HasMasterPassword: false,
+        TrustedDeviceOption: null,
+        KeyConnectorOption: null,
+      };
+      const tokenResponse = identityTokenResponseFactory(null, mockUserDecryptionOptions);
+      apiService.postIdentityToken.mockResolvedValue(tokenResponse);
 
-    describe("given the user does not have the `trustedDeviceOption`, does not have a master password, is not using key connector, does not have a user key, but they DO have a `userKeyEncryptedPrivateKey`", () => {
-      it("should set the forceSetPasswordReason to TdeOffboardingUntrustedDevice", async () => {
-        // Arrange
-        const mockUserDecryptionOptions: IUserDecryptionOptionsServerResponse = {
-          HasMasterPassword: false,
-          TrustedDeviceOption: null,
-          KeyConnectorOption: null,
-        };
-        const tokenResponse = identityTokenResponseFactory(null, mockUserDecryptionOptions);
-        apiService.postIdentityToken.mockResolvedValue(tokenResponse);
+      keyService.hasUserKey.mockResolvedValue(false);
 
-        keyService.userEncryptedPrivateKey$.mockReturnValue(
-          of("userKeyEncryptedPrivateKey" as EncryptedString),
-        );
-        keyService.hasUserKey.mockResolvedValue(false);
+      // Act
+      await ssoLoginStrategy.logIn(credentials);
 
-        // Act
-        await ssoLoginStrategy.logIn(credentials);
-
-        // Assert
-        expect(masterPasswordService.mock.setForceSetPasswordReason).toHaveBeenCalledTimes(1);
-        expect(masterPasswordService.mock.setForceSetPasswordReason).toHaveBeenCalledWith(
-          ForceSetPasswordReason.TdeOffboardingUntrustedDevice,
-          userId,
-        );
-      });
+      // Assert
+      expect(masterPasswordService.mock.setForceSetPasswordReason).toHaveBeenCalledTimes(1);
+      expect(masterPasswordService.mock.setForceSetPasswordReason).toHaveBeenCalledWith(
+        ForceSetPasswordReason.TdeOffboardingUntrustedDevice,
+        userId,
+      );
     });
   });
 
diff --git a/libs/auth/src/common/login-strategies/sso-login.strategy.ts b/libs/auth/src/common/login-strategies/sso-login.strategy.ts
index 8ab84f0968a..6f1231b3559 100644
--- a/libs/auth/src/common/login-strategies/sso-login.strategy.ts
+++ b/libs/auth/src/common/login-strategies/sso-login.strategy.ts
@@ -9,7 +9,6 @@ import { SsoTokenRequest } from "@bitwarden/common/auth/models/request/identity-
 import { AuthRequestResponse } from "@bitwarden/common/auth/models/response/auth-request.response";
 import { IdentityTokenResponse } from "@bitwarden/common/auth/models/response/identity-token.response";
 import { HttpStatusCode } from "@bitwarden/common/enums";
-import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
 import { DeviceTrustServiceAbstraction } from "@bitwarden/common/key-management/device-trust/abstractions/device-trust.service.abstraction";
 import { KeyConnectorService } from "@bitwarden/common/key-management/key-connector/abstractions/key-connector.service";
 import { ErrorResponse } from "@bitwarden/common/models/response/error.response";
@@ -344,38 +343,18 @@ export class SsoLoginStrategy extends LoginStrategy {
     tokenResponse: IdentityTokenResponse,
     userId: UserId,
   ): Promise<void> {
-    const isSetInitialPasswordFlagOn = await this.configService.getFeatureFlag(
-      FeatureFlag.PM16117_SetInitialPasswordRefactor,
-    );
-
-    if (isSetInitialPasswordFlagOn) {
-      if (tokenResponse.hasMasterKeyEncryptedUserKey()) {
-        // User has masterKeyEncryptedUserKey, so set the userKeyEncryptedPrivateKey
-        // Note: new JIT provisioned SSO users will not yet have a user asymmetric key pair
-        // and so we don't want them falling into the createKeyPairForOldAccount flow
-        await this.keyService.setPrivateKey(
-          tokenResponse.privateKey ?? (await this.createKeyPairForOldAccount(userId)),
-          userId,
-        );
-      } else if (tokenResponse.privateKey) {
-        // User doesn't have masterKeyEncryptedUserKey but they do have a userKeyEncryptedPrivateKey
-        // This is just existing TDE users or a TDE offboarder on an untrusted device
-        await this.keyService.setPrivateKey(tokenResponse.privateKey, userId);
-      }
-      // else {
-      //    User could be new JIT provisioned SSO user in either a MP encryption org OR a TDE org.
-      //    In either case, the user doesn't yet have a user asymmetric key pair, a user key, or a master key + master key encrypted user key.
-      // }
-    } else {
-      // A user that does not yet have a masterKeyEncryptedUserKey set is a new SSO user
-      const newSsoUser = tokenResponse.key == null;
-
-      if (!newSsoUser) {
-        await this.keyService.setPrivateKey(
-          tokenResponse.privateKey ?? (await this.createKeyPairForOldAccount(userId)),
-          userId,
-        );
-      }
+    if (tokenResponse.hasMasterKeyEncryptedUserKey()) {
+      // User has masterKeyEncryptedUserKey, so set the userKeyEncryptedPrivateKey
+      // Note: new JIT provisioned SSO users will not yet have a user asymmetric key pair
+      // and so we don't want them falling into the createKeyPairForOldAccount flow
+      await this.keyService.setPrivateKey(
+        tokenResponse.privateKey ?? (await this.createKeyPairForOldAccount(userId)),
+        userId,
+      );
+    } else if (tokenResponse.privateKey) {
+      // User doesn't have masterKeyEncryptedUserKey but they do have a userKeyEncryptedPrivateKey
+      // This is just existing TDE users or a TDE offboarder on an untrusted device
+      await this.keyService.setPrivateKey(tokenResponse.privateKey, userId);
     }
   }
 
@@ -431,30 +410,25 @@ export class SsoLoginStrategy extends LoginStrategy {
     // - UserDecryptionOptions.UsesKeyConnector is undefined. -- they aren't using key connector
     // - UserKey is not set after successful login -- because automatic decryption is not available
     // - userKeyEncryptedPrivateKey is set after successful login -- this is the key differentiator between a TDE org user logging into an untrusted device and MP encryption JIT provisioned user logging in for the first time.
-    const isSetInitialPasswordFlagOn = await this.configService.getFeatureFlag(
-      FeatureFlag.PM16117_SetInitialPasswordRefactor,
+    //     Why is that the case?  Because we set the userKeyEncryptedPrivateKey when we create the userKey, and this is serving as a proxy to tell us that the userKey has been created already (when enrolling in TDE).
+    const hasUserKeyEncryptedPrivateKey = await firstValueFrom(
+      this.keyService.userEncryptedPrivateKey$(userId),
     );
+    const hasUserKey = await this.keyService.hasUserKey(userId);
 
-    if (isSetInitialPasswordFlagOn) {
-      const hasUserKeyEncryptedPrivateKey = await firstValueFrom(
-        this.keyService.userEncryptedPrivateKey$(userId),
+    // TODO: PM-23491 we should explore consolidating this logic into a flag on the server. It could be set when an org is switched from TDE to MP encryption for each org user.
+    if (
+      !userDecryptionOptions.trustedDeviceOption &&
+      !userDecryptionOptions.hasMasterPassword &&
+      !userDecryptionOptions.keyConnectorOption?.keyConnectorUrl &&
+      hasUserKeyEncryptedPrivateKey &&
+      !hasUserKey
+    ) {
+      await this.masterPasswordService.setForceSetPasswordReason(
+        ForceSetPasswordReason.TdeOffboardingUntrustedDevice,
+        userId,
       );
-      const hasUserKey = await this.keyService.hasUserKey(userId);
-
-      // TODO: PM-23491 we should explore consolidating this logic into a flag on the server. It could be set when an org is switched from TDE to MP encryption for each org user.
-      if (
-        !userDecryptionOptions.trustedDeviceOption &&
-        !userDecryptionOptions.hasMasterPassword &&
-        !userDecryptionOptions.keyConnectorOption?.keyConnectorUrl &&
-        hasUserKeyEncryptedPrivateKey &&
-        !hasUserKey
-      ) {
-        await this.masterPasswordService.setForceSetPasswordReason(
-          ForceSetPasswordReason.TdeOffboardingUntrustedDevice,
-          userId,
-        );
-        return true;
-      }
+      return true;
     }
 
     // Check if user has permission to set password but hasn't yet
diff --git a/libs/common/src/admin-console/services/policy/default-policy.service.ts b/libs/common/src/admin-console/services/policy/default-policy.service.ts
index 798adf520f2..2d9518ee508 100644
--- a/libs/common/src/admin-console/services/policy/default-policy.service.ts
+++ b/libs/common/src/admin-console/services/policy/default-policy.service.ts
@@ -89,8 +89,7 @@ export class DefaultPolicyService implements PolicyService {
     const policies$ = policies ? of(policies) : this.policies$(userId);
     return policies$.pipe(
       map((obsPolicies) => {
-        // TODO: replace with this.combinePoliciesIntoMasterPasswordPolicyOptions(obsPolicies)) once
-        // FeatureFlag.PM16117_ChangeExistingPasswordRefactor is removed.
+        // TODO ([PM-23777]): replace with this.combinePoliciesIntoMasterPasswordPolicyOptions(obsPolicies))
         let enforcedOptions: MasterPasswordPolicyOptions | undefined = undefined;
         const filteredPolicies =
           obsPolicies.filter((p) => p.type === PolicyType.MasterPassword) ?? [];
diff --git a/libs/common/src/enums/feature-flag.enum.ts b/libs/common/src/enums/feature-flag.enum.ts
index 33ded4a22c8..ad61cb421cd 100644
--- a/libs/common/src/enums/feature-flag.enum.ts
+++ b/libs/common/src/enums/feature-flag.enum.ts
@@ -14,8 +14,6 @@ export enum FeatureFlag {
   CreateDefaultLocation = "pm-19467-create-default-location",
 
   /* Auth */
-  PM16117_SetInitialPasswordRefactor = "pm-16117-set-initial-password-refactor",
-  PM16117_ChangeExistingPasswordRefactor = "pm-16117-change-existing-password-refactor",
   PM14938_BrowserExtensionLoginApproval = "pm-14938-browser-extension-login-approvals",
 
   /* Autofill */
@@ -107,8 +105,6 @@ export const DefaultFeatureFlagValue = {
   [FeatureFlag.PM22136_SdkCipherEncryption]: FALSE,
 
   /* Auth */
-  [FeatureFlag.PM16117_SetInitialPasswordRefactor]: FALSE,
-  [FeatureFlag.PM16117_ChangeExistingPasswordRefactor]: FALSE,
   [FeatureFlag.PM14938_BrowserExtensionLoginApproval]: FALSE,
 
   /* Billing */

From cd33ea074713c3b45d414193d064a08e82acc3db Mon Sep 17 00:00:00 2001
From: Sunset Mikoto <26019675+SunsetMkt@users.noreply.github.com>
Date: Fri, 25 Jul 2025 01:42:35 +0800
Subject: [PATCH 226/239] build(firefox): bump max file size limit to 5MB
 (#15477)

https://github.com/mozilla/addons-linter/pull/5674
---
 .github/workflows/build-browser.yml | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/build-browser.yml b/.github/workflows/build-browser.yml
index bd7d70e8543..be140b9a20e 100644
--- a/.github/workflows/build-browser.yml
+++ b/.github/workflows/build-browser.yml
@@ -269,19 +269,19 @@ jobs:
           # Declare variable as indexed array
           declare -a FILES
 
-          # Search for source files that are greater than 4M
+          # Search for source files that are greater than 5M
           TARGET_DIR='./browser-source/apps/browser'
           while IFS=' ' read -r RESULT; do
               FILES+=("$RESULT")
-          done < <(find $TARGET_DIR -size +4M)
+          done < <(find $TARGET_DIR -size +5M)
 
           # Validate results and provide messaging
           if [[ ${#FILES[@]} -ne 0 ]]; then
-              echo "File(s) exceeds size limit: 4MB"
+              echo "File(s) exceeds size limit: 5MB"
               for FILE in ${FILES[@]}; do
                   echo "- $(du --si $FILE)"
               done
-              echo "ERROR Firefox rejects extension uploads that contain files larger than 4MB"
+              echo "ERROR Firefox rejects extension uploads that contain files larger than 5MB"
               # Invoke failure
               exit 1
           fi

From 7b85870e58d9e07ee78e00f35a417fa67a24e248 Mon Sep 17 00:00:00 2001
From: Jordan Aasen <166539328+jaasen-livefront@users.noreply.github.com>
Date: Thu, 24 Jul 2025 10:59:29 -0700
Subject: [PATCH 227/239] [PM-22377] - [Vault] [Clients] Update cipher form
 component to restrict editing old My Vault items (#15687)

* disable cipher form for "My Items" ciphers

* use correct property

* prevent changing non org fields in cli for org owned vaults

* update var name

* fix tests

* fix stories

* revert changes to item details section. update comment in edit command

* remove unused props

* fix test

* re-apply logic to enforce org ownership

* re-apply logic to enforce org ownership

* fix logic and test

* add empty line to comment

* remove unused var

* delegate form enabling/disabling to cipherFormContainer

* rename var and getter back to original. update comment
---
 apps/cli/src/commands/edit.command.ts         | 15 ++++
 apps/cli/src/oss-serve-configurator.ts        |  1 +
 apps/cli/src/vault.program.ts                 |  1 +
 .../src/cipher-form/cipher-form-container.ts  |  4 ++
 .../components/cipher-form.component.ts       |  8 +++
 .../item-details-section.component.html       |  2 +-
 .../item-details-section.component.spec.ts    |  1 +
 .../item-details-section.component.ts         | 68 ++++++++++++++-----
 8 files changed, 81 insertions(+), 19 deletions(-)

diff --git a/apps/cli/src/commands/edit.command.ts b/apps/cli/src/commands/edit.command.ts
index ebf877011b7..6b8c5811056 100644
--- a/apps/cli/src/commands/edit.command.ts
+++ b/apps/cli/src/commands/edit.command.ts
@@ -4,6 +4,8 @@ import { firstValueFrom } from "rxjs";
 
 import { CollectionRequest } from "@bitwarden/admin-console/common";
 import { ApiService } from "@bitwarden/common/abstractions/api.service";
+import { PolicyService } from "@bitwarden/common/admin-console/abstractions/policy/policy.service.abstraction";
+import { PolicyType } from "@bitwarden/common/admin-console/enums";
 import { SelectionReadOnlyRequest } from "@bitwarden/common/admin-console/models/request/selection-read-only.request";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { getUserId } from "@bitwarden/common/auth/services/account.service";
@@ -36,6 +38,7 @@ export class EditCommand {
     private folderApiService: FolderApiServiceAbstraction,
     private accountService: AccountService,
     private cliRestrictedItemTypesService: CliRestrictedItemTypesService,
+    private policyService: PolicyService,
   ) {}
 
   async run(
@@ -104,6 +107,18 @@ export class EditCommand {
       return Response.error("Editing this item type is restricted by organizational policy.");
     }
 
+    const isPersonalVaultItem = cipherView.organizationId == null;
+
+    const organizationOwnershipPolicyApplies = await firstValueFrom(
+      this.policyService.policyAppliesToUser$(PolicyType.OrganizationDataOwnership, activeUserId),
+    );
+
+    if (isPersonalVaultItem && organizationOwnershipPolicyApplies) {
+      return Response.error(
+        "An organization policy restricts editing this cipher. Please use the share command first before modifying it.",
+      );
+    }
+
     const encCipher = await this.cipherService.encrypt(cipherView, activeUserId);
     try {
       const updatedCipher = await this.cipherService.updateWithServer(encCipher);
diff --git a/apps/cli/src/oss-serve-configurator.ts b/apps/cli/src/oss-serve-configurator.ts
index 848627b703f..a460fa270a8 100644
--- a/apps/cli/src/oss-serve-configurator.ts
+++ b/apps/cli/src/oss-serve-configurator.ts
@@ -103,6 +103,7 @@ export class OssServeConfigurator {
       this.serviceContainer.folderApiService,
       this.serviceContainer.accountService,
       this.serviceContainer.cliRestrictedItemTypesService,
+      this.serviceContainer.policyService,
     );
     this.generateCommand = new GenerateCommand(
       this.serviceContainer.passwordGenerationService,
diff --git a/apps/cli/src/vault.program.ts b/apps/cli/src/vault.program.ts
index 2b08bc67ec1..bdcc52393ca 100644
--- a/apps/cli/src/vault.program.ts
+++ b/apps/cli/src/vault.program.ts
@@ -285,6 +285,7 @@ export class VaultProgram extends BaseProgram {
           this.serviceContainer.folderApiService,
           this.serviceContainer.accountService,
           this.serviceContainer.cliRestrictedItemTypesService,
+          this.serviceContainer.policyService,
         );
         const response = await command.run(object, id, encodedJson, cmd);
         this.processResponse(response);
diff --git a/libs/vault/src/cipher-form/cipher-form-container.ts b/libs/vault/src/cipher-form/cipher-form-container.ts
index cef5e102afe..628b4c07f6c 100644
--- a/libs/vault/src/cipher-form/cipher-form-container.ts
+++ b/libs/vault/src/cipher-form/cipher-form-container.ts
@@ -70,4 +70,8 @@ export abstract class CipherFormContainer {
 
   /** Returns true when the `CipherFormContainer` was initialized with a cached cipher available. */
   abstract initializedWithCachedCipher(): boolean;
+
+  abstract disableFormFields(): void;
+
+  abstract enableFormFields(): void;
 }
diff --git a/libs/vault/src/cipher-form/components/cipher-form.component.ts b/libs/vault/src/cipher-form/components/cipher-form.component.ts
index b8815235ee8..47ab9977f64 100644
--- a/libs/vault/src/cipher-form/components/cipher-form.component.ts
+++ b/libs/vault/src/cipher-form/components/cipher-form.component.ts
@@ -150,6 +150,14 @@ export class CipherFormComponent implements AfterViewInit, OnInit, OnChanges, Ci
     }
   }
 
+  disableFormFields(): void {
+    this.cipherForm.disable({ emitEvent: false });
+  }
+
+  enableFormFields(): void {
+    this.cipherForm.enable({ emitEvent: false });
+  }
+
   /**
    * Registers a child form group with the parent form group. Used by child components to add their form groups to
    * the parent form for validation.
diff --git a/libs/vault/src/cipher-form/components/item-details/item-details-section.component.html b/libs/vault/src/cipher-form/components/item-details/item-details-section.component.html
index c61312c13eb..4d575634b1c 100644
--- a/libs/vault/src/cipher-form/components/item-details/item-details-section.component.html
+++ b/libs/vault/src/cipher-form/components/item-details/item-details-section.component.html
@@ -22,7 +22,7 @@
       <bit-label>{{ "owner" | i18n }}</bit-label>
       <bit-select formControlName="organizationId">
         <bit-option
-          *ngIf="showOrganizationDataOwnershipOption"
+          *ngIf="showPersonalOwnershipOption"
           [value]="null"
           [label]="userEmail$ | async"
         ></bit-option>
diff --git a/libs/vault/src/cipher-form/components/item-details/item-details-section.component.spec.ts b/libs/vault/src/cipher-form/components/item-details/item-details-section.component.spec.ts
index db8e2007c61..3c513a2f067 100644
--- a/libs/vault/src/cipher-form/components/item-details/item-details-section.component.spec.ts
+++ b/libs/vault/src/cipher-form/components/item-details/item-details-section.component.spec.ts
@@ -572,6 +572,7 @@ describe("ItemDetailsSectionComponent", () => {
     it("returns matching default when flag & policy match", async () => {
       const def = createMockCollection("def1", "Def", "orgA");
       component.config.collections = [def] as CollectionView[];
+      component.config.organizationDataOwnershipDisabled = false;
       component.config.initialValues = { collectionIds: [] } as OptionalInitialValues;
       mockConfigService.getFeatureFlag.mockResolvedValue(true);
       mockPolicyService.policiesByType$.mockReturnValue(of([{ organizationId: "orgA" } as Policy]));
diff --git a/libs/vault/src/cipher-form/components/item-details/item-details-section.component.ts b/libs/vault/src/cipher-form/components/item-details/item-details-section.component.ts
index 1064980050f..4fd999ae601 100644
--- a/libs/vault/src/cipher-form/components/item-details/item-details-section.component.ts
+++ b/libs/vault/src/cipher-form/components/item-details/item-details-section.component.ts
@@ -19,7 +19,7 @@ import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
 import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
-import { CollectionId, OrganizationId } from "@bitwarden/common/types/guid";
+import { CollectionId, OrganizationId, UserId } from "@bitwarden/common/types/guid";
 import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
 import {
   CardComponent,
@@ -80,6 +80,8 @@ export class ItemDetailsSectionComponent implements OnInit {
 
   protected organizations: Organization[] = [];
 
+  protected userId: UserId;
+
   @Input({ required: true })
   config: CipherFormConfig;
 
@@ -96,7 +98,7 @@ export class ItemDetailsSectionComponent implements OnInit {
     return this.config.mode === "partial-edit";
   }
 
-  get organizationDataOwnershipDisabled() {
+  get allowPersonalOwnership() {
     return this.config.organizationDataOwnershipDisabled;
   }
 
@@ -109,16 +111,19 @@ export class ItemDetailsSectionComponent implements OnInit {
   }
 
   /**
-   * Show the organization data ownership option in the Owner dropdown when:
-   * - organization data ownership is disabled
-   * - The `organizationId` control is disabled. This avoids the scenario
-   * where a the dropdown is empty because the user personally owns the cipher
-   * but cannot edit the ownership.
+   * Show the personal ownership option in the Owner dropdown when any of the following:
+   * - personal ownership is allowed
+   * - `organizationId` control is disabled
+   * - personal ownership is not allowed AND the user is editing a cipher that is not
+   * currently owned by an organization
    */
-  get showOrganizationDataOwnershipOption() {
+  get showPersonalOwnershipOption() {
     return (
-      this.organizationDataOwnershipDisabled ||
-      !this.itemDetailsForm.controls.organizationId.enabled
+      this.allowPersonalOwnership ||
+      this.itemDetailsForm.controls.organizationId.disabled ||
+      (!this.allowPersonalOwnership &&
+        this.config.originalCipher &&
+        this.itemDetailsForm.controls.organizationId.value === null)
     );
   }
 
@@ -170,7 +175,7 @@ export class ItemDetailsSectionComponent implements OnInit {
     }
 
     // If personal ownership is allowed and there is at least one organization, allow ownership change.
-    if (this.organizationDataOwnershipDisabled) {
+    if (this.allowPersonalOwnership) {
       return this.organizations.length > 0;
     }
 
@@ -189,7 +194,7 @@ export class ItemDetailsSectionComponent implements OnInit {
   }
 
   get defaultOwner() {
-    return this.organizationDataOwnershipDisabled ? null : this.organizations[0].id;
+    return this.allowPersonalOwnership ? null : this.organizations[0].id;
   }
 
   async ngOnInit() {
@@ -197,7 +202,9 @@ export class ItemDetailsSectionComponent implements OnInit {
       Utils.getSortFunction(this.i18nService, "name"),
     );
 
-    if (!this.organizationDataOwnershipDisabled && this.organizations.length === 0) {
+    this.userId = await firstValueFrom(this.accountService.activeAccount$.pipe(getUserId));
+
+    if (!this.allowPersonalOwnership && this.organizations.length === 0) {
       throw new Error("No organizations available for ownership.");
     }
 
@@ -216,43 +223,68 @@ export class ItemDetailsSectionComponent implements OnInit {
       });
       await this.updateCollectionOptions(this.initialValues?.collectionIds);
     }
+    this.setFormState();
     if (!this.allowOwnershipChange) {
       this.itemDetailsForm.controls.organizationId.disable();
     }
     this.itemDetailsForm.controls.organizationId.valueChanges
       .pipe(
         takeUntilDestroyed(this.destroyRef),
-        concatMap(async () => await this.updateCollectionOptions()),
+        concatMap(async () => {
+          await this.updateCollectionOptions();
+          this.setFormState();
+        }),
       )
       .subscribe();
   }
 
+  /**
+   * When the cipher does not belong to an organization but the user's organization
+   * requires all ciphers to be owned by an organization, disable the entire form
+   * until the user selects an organization.
+   */
+  private setFormState() {
+    if (this.config.originalCipher && !this.allowPersonalOwnership) {
+      if (this.itemDetailsForm.controls.organizationId.value === null) {
+        this.cipherFormContainer.disableFormFields();
+        this.itemDetailsForm.controls.organizationId.enable();
+      } else {
+        this.cipherFormContainer.enableFormFields();
+      }
+    }
+  }
+
   /**
    * Gets the default collection IDs for the selected organization.
    * Returns null if any of the following apply:
    * - the feature flag is disabled
+   * - the "no private data policy" doesn't apply to the user
    * - no org is currently selected
    * - the selected org doesn't have the "no private data policy" enabled
    */
   private async getDefaultCollectionId(orgId?: OrganizationId) {
-    if (!orgId) {
+    if (!orgId || this.allowPersonalOwnership) {
       return;
     }
+
     const isFeatureEnabled = await this.configService.getFeatureFlag(
       FeatureFlag.CreateDefaultLocation,
     );
+
     if (!isFeatureEnabled) {
       return;
     }
-    const userId = await firstValueFrom(this.accountService.activeAccount$.pipe(getUserId));
+
     const selectedOrgHasPolicyEnabled = (
       await firstValueFrom(
-        this.policyService.policiesByType$(PolicyType.OrganizationDataOwnership, userId),
+        this.policyService.policiesByType$(PolicyType.OrganizationDataOwnership, this.userId),
       )
     ).find((p) => p.organizationId);
+
     if (!selectedOrgHasPolicyEnabled) {
       return;
     }
+
     const defaultUserCollection = this.collections.find(
       (c) => c.organizationId === orgId && c.type === CollectionTypes.DefaultUserCollection,
     );
@@ -284,7 +316,7 @@ export class ItemDetailsSectionComponent implements OnInit {
         );
       }
 
-      if (!this.organizationDataOwnershipDisabled && prefillCipher.organizationId == null) {
+      if (!this.allowPersonalOwnership && prefillCipher.organizationId == null) {
         this.itemDetailsForm.controls.organizationId.setValue(this.defaultOwner);
       }
     }

From 4766efd938a9a59434e0492f75c7734fe23886f2 Mon Sep 17 00:00:00 2001
From: Vicki League <vleague@bitwarden.com>
Date: Thu, 24 Jul 2025 15:05:40 -0400
Subject: [PATCH 228/239] [CL-803] Temporarily disable flaky popover test
 (#15761)

---
 .../src/stories/kitchen-sink/kitchen-sink.stories.ts         | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/libs/components/src/stories/kitchen-sink/kitchen-sink.stories.ts b/libs/components/src/stories/kitchen-sink/kitchen-sink.stories.ts
index 9e7e6f5d3ba..671a8d9ad82 100644
--- a/libs/components/src/stories/kitchen-sink/kitchen-sink.stories.ts
+++ b/libs/components/src/stories/kitchen-sink/kitchen-sink.stories.ts
@@ -161,6 +161,11 @@ export const PopoverOpen: Story = {
 
     await userEvent.click(passwordLabelIcon);
   },
+  parameters: {
+    chromatic: {
+      disableSnapshot: true,
+    },
+  },
 };
 
 export const SimpleDialogOpen: Story = {

From ebc6f9fea3fe063e2fcc9d874e8b35192582997e Mon Sep 17 00:00:00 2001
From: Colton Hurst <colton@coltonhurst.com>
Date: Thu, 24 Jul 2025 15:45:03 -0400
Subject: [PATCH 229/239] Refactor the Autotype Checkbox Name (#15753)

* Refactor the autofill checkbox name

* Refactor the autofill checkbox name one more time

* Create transition key
---
 apps/desktop/src/app/accounts/settings.component.html | 2 +-
 apps/desktop/src/locales/en/messages.json             | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/apps/desktop/src/app/accounts/settings.component.html b/apps/desktop/src/app/accounts/settings.component.html
index 473cfa73f1d..4514a908bb9 100644
--- a/apps/desktop/src/app/accounts/settings.component.html
+++ b/apps/desktop/src/app/accounts/settings.component.html
@@ -495,7 +495,7 @@
                       formControlName="enableAutotype"
                       (change)="saveEnableAutotype()"
                     />
-                    {{ "enableAutotype" | i18n }}
+                    {{ "enableAutotypeTransitionKey" | i18n }}
                   </label>
                 </div>
                 <small class="help-block"
diff --git a/apps/desktop/src/locales/en/messages.json b/apps/desktop/src/locales/en/messages.json
index c269f7d32f8..16c81ee288d 100644
--- a/apps/desktop/src/locales/en/messages.json
+++ b/apps/desktop/src/locales/en/messages.json
@@ -4006,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Enable autotype shortcut"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."

From 1f73ff17ed6e94f3d1468d2f54e7177543f4382a Mon Sep 17 00:00:00 2001
From: Bryan Cunningham <bcunningham@bitwarden.com>
Date: Thu, 24 Jul 2025 16:15:51 -0400
Subject: [PATCH 230/239] [CL-791] global text color change (#15723)

* update variables to use same color as text-main

* remove unused headers key from tailwind config
---
 apps/web/src/scss/variables.scss        | 4 ++--
 libs/components/src/variables.scss      | 4 ++--
 libs/components/tailwind.config.base.js | 2 --
 3 files changed, 4 insertions(+), 6 deletions(-)

diff --git a/apps/web/src/scss/variables.scss b/apps/web/src/scss/variables.scss
index 66773999c54..6c5278b2f9a 100644
--- a/apps/web/src/scss/variables.scss
+++ b/apps/web/src/scss/variables.scss
@@ -18,7 +18,7 @@ $theme-colors: (
 );
 
 $body-bg: $white;
-$body-color: #333333;
+$body-color: #1b2029;
 
 $font-family-sans-serif:
   Roboto, "Helvetica Neue", Helvetica, Arial, sans-serif, "Apple Color Emoji", "Segoe UI Emoji",
@@ -201,7 +201,7 @@ $themes: (
     textColor: $body-color,
     textDangerColor: $white,
     textInfoColor: $white,
-    textHeadingColor: #333333,
+    textHeadingColor: $body-color,
     textMuted: #6c757d,
     textSuccessColor: $white,
     textWarningColor: $white,
diff --git a/libs/components/src/variables.scss b/libs/components/src/variables.scss
index e3651f9c37d..724244d24be 100644
--- a/libs/components/src/variables.scss
+++ b/libs/components/src/variables.scss
@@ -18,7 +18,7 @@ $theme-colors: (
 );
 
 $body-bg: $white;
-$body-color: #333333;
+$body-color: #1b2029;
 
 $font-family-sans-serif:
   Roboto, "Helvetica Neue", Helvetica, Arial, sans-serif, "Apple Color Emoji", "Segoe UI Emoji",
@@ -216,7 +216,7 @@ $themes: (
     textColor: $body-color,
     textDangerColor: $white,
     textInfoColor: $white,
-    textHeadingColor: #333333,
+    textHeadingColor: $body-color,
     textMuted: #6c757d,
     textSuccessColor: $white,
     textWarningColor: $white,
diff --git a/libs/components/tailwind.config.base.js b/libs/components/tailwind.config.base.js
index 8b73ffc470c..3c7437fb57f 100644
--- a/libs/components/tailwind.config.base.js
+++ b/libs/components/tailwind.config.base.js
@@ -74,7 +74,6 @@ module.exports = {
         contrast: rgba("--color-text-contrast"),
         alt2: rgba("--color-text-alt2"),
         code: rgba("--color-text-code"),
-        headers: rgba("--color-text-headers"),
       },
       background: {
         DEFAULT: rgba("--color-background"),
@@ -101,7 +100,6 @@ module.exports = {
       main: rgba("--color-text-main"),
       muted: rgba("--color-text-muted"),
       contrast: rgba("--color-text-contrast"),
-      headers: rgba("--color-text-headers"),
       alt2: rgba("--color-text-alt2"),
       code: rgba("--color-text-code"),
       black: colors.black,

From 9826f0ab0abed77c40a9bc1f9ce027b2822fb95d Mon Sep 17 00:00:00 2001
From: Colton Hurst <colton@coltonhurst.com>
Date: Thu, 24 Jul 2025 16:20:57 -0400
Subject: [PATCH 231/239] Remove transition key (#15766)

---
 apps/desktop/src/app/accounts/settings.component.html | 2 +-
 apps/desktop/src/locales/en/messages.json             | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/apps/desktop/src/app/accounts/settings.component.html b/apps/desktop/src/app/accounts/settings.component.html
index 4514a908bb9..473cfa73f1d 100644
--- a/apps/desktop/src/app/accounts/settings.component.html
+++ b/apps/desktop/src/app/accounts/settings.component.html
@@ -495,7 +495,7 @@
                       formControlName="enableAutotype"
                       (change)="saveEnableAutotype()"
                     />
-                    {{ "enableAutotypeTransitionKey" | i18n }}
+                    {{ "enableAutotype" | i18n }}
                   </label>
                 </div>
                 <small class="help-block"
diff --git a/apps/desktop/src/locales/en/messages.json b/apps/desktop/src/locales/en/messages.json
index 16c81ee288d..9f8f210c263 100644
--- a/apps/desktop/src/locales/en/messages.json
+++ b/apps/desktop/src/locales/en/messages.json
@@ -4006,7 +4006,7 @@
       }
     }
   },
-  "enableAutotypeTransitionKey": {
+  "enableAutotype": {
     "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {

From 5e402d9e54b18b3748ab3bba5df9ccce9dc39b8c Mon Sep 17 00:00:00 2001
From: "bw-ghapp[bot]" <178206702+bw-ghapp[bot]@users.noreply.github.com>
Date: Fri, 25 Jul 2025 10:07:43 +0200
Subject: [PATCH 232/239] Autosync the updated translations (#15774)

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>
---
 apps/browser/src/_locales/ar/messages.json    |   3 +
 apps/browser/src/_locales/az/messages.json    |   3 +
 apps/browser/src/_locales/be/messages.json    |   3 +
 apps/browser/src/_locales/bg/messages.json    |   3 +
 apps/browser/src/_locales/bn/messages.json    |   3 +
 apps/browser/src/_locales/bs/messages.json    |   3 +
 apps/browser/src/_locales/ca/messages.json    |   3 +
 apps/browser/src/_locales/cs/messages.json    |   3 +
 apps/browser/src/_locales/cy/messages.json    |   3 +
 apps/browser/src/_locales/da/messages.json    |   3 +
 apps/browser/src/_locales/de/messages.json    |   3 +
 apps/browser/src/_locales/el/messages.json    |   3 +
 apps/browser/src/_locales/en_GB/messages.json |   3 +
 apps/browser/src/_locales/en_IN/messages.json |   3 +
 apps/browser/src/_locales/es/messages.json    |   3 +
 apps/browser/src/_locales/et/messages.json    |   3 +
 apps/browser/src/_locales/eu/messages.json    |   3 +
 apps/browser/src/_locales/fa/messages.json    |   3 +
 apps/browser/src/_locales/fi/messages.json    | 193 ++++++++--------
 apps/browser/src/_locales/fil/messages.json   |   3 +
 apps/browser/src/_locales/fr/messages.json    | 213 +++++++++---------
 apps/browser/src/_locales/gl/messages.json    |   3 +
 apps/browser/src/_locales/he/messages.json    |   3 +
 apps/browser/src/_locales/hi/messages.json    |   3 +
 apps/browser/src/_locales/hr/messages.json    |  63 +++---
 apps/browser/src/_locales/hu/messages.json    |   3 +
 apps/browser/src/_locales/id/messages.json    |   3 +
 apps/browser/src/_locales/it/messages.json    |   3 +
 apps/browser/src/_locales/ja/messages.json    |   3 +
 apps/browser/src/_locales/ka/messages.json    |   3 +
 apps/browser/src/_locales/km/messages.json    |   3 +
 apps/browser/src/_locales/kn/messages.json    |   3 +
 apps/browser/src/_locales/ko/messages.json    |   3 +
 apps/browser/src/_locales/lt/messages.json    |   3 +
 apps/browser/src/_locales/lv/messages.json    |   3 +
 apps/browser/src/_locales/ml/messages.json    |   3 +
 apps/browser/src/_locales/mr/messages.json    |   3 +
 apps/browser/src/_locales/my/messages.json    |   3 +
 apps/browser/src/_locales/nb/messages.json    |   3 +
 apps/browser/src/_locales/ne/messages.json    |   3 +
 apps/browser/src/_locales/nl/messages.json    |   3 +
 apps/browser/src/_locales/nn/messages.json    |   3 +
 apps/browser/src/_locales/or/messages.json    |   3 +
 apps/browser/src/_locales/pl/messages.json    | 189 ++++++++--------
 apps/browser/src/_locales/pt_BR/messages.json |   3 +
 apps/browser/src/_locales/pt_PT/messages.json |   3 +
 apps/browser/src/_locales/ro/messages.json    |   3 +
 apps/browser/src/_locales/ru/messages.json    |   3 +
 apps/browser/src/_locales/si/messages.json    |   3 +
 apps/browser/src/_locales/sk/messages.json    |   3 +
 apps/browser/src/_locales/sl/messages.json    |   3 +
 apps/browser/src/_locales/sr/messages.json    |   3 +
 apps/browser/src/_locales/sv/messages.json    |   3 +
 apps/browser/src/_locales/te/messages.json    |   3 +
 apps/browser/src/_locales/th/messages.json    |   3 +
 apps/browser/src/_locales/tr/messages.json    |   3 +
 apps/browser/src/_locales/uk/messages.json    |   3 +
 apps/browser/src/_locales/vi/messages.json    |   5 +-
 apps/browser/src/_locales/zh_CN/messages.json |  25 +-
 apps/browser/src/_locales/zh_TW/messages.json |   3 +
 60 files changed, 515 insertions(+), 335 deletions(-)

diff --git a/apps/browser/src/_locales/ar/messages.json b/apps/browser/src/_locales/ar/messages.json
index d7aef05ab92..65ee9cab458 100644
--- a/apps/browser/src/_locales/ar/messages.json
+++ b/apps/browser/src/_locales/ar/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "البحث في الخزانة"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "edit": {
     "message": "تعديل"
   },
diff --git a/apps/browser/src/_locales/az/messages.json b/apps/browser/src/_locales/az/messages.json
index 5e7bf056980..16b74ffe175 100644
--- a/apps/browser/src/_locales/az/messages.json
+++ b/apps/browser/src/_locales/az/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "Seyfdə axtar"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "edit": {
     "message": "Düzəliş et"
   },
diff --git a/apps/browser/src/_locales/be/messages.json b/apps/browser/src/_locales/be/messages.json
index a49899eaee0..d7a1db3adc8 100644
--- a/apps/browser/src/_locales/be/messages.json
+++ b/apps/browser/src/_locales/be/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "Пошук у сховішчы"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "edit": {
     "message": "Рэдагаваць"
   },
diff --git a/apps/browser/src/_locales/bg/messages.json b/apps/browser/src/_locales/bg/messages.json
index 672e029a662..79e13cdb677 100644
--- a/apps/browser/src/_locales/bg/messages.json
+++ b/apps/browser/src/_locales/bg/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "Търсене в трезора"
   },
+  "resetSearch": {
+    "message": "Нулиране на търсенето"
+  },
   "edit": {
     "message": "Редактиране"
   },
diff --git a/apps/browser/src/_locales/bn/messages.json b/apps/browser/src/_locales/bn/messages.json
index 4e30612b9a6..a3c029fb963 100644
--- a/apps/browser/src/_locales/bn/messages.json
+++ b/apps/browser/src/_locales/bn/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "ভল্ট খুঁজুন"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "edit": {
     "message": "সম্পাদনা"
   },
diff --git a/apps/browser/src/_locales/bs/messages.json b/apps/browser/src/_locales/bs/messages.json
index be64d0bade5..8a94ba3e9e9 100644
--- a/apps/browser/src/_locales/bs/messages.json
+++ b/apps/browser/src/_locales/bs/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "Search vault"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "edit": {
     "message": "Edit"
   },
diff --git a/apps/browser/src/_locales/ca/messages.json b/apps/browser/src/_locales/ca/messages.json
index f6c40da1096..42fb9c24003 100644
--- a/apps/browser/src/_locales/ca/messages.json
+++ b/apps/browser/src/_locales/ca/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "Cerca en la caixa forta"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "edit": {
     "message": "Edita"
   },
diff --git a/apps/browser/src/_locales/cs/messages.json b/apps/browser/src/_locales/cs/messages.json
index 4e0096a1520..3f8dd2e2b48 100644
--- a/apps/browser/src/_locales/cs/messages.json
+++ b/apps/browser/src/_locales/cs/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "Vyhledat v trezoru"
   },
+  "resetSearch": {
+    "message": "Resetovat hledání"
+  },
   "edit": {
     "message": "Upravit"
   },
diff --git a/apps/browser/src/_locales/cy/messages.json b/apps/browser/src/_locales/cy/messages.json
index 1235b49dd2c..307373da9aa 100644
--- a/apps/browser/src/_locales/cy/messages.json
+++ b/apps/browser/src/_locales/cy/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "Chwilio'r gell"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "edit": {
     "message": "Golygu"
   },
diff --git a/apps/browser/src/_locales/da/messages.json b/apps/browser/src/_locales/da/messages.json
index bc34810f97f..4b6da81a994 100644
--- a/apps/browser/src/_locales/da/messages.json
+++ b/apps/browser/src/_locales/da/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "Søg i boks"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "edit": {
     "message": "Redigér"
   },
diff --git a/apps/browser/src/_locales/de/messages.json b/apps/browser/src/_locales/de/messages.json
index 2e3d9369c41..9ef82a6d5ae 100644
--- a/apps/browser/src/_locales/de/messages.json
+++ b/apps/browser/src/_locales/de/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "Tresor durchsuchen"
   },
+  "resetSearch": {
+    "message": "Suche zurücksetzen"
+  },
   "edit": {
     "message": "Bearbeiten"
   },
diff --git a/apps/browser/src/_locales/el/messages.json b/apps/browser/src/_locales/el/messages.json
index 014d17b74c8..fa4f3ac0f3c 100644
--- a/apps/browser/src/_locales/el/messages.json
+++ b/apps/browser/src/_locales/el/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "Αναζήτηση στο vault"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "edit": {
     "message": "Επεξεργασία"
   },
diff --git a/apps/browser/src/_locales/en_GB/messages.json b/apps/browser/src/_locales/en_GB/messages.json
index a17a48e95b8..a70fbd85123 100644
--- a/apps/browser/src/_locales/en_GB/messages.json
+++ b/apps/browser/src/_locales/en_GB/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "Search vault"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "edit": {
     "message": "Edit"
   },
diff --git a/apps/browser/src/_locales/en_IN/messages.json b/apps/browser/src/_locales/en_IN/messages.json
index 9f383c2f0e3..39de06249fc 100644
--- a/apps/browser/src/_locales/en_IN/messages.json
+++ b/apps/browser/src/_locales/en_IN/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "Search vault"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "edit": {
     "message": "Edit"
   },
diff --git a/apps/browser/src/_locales/es/messages.json b/apps/browser/src/_locales/es/messages.json
index 35a28528f49..3b681054abc 100644
--- a/apps/browser/src/_locales/es/messages.json
+++ b/apps/browser/src/_locales/es/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "Buscar en caja fuerte"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "edit": {
     "message": "Editar"
   },
diff --git a/apps/browser/src/_locales/et/messages.json b/apps/browser/src/_locales/et/messages.json
index daadcbf00e9..8b61aa70a60 100644
--- a/apps/browser/src/_locales/et/messages.json
+++ b/apps/browser/src/_locales/et/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "Otsi hoidlast"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "edit": {
     "message": "Muuda"
   },
diff --git a/apps/browser/src/_locales/eu/messages.json b/apps/browser/src/_locales/eu/messages.json
index e5f836fcaae..73bd992dacb 100644
--- a/apps/browser/src/_locales/eu/messages.json
+++ b/apps/browser/src/_locales/eu/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "Bilatu kutxa gotorrean"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "edit": {
     "message": "Editatu"
   },
diff --git a/apps/browser/src/_locales/fa/messages.json b/apps/browser/src/_locales/fa/messages.json
index e551e96f74a..18afcb775f9 100644
--- a/apps/browser/src/_locales/fa/messages.json
+++ b/apps/browser/src/_locales/fa/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "جستجوی گاوصندوق"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "edit": {
     "message": "ویرایش"
   },
diff --git a/apps/browser/src/_locales/fi/messages.json b/apps/browser/src/_locales/fi/messages.json
index 22f2046bae3..894b50b5273 100644
--- a/apps/browser/src/_locales/fi/messages.json
+++ b/apps/browser/src/_locales/fi/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "Etsi holvista"
   },
+  "resetSearch": {
+    "message": "Nollaa haku"
+  },
   "edit": {
     "message": "Muokkaa"
   },
@@ -887,7 +890,7 @@
     "message": "Viimeistele kirjautuminen seuraamalla seuraavia vaiheita."
   },
   "followTheStepsBelowToFinishLoggingInWithSecurityKey": {
-    "message": "Follow the steps below to finish logging in with your security key."
+    "message": "Seuraa alla olevia ohjeita, jotta pääset kirjautumaan suojausavaimellasi."
   },
   "restartRegistration": {
     "message": "Aloita rekisteröityminen alusta"
@@ -1063,7 +1066,7 @@
     "message": "Tallenna"
   },
   "notificationViewAria": {
-    "message": "View $ITEMNAME$, opens in new window",
+    "message": "Näytä $ITEMNAME$. Avautuu uudessa ikkunassa",
     "placeholders": {
       "itemName": {
         "content": "$1"
@@ -1093,15 +1096,15 @@
     }
   },
   "notificationLoginSaveConfirmation": {
-    "message": "saved to Bitwarden.",
+    "message": "tallennettu Bitwardeniin.",
     "description": "Shown to user after item is saved."
   },
   "notificationLoginUpdatedConfirmation": {
-    "message": "updated in Bitwarden.",
+    "message": "päivitetty Bitwardeniin.",
     "description": "Shown to user after item is updated."
   },
   "selectItemAriaLabel": {
-    "message": "Select $ITEMTYPE$, $ITEMNAME$",
+    "message": "Valitse $ITEMTYPE$, $ITEMNAME$",
     "description": "Used by screen readers. $1 is the item type (like vault or folder), $2 is the selected item name.",
     "placeholders": {
       "itemType": {
@@ -1121,7 +1124,7 @@
     "description": "Button text for updating an existing login entry."
   },
   "unlockToSave": {
-    "message": "Unlock to save this login",
+    "message": "Avaa tallentaaksesi tämä kirjautumistieto",
     "description": "User prompt to take action in order to save the login they just entered."
   },
   "saveLogin": {
@@ -1174,10 +1177,10 @@
     "description": "Detailed error message shown when saving login details fails."
   },
   "changePasswordWarning": {
-    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+    "message": "Kun olet vaihtanut salasanaasi, sinun täytyy kirjautua sisään uudella salasanalla. Aktiiviset istunnot muilla laitteilla kirjataan ulos tunnin kuluessa."
   },
   "accountRecoveryUpdateMasterPasswordSubtitle": {
-    "message": "Change your master password to complete account recovery."
+    "message": "Vaihda pääsalasanasi, jotta voit jatkaa tilin palautusta."
   },
   "enableChangedPasswordNotification": {
     "message": "Kysy päivitetäänkö kirjautumistieto"
@@ -1372,7 +1375,7 @@
     "message": "Ominaisuus ei ole käytettävissä"
   },
   "legacyEncryptionUnsupported": {
-    "message": "Legacy encryption is no longer supported. Please contact support to recover your account."
+    "message": "Vanhaa salausta ei enää tueta. Ota yhteyttä tukeen palauttaaksesi tilisi."
   },
   "premiumMembership": {
     "message": "Premium-jäsenyys"
@@ -1606,10 +1609,10 @@
     "message": "Automaattitäytön ehdotukset"
   },
   "autofillSpotlightTitle": {
-    "message": "Easily find autofill suggestions"
+    "message": "Löydä helposti automaattisen täytön ehdotukset"
   },
   "autofillSpotlightDesc": {
-    "message": "Turn off your browser's autofill settings, so they don't conflict with Bitwarden."
+    "message": "Poista käytöstä selaimesi oletuksena asetetut automaattisen täytön asetukset, joten ne eivät aiheuta ongelmia Bitwardenin kanssa."
   },
   "turnOffBrowserAutofill": {
     "message": "Poista automaattitäyttö käytöstä selaimessa $BROWSER$",
@@ -1830,7 +1833,7 @@
     "message": "Turvakoodi (CVC/CVV)"
   },
   "cardNumber": {
-    "message": "card number"
+    "message": "kortin numero"
   },
   "ex": {
     "message": "esim."
@@ -1932,7 +1935,7 @@
     "message": "SSH-avain"
   },
   "typeNote": {
-    "message": "Note"
+    "message": "Muistiinpano"
   },
   "newItemHeader": {
     "message": "Uusi $TYPE$",
@@ -2166,7 +2169,7 @@
     "message": "Aseta PIN-koodi Bitwardenin avaukselle. PIN-asetukset tyhjentyvät, jos kirjaudut laajennuksesta kokonaan ulos."
   },
   "setPinCode": {
-    "message": "You can use this PIN to unlock Bitwarden. Your PIN will be reset if you ever fully log out of the application."
+    "message": "Voit käyttää PIN-koodia avataksesi Bitwardenin. PIN-koodisi nollataan, mikäli kirjaudut täysin ulos sovelluksesta."
   },
   "pinRequired": {
     "message": "PIN-koodi vaaditaan."
@@ -2497,10 +2500,10 @@
     "message": "Organisaatiokäytäntö estää kohteiden tuonnin yksityiseen holviisi."
   },
   "restrictCardTypeImport": {
-    "message": "Cannot import card item types"
+    "message": "Ei voitu tuoda kortteja"
   },
   "restrictCardTypeImportDesc": {
-    "message": "A policy set by 1 or more organizations prevents you from importing cards to your vaults."
+    "message": "Käytäntö, jonka on asettanut 1 tai useampi organisaatiosi estää sinua tuomasta korttitietoja holviisi."
   },
   "domainsTitle": {
     "message": "Verkkotunnukset",
@@ -2547,7 +2550,7 @@
     }
   },
   "atRiskPassword": {
-    "message": "At-risk password"
+    "message": "Riskialttiit salasanat"
   },
   "atRiskPasswords": {
     "message": "Vaarantuneet salasanat"
@@ -2584,7 +2587,7 @@
     }
   },
   "atRiskChangePrompt": {
-    "message": "Your password for this site is at-risk. $ORGANIZATION$ has requested that you change it.",
+    "message": "Salasanasi tälle sivustolle ei ole turvallinen. $ORGANIZATION$ on ilmoittanut, että se tulisi vaihtaa.",
     "placeholders": {
       "organization": {
         "content": "$1",
@@ -2594,7 +2597,7 @@
     "description": "Notification body when a login triggers an at-risk password change request and the change password domain is known."
   },
   "atRiskNavigatePrompt": {
-    "message": "$ORGANIZATION$ wants you to change this password because it is at-risk. Navigate to your account settings to change the password.",
+    "message": "$ORGANIZATION$ ovat pyytäneet, että vaihdat tämän salasnaan, sillä se ei ole turvallinen. Mene tilin asetuksiin ja vaihda salasana.",
     "placeholders": {
       "organization": {
         "content": "$1",
@@ -2723,7 +2726,7 @@
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "maxAccessCountReached": {
-    "message": "Max access count reached",
+    "message": "Käyttökertojen enimmäismäärä on saavutettu",
     "description": "This text will be displayed after a Send has been accessed the maximum amount of times."
   },
   "hideTextByDefault": {
@@ -2929,7 +2932,7 @@
     "message": "Sinun on vahvistettava sähköpostiosoitteesi käyttääksesi ominaisuutta. Voit vahvistaa osoitteesi verkkoholvissa."
   },
   "masterPasswordSuccessfullySet": {
-    "message": "Master password successfully set"
+    "message": "Pääsalasana asetettu"
   },
   "updatedMasterPassword": {
     "message": "Pääsalasanasi on vaihdettu"
@@ -3070,13 +3073,13 @@
     "message": "Yksilöllistä tunnistetta ei löytynyt."
   },
   "removeMasterPasswordForOrganizationUserKeyConnector": {
-    "message": "A master password is no longer required for members of the following organization. Please confirm the domain below with your organization administrator."
+    "message": "Pääsalasanaa ei enää tarvita tämän organisaation jäsenille. Ole hyvä ja vahvista alla oleva verkkotunnus organisaation ylläpitäjän kanssa."
   },
   "organizationName": {
     "message": "Organisaation nimi"
   },
   "keyConnectorDomain": {
-    "message": "Key Connector domain"
+    "message": "Key Connector URL"
   },
   "leaveOrganization": {
     "message": "Poistu organisaatiosta"
@@ -3464,7 +3467,7 @@
     "message": "Pyyntö lähetetty"
   },
   "loginRequestApprovedForEmailOnDevice": {
-    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "message": "Kirjautuminen hyväksytty tunnuksella $EMAIL$ laitteella $DEVICE$",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3477,13 +3480,13 @@
     }
   },
   "youDeniedLoginAttemptFromAnotherDevice": {
-    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+    "message": "Kirjautumispyyntö on estetty toiselta laitteelta. Jos se olit sinä, yritä kirjautua uudelleen samalla laitteella."
   },
   "device": {
-    "message": "Device"
+    "message": "Laite"
   },
   "loginStatus": {
-    "message": "Login status"
+    "message": "Kirjautumisen tila"
   },
   "masterPasswordChanged": {
     "message": "Pääsalasana tallennettiin"
@@ -3582,53 +3585,53 @@
     "message": "Muista tämä laite tehdäksesi tulevista kirjautumisista saumattomia"
   },
   "manageDevices": {
-    "message": "Manage devices"
+    "message": "Hallinnoi laitteita"
   },
   "currentSession": {
-    "message": "Current session"
+    "message": "Nykyinen istunto"
   },
   "mobile": {
-    "message": "Mobile",
+    "message": "Mobiili",
     "description": "Mobile app"
   },
   "extension": {
-    "message": "Extension",
+    "message": "Laajennus",
     "description": "Browser extension/addon"
   },
   "desktop": {
-    "message": "Desktop",
+    "message": "Työpöytä",
     "description": "Desktop app"
   },
   "webVault": {
-    "message": "Web vault"
+    "message": "Verkkoholvi"
   },
   "webApp": {
-    "message": "Web app"
+    "message": "Verkkosovellus"
   },
   "cli": {
-    "message": "CLI"
+    "message": "Komentorivi"
   },
   "sdk": {
     "message": "SDK",
     "description": "Software Development Kit"
   },
   "requestPending": {
-    "message": "Request pending"
+    "message": "Pyyntö odottaa"
   },
   "firstLogin": {
-    "message": "First login"
+    "message": "Ensimmäinen kirjautuminen"
   },
   "trusted": {
-    "message": "Trusted"
+    "message": "Luotettu"
   },
   "needsApproval": {
-    "message": "Needs approval"
+    "message": "Vaatii hyväksynnän"
   },
   "devices": {
-    "message": "Devices"
+    "message": "Laitteet"
   },
   "accessAttemptBy": {
-    "message": "Access attempt by $EMAIL$",
+    "message": "Kirjautumisyritys sähköpostilla $EMAIL$ ",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3637,28 +3640,28 @@
     }
   },
   "confirmAccess": {
-    "message": "Confirm access"
+    "message": "Hyväksy pääsy"
   },
   "denyAccess": {
-    "message": "Deny access"
+    "message": "Estä pääsy"
   },
   "time": {
-    "message": "Time"
+    "message": "Aika"
   },
   "deviceType": {
-    "message": "Device Type"
+    "message": "Laitteen tyyppi"
   },
   "loginRequest": {
-    "message": "Login request"
+    "message": "Kirjautumispyyntö"
   },
   "thisRequestIsNoLongerValid": {
-    "message": "This request is no longer valid."
+    "message": "Tämä pyyntö ei ole enää voimassa."
   },
   "areYouTryingToAccessYourAccount": {
-    "message": "Are you trying to access your account?"
+    "message": "Yritätkö kirjautua tilillesi?"
   },
   "logInConfirmedForEmailOnDevice": {
-    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "message": "Kirjautuminen vahvistettu tunnuksella $EMAIL$ laitteella $DEVICE$",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3671,16 +3674,16 @@
     }
   },
   "youDeniedALogInAttemptFromAnotherDevice": {
-    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+    "message": "Estit toisen laitteen lähettämän kirjautumispyynnön. Jos kuitenkin tunnistit kirjautumisyrityksen, suorita kirjautuminen uudelleen."
   },
   "loginRequestHasAlreadyExpired": {
-    "message": "Login request has already expired."
+    "message": "Kirjautumispyyntö on jo vanhentunut."
   },
   "justNow": {
-    "message": "Just now"
+    "message": "juuri nyt"
   },
   "requestedXMinutesAgo": {
-    "message": "Requested $MINUTES$ minutes ago",
+    "message": "pyydetty $MINUTES$ minuuttia sitten",
     "placeholders": {
       "minutes": {
         "content": "$1",
@@ -3710,10 +3713,10 @@
     "message": "Pyydä hyväksyntää ylläpidolta"
   },
   "unableToCompleteLogin": {
-    "message": "Unable to complete login"
+    "message": "Kirjautuminen epäonnistui"
   },
   "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
-    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+    "message": "Sinun on kirjauduttava luotettuun laitteeseen tai pyydettävä järjestelmänvalvojaasi antamaan sinulle salasana."
   },
   "ssoIdentifierRequired": {
     "message": "Organisaation kertakirjautumistunniste tarvitaan."
@@ -3789,23 +3792,23 @@
     "message": "Organisaatio ei ole luotettu"
   },
   "emergencyAccessTrustWarning": {
-    "message": "For the security of your account, only confirm if you have granted emergency access to this user and their fingerprint matches what is displayed in their account"
+    "message": "Tilisi turvallisuuden varmistamiseksi, vahvista vain, jos olet antanut hätäpääsyn tälle käyttäjälle ja hänen sormenjälkensä vastaa sitä, mitä hänen tilillään näkyy"
   },
   "orgTrustWarning": {
-    "message": "For the security of your account, only proceed if you are a member of this organization, have account recovery enabled, and the fingerprint displayed below matches the organization's fingerprint."
+    "message": "Tilisi turvallisuuden takaamiseksi jatka vain, jos olet tämän organisaation jäsen, tilin palautus on käytössä ja alla näkyvä sormenjälki vastaa organisaatiosi sormenjälkeä."
   },
   "orgTrustWarning1": {
-    "message": "This organization has an Enterprise policy that will enroll you in account recovery. Enrollment will allow organization administrators to change your password. Only proceed if you recognize this organization and the fingerprint phrase displayed below matches the organization's fingerprint."
+    "message": "Tällä organisaatiolla on yrityskäytäntö, joka tulee ilmi, kun yrität palauttaa tiliäsi. Ilmoittautuminen sallii organisaation ylläpitäjien vaihtaa salasanasi. Jatka vain, jos tunnistat tämän organisaation ja alla näkyvän sormenjäljen, joka vastaa organisaation sormenjälkeä."
   },
   "trustUser": {
     "message": "Luota käyttäjään"
   },
   "sendsTitleNoItems": {
-    "message": "Send sensitive information safely",
+    "message": "Lähetä arkaluonteisia tietoja turvallisesti",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendsBodyNoItems": {
-    "message": "Share files and data securely with anyone, on any platform. Your information will remain end-to-end encrypted while limiting exposure.",
+    "message": "Jaa tiedostoja ja dataa turvallisesti kenen tahansa kanssa millä tahansa alustalla. Tiedot pysyvät päästä päähän salattuina.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "inputRequired": {
@@ -4395,23 +4398,23 @@
     "description": "Label indicating the most common import formats"
   },
   "uriMatchDefaultStrategyHint": {
-    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "message": "URI:n Säännöllinen lauseke -asetus on se tapa, jolla Bitwarden tekee automaattisen täytön.",
     "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
   },
   "regExAdvancedOptionWarning": {
-    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "message": "Säänöllinen lauseke -asetus on kehittynyt asetus, joka lisää kirjautumistietoja kaappausriskiä.",
     "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
   },
   "startsWithAdvancedOptionWarning": {
-    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "message": "Alkaa sanoilla -asetus on kehittynyt asetus, joka lisää kirjautumistietoja kaappausriskiä.",
     "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
   },
   "uriMatchWarningDialogLink": {
-    "message": "More about match detection",
+    "message": "Lisätietoa vastaavuustunnistuksesta",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
   "uriAdvancedOption": {
-    "message": "Advanced options",
+    "message": "Lisäasetukset",
     "description": "Advanced option placeholder for uri option component"
   },
   "confirmContinueToBrowserSettingsTitle": {
@@ -4598,7 +4601,7 @@
     }
   },
   "copyFieldCipherName": {
-    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "message": "Kopioi $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
@@ -4754,16 +4757,16 @@
     "message": "Hanki mobiilisovellus"
   },
   "getTheMobileAppDesc": {
-    "message": "Access your passwords on the go with the Bitwarden mobile app."
+    "message": "Pääse käsiksi salasanoihisi, jos et pääse tietokoneen ääreen Bitwarden-mobiilisovelluksella."
   },
   "getTheDesktopApp": {
     "message": "Hanki työpöytäsovellus"
   },
   "getTheDesktopAppDesc": {
-    "message": "Access your vault without a browser, then set up unlock with biometrics to expedite unlocking in both the desktop app and browser extension."
+    "message": "Käytä holviasi ilman selainta ja aseta sitten lukitus biometriikan avulla nopeuttaaksesi lukituksen avaamista sekä työpöytäsovelluksessa että selaimessa."
   },
   "downloadFromBitwardenNow": {
-    "message": "Download from bitwarden.com now"
+    "message": "Lataa bitwarden.comista nyt"
   },
   "getItOnGooglePlay": {
     "message": "Hanki se Google Playstä"
@@ -5233,16 +5236,16 @@
     "message": "Biometrinen avaus ei ole tällä hetkellä käytettävissä tuntemattomasta syystä."
   },
   "unlockVault": {
-    "message": "Unlock your vault in seconds"
+    "message": "Avaa holvisi lukitus sekunneissa"
   },
   "unlockVaultDesc": {
-    "message": "You can customize your unlock and timeout settings to more quickly access your vault."
+    "message": "Voit muokata avaus- ja aikakatkaisuasetuksiasi päästäksesi holvisi nopeammin käsiksi."
   },
   "unlockPinSet": {
-    "message": "Unlock PIN set"
+    "message": "PIN asetettu"
   },
   "unlockWithBiometricSet": {
-    "message": "Unlock with biometrics set"
+    "message": "Biometrinen kirjautuminen otettu käyttöön"
   },
   "authenticating": {
     "message": "Todennetaan"
@@ -5464,7 +5467,7 @@
     "message": "Holvin asetukset"
   },
   "emptyVaultDescription": {
-    "message": "The vault protects more than just your passwords. Store secure logins, IDs, cards and notes securely here."
+    "message": "Holvi suojaa muutakin kuin salasanojasi. Säilytä kirjautumsitietojen lisäksi kortteja, muistiinpanoja ja henkilötietoja turvallisesti."
   },
   "introCarouselLabel": {
     "message": "Tervetuloa Bitwardeniin"
@@ -5500,7 +5503,7 @@
     "message": "Tuo olemassa olevat salasanat"
   },
   "emptyVaultNudgeBody": {
-    "message": "Use the importer to quickly transfer logins to Bitwarden without manually adding them."
+    "message": "Käytä tuojaa siirtääksesi kirjautumisia nopeasti Bitwardeniin lisäämättä niitä manuaalisesti."
   },
   "emptyVaultNudgeButton": {
     "message": "Tuo nyt"
@@ -5509,19 +5512,19 @@
     "message": "Tervetuloa holviisi!"
   },
   "hasItemsVaultNudgeBodyOne": {
-    "message": "Autofill items for the current page"
+    "message": "Täytä nykyisen sivun kohteet automaattisesti"
   },
   "hasItemsVaultNudgeBodyTwo": {
-    "message": "Favorite items for easy access"
+    "message": "Suosikkikohteita helppoon käyttöön"
   },
   "hasItemsVaultNudgeBodyThree": {
-    "message": "Search your vault for something else"
+    "message": "Etsi holvistasi jotain muuta"
   },
   "newLoginNudgeTitle": {
     "message": "Säästä aikaa automaattitäytöllä"
   },
   "newLoginNudgeBodyOne": {
-    "message": "Include a",
+    "message": "Sisällytä a",
     "description": "This is in multiple parts to allow for bold text in the middle of the sentence.",
     "example": "Include a Website so this login appears as an autofill suggestion."
   },
@@ -5531,63 +5534,63 @@
     "example": "Include a Website so this login appears as an autofill suggestion."
   },
   "newLoginNudgeBodyTwo": {
-    "message": "so this login appears as an autofill suggestion.",
+    "message": ", joten tämä kirjautuminen näkyy automaattisen täytön ehdotuksena.",
     "description": "This is in multiple parts to allow for bold text in the middle of the sentence.",
     "example": "Include a Website so this login appears as an autofill suggestion."
   },
   "newCardNudgeTitle": {
-    "message": "Seamless online checkout"
+    "message": "Saumaton verkkomaksaminen"
   },
   "newCardNudgeBody": {
-    "message": "With cards, easily autofill payment forms securely and accurately."
+    "message": "Korteilla voit helposti täyttää automaattisesti maksulomakkeet turvallisesti ja oikein."
   },
   "newIdentityNudgeTitle": {
-    "message": "Simplify creating accounts"
+    "message": "Yksinkertaista tilien luomista"
   },
   "newIdentityNudgeBody": {
-    "message": "With identities, quickly autofill long registration or contact forms."
+    "message": "Identiteettien avulla täytä pitkät rekisteröinti- tai yhteydenottolomakkeet nopeasti automaattisesti."
   },
   "newNoteNudgeTitle": {
-    "message": "Keep your sensitive data safe"
+    "message": "Pidä arkaluonteiset tietosi turvassa"
   },
   "newNoteNudgeBody": {
-    "message": "With notes, securely store sensitive data like banking or insurance details."
+    "message": "Muistiinpanojen avulla tallennetaan turvallisesti arkaluonteiset tiedot, kuten pankkitiedot."
   },
   "newSshNudgeTitle": {
-    "message": "Developer-friendly SSH access"
+    "message": "Kehittäjäystävällinen SSH-käyttö"
   },
   "newSshNudgeBodyOne": {
-    "message": "Store your keys and connect with the SSH agent for fast, encrypted authentication.",
+    "message": "Säilytä avaimet ja yhdistä SSH-agenttiin, niin saat nopean ja salatun todennuksen.",
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
   "newSshNudgeBodyTwo": {
-    "message": "Learn more about SSH agent",
+    "message": "Lue lisää SSH-agentista",
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
   "generatorNudgeTitle": {
-    "message": "Quickly create passwords"
+    "message": "Luo salasanat nopeasti"
   },
   "generatorNudgeBodyOne": {
-    "message": "Easily create strong and unique passwords by clicking on",
+    "message": "Luo helposti vahvoja ja uniikkeja salasanoja klikkaamalla",
     "description": "Two part message",
     "example": "Easily create strong and unique passwords by clicking on {icon} to help you keep your logins secure."
   },
   "generatorNudgeBodyTwo": {
-    "message": "to help you keep your logins secure.",
+    "message": "auttaakssi sinua pitämään kirjautumisesi turvassa.",
     "description": "Two part message",
     "example": "Easily create strong and unique passwords by clicking on {icon} to help you keep your logins secure."
   },
   "generatorNudgeBodyAria": {
-    "message": "Easily create strong and unique passwords by clicking on the Generate password button to help you keep your logins secure.",
+    "message": "Luo helposti vahvoja ja uniikkeja salasanoja klikkaamalla Luo salasana -painiketta. Sen avuilla voit pitää kirjautumisesi turvallisina.",
     "description": "Aria label for the body content of the generator nudge"
   },
   "noPermissionsViewPage": {
-    "message": "You do not have permissions to view this page. Try logging in with a different account."
+    "message": "Sinulla ei ole oikeuksia tähän sivuun. Yritä kirjautua sisään toisella tilillä."
   },
   "wasmNotSupported": {
-    "message": "WebAssembly is not supported on your browser or is not enabled. WebAssembly is required to use the Bitwarden app.",
+    "message": "WebAssembly ei ole tuettu selaimessasi tai se ei ole käytössä. WebAssembly vaaditaan, jotta voi käyttää Bitwardenia.",
     "description": "'WebAssembly' is a technical term and should not be translated."
   }
 }
diff --git a/apps/browser/src/_locales/fil/messages.json b/apps/browser/src/_locales/fil/messages.json
index 88610d6874c..dfc8d65cfd9 100644
--- a/apps/browser/src/_locales/fil/messages.json
+++ b/apps/browser/src/_locales/fil/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "Hanapin ang vault"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "edit": {
     "message": "I-edit"
   },
diff --git a/apps/browser/src/_locales/fr/messages.json b/apps/browser/src/_locales/fr/messages.json
index 680a19f33cc..c35f4ca4bb9 100644
--- a/apps/browser/src/_locales/fr/messages.json
+++ b/apps/browser/src/_locales/fr/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "Rechercher dans le coffre"
   },
+  "resetSearch": {
+    "message": "Réinitialiser la recherche"
+  },
   "edit": {
     "message": "Modifier"
   },
@@ -1063,7 +1066,7 @@
     "message": "Enregistrer"
   },
   "notificationViewAria": {
-    "message": "View $ITEMNAME$, opens in new window",
+    "message": "Afficher $ITEMNAME$, s'ouvre dans une nouvelle fenêtre",
     "placeholders": {
       "itemName": {
         "content": "$1"
@@ -1076,14 +1079,14 @@
     "description": "Aria label for the new item button in notification bar confirmation message when error is prompted"
   },
   "notificationEditTooltip": {
-    "message": "Edit before saving",
+    "message": "Modifier avant d'enregistrer",
     "description": "Tooltip and Aria label for edit button on cipher item"
   },
   "newNotification": {
     "message": "Nouvelle notification"
   },
   "labelWithNotification": {
-    "message": "$LABEL$: New notification",
+    "message": "$LABEL$: Nouvelle notification",
     "description": "Label for the notification with a new login suggestion.",
     "placeholders": {
       "label": {
@@ -1101,7 +1104,7 @@
     "description": "Shown to user after item is updated."
   },
   "selectItemAriaLabel": {
-    "message": "Select $ITEMTYPE$, $ITEMNAME$",
+    "message": "Sélectionner $ITEMTYPE$, $ITEMNAME$",
     "description": "Used by screen readers. $1 is the item type (like vault or folder), $2 is the selected item name.",
     "placeholders": {
       "itemType": {
@@ -1141,7 +1144,7 @@
     "description": "Message displayed when login details are successfully updated."
   },
   "loginUpdateTaskSuccess": {
-    "message": "Great job! You took the steps to make you and $ORGANIZATION$ more secure.",
+    "message": "Bon travail ! Vous avez pris les mesures pour rendre vous et $ORGANIZATION$ plus sécurisés.",
     "placeholders": {
       "organization": {
         "content": "$1"
@@ -1150,7 +1153,7 @@
     "description": "Shown to user after login is updated."
   },
   "loginUpdateTaskSuccessAdditional": {
-    "message": "Thank you for making $ORGANIZATION$ more secure. You have $TASK_COUNT$ more passwords to update.",
+    "message": "Merci d'avoir rendu $ORGANIZATION$ plus sécurisé. Il vous reste $TASK_COUNT$ mots de passe à mettre à jour.",
     "placeholders": {
       "organization": {
         "content": "$1"
@@ -1174,10 +1177,10 @@
     "description": "Detailed error message shown when saving login details fails."
   },
   "changePasswordWarning": {
-    "message": "After changing your password, you will need to log in with your new password. Active sessions on other devices will be logged out within one hour."
+    "message": "Après avoir changé votre mot de passe, vous devrez vous connecter avec votre nouveau mot de passe. Les sessions actives sur d'autres appareils seront déconnectées dans l'heure qui suit."
   },
   "accountRecoveryUpdateMasterPasswordSubtitle": {
-    "message": "Change your master password to complete account recovery."
+    "message": "Changez votre mot de passe principal pour finaliser la récupération de compte."
   },
   "enableChangedPasswordNotification": {
     "message": "Demander de mettre à jour un identifiant existant"
@@ -1372,7 +1375,7 @@
     "message": "Fonctionnalité indisponible"
   },
   "legacyEncryptionUnsupported": {
-    "message": "Legacy encryption is no longer supported. Please contact support to recover your account."
+    "message": "Le chiffrement hérité n'est plus pris en charge. Veuillez contacter le support pour récupérer votre compte."
   },
   "premiumMembership": {
     "message": "Adhésion Premium"
@@ -1606,10 +1609,10 @@
     "message": "Suggestions de saisie automatique"
   },
   "autofillSpotlightTitle": {
-    "message": "Easily find autofill suggestions"
+    "message": "Trouver facilement des suggestions de remplissage automatique"
   },
   "autofillSpotlightDesc": {
-    "message": "Turn off your browser's autofill settings, so they don't conflict with Bitwarden."
+    "message": "Désactivez les paramètres de remplissage automatique de votre navigateur pour qu'ils n'entrent pas en conflit avec Bitwarden."
   },
   "turnOffBrowserAutofill": {
     "message": "Désactiver le remplissage automatique de $BROWSER$",
@@ -1830,7 +1833,7 @@
     "message": "Code de sécurité"
   },
   "cardNumber": {
-    "message": "card number"
+    "message": "numéro de carte"
   },
   "ex": {
     "message": "ex."
@@ -2166,7 +2169,7 @@
     "message": "Définissez votre code PIN pour déverrouiller Bitwarden. Les paramètres relatifs à votre code PIN seront réinitialisés si vous vous déconnectez complètement de l'application."
   },
   "setPinCode": {
-    "message": "You can use this PIN to unlock Bitwarden. Your PIN will be reset if you ever fully log out of the application."
+    "message": "Vous pouvez utiliser ce code PIN pour déverrouiller Bitwarden. Votre code PIN sera réinitialisé si vous vous déconnectez complètement de l'application."
   },
   "pinRequired": {
     "message": "Le code PIN est requis."
@@ -2217,7 +2220,7 @@
     "message": "Utiliser ce mot de passe"
   },
   "useThisPassphrase": {
-    "message": "Use this passphrase"
+    "message": "Utilisez cette phrase secrète"
   },
   "useThisUsername": {
     "message": "Utiliser ce nom d'utilisateur"
@@ -2497,10 +2500,10 @@
     "message": "Une politique d'organisation a bloqué l'import d'éléments dans votre coffre personel."
   },
   "restrictCardTypeImport": {
-    "message": "Cannot import card item types"
+    "message": "Impossible d'importer des types d'éléments de carte"
   },
   "restrictCardTypeImportDesc": {
-    "message": "A policy set by 1 or more organizations prevents you from importing cards to your vaults."
+    "message": "Une politique définie par 1 ou plusieurs organisations vous empêche d'importer des cartes dans vos coffres."
   },
   "domainsTitle": {
     "message": "Domaines",
@@ -2584,7 +2587,7 @@
     }
   },
   "atRiskChangePrompt": {
-    "message": "Your password for this site is at-risk. $ORGANIZATION$ has requested that you change it.",
+    "message": "Votre mot de passe pour ce site est à risque. $ORGANIZATION$ vous a demandé de le modifier.",
     "placeholders": {
       "organization": {
         "content": "$1",
@@ -2594,7 +2597,7 @@
     "description": "Notification body when a login triggers an at-risk password change request and the change password domain is known."
   },
   "atRiskNavigatePrompt": {
-    "message": "$ORGANIZATION$ wants you to change this password because it is at-risk. Navigate to your account settings to change the password.",
+    "message": "$ORGANIZATION$ souhaite que vous changiez ce mot de passe car il est à risque. Accédez aux paramètres de votre compte pour modifier le mot de passe.",
     "placeholders": {
       "organization": {
         "content": "$1",
@@ -2632,14 +2635,14 @@
     "description": "Description of the review at-risk login slide on the at-risk password page carousel"
   },
   "reviewAtRiskLoginSlideImgAltPeriod": {
-    "message": "Illustration of a list of logins that are at-risk."
+    "message": "Illustration d'une liste de connexions à risque."
   },
   "generatePasswordSlideDesc": {
     "message": "Générez rapidement un mot de passe fort et unique grâce au menu de saisie automatique de Bitwarden sur le site à risque.",
     "description": "Description of the generate password slide on the at-risk password page carousel"
   },
   "generatePasswordSlideImgAltPeriod": {
-    "message": "Illustration of the Bitwarden autofill menu displaying a generated password."
+    "message": "Illustration du menu de remplissage automatique de Bitwarden affichant un mot de passe généré."
   },
   "updateInBitwarden": {
     "message": "Mettre à jour dans Bitwarden"
@@ -2649,7 +2652,7 @@
     "description": "Description of the update in Bitwarden slide on the at-risk password page carousel"
   },
   "updateInBitwardenSlideImgAltPeriod": {
-    "message": "Illustration of a Bitwarden’s notification prompting the user to update the login."
+    "message": "Illustration d'une notification de Bitwarden invitant l'utilisateur à mettre à jour la connexion."
   },
   "turnOnAutofill": {
     "message": "Activer la saisie automatique"
@@ -2723,7 +2726,7 @@
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "maxAccessCountReached": {
-    "message": "Max access count reached",
+    "message": "Nombre maximal d'accès atteint",
     "description": "This text will be displayed after a Send has been accessed the maximum amount of times."
   },
   "hideTextByDefault": {
@@ -2929,7 +2932,7 @@
     "message": "Vous devez vérifier votre courriel pour utiliser cette fonctionnalité. Vous pouvez vérifier votre courriel dans le coffre web."
   },
   "masterPasswordSuccessfullySet": {
-    "message": "Master password successfully set"
+    "message": "Mot de passe principal défini avec succès"
   },
   "updatedMasterPassword": {
     "message": "Mot de passe principal mis à jour"
@@ -3070,13 +3073,13 @@
     "message": "Aucun identifiant unique trouvé."
   },
   "removeMasterPasswordForOrganizationUserKeyConnector": {
-    "message": "A master password is no longer required for members of the following organization. Please confirm the domain below with your organization administrator."
+    "message": "Un mot de passe principal n’est plus requis pour les membres de l’organisation suivante. Veuillez confirmer le domaine ci-dessous auprès de l'administrateur de votre organisation."
   },
   "organizationName": {
     "message": "Nom de l'organisation"
   },
   "keyConnectorDomain": {
-    "message": "Key Connector domain"
+    "message": "Domaine du connecteur clé"
   },
   "leaveOrganization": {
     "message": "Quitter l'organisation"
@@ -3112,7 +3115,7 @@
     }
   },
   "exportingIndividualVaultWithAttachmentsDescription": {
-    "message": "Only the individual vault items including attachments associated with $EMAIL$ will be exported. Organization vault items will not be included",
+    "message": "Seuls les éléments individuels du coffre-fort, y compris les pièces jointes associées à $EMAIL$, seront exportés. Les éléments du coffre-fort de l'organisation ne seront pas inclus",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3464,7 +3467,7 @@
     "message": "Demande envoyée"
   },
   "loginRequestApprovedForEmailOnDevice": {
-    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "message": "Demande de connexion approuvée pour $EMAIL$ sur $DEVICE$",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3477,16 +3480,16 @@
     }
   },
   "youDeniedLoginAttemptFromAnotherDevice": {
-    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+    "message": "Vous avez refusé une tentative de connexion depuis un autre appareil. Si c'était vous, essayez de vous reconnecter avec l'appareil."
   },
   "device": {
-    "message": "Device"
+    "message": "Appareil"
   },
   "loginStatus": {
-    "message": "Login status"
+    "message": "Statut de connexion"
   },
   "masterPasswordChanged": {
-    "message": "Master password saved"
+    "message": "Mot de passe principal enregistré"
   },
   "exposedMasterPassword": {
     "message": "Mot de passe principal exposé"
@@ -3582,10 +3585,10 @@
     "message": "Mémorisez cet appareil pour faciliter les futures connexions"
   },
   "manageDevices": {
-    "message": "Manage devices"
+    "message": "Gérer les appareils"
   },
   "currentSession": {
-    "message": "Current session"
+    "message": "Session en cours"
   },
   "mobile": {
     "message": "Mobile",
@@ -3596,14 +3599,14 @@
     "description": "Browser extension/addon"
   },
   "desktop": {
-    "message": "Desktop",
+    "message": "Bureau",
     "description": "Desktop app"
   },
   "webVault": {
-    "message": "Web vault"
+    "message": "Coffre-fort Web"
   },
   "webApp": {
-    "message": "Web app"
+    "message": "Application web"
   },
   "cli": {
     "message": "CLI"
@@ -3613,22 +3616,22 @@
     "description": "Software Development Kit"
   },
   "requestPending": {
-    "message": "Request pending"
+    "message": "Demande en attente"
   },
   "firstLogin": {
-    "message": "First login"
+    "message": "Première connexion"
   },
   "trusted": {
-    "message": "Trusted"
+    "message": "Approuvé"
   },
   "needsApproval": {
-    "message": "Needs approval"
+    "message": "Requiert une approbation"
   },
   "devices": {
-    "message": "Devices"
+    "message": "Appareils"
   },
   "accessAttemptBy": {
-    "message": "Access attempt by $EMAIL$",
+    "message": "Tentative d'accès par $EMAIL$",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3637,28 +3640,28 @@
     }
   },
   "confirmAccess": {
-    "message": "Confirm access"
+    "message": "Confirmer l'accès"
   },
   "denyAccess": {
-    "message": "Deny access"
+    "message": "Refuser l'accès"
   },
   "time": {
-    "message": "Time"
+    "message": "Temps"
   },
   "deviceType": {
-    "message": "Device Type"
+    "message": "Type d'appareil"
   },
   "loginRequest": {
-    "message": "Login request"
+    "message": "Demande de connexion"
   },
   "thisRequestIsNoLongerValid": {
-    "message": "This request is no longer valid."
+    "message": "Cette demande n'est plus valide."
   },
   "areYouTryingToAccessYourAccount": {
-    "message": "Are you trying to access your account?"
+    "message": "Essayez-vous d'accéder à votre compte ?"
   },
   "logInConfirmedForEmailOnDevice": {
-    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "message": "Connexion confirmée pour $EMAIL$ sur $DEVICE$",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3671,16 +3674,16 @@
     }
   },
   "youDeniedALogInAttemptFromAnotherDevice": {
-    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+    "message": "Vous avez refusé une tentative de connexion depuis un autre appareil. Si c'était vraiment vous, essayez de vous reconnecter avec l'appareil."
   },
   "loginRequestHasAlreadyExpired": {
-    "message": "Login request has already expired."
+    "message": "La demande de connexion a déjà expiré."
   },
   "justNow": {
-    "message": "Just now"
+    "message": "À l’instant"
   },
   "requestedXMinutesAgo": {
-    "message": "Requested $MINUTES$ minutes ago",
+    "message": "Demandé $MINUTES$ il y a quelques minutes",
     "placeholders": {
       "minutes": {
         "content": "$1",
@@ -3710,10 +3713,10 @@
     "message": "Demander l'approbation de l'administrateur"
   },
   "unableToCompleteLogin": {
-    "message": "Unable to complete login"
+    "message": "Impossible de terminer la connexion"
   },
   "loginOnTrustedDeviceOrAskAdminToAssignPassword": {
-    "message": "You need to log in on a trusted device or ask your administrator to assign you a password."
+    "message": "Vous devez vous connecter sur un appareil de confiance ou demander à votre administrateur de vous attribuer un mot de passe."
   },
   "ssoIdentifierRequired": {
     "message": "Identifiant SSO de l'organisation requis."
@@ -3786,26 +3789,26 @@
     "message": "Ne pas faire confiance"
   },
   "organizationNotTrusted": {
-    "message": "Organization is not trusted"
+    "message": "L'organisation n'est pas fiable"
   },
   "emergencyAccessTrustWarning": {
-    "message": "For the security of your account, only confirm if you have granted emergency access to this user and their fingerprint matches what is displayed in their account"
+    "message": "Pour la sécurité de votre compte, ne confirmez que si vous avez accordé un accès d'urgence à cet utilisateur et que son empreinte digitale correspond à ce qui est affiché dans son compte"
   },
   "orgTrustWarning": {
-    "message": "For the security of your account, only proceed if you are a member of this organization, have account recovery enabled, and the fingerprint displayed below matches the organization's fingerprint."
+    "message": "Pour la sécurité de votre compte, ne procédez que si vous êtes membre de cette organisation, que la récupération de compte est activée et que l'empreinte digitale affichée ci-dessous correspond à l'empreinte digitale de l'organisation."
   },
   "orgTrustWarning1": {
-    "message": "This organization has an Enterprise policy that will enroll you in account recovery. Enrollment will allow organization administrators to change your password. Only proceed if you recognize this organization and the fingerprint phrase displayed below matches the organization's fingerprint."
+    "message": "Cette organisation dispose d’une politique d’entreprise qui vous inscrira au recouvrement de compte. L'inscription permettra aux administrateurs de l'organisation de modifier votre mot de passe. Ne continuez que si vous reconnaissez cette organisation et que la phrase d'empreinte digitale affichée ci-dessous correspond à l'empreinte digitale de l'organisation."
   },
   "trustUser": {
     "message": "Faire confiance à l'utilisateur"
   },
   "sendsTitleNoItems": {
-    "message": "Send sensitive information safely",
+    "message": "Envoyez des informations sensibles en toute sécurité",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "sendsBodyNoItems": {
-    "message": "Share files and data securely with anyone, on any platform. Your information will remain end-to-end encrypted while limiting exposure.",
+    "message": "Partagez des fichiers et des données en toute sécurité avec n'importe qui, sur n'importe quelle plateforme. Vos informations resteront cryptées de bout en bout tout en limitant l'exposition.",
     "description": "'Send' is a noun and the name of a feature called 'Bitwarden Send'. It should not be translated."
   },
   "inputRequired": {
@@ -4395,19 +4398,19 @@
     "description": "Label indicating the most common import formats"
   },
   "uriMatchDefaultStrategyHint": {
-    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "message": "La détection de correspondance d'URI est la manière dont Bitwarden identifie les suggestions de remplissage automatique.",
     "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
   },
   "regExAdvancedOptionWarning": {
-    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "message": "\"Expression régulière\" est une option avancée présentant un risque accru d’exposition des informations d’identification.",
     "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
   },
   "startsWithAdvancedOptionWarning": {
-    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "message": "\"Commence par\" est une option avancée présentant un risque accru d’exposition des informations d’identification.",
     "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
   },
   "uriMatchWarningDialogLink": {
-    "message": "More about match detection",
+    "message": "En savoir plus sur la détection des correspondances",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
   "uriAdvancedOption": {
@@ -4560,7 +4563,7 @@
     }
   },
   "viewItemTitleWithField": {
-    "message": "View item - $ITEMNAME$ - $FIELD$",
+    "message": "Afficher l'élément - $ITEMNAME$ - $FIELD$",
     "description": "Title for a link that opens a view for an item.",
     "placeholders": {
       "itemname": {
@@ -4584,7 +4587,7 @@
     }
   },
   "autofillTitleWithField": {
-    "message": "Autofill - $ITEMNAME$ - $FIELD$",
+    "message": "Remplissage automatique - $ITEMNAME$ - $FIELD$",
     "description": "Title for a button that autofills a login item.",
     "placeholders": {
       "itemname": {
@@ -4598,7 +4601,7 @@
     }
   },
   "copyFieldCipherName": {
-    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "message": "Copiez $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
@@ -4754,19 +4757,19 @@
     "message": "Télécharger l'application mobile"
   },
   "getTheMobileAppDesc": {
-    "message": "Access your passwords on the go with the Bitwarden mobile app."
+    "message": "Accédez à vos mots de passe en déplacement avec l'application mobile Bitwarden."
   },
   "getTheDesktopApp": {
     "message": "Télécharger l'application de bureau"
   },
   "getTheDesktopAppDesc": {
-    "message": "Access your vault without a browser, then set up unlock with biometrics to expedite unlocking in both the desktop app and browser extension."
+    "message": "Accédez à votre coffre-fort sans navigateur, puis configurez le déverrouillage avec la biométrie pour accélérer le déverrouillage à la fois dans l'application de bureau et dans l'extension du navigateur."
   },
   "downloadFromBitwardenNow": {
-    "message": "Download from bitwarden.com now"
+    "message": "Téléchargez maintenant depuis bitwarden.com"
   },
   "getItOnGooglePlay": {
-    "message": "Get it on Google Play"
+    "message": "Obtenez-le sur Google Play"
   },
   "downloadOnTheAppStore": {
     "message": "Télécharger depuis l’App Store"
@@ -5236,13 +5239,13 @@
     "message": "Déverouillez votre coffre en quelques secondes"
   },
   "unlockVaultDesc": {
-    "message": "You can customize your unlock and timeout settings to more quickly access your vault."
+    "message": "Vous pouvez personnaliser vos paramètres de déverrouillage et de délai d'attente pour accéder plus rapidement à votre coffre-fort."
   },
   "unlockPinSet": {
-    "message": "Unlock PIN set"
+    "message": "Déverrouiller l'ensemble de codes PIN"
   },
   "unlockWithBiometricSet": {
-    "message": "Unlock with biometrics set"
+    "message": "Déverrouiller avec l'ensemble biométrique"
   },
   "authenticating": {
     "message": "Authentification"
@@ -5256,7 +5259,7 @@
     "description": "Notification message for when a password has been regenerated"
   },
   "saveToBitwarden": {
-    "message": "Save to Bitwarden",
+    "message": "Enregistrer dans Bitwarden",
     "description": "Confirmation message for saving a login to Bitwarden"
   },
   "spaceCharacterDescriptor": {
@@ -5464,7 +5467,7 @@
     "message": "Options du coffre"
   },
   "emptyVaultDescription": {
-    "message": "The vault protects more than just your passwords. Store secure logins, IDs, cards and notes securely here."
+    "message": "Le coffre-fort protège bien plus que vos mots de passe. Stockez ici en toute sécurité des identifiants, des cartes d'identité, des cartes et des notes sécurisés."
   },
   "introCarouselLabel": {
     "message": "Bienvenue sur Bitwarden"
@@ -5473,34 +5476,34 @@
     "message": "Priorité à la sécurité"
   },
   "securityPrioritizedBody": {
-    "message": "Save logins, cards, and identities to your secure vault. Bitwarden uses zero-knowledge, end-to-end encryption to protect what’s important to you."
+    "message": "Enregistrez les identifiants, les cartes et les identités dans votre coffre-fort sécurisé. Bitwarden utilise un cryptage de bout en bout à connaissance nulle pour protéger ce qui est important pour vous."
   },
   "quickLogin": {
     "message": "Connexion rapide et facile"
   },
   "quickLoginBody": {
-    "message": "Set up biometric unlock and autofill to log into your accounts without typing a single letter."
+    "message": "Configurez le déverrouillage biométrique et le remplissage automatique pour vous connecter à vos comptes sans taper une seule lettre."
   },
   "secureUser": {
-    "message": "Level up your logins"
+    "message": "Améliorez vos connexions"
   },
   "secureUserBody": {
-    "message": "Use the generator to create and save strong, unique passwords for all your accounts."
+    "message": "Utilisez le générateur pour créer et enregistrer des mots de passe forts et uniques pour tous vos comptes."
   },
   "secureDevices": {
-    "message": "Your data, when and where you need it"
+    "message": "Vos données, quand et où vous en avez besoin"
   },
   "secureDevicesBody": {
-    "message": "Save unlimited passwords across unlimited devices with Bitwarden mobile, browser, and desktop apps."
+    "message": "Enregistrez des mots de passe illimités sur un nombre illimité d'appareils avec les applications mobiles, de navigateur et de bureau Bitwarden."
   },
   "nudgeBadgeAria": {
     "message": "1 notification"
   },
   "emptyVaultNudgeTitle": {
-    "message": "Import existing passwords"
+    "message": "Importer des mots de passe existants"
   },
   "emptyVaultNudgeBody": {
-    "message": "Use the importer to quickly transfer logins to Bitwarden without manually adding them."
+    "message": "Utilisez l'importateur pour transférer rapidement les connexions vers Bitwarden sans les ajouter manuellement."
   },
   "emptyVaultNudgeButton": {
     "message": "Importer maintenant"
@@ -5509,19 +5512,19 @@
     "message": "Bienvenue dans votre coffre !"
   },
   "hasItemsVaultNudgeBodyOne": {
-    "message": "Autofill items for the current page"
+    "message": "Remplissage automatique des éléments de la page actuelle"
   },
   "hasItemsVaultNudgeBodyTwo": {
-    "message": "Favorite items for easy access"
+    "message": "Articles préférés pour un accès facile"
   },
   "hasItemsVaultNudgeBodyThree": {
-    "message": "Search your vault for something else"
+    "message": "Recherchez autre chose dans votre coffre-fort"
   },
   "newLoginNudgeTitle": {
     "message": "Gagnez du temps avec le remplissage automatique"
   },
   "newLoginNudgeBodyOne": {
-    "message": "Include a",
+    "message": "Inclure un",
     "description": "This is in multiple parts to allow for bold text in the middle of the sentence.",
     "example": "Include a Website so this login appears as an autofill suggestion."
   },
@@ -5531,33 +5534,33 @@
     "example": "Include a Website so this login appears as an autofill suggestion."
   },
   "newLoginNudgeBodyTwo": {
-    "message": "so this login appears as an autofill suggestion.",
+    "message": "cette connexion apparaît donc comme une suggestion de remplissage automatique.",
     "description": "This is in multiple parts to allow for bold text in the middle of the sentence.",
     "example": "Include a Website so this login appears as an autofill suggestion."
   },
   "newCardNudgeTitle": {
-    "message": "Seamless online checkout"
+    "message": "Paiement en ligne transparent"
   },
   "newCardNudgeBody": {
-    "message": "With cards, easily autofill payment forms securely and accurately."
+    "message": "Avec les cartes, remplissez facilement et automatiquement les formulaires de paiement de manière sécurisée et précise."
   },
   "newIdentityNudgeTitle": {
-    "message": "Simplify creating accounts"
+    "message": "Simplifiez la création de comptes"
   },
   "newIdentityNudgeBody": {
-    "message": "With identities, quickly autofill long registration or contact forms."
+    "message": "Avec les identités, remplissez rapidement automatiquement les longs formulaires d'inscription ou de contact."
   },
   "newNoteNudgeTitle": {
-    "message": "Keep your sensitive data safe"
+    "message": "Gardez vos données sensibles en sécurité"
   },
   "newNoteNudgeBody": {
-    "message": "With notes, securely store sensitive data like banking or insurance details."
+    "message": "Avec des notes, stockez en toute sécurité des données sensibles telles que des informations bancaires ou d’assurance."
   },
   "newSshNudgeTitle": {
-    "message": "Developer-friendly SSH access"
+    "message": "Accès SSH convivial pour les développeurs"
   },
   "newSshNudgeBodyOne": {
-    "message": "Store your keys and connect with the SSH agent for fast, encrypted authentication.",
+    "message": "Stockez vos clés et connectez-vous à l'agent SSH pour une authentification rapide et cryptée.",
     "description": "Two part message",
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
@@ -5567,27 +5570,27 @@
     "example": "Store your keys and connect with the SSH agent for fast, encrypted authentication. Learn more about SSH agent"
   },
   "generatorNudgeTitle": {
-    "message": "Quickly create passwords"
+    "message": "Créez rapidement des mots de passe"
   },
   "generatorNudgeBodyOne": {
-    "message": "Easily create strong and unique passwords by clicking on",
+    "message": "Créez facilement des mots de passe forts et uniques en cliquant sur",
     "description": "Two part message",
     "example": "Easily create strong and unique passwords by clicking on {icon} to help you keep your logins secure."
   },
   "generatorNudgeBodyTwo": {
-    "message": "to help you keep your logins secure.",
+    "message": "pour vous aider à garder vos connexions sécurisées.",
     "description": "Two part message",
     "example": "Easily create strong and unique passwords by clicking on {icon} to help you keep your logins secure."
   },
   "generatorNudgeBodyAria": {
-    "message": "Easily create strong and unique passwords by clicking on the Generate password button to help you keep your logins secure.",
+    "message": "Créez facilement des mots de passe forts et uniques en cliquant sur le bouton Générer un mot de passe pour vous aider à sécuriser vos connexions.",
     "description": "Aria label for the body content of the generator nudge"
   },
   "noPermissionsViewPage": {
-    "message": "You do not have permissions to view this page. Try logging in with a different account."
+    "message": "Vous n'avez pas les autorisations pour consulter cette page. Essayez de vous connecter avec un autre compte."
   },
   "wasmNotSupported": {
-    "message": "WebAssembly is not supported on your browser or is not enabled. WebAssembly is required to use the Bitwarden app.",
+    "message": "WebAssembly n'est pas pris en charge sur votre navigateur ou n'est pas activé. WebAssembly est requis pour utiliser l'application Bitwarden.",
     "description": "'WebAssembly' is a technical term and should not be translated."
   }
 }
diff --git a/apps/browser/src/_locales/gl/messages.json b/apps/browser/src/_locales/gl/messages.json
index 559d0ca82b3..c7d47b61209 100644
--- a/apps/browser/src/_locales/gl/messages.json
+++ b/apps/browser/src/_locales/gl/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "Buscar na caixa forte"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "edit": {
     "message": "Editar"
   },
diff --git a/apps/browser/src/_locales/he/messages.json b/apps/browser/src/_locales/he/messages.json
index e4d959785bf..c13bcad10c6 100644
--- a/apps/browser/src/_locales/he/messages.json
+++ b/apps/browser/src/_locales/he/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "חיפוש בכספת"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "edit": {
     "message": "ערוך"
   },
diff --git a/apps/browser/src/_locales/hi/messages.json b/apps/browser/src/_locales/hi/messages.json
index 4fd2652d786..c6ae5e33c6b 100644
--- a/apps/browser/src/_locales/hi/messages.json
+++ b/apps/browser/src/_locales/hi/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "वॉल्ट खोजे"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "edit": {
     "message": "संपादन करें"
   },
diff --git a/apps/browser/src/_locales/hr/messages.json b/apps/browser/src/_locales/hr/messages.json
index 07c3e20cd18..97bd79f2950 100644
--- a/apps/browser/src/_locales/hr/messages.json
+++ b/apps/browser/src/_locales/hr/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "Pretraži trezor"
   },
+  "resetSearch": {
+    "message": "Ponovno postavljanje pretraživanja"
+  },
   "edit": {
     "message": "Uredi"
   },
@@ -1830,7 +1833,7 @@
     "message": "Sigurnosni kôd"
   },
   "cardNumber": {
-    "message": "card number"
+    "message": "broj kartice"
   },
   "ex": {
     "message": "npr."
@@ -3464,7 +3467,7 @@
     "message": "Zahtjev poslan"
   },
   "loginRequestApprovedForEmailOnDevice": {
-    "message": "Login request approved for $EMAIL$ on $DEVICE$",
+    "message": "Prijava za $EMAIL$ potvrđena na uređaju $DEVICE$",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3477,13 +3480,13 @@
     }
   },
   "youDeniedLoginAttemptFromAnotherDevice": {
-    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+    "message": "Odbijena je prijava na drugom uređaju. Ako si ovo stvarno ti, pokušaj se ponovno prijaviti uređajem."
   },
   "device": {
-    "message": "Device"
+    "message": "Uređaj"
   },
   "loginStatus": {
-    "message": "Login status"
+    "message": "Status prijave"
   },
   "masterPasswordChanged": {
     "message": "Glavna lozinka promijenjena"
@@ -3582,17 +3585,17 @@
     "message": "Zapamti ovaj uređaj kako bi buduće prijave bile brže"
   },
   "manageDevices": {
-    "message": "Manage devices"
+    "message": "Upravljaj uređajima"
   },
   "currentSession": {
-    "message": "Current session"
+    "message": "Trenutna sesija"
   },
   "mobile": {
-    "message": "Mobile",
+    "message": "Mobitel",
     "description": "Mobile app"
   },
   "extension": {
-    "message": "Extension",
+    "message": "Proširenje",
     "description": "Browser extension/addon"
   },
   "desktop": {
@@ -3600,10 +3603,10 @@
     "description": "Desktop app"
   },
   "webVault": {
-    "message": "Web vault"
+    "message": "Web trezor"
   },
   "webApp": {
-    "message": "Web app"
+    "message": "Web aplikacija"
   },
   "cli": {
     "message": "CLI"
@@ -3613,22 +3616,22 @@
     "description": "Software Development Kit"
   },
   "requestPending": {
-    "message": "Request pending"
+    "message": "Zahtjev u tijeku"
   },
   "firstLogin": {
-    "message": "First login"
+    "message": "Prva prijava"
   },
   "trusted": {
-    "message": "Trusted"
+    "message": "Pouzdan"
   },
   "needsApproval": {
-    "message": "Needs approval"
+    "message": "Zahtijeva odobrenje"
   },
   "devices": {
-    "message": "Devices"
+    "message": "Uređaji"
   },
   "accessAttemptBy": {
-    "message": "Access attempt by $EMAIL$",
+    "message": "$EMAIL$ pokušava pristupiti",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3637,28 +3640,28 @@
     }
   },
   "confirmAccess": {
-    "message": "Confirm access"
+    "message": "Potvrdi pristup"
   },
   "denyAccess": {
-    "message": "Deny access"
+    "message": "Odbij pristup"
   },
   "time": {
-    "message": "Time"
+    "message": "Vrijeme"
   },
   "deviceType": {
-    "message": "Device Type"
+    "message": "Vrsta uređaja"
   },
   "loginRequest": {
-    "message": "Login request"
+    "message": "Zahtjev za prijavu"
   },
   "thisRequestIsNoLongerValid": {
-    "message": "This request is no longer valid."
+    "message": "Ovaj zahtjev više nije valjan."
   },
   "areYouTryingToAccessYourAccount": {
-    "message": "Are you trying to access your account?"
+    "message": "Pokušavaš li pristupiti svom računu?"
   },
   "logInConfirmedForEmailOnDevice": {
-    "message": "Login confirmed for $EMAIL$ on $DEVICE$",
+    "message": "Prijava za $EMAIL$ potvrđena na uređaju $DEVICE$",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -3671,16 +3674,16 @@
     }
   },
   "youDeniedALogInAttemptFromAnotherDevice": {
-    "message": "You denied a login attempt from another device. If this really was you, try to log in with the device again."
+    "message": "Odbijena je prijava na drugom uređaju. Ako si ovo stvarno ti, pokušaj se ponovno prijaviti uređajem."
   },
   "loginRequestHasAlreadyExpired": {
-    "message": "Login request has already expired."
+    "message": "Zahtjev za prijavu je već istekao."
   },
   "justNow": {
-    "message": "Just now"
+    "message": "Upravo"
   },
   "requestedXMinutesAgo": {
-    "message": "Requested $MINUTES$ minutes ago",
+    "message": "Zatraženo prije $MINUTES$ minute/a",
     "placeholders": {
       "minutes": {
         "content": "$1",
@@ -4598,7 +4601,7 @@
     }
   },
   "copyFieldCipherName": {
-    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "message": "Kopiraj $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
diff --git a/apps/browser/src/_locales/hu/messages.json b/apps/browser/src/_locales/hu/messages.json
index b77d613da51..70c053ed148 100644
--- a/apps/browser/src/_locales/hu/messages.json
+++ b/apps/browser/src/_locales/hu/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "Keresés a széfben"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "edit": {
     "message": "Szerkesztés"
   },
diff --git a/apps/browser/src/_locales/id/messages.json b/apps/browser/src/_locales/id/messages.json
index 07e094e10bd..4ce58ee7618 100644
--- a/apps/browser/src/_locales/id/messages.json
+++ b/apps/browser/src/_locales/id/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "Cari brankas"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "edit": {
     "message": "Edit"
   },
diff --git a/apps/browser/src/_locales/it/messages.json b/apps/browser/src/_locales/it/messages.json
index 167cc51c0b1..164d46bcec5 100644
--- a/apps/browser/src/_locales/it/messages.json
+++ b/apps/browser/src/_locales/it/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "Cerca nella cassaforte"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "edit": {
     "message": "Modifica"
   },
diff --git a/apps/browser/src/_locales/ja/messages.json b/apps/browser/src/_locales/ja/messages.json
index 49d22bd065f..977d04ca28a 100644
--- a/apps/browser/src/_locales/ja/messages.json
+++ b/apps/browser/src/_locales/ja/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "保管庫を検索"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "edit": {
     "message": "編集"
   },
diff --git a/apps/browser/src/_locales/ka/messages.json b/apps/browser/src/_locales/ka/messages.json
index 1e75805638c..da70c255803 100644
--- a/apps/browser/src/_locales/ka/messages.json
+++ b/apps/browser/src/_locales/ka/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "Search vault"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "edit": {
     "message": "ჩასწორება"
   },
diff --git a/apps/browser/src/_locales/km/messages.json b/apps/browser/src/_locales/km/messages.json
index 9a6d9a4d316..f4c58318bc1 100644
--- a/apps/browser/src/_locales/km/messages.json
+++ b/apps/browser/src/_locales/km/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "Search vault"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "edit": {
     "message": "Edit"
   },
diff --git a/apps/browser/src/_locales/kn/messages.json b/apps/browser/src/_locales/kn/messages.json
index c7a821de19b..31b285f6780 100644
--- a/apps/browser/src/_locales/kn/messages.json
+++ b/apps/browser/src/_locales/kn/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "ವಾಲ್ಟ್ ಹುಡುಕಿ"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "edit": {
     "message": "ಎಡಿಟ್"
   },
diff --git a/apps/browser/src/_locales/ko/messages.json b/apps/browser/src/_locales/ko/messages.json
index 730d3eeda61..05043de2905 100644
--- a/apps/browser/src/_locales/ko/messages.json
+++ b/apps/browser/src/_locales/ko/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "보관함 검색"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "edit": {
     "message": "편집"
   },
diff --git a/apps/browser/src/_locales/lt/messages.json b/apps/browser/src/_locales/lt/messages.json
index 29815c9de82..5a4f0d8c419 100644
--- a/apps/browser/src/_locales/lt/messages.json
+++ b/apps/browser/src/_locales/lt/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "Ieškoti saugykloje"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "edit": {
     "message": "Keisti"
   },
diff --git a/apps/browser/src/_locales/lv/messages.json b/apps/browser/src/_locales/lv/messages.json
index ba43b1e5f44..81447182f26 100644
--- a/apps/browser/src/_locales/lv/messages.json
+++ b/apps/browser/src/_locales/lv/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "Meklēt glabātavā"
   },
+  "resetSearch": {
+    "message": "Atiestatīt meklēšanu"
+  },
   "edit": {
     "message": "Labot"
   },
diff --git a/apps/browser/src/_locales/ml/messages.json b/apps/browser/src/_locales/ml/messages.json
index a39fe07b2c6..11709a4611b 100644
--- a/apps/browser/src/_locales/ml/messages.json
+++ b/apps/browser/src/_locales/ml/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "വാൾട് തിരയുക"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "edit": {
     "message": "തിരുത്തുക"
   },
diff --git a/apps/browser/src/_locales/mr/messages.json b/apps/browser/src/_locales/mr/messages.json
index c79b8b322a7..e7d06e4d5f9 100644
--- a/apps/browser/src/_locales/mr/messages.json
+++ b/apps/browser/src/_locales/mr/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "तिजोरीत शोधा"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "edit": {
     "message": "Edit"
   },
diff --git a/apps/browser/src/_locales/my/messages.json b/apps/browser/src/_locales/my/messages.json
index 9a6d9a4d316..f4c58318bc1 100644
--- a/apps/browser/src/_locales/my/messages.json
+++ b/apps/browser/src/_locales/my/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "Search vault"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "edit": {
     "message": "Edit"
   },
diff --git a/apps/browser/src/_locales/nb/messages.json b/apps/browser/src/_locales/nb/messages.json
index 01353cac5e0..cf3589c4fc9 100644
--- a/apps/browser/src/_locales/nb/messages.json
+++ b/apps/browser/src/_locales/nb/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "Søk i hvelvet"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "edit": {
     "message": "Rediger"
   },
diff --git a/apps/browser/src/_locales/ne/messages.json b/apps/browser/src/_locales/ne/messages.json
index 9a6d9a4d316..f4c58318bc1 100644
--- a/apps/browser/src/_locales/ne/messages.json
+++ b/apps/browser/src/_locales/ne/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "Search vault"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "edit": {
     "message": "Edit"
   },
diff --git a/apps/browser/src/_locales/nl/messages.json b/apps/browser/src/_locales/nl/messages.json
index b5220861652..0c2bd31935f 100644
--- a/apps/browser/src/_locales/nl/messages.json
+++ b/apps/browser/src/_locales/nl/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "Kluis doorzoeken"
   },
+  "resetSearch": {
+    "message": "Zoekopdracht resetten"
+  },
   "edit": {
     "message": "Bewerken"
   },
diff --git a/apps/browser/src/_locales/nn/messages.json b/apps/browser/src/_locales/nn/messages.json
index 9a6d9a4d316..f4c58318bc1 100644
--- a/apps/browser/src/_locales/nn/messages.json
+++ b/apps/browser/src/_locales/nn/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "Search vault"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "edit": {
     "message": "Edit"
   },
diff --git a/apps/browser/src/_locales/or/messages.json b/apps/browser/src/_locales/or/messages.json
index 9a6d9a4d316..f4c58318bc1 100644
--- a/apps/browser/src/_locales/or/messages.json
+++ b/apps/browser/src/_locales/or/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "Search vault"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "edit": {
     "message": "Edit"
   },
diff --git a/apps/browser/src/_locales/pl/messages.json b/apps/browser/src/_locales/pl/messages.json
index aa8ab76d543..26f4cbaa5d6 100644
--- a/apps/browser/src/_locales/pl/messages.json
+++ b/apps/browser/src/_locales/pl/messages.json
@@ -26,7 +26,7 @@
     "message": "Nowy w Bitwarden?"
   },
   "logInWithPasskey": {
-    "message": "Logowaniem kluczem dostępu"
+    "message": "Logowanie kluczem dostępu"
   },
   "useSingleSignOn": {
     "message": "Użyj logowania jednokrotnego"
@@ -96,7 +96,7 @@
     "message": "Dołącz do organizacji"
   },
   "joinOrganizationName": {
-    "message": "Dołącz do $ORGANIZATIONNAME$",
+    "message": "Dołącz do organizacji $ORGANIZATIONNAME$",
     "placeholders": {
       "organizationName": {
         "content": "$1",
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "Szukaj w sejfie"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "edit": {
     "message": "Edytuj"
   },
@@ -741,10 +744,10 @@
     "message": "4 godziny"
   },
   "onLocked": {
-    "message": "Po zablokowaniu komputera"
+    "message": "Po zablokowaniu urządzenia"
   },
   "onRestart": {
-    "message": "Po restarcie przeglądarki"
+    "message": "Po uruchomieniu przeglądarki"
   },
   "never": {
     "message": "Nigdy"
@@ -860,7 +863,7 @@
     "message": "Wylogowano"
   },
   "loggedOutDesc": {
-    "message": "Zostałeś wylogowany z konta."
+    "message": "Wylogowano z konta."
   },
   "loginExpired": {
     "message": "Twoja sesja wygasła."
@@ -890,13 +893,13 @@
     "message": "Wykonaj poniższe kroki, aby zakończyć logowanie za pomocą klucza bezpieczeństwa."
   },
   "restartRegistration": {
-    "message": "Zacznij rejestrację od początku"
+    "message": "Rozpocznij rejestrację od początku"
   },
   "expiredLink": {
     "message": "Link wygasł"
   },
   "pleaseRestartRegistrationOrTryLoggingIn": {
-    "message": "Zrestartuj rejestrację lub spróbuj się zalogować."
+    "message": "Rozpocznij rejestrację od początku lub spróbuj się zalogować."
   },
   "youMayAlreadyHaveAnAccount": {
     "message": "Możesz mieć już konto"
@@ -926,7 +929,7 @@
     "message": "Logowanie dwustopniowe zwiększa bezpieczeństwo konta, wymagając weryfikacji logowania za pomocą innego urządzenia, takiego jak klucz bezpieczeństwa, aplikacja uwierzytelniająca, wiadomość SMS, połączenie telefoniczne lub wiadomość e-mail. Logowanie dwustopniowe możesz skonfigurować w sejfie internetowym bitwarden.com. Czy chcesz przejść do strony?"
   },
   "twoStepLoginConfirmationContent": {
-    "message": "Spraw, aby Twoje konto było bezpieczniejsze poprzez skonfigurowanie dwustopniowego logowania w aplikacji internetowej Bitwarden."
+    "message": "Zwiększ bezpieczeństwo konta, konfigurując logowanie dwustopniowe w aplikacji internetowej Bitwarden."
   },
   "twoStepLoginConfirmationTitle": {
     "message": "Przejść do aplikacji internetowej?"
@@ -1031,7 +1034,7 @@
     "message": "Pokaż karty na stronie głównej"
   },
   "showCardsCurrentTabDesc": {
-    "message": "Pokaż elementy karty na stronie głównej, aby ułatwić autouzupełnianie."
+    "message": "Wyświetla karty na głównej karcie sejfu."
   },
   "showIdentitiesInVaultViewV2": {
     "message": "Pokazuj zawsze tożsamości w sugestiach autouzupełniania"
@@ -1040,7 +1043,7 @@
     "message": "Pokaż tożsamości na stronie głównej"
   },
   "showIdentitiesCurrentTabDesc": {
-    "message": "Pokaż elementy tożsamości na stronie głównej, aby ułatwić autouzupełnianie."
+    "message": "Wyświetla tożsamości na głównej karcie sejfu."
   },
   "clickToAutofillOnVault": {
     "message": "Kliknij na elementy, aby je uzupełnić"
@@ -1129,7 +1132,7 @@
     "description": "Prompt asking the user if they want to save their login details."
   },
   "updateLogin": {
-    "message": "Zaktualizuj obecne dane logowania",
+    "message": "Zaktualizuj dane logowania",
     "description": "Prompt asking the user if they want to update an existing login entry."
   },
   "loginSaveSuccess": {
@@ -1287,7 +1290,7 @@
     "message": "Potwierdź eksportowanie sejfu"
   },
   "exportWarningDesc": {
-    "message": "Plik zawiera dane sejfu w niezaszyfrowanym formacie. Nie powinieneś go przechowywać, ani przesyłać poprzez niezabezpieczone kanały (takie jak poczta e-mail). Skasuj go natychmiast po użyciu."
+    "message": "Plik zawiera dane sejfu w niezaszyfrowanym formacie. Nie należy go przechowywać ani przesyłać poprzez niezabezpieczone kanały (takie jak poczta e-mail). Usuń go natychmiast po użyciu."
   },
   "encExportKeyWarningDesc": {
     "message": "Dane eksportu zostaną zaszyfrowane za pomocą klucza szyfrowania konta. Jeśli kiedykolwiek zmienisz ten klucz, wyeksportuj dane ponownie, ponieważ nie będziesz w stanie odszyfrować tego pliku."
@@ -1468,7 +1471,7 @@
     "message": "Limit czasu uwierzytelniania"
   },
   "authenticationSessionTimedOut": {
-    "message": "Upłynął limit czasu uwierzytelniania. Uruchom ponownie proces logowania."
+    "message": "Upłynął limit czasu uwierzytelniania. Zaloguj się ponownie."
   },
   "verificationCodeEmailSent": {
     "message": "Wiadomość weryfikacyjna została wysłana na adres $EMAIL$.",
@@ -1508,10 +1511,10 @@
     "message": "Logowanie jest niedostępne"
   },
   "noTwoStepProviders": {
-    "message": "Konto posiada włączoną opcję logowania dwustopniowego, jednak ta przeglądarka nie wspiera żadnego ze skonfigurowanych mechanizmów autoryzacji dwustopniowej."
+    "message": "Konto jest zabezpieczone logowaniem dwustopniowym, ale żadna ze skonfigurowanych metod nie jest obsługiwana w tej przeglądarce."
   },
   "noTwoStepProviders2": {
-    "message": "Proszę użyć obsługiwanej przeglądarki (takiej jak Chrome) i/lub dodać dodatkowych dostawców, którzy są lepiej wspierani przez przeglądarki internetowe (np. aplikacja uwierzytelniająca)."
+    "message": "Użyj obsługiwanej przeglądarki (np. Chrome) lub dodaj dodatkowe opcje logowania dwustopniowego, które są obsługiwane na różnych przeglądarkach (takie jak aplikacja uwierzytelniająca)."
   },
   "twoStepOptions": {
     "message": "Opcje logowania dwustopniowego"
@@ -1609,7 +1612,7 @@
     "message": "Łatwe wyszukiwanie sugestii autouzupełniania"
   },
   "autofillSpotlightDesc": {
-    "message": "Wyłącz ustawienia autouzupełniania swojej przeglądarki, aby nie kolidowały z Bitwarden."
+    "message": "Wyłącz autouzupełnianie przeglądarki, aby uniknąć konfliktów z Bitwarden."
   },
   "turnOffBrowserAutofill": {
     "message": "Wyłącz autouzupełnianie $BROWSER$",
@@ -1645,15 +1648,15 @@
     "message": "Edytuj ustawienia przeglądarki."
   },
   "autofillOverlayVisibilityOff": {
-    "message": "Wył.",
+    "message": "Wyłączone",
     "description": "Overlay setting select option for disabling autofill overlay"
   },
   "autofillOverlayVisibilityOnFieldFocus": {
-    "message": "Gdy pole jest zaznaczone",
+    "message": "Po kliknięciu pola",
     "description": "Overlay appearance select option for showing the field on focus of the input element"
   },
   "autofillOverlayVisibilityOnButtonClick": {
-    "message": "Gdy wybrano ikonę autouzupełniania",
+    "message": "Po kliknięciu ikony autouzupełniania",
     "description": "Overlay appearance select option for showing the field on click of the overlay icon"
   },
   "enableAutoFillOnPageLoadSectionTitle": {
@@ -1971,7 +1974,7 @@
     "message": "Wyczyść historię generatora"
   },
   "cleargGeneratorHistoryDescription": {
-    "message": "Jeśli zatwierdzisz, wszystkie wygenerowane hasła zostaną usunięte z historii generatora. Czy chcesz kontynuować mimo to?"
+    "message": "Wszystkie wpisy zostaną trwale usunięte z historii generatora. Czy na pewno chcesz kontynuować?"
   },
   "back": {
     "message": "Wstecz"
@@ -2102,7 +2105,7 @@
     "message": "Usuń"
   },
   "default": {
-    "message": "Domyślne"
+    "message": "Domyślna"
   },
   "dateUpdated": {
     "message": "Zaktualizowano",
@@ -2163,10 +2166,10 @@
     "message": "Ustaw kod PIN"
   },
   "setYourPinCode": {
-    "message": "Ustaw kod PIN do odblokowywania aplikacji Bitwarden. Ustawienia odblokowywania kodem PIN zostaną zresetowane po wylogowaniu."
+    "message": "Ustaw kod PIN do odblokowania aplikacji Bitwarden. Ustawienia kodu PIN zostaną zresetowane po wylogowaniu."
   },
   "setPinCode": {
-    "message": "Możesz użyć tego kodu PIN, aby odblokować Bitwarden. Twój kod PIN zostanie zresetowany, jeśli kiedykolwiek wylogujesz się z aplikacji."
+    "message": "Możesz użyć tego kodu PIN do odblokowania aplikacji Bitwarden. Kod PIN zostanie zresetowany po wylogowaniu."
   },
   "pinRequired": {
     "message": "Kod PIN jest wymagany."
@@ -2193,7 +2196,7 @@
     "message": "Zablokuj hasłem głównym po uruchomieniu przeglądarki"
   },
   "lockWithMasterPassOnRestart1": {
-    "message": "Wymagaj hasła głównego przy ponownym uruchomieniu przeglądarki"
+    "message": "Wymagaj hasła głównego po uruchomieniu przeglądarki"
   },
   "selectOneCollection": {
     "message": "Musisz wybrać co najmniej jedną kolekcję."
@@ -2230,7 +2233,7 @@
     "description": "This will be used as part of a larger sentence, broken up to include the generator icon. The full sentence will read 'Use the generator [GENERATOR_ICON] to create a strong unique password'"
   },
   "useGeneratorHelpTextPartTwo": {
-    "message": ", aby utworzyć mocne unikalne hasło",
+    "message": ", aby utworzyć silne i unikalne hasło",
     "description": "This will be used as part of a larger sentence, broken up to include the generator icon. The full sentence will read 'Use the generator [GENERATOR_ICON] to create a strong unique password'"
   },
   "vaultCustomization": {
@@ -2296,10 +2299,10 @@
     "message": "Czy chcesz uzupełnić dane logowania?"
   },
   "autofillIframeWarning": {
-    "message": "Formularz jest hostowany przez inną domenę niż zapisany adres URI dla tego loginu. Wybierz OK, aby i tak automatycznie wypełnić lub anuluj, aby zatrzymać."
+    "message": "Formularz jest hostowany przez inną domenę niż URI zapisanych danych logowania. Kliknij OK, aby uzupełnić dane logowania lub Anuluj, aby zatrzymać."
   },
   "autofillIframeWarningTip": {
-    "message": "Aby zapobiec temu ostrzeżeniu w przyszłości, zapisz ten URI, $HOSTNAME$, dla tej witryny.",
+    "message": "Aby uniknąć ostrzeżenia w przyszłości, zapisz URI $HOSTNAME$ w danych logowania.",
     "placeholders": {
       "hostname": {
         "content": "$1",
@@ -2419,7 +2422,7 @@
     "message": "Uruchom aplikację desktopową Bitwarden"
   },
   "startDesktopDesc": {
-    "message": "Aplikacja desktopowa Bitwarden, przed odblokowaniem danymi biometrycznymi, musi zostać ponownie uruchomiona."
+    "message": "Aplikacja desktopowa Bitwarden musi zostać uruchomiona przed odblokowaniem za pomocą biometrii."
   },
   "errorEnableBiometricTitle": {
     "message": "Nie można włączyć biometrii"
@@ -2434,7 +2437,7 @@
     "message": "Komunikacja z aplikacją desktopową została przerwana"
   },
   "nativeMessagingWrongUserDesc": {
-    "message": "W aplikacji desktopowej jesteś zalogowany na inne konto. Upewnij się, że w obu aplikacjach jesteś zalogowany na to same konto."
+    "message": "Aplikacja desktopowa jest zalogowana na inne konto. Upewnij się, że obie aplikacje są zalogowane na to samo konto."
   },
   "nativeMessagingWrongUserTitle": {
     "message": "Konto jest niezgodne"
@@ -2443,7 +2446,7 @@
     "message": "Klucz biometrii jest nieprawidłowy"
   },
   "nativeMessagingWrongUserKeyDesc": {
-    "message": "Odblokowanie biometryczne się nie powiodło. Sekretny klucz biometryczny nie odblokował sejfu. Spróbuj skonfigurować biometrię ponownie."
+    "message": "Odblokowanie biometrią nie powiodło się. Klucz biometrii nie odblokował sejfu. Spróbuj ponownie skonfigurować biometrię."
   },
   "biometricsNotEnabledTitle": {
     "message": "Biometria jest wyłączona"
@@ -2485,7 +2488,7 @@
     "message": "Wystąpił błąd żądania uprawnienia"
   },
   "nativeMessaginPermissionSidebarDesc": {
-    "message": "Ta operacja nie może zostać wykonana na pasku bocznym. Spróbuj ponownie w nowym oknie."
+    "message": "Akcji nie można wykonać na pasku bocznym. Otwórz rozszerzenie w oknie."
   },
   "personalOwnershipSubmitError": {
     "message": "Ze względu na zasadę organizacji, nie możesz zapisywać elementów w osobistym sejfie. Zmień właściciela elementu na organizację i wybierz jedną z dostępnych kolekcji."
@@ -2494,7 +2497,7 @@
     "message": "Zasada organizacji ma wpływ na opcję własności elementów."
   },
   "personalOwnershipPolicyInEffectImports": {
-    "message": "Polityka organizacji zablokowała importowanie elementów do Twojego sejfu."
+    "message": "Zasada organizacji zablokowała importowanie elementów do osobistego sejfu."
   },
   "restrictCardTypeImport": {
     "message": "Nie można zaimportować karty"
@@ -2645,7 +2648,7 @@
     "message": "Zaktualizuj w Bitwarden"
   },
   "updateInBitwardenSlideDesc": {
-    "message": "Bitwarden poprosi Cię o aktualizację hasła w menedżerze haseł.",
+    "message": "Bitwarden zaproponuje aktualizację hasła w menedżerze haseł.",
     "description": "Description of the update in Bitwarden slide on the at-risk password page carousel"
   },
   "updateInBitwardenSlideImgAltPeriod": {
@@ -2887,7 +2890,7 @@
     "message": "Aby wybrać plik, otwórz rozszerzenie w oknie."
   },
   "popOut": {
-    "message": "Odepnij"
+    "message": "Otwórz w nowym oknie"
   },
   "sendFileCalloutHeader": {
     "message": "Zanim zaczniesz"
@@ -2960,7 +2963,7 @@
     "description": "Used as a message within the notification bar when no folders are found"
   },
   "orgPermissionsUpdatedMustSetPassword": {
-    "message": "Uprawnienia w Twojej organizacji zostały zaktualizowane, musisz teraz ustawić hasło główne.",
+    "message": "Uprawnienia organizacji zostały zaktualizowane. Ustaw hasło główne.",
     "description": "Used as a card title description on the set password page to explain why the user is there"
   },
   "orgRequiresYouToSetPassword": {
@@ -3243,7 +3246,7 @@
     }
   },
   "forwarderGeneratedBy": {
-    "message": "Wygenerowane przez Bitwarden.",
+    "message": "Wygenerowano przez Bitwarden.",
     "description": "Displayed with the address on the forwarding service's configuration screen."
   },
   "forwarderGeneratedByWithWebsite": {
@@ -3365,7 +3368,7 @@
     "message": "Klucz API"
   },
   "ssoKeyConnectorError": {
-    "message": "Błąd serwera Key Connector: upewnij się, że serwer Key Connector jest dostępny i działa poprawnie."
+    "message": "Wystąpił błąd serwera Key Connector. Upewnij się, że serwer jest dostępny i działa poprawnie."
   },
   "premiumSubcriptionRequired": {
     "message": "Wymagana jest subskrypcja premium"
@@ -3395,7 +3398,7 @@
     "message": "Inny dostawca"
   },
   "thirdPartyServerMessage": {
-    "message": "Połączono z implementacją serwera innego dostawcy, $SERVERNAME$. Zweryfikuj błędy za pomocą oficjalnego serwera lub zgłoś je serwerowi innego dostawcy.",
+    "message": "Połączono z implementacją serwera innego dostawcy $SERVERNAME$. Zweryfikuj błędy za pomocą oficjalnego serwera lub zgłoś je serwerowi.",
     "placeholders": {
       "servername": {
         "content": "$1",
@@ -3428,7 +3431,7 @@
     "message": "Unikalny identyfikator konta"
   },
   "fingerprintMatchInfo": {
-    "message": "Upewnij się, że sejf jest odblokowany, a unikalny identyfikator konta pasuje do drugiego urządzenia."
+    "message": "Upewnij się, że sejf jest odblokowany, a identyfikator konta pasuje do drugiego urządzenia."
   },
   "resendNotification": {
     "message": "Wyślij ponownie powiadomienie"
@@ -3492,7 +3495,7 @@
     "message": "Hasło główne zostało ujawnione"
   },
   "exposedMasterPasswordDesc": {
-    "message": "Hasło ujawnione w wyniku naruszenia ochrony danych. Użyj unikalnego hasła, aby chronić swoje konto. Czy na pewno chcesz użyć ujawnionego hasła?"
+    "message": "Hasło zostało ujawnione w wycieku danych. Użyj unikalnego hasła, aby chronić konto. Czy na pewno chcesz użyć ujawnionego hasła?"
   },
   "weakAndExposedMasterPassword": {
     "message": "Hasło główne jest słabe i ujawnione"
@@ -3501,7 +3504,7 @@
     "message": "Hasło jest słabe i zostało ujawnione w wycieku danych. Użyj mocnego i unikalnego hasła, aby chronić konto. Czy na pewno chcesz użyć tego hasła?"
   },
   "checkForBreaches": {
-    "message": "Sprawdź znane naruszenia ochrony danych tego hasła"
+    "message": "Sprawdź hasło w znanych wyciekach danych"
   },
   "important": {
     "message": "Ważne:"
@@ -3622,7 +3625,7 @@
     "message": "Zaufane"
   },
   "needsApproval": {
-    "message": "Wymagane potwierdzenie"
+    "message": "Potwierdzenie jest wymagane"
   },
   "devices": {
     "message": "Urządzenia"
@@ -3680,7 +3683,7 @@
     "message": "Teraz"
   },
   "requestedXMinutesAgo": {
-    "message": "Poproszono $MINUTES$ min temu",
+    "message": "$MINUTES$ min temu",
     "placeholders": {
       "minutes": {
         "content": "$1",
@@ -3689,10 +3692,10 @@
     }
   },
   "deviceApprovalRequired": {
-    "message": "Wymagane zatwierdzenie urządzenia. Wybierz opcję zatwierdzenia poniżej:"
+    "message": "Potwierdzenie urządzenia jest wymagane. Wybierz opcję:"
   },
   "deviceApprovalRequiredV2": {
-    "message": "Wymagane zatwierdzenie urządzenia"
+    "message": "Potwierdzenie urządzenia jest wymagane"
   },
   "selectAnApprovalOptionBelow": {
     "message": "Wybierz opcję potwierdzenia"
@@ -3725,7 +3728,7 @@
     "message": "Sprawdź swoją pocztę e-mail"
   },
   "followTheLinkInTheEmailSentTo": {
-    "message": "Kliknij łącze w wiadomości e-mail wysłanej do"
+    "message": "Kliknij link w wiadomości wysłanej na adres"
   },
   "andContinueCreatingYourAccount": {
     "message": "i kontynuuj tworzenie konta."
@@ -3792,7 +3795,7 @@
     "message": "Dla bezpieczeństwa Twojego konta potwierdź tylko, jeśli przyznano temu użytkownikowi dostęp awaryjny i jego odcisk palca pasuje do tego, co widnieje na jego koncie"
   },
   "orgTrustWarning": {
-    "message": "Dla zapewnienia bezpieczeństwa konta kontynuuj tylko wtedy, gdy jesteś członkiem tej organizacji, włączono odzyskiwanie konta, a odcisk palca wyświetlany poniżej pasuje do odcisku palca organizacji."
+    "message": "Kontynuuj tylko wtedy, gdy jesteś członkiem organizacji, masz włączone odzyskiwanie konta, a unikalny identyfikator pasuje do organizacji."
   },
   "orgTrustWarning1": {
     "message": "Zasada organizacji pozwala administratorom organizacji na zmianę Twojego hasła. Kontynuuj tylko wtedy, gdy rozpoznajesz organizację, a unikalny identyfikator pasuje do organizacji."
@@ -3958,7 +3961,7 @@
     "description": "Page title in overlay"
   },
   "unlockYourAccountToViewMatchingLogins": {
-    "message": "Odblokuj swoje konto, aby wyświetlić pasujące elementy",
+    "message": "Odblokuj konto, aby zobaczy pasujące dane logowania",
     "description": "Text to display in overlay when the account is locked."
   },
   "unlockYourAccountToViewAutofillSuggestions": {
@@ -3970,7 +3973,7 @@
     "description": "Button text to display in overlay when the account is locked."
   },
   "unlockAccountAria": {
-    "message": "Odblokuj swoje konto, otwiera się w nowym oknie",
+    "message": "Odblokuj konto, otwiera się w nowym oknie",
     "description": "Screen reader text (aria-label) for unlock account button in overlay"
   },
   "totpCodeAria": {
@@ -3978,7 +3981,7 @@
     "description": "Aria label for the totp code displayed in the inline menu for autofill"
   },
   "totpSecondsSpanAria": {
-    "message": "Pozostały czas do wygaśnięcia bieżącego TOTP",
+    "message": "Pozostały czas do wygaśnięcia kodu TOTP",
     "description": "Aria label for the totp seconds displayed in the inline menu for autofill"
   },
   "fillCredentialsFor": {
@@ -4006,7 +4009,7 @@
     "description": "Button text to display within inline menu when there are no matching items on a login field"
   },
   "addNewLoginItemAria": {
-    "message": "Dodaj nowe dane logowania do sejfu, otwiera się w nowym oknie",
+    "message": "Dodaj nowe dane logowania, otwiera się w nowym oknie",
     "description": "Screen reader text (aria-label) for new login button within inline menu"
   },
   "newCard": {
@@ -4014,7 +4017,7 @@
     "description": "Button text to display within inline menu when there are no matching items on a credit card field"
   },
   "addNewCardItemAria": {
-    "message": "Dodaj nową kartę do sejfu, otwiera się w nowym oknie",
+    "message": "Dodaj nową kartę, otwiera się w nowym oknie",
     "description": "Screen reader text (aria-label) for new card button within inline menu"
   },
   "newIdentity": {
@@ -4022,7 +4025,7 @@
     "description": "Button text to display within inline menu when there are no matching items on an identity field"
   },
   "addNewIdentityItemAria": {
-    "message": "Dodaj nową tożsamość do sejfu, otwiera się w nowym oknie",
+    "message": "Dodaj nową tożsamość, otwiera się w nowym oknie",
     "description": "Screen reader text (aria-label) for new identity button within inline menu"
   },
   "bitwardenOverlayMenuAvailable": {
@@ -4118,13 +4121,13 @@
     "message": "Konto wymaga logowania dwustopniowego Duo."
   },
   "popoutExtension": {
-    "message": "Otwórz rozszerzenie w nowym oknie"
+    "message": "Otwórz rozszerzenie w oknie"
   },
   "launchDuo": {
     "message": "Uruchom Duo"
   },
   "importFormatError": {
-    "message": "Dane nie są poprawnie sformatowane. Sprawdź importowany plik i spróbuj ponownie."
+    "message": "Dane nie są prawidłowo sformatowane. Sprawdź plik i spróbuj ponownie."
   },
   "importNothingError": {
     "message": "Nic nie zostało zaimportowane."
@@ -4133,7 +4136,7 @@
     "message": "Wystąpił błąd podczas odszyfrowywania pliku. Klucz szyfrowania nie pasuje do klucza użytego podczas eksportowania danych."
   },
   "invalidFilePassword": {
-    "message": "Hasło do pliku jest nieprawidłowe. Użyj hasła które podano przy tworzeniu pliku eksportu."
+    "message": "Hasło pliku jest nieprawidłowe. Użyj prawidłowego hasła."
   },
   "destination": {
     "message": "Miejsce docelowe"
@@ -4148,7 +4151,7 @@
     "message": "Wybierz kolekcję"
   },
   "importTargetHint": {
-    "message": "Wybierz tę opcję, jeśli chcesz, aby zawartość zaimportowanego pliku została przeniesiona do $DESTINATION$",
+    "message": "Wybierz tę opcję, jeśli chcesz przenieść dane do $DESTINATION$",
     "description": "Located as a hint under the import target. Will be appended by either folder or collection, depending if the user is importing into an individual or an organizational vault.",
     "placeholders": {
       "destination": {
@@ -4189,7 +4192,7 @@
     "message": "Potwierdź importowanie sejfu"
   },
   "confirmVaultImportDesc": {
-    "message": "Plik jest chroniony hasłem. Wprowadź hasło pliku, aby zaimportować dane."
+    "message": "Plik jest chroniony hasłem. Wpisz hasło pliku, aby zaimportować dane."
   },
   "confirmFilePassword": {
     "message": "Potwierdź hasło pliku"
@@ -4246,7 +4249,7 @@
     "message": "Wybierz dane logowania, do których przypisać klucz dostępu"
   },
   "chooseCipherForPasskeyAuth": {
-    "message": "Wybierz klucz dostępu, żeby się zalogować"
+    "message": "Wybierz klucz dostępu"
   },
   "passkeyItem": {
     "message": "Element klucza dostępu"
@@ -4261,16 +4264,16 @@
     "message": "Funkcja nie jest jeszcze obsługiwana"
   },
   "yourPasskeyIsLocked": {
-    "message": "Wymagane uwierzytelnienie, aby używać klucza dostępu. Sprawdź swoją tożsamość, aby kontynuować."
+    "message": "Aby użyć klucza dostępu, wymagane jest uwierzytelnienie. Zweryfikuj swoją tożsamość."
   },
   "multifactorAuthenticationCancelled": {
-    "message": "Uwierzytelnianie wieloskładnikowe zostało anulowane"
+    "message": "Logowanie dwustopniowe zostało anulowane"
   },
   "noLastPassDataFound": {
     "message": "Nie znaleziono danych LastPass"
   },
   "incorrectUsernameOrPassword": {
-    "message": "Nieprawidłowa nazwa użytkownika lub hasło"
+    "message": "Nazwa użytkownika lub hasło są nieprawidłowe"
   },
   "incorrectPassword": {
     "message": "Hasło jest nieprawidłowe"
@@ -4282,7 +4285,7 @@
     "message": "Kod PIN jest nieprawidłowy"
   },
   "multifactorAuthenticationFailed": {
-    "message": "Uwierzytelnianie wieloskładnikowe nie powiodło się"
+    "message": "Logowanie dwustopniowe nie powiodło się"
   },
   "includeSharedFolders": {
     "message": "Dołącz udostępnione foldery"
@@ -4294,10 +4297,10 @@
     "message": "Importowanie konta..."
   },
   "lastPassMFARequired": {
-    "message": "Wymagane jest uwierzytelnianie wieloskładnikowe LastPass"
+    "message": "Logowanie dwustopniowe LastPass jest wymagane"
   },
   "lastPassMFADesc": {
-    "message": "Wprowadź jednorazowy kod z aplikacji uwierzytelniającej"
+    "message": "Wpisz jednorazowy kod z aplikacji uwierzytelniającej"
   },
   "lastPassOOBDesc": {
     "message": "Zatwierdź żądanie logowania w aplikacji uwierzytelniającej lub wprowadź jednorazowe hasło."
@@ -4309,7 +4312,7 @@
     "message": "Hasło główne LastPass"
   },
   "lastPassAuthRequired": {
-    "message": "Wymagane uwierzytelnianie LastPass"
+    "message": "Uwierzytelnianie LastPass jest wymagane"
   },
   "awaitingSSO": {
     "message": "Oczekiwanie na logowanie jednokrotne"
@@ -4328,7 +4331,7 @@
     "message": "Importuj z CSV"
   },
   "lastPassTryAgainCheckEmail": {
-    "message": "Spróbuj ponownie lub poszukaj wiadomości e-mail od LastPass, aby zweryfikować, że to Ty."
+    "message": "Spróbuj ponownie lub poszukaj wiadomości od LastPass, aby zweryfikować logowanie."
   },
   "collection": {
     "message": "Kolekcja"
@@ -4373,13 +4376,13 @@
     "message": "hostowany w"
   },
   "useDeviceOrHardwareKey": {
-    "message": "Użyj swojego urządzenia lub klucza sprzętowego"
+    "message": "Użyj urządzenia lub klucza sprzętowego"
   },
   "justOnce": {
     "message": "Tylko raz"
   },
   "alwaysForThisSite": {
-    "message": "Zawsze dla tej witryny"
+    "message": "Zawsze dla tej strony"
   },
   "domainAddedToExcludedDomains": {
     "message": "Domena $DOMAIN$ została dodana do wykluczonych domen.",
@@ -4411,7 +4414,7 @@
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
   "uriAdvancedOption": {
-    "message": "Ustawienia zaawansowane",
+    "message": "Opcje zaawansowane",
     "description": "Advanced option placeholder for uri option component"
   },
   "confirmContinueToBrowserSettingsTitle": {
@@ -4443,7 +4446,7 @@
     "description": "Dialog title facilitating the ability to override a chrome browser's default autofill behavior"
   },
   "overrideDefaultBrowserAutofillDescription": {
-    "message": "Ignorowanie tej opcji może spowodować konflikty pomiędzy menu autouzupełniania Bitwarden a przeglądarką.",
+    "message": "Zignorowanie tej opcji może spowodować konflikty pomiędzy autouzupełnianiem Bitwarden a przeglądarką.",
     "description": "Dialog message facilitating the ability to override a chrome browser's default autofill behavior"
   },
   "overrideDefaultBrowserAutoFillSettings": {
@@ -4748,13 +4751,13 @@
     "message": "Pobierz Bitwarden"
   },
   "downloadBitwardenOnAllDevices": {
-    "message": "Pobierz Bitwarden na wszystkich urządzeniach"
+    "message": "Pobierz Bitwarden na wszystkie urządzenia"
   },
   "getTheMobileApp": {
     "message": "Pobierz aplikację mobilną"
   },
   "getTheMobileAppDesc": {
-    "message": "Uzyskaj dostęp do haseł przy pomocy aplikacji mobilnej Bitwarden."
+    "message": "Uzyskaj dostęp do haseł za pomocą aplikacji mobilnej Bitwarden."
   },
   "getTheDesktopApp": {
     "message": "Pobierz aplikację desktopową"
@@ -4787,7 +4790,7 @@
     "message": "Filtruj sejf"
   },
   "filterApplied": {
-    "message": "Zastosowano jeden filtr"
+    "message": "Zastosowano 1 filtr"
   },
   "filterAppliedPlural": {
     "message": "$COUNT$ filtrów zastosowanych",
@@ -4817,7 +4820,7 @@
     }
   },
   "cardNumberEndsWith": {
-    "message": "numer karty kończy się",
+    "message": "numer karty kończący się",
     "description": "Used within the inline menu to provide an aria description when users are attempting to fill a card cipher."
   },
   "loginCredentials": {
@@ -4924,7 +4927,7 @@
     "description": "A section header for a list of passwords."
   },
   "logInWithPasskeyAriaLabel": {
-    "message": "Logowaniem kluczem dostępu",
+    "message": "Logowanie kluczem dostępu",
     "description": "ARIA label for the inline menu button that logs in with a passkey."
   },
   "assign": {
@@ -4964,16 +4967,16 @@
     "message": "Użyj pól tekstowych dla danych takich jak pytania bezpieczeństwa"
   },
   "hiddenHelpText": {
-    "message": "Użyj ukrytych pól dla danych poufnych, takich jak hasło"
+    "message": "Użyj ukrytych pól dla danych poufnych takich jak hasło"
   },
   "checkBoxHelpText": {
-    "message": "Użyj pól wyboru, jeśli chcesz automatycznie wypełnić pole wyboru formularza, np. zapamiętaj e-mail"
+    "message": "Użyj pól wyboru, gdy chcesz uzupełnić pole wyboru formularza, np. zapamiętaj adres e-mail"
   },
   "linkedHelpText": {
     "message": "Użyj powiązanego pola, gdy masz problemy z autouzupełnianiem na konkretnej stronie internetowej."
   },
   "linkedLabelHelpText": {
-    "message": "Wprowadź atrybut z HTML'a: id, name, aria-label lub placeholder."
+    "message": "Wpisz identyfikator, nazwę, etykietę lub tekst zastępczy pola HTML."
   },
   "editField": {
     "message": "Edytuj pole"
@@ -5006,7 +5009,7 @@
     }
   },
   "reorderToggleButton": {
-    "message": "Zmień kolejność $LABEL$. Użyj klawiszy ze strzałkami, aby przenieść element w górę lub w dół.",
+    "message": "Zmień kolejność pola $LABEL$. Użyj klawiszy ze strzałkami, aby przenieść element w górę lub w dół.",
     "placeholders": {
       "label": {
         "content": "$1",
@@ -5015,10 +5018,10 @@
     }
   },
   "reorderWebsiteUriButton": {
-    "message": "Zmień kolejność URI strony. Użyj klawiszy ze strzałkami, aby przenieść element w górę lub w dół."
+    "message": "Zmień kolejność URI stron internetowych. Użyj klawiszy ze strzałkami, aby przenieść element w górę lub w dół."
   },
   "reorderFieldUp": {
-    "message": "$LABEL$ przeniósł się w górę, pozycja $INDEX$ z $LENGTH$",
+    "message": "Pole $LABEL$ zostało przeniesione w górę. Pozycja $INDEX$ z $LENGTH$",
     "placeholders": {
       "label": {
         "content": "$1",
@@ -5096,7 +5099,7 @@
     }
   },
   "reorderFieldDown": {
-    "message": "$LABEL$ przeniósł się w dół, pozycja $INDEX$ z $LENGTH$",
+    "message": "Pole $LABEL$ zostało przeniesione w dół. Pozycja $INDEX$ z $LENGTH$",
     "placeholders": {
       "label": {
         "content": "$1",
@@ -5176,7 +5179,7 @@
     "message": "Dostępna jest dodatkowa zawartość"
   },
   "fileSavedToDevice": {
-    "message": "Plik zapisany na urządzeniu. Zarządzaj plikiem na swoim urządzeniu."
+    "message": "Plik został zapisany na urządzeniu."
   },
   "showCharacterCount": {
     "message": "Pokaż liczbę znaków"
@@ -5200,10 +5203,10 @@
     "message": "Przywróć"
   },
   "deleteForever": {
-    "message": "Usuń na zawsze"
+    "message": "Usuń trwale"
   },
   "noEditPermissions": {
-    "message": "Nie masz uprawnień do edycji tego elementu"
+    "message": "Nie masz uprawnień do edycji elementu"
   },
   "biometricsStatusHelptextUnlockNeeded": {
     "message": "Odblokowanie biometrią jest niedostępne, ponieważ najpierw wymagane jest odblokowanie kodem PIN lub hasłem."
@@ -5410,10 +5413,10 @@
     "message": "Szerokość rozszerzenia"
   },
   "wide": {
-    "message": "Szerokie"
+    "message": "Szeroka"
   },
   "extraWide": {
-    "message": "Bardzo szerokie"
+    "message": "Bardzo szeroka"
   },
   "sshKeyWrongPassword": {
     "message": "Hasło jest nieprawidłowe."
@@ -5461,10 +5464,10 @@
     "message": "Zmień zagrożone hasło"
   },
   "settingsVaultOptions": {
-    "message": "Ustawienia Sejfu"
+    "message": "Opcje sejfu"
   },
   "emptyVaultDescription": {
-    "message": "Sejf chroni nie tylko Twoje hasła. Przechowuj tutaj bezpiecznie loginy, identyfikatory, karty i notatki."
+    "message": "Sejf chroni nie tylko hasła. Przechowuj bezpiecznie dane logowania, identyfikatory, karty i notatki."
   },
   "introCarouselLabel": {
     "message": "Witaj w Bitwarden"
@@ -5509,13 +5512,13 @@
     "message": "Witaj w sejfie!"
   },
   "hasItemsVaultNudgeBodyOne": {
-    "message": "Autouzupełnianie elementów dla bieżącej strony"
+    "message": "Uzupełniaj elementy na stronie internetowej"
   },
   "hasItemsVaultNudgeBodyTwo": {
-    "message": "Ulubione elementy dla szybkiego dostępu"
+    "message": "Dodawaj do ulubionych wybrane elementy"
   },
   "hasItemsVaultNudgeBodyThree": {
-    "message": "Przeszukaj sejf w poszukiwaniu czegoś innego"
+    "message": "Przeszukuj sejf w poszukiwaniu czegoś innego"
   },
   "newLoginNudgeTitle": {
     "message": "Oszczędzaj czas dzięki autouzupełnianiu"
diff --git a/apps/browser/src/_locales/pt_BR/messages.json b/apps/browser/src/_locales/pt_BR/messages.json
index 7d5509a628b..46fbb9beca3 100644
--- a/apps/browser/src/_locales/pt_BR/messages.json
+++ b/apps/browser/src/_locales/pt_BR/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "Pesquisar no Cofre"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "edit": {
     "message": "Editar"
   },
diff --git a/apps/browser/src/_locales/pt_PT/messages.json b/apps/browser/src/_locales/pt_PT/messages.json
index 1e77e1c3035..3cd813847d1 100644
--- a/apps/browser/src/_locales/pt_PT/messages.json
+++ b/apps/browser/src/_locales/pt_PT/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "Procurar no cofre"
   },
+  "resetSearch": {
+    "message": "Repor pesquisa"
+  },
   "edit": {
     "message": "Editar"
   },
diff --git a/apps/browser/src/_locales/ro/messages.json b/apps/browser/src/_locales/ro/messages.json
index 7f54640af25..85b1436ed9e 100644
--- a/apps/browser/src/_locales/ro/messages.json
+++ b/apps/browser/src/_locales/ro/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "Căutare în seif"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "edit": {
     "message": "Editare"
   },
diff --git a/apps/browser/src/_locales/ru/messages.json b/apps/browser/src/_locales/ru/messages.json
index db236cbfcc8..a5d3c6b54c4 100644
--- a/apps/browser/src/_locales/ru/messages.json
+++ b/apps/browser/src/_locales/ru/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "Поиск в хранилище"
   },
+  "resetSearch": {
+    "message": "Сбросить поиск"
+  },
   "edit": {
     "message": "Изменить"
   },
diff --git a/apps/browser/src/_locales/si/messages.json b/apps/browser/src/_locales/si/messages.json
index 13e6c2522bf..7bc0ba2694a 100644
--- a/apps/browser/src/_locales/si/messages.json
+++ b/apps/browser/src/_locales/si/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "සුරක්ෂිතාගාරය සොයන්න"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "edit": {
     "message": "සංස්කරණය"
   },
diff --git a/apps/browser/src/_locales/sk/messages.json b/apps/browser/src/_locales/sk/messages.json
index e98c643edb9..28a687be339 100644
--- a/apps/browser/src/_locales/sk/messages.json
+++ b/apps/browser/src/_locales/sk/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "Prehľadávať trezor"
   },
+  "resetSearch": {
+    "message": "Resetovať vyhľadávanie"
+  },
   "edit": {
     "message": "Upraviť"
   },
diff --git a/apps/browser/src/_locales/sl/messages.json b/apps/browser/src/_locales/sl/messages.json
index 397b7be54e8..2db40266cd7 100644
--- a/apps/browser/src/_locales/sl/messages.json
+++ b/apps/browser/src/_locales/sl/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "Išči v trezorju"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "edit": {
     "message": "Uredi"
   },
diff --git a/apps/browser/src/_locales/sr/messages.json b/apps/browser/src/_locales/sr/messages.json
index f68d0b97447..f9534750cef 100644
--- a/apps/browser/src/_locales/sr/messages.json
+++ b/apps/browser/src/_locales/sr/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "Претражи сеф"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "edit": {
     "message": "Уреди"
   },
diff --git a/apps/browser/src/_locales/sv/messages.json b/apps/browser/src/_locales/sv/messages.json
index cbfc3e478f5..49d2765bf6e 100644
--- a/apps/browser/src/_locales/sv/messages.json
+++ b/apps/browser/src/_locales/sv/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "Sök i valvet"
   },
+  "resetSearch": {
+    "message": "Nollställ sökning"
+  },
   "edit": {
     "message": "Redigera"
   },
diff --git a/apps/browser/src/_locales/te/messages.json b/apps/browser/src/_locales/te/messages.json
index 9a6d9a4d316..f4c58318bc1 100644
--- a/apps/browser/src/_locales/te/messages.json
+++ b/apps/browser/src/_locales/te/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "Search vault"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "edit": {
     "message": "Edit"
   },
diff --git a/apps/browser/src/_locales/th/messages.json b/apps/browser/src/_locales/th/messages.json
index 49515eb1c64..fd92c71c200 100644
--- a/apps/browser/src/_locales/th/messages.json
+++ b/apps/browser/src/_locales/th/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "ค้นหาในตู้นิรภัย"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "edit": {
     "message": "แก้ไข"
   },
diff --git a/apps/browser/src/_locales/tr/messages.json b/apps/browser/src/_locales/tr/messages.json
index cd7c8d3f0b6..2151d7385b7 100644
--- a/apps/browser/src/_locales/tr/messages.json
+++ b/apps/browser/src/_locales/tr/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "Kasada ara"
   },
+  "resetSearch": {
+    "message": "Aramayı sıfırla"
+  },
   "edit": {
     "message": "Düzenle"
   },
diff --git a/apps/browser/src/_locales/uk/messages.json b/apps/browser/src/_locales/uk/messages.json
index 083d89fbd12..16482b9f869 100644
--- a/apps/browser/src/_locales/uk/messages.json
+++ b/apps/browser/src/_locales/uk/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "Пошук"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "edit": {
     "message": "Змінити"
   },
diff --git a/apps/browser/src/_locales/vi/messages.json b/apps/browser/src/_locales/vi/messages.json
index b5de1c2981c..02660dcb38b 100644
--- a/apps/browser/src/_locales/vi/messages.json
+++ b/apps/browser/src/_locales/vi/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "Tìm kiếm trong kho lưu trữ"
   },
+  "resetSearch": {
+    "message": "Đặt lại tìm kiếm"
+  },
   "edit": {
     "message": "Sửa"
   },
@@ -4312,7 +4315,7 @@
     "message": "Yêu cầu xác thực LastPass"
   },
   "awaitingSSO": {
-    "message": "Đang chờ xác thực Đăng nhập một lần"
+    "message": "Đang chờ xác thực SSO"
   },
   "awaitingSSODesc": {
     "message": "Vui lòng tiếp tục đăng nhập bằng thông tin đăng nhập của công ty bạn."
diff --git a/apps/browser/src/_locales/zh_CN/messages.json b/apps/browser/src/_locales/zh_CN/messages.json
index f44265425e9..2382e6fc971 100644
--- a/apps/browser/src/_locales/zh_CN/messages.json
+++ b/apps/browser/src/_locales/zh_CN/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "搜索密码库"
   },
+  "resetSearch": {
+    "message": "重置搜索"
+  },
   "edit": {
     "message": "编辑"
   },
@@ -3477,7 +3480,7 @@
     }
   },
   "youDeniedLoginAttemptFromAnotherDevice": {
-    "message": "You denied a login attempt from another device. If this was you, try to log in with the device again."
+    "message": "您拒绝了一个来自其他设备的登录尝试。若确实是您本人，请尝试再次发起设备登录。"
   },
   "device": {
     "message": "设备"
@@ -3585,25 +3588,25 @@
     "message": "Manage devices"
   },
   "currentSession": {
-    "message": "Current session"
+    "message": "当前会话"
   },
   "mobile": {
-    "message": "Mobile",
+    "message": "移动端",
     "description": "Mobile app"
   },
   "extension": {
-    "message": "Extension",
+    "message": "扩展",
     "description": "Browser extension/addon"
   },
   "desktop": {
-    "message": "Desktop",
+    "message": "桌面端",
     "description": "Desktop app"
   },
   "webVault": {
-    "message": "Web vault"
+    "message": "网页密码库"
   },
   "webApp": {
-    "message": "Web app"
+    "message": "网页 App"
   },
   "cli": {
     "message": "CLI"
@@ -3613,7 +3616,7 @@
     "description": "Software Development Kit"
   },
   "requestPending": {
-    "message": "Request pending"
+    "message": "请求待处理"
   },
   "firstLogin": {
     "message": "First login"
@@ -3671,7 +3674,7 @@
     }
   },
   "youDeniedALogInAttemptFromAnotherDevice": {
-    "message": "您拒绝了另一台设备的登录尝试。如果真的是您，请尝试再次使用该设备登录。"
+    "message": "您拒绝了一个来自其他设备的登录尝试。若确实是您本人，请尝试再次发起设备登录。"
   },
   "loginRequestHasAlreadyExpired": {
     "message": "登录请求已过期。"
@@ -3680,7 +3683,7 @@
     "message": "Just now"
   },
   "requestedXMinutesAgo": {
-    "message": "Requested $MINUTES$ minutes ago",
+    "message": "请求于 $MINUTES$ 分钟前",
     "placeholders": {
       "minutes": {
         "content": "$1",
@@ -4407,7 +4410,7 @@
     "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
   },
   "uriMatchWarningDialogLink": {
-    "message": "More about match detection",
+    "message": "更多关于匹配检测",
     "description": "Link to match detection docs on warning dialog for advance match strategy"
   },
   "uriAdvancedOption": {
diff --git a/apps/browser/src/_locales/zh_TW/messages.json b/apps/browser/src/_locales/zh_TW/messages.json
index b41b9271c75..d2776cb227d 100644
--- a/apps/browser/src/_locales/zh_TW/messages.json
+++ b/apps/browser/src/_locales/zh_TW/messages.json
@@ -547,6 +547,9 @@
   "searchVault": {
     "message": "搜尋密碼庫"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "edit": {
     "message": "編輯"
   },

From d9480a8dabe41aa47858ceec49e488b499e4d83d Mon Sep 17 00:00:00 2001
From: Daniel James Smith <2670567+djsmith85@users.noreply.github.com>
Date: Fri, 25 Jul 2025 10:10:35 +0200
Subject: [PATCH 233/239] [PM-17503] Delete old password-strength component
 (#15652)

* Removed flag and components.

* More cleanup

* Removed ChangePasswordComponent.

* Removed old EmergencyAccessTakeover

* Removed service initialization.

* Fixed test failures.

* Fixed tests.

* Test changes.

* Updated comments

* Delete old password-strength component

A PasswordStrengthV2Component had been created in July 2024 and now all usages of the old component have been replaced.

* Re-add canAccessFeature back into app-routing.module.
Messed up by merging main.

---------

Co-authored-by: Todd Martin <tmartin@bitwarden.com>
Co-authored-by: Daniel James Smith <djsmith85@users.noreply.github.com>
---
 libs/angular/src/jslib.module.ts              |   3 -
 .../password-strength.component.html          |  14 ---
 .../password-strength.component.ts            | 118 ------------------
 3 files changed, 135 deletions(-)
 delete mode 100644 libs/angular/src/tools/password-strength/password-strength.component.html
 delete mode 100644 libs/angular/src/tools/password-strength/password-strength.component.ts

diff --git a/libs/angular/src/jslib.module.ts b/libs/angular/src/jslib.module.ts
index 89e6cfeacb7..86042f4b779 100644
--- a/libs/angular/src/jslib.module.ts
+++ b/libs/angular/src/jslib.module.ts
@@ -54,7 +54,6 @@ import { UserTypePipe } from "./pipes/user-type.pipe";
 import { EllipsisPipe } from "./platform/pipes/ellipsis.pipe";
 import { FingerprintPipe } from "./platform/pipes/fingerprint.pipe";
 import { I18nPipe } from "./platform/pipes/i18n.pipe";
-import { PasswordStrengthComponent } from "./tools/password-strength/password-strength.component";
 import { IconComponent } from "./vault/components/icon.component";
 
 @NgModule({
@@ -108,7 +107,6 @@ import { IconComponent } from "./vault/components/icon.component";
     TrueFalseValueDirective,
     LaunchClickDirective,
     UserNamePipe,
-    PasswordStrengthComponent,
     UserTypePipe,
     IfFeatureDirective,
     FingerprintPipe,
@@ -143,7 +141,6 @@ import { IconComponent } from "./vault/components/icon.component";
     CopyClickDirective,
     LaunchClickDirective,
     UserNamePipe,
-    PasswordStrengthComponent,
     UserTypePipe,
     IfFeatureDirective,
     FingerprintPipe,
diff --git a/libs/angular/src/tools/password-strength/password-strength.component.html b/libs/angular/src/tools/password-strength/password-strength.component.html
deleted file mode 100644
index c9eec73899b..00000000000
--- a/libs/angular/src/tools/password-strength/password-strength.component.html
+++ /dev/null
@@ -1,14 +0,0 @@
-<div class="progress">
-  <div
-    class="progress-bar {{ color }}"
-    role="progressbar"
-    [ngStyle]="{ width: scoreWidth + '%' }"
-    attr.aria-valuenow="{{ scoreWidth }}"
-    aria-valuemin="0"
-    aria-valuemax="100"
-  >
-    <ng-container *ngIf="showText && text">
-      {{ text }}
-    </ng-container>
-  </div>
-</div>
diff --git a/libs/angular/src/tools/password-strength/password-strength.component.ts b/libs/angular/src/tools/password-strength/password-strength.component.ts
deleted file mode 100644
index ca9892d9c6c..00000000000
--- a/libs/angular/src/tools/password-strength/password-strength.component.ts
+++ /dev/null
@@ -1,118 +0,0 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
-import { Component, EventEmitter, Input, OnChanges, Output } from "@angular/core";
-
-import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { PasswordStrengthServiceAbstraction } from "@bitwarden/common/tools/password-strength";
-
-export interface PasswordColorText {
-  color: string;
-  text: string;
-}
-
-/**
- * @deprecated July 2024: Use new PasswordStrengthV2Component instead
- */
-@Component({
-  selector: "app-password-strength",
-  templateUrl: "password-strength.component.html",
-  standalone: false,
-})
-export class PasswordStrengthComponent implements OnChanges {
-  @Input() showText = false;
-  @Input() email: string;
-  @Input() name: string;
-  @Input() set password(value: string) {
-    this.updatePasswordStrength(value);
-  }
-  @Output() passwordStrengthResult = new EventEmitter<any>();
-  @Output() passwordScoreColor = new EventEmitter<PasswordColorText>();
-
-  masterPasswordScore: number;
-  scoreWidth = 0;
-  color = "bg-danger";
-  text: string;
-
-  private masterPasswordStrengthTimeout: any;
-
-  //used by desktop and browser to display strength text color
-  get masterPasswordScoreColor() {
-    switch (this.masterPasswordScore) {
-      case 4:
-        return "success";
-      case 3:
-        return "primary";
-      case 2:
-        return "warning";
-      default:
-        return "danger";
-    }
-  }
-
-  //used by desktop and browser to display strength text
-  get masterPasswordScoreText() {
-    switch (this.masterPasswordScore) {
-      case 4:
-        return this.i18nService.t("strong");
-      case 3:
-        return this.i18nService.t("good");
-      case 2:
-        return this.i18nService.t("weak");
-      default:
-        return this.masterPasswordScore != null ? this.i18nService.t("weak") : null;
-    }
-  }
-
-  constructor(
-    private i18nService: I18nService,
-    private passwordStrengthService: PasswordStrengthServiceAbstraction,
-  ) {}
-
-  ngOnChanges(): void {
-    this.masterPasswordStrengthTimeout = setTimeout(() => {
-      this.scoreWidth = this.masterPasswordScore == null ? 0 : (this.masterPasswordScore + 1) * 20;
-
-      switch (this.masterPasswordScore) {
-        case 4:
-          this.color = "bg-success";
-          this.text = this.i18nService.t("strong");
-          break;
-        case 3:
-          this.color = "bg-primary";
-          this.text = this.i18nService.t("good");
-          break;
-        case 2:
-          this.color = "bg-warning";
-          this.text = this.i18nService.t("weak");
-          break;
-        default:
-          this.color = "bg-danger";
-          this.text = this.masterPasswordScore != null ? this.i18nService.t("weak") : null;
-          break;
-      }
-
-      this.setPasswordScoreText(this.color, this.text);
-    }, 300);
-  }
-
-  updatePasswordStrength(password: string) {
-    const masterPassword = password;
-
-    if (this.masterPasswordStrengthTimeout != null) {
-      clearTimeout(this.masterPasswordStrengthTimeout);
-    }
-
-    const strengthResult = this.passwordStrengthService.getPasswordStrength(
-      masterPassword,
-      this.email,
-      this.name?.trim().toLowerCase().split(" "),
-    );
-    this.passwordStrengthResult.emit(strengthResult);
-    this.masterPasswordScore = strengthResult == null ? null : strengthResult.score;
-  }
-
-  setPasswordScoreText(color: string, text: string) {
-    color = color.slice(3);
-    this.passwordScoreColor.emit({ color: color, text: text });
-  }
-}

From 4989f024bd4e3a38f4ff307ac88e09eaf3421f71 Mon Sep 17 00:00:00 2001
From: "bw-ghapp[bot]" <178206702+bw-ghapp[bot]@users.noreply.github.com>
Date: Fri, 25 Jul 2025 10:11:35 +0200
Subject: [PATCH 234/239] Autosync the updated translations (#15773)

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>
---
 apps/desktop/src/locales/af/messages.json    | 19 ++++---------
 apps/desktop/src/locales/ar/messages.json    | 19 ++++---------
 apps/desktop/src/locales/az/messages.json    | 19 ++++---------
 apps/desktop/src/locales/be/messages.json    | 19 ++++---------
 apps/desktop/src/locales/bg/messages.json    | 19 ++++---------
 apps/desktop/src/locales/bn/messages.json    | 19 ++++---------
 apps/desktop/src/locales/bs/messages.json    | 19 ++++---------
 apps/desktop/src/locales/ca/messages.json    | 19 ++++---------
 apps/desktop/src/locales/cs/messages.json    | 19 ++++---------
 apps/desktop/src/locales/cy/messages.json    | 19 ++++---------
 apps/desktop/src/locales/da/messages.json    | 19 ++++---------
 apps/desktop/src/locales/de/messages.json    | 19 ++++---------
 apps/desktop/src/locales/el/messages.json    | 19 ++++---------
 apps/desktop/src/locales/en_GB/messages.json | 19 ++++---------
 apps/desktop/src/locales/en_IN/messages.json | 19 ++++---------
 apps/desktop/src/locales/eo/messages.json    | 19 ++++---------
 apps/desktop/src/locales/es/messages.json    | 19 ++++---------
 apps/desktop/src/locales/et/messages.json    | 19 ++++---------
 apps/desktop/src/locales/eu/messages.json    | 19 ++++---------
 apps/desktop/src/locales/fa/messages.json    | 19 ++++---------
 apps/desktop/src/locales/fi/messages.json    | 19 ++++---------
 apps/desktop/src/locales/fil/messages.json   | 19 ++++---------
 apps/desktop/src/locales/fr/messages.json    | 19 ++++---------
 apps/desktop/src/locales/gl/messages.json    | 19 ++++---------
 apps/desktop/src/locales/he/messages.json    | 19 ++++---------
 apps/desktop/src/locales/hi/messages.json    | 19 ++++---------
 apps/desktop/src/locales/hr/messages.json    | 27 ++++++------------
 apps/desktop/src/locales/hu/messages.json    | 19 ++++---------
 apps/desktop/src/locales/id/messages.json    | 19 ++++---------
 apps/desktop/src/locales/it/messages.json    | 19 ++++---------
 apps/desktop/src/locales/ja/messages.json    | 19 ++++---------
 apps/desktop/src/locales/ka/messages.json    | 19 ++++---------
 apps/desktop/src/locales/km/messages.json    | 19 ++++---------
 apps/desktop/src/locales/kn/messages.json    | 19 ++++---------
 apps/desktop/src/locales/ko/messages.json    | 19 ++++---------
 apps/desktop/src/locales/lt/messages.json    | 19 ++++---------
 apps/desktop/src/locales/lv/messages.json    | 19 ++++---------
 apps/desktop/src/locales/me/messages.json    | 19 ++++---------
 apps/desktop/src/locales/ml/messages.json    | 19 ++++---------
 apps/desktop/src/locales/mr/messages.json    | 19 ++++---------
 apps/desktop/src/locales/my/messages.json    | 19 ++++---------
 apps/desktop/src/locales/nb/messages.json    | 19 ++++---------
 apps/desktop/src/locales/ne/messages.json    | 19 ++++---------
 apps/desktop/src/locales/nl/messages.json    | 19 ++++---------
 apps/desktop/src/locales/nn/messages.json    | 19 ++++---------
 apps/desktop/src/locales/or/messages.json    | 19 ++++---------
 apps/desktop/src/locales/pl/messages.json    | 19 ++++---------
 apps/desktop/src/locales/pt_BR/messages.json | 19 ++++---------
 apps/desktop/src/locales/pt_PT/messages.json | 19 ++++---------
 apps/desktop/src/locales/ro/messages.json    | 19 ++++---------
 apps/desktop/src/locales/ru/messages.json    | 19 ++++---------
 apps/desktop/src/locales/si/messages.json    | 19 ++++---------
 apps/desktop/src/locales/sk/messages.json    | 19 ++++---------
 apps/desktop/src/locales/sl/messages.json    | 19 ++++---------
 apps/desktop/src/locales/sr/messages.json    | 19 ++++---------
 apps/desktop/src/locales/sv/messages.json    | 19 ++++---------
 apps/desktop/src/locales/te/messages.json    | 19 ++++---------
 apps/desktop/src/locales/th/messages.json    | 19 ++++---------
 apps/desktop/src/locales/tr/messages.json    | 19 ++++---------
 apps/desktop/src/locales/uk/messages.json    | 19 ++++---------
 apps/desktop/src/locales/vi/messages.json    | 23 +++++-----------
 apps/desktop/src/locales/zh_CN/messages.json | 29 +++++++-------------
 apps/desktop/src/locales/zh_TW/messages.json | 19 ++++---------
 63 files changed, 326 insertions(+), 893 deletions(-)

diff --git a/apps/desktop/src/locales/af/messages.json b/apps/desktop/src/locales/af/messages.json
index 3e539e48eb9..4db12ec1a87 100644
--- a/apps/desktop/src/locales/af/messages.json
+++ b/apps/desktop/src/locales/af/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Deursoek kluis"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "addItem": {
     "message": "Voeg item toe"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Ontgrendel met Windows Hello"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Bykomende Windows Hello-instellings"
-  },
   "unlockWithPolkit": {
     "message": "Unlock with system authentication"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "ontgrendel u kluis"
   },
-  "autoPromptWindowsHello": {
-    "message": "Vra vir Windows Hello by lansering"
-  },
-  "autoPromptPolkit": {
-    "message": "Ask for system authentication on launch"
-  },
   "autoPromptTouchId": {
     "message": "Vra vir Touch ID by lansering"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Require password on app start"
   },
-  "recommendedForSecurity": {
-    "message": "Aanbeveel vir veiligheid."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Lock with master password on restart"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Enable autotype shortcut"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
diff --git a/apps/desktop/src/locales/ar/messages.json b/apps/desktop/src/locales/ar/messages.json
index 26aaf141dd2..c2e7c2cde6c 100644
--- a/apps/desktop/src/locales/ar/messages.json
+++ b/apps/desktop/src/locales/ar/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "البحث في الخزانة"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "addItem": {
     "message": "إضافة عنصر"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "فتح مع Windows Hello"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "إعدادات Windows Hello إضافية"
-  },
   "unlockWithPolkit": {
     "message": "فتح مع مصادقة النظام"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "فتح خزانتك"
   },
-  "autoPromptWindowsHello": {
-    "message": "اسأل عن Windows Hello عند التشغيل"
-  },
-  "autoPromptPolkit": {
-    "message": "طلب مصادقة النظام عند التشغيل"
-  },
   "autoPromptTouchId": {
     "message": "اطلب معرف اللمس عند التشغيل"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Require password on app start"
   },
-  "recommendedForSecurity": {
-    "message": "موصى به للأمان."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "قفل مع كلمة المرور الرئيسية عند إعادة تشغيل"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Enable autotype shortcut"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
diff --git a/apps/desktop/src/locales/az/messages.json b/apps/desktop/src/locales/az/messages.json
index b04f3204a15..6f3a02502a0 100644
--- a/apps/desktop/src/locales/az/messages.json
+++ b/apps/desktop/src/locales/az/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Seyfdə axtar"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "addItem": {
     "message": "Element əlavə et"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Windows Hello ilə kilidi aç"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Əlavə Windows Hello ayarları"
-  },
   "unlockWithPolkit": {
     "message": "Sistem kimlik doğrulaması ilə kilidi aç"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "seyfinizin kilidini açın"
   },
-  "autoPromptWindowsHello": {
-    "message": "Açılışda Windows Hello-nu soruşun"
-  },
-  "autoPromptPolkit": {
-    "message": "Açılışda sistem kimlik doğrulamasını tələb et"
-  },
   "autoPromptTouchId": {
     "message": "Açılışda Touch ID-ni soruşun"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Tətbiq başladılanda parolu tələb et"
   },
-  "recommendedForSecurity": {
-    "message": "Güvənlik üçün tövsiyə olunur."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Yenidən başladılanda ana parol ilə kilidlə"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Avto-yazma qısayolunu fəallaşdır"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden, giriş yerlərini doğrulamır, qısayolu istifadə etməzdən əvvəl doğru pəncərədə və xanada olduğunuza əmin olun."
diff --git a/apps/desktop/src/locales/be/messages.json b/apps/desktop/src/locales/be/messages.json
index f4b58c89cac..5a777151355 100644
--- a/apps/desktop/src/locales/be/messages.json
+++ b/apps/desktop/src/locales/be/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Пошук у сховішчы"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "addItem": {
     "message": "Дадаць элемент"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Разблакіраваць з Windows Hello"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Дадатковыя налады Windows Hello"
-  },
   "unlockWithPolkit": {
     "message": "Unlock with system authentication"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "разблакіраваць ваша сховішча"
   },
-  "autoPromptWindowsHello": {
-    "message": "Пытацца пра Windows Hello пры запуску"
-  },
-  "autoPromptPolkit": {
-    "message": "Ask for system authentication on launch"
-  },
   "autoPromptTouchId": {
     "message": "Пытацца пра Touch ID пры запуску"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Require password on app start"
   },
-  "recommendedForSecurity": {
-    "message": "Рэкамендуецца ў мэтах бяспекі."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Lock with master password on restart"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Enable autotype shortcut"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
diff --git a/apps/desktop/src/locales/bg/messages.json b/apps/desktop/src/locales/bg/messages.json
index 92ee97ba16a..1c4145f73e1 100644
--- a/apps/desktop/src/locales/bg/messages.json
+++ b/apps/desktop/src/locales/bg/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Търсене в трезора"
   },
+  "resetSearch": {
+    "message": "Нулиране на търсенето"
+  },
   "addItem": {
     "message": "Добавяне на елемент"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Отключване с Windows Hello"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Допълнителни настройки на Windows Hello"
-  },
   "unlockWithPolkit": {
     "message": "Отключване чрез системно удостоверяване"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "отключете трезора си"
   },
-  "autoPromptWindowsHello": {
-    "message": "Питане за Windows Hello при пускане"
-  },
-  "autoPromptPolkit": {
-    "message": "Питане за системно удостоверяване при стартиране"
-  },
   "autoPromptTouchId": {
     "message": "Питане за Touch ID при пускане"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Изискване на парола при стартиране на приложението"
   },
-  "recommendedForSecurity": {
-    "message": "Препоръчително от гледна точка на сигурността."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Заключване с главната парола при повторно пускане"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Включване на клавишната комбинация за автоматично попълване"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Битуорден не проверява местата за въвеждане, така че се уверете, че сте в правилния прозорец, преди да ползвате клавишната комбинация."
diff --git a/apps/desktop/src/locales/bn/messages.json b/apps/desktop/src/locales/bn/messages.json
index 4a39428590e..58c484465ab 100644
--- a/apps/desktop/src/locales/bn/messages.json
+++ b/apps/desktop/src/locales/bn/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "ভল্ট খুঁজুন"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "addItem": {
     "message": "বস্তু জুড়ুন"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Unlock with Windows Hello"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Additional Windows Hello settings"
-  },
   "unlockWithPolkit": {
     "message": "Unlock with system authentication"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "unlock your vault"
   },
-  "autoPromptWindowsHello": {
-    "message": "Ask for Windows Hello on app start"
-  },
-  "autoPromptPolkit": {
-    "message": "Ask for system authentication on launch"
-  },
   "autoPromptTouchId": {
     "message": "Ask for Touch ID on app start"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Require password on app start"
   },
-  "recommendedForSecurity": {
-    "message": "Recommended for security."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Lock with master password on restart"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Enable autotype shortcut"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
diff --git a/apps/desktop/src/locales/bs/messages.json b/apps/desktop/src/locales/bs/messages.json
index 5be68fe816f..52c8a792296 100644
--- a/apps/desktop/src/locales/bs/messages.json
+++ b/apps/desktop/src/locales/bs/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Pretraživanje trezora"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "addItem": {
     "message": "Dodaj stavku"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Otključaj koristeći Windows Hello"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Additional Windows Hello settings"
-  },
   "unlockWithPolkit": {
     "message": "Unlock with system authentication"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "otključaj trezor"
   },
-  "autoPromptWindowsHello": {
-    "message": "Ask for Windows Hello on app start"
-  },
-  "autoPromptPolkit": {
-    "message": "Ask for system authentication on launch"
-  },
   "autoPromptTouchId": {
     "message": "Ask for Touch ID on app start"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Require password on app start"
   },
-  "recommendedForSecurity": {
-    "message": "Recommended for security."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Lock with master password on restart"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Enable autotype shortcut"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
diff --git a/apps/desktop/src/locales/ca/messages.json b/apps/desktop/src/locales/ca/messages.json
index 6534c0eef02..ad6c3bcb5ed 100644
--- a/apps/desktop/src/locales/ca/messages.json
+++ b/apps/desktop/src/locales/ca/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Cerca en la caixa forta"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "addItem": {
     "message": "Afegeix element"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Desbloqueja amb Windows Hello"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Configuració addicional de Windows Hello"
-  },
   "unlockWithPolkit": {
     "message": "Desbloqueja amb l'autenticació del sistema"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "desbloqueja la teva caixa forta"
   },
-  "autoPromptWindowsHello": {
-    "message": "Sol·liciteu Windows Hello en iniciar"
-  },
-  "autoPromptPolkit": {
-    "message": "Sol·licita l'autenticació del sistema a l'inici"
-  },
   "autoPromptTouchId": {
     "message": "Sol·liciteu Touch ID en iniciar"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Require password on app start"
   },
-  "recommendedForSecurity": {
-    "message": "Recomanat per seguretat."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Bloqueja amb la contrasenya mestra en reiniciar"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Enable autotype shortcut"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
diff --git a/apps/desktop/src/locales/cs/messages.json b/apps/desktop/src/locales/cs/messages.json
index a21f9b9258e..928092ba5a4 100644
--- a/apps/desktop/src/locales/cs/messages.json
+++ b/apps/desktop/src/locales/cs/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Prohledat trezor"
   },
+  "resetSearch": {
+    "message": "Resetovat hledání"
+  },
   "addItem": {
     "message": "Přidat položku"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Odemknout pomocí Windows Hello"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Další nastavení Windows Hello"
-  },
   "unlockWithPolkit": {
     "message": "Odemknout pomocí systémového ověření"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "Odemknout Váš trezor"
   },
-  "autoPromptWindowsHello": {
-    "message": "Požádat o Windows Hello při spuštění aplikace"
-  },
-  "autoPromptPolkit": {
-    "message": "Požádat o systémové ověření při spuštění"
-  },
   "autoPromptTouchId": {
     "message": "Požádat o Touch ID při spuštění aplikace"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Vyžadovat heslo při spuštění aplikace"
   },
-  "recommendedForSecurity": {
-    "message": "Doporučeno pro bezpečnost."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Zamknout trezor při restartu pomocí hlavního hesla"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Povolit zkratku automatického psaní"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden neověřuje umístění vstupu. Před použitím zkratky se ujistěte, že jste ve správném okně a poli."
diff --git a/apps/desktop/src/locales/cy/messages.json b/apps/desktop/src/locales/cy/messages.json
index e3db70bf152..3b35ad6fbe4 100644
--- a/apps/desktop/src/locales/cy/messages.json
+++ b/apps/desktop/src/locales/cy/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Search vault"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "addItem": {
     "message": "Add item"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Unlock with Windows Hello"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Additional Windows Hello settings"
-  },
   "unlockWithPolkit": {
     "message": "Unlock with system authentication"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "unlock your vault"
   },
-  "autoPromptWindowsHello": {
-    "message": "Ask for Windows Hello on app start"
-  },
-  "autoPromptPolkit": {
-    "message": "Ask for system authentication on launch"
-  },
   "autoPromptTouchId": {
     "message": "Ask for Touch ID on app start"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Require password on app start"
   },
-  "recommendedForSecurity": {
-    "message": "Recommended for security."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Lock with master password on restart"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Enable autotype shortcut"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
diff --git a/apps/desktop/src/locales/da/messages.json b/apps/desktop/src/locales/da/messages.json
index 47df4e98b3f..2127c13594b 100644
--- a/apps/desktop/src/locales/da/messages.json
+++ b/apps/desktop/src/locales/da/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Søg i boks"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "addItem": {
     "message": "Tilføj emne"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Oplås med Windows Hello"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Yderligere indstillinger for Windows Hello"
-  },
   "unlockWithPolkit": {
     "message": "Oplås med systemgodkendelse"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "oplås din boks"
   },
-  "autoPromptWindowsHello": {
-    "message": "Anmod om Windows Hello ved app-start"
-  },
-  "autoPromptPolkit": {
-    "message": "Anmod om systemgodkendelse ved start"
-  },
   "autoPromptTouchId": {
     "message": "Anmod om Touch ID ved app-start"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Require password on app start"
   },
-  "recommendedForSecurity": {
-    "message": "Anbefales af sikkerhedshensyn."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Lås med hovedadgangskode ved genstart"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Enable autotype shortcut"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
diff --git a/apps/desktop/src/locales/de/messages.json b/apps/desktop/src/locales/de/messages.json
index 1f60be15374..3838dc6151c 100644
--- a/apps/desktop/src/locales/de/messages.json
+++ b/apps/desktop/src/locales/de/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Tresor durchsuchen"
   },
+  "resetSearch": {
+    "message": "Suche zurücksetzen"
+  },
   "addItem": {
     "message": "Eintrag hinzufügen"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Mit Windows Hello entsperren"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Zusätzliche Einstellungen für Windows Hello"
-  },
   "unlockWithPolkit": {
     "message": "Mit Systemauthentifizierung entsperren"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "Deinen Tresor entsperren"
   },
-  "autoPromptWindowsHello": {
-    "message": "Beim Start nach Windows Hello fragen"
-  },
-  "autoPromptPolkit": {
-    "message": "Beim Start nach Systemauthentifizierung fragen"
-  },
   "autoPromptTouchId": {
     "message": "Beim Start nach Touch ID fragen"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Ein Passwort beim Starten der App verlangen"
   },
-  "recommendedForSecurity": {
-    "message": "Aus Sicherheitsgründen empfohlen."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Beim Neustart mit Master-Passwort sperren"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Auto-Schreiben Tastenkombination aktivieren"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden überprüft die Eingabestellen nicht. Vergewissere dich, dass du dich im richtigen Fenster und Feld befindest, bevor du die Tastenkombination verwendest."
diff --git a/apps/desktop/src/locales/el/messages.json b/apps/desktop/src/locales/el/messages.json
index 2f2a3cf914c..8421ef0e6ea 100644
--- a/apps/desktop/src/locales/el/messages.json
+++ b/apps/desktop/src/locales/el/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Αναζήτηση κρύπτης"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "addItem": {
     "message": "Προσθήκη στοιχείου"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Ξεκλειδώστε με το Windows Hello"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Πρόσθετες ρυθμίσεις του Windows Hello"
-  },
   "unlockWithPolkit": {
     "message": "Ξεκλείδωμα με αυθεντικοποίηση συστήματος"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "Ξεκλειδώστε το vault σας"
   },
-  "autoPromptWindowsHello": {
-    "message": "Να ζητείται Windows Hello κατά την εκκίνηση της εφαρμογής"
-  },
-  "autoPromptPolkit": {
-    "message": "Ρώτησε με για αυθεντικοποίηση συστήματος κατά την εκκίνηση"
-  },
   "autoPromptTouchId": {
     "message": "Ερώτηση για το Touch ID κατά την εκκίνηση"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Require password on app start"
   },
-  "recommendedForSecurity": {
-    "message": "Συνίσταται για ασφάλεια."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Κλείδωμα με τον κύριο κωδικό πρόσβασης κατά την επανεκκίνηση"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Enable autotype shortcut"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
diff --git a/apps/desktop/src/locales/en_GB/messages.json b/apps/desktop/src/locales/en_GB/messages.json
index f73e373d825..aa430c36465 100644
--- a/apps/desktop/src/locales/en_GB/messages.json
+++ b/apps/desktop/src/locales/en_GB/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Search vault"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "addItem": {
     "message": "Add item"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Unlock with Windows Hello"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Additional Windows Hello settings"
-  },
   "unlockWithPolkit": {
     "message": "Unlock with system authentication"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "unlock your vault"
   },
-  "autoPromptWindowsHello": {
-    "message": "Ask for Windows Hello on launch"
-  },
-  "autoPromptPolkit": {
-    "message": "Ask for system authentication on launch"
-  },
   "autoPromptTouchId": {
     "message": "Ask for Touch ID on launch"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Require password on app start"
   },
-  "recommendedForSecurity": {
-    "message": "Recommended for security."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Lock with master password on restart"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Enable autotype shortcut"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
diff --git a/apps/desktop/src/locales/en_IN/messages.json b/apps/desktop/src/locales/en_IN/messages.json
index ee0e0dc276f..9536bb263a1 100644
--- a/apps/desktop/src/locales/en_IN/messages.json
+++ b/apps/desktop/src/locales/en_IN/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Search vault"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "addItem": {
     "message": "Add item"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Unlock with Windows Hello"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Additional Windows Hello settings"
-  },
   "unlockWithPolkit": {
     "message": "Unlock with system authentication"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "Verify for Bitwarden."
   },
-  "autoPromptWindowsHello": {
-    "message": "Ask for Windows Hello on launch"
-  },
-  "autoPromptPolkit": {
-    "message": "Ask for system authentication on launch"
-  },
   "autoPromptTouchId": {
     "message": "Ask for Touch ID on launch"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Require password on app start"
   },
-  "recommendedForSecurity": {
-    "message": "Recommended for security."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Lock with master password on restart"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Enable autotype shortcut"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
diff --git a/apps/desktop/src/locales/eo/messages.json b/apps/desktop/src/locales/eo/messages.json
index 5bfde4d51c0..d0f191d7413 100644
--- a/apps/desktop/src/locales/eo/messages.json
+++ b/apps/desktop/src/locales/eo/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Traserĉi la trezorejon"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "addItem": {
     "message": "Aldoni eron"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Unlock with Windows Hello"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Additional Windows Hello settings"
-  },
   "unlockWithPolkit": {
     "message": "Unlock with system authentication"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "malŝlosi vian trezorejon"
   },
-  "autoPromptWindowsHello": {
-    "message": "Ask for Windows Hello on app start"
-  },
-  "autoPromptPolkit": {
-    "message": "Ask for system authentication on launch"
-  },
   "autoPromptTouchId": {
     "message": "Ask for Touch ID on app start"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Require password on app start"
   },
-  "recommendedForSecurity": {
-    "message": "Recommended for security."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Ŝlosi per la ĉefa pasvorto ĉe relanĉo"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Enable autotype shortcut"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
diff --git a/apps/desktop/src/locales/es/messages.json b/apps/desktop/src/locales/es/messages.json
index f839e9c8634..a387afa3659 100644
--- a/apps/desktop/src/locales/es/messages.json
+++ b/apps/desktop/src/locales/es/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Buscar en caja fuerte"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "addItem": {
     "message": "Añadir elemento"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Desbloquear con Windows Hello"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Ajustes adicionales de Windows Hello"
-  },
   "unlockWithPolkit": {
     "message": "Desbloquear con la autenticación del sistema"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "Verificar para Bitwarden."
   },
-  "autoPromptWindowsHello": {
-    "message": "Solicitar Windows Hello al iniciar"
-  },
-  "autoPromptPolkit": {
-    "message": "Solicitar autenticación de sistema al iniciar"
-  },
   "autoPromptTouchId": {
     "message": "Solicitar Touch ID al iniciar"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Solicitar contraseña al iniciar la aplicación"
   },
-  "recommendedForSecurity": {
-    "message": "Recomendado por seguridad."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Bloquear con contraseña maestra al reiniciar"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Activar atajo de autoescritura"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden no valida las ubicaciones de entrada, asegúrate de que estás en la ventana y en el capo correctos antes de usar el atajo."
diff --git a/apps/desktop/src/locales/et/messages.json b/apps/desktop/src/locales/et/messages.json
index be7628d2d34..598ea554f41 100644
--- a/apps/desktop/src/locales/et/messages.json
+++ b/apps/desktop/src/locales/et/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Otsi hoidlast"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "addItem": {
     "message": "Lisa kirje"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Lukusta lahti Windows Helloga"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Windows Hello lisaseaded"
-  },
   "unlockWithPolkit": {
     "message": "Ava arvuti autentimissüsteemiga"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "Kinnita Bitwardenisse sisselogimine."
   },
-  "autoPromptWindowsHello": {
-    "message": "Küsi avamisel Windows Hello tuvastust"
-  },
-  "autoPromptPolkit": {
-    "message": "Kasuta käivitamisel arvuti autentimissüsteemi"
-  },
   "autoPromptTouchId": {
     "message": "Küsi avamisel Touch ID tuvastust"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Nõua parooli rakenduse käivitamisel"
   },
-  "recommendedForSecurity": {
-    "message": "Soovitatud turvalisuse huvides."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Lukusta ülemparooliga, kui rakendus taaskäivitatakse"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Enable autotype shortcut"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
diff --git a/apps/desktop/src/locales/eu/messages.json b/apps/desktop/src/locales/eu/messages.json
index 0c4b2f4d836..6db97dce6f1 100644
--- a/apps/desktop/src/locales/eu/messages.json
+++ b/apps/desktop/src/locales/eu/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Kutxa Gotorrean bilatu"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "addItem": {
     "message": "Gehitu elementua"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Desblokeatu Windows Hello-rekin"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Additional Windows Hello settings"
-  },
   "unlockWithPolkit": {
     "message": "Unlock with system authentication"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "desblokeatu kutxa gotorra"
   },
-  "autoPromptWindowsHello": {
-    "message": "Eskatu Windows Hello abiaraztean"
-  },
-  "autoPromptPolkit": {
-    "message": "Ask for system authentication on launch"
-  },
   "autoPromptTouchId": {
     "message": "Eskatu Touch ID abiaraztean"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Require password on app start"
   },
-  "recommendedForSecurity": {
-    "message": "Recommended for security."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Lock with master password on restart"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Enable autotype shortcut"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
diff --git a/apps/desktop/src/locales/fa/messages.json b/apps/desktop/src/locales/fa/messages.json
index 8aefda20bf4..82fb4b084b5 100644
--- a/apps/desktop/src/locales/fa/messages.json
+++ b/apps/desktop/src/locales/fa/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "جستجوی گاوصندوق"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "addItem": {
     "message": "افزودن مورد"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "قفل گشایی با Windows Hello"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "تنظیمات اضافی Windows Hello"
-  },
   "unlockWithPolkit": {
     "message": "باز کردن قفل با احراز هویت سیستم"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "قفل گاوصندوق خود را باز کنید"
   },
-  "autoPromptWindowsHello": {
-    "message": "درخواست Windows Hello در هنگام راه‌اندازی"
-  },
-  "autoPromptPolkit": {
-    "message": "در زمان اجرا درخواست احراز هویت سیستم را بده"
-  },
   "autoPromptTouchId": {
     "message": "درخواست Touch ID در هنگام راه‌اندازی"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "هنگام شروع برنامه، کلمه عبور مورد نیاز است"
   },
-  "recommendedForSecurity": {
-    "message": "برای امنیت توصیه می‌شود."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "در زمان شروع مجدد، با کلمه عبور اصلی قفل کن"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Enable autotype shortcut"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
diff --git a/apps/desktop/src/locales/fi/messages.json b/apps/desktop/src/locales/fi/messages.json
index b334bc61ece..c885d33ab78 100644
--- a/apps/desktop/src/locales/fi/messages.json
+++ b/apps/desktop/src/locales/fi/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Etsi holvista"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "addItem": {
     "message": "Lisää kohde"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Avaa Windows Hellolla"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Windows Hello -lisäasetukset."
-  },
   "unlockWithPolkit": {
     "message": "Avaa järjestelmän tunnistautumisella"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "avaa holvisi"
   },
-  "autoPromptWindowsHello": {
-    "message": "Pyydä Windows Hello -todennusta käynnistettäessä"
-  },
-  "autoPromptPolkit": {
-    "message": "Pyydä järjestelmän tunnistautumista käynnistettäessä"
-  },
   "autoPromptTouchId": {
     "message": "Pyydä Touch ID -todennusta käynnistettäessä"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Vaadi salasana sovelluksen käynnistyessä"
   },
-  "recommendedForSecurity": {
-    "message": "Suositeltavaa parempaa suojausta varten."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Lukitse pääsalasanalla uudelleenkäynnistyksen yhteydessä"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Enable autotype shortcut"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
diff --git a/apps/desktop/src/locales/fil/messages.json b/apps/desktop/src/locales/fil/messages.json
index 723d324bf70..1118f76a4a2 100644
--- a/apps/desktop/src/locales/fil/messages.json
+++ b/apps/desktop/src/locales/fil/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Hanapin ang vault"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "addItem": {
     "message": "Magdagdag ng item"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "I-unlock gamit ang Windows Hello"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Additional Windows Hello settings"
-  },
   "unlockWithPolkit": {
     "message": "Unlock with system authentication"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "i-unlock ang iyong vault"
   },
-  "autoPromptWindowsHello": {
-    "message": "Humingi ng Windows Hello sa paglulunsad"
-  },
-  "autoPromptPolkit": {
-    "message": "Ask for system authentication on launch"
-  },
   "autoPromptTouchId": {
     "message": "Humingi ng Touch ID sa paglulunsad"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Require password on app start"
   },
-  "recommendedForSecurity": {
-    "message": "Recommended for security."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Lock with master password on restart"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Enable autotype shortcut"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
diff --git a/apps/desktop/src/locales/fr/messages.json b/apps/desktop/src/locales/fr/messages.json
index b06308b2906..47765ae773a 100644
--- a/apps/desktop/src/locales/fr/messages.json
+++ b/apps/desktop/src/locales/fr/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Rechercher dans le coffre"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "addItem": {
     "message": "Ajouter un élément"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Déverrouiller avec Windows Hello"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Paramètres supplémentaires de Windows Hello"
-  },
   "unlockWithPolkit": {
     "message": "Déverrouiller avec l'authentification du système"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "déverouiller votre coffre"
   },
-  "autoPromptWindowsHello": {
-    "message": "Demander à Windows Hello au démarrage"
-  },
-  "autoPromptPolkit": {
-    "message": "Demander l'authentification du système au lancement"
-  },
   "autoPromptTouchId": {
     "message": "Demander Touch ID au démarrage de l'application"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Exiger un mot de passe au démarrage de l'application"
   },
-  "recommendedForSecurity": {
-    "message": "Recommandé pour la sécurité."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Verrouiller avec le mot de passe principal au redémarrage"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Enable autotype shortcut"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
diff --git a/apps/desktop/src/locales/gl/messages.json b/apps/desktop/src/locales/gl/messages.json
index 3d240ff77e8..15b71ce7f7a 100644
--- a/apps/desktop/src/locales/gl/messages.json
+++ b/apps/desktop/src/locales/gl/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Search vault"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "addItem": {
     "message": "Add item"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Unlock with Windows Hello"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Additional Windows Hello settings"
-  },
   "unlockWithPolkit": {
     "message": "Unlock with system authentication"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "unlock your vault"
   },
-  "autoPromptWindowsHello": {
-    "message": "Ask for Windows Hello on app start"
-  },
-  "autoPromptPolkit": {
-    "message": "Ask for system authentication on launch"
-  },
   "autoPromptTouchId": {
     "message": "Ask for Touch ID on app start"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Require password on app start"
   },
-  "recommendedForSecurity": {
-    "message": "Recommended for security."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Lock with master password on restart"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Enable autotype shortcut"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
diff --git a/apps/desktop/src/locales/he/messages.json b/apps/desktop/src/locales/he/messages.json
index 5b76be7fff3..10b6c43386b 100644
--- a/apps/desktop/src/locales/he/messages.json
+++ b/apps/desktop/src/locales/he/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "חיפוש בכספת"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "addItem": {
     "message": "הוסף פריט"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "שחרור נעילה עם Windows Hello"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "הגדרות Windows Hello נוספות"
-  },
   "unlockWithPolkit": {
     "message": "בטל נעילה עם אימות מערכת"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "פתח את הכספת שלך"
   },
-  "autoPromptWindowsHello": {
-    "message": "הצג את Windows Hello בפתיחת האפליקציה"
-  },
-  "autoPromptPolkit": {
-    "message": "בקש אימות מערכת בפתיחה"
-  },
   "autoPromptTouchId": {
     "message": "הצג בקשה של Touch ID בפתיחת האפליקציה"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "דרוש סיסמה בפתיחת היישום"
   },
-  "recommendedForSecurity": {
-    "message": "מומלץ לאבטחה."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "נעל בעזרת הסיסמה הראשית בהפעלה מחדש"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "הפעלת קיצור הקלדה אוטומטית"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden לא מאמת את מקומות הקלט, נא לוודא שזה החלון והשדה הנכונים בטרם שימוש בקיצור הדרך."
diff --git a/apps/desktop/src/locales/hi/messages.json b/apps/desktop/src/locales/hi/messages.json
index 77b416118c9..4f813445418 100644
--- a/apps/desktop/src/locales/hi/messages.json
+++ b/apps/desktop/src/locales/hi/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Search vault"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "addItem": {
     "message": "Add item"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Unlock with Windows Hello"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Additional Windows Hello settings"
-  },
   "unlockWithPolkit": {
     "message": "Unlock with system authentication"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "unlock your vault"
   },
-  "autoPromptWindowsHello": {
-    "message": "Ask for Windows Hello on app start"
-  },
-  "autoPromptPolkit": {
-    "message": "Ask for system authentication on launch"
-  },
   "autoPromptTouchId": {
     "message": "Ask for Touch ID on app start"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Require password on app start"
   },
-  "recommendedForSecurity": {
-    "message": "Recommended for security."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Lock with master password on restart"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Enable autotype shortcut"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
diff --git a/apps/desktop/src/locales/hr/messages.json b/apps/desktop/src/locales/hr/messages.json
index b86e57a4811..21e4b11dfe6 100644
--- a/apps/desktop/src/locales/hr/messages.json
+++ b/apps/desktop/src/locales/hr/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Pretraživanje trezora"
   },
+  "resetSearch": {
+    "message": "Ponovno postavljanje pretraživanja"
+  },
   "addItem": {
     "message": "Dodaj stavku"
   },
@@ -241,7 +244,7 @@
     "message": "SSH agent je servis namijenjen developerima koji omogućuje potpisivanje SSH zahtjeva izravno iz tvojeg Bitwarden trezora."
   },
   "sshAgentPromptBehavior": {
-    "message": "Zahtjevaj autorizaciju pri korištenju SSH agenta"
+    "message": "Traži autorizaciju pri korištenju SSH agenta"
   },
   "sshAgentPromptBehaviorDesc": {
     "message": "Odaberi kako će se postupati sa zahtjevima za autorizaciju SSH agenta."
@@ -573,7 +576,7 @@
     "message": "Kopiraj kôd za provjeru (TOTP)"
   },
   "copyFieldCipherName": {
-    "message": "Copy $FIELD$, $CIPHERNAME$",
+    "message": "Kopiraj $FIELD$, $CIPHERNAME$",
     "description": "Title for a button that copies a field value to the clipboard.",
     "placeholders": {
       "field": {
@@ -1440,7 +1443,7 @@
     "description": "Copy credit card security code (CVV)"
   },
   "cardNumber": {
-    "message": "card number"
+    "message": "broj kartice"
   },
   "premiumMembership": {
     "message": "Premium članstvo"
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Otključaj koristeći Windows Hello"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Dodatne Windows Hello postavke"
-  },
   "unlockWithPolkit": {
     "message": "Otključaj autentifikacijom sustava"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "Otključaj trezor"
   },
-  "autoPromptWindowsHello": {
-    "message": "Zahtijevaj Windows Hello pri pokretanju"
-  },
-  "autoPromptPolkit": {
-    "message": "Traži autentifikaciju sustava pri pokretanju"
-  },
   "autoPromptTouchId": {
     "message": "Zahtijevaj Touch ID pri pokretanju"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Zahtijevaj lozinku pri pokretanju"
   },
-  "recommendedForSecurity": {
-    "message": "Preporučeno za sigurnost."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Zaključaj glavnom lozinkom kod svakog pokretanja"
   },
@@ -4015,10 +4006,10 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Enable autotype shortcut"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
-    "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
+    "message": "Bitwarden ne provjerava lokacije unosa, prije korištenja prečaca provjeri da si u pravom prozoru i polju."
   }
 }
diff --git a/apps/desktop/src/locales/hu/messages.json b/apps/desktop/src/locales/hu/messages.json
index 0f5e14596d7..6fa7abf94fe 100644
--- a/apps/desktop/src/locales/hu/messages.json
+++ b/apps/desktop/src/locales/hu/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Keresés a széfben"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "addItem": {
     "message": "Elem hozzáadása"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Feloldás Windows Hello segítségével"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Kiegészítő Windows Hello beállítások"
-  },
   "unlockWithPolkit": {
     "message": "Feloldás rendszer hitelesítéssel"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "Bitwarden feloldás"
   },
-  "autoPromptWindowsHello": {
-    "message": "Windows Hello kérése indításkor"
-  },
-  "autoPromptPolkit": {
-    "message": "Rendszer hiteletesítés bekérése indításkor"
-  },
   "autoPromptTouchId": {
     "message": "Érintés AZ kérése indításkor"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Jelszó szükséges az alkalmazás indításakor"
   },
-  "recommendedForSecurity": {
-    "message": "Biztonsági szempontból ajánlott."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Lezárás mesterjelszóval újraindításkor"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Automatikus típusú parancsikon engedélyezése"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "A Bitwarden nem érvényesíti a beviteli helyeket, győződjünk meg róla, hogy a megfelelő ablakban és mezőben vagyunk, mielőtt a parancsikont használnánk."
diff --git a/apps/desktop/src/locales/id/messages.json b/apps/desktop/src/locales/id/messages.json
index f4627f805e0..feb05102c1e 100644
--- a/apps/desktop/src/locales/id/messages.json
+++ b/apps/desktop/src/locales/id/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Cari brankas"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "addItem": {
     "message": "Tambah Item"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Buka dengan Windows Hello"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Additional Windows Hello settings"
-  },
   "unlockWithPolkit": {
     "message": "Unlock with system authentication"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "Verifikasi untuk Bitwarden."
   },
-  "autoPromptWindowsHello": {
-    "message": "Minta Windows Hello saat diluncurkan"
-  },
-  "autoPromptPolkit": {
-    "message": "Ask for system authentication on launch"
-  },
   "autoPromptTouchId": {
     "message": "Minta Touch ID saat diluncurkan"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Require password on app start"
   },
-  "recommendedForSecurity": {
-    "message": "Direkomendasikan untuk keamanan."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Lock with master password on restart"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Enable autotype shortcut"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
diff --git a/apps/desktop/src/locales/it/messages.json b/apps/desktop/src/locales/it/messages.json
index b89b25a745c..d97f4527ef9 100644
--- a/apps/desktop/src/locales/it/messages.json
+++ b/apps/desktop/src/locales/it/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Cerca nella cassaforte"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "addItem": {
     "message": "Aggiungi elemento"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Sblocca con Windows Hello"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Impostazioni aggiuntive di Windows Hello"
-  },
   "unlockWithPolkit": {
     "message": "Sblocca con l'autenticazione di sistema"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "sblocca la tua cassaforte"
   },
-  "autoPromptWindowsHello": {
-    "message": "Richiedi Windows Hello all'avvio"
-  },
-  "autoPromptPolkit": {
-    "message": "Chiedi autenticazione di sistema all'avvio"
-  },
   "autoPromptTouchId": {
     "message": "Richiedi Touch ID all'avvio"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Richiedi parola d'accesso all'avvio dell'app"
   },
-  "recommendedForSecurity": {
-    "message": "Consigliato per la sicurezza."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Blocca con password principale al riavvio"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Enable autotype shortcut"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
diff --git a/apps/desktop/src/locales/ja/messages.json b/apps/desktop/src/locales/ja/messages.json
index 19a91367567..5830b3b1db9 100644
--- a/apps/desktop/src/locales/ja/messages.json
+++ b/apps/desktop/src/locales/ja/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "保管庫を検索"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "addItem": {
     "message": "アイテムの追加"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Windows Hello でロック解除"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "追加の Windows Hello 設定"
-  },
   "unlockWithPolkit": {
     "message": "システム認証でロック解除"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "Bitwarden の認証を行います。"
   },
-  "autoPromptWindowsHello": {
-    "message": "起動時に Windows Hello を要求する"
-  },
-  "autoPromptPolkit": {
-    "message": "起動時にシステム認証を要求する"
-  },
   "autoPromptTouchId": {
     "message": "起動時に Touch ID を要求する"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "アプリ起動時にパスワードを要求"
   },
-  "recommendedForSecurity": {
-    "message": "セキュリティ向上のためおすすめします。"
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "再起動時にマスターパスワードでロック"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Enable autotype shortcut"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
diff --git a/apps/desktop/src/locales/ka/messages.json b/apps/desktop/src/locales/ka/messages.json
index 5f9d2fe17b3..3c158a14fdf 100644
--- a/apps/desktop/src/locales/ka/messages.json
+++ b/apps/desktop/src/locales/ka/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Search vault"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "addItem": {
     "message": "ელემენტის დამატება"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Unlock with Windows Hello"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Additional Windows Hello settings"
-  },
   "unlockWithPolkit": {
     "message": "Unlock with system authentication"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "unlock your vault"
   },
-  "autoPromptWindowsHello": {
-    "message": "Ask for Windows Hello on app start"
-  },
-  "autoPromptPolkit": {
-    "message": "Ask for system authentication on launch"
-  },
   "autoPromptTouchId": {
     "message": "Ask for Touch ID on app start"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Require password on app start"
   },
-  "recommendedForSecurity": {
-    "message": "Recommended for security."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Lock with master password on restart"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Enable autotype shortcut"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
diff --git a/apps/desktop/src/locales/km/messages.json b/apps/desktop/src/locales/km/messages.json
index 3d240ff77e8..15b71ce7f7a 100644
--- a/apps/desktop/src/locales/km/messages.json
+++ b/apps/desktop/src/locales/km/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Search vault"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "addItem": {
     "message": "Add item"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Unlock with Windows Hello"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Additional Windows Hello settings"
-  },
   "unlockWithPolkit": {
     "message": "Unlock with system authentication"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "unlock your vault"
   },
-  "autoPromptWindowsHello": {
-    "message": "Ask for Windows Hello on app start"
-  },
-  "autoPromptPolkit": {
-    "message": "Ask for system authentication on launch"
-  },
   "autoPromptTouchId": {
     "message": "Ask for Touch ID on app start"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Require password on app start"
   },
-  "recommendedForSecurity": {
-    "message": "Recommended for security."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Lock with master password on restart"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Enable autotype shortcut"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
diff --git a/apps/desktop/src/locales/kn/messages.json b/apps/desktop/src/locales/kn/messages.json
index b7664ad90bf..ad2995ca097 100644
--- a/apps/desktop/src/locales/kn/messages.json
+++ b/apps/desktop/src/locales/kn/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "ವಾಲ್ಟ್ ಹುಡುಕಿ"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "addItem": {
     "message": "ಐಟಂ ಸೇರಿಸಿ"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "ವಿಂಡೋಸ್ ಹಲೋನೊಂದಿಗೆ ಅನ್ಲಾಕ್ ಮಾಡಿ"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Additional Windows Hello settings"
-  },
   "unlockWithPolkit": {
     "message": "Unlock with system authentication"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "ನಿಮ್ಮ ವಾಲ್ಟ್ ಅನ್ನು ಅನ್ಲಾಕ್ ಮಾಡಿ"
   },
-  "autoPromptWindowsHello": {
-    "message": "Ask for Windows Hello on app start"
-  },
-  "autoPromptPolkit": {
-    "message": "Ask for system authentication on launch"
-  },
   "autoPromptTouchId": {
     "message": "Ask for Touch ID on app start"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Require password on app start"
   },
-  "recommendedForSecurity": {
-    "message": "Recommended for security."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Lock with master password on restart"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Enable autotype shortcut"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
diff --git a/apps/desktop/src/locales/ko/messages.json b/apps/desktop/src/locales/ko/messages.json
index ca23d5107c7..4e484629d1e 100644
--- a/apps/desktop/src/locales/ko/messages.json
+++ b/apps/desktop/src/locales/ko/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "보관함 검색"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "addItem": {
     "message": "항목 추가"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Windows Hello를 사용하여 잠금 해제"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Additional Windows Hello settings"
-  },
   "unlockWithPolkit": {
     "message": "Unlock with system authentication"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "보관함 잠금 해제"
   },
-  "autoPromptWindowsHello": {
-    "message": "실행 시 Windows Hello 요구하기"
-  },
-  "autoPromptPolkit": {
-    "message": "Ask for system authentication on launch"
-  },
   "autoPromptTouchId": {
     "message": "실행 시 Touch ID 요구하기"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Require password on app start"
   },
-  "recommendedForSecurity": {
-    "message": "Recommended for security."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Lock with master password on restart"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Enable autotype shortcut"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
diff --git a/apps/desktop/src/locales/lt/messages.json b/apps/desktop/src/locales/lt/messages.json
index 99c63ab4dab..d2d78941464 100644
--- a/apps/desktop/src/locales/lt/messages.json
+++ b/apps/desktop/src/locales/lt/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Ieškoti saugykloje"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "addItem": {
     "message": "Pridėti elementą"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Atrakinti naudojant Windows Hello"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Papildomi Windows Hello nustatymai"
-  },
   "unlockWithPolkit": {
     "message": "Unlock with system authentication"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "atrakinti saugyklą"
   },
-  "autoPromptWindowsHello": {
-    "message": "Paprašyti Windows Hello paleidus programą"
-  },
-  "autoPromptPolkit": {
-    "message": "Ask for system authentication on launch"
-  },
   "autoPromptTouchId": {
     "message": "Prašyti Touch ID paleidus programėlę"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Require password on app start"
   },
-  "recommendedForSecurity": {
-    "message": "Rekomenduojama dėl saugumo."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Lock with master password on restart"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Enable autotype shortcut"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
diff --git a/apps/desktop/src/locales/lv/messages.json b/apps/desktop/src/locales/lv/messages.json
index 0849bf29b45..163b88c5c7c 100644
--- a/apps/desktop/src/locales/lv/messages.json
+++ b/apps/desktop/src/locales/lv/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Meklēt glabātavā"
   },
+  "resetSearch": {
+    "message": "Atiestatīt meklēšanu"
+  },
   "addItem": {
     "message": "Pievienot vienumu"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Atslēgt ar Windows Hello"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Windows Hello papildu iestatījumi"
-  },
   "unlockWithPolkit": {
     "message": "Atslēgt ar sistēmas autentifikāciju"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "atslēgt glabātavu"
   },
-  "autoPromptWindowsHello": {
-    "message": "Palaišanā vaicāt pēc Windows Hello"
-  },
-  "autoPromptPolkit": {
-    "message": "Palaišanas laikā vaicāt pēc autentifikācijas"
-  },
   "autoPromptTouchId": {
     "message": "Palaišanā vaicāt pēc Touch ID"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Pieprasīt paroli pēc lietotnes palaišanas"
   },
-  "recommendedForSecurity": {
-    "message": "Ieteicams drošībai."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Aizslēgt ar galveno paroli pēc pārsāknēšanas"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Iespējot automātiskās ievades saīsni"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden nepārbauda ievades atrašanās vietas, jāpārliecinās, ka atrodies pareizajā logā un laukā, pirms saīsnes izmantošanas."
diff --git a/apps/desktop/src/locales/me/messages.json b/apps/desktop/src/locales/me/messages.json
index 0929250c06f..0b908f476ab 100644
--- a/apps/desktop/src/locales/me/messages.json
+++ b/apps/desktop/src/locales/me/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Pretraži trezor"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "addItem": {
     "message": "Dodaj stavku"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Otključaj sa Windows Hello"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Additional Windows Hello settings"
-  },
   "unlockWithPolkit": {
     "message": "Unlock with system authentication"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "Verifikuj za Bitwarden."
   },
-  "autoPromptWindowsHello": {
-    "message": "Ask for Windows Hello on app start"
-  },
-  "autoPromptPolkit": {
-    "message": "Ask for system authentication on launch"
-  },
   "autoPromptTouchId": {
     "message": "Ask for Touch ID on app start"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Require password on app start"
   },
-  "recommendedForSecurity": {
-    "message": "Recommended for security."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Lock with master password on restart"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Enable autotype shortcut"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
diff --git a/apps/desktop/src/locales/ml/messages.json b/apps/desktop/src/locales/ml/messages.json
index a77ab04c0aa..e1fb7dc2463 100644
--- a/apps/desktop/src/locales/ml/messages.json
+++ b/apps/desktop/src/locales/ml/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "വാൾട് തിരയുക"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "addItem": {
     "message": "ഇനം ചേർക്കുക"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Windows Hello ഉപയോഗിച്ച് അൺലോക്കുചെയ്യുക"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Additional Windows Hello settings"
-  },
   "unlockWithPolkit": {
     "message": "Unlock with system authentication"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "Bitwarden വേണ്ടി പരിശോധിച്ചുറപ്പിക്കുക."
   },
-  "autoPromptWindowsHello": {
-    "message": "Ask for Windows Hello on app start"
-  },
-  "autoPromptPolkit": {
-    "message": "Ask for system authentication on launch"
-  },
   "autoPromptTouchId": {
     "message": "Ask for Touch ID on app start"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Require password on app start"
   },
-  "recommendedForSecurity": {
-    "message": "Recommended for security."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Lock with master password on restart"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Enable autotype shortcut"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
diff --git a/apps/desktop/src/locales/mr/messages.json b/apps/desktop/src/locales/mr/messages.json
index 3d240ff77e8..15b71ce7f7a 100644
--- a/apps/desktop/src/locales/mr/messages.json
+++ b/apps/desktop/src/locales/mr/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Search vault"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "addItem": {
     "message": "Add item"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Unlock with Windows Hello"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Additional Windows Hello settings"
-  },
   "unlockWithPolkit": {
     "message": "Unlock with system authentication"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "unlock your vault"
   },
-  "autoPromptWindowsHello": {
-    "message": "Ask for Windows Hello on app start"
-  },
-  "autoPromptPolkit": {
-    "message": "Ask for system authentication on launch"
-  },
   "autoPromptTouchId": {
     "message": "Ask for Touch ID on app start"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Require password on app start"
   },
-  "recommendedForSecurity": {
-    "message": "Recommended for security."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Lock with master password on restart"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Enable autotype shortcut"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
diff --git a/apps/desktop/src/locales/my/messages.json b/apps/desktop/src/locales/my/messages.json
index b09ea6cdbf2..4a5d71ddb2e 100644
--- a/apps/desktop/src/locales/my/messages.json
+++ b/apps/desktop/src/locales/my/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Search vault"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "addItem": {
     "message": "Add item"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Unlock with Windows Hello"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Additional Windows Hello settings"
-  },
   "unlockWithPolkit": {
     "message": "Unlock with system authentication"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "unlock your vault"
   },
-  "autoPromptWindowsHello": {
-    "message": "Ask for Windows Hello on app start"
-  },
-  "autoPromptPolkit": {
-    "message": "Ask for system authentication on launch"
-  },
   "autoPromptTouchId": {
     "message": "Ask for Touch ID on app start"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Require password on app start"
   },
-  "recommendedForSecurity": {
-    "message": "Recommended for security."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Lock with master password on restart"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Enable autotype shortcut"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
diff --git a/apps/desktop/src/locales/nb/messages.json b/apps/desktop/src/locales/nb/messages.json
index dfa381fc3d0..d6083e9b404 100644
--- a/apps/desktop/src/locales/nb/messages.json
+++ b/apps/desktop/src/locales/nb/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Søk i hvelvet"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "addItem": {
     "message": "Legg til element"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Lås opp med Windows Hello"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Ytterligere Windows Hello-innstillinger"
-  },
   "unlockWithPolkit": {
     "message": "Lås opp med systemautentisering"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "lås opp hvelvet ditt"
   },
-  "autoPromptWindowsHello": {
-    "message": "Spør etter Windows Hello ved oppstart"
-  },
-  "autoPromptPolkit": {
-    "message": "Ask for system authentication on launch"
-  },
   "autoPromptTouchId": {
     "message": "Spør om Touch ID ved oppstart"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Require password on app start"
   },
-  "recommendedForSecurity": {
-    "message": "Anbefalt for sikkerhet."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Lock with master password on restart"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Enable autotype shortcut"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
diff --git a/apps/desktop/src/locales/ne/messages.json b/apps/desktop/src/locales/ne/messages.json
index 56ccc79775c..4716057bb03 100644
--- a/apps/desktop/src/locales/ne/messages.json
+++ b/apps/desktop/src/locales/ne/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "भल्टमा खोज्नुहोस्"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "addItem": {
     "message": "आइटम थप्नुहोस्"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Unlock with Windows Hello"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Additional Windows Hello settings"
-  },
   "unlockWithPolkit": {
     "message": "Unlock with system authentication"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "unlock your vault"
   },
-  "autoPromptWindowsHello": {
-    "message": "Ask for Windows Hello on app start"
-  },
-  "autoPromptPolkit": {
-    "message": "Ask for system authentication on launch"
-  },
   "autoPromptTouchId": {
     "message": "Ask for Touch ID on app start"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Require password on app start"
   },
-  "recommendedForSecurity": {
-    "message": "Recommended for security."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Lock with master password on restart"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Enable autotype shortcut"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
diff --git a/apps/desktop/src/locales/nl/messages.json b/apps/desktop/src/locales/nl/messages.json
index 5301982ecdc..86def3188fd 100644
--- a/apps/desktop/src/locales/nl/messages.json
+++ b/apps/desktop/src/locales/nl/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Kluis doorzoeken"
   },
+  "resetSearch": {
+    "message": "Zoekopdracht resetten"
+  },
   "addItem": {
     "message": "Item toevoegen"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Ontgrendelen met Windows Hello"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Extra Windows Hello-instellingen"
-  },
   "unlockWithPolkit": {
     "message": "Ontgrendel met systeemauthenticatie"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "ontgrendel je kluis"
   },
-  "autoPromptWindowsHello": {
-    "message": "Vraag om Windows Hello bij opstarten"
-  },
-  "autoPromptPolkit": {
-    "message": "Vraag naar systeemverificatie bij het opstarten"
-  },
   "autoPromptTouchId": {
     "message": "Vraag om Touch ID bij opstarten"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Wachtwoord vereisen bij starten van de app"
   },
-  "recommendedForSecurity": {
-    "message": "Aanbevolen voor veiligheid."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Bij herstart vergrendelen met hoofdwachtwoord"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Snelkoppeling autotype inschakelen"
+  "enableAutotypeTransitionKey": {
+    "message": "Autotypen inschakelen"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden valideert de invoerlocaties niet, zorg ervoor dat je je in het juiste venster en veld bevindt voordat je de snelkoppeling gebruikt."
diff --git a/apps/desktop/src/locales/nn/messages.json b/apps/desktop/src/locales/nn/messages.json
index 4c86afccbeb..459a068007f 100644
--- a/apps/desktop/src/locales/nn/messages.json
+++ b/apps/desktop/src/locales/nn/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Søk i kvelven"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "addItem": {
     "message": "Legg til ei oppføring"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Lås opp med Windows Hello"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Additional Windows Hello settings"
-  },
   "unlockWithPolkit": {
     "message": "Unlock with system authentication"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "unlock your vault"
   },
-  "autoPromptWindowsHello": {
-    "message": "Ask for Windows Hello on app start"
-  },
-  "autoPromptPolkit": {
-    "message": "Ask for system authentication on launch"
-  },
   "autoPromptTouchId": {
     "message": "Ask for Touch ID on app start"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Require password on app start"
   },
-  "recommendedForSecurity": {
-    "message": "Recommended for security."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Lock with master password on restart"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Enable autotype shortcut"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
diff --git a/apps/desktop/src/locales/or/messages.json b/apps/desktop/src/locales/or/messages.json
index 6db35fd307e..df8249b40de 100644
--- a/apps/desktop/src/locales/or/messages.json
+++ b/apps/desktop/src/locales/or/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Search vault"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "addItem": {
     "message": "Add item"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Unlock with Windows Hello"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Additional Windows Hello settings"
-  },
   "unlockWithPolkit": {
     "message": "Unlock with system authentication"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "unlock your vault"
   },
-  "autoPromptWindowsHello": {
-    "message": "Ask for Windows Hello on app start"
-  },
-  "autoPromptPolkit": {
-    "message": "Ask for system authentication on launch"
-  },
   "autoPromptTouchId": {
     "message": "Ask for Touch ID on app start"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Require password on app start"
   },
-  "recommendedForSecurity": {
-    "message": "Recommended for security."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Lock with master password on restart"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Enable autotype shortcut"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
diff --git a/apps/desktop/src/locales/pl/messages.json b/apps/desktop/src/locales/pl/messages.json
index 9852c85554a..4c8a5d6c004 100644
--- a/apps/desktop/src/locales/pl/messages.json
+++ b/apps/desktop/src/locales/pl/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Szukaj w sejfie"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "addItem": {
     "message": "Dodaj element"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Odblokuj za pomocą Windows Hello"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Dodatkowe ustawienia Windows Hello"
-  },
   "unlockWithPolkit": {
     "message": "Odblokuj za pomocą uwierzytelniania systemowego"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "odblokuj sejf"
   },
-  "autoPromptWindowsHello": {
-    "message": "Poproś o Windows Hello przy uruchomieniu"
-  },
-  "autoPromptPolkit": {
-    "message": "Zapytaj o uwierzytelnianie systemowe przy uruchomieniu"
-  },
   "autoPromptTouchId": {
     "message": "Poproś o Touch ID przy uruchomieniu"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Wymagaj hasła przy starcie aplikacji"
   },
-  "recommendedForSecurity": {
-    "message": "Zalecane dla bezpieczeństwa."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Zablokuj hasłem głównym po uruchomieniu ponownym"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Enable autotype shortcut"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
diff --git a/apps/desktop/src/locales/pt_BR/messages.json b/apps/desktop/src/locales/pt_BR/messages.json
index 5e570920f55..5468e23aeaa 100644
--- a/apps/desktop/src/locales/pt_BR/messages.json
+++ b/apps/desktop/src/locales/pt_BR/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Pesquisar no Cofre"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "addItem": {
     "message": "Adicionar Item"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Desbloquear com o Windows Hello"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Configurações adicionais do Windows Hello"
-  },
   "unlockWithPolkit": {
     "message": "Desbloquear com autenticação de sistema"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "desbloquear o seu cofre"
   },
-  "autoPromptWindowsHello": {
-    "message": "Perguntar para iniciar o Hello do Windows"
-  },
-  "autoPromptPolkit": {
-    "message": "Pedir autenticação do sistema na inicialização"
-  },
   "autoPromptTouchId": {
     "message": "Pedir pelo Touch ID ao iniciar"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Exigir senha ao iniciar o app"
   },
-  "recommendedForSecurity": {
-    "message": "Recomendado para segurança."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Bloquear com senha mestra ao reiniciar"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Enable autotype shortcut"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
diff --git a/apps/desktop/src/locales/pt_PT/messages.json b/apps/desktop/src/locales/pt_PT/messages.json
index d3764bad580..4651a3381d8 100644
--- a/apps/desktop/src/locales/pt_PT/messages.json
+++ b/apps/desktop/src/locales/pt_PT/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Procurar no cofre"
   },
+  "resetSearch": {
+    "message": "Repor pesquisa"
+  },
   "addItem": {
     "message": "Adicionar item"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Desbloquear com o Windows Hello"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Definições adicionais do Windows Hello"
-  },
   "unlockWithPolkit": {
     "message": "Desbloqueio com autenticação do sistema"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "desbloquear o cofre"
   },
-  "autoPromptWindowsHello": {
-    "message": "Pedir o Windows Hello ao iniciar a app"
-  },
-  "autoPromptPolkit": {
-    "message": "Pedir a autenticação do sistema no arranque"
-  },
   "autoPromptTouchId": {
     "message": "Pedir o Touch ID ao iniciar a app"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Exigir palavra-passe ao iniciar a app"
   },
-  "recommendedForSecurity": {
-    "message": "Recomendado por segurança."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Bloquear com a palavra-passe mestra ao reiniciar"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Ativar o atalho de introdução automática"
+  "enableAutotypeTransitionKey": {
+    "message": "Ativar introdução automática"
   },
   "enableAutotypeDescription": {
     "message": "O Bitwarden não valida a introdução de localizações. Certifique-se de que está na janela e no campo corretos antes de utilizar o atalho."
diff --git a/apps/desktop/src/locales/ro/messages.json b/apps/desktop/src/locales/ro/messages.json
index 41a92900d63..0a9a01e9d09 100644
--- a/apps/desktop/src/locales/ro/messages.json
+++ b/apps/desktop/src/locales/ro/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Căutare seif"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "addItem": {
     "message": "Adăugare articol"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Deblocare cu Windows Hello"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Additional Windows Hello settings"
-  },
   "unlockWithPolkit": {
     "message": "Unlock with system authentication"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "deblocați-vă seiful"
   },
-  "autoPromptWindowsHello": {
-    "message": "Solicitați Windows Hello la pornire"
-  },
-  "autoPromptPolkit": {
-    "message": "Ask for system authentication on launch"
-  },
   "autoPromptTouchId": {
     "message": "Solicitați Touch ID la pornire"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Require password on app start"
   },
-  "recommendedForSecurity": {
-    "message": "Recommended for security."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Lock with master password on restart"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Enable autotype shortcut"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
diff --git a/apps/desktop/src/locales/ru/messages.json b/apps/desktop/src/locales/ru/messages.json
index b87ffc3cbcd..fcdf91a519e 100644
--- a/apps/desktop/src/locales/ru/messages.json
+++ b/apps/desktop/src/locales/ru/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Поиск в хранилище"
   },
+  "resetSearch": {
+    "message": "Сбросить поиск"
+  },
   "addItem": {
     "message": "Добавить элемент"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Разблокировать с Windows Hello"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Дополнительные настройки Windows Hello"
-  },
   "unlockWithPolkit": {
     "message": "Разблокировать с помощью системной аутентификации"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "разблокировать ваше хранилище"
   },
-  "autoPromptWindowsHello": {
-    "message": "Запрашивать Windows Hello при запуске приложения"
-  },
-  "autoPromptPolkit": {
-    "message": "Запрашивать системную аутентификацию при запуске"
-  },
   "autoPromptTouchId": {
     "message": "Запрашивать Touch ID при запуске приложения"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Требовать пароль при запуске приложения"
   },
-  "recommendedForSecurity": {
-    "message": "Рекомендуется для обеспечения безопасности."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Блокировать мастер-паролем при перезапуске"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Включить автоввод ярлыка"
+  "enableAutotypeTransitionKey": {
+    "message": "Включить автоввод"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden не проверяет местоположение ввода, поэтому, прежде чем использовать ярлык, убедитесь, что вы находитесь в нужном окне и поле."
diff --git a/apps/desktop/src/locales/si/messages.json b/apps/desktop/src/locales/si/messages.json
index 5567654af99..ba6bad46f69 100644
--- a/apps/desktop/src/locales/si/messages.json
+++ b/apps/desktop/src/locales/si/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Search vault"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "addItem": {
     "message": "Add item"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Unlock with Windows Hello"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Additional Windows Hello settings"
-  },
   "unlockWithPolkit": {
     "message": "Unlock with system authentication"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "unlock your vault"
   },
-  "autoPromptWindowsHello": {
-    "message": "Ask for Windows Hello on app start"
-  },
-  "autoPromptPolkit": {
-    "message": "Ask for system authentication on launch"
-  },
   "autoPromptTouchId": {
     "message": "Ask for Touch ID on app start"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Require password on app start"
   },
-  "recommendedForSecurity": {
-    "message": "Recommended for security."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Lock with master password on restart"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Enable autotype shortcut"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
diff --git a/apps/desktop/src/locales/sk/messages.json b/apps/desktop/src/locales/sk/messages.json
index 49651fbcb7e..843b1c4da26 100644
--- a/apps/desktop/src/locales/sk/messages.json
+++ b/apps/desktop/src/locales/sk/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Prehľadávať trezor"
   },
+  "resetSearch": {
+    "message": "Resetovať vyhľadávanie"
+  },
   "addItem": {
     "message": "Pridať položku"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Odomknúť pomocou Windows Hello"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Ďalšie nastavenia Windows Hello"
-  },
   "unlockWithPolkit": {
     "message": "Odomknúť systémovým overením"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "odomknúť svoj trezor"
   },
-  "autoPromptWindowsHello": {
-    "message": "Pri spustení požiadať o Windows Hello"
-  },
-  "autoPromptPolkit": {
-    "message": "Pri spustení požiadať o systémové overenie"
-  },
   "autoPromptTouchId": {
     "message": "Pri spustení požiadať o Touch ID"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Pri spustení aplikácie vyžadovať heslo"
   },
-  "recommendedForSecurity": {
-    "message": "Odporúča sa z hľadiska bezpečnosti."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Pri reštarte zamknúť hlavným heslom"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Povoliť skratku automatického písania"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden neoveruje miesto stupu, pred použitím skratky sa uistite, že ste v správnom okne a poli."
diff --git a/apps/desktop/src/locales/sl/messages.json b/apps/desktop/src/locales/sl/messages.json
index 23bbae2d523..acf461313b5 100644
--- a/apps/desktop/src/locales/sl/messages.json
+++ b/apps/desktop/src/locales/sl/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Išči v trezorju"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "addItem": {
     "message": "Dodaj element"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Odkleni z WindowsHello"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Additional Windows Hello settings"
-  },
   "unlockWithPolkit": {
     "message": "Unlock with system authentication"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "odklenite vaš trezor"
   },
-  "autoPromptWindowsHello": {
-    "message": "Ask for Windows Hello on app start"
-  },
-  "autoPromptPolkit": {
-    "message": "Ask for system authentication on launch"
-  },
   "autoPromptTouchId": {
     "message": "Biometrično preverjanje ob zagonu aplikacije"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Require password on app start"
   },
-  "recommendedForSecurity": {
-    "message": "Recommended for security."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Lock with master password on restart"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Enable autotype shortcut"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
diff --git a/apps/desktop/src/locales/sr/messages.json b/apps/desktop/src/locales/sr/messages.json
index c69b4ca8340..dd159108cf7 100644
--- a/apps/desktop/src/locales/sr/messages.json
+++ b/apps/desktop/src/locales/sr/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Претражи сеф"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "addItem": {
     "message": "Додај ставку"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Откључај са Windows Hello"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Додатна подешавања Windows Hello"
-  },
   "unlockWithPolkit": {
     "message": "Откључати системском аутентификацијом"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "откључај свој сеф"
   },
-  "autoPromptWindowsHello": {
-    "message": "Захтевај Windows Hello при покретању"
-  },
-  "autoPromptPolkit": {
-    "message": "Затражите аутентификацију система при покретању"
-  },
   "autoPromptTouchId": {
     "message": "Захтевај Touch ID при покретању"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Захтевај лозинку при покретању"
   },
-  "recommendedForSecurity": {
-    "message": "Препоручује се за сигурност."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Закључајте са главном лозинком при поновном покретању"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Enable autotype shortcut"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
diff --git a/apps/desktop/src/locales/sv/messages.json b/apps/desktop/src/locales/sv/messages.json
index 54fb7f1f643..39185c3a1f6 100644
--- a/apps/desktop/src/locales/sv/messages.json
+++ b/apps/desktop/src/locales/sv/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Sök i valv"
   },
+  "resetSearch": {
+    "message": "Nollställ sökning"
+  },
   "addItem": {
     "message": "Lägg till objekt"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Lås upp med Windows Hello"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Ytterligare inställningar för Windows Hello"
-  },
   "unlockWithPolkit": {
     "message": "Lås upp med systemautentisering"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "lås upp ditt valv"
   },
-  "autoPromptWindowsHello": {
-    "message": "Be om Windows Hello vid appstart"
-  },
-  "autoPromptPolkit": {
-    "message": "Be om systemautentisering vid start"
-  },
   "autoPromptTouchId": {
     "message": "Be om Touch ID vid appstart"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Kräv lösenord vid appstart"
   },
-  "recommendedForSecurity": {
-    "message": "Rekommenderas för säkerhet."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Lås med huvudlösenord vid omstart"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Aktivera genväg för automatisk inmatning"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden validerar inte inmatningsplatser, så se till att du är i rätt fönster och fält innan du använder genvägen."
diff --git a/apps/desktop/src/locales/te/messages.json b/apps/desktop/src/locales/te/messages.json
index 3d240ff77e8..15b71ce7f7a 100644
--- a/apps/desktop/src/locales/te/messages.json
+++ b/apps/desktop/src/locales/te/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Search vault"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "addItem": {
     "message": "Add item"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Unlock with Windows Hello"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Additional Windows Hello settings"
-  },
   "unlockWithPolkit": {
     "message": "Unlock with system authentication"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "unlock your vault"
   },
-  "autoPromptWindowsHello": {
-    "message": "Ask for Windows Hello on app start"
-  },
-  "autoPromptPolkit": {
-    "message": "Ask for system authentication on launch"
-  },
   "autoPromptTouchId": {
     "message": "Ask for Touch ID on app start"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Require password on app start"
   },
-  "recommendedForSecurity": {
-    "message": "Recommended for security."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Lock with master password on restart"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Enable autotype shortcut"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
diff --git a/apps/desktop/src/locales/th/messages.json b/apps/desktop/src/locales/th/messages.json
index 031c9bb6364..81dcca53711 100644
--- a/apps/desktop/src/locales/th/messages.json
+++ b/apps/desktop/src/locales/th/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Search vault"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "addItem": {
     "message": "เพิ่มรายการ"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "ปลดล็อก ด้วย Windows Hello"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Additional Windows Hello settings"
-  },
   "unlockWithPolkit": {
     "message": "Unlock with system authentication"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "unlock your vault"
   },
-  "autoPromptWindowsHello": {
-    "message": "Ask for Windows Hello on app start"
-  },
-  "autoPromptPolkit": {
-    "message": "Ask for system authentication on launch"
-  },
   "autoPromptTouchId": {
     "message": "Ask for Touch ID on app start"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Require password on app start"
   },
-  "recommendedForSecurity": {
-    "message": "Recommended for security."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Lock with master password on restart"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Enable autotype shortcut"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
diff --git a/apps/desktop/src/locales/tr/messages.json b/apps/desktop/src/locales/tr/messages.json
index b95c585c28f..149766d6b72 100644
--- a/apps/desktop/src/locales/tr/messages.json
+++ b/apps/desktop/src/locales/tr/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Kasada ara"
   },
+  "resetSearch": {
+    "message": "Aramayı sıfırla"
+  },
   "addItem": {
     "message": "Kayıt ekle"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Kilidi Windows Hello ile aç"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Ekstra Windows Hello ayarları"
-  },
   "unlockWithPolkit": {
     "message": "Unlock with system authentication"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "kasanızın kilidini açma"
   },
-  "autoPromptWindowsHello": {
-    "message": "Uygulamayı başlatırken Windows Hello doğrulaması iste"
-  },
-  "autoPromptPolkit": {
-    "message": "Ask for system authentication on launch"
-  },
   "autoPromptTouchId": {
     "message": "Uygulamayı başlatırken Touch ID iste"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Uygulamayı başlatırken parola iste"
   },
-  "recommendedForSecurity": {
-    "message": "Güvenliğiniz için önerilir."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Yeniden başlatmada ana parola ile kilitle"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Enable autotype shortcut"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
diff --git a/apps/desktop/src/locales/uk/messages.json b/apps/desktop/src/locales/uk/messages.json
index 724959446d6..5a35187d9fb 100644
--- a/apps/desktop/src/locales/uk/messages.json
+++ b/apps/desktop/src/locales/uk/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Шукати у сховищі"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "addItem": {
     "message": "Додати запис"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Розблокувати з Windows Hello"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Додаткові налаштування Windows Hello"
-  },
   "unlockWithPolkit": {
     "message": "Розблокувати за допомогою системної автентифікації"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "розблокувати сховище"
   },
-  "autoPromptWindowsHello": {
-    "message": "Запитувати Windows Hello під час запуску"
-  },
-  "autoPromptPolkit": {
-    "message": "Запитувати системну автентифікацію під час запуску"
-  },
   "autoPromptTouchId": {
     "message": "Запитувати Touch ID під час запуску"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Вимагати пароль під час запуску"
   },
-  "recommendedForSecurity": {
-    "message": "Рекомендовано для безпеки."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Блокувати головним паролем при перезапуску"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Enable autotype shortcut"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."
diff --git a/apps/desktop/src/locales/vi/messages.json b/apps/desktop/src/locales/vi/messages.json
index d0ff3cca7bc..5232ca6f81e 100644
--- a/apps/desktop/src/locales/vi/messages.json
+++ b/apps/desktop/src/locales/vi/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "Tìm kiếm trong Kho"
   },
+  "resetSearch": {
+    "message": "Đặt lại tìm kiếm"
+  },
   "addItem": {
     "message": "Thêm mục"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "Mở khóa với Windows Hello"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "Cài đặt bổ sung cho Windows Hello"
-  },
   "unlockWithPolkit": {
     "message": "Mở khóa bằng bảo mật hệ thống"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "mở khoá kho của bạn"
   },
-  "autoPromptWindowsHello": {
-    "message": "Yêu cầu xác minh Windows Hello khi mở ứng dụng"
-  },
-  "autoPromptPolkit": {
-    "message": "Yêu cầu xác thực hệ thống khi khởi động"
-  },
   "autoPromptTouchId": {
     "message": "Yêu cầu xác minh Touch ID khi mở ứng dụng"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Yêu cầu mật khẩu khi khởi động ứng dụng"
   },
-  "recommendedForSecurity": {
-    "message": "Khuyến nghị để bảo mật."
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "Khóa bằng mật khẩu chính khi khởi động lại"
   },
@@ -3180,7 +3171,7 @@
     "message": "Khu vực"
   },
   "ssoIdentifierRequired": {
-    "message": "Cần có mã định danh Đăng nhập một lần của tổ chức."
+    "message": "Cần có mã định danh SSO của tổ chức."
   },
   "eu": {
     "message": "Châu Âu",
@@ -3539,7 +3530,7 @@
     "message": "Yêu cầu xác thực LastPass"
   },
   "awaitingSSO": {
-    "message": "Đang chờ xác thực Đăng nhập một lần"
+    "message": "Đang chờ xác thực SSO"
   },
   "awaitingSSODesc": {
     "message": "Vui lòng tiếp tục đăng nhập bằng thông tin đăng nhập của công ty bạn."
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Bật phím tắt tự động điền"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden không kiểm tra vị trí nhập liệu, hãy đảm bảo bạn đang ở trong đúng cửa sổ và trường nhập liệu trước khi dùng phím tắt."
diff --git a/apps/desktop/src/locales/zh_CN/messages.json b/apps/desktop/src/locales/zh_CN/messages.json
index c0bb7e0f0d3..8337a71ecbe 100644
--- a/apps/desktop/src/locales/zh_CN/messages.json
+++ b/apps/desktop/src/locales/zh_CN/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "搜索密码库"
   },
+  "resetSearch": {
+    "message": "重置搜索"
+  },
   "addItem": {
     "message": "添加项目"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "使用 Windows Hello 解锁"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "额外的 Windows Hello 设置"
-  },
   "unlockWithPolkit": {
     "message": "使用系统身份验证解锁"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "解锁您的密码库"
   },
-  "autoPromptWindowsHello": {
-    "message": "应用程序启动时提示 Windows Hello"
-  },
-  "autoPromptPolkit": {
-    "message": "启动时提示系统身份验证"
-  },
   "autoPromptTouchId": {
     "message": "应用程序启动时提示触控 ID"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "应用程序启动时要求密码"
   },
-  "recommendedForSecurity": {
-    "message": "安全起见，推荐设置。"
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "重启后使用主密码锁定"
   },
@@ -3048,7 +3039,7 @@
     "message": "刚刚"
   },
   "requestedXMinutesAgo": {
-    "message": "$MINUTES$ 分钟前已发出请求",
+    "message": "请求于 $MINUTES$ 分钟前",
     "placeholders": {
       "minutes": {
         "content": "$1",
@@ -3568,15 +3559,15 @@
     "description": "Label indicating the most common import formats"
   },
   "uriMatchDefaultStrategyHint": {
-    "message": "URI match detection is how Bitwarden identifies autofill suggestions.",
+    "message": "Bitwarden 根据 URI 匹配检测来识别自动填充建议。",
     "description": "Explains to the user that URI match detection determines how Bitwarden suggests autofill options, and clarifies that this default strategy applies when no specific match detection is set for a login item."
   },
   "regExAdvancedOptionWarning": {
-    "message": "\"Regular expression\" is an advanced option with increased risk of exposing credentials.",
+    "message": "「正则表达方式」是一种高级选项，会增加暴露凭据的风险。",
     "description": "Content for dialog which warns a user when selecting 'regular expression' matching strategy as a cipher match strategy"
   },
   "startsWithAdvancedOptionWarning": {
-    "message": "\"Starts with\" is an advanced option with increased risk of exposing credentials.",
+    "message": "「开始于」是一种高级选项，会增加暴露凭据的风险。",
     "description": "Content for dialog which warns a user when selecting 'starts with' matching strategy as a cipher match strategy"
   },
   "uriMatchWarningDialogLink": {
@@ -4015,10 +4006,10 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "启用自动类型快捷方式"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
-    "message": "Bitwarden 不验证输入位置，请确保您在使用快捷键之前在正确的窗口和字段中。"
+    "message": "Bitwarden 不会验证输入位置，在使用快捷键之前，请确保您位于正确的窗口和字段中。"
   }
 }
diff --git a/apps/desktop/src/locales/zh_TW/messages.json b/apps/desktop/src/locales/zh_TW/messages.json
index c2253c56760..f823a8877e2 100644
--- a/apps/desktop/src/locales/zh_TW/messages.json
+++ b/apps/desktop/src/locales/zh_TW/messages.json
@@ -41,6 +41,9 @@
   "searchVault": {
     "message": "搜尋密碼庫"
   },
+  "resetSearch": {
+    "message": "Reset search"
+  },
   "addItem": {
     "message": "新增項目"
   },
@@ -1813,9 +1816,6 @@
   "unlockWithWindowsHello": {
     "message": "使用 Windows Hello 解鎖"
   },
-  "additionalWindowsHelloSettings": {
-    "message": "額外的 Windows Hello 設定"
-  },
   "unlockWithPolkit": {
     "message": "使用系統驗證解鎖"
   },
@@ -1831,12 +1831,6 @@
   "touchIdConsentMessage": {
     "message": "解鎖您的密碼庫"
   },
-  "autoPromptWindowsHello": {
-    "message": "啟動應用程式時詢問 Windows Hello"
-  },
-  "autoPromptPolkit": {
-    "message": "在啟動時詢問系統驗證"
-  },
   "autoPromptTouchId": {
     "message": "啟動應用程式時要求 Touch ID"
   },
@@ -1846,9 +1840,6 @@
   "requirePasswordWithoutPinOnStart": {
     "message": "Require password on app start"
   },
-  "recommendedForSecurity": {
-    "message": "為提升安全，建議使用。"
-  },
   "lockWithMasterPassOnRestart1": {
     "message": "重啟後使用主密碼鎖定"
   },
@@ -4015,8 +4006,8 @@
       }
     }
   },
-  "enableAutotype": {
-    "message": "Enable autotype shortcut"
+  "enableAutotypeTransitionKey": {
+    "message": "Enable Autotype"
   },
   "enableAutotypeDescription": {
     "message": "Bitwarden does not validate input locations, be sure you are in the right window and field before using the shortcut."

From 1491445392701a04d4127c2b18e309a967df4d75 Mon Sep 17 00:00:00 2001
From: Oscar Hinton <Hinton@users.noreply.github.com>
Date: Fri, 25 Jul 2025 12:21:15 +0200
Subject: [PATCH 235/239] [PM-24042] Migrate AC owned abstract services to
 strict TS (#15733)

* Migrate remaining AC owned abstract services to strict TS

* Remove now unused service
---
 .../abstractions/collection-admin.service.ts  | 16 +++++++--------
 .../abstractions/collection.service.ts        | 20 +++++++++----------
 2 files changed, 18 insertions(+), 18 deletions(-)

diff --git a/libs/admin-console/src/common/collections/abstractions/collection-admin.service.ts b/libs/admin-console/src/common/collections/abstractions/collection-admin.service.ts
index 083539e9f6e..61faabb16b8 100644
--- a/libs/admin-console/src/common/collections/abstractions/collection-admin.service.ts
+++ b/libs/admin-console/src/common/collections/abstractions/collection-admin.service.ts
@@ -4,20 +4,20 @@ import { UserId } from "@bitwarden/common/types/guid";
 import { CollectionAccessSelectionView, CollectionAdminView } from "../models";
 
 export abstract class CollectionAdminService {
-  abstract getAll: (organizationId: string) => Promise<CollectionAdminView[]>;
-  abstract get: (
+  abstract getAll(organizationId: string): Promise<CollectionAdminView[]>;
+  abstract get(
     organizationId: string,
     collectionId: string,
-  ) => Promise<CollectionAdminView | undefined>;
-  abstract save: (
+  ): Promise<CollectionAdminView | undefined>;
+  abstract save(
     collection: CollectionAdminView,
     userId: UserId,
-  ) => Promise<CollectionDetailsResponse>;
-  abstract delete: (organizationId: string, collectionId: string) => Promise<void>;
-  abstract bulkAssignAccess: (
+  ): Promise<CollectionDetailsResponse>;
+  abstract delete(organizationId: string, collectionId: string): Promise<void>;
+  abstract bulkAssignAccess(
     organizationId: string,
     collectionIds: string[],
     users: CollectionAccessSelectionView[],
     groups: CollectionAccessSelectionView[],
-  ) => Promise<void>;
+  ): Promise<void>;
 }
diff --git a/libs/admin-console/src/common/collections/abstractions/collection.service.ts b/libs/admin-console/src/common/collections/abstractions/collection.service.ts
index e69f96232da..dabaf078e16 100644
--- a/libs/admin-console/src/common/collections/abstractions/collection.service.ts
+++ b/libs/admin-console/src/common/collections/abstractions/collection.service.ts
@@ -7,25 +7,25 @@ import { TreeNode } from "@bitwarden/common/vault/models/domain/tree-node";
 import { CollectionData, Collection, CollectionView } from "../models";
 
 export abstract class CollectionService {
-  abstract encryptedCollections$: (userId: UserId) => Observable<Collection[] | null>;
-  abstract decryptedCollections$: (userId: UserId) => Observable<CollectionView[]>;
-  abstract upsert: (collection: CollectionData, userId: UserId) => Promise<any>;
-  abstract replace: (collections: { [id: string]: CollectionData }, userId: UserId) => Promise<any>;
+  abstract encryptedCollections$(userId: UserId): Observable<Collection[] | null>;
+  abstract decryptedCollections$(userId: UserId): Observable<CollectionView[]>;
+  abstract upsert(collection: CollectionData, userId: UserId): Promise<any>;
+  abstract replace(collections: { [id: string]: CollectionData }, userId: UserId): Promise<any>;
   /**
    * @deprecated This method will soon be made private, use `decryptedCollections$` instead.
    */
-  abstract decryptMany$: (
+  abstract decryptMany$(
     collections: Collection[],
     orgKeys: Record<OrganizationId, OrgKey>,
-  ) => Observable<CollectionView[]>;
-  abstract delete: (ids: CollectionId[], userId: UserId) => Promise<any>;
-  abstract encrypt: (model: CollectionView, userId: UserId) => Promise<Collection>;
+  ): Observable<CollectionView[]>;
+  abstract delete(ids: CollectionId[], userId: UserId): Promise<any>;
+  abstract encrypt(model: CollectionView, userId: UserId): Promise<Collection>;
   /**
    * Transforms the input CollectionViews into TreeNodes
    */
-  abstract getAllNested: (collections: CollectionView[]) => TreeNode<CollectionView>[];
+  abstract getAllNested(collections: CollectionView[]): TreeNode<CollectionView>[];
   /*
    * Transforms the input CollectionViews into TreeNodes and then returns the Treenode with the specified id
    */
-  abstract getNested: (collections: CollectionView[], id: string) => TreeNode<CollectionView>;
+  abstract getNested(collections: CollectionView[], id: string): TreeNode<CollectionView>;
 }

From 594455af8803615ec4315eff7ad6fee2940dbe6e Mon Sep 17 00:00:00 2001
From: Bernd Schoolmann <mail@quexten.com>
Date: Fri, 25 Jul 2025 13:19:48 +0200
Subject: [PATCH 236/239] [PM-23099] Prevent private key regen / private key
 generation on v2 accounts (#15413)

* Prevent private key regen / private key generation on v2 accounts

* Fix tests

* Fix build

* Fix tests
---
 .../login-strategies/login.strategy.spec.ts    | 10 ++++++++++
 .../common/login-strategies/login.strategy.ts  |  5 +++++
 ...asymmetric-key-regeneration.service.spec.ts | 18 ++++++++++++++++++
 ...user-asymmetric-key-regeneration.service.ts |  8 ++++++++
 4 files changed, 41 insertions(+)

diff --git a/libs/auth/src/common/login-strategies/login.strategy.spec.ts b/libs/auth/src/common/login-strategies/login.strategy.spec.ts
index 78561b443a3..1a6592887ba 100644
--- a/libs/auth/src/common/login-strategies/login.strategy.spec.ts
+++ b/libs/auth/src/common/login-strategies/login.strategy.spec.ts
@@ -327,6 +327,7 @@ describe("LoginStrategy", () => {
       const tokenResponse = identityTokenResponseFactory();
       tokenResponse.privateKey = null;
       keyService.makeKeyPair.mockResolvedValue(["PUBLIC_KEY", new EncString("PRIVATE_KEY")]);
+      keyService.getUserKey.mockResolvedValue(userKey);
 
       apiService.postIdentityToken.mockResolvedValue(tokenResponse);
       masterPasswordService.masterKeySubject.next(masterKey);
@@ -343,6 +344,15 @@ describe("LoginStrategy", () => {
 
       expect(apiService.postAccountKeys).toHaveBeenCalled();
     });
+
+    it("throws if userKey is CoseEncrypt0 (V2 encryption) in createKeyPairForOldAccount", async () => {
+      keyService.getUserKey.mockResolvedValue({
+        inner: () => ({ type: 7 }),
+      } as UserKey);
+      await expect(passwordLoginStrategy["createKeyPairForOldAccount"](userId)).resolves.toBe(
+        undefined,
+      );
+    });
   });
 
   describe("Two-factor authentication", () => {
diff --git a/libs/auth/src/common/login-strategies/login.strategy.ts b/libs/auth/src/common/login-strategies/login.strategy.ts
index b8d5f64bfcc..53e34147d9f 100644
--- a/libs/auth/src/common/login-strategies/login.strategy.ts
+++ b/libs/auth/src/common/login-strategies/login.strategy.ts
@@ -31,6 +31,7 @@ import { LogService } from "@bitwarden/common/platform/abstractions/log.service"
 import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
 import { StateService } from "@bitwarden/common/platform/abstractions/state.service";
+import { EncryptionType } from "@bitwarden/common/platform/enums";
 import { Account, AccountProfile } from "@bitwarden/common/platform/models/domain/account";
 import { UserId } from "@bitwarden/common/types/guid";
 import {
@@ -326,6 +327,10 @@ export abstract class LoginStrategy {
   protected async createKeyPairForOldAccount(userId: UserId) {
     try {
       const userKey = await this.keyService.getUserKey(userId);
+      if (userKey.inner().type == EncryptionType.CoseEncrypt0) {
+        throw new Error("Cannot create key pair for account on V2 encryption");
+      }
+
       const [publicKey, privateKey] = await this.keyService.makeKeyPair(userKey);
       if (!privateKey.encryptedString) {
         throw new Error("Failed to create encrypted private key");
diff --git a/libs/key-management/src/user-asymmetric-key-regeneration/services/default-user-asymmetric-key-regeneration.service.spec.ts b/libs/key-management/src/user-asymmetric-key-regeneration/services/default-user-asymmetric-key-regeneration.service.spec.ts
index abccfee4c59..3a622fe72c0 100644
--- a/libs/key-management/src/user-asymmetric-key-regeneration/services/default-user-asymmetric-key-regeneration.service.spec.ts
+++ b/libs/key-management/src/user-asymmetric-key-regeneration/services/default-user-asymmetric-key-regeneration.service.spec.ts
@@ -354,4 +354,22 @@ describe("regenerateIfNeeded", () => {
     ).not.toHaveBeenCalled();
     expect(keyService.setPrivateKey).not.toHaveBeenCalled();
   });
+
+  it("should not regenerate when userKey type is CoseEncrypt0 (V2 encryption)", async () => {
+    const mockUserKey = {
+      keyB64: "mockKeyB64",
+      inner: () => ({ type: 7 }),
+    } as unknown as UserKey;
+    keyService.userKey$.mockReturnValue(of(mockUserKey));
+
+    await sut.regenerateIfNeeded(userId);
+
+    expect(
+      userAsymmetricKeysRegenerationApiService.regenerateUserAsymmetricKeys,
+    ).not.toHaveBeenCalled();
+    expect(keyService.setPrivateKey).not.toHaveBeenCalled();
+    expect(logService.error).toHaveBeenCalledWith(
+      "[UserAsymmetricKeyRegeneration] Cannot regenerate asymmetric keys for accounts on V2 encryption.",
+    );
+  });
 });
diff --git a/libs/key-management/src/user-asymmetric-key-regeneration/services/default-user-asymmetric-key-regeneration.service.ts b/libs/key-management/src/user-asymmetric-key-regeneration/services/default-user-asymmetric-key-regeneration.service.ts
index 3e837237895..335f45b0ce2 100644
--- a/libs/key-management/src/user-asymmetric-key-regeneration/services/default-user-asymmetric-key-regeneration.service.ts
+++ b/libs/key-management/src/user-asymmetric-key-regeneration/services/default-user-asymmetric-key-regeneration.service.ts
@@ -6,6 +6,7 @@ import { EncString } from "@bitwarden/common/key-management/crypto/models/enc-st
 import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { SdkService } from "@bitwarden/common/platform/abstractions/sdk/sdk.service";
+import { EncryptionType } from "@bitwarden/common/platform/enums";
 import { UserId } from "@bitwarden/common/types/guid";
 import { UserKey } from "@bitwarden/common/types/key";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
@@ -60,6 +61,13 @@ export class DefaultUserAsymmetricKeysRegenerationService
       return false;
     }
 
+    if (userKey.inner().type === EncryptionType.CoseEncrypt0) {
+      this.logService.error(
+        "[UserAsymmetricKeyRegeneration] Cannot regenerate asymmetric keys for accounts on V2 encryption.",
+      );
+      return false;
+    }
+
     const [userKeyEncryptedPrivateKey, publicKeyResponse] = await firstValueFrom(
       combineLatest([
         this.keyService.userEncryptedPrivateKey$(userId),

From 37987f4f972767f5f3607bbb250cc6a9d673f8d6 Mon Sep 17 00:00:00 2001
From: Vicki League <vleague@bitwarden.com>
Date: Fri, 25 Jul 2025 08:34:39 -0400
Subject: [PATCH 237/239] [CL-801] Move popover in kitchen sink story to avoid
 scrolling (#15767)

---
 .../components/kitchen-sink-main.component.ts | 24 ++++++++++++++++++-
 .../kitchen-sink/kitchen-sink.stories.ts      | 12 +++-------
 2 files changed, 26 insertions(+), 10 deletions(-)

diff --git a/libs/components/src/stories/kitchen-sink/components/kitchen-sink-main.component.ts b/libs/components/src/stories/kitchen-sink/components/kitchen-sink-main.component.ts
index 767659de3cb..6083b3d66e1 100644
--- a/libs/components/src/stories/kitchen-sink/components/kitchen-sink-main.component.ts
+++ b/libs/components/src/stories/kitchen-sink/components/kitchen-sink-main.component.ts
@@ -105,7 +105,21 @@ class KitchenSinkDialog {
 
     <div class="tw-my-6">
       <h1 bitTypography="h1">Bitwarden Kitchen Sink<bit-avatar text="Bit Warden"></bit-avatar></h1>
-      <a bitLink linkType="primary" href="#">Learn more</a>
+      <a bitLink linkType="primary" href="#">This is a link</a>
+      <p bitTypography="body1" class="tw-inline">
+        &nbsp;and this is a link button popover trigger:&nbsp;
+      </p>
+      <button
+        bitLink
+        linkType="primary"
+        [bitPopoverTriggerFor]="myPopover"
+        #triggerRef="popoverTrigger"
+        type="button"
+        slot="end"
+        aria-label="Popover trigger link"
+      >
+        <i class="bwi bwi-question-circle"></i>
+      </button>
     </div>
 
     <bit-callout type="info" title="About the Kitchen Sink">
@@ -149,6 +163,14 @@ class KitchenSinkDialog {
         </bit-section>
       </bit-tab>
     </bit-tab-group>
+
+    <bit-popover [title]="'Educational Popover'" #myPopover>
+      <div>You can learn more things at:</div>
+      <ul class="tw-mt-2 tw-mb-0 tw-ps-4">
+        <li>Help center</li>
+        <li>Support</li>
+      </ul>
+    </bit-popover>
   `,
 })
 export class KitchenSinkMainComponent {
diff --git a/libs/components/src/stories/kitchen-sink/kitchen-sink.stories.ts b/libs/components/src/stories/kitchen-sink/kitchen-sink.stories.ts
index 671a8d9ad82..cb8a72e1b3f 100644
--- a/libs/components/src/stories/kitchen-sink/kitchen-sink.stories.ts
+++ b/libs/components/src/stories/kitchen-sink/kitchen-sink.stories.ts
@@ -6,7 +6,6 @@ import {
   userEvent,
   getAllByRole,
   getByRole,
-  getByLabelText,
   fireEvent,
   getByText,
   getAllByLabelText,
@@ -155,16 +154,11 @@ export const PopoverOpen: Story = {
   render: Default.render,
   play: async (context) => {
     const canvas = context.canvasElement;
-    const passwordLabelIcon = getByLabelText(canvas, "A random password (required)", {
-      selector: "button",
+    const popoverLink = getByRole(canvas, "button", {
+      name: "Popover trigger link",
     });
 
-    await userEvent.click(passwordLabelIcon);
-  },
-  parameters: {
-    chromatic: {
-      disableSnapshot: true,
-    },
+    await userEvent.click(popoverLink);
   },
 };
 

From b358d5663d788be59e84dbb619cae94717ec729d Mon Sep 17 00:00:00 2001
From: Tom <144813356+ttalty@users.noreply.github.com>
Date: Fri, 25 Jul 2025 09:43:41 -0400
Subject: [PATCH 238/239] [PM-23822] [PM-23823] Organization integration and
 configuration api services  (#15763)

* Adding the organization integration api service and test cases

* Adding configuration api files and test cases. Fixing the id guids and integration type and event type nullable

* Adding get endpoint methods to the integration and config service and test cases

* fixing type check issues

* lowercase directory name
---
 .../bit-common/src/dirt/integrations/index.ts |   1 +
 ...ation-integration-configuration-request.ts |  20 +++
 ...tion-integration-configuration-response.ts |  20 +++
 .../organization-integration-request.ts       |  11 ++
 .../organization-integration-response.ts      |  15 ++
 .../organization-integration-service-type.ts  |   6 +
 .../models/organization-integration-type.ts   |  10 ++
 .../src/dirt/integrations/services/index.ts   |   2 +
 ...ganization-integration-api.service.spec.ts | 115 +++++++++++++++
 .../organization-integration-api.service.ts   |  67 +++++++++
 ...egration-configuration-api.service.spec.ts | 132 ++++++++++++++++++
 ...n-integration-configuration-api.service.ts |  75 ++++++++++
 libs/common/src/types/guid.ts                 |   5 +
 13 files changed, 479 insertions(+)
 create mode 100644 bitwarden_license/bit-common/src/dirt/integrations/index.ts
 create mode 100644 bitwarden_license/bit-common/src/dirt/integrations/models/organization-integration-configuration-request.ts
 create mode 100644 bitwarden_license/bit-common/src/dirt/integrations/models/organization-integration-configuration-response.ts
 create mode 100644 bitwarden_license/bit-common/src/dirt/integrations/models/organization-integration-request.ts
 create mode 100644 bitwarden_license/bit-common/src/dirt/integrations/models/organization-integration-response.ts
 create mode 100644 bitwarden_license/bit-common/src/dirt/integrations/models/organization-integration-service-type.ts
 create mode 100644 bitwarden_license/bit-common/src/dirt/integrations/models/organization-integration-type.ts
 create mode 100644 bitwarden_license/bit-common/src/dirt/integrations/services/index.ts
 create mode 100644 bitwarden_license/bit-common/src/dirt/integrations/services/organization-integration-api.service.spec.ts
 create mode 100644 bitwarden_license/bit-common/src/dirt/integrations/services/organization-integration-api.service.ts
 create mode 100644 bitwarden_license/bit-common/src/dirt/integrations/services/organization-integration-configuration-api.service.spec.ts
 create mode 100644 bitwarden_license/bit-common/src/dirt/integrations/services/organization-integration-configuration-api.service.ts

diff --git a/bitwarden_license/bit-common/src/dirt/integrations/index.ts b/bitwarden_license/bit-common/src/dirt/integrations/index.ts
new file mode 100644
index 00000000000..b2221a94a89
--- /dev/null
+++ b/bitwarden_license/bit-common/src/dirt/integrations/index.ts
@@ -0,0 +1 @@
+export * from "./services";
diff --git a/bitwarden_license/bit-common/src/dirt/integrations/models/organization-integration-configuration-request.ts b/bitwarden_license/bit-common/src/dirt/integrations/models/organization-integration-configuration-request.ts
new file mode 100644
index 00000000000..58c59304479
--- /dev/null
+++ b/bitwarden_license/bit-common/src/dirt/integrations/models/organization-integration-configuration-request.ts
@@ -0,0 +1,20 @@
+import { EventType } from "@bitwarden/common/enums";
+
+export class OrganizationIntegrationConfigurationRequest {
+  eventType?: EventType | null = null;
+  configuration?: string | null = null;
+  filters?: string | null = null;
+  template?: string | null = null;
+
+  constructor(
+    eventType?: EventType | null,
+    configuration?: string | null,
+    filters?: string | null,
+    template?: string | null,
+  ) {
+    this.eventType = eventType;
+    this.configuration = configuration;
+    this.filters = filters;
+    this.template = template;
+  }
+}
diff --git a/bitwarden_license/bit-common/src/dirt/integrations/models/organization-integration-configuration-response.ts b/bitwarden_license/bit-common/src/dirt/integrations/models/organization-integration-configuration-response.ts
new file mode 100644
index 00000000000..47baf3276ad
--- /dev/null
+++ b/bitwarden_license/bit-common/src/dirt/integrations/models/organization-integration-configuration-response.ts
@@ -0,0 +1,20 @@
+import { EventType } from "@bitwarden/common/enums";
+import { BaseResponse } from "@bitwarden/common/models/response/base.response";
+import { OrganizationIntegrationConfigurationId } from "@bitwarden/common/types/guid";
+
+export class OrganizationIntegrationConfigurationResponse extends BaseResponse {
+  id: OrganizationIntegrationConfigurationId;
+  eventType?: EventType;
+  configuration?: string;
+  filters?: string;
+  template?: string;
+
+  constructor(response: any) {
+    super(response);
+    this.id = this.getResponseProperty("Id");
+    this.eventType = this.getResponseProperty("EventType");
+    this.configuration = this.getResponseProperty("Configuration");
+    this.filters = this.getResponseProperty("Filters");
+    this.template = this.getResponseProperty("Template");
+  }
+}
diff --git a/bitwarden_license/bit-common/src/dirt/integrations/models/organization-integration-request.ts b/bitwarden_license/bit-common/src/dirt/integrations/models/organization-integration-request.ts
new file mode 100644
index 00000000000..95f7d180dae
--- /dev/null
+++ b/bitwarden_license/bit-common/src/dirt/integrations/models/organization-integration-request.ts
@@ -0,0 +1,11 @@
+import { OrganizationIntegrationType } from "./organization-integration-type";
+
+export class OrganizationIntegrationRequest {
+  type: OrganizationIntegrationType;
+  configuration?: string;
+
+  constructor(integrationType: OrganizationIntegrationType, configuration?: string) {
+    this.type = integrationType;
+    this.configuration = configuration;
+  }
+}
diff --git a/bitwarden_license/bit-common/src/dirt/integrations/models/organization-integration-response.ts b/bitwarden_license/bit-common/src/dirt/integrations/models/organization-integration-response.ts
new file mode 100644
index 00000000000..00880ea4740
--- /dev/null
+++ b/bitwarden_license/bit-common/src/dirt/integrations/models/organization-integration-response.ts
@@ -0,0 +1,15 @@
+import { BaseResponse } from "@bitwarden/common/models/response/base.response";
+import { OrganizationIntegrationId } from "@bitwarden/common/types/guid";
+
+import { OrganizationIntegrationType } from "./organization-integration-type";
+
+export class OrganizationIntegrationResponse extends BaseResponse {
+  id: OrganizationIntegrationId;
+  organizationIntegrationType: OrganizationIntegrationType;
+
+  constructor(response: any) {
+    super(response);
+    this.id = this.getResponseProperty("Id");
+    this.organizationIntegrationType = this.getResponseProperty("Type");
+  }
+}
diff --git a/bitwarden_license/bit-common/src/dirt/integrations/models/organization-integration-service-type.ts b/bitwarden_license/bit-common/src/dirt/integrations/models/organization-integration-service-type.ts
new file mode 100644
index 00000000000..dd1b4fb3f6c
--- /dev/null
+++ b/bitwarden_license/bit-common/src/dirt/integrations/models/organization-integration-service-type.ts
@@ -0,0 +1,6 @@
+export const OrganizationIntegrationServiceType = Object.freeze({
+  CrowdStrike: "CrowdStrike",
+} as const);
+
+export type OrganizationIntegrationServiceType =
+  (typeof OrganizationIntegrationServiceType)[keyof typeof OrganizationIntegrationServiceType];
diff --git a/bitwarden_license/bit-common/src/dirt/integrations/models/organization-integration-type.ts b/bitwarden_license/bit-common/src/dirt/integrations/models/organization-integration-type.ts
new file mode 100644
index 00000000000..1c98e174836
--- /dev/null
+++ b/bitwarden_license/bit-common/src/dirt/integrations/models/organization-integration-type.ts
@@ -0,0 +1,10 @@
+export const OrganizationIntegrationType = Object.freeze({
+  CloudBillingSync: 1,
+  Scim: 2,
+  Slack: 3,
+  Webhook: 4,
+  Hec: 5,
+} as const);
+
+export type OrganizationIntegrationType =
+  (typeof OrganizationIntegrationType)[keyof typeof OrganizationIntegrationType];
diff --git a/bitwarden_license/bit-common/src/dirt/integrations/services/index.ts b/bitwarden_license/bit-common/src/dirt/integrations/services/index.ts
new file mode 100644
index 00000000000..68a673854ae
--- /dev/null
+++ b/bitwarden_license/bit-common/src/dirt/integrations/services/index.ts
@@ -0,0 +1,2 @@
+export * from "./organization-integration-api.service";
+export * from "./organization-integration-configuration-api.service";
diff --git a/bitwarden_license/bit-common/src/dirt/integrations/services/organization-integration-api.service.spec.ts b/bitwarden_license/bit-common/src/dirt/integrations/services/organization-integration-api.service.spec.ts
new file mode 100644
index 00000000000..bf3e16ed430
--- /dev/null
+++ b/bitwarden_license/bit-common/src/dirt/integrations/services/organization-integration-api.service.spec.ts
@@ -0,0 +1,115 @@
+import { mock } from "jest-mock-extended";
+
+import { ApiService } from "@bitwarden/common/abstractions/api.service";
+import { OrganizationId, OrganizationIntegrationId } from "@bitwarden/common/types/guid";
+
+import { OrganizationIntegrationRequest } from "../models/organization-integration-request";
+import { OrganizationIntegrationServiceType } from "../models/organization-integration-service-type";
+import { OrganizationIntegrationType } from "../models/organization-integration-type";
+
+import { OrganizationIntegrationApiService } from "./organization-integration-api.service";
+
+export const mockIntegrationResponse: any = {
+  id: "1" as OrganizationIntegrationId,
+  organizationIntegrationType: OrganizationIntegrationType.Hec,
+};
+
+export const mockIntegrationResponses: any[] = [
+  {
+    id: "1" as OrganizationIntegrationId,
+    OrganizationIntegrationType: OrganizationIntegrationType.Hec,
+  },
+  {
+    id: "2" as OrganizationIntegrationId,
+    OrganizationIntegrationType: OrganizationIntegrationType.Webhook,
+  },
+];
+
+describe("OrganizationIntegrationApiService", () => {
+  let service: OrganizationIntegrationApiService;
+  const apiService = mock<ApiService>();
+
+  beforeEach(() => {
+    service = new OrganizationIntegrationApiService(apiService);
+  });
+
+  it("should be created", () => {
+    expect(service).toBeTruthy();
+  });
+
+  it("should call apiService.send with correct parameters for getOrganizationIntegrations", async () => {
+    const orgId = "org1" as OrganizationId;
+
+    apiService.send.mockReturnValue(Promise.resolve(mockIntegrationResponses));
+
+    const result = await service.getOrganizationIntegrations(orgId);
+    expect(result).toEqual(mockIntegrationResponses);
+    expect(apiService.send).toHaveBeenCalledWith(
+      "GET",
+      `organizations/${orgId}/integrations`,
+      null,
+      true,
+      true,
+    );
+  });
+
+  it("should call apiService.send with correct parameters for createOrganizationIntegration", async () => {
+    const request = new OrganizationIntegrationRequest(
+      OrganizationIntegrationType.Hec,
+      `{ 'uri:' 'test.com', 'scheme:' 'bearer', 'token:' '123456789', 'service:' '${OrganizationIntegrationServiceType.CrowdStrike}' }`,
+    );
+    const orgId = "org1" as OrganizationId;
+
+    apiService.send.mockReturnValue(Promise.resolve(mockIntegrationResponse));
+
+    const result = await service.createOrganizationIntegration(orgId, request);
+    expect(result.organizationIntegrationType).toEqual(
+      mockIntegrationResponse.organizationIntegrationType,
+    );
+    expect(apiService.send).toHaveBeenCalledWith(
+      "POST",
+      `organizations/${orgId.toString()}/integrations`,
+      request,
+      true,
+      true,
+    );
+  });
+
+  it("should call apiService.send with the correct parameters for updateOrganizationIntegration", async () => {
+    const request = new OrganizationIntegrationRequest(
+      OrganizationIntegrationType.Hec,
+      `{ 'uri:' 'test.com', 'scheme:' 'bearer', 'token:' '123456789', 'service:' '${OrganizationIntegrationServiceType.CrowdStrike}' }`,
+    );
+    const orgId = "org1" as OrganizationId;
+    const integrationId = "integration1" as OrganizationIntegrationId;
+
+    apiService.send.mockReturnValue(Promise.resolve(mockIntegrationResponse));
+
+    const result = await service.updateOrganizationIntegration(orgId, integrationId, request);
+    expect(result.organizationIntegrationType).toEqual(
+      mockIntegrationResponse.organizationIntegrationType,
+    );
+    expect(apiService.send).toHaveBeenCalledWith(
+      "PUT",
+      `organizations/${orgId}/integrations/${integrationId}`,
+      request,
+      true,
+      true,
+    );
+  });
+
+  it("should call apiService.send with the correct parameters for deleteOrganizationIntegration", async () => {
+    const orgId = "org1" as OrganizationId;
+    const integrationId = "integration1" as OrganizationIntegrationId;
+
+    await service.deleteOrganizationIntegration(orgId, integrationId);
+
+    expect(apiService.send).toHaveBeenCalledWith(
+      "DELETE",
+      `organizations/${orgId}/integrations/${integrationId}`,
+      null,
+      true,
+      false,
+    );
+  });
+});
diff --git a/bitwarden_license/bit-common/src/dirt/integrations/services/organization-integration-api.service.ts b/bitwarden_license/bit-common/src/dirt/integrations/services/organization-integration-api.service.ts
new file mode 100644
index 00000000000..5cf8efefb05
--- /dev/null
+++ b/bitwarden_license/bit-common/src/dirt/integrations/services/organization-integration-api.service.ts
@@ -0,0 +1,67 @@
+import { Injectable } from "@angular/core";
+
+import { ApiService } from "@bitwarden/common/abstractions/api.service";
+import { OrganizationId, OrganizationIntegrationId } from "@bitwarden/common/types/guid";
+
+import { OrganizationIntegrationRequest } from "../models/organization-integration-request";
+import { OrganizationIntegrationResponse } from "../models/organization-integration-response";
+
+@Injectable()
+export class OrganizationIntegrationApiService {
+  constructor(private apiService: ApiService) {}
+
+  async getOrganizationIntegrations(
+    orgId: OrganizationId,
+  ): Promise<OrganizationIntegrationResponse[]> {
+    const response = await this.apiService.send(
+      "GET",
+      `organizations/${orgId}/integrations`,
+      null,
+      true,
+      true,
+    );
+    return response;
+  }
+
+  async createOrganizationIntegration(
+    orgId: OrganizationId,
+    request: OrganizationIntegrationRequest,
+  ): Promise<OrganizationIntegrationResponse> {
+    const response = await this.apiService.send(
+      "POST",
+      `organizations/${orgId}/integrations`,
+      request,
+      true,
+      true,
+    );
+    return response;
+  }
+
+  async updateOrganizationIntegration(
+    orgId: OrganizationId,
+    integrationId: OrganizationIntegrationId,
+    request: OrganizationIntegrationRequest,
+  ): Promise<OrganizationIntegrationResponse> {
+    const response = await this.apiService.send(
+      "PUT",
+      `organizations/${orgId}/integrations/${integrationId}`,
+      request,
+      true,
+      true,
+    );
+    return response;
+  }
+
+  async deleteOrganizationIntegration(
+    orgId: OrganizationId,
+    integrationId: OrganizationIntegrationId,
+  ): Promise<any> {
+    await this.apiService.send(
+      "DELETE",
+      `organizations/${orgId}/integrations/${integrationId}`,
+      null,
+      true,
+      false,
+    );
+  }
+}
diff --git a/bitwarden_license/bit-common/src/dirt/integrations/services/organization-integration-configuration-api.service.spec.ts b/bitwarden_license/bit-common/src/dirt/integrations/services/organization-integration-configuration-api.service.spec.ts
new file mode 100644
index 00000000000..48612efdd13
--- /dev/null
+++ b/bitwarden_license/bit-common/src/dirt/integrations/services/organization-integration-configuration-api.service.spec.ts
@@ -0,0 +1,132 @@
+import { mock } from "jest-mock-extended";
+
+import { ApiService } from "@bitwarden/common/abstractions/api.service";
+import {
+  OrganizationId,
+  OrganizationIntegrationId,
+  OrganizationIntegrationConfigurationId,
+} from "@bitwarden/common/types/guid";
+
+import { OrganizationIntegrationConfigurationRequest } from "../models/organization-integration-configuration-request";
+
+import { OrganizationIntegrationConfigurationApiService } from "./organization-integration-configuration-api.service";
+
+export const mockConfigurationResponse: any = {
+  id: "1" as OrganizationIntegrationConfigurationId,
+  template: "{ 'event': '#EventMessage#', 'source': 'Bitwarden', 'index': 'testIndex' }",
+};
+
+export const mockConfigurationResponses: any[] = [
+  {
+    id: "1" as OrganizationIntegrationConfigurationId,
+    template: "{ 'event': '#EventMessage#', 'source': 'Bitwarden', 'index': 'testIndex' }",
+  },
+  {
+    id: "2" as OrganizationIntegrationConfigurationId,
+    template: "{ 'event': '#EventMessage#', 'source': 'Bitwarden', 'index': 'otherIndex' }",
+  },
+];
+
+describe("OrganizationIntegrationConfigurationApiService", () => {
+  let service: OrganizationIntegrationConfigurationApiService;
+  const apiService = mock<ApiService>();
+
+  beforeEach(() => {
+    service = new OrganizationIntegrationConfigurationApiService(apiService);
+  });
+
+  it("should be created", () => {
+    expect(service).toBeTruthy();
+  });
+
+  it("should call apiService.send with correct parameters for getOrganizationIntegrationConfigurations", async () => {
+    const orgId = "org1" as OrganizationId;
+    const integrationId = "integration1" as OrganizationIntegrationId;
+
+    apiService.send.mockReturnValue(Promise.resolve(mockConfigurationResponses));
+
+    const result = await service.getOrganizationIntegrationConfigurations(orgId, integrationId);
+    expect(result).toEqual(mockConfigurationResponses);
+    expect(apiService.send).toHaveBeenCalledWith(
+      "GET",
+      `organizations/${orgId}/integrations/${integrationId}/configurations`,
+      null,
+      true,
+      true,
+    );
+  });
+
+  it("should call apiService.send with correct parameters for createOrganizationIntegrationConfiguration", async () => {
+    const request = new OrganizationIntegrationConfigurationRequest(
+      null,
+      null,
+      null,
+      "{ 'event': '#EventMessage#', 'source': 'Bitwarden', 'index': 'testIndex' }",
+    );
+    const orgId = "org1" as OrganizationId;
+    const integrationId = "integration1" as OrganizationIntegrationId;
+
+    apiService.send.mockReturnValue(Promise.resolve(mockConfigurationResponse));
+
+    const result = await service.createOrganizationIntegrationConfiguration(
+      orgId,
+      integrationId,
+      request,
+    );
+    expect(result.eventType).toEqual(mockConfigurationResponse.eventType);
+    expect(result.template).toEqual(mockConfigurationResponse.template);
+    expect(apiService.send).toHaveBeenCalledWith(
+      "POST",
+      `organizations/${orgId}/integrations/${integrationId}/configurations`,
+      request,
+      true,
+      true,
+    );
+  });
+
+  it("should call apiService.send with correct parameters for updateOrganizationIntegrationConfiguration", async () => {
+    const request = new OrganizationIntegrationConfigurationRequest(
+      null,
+      null,
+      null,
+      "{ 'event': '#EventMessage#', 'source': 'Bitwarden', 'index': 'testIndex' }",
+    );
+    const orgId = "org1" as OrganizationId;
+    const integrationId = "integration1" as OrganizationIntegrationId;
+    const configurationId = "configurationId" as OrganizationIntegrationConfigurationId;
+
+    apiService.send.mockReturnValue(Promise.resolve(mockConfigurationResponse));
+
+    const result = await service.updateOrganizationIntegrationConfiguration(
+      orgId,
+      integrationId,
+      configurationId,
+      request,
+    );
+    expect(result.eventType).toEqual(mockConfigurationResponse.eventType);
+    expect(result.template).toEqual(mockConfigurationResponse.template);
+    expect(apiService.send).toHaveBeenCalledWith(
+      "PUT",
+      `organizations/${orgId}/integrations/${integrationId}/configurations/${configurationId}`,
+      request,
+      true,
+      true,
+    );
+  });
+
+  it("should call apiService.send with correct parameters for deleteOrganizationIntegrationConfiguration", async () => {
+    const orgId = "org1" as OrganizationId;
+    const integrationId = "integration1" as OrganizationIntegrationId;
+    const configurationId = "configurationId" as OrganizationIntegrationConfigurationId;
+
+    await service.deleteOrganizationIntegrationConfiguration(orgId, integrationId, configurationId);
+
+    expect(apiService.send).toHaveBeenCalledWith(
+      "DELETE",
+      `organizations/${orgId}/integrations/${integrationId}/configurations/${configurationId}`,
+      null,
+      true,
+      false,
+    );
+  });
+});
diff --git a/bitwarden_license/bit-common/src/dirt/integrations/services/organization-integration-configuration-api.service.ts b/bitwarden_license/bit-common/src/dirt/integrations/services/organization-integration-configuration-api.service.ts
new file mode 100644
index 00000000000..b5bac73b280
--- /dev/null
+++ b/bitwarden_license/bit-common/src/dirt/integrations/services/organization-integration-configuration-api.service.ts
@@ -0,0 +1,75 @@
+import { Injectable } from "@angular/core";
+
+import { ApiService } from "@bitwarden/common/abstractions/api.service";
+import {
+  OrganizationId,
+  OrganizationIntegrationConfigurationId,
+  OrganizationIntegrationId,
+} from "@bitwarden/common/types/guid";
+
+import { OrganizationIntegrationConfigurationRequest } from "../models/organization-integration-configuration-request";
+import { OrganizationIntegrationConfigurationResponse } from "../models/organization-integration-configuration-response";
+
+@Injectable()
+export class OrganizationIntegrationConfigurationApiService {
+  constructor(private apiService: ApiService) {}
+
+  async getOrganizationIntegrationConfigurations(
+    orgId: OrganizationId,
+    integrationId: OrganizationIntegrationId,
+  ): Promise<OrganizationIntegrationConfigurationResponse[]> {
+    const responses = await this.apiService.send(
+      "GET",
+      `organizations/${orgId}/integrations/${integrationId}/configurations`,
+      null,
+      true,
+      true,
+    );
+    return responses;
+  }
+
+  async createOrganizationIntegrationConfiguration(
+    orgId: OrganizationId,
+    integrationId: OrganizationIntegrationId,
+    request: OrganizationIntegrationConfigurationRequest,
+  ): Promise<OrganizationIntegrationConfigurationResponse> {
+    const response = await this.apiService.send(
+      "POST",
+      `organizations/${orgId}/integrations/${integrationId}/configurations`,
+      request,
+      true,
+      true,
+    );
+    return response;
+  }
+
+  async updateOrganizationIntegrationConfiguration(
+    orgId: OrganizationId,
+    integrationId: OrganizationIntegrationId,
+    configurationId: OrganizationIntegrationConfigurationId,
+    request: OrganizationIntegrationConfigurationRequest,
+  ): Promise<OrganizationIntegrationConfigurationResponse> {
+    const response = await this.apiService.send(
+      "PUT",
+      `organizations/${orgId}/integrations/${integrationId}/configurations/${configurationId}`,
+      request,
+      true,
+      true,
+    );
+    return response;
+  }
+
+  async deleteOrganizationIntegrationConfiguration(
+    orgId: OrganizationId,
+    integrationId: OrganizationIntegrationId,
+    configurationId: OrganizationIntegrationConfigurationId,
+  ): Promise<any> {
+    await this.apiService.send(
+      "DELETE",
+      `organizations/${orgId}/integrations/${integrationId}/configurations/${configurationId}`,
+      null,
+      true,
+      false,
+    );
+  }
+}
diff --git a/libs/common/src/types/guid.ts b/libs/common/src/types/guid.ts
index 5edd34e4fc5..bd0980cd36c 100644
--- a/libs/common/src/types/guid.ts
+++ b/libs/common/src/types/guid.ts
@@ -15,3 +15,8 @@ export type IndexedEntityId = Opaque<string, "IndexedEntityId">;
 export type SecurityTaskId = Opaque<string, "SecurityTaskId">;
 export type NotificationId = Opaque<string, "NotificationId">;
 export type EmergencyAccessId = Opaque<string, "EmergencyAccessId">;
+export type OrganizationIntegrationId = Opaque<string, "OrganizationIntegrationId">;
+export type OrganizationIntegrationConfigurationId = Opaque<
+  string,
+  "OrganizationIntegrationConfigurationId"
+>;

From 2db31d122881517b9a0adb8137f2dac663c2928d Mon Sep 17 00:00:00 2001
From: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com>
Date: Fri, 25 Jul 2025 09:37:04 -0500
Subject: [PATCH 239/239] [PM-22611] Require userid for masterKey methods on
 the key service (#15663)

* Require userId on targeted methods.

* update method consumers

* unit tests
---
 apps/cli/src/auth/commands/login.command.ts   |   3 +-
 .../account/change-email.component.spec.ts    |   2 +-
 .../change-kdf-confirmation.component.ts      |  19 +-
 .../src/abstractions/key.service.ts           |  22 +-
 libs/key-management/src/key.service.spec.ts   | 215 +++++++++++++++---
 libs/key-management/src/key.service.ts        |  60 +++--
 6 files changed, 233 insertions(+), 88 deletions(-)

diff --git a/apps/cli/src/auth/commands/login.command.ts b/apps/cli/src/auth/commands/login.command.ts
index 3ceac859c43..d25e9a70d88 100644
--- a/apps/cli/src/auth/commands/login.command.ts
+++ b/apps/cli/src/auth/commands/login.command.ts
@@ -428,7 +428,8 @@ export class LoginCommand {
       );
 
       const request = new PasswordRequest();
-      request.masterPasswordHash = await this.keyService.hashMasterKey(currentPassword, null);
+      const masterKey = await this.keyService.getOrDeriveMasterKey(currentPassword, userId);
+      request.masterPasswordHash = await this.keyService.hashMasterKey(currentPassword, masterKey);
       request.masterPasswordHint = hint;
       request.newMasterPasswordHash = newPasswordHash;
       request.key = newUserKey[1].encryptedString;
diff --git a/apps/web/src/app/auth/settings/account/change-email.component.spec.ts b/apps/web/src/app/auth/settings/account/change-email.component.spec.ts
index f5c0733e5b0..bd0d9df9f06 100644
--- a/apps/web/src/app/auth/settings/account/change-email.component.spec.ts
+++ b/apps/web/src/app/auth/settings/account/change-email.component.spec.ts
@@ -89,7 +89,7 @@ describe("ChangeEmailComponent", () => {
       });
 
       keyService.getOrDeriveMasterKey
-        .calledWith("password", "UserId")
+        .calledWith("password", "UserId" as UserId)
         .mockResolvedValue("getOrDeriveMasterKey" as any);
       keyService.hashMasterKey
         .calledWith("password", "getOrDeriveMasterKey" as any)
diff --git a/apps/web/src/app/auth/settings/security/change-kdf/change-kdf-confirmation.component.ts b/apps/web/src/app/auth/settings/security/change-kdf/change-kdf-confirmation.component.ts
index 0bfc46eea96..5aa8eeb907c 100644
--- a/apps/web/src/app/auth/settings/security/change-kdf/change-kdf-confirmation.component.ts
+++ b/apps/web/src/app/auth/settings/security/change-kdf/change-kdf-confirmation.component.ts
@@ -2,14 +2,13 @@
 // @ts-strict-ignore
 import { Component, Inject } from "@angular/core";
 import { FormGroup, FormControl, Validators } from "@angular/forms";
-import { firstValueFrom, map } from "rxjs";
+import { firstValueFrom } from "rxjs";
 
 import { ApiService } from "@bitwarden/common/abstractions/api.service";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { KdfRequest } from "@bitwarden/common/models/request/kdf.request";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
-import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
 import { DIALOG_DATA, ToastService } from "@bitwarden/components";
 import { KdfConfig, KdfType, KeyService } from "@bitwarden/key-management";
 
@@ -31,7 +30,6 @@ export class ChangeKdfConfirmationComponent {
   constructor(
     private apiService: ApiService,
     private i18nService: I18nService,
-    private platformUtilsService: PlatformUtilsService,
     private keyService: KeyService,
     private messagingService: MessagingService,
     @Inject(DIALOG_DATA) params: { kdf: KdfType; kdfConfig: KdfConfig },
@@ -58,6 +56,10 @@ export class ChangeKdfConfirmationComponent {
   };
 
   private async makeKeyAndSaveAsync() {
+    const activeAccount = await firstValueFrom(this.accountService.activeAccount$);
+    if (activeAccount == null) {
+      throw new Error("No active account found.");
+    }
     const masterPassword = this.form.value.masterPassword;
 
     // Ensure the KDF config is valid.
@@ -70,13 +72,14 @@ export class ChangeKdfConfirmationComponent {
       request.kdfMemory = this.kdfConfig.memory;
       request.kdfParallelism = this.kdfConfig.parallelism;
     }
-    const masterKey = await this.keyService.getOrDeriveMasterKey(masterPassword);
+    const masterKey = await this.keyService.getOrDeriveMasterKey(masterPassword, activeAccount.id);
     request.masterPasswordHash = await this.keyService.hashMasterKey(masterPassword, masterKey);
-    const email = await firstValueFrom(
-      this.accountService.activeAccount$.pipe(map((a) => a?.email)),
-    );
 
-    const newMasterKey = await this.keyService.makeMasterKey(masterPassword, email, this.kdfConfig);
+    const newMasterKey = await this.keyService.makeMasterKey(
+      masterPassword,
+      activeAccount.email,
+      this.kdfConfig,
+    );
     request.newMasterPasswordHash = await this.keyService.hashMasterKey(
       masterPassword,
       newMasterKey,
diff --git a/libs/key-management/src/abstractions/key.service.ts b/libs/key-management/src/abstractions/key.service.ts
index 3c0d6c8a138..3e2fbf6c63b 100644
--- a/libs/key-management/src/abstractions/key.service.ts
+++ b/libs/key-management/src/abstractions/key.service.ts
@@ -163,11 +163,14 @@ export abstract class KeyService {
    */
   abstract clearStoredUserKey(keySuffix: KeySuffixOptions, userId: string): Promise<void>;
   /**
-   * @throws Error when userId is null and no active user
+   * Retrieves the user's master key if it is in state, or derives it from the provided password
    * @param password The user's master password that will be used to derive a master key if one isn't found
    * @param userId The desired user
+   * @throws Error when userId is null/undefined.
+   * @throws Error when email or Kdf configuration cannot be found for the user.
+   * @returns The user's master key if it exists, or a newly derived master key.
    */
-  abstract getOrDeriveMasterKey(password: string, userId?: string): Promise<MasterKey>;
+  abstract getOrDeriveMasterKey(password: string, userId: UserId): Promise<MasterKey>;
   /**
    * Generates a master key from the provided password
    * @param password The user's master password
@@ -175,7 +178,7 @@ export abstract class KeyService {
    * @param KdfConfig The user's key derivation function configuration
    * @returns A master key derived from the provided password
    */
-  abstract makeMasterKey(password: string, email: string, KdfConfig: KdfConfig): Promise<MasterKey>;
+  abstract makeMasterKey(password: string, email: string, kdfConfig: KdfConfig): Promise<MasterKey>;
   /**
    * Encrypts the existing (or provided) user key with the
    * provided master key
@@ -191,24 +194,25 @@ export abstract class KeyService {
    * Creates a master password hash from the user's master password. Can
    * be used for local authentication or for server authentication depending
    * on the hashPurpose provided.
-   * @throws Error when password is null or key is null and no active user or active user have no master key
    * @param password The user's master password
    * @param key The user's master key or active's user master key.
-   * @param hashPurpose The iterations to use for the hash
+   * @param hashPurpose The iterations to use for the hash. Defaults to {@link HashPurpose.ServerAuthorization}.
+   * @throws Error when password is null/undefined or key is null/undefined.
    * @returns The user's master password hash
    */
   abstract hashMasterKey(
     password: string,
-    key: MasterKey | null,
+    key: MasterKey,
     hashPurpose?: HashPurpose,
   ): Promise<string>;
   /**
    * Compares the provided master password to the stored password hash.
    * @param masterPassword The user's master password
-   * @param key The user's master key
+   * @param masterKey The user's master key
    * @param userId The id of the user to do the operation for.
-   * @returns True if the provided master password matches either the stored
-   * key hash or the server key hash
+   * @throws Error when master key is null/undefined.
+   * @returns True if the derived master password hash matches the stored
+   * key hash, false otherwise.
    */
   abstract compareKeyHash(
     masterPassword: string,
diff --git a/libs/key-management/src/key.service.spec.ts b/libs/key-management/src/key.service.spec.ts
index 7a033792c79..27d838c6fb3 100644
--- a/libs/key-management/src/key.service.spec.ts
+++ b/libs/key-management/src/key.service.spec.ts
@@ -18,7 +18,7 @@ import { KeyGenerationService } from "@bitwarden/common/platform/abstractions/ke
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
 import { StateService } from "@bitwarden/common/platform/abstractions/state.service";
-import { KeySuffixOptions } from "@bitwarden/common/platform/enums";
+import { HashPurpose, KeySuffixOptions } from "@bitwarden/common/platform/enums";
 import { Encrypted } from "@bitwarden/common/platform/interfaces/encrypted";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
@@ -47,6 +47,7 @@ import { UserKey, MasterKey } from "@bitwarden/common/types/key";
 import { KdfConfigService } from "./abstractions/kdf-config.service";
 import { UserPrivateKeyDecryptionFailedError } from "./abstractions/key.service";
 import { DefaultKeyService } from "./key.service";
+import { KdfConfig } from "./models/kdf-config";
 
 describe("keyService", () => {
   let keyService: DefaultKeyService;
@@ -817,55 +818,160 @@ describe("keyService", () => {
   });
 
   describe("getOrDeriveMasterKey", () => {
+    beforeEach(() => {
+      masterPasswordService.masterKeySubject.next(null);
+    });
+
+    test.each([null as unknown as UserId, undefined as unknown as UserId])(
+      "throws when the provided userId is %s",
+      async (userId) => {
+        await expect(keyService.getOrDeriveMasterKey("password", userId)).rejects.toThrow(
+          "User ID is required.",
+        );
+      },
+    );
+
     it("returns the master key if it is already available", async () => {
-      const getMasterKey = jest
-        .spyOn(masterPasswordService, "masterKey$")
-        .mockReturnValue(of("masterKey" as any));
+      const masterKey = makeSymmetricCryptoKey(32) as MasterKey;
+      masterPasswordService.masterKeySubject.next(masterKey);
 
       const result = await keyService.getOrDeriveMasterKey("password", mockUserId);
 
-      expect(getMasterKey).toHaveBeenCalledWith(mockUserId);
-      expect(result).toEqual("masterKey");
+      expect(kdfConfigService.getKdfConfig$).not.toHaveBeenCalledWith(mockUserId);
+      expect(result).toEqual(masterKey);
     });
 
-    it("derives the master key if it is not available", async () => {
-      const getMasterKey = jest
-        .spyOn(masterPasswordService, "masterKey$")
-        .mockReturnValue(of(null as any));
+    it("throws an error if user's email is not available", async () => {
+      accountService.accounts$ = of({});
 
-      const deriveKeyFromPassword = jest
-        .spyOn(keyGenerationService, "deriveKeyFromPassword")
-        .mockResolvedValue("mockMasterKey" as any);
-
-      kdfConfigService.getKdfConfig$.mockReturnValue(of("mockKdfConfig" as any));
-
-      const result = await keyService.getOrDeriveMasterKey("password", mockUserId);
-
-      expect(getMasterKey).toHaveBeenCalledWith(mockUserId);
-      expect(deriveKeyFromPassword).toHaveBeenCalledWith("password", "email", "mockKdfConfig");
-      expect(result).toEqual("mockMasterKey");
-    });
-
-    it("throws an error if no user is found", async () => {
-      accountService.activeAccountSubject.next(null);
-
-      await expect(keyService.getOrDeriveMasterKey("password")).rejects.toThrow("No user found");
+      await expect(keyService.getOrDeriveMasterKey("password", mockUserId)).rejects.toThrow(
+        "No email found for user " + mockUserId,
+      );
+      expect(kdfConfigService.getKdfConfig$).not.toHaveBeenCalled();
     });
 
     it("throws an error if no kdf config is found", async () => {
-      jest.spyOn(masterPasswordService, "masterKey$").mockReturnValue(of(null as any));
       kdfConfigService.getKdfConfig$.mockReturnValue(of(null));
 
       await expect(keyService.getOrDeriveMasterKey("password", mockUserId)).rejects.toThrow(
         "No kdf found for user",
       );
     });
+
+    it("derives the master key if it is not available", async () => {
+      keyGenerationService.deriveKeyFromPassword.mockReturnValue("mockMasterKey" as any);
+      kdfConfigService.getKdfConfig$.mockReturnValue(of("mockKdfConfig" as any));
+
+      const result = await keyService.getOrDeriveMasterKey("password", mockUserId);
+
+      expect(kdfConfigService.getKdfConfig$).toHaveBeenCalledWith(mockUserId);
+      expect(keyGenerationService.deriveKeyFromPassword).toHaveBeenCalledWith(
+        "password",
+        "email",
+        "mockKdfConfig",
+      );
+      expect(result).toEqual("mockMasterKey");
+    });
+  });
+
+  describe("makeMasterKey", () => {
+    const password = "testPassword";
+    let email = "test@example.com";
+    const masterKey = makeSymmetricCryptoKey(32) as MasterKey;
+    const kdfConfig = mock<KdfConfig>();
+
+    it("derives a master key from password and email", async () => {
+      keyGenerationService.deriveKeyFromPassword.mockResolvedValue(masterKey);
+
+      const result = await keyService.makeMasterKey(password, email, kdfConfig);
+
+      expect(result).toEqual(masterKey);
+    });
+
+    it("trims and lowercases the email for key generation call", async () => {
+      keyGenerationService.deriveKeyFromPassword.mockResolvedValue(masterKey);
+      email = "TEST@EXAMPLE.COM";
+
+      await keyService.makeMasterKey(password, email, kdfConfig);
+
+      expect(keyGenerationService.deriveKeyFromPassword).toHaveBeenCalledWith(
+        password,
+        email.trim().toLowerCase(),
+        kdfConfig,
+      );
+    });
+
+    it("should log the time taken to derive the master key", async () => {
+      keyGenerationService.deriveKeyFromPassword.mockResolvedValue(masterKey);
+      jest.spyOn(Date.prototype, "getTime").mockReturnValueOnce(1000).mockReturnValueOnce(1500);
+
+      await keyService.makeMasterKey(password, email, kdfConfig);
+
+      expect(logService.info).toHaveBeenCalledWith("[KeyService] Deriving master key took 500ms");
+    });
+  });
+
+  describe("hashMasterKey", () => {
+    const password = "testPassword";
+    const masterKey = makeSymmetricCryptoKey(32) as MasterKey;
+
+    test.each([null as unknown as string, undefined as unknown as string])(
+      "throws when the provided password is %s",
+      async (password) => {
+        await expect(keyService.hashMasterKey(password, masterKey)).rejects.toThrow(
+          "password is required.",
+        );
+      },
+    );
+
+    test.each([null as unknown as MasterKey, undefined as unknown as MasterKey])(
+      "throws when the provided key is %s",
+      async (key) => {
+        await expect(keyService.hashMasterKey("password", key)).rejects.toThrow("key is required.");
+      },
+    );
+
+    it("hashes master key with default iterations when no hashPurpose is provided", async () => {
+      const mockReturnedHashB64 = "bXlfaGFzaA==";
+      cryptoFunctionService.pbkdf2.mockResolvedValue(Utils.fromB64ToArray(mockReturnedHashB64));
+
+      const result = await keyService.hashMasterKey(password, masterKey);
+
+      expect(cryptoFunctionService.pbkdf2).toHaveBeenCalledWith(
+        masterKey.inner().encryptionKey,
+        password,
+        "sha256",
+        1,
+      );
+      expect(result).toBe(mockReturnedHashB64);
+    });
+
+    test.each([
+      [2, HashPurpose.LocalAuthorization],
+      [1, HashPurpose.ServerAuthorization],
+    ])(
+      "hashes master key with %s iterations when hashPurpose is %s",
+      async (expectedIterations, hashPurpose) => {
+        const mockReturnedHashB64 = "bXlfaGFzaA==";
+        cryptoFunctionService.pbkdf2.mockResolvedValue(Utils.fromB64ToArray(mockReturnedHashB64));
+
+        const result = await keyService.hashMasterKey(password, masterKey, hashPurpose);
+
+        expect(cryptoFunctionService.pbkdf2).toHaveBeenCalledWith(
+          masterKey.inner().encryptionKey,
+          password,
+          "sha256",
+          expectedIterations,
+        );
+        expect(result).toBe(mockReturnedHashB64);
+      },
+    );
   });
 
   describe("compareKeyHash", () => {
     type TestCase = {
       masterKey: MasterKey;
-      masterPassword: string | null;
+      masterPassword: string;
       storedMasterKeyHash: string | null;
       mockReturnedHash: string;
       expectedToMatch: boolean;
@@ -873,26 +979,33 @@ describe("keyService", () => {
 
     const data: TestCase[] = [
       {
-        masterKey: makeSymmetricCryptoKey(64),
+        masterKey: makeSymmetricCryptoKey(32),
         masterPassword: "my_master_password",
         storedMasterKeyHash: "bXlfaGFzaA==",
         mockReturnedHash: "bXlfaGFzaA==",
         expectedToMatch: true,
       },
       {
-        masterKey: makeSymmetricCryptoKey(64),
-        masterPassword: null,
+        masterKey: makeSymmetricCryptoKey(32),
+        masterPassword: null as unknown as string,
         storedMasterKeyHash: "bXlfaGFzaA==",
         mockReturnedHash: "bXlfaGFzaA==",
         expectedToMatch: false,
       },
       {
-        masterKey: makeSymmetricCryptoKey(64),
-        masterPassword: null,
+        masterKey: makeSymmetricCryptoKey(32),
+        masterPassword: null as unknown as string,
         storedMasterKeyHash: null,
         mockReturnedHash: "bXlfaGFzaA==",
         expectedToMatch: false,
       },
+      {
+        masterKey: makeSymmetricCryptoKey(32),
+        masterPassword: "my_master_password",
+        storedMasterKeyHash: "bXlfaGFzaA==",
+        mockReturnedHash: "zxccbXlfaGFzaA==",
+        expectedToMatch: false,
+      },
     ];
 
     it.each(data)(
@@ -907,7 +1020,7 @@ describe("keyService", () => {
         masterPasswordService.masterKeyHashSubject.next(storedMasterKeyHash);
 
         cryptoFunctionService.pbkdf2
-          .calledWith(masterKey.inner().encryptionKey, masterPassword as string, "sha256", 2)
+          .calledWith(masterKey.inner().encryptionKey, masterPassword, "sha256", 2)
           .mockResolvedValue(Utils.fromB64ToArray(mockReturnedHash));
 
         const actualDidMatch = await keyService.compareKeyHash(
@@ -919,6 +1032,38 @@ describe("keyService", () => {
         expect(actualDidMatch).toBe(expectedToMatch);
       },
     );
+
+    test.each([null as unknown as MasterKey, undefined as unknown as MasterKey])(
+      "throws an error if masterKey is %s",
+      async (masterKey) => {
+        await expect(
+          keyService.compareKeyHash("my_master_password", masterKey, mockUserId),
+        ).rejects.toThrow("'masterKey' is required to be non-null.");
+      },
+    );
+
+    test.each([null as unknown as string, undefined as unknown as string])(
+      "returns false when masterPassword is %s",
+      async (masterPassword) => {
+        const result = await keyService.compareKeyHash(
+          masterPassword,
+          makeSymmetricCryptoKey(32),
+          mockUserId,
+        );
+        expect(result).toBe(false);
+      },
+    );
+
+    it("returns false when storedMasterKeyHash is null", async () => {
+      masterPasswordService.masterKeyHashSubject.next(null);
+
+      const result = await keyService.compareKeyHash(
+        "my_master_password",
+        makeSymmetricCryptoKey(32),
+        mockUserId,
+      );
+      expect(result).toBe(false);
+    });
   });
 
   describe("userPrivateKey$", () => {
diff --git a/libs/key-management/src/key.service.ts b/libs/key-management/src/key.service.ts
index 0f4b101d9b2..7cdc104c36a 100644
--- a/libs/key-management/src/key.service.ts
+++ b/libs/key-management/src/key.service.ts
@@ -259,28 +259,28 @@ export class DefaultKeyService implements KeyServiceAbstraction {
     }
   }
 
-  // TODO: Move to MasterPasswordService
-  async getOrDeriveMasterKey(password: string, userId?: UserId) {
-    const [resolvedUserId, email] = await firstValueFrom(
-      combineLatest([this.accountService.activeAccount$, this.accountService.accounts$]).pipe(
-        map(([activeAccount, accounts]) => {
-          userId ??= activeAccount?.id;
-          if (userId == null || accounts[userId] == null) {
-            throw new Error("No user found");
-          }
-          return [userId, accounts[userId].email];
-        }),
-      ),
-    );
-    const masterKey = await firstValueFrom(this.masterPasswordService.masterKey$(resolvedUserId));
+  async getOrDeriveMasterKey(password: string, userId: UserId): Promise<MasterKey> {
+    if (userId == null) {
+      throw new Error("User ID is required.");
+    }
+
+    const masterKey = await firstValueFrom(this.masterPasswordService.masterKey$(userId));
     if (masterKey != null) {
       return masterKey;
     }
 
-    const kdf = await firstValueFrom(this.kdfConfigService.getKdfConfig$(resolvedUserId));
-    if (kdf == null) {
-      throw new Error("No kdf found for user");
+    const email = await firstValueFrom(
+      this.accountService.accounts$.pipe(map((accounts) => accounts[userId]?.email)),
+    );
+    if (email == null) {
+      throw new Error("No email found for user " + userId);
     }
+
+    const kdf = await firstValueFrom(this.kdfConfigService.getKdfConfig$(userId));
+    if (kdf == null) {
+      throw new Error("No kdf found for user " + userId);
+    }
+
     return await this.makeMasterKey(password, email, kdf);
   }
 
@@ -289,14 +289,14 @@ export class DefaultKeyService implements KeyServiceAbstraction {
    *
    * @remarks
    * Does not validate the kdf config to ensure it satisfies the minimum requirements for the given kdf type.
-   * TODO: Move to MasterPasswordService
    */
-  async makeMasterKey(password: string, email: string, KdfConfig: KdfConfig): Promise<MasterKey> {
+  async makeMasterKey(password: string, email: string, kdfConfig: KdfConfig): Promise<MasterKey> {
     const start = new Date().getTime();
+    email = email.trim().toLowerCase();
     const masterKey = (await this.keyGenerationService.deriveKeyFromPassword(
       password,
       email,
-      KdfConfig,
+      kdfConfig,
     )) as MasterKey;
     const end = new Date().getTime();
     this.logService.info(`[KeyService] Deriving master key took ${end - start}ms`);
@@ -312,23 +312,16 @@ export class DefaultKeyService implements KeyServiceAbstraction {
     return await this.buildProtectedSymmetricKey(masterKey, userKey);
   }
 
-  // TODO: move to MasterPasswordService
   async hashMasterKey(
     password: string,
-    key: MasterKey | null,
+    key: MasterKey,
     hashPurpose?: HashPurpose,
   ): Promise<string> {
-    if (key == null) {
-      const userId = await firstValueFrom(this.stateProvider.activeUserId$);
-      if (userId == null) {
-        throw new Error("No active user found.");
-      }
-
-      key = await firstValueFrom(this.masterPasswordService.masterKey$(userId));
+    if (password == null) {
+      throw new Error("password is required.");
     }
-
-    if (password == null || key == null) {
-      throw new Error("Invalid parameters.");
+    if (key == null) {
+      throw new Error("key is required.");
     }
 
     const iterations = hashPurpose === HashPurpose.LocalAuthorization ? 2 : 1;
@@ -341,9 +334,8 @@ export class DefaultKeyService implements KeyServiceAbstraction {
     return Utils.fromBufferToB64(hash);
   }
 
-  // TODO: move to MasterPasswordService
   async compareKeyHash(
-    masterPassword: string | null,
+    masterPassword: string,
     masterKey: MasterKey,
     userId: UserId,
   ): Promise<boolean> {